From f29b2399d7bd4b591bec51288da0c82aa9d64fdf Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 11:44:34 +0530
Subject: [PATCH 01/82] Update texts

---
 .../src/models/namespaces/myaccount-ns.ts     |  6 ++
 .../translations/en-US/portals/myaccount.ts   | 60 +++++++++-------
 .../translations/fr-FR/portals/myaccount.ts   | 63 ++++++++++-------
 .../translations/pt-BR/portals/myaccount.ts   | 56 ++++++++-------
 .../translations/si-LK/portals/myaccount.ts   | 61 +++++++++-------
 .../translations/ta-IN/portals/myaccount.ts   | 70 +++++++++++--------
 6 files changed, 185 insertions(+), 131 deletions(-)

diff --git a/modules/i18n/src/models/namespaces/myaccount-ns.ts b/modules/i18n/src/models/namespaces/myaccount-ns.ts
index 7b373a1cec1..4b663091a42 100644
--- a/modules/i18n/src/models/namespaces/myaccount-ns.ts
+++ b/modules/i18n/src/models/namespaces/myaccount-ns.ts
@@ -319,6 +319,12 @@ export interface MyAccountNS {
                         description: string;
                         heading: string;
                     };
+                    deleteConfirmation: {
+                        description: string;
+                        heading: string;
+                        content: string;
+                        assertionHint: string;
+                    }
                 };
                 notifications: {
                     removeDevice: Notification;
diff --git a/modules/i18n/src/translations/en-US/portals/myaccount.ts b/modules/i18n/src/translations/en-US/portals/myaccount.ts
index 60081aad31a..be2e2d8cc47 100644
--- a/modules/i18n/src/translations/en-US/portals/myaccount.ts
+++ b/modules/i18n/src/translations/en-US/portals/myaccount.ts
@@ -650,67 +650,76 @@ export const myAccount: MyAccountNS = {
                 }
             },
             fido: {
-                description: "Authenticate yourself by connecting a biometric device or a FIDO key",
+                description: "You can use a FIDO2 security key or biometrics in " +
+                    "your device to sign in to your account.",
                 form: {
-                    label: "Security Device",
-                    placeholder: "Enter a device name",
-                    remove: "Remove the device",
-                    required: "Please enter a name for your security device"
+                    label: "Security Key/Biometrics",
+                    placeholder: "Enter a name for the security key/biometric",
+                    remove: "Remove the security key/biometric",
+                    required: "Please enter a name for your security key/biometric"
                 },
-                heading: "Security Device",
+                heading: "Security Key/Biometrics",
                 modals: {
+                    deleteConfirmation: {
+                        assertionHint: "Please confirm your action.",
+                        content: "This action is irreversible and will permanently delete the security key/biometric.",
+                        description: "If you delete this security key/biometric, you may not be " +
+                            "able to sign in to your account again. Please proceed with caution.",
+                        heading: "Are you sure?"
+                    },
                     deviceRegistrationErrorModal: {
-                        description: "The device registration was interrupted. If this was not intentional you " +
-                            "may retry the same flow or try again with an older security key.",
-                        heading: "Device Registration Failed"
+                        description: "The security key/biometric registration was interrupted. "
+                            + "If this was not intentional you "
+                            + "may retry the same flow or try again with an older security key/biometric.",
+                        heading: "Security Key/Biometric Registration Failed"
                     }
                 },
                 notifications: {
                     removeDevice: {
                         error: {
                             description: "{{description}}",
-                            message: "Error occurred while removing the device"
+                            message: "Error occurred while removing the security key/biometric"
                         },
                         genericError: {
-                            description: "Error occurred while removing the device",
+                            description: "Error occurred while removing the security key/biometric",
                             message: "Something went wrong"
                         },
                         success: {
-                            description: "The device was successfully removed from the list",
-                            message: "Your Device Removed Successfully"
+                            description: "The security key/biometric was successfully removed from the list",
+                            message: "Your Security Key/Biometric Removed Successfully"
                         }
                     },
                     startFidoFlow: {
                         error: {
                             description: "{{description}}",
-                            message: "Error occurred while retrieving the device"
+                            message: "Error occurred while retrieving the security key/biometric"
                         },
                         genericError: {
-                            description: "Error occurred while retrieving the device",
+                            description: "Error occurred while retrieving the security key/biometric",
                             message: "Something went wrong"
                         },
                         success: {
-                            description: "The device was successfully registered and now you can use it as an " +
-                                "authentication factor",
-                            message: "Your Device Registered Successfully"
+                            description: "The security key/biometric was successfully registered and now you " +
+                                "can use it for authentication.",
+                            message: "Your Security Key/Biometric Registered Successfully"
                         }
                     },
                     updateDeviceName: {
                         error: {
                             description: "{{description}}",
-                            message: "Error occurred while updating the security device name"
+                            message: "Error occurred while updating the security key/biometric name"
                         },
                         genericError: {
-                            description: "Error occurred while updating the security device name",
+                            description: "Error occurred while updating the security key/biometric name",
                             message: "Something went wrong"
                         },
                         success: {
-                            description: "The name of your security device was successfully updated",
-                            message: "Security Device name updated successfully"
+                            description: "The name of your security key/biometric was successfully updated",
+                            message: "Security Key/Biometric name updated successfully"
                         }
                     }
                 },
-                tryButton: "Try with an older Device"
+                tryButton: "Try with an older Security Key/Biometric"
             },
             smsOtp: {
                 descriptions: {
@@ -1492,8 +1501,9 @@ export const myAccount: MyAccountNS = {
         },
         mfa: {
             description:
-                "Add an extra layer of protection to your account by configuring multiple steps of authentication.",
-            heading: "Multi-Factor Authentication"
+                "Configure additional authentications to sign in easily or " +
+                "to add an extra layer of security to your account.",
+            heading: "Additional Authentication"
         },
         profile: {
             description: "Manage your personal profile",
diff --git a/modules/i18n/src/translations/fr-FR/portals/myaccount.ts b/modules/i18n/src/translations/fr-FR/portals/myaccount.ts
index 3cef5286baa..997909eb98d 100644
--- a/modules/i18n/src/translations/fr-FR/portals/myaccount.ts
+++ b/modules/i18n/src/translations/fr-FR/portals/myaccount.ts
@@ -668,68 +668,83 @@ export const myAccount: MyAccountNS = {
                 }
             },
             fido: {
-                description: "Authentifiez-vous à l'aide un dispositif biométrique ou dispositif FIDO",
+                description: "Vous pouvez utiliser une clé de sécurité FIDO2 ou des données biométriques" +
+                    " dans votre appareil pour vous connecter à votre compte.",
                 form: {
-                    label: "Dispositif de sécurité",
-                    placeholder: "Entrez un nom pour le dispositif",
-                    remove: "Supprimer le dispositif",
-                    required: "Veuillez saisir un nom pour votre dispositif de sécurité"
+                    label: "Clé de sécurité/Biométrie",
+                    placeholder: "Entrez un nom pour la clé de sécurité/biométrique",
+                    remove: "Retirer la clé de sécurité/biométrique",
+                    required: "Veuillez entrer un nom pour votre clé de sécurité/biométrique"
                 },
-                heading: "à l'aide d'un dispositif de sécurité",
+                heading: "Clé de sécurité/Biométrie",
                 modals: {
+                    deleteConfirmation: {
+                        assertionHint: "Veuillez confirmer votre action.",
+                        content: "Cette action est irréversible et supprimera définitivement " +
+                            "la clé de sécurité/biométrique.",
+                        description: "Si vous supprimez cette clé de sécurité/biométrique, vous ne pourrez " +
+                            "peut-être plus vous connecter à votre compte. Veuillez procéder avec prudence.",
+                        heading: "Es-tu sûr?"
+                    },
                     deviceRegistrationErrorModal: {
-                        description: "L'enregistrement du dispositif a été interrompu. " +
-                            "Si ce n'était pas intentionnel, veuillez recommencer la procédure d'ajout " +
-                            "du dispositif ou réessayer avec un dispositif moins récent.",
-                        heading: "Échec de l'enregistrement du dispositif"
+                        description: "La clé de sécurité/l'enregistrement biométrique a " +
+                            "été interrompu. Si ce n'était pas intentionnel, vous pouvez réessayer le même flux" +
+                            " ou réessayer avec une ancienne clé de sécurité/biométrique.",
+                        heading: "Échec de l'enregistrement de la clé de sécurité/biométrique"
                     }
                 },
                 notifications: {
                     removeDevice: {
                         error: {
                             description: "{{description}}",
-                            message: "Une erreur s'est produite lors de la suppression du dispositif"
+                            message: "Une erreur s'est produite lors de la suppression " +
+                                "de la clé de sécurité/biométrique"
                         },
                         genericError: {
-                            description: "Une erreur s'est produite lors de la suppression du dispositif",
+                            description: "Une erreur s'est produite lors de la " +
+                                "suppression de la clé de sécurité/biométrique",
                             message: "Quelque chose s'est mal passé"
                         },
                         success: {
-                            description: "Le dispositif a été supprimé de votre compte avec succès",
-                            message: "Dispositif retiré avec succès"
+                            description: "La clé de sécurité/biométrique a été supprimée avec succès de la liste",
+                            message: "Votre clé de sécurité/biométrique a été supprimée avec succès"
                         }
                     },
                     startFidoFlow: {
                         error: {
                             description: "{{description}}",
-                            message: "Une erreur s'est produite lors de l'accès au dispositif"
+                            message: "Une erreur s'est produite lors de la récupération " +
+                                "de la clé de sécurité/biométrique"
                         },
                         genericError: {
-                            description: "Une erreur s'est produite lors de l'accès au dispositif",
+                            description: "Une erreur s'est produite lors de la récupération" +
+                                " de la clé de sécurité/biométrique",
                             message: "Quelque chose s'est mal passé"
                         },
                         success: {
-                            description: "Le dispositif a été enregistré avec succès. Vous pouvez dès " +
-                                "à présent l'utiliser comme un facteur d'authentification",
-                            message: "Votre dispositif a été enregistré avec succès"
+                            description: "La clé de sécurité/biométrique a été enregistrée " +
+                                "avec succès et vous pouvez maintenant l'utiliser pour l'authentification.",
+                            message: "Votre clé de sécurité/biométrique enregistrée avec succès"
                         }
                     },
                     updateDeviceName: {
                         error: {
                             description: "{{description}}",
-                            message: "Une erreur s'est produite lors de la mise à jour du nom du dispositif"
+                            message: "Une erreur s'est produite lors de la mise à jour " +
+                                "de la clé de sécurité/du nom biométrique"
                         },
                         genericError: {
-                            description: "Une erreur s'est produite lors de la mise à jour du nom du dispositif",
+                            description: "Une erreur s'est produite lors de la mise à " +
+                                "jour de la clé de sécurité/du nom biométrique",
                             message: "Quelque chose s'est mal passé"
                         },
                         success: {
-                            description: "Le nom de votre dispositif a été mis à jour avec succès",
-                            message: "Nom du dispositif mis à jour avec succès"
+                            description: "Le nom de votre clé de sécurité/biométrique a été mis à jour avec succès",
+                            message: "Clé de sécurité/Nom biométrique mis à jour avec succès"
                         }
                     }
                 },
-                tryButton: "Essayez avec un dispositif moins récent"
+                tryButton: "Essayez avec une ancienne clé de sécurité/biométrique"
             },
             smsOtp: {
                 descriptions: {
diff --git a/modules/i18n/src/translations/pt-BR/portals/myaccount.ts b/modules/i18n/src/translations/pt-BR/portals/myaccount.ts
index b7fff2ae58c..f66c6a234e6 100644
--- a/modules/i18n/src/translations/pt-BR/portals/myaccount.ts
+++ b/modules/i18n/src/translations/pt-BR/portals/myaccount.ts
@@ -650,68 +650,76 @@ export const myAccount: MyAccountNS = {
                 }
             },
             fido: {
-                description: "Autentique-se conectando uma chave FIDO",
+                description: "Você pode usar uma chave de segurança FIDO2 ou biometria em seu dispositivo " +
+                    "para fazer login em sua conta.",
                 form: {
-                    label: "Dispositivo de segurança",
-                    placeholder: "Digite o nome do dispositivo",
-                    remove: "Retire o dispositivo",
-                    required: "Digite um nome para o seu dispositivo de segurança"
+                    label: "Chave de segurança/biometria",
+                    placeholder: "Insira um nome para a chave de segurança/biométrico",
+                    remove: "Remova a chave de segurança/biométrica",
+                    required: "Insira um nome para sua chave de segurança/biometria"
                 },
-                heading: "FIDO",
+                heading: "Chave de segurança/biometria",
                 modals: {
+                    deleteConfirmation: {
+                        assertionHint: "Por favor, confirme sua ação.",
+                        content: "Esta ação é irreversível e excluirá permanentemente a chave de segurança/biométrica.",
+                        description: "Se você excluir essa chave de segurança/biométrica, talvez não consiga fazer" +
+                            " login na sua conta novamente. Por favor, prossiga com cautela.",
+                        heading: "Tem certeza?"
+                    },
                     deviceRegistrationErrorModal: {
-                        description: "O registro do dispositivo foi interrompido. Se isso não foi intencional, tente " +
-                            "novamente o mesmo fluxo ou tente novamente com uma chave de segurança mais antiga.",
-                        heading: "Falha no registro do dispositivo"
+                        description: "TA chave de segurança/registro biométrico foi interrompido. " +
+                            "Se isso não foi intencional, você pode tentar novamente o mesmo fluxo ou tentar " +
+                            "novamente com uma chave de segurança/biométrica mais antiga.",
+                        heading: "Falha no registro biométrico/chave de segurança"
                     }
                 },
                 notifications: {
                     removeDevice: {
                         error: {
                             description: "{{description}}",
-                            message: "Ocorreu um erro ao remover o dispositivo"
+                            message: "Ocorreu um erro ao remover a chave de segurança/biométrica"
                         },
                         genericError: {
-                            description: "Ocorreu um erro ao remover o dispositivo",
+                            description: "Ocorreu um erro ao remover a chave de segurança/biométrica",
                             message: "Algo deu errado"
                         },
                         success: {
-                            description: "O dispositivo foi removido com sucesso da lista",
-                            message: "Seu dispositivo foi removido com sucesso"
+                            description: "A chave de segurança/biometria foi removida com sucesso da lista",
+                            message: "Sua chave de segurança/biométrico removido com sucesso"
                         }
                     },
                     startFidoFlow: {
                         error: {
                             description: "{{description}}",
-                            message: "Ocorreu um erro ao recuperar o dispositivo"
+                            message: "Ocorreu um erro ao recuperar a chave de segurança/biométrica"
                         },
                         genericError: {
-                            description: "Ocorreu um erro ao recuperar o dispositivo",
+                            description: "Ocorreu um erro ao recuperar a chave de segurança/biométrica",
                             message: "Algo deu errado"
                         },
                         success: {
-                            description: "O dispositivo foi registrado com sucesso e agora você pode usá-lo como" +
-                                " um fator de autenticação",
-                            message: "Seu dispositivo registrado com sucesso"
+                            description: "A chave de segurança/biométrica foi registrada com sucesso " +
+                                "e agora você pode usá-la para autenticação.",
+                            message: "Sua chave de segurança/biométrico registrado com sucesso"
                         }
                     },
                     updateDeviceName: {
                         error: {
                             description: "{{description}}",
-                            message: "Ocorreu um erro ao atualizar o nome do dispositivo de segurança"
+                            message: "Ocorreu um erro ao atualizar a chave de segurança/nome biométrico"
                         },
                         genericError: {
-                            description: "Erro ao atualizar o nome do dispositivo de segurança",
+                            description: "Ocorreu um erro ao atualizar a chave de segurança/nome biométrico",
                             message: "Algo deu errado"
                         },
                         success: {
-                            description:
-                                "O nome do seu dispositivo de segurança foi atualizado com sucesso",
-                            message: "Nome do dispositivo de segurança atualizado com sucesso"
+                            description: "O nome da sua chave de segurança/biometria foi atualizado com sucesso",
+                            message: "Chave de segurança/nome biométrico atualizado com sucesso"
                         }
                     }
                 },
-                tryButton: "Tente com um dispositivo mais antigo"
+                tryButton: "Tente com uma chave de segurança/biométrica mais antiga"
             },
             smsOtp: {
                 descriptions: {
diff --git a/modules/i18n/src/translations/si-LK/portals/myaccount.ts b/modules/i18n/src/translations/si-LK/portals/myaccount.ts
index d34f80205d4..cac12504be4 100644
--- a/modules/i18n/src/translations/si-LK/portals/myaccount.ts
+++ b/modules/i18n/src/translations/si-LK/portals/myaccount.ts
@@ -649,68 +649,75 @@ export const myAccount: MyAccountNS = {
                 }
             },
             fido: {
-                description: "FIDO යතුරක් සම්බන්ධ කිරීමෙන් සත්\u200Dයාපනය කිරීම",
+                description: "ඔබට ඔබගේ ගිණුමට පුරනය වීමට ඔබගේ උපාංගයේ FIDO2 ආරක්‍ෂක යතුරක් හෝ ජෛවමිතික භාවිත කළ හැක.",
                 form: {
-                    label: "ආරක්ෂක උපාංගය",
-                    placeholder: "උපාංග නාමයක් ඇතුළත් කරන්න",
-                    remove: "උපාංගය ඉවත් කරන්න",
-                    required: "කරුණාකර ඔබගේ ආරක්ෂක උපාංගයේ නම ඇතුළත් කරන්න"
+                    label: "ආරක්ෂක යතුර/ජීවමිතික",
+                    placeholder: "ආරක්ෂක යතුර/ජීවමිතික සඳහා නමක් ඇතුළත් කරන්න",
+                    remove: "ආරක්ෂක යතුර/ජීවමිතික ඉවත් කරන්න",
+                    required: "කරුණාකර ඔබගේ ආරක්ෂක යතුර/ජෛවමිතික සඳහා නමක් ඇතුළත් කරන්න"
                 },
-                heading: "FIDO",
+                heading: "ආරක්ෂක යතුර/ජීවමිතික",
                 modals: {
+                    deleteConfirmation: {
+                        assertionHint: "කරුණාකර ඔබගේ ක්‍රියාව තහවුරු කරන්න.",
+                        content: "මෙම ක්‍රියාව ආපසු හැරවිය නොහැකි අතර ආරක්ෂක යතුර/ජෛවමිතික ස්ථිරවම මකනු ඇත.",
+                        description: "ඔබ මෙම ආරක්‍ෂක යතුර/ජීවමිතික මකා දැමුවහොත්, ඔබට නැවත ඔබගේ ගිණුමට " +
+                            "පුරනය වීමට නොහැකි විය හැක. කරුණාකර ප්‍රවේශමෙන් ඉදිරියට යන්න.",
+                        heading: "ඔයාට විශ්වාස ද?"
+                    },
                     deviceRegistrationErrorModal: {
-                        description:
-                            "උපාංග ලියාපදිංචිය බාධා විය. මෙය හිතාමතා නොකළේ නම්, ඔබට එම ප්‍රවාහය නැවත උත්සාහ කළ " +
-                            "හැකිය, නැතහොත් පැරණි ආරක්ෂක යතුරක් සමඟ නැවත උත්සාහ කරන්න.",
-                        heading: "උපාංග ලියාපදිංචි කිරීම අසාර්ථක විය"
+                        description: "ආරක්ෂක යතුර/ජීවමිතික ලියාපදිංචිය බාධා විය. මෙය චේතනාන්විත නොවේ නම්, " +
+                            "ඔබට එම ප්‍රවාහයම නැවත උත්සාහ කිරීමට හෝ පැරණි ආරක්ෂක " +
+                            "යතුරක්/ජෛවමිතික සමඟ නැවත උත්සාහ කිරීමට හැකිය.",
+                        heading: "ආරක්ෂිත යතුර/ජීවමිතික ලියාපදිංචිය අසාර්ථක විය"
                     }
                 },
                 notifications: {
                     removeDevice: {
                         error: {
                             description: "{{description}}",
-                            message: "උපාංගය ඉවත් කිරීමේදී දෝෂයක් ඇතිවිය"
+                            message: "ආරක්ෂක යතුර/ජීවමිතික ඉවත් කිරීමේදී දෝෂයක් සිදු විය"
                         },
                         genericError: {
-                            description: "උපාංගය ඉවත් කිරීමේදී දෝෂයක් ඇතිවිය",
-                            message: "දෝෂයක් ඇතිවිය!!!"
+                            description: "ආරක්ෂක යතුර/ජීවමිතික ඉවත් කිරීමේදී දෝෂයක් සිදු විය",
+                            message: "මොකක්හරි වැරැද්දක් වෙලා"
                         },
                         success: {
-                            description: "උපාංගය ලැයිස්තුවෙන් සාර්ථකව ඉවත් කරන ලදි",
-                            message: "ඔබගේ උපාංගය සාර්ථකව ඉවත් කරන ලදි"
+                            description: "ආරක්ෂිත යතුර/ජීවමිතික ලැයිස්තුවෙන් සාර්ථකව ඉවත් කරන ලදී",
+                            message: "ඔබගේ ආරක්‍ෂක යතුර/ජීවමිතික සාර්ථකව ඉවත් කරන ලදී"
                         }
                     },
                     startFidoFlow: {
                         error: {
                             description: "{{description}}",
-                            message: "උපාංගය ලියාපදිංචි කිරීමේදී දෝෂයක් ඇතිවිය"
+                            message: "ආරක්ෂක යතුර/ජීවමිතික ලබා ගැනීමේදී දෝෂයක් සිදු විය"
                         },
                         genericError: {
-                            description: "උපාංගය ලියාපදිංචි කිරීමේදී දෝෂයක් ඇතිවිය",
-                            message: "දෝෂයක් ඇතිවිය!!!"
+                            description: "ආරක්ෂක යතුර/ජීවමිතික ලබා ගැනීමේදී දෝෂයක් සිදු විය",
+                            message: "මොකක්හරි වැරැද්දක් වෙලා"
                         },
                         success: {
-                            description:
-                                "උපාංගය සාර්ථකව ලියාපදිංචි කර ඇති අතර දැන් ඔබට එය සත්‍යාපන සාධකයක් ලෙස භාවිතා කළ හැකිය",
-                            message: "ඔබගේ උපාංගය සාර්ථකව ලියාපදිංචි කර ඇත"
+                            description: "ආරක්ෂිත යතුර/ජීවමිතික සාර්ථකව ලියාපදිංචි කර ඇති අතර දැන් " +
+                                "ඔබට එය සත්‍යාපනය සඳහා භාවිතා කළ හැක.",
+                            message: "ඔබගේ ආරක්‍ෂක යතුර/ජෛවමිතික සාර්ථකව ලියාපදිංචි විය"
                         }
                     },
                     updateDeviceName: {
                         error: {
                             description: "{{description}}",
-                            message: "ආරක්ෂක උපාංගයේ නම යාවත්කාලීන කිරීමේදී දෝෂයක් ඇතිවිය"
+                            message: "ආරක්ෂක යතුර/ජෛවමිතික නම යාවත්කාලීන කිරීමේදී දෝෂයක් ඇති විය"
                         },
                         genericError: {
-                            description: "ආරක්ෂක උපාංගයේ නම යාවත්කාලීන කිරීමේදී දෝෂයක් ඇතිවිය",
-                            message: "දෝෂයක් ඇතිවිය!!!"
+                            description: "ආරක්ෂක යතුර/ජෛවමිතික නම යාවත්කාලීන කිරීමේදී දෝෂයක් ඇති විය",
+                            message: "මොකක්හරි වැරැද්දක් වෙලා"
                         },
                         success: {
-                            description: "ඔබගේ ආරක්ෂක උපාංගයේ නම සාර්ථකව යාවත්කාලීන කරන ලදි",
-                            message: "ආරක්ෂක උපාංගයේ නම සාර්ථකව යාවත්කාලීන කරන ලදි"
+                            description: "ඔබගේ ආරක්‍ෂක යතුර/ජෛවමිතික නම සාර්ථකව යාවත්කාලීන කරන ලදී",
+                            message: "ආරක්ෂිත යතුර/ජෛවමිතික නම සාර්ථකව යාවත්කාලීන කරන ලදී"
                         }
                     }
                 },
-                tryButton: "පැරණි උපාංගයක් සමඟ උත්සාහ කරන්න"
+                tryButton: "පැරණි ආරක්ෂක යතුරක්/Biometric සමඟ උත්සාහ කරන්න"
             },
             smsOtp: {
                 descriptions: {
diff --git a/modules/i18n/src/translations/ta-IN/portals/myaccount.ts b/modules/i18n/src/translations/ta-IN/portals/myaccount.ts
index 9d4507ac4f9..b785bcd82eb 100644
--- a/modules/i18n/src/translations/ta-IN/portals/myaccount.ts
+++ b/modules/i18n/src/translations/ta-IN/portals/myaccount.ts
@@ -654,71 +654,79 @@ export const myAccount: MyAccountNS = {
                 }
             },
             fido: {
-                description: "FIDO கருவியினை இணைப்பதானூடாக உங்களை உறுதிப்படுத்திக் கொள்ளுங்கள்",
+                description: "உங்கள் கணக்கில் உள்நுழைய, உங்கள் சாதனத்தில் FIDO2 பாதுகாப்பு விசை அல்லது " +
+                    "பயோமெட்ரிக்ஸைப் பயன்படுத்தலாம்.",
                 form: {
-                    label: "பாதுகாப்பு கருவி",
-                    placeholder: "கருவியின் பெயரை உள்ளிடுக",
-                    remove: "கருவியினை நீக்கு",
-                    required: "உங்களின் பாதுகாப்பு கருவியின் பெயரை உள்ளிடுக"
+                    label: "பாதுகாப்பு விசை/பயோமெட்ரிக்ஸ்",
+                    placeholder: "பாதுகாப்பு விசை/பயோமெட்ரிக் பெயரை உள்ளிடவும்",
+                    remove: "பாதுகாப்பு விசை/பயோமெட்ரிக்கை அகற்றவும்",
+                    required: "உங்கள் பாதுகாப்பு விசை/பயோமெட்ரிக் பெயரை உள்ளிடவும்"
                 },
-                heading: "FIDO",
+                heading: "பாதுகாப்பு விசை/பயோமெட்ரிக்ஸ்",
                 modals: {
+                    deleteConfirmation: {
+                        assertionHint: "உங்கள் செயலை உறுதிப்படுத்தவும்.",
+                        content: "இந்தச் செயல் மீள முடியாதது மற்றும் பாதுகாப்பு " +
+                            "விசை/பயோமெட்ரிக் நிரந்தரமாக நீக்கப்படும்.",
+                        description: "இந்த பாதுகாப்பு விசை/பயோமெட்ரிக்கை " +
+                            "நீக்கினால், உங்கள் கணக்கில் மீண்டும் உள்நுழைய " +
+                            "முடியாமல் போகலாம். எச்சரிக்கையுடன் தொடரவும்.",
+                        heading: "நீ சொல்வது உறுதியா?"
+                    },
                     deviceRegistrationErrorModal: {
-                        description: "அவர் சாதன பதிவு தடைப்பட்டது. இது வேண்டுமென்றே இல்லையென்றால், நீங்கள் அதே " +
-                            "ஓட்டத்தை மீண்டும் முயற்சிக்கலாம் அல்லது பழைய பாதுகாப்பு விசையுடன் மீண்டும் முயற்சி " +
-                            "செய்யலாம்.",
-                        heading: "சாதன பதிவு தோல்வியுற்றது"
+                        description: "பாதுகாப்பு விசை/பயோமெட்ரிக் பதிவு தடைபட்டது. இது வேண்டுமென்றே " +
+                            "செய்யப்படவில்லை என்றால், நீங்கள் அதே ஓட்டத்தை " +
+                            "மீண்டும் முயற்சிக்கலாம் அல்லது பழைய பாதுகாப்பு " +
+                            "விசை/பயோமெட்ரிக் மூலம் மீண்டும் முயற்சிக்கலாம்.",
+                        heading: "பாதுகாப்பு விசை/பயோமெட்ரிக் பதிவு தோல்வியடைந்தது"
                     }
                 },
                 notifications: {
                     removeDevice: {
                         error: {
                             description: "{{description}}",
-                            message: "சாதனத்தை அகற்றும்போது பிழை ஏற்பட்டது"
+                            message: "பாதுகாப்பு விசை/பயோமெட்ரிக்கை அகற்றும்போது பிழை ஏற்பட்டது"
                         },
                         genericError: {
-                            description: "சாதனத்தை அகற்றும்போது பிழை ஏற்பட்டது",
-                            message: "ஏதோ ஒரு தவறு ஏற்பட்டுவிட்டது"
+                            description: "பாதுகாப்பு விசை/பயோமெட்ரிக்கை அகற்றும்போது பிழை ஏற்பட்டது",
+                            message: "ஏதோ தவறு நடந்துவிட்டது"
                         },
                         success: {
-                            description: "சாதனம் பட்டியலிலிருந்து வெற்றிகரமாக அகற்றப்பட்டது",
-                            message: "உங்கள் சாதனம் வெற்றிகரமாக அகற்றப்பட்டது"
+                            description: "பட்டியலிலிருந்து பாதுகாப்பு விசை/பயோமெட்ரிக் வெற்றிகரமாக அகற்றப்பட்டது",
+                            message: "உங்கள் பாதுகாப்புச் சாவி/பயோமெட்ரிக் வெற்றிகரமாக அகற்றப்பட்டது"
                         }
                     },
                     startFidoFlow: {
                         error: {
-                            description: "கருவிகளின் பட்டியலை பெறும் பொழுது தவறேற்பட்டுவிட்டது",
-                            message: "ஏதோ ஒரு தவறு ஏற்பட்டுவிட்டது !!!"
+                            description: "{{description}}",
+                            message: "பாதுகாப்பு விசை/பயோமெட்ரிக்கை மீட்டெடுப்பதில் பிழை ஏற்பட்டது"
                         },
                         genericError: {
-                            description: "உங்களின் கருவியினை பதிவு செய்யும் பொழுது தவறேற்பட்டுவிட்டது.",
-                            message: "ஏதோ ஒரு தவறு ஏற்பட்டுவிட்டது !!!"
+                            description: "பாதுகாப்பு விசை/பயோமெட்ரிக்கை மீட்டெடுப்பதில் பிழை ஏற்பட்டது",
+                            message: "ஏதோ தவறு நடந்துவிட்டது"
                         },
                         success: {
-                            description:
-                                "உங்கள் கருவி வெற்றிகரமாக பதிவு செய்யப்பட்டுவிட்டது. " +
-                                "இதனை, இனி, நீங்கள் உங்களது உறுதிப்பாட்டு காரணியாக பயன்படுத்திக் கொள்ளலாம்.",
-                            message: "உங்கள் கருவி பதிவு செய்யப்பட்டுவிட்டது."
+                            description: "பாதுகாப்பு விசை/பயோமெட்ரிக் வெற்றிகரமாக பதிவுசெய்யப்பட்டது, " +
+                                "இப்போது நீங்கள் அங்கீகாரத்திற்காக அதைப் பயன்படுத்தலாம்.",
+                            message: "உங்கள் பாதுகாப்புச் சாவி/பயோமெட்ரிக் பதிவுசெய்யப்பட்டது"
                         }
                     },
                     updateDeviceName: {
                         error: {
                             description: "{{description}}",
-                            message: "பாதுகாப்பு கருவியின் பெயரைப் புதுப்பிக்கும்போது தவறு ஏற்பட்டுவிட்டது"
+                            message: "பாதுகாப்பு விசை/பயோமெட்ரிக் பெயரைப் புதுப்பிக்கும்போது பிழை ஏற்பட்டது"
                         },
                         genericError: {
-                            description: "உங்களின் பாதுகாப்பு கருவியின் பெயரைப் புதுப்பிக்கும்போது தவறு " +
-                                "ஏற்பட்டுவிட்டது",
-                            message: "ஏதோ ஒரு தவறு ஏற்பட்டுவிட்டது !!!"
+                            description: "பாதுகாப்பு விசை/பயோமெட்ரிக் பெயரைப் புதுப்பிக்கும்போது பிழை ஏற்பட்டது",
+                            message: "ஏதோ தவறு நடந்துவிட்டது"
                         },
                         success: {
-                            description:
-                                "உங்கள் பாதுகாப்பு கருவியின் பெயர் வெற்றிகரமாக புதுப்பிக்கப்பட்டது.",
-                            message: "பாதுகாப்பு கருவியின் பெயர் வெற்றிகரமாக புதுப்பிக்கப்பட்டது."
+                            description: "உங்கள் பாதுகாப்பு விசை/பயோமெட்ரிக் பெயர் வெற்றிகரமாக புதுப்பிக்கப்பட்டது",
+                            message: "பாதுகாப்புச் சாவி/பயோமெட்ரிக் பெயர் வெற்றிகரமாகப் புதுப்பிக்கப்பட்டது"
                         }
                     }
                 },
-                tryButton: "பழைய சாதனத்துடன் முயற்சிக்கவும்"
+                tryButton: "பழைய பாதுகாப்பு விசை/பயோமெட்ரிக் மூலம் முயற்சிக்கவும்"
             },
             smsOtp: {
                 descriptions: {

From 021017a01effbcde36ea4a9a5f603f8ca3f13610 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 11:44:41 +0530
Subject: [PATCH 02/82] Add loader bar styles

---
 .../definitions/apps/login-portal.less        | 34 +++++++++++++++++++
 1 file changed, 34 insertions(+)

diff --git a/modules/theme/src/theme-core/definitions/apps/login-portal.less b/modules/theme/src/theme-core/definitions/apps/login-portal.less
index b8984a3aa80..7a3547d42e3 100644
--- a/modules/theme/src/theme-core/definitions/apps/login-portal.less
+++ b/modules/theme/src/theme-core/definitions/apps/login-portal.less
@@ -192,4 +192,38 @@
     }
 }
 
+/*-----------------------------
+        Loader Bar
+------------------------------*/
+.loader-bar{
+    width: calc(100% + 84px);
+    height: 0.2em;
+    background-color: fade(@primaryColor, 50%);
+    margin-top: -42px;
+    margin-left: -42px;
+    border-top-left-radius: 3px;
+    border-top-right-radius: 3px;
+    overflow: hidden;
+}
+.loader-bar::before {
+    width: 50%;
+    height: 0.2em;
+    background-color: @primaryColor;
+    content: "";
+    display: block;
+    margin-left: -50%;
+    animation-duration: 1s;
+    animation-name: loader-bar-motion;
+    animation-iteration-count: infinite;
+    animation-timing-function: linear;
+}
+@keyframes loader-bar-motion {
+    from {
+        margin-left: -50%;
+    }
+    to {
+        margin-left: 100%;
+    }
+}
+
 .loadUIOverrides();

From b51d9de5ecd5389f4540d5233ad7326fe6076d3f Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 11:44:56 +0530
Subject: [PATCH 03/82] Fix button styling issue

---
 .../myaccount/src/components/shared/modal.tsx | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/apps/myaccount/src/components/shared/modal.tsx b/apps/myaccount/src/components/shared/modal.tsx
index 12619a5db59..3e55531c0fb 100644
--- a/apps/myaccount/src/components/shared/modal.tsx
+++ b/apps/myaccount/src/components/shared/modal.tsx
@@ -17,7 +17,8 @@
  */
 
 import { TestableComponentInterface } from "@wso2is/core/models";
-import React, { MouseEvent } from "react";
+import { PrimaryButton } from "@wso2is/react-components";
+import React, { MouseEvent, ReactElement } from "react";
 import { Button, Icon, Modal, ModalProps } from "semantic-ui-react";
 
 /**
@@ -32,7 +33,7 @@ interface ModalComponentProps extends ModalProps, TestableComponentInterface {
     onSecondaryActionClick?: (e: MouseEvent<HTMLElement>) => void;
 }
 
-export const ModalComponent = (props: ModalComponentProps) => {
+export const ModalComponent = (props: ModalComponentProps): ReactElement => {
 
     const {
         children,
@@ -127,12 +128,12 @@ export const ModalComponent = (props: ModalComponentProps) => {
             );
         } else {
             return (
-                    <Icon
-                        className="modal-icon"
-                        name="info circle"
-                        size="huge"
-                        color="blue"
-                    />
+                <Icon
+                    className="modal-icon"
+                    name="info circle"
+                    size="huge"
+                    color="blue"
+                />
             );
         }
     };
@@ -162,12 +163,11 @@ export const ModalComponent = (props: ModalComponentProps) => {
                 >
                     { secondaryAction }
                 </Button>
-                <Button
-                    className={ `${ type }-modal-primary-button` }
+                <PrimaryButton
                     onClick={ () => onPrimaryActionClick() }
                 >
                     { primaryAction }
-                </Button>
+                </PrimaryButton>
             </Modal.Actions>
         </Modal>
     );

From a245f285e3b8629ea927debc9ad07b3f58f1559c Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 11:45:03 +0530
Subject: [PATCH 04/82] Add delete confirmation modal

---
 .../authenticators/fido-authenticator.tsx     | 85 +++++++++++++++----
 1 file changed, 67 insertions(+), 18 deletions(-)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index ac6f0444b43..568aa0e5c81 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -18,9 +18,9 @@
 
 import { TestableComponentInterface } from "@wso2is/core/models";
 import { Field, Forms } from "@wso2is/forms";
-import { GenericIcon } from "@wso2is/react-components";
+import { ConfirmationModal, GenericIcon } from "@wso2is/react-components";
 import isEmpty from "lodash-es/isEmpty";
-import React, { useEffect, useState } from "react";
+import React, { ReactElement, useEffect, useState } from "react";
 import { useTranslation } from "react-i18next";
 import { useDispatch, useSelector } from "react-redux";
 import { Button, Form, Grid, Icon, List, ModalContent, Popup } from "semantic-ui-react";
@@ -61,13 +61,14 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
 
     const { onAlertFired, ["data-testid"]: testId } = props;
     const { t } = useTranslation();
-    const [deviceList, setDeviceList] = useState<FIDODevice[]>([]);
-    const [isDeviceErrorModalVisible, setDeviceErrorModalVisibility] = useState(false);
-    const [isDeviceSuccessModalVisible, setIsDeviceSuccessModalVisibility] = useState(false);
-    const [recentFIDOName, setRecentFIDOName] = useState("");
-    const [recentFIDONameError, setRecentFIDONameError] = useState(false);
-    const [recentlyAddedDevice, setRecentlyAddedDevice] = useState<string>();
-    const [editFIDO, setEditFido] = useState<Map<string, boolean>>();
+    const [ deviceList, setDeviceList ] = useState<FIDODevice[]>([]);
+    const [ isDeviceErrorModalVisible, setDeviceErrorModalVisibility ] = useState(false);
+    const [ isDeviceSuccessModalVisible, setIsDeviceSuccessModalVisibility ] = useState(false);
+    const [ recentFIDOName, setRecentFIDOName ] = useState("");
+    const [ recentFIDONameError, setRecentFIDONameError ] = useState(false);
+    const [ recentlyAddedDevice, setRecentlyAddedDevice ] = useState<string>();
+    const [ editFIDO, setEditFido ] = useState<Map<string, boolean>>();
+    const [ deleteKey, setDeleteKey ] = useState<string>("");
 
     const activeForm: string = useSelector((state: AppState) => state.global.activeForm);
     const dispatch = useDispatch();
@@ -89,11 +90,12 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
 
     const getFidoMetaData = () => {
         let devices: FIDODevice[] = [];
+
         getMetaData()
             .then((response) => {
                 if (response.status === 200) {
                     if (response.data.length > 0) {
-                        devices = [...response.data];
+                        devices = [ ...response.data ];
                     }
                     setDeviceList(devices);
                 }
@@ -114,7 +116,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
         if (!isEmpty(recentlyAddedDevice)) {
             getFidoMetaData();
         }
-    }, [recentlyAddedDevice]);
+    }, [ recentlyAddedDevice ]);
 
     /**
      * This function fires a notification on successful removal of a device.
@@ -218,6 +220,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
      */
     const cancelEdit = (id: string) => {
         const tempEditFido: Map<string, boolean> = new Map(editFIDO);
+
         tempEditFido.set(id, false);
         setEditFido(tempEditFido);
         dispatch(setActiveForm(null));
@@ -228,6 +231,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
             .then(() => {
                 cancelEdit(id);
                 getFidoMetaData();
+                setDeleteKey("");
                 fireDeletionSuccessNotification();
             }).catch((error) => {
                 fireDeletionFailureNotification(error);
@@ -290,11 +294,52 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
      */
     const showEdit = (id: string) => {
         const tempEditFido: Map<string, boolean> = new Map(editFIDO);
+
         tempEditFido.set(id, true);
         setEditFido(tempEditFido);
         dispatch(setActiveForm(CommonConstants.SECURITY + FIDO + id));
     };
 
+    /**
+     * This methods generates and returns the delete confirmation modal.
+     *
+     * @returns {ReactElement} Generates the delete confirmation modal.
+     */
+    const generateDeleteConfirmationModal = (): ReactElement => (
+        <ConfirmationModal
+            data-testid={ `${ testId }-confirmation-modal` }
+            onClose={ (): void => setDeleteKey("") }
+            type="negative"
+            open={ Boolean(deleteKey) }
+            assertionHint={ t("console:manage.features.user.deleteUser.confirmationModal." +
+                "assertionHint") }
+            assertionType="checkbox"
+            primaryAction={ t("common:confirm") }
+            secondaryAction={ t("common:cancel") }
+            onSecondaryActionClick={ (): void => {
+                setDeleteKey("");
+            } }
+            onPrimaryActionClick={ (): void => removeDevice(deleteKey) }
+            closeOnDimmerClick={ false }
+        >
+            <ConfirmationModal.Header data-testid={ `${ testId }-confirmation-modal-header` }>
+                { t("myaccount:components:mfa:fido:modals:deleteConfirmation:heading") }
+            </ConfirmationModal.Header>
+            <ConfirmationModal.Message
+                data-testid={ `${ testId }-confirmation-modal-message` }
+                attached
+                negative
+            >
+                { t("myaccount:components:mfa:fido:modals:deleteConfirmation:description") }
+            </ConfirmationModal.Message>
+            <ConfirmationModal.Content data-testid={ `${ testId }-confirmation-modal-content` }>
+                {
+                    t("myaccount:components:mfa:fido:modals:deleteConfirmation:content")
+                }
+            </ConfirmationModal.Content>
+        </ConfirmationModal>
+    );
+
     /**
      * Device registration error modal.
      *
@@ -426,8 +471,9 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                     editFIDO?.get(device.credential.credentialId)
                                         && activeForm?.startsWith(CommonConstants.SECURITY+FIDO)
                                         ? (
-                                            <EditSection key={ device.credential.credentialId }
-                                                         data-testid={ `${testId}-device-${index}-edit-section` }>
+                                            <EditSection
+                                                key={ device.credential.credentialId }
+                                                data-testid={ `${testId}-device-${index}-edit-section` }>
                                                 <Grid>
                                                     <Grid.Row columns={ 2 }>
                                                         <Grid.Column width={ 4 }>
@@ -501,8 +547,10 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                             </EditSection>
                                         )
                                         : (
-                                            <List.Item className="inner-list-item" key={ index }
-                                                       data-testid={ `${testId}-devices-list-item` }>
+                                            <List.Item
+                                                className="inner-list-item"
+                                                key={ index }
+                                                data-testid={ `${testId}-devices-list-item` }>
                                                 <Grid padded={ true }>
                                                     <Grid.Row columns={ 2 } className="first-column">
                                                         <Grid.Column width={ 11 }>
@@ -550,7 +598,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                                                             className="list-icon"
                                                                             onClick={
                                                                                 () => {
-                                                                                    removeDevice(
+                                                                                    setDeleteKey(
                                                                                         device.credential
                                                                                             .credentialId
                                                                                     );
@@ -578,14 +626,15 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                         floated="left"
                                         name="info circle"
                                     />
-                                    You don&apos;t have any devices registered yet.
-                            </p>
+                                    You don&apos;t have any security key/biometric registered yet.
+                                </p>
                             </>
                         )
                 }
             </div>
             <>{ deviceErrorModal() }</>
             <>{ deviceRegistrationSuccessModal() }</>
+            { deleteKey && generateDeleteConfirmationModal() }
         </>
     );
 };

From ca4acf625f58fce112ec820f683b90b5ebce2e10 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 11:45:16 +0530
Subject: [PATCH 05/82] Update styling of fido2 auth page

---
 .../src/main/webapp/fido2-auth.jsp            | 21 ++++++++++++-------
 1 file changed, 14 insertions(+), 7 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index 4d2bf3598ee..4a35f7266b9 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -49,8 +49,7 @@
     <% } %>
 
     <main class="center-segment">
-        <div class="ui container medium center aligned middle">
-
+        <div class="ui container center aligned medium middle">
             <!-- product-title -->
             <%
                 File productTitleFile = new File(getServletContext().getRealPath("extensions/product-title.jsp"));
@@ -61,16 +60,24 @@
                 <jsp:include page="includes/product-title.jsp"/>
             <% } %>
 
-            <div class="ui segment center aligned">
+            <div class="ui segment left aligned">
+                <div class="loader-bar"></div>
+
                 <h3 class="ui header">
                     <%=AuthenticationEndpointUtil.i18n(resourceBundle, "verification")%>
                 </h3>
-
-                <%=AuthenticationEndpointUtil.i18n(resourceBundle, "touch.your.u2f.device")%>
-
                 <div class="ui divider hidden"></div>
+                <div class="ui two column left aligned stackable grid">
+                    <div class="middle aligned row">
+                        <div class="six wide column">
+                            <img class="img-responsive" src="images/U2F.png" />
+                        </div>
+                        <div class="ten wide column">
+                            <%=AuthenticationEndpointUtil.i18n(resourceBundle, "touch.your.u2f.device")%>
+                        </div>
+                </div>
+
 
-                <div> <img class="img-responsive" src="images/U2F.png"> </div>
 
                 <form method="POST" action="<%=commonauthURL%>" id="form" onsubmit="return false;">
                     <input type="hidden" name="sessionDataKey" value='<%=Encode.forHtmlAttribute(request.getParameter("sessionDataKey"))%>'/>

From e40800ab5f19dfeed0eed8478f289ac68d18211f Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 11:45:23 +0530
Subject: [PATCH 06/82] Update texts

---
 .../authentication/endpoint/i18n/Resources.properties     | 4 ++--
 .../endpoint/i18n/Resources_fr_FR.properties              | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index e9685378f25..b348a22e581 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -82,8 +82,8 @@ domain=Domain
 submit=Submit
 inc=Inc
 all.rights.reserved=All rights reserved
-verification=Verification
-touch.your.u2f.device=Touch your FIDO device to Proceed
+verification=Authenticate using your Security Key/Biometrics
+touch.your.u2f.device=Follow the instructions given by your browser to authenticate yourself using a FIDO2 security key or biometrics in your device.
 authentication.error=Authentication Error!
 something.went.wrong.during.authentication=Something went wrong during the authentication process. Please try signing in again.
 misconfiguration.error=Misconfiguration Error!
diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
index 7c4acba9410..44d5db6ae5d 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
@@ -82,8 +82,8 @@ domain=Domaine
 submit=Soumettre
 inc=Inc
 all.rights.reserved=Tous droits réservés
-verification=Vérification
-touch.your.u2f.device=Touchez votre appareil FIDO pour continuer
+verification=Authentifiez-vous à l'aide de votre clé de sécurité/données biométriques
+touch.your.u2f.device=Suivez les instructions données par votre navigateur pour vous authentifier à l'aide d'une clé de sécurité FIDO2 ou de la biométrie de votre appareil.
 authentication.error=Erreur d'authentification !
 something.went.wrong.during.authentication=Quelque chose s'est mal passé pendant le processus d'authentification. Veuillez essayer de vous connecter à nouveau.
 misconfiguration.error=Erreur de configuration !
@@ -224,5 +224,5 @@ callback.not.match=Le rappel enregistré ne correspond pas à l'URL fournie.
 invalid.redirect.uri=L'URI de redirection n'est pas présent dans la demande d'autorisation.
 authentication.attempt.failed=La tentative d'authentification a échoué.
 authorization.failed=L'autorisation à échouée.
-provided.username.already.exists=Erreur d'authentification ! Le nom d'utilisateur fourni existe d�j�.
-error.user.existence=Erreur lors de la v�rification des d�tails de l'utilisateur.
+provided.username.already.exists=Erreur d'authentification ! Le nom d'utilisateur fourni existe d�j�.
+error.user.existence=Erreur lors de la v�rification des d�tails de l'utilisateur.

From 6b64955c345542d8fe5fd7eb93f58e4898de3c2f Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 12:15:52 +0530
Subject: [PATCH 07/82] Create usernameless authentication template

---
 .../templates/usernameless-login-sequence.json  | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 apps/console/src/features/applications/components/settings/sign-on-methods/templates/usernameless-login-sequence.json

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/templates/usernameless-login-sequence.json b/apps/console/src/features/applications/components/settings/sign-on-methods/templates/usernameless-login-sequence.json
new file mode 100644
index 00000000000..8655517245e
--- /dev/null
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/templates/usernameless-login-sequence.json
@@ -0,0 +1,17 @@
+{
+    "steps": [
+        {
+            "id": 1,
+            "options": [
+                {
+                    "authenticator": "BasicAuthenticator",
+                    "idp": "LOCAL"
+                },
+                {
+                    "authenticator": "FIDOAuthenticator",
+                    "idp": "LOCAL"
+                }
+            ]
+        }
+    ]
+}

From bd7dfaaf7dcfdba78371f5ad56e4f4a5ceb951c9 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 12:16:01 +0530
Subject: [PATCH 08/82] Add usernameless to model

---
 apps/console/src/features/applications/models/application.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/apps/console/src/features/applications/models/application.ts b/apps/console/src/features/applications/models/application.ts
index bb5d86dce6f..a9393c8d019 100644
--- a/apps/console/src/features/applications/models/application.ts
+++ b/apps/console/src/features/applications/models/application.ts
@@ -678,6 +678,7 @@ export enum LoginFlowTypes {
     GOOGLE_LOGIN = "GOOGLE_LOGIN",
     GITHUB_LOGIN = "GITHUB_LOGIN",
     SECOND_FACTOR_TOTP = "SECOND_FACTOR_TOTP",
+    USERNAMELESS_LOGIN = "USERNAMELESS_LOGIN",
     DEFAULT = "DEFAULT"
 }
 

From 1016a4889fe95f43198d734f3b36348446c3a810 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 12:17:21 +0530
Subject: [PATCH 09/82] Add usernameless to sign-in template list

---
 .../sign-in-method-landing.tsx                | 21 ++++++++++++++++++-
 1 file changed, 20 insertions(+), 1 deletion(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
index 1dbeaa2fa2e..30cef25fe83 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
@@ -90,7 +90,7 @@ export const SignInMethodLanding: FunctionComponent<SignInMethodLandingPropsInte
                                 size="small"
                             />
                             <Divider hidden />
-                            
+
                             <div className="default-config-description">
                                 <Heading as="h4">
                                     <Trans
@@ -208,6 +208,25 @@ export const SignInMethodLanding: FunctionComponent<SignInMethodLandingPropsInte
                                     />
                                 )
                             }
+                            {
+                                !hiddenOptions.includes(LoginFlowTypes.USERNAMELESS_LOGIN) && (
+                                    <InfoCard
+                                        fluid
+                                        data-testid="usernameless-flow-card"
+                                        image={ getAuthenticatorIcons().fido }
+                                        imageSize="mini"
+                                        header={
+                                            t("console:develop.features.applications.edit.sections" +
+                                                ".signOnMethod.sections.landing.flowBuilder.types.totp.heading")
+                                        }
+                                        description={
+                                            t("console:develop.features.applications.edit.sections" +
+                                                ".signOnMethod.sections.landing.flowBuilder.types.totp.description")
+                                        }
+                                        onClick={ () => onLoginFlowSelect(LoginFlowTypes.USERNAMELESS_LOGIN) }
+                                    />
+                                )
+                            }
                             {
                                 !hiddenOptions.includes(LoginFlowTypes.DEFAULT) && (
                                     <>

From 0cda6a2b88908df0caae3e64c4b1255bc7c6b358 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 12:17:50 +0530
Subject: [PATCH 10/82] Implement usernameless template logic

---
 .../sign-on-methods/sign-on-methods.tsx       | 29 ++++++++++++-------
 1 file changed, 19 insertions(+), 10 deletions(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-on-methods.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-on-methods.tsx
index 3019bbb6c01..13aa52821d8 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-on-methods.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-on-methods.tsx
@@ -31,6 +31,7 @@ import FacebookLoginSequenceTemplate from "./templates/facebook-login-sequence.j
 import GitHubLoginSequenceTemplate from "./templates/github-login-sequence.json";
 import GoogleLoginSequenceTemplate from "./templates/google-login-sequence.json";
 import SecondFactorTOTPSequenceTemplate from "./templates/second-factor-totp-sequence.json";
+import UsernamelessSequenceTemplate from "./templates/usernameless-login-sequence.json";
 import { AppConstants, EventPublisher, FeatureConfigInterface, history } from "../../../../core";
 import {
     AuthenticatorCreateWizardFactory,
@@ -210,7 +211,7 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
                 setGitHubAuthenticators(gitHub);
                 setFacebookAuthenticators(facebook);
                 setAuthenticators(response);
-                
+
                 // Trigger the onsuccess callback and send the responses to the calller.
                 // Reason for this is that the invoker needs the responses ASAP,
                 // but the state update takes time.
@@ -273,16 +274,24 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
                 ...authenticationSequence,
                 ...cloneDeep(SecondFactorTOTPSequenceTemplate)
             });
+        } else if (loginFlow === LoginFlowTypes.USERNAMELESS_LOGIN) {
+            eventPublisher.publish("application-sign-in-method-click-add", {
+                type: "usernameless"
+            });
+            setModeratedAuthenticationSequence({
+                ...authenticationSequence,
+                ...cloneDeep(UsernamelessSequenceTemplate)
+            });
         } else if (loginFlow === LoginFlowTypes.GOOGLE_LOGIN) {
             eventPublisher.publish("application-sign-in-method-click-add", {
                 type: "google-login"
             });
             setSocialDisclaimerModalType(LoginFlowTypes.GOOGLE_LOGIN);
-            
+
             // If there are no IDP's with google authenticator, show missing authenticator modal.
             if (isEmpty(googleAuthenticators)) {
                 setShowMissingSocialAuthenticatorModal(true);
-               
+
                 return;
             }
 
@@ -291,7 +300,7 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
                 // Set the first element as the selected google authenticator.
                 setSelectedSocialAuthenticator(googleAuthenticators[0]);
                 setShowDuplicateSocialAuthenticatorSelectionModal(true);
-               
+
                 return;
             }
 
@@ -307,9 +316,9 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
             eventPublisher.publish("application-sign-in-method-click-add", {
                 type: "github-login"
             });
-            
+
             setSocialDisclaimerModalType(LoginFlowTypes.GITHUB_LOGIN);
-            
+
             // If there are no IDP's with GitHub authenticator, show missing authenticator modal.
             if (isEmpty(gitHubAuthenticators)) {
                 setShowMissingSocialAuthenticatorModal(true);
@@ -340,7 +349,7 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
             });
 
             setSocialDisclaimerModalType(LoginFlowTypes.FACEBOOK_LOGIN);
-            
+
             // If there are no IDP's with Facebook authenticator, show missing authenticator modal.
             if (isEmpty(facebookAuthenticators)) {
                 setShowMissingSocialAuthenticatorModal(true);
@@ -381,7 +390,7 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
 
         let modifiedSequenceTemplate: AuthenticationSequenceInterface = {};
         let authenticatorType: string = null;
-        
+
         if (loginType === LoginFlowTypes.GOOGLE_LOGIN) {
             modifiedSequenceTemplate = cloneDeep(GoogleLoginSequenceTemplate);
             authenticatorType = IdentityProviderManagementConstants.GOOGLE_OIDC_AUTHENTICATOR_NAME;
@@ -440,7 +449,7 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
                 }
                 onSecondaryActionClick={ () => setShowMissingSocialAuthenticatorModal(false) }
                 onPrimaryActionClick={ (): void => {
-                    
+
                     // Trigger the IDP create wizard based on the type.
                     setIDPTemplateTypeToTrigger(idpTemplateTypeToTrigger);
                     setShowMissingSocialAuthenticatorModal(false);
@@ -488,7 +497,7 @@ export const SignOnMethods: FunctionComponent<SignOnMethodsPropsInterface> = (
     };
 
     /**
-     * Shows a modal to select the IDP when multiple IDP's have the selected 
+     * Shows a modal to select the IDP when multiple IDP's have the selected
      * social authenticator configured as default.
      *
      * @return {ReactElement}

From 3cf97b3f90768bfb39976bba27d0ea9b683b135b Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 12:36:36 +0530
Subject: [PATCH 11/82] Allow FIDO to be added to the first step

---
 .../features/applications/constants/application-management.ts   | 2 --
 1 file changed, 2 deletions(-)

diff --git a/apps/console/src/features/applications/constants/application-management.ts b/apps/console/src/features/applications/constants/application-management.ts
index 96460457c43..89e5427ba1d 100644
--- a/apps/console/src/features/applications/constants/application-management.ts
+++ b/apps/console/src/features/applications/constants/application-management.ts
@@ -357,8 +357,6 @@ export class ApplicationManagementConstants {
 
     // Second factor authenticators.
     public static readonly SECOND_FACTOR_AUTHENTICATORS = [
-        IdentityProviderManagementConstants.FIDO_AUTHENTICATOR,
-        IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID,
         IdentityProviderManagementConstants.TOTP_AUTHENTICATOR,
         IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID,
         IdentityProviderManagementConstants.EMAIL_OTP_AUTHENTICATOR,

From fd66d630c32872ac5cc2141edd3858f667ea2cc8 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 13:46:47 +0530
Subject: [PATCH 12/82] Add first authenticator validation messages

---
 modules/i18n/src/models/namespaces/console-ns.ts       | 1 +
 modules/i18n/src/translations/en-US/portals/console.ts | 6 ++++++
 modules/i18n/src/translations/fr-FR/portals/console.ts | 6 ++++++
 modules/i18n/src/translations/si-LK/portals/console.ts | 6 ++++++
 4 files changed, 19 insertions(+)

diff --git a/modules/i18n/src/models/namespaces/console-ns.ts b/modules/i18n/src/models/namespaces/console-ns.ts
index ee17e1012a2..1cad37ffd67 100644
--- a/modules/i18n/src/models/namespaces/console-ns.ts
+++ b/modules/i18n/src/models/namespaces/console-ns.ts
@@ -999,6 +999,7 @@ export interface ConsoleNS {
                     updateProtocol: Notification;
                     fetchOIDCServiceEndpoints: Notification;
                     secondFactorAuthenticatorToFirstStep: Notification;
+                    firstFactorAuthenticatorToSecondStep: Notification;
                     conditionalScriptLoopingError: NotificationItem;
                     deleteCertificateSuccess: NotificationItem;
                     deleteCertificateGenericError: NotificationItem;
diff --git a/modules/i18n/src/translations/en-US/portals/console.ts b/modules/i18n/src/translations/en-US/portals/console.ts
index 8afcd94b043..fb8a8cd4ac0 100644
--- a/modules/i18n/src/translations/en-US/portals/console.ts
+++ b/modules/i18n/src/translations/en-US/portals/console.ts
@@ -2505,6 +2505,12 @@ export const console: ConsoleNS = {
                             message: "Retrieval successful"
                         }
                     },
+                    firstFactorAuthenticatorToSecondStep: {
+                        genericError: {
+                            description: "This authenticator can only be added to the first step.",
+                            message: "Cannot add to this step"
+                        }
+                    },
                     getInboundProtocolConfig: {
                         error: {
                             description: "{{description}}",
diff --git a/modules/i18n/src/translations/fr-FR/portals/console.ts b/modules/i18n/src/translations/fr-FR/portals/console.ts
index 3c61e1e571d..b2614f7141a 100644
--- a/modules/i18n/src/translations/fr-FR/portals/console.ts
+++ b/modules/i18n/src/translations/fr-FR/portals/console.ts
@@ -2548,6 +2548,12 @@ export const console: ConsoleNS = {
                             message: "Récupération réussie"
                         }
                     },
+                    firstFactorAuthenticatorToSecondStep: {
+                        genericError: {
+                            description: "Cet authentificateur ne peut être ajouté qu'à la première étape.",
+                            message: "Impossible d'ajouter à cette étape"
+                        }
+                    },
                     getInboundProtocolConfig: {
                         error: {
                             description: "{{description}}",
diff --git a/modules/i18n/src/translations/si-LK/portals/console.ts b/modules/i18n/src/translations/si-LK/portals/console.ts
index b2d2d9d0c84..3699b09aae8 100644
--- a/modules/i18n/src/translations/si-LK/portals/console.ts
+++ b/modules/i18n/src/translations/si-LK/portals/console.ts
@@ -2481,6 +2481,12 @@ export const console: ConsoleNS = {
                             message: "නැවත ලබා ගැනීම සාර්ථකයි"
                         }
                     },
+                    firstFactorAuthenticatorToSecondStep: {
+                        genericError: {
+                            description: "මෙම සත්‍යාපකය එක් කළ හැක්කේ පළමු පියවරට පමණි.",
+                            message: "මෙම පියවරට එකතු කළ නොහැක"
+                        }
+                    },
                     getInboundProtocolConfig: {
                         error: {
                             description: "{{description}}",

From 82a81aecf0dcea89de2cf3b0a56fcb7bd338cfbb Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 13:47:01 +0530
Subject: [PATCH 13/82] Allow logic extension

---
 .../step-based-flow/step-based-flow.tsx        | 18 ++++++++++++------
 1 file changed, 12 insertions(+), 6 deletions(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/step-based-flow.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/step-based-flow.tsx
index 1800efce9cd..40d94b0b426 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/step-based-flow.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/step-based-flow.tsx
@@ -28,6 +28,7 @@ import { useDispatch, useSelector } from "react-redux";
 import { Popup } from "semantic-ui-react";
 import { AddAuthenticatorModal } from "./add-authenticator-modal";
 import { AuthenticationStep } from "./authentication-step";
+import { applicationConfig } from "../../../../../../extensions";
 import { AppState, ConfigReducerStateInterface, EventPublisher } from "../../../../../core";
 import {
     AuthenticatorCategories,
@@ -172,11 +173,11 @@ export const StepBasedFlow: FunctionComponent<AuthenticationFlowPropsInterface>
                 moderatedLocalAuthenticators.push(authenticator);
             }
         });
-        
+
         federatedAuthenticators.forEach((authenticator: GenericAuthenticatorInterface) => {
             if (ApplicationManagementConstants.SOCIAL_AUTHENTICATORS
                 .includes(authenticator.defaultAuthenticator.authenticatorId)) {
-                
+
                 filteredSocialAuthenticators.push(authenticator);
             } else {
                 filteredEnterpriseAuthenticators.push(authenticator);
@@ -230,7 +231,7 @@ export const StepBasedFlow: FunctionComponent<AuthenticationFlowPropsInterface>
      * Try to scroll to the end when a new step is added.
      */
     useEffect(() => {
-        
+
         if (!authenticationStepsDivRef?.current) {
             return;
         }
@@ -380,6 +381,11 @@ export const StepBasedFlow: FunctionComponent<AuthenticationFlowPropsInterface>
             return;
         }
 
+        if(!applicationConfig.signInMethod.authenticatorSelection
+            .customAuthenticatorAdditionValidation(authenticatorId, stepIndex, dispatch)) {
+            return;
+        }
+
         if (!isValid) {
             return;
         }
@@ -432,7 +438,7 @@ export const StepBasedFlow: FunctionComponent<AuthenticationFlowPropsInterface>
             const immediateStepHavingSpecificFactors: number = SignInMethodUtils.getImmediateStepHavingSpecificFactors(
                 ApplicationManagementConstants.SECOND_FACTOR_AUTHENTICATORS, steps);
 
-            // If the deleting step is a first factor, we have to check if there are other handlers that 
+            // If the deleting step is a first factor, we have to check if there are other handlers that
             // could handle the second factors on the right.
             if (isDeletingOptionFirstFactor || isDeletingOptionSecondFactorHandler) {
                 let firstFactorsInTheStep: number = 0;
@@ -462,7 +468,7 @@ export const StepBasedFlow: FunctionComponent<AuthenticationFlowPropsInterface>
                         : SignInMethodUtils.hasSpecificFactorsInSteps(
                             ApplicationManagementConstants.FIRST_FACTOR_AUTHENTICATORS, leftSideSteps);
 
-                    // There are no possible authenticators on the left form the deleting option to handle the second 
+                    // There are no possible authenticators on the left form the deleting option to handle the second
                     // factor authenticators. Evaluate....
                     if (!containProperHandlersOnLeft) {
 
@@ -482,7 +488,7 @@ export const StepBasedFlow: FunctionComponent<AuthenticationFlowPropsInterface>
                                 ApplicationManagementConstants.FIRST_FACTOR_AUTHENTICATORS,
                                 leftSideStepsFromImmediateSecondFactor);
 
-                        // If there are no other handlers, Show a warning and abort option delete. 
+                        // If there are no other handlers, Show a warning and abort option delete.
                         if (noOfProperHandlersOnLeft <= 1) {
                             dispatch(
                                 addAlert({

From e6e7596b0e084d829b1f06bf71118c4aa6f3d8ef Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 13:47:21 +0530
Subject: [PATCH 14/82] Add custom authenticator addition logic

---
 .../console/src/extensions/configs/models/application.ts | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/apps/console/src/extensions/configs/models/application.ts b/apps/console/src/extensions/configs/models/application.ts
index 5dae0b9fa2c..226c010ce7f 100644
--- a/apps/console/src/extensions/configs/models/application.ts
+++ b/apps/console/src/extensions/configs/models/application.ts
@@ -17,6 +17,7 @@
  */
 
 import { ReactNode } from "react";
+import { Dispatch } from "redux";
 import {
     ExtendedClaimInterface,
     ExtendedExternalClaimInterface,
@@ -78,6 +79,11 @@ export interface ApplicationConfig {
                 secondFactorDisabled: ReactNode;
                 secondFactorDisabledInFirstStep: ReactNode;
             };
+            customAuthenticatorAdditionValidation(
+                authenticatorID: string,
+                stepIndex: number,
+                dispatch: Dispatch
+            ): boolean;
         };
     };
     templates: {
@@ -90,6 +96,5 @@ export interface ApplicationConfig {
     };
     customApplication: {
         allowedProtocolTypes: string[];
-    }
-
+    };
 }

From 0c847c3bd6b944438c30d033e107427a4e698227 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 13:47:43 +0530
Subject: [PATCH 15/82] Implement the the custom authenticator addition logic

---
 .../src/extensions/configs/application.tsx    | 25 +++++++++++--------
 1 file changed, 14 insertions(+), 11 deletions(-)

diff --git a/apps/console/src/extensions/configs/application.tsx b/apps/console/src/extensions/configs/application.tsx
index bbedf5353cb..2bc1a0c7400 100644
--- a/apps/console/src/extensions/configs/application.tsx
+++ b/apps/console/src/extensions/configs/application.tsx
@@ -27,8 +27,8 @@ import {
 export const applicationConfig: ApplicationConfig = {
     advancedConfigurations: {
         showEnableAuthorization: true,
-        showSaaS: true,
-        showReturnAuthenticatedIdPs: true
+        showReturnAuthenticatedIdPs: true,
+        showSaaS: true
     },
     attributeSettings: {
         advancedAttributeSettings: {
@@ -37,8 +37,8 @@ export const applicationConfig: ApplicationConfig = {
             showIncludeUserstoreDomainSubject: true,
             showRoleAttribute: true,
             showRoleMapping: true,
-            showUseMappedLocalSubject: true,
-            showSubjectAttribute: false
+            showSubjectAttribute: false,
+            showUseMappedLocalSubject: true
         },
         attributeSelection: {
             getClaims: (claims: ExtendedClaimInterface[]): ExtendedClaimInterface[] => {
@@ -64,26 +64,29 @@ export const applicationConfig: ApplicationConfig = {
         showProvisioningSettings: true
     },
     inboundOIDCForm: {
+        disabledGrantTypes: [],
         shouldValidateCertificate: true,
+        showBackChannelLogout: true,
+        showCertificates: true,
         showClientSecretMessage: true,
         showFrontChannelLogout: true,
-        showNativeClientSecretMessage: true,
-        showScopeValidators: true,
         showIdTokenEncryption: true,
-        showBackChannelLogout: true,
+        showNativeClientSecretMessage: true,
         showRequestObjectSignatureValidation: true,
-        showCertificates: true,
         showReturnAuthenticatedIdPList: true,
-        disabledGrantTypes: []
+        showScopeValidators: true
     },
     inboundSAMLForm: {
+        artifactBindingAllowed: true,
         showApplicationQualifier: true,
         showAttributeConsumingServiceIndex: true,
-        showQueryRequestProfile: true,
-        artifactBindingAllowed:true
+        showQueryRequestProfile: true
     },
     signInMethod: {
         authenticatorSelection: {
+            customAuthenticatorAdditionValidation: (): boolean => {
+                return true;
+            },
             messages: {
                 secondFactorDisabled: null,
                 secondFactorDisabledInFirstStep: null

From 17bdecaad7c85ca38eee15f285ef351ba9bb119f Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 14:23:07 +0530
Subject: [PATCH 16/82] Add userameless template description and heading

---
 modules/i18n/src/models/namespaces/console-ns.ts       | 4 ++++
 modules/i18n/src/translations/en-US/portals/console.ts | 5 +++++
 modules/i18n/src/translations/fr-FR/portals/console.ts | 7 +++++++
 modules/i18n/src/translations/si-LK/portals/console.ts | 6 ++++++
 4 files changed, 22 insertions(+)

diff --git a/modules/i18n/src/models/namespaces/console-ns.ts b/modules/i18n/src/models/namespaces/console-ns.ts
index 1cad37ffd67..efcf60af9f2 100644
--- a/modules/i18n/src/models/namespaces/console-ns.ts
+++ b/modules/i18n/src/models/namespaces/console-ns.ts
@@ -668,6 +668,10 @@ export interface ConsoleNS {
                                             totp: {
                                                 description: string;
                                                 heading: string;
+                                            },
+                                            usernameless: {
+                                                description: string;
+                                                heading: string;
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/en-US/portals/console.ts b/modules/i18n/src/translations/en-US/portals/console.ts
index fb8a8cd4ac0..dba871920d8 100644
--- a/modules/i18n/src/translations/en-US/portals/console.ts
+++ b/modules/i18n/src/translations/en-US/portals/console.ts
@@ -1112,6 +1112,11 @@ export const console: ConsoleNS = {
                                                 description: "Enable additional authentication layer with Time " +
                                                     "based OTP.",
                                                 heading: "Add TOTP as a second factor"
+                                            },
+                                            usernameless: {
+                                                description: "Enable users to log in using a FIDO2 security key " +
+                                                    "or biometrics without entering their username or password.",
+                                                heading: "Add usernameless login"
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/fr-FR/portals/console.ts b/modules/i18n/src/translations/fr-FR/portals/console.ts
index b2614f7141a..998421c3302 100644
--- a/modules/i18n/src/translations/fr-FR/portals/console.ts
+++ b/modules/i18n/src/translations/fr-FR/portals/console.ts
@@ -1140,6 +1140,13 @@ export const console: ConsoleNS = {
                                                 description: "Activez une couche d'authentification supplémentaire " +
                                                     "avec OTP basé sur le temps.",
                                                 heading: "Ajouter TOTP comme deuxième facteur"
+                                            },
+                                            usernameless: {
+                                                description: "Permettre aux utilisateurs de se connecter à " +
+                                                    "l'aidAjouter une connexion sans nom d'utilisateuré " +
+                                                    "FIDO2 ou de la biométrie sans entrer leur nom d'utilisateur " +
+                                                    "ou leur mot de passe.",
+                                                heading: "Add usernameless login"
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/si-LK/portals/console.ts b/modules/i18n/src/translations/si-LK/portals/console.ts
index 3699b09aae8..ec8e575c17e 100644
--- a/modules/i18n/src/translations/si-LK/portals/console.ts
+++ b/modules/i18n/src/translations/si-LK/portals/console.ts
@@ -1118,6 +1118,12 @@ export const console: ConsoleNS = {
                                                 description: "කාලය පදනම් කරගත් OTP සමඟ අතිරේක සත්‍යාපන ස්තරය " +
                                                     "සක්‍රීය කරන්න.",
                                                 heading: "TOTP දෙවන සාධකය ලෙස එක් කරන්න"
+                                            },
+                                            usernameless: {
+                                                description: "පරිශීලකයින්ට ඔවුන්ගේ පරිශීලක නාමය හෝ " +
+                                                    "මුරපදය ඇතුළත් නොකර FIDO2 ආරක්ෂක යතුරක් හෝ " +
+                                                    "ජෛවමිතික භාවිතයෙන් පුරනය වීමට සබල කරන්න.",
+                                                heading: "පරිශීලක නාම රහිත පිවිසුම එක් කරන්න"
                                             }
                                         }
                                     }

From 829f71eaec44cb9a72bcfcc0d5d8eb97603fe477 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 14:30:24 +0530
Subject: [PATCH 17/82] Apply localization

---
 .../settings/sign-on-methods/sign-in-method-landing.tsx     | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
index 30cef25fe83..c0a05d8ffc6 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
@@ -217,11 +217,13 @@ export const SignInMethodLanding: FunctionComponent<SignInMethodLandingPropsInte
                                         imageSize="mini"
                                         header={
                                             t("console:develop.features.applications.edit.sections" +
-                                                ".signOnMethod.sections.landing.flowBuilder.types.totp.heading")
+                                                ".signOnMethod.sections.landing.flowBuilder." +
+                                                "types.usernameless.heading")
                                         }
                                         description={
                                             t("console:develop.features.applications.edit.sections" +
-                                                ".signOnMethod.sections.landing.flowBuilder.types.totp.description")
+                                                ".signOnMethod.sections.landing.flowBuilder." +
+                                                "types.usernameless.description")
                                         }
                                         onClick={ () => onLoginFlowSelect(LoginFlowTypes.USERNAMELESS_LOGIN) }
                                     />

From 3eeeaae2f207a182d5d0e74126960f533aba53ce Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 28 Jan 2022 14:37:28 +0530
Subject: [PATCH 18/82] Fix bugs

---
 .../authenticators/fido-authenticator.tsx                | 9 ++++-----
 modules/i18n/src/translations/en-US/portals/myaccount.ts | 2 +-
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index 568aa0e5c81..2e48bef2ff8 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -311,8 +311,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
             onClose={ (): void => setDeleteKey("") }
             type="negative"
             open={ Boolean(deleteKey) }
-            assertionHint={ t("console:manage.features.user.deleteUser.confirmationModal." +
-                "assertionHint") }
+            assertionHint={ t("myAccount:components.mfa.fido.modals.deleteConfirmation.assertionHint") }
             assertionType="checkbox"
             primaryAction={ t("common:confirm") }
             secondaryAction={ t("common:cancel") }
@@ -323,18 +322,18 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
             closeOnDimmerClick={ false }
         >
             <ConfirmationModal.Header data-testid={ `${ testId }-confirmation-modal-header` }>
-                { t("myaccount:components:mfa:fido:modals:deleteConfirmation:heading") }
+                { t("myAccount:components.mfa.fido.modals.deleteConfirmation.heading") }
             </ConfirmationModal.Header>
             <ConfirmationModal.Message
                 data-testid={ `${ testId }-confirmation-modal-message` }
                 attached
                 negative
             >
-                { t("myaccount:components:mfa:fido:modals:deleteConfirmation:description") }
+                { t("myAccount:components.mfa.fido.modals.deleteConfirmation.description") }
             </ConfirmationModal.Message>
             <ConfirmationModal.Content data-testid={ `${ testId }-confirmation-modal-content` }>
                 {
-                    t("myaccount:components:mfa:fido:modals:deleteConfirmation:content")
+                    t("myAccount:components.mfa.fido.modals.deleteConfirmation.content")
                 }
             </ConfirmationModal.Content>
         </ConfirmationModal>
diff --git a/modules/i18n/src/translations/en-US/portals/myaccount.ts b/modules/i18n/src/translations/en-US/portals/myaccount.ts
index be2e2d8cc47..2fde93f87ab 100644
--- a/modules/i18n/src/translations/en-US/portals/myaccount.ts
+++ b/modules/i18n/src/translations/en-US/portals/myaccount.ts
@@ -653,7 +653,7 @@ export const myAccount: MyAccountNS = {
                 description: "You can use a FIDO2 security key or biometrics in " +
                     "your device to sign in to your account.",
                 form: {
-                    label: "Security Key/Biometrics",
+                    label: "Security Key/Biometric",
                     placeholder: "Enter a name for the security key/biometric",
                     remove: "Remove the security key/biometric",
                     required: "Please enter a name for your security key/biometric"

From bbf999685c04e2bcdf3a6b561f8b852bed8db19a Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 31 Jan 2022 13:33:20 +0530
Subject: [PATCH 19/82] Modify fido graphic

---
 .../src/main/webapp/images/U2F.png            | Bin 33071 -> 43085 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/images/U2F.png b/apps/authentication-portal/src/main/webapp/images/U2F.png
index c9d8f3a2706a62e387e19c9b3eeb1d35d168f67d..b7dc797b39c9e99d6498d8c6cbb642eb0272c3b2 100644
GIT binary patch
literal 43085
zcmafa1yo#3(<bf~Ah<)21lPgc-Q67m3@~VL4Fq?0cXtoL-JQW*f@@gb&v*ZCcW2I>
z+qb&vsp_h(>NEFrhbbvYq9PF>K|nyDN=u2UKtMoZy<eCJaPO3jTNdK?8>F*}qzFXS
z1kus^gQvNcw1vDp#OL=m0t7T9CIs|fEbm_kNEQgF_cqD<#Tsf20rNLH1ccK29YWa5
z!Ni<Q$;tub;B4gpBokHTB%{@|wl{NdbEboUfX;#ZH%<=JKV>1Ya-jd!#{3Hhf$Ezt
z1O!Z!wVD=4OJ0u0)WMF?_%CcmcRS!;3=n+oJnv0AbC5BayWLlNXC8NciobF2ytn@%
zGf|NJjRj=OPoX8RL?-IsWKPD($jr!0A%H|iM#kr4X2GK(Ch-sP_a}Y|D-a0C!^Gs~
z=Ems8#^~T=$;86V&CSHj%EZdb@Xo>D>|qZwc4x46ru;j|KXJs&olTvrfgo!Kd$PZ9
zjZGX}K>QRGe<}Lc=O1?30sp1Q-uWM+dLJK?yD^Z7g^`)*{~{zW|Nj=Vv-_`-&L9=@
ze~;|HDs)!!0GczYm^(YTIGLKivs3;z6F}A${}-IUdj4+t-yHk*@$$V#hey=O+!*BG
zq~_r8Rp9?QHTanRPxgO%?k^;Hc^)xyCu>)8GYKaLyT7>@Xzb){{+H$a6#q2+UorWI
z34a?qkF~us$k^W0Tv|-v9f{G}+Kh+Qgqhu(8(_-73IMP&uydNQFaS)s&E9{^nN7`&
z0W4g`CVWi)L;T-1y({4Rd$*Z`sf(StJ?I_%@6+#{@U8*)&lKQcW#?k!H0CyEFyk;~
zXJBFB0x+1EaG5c1o3R7fnVBuvxQ$u=sp~(${;lh8zWLuB@PGLEug-s)@z)^D-c1k@
z;}+#)VG#pJaI>(mh;xW=iHdPEi*j;tv59lANJ#t(_ur!bq4e)gm;Rr=`v<J({}1**
zME?h@qLa0ywY~Az|6(;O3l|&U-DeUU!lL5rEGz&KQBDa~ZV@&%Q7&<DPUe4F{a+yd
zL(N}PlINY}Jut?9C8YohAJhM!{ez#6>936aj|~2MdH5Uky*>yay{r6Ztr0-_X=4@)
z0U-n-Eheny4td&%SYtluvFUcMYq1F*Xvf@xqG3WQ902n@k?0isITm|2E^{cNBH=9j
z3mVp!*oqcfZkEJw{nCVTB3_l<epk#?dhICM*d=%>Aq+n$h&3Sys#*+)+OYt;yXL*O
zXW!S%Z|9l!78_qL*6;W4zTJcF7dICS-F%A`vjq+s%6wApaavBQ+LO@G(H)2g30F%-
zs?Hu7bxve_61P7-F=UjKeF`tvP={1i3q?%q6j$h355GIQSD3fytaSgzA@C=}bY_nW
z0C?yd8X7`w-tatO?0qsO(al*_-go3U@SQ*Jyx(Zt+1W`(K|$$|Y+NtcTqbxREDsBd
zBsc{`ETdv!=@t$m9|M`Bs&T1xDi3sab`;T3QD1@A`{Sz?nyp<orpEqVY}_~+8O9_|
zL<iB$I?1ETdeqYw4j=9Vegaf@!B%i^UDZ!~j5OE%J^lS|4sAz8meC3N+4ipVQ*PAt
zruWveuPcjPO-fr=wP9i9b6ShmJ^K8`#DgH)sKC-Phm-pl3*F6?W`|8T!MoaMN9}oZ
zew%llN3|i3SIOOcEf(WxUk1vLUB?0TF*^@AYI;kiHWMK{&mfN*eZ($@oU*Pi)4{00
z^Ol{c+GV8zCTAz)o6O-|*Hq=hBnDjtVtmqW`H3A)#4hb_4z{wMHS8u)o6Y>uJl;@v
zxbwNTQCsJFf@{f>F1FOdrkAHA2Ex$6f%BLLUeLg+-?on~k%z9_kbAT(@zEEo{CvZO
z%>0As4E5|QDTb+w9!Z;4%AEFttZx%@sW+Npo}nmj<iEV1N&Sh@#VHP6QY<_Sr*%d(
z?K^%C;Gzd_G6{0x9J=kBnhw&n9%5Rg-nqS`EeQGO4|K_V_fA)|t~50u>sI0a9Qbzf
z`h5Quh6CK>-p71Gu|>Y&b+rpOO`kejE#DRL5rzAs?r7lpwe`N0*dNyQSYb(1r*eVx
zxQWdz>}d;6H|IhwDp!~TS(}5Ea{y(RtN(7sbf|6e7*9uNHj#9=^ksUgr{}FSSoh+P
zKjc(VOT*jJ2_@}M*Yi2AY`fxHm;KJRSQ068k~a>UslVHv)}Kauj<@QxN<J<&ii7He
z_X!c+l!(=8Vq&u0tsMGdUW?Czq~SfY+}M)>*XKL+buZhd_pWwX-TYkUf;XPhikCZf
zb&!VIN4H>+7}6uVAen)g<u^m=ePOyo*CW$6?Qw&-$_qKPeD#JB&v+blUqy-bC+4B2
z66aZ{=#tF0SVrIT)b!)Yjs<T^R@C%Omrd_Q+s!_~q}r-%I8Rb@A8j!CI_%R0hpLB>
zkNU~dV$nO8$!z<1_uGj7@8562v|Pk6m4+ZFEg|SVpUUW0QSL-Z1;1kw<&V!3W|;N0
zs_J0DsrA(Eq85jI>93%G0BUyGN38kR?s(P5M?{-Iy7F~WTGUyu+j2wwI;-it%~-6*
zfSw<O;;&|#Q1Zy9iK>s5p0%^2R@oyH7QJB^=e+SVPic{B<TO`;Uq&kmNS|<0qF@bX
zAf6Z)W>|H(w|*jC$c=>5`;tpu)navV-Jk*sa9W%}z{`uZE{|(u$q^%gsmz**-5-W8
z+dYko2G538KbPN1LQVyF*+@OFPZx}n6{NbK_wUZ$Uc|huXAzI&K+->**?da|x}98~
z4Go|88hQ+^m0lV2pS*lY7S3|id2%ztNcss0h>2hIxnnnD)kDy2Qhkg!p(O47mB-z?
z+4%qu&pJ88{7#(CKdyotsdWgsC3V4XnP~?<oy)_XRwmSuhjRHi1pp6=4yzrH#m<dr
zq4~`uDH(6V$sF0qlpZ1+XS{Kbn``{4qM4=DctnKXM52u^*&jR5uRSfC4l>=U@bL(q
zG|P4m_Pu5AzAT;KJVc8I26mT@W_djK)_R=CjigU>RUl<epLAAKZz7udYf=vk`ran#
z+HVc-df@KwnMV-~Z_eKyLwifIUOb)XRZl%F^z`89yS{a{8pICYWNWg;*Af3QJhmVA
zWz{x+uIYmH9Du4^c&m52Ki_=Wr4by42Oo&1a7~ESe-M~^Ew=gC)xC=DjXVa6?B)9v
zcv*kFXFu5iq;{g>Iw=%?Gf33t$MsY)9PEN6z;Ty-y^DIh#4O_Ows5-lzJIkFm+D$@
zql!FVR-E{RT%q#zDw~OM@N%}p&C9m6oMv0qex7}-eEDX>c$?8x<&7+74#}O!wC=SN
z`KH9wq~UZP%zY%+z~D1|xP;fPEy#N>x3Spb;9tr>#&kuq67uG8Cb`VZq2Z7;#%<Xb
zTD2?H_1W2AHJ$p*cD}hsSr?q^jg0GajJ2qLzpw0^CJg61lDg)ys855Ag0?~T+~Esn
zH;4Pq8KEo0mT+M$e67JS)+Mmh7p(-&aHRHBa_H<zbF03K={P_*S)n=6HLB7E<5wbX
zuxf5_@zR{{TS?SOqaX7xxluXW(cj$i%OLA9PuqA0(riS>O-97rzl@3LMl&T~wQ4Q^
zyd~&oaA%r@F0{e(z5f2`4lP?Dq_<f%c9EVdsfQcS;!hgG&`#7RE1&OGy^%Bga8gp1
z%0^!Z?K^K5NbhXUzAdD#`M$m4MnpynlKsqFDIYjFc{d$J7mQk&>!oH(E0|^6I*Yj&
zZ%gfFzwA^+H0)g_ycsK3j{hu0^Bq=Uf&NusK$2;p`M`pDMbatcE|!nXbUaMF*x>72
zm%{Z16w|S|?4ph7>S(9hY*t#T*O{%ME{)_B2Y$(glxJ!3jmr@Saz>$}6W2~*GWH3+
zWna5gNNDKt@`xqvQ?7%57c82+KQca3M0#NUxSq8l0BgP0nn9<o;Egyv)%L!t;L!-u
z`(Ao;;E!+j%N`T@orsHPU+UVox7RnZ^11E>WVoY~spg)HI-&C0Qgz#fmw1CIj|E(#
zM!K^LtKcWYn*f$4o*M>c%fAYvo6G2fZ@T=e<$UUz_x*bI46^H6Aj%ZhY{T-`?_H-|
zuu(Hmrk>ZYmN)y)f`T#vl5zsJ69r#ozNw{E^O>AI2YDmkFibV{wCgaoI5lxLj*p}b
zi=y*4=%vs6k<&QjjkC}^EPloT@F3GK#`R`f9~o&3%t!EIov)p4wBJXY*CR(y*n1y$
z!M<0mekfcuXlUOtKzhMxOMt~%>Y?MYZ;sBL;G&0KdgJ6vP}BROZ+YH&(Y2XnO*mF^
zza5Y5892A7KKv)(M6MZRxDjUI&r+G~rFTN(Hm>%|axC?ba=RE64VAw%Jd;l~@nrN!
z7Yx(f!@0iYk$ryoVnTh&OqtAmIz>o8ux)qsp6FPWE6LN%LRw%dyUvGhOPkQs2tYi?
zyAP8X9qbRAftyh8`P%|3Q1<(tmyP_k#c<!sbOnBom{h|&#4=CB8~-nN0R3Pk;B_i(
z|5}L$(P+6t{C0TQJRY_}aZgUn-ZY->h=*CeHVBlz2YMDt)RX+Vd;Z6AG70s%aW1K*
zW!<;?b0%vn`L|i@(0MBF-S-gufSn-4!+Qwa>1$=?w@>D7L-k5rkS0mU_+tm&Sq|{t
zc+dAuD6F>jdTlqiE*9^&BU6&()G&=`+z8EiQklpu%2XfS8<zJlY~WZ~zh1oo43c>V
zf2CF!wBI#z?6p3)>lRIR|83^2LLD@~!TY||lokmC$C#X7D$~n6_3CgHME^wOM?^-d
z->-i&y!}b~r)9=Xsw~V=KVlh)!46NYu27VCh7XZak;fE+Mw$lcmrL7lximCpu6ET|
z_)OMy4=EeG)V}%<I>q2RT9v(}$n;=Xg{J*@^YIq{MHpWG^*ZTG_lyGTH)v2wP?2sI
zsWe>>M|J5@-Z*kR+T%L=`ePAzcmy-)ckX5SUSvZ#D+hXIpc+lKm&|RcqHl*ztCM)(
zWzMkjZRD2*-n+0s6Jm?4DdTNY?AO1RHHc)cGEYUGxZd8}<KGto+Uve=qVoZ;f%BJ2
zt;1rvAJ7iv;Mz(^Dn8*V*T=HyoA5wFuW6fqFGeDEDi-0vbVq7rwS#Nq`(o*iQdW8$
z&y#GnYBL0xr0vYer@F7U*H;Pe%4I)8#rGIaCKP8psBG3s6!JuzgB*-4hl%8SBJ2oX
zdBs?qlb(e&9i$+J`dDf^5R+>Bc|O9JPUkqrXa_p9VmR5W?@KmDv)!rzgLYlX)0m}i
z>0!=QU?@5Hp9`I+hf89&H5OOk+)*;g>}W=Lb^E!XDt~oW*F)+ruf09ZvTCnA#akuw
zPnLCL1iw%}Rjyl2$DP45w(B<OZqi3<%O~LAd0B(-c&X(nd?UTQ;b0}C0wSPSLM#P#
zs14W{j!K+`q>Ki(zw$PGa5j=tK+oDG8`%b{y1V?A27-l61E|#2(8%MR+&O^qqFp`X
za@ImI$RwVhsY#W@8SM`AlR_=DivqiEORTX-ITJ!*%(N_qo2HSgzs^S3awgEA`_Z-g
ztwzwE(nj$;Jf&6?cJXN)@z=~ZcfU&AUN)1kjIg7V>UDbF`U=ReS?6-turj>R#onyE
ze*B4y!}ldfwMZ;&FTnTO_qF}_s5rY4hsi*VJy-Nlg+>y^?sPz{@5ny*M{AGbsQ-Z+
z^n(0=Hhf6Y5gCe{JJnLmSc(T28y~=97@k_>Au*Rx6By=>S3I0wGcvR{VwQ19@ulu?
zW`C=!IMT-B>?*CuIzP?9c)kEPYvM?`m}2p<V3N%>9{z}W?FpA(R$pY2k)k=!sIsV%
z;Py*{MKwruoKYd(EMBqS?h!GxAl1H3%6%X{@l!=){=C}J_p>sa%`Wf64AI-*x2JBo
z{-gd?anD|PuJs0Qo}th_Zi{4Yp4m6b<!(!2#E_-hopG5-gk_K2)MR{_@?Y{aJSjF{
zw8BzZSBsx!PWSXJexfA(5>^)Ka#A?wKR=`6U?)wW$oIl_vni3m>`-B*o-3uu6{+Uo
zU|XJmwz2_H?Z&B-E&9bJ5y!@@!C~`QRd%XYD*U+++{_3%gffL3D%4{QKO$Jc+5<4W
zv;CJ;6dDxTh}fz9pA0WEu}$3Cq1^n!fP{yBC!^_%EqjMz>i2{r@)bkG<ccsof#|^U
z6|nhjqywDMG43rfF>$39wAca|Y{bFJT6SX`+}LMvG3-EsGmkwq*q>@O`r=Wxy_qf|
zG3ht!Z}f5sGn!mohQnZRYO9E?9u~!}fqw}>JU2ETg{Xs;X5|QpQjwo?B9Nqz3btR_
zjotgin9=SOu%e2n=hgysa-OLFa{QH{I|N|tktxFaVeL#f<#UeE&k$m#I2Om*4{`%v
z9O+~|s`SX(0d^}rjU9{|#4Yi|GFpM?th2_Pz3>fK!9gMR6QbGRbJpJJc%f%=4k(o<
z4oB2N(jBQLhlAOlSZ#A*e+V2SIV*!&d=0qd|Fl}rY-Z#13dcl+u}ycLyos|mAWW}r
zMX)Vst~S}l$JJ^Tq4HhrQ_jZ~%FfZ+U}$rm?@s}OEOwHUIB5x&VESzPg9l9cdTUg4
z-q2iaT&QCqu<?(`kh(IHro#o!{bY*SpeMz7+%c4?wIY)vWHRzH<R4)-73ePeYH<vL
z=MtG6AThZfxhGIymOhw?h$^twRxJ?|1jE@JqRW|cr>x>c*ic8_`bpweF+#6=C;PHw
z(Ib7b7@<Ew?oX8%;(NRh30-C^Gv|quGMb~gaf3=N&of(&q6Pg+kKVBK6zel7p4HJV
zmri7|HlkR5KGyt7W4WADN~mzyt7Ts6Bl8iOP;q1Q=b`f4{=w+*VU!Qu7v2}@n<<y{
zL6GvRXN!&dONS{>DNY80%Iv-0%%PYT)u;zxXH#+D#ZuqCvt<I^FEtN({izQDy72P;
z(xJaqaM*_wUm}8oJd=`dP?v|wtrHX;5vyIKeS+cH2c$i>ABLrr2WpEPz=aGET!@<$
zs>kNsbX<1nO^m=%>w;O0;rzpW-KWy_+x*Uzj#bx!aTUu%-t`8DeELU@N3&I^lM)(G
zFlS3y2P9kcTxij3Hnp|A<z-q&oWTpvGvtl9rB#i1?O@AQMQlVkdK4_8scHWF@<B%a
z&4=Lh^RBl)(ZnCj0}o3w!cb)7yXL@)v%`%vm6bPurVc<R6W`0>k`H&ha;BHs$7baG
zBp77f53^c~^s)8KK-yYISU(N(siyl1gaKddFg^DDPktih0w>r(yW%KFbzTyvbp&v=
zx6Eu#c3v}=!5c3z(nYb+8BtSM^c7Ud_N6p|gYIy+2IAd9%Km$_O{hrxe3=fHnj3{2
z;h2R!3;ygK6-?%2S3fYC3W@lUsz!SmJbvZYU1>|q2wj5V?ZwCytwUkT)^>MCnT{~4
zMd2yi`$d1Yk*PGuv@euq8(&h<;*j2RJ!nfL%w6?{cA^1hy`S%RCn+krcuyO9>L>W>
zF^GK%;*Z|?7ovU^e^n*=Si5oXWIcaz#o4~0z+l)^u~M^zV(1_-+TVCER6<Z>FGR3Z
zxuBhT3M15e%cQg>D4jGAg(hQxY2fF_OU=+BR*nygREVaHR>iB1*}Ow-eOVnQX8J2!
zu6MYvSR=2Xl=3Ys+jF5wIK4j@J_4B5Bg;Gn1(O4@XnlVK>dQmukYLUShmj08*0PFg
zK<n<w_iAIZQYP>Hs-3e#aQ68W5WV-25BH-^JyuUsZci|^3xQ64fT|VDcdW3hM*bD^
z-uxf9zrbmd)6fGPe7oDg0S;LbV&V^F$lk2G3KMk2B)?vx!@^`68h5Ib!-<ta{Sz=u
zMaQpyK1gSNqUb!YG+7UtB4KWuTNZ?(A{Zo|zzY%oDardyN-RBz^>W0>Ns>$!n#;tJ
z3{ww~k?AE3yG9%d2$$F8`Tm1$NZ6sNFy8eLFU4^>sl%wmP`PknI6%$J6DU(dGNfW~
zRUc1a^av-}Dt&l*DJis-?}ZAT;YvF^gyUtIKz$Mj8~=gV2Fk(cNt+9ZY!_)bf{B*p
zn2W4}en|22NCo?IIoWk1-!bEgP7^mIt>BdfUhR=f$)l1&h+(>KNy=paQ2?0|1`4mG
zK13m2ezIH`kV<a>PrrnIAgk8LyAilGefCkk`=#^3>wwpshDL_S0AOP2bk?}IL9U!k
zlGU>OYv7?c)5nv8uR|zO_)F<d8FU>2Z_&vVf=C%*%)$>GGr#FUAUrJj$eO=x1Fft^
zA$=7bmSnI+sVMPJt<>E_*7aUm*^t->`iD#AcsM3C1T6+lGRhRx7Zh4}_k=6Br3SEv
z(WlSfh4pwdD3D1k;@cKj8WIi{A!Rkh@snfGLTy=+3=j3tvI918@H*(6hQz`G3uO|T
zD`AH4yrz(3pG3-*1~f@OL=k7iCUQ>pg*H5XqBQXlgQZ~=2&w1~PEjH%K~{&u7uUA5
z44`q{?DowL7s6BGv;R#vxq;yCBl(fD^Kn1j_gadZD3)!x&U`dx?$35CQl@;Hsv>u*
zPP2U_Kkq;>DKM4ob7<eKWrlvC@eLkku6@|?k*x;BO3T3T9hW{Ga@yBJD0Yfde`Gj3
zb0oez9jnXcuDw(1?<4V*_+|orXZ4Q$xYN=E{lhu<rnq~yFBbSbMOopplF=@Z$4YAQ
z-a|AVbf!j4XAz=`JP*NvT&=&SDZv~jSE32Cuu2b$SG4drlx(r$@eiL17>khGDLw}P
zduF3^N#=tXpCVjDVi0>y@}Q0I;LWgM9(biGf<I=}2o;^^hX3#ujZS(xOUVdh9HqnA
zSi(bYRCoFFc<`+{3^{6l%I5Vhc0wU)C^aG?@|EN0TkrHCpKgO3>?C04W?RlmjvIqx
zYG_D+%Z|M|it1QGGfg70&+4+m&v6KQ<TMghhoF7D9D~Z>ialUNMquJ)<Y5e5p2C7a
zuNMM34kM2sG6)j(`=5PS`A6jh7!oyRN}=?lxN75VQ{4ooQ6pw5->r09Sn#1_YGRnz
zcP4YA7<NWJ0*@igbE@wUvZn=MbdfQEwfY{t=>QqrE4&sQ6P@|I$n@K0r(n2>01~!9
zGc^mGgw(3buyDjAR?Msj0^l?^eE1J!dovNs-#b?pU%&RdIo5C|AC_xWR%ujdk$@z9
z*KQVc9bSti`}S)x!y>+iS-e0CN~*LDTj{hVy6&f1mO>BW$579HIrCbVhBtOqxlj43
zg=c<{_tTsP(qO0L3q<kG)E8E}gaSuMH6&Oje5G9s&v{~f;-d2(@ZdgCL68s(-$N{o
zF#z5V3DK>qM=GA(F>)@o8A`-vyFjIpp`UM*Eku8$323IBBAXZCMVYb?9!`1)E4b&c
z6TZp`r{puvTF-D-5r!1l{{?W^2SoF*b7h?1nSz&FOd-a(wSz-Dyx=kGTwxz#eydQO
z9%i0S8H0+4$DdyGj+VW;tJ0KlWW+Tnx%QkDz$OxpxnYu`S-b%*5jC+*cg5*af%ATT
zn6YiK%&s3kq5k?ZOihZvY<QO~r3-x&v=om*Ou-U{EQe}kg%cY{m7dG15sL`6#R;3r
zQTBhu5bqO)pHx}X4ktTNu?p71#a9DMFj(*MXqBi0a6KbgX=^HtF+0LsO0fh!fpZrz
zG6I>O$@Vx%2@8fenUE1vho}qWicx>}{t9kDjl^d4wkf~GplHFThx-=7DB-LP=1>l#
z%7jr_EwoTwBu~Xn=;I|IwuG!~WTZ#RRuMc=30IX!(G>bw&yPh{pj#GKkz6wgW42D7
z#D-tZ=sx*4-vc&AH?Pmw2F4CN78lW`V|qOhH0ZpYC9LgB^^Sb}QZ{d^VZ)iXpp-wA
zLf=>SnIw`JH8pbWJV>o(dPu}7`Xng11w?|bQk)N+0)g$*lWv}a{bwKQtsmJuh)D>|
z3n(5vL83;j$UWQ!=qTDi!KT|df7r&VKtazf3Gn$`qe)2(L(!^4H)6;2GoZ*0_v$4l
z5(J=#fyC)jR*pd`NzhjEL&mE8!D?2vU&st+ybCzioQ+e^rRI60SmhfbD_VMyR${a>
z4~$X0tY5o>WVr0P-!s_4y$y^G0E#$(Y<Jo#C=D~R-3hyMP9BXMY<8S7B5e*8e2Gc+
z(f06r_q9lLE4zJLPSHkF4^NISlKsX*zZ4LXJ`??ju|ul1cv9+s4}~kgp5WIs@Rmb`
zc5QX54hbicY?xDgt0jS`;8jA9gZ~1KxJF4KQy{u@f`B*7$7Yua#I1-!r_%6)!TWH$
z?W*nFzTC!MGk?Tq!O%XHE=U~5=d~l*WhdDSK`0p-<xdK-)1&-U=Qtaj3i%5aTg!v&
z=cb6vsh4oY=uo`%PutEyKRa`5IOD+TBV_BVvSkDo<L``|$dVY^f%?KJI2P8>gfe(b
z%5TQ(G;$h#3zbc=T0t9Nb6TWNDj%>43%vtMwvSg&KCJ*#(MSgSKJlXM0fM48T;5(a
zNzgWbI#KgHzb<SsXCpORPm}_SpqX4bZP@sUSJ)<bWUaPdkCrlE?^uEhjE$2}b=}BX
zpe6&xu%Pob`hS=67Lf_#I%aI4pa4M9Hq3!gokNF4`a^zd6u6(W0oq9sV%1ezJWPB6
zHBGU5sY~>>8#P=iv6^B!N+UAMeaJrY0_MQt(;`)rPjyh_&4=oi8MuN!6t{-E`w>Hi
zc-Xf-iwR;Q?_md8?qbHnNp_2*Jr-ew%46eF<;4YwrdRtViRZ%7X{>;Oz?|kVI$6Cf
z-OZkoOpQo1LEwk!D;&?JHOi1bBX(Q$6D#2LY6+f!Q2($nCL**^YhJ8znF%#w0XM+d
zH~jm8M%!1F)RsRH1I8=g@7-w64qe?2fXGQvqU8Q0Sjso~LAZFdXt0yk546)l^1uwo
z1n5jOB$8ZcF8^aWmt4e*AEKC4_WM|{fEs!SYQh>ZnkslpT>UFV(T@%Gf28ACP|^Vb
zxK9wFXoyg}Pzr)Rh}MIb8bGQiDm0CeBr&5z(_A{Z2_iWu$wcG^R3&NFPtw9y6D?CE
zR3en<GL*W>#XB6x#F&E~787e!c%>)3NuCA~pr@zV{Az6JLH4wihq1-xugd`atXWs;
zw8R$%7JkO-(xcDc=znWe>6E@wpLmr*8^T?D&kQ4Za%NH~Ru8mTu|)kj-v*N7s-w%_
z$~+*;Bf}=(&wF(aouDt-SG6E7IMK$CLK?azBdd0rr9CsTfJ3483-5JX3FFLkVK$yB
z7O=3Ez|hfn9;0_38E;7<y|U5I@KgMwX7AWL>jm~F3Dzu`n;=BvhHYXwO3}wJq9;Ga
zWo!1s?NUYw@wtp_a&EhH;Z@OFgwHeic1TYM6JT<<ZG;(*Uk%2XHdwZROD`GnL-qKQ
z(*o0ME&X%uS8s7?+R3rgiboH6eqB|leGT}ru244FQ_}5b8XG9Lle<-0+s&^ZHS0wE
zRR!zkq+;@sUXN~tTS|t<J{)(v`+&cj@a353SA@La{LJ;*IX_1UP_#1S-cxHmgz8GB
zjI<j>FUmdy1B=;|_zL^EG$NM-IKYA6SCKyoJ~=$v_=H8)Kxns5A1pr{sTbnZXPMtr
zLzWoc&olI~J<=2=uS1lhw|3j5OFXonOUTQov`8Ajkd%-VIp1ZC>6if4ixj+d38{0A
z>zp`5M50lt2jo^2f`Cg}LAH1SP95V@cK2Lj=a0O);S7>t)Lo;pnLQsIoSG2bhn$8y
z+u4P*)pp1jtgJ*Uo1Y#DEhe@uO@H6+#w#w6#3u${{0=MFbGST8I|61Wu}zEY*_BN?
zYO!WTg%84qy7C@m)bGi$FEIp^?zT8|{zeJ_#3P1DFbrDR?m07?ONI)&GRN(z<0wKW
zM;YfJ(aZ6T>ENdj2p-bo;_dMS%_8_nBoOuM;1cJJe&&os3b%KJha%}+^D;tmq}3Ws
zjpPx6&iaTzw1}EJOxmdi6Ezy1kydmm)U=EdPi6s3YhkR%!lDHRC$l%o2QK^=qsyN|
z&hlG{;xU8ODTu^C%1?>;P(-HH3Cv{Gm&6l6&PwGap5Pp%l_4^DJ%OLZyF5(1>F@c7
zU;BYZ?sDpvTtM>)oM~s0V}fqq?-58wj}{N$g0`hbVA~w`#1<957@%@5(wZBK;gM(-
zcar2_L^1u<x;VS2*^|lj=hP)=NQ;YZqCYbigy3dy|B=g{AqdTZkL(=3p)+n8aV-!+
z?1GWS-Cy>UCI2e`?o-|(J`G%09Da;BBm_7&;<s$uQ0))7)X&jWfS8_~%hFN5cIJ_A
zv^?yNDf3z@;}3y^AcR}2$VM_`?}1o^4zWX8)d3F}jPMSf_v#@12o;_p2Zb4$0#W5-
zhTN^v2=xU(R?sO&P$_IZp6;2pgrE$g|KS6QF?0@i&V}~WcB`+{JZ=F!E^Z7T;p{>_
zv8~^@H?arBQ_78s%WkEloljn$mj6ze=VbuYLNb$j$N_y)cz*W&#%2-tFfk;3qHyKR
z%}plZvW#^x6ERS=x{+u*36mku1Xdt_A#>b~+CrN-B**w93Y0Brx4Zj6mCN_rSj);r
zDJi`QqZNZ+mX^o7i48|XUKVjEIHzalbVd4OtB9>fumZ8*U{of?_x*f4UFDR=26=t_
z5jt!I{O>LwyjaP?W4u^7>5qoV%CV`@8sKpGrjYVu633ufj`JGog9keD)*2|NLQAAR
zW>Lc}!+g@<sn2nN`PlOv+G+s#OH|}#3;fBa4@)IYX2WsEpiC4?3aR|@CnRu@=rB(K
z+w|P=wF#>OjzKzH?@6}rACIian4;H#(R%dd);xJ@Bb5(s2A<e}h<x}t;@oqh1a5>y
z6j^##Sd0djt`^)YaJy;9>C7S-eJ{$YwPi1Aj5c+d=|?JNQ)n_;F>ql%Oz}XzA4D`%
z!9)zcB7A)e0~Va;HqIZ%VRfqrhXN=iHKPXUpomrT!kojTy|`$SsSj>n46fN!YHIAo
zH~kXw-BTD?1gBFBtgqo1jD|U<+D9T$DyVG=X#7*9w-{hkJb(eCjr=kxsTr;-N3OKH
zmSl&Neu2K%N=|4;a{b^%^j~I-$p@>YEhM)x$pkSBqvy0Py0d*Q)KA!n_JKom?2vh-
zyb=j2XcFIEDIO(=4#>Akc09;ZvjVYt`<FQ@GH|yD_5?=oxskIil!te<XIWr+KHA{O
zU@H;BOK=Auh-|^nX%naML2xSfs+MGm9Yd<fFM_SVjy!w>I7XJkfO%r*+<PLDYXa1E
zaH)wO$7t=*d{|_@rOA3m_r(o;E;6VYZg3o8_ooZ(Q-PbLUIO(lMtfRu#`(Jl*ptk;
zjs@)C$&PmC`f!JZ*yXD7U?JQZ4A~a^Zne94Ox`|I8wLG{wB98{{ao%S8LI2Rf~kIR
zdQ&LcZfd;nGT%uC*}v>xqunPv@+*PMQB4Exp33_p^|^Ly3$7p7QlN&l`}_JdiYOkr
zOSoR~>0DuHbXed7J)j^yAao>B<$<?SbU5IHD^}X6#u}~AUgRmr7!x%7Q;r})1O(=q
z4VY61VMj98jpab@wedgzFM?6CpqWR$V{;MqE>p|Lht4oE(Lh`?=hOr$bkB_z5Mj$;
zTbmzyP34HJVSj)9G?uCDMND9$PRNzT?ZGj2+Cnt35H}c#KH#BZ89@1X?$*sa7p{p)
z6yY<G{QL0Ex;PVO;%DRpzjxMb*kDKgrVE-MfHFa0J4)w1fK}-b@AITW2Fn<pR*vYo
z5cTgs%T;4+5{#b7w@;buF&Kv)HD&m=4@es5YrDpeVaNjHDJgn#6{J_#eTXqd4Javj
zvM3nfI8zWBEUw@0mLLp$vIY;o#X{8$Vx&ybtVixrQQ8oK-?FW{<JChjy*9w9>ZJi!
z4nhQ(RFhq83(<p^Pef*EBz<v`M63y1iX+I`U|ALrY&AHIdarMEk0?Asg2a2tFo4Z?
z)oV#7#fe%riE&o8OCk6%0`BO>79Pvpk8PTNuNR)g-Du1C2ktDg&!bWQb#8>jD(G(6
zfW@+$b@I5zb7F2LQZB!|_DpDGtQW}R=lcuEEK>6-A<;+0Z9wEFKDEfeNbl-PEG%1M
ztLSIA@sd=HR%HMN3=>rm-6NT7nvg7UU>&uSu|j%&)#XP^N@@}!tnXuS$-u?Zu#+c*
zWS*3@V2q#SU<D*bJzgTPf@+MQAIu)4HnsIb7^9sTwtK8n3A`;hb&Y4b5_%X-ti%jj
z16Wzp+A`%HqeXp5(GS`cU&KJAQqItz&R_)sk?Zmb>;{9OHe{lXlWGjz6%@kj44lI6
zlIe9)3=2_S@VT3Gx}9p072E(=7|9H}112YjEAP8Na<<)#k0Y#jct!AF4l*Ybi5y<{
zlYl8y2GThbX*f<lXFI5{c{it0^DKY{@Y`t`)>n+Y5Ur3>d51wPs>9nNdT?Tw3g&A2
zCVL;*5b_G9dh)0OGvsD0GRUqzbA_X!_*s-(lVQ*@u@AGs%VQNnPX_H73ER1(i7ONf
z&`AmfBI$Ga@L$qN!SXmlBgLZx9B!(|`}Zw_X%TnBC@hs0e$j(~u_jj`pBN`F!{Zcz
z@wg8m=}N=yC!60HTL<Tuj=twaAH(%}9Av4Y5@&}#D_t3FC6rfpJ++l$IF%T+Bo#de
z^17W9t#^2^p&uyP=8vdF9H8i-Hpn!8Pi8VSV01a;ThXabMI;O)%JWVf!>NXJdHXJQ
zhgl+p%p{%X_7SiLGm_3elGccBAxy{k32N4{1O~MqN^>KS=668&1n%ocK#c{8^>(~{
z(7uoy=1}`@ET(0$iUs7YDIhQ}Dnm*qT+R??-UHlo<1C&4!Vob&2(qT5MV!SBlF+V9
z@+k4E+uh-W!02hv#-TCzb_azeGg>VHQxzlLr~rBQ;e&*fM<IQXOmLsvUDz!q{}+oi
zEy1nprW3BQZEhbUFq`-eG{xqXxy04C?)#n|aokFh?wu%J6PP3NZ0MQ;I-{+;;Q69R
zOLaw`i)YWD_Y|8^KVu)fKZttn+zV+-yBU7r{}m`~?ODnLWm%gcuqwwrKB2G;ut4gf
z0)~Eub9vjE8W$xy)Qh@&P-^_9Im14Zw+M+*wfDvD6<`VD4U+4XrvbV_pr%H-loVTF
z;L#?P340TKe&|h+o6?1NctN0x0eG|uE%$$D>Z-8X@arJ|Ar{{>g)#4m<1_OEoh{`0
z({vH)H8PX+Lz4)+VdA{Y=a=sY66!_L+W}%^`Jh<bs4uH3VmN4M)<HeAJAHxQIqMCe
z%btWdSZg;gXhIq*@}lh{)%oC@>ayt4E6LP-r0Zy2d7fh6dV4gxuFirL`5PUmh{Lil
z_A9R~$CLWl7~I_5TX-~+c@+5`3wWFXXcI`^?#`!WJ$FP8&a%X~iF5JYY~?1w$pBE+
zSYY~10Wu@;bZ1PRh1Cq_XdG8dDs>1c`QFDr9BAgMzYFL+%+pe0>gx3z(NN(0k0MG$
zN5m9H^5|z1un0Ob9A;t_JaLa>_NL4|W|PK2Ni=o?V9>QZ9(xeI!<E$)TE&Fx*Cb1x
zM~lvQw|IeB{7`wgJ*oS%^^<hSr<W=*>rSyn<l@8N!_g!r+1=&ule?V~T$^6kSnGYE
z2JTz1{QcKgOSs+ck{)*(w9ebk+3ShiGkk2}&bQX$+aJz2^=gd#aZT<|H`LG8>)UI_
z(O9(C7+OIxlSm1SEZ1?g)~+g6l%!Vv)BE2$F!35(9FK*yp$C`yPX?s7gT8Q14u!tZ
z2im1dr+&p;A(}$P?AMiM`=M6}Ld9a5Ezq0T4xXSIj?p5opYYRyxD*Zbw1_v)Vc(+W
z8_J#f_&h+5b(7&J!L!S`%)VR5pqBwO5h;~~7X)i7==9Fhxlo)uZAqGRnoVYPe#~y!
z%blZVTSp;fR}dhNjpvD19+ygs5_9>QsWcJPq}6Gm?(!>9Qw^Q}p+*3rQ(~NGQmlrS
zFn3wF&RHq$@*Je}i^Z|-n*AtV!4a*gP0(eBCY$==929Ty`GuNqHk?85x->Z<6=W1p
z9K%C8gErhOom^uyFTlAaQ`}1JOduT;MYi&#5Hj5nn~<MR6WYjXsPxFcH-2h&woq5M
zRp@L;lxuw|VZO*%gSF(o{d}WQ_QZ3vOm_3zQ3VesyK3bF<8MKGTYS28?b-F$HHJ?q
zMa*C3$yO6?JY~3gy(TU;I@_N#->#y|Gz}ib8^12k3=me-<<{S+g5sPkY~8vzeYl6Q
zg}A)qeUmthheH9QSa2jY7INBsZL_;<?2ecc8LVl1SV``shFsD8vMc?QfFoAL3_jM0
zy5Xw?`GNM~=2Fo>&2<6Plz8d%D^`V$2&|3WO*wdj1Ntx4VOY(GqoCs$4-=d<nlk-%
z*Y<%oaC4VZ<#bpTeBV-6F!G}JcH7Cu*JIW>5EV9Ux3;>#77?P$!B(l^+ikb9_p7a&
zrr^tTblH0Qy_HO9I>>XZed9TnINN9It{O`RN@?Xs2rxfpf-J@e8HXOE$D0VJov{v0
zI#LkX5GB9nNhW@fU+<D(byCj-3a;7tioBTf=_6zZiriVSaYB$Kio)SC`65yhtCDT7
zpE*KXi5wUGD7{*+g-XmyT_x_67_{oI%r?%Uh~$oh(xVkVXx&G#@{^f<X_0MeqGPD?
z#Mu+5yS)QmI$0fHyS2YL1k++nOFWkD$C_(T@8GMu=yi=se(TEPZ_FgaCoO}4$oJ=+
z!YY3n=#C(Y$<-a~DKf0A`QEBujxEcg?ccX5T*)%2Gj%;&+pIR7b=A)rBd;_pEAk)>
zE8%^4TEkyyz1DY&@yy^><_UQ;qd{yl(u4t%(N}BZFmwBkvII;c%dfY_I{<H{&HLCU
zEx2n!ob%8)vJ22(n%06WBfQucmG|i!ijaMT?UD=GPG*p8ct>_WIIiK_f;q*SPiAPD
zOekdxm=~+3nv^k9V2AY_?d}84yy#J?bsGC<(21bDww!8W#*K+$FPFnVu2j_sJ7gX>
zM$4yj9)HY7{`M<2D6JC5XB#{rCegM*JVZsa?+?3#+Lr7aD`3xFRr>pTSK7dO=G{IE
z&qs1zLhH(wZ&Rv8j8zm_#Jk>f)g4zVx1qidlCCncI84gfurwY*>AAy-c;o(OB={Zi
z8b1wu-)m|x6JTHxR?JdG>S(>s77f9iroa~v7GR^1=Q5Uy|Ng>7MI#!?3P$!1BlTuc
z^tRvL^1>met6!ks7>oioHFI!oDlVRKPk<(`VfFKpg0!lMWZlPGrkh5eu;ZrSP6+1e
zTRQ7;0ZB<9HP$?h!0+MXkuTLZJn#fPjYW`P2vZP$jg`<#C=SXnIjTDErnhEu=xQ}7
zvoJbQ!J}mR{9#J!%dbH6s;s5<`@AT$d3i^u-B$Gu*Kr=-_QdFnQ2y<R<z<f}6i~S9
zAi{MFO~Xyr#HS4i+%K2MU#W+$dPWrHheQ1{_j=2d)cYHg+k&KMm@?TebNnTFu&>s0
zbK&VlTJt2XzRvbT*nU<&RAm?E9;)!dVc$*3q|!EI%{-z#AJE(|`Ei=yzi!K26p`fD
z5dzOd<gV-dg#boKU&w>d-YFT@`!I2D=wrVVMdhBSI&n`B&gJ59=>}W5+op%4$8xs>
zXR;G>?d%YePD&o^$`xnhv`wjkfJ4`<MWd`6&Nq5J;QRj9EZ0@L=FT)v7eG8LC8cKR
z^%3^BZMe?nTpsJQVJ8T_(?MIJQSDrTYekE6*TL^9SDy;KztEpz0%=`nT;Q>4Nbm+A
zz`m5!x`Utw%wsb^3tkGlE+#e~NCS`~eo|jQ!a&Mrg(w4`I#c)sTXNnN;xi_C{bKH3
zq{h_el%~VP$C8F0tMI?8PO|hFU547&=h${s3?5*)pD5Um4Oa82G^HxeHh^uJw55s~
zUE}o{^;ME|<$ED03j@qO250CV_v@MS3hVxKGarL};G=sL9_PIE(9HEVKNyta*WK}-
zEn}T}?v|{#EXpSOW*>t9@$Z|jZR@zPw#0sDR_YW+iu{g1L$02F(8^tJ{TkoqK%1+u
zcdc`$kR1H!r++_};vq`>`3ETjsX+a3(}j$kF%cSGD#zo+NH#=1X`xK|OlFgSk182J
z==_`=6_hDRfd86uHH3Uv`mcWL8R`lJw-ZfVp%TO6%*%e7YF2mN<$l?=2<XD`YC?k%
z<Jw6Y5|V-R%QL;ZP(X?x)G%FDCI)P9?kGrVO+?DqSlDeZe186q_Z~NK@@>EW0f^d-
z`nY|ujgde1VC+lp-gv-P@Vt+m9-)k+3J=8MEX<ljgYOYSp=rZ21TjS=o~0EJO!g<E
z>>iT^xv|d=<_zS+6YIT#ABc+O%*nVuz)mEjc#R0+5p{?L>6B6|9?Bei3NNPCPP(P@
zkknpCn59>2F@mFs4&vHQ`-s@5*5bIVw#phaT05n3Xg1!UyfMz@*tQ*qiWNL&%#FqP
z#lr_KbQ=rBy|jEb(yM;`xQ-qk!jO0`q2o`H?7mxL$jlevKii`6`p2Iyd7kHO7di_2
ze#r-6(TzK!XFys32#cDc+C;~W*0ql(lnLScPlGb8ClsD<1;Q5%zKtg<e4TXIp@w$h
zW5iV<slclllGDn=JTN+>br^vy#+bXY(D9p%D5Bu@<9ca}sWfHagW*&@21(C7(t*lH
zr5l(6seeW-t0aG=#L-%*#vm=RVK^1K(^lI~OI#Usa}evLp?yD@QN^b^N-d0(K%x=s
zs_De4u39%7IN0_2t*p7hXGYZcZ3+yQ;m7O1%{(3@Vj$2jx_8g0iRwo!=#>tgs$q<*
zY`IBl>m9ZP(hOw@$!W9mv6Pr%dFgp-U8M1ETBblVBKIWgsebx$4PPb3fJX*FL0;67
z@k#6=!f7W(%l#9lT<93ChHz2DGyzhJUZ_sjhk$Me4;!I$O=yE?l->$cN(rS%8J*M+
zzyT!Q0Hm2nm~7_kOD!iRTer@y0Ea<2ov$l*)TTjsZqmr58oa{9EMgimwKL<Mbfn46
zpFeA|Uv4*MSG4}>;~%r>jjdXx=PtJIb2i5`Jj5Yxx?6oSTI4nMCkg44JLU_JX=IC?
zex!XwBt9fSTXq{-j7&FYDU8&xAERD7244mW8*dM4>FV&+Uo-B7A49yKBNzj*DeS6M
zXmjGDyiglnvQg<h65*AWo70duZgZNmZ;gYnic{^kW2o6j*@!=7-a2f@W#y4HW(`vw
z%_zvP6m?K{+ozRUVP!d9g*c>>B0qlM*{b?x=cb$@<`$p^&&zQwl{Tj?HDG(qG-k;k
z_tUF7;n0a%{nlT5vBDCYHd1=k5yz2;*$df{*WhI7PoK_b`~ET72`{#ymP;;+qV!s1
z0{BBjFwtjr$M!vu)tH@))!ozvx_p0Ir7Oz#mN4jw;c{de37KAL0sO#pa%1^F<8^Xe
z=ARhNRgdBUs?%W&B)jrN?nMgYAl!-~*kXK@?A>MQK~Eh%t+c%<YBZMIbV;FaTP2~6
zDXD-4OKNo&?RuUt;P$U&V3`L&f9(XZ&KuZueZuXQ{kK3@&B7~2j#SWS%MlvOo;vwn
zE3GMC3Kx%}1-}CcZZ`zXWZTrKH?AQpOa3u^d15kK#C`R`bybti`pEG@kv9$eLS#Sd
zVt7C{7>Z)p--!_!nIxHH0KV5nHPzyfr>~^vxG&9|wftm61)2wg;BZ0)Z)bsb5)y!|
zSFC<0BUC21-gGx34w+9+6KI4Y{C<M(7C{dLTZKpVkU+!387fYxWP=P1pS-&F;s%DD
z?86tUA56VuG+CH6Sud2H8wfF+3=Tsy(A+k%q}XXX@4V>xf#q&8*no%I6E58bZ~TEk
zfKk({+wd}%{QM6JVJMnRH!pJy+D}>k#ve^yRYv}teZOq)^V}W?HXE=u7ULY;35l@Z
zV7DFkF*UcTXzzL>S|`zM`mau-yU!&qDsK^%JM08|_$b*=6}~WGlo4<(gx|?Z`Vy$4
zgs4>;cM~x0_RR$<J>*m7#|a|!6F%di(9M+fY4fmr8*PLJ8PvpR@-DR_kTc`^U78C<
zKbFJrb!pK+MBG$s1*T_g`e|mcBx4RWS<;n^&>sF0*`O)l7s(?eim=R|>UE`^fZH%_
zh+F`4pipJvG7!W?#i2r|e}vUP<qj90Pg?9vyX(yWDD?e#&EEh@@PLSt3MxX~k<b)R
zTMQj;R@>dOFX2GV4#Cec<#zM{1j50P32U>SPAnTsliLTK#U3!&xif$B)av~ZPn^xK
zy2OSCLS7yHwh|X>uZY_PUWfMIN2e%${GNC*!WAaD)AFohqtN;Jz~b-zVm{dx98)5q
z=wWQ01-+vRGR14{Zf-|Yzj_f#N$8Im4Jwk6ehjw=SdFKlK<C#qV3t5vi~oQ^mjJU2
zc?_2DmL&>ZXf%q|!Q=NMo!TumJ2*^Flabay1@gnO1QHV8YtiVIT#9l=*=~t&b4Rkm
zZIN^m!b#%0n^?lLoI?(p!uwp5Mobhj9iQ_XNqtm2mLpWMwC{}DDE7uZTtWj7WvCY7
zGBQ=*Fvd}mB&*IUsF<nBuBNNu=LBvy!tl!Qu=WW!CETGrA_NPNR5gimPC)({y3^f3
zR<x?6xih5VMMJH1)=B=kV&V4{7l=Xf8jOYPs@Fg(peXBW5<QDi9}l`Y5|in$ZRYGd
zGt;zlfVF$ubl-{O>N-pfLvc}dDCLq}X%Qt`6|EDShV^f2$0p*rne@5yy6u79tf@D`
ziFL4s=JH_v0+3exw&8V+I)6OBf>Eq+GeqgD&VQR<Y$7C+Fsb5%09s17Z|fy3u#gkD
zU%Q@9Vn8psMs1DPhNkPSCrH-6>pFhl=w4%`Gk@aHX|V3HxPENaUbe*=FD!4Nbdcfg
z+W0sSt@Z;1HyGx9qKmFMDfkwUg|DM?6M4UWH4?1r(D}<jU~t*%EtOO)n*WZNH?Txe
z4+_P~PtWBxv|N^{b?MIib{@Cv`Qj~PqK0yYMPYnsptnQwVxvW;g|DT_cCqU?>)S<j
zlf$|OLr?2R-fg`b<J052Rfp0fCfy=`K@I*t5BFuH!vX-|Q$L1OYcQTe*U`W+y)Rpl
zI{)*jVi`QCm((3;(^(G@?yJD^OIdkU1!MQiE6(-8Lh}vPL#C(mh5@<}<9NV<fZaF2
z^0vn$!j5jMWY>zmivy-kJqEKP%{E9^-BN#_69z8zlZDFL!XYe0K4X5|5pn>6n;dVE
zqb2F%;q4z4s+;PL8xfbySKSvCD~mdN(T}INlRuccO4|0*%Fm1f!=f;@`0|<|r+g1}
zcW$&q>>dP4u_webAED+l6&{AOwvOLcYb!k6D#nhAMA-uYqws^}iq*^7navLfBvE<f
zw?9^+N<r3gE6qVdKbYR^*4ySS%gOcI`XQuc;UF!wCoJ@k>krKIh)t8>UI}$KFSQYq
zIv_%uW7q<Xm2nUH94<Cq=NBqhIh3|@nFdI^-;X>#eGR2FMw(<J;%(~I?z}$db)r7}
zV7dJMCwL`xn(6geaM)yameAqrJV%=atJBxZ@2P%8Ph$lAif;9<Pq1d+G$`Q?p#@wl
zfgVYpd;p_otIf}HXR=u6#fbd71KJ>(MmE$FF^A4ai$<5{CY#!cfm+U-(yrstN1}3%
zkm6C;teTA`yK*z8TD{c4msHd(scG$@1!!Vz+aA}$ey(UB!5p0hu4&Wc9kD~1Li?`V
zN>qd=cqk@{xb|$-p<C5XHJwqfBo)&HWMt7R2lWib<F>y14#N|0K&B@kEsXGtKsNC#
zd9S&uW@&%2?Vi%BWN4w*fX+i1>h}@_hJv)qIPXInTOLP2GoXe2!^hvZJUhQXxv4W<
z9~Hy{-UYf!ViQyzQJp0-PvAt}!Hns^FD|~ot<&KFKv6Hs3N*#dQ(;KR=J2`7gZ<Mr
z`yVntGqS8TQ~7nlT#&om&?aAF)XYOMr9}ycF;?oJKWv+Q_du5&l4$vz0FNfPn_ups
z$>M!b5t%i`GRs`8!gb6-wjnX)2PV}!bfi)yoo<<kt7NSnA5tg~X9!KJ6IFDVk;~~t
z>Buv^L{1Nx*r%1GDsZBUxvd!0Cq2#gM2O|V5{de%eH;)`!leKM?@#nKihm|#37+pr
zuJcxqg+w7#ZU~L{YGR>*?ka{bS-_aoy$AWvfcgr`&y<*w2udW}Lbj*?PP_&ZB$a2P
zxiHwJvK0XFI&(j-B(N_V?ZPz7xxb#8fK5WLWQULWm2Vz}IWuUv=YIi?Kykn6r=Oz7
z&2NuRQm;V-P9B-Yvks!~5gEilyZGV@t982c8PFM(PR>BYDbU$YIpq||3P-Vi{rc(_
zO|9umI3G`wr3Y&xe29rNByGa`Gp@h>YF}#PK&GQ}X|Q_rN?)o-tm5J710Q&QwQ=J{
zUou4JA5vY$e0j8T)k+Tl?P{#fJ@;&{JFtd=UdZ-koNTfFjP=%m3h}1&&6}_Hti_Mc
z>rw=rSW7wi<dd`p6YCqSBV2XWhpXK>%TwPNu+)3pYZ1BrgWi{1a*=nDwg)SBIaph1
zRVV9($^@Ee!x<ZV*<+_5J8~HWJlf`T>y7SQqI^`B9;31cHpfXp!%S<{%H^WN`DhJ8
zmo}GQ{(<Ve^YmRB9Ik%oz_VHl7cbO1Mzo$LJZSmgJ)cLRoWNx-9mRTWIKwcB_Lui=
zyX_XiW8Ebk2$w`_)~@!91)2yX=ya2W8fTKS*$17E3fBDYd++_B5{JB-GpG*ryU(qd
zebuL-!S9{9eHvJuD2o<q0d~czFiKaOGC=4oZ@u-Fr?GTM^;UN}&T7Tul(@-PXEF^0
zR_$YIuLU~2=w^WiHkTs|5(aYwE}imwJz8Ydw0<$`3ku8_=+qOfa3Bm;-m`*}8yey+
z#1eOMIwrTQ^Ag5)D|ET!ZBfGI*&r5gS>*H7UGmLeg!$nycrYdR9U@gNbo6w<xX9(h
zPz(?T5sRmJW~VOHQ^QqL{M?HphB6nA(|dtY4nYw7002M$Nkl<Z+H}Yke%n6!{G}Yv
zu<SFg4|Jmo&Vd*!8&6IE$A*53mn@V#)QZbJbfT$7w1CUq66RS9_{DmQ9?lLv*oQh1
zCY0VMT=?PGSrDa8@Sz^a#vzf9yJE<mkbM^0Ia6=)(T0*Oo~$3yRs@_e_BIdc!oP!f
za@m9)$iaDe0agw%bjv;kcBFfC0ajId`Ieh*+TfXqRNd$b9_k>Y&FkRVhw7+?_9B?`
zs<Erxu6v%Tf2sx8hrjhLcUC$qoeENi;$Y}r>Tc%A0O#8Is;jQ3F1Ud0^=gHee^Gto
zo8Po!U~s^LAA{kX^EOr2YJrZ<{f^c;wru%EwPVK)4I(;w@ZF=^iY)NnaKlG^ro_p7
z=R4og0_KnPaG};FP+LC+5Nj{jU3X2jQQrt+p#J39pH`1N`k1>aYXNjx1{Iz8(n~M#
zo6xD(wr$(A$oha6bba>MRDWQQca!chuWPTpMmjC<V0-YvZ&g3n+v#vHyjTk1I37M{
zdE<>Am98h*F+TqI6V>;>{{zn^{B*5Qu?<d>Mceaq=BK;8{PHW+0}nhPJ~2CUb)+K$
z`@##~qn8j}p^|t{Dmw0X^Q{=<_7!pn8nCNYt+wo?{?OV;_3*>ru73K{pZT`FPZDYf
z_;L5?BOke5GfrkTRrU1KPgjpV`d6iWxfDW+ah*&?y}0|{_g*5rf$H_wUw7NE;JpYZ
zSn3^pNLGaq^FohF6u4V<!F$fHJ}mu_eP9r><*B65)cFIEXB8s#PTR6&%h1rh_uhMo
zbY42E+8hVri*y#Gp}Fp7fN_Ruw@OoB4EMOypa;@&`lTZQm7WE-5t!=k(IVVSKYz*V
z6`XzC+rUMZI|6Pb&Q>fgGFZ6uxb)JCJ&OR9#X1}ctNYwR0H40MPflWu-k8sZvv5@7
z>a=fEufF=K2TLl%%Z537;s9`RgdJLJ<aLugr5pnw&hE?#SomXBg~Qr~{x3;?<`IHH
zo@e8;&N|CFBAZ3hU;N_L>YaCX71?2uciwqd4htDEg{R6a?!NGI$<}3^W$VBl8txuZ
zfB0!GR=uNz&Y!>dvS(lDgY5mZ)A(q0>CQ_n8@}lK(o3(nUeFS#D+Bjbz0#0&z}U<L
zUe&{t*oc{54rFF0d-ukh^0)*X*KfNPtFaHakGWIES_zBYi*zZ&ogii~*n_)cKUZCF
zGBGo?c;lXb!MUPU|I&{c-7kLe3okgcV2$3<K8l^BU7Bgycdss0*9Bjk4=DVyqc!Qw
zq+JA7kA*?C$$CD*waG2nW7-|9I%k}Dwimiqu2@nnE_)rO;z>syQD=PSnP=7JYDG6{
zVv}*pCZLXSKuh#$0Xj6!Bsx)DtVGh1Vj3=IqN%^H(dk?Iv39Uj)A|J(=)<|%FF3qe
z<FIql*&0p^65ibAJszo&V(yO6*|QTf!{L<&ydc~CTD070V1|RPUi%Pd2IrE+OEoBP
zSQ?b##YfxG6I=lB#7XhGNoH0ItO#*;#{;)Opl2{GmE&m3=Fx*u<@r*gILZ-FCoZGV
zaagk~bizKvLmKp&b+o^ui<9DQb=<}deN(5fdHcPn3~cOx?6_SUwjUiDm6On=VzCc=
z!amD{7aRRJZwzW-c%k=^NJ#;NW*guHnT;Wj0Ni)ixXr5!_M#1`FHR0wdFvTn9kLsc
zC9MPY9+rGFL;=c-?gK~;$n!~pL=OkmeZ$biz`$vqhV`(bN21z7O}lA-HY9OIK2%^}
z(HS{I(b#l&w>vFNJ4WUJHncGvlpkkx9Fs$7`#9++BRD+4@fu6w0fkn7ZC=9FB#FE~
z7YVKyryRq5Xv>DXe{@WET292SkHE^QjF7^C2!<?g|Bia6vuWc6t>uevR8o}EfnPHu
z46yk)1`i>Ui)dif*L9{04vO{1zflY$MZII4g1aup1kFDq87JWIG8d*VfvaQan7GC)
zJjHj6yD(|nVs!MxD0V9Fghx>v1yzO<v8I609J%1J&SM<P2|}PP6f*<jZct0>UYG+B
z4v9)8(}i!$HU*?(Wm!=5)KPk#$|zggQ(7G(WjIUFkep3le(41{iRMnp1BGzMWqcwR
zLe*;7a5SnL_COjSc{`Ctr@i?(xbb!AK_~Q?7dGI;fav7!67vdSF&pryycP~^`xjv4
z@t78hVEu~T-m?K*0|g*HCOT&1L&+cwzVOi^r1TxH`I*$H#t|?0W}q&?Ga<yOBWZZT
z7QC!CF-it3cu?Qq<uR*LRKW2Pf;KPXfFZ+0<&b#c7+i#&0)yACcc4doQ%_>a)}5lz
z!R*VSfs<-mcIXN>I|VA~`Ut<sr7S||O9QCX`dEMPAZz}T#K5SNJ(Md;Wom?8Ostu=
z&Lpf|8e|%#kF%E$ea4})BrPqNX&6O|0vXd;Xzw0fV{6JfM#uN5NpUv5$%G&OzI<R^
zz>coq&>49h-#$Gb0(!6*m-Ev*F?319+1wh)IkHg48cVIKI<PmK>6#swJF9qbS;1Pv
zaNf=p1J)GAhPeY1P8OvYtot+*^JPwPO6bNK3{KcVwD9J^M%Hn-OvwUtVLd7XRbovD
z-Q%(^WU-^xmr<%A55UQ1nGW5#q~a2S*@4%#>N_n_8{|<J>@qkQ&Yn6Tn>84)awdR%
z;2HM8YS>~V7C5m_@n^uGC)lxIN9A!QHV+LUT<$o5hfVS_2b$CyTF+`!&O1!@YBM1=
z@MVtM*T$0&7-kv{@fuI;d_X{LDqA9CxNU*=aFC8C4-HIAtP9nrqiK)VXo@Oq+_-Uy
zl1}i`teH^7+L2J+Z5`$LR|jHE<K%TGsgr6UPS^gP#+Q!J!C5@%5ZqZ9(a$>}MNdcJ
zdYsRZG6)yw8k&v^E(2qk7B>;blo}cA*5t0tu%7!sN2cD~I$o{)4{U_;)LXJx6kT`H
zx@ze%t(ka=jpNfg2<tNS+RlU*AWzcvaP(jw3xg8bbaG~DN{VMZJF|Ap8sCv&&4j@W
z4eKN9wIB^L5&JgSUlQva)CJjEx6madmy$SOV5~8)H9g+`kMoX!PyJcT;2J<^UZ7pO
z_9WW@`mm#%;L^R4t+f<mY3$oRt6a`PHkXYQQEwh&@Xp@i2ifz(U8Q(#2-fkOPds4A
zno#J-0_{5Cd96t&3}nNTMcS~B+D1ItOT%LMVlCh<T(HP(C??UDgm3#8P!6gqCy!-b
z3ldA=I0zm@CF{KG8rj}H4h*bm-E+@9f2`Vmema`6ZTWYfXX8%qhcDm0K^?5B)~s5t
z2G-!4M!=cu*KNN88eh#>#*6ova2Ddu00WxN<o;ZDgwivZua`3tj>l(RUq<n;8haGD
za}#?^n5}?{4E886py*T#{G}|Sf(Z}p?{J3}B7?+R(KWD#^lS<Xvv~=^Lxc=q>R~!P
zY{uZ^EWSi|@CA-@L$-tDGZO+%)fQ+_;4G*dGZ>s3veA(lLCB5=36bqb1$38Y|6a|!
zR8M5%I7YRdoVt)-Cg;XtB^F{q7@NS4>M~o1x@j+r91n}6AzM6k8x<bBhnJ0K=*R%X
zhTiO^GH_!SfsV-5J`>3xuwaUFi!Jlih5awgh_DZf;=)rMTXGn*4Gtb9(UAuZ(Gi_-
z_%XAKh30U2IINg8A`4vV1z!U7#Tfy2fKlNGDBB1e?=w+M{W=4f+<oiK2mOk!|7M<F
z=0r80fByM;THD!3?OY6;cD|j8hV;DGT`EdiI!o@<voNo}&S#n9%ots+;FnHAN8^si
z`t_$52QpE;qFcdyC2&xi&DdT}M~ZzQE$wkQty-zCxiRH_Q_r&e?596-55;+b$9W3e
zb?er6mne8V>+{UB&)V5=$;BC*E%#$%Bc3_%dC39EV%q+5-O7GP-*btF<Knh6{J11q
zzu|NbWIFR3Z*22}biQpXncQKCGw4Khs&=8SS+iQTZppd6?fn?k6J3zaAVv0?HEX?7
zR{#yL{eCc#r*gr8FS7|82+sbD4eLEi!EwFv$}75kyQA=mdZUxr`%{_BG?<lP!=L=*
zr{=|=q)xN}_2E6NC!Ms$I&)d_%rnn;kRz8(e&~uU9&n^>*zJm=;#TlG@9eZ}a5;hE
zRM2s~baX#a+j1NF4YmE?P&i8PB1}}Lop!1m1E1{XS)ZNeNj;mFN;q=9+Q$sivnYt^
zGhKmt#w9oXs&|7_Ux&+#{mH$n=PYQJ4kTk#h_f;sgpSK>;H8&-QGNBRf9XyVmk+5b
zy@DSPqp=_2)ao;z`LsJCYZu@9-VdtBzx%kiXfs=2P%`UakbUN}pRUe1CoXRo_+S0%
z*94DS&vbqQGo!1ozDgUhPO&cR%DwNN`>MC~t(LrX%fNqEFLAo)qW4t4^y!aRiv}0l
zp+5TPqZ<6r%E_$IV2T+KYZ5E<a-PrK@!4wW>3lSd+vLww-~8r-_25CW2ej&bvz~0e
zg3V`wv0>}ZJMR(i{Tig&2O=OdDfYjxp$uHcINxo4V9PhF*WY-<XMfJ{3>2IWo9^zo
z<8yMN3w&Ai<dfg4o_PF8-)6<u1ZET1_?LhA)7qtsvu#x`yzqjamcFMR_}G!z2==-0
z#?9LBca3C>d*98Sciye_tv!Cw4`%}|c;}vbj@xFToB>Yf+uwfFPiy-DKBkK@Bx^ux
zwe|h8pZ%;Hg<csT`XB%JX+44ci0l)yUg|QgJu=k);~&4hx>Ot52<*@KkAL<Tq8WAD
zfCm!$Og{Lb4^+3^c55}ZSNen~(=-ouB+z)4+brq1^jh5MyxXwWHgj~uO`A5gK?g~3
znd377ICNr0q&u_Xu8?<e{KTrxus8x=zq_+Q#&tJNN6&(&oHHS;7zCsTH1GyB{T9S$
zT(3=NO6)S>)4L)aXL_c~+)^YUGtP3<FLZ1nM?87<#CnS_gPR8fMaaK?$P%q|O?u#Q
z1{RD{Kl<p8*+tAU#1FZ;E!!I4Qb}266iAkR>iU$kxGkjvI#L#Qb9Gi0C3Xm&%t+9O
zSeI3zMK-)S_@PDXs5(mz{)UF)u>nkj&IIZZKk6-9{lRx&AYSL-F=#yMB3yVX4*G!E
z0SX5g`cOA)9eiW)b4Ytt%%5^0VjE&+CBQ|gpTa1$HzV_-{cT6hgsSm)&d1I~DDliw
z%*<@eATyhegDU~w-VRcKnVP6tu0%f+3;0YBy)AkeE$u#nl{y=hj?JY<eF;KOcE@Vt
zjgRTgW_B73z7Rqu<iR;_&QfPlA61z)Wr-o8+k+ImcrdMg(2jK$%_!)kp-*&hE}6{J
zojc^PIc`utLda$S#RG#3B4#?s8ynaAQY6Q9r;dU#pt$q_?z5u6<K81d8L}}?3@UKE
z*-SiBjyHN~;M#nmgXf?wm4JgEb&R@VAI6N$Bfn*P7QA#OIGxZj91+;4VTXw$RlTCw
zSU?U(X4%E&(58K~x61mDtKQI|9JJIw>;o<i1!ofLFPs$O1OdZv62pRd50hxkgUGzX
zsX41W?cCCSmS{uK3x8ZNZ0rDi(X$O81#ZZ5x&tRLd+4}K-MV6>Yo3O%{`1dIbIqiq
zv6xw?E!|OMo){%c0MM_-Wj;ct{7ghvILuBo`11o^f+|4EPoqZb4B<%xmV?MnZZz{F
zCBBv|+=N-ScsQh7iW3L^K~}De+PLuYuMLulLO0U_Bod^?RaqLsx-`&?irm6h<uT}B
zimak%iZv>SGT?xd<G{~B3FDQR>WEiVFOYC#ZVD3xzXB+HC>O5LVIaoV9hiR5JL!TV
zH*q5C`U}Zq7ABftWQ1Cu($?)V@CvRY1VK_{k#*i|;vl>>sGX`Y(vCHt=MqbqXD{hF
zwT`hu?s(JTNyBF+P#kCKXyhDAX5-EngDut_@CD@6sp$tsRzm+QOLTUeHl5su3U%qA
zGq-06I27pX5O;B4hny%2m}MEyN~<j3@If$ttPQlhJ^*4DUctvU+){3D0S6BqLnbp0
zhZ>)<4kfKSvc{QWDWGfGC2Sb@)=_tQ!d3y}&JT5QE>sNJg4rg5$?ce5yUrF<bi~}@
zzyc5cxt}JQ!uEroWos5hqh!51>Vks{yV-WGkMeT*rm>a{`<N&85lj_G+gmZ^-R}zA
zHi3_M1g`B!#mlc$KPuNeq9cV<A~ca_EzKNu{)delH%_aP-e=;LWl+$<gtk+Od}&z0
z=?vV`<ocS9)9&nQb$3!01i1~#Ek!yPT%)tH5X<dJAY7~SFdPzd5Hh{ajt!1)y{hvP
zSY(Wj>#TXh3!Vc5WpIiac%yc5;1vg<Tc+GL<<>GkbjlY*^NtNOlWgwJ@b1(h{Y<S2
zpqrgfW4ePL;2~R+e>){%hHSy2-V&mJ7F*-Ca@3nLWZMp|TQ~(4E6r2-5kzVnUv?NG
zLg~np&)C*N3fy%r_F-azs@T!>#YWor#%l)z)<SdW;~8YBU)*x%*(79RZ|bKPV@pmt
zH+&J!hBh10&+8z<g%)k2AJEdAB*GSy`4tG39Bl&+SB?ti4~bHac5y&|r88Tgy%@36
zs^WgyJPn821c^^q%g{_GEIPx<dg}AW8*lIc!=d<01B(U;1DDN7Y_Q@QdBJc?FW))W
zo6T4(<u)Y`?lE`?@Qg*l0pA7Ug+e$RV7v(*)^yM_&RB0JhTN6fwD!Rde!zEY@|vFo
zQ1)G{)22H1Z9va0>WeSFSa(lO_WM-8WnE=dP6QoR=|xJ`aY0M(q1_;zu68-{LpIU}
zd>hvbmCC{Y$}2x){n3RxF2vjlKK=Cdz8%iM;5{mrU3OXZu3qIh?DY%kuG_8}P)qbK
z79OZWALL)4*AHMbFK%1M+$cBTjc(wumU6mo>0YC|TIj+8Yiy{CJ341?IxF}|N9^;V
z4}D0Ei`~l9Io3*WJZrQWkMB#vlRYMvTynAQ*qmnFuo?Bi=}@+M^$O!*k4>94)$Nk?
z#tGm;c!dGF;{kZt6)%s%5rLP1e!+{S!T}{T;&dc-DgtG%?8NH1+~U?f_ukv+`Uh7K
z1I@)vYp?3@aBlk@EYMkaH^}~doMF{`*@C4-=|FT9_Em5jlztHdG_MkI1_BBngJy?7
zCWAk=V8`8%h1v|pAcnPr#UYUQjqXtgi`f7RcHX7QLwK+kiq(-W3|5>4c?Kc7FJpED
zN7ujujse3vQLU6p*e8MB5E?(URhC<zyt$s)iZ;w?r)zBXb8TR19-JjdBsV^bfem;|
zzHX2D^qIJvlljInTiIj#Klb1SP7L}`Mmh=@voBsLu-A41k2=S#_TU$nO5ny;c4jT8
zjRTA)gk#nPt&OAvuXJFiDzg(7r?I)_k0KKQMCr>+2m5gAm)QjREYy2fY#-aD@IzzU
zXOHkjufQ!~Z*FsrgN2*_K0TrUUzEgQVsmu2SWuNlHroMc8+g-(Y+A$7(qA01K1G)v
z-?Zk}Hd5<pUhag!qNa1<h`!Nb52Y;)8XcmvIs||Y2n<4YehzD&!;5|q5oa|zg9Gzw
zi`Bs_xjdkRsWz7mW7QQOy4<r9ps&9AnqJoPh&!L3rIFX5GqJDY?6Ws|uLgGm-qpK9
z9(?HG>TSLJhi}@1zPy2cuQz91fBm)I<w+-g@`>+hpU6-A*uU39BzMdmc1Uluzd~<h
z-{9S^&;9JV>bu&{L4_FO;36A6d3EBY`f)3Dn>LVr>!ELZuLzx;0f~I}j=+mI!SgL3
z-h%eXBaeC08G|x(41NrHUOdERH%$Ely%_07PyN{Yb+o_Emq$1<)@ZKKEQ0+X3~=7x
z^6<ltI?XL(h*`hbD~Eo;d(P90<8tLI?Q7XpJ%oMUemiDS!lTX;viAyY@&Cy6*ZE`O
zI3nJ<|NQeW+8NMP)CYU>c*NCLU#*!*ygKtIvf<-;3q2=MW<nFP3r)&Q<$dqFRC{<X
zl<5Za((kQqLrw(D;FyJQsYgGdoH&9K^bhf3NAcNbpQG1kzE}M6atH2&LV%$x5k^^N
zgq}R$M0V*n%{}tHU!eo7JW*}hwCO<bB#>A$p`g^Wv}vHKgVfcJDeJr1B=(~pJ>xT3
zoJrNI!7-f<5ELGCDrOvPwLbs6bAqLgJH>+yVm$2U?b+&i3_?B?!Q09RoaLc={<#;b
z*R}JKXGjbePu_68Yu6bb3`>@10BNAT`r7Lns88wADqdW~Jca2rPUyYwm4m=>NYx$M
z?DpfQpLS>G*&K}+$&PD$UOW`l)!XZL@6~SDpJ@}^JDv^DvE_c8=Pb^*VR+36j_k#s
zzf?V~4PDEZEf;+_Uf?{7bLEv+N|x%U0mVy{o_gx(csY_}qZ5Oa#m)=PKflzkrQN+d
zwL$C|apJK74QiFxk!j$r)Vps(NgVZvH=DhoO>w!+9n0~y`gPh3ixWXM^=2d4Q$N<H
zG&BREU6>`{lzCkRmtxRKOW9|K-&n^Ch)a}c%6RDU4DA*spf_#xlb<~6owGbEMZL|#
z%EC!PGf*TVHqi0xmG`NrZSfU;!W^0o#}QJKyqDu?&PcKfbEjgVaSR7`N*?MmC$~vw
zP3a7!r`Az-?HNd1+xwc?55P&D9Y_;1bZ9yg98U(O{k$8MSqV;pfdY$I1Bg5d(BXLw
zg=cH>xfOUY_*n~~96W{rou6k>;sr&>FU~~z@|+6%3FrYo1{r%h2%J@MJfR~z+3Ypo
zSq{!HcGyP!BCn54K`Ib+WPmQ!7IpZ>%mgRHnu9JgECWPdP*h%yBpuKl9k^s-QIgq@
zvZiNUiD!S{m9szU3<5k-hAbBLkpo^Rdw4uct<g~~GuZtQn+myPvTQjwUqXrxve6AX
z9@<M<Y=9k!LwB*EEi?-q);bH7#yL^Onh-O(xTFc2gB{GUmte*2=#IV7qlRUfX_|*7
zuO__b(tB_wZ|gUYXC`W|96g7!zuTP7o{dj>s#XR^0Tc};I;4As<46XdfCC06ijyb6
zgh!`_B|$m;2@moT7_9LFzzF8d-$_SF$O^vX%?&&=Lw3p!=flh=^cN;|VXO)Vv!(4)
zPT~d6(8nUmfyGesOQ7q=hO*E%z>>?W2wVn)I>3v82@tu-AnKTP4c(*8QJ+q{lppQZ
z#uLjrH0xryDltqB$Cn{sLLePd$EY_-1y8RLDXZ!l7hR&>MG}Ozb4o7tcNQK&r(+}v
zpAa0-ICk@Cmi1J6|6$HddP@0&D#O_#zaO({)24&sX5llM%2%ye{4}gM68CF&g2W^?
zG&+UBk&n)xwDAk9d2f$2J3<K_F{Df0Fb*ZS$7QA~hE{cqTgX`^KFJC>{ED855eNlt
z9F<T{(v1ONHzRnb3eYt}sUJc!={hM>^8!Do`7xkCVK;5+5;6pYN7{yB?zCndDC-X0
z>QF8`W*^KLyl@L$ib{I&g1e5kqX6a)alr?dbRCQkcvJ_v#I@}NW1$>aL9OGoh4}@-
zgkc5*ujE-16~QT|8(xZgDAF7-)=Z|UQ>pwkv1b#F>+cD@;fvQWa{KjQZ9%)zW<2nw
z9#PcRxmiHU{A>0SI*U3Gdn@*6J%PIgOmRK^&PvlcU_}fMrMZ0Ik@it-o&pGr1<yUY
z=4L^T^$rw;4|fFo_`BrfYykbZ*7p7cbP(Tt%5&$!ea;n$wTHcWz;MWSjD#q*UNh09
z7_`AJ)^PTSC;K0KmqoHz0FC`1@z_7-Th=%%TY8R<mrFF!pbKj~4$_6dmkC*8;S$gr
z;RI*Rgb$5{cc9*J*%f!V_@=OCC4$jr=;=F3!k!QeeZZqF21hk>0IoEPzuXN;+h8~D
zZn1trh4U4UTw<}ficP`gH>$jOiY8&a_=&(}o(-!bYeC%UL8tmMN5#BIiM=plWnA>J
zeN=B8V7=oRRwX1?{0?Ei>O_69uLI@@hLO)B#SoPfTY`Hq-i0%1oQe;nV#7LzLY?LE
z7oPvAJ0jPnbOd+0snmCaX%MR;Engmww{up5CLKz<Iy9^=0(|>4_h!Ux!iIoG(vHl|
zgvHHx`ZWf1++OD6S1hplrAg|T`uAJSSZ81`;c$TQA|jqP<t0iPxP7}^PyAAaz>AMs
zt<q!qEbyT}@);03T*j?R-!&0WK54p2-w9#{$GQleHk=8%#EY87S~#BpJ*m6gc8v9!
z==VIE;<XVCUSuO^iDa(Qi-LHxzv)a^ONiGZa7QFwfW%|^UXQ4q2@aL-1@U1p>KyAN
z>=Plh*GyRVSmZU5kn3XG2WQ6GM{Fd+v1*@>bfGQ5#qQXZ+pyr(&O{D^J5o4R@EGLm
zKjC!;I7aT+InXwGqZ(^RcIv7Pmu5VL%`-;+!a&aGgc~%`U(#>TB>T1ZhnH-twPno2
zQ*0V{$N~)7L@B^tjCQim<lEBh!_(1jF6}cpqK|N?fmg_x*zq(CLVK69##?XaN4R)j
zNbEXw*#Tz`H9x(^{X!jra{dKlv2HOPUNSg4ahBz*I>u~DFm8dekAVTr9UVIMs0J6`
zw~bdkGK1nQt3^~f6Ba#LY>k01;k_!Hd3mXjJ3M$=M9f7`7CNCtCbHqlE>CpB*)UL-
z=;K!0-X$;t+okXHvcCp>sTTu?MaV@O5Znb}twMfJ{C4@wJtABj6M=f*xRz-l)tk8l
zV+O$thF2Xjcrg_Y8Ry6cvvQF+?6cdlz1vl^oE#{}L9suGy1)bbP$%@Xv1KD<Q+FH+
z&WIUG+B^4`AR9-5Ge<V~1f0emw~d^fW>*9pG7bZ|eC1D~Ws@;~<^ua=Kk2x{5>}QG
z6L5BM86NMl;Z7AN0PIg)>fjC`DWdZ}lU?uBMZJ`envb!x|At#*I+~RMH67GBi4*NC
z)#)NJLvWSJ@^fGi$B*gr+uFoNnff>F-3Y-W0L)=ynoWM|*7%S$X$B?xNLH_2<5vX2
zi%Xu@^!=Cp+je*+17BZ?s3SAmIQ7(%MaS;Z(Q4}(+pAagog5rnj9s10g~veS1wnq_
zhC1$!H+Se|LOZJ0UVFp1$YyXc3*gm+%a`l*lajr2=N{?zhJNu?I;zC%4xYTs$KR?E
zB5x<-HthBt+e5YxsWEum0pZn+ypoZ@%S(*53inmf<Yk06lBwR@wvD?rdjE=U18>zW
z<B`|4+7WS1<`M||us;Q!1e^e}`8XK$CeS80suj8&&aTsNtYfY(?|b2eOW2V*GH{ud
zoTA&`3p9AS#ClWvciz~x)!X|S@cg(;<Q18`Z-rSQf&DD#_{P?)cCy%qSqpnq(4p-#
z<Pb0j2z3GgI%saDM**1CtysZJlmw3=m-}EkkPC=7(*@LH(RMC#ru`jF-VU{9(O|WM
zm$~$CSkb=odU#rPG#2xL(xTb0<`x-lU%vd(OV!u!x?6)Swq576-eg?o;zP(lLWjvT
zV9V0fTQiQmTDQ1HU+%l++N+JjN3?k9(r$I!JWJByIP-4Ww6Xfsr#_+18+#+Z`OSy4
z2jp3Q*Csn9XXh2_{Ga}%Px{Sm4B#L9;79s;-=jVQONaxqS*N-6mK&=}F1<v9V!$7h
z`pdugx@REyURzXU#__)QUsm0C!$&nM81~!R?z-z9Zz^Led=6A*9H*Xonsww7fy)fO
ziuZ#b{LtI_J=ipOahRNiKlQ1PR~t8N^xEZfKlxd8r+DI!VgnxwsqwPr>#n=TFNDHy
z>{0piKmSV&>^+(##0Eb2V#o8&J+J!2CvW$RguNpVJn#*F<SciqVk5q$$4upOpZle1
zwVc#|UJvlSC%><k9X+fUGA*_pXsTGls;ZlBzCrtQF15{Gd{J$F=Uu*p^X+sQC+d!s
zqHh?{hXPA5SvS1aSTu9I?EUZa;~4w2>$)SjzqBE3{%u&VrBt=8Lo)7;tm~l^<ScW?
zX`|Jj{9>?rYhPn3b|}IbEMFx@@~JiK!#kQ#TGNd$KE#<$w(68%`QbP@4bGr+Xj2N8
z4xq_M?L*AKmpT+E*tu{W&!tklGqfoJ$IZIIpdQ>~O>jW#8swW(U|5i64TNW0>`cTO
zos1_sO}qt<y(3(%jEP?coJr846TdjK=0kR^(U@*==Jtb#W%`|+J7s%A7|v6HDSvym
z5Vw2da*%~x)kSg!^u{D;$=gn%9Y;r%Vhh|jYc<%DOC{@QweimAsXA)U3$_~_3mw6w
zey+DMqCQziW_Dt$5H<&%Xxv$0_b+t}okT00yvQnic(?5%+tLnRM9&3bxC&2o2rC4-
zO(N2OWkNY6c^-;)<W3rDCQ<53rZ(qENoF0`YHc6VH&V79&PTXT8{1KR;nc3$swQ;g
zdc}K&YUa*XI(UkVhR@vL##t}oa+w2*1b4Bc&df@vH&a~}7U_5NTlYW3bTaoI`i&e;
zq$x1Kd8Yi{UxD|5LdD6`3x8sUv+}lXJ1xjWuYU#!pFjmaoe5KXFQ{6+(OjOoA|s%p
z7n7h182Vav;fWla3715`T`y5X-_}u=3M!yRz>rTJz;P|Hk9E@E6Q0=Bv|w2VFcI+v
zy1<P!7zTC7HbYoidoJ_D)_kBx4jax~Z!-lS-9w)?99!w`jP!{BrFhnLjCul-rnH9t
zLaL6kzuQW0PK!lZ*U)xh&=)POr*HpCx3EQ)1U|Db+BEsP0u<%XM9Sci+*eAOqMi)n
z<2w%PGAAoB*?^sFU?=|EiKC&TMd>)qJ{ldw72!-J3{Vxkuu4DS$4o?j*un$U><S{C
z10rH@n}K&5y7N%b{7E|Ku&}`Bm_AcA(F!e#dNrGxf00iwO$U~GSlb#g5(UTNfFQ>#
zNGKZ-sq$0AVvPm{)^d4@Y+$85!0Dh>&aC1<uATSmBD?U>4<U6$OCBA}TX~e%e__<-
z=X$%K;3iHNKH#LUs|ld4JQyVaEA3sE3s?I2ByAEM(&lEv0h|(-$PB?ZOUg+r&Q3tS
zM}yjT>k&DV9<9&Ot3{)_7iFu_kOF1a5(ID~M-dJLhr=bHovb^EVDxQw1c)FoqGAgv
zFwyB6CTMdofSa%=7r+7j@k>ZLw!pXZQ^zw;u8lfE(jrGe#kJ1P1UTRnmihqDz~JFJ
z@Y^9|S|5N67Ds|ZQwQ*hEZM*|0uO#nEz-DIH|$Z{1X_M68@|Opy2NSQBKV?SQKKy#
z`ohmZ>{Hh*(ZY^gB1M__s3>&}IvpiCWd>f(Zj7w*tT%{KCRC-c5Mw{ef{&OfA0V%<
zfnNvkR1VB=@^xV^Cbkc?#>Za`FW-y$&9F{1n$H4GSU4v@pYiE8^o2(IvKecS7Dbtc
zk7+X(-<fq^5lypS0i+WGV}mCfCEY<3v&hF{-01$;&jB6_rrg?P0nzIW!r{_^r&77?
z>4~@Xip9y@T8PAv<k_DMSoz#aI2gXUGgj>uzlE$7Sbl6AgFnA;e5@0M?2!@i&>BRT
zLyNzAbX%IuU#KowQb{`Mwzhaue}aas^K2B%yEasm#a47T4t5Ydi^MFl)@vMsv5vs4
zSnl2ojmn<-V|{`RVR2hnl~#a;J33*XXcXIQPuvzpM+PVK$i|ku7Z#oIU%>b*My;b{
z^FSc7l@tyaf0ARnpjT{K1BMf!F2r1F)w2%_Rlh0%J%ue<JiKS8#I+sH!41#GH*LDp
z;<SUn6uH>t!mT?HaOf0Z+oM4`zQzLV^F`GjRdXiQDxDxjreU%XiS?sx8G!3_%aA)T
zTtoZmPYTo<>BRNyK==%v_=#2>nhu+R4!uv0?yo=Nbl;ZbT7JpW#rh1w<=)}RK&3O`
zKp24BB83+NiaQh+UU*@}*Y?<V!6i5<uyKoxZG1(K4h#MUz3k}fiL0t%4}27`mL9C!
zLS_L{wbCu>m4593_4Cf*q9~5!j16aKCu``lNP99ayX?KyCcT6xH``&G5$*8hQxrV3
zn1l7a^Ul@X6ZUWLU|ZP8yJ9tHSLt>$x`2xwS6_RL)_@q$+O=Ts8w;ZwHf)gXv}mc{
zV!apT10Q(59RQ9e1G4#2A8Q#b#)@rq;d{>acWlDBVtW=ov0dyHK_3=<*RNl%wv>Ie
z#{^pwusb@e(H9qaHw%FchP?KGwG-OLn2mvtOuzO49|v6jg`E>_OWO&1Zcx2(*f`ki
z7Z4;7G4SY9&h+R(4)`V8LL1k1O2>Kp$&2Z=0E5q))@XeiP@RcJCeV54c<fo=r8}JA
z=y=20;HB;pPC_vH0VLdA;Ve%#s5_nt#3BNCuoMn=5g1&Y30Y*NlX6=YKHxhR9|i$~
z1bjXRisNC?(F5Ea5Y}<G!aVIr*iRC8Lk!RwPnhT;9dI}?LkOprw^8Aifewv>;Vey^
zFbubL<FllRMa&|t?!b)c3xEtLVaE<qjMEO-mAbJhEo>4Cy7AH|Y8=6-hHUIaK*u2#
zzqNRsHVqwd4%#Cl``h74M;2kx!GqGON87^7_EgM*DD@#=7Ryxvd%11o#Gq%^0$waM
z<5-h|SV4s2<!+jbvMSC5iqXIm&*V+J`{hXLQ{HIUMwJF?7YW+6r)R(DH#RglxX9L1
zJzr4WE^g?5VkWb}WsGnn^n?T|Cd*G@NSm2ne)*N^$?tv7tMZ=mmNfwe=lK_$=MP{(
zz}wmW>aV`*eIl`ML|s(u7)ZRP@q-_{+?OR>?(pIsHbmv4{tR6BvE%Xzy&iF;Ui5<w
ze97*qr+(~N!2oX;63k~(@xA!s3;kjx_CfISrN<wC!j38j3ywgi&!`JYrIXgPEKkW*
zK;4Pr5O^8@2?LG0Ain%FUf{~LiZs?SK*pIe5aSkSumux6d}bDUWW$+7T1T8w@j={j
zW&nTi@(*aU8JqS7s^|2ABVMvZ+P8jn`+RgHJ~qyaozA=9T*Kdf`yG8;>oLum_W2SD
z{@9<{)+wjT{^AKe@1u3y(5J3X*cJVQj*~-6wtuR6R&5Y3LkcxLyAv8OPGTk%J8@l2
z)8+y8$iwM|AnKiX#TW(Is-SF<pFDagmUgdh-n`il`eC;hq+H*bM1N5uN8>V>BJC#q
z|JytBV9Tznyx;d;51K4%u&CHp9AhA0LjeZG0b7Q2w<OCZsR|SpNtK}}hN=WAR5_%=
zP$`!}sMz=qhYSP?8yrFzh#ZCxB5Rh3WC_axV-e5BlEolAs5MKi?l<K7eQT|K_r3jI
ztA{t-_ukpv_w2pb`qr@59?m}Jo_DT7L>~Rh*`8g>M?U;#KJ)XMLv|SqD0VJv_2W%k
z@o?EEKJh94+$ZnWU~DjXSv<b-tG;6NN<9qb%NgnB=P5t^nLqbq<yd3T@gUgqq>o>T
z<L_DaXwrP?i--Nofc$-jcTK|jvO;?K`A+m|j`@krkAC#yT9A%<CnZ=k!-F&0V_Ku*
zTMY5>#8O}yG30%=Bwj@?Rp@OrmA%!^+=eWq(sUkrgA5+9l;VqY@)kE1;+Mbts}(El
zHbi?^PuBA5f4uZ5zK-Vp2Crc};-`ea`sH6kP<)Sr$<IT7JYJ7`q@%j;^6ax;sW-b_
z<~lnsFOID(kTn*<nYa{`F!hHX`hxoYKL6^Vg+*J^g2&>=`*Zy^I~HCvxGjO=h<$Fc
zcsTV;=(e3qmA#003u(q!$qbd`<DcV>cP4WEf!TF+Go!}YLLKO{ArTpOYV<t5hz3g^
z762x5yeuac6BY?yrsTCebq0k0enx+jvtNI66T1Mm_4;En4Q}hyLIjRQ=^X7se2p&-
zi%H0{Xvi!(3MC%(=I?Rh-LKpLW#QvtwRoJK(Hgen$GF**@Ii<DC$H2s)y-3#9Z?t*
zXj(=#c!r{>D1Pbd^PZ=&<7-;#Z^|VklKzKYFeElYic>um%Ps^We-+H73xB(`pc}b7
zL&MI8%R4aMg~=HIXftm>L%Cl-l`&-J<~WZx2&(g<skl@NZ}`d^i}l0ts>n{+=H0SR
z(!I1-i-{8VY~mhN{H;^J8_m`U!_HJcn(lisv|34qs*fE9$3P`k9xo^Xo3*1Z!9I;o
zUQ86r`|bCvdAZsCc;eG<>OcaLbyxZTQO?fgJO#WKh{~s3XK;9EH>}myfmI_!%m-W5
zm=IOBU+8Lj?5M%)qOc#8oFQI4z)Mf@02nrw^?)@$Xtc{lR?DpuebVF6UpBLja`Uj0
zdKxZ$gx<AMl}y!!<af5h|4<B<KJdS;ZR2)=V<91@#6RUaL`imnp(76;>gPsQ7Ds=f
zo#E5^wuYTfB<(nK|AjvU<Zq(b*;ERB)*=%6DBCj~xk0-}ujSO=^60V^9w&uL+%IAG
zdhx{<`(BvoV^ygIs$@#6_@!h<ay|I^8C;2-$;wK+2y{lA+cG!YX>^`G9v9Jj3{ank
z&95G%VnVvBGUHF|e$e!7@mNB{6Nwvoa5?DXnQ7rhvJXJ|)R_-E5F{V}$H;7h=Mp@9
ze4Va5^rl=iv^Cl8&=A@zA>5+v{>DLNq#}uGSm_a!uSN~f*<8O%%;IJO3uOsLqf<v^
z;JU;;7717!LCcT}W1<RKX41Oi@7uF%CK!DZPa6<%vTUe;$c~P0cep&_<=*$-|3Lg`
zI!pzSub?lw@M8a{{PWH`UyBP1HR|D`z!jCTU+w0vrT2~=c;E}8-`C$+v18<`@Yrhc
z7u!d5dHW5ctFF32cG=Nn`&0^j6i6s1VJk{AcU)TfI6lSBWO?~x{%UjPyxanZV)n!!
znJ~|wQODA^?%()&mKXHIquES6O#pp(j-l?zd%%gdsO>Ct?r$)71D8Jng&hx+xaQ}^
zpy!W><ZOkx35)p}yL?R=&r5*eG6(xy=ET>h)Hy2`Zv3rD8FM34sk}xidC|y=UNq{3
zQ7)S?i9~L4Rqk+22Hsk!v*%*iB!;w~l>052;u#cPHg!ywIkY=&^73ty+p0KtLE`8>
ziI*hd>x%!bCVq+oyw@Y?CcfNrL7w^GzEhj9acq%qrv%V{^m2d2&-}QfXlFbw0Dyi7
zO4-imZY0a!8le|i+cq-LR<i0re4Nw&SxifN_uhwJUQF)3`|i)Z=JLz=>$qM2^>B;=
zIyXB{MGvanF2j!#ZhV!=*@u_n@Kr8@w!RtR+Z_@#De$*5T#xg<4h=WcIdkvZ$Dj=y
zSgx;mhJ$N+T;P5IbnL`1Hrd;7uJ_q?`vxrTVqYKM%w>`*vCv_YZM^RzK;{HGl_VDJ
zbRn3>trLW0I<27(-*ZMyOGE=!)72q6H)6VJ5#TSi7ZfbwN8;~z_UVQ;&%^khiQ>7S
zU+g3C_fF{W#3uf_SH(o;Te21XV0rka9f@?{O6lYt$T@n2g5O+EoTLNY+{faNExl=z
z31S@msmq>Fpaq5nFTOrTA7tK5bFN++!6Ls;V<a9Ih_B1r^Eo)$cM5`*CXcp;GU_vz
z9((<P0}tSp-KKEUEw_A7l~+;Tt*Jd{;@PbzwCKbRfw;tva6Rh*#*>hb>uX2G0U{Pt
z-?O0bP7i)+0wTMY#~$OIBN|}d^2Y!H$AIGb0wz1#XMXpECs+fAQWhu%uO9HyH#vUr
zOMX15cYpBlADxw9In21^^#kYVAu-lJp0vbg7Ml9jhjzputp<iaGM04sS!U%ltT6DD
z%uY;VtJVRc=%baW)axl40O*q%(y)2>PoR0IuI^j#3Icw9gXWhwFcuKrKf-GUsI$}H
zeI>Q9pqE`6{lUUb{8@B)0{1b${7TOeq15gvrs{wN-B7<!I2L;rh9{qV${%i|Mk4mH
zBROAhhU2SzoZ?AczM78sTcLeoj|Jv@y`hbJGA#7?L5}{u?P(xhj`ZZry&UPzE3dfX
zwfGpP&v0G8#<aT^69Upw^m`0a4GPXP>`*wn@GEs(#_(;*`TFe^pbT0M>Qum4%G+43
zl{FAw_`(-izUj|G{E0ljtsC24Kf&pNTn>ySxU7juwW6DM&uc$uWxLF^6k)6GCqPBw
z?D^ssUpn?pj<Q?#A~aU*Qfot}YXZ{KUG4}P|6X^>?P67)I~aC5B>U{ZQPHPx<fNWP
z-SRwh!`tIR$$96UtqI5zw3$kWs*Zs!MMx|FmtOi}mwgb<P}x8iI$22Y=@R{9r@t}k
zbOB}rfOA}h<5iM8jci3I#otW5ZC+BvZwU4L9tRfP+)s&bk;*W6mk91Grn$L4E4TW^
z<WHvDFU;=ASL-m3dWFC<jhkv`X;3Zdnm1l5yr{oVX#<K#ffrUwPn!^2YjbmNJfdpA
zAi$0xb`+G+8;QYFJrZSKZlx%HtK$18$frbQ;j*YK9QtFRCBJ03akEgmi>}<OK~L{}
z=y0tFpHHq3jb4S4&%CN;PgF$7Yl_z9(lMF0wuv0~N8(<}7=_;GhM;MxDhBnpK|wP@
zhX`iqBwW++2PaI%CE_oAB5^{A)V0IK+Qo+Mdb&Bm6EfB(3f~lQV&atq^{Pt)LxqY`
z%r=wyj3s^Z`H^yIyqL_*eK^i~#oC2A9Y$)M*j3b@3?i<T`AUyT&sn9Vl9|p+1v!Il
zwNx^z@rqWM%9HNu6s<(o%nQF(ew<(dk7Jw~;k4BtNLnj^!9D(XB7^8Ey(Ou-7mliD
zPRG}ZgH%;ZyxgK*<tY_wRoRWOdtqF0**jK%5u|h|gQuu_Et~5}*P1b2Os>0bW#O7@
z=9V6Q_~Adj@S=<O)6V!!%JsCkU37VHsK=@k+o~dld2C4Ia)&pZ)5igJ;Urr*JtC0p
zY16uj*VCbuT+xe$8`CmXhbO#6Me`tqMw*r{{qXuS^*+HP_3}ZPJYo;nG=5r+I;m{-
z_@W!2Lod5pncdFxuBmXH9Tp0k>1}p=-xL$CT(SA8^!kbhpqH;Y{Gvk}*SXxPr>$GJ
z)B@IvAT~ScsP6G_d&Fta*M9BC7Vf?G-ucTeyX>fL!hT48e_JtkUG7d(2Tz=xa)7iB
zjcsl$B#O|u=c%-i)iV|zry^Ut=>P^6LddWy9An1xX&jOz6XmSik1~*cWHz3_`UXl{
z>AChmRsqm4ZL{ty_VlzBo~|MTwk}t|mOqrsR!^%kIsAU|_x9nlD3F(oij;i=NYZM*
z&+Mo%L<Mfp)a8L`9Lf*z8WwW&Ys}xmi0*`K^rd{U4W=?J3$FYvUI|%~+)};V$py9^
zu&c|dK%!p2wg{^}JLx0(n;fp+o%X!q6|Y!)@7;IrzxLYO^?>ryooeE@6?50-baD+k
z#(?T|);KOE#wI?o)M8-3<emtWN`RD%t@0X}KnB?O(AUT=q>eVQJMM(t{K`@jj34;&
z<SD4trfy{}No|mWUbH460`p-a0g7OS@B~wpDLgKlge_I-GTXL%=oD1Fa<hDAO2ToI
zn<q}=44;NP0VPm*Ib1r(NlA};7|8a3)Rmd>CD%15`na&lyZ#7X=|p?S&qboSR&vb-
z?)1j(!Au<F;yt}1yw7C$y6dhx`ifVK7FJd+ylZOY_t;%frU&bzB7K-0IbIwHL*Kbw
zuY<J=v@vG95Q%Pn=}nwf_%I<CzCe<Y*<+oe!icPu1rpXKrquD=1y6E*{_|hdAOAgV
z*_b>Obr$s?Mqb-(8Kb?{!z(3qmNm^3)#2%E8RK54m@VlJbtILX)efVx0Ymawh>4}D
z?1Y-2S_Q9dtmLzEv@Z>dGhTrBy7-byF4oU+=$jLX`2n+VFg2u4#AV`4Z^9(T{y~yV
z(^0tI2OwY)iwW>qcNLZi)JV#0KSjZ+UTueOm8OfQywwq(t#oJaj&HzTbImnNIx8&y
z?oBs+=)C!PJ!-GL@UBdBcy+pp9ux$kdKO+0iw1vMrs|Q`_SLu&vzo%Gvg(LQzOmTp
zg*(|P`vFfO%}Txo=84O{_=~^RPgFb>Uwukfn+Hw*R9n(sxYmKv*9n(#ryy0H0t7i0
zfZ7GLMas-lfFDz7Le~^eRlcoxR?pPDWZ`f7*^Nd0rqDP^Z!ceqodM0+gy4f{F}tHY
z9d|>(h@FegSUvhkS|A_-YW7NZU{X|=#1$MEso-N^&}ZbRFChM~ccm>F>fDw4?!Nm=
z3XY$%??Jn!%o&5!=Ps+4-T&FU0rJr!(7dR|2q-<!REA&jr5jesjYnc)Q{I@AuaRYa
z5-eE?(pmRt5Fy1SLxA|k;PJ<w7(J=q;o+eup6KKuIR5gLzs9A^w+VjPl6d^pEA^oB
z*TyP0n#x&^Cr^>pho?|WPvNZ_S@C#ExY?Bt=vSRL>sz<56Ly=u)QjIKV>|Gr*D}g^
z4FRu_Jp8a8PSefI_!EbSg@e^XN=&E}fjooR7LeTWcrhp)z!C=uY>f@7?iVv$GZsvz
zzS(KE18PvYg^E5|KAD~Q9<oK{PhEZW)erTy+hPLo+H0?6SMq;*!0sw%Z`GNEyp@TB
z>IrG%iq39H6*IsU104eJfoGk`GYwu9Qh6CcukjSnNv;GuRYYCq_wq9_apo@&FaFWr
z`^dgGohEZYXI^Z;Ln;5wM{_Hvh~oMHYK8zRf#oAT)lTXzgHJYy6g4dlq6%X1@MmnV
z1k*NEWHK(6u^jYx_Qa2@x0nV!j_62mb7JgF>?FdD<2MdO$W7FRa}4ZIbdC6J5pVXv
zN!(@vo0V{hquXM@m^M*O1tmU4ZDr~G)5a$j6PRkl&C{S=Q(vvKvQyjGOH7Qbst`EJ
z0+)^)>_O;p<7irEiZv>VOULwpGFHT%UggS5)}SIvJM_l0qL|dOrzy}aAn8fJ7*e*X
zQb2`r=o#mtgEcvMw8sq{`_dM^G-W&oaLSO3BPDbq8`P)=AF^461_r*MR3|IJKaMPc
zv>ojP&?hSvq4MK-WwP=~tf*#4zT#S{AXT|nJ6063t6_TlCYR;jaqGl!i;3P=f1CV@
z=a4tq!7Vq}I;?t9IYkWsQ)(bIN4Z%R*e2R|RVYs2+Mp7<?H*Wo3RVT`v0{~?E=N~>
ztX2n4+JdN#eA5XX8sKEmCaO*p;Fo~PkX)xM`WT#81VwK;sVjj+*zyoMowkA6#srWl
z<t$h<<tF!dbc-n8h##Dm_`9dH(P%CNisrEY3g;#fQ4=qqQjcLiWJzpHn-`;_yC{5-
z#sw6hMM=y)K1D*tHkxo?o84Y7LR+5n4(>(PiHUUFVshn`SL&CzM|V%4c2mXuu0!j{
z8~{uv4`KxaUXG9I{_$LE6i01h;z%y)B_DV0#{&u3lE)54lIC(%p{E1RvRtBI?XO@h
zK~n`N{<|$n5G^JT^`LRF5eo=RWPDJ8lw~sD6R8L=m5dP$dFx;iOF=`R15|7*N~QZi
zvs_?8kBGDndi6=`0BFMUMG$J@(6W$+PNF}QSr3^7jE#jpSOJnGZQHQ`BoF0j-YR?$
z4_QMnPNGs}az3ljECXAGvaf1ji%Gq7QQq?OA>A)IJnhACi-`d%EB|L2xGU=Ja~<60
z9P(3rYWmcmn3x!d1lXC1ZH$*L=M~M=g${~NHWKwFJmyb~H*{I9d`cCjg&y!BBO(QK
z8cq&|6xgv3kia7Xn2%DyT~Auc#!8SF1jV;#;%ql*Fj_;Pfw3{=Il;>YHsRYJRe<Ki
z<JFP&54QA;7euQGtcunxOzdP(V5QD$(ST$(fR{g2EMF`qAmU1G@u3W%lT#(AW^mwB
zwoMFLBdI_+4w1WFw34B|wMlMWznTZDFD9eW?p#bNLakG?H>*?oyiG)i>S*(HNQ}?E
zE{n%F$jKFhxA1wd!V}RT0TH5HIpuL`gWsf_OvaBf%?V8~w8R(vVY5v-`{sk;<NFw4
zJN!@oYOxc1yat56=4ZvjxqwxV#;2fUN&%*seBB~Yv2ku(*#Mg#WloY+>)ZTA6%Z-(
ze;0j7L6L2{>48868_Fq?AnP!(h(Zd6@-Y^%N>MJIO-<;YRGuO>q;l#bUTquzDaEO>
zLjV9G&q+i<RQ`0C`qn0mp+8v7gH;z3UFz^>#h+VEVCU0nK#+GG%HVdjqd6E=ue>6p
zK>|r1pHyAxMql!b_CPAR(o=cpC~i8DRVGv7I(T5P)!9Qr7^dKO;HR2tT=Nxq30ZgO
z^05|#)Onm8%cSj;t$E^V(<udlHGhIBdn)uZ)egW+o!AYh#(BvW2B>Kq^r1eXQ}xw!
zqzM)(`vI)sN~x8J&SGvrcL;*zQ&-3Aibkl8oiODe9V<lY4gIMoX$9G${6Vb`A70J&
zs*8z%b92A5n!t{xO>~wzu+^jETQvvl^g!yjy%9qlrG}wUXWde2T{%V?mI91sC;?1@
z5}4*yz1M}sat?aQqQ{F5L?%KCS1zhk=`<ZIDTx-<Ay&v}oOp(o9k-Z@aGt<g^uW8S
z1IcYFL#i8|bwg6VK}2k2YlwR4waHYST-$5qR!F_nC-jwY+M#OSn_vpSkYL8Fq<Yk(
zUN{qm5~`Tk>8Q4@Np4cpg_K{_*o44_SLDg>tz~4*#YBw%xt7q5rMJOD=joH3$E0I1
z824p#Zi71@b;hsg1SV=oR-JN>RlQh%J*p`5NdT+Rq!mB5;3))sIx*10OveGQkFzMp
z<%G!A(Jd~n3quanb;=Zy$f8tq6&wp6M7K=hBoV1s1f{PFYuSW46D=pK4H?dXl!nP_
zX9n5q!c-jw39yx9o+M?F#4G=!F(P-m3Rbjqfh8eGNdQ+o#j7pYmM=yrOZ^jVPmDA1
z4M|#wZDqc^yyhlj&Bf%7JMQ=+`TSQ~>G#&yKEC5(S0QhXWA%iofj3d@E0m||6N9Pa
zwaJtsnCsZ8MVh8Hw_s3VP%AU8n7y*#*Icqp=`1*wx-$C4?iD!meu9_7Hdi>5DXoSJ
zhK^t*RB~XOc=EuSCJ=d*k*Q=Fl~yQDmm^?9NlR?$E95FF+GS?bpT3|`KDV)B9jTx<
zHBEPYtRrH+ieck6{qXs_?z-!awXCkWnD}Yf-L^Za8OIs8KGB<spE}fM<_aYkI+>Bt
zC+hl`Ts-B7`%DF`qpKWeubl8!75E0TnUZ6G0;;-l6O@B1I%T)P1rKTuY$j!`8t}8s
zz@KOi>d_VAp{pvALo6nW0ALDxoP8?_K0+9A9I}WHC_snH6^{_HUaQcdpq57fnm%^C
z@X(b~Wym0ypJYdD079qjp|4cIsn|3uP^avxY)jz8thR(oAydFMr~0?)LSe|-b{tYR
zK;hGb079FeR#x82y0DhvH5U^EG+2IPEx{d0_ry}CdBSM~xc?Xl9t}aS0RpZ1*X+I`
z0t3sVAai9g0RdYe^I9D8EM}GtR_8+q<{-0+mY>vNTZThN9)l{94Aq2*LK5JMQ9cUn
z#la*55LRA`54mY2r@Ul=8k;oemO~^KshF(LLq6QYCVIi4gmRtD$8|9$Y{4;Hd9xb|
zO|cq*0z*N1Gkz|EO8;sR0gH8XM+#qDPHfOYWS>#A|Eb^QK=thjO0_HbEem}Zj>W#@
zu^%b=Wn3@%X6Mhf9-MG7IdtgIJ?ezdY?jk>towWogXVX<6Ja~pDHOW_WT~zLtGJp`
zkB0&v$jDILqq%bEJ%&07;YwgB2Q3D=s@QC>Rw$v!S0$(11dmFc{Z%#(zxXK0=a_`5
zCn*`q5(mp_bf|bhv!CcRGw`BIW9o#C4sx=t3_aOU1Lr~<QY0!R7f55VUDZyk5hvsU
z1fid(@i#>i!VPDt^>;=nR@LfyBgH5c@QPMBTC?mp7QNfW)JdsVjo9X=&uTs3*2kLZ
zgo{Z^{o0z+>&&2IV<4}t*!+%lB5VgcgW|Xc>E`O{RTUaqc#u^_@Pv}7uEX0>#X|Jf
zP?dXKF86Y%s=91?#;1DI;e{`uviEb$v&6K^y)8jC+(U7hQ*EphR_cat42Psu8>}Mr
zAd;z5nUun$ya8D@LIh~X3#L5TG_!P$SskU56V(&C!xfMQPpj=Dr;F9>NxBqZVnR{w
zd<+y5J7sfHc++Y!{~pc16MFHSi;4bx{oV4oe>udaHDJpOwUAMW(b5*Om@$nWy<8(o
zctj@T3tE`UMYry<(S%aIr;p1Fy7)E+adeej>CJkHU}hps%apt{xfp^T+@%tEmkZl5
zOp;GctqLd_6C_-6D9SRK)s!ye^r70r5g{E%TMHQQ<Bk(E8QDr>#q_c5m;@$q-erQ1
zx^WgC%dYKs>X70#bSzs3=@4T)PdmH#TtcO$#5OnAk036+`?*X$=VGF*&0ncW?|Uvq
zJA$u<ddy|Vsj3vm)${6M1jiAWlq(fUtwHT-3KgveFCsm^qciAgd`%eb9l(`xjdGWc
zzmzPXmk%MMJ|5hia4X8W3IDQgQI*N-BxW203T8xZtPY5J;ZbfG_B<96u1hr9WCWmR
zUgZvIGo}Y@%qsgZ?Le|R-92P1n5B{{<pm}$UKX4F!j>|yQ>h?r0ZxKDTIJ$TiEU!_
z{jYo7>+XLpd(XL;pg^EselA5jg0FtAvksFvx}9SVfE@JW&aGZfK0#2i#z4dbLX;@P
zLQu41w26{9*akL1G0N6hSCl%;G^C);Va7sKy4!-)<j@tk&god#j44~n_22UH6PDdA
zJr$>kV5Dw?xi^La9Agoqkc*j=T9*yL&ty4tR8pC0A1CWey`eHNC6accDuD6SROnSh
zay|W|UMYeWZEyNYS1L?dD`_?$@+pErp*0uYT1=BT#!f8E!QITGJpGlEv3F97iQaH^
zgF^6^C!=uNV`7GMlY`FJhyT^79tS!=%d-g&lT9S*$%`C*=*f{7b%d~Kapjrf=4;-N
zPM;DaE#QJ@T!}RoG(C&f6qaKALYzrULG_ZWdJTF{_}qfKJ;GaW`UMU>i6dx^2l~<m
zg;umJbVw&uaP@JlRB3U8r#iwV=SpH!X8B3&i36*IPDVEJO5szKgPCRXDR;cGXIrSC
zt=TSkDdWs^EGYH1tOKG7NheOOyPe4+Q;IPpsCmL!o<sU&y2|CIr8e#GrNf60zxQOU
zoz!BY*V%K=<lQHuaNA?tVcC&25NMRj{2M1>%m=G9J$tDayy+AU89pgy*}}OJ2dgdx
z4KE?&YH+DoJE@d{0w9kn;YQgar;>}t*kxqOCqM><8Oqq}+hcStGLmZ(+H%Mm5V>W;
zC+nqdABq;R1gGipA$2uK$izYmF@1|t=Wi1Tw-K{%m8V_@plpq0#@L`uTv|4nY=<G$
z78~jnshqZoRh{8J9P4-di&r|aW%1N8rFk=|a{E{Gj%fXy!E>jRT1-%*ug%`2Y!}^#
zr6Z?1k$Q~^qQcpoT-2Uigp`lL4}eeVoWMsV;Drlp=#@+^0HGQkVcWW!F43(-1piMA
zd=!!UKp7r{(B<59X!=M`>>dIe4Wx_?(44VVC_Uk5=<Iwj-@c+V@S!B-QAVnXMBYub
zunP^46{L;OQoF0xJYX$F`%`#QFPLmgY7#;Ei-sxNR3?8~oEtxw5yAvY!2UFh3dO=+
zpQ^p4ApnqEAH;}ZR-Lb@$O<;<uy|}?;g?QU`AIJ(`b)tF)x6#H_d0ZDOV!!rl_mg1
zJT8xUhFr-iuOetqK8+o#D_jpKm9Yn?8hOZcl%~Vnuw#`vG?lH;(IjYc$Fo}MC?(e?
z+1{s381HbXN}N^Lr&I%>n5EV<$O&}DApusMJj;q8+ocBa=T4IM1TMX)&w?1Rk;tGG
zOofS^i5Uq)gw(6*2wreq?+?@9T&Nl(lum@U@iw`jKlXk7fddbmtksiVOi-xZ$=gp>
z@%F^E5tO5)@Axd&0Geo^cr_6kUBF)4^y3I&r;%Gh=)RmvQQ4F23xu8sHtX<<ji7}s
zG@cEnB|bAVp|>{GE&?5?pS+*VRtpXWOHCS2b79cJC{Pk6v00sxDM86JTa>Br$zm{F
z4|?#D04j^pXO$fCQ$-`diC}mvRM9*@!HRfLr+v=yP&OcvLdLGTUVQS@*ZDQZ70*K5
z0lCuAkvF)gx68ldR7{-GVv_GMc>k#w*k0J`%<8zV&dB03?)k21{W&OQYoegSYM@U~
zN|DMG+`>5*!OYS}ouoRt!H|*rkhCTnd>zNhSgOM6f2SaAr_xev47h|_H$)W*YG2f@
z#KvU@@km@ve(;trW#l6Cy9MijR#=s*ZOMyE#*W?`X+jbnr@&|3I<hPkw$o@ufY0R$
zI}*yduuzt-(MQ5kM}z~p%hV$U4jpNrVO4jqQlJ9YbR@nMwS3Azqi<N@{jWQC@PntK
z{gf6HD_&W7+o>4XUf3ET>bQwMrCx--Q^(~oyJ+P4z_41CHE_oFDKatz7swNlQCRqX
zpjuD*;7Le1WmFtrW4jW{(apzVWvKX>n-_Z8L{TBecnUic5W5CdId#i7{#hs|N5sR*
zLxy559H@v%Zes9Lud|AqMC?2ERe%@qi+vA-xSt_5Oyj^-qFpNY6V?hvgVFGSlv<r~
zRdQiTxoTHqBj^6;L?A&&p@GWNL}82IZwPHl05Gi`C6IcW0_vNPR#txgRIQxyVsgb5
zSKK5cA3Ie;+XGMMs}rkpo6`*BI@>m4;3fvDcrn^)tcYM`QTJrZIvk1~GuZ5K5R0Az
zHTWe9lX6qg%!(*k{AI$4KLMqlG~<lcK{Uwr9oxA$AdFw8D<`3^Qll4-oKMO%9EB2O
za#k(zuu@l3X+5dHaRUM{Y`NIWP=?)7=S$JSgt$;D6x~Es(oV-{+FH9zi8hSo17>%M
z7!|21BYj@Jr6pLljSrO37mn7jaJ~5se?!y9KJbAL{O?n>aLS8`I#lCyZfEXJ=&Y&E
zjDY3@sKHj9YHU_=(6nuJEizIN6I)<In}L`drs*Jg22Knf&bV0iAzVPr30g;YIhbRa
z^0x`)07XI40^C$JccJ?~2YuRPu<<;Ef8q)veNhOW)gwn0MkUG+%}Bi}TNaE81#hv0
z4u(%Lp^-vQEHKnp;k!}LE1rm{ZfM#@loYTigQq`S!%mbU54%Cia^Ef(hG*XVP94s$
zjcm!M*=A=<cPNZq1zuw7oXh$<PV}mQwalIJVuGT*^Yg!{?2~IL-L`c1VRrgNBgCjd
z0Dauo9V+Bv9so!^%KU8r^`<|0riC&VA!PZiIft=k(U2)eY5@z|;Zo4bPRddB2Sea;
z!f3FDMltP#d<k|qQxl>FwYY{!nKb}T;{}b$f)XXW!D5*Xl%8s6?>Lr?FO~Sj2O}`x
zD^Fcxon;5C%A{KSDOx<`%`aSnZ9_mHQb4;(%~&C34d_W0YV;5nP|_%9N>s4<k|)n{
zS2U??po`SCBM2LMy#Im=F8J@KW8t(G6CPqyXs$gSgEKATzRgZgN29xSoEY%qRz$xu
zVtTodiU9?$Qk9R#qTXkD>1n2<#?!SXpLl2<58SX5codZ0S{$+-Lg9obO~^4JeP)Md
zlJHJlPSFNb@Sui}_?j@DF+r=HLfi}J^w<{4OONo`&}a|z)NL^iE@X~_suOUtf>($J
z6)M_7p>bV~S6-$b*c8!6PBIIbBAD78vTw{T-7J!_lrd`RDpn0^Q0jt+e14S0vaCXp
zJF70XF)+<o=laUZTQ9rpvSX*C^|Tff4BdI>o!2SjE%rMn(UA<K9ON!~FjNyKDkjDt
zf{t9_GWUS$W%BZ%CPahB2x{Mil!(YaLs}2unEc^h7(-PUPWw3_Lq*agx3G5)9*z^0
z#9F@E+)(H*337d^N<(3X3o4MH>0^g9>A+U|$(w$Ig+mw+ZGxt9$`(EH<dK0f)|EK8
z9us<5?D+BYsE0maVJl)u9b4o|uu5m;B1K#Q01R-W+2Nvx|L|B8VTBrwB38St!iQ8x
zxjwN-;h$4xRkqzW1_H7{$NMk5@WTIgy1KjYow|yfZ@&4v6s+Gqb;;S3IBWmeqw~+d
zKuzkxLdU8a11UN^22BnYno^x_v62-rWovj@Nnub}<x=1?eXlGP2wPOl$qOA~VQQ`>
z6#h5~C)xRhxzUj$M@J7l@Zjj_r=M2)=G{iO$v#Lz@)T_;3aY4(3&9*S)u)~`WML6J
z$f0FgDH?UjgKJL48~;{>G09@0xq?ynECj@v_LVM8QgLGErh=U{#dzu~@^8<cJ)@Vr
z<kHba7hj+sYUdYjWuROGPI8-EaMeD#M9YaRc5z7p$hv(Ab(VI`TMLu;30utpl*&f5
zX{=KGf`}O2gr11UX!O+6kB^>w@`)gBz)?H5@4M>Ip<h2;)gB(FE39vJepj-8a=P-f
zCO4<ws-0L!=-sY^YhaCcBeWnf#&KYjF(8u;#1l`s*&eQ)UXMypN|Y-Vy=eF*F?1Bp
zWgj|y@I@Pojg~dh&N^$~=+aAHG<x3o=V{W-j~3?j(IT^;Hb;5hi;mCi^9y-~2cxo#
zvLMAGv=F)IbI_z`ZVsA0k~2+<mEMCRn)nOKGp>chrg`M(F&-K^<j;cEE&GR`)E898
zC(8H)z01Wr=bW=gFM81nN6&x$`J<&pEhH`GibVu1;^IY$81*TGl`_DY%nqVi#F!6i
zE3mG1hu}AY`(Ie&;ibL?5X~Yfms#KnR7A#;c9&}BhNZc=|996Ncf99J^q04%t>dO!
zZ@o(2@7#FW3T8-f|Ni}>i!QumbnMuo2W*X-w!lDW1G60O1{cMOXbq-<k+%h=WB@Zz
zR#Dr_S*bw1nDyz<>~-ZPD<(3UK(v7gy1003^vpBQj=a&Rv+jgnB_q)cz`nhEHCfM5
zOct68p|=@I;~29+9kn=&(T(0q6c$><KoZMKqa)8Ak&j0Vb@SwV@VfwnnNT6*zWw_~
z`}J8~UJk#_N4jLJPKS<GI?U?mtxh39cEF5P4w5Z?nL}MAtC-ebOmgJOb@2F_RI;?R
z<i0!d>{Fx1ALpmQ*FVXFf27U9s=w5Cvex=0pRCMrxSMae1t-4aIL0<3Fxf77!Ix>m
zEo<WJ$#r8oL^b)79-}<RT=CR!51`7x_Jk}uJ~?n!BQda&?J-t5nq28MLD=-EUnB~f
zEY9fcAiT>;-TnOXz(!vGmsgfY=bd|=%lF^^+0mnqJ~}nn)2_2AUnZ3%kd5$~FE{rN
z>Rc^aU;eVM7@d9g*`p_(c%rS{EQYnXO_<AeEiV!KTu6G`v{9JordCLQXs7gMd%>l;
zj5M`~MPsDoI4hk2EnE$YP?UOL_KObW5=e`-*OZ4GC%1k3_l_QZ_zODGoz}h4rg4qJ
zEmvM~#g%LDPMW;uq>(28t}HLVS=-&K1lfB6*vzvyt3Ce2W7;ZTJUaI5vC)Dq2Vz%}
z1Bw=?f5#I$>K*_d7{!Ag10jCNE(Wb9aN^pa5zEQ+m@uK=rgSJkz-mH;dhybZ(G456
z$Fi!UM*JmBy3sNNGBKfcd^9eqOz1}*d1Uk}?|SFxeK%e|dh&@U%_#rILMK~V!)A)d
z<=FnwD_{9dqaXdz9~-?)i^?<4Je`Y3%HkghC$ddJh-2MvX_Gi((tNgDDnX_AWGx)7
zm|TZatUAncAjqz#Oi{?&ZWjBsfCNKF(I$+-Q0j56E~~$mMtk=zjE+3>)J82NOLFDM
zZT}1p>#~?!b=6g$zU7u%{*ywqE>4|co6bo5nP;BSJ%z_c=bm$(C*HEQ-SfW2uiHxu
zrW!pA6qWU#Nge|h9+<>=FoU5EPDSG*Z>oZuI;fN$a#HAvZ+wzhtN`d(GQtMDae@G(
zc258%)7ZC_(Y}5Ad|C7Bzy52ZU;L$C@SvVVZ(Qxc2Oo5tuD$l(YKL;JCK0dG=o;i$
zs$R`?94Z*uE?1}9m^ylBm1#~}EJV!yY7<<did=RVLMDU{<%o49&;Fv6R5Z%zgLBGV
zvOM)U?b4P!ruOJtxT8mpj2?YVyTT1fGWl*@-rTnys%wUvv96;>kN%95eBq20&42>7
z*N;B>h{o2kZ&t=xhV6N6(HR6e5Ijy|Az?B$I>i&D&{?CWas;Ye1Ff?)F%V06k1N`A
z4n}$t8jGGtby+k`7i-_X{l3ij;0OO`Qx}r*{GNM0IC|)zztLHFYO`CDynq$1Y+P$w
z@sG<h7SNk)RWcBkfvHbnoa-<RF*X+HF}U<8=Q64ZNw}A{Y<~!2x)Sv_Q|yeN&`$Z0
zM-KO(^(;TEdHd7rrLaP^F8Xvc_J?#c_MPjZY)~>pV2HrRMqp*-NAxCuUtBLE>$Wq&
zA$_&<tIF<PFXsk5Lj;BhY*+;D)%~zvUQg}ox--GC+itt<YnPUn|5(NS>*?sAYly%Q
zfpv?(()`@qs}3DHw64#Ht?SN&rXD<a@T0of@YZ!}_Mm8pzz~6Tjeu_3{KxfPNN{l7
z7Za2|^6<lNmBSyUJftB4Lj-0j0)MVw=X=XWc(m@9Ipw6jD*je2D0is7fzJS!wILrO
zFht-aBB1B`mJjGrjz2sJ>?uPwWM_gG`tJH}tyKTzlsy^*h6oH1*q8{cto*`8EhIR+
zVT%dM_4gb<r6+GbL3v0+1cnG~X#_r{C%k`hBR$yA#pKnme)ThYGW2`ZfDQSBf{hH!
zpnHhG4vN5{zP<Tg{rLD(8`-7}T}*IX+p2qY@8sHzY{Z~@h`<nmwIiV04L_rAZ|+$e
zu|Av)UrccG(Zh#-P7S(keOw;23=tS2a0(H4zkYc9-=6~hw4s{go0D$1;f5D3?Ai0D
zvi4=0V{x!DL}1rP;7j`U<{NZ%@YkCWiA~v=(2%RIzWO1pTyIj5_vsC3h`<nmjg0_*
zcKoKzT1aThrY$BI)7Ql}Ye8AJzfwf!kcJ2h5jZ{qx=;BQ{Sn`$z5#L5E_156`gUjT
z=38&QPKLj`XhS|kV2HpvMqqC4cdj^i@VoVz3#}=emo{~0LbGV#IcJ^q11f%e^O`wW
z8X~Z3BJfGQS?LEhdm$mZo4%M}^zzFue?spf{Z17(=Iyu`8PX7e-4}r;bf4rqb$PQT
z^J+^L6Z-hz!GoXFo#yXTakwG7`v(2c;`NWflIGK!w2*Asj(^J*6Jn`5&A+de^k1xh
zTnCLq1a?^jG><%=wy@b-x|q;zzcy}e?rmEbgTeF=fo&ZD-DQ2d=g}6oV#^m3+OIp$
zKdn2nzp=%!7|ah5*nSaMS^0fEVLlU&Tg=2_!ky<MPe1*`y5#xb_Up~T;~@fD6ameb
zBS((>(`&A|W+v`CZu)a3Ckp%Z*I$3h-u?S;)1vZqC&CT9Ap%1LMjt<R^ys(0;SF#2
z;;h7CrWO-|a{KMKU%I%o^oJ_GY*vCa_%TFa#v<_Go`r?i95`^`FK5ZGnYhg9144k7
z78YJ7+NS(*Qg3@G4-wb~5%?R;k3+MzkPx?-TTF23>H`Npv%Iu)NX5@nAJPzkAp(xT
z7j!9ci1{&#@tDcQgh1)7P@hoX4(k5N%v=-BVh0XB?UD#+9&m!yAIpAhR$DxC_e`b(
zb@R<Pzg%A%-y-^prg=ksh`=t1z(e};lPmSq_)PzN%*^ggYLM`FuvX;DRlmPzLq0@c
z7e(N6dVlL{XMG`|KW2VsQiI0d@+>aitX<026m7_d2<-3(d{USBSLuZM;C5)|%<oJp
zh}^x_tNOoP^$!<q$cG5*;0WBOGyS)3mxY9W*fxs^&g!P@7oOd}|BzPe4^SV{5P_W-
z0sXDbT}z9L2XwP_TYa0ktrimo&OdzZYaiLOXU`QX{`O8BNJE=;c?9O>uG_2UNc7I+
z!`m$q+vc9hbYQQ$?z)8wF1qL)YQT?8^M?8mfo&N9{q;P5^tu&qNn4M2ZQI498h_KR
zxBj!am6iXj`ktZ<`4E9^7J*|cb8|m()uBW0+Gc)FxV!Ba6I!DM<ti;G|3k$KCR#UC
zh6v1l1Rm2ua*Y;}n`YnD6MMKL789Cy(@i&h)!h92@2U8T6E}I_4iT7{2z*=<@E_|&
z>!)VMqcd=1+ueX&tF3xv-KX`Jlz(5(q5RHTn1Mb-V1^>_zw`=$Z`mme331&qJChnD
z{4UR}x8C|@eZBT`q7C;^DlkJnD-l@KWzE0Qv+-}=t~XlO3gnJkOsb)`+;YonwV?c_
z>Mt(ZkPi{q;t22)x!<GR$Q@hk$A*~SF_$^h(V@fCao;dp_Dn}+sBcjOeovR-U%yiq
z5@NbzcP9OS(Jti&wM+SV(a!7XLwSh6CPd&VJ+b{}Jr@7YO|Z44CU(VQLWFO){r0b%
zUs`&P8vLp)jrd@EH$~t>8gFmfNjF(f)OkDhGH1Hcyq!vqDZfTLlz%7Qv1$HLA0n`h
z5m?ma_0L{-!3D3`Eei>;+ci6rexT^G=j)e8qjwIwls+m$d7UC~@6!DI4_$rm;78U;
z-?mY+Yj!4mkLYZ1-(7d!`K>y8yjk=od)`nUB5;}!cuFUyAAjWV;cwZE3kfmXl{=Gu
zu)Oc~+h4k{wDeyUh}ZY@p*%$36e4h=-Uj&3^@@!9PeEqKL3jOPQa!3mpYPHAl((z?
zlA;ay5P|22z=N7VKcSuOZ#@TYSFnf0r0eFp?z-#jr=EG{U+Sy8pA>oc8o7(jP@IUs
zle$EH+qq|-{f<|^`qj@&aCUKJSWH&w{2Ok#;e`u(_WZ0K&HsKq^1LhWE3Fcifi%)-
zW;A-w^5WvZ*2{|?8UivIfnhP3jK@Sxmp*?_gtut`9h_hcmE9PD_iHKnDLs7lN4v4{
zC)4I(F*%7S>9>3Sfwr|gpTbXW3~4t-K<^t~o}Yiq>kb{dZ8tUhblN&BCZ`ZJ?NqMR
zF6Cz=@-3$zHbA#w1k}&>=!IKv(N5&XZRq}%xI8Q-rxAATRK7zym7kF4YfnRb5Sif!
zXc4(fH_6_rZ)pBthTWV=*M`O947x?{O?j1W(*7$A!0(cpg)>k!h;D5JmNXG~sn&nc
zB69cEy0U$(4~xk<^qnq$UM4j^rbXokls|7BR1PXOCjw7thxx0zocVbzBA?wHlRMYS
zu$Zi4-|8n!FIZe&{(h<aLEZWPx^+}Ns9N6$d`$iGuBD}=U)zqqPqV(ESU+vUVzPd*
zoY17*%D3tg=!bRYd!rb`18@`3*^&x>JM&&WH}uX!hYsDfB_8Z>qr+md!5w`4_1B-j
zZ{NOuqD!Ffmnpsl8e+b|G4Ir`Xa{nS7La#qVgD_CGxJ!-8;a{3fni{;b3jj|PB(1-
zj(&Xoje4Q*8x{EBB~2#^)|v6{)gp4;;+{S4ef@z051g5*LHcAPFf1k~8>w~1-FV}T
zUp}{I&o%QaD{s`U<(s5_=!?^ju|hcduoe(5W3C%+rk;Kv&qQ(<z-JP@b&}PM+rM>e
zdHHI6t8lecUa8MT>!f-otKo;eZ`LmFhQ0IiHyk){;BR(vW4A-whQ(yYdWj!ozv!Zi
zUZpp|@qU#<>Y#5{zJJEt+zNM|)%N3$W%yP-RQA5ZhY#O#%{A97ZG|I)&DA3?EGDbR
zWoD?lfxBPnn{@;6a(!MS$9O~BB{SpTMme&w@<pk>du4w9uDRvq4;(vo>_cyO!yBI6
zD073}GmpTqn4EbGH(i6icK*A|b93LUdj#Jo<FC}^(Kl}E1%`!Ve*QkS<4?6<{>j3^
z!XF<zc<_^(9@xR)8AV`NOwK5Lvm>ngE-zSIT>Ltn$-hRE@@4ASm+G?MrCM-aIwK3s
zmlUo0<<|r9>jB;C_^fsupU{ruquOz>3mMWjkHD~)Z1WC08Ta+g(Ybr~?tQ7gmi}_#
zFRqU!^$WDnyukI9mFFuzUmw!h;+^G^=u<C<dP2NK4V)w5^OiB*I`)Y2hqZ8hNpu#C
vhwG!A#^=sH`|JlUzx?tiL>tl$j==v1eCMRB5&`b&00000NkvXXu0mjf8|Ea8

delta 32813
zcmYhiWmp_d&?t&)aCcuE7I!DOLvUN%-EGi7aCc4cK!D)xt^tC(Cb+xYyyv?|`qy;n
z)73N6Rb5q+GcYxwFp0DPk;g|}4^3w)4{wN@C6t7PvzaBOyd%WgQo|Br;p;kTDGUV#
z8(^!Y>!GWxBxvsJ$Oie3hRw&(1?s;cEau|^F}Jt$pft0zwsjJrK5y@)rnI#Xq1NG1
z1}nQrS=!jj`MFtY`l)D{``McdSWt_JQVRPB{uAJ6>5;TbEB-%9b(Pg9rJUU?DS6m<
zS<S(`e3X0wY#cm%eB692l$>A=9(FJnI~SOhlS_~rEXd7C`Tq}U(G+ZG$rOEP@|0F+
zwv=mV5fn-vM+YbO|1_k$LzBZ$Q>IM75yFU2r+kHDz@`3&bx~Fply)}vbhLExkeB|4
zID!4Y2ze)W4~Ubw<^MuR!7<?cFAhN|H%o|zvzwN)vx5kAk_{OH^?%FwA5oTWwqBMN
zGH%X}l<poHmR5qc|E~;0SeAcU{|905|7x{_6$Gf+|A}FDv#=7Bwsbdlvvu*Xb$0sS
zAPs4m{~rIhu^|5@|Hs^xPXBD|_Rp9h7Vw{;paSLPr6sg{R!%w*GcA{0$+d4cj=}3G
zb7#eq&?I&3JyruB(c#3Q!fo_<mHQUx^-}4spIHpj0VVZf>9IR&`Bc%!gyjb5=t4OK
zxTHDi6EgxzUP=dJ2bC1BD-WOZbk*O;%_=Q5{#NuIXI<7^&&v15&u1d{Ywkx{ueUmQ
zL4U_hJ~y#G^E$?(uGKLLG_|}h=9pItfF?NhyM_yj+R(FhgP$KW1*|4rM@SJT>!wND
z*WaIffE6;?)y3KlgBr3>%Q;<2L&x~VtX)ZW!(zCRbWINod=`?mX%dx-cK=k<?cL!6
zp8--a?%|EQ+s3|PN9!^pt9ZW5T|sxl^S4dToxqKqcoGu0$@@vy0)aEW;roe8-RJBK
z?f!)cqDS6sxZ&yppLzi&1DMcVEpB}9Chu@FFyWek1Fk>yu!)dg#ouf@Xc;9v=NcwE
z@cD+rz}z`07;=T@9xz3^$uV3=mad)I!0L3Ez1w-_lOe#{B=ysD)j6I$Yxnxhr<E*O
zJF{xuD?~taJD!B{F1z7$fY?8a(D@O^Jz$JfwNYvoC1rnOifdR^0NTx*SzN{7IUa`v
z2oRn_mt|H;S2S>pFW?xS4uw}YfOfOuN%x<;^gnpGHx=M;w2v4~wrAlNwT<sSfKynV
zauV9%PTPbzrn56(R+4F}_9jL`O|oCvCS1OwaerwN2%@l)abDGjaAKbZxW9<dOD{C^
z*IBGUtYKaebY+}Yjirtoq%N|FuO*fM|BG-OP&K8Ve%$6FfSB(1%y=)lx`2|xwUViJ
zhgQ2q?r*(P8(y;Bb|!N5Y%z3-xI$$cG5Xi(98U4{jYZeae>L5teVr6Q#xD-k5hASy
z3;aH1J$Mk*9olz1b*YN-iV^6tiFeN4{Wojq+iPsf$%A@q!(nhV@I6&NcmRl(G7Ak>
zwrwItzwlaBz7=VDZZ4zCuJ#}pZJZtq`u@jcQ8Yv}^v1YUEb>m&;PAU?5N*A~XMQpz
zJ$4Bt#cbCnD{}G@W3sN2EWQcNHpMAl*do5bDe@a0sEcF!gzMm8S3A&g6}idi;DM(0
z@e|uWRbxS3AQo5j+52YT_^V@0QRm_$4T#Ol0P^!E@$e)#^Nyr?eYHt*z6GYI8xD2F
zWcA<HZDv+HjhoKBudhwLH|2fy`j%tT4Z|Eu)R`PUI%tY4_r64GewypNYP-?!Mo{bU
zS5Y7GvtwmCgtcfUIex_pw5sg15%?1iq}c6hW~CB!-9968({u`)a1ZVAdyf_5n7jXb
z3#@jPtTD28cTWSHR*@PKGIybCL&B@UdXlHzJi~bhOUqN+O>t_g(7aQJ=l=|ILo&Dh
z-b4CcCNQ+xy4r;0@Zs&<-u*?W9Ce_%&tia>;K=IcrQ7Dvel=ZuHyVCIUXOPpf1g^3
z|I4IF2<z5*Qxm|NHni7t-p485*FYLRx(S!_=pZG;x7q|pqQkwlR7-a*dd70u^^WTP
zvN>~L>bN@V6#K3A`C-u%xvW#SvM*e!M<C|`*qrKbV*Pf9(E~Ecc8D0w(nJ+V+ZkSI
zU2L*k3R;;wr?YNi=YjnEO=<$4lTq*JXz*k5Fi)fm4+NBzacoE82$^h7H8xcT-}&)v
zW+?UjD4|wjgCn_oZu5$7bcAml&l7KL!2^|*8bLRWtwfxz*{z~D5VXYIRBC5-G<lVz
zOsuX7{BFWqYYG`u`{5KZI{Mwm@WDn=C}U-TR}ay|HQSF_Nu|(e2jOhZ3%#-0vB=T$
z*o=19R|ZhebXf_W4!hlGsCIN5SI%eeM=D(;<bm{6k`6B$u1#e%HCETTR+q8I6T^WO
z`oi6X0*D=mqW?i1`&aRtI%AboQq{3Qq-!?@GwB632CFK?mwwyPp)~3b_FCb{vWjm?
zLVPO=O*l>zZpZ%?T>8rD{-S!C`yXZ7Yaq}ZuiXHKR6IGaw9Yg&bspR~uleaG^@YpZ
z0#M8?Gw!P^UMM6r-vCtWq<OEVaAbmkov+fzD+2$BSra@xdBc(Yoq`BtGV#~`0k*wb
z4NR<sUw4-=LGQ2)pYHxCo?8}0;f3G(i4V%1eP3Mh{<rCQcX!MOKGSY^AW}fH2TC2a
zrK#GntlL-oF1F<SPwqD2>PpvcQ{!oD<D}_$Vtx|ZixM&p==a*MuGRmb&COZ6fH7O&
zUfjV0{i%?n!RnO$GoAZd!+gXjllu!`%AEesI*vj@)rSk)HyZe$ZgfYP$EHR{+!f1%
zheO3rnQM0OCN`Up)fHZV^VB(Kw^~s-Gd65eb+#>Jb)o5(?L_oz-kjxGE*qrpr2YGf
z_hM61oZ)V2dAFNB?eC1PmwnAZ<sY8z1p*)$S6aj{=z#rklMsrx3rKk-N;x&bV6gZL
zjRy5dYtmER{JYv)R&otBu4rLjY0(*8V8YerH+SMGnrL>knKe~_(ChT`d3R|y-W1Js
z7Wq5m)!wdn18X*Pv;Mrp<NZd6{%NA6r@eGgS+`aCnny4X-C^AiJ>XA2MX=}b0-G1n
zO|PH#nOK_rcW+|uyiMXy60@gwTV3ZOP$sWO&87hzsOFt@7Gz~9$e&f;c6QWIKY<zw
z>QGsrisvo{{&E!q_urqL2|it)f853<H(D=~hkEcw$HIg_$__ujr`(%&nTm}Sl<5&l
zTuXW_QYq{KH{J|Wu$(5*!{cI7^5S@K%5x9JeYB5)&QbpNXJHi;@(+K8MR%TR%RS$7
z4q77a7u9*(gEmN;<0^yh`>xr03SLGFh;7kjGGkXWsKXL~v;D*zLZq0b{NI}#4A8ef
z%0b4(B86=rkdTew-@0vg!YctQA?Mc3%dc|uMJ9yOQgEMqa4T!lR1V~LzdiZCvHaPL
zAeT}*N0N`Dh+y-9rhNUqNbXj1LRRig|H{CsQ2ZyP{9&nlD&n)Z;{N@|h|BR(s8Bx_
zu8elDfB^C)@OCHSa&L5>JK|>gwzx_7X)@fi3J@F{+9BwEpvz+TuB|+#Vn#2$AH-W-
z=?z_(JrO27SLhdt$yVrR-hZ~#5~e+BorWa%K`3(r>$_pOoEQll3?A?3p0VE|TD0tp
zZY7nF2>uX*5%}y`_-!kHG=b*b$!krYq~f!^yB$jhfQ_5Q{>vZATZGhZ<+uLq#cTLi
z0kz-Lm}lL=wuqzN6?P8>Y_XU^S8Q$T@mX`<w>JE{VVk@EF5u{4ciY9QW|?o6BjZ>t
z=W&hoS-ijL6fGWqWMZ^uh%&nGd!arpAKd!%sd|i{0og8HKqB2#&=o&KQO!(-+g7$;
zsYK?3HNeqs)k_LPhZ%ZQgO8{2d7N9U5?h!E0Zt0PU;$h3OH;&cizNt@Uc5>@G08cF
zd!QjtS#NrA9#5%m{vxAh5()HvRqNk-Jh{Gm4(x?`+;eJ1y}o|MF~ZL2aZ`QEQO5>l
zWbdBG3dY9SeZNdGoy@)k+ZGG1<~vb%v46KM0~XyA=MRx$bOqqsMb}}*P2$B$2xFie
zbu`UZ*-fPgnlBzMRY+}=y^lWp)!IB~aUrwosZq$3Y(o)(M|0uWvUXDy%m3w*+JnXb
zt4M@oQY(c;@|hbz7IxN4JXvivIN%7Y6<)Y|$8i!v<ONRdWj|)VDAukeCpigup9OdN
z1NUR7I|Pz4!4uQd{qr}ezKmpLB8j2NU=!g?76hd?@69ibSP`RsMKWXPsuA*b>;m-&
z>a3}9u)#}VVJHvqEU;yM>Xi8KsFK^yNfZ5j)=xWmKI)}?1MCm;$En8bu%a9Y@;Pv}
z#Spu-Z*x&$yyXb+x(be@iFaIeA+?lBz|DOJm@#xszq1iI_n2`A3M|jn?vw3St+kzd
zO1V<Z+<k}2vHw$rigPxAXo}ph*!`y8^8SV>jS6v(yq|1c)+4+@bSQ~QrS}zpE$OpM
z<B32?J<=Ntl`)*cRK!j|!yE*C*ySy!cN%p9VX)h=Bkl|3zUQ1{s4vqbn!)P>E3L=y
zS=w|k!$7lLtso~C%+K?&rKh^m`89c^0=OG01vS-#nqbk*ZrOcmjF|4|^NPmw52n;S
zpZ_jZcpIv3`{EHAWZlQ6-3m+eR?(CX)8YlEVGD*|wbWZ}+)ZMv$N%m^2op8*xRlrV
z9atu?fziZ$u6KQKLGv!ilGJ1iT!WTcT)!pl!1|i7Y(Iwy&?r5j_uj`~*lSUs9H7#L
zN~=0FV?MN(8-?mle^RK$oG*=DK=&wEYdmUIvI_wbqu6?X!=}xW*V6bkcSzM3jLNT}
z3zQ3+mp3rK3rT0|G^m^Jh~BOcLjsISmLY^n8i3B`Z4VbCM&cXU+{bF5;R7oRQt~mq
zozgsFNtWLW{BZ$CAn&Oo%95g)*XJ$>=2HjJ)YO!KWsUj4g*fl<^|a7=BTK^jZR1$j
zB9oG+Lp&b~9^|Lht=&?iec4jZ+u-%|^=s=uoNjFehtVFPZC{qYB3d|I_<)DaQb-+~
zs#=#?+6qM=)vPoFM?@iDT)vILGabT!AIees)i7nxsDcpzvpt%j#etERK$Eo)%bS`f
z|L<deZLZ%cy@K+X77a9AFeSm19Oh$a<KNE}L}eYC6}1Ts*?WP^Mbbp7UqUIXD?_rH
zuc2Z0CSCeJqq$7A){MTpHVV95*V8FIw0FZOmV3tCSgp}&q%F?_SveT|(VNP%1mw23
zqfYVJnV)qt|J)AjtRsIJD@7iX3=W<@s{+~1%RY<A#7Nm=!8>DW^l`^|LzFn8l(LGp
z0%u@ixVsAL2$a@}k#(qV%SYUwt>t*W$l0p}7FyK#zbGb<&>7RevZ*7>6c3yz!q>b7
znUUK`RHg|lz#*9d(0jkLA+tKS6sXv|_TZO|$UGsho`C`TgJ`#nqPlu2B~eJceR?u@
zyLYoGP$)JoE+<3X-;*$$Osm3(3}-^R(W^za^gyyLM$(Mh^uyZ6l`m!r8Xeydtje$h
zAd})>nU3wThwjM)AM5_uQqD??j!e)@DAAX@7HFv<aD|xx0#)lJc6E@M{M5g)@WooN
zMOlhOyNzU7yrW-Bh-0V}8ihRYKl4JkyGr0;2SX7V>8I3@E&7Nt+^6HU5LSHG4iBu>
zt(NM1avta435=j(O8@XRqfTC$<k>>{dQRE<u^kTc>+zZ#mT8mM?Pw^iRDdAk6IJT!
zQ2HZqFtrYVH<2VqLjQ4~*zh(UKW}C7%X|Uj91DxF8m1vuT*1+^#!<c!fg1{G8+=@9
zi$vq+h-GQ|J|EafxRj^`oC;SN9xL6HY3_D>ye(W?+%Mux>Y5FuNm+sA!eAth%f<yS
zpNem@4{Ez=QKSBax^s%V;b5%V?M}%v5y_}Oh%6RBmJTN$9|7FBsoJOxTl)#;c6M&)
z9fpdwkboZKYR)v~m8Es4a%(DYH4iMoygrGVT~P4bPwr|~A`8EQfG(XWDzl=jjw~Mu
zNon33&XX(_c9C-pnx-RyQg7lHn<7VH)@ddqrEZUWD19g=C;r!24ThpFnvd;Got+C$
zW{@Z#(=IC2oQbH2T`yKS)iY{X$=<k_fWJiR?I93nuxsBGMiXU0@~f*EdFa*<uOE<_
zDWMX4*+KT<Uu@Q6J_UMux+O6^UEwLS`%>$5Ws=Vb33b6odCBF}9PS9eo)X%;Qi{qY
z`27>Pnz<$A+{4dJ0=qfsil>1&J)jr~zhxP~MP+WhVDv%K5Df5RW2^${)r%t|!ba<=
zbu!@GLThTqqZCN61V>*o*h+gc5i%mS;mKg)J0j;Utf0`wkaLhvCyUFA8{80UR`QGQ
zkj)jk!-W*~eJeMW(Rg+GjW*J0KLO6ws!gdiL<}*3p*H-{vg1aGE$zv9O0Z4K1d|WM
zf_?dxxM3BWj65zQLUX{E!`-2ej{>f(MYD3{gi|V5g$jRnoO+JT0?@CGJ}Db&DFnw2
z_7WP#;*)~V!wk8`g15A;XL13@@75DSQC_YZe5G&{)N%xVD8(RJ_RcNM)?YmXc(F9Z
zBxA~y`)+Ze92MbUQ>y$@8MmuH$67$4FFF>lsidwZrg+Y`x*4iaxnLX3oXg}f*UU`k
zKC7wyn)VNZ>zc&%<HyfZ){>bo3AF>OZH@Mj{vl5pl8Qb!Gt4H62T<KpUaL_WD3s`v
zAeFcJ4!Ja)3pECu3{1~(x9J`y+&-~(6E`aEfbNVb8m<NcgHIg&#xL`GMh0Lm3VQ>I
zF%oSdzczU8kE?ny`#skqhjO^t4+)666lEir12U*#$H}xtR~l6qom%=JqFJR(1(`&M
z2WO;WMxjvjf9L?&MgNGM<oh5@q|raaLF_?y(8A-&QVns46-gCR9p-%Wr)N=WI_1Z(
zdLr|=%F@{?8ZL+oM2zph$p+ABEysEP#4Gnsboj<@F#U;BENwoXyu4dn8P_aHOhYP+
zv0XPNVC&q&Rwr=e54&E^At*^ix9r!HDr1zFF4nT2c?k8Y070A61t+`kBP6PCS9tLu
zHdX0!iwYN*`IF+*(}RLR9CSpU-KIf|IA1h)#OgjDCBhJ!-QnRICjy=-VD-sCB;5~|
zK5lQqshOsN9NLwvkgr%@caCrcJ~pO*6_AUf<7wR5pVdz$m?g8H1sklQ`rxxT{Hzxj
zKs$9jXnFLo0|D=;Tli%t?>$%3F}8<!Ku|42B#3jIso3k0PAJf-T{Z<fB|=Y7^}HCF
zQg&sc;@W+{j(Z>_11Rk17igjb{rHoap@YES3AQ*pi}$6-q(iA}B%8ma&FYbt^T2AF
z!DTe+spB5!k5TS}dzSkWntG|!fSJ&k3)7L}mxJO%c#oz?UKf@2{ZX8;mZE(pOVXsZ
z7X5hW$JWcWH}dl>ccY0gYhSULcWP@JMWp2{uk#A6yk%vjHjw8i=PfpjT2D)aJZ2n?
zQj(1D4Nj5q9P95o0SS!yvAlc|RPRqlg#Ox;WS!{GicSu4n&K;O&I*oMpJ&Z|y=ClX
zcz>PVNhOon&M{qgaXZ>)M$Zq#hJ{DTa=fLrE=JNeGVO>Fc0Sv5B`)U5kJ!Bl5N_@c
z$gO%im^gSfrU14SJj3v1Qe2NU+w*0<!u~CzPo6`mt2>FV?LLP_K}cE_bOW>pG<{H%
zzgRq+uwpro<sNXf%t5%Vj42<?Q(Giy5+qM63T<xH(Z9-ANh>*B_eEhF((-O<xZq<q
z^Bf%ha{zWq6VVS8VP8^(@Nf$GeMF*lRfOMC6CdoZ>462xualBtCklyb4HdMK815a+
z(Qyh9O&he_Wux}r1iQaXyP7$W@;VbPULP<FXDF+xqJDekM!_*Y2d-05QYwL5_9yq+
zSYqo^!SfEIo%+L!-d0LNzPfPAiCUa?8j#kX<mSj!lsK(+SSn>VoO*j2zET7$j_r`b
zT?LI072t<3&)#~aF1BAq(;i18Ob8lINJu%H$<K!lS$cgb<ZEsu=|KkNUdU~gD^%ey
z0Jds;_Llmxnny|BNHz32d-93wz8L0shNQeW!i9WB4jGyQ>4CcypWD<_ut^r{LGVB}
zzPs)QzQC;z!=TwI;?_!2c=9x*cI1XS=C{&@JrJKaE}wbf-~O-@6Rv$e39n7Y`f1sg
z9{1N0ZdUZpmwdP>UsZU&7jbu<8#D3fE8Xxa{qptjI@7CsY>X*LYIDOuSz*FNoMCfz
zehoLg!bDZ7OUbC6bT655RF+rD@-yR)V77R<eKHB9UgHv0hB!nLY?j}&{LvzOjQ;7^
z=l~ky7BNqHXx+m05N~Zkm~8x4eui`3Yf68QAmWY;ESkWHbmHT!W$4V)X~DUnY~d=2
z0^rSe<}~+iRx5`9)tN;*^94=!v*YTWBbcXgEQ=R+&9Qf0B2;6gFLomR<PQ?^Yy#bc
z1cU;zu3n|UoMF!j&p3UD*P34^qt!542=r>i(s-M5I>d&k9qferLCb#ex7$$0eUOu%
zr3WN$nnM?Gp_5Y+jPN%#`>a!KL*ZEvH2FM852YCkrFAo*%0DxEC6pC1nVChGcH}U8
zu2Tu4Djs|Eg*Ie0?)!IIxok%eAR%9WXi&|^hHwhVkXk)=?K3E~OpP3{=Inob1mJ)1
zStU%CWVv97`<rv`>z_YVJQ||-POk@N`Y}-}v7?DA1&=c9>sEVisr9gP1aivQVV4M>
zv}c3yConDBiY=uTVj*%9RDB3gO~I~aDA>%?n#4cFQPx!0q$_e(hIgg8AGyB@;}_Nm
z2_ru#61A0FYHfWdcuU@~-PomT0yxwi?d(vRawac6@RWub`Y>^)6d0)V*gG6i8hS04
zgj9j%{Rp1L$Bg4^k(HDagf|cxW4LYua6hdLq+<j#4TRX8kvd%AiW?h;5z{+XBAf1b
z_7M7y{7@e;QuspBCI=J7uo{S;gNr6FVTNmeU+n2$3%*kWCl%(V(D~~S1Hr1A1g2kS
zXn{yceyFscKk>d!x0;Z(_xd_a+k;k{90@|)O4CtTsIyz@XUw=xtsz8w1$heC3f?Cc
zkhNmMB!ldfK}Q^7FDm$ad^e9o727C%dpZ0RH&x9#JJN+d@KZ|DFe?18!j^+8JuCRE
zwjr^Wp$u$!j81gC;-8)gD9~XFoZ|4rQb6r>q=nZ=F#-sMb-ZeOmyE)a0>2!b&baq-
z($x|qO1N>b4|{EIc2ZYNBH<a#;`+i5-GR5I(}Q8f^m_32iPrbBvX5~mZG%1JWL}*T
zf`8>Ld!uLbisADVJpRIsOme#X{xC5l@U^GY$5Cwv^igRotzSVH5YHxKt)ov>8z=lZ
z(~|%dr#|o~Sl)1?aqkBb=W#)U*TgZCs8CjB8u*0AXL6bp(@LeQ;8ilzYwonN7h`m(
z--1tAlS*$csZ*Cg6BZbxi(uj}5{}Boe?DI)MzF{RV*q^t7ycy<wkIn~j}3f1S35xx
z>EyiHG>L-Y>vQ)Pm`0U|O1d8TzT=9Mhr=zuPq4%8@smbDa#Ha~<o5=Rf|;}3J@tHk
zBDWeF4mmGUya&a|CdD<JeBo7lg*cbOQfIk)Fhg)Q_}7Q>gH_WD2U|6wdQsnV%#sQU
zWHawpg}>q}hV!n9#Dp?c63VlGVeQ^9)YlF(VZ)GhO7D2F0EiYMJ^Oqq*8*Kgy6s&n
zZCmCe-6zXk*HBa5J_|cP9*5PSvt?a2G54?8$j&o3!`2Dcny-6q1fZ8$wvIp45))aK
z6Lo@V7A83{AZRm2H-5`R(9K^4J=bJ;mVTH9A#m2n@|2+*38rP0EZ*VgFZdtFh`;ES
zd)AVJvXD@SfPv&0AEm#qnO4K>w2>NTx>)>YD@nCeP@DXll6!3NZd0_rQZr?)RRt-y
z_I$HUg_wnr5!O9~6#XCuW(y72ed9>lYck6<UeS`xf=1-&^+`f@0qbM!%-l?2lJWhr
z&w5;WediyV?hvnsTk-$K@3SdA&>8tH)0x%>VHk?y00qgxP(q9|IwN<V`tXTEv~Adg
zvMbj9{7l9xzba91MTSz;8*q8L#l{on;G=G0!WAC~rDxzI&={{6ofo$mK}|G8jj)(e
zM((M<bOdAJgnVpUv$;@&JP4oR(1DDr1b(mRaw2N@Ys>0|#bKwXejVB)*Mj|(8SyCi
zr@th_5ctqpSHFX^9sAqaI2ODu`!^fWw3~r~A~J1eLbJxC8GoTlZ&!(|ef%f*QtNr`
zSUq}+^`uz6*beqVrbKcVcNAeh7k9Q*@`hTj6<-hyqB&Sm%1_E<UOgx+gBfuPn^u?Z
zP*n@fJlY{{i^bwF0?H`vRoWma3ATarAMkW(01SBV+0^3`()PZRvorY?xS^Gw#gG}q
zWZd-Ic5TeX8(DiMyxYuC_$ico2$EI&5!U^qI9{!+q|y^Xkc)vK{1BK4KB8&g)lHP^
zirNS#%3@kZ=3qwCUu0LAKMAkWt``R{nrS3wgM3;wvZLg&JZ_t-m?+IOK=n9WE+lwR
z06eZ4{bG8i5s9Oe?N{q?joH1g!*p22hI(~pPRJuFXWtufhQNZA1NNy=MDv*!1*lNI
z^tXO#L&fsn<{w>ncvEY=ZrewW$cm12hK2nQ4{WE>AW3`}f!~T;2uBuJ4W<s<9-{=_
zoKnEsW!Yd1(R29GZK-Ge<CjO~kD0M?KwK}~(0uEA2qNxyZRjr7aM9{1oxCGcxjokN
zdlAIGGFe`eaoK3_5Fy*YtZF0D{;?ET4E%*!%yeV9#G|;VoTlr^-VH`dao2=|((#mm
zKkLpEmO~6Zt9MFWOAsuDJDtjU+e>QH{T7w)&uGuP_UP<GSx)cUWD=*QCZf0iD54Q_
z;=t}u_o-!+?~7HUIpYznxVeje-jp(L+KkY5h`{DLfp5^d5^>&%ifmm=GU(G7rU3zl
z!ArZt@qH7Q=I}U(;~>>Gb6Zs?Gt=Z$A1Y(K=~mcOd!f3dy!#^EmJTXLo<SkI)IgKD
z-SLRvqRdB8X4kCHAB0J7UpcD)I`?GCX+MlidiLn9lyGPki({tq%rn(BKD(Z#?4YUj
zlj42?4Q1w0(L?B+_<qHBih?BUX3|uJGTy`EFHIQu5u=yOt#1PZ(wiBE4ULLA>EP`q
z$gW?@--DbjgUt>SUdI)iz$Xid<$%x`YLFI@8ml?psM+|{Hx`fA<RfJu=8r1G)oj~&
zFhUO#Q|dX(O6i-`1^0L5)NCnT{6aMbn1ZCG!YofY_!P9y5EbP^wmT!9PQKd;y@Yiq
z#CS3h6#G~ix5>uETt|t%xMS>hJCIVB_j_1azWTnkwe<i`8|0LBn0xc*Y&bIN?0xsU
z$i-UybT2A<2hw*P)%Fj7wvo-23&90~!$`0p6jagZos&W>*Gc<4Wvzl(hEjQ{|A)Dr
z>>tWs{;ElXNS@T&@X`M+N}4Z?_Bw@AnXk_$fS|f2>^_FW4|!&SLo7BhNku($-=0vr
zFPdW)gn3cM_hmMK$xAz0rMr`5+1%x99&GyBP4sbYeCwj2I&?AMxgH=By<cYU!vJn*
z_`ObAFc<m1;hAL<eQ@jT)ms(J%wh|OySzkx6hk9sJ)ezWvC-YwrfC$Y?#cLdmjiNA
z85}Ntv2jXH)4(=sO-Jj&{9wTmT3ZNLBBe9WiJgm(gYP+d+*E5Xu&`lQ@8q?RaXx@R
zwMeUEmm6V=T!jZ*^Pewuk!{?+-S?GF=Ez7eLpS$tK;p&X!jb8}DWBYU_o6tF#C^He
z1WvzQG>JGz92WSa=ldS$Ewy_WFne`HDT`!TG##x##ghs+_%dS+Q%(+T)UI0U%^brA
z+amcVg=GC8ix%NUUcg$ukse$pb;SZ1{c^C;zgaPW^F;@Yf(;81VNBV40?nugATcfC
zhr=Lf{t42XY1@$P+vCNt11d%dSIB~Yc4-9PedF;$-;X>Yy0zUtRQBM}(J$&)wE8Lo
zeQ=&FZH~?%cpHSl>y7q^hQ5RQGRxwb1vv!g=)b`2EjV=KKV9)CA2p19wgn!lH=i7_
z6g0n=YUKiB;3~>rf+($@<mt;xHBQ$<$MsE6&4oj1dwKGZ^AJuY4oB#iis9r4Fe@Yt
z1W&qXJ<1COxb0D*)P@349<A-{f&!ftzGK@gaG1e>4B{HZOh&!M9(oIcbDX>MT+rX8
z<&WNNUS`ESClEU?^RpsF_}w1B6ZeO*u2~(d{YpS7NGHOCt<{EPRYK>72c+-EjxtHJ
z+^II(0-jqRHh1~o$)?wvn^ep#78nye&VH$HehJF$7PZC-k6b(O1WW`wFb}Abol&se
z5hy}7+XCMxcN&sSeS43)%*}ZuJPSb8sMn!-gtpRDI}8ehMrLT{sc6Ot_La(Zg=_W{
zp9%p?hm{88DWP*={(wK2(w3^k;T&e9?0Y`bW=zUClZU@yYx;hf%gQ=tx%ir@lwWCJ
zg7Q@Mj=S(wy525++OUZKi)4?Y-Ik*!eGVf(LS^Z<mv1d`92=j(8KR(~N`<5|%2(Ds
z74RYp`ihnRXibJ4loIAw2l|d;l`$%Dq|5<&OE~jbXIwfxSrPv-tPVORwRf!FGms)A
zZTgs(LCM#GhtwOPFU#<W@2prBWEp*CR#ph;6rwP)@#JKoXlU1%zuhBosH%<HRdQ*D
z6DTMe_xrRbC=elTdrKUz!>c-N+CPI{{YK%YI0VT?YnFS+W<oq|yeU{rv9yDivgrX~
zqG-|(japlrvMTjN)}hH2(;}83SQJYosyRPmMc;$1zkMy5`DlgZx~vQ8Y5h`AQ2TFu
z0_nt06BLtUL*{dEwL;CiB|iF5oqJuSp$G`PzXV|0ju)JQTlEOaxCBoplfcWJ&IM1a
z5zhL54<;X$;3g(9V#gNX^XkI_eqaG|J!&TE?ETb7WZCp^8FZ%kJxoJND0)4Zb2o)j
z!iY!_v1X{3G*H>TY|0O`>EC}tDpFzbo?4=;XI5sw!5nCrq%f7#8vP}oUCp8J4~Eqi
z0BIA9Y*U9RD=BjYXjI(LVl}-AN*#rDRbC_#lizg@IUHFS6r#ckiU&hB#X-RJ{rgCC
zQl3F3vVRZhckN2>b_?PLbY<mU=zJYljJ4#|88@F8Dtq_KPvxHZQ@m4aAu62y?$L(m
zqX}-7aEC?XaN^p`^-gsfIpwNQ1@-wT4V`DnKq>}zT}tR5u2_A=72l-<HQi45HD?Gs
zcCm54>(taOKS#q)gPH20QAL5~&Y_bvSALhR-|G6Dxn*I#wp?Gc9M)=k-?!V+Sma(5
z@$Vh=(YcxYlXqb)!3!#>(6=9VTTgzDTSSibsu2_-L?9b|@YPAFOQn~tNyN?k?Q#0Y
zKEl65K1)*+%`5rjHPOdK;~W{(7<Anx;#$msSJ29<+(6Pwnc44%OC}1K&r0_5e3lb`
zHAG+dh^O%}xx!hS7kvQXoTAhg6HIjO5x-p5q<%{Cdnj+MMK&B6vEJ2yuk+w3Ej~j{
zo=mxZJo2fj?ZI0<^8tP#>D<Neqn^m{M;HRA{;cd6#?dSmExRiiv}2N<K34`*^>J5d
zQ*+&}`G|(z!5cFC%Z`2^-@K@<Sv+XBp8383FFp;44rO0utT9G4HXj&TX_Uxh0AC>3
z7zjg$wyK*GZp1BS%*Vgdy8e<ZUzd!z3_pqfSeV=&j*NfvJc!Z;2`wpNCsGM16VGIk
z8R^-HkOvt;uoyhQ)^Uf5>~mNMPa>r6z?i#WTODQDF2X~31vmi0&$W285rVwpQ%V(E
zBirA={dj-tDSKe}7)`TyN^*o5q-Ky#9>HD-zcBaPb1foh>?YLCKl#zl`{}?Qp-Og0
z${MG9fJJf@)i+s@aQ=z+k&;&3&|j~O@TwDkD1+PO=t)n4%2z`qUT+ANfi~LB$=u68
zC#~rr*|2)b@v|;~gVsp&?OT_<UM6fuKG_Z*`M-KF3(pKnv%Dq$pWto7f!H#=wG#Oh
z(ouMKWlRtY5nmP2A-TzKlw`OqMKiOREasha*{RK*je@!X-sy-GWfWnGF}zx+X50It
zlT-3rYvY*di-ptp<sP<(IG>%&{oW52Q{HtnH;xr&>EUm{s)LbxNJ{S_4(8In<0W%A
z{bjCJ9Lb2U$hD!lxrki<;p59&fC)<4<rTy;pFpbVJX^Hx?w}4<bclY)l74}l!Oc}v
z6t+D!K_G#7;bTiee;O@pKF-kF2DRQ-@87Pw<}u$r+j)6WuyCxH#~Kd~tyn);JP8Xd
z*QY{#sjnOca`=)2hQkle<LGv!K208OpV%nzUmu_+2ryB}sxVyfPh}luWo6;%TxIjv
zrv;Q59`|AqfOt9a*}%gd%yNczS1h|(IJiNOtDY?RJ~0Ym7d3niCjFL$4-Z`V3@3~`
znW%4h%dze|GB=Wy3&Ib=V)Bnqk?3SDIBlSkOCBG9vqqnXk*kICVBvdB7ZWNCUG!BW
zh@Rdtl<c~<NGj4YsfZvm`WkF`wtlK-P!Mqt0?U=iby=-e8$&2vUfVvKVFpzqe@UI4
znTe#gfI-S{s#sIG_EW|=5q=ngc=EWD??Q^hJ`x{oenn0kWR+hpd@!*t;PJ=wLus48
zYW6drqC_lV=s7?t65wM}jaCl7!n2soxp>m%D&lid%RFYqBUO`Chq>qPZu0m<3df|k
z+gRwSKU_>SZ0u~f!HoI=(#N!w^*lv_ny|Z9%&L0KhZVn7mNGW#wm|If&Y!fx)d^ce
z9?tWf*KipHdnARHUc$^1nl-8KVlPFtH_sagG75*c#}ZY{=|VsapUmOwZQt-jbXcl2
zCXBmZyEgLqBa5*N|CjUIHQWL6^OW}n6?}!S^4r6(YVTr~S6NoTKkp~VU{^Qp_=ms9
zn%g+5nSHn07T!Z2L6;5wwmPAE_6P42p7I#>Hl&TW_~yRiRs!~}_OmvUe7_^xdY>}D
z2ypB&P-(r$zwa>MEU2%2eETLAd>(LEBTe{Vb)1T|=C{h~GWlC))TiTScJAVLO^{JT
zwsAAgXIHBOenbCL9+w<}jEFzKzSUopumgB^r^~3jGA)mF2k;G$egvP*=M6M_?V8VB
zkFQ<N<lz)qmsnJP@Tu&HSqL|8r@VWBM-487?Yd#|Navty1J1krQKPK$>1>Yf+l8EM
zH0Ks$CwJ3n=!Z3HF^pkrD+_4Nk7wESE*rjw{p}lpkry%X<RVOq{&%g15J_&L=QUxc
z<As{Y`;O<le`y8Kubs2*_n^Or0|P!j>tR83p-0uu{xMq7d*|I3YjYQAH9^Y2h*j07
zAGE0T58vOPbox%4H?<Fm(Mzpi4t7U&=(;+M!$;L2Jx(nFb(?-K4}>peuiv*XOu6;$
z?c4AIe0H%~Jbuf=$x<;nE1QLx`(;<ZG+R%TFIW4;im2ybr&j!a@y-wKxYj<<m!15&
z*=gN;qOd^yM-JZ&U!h2gk(1RQm@)(k^cZ;mjAz7W<(O+8XCh&1Z|jw8bf16X_jpLe
z0__&vP5k;ME1kGJ|LrcY4!_R-p4|M~bd>3?y$i*oo)6X6R`N33!@P|1Nz}IZpdWk7
zzOKkAi^$`F&v#kV2UWH^4PoX78?y1F$SqL2(ulEl4c42+x|aFvZm9a=fWvveDO%0X
z?9q)*|B24By{<LSE>YCYN44p4n%6DSpUa@wx%g_|0m-m}Q9A-yqJqF@6P{_0d88Em
z#LIiVL_PP(Y;i;k^3cwMJQbxXl=H0NY#wBCitk1%n8;@|1v;oHK`lSZ7N&0xO>2Cu
zc;)pjmZG5<9>X49=c({ZfW+znEO6T?iu=pQNU5A&?PGnd=NMRfS?$CTGmb!W$o&d8
zj?sZkMXr1$rgq43*TJ`An`;KfyBEmcnLHJ=V80JP$2YO!N|`ew^R$dgF!ko5Yu1m=
z3irMD$&D@s5Fq-|wHL2{#`+SEz1n$3<L#ac#Linj82>p((+(_)211oLQ{EsxyrZYH
zgA9y~lu8HZEOIB;OKbeeutQ<Udzv;}gKL|scbaf!!+A11BX;jj=hJ}=fkTB<z7xY@
z)(`C{VU%BPycnX_%El=nm<xBU>dCtPP|K0(OB^@T>y6W_l2~E#`uD#M9B$3^rxOH=
z`wj+Nr~3}6C0kEe0EwYG2~ta_^wmLA<@fkuCHy*9@2wf(*Z?70NST=<HKoWhkx%l4
zQ*+?6z(p@c*EF8Uxp+}!OL=W<Se3COJSls__aALAO@whpbEl)UhY>dJd6c>CQv%SV
zt99mx9joOFf5H>WM@uPU<7x%^glM~QrV1|8o7X_4pG`)DfnUqqOSO=^Os0-@Ri)To
zG(JNN0z;RO%nx2y_r(bg<kbe<D*17jg^FygaxRENYAheuvRn_ayie935^8h&nop~n
zZ}{K$FMN|J%4l@Q7OHdLQ?|~z;$4obn|nCw$FHxSL^;#@bi)UM6PV7YBj$*Y`s@q&
zxx=Ud#{vfZfZ2MZdq$=RHLf7TG_ACRFW+j|j495(<Iv5YoXbBptV1`xuWdXB{zkpB
zgvEjVBu>GK?47zpg}dRn!*<G5*}?xpvQgg`BVO|s;poE@-IHG^cSh}A2t++;_Z!a}
z-s3I$niDEaykB^oR!k*4?7rfExLirlZdb~`cQ<(w1a4g3B4aKOJSM}RWW|izX}1yp
zw~a2Gx2e5>RQ2~oDaPY`L~$Z%3m)z8+LMj-wZLpSh7GDiLv{AngkK25^h2b(O&Yvh
z(aWX)J%^sQvWlQH^k^}ts?Tg+n3=`UuQNUqjyDQ(!17d?@KT%5y}~UGMu0b}*C1XJ
z@Ao<~0PptcLuV-$73HyXxwjCZ*7ov47i<Q6ECE(nS&;Q%SB$*%+ax?&{B5iYzlgaQ
z9_>B8>a3wl3@4_r)leC+8YcRNJkMdYPrd2xTXlAJZ8l1w&~)3k!^0<-pyX@*e;{ng
z;c!_OpE*llD|rGzPX3FMbUOJtSE*jYTy8EfELQK^-<Opu|93O%bho2}x!tObb0ccZ
z^MqEJr}j1RskbzN)MBh}$v;*jfAp8RgCIHa;Qn2QfY&Wy)sgbnS8g22P|I~Sg1n*P
z5!{c4h#M6JK39w_&p+Bjv&qWTv^?y+m5mcSaMt~fm0ce9Ge%pd#onm{UP(3+;m2Zt
z{>9GyL6^%Cg1#K5Ze`GYQGevNy~(rS$!7QFHvL`OzrQ{_LF;aO^Qg+G<U!5bQO%aD
zm>*$jnNCO<>jjM2$^N8s*SZbpa9lF*rH+0p-@ltivvKZ}zb4#hZ_&`b(L(a@aHZXw
zJ>d4cH%cLMJ1}^FZq7NpukY+PcNz*<Uzj}~@STTR7x-$!DeVsh!((LB2Mh~sSUt7r
zg%1bbuVZY!zhP8;rkxL{ZEtua32Vy8&MPQey`Jud^4{<*n>%Wox@s_PWd7kpwia-$
z>{Uc20t#GvKZ0%_VSb+S>HT5SEpaBo8nJM&eb(NMrYd|{+;VG~BF;Rp{Coo}G<OZ!
z@<1gBUm>mepL>UW-dnD$uMdRwuIaq9dwgTA>7YLUJZzmDVXA>joCp3LjVKFa^42!K
zg+B*$d8^|Ij6O`%&oq5;;}r=xWRY#Y*sEmp{pD~!-A-2d#fYgR+F0ilDWaHvR7Ve$
zKj<Wrw$Q30)Vn~qUDs$M^tTIO%;Ml@=sx)g+Q*zV5+3E-^NGa8k4ZfmT3#nZ_HZud
zawaZY@BV+^9Bs^?cN78EdH$OB`P4@D`zLw6QS~w7w`&1WS0BEXa^?2||0y$~_4ql-
z6Q_W;$3sMiu*MhylK^CNGQp!WM~am7iMhG&VJOqhW-j-Ctqbs`KL|_!UqrZ1M0O4d
z<`58E{%ldvc;pkDem_1F89uK#>gSRDfm}h{(mgG5FWDo@VrAy;pX+}nFy&FJzpBXI
z&0<c=UuZB=l{Yb=8-$b-oF;I0TEE+GMe0AM`^~J@e>Rh|qxC03|8DO_o%LirlBzUa
z#I`$o`wKR7BT*P6?re|%Fv0D~g0}zK@Img0OHMi0y~)XSpuafZqt<6uEk4P}>BY>e
zw#a+iO^eej-#ZD)=y*Y;muc9O@L(W|FXi%=ECutPuwyA_Jydpfeme4GUwFAdHev5U
zsHJoG(jRn8%M;U;^4ndjq6FWDf|EweNIc44mjn~k+Y^pE8rs)sKqrl86lM>01OGlW
z{Rn#B0217Si{ubr*_&#0HogSC70L3~(>`w`!r(zS{&iY=ZBH+c@3sO^Vk}U`N^_b|
z8?=2kc6PHrAw;<F*j&-i{Ja~e;(v6VjVEf_;@Q6Z?LE}%QsKK9jrYwXNF(4)fZbee
zvp?Os@eib-WuX|h2LinUv<=W>&0oEK#Wr8aIjH3YB8p&zlABzOwfZdjd0m$mvm5yu
z<Ld^npZiT^b}`K)opTL2d4CnO_=XAK{9KLe`c(V<P%G7P5oAck3Zm7EAA<Rsc525(
z<h%Hb_+#sc*3s`GQ}eQruU>Pmttv(ft_sn%quxatiy9koDnK5>ug%ERj8Q<l42Sk`
z)a6jy(}NZ7#_BQl{P!h`CQ2V@><RwJPuIF!6~6rJ8=}MM`6t{{rO+L%+v|s}L>0%-
z-kYC?wyIx1$YufOTUWo<3i;nFJ4*!+{!}77h*qLRloxzd3|9z`Qh6ktB2i1;C5TW~
z%+J-md{5))uLMFLlcn8d>11RL@^i<(JIuM^f;KF+*RLNB^YJ%&Ylp})q7f|p@gjX&
z7+ONq%b05SP)G=9glb~&E{Qcf0zCjty+y1%ow9hU%MIiKK`oO9n(}Cy=gHdLDR(DZ
zT0Dx>7MjlSWO;Hjgb2?s2>U<M?7hG+CD$EPghPFwr+{lqp`+Gg{q{!GPI4)Yk}MI^
z)8%r)66*;gvW-AT=Qz*F>*Bp|^5LzibH8R$Y52u{fxMNPnt~iAz==K<%YrAlYB{!O
z^Gx`5Wo!jJP<kzQy<ocgug`=&S~tQd{zaOCTvRnwiqPQsA$MspEc%F*t5^920o3r<
zH^w;_1+d%o2&i|j4_Wx<8VuV{v@c-`%&9*TnOAu4#na_ZPQwcd6^vWKo1>X;<S~a=
zLVp-S2)RAlb+w8Efvn<j6c*g)yf;XYTxCg@M)=V`d9s?Eq3)_DwepLx2R2(3bP|N+
zr-zDTLk$l!`1W#ISttn;$ktYG+19D{-|t#)1F~mch-Y}8+?<C@C4=)&#kTB^#6`QB
zp>n6jcg1$k5qtY~ZGs3i>rj5GbjZ|W&*+6rrJX#VMq~u?)q}bCcJC6o6@hel`5(u-
z-qAO3Gp-Wc!XdLZ4b?3F8a|5su5n(cp4med^XiGoefN<9uIg38r-8Sz$&1mP>dn_f
z;Qa*RbF;-_*yRNCb{Dt0jn=*}dgz}p)!W^9PWO;PZ#>zR(sc6_V>|I(SIIw|11CJ(
zQI~CL04ItguG)atfYPbsFv?Mjl$XPjkc)^PR1B-MOn&HA+<`Pq4>FWTYX@tq)-;hL
z>miXr?0@Q5Rq>r^x!^8de)c?uqo`a1EG&gh#}8P+oqkM-GXZO|ai@t;i8;*<|GEv^
zdsDaNr?RtK)JKP=99CM?g*juhbc0Y)MEl5To#(EBiB;2}FM|S=TPv0s-(7ff+cP*2
zN=sKy-nD7AJ{pg<s02@5Lc`2BtuzRj3VV^pVdmy@+~=d0=D<}s={m1B8P*R0@b7wU
zZ+_z^o^FW(Vke(|x=JnJ<9)7%BaDadLQ0s%ch5IfMsGN<=ajP_9+siy%J|%S_31lk
zqLV&swH3W#N-^%@piX~?A#O)5#S~|2cBz$b=f4h(O&+nAwXc*0Ttx4`G>?r_z{_HD
zk(+N9`?bD)!tF!dPX}DoYAO)`_;LQ(3)$+Y>nm}uDn7H)fz>lwWqaV?39fCUk+VIv
z4iRQrcvlIRFT`hx(myZ`cE3zyhAe6a2;d(u{27`5TfrFFsI?;sx^g-Q*>%y9k&8tJ
zA1h;$a9b7h%dlWnW%cw1%*9)4==nY5F0vR-B&<gW$T@SW{iXZr<HU9XBvxT9`LBvg
zb~T5i1h?k<b~~`?KZ%6Zxc3_BcKRvwD7XdJN|U$O0{FChUamtw2x%Mdc^7jVzhuk9
z90s7#By!;X%pvjq{?X?M5W`h5?@5iwDVbPBvJ664V0w7E4j>1n;Vl#j>6S&^dWs^M
z59lh}+zg9GF`EbUbG^?2{nILnSxuxcy(s^>-#8jJt=<ENNYllO-y_t`?qb2y;j0w6
zu3U%Kv4t0*1NKbse{poitev||17}o1!ET2g>38#*s_>0XztT=dAZUK{#lEt?PLgHO
zDMEFOmr1;aMh16+ZpahJgqnn)B`^MUfG9}(aGIVSKZX05;{SXHIMzC?>n~ReU_Xq~
z=Qm8K6;<6^6zsS+J1jG>sEa0;2a*S#aA5J0$^Nn)do=~KXTxS>oMigft-PK5%VYh!
zp)qtJ6~sRhSNclU-qhZbh2nL-!5reT(*!^6a4Y_|_0WMw=n}!V2Nn_iU#;NK>3oBC
z*ZojjPIv|CRNz<$kVG1H;!CpeI^Gv__=D_gNiEptU&)N=X4h-T-8lha4&w`pHmn3u
z|1bqWJ+twc)d96rx7^|T4OK8VM3y2@3tymMoK}ovR0(@)<oxsU50>&JynsJ5Nl}60
zk`d1>{Wt0dUs^%!Mcz5yo2NzX-lrieO{a!5gbQDw1bi-{0K<B#9zmsPB)1<c!^9T*
zNlRvzALB~mJXZT?YHyV`E|WTkw=^-9+C+@yPDD8A`z-uAgs68l%o;SHbRE~m2!-$0
zVlMuw0y3?i8*MG%XHHnIsiq<lf^Pabv54AzE_x|?0yo=L8CFE?BH*D_w-SO*`duyu
z7do~h-v6-y3vE~*b12JvC;A+l*HO-Wh6QE`7Sg+}N@{v~`(;Cq)1TcQF4SAD#uj^J
zMPHyZPkvyB_?>s&XAiz-?oC|~W13?hFZ>8e0Cvp5oq-D6M8*M|4?}$YJ5-2v*RLD5
zQ$kxHP(jvoX6^0cG*E$l<8DlI&<!q%o!;k}3JC+egHA~<#?IEKq-(cdSv)d5?!Tx8
ztRek!<@iqSvnA2;-i0_YdDJMq0P^_|bVV=r!G7^a+H^tClkI<ZOt|=67^HibzW@AX
zbmz8LuU3p}C(-vu_J4`tUF<*BjR+*=zN2&m<Lz1CzTk+d=I+26X?sPeg6}gUgfpee
zBwK(v#d9VW?)UKU`-}dB9wYB{^C4?tmZ!?2@oQiU_B_n~N2k81b<h;>a^20n`Bw<%
zm#zANv2({Ig3r1CCTv)i1XYp-+68-(7F>>QX0CeQ3PHXQOQdsbL9Oq=>F{&B<stCm
znX@%wNcQ!W<i6W2R1$it50yZ+1j1FOA_J_cY4Tp~$PHA|cqdtlv~^!M`kkGV6I^VB
zp(74?`k^m-FNMQ}d4{I%hD{yq{QU&x^URI(340JFy{7(>P(_)#)sBgLD#9tU9PxTj
zcQ$OxMRq8HE%$R57RG;PAHx2@i%GWU7%s!!hrBt)zY^}9WeYNV`4Ot0-*=^Z+7MWD
z<*|~?t5R9Kt+N-AyJF#WpyaRVL7ZvjFmq%{#jpEI+Cks8>%;9f>12d7X~$@^|NCg9
zewpJOF2l8Ev3YS=a7(=*iG1u(!v4=<#7^LyK&y9xNv*Z~s>*U^8FA#7<aF7}(PT_o
zn2(nZ#_qiS7vs*|l)<&#kK$|$8vtNg#h;f67C_E}^DHz887wDOb<pk&LzeUnP~jnT
zm;AQj>x0cXL%+xJvrk%1FCNc;UBe)3P{r?@tb%r9NS4|^gH~0y)v9^nER%GR?6}h3
z0GjGBVoTCI`jd$D;$jKAuSDFaZ>M-=C6h<e1YxW0;0MS_=_1-a*4GT0J`SK+5`RWl
zRrKC`zaVXx9?nvSm+<G|)ODY9ZISUbt2lijreTBIbe7lMb#LLJ__p7~V|!4*$f0P3
zUp&(P7id41z~_Z6x$)__U_^A<lVuMhQh3Mwx3R9vGvnR8$~8_Z9i;?64t%hr9p7rq
zWppb!3^jiq6VrLbg~`O(y8FL==Y??Ie+HWm;@9qc8urZQsr*0t(C$bxIT_dRqA`<%
z9}rikPlzYVq^U_tl+?5#OU%MTc5)UB1DEU1+7Mxq#|E@t5f!9`wj+~@Jn5lE_^dZ3
z^+b`%#|oZ<Rmc$Q7Ea{uhO#bBRrr$?5-9;p-MVrT!`E)s={mHTSgHS=(6NtKe{)Le
z<W*Hn)(9?n<(>~jKlMCRAhZ!BbODM8bW#0c-=Cm8q}2%&1CQc&RU%8%FiHcBJZ3V@
z!er`HT<NG=@KXuyv1X$Fojp0e{llAU*D!l=?%jQ?c-{Z-$iCMMz~W+^^hx$~&o#-*
z*HB<bdgR?QTdOP<qpH%0Q-80rf7`aPB3!*5m4CyZYjFw)9t{6koz<;ofBFbiFW?v(
zz$odpI*%w|AeCau>Y6|Hyed4iJwIo?@;xOI7yXW3M+Bpi5^`@ExUsUI@$Z74DEa7J
z(q41I?3vYhl{Y!boi~ufpX+fhxt`p+=Ms9m=ccrVPJIm@DK1gUNkOg9e@D;TA*ho<
zJK^EABRf7eQrZjcFb0~u+)RR6kUTj8t=BtMS9)^aF%b@|X}o9Gnt+Ska{l^Y#(2%+
z?_PgSFkcvqO+7fLx}6ZuB=g*)nb$}a=e8v;eBz>Lfs@Z9Ht*b?elxU_bs+B5LBK{h
z7|w&79?<g>+p6@Pu&^0qf2^uFkrQ8QAnwjV;CJwO{Yuf*d14Rxj+8cV#H%_%H0Rjx
zJFP@GvwH7{RiuTFx;OvK=Sh8L=r~?WW$*2Bb$Bg;!PdTdZt3H^J<n@ZlE$Fw+iSYi
z43>yzy<I`PGvGNOmo&Oov+RBC_@L9we2M@e?sW%3jPtHuxwqOFf2_-$W0M9!8|<5Y
zTemp{S2n*FerG*?Z;pO%`->qQfm}jw?vIf3d>VrA4hKaREG4zinhHCPSYxIYjGc-r
z{ozA<;f_l;iC5;A-gz<nQu22urE$A?>lA$Ax;h+)f7ZXVEBMrUWlrY&VWc$(lVR)D
zE%1(a+!3;N5m9FUfAYdzEp>*c#YP?<L%8(PON4C3U@3!&9JuEhr+iHd3U<T`#0iBY
z`nlJYka;g~cJAB}0LXRg*1;R!c!SHc(sejXPk!IBWwW?@`TOjmzUr#0VDsj!l23)t
zWn87-ucQy_H>|UL97j0+{9UF`x5?l6{`THh(6Sp>fJ*iUf12yxeDjSie~R@wb(|}B
z`}Q4y7{+;2uDk9!IDF&?jP-gBm*|OSWNLCs0_wUBbiMqtOJ&SF7UJ2o+z%$Yd0=+?
zj_q*!ZMRBa7+3P%5`H%qU3k8|p6Mfx&y6?UXav`s0H%!F_-N>j8#hY+SH32DnXbP2
zD%iGdTfj~Df8H!~_-`9FtaU(mM?ii5UbHul$B0uHbRCw$$*wqgl;n6(W-QMOPAnDW
ze+32AEg6L*v{g)6TQsaQjI<_>W@FMYk3<WH?>%=AKJ)0_psBFd!osGhu`s!P$C`{a
zd!kK~)?Rw?#YM&DaBh&fS(QCqz0o>3(m`>9TJW_ie@Thl9u2-WLTVQA;<prR>kXMO
zf`k{ThGD#mm_zG5&6)u_8`-L{18~WaJhk2hDXyAOz#po#2Ytzj>IEEQL%xheNZ8}F
zEbgOF)R~#fndOD-7nc|1U2@*s*OtYweO$F_JSkvBqNVUT?0)rNE02|@)z?5Jxs(Dk
z!KCA7f3BIj7?lE*J`Su4mIa`V5Z3q>hJ?+`RF#NeBd~eQJDz&)^3`<Q_^|8Ovw9~c
z-1tBqM94|9`+c9_YTQ*3h&Lhv8=_zdb2fRDO-m5hnV0Z^Ih(K6M?^DeZA_Ea5+dY?
zlh%NR3DXOEixVbeMwl#(Olww{pa_!}UwD2|e*o;v?7Xlo<6yj0m>dw!1Mh-QKmCj(
zBJwE+9S9JD_dK##Ro=@`iE4b)jc*X`gxgCmy$pBXeUD5&iKT(c)w-F7i!QoAxEkyY
zIDF_ZeDhm(!@*Y%NKG4W>+>RHa@Jek@+M(<@^v1#|3P^4(Z?n1UvL3)-+@fn9^7)v
ze@$@SdAo!(_2Vah4Bxx&0Y{31fTM6fId$SS=3tM^-hKPwu5W!?xFTb{UZCCc?|d!J
z1kbgAI7aB6d%h#2GhUSBfMdQMFM3Wq#AG-A_y^zr0sQEphlQ`hDQ($2VnN2H+)YM{
zVEzX$aL(Uy_uco}#on<(knxKdBhW8@f8C`<<9LHuNSs;zTRc7o4_YmXO&fW3CWozo
zx4z}gQcRo$5og_h>ZxZ$82A)cJl-50aocUT8O_9|&V1aA;eGetZ{6H%VhyTb9=-nc
z*T9umULo^>lZx{@<c(n5@qq}c+TE<HmPtJxn~dqAi!O#6Zn#!>Jv`1#bQ|lAe<?Fk
z?=~aPfE6Kf6m0E_MSDk<R-+T*nMBWtxp&9^%qr{Q!$;spKYBE%!!-b_aFgI=?uf?0
z*u-U*)|%N7a}6elaj>7zvk}8C$l1#5m285ir+)l2yz=tP5<}vz$r;X%9^EO6VQR|e
zhkfbgSIk0v$R$UjkV}Py(6!fIe<@lO3%LD8Fh2aqBO%8uINk>fBu+f!GqKDZn}Nq3
zd(u4bAy=M*Bmp)5&d=UAi-Eav{Jm$MeGVRZ_z_rR7A}FO-}faJ=jNMlw%UkUESyB?
zp@$x^$&rND0ijUY<(FL+fb*lqEPD9iM`dw}d)8?Q$IQZAw|;F9_>9Lef7xvJ?%k?9
z2THd3EnL1Mgcn#M*+UOMWRoMI<&&^b=5!Toiuu|)`w#4wjCHnrXD8?$92B^7*Y-dU
z;CJ=-<Bth*md#hvk<G3)P_%^1mzY4uu~))V@!=F9NfNyVQ~m4;lhcSnoP9yUjhT`Q
znK`*@I4{eH8GPLp+g@zufAO)}m0GCZtA&YVWeeI~M{=XGRx+-VBUub!Jh&%$!gCzT
zlq5%*P#zLX*Y~^=TeWXoB}cLo+a^4+Bs4D+xgUHzbaZ_Ws7iwAF`v!N64F@9;r?5O
zEe5+^s`+&wXm7kgr&mwQb-nh)ASw4f5bcmcA1%g$Ar+>j_V)q@e}!?SX?HEJ{n<!p
zRO2HfX~)M1;0ejJ=CQ4wOW@RX!p+^=jE%)}>P+?gJr3FfH9mD8JM~5)xXT3C$ZK!~
zx~5#{#AH%_w7?T_;~kP*4c(_{sjR!>EKCkAZ_NY>8PJBvN<!t@9mYPaGuYcSqAH0^
z<WH^(p4WLkBCsURe^XNXkU~<W8kp-Swb`>|F>`%u+JEhl@(Bv!QVNdm8qRfTO)R>g
z5)kEmtjl^t_m&;J6V)T;IH9^Cp}TK~RQ{Jbmq^Fu`OsP*B1Zqm&l8{L@9*&&e;y`O
zfhd=W{|ve{F-N`5dMxW}dX`;~kA55>Av}gVcOp+<oMHv-f1gX4%tyOuxo&ekSf<V9
zFSU%%#hN*fKE^?HD#wK4ndI-1BIG@*Sg(bK_U-Y{l_r2Ccs&(h{U+`~r{i465DBMn
zA1Y_duXoBC*NKFvh!S5%W|(HGo|#m?APqyPq6I~cO<N}*f_mq!RGE<h)XzYRRFqvU
zVb4E-!VuSre*(H>&lurjal!iJSp$Diof~-jl!kM~f<*zUgo!V>f~1IB>;PB-8+qSj
zCd<yuk#O;<BWW1f{W|Pj_%Iv}c=N@ryoV#~OsUz!T#Wtzjvt#5Z^2-YkgA+>$9rLT
zW41MA`_Ol(2qY$lJsHO4mJ%0^7$wPnOur@kooa1>fBVO_w(t|&BAGS6&pEG-CrL?y
zqS@on8?*U8xDR6HjE^}omNj44OgV0@*+HKJ76kyce31ECKdNkEXT}DqYAg)ejNE%J
zni^c0kTDja);lnoF_W&VuIICiaeu6bt8e3SI<^F;=XuCzcWi%r!lQ1#8#GO+^*cAO
zG$osYe}MaFYXo<KiDiqTS3w);&&}IwD$R})KY24RBvzUqh^NOVaPse-F%#y(pyC_J
z_?YMBM<k?dV<07WWE(g4m!j@|;5rSPhhkHYcst6%q<^9q#8PNaKlOwQp6dis84R;n
z91C>Kn)Rx>TPe$xl`bT8ZN>sO!xtMb4wd7<f7wzO^DY9|62^GZaq%n0QYI8;!jqdZ
zfXbDg;LkXnz^v5Ets@}VeY<Au8bE-+66No$->_Z)KF_k`1;N2(?5Y&63Fpul8;A94
z*W1c^kud2Co*<qbv`o;o<{llf^CyA;=GYX$M!+*($^5<=)^A)dq5WEz*t)@8D|Epo
ze?SuN1>+Gxn9NDWI!-ceg|o#;)~#FT@TFRqaK058AC>z<N_`k%#@GkBRm<bbeeroi
zc-&=t)~}cIf-o@xf<00!RK-Qj*wfgAq&x6M!~DCPotqKtC=d!w-#H4KV~nK2fY<1#
z))GmXtWx52a+Tmv`tzvdqtg0lX(UKGf5NWeZ<`-(S)6NlIL~C1+DR4RGB0?o5hfY^
zUS-QVaPUANhj~_|Wq6i?E$TQOLJF}U4A!mU3GXy0-eo0?A8S)!qh^`MzzdE6MV{FG
zfvs<AQ#{TD^MJh}lXBjaTL>gBN=fH9J0Dn<yl6e>$v~$sv%&Y~Yck8z7uDj0e>yca
zA?{rPTFo;aJ$6+1HQZkyyMP#koHPr9y&w`vT!GZ{<(+%poa-68{2VN}R!>ibydSJV
z@J`OD4!y8sfy}~@3ubwc*^bXKxwqApAP6-UP|OeV;Rg1+SvlA10-m$N0>zgM@#F3J
zC46rdBrMGN-X0+5aXv2R&V@R{e=Lw$U`T>1Ng)B^+T}7AK0wn7TZ%k;{%;ggGNLoX
zZ7v)3RIT4oNRC9c>MX9|qa*7Y{tmy{-HW$!mYO%`q?|vX<1a8v_*;W_tUez+aL`5B
zrZG5rchL!v0ru?K>nP<GaAY3Ih7B7fMIe8TO`exu*$s1h_XjGzm?Gjme_9Rap1W1N
zGOTLv*}V^5+W)EuHeYzED`dJ!Nf0FYHq6A`|LT6&Yp(b5%ew>XQrM+N3*h^%S+iN5
z^~ez}SiajFwkjPzfus&F*W_eAQme+C$l1x*4ZCmuK6`H`H~BmkSe&|%lO6G5<s?RX
z%(*XxFaR6nJYk-j-L}?Se*?mf-LrcS%)h)x1QEJ00v;dcr|>ncAexnXb8)ahxpxVQ
z)~;DCtWzsk2lBkk4Px$#f1kW?St~imJj=L?On&v%1F(DV9$N*_#q6+|$SE>8-wJCz
zqRSsWDt+9&XHOU()>@dOQfsmpa_`2PMlEPK6o9q5wQJX@pv5vAe-%MpqucheFj@2#
z&P1n;lU>+9GZ^WoT6?kq0*N_;Kn3g0{=)9d=bw8HKKF$$3Qt0KCY1u<$RYHlLQGKa
zSj?-KG4}TDx8DZ0zv(tPhm-km(xqc&;`&{ZCmip*7hZS)eCR_TG?UkIBfjyCZ^2`a
zJtlQ+{G{YvcdeQHe;@wHPe|rAUcf*2!H?jcd+(JUxPG5DoxywF{SLVLnyY2U=VDTy
z`OD9VM&R?>a#va7c>VR)!8`7Fo2dAlt&I~CF{zBH@P47P#&Pbs+oX?dBCwgkRq=lC
zgC7d5-<I#Rq%GcsKlGswzy;=+7`y!O<4?lpIoVOK>j-@0e+YcDQi+fgLh%DKN98a6
z;xkfFaKgFdZPM!*xb%`s;e$W%KG8^ceD1vS>r&**vsJB0GcTIT$3OlN*kFWIXMphF
z1K)?c?z&rQA`3pkrlHdi-u13K;M!}ik)NM=#=P^-e?i{0P2H(#+dxCzq%6m)O^$Tk
z^{<z3jM+3=e?D>E5S>7<>e*|1c!c*a-o;wMC${zB-@n*}1GCjgKGAx!_CB=n=qXT9
zaQLo(=yI7>A~ZU_$ddweq0&wb44J!XEe~DLpAGuLL~t{1(CrK?X|ijB@3ac+)q4r@
z3&5)Flbq*07N`Q<I)g}<*zeY%^Af!1g6y#0aarBbe+D8}RW!N%y@e1KFp7cF7OcD1
z-rEMkF=Eo8P6(<aCwMFFBeP}ASP01u2QJFk^>Luws{pQwA>Z4DFp#b4SC0<`VJ$&|
zsyv891rO>}iR2=P`!4vAe6VBHcezyb__#XB0-|@7!^N7i+POzjg$m`(ks!=Ua^x<?
z&#^?(e>RF{vgbs;v2Cy)e(_u^SU?yBGMy2tM5O@GpPhWe+{_u`#PV6)eYP)hg|x5^
z8m_%S77T%yzk<#z={V9^6|j(yLCjIeJ1(nRNDkzH)sCc)R3I~e%PQ6h@{qi%ywi;{
zw8`?MsGg3^vSz>E>D0nRXGrs_rS4--T&&?fe<7Qh6R!SxUH>fg^ZC_iOZ=c@pzFB)
z+u&Oad1dvQ<a=`Wd>_Reb6Mo|JM=+-_2(Ultge6e6#+2>8iwk9jyHm8H}Q;F&YWiZ
zU&jq$CQRzA{V9n}vf}BwNR%8UuG47yKlY!HnKNv`mKOHX1Wi;)Pb?wn7?mdwVAapH
ze+t4*hAK8E@;?{t<D`(5&MOk~?$}x8GlIpZ`pS1H846<3LsY-Tmjz2DWW6|I=m!(n
zO!Fjck|zYp64KRObVadB#E(>Bhk(5*=i;DZl4)jHNDQTuKVf{mP{Sq#B`7BoshUSM
z&jXuWfk~k+mr7IbMmo|D<LZlP0l<(@f5}tp{UjJ|<z&xE36tdwz$R2^DlAT&Y^{P&
zQj^qVwK;S2B(0KKvc3pcU8*upzEi34p0&WP%V}!CMuA5mB(^I4p6_=kf$1O3_ZcWj
z>}HcTks_c`mYhiS(d+uYk69^BcQ2@FZ$`*0SNlu-^VVZh_c<G%YM{oV3Ypl5fAUSv
zUoW_6sVXEzs$J_LXA$K@5ncM!b6ILzN0az8088~}pfbFXV%v6d%r4GBF!JR=#msrB
zl_Gk5W5nL{iGk4*(A4{t@cv`RtedzRlRC3LD<dYLn`kR!37#FL05QnNU|fH05E2YC
zV9Kst1`q{js47v_+2zY_N(^;;e=In8?C9~D>h3ryK5oT(7Us?MkD2RD4C-ufK0%UT
z9O!WZd++&qa}D-ZI4b$E<Hs!d3m^o{&CJZpH3R<xNPcIcV5Ks*G1$s|_lw)}I>vfq
zD%>6gM_^a1<bUlu0Cr$2`gszah>pruJhbCuUy6*`aqAW)2d|K-^2d2$e{CF%^_F!*
zbgq5h91zI&_9iAd+{*TA5I*Cv<Y$pY*v`BQ^CqN<a4)xGgZC(~Z0ntgNrm&OW>GC$
zu*TO?OJKA$lb2bTJk?5(k~_EAJx7iNwq^4s@xVy-c!vjgLR-)dqSza^VMV!42xjN!
zV8_nw;+B-4y6IK$#v9)df68C@$X{N7>>~BxCwnNaxZ(<_w#U2+bna;;ZZWZqc{8@q
z6~eCbcfoCRD~yF~>J%0$yO3=mZmxc}PSPIOz`%OvWkIrY*G}l7?a$=II9zw#wQ%8u
z=LfPKUv_@3FQq6rXwffLPPf1XxY$+f$4FSQW`V9>w>Ag^?#FF!f4UtwornY^x>RWl
zjPBaCOSBmlzN;pu;D#Hn7Xi>yIYs#1T&a(-j6vVBgs*trWm3n+3RjQ}|15x*Bg0$~
z5a6~CJ9g|a@A6jho}n&;Zu+os(?-e7!i@=roc6%i2tt6EV?^N6U@FZNwFYEO!Fd_a
zT{gue>Nq88G`B~*e?5nP{AYg&8`n-Afiqn4Via2-t$CKKV!xtWsmxj6q&vLB@x&V&
zpR{UrRpYA?R#I6n2?Es<52Fl&cJaH#B5C}XrRuVav0GM~&gAl;NV-QpuVY!O3_8jJ
zSCY@C6zsc-d0ls2uhWYrB|2vAysv-kI5ct6pBikgsqR)Ff7s0Ym?W)sX$%H)p{Tdd
zMwU3ktl)D=mOP+qlSW|zpVasERr(~$J%gpaj&hLMDuOIz2CinYL?Cx;Ml_#1%JV@a
zoua#@X9q`yuFITeQ!G}&$spxIeR&gt3?!<YH!aKiojku!>1Z`iThY(6qhkZr;x9*!
zk8C~@?(k&Kf9^=|v^lP7F%xaBQo<dGgTQ*dad`gu7vO;h9~4wxR9<JhOU{zZFO>pV
zzUtj~zxzGmiCEqUg@wdv8sGTFH^|P(<_;(BVM3G-^+&MR<6ZQon{R}5>()pgxRTvN
z4?Qee0apdo_WV^>T_K5;c<1NjOZVM(zX&S7SX_qXfABm$xiPs6VB)QyG&s$jS5@IN
z3GfxqM!fs_MA>zww2srv60ZcJOa5F7gPK7Kb$pX^Ir9R3;~Q>(bA+_lfgeBhj3ikS
z&yYw>qw&n!V&k0H>C($Dk<SkvJOtnV_IHdnFdH-(p|l(A;GA=}$Tj&q7QUq*UCnIu
zKR@))e?#z?c?UKblA|R$$<K+CSd*Haol8LL`tds<XK)?th=qVYi`UYq6Gj;->GxLI
zIFDACfW`vrNY=PKV~wNmZqHiEgZKZyR@@u6q&1#UthunNZ!>XOav4|A<8q&q5;tNe
zB@2&BF1;A8zy3N`#0#X9<l|2~DYSAw>6i$%f5u#otHg0UOV2Ety?gdcWk8PaK&*3-
z@Wr`&CtsJ90cLD+f*+2133*f+>Hq=7xL>`n;zUn1e<f0#60a51;86x55frN?>S#C>
zNi1w**Z(W7xI7g2+P8O~RR80oPrgK`O~W`NEaA(qc%5W{VvK_qKMQjy(duqDH^Ugq
ze<g6!jc>HuD|2f)n32r9*;6@SgMWYNrQPP;e_yH&`jZD-)7gwU=g*aFc2!jtCW?a+
z{V~E#REB$`QTGc!DH|-uQA|&+db-6+YE&OPiJLg}!nk+K0)Q8Dr&}{%eQ;X61KOQT
z;%8P(!NlZv@KUe_V1xForr>k0POVyHe{FmxOzih39p+;D!BlUK$FaFzyTQA{0;MZC
zUcH%Si*fq|&R9y1k*sa<E?mTX-P=_q913iJni^rKs7NBk?%mXR7VhOZAdVGl%_Zwe
zVbg_Um%6<%R}ImcjNTLh=UI}3)-L&#B%pF*=o1tv1wpVU%ct?)qmJ{%`NHwme?Ij0
zp71rQ8Altdi<MW-6UP0}+Nggpn^|sPW1Up?E&q;dIkP0ngFY^E^6@91f=xGE*@Ccc
z%di_kT|B8yQk*Q1kn2RdXX~S6L6J&06wrI`e(fa1s%pn7M9x+fd1|jyFGgP;L;0q|
z&X@HojZP))ZE)-wQqo2Lk2R?;e*%KiumM!pRZKpLw&ql|$G9@0x|e36df<~F9`pKV
z&&we-ju0})d&Y|&2No=S>cewJGvt(zT}6Il{Ds31SlgLU5!<o*xK7UPj6l(#jvPKJ
zIbsPYqQtY-!rJSmO`Aexf+S~F{>$jflP5%&Na{F%M_Nguw#0;R=DjJ9e`ZNbC5#7P
z8|+)u$#h)8;mAb<iqzJ$+v^FZ)r^!2=SgB}{fnKRavxN_(t6|U)Y<DbRXoa3RF^dk
zckcKTY+d3Y=pxero9)Z+tIH$r$6F^CBCHn}+3aR^?0vl>#pd%F(ICmTmcT)*g|K&r
z%_B|>{nS%W+oI{tMayRDf5r`)q^SIw)oVk{4x*kbE@=%^0YK*9zo(zx4S(_J&xppz
znw4WV3Z8QP^{<C_zx$o$z5{?X6+tQK*66|}4_jek1HT?>C5bX<u{7ziRvE~9O|0r`
zso5BIMdmShL>}Fa+?TQsbD>zbJ#Ril5Br(THvgO?{eiH^Srwj_e`wZv?vez+%}E%$
zHFI3th;yI%5)uBq+G~>99wq-b6=rot(S(|u)hTS9seOct*jnSV8eW+57<x`dz<QaF
zBgv-bjhVyG?J<*qON>>8Odx)&`LIc|2O@apd=air{pxxA`TMp|x$QH5Z@xcg%_C<5
zGQJ|5AH{sNF-eX<f2g!9J0DzyM@KHSDHR5=xNu;M)z#5!-xp!xet8CL#<dmi9*&Sl
zQW^l(b}cy*NRkjw*uv!O%JqaZi-**hiA{byCib`mRw<Y$<Kx|sJed!+ubIOk8R*I4
z1^hYR$E)TNhvE`WPq+;0o>f^n%*Hc5S<p>L26%@fC=W>{e?t?XHIoyiIp1)-p=nDO
z5x1uCUUaVcF>!;}oC}WQ8K0aGK8#={6364xD>#?2X9kZ?j>|%pLS2<FHqNf&ZZPab
zo0#OJ-P1O6z0)-L+Kgjyu%#$%1B;j0_c>7$5T)LcE6C=;FgQ2O^z>>G^5dNJsj^xw
zV=jT8Llh4pe-?boqnm=@pmX2={<Hu6|B^v^<F%LGYkt3JCCia0IZ{G4@`{Qr!Zj-s
zjJ*Vh4j!^hN33B17AVtF#c#EI$lA-ngRcq)0y{Ovz~}LVVtxTHcGf7k?h7+mu~SoN
zS<&eFx+*S(04L+&!zN(XcmzoLfvMF~BLA3a$$j=<e{6Y0QyDFdYEx1HSdBe0vF?Ex
z7E;1T%9>369dZkfNp&8#;1mR0ZUYnWm<0&uACYWt&IQl;O1xl!5J_#xcRc<qbeVyB
zP?BHGMN!7A<#ajcOyGf3X6%p3QPXEIXe4Xbt+RwUE{kE_CA+3$_p%jae9qc6YXy^G
zLC^iDf0HBS<29mnbG~JcH;ZN>DzTkp53F=yQZ(azonA-i;@yQQ>}<xcH)ZYmwGcTc
zT;p9z)L6Ea%|zU`ZF><*u_5w($)v`A7Y1idI*1yp%N|_hG>X2URqCPfWGrsHd+yk=
zQ`N2|o6?|z4cf^N%^|DcpgyQnBtpr`@dXd7e-u9|dx>)olEq}CwvNLrR<B-V7U0@q
z|9pL4ZY%(}oNDBPg_<~KYYtlsYs;1`A)iU?3b*%`aYb8ll*d1_5|ev#k}9qtR2olT
z7g<t(I!{#uK1X9evVh4C{0}`}yxO$;TD$}sP}5rP=2V7kzt6g)!u^@~Jfpk@Y{|O%
ze{9_zEUwDBtS70;gZawR8WYE=2#!+74~i;Mm9xMPW{xkQA*koi3P8~U64y(LroU5+
zcv91~I}nG@LNkc%6Fv(*(l71;x@rJb7-EA;eXCz_I{pCKHS5hlOL!~1Cl3m%C}YoV
zF5TO2E{t39#-xkW$I}EMLBB_-Js5-ue={n3Hc;#SRvV!PG`+6n!nQKI^mx)mlY|;}
z+7iZj5*R}9x&;McaYA#5R)8nl!4tUeNqrGc;>*KsSQ3;JmnF$mwt@x+4SU2Q8*3x1
zz3{x!neh{MQ#p0ThzS$?;SV3}?tS&u!TjtIHpUN_W7UeqOeTyCyLN-x{mRwYe>6U_
zI4=b>-~^=^NW<){@{V8BWSSNsm07JrZH$G`)J1ABI=@Tt8A>aY7BLP@KX(dRQ{mZk
zMe*XZcM6)pi9821NbCA{>)~@AII3fk^m#{*9Ue8zgyRJ`!@QKs>`hFLcaP7^cAk0m
zmAQ-0Kj*vVv$w2loFv_y((rGJf085R+;jhNUCFPUu`Ql}mdgT#Yn3KyX-B1G^67b8
zUrWkLbUO<yOzmAL-FuiDxzjAfvd?hH;_nnpsRFmBB1em%;C`*&W0geiCWXNwnV}Mh
zXX9Hzl!q}bt_A6Lb$=;jVT-j%W%dOZc<l<03UZAu1NK2LNJN;-8(rN<f5i!x()3#^
zT9~9l1+<p{qY05K8gaO}j_1Lq%5cG~YB;B)O_cry4S!3L?Rc6v7x?n24z;cCRqH6^
z29>9VGH9r9zf|LCek`pJ=rRzIqiC2irkJn{a@(>ID)CWZ>}dvXN%>HVcv##}>77Sd
z4i)VnOavK5L_E@6P-SKdf9Ch-weRR(dQOBg`=)DN!ri#s%ULWaMRYpCbk|tGy@};T
z9|a2r4p#z94!d?^iO7P+KorN1xl@>T!A#CqUfBajj~<Hvz&go_C87Bw)b{Zmt21Ql
zw<>=KhNPsvvRWV^OOfB*F)mH&C}pnOI&Unx;i(dE7&DiX7aZ&^f8MfX6RhQ^>dM71
zVS${NRmdw5_()4RC<iYU-c4Y_`sb+0_3^baiBrNTmr3eX8{wegZ>7S7+kh3unc4a8
zu9_Tgq9Lt-mUt5~JYkrMU(jkGR$n8JMoP^u&KPRw2R36Bs3))$TI>d9?!<G?y$FX6
z9SljOo6WEIep#snf1d=33a;SDGK){}Q8hZfLl9DF1T72)LDOcl&>e^Ky1RtC(XaXm
zUZcK`Wu|UavZB$)O-YVcESNb?Ya*=~sdt5xD3kF<gUJ*tm(duB_VrwtFlD<xpl4p#
zv-k3gcRY+MH64L>4eQYPMva3Y)=vw-TN(%#0euaNPM5_1e{FswTUCPb5F~cFGM!j>
z96EFujvPH|BZmPC+K|%}vUQDR9Eq@yNh~PwPP0e?1XC@HDB18aiIgp1ExORU5=Klq
z<1~`{_Z@&W)2rq8s!D`-v((eJO3-*RK^xI>V?Y^;8Ve@3ENlQF7!ro$tJWa#$h5~G
zN%@*;Ae^G~e;X^;%%OPaLW*eg8hj%v;}QWlqr}A*CWYQ1ArVp~O^333=Qt!~iHG8B
z=_s*5=vlB)$Uq&x;)M)ig9)d#Gt3uYz=)`j2_It_5@9S6p6Qq~s5L<~KALxdc@_g-
z2M8PSrTV#3U>Kul<CHj<{!Wokp4<cIB-~M-ho)Vle;gMnRfilcQ|Hd~gOWM(rIii5
zmgP$-Jfd1C34j?30Zh(|H@e)T*c5WEkkOK3hf3gJq2@$lzKE+k1BoFPhJ=O1P@=FZ
zjY4ZwL<v|)LxEdNgp*FhtjkiQ3Eq*Qu;>;t9TU))hHNrJ!niTJ8|Cj#Z!%FefCc8_
zXj(a6e_D(%`6}3)jw@C%iKa#fb%z2&mO{8WEqGDPFqNP^L>z`RH^>4&ahf(EERKRO
zqIl6~HE@V>!4<TCWOkEY9Em2StAC~H6hV}OCD$4XISx~Xn5&G4nAH90=o%#X$|UlB
zsUhR4*szgnHZiq`3iAZ0VD3WR_oP}R>eLF^fBS+_)Jg_UP7D_&`wz`>6yUd4wxvVy
z1PX<psIDWNY;d`0fWecaCnXU^i_w?I%sfev>VkzWnBx9MibIJpnbbkXm^VQbYa66h
zb)CdXYdu9fAIn0KY7HauY-vp+%Fa$P*r_#$$g`7zJXF&>QhW+h%?|4XRj3jjDZrU1
ze;M!06jaissJ%f!i;IP8jmuH9Ghno&3G>nRFGe%r_L&uH=A>2Ek^)s(BwVyGKoz4(
zoC47zfgIg0(D$<i0;x(|Cd}yybWuGPEo371XtG;EEij1^S9xYLQM`*%0-&O@3sod;
ztOdp9OjJK62qR3Y+}YHT6x^&7Cu+jPf8_HeM-tNv6-bKF&X96MFq;oLa~(lJgNjmq
zCgxyKz?Zb0k+gF@Tl%mSCXLuhf_0?-XYRgu0$>W962{rl+}|)_Xi*u5h#-|%6)u|$
zwdAomHR_2Q7F~k*U?N!1fr5w%|A}NkBFL~r6w_J^#Q*`;8cUtUUI#Q%f<dKLe*i}1
zNNYum3g9Ky+ErHWlL|N$#X>YQRZ?v<Wxr~VFE#+L$@OqpD$9`rO#X7w!eq_bO&nJI
z%*wTM3JaOi#L^3aa~NTgREp4xRNNugqb8U?_u?#sKOkU%GLA#=i&%ZfR6U}G?^EpR
zj+y9`q@PSa%Qz(|$EPq(Dc%)fe>P3o^9t7pUoU%n;<3R3c&b^h!*?t_7S?*B2H+n@
zNv1pt4MD-f$Z3DJasgOKfILh@3l>a{LP2-b7E3IksD#*Orn1@sDeqGW-;J<^Xi;H}
z`-Fu+P=1gUvq^B7V0P5IJdu7VotxIXi?wD3IUheN@~+LN()-Y3g+;ije;H<=hQ*2T
zeHw*N>{`YJ=TVaspr~v-7Q=56!9N<X$$xD6!!Tj;A6A}uldNck?8lx1%G6w)7bBlQ
zsV$v&Qkq=D8F;F2f?*SksIa&w15@LSa+uV#r9un~HsCz&d7{kp!vX{g0A*9o-DrUq
zJY(5zPR*M`Mp8@1SQ7*nf5_;KwMfWz233D4Es!4fi*kD@_4?7sfv<mdGQ#8@bG)!Z
z0h2OLfy2%nMmidX(w9_v$TbF9cz);IqF5bI-I+?j#j$BPJjfRyj-1ZoU#PtJs6f^l
zDts{}`%#m2fl;FG@@rX4lBbgCghLgK7;B2h4v`X!iyH9M0*jhbe=vO{+AHSx<_Qav
zEnBx$D^5Gn>{Y_V_fHAW1QRo$VA~|BGilebI+r3ZMxttGKprI?21Nr+y&!~<77`L;
zqo&AXz+NczT<S$y;HV%bm`d^fiT2@KyIvTP22%(N8WP6;liu+$30H^(L7i>}A#=q>
zL_8|I1Bk~dD?kphf14VTlByZjk-Xo`EXBBvl2R>cbhMK{f#$S&3kLN4;mR{}u%<U-
zqDf#W6BZQs1r!&xqMG`RnDaF-cy@G5eu|mI=jNP`q`xH(MVfmADdMvD`^QDFD8pKU
z=Yh0KnPNT()^6OWfEHr#5+SIx4hmC3OkA-L-z$bQC~-R{e{fCooQc;7L3xr=Lo9jk
ziJLZb5%u^}E{N2aV`I%AQdJOgtqqI$9?nV|Di4MVlg`)_=PP*P%qa#mbj(QS;DFOH
zz6BGc2uhabLrR}cZSW>_6?1F^Fa~s~iCMV_un`O3tgf1u2~5nrE0JzawUU-p^CMCV
zTi44C7*PX9e+OcWhDu{KB(YRh1`&pt5b*`|Ld9Yp795VrG{hO@yq^W!zC@YXS!+-u
z!GQg-gFYHt?}g`|fict3%P!m&K0JJApE<&>|F1cI^~@*+ctU?a{W%^~CNx+8P)C4r
zssdQ#WXQ9YA*KsHEg((>pfin=DHqSelxvYLbSi<me>#CuPIN0?vy`T>kY#MRTr6l*
zrTgGw$G5cDn*w(!i@U1JB%c_WteiywLvSNTT1=vOoqf&Z-!1g8i^*H^d*<k`EbJr)
z`hqtHQwCch2#rd+A~qnJ1!OhLM;g}vCc;FOPWuBx(zZ6|LLqfuD%DpmiPVHg5>eiV
z?!<+0e<55v$b6!#P@)Ba^I&F1E^bH&dU{h^OeTLU2nfgkc*H_TI3*G0XLm*X-a;oW
zMwqZi=W{DXh)}jU7qW0Q2@xoLFIJCr{Kv3-21Mn>i<s<MO{)zTYf7rg9;yGdz(6Hq
zp>uX<mo242GXbar2<u5(2vl~PB(XeNaMN%le=h~cGfA6ZRYRkPb2ookt7|fCu~|?O
zW+rEDZl0BPr#YTF6~ctuZ>|ggHV*K@Y^P}82_zf?OzXpBl>xB;u$KC<n5^}~U6-kW
zkLub)sUR$yX+^hkz(lc-Hwp`bp*bjyu1;QvQ7z0!d8;y-N}68;V!C?jCMGCzZL$r3
ze;NpHbyRq&;ZPKFLxq6L0_m=pZNC=0gbkVeiY(_d+J0v-CoNW(eBK<-uMF)(VG4S}
zXu5N@tCCB+obIH`wFqehZlakad;;(NsNIFiRj6`>5>a7(7HHn7OOz<VWFYp~C>J@R
z_S8V#FDFsZyMR^TohHZCk6e3#P-_9&e|?L}ovfL^8YfXHA1MvS^yAQ}g%1%Hk~nEW
zl(1iQ@@FUbg78B{IwUpD`d*aa9a<t&uCaK5g_H&d>P_sd)y>%p)+Kz(gh_ufHq&y^
zPV!`&-~!7qvvqS*r2x7{lxQq!A|<Up*IZ&gMh;3VE{a;uaSUIbA&k;pGl_5|f1S`L
z0g+Jw#FVBDh_w7Xk4og}Dw$7Mim<L1IZ=|F8Pu?(CTEtLl_2+^&`^LTGA)UQgUd}e
zOzQHb*mRArr?IEAtCBdaWbRZ76K=n~vVho93ap$Gj)e%)S^#LABvEq<*}$UE`-q?x
zrwH_174$p_EPy`F;}SM{9sUohf81r1J4BPas4mHX>TkiKppffBr#M7R_$NrNADEOM
zOt2fx|De=G6z|slTBsIcx!@foB`B}~zR+O;C7FZuIA`TCVoejZSBZw?ZN;WK9(78E
zIOgcA2ozrL|IcDiJ`rKU(Sj?B5j&LIuy}~QNHi-DW-v<*lrIh{Uc01Of2H^Vm8s=a
z03jPeM^ds73smuXK^C1S$wJJjA{d*IkjDBzlqlxJyrl{84jQ78Gp7nBpf_gtc@sB<
zicoU?!iaJpeMCxIa2(Flr$d-<``?zo^e7?n0K>z;v6#|vcq~sz*}(<R%|ktggv&;2
zCqagzx-hBxkz(vZV<Zu^e?9kD`EUWu0La{ff)w97{!UX0Np0c*l)WpZF;5c}Q6WN`
zRM2DMQHw$fFsZ&+PHj-mzL&f5%ig($d3k2rzc`VTPgIz29)mlVwP}-1z{q}Ws@<aZ
zpae9FJR#|#ggi@Q(F2fb5E!$}iJ+MGwKT_5p`d|YNYX@NN#W7je*y$Ng`!G^RHHVC
zdEcU>+p&5d$F@*L*{3MUQtEQ10-jFg@yJrXP_n>l&s(6)pc<#BkNK_ryF@Hxpi5GD
zX76U`+&p8A*ZIAtQ<!l3=gV6&p@LS?M2V-|+@J*LL!DI~^AZfY)FrAI8%lOhU3x)b
z7^q`R3KaLof?p69e?dmQP=avK#i5c|9$hoXgVQRo4@>oNP^Xei1XmPjS11P(BAcCC
z+g+D*fLv2P5GrV!I3za=q&P?ozH0#!;U9@<hY^O=RJFi)2r1FPs7dmj(e|%S^b02=
zOulH2hn6qsibWHLd_9+Jr%#g<6-<VpWW-w-X%=W>q--Kwe^Q|rP4c=A<jQZxrzUww
zk~+zCwtT;MFsJMz<ltz;he!&AMdm=Q)?*}aK}9b^j@@8d3pl2;V+1f4aFDccR%V8l
zyfee>Q35Pj9+?L&dNEjdciK|YpmqKHQJRM{r=0Nm{`8p;CbVp|6KX=wNk#moCVHIU
zre?Tm(ibL4e{{6x10q0?A|6LcMK1*-YHv_VPD{U^WTsBL>vl$h1<blYnZcMl6P0|R
zX1gLYe<%~kwb|ELCB1>#u5m1F#(~O<f<w~GxFl31l(>kgVHuk#a*A}{Z~-$LV$JHz
zDJP7TRA)k%aQh>3Ji08coTm7SNJVb8X){oe98UoXe<=-=I`7MQ;zEV0vq@YFu(%vB
zK{3KL$%IZ$lA!Jns?wM`3zA~CqIW$f`Bf=n!D=%lA#O!c#_3o?>=sYUqXw)e1yiXZ
zj2{Xq6ZAWc^N?VqhhmPwU@BY_!B3bMK8sRQCgn;Z>v&iasngz=Hvb1F^Tm@DChULy
z<>iULe_}b#reSqwWf{`#zLb)$a4uq9Rsy3<P6hUP;yF=SfGHCV^?f4EL9y6;0db_F
zkjg0Qn9$;*@(dK$o57^^kfzBaWr8%K-e+EtLc}p*QQ^wKYHg|_#^o?ltfiQ4vV_6J
zV-#UIVJHbQMlF^qB064)4z4UJgJ(=F`E_&5f1gQV!tGP$_`$N&Omr<38jh$VHi5P|
zMiNor3pqxDCnWNUQj{7{dl_P37Gn<tvANM5>lG5%r-`2d$`QpWWgW|TQWRkgHIo$!
z!k7@!<WRAPrc`^mDTc-_Vy;u(?RLzevzFD*g3-MS777;dSDgf$N>~x8oKPAM!fY<(
ze}&U(TnDkvSD%_+L}yGpVXfr%Pxi~b*Kp&?X(xZWyfl*pG>r-_VPKs`LZp-+M|(ST
z9h;=CZhVtE3t74w>vB)%cK3)XP6f5zeYc_t)~s0rt5&@V$BrG7;^o|bs^Z!{K@6pp
z|5$+WxgCf-LHt1~Fo{2_>gS07+{z6@f5!^Q%1xtyW>%r<q4h4+*GEvKHb~4K^F4l+
zF(WY7ty>S+>A+xq5W8<RD>bWo<OIDlZ-S<gjcFRNSf7(eS*t>1saAr%P`t)*Faqxb
z+>cO<=Q&O7AD^sN@>+!nw?8+>edf4fStuqQ%wt_JucM2l+P8`H@e3lx2JFP3e=Lmv
z4gpq4sn|&z5GGnlggex9?8+>($;olp`Tw(bt}%91RUBVu-#d5u7>a4f#26E#M&bt_
zv>JS&#utjn2ZGNi#t34RpfP*_qoh6%(ZmQ!ASsU!j8PCH2E@{lV30x!iW0E2KwBp0
zjL<SO&XhaT>Al;v?%8+ldF(Ttf6kn9?mp-If5|_cOf&bMv-Udc?7jBhYrp2zG&Vj?
zv&~umI;`tzA{+g>xrQ2rXR}m1#}RyB7dj~__-3y8e;Ud~*8=r_Y8_jug)dMh*eFYl
z7caE*zOib6hKGkan5?7L(N=6Y6#N^l6HXEcl-FE%m?KAzYMoS<Bs%5qe?^WiwIqnW
zc;Th^5u&}`YE9L$bpI#FFMve-3MO)=m$9~$A(*t=EmHheo1Z`0=`QyYn_e%07aOEU
zca>T4b6)sO<wYED!9l%*u97*uE_Mcb@Xe_yb{uBVspZm6IAMr;Cnr&}IoBBysNklv
z*t(KlZl*CXKx@{lVVl&Fe;2eyrmMr1!>oT0n~Cy!OD&q6o8@bq4aCcCULtz*MbAWy
z!3GVo+U<5Ar({2FBQz`LS%P&p>*U!3O?=iWQavu1H1)_*5ibysqUSDqy^WgP59s=(
z&bDWA*>YxZ(hMeotUHn8M9(UEFqxm9=Y~7VZQnLs@km(kdaGDNe=8dU-QDOe)!yRk
z=s7ge>A!e<(q3?8!?V;(jjaFBUf7XCTY)sSS}m&A>a=d%VEE{WSp60M|73VHw05ZT
z^Zxz&XmWCLkpyK@`N(LBuDwVw*R+;{*2x=RN9)&bpy}!9z;X@GGGo#+N4up1fh3UR
z4d!j5Q)Q-SpaY8qf1`t*=u5(S-#UKAP$+(QNhK>|Zw9jMjgtGS57aoozMPfok5Iyq
zpU2g+-##*u#>Kpz^(1Sc=mBN*>ebv;-azwn^Hi&=PJV$%FQEu*!o#Hl-C0`_O-B=n
z(M@IAGJBNZsHBr0Y)z5tNC*mn2SRKyGc!Xs-msPK+4e`8f0>>M<YShb;ns@=lU1t*
zY15|7bkRj$r;Qv`<N*p*%MT_&Es4p6;iYwW;aP@>37x0Vf<jC1PU@%Idakh-NJ2Zs
zN(Y-4K)ptDb4{9@n#{uGTP98M_)0&hp3((9&ANtlNzsEzv)Savo8mX*5I3YYT};me
z6^qB|-j;FCe^yjFQmaDi$Xb%f*gYOdJWChdqvVZ*I^w|5A(M^_86u-Jb1#iXqcg0z
z_10VHy6dm)ICWl(j*fP&Wy_ZDazI<lJ;oyxuWFyv)3cnR6Mb5}gprqLDTJ+qRr7Ut
zrbgTHR<`_?ZQ+|`Lys38+DJRp2kLa>$ZS@DM7TMPe?SsSqou(2STB?zcOu>E$;k=!
zE$&{{l^N2s16}k;5g@GtTVj?rt__!EOgeNp@?F+42zm*b{_qZ7FLc}|Sx>2KGzL3%
z*tzrJTmwm$UAuPD*w{D?3`9D+UeW`&)UErW)5(u9O!MrAl3Bi6C+;%$!siv~WA)tl
zq2#Bse_pS5ddAb!Q#3L0QdVX@#QIih6BsECbGlr>+DZU`BJefVb!mN=O8Me$Vm*X5
z0>F75rIZWBryWdW9Pnk<9NG#1XOVI1SIoc81`|PMb*@Bv0pKiGlfT$BRa8b7d!-2~
z006gmmUVd+ADmS%Ibw!8Ewmi~&LDG1=d%tMe<_#<l8F5U+7AF{xR&*otUg?2eDSj0
z|0%Q~0DWgK>(VU0AnRb#WSvJV*wzdHSTRS<b9gw*FHt$%h|FhiL3;wwH)M7CuB^XA
z<#aPwvF<~g0+2iRvwoPz7v&X9WLD?%RFb_r02G9Stj|$Sv#Kh`8yhnL1=Ga<<o5#q
ze@|XtsB*r+?Udp!MF2n|vM?>z3W%x?H~ACRZ_(BOWXA8P4_jLL5lmzi-j`Ur(dGc8
z&K~o8<$lt+>eCHRv(8~nq3r=E$8)9nc;ga5zd%UH0+0sXglpe={Ho6e_yg-=_yGVb
z=3?_a^$q2K5u|L~kKhXcESn!wiscuJe;iB%nJ)end;)-F_3oWmZsAHWk<7EyKiLW2
z0AR_;^YU48B=4vkGK?Hob~gEEo&o?CXSaD?UUubzlw$^Zk##0(AAALXL`GR>nCHbA
zl!JzPp7jyRaZdpN1!A1_LGzqAg>uwj&lrRK7rq0)0xy{7;u#k&PC0BiDfjpRf7iNl
z0Q4~hAc5pxu3n&W+<;=Z_hHBbDvp%zct1HlIiU(*NXc5C&e{*30u|&r)_bS`=TNDF
z7*qnudkK~9LABUp{QlV@T&yaPVV^fcp2y&0paMK@{C%`27pw|q;BGeiLHHUdF+0f5
zkrZk+Qx(wA6RZ!h?tssM5^|e)e__5<v<p`SHTW#+)2wUYd!R(f?)lFc|1KP=z=oI2
zP2XUBmHZRS04OSQ;-zeKmE&}EQEx((pdqejoyD4jPl5s>B^E!<x}oSdqDs;r_p(kS
zhgSyzU}3lM+k4A!Gpa-l^EB)2<d^vez;*6qy@R#4EH|V|)<83?Pp~c_f8<esn}}at
zN`4jj|CQ;+R0$hP5?DVaf0N+9;k&>g#*ANHMFmc@Rw<Ztd4Tm6410hh{GRn@<CmpG
zmAnBDvCd^(V1_^d<jrB$g=ScDu*^5AD$<}gvNo}H!M8z<Ji^+{+FFI1RTXMjsZRB7
z*7wO@Bm_WKNRssj#^3f<f90lC1snNt*4xla0U7bA@vrYx?WLtE+TgOi`<<+B5^^aZ
z9V9m*OA=)5$Um!S09E0}Z?k^JdK2p&JPTk2Y%_i&OA=aDHG+a4&;i!R$lt9w3Uh$t
zK>S5c)cYu*tSEv>fZwp*!1^|ZKHwP47(Wqz`8CXeU}B@mx`K5If9obQ6at`&tXlo0
z@sBHvzW@Z2MUiFC=aZjIyAS37%>Ar)vCcF80T4`%3t4m|CG?~o=U-utO7dX92Ofqw
z5KPi|E6Ld<XTYH<gRDc6#Omqjog$cI!FKZ3r$}Y22Vjm;B9-CKCcie$Hkbp!Bx~*_
z|8OL6xZA11YYR$3f6KI^<V0i%{9P~!f=NHR!k;2PyMHxn8YU?evTF6`rv0QHAA(7i
zkGFkf1Xf6oSFpZF{!GvtVGd`JTESAl`4%eR`7{V7)kAVCa(uxjSwk>~6TJ`_%1AkY
z9WV!iNfB8`{!)GEvB<g=4<^YCZHA&ZlfP1R3MN4?DGMi=f1ZlyG?*hZqzu4qrYCX$
z=0GqhJ13K$^pn7{89kO2_dp&q!9#+`K9~f-q^i7%`~^~?53|<8B*#P&r?T$nPe$V~
z34#d-Q!_)LGs$1Z{Z`f>%tCXlzp?&Ie*GEAg<yRTf(bYd22DVbW!<u%N@j^(S%Le0
zk^FTZGV>z)e`6jo0R=cp9VRHm8+iwXr!!A60p?WltL~p#@Bkx$LrQ7>gY|dQ1KES7
zN6!TGhhg#;%1ObVjjY!O<U*j4Gh?J0*#RR-l0L<H(gYKLU;+xjS`$=c25Cb;!$$J+
ziR7<|5mvKSnV;qN!EG0^Wk9O@&yrspNUDxakbmIWBtfG?0X=7e2eulNoc{|j00|mN
UJR{)X-2eap07*qoM6N<$f;V-qjQ{`u


From 6d69d3b01951bc7dd68b6963da9b0ff66c7b0feb Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 31 Jan 2022 16:50:34 +0530
Subject: [PATCH 20/82] Add dividers instead of bullet points

---
 .../authenticators/fido-authenticator.tsx     | 126 +++++++++---------
 .../themes/default/elements/divider.overrides |   4 +
 2 files changed, 67 insertions(+), 63 deletions(-)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index 2e48bef2ff8..0c599f3b4f8 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -23,7 +23,7 @@ import isEmpty from "lodash-es/isEmpty";
 import React, { ReactElement, useEffect, useState } from "react";
 import { useTranslation } from "react-i18next";
 import { useDispatch, useSelector } from "react-redux";
-import { Button, Form, Grid, Icon, List, ModalContent, Popup } from "semantic-ui-react";
+import { Button, Divider, Form, Grid, Icon, List, ModalContent, Popup } from "semantic-ui-react";
 import { deleteDevice, getMetaData, startFidoFlow, startFidoUsernamelessFlow, updateDeviceName } from "../../../api";
 import { getMFAIcons } from "../../../configs";
 import { CommonConstants } from "../../../constants";
@@ -461,7 +461,8 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                     deviceList ? (
                         <List
                             data-testid={ `${testId}-devices-list` }
-                            divided={ true }
+                            divided
+                            relaxed
                             verticalAlign="middle"
                             className="main-content-inner settings-section-inner-list"
                         >
@@ -546,71 +547,70 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                             </EditSection>
                                         )
                                         : (
-                                            <List.Item
-                                                className="inner-list-item"
-                                                key={ index }
-                                                data-testid={ `${testId}-devices-list-item` }>
-                                                <Grid padded={ true }>
-                                                    <Grid.Row columns={ 2 } className="first-column">
-                                                        <Grid.Column width={ 11 }>
-                                                            <List.Header className="with-left-padding">
-                                                                <Icon
-                                                                    floated="right"
-                                                                    className="list-icon"
-                                                                    size="small"
-                                                                    color="grey"
-                                                                    name="dot circle outline"
-                                                                />
-                                                                {
-                                                                    device.displayName
+                                            <>
+                                                <List.Item
+                                                    className="inner-list-item"
+                                                    key={ index }
+                                                    data-testid={ `${testId}-devices-list-item` }>
+                                                    <Grid padded={ true }>
+                                                        <Grid.Row columns={ 2 } className="first-column">
+                                                            <Grid.Column width={ 11 }>
+                                                                <List.Header className="with-left-padding">
+                                                                    {
+                                                                        device.displayName
                                                                     || t("myAccount:components.mfa.fido.form.label")
                                                                     + ` ${index + 1}`
-                                                                }
-                                                            </List.Header>
-                                                        </Grid.Column>
-                                                        <Grid.Column width={ 5 } className="last-column">
-                                                            <List.Content floated="right">
-                                                                <Icon
-                                                                    id={ device.credential.credentialId }
-                                                                    link={ true }
-                                                                    className="list-icon"
-                                                                    size="large"
-                                                                    color="grey"
-                                                                    name="pencil alternate"
-                                                                    onClick={
-                                                                        () => {
-                                                                            showEdit(device.credential.credentialId);
-                                                                        }
-                                                                    }
-                                                                />
-                                                                <Popup
-                                                                    content={
-                                                                        t("myAccount:components.mfa.fido.form.remove")
                                                                     }
-                                                                    inverted
-                                                                    trigger={ (
-                                                                        <Icon
-                                                                            link={ true }
-                                                                            name="trash alternate outline"
-                                                                            color="red"
-                                                                            size="small"
-                                                                            className="list-icon"
-                                                                            onClick={
-                                                                                () => {
-                                                                                    setDeleteKey(
-                                                                                        device.credential
-                                                                                            .credentialId
-                                                                                    );
-                                                                                }
+                                                                </List.Header>
+                                                            </Grid.Column>
+                                                            <Grid.Column width={ 5 } className="last-column">
+                                                                <List.Content floated="right">
+                                                                    <Icon
+                                                                        id={ device.credential.credentialId }
+                                                                        link={ true }
+                                                                        className="list-icon"
+                                                                        size="large"
+                                                                        color="grey"
+                                                                        name="pencil alternate"
+                                                                        onClick={
+                                                                            () => {
+                                                                                showEdit(
+                                                                                    device.credential.credentialId);
                                                                             }
-                                                                        />
-                                                                    ) }
-                                                                />
-                                                            </List.Content>
-                                                        </Grid.Column>
-                                                    </Grid.Row>
-                                                </Grid>
-                                            </List.Item>
+                                                                        }
+                                                                    />
+                                                                    <Popup
+                                                                        content={
+                                                                            t("myAccount:components.mfa" +
+                                                                                ".fido.form.remove")
+                                                                        }
+                                                                        inverted
+                                                                        trigger={ (
+                                                                            <Icon
+                                                                                link={ true }
+                                                                                name="trash alternate outline"
+                                                                                color="red"
+                                                                                size="small"
+                                                                                className="list-icon"
+                                                                                onClick={
+                                                                                    () => {
+                                                                                        setDeleteKey(
+                                                                                            device.credential
+                                                                                                .credentialId
+                                                                                        );
+                                                                                    }
+                                                                                }
+                                                                            />
+                                                                        ) }
+                                                                    />
+                                                                </List.Content>
+                                                            </Grid.Column>
+                                                        </Grid.Row>
+                                                    </Grid>
+                                                </List.Item>
+                                                { deviceList.length !== index + 1
+                                                    && <Divider className="fido-list-divider" /> }
+                                            </>
                                         )
                                 ))
                             }
diff --git a/modules/theme/src/themes/default/elements/divider.overrides b/modules/theme/src/themes/default/elements/divider.overrides
index 6211bfbeefa..cfd89330d6e 100644
--- a/modules/theme/src/themes/default/elements/divider.overrides
+++ b/modules/theme/src/themes/default/elements/divider.overrides
@@ -11,4 +11,8 @@
         margin-top: @dividerCompactMargin;
         margin-bottom: @dividerCompactMargin;
     }
+
+    &.fido-list-divider {
+        margin: 0 2rem 0 5rem;
+    }
 }

From 9a536ed05e15fa48c84b6fed77462c59c29f305a Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 1 Feb 2022 14:34:07 +0530
Subject: [PATCH 21/82] Add usernameless label to FIDO

---
 .../meta/authenticator-meta.ts                | 27 ++++++++++---------
 .../models/identity-provider.ts               |  3 ++-
 2 files changed, 17 insertions(+), 13 deletions(-)

diff --git a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
index 5b672f0848c..2389cc80214 100644
--- a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
+++ b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
@@ -40,7 +40,7 @@ export class AuthenticatorMeta {
      * @return {string}
      */
     public static getAuthenticatorDescription(authenticatorId: string): string {
-        
+
         return get({
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR_ID ]: "Login users with username and password " +
             "credentials.",
@@ -77,11 +77,14 @@ export class AuthenticatorMeta {
      * @return {string[]}
      */
     public static getAuthenticatorLabels(authenticatorId: string): string[] {
-        
+
         return get({
             [ IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID ]: [ AuthenticatorLabels.HANDLERS ],
             [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: [
-                AuthenticatorLabels.SECOND_FACTOR, AuthenticatorLabels.PASSWORDLESS, AuthenticatorLabels.MULTI_FACTOR
+                AuthenticatorLabels.USERNAMELESS,
+                AuthenticatorLabels.SECOND_FACTOR,
+                AuthenticatorLabels.PASSWORDLESS,
+                AuthenticatorLabels.MULTI_FACTOR
             ],
             [ IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID ]: [
                 AuthenticatorLabels.SECOND_FACTOR, AuthenticatorLabels.MULTI_FACTOR
@@ -118,7 +121,7 @@ export class AuthenticatorMeta {
      * @return {string}
      */
     public static getAuthenticatorTypeDisplayName(type: AuthenticatorCategories): string {
-        
+
         return get({
             [ AuthenticatorCategories.ENTERPRISE ]: "console:develop.features." +
             "applications.edit.sections.signOnMethod.sections.authenticationFlow.sections.stepBased." +
@@ -143,7 +146,7 @@ export class AuthenticatorMeta {
      * @return {string}
      */
     public static getAuthenticatorDisplayName(authenticatorId: string): string {
-        
+
         return get({
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR ]: "Username & Password",
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR_ID ]: "Username & Password",
@@ -166,20 +169,20 @@ export class AuthenticatorMeta {
 
         const icon: ReactNode = get({
             [
-                IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID
-                ]: getAuthenticatorIcons()?.identifierFirst,
+            IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID
+            ]: getAuthenticatorIcons()?.identifierFirst,
             [ IdentityProviderManagementConstants.JWT_BASIC_AUTHENTICATOR_ID ]: getAuthenticatorIcons()?.jwtBasic,
             [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: getAuthenticatorIcons()?.fido,
             [ IdentityProviderManagementConstants.X509_CERTIFICATE_AUTHENTICATOR_ID ]: getAuthenticatorIcons()?.x509,
             [ IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID ]: getAuthenticatorIcons()?.totp,
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR_ID ]: getAuthenticatorIcons()?.basic,
             [
-                IdentityProviderManagementConstants.ACTIVE_SESSION_LIMIT_HANDLER_AUTHENTICATOR_ID
-                ]: getAuthenticatorIcons()?.sessionExecutor,
+            IdentityProviderManagementConstants.ACTIVE_SESSION_LIMIT_HANDLER_AUTHENTICATOR_ID
+            ]: getAuthenticatorIcons()?.sessionExecutor,
             [ IdentityProviderManagementConstants.EMAIL_OTP_AUTHENTICATOR_ID ]: getAuthenticatorIcons()?.emailOTP,
             [ IdentityProviderManagementConstants.SMS_OTP_AUTHENTICATOR_ID ]: getAuthenticatorIcons()?.smsOTP
         }, authenticatorId);
-        
+
         return icon ?? getAuthenticatorIcons().default;
     }
 
@@ -216,7 +219,7 @@ export class AuthenticatorMeta {
      * @return {string[]}
      */
     public static getAllowedFilterTags(): string[] {
-        
+
         return [
             AuthenticatorLabels.MULTI_FACTOR,
             AuthenticatorLabels.PASSWORDLESS,
@@ -234,7 +237,7 @@ export class AuthenticatorMeta {
      * @return {string}
      */
     public static getAuthenticatorTemplateName(authenticatorId: string): string {
-        
+
         return get({
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR ]: "username-and-password",
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR_ID ]: "username-and-password",
diff --git a/apps/console/src/features/identity-providers/models/identity-provider.ts b/apps/console/src/features/identity-providers/models/identity-provider.ts
index 475a680ff6b..e8cb68cca81 100644
--- a/apps/console/src/features/identity-providers/models/identity-provider.ts
+++ b/apps/console/src/features/identity-providers/models/identity-provider.ts
@@ -751,7 +751,8 @@ export enum AuthenticatorLabels {
     OIDC = "OIDC",
     SAML = "SAML",
     PASSWORDLESS = "Passwordless",
-    HANDLERS = "Handlers"
+    HANDLERS = "Handlers",
+    USERNAMELESS = "Usernameless"
 }
 
 /**

From 89fd72273ee9259c03e3052e5ed10f0566883510 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 1 Feb 2022 15:54:16 +0530
Subject: [PATCH 22/82] Localize text

---
 modules/i18n/src/models/namespaces/myaccount-ns.ts       | 1 +
 modules/i18n/src/translations/en-US/portals/myaccount.ts | 5 +++--
 modules/i18n/src/translations/fr-FR/portals/myaccount.ts | 7 ++++---
 modules/i18n/src/translations/pt-BR/portals/myaccount.ts | 7 ++++---
 modules/i18n/src/translations/si-LK/portals/myaccount.ts | 6 +++---
 modules/i18n/src/translations/ta-IN/portals/myaccount.ts | 6 +++---
 6 files changed, 18 insertions(+), 14 deletions(-)

diff --git a/modules/i18n/src/models/namespaces/myaccount-ns.ts b/modules/i18n/src/models/namespaces/myaccount-ns.ts
index 4b663091a42..af1b2210b12 100644
--- a/modules/i18n/src/models/namespaces/myaccount-ns.ts
+++ b/modules/i18n/src/models/namespaces/myaccount-ns.ts
@@ -317,6 +317,7 @@ export interface MyAccountNS {
                 modals: {
                     deviceRegistrationErrorModal: {
                         description: string;
+                        tryWithOlderDevice: string;
                         heading: string;
                     };
                     deleteConfirmation: {
diff --git a/modules/i18n/src/translations/en-US/portals/myaccount.ts b/modules/i18n/src/translations/en-US/portals/myaccount.ts
index 2fde93f87ab..cbb71666645 100644
--- a/modules/i18n/src/translations/en-US/portals/myaccount.ts
+++ b/modules/i18n/src/translations/en-US/portals/myaccount.ts
@@ -670,8 +670,9 @@ export const myAccount: MyAccountNS = {
                     deviceRegistrationErrorModal: {
                         description: "The security key/biometric registration was interrupted. "
                             + "If this was not intentional you "
-                            + "may retry the same flow or try again with an older security key/biometric.",
-                        heading: "Security Key/Biometric Registration Failed"
+                            + "may retry the flow.",
+                        heading: "Security Key/Biometric Registration Failed",
+                        tryWithOlderDevice: "You may also try again with an older security key/biometric."
                     }
                 },
                 notifications: {
diff --git a/modules/i18n/src/translations/fr-FR/portals/myaccount.ts b/modules/i18n/src/translations/fr-FR/portals/myaccount.ts
index 997909eb98d..f94f009d78e 100644
--- a/modules/i18n/src/translations/fr-FR/portals/myaccount.ts
+++ b/modules/i18n/src/translations/fr-FR/portals/myaccount.ts
@@ -688,9 +688,10 @@ export const myAccount: MyAccountNS = {
                     },
                     deviceRegistrationErrorModal: {
                         description: "La clé de sécurité/l'enregistrement biométrique a " +
-                            "été interrompu. Si ce n'était pas intentionnel, vous pouvez réessayer le même flux" +
-                            " ou réessayer avec une ancienne clé de sécurité/biométrique.",
-                        heading: "Échec de l'enregistrement de la clé de sécurité/biométrique"
+                            "été interrompu. Si ce n'était pas intentionnel, vous pouvez réessayer le flux.",
+                        heading: "Échec de l'enregistrement de la clé de sécurité/biométrique",
+                        tryWithOlderDevice: "Vous pouvez également réessayer avec une " +
+                            "ancienne clé de sécurité/biométrique."
                     }
                 },
                 notifications: {
diff --git a/modules/i18n/src/translations/pt-BR/portals/myaccount.ts b/modules/i18n/src/translations/pt-BR/portals/myaccount.ts
index f66c6a234e6..11b3c1580d7 100644
--- a/modules/i18n/src/translations/pt-BR/portals/myaccount.ts
+++ b/modules/i18n/src/translations/pt-BR/portals/myaccount.ts
@@ -669,9 +669,10 @@ export const myAccount: MyAccountNS = {
                     },
                     deviceRegistrationErrorModal: {
                         description: "TA chave de segurança/registro biométrico foi interrompido. " +
-                            "Se isso não foi intencional, você pode tentar novamente o mesmo fluxo ou tentar " +
-                            "novamente com uma chave de segurança/biométrica mais antiga.",
-                        heading: "Falha no registro biométrico/chave de segurança"
+                            "Se isso não foi intencional, você pode tentar novamente o fluxo.",
+                        heading: "Falha no registro biométrico/chave de segurança",
+                        tryWithOlderDevice: "Você também pode tentar novamente com uma " +
+                            "chave de segurança/biométrica mais antiga."
                     }
                 },
                 notifications: {
diff --git a/modules/i18n/src/translations/si-LK/portals/myaccount.ts b/modules/i18n/src/translations/si-LK/portals/myaccount.ts
index cac12504be4..c33f732bfa1 100644
--- a/modules/i18n/src/translations/si-LK/portals/myaccount.ts
+++ b/modules/i18n/src/translations/si-LK/portals/myaccount.ts
@@ -667,9 +667,9 @@ export const myAccount: MyAccountNS = {
                     },
                     deviceRegistrationErrorModal: {
                         description: "ආරක්ෂක යතුර/ජීවමිතික ලියාපදිංචිය බාධා විය. මෙය චේතනාන්විත නොවේ නම්, " +
-                            "ඔබට එම ප්‍රවාහයම නැවත උත්සාහ කිරීමට හෝ පැරණි ආරක්ෂක " +
-                            "යතුරක්/ජෛවමිතික සමඟ නැවත උත්සාහ කිරීමට හැකිය.",
-                        heading: "ආරක්ෂිත යතුර/ජීවමිතික ලියාපදිංචිය අසාර්ථක විය"
+                            "ඔබට එම ප්‍රවාහයම නැවත උත්සාහ කිරීමට කිරීමට හැකිය.",
+                        heading: "ආරක්ෂිත යතුර/ජීවමිතික ලියාපදිංචිය අසාර්ථක විය",
+                        tryWithOlderDevice: "ඔබට පැරණි ආරක්ෂක යතුරක්/ජෛවමිතිකයක් සමඟින් නැවත උත්සාහ කිරීමටද හැකිය."
                     }
                 },
                 notifications: {
diff --git a/modules/i18n/src/translations/ta-IN/portals/myaccount.ts b/modules/i18n/src/translations/ta-IN/portals/myaccount.ts
index b785bcd82eb..726033384fe 100644
--- a/modules/i18n/src/translations/ta-IN/portals/myaccount.ts
+++ b/modules/i18n/src/translations/ta-IN/portals/myaccount.ts
@@ -676,9 +676,9 @@ export const myAccount: MyAccountNS = {
                     deviceRegistrationErrorModal: {
                         description: "பாதுகாப்பு விசை/பயோமெட்ரிக் பதிவு தடைபட்டது. இது வேண்டுமென்றே " +
                             "செய்யப்படவில்லை என்றால், நீங்கள் அதே ஓட்டத்தை " +
-                            "மீண்டும் முயற்சிக்கலாம் அல்லது பழைய பாதுகாப்பு " +
-                            "விசை/பயோமெட்ரிக் மூலம் மீண்டும் முயற்சிக்கலாம்.",
-                        heading: "பாதுகாப்பு விசை/பயோமெட்ரிக் பதிவு தோல்வியடைந்தது"
+                            "மீண்டும் முயற்சிக்கலாம்.",
+                        heading: "பாதுகாப்பு விசை/பயோமெட்ரிக் பதிவு தோல்வியடைந்தது",
+                        tryWithOlderDevice: "பழைய பாதுகாப்பு விசை/பயோமெட்ரிக் மூலம் மீண்டும் முயற்சி செய்யலாம்."
                     }
                 },
                 notifications: {

From 485172a3dc8a462494c3074fb93c2376981a48b8 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 1 Feb 2022 15:54:30 +0530
Subject: [PATCH 23/82] Add config to toggle try with older device button

---
 .../authenticators/fido-authenticator.tsx     | 20 ++++++++++++-------
 .../src/extensions/configs/common.ts          | 13 ++++++++----
 .../src/extensions/configs/models/common.ts   |  5 +++++
 3 files changed, 27 insertions(+), 11 deletions(-)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index 0c599f3b4f8..1c7a810dbc7 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -27,6 +27,7 @@ import { Button, Divider, Form, Grid, Icon, List, ModalContent, Popup } from "se
 import { deleteDevice, getMetaData, startFidoFlow, startFidoUsernamelessFlow, updateDeviceName } from "../../../api";
 import { getMFAIcons } from "../../../configs";
 import { CommonConstants } from "../../../constants";
+import { commonConfig } from "../../../extensions";
 import { AlertInterface, AlertLevels } from "../../../models";
 import { FIDODevice } from "../../../models/fido-authenticator";
 import { AppState } from "../../../store";
@@ -356,15 +357,20 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                 onClose={ handleDeviceErrorModalClose }
                 type="negative"
                 header={ t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.heading") }
-                content={ t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.description") }
+                content={ commonConfig.accountSecurityPage.mfa.fido2.allowLegacyKeyRegistration
+                    ? `${t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.description")}
+                        ${t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.tryWithOlderDevice")}`
+                    : t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.description") }
             >
                 <ModalContent>
-                    <Button
-                        className="negative-modal-link-button"
-                        onClick={ addDevice }
-                    >
-                        { t("myAccount:components.mfa.fido.tryButton") }
-                    </Button>
+                    { commonConfig.accountSecurityPage.mfa.fido2.allowLegacyKeyRegistration &&
+                        (<Button
+                            className="negative-modal-link-button"
+                            onClick={ addDevice }
+                        >
+                            { t("myAccount:components.mfa.fido.tryButton") }
+                        </Button>)
+                    }
                 </ModalContent>
             </ModalComponent>
         );
diff --git a/apps/myaccount/src/extensions/configs/common.ts b/apps/myaccount/src/extensions/configs/common.ts
index 75d53b0bcd6..61ae215065b 100644
--- a/apps/myaccount/src/extensions/configs/common.ts
+++ b/apps/myaccount/src/extensions/configs/common.ts
@@ -7,8 +7,8 @@
  * You may not alter or remove any copyright or other notice from copies of this content."
  */
 
-import { ProfileSchema } from "../../models";
 import { CommonConfig } from "./models";
+import { ProfileSchema } from "../../models";
 
 export const commonConfig: CommonConfig = {
     advancedSearchWithBasicFilters: {
@@ -32,6 +32,11 @@ export const commonConfig: CommonConfig = {
             emailRecovery: {
                 enableEditEmail: true
             }
+        },
+        mfa: {
+            fido2: {
+                allowLegacyKeyRegistration: true
+            }
         }
     },
     personalInfoPage: {
@@ -40,13 +45,13 @@ export const commonConfig: CommonConfig = {
         }
     },
     utils: {
-        isManageConsentAllowedForUser(userstore: string): boolean {
+        isManageConsentAllowedForUser(): boolean {
             return true;
         },
-        isShowAdditionalWidgetAllowed(userstore: string): boolean {
+        isShowAdditionalWidgetAllowed(): boolean {
             return false;
         },
-        isConsoleNavigationAllowed(userstore: string): boolean {
+        isConsoleNavigationAllowed(): boolean {
             return true;
         },
         isSchemaNameSkippableforProfileCompletion(schema: ProfileSchema): boolean {
diff --git a/apps/myaccount/src/extensions/configs/models/common.ts b/apps/myaccount/src/extensions/configs/models/common.ts
index 6d6a859b79e..21d23cc2c43 100644
--- a/apps/myaccount/src/extensions/configs/models/common.ts
+++ b/apps/myaccount/src/extensions/configs/models/common.ts
@@ -34,6 +34,11 @@ export interface CommonConfig {
             emailRecovery: {
                 enableEditEmail: boolean;
             };
+        };
+        mfa: {
+            fido2: {
+                allowLegacyKeyRegistration: boolean;
+            }
         }
     };
     personalInfoPage: {

From 93c82506c6e9879400765b4d98d270236547b00b Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 2 Feb 2022 13:24:45 +0530
Subject: [PATCH 24/82] Modify usernameless description

---
 modules/i18n/src/translations/en-US/portals/console.ts | 2 +-
 modules/i18n/src/translations/fr-FR/portals/console.ts | 3 +--
 modules/i18n/src/translations/si-LK/portals/console.ts | 3 +--
 3 files changed, 3 insertions(+), 5 deletions(-)

diff --git a/modules/i18n/src/translations/en-US/portals/console.ts b/modules/i18n/src/translations/en-US/portals/console.ts
index dba871920d8..14252db1ca8 100644
--- a/modules/i18n/src/translations/en-US/portals/console.ts
+++ b/modules/i18n/src/translations/en-US/portals/console.ts
@@ -1115,7 +1115,7 @@ export const console: ConsoleNS = {
                                             },
                                             usernameless: {
                                                 description: "Enable users to log in using a FIDO2 security key " +
-                                                    "or biometrics without entering their username or password.",
+                                                    "or biometrics.",
                                                 heading: "Add usernameless login"
                                             }
                                         }
diff --git a/modules/i18n/src/translations/fr-FR/portals/console.ts b/modules/i18n/src/translations/fr-FR/portals/console.ts
index 998421c3302..0c65ec6cf83 100644
--- a/modules/i18n/src/translations/fr-FR/portals/console.ts
+++ b/modules/i18n/src/translations/fr-FR/portals/console.ts
@@ -1144,8 +1144,7 @@ export const console: ConsoleNS = {
                                             usernameless: {
                                                 description: "Permettre aux utilisateurs de se connecter à " +
                                                     "l'aidAjouter une connexion sans nom d'utilisateuré " +
-                                                    "FIDO2 ou de la biométrie sans entrer leur nom d'utilisateur " +
-                                                    "ou leur mot de passe.",
+                                                    "FIDO2 ou de la biométrie.",
                                                 heading: "Add usernameless login"
                                             }
                                         }
diff --git a/modules/i18n/src/translations/si-LK/portals/console.ts b/modules/i18n/src/translations/si-LK/portals/console.ts
index ec8e575c17e..de0a3d6e4e4 100644
--- a/modules/i18n/src/translations/si-LK/portals/console.ts
+++ b/modules/i18n/src/translations/si-LK/portals/console.ts
@@ -1120,8 +1120,7 @@ export const console: ConsoleNS = {
                                                 heading: "TOTP දෙවන සාධකය ලෙස එක් කරන්න"
                                             },
                                             usernameless: {
-                                                description: "පරිශීලකයින්ට ඔවුන්ගේ පරිශීලක නාමය හෝ " +
-                                                    "මුරපදය ඇතුළත් නොකර FIDO2 ආරක්ෂක යතුරක් හෝ " +
+                                                description: "පරිශීලකයින්ට ඔවුන්ගේ FIDO2 ආරක්ෂක යතුරක් හෝ " +
                                                     "ජෛවමිතික භාවිතයෙන් පුරනය වීමට සබල කරන්න.",
                                                 heading: "පරිශීලක නාම රහිත පිවිසුම එක් කරන්න"
                                             }

From ae4d19597fa87bc453b8b6f1a8f51202bf4f6bec Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 2 Feb 2022 18:06:19 +0530
Subject: [PATCH 25/82] Null check objects

---
 .../common-pluggable-component-form.tsx       | 50 +++++++++++--------
 1 file changed, 28 insertions(+), 22 deletions(-)

diff --git a/apps/console/src/features/identity-providers/components/forms/components/common-pluggable-component-form.tsx b/apps/console/src/features/identity-providers/components/forms/components/common-pluggable-component-form.tsx
index d8e943a0f3c..9e4c66916ee 100644
--- a/apps/console/src/features/identity-providers/components/forms/components/common-pluggable-component-form.tsx
+++ b/apps/console/src/features/identity-providers/components/forms/components/common-pluggable-component-form.tsx
@@ -101,6 +101,7 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
         const modifiedCustomProperties = resolvedCustomProperties?.toString()?.split(",")
             ?.map((customProperty: string) => {
                 const keyValuePair = customProperty.split("=");
+
                 return {
                     key: keyValuePair[ 0 ],
                     value: keyValuePair[ 1 ]
@@ -112,12 +113,12 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
         if (initialValues?.properties) {
             return {
                 ...initialValues,
-                properties: [...properties]
+                properties: [ ...properties ]
             };
         } else {
             return {
                 ...metadata,
-                properties: [...properties]
+                properties: [ ...properties ]
             };
         }
     };
@@ -142,10 +143,10 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
     };
 
     const getField = (property: CommonPluggableComponentPropertyInterface,
-                      eachPropertyMeta: CommonPluggableComponentMetaPropertyInterface,
-                      isSub?: boolean,
-                      testId?: string,
-                      listen?: (key: string, values: Map<string, FormValue>) => void):
+        eachPropertyMeta: CommonPluggableComponentMetaPropertyInterface,
+        isSub?: boolean,
+        testId?: string,
+        listen?: (key: string, values: Map<string, FormValue>) => void):
         ReactElement => {
 
         if (isSub) {
@@ -184,20 +185,21 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
                 const property: CommonPluggableComponentPropertyInterface = dynamicValues?.properties?.find(
                     property => property.key === metaProperty.key);
                 let field: ReactElement;
+
                 if (!isCheckboxWithSubProperties(metaProperty)) {
-                    field = getField(property, metaProperty, isSub, `${testId}-form`, handleParentPropertyChange);
+                    field = getField(property, metaProperty, isSub, `${ testId }-form`, handleParentPropertyChange);
                 } else if (isRadioButtonWithSubProperties(metaProperty)) {
                     field =
-                        <React.Fragment key={ metaProperty?.key }>
+                        (<React.Fragment key={ metaProperty?.key }>
                             {
                                 // Render parent property.
                                 getField(property, metaProperty, isSub, `${ testId }-form`,
                                     handleParentPropertyChange)
                             }
-                        </React.Fragment>;
+                        </React.Fragment>);
                 } else {
                     field =
-                        <React.Fragment key={ metaProperty?.key }>
+                        (<React.Fragment key={ metaProperty?.key }>
                             {
                                 // Render parent property.
                                 getField(property, metaProperty, isSub, `${ testId }-form`,
@@ -206,7 +208,7 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
                             {
                                 getSortedPropertyFields(metaProperty?.subProperties, true)
                             }
-                        </React.Fragment>;
+                        </React.Fragment>);
                 }
 
                 bucket.push(field);
@@ -222,15 +224,17 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
 
             const enableField = (formKey: string): void => {
                 const props = metadata
-                    .properties
+                    ?.properties
                     .find(({ key }) => key === formKey);
+
                 if (props) props.isDisabled = false;
             };
 
             const disableField = (formKey: string): void => {
                 const props = metadata
-                    .properties
-                    .find(({ key }) => key === formKey);
+                    ?.properties
+                    ?.find(({ key }) => key === formKey);
+
                 if (props) props.isDisabled = true;
             };
 
@@ -262,8 +266,9 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
 
             const changeLabel = (to: string): void => {
                 const props = metadata
-                    .properties
+                    ?.properties
                     .find(({ key }) => key === TARGET_FORM_KEY);
+
                 if (props) props.displayName = to;
             };
 
@@ -292,14 +297,14 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
             properties: dynamicValues?.properties ? dynamicValues?.properties?.map(
                 (prop: CommonPluggableComponentPropertyInterface):
                     CommonPluggableComponentPropertyInterface => {
-                        return prop.key === key ? {
-                            key: key,
-                            value: values?.get(key)?.includes(key)?.toString()
-                        } : prop;
+                    return prop.key === key ? {
+                        key: key,
+                        value: values?.get(key)?.includes(key)?.toString()
+                    } : prop;
                 }) : [ {
-                    key: key,
-                    value: values?.get(key)?.includes(key)?.toString()
-                } ]
+                key: key,
+                value: values?.get(key)?.includes(key)?.toString()
+            } ]
         });
     };
 
@@ -347,6 +352,7 @@ export const CommonPluggableComponentForm: FunctionComponent<CommonPluggableComp
             return;
         }
         const values: string[] = [];
+
         dynamicValues?.properties?.forEach(
             (property: CommonPluggableComponentPropertyInterface) => {
                 if (!metadata?.properties?.find(meta => meta.key === property.key)) {

From 21154e38ea312c52b4ad5d58e1168439fd236240 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 2 Feb 2022 18:06:39 +0530
Subject: [PATCH 26/82] Add FIDO authenticator to edit mfa component

---
 .../edit-multi-factor-authenticator.tsx        | 18 +++++++++++++-----
 1 file changed, 13 insertions(+), 5 deletions(-)

diff --git a/apps/console/src/features/identity-providers/components/edit-multi-factor-authenticator.tsx b/apps/console/src/features/identity-providers/components/edit-multi-factor-authenticator.tsx
index 49bf5ad3f40..6eaaed89584 100644
--- a/apps/console/src/features/identity-providers/components/edit-multi-factor-authenticator.tsx
+++ b/apps/console/src/features/identity-providers/components/edit-multi-factor-authenticator.tsx
@@ -156,7 +156,7 @@ export const EditMultiFactorAuthenticator: FunctionComponent<EditMultiFactorAuth
                     dispatch(addAlert({
                         description: t("console:develop.features.authenticationProvider" +
                             ".notifications.updateEmailOTPAuthenticator.error.description",
-                            { description: error.response.data.description }),
+                        { description: error.response.data.description }),
                         level: AlertLevels.ERROR,
                         message: t("console:develop.features.authenticationProvider" +
                             ".notifications.updateEmailOTPAuthenticator.error.message")
@@ -220,7 +220,7 @@ export const EditMultiFactorAuthenticator: FunctionComponent<EditMultiFactorAuth
     const getPanes = (): ({
         pane?: SemanticShorthandItem<TabPaneProps>;
         menuItem?: any;
-        render?: () => React.ReactNode
+        render?: () => React.ReactNode;
     })[] => {
 
         const panes: {
@@ -233,8 +233,13 @@ export const EditMultiFactorAuthenticator: FunctionComponent<EditMultiFactorAuth
             panes.push(...tabPaneExtensions);
         }
 
-        // If the MFA is TOTP, skip the settings tab.
-        if (authenticator.id !== IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID) {
+        // If the MFA is TOTP/FIDO skip the settings tab.
+        if (
+            ![
+                IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID,
+                IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID
+            ].includes(authenticator.id)
+        ) {
             panes.push({
                 menuItem: t("console:develop.features.authenticationProvider.edit.common.settings.tabName"),
                 render: AuthenticatorSettingsTabPane
@@ -270,7 +275,10 @@ export const EditMultiFactorAuthenticator: FunctionComponent<EditMultiFactorAuth
      */
     const resolveDefaultActiveIndex = (activeIndex: number): number => {
 
-        if (authenticator.id !== IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID) {
+        if (![
+            IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID,
+            IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID
+        ].includes(authenticator.id)) {
             return activeIndex;
         }
 

From 2556c5c47edbf344da744fb79d085d4138afa0fd Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 2 Feb 2022 18:06:58 +0530
Subject: [PATCH 27/82] Fix lint errors

---
 .../pages/identity-providers.tsx              | 28 +++++++++----------
 1 file changed, 14 insertions(+), 14 deletions(-)

diff --git a/apps/console/src/features/identity-providers/pages/identity-providers.tsx b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
index 918b8d0a2ad..167ab39eb01 100644
--- a/apps/console/src/features/identity-providers/pages/identity-providers.tsx
+++ b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
@@ -379,7 +379,7 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
      * @param {DropdownProps} data - Dropdown data.
      */
     const handleListSortingStrategyOnChange = (event: SyntheticEvent<HTMLElement>,
-                                               data: DropdownProps): void => {
+        data: DropdownProps): void => {
 
         setListSortingStrategy(IDENTITY_PROVIDER_LIST_SORTING_OPTIONS.find((option) => {
             return data.value === option.value;
@@ -403,7 +403,7 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
      * @param {DropdownProps} data - Dropdown data.
      */
     const handleItemsPerPageDropdownChange = (event: MouseEvent<HTMLAnchorElement>,
-                                              data: DropdownProps): void => {
+        data: DropdownProps): void => {
         setListItemLimit(data.value as number);
     };
 
@@ -454,14 +454,14 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
             }
             description={
                 useNewConnectionsView
-                    ?   <>
-                            { t("console:develop.pages.authenticationProvider.subTitle") }
-                            <DocumentationLink
-                                link={ getLink("develop.connections.learnMore") }
-                            >
-                                { t("common:learnMore") }
-                            </DocumentationLink>
-                        </>
+                    ?   (<>
+                        { t("console:develop.pages.authenticationProvider.subTitle") }
+                        <DocumentationLink
+                            link={ getLink("develop.connections.learnMore") }
+                        >
+                            { t("common:learnMore") }
+                        </DocumentationLink>
+                    </>)
                     :   t("console:develop.pages.idp.subTitle")
             }
             data-testid={ `${ testId }-page-layout` }
@@ -566,7 +566,7 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
                     : (
                         <ListLayout
                             advancedSearch={
-                                <AdvancedSearchWithBasicFilters
+                                (<AdvancedSearchWithBasicFilters
                                     onFilter={ handleIdentityProviderListFilter }
                                     filterAttributeOptions={ [
                                         {
@@ -595,7 +595,7 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
                                     defaultSearchOperator="co"
                                     triggerClearQuery={ triggerClearQuery }
                                     data-testid={ `${ testId }-advance-search` }
-                                />
+                                />)
                             }
                             currentListSize={ idpList.count }
                             listItemLimit={ listItemLimit }
@@ -616,7 +616,7 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
                         >
                             <IdentityProviderList
                                 advancedSearch={
-                                    <AdvancedSearchWithBasicFilters
+                                    (<AdvancedSearchWithBasicFilters
                                         onFilter={ handleIdentityProviderListFilter }
                                         filterAttributeOptions={ [
                                             {
@@ -646,7 +646,7 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
                                         defaultSearchOperator="co"
                                         triggerClearQuery={ triggerClearQuery }
                                         data-testid={ `${ testId }-advance-search` }
-                                    />
+                                    />)
                                 }
                                 isLoading={ useNewConnectionsView === undefined && isIdPListRequestLoading }
                                 list={ idpList }

From 1132cd5c6f69baa7581b74c072ae39babad9eea4 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 2 Feb 2022 18:59:27 +0530
Subject: [PATCH 28/82] Fix fido issue in Safari

---
 apps/authentication-portal/src/main/webapp/fido2-auth.jsp | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index 4a35f7266b9..8651a6a55dd 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -40,7 +40,7 @@
     <jsp:include page="includes/header.jsp"/>
     <% } %>
 </head>
-<body class="login-portal layout authentication-portal-layout" onload="talkToDevice();">
+<body class="login-portal layout authentication-portal-layout">
 
     <% if (new File(getServletContext().getRealPath("extensions/timeout.jsp")).exists()) { %>
         <jsp:include page="extensions/timeout.jsp"/>
@@ -83,6 +83,7 @@
                     <input type="hidden" name="sessionDataKey" value='<%=Encode.forHtmlAttribute(request.getParameter("sessionDataKey"))%>'/>
                     <input type="hidden" name="tokenResponse" id="tokenResponse" value="tmp val"/>
                 </form>
+                <input id="initiateFlow" type="hidden" onclick="talkToDevice()" />
             </div>
         </div>
     </main>
@@ -112,6 +113,9 @@
     <script type="text/javascript" src="libs/base64url.js"></script>
 
     <script type="text/javascript">
+        $(document).ready(function () {
+            $("#initiateFlow").click();
+        });
 
         function responseToObject(response) {
             if (response.u2fResponse) {

From b81b92251f6825b034c6d092c27173ec6dc63d7e Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 2 Feb 2022 23:52:06 +0530
Subject: [PATCH 29/82] Remove fido device registration initiation from within
 the api calls

---
 apps/myaccount/src/api/multi-factor-fido.ts | 26 ++++-----------------
 1 file changed, 4 insertions(+), 22 deletions(-)

diff --git a/apps/myaccount/src/api/multi-factor-fido.ts b/apps/myaccount/src/api/multi-factor-fido.ts
index 46f193472c2..cc0abc141b1 100644
--- a/apps/myaccount/src/api/multi-factor-fido.ts
+++ b/apps/myaccount/src/api/multi-factor-fido.ts
@@ -207,7 +207,7 @@ export const endFidoFlow = (clientResponse: string): Promise<any> => {
  *
  * @return {Promise<any>} a promise containing the response.
  */
-const connectToDevice = (requestId, credentialCreationOptions): Promise<any> => {
+export const connectToDevice = (requestId, credentialCreationOptions): Promise<any> => {
     return navigator.credentials
         .create({ publicKey: credentialCreationOptions })
         .then((credential) => {
@@ -240,7 +240,7 @@ const connectToDevice = (requestId, credentialCreationOptions): Promise<any> =>
  *
  * @return {object} excludeCredentials
  */
-const decodePublicKeyCredentialCreationOptions = (request): Record<string, any> => {
+export const decodePublicKeyCredentialCreationOptions = (request): Record<string, any> => {
     const excludeCredentials = request.excludeCredentials.map((credential) => {
         return { ...credential, id: Decode(credential.id) };
     });
@@ -281,16 +281,7 @@ export const startFidoFlow = (): Promise<any> => {
                 );
             }
 
-            return connectToDevice(
-                response.data.requestId,
-                decodePublicKeyCredentialCreationOptions(response.data.publicKeyCredentialCreationOptions)
-            )
-                .then((responseAtCompletion) => {
-                    return Promise.resolve(responseAtCompletion);
-                })
-                .catch((error) => {
-                    return Promise.reject(`Failed to connect to device - ${error}`);
-                });
+            return Promise.resolve(response?.data);
         })
         .catch((error) => {
             return Promise.reject(`FIDO connection terminated - ${error}`);
@@ -322,16 +313,7 @@ export const startFidoUsernamelessFlow = (): Promise<any> => {
                 );
             }
 
-            return connectToDevice(
-                response.data.requestId,
-                decodePublicKeyCredentialCreationOptions(response.data.publicKeyCredentialCreationOptions)
-            )
-                .then((responseAtCompletion) => {
-                    return Promise.resolve(responseAtCompletion);
-                })
-                .catch((error) => {
-                    return Promise.reject(`Failed to connect to device - ${error}`);
-                });
+            return Promise.resolve(response?.data);
         })
         .catch((error) => {
             return Promise.reject(`FIDO connection terminated - ${error}`);

From d13ebe9f4ccf6b5959bf8f92c86670fd4d4afab4 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 2 Feb 2022 23:52:17 +0530
Subject: [PATCH 30/82] Implement Safari specific logic

---
 .../authenticators/fido-authenticator.tsx     | 542 +++++++++---------
 1 file changed, 281 insertions(+), 261 deletions(-)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index 1c7a810dbc7..daa6ece6d32 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -20,11 +20,20 @@ import { TestableComponentInterface } from "@wso2is/core/models";
 import { Field, Forms } from "@wso2is/forms";
 import { ConfirmationModal, GenericIcon } from "@wso2is/react-components";
 import isEmpty from "lodash-es/isEmpty";
-import React, { ReactElement, useEffect, useState } from "react";
+import React, { ReactElement, useEffect, useRef, useState } from "react";
 import { useTranslation } from "react-i18next";
 import { useDispatch, useSelector } from "react-redux";
 import { Button, Divider, Form, Grid, Icon, List, ModalContent, Popup } from "semantic-ui-react";
-import { deleteDevice, getMetaData, startFidoFlow, startFidoUsernamelessFlow, updateDeviceName } from "../../../api";
+import UAParser from "ua-parser-js";
+import {
+    connectToDevice,
+    decodePublicKeyCredentialCreationOptions,
+    deleteDevice,
+    getMetaData,
+    startFidoFlow,
+    startFidoUsernamelessFlow,
+    updateDeviceName
+} from "../../../api";
 import { getMFAIcons } from "../../../configs";
 import { CommonConstants } from "../../../constants";
 import { commonConfig } from "../../../extensions";
@@ -59,8 +68,7 @@ interface FIDOAuthenticatorProps extends TestableComponentInterface {
 export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps> = (
     props: FIDOAuthenticatorProps
 ): JSX.Element => {
-
-    const { onAlertFired, ["data-testid"]: testId } = props;
+    const { onAlertFired, [ "data-testid" ]: testId } = props;
     const { t } = useTranslation();
     const [ deviceList, setDeviceList ] = useState<FIDODevice[]>([]);
     const [ isDeviceErrorModalVisible, setDeviceErrorModalVisibility ] = useState(false);
@@ -70,6 +78,9 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
     const [ recentlyAddedDevice, setRecentlyAddedDevice ] = useState<string>();
     const [ editFIDO, setEditFido ] = useState<Map<string, boolean>>();
     const [ deleteKey, setDeleteKey ] = useState<string>("");
+    const [ fidoFlowStartResponse, setFidoFlowStartResponse ] = useState<any>(null);
+
+    const tryOlderDevice = useRef(false);
 
     const activeForm: string = useSelector((state: AppState) => state.global.activeForm);
     const dispatch = useDispatch();
@@ -79,13 +90,9 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
      */
     const fireFailureNotification = () => {
         onAlertFired({
-            description: t(
-                "myAccount:components.mfa.fido.notifications.startFidoFlow.genericError.description"
-            ),
+            description: t("myAccount:components.mfa.fido.notifications.startFidoFlow.genericError.description"),
             level: AlertLevels.ERROR,
-            message: t(
-                "myAccount:components.mfa.fido.notifications.startFidoFlow.genericError.message"
-            )
+            message: t("myAccount:components.mfa.fido.notifications.startFidoFlow.genericError.message")
         });
     };
 
@@ -124,13 +131,9 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
      */
     const fireDeletionSuccessNotification = () => {
         onAlertFired({
-            description: t(
-                "myAccount:components.mfa.fido.notifications.removeDevice.success.description"
-            ),
+            description: t("myAccount:components.mfa.fido.notifications.removeDevice.success.description"),
             level: AlertLevels.SUCCESS,
-            message: t(
-                "myAccount:components.mfa.fido.notifications.removeDevice.success.message"
-            )
+            message: t("myAccount:components.mfa.fido.notifications.removeDevice.success.message")
         });
     };
 
@@ -139,16 +142,11 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
      */
     const fireDeletionFailureNotification = (error: string) => {
         onAlertFired({
-            description: t(
-                "myAccount:components.mfa.fido.notifications.removeDevice.error.description",
-                {
-                    description: error
-                }
-            ),
+            description: t("myAccount:components.mfa.fido.notifications.removeDevice.error.description", {
+                description: error
+            }),
             level: AlertLevels.ERROR,
-            message: t(
-                "myAccount:components.mfa.fido.notifications.removeDevice.error.message"
-            )
+            message: t("myAccount:components.mfa.fido.notifications.removeDevice.error.message")
         });
     };
 
@@ -157,13 +155,9 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
      */
     const fireDeviceNameUpdateSuccessNotification = () => {
         onAlertFired({
-            description: t(
-                "myAccount:components.mfa.fido.notifications.updateDeviceName.success.description"
-            ),
+            description: t("myAccount:components.mfa.fido.notifications.updateDeviceName.success.description"),
             level: AlertLevels.SUCCESS,
-            message: t(
-                "myAccount:components.mfa.fido.notifications.updateDeviceName.success.message"
-            )
+            message: t("myAccount:components.mfa.fido.notifications.updateDeviceName.success.message")
         });
     };
 
@@ -172,19 +166,47 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
      */
     const fireDeviceNameUpdateFailureNotification = (error: string) => {
         onAlertFired({
-            description: t(
-                "myAccount:components.mfa.fido.notifications.updateDeviceName.genericError.description",
-                {
-                    description: error
-                }
-            ),
+            description: t("myAccount:components.mfa.fido.notifications.updateDeviceName.genericError.description", {
+                description: error
+            }),
             level: AlertLevels.ERROR,
-            message: t(
-                "myAccount:components.mfa.fido.notifications.updateDeviceName.error.message"
-            )
+            message: t("myAccount:components.mfa.fido.notifications.updateDeviceName.error.message")
         });
     };
 
+    const talkToDevice = (request?: any): void => {
+        const fidoRequest = request ?? fidoFlowStartResponse;
+
+        if (!fidoRequest) {
+            if (tryOlderDevice.current) {
+                fireFailureNotification();
+            } else {
+                setDeviceErrorModalVisibility(true);
+            }
+
+            return;
+        }
+
+        connectToDevice(
+            fidoRequest?.requestId,
+            decodePublicKeyCredentialCreationOptions(fidoRequest?.publicKeyCredentialCreationOptions)
+        )
+            .then(({ data }) => {
+                setRecentlyAddedDevice(data.credential.id);
+                setIsDeviceSuccessModalVisibility(true);
+            })
+            .catch(() => {
+                if (tryOlderDevice.current) {
+                    fireFailureNotification();
+                } else {
+                    setDeviceErrorModalVisibility(true);
+                }
+            })
+            .finally(() => {
+                tryOlderDevice.current = false;
+            });
+    };
+
     /**
      * This handles the initiation of device registration with
      * passwordless authentication
@@ -192,10 +214,20 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
     const addDevice = () => {
         setDeviceErrorModalVisibility(false);
         startFidoFlow()
-            .then(({ data }) => {
-                setRecentlyAddedDevice(data.credential.id);
-                setIsDeviceSuccessModalVisibility(true);
-            }).catch(() => {
+            .then((response) => {
+                // Safari doesn't allow the flow to be initiated in async.
+                // link https://bugs.webkit.org/show_bug.cgi?id=213595
+                if (new UAParser().getBrowser().name === "Safari") {
+                    setFidoFlowStartResponse(response);
+                    tryOlderDevice.current = true;
+                } else {
+                    tryOlderDevice.current = true;
+                    setFidoFlowStartResponse(response);
+                    talkToDevice(response);
+                }
+
+            })
+            .catch(() => {
                 fireFailureNotification();
             });
     };
@@ -207,10 +239,17 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
     const addUsernamelessDevice = () => {
         setDeviceErrorModalVisibility(false);
         startFidoUsernamelessFlow()
-            .then(({ data }) => {
-                setRecentlyAddedDevice(data.credential.id);
-                setIsDeviceSuccessModalVisibility(true);
-            }).catch(() => {
+            .then((response) => {
+                // Safari doesn't allow the flow to be initiated in async.
+                // link https://bugs.webkit.org/show_bug.cgi?id=213595
+                if (new UAParser().getBrowser().name === "Safari") {
+                    setFidoFlowStartResponse(response);
+                } else {
+                    setFidoFlowStartResponse(response);
+                    talkToDevice(response);
+                }
+            })
+            .catch(() => {
                 setDeviceErrorModalVisibility(true);
             });
     };
@@ -234,7 +273,8 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                 getFidoMetaData();
                 setDeleteKey("");
                 fireDeletionSuccessNotification();
-            }).catch((error) => {
+            })
+            .catch((error) => {
                 fireDeletionFailureNotification(error);
             });
     };
@@ -263,9 +303,9 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                     cancelEdit(id);
                     fireDeviceNameUpdateSuccessNotification();
                 })
-                .catch(((error) => {
+                .catch((error) => {
                     fireDeviceNameUpdateFailureNotification(error);
-                }));
+                });
         } else {
             setRecentFIDONameError(true);
         }
@@ -325,17 +365,11 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
             <ConfirmationModal.Header data-testid={ `${ testId }-confirmation-modal-header` }>
                 { t("myAccount:components.mfa.fido.modals.deleteConfirmation.heading") }
             </ConfirmationModal.Header>
-            <ConfirmationModal.Message
-                data-testid={ `${ testId }-confirmation-modal-message` }
-                attached
-                negative
-            >
+            <ConfirmationModal.Message data-testid={ `${ testId }-confirmation-modal-message` } attached negative>
                 { t("myAccount:components.mfa.fido.modals.deleteConfirmation.description") }
             </ConfirmationModal.Message>
             <ConfirmationModal.Content data-testid={ `${ testId }-confirmation-modal-content` }>
-                {
-                    t("myAccount:components.mfa.fido.modals.deleteConfirmation.content")
-                }
+                { t("myAccount:components.mfa.fido.modals.deleteConfirmation.content") }
             </ConfirmationModal.Content>
         </ConfirmationModal>
     );
@@ -348,29 +382,42 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
     const deviceErrorModal = (): JSX.Element => {
         return (
             <ModalComponent
-                data-testid={ `${testId}-error-modal-component` }
+                data-testid={ `${ testId }-error-modal-component` }
                 primaryAction={ t("common:retry") }
                 secondaryAction={ t("common:cancel") }
                 onSecondaryActionClick={ handleDeviceErrorModalClose }
-                onPrimaryActionClick={ addUsernamelessDevice }
+                onPrimaryActionClick={ () => {
+                    talkToDevice();
+                } }
                 open={ isDeviceErrorModalVisible }
                 onClose={ handleDeviceErrorModalClose }
                 type="negative"
                 header={ t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.heading") }
-                content={ commonConfig.accountSecurityPage.mfa.fido2.allowLegacyKeyRegistration
-                    ? `${t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.description")}
-                        ${t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.tryWithOlderDevice")}`
-                    : t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.description") }
+                content={
+                    commonConfig.accountSecurityPage.mfa.fido2.allowLegacyKeyRegistration
+                        ? `${ t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.description") }
+                        ${ t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.tryWithOlderDevice") }`
+                        : t("myAccount:components.mfa.fido.modals.deviceRegistrationErrorModal.description")
+                }
             >
                 <ModalContent>
-                    { commonConfig.accountSecurityPage.mfa.fido2.allowLegacyKeyRegistration &&
-                        (<Button
-                            className="negative-modal-link-button"
-                            onClick={ addDevice }
+                    { commonConfig.accountSecurityPage.mfa.fido2.allowLegacyKeyRegistration && (
+                        <div
+                            onClick={ () => {
+                                // Safari doesn't allow the flow to be initiated in async.
+                                // link https://bugs.webkit.org/show_bug.cgi?id=213595
+                                if (new UAParser().getBrowser().name === "Safari") {
+                                    setTimeout(() => {
+                                        talkToDevice();
+                                    }, 990);
+                                }
+                            } }
                         >
-                            { t("myAccount:components.mfa.fido.tryButton") }
-                        </Button>)
-                    }
+                            <Button className="negative-modal-link-button" onClick={ addDevice }>
+                                { t("myAccount:components.mfa.fido.tryButton") }
+                            </Button>
+                        </div>
+                    ) }
                 </ModalContent>
             </ModalComponent>
         );
@@ -382,7 +429,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
     const deviceRegistrationSuccessModal = (): JSX.Element => {
         return (
             <ModalComponent
-                data-testid={ `${testId}-success-modal-component` }
+                data-testid={ `${ testId }-success-modal-component` }
                 primaryAction={ t("common:save") }
                 secondaryAction={ t("common:cancel") }
                 onSecondaryActionClick={ handleDeviceSuccessModalClose }
@@ -402,10 +449,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                 autoFocus={ true }
                                 type="text"
                                 label=""
-                                placeholder={
-                                    t("myAccount:components" +
-                                        ".mfa.fido.form.placeholder")
-                                }
+                                placeholder={ t("myAccount:components" + ".mfa.fido.form.placeholder") }
                                 onChange={ handleDeviceNameChange }
                                 error={
                                     recentFIDONameError
@@ -443,199 +487,175 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                         <Grid.Column width={ 12 } className="first-column">
                             <List.Content>
                                 <List.Header>{ t("myAccount:components.mfa.fido.heading") }</List.Header>
-                                <List.Description>
-                                    { t("myAccount:components.mfa.fido.description") }
-                                </List.Description>
+                                <List.Description>{ t("myAccount:components.mfa.fido.description") }</List.Description>
                             </List.Content>
                         </Grid.Column>
                         <Grid.Column width={ 3 } className="last-column">
-                            <List.Content floated="right">
-                                <Icon
-                                    floated="right"
-                                    link={ true }
-                                    className="list-icon"
-                                    size="small"
-                                    color="grey"
-                                    name="add"
-                                    onClick={ addUsernamelessDevice }
-                                />
+                            <List.Content
+                                floated="right"
+                            >
+                                <span
+                                    onClick={ () => {
+                                        // Safari doesn't allow the flow to be initiated in async.
+                                        // link https://bugs.webkit.org/show_bug.cgi?id=213595
+                                        if (new UAParser().getBrowser().name === "Safari") {
+                                            setTimeout(() => {
+                                                talkToDevice();
+                                            }, 990);
+                                        }
+                                    } }>
+                                    <Icon
+                                        floated="right"
+                                        link={ true }
+                                        className="list-icon"
+                                        size="small"
+                                        color="grey"
+                                        name="add"
+                                        onClick={ addUsernamelessDevice }
+                                    />
+                                </span>
                             </List.Content>
                         </Grid.Column>
                     </Grid.Row>
                 </Grid>
-                {
-                    deviceList ? (
-                        <List
-                            data-testid={ `${testId}-devices-list` }
-                            divided
-                            relaxed
-                            verticalAlign="middle"
-                            className="main-content-inner settings-section-inner-list"
-                        >
-                            {
-                                deviceList.map((device, index) => (
-                                    editFIDO?.get(device.credential.credentialId)
-                                        && activeForm?.startsWith(CommonConstants.SECURITY+FIDO)
-                                        ? (
-                                            <EditSection
-                                                key={ device.credential.credentialId }
-                                                data-testid={ `${testId}-device-${index}-edit-section` }>
-                                                <Grid>
-                                                    <Grid.Row columns={ 2 }>
-                                                        <Grid.Column width={ 4 }>
-                                                            {
-                                                                t("myAccount:components.mfa.fido.form.label")
-                                                                + ` ${index + 1}`
-                                                            }
-                                                        </Grid.Column>
-                                                        <Grid.Column width={ 12 }>
-                                                            <List.Item>
-                                                                <List.Content>
-                                                                    <Forms
-                                                                        onSubmit={
-                                                                            (values: Map<string, string>) => {
-                                                                                submitName(
-                                                                                    values.get(
-                                                                                        device.credential.credentialId
-                                                                                    ),
-                                                                                    device.credential.credentialId
-                                                                                );
-                                                                            }
-                                                                        }
-                                                                    >
-                                                                        <Field
-                                                                            autoFocus={ true }
-                                                                            label=""
-                                                                            value={ device.displayName || "" }
-                                                                            required={ true }
-                                                                            requiredErrorMessage={
-                                                                                t("myAccount:components" +
-                                                                                    ".mfa.fido.form.required")
-                                                                            }
-                                                                            name={ device.credential.credentialId }
-                                                                            placeholder={
-                                                                                t("myAccount:components" +
-                                                                                    ".mfa.fido.form.placeholder")
-                                                                            }
-                                                                            type="text"
-                                                                        />
-                                                                        <Field
-                                                                            hidden={ true }
-                                                                            type="divider"
-                                                                        />
-                                                                        <Form.Group inline={ true }>
-                                                                            <Field
-                                                                                size="small"
-                                                                                type="submit"
-                                                                                value={ t("common:update").toString() }
-                                                                            />
-                                                                            <Field
-                                                                                className="link-button"
-                                                                                onClick={
-                                                                                    () => {
-                                                                                        cancelEdit(
-                                                                                            device.credential
-                                                                                                .credentialId
-                                                                                        );
-                                                                                    }
-                                                                                }
-                                                                                size="small"
-                                                                                type="button"
-                                                                                value={ t("common:cancel").toString() }
-                                                                            />
-                                                                        </Form.Group>
-                                                                    </Forms>
-                                                                </List.Content>
-                                                            </List.Item>
-                                                        </Grid.Column>
-                                                    </Grid.Row>
-                                                </Grid>
-                                            </EditSection>
-                                        )
-                                        : (
-                                            <>
-                                                <List.Item
-                                                    className="inner-list-item"
-                                                    key={ index }
-                                                    data-testid={ `${testId}-devices-list-item` }>
-                                                    <Grid padded={ true }>
-                                                        <Grid.Row columns={ 2 } className="first-column">
-                                                            <Grid.Column width={ 11 }>
-                                                                <List.Header className="with-left-padding">
-                                                                    {
-                                                                        device.displayName
-                                                                    || t("myAccount:components.mfa.fido.form.label")
-                                                                    + ` ${index + 1}`
-                                                                    }
-                                                                </List.Header>
-                                                            </Grid.Column>
-                                                            <Grid.Column width={ 5 } className="last-column">
-                                                                <List.Content floated="right">
-                                                                    <Icon
-                                                                        id={ device.credential.credentialId }
-                                                                        link={ true }
-                                                                        className="list-icon"
-                                                                        size="large"
-                                                                        color="grey"
-                                                                        name="pencil alternate"
-                                                                        onClick={
-                                                                            () => {
-                                                                                showEdit(
-                                                                                    device.credential.credentialId);
-                                                                            }
-                                                                        }
+                { deviceList ? (
+                    <List
+                        data-testid={ `${ testId }-devices-list` }
+                        divided
+                        relaxed
+                        verticalAlign="middle"
+                        className="main-content-inner settings-section-inner-list"
+                    >
+                        { deviceList.map((device, index) =>
+                            editFIDO?.get(device.credential.credentialId) &&
+                                activeForm?.startsWith(CommonConstants.SECURITY + FIDO) ? (
+                                    <EditSection
+                                        key={ device.credential.credentialId }
+                                        data-testid={ `${ testId }-device-${ index }-edit-section` }
+                                    >
+                                        <Grid>
+                                            <Grid.Row columns={ 2 }>
+                                                <Grid.Column width={ 4 }>
+                                                    { t("myAccount:components.mfa.fido.form.label")
+                                                        + ` ${ index + 1 }` }
+                                                </Grid.Column>
+                                                <Grid.Column width={ 12 }>
+                                                    <List.Item>
+                                                        <List.Content>
+                                                            <Forms
+                                                                onSubmit={ (values: Map<string, string>) => {
+                                                                    submitName(
+                                                                        values.get(device.credential.credentialId),
+                                                                        device.credential.credentialId
+                                                                    );
+                                                                } }
+                                                            >
+                                                                <Field
+                                                                    autoFocus={ true }
+                                                                    label=""
+                                                                    value={ device.displayName || "" }
+                                                                    required={ true }
+                                                                    requiredErrorMessage={ t(
+                                                                        "myAccount:components"
+                                                                        + ".mfa.fido.form.required"
+                                                                    ) }
+                                                                    name={ device.credential.credentialId }
+                                                                    placeholder={ t(
+                                                                        "myAccount:components" +
+                                                                    ".mfa.fido.form.placeholder"
+                                                                    ) }
+                                                                    type="text"
+                                                                />
+                                                                <Field hidden={ true } type="divider" />
+                                                                <Form.Group inline={ true }>
+                                                                    <Field
+                                                                        size="small"
+                                                                        type="submit"
+                                                                        value={ t("common:update").toString() }
                                                                     />
-                                                                    <Popup
-                                                                        content={
-                                                                            t("myAccount:components.mfa" +
-                                                                                ".fido.form.remove")
-                                                                        }
-                                                                        inverted
-                                                                        trigger={ (
-                                                                            <Icon
-                                                                                link={ true }
-                                                                                name="trash alternate outline"
-                                                                                color="red"
-                                                                                size="small"
-                                                                                className="list-icon"
-                                                                                onClick={
-                                                                                    () => {
-                                                                                        setDeleteKey(
-                                                                                            device.credential
-                                                                                                .credentialId
-                                                                                        );
-                                                                                    }
-                                                                                }
-                                                                            />
-                                                                        ) }
+                                                                    <Field
+                                                                        className="link-button"
+                                                                        onClick={ () => {
+                                                                            cancelEdit(device.credential.credentialId);
+                                                                        } }
+                                                                        size="small"
+                                                                        type="button"
+                                                                        value={ t("common:cancel").toString() }
                                                                     />
-                                                                </List.Content>
-                                                            </Grid.Column>
-                                                        </Grid.Row>
-                                                    </Grid>
-                                                </List.Item>
-                                                { deviceList.length !== index + 1
-                                                    && <Divider className="fido-list-divider" /> }
-                                            </>
-                                        )
-                                ))
-                            }
-                        </List>
-                    )
-                        :
-                        (
-                            <>
-                                <p style={ { fontSize: "12px" } }>
-                                    <Icon
-                                        color="grey"
-                                        floated="left"
-                                        name="info circle"
-                                    />
-                                    You don&apos;t have any security key/biometric registered yet.
-                                </p>
-                            </>
-                        )
-                }
+                                                                </Form.Group>
+                                                            </Forms>
+                                                        </List.Content>
+                                                    </List.Item>
+                                                </Grid.Column>
+                                            </Grid.Row>
+                                        </Grid>
+                                    </EditSection>
+                                ) : (
+                                    <>
+                                        <List.Item
+                                            className="inner-list-item"
+                                            key={ index }
+                                            data-testid={ `${ testId }-devices-list-item` }
+                                        >
+                                            <Grid padded={ true }>
+                                                <Grid.Row columns={ 2 } className="first-column">
+                                                    <Grid.Column width={ 11 }>
+                                                        <List.Header className="with-left-padding">
+                                                            { device.displayName ||
+                                                            t("myAccount:components.mfa.fido.form.label") +
+                                                            ` ${ index + 1 }` }
+                                                        </List.Header>
+                                                    </Grid.Column>
+                                                    <Grid.Column width={ 5 } className="last-column">
+                                                        <List.Content floated="right">
+                                                            <Icon
+                                                                id={ device.credential.credentialId }
+                                                                link={ true }
+                                                                className="list-icon"
+                                                                size="large"
+                                                                color="grey"
+                                                                name="pencil alternate"
+                                                                onClick={ () => {
+                                                                    showEdit(device.credential.credentialId);
+                                                                } }
+                                                            />
+                                                            <Popup
+                                                                content={ t(
+                                                                    "myAccount:components.mfa" + ".fido.form.remove"
+                                                                ) }
+                                                                inverted
+                                                                trigger={
+                                                                    (<Icon
+                                                                        link={ true }
+                                                                        name="trash alternate outline"
+                                                                        color="red"
+                                                                        size="small"
+                                                                        className="list-icon"
+                                                                        onClick={ () => {
+                                                                            setDeleteKey(
+                                                                                device.credential.credentialId);
+                                                                        } }
+                                                                    />)
+                                                                }
+                                                            />
+                                                        </List.Content>
+                                                    </Grid.Column>
+                                                </Grid.Row>
+                                            </Grid>
+                                        </List.Item>
+                                        { deviceList.length !== index + 1 && <Divider className="fido-list-divider" /> }
+                                    </>
+                                )
+                        ) }
+                    </List>
+                ) : (
+                    <>
+                        <p style={ { fontSize: "12px" } }>
+                            <Icon color="grey" floated="left" name="info circle" />
+                            You don&apos;t have any security key/biometric registered yet.
+                        </p>
+                    </>
+                ) }
             </div>
             <>{ deviceErrorModal() }</>
             <>{ deviceRegistrationSuccessModal() }</>

From e4330b4e8b5b34ad3103a624922b74aff471c060 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 3 Feb 2022 13:18:47 +0530
Subject: [PATCH 31/82] Revert "Merge pull request #2811 from
 yathindrakodithuwakku/pre-auth-check"

This reverts commit 145911fdce607239a93a4bcdf68e707e6b2bd04f, reversing
changes made to 245be53981afc9ee451fef7831b18358e5f0d4d7.
---
 apps/console/src/index.jsp                |  6 ++++++
 apps/console/src/public/WEB-INF/web.xml   | 10 ----------
 apps/console/webpack.config.js            |  4 ++--
 apps/myaccount/src/index.jsp              | 10 ++++++++++
 apps/myaccount/src/public/WEB-INF/web.xml | 10 ----------
 apps/myaccount/webpack.config.js          |  4 ++--
 6 files changed, 20 insertions(+), 24 deletions(-)

diff --git a/apps/console/src/index.jsp b/apps/console/src/index.jsp
index 8d03126dd78..4c7a6d53e3e 100644
--- a/apps/console/src/index.jsp
+++ b/apps/console/src/index.jsp
@@ -85,5 +85,11 @@
                 }
             }
         </script>
+    </head>
+    <body>
+        <noscript>
+            You need to enable JavaScript to run this app.
+        </noscript>
+        <div id="root"></div>
     </body>
 </html>
diff --git a/apps/console/src/public/WEB-INF/web.xml b/apps/console/src/public/WEB-INF/web.xml
index 57068fb6613..72f019cf20b 100644
--- a/apps/console/src/public/WEB-INF/web.xml
+++ b/apps/console/src/public/WEB-INF/web.xml
@@ -41,11 +41,6 @@
         <servlet-name>auth</servlet-name>
         <jsp-file>/auth.jsp</jsp-file>
     </servlet>
-
-    <servlet>
-        <servlet-name>home</servlet-name>
-        <jsp-file>/home.jsp</jsp-file>
-    </servlet>
     
     <servlet-mapping>
         <servlet-name>default</servlet-name>
@@ -72,11 +67,6 @@
         <url-pattern>/auth</url-pattern>
     </servlet-mapping>
 
-    <servlet-mapping>
-        <servlet-name>home</servlet-name>
-        <url-pattern>/authenticate</url-pattern>
-    </servlet-mapping>
-
     <servlet-mapping>
         <servlet-name>default</servlet-name>
         <url-pattern>/deployment.config.json</url-pattern>
diff --git a/apps/console/webpack.config.js b/apps/console/webpack.config.js
index 58709933a8b..9afabfb01b8 100755
--- a/apps/console/webpack.config.js
+++ b/apps/console/webpack.config.js
@@ -460,7 +460,7 @@ module.exports = (env) => {
                     authorizationCode: "<%=request.getParameter(\"code\")%>",
                     contentType: "<%@ page language=\"java\" contentType=\"text/html; charset=UTF-8\" " +
                         "pageEncoding=\"UTF-8\" %>",
-                    filename: path.join(distFolder, "home.jsp"),
+                    filename: path.join(distFolder, "index.jsp"),
                     hash: true,
                     // eslint-disable-next-line max-len
                     hotjarSystemVariable: "<% String hotjar_track_code_system_var = System.getenv().getOrDefault(\"hotjar_tracking_code\", null); %>",
@@ -490,7 +490,7 @@ module.exports = (env) => {
                     superTenantConstant: !isDeployedOnExternalServer
                         ? "<%=SUPER_TENANT_DOMAIN_NAME%>"
                         : "",
-                    template: path.join(__dirname, "src", "home.jsp"),
+                    template: path.join(__dirname, "src", "index.jsp"),
                     tenantDelimiter: !isDeployedOnExternalServer
                         ? "\"/\"+'<%=TENANT_AWARE_URL_PREFIX%>'+\"/\""
                         : "",
diff --git a/apps/myaccount/src/index.jsp b/apps/myaccount/src/index.jsp
index d9918b73a17..1a0f80272c7 100644
--- a/apps/myaccount/src/index.jsp
+++ b/apps/myaccount/src/index.jsp
@@ -50,6 +50,10 @@
                     return serverOrigin + path;
                 }
 
+
+        <link href="<%= htmlWebpackPlugin.options.publicPath %>/libs/themes/default/theme.<%= htmlWebpackPlugin.options.themeHash %>.min.css" rel="stylesheet" type="text/css"/>
+        <link rel="shortcut icon" href="<%= htmlWebpackPlugin.options.publicPath %>/libs/themes/default/assets/images/branding/favicon.ico" />
+
                 return serverOrigin;
             }
 
@@ -77,5 +81,11 @@
                 auth.signIn();
             }
         </script>
+    </head>
+    <body>
+        <noscript>
+            You need to enable JavaScript to run this app.
+        </noscript>
+        <div id="root"></div>
     </body>
 </html>
diff --git a/apps/myaccount/src/public/WEB-INF/web.xml b/apps/myaccount/src/public/WEB-INF/web.xml
index 68da3314b3c..80c53b0a53c 100644
--- a/apps/myaccount/src/public/WEB-INF/web.xml
+++ b/apps/myaccount/src/public/WEB-INF/web.xml
@@ -41,11 +41,6 @@
         <servlet-name>auth</servlet-name>
         <jsp-file>/auth.jsp</jsp-file>
     </servlet>
-
-    <servlet>
-        <servlet-name>home</servlet-name>
-        <jsp-file>/home.jsp</jsp-file>
-    </servlet>
     
     <servlet-mapping>
         <servlet-name>default</servlet-name>
@@ -72,11 +67,6 @@
         <url-pattern>/auth</url-pattern>
     </servlet-mapping>
 
-    <servlet-mapping>
-        <servlet-name>home</servlet-name>
-        <url-pattern>/authenticate</url-pattern>
-    </servlet-mapping>
-
     <servlet-mapping>
         <servlet-name>default</servlet-name>
         <url-pattern>/deployment.config.json</url-pattern>
diff --git a/apps/myaccount/webpack.config.js b/apps/myaccount/webpack.config.js
index cd12da819cf..dce7dbb82cd 100644
--- a/apps/myaccount/webpack.config.js
+++ b/apps/myaccount/webpack.config.js
@@ -429,7 +429,7 @@ module.exports = (env) => {
                     authorizationCode: "<%=request.getParameter(\"code\")%>",
                     contentType: "<%@ page language=\"java\" contentType=\"text/html; charset=UTF-8\" " +
                         "pageEncoding=\"UTF-8\" %>",
-                    filename: path.join(distFolder, "home.jsp"),
+                    filename: path.join(distFolder, "index.jsp"),
                     hash: true,
                     importSuperTenantConstant: !isDeployedOnExternalServer
                         ? "<%@ page import=\"static org.wso2.carbon.utils.multitenancy." +
@@ -454,7 +454,7 @@ module.exports = (env) => {
                     superTenantConstant: !isDeployedOnExternalServer
                         ? "<%=SUPER_TENANT_DOMAIN_NAME%>"
                         : "",
-                    template: path.join(__dirname, "src", "home.jsp"),
+                    template: path.join(__dirname, "src", "index.jsp"),
                     tenantDelimiter: !isDeployedOnExternalServer
                         ? "\"/\"+'<%=TENANT_AWARE_URL_PREFIX%>'+\"/\""
                         : "",

From 6addfbcb2acc81ee510810ed4b3e644521d37440 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 3 Feb 2022 15:22:54 +0530
Subject: [PATCH 32/82] Make divider class generic

---
 modules/theme/src/themes/default/elements/divider.overrides | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/theme/src/themes/default/elements/divider.overrides b/modules/theme/src/themes/default/elements/divider.overrides
index cfd89330d6e..5d74a4c7c5d 100644
--- a/modules/theme/src/themes/default/elements/divider.overrides
+++ b/modules/theme/src/themes/default/elements/divider.overrides
@@ -12,7 +12,7 @@
         margin-bottom: @dividerCompactMargin;
     }
 
-    &.fido-list-divider {
+    &.list-divider {
         margin: 0 2rem 0 5rem;
     }
 }

From c3a665b4b1abb6bb1eb1f30cada5cca6ff827b62 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 3 Feb 2022 15:23:03 +0530
Subject: [PATCH 33/82] Limit retries

---
 .../authenticators/fido-authenticator.tsx                   | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index daa6ece6d32..500d9023be2 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -81,6 +81,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
     const [ fidoFlowStartResponse, setFidoFlowStartResponse ] = useState<any>(null);
 
     const tryOlderDevice = useRef(false);
+    const retryAttempt = useRef(0);
 
     const activeForm: string = useSelector((state: AppState) => state.global.activeForm);
     const dispatch = useDispatch();
@@ -196,7 +197,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                 setIsDeviceSuccessModalVisibility(true);
             })
             .catch(() => {
-                if (tryOlderDevice.current) {
+                if (tryOlderDevice.current || retryAttempt.current > 1) {
                     fireFailureNotification();
                 } else {
                     setDeviceErrorModalVisibility(true);
@@ -387,6 +388,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                 secondaryAction={ t("common:cancel") }
                 onSecondaryActionClick={ handleDeviceErrorModalClose }
                 onPrimaryActionClick={ () => {
+                    retryAttempt.current++;
                     talkToDevice();
                 } }
                 open={ isDeviceErrorModalVisible }
@@ -643,7 +645,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                                 </Grid.Row>
                                             </Grid>
                                         </List.Item>
-                                        { deviceList.length !== index + 1 && <Divider className="fido-list-divider" /> }
+                                        { deviceList.length !== index + 1 && <Divider className="list-divider" /> }
                                     </>
                                 )
                         ) }

From ad4c36566514a97387d96abb2ec79be3d35ee0d3 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 7 Feb 2022 19:44:10 +0530
Subject: [PATCH 34/82] Replace fido icon with fingerprint icon

---
 apps/console/src/features/identity-providers/configs/ui.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/console/src/features/identity-providers/configs/ui.ts b/apps/console/src/features/identity-providers/configs/ui.ts
index ed4cb8fc28d..0a0b4086940 100644
--- a/apps/console/src/features/identity-providers/configs/ui.ts
+++ b/apps/console/src/features/identity-providers/configs/ui.ts
@@ -17,7 +17,6 @@
  */
 
 import BasicAuthIcon from "../../../themes/default/assets/images/authenticators/basic-auth.png";
-import FIDOLogo from "../../../themes/default/assets/images/authenticators/fido.png";
 import SMSOTPIcon from "../../../themes/default/assets/images/authenticators/sms-otp.svg";
 import SalesforceLogo from "../../../themes/default/assets/images/connectors/salesforce.png";
 import SCIMLogo from "../../../themes/default/assets/images/connectors/scim.png";
@@ -26,6 +25,7 @@ import CertificateColoredIcon from "../../../themes/default/assets/images/icons/
 import ClockColoredIcon from "../../../themes/default/assets/images/icons/clock-colored-icon.svg";
 import ConnectionIcon from "../../../themes/default/assets/images/icons/connection.svg";
 import { ReactComponent as DocumentIcon } from "../../../themes/default/assets/images/icons/document-icon.svg";
+import FIDOLogo from "../../../themes/default/assets/images/icons/fingerprint.svg";
 import { ReactComponent as GearsIcon } from "../../../themes/default/assets/images/icons/gears-icon.svg";
 import MagnifierColoredIcon from "../../../themes/default/assets/images/icons/magnifier-colored-icon.svg";
 import { ReactComponent as OpenBookIcon } from "../../../themes/default/assets/images/icons/open-book-icon.svg";

From e4ea8f1f978452d245273b14dc1a6cf5cf05e82d Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 7 Feb 2022 19:44:23 +0530
Subject: [PATCH 35/82] Add usernameless tag to fido

---
 .../identity-providers/pages/identity-providers.tsx      | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/apps/console/src/features/identity-providers/pages/identity-providers.tsx b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
index 167ab39eb01..2495f685cf8 100644
--- a/apps/console/src/features/identity-providers/pages/identity-providers.tsx
+++ b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
@@ -36,6 +36,7 @@ import { AuthenticatorExtensionsConfigInterface, identityProviderConfig } from "
 import { AdvancedSearchWithBasicFilters, AppConstants, EventPublisher, UIConstants, history } from "../../core";
 import { getAuthenticatorTags, getAuthenticators, getIdentityProviderList } from "../api";
 import { AuthenticatorGrid, IdentityProviderList, handleGetIDPListCallError } from "../components";
+import { IdentityProviderManagementConstants } from "../constants";
 import { AuthenticatorMeta } from "../meta";
 import {
     AuthenticatorInterface,
@@ -298,6 +299,14 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
                     ];
                 }
 
+                const fido = response?.identityProviders
+                    ?.find(idp => idp?.id
+                        === IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID) as AuthenticatorInterface;
+
+                if (fido) {
+                    fido.tags = [ ...fido.tags, "Usernameless" ];
+                }
+
                 setIdPList(response);
             })
             .catch((error) => {

From cef69317fba1a7a850d6ce023dae6bacdf9fed74 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 7 Feb 2022 19:44:32 +0530
Subject: [PATCH 36/82] Modify fido name and description

---
 .../features/identity-providers/meta/authenticator-meta.ts    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
index 2389cc80214..3ec389d7dcc 100644
--- a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
+++ b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
@@ -46,7 +46,7 @@ export class AuthenticatorMeta {
             "credentials.",
             [ IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID ]: "Get users Identity first to " +
             "control the authentication flow.",
-            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: "Provide secure and fast passwordless " +
+            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: "Provide secure and fast usernameless " +
             "login experience.",
             [ IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID ]: "Two-factor authentication using " +
             "Time-Based One Time passcode.",
@@ -150,7 +150,7 @@ export class AuthenticatorMeta {
         return get({
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR ]: "Username & Password",
             [ IdentityProviderManagementConstants.BASIC_AUTHENTICATOR_ID ]: "Username & Password",
-            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: "FIDO",
+            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: "Security Key/Biometrics",
             [ IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID ]: "TOTP",
             [ IdentityProviderManagementConstants.EMAIL_OTP_AUTHENTICATOR_ID ]: "Email OTP",
             [ IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID ]: "Identifier First",

From 3163a87b210c47e9c5d263c56c989079e66b6889 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 7 Feb 2022 19:45:30 +0530
Subject: [PATCH 37/82] Update fido description

---
 .../src/features/identity-providers/meta/authenticator-meta.ts  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
index 3ec389d7dcc..2c07e35c969 100644
--- a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
+++ b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
@@ -47,7 +47,7 @@ export class AuthenticatorMeta {
             [ IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID ]: "Get users Identity first to " +
             "control the authentication flow.",
             [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: "Provide secure and fast usernameless " +
-            "login experience.",
+            "login experience using FIDO2.",
             [ IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID ]: "Two-factor authentication using " +
             "Time-Based One Time passcode.",
             [ IdentityProviderManagementConstants.GOOGLE_OIDC_AUTHENTICATOR_ID ]: "Login users with " +

From f3ad123a862b4663ab78ed631b69dd633c465d7b Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 7 Feb 2022 20:25:37 +0530
Subject: [PATCH 38/82] Implement a retry mechanism for Safari

---
 .../src/main/webapp/fido2-auth.jsp            | 39 +++++++++++++++++--
 1 file changed, 36 insertions(+), 3 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index 8651a6a55dd..aa9f9058126 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -73,8 +73,21 @@
                             <img class="img-responsive" src="images/U2F.png" />
                         </div>
                         <div class="ten wide column">
-                            <%=AuthenticationEndpointUtil.i18n(resourceBundle, "touch.your.u2f.device")%>
+                            <p>
+                                <%=AuthenticationEndpointUtil.i18n(resourceBundle, "touch.your.u2f.device")%>
+                            </p>
+                            <div id="safari-instruction" style="display:none">
+                                <p><%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.failed.instruction" )%></p>
+                                <div class="ui divider hidden"></div>
+                                <button class="ui button primary" id="initiateFlow" type="button" onclick="talkToDevice()">
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.failed.retry" )%>
+                                </button>
+                            </div>
                         </div>
+                    </div>
+                    <div>
+
+                    </div>
                 </div>
 
 
@@ -83,7 +96,6 @@
                     <input type="hidden" name="sessionDataKey" value='<%=Encode.forHtmlAttribute(request.getParameter("sessionDataKey"))%>'/>
                     <input type="hidden" name="tokenResponse" id="tokenResponse" value="tmp val"/>
                 </form>
-                <input id="initiateFlow" type="hidden" onclick="talkToDevice()" />
             </div>
         </div>
     </main>
@@ -114,7 +126,28 @@
 
     <script type="text/javascript">
         $(document).ready(function () {
-            $("#initiateFlow").click();
+            let userAgent = navigator.userAgent;
+            let browserName;
+
+            if (userAgent.match(/chrome|chromium|crios/i)) {
+                browserName = "chrome";
+            } else if (userAgent.match(/firefox|fxios/i)) {
+                browserName = "firefox";
+            } else if (userAgent.match(/safari/i)) {
+                browserName = "safari";
+            } else if (userAgent.match(/opr\//i)) {
+                browserName = "opera";
+            } else if (userAgent.match(/edg/i)) {
+                browserName = "edge";
+            } else {
+                browserName = "No browser detection";
+            }
+
+            if(browserName === "safari"){
+                $('#safari-instruction').show();
+            } else {
+                $("#initiateFlow").click();
+            }
         });
 
         function responseToObject(response) {

From 0a9da00a458068c9dc771bd2f8adcf0790d44d15 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 7 Feb 2022 20:25:47 +0530
Subject: [PATCH 39/82] Localize text

---
 .../authentication/endpoint/i18n/Resources.properties          | 3 +++
 .../authentication/endpoint/i18n/Resources_fr_FR.properties    | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index b348a22e581..47fae7aa9ca 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -231,3 +231,6 @@ authentication.attempt.failed=Authentication attempt failed.
 authorization.failed=Authorization Failed.
 provided.username.already.exists=Authentication error! Provided username already exists.
 error.user.existence=Error while checking the user details.
+
+fido.failed.retry=Retry
+fido.failed.instruction=If you don't receive any instruction from your browser, click on retry.
diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
index 44d5db6ae5d..c586982429a 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
@@ -226,3 +226,6 @@ authentication.attempt.failed=La tentative d'authentification a échoué.
 authorization.failed=L'autorisation à échouée.
 provided.username.already.exists=Erreur d'authentification ! Le nom d'utilisateur fourni existe d�j�.
 error.user.existence=Erreur lors de la v�rification des d�tails de l'utilisateur.
+
+fido.failed.retry=Retenter
+fido.failed.instruction=Si vous ne recevez aucune instruction de votre navigateur, cliquez sur réessayer.

From f62679a17eb0bfab5b45bbf8adf9951c2dc2ce56 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 8 Feb 2022 17:24:49 +0530
Subject: [PATCH 40/82] Null check navigator

---
 .../src/main/webapp/fido2-auth.jsp            | 42 ++++++++++---------
 1 file changed, 22 insertions(+), 20 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index aa9f9058126..fefda79e315 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -126,27 +126,29 @@
 
     <script type="text/javascript">
         $(document).ready(function () {
-            let userAgent = navigator.userAgent;
-            let browserName;
-
-            if (userAgent.match(/chrome|chromium|crios/i)) {
-                browserName = "chrome";
-            } else if (userAgent.match(/firefox|fxios/i)) {
-                browserName = "firefox";
-            } else if (userAgent.match(/safari/i)) {
-                browserName = "safari";
-            } else if (userAgent.match(/opr\//i)) {
-                browserName = "opera";
-            } else if (userAgent.match(/edg/i)) {
-                browserName = "edge";
-            } else {
-                browserName = "No browser detection";
-            }
+            if(navigator ){
+                let userAgent = navigator.userAgent;
+                let browserName;
+
+                if (userAgent.match(/chrome|chromium|crios/i)) {
+                    browserName = "chrome";
+                } else if (userAgent.match(/firefox|fxios/i)) {
+                    browserName = "firefox";
+                } else if (userAgent.match(/safari/i)) {
+                    browserName = "safari";
+                } else if (userAgent.match(/opr\//i)) {
+                    browserName = "opera";
+                } else if (userAgent.match(/edg/i)) {
+                    browserName = "edge";
+                } else {
+                    browserName = "No browser detection";
+                }
 
-            if(browserName === "safari"){
-                $('#safari-instruction').show();
-            } else {
-                $("#initiateFlow").click();
+                if (browserName === "safari") {
+                    $('#safari-instruction').show();
+                } else {
+                    $("#initiateFlow").click();
+                }
             }
         });
 

From 8f67208fdf9558b8f1535fb3da943174123174f4 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 8 Feb 2022 17:32:19 +0530
Subject: [PATCH 41/82] Replace biometric with biometrics

---
 .../authenticators/fido-authenticator.tsx     |  2 +-
 .../translations/en-US/portals/myaccount.ts   | 32 +++++++++----------
 2 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index 500d9023be2..278d9dff4a7 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -654,7 +654,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                     <>
                         <p style={ { fontSize: "12px" } }>
                             <Icon color="grey" floated="left" name="info circle" />
-                            You don&apos;t have any security key/biometric registered yet.
+                            You don&apos;t have any security key/biometrics registered yet.
                         </p>
                     </>
                 ) }
diff --git a/modules/i18n/src/translations/en-US/portals/myaccount.ts b/modules/i18n/src/translations/en-US/portals/myaccount.ts
index cbb71666645..b81b037b050 100644
--- a/modules/i18n/src/translations/en-US/portals/myaccount.ts
+++ b/modules/i18n/src/translations/en-US/portals/myaccount.ts
@@ -654,53 +654,53 @@ export const myAccount: MyAccountNS = {
                     "your device to sign in to your account.",
                 form: {
                     label: "Security Key/Biometric",
-                    placeholder: "Enter a name for the security key/biometric",
-                    remove: "Remove the security key/biometric",
-                    required: "Please enter a name for your security key/biometric"
+                    placeholder: "Enter a name for the security key/biometrics",
+                    remove: "Remove the security key/biometrics",
+                    required: "Please enter a name for your security key/biometrics"
                 },
                 heading: "Security Key/Biometrics",
                 modals: {
                     deleteConfirmation: {
                         assertionHint: "Please confirm your action.",
-                        content: "This action is irreversible and will permanently delete the security key/biometric.",
-                        description: "If you delete this security key/biometric, you may not be " +
+                        content: "This action is irreversible and will permanently delete the security key/biometrics.",
+                        description: "If you delete this security key/biometrics, you may not be " +
                             "able to sign in to your account again. Please proceed with caution.",
                         heading: "Are you sure?"
                     },
                     deviceRegistrationErrorModal: {
-                        description: "The security key/biometric registration was interrupted. "
+                        description: "The security key/biometrics registration was interrupted. "
                             + "If this was not intentional you "
                             + "may retry the flow.",
                         heading: "Security Key/Biometric Registration Failed",
-                        tryWithOlderDevice: "You may also try again with an older security key/biometric."
+                        tryWithOlderDevice: "You may also try again with an older security key/biometrics."
                     }
                 },
                 notifications: {
                     removeDevice: {
                         error: {
                             description: "{{description}}",
-                            message: "Error occurred while removing the security key/biometric"
+                            message: "Error occurred while removing the security key/biometrics"
                         },
                         genericError: {
-                            description: "Error occurred while removing the security key/biometric",
+                            description: "Error occurred while removing the security key/biometrics",
                             message: "Something went wrong"
                         },
                         success: {
-                            description: "The security key/biometric was successfully removed from the list",
+                            description: "The security key/biometrics was successfully removed from the list",
                             message: "Your Security Key/Biometric Removed Successfully"
                         }
                     },
                     startFidoFlow: {
                         error: {
                             description: "{{description}}",
-                            message: "Error occurred while retrieving the security key/biometric"
+                            message: "Error occurred while retrieving the security key/biometrics"
                         },
                         genericError: {
-                            description: "Error occurred while retrieving the security key/biometric",
+                            description: "Error occurred while retrieving the security key/biometrics",
                             message: "Something went wrong"
                         },
                         success: {
-                            description: "The security key/biometric was successfully registered and now you " +
+                            description: "The security key/biometrics was successfully registered and now you " +
                                 "can use it for authentication.",
                             message: "Your Security Key/Biometric Registered Successfully"
                         }
@@ -708,14 +708,14 @@ export const myAccount: MyAccountNS = {
                     updateDeviceName: {
                         error: {
                             description: "{{description}}",
-                            message: "Error occurred while updating the security key/biometric name"
+                            message: "Error occurred while updating the security key/biometrics name"
                         },
                         genericError: {
-                            description: "Error occurred while updating the security key/biometric name",
+                            description: "Error occurred while updating the security key/biometrics name",
                             message: "Something went wrong"
                         },
                         success: {
-                            description: "The name of your security key/biometric was successfully updated",
+                            description: "The name of your security key/biometrics was successfully updated",
                             message: "Security Key/Biometric name updated successfully"
                         }
                     }

From 6685946fd291ac97c155b269cbc050b455f935e2 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 9 Feb 2022 23:21:55 +0530
Subject: [PATCH 42/82] Change fido logo to fingerprint

---
 apps/console/src/features/applications/configs/ui.ts | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/apps/console/src/features/applications/configs/ui.ts b/apps/console/src/features/applications/configs/ui.ts
index 70b5366f25a..11201fc7d27 100644
--- a/apps/console/src/features/applications/configs/ui.ts
+++ b/apps/console/src/features/applications/configs/ui.ts
@@ -19,7 +19,6 @@
 import { FunctionComponent, SVGProps } from "react";
 import BasicAuthIcon from "../../../themes/default/assets/images/authenticators/basic-auth.png";
 import { ReactComponent as EmailOTPIcon } from "../../../themes/default/assets/images/authenticators/email-otp.svg";
-import FIDOLogo from "../../../themes/default/assets/images/authenticators/fido.png";
 import { ReactComponent as SMSOTPIcon } from "../../../themes/default/assets/images/authenticators/sms-otp.svg";
 import TOTPIcon from "../../../themes/default/assets/images/authenticators/totp.png";
 import { ReactComponent as AuthorizeIcon } from "../../../themes/default/assets/images/icons/authorize.svg";
@@ -32,6 +31,7 @@ import { ReactComponent as CogWheelIcon } from "../../../themes/default/assets/i
 import { ReactComponent as CubeStack } from "../../../themes/default/assets/images/icons/cube-stack-icon.svg";
 import { ReactComponent as DocumentIcon } from "../../../themes/default/assets/images/icons/document-icon.svg";
 import { ReactComponent as DoneButtonIcon } from "../../../themes/default/assets/images/icons/done-button.svg";
+import FIDOLogo from "../../../themes/default/assets/images/icons/fingerprint.svg";
 import { ReactComponent as GearsIcon } from "../../../themes/default/assets/images/icons/gears-icon.svg";
 import {
     ReactComponent as IDPCertificateIcon
@@ -311,7 +311,7 @@ export const getGeneralIcons = (): {
 export const getSignInMethodIllustrations = (): {
     basicAuth: FunctionComponent<SVGProps<SVGSVGElement>>;
 } => {
-    
+
     return {
         basicAuth: BasicAuthIllustration
     };
@@ -322,7 +322,7 @@ export const getSignInFlowIcons = (): {
     startButton: FunctionComponent<SVGProps<SVGSVGElement>>;
     doneButton: FunctionComponent<SVGProps<SVGSVGElement>>;
 } => {
-    
+
     return {
         addButton: AddCircleOutlineIcon,
         doneButton: DoneButtonIcon,

From eb85c9222125cb147dd145f1a4b9886630990105 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 9 Feb 2022 23:22:21 +0530
Subject: [PATCH 43/82] Add info message to usernameless flow

---
 .../sign-in-method-customization.tsx              | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
index ada3bfc41db..ff4476ff3a2 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
@@ -38,7 +38,7 @@ import { ScriptBasedFlow } from "./script-based-flow";
 import { StepBasedFlow } from "./step-based-flow";
 import DefaultFlowConfigurationSequenceTemplate from "./templates/default-sequence.json";
 import { AppState, ConfigReducerStateInterface, EventPublisher, FeatureConfigInterface } from "../../../../core";
-import { GenericAuthenticatorInterface } from "../../../../identity-providers";
+import { GenericAuthenticatorInterface, IdentityProviderManagementConstants } from "../../../../identity-providers";
 import { getRequestPathAuthenticators, updateAuthenticationSequence } from "../../../api";
 import {
     AdaptiveAuthTemplateInterface,
@@ -592,6 +592,19 @@ export const SignInMethodCustomization: FunctionComponent<SignInMethodCustomizat
                 }
             </div>
             <Divider hidden />
+            {
+                authenticationSequence.steps[ 0 ].options.find(authenticator =>
+                    authenticator.authenticator === IdentityProviderManagementConstants.FIDO_AUTHENTICATOR)
+                && (
+                    <Message info>
+                        {
+                            t("console:develop.features.applications.edit.sections" +
+                                ".signOnMethod.sections.landing.flowBuilder." +
+                                "types.usernameless.info")
+                        }
+                    </Message>
+                )
+            }
             <StepBasedFlow
                 refreshAuthenticators={ refreshAuthenticators }
                 authenticators={ authenticators }

From f5416185ce75af339a7d419b66e4f0266d5cf943 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 9 Feb 2022 23:22:33 +0530
Subject: [PATCH 44/82] Localize info message texts

---
 modules/i18n/src/models/namespaces/console-ns.ts       | 1 +
 modules/i18n/src/translations/en-US/portals/console.ts | 5 ++++-
 modules/i18n/src/translations/fr-FR/portals/console.ts | 6 +++++-
 modules/i18n/src/translations/si-LK/portals/console.ts | 7 ++++++-
 4 files changed, 16 insertions(+), 3 deletions(-)

diff --git a/modules/i18n/src/models/namespaces/console-ns.ts b/modules/i18n/src/models/namespaces/console-ns.ts
index efcf60af9f2..995317ad20b 100644
--- a/modules/i18n/src/models/namespaces/console-ns.ts
+++ b/modules/i18n/src/models/namespaces/console-ns.ts
@@ -672,6 +672,7 @@ export interface ConsoleNS {
                                             usernameless: {
                                                 description: string;
                                                 heading: string;
+                                                info: string;
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/en-US/portals/console.ts b/modules/i18n/src/translations/en-US/portals/console.ts
index 14252db1ca8..ff09effa8a6 100644
--- a/modules/i18n/src/translations/en-US/portals/console.ts
+++ b/modules/i18n/src/translations/en-US/portals/console.ts
@@ -1116,7 +1116,10 @@ export const console: ConsoleNS = {
                                             usernameless: {
                                                 description: "Enable users to log in using a FIDO2 security key " +
                                                     "or biometrics.",
-                                                heading: "Add usernameless login"
+                                                heading: "Add usernameless login",
+                                                info: "To sign in with usernameless authentication, your users " +
+                                                    "should have their FIDO2 security keys or biometrics " +
+                                                    "registered in their accounts."
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/fr-FR/portals/console.ts b/modules/i18n/src/translations/fr-FR/portals/console.ts
index 0c65ec6cf83..6affacba38b 100644
--- a/modules/i18n/src/translations/fr-FR/portals/console.ts
+++ b/modules/i18n/src/translations/fr-FR/portals/console.ts
@@ -1145,7 +1145,11 @@ export const console: ConsoleNS = {
                                                 description: "Permettre aux utilisateurs de se connecter à " +
                                                     "l'aidAjouter une connexion sans nom d'utilisateuré " +
                                                     "FIDO2 ou de la biométrie.",
-                                                heading: "Add usernameless login"
+                                                heading: "Add usernameless login",
+                                                info: "Pour vous connecter avec une authentification sans nom " +
+                                                    "d'utilisateur, vos utilisateurs doivent avoir leurs clés de " +
+                                                    "sécurité FIDO2 ou leurs données biométriques enregistrées " +
+                                                    "dans leurs comptes."
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/si-LK/portals/console.ts b/modules/i18n/src/translations/si-LK/portals/console.ts
index de0a3d6e4e4..37e738f59f2 100644
--- a/modules/i18n/src/translations/si-LK/portals/console.ts
+++ b/modules/i18n/src/translations/si-LK/portals/console.ts
@@ -1122,7 +1122,12 @@ export const console: ConsoleNS = {
                                             usernameless: {
                                                 description: "පරිශීලකයින්ට ඔවුන්ගේ FIDO2 ආරක්ෂක යතුරක් හෝ " +
                                                     "ජෛවමිතික භාවිතයෙන් පුරනය වීමට සබල කරන්න.",
-                                                heading: "පරිශීලක නාම රහිත පිවිසුම එක් කරන්න"
+                                                heading: "පරිශීලක නාම රහිත පිවිසුම එක් කරන්න",
+                                                info: "පරිශීලක නාම රහිත සත්‍යාපනය සමඟින් පුරනය වීමට, " +
+                                                    "ඔබේ පරිශීලකයන් ඔවුන්ගේ " +
+                                                    "FIDO2 ආරක්ෂක යතුරු හෝ ජෛවමිතික ඔවුන්ගේ ගිණුම්වල " +
+                                                    "ලියාපදිංචි කර තිබිය යුතුය."
+
                                             }
                                         }
                                     }

From 268b8b6763ef2d501a9ebd7bf8790d0685a2d828 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Wed, 9 Feb 2022 23:30:40 +0530
Subject: [PATCH 45/82] Update safari specific texts

---
 .../authentication/endpoint/i18n/Resources.properties       | 6 +++---
 .../authentication/endpoint/i18n/Resources_fr_FR.properties | 4 ++--
 apps/authentication-portal/src/main/webapp/fido2-auth.jsp   | 4 +++-
 3 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index 47fae7aa9ca..760112499d9 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -83,7 +83,7 @@ submit=Submit
 inc=Inc
 all.rights.reserved=All rights reserved
 verification=Authenticate using your Security Key/Biometrics
-touch.your.u2f.device=Follow the instructions given by your browser to authenticate yourself using a FIDO2 security key or biometrics in your device.
+touch.your.u2f.device=Follow the instructions given by your browser to authenticate yourself using a security key or biometrics in your device.
 authentication.error=Authentication Error!
 something.went.wrong.during.authentication=Something went wrong during the authentication process. Please try signing in again.
 misconfiguration.error=Misconfiguration Error!
@@ -232,5 +232,5 @@ authorization.failed=Authorization Failed.
 provided.username.already.exists=Authentication error! Provided username already exists.
 error.user.existence=Error while checking the user details.
 
-fido.failed.retry=Retry
-fido.failed.instruction=If you don't receive any instruction from your browser, click on retry.
+fido.failed.retry=Proceed
+fido.failed.instruction=Click on proceed and follow the instructions given by your browser to authenticate yourself using a security key or biometrics in your device.
diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
index c586982429a..5cfcf08b273 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
@@ -227,5 +227,5 @@ authorization.failed=L'autorisation à échouée.
 provided.username.already.exists=Erreur d'authentification ! Le nom d'utilisateur fourni existe d�j�.
 error.user.existence=Erreur lors de la v�rification des d�tails de l'utilisateur.
 
-fido.failed.retry=Retenter
-fido.failed.instruction=Si vous ne recevez aucune instruction de votre navigateur, cliquez sur réessayer.
+fido.failed.retry=Procéder
+fido.failed.instruction=Cliquez sur continuer et suivez les instructions données par votre navigateur pour vous authentifier à l'aide d'une clé de sécurité ou de données biométriques dans votre appareil.
diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index fefda79e315..2724d72822e 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -73,7 +73,7 @@
                             <img class="img-responsive" src="images/U2F.png" />
                         </div>
                         <div class="ten wide column">
-                            <p>
+                            <p id="general-browser-instruction">
                                 <%=AuthenticationEndpointUtil.i18n(resourceBundle, "touch.your.u2f.device")%>
                             </p>
                             <div id="safari-instruction" style="display:none">
@@ -146,7 +146,9 @@
 
                 if (browserName === "safari") {
                     $('#safari-instruction').show();
+                    $('#general-browser-instruction').show();
                 } else {
+                    $('#general-browser-instruction').hide();
                     $("#initiateFlow").click();
                 }
             }

From 28c82d00f87fa999319d2899c15dcdef12db8530 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 10 Feb 2022 16:16:32 +0530
Subject: [PATCH 46/82] Add doc link

---
 .../sign-in-method-customization.tsx           | 18 +++++++++++++++---
 .../src/translations/en-US/portals/console.ts  |  7 ++++---
 .../src/translations/fr-FR/portals/console.ts  |  9 +++++----
 .../src/translations/si-LK/portals/console.ts  | 10 +++++-----
 4 files changed, 29 insertions(+), 15 deletions(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
index ff4476ff3a2..bc21128d2c0 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
@@ -597,11 +597,23 @@ export const SignInMethodCustomization: FunctionComponent<SignInMethodCustomizat
                     authenticator.authenticator === IdentityProviderManagementConstants.FIDO_AUTHENTICATOR)
                 && (
                     <Message info>
-                        {
-                            t("console:develop.features.applications.edit.sections" +
+                        <Trans
+                            i18nKey={
+                                t("console:develop.features.applications.edit.sections" +
                                 ".signOnMethod.sections.landing.flowBuilder." +
                                 "types.usernameless.info")
-                        }
+                            }>
+                            To sign in with passwordless authentication, your users
+                            should have their FIDO2 security keys or biometrics
+                            registered via My Account. Learn more about
+                            this in our { window[ "AppUtils" ].getConfig().docSiteUrl
+                                ? (<a
+                                    href={ window[ "AppUtils" ].getConfig().docSiteUrl }
+                                    target="_blank"
+                                    rel="noopener noreferrer"
+                                    data-testid={ `fido-documentation-${ testId }` }>documentation</a>)
+                                : <span>documentation</span> }.
+                        </Trans>
                     </Message>
                 )
             }
diff --git a/modules/i18n/src/translations/en-US/portals/console.ts b/modules/i18n/src/translations/en-US/portals/console.ts
index ff09effa8a6..a0173bf8242 100644
--- a/modules/i18n/src/translations/en-US/portals/console.ts
+++ b/modules/i18n/src/translations/en-US/portals/console.ts
@@ -1116,10 +1116,11 @@ export const console: ConsoleNS = {
                                             usernameless: {
                                                 description: "Enable users to log in using a FIDO2 security key " +
                                                     "or biometrics.",
-                                                heading: "Add usernameless login",
-                                                info: "To sign in with usernameless authentication, your users " +
+                                                heading: "Add passwordless login",
+                                                info: "To sign in with passwordless authentication, your users " +
                                                     "should have their FIDO2 security keys or biometrics " +
-                                                    "registered in their accounts."
+                                                    "registered via My Account. Learn more about " +
+                                                    "this in our <1>documentation</1>."
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/fr-FR/portals/console.ts b/modules/i18n/src/translations/fr-FR/portals/console.ts
index 6affacba38b..5a2ba0f7719 100644
--- a/modules/i18n/src/translations/fr-FR/portals/console.ts
+++ b/modules/i18n/src/translations/fr-FR/portals/console.ts
@@ -1145,11 +1145,12 @@ export const console: ConsoleNS = {
                                                 description: "Permettre aux utilisateurs de se connecter à " +
                                                     "l'aidAjouter une connexion sans nom d'utilisateuré " +
                                                     "FIDO2 ou de la biométrie.",
-                                                heading: "Add usernameless login",
-                                                info: "Pour vous connecter avec une authentification sans nom " +
-                                                    "d'utilisateur, vos utilisateurs doivent avoir leurs clés de " +
+                                                heading: "Ajouter une connexion sans mot de passe",
+                                                info: "Pour vous connecter avec une authentification sans mot " +
+                                                    "de passe, vos utilisateurs doivent avoir leurs clés de " +
                                                     "sécurité FIDO2 ou leurs données biométriques enregistrées " +
-                                                    "dans leurs comptes."
+                                                    "via Mon compte. En savoir plus à ce sujet " +
+                                                    "dans notre <1>documentation</1>."
                                             }
                                         }
                                     }
diff --git a/modules/i18n/src/translations/si-LK/portals/console.ts b/modules/i18n/src/translations/si-LK/portals/console.ts
index 37e738f59f2..34a907fe9b3 100644
--- a/modules/i18n/src/translations/si-LK/portals/console.ts
+++ b/modules/i18n/src/translations/si-LK/portals/console.ts
@@ -1122,11 +1122,11 @@ export const console: ConsoleNS = {
                                             usernameless: {
                                                 description: "පරිශීලකයින්ට ඔවුන්ගේ FIDO2 ආරක්ෂක යතුරක් හෝ " +
                                                     "ජෛවමිතික භාවිතයෙන් පුරනය වීමට සබල කරන්න.",
-                                                heading: "පරිශීලක නාම රහිත පිවිසුම එක් කරන්න",
-                                                info: "පරිශීලක නාම රහිත සත්‍යාපනය සමඟින් පුරනය වීමට, " +
-                                                    "ඔබේ පරිශීලකයන් ඔවුන්ගේ " +
-                                                    "FIDO2 ආරක්ෂක යතුරු හෝ ජෛවමිතික ඔවුන්ගේ ගිණුම්වල " +
-                                                    "ලියාපදිංචි කර තිබිය යුතුය."
+                                                heading: "මුරපද රහිත සත්‍යාපනය එක් කරන්න",
+                                                info: "මුරපද රහිත සත්‍යාපනය සමඟින් පුරනය වීමට, " +
+                                                    "ඔබේ පරිශීලකයින්ට ඔවුන්ගේ FIDO2 ආරක්ෂක " +
+                                                    "යතුරු හෝ මගේ ගිණුම හරහා ජෛවමිතික ලියාපදිංචි " +
+                                                    "කර තිබිය යුතුය. අපගේ <1>ප්‍රලේඛනය</1> තුළින් මේ ගැන තව දැනගන්න."
 
                                             }
                                         }

From d8ca5a4d3997a7266f4df892e80822920562452e Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 10 Feb 2022 16:16:52 +0530
Subject: [PATCH 47/82] Convert info to warning

---
 .../settings/sign-on-methods/sign-in-method-customization.tsx   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
index bc21128d2c0..bb420963418 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
@@ -596,7 +596,7 @@ export const SignInMethodCustomization: FunctionComponent<SignInMethodCustomizat
                 authenticationSequence.steps[ 0 ].options.find(authenticator =>
                     authenticator.authenticator === IdentityProviderManagementConstants.FIDO_AUTHENTICATOR)
                 && (
-                    <Message info>
+                    <Message warning>
                         <Trans
                             i18nKey={
                                 t("console:develop.features.applications.edit.sections" +

From d223c1c07f9bff4de784bf445014ac6333110fee Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 10 Feb 2022 17:42:42 +0530
Subject: [PATCH 48/82] Rename usernameless to passwordless

---
 .../src/features/identity-providers/meta/authenticator-meta.ts  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
index 2c07e35c969..c1211aa38d7 100644
--- a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
+++ b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
@@ -46,7 +46,7 @@ export class AuthenticatorMeta {
             "credentials.",
             [ IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID ]: "Get users Identity first to " +
             "control the authentication flow.",
-            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: "Provide secure and fast usernameless " +
+            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: "Provide secure and fast passwordless " +
             "login experience using FIDO2.",
             [ IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID ]: "Two-factor authentication using " +
             "Time-Based One Time passcode.",

From ac4a164cdea1bda3a16646b17ccc2fa4782b1d27 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 10 Feb 2022 20:08:12 +0530
Subject: [PATCH 49/82] Handle fido2 failure

---
 .../src/main/webapp/fido2-auth.jsp            | 73 +++++++++++++++----
 1 file changed, 59 insertions(+), 14 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index 2724d72822e..4f1aff62631 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -61,26 +61,61 @@
             <% } %>
 
             <div class="ui segment left aligned">
-                <div class="loader-bar"></div>
+                <div id="loader-bar" class="loader-bar"></div>
 
                 <h3 class="ui header">
-                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "verification")%>
+                    <span id="fido-header">
+                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "verification" )%>
+                    </span>
+                    <span id="fido-header-error" style="display: none;">
+                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.error" )%>
+                    </span>
                 </h3>
                 <div class="ui divider hidden"></div>
                 <div class="ui two column left aligned stackable grid">
-                    <div class="middle aligned row">
+                    <div id="fido-initialize" class="middle aligned row">
                         <div class="six wide column">
                             <img class="img-responsive" src="images/U2F.png" />
                         </div>
                         <div class="ten wide column">
                             <p id="general-browser-instruction">
-                                <%=AuthenticationEndpointUtil.i18n(resourceBundle, "touch.your.u2f.device")%>
+                                <%=AuthenticationEndpointUtil.i18n(resourceBundle, "touch.your.u2f.device" )%>
                             </p>
                             <div id="safari-instruction" style="display:none">
-                                <p><%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.failed.instruction" )%></p>
+                                <p>
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.failed.instruction" )%>
+                                </p>
                                 <div class="ui divider hidden"></div>
                                 <button class="ui button primary" id="initiateFlow" type="button" onclick="talkToDevice()">
-                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.failed.retry" )%>
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.proceed" )%>
+                                </button>
+                            </div>
+                        </div>
+                    </div>
+                    <div id="fido-error-content" style="display: none;" class="middle aligned row">
+                        <div class="sixteen wide column">
+                            <p>
+                                <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.registration.info" )%>
+                            </p>
+                            <p>
+                                <span>
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.one" )%>
+                                </span>
+                                <a href="https://wso2.com/asgardeo/docs/guides/authentication/mfa/">
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.documentation" )%>
+                                </a>
+                                <span>
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.two" )%>
+                                </span>
+                                <a href="mailto:asgareo-help@wso2.com">asgardeo-help@wso2.com</a>.
+                            </p>
+                            <div class="ui divider hidden"></div>
+                            <div class="ui container fluid">
+                                <button class="ui right floated button primary" type="button" onclick="talkToDevice()">
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.retry" )%>
+                                </button>
+                                <button class="ui right floated button link-button" type="button" onclick="cancelFlow()">
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.cancel" )%>
                                 </button>
                             </div>
                         </div>
@@ -90,8 +125,6 @@
                     </div>
                 </div>
 
-
-
                 <form method="POST" action="<%=commonauthURL%>" id="form" onsubmit="return false;">
                     <input type="hidden" name="sessionDataKey" value='<%=Encode.forHtmlAttribute(request.getParameter("sessionDataKey"))%>'/>
                     <input type="hidden" name="tokenResponse" id="tokenResponse" value="tmp val"/>
@@ -146,9 +179,9 @@
 
                 if (browserName === "safari") {
                     $('#safari-instruction').show();
-                    $('#general-browser-instruction').show();
-                } else {
                     $('#general-browser-instruction').hide();
+                } else {
+                    $('#general-browser-instruction').show();
                     $("#initiateFlow").click();
                 }
             }
@@ -211,6 +244,8 @@
             return publicKeyCredentialRequestOptions;
         }
 
+        let fidoError;
+
         function talkToDevice(){
             var authRequest = '<%=Encode.forJavaScriptBlock(authRequest)%>';
             var jsonAuthRequest = JSON.parse(authRequest);
@@ -228,13 +263,23 @@
                 form.submit();
             })
             .catch(function(err) {
-                var form = document.getElementById('form');
-                var reg = document.getElementById('tokenResponse');
-                reg.value = JSON.stringify({errorCode : 400, message : err});
-                form.submit();
+                $("#fido-header-error").show();
+                $("#fido-error-content").show();
+                $("#fido-header").hide();
+                $("#fido-initialize").hide();
+                $("#loader-bar").hide();
+
+                fidoError = err;
             });
         }
 
+        function cancelFlow(){
+            var form = document.getElementById('form');
+            var reg = document.getElementById('tokenResponse');
+            reg.value = JSON.stringify({ errorCode: 400, message: fidoError });
+            form.submit();
+        }
+
     </script>
 </body>
 </html>

From 51c4dce36aeb3376fe09bc508a7bad0f9382e7f8 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 10 Feb 2022 20:08:19 +0530
Subject: [PATCH 50/82] Localize texts

---
 .../authentication/endpoint/i18n/Resources.properties    | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index 760112499d9..4557e7fd617 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -232,5 +232,12 @@ authorization.failed=Authorization Failed.
 provided.username.already.exists=Authentication error! Provided username already exists.
 error.user.existence=Error while checking the user details.
 
-fido.failed.retry=Proceed
 fido.failed.instruction=Click on proceed and follow the instructions given by your browser to authenticate yourself using a security key or biometrics in your device.
+fido.error=Authenticating using your security key/biometrics failed
+fido.registration.info=You should have a registered security key or biometrics to sign in. If not, register your security keys/biometrics in the My Account app.
+fido.learn.more.part.one=Learn more about this in our
+fido.learn.more.documentation=documentation
+fido.learn.more.part.two=or contact us at
+fido.retry=Retry
+fido.proceed=Proceed
+fido.cancel=Cancel

From 9e87d63bb0be61df6e452d9bbeb67a9b3c133464 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 10 Feb 2022 20:09:40 +0530
Subject: [PATCH 51/82] Translate texts to French

---
 .../endpoint/i18n/Resources_fr_FR.properties             | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
index 5cfcf08b273..197eaaf1ad4 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
@@ -227,5 +227,12 @@ authorization.failed=L'autorisation à échouée.
 provided.username.already.exists=Erreur d'authentification ! Le nom d'utilisateur fourni existe d�j�.
 error.user.existence=Erreur lors de la v�rification des d�tails de l'utilisateur.
 
-fido.failed.retry=Procéder
 fido.failed.instruction=Cliquez sur continuer et suivez les instructions données par votre navigateur pour vous authentifier à l'aide d'une clé de sécurité ou de données biométriques dans votre appareil.
+fido.error=Échec de l'authentification à l'aide de votre clé de sécurité/données biométriques
+fido.registration.info=Vous devez avoir une clé de sécurité ou des données biométriques enregistrées pour vous connecter. Si ce n'est pas le cas, enregistrez vos clés de sécurité/données biométriques dans l'application Mon compte.
+fido.learn.more.part.one=Apprenez-en plus à ce sujet dans notre
+fido.learn.more.documentation=documentation
+fido.learn.more.part.two=ou contactez-nous au
+fido.retry=Retenter
+fido.proceed=Procéder
+fido.cancel=Annuler

From a383fcc015a37b0cfe3c5bbbef956763697bf8da Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 11 Feb 2022 10:24:46 +0530
Subject: [PATCH 52/82] Remove email address from on prem

---
 .../authentication/endpoint/i18n/Resources.properties          | 2 +-
 .../authentication/endpoint/i18n/Resources_fr_FR.properties    | 2 +-
 apps/authentication-portal/src/main/webapp/fido2-auth.jsp      | 3 +--
 3 files changed, 3 insertions(+), 4 deletions(-)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index 4557e7fd617..d9afa83d969 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -237,7 +237,7 @@ fido.error=Authenticating using your security key/biometrics failed
 fido.registration.info=You should have a registered security key or biometrics to sign in. If not, register your security keys/biometrics in the My Account app.
 fido.learn.more.part.one=Learn more about this in our
 fido.learn.more.documentation=documentation
-fido.learn.more.part.two=or contact us at
+fido.learn.more.part.two=or contact your administrator
 fido.retry=Retry
 fido.proceed=Proceed
 fido.cancel=Cancel
diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
index 197eaaf1ad4..1de8d079954 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
@@ -232,7 +232,7 @@ fido.error=Échec de l'authentification à l'aide de votre clé de sécurité/do
 fido.registration.info=Vous devez avoir une clé de sécurité ou des données biométriques enregistrées pour vous connecter. Si ce n'est pas le cas, enregistrez vos clés de sécurité/données biométriques dans l'application Mon compte.
 fido.learn.more.part.one=Apprenez-en plus à ce sujet dans notre
 fido.learn.more.documentation=documentation
-fido.learn.more.part.two=ou contactez-nous au
+fido.learn.more.part.two=ou contactez votre administrateur
 fido.retry=Retenter
 fido.proceed=Procéder
 fido.cancel=Annuler
diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index 4f1aff62631..281d6c7351c 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -106,8 +106,7 @@
                                 </a>
                                 <span>
                                     <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.two" )%>
-                                </span>
-                                <a href="mailto:asgareo-help@wso2.com">asgardeo-help@wso2.com</a>.
+                                </span>.
                             </p>
                             <div class="ui divider hidden"></div>
                             <div class="ui container fluid">

From a1d84f078b6e80b5fbd940188f5e8c26338a2db8 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Fri, 11 Feb 2022 11:57:59 +0530
Subject: [PATCH 53/82] Add branding email

---
 .../endpoint/i18n/Resources.properties        |  1 +
 .../endpoint/i18n/Resources_fr_FR.properties  |  1 +
 .../extensions/branding-preferences.jsp       | 21 +++++++++++++++++++
 .../src/main/webapp/fido2-auth.jsp            | 18 +++++++++++++---
 4 files changed, 38 insertions(+), 3 deletions(-)
 create mode 100644 apps/authentication-portal/src/main/webapp/extensions/branding-preferences.jsp

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index d9afa83d969..40e351b7df3 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -238,6 +238,7 @@ fido.registration.info=You should have a registered security key or biometrics t
 fido.learn.more.part.one=Learn more about this in our
 fido.learn.more.documentation=documentation
 fido.learn.more.part.two=or contact your administrator
+fido.learn.more.part.two.email=or contact us at
 fido.retry=Retry
 fido.proceed=Proceed
 fido.cancel=Cancel
diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
index 1de8d079954..004698915ae 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
@@ -233,6 +233,7 @@ fido.registration.info=Vous devez avoir une clé de sécurité ou des données b
 fido.learn.more.part.one=Apprenez-en plus à ce sujet dans notre
 fido.learn.more.documentation=documentation
 fido.learn.more.part.two=ou contactez votre administrateur
+fido.learn.more.part.two.email=ou contactez-nous au
 fido.retry=Retenter
 fido.proceed=Procéder
 fido.cancel=Annuler
diff --git a/apps/authentication-portal/src/main/webapp/extensions/branding-preferences.jsp b/apps/authentication-portal/src/main/webapp/extensions/branding-preferences.jsp
new file mode 100644
index 00000000000..0feac4874f5
--- /dev/null
+++ b/apps/authentication-portal/src/main/webapp/extensions/branding-preferences.jsp
@@ -0,0 +1,21 @@
+<%--
+  ~ Copyright (c) 2022, WSO2 Inc. (http://www.wso2.com) All Rights Reserved.
+  ~
+  ~ WSO2 Inc. licenses this file to you under the Apache License,
+  ~ Version 2.0 (the "License"); you may not use this file except
+  ~ in compliance with the License.
+  ~ You may obtain a copy of the License at
+  ~
+  ~ http://www.apache.org/licenses/LICENSE-2.0
+  ~
+  ~ Unless required by applicable law or agreed to in writing,
+  ~ software distributed under the License is distributed on an
+  ~ "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  ~ KIND, either express or implied.  See the License for the
+  ~ specific language governing permissions and limitations
+  ~ under the License.
+--%>
+
+<%
+    String supportEmail = "";
+%>
diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index 281d6c7351c..7ee8dbf0c58 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -18,6 +18,8 @@
 
 <%@ page import="org.owasp.encoder.Encode" %>
 <%@ page import="java.io.File" %>
+<%@ page import="org.apache.commons.text.StringEscapeUtils" %>
+
 <%@ page contentType="text/html; charset=UTF-8" pageEncoding="UTF-8" %>
 
 <%@include file="includes/localize.jsp" %>
@@ -27,6 +29,9 @@
     String authRequest = request.getParameter("data");
 %>
 
+<!-- Branding Preferences -->
+<jsp:directive.include file="extensions/branding-preferences.jsp" />
+
 <!doctype html>
 <html>
 <head>
@@ -104,9 +109,16 @@
                                 <a href="https://wso2.com/asgardeo/docs/guides/authentication/mfa/">
                                     <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.documentation" )%>
                                 </a>
-                                <span>
-                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.two" )%>
-                                </span>.
+                                <% if (supportEmail == null || supportEmail.isEmpty()) { %>
+                                    <span>
+                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.two" )%>
+                                    </span>
+                                <% } else { %>
+                                    <span>
+                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.two.email" )%>
+                                    </span>
+                                    <a href="mailto:<%=supportEmail%>"><%=StringEscapeUtils.escapeHtml4(supportEmail)%></a>.
+                                <% } %>
                             </p>
                             <div class="ui divider hidden"></div>
                             <div class="ui container fluid">

From ada18ffe6e1a24ad8e23faaadba90927b853a35e Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 11:28:42 +0530
Subject: [PATCH 54/82] Change fido logo

---
 .../src/main/webapp/login.jsp                     | 15 +++++++++------
 1 file changed, 9 insertions(+), 6 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/login.jsp b/apps/authentication-portal/src/main/webapp/login.jsp
index 3f195a9a640..4e78c4f1a52 100644
--- a/apps/authentication-portal/src/main/webapp/login.jsp
+++ b/apps/authentication-portal/src/main/webapp/login.jsp
@@ -88,7 +88,7 @@
             localAuthenticatorNames = Arrays.asList(authList.split(","));
         }
     }
-    
+
     String multiOptionURIParam = "";
     if (localAuthenticatorNames.size() > 1 || idpAuthenticatorMapping != null && idpAuthenticatorMapping.size() > 1) {
         String baseURL;
@@ -100,7 +100,7 @@
             request.getRequestDispatcher("error.do").forward(request, response);
             return;
         }
-        
+
         String queryParamString = request.getQueryString() != null ? ("?" + request.getQueryString()) : "";
         multiOptionURIParam = "&multiOptionURI=" + Encode.forUriComponent(baseURL + queryParamString);
     }
@@ -156,7 +156,7 @@
         // We need to send the tenant domain as a query param only in non tenant qualified URL mode.
         loginContextRequestUrl += "&tenantDomain=" + Encode.forUriComponent(tenantDomain);
     }
-    
+
     String t = request.getParameter("t");
     String ut = request.getParameter("ut");
     if (StringUtils.isNotBlank(t)) {
@@ -372,14 +372,17 @@
                                 if (localAuthenticatorNames.contains(FIDO_AUTHENTICATOR)) {
                             %>
                             <div class="field">
-                                <button class="ui grey basic labeled icon button fluid"
+                                <button class="ui grey labeled icon button fluid"
                                     onclick="handleNoDomain(this,
                                         '<%=Encode.forJavaScriptAttribute(Encode.forUriComponent(idpEntry.getKey()))%>',
                                         'FIDOAuthenticator')"
                                     id="icon-<%=iconId%>"
-                                    title="<%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with")%> FIDO">
+                                    title="<%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with")%> Security key">
                                     <i class="usb icon"></i>
-                                    <img src="libs/themes/default/assets/images/icons/fido-logo.png" height="13px" /> Key
+                                    <img src="libs/themes/default/assets/images/icons/fingerprint.svg" alt="Fido Logo" />
+                                    <span>
+                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.authenticator" )%>
+                                    </span>
                                 </button>
                             </div>
                             <%

From a3c8a79c930c2b380e76a9e25b49e0ee777c5274 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 11:29:24 +0530
Subject: [PATCH 55/82] Add fido localization

---
 .../authentication/endpoint/i18n/Resources.properties            | 1 +
 .../authentication/endpoint/i18n/Resources_fr_FR.properties      | 1 +
 2 files changed, 2 insertions(+)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index 40e351b7df3..eecd497a311 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -242,3 +242,4 @@ fido.learn.more.part.two.email=or contact us at
 fido.retry=Retry
 fido.proceed=Proceed
 fido.cancel=Cancel
+fido.authenticator=Sign in with Security Key
diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
index 004698915ae..8937d256f0d 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources_fr_FR.properties
@@ -237,3 +237,4 @@ fido.learn.more.part.two.email=ou contactez-nous au
 fido.retry=Retenter
 fido.proceed=Procéder
 fido.cancel=Annuler
+fido.authenticator=Connectez-vous avec la clé de sécurité

From fd3c6665e4906ce6b6cf18f98d1044e088dc775d Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 18:20:24 +0530
Subject: [PATCH 56/82] Update fingerprint icon

---
 .../assets/images/icons/fingerprint.svg       | 64 +++++++------------
 1 file changed, 24 insertions(+), 40 deletions(-)

diff --git a/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg b/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg
index 3de792f4198..c641bae8c2e 100644
--- a/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg
+++ b/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg
@@ -1,41 +1,25 @@
-<?xml version="1.0"?>
-
-<!--
- * Copyright (c) 2019, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
- *
- * WSO2 Inc. licenses this file to you under the Apache License,
- * Version 2.0 (the "License"); you may not use this file except
- * in compliance with the License.
- * You may obtain a copy of the License at
- *
- *     http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied. See the License for the
- * specific language governing permissions and limitations
- * under the License.
--->
-
-<svg class="icon" width="14px" height="14px" id="fido-icon" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 511.74256 511">
-    <path d="m132.734375 149.367188c-2.773437 1.265624-4.664063 3.914062-4.953125 6.949218-.292969 3.035156 1.058594 5.996094 3.539062 7.765625 2.484376 1.769531 5.722657 2.078125 8.496094.816407 12.730469-5.824219 26.273438-9.660157 40.167969-11.367188 4.679687-.574219 8.007813-4.835938 7.433594-9.515625-.578125-4.679687-4.835938-8.007813-9.515625-7.433594-15.621094 1.929688-30.855469 6.242188-45.167969 12.785157zm0 0"/>
-    <path d="m72.789062 435.234375c.921876-.003906 1.835938-.152344 2.710938-.445313 4.46875-1.5 6.875-6.335937 5.378906-10.804687-2.921875-8.75-4.386718-17.925781-4.335937-27.152344v-21.757812c0-4.714844-3.820313-8.535157-8.535157-8.535157-4.710937 0-8.53125 3.820313-8.53125 8.535157v22.269531c-.007812 10.902344 1.753907 21.730469 5.214844 32.070312 1.164063 3.476563 4.425782 5.820313 8.097656 5.820313zm0 0"/>
-    <path d="m102.347656 194.867188c4.171875-5.257813 8.824219-10.117188 13.902344-14.507813 3.4375-3.109375 3.765625-8.394531.738281-11.902344-3.027343-3.511719-8.304687-3.960937-11.882812-1.015625-5.875 5.089844-11.261719 10.714844-16.085938 16.808594-10.136719 12.601562-17.863281 26.960938-22.792969 42.359375-4.496093 13.742187-6.773437 28.109375-6.75 42.566406v71.761719c0 4.714844 3.820313 8.535156 8.53125 8.535156 4.714844 0 8.535157-3.820312 8.535157-8.535156v-71.761719c-.03125-12.683593 1.964843-25.285156 5.914062-37.335937 4.296875-13.441406 11.042969-25.976563 19.890625-36.972656zm0 0"/>
-    <path d="m315.476562 264.523438c.394532 0 .785157-.027344 1.175782-.078126 4.664062-.648437 7.921875-4.949218 7.28125-9.617187-8.398438-61.0625-53.453125-109.667969-109.570313-118.210937-4.660156-.707032-9.011719 2.5-9.71875 7.160156s2.5 9.011718 7.160157 9.71875c48.640624 7.398437 87.894531 50.03125 95.230468 103.65625.582032 4.21875 4.183594 7.363281 8.441406 7.371094zm0 0"/>
-    <path d="m255.648438 267.21875c-1.207032-34.476562-29.410157-61.855469-63.90625-62.042969-3.699219-.023437-7.390626.304688-11.023438.980469-14.917969 2.601562-28.417969 10.4375-38.078125 22.101562-8.703125 10.191407-13.84375 22.945313-14.640625 36.324219-.195312 1.523438-.28125 3.058594-.257812 4.59375v40.191407c0 15.964843 0 35.257812.085937 55.636718-.066406 30.261719 13.492187 58.945313 36.914063 78.105469l8.210937 6.730469c61.4375 50.410156 61.601563 50.503906 62.292969 50.964844 3.8125 2.527343 8.945312 1.566406 11.585937-2.167969 2.691407-3.734375 1.9375-8.929688-1.703125-11.742188-1.707031-1.308593-30.660156-25.070312-61.355468-50.246093l-8.210938-6.742188c-19.582031-16.066406-30.855469-40.125-30.667969-65.457031-.085937-19.867188-.085937-39.132813-.085937-55.082031v-40.191407c-.023438-.953125.027344-1.90625.152344-2.851562.527343-9.976563 4.308593-19.503907 10.769531-27.121094 7.121093-8.597656 17.082031-14.367187 28.085937-16.269531 2.613282-.484375 5.269532-.714844 7.925782-.691406 25.359374.125 46.066406 20.304687 46.847656 45.652343-.027344.429688.003906.859375.085937 1.28125v43.519531c0 17.679688 4.664063 35.046876 13.527344 50.34375 1.449219 2.777344 4.308594 4.535157 7.445313 4.578126 3.132812.042968 6.039062-1.636719 7.566406-4.375 1.527344-2.734376 1.429687-6.089844-.25-8.734376-7.433594-12.894531-11.308594-27.53125-11.222656-42.410156v-42.921875c.003906-.65625-.027344-1.304687-.09375-1.957031zm0 0"/>
-    <path d="m198.980469 426.988281c16.46875 13.484375 31.410156 25.667969 41.886719 34.1875.25.265625.523437.515625.8125.742188l8.535156 6.902343c7.183594 5.863282 7.183594 5.863282 8.804687 6.40625.878907.308594 1.804688.464844 2.738281.460938 3.769532.007812 7.09375-2.460938 8.179688-6.066406 1.089844-3.609375-.316406-7.503906-3.460938-9.582032-.75-.582031-2.644531-2.132812-5.484374-4.445312l-7.734376-6.289062c-.246093-.261719-.507812-.503907-.792968-.726563-10.496094-8.53125-25.761719-20.984375-42.664063-34.789063-19.488281-15.949218-30.769531-39.816406-30.722656-65v-11.304687c-.085937-16.964844-.085937-32.425781-.085937-44.332031v-23.976563c-.011719-6.75 5.214843-12.351562 11.949218-12.800781 3.355469-.191406 6.628906 1.074219 8.984375 3.472656 2.933594 2.785156 4.601563 6.648438 4.617188 10.691406v13.609376c0 10.660156 0 26.171874-.085938 44.203124v.992188c.125 30 13.570313 58.394531 36.695313 77.507812 3.523437 2.925782 6.960937 5.757813 10.144531 8.335938 2.371094 1.921875 5.589844 2.433594 8.4375 1.339844 2.851563-1.09375 4.902344-3.625 5.382813-6.636719.476562-3.015625-.6875-6.058594-3.058594-7.980469-3.132813-2.558594-6.519532-5.34375-10.019532-8.234375-19.222656-15.886719-30.398437-39.484375-30.515624-64.417969v-.992187c.085937-17.917969.085937-33.484375.085937-44.160156v-13.566407c-.03125-8.734374-3.636719-17.074218-9.976563-23.082031-5.796874-5.605469-13.664062-8.546875-21.714843-8.117187-15.765625.96875-28.054688 14.039062-28.042969 29.835937v23.976563c0 11.945312 0 27.417968.085938 44.375v11.261718c-.046876 30.308594 13.546874 59.027344 37.019531 78.199219zm0 0"/>
-    <path d="m60.328125 41.007812c2.085937 4.222657 7.195313 5.960938 11.417969 3.882813 53.835937-26.421875 114.976562-34.050781 173.652344-21.664063 4.609374.988282 9.148437-1.945312 10.140624-6.554687.988282-4.609375-1.945312-9.148437-6.554687-10.136719-62.425781-13.1875-127.472656-5.078125-184.746094 23.039063-2.039062.996093-3.59375 2.761719-4.328125 4.90625s-.582031 4.496093.417969 6.527343zm0 0"/>
-    <path d="m310.851562 49.824219c2.5625 1.746093 5.867188 1.964843 8.636719.574219 2.769531-1.394532 4.566407-4.179688 4.695313-7.273438.125-3.097656-1.4375-6.023438-4.082032-7.636719-11.265624-7.257812-23.085937-13.621093-35.34375-19.027343-2.824218-1.417969-6.195312-1.160157-8.769531.667968-2.570312 1.828125-3.925781 4.925782-3.519531 8.054688.40625 3.132812 2.507812 5.78125 5.460938 6.890625 11.421874 5.046875 22.429687 10.984375 32.921874 17.75zm0 0"/>
-    <path d="m21.195312 107.066406c-2.148437 2.203125-2.945312 5.398438-2.078124 8.351563.863281 2.957031 3.253906 5.21875 6.253906 5.914062 3 .699219 6.140625-.273437 8.222656-2.539062 40.28125-43.035157 96.644531-67.386719 155.589844-67.21875 18.828125-.035157 37.578125 2.472656 55.738281 7.457031 2.9375.816406 6.089844 0 8.261719-2.140625 2.175781-2.136719 3.042968-5.273437 2.28125-8.222656-.765625-2.953125-3.046875-5.273438-5.984375-6.089844-19.644531-5.390625-39.925781-8.105469-60.296875-8.070313-63.640625-.1875-124.496094 26.097657-167.988282 72.558594zm0 0"/>
-    <path d="m133.894531 77.164062c-22.242187 6.414063-43.277343 16.453126-62.25 29.714844-2.496093 1.75-3.871093 4.699219-3.601562 7.734375.265625 3.039063 2.132812 5.703125 4.894531 6.992188 2.765625 1.285156 6.007812 1 8.503906-.75 17.4375-12.1875 36.769532-21.414063 57.214844-27.304688 2.929688-.851562 5.179688-3.199219 5.910156-6.160156.726563-2.960937-.183594-6.085937-2.382812-8.199219-2.199219-2.109375-5.359375-2.886718-8.289063-2.035156zm0 0"/>
-    <path d="m5.902344 217.8125c4.484375 1.449219 9.292968-1.007812 10.746094-5.488281 8.25-25.519531 22.09375-48.875 40.515624-68.367188 3.230469-3.4375 3.0625-8.839843-.371093-12.070312-3.4375-3.230469-8.839844-3.066407-12.070313.371093-20.148437 21.328126-35.285156 46.882813-44.304687 74.800782-.699219 2.15625-.5156252 4.496094.515625 6.515625 1.027344 2.015625 2.816406 3.539062 4.96875 4.238281zm0 0"/>
-    <path d="m383.742188 256.375c.3125 0 .628906-.019531.9375-.050781 4.675781-.515625 8.050781-4.714844 7.554687-9.386719-11.445313-101.886719-97.839844-178.761719-200.363281-178.296875-7.480469.007813-14.949219.425781-22.382813 1.246094-3.070312.28125-5.753906 2.195312-7.015625 5.007812-1.257812 2.816407-.902344 6.089844.933594 8.570313 1.835938 2.476562 4.863281 3.773437 7.925781 3.386718 6.820313-.753906 13.675781-1.136718 20.539063-1.144531 93.800781-.457031 172.875 69.851563 183.390625 163.0625.472656 4.328125 4.128906 7.605469 8.480469 7.605469zm0 0"/>
-    <path d="m349.609375 264.140625h.769531c2.261719-.195313 4.355469-1.285156 5.816406-3.03125 1.457032-1.746094 2.15625-4 1.945313-6.261719-3.394531-36.476562-18.808594-70.792968-43.816406-97.5625-3.222657-3.453125-8.632813-3.640625-12.082031-.417968-3.453126 3.222656-3.640626 8.628906-.417969 12.082031 22.402343 23.988281 36.207031 54.734375 39.25 87.417969.394531 4.414062 4.101562 7.789062 8.535156 7.773437zm0 0"/>
-    <path d="m55.816406 207.570312c24.636719-54.820312 79.867188-89.410156 139.945313-87.644531 3.046875.082031 5.910156-1.46875 7.503906-4.066406 1.597656-2.597656 1.683594-5.851563.230469-8.535156-1.453125-2.679688-4.226563-4.382813-7.273438-4.464844-66.933594-1.925781-128.449218 36.601563-155.929687 97.664063-8.6875 18.890624-13.703125 39.265624-14.78125 60.03125-.082031 2.808593-.167969 5.71875-.167969 8.621093 0 19.078125 0 29.300781.101562 30.386719.277344 4.5 4.023438 7.996094 8.53125 7.960938h.429688c4.652344-.269532 8.242188-4.207032 8.078125-8.867188-.074219-2.261719-.074219-28.074219-.074219-29.480469 0-2.734375.085938-5.464843.152344-7.894531.988281-18.578125 5.484375-36.804688 13.253906-53.710938zm0 0"/>
-    <path d="m231.191406 125.183594c16.265625 4.332031 31.644532 11.480468 45.441406 21.117187 2.507813 1.742188 5.757813 2.015625 8.519532.714844 2.761718-1.304687 4.621094-3.980469 4.878906-7.023437.253906-3.042969-1.136719-5.992188-3.644531-7.734376-15.460938-10.796874-32.695313-18.792968-50.917969-23.628906l-3.160156-.769531c-2.980469-.824219-6.179688.03125-8.351563 2.238281-2.171875 2.203125-2.980469 5.414063-2.109375 8.382813.867188 2.972656 3.28125 5.238281 6.296875 5.925781zm0 0"/>
-    <path d="m289.875 296.097656v-24.578125c.886719-36.464843-18.542969-70.40625-50.4375-88.109375-31.894531-17.699218-70.976562-16.234375-101.453125 3.808594-12.554687 8.183594-23.066406 19.136719-30.722656 32.019531-6.824219 11.390625-11.183594 24.089844-12.800781 37.273438-.566407 4.195312-.851563 8.425781-.851563 12.664062v111.957031c-.058594 30.257813 13.492187 58.9375 36.90625 78.105469l18.671875 15.359375c16.210938 13.328125 31.324219 25.746094 42.792969 35.113282 2.363281 1.925781 5.574219 2.449218 8.425781 1.363281 2.847656-1.082031 4.90625-3.601563 5.390625-6.613281.488281-3.007813-.667969-6.050782-3.027344-7.976563-11.460937-9.386719-26.558593-21.757813-42.753906-35.070313l-18.664063-15.359374c-19.550781-16.046876-30.824218-40.058594-30.675781-65.351563v-111.527344c.039063-14.492187 3.921875-28.710937 11.253907-41.210937 16.28125-27.390625 47.03125-42.777344 78.714843-39.386719 41.71875 5.101563 72.859375 40.875 72.164063 82.898437v25.003907c.007812 4.152343.289062 8.296875.855468 12.40625.628907 4.671875 4.929688 7.945312 9.597657 7.316406 4.671875-.632813 7.945312-4.929687 7.3125-9.601563-.472657-3.480468-.707031-6.992187-.699219-10.503906zm0 0"/>
-    <path d="m278.058594 69.871094c33.191406 14.742187 62.226562 37.457031 84.53125 66.125 1.847656 2.464844 4.886718 3.746094 7.945312 3.339844 3.054688-.402344 5.660156-2.425782 6.804688-5.289063 1.144531-2.863281.65625-6.121094-1.277344-8.523437-24.082031-30.953126-55.449219-55.460938-91.304688-71.339844-.054687 0-.113281 0-.171874 0-.238282-.101563-.519532-.082032-.761719-.167969-.796875-.300781-1.632813-.480469-2.480469-.539063h-.105469c-.597656.054688-1.191406.175782-1.765625.359376-.4375.046874-.871094.136718-1.296875.265624-3.265625 1.238282-5.441406 4.355469-5.472656 7.847657-.027344 3.496093 2.089844 6.652343 5.335937 7.945312zm0 0"/>
-    <path d="m486.140625 340.980469h-9.027344c-4.425781-38.792969-37.257812-68.09375-76.304687-68.09375s-71.878906 29.300781-76.304688 68.09375h-9.027344c-14.140624 0-25.601562 11.464843-25.601562 25.601562v119.464844c0 14.140625 11.460938 25.601563 25.601562 25.601563h170.664063c14.140625 0 25.601563-11.460938 25.601563-25.601563v-119.464844c0-14.136719-11.460938-25.601562-25.601563-25.601562zm-85.332031-51.242188c29.679687.054688 54.824218 21.871094 59.058594 51.242188h-17.246094c-4.035156-19.882813-21.519532-34.175781-41.8125-34.175781-20.289063 0-37.773438 14.292968-41.8125 34.175781h-17.246094c4.238281-29.371094 29.382812-51.1875 59.058594-51.242188zm24.039062 51.242188h-48.078125c3.546875-10.242188 13.199219-17.117188 24.039063-17.117188 10.84375 0 20.492187 6.875 24.039062 17.117188zm69.828125 145.066406c0 4.714844-3.820312 8.535156-8.535156 8.535156h-170.664063c-4.714843 0-8.535156-3.820312-8.535156-8.535156v-119.464844c0-4.710937 3.820313-8.535156 8.535156-8.535156h170.664063c4.714844 0 8.535156 3.824219 8.535156 8.535156zm0 0"/>
-    <path d="m422.714844 383.402344c-14.347656-11.855469-35.535156-10.074219-47.699219 4.015625-12.160156 14.085937-10.835937 35.308593 2.984375 47.773437l-9.328125 17.363282c-2.84375 5.476562-2.636719 12.039062.546875 17.324218 2.878906 4.917969 8.140625 7.949219 13.839844 7.976563h35.5c5.699218-.023438 10.960937-3.054688 13.839844-7.96875 3.195312-5.3125 3.386718-11.910157.503906-17.398438l-9.054688-17.726562c7.261719-6.644531 11.300782-16.101563 11.078125-25.941407-.21875-9.839843-4.679687-19.105468-12.230469-25.417968zm-14.277344 59.605468 9.207031 17.78125-33.902343-.230468 9.285156-17.277344c3.820312-6.929688 2.378906-15.578125-3.480469-20.890625-4.902344-4.292969-6.933594-11-5.234375-17.289063 1.695312-6.289062 6.824219-11.0625 13.21875-12.304687 1.082031-.191406 2.179688-.28125 3.277344-.273437 4-.019532 7.878906 1.386718 10.941406 3.960937 3.882812 3.242187 6.128906 8.042969 6.125 13.105469.039062 4.78125-1.960938 9.351562-5.503906 12.5625-5.9375 5.226562-7.558594 13.824218-3.933594 20.855468zm0 0"/>
+<svg xmlns="http://www.w3.org/2000/svg" width="374.426" height="374.086" viewBox="0 0 374.426 374.086">
+  <g id="Group_7" data-name="Group 7" transform="translate(-7.787 -175)">
+    <g id="Group_6" data-name="Group 6">
+      <path id="Path_1" data-name="Path 1" d="M131.395,145.919a6.245,6.245,0,1,0,5.182,11.364,99.924,99.924,0,0,1,29.39-8.317,6.247,6.247,0,1,0-1.523-12.4A112.734,112.734,0,0,0,131.395,145.919Zm0,0" transform="translate(-26.49 138.096)" fill="#212a32"/>
+      <path id="Path_2" data-name="Path 2" d="M69.217,416.8a6.326,6.326,0,0,0,1.984-.326,6.246,6.246,0,0,0,3.936-7.905A61.661,61.661,0,0,1,71.964,388.7v-15.92a6.243,6.243,0,1,0-12.487,0v16.294a73.752,73.752,0,0,0,3.816,23.465A6.246,6.246,0,0,0,69.217,416.8Zm0,0" transform="translate(-8.173 76.375)" fill="#212a32"/>
+      <path id="Path_3" data-name="Path 3" d="M90.844,186.986a78.677,78.677,0,0,1,10.172-10.615,6.243,6.243,0,0,0-8.154-9.452,91.04,91.04,0,0,0-11.77,12.3,96.287,96.287,0,0,0-16.677,30.993,99.632,99.632,0,0,0-4.939,31.145v52.506a6.243,6.243,0,1,0,12.487,0V241.356a87.021,87.021,0,0,1,4.327-27.318A83.92,83.92,0,0,1,90.844,186.986Zm0,0" transform="translate(-8.173 130.32)" fill="#212a32"/>
+      <path id="Path_4" data-name="Path 4" d="M285.711,230.176a6.657,6.657,0,0,0,.86-.057,6.245,6.245,0,0,0,5.327-7.037c-6.145-44.678-39.11-80.241-80.169-86.491a6.245,6.245,0,0,0-1.872,12.35c35.589,5.413,64.31,36.606,69.677,75.842A6.247,6.247,0,0,0,285.711,230.176Zm0,0" transform="translate(-47.099 138.096)" fill="#212a32"/>
+      <path id="Path_5" data-name="Path 5" d="M221.326,250.57a47.043,47.043,0,0,0-46.758-45.4,42.626,42.626,0,0,0-8.066.717,46.56,46.56,0,0,0-27.861,16.171,45.052,45.052,0,0,0-10.712,26.577,23.6,23.6,0,0,0-.189,3.361v29.407c0,11.681,0,25.8.063,40.708a73.626,73.626,0,0,0,27.009,57.147l6.008,4.924c44.952,36.884,45.072,36.952,45.578,37.289A6.248,6.248,0,0,0,213.63,411.3c-1.249-.957-22.433-18.343-44.892-36.764L162.73,369.6a61.364,61.364,0,0,1-22.439-47.893c-.063-14.536-.063-28.632-.063-40.3V252a13.4,13.4,0,0,1,.111-2.086,33.4,33.4,0,0,1,7.88-19.844,34.26,34.26,0,0,1,20.55-11.9,30.361,30.361,0,0,1,5.8-.506,34.464,34.464,0,0,1,34.277,33.4,3.682,3.682,0,0,0,.063.937v31.842a73.472,73.472,0,0,0,9.9,36.835,6.243,6.243,0,1,0,10.8-6.242,61.422,61.422,0,0,1-8.211-31.03V252A13.3,13.3,0,0,0,221.326,250.57Zm0,0" transform="translate(-26.49 119.674)" fill="#212a32"/>
+      <path id="Path_6" data-name="Path 6" d="M189.024,376.626c12.05,9.866,22.982,18.781,30.647,25.014a5.361,5.361,0,0,0,.594.543l6.245,5.05c5.256,4.29,5.256,4.29,6.442,4.687a5.972,5.972,0,0,0,2,.337,6.243,6.243,0,0,0,3.453-11.449c-.549-.426-1.935-1.561-4.013-3.253l-5.659-4.6a5.118,5.118,0,0,0-.58-.532c-7.68-6.242-18.849-15.354-31.216-25.454a61.306,61.306,0,0,1-22.479-47.559v-8.271c-.063-12.413-.063-23.725-.063-32.436V261.159a9.368,9.368,0,0,1,8.743-9.366,8.531,8.531,0,0,1,6.574,2.541,10.846,10.846,0,0,1,3.378,7.823v9.958c0,7.8,0,19.149-.063,32.342v.726a73.975,73.975,0,0,0,26.849,56.71c2.578,2.141,5.093,4.213,7.422,6.1a6.252,6.252,0,0,0,7.874-9.715c-2.292-1.872-4.77-3.91-7.331-6.025a61.52,61.52,0,0,1-22.327-47.133v-.726c.063-13.11.063-24.5.063-32.311v-9.926a23.382,23.382,0,0,0-7.3-16.888,21.229,21.229,0,0,0-15.888-5.939,21.856,21.856,0,0,0-20.518,21.83V278.7c0,8.74,0,20.061.063,32.468v8.24A73.726,73.726,0,0,0,189.024,376.626Zm0,0" transform="translate(-35.649 110.517)" fill="#212a32"/>
+      <path id="Path_7" data-name="Path 7" d="M60.093,30.1a6.244,6.244,0,0,0,8.354,2.841A196.344,196.344,0,0,1,195.5,17.094a6.246,6.246,0,1,0,2.624-12.213A208.8,208.8,0,0,0,62.954,21.738,6.243,6.243,0,0,0,60.093,30.1Zm0,0" transform="translate(-8.166 174.628)" fill="#212a32"/>
+      <path id="Path_8" data-name="Path 8" d="M300.533,40.628A6.244,6.244,0,1,0,307.3,30.139a187.354,187.354,0,0,0-25.86-13.922,6.243,6.243,0,1,0-5,11.424A174.867,174.867,0,0,1,300.533,40.628Zm0,0" transform="translate(-65.306 170.555)" fill="#212a32"/>
+      <path id="Path_9" data-name="Path 9" d="M20.545,87.6a6.244,6.244,0,1,0,9.072,8.58A155.326,155.326,0,0,1,143.457,46.995a153.006,153.006,0,0,1,40.782,5.456,6.246,6.246,0,0,0,3.335-12.038,165.633,165.633,0,0,0-44.117-5.9A167.688,167.688,0,0,0,20.545,87.6Zm0,0" transform="translate(2.749 165.469)" fill="#212a32"/>
+      <path id="Path_10" data-name="Path 10" d="M116.216,77.071A153.968,153.968,0,0,0,70.669,98.812a6.244,6.244,0,1,0,7.168,10.226A141.422,141.422,0,0,1,119.7,89.061a6.246,6.246,0,1,0-3.484-12Zm0,0" transform="translate(-10.463 154.116)" fill="#212a32"/>
+      <path id="Path_11" data-name="Path 11" d="M4.319,194.134a6.246,6.246,0,0,0,7.863-4.016A131.9,131.9,0,0,1,41.825,140.1a6.248,6.248,0,0,0-9.1-8.56A144.3,144.3,0,0,0,.306,186.266a6.244,6.244,0,0,0,4.013,7.868Zm0,0" transform="translate(7.786 139.961)" fill="#212a32"/>
+      <path id="Path_12" data-name="Path 12" d="M324.17,206a6.85,6.85,0,0,0,.686-.037,6.247,6.247,0,0,0,5.528-6.868A146.849,146.849,0,0,0,183.783,68.64a150.711,150.711,0,0,0-16.377.912,6.244,6.244,0,1,0,1.349,12.413,138.2,138.2,0,0,1,15.028-.837A134.376,134.376,0,0,1,317.965,200.435,6.243,6.243,0,0,0,324.17,206Zm0,0" transform="translate(-35.61 156.31)" fill="#212a32"/>
+      <path id="Path_13" data-name="Path 13" d="M336.17,234.739h.563a6.241,6.241,0,0,0,5.679-6.8,120.994,120.994,0,0,0-32.059-71.384,6.255,6.255,0,1,0-9.146,8.534,108.437,108.437,0,0,1,28.718,63.961A6.245,6.245,0,0,0,336.17,234.739Zm0,0" transform="translate(-72.585 133.253)" fill="#212a32"/>
+      <path id="Path_14" data-name="Path 14" d="M47.64,179.455a108.757,108.757,0,0,1,102.394-64.127,6.246,6.246,0,0,0,.337-12.487A121.281,121.281,0,0,0,36.282,174.3a120.025,120.025,0,0,0-10.815,43.923c-.06,2.055-.123,4.184-.123,6.308,0,13.959,0,21.439.074,22.233a6.205,6.205,0,0,0,6.242,5.825h.314a6.278,6.278,0,0,0,5.911-6.488c-.054-1.655-.054-20.541-.054-21.57,0-2,.063-4,.111-5.776A107.831,107.831,0,0,1,47.64,179.455Zm0,0" transform="translate(0.986 147.146)" fill="#212a32"/>
+      <path id="Path_15" data-name="Path 15" d="M228.592,120.452A105.464,105.464,0,0,1,261.84,135.9a6.255,6.255,0,1,0,7.137-10.275,117.878,117.878,0,0,0-37.255-17.289l-2.312-.563a6.244,6.244,0,1,0-3.047,12.107Zm0,0" transform="translate(-51.649 145.869)" fill="#212a32"/>
+      <path id="Path_16" data-name="Path 16" d="M237.211,262.555V244.572A71.87,71.87,0,0,0,103.6,206.319a72.669,72.669,0,0,0-9.989,36.538v81.916a73.669,73.669,0,0,0,27,57.147l13.662,11.238c11.861,9.752,22.919,18.838,31.31,25.691a6.244,6.244,0,0,0,7.894-9.677c-8.386-6.868-19.432-15.92-31.282-25.66l-13.656-11.238A61.4,61.4,0,0,1,106.1,324.458v-81.6a59.326,59.326,0,1,1,118.628,1.683v18.295a67.4,67.4,0,0,0,.626,9.077,6.243,6.243,0,1,0,12.373-1.672A56.2,56.2,0,0,1,237.211,262.555Zm0,0" transform="translate(-17.332 128.819)" fill="#212a32"/>
+      <path id="Path_17" data-name="Path 17" d="M276.621,65.472a161.347,161.347,0,0,1,61.849,48.382,6.244,6.244,0,1,0,9.858-7.663,173.818,173.818,0,0,0-66.8-52.2H281.4c-.174-.074-.38-.06-.557-.123a6.385,6.385,0,0,0-1.815-.394h-.077a6.062,6.062,0,0,0-1.292.263,5.178,5.178,0,0,0-.949.194,6.2,6.2,0,0,0-.1,11.555Zm0,0" transform="translate(-65.388 160.379)" fill="#212a32"/>
+    </g>
+    <path id="Path_18" data-name="Path 18" d="M433.477,322.709h-6.605a56.192,56.192,0,0,0-111.66,0h-6.605a18.733,18.733,0,0,0-18.732,18.732V428.85a18.731,18.731,0,0,0,18.732,18.732h124.87a18.731,18.731,0,0,0,18.732-18.732V341.441A18.733,18.733,0,0,0,433.477,322.709Zm-62.435-37.492a43.736,43.736,0,0,1,43.211,37.492H401.635a31.217,31.217,0,0,0-61.186,0H327.83A43.741,43.741,0,0,1,371.042,285.217Zm17.589,37.492H353.453a18.613,18.613,0,0,1,35.177,0ZM439.722,428.85a6.244,6.244,0,0,1-6.245,6.245H308.607a6.244,6.244,0,0,1-6.245-6.245V341.441a6.246,6.246,0,0,1,6.245-6.245h124.87a6.246,6.246,0,0,1,6.245,6.245Zm0,0" transform="translate(-69.996 101.504)" fill="#fd501e"/>
+    <path id="Path_19" data-name="Path 19" d="M407.678,381.3a25.037,25.037,0,0,0-32.717,37.893l-6.825,12.7a12.978,12.978,0,0,0,.4,12.676,11.8,11.8,0,0,0,10.126,5.836h25.974a11.793,11.793,0,0,0,10.126-5.831,12.986,12.986,0,0,0,.369-12.73l-6.625-12.97a24.97,24.97,0,0,0-.843-37.578Zm-10.446,43.612,6.737,13.01-24.805-.169,6.794-12.641a12.493,12.493,0,0,0-2.547-15.285,12.487,12.487,0,0,1,5.842-21.653,13.229,13.229,0,0,1,2.4-.2,12.353,12.353,0,0,1,8.006,2.9,12.481,12.481,0,0,1,4.481,9.589,12.267,12.267,0,0,1-4.027,9.192A12.624,12.624,0,0,0,397.232,424.909Zm0,0" transform="translate(-90.604 73.954)" fill="#fd501e"/>
+  </g>
 </svg>

From 6f51de65c77afae7757e7206c82cea2665c4169a Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 18:21:21 +0530
Subject: [PATCH 57/82] Remove usernameless tag

---
 .../features/identity-providers/pages/identity-providers.tsx  | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/apps/console/src/features/identity-providers/pages/identity-providers.tsx b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
index 2495f685cf8..844a239cec7 100644
--- a/apps/console/src/features/identity-providers/pages/identity-providers.tsx
+++ b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
@@ -303,10 +303,6 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
                     ?.find(idp => idp?.id
                         === IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID) as AuthenticatorInterface;
 
-                if (fido) {
-                    fido.tags = [ ...fido.tags, "Usernameless" ];
-                }
-
                 setIdPList(response);
             })
             .catch((error) => {

From 7afee429aba1b657a089f1f2529fbc252d92ca8d Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 18:21:32 +0530
Subject: [PATCH 58/82] Replace authentication with login

---
 .../settings/sign-on-methods/sign-in-method-customization.tsx   | 2 +-
 modules/i18n/src/translations/en-US/portals/console.ts          | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
index bb420963418..14ce4f6a37a 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
@@ -603,7 +603,7 @@ export const SignInMethodCustomization: FunctionComponent<SignInMethodCustomizat
                                 ".signOnMethod.sections.landing.flowBuilder." +
                                 "types.usernameless.info")
                             }>
-                            To sign in with passwordless authentication, your users
+                            To sign in with passwordless login, your users
                             should have their FIDO2 security keys or biometrics
                             registered via My Account. Learn more about
                             this in our { window[ "AppUtils" ].getConfig().docSiteUrl
diff --git a/modules/i18n/src/translations/en-US/portals/console.ts b/modules/i18n/src/translations/en-US/portals/console.ts
index a0173bf8242..ef13762ddc7 100644
--- a/modules/i18n/src/translations/en-US/portals/console.ts
+++ b/modules/i18n/src/translations/en-US/portals/console.ts
@@ -1117,7 +1117,7 @@ export const console: ConsoleNS = {
                                                 description: "Enable users to log in using a FIDO2 security key " +
                                                     "or biometrics.",
                                                 heading: "Add passwordless login",
-                                                info: "To sign in with passwordless authentication, your users " +
+                                                info: "To sign in with passwordless login, your users " +
                                                     "should have their FIDO2 security keys or biometrics " +
                                                     "registered via My Account. Learn more about " +
                                                     "this in our <1>documentation</1>."

From 0f8db067e8d1ac9d640d6b59b48a704289e97449 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 18:22:27 +0530
Subject: [PATCH 59/82] Remove usernameless tag

---
 .../src/features/identity-providers/meta/authenticator-meta.ts   | 1 -
 1 file changed, 1 deletion(-)

diff --git a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
index c1211aa38d7..40c65b11702 100644
--- a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
+++ b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
@@ -81,7 +81,6 @@ export class AuthenticatorMeta {
         return get({
             [ IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID ]: [ AuthenticatorLabels.HANDLERS ],
             [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: [
-                AuthenticatorLabels.USERNAMELESS,
                 AuthenticatorLabels.SECOND_FACTOR,
                 AuthenticatorLabels.PASSWORDLESS,
                 AuthenticatorLabels.MULTI_FACTOR

From 6eced2f857b15399df3bafa159c44b3e12021a28 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 22:08:53 +0530
Subject: [PATCH 60/82] Update doc link

---
 .../settings/sign-on-methods/sign-in-method-customization.tsx  | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
index 14ce4f6a37a..b483f03878d 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-customization.tsx
@@ -608,7 +608,8 @@ export const SignInMethodCustomization: FunctionComponent<SignInMethodCustomizat
                             registered via My Account. Learn more about
                             this in our { window[ "AppUtils" ].getConfig().docSiteUrl
                                 ? (<a
-                                    href={ window[ "AppUtils" ].getConfig().docSiteUrl }
+                                    href={ `${ window[ "AppUtils" ].getConfig().docSiteUrl
+                                    }/guides/authentication/passwordless-login/` }
                                     target="_blank"
                                     rel="noopener noreferrer"
                                     data-testid={ `fido-documentation-${ testId }` }>documentation</a>)

From 1364f1a0e008ae55e462cf929e3443302760b615 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 22:09:05 +0530
Subject: [PATCH 61/82] Update button text

---
 .../authentication/endpoint/i18n/Resources.properties         | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index eecd497a311..6d89ec61e12 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -233,7 +233,7 @@ provided.username.already.exists=Authentication error! Provided username already
 error.user.existence=Error while checking the user details.
 
 fido.failed.instruction=Click on proceed and follow the instructions given by your browser to authenticate yourself using a security key or biometrics in your device.
-fido.error=Authenticating using your security key/biometrics failed
+fido.error=Authenticating using your Security Key/Biometrics failed
 fido.registration.info=You should have a registered security key or biometrics to sign in. If not, register your security keys/biometrics in the My Account app.
 fido.learn.more.part.one=Learn more about this in our
 fido.learn.more.documentation=documentation
@@ -242,4 +242,4 @@ fido.learn.more.part.two.email=or contact us at
 fido.retry=Retry
 fido.proceed=Proceed
 fido.cancel=Cancel
-fido.authenticator=Sign in with Security Key
+fido.authenticator=Security Key

From 88cb1daf2f6cff268b1bd309898d1b6403dd9264 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 22:09:22 +0530
Subject: [PATCH 62/82] Improve button text

---
 apps/authentication-portal/src/main/webapp/login.jsp | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/apps/authentication-portal/src/main/webapp/login.jsp b/apps/authentication-portal/src/main/webapp/login.jsp
index 4e78c4f1a52..df00a24fad6 100644
--- a/apps/authentication-portal/src/main/webapp/login.jsp
+++ b/apps/authentication-portal/src/main/webapp/login.jsp
@@ -377,10 +377,12 @@
                                         '<%=Encode.forJavaScriptAttribute(Encode.forUriComponent(idpEntry.getKey()))%>',
                                         'FIDOAuthenticator')"
                                     id="icon-<%=iconId%>"
-                                    title="<%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with")%> Security key">
+                                    title="<%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with")%>&nbsp;
+                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with" )%>">
                                     <i class="usb icon"></i>
                                     <img src="libs/themes/default/assets/images/icons/fingerprint.svg" alt="Fido Logo" />
                                     <span>
+                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with" )%>&nbsp;
                                         <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.authenticator" )%>
                                     </span>
                                 </button>

From 4ae8466ce1f2e6c530898ecaa57be539f257e416 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Mon, 14 Feb 2022 22:09:34 +0530
Subject: [PATCH 63/82] Filter fido tags

---
 .../features/identity-providers/pages/identity-providers.tsx  | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/apps/console/src/features/identity-providers/pages/identity-providers.tsx b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
index 844a239cec7..2319b6cfead 100644
--- a/apps/console/src/features/identity-providers/pages/identity-providers.tsx
+++ b/apps/console/src/features/identity-providers/pages/identity-providers.tsx
@@ -303,6 +303,10 @@ const IdentityProvidersPage: FunctionComponent<IDPPropsInterface> = (
                     ?.find(idp => idp?.id
                         === IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID) as AuthenticatorInterface;
 
+                if (fido) {
+                    fido.tags = [ ...identityProviderConfig.filterFidoTags(fido?.tags) ];
+                }
+
                 setIdPList(response);
             })
             .catch((error) => {

From e1ed083685e5601c97544e6dd235271b8cfe3c29 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 02:11:10 +0530
Subject: [PATCH 64/82] Filter fido tags

---
 .../src/extensions/configs/identity-provider.tsx       | 10 +++++++++-
 .../extensions/configs/models/identity-providers.ts    |  2 ++
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/apps/console/src/extensions/configs/identity-provider.tsx b/apps/console/src/extensions/configs/identity-provider.tsx
index 8185180a45b..bbc4a6c0f2f 100644
--- a/apps/console/src/extensions/configs/identity-provider.tsx
+++ b/apps/console/src/extensions/configs/identity-provider.tsx
@@ -17,7 +17,7 @@
  */
 
 import { IdentityProviderConfig } from "./models";
-import { IdentityProviderManagementConstants } from "../../features/identity-providers";
+import { AuthenticatorLabels, IdentityProviderManagementConstants } from "../../features/identity-providers";
 
 export const identityProviderConfig: IdentityProviderConfig = {
     authenticatorResponseExtension: [],
@@ -54,6 +54,14 @@ export const identityProviderConfig: IdentityProviderConfig = {
         oidc: true,
         saml: true
     },
+    fidoTags: [
+        AuthenticatorLabels.SECOND_FACTOR,
+        AuthenticatorLabels.PASSWORDLESS,
+        AuthenticatorLabels.MULTI_FACTOR
+    ],
+    filterFidoTags:(tags: string[]): string[] => {
+        return tags;
+    },
     // Handles backward compatibility with the legacy IDP view & new connections view.
     // TODO: Remove this usage once https://github.com/wso2/product-is/issues/12052 is addressed.
     useNewConnectionsView: false,
diff --git a/apps/console/src/extensions/configs/models/identity-providers.ts b/apps/console/src/extensions/configs/models/identity-providers.ts
index 2a0737d2893..8e47a0e2122 100644
--- a/apps/console/src/extensions/configs/models/identity-providers.ts
+++ b/apps/console/src/extensions/configs/models/identity-providers.ts
@@ -97,6 +97,8 @@ export interface IdentityProviderConfig {
         saml: boolean;
         oidc: boolean;
     }
+    fidoTags: string[];
+    filterFidoTags: (tags: string[]) => string[];
 }
 
 /**

From af1fc04c28bce9a279c889fa6af3e82301703bca Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 02:11:35 +0530
Subject: [PATCH 65/82] Revert back to the fido flow screen when retry is
 clicked

---
 .../src/main/webapp/fido2-auth.jsp            | 32 ++++++++++++++-----
 1 file changed, 24 insertions(+), 8 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index 7ee8dbf0c58..b410a2b4433 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -106,7 +106,7 @@
                                 <span>
                                     <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.one" )%>
                                 </span>
-                                <a href="https://wso2.com/asgardeo/docs/guides/authentication/mfa/">
+                                <a href="https://wso2.com/asgardeo/docs/guides/user-self-service/register-security-key/">
                                     <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.documentation" )%>
                                 </a>
                                 <% if (supportEmail == null || supportEmail.isEmpty()) { %>
@@ -122,7 +122,7 @@
                             </p>
                             <div class="ui divider hidden"></div>
                             <div class="ui container fluid">
-                                <button class="ui right floated button primary" type="button" onclick="talkToDevice()">
+                                <button class="ui right floated button primary" type="button" onclick="retry()">
                                     <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.retry" )%>
                                 </button>
                                 <button class="ui right floated button link-button" type="button" onclick="cancelFlow()">
@@ -274,16 +274,32 @@
                 form.submit();
             })
             .catch(function(err) {
-                $("#fido-header-error").show();
-                $("#fido-error-content").show();
-                $("#fido-header").hide();
-                $("#fido-initialize").hide();
-                $("#loader-bar").hide();
-
+                showError();
                 fidoError = err;
             });
         }
 
+        function retry() {
+            showFidoFlow();
+            talkToDevice();
+        }
+
+        function showError() {
+            $("#fido-header-error").show();
+            $("#fido-error-content").show();
+            $("#fido-header").hide();
+            $("#fido-initialize").hide();
+            $("#loader-bar").hide();
+        }
+
+        function showFidoFlow() {
+            $("#fido-header-error").hide();
+            $("#fido-error-content").hide();
+            $("#fido-header").show();
+            $("#fido-initialize").show();
+            $("#loader-bar").show();
+        }
+
         function cancelFlow(){
             var form = document.getElementById('form');
             var reg = document.getElementById('tokenResponse');

From 8b27aaab15a23c2f95d551792422a6fe71adc3a8 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 02:11:48 +0530
Subject: [PATCH 66/82] Add fido filter for tags

---
 .../features/identity-providers/meta/authenticator-meta.ts | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
index 40c65b11702..4021ef0d860 100644
--- a/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
+++ b/apps/console/src/features/identity-providers/meta/authenticator-meta.ts
@@ -18,6 +18,7 @@
 
 import get from "lodash-es/get";
 import { ReactNode } from "react";
+import { identityProviderConfig } from "../../../extensions";
 import { getAuthenticatorIcons } from "../configs";
 import { IdentityProviderManagementConstants } from "../constants";
 import { AuthenticatorCategories, AuthenticatorLabels } from "../models";
@@ -80,11 +81,7 @@ export class AuthenticatorMeta {
 
         return get({
             [ IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR_ID ]: [ AuthenticatorLabels.HANDLERS ],
-            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: [
-                AuthenticatorLabels.SECOND_FACTOR,
-                AuthenticatorLabels.PASSWORDLESS,
-                AuthenticatorLabels.MULTI_FACTOR
-            ],
+            [ IdentityProviderManagementConstants.FIDO_AUTHENTICATOR_ID ]: identityProviderConfig.fidoTags,
             [ IdentityProviderManagementConstants.TOTP_AUTHENTICATOR_ID ]: [
                 AuthenticatorLabels.SECOND_FACTOR, AuthenticatorLabels.MULTI_FACTOR
             ],

From be3f3b13c708bb695a6b2de4ce537da10417d5fa Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 02:36:26 +0530
Subject: [PATCH 67/82] Update fingerprint graphic

---
 .../assets/images/icons/fingerprint.svg       | 58 ++++++++++++-------
 1 file changed, 38 insertions(+), 20 deletions(-)

diff --git a/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg b/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg
index c641bae8c2e..cdd4ad4bef2 100644
--- a/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg
+++ b/modules/theme/src/themes/default/assets/images/icons/fingerprint.svg
@@ -1,25 +1,43 @@
-<svg xmlns="http://www.w3.org/2000/svg" width="374.426" height="374.086" viewBox="0 0 374.426 374.086">
+<!--
+ * Copyright (c) 2022, WSO2 Inc. (http://www.wso2.com) All Rights Reserved.
+ *
+ * WSO2 Inc. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied. See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+-->
+
+<svg xmlns="http://www.w3.org/2000/svg" width="35" height="35" viewBox="0 0 400 400">
   <g id="Group_7" data-name="Group 7" transform="translate(-7.787 -175)">
     <g id="Group_6" data-name="Group 6">
-      <path id="Path_1" data-name="Path 1" d="M131.395,145.919a6.245,6.245,0,1,0,5.182,11.364,99.924,99.924,0,0,1,29.39-8.317,6.247,6.247,0,1,0-1.523-12.4A112.734,112.734,0,0,0,131.395,145.919Zm0,0" transform="translate(-26.49 138.096)" fill="#212a32"/>
-      <path id="Path_2" data-name="Path 2" d="M69.217,416.8a6.326,6.326,0,0,0,1.984-.326,6.246,6.246,0,0,0,3.936-7.905A61.661,61.661,0,0,1,71.964,388.7v-15.92a6.243,6.243,0,1,0-12.487,0v16.294a73.752,73.752,0,0,0,3.816,23.465A6.246,6.246,0,0,0,69.217,416.8Zm0,0" transform="translate(-8.173 76.375)" fill="#212a32"/>
-      <path id="Path_3" data-name="Path 3" d="M90.844,186.986a78.677,78.677,0,0,1,10.172-10.615,6.243,6.243,0,0,0-8.154-9.452,91.04,91.04,0,0,0-11.77,12.3,96.287,96.287,0,0,0-16.677,30.993,99.632,99.632,0,0,0-4.939,31.145v52.506a6.243,6.243,0,1,0,12.487,0V241.356a87.021,87.021,0,0,1,4.327-27.318A83.92,83.92,0,0,1,90.844,186.986Zm0,0" transform="translate(-8.173 130.32)" fill="#212a32"/>
-      <path id="Path_4" data-name="Path 4" d="M285.711,230.176a6.657,6.657,0,0,0,.86-.057,6.245,6.245,0,0,0,5.327-7.037c-6.145-44.678-39.11-80.241-80.169-86.491a6.245,6.245,0,0,0-1.872,12.35c35.589,5.413,64.31,36.606,69.677,75.842A6.247,6.247,0,0,0,285.711,230.176Zm0,0" transform="translate(-47.099 138.096)" fill="#212a32"/>
-      <path id="Path_5" data-name="Path 5" d="M221.326,250.57a47.043,47.043,0,0,0-46.758-45.4,42.626,42.626,0,0,0-8.066.717,46.56,46.56,0,0,0-27.861,16.171,45.052,45.052,0,0,0-10.712,26.577,23.6,23.6,0,0,0-.189,3.361v29.407c0,11.681,0,25.8.063,40.708a73.626,73.626,0,0,0,27.009,57.147l6.008,4.924c44.952,36.884,45.072,36.952,45.578,37.289A6.248,6.248,0,0,0,213.63,411.3c-1.249-.957-22.433-18.343-44.892-36.764L162.73,369.6a61.364,61.364,0,0,1-22.439-47.893c-.063-14.536-.063-28.632-.063-40.3V252a13.4,13.4,0,0,1,.111-2.086,33.4,33.4,0,0,1,7.88-19.844,34.26,34.26,0,0,1,20.55-11.9,30.361,30.361,0,0,1,5.8-.506,34.464,34.464,0,0,1,34.277,33.4,3.682,3.682,0,0,0,.063.937v31.842a73.472,73.472,0,0,0,9.9,36.835,6.243,6.243,0,1,0,10.8-6.242,61.422,61.422,0,0,1-8.211-31.03V252A13.3,13.3,0,0,0,221.326,250.57Zm0,0" transform="translate(-26.49 119.674)" fill="#212a32"/>
-      <path id="Path_6" data-name="Path 6" d="M189.024,376.626c12.05,9.866,22.982,18.781,30.647,25.014a5.361,5.361,0,0,0,.594.543l6.245,5.05c5.256,4.29,5.256,4.29,6.442,4.687a5.972,5.972,0,0,0,2,.337,6.243,6.243,0,0,0,3.453-11.449c-.549-.426-1.935-1.561-4.013-3.253l-5.659-4.6a5.118,5.118,0,0,0-.58-.532c-7.68-6.242-18.849-15.354-31.216-25.454a61.306,61.306,0,0,1-22.479-47.559v-8.271c-.063-12.413-.063-23.725-.063-32.436V261.159a9.368,9.368,0,0,1,8.743-9.366,8.531,8.531,0,0,1,6.574,2.541,10.846,10.846,0,0,1,3.378,7.823v9.958c0,7.8,0,19.149-.063,32.342v.726a73.975,73.975,0,0,0,26.849,56.71c2.578,2.141,5.093,4.213,7.422,6.1a6.252,6.252,0,0,0,7.874-9.715c-2.292-1.872-4.77-3.91-7.331-6.025a61.52,61.52,0,0,1-22.327-47.133v-.726c.063-13.11.063-24.5.063-32.311v-9.926a23.382,23.382,0,0,0-7.3-16.888,21.229,21.229,0,0,0-15.888-5.939,21.856,21.856,0,0,0-20.518,21.83V278.7c0,8.74,0,20.061.063,32.468v8.24A73.726,73.726,0,0,0,189.024,376.626Zm0,0" transform="translate(-35.649 110.517)" fill="#212a32"/>
-      <path id="Path_7" data-name="Path 7" d="M60.093,30.1a6.244,6.244,0,0,0,8.354,2.841A196.344,196.344,0,0,1,195.5,17.094a6.246,6.246,0,1,0,2.624-12.213A208.8,208.8,0,0,0,62.954,21.738,6.243,6.243,0,0,0,60.093,30.1Zm0,0" transform="translate(-8.166 174.628)" fill="#212a32"/>
-      <path id="Path_8" data-name="Path 8" d="M300.533,40.628A6.244,6.244,0,1,0,307.3,30.139a187.354,187.354,0,0,0-25.86-13.922,6.243,6.243,0,1,0-5,11.424A174.867,174.867,0,0,1,300.533,40.628Zm0,0" transform="translate(-65.306 170.555)" fill="#212a32"/>
-      <path id="Path_9" data-name="Path 9" d="M20.545,87.6a6.244,6.244,0,1,0,9.072,8.58A155.326,155.326,0,0,1,143.457,46.995a153.006,153.006,0,0,1,40.782,5.456,6.246,6.246,0,0,0,3.335-12.038,165.633,165.633,0,0,0-44.117-5.9A167.688,167.688,0,0,0,20.545,87.6Zm0,0" transform="translate(2.749 165.469)" fill="#212a32"/>
-      <path id="Path_10" data-name="Path 10" d="M116.216,77.071A153.968,153.968,0,0,0,70.669,98.812a6.244,6.244,0,1,0,7.168,10.226A141.422,141.422,0,0,1,119.7,89.061a6.246,6.246,0,1,0-3.484-12Zm0,0" transform="translate(-10.463 154.116)" fill="#212a32"/>
-      <path id="Path_11" data-name="Path 11" d="M4.319,194.134a6.246,6.246,0,0,0,7.863-4.016A131.9,131.9,0,0,1,41.825,140.1a6.248,6.248,0,0,0-9.1-8.56A144.3,144.3,0,0,0,.306,186.266a6.244,6.244,0,0,0,4.013,7.868Zm0,0" transform="translate(7.786 139.961)" fill="#212a32"/>
-      <path id="Path_12" data-name="Path 12" d="M324.17,206a6.85,6.85,0,0,0,.686-.037,6.247,6.247,0,0,0,5.528-6.868A146.849,146.849,0,0,0,183.783,68.64a150.711,150.711,0,0,0-16.377.912,6.244,6.244,0,1,0,1.349,12.413,138.2,138.2,0,0,1,15.028-.837A134.376,134.376,0,0,1,317.965,200.435,6.243,6.243,0,0,0,324.17,206Zm0,0" transform="translate(-35.61 156.31)" fill="#212a32"/>
-      <path id="Path_13" data-name="Path 13" d="M336.17,234.739h.563a6.241,6.241,0,0,0,5.679-6.8,120.994,120.994,0,0,0-32.059-71.384,6.255,6.255,0,1,0-9.146,8.534,108.437,108.437,0,0,1,28.718,63.961A6.245,6.245,0,0,0,336.17,234.739Zm0,0" transform="translate(-72.585 133.253)" fill="#212a32"/>
-      <path id="Path_14" data-name="Path 14" d="M47.64,179.455a108.757,108.757,0,0,1,102.394-64.127,6.246,6.246,0,0,0,.337-12.487A121.281,121.281,0,0,0,36.282,174.3a120.025,120.025,0,0,0-10.815,43.923c-.06,2.055-.123,4.184-.123,6.308,0,13.959,0,21.439.074,22.233a6.205,6.205,0,0,0,6.242,5.825h.314a6.278,6.278,0,0,0,5.911-6.488c-.054-1.655-.054-20.541-.054-21.57,0-2,.063-4,.111-5.776A107.831,107.831,0,0,1,47.64,179.455Zm0,0" transform="translate(0.986 147.146)" fill="#212a32"/>
-      <path id="Path_15" data-name="Path 15" d="M228.592,120.452A105.464,105.464,0,0,1,261.84,135.9a6.255,6.255,0,1,0,7.137-10.275,117.878,117.878,0,0,0-37.255-17.289l-2.312-.563a6.244,6.244,0,1,0-3.047,12.107Zm0,0" transform="translate(-51.649 145.869)" fill="#212a32"/>
-      <path id="Path_16" data-name="Path 16" d="M237.211,262.555V244.572A71.87,71.87,0,0,0,103.6,206.319a72.669,72.669,0,0,0-9.989,36.538v81.916a73.669,73.669,0,0,0,27,57.147l13.662,11.238c11.861,9.752,22.919,18.838,31.31,25.691a6.244,6.244,0,0,0,7.894-9.677c-8.386-6.868-19.432-15.92-31.282-25.66l-13.656-11.238A61.4,61.4,0,0,1,106.1,324.458v-81.6a59.326,59.326,0,1,1,118.628,1.683v18.295a67.4,67.4,0,0,0,.626,9.077,6.243,6.243,0,1,0,12.373-1.672A56.2,56.2,0,0,1,237.211,262.555Zm0,0" transform="translate(-17.332 128.819)" fill="#212a32"/>
-      <path id="Path_17" data-name="Path 17" d="M276.621,65.472a161.347,161.347,0,0,1,61.849,48.382,6.244,6.244,0,1,0,9.858-7.663,173.818,173.818,0,0,0-66.8-52.2H281.4c-.174-.074-.38-.06-.557-.123a6.385,6.385,0,0,0-1.815-.394h-.077a6.062,6.062,0,0,0-1.292.263,5.178,5.178,0,0,0-.949.194,6.2,6.2,0,0,0-.1,11.555Zm0,0" transform="translate(-65.388 160.379)" fill="#212a32"/>
+      <path id="Path_1" data-name="Path 1" d="M131.395,145.919a6.245,6.245,0,1,0,5.182,11.364,99.924,99.924,0,0,1,29.39-8.317,6.247,6.247,0,1,0-1.523-12.4A112.734,112.734,0,0,0,131.395,145.919Zm0,0" transform="translate(-26.49 138.096)" fill="#212a32" />
+      <path id="Path_2" data-name="Path 2" d="M69.217,416.8a6.326,6.326,0,0,0,1.984-.326,6.246,6.246,0,0,0,3.936-7.905A61.661,61.661,0,0,1,71.964,388.7v-15.92a6.243,6.243,0,1,0-12.487,0v16.294a73.752,73.752,0,0,0,3.816,23.465A6.246,6.246,0,0,0,69.217,416.8Zm0,0" transform="translate(-8.173 76.375)" fill="#212a32" />
+      <path id="Path_3" data-name="Path 3" d="M90.844,186.986a78.677,78.677,0,0,1,10.172-10.615,6.243,6.243,0,0,0-8.154-9.452,91.04,91.04,0,0,0-11.77,12.3,96.287,96.287,0,0,0-16.677,30.993,99.632,99.632,0,0,0-4.939,31.145v52.506a6.243,6.243,0,1,0,12.487,0V241.356a87.021,87.021,0,0,1,4.327-27.318A83.92,83.92,0,0,1,90.844,186.986Zm0,0" transform="translate(-8.173 130.32)" fill="#212a32" />
+      <path id="Path_4" data-name="Path 4" d="M285.711,230.176a6.657,6.657,0,0,0,.86-.057,6.245,6.245,0,0,0,5.327-7.037c-6.145-44.678-39.11-80.241-80.169-86.491a6.245,6.245,0,0,0-1.872,12.35c35.589,5.413,64.31,36.606,69.677,75.842A6.247,6.247,0,0,0,285.711,230.176Zm0,0" transform="translate(-47.099 138.096)" fill="#212a32" />
+      <path id="Path_5" data-name="Path 5" d="M221.326,250.57a47.043,47.043,0,0,0-46.758-45.4,42.626,42.626,0,0,0-8.066.717,46.56,46.56,0,0,0-27.861,16.171,45.052,45.052,0,0,0-10.712,26.577,23.6,23.6,0,0,0-.189,3.361v29.407c0,11.681,0,25.8.063,40.708a73.626,73.626,0,0,0,27.009,57.147l6.008,4.924c44.952,36.884,45.072,36.952,45.578,37.289A6.248,6.248,0,0,0,213.63,411.3c-1.249-.957-22.433-18.343-44.892-36.764L162.73,369.6a61.364,61.364,0,0,1-22.439-47.893c-.063-14.536-.063-28.632-.063-40.3V252a13.4,13.4,0,0,1,.111-2.086,33.4,33.4,0,0,1,7.88-19.844,34.26,34.26,0,0,1,20.55-11.9,30.361,30.361,0,0,1,5.8-.506,34.464,34.464,0,0,1,34.277,33.4,3.682,3.682,0,0,0,.063.937v31.842a73.472,73.472,0,0,0,9.9,36.835,6.243,6.243,0,1,0,10.8-6.242,61.422,61.422,0,0,1-8.211-31.03V252A13.3,13.3,0,0,0,221.326,250.57Zm0,0" transform="translate(-26.49 119.674)" fill="#212a32" />
+      <path id="Path_6" data-name="Path 6" d="M189.024,376.626c12.05,9.866,22.982,18.781,30.647,25.014a5.361,5.361,0,0,0,.594.543l6.245,5.05c5.256,4.29,5.256,4.29,6.442,4.687a5.972,5.972,0,0,0,2,.337,6.243,6.243,0,0,0,3.453-11.449c-.549-.426-1.935-1.561-4.013-3.253l-5.659-4.6a5.118,5.118,0,0,0-.58-.532c-7.68-6.242-18.849-15.354-31.216-25.454a61.306,61.306,0,0,1-22.479-47.559v-8.271c-.063-12.413-.063-23.725-.063-32.436V261.159a9.368,9.368,0,0,1,8.743-9.366,8.531,8.531,0,0,1,6.574,2.541,10.846,10.846,0,0,1,3.378,7.823v9.958c0,7.8,0,19.149-.063,32.342v.726a73.975,73.975,0,0,0,26.849,56.71c2.578,2.141,5.093,4.213,7.422,6.1a6.252,6.252,0,0,0,7.874-9.715c-2.292-1.872-4.77-3.91-7.331-6.025a61.52,61.52,0,0,1-22.327-47.133v-.726c.063-13.11.063-24.5.063-32.311v-9.926a23.382,23.382,0,0,0-7.3-16.888,21.229,21.229,0,0,0-15.888-5.939,21.856,21.856,0,0,0-20.518,21.83V278.7c0,8.74,0,20.061.063,32.468v8.24A73.726,73.726,0,0,0,189.024,376.626Zm0,0" transform="translate(-35.649 110.517)" fill="#212a32" />
+      <path id="Path_7" data-name="Path 7" d="M60.093,30.1a6.244,6.244,0,0,0,8.354,2.841A196.344,196.344,0,0,1,195.5,17.094a6.246,6.246,0,1,0,2.624-12.213A208.8,208.8,0,0,0,62.954,21.738,6.243,6.243,0,0,0,60.093,30.1Zm0,0" transform="translate(-8.166 174.628)" fill="#212a32" />
+      <path id="Path_8" data-name="Path 8" d="M300.533,40.628A6.244,6.244,0,1,0,307.3,30.139a187.354,187.354,0,0,0-25.86-13.922,6.243,6.243,0,1,0-5,11.424A174.867,174.867,0,0,1,300.533,40.628Zm0,0" transform="translate(-65.306 170.555)" fill="#212a32" />
+      <path id="Path_9" data-name="Path 9" d="M20.545,87.6a6.244,6.244,0,1,0,9.072,8.58A155.326,155.326,0,0,1,143.457,46.995a153.006,153.006,0,0,1,40.782,5.456,6.246,6.246,0,0,0,3.335-12.038,165.633,165.633,0,0,0-44.117-5.9A167.688,167.688,0,0,0,20.545,87.6Zm0,0" transform="translate(2.749 165.469)" fill="#212a32" />
+      <path id="Path_10" data-name="Path 10" d="M116.216,77.071A153.968,153.968,0,0,0,70.669,98.812a6.244,6.244,0,1,0,7.168,10.226A141.422,141.422,0,0,1,119.7,89.061a6.246,6.246,0,1,0-3.484-12Zm0,0" transform="translate(-10.463 154.116)" fill="#212a32" />
+      <path id="Path_11" data-name="Path 11" d="M4.319,194.134a6.246,6.246,0,0,0,7.863-4.016A131.9,131.9,0,0,1,41.825,140.1a6.248,6.248,0,0,0-9.1-8.56A144.3,144.3,0,0,0,.306,186.266a6.244,6.244,0,0,0,4.013,7.868Zm0,0" transform="translate(7.786 139.961)" fill="#212a32" />
+      <path id="Path_12" data-name="Path 12" d="M324.17,206a6.85,6.85,0,0,0,.686-.037,6.247,6.247,0,0,0,5.528-6.868A146.849,146.849,0,0,0,183.783,68.64a150.711,150.711,0,0,0-16.377.912,6.244,6.244,0,1,0,1.349,12.413,138.2,138.2,0,0,1,15.028-.837A134.376,134.376,0,0,1,317.965,200.435,6.243,6.243,0,0,0,324.17,206Zm0,0" transform="translate(-35.61 156.31)" fill="#212a32" />
+      <path id="Path_13" data-name="Path 13" d="M336.17,234.739h.563a6.241,6.241,0,0,0,5.679-6.8,120.994,120.994,0,0,0-32.059-71.384,6.255,6.255,0,1,0-9.146,8.534,108.437,108.437,0,0,1,28.718,63.961A6.245,6.245,0,0,0,336.17,234.739Zm0,0" transform="translate(-72.585 133.253)" fill="#212a32" />
+      <path id="Path_14" data-name="Path 14" d="M47.64,179.455a108.757,108.757,0,0,1,102.394-64.127,6.246,6.246,0,0,0,.337-12.487A121.281,121.281,0,0,0,36.282,174.3a120.025,120.025,0,0,0-10.815,43.923c-.06,2.055-.123,4.184-.123,6.308,0,13.959,0,21.439.074,22.233a6.205,6.205,0,0,0,6.242,5.825h.314a6.278,6.278,0,0,0,5.911-6.488c-.054-1.655-.054-20.541-.054-21.57,0-2,.063-4,.111-5.776A107.831,107.831,0,0,1,47.64,179.455Zm0,0" transform="translate(0.986 147.146)" fill="#212a32" />
+      <path id="Path_15" data-name="Path 15" d="M228.592,120.452A105.464,105.464,0,0,1,261.84,135.9a6.255,6.255,0,1,0,7.137-10.275,117.878,117.878,0,0,0-37.255-17.289l-2.312-.563a6.244,6.244,0,1,0-3.047,12.107Zm0,0" transform="translate(-51.649 145.869)" fill="#212a32" />
+      <path id="Path_16" data-name="Path 16" d="M237.211,262.555V244.572A71.87,71.87,0,0,0,103.6,206.319a72.669,72.669,0,0,0-9.989,36.538v81.916a73.669,73.669,0,0,0,27,57.147l13.662,11.238c11.861,9.752,22.919,18.838,31.31,25.691a6.244,6.244,0,0,0,7.894-9.677c-8.386-6.868-19.432-15.92-31.282-25.66l-13.656-11.238A61.4,61.4,0,0,1,106.1,324.458v-81.6a59.326,59.326,0,1,1,118.628,1.683v18.295a67.4,67.4,0,0,0,.626,9.077,6.243,6.243,0,1,0,12.373-1.672A56.2,56.2,0,0,1,237.211,262.555Zm0,0" transform="translate(-17.332 128.819)" fill="#212a32" />
+      <path id="Path_17" data-name="Path 17" d="M276.621,65.472a161.347,161.347,0,0,1,61.849,48.382,6.244,6.244,0,1,0,9.858-7.663,173.818,173.818,0,0,0-66.8-52.2H281.4c-.174-.074-.38-.06-.557-.123a6.385,6.385,0,0,0-1.815-.394h-.077a6.062,6.062,0,0,0-1.292.263,5.178,5.178,0,0,0-.949.194,6.2,6.2,0,0,0-.1,11.555Zm0,0" transform="translate(-65.388 160.379)" fill="#212a32" />
     </g>
-    <path id="Path_18" data-name="Path 18" d="M433.477,322.709h-6.605a56.192,56.192,0,0,0-111.66,0h-6.605a18.733,18.733,0,0,0-18.732,18.732V428.85a18.731,18.731,0,0,0,18.732,18.732h124.87a18.731,18.731,0,0,0,18.732-18.732V341.441A18.733,18.733,0,0,0,433.477,322.709Zm-62.435-37.492a43.736,43.736,0,0,1,43.211,37.492H401.635a31.217,31.217,0,0,0-61.186,0H327.83A43.741,43.741,0,0,1,371.042,285.217Zm17.589,37.492H353.453a18.613,18.613,0,0,1,35.177,0ZM439.722,428.85a6.244,6.244,0,0,1-6.245,6.245H308.607a6.244,6.244,0,0,1-6.245-6.245V341.441a6.246,6.246,0,0,1,6.245-6.245h124.87a6.246,6.246,0,0,1,6.245,6.245Zm0,0" transform="translate(-69.996 101.504)" fill="#fd501e"/>
-    <path id="Path_19" data-name="Path 19" d="M407.678,381.3a25.037,25.037,0,0,0-32.717,37.893l-6.825,12.7a12.978,12.978,0,0,0,.4,12.676,11.8,11.8,0,0,0,10.126,5.836h25.974a11.793,11.793,0,0,0,10.126-5.831,12.986,12.986,0,0,0,.369-12.73l-6.625-12.97a24.97,24.97,0,0,0-.843-37.578Zm-10.446,43.612,6.737,13.01-24.805-.169,6.794-12.641a12.493,12.493,0,0,0-2.547-15.285,12.487,12.487,0,0,1,5.842-21.653,13.229,13.229,0,0,1,2.4-.2,12.353,12.353,0,0,1,8.006,2.9,12.481,12.481,0,0,1,4.481,9.589,12.267,12.267,0,0,1-4.027,9.192A12.624,12.624,0,0,0,397.232,424.909Zm0,0" transform="translate(-90.604 73.954)" fill="#fd501e"/>
+    <path id="Path_18" data-name="Path 18" d="M433.477,322.709h-6.605a56.192,56.192,0,0,0-111.66,0h-6.605a18.733,18.733,0,0,0-18.732,18.732V428.85a18.731,18.731,0,0,0,18.732,18.732h124.87a18.731,18.731,0,0,0,18.732-18.732V341.441A18.733,18.733,0,0,0,433.477,322.709Zm-62.435-37.492a43.736,43.736,0,0,1,43.211,37.492H401.635a31.217,31.217,0,0,0-61.186,0H327.83A43.741,43.741,0,0,1,371.042,285.217Zm17.589,37.492H353.453a18.613,18.613,0,0,1,35.177,0ZM439.722,428.85a6.244,6.244,0,0,1-6.245,6.245H308.607a6.244,6.244,0,0,1-6.245-6.245V341.441a6.246,6.246,0,0,1,6.245-6.245h124.87a6.246,6.246,0,0,1,6.245,6.245Zm0,0" transform="translate(-69.996 101.504)" fill="#fd501e" />
+    <path id="Path_19" data-name="Path 19" d="M407.678,381.3a25.037,25.037,0,0,0-32.717,37.893l-6.825,12.7a12.978,12.978,0,0,0,.4,12.676,11.8,11.8,0,0,0,10.126,5.836h25.974a11.793,11.793,0,0,0,10.126-5.831,12.986,12.986,0,0,0,.369-12.73l-6.625-12.97a24.97,24.97,0,0,0-.843-37.578Zm-10.446,43.612,6.737,13.01-24.805-.169,6.794-12.641a12.493,12.493,0,0,0-2.547-15.285,12.487,12.487,0,0,1,5.842-21.653,13.229,13.229,0,0,1,2.4-.2,12.353,12.353,0,0,1,8.006,2.9,12.481,12.481,0,0,1,4.481,9.589,12.267,12.267,0,0,1-4.027,9.192A12.624,12.624,0,0,0,397.232,424.909Zm0,0" transform="translate(-90.604 73.954)" fill="#fd501e" />
   </g>
 </svg>

From 7e28c02c73314878e9c9e932c5e00bf6548f2be1 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 19:40:11 +0530
Subject: [PATCH 68/82] Update fido texts

---
 .../authentication/endpoint/i18n/Resources.properties    | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
index 6d89ec61e12..8270d21a125 100644
--- a/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
+++ b/apps/authentication-portal/src/main/resources/org/wso2/carbon/identity/application/authentication/endpoint/i18n/Resources.properties
@@ -233,12 +233,9 @@ provided.username.already.exists=Authentication error! Provided username already
 error.user.existence=Error while checking the user details.
 
 fido.failed.instruction=Click on proceed and follow the instructions given by your browser to authenticate yourself using a security key or biometrics in your device.
-fido.error=Authenticating using your Security Key/Biometrics failed
-fido.registration.info=You should have a registered security key or biometrics to sign in. If not, register your security keys/biometrics in the My Account app.
-fido.learn.more.part.one=Learn more about this in our
-fido.learn.more.documentation=documentation
-fido.learn.more.part.two=or contact your administrator
-fido.learn.more.part.two.email=or contact us at
+fido.error=Sign In with security key/biometrics interrupted!
+fido.registration.info=Haven’t registered your security key? Register in
+fido.learn.more.part.one=Need help? Contact
 fido.retry=Retry
 fido.proceed=Proceed
 fido.cancel=Cancel

From 03922c05e7ab7371e4dfc88594f2dc8014b96edf Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 19:40:25 +0530
Subject: [PATCH 69/82] Remove redundant space

---
 apps/authentication-portal/src/main/webapp/login.jsp | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/login.jsp b/apps/authentication-portal/src/main/webapp/login.jsp
index df00a24fad6..858955dd53f 100644
--- a/apps/authentication-portal/src/main/webapp/login.jsp
+++ b/apps/authentication-portal/src/main/webapp/login.jsp
@@ -377,12 +377,12 @@
                                         '<%=Encode.forJavaScriptAttribute(Encode.forUriComponent(idpEntry.getKey()))%>',
                                         'FIDOAuthenticator')"
                                     id="icon-<%=iconId%>"
-                                    title="<%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with")%>&nbsp;
+                                    title="<%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with")%>
                                     <%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with" )%>">
                                     <i class="usb icon"></i>
                                     <img src="libs/themes/default/assets/images/icons/fingerprint.svg" alt="Fido Logo" />
                                     <span>
-                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with" )%>&nbsp;
+                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "sign.in.with" )%>
                                         <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.authenticator" )%>
                                     </span>
                                 </button>

From 8f1b6b774cb318664fa06584f959dcbe9884d2c7 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 19:40:55 +0530
Subject: [PATCH 70/82] Improve fido error page

---
 .../src/main/webapp/fido2-auth.jsp             | 18 +++++-------------
 1 file changed, 5 insertions(+), 13 deletions(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index b410a2b4433..d068e4eb32c 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -76,7 +76,6 @@
                         <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.error" )%>
                     </span>
                 </h3>
-                <div class="ui divider hidden"></div>
                 <div class="ui two column left aligned stackable grid">
                     <div id="fido-initialize" class="middle aligned row">
                         <div class="six wide column">
@@ -101,21 +100,12 @@
                         <div class="sixteen wide column">
                             <p>
                                 <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.registration.info" )%>
+                                <a id="my-account-link">My Account</a>.
                             </p>
                             <p>
-                                <span>
-                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.one" )%>
-                                </span>
-                                <a href="https://wso2.com/asgardeo/docs/guides/user-self-service/register-security-key/">
-                                    <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.documentation" )%>
-                                </a>
-                                <% if (supportEmail == null || supportEmail.isEmpty()) { %>
+                                <% if (supportEmail != null && !supportEmail.isEmpty()) { %>
                                     <span>
-                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.two" )%>
-                                    </span>
-                                <% } else { %>
-                                    <span>
-                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.two.email" )%>
+                                        <%=AuthenticationEndpointUtil.i18n(resourceBundle, "fido.learn.more.part.one" )%>
                                     </span>
                                     <a href="mailto:<%=supportEmail%>"><%=StringEscapeUtils.escapeHtml4(supportEmail)%></a>.
                                 <% } %>
@@ -170,6 +160,8 @@
 
     <script type="text/javascript">
         $(document).ready(function () {
+            $("#my-account-link").attr("href", window.origin +"/myaccount");
+
             if(navigator ){
                 let userAgent = navigator.userAgent;
                 let browserName;

From 9a3c94a960e97cae66dbe3d131d9bd0095ea547f Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 20:00:00 +0530
Subject: [PATCH 71/82] Make my account link tenanted

---
 apps/authentication-portal/src/main/webapp/fido2-auth.jsp | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index d068e4eb32c..f3089522745 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -160,7 +160,13 @@
 
     <script type="text/javascript">
         $(document).ready(function () {
-            $("#my-account-link").attr("href", window.origin +"/myaccount");
+            var myaccountUrl = window.origin;
+
+            if ("<%=tenantDomain%>" !== "" || "<%=tenantDomain%>" !== "null") {
+                myaccountUrl = myaccountUrl + "/t/" + "<%=tenantDomain%>";
+            }
+
+            $("#my-account-link").attr("href", myaccountUrl +"/myaccount");
 
             if(navigator ){
                 let userAgent = navigator.userAgent;

From d50a7a14acf2abe4a4f2280b055cfb0785891b25 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 20:39:35 +0530
Subject: [PATCH 72/82] Add template to fetch my account url from deployment
 toml file

---
 .../resources/web.xml.j2                                  | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/features/org.wso2.identity.apps.authentication.portal.server.feature/resources/web.xml.j2 b/features/org.wso2.identity.apps.authentication.portal.server.feature/resources/web.xml.j2
index 4fdd386fd24..8b7f21c63a9 100644
--- a/features/org.wso2.identity.apps.authentication.portal.server.feature/resources/web.xml.j2
+++ b/features/org.wso2.identity.apps.authentication.portal.server.feature/resources/web.xml.j2
@@ -78,6 +78,14 @@
     </context-param>
     {% endif %}
 
+    <!-- *************** My Account URL ********************** -->
+    {% if authenticationendpoint.my_account_url is defined %}
+        <context-param>
+            <param-name>MyAccountURL</param-name>
+            <param-value>{{ authenticationendpoint.my_account_url }}</param-value>
+        </context-param>
+    {% endif %}
+
     <!-- *************** End of Account Recovery Endpoint Context URL Configuration ********************** -->
     <!-- *************** Identity Server Endpoint URL Configuration ********************** -->
     {% if authenticationendpoint.identity_server_endpoint_url is defined %}

From 2e66b5568f1e2182f8daa2f25d8d6af05736edd9 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Tue, 15 Feb 2022 20:40:18 +0530
Subject: [PATCH 73/82] Get my account url from app init parameters

---
 apps/authentication-portal/src/main/webapp/fido2-auth.jsp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
index f3089522745..3c4bbc32eaf 100644
--- a/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
+++ b/apps/authentication-portal/src/main/webapp/fido2-auth.jsp
@@ -160,7 +160,7 @@
 
     <script type="text/javascript">
         $(document).ready(function () {
-            var myaccountUrl = window.origin;
+            var myaccountUrl = '<%=application.getInitParameter("MyAccountURL")%>';
 
             if ("<%=tenantDomain%>" !== "" || "<%=tenantDomain%>" !== "null") {
                 myaccountUrl = myaccountUrl + "/t/" + "<%=tenantDomain%>";

From 21e85c3e07bedbffa79e3638e5a91cad4967c9b8 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 08:41:01 +0530
Subject: [PATCH 74/82] Limit the number of characters that can be entered into
 fido name

---
 .../authenticators/fido-authenticator.tsx                        | 1 +
 1 file changed, 1 insertion(+)

diff --git a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
index 278d9dff4a7..85d8b6d2875 100644
--- a/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
+++ b/apps/myaccount/src/components/multi-factor-authentication/authenticators/fido-authenticator.tsx
@@ -461,6 +461,7 @@ export const FIDOAuthenticator: React.FunctionComponent<FIDOAuthenticatorProps>
                                         }
                                         : false
                                 }
+                                maxLength={ 30 }
                             />
                         </Form.Field>
                     </Form>

From e228f873f911a0539676d20b5c4c25f6d8ecdd12 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 09:16:15 +0530
Subject: [PATCH 75/82] Allow fido to be a first factor

---
 .../features/applications/constants/application-management.ts  | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/console/src/features/applications/constants/application-management.ts b/apps/console/src/features/applications/constants/application-management.ts
index 89e5427ba1d..f9ace716cfe 100644
--- a/apps/console/src/features/applications/constants/application-management.ts
+++ b/apps/console/src/features/applications/constants/application-management.ts
@@ -352,7 +352,8 @@ export class ApplicationManagementConstants {
     // First factor authenticators.
     public static readonly FIRST_FACTOR_AUTHENTICATORS = [
         IdentityProviderManagementConstants.BASIC_AUTHENTICATOR,
-        IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR
+        IdentityProviderManagementConstants.IDENTIFIER_FIRST_AUTHENTICATOR,
+        IdentityProviderManagementConstants.FIDO_AUTHENTICATOR
     ];
 
     // Second factor authenticators.

From d7904af49217a0b00e322edd31da42ac38c8db8b Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 09:42:38 +0530
Subject: [PATCH 76/82] Update popup message for seocnd factors

---
 .../sign-on-methods/step-based-flow/authenticators.tsx      | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/authenticators.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/authenticators.tsx
index 99f3014eb65..ddc8f37ad48 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/authenticators.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/step-based-flow/authenticators.tsx
@@ -197,7 +197,9 @@ export const Authenticators: FunctionComponent<AuthenticatorsPropsInterface> = (
                                                 >
                                                     The second-factor authenticators can only be used if <Code
                                                         withBackground>Username & Password</Code>, <Code withBackground>
-                                                    Social Login</Code> or any other handlers such as
+                                                    Social Login</Code>,
+                                                    <Code withBackground>Security Key/Biometrics</Code>
+                                                    or any other handlers such as
                                                     <Code withBackground>Identifier First</Code> that can handle these
                                                     factors are present in a previous step.
                                                 </Trans>
@@ -227,7 +229,7 @@ export const Authenticators: FunctionComponent<AuthenticatorsPropsInterface> = (
     /**
      * Handles authenticator select.
      *
-     * @param {GenericAuthenticatorInterface} selectedAuthenticator - Selected Authenticator. 
+     * @param {GenericAuthenticatorInterface} selectedAuthenticator - Selected Authenticator.
      */
     const handleAuthenticatorSelect = (selectedAuthenticator: GenericAuthenticatorInterface): void => {
 

From 7c70a0c2093dc46e8717a4c295ce34730699ef01 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 10:24:28 +0530
Subject: [PATCH 77/82] Disable passwordless template if fido is disabled

---
 .../sign-on-methods/sign-in-method-landing.tsx         | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
index c0a05d8ffc6..a0661a5014d 100644
--- a/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
+++ b/apps/console/src/features/applications/components/settings/sign-on-methods/sign-in-method-landing.tsx
@@ -20,8 +20,10 @@ import { SBACInterface, TestableComponentInterface } from "@wso2is/core/models";
 import { Code, GenericIcon, Heading, InfoCard, Text } from "@wso2is/react-components";
 import React, { FunctionComponent, ReactElement } from "react";
 import { Trans, useTranslation } from "react-i18next";
+import { useSelector } from "react-redux";
 import { Divider, Grid, Responsive, Segment } from "semantic-ui-react";
-import { FeatureConfigInterface } from "../../../../core";
+import { AppState, Config, ConfigReducerStateInterface, FeatureConfigInterface } from "../../../../core";
+import { IdentityProviderManagementConstants } from "../../../../identity-providers";
 import { getAuthenticatorIcons, getSignInMethodIllustrations } from "../../../configs";
 import { LoginFlowTypes } from "../../../models";
 
@@ -67,6 +69,8 @@ export const SignInMethodLanding: FunctionComponent<SignInMethodLandingPropsInte
 
     const { t } = useTranslation();
 
+    const config: ConfigReducerStateInterface = useSelector((state: AppState) => state.config);
+
     return (
         <Segment
             basic
@@ -209,7 +213,9 @@ export const SignInMethodLanding: FunctionComponent<SignInMethodLandingPropsInte
                                 )
                             }
                             {
-                                !hiddenOptions.includes(LoginFlowTypes.USERNAMELESS_LOGIN) && (
+                                !hiddenOptions?.includes(LoginFlowTypes.USERNAMELESS_LOGIN)
+                                && !config.ui?.hiddenAuthenticators
+                                    .includes(IdentityProviderManagementConstants.FIDO_AUTHENTICATOR) && (
                                     <InfoCard
                                         fluid
                                         data-testid="usernameless-flow-card"

From 88f2698add129d6c40807b3ce977fb31506c2439 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 11:08:24 +0530
Subject: [PATCH 78/82] Revert "Revert "Merge pull request #2811 from
 yathindrakodithuwakku/pre-auth-check""

This reverts commit 6d975b71ca531f2e498c7ebe86359c3085588650.
---
 apps/console/src/index.jsp                | 66 ++++++++++-------------
 apps/console/src/public/WEB-INF/web.xml   | 10 ++++
 apps/console/webpack.config.js            | 10 +++-
 apps/myaccount/src/index.jsp              | 10 +---
 apps/myaccount/src/public/WEB-INF/web.xml | 10 ++++
 apps/myaccount/webpack.config.js          | 10 +++-
 6 files changed, 65 insertions(+), 51 deletions(-)

diff --git a/apps/console/src/index.jsp b/apps/console/src/index.jsp
index 4c7a6d53e3e..29659760156 100644
--- a/apps/console/src/index.jsp
+++ b/apps/console/src/index.jsp
@@ -23,21 +23,16 @@
 <!DOCTYPE HTML>
 <html>
     <head>
-        <script src="https://unpkg.com/@asgardeo/auth-spa@0.2.19/dist/asgardeo-spa.production.min.js"></script>
+        <script src="https://unpkg.com/@asgardeo/auth-spa@latest/dist/asgardeo-spa.production.min.js"></script>
     </head>
     <body>
         <script>
             var userAccessedPath = window.location.href;
             var applicationDomain = window.location.origin;
+            var userTenant = userAccessedPath.split("/t/")[1] ?  userAccessedPath.split("/t/")[1].split("/")[0] : null;
+
+            var serverOrigin = "<%=serverUrl%>";
 
-            var serverOrigin = "<%= htmlWebpackPlugin.options.serverUrl %>";
-            var authorizationCode = "<%= htmlWebpackPlugin.options.authorizationCode %>" != "null" 
-                                        ? "<%= htmlWebpackPlugin.options.authorizationCode %>" 
-                                        : null;
-            var authSessionState = "<%= htmlWebpackPlugin.options.sessionState %>" != "null" 
-                                        ? "<%= htmlWebpackPlugin.options.sessionState %>" 
-                                        : null;
-            
             function getApiPath(path) {
                 if(path) {
                     return serverOrigin + path;
@@ -45,51 +40,44 @@
 
                 return serverOrigin;
             }
-            
+
             var auth = AsgardeoAuth.AsgardeoSPAClient.getInstance();
 
             var authConfig = {
-                signInRedirectURL: applicationDomain.replace(/\/+$/, '') + "/" + "<%= htmlWebpackPlugin.options.basename %>",
+                signInRedirectURL: applicationDomain.replace(/\/+$/, ''),
                 signOutRedirectURL: applicationDomain.replace(/\/+$/, ''),
-                clientID: "<%= htmlWebpackPlugin.options.clientID %>",
+                clientID: "CONSOLE",
                 serverOrigin: getApiPath(),
                 responseMode: "form_post",
                 scope: ["openid SYSTEM"],
                 storage: "webWorker",
+                endpoints: {
+                    authorizationEndpoint: getApiPath(userTenant ? "/t/a/oauth2/authorize?ut="+userTenant.replace(/\/+$/, '') : "/t/a/oauth2/authorize"),
+                    clockTolerance: 300,
+                    jwksEndpointURL: undefined,
+                    logoutEndpointURL: getApiPath("/t/a/oidc/logout"),
+                    oidcSessionIFrameEndpointURL: getApiPath("/t/a/oidc/checksession"),
+                    serverOrigin: getApiPath(),
+                    tokenEndpointURL: undefined,
+                    tokenRevocationEndpointURL: undefined,
+                    wellKnownEndpointURL: undefined,
+                },
                 enablePKCE: true,
                 overrideWellEndpointConfig: true
             }
 
-            var isSilentSignInDisabled = userAccessedPath.includes("disable_silent_sign_in");
-            var isSignOutSuccess = userAccessedPath.includes("sign_out_success");
-
-            if(isSignOutSuccess) {
-                window.location.href = applicationDomain + '/' + "<%= htmlWebpackPlugin.options.basename %>"
-            }
-            
-            if(isSilentSignInDisabled) {
-                window.location.href = applicationDomain + '/' + "<%= htmlWebpackPlugin.options.basename %>" + '/authenticate?disable_silent_sign_in=true&invite_user=true';
-            } else {
-
-                if(authorizationCode) {
-                    sessionStorage.setItem("userAccessedPath", userAccessedPath.split(window.origin)[1]);
+            auth.initialize(authConfig);
 
-                    window.location.href = applicationDomain + '/' + "<%= htmlWebpackPlugin.options.basename %>" + '/authenticate?code=' + authorizationCode +
-                                '&session_state='+authSessionState;
-                } else {
-                    sessionStorage.setItem("auth_callback_url_console", 
-                        userAccessedPath.split(window.origin)[1] 
-                            ? userAccessedPath.split(window.origin)[1].replace(/\/+$/, '') : null);
-                    auth.initialize(authConfig);
+            auth.trySignInSilently().then(res => {
+                if(res === false) {
                     auth.signIn();
+                } else {
+                    sessionStorage.setItem("auth_callback_url_console", userAccessedPath.split(window.origin)[1])
+                    sessionStorage.setItem("userAccessedPath", userAccessedPath.split(window.origin)[1])
+                    
+                    window.location = '/authenticate';
                 }
-            }
+            });
         </script>
-    </head>
-    <body>
-        <noscript>
-            You need to enable JavaScript to run this app.
-        </noscript>
-        <div id="root"></div>
     </body>
 </html>
diff --git a/apps/console/src/public/WEB-INF/web.xml b/apps/console/src/public/WEB-INF/web.xml
index 72f019cf20b..57068fb6613 100644
--- a/apps/console/src/public/WEB-INF/web.xml
+++ b/apps/console/src/public/WEB-INF/web.xml
@@ -41,6 +41,11 @@
         <servlet-name>auth</servlet-name>
         <jsp-file>/auth.jsp</jsp-file>
     </servlet>
+
+    <servlet>
+        <servlet-name>home</servlet-name>
+        <jsp-file>/home.jsp</jsp-file>
+    </servlet>
     
     <servlet-mapping>
         <servlet-name>default</servlet-name>
@@ -67,6 +72,11 @@
         <url-pattern>/auth</url-pattern>
     </servlet-mapping>
 
+    <servlet-mapping>
+        <servlet-name>home</servlet-name>
+        <url-pattern>/authenticate</url-pattern>
+    </servlet-mapping>
+
     <servlet-mapping>
         <servlet-name>default</servlet-name>
         <url-pattern>/deployment.config.json</url-pattern>
diff --git a/apps/console/webpack.config.js b/apps/console/webpack.config.js
index 9afabfb01b8..e3cdda0a9ef 100755
--- a/apps/console/webpack.config.js
+++ b/apps/console/webpack.config.js
@@ -452,6 +452,12 @@ module.exports = (env) => {
                         force: true,
                         from: "auth.jsp",
                         to: "."
+                    },
+                    !isDeployedOnStaticServer && {
+                        context: path.join(__dirname, "src"),
+                        force: true,
+                        from: "index.jsp",
+                        to: "."
                     }
                 ].filter(Boolean)
             }),
@@ -460,7 +466,7 @@ module.exports = (env) => {
                     authorizationCode: "<%=request.getParameter(\"code\")%>",
                     contentType: "<%@ page language=\"java\" contentType=\"text/html; charset=UTF-8\" " +
                         "pageEncoding=\"UTF-8\" %>",
-                    filename: path.join(distFolder, "index.jsp"),
+                    filename: path.join(distFolder, "home.jsp"),
                     hash: true,
                     // eslint-disable-next-line max-len
                     hotjarSystemVariable: "<% String hotjar_track_code_system_var = System.getenv().getOrDefault(\"hotjar_tracking_code\", null); %>",
@@ -490,7 +496,7 @@ module.exports = (env) => {
                     superTenantConstant: !isDeployedOnExternalServer
                         ? "<%=SUPER_TENANT_DOMAIN_NAME%>"
                         : "",
-                    template: path.join(__dirname, "src", "index.jsp"),
+                    template: path.join(__dirname, "src", "home.jsp"),
                     tenantDelimiter: !isDeployedOnExternalServer
                         ? "\"/\"+'<%=TENANT_AWARE_URL_PREFIX%>'+\"/\""
                         : "",
diff --git a/apps/myaccount/src/index.jsp b/apps/myaccount/src/index.jsp
index 1a0f80272c7..ec5308dd307 100644
--- a/apps/myaccount/src/index.jsp
+++ b/apps/myaccount/src/index.jsp
@@ -43,9 +43,9 @@
                                         : null;
             var authSessionState = "<%= htmlWebpackPlugin.options.sessionState %>" != "null" 
                                         ? "<%= htmlWebpackPlugin.options.sessionState %>" 
-                                        : null;
 
-            function getApiPath(path) {
+            var serverOrigin = "<%=serverUrl%>";
+
                 if(path) {
                     return serverOrigin + path;
                 }
@@ -81,11 +81,5 @@
                 auth.signIn();
             }
         </script>
-    </head>
-    <body>
-        <noscript>
-            You need to enable JavaScript to run this app.
-        </noscript>
-        <div id="root"></div>
     </body>
 </html>
diff --git a/apps/myaccount/src/public/WEB-INF/web.xml b/apps/myaccount/src/public/WEB-INF/web.xml
index 80c53b0a53c..68da3314b3c 100644
--- a/apps/myaccount/src/public/WEB-INF/web.xml
+++ b/apps/myaccount/src/public/WEB-INF/web.xml
@@ -41,6 +41,11 @@
         <servlet-name>auth</servlet-name>
         <jsp-file>/auth.jsp</jsp-file>
     </servlet>
+
+    <servlet>
+        <servlet-name>home</servlet-name>
+        <jsp-file>/home.jsp</jsp-file>
+    </servlet>
     
     <servlet-mapping>
         <servlet-name>default</servlet-name>
@@ -67,6 +72,11 @@
         <url-pattern>/auth</url-pattern>
     </servlet-mapping>
 
+    <servlet-mapping>
+        <servlet-name>home</servlet-name>
+        <url-pattern>/authenticate</url-pattern>
+    </servlet-mapping>
+
     <servlet-mapping>
         <servlet-name>default</servlet-name>
         <url-pattern>/deployment.config.json</url-pattern>
diff --git a/apps/myaccount/webpack.config.js b/apps/myaccount/webpack.config.js
index dce7dbb82cd..8b0b47d7281 100644
--- a/apps/myaccount/webpack.config.js
+++ b/apps/myaccount/webpack.config.js
@@ -421,6 +421,12 @@ module.exports = (env) => {
                         force: true,
                         from: "auth.jsp",
                         to: "."
+                    },
+                    !isDeployedOnStaticServer && {
+                        context: path.join(__dirname, "src"),
+                        force: true,
+                        from: "index.jsp",
+                        to: "."
                     }
                 ].filter(Boolean)
             }),
@@ -429,7 +435,7 @@ module.exports = (env) => {
                     authorizationCode: "<%=request.getParameter(\"code\")%>",
                     contentType: "<%@ page language=\"java\" contentType=\"text/html; charset=UTF-8\" " +
                         "pageEncoding=\"UTF-8\" %>",
-                    filename: path.join(distFolder, "index.jsp"),
+                    filename: path.join(distFolder, "home.jsp"),
                     hash: true,
                     importSuperTenantConstant: !isDeployedOnExternalServer
                         ? "<%@ page import=\"static org.wso2.carbon.utils.multitenancy." +
@@ -454,7 +460,7 @@ module.exports = (env) => {
                     superTenantConstant: !isDeployedOnExternalServer
                         ? "<%=SUPER_TENANT_DOMAIN_NAME%>"
                         : "",
-                    template: path.join(__dirname, "src", "index.jsp"),
+                    template: path.join(__dirname, "src", "home.jsp"),
                     tenantDelimiter: !isDeployedOnExternalServer
                         ? "\"/\"+'<%=TENANT_AWARE_URL_PREFIX%>'+\"/\""
                         : "",

From 692d98f421260f3b95740bef9a89b8ab947712db Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 11:21:03 +0530
Subject: [PATCH 79/82] Revert changes to index.jsp

---
 apps/console/src/index.jsp | 60 +++++++++++++++++++++-----------------
 1 file changed, 33 insertions(+), 27 deletions(-)

diff --git a/apps/console/src/index.jsp b/apps/console/src/index.jsp
index 29659760156..8d03126dd78 100644
--- a/apps/console/src/index.jsp
+++ b/apps/console/src/index.jsp
@@ -23,16 +23,21 @@
 <!DOCTYPE HTML>
 <html>
     <head>
-        <script src="https://unpkg.com/@asgardeo/auth-spa@latest/dist/asgardeo-spa.production.min.js"></script>
+        <script src="https://unpkg.com/@asgardeo/auth-spa@0.2.19/dist/asgardeo-spa.production.min.js"></script>
     </head>
     <body>
         <script>
             var userAccessedPath = window.location.href;
             var applicationDomain = window.location.origin;
-            var userTenant = userAccessedPath.split("/t/")[1] ?  userAccessedPath.split("/t/")[1].split("/")[0] : null;
-
-            var serverOrigin = "<%=serverUrl%>";
 
+            var serverOrigin = "<%= htmlWebpackPlugin.options.serverUrl %>";
+            var authorizationCode = "<%= htmlWebpackPlugin.options.authorizationCode %>" != "null" 
+                                        ? "<%= htmlWebpackPlugin.options.authorizationCode %>" 
+                                        : null;
+            var authSessionState = "<%= htmlWebpackPlugin.options.sessionState %>" != "null" 
+                                        ? "<%= htmlWebpackPlugin.options.sessionState %>" 
+                                        : null;
+            
             function getApiPath(path) {
                 if(path) {
                     return serverOrigin + path;
@@ -40,44 +45,45 @@
 
                 return serverOrigin;
             }
-
+            
             var auth = AsgardeoAuth.AsgardeoSPAClient.getInstance();
 
             var authConfig = {
-                signInRedirectURL: applicationDomain.replace(/\/+$/, ''),
+                signInRedirectURL: applicationDomain.replace(/\/+$/, '') + "/" + "<%= htmlWebpackPlugin.options.basename %>",
                 signOutRedirectURL: applicationDomain.replace(/\/+$/, ''),
-                clientID: "CONSOLE",
+                clientID: "<%= htmlWebpackPlugin.options.clientID %>",
                 serverOrigin: getApiPath(),
                 responseMode: "form_post",
                 scope: ["openid SYSTEM"],
                 storage: "webWorker",
-                endpoints: {
-                    authorizationEndpoint: getApiPath(userTenant ? "/t/a/oauth2/authorize?ut="+userTenant.replace(/\/+$/, '') : "/t/a/oauth2/authorize"),
-                    clockTolerance: 300,
-                    jwksEndpointURL: undefined,
-                    logoutEndpointURL: getApiPath("/t/a/oidc/logout"),
-                    oidcSessionIFrameEndpointURL: getApiPath("/t/a/oidc/checksession"),
-                    serverOrigin: getApiPath(),
-                    tokenEndpointURL: undefined,
-                    tokenRevocationEndpointURL: undefined,
-                    wellKnownEndpointURL: undefined,
-                },
                 enablePKCE: true,
                 overrideWellEndpointConfig: true
             }
 
-            auth.initialize(authConfig);
+            var isSilentSignInDisabled = userAccessedPath.includes("disable_silent_sign_in");
+            var isSignOutSuccess = userAccessedPath.includes("sign_out_success");
 
-            auth.trySignInSilently().then(res => {
-                if(res === false) {
-                    auth.signIn();
+            if(isSignOutSuccess) {
+                window.location.href = applicationDomain + '/' + "<%= htmlWebpackPlugin.options.basename %>"
+            }
+            
+            if(isSilentSignInDisabled) {
+                window.location.href = applicationDomain + '/' + "<%= htmlWebpackPlugin.options.basename %>" + '/authenticate?disable_silent_sign_in=true&invite_user=true';
+            } else {
+
+                if(authorizationCode) {
+                    sessionStorage.setItem("userAccessedPath", userAccessedPath.split(window.origin)[1]);
+
+                    window.location.href = applicationDomain + '/' + "<%= htmlWebpackPlugin.options.basename %>" + '/authenticate?code=' + authorizationCode +
+                                '&session_state='+authSessionState;
                 } else {
-                    sessionStorage.setItem("auth_callback_url_console", userAccessedPath.split(window.origin)[1])
-                    sessionStorage.setItem("userAccessedPath", userAccessedPath.split(window.origin)[1])
-                    
-                    window.location = '/authenticate';
+                    sessionStorage.setItem("auth_callback_url_console", 
+                        userAccessedPath.split(window.origin)[1] 
+                            ? userAccessedPath.split(window.origin)[1].replace(/\/+$/, '') : null);
+                    auth.initialize(authConfig);
+                    auth.signIn();
                 }
-            });
+            }
         </script>
     </body>
 </html>

From 01bf97246e3b16c78b3a423ca5d1875e25fbdaa8 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 11:23:59 +0530
Subject: [PATCH 80/82] Revert changes to myaccount index.jsp

---
 apps/myaccount/src/index.jsp | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/apps/myaccount/src/index.jsp b/apps/myaccount/src/index.jsp
index ec5308dd307..d9918b73a17 100644
--- a/apps/myaccount/src/index.jsp
+++ b/apps/myaccount/src/index.jsp
@@ -43,17 +43,13 @@
                                         : null;
             var authSessionState = "<%= htmlWebpackPlugin.options.sessionState %>" != "null" 
                                         ? "<%= htmlWebpackPlugin.options.sessionState %>" 
+                                        : null;
 
-            var serverOrigin = "<%=serverUrl%>";
-
+            function getApiPath(path) {
                 if(path) {
                     return serverOrigin + path;
                 }
 
-
-        <link href="<%= htmlWebpackPlugin.options.publicPath %>/libs/themes/default/theme.<%= htmlWebpackPlugin.options.themeHash %>.min.css" rel="stylesheet" type="text/css"/>
-        <link rel="shortcut icon" href="<%= htmlWebpackPlugin.options.publicPath %>/libs/themes/default/assets/images/branding/favicon.ico" />
-
                 return serverOrigin;
             }
 

From 3a34022fc1aa446ff6506b753779705810a3cfc4 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 11:25:16 +0530
Subject: [PATCH 81/82] Revert changes to myaccount webpack config

---
 apps/myaccount/webpack.config.js | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/apps/myaccount/webpack.config.js b/apps/myaccount/webpack.config.js
index 8b0b47d7281..cd12da819cf 100644
--- a/apps/myaccount/webpack.config.js
+++ b/apps/myaccount/webpack.config.js
@@ -421,12 +421,6 @@ module.exports = (env) => {
                         force: true,
                         from: "auth.jsp",
                         to: "."
-                    },
-                    !isDeployedOnStaticServer && {
-                        context: path.join(__dirname, "src"),
-                        force: true,
-                        from: "index.jsp",
-                        to: "."
                     }
                 ].filter(Boolean)
             }),

From c85b8147fef54a451c123edb302ede7763ecdde7 Mon Sep 17 00:00:00 2001
From: Thivi <theviyanthan@outlook.com>
Date: Thu, 17 Feb 2022 11:26:19 +0530
Subject: [PATCH 82/82] Revert changes to console webpack config

---
 apps/console/webpack.config.js | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/apps/console/webpack.config.js b/apps/console/webpack.config.js
index e3cdda0a9ef..58709933a8b 100755
--- a/apps/console/webpack.config.js
+++ b/apps/console/webpack.config.js
@@ -452,12 +452,6 @@ module.exports = (env) => {
                         force: true,
                         from: "auth.jsp",
                         to: "."
-                    },
-                    !isDeployedOnStaticServer && {
-                        context: path.join(__dirname, "src"),
-                        force: true,
-                        from: "index.jsp",
-                        to: "."
                     }
                 ].filter(Boolean)
             }),