From 6185bed203f52f4aec571fd26c55528c66abdb4f Mon Sep 17 00:00:00 2001
From: jgomer2001 <bonustrack310@gmail.com>
Date: Mon, 18 Mar 2024 11:45:20 -0500
Subject: [PATCH 1/4] feat: add accts linking agama project #7556

Signed-off-by: jgomer2001 <bonustrack310@gmail.com>
---
 jans-casa/plugins/acct-linking/extras/Casa.py | 737 ++++++++++++++++++
 .../io.jans.casa.acctlinking.Launcher.flow    |  65 ++
 .../io/jans/casa/acctlinking/Mappings.java    |  71 ++
 .../io/jans/casa/acctlinking/UidUtils.java    |  83 ++
 .../acct-linking/extras/agama/project.json    |  58 ++
 .../acct-linking/extras/agama/web/apple.png   | Bin 0 -> 8171 bytes
 .../extras/agama/web/email-prompt.ftlh        |  50 ++
 .../extras/agama/web/facebook.png             | Bin 0 -> 4822 bytes
 .../acct-linking/extras/agama/web/github.png  | Bin 0 -> 29968 bytes
 .../acct-linking/extras/agama/web/google.png  | Bin 0 -> 105019 bytes
 .../acct-linking/extras/agama/web/none.png    | Bin 0 -> 493 bytes
 .../plugins/acct-linking/extras/login.xhtml   | 147 ++++
 12 files changed, 1211 insertions(+)
 create mode 100644 jans-casa/plugins/acct-linking/extras/Casa.py
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/code/io.jans.casa.acctlinking.Launcher.flow
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/Mappings.java
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/UidUtils.java
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/project.json
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/web/apple.png
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/web/email-prompt.ftlh
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/web/facebook.png
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/web/github.png
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/web/google.png
 create mode 100644 jans-casa/plugins/acct-linking/extras/agama/web/none.png
 create mode 100644 jans-casa/plugins/acct-linking/extras/login.xhtml

diff --git a/jans-casa/plugins/acct-linking/extras/Casa.py b/jans-casa/plugins/acct-linking/extras/Casa.py
new file mode 100644
index 00000000000..78effa96724
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/extras/Casa.py
@@ -0,0 +1,737 @@
+
+from io.jans.agama.model import Flow
+from io.jans.as.server.security import Identity
+from io.jans.as.server.service import AuthenticationService
+from io.jans.as.server.service import UserService
+from io.jans.config import GluuConfiguration
+from io.jans.as.server.service.custom import CustomScriptService
+from io.jans.as.server.service.net import HttpService
+from io.jans.as.server.util import ServerUtil
+from io.jans.casa.model import ApplicationConfiguration
+from io.jans.jsf2.service import FacesService
+from io.jans.model import SimpleCustomProperty
+from io.jans.model.custom.script import CustomScriptType
+from io.jans.model.custom.script.type.auth import PersonAuthenticationType
+from io.jans.orm import PersistenceEntryManager
+from io.jans.service import EncryptionService
+from io.jans.service import CacheService
+from io.jans.service.cdi.util import CdiUtil
+from io.jans.util import StringHelper
+
+from java.lang import Integer
+from java.util import Collections, HashMap, HashSet, ArrayList, Arrays, Date
+from java.nio.charset import Charset
+from java.net import URLEncoder
+
+from org.apache.http.params import CoreConnectionPNames
+
+try:
+    import json
+except ImportError:
+    import simplejson as json
+import sys
+
+class PersonAuthentication(PersonAuthenticationType):
+
+    def __init__(self, currentTimeMillis):
+        self.currentTimeMillis = currentTimeMillis
+        self.ACR_SG = "super_gluu"
+
+        self.modulePrefix = "casa-external_"
+
+    def init(self, customScript, configurationAttributes):
+
+        print "Casa. init called"
+        self.authenticators = {}
+        self.uid_attr = self.getLocalPrimaryKey()
+        self.agamaFQN = "io.jans.casa.acctlinking.Launcher"
+        
+        custScriptService = CdiUtil.bean(CustomScriptService)
+        self.scriptsList = custScriptService.findCustomScripts(Collections.singletonList(CustomScriptType.PERSON_AUTHENTICATION), "jansConfProperty", "displayName", "jansEnabled", "jansLevel")
+        dynamicMethods = self.computeMethods(self.scriptsList)
+
+        if len(dynamicMethods) > 0:
+            print "Casa. init. Loading scripts for dynamic modules: %s" % dynamicMethods
+
+            for acr in dynamicMethods:
+                moduleName = self.modulePrefix + acr
+                try:
+                    external = __import__(moduleName, globals(), locals(), ["PersonAuthentication"], -1)
+                    module = external.PersonAuthentication(self.currentTimeMillis)
+
+                    print "Casa. init. Got dynamic module for acr %s" % acr
+                    configAttrs = self.getConfigurationAttributes(acr, self.scriptsList)
+
+                    if acr == self.ACR_SG:
+                        application_id = configurationAttributes.get("supergluu_app_id").getValue2()
+                        configAttrs.put("application_id", SimpleCustomProperty("application_id", application_id))
+
+                    if module.init(None, configAttrs):
+                        module.configAttrs = configAttrs
+                        self.authenticators[acr] = module
+                    else:
+                        print "Casa. init. Call to init in module '%s' returned False" % moduleName
+                except:
+                    print "Casa. init. Failed to load module %s" % moduleName
+                    print "Exception: ", sys.exc_info()[1]
+
+            mobile_methods = configurationAttributes.get("mobile_methods")
+            self.mobile_methods = [] if mobile_methods == None else StringHelper.split(mobile_methods.getValue2(), ",")
+
+        print "Casa. init. Initialized successfully"
+        return True
+
+
+    def destroy(self, configurationAttributes):
+        print "Casa. Destroyed called"
+        return True
+
+
+    def getApiVersion(self):
+        return 11
+
+
+    def getAuthenticationMethodClaims(self, configurationAttributes):
+        return None
+
+
+    def isValidAuthenticationMethod(self, usageType, configurationAttributes):
+        print "Casa. isValidAuthenticationMethod called"
+        return True
+
+
+    def getAlternativeAuthenticationMethod(self, usageType, configurationAttributes):
+        return None
+
+
+    def authenticate(self, configurationAttributes, requestParameters, step):
+        print "Casa. authenticate for step %s" % str(step)
+
+        userService = CdiUtil.bean(UserService)
+        authenticationService = CdiUtil.bean(AuthenticationService)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            # Determine if external provider must be used
+            provider = ServerUtil.getFirstValue(requestParameters, "loginForm:provider")
+            if StringHelper.isNotEmpty(provider):
+                url = self.getAuthzRequestUrl(provider)
+                if url != None:
+                    CdiUtil.bean(FacesService).redirectToExternalURL(url)
+                return url != None
+
+            credentials = identity.getCredentials()
+            user_name = credentials.getUsername()
+            user_password = credentials.getPassword()
+
+            if StringHelper.isNotEmptyString(user_name) and StringHelper.isNotEmptyString(user_password):
+
+                foundUser = userService.getUserByAttribute(self.uid_attr, user_name)
+                #foundUser = userService.getUser(user_name)
+                if foundUser == None:
+                    print "Casa. authenticate for step 1. Unknown username"
+                else:
+                    platform_data = self.parsePlatformData(requestParameters)
+                    preferred = foundUser.getAttribute("jansPreferredMethod")
+                    mfaOff = preferred == None
+                    logged_in = False
+
+                    if mfaOff:
+                        logged_in = authenticationService.authenticate(user_name, user_password)
+                    else:
+                        acr = self.getSuitableAcr(foundUser, platform_data, preferred)
+                        if acr != None:
+                            module = self.authenticators[acr]
+                            logged_in = module.authenticate(module.configAttrs, requestParameters, step)
+
+                    if logged_in:
+                        foundUser = authenticationService.getAuthenticatedUser()
+
+                        if foundUser == None:
+                            print "Casa. authenticate for step 1. Cannot retrieve logged user"
+                        else:
+                            if mfaOff:
+                                identity.setWorkingParameter("skip2FA", True)
+                            else:
+                                #Determine whether to skip 2FA based on policy defined (global or user custom)
+                                skip2FA = self.determineSkip2FA(userService, identity, foundUser, platform_data)
+                                identity.setWorkingParameter("skip2FA", skip2FA)
+                                identity.setWorkingParameter("ACR", acr)
+
+                            return True
+
+                    else:
+                        print "Casa. authenticate for step 1 was not successful"
+            return False
+
+        else:
+            user = authenticationService.getAuthenticatedUser()
+            if user == None:
+                print "Casa. authenticate for step 2. Cannot retrieve logged user"
+                return False
+
+            #see casa.xhtml
+            alter = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if alter != None:
+                #bypass the rest of this step if an alternative method was provided. Current step will be retried (see getNextStep)
+                self.simulateFirstStep(requestParameters, alter)
+                return True
+
+            session_attributes = identity.getSessionId().getSessionAttributes()
+            acr = session_attributes.get("ACR")
+            #this working parameter is used in casa.xhtml
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            success = False
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                success = module.authenticate(module.configAttrs, requestParameters, step)
+
+            #Update the list of trusted devices if 2fa passed
+            if success:
+                print "Casa. authenticate. 2FA authentication was successful"
+                tdi = session_attributes.get("trustedDevicesInfo")
+                if tdi == None:
+                    print "Casa. authenticate. List of user's trusted devices was not updated"
+                else:
+                    user.setAttribute("jansTrustedDevices", tdi)
+                    userService.updateUser(user)
+            else:
+                print "Casa. authenticate. 2FA authentication failed"
+
+            return success
+
+        return False
+
+
+    def prepareForStep(self, configurationAttributes, requestParameters, step):
+        print "Casa. prepareForStep %s" % str(step)
+        identity = CdiUtil.bean(Identity)
+
+        if step == 1:
+            self.prepareUIParams(identity)
+            self.registeredProviders = self.parseProviderConfigs()
+            identity.setWorkingParameter("externalProviders", json.dumps(self.registeredProviders))
+            return True
+        else:
+            session_attributes = identity.getSessionId().getSessionAttributes()
+
+            authenticationService = CdiUtil.bean(AuthenticationService)
+            user = authenticationService.getAuthenticatedUser()
+
+            if user == None:
+                print "Casa. prepareForStep. Cannot retrieve logged user"
+                return False
+
+            acr = session_attributes.get("ACR")
+            print "Casa. prepareForStep. ACR = %s" % acr
+            identity.setWorkingParameter("methods", ArrayList(self.getAvailMethodsUser(user, acr)))
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                return module.prepareForStep(module.configAttrs, requestParameters, step)
+            else:
+                return False
+
+
+    def getExtraParametersForStep(self, configurationAttributes, step):
+        print "Casa. getExtraParametersForStep %s" % str(step)
+        list = ArrayList()
+
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                params = module.getExtraParametersForStep(module.configAttrs, step)
+                if params != None:
+                    list.addAll(params)
+
+            list.addAll(Arrays.asList("ACR", "methods", "trustedDevicesInfo"))
+        else:
+            list.add("externalProviders")
+
+        list.addAll(Arrays.asList("casa_contextPath", "casa_prefix", "casa_faviconUrl", "casa_extraCss", "casa_logoUrl"))
+        print "extras are %s" % list
+        return list
+
+
+    def getCountAuthenticationSteps(self, configurationAttributes):
+        print "Casa. getCountAuthenticationSteps called"
+
+        if CdiUtil.bean(Identity).getWorkingParameter("skip2FA"):
+           return 1
+
+        acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            return module.getCountAuthenticationSteps(module.configAttrs)
+        else:
+            return 2
+
+        print "Casa. getCountAuthenticationSteps. Could not determine the step count for acr %s" % acr
+
+
+    def getPageForStep(self, configurationAttributes, step):
+        print "Casa. getPageForStep called %s" % str(step)
+
+        if step > 1:
+            acr = CdiUtil.bean(Identity).getWorkingParameter("ACR")
+            if acr in self.authenticators:
+                module = self.authenticators[acr]
+                page = module.getPageForStep(module.configAttrs, step)
+            else:
+                page=None
+
+            return page
+
+        return "/casa/login.xhtml"
+
+
+    def getNextStep(self, configurationAttributes, requestParameters, step):
+
+        print "Casa. getNextStep called %s" % str(step)
+        if step > 1:
+            acr = ServerUtil.getFirstValue(requestParameters, "alternativeMethod")
+            if acr != None:
+                print "Casa. getNextStep. Use alternative method %s" % acr
+                CdiUtil.bean(Identity).setWorkingParameter("ACR", acr)
+                #retry step with different acr
+                return 2
+
+        return -1
+
+
+    def logout(self, configurationAttributes, requestParameters):
+        print "Casa. logout called"
+        return True
+
+# Miscelaneous
+
+    def getLocalPrimaryKey(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = GluuConfiguration()
+        config = entryManager.find(config.getClass(), "ou=configuration,o=jans")
+        #Pick (one) attribute where user id is stored (e.g. uid/mail)
+        # primaryKey is the primary key on the backend AD / LDAP Server
+        # localPrimaryKey is the primary key on Gluu. This attr value has been mapped with the primary key attr of the backend AD / LDAP when configuring cache refresh
+        uid_attr = config.getIdpAuthn().get(0).getConfig().findValue("localPrimaryKey").asText()
+        print "Casa. init. uid attribute is '%s'" % uid_attr
+        return uid_attr
+
+
+    def getSettings(self):
+        entryManager = CdiUtil.bean(PersistenceEntryManager)
+        config = ApplicationConfiguration()
+        config = entryManager.find(config.getClass(), "ou=casa,ou=configuration,o=jans")
+        settings = config.getSettings()
+
+        if settings == None:
+            print "Casa. getSettings. Failed to parse casa settings from DB"
+        return settings
+
+
+    def computeMethods(self, scriptList):
+
+        methods = []
+        mapping = {}
+        cmConfigs = self.getSettings()
+
+        if cmConfigs != None and cmConfigs.getAcrPluginMap() != None:
+            mapping = cmConfigs.getAcrPluginMap().keySet()
+
+        for m in mapping:
+            for customScript in scriptList:
+                if customScript.getName() == m and customScript.isEnabled():
+                    methods.append(m)
+
+        print "Casa. computeMethods. %s" % methods
+        return methods
+
+
+    def getConfigurationAttributes(self, acr, scriptsList):
+
+        configMap = HashMap()
+        for customScript in scriptsList:
+            if customScript.getName() == acr and customScript.isEnabled():
+                for prop in customScript.getConfigurationProperties():
+                    configMap.put(prop.getValue1(), SimpleCustomProperty(prop.getValue1(), prop.getValue2()))
+
+        print "Casa. getConfigurationAttributes. %d configuration properties were found for %s" % (configMap.size(), acr)
+        return configMap
+
+
+    def getAvailMethodsUser(self, user, skip=None):
+        methods = HashSet()
+
+        for method in self.authenticators:
+            try:
+                module = self.authenticators[method]
+                if module.hasEnrollments(module.configAttrs, user):
+                    methods.add(method)
+            except:
+                print "Casa. getAvailMethodsUser. hasEnrollments call could not be issued for %s module" % method
+                print "Exception: ", sys.exc_info()[1]
+
+        try:
+            if skip != None:
+                # skip is guaranteed to be a member of methods (if hasEnrollments routines are properly implemented).
+                # A call to remove strangely crashes when skip is absent
+                methods.remove(skip)
+        except:
+            print "Casa. getAvailMethodsUser. methods list does not contain %s" % skip
+
+        print "Casa. getAvailMethodsUser %s" % methods.toString()
+        return methods
+
+
+    def prepareUIParams(self, identity):
+
+        print "Casa. prepareUIParams. Reading UI branding params"
+        cacheService = CdiUtil.bean(CacheService)
+        casaAssets = cacheService.get("casa_assets")
+
+        if casaAssets == None:
+            #This may happen when cache type is IN_MEMORY, where actual cache is merely a local variable
+            #(a expiring map) living inside Casa webapp, not oxAuth webapp
+
+            sets = self.getSettings()
+
+            custPrefix = "/custom"
+            logoUrl = "/images/logo.png"
+            faviconUrl = "/images/favicon.ico"
+            if (sets.getExtraCssSnippet() != None) or sets.isUseExternalBranding():
+                logoUrl = custPrefix + logoUrl
+                faviconUrl = custPrefix + faviconUrl
+
+            prefix = custPrefix if sets.isUseExternalBranding() else ""
+
+            casaAssets = {
+                "contextPath": "/jans-casa",
+                "prefix" : prefix,
+                "faviconUrl" : faviconUrl,
+                "extraCss": sets.getExtraCssSnippet(),
+                "logoUrl": logoUrl
+            }
+
+        #Setting a single variable with the whole map does not work...
+        identity.setWorkingParameter("casa_contextPath", casaAssets['contextPath'])
+        identity.setWorkingParameter("casa_prefix", casaAssets['prefix'])
+        identity.setWorkingParameter("casa_faviconUrl", casaAssets['contextPath'] + casaAssets['faviconUrl'])
+        identity.setWorkingParameter("casa_extraCss", casaAssets['extraCss'])
+        identity.setWorkingParameter("casa_logoUrl", casaAssets['contextPath'] + casaAssets['logoUrl'])
+
+
+    def simulateFirstStep(self, requestParameters, acr):
+        #To simulate 1st step, there is no need to call:
+        # getPageforstep (no need as user/pwd won't be shown again)
+        # isValidAuthenticationMethod (by restriction, it returns True)
+        # prepareForStep (by restriction, it returns True)
+        # getExtraParametersForStep (by restriction, it returns None)
+        print "Casa. simulateFirstStep. Calling authenticate (step 1) for %s module" % acr
+        if acr in self.authenticators:
+            module = self.authenticators[acr]
+            auth = module.authenticate(module.configAttrs, requestParameters, 1)
+            print "Casa. simulateFirstStep. returned value was %s" % auth
+
+
+# 2FA policy enforcement
+
+    def parsePlatformData(self, requestParameters):
+        try:
+            #Find device info passed in HTTP request params (see index.xhtml)
+            platform = ServerUtil.getFirstValue(requestParameters, "loginForm:platform")
+            deviceInf = json.loads(platform)
+        except:
+            print "Casa. parsePlatformData. Error parsing platform data"
+            deviceInf = None
+
+        return deviceInf
+
+
+    def getSuitableAcr(self, user, deviceInf, preferred):
+
+        onMobile = deviceInf != None and 'isMobile' in deviceInf and deviceInf['isMobile']
+        id = user.getUserId()
+        strongest = -1
+        acr = None
+        user_methods = self.getAvailMethodsUser(user)
+
+        for s in self.scriptsList:
+            name = s.getName()
+            level = Integer.MAX_VALUE if name == preferred else s.getLevel()
+            if user_methods.contains(name) and level > strongest and (not onMobile or name in self.mobile_methods):
+                acr = name
+                strongest = level
+
+        print "Casa. getSuitableAcr. On mobile = %s" % onMobile
+        if acr == None and onMobile:
+            print "Casa. getSuitableAcr. No mobile-friendly authentication method available for user %s" % id
+            # user_methods is not empty when this function is called, so just pick any
+            acr = user_methods.stream().findFirst().get()
+
+        print "Casa. getSuitableAcr. %s was selected for user %s" % (acr, id)
+        return acr
+
+
+    def determineSkip2FA(self, userService, identity, foundUser, deviceInf):
+
+        cmConfigs = self.getSettings()
+
+        if cmConfigs == None:
+            print "Casa. determineSkip2FA. Failed to read policy_2fa"
+            return False
+
+        cmConfigs = cmConfigs.getPluginSettings().get('strong-authn-settings')
+
+        policy2FA = 'EVERY_LOGIN'
+        if cmConfigs != None and cmConfigs.get('policy_2fa') != None:
+            policy2FA = ','.join(cmConfigs.get('policy_2fa'))
+
+        print "Casa. determineSkip2FA with general policy %s" % policy2FA
+        policy2FA += ','
+        skip2FA = False
+
+        if 'CUSTOM,' in policy2FA:
+            #read setting from user profile
+            policy = foundUser.getAttribute("jansStrongAuthPolicy")
+            if policy == None:
+                policy = 'EVERY_LOGIN,'
+            else:
+                policy = policy.upper() + ','
+            print "Casa. determineSkip2FA. Using user's enforcement policy %s" % policy
+
+        else:
+            #If it's not custom, then apply the global setting admin defined
+            policy = policy2FA
+
+        if not 'EVERY_LOGIN,' in policy:
+            locationCriterion = 'LOCATION_UNKNOWN,' in policy
+            deviceCriterion = 'DEVICE_UNKNOWN,' in policy
+
+            if locationCriterion or deviceCriterion:
+                if deviceInf == None:
+                    print "Casa. determineSkip2FA. No user device data. Forcing 2FA to take place..."
+                else:
+                    skip2FA = self.process2FAPolicy(identity, foundUser, deviceInf, locationCriterion, deviceCriterion)
+
+                    if skip2FA:
+                        print "Casa. determineSkip2FA. Second factor is skipped"
+                        #Update attribute if authentication will not have second step
+                        devInf = identity.getWorkingParameter("trustedDevicesInfo")
+                        if devInf != None:
+                            foundUser.setAttribute("jansTrustedDevices", devInf)
+                            userService.updateUser(foundUser)
+            else:
+                print "Casa. determineSkip2FA. Unknown %s policy: cannot skip 2FA" % policy
+
+        return skip2FA
+
+
+    def process2FAPolicy(self, identity, foundUser, deviceInf, locationCriterion, deviceCriterion):
+
+        skip2FA = False
+        #Retrieve user's devices info
+        devicesInfo = foundUser.getAttribute("jansTrustedDevices")
+
+        #do geolocation
+        geodata = self.getGeolocation(identity)
+        if geodata == None:
+            print "Casa. process2FAPolicy: Geolocation data not obtained. 2FA skipping based on location cannot take place"
+
+        try:
+            encService = CdiUtil.bean(EncryptionService)
+
+            if devicesInfo == None:
+                print "Casa. process2FAPolicy: There are no trusted devices for user yet"
+                #Simulate empty list
+                devicesInfo = "[]"
+            else:
+                devicesInfo = encService.decrypt(devicesInfo)
+
+            devicesInfo = json.loads(devicesInfo)
+
+            partialMatch = False
+            idx = 0
+            #Try to find a match for device only
+            for device in devicesInfo:
+                partialMatch = device['browser']['name']==deviceInf['name'] and device['os']['version']==deviceInf['os']['version'] and device['os']['family']==deviceInf['os']['family']
+                if partialMatch:
+                    break
+                idx+=1
+
+            matchFound = False
+
+            #At least one of locationCriterion or deviceCriterion is True
+            if locationCriterion and not deviceCriterion:
+                #this check makes sense if there is city data only
+                if geodata!=None:
+                    for device in devicesInfo:
+                        #Search all registered cities that are found in trusted devices
+                        for origin in device['origins']:
+                            matchFound = matchFound or origin['city']==geodata['city']
+
+            elif partialMatch:
+                #In this branch deviceCriterion is True
+                if not locationCriterion:
+                    matchFound = True
+                elif geodata!=None:
+                    for origin in devicesInfo[idx]['origins']:
+                        matchFound = matchFound or origin['city']==geodata['city']
+
+            skip2FA = matchFound
+            now = Date().getTime()
+
+            #Update attribute oxTrustedDevicesInfo accordingly
+            if partialMatch:
+                #Update an existing record (update timestamp in city, or else add it)
+                if geodata != None:
+                    partialMatch = False
+                    idxCity = 0
+
+                    for origin in devicesInfo[idx]['origins']:
+                        partialMatch = origin['city']==geodata['city']
+                        if partialMatch:
+                            break;
+                        idxCity+=1
+
+                    if partialMatch:
+                        devicesInfo[idx]['origins'][idxCity]['timestamp'] = now
+                    else:
+                        devicesInfo[idx]['origins'].append({"city": geodata['city'], "country": geodata['country'], "timestamp": now})
+            else:
+                #Create a new entry
+                browser = {"name": deviceInf['name'], "version": deviceInf['version']}
+                os = {"family": deviceInf['os']['family'], "version": deviceInf['os']['version']}
+
+                if geodata == None:
+                    origins = []
+                else:
+                    origins = [{"city": geodata['city'], "country": geodata['country'], "timestamp": now}]
+
+                obj = {"browser": browser, "os": os, "addedOn": now, "origins": origins}
+                devicesInfo.append(obj)
+
+            enc = json.dumps(devicesInfo, separators=(',',':'))
+            enc = encService.encrypt(enc)
+            identity.setWorkingParameter("trustedDevicesInfo", enc)
+
+        except:
+            print "Casa. process2FAPolicy. Error!", sys.exc_info()[1]
+
+        return skip2FA
+
+
+    def getGeolocation(self, identity):
+
+        session_attributes = identity.getSessionId().getSessionAttributes()
+        if session_attributes.containsKey("remote_ip"):
+            remote_ip = session_attributes.get("remote_ip").split(",", 2)[0].strip()
+            if StringHelper.isNotEmpty(remote_ip):
+
+                httpService = CdiUtil.bean(HttpService)
+
+                http_client = httpService.getHttpsClient()
+                http_client_params = http_client.getParams()
+                http_client_params.setIntParameter(CoreConnectionPNames.CONNECTION_TIMEOUT, 4 * 1000)
+
+                geolocation_service_url = "http://ip-api.com/json/%s?fields=country,city,status,message" % remote_ip
+                geolocation_service_headers = { "Accept" : "application/json" }
+
+                try:
+                    http_service_response = httpService.executeGet(http_client, geolocation_service_url, geolocation_service_headers)
+                    http_response = http_service_response.getHttpResponse()
+                except:
+                    print "Casa. Determine remote location. Exception: ", sys.exc_info()[1]
+                    return None
+
+                try:
+                    if not httpService.isResponseStastusCodeOk(http_response):
+                        print "Casa. Determine remote location. Get non 200 OK response from server:", str(http_response.getStatusLine().getStatusCode())
+                        httpService.consume(http_response)
+                        return None
+
+                    response_bytes = httpService.getResponseContent(http_response)
+                    response_string = httpService.convertEntityToString(response_bytes, Charset.forName("UTF-8"))
+                    httpService.consume(http_response)
+                finally:
+                    http_service_response.closeConnection()
+
+                if response_string == None:
+                    print "Casa. Determine remote location. Get empty response from location server"
+                    return None
+
+                response = json.loads(response_string)
+
+                if not StringHelper.equalsIgnoreCase(response['status'], "success"):
+                    print "Casa. Determine remote location. Get response with status: '%s'" % response['status']
+                    return None
+
+                return response
+
+        return None
+
+
+    def getLogoutExternalUrl(self, configurationAttributes, requestParameters):
+        print "Get external logout URL call"
+        return None
+
+# External authentication providers integration
+
+    def getAuthzRequestUrl(self, providerId):
+    
+        url = None
+        if providerId in self.registeredProviders:
+        
+            print "Casa. getAuthzRequestUrl. Building an authz request URL for agama"            
+            
+            params = ["response_type", "client_id", "scope", "redirect_uri", "state"]
+            attrs = CdiUtil.bean(Identity).getSessionId().getSessionAttributes()
+            
+            authzParams = {}
+            # use passport-* instead of casa
+            authzParams["acr_values"] = "agama"
+
+            # set the provider to use            
+            flowParams = URLEncoder.encode(json.dumps({ "providerId" : providerId }))        
+            authzParams["agama_flow"] = self.agamaFQN + "-" + flowParams
+
+            # avoids flow updating the profile of user if he has been provisioned previously
+            authzParams["skipProfileUpdate"] = "true"
+            
+            # copy the params in the current casa request
+            for param in params:
+                authzParams[param] = URLEncoder.encode(attrs.get(param), "UTF-8")
+        
+            url = "/jans-auth/restv1/authorize?"
+            for param in authzParams:
+                url += "&" + param + "=" + authzParams[param]
+            
+        else:
+            print "Casa. getAuthzRequestUrl. Provider %s not recognized" % providerId
+            
+        return url
+        
+        
+    def parseProviderConfigs(self):
+        
+        providers = {}
+        try:
+            entryManager = CdiUtil.bean(PersistenceEntryManager)            
+            dn = "agFlowQName=%s,ou=flows,ou=agama,o=jans" % self.agamaFQN
+            conf = entryManager.find(Flow().getClass(), dn).getMetadata().getProperties()
+            
+            if conf == None:
+                return providers
+                
+            prop = "enabled"            
+            for provId in conf:
+                pr = conf.get(provId)
+                if not pr.containsKey(prop) or pr.get(prop):
+                    providers[provId] = { "displayName": pr.get("displayName"), "logoImg": pr.get("logoImg") }
+                    
+            return providers
+        except:
+            print "Casa. parseProviderConfigs. An error occurred while building the list of supported authentication providers", sys.exc_info()[1]
+            
+        return providers
diff --git a/jans-casa/plugins/acct-linking/extras/agama/code/io.jans.casa.acctlinking.Launcher.flow b/jans-casa/plugins/acct-linking/extras/agama/code/io.jans.casa.acctlinking.Launcher.flow
new file mode 100644
index 00000000000..d6938e5e62e
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/extras/agama/code/io.jans.casa.acctlinking.Launcher.flow
@@ -0,0 +1,65 @@
+Flow io.jans.casa.acctlinking.Launcher
+    Basepath ""
+    Configs providers
+    Inputs providerId uidRef
+        
+provider = providers.$providerId
+//See class io.jans.inbound.Provider for reference
+
+When provider is null or provider.enabled is false
+    msg = Call java.lang.String#format "Provider '%s' not recognized. Is it enabled?" providerId
+    obj = { success: false, error: msg }
+    Finish obj
+
+//Launch matching flow and retrieve profile
+Log "Initiating external authentication for identity provider '%'" providerId
+obj = Trigger $provider.flowQname provider
+
+When obj.success is false
+    Finish obj
+
+field = Call io.jans.inbound.Utils#getMappingField provider.mappingClassField
+idProc = Call io.jans.inbound.IdentityProcessor#new provider
+profile = Call idProc applyMapping obj.data field
+
+field = null
+//In profile, every key is associated to a list
+Log "@d Mapped profile is\n" profile
+
+When profile.ID is null or profile.ID.empty is true
+    obj = { success: false, error: "Mapped profile misses value for 'ID'" }
+    Finish obj
+
+When profile.mail is null or profile.mail.empty is true
+    Log "Incoming user has no e-mail value"
+
+    //Prompt for e-mail if necessary
+    When provider.requestForEmail is true
+        obj = RRF "email-prompt.ftlh"
+        mail = obj.email
+        
+        When mail is null
+            obj = { success: false, error: "Unable to complete profile data: e-mail not provided" }
+            Finish obj
+
+        profile.mail = [ mail ]
+
+jansExtUid = Call io.jans.casa.acctlinking.UidUtils#computeExtUid providerId profile.ID[0]
+uid = null
+
+When profile.uid is not null
+    uid = profile.uid[0]
+
+uid = Call io.jans.casa.acctlinking.UidUtils#lookupUid uidRef uid profile.ID[0] "jansExtUid" jansExtUid
+profile.jansExtUid = Call io.jans.casa.acctlinking.UidUtils#attrValuesAdding uid "jansExtUid" jansExtUid
+
+profile.uid = [ uid ]
+profile.ID = null       //ID not part of DB schema - jansExtUid has what is needed
+
+uid | E = Call idProc process profile
+When E is null
+    Finish uid
+
+Log "@e Unable to process the incoming user" E
+obj = { success: false, error: E.message }
+Finish obj
diff --git a/jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/Mappings.java b/jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/Mappings.java
new file mode 100644
index 00000000000..bc72da34944
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/Mappings.java
@@ -0,0 +1,71 @@
+package io.jans.casa.acctlinking;
+
+import java.util.function.UnaryOperator;
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * Fields of this class can be referenced in the config properties of flow 
+ * io.jans.casa.acctlinking.Launcher
+ */
+public final class Mappings {
+
+    public static final UnaryOperator<Map<String, Object>> GOOGLE = 
+
+        profile -> {
+            Map<String, Object> map = new HashMap<>();
+            
+            map.put("ID", profile.get("sub"));
+            map.put("mail", profile.get("email"));
+            map.put("cn", profile.get("name"));
+            map.put("sn", profile.get("family_name"));
+            map.put("displayName", profile.get("given_name"));
+            map.put("givenName", profile.get("given_name"));
+            
+            return map;
+        };
+
+    //See https://developers.facebook.com/docs/graph-api/reference/user
+    public static final UnaryOperator<Map<String, Object>> FACEBOOK = 
+
+        profile -> {
+            Map<String, Object> map = new HashMap<>();
+            
+            map.put("ID", profile.get("id"));
+            map.put("mail", profile.get("email"));
+            map.put("cn", profile.get("name"));
+            map.put("sn", profile.get("last_name"));
+            map.put("displayName", profile.get("first_name"));
+            map.put("givenName", profile.get("first_name"));
+            
+            return map;
+        };
+
+    public static final UnaryOperator<Map<String, Object>> APPLE =
+
+        profile -> {
+            Map<String, Object> map = new HashMap<>();
+            
+            map.put("ID", profile.get("sub"));
+            map.put("mail", profile.get("email"));
+            
+            return map;
+        };
+
+    //See https://docs.github.com/en/rest/users/users
+    public static final UnaryOperator<Map<String, Object>> GITHUB = 
+
+        profile -> {
+            Map<String, Object> map = new HashMap<>();
+
+            map.put("ID", profile.getOrDefault("login", profile.get("id")));
+            map.put("mail", profile.get("email"));
+            map.put("displayName", profile.get("name"));
+            map.put("givenName", profile.get("name"));
+
+            return map;
+        };
+    
+    private Mappings() { }
+
+}
diff --git a/jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/UidUtils.java b/jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/UidUtils.java
new file mode 100644
index 00000000000..53043e10d6f
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/extras/agama/lib/io/jans/casa/acctlinking/UidUtils.java
@@ -0,0 +1,83 @@
+package io.jans.casa.acctlinking;
+
+import io.jans.as.common.model.common.User;
+import io.jans.as.common.service.common.UserService;
+import io.jans.service.cache.CacheProvider;
+import io.jans.service.cdi.util.CdiUtil;
+
+import java.io.IOException;
+import java.util.*;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class UidUtils {
+    
+    private static final Logger logger = LoggerFactory.getLogger(Utils.class);
+    
+    public static String lookupUid(String uidRef, String uid, String extUid, String jansExtAttrName,
+            String jansExtUid) throws IOException {
+        
+        if (uidRef == null) {            
+            boolean uidPassed = uid != null;
+            
+            if (uidPassed) {
+                logger.debug("Using uid passed: {}", uid);
+                return uid;
+            }
+            
+            //Find if the external account is already linked to a local one
+            User user = CdiUtil.bean(UserService.class).getUserByAttribute(jansExtAttrName, jansExtUid, true);
+            if (user == null) {
+                logger.info("Building a uid based on external id {}", extUid);
+                return extUid + "-" + randSuffix(3);
+            }
+            logger.info("Using uid of the account already linked to {}", extUid); 
+            return user.getUserId();
+        }
+        
+        logger.debug("Looking up uid ref {}", uidRef);
+        Object value = CdiUtil.bean(CacheProvider.class).get(uidRef);
+        if (value == null) throw new IOException("uid reference passed not found in Cache!");
+
+        return value.toString();
+        
+    }
+    
+    public static List<String> attrValuesAdding(String uid, String attributeName, String valueToAdd) {
+        
+        User user = CdiUtil.bean(UserService.class).getUserByAttribute("uid", uid, false);
+        if (user == null) return Collections.singletonList(valueToAdd);
+        
+        List<String> values = new ArrayList<>();
+        List<String> currentValues = Optional.ofNullable(user.getAttributeValues(attributeName))
+                .orElse(Collections.emptyList());
+        values.addAll(currentValues);
+
+        if (!currentValues.contains(valueToAdd)) {        
+            values.add(valueToAdd);
+        }
+        return values;
+        
+    }
+    
+    public static String computeExtUid(String providerId, String id) {
+        return providerId + ":" + id;
+    }
+    
+    private Utils() { }
+
+    // The idea here is to generate a random 3-char lengthed string "easy to remember"
+    private static String randSuffix(int randSuffixLen) {
+        
+        String s = "";
+        int radix = Math.min(15, Character.MAX_RADIX);  //radix 15 entails characters: 0-9 plus a-e
+        
+        for (int i = 0; i < randSuffixLen; i++) {
+            long rnd = Math.random() * radix;     // rnd will belong to [0, radix - 1]                
+            s += Integer.toString((int) rnd, radix);    // this adds a single character to s
+        }
+        return s;
+    }
+    
+}
diff --git a/jans-casa/plugins/acct-linking/extras/agama/project.json b/jans-casa/plugins/acct-linking/extras/agama/project.json
new file mode 100644
index 00000000000..2c5533497c6
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/extras/agama/project.json
@@ -0,0 +1,58 @@
+{
+    "projectName": "casa-account-linking",
+    "author": "jgomer2001",
+    "type": "Community",
+    "version": "1.0.0",
+    "description": "A helper project for Jans Casa accounts linking plugin",
+    "noDirectLaunch": [ ],
+    "configs": {
+        "io.jans.casa.acctlinking.Launcher": {
+            
+            "facebook": {
+              "flowQname": "io.jans.inbound.GenericProvider",
+              "displayName": "Facebook",
+              "mappingClassField": "io.jans.casa.acctlinking.Mappings.FACEBOOK",
+              "logoImg": "facebook.png",
+            "oauthParams": {
+                "authzEndpoint": "https://www.facebook.com/v14.0/dialog/oauth",
+                "tokenEndpoint": "https://graph.facebook.com/v14.0/oauth/access_token",
+                "userInfoEndpoint": "https://graph.facebook.com/v14.0/me",
+                "clientId": "<APP-ID>",
+                "clientSecret": "<APP-SECRET>",
+                "scopes": ["email", "public_profile"]
+            }  
+            },
+            
+            "github": {
+              "flowQname": "io.jans.inbound.GenericProvider",
+              "displayName": "Github",
+              "mappingClassField": "io.jans.casa.acctlinking.Mappings.GITHUB",
+            "oauthParams": {
+                "authzEndpoint": "https://github.com/login/oauth/authorize",
+                "tokenEndpoint": "https://github.com/login/oauth/access_token",
+                "userInfoEndpoint": "https://api.github.com/user",
+                "clientId": "<APP-ID>",
+                "clientSecret": "<APP-SECRET>",
+                "scopes": ["user"]
+            }  
+            },
+            
+            "google": {
+              "flowQname": "io.jans.inbound.GenericProvider",
+              "displayName": "Google",
+              "mappingClassField": "io.jans.casa.acctlinking.Mappings.GOOGLE",
+              "enabled": false,
+              "skipProfileUpdate": true,    
+            "oauthParams": {
+                "authzEndpoint": "https://accounts.google.com/o/oauth2/v2/auth",
+                "tokenEndpoint": "https://oauth2.googleapis.com/token",
+                "userInfoEndpoint": "https://www.googleapis.com/oauth2/v3/userinfo",
+                "clientId": "<APP-ID>",
+                "clientSecret": "<APP-SECRET>",
+                "scopes": ["email", "profile"]
+            }
+            }
+        
+        }
+    }
+}
diff --git a/jans-casa/plugins/acct-linking/extras/agama/web/apple.png b/jans-casa/plugins/acct-linking/extras/agama/web/apple.png
new file mode 100644
index 0000000000000000000000000000000000000000..d852c10925f8f59f5bb1579c832554099b2d68a4
GIT binary patch
literal 8171
zcmV<H9~9t;P)<h;3K|Lk000e1NJLTq002e+002%11^@s6oqb^G00004XF*Lt006O$
zeEU(80000WV@Og>004&%004{+008|`004nN004b?008NW002DY000@xb3BE2000Uv
zX+uL$Nkc;*P;zf(X>4Tx07%E3mUmQC*A|D*y?1({%`nm#dXp|Nfb=dP9RyJrW(F9_
z0K*JTY>22pL=h1IMUbF?0i&TvtcYSED5zi$NDxqBFp8+CWJcCXe0h2A<>mLsz2Dkr
z?{oLrd!Mx~03=TzE-wX^0w9?u;0Jm*(^rK@(6Rjh26%u0rT{Qm>8ZX!?!iDLFE<x@
zy2uIqi{1<YNc_HK=;=?Vga1#`tW>@L0LWj&=4?(nOT_siPRbOditRHZrp6?S8Agej
zFG^6va$=5K<fWf|7THnE>|`EW#NwP&*~x4%_lS6VhL9s-#7D#h8C*`Lh;NHnGf9}t
z74chfY%+(L4giWIwhK6{coCb3n8XhbbP@4#0C1$ZFF5847I3lz;zPNlq-OKEaq$AW
zE=!MYYHiJ+dvY?9I0Av8Ka-Wn<g@86Daol!UN!)WXZ|c1ac$|MB3qhTTUr{L8JT`j
zsQ<e7Hzn@vBE1Uu+%t&Q_lNDT{8H)wV9bhYv+ECA%zgkmwgMn`{|}qyApj&reQUq*
z#d&Drd5ISYQf-WlGcz-dxEz*|xS+r5e>(gPeepdb@piwLhwjRWWeSr7baCBSDM=|p
zK0Q5^$>Pur|2)M1IPkCYSQ^NQ<?uN?QADU{%DB8ZQM-9;u7I1uqjP!xsfqtE>`z*p
zYmq4Rp8z$=2uR(a0_5jDfT9oq5_wSE_22vEgAWDbn-``!u{igi1^xT3aEbVl&W-yV
z=Mor9X9@Wki)-R*3DAH5Bmou30~MeFbb%o-16IHmI084Y0{DSo5DwM?7KjJQfDbZ3
zF4znTKoQsl_JT@K1L{E|XaOfc2RIEbfXm=IxC!on2Vew@gXdrdyaDqN1YsdEM1kZX
zRY(gmfXpBUWDmJPK2RVO4n;$85DyYUxzHA<2r7jtp<1XB`W89`U4X7a1JFHa6q<s5
zh2FymOoFMfGOP_7!wlF7_J)JuHE<l92Is)}@J_e_u7i)k?eGQoI(!EnfuF;(2tbGk
z4N*f35eDLd_#qKUEW$@NAcaUdQirr4T}Ur-3mHMCk#{Hzih`n}3{kcyPgDqsg-Szh
zKoz4ZQAbhjs2<cU)F^5O^$ATzE1?b0HfS&ODs&t=6J3BVM>n9`(3jA6(BtSg7z~Dn
z(ZN_@JTc*z1k5^2G3EfK6>}alfEmNgVzF3xtO3>z>xX4x1=s@Ye(W*qIqV>I9QzhW
z#Hr%UaPGJW91oX=E5|kA&f*4f6S#T26kZE&gZIO;@!9wid_BGke*-^`pC?EYbO?5Y
zU_t_6GogaeLbybDNO(mg64i;;!~i0fxQSRnJWjkq93{RZ$&mC(E~H43khGI@gmj*C
zkMxR6CTo)&$q{4$c_+D%e3AT^{8oY@VI<)t!Is!4Q6<qXF(~mu5-+JG=_I*UGDosp
z@}%Sq$!RIPl(v+M6jN%0RF%{zsbQ&EX^OO|w4Zdcbg^`k^i}Ce8LW)9jGGKwCST^T
z%te_o3PRDKxKLP>EtGo7CCWGzL)D>rQ4^>|)NiQ$)EQYB*=4e!vRSfKvS(yRXb4T4
z=0!`QmC#PmhG_4XC@*nZ!dbFoNz0PKC3A9$a*lEwxk9;CxjS<2<>~Tn@`>`h<vZjb
zDWDYe6#^786%Hy~QkYhxD%vWt6bltkDBf3smGqSYmDVX8R_arlRaQ~<P)=3euY6H?
zT7{<KsFI*krgBzgN|mB&ugX;|Q$45pj4n%eq9@TS=solqH6=AqHKAIqTEE)7x{i8?
zdY*c#`Xdd3216rOqfDb)V@6X|(^oTBvsv@L7G8^?6|c2Vt5<7ITSq%gdz*HL_N0!S
zj+ai3PP5KKU9zr&ZkleL?rlAc9z!ot?||M-eOTW@KVH8||Aql<U}?ZLIAAca6us1X
zDQ{`r(qTiAp_5^TVYA_=5zWZQD9@<F=!LPSafI=1<6h%WCKe`1CiNx{Ol3@0nC6*w
znf_{~Z^kmKGP`X~Hg`AQXx?f5a+$$0&a#8c?pjbRd@Z(FbX$D1w6f$|wpdPCX<9{F
zRa*@+s0@EbG2@Cg+S=KAqxEU)cQ%$b0-F;yzt|euCfYXHPA=D3&RJf+e9TVWj%inG
zH)2n>kG4N#KjNU~z;vi{c;cwx$aZXSoN&@}N^m;n^upQ1neW`@Jm+HLvfkyqE8^<m
zTIkyECgT?3R_XTGUEMv-z1e-n!@^^o$9Ye*r?=;B&tWfRFP2xM*USp573){@c$2(?
zyeqw*_~`raeY$*M-xa=ld>^jVTFG14;RpP@{Py@g^4IZC^Zz~o6W||E74S6BG%z=?
zH;57x71R{;CfGT+B=|vyZiq0XJ5(|>GPE&tF3dHoG;Cy*@v8N!u7@jxbHh6$uo0mV
z4H2`e-B#~iJsxQhSr9q2MrTddnyYIS)+Vhz6D1kNj5-;Ojt+}%ivGa#W7aWeW4vOj
zV`f+`tbMHKY)5t(dx~SnDdkMW+QpW}PR7~A?TMR;cZe^KpXR!7E4eQdJQHdX<`Vr9
zk0dT6g(bBn<C3G3Pw`}UiM*Z^m6WWMfmDOkg4B^To3y=YGkkA;LpqecCcRTY75z;0
z33Y{Ag`*kv8C4l?Gea{^W=Uu9vih?1vv*`q<hbX2y$-dGwXQo?Eq8P7=z6F1wHu%f
zF&nx!YHZBkIKIha)6va@&54_T$TP_+&3nBiY)e<Za{i|Lv8^6kn+qfg_yxn;Y`4{H
zM{VbB@84m*WB-m%h3vv>MJ7e%MIVY;#n-+v{i@=tg`KfG`%5fK4(`J2;_VvR?Xdf3
zsdQ;h>DV6MJ?&-mvcj_0d!zPVEnik%vyZS(xNoGwr=oMe=Kfv#KUBt7-l=k~YOPkP
z-cdbwfPG-_pyR=o8s(azn)ipehwj#T)V9}Y*Oec}9L_lWv_7=H_iM)2jSUJ7MGYU1
z@Q#ce4LsV@Xw}%*q|{W>3^xm#r;bG)yZMdlH=QkpEw!z*)}rI!xbXP1Z==5*I^lhy
z`y}IJ%XeDeRku;v3frOf?Dm<C_>Pgz@Xmo#D^7KH*><&kZ}k0<(`u)y&d8oAIZHU3
ze|F(q&bit1spqFJ#9bKcj_Q7Jan;4!Jpn!am%J}sx$J)VVy{#0xhr;8PG7aTdg>bE
zTE}(E>+O9OeQiHj{Lt2K+24M{>PF{H>ziEz%LmR5It*U8<$CM#ZLizc@2tEtFcdO$
zcQ|r*<SzT}<h`VOFYjmEpMS9FA^KtABdJH_kCh(R{iye2>xkvZnNio#z9&IX9*nWZ
zp8u5o(}(f=r{t&Q6RH!9lV+2rr`)G*K3n~4{CVp0`RRh6rGKt|q5I;yUmSnwn^`q8
z{*wQ4;n(6<@~@7(UiP|s)_?Z#o8&k1bA@l^-yVI(c-Q+r?ES=i<_GMDijR69yFPh;
zdbp6hu<#rAg!B711SuW>000SaNLh0L01FcU01FcV0GgZ_0000NbVXQnQ*UN;cVTj6
z08nXoWo&I>bZ>GXGcGV3oVkSn000McNliru-3tv23mIuk#PR?D6!1wzK~#8Nt=vb*
zb!XMa@nelWQBhO`QBa9-rZ^B(6ciM}HVC4`iAF3F2T4TiCHCIC(Zmva@4ffl6+sbE
zXNu$VeZM>W4=bDV<c;~h!IgF2tKDl|d+q(~bDrnT?w7y(<^I>d{`JC7fBMt?FMjch
z{ZD@KlRdq4cI%)2{O6b3hhP2bSIhRB-~49(v!DI!5DR?i_yC(d|LjTUXX8hTDOdXT
z<qPS-UM@NH^Wz`?c*WDTXCr^~qaQ7qo?OI$px^%Xw@a2F*<lslp>&g^VzQHBpm+yI
zBowE(a^-JduKcrg@qpf*tutq%<*<hz{_uxO4}5>{gC8vW_rL%BL)@+gBrgerJsVU!
znVzhP>1!=sp5o~8p@Z!C&$#x*Kux=NfBoxU_y7L)zxTiU-S5_3V>N_eQf@jq*u{VE
zd*3_wAjdk16nZ}5b`mg>f@_4Xf;h5Ez-I5N+gCU{WUr~>t;LjAEdOF>j`Hxy?+<_Y
z!~Q@2`Op61i!a_k@PQB9pMLu3``vE0f6|klv}~QHG5%eB=OYFX%WkcX?|%2YYfa|&
zo$q{S*>(=5tO#ofIHhv{Hfu-`Kv&~1<M=wj-a6zbp52;%`Pu2KgZ$UO{<VL@8{V+L
z!3}P(zuMKVw!hx>uD8F@jc&BR;SF!NKmYvm*VG`QdgaorHNAYKTI9FRpX5(Y(smU>
zV!GfCh%{@G@3c)~tTjjG4{Ys|#aKI&e(FdQ_WR%eet)Ms-D!V~Yg}VZ$&GJ(<0Wr$
zlbh_XbDit#U-q(>EkE({bh}u$S2KI-Z1C-GfBQhn<%p@Eiea#(hsh{A*_vOZMiQhW
zAwRj<+2qXDS=Nd}?jQg7$NiVT{N*(vCIt~^oN>kh_Sd@Bwf66M&wG}?2@zXfXQ{KZ
z+489ezV_9MByc;eiIKQwVKygmdf>+v(px*I*bYDD*FL}2&eD)6`OIfNvz{R)q$vpz
z!~U1Q{N-?tJY8`OllIn{<wy2xu_wRvt#2(t=(FzxLrjweWD9g1o}7LPsGyn0K{XG^
z+v+NoPHdzgf%Hs?n25T=9qzFI$3OnDV!_#@CauY8r2qQYzkX<3ZN-Fde)F4$*xf9g
zqJT!+p58hsCOsKR8nowQU5;``0$q8WRX(=A|NZZ)X}1qjA_Fn)5p&(^UU&bZ7rp3k
z8)--mxinwyh|qL?HP2>RvRlK~zV@}to-sL<*q(#^#5|M_87aU=bLq-C3z_ls$fHx-
zpa1;l{bL{d*!|V7e)ZLSlj5fjL=e4+GA(k5h4RR+{`$yA^L)sNU`uD8ZC65&kTMb?
zB%6cSTTkSJm}2Rg5<c{FZ1T)WqVthL!%ay<AZ6Z4*S_|(_fLK5Q`e7t@fwnM=C)4%
zjc<Ho0STm-uYUEb2V$mOEd7oXAV^Z{l4_)2#di>2ei~~pmS6F7Af|Qt2+9|{vz&YG
zxvOc-HznI?ft%j+ru%>X^PekDLtRYGdXA{WIc^E(=QI8Juz%$%Us*9=EeHD|hEoMv
zGbp}hB<DAq<5yfZP@q@`k$m#!yCv8f{`R-Ot#_3sV@^t-H&GfATeHrxuDMADv`+GC
zV&tL+Yj$#1VGeSL24>=ln9b35)%ngTA%UF@QTFoDk@Rwulg}qV`N`GvB*Fu@X^E6K
zzVVG~x|}ITHInjb8mzne&ivAszO;1SjgaSDallTW|ACm2k`V(AP(XWun&79|h?0oj
zK63J@NH%M7Yx4lU;DQU*3mXFFErg)!U;p}x6dwzGaCDwn&2#}lec9xtv!AyJn>~E-
zi(fqK*&|TiT?K21fs>-Q%>bRf1Ni1sVPG#lazG65r!OC!y^kUfdeDQ`XQ1tmXwMu!
znm_#E53e8bvw68S0rJq*pr&h-&e@S6?(?7j{PL&EKT;Mkl;E(MhYql=h-~()i&t1V
z@{jCDnl_+Ugekb!z3#P$X<|%|DLLnybJmAMxy06_y!PT-Yf=qONj8!_eYUMW66tr8
zHZg8bO2}CQ>8<H&j4m?yfL!VLT0?Q<^tbkf)ZOlOw?%{rx#J!0xNa>U4ZJ0b`N9{z
zunLyHGkUg_w=2$WZ3=*nR4+u1ocR??XPS03C~<+D>?@pXA6fRr@Nq>o_@_VpX}w=a
z{(%pCVE>6vd}8@|M{&z&#J&q5pB!Sm#UjH8NYAVY;49XrXufZK>s!}b?}Zm$xTL-F
z*z=J)GVL`VA$0sBf^Q^#?sK18a@|TZAg8W4k`!ni?2)5r4^EA|{q1kxKls59-rwwI
zH(Q^GUH#xq_7=Ce#r|Ord)WTXZ+`RPI~ZrxL<BjHY$CiX`AOs%<oQ$1?HS;ibpQL`
zfB&v`y=&c`YSm~{Ag?{>)dy9*=$DTgKKt3vuJyW=6b76bIa`zLWW}d*s3~~*)1SVc
z4GMD`_z41@6Mo#b_ua{9r=7O^tRMNvN3J4FndaqlF~IbE{No>AFMNE(c*n7J7TG#<
zR?j9E!bLDa8Vv{n7XYk3{pn9H$sTb#MvO&9Kmr>=*t?>FHRCq%nWb;k6s5RHMwkr*
zBx>NSv(8%NzW@F2-@p6a@7_QA+0WkJ^PcxyHb7=XoP?RzPq3tT&n`sksp-)dX<|qh
z2<-K0y`C{OO({4+1W8DbQRKO89{>2qABwJs3YysJ=e~vz<W`FaFdeS^HZCICZ}nTd
zi_!&%41H)^PbNiwB%7B^<nY-s2tp2pJ((_v6wii-KJ=jnQYv8EK>Lc^79FAK6yJL0
z-Gc3k>_MI;wJBD!i>^0BAm>w``qWyxZRwF>f4G%2jxlH*DVzlK66SzNh=5~-9cwgQ
zM5ND$lrI9p%r*DhymOBjQa)?sm_!eBKPgR&zD$W8n-+udv5$RhziXV30NqY>-FrUx
zJ>@A+IZ6stSg1fvAYtxnjNIz8ZLzgYe{cr0=TmL+lgLs3*=L`<E;@2d3NlF36Hz$X
znGT9>A4J$k5<MSDy9zaQ5;0-kB2dvMt&cT0vDN46c?2__Jz^r|5s!Gpy2u~-$VV0d
z$S@sAgtXuJPt($bc%C2!t9~Tk`qsDJU-O#RJdjag5mdoj@Ht68ZS89;q<41BPya0;
zGmc;NA>|p*c*gp4uO~nPiHMJW^rP#u7_#g?^q~*!cahP9sfUp9GBK}u)vGRd3qgg2
zS#0~MJ83`lb6<l~mwu}|3FTD#bD#U%^?syrz3OcegcO9(BZ+=Z3{uFZL;}*!f8UmM
z5X=clx5d12b6;Hhz{iz0853JSu_sN)JO`STM?d<}>*IxnHQ$7gZmDEI68jDbJ(aQ7
zh|&3FmgEYW(-J8aQN!B;+h;!sGX^55eSY*aE^PhEam!oYa=rO#Uc(yKo5uSb=eB`J
zf)9T1gO?H0lo%zW#>q2hzO!^IRYa3>jEMFpVK#6KY^R!>8Q-~qP2K(gK%*Mho4zzn
z*VIIewYP76ix{_%4PrP0qP(|AULj4)EQUUL46a&Nxj0DQej7)JkQu+VZ*@>D-dFB?
z=R2=2wjxDeO-$sNqSkDD)9onTK7t!9Nw60&9atlQeqw8{U~3I-CtyoZIB8OXm}BRq
zQ}-)g@ru=lCP@vuee|a{(mq^z>7~nugk3BOMh>Ir%afn{<aIz-%%QCV9oe&ITWAe}
zt2i5;dA4yA(?0z>`<Rcqy{{l8Xr9zGQb6yKLL%&a?|a{6#2|wMVoVPQ&zFZh<RJ%Q
zx<ajI5$(xI1R$digkYVo*scFD@NZq7(D~KI*Qb4-&V4A>WD`>3O^Z+RblKng-uJG(
z!MNm-OD>xjq;wnEd%?TQUGB0D>A<egMEZ)H4MD`@3)Yk5V+|M2f7<2BmVV~r?_xgj
ziBDX8bo-cqNU=r&G#!8p{nMMQ12F|tdPBVV&2N4<yr#BL5IGB<5Km5@^07_Xx-+45
zvb<aSTqDL?t|sR*L&M}G>YeX==jyj<@p|IhKhv~pO1g~%`H<z)Xoq&i$+;%kCkf=l
zF&#w4Hh%iECG*?b<*+UnVxITB=dGSJs97Y`uyxbIW*s64c37nlfEWSZ6f4Ss^LBx3
zVO#JP*~LxY@=e{=-~J>5)0e{<F+Kw5qYE7Y5oOJeEPd0lxt*+GCpe}^0lt5&NQXy8
zh0bOm-!N^{UUTW>hUpWgj?Y#%*VPp<Pk6!;)~%#L&1xD!dh?|{otHnd32|FR7P)J*
zND4`Oty#exy2Y^~lfJ5)$S-21?{+;w4>N9SX9E{Y&4}^F?!{GK`q4BJF1qNVrHd@G
ziHfNFcgWz}v~V;repTUcw-LD|Xck%n+kM2e-p19`)NR3blFwGxd45Bnhj+Z=9g7T8
zK)U#v*1VpP0d(-Tx4muonyMYPkb*6eqpurofBW07AJ>h0#f1u+>l%ew=oW1Gl-K$s
zbWS))-`S?d!&grl)@%e!nH^E~kw~|rj6o!s8b6`>6-K0-s)1v+3XYKW`Tk$?ZuQ;%
z>VC{)9&@-|On`MHAfVfajUMRP*TlGWCUgB{@(VEsDBPi^Y5*#D>vwEYpojVu<z?eD
z(HUK|raHZ|d`$68fhIK^0d6mA@C&&)CGe&<y=m>&#2}^-17!IdxBq5hCMvM~BnE0E
z-}GB#>-^T`pZffZX=*%I5TGv&M^d+!HL@awe9K$jvfp*DA;?-lx0K{P?JKAvt_WKq
z+Rws|`E9{>+x(o2F!Q7nqka!m&HBavTqDFEA|b`^#_c^$kix#>h!9NnRJQgtr^F7c
zI0shXM8!<ZhON_ipda(I&OgviVw$pTJ#x%E`P2Do)=R8u0MmnnCMU8GqIY}x^;3yq
z0*gLBoq6V&hXZFJTU1y$$-dP?jU3CJEznJQQa$w9T-@8<_O|P%l-^7O5)ee{wOi;l
zuX)WPhHb}yy%^(Q?>Xa(<T*9lLfUJ(VkQC8o<6^cnzi1>W@|l>PkHidpPwo9Zlf=c
zj7f^y30Z7zDK_Nn{D%@LjTQ&G#oYfAvpqP}aCVr)Z0+s0U^~|6d_ZTLNLQZpGjBfi
z;V-rP<bD0?U%$xFD<H@o2W*!khC|OAljAw#9&Kv2#m&P*x|8f%<P$NlJ%h|PF@5se
z?(>!3UN5)1-R)NMJ#)bNb+3Efl1SPi0Xfjar_sXR!yo?e6Q{=E=_k@}?G-$AQ(q(9
z0yQ)3(}$dO<YztiGsYC^2MH!bzsLa37^JK_Me{kh=US8YAki!&%pyXCRMf=unK9|g
z8zIMt$^RHJ$1vka&zsxa<~Hkf1OZKsyTv-}Oh@Abl#zop_v2mfde_6$NFI(AGz(G0
zMEaBBA_A-@G5H+BHrE!@S0Cq{ciy@y^cp!Ph<xp9U%Mt}J!25SF(9gY&&2r4$Vp7{
zSW$HOAY&F4LE9LZx%foP)^=4Phr0CP7XSz_C4M*GZG;PQO^hkwK*<?%-D^N^>~3|d
zTOG)$(e2^ksx~t7w!W&lwvb2t{&G}Ldei5tU;XL@WZ3K9e%(rqlmKf%jTrEG+S8tP
zIbya4AH!_!%EtVEV0$j89lW3EPxA)B`jxMI<st=|q{GA*ryQG@p4_C@YA;EWci6F_
zCc1U5>@Bp#l|5&R?YaFV^1CvRjiw^_t)-p~fm>_+=?kYwXj)=!>Pi2`c@ncNdaK(O
zm{0a_D%~;r6`}LQbuRcKuF256eoRYbq^H|8I>6DsTL_a8gIO<scfb4H7dbtAXVH@Y
z;CBpc6@5hy@nh>#LH=^vThsX(MGu<Smp%ar^oC$g&#q|z<ZvKg{_>X}CPqL6`q0_o
z6N)%SOu8_2<;j1G{Epd9!mO<`{4-?F77e@j4FOU>uT4smvu-7eCc_%6IbkqXWAmBM
zeC9e(A@hpY2+&OuCg{U#Doo$<<XgjApY(IhUz}e*N5V^A`qI_cOJ4GlB@v`2Hj*6{
zF_8cf1*RlDl)wY*-uJ%uI`mY;oC=XKQT#TKJxMo_y?r&%`7>O#BY@O&Bp}B-nu%d|
z@qyoAV%#<q_Dx3jA}P43A${9*(oZS6in}7z#3Up=$Wy*6gYp%7zx&;9ea)a|Way!F
zlM^8?e({SBSQ8T&Hpl>uh%!kLLLajdH#xJY{}!fA<JOay+1ynj#@e6Ydc#$(-m1Ne
zi~tkEme17f8mk%>h%98#H9@g#U2=Y)keaMf`+1wCpZj8Fb3udCZ{|-YmyZqQr4#E9
zp1pUy-~}&Ob({KXCn1s$!G~|t!nP(RBD!rNg%oJbhZH=MBCgL;no(R|SocK}9BUx>
z<=%bod*AgHhd*h*$35<G_~*nRSMk>6>Ac9|>r6j^)Cezp;R{!@YE-YDtkqBQp||Gi
zf<OQH&)@Gja-xs`IVCMYYoypu*2Re-6|Xo_fn=D)gZClve#h*^%SRBCOZt+G-g{Gj
z*%cyZ-fqGFfJbb#&W7!4n%;i)#K*<AH$CeG&sA3>he)#LhyafECAW5f#MUIe=hA)d
zbDzr<JK^`>k9yRj4u84i?^xtllry@zq<`<&751f>{~3no#<9F6&L0c;CO}>4jFg(T
zcE&b8y?qeRXFX#$XiUQP8jc*&0qh+tn4YhF{;s;1$35<G`v*MW0qfr=`mN@(p7pH5
zPl&D>v@UN@xHB}Pcy;+a2T1T^SWGXW>@_d8e@H5KIrz6u51rj!>`tLIg&f7u#WX32
zWbAZFNyL$K4iHZw2NWy^J&2R5rWIsQ`h%Ycv6rWFE1F(C#n)`UWLI83GMza2t=UK@
zw|d$2wDTXuM~cxUK|>0GigHL-rv@Z<ThKv;inmt~AM0}D7qQtZo}V>aO<1#m9OcU2
zI-g{9$pOwQhnVW%H}foFA|T1JqOeF-7&}5F1j%ZuBC}88z~Ox4?woY9!2IP(FIP?0
z#5PXj)l)4bY;}CedP*-3-7W%1!4Bd$rzIQE3pQc%N_KGhrcO?<moGi3AimFe&U2RJ
z$5w+$w)Dlc_b+eTi&r1G=yahopxhBrPR~NVJ68fYDq6A#0SD0`LNGs&uqHYPDfD#t
zve_e1Vfo8lp?r%;%A+p(Nmh+?#qFJwjh+NePCwF_eChL*uiES{yzs*P{{Zo)?V7}b
R++P3y002ovPDHLkV1h^~L0td<

literal 0
HcmV?d00001

diff --git a/jans-casa/plugins/acct-linking/extras/agama/web/email-prompt.ftlh b/jans-casa/plugins/acct-linking/extras/agama/web/email-prompt.ftlh
new file mode 100644
index 00000000000..67ff370c0ea
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/extras/agama/web/email-prompt.ftlh
@@ -0,0 +1,50 @@
+<!doctype html>
+<html xmlns="http://www.w3.org/1999/xhtml">
+    <head>
+        <meta name="viewport" content="width=device-width, initial-scale=1">
+        <link rel="icon" href="${webCtx.contextPath}/servlet/favicon" type="image/x-icon">
+		<link href="https://cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css" rel="stylesheet"
+		    integrity="sha384-1BmE4kWBq78iYhFldvKuhfTAU6auU8tT94WrHftjDbrCEXSU1oBoqyl2QvZ6jIW3" crossorigin="anonymous">        
+		<style>
+			#logo {
+				max-height: 3.25rem;
+				margin: 0.5rem;
+			}
+		</style>
+    </head>
+<body>
+
+<div class="d-flex flex-column align-items-center justify-content-between min-vh-100 w-100">
+    <header class="d-flex w-100 justify-content-between border-bottom">
+        <img id="logo" src="https://gluu.org/wp-content/uploads/2021/02/janssen-project-transparent-630px-182px-300x86.png" />
+    </header> 
+    
+    <div class="row col-sm-10 col-md-5 mb-5 pb-3">
+
+        <div class="border border-1 rounded mb-3 p-5">
+            <p class="fs-5 mb-5">Please provide an e-mail address to proceed</p>
+
+			<form method="post" enctype="application/x-www-form-urlencoded">
+				<div class="mb-4 row">
+					<label for="email" class="col-md-3 col-form-label">Your e-mail</label>
+					<div class="col-md-9">
+						<input type="email" class="form-control" name="email" id="email" autofocus required>
+					</div>
+				</div>
+				<div class="row">
+					<div class="col-md-12 d-flex justify-content-end">
+						<input type="submit" class="btn btn-success px-4" value="Continue">
+					</div>
+				</div>
+			</form>			
+		</div>
+
+    </div>
+
+    <footer class="d-flex flex-column align-items-center w-100 pb-2">
+        <hr class="w-75">
+    </footer>
+</div>
+
+</body>
+</html>
diff --git a/jans-casa/plugins/acct-linking/extras/agama/web/facebook.png b/jans-casa/plugins/acct-linking/extras/agama/web/facebook.png
new file mode 100644
index 0000000000000000000000000000000000000000..6f2d7a0f1eb0511012e8114ee9805eb67db29f7d
GIT binary patch
literal 4822
zcmcgwc{r49+rOov1x?77<(;XBCo0v9tkq2DDU^^HQ`S-pChNp#V=Ph1mSJ9^6cIDo
z8I>i%4B2;Mi<pUFWDLH0>UoaiJ-*|4-}ig|`Tm&Wp5r>N>pZXXcP{t&yCW>jjK#Lf
zZv_BA%+v&V0RV(hg5QqK;EKi=ObL8!@iMW+0l+p%!A}TyMv?^=Rh&#NoC5%lBmlt0
z0Kkeb0Nif}fFKG0th)igK|280@xX#^lMVno?M;y<E(Y|@3=nR0EC$!l`JW_?z>%Vt
z?ru=uh)jp@QJHO*ks?nof7|$2=UZ&{?iUGx_HMcoxCHezrbSj>mJ+J*_~iK*4mFu#
zEu2Bg&hdDx{*EuY<3jtM`;YEB6Z-Kfd+%S?FpTT3A0^Wdsfx`>n+NkMONX#^H5s;)
zME%|2Jw!+ZZo0ij$J>#)JDLAuu3ojpp;FS#+8O{dv%<n^Y^{<JaI6`Lee*0S>&8wu
zQ`7lT1@SI_AL6~-8-7fZwyO7FKrmA;xI+0jP)&|^YcTkh*f+mhSJT@e==x_mhGyWc
zx$4QZFMxV?b_Msc_iz||vF4=52snSAx90jCqm2M!=hkg@+%9ZLJmMuCaVEW+;#PP`
z*_=ezdx8j;So*jDKs+<k+wYwh^1>xQi#PlB0dtsNv)rf=!I{?y0a2f|ecjcWd%Xu2
z{+kr%3C64Wa|EtQ_PH={YtPHn&cexg!(+0B`=l%r)yOOKn!pbhFi_<DD(&~hf%llW
zwIqwP1Bl7?FVR~8Msg;PH4HzaXQK9Euy)3OhY)bQ_##{Jhvt-ZdQzDLb9G5U3{Xkc
z^CEm!(o>PLgg5%7C;*`ganm#%ocPYjSE{c7;8B`qNtKn_E~!0c<`;wj6YS^{eMF&(
zTqK6%C<Oq|&Lzifuf?g#3j?99l612$=BEu#0KmA}{?%Dcya5j8SaaBz>Zt-7tYA6U
zjqa@G>LMrDjizWn1OOwu`%nNl2?2m~Q6SV}BVeSq0Z@?=0(L|KfGC)#e<A)qZu?Wq
zpU*$Fg<B<T0ZdfU^M@1N4CD`GJ62EPH6uP@;NLO4-=btITp1aIvB(8>Uw%P7lPE-E
z6=xW`AX!ntK4s{gt;KKsO^bD5L7KBw2IT}Ky=OqinV^x;H>)#RHYooX-Q$Z(j3=+H
z^kD`AtiHrUj=saobS54lRLo7)u^#55X7=}&7pyT8$U^~E$aCkIoEuuN%ipCR&RBcQ
zTVB})eLdMB)oF!1(&X`#wtk2BtgQFJBHg&%Y#{MRg^L)6D}%g9&zHm4K+Y3fPOaC8
zK;7Nl+1VNq*{_Dm->xkapN*02^z&bMVFHnh{AXKyr6Kr<j_4eX*zBeu?dwAn2p*Gt
zAX}M5rnEqv99wgHJ}Y^;AKnBg@*3;Q(J!1QkWx4G=L#zNV5iqtB4j4wQKbIW`=#}R
zyS#mt(s8ksM;$NC4cqa?k+)1k48pBH_OGrgBqA>=VbD~pFVZDsF|*eV=0{#S-#n-a
zQ$Nj4qrCL55z&c{Wz8y|4_RcnE#(q_sH{96$8(@(9MGK9A@RcJ78^s&=e2Tc<+KkE
zMyn<1&$J1dqey}55{FY;VRiWiE(61dAkWEqQyCS7r~F-FpFjWF-;+qdCM)(f6GD@L
zQ0^WMv*}qh1!{or_=*X6ah%DQZ0QYXdrHKWpG`WxkU*?rFY>;T=844Y7$PybVSQx2
z`=&maWw)TJH+fB_!Su)^1E2Za^GhiE?`K;XPgaZ<%5~<-@626Awj+_qh<9LSGPY#p
zNtvn35#GN|fokfo?q(bsh1Ja}`%Zd8AX>;1dakMhjX|&cWiW_Uobc&>Y46%XIgY`K
zMa{6Ua1@@_&9t<!-3BIg>ZR%CeHhsgF4mkR@4Z;873jwACGs^ythf!)L=6~|<F_GQ
z)Tmc>aa2;PQ6s8k+1SQGdoF|6>XvpX84iQ8C}Lnnx1EX28t8JHL^XX2T87g#A13*+
z1NFB#5I<caotN7-D|`|XO2thCJK@FlN0-c&clC2h{b8H+;&k8C2SW<FkAc-;qJfU0
zB>460IF$d5giS-s&&6-COh}s#LY^fOwP${*==Ts#SSV9xlFdu6SIZbitH~bEy=s((
zR#9|$280rc1*MzVic7a^mWIl;N0~l%L`6}dRR56$Q{mHt(sNhHgxmhTnM4B)etcrA
zZ`1cSZKK|@g}QBq_+BvxC((Y6*CT<d>CGlOmV@0u#bdRZaJ$rQq@8$UzN+lXNhhSe
ztK>gD9D+8RNK&+txJ#p+5heTBIYZ=w?Mh%jFu`jZ`mYVPIzc@HJh>U#`Uf_FfslHr
z8$86QhkEYk_mQPsK>e4-!9JKS`lv1}aeL`MmMVzYV*_um&wqg=%eb{WlU!uLAZNZw
zOZ3HfHO)eX0=?eT&Y=}rovs%z_OR{=d|HSvIOb#}WqjMoZElR?lS0nj@cnwJzPOQy
z|J*93|LDXt(Uem^DL!ybLZGYieX{Tn8!hX-8csPzwv~fGO09+NLyhD=Um_iXjW!dp
zBzwNZ6LR#Y27OoiPL7|DxIXQ<DC7OvmG^=ATOEk9DY`yiR0MDW7ufDqtlrNFB=1-H
zp&#kL(*ebrE{Ccy<CkpWSG-ex-0pR@*lwXbwGC9<J#`+Tsw<9|Jei8YHOk^aP(w3w
zxP+{!1zl*_F1G{C{a1cnknbzZp5~a;Y|5I<Q=B8|gN@jz&4yg^J<U=ZRyO9MNe}n~
z;^2v;#^#3Dq>#n2j!m!`A@E9ZFJhnR-DnSn^u(j#{<hbDsf>Onmy>~T<aInDA3!uH
zRku!>*#oo45te0`nC3&-ez#$CrE-CY*FtHAD8uaRYT#pkxFE}1|IEWz&L7&-;XT6F
z3@aA4dp%9{9qJY|f*^iIA8$qv56p&ZL;}V=nS^I=@ky$A0_UE#my_tXJ!amWa-fJX
z)&i#FhShWeR~fl$DNvt!ZeUp-hYR#7+eit;#A%n2c$9zG^a+7ELOtx)`$>B<+ED}y
z*Q2Ke2&dC^DG(<I`2r_KDtJN*jE2{JF^v`sLrXQIOF_TLIk5+Zo=LgvZ+FV225(uU
zM_s8UF6~-d`#6w@x;b6y+s0~z=qj(DVo#ew%2k7@SavK-UET0gKki0NTHw(KzS7N@
zm+qXjH!B8C=3p+oJmS;&Hh+77`m&5f_jAgAjRP1P-_tcw9r=~isY0R+ZOwW-VG)AW
zUujX$4cXm#u=px(Z7;;z-5#=pLe^}7K<3`8FQGiKb9;-!4kE#<3xCpLI8y4g(pb~N
zl=%|kTUS&JvyMii7bc=0`C36M@89I3j--CMW&2wcv7e|GNi1zOjGTF3v2oZOQM$4P
z?D8GridNH+BbD|1@2!c6rz?1^cB)ugWr$X7%cn>p4hkWHjpIjVn6!ighzrz#iZY%b
zy63RmiPwfz;ihR0a~v!1-S^IFaj)MAwGCdP3zvpGkX%d1DtDn_YTv=*(W>EV3qOkU
zV*<RooccQT6k9L$Eu?9LWo|337ebueoUeGx279OVs-DeU+p+=<rqn;*U37G4oj}8h
zg5f@OfG|*vT?(ubpB;EHHhY7$`e8m;D;7colQJe$h}MYidEO>IYxU*si;hE@%oZD^
zH8Od1k0XX%Hmcy-w<%q;8p5DqX?3iqS%$;vk(`CqhdHogF?d>@W41n+3cF9#JG3vg
zDSez}u=ZfxI6p?|{E>$P6JU9GNsU!?tG?{p>vs)17{pEO^3#)>TN!a-hm^D^fw08f
zZJ+hNhDoD2H;4KAcZ20#-MYPY?*N9*!iIBQ2fBt{_f`ywGj_rIHzQ8|oFsI$pe!m1
z{}wl@ocCtUw}y)<=U%LImbexrNc2yKlwGl`LeQVux<Fca$p=Xv@P<?oxhQQ{=Zfp$
zTt`d#fhT@40#io141Lwfm^{lFhQreXy}p(mKDuCo47K*#o*R(vUZn`0G}2Jkw^%$e
zYyC^|+Ge)2+%x@`#45*q7aNxY1xrIPfBm4eSE7skXbK+pKqZ~iiAS6I*angRd#3si
z1Kb~q{%Vl>H(LJPI7ro&lZ<k0cHnwhKG`4ov@Oxbz#Cnl82WMY&0Vo#ECJ4}6WT^7
z<^|%ZHeeG3jQhFC<@2u#X9adH_jH!vu8jxjf=-267ty^?=fN#h>Byy-vRCe<ir_2R
zNW&$naXs&X+E#GO)3DN&6}V<Zb~ayyGGUDu9LsDkPfgi%<c+7in*=znKH6G~8V`a0
z)B}lRk<~ymy%(%6SLMxb|HBNSK^g__WLT>WqC+S{=cPbYMY<=lCdK!D-Uw8WSX<iR
zje|{*<5?ZFH>s|%F(0H+!0_9?km5e3z+%x!@7BC!r5;sKwfOd0x$@0{#T0N#MpPGd
z>rm&<{W8;U`11~mk=p)>s!|W2K($cgna^F;r3A<DQG-aJ`YLDSo0X+IHZ~hwf;Czl
z;C{Vke|{q%o>G{o7l9Js@cv;Dc+RLV9r2|+Rq#(ipusB5MMQA@$Q4xqCdcCA6KK=T
zzk$&nj+H07PY+Tx9VhD|Z{!d>egZ<h(Ztfh2N@qBQE8b4ol4+FmFp`R^UI!5Fo6da
zeoLB5=08E`4e?**pGg;Bc3DGX@vDKr&gNf2k8ox*TKGW*=;)8<JaFoj-v(8$yM55j
z9Q!K{v)YncI`E$jj1ms+GI_up7>8RKxc|KEnVt-^C-s29Ak}Fi@5EpY^p|n-Qq@8M
zs>e<iQ2EmE-d#VVVes*Hda5bN2|~?p&?_n*_>M#3u~xCK!Em(v42R|K1BMX6^*+SN
zo&1UPRlAwp4$ChTkEcXOpeU|d_>xx*Qb4%P)MpKHNnW@3EULAXqP3o8-1MG27Ww~8
zaQ;Iv3fL5gz~3lF0onQ++)PkvV2Al{6z*Ru|8F*kzaWJFs_iet|Aj9a)r;4LZMGE9
z(<)85NUQid0Qje^ukT^0;+sbW1h(krxiF@#LNw?ZMNA<s{l~ogPcnP!++nHpoEng|
zAJN!v8paG8`<+e;7*GR%shLG*i7HBZN3fJ~P&Wcx$SoDId%zsk*g45QCbtEo-8av0
zha#m#w$$><Y68DB*KGhPDSW8EP(*?!O6$mxoNSCgEew2Zx=@)oO><S|<W4fbNlt35
zcM$;~)$}zxubg#-Ja;HPDTq3RBE%yI>s9ALhF^G*p2f>6<7sWLefp-sn14<W?p?K7
z^cWPyU8H3Nd48)m_@KjivMSUUhxty5h~Pv>pB4eG(Jxf`aeEHnS)(p%E`%%7d#7}4
z_Ov8pz|SQ#cDNAWbtKCZ$H~%qH}mcut>!lIRKYv9G&2(H^uCsyssx1o)Fxo~dyrG`
z=QVZNc!b1l8IEea?=@O$d$4~<NyWIW#UsSav!*0eLt>usK0|{&hTh!iRDMw*pCJ^w
z(9U>-u*@I!93&y&o_~IvVV>2GTxP7$gaF&ij!lY3Vr;>0Qh+JS44HTG%H96~^<p^`

literal 0
HcmV?d00001

diff --git a/jans-casa/plugins/acct-linking/extras/agama/web/github.png b/jans-casa/plugins/acct-linking/extras/agama/web/github.png
new file mode 100644
index 0000000000000000000000000000000000000000..228b09acd4249ed0fa5d53891e819ae1be108358
GIT binary patch
literal 29968
zcmYg%1yodB)b<^^8$l6iDQW4H5TsLDIz&of$N@$|DFG=#hL8qn1f)Z{C58?G2}ip7
zyYqhQTmR2mEOh3cd-gqdpJzY&+51FlYbp~HJRkr7fcS-qqAmbnfd9k*@NmFC$G(%7
z;2$hc`4{?l;13MXHUj)VzPpOCCjbyqqJJU47X&Q;Faj?WpXvJ|{w?|;%%I74cW2`D
z{$(X2<L~0JDH2{W%FFo^l1E07WUmlNl(Uey3Q7FU4(fgDrI@C($u5zbOG;yQpQfwh
zEjG>M%apvPP}WcJUOpmBVQlm&h9^tVk-a!p`99=gEh4}zV{=U)4*!ME)SznPZt>_M
z-bh2`n*Ps*lP@YmANKndQwgVL^PbX$&5~u5Dc0bB(Us@Hp9;|-eD+b$3162dihv9Q
z4|j+{E*|i7-#_S8vPE>*z+(x$9<B(ykL7k$$6xz!W5Q3=DFXy_Je7-Y(I$ddeon%n
zNScwXJSmU)L%4yE6sRU~FGmc!I9AZ<Nekn-mvCe~&nx6|=gKC0;Uz<R1R27-t*(m2
z=@5fM$Z&u~!m(WVKmC0Ap_$@5Nx=qo@0_;aA&IF5k3X1jPo<XuJ${5@G*2n?F!etx
z6hC`GNA*4C-7GTjJypnu@XAm;N&K0w?Ihv5>P5RV%RZO9D;o%Cp66TiU~Ju%=99?*
zc;?r30v##LJZ_-W(mexes`wG|!-9$K#cLK$w;_Bt+PR>!T%^@V_d8NxL}Nbr*<lR5
zL-oFp!ATmHlwQOL&ym&<8*3a!vyOo%dF3aznIBoFOPfuUi1bGc07CMe@yD`3{nyF-
zP>%1RU%4UWRl6QqY~p~a(rX@}Mf|>uv@&VavTq1NA@J&elK1aRsD`(JeP=e4ZaG|d
zVrk6+5#A}mwmDHF<`W<Lkl&A-m!w=X{+Jn^11ke_*U8+8EI)<6C7;LxG^_16Z3AM1
z)V;J=(u@t1QIhf5O@gM4xTU#>npI3Vw~!&u_8-Z4;cS}tEkfWgklWcfkft5sjB!v_
z;_=2?=TOtjThl~Y+>lEK_%V|nxN)KO*fWujb&L?px16DLGxj-SDA8@LyxTDTqR9C2
zNj5amvwIyA9?haDT#L|pV20EA2gtOdUuRbFO5}IN{8gq<yg+Z%7St)x-ynYoY485I
zY9L(vrC;rtFFt-7S&Sd@1+R=E>(BNbxqX}R;`6qf^j+VD#{LG_1+c>Wt<?|eFaMZN
zZ`_b$OBchbEZyurnL6Ge-+h=~_=@t?WfM+WA|f510Wix$e7Dwc^77cq#|Wav<byL*
z?KyvZb|QkYsBfTil-MicV_z1ENaq4CJ+J+)pH~y9_Gx08W6k3(Z?E&k^Xy|GyUQT&
zh~OyP=~yEgaUUsg0mf8C>&xGd(<vUS+GoC5TwBnOw2Uwg#`r@g6o_)gWJGF=NN11&
zy!uX~Vr~$%eH`k>sQbf6=@II7OzoSwuq{L7`V%Qj`n3fn89*$6hljfOS)&=goAn9>
z923R586`*MPbX*5&s%g+Y~j^sd<1DvD}J@)@1)f3_HNaQOtWhDZMiL0K>H;WXR)%a
z{>=wyEVmYDnC_aF9;!R%Smbfwr{FmsJ59(!c^IEV=)bsYd!_Ou7~sw(Q2({XHRRwi
zWT~Uw1NCULQ~8m>J`H?fv!(@gW-|Tb9Gr~W!2GA*U^wMnHnX9C=UiiN!+s(;ye$$g
zlhF`to(26F%?B=*PTqrgUj3B^j~j^q(=#!eXBeLtxKV}GEvUWkv2PF7K(}I56|QYl
zWV(y%_*QCzh$e*WKK_cTxj_ZtwH3g*$-tZ3nwW5nUr|<IZZ6^Ory<2hx|4x<09L@8
zcy*a6jrvd)VD=q+<MyuoU;Z`@{1)ZjzJk1R&R8>RAnO1=1r-$JoVH!xV!9T9&o)tS
zs{w8FKQ8O*zv}otCehna%{D{W8EpF;be|<m*GBLfy?S2*jmDQtINet_ozf%W5vx{m
zvYEen+rn;d1yB!Zh{08)eDk_k#cpeu^_tJ}N#)4f5&CGUqJe2Ul!wL7%M(hZFz*6*
zr{1621;}Z<a}%5t<6g1Ng6E3f{2_66ms(f%+&xDcd&3h+f!(5U;<C?}$8MGq^Nro&
zqC(7D#M#p%r#``?L6_M94;X+2tG{37O$@gE0UDF~A5wUau_SP|#6o+Myv#_igg*-K
zlTg3&$j3<T(#8MHWu-5eN3f#$PG3M9-<|C`MDtVrSO5@YSm(1ykL2N%0<8i_7Si}S
zuHP~@<J|5sOJS{H_(ik_Jewi31i~P4XBZOM*)0H$zCgBWfbw&{Y)9qL3gbkToh4b^
zhm)9*esCmaDsFbB{$K2;aqs*&hB3AIo)F$QGfcWCDipQH?$K~2-5Pk4Ri=lK4$kHC
zJQ@Bru_kc<kz2-euZ3#OlBZFvJbV0)EGGl&ALE#&!M`C+@0epB=`cLL#Sw|C5OLZ}
zDe2xsHGHo|iWDwKPRzn+OHQE#<i|hC&$F+K^+nF`+fudtjv(1EoyMviVj!?nYnxjJ
za$2+Xn9N0gO5?$P3c&`w)<WBPhlh*`_munYi=oJTZC7o}{DgAWE!DP4ea^m6#bd2d
z)222T^Ht|_K>NKDok`Y<uDju|DJ0JUi#X6iwp0}MF|SdeNX6NI^|r~!__I=fX$@a$
zBHexSensx&E$4UTVPnRv*4n-p3-oeJ!ZY&|E{m(GgSc?P1ex5jM<KzOTf_U9jRf*=
z7pw-#2Me5EP>*^j({JRTC@DY(4S7C?Nm1sEhK$$XdGMxEBCQ0n2^w^aZeRNjN(YqM
zn7szgdc?7~5R|;W&oER}9~=3kBdl^sLEa~1T{DAd_u*XCE;*{yLnQdmfUS3FV}?E-
ze7q)U9VWZ)zM;rUNfzi{S#fm~v0ugR>I4HK8uV>?(-be2&R+*kJZ8SnAEY(lgW>Ps
z&AN4pD*Nz=JzZjix$hk{#?<EJ4OhWl`_6~A(7LuaHPC2oFcPggft$-~s;^CMUxuHn
z%#&H+|HJ4Y@u@8}5ojrEUp`hNRmha3zLBU>h^5*6yG#vR+1TOq-ZD?K-xmOxLh*Z~
zu<AJhrKm}LSO#!)|MCs?;upPEmpr!}SJY!eDNnjNRL=`O<{ULh!{n$)YQh!c4~dE8
zTBJl5bqXmU;4vO0T>LBYlUB&S_xbWpRirc4#Hju@@?YndreCw-uQS%2SwGiHho<pj
zuZJ_5;kjEbQt9TjZ@!@rzPp~;7%7Fua1$-7bSYL>om^<c!qYy3h9s<N5wt{Nz+`Lk
zo2Dgt!?j9&FC@aF49T{+pEctI6%3J6oeMo%O4;6Nm}>0)Gl~n3kaTBj>qkMFXB*jI
z>p>iW7Rjx9xIzuvMdrV}RjotHwG#|6V36yULw*9-2ctWtn*4zF#_nOnU2bfpzRi3%
z(5j@UR%+TQuYZ|({+Q|Zb_`jYUK(I_JoU8PB#E&>7j7t6NpRch2e*uiZ?-C`*qlak
zy4qhecu)yH)z9}Gfnr@Mp9``n+A@$Ya+EAT+}*p#g~ml!h!2`*rsIW7bNzM#G3P7{
zUa}%IJMa(pTK(PD0ff=oiEe%rU*8RDViw7>p&zUqRY9aVxfEiak&6^BFV(It-tj9v
zzQ^(EZ{gek&eY1(Y%BE4^z)D6BM74e$Kp&7G1cA6B{z{n4yt82<{wO+ca1Wr2b;PY
zJVz=QZrNVKv<^mRGoQ$@m(q83E<&J@=^%bFGdBFYPUP$hOvL+aR8LE8a800U(LeI#
zy2=948*Wfibu$ZZO;f1=e)Kf<h5)i`_k;E7?v{E>O&1P8r}2Oi)AMPMEaL6MP${~U
zma^YqoGSXTj=h4-99v|9r@flN6rIw#`5!;0aw++2QIb>dWqb40*kN3Fr4xwKq~lP=
zAclc|doK)p$bSXD)Ls3CX}ULHbS5V1X^7KbKyMho9}xM=$z0F6q&?WdZu#n(B<;8U
zOS+VzqSuZVLos_o?yXQY&f;uS<8p?-(l@y6!{T66B;cGHYkZzoVYMQd^edpEq_m=M
zdyrwd^>!4=v+Hhm6vxj+^5g<l4?);2>N0b+YrQzpn{C})HtiKNbl%=T+H+W7_Msr<
zb-SGS9j}=DYAu8q&0qi?DM*KcBjBXDQX@MIn8)diH(vH{Mqi?6H&uDi3n`v@9iVd=
zU_WVkMwPWrb==|XcE(<&wg8a<!sHgC3_R`RTg~q&Ul2ZSzpQ=n74`hG>CtyELYV{}
z{XI_AY&Ly1&CfsBScv6XoYzHnbN(nm2B1|FsgR&+=w}c(+D7tpvx!3jxgnP`w@c;p
zNa2z2;SM3(CGMO(>w+YxmJWU$$L6b)9rLzsiG0KbV97DH5EQ<#Pi)UxW*ViUe_*aU
zRvYyD(Wd5;sYyYtjy?9VWlHTgi+WF(6PP;bY67L}jp~!Q831SZ#^N0t;HCzuLe5Dg
ztKF@9tqB{^usA%9y-12DCHplG=o_C=eOygUYh`0N77A7cw;shew^tdDruz3DN>Ov9
zV4X*D$vj<{uI*^-ZYYxU73~au*EeOUX>>-_U*YHcZ{Vg$M9PX@R}%(se4Ta3Y-1Ho
zyW+%iFs`Qx-+FB2f2Qp=?N+LXh)zeNBRuFm9*t=|)rW;qs%G~)Bvi6YZ6KT!U`udy
zw7^bbfWWGuY908eT*nHtxA_(ac2b*B+>0}}%sQ|y_cf3_;p}l_?iZGBTJ_Ku;`@+n
ztiKQDEy`Feq8F89u_#q9mpjhSl>@g&8Ys|y=@8<Bw{L}GZ@Nj9fbkP}mAJEW`3b7F
zZ~<uB78jh7Qo5HxmA~SzJE;HY;agopWa#S+N?};wZcPEWNNH?V?Le)9imMtV)7uS9
zxnE}Y^XR+-$z#5isS&8{vge!;x$fMCLnA$R;kJ6cs>p@lkn;x6#JrNb<Q>$lGGM((
zp)3PXb)a*A*<S<cwAak2lumH#nx~s<2S`guvX{L<cq*%k)V4;w8}0dP#PaD*jd=Ub
z**{}h=L`x_aIDdPKsk^_o;%!_Z>b-omf$<MQdfI}<Q!>O`(|3@<m#$h?y&L^oHi%K
zb@<mG1xchdI4?UmcC54qX_wg5W^361Rb#^2$Aat)pLz#^04pvk-Cs}_4O|Lh4wjk{
zJX7@c2;m)Z-rlWsjf@tfe`?J&+x*uVFGwwH0{mM31XuSR4YAAiZ74L#)AjN(&Z9Yj
zio+zjo|2-dY<fWHk~dfJDP2iLX{yg0ANVb7vXPwxhMf(J6YqQrTi;Zd>TP6m%OT~Q
zSat|#x*e717B{4=8QF3q|3wEN-Yh2Yk<Zd#c^#}EcORirilUDdX>s~{keh`2C|c)h
z>M=ex#h2$j%MHG>ZFY;7Lm^*8!h?W#9aJWa|7Zd6cc-}L)WNh~F{1)lXPTP1^w7QK
zrA<ci_>uo(8e1kht++}C?JobJ`;p#(V%vx8U<$x~Z@iU%+bZlCMAS~iMkjgu#h?wd
zfB==!9C6J+@#E>l{0TdXYSZlC<KBFW5A3$I!cf(Y2eQeM!+?cf1pH1mIJ)QdkYQ$r
zhBf`2%5Ar)nrLm?qxcHtivd$+TITUH+pESl>%~<>%_nE)KpE~pN_E0AQ+st=T@K$H
z?d8Tj<3dFZTT#oG<HI{{82iF-=Bv5l><^UwZ|mykKaU`|Z78oE&Aoyi=D5ihleecK
zrG@0X6n*`snw3anN&nsELN${Vy;<zR$Gv@t(HgV$NQzS%CMd~$)_9;H9fxMZ|32;o
zI@-c4&oq)x2z|bdDJg!EDu@J{fB5fq2HIRb`db|vNwAE~uT<O<TTix4L%ulu4?^u1
zSl3oKA<-pHqq!|K_r)urRU_slDkY71Dwy^k>J|Z2raC8Rr^-v8U-sHh3}zL*#khW2
zRMIR~W4Ch;b#K$m7d@@z^|4;7j`;J}%qDh=LM)1(^@mN5;d>-vRVuDys@v_5;B%au
zhJSnnW?&4vqy=hY-;O9LS68i7eD%i!i71Z{W6rUOEdTyF3=oTL>^U{$?*FJGHD{s!
z$f5I%P>XcENxj%+4yWI9lrh;QQ|N<I(*g}!if8*#LrAD>ohCjAeX+mWm4e(ULE6VN
z!A@s%aCj3aJzu7V@cbp>U_4lQpy<wm`PsC7s6DmFOk{HU=nX2KKWc$}URTWB^~o|t
zcl349-;cAOy3~5Ty)SfbM;e+x%CtH-TU(x;aiM57@V?{xx?D-s&NtK_mdy8rS&m{N
z1*|CZ+xikzM88*1tW1BJ-(yQ9>j`-8-z4Lfv5JT;Y%Hi#^C(%4oNLj-n#r<kbi7M}
zqRLD=yKv!!V(x0o{Ub#;Yws;dF&da_YBzb&4%j^G<RohjHzlhIz>ly5O5VJ$gDyKP
zQrwdP9zOk61x@2vhV)>dQeKnKis1+SQVE_8MMJ|O|9_PA`(@K7NnW`Fetg*g_xZUX
zR1*I_1du~xN)q>;J%|f~UL5P64fOrG+mTIzNS={~>Yv30b$85TlBEg-3h*7)wQtoo
zXDK&tb#<ibTe3GQ%+j#9g74LSl*JOYrD3&LrwiUhkoTW@w^6psVvwOyi>)owJXU*+
znoD{byG_!vu-)z8#%XtUIh#hG)k8~GLuYTx&upg4`>w~tH&<VS{y8_$KqyMS9sSM`
zA+D6&Z9whObKb5XYFcl^g@Q0H#$O7O-_$~TpT<Ovqdr_VwmQ<UB0N9D>;*Wgoh)Ft
zVf<zTl-7y3OmvLfID};?uRbH$UJiHzDqx6D#hW(rQBTIhkvs1E+6tAecYQn3P)Ijl
z@8F|xvwCOH(aktivztbM@zM~<2lIlhe0_wvM`-6qw(?HxdQ}ohugBIdVjpN_ujW$$
zjrJU&A4TUUEV(xIjDk%s*>H(pAvk}M8rq2hd31Az@BY*ShNkuEkz0@Z4+!6Tmj-l!
zNVi##_w_4Rzo%R5!0Qm^F9uuTKX0V%ptv2?5`>ngX`6hI!ML321H)&e1~{V!AKN^6
zbuX`a-`|^Tei)Kos#g$_rVH6B6eiw@E;Cgvc76%`O*bs;wL9b`8>x0pqxdDsCC4{6
zy)5hqx|pX>7l`Y0v|h>3zN84(62M%WcdzMBHAZ``#6?D*^YuH6!uRW|9v8}6h-jYs
ze|K(8v1J_S1=-Xc;%b6u><)kbcrt>aB3f&%oZVKtn@Ru)N=Odm8@#<})d4p*f;;Ts
z-D3UAVRL=rPHZF(yL@&}Nduuk>)zL8Fx;E|!-ea6UQuI3^&E5l;B2bgFgRahU<YHr
zXL)?j*-mSV$8P5fX8%m+AU=6n@t39|2iWqi3@XVw>O@ev+HY#MuYXbJM{R{%o6O{V
zpfI!73yn=gdbyWpZ&UVV7LuNwxt;QzdL7B>at#;_jjWq6wCk;>%&0GjDK|{(5vf7q
z^Yb_N04H;BCAy!=R0f#;L4?PV{jx*y^eV^+Q;il^nCzE1duu&0v|Ez^+`IpU-wlR|
zpyDZYra;oPX!uhU+~<Pm=gBO&48ITOt#cLU&AG5iZuSB#H7(VPVoJf3D=EHFQ1q>V
z_EIe*?3i9kSk~}eNp21dfL`kZ`jIXMC`NfmDH<6|`}}UL3M7SsYh&^c2j2KTmIm&Q
zDIWw2C2$>nX<N}{laUDSIdKOon5B=y)B<)bqkjr?@GYlwo5vDo+kJ+aBREu*Dcqk$
z+#Kxyl<f>1Ol{=hfA<7gItUL|=Ey;aK-8qTI^Rj*1v@OhH4Bk$=&~K$PYF0RDx^|{
z@nTJm>vn{tceWnT^v(T^ni~vU+e3Kb+Fmv;eQg&llZ=h7VoW7!jY~-(KqbjX4g>Lz
z@=&RjbB$|QyBaYXW|#jZbP=AQLSrBB`I?7H)bztcnhES}B8xW}IviCq*xJ)$w}t~h
zh`-)0vz&cXFYiBHzDfl-(MY(inwpXz<wB=isunqwL7;10#nl;->4M+@$I~fca6~qZ
zl9CQWa&U259iZzw^&fJvjfm4YsUh{*xs_c>kD|&kf=POMMrPaI`~*?_BI1%4$YDGy
z<9EAOVolTw`s8+<;ps}?4UMJv^NLx{v7%kM{k5*ni4rOnrsNN(h}Kysgzdjlk+&7J
z^#9{-F^z*>uIMP|y~~z|WBJUqm9FBCd%lf-+;OWM=~K4#flP|jWl?f8wikVO6~AZT
z|EA7u@pG9Z!jm^jSA(90?06a|DK(9Kt|*A#*>H8`Uk8Q{#ixeAg9jxTE5V)32OkE4
zL7pPMY0o>~v`eCE79RhKD<f?pvFi@g?0$drUnM~aVYdtRh^>4ieQ(}*5J)avkoUod
zhT2?t-xYi8=HN4%*)DoK#X^_}pW)LlpN;K-p^e)Ebh@e?dFD$B`Nk`GDj&PvH?Q8`
zG+k4)jffipYv9<gP9r(pj0lHC5B<E+@-Ho0hHG)MRK=k!EVYE$piFCG&=wi*P53>F
z<Ba0p--oqmAQbC=QsUPnA8fby*6ShOc0CFNmNK;hmL$4yoBPxKs5HM~XzwpP+xQoJ
zgQw-oZx+FARW&gyZp`Twj#p<=_>fpAOQxLiE(_Z073OjO#xdbz*{H*6yk@XAHkiDi
zsW#|2-Nq$VYw8Bu=)`7Fr-%y)Qlnc-dO_+>Mi8;r-CwBQxmNCqiQN1^zs>UV>Oj<P
zA-ueLR}4qD+i+}*Y+&ME7B2-Z1gB;*_<h7H%f+`(2`=pF>NnlU$0zi`cjMZF>+M!v
zYLUvUy~RtT9_DADuds&M6l}BT!Ti+%q9Xjg9P)byNw3VpEE%~i40M6~cXQxHozJ%H
zvp@CV=WM>gXz)SaXQ$YOSoVK$VuN9Sm3sN?Ikm4Ji2S~M2HW6+Lp?R2hX(Mly-CUE
z*!r$=ef3peW7P~l!r~+8z>TE3y#wNU@b?k-kp_?CowhRpM|W(jH6)K#uUtT5!&(OT
z#wk0skhpmdBu7}M0u=lkmig@co8%izJ3(_az!beq5pQwvLh-4o&L=Tc<kjAi9q0*G
z<`Bl5h0mQo4rsEu6Z={R8-I##E<k2m%lYt+QAm2NUiISsezPr{L<M<q0OVyA80WL#
z$L!2$VFTZ){5-c((n0)1<d^g=afZA?#TK%3vO$MkDr$GdzKrc)sAT<m$(Q&&`Thx#
zM_D`226V}Ev`cQr>Q65qOT-%qV?bK`6Yun}%V_P^oG!Cc)2}29+D?vjcW>Zh+e(3Y
zu%FxY8^iAz6fqOJWPg)&a=9Syl#}`K^4}>MbYotLE*|`V7J9x-HuJvif1u9Gx+R72
zm+BcCN8uCN_v5d~mt?-%EV3XoUgFeypMhHTT{1kl-c_8)=2dz1p#`M5SK?2xd@Tn5
zn~Rbo)_B)2x9KiSDUmus=Lu6zHoEye+fIDGMkeO__DcmN>3B1YW5iQt4X&0b^E6#A
z2^!r0<SwImJV%z5hY{u48#owFTIa(hZG*=k9l%Pn>fSCmT?UM7=sjpV!aQ8<>U?hQ
zp^_9jp90#|RX4H4&bF%R`s;qPx0#wKGVcC@*kqzb{v+jhM2LvoK>!)_rOv8110Et^
z`~^2M@4090sNPhx%DT9v451&4Ot(X*`o=t+FqM{bYS2`R7-Olg-5HfqsM}En(jXcW
zpNAA*K#DVSi$m5~-&KCDSWtn&MBY!))!4~mUilItoo#7m9Mn4?`&)58u`-i+%}ikG
z>32TO_|}K2d^r36<TFq5+D~Se%FpioJ;>phoxJ422_9`+Q#tHZcN;B3Qp>5}z%MtZ
zw%?}x!~RW$o;mqsRzjKqHLYb-Khq$nBKprCh{5jm$1yP0>RKLQJ8t@!-o(I*JQ8y#
z^H!SY?7(`(nO9-&jvICIsMJ?%V!9U3E-38~6xiw`woZ`rAIP0S6cMM(03#XaS6X0P
z!{v@dyGX{4n_s<jbjW#|WbrjyzW(&2cVvj_(=t`f<X{cfyTpMlo`BO*2HxQ#2}4Eh
zm-+=B#WV^hTp_QB++VnMJ|5d7J@H<C6}3t54Q;(nM)T))U=aVn<nLpTYP=I1tt3gU
zDgE=kAIk;%$6Vu|V*TTt+1uT*SM6W*!L?g{yds<*^a^sC_*aypBWrY_t-NA#bkD5S
zUbv2za;1#1m7x6v8>#k%Q$fY%-vn8=zPxl(Lxl@cyk8xEat_6CCmjR%?jO<EGUMG!
zJJSUN8Q{(NjFnSOt8#Rec<X(gaO}x{HN{Vq6&D~a^5{(Xl<{s`Bz&0BNp*t8jx71A
z3|Sk)J#b{sweHG*%EDnws-S7WuI|baxHY@GJmYiYjD1qefl1-|+7jK*(B9v+RO*{a
zSL3qaN8j&~1%s>>-$q3IBZ`ob7Nb~zqpMzLVrMjOkgVeY?{6Qp2S8+cB{s<*ybu2F
z5ZnZANAKiOztLq$WH}>u{{kIMWMxnC-S|)OBv6;tDIPz;o9bcE{u6i6a|c)nUmOQN
z8EV##lu0koSV(hnzS{&vO?zX}2EqU8GF3Yax&hDYATXO$ky}7+?6a|GScgrzWKAAb
zHQkT5?cx_PcJF3;L>I^W#Z!ZwPp*~O=>!QA%B;jBgot!Mx=2PkMnZe5z{ru@#@MhT
zq%gl1G}+jj9EVM4;#5<-vL|==3chK2_AnZl|KQ)0V(Js7R8qVniRBOSd_D5x@s6e4
zdFRY|oI<*}UF?b3=cB<?2`o7VU^OA2RIQWoF8VGhA%<h?2!SUf^TTfk)JJJ-h=~ne
zXI}ZhuPNKvO*hr?`|tl(w-xGSM3*O`2Cja3HTY3`Ib1c(@np{1(#SOyp9ue+JICa@
zwrD*Frg+9%>zXQ2&NLR_nOH47HFMf=!EN}sEZS_S6fDgM*R8V!O8j3hK#TZr%@qVD
zAqc)<Irm8DGb7upy}%g!JIBQX{Vqo}QJ?0S)dn?L;QM!dyz{vP*}b<BeX+;dy9!A9
zugp~CC`YXhQ12_JdsMdYa(d>Lq|`{KlKWf3VX~7`@N18=zO0C?L4dDrH%;V|M=M`D
zxnQ9AvTh$=nIuVWLtLk&QtLXV9G8L{$-L5i3@o>k=#hu-lm8ea$%T54lJ^_deRonq
z&wi6ky(<9y<ALeighp8#`^twQNAQlEOeUDJ;ivo%Y&YtTcxZ3pIRZ`E^MjD%tpdES
z3=+#zT)LY}|9KUI>2K?<sF6=te@ByGdHpU2)w@#Sh$Um0Cf{-*d!B8LI5w_vd=lMf
z@HvF~OYR?Ez9y5gCW*rdLerR-8Sm+;$6L!Y+9-Au@e{M#dT<mbrah?+-P&WQxwUvn
zAUyny21oD!pV^<@T2N|(YLny)s<fV(IS$e`bIcqqV;`v(A`bomBhT^qmJu9Nln^;|
zy)evSjW5SoWBoP@syw5@NMj;OMG<OPoWngka|&IjV2D_~kNF?uzw0J4$zzR9awniV
zdX}n{od^u+O^KICeD*Um(GDj7;PP0ESh)4JSo<Ai4+OGt@9sKebusXW<T^^otjP?R
zKQ_qep*X@AaIJu`7T^@)xF|t}sQV|@Qby>mrv5(WCn?$*Ft1bctoXICE=#Fb8p~oe
zJ_W!4-zfDAm`H=Hucz-zA73SN&-rh-_1?iv`lCjT+ujEyU%Wm#lTHu^>mQ7QK|Buh
zeGO2f#RXbA8*^!~W=6;2?8grq+!xok2eQkp=5^i2@bYoq@fup*Pvj-v*TrFm4r7uN
z2@LX5FDZ@fSkB>m3c}hN&hrZR@#+fmtho=8WuqMmRTDT@-TakLH*bN}sRg<Xd2;L5
z)`?Lp*OBDa3sn)2C`c}0Pu)G4I?4cHhPIQ^A!V?7!;3Y2u0DK6>|+R}Gt-KB=#6>4
zG;L9SKC`&u@Uz&_mz_dDDX>n2$H%w6WBF6VBWH$Wm8aB0w*9PXKkHQMrAtrw$S>U#
zeLgqoTIQ8Ito=h>8Mp2J4KNr9m2!7-Ow9z*k@ME=o)dl*wY!`SY@yOJ_=2Wff4#c<
zPPKQgXd0R4+jfJ?Bs&Yxy#;3MXDpAeWV95&E>HD$HAPpMTHX#M_kaEL_b6gp${_IZ
zvyt$9g8hyuzq6+aq3#Sudj?|+27fZMncr%?^=1bJ+jQ?1Jw@3b_2N$1pe+@yM767q
z5oJ|jZ^Vl)^LQHxyA-nb$Y;f$s->$|slH4Qy=d&I^WpmCpmt!UH<`A*;~xuEq|N_g
zlBtBZTe-`@Mn2oCI1Oe`ZJ&C7x>pykJ<*l6cp*tUNwT7T{%hKg(o&MJv11N<yf*FE
zy7WaU)uhOGnM8aGrqvXA@AsMGCF;wKP~?59Bqyi4Cy>4GyJCveZiA;#>YMjo-3$P_
z2!DU>QO=PATj8AG!gOE-R0W)UZb>tn&&Vg0Y(X;>hO)eqp4U9DjW(QOO{|Wh8hyMn
z%RJsOv`wKe(eb15_7jy4#2?q|kaYGofI;&28IQ4EM)||Wdtq+?-lnE?PIqWsJ?a~h
z-bx=#ofj6)Z5f0{Yh57#_ASC(yQX>Ob3Wf?g0g?`D%6sAu!jL?{Y!Ue!;)V!XmfDK
zK}*Bws|O<W+`o`H6zSFPH;zTBI47GmTSwWKW^!|1wRUS9PDwA>eiqqk<Koc+Ex7uT
zUJ6(DD!mDg>r+e5cP4zc^T5^27d#Xu6E(I=*E_KRVy)bd<^rJ~ckW8sH%m<cIDF#o
zqX!KhWaqA*vI>hh7ROre#|TATOX)GU2PGWza0Z%i=%E8I*?C2&r2NV&jzF?JjglX<
zVTAZawXq(0Ib=796hRt!ZMyl<ky{xYM~ea&*Iq^S-1<J}M9G--UQ56}0g4LH2Dwmc
zCem6)SqBs@^sdzK&#eTqY)tf*)3;HrOA;(YU_#TPzTmj{8^QgwL3U!EGU}tL(bWG7
z&}7m+j;O|EYSclr1UWaWI?b#fV{Y7CJyfwzfcwMgX&a~-KB*<aYwEZyw~%*lg7#WC
z?zVKp&U1)?;+{If`^_arakAzmUKv?O!7wnzCmh@~^V%FBp3WO}Bph~eSKy8(HD!O;
zxk6L$#U!eZu*DG*jxkMzswz}d^tMGkR`ak5=TIxkbXr_Na6ck{WxGh`4Te3R;#Cn;
zY-j{4$6Vca4$O9RAwb>BSm05><J7HOtEOW|4)W`Xcb)?G@HR|E6(M@QFCp!|fnZfA
z=emX34(NM#`_(8;+MIc7_?V~VS0f7r*wetfvCfJL;h_Duvwd%h!PMuWemC`HthJPT
zhv+yOa`jI%!h;sl2(qVB{`L@jQl^TEwiMfpQZRA=rw9*`iNQP@e99hD&u28IyFU?6
zC<CbTFHz-i=PZiOEZ<0@BJd6%?G0jjv6JR(Jj7>E7q}D0F3r!FOZ6{HM*F=y`)i*7
zCF7D*d^Q*s+{i~UJj!CLr$LNGe!P)MRe#%pJi#S`Yw06~MN?rmrkuInd^gb(zIB_8
z-%J0H<=X0QpMLukd-5XnwQUy3*g*O{Ob}*Gofb)#sIfE3vt@Jdu)`y&p62l2@N2s=
zS;CE|&a-{c9-||s;JJtslQ3Iq_*XaHe{0k#Cx=MAv}2`k|K?`AI@^GzP7f>xucGtx
zP|vD@KmOk;?hk^M6zqK#R4nF}U3hb<UIz|53cgH{V(QGbUHCiewoq%<LTJ<a<Fy0q
zv5JgchPyU(*phY;F82^HHm(clp2GGkZSK#VJus2o3&u%;PBwOk8!DD4wY0&^?CMSz
z*xDD7^tdV=b+y>{0o_n9alAsR)vCk%l~EhRLbpEq9t+V;>zKaa9*3wfc@K8uSD##6
z&CTPLxw=9*m{@6UKan$@VWXmonDfa|IAD>Z$hxnQsiYcg2;yk>Mv(wye?lG-rJe!W
z=-xfrA9-W~7i(_z0n>Z6<q?(7Pyjfj@-Ajm0i)ZYlm*<ch9kzvgfpd#!$*Koh-ldQ
ziY(*}$E`<>TA;57?+EQxDP_)+wBbMv#UTp?3@3Jq>n|_{_C1JPc=^DY09amP$JLs4
z7kVCNOauB0$ENJs#Y~OE4Zl#}uSQG&FX_w`-i!nH@<ch=Ki#C$!Bc&hGVzo-I{ru$
zchmYw?{OtmVe${f`9rt>X!|Gv`dnE}hBSVe0Df;5)&(odmPCs&sMw<P(iK@#QE&=&
zm9bDHv5shS!<7}J_01v#5dYQIzj@^#gC=YdTgewvejWU+wi#r&=xhkmrA6t%`(E*>
z<PX2Hi(8b~3L<E>5dx^VV;|1Mj-Jy^Ty0a>i?junM%X4y<$nEPtU$yO=3}BPwn-3Y
zTyHGerDSh<wg~Lj>;g8=svFii(}J&tvMy?c?v^^O3if2G-{xk`n=s1%#nqLdQ64ZY
zqqN?@K>>i}FT;`Z0Ea^j_A;YH-JU-}f#dSbjvTiXt09ph#^93>XyK=q(OHL|JP-SA
zDVJaf7>;b|U*9JNauXH!*s{GJFPj=wTUFK<&Nnh^DsF2biANf8W-RH+*wc6xG2ypk
zjhHKmi6131C3E)>{i68i20|CD@|63ArF5(BF&lc(e&<V_D1JA~%MS^+rt9hwnj_}l
z2~e08t<a1^t=j-4_J?8NEG$wYRql7?#9A}nT_kLDCTH(|16rGAU;A>?mNGAp)B=kA
z1*bANDW=aOEG->%hB>$XA&`rY3R^JvnG!#Dz}84P+-uyfqvi3NM<hDM4dqms8j@Z9
zad5Ue(RajLHcI~-%{o2PIHOBCrk=RTT*Z^GI;K!7ZL8OGAE74e2rh_L<T^%?r6Jk(
ztotAnOT_$T5X+8`6ccQ7iA8o!v5tFfhZYBw18${s2+#0Dy~f2xrt<fqKC(nPS;juV
zu^`C5#WVI&kwE;5Uu;%lmlom=KU>9o>u9w@De+sP@gL~^`7_X*u1siEU1hlb1<{aZ
z9Q&Qqmt`U1u+Qo!RCJh%Yqe`ceY&UOkKx8n@z1hME!1!mpDyDP|LZ~mB2ypuasI@`
z;WiPV-pPls*Cg+IKZJbLmSa%G8NPD;a?`BUsMEdNzgfEa?HXC}?Ls4Fm|DTnAH7Ea
z*!i&;D&Tgh6rMk@T<^+(JF9cqfOkzXIHHsaTnYKEen!&&kxP@WbXisE-!O2{y7*Rj
z8J^c+Cq&5g1o^_^mM<JkAIY|PKv}0D%_f;4yKVW_qt=d5I`zt!R_5uafh5w&tPx(|
z2qO3OjOcWE&F4E;IH(BgnmA_sMx=|gNf3j1XQ|{s2f7vT{&_JJxA>knkUF(cMHN<K
zpQ+EWo^`9nnugy>)T4x?2Pa_}BLox3>-VqOa#&BBAW4}9%gqwf$$S~(Kzw>ng1i7W
z)%(CF2cKP?ukbM4zVEt^{E36Ny%4UuiH0hR_r<aY^X3>&;63k7)zsYnIiG|BV6-r{
z<y_;B)dr&)K`HI+XJ@BC>WJGZPz^H_Q#}5KPGOMrRrTLIlW1kDMi|vyMBAxw;M|yy
z%+GGxtwvL_H#EjBHdo?Uw_l(iJj+*9JkOt37u)1RRjy|%^tl~X3o$d@LCyG|la1xe
z+ZPwVwHJKETmQZ+{i4PtOY}4OQHE!DZwza8{g8>r2&mzR4aQC_;Pge<VL}S?AIupd
zwosa40Edmq=X+0Z$d7mTP_wR!<Tk8{4RmQ2UMMmUGx;mcxVYP_7Rlc<NhljMOh|-o
zbu~f2QSn6=x4{zboN9)wpc>^v$$@3)=QTo2|4VIrn0~K%Btl3Yug=(ObrI;L2kt#_
zEXFR%bypJl8DxH$lU56x@*{(Fq8CEGB<pw$62*bnErObLbS#osqIu{8(5nA(;^!im
ze`+o$DE9J7a{hg)Npp#P!g`aXI_h4+NJHN@>nS&_v(qY9C$Jeg0K0O@#XNb{xUBao
zWQ_z+Z!V~mo+up1n3)oHS|nF4c4~+PJ2B`-#4*Ea#wm;AOdPtXxk0@Gz#5fU%F5iL
zg%c7Q39@{h`Ang({l{gKat(}DBjO6Idu4B2C3g!IMHSRHnjren_n7VP0&zF4?mk&E
z00b`GQL1Et#1l<4VV=C+Vq=J)sXZEP->GLOZj7|`&X)O8y*EcTH_xIrya2IX2v+yw
z_PU`P)a4VpRSw}#jW{tvrJz#J)ZQ$3Ggg^Jt!)|SvO9#~@!>U=&8x<S+KZWBnDZ#F
z{K)spq6-Sug&||4#{;||bN9^!i-=VgFde<w%?f}1FvNwH!Bezd02g30F+ilg#_x!x
z;Y-B7{cf={Dt@Lvltf_LsfEkSkKYBOsVjQrUMefO0kof9-LWwp;;y|ndLaxo1ID<~
zw)|F5tVjo=5$MwhBA4w3EydHc=Xe@!*p@GCP=WwEHIE~g;$8sk>hh+5SRl6~>$|J_
zNcg=Mnlg6u<U#~Jiz$#HM^#}&z~s(_4lXc7_T)}z@pT3n`}RgGjnMBO%3%_l0}p?B
z{(Uevymv>zo(KC3#r$ztw0EOS4}|UT-4RBR0^tf|H=-!KO|x@+uytOcwCJWz{p~Rd
z@-Pq^aFPM|XRei^qtWD7P7EzA(*&XAi`vY6O%GS6>fA_PyvI-IjADbN;kiVBAr4V(
z%Zo6}QFPN1XmU<FE*enDnXjLr!e)HkcOo#(OdjJMKLn1Cmu0O1l}u3ihrdzPg+9r<
z-ENcnuRf5yh@OTi#vwo5^d|MIyuea{fSwb$BHPN>x8!Y1*F)p1^tcxgc)0uksHdzT
zq8b0ZDW$Xy?Z1|5e|SL7eWgqUlz^tkGXO?pP~uG<_8vAg>To1{9+Ek_W<yfHjaOjC
zntv*NwcX~~1<1j-f$aAEm5_A?9=cU|u><dic5QK<BN?=~4GZh0W!$TlwkUJb;=jCu
zIJyX5Y&r16fX2u#^0Cm7kr#vSjf|=bOq9y2L1AAhtrZ{a5=T;3$?-1|GphD7041O6
zGY8uLjkD4BUpn^xP<ct*5|*}U;sbUk#B3G{c0`wQTU&?zNfgS3L>tn3!|$vx<?Q4}
zIb6ndT)vY;U}Cg%fI*ffu;edyB(~f@dJN?c-ZV*2bDRNfjv7CG7zy^KuXFnO_rfSn
z2K^*94|`NU521T_k@PyEOyVdA5cSgs^Pvb3(dmyZhx36lSkN^>O0(}<JE9WA)ovhH
zP*h~YhkSTqt1c54%eS-o*`IwO2#G9S{G=DQoPOQ!j#`!!;wrgg4;0p>SxnLL^JX%m
z$zx33;zt44Ku;5p+V}bHC<)zf8&8OK>w{-e(Hl?Rq}eT!`ziJ`LC&`@<#z6G@>sf?
zZ--{)?L!#d#LaNrEy36kP5!*wH-xWlBtn9%mL8xzLU%D{UXLoY^<jS$QThP3O9p>7
z#ueLK{g53bVYxIkiUovf1|Lr2lIw+Pj3gR89=1S4u;>J4LP1anQrWryX&X(<$1e=)
zyj^OfH<$f3fc|IGu7}JyvmLhqb*3VU<}M1ThM)t6O*0*S9(CdG=~-Nl?5=!Vd@<TF
z3&^8b41w$(ZXo6gD0;2Xh22Gircu^0f5egaI)xbXLJ;>Ph};VeTmZwR26ih(*7*R<
zkYS(p!@-%AwI`BY4W39Jqu6nQF~P(yp?HlGhZk#brX4i1qO~cl(~OYH$w<+v&;mPa
zz!raAEK$gu)y1`r&r0he*xL31Oh7ctUcYJ?lVBc5ssab6+2NBcJ<fz!s-Nf&G6LEs
z)Nq)(YWXnQD}o~ze50WXNmUn4qK4C%Z<jc6O#m#&5H4JfLb8l5CkE?QVH?3MVJ9=%
z$TXm6R|r+$Cx3!XLIUK#zPu)83^fQ17IBSu%5+304%V1};!L|mGP~KOlK>@t+gUlU
z6)`|&p8?qfwoReWtjv@71qGFZH8}8uLLX(#ziL>J-(Mh`e+iqhPFd;sQiAZ*b&{tf
zSfz_d!8E+Qd48B(xw!FZTz7@95K;oF^r}HPaxw{1HXp?fM`FRsq;E`A<9ipiGNGK9
z$#Z=<OLBKd8u%7$kXA7BeNL=rqFNb<9)I#Wj~fL9Dkl#6lXXZRUQYJ$(*u^USGJR!
z^I6>>^J0*%o&+DSv;rHD5(oI<e!X{d%zCpnm)GRV1K`1pP1X1CZY1%i$CnXrJEVXW
z^l>R5{n6O763moQ2IvOvTM#Cr6D)}NNxAqJHw5?zK{jJVi9i1*7yzA>FHfu+&2weK
zZlu{6Ozb29K<;of_k^gbEeOW=eHxrP2^tFx1#4&#JFaUHbUkA-C>(<CnUVa{-{ox&
z4|Y&z=^~1VDDd!60|iChqO0QK#_$^R7hxC1j9zWw7DC3EAWqi9)Ih*}B$<fvZz)|)
zY#(gia5T?W5@^3xijcwqrFXH-fe#$xXeU!dHbFK7@MHi*V>LBwlBM}s@lDlt_l1$f
z0+vlXER#ZAzBIrLDKPZ&Ix<of?Vht%rAEK^q%ZhosLAA{x$o~`R0fkXyLibO7@_Yw
zdac;G9B^m_BZ7x)2t3nEA!j@%kbC4o{omrbS^t>Z!%HO%*%knZG-@cEcvzAqwIE(2
z4H5WUZ@L<p#;FSCWgrFu_-P~n)&p=?6cIl5>O?PD&?CC#ojqy4UvCE;*j3m<T?_#%
z{y_4aa(}Rq9OMT#H@8cPxNNDdL0IM15j)!tu|V&Zk`k1XdX3gABt7=;7Ggeaf3SdX
z8GkecR9q~=`i?jk#0~v#TNBv@U)?-*q^8W96O>nhVKd6gL`rU|s&@HEZ>S|X`#?Ah
zsyWoPSdOUSA^Qx^H_f)=Nr4OI^%x(B3U#QZKQH_JJ={o4@`LFyaYI387-0I)DEORB
zn@wTH3m`k^g~J36;?ZvvhBtHivQ9wm-H9=v-#xU-4Un_<&?JHHiY7$HYLN^oepCbG
zMKP%uJtvzn1P;4ze{LbT>2=#e-n6Q?#6jR5;Dh@>)=MqIXc^B*b3Mz$B5o9vGmXFx
z`SYTzV0;%*itV5$;^zJD$aj0*L!V0y>f+Mw$0O`Q)k~I#c`epuV@4XrnNAjCFLbM=
zu^HmuzOUQ{Ebo{Vv(6#nBMrLDhi3>WW49|TsUFLDY5+yUM1og$mh26h`SJw(3VTd-
zaMQsOp=9YVlm>^<$hE3$GohX1g3K;>v_CQGq)w}c*14IGag!Ukpcr37Bi7-w{WAp2
zxFU$q7s0e|4v;I$d;}NSQN9}&j-HHGu!l&vg)HtQnhZDj@5B$!a$8%kw;pj&#Yuso
z`oOg(F;;^ZA~IymB&R1n#8E{S>GR@-uqfqUv#<UC89h<4Y$3FaF`o1Sw27T~vSelY
z3?T?lrNX?{!73o)>FbMYqWd;h52|8-ZRd&2IDC64OLV-K)eWxT#Cms7r{#+<27L-o
zV({?7M&Xx32Kq~;V-wLXj1I5)!cv=3+hz>LIzD-4ewSKJFxWA4EWaUm7p4ySk{9Ad
z|M7|d+dK^uuS$0?M}}v2VJn6<Sx-}2^6RiNH`d&qLB_Yg^%^|Osh-lD2WUXTEayer
zk)jD!2cZC=Rj}JMuiSHV^Tz>OJLUgYuvqSa-UWRB{9<_TudOt8ceq@`GMKK?IQ-4J
zB~<)aA6QCj89ze;ID_9stjhcsPcH)0JNTow>-ccz21~Dh*o9%7fWE*Tc7ntoX*g%r
z4UXd^3fX@+2w!O@fPVpZ*d!>XtTsUi<Y=YQujt&`0K5dgzD>^_>avH;AGz=f$Ev~(
z3sA?31Y^=$?c|^SfD@RZMl*GEW$!LqW{~4PSRbnQGswYws2*`ao}p@eYu(lHE*;~7
z8j|6u)P7ERd8M)Uh>iwQbs<vWj}>t7cIhqxiWfR$5%YubG!WeRIs1R^Fm#FzM6{lt
zg1yK?V9|z>)`F<-x;ugt1BwQ#Rpqa@OS&Akw_kk#fEHlne}&B-EMU#TK91hn(F_DL
z%ccZj|74G4K*)~X2IQPTBYNC}M_ZVyN6`e3{m^pb78(T8c^7f=;nnY!_OH~yAL#-f
zB;WI9jvB4MBMqH8`ODy|jyxfNSIZDQd<f_tWZMx@YSzMTe=v3bm&zZ2{+lGv9KS6R
z2hV8lfWR>>YwU>N-5_O~`@tmAg$qhm5H^q1Jx*+o{Z1ctW04|jTz5xoIS*2!9w6J+
z+PC4Yg0t;alZb+4qiL@=4Jn2*$jALrq>)uj$&olHoN%=L9sU4-ZF`&3MS#*Or35=j
zl|vXnRj1#U<Rg;!9jiA6E-t(uYnBvny36UphsdINd^hm>u9R{$j1kG;ZCB~EKMI;>
z>FasM0yy&>s5sr^bPZTqZ;4{uM`yoEX;NQyP>mCf%rE<3wE?0cZjW$DGH~#U`rhSY
z3`blN$T7JrNoi(h89Rt=GOM5W0$ma;nv<|vQ}0KY)OUZ*j4pX}Np$Q{#T-EqFj2Ut
z>&CTo-byMOCP@$wK*|na+!sklD2&E+gLz@Kb40rB)Yd4-0?>~0NXJhq7qi~fr|SiH
ze&H!tJ{5@{|AYyA`%(@7E3DI^bfR4YEOeqI<ZHNSqP=Cc?{jn77B0+W<6t7X;>ZoC
zZeRkmV68;qUj%GX0%R`IU4QrJu^(F=xgbh*r9i$E2f@Pt^##Zg4ZCagjdTV^>h2QQ
z^Bc2@J|Y%SDzy53GKkKQ$$y<dZe#r~J(>CpD}4^POO|Y=$_X8MAK)?F9b2&WV8Uah
zz@u*#yEjMRr4E~{v@MS{a6j!~a74ZM<%W?^gI-OzrTk;cJDUu01y<)PCd2T(pL&|8
z^`CcCXUP&<?l6y?s5(7ox>W}+(@{*|VyYS8$)1<DO!wb0V*0m2---h{Ls3uYlDyXR
z?$Sx`6r6coMm|x9qu3Hs2Y&mbxAi%G-!gX;qeJU8DgRLwE)ai005Ga<@aaCZ1N(D%
z(E9910~zIl4Eo%J1WUnCy-UbiDZuE^h5>{#;2E*9%FIe`#)ft;vw#vUKM=nmB7M?E
zN(WR&JNYxw^0|!vrW$v>xPF_mV{xVcsWbHv+mzpK1?y-oNb&=_W*5qT{a{Ph)#S1S
z*k@nkscU?vKVDR5wc3L|!7%uqmh$CIDw;FHlH7TK+TDm;^r<CG-%oa-6e2P=XXo2(
z&q{)yXpB^S8Us1?+vIIie-_3w^fa9cU(amoy)W#3M%zlMl-9ZWUfu`Vb#MSC5e7ic
z`PRC7dRUz8wh|id$t#6-$+xd{r=*a#!QgcN`*z=Qz@^*zapw5?L)?z*?x-42dA~DA
z2Kz)t8u;U7ZT$mWK?zy--NlDFgr*gZoQsDuOQuIYBO$?etKlzUb_zqBZ}uTzwu+Dr
zzYKUr&I6VT)Z#rgSg<I6QqQt@-#iikq|gExqp6x6)C<H)f7{9Hq)0Kke->xlK)n%Y
z|37rw_R@(DT6=rkU1lkAEBDQ`((j1e;hbIo0N@yl-J}vS!;u#WFBUY`*B6;-t3jVh
z&IGQY31DY6d4O%(HEBVu^36_e@X4>XA4yM%_)LaAx}yBxMiprHN`95i{vetA|9Sx~
zzka1hJ*wJ`ki?#K8`O_$9Ppfk$SDrv0&-cn@KWwo-t-g{(~LE^)3}QRaIaE=IwY7+
zk)<zy>K=(u*3?UYe<AqtIrjVLbT4L@2Ut{eo_{Y`8FYiCzr0>g=v}Uk_t>Mv5F&at
z3j37L@W`pY6_b%Mj>y$?KKQ$=cn>c;-4p9-qRZ$HHj?-cV@=tWD_rI^dNvt0nC*{>
zE3oIwBYR-9-W51c#r1n+0|42lKCyb*c(0ld<6jIaQ!)L(3G*y>RD5e#=N3tN#U`J_
zbWRp<d~?@+fCI=}%7i8`n?+D_bCn4Vbb<$OwS(vxbJ0!aos_?vvlHF+^Y6z0Yvhxo
zN79eoF9qD~x*05C&loYB5*xnXkSEzO&)4q;O|6)t-JsK^ppEWdn?pKOxq+6RA&7*Q
zx{g{fp*US?V_;VR7mhw){*bxA2L}syd9nzwCGD7=*%iV5SLh>v@lMP`b3u(z2UNt&
z7s5|a?6DVxy;m>ocAvn;j`6@VNVPFC2WMQTG@%|N)FIbQ=_BSg<~ptso$f^QRcCjY
z>|n661$B?_!r;lN(Z<};<Fh!8l4gu{8}uVdMaZyHb|m*+QEd^pjZ~*h08&32*L<(;
z-cb?*v{!*lruOeKbz6rTa~5Jij{sQtux-)(grb4WU;bdV%~YHk`ZvHWtQP?}KiF~k
zT42XpT)6XHOWZT7ATWUa+_z527(!+?$#qy<DTN@SX*(1F|L$8J)KJByZmfPkEIt4H
zZocWL{l{OAyS1#%v=?)>_Tw5U%;Vu{FYrxLY#-+{Kcm8WCZdFW>;Vx~{IeMn!cD;J
zLEhrtjZI}XgQevCDSCk`$^Nkw=jXAZu#{@*FpS|LRu{odzo1~iu!}d%*1pxjK65&2
z4snDm5Z4+(9NqlIq(jOaA0lsuM0Npyprr=(A~AOe*J_iEr(E)Zj%(%FV*`n9=m!D&
zPO2yD#H9JR|0MFrhg0i&)h(Xf5jF;z2HU4&0+fhgO7gJ>_!m~s!h4cN3-}DSM9qC@
zZ63>=9GeyF)t3uBNY-?dnFM18yfgh0ARFknfH-rh{i2E(_*72!z*r_x#`Il{891a)
z{awX+^)|zgT}NB4UAMdF0kw;vP8Zj|^}`U$#l~CmBIlE5Ax@TKR;h9o#R%Br6BmP<
z_b3vZp^Yt?qqND3^8ab+D&wMhy6|P`ZlpmvL`p(hB@9wpSU^HTB!rcQMMOYa8l;hC
z5fFi;mQD$YrAwri?&iJxfA6RLa_7#>oipd0=XuV|3NpS@Q>!Xu-joSy@zAvH=puw_
zCv=~60l+WfuKIWSN?rSthYyM5N5E;V!1T2GZ2sIq4%oTB>lni7XLg;%T9b6X!KP*g
zl=ljXI^x6DbP&`eF@t%7x*Y|ZTYwcab;OgSc2h~eSPTs|-$KaScyA5r`Zrp3fTs=S
zsh5L;hOXK@wvT=!3&dxR8@AdCk8yC(LY)sd0!fH_eB34vX%QwQ@PPpy$}2dA1R#$j
z$;(XdX1lj&*;}LjE8q9@clPo2m8oH};c{h>NzkK>K+DJTj-AQxV+)j8{D>!;ZazRQ
z%_t|8@Wl@t(Ja)BSLE?x0H3c20Bo-BA(;9V9gW7O*$x|=re#sd8x$S;91<RP@C@ZP
zksS@J7fVxl$gPtbbMZwicB%3ANf6Gs7XoZ|y%c3+QlTEn0iO1-8|t%_%O=2o1KE-6
zosUup20sW`A2(R*BzhxK;Af9>FQk5(!s3a4LE;6^`6{nJzQtB$B+-mSQL&iilJTPD
zDFvEkg%l63^L@%FzxFqa3w(NAGmg|d-67x#+5f7DzKM9Y#|KX@H|Q(&u$-)1`gG&V
zkI%c%`6sS7nx?6C%<@|Qe%g68kq4G13KlMUq?FajtZaLC#G?#DSLH>-yoy|;b$8<r
zK(_O4G&1?^ZQSX3?KYKkz5snu_3$ivRO$W_4Eq!z++-e6r1H@<*uN?!<>q*%*u4`L
zHQ6xqahoM{c@`lHI6Az%tcVxpvj@6u&&}Z$#`YQsC?P8`|DPD5D%z{7zjf*x7>YSV
zoa45><Uew)kEVDtpJmF&(#}T6GRKo+F}uuSjVU%t$1~pl_u{#KfmsSd_~@;`$2BfA
z;hX9APl{-98)}ULov|v1VbP-g`KZvxgWW0(jgErzjM?6m7#x6IyN8WZr^tM0Dt1Ct
zJFj3d1lQ{+-9NkwJg9AQn0@$mV~O@|m$GLxhR*6z6`qy`2^?&?T=RPitw|0GQ;vIq
zO5W8yN#M*K3CiBeWHU+>{#Ww6DKr{1s^G$d-+_RV{Piacp15n<lM}_n!F)1<1-=U-
zR5H37pb4QBD{9+XGB^1&#*1c0mW_rhiuBAch3(e&_(JRWT_8Eb_6S*Z`~8$rHezR|
zN$A}I$i4?!zEk?HQNd93su(fdDrln6)#N|@Q9RQGhj-B|K$hP5R)ED<Z1^f}`BB@*
zY=82IYSq?j)T^J4#-f?)^?50&xkTT%QGJNGh$1}7Qo{~(E3R<rV4iSQ$fd&weV-bE
z9c=dQ$H&$aX`{fyBCM<*=S|HemBQm$2HjmyspK9L#ag+f!MrAU4G}F`^WX(sv__}i
zXF2?i^~LeXgZ;_TI?VWythw=+IxC^VIw;pBAFcHG3u~M|Qh*>*H_?f-d)KkENGpVR
z|7ZiabOW}!^KakHO0%KvC@;HqJ?o4Q2BKp(R^M~B;MO^Ad|Wj^{A79X)|6{}mUN{9
zv>GMey~CTgJo3N;w_Uu<duPv=CZTZey_w#GU{ju>w$`DK;JG+9lsQz2L7bl>0Be{s
zSY1Hjn}&Hrfx+qG>UVzP!8>T?K$6ve9fZ!;2ddo7c&Fa6M*FWQ6r>ZZ;)4jrYiJvw
z4qJ(@r033f{#a0Ph0{DBAKKERgiuoMa`0#9uUP?jX$h?NV6h?I!;D)~f~do1fvkNC
zlHlSvh5^D=YY9{Ym;E0wC0dJ~t7!y>pV-E)4aeq}tJVY3HqrP6p4aBs+xWnn{+{5|
zd2QnQVVL`aknrrdY;UnZ*+)chv-Ea?!}HjP>%I91>IYOBWFK8>sJ6SKcQcv(NqvdU
zZo&tA9kyo%gqPb+0Rmp^i9uMBX!*;~8I3G+nog4&cy*s+O9`^G09d|UA_qz@(~5kr
z;=vfxg~Ksit@TmV!=WohhLVKt^UHcHZM2ZdpIiGE$@hr=Tg8d1`qY*9DWcovd>df5
zd0NUKzSM)8vDB8g|GL?i&X#cio5+-!1P4)la>AtiKt`xl91Up*!q89}>(Xyb)9Ti)
zXt)9ZM+IUh=(JB)Ueh?VNmwersRP!T_~~z034yy~U9=#_+vKyQ@pYzvxlnTYV5`}B
z%H=28^1Yw2bYGJTxM0VczAcH7%y|0qLixw_9~eGRxPd;HJoG4dA5laOY(clQ%_PSD
z#s_zszklMl^FF<TJKOF(t@xDS2S^KX?`ia9equP|k>qm!>~RWj$I{|sPd36M`0ysO
zXH=vmnQ9xaM?-~N%GtMc=NbB0XZq6z6;$fZZnIdShIuPcRs1AH@q}D;FEDG>zUL)O
zotXI7NcSKAF>_Bo>-*V?hq0bZ-tal|U|o6sAz@lEd-KwXwcZab@{5swbLENTW1f=Z
z)V9Imim-CX1=lp+G>XT^HIGlVb>xdZu0VK*@1@^bv7WPl^@y7Kk+cm1(7LzWgJWtC
zWu=ku*gt*nFns}O<<`14P(uwl(Zl!_*XH&dDD3^&xaKW}X)3<8H%IEm(fH7K;=?`Q
zKV*9kol&Frg1g&*D-ENY{70`O#bW%&VexyJE)TqzM9ILQn&rsmk@PQQ{&tYD6|Lg^
z%=}$@`N|?IxZwwC2D8lru-+ALal#1?QykK@l;5jgrkF||VI0z{41U7yrIcCCy%d27
zaut2Sp&oocYa^hBg9(e_VJFQ>>XMwTf4%kO7fJPGu}i6s6o(&9(`oRdi~$?Ee!(uP
zKQ<R^)M4BKB&`K~u!bV-HQY1xb9XdL+SueI&A_k_jzVE-fqr*6=R^4pCtD||b<K7%
z&2Z0<yj}(VqZ4366H(u9-919&9SRS@@f2Y<yV)JOimpS5Rr4~xxc*GQ22Kvp{+8aC
z-((#1B;g%EAhh8vNPJ<rNK8o++IV)R-Ykqx$ds+AlDM;|NVSIA$S`IlqC0ZAc$)QK
zaV=xo-ePJy&kUas2LFk@Fsn2%3`@geKPOR&7Qo~Jc<eI3xZ36U&irWNFKCjogtjTJ
z3kpUI5aK|H`;MmUjh$_kbHbVf?dRXKy8WS9{a0Be4z+dEQB!lPrEmHM|6A;1=@k`9
z#>A?AqJPqGWUG1cr@K&!jys>8UnSu|Z}EXj1w1glMQ$wk7YPtbgX{T~Fq+toH1IQu
zo@&^!un1-+c9F#-u9FRx8<5Bh!|-=|-JoD%v+$m!ycAo><bmrqF{tr?m1bh-GURv5
zSsS*Xnfq*|#G=uDiLx}4?nF|y9tR%|JU1ldWdLIQA(N(-mPmusp%}#XOv#~)V(njW
zU0Eio(nbX>l)u++x04~9k#y82QvR5&oBZgy$+SxlqhecI=OWJ@AiOHd8=k`XDt@qj
zdm_<S5{6JB|Cr;T#VXF3hx#3Ryxmp;8&IV-liGh$f2ze2q#04l)JWgtdD{DcQRk}I
z{QfmuE-6!|q3E01y&dOtY-}s-Yh&Z+hqw^m51kG2Z;;?yAM^MnZA@6|2w}{(4MbBH
z*N<ZDmVOkcS3UZ)6n0Q@mam3=s>hYl&<^`#f3J$}!!~4ZkfJ<`Ew?$K;ak_ei+8r=
z&x8XlN@u##N$}oyj^wAWAgws|pO7n<cjrg5xA?FZ4)lJB;1PkcIqb|e3#`5c-c_{Q
zGAs{DX**08a8$I{K-H2vbx3dqcKe>^5JgbrZa#5QaViP63Nxo3RugpHd>PjJVkCYQ
zJ!*htVfh_vxpq&f*))<@3s;PUX#4GSlBNb<h8+BEz;Vw=D=dtri_})vuzp+QsEj*x
z=3zHIMC3PUKuWI9?x)FA&xDk92ial~UKUb;1Lnz)7})K4qe3kqB9hpb*IfJ@UrBop
zH<Es)Q=sNEoxAM(VzEK>2d)p+-D4m2%J1DZrJItdsK=1$&L<yE@Ah@DQT$m7PLOs{
z!Gn`Vm({YxH0v)-#ATyaP3~-M`SvZn{8zQ!?EM>A1DxnDx;sD8zJW)Pna}JOOPG#=
zM}8VHQQm4wg5uC1yHR1qZyM=@Td5Q2AUQRu2v;<4z$*FD=$*g7rnfQiog+(v{T4E)
zcXlhCPkwAT)#MXssvxIM{2abWEZ~>nO&!IpV78UO!o;{(Mw$9<5Ieb-V92Wp8OM7X
z{hS5)wR~KgE0r0r(!m`Rb>&dO*&Sz`YfIx8Ztt)VxL8$k&MQ`1ty*WgeHF#4+QDOj
zi1JE#oMQF7HA;^&*s7LpT5CnSzw*z1Sl3(SiiQ}C#>SUj<;zRrL_=q^a{l(oLE6_D
zm<ax%8SQg%NZG`L(*WL=$e-1mulr^+m9tLe>rZ7-%p@_Un=);qceqbiQ*q&0w2ho5
z!(*%O#lJM;E*Cw|$W>NT$?4%naOUU4JPR<!rS)Q8mgrBWrti`c^osJP_~Ie_CMUpS
zcDVMGWzh&dj1W}!BdFn3L}fXlS;{FB92L@<D!#53Zthos*(_jqXsItoXRhHH7t8kC
zPe(7ncsP!Ng))jax^(TKL;7?5Bp1n>;;BBnG?}pxYQ0!DsBHr)<rM{7Z=ad=CS*j$
z@9&^WyBcQiKz3uX)nKCND2}MHEQeR;YIvqDy^K~~Ei$zN^R+RhJMra*DA~t*?f4*&
znHoRt@8(x$cAMP`z!6?ngBa?aKcHm;GEC|!mDHPz?*M?_^5cF?$~MyKd7_Y@W^O+D
zlb@F1CltdCzR6AcMSsy^uLqlDH6-a@mX*O2BFaDI`Z%pp`gOs&F#L;;<*F@z{#h;R
zEvw4UG37$_jY*@GMGijh{v1xd$*%Bs@rp``DqLfs`!_h<DtP0lDpv<6A5T_kQMlSl
z&uvA&>(=<K;~*1_#kR%389-j`*igu5Tigrmg5i!7=XB#f@Ms{pZd&00G`6wN>JA$4
zbx+_`EVW1~MV5I^K^L#AWu4)t49LaIr0wzuf>?daJ{-oAvZjn?xru1HxlIclz7;tr
zwx@oXi@tQf11!)D9$X&5m$*o6{{%pOT9!+T#gLRUUA_7qWv&atFyqT(>^6$S!dDY#
zBd0`Rc-O@KQx2~VQ)Zqn@Q%qq$ME1u1}DxIV>hMaXFO|bzwAx|5uCkurD~2$AX{al
zd(W0J@AeSN;M)XStzu6C_jo`!7U_wUDw|}*dq7PW#jDBlx!gaWaHMYRbn`|+zcI4M
z%1WW07~nhPaQ`4#x1C&R)AyzSR7y$U;CCDIAr5-LbGnJNagDTsbqCqv$Qr1yjBFYG
z%-}rjK}UGz@LC!-gAeB*$>89dJ_{gO>bGX|r?>2_9DjsL>>|n@A>MnpMj#yvSK!!P
zMqGGTwF{vf<bN%H3nfuLAm|jLm~1Yy>TyIfblzCIk4!ez#}#;!f%vi5tGD=uJ$kv3
z?a`iN^<ce3j`UkqpA%m+%fA?=&BodsHe3<1u=cnnZ=3vAk{c5~i<v@?e=~{Vi>|PM
z+v?PWE7cT|uWRbjkO4&h^KfWvm|8762Yxs~Z$c>sijKW%J~Q0aYRs(L=A+j6t_4}r
z-(@x@?xJQZS=jRnQ&OvS5;5Ub4gr4@#)pSV63tPz9-_v3EcZ+dO3%GY{2l{*$_<&}
z-Hdlu=cpiTG-2GAKk*OqBCU1F`A@$-&j`v=jBNiJVzAGw&?aDQa(&KR#JYfNIW@GF
zJCuOSntEJPw-lRxm`k{?x%Gx<V~5T5&3u^%Z}FYablc#4fKl%W9H$O7C`-#{7^H!(
znCYCJ&$WC5Mx%{)#8+y!MW#_dbxquNpio=-8^YVPBi^^>W5JJaxTc0ZvcF80Hzl9m
zk3&+Sf)E4E5BufPu+5;3qDU}V62>R6)jz%`2Q_wb4Cmdrb~D^NOb4lhc0OFeUjfJ>
zW0FO4_+p7vlirYF_u<vR*csHHj0563ym%%Rz1#BC#{=rPFE+Dsr4H{B@S)2<JeK;^
z@wLm~SPoGnBw-?`7l)vZXjWe88KK{uJ;B9YexT<-izakAXIH)(cODMZ)H+VwJG!63
zqVcP4Ai47TdJn!PCFswpT1AB*>H6AK-)JD2cTuY;Ld~h}Q|}~lEy|f;nzf4#S_QI(
zO5B3{`k<210aRZX(#c|r6|ZVxmn#~jO;hz2m7hcYpn-imT1^#YX(=i#(?+P8RxQzL
zNvbiitOr)@{R~ojf*j|d%tQ}~`xQ$5D)91O5{4G-)bE?_ri1rzWv-j!#_X82SPg|O
z8X3xOp7L<%b*v{TG`KoGU;&*iV(y{fTRHlPK3GtS^c$kVnRl5`khVH$-D^+6@(;m8
z{gw`J=R1lAnQUwT;OjH?2XBP|^v+hx!jCgBNUP${AuHyBsEy+En2J!9kwwoXCRjyy
z*2c6cZ}Ok++IFZEea)*}s84Ln4xNzhLf9oi<_;2jw+DzBJZz>I67V&Ea=ht(E$sQw
z;rhc8jP;Sf_L#0%D&b*z_ek)yw$I76zPty+?^hFb#QbxAk!|s+?8gEYoYP*<Ucg<y
z&u5(D1N!IBC8RDV8O=!mK;&C`0HLx0a@&)WqoF`3QEm*@rKj@VJGihx?}%Dl_{~^7
z=ic&8+i+ep-NMAzj0}ss#*1BTIWITSrzI`c&cG-=N9roFrIy+$VF$Y*4HFe`*IVoE
zv`-`^0)6@h01yZ9YgGtANwsGK<Xy<ClizwDVVH9@`oaxOU1ygEqSsPXFHF(n8Efw+
zD!6IFU>+fVdu}311?5P`m>8r<7T_2WT^ZaDA7(9P?814-ITpkbvXW08cHa!b+A(L_
z;~%6mYQHG?`xaaVnzmz918!<DF+Hib&RTBJgp`fMU*M@Ophz0!(;NWuT6nya!)re!
z`?q!07A@o<7WH<c#4XUe?9qCVY}xp7?|J_tO2L+&ahOCYDljiqKj#92=xRMy)_1>k
z&CN)1vA7*GZrug^Gxd!Z2-$oNW{o*j62*7Pm4w9sFI$CFw00&=jppNMWpzPR`f<{S
z|1Ej^G5%}C=0;ZQUgg8Z8EvG~oU$nO<7`j#Z<6C#R&I{3BX7QdWQ|`nHDU+6oj9~T
zE)(A+8?+;xg+h?rR711G(MEAcapWl0Zck7JlEwZZ`kXJ9qxPT>oBJkreVuT?^TXeP
z4SVLit>T|Xf%1e#B&u$~e<I7fN9xowXNT?CK^r51_zl9kR``}jee=t6n0{(}7RCn_
zl9i;dJ-;k8(>CIGJ|x&|yc@Sa=Jc5wbac%8pEDsp(lPO2agh-JRNO%U5%o{ssJ>_)
zJuPC$8_8zGvLgHR3wtDLx221@lZEp4ozH(L(Jc8gt-}ab%b9<DwjXd#RzAPnfwyr7
z)U+3110q&B9tELjOjonE{`w%M&$(-8hzBhcM;XT5jNi(Dkc}u}|84W~5wIlFu4iEP
z=!A@U6#o&3h5Ft&zWm;}KRM@6+WAUs{yOpJYklYDj{%z?J`JrEe_R!?hP0~u!rVZw
zq(LU!sZQ}befr@n>{HQCD+u!;;&{D-jp!Q&9j>_W7YhLLb#^guY4iK8RRjg28)Tlj
zL4BElOG&rg=fz4@tGmrw2nbS{U%aEZa4T`@xLM)M5YBw&8Ci}GKMLw|qX4<^u0+pb
zMe;7$J7AQI;J_cmYQIyW!=Otzm#;JL=WEx?OSL0|gEEAAI0h>1xi&XTZiAJ2!22ib
zCVG1&Ana^YfBh9jT3rj<74*P5g`inF^}a;mzXJ+&V^zXx;pHE-GOctMx<I2OLbFUS
zU4V^i!?c204R^Gz**bGX$4hiLZ_Jy_q<7K_P}H|0$9YF-ZpPd{+J8&S^Z(Hx=?C%G
zLn66hD#txcdRV|q>N{nNfwaN`ha(8tU!RnANIR%k!H748gk5nikNiuD6kRcAq25g`
zfc}p7faW%N9HS+#_~YIVh+7;iK?=fG(hnO44T2*oymZzuUd0V$u3lZsTpCSnFUX;H
zI=+xb9{X}IgG=&)rdA+ny?z$fr99RTUaC#7QPgzBw?LbuYB@WL;CxP-JbuXlB$#|e
z(_7{9QEe&2(wn=?R;YZ0!97wj5idtaff$nnGxDJxaHN)udd_zC<{R~qe81kbwVgEN
zW&H*AOl#<^`k7Rw>JuU7x@Z=YY#f=pnd<>9u&4YE4&Y!-f1OAw1%R1kIK3OT*<SR7
z*Rya;{L5wW#uMPs2K?Og2j1dS^{Y?z@D+FdW)~|mvTihvz`*KeC$RPSdRi0v5XfVi
zJdRK<?5M|+&d)b{(hEui=SK-ItknP7V~oU1<QiEPSWIgiQ{>{&NdxXsQ3i>JfLzUc
zo4{a&ja8Fzb$3s$>ssL?vAI-V-D_*0?^fAhoEdoWs=>96frL%?7f-H$uW8vfv2Gj~
zCYC?H6wGpu!bFwjYJIi}E3ZTF^`KDn&QtDOaC~S1*pyB!|4zAO>r3=q6V8Q^gC|8;
zpkL6hx@}u|Fo?Hn2oCs(@~X0B7`3TKyk*-|h?xO{ECI#5ljZA(B6E;iv=m`mM_Rqb
zsr?@FY-|QPhb~#i0%`{YiK6br-hn1LCT!Te+X_3W9pF>(Uu#*lk=xY_Ep?x@jId`0
zk-R#EZ~gAH;PS(-6>+A9>iUu70BTKpgWvM_#2m+M=)mPF0-ChBCG(voSfX*zweRo>
zw{{RD?(?rzmU^P87EM7@&cZoAxf}`_tS3t;PGti{)XZnI1UlyPUtZ_`!1+?6HdXIi
z|LNa~qvvTx5>eVKGWe1Q!X!fUNRU~Jm5_4YSr>r{xJ{Vf&+3rDKs{H9OxRB+`vhbH
zWae1E)W2y*(jo8j_e|L^xlN9SWS_qSeMuL+uKCmy_0HXvY6~)?(<CG4e4HJM(vDtk
zya7-{L;3IxQAoq4j1A`Ww@L?8Xn1)5@#1-2o#XjE4nJWWiR!5Y(az>uucqJFGDv&{
zzzN3jgEV%!z+Rv=@h`5x7%FLfVIV$C2#mt|#zhW%@wSPC){gg<=+dO*lAChr3AVF`
zrf-eb;Win~$ua?sFM5lp0G5mW+><gGczq&F0szW4o$x!(K%)<4a3$LaP^05ssdeHX
zTU*$--A_5pCc3J<*{P+sx-68Ks!kGdvd#a2Nqnc%fqv^+H2<!s{?@}xdYL~FDt)8o
zS>o;8RT`WwZd#zOsu0&i(xFtZBpfohg9O`i{(NhB0-O%s`Uo*BspYDo15-7<$51i=
z1<QyS2?4x%VLiVnTvv@^uJuZuD7`-N3lO&c!yD`Ug1xp6)G#{dABQ97da)XbBc$q_
zCg~_iBz1>Q*aWo<(#e4GhBi%QHLRrzd`bESYdIy4YLL3yLfTY*uDU9k(cYMS4Az~R
zrw`NrRek&OtuW15z-43IprG;tEoHSbHq#8Z*_Zq<unZHmYk?$R(5l@|Cg9i}tyr4P
z4!&^QLD~oq1r^o1rRb5z^3ZroD1SkuMTl;zfUc$e^3I#lb~i1WEb4>FIiwj`BLW`)
zx@}%I>x{91j+$bngPHjzGx7MlY@KFG@nVa+IVd>}yv?ssa+QIrnMyHO%@A~b-Jv+z
zE{z?$%pM}%4=TbyJ@gps$O@yZAhByxvMA3a%-1lAHElPYxuaVq^e;7z3jokW-Tp^_
zX-&K?IHhu6Pe=P9q(2;bl6<~`3)=>{31c)%<b4{9w-n|4Q>7A2BB4&5Y!cLk-6h?*
zCQUdAj{$(+;wS@GcSl_DC4>pjV|_GU7QSQmaoLC2mxQ;z%7+6V@{^6=g7QZ=h6kXq
zkSLie&%#eW^tbdkQ@$|uNcl4fESPa6%F%G4vE^oAeafL0B18QzLhubveS+%5?2|zQ
znfd^wIx3v#>zCO7kuE1hBbO&qyYw2(ogn%4_3Hh<EhsbieVz`>m~Ao(e{MPgN(*f4
zlDpmTSlpOEb|#vg;akk<d6oGtjK_maEaRR>P>~!HFyru6i@BT?N~Q`XO@!VV`iY|$
zVQAWjHa4)^TN#IQT{WMS?i&d(JzWmH)Xuy?OBBLg+y}R$hrl)Wz_KF?eDl$rC;knQ
zyG&>@JBbaRQXakjA2~`|npAvudMZycQ(wufpH6LdE-V?ZL}i8#rUC7GN5F-b>O}@w
z>xqsyntqaC(F4pi1Wl9lbR#eS#T#-Zo_bI~w~@IxY4N+Us-Aou&W=DKR1%PWv}m*x
zqU@fEiJ>YaVu@qhxN5}2IFww}0Ft~(8s=DQC!qJVVB|-<3+GnA$h6a2NeVKi(}i)D
z7gdBSW}Uw0G`kGMV*!0v(z5^!+Gg0S4#XfQoTFmd%Wg<ks*^q-wfcvf>ZdnXgrCTf
zPW)j@Uri-pffy1)#t&fe#hK&|7jUyBlgIU`{1eFLWmi=hu$GE;j#k_nCT+?!QO*_U
zRUWg~tW+K-tRmaKtFi)c5FEWBVkKR8gy#Rwo)fM5`E0PdHZDsv-~VSvJ=G&;IcN~Z
zTW*Mv#IKfe?r1)>lNA6;!Oe6~dupa%R_2!xc6=vWPdateB^~tUa@j^FA+$z#`L9gs
z4tqFo$$k7SjOSpXZ%Gxweb-%lfu_Xx0CGFX?=&R$^b#+?xn<wFVbUOuz2%4M-Z1X*
z^+LWDVgYGScb7A9gzhB@4{ms?S5E#7!WG-RZRdo&nE&*i7ZQ{#)%~Vl?=5MAd?_mm
z4Q`U>a8lOgtV?YNP}Vh{0Cr`VSWR3N`5Vb&2!(0>Qj@fvEqd+~Dd&!ucF|jH41#W~
zKEm;vKRG-X{4mdPaCy9Ty0z!A5hj=IcyOt1+mV3aeNl>tdMAEbEZ$F^$FoO2(y~N5
z6(4W)c+dsKLw*!s694q5ijWPG9t(Lum!u>CN7egj$OHmjfC4S_-O?g6D@vZ?3op3~
z80(6>Xrj0WtrKLy%lTpIJve_UWb$L4U3I{|uuTF#aN8zF$F$`c;NZ%#I1i%IL2JVN
zPzj0<jT8C%?qYzbBTkBP(G-r2@OjRg@x!0%Kg}u39BfJpMie6bD=vrk1OWB$<f7gF
z_^&8#iOP#?(N6L=_cpfgMLBKSE{K2`ah~?M(cQS~bPR=J6_y1PSgY_IGP=ol*)Fa8
zWnampRD2!TLH{>k(QZkX!&_Kf*kxAC7~*@JAaCA3J^_G-HPtt|00l62t0b6Ek=T`*
zR_~^-;s(WW)z*q-=g@Utz~T5EM{vg8#-L*rsU)DTeLwD;(!rAe$TbeTPt;NGL?|?4
z>w|vSNq-ai(?e*sumeAAml7?cn>{2B#-bCb$0!jK@I0n3&p$6lS0@cTxdG7o^5J)}
zMJZEPpHF6p=9_wZe*|+5S?$Y&z+i-1z7p<f1oZNS6}D2?eoE5|htn36;oh+Y@*$Ph
zwKb?B8lWXQlQ-T@!=63(>9ovB(WH~6b=IsZSD0a4bM?X&8^r|*moKutsT^F=;Zmo1
z3N&k(6@~R9uu#!_?_24L)r(xDa2nPZPtcigYUH!v{N52r&I4;Sg85j?!v*oKsXICN
zH~elhnT2G=YatYUl~6YBtSrb-C{nmEhzCPY)FT~n77H&eHe}G;)xCIdem-lTa;)K4
ziCPboqSXV+#Tgez4QIYN=-Uf#CMzCxsu$NxkU0RJYgz-|Gf4zdc#xzqyMg?kI0=ZT
z)H&|F`+|A|aRgUKUwNh{$1m1%pLtrZJNaD14~?k#l-o0{bV@6ZzRa<JI4;1Mt@|!C
z(@6mv5a!S27GGe4GP{s&ryXRsnqbhEz4EOk8@M3J&vIQFFe6y4obA%>Fm+=BGwoQ9
zsZND|;L)O#2<s7Y4zNyLc^pg}$mdA0ki5)V*Q;dVcS20TY@6qPrHRKq@OzU72K4t+
zqUCM&^C0rSzB`{y0NSc`YCcuFkPE&;f3%QID~|7d#XpzLzntKr66~P=i{fp<8uTGR
zfk#Ao*RZ0)XV0=n;g}e2OR!to@k0ePmE)F9M<%$viNy!;M}C9oR_NVuqX%r(D&ou#
zG=w3FLH|!m^H{YVFs(X*<?;2F#4FYRM86k}6<Ar246trtaA$O1A<%3a`TZNcZ{hph
z*r#${k{`@oN-0`I6xrM=z}cSrJQPl^vzqYSJG6*WaMk2)L5j?G)=5B{zb}!NIOXt}
z_SG*;yjU9E0%nnJXV|3_V}};)d{F8oKf+njZVX|tSnvZUp`LyI9aI<X7i0!u>W!6H
zS*`CU4~>=2DS<R_64aExIhW=`{z5%I{Y?)yJ)s|Y3ffp~c77`m+Jw97j+Xz&oh#t3
zen0Ix5cAdB7F&syggn0-rw0qj@R)t+grgApi8ZR7TJhc1)6F$xSF$%<7*EozN=NB}
zeY;_Gu?C-<!Y{RVcAy~-AWT3pm()bfw?HQ#8eBTr6?Ub}JW<9k?Nsw~h}?qCBzlQX
z^V{GZ*-nKHbY)9EhRx~{a?o2RaQ_Dqg(6$=-~v-I&&uqn?&-H|Axs1U8SYZ}xmi{0
z8i7I(ZF;%}m?#z5+=`9Cpv0PB4JfmLqYxGFz)$sB|Li#LfaZ?`{i%SDE1$$Sw&yH(
zDl9uDzo*4_&9j-wKTXGV0qkg%&e5-RZn7qA70ZSRK~Heb`%47f$GL;eV*2h&yLei3
zgd<ECBd;tz@X=`b#waCG4}qJZl~pg>ZU0GQ0FZ^SdOl30vCV8Pw~lO!A0XbCi48og
zLdZU^Xj|&YZtYwzpxWgIrt7wgxF~<?!Zj;rFJ~%b0Ww;#^?81~%yVM}&+uceaSZ2h
z`x8)$4EnJnYjxdoD<`|i?Ipy<u18bv`i)+7um$04{0eV2IS!hrc%1LSjnAJQqgd}$
zB%NO)x;FK+0kinaXy0h!B-7sI|4uQ5(<(QbdQDDbZW&ob<dlrZ_0HJ*WRnxPS#Xg%
zBZV}D;nj(Jv4~-q|NZ-29V2LI&=W^Z>AAX43eQnk2tNxpv6S`8riOY+t2tKj#+4Oa
z{UhR|A1XUIVFFDVgZTqbBK>HL${m5-lv}EvsImBwKecCq9PYpHj~OQ*YkuPF0zL4K
z^+ewV=2yUvqe*-5ud1lIZrihwVQ(2iei|U)O(ibTkE!G^Vgp!Y<wku9Fmwmxq<d*^
zgcv~hT1BwQjq*d76o+`=EnbSQ6oB>`Fc8XnRfP(BS%bk5e@L>qh+LG2HS+M_O03mn
zH-;#npWX@3Uw3vOa-Zs$4*&<3J)AwN8yt$pPB<7=s_9MUS4XYle2r|UMuX5S5$OaO
zrbJNpFMEDEk=6u1jF&Z6Y6E_rpqW>6CU#U>@iW?5K1I5zlYeSECK#E{OTh~Q)aq1D
zPf+|nG_bRP?7$5?u3Rdp8%9-oI&|1c46@koydwJNQ{ttmtNPJZ*yx+#);nv?a4NTj
z;jqW&&+t@Ayqs=gRtXMw+EUzS9mCC{!7L8z)@y6WoxFvxEh9T<vCMeZoD+_0gZ2Gx
zOoDY^@+CHe5N_{0PJX7lkmJh(dnGXdvS-KG!@Pu^ie{4%Rd)$ph<hfUon_-=oOa^8
z!HBe#_4MAE3SSekY88e)38yw%KOm8b^b+yX0~ZXKDaz6{R9%u|T&xdvk4=Bo)KIBq
ziaJN9i20opYVS}39(qg6)lXDuPhTpGc!Xi7#6=~6(d2QX_tC(v3B?>(L0665CK5SB
zx1}_>*F`beYh~bc*!&1!gFVi8L$q1{`p3zh7)uP8u3SBHg*;LqaCwmuWzx2MmsVk5
zZmV4A7#l&Sk~`8WcTtby%X-Yt3n<|*@H8?$Y7#rKbN=uWe-dPNYdbFPQ~EXadv!ka
zVr2BZ(c8xPL<eh3koTo&?}B)~VEF5hQoIlX7WJjj)6=`LSUm^lO-ig*@2zwwc+1~*
zXz2~9MF=)#nTf|%FRcC)j&$7bjK*Iixwxs!2rF24AxD%UB~yEu66UM&!m%d}o2x6X
zd(XnmbiFl|!$>WQdh@7h$_860G7Tj3BgO9nyRK-VYfe^_N6E$w#V|Fzfqg*(%dYC<
zuOJ7#N3+U*ut6_co&Q|<%X8m5k9N5JB|P>l<}>quB|<@e(qJ5@v>;Sm$rQ$lvvT#?
zWAZu}Vu&?of2Mvzj4<h62E9EmC@j{qdozd+dfaAhT10Y>VzmB=`PI}riRz-ChQA!G
z-a8sBO=&zxyU!$uH$@N+C-vw|-lxR9??m{k;pV&k$z+f}to1$>jF0(6(-YbxQO<2J
zt<pVU4P3DL&#T_eZ`dSLVqx^zTj%Yxtud7$9g(Nl!e(DX_R#BE;aELC)l^vWv)+tt
z;x%1O-mj7cVE6ybjge(%ezXe!%RQ4B@75ZIDP#;DPZ><W`tjg+Al0b}|AQM@{riV#
zJ`IF{XQAIWe}~sDE3%t0!4GGMz0=HhC3{`A>EE5*2avCgSe1q#ye+5HX*5k+D{L)p
zs)u$ZZ~Tx2NDCzrXE?LY%`K+TAji@v+S16JHzHZOvE`9&S=<M9H9nppZ6^PXJU{)G
zcqra}rgQ%OKT@9J?`N<llw?`J$|8eor@z_ZmkcT@oCkGIVx4-45Kf>ejcw7Yi*3hm
z2o~+ywGAHdDKGOflS@Le1^b!P>n4GeAGNQ|e+mcP-;Ap)shd2IkuZesVpBAa+!8)=
zpe12F6aoX<3@m&PJlD|w1_bCkxL&J}h7b@C^m7p!5cU}dtIzLPlpm!?{lG#wk_KDO
zvO#(#NxmSXL_5_Zfar=P*}BaJ!9a{0SkRW~2#8FNk5H2+R_$?d?4$wBldve!HwQGH
zkfEvrH<R-Jibv!-=fUTwrOIu+O%A%d^j$wU%GgCjhbnNYuhM-ydm$<!vLe$pipK<~
zuY+}scQdX;KYzp89YDB6*n?NNdz(4wVz`a!9dj}Cx+dV8;_gIh5+C%(VO<kp)z=P)
z=D!Bht=8b|#K=4HAk)_Ziz?EP1d@v|>x8Nq4Dw{3gs~@P!Eqfu*Q?BPf9-FzU<mrT
zLJX_!H2AiE%CUCn*FXSnL`{8^Xuesf<-<q9AbgR6P@v`W6(#@+0S@LJU)j66Du5dB
zBOO1IKOH#blxt)MPxvUHK_cz;5eHDZM(JLae$D9ruhj1}9m1Jc`|+pe;(s+s+oDH(
zcz`bLZCvZLzEr;JJ5EO{_Qq}bA?{T&ebTbQcXT~M^k@)#=G`cr25VuAF3OV)^^5bn
zy>-qP*=%=vf7Lx6uq?iwOf0eu5BS?JC`-}XMX>K`@_Oh2ofl(oGYJlMv*+3H#W)fn
z8rcIrf(;h*ZD}zR#l~fM^Cbr%!Xx+<_mtNS3`|p*QUmJChMi5Tuu!MZ?G_cL-F}=>
z!ZkmZ@mp-bLrd@Gn0wB+pWRYiV2*Xb$OJ?<SA&RFz#WpTKwu#YuDp7@(&uOEss`7;
zceQr{+I}rbC|F~|_nJW+${M<;q_3c<A8id%VO&;oPjPVHG#Wobul(zn7Jcxu2Nox4
zVucMa5|S0RC#<F;x7`f^9?~z+p`Yc)_VC3!>F3X@d~P&Bmtojkq1OG%lYoW8_-(RG
zl$Ou-xOnHz@RO8>OURxFpER_ur~?t{<D>5n4zT<75kV0tB%l%bC8NdV#r*z0%6ZTA
zWS)4J3=yY(MPY$mGDkS{`_W+i-uJO9CXiSX*9Wb{TlrnZz$XqDdV&xvP&<q%dPWZM
zt{0fim@oRL0E)@(EY|7|!69tSl@OD$sDH%9YWR;|6T9X_^_8BAXVv&%?L@`upOm}J
zTB~z|PcoAJo`Ch3nW1DumC11qrm@uBSZuy&2P-ILP1DY8fi?5Azoet>xxmglCBZ#W
zTQo$PfAzFbjp2e~XhWt??_&hy8|2VTX=hR6@5wu(i=jS5NrY<$9$;lwURA}vFXmwn
zpL@h{0nCtgnxc*0h%G;a@8BMq@y(~b6`XTU+oC@pmjvjmNN;PP#ORi}^Nez`oH#b^
zJqUe4yuBtMQU>2><O=i&VKWh3mg%Dh;VdfokE`??gDvUizu4`LtVZ^U5!U;qR4p>x
zrFwr7NW3R>OPTF^6~6=qilXg1N2x%Q;Ex-RYLC)u-^Nl2q56RT^9fG<ZQ1*~>SwC@
zr<B~#o_;}G<kwLj>Hjo<6wxCTI0J!u%(HH?fAaYtG{FvfVL3#~cPA1U+)Pg%ase55
z%dWWNF@G3=w|Yl=Ji`*gW!nK8V~SQ0MF7~Js~w0($4znSf8fmLVEGX%dr&S2;Y@`Q
z$O4t}pK9=Pdth(vtvTU$fYOj%;@)!)2&-WSV=#j7>F(a5eVf+AJ0Gi=3M>@;O)iM=
ztE^2u;NH_gUUWqRIK%3N19~~e@O~~AW!f@jJDo>@6+gdZB`^qaFyn9n!|YXf?92e?
zY44(qIx3Bx9@{z&-bG(Yh$^|MbNslQT<OFyENa7u`-3&>j#0%Nb|Zy$sc@^$>(sUL
j^<2*u$qv!Zn`=dQ$m@Wo$V%|A4*)z<(Nsn}w)przcCP>i

literal 0
HcmV?d00001

diff --git a/jans-casa/plugins/acct-linking/extras/agama/web/google.png b/jans-casa/plugins/acct-linking/extras/agama/web/google.png
new file mode 100644
index 0000000000000000000000000000000000000000..f92017b3bf7fe2e92e12bf5bb0bc2727a5377a7c
GIT binary patch
literal 105019
zcmb@sg;Sf|^FADc1a~d&PN5VCQZy8oLUD&8#fm#5xO;I4PH`w!pg2W}7mBvHySx0-
z=ktC4gEupooH;YO?{ikJ-Mw}r)m7ziFkfH-000~Xd58u807NW-0CY6O&xP0Y9RPsj
z_fbYhT|q{MPTl2`)kk|v0Dx`0IDt>8SDiRitx9835kw84dPNNSD7En8-M)H)hGLcJ
zZ)SyLZTW?Sh6u38H;<iyHFJ{ZK*u#&d=#l1$i%#q6bk$4_ab$C>ORV)HrnmK_h&~)
zcbQ?fB9Htqy{g4qH${E+YQ=oH5PU#FUr43Mj2};0cg<<Q{_iywo}->+^KV7M9Qfo+
z<K?MFtmBFGS?)?s$zmni8-%y%RQ0!#XN?mia5!q3{}aAF*%?+gw{q%F@c|T0@n}7!
zM)Rx>!BhgVVGI88=}eVcX=&-K?VEJ*uQd|#@&a+lzc7v&7F$bPGk@>kvORd$VlWpp
z8uyChAoiWZiFT}BY4s_;Za4lC^m=+S8RHpmRn~N6$bGpaZ~|#!-u>@5<LqHW;L01P
z`Mt|o{f6^UpZZc+yud+RCy&Xg&qOQPH1QI;U%7oX5-QYY17|f&i_l|!?dLZ>=iUc+
zj!$+VV=hW=Va_drN_1)Uo`DZnZl%4%;9G<`Fr4J|Tmb;wzJFh&6i!@90N_bP0V4I@
z%lM!jWcoqJUEGm!JqSy%{o2a+-nP+pD(k1m;vD&u0xSVvU!Fd{#Y_=~0_=pMe`E@j
z+-YjI_58bE?b+U5eqEht^_p?_9)A4C)B5dKY_uv*?U^@i@TIKlrD@OO+YZ;^7VGW|
ze(SMpVOPQ95e&e8t1Ww)Od`O)y{(aXvDd7C|5h3G-ZrWLFk%n!hx3VSfYX1gv8{Yz
zq?LbrW7(rJuE4JUJuWMJ3kCLn55^n)|K-7Y?;L)~j2#4K@Q#kGMpE#uZ>pIQsR2z2
zo$jZ3t(NV!4yR|cAc7$LWEaOCX_|PfuMo6BFLK6TlKKgRG5Rq;#@-;QdX=9|_`Oq;
zCbc<nyR)jj7qcuE?VJ1?;_)zeJe=R?<o4F+Cg<kwg{aSR+VbCf2dn-m-p9mJ@zPps
zWx28Mpe=ph_y8#7HShZVI7;Judnvzl=}&|(v|krWj6@MJ#qbj+kjvxieNsB+pbWL1
zNqe!KMNqUU@QUW<6T|jrS1b5NhWFq#Glex~Ldy0T$xZ8-KGDbH7r~K3e5ew_5}yO!
zd)Fxh`j0=%d>5BsG+Fc;Bj~P`)_rd*J@|@~TnXc29D3kSKEnOH1Q!#biI<DjJbC#9
zU?+U94Fc0ekCp9C;M0CM`SX|%-)Yri!qeU;dB<)2&h0_z#93K<!Kwvq-;jhi?N$5z
z3$fGciqk%v{krSB-(C-yT3+`4!1&78)m4FasMoYcCc%GQ9FN`YF7?I3#~p5V?k6v-
zX(7X`5;4`CcjRcDCpz-WSKi72>)OhG_s4<H5A-LU6379rWVPosrq?tpHwt-$n&O>)
zS4%XvJjh$3v1e@<8VoPkY;M|FQP0|xRe$mgexmD4HrEKK;euKpZ)H&mq9WjBa9`Q#
z#&C%-l{GaOV=yO4XXIx^mgvv>ZczrI3CZ{j!d{1J>|funYg3^%HGGz-@Z4j2r4ZxZ
zDJ~Q-NhkQg_v8{T^7L!Btx7P$2I~tb9t)hG`-Lmg8h~BWjIzR(-#<AD;VG?nvl@Fn
zDU^UV1ujLz!%;pBE$1byaI-ME<YYJGX2*vbYOuE~`QbTU7Fut##)z3<7!C5gVY(;e
zwhjUCOGotS)=-hTs5K$KagaWe3ml;RadS0F{xBauarX%ANvv6l3O2d1`*S^TJm7!a
zf^=;J6*%hj!J#p3ei2_?)ywGq+pAI}NTyMWs_JUprYGE@4wEW6b={_jSWbr1N$h=4
z(;i0yE5{_kOF6j)?3~0DG?!{dLxx3-`P98S4=K3@>FTQK?UNRq)f6!MK>U!vfTgeD
z(t1d?gx+EA=>qT745YS=CvafT_GB<qU#!6l=cvu&jfbJ9KvT!L{=wt0+Ip7?T&`E*
z;Z5t){&GUAX2>w|H4p>`WU2yW7#x!r2;XvTG*hH3+kEcKLT4Zpg{p<3BXbii<@}~K
z3h;N(;~f}zq`S3FdGKaE{M&G?pyKKEQqM}cg)jcix_30YRSo}UF!XSLzxcsIjVx&3
z0>}wqQ~KvBh6tF@n;gM}vC693vh*<QOmOd1x*BU`jbCb<o1>^XXSsf}vheUuAWKKr
zY(CRn4&SIg;aRskkzuwR2mrVIIU}f9EshZ!pcqp65U((Ah01jQj{eb%z8;Cbk%s=R
zm#}@g4f$qQjrT-tS!!KHXm!q7JW?)X&eMqV-EElu!Ge118%o=gzE*IqE_FYVyEv6G
zbzgp_3sp?&iqi**xB;EKGArhVy`PiXoDeF`fuRt5_wSf03@G{)$S!~4;}!s|`#_u6
z&-p5Y1`5W59h~2#CmDB0^Cu{Ik_R|Rh>^a>*(9&~Ies!yHz{rJe;L#jPD+4ES|y-m
z6H_he`k}><(xMnl@v`?6LJ_B>v*P4HlAAEz*vtYO*zcKZ=ZKQimOYu+Bd5{J>gv^*
zH5>Q+)RidljNba`N$l101NF+R1S(Ant<4*Zi%2ke(sF_k6|ts0Upnu#>Z0$))1q%h
zv&z$lO%Lbc0<*>-S?xY)eMe)CtnTzBs4*SolAR+)%aKCufIBC&VLxb7ErF=g#fIfX
zBWV13<g*>4Shg@{2?EqBZQjD=$!w&cLl*s>nJk8HUF^ZE{V|Jac5IaLC}&*8Bdk+!
zvVs#-*DYbk_AXzXWBTBLP=DO+;lusK(!>XhRo@E?zT!I+>N8#53GCN20Gi5y2{mZM
z)o}n(oA_y|*Mkgg-;rkrQM`#O&Q+CBII_E)Q>_mPu56)nwsg64$Eft!C}B#o;>Hqb
zqJx*PK63PAGMkjAABE4F5=!($R)WPT>Q1C_<kbnV0ira?^bV@oKo~1MH!A&SRC?p;
zlKj#Wqg7#x>0vivpZns)r{QfkS&j)pF0J(0<VW?4@1+sJHmD1s7q=~U7FZKxMiIt8
z%-se^hh5XqQ!!JA?IKU`PwLfm@u|<e7uN%_BW|3(i^N#CJKq|uc@+sp-Rm&do@X}B
z1+2TzozFr8Etc<Igh4O)O~(r*4H$U`Q-QaK^TiV{%{iHc!mpW_h3rNcE#lo8W&2YD
zd+tRZmk6)C)llyr{vdf14!oW_#c3hs44U19zoH(?&cXNxUTYL@@-K@?b3Ge?u+eV^
z0&1A|ap)i8G5Wio%n84NjqYDe<+RA=Ym%*R`Z-+Pmy-xe4K`A=#MP(<u(FBGeaMR5
zOO}zA{Cc=Y`t=j==mzy9_&EPs2^t+t8$e6b;fPFQtP?&k^WNgP`~_8cRe!fUdiaAD
zc&kFvwd>`ihy0*W5Yqe=>M$R^Zaz724^70NcEMwyF2>!ubZ$N>Vd6`Cpb_k-k3m-F
zfrEaf8H3&=a_k%As7_HT#j!0^*EJ$#I|5Dst%<-2-rT{6`l9}s&FhbGp@BCpe35Z2
z$UwRcw`UV|aq}z}3q=RLnpmR~ct|iGCYv2nEp2_maZ59Nd5<r{V2c(+vvGeFoxXz|
zg^zwOdvP;Kg%d@Gx$;3QB)QQ!Th}0*(N1SI@^_=x`+xzEj*i83Bc;<BBdzpVG`#nw
z`S~5Bd%bIjNYb<P4_OmwZI<lOc*vg`jHVHF-Y9$Jcr(BEM}^e3U79G-f!wrQoS~b8
zsnnz|0@+2qaR!}Hedt5KTr-K5(7iMiR_$^lIcf33x%UwUyJ|E2L$cGDvH0A?L;=1Z
zN-nctHAdj8ucKZ-SmhxGpibJPTy2wfe;SK^!273&vt!C8H$?*ZO;XI--1JDt$E*3$
zxfm#+*Mm6I^R<cdMoDKsGW3DxkLM@{m99Y{!9k)fK#n<6g66VNieb@eK4}`wmO*-h
zp56nFAHW<Y9VAJC#;H@#X)YWl3&0N7=0IcqRf4`l6r`Pm`;vsgnB@acqT2|p3d!jA
z*BX2vX}9F7qfFpb(Wk7t(qyQK?h<48FRHUyVzF^M>Yc=KIk#c!>1q`Eleh_u28F(5
zmPDwpJ%PyD);U2tgYlhgpBsp*khS*xB&}{(KxYJ{_ff+4G4(H03iQu`>LfnFS}w5>
zIJa+nq)8aCe{NnPqI~1<@dD|2z8*x?qDUGd&78S@W>6DnUg0-RJv(ha4)37FF?lkG
zdAPan>b;b_H*0}XcO}qqo0}@9OK=N$zCXIllXS}_rDw-)VbIZa^qN>~whWUk#22#~
zdA++Gx%^oRdC|ub(v`d<hlkJy)&J>Z+((lWz$Lals1$RaBZvljm-g0J%n?23!Qu7~
z<an!idf+VH{Tpgc#kN<F$~VTd%Ay2W6I!PWHmBuw`KL#ni7PT_T>G(ZIH<zktFn~}
zq^+a)frG%`2sQJ&)!|hH#RqFM&_d&FT7k?239$<{2H)Edx6o;Y4yL)dJVVwGX^di0
z*1G5k5S|ZmPMtCZn;tDq-0B>Yjbdu(Sxlc8FW8y5kCogMiX1ZUn0u}f(6cHP0_zbM
z95k_OMaMKiM<>B_F_e{gzx2{LpBv}k)rz%!%JnDGpiieMc`dfy-JV{rT0?d~4?q)&
zJO51v+zsEs>;2OjNl(dKPI%{=Z;*~-4FV(}0V(zG;RzlaB`#TuSkp&EDkFn18Fx<S
zye6vq{ReO@eVoN{I}Pj8flT_%a|g10D>9fq$W%VWP#?u8^#K0)UZR|7l$0gOts`a=
zWBKj9aJP+`{-nNo>WHgyGf7*;S#8Z>iqMnu#_<6*FQQN&neQX|I{qG{IV9s_)Z;U~
z8<%t+@`e?PS@?3%l9yp1(oZz-nr5cr9HJ<8<CJF4toR`W`mEjHf1TyEwodz_ch<hE
zcM?C2g~2B3Rs}Ak@P?s?>B9$x<sWytpqV;hF)kG54?no?JAKUwe_*v1`hADQy-Yoi
zc3UJO;!9W=ymx89kZP(|Gt9fEX=O-J{QP%S@dCmmO?u&C5-|lMa4qXe>U?`h<GoKO
zL4SVqB?2ix74N|>$1H#*=pHR}cEeaEq;HxuL`*pvkaa2x7~H16(Q7Nz!t_u&@jVf3
zjEeY}c>Hs@j+<p!bAl#$fAjKI|M6_`N^WkCu2aV*(q5K#=y)a#pO3C@nZhV2F5=@y
zy1BiH7eq{?dBRPSS7gKPTlLL%srj;f8cHg}po(5E8!al&<yxBfhf6u<HHps9i|Sa0
zGhBH+n`D=1PE*f7STMN#h&gUT2;vxp6&*_|lPYWw#s;vzZBSpA^3A6>um&}3+5fy8
z%O)B4uMV+ju)MoICrE!Gq>ZghZ`y6)_C2+4U;`#NKb)$0-0z*BdH;(%hic2j8*e^N
z>AjlV_|^)&R518i&eQCm%|vS0<U1{%31#=Ad&*oJ3yjfD8mw&;N<{cuP|0nPC9ztt
z5$lYJ9im20hqBDkC*!nSU{qiiG&>T)J|16{aLv2YB_h476w#dEcOOK>S^FwnoL)G$
zneo0<QoJyV=#waQ%lNi`jo8TT!}V)AKDF>$<t<nIb_VqK<b(H%<3DCMuIrZLms4!w
zu$ZDgsd7oXHYR)n5&Be6*+naDyzInFycb*A*RSg(#rIcvx|#~$7p(|HCXFAMlU5I8
zozYtDcDI~s>7c^v5RH06>kB%8FN0{l(eBs_{zWAYCSt(kW&7bEKb%M^k|Z$9On*<M
z`z06)YnUl3&t51g^<9guH9ET67QoE-C#m(3sH-;Df5~c0hy)W9)MubiAX%F3+H__b
zgq!kVoM@?z-5~VA>=$_ukd6~Y?JMmuSx*|e1S2`gz>*iB%;XUz-0=>0bl(L!T?uoy
z>0pU#%G8KFOUrNcK^6JXDSMU0EaFIzG)A=P_KIne94IiG?vM*P|8V#D1ic!c1AoJC
z)wgch`2Gm1E5HpCsMHXe{<L%@s;f-G;XNruEFNDAw-7mF=<=gs)EKewjhmgH<vUjC
zPL``k5L4(Z+ftk-R3io4QEZ4Np7;iDMs-Mr76|FmZ_inp=NT~&gT5~z8%WKCPLS%A
z7@@12wX!l`P3kgU`^u2F71E0t8iX4icMw!H2O!N|@Uyet!#-57i&`*H>E(h^6aPXq
z1RK98+^)kWo##vDZMx3n*I3_fKr|!?x&}h)k^2zV=uwi6U=pINN>E`NpU{-*h6J|p
zTNq70%hF~hRZ(}T@bVPGe+w_WBz`n59#HwI5Qj##{f6${Q^x@8`G)K@bR)j5wE6`|
zhk2s516OX3VUCRJhr%*L!%elcoDH7{#gJTDK79i^4gr1MLduJ>1@s)0vJXtA4N5?o
zi<-W?gu1_(JAdBx8*8>)XNw7ME9kdjZnSfqO>GB=a@DE&x0lrxITjvgnAUi6Y%E)I
zlq9uXdso7|73YqHNLr3*Q<tU9WaAxfYpbxOpMnBmpg3Cm4b(sa^n(}lZ0J4~Bs(j*
zK`;ual#|$7YtzWM!ifw}B)Pt=-DJX-ZlZi%ni_-9xbX*6mgjwwz_4IRwP4~7NA_9<
z6qX|5SHAhIXh|r;1*SHBgp384@&{r<-NcDpsb7b>HLKM22%WYn(f?P#Qs?cqTfd^7
zQp@CbPQ6GgawF{gW*oRXWgQIL<-uni`TR9AN3PoZT%3Q1dOrH;`9}Q8|A5h}mM2gq
zl1-mc$}O~ff`UVHV3~kSx~#fOzCclK<@%P%76(%pU4dW5*te3{=(qjTI1#ggz)QfH
z${Ex1uFCl>%c-AhqeCjoh!>DZ01us>z@M;;u$}5rf;)+a$xx;hEi^=eI<@a``{f_f
zfR{bSCf`Oa_I$~D0^+3ST(4X?^Up;w4m@AiGQpp#O3X`Kx0+u*JhG#)VRPLs&g0vY
z>_lqsNe=V0R7<=MTy-J|gK%MMrR?VQb}#T|S}y7~QT^@UXkm$&kwhQpF*`6Yigu{5
zJJ~4}kIJQuB%gccotU-#sryx}=~3hD)Iw}Z(wTg%A8vfSnOin<E9~0U3I&$f7{YJ;
zga2P(8sDLqe{FlOQ1$6z5T5wn$HfqR867nzUQM`5K8CR+<5lYXl@GIs?+pRA-@WME
zb2r|4-9qCWWz?EFFD!Wyrb=m%D)RQ68xc;kb%RoGq+{=rpA?xm{m82?%$QaNY`{gD
zQ}U#L35Sy1lu^_e_z7%3c|``@hpDp@m-Hq)B(D(gNbyOXCR|Wp4~yqlVW1Y6x2D(f
z7W8~qr7uZpW_CM&@~|^QjU-_WUCc1{Z6#lI4~0k8!c*Xj0igSw15YOTKg5<J$P+w$
zm4i4zT-V~X5^dK3#+*Uj451%o+3ZP915CVmOoEZwZ)x60(O*kSip!t}cjP@R(GvvF
zH{8wl)Du#>YwZ{lNy=53fH(zzZrfc9xmK*(L=4nP7{~tI7g`w{5RaOK-twH>Aa|KY
zf0pqea%0Fk`uuf>54ljoQ5ZH65%}FyU{eq48w+L<Bj%f(5xsZ+Xu}`;A`+D71loWI
z3MA9FHx-nd7ga^z#iE2aaz~y*$OG5;hXy9y`D#xYaSO{vnz2N6C<{FV*pNc`-~FL^
zAt;2FJC#O}GntzVD5Ql7a>*|z3AT(<ig&If0r+RMn0KLc94?x_(1I<cH3&c27G;tF
zn#yuRAO+i!-81YfD-F_KAsYmpkx4lDNlaKn9r#Vm`RV{-X^dIMtzCnjj_`R^W-qKK
z@sc4wjz}WKBh;Ewx?M8Z?C8Zj`u)81og+%2#~9UMatCvO%+u}iNE45j1@p#|-WPOr
zKGP$REbP($@_xw9#R_PxW>X!=L4WsC@j?fc7yoSk;>VR2#*5x)=RQy7I1pJueJim{
zqj-!qXky^(on9bKC*Ej20JmReu3a!r?vrk`uY}v1w*jZeU3GFr%2DLxDK0~SAw$Ni
zSMQ4YGrrlDqx1T`3^fE*YoPBSS&v1TBPdtS+{s(LU)NOm^oY|P0Mb{?MW{jqI1-;=
z;JHE&%;W)E1^z_r(H8_}8M~=XI7<8ixp5b7s6JaSg6t3YV@*;SmhZYPq8yxC*4Je?
zYFDEa`}h7PM4Cz6k(9)JvRnV|io_V8s#G6*#0KEXNcwC~)XMyueM6Y&<3be-Qfv@k
zd0<zj&IY5e6PqV&GN6n1OADFbk_dk^<aapiI23{sZe-_PH(mLkrSI00&y9;PGrW|1
zYWsP~P;@8lJy#9nN9%GU*twq{PuyQ-y=l40)r9w2cvRds9h-=&$$8Ba*BbKD_Lv$T
zxqo194UQ%@%9q_ac{%-l#3)kZkkFR!bqFfMix+Do;CGaLPg?H|^i9II)E<RThT*_b
z6%AF{N|%g{81)Wf8$t=xu4D*cHN_VpJ2O?lh;KdifpFn&x?||}O+#s`D);k()kHG$
zwb+5?`ODt%L;|&;Za?MrMdSt=P}2jNgU};2O^e4Hni#ZN37Q%2C8odt=auaJB?i?t
zKCV7^!l0pidqtS*U}#sU{hY~2z|&GW;e6(kDK5TUlAYT7mwiKh=C5bb`G#G6AlOd0
zK5d`gA(fH8VqN7gZ+_RoJS2AJKg~~2Oh51)utMCl1yqJ>e3`5yn_t+@NJYQT-14^~
z1gL>p#t#z%964*ZFZGZ8&jz8T58Hh3alwI#Z>JsMkH(?PY5Yh&z0pjBCM#y|0?FB^
z7)?9Lenh4r2TqDL-{p+H@gdwecLSxvhTMpDj?+z9WC?)EEW}2Y8_S$QH9AM`a426G
z!!R$~02^9*P2er6KC#jS*KG4oyI0o0;pCE6SJ4T?^ggc$`j7V5XgW{dx<McJyMpmD
zinEh7;@o#FqL6-dmSGWpLkqp^o=Ns=AIi^*+uV!#d+U%siD|Mp?<dF#*lL`dpX+cJ
zVRJ^mz_@rjBcbfcCMGA*U+Sgi`^(){Y;cw)xs+Gfw!`Fe#VYG2w%oZZjFyqnJ<Nje
zu)Yjl=6SCV>upQC>#qXe26~#SeZ!RNC29RdeSaRGoM$&I(8F{~?lLC#TQOVl?baXS
zvorbF0d55naqE(8=j9&A79yQjmRof#>GE|j_X#n)Ss-oMFa3mNx_sQ+ag06aZ>)5N
z`r*^K8gwlAgc$y*<XC#6(=H#zMl3+OWPQ%tj@oOwC!lF&EF%#Q@`Yj@pC>QRnwIR}
z-j;Th-d2x1&1HV+JN<@tZyP-4I{M<^X{9ZY_7PMIP17SuvQsER(I5kFx=TKN6_1hM
zrOlKdN;N{W>gM#Iim}!c{jeNIlECppkB@`&gJ^$LudNjc%07b`E!oU)c7{)euaW<O
zeFvfmbH0F?9q71O=T06vhA4VfbwTIvXE#+fP@DofRT6E{;c=hb#DY&T<|&ie*cn&y
zI>uO5s^O~>CIQ%@`_kYJp8VjO1?1udKMA%(p~9A#K?ZsPqK_QAU~smh{Jez{!4Iri
zds8K%DG4D^YVa^Wd?jhX{hip&nBBxfqXA6rnCx=ct&ait%8D=O^XErDJ48;))YbQ8
znqo$Q=fmgjJ_sq1o^V!*T~X!&69iJ-F~4_3ym9Q%r<~&k?4lUOfZf{ff%}lW;<^$V
z=xu@mAfqCLNLj4HsN-C}Ead+xd#&xGfB!MNoBd5RHBo2Nb@K<y)S2~r<BZj48Y0%d
zFA>9SN6XRO&)07bZo5ErcBA@KhFZZyYhu^8im#ImG*ybPx&_0Pm#cU_5SbSV23vSI
zfpK`NC`vZJaOwxqcwh{jUP(rd@vQX7f_k;UE|<1q9+xlvw6vn(`9G)yE<XTmR=@VQ
zYe<1BWcTpMI223rlql;t6fRfXq_eJr1Y!mnUY*`y^qy5lTcyU7b^64TH>1>Wgmi%O
zt1y=+g|nKsP`dmCwFB;u=UviN!xDw5ahu&ZH18QlEByscUb!wOKnU1lelC5<PO+{#
zUJ@ZW7Wl2=%*qH&7m3Angc$p)Gdw+suLS1o-0Y2dt+d+JRg{np5DC~^gimZ;o7IX0
zRfo_Xx(B?TNnKBe7*egwQg9CBfoB6c^|m}%whvZLl!JkJ0vb`NHf3YFD=|SG@+}cl
zubf7JvkE&Ekt;S@>{lR8C%<0X10s5-<xG95y9p5QMf@`1sxSHuF_IXQv?*jyEz^B)
zT2|?)gy*cbEI9ph;d<|x7i3VPbB)eSfBr0}D+-8ZJ%)+Ur?;aU=2RgHvZ#0$<Ob!L
z0%SprOUWgN%8~~Eh=IQz{Yz)aL)kc{rZmnDQt(KRM7=bAEPW0SAjD%f2kTOHM|z=;
zBGKLjA;tXYCC7MQQ2!wxx9OMGC4=&qX4n`6wRKG^b0hRGu!(lAd(|x%Sz7q8URax6
zx{E1&tvn|9>-dI-;aR$-SaPBwHl%!lBj^(HTagM+d(G=LthbIl&cv0G#qk-mGWnMw
z>c03ZQ?Yn)@!MEC52+dIYGsER64M{%)a&|WRsu2}1hq?bs#|0|uP&3HV@wmaeJ&IG
zXB(>gmgud|r?Ua+1N}cu=Kj=-Nj`fehIN6-ag|>^$MCLrGvbc`BwA^VtqX7jj=o$c
z*-fqeoI9SMj5v6H67uNWHuB;kmYpsCO>U?ayY<u3M!!Y3@NQC<*@rXDJkJG#rQDyq
zQa`GroY`u+5gjnL??^DPz!lfTPcJQ5x;lE0M@^NhuoHv-$x_DXl$U7$Ih$IYW5Xnf
ze)&}lTAIaNGvr!s<1Wz#6%F$JYf7F3p=8#}i1rRxwUYD2uu0ENp{J73YL8Z70V)_(
zdk??6^>fOdfSIhY4p)N%a*1kYweTXL>0VW?wQHwJ19N}c8b8L7XjUh}j>Vc-g@H+e
zIUyog<IWMtb-_0-z`$9rj?j2_Uc&fY)Yl>$i6n){gqKS1UEL%!Bp#5io=<&Gbj2dV
zAOLC%+J%rEg(HQ?Y_x)68!T=@bCV*wc27uZUhx{Hb0%j3VW|kmq~@<?;9qfisP~`2
z5YdW<l3jPS|1)CPP_&4-)=q?WIba7r|ED9ns>}ff*IOZ1j2qHCAvT~;E7jv_u}w{@
zVz*QXwL6K8u~uX<gU5CMgO`^(PMrVNl;oq}6vM<U=VjtwphkC5K&<N}J)d@?VY|hf
z4M82yp;Qg7+Wzr2r<e7)*3A5OL}z=euI_A#0)G$vMlK8Mjg!Q-Uf%)HjxZab61_Ih
zY4B$^U*rv_jd|@;SLE^I8=BieU*}JK;Rp%1{b)gZAdLK6P58?sXtj$F`z8%$H`VOw
zJ(pQ*^M&-R#<={vQJ6M+a;i2WbhVr?HrHoeykT&k3NHnWw4x5FgiyBSGo<Vg5J*aO
zxik5gGXPPtt9}s~uxzH(qe7;mx-8KY#E;AzLn8DrTlfNsx7c=KQ}P84db`!}+iHyC
z<(@8jyB@F8k%HOBKAZg|tQAo-8qpe;e%tJx<UZL3t3oC|(eB&c7xBy<wRQ!Xic?Z|
z5u=)Bqht||(lH1t%k@x;kP4E_JpuQ<>}i4Zxy2zj6sNQc!DFAG)Ym4>xW4=5;KUO<
zld`eGtth9-e|?rR0}*jivQB}q%T=6j;}AZP9{pVFEh}Hwn$i(e_|a!-Dpl4qOFsB^
z*9bPRLc+nXfhOg}^({kRd!z+fz>Z+k;50!KS4hPKe)P(u4OJEV3EOElN76H#0Ju((
zL;9r`ShV+13074oSci7K32p>f?=zt?8n@51j-4+FjBV8jBk{sjr~|<$MswLQj`swk
zI~K#2KGbTyedDAGXbgAhQ)zb~SO?9@Nk9Yin6~cx4#$g5KQ!676Ws5TQ#~M`tGBGY
zbmjNt!P6+}KlE1`q@PZq_5%hsiUN!tYzs7t&$EkyvuSkS+0rI=oo^hcn6NK;r(-91
z#G<#=CMI>-`!bBgd_z%q)~M%w&lMu`#381x6D$LN#O`l)K=D~9TGFHMDy}V#+6wtL
z9~U39?>uAKq9KJO8CX;0+q5(cwLYIkAj^0^i*yN_<;7UbkKEu|AgnN<3V%Y+&pzmV
zywu?3h^^o>ZuXz>rDK0A(V3amch1^}zs)X`rpH_ET5WT|jeml;U#y}J**$*@xD>-g
zRn6frd<er$QB4ANmkbrVTH19<s^dEWyYdGU&J58tJM>hm(nr(W#|-)G$kC-q&cK~}
z^d`|5q3LKD?1>Jx8;+fH8d2J1YWIXvVzv3Wpr<R%t}D^e0^LkG$vtKTqrFWVE9HI8
zeW%XpLsk{WX&&*K4m)jn@$q>-0fZ0L*PT@`<{=M>BI6vO&UjDcJJHdxY@qX}$13!V
zYu$>(7w(#L238&G1s|R&HaLEf{mK(H*`*kBmu8l?$8qtN)J9W+k!q?)Eu2kt+~6ri
zReeZ8x0<sL=WZBLoz|7XXEjmgQUMOA_#iv7U1!9-zNoJ?+tCrzdB*P2@J5qs?dYRH
zOkj%~1i*lLL%#9-{UN)LSQ)!4`#46S-Mk?D)TmnB$X*Q{j~ZO_V^B@+(s%&S>w%ts
z$x6A;t6XjGqyC-)+GDZ>$BLe3X~Wv?98KBq!uzf&L;^OCP}gk#&tqX^QH}KQ1{J<$
zg5-0i$4MIcC)~V!Fj~Nw|DVV1{nNocKxR$ky6$)E`=8a422L3~UB9%vncos+lR2P?
zf0Xzl7^v7sOYrM@#%4RI_LkXvzH*!tF!dd7qCOy^DI&ja>QI#8*?@~%O55UMLqE_k
z66M7_mt?8m^t05Ij_yRqbWSH!3h4)uK~E+jr(0n8R>*Y54MPK3bwcY`z~iK4tDgX>
zbMQ1DF6^%kWf!7%5j}J4Cu^|U;E3B0k$Oz_Yn)E@om%~G!`me>UWIVs-thRGQ5^&_
z7*oojW_=9kSBlV^*_OE^ap4(?=p@^51Oz-Td+qeju2*|uTve7stYh&GJD7JWNUfWA
zU~#%-keAHl%Aa>_eLUWgP!81}C#&SPe$5hjOYa-G;lA)0_hK0DYPbePhYii1r~;{t
zs6^Bf6h0LueMYu1?3nui$0Tm+6>sv&a73EH!Gxg&?w;v$xc@BWN7MJyQSjG?bqv13
z9#Be*iZrdR?ps~puul_dex!Dnf1169J&_XZY3PIt`>XF&3puhj|2Asl2}fw_?>}vo
zVAlX)Pl2PMnwi+b@-|@9i%VqD=GDQ{Ct^>fivT)$ln(8J>r9Q;I@}ZDiXt*&fk&}g
z`6>msq;Py+hrtVf%vH{J6~Tt(c3t(BFbiZbPu`n;n}J{tqK(3GX?oL~3W|>oD=09T
zI<w(TWy_S>*$fxEkP3?FpVi25iG0H(L~s9m%^HcJw7H1H&(n?2F_%Y&uiK`}<TV~R
z*i?M)QRc4X>>U!JrTN_2vj0~IC~<3&SEvN>U3h(@pk?Jr0|L6(?RixzNUr=>1h_8g
z2I73#(wkRUAr;Ki8GbWpGH$nnwnO|)VB@8)VXvPJxtHI|1;=)r>zNr-wdwFNEdu_5
z`A>JOpf%}>Q<u?Sv%4>)D&o)c{CDC&lT@a0Zu}Dp_fpJ0+b<58o_p$$s-z!Cr%=1x
zKn6R?)VHF<l%bZcEOYzz6)73iUF?A@J<WyBTIlLj^{C3|aBiT84et>Vk~&LJYahBj
z!D4$Np#z3#bC;<-Uu!Vd$hmD0_(k;E<bsyXZQDzL=d$&lQ)*f8C`>YF-KQa!EZrHW
zpOsjD%yNg;u4Ho}0-cp^>nj4;OJhkAmBPLTWo55aCV2psKmX(*@k$~J&-fx&^ONq4
z85(9}v^rAW0RLHp|DznuK-cvX4PIr%jN#+xJN{y|oD2w$pt()~kCU6nL~`WadF{3e
zQRhdDT7vQ9cQ-z`xZ}9GleWX(xR0CeyD*J|%Pt4S#yUy&@!=H(dR?tW1&r_GW+G_A
zD;V`X4LSpeocwCQ$YoO&!7FErmHQVsy?XVwtfL#xycWp)%z)ZHwdH&z{Pgth8-kXo
zeW=q9;FSN4eKn$Hb6q$C!h!=T0j8*|r$m2_DQN_z9)7bVs5&$AiH|n`zF2P9^2|&v
zhD|=-)6+Z^dYWGU#-OSy`_-W!Xy>v=eZRN+#s2mB;6isk*z_;I5k`sXSI0~d+x~^x
zBO1SL{pn5%0g>m!wl32&-cIxf0>vl4Xj(qOj}IV>H=>E%6FU(HSo35_o!c^AIeI8D
z(F6$DrXezSVMp!a?W|)iT|S%!jbT3AJB5-KTex-hESzNR*cJ(mNqX)Q9XDW)$jj87
zJI<*6#k~yYWCEK|qz`843aXANuc@Rpf3mBKlarTKcdPY2{eBV2R%JzHePvs`4!6wu
zCFRM)f|l2V+B1sRh7<v?y(?k*I`Vbcz(9ilER{ypjO#~jp!kn-)@%XO`oO6A)iC4G
zfPwixLWmIZtxQp<%_^KEbqe||Z0CbMO&p!5FaybK<xZ(|AW7yMBtu_6$%3F{P{PCZ
z@k+j@Vf5eMd{h{qiNV_&s=k55dqT@O@0%DAu#fOACt3RB2){5Z2o!EjN(?BWaj~Uu
z!#ulvr92EXB)ZNQ){P`OMfYGX`1X7_YkG6PjFgFs%t(wxQ8dRrsBE%E8lhn3oqVD6
z5OIT_Y?5v;W&7nROtFgyb!@8|A<EfU67|Ss<RPQvyILUU@bE_hU~-{GS@=fw`w!Yj
zMLSQ%kthMToi<O?;im}+kGVF?s$rab>O?*AJ@Hp5IzH@v^Cq9N?njBmSzghPz=~N#
z|98?#-&-FWv;|vgOHbIe-pt>lpR%nZ9-sciH)YmZ5&fayk?S20N4I}${D?!YfH{km
zH5H#Q{pLvMF|5#qjU6xCQi-09)eGmI6vKGUe(awe{>2=E*Z$0&7zxmeiMblm<~ZKq
zo%jpHzD6F1UmfH&=^>h}oU!T&4kUD|!YmMd7ddwF3Oj;G0TV4)i5MB7!G%9BRap!J
zo8(gpoM7<a;ND&2edB5x#hed+KTum5HC}q??ztpQdGroX5^_oT#^SNArL?}<u5NU0
z@V^|Ew5yN98gz5te2^C$q6>N!7VL@utjlbGe*}_XTu6*<RU)LhJ^HFMUF!su#O=e}
zmn-GB5Xn|ehG)_b(A(v2*R42nI$7%5eB?FKYTvO(-?hD1CTs|)`8OHj%n+S$k@Z7i
zZdRUkimIZkZjU4Ti`CUDRsa=M6w=I_8L1iB8HE{@nRhc<GkP;dTMIVWMuEwRs5Viq
z<=mxM+NSb*eo9|}h}Kdq0)hdak3SpGVsIJX2v^q!izHKRu$DNZXa$0an=rkKj=w>V
zvJe8Do1?W(JNo@|5YY?7S|sdZhG-IA(gqOwieEe18*L8cx8my;k}P=68MKi5E0=2;
znN!I&g5v}@CkWEkS7lj}(7ArUZ;uhlwAfs8>pPuJKd}7&?6lIiGPp9jGPyFVvhbfz
zjWkcv80WdS6njvp_LCMcHenle7w?qmhUBZaZ0&*dse5|&_a-iWX9cDbt%)YdV}ilz
zkC^@u4rkjPH(7jA`gwRcqk4$wj!P+=i{qLdJ8UU+31EaGc{cj&u|0dNK%p@*#{py>
z_rsI=WRmv_m<Kgp$-Dd)RG4!3S-bvA`VV|OTDJ9{GrR{x*wm@;(gc_>;m0d0PIr01
zPv3n8MLxc=@VP}vw<zQtE}8kL8Gb94%x}u9U!Gdf%n~u<g&)r<4Zb;zH_b)_P)Vm(
zvCbZh3td4SvNTB-a+^{bdBa$uS@npblS)t<BKZ3qiVgE7lF_<>t)2E*(H%_2*Xd&B
z<=T=Hxf~~FVoa!jqD|V4si}W47&qBt`f4)^+p0g3yr+47c%(ywyd}&(7Gl=Kk8t@Z
z&`f)e&&}scEd+Z9x87^j3;RYD>@0Dx20840b%6VMt-E<P|L}epkQpB#L2%q7)w|)1
z#EKnb_4UPL8!4>i6M{8%wt%Ufm4dBxB(40^LnI}5rvryfp73Z|S8b{E4T4K_@pCjL
z?;nfFvAG6d(8%hA0g}Nvk}fHTmBP}4%Xc>}x7Th=Ga0<|=x}(sejEXO2!r=8pD-9K
zc5eFDf|^N}RZpl2oz4qqpBEKct*S(A9c4D-9rwH&k20Z0@BZDT>|od~Olg9x#`S{?
z@xAy}z)BZmmt@-w`P+MzG5jYvA1;Fg!;yKzf9dzvI$+W*M$)rW^T9RH0pxs^+S$Ec
zupzvV#<ZOE1@fs<xd1@#@T?K@o@=1?{R0n=O!@FRDJH;i)YdYTKpZ|y(0^c|e7hll
zg6K7Xi9v?4$s6OXgCav8p-q=@+j^dQ;d*H*IiwPF?tf-($DBx7IXU^LFim+`wtJL#
z@%3S5MnyKlR}tjjwy7%;o<`%D^L9Q@Kqb@R{78L&)p2SKVE6xX_B0jFf-kUq`n(#Y
zrl2;V^~r0a@HZH=ad)ZoEi7y){uptg)zUJT8Vx$p7AG$U=6<F~rl?UPZ{t%s#dS)p
zCKWSzhnBoBvMr%-R;L3Ik${>0Q#j)w#bZ{hjj8^oa{K7)dQYpvzG&7{vX&NkIpJCS
z=K{t$s@PLbXNEIvHwdYDUK5bpnf9oRL*{%Gj+_~fT!uh8pa)iM+aw}JIv})fxt{&!
z^OrL-`llyB?1y2`T0T-l{>hePXZLx>K)ZwFO`YYAu|Zhs3va4Kd3uewcP6M|ib~4$
zrcx&2AoPqt|EW;e;iv4@gmJghjej0vdUwO#mr>eViEO%On|q_u*;zGPQoXnjCd#W&
zd<cSKED#P)wECdx@23`WH{j=JVNICSQI$1T)V7JlfFw>-S8_)szsgPE#l&U;`sTC$
z(|W8DDwQKL?w@#n_$|@&EQ<5mo&e#Y&Z_Rb`2}lvLS?mdJOn*wQ)jPfnet#(8lvQ8
zDZwLa`xb{%L+J6*n@@7*#U^l!(UJ7ELPHmKJc-DE!bC=RPwQao$Nk;p{Td2d)4jH`
z^K9k`asybLK=F=oBcVzlvkjX;1n#oSDbXf*M5Z!)V3@41Q3QruVexG{Q{)2ryeMf>
zpP?^S{TM&C^#y_P1{Or=q1K_{*dt<(4}y52wJbs-+M+Y)_uslMFkE6}oLh{ac{OjJ
zKpu~iXn)e!1}1+KyoQt)eZ8N^ImzeN4QfIZcKI4Hm|=dy69$dS)Y2C2?5a^~pRQ40
zNu3~0KqWst*dR|J)f4=m1(Q|!PVF=9e;GT-KvQ}mtvo-hlLhPflf<!-=7nko6pvkp
zbMTUXnXUt78iVx_hUdyT$$|8vdynqOgiLPg5RMvmAZP?6MpAw=Myep{Fad7-t|BTp
z#XP3kiMS4>1qMs70V&y>jGz?W_K?f%NST3aoVNft0-n*#(r@{)`2>yMsW>smlm_Zu
zRVfx8?ZR&&bnbztR4nR4-1~gNeV|V?386E*tq`y(xvKrT@X<fS;f&LM@1+~I)shp9
z8_M^v#a%Wxj;&ko@c#_x<o%^H%Z_XA`*HS_^IIe@m4Iy6uE<K=k$hRuROqh73%hbB
zb0hLLM?*X@AKHm!o{mUqm=TZxrBBULPD2=O!^f9885(vou|=}hQNNZ!1gPgrHSWD)
z(M=n;mC*(yT#P1t5AnAjkB_ib-S2thM=<}DP~{a!2QA~2I84)6M74asA>mnFqIR2)
z>UPBXMBYf?#hO-$izpa@X~+l$<31;!@UP3;cfFbTO(vZ*$&^qeY!9S2Rcrk_opXee
zrOd`$+yS4Ivl$-?w;A~fCnhR{k<|SV@ky}%my#E1RzD6ZpwLh7c3bJ`efqHFG9z?~
zgKk`YxV{YahQWoPIH<ZOg=CF(w`b!eG)Qjwp65WX?FEPtDQDb3SC5*Cib|Ea1Pj0k
z%p^+j;-cw```t)>voH%g!ZmHc`&iUqnT%2sH`Xt-cgJ#x|JT6k*PWF04@9zHWyjTR
z%-+<7h8hCjC#yHW^NAB+9QMhd(6_*?3mc>@Q<N#FOm-l@9m1=1^`~k>3;|ch=A|fI
zk-onC@9sp1yVo-0aT}J4??6<r<7a2gjt9ii8ghv{1!6A9)9|nUP(4p{S~Bm^YU<^s
zuD+MHmPNR))kov`Twr4laxShH;RaRO;z(R+4AWHvRC;d^Oj}wMR1_AN`?lfFgN_&7
zyTH`nX0PS6S3Y=^*`GgN;vzn!F9a7@?Ui68$bVgUD2&+SIi2X<M-I$Z^&<;?2YtIX
zJ2g;HjxeDdDskb%F<R&g0gJyC34NMGOx<I^^vH*Kuo`8nxyVS5c8g5Vg=^M<bC_LZ
zd2~&Uq4$i0kF;~~a?d;MbJP_OId_swjvDEga%U{5dEBjFA+Le%?(WqLNwa!rJifRT
zLDzR=<iJoHPAKJ_cBqrsi>|u47h=wT?-OosYXSqsPhAVw#$J(2DL(xgikv*2cSgEM
zM9c#rP_{?c<2?BByEv4FiEC(4+L14KUUQu(z*vo7;tz&>J7wFfQFxP<-Gqi-P@oNa
zlHKqmfk{O54$uvy`Zc3Zsg^DX0sfjul!pe0aU*R2FT5)<YL>A*A87Q%yn~~i_cF7K
zz=TR|+8Fs^5ihWbXl>-~ha9dsSaju9;WP`|DYu7KMARRVfN&{eeI>SGnBD#~{~h*l
zn4h7K#p1esYiRZ~@?|=WM)_epzSg&Qags_kZ+W}dCIrKuv@ri{l<?Lhv}29|F%c{2
z3RSB>FgFOb0GWIpMT3T2s{q=>ZV2YP(1UN`-(<OdP)E5XIrh!O;dYM&#zCZ3;o*KW
zQWfaOJC8_-10o5blBZ9~Pfq)l-~JtFB%w89FU`V_hKmkL>XK`zK0f4+LVFI@nO@tR
z=ZY^1eYg)iO5VBM;-1qYlC{WFeD9vJbs%`|QmpZ6jcju?RMe+;X^mFwXax~{UgUeD
zn6u<3DDX7=IoGu6&PNovay|5JetT+xGI)_tA_Csr*W&RsYT0zxrHe%n*^qkcB?OHU
z%4Z8_0DymX!X8{vjZBB&_l4^pV|GP4mM)0_GSrgC7za-ypwqs^!X5oXp;6mRUpPq|
z2`4<uB)(+}iqH*1AP{B~&6kmYM1)1bXG)4miK(>);eyG~J~OV+fk280$th0q4>ZEL
z7-QrBy_ooT(KCtI|L%_oz}?_yUSM?VAp$VEj3h}Q>aZgq`wrFL@k+hSUpiOuw0(b%
zp`urvZ-O2ZIVbVkfDXTP@`dZ<IZ0D4^E!dO9hlgIsT9xp7FLPz862g-h~kAGBg-<O
zEIdP{R)B|r&QTu){I-m<6}|m8r_(oE`WJiVbN-J4UC5$8*rPi4sb7uesdZlxBb8WA
z&+~u$XRiTi0Mpy1zE1_v8W~gR2sk&OP{Fj8?3*X+5p-76=^|&}3EY7_Du5*`&`IG?
zK~~V>6IgD`bEtsCyTkt%c$kP;=EZV&tei6Sp9i4~!FR*Y?eMs+XI}6E5j4|6Iay(0
z3Gt{FGx%Lj*PGcW^tpz24@-Gqxznh^GQ*7;O%$w=MijC0e<C_)_CShAJet3j0Owwn
zbPc)>A-w}KvXnyM3D5l|7PF#)rpM*zxU3uy_L|R8U&&bsbrd)CB9=}V>c>30xK4)#
zJ5>hZ{`Rf9;b}FC{|@991cXK75%^UqVecpPy+v>6Pun5fQ2X4D@n)aFrXqS>mnrPc
zz7U}EHUr%6NQCa)-zUi<JhA%^&CI4tHBn*n#F&8Gq0Kv5GGSg3E(XcL&I&RMiCexS
z14^0kHtluYZ^Ypor1|Yl8fm+S@|BX&#~jSh-7vlVtVai{#+sB?{n^jmf&cjtLCNzn
z7u#nOrx7luzEp)K%-7+m`Gu|6+>x(d%MMRc;}u$J;Rq_yB|j`fQzUH?s$Jf?8Ue<?
zBf>Kl<MMVXk`D+I1wdQ!m116lDgwPW5o*9H^0dwR1$x|8*XDy7ce7k+=Y8#b7+`{`
z(ar0VmS#FVP65!!C<?0k6dRRU=qTJ(@{-NgU~K;PBO<yW8XI8b$f;*Aqk=UG`fk1Z
z*Ed`NG4*LcE%`7%@>tXfp0$;bh`<u96fdz_bcg*O1h?Qmc(53}w6sLQ2xSH2db<K)
zTn?*xtMte+C%09BktbN^fCv)fghhENRi%ybK<Hnio!ch~i*<q7l|U`NY<VsjGNSvw
z)O=Cha{q_kO|A43IbK7(vZzddJErFul+s16#3*Zh6wI`1cPA$&aL&r>jqVi&?2r*~
z@z#yv>w$6z%8e}GhK~*j8^qn5#sz^^V&_Odfo!$cBDFTb-^GIh7drtL*X7|2Z|Qmc
zxnT9yV_VIDS}s+uA_qJ@^JbL?&E~Caq#C$n*y#ONEw5<fc<UHb`TYoJ<iq{q#A)o}
ziIWj|l{=DKSm*<DrVy{@o&1gc0&9b?N?gWdQwdhr1`@9(GJ;S<loeRSfZlFSKJpe!
z>eFJIsFVVBeRg0TrcpkJ+x-tHDswFcw-nU9%;VEh@_D>*+Y6QDCrsWy%yEJeXkGKW
z2#yGQk@6__9U@hM`@DgYpd_~@ynL&n@IiP$>uNwlqxRO^zTe!VbIgkB;peE=&fbfL
zYTSaxi&%0Dmjr}QV5bcKGje4#0|s9R0N=j*pu8F)*AwnRe;a3m>O-`-LrgoH#wHbx
zA{s7TJO}Oly>qiQ3(KdW6JQemC2&qQl?|X1J1f;gk~9|@z2ol{(~2-Au1xAo5QEEE
z@TZEWRXkWSpB+2OET%d3_tt@NS%6^rl+yZEl&WsjmceDj+s$~S44Bu41(<ma81EUv
zZnAocZDM{6q?m(^qn0Ew^!+%UocsmipzAC|xBO(1ZwHqJuE~D?AxES&m>%3M+vxDA
z`-{B4KI&PL9zh|;7$9+3dlv?7R6|VfUV`k0we5dXd@N9akpR704Q{@$W65}}H?-vE
z=D#q&BGblV_YJHk+!}1TbC$Aa+BqX%wuQEG`{7UcR=Eb1o<ZzW%`#UaG#c{czef4v
z-PcQrZMhth-mP{3+lDI^B3EI$%*Z2Cqf2?Q8kh9kwey8$O8hyjcjvjSvo~K7-Qh_Q
zTL&bI!Zr2L&j>?8Kd4wk;m>PvL?CDZ-Br&x2``wZut+G>LQ0=5XWyH%83)olE4qD7
zD{%g6`#RuJN%HF`imb=&c{ZNAHdodx5N0|4`kHd%Cxa&!*Zeq&e~@>Axi+VOcQy&Z
zgcI?A#C7wW$>xAO6H|(r@LStq_m$<-6dig!GTF3FX^tc!00Ku`@rVJVNRfB*+a^Y#
zSGp9f1;smQ>&P9i8s4X_dKpopIi?N5H{dCQv?Y!2lOOcJoSCD(Nb2BpH3TB%H!!Kq
zSwQl=2YwZ@&!6<fL_WmRN)MPk;NZSTn;^o;|J#hxTk&&}z!=uC;}WBNKcW2<h0&P+
zjs718MYYAS)An<;mFf594xt+;wa{+!75017i6%$n)(&@3-Z_o{XI;M!XfpG!-|krb
z_!QT63YA4zdC0d&LwKj$-WC1zf0+pQ_jtClxBpYP^BESr*9=NNWQu}3iK((Nh3`ix
zLZmc7X&97S{zLvP$E2R#8VU>%=dxvMAdgjn#WpxEWlh{seUL3}s&ymBDr#h}x1Uu(
z4=OQN5#uAa`WNp`Q-qhARi_b2p*s@#aJ|zOIUIyF2nDB1)*DWQo6>JtM8OXFz8P0*
zK7toIFPTKd&nc)dWQ)v0WO3><M!3?3Qog#qgHO0%qX@?@$3A%?VCa03nqA8+Op*A?
zOU{N}Bm<TAyRO_lo-Fehf-{LaTN07ZTTA{0sNZ|P5<P;H4o&J35f!T^#vPj+lHsiu
zz{%FB0TQo+fJCZhE(K|UH4;mb3)2ugR0OKUGonbpCHDNpL-ml=DQV%(edn)1033E>
zA9)a&SKe6H;!uSX@JW9A2t%mennQ$1m!1u9x3>A>)Ie$?O*gVBA!B>IEP(28+2v9M
z8+s_{oO!rL2KxLU49V<BrqT4TXnJ(5eVvam`k`z9zSwV<4r0LjD&+NyY`{u+Kqj$`
za+E;n-N&#_Rkwg$QZa(q!s2qOoD`)7jRsay-^5PHBT_vKZ^}~eeU>&-$)!86>mTCC
zs<~P6>}`ujb{YjyMg<v1-rd_mm_pKa#h|K}!?9Q6xF1a|A6X2PT{}{S^VOo3KRf-z
zfUO}2+@R&AT<BN2JKD9K0OMg`c2dtUac7PS`2VqV)?rb0PanT`0ZECarBk{=KuTI#
zQo2Jy>5g4GrKL+!q@@v98l({^=}zfpfp>j=@87%EwR@j)?wL6=-}%hx1=8>egmDo7
zS$HoE^a5>`4JU{V%SRq!5F>;B^nk^tonrZbJ0?<SfPC?bgWkZ2K`GZ2w0Wlcr5CFj
zO|nUdjjfxwi-<dcS4n^QM(%VT2p)f~yh~iM{O?jk#E${+VgV#(TV(?k+hYSztAX;p
znaRj@M<}ww6zW_j8WJlDh@W7+>Bi<wW|6ZcPCXO!z8jGyH-ay7td_CcdjI4r))V~~
zp!0(medX^LN`MuQycWnk=7}q^U76@x$I||EIu6t$2kxc3r7&`Fv+ei3)6Bj_D`-2L
zcw~WAiZ#X?WF~~g8+UrPf&2$wO|e?yA3Jzj9^jARi}vew`otZ)Z0pZ*M?=Nm_z?f9
z2c7G1cA9nITwDHDk4MZs8)qUe;XgP<CbWdJn(fZGbwC=kSB{3LxZz4QzTMC20`5Kd
zR~#Lr{8(n>(n)S=k)3Es32;h{QBUwnOtm*s1wRS2p`d|bc>GC(ry5FZGiTd_Ix&bJ
zKD@_grt70mDaO;j%2qwHeHeADFo~2m#r$PoHc@8<`V|S|nlIbGnNJ6X5zjXych1;_
zxy*{Aw*T7;SmD?q-~kfQ<I)5<o&GTpfNqyTa4>J;qD+S)xT&&%)XQzL$Acyxjn1!>
z@n@noO4LzM>*?R+SzE-TQMP9$z}up4XbDg(C98)o$+{%RbZ?sc+d8TOLSI(?z>TY{
zlJl%Xm650nV?w1#8iZ6y+uvZRo=)mmv&E60z-8rvgzl6#)K6(Hb&&nNJobpnkBmRu
z>gcUf(jKx6J5{PSk2$2Rnk(f8b?%2<);W|Ri~Ncw2FxPkRh-ptOAyXEQ2Roh@F4ba
zxBK^Qe!Kk4r!+Pnp(ptpKBC(D!c*QpU>M57?6$fsJ3VY;tWsy)^xtb;59E<q(@{3C
zmNNId`{a6HV{EG{?*0Z3N@piZq6ByJ{ct+kBfG3bCjYXvAyp7(dv<*GI8n{O3cIb=
z=CJM8h?XUITVLlY9xz0BR+afZHQafn*smr_zxu9}y9t64=#rgo(RkU!ncCoxar$m>
z=lqK2Xq`vz)fx>BmlV{BPSj#(oW2vs^{!E2R`6ZE|LECK1c$t-YAM&1udq?%;!HW`
z+p*l9QRV>WG`AFW3pbI<a`la>)v$*dediIRbu72bP8*<4T0JHfk&t*7Taz67GuNDT
z=V~cfq0%^R$@4?U!|98BhW58vc@(`z8e;Jw&{RN!K*~ZdF&7I9*3}={^&1mr`(nZ8
zVf5d6(2vCO$3b-;RLx=>)H~VCuz_Z%i;Fg@l%$iJ<RNtI0&=6^+`&z3>yGw^UbzQT
z6e$`q5)-Fykd+|z4$8&kZ;S1&MSiq9eU>{Tbc6=mMOCzP;9~$wdHlT9tmN1C<`H4O
zYm>SIiJd2Su60}p&T<py^Xjq@7pb844QtmRLt0V?=)Km(+`M9T1!~m5U`hS`2ZDzq
zANBBNP+R{;@kj3uXGTEv4I3+&T#D+W9}C#b$O{@YD8$a@xx$DW@K7+@)((C?ot)?V
zfmJPp#GGYIK~FzYD0Ni3nUXT+T|CUU*W7Seb~pvGJ3enQ<evAwOxE9Hp3*ip3Srr%
zmS-WQ!2&+8SBI+mE}4Jqtl0iXAmMQijR4g2&Bu@G0lTwlspn7HeP2==)j|~PN%P&O
zz?7fhPb&n6cvsl_BgW8ivocCuM1;jAtF0DDvy=ux3$q9TMkwT7AReIuc&)hixPi<}
zXWHZZ$GWau(hQyUZ(e3zfz4EAO4Y~(**B_;4Tyk6|1`uh&1%9Pt>}#Qs@?TdVf`~^
zf#1lG;hK-JjE#o?>m_pa1<0fu7!V~`FiPHSo80){m`O=%rDl~sB}<Omu*{cVTuI=%
z;-4EM*X_pP%m7H!?#Q}K{XAf*RG$b(kiSNGdDzdO33}EY;Ow$SxlfY+Zi?8h!niQl
zMm|`FjN^rx(-tyNJ09+i{hh1!;GM?$)q7TlWyC|Y*n~ZPX8bB07pVr4jP70tHXMTn
z%!`o%#q9Q897Um-BZi9411<YcW?LEyST#RU)A@)_Z1q4o>CZ84u0m5Xb`+@cT!V0X
z6}TtseP~~KI^%kpk+;ZDmUKn<d*h0CTJI2)EE@yVldhW6Pjz=(Un1ynHryT5yrR=3
zg1gf(eaF1;Fnt%0+vAYq35v+r%#)nk^8pIlq!bva@5X7qxKA12pfc=Wr}^DeGWNE=
z;X0J5cKjWi%vtV$Oo<SN7CM-RO3|b`ZW<81sx|S=#rK0MQnq2}Sx60Dm=$t_2e1zL
zn|oIxm0%#Lw`)5Xsd>gG-TA7r-72|1SBF7KH~1W+{vXAmwv!G^*uW$XZIS59!l=fR
z;<2^J3}FL*9Wos4Et0>x2^Fe^T|0{C8cegcqOQHJPQp|>k<l`76~8+Ti3%8ZyI87T
zvW(_n475jpKKdfG%twD-ND~<^oYshyX!QiCxqqHv78SnN87DU_-BC&w0r`b>b1hh2
zy+-`|@#%keBY(i(Xtj!zLGtE>*jqx`t38(60%?SVP{QXjfb3Y0l?7E;F9Z7yKNO`1
z`GUO^b73Y>M~`#$-djq;n6+ybh9<4)&}}xobU@=8YI>DwG)YC6z&^GQsSA@m2uoFe
zWmw3F?w^}3k=jiTlE2qQZMr~Yt2W+n0%SLMiW`yw7!D6l58FJ5Gp0kFzay~DbyM?X
zFatv6AA%(qfVAg7bm+Nai?_g%|NH$HvvKoWW<)c@pZV+=+~}N{y;d{+j$|D&*+nK7
zybh77#Rwu{_9Cc5Hmf8avm;Zdc936=DccZ^ZG&k`YjEVlru$2aEOs@5YL#Wr;;{{<
zEtu8V*WA1R_TobTHmsaw&Ybo5F1I5G4~qZeH@OSf0e#jv{MGLoa?X(ljaamQi8xhC
zmb(Y<EEI4y;Kah*^sI=gMxCGoqm8K!XJqY~LS`s*d}xBUaEVq8{^d_NVI&)6*?&Nk
z?i02^8uZOsIuXyhu<dV7`7Pk*p|sB+o5HLcopselEMc2D;Jla2N9<;Vr~e(5K*O=+
zImcS$a`pX^T7OOXP^NA%^XD05lukZxJI=j*(OSqdJ?_N^Bo!d}V7~BIJVJz40}W&g
zcH({N+{CXVhAbZj21E|ug{0}@zLW#1d!rJ3^ga-a>Y+OuQ9kn0om<vRQ0f!+BnZ+`
z8d3E<Owk>D?)TjbYFTV#jzO^xa^Z^Tc6a&UE)vVAn{WM@rb3W7gST34sX(NOtRk@2
z4v%YMIy_w>sXHA#QQ`;6EZWNSnWxQPeOjQEnbn>n!GKNGl~{*ksQelC<e7^Ad#HC4
zY4_uip;t9C$D4T5f+E6Iw4F*q&A34!zt32}Xxy}RDR0tsi2k^6{vVahjOH$pVa|Br
zr;MVBoT1clXAck}f3{1;UqY|lg@ND0nPckN>>;gB7+gPMYh3$m2|gY6Zog8ZvXriw
zd&WM)>@9yBvq1iZrt)N6qe2!bIzJ#>3oxqo)gg<+EIrbv>3{Gn?>)gYirbRB14Jb*
z2x1maUywE5AI0DFai$?ks!$#goGYgAr--{NoQM6pCz8qc(7V{2v4Cxl!pDbbvirg9
z@jK64seW6DsJ^&%^zdb0&Px;1aAS(K*?O+1emRu`W8$s=0s?gV;M?Zwn`@B|?BIQ(
z{ikSkH^w7JX_<*T{+?&^XP(wix)8ekvqZ45?AtW@1q^3#z2lc8u^%)BczsQCiQ|us
zkP9nBk+}|r#f(DUWmKHUF?oyhL0^k>yyIvl;ZV}!vQ9q$4iUW6h7@nmm2K@wq-)gr
z1s)9*EZI^^y{6x7Q#E!k$kFY7AImfr3lmG*4zzHjtp*1NZvNTpcBZL_l(YM)4=dh7
zYta?Wc7n?;%c|R9wlFDewcbjkFkOyJzEMyj5?exo626#WBH;|@cgk*iROs0*@g|wA
zjs*@B5IRazs_w%*9%>W9{(HTuF8`yJCvgGi_ri!?xa^fDJoXFCBL(x}GUkE5k>U68
z8BXgT%Vu8Vw5((`WI|;ASR13HVzyo#z9S~yob8o)3VWlG3>`WBJk7g$iuXIq6SsJ#
zoe%JP0qUEitDoBoFyBhG6$t`X^>SioW35Qb2~B~aqYkd<K%~s>Now9$qsC<sb!5|_
z62=>*lrMA*ME#c0PW0_Ws*y!@xD=pDM$)&1@QXa7c?#}V3TA<bV!gp5&mzigk=k!m
zN5;NQSRV-B`BU?!WMd~enYZ?+14qH>LmJK<%RT=*htMSlK45iG0s+YB9x-uZh6Kg>
zlqd5I6?!767DJ6`TIDkpY`+=do}ma~m0<9IJ1DNV<ld-U7t+Hfi+fhzdusSa#y`@l
z;>f)kXGfJg-Gv0v-*z#HmgHD1Z@&2H)xvbT7paQ{(jByq-x&&7K!u3Ylwq2gwqnJ}
z4W8J2lAW4)P4xJjMrzVl@+sn462=K9NQ4sY*zt_ivzawh|G+;V&qKA*tkysLFqa!I
z88RJQ+9wn0B`PE$QW|aPY_EDX2_gT!o0cDF5iI@1R911F*K7u*BlZ*7-L~VG#|C)s
z&$xC9U!(-ICWGyug0+7_N5{^9u;)ZJJ>H*O4eJ?%ee(t9WL@3g?_;1({!`X$&lIf|
z=_^^l2KRcewSP#(Mvh0tUq8J$d)T>8_ARD|!E5t$dWbvyi`xXR+}~plPxh)<e|<Zi
zg4dV>uhpN;A_a_way1H|gP6c18qa7kC$9@Uhca2Q7>?rmxHfhyWvp26n9i2kT}u-K
zkk8>gNqO(49{!DC;qNzZlg7Ar?F}Q}m{AH<gXcML8$?<#I3d=~R$`g@;i13LdqAEk
zoHA@AT~fj!LU6oKpj_ETbINbg7Ds!+)CQ>?j=BmpXEI0f>obnvfO|_iAG*=Y0_m?G
zq{|(0K9J^r=F21wq9XlHMfz*RAR^6r!{(<cUFdQm9J#7Cc#^%lB?9c=94kKp>d^r;
z1B)(R>G$(2p$&dZff9l7PYs_NsDtCgVePqy=hV%cN7WbVOToAM_9rVXJRZnGHzNuD
z7otulo*=8wG{Njc<Mo>Pv)_o>@`Qf`!kv}v2wK)%miIyq6!*;GYPK5=R1MP_<rk4}
zc@{mRWve6Y@F#3$L|6RzyGAiu(<2^AHQok9J^gT*y8JH!J;19Mk$eJURQJLYd%p9R
zkbz^PSlmo(q<EMb=V8V7TJ<Z|^B2E&lE40MVTk~g&LTFTsh&XM?vfQetmJLPHA4u3
z=<wm8mIUMO*J;pst9_c>nsRY&w}zyr<Trmq{TmQ@$zV>&$=-irN2xGf-fOu(y^>Ql
zV=<%fh|#v3!s0N=4XY#}D9ol;d3`CJ7;`WwoxzBB?O{^H%XR9mGU#Z4b^6sz7E9>P
zbPn}pr*?`FJimIF)FR_Pb`m~Wj!)}Gn?`Bb$Sa8_*C2#FPr8i~l&gN1wuyz?$~5cK
zaTsaoyXkpN-qP-aecATtKU@1=5LXUjht(VUdwnOm5A}^(2;0O4DLr<|1_WPFn^VS6
zIO0-6vGQV{BRjA|sV&uiRqh{kX>|6poifH6wl+rEAu0ie^n*Mgmc9X{uwhf^4f0TK
zLB=j4U0Zbk%Q^2JsMKcn^T8{3i3K&Yv<Yq9to_kXO}55Vv6Y6O2oFeqGk2!5ry)-&
zBg#u!)y(+0@;ywD{M!~WF7(28*iy}E=u9_p+P6$f6^Z+yX>3evoTkjEjQO;buY74?
zNpy6Nf2O>wE}n@Y+CA6DIdl7us~$;(YnEj%Sy`hQq^}Pw)iEb*dnl4<=Zt&b>FE=c
zOJ}4H3-=W&l0rDmlj`is5GrYD0@y~XwY#bJTog1kxxdaO7qy`S?+h0Y_D?JN`RGYD
z@<!>CDz;*3Nbye>c^It(x|XFo2I@|L@1FNK{f-Zm)V?z>Ysy-l^waY;lk(z3;O`K2
z9mV^OKZDdTO+am%uv$#QXTWBPi#WJe=gZXmoB-<84>C^QeQzh)qa*r@U9g#`jnC*V
z*s$o|HPOb>)dbksD*N?ArP|ClG!y*;-OM`V-jlM60m*Dp(Cwdy$57rZ{r&YLGR4bd
z8t?e4MCQdt0uAc7vJLNGDetFfum(W;hIa)!pPxw9UMwc|&$GJesZ}$2B;Ram?OH*C
zo?u1~W{iiT+TS{0GH8~fS_Kx`v>zTO;TW5B%Vn>f?9g)I;=C(Bg4=#ygF`+%G_KUV
zLs~^)9U-m@Zg!5bQp?K<%z*6l4j_5$)&Ac?1a1;S{xlPLM3ep!n~&qx<)V5xyxJ>k
zTtEKwV#UmuGgez~T|+pedxF+r&*D#`y0bi=z@orbdxr1UtHUqNxnYRN*6~_?belf6
zuH4x49M_hPqy7K6@=2toJ9r{qR9dHgO;LCucNN{g%&6lj-|*RTSW@G?;N{el31g}*
z-pJY8y)Lb+ux<nxGy4q^oK{7^$l#X}j?flh02HZ-(Du${=*hf4d{xTKHGHpUUL{*{
zg~j{#;TV1Vj{6ZfXhtV<h!2{hL(|Ux<2(=LF48IRWlb}g9q!egEmv>*)}96}ynf%Q
z`cqAF)M=<|bUmkgOUC0z8Rk0QA6rkD{Qad@;K{hkwSNpJNDHZ<`$PpPF3ZO!OnP^d
zQP6dC`n1R-*0w)>WWYJV^Jt`bb*eDn<A{dI1LV|BI-m*@i<v-;^@hq<4T$?IJBE}v
z$K9XYIURiyJ^1!%Rl`_B?KemNPh>*|e)UkF0F>g5?cFVQ<{j(S@V#Ky$KvlN+ANGv
zi(-2<8kMr-f8j9A`!Oz1UUMlcxG<#FsjMpDewday;AGj$%bzma{gv~RHB@Qq9sD#U
z0j*6JuZCb$bEI|;L@O<o`No|YrhhYWNjiVCC$@}V_3P%)R~OwKe_7_p=lPSz-IpDQ
z3L%9Cj1k1&>EC_Pi!y~1br-_gt{~p;l#{b8=FU;sJhe2H(tQNWp1(UE2hSJD{rb%X
z?rci-FpdcwBl5DkWpt9^KAJn9B!Le(K%uMl`kC=Z-61tb93H>Adl(Ic6n7Cp<<U#F
zQ;N%XYPW5DayV(LKN^VRmUAl5ZQgRv<f;!zLQ*kUZa5S6h+Z+m9dl)CJslOcUwrIt
zXjE`|6eRYt@<+R@M0#U`Ej3!!XCSkm%NPK)Wpplvc=R$qAY6;uf%Tt1oy$4`50Kj3
zyv#9eatUHc+<hYqZ>|T$EqGNFOKuLn%YFzo@V+y8e5|FeXlF9Jos^(M%LGqxMMz64
zhWa6uW^`m`8%>Z;ClCQ9GP=s~`eXEacC^i%I8?Wf55dw8FFzWE$}A%&7>^#CowD#D
z3_2dX&MVZJ*R?Swb6Kk1Y!g+<3M6vUs@Li_321uR)#L;38398StjCiZ>U0R33)=8t
z@x~zO-C|#3I%ch4`xE$#R=dqAW)RIx&~k3MRY36qwsW_ZX0&y#3+(w#+vW@FA((9K
z?Mqh=+3(~Go)7qVkDK96M;Gq1aEY+uKQID-eyK%<885h)M@>8b#o>%I>OF++N?Yfr
zKdE_q{GFjz>BzRxR$2v^gP-I1<d7CGDok~Ch);QT{oe(!w%)dvwu3-TTr;)Prl0Yb
z<r?L6T0u<st@BPXw;8f%qh`#eXhbinmR)L4XkU<9sdS)0=`=wos=6iH82x2DT@wd~
zN7;DpGZ|6;7^8Shev3Vuz^9MCD*2@udC95xxY{}^6HY+C#OW)QhcP^u<qug~q3EN7
zL`@-%QJq2K(Jxp6zexKB6=z(lIlfTC(<Q}*QJR&9V+jDlweq=-9bZQx0GS~0Uv5&q
z--oD&nKO^ZHun#1!+&gi-UJk;$Eu>kC4WLQ02aTD42c2B1ULbd)E{E29uswK5fIXU
zs4({T#cIvI?)t=@5~b<7g3Jez40|TF*ecoJ<iM?{&7Bh+vmP3GJ~B<v_?l@D^9lMw
zB7zm8+$_r^N39Xa!=NjVa7X5wUVauTL4##%Gx2H0le1crkw+-Jc4gC1qU`1lh|K=y
zyT~$7hMXDwhz;yjrW-(ye1A!^O4mfhUP^_(Mprs5ncT3X-nRT8w5SoA^rg|xf;=U1
z^t;>+k%H3NGR@PKPC-FC_<eK-%6#A@p|o&zzOdZe*w>7Mr4FJQs!>L<i{kC4dAd$8
z3X?&*7{m2=ai?Wp%}y;W6|U-$9bGe(ww2eq*P{I9x_zX_Uc%@S4e;=LwH~cjUeCWp
zAvxb?j=ja+US}-X@47F{czlrdNK3YB(mR}VW`y3N9Ncc8A9qYSAC#V~dKE&%d1=Bd
z1913FVR2{cpYW}^=+rn52u@}QQ%@mW6Dh#QlGKt(P5{|gvS>@*Fm(H0h%mj?0N``;
zbQUsvS5>y^p_aLjc3|F!n6dP&KI-#a4Pm)Y(81KXembS>Oy2^$elwQ!_!qUKmO^On
z`N{mwPoW|g{MnNM9lLMFVSTd}REkrzLb2Ub1PAZ{6dy-I+uLgyDTM+e9-$NE=3fC`
zC;5yoA!C!VW>1^G3~g!+82hM>^7^9ZVC9TB?XXrH|4HXzU&lTkI{smp$b9{hD863s
zEQdMhh5s+Y+n4cq2S=;-A(v~V@DaCTi@W(Ve+3pW%OENeX7dj1@LD7Te*D7AN`~{Y
z@7s9VF{U}z4R$A<a^W(GmBkk^j+0s@vtm$Ci6KDbVXVK_7zE25`|olj)NcqB9=|6N
z2#k?JN7U%owY{bf#67tCWolu{7!hcOpZ%H1AmPdM-9%5R6y*M??C?tE?&s0fITTT4
zh~$y@4-m#-tvzh?vua0{!eTWS^F#oKr*W!O_ti)AXIEH}Zjn_)^sC9@FWZvy6zU7L
zyc|S#3^C(SIY9=;5M|i(o9%%yi5Usgj>c8@)|?uO#!C@((vk%mFXuC-_nu)O!e?*3
zQWUx=6Li=Qd)7#9Yuy)$RXVQR3weBvqh7~7!ZwYOJoqZcz;snvMM!w%Km<J|U-0|@
zzT0D)7!_!i{_5|pBkI%6$`bf$N}3qtfVlz_jSAe|+;zhSQcR<C4-I+$d3ld-4u{wP
z>%rW4^{C8r*RT~^cksZ&sX~))u<U)kxtkt`jN=qv;hN6QIp!`lsCq62JDx~aDBSkB
z!*6x;!HOklWMS-Q{t_r9UbJGXY1YmT)DLgRk>nH~sT@r15@3_yi`Eum2(*4S$IEKQ
z;bKM4Y9orDYdspYy`#;kb;29xOMyZyuwpr+lLE92jl}x5!zkJrs~Ap5FZX>?#W=Ix
z*UCCR5tSg<daNn<cq_>O8MaSb?r|Z6Q*<6VKxwG;&f0O}YUz;F?XhhXETHRQxHYyy
z$TIjD(Mlkv@WWi(syTsQxL&BUcD^lF?t+$K>AK`BRUV2|+eg^0^}pr#=ZtKB<sd6h
zA2rOj@LtQ|dyfAOx~qcY_D}Pzjw#iJlQIyqD+s-fTnfeJd4_*ssudgdObBJn=!7yy
zoOaIDK2xg#-_D4z_x>p0`ICTanY;=e^q73*2va02f|qG^vsyOc9jo5nb8*{J*OjS+
z#Jbb=I{a2Q(HsX3I7gk^@WNInImjk4%bIWOAo?W!D*tkPva?j6Jty+?X~OpF))oHw
z7Y*T9(82}J>gTpF|8}|2;k&}nh1t&<*ZXfuc+DZk((gkmUYx@AnVk;gHF;*EC;n!h
z%$oXx(WgTu$lm7X;pYK%=iJk!?vyyfZ5-JjL1vvUL#IRE5B@s@2RQhECImA@wo1Uo
zGTZL3N&b4N9*yTyxaL5qQ#cdXGcwukipDjkZ0*>*cs~abQQgn^6&3`V4=%L$Jx+5j
zb-GpKsPrn&__RV@g~hAq{s`;XGj9(DsHqOGGwrY*WKQk7eQXSDFTV02aa&VK7<3<>
zZ(30)#ENqbZMrfEuYo`EjnC4C@GwdwzR6Ff<BK4YP&H=XRO^H=_xJOy4`8guC?{Lz
z>#I%h7uquDCnnG_1{;aw*ldvv)wNdR4(1my<9yNw@#vr)`vm$pdhfIeo9^$fX+JX^
z3%Dv_gx<yHPWcI<-0659vhH~tdeLExQV=kQqalhk3H4(J1RJbF97~I7v~vpV2_oPt
zDHUKMKlrsHj^AnAiCrs1y@ze0MKtCz#35aP#l(gWjf7TD;zRQp_4bf!yWbzaL1+0V
ze(l~=oVgjcT^-4K5_<W*BdTVDwg2Kl{&#XDKzRp80{C)s2uh-uVost~(SaynsMvg#
z-ENUh-{>Y`LbugwuNyW3@B3muonP;VmI!jbm42q0e_&_{xesOI(bS18j4S+3G!lu}
zGedT)y7{!?{jFhIBNCxaDr<87LbA@Yiz@OWSF0&)p?9IbRQUo|{(k2&6<H$cH_Hc)
z7_kYpkhPU<wuh7EB}Ly1Tzr}$5PSA%?XaF={3`nh+#idwD6ToXL!{sE_MsJgEzp`z
zmn#Ok7eaU>T_Lhrs+W&?bDi(9X>4!NLQU;&n|Foo5h^oYLX$-y28XcL(pz#ohh6iW
z_(L_u$Gh;Rt3J=Q1X-NtYjl52X}+>5xK0t1l_z~CGmK(h{`@Qyudi%;m0d3GnlweH
zwirg|PF$9w!F1zlEnO)ra`2)|&1KGli*7Mv<qs-S%h~=5X|v1iJf2_xY}z2~nq(!C
zL2@*Jm<#>-XT1>LS}CI|P%VJxrYI*7*(dqPa8UL(tWMUaAb>w3wWm|(@omi$ux22N
z=Bpxzi?OHfpY(yBtLf-aU#^M4JG05ZTWGMzYJri`h!+e%Q!XhWwoLj>7B1X-`OVty
z+grPQwn``$ZhgU@a{jS)6SZx71Y#Su=o=^@gc3)VJMewoA;3^mG1=}zZ%1Q$p!m#(
zj@3Uru{WvaUhV)@0G-{dTvTio4tJL#3}q;5SXr=%w&OHWHMpYz(CGO!6OSmthS?AR
z6_IE=xNRf<J*Y0Sgx1OvnO*qtdP&;9mO6RgjW${eyY-#HCUv9Y>rJY?-W9wDOgwFL
zCk~CM1W_)$78Q2J0!5vvFIaS>m1OcDvlM@KaGqCQ!SAU{)KKra*9Sy^(c(z)$B`mO
z;?tQ!093WD_>mY_`VysH$EI3aW2H*UG7n2#yTAIe`v|4s!62(OLbkG_#D33~hj(}<
z5^Z44uU^1aWc;xjjdzaqO?`4gHih#VAv9`TuS&+A@vC)d<2UUfbh`5pR06@xo!E+T
zF-Yj<Op5vZfx2Y(wjFz5htT6$%k;IToI*W@PWETUnSZ60Y#a7=KttMAz%k>j1Rs7_
z4LfTAN2J?M6rM8Q!Jd0q&bNqCA_d?D(^a2K1Y3noSwj^SS)S=9`egwuqT0Y$soLtE
z(Ve9qrfjn~4rM?AbW)EE=@Fkl(=R8`%oH9aA@F{>3aDw%m_1I-Sgid(_8zK5bSFnd
z4jt38_Og94Cx~f470Jx)<D$IHZci{_#iSIW4T?vKp^6H~uRE`5jxy{g-Zm<QNMTe!
zE<CH<l@!xAD|wxY6gIpGI$Xr-m!UrC7pUcWTl4md$Q(kHZ7(sv(fY^JI_z{a<NiXp
zu{g*@gShd%&jOMRRdWuc;nwXsK0b--FUZgGHwcXFC;8IccYab!|9v-?hdAN0a!4Qs
zK((MHrG#68*NW#B#u$Lj4qz;?i;g3LxYT36A~i@nO$|7oHnE*rrL#_Mr)KK|IB^kE
zNXHNtEpzmOQ#K24^dZ2wgE^W2&tNHQM7iM6j9d}(S{;oJ-75CA{)Da^>r3>j^+<In
z1h4X&T)#WTIE$=*{y7#7V+yMZt$6{I(BbWl7m(<WYr?MkDmn#e#`JkBuE8DHH?Mbo
zuk_I=|Ga!+?Hs}z+DYV0%X6nmpea7EglxTK*jUzo{y90p(t-&$v`T7{tu~7teGNz1
zIv=2|A#?wbv2H`pjO-ZO$KM6cHgY}lTWx%jzU}G>#!=kstuj*a61J9qS`VbCd=hX$
zSQY1{fi=qVoe_%bdzob;n$!hL{#q!;vpF*7C$QwpO!q8Dg+crk9wT$F6(56()KCni
zGWM#H{@}v_+<EL`zuHy@m1>{<4`P|hfPT|uZy<nT&Q<QGSb5XM01|+>l!xEyka=%?
zO8GAWSeqpu2b;w^f>uCm&RrOQV=+8uOg!9B-t80m@p0}#MDPhl3qq%bUf0E)DOMi&
zy8N{$P4fnIup}~eW4(5vt5JE*7(R(DbU`s&tSOS?TI_vHM#YH+{Dc+`mj9Yb!dQ)b
zCMi_)bY*<zfyB;R+OJUfpwoku;b49wm2~v9VA8YjsC?Y5)N-uKF0SyPHm15FVm~^@
zUS5$PIh?w$eas(xAw8`C0T~;@%H#}q2fq(h!nUqm1ei|kV&~IAH<cA2DB3Mp9(6}b
z@81*A&!*D>F2t2)2DJ8Th3PhO&Sw0%Cp8k`=;6plXzt~%N_&VMA^i@i;NrGvRAq;>
z+cc+)mLHuDy|OkCFFc#2!gPq*kq#o9^F?`J0nW*OF4Zk;^u5EU2hK%W)jD`V6$Fx(
z(>m)Xcx`y;%LqlR*U?1yTd!zRPLuo6Mk`YD6BB<ip@m!jLod;WS+it9K&5DdND539
z<<~O;C|^z@`e|;s$d3q+f~GR$Dy*<00%OOqX9xPgPaV)-??q4Y%C||$FPas8@ckDF
zKmhWH&!u88Yr#;tv7WQGM{-1o|6PmaYU%O7M3!`ySl`q2R2NnIM=U<Rw`8+tWB9@f
z6>)sY8b>`J>RVaaXU?_E#%7Qi5v-XYtvpU_%-B<-ShDE!o;)-DHEl!WC?uYVA$$^#
z7zl*4Ny?n?o%bt^Gp|)-Yvm%fEXp7a_o9XFqMc7^AkD=x8DTc?p`tqzwGl<{(tJAx
z<x7^$FM3%;!aL={?_=osdD)o0=EW_G`UKsLdW%|;=VgBR!OB7^rcy1KIH1ONPWJii
z0Cy+Fh1vS=!=2MuxFjQ3AS|T`kE(`^ppw{*)wEpoT1Hd;2RPcrqCpi*kSK;;_MO9(
zsY@+)SN@--f;}Z$1T2MJPXIW0@N<F)(^lToxTsAvjo6L^8ZV0PAolcXs<<@qCtRtU
z2>_(@eIwzhAoEY-frgO=a2~EazG)ayxngn7xFMm#t>EdGP5`(#48T!$y+SbpA?|g)
zj21p-pYg7YOrI{$y@5KG5Mi<s_Qc0aHm;Kw_9tovsT_L$)wQ_Eud0jhH`vG;F|`Ec
zW!4-wC5Jz~$pjT}DDQcug)=f~XKm?@|BC73MhJRTL|Z`JflraJcqq`uo@&X#2zouI
zvvbBRuV<Hl1smOiWM}^-=6pjiKIV?z>izI<cYCY()qq(v+2OYU@1V(?YMeSPKi3pY
z`JV4j*>X(yi*f~-g(_JK`IU?SiztA3(ac^d2Qe}&z)wNYF%3(P__=xxyE3O`!+k?v
zr0X2=cX;@1n+ocpg(~dVkztHmHBNWC%elPFEa}%C6pHuN`}{Oda2HVAs0g03;>J%H
zYCgm$z4{{g8&tTK*ZWROB_p}bZObG*Lvt%@#NIN&?8dx#V$Iwy-nd3%2-kI|Hfw^E
zX*1s(>0apxf<KVmHbOi6kzkO5{h1XjZxQ+XfSA<JD0I08S_2t{mPl2Nz@1%zEP@k~
zcmB^C63>nDfXoJRAJ6F?t2eOw`Zvcyv_p9#AAFxpoX?FZ3hYe2sdtcW2<}tlu=$hw
zg2xu?CR4>#%<%`<$X?2Mf-u?6^f0qnnt1JbM*1@y*#)UOoVEv-Ivt%=S+Owj83(EU
z7a!3@W0ggA;!k-Z4)VOLh43cu3=~E&-th(3oDhguWi_$t*r-HixED90jBXX3JP<a2
zH$#OPH>6oB7&7caS%8>IZ55o?oyxACU(p?K!u#50jDx4`D`kF2hAa`YCwya(Q9?a{
zJ)w|BXf~+JlYV(MPQTgK=7ZL<&-R~#wCSZmRV?AOPMaV%7MOWDCOCIW`KohBAG99x
z(0j6c!XTzi0TDDVeZyF?Hp?7<+w(Jy<%QM*3y#-QL)2M5B<na(g!0S20Vpb(geFsJ
zGvKwrZ-_yNS~It}ptUH|H^Dcd1*=GyzfQ2i@`=Za?IU{K3ls)=FmF`kYv;K0`1549
zK~0-k%^n#CQL4n#E<U;NQ9f(et9_bVRcSoo%v4<s+$Q_;g59eZmI>d<epch8^Yw;?
z)ioVUr-)#wj|{wEq|ck#z_}h!IQCj(qq`Gs=>{2>1X+T81YB1vcrM)aj9EqZ2HlE&
zq0s&3TJ%rQfX#|zTix$<h$3KIdemjqHOF!Wh5XHYMR@i0`cbcm{JCZ+QXy<I*$#oH
z+YbGP57Ui>S}C4pVaA_x>r_X>HlW}CV8Sd4IGb?p1vh;j|M)8lOuetd_+i-z5u@hn
zt}NR>o(*5d7IVWJXIP8FH0b-)r+<bw)c^IsiCw<rHCzSB+M;RZC(IggJR9sty8g{h
zlSQxiLVyiV{<ngvMb;vS;f61joKUc13a$CK)1-4&(=N7`UH3D}O63)+YH2M5uG~;P
zQ{D^Bd~EHBM=`qj{!0B#<n>Wk02#uWrKbc9hfx0hLj(#tXmkB;KiEX6er37xd|Bas
zPpNJyIbU+1*EGe8Kq3<%(%%5ih6oDvesj_s2w}@)9P1VSrK6m1N)8&Q-8f1?;o_RL
z=)RZ{xi1}S1m6=6C1Bl*@0ymD<xu&}JfTD&p7)d<65tIpL**6vKzs_=Lt*d0OpBSt
z2A7w3MGCxGgJgkuxY`{S)-*%d8de#K|ENhzz70eK2Do)*nB_;S?UX}Sq1XMYYLLm#
zJ(}_aY`!j3+Z(ognoWwoa5QfzCT_=|ai8p^g|$g_p#smo%IYE}<Ev0V=tK*?=;);Q
zHgT-}pKYq;R|JR(ZR-2QIrEYlMQ$5@5PL$8eGU>LY8nkNB%L+|KpkjSECAa$Q58Ni
zD37lP!!{(>_}78AAPUGw+LeQjk0eRc+J<Is9ZZw#+uJAm*VsAO-mdrc_I<crMwP)|
zZa1iLu9f4@ku(sZt_d?@+$AqgpQepnse)vbtz#Pb_la6}Vl+FL0Pc8(l_#L7s9tCV
z??@-)kn~GLqZx8egd-t6^KWCxyzmWh9rV8(v7Sqs(3wZR{uHP5n&R_z%pjcC|Ecn9
zD@P`I0=66~qhZ3_HN5FD%v~5CJHPQeWW6&!`HU?KU($WexL(+Ks02np(D0w%{myTN
z1AG=Ft|#&^1Z`&JsQnD&ePxd>A8?)P<>!vm-*!_gQ<F%!8t<oKFp9u<TmVx^OWWYU
zUSss6fISE`SjZrmkqeXoFRowSP7t26H}5A84S?PHkT9n;EaSsEktTeZsn3e?emiAG
ztO@Nf@3C|arUo+q8o8Yl<H*24CbEbp&ccvB%NgV71MUF&(He!pC;WK{8~Qvw6v!bm
zUp*U4GS#x~CWlSzshTAm2P<p6-?u)xNrpVbo23`5Xno5Mp2Q&%px4BEmMgarMf<ab
z#;cn8$^^=(_QX<AerDyZHNLM<xpcRu@E_Bjzt`1brh`?Lk@V`BmjPR7`t2nt(2p*;
z^Xavc<5Ao|UH%E4&PSwPSgwNDQi{k$8O6f{4(f-zim8aSkc#+G8x<L#_&^eN@E0ca
z@^(1_l^<IQ{i%;J8Z%8JApjL-JS9EV<7wG8+D2A+)mwGYkjtQCoM~DBrF&e8(j1u{
zc=cw{xmjTXN$NEY{L+Kv_MELo4|Oi*Y6&=)1)n=f{f<ZmC4o4%?OZpRa@o7mYc0~~
z%&QPJ@qCP_L4%q<-Lx~>%MBF+jx2?p?mu}I@<sXUnZ`|5EifNess?3}G)H~wOs`#g
z>x>3`s#i>3Qg$%U7JF4Swn0%~ymQ<6VYa52NMX%-Csx}`V<2;+Pvuf(t!Cq6W+D0F
zzBGRhzL~3=3C1ia*rvE+cw_7MM_!K_FO%UzU)KHti7DgTyp1KMt5B=uRl~qoDRQ3z
ziBAu6&n9V%Vh#t<*fuiqH)nrv1))p2QB@xWM8=3R-X0OFv*BuQpZjjU8Vqx839;|;
z)OE1DIg@31vBXs`rAadwctAV;+~V@fUCo_VuKbzgLolj<_}=9AwWHy)Y!UWYVq;)D
zkm9-8&9H=t2YSTBsurayTKQrB@#KD0$CoRP?ukFW!f$F6UEjrpu(#Pj<sZZ1RchTr
zXL{6;e)wk;FwgxVq;t4u>-aqW$b(np?!%$0n){l_mibCkOeKugB=qo^q-a;s4i=Xj
zUy}-&k!wddO4)no$8bl~KX?P;q_*iKD$JXb{CD1)uySs+Q0rja6vLx<ep@*{EWll}
znAS)7vvtyvN(qtX0H2<eC%e-r%Q#Xl9&hVR)Y+6`j)W>(%Ml~{?U^&yQM5i>bN3n)
zf?@T$!cX=cyDf9Qu&IA+K`8a_Mct~nCUk0NvCLAZ1bE5@i4&8VZl#@!U}!X?CP&A<
zFiUQF$gTpZ-9{CdmKn}nfXHi{#gsE>k|s5OpR(NYdH~L^9c13{ECeC^w(-fG<RxaF
z9;H<a6+==sM4YLJC?<UY@4PDIq^M&yMOOlen$>sy1ct3^y`@*RC;Guvq0VourNoAQ
zv@7~hoSC$pCg0&kh#U_i_A(e1cywYhOI&Xrk-?28{}a`2`r7R}SI6%D+FICU5qqNg
z_Com3m%%4Q+b8JNIjZ#c3eD4*X}|*$!yySyRZ+<a2IJzpfmeuNaL03{$s-y=s{r*X
zv|_!(a4yfi?S*a4y0Fw};4N~{1D1fi?i!L#dJru?eqS`tczX0C@qSGPeLT+mJTmDZ
zNmD9Ok8XhKW08haDn0Fy8S;pvAo1xXs9S@Kk6xRfQ%1)Nc(=B-w_h_smBNy<JgsN-
zdH)XYf{))z>wX(ZiwCy<fS(8YL(v@~!EhrmVg`&8aQRu-<Gx7P;7YS@8f!O1dIw9p
zKsf|>9a%8$o9{?$WPT|k1mi?`1vlvyX^zpTz;FVu;GzG}LbfRr5t&e8OZ_^+)_ymH
zL({0o^;;XBy~<=4mzwAAj&VmQLD_60?&H`@zO#e&M1hfq&s?G;_);ZCku|>iyJYCW
zW*jH?WepOz&&N*zV@esPhH5ca*j@1ObzzQ%onxkKbLhadYDS|R{)Jpa-fkaf`KQ_K
zk`%7K__`8V!u_5eXX=3@eL0We(Fx7>pX}~-*lS8|<(MaPBY;nbBID}xnpm)<0pgvf
z+z`mxS14T}>>cY$ogfwM&Znnok+YOJ)Yo_Q{V4-S?XpnY*delWSEph+XcTv4h>#Kc
zOc?2Up_qg=X_t(>{e=HKXG=bVo=)aUp$)gipj8^wIICD*8TINDw~nPq&BSLt8{`zU
zFmh15seO<ia;DDGI1oy?{&spI#;Du%vUOJkIiA5z*AHYyCBh!$z^{Lq<c>uxHxmhe
zb(GQwGR(z8w${qR9H0#JE2MgK7k_8+Z^lf+Wa_J=3>PijesjqxZ&cV}W8XYadH;LP
zgw;^KFhJ7BA9Q|=7N|tUJx;OZ5cG>Ya%6QE8Dq&p`;onJIH7F3l&4>QSdh0MklYnR
zE@=l)qP^1Q5=S551Vqfwol3O*L?^GzP%M9U&zz_5rCU^pmuBp-?ScTyJRPXE{vF+F
zSk5#%H*!+UPz*p@Tp^(UR=$}t>t}u(8roV1(m*3aL)i9lJ-ySPRNN;HDff?3XNLyo
zj{dyN4LQL-M{Ld4xNe#ZO)!4LsjsIfU^J}+KgU{0KIy^n@90Sjyr=dj+I%oGf}<z4
z*n1V}V*?^@F{1!tl%+aB`Er{-dEGR)k*6p|f6J9f#dpggbRGQ@d^mkfdw3?HUoxy`
ze;}sp+L%M`kBmaY3?<Rel{O@K%8}O|@dCfLM-FU<v+Wgik)Q5#Y1A3g9Rk%@J1WQw
zW7e6QuGJ9ntHbJ9h}K|{p6-Wcck7usa;sh%6tkD!=?cCM8o1TQ2S6Cb1M0|CD{k;h
zuHLuz`ee&KBz*MXM8n+Z^Gjtp)K;?DYqk|AGW*YM61ILMN{T*h6qZ!4msixHL_f(R
z>c>lW|CIm)xwr~fMjaCH#xJRI4_C6G6$~%I#%(#MN?xAQi)^o^F-}mb3ss)T#7`jB
z4+}eO%oF^M@oAsU`RJQcT>!G>+BHA?$$8FMLuL+i3F;V5Ppgdn4kK5!JcI66P(SDS
zYvkrkU_~xV#}p-1=w@MkjeBb%QYP1sb(fp?eb~IRSymePjn1fLuoQ^~b9{tTP?@<q
zwnyImgVOo(y&ulsCX9ml+~CN+wsb$%IdBFW^m;l5ifaQ^w^2OBX|8XE0-=7y&m{ar
za^Bu!QI;7;rO4tx)sb*}0v45lx&FEfy~bq5a{-%Onkf&)FNat1(cRkti<ro1WA8p<
zZZ&wZ#!ey2@)vXhOQ+<Kh)l)>Te#%R?u!jcrl3I)t($^3iQB?c*`ui2V#w>GLwbFH
z3U%#E7{h}|cDf-0xb>7Ht}g@;E|%tse2RW#n9|x3_*&jm`e7Em4odZx!ZiFOo0P8k
zuQ%i(H*UD0mdE=_pRDbOg8<Ezj)~sPWqvNLHE9t{8jbITa(v&I_cy7kmyp6FHh2o+
zU&$q->?I<~c)I-uq=eAoLvMKns|6VXVfpmmzv<d}^f5p32|P*3t1YJdG({}jE)*0#
zqi6YO>TfgvCnx($`aHewy0Fm(8heapp^Nf$S46}-Q>6`i*GLsw7K(I{4P7oA)|s10
z6L4anAt5Q1cg=QYIv%!Yh=k6t7ZaNTiWQ1+-=h@e(&8})49Cv~F31+nu~a^KQ};C*
zN1dlc$1nL%_cchOlM{es8y*~D93@G~8*m)V?K`kxFPBgecb|727xtajjJf;2AhRG^
zBZh*nRm0;0Y`xNhnn6umo}Rz!fnk#2gZ|Rw`ziVcw#r}2jh^m69J=00&K_-Sz+qKj
zrLLKmMo=#Am<TwSyf!go>tbeL0QW0jtmfnR3xkL`+US{0Ipkp8UVhFpfy0f#@9+LR
zZ!Q}rp8Y;F)Rg@l2Wh_LzVk~1PMjZfDWp)Pu2LsV;5g}=Rh_5`_t-V+AKNJz47n6s
zhC&AvH{w17jf}nWIlEC@_GL|cnG?QIe8%g%UF33K7Wn8(_`MNM`RS;QOjQpKsVJ)y
za2;pZ+`&k<lA>%zrt%ItjIf>;D324F23d_Lo!^mIz73d(eM?OJ3C#(?Es2&T%<M1*
zf<g$2R2?67gthY2ybdSM|JIuRmc7a;l^F?En{1kHWpLjrPwV4Ld+rhShBdokUa1#G
z`O6i2&#+?M!1E*MpnSjs2?9_SFdt5KCH#`Ew3=Q4Ok%f6kg$=hTUDd%c)5w+Hozf-
zhNeM3Uvi-Ys1h7Y$4o~9vzKC2IA6hLL*9yxE%^7D+#M^I+vZkxH)QjdMj`<c)h8}1
zB~`$~Ca3V_61LN6OKQQpk@<1WHWl<z_pm{;640K}rCmF_lpeO#A>f!I6;KSEJ>e<H
z3#IfW*&tv+#Kvr3LVhgHBs^qI9??M;T}Ez}n_GxfSJB9D(ia|(bIT5%>X;wVK&3uz
zQ=2ie#;Vc#I(vma#7>GomjifGTV8c)vl+bdUM(KC6@~8}sPGtasd`(@)o*ZDGu)SS
z|KKR`_a08KrJv(K1C(p2(mxD-cm9pA)wJ5m5`7`|lk?5n<GDx4C6x0AoDcIP7H0Dz
z9UgS9k;gSBXaf!bf%phl-tX&_h5NbD!@7}|n+rW#*t`wMi5`uZ8(u9Bl#YEcG3dG+
zJ+%oIVp(VB_6Mo?ks#^H@we3X?XZt@>|E+EX=UXg_GQMghiUPKW@yOaEsApficuOn
zl>(6=$%t-ZJ3PIg4NBCh*zYproVLDW(4J(X`8GL*XxRISWURBdW<4<aZ(Z1WNETlS
zMzil4JQ$rT&_8-S5-aLd^;AQdL=gd$rInpBN38_2&o^>Y222Oh{j--oRyBP^;n<lO
zTQB`I#vQ_MYa67>8HZ+lQ;PLXd~_&h@0snWTGEIKu(Q(E3h=C@fMM)+#2lVK!H#HB
z=AAR^GN(QF1Jnqymc}-c-M^<bAp_4}WCx$9rkXnpSxZ0IntN^QlT}EXVlHFA&Uh;q
z!OXYF{#Mt>nh#?MXD*9l+%L4y;HL&zen)4{O}C-aCXU@wt(1$>mz?xZGP;rJY#ipa
z=TiCeNDa>wr-JC}WWpiitJ)T`fY4V=4+{n;{DcSTvFWH%wO9b17Xg6CVT9UTPPRUr
zzSJPnV64Nsas9b$<;43dflr|FZPeD3eYNX_s9FD_l#9kkjuKI4p5(XfPE7;-|0Z#d
z0x!|P9bMOMlgMslqXsnC(o$9~*q#lm1vX*&<>F9qXa2#(O7IrS#e4(_TK21vzlnMH
z1mNc{+YID#q7oYBFc3Vt%A$(RL;xZRF(2AAdOGDgj8id@Se^5VG{oJDy!&qM-U)Z^
z-kR(E35a1>pdJ3AMC1X=&^SZf5Avxn(l7klQGsbRZ6Id+H34ZlnaFFAU|6YRGvaTp
zIVWfyO$ua|aq)EaX$Ld3_=<_+#(p0ri=1)$Bsl1_cc+}=)%>6L3-E>~gpzl><MUjh
zu%Vplcgy^VP_ElC`@pXJ|IHp(%N@}~;xzDE76r|6xy0Mij3pA_@{c<LRqF!+{-FLB
zrje^u+$8j*F1CBiKe&Ej<o2k6q>v*EY2s?Da=~W%B4D9Aq=W{E{lbwKIOc6I1|#;o
zgHpk8eE@L=uJcD&d#z;*ITs#Y>_nzm3KNYNKQxR>BOAX9Y%i4DnAyg)n-@0l<99r1
zn<!Df$hCB6*g6Cz(lV?za{&&f@K_XlkQ9N`F(s5x=r11D?9(n?Py=rDd<ZfDV;J@2
z8=pWp!plL1vju)9Xx60q@r;(a3Bj6f^05Dbn-;p{(SS93q4B?o?7NL~*uWS^DSOR!
z%u;Sn?#+Gr@n>W3@PSRS@2+<w5$_F)0Zr_ezlWse8;3&)e^`3jPS8Zt;wHrJE?y%j
z(Ro_#DL*Wg0OKD4Vqkm65)xn&O$?aKbQIUdFP>BKBPWQY0`LI-<6K9%epT-NgsXP^
zr>isX!#V=5mFnbDzOc6b<FF8bH$~0H@xR1Fomg+Bhv}*nGusUbjUEGD$8v1bD<X_a
zawjBc=2L(!zwJ$WplKkkc{&CUKM>zIs?c=BF!0NtX9uOKX3M4zBIDlLWNiwEytcx&
zJe>g#&lBM36eGO>v*Jj|^1m7K#Qip$fI!4mgUD$k-Z{{Ql<mExX5Rb*26ddEq~qot
zDG0aUU+nl^ixqkph44lqoS$pmM**`QBz+B;?T-_;*a?-k*g)oeZgeDP$Syb!;8_Q8
z%reo=d=$qfe3?@)Q*<P(ZgM8qk@CW9?a?GW!Lf~+>c|J}kG*MJ-*M(RrEz)B@-xCy
zQi}tn2*B(YZQyJA9*M^yC72PKx?Yzr2?lUqc{)29uyZz$i-ba^_S=-B{1BfN@3=RY
zOx3UKsLZ25m%MzlvQi+`qI`5#9s77J?Y|Vz<@+{`Ze%3bV+(1i*XGJmf$SHNS)JMG
zKe<<4IbZq&8H#^20ERW;HghV(03kh&W}KzlQHkK~5&V%O#^EJtQf4kU^6^5;xsib1
z^9F3*mcJI0aQNTm0WbOv*@qBuk64?hb;u#z4cWoxHUub!qcS!_aswaRWGj6GBVuO2
z%K;2eBp=>W8b0z-mIV-szE=_~`ruiJ!~AX>;`X{n{nv|;^)Rsyg+_{BU7v>j>+U|t
zlTv<Q40w4M$WJ|-@rYRRdr+dRz+GGNG(lfzdrG#Oa3{iYCCG^?89VWNHrb^^Q)+D+
z0$<3Oqcf2D?*!`;I81{(3j9ybOup)|060U~!erwDk7okr9w7pWo_QbaDZArZF~l$E
z0ihv<KhDh<Fl8R^?a)coj-u~vil~4VO0MOAi7hg1N!!2S6CKlP;=>RM!wB|qEbf?g
z-MqjMY1sAd*kXr4eJOk%_dW{`JA-PF16<*Nc#K<c*tyEN{gb{qBOnW6JKYN9s~KfF
zzH@S->Ga3-uu76d7D;nas4+dDI8Rcru3KFQlmiyv5`hW1k8um#CgxWlRtyHR%wfBH
znx*A~uMV4+XS%iU+@V`dfai3q=w_<x|1DDEhymcl*!XVHIvKf}Y~Vc*7T~S2Ml+OA
zzs&Ck77R@6agO=>sEo607-d3tI`LzyYh(1R?j7{BavMB9$`6Lgjy69SjwDO{UB1G|
z89@w#I{vzWq|&&8wzoR$uYIt*M_K-lskaP>>ifQj&kRE&or0u*fG{A^NSA_?fiwaF
zBHhi<-3TZhf~bUol*AAcQiC8}(g@O>&s9JF@9%lZyx`t@&ffd1z0cljRp8orQ*7;4
zvv{sW4Qy>J=Q{o%#L)S_Um{!~NY0heEUw+~o}-fUlS_eEejTk1g2iBJyT=CD*hCRC
zl?aDEY2|b0T65uj<kzlF_+AN@e4ITD=NmQ4YMFv1Yvh*~XQIcw=}_e&(Yq@oqy9~X
zXA=IjS=@|gckidB!d0jm_@2Qt;E#`rN&I#rzy_zs*e+)waGB^k7j(60tNfft2*zyE
z@12uj0l33vZ!dn(PWl8WEhX(QoBDK*rA_(>Gso@1XXP|NJz!Yrm^Z*hIbXP%Feiax
zJm#P2QkPuiLD=|GI>v_#=9|7!I3h;j>t%c}zvFwe6G-KbFus<L<IDL%2Npy>a1_81
z#;D5&$elP2-a#j~7_t&9eFDsX$Q>qzX_b%DSN*D<1^HgY2tl2sK2%EcJP8CkdA@HH
zE<b<vSm~c8xxMkyyZ874d!g)bI7o6yetO3zTl!G|q+kiz?PD7WMMH3=&kR=f@378(
zvp>kqVxwR2+KiD|Cc%7sMiyFaz`fwd^+_Mu9!%=tR-v$|cFeO-swG8n_7>Donxz}x
zfTN?Y&=&EJvcP3b5a{Faj{Zs5YlMn3wj}N-YuVQkHgjX_fDE%kS?lFv+7HtDxHNMc
z-2wNJxEIH7R*u^it?HH(t?(L*mRk>T<yK1f^7G#j8ETOMp*L2q=7Yf99fqx<2h90O
zfPXB3L&{WD*+p!8_(NOsyK1Y%f?+2zY@yE{F0Ed(KQo<>-U}Av<{C~Kp8j_hx^Xre
z?%as0T%D182(gCrK*&My;{#UE17ykwQR-99TTAu2yIuy2n9FpBc&+*Tm6_9`mGLuf
z_Kk>>ZUHVtKb~*k0$(S=(}_Z_q{(GdbKwXu>htQ=X}`1F1tp9dj0!O?r-`T0As!(-
z${?ptGY|K~NxNaC!dSFH5#ZQArt<Bg0Pl*8H`P|_i0OiJ8T#Wsq>_5lyF&ERN=L>L
zbG_|(u~GEWFKls92M(u9!cIcK;-vv9mDQ@`34q|fJ=eIxI>RBaqM0osZfJ;k_k0tp
zwE-P2vr$GaX<x<e643C&qV@rK6SHckSqe!C?wF|a->5tK0UNcw=(6)1Yr~5;s}1df
zHoJ~5wZv{7@{yW(->h=-+E-?p^I~b^@I&&5Go<GC?Bveu?(<jzmKS?v4=%IT$Rxi2
zKB3-YR)AMUUcQ?BCqJA_oV87oRz%4e8SCQ+e|r&**SR4|lkb!v$IP|)a@;SgO2K44
zD!{mr?x=lj;2?lz-em8Y_+gX1>zmS>qm&KsYd<X9&}s|foTLI+=c1SdECw;0ocjo%
zh|=9e8;sn5=RP+?kd(yCVV0$^T(&MEM!UB{cR~rD&`NF{tl3i2I;JID3!nl!*&|y-
z*>it(6k;#!y$3KKW^_3FJ<l1Lwn&PCW1f<7U4I1LDrr6zMO0p1({nS37$_kxv6s?G
z+BX+|{np>-RO~fz8r#9$3vN&uaamh<oP8gPL^8LQ_pf`Z;}(GUT^tTNQhk!q$Q;&y
zz<?3Em&?{P&5Ep23%<c;V)6Xm{k!~i^Kc>?N&VET?Xfy=_j>%JjkSUOZJpU8oFus#
zp(;{C1N^u_1R=g_X}}asT^6iJ)M-20sZxpOA)=ffB?wn)c`2$}OL?jQ)_rDv$h1na
zT*^Yz=@wpcWtzajtSfWCpO3zP3cNlZ$gtGH6iNKu+CjStYB0Q=E^7i$Z1UQ#6g_@=
zJQ1Wt2ASjSo0M~%Qqj|Qbn@pnQVC^^W4rE?yLz8rSfH|=_c6V1dJ-{Kx>FQ%wjj#p
z-3wPqoOa1Y#d&7nqk58MGIxslGb3990>yb|OPvF3$+tIaD93DRnAyvU9}ur06|{|z
zy~%A85JWz@vT~8$?QnK=ke#3QAh(J8ZT^zw^${@;Yg~>WqgDy^_njH3VP(9#q3G{Q
z>RwhVcTmbikm}xfKY1nlFmbZ<P#g)YCezF{3OtPz7CA8?`A=k`RXSI3|Abs;xAET)
z=N<_*+(a9JracMaOS}45O}>@!XWUHAM?bO?H-qZ~7rR15mj$HKZV+(EzDTJE2@mP1
zHf9a(JwAn0d0S8jjXaTJ)ZGg?44e%FpS_$N(=*W{PCi-`a*9HH<Z1pA$_n)FtID|L
zOS%s_KSG$hr=_5Be=mPKkUW;8>GZBg9F5Tn_)V-~JkFyqq@LGstkndMhg^4heY_I6
zP6zfSDR7=w8j6}=7AQKUsYiDolzQW^Z06&~B9<f;zJMD5=REM+Eryt*f#ZE7=%Q9D
z5Kk~av6!~psheIahNIf;SOi7m;po7)7?9>x`|q&nb^BHaoQN|o3}wUY6E88pi#*hj
z;(<N6{rS%GFOs8QVq9YzS)Q>wC@ncjrp|_Ge(%ekA1=7;HT(AYlaRSI)nM6xBb=a$
zaqB9Zu*>tOrW0eYWgX_!$*wkea&1M4z@$AWUQ6vtO6qx2d;Ox$7tstIMw=#aRF8-C
zd4OvH+?fJs3m1zaGvPZHRJX?vAvW@l>M*1cBY*xnAgB)E4?5UENClye?lh0k&+Rqs
zyyt&NFX#LSe_R3KqRcZu!>8z-L)rV0pRwsDPEN_)BZ-)8A{x(~jb|Gc(k~YY<YE8N
z{wtFTO2F~WtkN>w#o5o#z{*$=jrb%-9jp{U;cm9_@sO?dm<mlz5wfguTp85Tj0bqQ
zT|U6R&`X-HWe2SblY#VxHz6Y5mM?zr#Gj3*4xGPHb#VFd%t|#47GS_0hZv{ZA*>A*
zAid&EhZTap1IzK<xV}+D2?n=&2vFuO?Bm@uxymX{JR9=LZ`Gvy=|ah+DzBe;6bR#-
z?a;^=H%;qIE4j@JzRot^VQLurW0gxbrDIS~B@eJE+FRC3!Fc*-z@WJYr(9a13r;<^
z(CeT4YWoI8{EqSh;3ngvFe-3NjT#!R*sCGFYCeqqVsxE#_6It%4CZ&DL^Qc0ciVRs
zTlA_w)p#IO_AYHhHNo!$+}dk@S1Fbmv^F}aE>}c5Tkowp8#>C{bt$Yy11fNh?fE&f
zS)K$Aqw1AEGue{wSL1eL7)x8G)0jG>PVeS4$=glELvOC-cDdHTw4C+th!>{$os0+A
z;84XVZa10u$TT^vIarval4a~j_qLrcVS9B0V)QyfG9+F@y3mEG{8)Mf+oYW|+GcK6
zzE8A<cAg$dHrF(%MrN*xzE+mpVK1|jj+EU!H3|=Xt%F}|6vDzX?1xM&1SU;&bTlR@
z)Wg&P&)e)wm}u;Zj6^cqETg7X@V(~Wu!594HiLKBwO_=8g95nMYk&SmLwNmR+@w;W
zXBHaMmbQA5olO7jG`(r{-+~j5aZ!OnDoDXC64l*g6^bTG4H84ec8KJdokj^X>gKJ+
z(A+aO#JC$H(zbCw^$Wlr13UstV)JU_@a>bRhX^&B#QuheC@RBHs0`M6WY0%Iw#7Yb
zY#h50XB<xPo=@3w9n#wiQ8|A$-lnl5!VAkV)?hV$7qvzjIz*VhTV%((Elt()*<Unm
zHhi93Z&C2`gN*VYdBUNF@2wM#5B;@v`lD~nNK@Q-2B}v9HIqsGE#;qoPbH{z$%{0H
z48}lcf&e<$w^`An1*KRbHz!%HC)QJ3IYf4#8)%+7&F=;)^dlfULO>1DbT_RmNz8-K
zTydIH2ycs^)MY7I_-nrw(5uh5N|oPNK&Q~aF89fad=I`_`FvsC5qAlu_P%b5K+!!#
zw($i^FfV9~?rLBQDw$a9a9XhL&*0wKzQyj>hggY?c!IAp3k`|mN^dXA=;u%B_095^
zi0YET)PCK*oz;eTZ~{>={dsZcVf7fW6^_OOrHA&zXCjl#%N?iY-U#^)JH^4Nvag-K
z{R2z>lU-aMij+X^h(jP=<dm5ctXIk=UWTaHHUPHtenso3@W7H~sIF8yZq5Jkx8&@`
zGE0S)QIIO(ria*8RO-_$$op3B^ecD&8d(h#H)N4N!?Ezn(RI!aI#X#2Dd^v&4(Yhl
zlJ%XJ|8zC5;Uj^I^1T6G(*hB#*icP&#wIV`ME5fyT2<Ejom2C7?pr1~X$;b4tE{%D
z$DU>W@zjm+b!-$n945kXUZ%?!&MHHXr=+*o?`!3Ibj@mFTdu(E+k_oii{t|Yii7DB
z9IYl@xnM8w*dKOFqECd5pgNN`Z}w)i?H&48y*q|g*_>sZ{Xfau_i4J_y|Fo(c5mJG
z+0xE<vdew@5fVcOSF3)pvo6>@O%U?R-#A<jwq;J{@D5uh-Cyj)Y`ruGyoGr7`C~7B
za0U$c)w)^`EUSbDNs6VLA(Ein=P_gLn1%4)f`C|hl$$jIM4)W?O^k)rV5)PN8(J@A
zNcfL@E2oVE0=$iK79#G`go7HBK0IJch7o`<Fge8X$=g^Eq)}tJvGLy#NV@uTUJ-pQ
z71rc&?W(jdnR@*)l_<40;p?+*42@yLMdv*i+-``nBbC~M!bjhM&W4qRxcxx_>EWuI
z1!RVJ>YRHsG(KekPuS}o^T}Gel9Cu2Vo7eJChM=`EG}7F5^v^DFI3tflGc|54)rvk
z#fEZxG0Xn90OLIFHwmvi7ZTs}#7dOlQ*!GTQv#IUq&ZYT&;`a%wcWEI{Rl)4rB^nu
zlVje5)qc-G1){hjx8INC&Z{C@w&{%{3Wap?*nOzP<y2kEuXP!oP6>&{$9q-|dEdl)
znaif~9chD~1Ik&^3;1d3D@`OlvkDam2Y*Z$g%FvG?=Cg|u>`-kKp?CkwcZ~-ZMNh(
z8>#+jvE)$#rvvn!kahQ~X9A4MjO2A=(i4;!s8HswyS(bM=^>?5_3ABCdUjD-Vsjbo
zR=6~-SPBK~0osfb56<Gpf&cw^;64pLU&?Ys+EYUCHHJfUZp}EH2v=gb2|xdG?;eBK
zrK0Gk6IZJevQIQEn{hAm*i4<atGlXrP4!?m5GsAP&Ezb<EFXi)yL<ku%yQSsI-1{)
zz^`~OF72CHv4*fri%%=(|3d79;b(CWTKfJ&@wHYJG@w#$IMr8bh&}KX-VI&?W=|%s
z4daM_-*Q>{eXR@Bk$|PAq@N=3CX^Bu;)52_Mk=^llO{+rfZ4!u@MtHjKjAyQGBten
z#CX|9ZTei2=t9qLNx}$mc2r_@zVPCsKP3I0=n+MF4zE;%G-ymCOz8Alql8{*=Hhv9
zU;|us;jcW`cSz=CBx484{1x*q`D!6?u4XF{Dkn-0wO=Y$ft=295C_s9JE(n8qy#XP
z5l`aH5K57E$0}jhE+f<<0+rMB+`Gq6@!a`lhBHl_aAu7SoCj^7dCfvR#hb5#Fe7fj
z3rnic9amD>l0a>v2Emq&lyRFUL>V{YV;TG46PI{Oska+N4IfQlbia^JxvCE6wgv>M
zI`hJ=J*@)qN4)AKz$&V=ZTkr}acNom{HCvn!`xdulu>O6UFNcM$bzRmA#Ha0WXYeB
z6l4Z{Q00vXpP!r3!OlY+0rl#BvylFNDit<uTh=~$P{IH4?)0Y%gWvj0V<(dAYN~I)
zq9V3-d(R$pNl6Pc<N7j6SKx}ZKMoi;S-uL(;e{Ew18kH{Z3@tbkDdrzbVD!RKz7ve
z-eK=|>b$}nl~rUt9q-5LRWG;={z|wONE3iPfE2wS;Pxx5YtYyZI59*$`Wf&@tHA$^
ziTtSh{GMZS(_~w8dBdc#;QQ7uZ_dne+tYvlJ6G~D;V_d_-^CRNITC^!KwJS##ti=!
zVb;C8sy37zayL`hJtc8b^ZXSLSYHPcDwyj;pNfNO{ZP+$`gs`&=42Y97?>u!K33Un
z?SI!-*t5AqI3}^+J>!}co}CKZ>k-9F(2eS0wdrh-z3kyHo&j3Fq)6a~>(Z9`4wxin
zSsH+cr;aOZ5M@I)LP-&r2M>h_zMF~vnb=1c-F3&p9dtPV>WR(hbcUm$rS4mL2bHiX
zOON{=ek{O~qGl6Ot5i`qHe<MahTra1Po6Zvo<|LnVL@B$4!s(Mqvsz3wPt&0h}&vU
zi~;i&KFfOS*LK`FoLvH!`GU9s{G3_Jw@uY-nw|usRRb>V>9n&+VdX!mM0HQ~Ds_w_
z4z^e`xiA#$tIp*{j6P~)CL<KHCUV|A3?lkV3|3~-uuU;Zb;?F{`FeO<Nm=u#|D}xG
zHT@S#l5;fXi#QgZ(lH=j@IeRSzj}f5IAkfEv=+Lf(UMmw=;BlS<tP{wQ*3dFeTmEt
zjUt*Q_!O+86uJ&GID?NF%ti27?j_scbY})^>A{`SoU-!1Qt){h1@~4uhwu_`D5F-1
zXNm9xcLVhK1kU7Up_=TFj&T%)h*7M3b1K0xvL#+&*+BEHhDwGZykwi*O7-T;b8_}`
zh(`HD0r3{hnvGeyH8-PJP706iWqdG-D0IL-p?I`X_9W80hA7ifj7Bdy;I$LO2Yi$6
zY#%%;vRq+~Lw=r~epx>*E!Zcz{?|V)R8EGlgLfLMwnlOPfh<1gtOP~D_is$BNyjoR
zn+jZ2w1|CrmT;wW-2-1q*oc|z(v!CK)F(O;q}4}3yrmDcdy<yV;9st2PxPhC%#zP8
zm*F;^3-6tG(L1nibKgFm`S5=4Gj8h2!)6Glmwf!X5{pzeZn;kJi@aro0j^ci!;g(F
zpSdYAnfxSxLdc@KG?>L0KhfZqNI6kv#4X!v9v+WK?@ON-$4hUfnyB3{LZHp{+EDSQ
z3kwUBrP(cq8sh(IkxPkxZbw!V%f~HlUUKkre~=N&p_@-U%&l&`7rx<CFm~JMQu4Zc
zB;H$T+)<BGJP;AS{1ITr;QC0!MxBaZ9Axi}*hi_=IlB*#9Y3!?)tRI80qO)iDZP+p
z73>oqxdSOa{z`_ak4`QMA)RL31B|`Za8kpBH&!u7svYA<YBE^Kz%yEc5@<ljG{*@W
z=Y{+zlJ#kSm>n1&Cpxa^l5XwHK6R4jB>JMC1-<xWLiY~tzXZsj;sG-_3NwS<8h>bW
z62S%CT$M8An+=*4j2buoCcj3T`axPlxhLt&G4(lhb_ByR)+kjDe!@l_n0L<#i}+G=
zd2d$PUSWo21~tFwBXpJAp1Q?2@~4TI65{+q+vP;n1sFrpmL&p%BV}tuR_<tRMa!Ye
zs}Nw3HM0>oVdGH%AKFx2;zf8M4m)@f&Z;-VRp_bbQYDmk`oE<Fs&8ax;)q_Wy~YFf
za{lI~=`V!6VY6h-M+<2LsAzIHHd@v^ZYHpl*M1o0$Uv7p?vrZ)U&s?5m1~*5ar&yu
zQ3^HVJJ;uovZXOK?Ql+*^hvppdh1WOH7LTo+bfc{+D?-vc5$y#r;&;+;9h|#8Otuv
zYhAR8&<O`OXg)loWkK@=K#~_oIUN_Ws}zKf5al5z7~|M&8KV1*q#IwJUUTq4#;e2g
zStndPjROzkNP5Zp5u5L)`hWkQ?;?Su8*TP&RUnu)#1{~exiWRmNVM*8ttOH23p9-T
z`<A^FHhSSP8KCdaT87Vxu?F{HS9Q-{gGzlJy0nvy!b<KLVO_ncSWO;Rw&Kb<Fv`ZU
zg>9+>bN+-b;wEijDVo@NtS_x%BJs*e$<QgF3J?WT=Zbui$#SRCvrf$stS35ebSl8Y
zXTbmJxXzPJGq)K}FPzBf|I}6WY<}lSHKUV(y?e&L(^JeAI_;-1TLLV;<k%xovTiEj
ziyc;VU&w<bjEM|Y!puOG!Mk~Ily?8}deiYu;1Y`NTV`(feUr%knH}Od(@komCvkR2
zHa2PW#2QL+LUNmY#IBZk)5U(B32(<}SB7v8FcN!h<@3&^mgt&<cN3973~9)EP=aro
z5KF&u<(nrN=qUX{=CN+~^uW)#Rg!f%M_SL#)BwWLmvq=NEdNY5qv8R?=zTkxP!!MP
z1EGpPJ!f@2br3}DYA>e$1+=drbztaKl&(_a{&MdN7+M#|>-Wi7hn+D>AZ0>%+4cJs
zt1iS|^E{Oc4&Wdi-yxs9oDObIH;$m#^y7*x@nicV8^u^GW7&!1m&;K-IE7Qu?v=Hf
zm=xoo6j#ELLsWRDE)hQgv9hV?MR5}*<8pqLG1}6zb;0e;VC~y%IO@>34rtD+|G(F*
zgi5{~AuLYUo2gN1Y_~e3qc^@7hyJ`K=VBlkHnu$qFYis4My8DnG@(4<w?p`8?(Xbh
zJ8(U%igkeQifyjYK09bD>BkjrfKkkNVyRyY5IR&IytFE#AS30GcOOD77>C&TV~28c
z^RrGgn{auxstzz2$M&IF_l|UOSQc8b-oH@vuub+Jid$bOpA@Y4WXw`XA)QdsLRggX
zA1v*%K!Q$k3XA+;8Cd*uTtWjqrh3;jI)3sYNDDyS^OLg~>~fHjdw^XrX3Xj*f6;a<
zw?|{GBwL!wU;o>N=(i|+m#yVfQ|PL%%;?HlxBkH4>c}kS7fnv?L5UR+Qo-9wEHv+B
z=e=a<U+-ny(dLMC669d8EL3n{D2bX4h-;*=x^q*+M&)hxl<;x0p90G<#eqj30W!;}
z<<A+O(aWCR0JfB3d357R)1-u5nY=c+I%W@cgC}cpVyQp|vDK~RvAr*XWb^d_O6MFu
z$}I>ecR0H&N3}mK-io&SLfLBYU^Xi%e%z5S(LL*mjZb5E@CerBvD2RKPbUVyQ%Ftz
zRH;&@>55@4Bq~{}uzc#SToa4J1OE6YK9J7f_S3_0QFXt|7llz4K2H#+)n(+u?yAS9
zSIvQ*|AWeu5JfIAeCu(v+10U+b|zaoRue}S?7T{s<H@`Vg{$^=TG);STQd7uWgZ}$
z%V(&YEj)XC@EMPbs;|Q0-!;*$USrK#aKAcr#89v)N|WUN@#U=P><9!1N2bFIN$L@}
z6f{uj{>Ms`aY)rS9?Xhyc<v*=UM7t0XL!sHSxJ{xJ(HO!r!O@No3!8OHS8{mdezQ`
zA+gH;_ILo=<9ck=4dB8rvveJEaHsO}<TLGzV^+jb$okEJq^+87S!5t|l;EzTRI?gZ
z0T5MY^@qsNUbFc{vbm8&J4gJCS!VTJ#)ht!@HPF5B{yrGrgYOLodUv9B4#@h_A(>c
zhOumGeCX}*)I8t)M=Ng)BZtx2L}5G_I;ckU8pQf<56Zk#+!#bnOCZN)9`Zbdg`~-y
zg#7OXxq!+k$8i|}xagG%SP$sWJ?tAX(eCU{%p`9JhsD|y;b{h@FT+tLgH6Pt3%9#U
z$bS>2@yMpqq|8K?uqWxi5<ZqI^On){hbjH)|K29MDv`|zpX){YL&<BChrofcw*YaO
zH<jKm>YTA^Qs2gxR&m&l_J*W2yG@E^u6Xt&_u1U-Pbc`<jw${hHsK<LntZP-@4}gP
z@#;3tL8x#8<9vEwcZrYX<8}#L(w%C!iOa-Sh?*FpHu+xNjhl2-+s3bd7mt8rozzBJ
zztdR7e_oe%%qJi`xEpHy(T<*U=2O~8oY_w;gI|;(ipy@cWmPwk;s%zrb-upm@~A{6
z2oGh*<RgJO5{>_rGLd{cNT_QjWwvP73-XFVzO=pnz(*kj#N*qK6vin)tJ8{z)i@>D
zC$DSmoBR*PRopBpPsQ$CAUY87M-VSIW@h$#Acw#F1)T=iat~aOv%Qrz$yaj<uU#^Y
zxIlI|K$?q<%5BLE9hs?-cpgFFC@R`ZbuMw~9h~(zgV2NV>bZ!zMNz*AW0*YodE6C(
zv=bdW8iC9eOL3)zER+BG33}UCq`NYLm-T;)IJIu;2ETgqrch$(Btt*z4TO_A!)7u5
z$JswL2H|`Dum*|g$cUNxhbpV4zh^jP1(?uVZiD0|OP9`?Idrt56k>fO<=C@wSTPri
zX~O694$-IpI#FHGtUy8T8}F19u4~eo3}UkaKCBJsU`&4>f86|H;P@+z$z_b?{D@F0
zINc<J@pCUAbNz=Ynfri8;+Xcc>b|TW?Gx*>vzkN>jKloxoa{H|pNJE`Eh3IjVjDAx
zUY$Fkd*kC9*sgyU+qXKiS%^OUGuUdxPfeha2#lyY%(w3#3<*ZKOB&<WzH!e8$<6Hl
zI;(zgN)L4`qE;Ex)FX*C=qLJQ@A(;5QLp@pY)Y7M9VA5kE^A+C*D+aFM#@j{ras+V
zPQ|*08+^7%T|AnR+#;CECSswF%ILN2u3r2@tFP{`pAqf#w9t%ZSyCWiI|1Lkqg|1h
z2oDFlUXJG-C%8e4^YU!<TR$xfy>E`fT9K|{ytAK54|6C|D1dG(tRTJaBFc##aroFt
z#Ur3L&DFHou9`5#+H}4|)4h3#qju);W)ds*!d{TQJt^j<57cG})lhUDqf0&7<i|gW
zbyyVptFy5uT%?sZR)GZsy4*xFPK&l@*gyLg%wz|)uC&JXbZ^)gs%R=8CS8jOPy%Iy
zXnfQILSkAqTM2!?2atdQdCelZq094y(&eY?v4s479WMkvKEHxFW6~~9J5#nxpk`$Q
zqd;f^zF@O)^~KGpyG@Y7#&hMeu#^H_xv&kfR^9!%<T1JKuKf@Bl39mS>u~<NlYMxw
zocEo-I4N{)If`7}<ZYcj=;m);xhz$U25+m)Kp{SgP6cZ14l=`mGJ}E7@K5ReSig`;
zZn&0|<vg>J=2i8w3L{@o1HYZ@3pzdDgjDwLD2T%N{bNcO+S51N$Ms1dEzt}M1Ltn3
z$*tP3?T`AK?Fs6RgLBbB>7~rPePbt9uHOru`0{hBL;{l$^g31z)H8IBu&Iv6bKbhd
z_-NpVZWe<06@NBd*lVrdY!lg030`bKG(2Wu6Kc)O3BqyDASq=|8@nD?ox#~uCRr*{
zfmEt$r0Z(%XBT-MH_0UE5M2G<q1f1RcO;G2`uBa@*(O)K0R2R}wJJOBtJNRVPs=Z&
zetRs>NCo23ql{QQmCke>d)Bo_w)aC8%7`=WBQo6Vl}H?JH`~}87y|2u?3@C_d$yGu
z2H^{RstFBio@fq^;-4$~70Jm;YrCudF@QgR{Mv<sd9`XKvc=kTZ8v`UW&tu#RUaXI
z2e%=8nqcqz{WLu>&&S@ol;F0YT`M$aM}XR|W|Ud!mJgpyanY}Kofxc%nR(sz3mId2
zKEv4TKRFmCRUBtTf+F{SU1^Pta-AOk(Wf{GiNr;dfuNmcsMy}zpX=N)!T)KOJVFIY
zxznVAjp{nTG@!`zf~Mydp~Xt5+cjYKU$3D|I<u`kkUOuXopHmjtA5$pFvb${PBrpd
zaMfU13%mc~rH2v$$)AzVLip^`Io^yo<lzpl$!ecbenhI9w3bZO{9e9dBd_c)9Fove
ze)7y>SjUgkh7cUCetCJ(4`4awdGd6OO3PUO!CBYr+sfnb;6FFbzwf$+KnudE^2|lD
zNQR<j>((SqPQSk94=)bvsA|N^|03M!I~J2nbH1z2HM1MX`@{<k5f-ok;z+@(j*wu>
zR1JH~Y%lut#OZdzrc|(7aok<}!S6}(deR+Y-}+CUw?u;NF^20ZWDXGF$+1Gx&H(4y
zfbY!2fX*d1k?N3i?L4cwuyn^wXCCIK2}hYg)HMgplDF7Ar)zqEKo1ipOt}c(B0ndw
z_oZ++qi_m~T~tb2>dcx5Y+11Jdrg2!Cyrpds<^OJIZ;<Kk=1Uyl|pn@4I+?-Kc{Bu
zNqV)J!ahIGhRfh(-LDc>sbEE~5%BXtC2hppY-??)lTHmxL&a6B38TDoi~+ub8mm7K
zP`hUWIW4(~;8d@I4Y39!0u(>v;xy<<5E-!DyKL&RMmX@Lfr$3R-^qWxvS)!HUg&fb
zALaQ%jmv32HTJDw<W#cbKU=vH1>V-#lIQAwaqKNQG-*<>&Pb8q^XF8=8!gonik--7
zsxpJMsfVm(y#eLfZ^>4U`MlQN^H=U;a|5VA{!(QoUV5ZXWNk`=1|08I5jROc1U3>R
z^X`sfKX+ZZXWNDe`D<3GR%$FWCsRw{_9sk)SL{>Mgy|i#9pEO@SM@<@<7)hYqB!L3
zMhN@+`8(aL2)niBI;3RysUEvUlDJr`7Ay?wHQr2()lXd>c%LN9fx)VdszE>X-kv9&
zw!v@vWii?bJ68Yu4|tgGuEIsRLE%!h`_Xwbb@JWg^Y#sKLR~VrnLZz;+5b-ZO!UE&
zKi}cA>f}T%=P1cVt4fqASm?n+xmK?$Z&k@cf-Zy6=u})S&r`g->cgk4Gzaq|aj@38
zG$DM9`8}W8gP(O94>M}6Ob$6o_?Kt0!W@W1&vaHMd_ok?Q}LR!Lk50Bw^UHuEL1%5
z<pk<13)S6`qxWo=(9%nwMzbn4*Lh8j=(gX3jqbZ#cbuT>q~Q3(ww7mus$O#6$0UW=
zKo+U;5R$lf#&&AhR%3qH-&^{f9h1Tt&$-7b&Fd|sJGh(su=Ks4lvp7g<u`7AHlKw`
zpntBzRwF0_%F6<yK+NxR!M&M%4s$V9LyAj0f#0IuP>d8oL8lSv&cvIssZZxN(N53M
zClCmC6BDm4YxDRu;$-g?EoJs1krRks<7b~`$#UX_?T$PIlRlam39nKXs-Un}WKSPo
zvRMUdQzWWC-<>+zIaH1}jpxWQ7GC>IduXe4MmVAe%kl3+!1!61?04`B+@`{tzZiu&
zvg8Ux+!G^4J-2=YY?efU;7UKAzv>P&g^?0J6FbE_FOeNIz`Ok7up2W>1NH2dPo^us
z!E`n}P1A@`@_;k*LhM;^6TkF6xWgd0#t<2pgVKfNi;$R{FXL>}%&au$h%OLieqv4+
z;{DvNlfEEr?R61N3TzUYyClQ=Y@d-w7zN($@;mkHR2eG6w-%*}H-lHvJ6t>MNl|V1
z3>c342`EAOBK5b;-p@1~RrNT&`(@3T3-_)DvBHoJOg$w-;rZ@2LZJZirVB@5<6eA#
z8#dSC?@XSXu3Y}B>SpPeMbXy<>Q3WTb+(}wbNQ=f9c^J0VofEaVN$A0egp^^ZK)Nv
zy&<GR3fm?7J4+?;LU`7sPejC7b!JFHX5ckSKx5`J_zXf(lrVm*Vlhcy4@0QCQ_7)(
zaKYX8THV@Aqzl{frO1o19P148yPrb7QqxAlG)P6$vzH)AEO|$=8umBgGr|Ev)r?=I
z@DIiCHG_PS0fd&eF%cvh*`9D2sl^3meizQVYQu;gH{tE<{MuDPdPQJU`{eYT3n+!0
z5n=-!L`K38LzdL2@2C3+od!HqOe$N&>Su94ie;SOJ^109<Gq;#YU;TCTIdL^7yhe6
zPpFPv0K%tlh1R7L|D5I%q|(F&`oIa!?94#`{8|`uPL)^2+(NqKkp;<9ZULp({4D1E
z0^l)N=>cTe>L7!4tGZOgjHmpVyg;M@Cv*R$-1;Ruq&drh9b#S<5)z2w6*>4=acuoh
z_&7k{+?%ihtMKEmrPia~p9LH%-}!*s1y2V(%;fPUMfdT>n6d-ZPhe2`_R6cmOOgit
zY1V=Bu{zQ#&I3ilMmc664KEyyI=>Wyl^<)fK<&{MS2RFDbw*4?FO8}B?hB0Xrd};4
z{TrLg8^_B8(VXCRE9K&|Qc|(>vj0}Pp6j_b){J=Qk7~vaf61YjG{6R1v;rI2;!gZ%
zhGXuNs`|ST;kyH`*8E)tJ;%v4Z-DUa-p3&0(p=8@s3C!>`AyT8brM_eJBeSUSPvKd
zWWypZbTyx-LyN|n<B)_kEnv9|iSao&+~B(bSgQ*wv2!+taeQ`5DfEy(JRcx#bT|v6
zbT4#%_mBYtoFnGYgLB>!kp?53yly+ox|v<}t9NuN28+R{7sM30zig60I1-MR15Dn{
zt_Ck{ojwhu1IMSs(zx;xGm+bDB3-^?oGUMHEhN<cCXAPBy`7XqX?IhtHgLg43X<p|
zCRS|kW#a~cA~AVOOE^9o9k>|IeWyT!>=!L>0RQEX(}J-J41*jE$-R@^hAtdoZb*Q-
z9Sf?m!V;j#Xm^w@-ijFQdn74<C#FKG%(%F~sd#Y!Dyz*-hsexdCc(eoIDCe|1Mjcb
z{<yD=X6J;ISvUVJb+ZsGj}^RYOjcM|<=kHNp9-@pPNh3}v2#iZW5#uoO6Oc1wd90b
zZ~-sGVgCLGef;FvJ#$GIKdaXBMCY?2Jd|_t)|k%y_<HDn-bvG7soiFXp7thtEn>{|
zEYIkkM$se<i&rf9Gg(t(DDZu9l6-+JQ;HHxkNa<{8(b+rPJGAn7YjP#we=X$VFC^A
zk&_!SJ4I0z{6&2AG9Yaa4UG#M2J%`pd0$f!Zh+4lBo|(=k^vg#+TZJErZVXvA5;z?
zGdImBJElxb@9XGnNX>nwT$~(+8!{o5a6Mm9p*x%tJh5wk2+9d%2x1}nfbqYZ&&XOG
z&Foe|2BQQ6=@VPANa;xG;#30)w5UA~sHcr38M5@QsEy<S;|mYY$ulM1CrqDdt3gd@
zkSQY24$uH##S0ie4Jvg%jtBnh9ZK#3(s-rrsq*+3UKYjgvZ*?-?eLj0wqr5NAt$?f
zE}IHytM^!a*AiR6fr&#mHqE(d<#6U68&q`+i<2{M=@(lP;^=Uo*`(HCYjC^Em}JqX
zDs@JY<m{)gDvVi=eP4Rz9m!Lh-6#Q1n)DN7yXHAI?W7;IwnYC90t{YgBhq|%fGCHF
zg{iZL*Q~uKnUaWMC`2R{)O;?|c}I*H+g!4Ywg?|AC7C|v;uWdYUi{Ahzsi?l&vKA~
z>LNwp^7D5!V++>r9vl_3tZVXHE`yd3(;^PerL-X~^Os{q2#}FNXWj?Eyjszucet1a
z9eVJcbh~;yww(!gTYtfJbw9O@E*3SlwCy}yYRW`OrcSBT1Z{0A(d>uaG47LNXSe^x
zHCzIe^_VsYZn_n^#oJJ`G(11*@q}|U>cxScwd;(a6lMAGCB)(wBhz1vseSf}^o%ed
zW_d{;q@5b)Xh~PVy;x1^z%1UutFGRk?y@uw$zl9;i*KwZyx1}O*tML>@vqDuKy8%T
zGVO12)SMi<KH#A~tlSf8cbflSXvO6Ltj1R#!$|8slhE5eN5?S=tfG38ZRNKF@j*pj
zl-Ok$bYCMgqBBtINybrKzw(>_wJZ*Eh%~{Lv0mfBe0nCpe|G4k5qtL||C-7R8gxzh
znP_^V#}EP7Ecib&`vCC#9r0K+z=x({{L4?ilN6w<7@=Y8Yk`lNmpM(vG_3N<?IBwh
z+6m*QEpTAtd?2Z)v79gmYD{FF{YyO1Jd-5I{e8bowl&3xdEeei<7$!9X|Td2Mg9(&
zh~V}M)!iCgPOwx0NwUpq8noHpXWjZL8{Cwkw6f&)p{|zdvPSIvDvGYu(<VD?xuUmH
z#tn<|5nzDDUT`V7)nm8P8>9A?RD&@{S&P#U+NmC{01jM$Z=C;#<T{evzi!&5h$6jp
z5bNuY0=(kflCrjllOImfZUkPgCvUm<3%uG-0|Q&kN=!z^B>!!07;|;Cvuw`wK;x@Q
zy|(#pFPuoEE~Cgw(kYV2O9x&J+Ut9$r^_-5=rc*F!W{5K&y;D$F7$}({REV%3}W|&
zqlD-%qlM1=A9=I!ZfIOU&0n8Jv_Q`vEKVVJL80H@G7DXINzAYu&TDaz-F<M2qo7hP
z5$Y8UE&-oDz6mW_h|`MiTY?ngq4ki|1PD6~R)-0^JY%)IgW=nG#v5OaFJ{6Ev9dBK
zH`Sy|=W7;#?-3m*Ag+f5G?l6wp&WlOA_I6(z25XMn~duyQ1F1uq{E=FaWM2ZbZtW>
zu+^O(?)w}eRPCUZV{~@xzfTWC-+RXk;QjXcVZFU{EZ~#3y@EF0joL*;2zU$%07~$x
zS593F7QgvtfP@t-blHCunrrz!r+NN<;CM8<^W4LL-w=?F`9wHEH@cR8k7N=-eAMjy
zsiS;<JH@i0`}@6T@;Xqr*;$hNa>Zv|LeySqwVB5nRBwC93sPA=?|TkHO-g$r6~N&Y
zu*Bv8RSncZr&4ThOv@&dv>qrqonKBH3_Qo~!UzBTe{NuxbdD?{UA9JLftqcm*i~)`
zs97gO++8r|6mmh_cpr}jg-fKY^+Z%KCOd8~g-`+Db=gauR^tJRa|sx~YUgI^GaB@P
zh{@hcYJmeoytnoZpmHI;ByAjDhzF2{<rSWg05+uIOY#^5+o`e~yrCqoj%IanCMmu6
z<>wM<_ISqTNNNT?dri~~f!@M;A3wP#SFpwf__Sd0#nL2Wyvr*$T+`uDl4S{YPGg{M
zp`d+xrGtf$0tJQy?^}`hDX|#<qn$(p82{Yx{DExS5H83wW>B27h=r}Rj!zuq$@^4>
z+6~)h7sE}q8m+I381ofe!tcYA6Ro86{Y%LQj~+(?NM~8V18$OYQIckL5}O>3Q_I=2
z+c77*L*p>gl6-AySswDU>VJ0Ca|76!@u8-yXxy0CTJ@XmD1x-oi3dNwSaN}bTzktW
z;VX)-v6w%P#h)IzMFM&C$AETj`4)QVs;Wt?Z`ceI^d*}<e09Q&WLB5%T-R-#H2k6f
z^PdlR^#>SymG>i(xtf5CHrdzVAT__0qkk}0{;<!05Vb$S4LtUU$U%byywmOr(JC*^
zt0jMy!dKAb$qZDVA~-((w4?8C=SPUyHshk1a?-e^t$u@MH~&&Bb10dXOV&ts?*I28
zlvUvDa@`l(B(vkCYhvNg0<PZ|s#B)pC@~xX-CJEf>zWfbo?jMkfBbq2@%pw&)mIY<
zhJ3ZBc4^JgrapnYGtSHDhgs(A_gOpoW0yFTnWT<a(@%TF1f7?Ov1OdxqKrYk(R2jB
zd>bc#7&hG98*p=OUgd@82L{`BF_o(~<?qQ|H1b-$1$d+>6rkhUV_<WXiwBASA)mZC
zZM!pivZ)3-9VK8UReg0uf7YH<{0S^RegM_%OfSIto=Sl3hf1Fh74oir?DL7weg`8n
zlA>b>bc)Jt`$o;qONQoG*C58PjS;s?Tzv3{K*%s~N$Z9LMVPPwjKN3cEKmJgK@eab
zJH2*;8CX$*zPhr1PtgRV+pGI386&|@>3aQOTa!``f=<`$hR41galQl|bjre4<hl!Y
z2kHkDE|QLX_0^r>vj{YfHsjb3y=bLw&CJdH)<=12IA~^A4&(LZKdn1|cQ#jE8ODFT
z1pnhJAy#12G0!BE3jZ#C!iJ5~NpNqjy9tQx8E(L54Ja0y#wyQBpmjM@#s@s43{r$Q
zKuz9U0<SNsRsSn8+L?h33~3z6-)0}Y=jAsKO<VuX8su;j{S7#lFGg6nz81}j5ukqC
zS07=cglC^v;tDOOGeTV)_bP2fy9p2G>n{awi}gxVfP-lh2tK<&r+xggkGZP!?27s}
zp}0cDSw~;Kmm}%moIAvkV)@s#Rxn1O(h3RUxPWluw1YJsN`CDW8z1zYLfWSa%>=0Y
zXF8F<L(TgrjttDnLY}|Y^9OR_T?@oU#}8RtK|F-TZ{rL%UA+#DKJA1VgA4_EpbmnG
znb?7zlsa&Dez)H~1FTH{dz=i6G+oQy0@m~X$38Iqz80Tx!MNdH`1r-P88+%;k`kz4
zL1BL8hk|i@Ahw7=RrEnJkho!(+)SWSEUT@TiHE`=1Do>~Mf4DR3y<TJ0OkrdFl(%{
z;KSRZ3?+oS3{(99WGpU6a(F=G3O}?8P$Hb^`}n_K;dlVjh)9NhjX-7m?^jbi)F&%8
zaPgemga<AOlM#hsgtl~Xi{J;3R9@9QME6O(`e#NyEC@8GF;RG%JsC6qWn*hm7!|M+
zV7AO|{<kWPw0A(ZwU`Mfh~-&0_FZs7+eYJVeRgLEgricQ{ok&JAyL5N%A>d|ioe^-
zT67MCZof1{h2B>Jv^$nYfDO2$pwI+>9_>a{Eav0XxjXM%dh?V;&;8u6ei4f+N$L6a
zpsFYlMizLK_;2iD@KGDKf1+|QF(pXg`k~TetqmiUt|o{e)Dv)-p72-^OX~YwKm&v{
zuIIb8jto3GxWckW*vl{T>J=Ge=F3DH;Ni=2(7TDGwD(l~RxrJ`Q{=3Ph~NGS-DiS*
zPGU-EMKb>;^OyiQGxz6qBp_dkpxr{CTl=eXWVx4<jKGl89qP~N7uZ+yZ-B-;c#h}$
z__OxG0dB;Py47w1P9TNbxoh_Q&AXBr#q$ZSIjXX|ufhRy*C|9Za@~a?t4JAIVzqzU
z4Lw7=<T194sdWhfDtO(3NYxW}&DchQ3W27#^6?|L7QUqaCG1bJpN>>&UD^$V$Uq^*
zAw(q&u#|u~NHX`AJ?nn{c6w*#t=Hn=928DoAqasRt7ijn$uL6z=X(-srT@<$(L+r^
zg7mIu#$m8eKHNa~-XkOA{@z_Acy0VTV4U|dV*LJ$CJa-v=tBmUBLV5$Wf44wLfiRh
zp&XvG-sG@VdzrA~p{2Rzd1WjMjv`ggo!_d5ddMaJSsav~%cA7JuYIOr7S1PQ`#vo{
z_Ci$13v7)u4B5V<UQs##K38JWk<cS5e?~LIm=&n5gV$9VG3~bsKmHCLVvrJ30F_R7
zGKkTQj%5{3NzSYREx^x~gT$Obe*6zw1QS07ZG^`pRAi)*geD#OMUc;~i8q0_6MK)K
z%G&ia_^kBS^g*#UV}GQj2OK4KIRV-0!N9*YfDq7!Kd~uX{e4GgG|ATJm%?MWL_)}t
zHqRJbC-`K0y`G=j*K2m3%N;3zA$!UD&M+4#1jGjE&<e7z8Tb^t?$W)Tz6sB<DM;>c
zYt};IpmKsdT7hKM@*To)*WoMwEJrp72wIc9)QibojiF5(Mx`Z-NB13(YShojf*Y|-
zu38{mZ7e(Q)ry|5KbGxU{{Ss&oOe0LYvTD^n)rh9ZJSD{b?+e&o~Hna=NS`&ZH+ZA
zk5#QoddAMQ;HI~rLSJfgFufa$KY2N;KXy`<ip8yjzDd)z%a}p1QuXgsNz-+MRz7e~
z5ohVdwbjPZzMhI)NOs?f!{Wfh49$P|qN}?b9`CE~?*8#&BM%&ridI6r7aA;i_F%1l
z$Xw>fv*jG?)8}s~;@3a^G@t?q;n&Xtlt9K$gbYnipmi&@)#%ygXhkuNW`oMNg=<F&
z@c0!j1csG(P>#2&qSuOa>utk5hv94gtp~P@8@6f1`vlQ4{0Ncb_~fx@t=;Jso-j2M
z@ZL($aKi1_`@t73@Bwcn(A5wy)Ly|A*{5>4JmI7Sg)|VdEtL;@G@KoGa{n^YHyw#Z
zJbnGy4z<tsaS}YRok;EYT9}W*1{+nxoC#Kj|9$`LCam+FqP8_#q5^`b&kDUVB(kmK
znNxl61UCC)M!^ajZI@#$Kx{`Byc9DdGr?xOLkJ`gGM`8o;VV$vB%5%U2EibfCTIVJ
z$=Kn*-UafF+O*7z7ZuB*(<E^#t14IKWbR8st5FT1Zw3arFcTR6Z9~0FRzR+8Eg*b;
zzuwraYlfL0;h>F=x+5bGBYycc_xZfY1U~9rNm1@oZy7L}jDAcc3OO;F7DcGp^wX4K
zYMb|AgZTY#3qq9<pgfjhUC@P<Phg;}k6k=&`=;g8(7(|80fZ;~E|0b#16RVcbz<;!
z?aksI4m<{F+^?zJaA9b|Tq<z7KtCN8G!d5PINy}#dcJDKCn$>&dRCPCd}1{Vnhs6>
z;O}+=1xJad{PDX5T{~)6xt796{$(VV1_@P|ht{_Otu7<q{2*W@*N`zcgl6V+8s`1C
zo6SgY>z#mP1AeRauY`ELkYd7_ud>CdyvOO>uU`r^6F?XC81}V1AbNc?_*|kr$F8+0
zf00c6T!P7!6<Aki#1@uV5HMqd<qvE1`!UhDqB{6J&=v>6XC;U1MCo1QjH2&M;DpCX
zas?Z+FV0c8laYLc%hX3)d=J(Wd&C2YM7g;C3pr2$3z)cgJ&FgSk*}&7<D5K2CaN!f
z9~6)SWkj6WX6*B~Q%6i&B{Z<|eFHLJnVZ6U@kxd?hvUi-gnB%J9H~C9^~;>+FPj~<
zcL%Rm<8?E|I~6MuQou1$(Ba5-Ob=sLUw}6GKZLRbn?3S>sK*}qMko@zl{X#N>S;W`
z1CbTKJBH@)r~;R@&f_i>7enoH2PnXm^nSUiLP2pn)SydG)3d>2f<MJBLuLK3F{?=*
zj$c)N_*4>QK&oDuVP2jqmD`cxsV}*-Z#xCxeM{p3pA{8LsCe+V=7)C;N(&11nX(PT
z3OrqDZ&eepE$RF`VfWsfy8TG-?hFCY>zFUqrNNeY>C-);b^h(j+tICSw{3F(soc1e
z@Gs%4h$UW2uH$MODXbX%AOyOdFt}cgLB_IRX{&31yT8V9aCOI~DfpdjYR+*lC0D8r
zLOBNHl*OOnZ{Hw52}>Ym|8EVNK&Let<N29Zyc*uRoI0P%bNK7aD(9)&ex>_{DD)C2
z(z_GhZ@pi@zKQr6M|A4ArI4PEy`6DLfl6=DV3c(M3C}T_op1@jLq$QaanB@-Pfp=s
zYx^JstJNObUI<%fofao|&ujCYzTExc_@N)-45wx8>_G)M{|`!!K14qTMCm#aKgYth
zI`Y_T^r9fmBJStI0~cQ7O9)Y^NA5J(AiwLdx%!1btX&=AemWQEqs#~j-Iu#a??0u5
znalx(I&hF<BPJh0GtX@;az;ZeEw1;?yy5n~`-D={@lP5c6_O>v$hfecEcDmMq1p@i
zt+hvhNTV2C{^4B3zXsan4@E(t)}I@z;OKBvsUGyuBq~N2G0j|OimDJMuAnWYDQ@gi
z*q9kU+szHqC_9lr*x)8&2_cjE6Cbs7-x8?d*IzU_n5fnqsboQ&B^O!#&;0#gWb=T!
zZU4X7ZZJ6|5P;^10TEz$#SLdR6S14Yf4D}^edZMnW<z;uuaaRNLGG3#M^>VJ&QEM#
zOVn6mEH}6$h|%U)XuOcTubnRjBw?DIR^(a`267C<0|#~d#2~IyaB6Etw5B#}XnpsM
zjT#9`cSoe=>!#TKczLn4tpDOD4WPTi4V2zIGPOG4`{1*kgb(uG4=cjZNFAOTXP(&P
zeVN@V!AGFdR*a@ME*y+{<l+HA1lkoAh%M7y=qw~?Qq%_788bY`F^TeLN<~0eBS-)K
zglOd=IW#Bpf-8OM7m{~;QA3&B65ok+KeO~SuHwPy|3aNcS;y9pSG0OrOMK;_)?Nw~
zi2eZ;57&MrJplZcKa=VhQTA&gR+KFr!xaTW)`>%!pwdoQ04NMD?f#r_N$4}K9)n$z
zqCYx&J*-N0iv=TZthifv*^*E)Blm+xu)t=T?4T%!A0M!sJ_d+Z-Rl1~n*cTX0cUKO
za9hO0T!~7l$NL&d<NKfcrn39O@15c{J*}{1blz|A5rAW*5*x$D=+I@$oL>o-VJV+>
zLl)kAM)D4Z@>*IEL9@#Ti1>2h?Dr;XF9)$)8NN_BIUg-!EKj#qSwWv{Yx}OI;ek+c
z>Nz2?O<byzr&92%8nRR@YGgt-oC_HlXpxeh;Q-IkPydr%=PDXl+{qiXCd(cRd`kB+
zZEM7G`%D&6_`Bo?RgIST(57o2<!CiR1ZmYt<wGZF<@Srlkit~IfJo)WxTQ~o18sc%
z&wq=Ieg?uBy!>1NcQ1M<(6i7N*WpNMNM47V%<H}#^WytfZH)S5Yuu6WDM03{_%@`}
zljIR28rOOIb}@)IW9q(7h|v}K7Zam`d-U20Mp#($>Ev(4nzq+-ZmVN!a&8tDS2VmE
z7oNO<SO_Kq4AU>24a-Xj!Atf{V1GfjNDnngH)-NcM;*<ytD#^pG;}W-%d|IEDoxS2
zZ<%9p>Um?vQOerQAi6c(J8$uK`WvePgV&-8W(;?+K}T}itCfd0#fq^0OM0z`tdKGu
z)^|b+m|8x+>Njb6I1B-Yz6<Ddy|o8!#MBe6e?t%S`f4^Eo8ETl@js;t_=+0+!(YUW
zQU?qoX^SuW<>uLp<@RHD9b8Vu-cC8P5Zj(Ge#<_8McH5ReO!c4bui&7G(@s^lt2Nd
zrv6$duj$~s`1q+C@Eq#9&ri3z^^M!eij(OVrYhkm*Uyj+(!4hXmcw^E6iEP^`%f#~
z>+eMT?{{2|os4|-7j`_$R(M8T`h3z98x;jx;fAirrAY3RKpb3d(DG*nT_uBsRh`iv
zNTu9dYzdZ8u1pgr0OU=a9GR{U9>C&HLX}t~TpqZ{-6Q5C9^iUJE7^3{5{u~mL=b&S
zV+28Q^4PhC#rX}Gi3L2^02*oH{t{3}&M+-S`BMKv5%SBbih|Gm%rb27Q3~{4({F4P
z+hwVYw~laDRMi#BT%|1A9|sj$4f{k4V;4f}ew9thU514=l3{s*t1dF)iDnme_D~k)
zqV(tK0>wXG6Nvixv4s{k#wot>)?)eLoIlim-LDD6E9oo4FpqYMTy;U^=dO_#6UZB_
zKRY;b>(`~VDprXqZ6%nb)M0xFfFJb&nzM1}Hv40WR3MJOan1+A-xOCM#PCgB{%ap$
z`P#?L9Jj-=g5YV=+wa-5wBE5f-i*NAW8y^A{V5`2=(xl(MEUVGZS=0-Am6rPJnc<>
zEO8Hc{HXX1!+7cM)^uj+7-uWMQ8O!VXP-0p%!xCM9o!kRAu}C!Bhwp6Dp1q$Ps%Xs
zhKf=1xKx0|nReFac8N4aiA2Br)Y714#r#bMpS?BF|Bt7yjEd^}{=PGGNOwph-AISD
zA|Rr4gCK%{ARRL_(t^^BgbI>^<P4J1B`w|EIn4a;_xG&zyq_1d?mB0my+5^4eRRBO
zo7g`K*$00izG?9TzP}0JuFn7edpw>|R2%%Rwu0g#&bTEl5BjFxgE5h8c=B%#w7t)O
z$1U&Mtu!$>X9*njmj#~VGELv8PP|2s4Kfa6J<I`D!UcoBfr;SepD&BA(dS`($|>y^
z7T;wT7n|H~0h$}mX%I84>z-;$GJ3J7*EE-fzVeoq;3FjgK2PEJOid3~#+<2BlhV_2
z@ws`UhDqNMqx-*UKHY)DX$6tXE#U6VOiNXkfyc8KNTJ*EHJs@wz=JC_@-5xIzFKmd
zuH7e`*uNq)og}(;%g49QUvzpca4WXc5B;C;M|o<r>71#q*YoY{dz#FL(bJ|d22&}K
z)fIZ_n&T*Bd+~EEmY78e+>eSr#@-2c&9(Z#Q>_5XFmVQ^CSF+%uEHV__bVn=sDQU+
z4p?F9TIsUT^0|w4WeYVZa1xdN;?g$F_ErDM@$yAm*}v<T)^}Z@Aat9JYei3q6-4j#
ziWnfK0di6@J066^e9LhxaF|PzIQYG()6jWSOVt*yq&!FjBXjh}d0l=Y-~V3tZ@->w
zY6|dgiU;T}Z4(lF<a90bUi&>Kmo^F{;D9pVH5p`t=T$XrN^M?GfMiMVWK82vo!!^C
z?z@CPYI-UVLy9DyeWq~W!Diop;M4sp>rLesZbiTq!%=SpACL)7i7vM_4&RG_r6+I)
zLHH0DUYb%+y{BC^`wo{6gvnFIN1Hx}Y9B=}Eqji(EZ<JortCuHg&4q8ivV<&)7FbP
z!hAcYW0~F5|K3}!qJ+-FUJN!|RfHFu*?6I>Z)rE?FT_Y5-<7uvrFvyKeaZ08>|_Bk
zC{>>(2MZSHkq^H?K?__#ucsjJJ3c%L#Gl2W*55&q-}ePw0RMl33@#yjhq;tDv)%(`
zg*|l>J8}ZYhvNyWotGRg|LsX09Wmy6Wl*r**~TDC9RL{H_OwT3=M*|b0t?8cIMXQC
zm_+tqS|WESE0k67GcTMmDd|QixO(qx(1X9G#U(Tz_wa#|y9!$0ZI~Vn#2OJzuN!=C
zy)wRiv_b_<8l<X*?BW9$iX%*0|AAL4zNAL{negyr!<_^rUe$4+#18~rn+_&)LlBeD
zk!TsSFUN6o79d41!=nGYRQ%oCZ)@c0lJbzQh21N0p>^uc(wAV}!%hhV(a7}EaX}Lq
zCKw2;nnblb9WHfy;nC{~pL@i<7*V;)1(wR;4tl`VDW>+IKK@W>`rS5U<gn0cO|WjS
zm5_Qa0>um5zj-1DdG_<aKSnV0<Mlrtbz^Sp<l=kTxK}z82dIY$2Uj%c>T|@qsW8lk
z0X$qgz1?Os4tE{$*J?_RkZe+|!PHYyq%&Q%$^HoQNB!6@*E(7Qu4hCLa9z+8){#sH
zCGc1vD$eI!&yd55)2<1Z3PomId>TNI50EBi{i1!MM31ffJ>g|9?Sya*UfC}K&3X(7
z|6&M)l)ooYnSEt~md){1ObDhT<H)SNkqMoXIY_vcoZ$0ub~E288G}Lv-`vaC=wv&W
zB=&js>G$_{qym}o>Vrt#6c&ig>QQ7ctJ}OQry(iPn~lTeh*`&HLibf2pO@N5DTnO^
zn&Pe8wYz)wF{ClIy0#mn*Ka8d7+>Yi<=W0Ab`|=pwOLOO2Q4itJhiA}ETX;N8I40t
zmubPp$yvzy5?eVl$>0sv${54b{7g+_5EicaiO((;HH_<5FM67J)|faHNOV1%<@221
zk@>k)qZzpKeT}IZGiVs6q#_JlaWRgL@qs(O@Ub8)owr#OBlXL3NGwii3ItcJ_<Ic?
z4C<wyKS=9q@9@J%D(Q-`A=}MgJ)OZM+MI3p4}~J#{AI7xiTvX;4|8uC2C3Zm$a_>q
zn~(dghWfqa-?Q!X3AH;XYO*y5;DQFHsPNBeV9+L~h9Gl{`tD||=S!^*e~U8Kxr)~>
zbG-3FI!H?A^6G}B4sabylaKdbMReo>-U?0oUw_`iHA`r(x@4vi(aB=@&GY%>pl050
zU#I=koFcMpfK-J2j#a}${-y+%vlvp%D;TYF>6GiA40~$$*+uXT>Nj$^mJI~Mj!#3t
zE?b0aUq-%xwk+l56Xo60zkN>(eNg$VA|Z1v-BQ1ty_v9;1x@F6z`^T{Q!v9VOEYdf
zDNHkZTOj9lI2GYgVfUO>4@f%W0Z<i-;Fa8g;MZLZ18U0p`0fdaL$-Df$3l}_3+<Wf
z*Mf2uxnLtFbSvD_SRrhvC{1Qmc@Te;?S5t@M{(z&!S1w9h4TG-?n~<SxcC_xMgD!A
zT=B0sGIWAhB3tj5;B7smX5^rZy>=u$=mGVK%4|?Exi?enQd-`iNBN;#rQe~jCS;M~
zspS=gMoDV|Iqz+fKn12<>Y+_EKHN73envwLaAMNS2}#+3Pe|DZAeI7_plJbCwsnyo
zx-dewSe05)Q(Q}~eoODlAM5mjnynpcI9oByAb8Q+Spo-M2hrbin~(m6hu{i_)#C%>
zSjb{{^=O^P9aPyA@y`U<qHB{+G<539y8kiOp1&|!72GYt&_DF-_=Sb{{hf!sUOMIP
ze?*7WO4Jt`nxbEV;ZzHy!O=Z=TOSY#M;rs@UIZ&?mnz1V^0+kdUC8<4=>DvbE4fnE
zL!|07$6Kr?Km~_9W(<pHI8^Ui4=)cNoekPtRP5RhIc*lTX9@u85jrF2a&B(@CB8J%
zuTv3`hqu(=^Gc+u4o-&^Jxh&>oFxW8ou2~W6$}yqk3rDM7P|?mh}epwA%3hBo+lUx
z!3)0&14Bx6iTW5F9_Wfekg)l{SJc2$!jTh2_a#@RwnN0v=BD7?v=`VSONrW0asGUA
zVC>{yU>ljuB@Mvo;l1klG!L2|eA-pE=n+E5d67Hera-#RIIPmeu~|^C$NzdRSafzR
zur{#7f9~4%c2v76IKb-50)`{b>iVr(#ZJhUq$=4@Z|Kc>LI*P0i7rX$o(+HLs^cqq
zU!yHV_N(rbl_iSU5l^8A$M(`tU6z1?f9jyyC+FGjl@Kms*h86ogir0!w9qTuj1(n0
zD)X}%eE7ASc0WdySX++M{zYQApCT6~z0RRii(gWs8KbkSG;%jQ4HA}3P-<ZNp4QNG
zB0|97u$=kua?4_Knn>3b94pxub=u6cgd{kUYi@#>0<Z9nKIiaadq>8=X`C8sXps%;
z#5rvx7K<+1-p-ICE@qkneCsOCRjxOELP<23uCkdEFLG?!esQ~4jEjV;94+;$P20uP
z(|7K3U1bYs>OH>|Ipf-|!ofL<l*h3M{t7f2zgddDRl7UiX94?6Fe4$?xpZ|b^fBEF
zX`&7z3{|3JODG>9K*O8`%+C^rZCU5!qSJ4|90_msK@Rwmj~LyX`dkOq3LHT}6*iBU
zYUnA8Q)hG>sfa+3QskG<9HQ|bw{_S7=qjcMAD}SyFT#5OZGy&p)z4sAsrQPKbPX%+
zr1zR<C`=0_WSEutgAGsLv~SW^qV#a`CH^e;`<a<H%}#wzfyInq))1{&3JoSz_!>vq
zCl7**4(`^#HhhXoF46umXX_6Q%o0-R=Wv9Y4L>@)sCCyeMK|YO!LF7fw2x8shqhjS
z8jfl|8(D9~gwTCr41?@;=VO|9f62qxg@$vY7n~he@SIDQl2;zn8H+Hhrdh-{-?xf4
zO(1$0i&fo%Kir7IuhG>7BOUg>h#qp01jE8?7TuI=(sO~_Z)7N!V<BSQe_@>ys-aIT
zvbimz^VV3>W=4M8{?|{(GY}7zBg^U<sxC|@)Bi-6&ZKV;@56zl8oLm`O<f`I@LT0u
z#aJaTe&2p6fwE)btGCMc+u;QQ*#XmsVmo;uZXr&t|L#+%jh#5U;TN<gGa@*xhvD*4
zGj1T3_C^Xuus$dJ`&KWQaqj+pM7dY1=y7g8S*<iwzsrt1=<q!;Pi6wYXK4Yf-Q`R;
zBcA_B=}Oe4Zu_fZO0rZr0=rbJ_(cH>7Ky|m?Ud7r+{@A}>%1kJ|IWJmDW7#_5br)w
z-*|8W*@|P;Lx$oXuIfcErVn3YrHEOnn)gA7b-zzcAgkGd6|pR`lm)o)kLQ~|(RQ_c
z5h(soby_zBPKptfAb&tW|B^1#3%|$!9pWgBrQ8?ZdRNy?Bm6og92DWx4QHITe6-&U
zS`s&%!T}IjfgHiScL{uAN@}NaN?ps$7(GgW9>TgNENDu3?h2N{AVH96656s`Ws`nd
zxHilSdwNtmBd~AAR=9LjU%ApzD%{SI6&$Wqfg;fm+zz`c)Q>ioqYfe}DV*B*vy~=p
z5gkl|yB-VhWG5(c8I0^MJpR?<4#s%IbtM%Wh+e14OkXeCy-tdOk3;^3xI~c0kxb4A
zg2}=|DzC~>3hx8i8i%#LpPBG&q^7=^shBcYzlR)ehJQS@G-7}9X%f9OprKZ(4@j``
zwbong{&xxzJHhpa!}DR)o_U>kUdpYXQb=yKXCx&WeANyK0KtKj7r+sb)K7o?5+);8
zdCp&0hi`A(UVP3;jMOP5YJWF7Yc%@8JC_MYFqkzo!P<Tx0ObMRG$LL`!{%fx-y`JH
z1i{F&e1|)yvOtux?|C(g?Rt<>C#HNae(m#UbRTnMTVv5^r90mZ^#Br%GNDV?98fl1
zkO*Jb>qLfD)4h;j2wGc+mZT*AC{EBpGu(YRRa`(Q`P#*<H051>3AZ6pw?t!#v132Z
z=~EHV>q^778nE-ovfKNR)5rJ2c{Mfg_N5B?Cj+YI7{kTLCnC15s=5MYoObNKi$Kxu
zl|F*)-AMhzfM5rX%RHH~QBt~o!rIxTNI-inPuj`rx<H{<o6aOVkP$=4h6h<deu@cX
zq+39}M*IHphX6@ho2dkRaM&oJu;?f`9h8tF2jn+?`OIyIH@AX-z5$t}yaz+z*iM5g
zbdUZ&0D~_V?IT~iu5^5ve7MrIp2lJ0M|`sxuZ~&y`paWbfE*Zie+A*VbF{W@b0I1r
zJl0c7PlDN_dDPZPd-6kVwrU+D{HfzreHWg_4d2PsGY6{hg_`mzrkKRoyV>9<JC<DH
zwuA1^0*OP5&uOAZx_vSSRVoiV(9c=KuZ<KK)|HZ#2sRUA7k?ks-KpHf2V<we0wBl=
z&>P%B!2@Nw_91voA0;BYtAh%@&f*4=);q;gR-9d(PNNl#0Xlu_q1w1skAwgCprg6o
zR8N|7{*&gN#C>Vhip#{OAjY;D&lkXitE^sWgQS~+*&hVRa{L2rer|3HM_hGJ`Vql%
zGG$a_mGd6B-x_k_`*N&04ju%<<IVipi+(-e7Tk_cryf<=D;g<vhx%8?B793O0CN+b
ziaXSwC#ZQu@+pQ$ldXl7ez{SV+)|bz?KAi4SU^v~RO?9wcsqQ07LmmdrrD;aS3UqC
z!*iEett0J<D|O)Q&@KB(3-<S03cr`Q4kk}kQp}yHMh^{6V5KzaikE)i(^v?BLCCG2
zV|HFBg|G!`qiAv{GdoIEpLavz27L)GUA~S1%1)|`xo%E>jRD<nM4)7;Wt$c-h2#-K
z;a1P<iTMm5`8}v(S%w9@p3!?sBjsM%bC$Ik<Oh!1eO`Mzt{)BEd=jzBU|a9&T${;s
z5`(BU8*&m==Y%`arD!6I?-|7>*R7Dn@+Ky`G!nJ7n09>r40x57!DzFu*pJ?<(A=?;
zLkoHGyO?gG>qJdsv@bCa6F<~C&Q^Jp=WLiI0bN{l)UmRBHF~%D?mB3E#O^O=obWYQ
zZj#u_CuC*`?y3*ekj1q8d6IVyo)UOdypv6qnAf|77{7mMr(7es=zEegFL3A|kuA*`
zMcN8|+Hx$JbK^sNO&NSb%6*rxx#t%(9Lh$2E6Tmj>k_Cf!N8kB?VhrSf9iR5ZVa*Z
zz{)j;DkFfL{xw0dSm<$9Y!)-`?~hRdkNGbHB|eE7Dc~S8W(NnqD8Ef~zcJhFoMuKY
zAsE;&I~BAA-k=G5_C|8gA9Xu@?aLzIU&Z3Eai)s;#uL6ytZKYK_jdVmI4^vmX8)yt
zigiVj-?s0WU@8r)-8g)c@fr4!dF69k;vYQB@%^!yMN_8N=A)d%d>J3g=C^wTU&)YY
zziO8(VW=aH_jIcE?|`7i4v0aoDp3VaYvO#>=f&TWCOl9rGH$&r<L`S9m&@jV>LrLh
z`6eRjB^>$X$!@O2^?uXoy=qTGxcZW8Wwj>q_XqfJ3>$rbsL;7+i!p&jlGsliZl!6W
z-Oro6U_u1f0H3<fiajcGLoOo__?yK(+I0NAY%WmoO+!vpWQAja(<%MyId|@=f`DOc
zFluV?9XVe;etj@yz<mVvD>Hw#)-pWqayocf3+EXv`(cAajQ9TK;K#dp0$KE8!+SA*
znnZ)-OCos7aWqxcgM7D9H8%8zt!mdAU97cZfP}o9A?nx9+Vjge!E2laass4mp=Do!
z3jClOu8VM@hY|l*CK+~*gcv-Q%m&EUO=TXqi8rb~d<smk;+d0eskVDbA)@r9?yEdE
z6$$ZNWK~8l7$dAWL4QZB`O+XEKD%U;UV_bbz`MV1g_p2+n>7dl!?uB8cBpa`uy(XY
z1GsFD|1q7ua}(2*>eU+(U-wbnl|ve=!UZv*-{Lp(Gx=xUu1X+<opxCmn=b``EP|vD
zu!VWF!aSl{3jKVVw21an^X#NOS|I1kzuTZE_GV&`pqTFEz7+zx{LP4YPmSI4V0D-C
zl&c5qe2!x5o)4TwtSeWXezm-3@GsAZM1zI*r$5C?nx2|%8-DcPB6}D&p{1|ZH{v0Z
z5_}P8{(_?eHj_B^2>t)Q#OiJ7dHIag+B1IZ7#1*_i6l|U)XYSxVTTaTs1AAB?@OzS
zc`gJ+QnV(uku|GaP_E0@LT6vYBB%jk!U5Sr1FRh2YL70pnh_>6A9nYgTSq`X_45ND
zGcf}P$vTt(MXJ*7{lbUW8+yxKuOUFQwmzcdA-kCmR^=T<g`AM;b;o95<afw{G|}KI
ztFa|1myOJeoRrlMp?|ckJt((ixOpj(viF1KdKE%G--I5VVumj0N%p;B?rU63rM)Bn
z;(5MU&fg4Z`k)ytVS7=%0at`5k83Wiwq_QJ6HQhPErid3@!1ed)B?_`WGKSunC?u7
zDPD1G_RvTK5*EX~`h+bQR0yeJb7GF>ztU+X3ui}a6Fn%>+kStRc1i`PuA2_@Rr3K9
zgbu4WFQu&0>WHLSkOK7VKQ;*9CAc4Pg7Hq@Wabn87xT~d@K%WMX%gM5z=}O_5@dkY
zXHioxjU~(WeZ~u$9n>A2*c4fi9Qfq?cE0oB2G-iV{UEYz4F^y~e%F1fCyc7?o3?qy
z3;e@F3wBCr*=R*qE0|iCSdaim9#v|Rl4-d1diYmc6SxMpF(iMpRqWFBW&k9<lvioL
zs1$Vk7xf_AfcKiGJK)mdL*!cwTPLhZ*UR}YSIF?Ae-63?#1^vF=(%&VAzJp0OjL>E
z?;n4Lsc%rbr$oOZA&*oX7tqQiuz(zPIE-jYip-{V+ohHEq``J>`}OP%*FNOyv^V*i
zdf2_Tn%FAGTiEhK>FRM$RH3NTD;8oa>c}sl1<}2XA^e`2yw$bEdR0V=br*umS=GV(
zK&U#<eDeXhIUrj3E**(Ylweel<U1@-?tdHn?l%Ky|9I_kegdg7E+#gKGuQ2m#*%%I
zGhsgN-}T>XF5Z^^ri3(69JsPP5#)ZG?#;RD*w(=g*k8h219WKfKRm8@xVEPGz+QK(
z;V5r2i009yw|G(~<#_z-mBPoPPrs~H<Rm5O|2RcOeKF$jcco_E{L8WJz$)8HaBLDE
zt;gFFUN?0#fv4=3^LTK8<?Za1?K-22{KF$!sfvH?j<rHWK#Ec3kM7CBDccv%@R`Vj
z=R;b}N(<`u%$}es7<E;%TpGui(;Dyn1e+coDxgWNQWF(9uMoQFRr$A){#F(rKr1?&
ziJROFO`791jpfZ7A+FzxS7NGRU1(-Z$YnnoOYZ)D)b5lTdz%P(m|-^?yAOV0j3$S<
z>Gd5^cRuU`+o3hjjB^@>PQ41as#}_9FMByITDsOS9f2hs!|~*#P2-))O;+hT4=`O>
zM5(a9^vV3_;eSQ`^R<<-E~nj5UP0g(etSOhq0SwLWZnENO2~Rl2ZKDi)+Ea{T>fdu
ztVkqF2-jls{!Iw~a>hZI2?j-d{TcoAEp!S^s^_F;Ye-44asT()#AfyP=Y7$!;(j#Q
zVe6|W)l9;2Bv7O{$;~Ozsod`4njZb@T}##R?^4TKshDKLDsq5F&Y-z{=7yvKux7pA
zyw=JF=mFT2i0vlYUIqWWx`XQ+9U`S)v3dV)si++2t*8kG)-g$_RykoX1UFIs<kcSk
zE#HFwh8UIWc5Gf{6O(Exsq)nhHWy~=x4oKJzFu@IOMxI-nIHX&2p;+&`cFo})m$m-
z<^C=5yexCt)cU%bNdaT`6fYu#+<)P*C~O7{B^HqAPJ3phHird9T`s;*<);Gf$#y^e
zP-Pp$k&L;5Mmn&lzi{{oN+W=%#}pB$mw^2w!SxjXue>CEHfTPRsu<tLPx{{lF=c0l
z;e!=DNqgMHI{y-PUHvRl#Bj2PT2A&pkpaQA;ma71Bwz6uyoF=QNE=@SO(egN%8jfa
zbR>Xeb-C$gQbQs-b!ZXWJ5pa<qphaaA5_O$JDnj7+qMr%eMMIC+xGg)=AN)whlgAM
zE;6L|c84GBZ&VhdJ{+!e<tTMpI3r?b`h~leim}Mj(%`>VK1TD?$M+WM(>=2`#nd;0
z^DY^1-;YHTLY5<k(_uK=K9Fs-EE&l27Qde63#&=M^vQ&nB+kGBU?}tkV&w(8`gsO0
z!5(qb?=h4iMkxhgU@Wjl8Gm%DE^OnnBd66XANmW&VW3I;Kf?GKBwv(@+u7E>UKs~e
z!B4RARy<J$x_|(DTQO6z&!DQ}GOlkr_Uw7LB|Q;$FotT6(z-_zOufMMyHEO6&5JJo
zam$YjQ6|4YR=x(p0uMB%#1nh7!0XiSNq!E+$p<)@{Nqf!n{YOmFg19iyrbce0BlMI
z6Ns|$qkQP2Xsa~Yi&VMEfHk*@1z)y{w|9E-)vdHO2aM69vA3*&+sd7(ams27B3!}y
z7sD(O!G1*}h+efDD-$u3-bGepz<n>T725(N@3Er$^5C7J^wDPW_lR=MLW<ZSbOSSe
z*JY8X_gZRR$%Q==#{skKYM;?9Dzs(QND9I@hR#1v_@vMVy?*U#P&k8<6*-7}AnJ;K
zMEOSv(M|vt0@Fy76=-$7DX*aj)g1q{B`Jh)%XEo}s)ifRl2hXx&nTO}5yu@C?7157
z(LZb1{%oU-u<OT6{I_N1OuTaVLzE%W7G$RIT5tj(3yEq7!tpX2dbHbJ3)**hr#~<7
z%H#pluKwbwZcr3-4dyC$^5A&xKA?&&!3*0Q@FTg`dwA|odUd^16RTf+XH|9k0YutX
z*RT3xSgfZNu*d{EncG~&{E5KEQm;E7^>OwDA!fz;WuO|CtYm=prUD*b4HE*%zM8g}
zFH48?pOkQI8du4TM2IL)f<w|~7u1<|^v$d&d5nm7_3AkXq6_Kz)4))cnGaI8XaeI!
z+}09%av5GS@@M>BA{>L`go>S8pNvEWPQf~S?{{&;4mQ#e&rzLoXAht4ZjXZ<NGJoW
z->i2|&~O${a`2w=tc;PuwfTD-iLOf}Y>uo*t=~*K`|f~fBlG?Q6>z3}lkI}~*V&>0
z8L7dWzSU%!zqXigQDA9{FU4XUBF`?h%@_AjBo~1y--kGIyVz18J`hxW(LEteYNNk(
zOpKtv-8?*s#KqpYJkHM8=<$qdfH4azdC{lJyYv1q{Y&)t`wCf#5)|vCr@#o!$#(IT
z?wP#)hxC6p*{gadj%iA@cjS2>Rgajd1ks5;@1(%A_V1OCE{3{hiJpz~{rGcY_ed<-
zm}mkYP$9aN<}Cd0(>O|)UG}A(3x%OkQ03FwUiE8)p%8i%Uxee-ByMOn;_5wH@t&;O
z6QaKa@L>{a;H%=lZhID$GnA?<nk8$2eREC?kYE>8?KJET?i{QfEl#C0U=Z<G2u5Ai
zPaTDPivOxD*FebzRWyR+FXqV!t^|G7uG*{?d9ioJ$MCRUNgHz1+xQ>~uqH)v=dKzn
zK2{o8X?RB{TY{L;#fXb2;G*I(E=uzj14ByA{vlQukH*H+*f=l<5&i}#b`Q!?1FbZ*
zg$Ctbgf-s{?JyaHRq!sf+QAhewK436;lu=Y8OVdnQLUnY_ozie_{BJ&B$%#Trgw~Q
z-snK=znS=`bLT5v^IDH@A(~phB>wdqic9-zeL$<dMtYD8ATrMvSFoP~-}?s(bqDJK
zuPw*nz|n%vjJqK{)*vAm+&F*5lpG$nvN^>eTV$vPoML=*T}ko)6%>J!;3MdgvNG@m
zc+AUAGDc$KKKY0ocp05(^udN#GF=wK8r-m^W0BGhp6DRYT9F6+<Fy7H_({53A&lZA
z#gyGIh<S`AMDIH7rf<()?9E+xNw_@N&c%}tL_cN)T8?3C?&HO7e=tx5hwt}W++qVA
z3De?3&!IyO)9+;i=Y{3;J|H~q8q4Oq$w?IMnC0uX@vbZmd_--}m7Q!zRS%Ozx7sIK
zxVRsYQl5vei`%jM`G>?t;dI|&31Tjw$Qbx48z3ai5EFbE|EMxlKUyF&GMw7;Xf8_Z
z9i61g*-Gwv6)=^sKKUbaswh$Y;0E#kyJ;0ZW}_?O1h!WXCkZ~(m5E3};m-X`H0I4m
zTybVqc%n{G<PFFHqeL1CPiQ{T5jM~uI)jITvRV#t4T?jp-EV9<9hsF^RLISpsI_#z
zBG)E-k}$rMe63<c#RLIfe><B&!Qq3o_o7&yrj-ru*gJwR5Gf%Ra%fNwNl@S_efxzB
zV8AZ>huJs7%x}uXuRWMa*<vAg&&#Ldp?p_$7Z`t1xo|@LLg}2j<!-A%ziPwk`1{|*
zj<ObabCc{i?Ww2T>(1#}uo|J24z9qCQ|>nl=%sLl9zr-=`l<z6c`-n<=yLYsmYF>6
zGP^Erd3NX;wNiVNk5s-P+WF1b@lej|DG_aIodiZkne|>dFenu)Ka~q_-#&EiIemNf
zfpz3QP|YpVK8e8^hNOrujQrhXA4_1*9v=%w+K$PQfdEGsA&>|9)xP3Cdju-K(}`an
zp*S)nMg14p;&c_Fw@)p9r?8|SW1dar|F*S|lx55T75OPOBMhJtIW#7<<Ahczj`aRv
zRG;Rs=G@JxZVVeh(c-<nI~}A9h>Rq*LS5G9q#;V-sI2}WwNpc<V<q+qOa&%%=K+RN
z*ah>@wfT}_!2Fz}v;2NInu`M^hyhXHH@gTcwyAxV#G^nqb4bq-7Uv>)<k{ydxugba
zXiqkVDj(Qt1%a?=t>r@1uwQlV?VRDl8KG7`8p&B~5xCe7cVJ^pOX*6n&5bX?h?IN(
zv1Up1%^RIp<9jDL5{&>~F@uBDDNE{J*H)dy7=r?z-~>bXs~66fFmngh&HsdPWSqdS
zhfpjCFW@W0TRcb%v46ql^hmOBEP>Us7Z!MPALZMwEzODZW%->z4H+mggx7@pCInv}
zXf9dZw;}Q?9&F2w5Zaz)<fL2St5x-}Z;AxiaHSiJ3mcjQs(f(Va3O=u`g+czY2(b1
zrlaT;?dsA7ChATPMW*N4iXD4`#-dCmxTYo6zyv&a^BrOI$Je43;iC^nbr5#rYuH%Z
z+`dOd?#)pm)HP2OEul*>(D9o?qpd*|vT6zod7_TPjQCfTRL&mxPk0e0lm3DxccZ;5
z4znL8W&Uf5KWyJVP?|Nq{suiND30f^N$<rlH^X_I-0ak5ZHOn|VPw@r{dBxjcK;`W
zlGthc5uYE+0piAd*W&m|*MRgYJ9iNUs5G_9{-ka?<ZAKlYkSe3XS44>*{xEyGjB~-
z*^e#pSS%ZsH%cfXMKJu#v>p{pf|cHTJpwic;y5GrC$*vg_f_Iz#pi$MJqX##X3)>9
zVU4bbZ0H<J0_pwRhYLX^c$4yHK`8IPq@w<QuudA14&+bDky3l8kZ=->_wic3A;y>s
zMuCB|vtbHF_aDz6n0b&!w)S*r5{Bu0XgkTl{qW2N4T%AS9#ZMc-m|%k>-h3=$}Zp^
z5j*tFySks<pM<9>CTfV^OUi=$Nhjl?=J*!H=^wp&_%3P&o~;j?fAyKadB?0#dZ4<}
z!Z-eWkdyu;M~EnJD*FRx>Bz~3MvDRzITSA`dSWI0*C9(pk9_;PncH&2(>)YKuCAB4
zHlRcNgQS|77K{u>ERs9zWW3ji!Qy-FB)HSXkk5w~P~TJVt{)L{eWphOB52pUDA+y@
zK0f?mWj`X`^HwT|Ub7*X8t*=aW+BZG<EeMit#An=RT{olOim?HQ(MpqugEB=xU;-=
zAW{00w~G4cXGfNi7gzP$o(mH^wzDCN&iUBNym*;-dK!qgqIe$)?;s5$eBh*^T#xRU
z^uYbCbtaeuVyn?D0b;=oHi{R~mg}Y~vjf(Th%)~M{O2+gc+t)GS+d-)f(nQmb^8AI
zK7gC9;6+E5cO$FeK)76rf6dSK(#GAPm=OM}Zs;+nvk8*{e(_Kc<SxlL;H`=E4`7K%
zk4KeF$f}hZ*}UFRd^+TNfB3%0;0j<9IRqNiw9wuIAD-#5ZpBqZa%QfRa`E7fG-3T6
zwuqmN$NV6_;#?l;y;g%`>T_^=1>p6x$f4UQHekWPyTtPQf<HNl;th-MWi`vv=)J{u
zg-eSVa77m9m-|s=$@Xemv2CyewX@+Yp-x%6<u1?n@xck_nj55=(gAoeksyewa!7GO
zf=|xBJSTI9o4rDtzRAJ~#ZJB2uX^OziGE!0`-?T-4|7qPuqO|kht(HD?a2k%?GLiJ
z7XxII4;l%%4qeq+QFtu<!=HpX5<%{fM%M0gAA{kpg%H==z-6uJ?pmvd$8uPJ=vueb
z$4?9J&ZlJn9ec$K+>)-+mmIv`zcOdY1k$9xB$v5xOS@UW0S2I2<YajV<DJTTI9g8@
zBk}};Nm;aJUY{xLj*-Q}L0xMwOq|5UhTwM+!X!8O#i%uAy1rp4V3nK693#l}QoLs&
zsd})`5r1}V`jYbDFrI~Yp6D$u^8w|N&+IMq(vzGu;hLxqTn2qigCU1l|G=R^Ex)Uc
z{?t9_Soo&DaT;-Ib$l~!WIbMVS5<ZtMTco{<M7z$F|T)}@TX1q&C0e_rShXo=^mDc
zqwO>F)A)-ixDwlB)$ir88`{wICbSAV?jCr4FXlpUBCqtqfvpA)0b7>r_+0Zy<F-vW
z*ajHLlC*mCa5$_#1<O9d7va?)EjWdJhBJmObsA-Kus?8!?IB3_Xv2pNB>KK?-;(+I
zK(_`4ZaYm4l_uE(1jl~3{4n&m)|4^B$cc)5X9`1`CVs(Do|tDK{_{-@<o(o!6ux~Q
zW7d96l84(K3laTS>5XwF1&j#GADy+B66Y?4UX|k#_g|4^IA5;t#A*{(taIW+w`zb9
zC04pKqr0MCgw#{%mC89TKU=lF&IYPYfbxUZ3MoDx^XSwHE6Bs#_=mVNZz<VnBwS^g
z?=cQXfJ*1cB!wEo5ap9a`%pZB1IA}mNk=o^t@A$w{Bk+O#XS|ht0Kpb2bq$!#ji8L
z44L(LVX|!3CHKs~Y(0fz7Px;H@*rS6I3TAU!Eh~=sCc2%ay&p<{l=5jy!A$`Qy}(H
zI`>XSnf(x4mdly#C6@Ockyc$W`(-yOEZY1}`lhT)^QYxQ17x7mp)tnd^zNo_u@e!0
zO;|{)*R3Px)+NOBi29BG=J(GYpK9!NI9?6fa<${}30T&ts&eyVV@~nznJOLM#)v!q
z8%G_6saQrE`uR-zvd`kTX$R`>y)}HAm1|@vS^2Cr^p;rUwm+spRMfda<BMjgDsAB?
z{`mk$G_CP(4?jRrZu)MxQ;{>EnQSD<Pmqp#Ns^NGS;+L>o1Az5U4o-E%Y5_qnHyK4
zT@26V5}?ZFquPo#^2rtI+$l2bpY&~P0WCUnrm}0NPY8)eSlgNPfz)pqhg42A>VNAv
zXRB3K9Mup>tmKCOd*P6}@#@>ZR2^;@d~m^0EkuU<kEiqIrP(ulcQ6}d&^rb${%r92
zPHt$FD<CW4it%AKFZ-H2Im>2Y;A)0+)44oT@P?W1GFUkdxiASb+KAXMfAzP_#F&-%
za*I~)m>-|NfJVfU3-5Qq34ua)sI9gG`$q0p<LcYsy|f+m2RJnwU(<f4di-6P3~g9a
zH+*KEGmwlR2i~9npGHX*?~QV^Obqo1vmdV(%4N`p47gB?dCT!79$0GB$gz1@y2*oO
zIZygjJBXlYZ2B*$9{9AfeMGH__kTteiDwXuyf>2z^mi{;Vg<fogAScpkwDihTs)7E
z{41Q7_<9P_zs}x}+q<piJTZtw|6Y3-?#&bl>@6<Il&=HVqwH#<Um*5BOB&KYl2Sng
z-2gn-&V~K7qTti1@N`7n#yyoGmF__*h}p36sUcgi)5l#?6twntE*ZKccBJMQdPh99
zTe<k8s!Mncfeu_+j)iLqsqEr9wZ<ARIr`}p;i2!x5aQnGOK(XiJvvRT9jV%9f8mB9
z<ZH-|l9l-}^N##N;qI*q@2%qVC&AIY+QOPE$?lyS>C`A(nnaSiSv~#0Pr#B4E-#6x
z98PO$LT6RWcTul%;iDI;{If*JK8=2vCBU}C>o+0auVg~$2-Z%L!-1JU_WPDBK}u__
zH6uRU?uqNM$h$hj38~5LTaA;=353~`OY4Dqm9|^+MVX(txm$Jc5#3J>`encHLuS{V
z{)6bP`SbqW&Hl}MSv)K~g2f7j4+jRvgJ@q}*p-20qr<B@D01T^QL)!!06RN5;fc57
zVkG8^ESIDcrCF$aJv85mbmUohs~n~N&ugm@5Tk?>jkX*!fef?C#NeyaqTm!RmxLLZ
zNdQhDBcg;I{_nO;j1BV^mk$U(J3g9H0|J=^8QV&>{TdaOns0WoTl4}b>$0qZdo;+2
zPvnk9oXUdJRiU)`H`Q)SBlVRwi}h|Rccnt@cUiD-rS)Juj)NxRFi#56I(x#xlV72h
z6t<Ib6u<XolUoWR!98!Fx82=jrR{qUt0?Rt_nLVk#w;cBpR8z=eqS2(XDaD_^S(5+
z^<+pDR9WbV^R{`5vL5%;dmFP*0N(qdty{HxlKtq5%PT9EfMo7?q2Sb){2ZA61*k)b
zV(jtPTTy%0&m@qfwV(W%Yr-RU@7ZAFxX0TL_nSK$!!mHJn{Mfer8$fBk&=L#^{Yva
zI8i9kH<7@FIUc`9o9&OCe&Y0rc22$mlP%0YAQ{7+BZ^D=Ce0nm^2tJ(%F2p?*K0g~
zYs&(!X{GCql|Cn#^|!^;4~{i$PPfvgYl>Poqh+`kIl~X;j=abrw7V0nG>sbM`Ag4`
z+>Juu0=m_yh$Zl9G2HDzKpp2E{p){7H8pm+`!cGOsH4TND?xH?p{ja;cyd1GA#yAS
zVPCa{yN>>T)EZz;*qYam?q!aDbY0{ngrP0ML&9%4VY&n_$d?GP*x&q<IBN^Q*4VI$
z9fctX`>pu8g5Ryb5%lDJUFoo*ah?NLujo#ZKk_?5{Z5JXpUJ2_cpXTpwNTPC;Jr<`
z(TX40DD^t(yxhes$mLGE-|E7LAlP#_fKK6(nK*4yskA_pC*A;4x1QJa$|)n&Fkw6#
zH4fUkXpvVRl$q42DaOBtqjX5X<+${UXL?_|j?CVOZge{ymGDSZTrxCfXFh<cxb&z4
z?r~H04{3}c%1MmrSV*}E=ROkq5Ymva{&&^}dJ|gCE&9C(6a40vy$jt~%J>;;KUx8^
zp}zrI2eP2t^&j7qv}Rsm`_OXboCo=ilvTN4;3Bv8Da=F(M0%E30w^WAgrkVC1sR7%
zm6a9~JoRs{x~6ZhU^a6bEUb2e)afmSEbK;|9ObXs*`JgY!WMkbmKo4ptMBO-gK<_9
z*d`1JQc-f$fPav{4UL%g5?$vfT}@20hE3qXd3w_dt+CZL6-f-f^^T*Uk!Wi5F<xa$
zMOf06$pI)9mTbdkYMi*u2Bp{z1WIHa9hU{G0i9D?e|{g31#aRyy?oi<>}Bk2q(Bh&
z#1Bh#gL(9oW6D_O&w$KvG=&(cFErmA8(#OMF~;H>ILi=D*HUD>qA`5(v=W&l@#vep
zTZ|Anu=k4o(?Z;u`paLz%e4&Ie<G_koX2V&+6sRH&#Sd*AWAh98(wkNI{R<StT7KJ
zuY^3Ukn|X~D+{z0_|}gmddWEaXnaz9)X=+x>}>n>oNp68Fmq|TsR1NS%V4{QkOR<r
z2Xnn%*TWj;58E$<of{AY`1VJ68MelVbM3Mjhk98#kQzO=Qdzwqa<|{bIXT4ed%wMd
zOulWRLI^iucNm>(s0~?jR%Ap#{0!dt9blgc<b<|e>Zs;Prg%NJ(zv!Vng03Jw*Ul+
z>rVzn9fjXh0YQYCP9FKwx20J)ajCj$Cp)_$j)N>m@(U>xn=YiQ1NBgY(hX9xlu=rI
zFR172IT&f{U@~8az80D`>JIHeUw)`!sZR2YDxM8$WcamHFD1%;i~oDm&`ztq?!X{R
zLRpYE2Z~g~INLWR(MI9!nO@|4%<52z@;-KyVrOr*`~&lS(<r}7=vP8ztO2Om*Rh*~
zPt|CW6#PlebD0qz!WbVE)UEOWEo?w;-RHK=);QeDpAy?#KlCbKp0VaG0kk@mXozGY
z3Fr}0S&`FKox7<0R5y2@9J=U{nn9fpT?*6#@TDn1zicbEEc221{?3DTXMWiCY{yWR
zdq;ArMHs)F->j^F?|#3uxi{N|{CQAIb&*ueVJj428YB~0xfd0U;ye@nNCN{UhC^9#
z{4u5ZJ+s?ejoy6zG@c3=-YqK$_2`ocY9M@nV{;Mo9zp{uVB6B<kUuAv2`ZSD>gb`o
zm}u%0@&*^04FxY!k{Il=l#})BMD7q-38Ktb^VQs^feOEpS1X3Hy|jx?#Umq+NWvEH
zRo+moDtJU%pN>kfQQv!>SM$oR=jIJ(X)DP_w&QnkA<F379+_=$Ro4@GY8BH+)Qra~
z{+DLo7U=3bO7YClSTxw!${yf`+bJyTJ@q1PNQ|x<GCl6{Xhn!uh=#{czptV#<0rSw
z=%=8vr^ZLMj6otx<(A@!53Z$-6S>ad6>2F|y{BfUMf>>AZpkj*>Z%NiFCxj=Ze&Xq
z{@uJ}+aemhIBJ~j1JN|U8{y|{$aIL@RNm?}_q)UlYGoUw4J2#1Qb!GlqMmM6K5?7n
zgN9A>6fS-Ae0DxjJYBu+@ui}XYTU!$?kdK&bCYoNBX;bAr5H)OciXeoTQ6;C&X!Hl
z=0j6Lv*RD1>B%Iaa5(R*k1}JhN(6*#c5HuGSRWAeXT==NJ87AFQ=crFB&xDQ)7g~A
zamE=LzP!~dEla5>CG|c3>_wmwgaj+DOCW(PnSYPZmw1bkY>TdW#<wSye}bJ;KD0U|
zXECgmJXlPb#1tBl!N$#^O-8~MK@&$Hks5XtUjERc;M>}<cRBzwgBERJ@>|EXjicd5
zkdd?wfGA5;zJfv3P5ukN5cfdkq$Ge#lngqo14idEZx^3)64f_-Ajo=p=)_ae4}~YZ
z!G=G;@lA$N3U4iTpT0NNWfs@&HO15XF74G3TL#<4RJrv?Jv+W~dOhvIJ^L_No#VPX
zcNE<Yh3}q;izaPPI<6reQ`sj2qCcxB5P=$41nZvDuC_RtQaL}40V=YeW{A)y*OwRa
z#|q_$L%d(bbq^e9h?QMjnSOhA+gdLW6ZhstTB@gfLJ3<)X&784Q_ZMww`oC<oV;SH
zKqTs3C=Q$)Vt1BpDV!d&^|DsP?{8&wHOeU-uPjx})y70hQtMp+JM#P7^l^s}Y?a?u
z-f4Nj#7E*raq4NcS20rqOwc%w@Ug^;^ro7M`)#;Cj)V_Wh6U<^)f6wA<t)2;5ooMG
zQbw$ALP$Tx!mH|V)k^;o9%p5refYYNt`vqDWAqv@wZqB=t_Jb}I*G;7VR@M%nj-aQ
zTn=d*LRqbX>@8#8McKVb(HB~^+i16>rcn+=WIgUzO1)z?fB_?f)`65#*W&qyCTnIJ
z;fKD1?(tUHb!p7p2l|MP4<--uQBFf$X*6h#>|u-!IbbCz3Yh7Qiv|ylR~kU?U3+Hd
zb+Tk1CvN)bohOV_#Zy7%uo=~j<$WK%kpfMgipQ$*cWYd|GyXVe$G_C+HDVMTY3dxo
z>d9nEe}Wl=gmXf)V@tOg(3#tn(k7=@o{#d5LiL|~;-;>263qLCZ_g_MMgG_Rg8;=D
zK$or__cRshMECv{Tu-?l?@Qyh%=7I_A4S2`3l3ej&uN=<oI!?$*b(q1oI6X}xD{}1
z^}ms=+dxhEf&sf+!WN3>N`%|ut-?6U+E{Y8gZnQ}!p6~r_uqCLEgp1k#r@N2D~8;;
z%ElOz1LPSh&s3i5t>`_a{H+&)4_x6WhvMSiCofz%`#D4~w7l9*2ghf_9L4$XzoO?2
zXUTg<r@xK&%8U!TMAp4<Mwt6gxU2W%ZQ1zAM)Ey}rZZY)z_>Pn(cO{(BTe|9#=qhZ
z$tD3{=~hw`L=%vwJ7EcLVzyH6xbciYAsnzlhB6G833BT`l1W@tI}yLqGrMDYIE{oO
zYJZl(+u@qyuVe86Ad}^>+M^fu?<o3wazoybleyf56@uI0SHU#$<EsnBU+c>(E8hyW
z$s70x$-ir`+H|>dmNW2jDv>BmJ^lR(lzu-ahqT6)@Y0J#VUUG3D(H@vfV<x!VB@X(
z<AIzODkLH*4*yrpNV)av0BILtq$pHbjr=fPC_C(`xb`S3>iJQD2KI}`^x7FUyEPx)
zyYZFVVZ-YKvG<v~!2)7;7GxNX{r!o|2Jh(;UoXd$k(Q|&H`g-BHQ_WZbYd|6)7(p{
z5`pPN{jnYU21P8O<N2GUs@|xpYi?xX>gb2D8!2{VENXb|<{XScz=<mc%S>GF3v!dw
zHzE?n6r*49$a1`lH_@cpw}6txnHb63$=lRfz50shNC8cU7YgS%%1FDrW?W)?j%%|c
zJ#Ogb7HP8bZu8N8W~`5tWn|{t#R;JxogI!ZgYuZY6USLgm7Zf6Y~<HKDu7W9AR9PE
zT)Rw&L>wk~zPkdK3d;>^bPN&cbA=W<bRY^)qiw!{&eCErLOtm(l~n9)!c8)bqT~8k
zB59wJ*|Nl<)hS1s-&6Qk<dh3qP;d;V@Vu4s1?7bi@##v`kH$#(>54>RNsn6|0HJEg
z&+6tKa8V%q`ZiuV$<aWbTEB7pV@n_jjp94ni)HwayCs8BO%{=J#t(TSzx4!s_s0Kg
ziO=rxFOhBh8_c3qHvYgHd*_8>!mm#<_78RR#}O7cgew>n6ZiaRbg$B(=I?oixHkG|
zlr#0p7q3iKsB&7F&Sss2#$7{t0iaRlXz29Kv^l&2%szTtH4%O#z!K?U%=MGu9lfS{
z;L8{=bE3f0syjI<vCuHa$j`DbBLps>nJOf{=C1VVKb=s|PZ1bh&Xj$qU5PXwQ!=7)
zfn@S3WKvc6?ryr-j;gN#omB#PC=MB#tV8Hz4I7;}YA9)(?y4wo!l;1_OYt^6$dV4;
zytmM|220ktN}^*J?cv^51Rl%Y2fs##V3?XElfUQR=H$m)2J-h>V<Yy69xU~N**z-J
zMl^}z_`Y%)KLmr>v<RWpIAb>ro3b2J1`uW(xc6<q+G0a5KH!<xAW@AE)aHNu6Rbr(
zVi2skm|ab0_+By@qexkNIG-3MEl?3ed1w<mXXsM0wM}|L$a4njzyFQ2Tp|PXp8j*n
z|60!rd_o1iKK}U)zQKwNZvTCIVPoI7s+EnP9nJV0on;pB#qS;+8}_iv`*&Zx<NbxS
zI;eN0sgS)e;m7x)@N1rmWexR$P%fLlrDU>LmMAA^mU8+@*OHI>jwpduEGY3)*Qu{x
z9$72zGxZ<~R$QTHERjPAVE|d^C7%ac6lEsE9LEbMSnaj-_>S(H_a{}=88+(211<i$
zQp-oFn1|z6eRS<GT+@f?Ut!+oirr9=Bt2Rzif2r(p{#7d7bNc7@C@kHtHBGOXQt>%
zmu99$M*meunKV`>Ct*+t{mA#v`?K}uzc|lUj<>pgz}RXPRl=VJc1)u4*&R@)y?Q?~
z4uUDxUa)ClX(yMmUrB90?+UesSflGfu928J?xeoODmW^-Xu(;Hry>L1=JUW#WmHe}
z`f$p&XSvj!>T?+-eZGZxeaqeYkV>hQZyWd&Hb}JLG2v}+n(7uw@&+|ZKKeVRQC|7U
zr-WMZtHXDkr&qPdZ>>@DIdn1@K{Y}7IR0^dQCl_<TTA|Av~iR^@7S2$*KshQr!Vmj
z-;@(P?q;(b7`jUwIwP33Rknbrznq_cL)?GD=55Jb_*|V>;G3%2jiQ?UUbkNAz6SNK
zT;leOu4}T`8k_cIEE_QWo0J0BNL+>0<H0YZ-`U{+HW-h)BvitND)J-6-l7LD-{X~8
zB6rZHC0tRNHa3M2g4bQ}Vy9nMmh3_QbH@_mr7*%fpkp_Ss65}@YRIqBE6wz_D?F{<
zd#YEN`de(BlN?dsuLd7}d7!32{vYXbLm)A36_NzYWs@J@k;MM`2c{-1@(?}_)$@Xk
zn2^Ggl_C<X0Bl<v;_IyY<U!oUt0J%eshwFVFo^PVbNKyvneH*Acl@-&nFnti+b={&
zU^CyNl>hw=bc^6H_)Zy_&^VP*Yk(|Y^ggp{qb=t!G0K!37dUhl>!gPuXX}3C#(v9~
z#GF3Y88SJ7Y7`?9t_BpMTN)W`P9sL#zKu>|!k=1C>*z!`e<a^_PzR0q3D?eRN+}cW
z1)0Qz0GkjP0VWQr!%p-pM`E@bKSw{V=o~T2B$shxi4>lXFsqk%GfxS^41FCGKVSbe
zr?cG!(>snU@ljmwJ!I=676)*!oad!tAZ2#>{Y26?dm=AfZ^08BL@7vW85fBsG<k-o
zFvHFo79GE>7jIB%z7kg1-yo7asx%3Q(2~FTI0^e3DPA3Lidebsxm}GcUTiP_OCHV7
zRPiOqWR%$4Ql7FkCZZ+w0l^=7F$ud_+|)Ax;%l=NPTuDdbl5|AnfR!ji|o7RS<Kt^
z;jl}FICZtJ(IxZtXZ`fNh1TpVu^X&AxxBxc&h&gu9dRe}EwPk~leS69$G^<Wz%nYB
zIiTgF1n;FEAN({sZ1JLY4Fk{g>%r4G5}LiDNjJG0;SX)PXgiVg`YXR=#J6Id`MeHj
z9HpB+#n&X~=CxF%iYtI)vz2cxSZylbQA)A-)XNo-HXl_*5Ii6P^jtqiIq)bCd!lAP
z!qUhk8wkVJWfIIM;L(V^m!e71mw?8<Gh)kfiFbP3SO18YMOfguwJkp7yV=h`?OZ<5
zMk_(Z9__N?0uD*39n3^e!VN`Zst#DMPQi6(v(|&A@<LMM2MF9Vqr+?6UznoXDrgJi
z4e+FLK0IMVpX4keqx4`bmx?G0l=m^hW_Aan#Y6W&QROBr)x600%1U2M^-rGQoptj6
zVhQOwagwJwo=K3jo@m%1Gq+_GMEtj(qCA55a*tahpO8ab)+eU^mUS51iRl1V*lk$l
z_=8!<SkN4Ie~qL~KF~@)zTw@*9;e7|^Zww?>#9ZE4s&N}4@X(LyuCm4s|WW*t2X1@
z?zyW8F@M@edEJU^re2ClypqBdey#i^sg2{9EVTXe%;4BbWp`D?&*-cGvd6qX>C)cO
zAzC*DnSa>md*CwlXTJJVLe}8l?o1pprULHs<CQ2ZX?%X4c&b*BvnO$RMBJ#r;jSU%
zocK&mv%a+GmBQ2>t&7|}9R^Z&5>RE1w+Kex39Kzvoik21p9c7zjpqIeP}M{IT6)eY
z&`3<sNPy2zhl6`?&X-Yc&9B4<6R<s*{>(hz<Z~sF58zXdC6b+#rZ>I+>wfm>6ieH&
z5Ht26y491<b^3j6Z&Og&2opr{N;>^<X_{=xOuh;I7!m3a;!}6-#%HLC?jZy`S$wi(
z<gN#rHZ?=K1<lZVH=7e83XdA5cx%o*empjdE2k#11h^d#;o*#nDk^<8alNi;sFpXd
z*abFF5#Repy;J_8O62a4oLEO8?wHrDV2fAWEbN?GCc%r2QQn)c&hoX<aYVO@5RlIN
zY&P<w$~1y~>!5kG$%lYM@g&Ha9|s=TbuSWS=A9ck$?Uiz02#zL23@EirTU-o^q?mg
zzAsm)w$ao^*Kp<$UP-KZ)oS-%l(Dvu`Ts~d3%@46J`8UICM7VWJEcpcyOC6pM!G>t
z>DcJ*MoJoy1_9|5q>=6h>COS~^ZUI2!9IJobDnd)_kCTdN0f!}2Lz}F^8&&%F~06<
zPB_%KI4D8Ymt1s+ZU*dv7U^t0D=lo+jF`rjIg+LeGUTbh%0VZLWrNk(&t}d^lUZ0|
zU+5B2d)bcl^A*9yt=ciq9Z(UA<F(34cQwJ9S7`eFMD_Ugj5q@C?0SG_=l*#1xk|qu
zbO7s`1_)lz`r2GR6;jaiW^|~)vl0@!cW_xk)9PNTR#GGymf0YFTON0BPFkJ*<Q5D4
zq+>;z&3j7802ljRBaX3GiH8NM=C@td$`aIKd7t}yi0)btM~vtt2l8`4JzSWqu-Axd
zbA@Ki^@&>O*(Y2-jJD@Hd3WLPZgO>B>Ou?cRoviIlZzVvjM-4wV=B>5j|HQKv)llx
z>gEewZtQB$ZoDi33KUFvuRH(%H;NgJ(hqY^<|RW>3cfhbiJ>aoa4r=EkeyH!`5$Q!
zn-<z;M@9No)PxzFjiu$_^5<tE{aBJujtWOoT&V6Gw+r5r9-RO`xH!r)hN`9hetlAS
zqELJ(WLsYCo)@dQy7}gxZwFUu8|~)VOS%ah`hP^mPV(fYesF?~TD?pVI-?+J;&Q;v
z5I=S{mqolYdj4NSX}tkXisYIylQ~<@uj}>P+qaTo92Y#GB-t~HAp9T-l{1o6zSr&7
z8WgjS)Fq3~RJPP&&-p}9E$ATp*`d?XM$h>DP&9!{7B0~%`X4%Q48Qn$Uu>g!6j)j4
zH~2Wk1#6pO*sidF;Vb3lhi61D=~-9M5$IAYdE>h*RZ?)AoaYbcOf)|{A}}HdzPZYc
zGs6tb#&(v&8(%Z&R;bDh{V65!nqgl&+k8bK+td$oi{abLd-=s5IF3AX001^_dl{}1
zu^`_WVF7iFQvrdQlAJ{3%6I5vMgvwia7Pw&(2cHKDP`}5WxCDxM)`%}ukoS7<D^Uq
zad;Jze7}T?AwB+1B)9THWV}G~T6OEhUFxf?`6oaNu+Pk4RcmJHbt1dV4zO_GB0@QI
zl2l5{Y@r~J^^ds@j5uN<6!#4eBH!IJ1Lpx8MDv<*$qJJ1^`|G!7>7IYY`@J{=1bma
zMO%h3w2|I)JdWIX5ls2+kFO03xyezE9>VL+iftyS0M!jPnENaB`Tgf$37}LQ5Z+j0
zjoCF5-v5U@GP@~%tjxGTbS9qUW|iTBoirM3$CUTG21cUiL6|^1D%F>=;H=2dA+_S?
z4Cm!9Iu7)G7tryXO@<B9xFzID0mZWI$jt^~2@Km!->Jc7Tk=l~J>Cye<;$L}FUj{;
z%Uk*sOQ4kKzH8`C=k%^5UK@6bhHs<$n-t=|e8z$<d3;D5jd~!*bCxNm{Wj7+uy+0|
z$5$^B6I9V6$Z+V3L>?78N&cw}0sBeG9lGO<qRk!;KMi4*jOp&8fn?|~#7We=PODv+
z@i9lgtz9<FHWWSs>HsLN7CZSqe?95YA5o6Qrcv~%_k!g-#kehP9DBBzXxfZX^90@7
zo$xEz(_;)L&JJ|Bb(_C+pQ%o_J)&)VX@eiHhwp08m1|XQ%?mXNA$d>cE{Dit!FHB;
z?nfR$scQ0@dbE$3-_Gn4$K5$Tb4GR02oa}9ke&_}n+=I+n{|$eIO8esagY57+ah&8
zz>?|bQJ)j8$pW2dfA{JFqE94CTqJz~nT?dUFFI$;>D8A0^mA8a(Gt?SU;nw?QU~$0
zdqZV-ZSj&P5Z|!$URSHz+X{s^J-;Iu*>ZHQ1xaJzfD8Cdt@(*{zxS3zHB@^n7#==a
zjqe@s6V<xnbbSUVNW9n<0(U%HR}JM(7M+re&Mb?&UK9FYPZ9I|`BV6>!<C+8h4ygb
zoK^}p>Lv;}`!9U@qrK4CMe{5;6{jpgwqxF1`fTXnHU7_F^%~Ov^5!Cm)O*S_2~F>3
z!uVginNV_Aa+o@?!wGaVbmJl!34zKA45$Pt<mM#F<h1aRG<rcyQ`LH_nl0%zszs_5
z43mW?^GnlP#lM7T)$uqMU1B-(a@{NgkmCy|@QsY6U#dDpJ5KaSd>U-m-Q#71Q#B~c
zwD+QRP8@`8;oo=O5IOx?NuUhn*$gQz+~VRuzNXR2WxI23nv0^(m}GiYMg^Nw`L~ZM
z*$?1Xc)E*gc|zW#tBiP|sVjqPo)wo*vAK^D*8OO@^n#LH_g$zTfS(rzi$f)i2sDy4
zP&5et!B#@%eLEx^B&TAmTb^baJ@)=7SMB;cnq7TArnS)&T#x7@#V3A6{gzuZ7*t#|
z*J~G`T|s|qw`VAED+17)-h#NlB@luPC|H!j#91AaIKQgE#@OJ@cgZpG$6ez<SeLZA
zw-#3K!`ioL6q|Gi@1{+PTr5kt4zLNlb$i{deT;_gbxM1ItFQfiaQDrqIuHtrCp9{t
z0bM-H()Rf){qTX=FwAIeX?ys~6cOE<!1KOTK+C&PL-jjN{}1qnr>2)S@r!_==q@fv
zt5EsIg|I#BR+A3Y!XTLy5A0YtYMm+oGTFtABV_pk=e=@l3Brukim^(obhN<!K@9YB
zKA{{2vh@1Q%uxX87&_$_s+zm(O+_5SeRT*xu9}jUG9D)P1fnPAsD4IwPuxFO6~frU
zrB^gD(7Cc{{=?$7+Uwnf47qw`G`!ED+!vU6IrtD@fG^Pt3LpG$XCeeKCc4rxiYpL;
zn#^1y80A3TkUQd-9t5A+c)k;X7eQ2KZoT}E%a6i1Zz8Q|y}LgNveM=1G5KpL-_E=_
zjYPL5xN6{v={U;xGYuWX8_5jro4+sczm?J=Uiomg)3*5S#lx`0@+jNlD`M!r=*XoJ
zQirjR(~BrP{g`gO?|~$Nu_p(@F#Mw6CdtW^mklrLV@&_80_v7wO8W@LpS5!|Ubenb
zv50UiHlFoSb+f-B(%SE1#8a%lR_T&AxCGGLHoO2mjy1&TDWZXlK;Ho&BhV*CJ^8k)
zv8E41`5agOY4e_zwfK?L>^&p-KvoR4%v>1d@y!aYSbDT96vvN;K7=!qD4Ng|tUQWt
zfM4E?Hq&&B;)sj%Y2bB2B;$8DUNLO-)I;tFqQ`Z?zr1pp`qs~_Ob)VYPw$cBRYu<>
z<<Tg5VJu#5G1UT+Lv4})xxg_Mw8H!!b7PuVH+IhVJg{JtwM|#=c4FGB>U&yi!y7ky
z)&t?WS9><SX7wZzPeRz)?Sq@gsVNqwQ0=Spe|vru5aZO(QFwlvJ}@vH$h0Ol4CJ(b
z8wyyRWG4RbaM}_3x$U!&Ar)}Uni^j71fnSGM4_n@(}-HFg-~@Vf2&IbOfI2)nC)`8
z$-+69T(-hP-O@OfCjFGBBxhp`2Gy3LZK?DH3A|K125qVPe~F(FmGFGLv+Sh$`Fd_X
zc8Jd(!NAdncEQSb3Z|fPf~?jCj*bNUCPV4a!Nw&({ng?UpQKT(YaPDJL5C>glqXV^
zI!Fj7sr^D!G5o-{+($*Ri47(Mi%;IpK4*}J3vR1cJ0<}IEuQ@p!z>4b4{)6o0@Qk>
z?%K@2umN>;_V6@abJS;QyPmpRE)$);(2R8f(RwNjQdLF8Qn~kf(f{tO`XmTJmzJa}
zLzvNM#xYO--;~T=CGf_YZW=xLPZX<q@>j<dE-t(-`AdFcwWgoSeUvM1_V6-^Xq^`H
zcYVgHs4@t_BnAjNDSvdAbaiQ`(%bhk*hr}<#IBQu^?xnusd)Dwy$zUlDLxje>E+w6
z?KghO4nv5JK)DAWukg-}t1YqbQlidG(G2KvH_%kE8Aj(iM4uj|&wL9F!oa;Rc&d`}
zRC}~Ltzpmd<xo|mzl@k;e-wXF>jDoio;U2IWjV&2{5OVYlwh3mwq#D=53s<JE>-)=
zIXp~s#N3`!{X~8W3>C}1-%435*5eU>@Wjr!rV0U?Xr>M*_%;4OI1rmCPrZNjeH+A0
z0PA0mr4z=Ad~6WKZ79CMM`y)7LzQ74H1FX3ebF{1o$Yc~5W0!rXKA?84BaHrJdGsJ
zIo>91z2-n|=~QSBDkcG%-fiSmKfGCvO}%l)R<<%b;wIEDK&p4<oBIgG1xIG#y9Wjz
z{5ahjx1@vE_>|JRE9IAY3IpZ_?}RlQqA<p&0`u0$3W}rxr5LtP{&nnF<<NRVW?M(o
zKq4Z!@Y63BY-t4;fzZuZ8Mxyiq9g(1J=DxuZd?(&(eYJY0e1dTCStD4FR)x8JAR@f
z;k^LuH`}Y|HRS@ejaD0A9U1$f4;{KI1UCco$=4kYaOFowsviocFMwk8p-_~;hnQIj
zYVMB@=X$Wq8F_}!+3@eA$5z_yaIvRJujlBS$n%>ob1s}-Oq-i0w=${P+4ocqhK?z=
z4#wmugee4KO_9Fy@@E*L3f21=C8N8sV|x8)2=Q`$;2np6Nj(lX7FQ{EJW)7mA}WyM
zS=_k`EQE`&#)u!s_k0^Y{^^5WLJdcni5^m#nc;~W-+P?d<}?<zo)ZRS)d^KJU>zNN
z5kWxS4*;tF3W>!Bxw%PJE}qU~0mK?;m*7>qux{cjxd^=dL<#)XBkEA<<bJJ@UPU3C
zHg9OrvaguZvInZdJGSIPUAB+Wj~!mg`dt}fS2+U7j-cPmrfWm#eEYc6`^23iGN`xt
zVipPdXnJ1rcd7TYm!l5rOYe)f>^*T49lX$GCYF<@{rKcLAR!o~zaI*z-q;KS{BSuB
zGBkwlD4-LU0l%?v1@J?fAZs!`;Ijq=)yeP9W0G3VZR!XWkF6^8X*=Bn4>Erax48eI
zIyxA4Aw!aLg^LWV-eWhvgAiuh?`M!KkGznANDiTcgdDTzdx*TixwrwiK}!rl6z5Ga
zpAx<61|_>HvSU*&%N-;cM%fN}`jGrFl0_P6iJ9RhfdxyaLh$@jm!>1VWH#A{XC&aG
zfhu{}axI}3{ex>a9X+VrjT4A&9w<9C7CqT(qwdy?)BHSh;3`PZ3SD+HOsDZP#B%$Q
zBK@mlugNfB$3@Adwe1hhC*z6N%_X^)Is8U1^vJdj@6)z|hT}=yYGl;!L^56VHLg#M
z^)21()&!_#e}z|#^rYlaoPTz$>FzZeKvDU!#GZ3HfadlD94m-9``MSGc|Pa#0@SSd
zv`%LqXcB1v#!E6~S<0F7nSCN9MVuTopO`l+pM<*uWJgz(`?Q&B23>zy*w0Hb6ll>1
zVTHB66KCqOpUsmG8ZGYt@a;|u8Sd{Gw+5kQm$*h|l1Q}7-ZWT<|Hj*eH*}z(iVU&s
z1#=^AA<MV3w4T9QZLT?W_*Qg3jZ@q>?7p-su#=&eY&!N`sYXt^DX1qtAauA({iEOR
zDw^UjL0QL?`fUHKirZ~@9HL$fr@H8iLr>X?OqE8|Pj{aEJ;4!|4MzT+1B*Lj{!-w*
z|4?3eL(7$d4&r=0InlAkuxySd=?#-SNu&Ne?aMLiyNgR{Qd#Q!dwM5G@ST2rW&!Vj
zvnmRGib_E0JU{G*ONO!DEat6+_g0(H(kb+%RU3WzgG`uesc1+Ng&M$zq<)1PK*Uf2
zVpcGBi$*|lrO_lOkeEHi{VBCP6ARpe^*HeYlwBnY8Qd;MSRQAp@m}kY^7m~&)z-y_
zzaqyw11Nz7U9BWb7DA&)dYabk6Spk0W$n~ty{}zOK2!1V0!VMlnLmEvnjON6u+gPr
z1KH!}{#TYkV**Ksw>8m^w|it_;3RR3K2JC!OA<i~Oi}9!)0|oV9<XAf@DMp0${LRl
zf6d*M^4J-nJv1{^tyOz`&2-6P2A<-mnrZ1?z0Y)YtgV0{PQSW6%G3&kjicFp)!U5o
zo@jCWk!1HWx9Mk_k~c(f_;^mHBWg00TUQUs(=HLTc{@CxaU7LKp@tm=vbJLa<<)*i
z<ueQ@1lXEJ<=tG>EPNyhQz18#mOV=!Vt68PR#TN%q=U6XU-K(cZnDU$o-j=3EkP)U
z@8adG4*|i|qXN-IlpdKN<|6A9oc>BtxypD2irwtZzpgbhX75+jtcxzExFUO{50*?L
z=%8Tb=0#D7^-t$l>~vxW_@X2ybGXKPt3X5OJ<-FN{J+~O*S|bYhu9axUjrW5ifJ9D
zrbud$JIu4KXx{I_$;!3lNPm)`8Gj5@E){rP^NRmB0o3*iRWm?Ze1<M(22H2MJJVIe
z?6yHcVI5b#YTR4pF+uA!@2Rp~{f%b1VD`a%<5+SX679NmGJ=Klsbh91Fs%6-nVG}3
zw0JT}b;%{kdly0HRlE*vTKKl!2^Of&z^R|H^&OhDj~64<N}HCyjB30zIxO-2H>Y*i
zNxOLDy%FygSIim{yzBQV6%Rltd^6;2?L)H7c#d-$I2wwp)xqZa{vWkG$MSF5#VTho
z{?V!^-0koyi=Wa>?+}*p1V|rj+?O|8_c|-@B?F-O*zL5Ue)ozLM)wE0^=4nfJqibW
z!9o^FRrtbL?jNwvi4uyr6w$d{YAPC@^0Ir_lU}WreE7w;PI77O5T})T^K7YCtH0i*
zV~qS)%pD#V^JcEDo8sfpM4@}|BjXn$R=XVvYVh(4JkU?SSC4&+L*&3c`v~^%y6?~f
zm)}cdtdeu>)B>VfpfzGwqO~&e2D`QXIZ7c~deT(TZWCv?I<pBX;!Rx-NhFEQ11}DO
zhZv*ulOjP+ffhY$KEzqz9xsJ%M-CK~;f~tgxNq^XrXs}^_hZjz%%5+3u<!5yN_=9P
z@7GO}6SR$d-dOdh9Z#Ck@FkW@I#3$>RosV13x({SMv+RX3tL{44%8f1Kxrt$FAs8R
zq@e)~#Yrgu&j$btiN50%c8SP6B32zE1*b;l?t2~+82oh0I8g8HNGRhm9{3Pt;KSjk
zfz)nUyuiGwKOiKgO~*<W;3=%b=+Zo~NGfkLbBPSN6k2&ZB0P@A0qimj)d&9wrlo!)
z>YV(N>#$D-fZS8;c6xS~vxd1NKCZ-0%4;UrPfKiRRaK-i+YNaus)S+Yb}s&Ss<w>y
zAE}<=0%W)uo@iNKrX_H|BS1%q$n+2)+I%od@JYUd!vtCyzQ!J4imP1zrad$%;S~;~
zKB4aSBH;giFg7>bQGg3fQvLMV${SBLmEw=bb_uKtq4XsLu($ql3&iv$z3jBEiGPjc
z5OLy(NFA7DLUp)J8d;hR;yG}p#Iv==%S}S-G|cd41W=yHbd*X15zTW!Y#(EOuPrrM
z*-mU(_UxceceT#h=AG3xG4dYV7+Xe__7Vqve{CNYyL}&i=om9tU6D*;BM!eCqje~8
z<X36+0mqzvRZVrA4A!#kb>MK>51#;+(*_xrm5>?4Q|mpAJaS70d*+89uzx#tt$zIq
zi+3X#Ck@5RaYY|!NC-3Fk}S!E(A29HYt6GqW_or$6eJO4(RS2Cs#NxN{Lt&+DCw<A
z3cR`e=<OtF5Ip?M72{S4^+g-JSE2pX)C#>kivl9ap#uoD`1!=?k6R0Vt@CN!Jf8^g
z{`TmKZRC=SgTlQ*9lm@4K?R&Y{2YGx?ZLEgV1>mZ1WoK6(-*8%rtOQUNJ?Bm`}wXg
zxudy5Q5z#@P*Cn8(Zh^*$=BGJXuU39v)l{y>pTgx%w2p_?9z+IIjO83CYx(BgWM%f
zfs4L7YJTxi&2r_+uhhAr3`Rf8azl3`87<8S!VtWu)2FZ-a5H{?B@)(bf(y)BVLS0~
zd#ynGGH$^#Xkaayg*O3A;1EU!Xh%N)y0_94p>6du0bL@Yt5E~2C}b=k6QON@Xpe9x
z1SHLsBx%1xM%6uvttsr294OF^P4*NiR=Iv*h#Z?Qr3JBjyyvP)xc(<y)6lAg2-4K1
z_i2ig9{+MNNFLZGmybs8Y=IF7L4kB|qHZ2PrrKq}61&5}Xox;XkCSJg|M2x$1!3JP
zY{NDP-GUX^C}z(S8_kI-2JR`9R`g@Lg*C@|pw<Essd_KUZ0xn_N51)IO!H?Ys@iQa
ze6m`a*13B={L<*_$_x9C-HAc(BB4?OH5In_M(ZpIPoKRJUoo#tXBQjrzIvfnWBH;d
z5-}1VnK+T2U+sH6PRy&QY#6{3;@&WC;E{1x2Bd@ooqJxkqIwcAO&-m=3fvKU7;Glu
zB#9M!a6VF~K`ijPhj<r9uia;zl_9M^0H!Arj*9Rsg`7l*_^A2(J>cDF`f2HTx_652
zW~Mj(WP0+xf>(m{U9Ser_38D+A9Wmj5cUndzs?zP0_}hQ50|Q$KI|2eG-EaTF=o)v
zSr=5)GToV{cyK0Wiaj=-u@<kvo-73UiFM+SLtnE8bv+$w%<BW<R32T_(q0x&3<geJ
z+vX2_vdHYVjz0$1z0`uK`b?oZsJG|>6oTs%@T`3<L56<cbs+=aa~Trx<9FCuaC9Cl
za#+eznA6-|LaT1*7s@AwqL@O^*oU@HhQdavLrh;v###I_!MR&Nn!OWF08%-(tKg&E
z>(h&Bt|xp0_XVSIO)AQCe})Q2?T|k$+6VuIeXAeCLby#2bg!Yj6gITodMinP^(L~?
zcvL>>*S;-qu+tASC4&;GNggBLHP(E|j0>lI4*V&A{BAi4EkN_GVz=MVzAv(H?5MHf
zg7o$KzWn`P!MD+Ln1m3Vx)n2d69dCV63A$c_T6mFe6t?y7S=$NVNOTDC+jEkqNNzJ
zxp>|#{AQLK?ag#m&ldr%vOWa4HgPU0pic2-E>AH??9FEsG>tPnPKL40i6C5%`KO<d
zr{B=hT3!(b5_8H=3@>nRPG7^4eeu@*g~Ad)+Vv#`Tc@4I(v&(y=-RUqWQ;zMn7Rn^
z7^ldw-~!NPSX|up-&KjMN2Y-2F^hB!J09A7Za<%evYWSyd0MOPR1Ol;0hy&5LDOn^
zG?E#<%vxUFxc$p!>Ym2jGqfK}V_OnF3oM5eEEHudf|_1lvZvnjDL>Ae0L)CamsRX}
zK%YtY_m|^yih*|RaC>EyTU1=Mpq;O;N23mRHHGE1UCkXOXHj^a=Dx=_nr>M$R5as+
zmu;`^;4Xy~pMJ-|a{6P;yJMAjD`r%~x%K0oY%qsUHSxnH1N`#YJ_%&{*wXS%?TENA
zy990oS1a4utDVC7v{s~cSeq4op7sNQ^I$FP@|r?+xdrXCp(Un3?pd&80b064Uq<px
zlTT%4<Zua~Q)2)X-#gD!(?9WXIDM}}YWV)Dv_YWpoU?NKnNZ3<oa!ctW0{cO$>u`~
z*>Fq$`eeG&l$+t{VKsrOj=%EUzYVxw2{@`2d3>SLJfMTn6J59w?t3~E#@6M>3RJF?
ze#(2ZtNVJs{YU~MheHVqSU_><K`K}hqNC`wtA?Ne8A!_vy5QI5&Lrybc4O>2f++dX
zb!ULsM8QdTI#%nHhaCAwQh%qnc#Fh@g?Xzs54+3y^vOPIPtTNvmXZtY|J<%rYN2$<
z(4QY;=JN?uM6i|~4Hovc8->AB!v<VK|C~g+3Yg5U6wz-Vv7obMMl7Qxjyqnm2bCi!
z^NxOD@id5r-P~51%=%RJR&uD0@DQ6%(}r|fN+X504?;lFP)v~8p!t;q&hRWLIO@5v
zG)={`xHQf1P0!<Xz%&>WD1GO;PMaB5A@#T?_<B%32bC!`%LkIXB+a?)Kj%Hav@fx`
zPJa2mH`T1y&My9>p)|~Zg=;&*CPY>iG&@~D2u=|NMphh(dnyAz`UL_IJ1h`IBxNun
z{5iLDho3`kSg1dc#ClqOvwPoRZs5FvYVcAzm-rm>M`qZ!$l|rTfT!-FR(-ivZN*?i
z7R_JkV-Xq9ZHUu!`S3J7B<l~O@kUIkuWhgTRrsh=+Uc7X|0a>gkWEHydgohg2ErjJ
zk4^%EYyr$v!q~~RzTF8syyiQuFy#GVnBEP@l(+>kd)v&19{0~8pO+j>oOekD73_^-
zKx4cs$wS1GLzgR$*1=tLuWF|L{G5-(ncG}SD8cWE;b)6UK-hC8z6eEZKnA$^_{Pa)
zZh!?O$T}khIx*3|k?5wr+-`gLr10U}(`FmF)7Hvwnig~6yCjt{PE)!@VxSD1$WlfB
zpCy1K4>u_qzZo4IeZ|Es<sWrr#R&?KM&x{ZYa9zUdq#K0M4RXI>aKz+IGZgr{S{{x
z!jEyoTm%CJtC)r#{xShzL+0>vbk#n0jQH?F+E>|C1UTqDS7jq&f&T&t{Fv$$6sz;!
zT+yoFcw*!tFgZ(j>WpKo<taE}r8GT==f(G(i6UMTf<0I)@H(P;v8(qXGUvj$?s!eL
zRwCFO^`rasbL2L=TEm9$&(uTf9`#>y($JoR@N2HT>2f~@xZL<if${i_WF`5nEW<#G
z<ztL~zy?h-QgwStlIe=quGge}F0xxd_Y&Xk)3gaalz<Ia_t~ASVADa;Kj52FzmYKG
z>QCW1prYt~AdIE;+;Sypw0(6)5CLK)jisUkkqBCzL+}{z^LYPT+E&kTkG_2qtc4){
z@(GC`{-TtlucqXfaDmW3QfJ5QUhKeZj=snP^RArin=@n$psEt0(U0r*Nal3C31d%-
zF7Ym+y><NT^m~Kt)NenO4u$oLXr<hDpFkYmx5B(ny{oChB-Cce1FKHr0b%6F&d_BR
zGfJ-A-jQr~0GT6FR8eKAe&ROw)06foipf-IMOcb)?^JEU&|Vx#u+4tY(Z|tBg`sRo
zYuamms(RXxFktyoX@L0xpW3XotM^A*kCLy5J7$H!<qK>b9$b@a0-A#>CcJ9v1~<M1
zIZOOkLc9p`7n4}I@w-yHk~)W@=e!lyxoo+3f0LhTRA!#yCRrH@KOeLk$oix6vs8Yw
zaa`+k_b1!ub)66-O#L=frGOA8I)Fb>Fr@|?fGF&;B-rnl@jIv2&E8ef=*g7{tkc*!
zZ}f@8H6D;*_h-dWNt5^<<%CghJ(p^q7!PZ4jCh&aRAc_V#4RBXgX9bPb74%Lgl4&u
z%h={)owRJq`}FK4voA%GD*seuD>9?{z5C4eei_l-&ox&mo13+I;Ji@gDf13ggeX%)
zfo6i7)=fE7FZhIvBj5QZ`t4kPprqI1fH|-5>ieIhdQ(qv#0HwcTV1bKAB-~@+=gaq
zRyaJ!vG1=v;i<k9SMN?z%#Qx<(24vOwG)R!-D)`cVBVa+?HDLW(`vWf@1J}hIqwg)
zw9iItDM`LhALJb?eg(SV?aOf?jm<^0Zd2^4ulwYFr>PnIjnS_<Iw2$I;}W6R8I^iU
zehT$hc95E-+{ber<PFPy^8fd!z9Y>WO$YfNAJ=Q)A3Wq4qk-b;MN^r0AeN_nCJ=7>
zI_#}qXt=RE-D+(<RAzgI*7nE*Tg^n81_n7NkK=A9GWm>aqS)uK_|^w>e7;nCJm$Fj
z;SwA5bwGT}XV!%`%pmcsdd26T*q#$XiC2AyLwOudM|lcXna*A*DZkZwLZOPA-uN}%
zXs!!^CaV$kiofuc9scSHf%L4O^g;$R=FnK~(oECtTU~~}2X-q}^hNc~m|gP9y+1w1
zuPlXOmJqYjM3YpEp*`b(!M^;o%t4Nt%eWAShm|WbGJj5FgezO`<-9&RAu?P&o`QFX
zSeZzS!I(;2uQV~v>HCG3SHEqPnyKB;;uiCQSBt%%?ypL5c_q?zeL4Tw$w}sOVBcqY
zCL&i~zbi^y=1>g{jXCI`ZZJ2!d2e&bm5xZu(_LpWP+GhYhh<bLjm){qL4roTdM@6k
zd(fZq%w3IsjqopnhgTKqhBdNLk2i?M%-$Z`f%J@_2!(a3foJ^^X+MTsf9esQc|K5f
z&QOXIk{npM@FvkaRMcJ7>cjjr$~i%=+3&eunzu)kQ)l$UFG+=ypB2F>lQRMy-B=e`
zI6ybzi5KL)XA%1hhA~U&B};j@{Km8EWiWkiEU|Ni4NOaDi=(L5X7pI~+T(5F1*02e
zH4^uuzT{5^_)%?HN<i*Tf;q#F?7-cHBGZXKMynMwN+(5QVDI?vn`o8xmP3^-2bbcn
zwPy0`rIvk^Cw|da73A&wP$%=NmX%F2W5bNHu9pUM8yh=A?S!@)?p4AsNvK`LNo*I_
zy4O-h#}}Uaxn14P(UP4n4yWu~H2rZ_j-=olq=aA!$e%B)m<53nrK>|jyZrYRCY5xl
zdw+?MpYA8Lo6Zhv;Cb(R^l*I*NNf3rzVT{Zdbbl?T0|V7%RHQCdZ>pa07;3VT7qA}
zKuw?Ve(vp{8}Z}5b1#>_DA$M8o>2Y`C`Pa1@WTXWvGxn?8txm)fqOxL&{n&Q#*iGl
zbMYCWP9YyrW)QTPdJ2i{{4Y6d^o-UeTXe>AiX`zA=hd+Y`=iPBg8+K(+vBqR`Y~Kz
zYg@Y$<mqHRR}g4SdhCY^dz9rt*%B9;cCdtaQn`jJ9cHm@R~nm=0{ua!&2IYFDDdqI
zZf3^-&v44NDr38q1o2oF$Sj*=Ro9U|H`=&erJPSE-+LkTzo*MTey6OL-pzCt7N_3?
z*FvKvis2Xs1*bH#AC(<i77}8?FSOB&XXv=|R`X5z+diiqzwqK+DSY7H9q(UpX1}q&
zxIb^5V$49B|1MxBbmAzW;BVFMd+&MQOun_Da(JM=ZUz^kozc^uqwh%ZOH8sVR3qKC
z&2y~tLEJB|1X1ri;v{Mz3FuP|f;W@3>6>=RusO5QET11Xc@_NJz9)*cA^!14xO@9W
zbvk==yDpe}3YU!tx~(oVySERk7Da=(bIDAu@Y8y&v4zpz7Vx2iHOT`;UrAXXTA`z2
zp<sf9rd0xl=vM&<mI5Ju?I0|<hB`blgL}7#)#et3ew(uQ$L&)G79j#zxn4c;`yc#E
zDbed&W{iN$1A?C#fb3Pkn>7m7Vi2nF+dBPaBN5mAav!$MoE%41NZPZCzSy7}Z-Q9)
z*cS7iA29rW%0tu+VhRQyhfiFRKw1Fv@VO2zhL{r5`ZGEl?{J!^<|jP{0>kJuZ%bpP
zWyiRh2Q|?tBviZucBr{t$Nkb@6aHeyOa-w;uB<|o63Y%La6k`V0Che);w4mK8sl`5
ze&mzzU{95?xGQWuHvhf*V0Kw^cyKHTE#h0oL5i-JJ#sFuKSVF~6ISv${=^<US?T6*
zT<sNR3HEBrpJJMluAh9yH^E%ef%QHEYni>{=H4%~L{r-a_wCS`O_+}GJK}WA!K?yh
z4ZCaKe}XcPjQL;e0>aXxCk7Qd4MDV5Y*?t-=()z+t4@eajZWhZ!2o}u8DI#Q1N*sY
z8T8aT8;1Dd8#b_P@iSeabq)OUF1R2d+(_1cSjXxFCWD5PgQuye^VT20)0>@qDknLa
z!NgW~?7H!!Ha!i&JiN1_Hm<#4Sc;%a+IWoqL<ic<C#d-5^Ar=9wax=7KQoF<@>g#L
z%G1_K((w`bZKY&WXA>*Uc37sws`ApOe0l>$8BE{(4pD;$m6f@3ARTTiLO!t06bX#>
zhA=TI+*K6_Eu8Aw6#rZO#`tyH8?vc~{3&{;-tRml41``^MpR^%_y{rJUt`)+mSTpJ
zN7uz{WNNf?^^oOKndP-wr7IqI*i9=x?W57T@BQ|j9E}&ihhZtJzO=6%+Lo{X5nPF2
zUO0*oSuVDr+`jP1A(UzuZ2v7I?w%mgkP#O=;~^zpG<Mued9^%=s1>8)fRn*J1Yf*S
z-llowh;x@b(&w%nBQHU_b&^LK#+ns=l2E$GmRd;`l6^ZM+^RmXqHnkuwg2_Yq|%=K
z1M$#F$8;MLNVM7*HSl4P`IuLOhvt|SyZ@Fth(lR!ld>@E*DX&EyAO=#e1#7}Bcu2+
z5w+UY@f@vROL0*BkpS{5H?G?XEm&&^s0@&X!fJC#Pi=r0Q#U7aFXrPcJx(79{)EJf
zr<3TdJKW2&oIAD^i4ipHt$TNhgCt^*tXZO^6@TzrqOI0%Tm5%Tf1XM{fCMVq(W)b@
zlzPP}AEs40llNcdxi33mvlG3KBj!)zrfBo1D)+mBRPE=`A$IDCC4-EQTg;u%2BfZ)
z_8kvpOOXnB4Rw(G>5;D0gfiDV<1R|xlf;RyRcF!9PNesr&C*M+mW*LFpHJbwarr@j
z>>)(WzCNP=mxwI)cw5V0X%d^<FC1u4cTd}}$~AIKh%I#Kd;*VA2iCkV-1ns3Lc3{V
zJmsncxc1mpc@C2uZ30zTx5r`uPoCU_&eub-Kkyt6e%Z+)qZMK^$HN*Oi$<WP6D3ql
z>-2IP1xO~d)n9KiW`Eb+0jAUG_G#k7y{G}8F^QE+hbZ^+<0O4h3c(2Z`j9(1c6>(|
zBmV?!9Y&7|vdg~2c@Ewr<B^8aU#9)CSWCtq-7;6&o!;gri2tq_p00mv4j_Sn0=Kno
zIYHZ2B-vWwbLT5PzN0)CNq_`ApIKjDNN941!1SUW)BSFh=lj!St%g46WX;=TesOCe
z`;iDdl}@1LsZY4v3sx~aWs~K~3HA^E>l9pvyeIhl$Z2HH1ZwN2IZZry18iKP(>A#-
zpW-s9<G45;rAu#``s2|3v(et0q(;EG-Ge?%_?~aIEwTVcl;}>jN@?VZmDxo?&PE^Q
z^=hY#I_B`CZSPn~IjSX*`N9X0;$DeBy*dV2SC!FEt>uqZ;&#`8F!QI)GYo;pd!$If
zY5Yp%MzHa0`_jVfip6)M@_@_P#a*c!rUi?G=r#D|#6)GU14UooLoB_;`C(cWk{G~3
zK3ikkY90OR|9Ez^pVpGps>)J6(Diye=_ca9t|KQ&<gfB)zIO|U)GA0fuTm)LyqzD+
z`0+U*4g<U$9q%2@^(CRizW!^7uQGJ-l>4;26y4}lgdXAmCwWH)G2PZcoeTq6OR@jH
zZL&nfT-R<<vxEMxs8L0&%LT*cE)|s=rO%!p(^_0E%wHN!?Ftp$F$WjgJne%F?INMj
zGBz(i@9*<KdoAq`f-tDutG?z0GjyrkptWrCK@|w;3d{b;Ec)}LAS6?tfUC8QvxF-g
zGf2bne2<PL%-Gny{Mk#wSEQIsbnNP^`-`OLqp<h7zR&Sfj6zEX{lXV=45O{S8vUlC
zr5<6dB#7Ne<7F8@hiDN&qBY`Wu!O(o`WiZ$T@g60m7m$rHc8Gj97=IdG<>%EYvkio
zUazUQ0C{xq6Y!(12sPUHbW3@7y*d4uo?)6=X?vo*?srmqvaFkv`>mdok1p4Co^0#7
zN^|rk((6`$WW<Vf13Jf*y7NGFW!gRdJN|LfG-~vT54t2q`H-rvV1CL+cVf9aEArwd
zXh(JOAl^VH!kE=2p)qUO>aQwW^<N40f6u016f-m4mwvRD6S6Q&nITskv`wSJ^CwNb
z{v8!{#0(bA^;d*+AK{6PPZUep=OTLhtx>$T*OV~#6q>#59Xzq8uv9+0Fy&&9aSz=1
zU<K2EBy4z1r>AI&Mz~O^0V93rWCo!l)f2!kTQp-ftNM(G?b4!!{=kT_&6-4x;;;JI
z;_0%*(RpUJMExPqUMY|^rR>5CGv+D%=UTDyu{ge6H<m-{BI_?+wuGwDmAGA#LDhAQ
z$QPM7<Zz~gB~=0X+b%AK(-#ANw7JPb1K;A#yNdJNVfx;@adGhHdB@oyvm!;NmYq-Q
z+r-+Y`rV&zK+oiGJ}^u1_>2`4eZ#|pTP#VZ*b&Vt1vPiYq}1IeTH}q6F&x-<P9(IW
zp@AgK!qWw_ubkUs;n0-^TSvQ{r59KCQw=BgwP=Jl8dC=t_o1gb@n+r;GHeWfP{a3X
z&cBx5-KOFU!sMnGK2aO*uQ8qMT&6d=Egi?V+zHE8ruj?V^71$h+h2U-MG=c+VrfdO
z)BQQbZ8HFPfj^ZGx*q=0hI5Od9{z-Q=de5toOxU5vx~p`ukI#Ez2*cOFydiTM4kPH
znjm5IB8??@@z|(;>xTmQ(_j<T+F*?)s_fz!B#-#uy5^b7qXfz$2{G_0RV-!TRgUjx
z>ISS~*N63K7f@LXa3HTO&t1q&e8W^|{^UQUGwiFad$JQ%-XDz1OMQ)?xs%^44#jPt
z6INV@05*CpwU*^BMdK#_<bJ!^=zXQfpjkp*K3vK61Pq|rXjkQu^PNNX>um28WVVCj
zuM6)+$4~N9@eOqx4PiM&V`$gR$KY9f7>cxXAn|C=R3TilZ>0I;!?~TuGjCb+$uLKk
z_uuNQ7iN?Dm5OvPYyv0Qir(`W+K<h5nahZBg$9LzVq66T>X`*+KC%_j)I#WV6u(S8
zrsuA<ce!)y+WoN_+JWS3X?0-M>9T5V9~#@r30X-vt|fZ!1>FH%AI_yOvVI8{P0XX`
z9^_>!aL^M|frQQNXndmwKb>sQ<sZsQWvOe!-d$w4FuWb!DR?nN`fW=t@6i5T6{s^3
zG=vKo5VW>C3!c4w&=3PN>tB(0m_29{;a<xkZjx^%L71R+ytJ23oM=G<ERx{yhPPz2
zXCimupj{)uE+671_tm|p&RoKCJik$V*~LfnJV!rDp1IJWID{pL;h%RcssVO~1e!i_
zF#(C;9TTQpCSw|cEA#Y=9By#N>1GomLAEmNRaeJHnow*uudT8CksfEr#zEcU9&!Of
zFECsS`51$}oC`A6Ev-I^zqkErS8X(p7t7xk^iH{=Gq>=?mrj~|qzHbXj5~-8uJMl?
zZ0y?^*GKYEBG3IFb8t9n!$#*z%*^Xc16~}7e)T>^&-b^fD)Qz7?6N<yBht2bxqY_y
zNIYkz(wf!<8rRn3m_6=kk@<(dA3w$nga~p(FU?w}2*1lWcJ!wdKH;1CuE>49*_-}v
zl;{GU1%m&WGxXp1q-Aj8zCT3XX1y#jd*prE{0H3bT~@TmSI&x}l^0cHxfyg@HaAf$
z`W@e?;t_n?q&$BYd$1Dom0CYQsO*WD{wT8$>x`j1Gq7>0mQRjLPAA8^5c~M+OAa_o
zJ92!tSy=aHK6h>pD!|<q8Vs}xa3a_FI8k?``8teR=O!2t3Irs80yfEe?e<&{^G|6>
zBt4uAx;YFppkLWyJ>+=R1a2868sUZ@@)FkHlha`{o6oP=@mNnC!`d#0WRVYsvP)+K
zc|<M6(g@EzzGQBU5ex(z^XColMiIoNk7Y=nq8k~{qQHGyq+PYe5q3<fT~x{6z?~f`
z^U+07o8Rjra{h)>{l9T)Z7{w5QH@Vy6w@~g#?{LrGNnK*8-JcdE5ai$7V7E-RcV7|
z72n(cp4T-<|D*8F(FntbjwqA`w1Ns9Gh?E}S3!=cbXV?-#4$1jJ}+x@P#FU;3JK@o
zTY|EiDpCfW>=*4;qNc%B2`=!co8%cfzqzTjMgZXRH&VH3Zxz}Syd>>bAkv3ZHLTC*
z_h<29tHgFg6h$U!p7PCZ9xCMTkQTnytLcorb6}X^x4~&A#Rh3v6YLYI(hlqyJsvsr
zl7GkhGT_s_@ErcKQ7H!!SC&ZZ?+NDg;c~#OI(sLd9K0h=#L^^9v@*z|7S`aB(pEW6
zR{`aq4)tf-Y}x@v#uW#ZMEJv`|5dSkgM3IAy4PB>?cUrl0JH5%V#z^)szw4d#7Cb$
zT^E=n@G5SO8=PDkJW~N#&b<7fQxFD_VwQaf8h}H$4THf=Gyf(fMA-50@cUNSKdAHz
zE%R0x^Fz0gkTte#+VyP43_)hwakj9L<xoI!H%zxX4Y}D-%vdSVPZ0M8dDw?S68^>-
z|1mP^9S-&`w6O+MpCCmf2f(_yKuoUP3aFFt4E|+WO}<||oFoFh=D?^OOjx(Ji43?m
zWq(a%oTz)cZ@ggQ!~AM>^eZtPa=IFQH2>FeCJjZ~Y%XZb8O~KkK3Yxp)5a(;JYXkK
zBEJl_9ZLuyD<?@};}}_tM<=Gmt920W`j0X4{au)j02WF_QNDV`hdZH(jG-J_h$&H*
zixrLS?H7h6e!|ZwPms?799???GbVP2e?3(Hos?YRIURgu7|0B=?4)~voSxN-wZx$;
z`3!$_!@m9NG0RTKXth#z_F&rEU%*1KyZXm#=$E_fV+cJNZfB|ILGXsrwfzR$>=zFv
z2TvD_#~NBJ?VSg*{NpxEnd6M`o~>GLK?Ow#I1aQtJHW3jnBenE<G8v^`e_v@kJ7ry
zVD@gTmo#nGWTvtm|L`Z+yWjU+Ma^7FaB`_kPq#z&!#!$I?Lr)}!S35ALA1B4<^HE&
z-k{trAQu()5qWm64Dc3lHLS5Q(9q;0sjO(j0IcEX{(&&e^ZOey>>niPWJRlELFi#s
zgm65VQ*0PQL1jJn_CC-H0w5y<;|@OU=WI%t`>T)gt~`Z#Qm<b(w1&)FrF}EIqT)SC
znyjpoJ{qHJGwa0rdv1CC;im@R9J*b2^~!=?Lhw>4a;$)0N?2K~Ve+d|L{>~_A->nU
zc|%?-crbHm(xLM4*l=zE%?Wx})N_656ECQ+8w#7J4mxR4ltNmr#P4)0`MtBMA3gU;
zF*01Yt*w{^n%_GuU2=T*zdPZZqP}a|fHeWK5lkyA|Bu1DnxDU9?5%ETo2V?0I$!>3
zUlqW$GTmy%U4KLY;<zjN(wPduvgvTd_%Swzy=-|Um3WT2H#i{L+_xnJBuo#d5>QrN
z`4O@GqUQPyqixEBMNI+9!~|SD>`Cr+n%p+Kb6sF&oom6NyWZ|807FPZ;jCu=OZZZW
zrUop9z93tKFkU)loGyhfvdB8)sBNMq)_@J@n<LxM^2h0|f-1Jgi>>SMMT+;Gk?ls0
z1hh+~yIeUNb*jU+Z@F<$B2n$b*&tiCVRILE%<<k9>eSp)UO}`QW{SE;0{(e!Bw+yo
z99};UT6OU6;+7NHO-Dx<U;s}4k{$+HZl5VOkGL850LuV8N{<|metv35?j6=FR+8!)
z$FN@yQnD+^nty1DRt_Km?2}Q+ng%gImSqoeU>aSCR>-!V{4kN(D-G`0@?|cYTGGU*
z@>VYNH!yL`oPim?DSohX{xe6c46-IJAV`Zq(10aRelZJig1em9-9*Ga%-KTNzxpfM
zWL2}JE&1I^?<+eRYr+*!8_+4#RMRk5>}WA{SZebu?GiNlW<_LmXeGfNf3g9~5$&Rk
z-q+S-)V{o@42%q+n4ZebI!lT>OpnFN9(r6_o}wJfSg9||g0wB+yYzm=V2g=}1A5tM
zZM_y0Z8e3Vy*ZME&*jix&)auwquO?Ur?qVEG;&_6-weuNIWK6G#h>pz%r;%?wm98r
zw*0M9(3{s}#fFq<N*|%CMLr0kuISTFsyVGZF4LcRUk@zbOP{NMXbE_JpDlU%HFovL
z3M;<p(gC^Ro1Rv?cTMv7TAk-&q%8i+s3yS1Ngl|LqnB3DyIw0Rm|};7l{?`yS;t1=
z{oFRBY5LP7W%qJDLbLmW!E-&kg!7X*+ZZU$C_#85KE#69X9WT<;CeEw6ti1V;^h**
zG=@|G)%e>g`{8L!P|CN{&=DBTmND4an@Ett*fJPT9+d>lU1i<qzpM^hea_|aWSEoi
zhD`BKd-o7KIywkScy(=wUV<KHr3AzC+-VJKx%8Cfn*9_42^vyylzbbDfMR%+25@+^
z(Tg8>oz$xx3ki8qLxf;MnBkq_N%*xH@p0n_!9Iw&b78wuPcc<rk3Q>ZvxWD&@)pqK
zKuZ37y$kTfdg0hjB;c`^j!-lN<>7m^aXTbhaYfdd3`ptmwep1?4UyFL$C*>g!-9)9
z%HN@IxHDtIQFg%1)WjKcrazlYU*638K%)xlC#c6<wNcy6&&aV7KNKd2+NU(k#W+xG
zeZtQZRy%m%AvKn`77dwH|H{<uG}2+A+ZcV|Ch;L_`&z?1PLf%WS+vfAJ?u~X^r>xy
zx+5Nwq7Dzr8)Yjxn`(RF(XOyUZ4-kLb)Ni9fySdwiH#ldopr9*l_>I@U(anum%?wk
zxOzDpH&<gC&Q7lzu$*>8f*bFbAiW=t`<ohEocHb6s#lXO`h8BR3R<0rA1`*Lk#71#
zer+aH6-`g-X<8R{QAWOE@|^8NGN~iuM_zuobPk0b_kPHVcS3(JnqMGAZm#Q&HF-vB
z=<Vlj*2E;vMFTrOcaFxOv$m@v+@4}`H{7cMv*0!N7Rd=IiiR7shHGZXSDtzI;n5qV
zYGtM4zTw83P(JDVlk*Lt8np}_4Q6|a0uS=S+^oQP#I5<fs6carMvEB#JGYcW>2R33
zjhwVzWQQ7M9qI@v8pE4}Us;B;QtZqS4cvvLjfWVw0D9Tgm87(n#x4a>fDIy*-qi0o
z9q$5O7LM%5r`}b28l|J?feQJq09I^ePjU&v3%cdfns-kjRQCJgk|&F_v2nXXEnBKj
z8#eVCUy(M&e%O-4QCK2Ah^3qMd&h}CQRNBQ?{BZXt$$*Ipzvx}>*RLd@Y|YsW@G(-
zf`UPiD8AL%MmMW{%+$n!OA)!|iH!)$U5Egz>?OVJ6hRL<?eFk0O<1)HtErYspYa?M
z{+5q)jF0?L_(zU{*7rT3KKvEdM5b6)bg$sTbZ132T0Q<kXUERF>{bCxQNm9Eg&&o2
z4^QIOyXu<T4WSD?yy$8HoK(FAvWsmP@32<nFOb(N2xIxCggSh<Ejhl1KI#yS^$ZS;
z31G`1N?Al(l#mB`&`BOwLpquzWC2B$8meS6CI}~5))G+G(g>p{_6H%e=ultzhAE0f
zY|4f5a2^URK2ca@d6=(6m+NC8EGZj)bV$q__8xStn2sgb2#f7RObpzZjG!O7na^ZV
z{@%cP6I{UoFS`J^&gish+i4^^f^P;I+rto#o-X266nB+Wkzq)dh+SkUw8=jGD^+m+
zlm=d#4;`JBn&js9a5CH%9H{EDTLbl?w08!#O977oU^>paOGCwRT8=x@#H*jR$6F_F
z#=qg5CbpM4Lar5k^XU+C&}ejHN02sQ)XhDa>=H773B<YpYlg4U(Awb_e5$uo1FLcp
z$lm$AKelJ4CF#t;;DBJnWB(XiTN!Mp=WK>m&vBrupPD%7F@`)`%CWZ`gK*H#Ys&z2
zrGx#!#9E0ZW6b(;w|;!xrmbwUL8P*_qFwtJ%sb*JDUU}WUK)iD!xP<}8Hn6p#e+DR
zq_+hdoare3Qk0cEH9v$^(b&8=ARSu<b5;14dqS6<|4A=debp$ux!NmwBf%uA&fPKM
z=6ubTw%N&EeK1CtX0=zTJdc4Gkwp;O(a<4;pj}!I_-o3qV1B>#fRh7u-p=tWXK)60
zKm8k8=>#~$``N*y6s-~vp29sQ?Aok1&V)#JBuIF_zVS_XPtL<ok0Uby>@pj8d9^_Q
za-3$yhs5u%A##+1Yh#N3<z9OmU!zF7w_XDg$P&94M%X4Z8_UY>xg##S!uJBhu0lp<
z?Zbtk*n2cdk51-bj7<zb+W(#|PXyBquioA7xGhm)aXM%Uw{&*7+g}-DZwwXLUvcm%
zos*;5Hr0S*{hRS!jj^?6K_95kdq64!GY&xkVhvXOU0P4LT`4PwljdXj$#N0A+Ew44
zS(|`#h6j4-gd#b6y*_ym2?X~ge0c#z0LcnR#PEQ>1>8EQqz)awvNxnp*qJi+m<Kah
zP)Hsi$!s1{&1Ah8iwawVhq=;ao$ViZRROio(wxp+d3i=vkd5ATIQq?Cihf+9Jx-UF
zS8^Vn_|C<5bUdDpFw^XFTr>~Dia;6Wv36OXG5y|{!8w;dwBD%bm*X@wTAQa-LZkm&
z7NIY^PJF5EfDwaH2YV>xw;hpNHGlwp#t!J5$KQc`lF;Kg<T7yvH)}@jvQl4L2Uf6_
zw1VgEgL}$BRUfxIH~(QE)HxvbDv~8=h;WOr(-7W}!buvTLP)npEDg&8dfs2QxFk;k
z`lmbm$45y*+qu0|ubfW!qXEy->@QDT#EAro=oD6?tuf=(I(NnJtpqklqr3*%XD@sd
z@SDeXo&g5D<^2p17<G*l6w=_2hSL(SEu1V)1?AwUqsCH_@f}owY|2dEop#$T6S8Y_
z)$JSuo-Hf9gZbdb3SCxfgFjQCOSzt9QHVc(Ob4OkLmo#@43GVqioky|g}Q=dge0V9
z&zjKNd2!<#L_<ijSak|zAcv+XK_{vz2!(@)*cT|BbgP>%knqyz*R$Vd36FUGP-xMB
zyK-sI&8_!oabe}!gObdnO4-s_7j`mm+v5$Ed}eKrr&}^k^HLe4Q2~Ty3A@gU{w*5d
zi@gE7N*u;eL9LX`XGf?A8RqfWO)eU#3nt*&p9OW3Vy3Qv2Qp7CiJ$7bpdkrq=o$T-
z8Cp4m>NkOlkHbn9kZYQkc)WRHvs%Bq5dUjt@0c0Heqd#hBZPlP96No(kmzlkgzisD
z2XP>PRbh@dh?mnzhN3EF7&f$qW6+c?d?rd66XO|6M_(0V3IxT$|3}hQI7In8{R589
zqd~e;K)OS^L%OBAyN;4h6_73o>69)>K@LT_8>G7qc%Sd@y}#hO-JRK)*-tEKJi|}m
zu1CkIr$4>0pcEgq;tp83*5ke}O?>KY)obSCuEf<D{w|EL?$Y_S;p~7=;sYYLpJs`@
zj5&7JS9s6QyjWu%1+&J3{iY8Pm`)#<XF^<pMuE-Lfz~vQi>R6aghLzE`YeISfY!;_
z>{s|Bqdv~{NPx8e)-PVY=i`s^aK`6JFbKkdm`sFZq@Mfjh*O>qsuUx;T#06IFB-Mh
zLYVg5RqhIoi<f73fQ*K5Z>LK~+cb-3XOs{l&~#0}7S|eyHbsS)?xxU>hdA0x`PnEY
z>d00WRwMhql_Fs(&S(l6ei=;qdT(U;jO`@I=$o%iVC8l<gNJQ2wjgHV5+)So{<kbw
zp*fyf5*>!)`D+{tpqzv>1T)d8)XAsp6xU-iS>Z*NdX5wd@^-9@%z#CErf>jOjjA<)
zqR$c)<&ac8-hQlx%vIi#MDc%_++ivXM6)RVl8gxDo=YYIjYVi_3s`w8(l`%MtGTbc
z&><4{e8@tkrW1GsZ8oOFgDM2T>I3>03V1AF=PD6@A(}Q4ny76qixhe9KqM5{EiG#a
zxt13${qrvIm0IOMtZ4X|WKWVP)y2j!l6GBF+T1`?uk)?fn8U|&*niob5abO~`=V|?
zz}!@Uo@u_2gkjy?hR>5=N5|nujFK_=XL*a<GEY!%uumx9cZ9huY77A?fI0m49y8}c
z0GdLAJR27IJ#S-v&1n)fj5=lus~2b`!3hysRMzH$U=k{ANd3RPScB~73eig+2g^x(
z3wI0W3=#@b4n*x}IC?xNU#AiK1i27Y-wi4v0eLK7$69=P35GB>?gYQgBfB)NL{f9D
z#LTgOHL{a~b#w!YT{%9Pya>*%YbVYt0NYy^TKGAC{n(3j^n<{zT-{KRP}G`>3AA*%
z01(dyEU)u%<W)y%a^lU#KeQ=N(OTaLy~m+=Y03`=jro08Ut5B7tuEYp3Qf}dUOMJE
z8|~e)>uN(hMrX;2JzK7VG{Bi;ml^4xI>;p5@$>i8bP@?o;Q1Dqp17P;Drm|Klnx(b
z2W6oMzqzhQdBKL&${%&1sNM03J?T2H+GX6$1ezj)P=k$q<}<fpR3Ni|le68(Ae92n
zu!RS-h3i9*`Ns}r&VO=Xiov4@NehGi>-}EGbS9IH#yXSqzq%1PMNxT6)L1&_sES?U
z5`ez8-TslNa4?1eo#d|3h-G-;1_I`NF7`9;-qE+HMjPk!Ircu<aOpqx=rBwUmQoc=
zu0Vta%rz-E{8kRI6x6nHlR9&UI;W7K2(^Cz(P^`DUuB>Sex;DoUX)hNGEcA!3r4<&
zNoTu$*l)3Q%ZN9V1s(bx?-R{;^oSaNCjr%%+$gnrqp-adi4j58z}sZwzgWX`Ikhl4
zaZ7#Y&i}g8uFbH<*_4^<Yvd1f*~cMk#C=85jB3dQ5ZZIs507DHd=Mq14Q8H97>dmB
z;vf$mJw4LTJsLt$4AK3Bb&ULHy>E>Mp1%YMcr+SZeIVT=>EWPT7uNvK=YwA1ky2pU
z8^3fhUr9p=L0W$nsk@|-<#Mr<RuUS#*7|-OwwbiXoxTCXqJ!Jea*sTSq4o%-n`<UV
zv$MZqKouCTh9DDc8VoNe=lCMA=1f0Z+oOLV=+5h1@(tH^5SLK(P_3Ea$4K0M0dw?o
zl}7%Ei%>r%XcWZML8dpr0+)Sj&1u+#q@)MOtVSl+N6?*#BAvZR#K2J4K^*Y8qs#9B
zh!K``$Ul=1es<X!zhGe<>C<hSi%>kZ+h{<S%Moez*rIBl(djZ*V&_GbAz|YL`Dp&Y
zG^xc$12QEIGPu~|sbdFph+-8X2p)zrq}}e4p}j}qN0vFs&M?}r^lte2zdA572zLL<
zf5ikWgaGKm+W3VfXvHF4qX!it$^8-`bvKy9nvdET-=pdAZ?)BRx_yIMbV;nUK7?J^
z^hiPRER2XqQ!lckfDTQrx4wjdrMMT2!7tCrYhxQan*|skOci(@I>;7`6^kUwD-{G%
zRv_I!%?P?Ix3qYEcZ`iTo)@`qvk=?Pj?44CPGN!*MhAFgMIxzf(%^HVOM*TsrB-2Q
z2i$}r6c+dQaqtn+?63Qvi>#_-AqU@eVq>+>IR%<Gwf5d8w!@xZ!Mk-k9yaRbW@0rK
zlE}Vyr<CJlfh21>(JMEV9<H?`1xL|qmRLc}EzItSg#coE)f>Czn<QSS)+n_%p-d=W
z944i-FitVzp~P}joS#X|hRW`~4BJG<?01W1Cd-3NL1jpb?VE>f22^x}03O|<rkvMP
zx^`yPK`D`d=`{4O;W=t+-bzr{S-?wZ%%sI(+~hw@dXz=e%Y^u3>4<#$)DXE<!lsPA
zKlf<8O<>4(iRk_4Q`*3Ovq5X>H`B;Xs&kTKYqs+$%I9OPJh7=rWcOJabLoPSSMM8D
znPi9{3?8AA1b8N`S-p0Oj(~Bg?tWtrAt=o-32od}b{mc|_{;4N4507Tsl39Sy!s*+
z+K5Xp;YA{E-JL`x*qhwK^)}mH>f_%P7Yf)lo0r~B^-=(v=697L_5HXLrxi00>4o6d
zTjEe=NOMbbaZOS;(vghg-!BM{vS`bX4}poj$Bw4@-E-fpWovQ(19*9`?206IW({dX
zeapvfM&6a`-5tW{6V7dbCuXcZ)89`ki)T62%cAtJoQE{^Qj)Yy>{a9mo6O*`D1<eN
z{1;Zl0xDjPO~gx<L>3~H{X`3drw4Mc=!*vonfPV?=wbleNw)Xt?eVC+c&Tfddi1Gl
zb%=%XU@39BcOX7m4mpVeqXbJs39PiWf-J@ei!_a%Iod>%Gb;JXmGCY*+9cjWZKEeO
z>mY$;Bh|mXm3v6oVl4u~bXUW`pAANX%A;CfK|Kf=!^r*om0D{!B^IvZBCd+G8Kl1A
zp#HTuZ@MS#@JB%*nH+}dZb4dnKa^=b^~V>Xh1rV)lDyF=ME|qVTv;F7<c_+xM-EvJ
z1W^DrBK8f2>JW6fz+&oWFC9GJCbsJsU6w1@91My<V#DLI&Pioetkb%%Rmr6ZKm|*6
z<A<o~MTaJfqp3=(@>m3-8o@n~eK`?d{tT_2a{mCAeTVjPy)GdGCQ@nKy;PATdh~B>
zQsDXYq#Ynqre3S7<vsWD9|{e|{~Xlss|0hoQmJc-QN+^sG}u9^lw5OUxa)Oio#pMM
zARojkFglM2vZcnDgq&1Dn<l_TD0)*!{AhE!yO;TXH2q7gkqEK}qkfUXi4eeMChk7T
zgXTMBDXgeYZx|tN1Z*M8gR^2yng91U(Pt$o@GZ)w<48X}T0sy5Y2hb8*W8Mvg=wzf
zeM3ci5yFPp%nbDaN!R!xqvsB)$=G2@--HAGF^#+C9PKD!8qHiu6QHlLz>=!hohl*s
z;Q&%Wz(>#XcG6D&@YD*C9wV(Zz=!mDt~)EU6SXsXM(J50Yd__hzoack4!xNNIu1sx
z|4=Tlt|x3B=6@X`D8LMQ#~N?E?~g}Y&goyN)uqxZR$I44hmVDJRiyr0C5yc}g0S4|
z1NpElj+w@8Yv0<pdaFLf$Y?cn*@M2%Y3$qL!QVeBMvpj8U_tK-G-U4XXy|+f+zVh#
z$J{<^tkIlE0H9^H{&UU2L~3wt&i+P<2!V{@vPAhpAd8CzH1An=0hS5?Ee_m%0L}lo
zHM(V*uTvhAd>@KD03dDwadlY$=bd?7GvZErUv%ln!_b7YQK_)K>X`@+ij0kTQhXkF
zh40?H^;gI$kPge9%)90r>s428{ri)r93hJp+K))XjRlm#4Z;XgF%Abb0Q7<mq;?UR
z8T`xsh9|Q*7TStZ^y2s_;RX&u<?%aQO9dv5Xs|EQ?4_UAoK^@;j6}%0mC2GsF_7de
zb-?w^&>skZWz55S5g{R=;8naod+((4UhgAgWRoH5@T4{&%c24Jr@61utcbwV8aqQ5
z%=^?1y&(b3f(wd+j8>FGgwmZDz8FoNg<L2j1rAqZlI`zvN?YJZGuE`>?%g#&NY#!j
zGHi*RtjK`P{abuS4-3Zb1;~T>{^o6F|Mnd>0wwPSM-j%>^f~tyF+l+R1aTKErGP+V
z+iw2!HuNqC!9O7uWUdn_$(^bcK}vA;8fSwm$L;NAV-=oGF#l^~e)8@)HJKECD_L-&
zHl#0e!uq5!JRAr3(MH^W+?DJhh^x<^k031M;ecinH;qP=)T9rZ@i}S~XAgjr5VQXP
z-lf*Aw<$=)U?@ZTBa4N0&%E#1MPw^x{t=xgrx2FAg%^QC?~aX#0hQ;P*D!jytdhlg
z7tV{y0#dyVOF}{R{M_5W;1a8rwk3Hw06UqFxvtA{eUZnxbV5?o<QiPlv;>1lo`2Iq
zrIJZho{j33FuHS$Z;3%yU<{Bbm<Fe)JYwoE%ifN)SGPa8c<lFcCh1p_%*@}07T7dn
z^v`LZn|EvnSA~hr<-DfqEFw~03^c%rzc)aSjlz)i^>sW)cV*^}U&s(>us;_U#Xm>W
z%YhZG7{hW6HDec$GFKzcM5*MrYq;n<e~XGR!3rhVLHMj7LS3eLSZ{r5EQmIE`k`D3
zpeIU)I-e`VgQo7EMP&Pmq6(#?AZTf<GZ#VR+;?@T?lW-Hwih|Y63hylYZWUj660rv
z;MRvjIq<#&vJ^9Km%S@7G@Ag#5E^#4CWJW>&jD92xkc%x(h2#g{!viwjK3?T-R3*Z
z^9?JhiIBn^_P&+~l_VQk^eV3EpT0gb<Py9d*Tx=;yzWo`Z5}fslh?Ye%TpETto502
zfSf{z49RQHV*Q`_`*omO?hIlba9xU1w8h!>?->RLC(yJfUD8~wg#LqHq|PM7+7OE-
z42%XR6R7mN4>T=CVI!$n)aj+y)H!<5vDM1=PuFNLXL(s=@egGbLlZ~1sl82xW9Emp
zDeFYayI6Nk+}l*D&rv+9uv(<m5tyI37oyb2QxX9(YQj`YG6a;@e`@-x(SZ<MGm_-c
zOxkhbS8ThBSn;LpdVFrfe$b0IywIPo)_|87>9n9Y0FiD^-M1U`-;s<|qT0Czv2@95
zC!({c&qha0@Y#Np_qUkT;C3IvCiTC?h+1nUYe+DY3%+rkZh>V;mfwB7PXsBt@ejHc
z@q!Z3>Uj{f945BsB4}kU8p1^4X%AX}w^C^R1o;)L`t4u10G6R<ie*>;#Lw;hdP`;I
z=XIaNwW~#PIzgYdyg$cv+2VJn)3dz<pk`MpB${1FyHA$Ig&Q--ezn_IKk50$U!6eu
zowxM=WWim3u25VTJ$W}zv%~j`tK9!{uV{D6R)<*UL-$e3O59Eq|NkODS~{*XeUX9Z
zW|(kuf+jJhX29aKeI^J%rtJH-#xjrrllyDR4hcEb8+;u+p4t&6ys_>YMnG7xeX54s
zER2Nz<}fYGED};Vqi9Q47@!-Qug}T(q9^-0>IM%>CG3@-bM2sOrJ14NA<UKuXvD>x
zR+HBQFm=pdrQzX$x&YOv6Bp?yb%lmOH_FjYXJ3)!s+dhla)wa?&YCk_os#T)sNk7|
z>tX<E@oDad=kann=VOXr1i%ajEL;7hlr>T`gohHixFy`&iJ^knQ)nRk7pzFQAsZr}
zo>CCPgk~SKs|u@&D*Wton9QKK3ZBoBz#zvR9#3u)7oF4|yh(w^NpiF4_F?2n7gXAk
zRVvje$=68)2@`>C94PR(YEiy-6H9FSYlLMAmYrn0?@egGrTonimV2Ua9A@y(u+qx-
zYeoh}mQOt+e7$37b}d|FnLf-+3&G;l6R|KT=NxCnAcjZXic-Gt2UyIZb!2(zBx-qj
znWc87kO!g8g5<gRoEWReNnjvT?XC9)hiqM5kyfkftL1})10X@11(d`(A-nsgyTo!!
z8x~&IiG!T43GV4oSU@b`W(DYBZsJg3aOIrdGX&ySCp+kpLg)BQ_3<udy;%|m*E)=p
z0r6iV$U-9=Fv%v0)NxEr?Et8IxSKl37P7wd^0u><qXnx{!;AFuoHLF!g+<Z$QbsQ>
zCPU>!H8sbb51d~KjJPlp1FqW&&LV$z|3U`^#_h5C&QS#7ypIHPZc_{)P;wY}{9`-}
zh}iuQ$Q|Gg5Rwp*9rK}sqISSF(4|;4OyBh>4r+o|7#aB%t%wfFj(joCz{1Nt=VAtm
zjFW-?;3@QvWd;pfSo{WK{p=);)SGyFC(e#{{=FvF=nCUK@zJa^^xRPT>=u!mz3>Yi
zso-~FdSX6WwjI3UKe$$dHA%4#<EW(1nR98~t;BBnU*sN*O3!CXe?NT~d=;X0thhS6
zWOjWh2@87S3_We)3v%-lWCm65fyIVJZ_o;a5jlj8VTU4{h%!kLA`4p?cH$uxQJ^iA
z?LxEV%mBpIAE6T~zP$3)Z5VMt4!4T#Qv6B)=gN+Z1lmF5IS@@hfp4^wsN9!(<@rTB
zEGfJzBPr6Xp<lKZ7Co`hnU|PY#ss|UTRPww7VCXusoZJHo!S|7`K@lidT^NZKdn4z
zytLm@Z8_nCIl?b5YRm7MU%Bb3=(1fqgtYTD8I)sKd9{6>@$zZX&^SO=IqLUmqq@u{
zIU?cPg)OxyG(Rc|@-c%x9f?K?rDA|whjiO?W72DcAo>tz{8YG;4eV4EE`7o5Uj=8m
z{aix9pUuPlG}dc%wlbZXCHV@;OKs3)?R`n#FHHNsEvcwl>5<Iad9VL+cmW|bBS`E*
zAEECg)S;S%1+a`PQ;-@n55i>n=e-w>Jk7(hXNP8<{~=a1fiK8n0{+Cbt`Ygt<p5;^
zP56!ukVpLzFI0IRwth$VudZ(WgU^nC_oVmZ_r`lz$0vlBYU{7+*GiP*D@;k7c6k&P
znNQc>PcFsc3f7s?rh}YPu4Y}G)q(l3p~8iz&Y6IFoDB3#J?CRS7u(>xd7nSDgbvX+
zfzSZ%$-}h#L@>C*i=<DiAye?kg!UyxE(`Agx~xU|P6!7{nYl>+x6l<ES>3*|wGQel
z_vhEJ|J}T23zmnU3cY*{`cinPRNsDGv6CevJ<E=xUH=w=qz@;vyoFPy`8mr^{BrwO
zENQa9MO#J0bATPIe4P&GsE~U%tHod)9NVx^x1mwBHefse@LAo+7K>M2v+KXz$2biP
zYWnQXjo4c<o#M?4*dUJ+yL0sZZt9xu8D<jR#zUA!nZtaV+eD&}IgvaWYToJXE1daw
z{zMcP+vbM>h+Ij(i>o;3YS_;cC4W+8D)c+|kEVUFxbQ>l1KP6YdT|sz4tqM<S*3d~
zZuc2Ci0|zhp6{WNELWgX5YqcM0OPqHJCdaNecy6PY_54Stsu3O=WxQ^ug%O-Tk!nW
zTHkPYK@k#q2;!j2(i!DHGrNMHxuE^V-w0pa7OxQRLNY|V7?v_@<3UaF7A>QoVerwg
zC1Lj?H~#6D<nx@+I4Ttdj04Q`y_C1}<niGi`@MmD1D7NJ5M_dY-wmAaycu+xI*;}S
zDsUmlI(J{+auuISA&xO|PINTi$3i}Be@>=TKT`Kc6WNs>^2k$vEQp~St=JRZrt8gt
zf0*jeCDQL_{BYNqpn1lb9a@~*rT9-C`bKdm9mh3j^?P|fzkrWTH)L)GG<?8kF@Eh|
z^L6wmLS}j}-c^Dth|o2|W7xi1Ud2~I3V1P*^fct}I)wK>N^0@C$?a%JHOEG<gcBh!
z8P7FvmHZdR06GRJE0wPnrC6z$5G}ICXjtY@cmGoX0w8*DRyvZksQDm0nwy)NSc5Zs
zx+XuX{bD52%xk*m+)IHQ#pAZlRh27xA3K$9isr?J#~VbbCa-dzA;|<f^z{Ppv{<Kk
zABlFeXe&I`M^r%Z#>#>}`Dd6hTS4EpZm+E8ISgXv|5<4?O%SqyOz;U_axtMjV4^+m
z`~6GpcXcymR8(NX8WAV5t3iv0M#><sgfv`=d(slj_g<w|`VR1yT0dE%ahQ3}uzCp^
z;BB?^-<?)8|AC-o5r%hPB7Kv!*E=K+LIJF_)bl8*fs?30j0aja`tR9kYCw@Vs4?x)
zQxXu^@l$c4%$5be8w=yw2$^_&hqS40mQcTJxZmw4hC-+@n;|(SnTv^rK7dh;hlYg-
zbR0st?(;k^?|J1?uhXfKDd@5)eq=`~mv8=D_8_f)PrjM)!bL|i`D4DfW(bbm*`WV#
zlz!l{b*cAjnO<lrTn=KtNezg@Yy9^~@^5a@x+6g})oAN3$FDUv@Zly-yxBtw!VG6r
zIGX^L2SC|T46eQCT(P8+RAfzq@3qMg@V;n3`YMc30H^E!Drxf6yT@83&H5dfUYNnN
zEOI&VzePkq%vGTue8owcWDfzO->UY1`Wn_}sv#DATl%0AZ}-G<ZEajKcj5Le4O3wo
z0K!(%8%8%SHg9WGI3OQZvjg3XzUr7b4G8V9V%G5Z>Yb$jpA*3`1mxFq_^EkDf458_
z2xKrWh3$AlnTu&Tkg6V}Z&t$i#g_$IT<8~<fcjq#itP<4`XehH5w=_~2m?t?YX378
zg8=B{!tZ}gwVasfU55-*4c@$BH)s27l&tg@njKilYM3IRA~*ks;hIhk6lcD^W!(n_
z)oZQ-+65l7M8Jx%m*umn)~-B!m^moa1Kr6%`%dfo)yG3HK;7+XCoX@35jr)KJ0(mK
z?mp|IZ)hmIz?IOrzI;1Gy&6j+sqsd9SQdq3lB5vRPTi0Hf0;pVg7yqJW*|nFv?w&{
z{{~+fiIR!WC5@zD#1yS{|BxfalAE|l%WA$5`P9`3QTUp_<;W_5-;+H@_vZs4yKMLg
z>S(X&OeLyW-l62dQBxKH$du<=-9u(z9LX6OWSX<?QIB+}0M?_ZI1LhPX}ue~&Upv!
ziW6_E^JJE<gY$eKGD~<?8KJLsXDg=4N?N4@1+Ivq>sN1_N$qi!{THTt=qUHsrefqu
zw`MW*o2+-g|E2ARyzrTH_=@%9WX7_el31n^MAHV)^Z3ln_}}%Z(}vl~f7X+5l4`x-
zy!VqDc}O?r7iYb-hp}6#i#|I4x4DUvc2VEXjfGpw0p|kDprqQ<-jjQt-;2sKDrA~f
z{o!>RlqNZsVX@soBE=ZCTMFYN>lc8@NWdxIm6_lWItYl(R2q)3H=BAe+3iM${Z6BQ
z#r(V;_aW0~$D5G0QXxp%ZSwFL{C8G&pn#dZKk|(B<4nWA$A{WD9!;v>sB<ZlmWOh^
z2k7_6>L3b||8|!6s5`%WQAdx&zkDh0J7V8-zkMp^@<qq${^gijlKnN0p9K+4A%&pp
z<E!^4`O#VYl7RZ1Lz|c%VqgNI-x&12Ar=D4<4|>O{3sDGp4oqj!oP-bF-y&i1kpDR
znP{BHG~pM|YnCK8N?yY;C?6g$?H(O%#sh03LG?am$gl&K*)G^!+}gl`9WayWc;BzS
zFH9#m?D4A_<YVAtw6HJiwQ_@JVE6se<wk8iF7W>M?hnYCWkB?|`pw7~ZtDYnavIW)
zlCLZSY~v;;&D8%(U@!u#2TVZhW<LF3zknAB>0+1W+qNT?fe6l9ebpb!c?oA_e@%9@
zw;GJLQo~f}*##<5zZUcQlvd($I)~V&%=mxQ4@0@hqr?SPsET+y^}h;q5LWxmqGB4g
z3=^dn>>XSXAPH~a?wVShjZ%JR1>h?NR#GeiPwG;;E{tS3b4uB|nlh*R`};R8!I94>
zwK=gp(OXk?JN^Kb{KFvQG`GV7|J~#C_}89qsYaOgsTj3!*V%fBM&m_Am9tfks!w)@
zeNx@~E48B9v=99sZGQkVZvS0F#fA#lz9v?i)eOPAO|~dfn6Ei0_*|w&--q8O_;-e?
z;s{H&R%)sL<GL<Vx0V7>6VVx&=Z~m+miwCyu@gJZIg{p^|63u<+<f>kpl9y!Vl7*j
zlXy2Y*5*5t((v4^;H}InT;P%wSUK7T+nGKzCfAyN$E<5q^)5ziyklxMW*F{MF&pQ(
zDv;lWxje6Nf9iAd<-fa!oN_8XOccR_Qr`|ewn`vqsgN}iBOYP5Yqw2OV~lJ4l!q(v
zKIAXfL+4a1itY@NKkDh$4PY)m+DI1r^Go7c*BJTdsw!mSFLIH5TB)cxBJ-uVt+yc^
zt4NOlInh%#bl&c0oQS91pzvEs(pEG3m&vfddq^WAvk+VH^ak7fumkUfg5=n*^d3(k
zy#tdME;7$V+HNhy4a4OwugEi1>zpgz{jq)0n=7n(!t|GC7t&cU-0F$g<GhLwT@7Ws
zqo0)M7DjNVm^iHp+%`N@I_!F`>2vd(6zTO_J!$P!!<{#s<#@T5#o*gyan$VCOM6*c
z^{XH8Fj;uczMXAVgo4rtyzrF35u<US5=P^6n{g+vxy}oti=VCe@K0HBe7vOA(0BF4
zUt4CYI2O{0oVCXA<&bxyuyXxiHMIx%2=?R85*`yV9d|e#<((ZtGBe_Pda@x`D1<BK
zabMF=@_3=+Xm%8pGLGh~+8woWCw=l9WYvE@BlEsRRQkA}pOW}&#Cg;zg$m)Kz?y)s
zM&viPvBnWlMghr89~b{S=SL%)mZR*Veg-?bmbE@r7QIS>D^iH&fvMYxr5p%`tpDm4
zBw~+(foxM$`v>FbKD)y1I@2}hQCRbp6w*(eqrsGdo>yFnF9^(i(i8NgdBnTru#08m
ziK3z0Y;j8uvK*h4+?ZSdKnL#Ab+)1d8?2iR8@E~B>2dVdp*W$oT6&ZszI3`^6XUwb
zOr~L!%FS76?X`@?f1=T+kn+_?5=s!U#`#<MV?B5^<18|kIc#mgJp|DlsP9#Q4#8Z!
zCl^$qrwL-YzXb!9WJ0HD1|QTkEx>&P?yR*39P+kq(Xj~a3Z?Icq|D5T;upVZcAknv
zg$hRDdT0m#mdhPtd0lCj&K*tpJbK(3`04TIqItw!o+$)SnqzBaWwo~RKrvU`5KY#Z
zzceC=KUt32$;)YY2&Yse`15RJ-;IXA+J&p!yk`D-M1W2Qco(<Vy=od=ts~|ub;I)}
zmIhPC01N#&nlbd`)uw<2A$8)mOH%>oNUN$2Azo+_6hhcBi$?MQS!=kfH~bhi{%KFn
z(Pw`xdzR^Mi+POQWKUv>cj23{7rIHzr>5j|HBc6DE3T*b20Ca7aNhC!g$}KnH-MJO
zIu+!JB*E;|*S&IoY?T)%gzTvqgchPNxXc)wPvPX{Upl2>D;@|Ui`0B4bP#78rNU!=
zV^>No`&EWArcVf;ckR0eM^j$<f8QFu=Dhc@S2$Dgj$@=ubx$7K-&M<vQ~QxYDD`5(
zyLw^ky_LyIiq}*5RVJN}MM->IM7}%+!KQg<5byI-T+rFY{F2NANz?_G@-j?4%!>R|
zqDHdi@T99i0=#A|`<;+VEf7!quP_N8i4?=%uR#g6n02G6iR3~LKi(EsKjn<Bm?tFG
z<N1bh{)zdPDq@n{T=b?Co0z`4AbPp(85aZ8`Ay%q*~pUQzOY1*q}*~{78?1su`sPi
zc2_nP?h-{!9~8H5WsLBM2myqTU!tFU7G?XKd|210Y7ctVgMXlKP_f7<SCB?`CmH-+
zO>7KV8|=|XJ*$*|v})rH(1YWa^I3(3(R!;}4~!P{uo@hnrbz<p97X{g2}c3ecRKW|
z`{Aq^^$v-XiORnzevlMTbf!o|{JY7i7igwL-az3vsr~b<>u>lQj!y$2YA_Lwe|tY8
zLPvTFFV9NC3gGR7%wu6%Zh5Z%y$&ei0Lri_3l~o4Yw6;a$WXxO5<#<y5;=fc?}_(e
zZYLy2Id!2OVGhToUmKl)yt5~T8P*jK8|uydlogg}4bxK9*^HD|;P#4hx=WzGpnLw}
z@yr_<Z|kRaEt!L!3sP(a7P}?qQw14LixxyG>yIBgy-;|Qzt`^D<>$Yy)oq<P?T_Cy
z=k-(mp1cXJG5-7XcE&)cUaRV^t=YW`kNdq8Egf_wZZW@tA2eg+v+oEz+@zxtfwZ5U
zjeFOU3lyLGwM0=kwz^iSS^N6>?m+n^P!<gRVxbP?@zZa8$Gr<lw}U0Q7VbP=O8aZ6
z!c0+v3V>;G7Vmv75y(m>i}Z4AZ3%1vhPL+^z5!PGMMHH)puNDxG2-X)yQT((lM!v_
zpp<8fq>Y@^AUENRYiIfXG+Ve%n~>faD+pgsib5>rt%6l<@?4bxC2SezCvdk`MaO&M
z_JGjjA0*C~l0!JQTDwNV`9YqzuP>UKn{b?P`AZyMaInJQr8iugu_aCT2J`%?W&G>)
z5(*W0yqRM?dRTXGw@rLphOjj)k3)_x|D`Thc{PHv`pN~8KnwgWZF|@jVyNUZGyH6$
zz-lI+i38UKvNsjgoR7gl$ehNOOzTo;B8ujj>xNT)_bKEUT{RXh_SD%rZ_>GZdwt#g
zYu}quCXwk47~jg5d^p4Nkm-=(>FeK(IXv~~2imRexpy)Py=8TTWC{$ReZ!PySJvC#
z7=%%d4M!IA0xf1Kr&z1W-#sV_9AR{m;sei5(*xHij#oSx)8Yj`)KafPF3JPqbZPMd
zrwr49JGg4mAgiKup~!Y|i8oqJO<g0mlO@_&d+<K?X7+3P>HWIaJBkj-I4&PO^Sj7_
zA{6V}ISZ{)Lc=G9+av>0L*`A3$kg5gZ0BgH_cc&pfOgUMER4eRAZT%!7xzGN`{`R2
zjH-5k-<0vL{49_*l=cab(8kf-4D+d-`YmO+@uoW7Ro-C)=iSj0F;0&N$Drf~*r1aM
zp2C2h`~wlTU>D;!cG~pstRzN2jVR)oMIDrS=i_Mp5@<KZ!wjl*v_g0<otug%z&iBV
z<wdhTTRj@|F|nbf@JKP6ciPT_oZdfV^DTV4GQ?o52iq`cJT1hXAmi3$RsxX>^7g7d
zrs@;?mpuZ~F~hbniAZ*P?te*6AGhY@R{p@=&h#`3vM*n6hpR`&Xp~qNBWO<)c9Vu;
zP30h~?3RQU;kiv&`!?Bm&X?cvS9i<Z#u??^k3m%YOO5sItBTg^=}b*f>I5qY>;6@0
zF9CXigG=B5a~RJFp0|SUn&F@SEq*EC!KMsHEFePq!KJp(Mh;5;h+2U~!YJvXgt1qu
zcR=}r>?-&I-19W=V$f6$QSsHcR5GU2yWzJQlM*M6j&Bj5nZ+vP2b^5hI*SijgfhK6
z-QDjTc`^Z4fF;1L@8YLp81Tfi>gm$BWi62~@OgB<_U&&A%*G|Q27%?oKOw*N{hQ2}
z?zt49+-#vk@+TR8mF~&kosA~?lbnlI2dFXxV+K8OTxdi!m3|=r={Gf;)z9_H-<F|6
z<MX!NK0of45*n9Tjr4ga6}kA)0TMz=9q7TYJ;R-RPeb_Qv%BX?3@G~ly-gYwH3;8{
z%xQ7_-F*LQL<ZGr7xPR3V`3*4=mvU>z{pUtN~@o&qW5WVbom!UBwdjL$?1l%I+o?w
zh#Qpc(;8`|L!6_)&DUMEA#j+3pyYAUX<AbUX$NjNt<M8)KFR4D@z;BiYALo~yq1{b
zLYYubLz~t)DuL*napsU}O^iEd#4I$Y`Nd=EJI(H%IhmJoY)-m`Wkw(*5hAmPy*^<k
zDRja6>1ZY5dV_LQ%piHW*2sfH9y~bwstWDw+bdv#pN``4n35(rUU59*7WnA3cq*6o
zb@Yg3<c~d4hM&Ouu^#ejr=^IRr_QODegct7+#F=#Ff==2O6pf>>t<r3rJ5ag#FK|x
zj|3vG0*1;)9A?GRuUr(Y4->%+>Y>De4dG2;r2kbG-wnPrifYedbwx09$;-p6-aCrv
zX(|lAwsem8?E60Z!w+NyAD@0Jd?fFl7d$q4K?@su_6s_nO^b<lMbG|LuyZg)8W4$Z
z`Y!e{uYkmb0qrU>a+ik{YjWy&|Fs-iHG0>4+Lu??vZ>p}e*T=LDOq)1?%@%r8i}~Y
z+{G>PNII1J(;Q(s$YPqo(uu_?`KL1r6Pn!^KM-*56WA3q;KvBWVw}Ojmc)DO7^WpU
z@9xXu)%OmmGA}>wZfbcTnf%>qi-nSS5c>6!4Ru6v0yilGPN_5r;#l%5#(j>Z0t!$~
zIJ`OI5mj3^sxzcTGwwW_<9_VH!O<tq98Za}>BGv|X}^18l{1T_y0{)7*}bs1H<-U?
z>O>zlc~Ep2Xz!92d*zO-=j}E-6eMu8l4zO&$I{3PG9$qi<%}q(x${Q(_z{0hh1+5|
z1})+Xk1z+Aiopj3^NN{bpPE;M5?2|%I{QF<EiJ~Rgyv?IPawL@q4d8*9`3o*s~AN*
z74>%ZD8Ox81|}yi^pS>g(8(%nfGdA7Aw4L&-cdt**4Ir=x|xcV*5l2}rgaB<>WqHU
zQNN?912<zM!k0**QDKg{peKh9AtS?VDq;KS2Q?GFkx>@=r;@FR_dk^(h6TQ-j#HoO
z-%ti9lb02l`o|TdyFQ|C3rsWSRC5{W`d&4;q30c6C7>vKk2h{=96J56manQ8(oRmS
zRo)&I_YC}IZJtlbso>iCNxWU4#*b6GV~#GQ0*g$6twHLiW_;<`sat>Js2)fAcN}B-
z&a*yL4TmqgT{P3vnNi{0W&KdY7d-tuH%kq(*)G2RW@)f<^4rOD3w6+hR|1i2XNgT7
z@_gd;&Jlt)d9Uy#eoxSyWc_yLXBNkrk$?RzEEJBzbH;)+-Q_YR*dkmQ2)<$uMk9`S
z??&YX$ycTw0$nm%x6;W>Q-ubnFrW)j)KNZzI5=Z{<^({ZdTP0gTQ3#wG7CDqg%N|w
zDr@lXf2gt5lPHuXR^p}FDSTD+QEES6lP*JpP87Z0mh7YLv}r2~$;+s*5$9x?H;zev
zJ7;xE{cy${{CdY9Oj5?BtSM=!a2^o7wh#;)(%tqUFo=^0)D=>Loz=&hJFOlOHmu}L
z9foynx+cBKC1~kjN01@WhJ?u=qj6j#Gi$-AO~-JN#1dSnN0CeRnly5cC8>!|{Syus
z+7^8GgOb%ZQBHrc{ZEt>wG0!Aq>_@4_cK?S4fT+2V7uxTE}|ltQ=bmiLibej%1lPD
zLx@IC>SRtdi5gMauE>pXv=<Z7X4=uKI>;N|hf%UE`EJfKpAL_I%pHeKJb7p-^Df=H
z1Qb|b7BmI802^RcLLcjtfQbRp0N0DVtIC2NQG%IdpkAn5^g%9R6!JcMNu!I#;RE5e
z*7A<2i%f%(Q?c-Hkx~WaH2UOm*(-^N2xxLj@-KM>3DxUL8Kr`Rj4T}W)})W@<c;OL
zlr~eeqCzH0^W?QO9ywwTXlwEhaf1cSX<ZPI8F|0St@<&W?&h9m&sDx>NH+^xfO+a7
z<Mx_vjg6b`nn3ljbANWwVf|sz%b?q2SFDDIOgX5RMM%^`UAe&!npwYfQ$y-5@Lx$B
z;A}1rnn3f<?~dY%B@|*j*)DDStf7lWF>>;~vw`(Wjd0ntmLQ%ZiI0Z;UG&5%Imb!e
zSs+7@^~#8iyh`elX@nR;mHGmSg@;BSlpdP{;74G9>g>GELaPOQ5c_BiEmoWEKc0=P
z3E=uiaosPwZe{F!wt9ZEWHt>o+nf0mr#K1u13Tf=Z^(T;=Ppxlg`gz*E}{Av#rnH|
zh3<%Y^~!h3Iczv7ZrDTOs8_}xOqnwho;RLGKQE#Pty!nEGdS<P^6?^UmKNauovDVj
z(?~?<R2V}TRVl1+B=z|3-$WeBZH@@A6Y^v{-W`Z~L#-<Tsm|}<rzQJo)sO5m;_Wy*
zMf3#F)Q<ddeB?Quls=o4In+LnuB21XlCro`q9u7o-UyK~w5i~KM~ko;WO4k72qZ>D
zABNwn@Zh^PAP{-~es0@O@35&X(I#?~U=x;6QQ&pGr?QAh`;@yH$bqA>9ac}wNGWI;
zbgF?T@*uQIuqjDf8fM1L$mngGet4;Z(5iBstl@Mi=_jl-FUNWa956R8M2q|!#?XX$
z9JxLlZhjsICJc!Fo3A)~VD(MRF5z?L<tGzSf#bC}#-PK7V!Istpg=blRW$C1xlz-;
z3i&E|Iq<xCcp2N@0U@2~VaMDupTbs*&wG*T3qV4XMuw)g9_+X+J=6engdUfRH&ba`
zGFL`kG;?65&g#CFUp9oG`!r8NdA0@)lbC_G{4DeO2`!XM_3ba_Q%{ow{y`7Ctl?Hd
z^nY@jg0u^B7T{olfjfHq%M_I&+xySh>`2~G`2h#cR5=8oN!uJEgeZN2LW?@f3yBo6
z=S-_=MT)eyN7mlb?^7}TU3SHn?}J~>o~}md)^M`?bCz+<j5|9xQa!aN;7>bqd8|km
zE_ncLj+&zt44TtSrsD9_jhkfdX91xOt_IbgAw$RN;%N>r8xHFwA^rUg53Ob6r^}9i
z9G~sB*9_xk^04QpI^^sQmRGwm^AxBDV}xoFZUD=19JHK+`AOKlgivvqW4!K*wpiS{
zcW6G|RL%bfc~H}lYnsJuxIv7x0RkQ-ZP|_nMKZ;9MR)>!OfaqX`df+-@t2kO<Fr$&
zq3&xIk-xFUt2K(J4t;`wvS?T{m0KlV+u1t~;<iHXhNapg9=|l25^_pAS|fP|vH=ZS
zLa}{~$k35yw2<MJHzh?n0;5}9`_ERuAxe1@MkoWDGO9~bJm4IPcz(k{x?F0&0xnoE
zt)<I2hLeS)&#~gL;Iky7I;N7;ynPNQH?2M#?x(ie-`~135WV$)zSe(AMLcLZ&1tk3
z;K)YlXAK;37U{t<*>VmA5IUEO`$AD;oS$Zrn(BLKCl%aB9`L!+*J-=iGGdvTd4zxX
z48r0{I-rv3y(!6pAExl15HgMy5*asYMh{n#qw|h93~1Hs-yutN2#x-gkPhP^zH#Y`
zSiM%H&KR|?HxVUlBxz2L!EyOxh~DmfZqi*2Y!wB(;VJkS6GU*$_3w2?7dxGWLDYad
zKQWH3MZXjy@z3YY4I|3wf;rQo7UM6bo_X7Q@K8wG%JryA-N4UQ+u)ajm&ksNg5g(p
zO|$h4FG=YldxvQ89>n5x6rOJ{zGv|_q{O4hn2F?k2a1F)0TF<;rAK6hQ0QHY^Fs)C
z%Q!ZxZaw)nLOgz<C|3V~HYj;gF1b-Aoes(~E_z2;<QEn_JayZ!nNRE-YZfz5FVr6^
zG;UuhD@HUbqFqy3@P+|0?JoRWX(wJw#`5_|nIru&*NrBrsmN!JuBrU>u0ODY;p^2I
z4bLo#!8YH{y;A<#%fhbjdRKKh0t_xr-Nm(04;wUNCEY5h9P+*z<+KD^VCu<}Yq_7w
zf1+57$f16~6$`%jE(53b&wCv9K7U<%HuhVXqsJrmbEoW`O-=|>1ovLvFMS{}nB@>Y
zkI#bcen%1^W-QHE$2<~(Jgnkf=vL)hr>8%9x@uF-kqDI}AGM)HC?r4O_K3Q_`YGaP
zp%jGeY0REVT`R5bhyABR4x~u<S)^HMv_QA)Rm;z->~POgEIp-d2KA;o987xKq)XZI
zBcRvCn+yLu5(RfrkPxusJX$P#dn@$Twsw1|`dOq@>7iM%MHb#NnlNi6XP!{|XQZh4
z>!XqT2=DFILPGEK#lXzH0uLSOkNM_<Rl5XI(TmCjB#ev$u>Aoa%|TOTa@cZqHiF&d
zOfD$vRvr}({0j}*3wHA8QRpiJb-Fp>><6}iA&;oBuXJK;%Sl7wSC@D9>@F3!Yl%d+
zbCw4^fgG4|yo4iJD>{)!v~d?P-+aLRf(+j_#r7(nJ}Vy9U5J?d^8E=^tr%fyAVM+C
z@}^rGUl$o$djikJs?;UD5=tw5h1L@HFv^VMN(Ge{$&%|l+PIrFRJ&CQq9QSR8=Jt*
zbe1D63z?r3n7Y+s(%PwmRxwEn1LZ@8&j-z`4>J9YD$+352-)S9$=y7FrF7J28~f~u
zr*pc|eIqtDF_CBpQZ<_vPSQ|4V2!A?d+#Yb>9q}dWJ@_9{93RsW|kLBP3a~Mb;Erk
zojY+DZhXQvSeS{rdiyGknC-`=t1lMeW~MzGqfxw^vmIqc_B1O{8nCjQqken&btX~A
z+<R0W72gss$@MO7=eK+{j?3`3NNj_qItb%q>*g+MSbVru?{Mdx$<Kb);5S|}r99&!
zd}RtFzeZnSvT9O9j1!5sdomv)Dekrg1H%z%@OXJ2#--tA|3Vk<e`T5>wI$CuJp&V(
z3}wQ#I(}w7S@?Lg(TyGXzetNfAA>SBPm@6qE^l!=!;8k)i{vILmC&>K{Pkd-LFaeK
zA^k6we-*OoBl6p~^^u>1mh8#i&@q<ndH0b4f5O24q3`LgD7cJ?M!)!_c-5$S-?1;g
z)u>v03R-rObC#fwyLrz0LXUWtD0@+sU6A)E^eJVhpO|`btE9$Dtk5Rz#bDI{RqE{8
zxk+vku!d|0+Vud}CW`25;yC7A#IfLPaS$S+)DmU)<%iRqE37i+gMRxm@;9@IedFCa
z)#=-^OeTKoS)<|lXE-N;2Y9|XPrQ1kl|zjoL<TcjF*`-%90%1hmioHRR3H)aE$E(n
zeP!R(UxBj`%bZ<s*kO4ArobjIWzX)11MJCW+o~Vki1oMiu*XK2T9kNx)=ib{^5tDX
zWZer&7R;iT{Zf4BB(q)(o`2OD9|Ds&>W<6`sk#64q*UIexSFuL7txa<J9@qza-V%W
znxt3EZIVQ^5lDDa+1K%ubKX4?8oxi1vaU-pq_9Z6o4b7v8N1gGl~ru&#S*=3*soVK
zu-9s`iQjQjjxA`h4`&Un8A?Y#Y6+h{N8eNz%1PM;Lz{YkRZqtX<BnfYMNBfr_Vydp
zjQvxK5BJ)nN!eh?hhHHtpAWkJJ$@0GU0I3p2{NvK-9==$fk7#m$Nw&_xkycsjALY=
z$diNg^~fBma#~=UOiBZ@Z=eQQV-R~Pd$OdYQ8<V6H=3_?7`6*~w9!4};Roh@ld%#?
zgC7x?1GE~?1A}tnjIo5k6O-Gvb`e|N^~k0Y81%LRZ&w9{z9bT{^T?dX4yPMCM|>eY
zdW;JTBkp=JL6dk}z^g$1zBUN|`SPykF5u}_5saR$7@U7^_UqQ(?x)VEQ;_6kNcN3)
zuj5MJ1dGF;;o57w;GU5Dr_f&v?{Yu?;h64Znc%;5+U_9VzWGaMu2loh=j_!gDrH?~
z3%=-iQ_N_vtXsV_(W7mR?K&vfF>5LPo#G>3z>{rq{8!2r1Fw3>D_oZ!vs1V3FDjN@
zVv{`FB+*wR?s^wD0b^Ua5(xn-T#`Met^51oef(iX&QH-glev{ZF5qyGN3|)TXjw;q
z^)6ha3W5JcwM~@VVa238k%YQ$?-}^man63oNu7QT{>@~)WSo>6Zp4A_X*6$|EcZkA
zE>MHD7E-KuNK(X2GikO*$)cdH-=5rQ3p*N$<X6V2)M_72?-BBj*ybUDkQX;H@aMoe
zA><Lfv7BJ~LAUZZyG=*$8udUEjEF~15x4yHr*=0%3>*l|bpBx>!xRp&?I%iun9z2-
zg3z1pnu_;EFOQ9b#{_LD02FxbW4k~;oZy7WzwEx6>0-~%MK(4y#5^z6Py9{C_V<03
z-vW=h`D`3yuCjrOqh=TA`mGbx)iV95rI}rW?d*RBUe*8GASS{zjQOcKZxsFc(MfZr
zhv2)U7j@|M0`Hw>`Ctc&j4u`m1G9OmV!^eIfQaAje}h_RQ>kI<snulaAT=REhiK9z
zFUip7e4^YRdz;EHi68ynE+4LNosRfXJ?Ot{aUFShN-|hlgzmUp8{pTD{OS4CA;zQ6
zqzYlqXG>#ZCj3cNE4^E&?<Lh3n-TX`a8O#oP2ap}1Yi37`IyU1zyLD^b;h!lH8qs6
zj7Iu?&vq>VEq!U3;c=$_1&%@pKCjmidzH#S(ErUdl)A&<6RPRWLa0VWyF{IYPVG*Q
z@LmF#o#N=!0@*+{IKYB4@g%5NQ}oN5Kh)KFXF=wqmcMZJ@+zbptqHUTb`){lWNe!;
zgjakF$X#Tg#diz>+_1li*8Zr0!Og||FC4lOw(yS&(k0cSd>|A9f~?JM!z&3qO)9JT
z<Tf9_2yagqzL^00ww0QMk)eAOHK42wJ@afLG~r)oWFA$6O1Z=69!&*t9RBB<rylD=
zc&>>jGCL<VZ8xD1#GrqgZM_(Bv>vl`D5N`_=`01w;<}0weg?TA`f;gRJQqRAS}fM-
zTq9mWtZB0TaWi948Uh)g5M4%;l~JVeZ>#b`IIg}G64c?Y())8gcF7uOs}fgRp!b+R
z3h&~BOnUnxM((>g2=Q${cL79lox~a<rLM5e+d(fc4CMQyV1zy<(#VL{(#_!L#+~%P
z)suTzpN?8!w#80?@#omW!?&M2+7MV*E?!;F(%03I$%+3mAa@;(zp<@$bdewHKW^I+
zd^{UHU)vNPi!M;C6=MoGFZDgLQtyWHKx%mxf6I;LQ(7~(&tSQ<s)K}7ivJgRwqPh(
zCItY}M5|BsbTkUyi*gpqfs#oG)pnN|R{lgA7h1Z^=k|BHFpV;&9^j0Wl%5ICGw7`&
z8^`%uRMCy2!r;ih?}m?9DR0yUR*B+>mj&T5d^j2nw2rF%d`XA#L6M;>qyQ{EA8kU2
z->~@Ag!4#yIBsMwLQfKtmDpbm@%&7QSFuzYk&l5?BQy>z{dz63{lr0flYd~?N#oW+
zvf%0Uo$&Fa8k|GS?$3fvA=0=s<^*477`8mtUFz)#x<Idz{FGBh@#Mc1yd~T5)2vzj
zY8}mTN@AY#LbNpc76We0B;=5m(IXdm-wO2m$HRt;=U?{Dy<{)<hb#V9^KNG+6C>$s
z^2k={heCWXj?Zchj>E0o1DUGTIyZsqY}rS6RaQ2PaX^cfZvWr9eOmw+f}z}6V3utV
zJqslPKkXxZ7DXpb-A<|5M3DP%KTmG9L;}o1*`1gxsW<LSG{)mH^1DNM^$cou{kIU_
z3?Dw4x*B}pW5!YEPU0_lhiP2D>6}2MPXxjtJ3Mrjf8CY}SP@m3`DkTm3;j1S@JLJa
z-JBGEr`V&Xf39^O{brxuvx4EDtH>}x<NstbNFhsC^iq>`m`@CcGlb3BW}!X5k)b&Y
z;FMmv)u5Hf|Gq>sv3E7}!{qFg4EK@>iC=(j6-#+Dm7j&KOo8sX79W_f6}*mM7w1^>
zv*XN&GSX}=M=*|gp$u9*`oT+L{v!tepa8$aE(%7@x+{;p+kHfq>DCTDt)QUz3>RTy
zjU>2K+(cJDD+!qU(zFeLktWlfuReK~ETbeQYjN{14NAP;b52(huK4|lVk%Zy;4d)k
zeczS%1N|VE%Tl(=N_hF7&Vpw~OLz+P4;PJ<n(ijSBe(v=qT`OTzT()_blKnlVCa5Q
zCvDq|m_Wa(?80;B^0QiRw$-LiL{!kRIKb7)x`sg+Frg&VrgL~eOVx3I72`kf)QD!L
z09JY$r#XLU&zHW7I@Mn?HrUkYB9Y7t`LHm_<Q^IpYK~}*S80I}%V0)*o8M)}9x=id
ziM*jr<e-9TRNv7_=46zkIUPXh`gm=+|1yo_PeP5h6ZZNOY~fxglJP};2c|kMI!P5W
z;XRSQ)i}Nwx~tPe^*L-+BB!yeOw}}VtfcJq_?ISYpqT^?PrhGbgQ#VqdV1_Jo&fq-
ze&(oNjNJHZjTDWEir0k=dX~=FpBv@T+|{p}@Bw}mzb`{D^~gE=uW{ScwLr620Q+oI
zYsr}fQieC*dqaEPc$r2R&+>*5q3pM4caHu?8L1&?dV1xz+p5DPi!;%&07@jKV2oEu
zi?-4JS-U8`!~Fv!;2!R*guiG(s{{CtnR1)gnL+ZY^)7o|7R=(&3U~dBgn++M_*0Mb
ztDY66h>-<L?jEEfW{EB%u=;e)xbQ7K3i5`?y&Cr2tGa*75l&03#WwpfcRQz|XMdwf
z&Zs2*tTL9QYcMhPPAKC1QSxiP8H1H1K72XPLRI63_77HUzr{ch7UaydANrgb<wt6>
z`iXvd&%<sq-R6G@Den7UwqTFwe{$$+hA2hJ=`UzZTha@E;yfkzL<=-0iWZv#`}lCr
zQaoNcp|%M@mRwStbO1$r7Mzz#0<O)TJrR%Tz7(yHv%u<}I>=nBTYtP}6TX6Pvz|Vk
zwH^O!<xfA`Q6JbRw1;FQa?1>=(t_G>g4>f>XgqBsHAdOKFL?_!=iyvFM58?_*V`9@
z6HpoOiArym{y8*dz~3vCzg>wU4Ja_7HFdqT$r-VXU)i}3d;M8V@J&$r_M3850om@h
zoH^1`C-AYtir3e%{f|yusI)%vn@2x1|LTSh*thpN3&RlCtkj!T2cf|zln#~>n35#@
zA(!2s97e_`?BmL8L?Q~ry`U=6O=DlNDv?kyQOE10daB$;{l0ohV7U(dUu#$T4+YzW
zsVQU`W6d_qSkp68OeQn78e6g}6$v4e$1)-&ODID#g|R$j7kQJ6D1?}?gvgqC>@l{;
zGGSyNyi@PL@ZO)U-}!KVI=}O~&UIhs+|AsOL++4<{ekv{jdt2g6UmX=hd?Xp&2U%#
z%bR`|zaPl`cARiDuhY4D`<fGZ+lU^bZsDa_hH~kI{MYPeZ9S_OqioX$88CRsu`X~$
zNID*pejO%Kc5iO^@}DHd{)!ldtNSJ0+;~HyR|?UgCadiE5G(Xoha*vk%S_5vRT*`u
zMx#i3Lp`R6P;&sve*_ALgyCjR=7M+RBG#HA-?o4Fsy%ahQgF2DW1@Kk{wOO{hQL*l
zG~ufv2!(i_*b#ORi3w=Vmlg59UYxAJ2PaeeVrE%TnM4_6jvzhsa$^5Y=yd+S7o01u
zqdUl2$7GY+zw)9rA$D<HtH(WJkP13ZaXz*939cul1B+}Phof4rb})?SN6JB`0lZ-e
zuAz_jo{RE}iR?P+7v;`lQ(*>*B-(3pVqVG|uXa7$z)r>XJOeTBdG@h!k?$rn{6yh7
z$o74Zk<$M1Tfw>Y4h^~9GhS-Kn!~*q8o%LzQV0;U>vY{9#t_A$-aYTyZC)r+%S`?F
zaW*r-^B?@re+M=k(SB`Y@WHWBm!;2$BA2E*)|lO|9OV(~yys4?W)XG;p>s+p4qeje
zfhQ5x3i3PqHw3yi+I;MqJ&mDo1D(J$rNASN4lE05fwnml1nV2+;ykLFjb0*^ThY;0
zS)OT#??MmHf-GFgYf=Df(u!)$-LJ!9F<eE8xncn)TTL;dK5$o9)84i~uhoIj)YkDe
zoHbhjmXCXRqu@*GR5vDkqkV~T(GQyn_sVA27a^L(@0%-)+LL5S38*!j+(fVZM9(B%
zfSlj(6}Sh?qZ5LiC^S?ujS*4OfqvPb7%L=&x_bB~fkBVOrtd_?oC`6DHJXWAt^!7z
zPD*!#6<Xa80YWda2~@a>Sg3CQb6D@#n}gQdAa#&Xk^8@Xv6jipLCwlLK2DWhNkl35
z3dLNvvsMfQ0BoHC#0^6hI)fflB0>)9of~`Gdfj!dy)r&6zU-61xJ6E7R^7nA7FrVe
zcWK3zP7^&3-T_7IG+#6#gPS@<anpL?(1uy5of&P=TSKq3A-(g#JswB0iYdvJJ1w5-
z&10*H-FAfH_M)ira%_Fp@RI1%cSBCS@%mkFa*GwkthXfrjZWnUqfj_&x;4}Vh)jBD
zxhjRsp%&v4m{nI;`aY(ZV76P;su_q|m0&WA40m+S`DdT3oU9wbI<@?;OtLPwR<wJc
zVdyZ1r05LCRXxcp|40RuptEe0KwiNmiC$wW9?vedFCpnY0lN-XcK<*yk0$kXppJ?D
zW{V%*ID1RfR8oW$OAaIvUw)QK*d|8l*EaCbCFFr3VQyD07T8Qyh(nds)Om09BY9Du
zw?5fRnQfXhrh5waR5xab2RVL!^f$1IBjRxD2)^1FScn*WQC#a<8bhll3P%=&UxRZE
zIE$CGxyb$9l-VOe@k{abMhsTtjE(n%*qw$3O+T?)GgI#5=`A{LviI_)>i6qt<pw$m
zvL86=o=50S2y;q6`^kl8<^L7Q!y*R%b;nslCZ^kJ;*`cj)E9`_5zcyl4PKPTiutgN
zKjT|VMn&Nt4&be!>P3CYEmxVNsPN-H-%{K|hE!xJG+m85`1;{j7sTRApep5LA0S*_
z=^0-L92<yO2d3BZ^vo=u(|LL;@p|?eGtRDO4|B0WZ$ktcsr$Ij+2>P`VRgZ~Lmo9I
zjl1My@C&u~;<ZVhg?Oav?K-2uTbAul&p{QhlDqt)jp&3#_d<!{Bz4F@DC8^0oK)Ic
z5P^adGSnyg>ck)xCbJ>q_V28S6yI`yW&d1=3{{kr)WEpnLUeH+yT6IHB6&B>`{%Nc
zfYf84Hmp5wd)>mP3Xsb69Abh1Dv#qh{3~R|3k2CD*8dbKAg>|@Av#x885czZ3gV$?
z=~*x<<K<jf`^vYt@A<GB@)M+|tJSt2uriLLv}d=TM8@tN)QLyq^a%5`2O!fTeVfdA
zd~Z+aai12{8PEZWd+SUGu2p=qO#`hc;u@+8myeH6DZFFaC`cZmG%AO}Pt=?(>y~g%
zJIfbx0m#ZzW-FxgM7uh2mjN-j#V&_{KRwU~Bk}{3Q=6Ofj`=H~beW*$k%u9x60Fc)
z{X~b3zObIz*&1jXah$4JtC?jhEXGH1n<F0GRMu9}R_~t-NjeTps3#20kf*RXW6lqJ
zb@#^0A`_+)mfq2rSv8w|LKNTeSS{w*yN~Xt)2gapye{Q4ulrD-@Qq+WB1qy-)Sk%j
z+(0UXUEr;3u;tC`77|w@rcV)fZ1W1&32~*u<)DbfRoKF3xe6`ri6Dxt!kRb2<Oaa_
zwbOG?mG|iL&?~uFUzL^4w2Qs(6&h0Dn0CTJ=VEd;&~Myo6L%LAVA9kw{oy!!9;CaV
zx7qAEe0+#dC8uLEj_0TC{P5kbp5L6LRqyugt%*MPHM{=6n$~Jv*<%cN9$v)ulj^Jp
z1jk5q;6ptHL{k*gv!yo@)}EX*P>E4GT%WH<&z@e@OG;xkgDVU;-~G+vHWVVg!1Ezm
zDx0iWu!Zp3=P?g$pxLPZHBrTLd(B2g3#c^*P^zpI0lW4je!ZGlhf}bd5r{^h8RaMg
zJ(!XKGbLJjOB8Hr>Az5rXgN7ZPeDM1UTJ73YhEa@G_+r~)>m)QQu(C?tx>xgY+F)P
zYte<p_)@gC$6F01hw^lzY1QCH+Psec=aj8!7x|Az$1vw#=C9uzzJFKdDe!~qr~K~G
z`tn5%K?GBpSeIaFMkTgNm?&tJTa;0bI9&2wqwUdUaop&d)JV##R8?R^7=QdXJ%BgY
z16V5oLpZk5tDL@5|DSQz^3PDp;@>UOq`4u2$Jp1XD&P1Usw=qtgKo8vI;kM$&~4LS
z670!GWA{GOx7-+~Z{KeS1dzjb&*h@_q5AzDfd=+Zv2rKs=5mG{#oJcIuK2{}Q#3t%
z_(uBc16E}xS4<1?MD7NXv9iw$^x^omgnL(cBUJ}QEV|=5SI*$?j5qjZ_RpO%`!Sv_
zqfe)i8%qc3Ju=&x>w8_})5tALIjFkiKN?78P<jQ)QP`9%@s3|Wmmgd}7ffzgc&$9N
zn6~w+iI|kya{qH1B(V3}69v-n!{jf7v%uSX!mG$oZX7P3#7ra2#$ZIAoh4o*VoiQv
z?SAxFsB}W^zA}3h`HImbB`f(f{Q7HFkZddeOxaWiqStMEc!swj@+5vgUmRagldPr%
z$Or4;RsAA%i)wzplfS)WSl7pHguPy-a*OK?xw~&|sF8d=f9wlpLK@zeN}YC;3F^!M
z4F&rQd`~rp>exz*lPt#>{Y#m#xTZNp#-|TF_^Dmf$il6|sfvci(lZm$W1OW>VG}=E
z4ys@NU{9Wn)sH-4?G!F_rmLPinCgz(v#y*c?8p`YWc{!Qc>}#@jlgR(o@*ZvKauaY
zy3T3*<U<^KSGrUkn<u>Qv&tdJ0-M<>OUg+TaQ^_e$681}`qm;&DLt_zn`#ZXWdm51
zV1M_aUucGj>v~R&+q>?jo?Pwa$SED1G0yD$qcUb!kfawQOj+cf7`1x5Cl&;DSsZ*`
z-SVu~(x^F5Pz@t+3DZ(|N#rqeXqk8yt*9xzd0Y7t3SxOJK5)BWJU5NGKwzF432+!a
zQ)gM9JJvEU9IhWWxK0)3Z2e%oTzD`ad7KW$>C1r5V<QBbR#YbDb}z#YocT|*)?i)c
zAi+Z-^?2<bpUlor!Uj_ut%oxui|xrq1<v_^fAiPhsB1)*Gp6|mWmJUxZrM4p3<P$)
zFPqE%59*oA=V%|lV?Ej3h8*to2cfc_aFXhG3>An3{$DS~A7>j#afRG-h?gqn;v6$$
LE2Fm<*T??_<OEYc

literal 0
HcmV?d00001

diff --git a/jans-casa/plugins/acct-linking/extras/agama/web/none.png b/jans-casa/plugins/acct-linking/extras/agama/web/none.png
new file mode 100644
index 0000000000000000000000000000000000000000..4d84db2750f871fc5c0ada32e237b6f61af72537
GIT binary patch
literal 493
zcmeAS@N?(olHy`uVBq!ia0vp^DIm<j0wiy}j=j&oz^Ibx>>S|f?5t2wl%JNFlghxL
zF>&sMjb4WXMB4U;TvQTeIqE25RHAE<p+0?;086Wcw#3{^Do2xqoF@g<FyD8PU)HSf
zgTt<&Y4iVHKEAY%haUd7nDhDn_qdFko-?L(TTe&}eOST#|I+?V)9+_&c5Bz$?HKWl
z`MT}Gk2U*}Bx_$vu79@E{(O+g^o1qsP955_;=nEO@9Cj=5l4@`y<jb3-|<%CtkTEH
zJEWIROx*l>=}D76A5FHuJaY5s&X=pV6<RzK5uYs>tfmt3Wywq{_b)dmTZypT2^R7a
zPWqZQYvm5XsYOK=0=%xfe4X!w&3&$ws?y)N$LEmjN*iCfXZ8E9+nsymn_WDQ-8Epl
zSjgIs68Gd2ueN_pkJy=aBI|!$^kJX<^L{>;-p`=a7SP0GR*?V<Hl`$RcNd2L?fqx=
z19_YU9+AZi40_5S%viD1z6>bHUgGKN%KnT)fJaSXE|<tlppayVYeb22er|4RUI~M9
zQEFmIYKlU6W=V#EyQgnJcq5-UP?4smi(^Q|t+xjm8G*beh5zgGJRCqwH1HwGuZ4lp
S;gF{;NW#<A&t;ucLK6VQPQHr(

literal 0
HcmV?d00001

diff --git a/jans-casa/plugins/acct-linking/extras/login.xhtml b/jans-casa/plugins/acct-linking/extras/login.xhtml
new file mode 100644
index 00000000000..004766d278f
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/extras/login.xhtml
@@ -0,0 +1,147 @@
+<ui:composition xmlns="http://www.w3.org/1999/xhtml"
+	xmlns:f="http://xmlns.jcp.org/jsf/core"
+	xmlns:ui="http://xmlns.jcp.org/jsf/facelets"
+	xmlns:h="http://xmlns.jcp.org/jsf/html"
+	template="/casa/login-template.xhtml">
+	
+	<f:metadata>
+		<f:viewAction action="#{authenticator.prepareAuthenticationForStep}" if="#{not identity.loggedIn}" />
+	</f:metadata>
+	
+	<ui:define name="pageTitle">#{msgs['casa.login.title']}</ui:define>
+	
+	<ui:define name="maincontent">
+		<noscript>
+			<p class="dark-red tc f6">#{msgs['passport.javascriptRequired']}</p>
+		</noscript>
+
+		<section class="pa4 shadow-4 bg-blank gray cust-section">
+			<h2 class="f3 dark-blue2">#{msgs['casa.login.panel_title']}</h2>
+			<h:messages class="list dark-red tc pv2 ph0 ma0 f5" />
+			<h:form id="loginForm" class="pt2">
+				<div class="relative w5 mt4 pb2">
+					<h:inputText id="username" value="#{credentials.username}" styleClass="focused-text w-100 pb1 dark-gray" />
+					<label class="focused-label-big">#{msgs['login.username']}</label>
+				</div>
+				<div class="relative w5 mt4 pb1">
+					<h:inputSecret id="password" value="#{credentials.password}" styleClass="focused-text w-100 pb1 dark-gray" />
+					<label class="focused-label-big">#{msgs['login.password']}</label>
+				</div>
+				<div class="mt5 flex justify-between items-center">
+					<h:commandButton class="f7-cust bw0 br1 ph4 pv2 bg-bsgreen-success white hover-bsgreen-success hover-white btn cust-primary-button"
+						value="#{msgs['login.login']}" action="#{authenticator.authenticate}" id="loginButton" />
+                    <p id="alternative" class="f7 green lh-title tc w4 ma0 dn">OR use an external service to sign in:</p>
+				</div>
+				<div id="providers" class="pt4 ph2 flex justify-center dn">
+					<table class="table table-hover table-sm">
+						<tbody class="table-striped" id="add_here">
+						</tbody>
+					</table>
+				</div>
+
+				<h:panelGroup layout="block" rendered="#{not empty facesContext.messageList and cookie['X-Correlation-Id'] != null}">
+					<br/>
+					<p style="font-size: 0.7em">
+						<strong>Correlation Id: </strong> <h:outputText value="#{cookie['X-Correlation-Id'].value}" />
+					</p>
+				</h:panelGroup>
+				<h:inputHidden id="platform" />
+				<h:inputHidden id="provider"/>
+			</h:form>
+		</section>
+		<script>
+			let jsonProviders = '${identity.getWorkingParameter('externalProviders')}'
+			
+			//This is needed since JSF does not allow to set required attribute
+			$(".focused-text").attr("required", "true")
+			
+			$(document).ready(function () {
+			
+                storedCredsWorkaround()
+				fillPlatformField()
+				
+				try {
+					let externalProviders = JSON.parse(jsonProviders)
+					let ids = Object.keys(externalProviders)
+
+					if (ids.length > 0) {
+
+						function comp(p1, p2) {
+							return externalProviders[p1].displayName > externalProviders[p2].displayName ? 1 : -1
+						}
+
+						ids.sort(comp)
+
+						for (let provider of ids) {
+							let prov = externalProviders[provider]
+							let logo_img = prov.logoImg
+							let name = prov.displayName ? prov.displayName : provider
+
+							if (logo_img == null) {
+								logo_img = "none.png"
+                            }
+							if (!logo_img.startsWith("http")) {
+								logo_img = "/jans-auth/fl/blb4x/" + logo_img
+							}
+
+							addRow(provider, logo_img, name)
+						}
+
+						$('#alternative').addClass("db")
+						$('#providers').addClass("db")
+					}
+
+				} catch (e) {
+				}
+
+			})
+
+			function addRow(provider, logo_img, name) {
+				name = name ? name : provider;
+
+				let html = '<tr class="pointer" onClick="javascript:idp_redirect(\'' + provider + '\')">'
+				html+= '<td class="w2 tc">'
+				html+= '<img style="max-width:2rem" alt="' + name + '" src="' + logo_img + '" />'
+				html+= '</td><td class="f7-cust w4" style="vertical-align:middle">'+ name
+				html+= '</td></tr>'
+				$('#add_here').append(html)
+			}
+
+			function idp_redirect(provider) {
+				$(".focused-text").attr("required", null)
+				let form = document.forms.loginForm
+				form["loginForm:provider"].value = provider
+				form["loginForm:loginButton"].click()
+			}
+            
+            function storedCredsWorkaround() {
+                //Needed when browser pre-fills usr/pwd due to JSF issue with required attribute (see above)
+                let user = document.getElementById("loginForm:username")
+                let pwd = document.getElementById("loginForm:password")
+                if ($(user).val()) {
+                    $(user).focus()
+                    $(user).blur()
+                }
+                if ($(pwd).val()) {
+                    $(pwd).focus()
+                    $(pwd).blur()
+                }
+            }
+			
+			function fillPlatformField() {
+				try {
+					//Fix browser version to contain major.minor portion only
+					re = /^([^\.]+\.[^\.]+)\..+/
+					result = re.exec(platform.version)
+					if (result != null) {
+						//There was a match against the regexp
+						platform.version = result[1]
+					}
+					document.getElementById("loginForm:platform").value = JSON.stringify(platform)
+				} catch (e) {
+				}
+			}
+		</script>
+	</ui:define>
+
+</ui:composition>

From 145dae1042c83094e4e37848322a0689cc3b41d5 Mon Sep 17 00:00:00 2001
From: jgomer2001 <bonustrack310@gmail.com>
Date: Mon, 18 Mar 2024 11:46:51 -0500
Subject: [PATCH 2/4] feat: add acct linking plugin #7556

---
 .../jans/casa/core/PasswordStatusService.java |   2 +-
 jans-casa/plugins/acct-linking/pom.xml        | 109 ++++++++++
 .../acctlinking/AccountsLinkingPlugin.java    |  24 +++
 .../acctlinking/AccountsLinkingService.java   | 196 ++++++++++++++++++
 .../acctlinking/extension/AdminMenu.java      |  22 ++
 .../acctlinking/extension/UserMenu.java       |  23 ++
 .../vm/AccountsLinkingSettingsVM.java         |  42 ++++
 .../acctlinking/vm/AccountsLinkingVM.java     | 143 +++++++++++++
 .../acctlinking/vm/SiteRedirectVM.java        | 179 ++++++++++++++++
 .../resources/assets/admin/al-settings.zul    |  59 ++++++
 .../src/main/resources/assets/admin/menu.zul  |  10 +
 .../src/main/resources/assets/user/index.zul  |  79 +++++++
 .../main/resources/assets/user/interlude.zul  |  17 ++
 .../src/main/resources/assets/user/menu.zul   |  10 +
 .../main/resources/labels/zk-label.properties |  56 +++++
 jans-casa/pom.xml                             |   1 +
 16 files changed, 971 insertions(+), 1 deletion(-)
 create mode 100644 jans-casa/plugins/acct-linking/pom.xml
 create mode 100644 jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingPlugin.java
 create mode 100644 jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingService.java
 create mode 100644 jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/AdminMenu.java
 create mode 100644 jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/UserMenu.java
 create mode 100644 jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingSettingsVM.java
 create mode 100644 jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingVM.java
 create mode 100644 jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/SiteRedirectVM.java
 create mode 100644 jans-casa/plugins/acct-linking/src/main/resources/assets/admin/al-settings.zul
 create mode 100644 jans-casa/plugins/acct-linking/src/main/resources/assets/admin/menu.zul
 create mode 100644 jans-casa/plugins/acct-linking/src/main/resources/assets/user/index.zul
 create mode 100644 jans-casa/plugins/acct-linking/src/main/resources/assets/user/interlude.zul
 create mode 100644 jans-casa/plugins/acct-linking/src/main/resources/assets/user/menu.zul
 create mode 100644 jans-casa/plugins/acct-linking/src/main/resources/labels/zk-label.properties

diff --git a/jans-casa/app/src/main/java/io/jans/casa/core/PasswordStatusService.java b/jans-casa/app/src/main/java/io/jans/casa/core/PasswordStatusService.java
index c17813c25aa..9ca7e9c5293 100644
--- a/jans-casa/app/src/main/java/io/jans/casa/core/PasswordStatusService.java
+++ b/jans-casa/app/src/main/java/io/jans/casa/core/PasswordStatusService.java
@@ -39,8 +39,8 @@ public boolean isPassResetAvailable() {
 
     public void reloadStatus() {
 
-        passSetAvailable = false;   //Setting user's password is a disabled feature in Jans Casa
         IdentityPerson p = persistenceService.get(IdentityPerson.class, persistenceService.getPersonDn(asco.getUser().getId()));
+        passSetAvailable = !p.hasPassword();
         passResetAvailable = p.hasPassword() && confSettings.isEnablePassReset();        
 
     }
diff --git a/jans-casa/plugins/acct-linking/pom.xml b/jans-casa/plugins/acct-linking/pom.xml
new file mode 100644
index 00000000000..6c9ee66bad4
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/pom.xml
@@ -0,0 +1,109 @@
+<?xml version="1.0"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+
+    <modelVersion>4.0.0</modelVersion>
+
+    <groupId>io.jans.casa.plugins</groupId>
+    <artifactId>${plugin.id}</artifactId>
+    <version>1.1.0-SNAPSHOT</version>
+    <packaging>jar</packaging>
+
+    <properties>
+        <maven.compiler.source>11</maven.compiler.source>
+        <maven.compiler.target>11</maven.compiler.target>
+        <plugin.id>acct-linking</plugin.id>       
+    </properties>
+
+    <repositories>
+        <repository>
+            <id>jans</id>
+            <name>Janssen project repository</name>
+            <url>https://maven.jans.io/maven</url>
+        </repository>
+    </repositories>
+
+    <build>
+        <plugins>
+            <plugin>
+                <groupId>org.apache.maven.plugins</groupId>
+                <artifactId>maven-assembly-plugin</artifactId>
+                <version>3.1.0</version>
+                <configuration>
+                    <descriptorRefs>
+                        <descriptorRef>jar-with-dependencies</descriptorRef>
+                    </descriptorRefs>
+                    <archive>
+                        <manifestEntries>
+                            <Plugin-Id>${plugin.id}</Plugin-Id>
+                            <Plugin-Version>${project.version}</Plugin-Version>
+                            <Plugin-Provider>Janssen project</Plugin-Provider>
+                            <Plugin-Class>io.jans.casa.plugins.acctlinking.AccountsLinkingPlugin</Plugin-Class>
+                            <Plugin-Description>
+                                Allows the user to link their external identities (social sites and other OAuth providers)
+                                to his local Jans account
+                            </Plugin-Description>
+                            <Plugin-License>Available under Apache 2 license</Plugin-License>
+                            <Logger-Name>io.jans.casa.plugins</Logger-Name>
+                        </manifestEntries>
+                    </archive>
+                </configuration>
+                <executions>
+                    <execution>
+                        <id>make-assembly</id>
+                        <phase>package</phase>
+                        <goals>
+                            <goal>single</goal>
+                        </goals>
+                    </execution>
+                </executions>
+            </plugin>
+			<plugin>
+				<groupId>com.github.spotbugs</groupId>
+				<artifactId>spotbugs-maven-plugin</artifactId>
+				<version>4.2.0</version>
+			</plugin>
+        </plugins>
+    </build>
+
+    <dependencies>
+
+        <dependency>
+            <groupId>com.nimbusds</groupId>
+            <artifactId>oauth2-oidc-sdk</artifactId>
+            <version>11.7</version>
+            <scope>provided</scope>
+        </dependency>
+
+        <dependency>
+            <groupId>io.jans</groupId>
+            <artifactId>agama-inbound</artifactId>
+            <version>${project.version}</version>
+			<exclusions>
+				<exclusion>
+					<groupId>*</groupId>
+					<artifactId>*</artifactId>
+				</exclusion>
+			</exclusions>
+        </dependency>
+
+        <dependency>
+            <groupId>io.jans</groupId>
+            <artifactId>jans-core-cache</artifactId>
+            <version>${project.version}</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.jans</groupId>
+            <artifactId>casa-shared</artifactId>
+            <version>${project.version}</version>
+            <scope>provided</scope>
+        </dependency>
+        <dependency>
+            <groupId>io.jans</groupId>
+            <artifactId>casa-config</artifactId>
+            <version>${project.version}</version>
+            <scope>provided</scope>
+        </dependency>
+    </dependencies>
+
+</project>
diff --git a/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingPlugin.java b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingPlugin.java
new file mode 100644
index 00000000000..4503d08178a
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingPlugin.java
@@ -0,0 +1,24 @@
+package io.jans.casa.plugins.acctlinking;
+
+import org.pf4j.Plugin;
+import org.pf4j.PluginWrapper;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class AccountsLinkingPlugin extends Plugin {
+
+    private Logger logger = LoggerFactory.getLogger(getClass());
+    
+    public AccountsLinkingPlugin(PluginWrapper wrapper) throws Exception {
+        super(wrapper);        
+    }
+
+    @Override
+    public void start() {
+    }
+
+    @Override
+    public void delete() {
+    }
+
+}
diff --git a/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingService.java b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingService.java
new file mode 100644
index 00000000000..d90fe3f8462
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/AccountsLinkingService.java
@@ -0,0 +1,196 @@
+package io.jans.casa.plugins.acctlinking;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.core.type.TypeReference;
+import com.nimbusds.oauth2.sdk.http.HTTPRequest;
+import com.nimbusds.oauth2.sdk.http.HTTPResponse;
+import com.nimbusds.oauth2.sdk.ParseException;
+
+import io.jans.casa.conf.OIDCClientSettings;
+import io.jans.casa.core.model.IdentityPerson;
+import io.jans.casa.misc.Utils;
+import io.jans.casa.model.ApplicationConfiguration;
+import io.jans.casa.service.IPersistenceService;
+import io.jans.inbound.Provider;
+
+import java.io.IOException;
+import java.net.*;
+import java.util.*;
+import java.util.stream.Collectors;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import static java.nio.charset.StandardCharsets.UTF_8;
+
+public class AccountsLinkingService {
+    
+    public static final String CASA_AGAMA_FLOW = "io.jans.casa.acctlinking.Launcher";
+
+    public static final String READ_SCOPE = "https://jans.io/oauth/config/agama.readonly";
+    
+    private static final String AGAMA_PRJ = "casa-account-linking";
+    
+    private static final String CONFIGS_ENDPOINT = 
+            "/jans-config-api/api/v1/agama-deployment/configs/" + AGAMA_PRJ;
+
+    private Logger logger = LoggerFactory.getLogger(getClass());
+
+    private static AccountsLinkingService instance;
+    private IPersistenceService ips;
+    private ObjectMapper mapper;
+    
+    private OIDCClientSettings clSettings;
+    private String issuer;
+    private String basicAuthnHeader;
+    
+    public static AccountsLinkingService getInstance() {
+        if (instance == null) {
+            instance = new AccountsLinkingService();
+        }
+        return instance;
+    }
+    
+    public OIDCClientSettings getCasaClient() {
+        return clSettings;
+    }
+    
+    public Map<String, Provider> getProviders(boolean enabledOnly) throws Exception {
+        
+        HTTPRequest request = new HTTPRequest(HTTPRequest.Method.GET,
+                new URL(issuer + CONFIGS_ENDPOINT));
+        setTimeouts(request);        
+        request.setAuthorization(basicAuthnHeader);
+        request.setAuthorization("Bearer " + getAToken());
+
+        HTTPResponse r = request.send();
+        r.ensureStatusCode(200);
+        
+        Map<String, Map<String, Provider>> madam = mapper.readValue(
+                r.getBody(), new TypeReference<Map<String, Map<String, Provider>>>(){});
+                    
+        Map<String, Provider> madman = Optional.ofNullable(madam)
+                .map(m -> m.get(CASA_AGAMA_FLOW)).orElse(Collections.emptyMap());
+                
+        if (enabledOnly) {
+            madman = madman.entrySet().stream().filter(e -> e.getValue().isEnabled())
+                    .collect(Collectors.toMap(Map.Entry::getKey, Map.Entry::getValue));
+        }
+        return madman;
+        
+    }
+    
+    public Map<String, String> getAccounts(String userId, Set<String> knownProviders) {
+        
+        Map<String, String> accts = new HashMap<>();
+        for (String extUid : getPerson(userId).getJansExtUid()) {
+            //See method computeExtUid            
+            int i = extUid.indexOf(":");
+            
+            if (i > 0 && i < extUid.length() - 1) {
+                String pref = extUid.substring(0, i);
+                if (knownProviders.contains(pref)) {
+                    accts.put(pref, extUid.substring(i + 1));
+                }
+            }
+        }
+        return accts;
+
+    }
+    
+    /*
+    //linking occurs at the Agama flow
+    public boolean link(String userId, String providerId, String extUid) {
+        
+        try {
+            IdentityPerson p = getPerson(userId);
+            List<String> extUids = new ArrayList<>(p.getJansExtUid());
+            extUids.add(computeExtUid(providerId, extUid));
+            
+            p.setJansExtUid(extUids);
+            ips.modify(p);
+            return true;
+        } catch (Exception e) {
+            logger.error(e.getMessage(), e);
+        }
+        return false;
+
+    }*/
+    
+    public boolean delink(String userId, String providerId, String extUid) {
+        
+        try {
+            IdentityPerson p = getPerson(userId);
+            List<String> extUids = new ArrayList<>(p.getJansExtUid());
+            extUids.remove(computeExtUid(providerId, extUid));
+            
+            p.setJansExtUid(extUids);
+            ips.modify(p);
+            return true;
+        } catch (Exception e) {
+            logger.error(e.getMessage(), e);
+        }
+        return false;
+
+    }
+
+    public boolean hasPassword(String id) {
+        return getPerson(id).hasPassword();
+    }
+    
+    private IdentityPerson getPerson(String id) {
+        return ips.get(IdentityPerson.class, ips.getPersonDn(id));   
+    }
+    
+    private String computeExtUid(String providerId, String id) {
+        //This method HAS to match computeExtUid in class io.jans.agama.inbound.Utils 
+        return providerId + ":" + id;
+    }
+    
+    private AccountsLinkingService() {
+        logger.info("Initializing AccountsLinkingService");
+        mapper = new ObjectMapper();
+        
+        ips = Utils.managedBean(IPersistenceService.class);        
+        issuer = ips.getIssuerUrl();
+        logger.debug("Issuer is {}", issuer);
+        
+        clSettings = ips.get(ApplicationConfiguration.class, "ou=casa,ou=configuration,o=jans")
+                .getSettings().getOidcSettings().getClient();
+        
+        String authz = clSettings.getClientId() + ":" + clSettings.getClientSecret();
+        authz = new String(Base64.getEncoder().encode(authz.getBytes(UTF_8)), UTF_8);
+        basicAuthnHeader = "Basic " + authz;
+        
+    }
+
+    private String getAToken() throws IOException {
+
+        StringJoiner joiner = new StringJoiner("&");
+        Map.of("grant_type", "client_credentials", "scope", URLEncoder.encode(READ_SCOPE, UTF_8))
+                .forEach((k, v) -> joiner.add(k + "=" + v));
+
+        logger.info("Calling token endpoint");
+
+        HTTPRequest request = new HTTPRequest(
+                HTTPRequest.Method.POST, new URL(issuer + "/jans-auth/restv1/token"));
+        setTimeouts(request);
+        request.setQuery(joiner.toString());
+        request.setAuthorization(basicAuthnHeader);
+
+        try {
+            Map<String, Object> jobj = request.send().getContentAsJSONObject();
+            logger.info("Successful call");
+            return jobj.get("access_token").toString();
+        } catch (Exception e) {
+            throw new IOException(e.getMessage(), e);
+        }
+
+    }
+
+    private void setTimeouts(HTTPRequest request) {
+        request.setConnectTimeout(3500);
+        request.setReadTimeout(3500);
+    }
+    
+}
diff --git a/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/AdminMenu.java b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/AdminMenu.java
new file mode 100644
index 00000000000..5c0db84d743
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/AdminMenu.java
@@ -0,0 +1,22 @@
+package io.jans.casa.plugins.acctlinking;
+
+import io.jans.casa.extension.navigation.MenuType;
+import io.jans.casa.extension.navigation.NavigationMenu;
+import org.pf4j.Extension;
+
+@Extension
+public class AdminMenu implements NavigationMenu {
+
+    public String getContentsUrl() {
+        return "admin/menu.zul";
+    }
+
+    public MenuType menuType() {
+        return MenuType.ADMIN_CONSOLE;
+    }
+
+    public float getPriority() {
+        return 0.1f;
+    }
+
+}
diff --git a/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/UserMenu.java b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/UserMenu.java
new file mode 100644
index 00000000000..d16c16a6dd7
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/extension/UserMenu.java
@@ -0,0 +1,23 @@
+package io.jans.casa.plugins.acctlinking;
+
+import io.jans.casa.extension.navigation.MenuType;
+import io.jans.casa.extension.navigation.NavigationMenu;
+import org.pf4j.Extension;
+
+@Extension
+public class UserMenu implements NavigationMenu {
+
+    public String getContentsUrl() {
+        return "user/menu.zul";
+    }
+
+    public MenuType menuType() {
+        return MenuType.USER;
+    }
+
+    public float getPriority() {
+        return 0.1f;
+    }
+
+}
+
diff --git a/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingSettingsVM.java b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingSettingsVM.java
new file mode 100644
index 00000000000..eaddb34e869
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingSettingsVM.java
@@ -0,0 +1,42 @@
+package io.jans.casa.plugins.acctlinking.vm;
+
+import io.jans.casa.plugins.acctlinking.AccountsLinkingService;
+import io.jans.inbound.Provider;
+
+import java.util.*;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.zkoss.bind.annotation.Init;
+
+public class AccountsLinkingSettingsVM {
+
+    private Logger logger = LoggerFactory.getLogger(getClass());
+    
+    private String error;
+    
+    private Map<String, Provider> providers = Collections.emptyMap();
+    
+    public Map<String, Provider> getProviders() {
+        return providers;
+    }
+    
+    public String getError() {
+        return error;
+    }
+        
+    @Init
+    public void init() {
+        
+        try {
+            logger.info("Refreshing list of identity providers");
+            providers = AccountsLinkingService.getInstance().getProviders(false);
+        } catch (Exception e) {
+            providers = null;
+            error = e.getMessage();
+            logger.error(error, e);
+        }
+        
+    }
+    
+}
diff --git a/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingVM.java b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingVM.java
new file mode 100644
index 00000000000..c311d02f5b6
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/AccountsLinkingVM.java
@@ -0,0 +1,143 @@
+package io.jans.casa.plugins.acctlinking.vm;
+
+import io.jans.inbound.Provider;
+import io.jans.casa.plugins.acctlinking.AccountsLinkingService;
+import io.jans.casa.service.ISessionContext;
+import io.jans.casa.ui.UIUtils;
+
+import java.util.*;
+import java.util.concurrent.TimeUnit;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.zkoss.bind.BindUtils;
+import org.zkoss.bind.annotation.*;
+import org.zkoss.util.resource.Labels;
+import org.zkoss.zk.ui.Component;
+import org.zkoss.zk.ui.event.Event;
+import org.zkoss.zk.ui.event.EventQueues;
+import org.zkoss.zk.ui.select.annotation.WireVariable;
+import org.zkoss.zul.Messagebox;
+
+public class AccountsLinkingVM {
+
+    public static final String LINK_QUEUE = "social_queue";
+
+    public static final String EVENT_NAME = "linked";
+    
+    public static final long ENROLL_TIME_MS = TimeUnit.MINUTES.toMillis(1);  //1 min
+
+    private Logger logger = LoggerFactory.getLogger(getClass());
+
+    @WireVariable
+    private ISessionContext sessionContext;
+    
+    private AccountsLinkingService als;
+    private Map<String, Provider> providers;
+    private Map<String, String> accounts;
+
+    private String userId;    
+    private String pendingProvider;    
+    private long pendingLinkingExpiresAt;
+    
+    public Map<String, Provider> getProviders() {
+        return providers;
+    }
+    
+    public Map<String, String> getAccounts() {
+        return accounts;
+    }
+    
+    public String getPendingProvider() {
+        return pendingProvider;
+    }
+    
+    public AccountsLinkingVM() {
+        als = AccountsLinkingService.getInstance();
+    }
+    
+    @Init
+    public void init() {
+        
+        try {
+            logger.info("Refreshing list of identity providers");
+            providers = als.getProviders(true);            
+            logger.info("{} identity providers found", providers.size());
+            
+            userId = sessionContext.getLoggedUser().getId();
+            parseLinkedAccounts();
+            
+            if (providers.size() > 0) {
+    
+                EventQueues.lookup(LINK_QUEUE, EventQueues.SESSION, true).subscribe(event -> {
+                        if (event.getName().equals(EVENT_NAME)) {
+
+                            String data = Optional.ofNullable(event.getData()).map(Object::toString).orElse(null);
+                            if (data != null) {
+                                logger.info("Received link start event for {}", data);
+                                pendingLinkingExpiresAt = System.currentTimeMillis() + ENROLL_TIME_MS;
+                                pendingProvider = data;
+                            } else {
+                                logger.info("Received linked event");
+                                cancel();
+                                parseLinkedAccounts();
+                            }
+                            BindUtils.postNotifyChange(AccountsLinkingVM.this, "accounts", "pendingProvider");
+                        }
+                });
+            }
+        
+        } catch (Exception e) {
+            logger.error(e.getMessage());
+        }
+
+    }
+
+    @NotifyChange("pendingProvider")
+    public void cancel() {
+        pendingProvider = null;
+    }
+
+    @Command
+    public void poll() {
+        
+        if (pendingProvider != null && pendingLinkingExpiresAt < System.currentTimeMillis()) {
+            logger.info("Too much time elapsed for linking to finish");
+            cancel();
+            //I could have used @NotifyChange("pendingProvider") in this method but postnotify will give
+            //better performance here. UI refresh takes place only if this IF is reached 
+            BindUtils.postNotifyChange(AccountsLinkingVM.this, "pendingProvider");
+        }
+
+    }   
+    
+    public void remove(String providerId, String extUid) {        
+
+        if (accounts.size() > 1 || als.hasPassword(userId)) {
+            Provider p = providers.get(providerId);
+            
+            Messagebox.show(Labels.getLabel("al.remove_hint"), null, Messagebox.YES | Messagebox.NO, Messagebox.QUESTION,
+                    event -> {
+                        if (Messagebox.ON_YES.equals(event.getName())) {
+
+                            if (als.delink(userId, providerId, extUid)) {
+                                parseLinkedAccounts();
+                                UIUtils.showMessageUI(true, Labels.getLabel("al.removed_link", new String[]{ p.getDisplayName() }));
+                                BindUtils.postNotifyChange(AccountsLinkingVM.this, "accounts");
+                            } else {
+                                UIUtils.showMessageUI(false);
+                            }
+                        }
+                    });
+        } else {
+            Messagebox.show(Labels.getLabel("al.linking_pass_needed"), null, Messagebox.OK, Messagebox.INFORMATION);
+        }
+
+    }
+    
+    private void parseLinkedAccounts() {
+        logger.info("Parsing linked accounts for {}", userId);
+        accounts = als.getAccounts(userId, providers.keySet());
+    }
+    
+}
diff --git a/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/SiteRedirectVM.java b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/SiteRedirectVM.java
new file mode 100644
index 00000000000..ecc82f4237f
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/java/io/jans/casa/plugins/acctlinking/vm/SiteRedirectVM.java
@@ -0,0 +1,179 @@
+package io.jans.casa.plugins.acctlinking.vm;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.core.JsonProcessingException;
+
+import io.jans.casa.conf.OIDCClientSettings;
+import io.jans.casa.misc.Utils;
+import io.jans.casa.misc.WebUtils;
+import io.jans.casa.service.IPersistenceService;
+import io.jans.casa.service.ISessionContext;
+import io.jans.casa.plugins.acctlinking.AccountsLinkingService;
+import io.jans.inbound.oauth2.OAuthParams;
+import io.jans.inbound.oauth2.CodeGrantUtil;
+import io.jans.service.cache.*;
+import io.jans.util.Pair;
+
+import java.util.*;
+import java.util.stream.Collectors;
+import java.net.*;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.zkoss.bind.annotation.Init;
+import org.zkoss.bind.annotation.QueryParam;
+import org.zkoss.util.resource.Labels;
+import org.zkoss.zk.ui.Sessions;
+import org.zkoss.zk.ui.event.Event;
+import org.zkoss.zk.ui.event.EventQueues;
+import org.zkoss.zk.ui.select.annotation.WireVariable;
+
+public class SiteRedirectVM {
+
+    private Logger logger = LoggerFactory.getLogger(getClass());
+    
+    private static final String STATE_ATTR = "st";
+
+    @WireVariable
+    private ISessionContext sessionContext;
+    
+    private CacheInterface cache;    
+    private AccountsLinkingService als;
+    private ObjectMapper mapper;
+
+    private String serverUrl;
+    private String userName; 
+
+    private String text;
+    private String title;
+
+    public String getText() {
+        return text;
+    }
+
+    public String getTitle() {
+        return title;
+    }
+
+    public SiteRedirectVM() {
+        als = AccountsLinkingService.getInstance();    
+        mapper = new ObjectMapper();
+        serverUrl = Utils.managedBean(IPersistenceService.class).getIssuerUrl();
+        cache = Utils.managedBean(CacheInterface.class);
+    }
+    
+    @Init
+    public void init(@QueryParam("provider") String provider) {
+
+        try {
+            logger.debug("Initializing ViewModel");            
+            userName = sessionContext.getLoggedUser().getUserName();
+        
+            title = Labels.getLabel("general.error.general");
+            String currentUrl = WebUtils.getServletRequest().getRequestURL().toString();
+
+            CodeGrantUtil cgu = new CodeGrantUtil(makeOAuthParams(als.getCasaClient(), provider, currentUrl));
+            
+            if (Utils.isNotEmpty(provider)) {
+                text = Labels.getLabel("al.link_redirect_failed", new String[]{ provider });
+                String url = getAuthzRequestRedirectUrl(cgu);
+
+                EventQueues.lookup(AccountsLinkingVM.LINK_QUEUE, EventQueues.SESSION, true)
+                        .publish(new Event(AccountsLinkingVM.EVENT_NAME, null, provider));
+                WebUtils.execRedirect(url, false);
+                
+            } else {
+
+                //Agama authn flow finished
+                String state = Optional.ofNullable(Sessions.getCurrent().getAttribute(STATE_ATTR))
+                        .map(Object::toString).orElse(null);
+
+                if (state == null) return;
+
+                Map mama = WebUtils.getServletRequest().getParameterMap().entrySet().stream()
+                        .map(entry -> {
+                                String[] val = entry.getValue();
+                                List<String> values = (val == null || val.length == 0) ?
+                                        Collections.emptyList() : Arrays.asList(val);
+                                return new AbstractMap.SimpleEntry<>(entry.getKey(), values);
+                        }).collect(Collectors.toMap(Map.Entry::getKey, Map.Entry::getValue));
+                        
+                String code = cgu.parseCode(mama, state);
+                
+                logger.info("Got an authz code at callback URL");
+                //If the token request succeeds, ie. does not throw, it means the code is not fake
+                cgu.getTokenResponse(code);
+                
+                logger.info("Notifying linking page...");
+                EventQueues.lookup(AccountsLinkingVM.LINK_QUEUE, EventQueues.SESSION, true)
+                        .publish(new Event(AccountsLinkingVM.EVENT_NAME, null, null));
+                        
+                title = Labels.getLabel("al.linking_result.success");
+                text = Labels.getLabel("al.linking_result.success_close");
+            }
+    
+        } catch (Exception e) {
+            text = e.getMessage();
+            logger.error(text, e);
+        }
+
+    }
+
+    private String getAuthzRequestRedirectUrl(CodeGrantUtil cgu) throws URISyntaxException {
+        
+        logger.info("Building an agama authentication request");        
+        Pair<String, String> pair = cgu.makeAuthzRequest();
+        
+        Sessions.getCurrent().setAttribute(STATE_ATTR, pair.getSecond());
+        return pair.getFirst();
+        
+    }
+    
+    private OAuthParams makeOAuthParams(OIDCClientSettings cl, String provider, String redirectUri) {
+        
+        OAuthParams p = new OAuthParams();
+        p.setAuthzEndpoint(serverUrl + "/jans-auth/restv1/authorize");
+        p.setTokenEndpoint(serverUrl + "/jans-auth/restv1/token");
+        p.setClientId(cl.getClientId());
+        p.setClientSecret(cl.getClientSecret());
+        p.setScopes(Collections.singletonList("openid"));
+        p.setRedirectUri(redirectUri);
+        
+        Map<String, String> custMap = new HashMap<>();
+        
+        if (provider != null) {
+            custMap.put("acr_values", "agama");
+            custMap.put("agama_flow", makeAgamaFlowParam(provider));
+        }
+
+        //prompt is needed because the user could have previously linked an account and in a new
+        //attempt to link at a different provider, launching an authn request will not trigger the
+        //agama flow because there is "existing" session in the AS
+        custMap.put("prompt", "login");
+        p.setCustParamsAuthReq(custMap);
+        return p;
+
+    }
+    
+    private String makeAgamaFlowParam(String provider) {
+        
+        String key = "" + Math.random();
+        int sec = Long.valueOf(AccountsLinkingVM.ENROLL_TIME_MS).intValue() / 1000;
+        
+        logger.debug("Writing uid ref to cache");
+        //What is stored here will be later retrieved by the agama flow. Twice the casa enrollment time 
+        //given. This is to avoid the not very user-friendly error "uid reference passed not found in Cache!"
+        cache.put(2 * sec, key, userName);
+        
+        String s = null;
+        try {
+            s = mapper.writeValueAsString(Map.of("providerId", provider, "uidRef", key));
+        } catch (JsonProcessingException e) {
+            //this will never happen
+            logger.error(e.getMessage());            
+        }
+        return als.CASA_AGAMA_FLOW + "-" + s;
+
+    }
+
+}
diff --git a/jans-casa/plugins/acct-linking/src/main/resources/assets/admin/al-settings.zul b/jans-casa/plugins/acct-linking/src/main/resources/assets/admin/al-settings.zul
new file mode 100644
index 00000000000..622b37edfc3
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/resources/assets/admin/al-settings.zul
@@ -0,0 +1,59 @@
+<?page language="xhtml"?>
+<?init class="io.jans.casa.core.navigation.AdminProtectionInitiator"?>
+<?init class="org.zkoss.zk.ui.util.Composition" template="/general.zul"?>
+<zk:zk xmlns:z="http://www.zkoss.org/2005/zul" xmlns:h="xhtml" xmlns:zk="zk" xmlns:w="client" xmlns="native">
+
+    <h:title self="@define(title)">${zkService.appName} - ${labels.al.title}</h:title>
+
+    <z:div if="${empty pageScope.error and sessionContext.user.admin}"
+            viewModel="@('io.jans.casa.plugins.acctlinking.vm.AccountsLinkingSettingsVM')"
+           self="@define(maincontent)">
+
+        <z:include src="/back-home.zul" />
+
+        <div class="${css['sectionsWrapper']}">
+            <section class="${css.section}">
+
+                <div class="${css.panel}">
+                    <h2 class="f4 dark-blue2">${labels.al.title}</h2>
+                </div>
+                <div class="${css.panel}">
+                    <p class="mb0" if="${not empty vm.providers}">${labels.al.adm.intro_text}</p>
+                    
+                    <p class="mb0" if="${vm.providers ne null and empty vm.providers}">${labels.al.adm.no_providers}</p>
+                    
+                    <p class="mb0" if="${vm.providers eq null}">${labels.al.adm.error_retrieve}</p>                   
+                    
+                    <z:div class="pa4" if="${vm.providers eq null}">
+                        <div class="alert alert-danger" role="alert">
+                            <i class="fas fa-exclamation-circle"></i>
+                            ${vm.error}
+                        </div>
+                    </z:div>                   
+                    
+                    <h:table class="mt4 table table-hover table-sm" if="${not empty vm.providers}">
+                        <thead>
+                            <tr>
+                                <th scope="col">${labels.al.adm.name}</th>
+                                <th scope="col">${labels.al.adm.flow}</th>
+                                <th scope="col">${labels.al.adm.mapping}</th>
+                                <th scope="col">${labels.al.adm.status}</th>
+                            </tr>
+                        </thead>
+                        <h:tbody children="@load(vm.providers)" sclass="f7">
+                            <zk:template name="children">
+                                <tr>
+                                    <td>${each.value.displayName}</td>
+                                    <td>${each.value.flowQname}</td>
+                                    <td>${each.value.mappingClassField}</td>
+                                    <td><i class="${c:cat('f5 fas fa-', each.value.enabled ? 'check' : 'times')}"/></td>
+                                </tr>
+                            </zk:template>
+                        </h:tbody>
+                    </h:table>                  
+                </div>                    
+            </section>
+        </div>
+    </z:div>
+    
+</zk:zk>
diff --git a/jans-casa/plugins/acct-linking/src/main/resources/assets/admin/menu.zul b/jans-casa/plugins/acct-linking/src/main/resources/assets/admin/menu.zul
new file mode 100644
index 00000000000..85511e0027a
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/resources/assets/admin/menu.zul
@@ -0,0 +1,10 @@
+<z:zk xmlns:z="http://www.zkoss.org/2005/zul" xmlns="native">
+
+    <li class="collapsible-menu-item di">
+        <a class="db pv2 pl2 hover-bg-washed-blue ${css.menuItem}" data-priority="${priority}"
+           href="${zkService.contextPath}${base}/admin/al-settings.zul">
+            ${labels.al.title}
+        </a>
+    </li>
+
+</z:zk>
diff --git a/jans-casa/plugins/acct-linking/src/main/resources/assets/user/index.zul b/jans-casa/plugins/acct-linking/src/main/resources/assets/user/index.zul
new file mode 100644
index 00000000000..6326a7f3210
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/resources/assets/user/index.zul
@@ -0,0 +1,79 @@
+<?page language="xhtml"?>
+<?init class="org.zkoss.zk.ui.util.Composition" template="/general.zul"?>
+<zk:zk xmlns:z="http://www.zkoss.org/2005/zul" xmlns:h="xhtml" xmlns:zk="zk" xmlns:w="client" xmlns:ca="client/attribute" xmlns="native">
+
+    <h:title self="@define(title)">${zkService.appName} - ${labels.al.title}</h:title>
+
+    <z:div if="${empty pageScope.error}" viewModel="@('io.jans.casa.plugins.acctlinking.vm.AccountsLinkingVM')"
+           self="@define(maincontent)">
+
+        <z:include src="/back-home.zul"/>
+
+        <style>
+            /* override default bootstrap styling */
+            .table td, .table th {
+                vertical-align: middle;
+            }
+        </style>
+
+        <div class="${css['sectionsWrapper']}">
+            <section class="${css.section}">
+                <div class="${css.panel}">
+                    <h2 class="f4 dark-blue2">${labels.al.title}</h2>
+                    <p>
+                        <z:label id="temp" value="${c:l(empty vm.providers ? 'al.nothing_yet' : 'al.intro_text')}" />
+                    </p>
+                    
+                    <div class="alert alert-success dn" id="feedback-social" role="alert" />
+
+                    <h:div unless="${empty vm.providers}" class="pa3 pb1">
+
+                        <z:div sclass="flex items-center flex-column pt2 ph3-ns">
+                            <table class="table table-sm">
+                                <h:tbody children="@load(vm.providers)" sclass="f7 table-striped">
+                                    <zk:template name="children">
+                                        <tr>
+                                            <td>
+                                                <img width="50" 
+                                                    src="${c:cat('/jans-auth/fl/blb4x/', empty each.value.logoImg ? 'none.png' : each.value.logoImg)}" />
+                                            </td>
+                                            <td class="f6 dark-blue2">${each.value.displayName}</td>
+                                            <td>
+                                                <h:span visible="@load(not vm.accounts.containsKey(each.key))">
+                                                    ${labels.al.link_unavailable}
+                                                </h:span>
+                                                <z:div visible="@load(vm.accounts.containsKey(each.key))">
+                                                    ${labels.al.link_status}
+                                                    <z:label class="b" value="@load(vm.accounts.get(each.key))" />
+                                                </z:div>
+                                            </td>
+                                            <td>
+                                                <!-- There can only be one linking process at a time (because every linking triggers an AS
+                                                     authn request. Thus, linking buttons are all disabled when there is linking in progress --> 
+                                                <z:button href="interlude.zul?provider=${c:encodeURIComponent(each.key)}"
+                                                    disabled="@load(vm.pendingProvider ne null)" visible="@load(not vm.accounts.containsKey(each.key))"
+                                                    class="${css.primaryButton} lh-tight mr2" target="_blank"
+                                                    label="@load(c:l(vm.pendingProvider eq each.key ? 'al.buttons.linking' : 'al.buttons.link'))" />
+                                                
+                                                <z:button label="${labels.al.buttons.cancel}" sclass="${css.secondaryButton} lh-tight" 
+                                                      onClick="@('cancel')" visible="@load(vm.pendingProvider eq each.key)" />
+                                                      
+                                                <z:button label="${labels.al.buttons.remove}" sclass="${css.secondaryButton} lh-tight"
+                                                    visible="@load(vm.accounts.containsKey(each.key))" onClick="@('remove', each.key, vm.accounts.get(each.key))" />
+                                            </td>
+                                        </tr>
+                                    </zk:template>
+                                </h:tbody>
+                            </table>
+                        </z:div>
+                    </h:div>
+
+                </div>
+            </section>
+        </div>
+
+        <z:timer id="timer" delay="2000" repeats="true" onTimer="@command('poll')" />
+
+    </z:div>
+
+</zk:zk>
diff --git a/jans-casa/plugins/acct-linking/src/main/resources/assets/user/interlude.zul b/jans-casa/plugins/acct-linking/src/main/resources/assets/user/interlude.zul
new file mode 100644
index 00000000000..97c57ea4906
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/resources/assets/user/interlude.zul
@@ -0,0 +1,17 @@
+<?page language="xhtml"?>
+<?init class="org.zkoss.zk.ui.util.Composition" template="/basic.zul"?>
+<z:div xmlns:z="http://www.zkoss.org/2005/zul" self="@define(content)"
+       viewModel="@('io.jans.casa.plugins.acctlinking.vm.SiteRedirectVM')">
+
+    <div class="f7-cust flex justify-center mv4">
+        <div class="w-90 w-75-ns ba bw1 br2 b--light-gray flex flex-column items-center bg-blank">
+            <div class="pa4">
+                <h4>${vm.title}</h4>
+            </div>
+            <div class="pa2 mb2">
+                <p>${vm.text}</p>
+            </div>
+        </div>
+    </div>
+
+</z:div>
diff --git a/jans-casa/plugins/acct-linking/src/main/resources/assets/user/menu.zul b/jans-casa/plugins/acct-linking/src/main/resources/assets/user/menu.zul
new file mode 100644
index 00000000000..450d6cc0971
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/resources/assets/user/menu.zul
@@ -0,0 +1,10 @@
+<z:zk xmlns:z="http://www.zkoss.org/2005/zul" xmlns="native">
+
+    <li>
+        <a class="db pv3 pl1 ${css.menuItem}" href="${zkService.contextPath}${base}/user/" data-priority="${priority}">
+            <i class="mh2 fas fa-users" />
+            <span class="collapsible-menu-item di">${labels.al.title}</span>
+        </a>
+    </li>
+
+</z:zk>
diff --git a/jans-casa/plugins/acct-linking/src/main/resources/labels/zk-label.properties b/jans-casa/plugins/acct-linking/src/main/resources/labels/zk-label.properties
new file mode 100644
index 00000000000..d59d7b660ff
--- /dev/null
+++ b/jans-casa/plugins/acct-linking/src/main/resources/labels/zk-label.properties
@@ -0,0 +1,56 @@
+# Admin section
+
+al.title=Accounts Linking
+
+al.nothing_yet=Nothing to show here yet. Contact your administrator.
+
+al.intro_text=Link accounts you own at external sites, for instance social networks.
+
+al.link_unavailable=Not linked
+
+al.link_status=Linked to user
+
+al.buttons.link=Link
+al.buttons.linking=Linking ...
+
+al.buttons.remove=Remove
+
+al.buttons.cancel=Cancel
+
+al.remove_hint=Are you sure you want to remove this linked account?
+
+al.removed_link=The association with your account at {0} was removed.
+
+# usr.password_set.title is defined in core casa project (user.properties)
+al.linking_pass_needed={
+To remove your only linked account, you have to set a password first. This will allow you to still have means
+to access this application in the future.
+
+Click on "${usr.password_set.title}" to do so.
+}
+
+al.link_redirect_failed=Redirecting to site "{0}" was not possible
+
+al.linking_result.success=Your account has been linked successfully
+
+al.linking_result.success_close=You can close this window now.
+
+## Admin labels
+
+al.adm.learn_config=Check the plugin docs to learn how to manage external identity providers.
+
+al.adm.intro_text=This is the list of external identity providers configured so far. ${al.adm.learn_config}
+
+al.adm.no_providers=There are no providers defined yet. ${al.adm.learn_config}
+
+al.adm.error_retrieve=Unable to retrieve the list of external identity providers. ${al.adm.learn_config}
+
+al.adm.name=Name
+
+al.adm.status=Enabled
+
+al.adm.flow=Agama flow
+
+al.adm.mapping=Profile attribute mapping
+
+
diff --git a/jans-casa/pom.xml b/jans-casa/pom.xml
index 70b1a361b74..0a7572b91ab 100644
--- a/jans-casa/pom.xml
+++ b/jans-casa/pom.xml
@@ -61,6 +61,7 @@
         <module>shared</module>
         <module>app</module>
         <module>app-fips</module>
+        <module>plugins/acct-linking</module>
         <module>plugins/client-authorizations</module>
         <module>plugins/custom-branding</module>
         <module>plugins/strong-authn-settings</module>

From 46be9539572ad948ded1c3fba23378d630b40e01 Mon Sep 17 00:00:00 2001
From: jgomer2001 <bonustrack310@gmail.com>
Date: Mon, 18 Mar 2024 11:47:38 -0500
Subject: [PATCH 3/4] docs: update docs #7556

Signed-off-by: jgomer2001 <bonustrack310@gmail.com>
---
 docs/casa/index.md                            |  1 +
 .../accts-linking/accts-linking-agama.md      | 87 ++++++++++++++++
 docs/casa/plugins/accts-linking/index.md      | 99 +++++++++++++++++++
 mkdocs.yml                                    |  1 +
 4 files changed, 188 insertions(+)
 create mode 100644 docs/casa/plugins/accts-linking/accts-linking-agama.md
 create mode 100644 docs/casa/plugins/accts-linking/index.md

diff --git a/docs/casa/index.md b/docs/casa/index.md
index 6b081e52a1d..6cf4b57fc40 100644
--- a/docs/casa/index.md
+++ b/docs/casa/index.md
@@ -50,6 +50,7 @@ Besides a comprehensive graphical [admin console](./administration/admin-console
 
 Casa is a plugin-oriented, Java web application. Existing functionality can be extended and new functionality and APIs can be introduced through plugins. Currently, there are plugins available for the following:
 
+- [Accounts linking](./plugins/accts-linking/index.md)
 - [Consent management](./plugins/consent-management.md) 
 - [Custom branding](./plugins/custom-branding.md)  
 - [2FA settings](./plugins/2fa-settings.md)
diff --git a/docs/casa/plugins/accts-linking/accts-linking-agama.md b/docs/casa/plugins/accts-linking/accts-linking-agama.md
new file mode 100644
index 00000000000..5fb93d8b343
--- /dev/null
+++ b/docs/casa/plugins/accts-linking/accts-linking-agama.md
@@ -0,0 +1,87 @@
+# Accounts linking project configuration
+
+## Overview
+
+The accounts linking Agama project must be configured in order to integrate third-party identity providers. The configuration of this project is supplied in a JSON file whose structure is like:
+
+```
+{
+"io.jans.casa.acctlinking.Launcher": {
+    
+    "providerID_1": { ... },
+    "providerID_2": { ... },
+    ...
+}
+}
+```
+
+Each property part of the JSON object `io.jans.casa.acctlinking.Launcher` holds the configuration of a different identity provider. Here's a how a typical configuration of a provider looks like:
+
+```
+{
+    "displayName": "Goooogle",
+    "flowQname": "io.jans.inbound.GenericProvider",
+    "mappingClassField": "io.jans.casa.acctlinking.Mappings.GOOGLE",    
+    "oauthParams": {
+        "authzEndpoint": "https://accounts.google.com/o/oauth2/v2/auth",
+        "tokenEndpoint": "https://oauth2.googleapis.com/token",
+        "userInfoEndpoint": "https://www.googleapis.com/oauth2/v3/userinfo",
+        "clientId": "202403151302",
+        "clientSecret": "m|a1l2d3i4t5a6S7h8a9k0i'r¿a",
+        "scopes": ["email", "profile"]
+    }
+}
+   
+```         
+
+In this case, we are populating the configuration of an OAuth-based provider called "Goooogle". 
+
+The tables shown in [this](https://github.com/JanssenProject/jans/blob/main/docs/agama-catalog/jans/inboundID/README.md#supply-configurations) page list all possible properties to configure a provider. Particularly, two properties deserve the most detail:
+
+1. `flowQname`. Agama projects are made up of flows - think of small "web journeys". This property must contain the name of an existing flow capable of interfacing with the identity provider of interest. Often, there is no need to write such "interfacing" flow. The below are ready-to-use and cover most of real-world cases, specifically  OpenId/OAuth providers that support the **authorization code grant** (see section 1.3 of [rfc6749](https://www.ietf.org/rfc/rfc6749)):
+
+    - `io.jans.inbound.GenericProvider`. It implements the authorization code flow where the user's browser is taken to the external site. When authentication completes, a `code` is received at a designated redirect (callback) URL. With such `code` an access token is obtained as well as user's profile data. This flow supports _dynamic client registration_
+
+    - `io.jans.inbound.Apple`. It implements the authorization code flow with some nuances required in order to integrate "Apple Sign In"
+    
+
+2. `mappingClassField`. This is key for performing the attribute mapping process and the user provisioning. The remainder of this document is dedicated to these two aspects
+
+!!! Note
+    Recall `enabled` is a handy property that can be used to temporarily "deactive" a given identity provider.
+
+## Configuring attribute mappings
+
+An introduction to attribute mapping can be found [here](https://github.com/JanssenProject/jans/blob/main/docs/agama-catalog/jans/inboundID/README.md#attribute-mappings). Unless an elaborated processing of attributes is required, a basic knowledge of Java language suffices to write a useful mapping.
+
+To write a mapping, you can use the samples provided as a guideline (see folder `lib/io/jans/casa/acctlinking` in the Agama accounts linking project). You can add your mapping in the same file or create a new Java class for this purpose.  Then save your changes, re-package (zip) the project, re-deploy, and update (re-import) the configuration if necessary.
+
+Specifically, for Casa accounts linking, the mapping **must** include an attribute named `ID`. While `ID` is not part of the Jans database, here it is used to supply what could be understood as the _identifier_ of the user at the external site. For instance, in a social site this may be the username or email. The example below shows how to set `ID` assuming the username was returned by the external site in an attribute named `userId`:
+
+```
+profile -> {
+    Map<String, Object> map = new HashMap<>();
+    
+    map.put("ID", profile.get("userId"));
+    ...
+    return map;
+}
+```
+
+In the above example, `profile` is a `Map<String, Object>` that holds the attribute-value pairs the third-party identity provider released for this user. For the interested, `profile` contents are dumped to the server logs (check `jans-auth_script.log`) so it is easy to peak into the values. Check for a message in `debug` level starting with "Profile data". 
+    
+Both the ID of identity provider and the ID of the user will end up stored in an auxiliary database attribute. This helps to identify if the incoming user is already known (has been onboarded previously).
+
+When the attribute mapping is applied, the `uid` attribute is set as well. This is the username the incoming user will be assigned in the local Jans database. The `uid` is automatically generated based on `ID` unless the mapping already populates the `uid` directly.
+
+The return value of the mapping is a `Map<String, Object>`. This caters for cases where resulting attributes hold booleans, dates, numbers, strings, etc. When the attribute has to hold multiple values, you can use an array or a Java `Collection` object, like a `List`.      
+
+## User provisioning
+
+After attribute mapping occurs, the local database is checked to determine if the incoming user is known (based on the `ID` in the mapping and the ID of the provider in question). If no match is found, the user is onboarded: a new entry is created in the database using the information found in the resulting mapping. Otherwise, the exact behavior varies depending on the provider configuration as follows:
+
+- If `skipProfileUpdate` is set to `false`, the existing database entry is left untouched, otherwise
+- If `cumulativeUpdate` is set to `false`, the existing attributes in the entry which are part of the mapping are overwritten
+- If `cumulativeUpdate` is set to `true`, the existing attribute values in the entry are preserved and new values are added if present in the mapping
+
+The updates just referenced apply to the matching entry based on mapping and provider ID, however, when `emailLinkingSafe` is set to `true` and the mapping comes with a `mail` value equal to an existing e-mail in the database, the update is carried over the e-mail matching entry.
diff --git a/docs/casa/plugins/accts-linking/index.md b/docs/casa/plugins/accts-linking/index.md
new file mode 100644
index 00000000000..5225ab4afef
--- /dev/null
+++ b/docs/casa/plugins/accts-linking/index.md
@@ -0,0 +1,99 @@
+# Accounts Linking Plugin
+
+## Overview
+
+This plugin allows users to "link" their local Jans account with existing accounts at third-party identity providers like OIDC OPs and social sites, e.g. Apple, Facebook, Google, etc.
+
+Besides the usual onboarding of a plugin jar file in Casa, administrators must deploy a number of additional components. This will be regarded later. By now let's summary key points of the accounts linking experience:
+
+- When a user tries to login to Casa, the usual username/password form is presented but also a list of links that can take him to external sites (third-party identity providers) where authentication takes place
+- Once authenticated, user profile data is grabbed from the external site - this is all backchannel
+- A process called _attribute mapping_ is performed on profile data. This is a transformation process that turns incoming profile data into a shape compatible with a regular Jans database user entry
+- If the mapped profile data matches an existing user in the Jans database, the existing entry is updated with the incoming data, otherwise, a new entry is inserted - this is called _user provisioning_. When provisioning occurs, the account has no password associated  
+- Finally the user is given access to Casa
+
+From the perspective of a user already logged into Casa, the experience is as follows:
+
+- In casa, a menu item is provided which takes the user to a (Casa) page that shows a list of third-party identity providers. For every provider there are options to trigger linking in case there is no account linked yet (external site authentication is launched), or to remove the linked account from the user profile 
+- If an account has no password assigned, removal of linked accounts is not allowed. However, a functionality for the user to assign himself a password is provided
+
+## Components deployment
+
+The pieces that allow materialization of the experience summarized above are the following:
+
+a) The Casa plugin jar file
+
+b) A custom XHTML page and jython script
+
+c) The Agama inbound identity project
+
+d) The Casa accounts linking Agama project
+
+Most of work is demanded on setting up project _d_, where configuration of identity providers and attribute mapping tuning takes place. 
+
+In the following, it is assumed you have a VM-based installation of Jans Server (or Gluu Flex) available with Casa installed. In a separate machine, ensure you have SSH/SCP/SFTP access to such server and `git` installed. 
+
+!!! Note
+    For the below instructions ensure to replace `<jans-version>` with the version of your Jans Server
+
+1. Download the plugin jar file `https://maven.jans.io/maven/io/jans/casa/plugins/acct-linking/<jans-version>/acct-linking-<jans-version>-jar-with-dependencies.jar` and copy to your server's `/opt/jans/jetty/jans-casa/plugins`
+
+1. Download the utility jar file `https://maven.jans.io/maven/io/jans/agama-inbound/<jans-version>/agama-inbound-<jans-version>.jar` and copy to your server's `/opt/jans/jetty/jans-auth/custom/libs`
+
+1. In the server, create a `casa` directory inside `/opt/jans/jetty/jans-auth/custom/pages`
+
+1. Download the file `https://github.com/JanssenProject/jans/raw/main/jans-casa/plugins/acct-linking/extras/login.xhtml` and copy it to the previously created folder  
+
+1. Download the file `https://github.com/JanssenProject/jans/raw/main/jans-casa/plugins/acct-linking/extras/Casa.py`. Open TUI or the admin UI (for Flex), and locate the custom script whose name is `casa`. Update the contents of the script with the contents of the file 
+
+1. In TUI, ensure the custom script named `agama` is enabled
+
+1. Still in TUI, visit the Clients screen, locate the client labeled "Client for Casa". Add the following redirect URI to the list: `https://<your-jans-host>/jans-casa/pl/acct-linking/user/interlude.zul`. Replace the name of your Jans server accordingly 
+
+1. Run the following commands to generate the archives of the Agama projects
+    
+    ```
+    git clone --depth 1 --branch main --no-checkout https://github.com/JanssenProject/jans.git
+    cd jans
+    git sparse-checkout init --cone
+    git sparse-checkout set docs/agama-catalog/jans/inboundID/project
+    git sparse-checkout set jans-casa/plugins/acct-linking/extras/agama
+    git checkout main
+    cd docs/agama-catalog/jans/inboundID/project
+    zip -r inbound.zip *
+    cd jans-casa/plugins/acct-linking/extras/agama
+    zip -r acctlinking.zip *
+    ```
+
+1. Transfer the zip files to a location in the server, deploy both archives using TUI (Agama menu)
+
+1. Finally restart the authentication server
+
+## Configuration
+
+So far all components required for the Casa inbound identity solution are loaded in the server. When logging to casa, the form presented looks like usual, and once in, the "Accounts linking" menu takes to a page which hints about missing configuration.  
+
+The first step is figuring out the external sites to support. Keep in mind only OpenID or OAuth 2.0 based providers can be onboarded. There is not support for SAML IDPs.
+
+The procedures for getting configuration settings in order to integrate third party providers vary widely. Here, only basic guidelines are given:
+
+- If the provider is OpenId-compliant and supports dynamic client registration, obtain the OP URL and the scopes list to use when requesting user profile information. Most of times the scopes `openid`, `profile` and `email` will fit the bill 
+
+- If the provider is OpenId-compliant and does not support dynamic client registration, obtain the OP URL and scopes as in the previous case, and also a client ID and secret
+
+- If the provider does not support OpenId. Obtain the following:
+
+    - The authorization endpoint URL
+    - The token endpoint URL
+    - The endpoint URL where profile data can be retrieved
+    - Client credentials (ID and secret)
+    - Scopes to use when requesting user profile information
+
+The steps required to grab the above data vary among providers. Normally this is obtained through a sort of administrative developer GUI tool. If you are prompted for a "redirect URI" in such tool, provide `https://<your-jans-host>/jans-auth/fl/callback`.
+
+Now it's time to supply the settings grabbed. The component these configurations are injected to is the Casa accounts linking Agama project. To make the effort easier, this project is bundled with some dummy configuration properties you can use as a template. Proceed as follows:
+
+1. In TUI, open the Agama tab and scroll through the list of projects until the `casa-account-linking` is highlighted
+1. Open the configuration management dialog (press `c`) and choose to export the sample configuration to a file on disk
+1. Apply changes as needed - this is covered in a separate doc page [here](./accts-linking-agama.md). Note you can add or remove sections in the file at will, and that providers can also be disabled so they are not listed in the login page or in Casa app
+1. Still in TUI, choose to import the file you have edited. Then conduct your testing
diff --git a/mkdocs.yml b/mkdocs.yml
index 7ec5213ee9a..fd201f38f61 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -448,6 +448,7 @@ nav:
         - 'Localization': 'casa/administration/localization.md'
         - 'Plugins':
             - '2FA Settings': 'casa/plugins/2fa-settings.md'
+            - 'Accounts Linking': 'casa/plugins/accts-linking/index.md'
             - 'Consent Management': 'casa/plugins/consent-management.md'
             - 'Custom Branding': 'casa/plugins/custom-branding.md'
         - 'FAQ': 'casa/administration/faq.md'

From 6281f1e5df5f49001e672695f4ec9bcac6207187 Mon Sep 17 00:00:00 2001
From: jgomer2001 <bonustrack310@gmail.com>
Date: Tue, 19 Mar 2024 09:16:21 -0500
Subject: [PATCH 4/4] docs: minor rephrasing #7556

Signed-off-by: jgomer2001 <bonustrack310@gmail.com>
---
 docs/casa/plugins/accts-linking/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/casa/plugins/accts-linking/index.md b/docs/casa/plugins/accts-linking/index.md
index 5225ab4afef..2b38548cf80 100644
--- a/docs/casa/plugins/accts-linking/index.md
+++ b/docs/casa/plugins/accts-linking/index.md
@@ -4,7 +4,7 @@
 
 This plugin allows users to "link" their local Jans account with existing accounts at third-party identity providers like OIDC OPs and social sites, e.g. Apple, Facebook, Google, etc.
 
-Besides the usual onboarding of a plugin jar file in Casa, administrators must deploy a number of additional components. This will be regarded later. By now let's summary key points of the accounts linking experience:
+Besides the usual onboarding of a plugin jar file in Casa, administrators must deploy a number of additional components. This will be regarded later. However let's summary the key points of the accounts linking experience:
 
 - When a user tries to login to Casa, the usual username/password form is presented but also a list of links that can take him to external sites (third-party identity providers) where authentication takes place
 - Once authenticated, user profile data is grabbed from the external site - this is all backchannel