From 03b15259628e9151398ddde21412f04e33d38705 Mon Sep 17 00:00:00 2001 From: Sylvain <35365065+sanderegg@users.noreply.github.com> Date: Mon, 15 Jun 2020 23:06:56 +0200 Subject: [PATCH 01/43] add traefik endpoint to api-gateway (#1555) added mockserver to simulate apiserver service fix e2e test: check for api-gateway --- .../src/pytest_simcore/traefik_service.py | 17 ++++++---- .../src/simcore_service_director/producer.py | 2 +- services/docker-compose.local.yml | 6 ++-- services/docker-compose.yml | 32 ++++++++++++++++--- tests/swarm-deploy/test_swarm_runs.py | 1 + 5 files changed, 44 insertions(+), 14 deletions(-) diff --git a/packages/pytest-simcore/src/pytest_simcore/traefik_service.py b/packages/pytest-simcore/src/pytest_simcore/traefik_service.py index 93548fdf9af..3e9ee90d987 100644 --- a/packages/pytest-simcore/src/pytest_simcore/traefik_service.py +++ b/packages/pytest-simcore/src/pytest_simcore/traefik_service.py @@ -15,22 +15,23 @@ @pytest.fixture(scope="module") -def traefik_endpoints(docker_stack: Dict, devel_environ: Dict) -> Tuple[URL, URL]: +def traefik_endpoints(docker_stack: Dict, devel_environ: Dict) -> Tuple[URL, URL, URL]: """get the endpoint for the given simcore_service. NOTE: simcore_service defined as a parametrization """ assert "simcore_traefik" in docker_stack["services"] - api_endpoint = f"127.0.0.1:{get_service_published_port('traefik', 8080)}" + traefik_api_endpoint = f"127.0.0.1:{get_service_published_port('traefik', 8080)}" webserver_endpoint = f"127.0.0.1:{get_service_published_port('traefik', 80)}" - return (URL(f"http://{api_endpoint}"), URL(f"http://{webserver_endpoint}")) + apiserver_endpoint = f"127.0.0.1:{get_service_published_port('traefik', 10081)}" + return (URL(f"http://{traefik_api_endpoint}"), URL(f"http://{webserver_endpoint}"), URL(f"http://{apiserver_endpoint}")) @pytest.fixture(scope="function") async def traefik_service( - loop, traefik_endpoints: Tuple[URL, URL], docker_stack: Dict -) -> URL: - api_endpoint, webserver_endpoint = traefik_endpoints - await wait_till_traefik_responsive(api_endpoint) + loop, traefik_endpoints: Tuple[URL, URL, URL], docker_stack: Dict +) -> Tuple[URL, URL, URL]: + traefik_api_endpoint, webserver_endpoint, apiserver_endpoint = traefik_endpoints + await wait_till_traefik_responsive(traefik_api_endpoint) yield traefik_endpoints @@ -47,3 +48,5 @@ async def wait_till_traefik_responsive(api_endpoint: URL): assert "service" in proxied_service if "webserver" in proxied_service["service"]: assert proxied_service["status"] == "enabled" + elif "api-gateway" in proxied_service["service"]: + assert proxied_service["status"] == "enabled" diff --git a/services/director/src/simcore_service_director/producer.py b/services/director/src/simcore_service_director/producer.py index e02dc814c11..70247f8b743 100644 --- a/services/director/src/simcore_service_director/producer.py +++ b/services/director/src/simcore_service_director/producer.py @@ -176,7 +176,7 @@ async def _create_docker_service_params( f"traefik.http.routers.{service_name}.rule": f"PathPrefix(`/x/{node_uuid}`)", f"traefik.http.routers.{service_name}.entrypoints": "http", f"traefik.http.routers.{service_name}.priority": "10", - f"traefik.http.routers.{service_name}.middlewares": "gzip@docker", + f"traefik.http.routers.{service_name}.middlewares": f"{config.SWARM_STACK_NAME}_gzip@docker", }, "networks": [internal_network_id] if internal_network_id else [], } diff --git a/services/docker-compose.local.yml b/services/docker-compose.local.yml index b99946792ed..9b1db0ca2ef 100644 --- a/services/docker-compose.local.yml +++ b/services/docker-compose.local.yml @@ -83,6 +83,8 @@ services: ports: - target: 80 published: 9081 + - target: 10081 + published: 10081 - target: 8080 published: 8080 deploy: @@ -94,7 +96,7 @@ services: - traefik.http.routers.${SWARM_STACK_NAME}_api_internal.service=api@internal - traefik.http.routers.${SWARM_STACK_NAME}_api_internal.rule=PathPrefix(`/dashboard`) || PathPrefix(`/api`) - traefik.http.routers.${SWARM_STACK_NAME}_api_internal.entrypoints=traefik_monitor - - traefik.http.routers.${SWARM_STACK_NAME}_api_internal.middlewares=gzip@docker + - traefik.http.routers.${SWARM_STACK_NAME}_api_internal.middlewares=${SWARM_STACK_NAME}_gzip@docker - traefik.http.services.${SWARM_STACK_NAME}_api_internal.loadbalancer.server.port=8080 whoami: @@ -108,4 +110,4 @@ services: - traefik.http.services.${SWARM_STACK_NAME}_whoami.loadbalancer.server.port=80 - traefik.http.routers.${SWARM_STACK_NAME}_whoami.rule=PathPrefix(`/whoami`) - traefik.http.routers.${SWARM_STACK_NAME}_whoami.entrypoints=traefik_monitor - - traefik.http.routers.${SWARM_STACK_NAME}_whoami.middlewares=gzip@docker + - traefik.http.routers.${SWARM_STACK_NAME}_whoami.middlewares=${SWARM_STACK_NAME}_gzip@docker diff --git a/services/docker-compose.yml b/services/docker-compose.yml index 78d68183cfa..aea850e08b9 100644 --- a/services/docker-compose.yml +++ b/services/docker-compose.yml @@ -1,5 +1,27 @@ version: "3.7" services: + api-gateway: + # get info here: https://www.mock-server.com + image: mockserver/mockserver + init: true + environment: + - MOCKSERVER_LIVENESS_HTTP_GET_PATH=/live + deploy: + labels: + - io.simcore.zone=${TRAEFIK_SIMCORE_ZONE} + # gzip compression + - traefik.http.middlewares.${SWARM_STACK_NAME}_gzip.compress=true + # ssl header necessary so that socket.io upgrades correctly from polling to websocket mode. the middleware must be attached to the right connection. + - traefik.http.middlewares.${SWARM_STACK_NAME}_sslheader.headers.customrequestheaders.X-Forwarded-Proto=http + - traefik.enable=true + - traefik.http.services.${SWARM_STACK_NAME}_api-gateway.loadbalancer.server.port=1080 + - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.rule=hostregexp(`{host:.+}`) + - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.entrypoints=simcore_api + - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.priority=1 + - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.middlewares=${SWARM_STACK_NAME}_gzip@docker, ${SWARM_STACK_NAME}_sslheader + networks: + - default + catalog: image: ${DOCKER_REGISTRY:-itisfoundation}/catalog:${DOCKER_IMAGE_TAG:-latest} init: true @@ -88,15 +110,15 @@ services: labels: - io.simcore.zone=${TRAEFIK_SIMCORE_ZONE} # gzip compression - - traefik.http.middlewares.gzip.compress=true + - traefik.http.middlewares.${SWARM_STACK_NAME}_gzip.compress=true # ssl header necessary so that socket.io upgrades correctly from polling to websocket mode. the middleware must be attached to the right connection. - - traefik.http.middlewares.simcore_sslheader.headers.customrequestheaders.X-Forwarded-Proto=http + - traefik.http.middlewares.${SWARM_STACK_NAME}_sslheader.headers.customrequestheaders.X-Forwarded-Proto=http - traefik.enable=true - traefik.http.services.${SWARM_STACK_NAME}_webserver.loadbalancer.server.port=8080 - traefik.http.routers.${SWARM_STACK_NAME}_webserver.rule=hostregexp(`{host:.+}`) - traefik.http.routers.${SWARM_STACK_NAME}_webserver.entrypoints=http - traefik.http.routers.${SWARM_STACK_NAME}_webserver.priority=1 - - traefik.http.routers.${SWARM_STACK_NAME}_webserver.middlewares=gzip@docker, simcore_sslheader@docker + - traefik.http.routers.${SWARM_STACK_NAME}_webserver.middlewares=${SWARM_STACK_NAME}_gzip@docker, ${SWARM_STACK_NAME}_sslheader networks: - default - interactive_services_subnet @@ -227,7 +249,7 @@ services: - default traefik: - image: traefik:v2.2.0 + image: traefik:v2.2.1 init: true command: - "--api=true" @@ -241,6 +263,8 @@ services: - "--metrics.prometheus.entryPoint=metrics" - "--entryPoints.http.address=:80" - "--entryPoints.http.forwardedHeaders.insecure" + - "--entryPoints.simcore_api.address=:10081" + - "--entryPoints.simcore_api.forwardedHeaders.insecure" - "--entryPoints.traefik_monitor.address=:8080" - "--entryPoints.traefik_monitor.forwardedHeaders.insecure" - "--providers.docker.endpoint=unix:///var/run/docker.sock" diff --git a/tests/swarm-deploy/test_swarm_runs.py b/tests/swarm-deploy/test_swarm_runs.py index 6bffe2145ba..d1025f4632e 100644 --- a/tests/swarm-deploy/test_swarm_runs.py +++ b/tests/swarm-deploy/test_swarm_runs.py @@ -27,6 +27,7 @@ docker_compose_service_names = [ + "api-gateway", "catalog", "director", "sidecar", From 680eb5952e8ddacc3cae7d1555253680a9153290 Mon Sep 17 00:00:00 2001 From: Sylvain <35365065+sanderegg@users.noreply.github.com> Date: Wed, 17 Jun 2020 08:58:59 +0200 Subject: [PATCH 02/43] added simcore_webserver_service in pytest simcore package (#1563) ensure the database is filled up --- .../simcore_webserver_service.py | 43 +++++++++++++++++++ tests/swarm-deploy/conftest.py | 9 +++- tests/swarm-deploy/test_swarm_runs.py | 18 +++++++- 3 files changed, 68 insertions(+), 2 deletions(-) create mode 100644 packages/pytest-simcore/src/pytest_simcore/simcore_webserver_service.py diff --git a/packages/pytest-simcore/src/pytest_simcore/simcore_webserver_service.py b/packages/pytest-simcore/src/pytest_simcore/simcore_webserver_service.py new file mode 100644 index 00000000000..0d745698ac9 --- /dev/null +++ b/packages/pytest-simcore/src/pytest_simcore/simcore_webserver_service.py @@ -0,0 +1,43 @@ +# pylint:disable=unused-variable +# pylint:disable=unused-argument +# pylint:disable=redefined-outer-name + +from typing import Dict + +import aiohttp +import pytest +import tenacity +from yarl import URL + +from servicelib.minio_utils import MinioRetryPolicyUponInitialization + +from .helpers.utils_docker import get_service_published_port + + +@pytest.fixture(scope="module") +def webserver_endpoint(docker_stack: Dict, devel_environ: Dict) -> URL: + assert "simcore_webserver" in docker_stack["services"] + endpoint = f"127.0.0.1:{get_service_published_port('webserver', '8080')}" + + return URL(f"http://{endpoint}") + + +@pytest.fixture(scope="function") +async def webserver_service(webserver_endpoint: URL, docker_stack: Dict) -> URL: + await wait_till_webserver_responsive(webserver_endpoint) + + yield webserver_endpoint + + +# HELPERS -- + +# TODO: this can be used by ANY of the simcore services! +@tenacity.retry(**MinioRetryPolicyUponInitialization().kwargs) +async def wait_till_webserver_responsive(webserver_endpoint: URL): + async with aiohttp.ClientSession() as session: + async with session.get(webserver_endpoint.with_path("/v0/")) as resp: + assert resp.status == 200 + data = await resp.json() + assert "data" in data + assert "status" in data["data"] + assert data["data"]["status"] == "SERVICE_RUNNING" diff --git a/tests/swarm-deploy/conftest.py b/tests/swarm-deploy/conftest.py index 6b91f2d17dc..8068ff98ae2 100644 --- a/tests/swarm-deploy/conftest.py +++ b/tests/swarm-deploy/conftest.py @@ -19,7 +19,8 @@ "pytest_simcore.rabbit_service", "pytest_simcore.postgres_service", "pytest_simcore.minio_service", - "pytest_simcore.traefik_service" + "pytest_simcore.traefik_service", + "pytest_simcore.simcore_webserver_service", ] log = logging.getLogger(__name__) @@ -44,8 +45,14 @@ def prepare_all_services( return services +@pytest.fixture(scope="module") +def create_db_on_start(devel_environ: Dict[str, str]): + devel_environ["WEBSERVER_DB_INITTABLES"] = "1" + + @pytest.fixture(scope="module") def make_up_prod( + create_db_on_start, prepare_all_services: Dict, simcore_docker_compose: Dict, ops_docker_compose: Dict, diff --git a/tests/swarm-deploy/test_swarm_runs.py b/tests/swarm-deploy/test_swarm_runs.py index d1025f4632e..9b5208117e7 100644 --- a/tests/swarm-deploy/test_swarm_runs.py +++ b/tests/swarm-deploy/test_swarm_runs.py @@ -12,6 +12,7 @@ from typing import Dict, List import pytest +import tenacity from docker import DockerClient from docker.models.services import Service from yarl import URL @@ -146,10 +147,25 @@ def test_core_service_running( ) +RETRY_WAIT_SECS = 2 +RETRY_COUNT = 20 + + def test_check_serve_root(loop, make_up_prod: Dict, traefik_service: URL): + req = urllib.request.Request("http://127.0.0.1:9081/") try: - resp = urllib.request.urlopen(req) + # it takes a bit of time until traefik sets up the correct proxy and the webserver takes time to start + @tenacity.retry( + wait=tenacity.wait_fixed(RETRY_WAIT_SECS), + stop=tenacity.stop_after_attempt(RETRY_COUNT), + before_sleep=tenacity.before_sleep_log(logger, logging.INFO), + ) + def check_root(request): + resp = urllib.request.urlopen(req) + return resp + + resp = check_root(req) charset = resp.info().get_content_charset() content = resp.read().decode(charset) # TODO: serch osparc-simcore commit id e.g. 'osparc-simcore v817d82e' From 821c8e61a5d23e4480781db669b19217c8ad220f Mon Sep 17 00:00:00 2001 From: Pedro Crespo <32402063+pcrespov@users.noreply.github.com> Date: Wed, 17 Jun 2020 13:38:44 +0200 Subject: [PATCH 03/43] Is1269/api-server upgrade (#1475) - new api-server refactored - api-server connected to simcore-stack --- .codeclimate.yml | 1 + .env-devel | 1 + .github/CODEOWNERS | 2 +- .github/workflows/ci-testing-deploy.yml | 18 +- .pylintrc | 2 +- .travis.yml | 16 +- Makefile | 17 +- .../{api-gateway.bash => api-server.bash} | 6 +- ci/helpers/install_pylint.bash | 3 +- .../{api-gateway.bash => api-server.bash} | 10 +- .../src/simcore_postgres_database/cli.py | 5 +- .../models/api_keys.py | 2 +- packages/postgres-database/tests/conftest.py | 12 +- .../tests/test_delete_projects_and_users.py | 52 +++ .../postgres-database/tests/test_groups.py | 3 +- .../src/pytest_simcore/traefik_service.py | 2 +- scripts/common.Makefile | 4 +- scripts/demo/create_portal_markdown.py | 8 +- ...es-{{ deploy }}-{{ datestamp }}.md.jinja2 | 22 ++ scripts/openapi-generator-cli.bash | 3 + services/api-gateway/.cookiecutterrc | 20 -- services/api-gateway/.env-devel | 13 - services/api-gateway/Makefile | 63 ---- services/api-gateway/VERSION | 1 - services/api-gateway/client | 1 - services/api-gateway/docker/entrypoint.sh | 85 ----- services/api-gateway/requirements/_base.in | 14 - services/api-gateway/requirements/_base.txt | 48 --- services/api-gateway/requirements/_test.txt | 84 ----- services/api-gateway/setup.cfg | 10 - .../simcore_service_api_gateway/__init__.py | 4 - .../simcore_service_api_gateway/__main__.py | 29 -- .../application.py | 106 ------- .../src/simcore_service_api_gateway/auth.py | 94 ------ .../auth_security.py | 89 ------ .../simcore_service_api_gateway/crud_users.py | 30 -- .../src/simcore_service_api_gateway/db.py | 98 ------ .../endpoints_auth.py | 57 ---- .../endpoints_check.py | 22 -- .../endpoints_studies.py | 53 ---- .../endpoints_user.py | 16 - .../src/simcore_service_api_gateway/main.py | 61 ---- .../simcore_service_api_gateway/schemas.py | 24 -- .../simcore_service_api_gateway/settings.py | 69 ---- .../utils/fastapi_shortcuts.py | 32 -- services/api-gateway/tests/unit/conftest.py | 40 --- .../tests/unit/test_auth_security.py | 7 - .../tests/unit/test_endpoints_check.py | 37 --- .../api-gateway/tests/unit/test_settings.py | 20 -- services/api-server/.env-devel | 24 ++ services/api-server/.gitignore | 4 + .../{api-gateway => api-server}/Dockerfile | 50 +-- services/api-server/Makefile | 141 +++++++++ .../{api-gateway => api-server}/README.md | 25 +- services/api-server/VERSION | 1 + .../docker/boot.sh | 17 +- services/api-server/docker/entrypoint.sh | 76 +++++ .../docker/healthcheck.py | 1 - services/api-server/openapi.json | 296 ++++++++++++++++++ .../requirements/Makefile | 0 services/api-server/requirements/_base.in | 22 ++ services/api-server/requirements/_base.txt | 65 ++++ .../requirements/_test.in | 12 +- services/api-server/requirements/_test.txt | 107 +++++++ .../requirements/ci.txt | 3 +- .../requirements/dev.txt | 3 +- .../requirements/prod.txt | 5 +- .../sandbox/_test_client_sdk.py} | 44 +-- services/api-server/sandbox/_test_schemas.py | 21 ++ services/api-server/sandbox/api-key-auth.py | 38 +++ services/api-server/sandbox/get_app_state.py | 24 ++ .../api-server/sandbox/model_conversions.py | 91 ++++++ .../api-server/sandbox/pydantic-settings.py | 51 +++ services/api-server/sandbox/simple_app.py | 45 +++ services/api-server/setup.cfg | 7 + services/{api-gateway => api-server}/setup.py | 6 +- .../simcore_service_api_server/__init__.py | 4 + .../simcore_service_api_server/__main__.py | 35 +++ .../__version__.py | 4 +- .../api}/__init__.py | 0 .../api/dependencies/__init__.py} | 0 .../api/dependencies/auth_api_key.py | 46 +++ .../api/dependencies/auth_basic.py | 48 +++ .../api/dependencies/auth_oath2.py | 100 ++++++ .../api/dependencies/authentication.py | 3 + .../api/dependencies/database.py | 21 ++ .../api/dependencies/webserver.py | 55 ++++ .../api/errors/__init__.py} | 0 .../api/errors/http_error.py | 7 + .../api/errors/validation_error.py | 26 ++ .../simcore_service_api_server/api/root.py | 15 + .../api/routes/__init__.py | 0 .../api/routes/authentication/__init__.py | 0 .../api/routes/authentication/api_key.py | 15 + .../api/routes/authentication/oauth2.py | 77 +++++ .../api/routes/health.py | 8 + .../api/routes/meta.py | 15 + .../api/routes/studies.py | 50 +++ .../api/routes/users.py | 64 ++++ .../core/__init__.py | 0 .../core/application.py | 61 ++++ .../simcore_service_api_server/core/errors.py | 0 .../simcore_service_api_server/core/events.py | 40 +++ .../core/openapi.py | 65 ++++ .../simcore_service_api_server/core/redoc.py | 51 +++ .../core/settings.py | 107 +++++++ .../simcore_service_api_server/db/__init__.py | 0 .../simcore_service_api_server/db/errors.py | 2 + .../simcore_service_api_server/db/events.py | 54 ++++ .../db/repositories/__init__.py | 0 .../db/repositories/api_keys.py | 38 +++ .../db/repositories/base.py | 15 + .../db/repositories/users.py | 107 +++++++ .../simcore_service_api_server/db/tables.py | 16 + .../models/__init__.py | 0 .../models/domain/__init__.py | 0 .../models/domain/api_keys.py | 15 + .../models/domain/groups.py | 15 + .../models/domain/users.py | 32 ++ .../models/schemas/__init__.py | 0 .../models/schemas/api_keys.py | 12 + .../models/schemas/meta.py | 27 ++ .../models/schemas/profiles.py | 38 +++ .../models/schemas/tokens.py | 25 ++ .../models/schemas/users.py | 12 + .../services/__init__.py | 0 .../services/jwt.py | 66 ++++ .../services}/remote_debug.py | 12 +- .../services/security.py} | 20 +- .../services/serialization.py | 19 ++ .../services/webserver.py | 52 +++ .../api-server/tests/integration/.gitkeep | 0 services/api-server/tests/unit/_helpers.py | 65 ++++ services/api-server/tests/unit/conftest.py | 246 +++++++++++++++ .../api-server/tests/unit/test_api_meta.py | 19 ++ .../api-server/tests/unit/test_api_user.py | 51 +++ .../tests/unit/test_code_syntax.py | 4 +- .../tests/unit/test_fake_generator.py | 18 ++ services/api-server/tests/unit/test_jwt.py | 35 +++ .../api-server/tests/unit/test_security.py | 14 + .../api-server/tests/unit/test_settings.py | 36 +++ .../tests/utils/docker-compose.yml | 2 +- services/api-server/tests/utils/init-pg.py | 108 +++++++ .../tools/gen_api.py | 2 +- .../tools/templates/cruds.py.jinja2 | 0 .../tools/templates/orm.py.jinja2 | 0 .../resource_custom_methods.py.jinja2 | 3 +- .../resource_standard_methods.py.jinja2 | 6 +- .../tools/templates/schemas.py.jinja2 | 0 .../tools/templates/test_endpoints.py.jinja2 | 2 +- services/catalog/Makefile | 2 +- services/catalog/docker/healthcheck.py | 1 - .../src/simcore_service_catalog/__main__.py | 2 +- .../src/simcore_service_catalog/config.py | 6 +- .../simcore_service_catalog/endpoints/dags.py | 2 +- .../src/simcore_service_catalog/main.py | 3 +- .../src/simcore_service_catalog/orm.py | 1 - .../schemas/schemas_dags.py | 4 +- .../simcore_service_catalog/utils/helpers.py | 1 - .../utils/remote_debug.py | 13 +- services/catalog/tests/unit/test_package.py | 3 +- services/docker-compose-build.yml | 14 +- services/docker-compose.devel.yml | 8 + services/docker-compose.local.yml | 5 + services/docker-compose.yml | 23 +- services/sidecar/Dockerfile | 2 +- .../simcore_service_sidecar/__version__.py | 2 +- .../src/simcore_service_webserver/session.py | 2 +- .../server/tests/unit/with_dbs/test_login.py | 67 +++- tests/swarm-deploy/test_swarm_runs.py | 2 +- 170 files changed, 3440 insertions(+), 1423 deletions(-) rename ci/github/unit-testing/{api-gateway.bash => api-server.bash} (69%) rename ci/travis/unit-testing/{api-gateway.bash => api-server.bash} (82%) create mode 100644 scripts/demo/templates/invitation-codes-{{ deploy }}-{{ datestamp }}.md.jinja2 delete mode 100644 services/api-gateway/.cookiecutterrc delete mode 100644 services/api-gateway/.env-devel delete mode 100644 services/api-gateway/Makefile delete mode 100644 services/api-gateway/VERSION delete mode 160000 services/api-gateway/client delete mode 100755 services/api-gateway/docker/entrypoint.sh delete mode 100644 services/api-gateway/requirements/_base.in delete mode 100644 services/api-gateway/requirements/_base.txt delete mode 100644 services/api-gateway/requirements/_test.txt delete mode 100644 services/api-gateway/setup.cfg delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/__init__.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/__main__.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/application.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/auth.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/auth_security.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/crud_users.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/db.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/endpoints_auth.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/endpoints_check.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/endpoints_studies.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/endpoints_user.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/main.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/schemas.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/settings.py delete mode 100644 services/api-gateway/src/simcore_service_api_gateway/utils/fastapi_shortcuts.py delete mode 100644 services/api-gateway/tests/unit/conftest.py delete mode 100644 services/api-gateway/tests/unit/test_auth_security.py delete mode 100644 services/api-gateway/tests/unit/test_endpoints_check.py delete mode 100644 services/api-gateway/tests/unit/test_settings.py create mode 100644 services/api-server/.env-devel create mode 100644 services/api-server/.gitignore rename services/{api-gateway => api-server}/Dockerfile (67%) create mode 100644 services/api-server/Makefile rename services/{api-gateway => api-server}/README.md (53%) create mode 100644 services/api-server/VERSION rename services/{api-gateway => api-server}/docker/boot.sh (61%) create mode 100755 services/api-server/docker/entrypoint.sh rename services/{api-gateway => api-server}/docker/healthcheck.py (99%) create mode 100644 services/api-server/openapi.json rename services/{api-gateway => api-server}/requirements/Makefile (100%) create mode 100644 services/api-server/requirements/_base.in create mode 100644 services/api-server/requirements/_base.txt rename services/{api-gateway => api-server}/requirements/_test.in (66%) create mode 100644 services/api-server/requirements/_test.txt rename services/{api-gateway => api-server}/requirements/ci.txt (81%) rename services/{api-gateway => api-server}/requirements/dev.txt (90%) rename services/{api-gateway => api-server}/requirements/prod.txt (55%) rename services/{api-gateway/tests/unit/test_client_sdk.py => api-server/sandbox/_test_client_sdk.py} (91%) create mode 100644 services/api-server/sandbox/_test_schemas.py create mode 100644 services/api-server/sandbox/api-key-auth.py create mode 100644 services/api-server/sandbox/get_app_state.py create mode 100644 services/api-server/sandbox/model_conversions.py create mode 100644 services/api-server/sandbox/pydantic-settings.py create mode 100644 services/api-server/sandbox/simple_app.py create mode 100644 services/api-server/setup.cfg rename services/{api-gateway => api-server}/setup.py (88%) create mode 100644 services/api-server/src/simcore_service_api_server/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/__main__.py rename services/{api-gateway/src/simcore_service_api_gateway => api-server/src/simcore_service_api_server}/__version__.py (68%) rename services/{api-gateway/src/simcore_service_api_gateway/utils => api-server/src/simcore_service_api_server/api}/__init__.py (100%) rename services/{api-gateway/tests/integration/.gitkeep => api-server/src/simcore_service_api_server/api/dependencies/__init__.py} (100%) create mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py create mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py create mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py create mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py create mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/database.py create mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py rename services/{api-gateway/tools/templates/schemas.py.jinja2 => api-server/src/simcore_service_api_server/api/errors/__init__.py} (100%) create mode 100644 services/api-server/src/simcore_service_api_server/api/errors/http_error.py create mode 100644 services/api-server/src/simcore_service_api_server/api/errors/validation_error.py create mode 100644 services/api-server/src/simcore_service_api_server/api/root.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/authentication/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/health.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/meta.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/studies.py create mode 100644 services/api-server/src/simcore_service_api_server/api/routes/users.py create mode 100644 services/api-server/src/simcore_service_api_server/core/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/core/application.py create mode 100644 services/api-server/src/simcore_service_api_server/core/errors.py create mode 100644 services/api-server/src/simcore_service_api_server/core/events.py create mode 100644 services/api-server/src/simcore_service_api_server/core/openapi.py create mode 100644 services/api-server/src/simcore_service_api_server/core/redoc.py create mode 100644 services/api-server/src/simcore_service_api_server/core/settings.py create mode 100644 services/api-server/src/simcore_service_api_server/db/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/db/errors.py create mode 100644 services/api-server/src/simcore_service_api_server/db/events.py create mode 100644 services/api-server/src/simcore_service_api_server/db/repositories/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py create mode 100644 services/api-server/src/simcore_service_api_server/db/repositories/base.py create mode 100644 services/api-server/src/simcore_service_api_server/db/repositories/users.py create mode 100644 services/api-server/src/simcore_service_api_server/db/tables.py create mode 100644 services/api-server/src/simcore_service_api_server/models/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/models/domain/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/models/domain/api_keys.py create mode 100644 services/api-server/src/simcore_service_api_server/models/domain/groups.py create mode 100644 services/api-server/src/simcore_service_api_server/models/domain/users.py create mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py create mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/meta.py create mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/profiles.py create mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/tokens.py create mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/users.py create mode 100644 services/api-server/src/simcore_service_api_server/services/__init__.py create mode 100644 services/api-server/src/simcore_service_api_server/services/jwt.py rename services/{api-gateway/src/simcore_service_api_gateway/utils => api-server/src/simcore_service_api_server/services}/remote_debug.py (76%) rename services/{api-gateway/src/simcore_service_api_gateway/utils/helpers.py => api-server/src/simcore_service_api_server/services/security.py} (55%) create mode 100644 services/api-server/src/simcore_service_api_server/services/serialization.py create mode 100644 services/api-server/src/simcore_service_api_server/services/webserver.py create mode 100644 services/api-server/tests/integration/.gitkeep create mode 100644 services/api-server/tests/unit/_helpers.py create mode 100644 services/api-server/tests/unit/conftest.py create mode 100644 services/api-server/tests/unit/test_api_meta.py create mode 100644 services/api-server/tests/unit/test_api_user.py rename services/{api-gateway => api-server}/tests/unit/test_code_syntax.py (100%) create mode 100644 services/api-server/tests/unit/test_fake_generator.py create mode 100644 services/api-server/tests/unit/test_jwt.py create mode 100644 services/api-server/tests/unit/test_security.py create mode 100644 services/api-server/tests/unit/test_settings.py rename services/{api-gateway => api-server}/tests/utils/docker-compose.yml (93%) create mode 100644 services/api-server/tests/utils/init-pg.py rename services/{api-gateway => api-server}/tools/gen_api.py (99%) rename services/{api-gateway => api-server}/tools/templates/cruds.py.jinja2 (100%) rename services/{api-gateway => api-server}/tools/templates/orm.py.jinja2 (100%) rename services/{api-gateway => api-server}/tools/templates/resource_custom_methods.py.jinja2 (94%) rename services/{api-gateway => api-server}/tools/templates/resource_standard_methods.py.jinja2 (97%) create mode 100644 services/api-server/tools/templates/schemas.py.jinja2 rename services/{api-gateway => api-server}/tools/templates/test_endpoints.py.jinja2 (95%) diff --git a/.codeclimate.yml b/.codeclimate.yml index d9bd3b34903..32cc5ec7253 100644 --- a/.codeclimate.yml +++ b/.codeclimate.yml @@ -78,3 +78,4 @@ exclude_patterns: - "**/migrations/" - "**/*.js" - "**/pytest-simcore/" + - "**/sandbox/" diff --git a/.env-devel b/.env-devel index 8ca1cb110d0..033700f642c 100644 --- a/.env-devel +++ b/.env-devel @@ -47,6 +47,7 @@ TRACING_ZIPKIN_ENDPOINT=http://jaeger:9411 TRAEFIK_SIMCORE_ZONE=internal_simcore_stack +WEBSERVER_HOST=webserver WEBSERVER_LOGIN_REGISTRATION_CONFIRMATION_REQUIRED=0 WEBSERVER_LOGIN_REGISTRATION_INVITATION_REQUIRED=0 # python3 -c "from cryptography.fernet import Fernet; print(Fernet.generate_key())" diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 3c11d09f3d7..c1752821415 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -13,7 +13,7 @@ Makefile @pcrespov, @sanderegg /scripts/demo @odeimaiz, @pcrespov /scripts/json-schema-to-openapi-schema @sanderegg /scripts/template-projects @odeimaiz, @pcrespov -/services/api-gateway @pcrespov +/services/api-server @pcrespov /services/catalog @pcrespov /services/sidecar @pcrespov, @mguidon /services/web/client @odeimaiz, @oetiker, @ignapas diff --git a/.github/workflows/ci-testing-deploy.yml b/.github/workflows/ci-testing-deploy.yml index a862c5e279f..54c10604e1b 100644 --- a/.github/workflows/ci-testing-deploy.yml +++ b/.github/workflows/ci-testing-deploy.yml @@ -56,8 +56,8 @@ jobs: - name: test run: ./ci/github/unit-testing/api.bash test - unit-test-api-gateway: - name: Unit-testing api-gateway + unit-test-api-server: + name: Unit-testing api-server runs-on: ${{ matrix.os }} strategy: matrix: @@ -86,9 +86,9 @@ jobs: restore-keys: | ${{ runner.os }}-pip- - name: install - run: ./ci/github/unit-testing/api-gateway.bash install + run: ./ci/github/unit-testing/api-server.bash install - name: test - run: ./ci/github/unit-testing/api-gateway.bash test + run: ./ci/github/unit-testing/api-server.bash test - uses: codecov/codecov-action@v1 with: flags: unittests #optional @@ -96,12 +96,12 @@ jobs: run: | curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ./cc-test-reporter chmod +x ./cc-test-reporter - ./cc-test-reporter format-coverage -t coverage.py -o codeclimate.unit_api_gateway_coverage.json coverage.xml + ./cc-test-reporter format-coverage -t coverage.py -o codeclimate.unit_api_server_coverage.json coverage.xml - name: upload codeclimate coverage uses: actions/upload-artifact@v1 with: - name: unit_api_gateway_coverage - path: codeclimate.unit_api_gateway_coverage.json + name: unit_api_server_coverage + path: codeclimate.unit_api_server_coverage.json unit-test-catalog: name: Unit-testing catalog @@ -838,7 +838,7 @@ jobs: - uses: actions/checkout@v2 - uses: actions/download-artifact@v1 with: - name: unit_api_gateway_coverage + name: unit_api_server_coverage - uses: actions/download-artifact@v1 with: name: unit_catalog_coverage @@ -873,7 +873,7 @@ jobs: run: | mkdir all_coverages cp \ - unit_api_gateway_coverage/*.json \ + unit_api_server_coverage/*.json \ unit_catalog_coverage/*.json \ unit_director_coverage/*.json \ unit_sidecar_coverage/*.json \ diff --git a/.pylintrc b/.pylintrc index 0896b2147e2..dba7f3db517 100644 --- a/.pylintrc +++ b/.pylintrc @@ -3,7 +3,7 @@ # A comma-separated list of package or module names from where C extensions may # be loaded. Extensions are loading into the active Python interpreter and may # run arbitrary code -extension-pkg-whitelist= +extension-pkg-whitelist=pydantic # Add files or directories to the blacklist. They should be base names, not # paths. diff --git a/.travis.yml b/.travis.yml index 8d619454f95..d45442a6b4e 100644 --- a/.travis.yml +++ b/.travis.yml @@ -107,9 +107,9 @@ jobs: after_failure: - unbuffer bash ci/travis/unit-testing/webserver.bash after_failure - # test python, api-gateway ---------------------------------------------------------------------- + # test python, api-server ---------------------------------------------------------------------- - stage: build / unit-testing - name: api-gateway + name: api-server language: python python: - "3.6" @@ -118,17 +118,17 @@ jobs: - docker cache: pip before_install: - - sudo bash ci/travis/unit-testing/api-gateway.bash before_install + - sudo bash ci/travis/unit-testing/api-server.bash before_install install: - - unbuffer bash ci/travis/unit-testing/api-gateway.bash install + - unbuffer bash ci/travis/unit-testing/api-server.bash install before_script: - - unbuffer bash ci/travis/unit-testing/api-gateway.bash before_script + - unbuffer bash ci/travis/unit-testing/api-server.bash before_script script: - - unbuffer bash ci/travis/unit-testing/api-gateway.bash script + - unbuffer bash ci/travis/unit-testing/api-server.bash script after_success: - - unbuffer bash ci/travis/unit-testing/api-gateway.bash after_success + - unbuffer bash ci/travis/unit-testing/api-server.bash after_success after_failure: - - unbuffer bash ci/travis/unit-testing/api-gateway.bash after_failure + - unbuffer bash ci/travis/unit-testing/api-server.bash after_failure # test python, catalog ---------------------------------------------------------------------- - stage: build / unit-testing diff --git a/Makefile b/Makefile index 0dff48d7fa5..ef2dfa7fec8 100644 --- a/Makefile +++ b/Makefile @@ -29,7 +29,7 @@ $(if $(IS_WIN),$(error Windows is not supported in all recipes. Use WSL instead. # TODO: read from docker-compose file instead $(shell find $(CURDIR)/services -type f -name 'Dockerfile') # or $(notdir $(subst /Dockerfile,,$(wildcard services/*/Dockerfile))) ... SERVICES_LIST := \ - api-gateway \ + api-server \ catalog \ director \ sidecar \ @@ -46,10 +46,12 @@ export VCS_STATUS_CLIENT:= $(if $(shell git status -s),'modified/untracked','cle export BUILD_DATE := $(shell date -u +"%Y-%m-%dT%H:%M:%SZ") # api-versions -export CATALOG_API_VERSION := $(shell cat $(CURDIR)/services/catalog/VERSION) -export DIRECTOR_API_VERSION := $(shell cat $(CURDIR)/services/director/VERSION) -export STORAGE_API_VERSION := $(shell cat $(CURDIR)/services/storage/VERSION) -export WEBSERVER_API_VERSION:= $(shell cat $(CURDIR)/services/web/server/VERSION) +export API_SERVER_API_VERSION := $(shell cat $(CURDIR)/services/api-server/VERSION) +export CATALOG_API_VERSION := $(shell cat $(CURDIR)/services/catalog/VERSION) +export DIRECTOR_API_VERSION := $(shell cat $(CURDIR)/services/director/VERSION) +export STORAGE_API_VERSION := $(shell cat $(CURDIR)/services/storage/VERSION) +export WEBSERVER_API_VERSION := $(shell cat $(CURDIR)/services/web/server/VERSION) + # swarm stacks export SWARM_STACK_NAME ?= simcore @@ -189,7 +191,7 @@ endif up-devel: .stack-simcore-development.yml .init-swarm $(CLIENT_WEB_OUTPUT) ## Deploys local development stack, qx-compile+watch and ops stack (pass 'make ops_disabled=1 up-...' to disable) - # Start compile+watch front-end container [front-end] + # Start compile+watch front-end container [front-end] $(MAKE_C) services/web/client down compile-dev flags=--watch # Deploy stack $(SWARM_STACK_NAME) [back-end] @docker stack deploy -c $< $(SWARM_STACK_NAME) @@ -303,7 +305,8 @@ pylint: ## Runs python linter framework's wide /bin/bash -c "pylint --jobs=0 --rcfile=.pylintrc $(strip $(shell find services packages -iname '*.py' \ -not -path "*egg*" \ -not -path "*migration*" \ - -not -path "*contrib*" \ + -not -path "*datcore.py" \ + -not -path "*sandbox*" \ -not -path "*-sdk/python*" \ -not -path "*generated_code*" \ -not -path "*datcore.py" \ diff --git a/ci/github/unit-testing/api-gateway.bash b/ci/github/unit-testing/api-server.bash similarity index 69% rename from ci/github/unit-testing/api-gateway.bash rename to ci/github/unit-testing/api-server.bash index 37963e2c0fa..0e7d1bfd7c3 100755 --- a/ci/github/unit-testing/api-gateway.bash +++ b/ci/github/unit-testing/api-server.bash @@ -5,14 +5,14 @@ IFS=$'\n\t' install() { bash ci/helpers/ensure_python_pip.bash - pushd services/api-gateway; pip3 install -r requirements/ci.txt; popd + pushd services/api-server; pip3 install -r requirements/ci.txt; popd pip list --verbose } test() { - pytest --cov=simcore_service_api_gateway --durations=10 --cov-append \ + pytest --cov=simcore_service_api_server --durations=10 --cov-append \ --color=yes --cov-report=term-missing --cov-report=xml \ - -v -m "not travis" services/api-gateway/tests/unit + -v -m "not travis" services/api-server/tests/unit } # Check if the function exists (bash specific) diff --git a/ci/helpers/install_pylint.bash b/ci/helpers/install_pylint.bash index c35ab066f02..b4c4beb4c8f 100644 --- a/ci/helpers/install_pylint.bash +++ b/ci/helpers/install_pylint.bash @@ -14,7 +14,8 @@ pip3 install "$PYLINT_VERSION" # Minimal packages to pass linter pip install \ celery\ - docker + docker\ + pyjwt echo "INFO:" "$(pylint --version)" "@" "$(command -v pylint)" diff --git a/ci/travis/unit-testing/api-gateway.bash b/ci/travis/unit-testing/api-server.bash similarity index 82% rename from ci/travis/unit-testing/api-gateway.bash rename to ci/travis/unit-testing/api-server.bash index cba866ecda5..7be8367b474 100755 --- a/ci/travis/unit-testing/api-gateway.bash +++ b/ci/travis/unit-testing/api-server.bash @@ -3,7 +3,7 @@ set -euo pipefail IFS=$'\n\t' -FOLDER_CHECKS=(api/ api-gateway packages/ .travis.yml) +FOLDER_CHECKS=(api/ api-server packages/ .travis.yml) before_install() { if bash ci/travis/helpers/test-for-changes.bash "${FOLDER_CHECKS[@]}"; @@ -18,7 +18,7 @@ install() { if bash ci/travis/helpers/test-for-changes.bash "${FOLDER_CHECKS[@]}"; then bash ci/helpers/ensure_python_pip.bash - pushd services/api-gateway; pip3 install -r requirements/ci.txt; popd + pushd services/api-server; pip3 install -r requirements/ci.txt; popd fi } @@ -32,11 +32,11 @@ before_script() { script() { if bash ci/travis/helpers/test-for-changes.bash "${FOLDER_CHECKS[@]}"; then - pytest --cov=simcore_service_api_gateway --durations=10 --cov-append \ + pytest --cov=simcore_service_api_server --durations=10 --cov-append \ --color=yes --cov-report=term-missing --cov-report=xml \ - -v -m "not travis" services/api-gateway/tests/unit + -v -m "not travis" services/api-server/tests/unit else - echo "No changes detected. Skipping unit-testing of api-gateway." + echo "No changes detected. Skipping unit-testing of api-server." fi } diff --git a/packages/postgres-database/src/simcore_postgres_database/cli.py b/packages/postgres-database/src/simcore_postgres_database/cli.py index 95a26524a80..f86c97035b3 100644 --- a/packages/postgres-database/src/simcore_postgres_database/cli.py +++ b/packages/postgres-database/src/simcore_postgres_database/cli.py @@ -11,6 +11,7 @@ from copy import deepcopy from logging.config import fileConfig from pathlib import Path +from typing import Dict import alembic.command import click @@ -116,7 +117,7 @@ def main(): @click.option("--host") @click.option("--port", type=int) @click.option("--database", "-d") -def discover(**cli_inputs): +def discover(**cli_inputs) -> Dict: """ Discovers databases and caches configs in ~/.simcore_postgres_database.json (except if --no-cache)""" # NOTE: Do not add defaults to user, password so we get a chance to ping urls # TODO: if multiple candidates online, then query user to select @@ -173,7 +174,7 @@ def _test_swarm(): fg="green", ) - return + return cfg except Exception as err: inline_msg = str(err).replace("\n", ". ") diff --git a/packages/postgres-database/src/simcore_postgres_database/models/api_keys.py b/packages/postgres-database/src/simcore_postgres_database/models/api_keys.py index cd3ee02e421..55527db8666 100644 --- a/packages/postgres-database/src/simcore_postgres_database/models/api_keys.py +++ b/packages/postgres-database/src/simcore_postgres_database/models/api_keys.py @@ -1,4 +1,4 @@ -""" API keys to access public gateway +""" API keys to access public API These keys grant the client authorization to the API resources diff --git a/packages/postgres-database/tests/conftest.py b/packages/postgres-database/tests/conftest.py index f45d746514a..c14004d7fa5 100644 --- a/packages/postgres-database/tests/conftest.py +++ b/packages/postgres-database/tests/conftest.py @@ -3,11 +3,12 @@ # pylint:disable=unused-argument # pylint:disable=redefined-outer-name -import pytest -import yaml +from typing import Callable, Coroutine, Union -import sqlalchemy as sa import aiopg.sa +import pytest +import sqlalchemy as sa +import yaml @pytest.fixture(scope="session") @@ -32,11 +33,8 @@ def postgres_service(docker_services, docker_ip, docker_compose_file) -> str: return dsn -from typing import Union, Coroutine, Callable - - @pytest.fixture -def make_engine(postgres_service): +def make_engine(postgres_service: str) -> Callable: dsn = postgres_service def maker(is_async=True) -> Union[Coroutine, Callable]: diff --git a/packages/postgres-database/tests/test_delete_projects_and_users.py b/packages/postgres-database/tests/test_delete_projects_and_users.py index a4cfd4bc46b..f0e4b9e18cd 100644 --- a/packages/postgres-database/tests/test_delete_projects_and_users.py +++ b/packages/postgres-database/tests/test_delete_projects_and_users.py @@ -85,6 +85,58 @@ async def start(): return loop.run_until_complete(start()) +@pytest.mark.skip(reason="sandbox for dev purposes") +async def test_insert_user(engine): + async with engine.acquire() as conn: + + # execute + scalar + res: ResultProxy = await conn.execute( + users.insert().values(**random_user(name="FOO")) + ) + assert res.returns_rows + assert res.rowcount == 1 + assert res.keys() == ("id",) + + user_id = await res.scalar() + assert isinstance(user_id, int) + assert user_id > 0 + + # only scalar + user2_id: int = await conn.scalar( + users.insert().values(**random_user(name="BAR")) + ) + assert isinstance(user2_id, int) + assert user2_id == user_id + 1 + + # query result + res: ResultProxy = await conn.execute( + users.select().where(users.c.id == user2_id) + ) + assert res.returns_rows + assert res.rowcount == 1 + assert len(res.keys()) > 1 + + # DIFFERENT betwen .first() and fetchone() + + user2: RowProxy = await res.first() + # Fetch the first row and then close the result set unconditionally. + assert res.closed + + res: ResultProxy = await conn.execute( + users.select().where(users.c.id == user2_id) + ) + user2a: RowProxy = await res.fetchone() + # If rows are present, the cursor remains open after this is called. + assert not res.closed + assert user2 == user2a + + user2b: RowProxy = await res.fetchone() + # If no more rows, the cursor is automatically closed and None is returned + assert user2b is None + assert res.closed + + + async def test_count_users(engine): async with engine.acquire() as conn: users_count = await conn.scalar(users.count()) diff --git a/packages/postgres-database/tests/test_groups.py b/packages/postgres-database/tests/test_groups.py index cb5604614d2..3bdc9551ee2 100644 --- a/packages/postgres-database/tests/test_groups.py +++ b/packages/postgres-database/tests/test_groups.py @@ -1,4 +1,5 @@ -# pylint: disable=E1120 +# pylint: disable=no-name-in-module +# pylint: disable=no-value-for-parameter import faker import pytest diff --git a/packages/pytest-simcore/src/pytest_simcore/traefik_service.py b/packages/pytest-simcore/src/pytest_simcore/traefik_service.py index 3e9ee90d987..0fd90cd1299 100644 --- a/packages/pytest-simcore/src/pytest_simcore/traefik_service.py +++ b/packages/pytest-simcore/src/pytest_simcore/traefik_service.py @@ -48,5 +48,5 @@ async def wait_till_traefik_responsive(api_endpoint: URL): assert "service" in proxied_service if "webserver" in proxied_service["service"]: assert proxied_service["status"] == "enabled" - elif "api-gateway" in proxied_service["service"]: + elif "api-server" in proxied_service["service"]: assert proxied_service["status"] == "enabled" diff --git a/scripts/common.Makefile b/scripts/common.Makefile index f1da5d1701a..3fc94e1ead0 100644 --- a/scripts/common.Makefile +++ b/scripts/common.Makefile @@ -92,7 +92,9 @@ info: ## displays basic info .PHONY: autoformat -autoformat: ## runs black python formatter on this service's code +autoformat: ## runs black python formatter on this service's code. Use AFTER make install-* + # sort imports + @python3 -m isort --atomic -rc $(CURDIR) # auto formatting with black @python3 -m black --verbose \ --exclude "/(\.eggs|\.git|\.hg|\.mypy_cache|\.nox|\.tox|\.venv|\.svn|_build|buck-out|build|dist|migration|client-sdk|generated_code)/" \ diff --git a/scripts/demo/create_portal_markdown.py b/scripts/demo/create_portal_markdown.py index 48c136f5cde..75cd698039b 100644 --- a/scripts/demo/create_portal_markdown.py +++ b/scripts/demo/create_portal_markdown.py @@ -3,6 +3,9 @@ Aims to emulate links """ + +# TODO: extend cli to generate invitations use jinja templates (see folder) + import argparse import json import logging @@ -118,13 +121,14 @@ def main(mock_codes): print("", file=fh) + today = datetime.today() file_path = current_path.parent / CONFIRMATIONS_FILENAME with _open(file_path) as fh: print("code,user_id,action,data,created_at", file=fh) for n, code in enumerate(mock_codes, start=1): print('%s,1,INVITATION,"{' % code, file=fh) - print(f'""guest"": ""invitation-{n}"" ,', file=fh) - print('""host"" : ""support@osparc.io""', file=fh) + print(f'""guest"": ""invitation-{today.year:04d}{today.month:02d}{today.day:02d}-{n}"" ,', file=fh) + print('""issuer"" : ""support@osparc.io""', file=fh) print('}",%s' % datetime.now().isoformat(sep=" "), file=fh) diff --git a/scripts/demo/templates/invitation-codes-{{ deploy }}-{{ datestamp }}.md.jinja2 b/scripts/demo/templates/invitation-codes-{{ deploy }}-{{ datestamp }}.md.jinja2 new file mode 100644 index 00000000000..f7e9306f125 --- /dev/null +++ b/scripts/demo/templates/invitation-codes-{{ deploy }}-{{ datestamp }}.md.jinja2 @@ -0,0 +1,22 @@ +# Invitations for {{ deploy }} + + +{% for url in invitation_urls %} + 1. {url} +{% endfor %} + + +Every invitation can be identified in the data column as + +```json +{ + "guest": "invitation-{{ datestamp }}-${NUMBER}" , + "issuer" : "{{ issuer_email }}" +} +``` + +These invitations **will expire on {{ datetime.now() + valid_lifetime }}** if they are not renovated + +--- + +Generated with {{ current_program }} by {{ issuer_email }} on {{ datetime.now() }} diff --git a/scripts/openapi-generator-cli.bash b/scripts/openapi-generator-cli.bash index 4a3198fd120..b1072c66353 100755 --- a/scripts/openapi-generator-cli.bash +++ b/scripts/openapi-generator-cli.bash @@ -27,6 +27,9 @@ GROUPID=$(stat --format=%g "$PWD") #PATTERN=s+$PWD+/local+ #CMD=$(echo "$@" | sed $PATTERN) +# TODO: check SAME digest. Perhaps push into itisfoundation repo? +# openapitools/openapi-generator-cli v4.2.3 sha256:c90e7f2d63340574bba015ad88a5abb55d5b25ab3d5460c02e14a566574e8d55 + exec docker run --rm \ --user "$USERID:$GROUPID" \ --volume "$PWD:/local" \ diff --git a/services/api-gateway/.cookiecutterrc b/services/api-gateway/.cookiecutterrc deleted file mode 100644 index 980023f6e13..00000000000 --- a/services/api-gateway/.cookiecutterrc +++ /dev/null @@ -1,20 +0,0 @@ -# This file exists so you can easily regenerate your project. -# -# cookiecutter --overwrite-if-exists --config-file=.cookiecutterrc /home/crespo/devp/osparc-simcore/services/api-gateway/../../../cookiecutter-simcore-py-fastapi -# - -default_context: - - _extensions: ['jinja2_time.TimeExtension'] - _template: '/home/crespo/devp/osparc-simcore/services/api-gateway/../../../cookiecutter-simcore-py-fastapi' - distribution_name: 'simcore-service-api-gateway' - enable_docker_daemon_access: 'False' - full_name: 'Pedro Crespo' - github_username: 'pcrespov' - is_standalone_repo: 'False' - package_name: 'simcore_service_api_gateway' - project_name: 'Public API Gateway' - project_short_description: "Platform's API Gateway for external clients" - project_slug: 'api-gateway' - version: '0.1.1' - year: '2020' diff --git a/services/api-gateway/.env-devel b/services/api-gateway/.env-devel deleted file mode 100644 index 4f55c26b4b4..00000000000 --- a/services/api-gateway/.env-devel +++ /dev/null @@ -1,13 +0,0 @@ -# -# Environment variables used to configure this service -# - -# SEE services/api-gateway/src/simcore_service_api_gateway/auth_security.py -SECRET_KEY=d0d0397de2c85ad26ffd4a0f9643dfe3a0ca3937f99cf3c2e174e11b5ef79880 - -# SEE services/api-gateway/src/simcore_service_api_gateway/settings.py -LOGLEVEL=DEBUG - -POSTGRES_USER=test -POSTGRES_PASSWORD=test -POSTGRES_DB=test diff --git a/services/api-gateway/Makefile b/services/api-gateway/Makefile deleted file mode 100644 index 0bf23497921..00000000000 --- a/services/api-gateway/Makefile +++ /dev/null @@ -1,63 +0,0 @@ -# -# Targets for DEVELOPMENT of Public API Gateway -# -include ../../scripts/common.Makefile - -# Custom variables -APP_NAME := $(notdir $(CURDIR)) -APP_CLI_NAME := simcore-service-api-gateway -export APP_VERSION = $(shell cat VERSION) - - -.PHONY: reqs -reqs: ## compiles pip requirements (.in -> .txt) - @$(MAKE_C) requirements reqs - - -.PHONY: install-dev install-prod install-ci -install-dev install-prod install-ci: _check_venv_active ## install app in development/production or CI mode - # installing in $(subst install-,,$@) mode - pip-sync requirements/$(subst install-,,$@).txt - - -PHONY: tests-unit tests-integration tests -tests: tests-unit tests-integration - -tests-unit: ## runs unit tests - # running unit tests - @pytest -vv --exitfirst --failed-first --durations=10 --pdb $(CURDIR)/tests/unit - -tests-integration: ## runs integration tests against local+production images - # running integration tests local/(service):production images ... - @export DOCKER_REGISTRY=local; \ - export DOCKER_IMAGE_TAG=production; \ - pytest -vv --exitfirst --failed-first --durations=10 --pdb $(CURDIR)/tests/integration - - -.PHONY: run-devel down -run-devel: .env-devel down ## runs app on host with pg fixture for development - # running current app - export $(shell grep -v '^#' $< | xargs -d '\n'); \ - docker-compose -f $(CURDIR)/tests/utils/docker-compose.yml up --detach; \ - uvicorn simcore_service_api_gateway.main:the_app --reload --port=8001 --host=0.0.0.0 - -down: ## stops pg fixture - # stopping extra services - -@docker-compose -f $(CURDIR)/tests/utils/docker-compose.yml down - # killing any process using port 8001 - -@fuser --kill --verbose --namespace tcp 8001 - - -.PHONY: build -build: ## builds docker image (using main services/docker-compose-build.yml) - @$(MAKE_C) ${REPO_BASE_DIR} target=${APP_NAME} $@ - - -.PHONY: replay -# TODO: replay shall point to online cookiecutter -replay: .cookiecutterrc ## re-applies cookiecutter - # Replaying /home/crespo/devp/osparc-simcore/services/api-gateway/../../../cookiecutter-simcore-py-fastapi ... - @cookiecutter --no-input --overwrite-if-exists \ - --config-file=$< \ - --output-dir="$(abspath $(CURDIR)/..)" \ - "/home/crespo/devp/osparc-simcore/services/api-gateway/../../../cookiecutter-simcore-py-fastapi" diff --git a/services/api-gateway/VERSION b/services/api-gateway/VERSION deleted file mode 100644 index 6da28dde76d..00000000000 --- a/services/api-gateway/VERSION +++ /dev/null @@ -1 +0,0 @@ -0.1.1 \ No newline at end of file diff --git a/services/api-gateway/client b/services/api-gateway/client deleted file mode 160000 index 6e12ed66860..00000000000 --- a/services/api-gateway/client +++ /dev/null @@ -1 +0,0 @@ -Subproject commit 6e12ed6686037d6ab842a91e9110709680e60f51 diff --git a/services/api-gateway/docker/entrypoint.sh b/services/api-gateway/docker/entrypoint.sh deleted file mode 100755 index 47b831e0fcc..00000000000 --- a/services/api-gateway/docker/entrypoint.sh +++ /dev/null @@ -1,85 +0,0 @@ -#!/bin/sh -set -o errexit -set -o nounset - -IFS=$(printf '\n\t') - -INFO="INFO: [$(basename "$0")] " -WARNING="WARNING: [$(basename "$0")] " -ERROR="ERROR: [$(basename "$0")] " - -# This entrypoint script: -# -# - Executes *inside* of the container upon start as --user [default root] -# - Notice that the container *starts* as --user [default root] but -# *runs* as non-root user [scu] -# -echo "$INFO" "Entrypoint for stage ${SC_BUILD_TARGET} ..." -echo User :"$(id "$(whoami)")" -echo Workdir :"$(pwd)" -echo scuUser :"$(id scu)" - - -USERNAME=scu -GROUPNAME=scu - -if [ "${SC_BUILD_TARGET}" = "development" ] -then - echo "$INFO" "development mode detected..." - # NOTE: expects docker run ... -v $(pwd):/devel/services/api-gateway - DEVEL_MOUNT=/devel/services/api-gateway - - stat $DEVEL_MOUNT > /dev/null 2>&1 || \ - (echo "$ERROR" "You must mount '$DEVEL_MOUNT' to deduce user and group ids" && exit 1) - - USERID=$(stat --format=%u $DEVEL_MOUNT) - GROUPID=$(stat --format=%g $DEVEL_MOUNT) - GROUPNAME=$(getent group "${GROUPID}" | cut --delimiter=: --fields=1) - - if [ "$USERID" -eq 0 ] - then - echo "$WARNING" Folder mounted owned by root user... adding "$SC_USER_NAME" to root... - adduser "${SC_USER_NAME}" root - else - # take host's credentials in scu - if [ -z "$GROUPNAME" ] - then - echo "$INFO" mounted folder from "$USERID", creating new group my"${SC_USER_NAME}" - GROUPNAME=my"${SC_USER_NAME}" - addgroup --gid "$GROUPID" "$GROUPNAME" - # change group property of files already around - find / -path /proc -prune -group "$SC_USER_ID" -exec chgrp --no-dereference "$GROUPNAME" {} \; - else - echo "$INFO" "mounted folder from $USERID, adding ${SC_USER_NAME} to $GROUPNAME..." - adduser "$SC_USER_NAME" "$GROUPNAME" - fi - - echo "$INFO changing $SC_USER_NAME $SC_USER_ID:$SC_USER_ID to $USERID:$GROUPID" - deluser "${SC_USER_NAME}" > /dev/null 2>&1 - if [ "$SC_USER_NAME" = "$GROUPNAME" ] - then - addgroup --gid "$GROUPID" "$GROUPNAME" - fi - adduser --disabled-password --gecos "" --uid "$USERID" --gid "$GROUPID" --shell /bin/sh "$SC_USER_NAME" --no-create-home - # change user property of files already around - find / -path /proc -prune -user "$SC_USER_ID" -exec chown --no-dereference "$SC_USER_NAME" {} \; - fi - - echo "$INFO installing pythong dependencies..." - cd services/api-gateway || exit 1 - pip install --no-cache-dir -r requirements/dev.txt - cd - || exit 1 -fi - -if [ ${SC_BOOT_MODE} == "debug-ptvsd" ] -then - # NOTE: production does NOT pre-installs ptvsd - pip install --no-cache-dir ptvsd -fi - - -echo "$INFO Starting $* ..." -echo " $SC_USER_NAME rights : $(id "$SC_USER_NAME")" -echo " local dir : $(ls -al)" - -su --command "$*" "$SC_USER_NAME" diff --git a/services/api-gateway/requirements/_base.in b/services/api-gateway/requirements/_base.in deleted file mode 100644 index 923aeb87716..00000000000 --- a/services/api-gateway/requirements/_base.in +++ /dev/null @@ -1,14 +0,0 @@ -# -# Specifies third-party dependencies for 'services/api-gateway/src' -# -# NOTE: ALL version constraints MUST be commented - -fastapi[all] -aiopg[sa] -tenacity -passlib[bcrypt] -pyjwt - - -async-exit-stack # not needed when python>=3.7 -async-generator # not needed when python>=3.7 diff --git a/services/api-gateway/requirements/_base.txt b/services/api-gateway/requirements/_base.txt deleted file mode 100644 index db53cf71332..00000000000 --- a/services/api-gateway/requirements/_base.txt +++ /dev/null @@ -1,48 +0,0 @@ -# -# This file is autogenerated by pip-compile -# To update, run: -# -# pip-compile --output-file=requirements/_base.txt requirements/_base.in -# -aiofiles==0.4.0 # via fastapi -aiopg[sa]==1.0.0 # via -r requirements/_base.in -aniso8601==7.0.0 # via graphene -async-exit-stack==1.0.1 # via -r requirements/_base.in, fastapi -async-generator==1.10 # via -r requirements/_base.in, fastapi -bcrypt==3.1.7 # via passlib -certifi==2019.11.28 # via requests -cffi==1.14.0 # via bcrypt -chardet==3.0.4 # via requests -click==7.1.1 # via uvicorn -dataclasses==0.7 # via pydantic -dnspython==1.16.0 # via email-validator -email-validator==1.0.5 # via fastapi -fastapi[all]==0.52.0 # via -r requirements/_base.in -graphene==2.1.8 # via fastapi -graphql-core==2.3.1 # via graphene, graphql-relay -graphql-relay==2.0.1 # via graphene -h11==0.9.0 # via uvicorn -httptools==0.1.1 # via uvicorn -idna==2.9 # via email-validator, requests -itsdangerous==1.1.0 # via fastapi -jinja2==2.11.1 # via fastapi -markupsafe==1.1.1 # via jinja2 -passlib[bcrypt]==1.7.2 # via -r requirements/_base.in -promise==2.3 # via graphql-core, graphql-relay -psycopg2-binary==2.8.4 # via aiopg, sqlalchemy -pycparser==2.20 # via cffi -pydantic==1.4 # via fastapi -pyjwt==1.7.1 # via -r requirements/_base.in -python-multipart==0.0.5 # via fastapi -pyyaml==5.3 # via fastapi -requests==2.23.0 # via fastapi -rx==1.6.1 # via graphql-core -six==1.14.0 # via bcrypt, graphene, graphql-core, graphql-relay, python-multipart, tenacity -sqlalchemy[postgresql_psycopg2binary]==1.3.15 # via aiopg -starlette==0.13.2 # via fastapi -tenacity==6.1.0 # via -r requirements/_base.in -ujson==2.0.2 # via fastapi -urllib3==1.25.8 # via requests -uvicorn==0.11.3 # via fastapi -uvloop==0.14.0 # via uvicorn -websockets==8.1 # via uvicorn diff --git a/services/api-gateway/requirements/_test.txt b/services/api-gateway/requirements/_test.txt deleted file mode 100644 index 215cfd4d0b6..00000000000 --- a/services/api-gateway/requirements/_test.txt +++ /dev/null @@ -1,84 +0,0 @@ -# -# This file is autogenerated by pip-compile -# To update, run: -# -# pip-compile --output-file=requirements/_test.txt requirements/_test.in -# -aiofiles==0.4.0 # via -r requirements/_base.txt, fastapi -aiohttp==3.6.2 # via pytest-aiohttp -aiopg[sa]==1.0.0 # via -r requirements/_base.txt -aniso8601==7.0.0 # via -r requirements/_base.txt, graphene -astroid==2.3.3 # via pylint -async-exit-stack==1.0.1 # via -r requirements/_base.txt, fastapi -async-generator==1.10 # via -r requirements/_base.txt, fastapi -async-timeout==3.0.1 # via aiohttp -attrs==19.3.0 # via aiohttp, pytest, pytest-docker -bcrypt==3.1.7 # via -r requirements/_base.txt, passlib -certifi==2019.11.28 # via -r requirements/_base.txt, requests -cffi==1.14.0 # via -r requirements/_base.txt, bcrypt -change-case==0.5.2 # via -r requirements/_test.in -chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, requests -click==7.1.1 # via -r requirements/_base.txt, uvicorn -codecov==2.0.16 # via -r requirements/_test.in -coverage==5.0.4 # via codecov, coveralls, pytest-cov -coveralls==1.11.1 # via -r requirements/_test.in -dataclasses==0.7 # via -r requirements/_base.txt, pydantic -dnspython==1.16.0 # via -r requirements/_base.txt, email-validator -docopt==0.6.2 # via coveralls -email-validator==1.0.5 # via -r requirements/_base.txt, fastapi -faker==4.0.2 # via -r requirements/_test.in -fastapi[all]==0.52.0 # via -r requirements/_base.txt -graphene==2.1.8 # via -r requirements/_base.txt, fastapi -graphql-core==2.3.1 # via -r requirements/_base.txt, graphene, graphql-relay -graphql-relay==2.0.1 # via -r requirements/_base.txt, graphene -h11==0.9.0 # via -r requirements/_base.txt, uvicorn -httptools==0.1.1 # via -r requirements/_base.txt, uvicorn -idna-ssl==1.1.0 # via aiohttp -idna==2.9 # via -r requirements/_base.txt, email-validator, idna-ssl, requests, yarl -importlib-metadata==1.5.0 # via pluggy, pytest -isort==4.3.21 # via pylint -itsdangerous==1.1.0 # via -r requirements/_base.txt, fastapi -jinja2==2.11.1 # via -r requirements/_base.txt, -r requirements/_test.in, fastapi -lazy-object-proxy==1.4.3 # via astroid -markupsafe==1.1.1 # via -r requirements/_base.txt, jinja2 -mccabe==0.6.1 # via pylint -more-itertools==8.2.0 # via pytest -multidict==4.7.5 # via aiohttp, yarl -packaging==20.3 # via pytest -passlib[bcrypt]==1.7.2 # via -r requirements/_base.txt -pluggy==0.13.1 # via pytest -promise==2.3 # via -r requirements/_base.txt, graphql-core, graphql-relay -psycopg2-binary==2.8.4 # via -r requirements/_base.txt, aiopg, sqlalchemy -py==1.8.1 # via pytest -pycparser==2.20 # via -r requirements/_base.txt, cffi -pydantic==1.4 # via -r requirements/_base.txt, fastapi -pyjwt==1.7.1 # via -r requirements/_base.txt -pylint==2.4.4 # via -r requirements/_test.in -pyparsing==2.4.6 # via packaging -pytest-aiohttp==0.3.0 # via -r requirements/_test.in -pytest-cov==2.8.1 # via -r requirements/_test.in -pytest-docker==0.7.2 # via -r requirements/_test.in -pytest-mock==2.0.0 # via -r requirements/_test.in -pytest-runner==5.2 # via -r requirements/_test.in -pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-mock -python-dateutil==2.8.1 # via faker -python-multipart==0.0.5 # via -r requirements/_base.txt, fastapi -pyyaml==5.3 # via -r requirements/_base.txt, fastapi -requests==2.23.0 # via -r requirements/_base.txt, codecov, coveralls, fastapi -rx==1.6.1 # via -r requirements/_base.txt, graphql-core -six==1.14.0 # via -r requirements/_base.txt, astroid, bcrypt, graphene, graphql-core, graphql-relay, packaging, promise, python-dateutil, python-multipart, tenacity -sqlalchemy[postgresql_psycopg2binary]==1.3.15 # via -r requirements/_base.txt, aiopg -starlette==0.13.2 # via -r requirements/_base.txt, fastapi -tenacity==6.1.0 # via -r requirements/_base.txt -text-unidecode==1.3 # via faker -typed-ast==1.4.1 # via astroid -typing-extensions==3.7.4.1 # via aiohttp -ujson==2.0.2 # via -r requirements/_base.txt, fastapi -urllib3==1.25.8 # via -r requirements/_base.txt, requests -uvicorn==0.11.3 # via -r requirements/_base.txt, fastapi -uvloop==0.14.0 # via -r requirements/_base.txt, uvicorn -wcwidth==0.1.8 # via pytest -websockets==8.1 # via -r requirements/_base.txt, uvicorn -wrapt==1.11.2 # via astroid -yarl==1.4.2 # via aiohttp -zipp==3.1.0 # via importlib-metadata diff --git a/services/api-gateway/setup.cfg b/services/api-gateway/setup.cfg deleted file mode 100644 index 173cc1d88d4..00000000000 --- a/services/api-gateway/setup.cfg +++ /dev/null @@ -1,10 +0,0 @@ -[bumpversion] -current_version = 0.1.1 -commit = True -tag = True - -[bumpversion:file:VERSION] - -[bumpversion:file:.cookiecutterrc] -search = '{current_version}' -replace = '{new_version}' diff --git a/services/api-gateway/src/simcore_service_api_gateway/__init__.py b/services/api-gateway/src/simcore_service_api_gateway/__init__.py deleted file mode 100644 index 0bdd749bf16..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/__init__.py +++ /dev/null @@ -1,4 +0,0 @@ -""" Python package for the simcore_service_api_gateway. - -""" -from .__version__ import __version__ diff --git a/services/api-gateway/src/simcore_service_api_gateway/__main__.py b/services/api-gateway/src/simcore_service_api_gateway/__main__.py deleted file mode 100644 index d3e676ec728..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/__main__.py +++ /dev/null @@ -1,29 +0,0 @@ -""" Main application entry point - - `python -m simcore_service_api_gateway ...` - -Why does this file exist, and why __main__? For more info, read: - -- https://www.python.org/dev/peps/pep-0338/ -- https://docs.python.org/3/using/cmdline.html#cmdoption-m -""" -import uvicorn - -from simcore_service_api_gateway.application import get_settings -from simcore_service_api_gateway.main import the_app -from simcore_service_api_gateway.settings import AppSettings, BootModeEnum - - -def main(): - settings: AppSettings = get_settings(the_app) - uvicorn.run( - the_app, - host=settings.host, - port=settings.port, - reload=settings.boot_mode == BootModeEnum.development, - log_level=settings.log_level_name.lower(), - ) - - -if __name__ == "__main__": - main() diff --git a/services/api-gateway/src/simcore_service_api_gateway/application.py b/services/api-gateway/src/simcore_service_api_gateway/application.py deleted file mode 100644 index 604e2346ee6..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/application.py +++ /dev/null @@ -1,106 +0,0 @@ -""" Helpers wrapping or producing FastAPI's app - - These helpers are typically used with main.the_app singleton instance -""" -import json -import types -from pathlib import Path -from typing import Callable, Dict - -import yaml -from fastapi import FastAPI -from fastapi.openapi.docs import get_redoc_html -from fastapi.openapi.utils import get_openapi - -from .__version__ import api_version, api_vtag -from .settings import AppSettings - -FAVICON = "https://osparc.io/resource/osparc/favicon.png" -LOGO = "https://raw.githubusercontent.com/ITISFoundation/osparc-manual/b809d93619512eb60c827b7e769c6145758378d0/_media/osparc-logo.svg" - - -def _custom_openapi(zelf: FastAPI) -> Dict: - if not zelf.openapi_schema: - openapi_schema = get_openapi( - title=zelf.title, - version=zelf.version, - openapi_version=zelf.openapi_version, - description=zelf.description, - routes=zelf.routes, - openapi_prefix=zelf.openapi_prefix, - ) - - # ReDoc vendor extensions - # SEE https://github.com/Redocly/redoc/blob/master/docs/redoc-vendor-extensions.md - openapi_schema["info"]["x-logo"] = { - "url": LOGO, - "altText": "osparc-simcore logo", - } - - # - # TODO: load code samples add if function is contained in sample - # TODO: See if openapi-cli does this already - # - openapi_schema["paths"]["/meta"]["get"]["x-code-samples"] = [ - {"lang": "python", "source": "print('hello world')",}, - ] - - zelf.openapi_schema = openapi_schema - return zelf.openapi_schema - - -def _setup_redoc(app: FastAPI): - from fastapi.applications import Request, HTMLResponse - - async def redoc_html(_req: Request) -> HTMLResponse: - return get_redoc_html( - openapi_url=app.openapi_url, - title=app.title + " - redoc", - redoc_favicon_url=FAVICON, - ) - - app.add_route("/redoc", redoc_html, include_in_schema=False) - - -def create(settings: AppSettings) -> FastAPI: - # factory - app = FastAPI( - debug=settings.debug, - title="Public API Gateway", - description="osparc-simcore Public RESTful API Specifications", - version=api_version, - openapi_url=f"/api/{api_vtag}/openapi.json", - redoc_url=None, - ) - app.state.settings = settings - - app.openapi = types.MethodType(_custom_openapi, app) - - _setup_redoc(app) - - return app - - -def get_settings(app: FastAPI) -> AppSettings: - """ Read-only app settings """ - return app.state["settings"].copy() - - -def add_startup_handler(app: FastAPI, startup_event: Callable): - # TODO: this is different from fastapi_shortcuts - # Add Callable with and w/o arguments? - app.router.add_event_handler("startup", startup_event) - - -def add_shutdown_handler(app: FastAPI, shutdown_event: Callable): - app.router.add_event_handler("shutdown", shutdown_event) - - -def dump_openapi(app: FastAPI, filepath: Path): - with open(filepath, "wt") as fh: - if filepath.suffix == ".json": - json.dump(app.openapi(), fh, indent=2) - elif filepath.suffix in (".yaml", ".yml"): - yaml.safe_dump(app.openapi(), fh) - else: - raise ValueError("invalid") diff --git a/services/api-gateway/src/simcore_service_api_gateway/auth.py b/services/api-gateway/src/simcore_service_api_gateway/auth.py deleted file mode 100644 index ea8b526c4b2..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/auth.py +++ /dev/null @@ -1,94 +0,0 @@ -""" This submodule includes responsibilities from authorization server - - +--------+ +---------------+ - | |--(A)- Authorization Request ->| Resource | - | | | Owner | Authorization request - | |<-(B)-- Authorization Grant ---| | - | | +---------------+ - | | - | | +---------------+ - | |--(C)-- Authorization Grant -->| Authorization | - | Client | | Server | Token request - | |<-(D)----- Access Token -------| | - | | +---------------+ - | | - | | +---------------+ - | |--(E)----- Access Token ------>| Resource | - | | | Server | - | |<-(F)--- Protected Resource ---| | - +--------+ +---------------+ - - Figure 1: Abstract Protocol Flow - -SEE - - https://oauth.net/2/ - - https://tools.ietf.org/html/rfc6749 -""" -# TODO: this module shall delegate the auth functionality to a separate service - -import logging -from typing import Optional - -from fastapi import Depends, HTTPException, Security, status -from fastapi.security import OAuth2PasswordBearer, SecurityScopes - -from . import crud_users as crud -from .__version__ import api_vtag -from .auth_security import get_access_token_data -from .schemas import TokenData, User, UserInDB - -log = logging.getLogger(__name__) - -# callable with request as argument -> extracts token from Authentication header -oauth2_scheme = OAuth2PasswordBearer( - tokenUrl=f"{api_vtag}/token", - scopes={ - "me": "Read information about the current user.", - "projects": "Read projects.", - "you": "Some other scope", - }, -) - - -async def get_current_user( - security_scopes: SecurityScopes, access_token: str = Depends(oauth2_scheme) -) -> User: - if security_scopes.scopes: - authenticate_value = f'Bearer scope="{security_scopes.scope_str}"' - else: - authenticate_value = "Bearer" - - credentials_exception = HTTPException( - status_code=status.HTTP_401_UNAUTHORIZED, - detail="Could not validate credentials", - headers={"WWW-Authenticate": authenticate_value}, - ) - - # decodes and validates jwt-based access token - token_data: Optional[TokenData] = get_access_token_data(access_token) - if token_data is None: - raise credentials_exception - - # identify user - user: Optional[UserInDB] = crud.get_user(username=token_data.username) - if user is None: - raise credentials_exception - - # validate scope - for scope in security_scopes.scopes: - if scope not in token_data.scopes: - raise HTTPException( - status_code=status.HTTP_401_UNAUTHORIZED, - detail="Not enough permissions", - headers={"WWW-Authenticate": authenticate_value}, - ) - # auto-converst into User?? - return user - - -async def get_current_active_user( - current_user: User = Security(get_current_user, scopes=["me"]) -): - if current_user.disabled: - raise HTTPException(status_code=400, detail="Inactive user") - return current_user diff --git a/services/api-gateway/src/simcore_service_api_gateway/auth_security.py b/services/api-gateway/src/simcore_service_api_gateway/auth_security.py deleted file mode 100644 index 51fa730d366..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/auth_security.py +++ /dev/null @@ -1,89 +0,0 @@ -""" Utility functions related with security - -""" -import logging -import os -from datetime import datetime, timedelta -from typing import Dict, List, Optional - -import jwt -from jwt import PyJWTError -from passlib.context import CryptContext -from pydantic import ValidationError - -from . import crud_users as crud -from .schemas import TokenData, UserInDB - -log = logging.getLogger(__name__) - -# PASSWORDS - -__pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto") - - -def verify_password(plain_password: str, hashed_password: str) -> bool: - return __pwd_context.verify(plain_password, hashed_password) - - -def get_password_hash(password: str) -> str: - return __pwd_context.hash(password) - - -def authenticate_user(username: str, password: str) -> Optional[UserInDB]: - user = crud.get_user(username) - if not user: - return None - if not verify_password(password, user.hashed_password): - return None - return user - - -# JSON WEB TOKENS (JWT) - -__SIGNING_KEY__ = os.environ.get("SECRET_KEY") -__ALGORITHM__ = "HS256" -ACCESS_TOKEN_EXPIRE_MINUTES = 30 - - -def create_access_token( - *, subject: str, scopes: List[str] = None, expires_delta: timedelta = None -) -> str: - if expires_delta is None: - expires_delta = timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES) - - # The JWT specification says that there's a key sub, with the subject of the token. - to_encode = { - "sub": subject, - "exp": datetime.utcnow() + expires_delta, - "scopes": scopes or [], - } - encoded_jwt = jwt.encode(to_encode, __SIGNING_KEY__, algorithm=__ALGORITHM__) - return encoded_jwt - - -def decode_token(encoded_jwt: str) -> Dict: - return jwt.decode(encoded_jwt, __SIGNING_KEY__, algorithms=[__ALGORITHM__]) - - -def get_access_token_data(encoded_jwt: str) -> Optional[TokenData]: - """ - Decodes and validates JWT and returns TokenData - Returns None, if invalid token - """ - try: - # decode JWT [header.payload.signature] and get payload: - payload: Dict = decode_token(encoded_jwt) - - username: str = payload.get("sub") - if username is None: - return None - token_scopes = payload.get("scopes", []) - - # validate - token_data = TokenData(scopes=token_scopes, username=username) - - except (PyJWTError, ValidationError): - # invalid token! - log.debug("Invalid token", exc_info=True) - return None - return token_data diff --git a/services/api-gateway/src/simcore_service_api_gateway/crud_users.py b/services/api-gateway/src/simcore_service_api_gateway/crud_users.py deleted file mode 100644 index 3397b442318..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/crud_users.py +++ /dev/null @@ -1,30 +0,0 @@ -""" - API layer to access dbs and return schema-based data structures -""" - -from .schemas import UserInDB -from typing import Optional - -fake_users_db = { - "pcrespov": { - "username": "pcrespov", - "full_name": "Pedrito", - "email": "perico@example.com", - "hashed_password": "$2b$12$EixZaYVK1fsbw1ZfbX3OXePaWxn96p36WQoeG6Lruj3vjPGga31lW", - "disabled": False, - }, - "alice": { - "username": "alice", - "full_name": "Alice Chains", - "email": "alicechains@example.com", - "hashed_password": "$2b$12$gSvqqUPvlXP2tfVFaWK1Be7DlH.PKZbv5H8KnzzVgXXbVxpva.pFm", - "disabled": True, - }, -} - - -def get_user(username: str) -> Optional[UserInDB]: - if username in fake_users_db: - user_dict = fake_users_db[username] - return UserInDB(**user_dict) - return None diff --git a/services/api-gateway/src/simcore_service_api_gateway/db.py b/services/api-gateway/src/simcore_service_api_gateway/db.py deleted file mode 100644 index 1cc21e3cdfc..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/db.py +++ /dev/null @@ -1,98 +0,0 @@ -""" Access to postgres service - DUMMY! -""" - -import logging -from typing import Dict, Optional - -import aiopg.sa -import sqlalchemy as sa -from aiopg.sa import Engine -from aiopg.sa.connection import SAConnection -from aiopg.sa.result import ResultProxy, RowProxy -from fastapi import FastAPI -from tenacity import before_sleep_log, retry, stop_after_attempt, wait_fixed - -from .application import FastAPI, get_settings -from .settings import AppSettings -from .utils.fastapi_shortcuts import add_event_on_shutdown, add_event_on_startup - -## from .orm.base import Base - -log = logging.getLogger(__name__) - - -def pg_retry_policy(logger: Optional[logging.Logger] = None) -> Dict: - """ Retry policy for postgres requests upon failure """ - logger = logger or logging.getLogger(__name__) - return dict( - wait=wait_fixed(5), - stop=stop_after_attempt(20), - before_sleep=before_sleep_log(log, logging.WARNING), - reraise=True, - ) - - -async def setup_engine(app: FastAPI) -> None: - settings = get_settings(app) - engine = await aiopg.sa.create_engine( - settings.postgres_dsn, - application_name=f"{__name__}_{id(app)}", # unique identifier per app - minsize=5, - maxsize=10, - ) - app.state.engine = engine - - -async def teardown_engine(app: FastAPI) -> None: - engine = app.state.engine - engine.close() - await engine.wait_closed() - - -async def get_cnx(app: FastAPI): - engine: Engine = app.state.engine - async with engine.acquire() as conn: - yield conn - - -def info(app: FastAPI): - engine = app.state.engine - for p in "closed driver dsn freesize maxsize minsize name size timeout".split(): - print(f"{p} = {getattr(engine, p)}") - - -def create_tables(settings: AppSettings): - log.info("creating tables") - _engine = sa.create_engine(settings.postgres_dsn) - ## Base.metadata.create_all(bind=engine) - - -# SETUP ------ - - -async def start_db(app: FastAPI): - # TODO: tmp disabled - log.debug("DUMMY: Initializing db in %s", app) - - @retry(**pg_retry_policy(log)) - async def _go(): - await setup_engine(app) - - # if False: - # log.info("Creating db tables (testing mode)") - # create_tables() - - -def shutdown_db(app: FastAPI): - # TODO: tmp disabled - log.debug("DUMMY: Shutting down db in %s", app) - # await teardown_engine(app) - - -def setup_db(app: FastAPI): - add_event_on_startup(app, start_db) - add_event_on_shutdown(app, shutdown_db) - - -__all__ = ("Engine", "ResultProxy", "RowProxy", "SAConnection") diff --git a/services/api-gateway/src/simcore_service_api_gateway/endpoints_auth.py b/services/api-gateway/src/simcore_service_api_gateway/endpoints_auth.py deleted file mode 100644 index eb33a1b1ae5..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/endpoints_auth.py +++ /dev/null @@ -1,57 +0,0 @@ -import logging -from io import StringIO -from typing import Optional - -from fastapi import APIRouter, Depends, HTTPException -from fastapi.security import OAuth2PasswordRequestForm - -from .auth_security import authenticate_user, create_access_token -from .schemas import Token, UserInDB -from .utils.helpers import json_dumps - -log = logging.getLogger(__name__) - - -router = APIRouter() - -# NOTE: this path has to be the same as simcore_service_api_gateway.auth.oauth2_scheme -@router.post("/token", response_model=Token) -async def login_for_access_token(form_data: OAuth2PasswordRequestForm = Depends()): - """ - Returns an access-token provided a valid authorization grant - """ - - # - # - This entrypoint is part of the Authorization Server - # - Implements access point to obtain access-tokens - # - # | | +---------------+ - # | |--(C)-- Authorization Grant -->| Authorization | - # | Client | | Server | Token request - # | |<-(D)----- Access Token -------| | - # | | +---------------+ - # - - stream = StringIO() - print("Form Request", "-" * 20, file=stream) - for attr in "grant_type username password scopes client_id client_secret".split(): - print("-", attr, ":", getattr(form_data, attr), file=stream) - print("-" * 20, file=stream) - log.debug(stream.getvalue()) - - user: Optional[UserInDB] = authenticate_user(form_data.username, form_data.password) - if not user: - raise HTTPException(status_code=400, detail="Incorrect username or password") - - access_token = create_access_token(subject=user.username, scopes=form_data.scopes) - - # NOTE: this reponse is defined in Oath2 - resp_data = {"access_token": access_token, "token_type": "bearer"} - - stream = StringIO() - print("{:-^30}".format("/token response"), file=stream) - print(json_dumps(resp_data), file=stream) - print("-" * 30, file=stream) - log.debug(stream.getvalue()) - - return resp_data diff --git a/services/api-gateway/src/simcore_service_api_gateway/endpoints_check.py b/services/api-gateway/src/simcore_service_api_gateway/endpoints_check.py deleted file mode 100644 index 406c6c1fa99..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/endpoints_check.py +++ /dev/null @@ -1,22 +0,0 @@ -from fastapi import APIRouter - -from .__version__ import __version__, api_version, api_vtag - -router = APIRouter() - - -@router.get("/meta") -async def get_service_metadata(): - return { - "name": __name__.split(".")[0], - "version": api_version, - # TODO: a way to get first part of the url?? "version_prefix": f"/{api_vtag}", - # TODO: sync this info - "released": {api_vtag: api_version}, - } - - -@router.get("/health") -async def check_service_health(): - # TODO: if not, raise ServiceUnavailable (use diagnostic concept as in webserver) - return diff --git a/services/api-gateway/src/simcore_service_api_gateway/endpoints_studies.py b/services/api-gateway/src/simcore_service_api_gateway/endpoints_studies.py deleted file mode 100644 index 33adcd50a7d..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/endpoints_studies.py +++ /dev/null @@ -1,53 +0,0 @@ -from fastapi import APIRouter, Security - -from .auth import get_current_active_user -from .schemas import User - -router = APIRouter() - - -@router.get("/studies") -async def list_studies( - current_user: User = Security(get_current_active_user, scopes=["projects"]) -): - return [{"project_id": "Foo", "owner": current_user.username}] - - -@router.get("/studies/{study_id}") -async def get_study( - study_id: str, - current_user: User = Security(get_current_active_user, scopes=["projects"]), -): - return [{"project_id": study_id, "owner": current_user.username}] - - -@router.post("/studies") -async def create_study( - current_user: User = Security(get_current_active_user, scopes=["projects"]) -): - return {"project_id": "Foo", "owner": current_user.username} - - -@router.put("/studies/{study_id}") -async def replace_study( - study_id: str, - current_user: User = Security(get_current_active_user, scopes=["projects"]), -): - return {"project_id": study_id, "owner": current_user.username} - - -@router.patch("/studies/{study_id}") -async def update_study( - study_id: str, - current_user: User = Security(get_current_active_user, scopes=["projects"]), -): - return {"project_id": study_id, "owner": current_user.username} - - -@router.delete("/studies/{study_id}") -async def delete_study( - study_id: str, - current_user: User = Security(get_current_active_user, scopes=["projects"]), -): - _data = {"project_id": study_id, "owner": current_user.username} - return None diff --git a/services/api-gateway/src/simcore_service_api_gateway/endpoints_user.py b/services/api-gateway/src/simcore_service_api_gateway/endpoints_user.py deleted file mode 100644 index f1ecd24af79..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/endpoints_user.py +++ /dev/null @@ -1,16 +0,0 @@ -from fastapi import APIRouter, Depends - -from .auth import get_current_active_user -from .schemas import User - -router = APIRouter() - - -@router.get("/user", response_model=User) -async def get_my_profile(current_user: User = Depends(get_current_active_user)): - return current_user - - -@router.patch("/user", response_model=User) -async def update_my_profile(current_user: User = Depends(get_current_active_user)): - return current_user diff --git a/services/api-gateway/src/simcore_service_api_gateway/main.py b/services/api-gateway/src/simcore_service_api_gateway/main.py deleted file mode 100644 index c2168caa9ad..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/main.py +++ /dev/null @@ -1,61 +0,0 @@ -import logging -import sys -from pathlib import Path - -from fastapi import FastAPI - -from . import ( - application, - endpoints_auth, - endpoints_check, - endpoints_studies, - endpoints_user, -) -from .__version__ import api_vtag -from .db import setup_db -from .settings import AppSettings -from .utils.remote_debug import setup_remote_debugging - -current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent - -log = logging.getLogger(__name__) - - -def build_app() -> FastAPI: - """ - Creates a sets up app - """ - app_settings = AppSettings() - - logging.root.setLevel(app_settings.loglevel) - - app: FastAPI = application.create(settings=app_settings) - - @app.on_event("startup") - def startup_event(): # pylint: disable=unused-variable - log.info("Application started") - setup_remote_debugging() - - # ROUTES - app.include_router(endpoints_check.router) - - app.include_router(endpoints_auth.router, tags=["Token"], prefix=f"/{api_vtag}") - app.include_router(endpoints_user.router, tags=["User"], prefix=f"/{api_vtag}") - app.include_router( - endpoints_studies.router, tags=["Studies"], prefix=f"/{api_vtag}" - ) - - # SUBMODULES setups - setup_db(app) - # NOTE: add new here! - # ... - - @app.on_event("shutdown") - def shutdown_event(): # pylint: disable=unused-variable - log.info("Application shutdown") - - return app - - -# SINGLETON FastAPI app -the_app: FastAPI = build_app() diff --git a/services/api-gateway/src/simcore_service_api_gateway/schemas.py b/services/api-gateway/src/simcore_service_api_gateway/schemas.py deleted file mode 100644 index f723f8ec0e0..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/schemas.py +++ /dev/null @@ -1,24 +0,0 @@ -from typing import List - -from pydantic import BaseModel # pylint: disable=no-name-in-module - - -class Token(BaseModel): - access_token: str - token_type: str - - -class TokenData(BaseModel): - username: str = None - scopes: List[str] = [] - - -class User(BaseModel): - username: str - email: str = None - full_name: str = None - - -class UserInDB(User): - hashed_password: str - disabled: bool = None diff --git a/services/api-gateway/src/simcore_service_api_gateway/settings.py b/services/api-gateway/src/simcore_service_api_gateway/settings.py deleted file mode 100644 index 0890b750fa3..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/settings.py +++ /dev/null @@ -1,69 +0,0 @@ -# pylint: disable=no-name-in-module - -# NOTE: SEE https://pydantic-docs.helpmanual.io/usage/settings/ for usage - -from pydantic import BaseSettings, Field, SecretStr, validator -from enum import Enum -from typing import Optional -from yarl import URL -import logging - - -class BootModeEnum(str, Enum): - production = "production" - development = "development" - - -class AppSettings(BaseSettings): - # pylint: disable=no-self-use - # pylint: disable=no-self-argument - - # DOCKER - boot_mode: Optional[BootModeEnum] = Field(None, env="SC_BOOT_MODE") - - # LOGGING - log_level_name: str = Field("DEBUG", env="loglevel") - - @validator("log_level_name") - def match_logging_level(cls, value) -> str: - try: - getattr(logging, value.upper()) - except AttributeError: - raise ValueError(f"{value.upper()} is not a valid level") - return value.upper() - - @property - def loglevel(self) -> int: - return getattr(logging, self.log_level_name) - - # POSTGRES - postgres_user: str - postgres_password: SecretStr - postgres_db: str - postgres_host: str = "localhost" - postgres_port: int = 5432 - - @property - def postgres_dsn(self) -> URL: - return URL.build( - scheme="postgresql", - user=self.postgres_user, - password=self.postgres_password.get_secret_value(), - host=self.postgres_host, - port=self.postgres_port, - path=f"/{self.postgres_db}", - ) - - # WEBSERVER - webserver_host: str = "webserver" - webserver_port: int = 8080 - - # SERVICE SERVER (see : https://www.uvicorn.org/settings/) - host: str = "localhost" # "0.0.0.0" if is_containerized else "127.0.0.1", - port: int = 8000 - - debug: bool = False # If True, debug tracebacks should be returned on errors. - - class Config: - env_prefix = "" - case_sensitive = False diff --git a/services/api-gateway/src/simcore_service_api_gateway/utils/fastapi_shortcuts.py b/services/api-gateway/src/simcore_service_api_gateway/utils/fastapi_shortcuts.py deleted file mode 100644 index 450d979745e..00000000000 --- a/services/api-gateway/src/simcore_service_api_gateway/utils/fastapi_shortcuts.py +++ /dev/null @@ -1,32 +0,0 @@ -""" Thin wrappers around fastapi interface for convenience - - When to add here a function? These are the goals: - - overcome common mistakes - - shortcuts to code faster - - replicates rationale in aiohttp - - And these are the non-goals: - - replace FastAPI interface - -""" -import asyncio -from functools import partial -from typing import Callable - -from fastapi import FastAPI - - -def _wrap_partial(func: Callable, app: FastAPI) -> Callable: - if asyncio.iscoroutinefunction(func): - return asyncio.coroutine(partial(func, app)) - return partial(func, app) - - -def add_event_on_startup(app: FastAPI, func: Callable) -> None: - callback = _wrap_partial(func, app) - app.router.add_event_handler("startup", callback) - - -def add_event_on_shutdown(app: FastAPI, func: Callable) -> None: - callback = _wrap_partial(func, app) - app.router.add_event_handler("shutdown", callback) diff --git a/services/api-gateway/tests/unit/conftest.py b/services/api-gateway/tests/unit/conftest.py deleted file mode 100644 index 60811f0446c..00000000000 --- a/services/api-gateway/tests/unit/conftest.py +++ /dev/null @@ -1,40 +0,0 @@ -# pylint:disable=unused-variable -# pylint:disable=unused-argument -# pylint:disable=redefined-outer-name - -import sys -from pathlib import Path - -import pytest - -import simcore_service_api_gateway - - -current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent - - -@pytest.fixture(scope="session") -def project_slug_dir(): - folder = current_dir.parent.parent - assert folder.exists() - assert any(folder.glob("src/simcore_service_api_gateway")) - return folder - - -@pytest.fixture(scope="session") -def package_dir(): - dirpath = Path(simcore_service_api_gateway.__file__).resolve().parent - assert dirpath.exists() - return dirpath - - -@pytest.fixture(scope="session") -def osparc_simcore_root_dir(project_slug_dir): - root_dir = project_slug_dir.parent.parent - assert ( - root_dir and root_dir.exists() - ), "Did you renamed or moved the integration folder under api-gateway??" - assert any(root_dir.glob("services/api-gateway")), ( - "%s not look like rootdir" % root_dir - ) - return root_dir diff --git a/services/api-gateway/tests/unit/test_auth_security.py b/services/api-gateway/tests/unit/test_auth_security.py deleted file mode 100644 index 8a3fca7314e..00000000000 --- a/services/api-gateway/tests/unit/test_auth_security.py +++ /dev/null @@ -1,7 +0,0 @@ -from simcore_service_api_gateway.auth_security import verify_password, get_password_hash - - -def test_has_password(): - hashed_pass = get_password_hash("secret") - assert hashed_pass != "secret" - assert verify_password("secret", hashed_pass) diff --git a/services/api-gateway/tests/unit/test_endpoints_check.py b/services/api-gateway/tests/unit/test_endpoints_check.py deleted file mode 100644 index afff4432ff3..00000000000 --- a/services/api-gateway/tests/unit/test_endpoints_check.py +++ /dev/null @@ -1,37 +0,0 @@ -# pylint: disable=unused-variable -# pylint: disable=unused-argument -# pylint: disable=redefined-outer-name - -import pytest -from starlette.testclient import TestClient - -from simcore_service_api_gateway import application, endpoints_check -from simcore_service_api_gateway.__version__ import api_version -from simcore_service_api_gateway.settings import AppSettings - - -@pytest.fixture -def client(monkeypatch) -> TestClient: - monkeypatch.setenv("POSTGRES_USER", "test") - monkeypatch.setenv("POSTGRES_PASSWORD", "test") - monkeypatch.setenv("POSTGRES_DB", "test") - monkeypatch.setenv("LOGLEVEL", "debug") - monkeypatch.setenv("SC_BOOT_MODE", "production") - - # app - test_settings = AppSettings() - app = application.create(settings=test_settings) - - # routes - app.include_router(endpoints_check.router, tags=["check"]) - - # test client: - # Context manager to trigger events: https://fastapi.tiangolo.com/advanced/testing-events/ - with TestClient(app) as cli: - yield cli - - -def test_read_service_meta(client: TestClient): - response = client.get("/meta") - assert response.status_code == 200 - assert response.json()["version"] == api_version diff --git a/services/api-gateway/tests/unit/test_settings.py b/services/api-gateway/tests/unit/test_settings.py deleted file mode 100644 index 85d0385238a..00000000000 --- a/services/api-gateway/tests/unit/test_settings.py +++ /dev/null @@ -1,20 +0,0 @@ -from simcore_service_api_gateway.settings import AppSettings, BootModeEnum, URL - -# import pytest -import logging -from pprint import pprint - - -def test_app_settings(monkeypatch): - monkeypatch.setenv("POSTGRES_USER", "test") - monkeypatch.setenv("POSTGRES_PASSWORD", "test") - monkeypatch.setenv("POSTGRES_DB", "test") - monkeypatch.setenv("LOGLEVEL", "debug") - monkeypatch.setenv("SC_BOOT_MODE", "production") - - settings = AppSettings() - - pprint(settings.dict()) - assert settings.boot_mode == BootModeEnum.production - assert settings.postgres_dsn == URL("postgresql://test:test@localhost:5432/test") - assert settings.loglevel == logging.DEBUG diff --git a/services/api-server/.env-devel b/services/api-server/.env-devel new file mode 100644 index 00000000000..7b46d0f94f3 --- /dev/null +++ b/services/api-server/.env-devel @@ -0,0 +1,24 @@ +# +# Environment variables used to configure this service +# + +# SEE services/api-server/src/simcore_service_api_server/auth_security.py +SECRET_KEY=d0d0397de2c85ad26ffd4a0f9643dfe3a0ca3937f99cf3c2e174e11b5ef79880 + +# SEE services/api-server/src/simcore_service_api_server/settings.py +LOG_LEVEL=DEBUG + +POSTGRES_USER=test +POSTGRES_PASSWORD=test +POSTGRES_DB=test +POSTGRES_HOST=localhost + +# Enables debug +SC_BOOT_MODE=debug-ptvsd + + +# webserver +WEBSERVER_ENABLED=1 +WEBSERVER_HOST=webserver +# Take from general .env-devel +WEBSERVER_SESSION_SECRET_KEY=REPLACE ME with a key of at least length 32. diff --git a/services/api-server/.gitignore b/services/api-server/.gitignore new file mode 100644 index 00000000000..3168e0a15ca --- /dev/null +++ b/services/api-server/.gitignore @@ -0,0 +1,4 @@ +# outputs from makefile +client +docker-compose.yml +.env diff --git a/services/api-gateway/Dockerfile b/services/api-server/Dockerfile similarity index 67% rename from services/api-gateway/Dockerfile rename to services/api-server/Dockerfile index 42bd8b20907..172ae927177 100644 --- a/services/api-gateway/Dockerfile +++ b/services/api-server/Dockerfile @@ -2,14 +2,21 @@ ARG PYTHON_VERSION="3.6.10" FROM python:${PYTHON_VERSION}-slim as base # # USAGE: -# cd sercices/api-gateway -# docker build -f Dockerfile -t api-gateway:prod --target production ../../ -# docker run api-gateway:prod +# cd sercices/api-server +# docker build -f Dockerfile -t api-server:prod --target production ../../ +# docker run api-server:prod # # REQUIRED: context expected at ``osparc-simcore/`` folder because we need access to osparc-simcore/packages LABEL maintainer=pcrespov +RUN set -eux; \ + apt-get update; \ + apt-get install -y gosu; \ + rm -rf /var/lib/apt/lists/*; \ +# verify that the binary works + gosu nobody true + # simcore-user uid=8004(scu) gid=8004(scu) groups=8004(scu) ENV SC_USER_ID=8004 \ SC_USER_NAME=scu \ @@ -36,7 +43,7 @@ ENV PYTHONDONTWRITEBYTECODE=1 \ # those from our virtualenv. ENV PATH="${VIRTUAL_ENV}/bin:$PATH" -EXPOSE 8000 +EXPOSE 8001 EXPOSE 3000 # -------------------------- Build stage ------------------- @@ -48,11 +55,12 @@ FROM base as build ENV SC_BUILD_TARGET=build -RUN apt-get update -RUN apt-get install -y --no-install-recommends \ - build-essential \ - gcc +RUN apt-get update &&\ + apt-get install -y --no-install-recommends \ + build-essential +# NOTE: python virtualenv is used here such that installed +# packages may be moved to production image easily by copying the venv RUN python -m venv ${VIRTUAL_ENV} RUN pip install --upgrade --no-cache-dir \ @@ -64,7 +72,7 @@ WORKDIR /build # install base 3rd party dependencies # NOTE: copies to /build to avoid overwriting later which would invalidate this layer -COPY --chown=scu:scu services/api-gateway/requirements/_base.txt . +COPY --chown=scu:scu services/api-server/requirements/_base.txt . RUN pip --no-cache-dir install -r _base.txt @@ -72,16 +80,16 @@ RUN pip --no-cache-dir install -r _base.txt # CI in master buils & pushes this target to speed-up image build # # + /build -# + services/api-gateway [scu:scu] WORKDIR +# + services/api-server [scu:scu] WORKDIR # FROM build as cache ENV SC_BUILD_TARGET cache COPY --chown=scu:scu packages /build/packages -COPY --chown=scu:scu services/api-gateway /build/services/api-gateway +COPY --chown=scu:scu services/api-server /build/services/api-server -WORKDIR /build/services/api-gateway +WORKDIR /build/services/api-server RUN pip --no-cache-dir install -r requirements/prod.txt &&\ pip --no-cache-dir list -v @@ -92,7 +100,7 @@ RUN pip --no-cache-dir install -r requirements/prod.txt &&\ # Runs as scu (non-root user) # # + /home/scu $HOME = WORKDIR -# + services/api-gateway [scu:scu] +# + services/api-server [scu:scu] # FROM base as production @@ -104,17 +112,17 @@ ENV PYTHONOPTIMIZE=TRUE WORKDIR /home/scu COPY --chown=scu:scu --from=cache ${VIRTUAL_ENV} ${VIRTUAL_ENV} -COPY --chown=scu:scu services/api-gateway/docker services/api-gateway/docker - +COPY --chown=scu:scu services/api-server/docker services/api-server/docker +RUN chmod +x services/api-server/docker/*.sh HEALTHCHECK --interval=30s \ --timeout=20s \ --start-period=30s \ --retries=3 \ - CMD ["python3", "services/api-gateway/docker/healthcheck.py", "http://localhost:8000/"] + CMD ["python3", "services/api-server/docker/healthcheck.py", "http://localhost:8000/"] -ENTRYPOINT [ "/bin/sh", "services/api-gateway/docker/entrypoint.sh" ] -CMD ["/bin/sh", "services/api-gateway/docker/boot.sh"] +ENTRYPOINT [ "/bin/sh", "services/api-server/docker/entrypoint.sh" ] +CMD ["/bin/sh", "services/api-server/docker/boot.sh"] # --------------------------Development stage ------------------- @@ -131,5 +139,7 @@ ENV SC_BUILD_TARGET=development WORKDIR /devel -ENTRYPOINT ["/bin/sh", "services/api-gateway/docker/entrypoint.sh"] -CMD ["/bin/sh", "services/api-gateway/docker/boot.sh"] +RUN chown -R scu:scu ${VIRTUAL_ENV} + +ENTRYPOINT ["/bin/sh", "services/api-server/docker/entrypoint.sh"] +CMD ["/bin/sh", "services/api-server/docker/boot.sh"] diff --git a/services/api-server/Makefile b/services/api-server/Makefile new file mode 100644 index 00000000000..f14a4727c80 --- /dev/null +++ b/services/api-server/Makefile @@ -0,0 +1,141 @@ +# +# Targets for DEVELOPMENT of Public API Server +# +include ../../scripts/common.Makefile + +# Custom variables +APP_NAME := $(notdir $(CURDIR)) +APP_CLI_NAME := simcore-service-$(APP_NAME) +export APP_VERSION = $(shell cat VERSION) +SRC_DIR := $(abspath $(CURDIR)/src/$(subst -,_,$(APP_CLI_NAME))) + +.PHONY: reqs +reqs: ## compiles pip requirements (.in -> .txt) + @$(MAKE_C) requirements reqs + + +.PHONY: install-dev install-prod install-ci +install-dev install-prod install-ci: _check_venv_active ## install app in development/production or CI mode + # installing in $(subst install-,,$@) mode + pip-sync requirements/$(subst install-,,$@).txt + + +PHONY: tests-unit tests-integration tests +tests: tests-unit tests-integration + +tests-unit: ## runs unit tests + # running unit tests + @pytest -vv --exitfirst --failed-first --durations=10 --pdb $(CURDIR)/tests/unit + +tests-integration: ## runs integration tests against local+production images + # running integration tests local/(service):production images ... + @export DOCKER_REGISTRY=local; \ + export DOCKER_IMAGE_TAG=production; \ + pytest -vv --exitfirst --failed-first --durations=10 --pdb $(CURDIR)/tests/integration + + +# DEVELOPMENT TOOLS ######## + +.env: + cp .env-devel $@ + +docker-compose.yml: + cp $(CURDIR)/tests/utils/docker-compose.yml $@ + +.PHONY: run-devel down +run-devel: .env docker-compose.yml down ## runs app on host with pg fixture for development [for development] + # Starting db (under $<) + docker-compose up --detach + # start app (under $<) + uvicorn simcore_service_api_server.__main__:the_app \ + --reload --reload-dir $(SRC_DIR) \ + --port=8000 --host=0.0.0.0 + +.PHONY: db-tables +db-tables: .env-devel ## upgrades and create tables [for development] + # Upgrading and creating tables + export $(shell grep -v '^#' $< | xargs -d '\n'); \ + python3 tests/utils/init-pg.py + +.PHONY: db-migration +db-migration: .env-devel ## runs discover and upgrade on running pg-db [for development] + # Creating tables + export $(shell grep -v '^#' $< | xargs -d '\n'); \ + sc-pg discover && sc-pg upgrade + +down: docker-compose.yml ## stops pg fixture + # stopping extra services + -@docker-compose -f $< down + # killing any process using port 8000 + -@fuser --kill --verbose --namespace tcp 8000 + +###################### + + +.PHONY: build +build: ## builds docker image (using main services/docker-compose-build.yml) + @$(MAKE_C) ${REPO_BASE_DIR} target=${APP_NAME} $@ + + +# GENERATION python client ------------------------------------------------- +.PHONY: python-client generator-help +# SEE https://openapi-generator.tech/docs/usage#generate +# SEE https://openapi-generator.tech/docs/generators/python + +# NOTE: assumes this repo exists +GIT_USER_ID := ITISFoundation +GIT_REPO_ID := osparc-simcore-python-client + +SCRIPTS_DIR := $(abspath $(CURDIR)/../../scripts) +GENERATOR_NAME := python + +# TODO: put instead to additional-props.yaml and --config=openapi-generator/python-config.yaml +ADDITIONAL_PROPS := \ + generateSourceCodeOnly=false\ + hideGenerationTimestamp=true\ + library=urllib3\ + packageName=osparc\ + packageUrl=https://github.com/$(GIT_USER_ID)/${GIT_REPO_ID}.git\ + packageVersion=$(APP_VERSION)\ + projectName=osparc-simcore-python-api +ADDITIONAL_PROPS := $(foreach prop,$(ADDITIONAL_PROPS),$(strip $(prop))) + +null := +space := $(null) # +comma := , + +# TODO: fix this, shall be generated upon start when flag is provided + + + +# TODO: code_samples still added by hand! +client: + # cloning $(GIT_USER_ID)/$(GIT_REPO_ID) -> $@ + git clone git@github.com:$(GIT_USER_ID)/$(GIT_REPO_ID).git $@ + cd client; git checkout -b "upgrade-${APP_VERSION}" + + +python-client: client ## runs python client generator + # download openapi.json + curl -O http://localhost:8000/api/v0/openapi.json + + cd $(CURDIR); \ + $(SCRIPTS_DIR)/openapi-generator-cli.bash generate \ + --generator-name=$(GENERATOR_NAME) \ + --git-user-id=$(GIT_USER_ID)\ + --git-repo-id=$(GIT_REPO_ID)\ + --http-user-agent="osparc-api/{packageVersion}/{language}"\ + --input-spec=/local/openapi.json \ + --output=/local/client \ + --additional-properties=$(subst $(space),$(comma),$(strip $(ADDITIONAL_PROPS)))\ + --package-name=osparc\ + --release-note="Updated to $(APP_VERSION)" + + + + +generator-help: ## help on client-api generator + # generate help + @$(SCRIPTS_DIR)/openapi-generator-cli.bash help generate + # generator config help + @$(SCRIPTS_DIR)/openapi-generator-cli.bash config-help -g $(GENERATOR_NAME) diff --git a/services/api-gateway/README.md b/services/api-server/README.md similarity index 53% rename from services/api-gateway/README.md rename to services/api-server/README.md index 0f60933bad4..4386afbe3a3 100644 --- a/services/api-gateway/README.md +++ b/services/api-server/README.md @@ -1,18 +1,18 @@ -# api-gateway +# api-server -[![image-size]](https://microbadger.com/images/itisfoundation/api-gateway. "More on itisfoundation/api-gateway.:staging-latest image") +[![image-size]](https://microbadger.com/images/itisfoundation/api-server. "More on itisfoundation/api-server.:staging-latest image") -[![image-badge]](https://microbadger.com/images/itisfoundation/api-gateway "More on Public API Gateway image in registry") -[![image-version]](https://microbadger.com/images/itisfoundation/api-gateway "More on Public API Gateway image in registry") -[![image-commit]](https://microbadger.com/images/itisfoundation/api-gateway "More on Public API Gateway image in registry") +[![image-badge]](https://microbadger.com/images/itisfoundation/api-server "More on Public API Server image in registry") +[![image-version]](https://microbadger.com/images/itisfoundation/api-server "More on Public API Server image in registry") +[![image-commit]](https://microbadger.com/images/itisfoundation/api-server "More on Public API Server image in registry") -Platform's API Gateway for external clients +Platform's public API server -[image-size]:https://img.shields.io/microbadger/image-size/itisfoundation/api-gateway./staging-latest.svg?label=api-gateway.&style=flat -[image-badge]:https://images.microbadger.com/badges/image/itisfoundation/api-gateway.svg -[image-version]https://images.microbadger.com/badges/version/itisfoundation/api-gateway.svg -[image-commit]:https://images.microbadger.com/badges/commit/itisfoundation/api-gateway.svg +[image-size]:https://img.shields.io/microbadger/image-size/itisfoundation/api-server./staging-latest.svg?label=api-server.&style=flat +[image-badge]:https://images.microbadger.com/badges/image/itisfoundation/api-server.svg +[image-version]https://images.microbadger.com/badges/version/itisfoundation/api-server.svg +[image-commit]:https://images.microbadger.com/badges/commit/itisfoundation/api-server.svg @@ -21,3 +21,8 @@ Platform's API Gateway for external clients - [Design patterns for modern web APIs](https://blog.feathersjs.com/design-patterns-for-modern-web-apis-1f046635215) by D. Luecke - [API Design Guide](https://cloud.google.com/apis/design/) by Google Cloud + + +## Acknoledgments + + Many of the ideas in this design were taken from the **excellent** work at https://github.com/nsidnev/fastapi-realworld-example-app by *Nik Sidnev* using the **extraordinary** [fastapi](https://fastapi.tiangolo.com/) package by *Sebastian Ramirez*. diff --git a/services/api-server/VERSION b/services/api-server/VERSION new file mode 100644 index 00000000000..9325c3ccda9 --- /dev/null +++ b/services/api-server/VERSION @@ -0,0 +1 @@ +0.3.0 \ No newline at end of file diff --git a/services/api-gateway/docker/boot.sh b/services/api-server/docker/boot.sh similarity index 61% rename from services/api-gateway/docker/boot.sh rename to services/api-server/docker/boot.sh index cd5cf8506e3..5045365b640 100755 --- a/services/api-gateway/docker/boot.sh +++ b/services/api-server/docker/boot.sh @@ -8,16 +8,19 @@ INFO="INFO: [$(basename "$0")] " # BOOTING application --------------------------------------------- echo "$INFO" "Booting in ${SC_BOOT_MODE} mode ..." -echo " User :$(id "$(whoami)")" -echo " Workdir :$(pwd)" +echo "$INFO" "User :$(id "$(whoami)")" +echo "$INFO" "Workdir : $(pwd)" -if [ "${SC_BUILD_TARGET}" = "development" ] -then +if [ "${SC_BUILD_TARGET}" = "development" ]; then echo "$INFO" "Environment :" - printenv | sed 's/=/: /' | sed 's/^/ /' | sort + printenv | sed 's/=/: /' | sed 's/^/ /' | sort echo "$INFO" "Python :" python --version | sed 's/^/ /' command -v python | sed 's/^/ /' + + cd services/api-server || exit 1 + pip --quiet --no-cache-dir install -r requirements/dev.txt + cd - || exit 1 echo "$INFO" "PIP :" pip list | sed 's/^/ /' fi @@ -27,7 +30,7 @@ if [ "${SC_BOOT_MODE}" = "debug-ptvsd" ] then # NOTE: ptvsd is programmatically enabled inside of the service # this way we can have reload in place as well - exec uvicorn simcore_service_api_gateway.main:the_app --reload --host 0.0.0.0 + exec uvicorn simcore_service_api_server.__main__:the_app --reload --host 0.0.0.0 else - exec simcore-service-api-gateway + exec simcore-service-api-server fi diff --git a/services/api-server/docker/entrypoint.sh b/services/api-server/docker/entrypoint.sh new file mode 100755 index 00000000000..c1bfc513856 --- /dev/null +++ b/services/api-server/docker/entrypoint.sh @@ -0,0 +1,76 @@ +#!/bin/sh +set -o errexit +set -o nounset + +IFS=$(printf '\n\t') + +INFO="INFO: [$(basename "$0")] " +WARNING="WARNING: [$(basename "$0")] " +ERROR="ERROR: [$(basename "$0")] " + +# This entrypoint script: +# +# - Executes *inside* of the container upon start as --user [default root] +# - Notice that the container *starts* as --user [default root] but +# *runs* as non-root user [scu] +# +echo "$INFO" "Entrypoint for stage ${SC_BUILD_TARGET} ..." +echo "$INFO" "User :$(id "$(whoami)")" +echo "$INFO" "Workdir : $(pwd)" +echo "$INFO" "User : $(id scu)" +echo "$INFO" "python : $(command -v python)" +echo "$INFO" "pip : $(command -v pip)" + +USERNAME=scu +GROUPNAME=scu + +if [ "${SC_BUILD_TARGET}" = "development" ]; then + echo "$INFO" "development mode detected..." + # NOTE: expects docker run ... -v $(pwd):$DEVEL_MOUNT + DEVEL_MOUNT=/devel/services/api-server + + stat $DEVEL_MOUNT >/dev/null 2>&1 || + (echo "$ERROR" "You must mount '$DEVEL_MOUNT' to deduce user and group ids" && exit 1) + + echo "$INFO" "setting correct user id/group id..." + HOST_USERID=$(stat --format=%u "${DEVEL_MOUNT}") + HOST_GROUPID=$(stat --format=%g "${DEVEL_MOUNT}") + CONT_GROUPNAME=$(getent group "${HOST_GROUPID}" | cut --delimiter=: --fields=1) + if [ "$HOST_USERID" -eq 0 ]; then + echo "$WARNING" "Folder mounted owned by root user... adding $SC_USER_NAME to root..." + adduser "$SC_USER_NAME" root + else + echo "$INFO" "Folder mounted owned by user $HOST_USERID:$HOST_GROUPID-'$CONT_GROUPNAME'..." + # take host's credentials in $SC_USER_NAME + if [ -z "$CONT_GROUPNAME" ]; then + echo "$WARNING" "Creating new group grp$SC_USER_NAME" + CONT_GROUPNAME=grp$SC_USER_NAME + addgroup --gid "$HOST_GROUPID" "$CONT_GROUPNAME" + else + echo "$INFO" "group already exists" + fi + echo "$INFO" "Adding $SC_USER_NAME to group $CONT_GROUPNAME..." + adduser "$SC_USER_NAME" "$CONT_GROUPNAME" + + echo "$WARNING" "Changing ownership [this could take some time]" + echo "$INFO" "Changing $SC_USER_NAME:$SC_USER_NAME ($SC_USER_ID:$SC_USER_ID) to $SC_USER_NAME:$CONT_GROUPNAME ($HOST_USERID:$HOST_GROUPID)" + usermod --uid "$HOST_USERID" --gid "$HOST_GROUPID" "$SC_USER_NAME" + + echo "$INFO" "Changing group properties of files around from $SC_USER_ID to group $CONT_GROUPNAME" + find / -path /proc -prune -o -group "$SC_USER_ID" -exec chgrp --no-dereference "$CONT_GROUPNAME" {} \; + # change user property of files already around + echo "$INFO" "Changing ownership properties of files around from $SC_USER_ID to group $CONT_GROUPNAME" + find / -path /proc -prune -o -user "$SC_USER_ID" -exec chown --no-dereference "$SC_USER_NAME" {} \; + fi +fi + +if [ "${SC_BOOT_MODE}" = "debug-ptvsd" ]; then + # NOTE: production does NOT pre-installs ptvsd + pip install --no-cache-dir ptvsd +fi + +echo "$INFO Starting $* ..." +echo " $SC_USER_NAME rights : $(id "$SC_USER_NAME")" +echo " local dir : $(ls -al)" + +exec gosu "$SC_USER_NAME" "$@" diff --git a/services/api-gateway/docker/healthcheck.py b/services/api-server/docker/healthcheck.py similarity index 99% rename from services/api-gateway/docker/healthcheck.py rename to services/api-server/docker/healthcheck.py index 93c59bb7826..23a3ba3ec11 100644 --- a/services/api-gateway/docker/healthcheck.py +++ b/services/api-server/docker/healthcheck.py @@ -18,7 +18,6 @@ import os import sys - from urllib.request import urlopen SUCCESS, UNHEALTHY = 0, 1 diff --git a/services/api-server/openapi.json b/services/api-server/openapi.json new file mode 100644 index 00000000000..cc38013fa9e --- /dev/null +++ b/services/api-server/openapi.json @@ -0,0 +1,296 @@ +{ + "openapi": "3.0.2", + "info": { + "title": "Public API Server", + "description": "**osparc-simcore Public RESTful API Specifications**\n## Python Client\n- Github [repo](https://github.com/ITISFoundation/osparc-simcore-python-client)\n- Quick install: ``pip install git+https://github.com/ITISFoundation/osparc-simcore-python-client.git``\n", + "version": "0.3.0", + "x-logo": { + "url": "https://raw.githubusercontent.com/ITISFoundation/osparc-manual/b809d93619512eb60c827b7e769c6145758378d0/_media/osparc-logo.svg", + "altText": "osparc-simcore logo" + } + }, + "paths": { + "/v0/meta": { + "get": { + "tags": [ + "meta" + ], + "summary": "Get Service Metadata", + "operationId": "get_service_metadata", + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/Meta" + } + } + } + } + } + } + }, + "/v0/me": { + "get": { + "tags": [ + "users" + ], + "summary": "Get My Profile", + "operationId": "get_my_profile", + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/Profile" + } + } + } + } + }, + "security": [ + { + "HTTPBasic": [] + } + ] + }, + "put": { + "tags": [ + "users" + ], + "summary": "Update My Profile", + "operationId": "update_my_profile", + "requestBody": { + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/ProfileUpdate" + } + } + }, + "required": true + }, + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/Profile" + } + } + } + }, + "422": { + "description": "Validation Error", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/HTTPValidationError" + } + } + } + } + }, + "security": [ + { + "HTTPBasic": [] + } + ] + } + } + }, + "components": { + "schemas": { + "Groups": { + "title": "Groups", + "required": [ + "me", + "all" + ], + "type": "object", + "properties": { + "me": { + "$ref": "#/components/schemas/UsersGroup" + }, + "organizations": { + "title": "Organizations", + "type": "array", + "items": { + "$ref": "#/components/schemas/UsersGroup" + }, + "default": [] + }, + "all": { + "$ref": "#/components/schemas/UsersGroup" + } + } + }, + "HTTPValidationError": { + "title": "HTTPValidationError", + "type": "object", + "properties": { + "errors": { + "title": "Errors", + "type": "array", + "items": { + "$ref": "#/components/schemas/ValidationError" + } + } + } + }, + "Meta": { + "title": "Meta", + "required": [ + "name", + "version" + ], + "type": "object", + "properties": { + "name": { + "title": "Name", + "type": "string" + }, + "version": { + "title": "Version", + "pattern": "^(0|[1-9]\\d*)(\\.(0|[1-9]\\d*)){2}(-(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*)(\\.(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*))*)?(\\+[-\\da-zA-Z]+(\\.[-\\da-zA-Z-]+)*)?$", + "type": "string" + }, + "released": { + "title": "Released", + "type": "object", + "additionalProperties": { + "type": "string", + "pattern": "^(0|[1-9]\\d*)(\\.(0|[1-9]\\d*)){2}(-(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*)(\\.(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*))*)?(\\+[-\\da-zA-Z]+(\\.[-\\da-zA-Z-]+)*)?$" + }, + "description": "Maps every route's path tag with a released version" + } + }, + "example": { + "name": "simcore_service_foo", + "version": "2.4.45", + "released": { + "v1": "1.3.4", + "v2": "2.4.45" + } + } + }, + "Profile": { + "title": "Profile", + "required": [ + "login", + "role" + ], + "type": "object", + "properties": { + "first_name": { + "title": "First Name", + "type": "string", + "example": "James" + }, + "last_name": { + "title": "Last Name", + "type": "string", + "example": "Maxwell" + }, + "login": { + "title": "Login", + "type": "string", + "format": "email" + }, + "role": { + "title": "Role", + "enum": [ + "ANONYMOUS", + "GUEST", + "USER", + "TESTER" + ], + "type": "string" + }, + "groups": { + "$ref": "#/components/schemas/Groups" + }, + "gravatar_id": { + "title": "Gravatar Id", + "maxLength": 40, + "type": "string", + "description": "Hash value of email to retrieve an avatar image from https://www.gravatar.com" + } + } + }, + "ProfileUpdate": { + "title": "ProfileUpdate", + "type": "object", + "properties": { + "first_name": { + "title": "First Name", + "type": "string", + "example": "James" + }, + "last_name": { + "title": "Last Name", + "type": "string", + "example": "Maxwell" + } + } + }, + "UsersGroup": { + "title": "UsersGroup", + "required": [ + "gid", + "label" + ], + "type": "object", + "properties": { + "gid": { + "title": "Gid", + "type": "string" + }, + "label": { + "title": "Label", + "type": "string" + }, + "description": { + "title": "Description", + "type": "string" + } + } + }, + "ValidationError": { + "title": "ValidationError", + "required": [ + "loc", + "msg", + "type" + ], + "type": "object", + "properties": { + "loc": { + "title": "Location", + "type": "array", + "items": { + "type": "string" + } + }, + "msg": { + "title": "Message", + "type": "string" + }, + "type": { + "title": "Error Type", + "type": "string" + } + } + } + }, + "securitySchemes": { + "HTTPBasic": { + "type": "http", + "scheme": "basic" + } + } + } +} diff --git a/services/api-gateway/requirements/Makefile b/services/api-server/requirements/Makefile similarity index 100% rename from services/api-gateway/requirements/Makefile rename to services/api-server/requirements/Makefile diff --git a/services/api-server/requirements/_base.in b/services/api-server/requirements/_base.in new file mode 100644 index 00000000000..89ed918052c --- /dev/null +++ b/services/api-server/requirements/_base.in @@ -0,0 +1,22 @@ +# +# Specifies third-party dependencies for 'services/api-server/src' +# +# NOTE: ALL version constraints MUST be commented + +-r ../../../packages/postgres-database/requirements/_base.in + +fastapi[all] +aiopg[sa] +tenacity +passlib[bcrypt] +loguru +pydantic[dotenv] +cryptography +httpx + +# TODO: check alternative https://github.com/latchset/jwcrypto/ +pyjwt>=1.7.1 # Vulnerable SEE https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/?_ga=2.21160507.1609921856.1592236287-1918774871.1591379535 + + +async-exit-stack # not needed when python>=3.7 +async-generator # not needed when python>=3.7 diff --git a/services/api-server/requirements/_base.txt b/services/api-server/requirements/_base.txt new file mode 100644 index 00000000000..8bed8f166a8 --- /dev/null +++ b/services/api-server/requirements/_base.txt @@ -0,0 +1,65 @@ +# +# This file is autogenerated by pip-compile +# To update, run: +# +# pip-compile --output-file=requirements/_base.txt requirements/_base.in +# +aiocontextvars==0.2.2 # via loguru +aiofiles==0.5.0 # via fastapi +aiopg[sa]==1.0.0 # via -r requirements/_base.in +aniso8601==7.0.0 # via graphene +async-exit-stack==1.0.1 # via -r requirements/_base.in, fastapi +async-generator==1.10 # via -r requirements/_base.in, fastapi +bcrypt==3.1.7 # via passlib +certifi==2020.4.5.2 # via httpx, requests +cffi==1.14.0 # via bcrypt, cryptography +chardet==3.0.4 # via httpx, requests +click==7.1.2 # via uvicorn +contextvars==2.4 # via aiocontextvars, sniffio +cryptography==2.9.2 # via -r requirements/_base.in +dataclasses==0.7 # via pydantic +dnspython==1.16.0 # via email-validator +email-validator==1.1.1 # via fastapi +fastapi[all]==0.57.0 # via -r requirements/_base.in +graphene==2.1.8 # via fastapi +graphql-core==2.3.2 # via graphene, graphql-relay +graphql-relay==2.0.1 # via graphene +h11==0.9.0 # via httpcore, uvicorn +h2==3.2.0 # via httpcore +hpack==3.0.0 # via h2 +hstspreload==2020.6.9 # via httpx +httpcore==0.9.1 # via httpx +httptools==0.1.1 # via uvicorn +httpx==0.13.3 # via -r requirements/_base.in +hyperframe==5.2.0 # via h2 +idna==2.9 # via email-validator, httpx, requests, yarl +immutables==0.14 # via contextvars +itsdangerous==1.1.0 # via fastapi +jinja2==2.11.2 # via fastapi +loguru==0.5.1 # via -r requirements/_base.in +markupsafe==1.1.1 # via jinja2 +multidict==4.7.6 # via yarl +orjson==3.1.0 # via fastapi +passlib[bcrypt]==1.7.2 # via -r requirements/_base.in +promise==2.3 # via graphql-core, graphql-relay +psycopg2-binary==2.8.5 # via aiopg, sqlalchemy +pycparser==2.20 # via cffi +pydantic[dotenv]==1.5.1 # via -r requirements/_base.in, fastapi +pyjwt==1.7.1 # via -r requirements/_base.in +python-dotenv==0.13.0 # via pydantic +python-multipart==0.0.5 # via fastapi +pyyaml==5.3.1 # via fastapi +requests==2.23.0 # via fastapi +rfc3986==1.4.0 # via httpx +rx==1.6.1 # via graphql-core +six==1.15.0 # via bcrypt, cryptography, graphene, graphql-core, graphql-relay, python-multipart, tenacity +sniffio==1.1.0 # via httpcore, httpx +sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/../../../packages/postgres-database/requirements/_base.in, aiopg +starlette==0.13.4 # via fastapi +tenacity==6.2.0 # via -r requirements/_base.in +ujson==3.0.0 # via fastapi +urllib3==1.25.9 # via requests +uvicorn==0.11.5 # via fastapi +uvloop==0.14.0 # via uvicorn +websockets==8.1 # via uvicorn +yarl==1.4.2 # via -r requirements/../../../packages/postgres-database/requirements/_base.in diff --git a/services/api-gateway/requirements/_test.in b/services/api-server/requirements/_test.in similarity index 66% rename from services/api-gateway/requirements/_test.in rename to services/api-server/requirements/_test.in index 7aa64304254..9e44fc7dc40 100644 --- a/services/api-gateway/requirements/_test.in +++ b/services/api-server/requirements/_test.in @@ -1,12 +1,12 @@ # -# Specifies dependencies required to run 'services/api-gateway/test' +# Specifies dependencies required to run 'services/api-server/test' # both for unit and integration tests!! # # frozen specs -r _base.txt -# 'services/api-gateway/tests/unit' dependencies +# 'services/api-server/tests/unit' dependencies # testing pytest @@ -15,9 +15,14 @@ pytest-cov pytest-docker pytest-mock pytest-runner +asgi_lifespan # fixtures -Faker +faker + +# db migration +alembic +docker # tools pylint @@ -27,3 +32,4 @@ codecov # scripts/templates change_case jinja2 +ptvsd diff --git a/services/api-server/requirements/_test.txt b/services/api-server/requirements/_test.txt new file mode 100644 index 00000000000..cacef8fad5c --- /dev/null +++ b/services/api-server/requirements/_test.txt @@ -0,0 +1,107 @@ +# +# This file is autogenerated by pip-compile +# To update, run: +# +# pip-compile --output-file=requirements/_test.txt requirements/_test.in +# +aiocontextvars==0.2.2 # via -r requirements/_base.txt, loguru +aiofiles==0.5.0 # via -r requirements/_base.txt, fastapi +aiohttp==3.6.2 # via pytest-aiohttp +aiopg[sa]==1.0.0 # via -r requirements/_base.txt +alembic==1.4.2 # via -r requirements/_test.in +aniso8601==7.0.0 # via -r requirements/_base.txt, graphene +asgi-lifespan==1.0.1 # via -r requirements/_test.in +astroid==2.4.2 # via pylint +async-exit-stack==1.0.1 # via -r requirements/_base.txt, asgi-lifespan, fastapi +async-generator==1.10 # via -r requirements/_base.txt, fastapi +async-timeout==3.0.1 # via aiohttp +attrs==19.3.0 # via aiohttp, pytest, pytest-docker +bcrypt==3.1.7 # via -r requirements/_base.txt, passlib +certifi==2020.4.5.2 # via -r requirements/_base.txt, httpx, requests +cffi==1.14.0 # via -r requirements/_base.txt, bcrypt, cryptography +change-case==0.5.2 # via -r requirements/_test.in +chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, httpx, requests +click==7.1.2 # via -r requirements/_base.txt, uvicorn +codecov==2.1.6 # via -r requirements/_test.in +contextvars==2.4 # via -r requirements/_base.txt, aiocontextvars, sniffio +coverage==4.5.4 # via codecov, coveralls, pytest-cov +coveralls==2.0.0 # via -r requirements/_test.in +cryptography==2.9.2 # via -r requirements/_base.txt +dataclasses==0.7 # via -r requirements/_base.txt, pydantic +dnspython==1.16.0 # via -r requirements/_base.txt, email-validator +docker==4.2.1 # via -r requirements/_test.in +docopt==0.6.2 # via coveralls +email-validator==1.1.1 # via -r requirements/_base.txt, fastapi +faker==4.1.0 # via -r requirements/_test.in +fastapi[all]==0.57.0 # via -r requirements/_base.txt +graphene==2.1.8 # via -r requirements/_base.txt, fastapi +graphql-core==2.3.2 # via -r requirements/_base.txt, graphene, graphql-relay +graphql-relay==2.0.1 # via -r requirements/_base.txt, graphene +h11==0.9.0 # via -r requirements/_base.txt, httpcore, uvicorn +h2==3.2.0 # via -r requirements/_base.txt, httpcore +hpack==3.0.0 # via -r requirements/_base.txt, h2 +hstspreload==2020.6.9 # via -r requirements/_base.txt, httpx +httpcore==0.9.1 # via -r requirements/_base.txt, httpx +httptools==0.1.1 # via -r requirements/_base.txt, uvicorn +httpx==0.13.3 # via -r requirements/_base.txt +hyperframe==5.2.0 # via -r requirements/_base.txt, h2 +idna-ssl==1.1.0 # via aiohttp +idna==2.9 # via -r requirements/_base.txt, email-validator, httpx, requests, yarl +immutables==0.14 # via -r requirements/_base.txt, contextvars +importlib-metadata==1.6.1 # via pluggy, pytest +isort==4.3.21 # via pylint +itsdangerous==1.1.0 # via -r requirements/_base.txt, fastapi +jinja2==2.11.2 # via -r requirements/_base.txt, -r requirements/_test.in, fastapi +lazy-object-proxy==1.4.3 # via astroid +loguru==0.5.1 # via -r requirements/_base.txt +mako==1.1.3 # via alembic +markupsafe==1.1.1 # via -r requirements/_base.txt, jinja2, mako +mccabe==0.6.1 # via pylint +more-itertools==8.4.0 # via pytest +multidict==4.7.6 # via -r requirements/_base.txt, aiohttp, yarl +orjson==3.1.0 # via -r requirements/_base.txt, fastapi +packaging==20.4 # via pytest +passlib[bcrypt]==1.7.2 # via -r requirements/_base.txt +pluggy==0.13.1 # via pytest +promise==2.3 # via -r requirements/_base.txt, graphql-core, graphql-relay +psycopg2-binary==2.8.5 # via -r requirements/_base.txt, aiopg, sqlalchemy +ptvsd==4.3.2 # via -r requirements/_test.in +py==1.8.1 # via pytest +pycparser==2.20 # via -r requirements/_base.txt, cffi +pydantic[dotenv]==1.5.1 # via -r requirements/_base.txt, fastapi +pyjwt==1.7.1 # via -r requirements/_base.txt +pylint==2.5.3 # via -r requirements/_test.in +pyparsing==2.4.7 # via packaging +pytest-aiohttp==0.3.0 # via -r requirements/_test.in +pytest-cov==2.10.0 # via -r requirements/_test.in +pytest-docker==0.7.2 # via -r requirements/_test.in +pytest-mock==3.1.1 # via -r requirements/_test.in +pytest-runner==5.2 # via -r requirements/_test.in +pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-mock +python-dateutil==2.8.1 # via alembic, faker +python-dotenv==0.13.0 # via -r requirements/_base.txt, pydantic +python-editor==1.0.4 # via alembic +python-multipart==0.0.5 # via -r requirements/_base.txt, fastapi +pyyaml==5.3.1 # via -r requirements/_base.txt, fastapi +requests==2.23.0 # via -r requirements/_base.txt, codecov, coveralls, docker, fastapi +rfc3986==1.4.0 # via -r requirements/_base.txt, httpx +rx==1.6.1 # via -r requirements/_base.txt, graphql-core +six==1.15.0 # via -r requirements/_base.txt, astroid, bcrypt, cryptography, docker, graphene, graphql-core, graphql-relay, packaging, promise, python-dateutil, python-multipart, tenacity, websocket-client +sniffio==1.1.0 # via -r requirements/_base.txt, asgi-lifespan, httpcore, httpx +sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_base.txt, aiopg, alembic +starlette==0.13.4 # via -r requirements/_base.txt, fastapi +tenacity==6.2.0 # via -r requirements/_base.txt +text-unidecode==1.3 # via faker +toml==0.10.1 # via pylint +typed-ast==1.4.1 # via astroid +typing-extensions==3.7.4.2 # via aiohttp +ujson==3.0.0 # via -r requirements/_base.txt, fastapi +urllib3==1.25.9 # via -r requirements/_base.txt, requests +uvicorn==0.11.5 # via -r requirements/_base.txt, fastapi +uvloop==0.14.0 # via -r requirements/_base.txt, uvicorn +wcwidth==0.2.4 # via pytest +websocket-client==0.57.0 # via docker +websockets==8.1 # via -r requirements/_base.txt, uvicorn +wrapt==1.12.1 # via astroid +yarl==1.4.2 # via -r requirements/_base.txt, aiohttp +zipp==3.1.0 # via importlib-metadata diff --git a/services/api-gateway/requirements/ci.txt b/services/api-server/requirements/ci.txt similarity index 81% rename from services/api-gateway/requirements/ci.txt rename to services/api-server/requirements/ci.txt index ad6e1a65628..f388a6d8850 100644 --- a/services/api-gateway/requirements/ci.txt +++ b/services/api-server/requirements/ci.txt @@ -1,4 +1,4 @@ -# Shortcut to install all packages for the contigous integration (CI) of 'services/api-gateway' +# Shortcut to install all packages for the contigous integration (CI) of 'services/api-server' # # - As ci.txt but w/ tests # @@ -11,6 +11,7 @@ # installs this repo's packages ../../packages/pytest-simcore/ +../../packages/postgres-database/ # installs current package . diff --git a/services/api-gateway/requirements/dev.txt b/services/api-server/requirements/dev.txt similarity index 90% rename from services/api-gateway/requirements/dev.txt rename to services/api-server/requirements/dev.txt index 2558f95c147..692cfdd6917 100644 --- a/services/api-gateway/requirements/dev.txt +++ b/services/api-server/requirements/dev.txt @@ -1,4 +1,4 @@ -# Shortcut to install all packages needed to develop 'services/api-gateway' +# Shortcut to install all packages needed to develop 'services/api-server' # # - As ci.txt but with current and repo packages in develop (edit) mode # @@ -11,6 +11,7 @@ # installs this repo's packages -e ../../packages/pytest-simcore/ +-e ../../packages/postgres-database/[migration] # installs current package -e . diff --git a/services/api-gateway/requirements/prod.txt b/services/api-server/requirements/prod.txt similarity index 55% rename from services/api-gateway/requirements/prod.txt rename to services/api-server/requirements/prod.txt index 0b7f35cdfa2..12498862a7c 100644 --- a/services/api-gateway/requirements/prod.txt +++ b/services/api-server/requirements/prod.txt @@ -1,4 +1,4 @@ -# Shortcut to install 'services/api-gateway' for production +# Shortcut to install 'services/api-server' for production # # - As ci.txt but w/o tests # @@ -9,5 +9,8 @@ # installs base requirements -r _base.txt +# installs this repo's packages +../../packages/postgres-database/ + # installs current package . diff --git a/services/api-gateway/tests/unit/test_client_sdk.py b/services/api-server/sandbox/_test_client_sdk.py similarity index 91% rename from services/api-gateway/tests/unit/test_client_sdk.py rename to services/api-server/sandbox/_test_client_sdk.py index d5b713d2a1c..f2a17a19081 100644 --- a/services/api-gateway/tests/unit/test_client_sdk.py +++ b/services/api-server/sandbox/_test_client_sdk.py @@ -1,18 +1,24 @@ -# pylint: disable=unused-variable -# pylint: disable=unused-argument -# pylint: disable=redefined-outer-name -# pylint: disable=protected-access - +# pylint: skip-file +# fmt: off +# simcore_api_sdk.abc.py +import abc as _abc +import json from pprint import pprint -from typing import Dict, List +from typing import Any, Dict, List, Optional +import aiohttp +# DEV --------------------------------------------------------------------- +import attr import pytest +# simcore_api_sdk/v0/me_api.py +from attr import NOTHING from starlette.testclient import TestClient +from yarl import URL -from simcore_service_api_gateway import application, endpoints_check -from simcore_service_api_gateway.__version__ import api_vtag -from simcore_service_api_gateway.settings import AppSettings +from simcore_service_api_server import application, endpoints_check +from simcore_service_api_server.__version__ import api_vtag +from simcore_service_api_server.settings import AppSettings @pytest.fixture @@ -36,19 +42,6 @@ def client(monkeypatch) -> TestClient: yield cli -# DEV --------------------------------------------------------------------- -import attr -import aiohttp - -from yarl import URL -from typing import Optional, Any -import json - - -# simcore_api_sdk.abc.py -import abc as _abc - - @attr.s(auto_attribs=True) class ApiResponse: status: int @@ -100,9 +93,6 @@ async def _make_request( # simcore_api_sdk/v0/__init__.py # from ._openapi import ApiSession -# simcore_api_sdk/v0/me_api.py -from attr import NOTHING - class MeAPI(API): async def get(self): @@ -176,7 +166,7 @@ async def test_client_sdk(): async with ApiSession(api_key="1234", api_secret="secret") as api: # GET /me is a special resource that is unique - me: Dict = await api.me.get() + me: Profile = await api.me.get() pprint(me) # can update SOME entries @@ -206,7 +196,7 @@ async def test_client_sdk(): prj: Dict = await api.studies.get("1234") # POST /studies - new_prj: Dict = await api.studies.create() + new_prj: Study = await api.studies.create() # PUT or PATCH /studies/{prj_id} # this is a patch diff --git a/services/api-server/sandbox/_test_schemas.py b/services/api-server/sandbox/_test_schemas.py new file mode 100644 index 00000000000..7482c3aba47 --- /dev/null +++ b/services/api-server/sandbox/_test_schemas.py @@ -0,0 +1,21 @@ +from typing import Optional + +import sqlalchemy as sa +from aiopg.sa.engine import Engine +from aiopg.sa.result import ResultProxy, RowProxy + +import simcore_api_server.model.pg_tables as tbl +from simcore_api_server.schemas import UserInDB + + +async def test_row_proxy_into_model(engine: Engine): + # test how RowProxy converts into into UserInDB + + with engine.acquire() as conn: + stmt = sa.select([tbl.users,]).where(tbl.users.c.id == 1) + + res: ResultProxy = await conn.execute(stmt) + row: Optional[RowProxy] = await res.fetchone() + + user = UserInDB.from_orm(row) + assert user diff --git a/services/api-server/sandbox/api-key-auth.py b/services/api-server/sandbox/api-key-auth.py new file mode 100644 index 00000000000..824fdb5f8e4 --- /dev/null +++ b/services/api-server/sandbox/api-key-auth.py @@ -0,0 +1,38 @@ +# pylint: skip-file +# fmt: off + +import uvicorn +from fastapi import Depends, FastAPI, HTTPException, Security +from fastapi.security.api_key import APIKeyHeader +from starlette.status import HTTP_403_FORBIDDEN + +API_KEY = "1234567asdfgh" +API_KEY_NAME = "access_token" # this is acces + + +def get_active_user( + api_key: str = Security(APIKeyHeader(name=API_KEY_NAME, scheme_name="ApiKeyAuth")) +) -> str: + # the api_key is a jwt created upon login + # + # - decode jwt + # - authenticate user + + if api_key != API_KEY: + raise HTTPException( + status_code=HTTP_403_FORBIDDEN, detail="Invalid credentials" + ) + + return user_id + + +app = FastAPI() + + +@app.get("/foo") +def foo(user_id: str = Depends(get_active_user)): + return f"hi {user_id}" + + +if __name__ == "__main__": + uvicorn.run(app, host="0.0.0.0", port=8000) diff --git a/services/api-server/sandbox/get_app_state.py b/services/api-server/sandbox/get_app_state.py new file mode 100644 index 00000000000..342971bd1dd --- /dev/null +++ b/services/api-server/sandbox/get_app_state.py @@ -0,0 +1,24 @@ +import uvicorn +from fastapi import Depends, FastAPI +from fastapi.applications import State +from fastapi.requests import Request + +app = FastAPI(title="get_app_state") + +# Dependences WITH arguents +def _get_app(request: Request) -> FastAPI: + return request.app + + +def _get_app_state(request: Request) -> State: + return request.app.state + + +@app.get("/app") +async def get_server_ip(my_app: FastAPI = Depends(_get_app)): + assert my_app == app + return my_app.title + + +if __name__ == "__main__": + uvicorn.run(app, host="0.0.0.0", port=8000) diff --git a/services/api-server/sandbox/model_conversions.py b/services/api-server/sandbox/model_conversions.py new file mode 100644 index 00000000000..0c2c4dfc86c --- /dev/null +++ b/services/api-server/sandbox/model_conversions.py @@ -0,0 +1,91 @@ +from pprint import pprint +from typing import List + +import attr +from pydantic import BaseModel, ValidationError, constr +from sqlalchemy import Column, Integer, String +from sqlalchemy.dialects.postgresql import ARRAY +from sqlalchemy.ext.declarative import declarative_base + +# https://pydantic-docs.helpmanual.io/usage/models/#orm-mode-aka-arbitrary-class-instances + +Base = declarative_base() + + +class CompanyOrm(Base): + __tablename__ = "companies" + id = Column(Integer, primary_key=True, nullable=False) + public_key = Column(String(20), index=True, nullable=False, unique=True) + name = Column(String(63), unique=True) + domains = Column(ARRAY(String(255))) + + +class Bar(BaseModel): + apple = "x" + banana = "y" + + +class CompanyModel(BaseModel): + id: int + public_key: constr(max_length=20) + name: constr(max_length=63) + # NO DOMAINS! + other_value: int = 33 + + foo: Bar = Bar() + + class Config: + orm_mode = True + + +@attr.s(auto_attribs=True) +class Company: + id: int + name: str + public_key: str = 55 + + +if __name__ == "__main__": + + co_orm = CompanyOrm( + id=123, + public_key="foobar", + name="Testing", + domains=["example.com", "foobar.com"], + ) + pprint(co_orm) + + print("-" * 30) + + co_model = CompanyModel.from_orm(co_orm) + + print(co_model.__fields_set__) + assert "other_value" not in co_model.__fields_set__ + assert "foo" not in co_model.__fields_set__ + + print("-" * 30) + assert "other_value" in co_model.__fields__ + + pprint(co_model) + pprint(co_model.dict()) + # co_model.json() + + print("-" * 30) + pprint(co_model.schema()) + # co_model.schema_json() -> + + print("-" * 30) + print(co_model.__config__) + + # CAN convert from attr type! ORM is everything with attributes? + obj = Company(22, "pedro", "foo") + + import pdb + + pdb.set_trace() + co_model.from_orm(obj) + + try: + co_model.parse_obj(obj) + except ValidationError as ee: + print("obj has to be a dict!") diff --git a/services/api-server/sandbox/pydantic-settings.py b/services/api-server/sandbox/pydantic-settings.py new file mode 100644 index 00000000000..77bfdbeb8ca --- /dev/null +++ b/services/api-server/sandbox/pydantic-settings.py @@ -0,0 +1,51 @@ +## https://pydantic-docs.helpmanual.io/usage/settings/#dotenv-env-support +import os +from pathlib import Path + +from pydantic import BaseSettings, SecretStr + +env_path = Path(".env-ignore") + +env_path.write_text( + """ +# ignore comment +ENVIRONMENT="production" +REDIS_ADDRESS=localhost:6379 +MEANING_OF_LIFE=4000000 +MY_VAR='Hello world' +POSTGRES_USER=test +POSTGRES_PASSWORD=test +POSTGRES_DB=test +""" +) + + +os.environ["MEANING_OF_LIFE"] = "42" + + +class PostgresSettings(BaseSettings): + user: str + password: SecretStr + db: str + + class Config: + env_file = env_path + env_prefix = "POSTGRES_" + + +class Settings(BaseSettings): + environment: str + meaning_of_life: int = 33 + + pg = PostgresSettings() + + class Config: + env_file = env_path + + +settings = Settings() + +print(settings.json()) +assert settings.meaning_of_life == 42 +assert settings.environment == "production" +assert settings.pg.password.get_secret_value() == "test" diff --git a/services/api-server/sandbox/simple_app.py b/services/api-server/sandbox/simple_app.py new file mode 100644 index 00000000000..7fccb34353c --- /dev/null +++ b/services/api-server/sandbox/simple_app.py @@ -0,0 +1,45 @@ +# pylint: skip-file +# fmt: off + +import json +from pathlib import Path +from typing import Dict, List, Optional, Tuple + +import uvicorn +from fastapi import Depends, FastAPI +from fastapi.requests import Request +from pydantic import BaseModel, Field + +app = FastAPI(title="My app") + + +def _get_app(request: Request) -> FastAPI: + return request.app + + +def get_my_user_id(app: FastAPI): + return 3 + + +class ItemFOO(BaseModel): + name: str + description: str = None + price: float + tax: Optional[float] = Field(None, description="description tax") + + +@app.post("/studies/{study_id}") +async def get_studies(q: int, study_id: int, body: List[ItemFOO]) -> ItemFOO: + + return body + + +def dump_oas(): + Path("openapi-ignore.json").write_text(json.dumps(app.openapi(), indent=2)) + + +app.add_event_handler("startup", dump_oas) + +if __name__ == "__main__": + + uvicorn.run("simple_app:app", reload=True, port=8002) diff --git a/services/api-server/setup.cfg b/services/api-server/setup.cfg new file mode 100644 index 00000000000..c9e439cbcf3 --- /dev/null +++ b/services/api-server/setup.cfg @@ -0,0 +1,7 @@ +[bumpversion] +current_version = 0.3.0 +commit = True +message = services/api-server version: {current_version} → {new_version} +tag = False + +[bumpversion:file:VERSION] diff --git a/services/api-gateway/setup.py b/services/api-server/setup.py similarity index 88% rename from services/api-gateway/setup.py rename to services/api-server/setup.py index ffab5621e7e..40c1176ae9b 100644 --- a/services/api-gateway/setup.py +++ b/services/api-server/setup.py @@ -28,10 +28,10 @@ def read_reqs(reqs_path: Path): setup( - name="simcore-service-api-gateway", + name="simcore-service-api-server", version=version, author="Pedro Crespo (pcrespov)", - description="Platform's API Gateway for external clients", + description="Platform's API Server for external clients", classifiers=[ "Development Status :: 1 - Planning", "License :: OSI Approved :: MIT License", @@ -50,7 +50,7 @@ def read_reqs(reqs_path: Path): extras_require={"test": test_requirements}, entry_points={ "console_scripts": [ - "simcore-service-api-gateway = simcore_service_api_gateway.__main__:main", + "simcore-service-api-server = simcore_service_api_server.__main__:main", ], }, ) diff --git a/services/api-server/src/simcore_service_api_server/__init__.py b/services/api-server/src/simcore_service_api_server/__init__.py new file mode 100644 index 00000000000..f3df2ac8ec8 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/__init__.py @@ -0,0 +1,4 @@ +""" Python package for the simcore_service_api_server. + +""" +from .__version__ import __version__ diff --git a/services/api-server/src/simcore_service_api_server/__main__.py b/services/api-server/src/simcore_service_api_server/__main__.py new file mode 100644 index 00000000000..76d1c20a3c6 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/__main__.py @@ -0,0 +1,35 @@ +""" Main application entry point + + `python -m simcore_service_api_server ...` + +""" +import sys +from pathlib import Path + +import uvicorn +from fastapi import FastAPI + +from simcore_service_api_server.core.application import init_app +from simcore_service_api_server.core.settings import AppSettings, BootModeEnum + +current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent + + +# SINGLETON FastAPI app +the_app: FastAPI = init_app() + + +def main(): + cfg: AppSettings = the_app.state.settings + uvicorn.run( + "simcore_service_api_server.__main__:the_app", + host=cfg.host, + port=cfg.port, + reload=cfg.boot_mode == BootModeEnum.development, + reload_dirs=[current_dir,], + log_level=cfg.log_level_name.lower(), + ) + + +if __name__ == "__main__": + main() diff --git a/services/api-gateway/src/simcore_service_api_gateway/__version__.py b/services/api-server/src/simcore_service_api_server/__version__.py similarity index 68% rename from services/api-gateway/src/simcore_service_api_gateway/__version__.py rename to services/api-server/src/simcore_service_api_server/__version__.py index 4c9375a1028..18fd260abe2 100644 --- a/services/api-gateway/src/simcore_service_api_gateway/__version__.py +++ b/services/api-server/src/simcore_service_api_server/__version__.py @@ -1,8 +1,8 @@ -""" Current version of the simcore_service_api_gateway application +""" Current version of the simcore_service_api_server application """ import pkg_resources -__version__ = pkg_resources.get_distribution("simcore_service_api_gateway").version +__version__ = pkg_resources.get_distribution("simcore_service_api_server").version major, minor, patch = __version__.split(".") diff --git a/services/api-gateway/src/simcore_service_api_gateway/utils/__init__.py b/services/api-server/src/simcore_service_api_server/api/__init__.py similarity index 100% rename from services/api-gateway/src/simcore_service_api_gateway/utils/__init__.py rename to services/api-server/src/simcore_service_api_server/api/__init__.py diff --git a/services/api-gateway/tests/integration/.gitkeep b/services/api-server/src/simcore_service_api_server/api/dependencies/__init__.py similarity index 100% rename from services/api-gateway/tests/integration/.gitkeep rename to services/api-server/src/simcore_service_api_server/api/dependencies/__init__.py diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py new file mode 100644 index 00000000000..9bcb8e6a962 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py @@ -0,0 +1,46 @@ +from typing import Optional + +from fastapi import Depends, HTTPException, Security, status +from fastapi.security.api_key import APIKeyHeader + +from ...db.repositories.users import UsersRepository +from ...models.schemas.tokens import TokenData +from ...services.jwt import get_access_token_data +from .database import get_repository + +# Declaration of security scheme: +# - Adds components.securitySchemes['APiKey'] to openapi.yaml +# - callable with request as argument -> extracts token from Authentication header +# + + +API_KEY_NAME = "APIKey" +api_key_scheme = APIKeyHeader(name=API_KEY_NAME) + + +async def get_current_user_id( + access_token: str = Security(api_key_scheme), + users_repo: UsersRepository = Depends(get_repository(UsersRepository)), +) -> int: + def _create_credentials_exception(msg: str): + + return HTTPException( + status_code=status.HTTP_401_UNAUTHORIZED, + detail=msg, + headers={"WWW-Authenticate": API_KEY_NAME}, + ) + + # decodes and validates jwt-based access token + token_data: Optional[TokenData] = get_access_token_data(access_token) + if token_data is None: + raise _create_credentials_exception("Could not validate credentials") + + # identify user + identified = await users_repo.any_user_with_id(token_data.user_id) + if not identified: + raise _create_credentials_exception("Could not validate credentials") + + return token_data.user_id + + +get_active_user_id = get_current_user_id diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py new file mode 100644 index 00000000000..809298acf33 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py @@ -0,0 +1,48 @@ +from fastapi import Depends, HTTPException, Security, status +from fastapi.security import HTTPBasic, HTTPBasicCredentials + +from ...db.repositories.api_keys import ApiKeysRepository +from ...db.repositories.users import UsersRepository +from .database import get_repository + +# SEE https://swagger.io/docs/specification/authentication/basic-authentication/ +basic_scheme = HTTPBasic() + + +def _create_exception(): + _unauthorized_headers = { + "WWW-Authenticate": f'Basic realm="{basic_scheme.realm}"' + if basic_scheme.realm + else "Basic" + } + return HTTPException( + status_code=status.HTTP_401_UNAUTHORIZED, + detail="Invalid API credentials", + headers=_unauthorized_headers, + ) + + +async def get_current_user_id( + credentials: HTTPBasicCredentials = Security(basic_scheme), + apikeys_repo: ApiKeysRepository = Depends(get_repository(ApiKeysRepository)), +) -> int: + user_id = await apikeys_repo.get_user_id( + api_key=credentials.username, api_secret=credentials.password + ) + if not user_id: + raise _create_exception() + return user_id + + +async def get_active_user_email( + user_id: int = Depends(get_current_user_id), + users_repo: UsersRepository = Depends(get_repository(UsersRepository)), +) -> str: + email = await users_repo.get_email_from_user_id(user_id) + if not email: + raise _create_exception() + return email + + +# alias +get_active_user_id = get_current_user_id diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py new file mode 100644 index 00000000000..806ae19c519 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py @@ -0,0 +1,100 @@ +""" This submodule includes responsibilities from authorization server + + +--------+ +---------------+ + | |--(A)- Authorization Request ->| Resource | + | | | Owner | Authorization request + | |<-(B)-- Authorization Grant ---| | + | | +---------------+ + | | + | | +---------------+ + | |--(C)-- Authorization Grant -->| Authorization | + | Client | | Server | Token request + | |<-(D)----- Access Token -------| | + | | +---------------+ + | | + | | +---------------+ + | |--(E)----- Access Token ------>| Resource | + | | | Server | + | |<-(F)--- Protected Resource ---| | + +--------+ +---------------+ + + Figure 1: Abstract Protocol Flow + +SEE + - https://oauth.net/2/ + - https://tools.ietf.org/html/rfc6749 +""" +# TODO: this module shall delegate the auth functionality to a separate service + +from typing import Optional + +from fastapi import Depends, HTTPException, Security, status +from fastapi.security import OAuth2PasswordBearer, SecurityScopes +from loguru import logger + +from ...__version__ import api_vtag +from ...db.repositories.users import UsersRepository +from ...models.schemas.tokens import TokenData +from ...services.jwt import get_access_token_data +from .database import get_repository + +# Declaration of security scheme: +# - Adds components.securitySchemes['OAuth2PasswordBearer'] to openapi.yaml +# - callable with request as argument -> extracts token from Authentication header +# +# TODO: check organization of scopes in other APIs +oauth2_scheme = OAuth2PasswordBearer( + tokenUrl=f"{api_vtag}/token", + scopes={"read": "Read-only access", "write": "Write access"}, +) + + +async def get_current_user_id( + security_scopes: SecurityScopes, + access_token: str = Depends(oauth2_scheme), + users_repo: UsersRepository = Depends(get_repository(UsersRepository)), +) -> int: + """ + access_token: extracted access_token from request header + security_scopes: iterable with all REQUIRED scopes to run operation + """ + + def _create_credentials_exception(msg: str): + authenticate_value = "Bearer" + if security_scopes.scopes: + authenticate_value += f' scope="{security_scopes.scope_str}"' + + return HTTPException( + status_code=status.HTTP_401_UNAUTHORIZED, + detail=msg, + headers={"WWW-Authenticate": authenticate_value}, + ) + + # decodes and validates jwt-based access token + token_data: Optional[TokenData] = get_access_token_data(access_token) + if token_data is None: + raise _create_credentials_exception("Could not validate credentials") + + # identify user + identified = await users_repo.any_user_with_id(token_data.user_id) + if not identified: + raise _create_credentials_exception("Could not validate credentials") + + # Checks whether user has ALL required scopes for this call + for required_scope in security_scopes.scopes: + if required_scope not in token_data.scopes: + logger.debug( + "Access denied. Client is missing required scope '{}' ", required_scope + ) + raise _create_credentials_exception( + "Missing required scope for this operation" + ) + + return token_data.user_id + + +async def get_active_user_id( + current_user_id: int = Security(get_current_user_id, scopes=["read"]) +) -> int: + # FIXME: Adds read scope. rename properly and activate scopes + return current_user_id diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py b/services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py new file mode 100644 index 00000000000..84cbbf6d0c6 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py @@ -0,0 +1,3 @@ +from .auth_basic import get_active_user_email, get_active_user_id + +__all__ = ["get_active_user_id", "get_active_user_email"] diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/database.py b/services/api-server/src/simcore_service_api_server/api/dependencies/database.py new file mode 100644 index 00000000000..96903570029 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/database.py @@ -0,0 +1,21 @@ +from typing import AsyncGenerator, Callable, Type + +from aiopg.sa import Engine +from fastapi import Depends +from fastapi.requests import Request + +from ...db.repositories.base import BaseRepository + + +def _get_db_engine(request: Request) -> Engine: + return request.app.state.engine + + +def get_repository(repo_type: Type[BaseRepository]) -> Callable: + async def _get_repo( + engine: Engine = Depends(_get_db_engine), + ) -> AsyncGenerator[BaseRepository, None]: + async with engine.acquire() as conn: + yield repo_type(conn) + + return _get_repo diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py b/services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py new file mode 100644 index 00000000000..dd387f12c9a --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py @@ -0,0 +1,55 @@ +import json +import time +from typing import Dict, Optional + +from cryptography.fernet import Fernet +from fastapi import Depends, HTTPException, status +from fastapi.requests import Request +from httpx import AsyncClient + +from ...core.settings import AppSettings, WebServerSettings +from .authentication import get_active_user_email + +UNAVAILBLE_MSG = "backend service is disabled or unreachable" + + +def _get_settings(request: Request) -> WebServerSettings: + app_settings: AppSettings = request.app.state.settings + return app_settings.webserver + + +def _get_encrypt(request: Request) -> Optional[Fernet]: + return getattr(request.app.state, "webserver_fernet", None) + + +def get_webserver_client(request: Request) -> AsyncClient: + client = getattr(request.app.state, "webserver_client", None) + if not client: + raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE, detail=UNAVAILBLE_MSG) + return client + + +def get_session_cookie( + identity: str = Depends(get_active_user_email), + settings: WebServerSettings = Depends(_get_settings), + fernet: Optional[Fernet] = Depends(_get_encrypt), +) -> Dict: + # Based on aiohttp_session and aiohttp_security + # SEE services/web/server/tests/unit/with_dbs/test_login.py + + if fernet is None: + raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE, detail=UNAVAILBLE_MSG) + + # builds session cookie + cookie_name = settings.session_name + cookie_data = json.dumps( + { + "created": int(time.time()), # now + "session": {"AIOHTTP_SECURITY": identity}, + "path": "/", + # extras? e.g. expiration + } + ).encode("utf-8") + encrypted_cookie_data = fernet.encrypt(cookie_data).decode("utf-8") + + return {cookie_name: encrypted_cookie_data} diff --git a/services/api-gateway/tools/templates/schemas.py.jinja2 b/services/api-server/src/simcore_service_api_server/api/errors/__init__.py similarity index 100% rename from services/api-gateway/tools/templates/schemas.py.jinja2 rename to services/api-server/src/simcore_service_api_server/api/errors/__init__.py diff --git a/services/api-server/src/simcore_service_api_server/api/errors/http_error.py b/services/api-server/src/simcore_service_api_server/api/errors/http_error.py new file mode 100644 index 00000000000..c5032293589 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/errors/http_error.py @@ -0,0 +1,7 @@ +from fastapi import HTTPException +from starlette.requests import Request +from starlette.responses import JSONResponse + + +async def http_error_handler(_: Request, exc: HTTPException) -> JSONResponse: + return JSONResponse({"errors": [exc.detail]}, status_code=exc.status_code) diff --git a/services/api-server/src/simcore_service_api_server/api/errors/validation_error.py b/services/api-server/src/simcore_service_api_server/api/errors/validation_error.py new file mode 100644 index 00000000000..a8901794a8c --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/errors/validation_error.py @@ -0,0 +1,26 @@ +from typing import Union + +from fastapi.exceptions import RequestValidationError +from fastapi.openapi.constants import REF_PREFIX +from fastapi.openapi.utils import validation_error_response_definition +from pydantic import ValidationError +from starlette.requests import Request +from starlette.responses import JSONResponse +from starlette.status import HTTP_422_UNPROCESSABLE_ENTITY + + +async def http422_error_handler( + _: Request, exc: Union[RequestValidationError, ValidationError], +) -> JSONResponse: + return JSONResponse( + {"errors": exc.errors()}, status_code=HTTP_422_UNPROCESSABLE_ENTITY, + ) + + +validation_error_response_definition["properties"] = { + "errors": { + "title": "Errors", + "type": "array", + "items": {"$ref": "{0}ValidationError".format(REF_PREFIX)}, + }, +} diff --git a/services/api-server/src/simcore_service_api_server/api/root.py b/services/api-server/src/simcore_service_api_server/api/root.py new file mode 100644 index 00000000000..cab791b02c1 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/root.py @@ -0,0 +1,15 @@ +from fastapi import APIRouter + +from .routes import health, meta, users + +router = APIRouter() +router.include_router(health.router) +router.include_router(meta.router, tags=["meta"], prefix="/meta") + +# TODO: keeps for oauth or apikey schemes +# router.include_router(authentication.router, tags=["authentication"], prefix="/users") + +router.include_router(users.router, tags=["users"], prefix="/me") + +## TODO: disables studies for the moment +# router.include_router(studies.router, tags=["studies"], prefix="/studies") diff --git a/services/api-server/src/simcore_service_api_server/api/routes/__init__.py b/services/api-server/src/simcore_service_api_server/api/routes/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/api/routes/authentication/__init__.py b/services/api-server/src/simcore_service_api_server/api/routes/authentication/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py b/services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py new file mode 100644 index 00000000000..385887dbbbe --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py @@ -0,0 +1,15 @@ +# FIXME: Until tests +# pylint: skip-file +# + +from fastapi import APIRouter + +router = APIRouter() + + +@router.post("/login", response_model=UserInResponse, name="auth:login") +async def login( + user_login: UserInLogin = Body(..., embed=True, alias="user"), + users_repo: UsersRepository = Depends(get_repository(UsersRepository)), +) -> UserInResponse: + pass diff --git a/services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py b/services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py new file mode 100644 index 00000000000..1502be49133 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py @@ -0,0 +1,77 @@ +from io import StringIO +from typing import Optional + +from fastapi import APIRouter, Depends, HTTPException +from fastapi.security import OAuth2PasswordRequestForm +from loguru import logger + +from ....db.repositories.users import UsersRepository +from ....models.schemas.tokens import Token, TokenData +from ....services.jwt import create_access_token +from ....services.serialization import json_dumps +from ...dependencies.database import get_repository + +router = APIRouter() + + +def _compose_msg(*, fd=None, rd=None) -> str: + assert not (fd ^ rd), "Mutally exclusive" # nosec + + stream = StringIO() + + if fd: + print("Form Request", "-" * 20, file=stream) + for ( + attr + ) in "grant_type username password scopes client_id client_secret".split(): + print("-", attr, ":", getattr(fd, attr), file=stream) + print("-" * 20, file=stream) + elif rd: + print("{:-^30}".format("/token response"), file=stream) + print(json_dumps(rd), file=stream) + print("-" * 30, file=stream) + + return stream.getvalue() + + +# NOTE: this path has to be the same as simcore_service_api_server.auth.oauth2_scheme +@router.post("/token", response_model=Token) +async def login_for_access_token( + form_data: OAuth2PasswordRequestForm = Depends(), + users_repo: UsersRepository = Depends(get_repository(UsersRepository)), +): + """ + Returns an access-token provided a valid authorization grant + """ + + # + # - This entrypoint is part of the Authorization Server + # - Implements access point to obtain access-tokens + # + # | | +---------------+ + # | |--(C)-- Authorization Grant -->| Authorization | + # | Client | | Server | Token request + # | |<-(D)----- Access Token -------| | + # | | +---------------+ + # + + logger.debug(_compose_msg(fd=form_data)) + + user_id: Optional[int] = await users_repo.get_user_id( + user=form_data.username, password=form_data.password + ) + + # TODO: check is NOT banned + + if not user_id: + raise HTTPException(status_code=400, detail="Incorrect username or password") + + # FIXME: expiration disabled since for the moment we do NOT have any renewal mechanims in place!!! + access_token = create_access_token(TokenData(user_id), expires_in_mins=None) + + # NOTE: this reponse is defined in Oath2 + resp_data = {"access_token": access_token, "token_type": "bearer"} + + logger.debug(_compose_msg(rd=resp_data)) + + return resp_data diff --git a/services/api-server/src/simcore_service_api_server/api/routes/health.py b/services/api-server/src/simcore_service_api_server/api/routes/health.py new file mode 100644 index 00000000000..d8b50c5f504 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/routes/health.py @@ -0,0 +1,8 @@ +from fastapi import APIRouter + +router = APIRouter() + + +@router.get("/", include_in_schema=False) +async def check_service_health(): + return ":-)" diff --git a/services/api-server/src/simcore_service_api_server/api/routes/meta.py b/services/api-server/src/simcore_service_api_server/api/routes/meta.py new file mode 100644 index 00000000000..903ce9666b1 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/routes/meta.py @@ -0,0 +1,15 @@ +from fastapi import APIRouter + +from ...__version__ import __version__, api_version, api_vtag +from ...models.schemas.meta import Meta + +router = APIRouter() + + +@router.get("", response_model=Meta) +async def get_service_metadata(): + return Meta( + name=__name__.split(".")[0], + version=api_version, + released={api_vtag: api_version}, + ) diff --git a/services/api-server/src/simcore_service_api_server/api/routes/studies.py b/services/api-server/src/simcore_service_api_server/api/routes/studies.py new file mode 100644 index 00000000000..953e096a331 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/routes/studies.py @@ -0,0 +1,50 @@ +from fastapi import APIRouter, Security + +from ..dependencies.authentication import get_active_user_id + +router = APIRouter() + + +@router.get("") +async def list_studies(user_id: int = Security(get_active_user_id, scopes=["read"])): + # TODO: Replace code by calls to web-server api + return [{"project_id": "Foo", "owner": user_id}] + + +@router.get("/{study_id}") +async def get_study( + study_id: str, user_id: int = Security(get_active_user_id, scopes=["read"]), +): + # TODO: Replace code by calls to web-server api + return [{"project_id": study_id, "owner": user_id}] + + +@router.post("") +async def create_study(user_id: int = Security(get_active_user_id, scopes=["write"])): + # TODO: Replace code by calls to web-server api + return {"project_id": "Foo", "owner": user_id} + + +@router.put("/{study_id}") +async def replace_study( + study_id: str, user_id: int = Security(get_active_user_id, scopes=["write"]), +): + # TODO: Replace code by calls to web-server api + return {"project_id": study_id, "owner": user_id} + + +@router.patch("/{study_id}") +async def update_study( + study_id: str, user_id: int = Security(get_active_user_id, scopes=["write"]), +): + # TODO: Replace code by calls to web-server api + return {"project_id": study_id, "owner": user_id} + + +@router.delete("/{study_id}") +async def delete_study( + study_id: str, user_id: int = Security(get_active_user_id, scopes=["write"]), +): + # TODO: Replace code by calls to web-server api + _data = {"project_id": study_id, "owner": user_id} + return None diff --git a/services/api-server/src/simcore_service_api_server/api/routes/users.py b/services/api-server/src/simcore_service_api_server/api/routes/users.py new file mode 100644 index 00000000000..b1076647bf1 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/api/routes/users.py @@ -0,0 +1,64 @@ +from typing import Dict + +from fastapi import APIRouter, Depends, HTTPException, Security +from httpx import AsyncClient, Response, StatusCode +from loguru import logger + +# SEE: https://www.python-httpx.org/async/ +# TODO: path mapping and operation +# TODO: if fails, raise for status and translates to service unavailable if fails +# +from pydantic import ValidationError +from starlette import status + +from ...models.schemas.profiles import Profile, ProfileUpdate +from ..dependencies.webserver import get_session_cookie, get_webserver_client + +router = APIRouter() + + +@router.get("", response_model=Profile) +async def get_my_profile( + client: AsyncClient = Depends(get_webserver_client), + session_cookies: Dict = Depends(get_session_cookie), +) -> Profile: + resp = await client.get("/v0/me", cookies=session_cookies) + + if resp.status_code == status.HTTP_200_OK: + data = resp.json()["data"] + try: + # FIXME: temporary patch until web-API is reviewed + data["role"] = data["role"].upper() + profile = Profile.parse_obj(data) + return profile + except ValidationError: + logger.exception("webserver response invalid") + raise + + elif StatusCode.is_server_error(resp.status_code): + logger.error("webserver failed :{}", resp.reason_phrase) + raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE) + + raise HTTPException(resp.status_code, resp.reason_phrase) + + +@router.put("", response_model=Profile) +async def update_my_profile( + profile_update: ProfileUpdate, + client: AsyncClient = Depends(get_webserver_client), + session_cookies: Dict = Security(get_session_cookie, scopes=["write"]), +) -> Profile: + # FIXME: replace by patch + # TODO: improve. from patch -> put, we need to ensure it has a default in place + profile_update.first_name = profile_update.first_name or "" + profile_update.last_name = profile_update.last_name or "" + resp: Response = await client.put( + "/v0/me", json=profile_update.dict(), cookies=session_cookies + ) + + if StatusCode.is_error(resp.status_code): + logger.error("webserver failed: {}", resp.reason_phrase) + raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE) + + profile = await get_my_profile(client, session_cookies) + return profile diff --git a/services/api-server/src/simcore_service_api_server/core/__init__.py b/services/api-server/src/simcore_service_api_server/core/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/core/application.py b/services/api-server/src/simcore_service_api_server/core/application.py new file mode 100644 index 00000000000..5f452974dd4 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/core/application.py @@ -0,0 +1,61 @@ +import sys +from typing import Optional + +from fastapi import FastAPI +from fastapi.exceptions import RequestValidationError +from loguru import logger +from starlette.exceptions import HTTPException + +from ..__version__ import api_version, api_vtag +from ..api.errors.http_error import http_error_handler +from ..api.errors.validation_error import http422_error_handler +from ..api.root import router as api_router +from ..api.routes.health import router as health_router +from .events import create_start_app_handler, create_stop_app_handler +from .openapi import override_openapi_method, use_route_names_as_operation_ids +from .redoc import create_redoc_handler +from .settings import AppSettings + + +def init_app(settings: Optional[AppSettings] = None) -> FastAPI: + if settings is None: + settings = AppSettings.create_default() + + logger.add(sys.stderr, level=settings.loglevel) + + app = FastAPI( + debug=settings.debug, + title="Public API Server", + description="osparc-simcore Public RESTful API Specifications", + version=api_version, + openapi_url=f"/api/{api_vtag}/openapi.json", + docs_url="/dev/docs", + redoc_url=None, # default disabled, see below + ) + + logger.debug(settings) + app.state.settings = settings + + override_openapi_method(app) + + app.add_event_handler("startup", create_start_app_handler(app)) + app.add_event_handler("shutdown", create_stop_app_handler(app)) + + app.add_exception_handler(HTTPException, http_error_handler) + app.add_exception_handler(RequestValidationError, http422_error_handler) + + # Routing + + # healthcheck at / and at /v0/ + app.include_router(health_router) + + # docs + redoc_html = create_redoc_handler(app) + app.add_route("/docs", redoc_html, include_in_schema=False) + + # api under /v* + app.include_router(api_router, prefix=f"/{api_vtag}") + + use_route_names_as_operation_ids(app) + + return app diff --git a/services/api-server/src/simcore_service_api_server/core/errors.py b/services/api-server/src/simcore_service_api_server/core/errors.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/core/events.py b/services/api-server/src/simcore_service_api_server/core/events.py new file mode 100644 index 00000000000..1a1fd646857 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/core/events.py @@ -0,0 +1,40 @@ +from typing import Callable + +from fastapi import FastAPI +from loguru import logger + +from ..db.events import close_db_connection, connect_to_db +from ..services.remote_debug import setup_remote_debugging +from ..services.webserver import close_webserver, setup_webserver +from .settings import BootModeEnum + + +def create_start_app_handler(app: FastAPI) -> Callable: + async def start_app() -> None: + logger.info("Application started") + + # setup connection to remote debugger (if applies) + setup_remote_debugging( + force_enabled=app.state.settings.boot_mode == BootModeEnum.debug + ) + + # setup connection to pg db + if app.state.settings.postgres.enabled: + await connect_to_db(app) + + if app.state.settings.webserver.enabled: + setup_webserver(app) + + return start_app + + +def create_stop_app_handler(app: FastAPI) -> Callable: + @logger.catch + async def stop_app() -> None: + logger.info("Application stopping") + if app.state.settings.postgres.enabled: + await close_db_connection(app) + if app.state.settings.webserver.enabled: + await close_webserver(app) + + return stop_app diff --git a/services/api-server/src/simcore_service_api_server/core/openapi.py b/services/api-server/src/simcore_service_api_server/core/openapi.py new file mode 100644 index 00000000000..f1c3df7b1a7 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/core/openapi.py @@ -0,0 +1,65 @@ +import json +import types +from pathlib import Path +from typing import Dict + +import yaml +from fastapi import FastAPI +from fastapi.openapi.utils import get_openapi +from fastapi.routing import APIRoute +from loguru import logger + +from .redoc import add_vendor_extensions, compose_long_description + + +def override_openapi_method(app: FastAPI): + # TODO: test openapi(*) member does not change interface + + def _custom_openapi_method(zelf: FastAPI, openapi_prefix: str = "") -> Dict: + """ Overrides FastAPI.openapi member function + returns OAS schema with vendor extensions + """ + if not zelf.openapi_schema: + + desc = compose_long_description(zelf.description) + openapi_schema = get_openapi( + title=zelf.title, + version=zelf.version, + openapi_version=zelf.openapi_version, + description=desc, + routes=zelf.routes, + openapi_prefix=openapi_prefix, + tags=zelf.openapi_tags, + ) + + add_vendor_extensions(openapi_schema) + + zelf.openapi_schema = openapi_schema + return zelf.openapi_schema + + app.openapi = types.MethodType(_custom_openapi_method, app) + + +def use_route_names_as_operation_ids(app: FastAPI) -> None: + """ + Overrides default operation_ids assigning the same name as the handler functions + + MUST be called only after all routes have been added. + + PROS: auto-generated client has one-to-one correspondence and human readable names + CONS: highly coupled. Changes in server handler names will change client + """ + for route in app.routes: + if isinstance(route, APIRoute): + route.operation_id = route.name + + +def dump_openapi(app: FastAPI, filepath: Path): + logger.info("Dumping openapi specs as {}", filepath) + with open(filepath, "wt") as fh: + if filepath.suffix == ".json": + json.dump(app.openapi(), fh, indent=2) + elif filepath.suffix in (".yaml", ".yml"): + yaml.safe_dump(app.openapi(), fh) + else: + raise ValueError("invalid") diff --git a/services/api-server/src/simcore_service_api_server/core/redoc.py b/services/api-server/src/simcore_service_api_server/core/redoc.py new file mode 100644 index 00000000000..45ff4d407db --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/core/redoc.py @@ -0,0 +1,51 @@ +from typing import Callable, Dict + +from fastapi import FastAPI +from fastapi.applications import HTMLResponse, Request +from fastapi.openapi.docs import get_redoc_html + +# from ..__version__ import api_vtag + +FAVICON = "https://osparc.io/resource/osparc/favicon.png" +LOGO = "https://raw.githubusercontent.com/ITISFoundation/osparc-manual/b809d93619512eb60c827b7e769c6145758378d0/_media/osparc-logo.svg" +PYTHON_CODE_SAMPLES_BASE_URL = "https://raw.githubusercontent.com/ITISFoundation/osparc-simcore-python-client/master/code_samples" + + +def compose_long_description(description: str) -> str: + desc = f"**{description}**\n" + desc += "## Python Library\n" + desc += "- Documentation (https://itisfoundation.github.io/osparc-simcore-python-client/#/)\n" + desc += "- Quick install: ``pip install git+https://github.com/ITISFoundation/osparc-simcore-python-client.git``\n" + + return desc + + +def add_vendor_extensions(openapi_schema: Dict): + # ReDoc vendor extensions + # SEE https://github.com/Redocly/redoc/blob/master/docs/redoc-vendor-extensions.md + openapi_schema["info"]["x-logo"] = { + "url": LOGO, + "altText": "osparc-simcore logo", + } + + # + # TODO: load code samples add if function is contained in sample + # TODO: See if openapi-cli does this already + # TODO: check that all url are available before exposing + # openapi_schema["paths"][f"/{api_vtag}/meta"]["get"]["x-code-samples"] = [ + # { + # "lang": "python", + # "source": {"$ref": f"{PYTHON_CODE_SAMPLES_BASE_URL}/meta/get.py"}, + # }, + # ] + + +def create_redoc_handler(app: FastAPI) -> Callable: + async def _redoc_html(_req: Request) -> HTMLResponse: + return get_redoc_html( + openapi_url=app.openapi_url, + title=app.title + " - redoc", + redoc_favicon_url=FAVICON, + ) + + return _redoc_html diff --git a/services/api-server/src/simcore_service_api_server/core/settings.py b/services/api-server/src/simcore_service_api_server/core/settings.py new file mode 100644 index 00000000000..8fd229c62b3 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/core/settings.py @@ -0,0 +1,107 @@ +import logging +from enum import Enum +from typing import Optional + +from pydantic import BaseSettings, Field, SecretStr, validator +from yarl import URL + + +class BootModeEnum(str, Enum): + debug = "debug-ptvsd" + production = "production" + development = "development" + + +class _CommonConfig: + case_sensitive = False + env_file = ".env" + + +class WebServerSettings(BaseSettings): + enabled: bool = Field( + True, description="Enables/Disables connection with webserver service" + ) + host: str + port: int = 8080 + session_secret_key: SecretStr + session_name: str = "osparc.WEBAPI_SESSION" + vtag: str = "v0" + + @property + def base_url(self): + # FIXME: httpx.client does not consder vtag + return f"http://{self.host}:{self.port}/{self.vtag}" + + class Config(_CommonConfig): + env_prefix = "WEBSERVER_" + + +class PostgresSettings(BaseSettings): + enabled: bool = Field( + True, description="Enables/Disables connection with postgres service" + ) + user: str + password: SecretStr + db: str + host: str + port: int = 5432 + + minsize: int = 10 + maxsize: int = 10 + + @property + def dsn(self) -> URL: + return URL.build( + scheme="postgresql", + user=self.user, + password=self.password.get_secret_value(), + host=self.host, + port=self.port, + path=f"/{self.db}", + ) + + class Config(_CommonConfig): + env_prefix = "POSTGRES_" + + +class AppSettings(BaseSettings): + @classmethod + def create_default(cls) -> "AppSettings": + # This call triggers parsers + return cls(postgres=PostgresSettings(), webserver=WebServerSettings()) + + # pylint: disable=no-self-use + # pylint: disable=no-self-argument + + # DOCKER + boot_mode: Optional[BootModeEnum] = Field(..., env="SC_BOOT_MODE") + + # LOGGING + log_level_name: str = Field("DEBUG", env="LOG_LEVEL") + + @validator("log_level_name") + def match_logging_level(cls, value) -> str: + try: + getattr(logging, value.upper()) + except AttributeError: + raise ValueError(f"{value.upper()} is not a valid level") + return value.upper() + + @property + def loglevel(self) -> int: + return getattr(logging, self.log_level_name) + + # POSTGRES + postgres: PostgresSettings + + # WEB-SERVER SERVICE + webserver: WebServerSettings + + # SERVICE SERVER (see : https://www.uvicorn.org/settings/) + host: str = "0.0.0.0" # "0.0.0.0" if is_containerized else "127.0.0.1", + port: int = 8000 + + debug: bool = False # If True, debug tracebacks should be returned on errors. + + class Config(_CommonConfig): + env_prefix = "" diff --git a/services/api-server/src/simcore_service_api_server/db/__init__.py b/services/api-server/src/simcore_service_api_server/db/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/db/errors.py b/services/api-server/src/simcore_service_api_server/db/errors.py new file mode 100644 index 00000000000..bb3ef669024 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/db/errors.py @@ -0,0 +1,2 @@ +class EntityDoesNotExist(Exception): + """Raised when entity was not found in database.""" diff --git a/services/api-server/src/simcore_service_api_server/db/events.py b/services/api-server/src/simcore_service_api_server/db/events.py new file mode 100644 index 00000000000..8523967ddb4 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/db/events.py @@ -0,0 +1,54 @@ +import logging +from io import StringIO + +from aiopg.sa import Engine, create_engine +from fastapi import FastAPI +from loguru import logger +from tenacity import before_sleep_log, retry, stop_after_attempt, wait_fixed + +from ..core.settings import PostgresSettings + +ENGINE_ATTRS = "closed driver dsn freesize maxsize minsize name size timeout".split() + + +pg_retry_policy = dict( + wait=wait_fixed(5), + stop=stop_after_attempt(20), + before_sleep=before_sleep_log(logger, logging.WARNING), + reraise=True, +) + + +def _compose_info_on_engine(app: FastAPI) -> str: + engine = app.state.engine + stm = StringIO() + print("Setup engine:", end=" ", file=stm) + for attr in ENGINE_ATTRS: + print(f"{attr}={getattr(engine, attr)}", end="; ", file=stm) + return stm.getvalue() + + +@retry(**pg_retry_policy) +async def connect_to_db(app: FastAPI) -> None: + logger.debug("Connenting db ...") + + cfg: PostgresSettings = app.state.settings.postgres + engine: Engine = await create_engine( + str(cfg.dsn), + application_name=f"{__name__}_{id(app)}", # unique identifier per app + minsize=cfg.minsize, + maxsize=cfg.maxsize, + ) + logger.debug("Connected to {}", engine.dsn) + app.state.engine = engine + + logger.debug(_compose_info_on_engine(app)) + + +async def close_db_connection(app: FastAPI) -> None: + logger.debug("Disconnecting db ...") + + engine: Engine = app.state.engine + engine.close() + await engine.wait_closed() + logger.debug("Disconnected from {}", engine.dsn) diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/__init__.py b/services/api-server/src/simcore_service_api_server/db/repositories/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py b/services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py new file mode 100644 index 00000000000..7602e872daf --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py @@ -0,0 +1,38 @@ +from typing import Optional + +import sqlalchemy as sa +from loguru import logger +from psycopg2 import DatabaseError + +from .. import tables as tbl +from .base import BaseRepository + +# from ...models.domain.users import User, UserInDB + +# For psycopg2 errors SEE https://www.psycopg.org/docs/errors.html#sqlstate-exception-classes + + +class ApiKeysRepository(BaseRepository): + async def get_user_id(self, api_key: str, api_secret: str) -> Optional[int]: + stmt = sa.select([tbl.api_keys.c.user_id,]).where( + sa.and_( + tbl.api_keys.c.api_key == api_key, + tbl.api_keys.c.api_secret == api_secret, + ) + ) + + try: + user_id: Optional[int] = await self.connection.scalar(stmt) + + except DatabaseError as err: + logger.debug(f"Failed to get user id: {err}") + user_id = None + + return user_id + + async def any_user_with_id(self, user_id: int) -> bool: + # FIXME: shall identify api_key or api_secret instead + stmt = sa.select([tbl.api_keys.c.user_id,]).where( + tbl.api_keys.c.user_id == user_id + ) + return (await self.connection.scalar(stmt)) is not None diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/base.py b/services/api-server/src/simcore_service_api_server/db/repositories/base.py new file mode 100644 index 00000000000..81f04c0f7b5 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/db/repositories/base.py @@ -0,0 +1,15 @@ +from aiopg.sa.connection import SAConnection + + +class BaseRepository: + """ + Repositories are pulled at every request + All queries to db within that request use same connection + """ + + def __init__(self, conn: SAConnection) -> None: + self._conn = conn + + @property + def connection(self) -> SAConnection: + return self._conn diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/users.py b/services/api-server/src/simcore_service_api_server/db/repositories/users.py new file mode 100644 index 00000000000..f10ab46e081 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/db/repositories/users.py @@ -0,0 +1,107 @@ +import hashlib +from typing import List, Optional + +import sqlalchemy as sa +from aiopg.sa.result import RowProxy + +from ...models.schemas.profiles import Profile +from ..tables import GroupType, api_keys, groups, user_to_groups, users +from .base import BaseRepository + + +class UsersRepository(BaseRepository): + async def get_user_id(self, api_key: str, api_secret: str) -> Optional[int]: + stmt = sa.select([api_keys.c.user_id,]).where( + sa.and_(api_keys.c.api_key == api_key, api_keys.c.api_secret == api_secret,) + ) + user_id: Optional[int] = await self.connection.scalar(stmt) + return user_id + + async def any_user_with_id(self, user_id: int) -> bool: + # FIXME: shall identify api_key or api_secret instead + stmt = sa.select([api_keys.c.user_id,]).where(api_keys.c.user_id == user_id) + return (await self.connection.scalar(stmt)) is not None + + async def get_email_from_user_id(self, user_id: int) -> Optional[str]: + stmt = sa.select([users.c.email,]).where(users.c.id == user_id) + email: Optional[str] = await self.connection.scalar(stmt) + return email + + # TEMPORARY ---- + async def get_profile_from_userid(self, user_id: int) -> Optional[Profile]: + stmt = ( + sa.select( + [ + users.c.email, + users.c.role, + users.c.name, + users.c.primary_gid, + groups.c.gid, + groups.c.name, + groups.c.description, + groups.c.type, + ], + use_labels=True, + ) + .select_from( + users.join( + user_to_groups.join(groups, user_to_groups.c.gid == groups.c.gid), + users.c.id == user_to_groups.c.uid, + ) + ) + .where(users.c.id == user_id) + .order_by(sa.asc(groups.c.name)) + ) + + # all user_group combinations but only the group changes + result = await self.connection.execute(stmt) + user_groups: List[RowProxy] = await result.fetchall() + + if not user_groups: + return None + + # get the primary group and the all group + user_primary_group = all_group = {} + other_groups = [] + for user_group in user_groups: + if user_group["users_primary_gid"] == user_group["groups_gid"]: + user_primary_group = user_group + elif user_group["groups_type"] == GroupType.EVERYONE: + all_group = user_group + else: + other_groups.append(user_group) + + parts = user_primary_group["users_name"].split(".") + [""] + return Profile.parse_obj( + { + "login": user_primary_group["users_email"], + "first_name": parts[0], + "last_name": parts[1], + "role": user_primary_group["users_role"].name.capitalize(), + "gravatar_id": gravatar_hash(user_primary_group["users_email"]), + "groups": { + "me": { + "gid": user_primary_group["groups_gid"], + "label": user_primary_group["groups_name"], + "description": user_primary_group["groups_description"], + }, + "organizations": [ + { + "gid": group["groups_gid"], + "label": group["groups_name"], + "description": group["groups_description"], + } + for group in other_groups + ], + "all": { + "gid": all_group["groups_gid"], + "label": all_group["groups_name"], + "description": all_group["groups_description"], + }, + }, + } + ) + + +def gravatar_hash(email: str) -> str: + return hashlib.md5(email.lower().encode("utf-8")).hexdigest() # nosec diff --git a/services/api-server/src/simcore_service_api_server/db/tables.py b/services/api-server/src/simcore_service_api_server/db/tables.py new file mode 100644 index 00000000000..d1d60558155 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/db/tables.py @@ -0,0 +1,16 @@ +from simcore_postgres_database.models.api_keys import api_keys +from simcore_postgres_database.models.groups import GroupType, groups, user_to_groups +from simcore_postgres_database.models.users import UserRole, UserStatus, users + +metadata = api_keys.metadata + +__all__ = [ + "api_keys", + "users", + "groups", + "user_to_groups", + "metadata", + "UserStatus", + "UserRole", + "GroupType", +] diff --git a/services/api-server/src/simcore_service_api_server/models/__init__.py b/services/api-server/src/simcore_service_api_server/models/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/models/domain/__init__.py b/services/api-server/src/simcore_service_api_server/models/domain/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/models/domain/api_keys.py b/services/api-server/src/simcore_service_api_server/models/domain/api_keys.py new file mode 100644 index 00000000000..d0452bb54ad --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/domain/api_keys.py @@ -0,0 +1,15 @@ +from pydantic import BaseModel, Field, SecretStr + + +class ApiKey(BaseModel): + api_key: str + api_secret: SecretStr + + +class ApiKeyInDB(ApiKey): + id_: int = Field(0, alias="id") + display_name: str + user_id: int + + class Config: + orm_mode = True diff --git a/services/api-server/src/simcore_service_api_server/models/domain/groups.py b/services/api-server/src/simcore_service_api_server/models/domain/groups.py new file mode 100644 index 00000000000..1843e236012 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/domain/groups.py @@ -0,0 +1,15 @@ +from typing import List, Optional + +from pydantic import BaseModel, Field + + +class UsersGroup(BaseModel): + gid: str + label: str + description: Optional[str] = None + + +class Groups(BaseModel): + me: UsersGroup + organizations: Optional[List[UsersGroup]] = [] + all_: UsersGroup = Field(..., alias="all") diff --git a/services/api-server/src/simcore_service_api_server/models/domain/users.py b/services/api-server/src/simcore_service_api_server/models/domain/users.py new file mode 100644 index 00000000000..5b35d3fc388 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/domain/users.py @@ -0,0 +1,32 @@ +from pydantic import BaseModel, EmailStr, Field + +from simcore_postgres_database.models.users import UserRole, UserStatus + +from .groups import Groups + + +class UserBase(BaseModel): + first_name: str + last_name: str + + +class User(UserBase): + login: EmailStr + role: str + groups: Groups + gravatar_id: str + + +class UserInDB(BaseModel): + id_: int = Field(0, alias="id") + name: str + email: str + password_hash: str + primary_gid: int + status: UserStatus + role: UserRole + + # TODO: connect name <-> first_name, last_name + + class Config: + orm_mode = True diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/__init__.py b/services/api-server/src/simcore_service_api_server/models/schemas/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py b/services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py new file mode 100644 index 00000000000..8201495e219 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py @@ -0,0 +1,12 @@ +from pydantic import BaseModel + +from ..domain.api_keys import ApiKey + + +class ApiKeyInLogin(ApiKey): + pass + + +class ApiKeyInResponse(BaseModel): + display_name: str + token: str diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/meta.py b/services/api-server/src/simcore_service_api_server/models/schemas/meta.py new file mode 100644 index 00000000000..dd23eced796 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/schemas/meta.py @@ -0,0 +1,27 @@ +from typing import Dict, Optional + +from pydantic import BaseModel, Field, constr + +# TODO: review this RE +# use https://www.python.org/dev/peps/pep-0440/#version-scheme +# or https://www.python.org/dev/peps/pep-0440/#appendix-b-parsing-version-strings-with-regular-expressions +# +VERSION_RE = r"^(0|[1-9]\d*)(\.(0|[1-9]\d*)){2}(-(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*)(\.(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*))*)?(\+[-\da-zA-Z]+(\.[-\da-zA-Z-]+)*)?$" +VersionStr = constr(regex=VERSION_RE) + + +class Meta(BaseModel): + name: str + version: VersionStr + released: Optional[Dict[str, VersionStr]] = Field( + None, description="Maps every route's path tag with a released version" + ) + + class Config: + schema_extra = { + "example": { + "name": "simcore_service_foo", + "version": "2.4.45", + "released": {"v1": "1.3.4", "v2": "2.4.45"}, + } + } diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/profiles.py b/services/api-server/src/simcore_service_api_server/models/schemas/profiles.py new file mode 100644 index 00000000000..5ab3bdb8184 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/schemas/profiles.py @@ -0,0 +1,38 @@ +from enum import Enum +from typing import Optional + +from pydantic import BaseModel, EmailStr, Field + +from ..domain.groups import Groups + + +class ProfileCommon(BaseModel): + first_name: Optional[str] = Field(None, example="James") + last_name: Optional[str] = Field(None, example="Maxwell") + + +class ProfileUpdate(ProfileCommon): + pass + + +# from simcore_postgres_database.models.users import UserRole +class UserRoleEnum(str, Enum): + # TODO: build from UserRole! or assert Role == UserRole + ANONYMOUS = "ANONYMOUS" + GUEST = "GUEST" + USER = "USER" + TESTER = "TESTER" + + +class Profile(ProfileCommon): + login: EmailStr + role: UserRoleEnum + groups: Optional[Groups] = None + gravatar_id: Optional[str] = Field( + None, + description="Hash value of email to retrieve an avatar image from https://www.gravatar.com", + max_length=40, + ) + + class Config: + schema_extra = {} diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/tokens.py b/services/api-server/src/simcore_service_api_server/models/schemas/tokens.py new file mode 100644 index 00000000000..89fb7692f24 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/schemas/tokens.py @@ -0,0 +1,25 @@ +from datetime import datetime +from typing import List + +from pydantic import BaseModel + + +class JWTMeta(BaseModel): + exp: datetime + sub: str + + +class JWTUser(BaseModel): + username: str + + +class Token(BaseModel): + access_token: str + token_type: str + + +class TokenData(BaseModel): + """ application data encoded in the JWT """ + + user_id: int + scopes: List[str] = [] diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/users.py b/services/api-server/src/simcore_service_api_server/models/schemas/users.py new file mode 100644 index 00000000000..32e51ae900f --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/models/schemas/users.py @@ -0,0 +1,12 @@ +from pydantic import BaseModel + +from ..domain.users import User + + +class UserInResponse(User): + pass + + +class UserInUpdate(BaseModel): + first_name: str + last_name: str diff --git a/services/api-server/src/simcore_service_api_server/services/__init__.py b/services/api-server/src/simcore_service_api_server/services/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/src/simcore_service_api_server/services/jwt.py b/services/api-server/src/simcore_service_api_server/services/jwt.py new file mode 100644 index 00000000000..c3aed9445ce --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/services/jwt.py @@ -0,0 +1,66 @@ +""" Utility functions related with security + +""" +import os +from datetime import datetime, timedelta +from typing import Dict, Optional + +import jwt +from jwt import PyJWTError +from loguru import logger +from pydantic import ValidationError + +from ..models.schemas.tokens import TokenData + +# JSON WEB TOKENS (JWT) -------------------------------------------------------------- + +__SIGNING_KEY__ = os.environ.get("SECRET_KEY") +__ALGORITHM__ = "HS256" +ACCESS_TOKEN_EXPIRE_MINUTES = 30 + + +def create_access_token( + data: TokenData, *, expires_in_mins: Optional[int] = ACCESS_TOKEN_EXPIRE_MINUTES +) -> str: + """ + To disable expiration, set 'expires_in_mins' to None + """ + # JWT specs define "Claim Names" for the encoded payload + # SEE https://tools.ietf.org/html/rfc7519#section-4 + payload = { + "sub": data.user_id, + "scopes": data.scopes or [], + } + + if expires_in_mins is not None: + exp = datetime.utcnow() + timedelta(minutes=expires_in_mins) + payload["exp"] = exp + + encoded_jwt = jwt.encode(payload, __SIGNING_KEY__, algorithm=__ALGORITHM__) + return encoded_jwt + + +def get_access_token_data(encoded_jwt: str) -> Optional[TokenData]: + """ + Decodes and validates JWT and returns TokenData + Returns None, if invalid token + """ + try: + # decode JWT [header.payload.signature] and get payload: + payload: Dict = jwt.decode( + encoded_jwt, __SIGNING_KEY__, algorithms=[__ALGORITHM__] + ) + + token_data = TokenData( + user_id=payload.get("sub"), token_scopes=payload.get("scopes", []) + ) + + except PyJWTError: + logger.debug("Invalid token", exc_info=True) + return None + + except ValidationError: + logger.warning("Token data corrupted? Check payload -> TokenData conversion") + return None + + return token_data diff --git a/services/api-gateway/src/simcore_service_api_gateway/utils/remote_debug.py b/services/api-server/src/simcore_service_api_server/services/remote_debug.py similarity index 76% rename from services/api-gateway/src/simcore_service_api_gateway/utils/remote_debug.py rename to services/api-server/src/simcore_service_api_server/services/remote_debug.py index e7b8377dd46..67b9b279d44 100644 --- a/services/api-gateway/src/simcore_service_api_gateway/utils/remote_debug.py +++ b/services/api-server/src/simcore_service_api_server/services/remote_debug.py @@ -1,12 +1,12 @@ """ Setup remote debugger with Python Tools for Visual Studio (PTVSD) """ -import logging + import os -REMOTE_DEBUG_PORT = 3000 +from loguru import logger -log = logging.getLogger(__name__) +REMOTE_DEBUG_PORT = 3000 def setup_remote_debugging(force_enabled=False, *, boot_mode=None): @@ -16,7 +16,7 @@ def setup_remote_debugging(force_enabled=False, *, boot_mode=None): boot_mode = boot_mode or os.environ.get("SC_BOOT_MODE") if boot_mode == "debug-ptvsd" or force_enabled: try: - log.debug("Enabling attach ptvsd ...") + logger.debug("Enabling attach ptvsd ...") # # SEE https://github.com/microsoft/ptvsd#enabling-debugging # @@ -30,9 +30,9 @@ def setup_remote_debugging(force_enabled=False, *, boot_mode=None): "Cannot enable remote debugging. Please install ptvsd first" ) - log.info("Remote debugging enabled: listening port %s", REMOTE_DEBUG_PORT) + logger.info(f"Remote debugging enabled: listening port {REMOTE_DEBUG_PORT}") else: - log.debug("Booting without remote debugging since SC_BOOT_MODE=%s", boot_mode) + logger.debug(f"Booting without remote debugging since SC_BOOT_MODE={boot_mode}") __all__ = ["setup_remote_debugging"] diff --git a/services/api-gateway/src/simcore_service_api_gateway/utils/helpers.py b/services/api-server/src/simcore_service_api_server/services/security.py similarity index 55% rename from services/api-gateway/src/simcore_service_api_gateway/utils/helpers.py rename to services/api-server/src/simcore_service_api_server/services/security.py index 7317f50d7ed..2dea4396d82 100644 --- a/services/api-gateway/src/simcore_service_api_gateway/utils/helpers.py +++ b/services/api-server/src/simcore_service_api_server/services/security.py @@ -1,29 +1,21 @@ -import json import subprocess # nosec -from datetime import datetime from subprocess import CalledProcessError, CompletedProcess # nosec -from typing import Dict +from passlib.context import CryptContext -def to_bool(s: str) -> bool: - return s.lower() in ["true", "1", "yes"] +__pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto") -def jsoncoverter(obj): - if isinstance(obj, datetime): - return obj.__str__() - if isinstance(obj, bytes): - return str(obj) - return obj +def verify_password(plain_password: str, hashed_password: str) -> bool: + return __pwd_context.verify(plain_password, hashed_password) -def json_dumps(obj: Dict) -> str: - return json.dumps(obj, indent=2, default=jsoncoverter) +def get_password_hash(password: str) -> str: + return __pwd_context.hash(password) def create_secret_key() -> str: # NOTICE that this key is reset when server is restarted! - try: proc: CompletedProcess = subprocess.run( # nosec "openssl rand -hex 32", check=True, shell=True diff --git a/services/api-server/src/simcore_service_api_server/services/serialization.py b/services/api-server/src/simcore_service_api_server/services/serialization.py new file mode 100644 index 00000000000..b4266fbf491 --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/services/serialization.py @@ -0,0 +1,19 @@ +import json +from datetime import datetime +from typing import Dict + + +def to_bool(s: str) -> bool: + return s.lower() in ["true", "1", "yes"] + + +def _jsoncoverter(obj): + if isinstance(obj, datetime): + return obj.__str__() + if isinstance(obj, bytes): + return str(obj) + return obj + + +def json_dumps(obj: Dict) -> str: + return json.dumps(obj, indent=2, default=_jsoncoverter) diff --git a/services/api-server/src/simcore_service_api_server/services/webserver.py b/services/api-server/src/simcore_service_api_server/services/webserver.py new file mode 100644 index 00000000000..74631f5a33a --- /dev/null +++ b/services/api-server/src/simcore_service_api_server/services/webserver.py @@ -0,0 +1,52 @@ +import base64 + +from cryptography import fernet +from fastapi import FastAPI +from httpx import AsyncClient +from loguru import logger + +from ..core.settings import WebServerSettings + + +def _get_secret_key(settings: WebServerSettings): + secret_key_bytes = settings.session_secret_key.get_secret_value().encode("utf-8") + while len(secret_key_bytes) < 32: + secret_key_bytes += secret_key_bytes + secret_key = secret_key_bytes[:32] + + if isinstance(secret_key, str): + pass + elif isinstance(secret_key, (bytes, bytearray)): + secret_key = base64.urlsafe_b64encode(secret_key) + return secret_key + + +def setup_webserver(app: FastAPI) -> None: + settings: WebServerSettings = app.state.settings.webserver + + # normalize & encrypt + secret_key = _get_secret_key(settings) + app.state.webserver_fernet = fernet.Fernet(secret_key) + + # init client + logger.debug(f"Setup webserver at {settings.base_url}...") + + client = AsyncClient(base_url=settings.base_url) + app.state.webserver_client = client + + # TODO: raise if attribute already exists + # TODO: ping? + + +async def close_webserver(app: FastAPI) -> None: + try: + client: AsyncClient = app.state.webserver_client + await client.aclose() + del app.state.webserver_client + except AttributeError: + pass + logger.debug("Webserver closed successfully") + + +def get_webserver_client(app: FastAPI) -> AsyncClient: + return app.state.webserver_client diff --git a/services/api-server/tests/integration/.gitkeep b/services/api-server/tests/integration/.gitkeep new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-server/tests/unit/_helpers.py b/services/api-server/tests/unit/_helpers.py new file mode 100644 index 00000000000..2ba444489a6 --- /dev/null +++ b/services/api-server/tests/unit/_helpers.py @@ -0,0 +1,65 @@ +from pprint import pformat +from typing import Dict + +import faker +import passlib.hash +from aiopg.sa.result import RowProxy + +import simcore_service_api_server.db.tables as orm +from simcore_service_api_server.db.repositories.base import BaseRepository +from simcore_service_api_server.db.repositories.users import UsersRepository +from simcore_service_api_server.models.domain.api_keys import ApiKeyInDB + +fake = faker.Faker() + + +def _hash_it(password: str) -> str: + return passlib.hash.sha256_crypt.using(rounds=1000).hash(password) + + +# TODO: this should be generated from the metadata in orm.users table +def random_user(**overrides) -> Dict: + data = dict( + name=fake.name(), + email=fake.email(), + password_hash=_hash_it("secret"), + status=orm.UserStatus.ACTIVE, + created_ip=fake.ipv4(), + ) + + password = overrides.pop("password") + if password: + overrides["password_hash"] = _hash_it(password) + + data.update(overrides) + return data + + +class RWUsersRepository(UsersRepository): + # pylint: disable=no-value-for-parameter + + async def create(self, **user) -> int: + values = random_user(**user) + user_id = await self.connection.scalar(orm.users.insert().values(**values)) + + print("Created user ", pformat(values), f"with user_id={user_id}") + return user_id + + +class RWApiKeysRepository(BaseRepository): + # pylint: disable=no-value-for-parameter + + async def create(self, name: str, *, api_key: str, api_secret: str, user_id: int): + values = dict( + display_name=name, user_id=user_id, api_key=api_key, api_secret=api_secret, + ) + _id = await self.connection.scalar(orm.api_keys.insert().values(**values)) + + # check inserted + row: RowProxy = await ( + await self.connection.execute( + orm.api_keys.select().where(orm.api_keys.c.id == _id) + ) + ).first() + + return ApiKeyInDB.from_orm(row) diff --git a/services/api-server/tests/unit/conftest.py b/services/api-server/tests/unit/conftest.py new file mode 100644 index 00000000000..b69ea0e2666 --- /dev/null +++ b/services/api-server/tests/unit/conftest.py @@ -0,0 +1,246 @@ +# pylint:disable=unused-variable +# pylint:disable=unused-argument +# pylint:disable=redefined-outer-name + +import os +import shutil +import subprocess +import sys +from pathlib import Path +from typing import Callable, Coroutine, Dict, Union + +import aiopg.sa +import pytest +import sqlalchemy as sa +import yaml +from asgi_lifespan import LifespanManager +from fastapi import FastAPI +from fastapi.testclient import TestClient +from httpx import AsyncClient + +import simcore_postgres_database.cli as pg_cli +import simcore_service_api_server +from _helpers import RWApiKeysRepository, RWUsersRepository +from simcore_postgres_database.models.base import metadata +from simcore_service_api_server.models.domain.api_keys import ApiKeyInDB + +current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent + + +## TEST_ENVIRON --- + + +@pytest.fixture(scope="session") +def environment() -> Dict: + env = { + "WEBSERVER_HOST": "webserver", + "WEBSERVER_SESSION_SECRET_KEY": "REPLACE ME with a key of at least length 32.", + + "POSTGRES_HOST": "localhost", + "POSTGRES_USER": "test", + "POSTGRES_PASSWORD": "test", + "POSTGRES_DB": "test", + + "LOG_LEVEL": "debug", + + "SC_BOOT_MODE": "production", + } + return env + + +## FOLDER LAYOUT --- + + +@pytest.fixture(scope="session") +def project_slug_dir(): + folder = current_dir.parent.parent + assert folder.exists() + assert any(folder.glob("src/simcore_service_api_server")) + return folder + + +@pytest.fixture(scope="session") +def package_dir(): + dirpath = Path(simcore_service_api_server.__file__).resolve().parent + assert dirpath.exists() + return dirpath + + +@pytest.fixture(scope="session") +def osparc_simcore_root_dir(project_slug_dir): + root_dir = project_slug_dir.parent.parent + assert ( + root_dir and root_dir.exists() + ), "Did you renamed or moved the integration folder under api-server??" + assert any(root_dir.glob("services/api-server")), ( + "%s not look like rootdir" % root_dir + ) + return root_dir + + +@pytest.fixture(scope="session") +def tests_dir() -> Path: + tdir = (current_dir / "..").resolve() + assert tdir.exists() + assert tdir.name == "tests" + return tdir + + +@pytest.fixture(scope="session") +def tests_utils_dir(tests_dir: Path) -> Path: + utils_dir = (tests_dir / "utils").resolve() + assert utils_dir.exists() + return utils_dir + + +## POSTGRES & APP --- + + +@pytest.fixture(scope="session") +def docker_compose_file(environment, tests_utils_dir, tmpdir_factory) -> Path: + # Overrides fixture in https://github.com/avast/pytest-docker + + # NOTE: do not forget to add the current environ here, otherwise docker-compose fails + environ = dict(os.environ) + environ.update(environment) + + src_path = tests_utils_dir / "docker-compose.yml" + assert src_path.exists + + dst_path = Path(str(tmpdir_factory.mktemp("config").join("docker-compose.yml"))) + + shutil.copy(src_path, dst_path.parent) + assert dst_path.exists() + + # configs + subprocess.run( + f'docker-compose --file "{src_path}" config > "{dst_path}"', + shell=True, + check=True, + env=environ, + ) + + return dst_path + + +@pytest.fixture(scope="session") +def postgres_service(docker_services, docker_ip, docker_compose_file: Path) -> Dict: + + # check docker-compose's environ is resolved properly + config = yaml.safe_load(docker_compose_file.read_text()) + environ = config["services"]["postgres"]["environment"] + + # builds DSN + config = dict( + user=environ["POSTGRES_USER"], + password=environ["POSTGRES_PASSWORD"], + host=docker_ip, + port=docker_services.port_for("postgres", 5432), + database=environ["POSTGRES_DB"], + ) + + dsn = "postgresql://{user}:{password}@{host}:{port}/{database}".format(**config) + + def _create_checker() -> Callable: + def is_postgres_responsive() -> bool: + try: + engine = sa.create_engine(dsn) + conn = engine.connect() + conn.close() + except sa.exc.OperationalError: + return False + return True + + return is_postgres_responsive + + # Wait until service is responsive. + docker_services.wait_until_responsive( + check=_create_checker(), timeout=30.0, pause=0.1, + ) + + config["dsn"] = dsn + return config + + +@pytest.fixture("session") +def make_engine(postgres_service: Dict) -> Callable: + dsn = postgres_service["dsn"] # session scope freezes dsn + + def maker(is_async=True) -> Union[Coroutine, Callable]: + return aiopg.sa.create_engine(dsn) if is_async else sa.create_engine(dsn) + + return maker + + +@pytest.fixture +def apply_migration(postgres_service: Dict, make_engine) -> None: + kwargs = postgres_service.copy() + kwargs.pop("dsn") + pg_cli.discover.callback(**kwargs) + pg_cli.upgrade.callback("head") + yield + pg_cli.downgrade.callback("base") + pg_cli.clean.callback() + + # FIXME: deletes all because downgrade is not reliable! + engine = make_engine(False) + metadata.drop_all(engine) + + +@pytest.fixture +def app(monkeypatch, environment, apply_migration) -> FastAPI: + # patching environs + for key, value in environment.items(): + monkeypatch.setenv(key, value) + + from simcore_service_api_server.core.application import init_app + + app = init_app() + return app + + +@pytest.fixture +async def initialized_app(app: FastAPI) -> FastAPI: + async with LifespanManager(app): + yield app + + +@pytest.fixture +async def client(loop, initialized_app: FastAPI) -> AsyncClient: + async with AsyncClient( + app=initialized_app, + base_url="http://testserver", + headers={"Content-Type": "application/json"}, + ) as client: + yield client + + +@pytest.fixture +def sync_client(app: FastAPI) -> TestClient: + # test client: + # Context manager to trigger events: https://fastapi.tiangolo.com/advanced/testing-events/ + with TestClient(app) as cli: + yield cli + + +## FAKE DATA --- + + +@pytest.fixture +async def test_user_id(loop, initialized_app) -> int: + # WARNING: created but not deleted upon tear-down, i.e. this is for one use! + async with initialized_app.state.engine.acquire() as conn: + user_id = await RWUsersRepository(conn).create( + email="test@test.com", password="password", name="username", + ) + return user_id + + +@pytest.fixture +async def test_api_key(loop, initialized_app, test_user_id) -> ApiKeyInDB: + # WARNING: created but not deleted upon tear-down, i.e. this is for one use! + async with initialized_app.state.engine.acquire() as conn: + apikey = await RWApiKeysRepository(conn).create( + "test-api-key", api_key="key", api_secret="secret", user_id=test_user_id + ) + return apikey diff --git a/services/api-server/tests/unit/test_api_meta.py b/services/api-server/tests/unit/test_api_meta.py new file mode 100644 index 00000000000..d8df761a822 --- /dev/null +++ b/services/api-server/tests/unit/test_api_meta.py @@ -0,0 +1,19 @@ +# pylint: disable=unused-variable +# pylint: disable=unused-argument +# pylint: disable=redefined-outer-name +# from fastapi.testclient import TestClient + +from httpx import AsyncClient + +from simcore_service_api_server.__version__ import api_version, api_vtag +from simcore_service_api_server.models.schemas.meta import Meta + + +async def test_read_service_meta(client: AsyncClient): + response = await client.get(f"{api_vtag}/meta") + + assert response.status_code == 200 + assert response.json()["version"] == api_version + + meta = Meta(**response.json()) + assert meta.version == api_version diff --git a/services/api-server/tests/unit/test_api_user.py b/services/api-server/tests/unit/test_api_user.py new file mode 100644 index 00000000000..49464d08f66 --- /dev/null +++ b/services/api-server/tests/unit/test_api_user.py @@ -0,0 +1,51 @@ +# pylint: disable=unused-variable +# pylint: disable=unused-argument +# pylint: disable=redefined-outer-name + +# from starlette.testclient import TestClient + +import pytest +from httpx import AsyncClient +from starlette import status + +from simcore_service_api_server.__version__ import api_vtag +from simcore_service_api_server.models.domain.api_keys import ApiKeyInDB +from simcore_service_api_server.models.schemas.profiles import Profile + + +@pytest.fixture +def auth(test_api_key: ApiKeyInDB): + ## https://requests.readthedocs.io/en/master/user/authentication/ + # TODO: https://requests-oauthlib.readthedocs.io/en/latest/oauth2_workflow.html#backend-application-flow + + auth = (test_api_key.api_key, test_api_key.api_secret.get_secret_value()) + return auth + + +@pytest.mark.skip(reason="fixture under dev") +async def test_get_profile(client: AsyncClient, auth): + + resp = await client.get(f"/{api_vtag}/meta", auth=auth) + assert resp.status_code == status.HTTP_200_OK + + resp = await client.get(f"/{api_vtag}/me", auth=auth) + assert resp.status_code == status.HTTP_200_OK + + # validates response + profile = Profile(**resp.json()) + assert profile.first_name == "James" + + +@pytest.mark.skip(reason="fixture under dev") +async def test_patch_profile(client: AsyncClient, auth): + + resp = await client.patch( + f"/{api_vtag}/me", + data={"first_name": "Oliver", "last_name": "Heaviside"}, + auth=auth, + ) + assert resp.status_code == status.HTTP_200_OK, resp.text + + profile = Profile(**resp.json()) + assert profile.first_name == "Oliver" + assert profile.last_name == "Heaviside" diff --git a/services/api-gateway/tests/unit/test_code_syntax.py b/services/api-server/tests/unit/test_code_syntax.py similarity index 100% rename from services/api-gateway/tests/unit/test_code_syntax.py rename to services/api-server/tests/unit/test_code_syntax.py index 9e6576bb072..78a6d0c3efa 100644 --- a/services/api-gateway/tests/unit/test_code_syntax.py +++ b/services/api-server/tests/unit/test_code_syntax.py @@ -5,11 +5,11 @@ import os import re from pathlib import Path -from pytest_simcore.helpers.utils_pylint import assert_pylint_is_passing - import pytest +from pytest_simcore.helpers.utils_pylint import assert_pylint_is_passing + @pytest.fixture def pylintrc(osparc_simcore_root_dir): diff --git a/services/api-server/tests/unit/test_fake_generator.py b/services/api-server/tests/unit/test_fake_generator.py new file mode 100644 index 00000000000..b9c791bd74b --- /dev/null +++ b/services/api-server/tests/unit/test_fake_generator.py @@ -0,0 +1,18 @@ +# pylint:disable=unused-variable +# pylint:disable=unused-argument +# pylint:disable=redefined-outer-name +import pytest +from pydantic import BaseModel + + +@pytest.mark.skip(reason="TODO") +def create_fake(model: BaseModel): + from faker import Faker + + fake = Faker() + + # for field in model.__fie + # navigate fields + # if example cls.Config.schema_extra.get("example") + # type + # default or some value in fake diff --git a/services/api-server/tests/unit/test_jwt.py b/services/api-server/tests/unit/test_jwt.py new file mode 100644 index 00000000000..5f13d17d4b4 --- /dev/null +++ b/services/api-server/tests/unit/test_jwt.py @@ -0,0 +1,35 @@ +# pylint: disable=unused-variable +# pylint: disable=unused-argument +# pylint: disable=redefined-outer-name + +import importlib + +import pytest + +from simcore_service_api_server.models.schemas.tokens import TokenData +from simcore_service_api_server.services.jwt import ( + create_access_token, + get_access_token_data, +) + + +@pytest.fixture() +def mock_secret_key(monkeypatch): + monkeypatch.setenv("SECRET_KEY", "your-256-bit-secret") + + import simcore_service_api_server.services.jwt + + importlib.reload(simcore_service_api_server.services.jwt) + + +def test_access_token_data(mock_secret_key): + + data = TokenData(user_id=33, scopes=[]) + jwt = create_access_token(data, expires_in_mins=None) + + # checks jwt against https://jwt.io/#debugger-io + # assert jwt == b"ey ... + + received_data = get_access_token_data(jwt) + + assert data == received_data diff --git a/services/api-server/tests/unit/test_security.py b/services/api-server/tests/unit/test_security.py new file mode 100644 index 00000000000..325b001b963 --- /dev/null +++ b/services/api-server/tests/unit/test_security.py @@ -0,0 +1,14 @@ +# pylint: disable=unused-variable +# pylint: disable=unused-argument +# pylint: disable=redefined-outer-name + +from simcore_service_api_server.services.security import ( + get_password_hash, + verify_password, +) + + +def test_has_password(): + hashed_pass = get_password_hash("secret") + assert hashed_pass != "secret" + assert verify_password("secret", hashed_pass) diff --git a/services/api-server/tests/unit/test_settings.py b/services/api-server/tests/unit/test_settings.py new file mode 100644 index 00000000000..8263d46ae03 --- /dev/null +++ b/services/api-server/tests/unit/test_settings.py @@ -0,0 +1,36 @@ +# import pytest +import logging +from pprint import pprint + +from simcore_service_api_server.core.settings import ( + URL, + AppSettings, + BootModeEnum, + PostgresSettings, + WebServerSettings, +) + + +# bring .env-devel in here +def test_min_environ_for_settings(monkeypatch): + monkeypatch.setenv("WEBSERVER_HOST", "production_webserver") + monkeypatch.setenv("WEBSERVER_SESSION_SECRET_KEY", "REPLACE ME with a key of at least length 32.") + + monkeypatch.setenv("POSTGRES_HOST", "production_postgres") + monkeypatch.setenv("POSTGRES_USER", "test") + monkeypatch.setenv("POSTGRES_PASSWORD", "test") + monkeypatch.setenv("POSTGRES_DB", "simcoredb") + + monkeypatch.setenv("SC_BOOT_MODE", "production") + + # NOTE: pg and weberver settings parse environ NOW! + settings = AppSettings(postgres=PostgresSettings(), webserver=WebServerSettings()) + + pprint(settings.dict()) + + assert settings.boot_mode == BootModeEnum.production + assert settings.loglevel == logging.DEBUG + + assert settings.postgres.dsn == URL( + "postgresql://test:test@production_postgres:5432/simcoredb" + ) diff --git a/services/api-gateway/tests/utils/docker-compose.yml b/services/api-server/tests/utils/docker-compose.yml similarity index 93% rename from services/api-gateway/tests/utils/docker-compose.yml rename to services/api-server/tests/utils/docker-compose.yml index a5afea1eca1..51f193277fc 100644 --- a/services/api-gateway/tests/utils/docker-compose.yml +++ b/services/api-server/tests/utils/docker-compose.yml @@ -5,7 +5,7 @@ services: environment: - POSTGRES_USER=${POSTGRES_USER:-test} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD:-test} - - POSTGRES_DB=${POSTGRES_PASSWORD:-test} + - POSTGRES_DB=${POSTGRES_DB:-test} - POSTGRES_HOST=${POSTGRES_HOST:-localhost} - POSTGRES_PORT=${POSTGRES_PORT:-5432} ports: diff --git a/services/api-server/tests/utils/init-pg.py b/services/api-server/tests/utils/init-pg.py new file mode 100644 index 00000000000..a239a266f47 --- /dev/null +++ b/services/api-server/tests/utils/init-pg.py @@ -0,0 +1,108 @@ +# pylint: disable=no-value-for-parameter +# TODO: reuse in auto and manual testing! + +import asyncio +import os +from typing import Dict +from uuid import uuid4 + +import aiopg.sa +import faker +import sqlalchemy as sa +import yaml + +import simcore_postgres_database.cli as pg_cli +import simcore_service_api_server.db.tables as pg + +DSN_FORMAT = "postgresql://{user}:{password}@{host}:{port}/{database}" + +default_db_settings = dict( + user=os.environ.get("POSTGRES_USER", "test"), + password=os.environ.get("POSTGRES_PASSWORD", "test"), + host=os.environ.get("POSTGRES_HOST", "localhost"), + port=os.environ.get("POSTGRES_PORT", 5432), + database=os.environ.get("POSTGRES_DB", 5432), +) +default_dsn = DSN_FORMAT.format(**default_db_settings) + +fake = faker.Faker() + + +def load_db_config() -> Dict: + # TODO: + with open("docker-compose-resolved.yaml") as fh: + config = yaml.safe_load(fh) + environ = config["services"]["postgres"]["environment"] + + return dict( + user=environ["POSTGRES_USER"], + password=environ["POSTGRES_PASSWORD"], + host="localhost", + port=5432, + database=environ["POSTGRES_DB"], + ) + + +def init_tables(dsn: str = default_dsn): + engine = sa.create_engine(dsn) + meta = pg.metadata + meta.drop_all(engine) + # meta.create_all(engine, tables=[pg.api_keys, pg.users]) + + +def random_user(**overrides): + data = dict( + name=fake.name(), + email=fake.email(), + password_hash=fake.numerify(text="#" * 5), + status=pg.UserStatus.ACTIVE, + created_ip=fake.ipv4(), + ) + data.update(overrides) + return data + + +def random_api_key(**overrides): + data = dict( + user_id=1, display_name=fake.word(), api_key=uuid4(), api_secret=uuid4(), + ) + data.update(overrides) + return data + + +async def fill_tables(dsn: str = default_dsn): + async with aiopg.sa.create_engine(dsn) as engine: + async with engine.acquire() as conn: + uid: int = await conn.scalar( + pg.users.insert().values(**random_user(name="me", email="me@bar.foo")) + ) + + await conn.scalar( + pg.api_keys.insert().values( + **random_api_key( + display_name="test key", + user_id=uid, + api_key="key", + api_secret="secret", + ) + ) + ) + + +async def main(): + + # discover + settings = pg_cli.discover.callback(**default_db_settings) + dsn: str = DSN_FORMAT.format(**settings) + + # upgrade + pg_cli.upgrade.callback("head") + + # FIXME: if already there, it will fail + await fill_tables(dsn) + + +if __name__ == "__main__": + loop = asyncio.get_event_loop() + loop.run_until_complete(main()) + loop.stop() diff --git a/services/api-gateway/tools/gen_api.py b/services/api-server/tools/gen_api.py similarity index 99% rename from services/api-gateway/tools/gen_api.py rename to services/api-server/tools/gen_api.py index fa8f1e68777..f2daac24a13 100644 --- a/services/api-gateway/tools/gen_api.py +++ b/services/api-server/tools/gen_api.py @@ -15,7 +15,7 @@ # directories current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent -package_dir = (current_dir / ".." / "src" / "simcore_service_api_gateway").resolve() +package_dir = (current_dir / ".." / "src" / "simcore_service_api_server").resolve() # formatter diff --git a/services/api-gateway/tools/templates/cruds.py.jinja2 b/services/api-server/tools/templates/cruds.py.jinja2 similarity index 100% rename from services/api-gateway/tools/templates/cruds.py.jinja2 rename to services/api-server/tools/templates/cruds.py.jinja2 diff --git a/services/api-gateway/tools/templates/orm.py.jinja2 b/services/api-server/tools/templates/orm.py.jinja2 similarity index 100% rename from services/api-gateway/tools/templates/orm.py.jinja2 rename to services/api-server/tools/templates/orm.py.jinja2 diff --git a/services/api-gateway/tools/templates/resource_custom_methods.py.jinja2 b/services/api-server/tools/templates/resource_custom_methods.py.jinja2 similarity index 94% rename from services/api-gateway/tools/templates/resource_custom_methods.py.jinja2 rename to services/api-server/tools/templates/resource_custom_methods.py.jinja2 index 99c1dc7d348..4542ce6d6f9 100644 --- a/services/api-gateway/tools/templates/resource_custom_methods.py.jinja2 +++ b/services/api-server/tools/templates/resource_custom_methods.py.jinja2 @@ -1,11 +1,10 @@ {# STANDARD METHODS: https://cloud.google.com/apis/design/custom_methods #} -import logging +from loguru import logger from fastapi import APIRouter, HTTPException from starlette import status -log = logging.getLogger(__name__) router = APIRouter() diff --git a/services/api-gateway/tools/templates/resource_standard_methods.py.jinja2 b/services/api-server/tools/templates/resource_standard_methods.py.jinja2 similarity index 97% rename from services/api-gateway/tools/templates/resource_standard_methods.py.jinja2 rename to services/api-server/tools/templates/resource_standard_methods.py.jinja2 index fa87e95e520..0553fda89f4 100644 --- a/services/api-gateway/tools/templates/resource_standard_methods.py.jinja2 +++ b/services/api-server/tools/templates/resource_standard_methods.py.jinja2 @@ -1,4 +1,4 @@ -import logging +from loguru import logger from typing import List, Optional from fastapi import APIRouter, Body, Depends, HTTPException, Query @@ -9,8 +9,6 @@ from ..store import crud_{{ rnp }} as crud from ..schemas import schemas_{{ rnp }} as schemas router = APIRouter() -log = logging.getLogger(__name__) - {# STANDARD METHODS: https://cloud.google.com/apis/design/standard_methods #} @@ -37,7 +35,7 @@ async def list_{{ rnp }}( # Applicable naming conventions # TODO: filter: https://cloud.google.com/apis/design/naming_convention#list_filter_field # SEE response: https://cloud.google.com/apis/design/naming_convention#list_response - log.debug("%s %s %s", page_token, page_size, order_by) + logger.debug("%s %s %s", page_token, page_size, order_by) {{ rnp }} = await crud.list_{{ rnp }}(conn) return {{ rnp }} diff --git a/services/api-server/tools/templates/schemas.py.jinja2 b/services/api-server/tools/templates/schemas.py.jinja2 new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/api-gateway/tools/templates/test_endpoints.py.jinja2 b/services/api-server/tools/templates/test_endpoints.py.jinja2 similarity index 95% rename from services/api-gateway/tools/templates/test_endpoints.py.jinja2 rename to services/api-server/tools/templates/test_endpoints.py.jinja2 index c1cc99fed48..9bee32645e4 100644 --- a/services/api-gateway/tools/templates/test_endpoints.py.jinja2 +++ b/services/api-server/tools/templates/test_endpoints.py.jinja2 @@ -10,7 +10,7 @@ from starlette import status # TODO: app is init globally ... which is bad! -from simcore_service_api_gateway.main import api_version, app, api_vtag +from simcore_service_api_server.core.application import api_version, app, api_vtag @pytest.fixture diff --git a/services/catalog/Makefile b/services/catalog/Makefile index 219dcd42f41..268b99fe573 100644 --- a/services/catalog/Makefile +++ b/services/catalog/Makefile @@ -17,7 +17,7 @@ requirements: ## compiles pip requirements (.in -> .txt) .PHONY: install-dev install-prod install-ci install-dev install-prod install-ci: requirements _check_venv_active ## install app in development/production or CI mode # installing in $(subst install-,,$@) mode - pip-sync requirements/$(subst install-,,$@).txt + pip-sync --quiet requirements/$(subst install-,,$@).txt PHONY: tests-unit tests-integration tests diff --git a/services/catalog/docker/healthcheck.py b/services/catalog/docker/healthcheck.py index 93c59bb7826..23a3ba3ec11 100644 --- a/services/catalog/docker/healthcheck.py +++ b/services/catalog/docker/healthcheck.py @@ -18,7 +18,6 @@ import os import sys - from urllib.request import urlopen SUCCESS, UNHEALTHY = 0, 1 diff --git a/services/catalog/src/simcore_service_catalog/__main__.py b/services/catalog/src/simcore_service_catalog/__main__.py index ef4df57b5ad..10fa4f0890e 100644 --- a/services/catalog/src/simcore_service_catalog/__main__.py +++ b/services/catalog/src/simcore_service_catalog/__main__.py @@ -5,8 +5,8 @@ """ import uvicorn -from simcore_service_catalog.main import app from simcore_service_catalog.config import uvicorn_settings +from simcore_service_catalog.main import app def main(): diff --git a/services/catalog/src/simcore_service_catalog/config.py b/services/catalog/src/simcore_service_catalog/config.py index 5544f30d0b9..a04b5d84611 100644 --- a/services/catalog/src/simcore_service_catalog/config.py +++ b/services/catalog/src/simcore_service_catalog/config.py @@ -11,7 +11,7 @@ # DOCKER is_container_environ: bool = "SC_BOOT_MODE" in os.environ is_devel = os.environ.get("SC_BUILD_TARGET") == "development" -is_prod = os.environ.get("SC_BUILD_TARGET") == "production" +is_prod = os.environ.get("SC_BUILD_TARGET") == "production" # LOGGING @@ -40,7 +40,9 @@ **postgres_cfg ) postgres_cfg: dict = {**postgres_cfg, "uri": postgres_dsn} -init_tables: bool = cast_to_bool(os.environ.get("POSTGRES_INIT_TABLES", "true" if is_devel else "false")) +init_tables: bool = cast_to_bool( + os.environ.get("POSTGRES_INIT_TABLES", "true" if is_devel else "false") +) # SERVER # NOTE: https://www.uvicorn.org/settings/ diff --git a/services/catalog/src/simcore_service_catalog/endpoints/dags.py b/services/catalog/src/simcore_service_catalog/endpoints/dags.py index f360b0f7454..a75c2ed6eb1 100644 --- a/services/catalog/src/simcore_service_catalog/endpoints/dags.py +++ b/services/catalog/src/simcore_service_catalog/endpoints/dags.py @@ -10,8 +10,8 @@ ) from .. import db -from ..store import crud_dags as crud from ..schemas import schemas_dags as schemas +from ..store import crud_dags as crud router = APIRouter() log = logging.getLogger(__name__) diff --git a/services/catalog/src/simcore_service_catalog/main.py b/services/catalog/src/simcore_service_catalog/main.py index 6117bed081e..63a1ad27460 100644 --- a/services/catalog/src/simcore_service_catalog/main.py +++ b/services/catalog/src/simcore_service_catalog/main.py @@ -64,7 +64,8 @@ async def go(): async with engine.acquire() as conn: await create_tables(conn) - await go() # NOTE: non-blocking this way + await go() # NOTE: non-blocking this way + @app.on_event("shutdown") def shutdown_event(): diff --git a/services/catalog/src/simcore_service_catalog/orm.py b/services/catalog/src/simcore_service_catalog/orm.py index b84d5cbdafd..01557d31052 100644 --- a/services/catalog/src/simcore_service_catalog/orm.py +++ b/services/catalog/src/simcore_service_catalog/orm.py @@ -1,4 +1,3 @@ from simcore_postgres_database.models.direct_acyclic_graphs import DAG, dags - __all__ = ["dags", "DAG"] diff --git a/services/catalog/src/simcore_service_catalog/schemas/schemas_dags.py b/services/catalog/src/simcore_service_catalog/schemas/schemas_dags.py index 6c873a1931e..cfea6816e4b 100644 --- a/services/catalog/src/simcore_service_catalog/schemas/schemas_dags.py +++ b/services/catalog/src/simcore_service_catalog/schemas/schemas_dags.py @@ -1,7 +1,5 @@ from typing import Dict, Optional -# TODO: why pylint error in pydantic??? -# pylint: disable=no-name-in-module from pydantic import BaseModel, EmailStr, Field, Json from . import project @@ -32,7 +30,7 @@ class DAGInPath(DAGBase): class DAGAtDB(DAGBase): id: int - workbench: Json[Dict[str, project.Node]] + workbench: Json[Dict[str, project.Node]] # pylint: disable=unsubscriptable-object class Config: orm_mode = True diff --git a/services/catalog/src/simcore_service_catalog/utils/helpers.py b/services/catalog/src/simcore_service_catalog/utils/helpers.py index 59058ae0f75..4d95766d28b 100644 --- a/services/catalog/src/simcore_service_catalog/utils/helpers.py +++ b/services/catalog/src/simcore_service_catalog/utils/helpers.py @@ -1,3 +1,2 @@ - def cast_to_bool(value: str) -> bool: return value.lower() in ["true", "1", "yes"] diff --git a/services/catalog/src/simcore_service_catalog/utils/remote_debug.py b/services/catalog/src/simcore_service_catalog/utils/remote_debug.py index 91b3ba5af67..b29069c9fd8 100644 --- a/services/catalog/src/simcore_service_catalog/utils/remote_debug.py +++ b/services/catalog/src/simcore_service_catalog/utils/remote_debug.py @@ -21,15 +21,18 @@ def setup_remote_debugging(force_enabled=False): # SEE https://github.com/microsoft/ptvsd#enabling-debugging # import ptvsd - ptvsd.enable_attach(address=('0.0.0.0', REMOTE_DEBUG_PORT), redirect_output=True) # nosec + + ptvsd.enable_attach( + address=("0.0.0.0", REMOTE_DEBUG_PORT), redirect_output=True + ) # nosec except ImportError: - raise ValueError("Cannot enable remote debugging. Please install ptvsd first") + raise ValueError( + "Cannot enable remote debugging. Please install ptvsd first" + ) log.info("Remote debugging enabled: listening port %s", REMOTE_DEBUG_PORT) else: log.debug("Booting without remote debugging since SC_BOOT_MODE=%s", boot_mode) -__all__ = [ - 'setup_remote_debugging' -] +__all__ = ["setup_remote_debugging"] diff --git a/services/catalog/tests/unit/test_package.py b/services/catalog/tests/unit/test_package.py index 9eb0a8c62d6..3c4e17d5671 100644 --- a/services/catalog/tests/unit/test_package.py +++ b/services/catalog/tests/unit/test_package.py @@ -4,11 +4,12 @@ import os import re -from pytest_simcore.helpers.utils_pylint import assert_pylint_is_passing from pathlib import Path import pytest +from pytest_simcore.helpers.utils_pylint import assert_pylint_is_passing + # from simcore_service_catalog.__main__ import main diff --git a/services/docker-compose-build.yml b/services/docker-compose-build.yml index d0294305e8b..3f7fada5b88 100644 --- a/services/docker-compose-build.yml +++ b/services/docker-compose-build.yml @@ -7,22 +7,22 @@ # version: "3.7" services: - api-gateway: - image: local/api-gateway:${BUILD_TARGET:?build_target_required} + api-server: + image: local/api-server:${BUILD_TARGET:?build_target_required} build: context: ../ - dockerfile: services/api-gateway/Dockerfile + dockerfile: services/api-server/Dockerfile cache_from: - - local/api-gateway:${BUILD_TARGET:?build_target_required} - - ${DOCKER_REGISTRY:-itisfoundation}/api-gateway:cache - - ${DOCKER_REGISTRY:-itisfoundation}/api-gateway:${DOCKER_IMAGE_TAG:-latest} + - local/api-server:${BUILD_TARGET:?build_target_required} + - ${DOCKER_REGISTRY:-itisfoundation}/api-server:cache + - ${DOCKER_REGISTRY:-itisfoundation}/api-server:${DOCKER_IMAGE_TAG:-latest} target: ${BUILD_TARGET:?build_target_required} labels: org.label-schema.schema-version: "1.0" org.label-schema.build-date: "${BUILD_DATE}" org.label-schema.vcs-url: "${VCS_URL}" org.label-schema.vcs-ref: "${VCS_REF}" - io.osparc.api-version: "${STORAGE_API_VERSION}" + io.osparc.api-version: "${API_SERVER_API_VERSION}" catalog: image: local/catalog:${BUILD_TARGET:?build_target_required} diff --git a/services/docker-compose.devel.yml b/services/docker-compose.devel.yml index 2870b020ea2..47daede4cfe 100644 --- a/services/docker-compose.devel.yml +++ b/services/docker-compose.devel.yml @@ -6,6 +6,14 @@ # version: "3.7" services: + api-server: + environment: + - SC_BOOT_MODE=debug-ptvsd + - LOGLEVEL=debug + volumes: + - ./api-server:/devel/services/api-server + - ../packages:/devel/packages + catalog: environment: - SC_BOOT_MODE=debug-ptvsd diff --git a/services/docker-compose.local.yml b/services/docker-compose.local.yml index 9b1db0ca2ef..b0b813ad346 100644 --- a/services/docker-compose.local.yml +++ b/services/docker-compose.local.yml @@ -12,6 +12,11 @@ # version: "3.7" services: + api-server: + ports: + - "8006:8000" + - "3006:3000" + catalog: environment: - SC_BOOT_MODE=${SC_BOOT_MODE:-default} diff --git a/services/docker-compose.yml b/services/docker-compose.yml index aea850e08b9..f2da6db23c5 100644 --- a/services/docker-compose.yml +++ b/services/docker-compose.yml @@ -1,11 +1,16 @@ version: "3.7" services: - api-gateway: - # get info here: https://www.mock-server.com - image: mockserver/mockserver + api-server: + image: ${DOCKER_REGISTRY:-itisfoundation}/api-server:${DOCKER_IMAGE_TAG:-latest} init: true environment: - - MOCKSERVER_LIVENESS_HTTP_GET_PATH=/live + - WEBSERVER_HOST=${WEBSERVER_HOST:-webserver} + - LOGLEVEL=${LOG_LEVEL:-INFO} + env_file: + - ../.env + depends_on: + - postgres + - webserver deploy: labels: - io.simcore.zone=${TRAEFIK_SIMCORE_ZONE} @@ -14,11 +19,11 @@ services: # ssl header necessary so that socket.io upgrades correctly from polling to websocket mode. the middleware must be attached to the right connection. - traefik.http.middlewares.${SWARM_STACK_NAME}_sslheader.headers.customrequestheaders.X-Forwarded-Proto=http - traefik.enable=true - - traefik.http.services.${SWARM_STACK_NAME}_api-gateway.loadbalancer.server.port=1080 - - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.rule=hostregexp(`{host:.+}`) - - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.entrypoints=simcore_api - - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.priority=1 - - traefik.http.routers.${SWARM_STACK_NAME}_api-gateway.middlewares=${SWARM_STACK_NAME}_gzip@docker, ${SWARM_STACK_NAME}_sslheader + - traefik.http.services.${SWARM_STACK_NAME}_api-server.loadbalancer.server.port=8000 + - traefik.http.routers.${SWARM_STACK_NAME}_api-server.rule=hostregexp(`{host:.+}`) + - traefik.http.routers.${SWARM_STACK_NAME}_api-server.entrypoints=simcore_api + - traefik.http.routers.${SWARM_STACK_NAME}_api-server.priority=1 + - traefik.http.routers.${SWARM_STACK_NAME}_api-server.middlewares=${SWARM_STACK_NAME}_gzip@docker, ${SWARM_STACK_NAME}_sslheader networks: - default diff --git a/services/sidecar/Dockerfile b/services/sidecar/Dockerfile index d8228ac4dbd..50aec0e82bc 100644 --- a/services/sidecar/Dockerfile +++ b/services/sidecar/Dockerfile @@ -110,7 +110,7 @@ COPY --chown=scu:scu services/sidecar/docker services/sidecar/docker # --timeout=20s \ # --start-period=30s \ # --retries=3 \ -# CMD ["python3", "services/api-gateway/docker/healthcheck.py", "http://localhost:8000/"] +# CMD ["python3", "services/api-server/docker/healthcheck.py", "http://localhost:8000/"] ENTRYPOINT [ "/bin/sh", "services/sidecar/docker/entrypoint.sh" ] CMD ["/bin/sh", "services/sidecar/docker/boot.sh"] diff --git a/services/sidecar/src/simcore_service_sidecar/__version__.py b/services/sidecar/src/simcore_service_sidecar/__version__.py index c6aac55f8e9..7771daecad3 100644 --- a/services/sidecar/src/simcore_service_sidecar/__version__.py +++ b/services/sidecar/src/simcore_service_sidecar/__version__.py @@ -1,4 +1,4 @@ -""" Current version of the simcore_service_api_gateway application +""" Current version of the simcore_service_sidecar application """ import pkg_resources diff --git a/services/web/server/src/simcore_service_webserver/session.py b/services/web/server/src/simcore_service_webserver/session.py index f5d42ecf222..18809191d86 100644 --- a/services/web/server/src/simcore_service_webserver/session.py +++ b/services/web/server/src/simcore_service_webserver/session.py @@ -56,7 +56,7 @@ def setup_session(app: web.Application): # EncryptedCookieStorage urlsafe_b64decode inside if passes bytes storage = EncryptedCookieStorage( - secret_key=secret_key_bytes[:32], cookie_name="API_SESSION" + secret_key=secret_key_bytes[:32], cookie_name="osparc.WEBAPI_SESSION" ) aiohttp_session.setup(app, storage) diff --git a/services/web/server/tests/unit/with_dbs/test_login.py b/services/web/server/tests/unit/with_dbs/test_login.py index 64ca0412e4d..491a3937beb 100644 --- a/services/web/server/tests/unit/with_dbs/test_login.py +++ b/services/web/server/tests/unit/with_dbs/test_login.py @@ -1,12 +1,16 @@ # pylint:disable=unused-variable # pylint:disable=unused-argument # pylint:disable=redefined-outer-name +# pylint: disable=protected-access +import pytest from aiohttp import web +from pytest_simcore.helpers.utils_assert import assert_status from pytest_simcore.helpers.utils_login import NewUser +from servicelib.application_keys import APP_CONFIG_KEY from servicelib.rest_responses import unwrap_envelope -from simcore_service_webserver.db_models import ConfirmationAction, UserStatus +from simcore_service_webserver.db_models import UserStatus from simcore_service_webserver.login.cfg import cfg EMAIL, PASSWORD = "tester@test.com", "password" @@ -82,3 +86,64 @@ async def test_login_successfully(client): assert not error assert data assert cfg.MSG_LOGGED_IN in data["message"] + + +@pytest.mark.parametrize( + "cookie_enabled,expected", [(True, web.HTTPOk), (False, web.HTTPUnauthorized)] +) +async def test_proxy_login(client, cookie_enabled, expected): + + restricted_url = client.app.router["get_my_profile"].url_for() + assert str(restricted_url) == "/v0/me" + + def build_proxy_session_cookie(identity: str): + # NOTE: Creates proxy session for authenticated uses in the api-server. + # Will be used as temporary solution until common authentication + # service is in place + # + import json + import base64 + import time + from cryptography import fernet + + # Based on aiohttp_session and aiohttp_security + + # HACK to get secret for testing purposes + cfg = client.app[APP_CONFIG_KEY]["session"] + secret_key_bytes = cfg["secret_key"].encode("utf-8") + + while len(secret_key_bytes) < 32: + secret_key_bytes += secret_key_bytes + secret_key = secret_key_bytes[:32] + + if isinstance(secret_key, str): + pass + elif isinstance(secret_key, (bytes, bytearray)): + secret_key = base64.urlsafe_b64encode(secret_key) + _fernet = fernet.Fernet(secret_key) + + # builds session cookie + cookie_name = "osparc.WEBAPI_SESSION" + cookie_data = json.dumps( + { + "created": int(time.time()), # now + "session": {"AIOHTTP_SECURITY": identity}, + "path": "/", + # extras? e.g. expiration + } + ).encode("utf-8") + encrypted_cookie_data = _fernet.encrypt(cookie_data).decode("utf-8") + + return {cookie_name: encrypted_cookie_data} + + # --- + async with NewUser() as user: + cookies = ( + build_proxy_session_cookie(identity=user["email"]) if cookie_enabled else {} + ) + + resp = await client.get(restricted_url, cookies=cookies) + data, error = await assert_status(resp, expected) + + if not error: + assert data["login"] == user["email"] diff --git a/tests/swarm-deploy/test_swarm_runs.py b/tests/swarm-deploy/test_swarm_runs.py index 9b5208117e7..0705d696f13 100644 --- a/tests/swarm-deploy/test_swarm_runs.py +++ b/tests/swarm-deploy/test_swarm_runs.py @@ -28,7 +28,7 @@ docker_compose_service_names = [ - "api-gateway", + "api-server", "catalog", "director", "sidecar", From 16c30b9fc72f7416ffe890cd4ccbe6b37efa13ef Mon Sep 17 00:00:00 2001 From: Sylvain <35365065+sanderegg@users.noreply.github.com> Date: Fri, 19 Jun 2020 08:06:31 +0200 Subject: [PATCH 04/43] Is/add notebook migration script (#1565) [enhancement] add way to import database from a folder [maintenance] script to upgrade projects that uses a notebook 2.13.0 to use a 2.13.1 notebook --- packages/postgres-database/Makefile | 36 ++++++++-- .../scripts/copy_database_volume.sh | 65 +++++++++++++++++-- .../migrate_notebook_2_13_0_to_2_13_1.sql | 15 +++++ 3 files changed, 107 insertions(+), 9 deletions(-) create mode 100644 packages/postgres-database/scripts/migrate_notebook_2_13_0_to_2_13_1.sql diff --git a/packages/postgres-database/Makefile b/packages/postgres-database/Makefile index 569261dddb4..8cafd06c062 100644 --- a/packages/postgres-database/Makefile +++ b/packages/postgres-database/Makefile @@ -22,21 +22,47 @@ tests: ## runs unit tests .PHONY: import-db -import-db: scripts/copy_database_volume.sh guard-SOURCE_HOST guard-SOURCE_DATA_VOLUME guard-TARGET_DATA_VOLUME ## copy volume $(SOURCE_DATA_VOLUME) from $(SOURCE_HOST) into local $(TARGET_DATA_VOLUME) - ./scripts/copy_database_volume.sh - +#guard-SOURCE_HOST guard-SOURCE_DATA_VOLUME guard-TARGET_DATA_VOLUME +import-db-from-docker-volume import-db-from-folder: scripts/copy_database_volume.sh ## copy postgresql data from remote $host from $host_volume or $host_folder to a local $local_volume docker volume + @:$(if $(findstring -from-folder,$@),\ + $(call check_defined, host host_folder local_volume, please define this variable when calling $@), \ + $(call check_defined, host host_volume local_volume, please define this variable when calling $@)) + ./scripts/copy_database_volume.sh \ + --host $(host) \ + $(if $(findstring -from-folder, $@),--folder $(host_folder),--volume $(host_volume)) \ + --target $(local_volume) + +# Check that given variables are set and all have non-empty values, +# die with an error otherwise. +# +# Params: +# 1. Variable name(s) to test. +# 2. (optional) Error message to print. guard-%: @ if [ "${${*}}" = "" ]; then \ echo "Environment variable $* not set"; \ exit 1; \ fi +# Check that given variables are set and all have non-empty values, +# die with an error otherwise. +# +# Params: +# 1. Variable name(s) to test. +# 2. (optional) Error message to print. +check_defined = \ + $(strip $(foreach 1,$1, \ + $(call __check_defined,$1,$(strip $(value 2))))) +__check_defined = \ + $(if $(value $1),, \ + $(error Undefined $1$(if $2, ($2)))) + .PHONY: setup-prod -export POSTGRES_DATA_VOLUME = $(TARGET_DATA_VOLUME) -setup-prod: install-dev up-prod ## sets up a database using an external postgres volume to test migration +setup-prod: guard-POSTGRES_DATA_VOLUME install-dev up-prod ## sets up a database using an external postgres volume defined as $POSTGRES_DATA_VOLUME to test migration # discovering sc-pg --help @echo "To test migration, sc-pg discover -u USER -p PASSWORD, then sc-pg upgrade" + # adminer: http://127.0.0.1:18080/?pgsql=postgres&ns=public .PHONY: setup-commit setup-commit: install-dev up-pg ## sets up a database to create a new commit into migration history diff --git a/packages/postgres-database/scripts/copy_database_volume.sh b/packages/postgres-database/scripts/copy_database_volume.sh index 9b3f58af810..227c1e46d4e 100755 --- a/packages/postgres-database/scripts/copy_database_volume.sh +++ b/packages/postgres-database/scripts/copy_database_volume.sh @@ -1,10 +1,67 @@ #!/bin/sh + +usage() +{ + echo "usage: copy_database_volume.sh [[[-h host ] [[-f folder] | [-v volume]] [-t target]] | [-h]]" +} + + +if [ $# -eq 0 ]; then + usage + exit 1 +fi + + +while [ "$1" != "" ]; do + case $1 in + -h | --host ) shift + host=$1 + ;; + -f | --folder ) shift + folder=$1 + ;; + -v | --volume ) shift + volume=$1 + ;; + -t | --target ) shift + target=$1 + ;; + -h | --help ) usage + exit + ;; + * ) usage + exit 1 + esac + shift +done + +if [ -z $host ] || [ -z $target ] || ([ -z $folder ] && [ -z $volume ]); then + usage + exit 1 +fi + +if [ ! -z $folder ] && [ ! -z $volume ]; then + echo "cannot use both --folder and --volume arguments" + usage + exit 1 +fi + set -o errexit -set -o nounset +# set -o nounset IFS=$(printf '\n\t') -ssh "${SOURCE_HOST}" \ - "docker run --rm -v ${SOURCE_DATA_VOLUME}:/from alpine ash -c 'cd /from ; tar -cf - . '" \ + +if [ ! -z $folder ]; then + #folder mode + ssh $host \ + "tar -cf - $folder " \ + | \ + docker run --rm -i -v "$target":/to alpine ash -c "cd /to ; tar -xpvf - " +else + #docker mode + ssh $host \ + "docker run --rm -v $volume:/from alpine ash -c 'cd /from ; tar -cf - . '" \ | \ - docker run --rm -i -v "${TARGET_DATA_VOLUME}":/to alpine ash -c "cd /to ; tar -xpvf - " \ No newline at end of file + docker run --rm -i -v "$target":/to alpine ash -c "cd /to ; tar -xpvf - " +fi diff --git a/packages/postgres-database/scripts/migrate_notebook_2_13_0_to_2_13_1.sql b/packages/postgres-database/scripts/migrate_notebook_2_13_0_to_2_13_1.sql new file mode 100644 index 00000000000..9e72703cb4b --- /dev/null +++ b/packages/postgres-database/scripts/migrate_notebook_2_13_0_to_2_13_1.sql @@ -0,0 +1,15 @@ +-- select the projects with the services to update (replace the regexp accordingly. NOTE: % is equivalent to .* in SQL) +-- SELECT workbench +-- FROM projects +-- WHERE workbench::text SIMILAR TO '%-notebook", "version": "2.13.0"%' +-- replace the regexp in here in order to +UPDATE projects +SET workbench = ( + regexp_replace( + workbench::text, + '-notebook", "version": "2.13.0"', + '-notebook", "version": "2.13.1"', + 'g' + )::json + ) +WHERE workbench::text SIMILAR TO '%-notebook", "version": "2.13.0"%' From b6a2568fd97c016fb97a209645c2924317e3494b Mon Sep 17 00:00:00 2001 From: Odei Maiz <33152403+odeimaiz@users.noreply.github.com> Date: Fri, 19 Jun 2020 13:12:14 +0200 Subject: [PATCH 05/43] Manage groups, Share studies (#1512) Backend: - adds groups endpoint to list, create, get, modify, delete groups through /groups endpoint - a user in a group has read/write/delete access rights (e.g. member,manager,administrator) - add/list/modify/delete users in groups through /groups/{gid}/users endpoint - allow sharing of projects using access_rights defining for each group id the specific read/write/delete rights - migrates postgres DB accordingly (migrates old access_rights syntax for projects, deprecates user_to_projects table, adds groups thumbnails, ) Frontend: - New page in Preferences for managing/displaying Organizations and its members - Testers can create Organizations - Organization Managers can invite (actually add) osparc existing members by providing their - emails - Organization Managers can remove members - Organization Managers can promote members to Manager - Organization SuperManagers can edit organization details - Study owners can share the same instance of a study with Organizations and/or Organization Members (Collaborators) - Study owners can make other collaborators Owner - Study owners can remove collaborators Bonus Backend: - adds a decorator for checking role permissions - docs of how to use sc-pg migration capabilities Frontend: - Can edit study details also from inside study - Allow dropping files with no extension - Show hand cursor over dragable NodeUI ports - Show move cursor over NodeUI capationbar - Fix multiFilePicker bug - Switch button for changing theme --- .../schemas/project-v0.0.1-converted.yaml | 20 + api/specs/common/schemas/project-v0.0.1.json | 31 +- .../webserver/components/schemas/group.yaml | 155 ++ .../webserver/components/schemas/me.yaml | 72 +- api/specs/webserver/openapi-groups.yaml | 208 ++ api/specs/webserver/openapi-projects.yaml | 18 +- api/specs/webserver/openapi.yaml | 34 +- mypy.ini | 41 + packages/postgres-database/Makefile | 3 +- packages/postgres-database/README.md | 22 +- .../1ca14c33e65c_add_groups_accessrights.py | 28 + ...94f201e484a_add_user_to_project_cascade.py | 97 + ...8_move_groups_accessrights_to_users_to_.py | 30 + .../bb305829cf83_add_groups_thumbnail.py | 28 + .../models/groups.py | 10 + .../models/user_to_projects.py | 19 +- .../storage_models.py | 6 +- .../webserver_models.py | 2 - .../tests/test_delete_projects_and_users.py | 18 - .../pytest_simcore/helpers/utils_projects.py | 8 +- .../src/servicelib/application.py | 2 +- .../api/v0/schemas/project-v0.0.1.json | 31 +- .../api/v0/openapi.yaml | 80 + .../api/v0/schemas/project-v0.0.1.json | 31 +- .../src/simcore_service_storage/dsm.py | 15 +- .../src/simcore_service_storage/models.py | 2 - services/storage/tests/data/projects.csv | 2 +- .../storage/tests/data/user_to_projects.csv | 2 - services/storage/tests/utils.py | 36 +- .../web/client/source/class/osparc/About.js | 4 +- .../client/source/class/osparc/auth/Data.js | 18 + .../source/class/osparc/auth/Manager.js | 2 + .../osparc/component/export/ExportDAG.js | 8 +- .../osparc/component/export/Permissions.js | 329 +++ .../osparc/component/export/SaveAsTemplate.js | 72 +- .../osparc/component/export/ShareWith.js | 150 +- .../component/filter/OrganizationMembers.js | 70 + .../osparc/component/filter/Organizations.js | 27 +- .../filter/OrganizationsAndMembers.js | 62 + .../component/form/ToggleButtonContainer.js | 4 +- .../osparc/component/form/tag/TagItem.js | 4 +- .../osparc/component/form/tag/TagManager.js | 2 +- .../component/metadata/StudyDetailsEditor.js | 171 +- .../component/metadata/StudyDetailsWindow.js | 58 - .../osparc/component/metadata/StudyInfo.js | 31 +- .../component/service/manager/ActivityTree.js | 2 +- .../component/widget/InputsMapperTreeItem.js | 4 - .../component/widget/OrganizationListItem.js | 96 - .../widget/inputs/NodeOutputTreeItem.js | 4 - .../osparc/component/workbench/NodeUI.js | 8 +- .../osparc/component/workbench/WorkbenchUI.js | 16 +- .../osparc/dashboard/CollaboratorListItem.js | 134 + .../osparc/dashboard/OrgMemberListItem.js | 125 + .../osparc/dashboard/OrganizationEditor.js | 173 ++ .../osparc/dashboard/OrganizationListItem.js | 100 + .../class/osparc/dashboard/ServiceBrowser.js | 2 +- .../dashboard/ServiceBrowserListItem.js | 52 +- .../class/osparc/dashboard/StudyBrowser.js | 175 +- .../dashboard/StudyBrowserButtonBase.js | 12 +- .../dashboard/StudyBrowserButtonItem.js | 72 +- .../osparc/dashboard/StudyBrowserButtonNew.js | 2 +- .../source/class/osparc/data/Permissions.js | 15 +- .../source/class/osparc/data/Resources.js | 95 +- .../source/class/osparc/data/model/Study.js | 2 +- .../class/osparc/desktop/NavigationBar.js | 7 +- .../class/osparc/desktop/StudyEditor.js | 2 +- .../desktop/preferences/PreferencesWindow.js | 13 +- .../desktop/preferences/pages/BasePage.js | 12 +- .../preferences/pages/OrganizationsPage.js | 410 +++ .../desktop/preferences/pages/ProfilePage.js | 39 +- .../desktop/preferences/pages/SecurityPage.js | 8 +- .../client/source/class/osparc/store/Store.js | 93 +- .../source/class/osparc/ui/basic/Tag.js | 2 +- .../source/class/osparc/ui/hint/Hint.js | 2 +- .../class/osparc/ui/markdown/Markdown.js | 2 +- .../source/class/osparc/ui/switch/Switch.js | 51 + .../class/osparc/ui/switch/ThemeSwitcher.js | 41 + .../client/source/class/osparc/utils/Utils.js | 10 +- .../client/source/resource/common/common.css | 4 + .../client/source/resource/form/service.json | 2 +- .../api/v0/openapi.yaml | 2322 +++++++++++++++-- .../api/v0/schemas/project-v0.0.1.json | 31 +- .../simcore_service_webserver/application.py | 5 +- .../application_config.py | 1 + .../computation_comp_tasks_listening_task.py | 72 +- .../computation_handlers.py | 2 +- .../computation_subscribe.py | 8 +- .../data/fake-template-projects.isan.json | 6 +- .../src/simcore_service_webserver/groups.py | 42 + .../simcore_service_webserver/groups_api.py | 310 +++ .../groups_exceptions.py | 32 + .../groups_handlers.py | 190 ++ .../simcore_service_webserver/groups_utils.py | 54 + .../projects/projects_api.py | 14 +- .../projects/projects_db.py | 302 ++- .../projects/projects_handlers.py | 76 +- .../projects/projects_models.py | 2 - .../publication_handlers.py | 2 +- .../security_decorators.py | 28 + .../security_roles.py | 35 +- .../simcore_service_webserver/users_api.py | 187 +- .../users_exceptions.py | 29 + .../users_handlers.py | 209 +- .../simcore_service_webserver/users_utils.py | 22 + .../web/server/tests/integration/conftest.py | 65 +- .../integration/test_project_workflow.py | 18 +- .../server/tests/unit/test_projects_models.py | 4 +- .../tests/unit/with_dbs/config-devel.yml | 6 +- .../server/tests/unit/with_dbs/conftest.py | 54 +- .../unit/with_dbs/docker-compose-devel.yml | 6 +- .../tests/unit/with_dbs/docker-compose.yml | 8 +- .../unit/with_dbs/test_access_to_studies.py | 2 +- .../server/tests/unit/with_dbs/test_groups.py | 569 ++++ .../tests/unit/with_dbs/test_projects.py | 564 ++-- .../server/tests/unit/with_dbs/test_users.py | 12 +- tests/e2e/tutorials/sleepers.js | 10 +- .../sleepers_project_template_sql.csv | 4 +- 117 files changed, 7623 insertions(+), 1530 deletions(-) create mode 100644 api/specs/webserver/components/schemas/group.yaml create mode 100644 api/specs/webserver/openapi-groups.yaml create mode 100644 mypy.ini create mode 100644 packages/postgres-database/src/simcore_postgres_database/migration/versions/1ca14c33e65c_add_groups_accessrights.py create mode 100644 packages/postgres-database/src/simcore_postgres_database/migration/versions/694f201e484a_add_user_to_project_cascade.py create mode 100644 packages/postgres-database/src/simcore_postgres_database/migration/versions/72f8be1c4838_move_groups_accessrights_to_users_to_.py create mode 100644 packages/postgres-database/src/simcore_postgres_database/migration/versions/bb305829cf83_add_groups_thumbnail.py delete mode 100644 services/storage/tests/data/user_to_projects.csv create mode 100644 services/web/client/source/class/osparc/component/export/Permissions.js create mode 100644 services/web/client/source/class/osparc/component/filter/OrganizationMembers.js create mode 100644 services/web/client/source/class/osparc/component/filter/OrganizationsAndMembers.js delete mode 100644 services/web/client/source/class/osparc/component/metadata/StudyDetailsWindow.js delete mode 100644 services/web/client/source/class/osparc/component/widget/OrganizationListItem.js create mode 100644 services/web/client/source/class/osparc/dashboard/CollaboratorListItem.js create mode 100644 services/web/client/source/class/osparc/dashboard/OrgMemberListItem.js create mode 100644 services/web/client/source/class/osparc/dashboard/OrganizationEditor.js create mode 100644 services/web/client/source/class/osparc/dashboard/OrganizationListItem.js create mode 100644 services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js create mode 100644 services/web/client/source/class/osparc/ui/switch/Switch.js create mode 100644 services/web/client/source/class/osparc/ui/switch/ThemeSwitcher.js create mode 100644 services/web/server/src/simcore_service_webserver/groups.py create mode 100644 services/web/server/src/simcore_service_webserver/groups_api.py create mode 100644 services/web/server/src/simcore_service_webserver/groups_exceptions.py create mode 100644 services/web/server/src/simcore_service_webserver/groups_handlers.py create mode 100644 services/web/server/src/simcore_service_webserver/groups_utils.py create mode 100644 services/web/server/src/simcore_service_webserver/security_decorators.py create mode 100644 services/web/server/src/simcore_service_webserver/users_exceptions.py create mode 100644 services/web/server/src/simcore_service_webserver/users_utils.py create mode 100644 services/web/server/tests/unit/with_dbs/test_groups.py diff --git a/api/specs/common/schemas/project-v0.0.1-converted.yaml b/api/specs/common/schemas/project-v0.0.1-converted.yaml index 28604243918..47b8c6bf938 100644 --- a/api/specs/common/schemas/project-v0.0.1-converted.yaml +++ b/api/specs/common/schemas/project-v0.0.1-converted.yaml @@ -34,6 +34,26 @@ properties: description: >- object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date diff --git a/api/specs/common/schemas/project-v0.0.1.json b/api/specs/common/schemas/project-v0.0.1.json index d40e6ceb1a4..4ecd40e4248 100644 --- a/api/specs/common/schemas/project-v0.0.1.json +++ b/api/specs/common/schemas/project-v0.0.1.json @@ -46,7 +46,34 @@ }, "accessRights": { "type": "object", - "description": "object containing the GroupID as key and read/write/execution permissions as value" + "description": "object containing the GroupID as key and read/write/execution permissions as value", + "additionalProperties": false, + "patternProperties": { + "^\\d+$": { + "type": "object", + "description": "the group id", + "additionalProperties": false, + "required": [ + "read", + "write", + "delete" + ], + "properties": { + "read": { + "type": "boolean", + "description": "gives read access" + }, + "write": { + "type": "boolean", + "description": "gives write access" + }, + "delete": { + "type": "boolean", + "description": "gives deletion rights" + } + } + } + } }, "creationDate": { "type": "string", @@ -307,4 +334,4 @@ } } } -} \ No newline at end of file +} diff --git a/api/specs/webserver/components/schemas/group.yaml b/api/specs/webserver/components/schemas/group.yaml new file mode 100644 index 00000000000..ebb7bfde29e --- /dev/null +++ b/api/specs/webserver/components/schemas/group.yaml @@ -0,0 +1,155 @@ +GroupAccessRights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + # Member + - read: true + write: false + delete: false + # Manager + - read: true + write: true + delete: false + # Administrator + - read: true + write: true + delete: true + +UsersGroup: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + $ref: "#/GroupAccessRights" + required: + - gid + - label + - description + - access_rights + example: + - gid: "27" + label: "A user" + description: "A very special user" + thumbnail: https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png + - gid: "1" + label: "ITIS Foundation" + description: "The Foundation for Research on Information Technologies in Society" + thumbnail: https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png + - gid: "0" + label: "All" + description: "Open to all users" + thumbnail: https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png + +UsersGroupEnveloped: + type: object + required: + - data + properties: + data: + $ref: "#/UsersGroup" + error: + nullable: true + default: null + +AllUsersGroups: + type: object + properties: + me: + $ref: "#/UsersGroup" + organizations: + type: array + items: + $ref: "#/UsersGroup" + all: + $ref: "#/UsersGroup" + +AllUsersGroupsEnveloped: + type: object + required: + - data + properties: + data: + $ref: "#/AllUsersGroups" + error: + nullable: true + default: null + +GroupUser: + type: object + allOf: + - type: object + properties: + first_name: + type: string + description: the user first name + last_name: + type: string + description: the user last name + login: + type: string + format: email + description: the user login email + gravatar_id: + type: string + description: the user gravatar id hash + id: + type: string + description: the user id + gid: + type: string + description: the user primary gid + example: + first_name: Mr + last_name: Smith + login: mr.smith@matrix.com + gravatar_id: a1af5c6ecc38e81f29695f01d6ceb540 + id: "1" + gid: "3" + - $ref: "#/GroupAccessRights" + +GroupUsersArrayEnveloped: + type: object + required: + - data + properties: + data: + type: array + items: + $ref: "#/GroupUser" + error: + nullable: true + default: null + +GroupUserEnveloped: + type: object + required: + - data + properties: + data: + $ref: "#/GroupUser" + error: + nullable: true + default: null diff --git a/api/specs/webserver/components/schemas/me.yaml b/api/specs/webserver/components/schemas/me.yaml index d25e2c22ccc..00a85ab916f 100644 --- a/api/specs/webserver/components/schemas/me.yaml +++ b/api/specs/webserver/components/schemas/me.yaml @@ -6,44 +6,32 @@ ProfileCommon: last_name: type: string example: - login: pcrespov@foo.com first_name: Pedro last_name: Crespo ProfileInput: allOf: - - $ref: '#/ProfileCommon' + - $ref: "#/ProfileCommon" example: first_name: Pedro last_name: Crespo ProfileOutput: allOf: - - $ref: '#/ProfileCommon' - - type: object - properties: - login: - type: string - format: email - role: - type: string - groups: - type: object - properties: - me: - $ref: '#/UsersGroup' - organizations: - type: array - items: - $ref: '#/UsersGroup' - all: - $ref: '#/UsersGroup' - gravatar_id: - type: string + - $ref: "#/ProfileCommon" + - type: object + properties: + login: + type: string + format: email + role: + type: string + groups: + $ref: "./group.yaml#/AllUsersGroups" + gravatar_id: + type: string example: login: pcrespov@foo.com - first_name: Pedro - last_name: Crespo role: Admin gravatar_id: 205e460b479e2e5b48aec07710c08d50 @@ -53,32 +41,11 @@ ProfileEnveloped: - data properties: data: - $ref: '#/ProfileOutput' + $ref: "#/ProfileOutput" error: nullable: true default: null - -UsersGroup: - type: object - properties: - gid: - type: string - label: - type: string - description: - type: string - example: - - gid: '27' - label: 'A user' - description: 'A very special user' - - gid: '1' - label: 'ITIS Foundation' - description: 'The Foundation for Research on Information Technologies in Society' - - gid: '0' - label: 'All' - description: 'Open to all users' - Token: description: api keys for third party services type: object @@ -97,28 +64,25 @@ Token: - service - token_key example: - service: 'github-api-v1' + service: "github-api-v1" token_key: N1BP5ZSpB - TokenId: description: toke identifier type: string # format: uuid - TokenEnveloped: type: object required: - data properties: data: - $ref: '#/Token' + $ref: "#/Token" error: nullable: true default: null - TokensArrayEnveloped: type: object required: @@ -127,7 +91,7 @@ TokensArrayEnveloped: data: type: array items: - $ref: '#/Token' + $ref: "#/Token" error: nullable: true default: null @@ -138,7 +102,7 @@ TokenIdEnveloped: - data properties: data: - $ref: '#/TokenId' + $ref: "#/TokenId" error: nullable: true default: null diff --git a/api/specs/webserver/openapi-groups.yaml b/api/specs/webserver/openapi-groups.yaml new file mode 100644 index 00000000000..5de07b012bf --- /dev/null +++ b/api/specs/webserver/openapi-groups.yaml @@ -0,0 +1,208 @@ +paths: + /groups: + get: + summary: List my groups + operationId: list_groups + tags: + - group + responses: + "200": + description: list of the groups I belonged to + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/AllUsersGroupsEnveloped" + default: + $ref: "#/components/responses/DefaultErrorResponse" + post: + summary: Create a new group + operationId: create_group + tags: + - group + requestBody: + required: true + description: the group to create + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/UsersGroup" + responses: + "201": + description: group created + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/UsersGroupEnveloped" + + default: + $ref: "#/components/responses/DefaultErrorResponse" + + /groups/{gid}: + parameters: + - name: gid + in: path + required: true + schema: + type: string + get: + tags: + - group + summary: Gets one group details + operationId: get_group + responses: + "200": + description: got group + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/UsersGroupEnveloped" + default: + $ref: "#/components/responses/DefaultErrorResponse" + patch: + summary: Update one group + operationId: update_group + tags: + - group + requestBody: + required: true + description: the group to update + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/UsersGroup" + responses: + "200": + description: the modified group + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/UsersGroupEnveloped" + default: + $ref: "#/components/responses/DefaultErrorResponse" + delete: + tags: + - group + summary: Deletes one group + operationId: delete_group + responses: + "204": + description: group has been successfully deleted + default: + $ref: "#/components/responses/DefaultErrorResponse" + + /groups/{gid}/users: + parameters: + - name: gid + in: path + required: true + schema: + type: string + get: + tags: + - group + summary: Gets list of users in group + operationId: get_group_users + responses: + "200": + description: got list of users and their respective rights + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/GroupUsersArrayEnveloped" + default: + $ref: "#/components/responses/DefaultErrorResponse" + post: + tags: + - group + summary: Adds a user in the group + operationId: add_group_user + requestBody: + required: true + description: the user to add + content: + application/json: + schema: + anyOf: + - type: object + required: + - uid + properties: + uid: + type: string + description: the user id + - type: object + required: + - email + properties: + email: + type: string + format: email + description: the user email + responses: + "204": + description: user successfully added + default: + $ref: "#/components/responses/DefaultErrorResponse" + + /groups/{gid}/users/{uid}: + parameters: + - name: gid + in: path + required: true + schema: + type: string + - name: uid + in: path + required: true + schema: + type: string + get: + tags: + - group + summary: Gets specific user in group + operationId: get_group_user + responses: + "200": + description: got user + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/GroupUserEnveloped" + default: + $ref: "#/components/responses/DefaultErrorResponse" + patch: + tags: + - group + summary: Modify specific user in group + operationId: update_group_user + requestBody: + required: true + description: the user rights to modify + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/GroupAccessRights" + responses: + "200": + description: modified user + content: + application/json: + schema: + $ref: "./components/schemas/group.yaml#/GroupUserEnveloped" + default: + $ref: "#/components/responses/DefaultErrorResponse" + delete: + tags: + - group + summary: Delete specific user in group + operationId: delete_group_user + responses: + "204": + description: successfully removed user + default: + $ref: "#/components/responses/DefaultErrorResponse" + +components: + responses: + DefaultErrorResponse: + $ref: "./openapi.yaml#/components/responses/DefaultErrorResponse" diff --git a/api/specs/webserver/openapi-projects.yaml b/api/specs/webserver/openapi-projects.yaml index ad85241d1c8..197fdbb1438 100644 --- a/api/specs/webserver/openapi-projects.yaml +++ b/api/specs/webserver/openapi-projects.yaml @@ -78,7 +78,7 @@ paths: summary: Gets active project operationId: get_active_project responses: - '200': + "200": description: returns active project content: application/json: @@ -236,14 +236,14 @@ paths: service_version: "1.4.0" responses: - '201': + "201": description: created content: application/json: schema: - $ref: './openapi-projects.yaml#/components/schemas/NodeEnveloped' + $ref: "./openapi-projects.yaml#/components/schemas/NodeEnveloped" default: - $ref: './openapi.yaml#/components/responses/DefaultErrorResponse' + $ref: "./openapi.yaml#/components/responses/DefaultErrorResponse" /projects/{project_id}/nodes/{node_id}: parameters: @@ -283,7 +283,7 @@ paths: "204": description: node has been successfully deleted from project default: - $ref: './openapi.yaml#/components/responses/DefaultErrorResponse' + $ref: "./openapi.yaml#/components/responses/DefaultErrorResponse" /projects/{study_uuid}/tags/{tag_id}: parameters: @@ -303,7 +303,7 @@ paths: summary: Links an existing label with an existing study operationId: add_tag responses: - '200': + "200": description: The tag has been successfully linked to the study content: application/json: @@ -317,7 +317,7 @@ paths: summary: Removes an existing link between a label and a study operationId: remove_tag responses: - '200': + "200": description: The tag has been successfully removed from the study content: application/json: @@ -348,7 +348,7 @@ components: - data properties: data: - $ref: './openapi-projects.yaml#/components/schemas/Node' + $ref: "./openapi-projects.yaml#/components/schemas/Node" error: nullable: true default: null @@ -363,7 +363,7 @@ components: $ref: "../common/schemas/project.yaml#/components/schemas/ProjectArrayEnveloped" RunningServiceEnveloped: - $ref: '../common/schemas/running_service.yaml#/components/schemas/RunningServiceEnveloped' + $ref: "../common/schemas/running_service.yaml#/components/schemas/RunningServiceEnveloped" responses: DefaultErrorResponse: diff --git a/api/specs/webserver/openapi.yaml b/api/specs/webserver/openapi.yaml index ef5c6c20782..34d54bd2e85 100644 --- a/api/specs/webserver/openapi.yaml +++ b/api/specs/webserver/openapi.yaml @@ -48,7 +48,6 @@ tags: oSPARC users can make publications. Starting from submission of new service candidates, but this could end up accepting other types of publications. - paths: # DIAGNOSTICS --------------------------------------------------------- /: @@ -102,6 +101,20 @@ paths: /me/tokens/{service}: $ref: "./openapi-user.yaml#/paths/~1me~1tokens~1{service}" + # GROUP SETTINGS ------------------------------------------------------------------ + + /groups: + $ref: "./openapi-groups.yaml#/paths/~1groups" + + /groups/{gid}: + $ref: "./openapi-groups.yaml#/paths/~1groups~1{gid}" + + /groups/{gid}/users: + $ref: "./openapi-groups.yaml#/paths/~1groups~1{gid}~1users" + + /groups/{gid}/users/{uid}: + $ref: "./openapi-groups.yaml#/paths/~1groups~1{gid}~1users~1{uid}" + # DATA STORAGE SERVICES ---------------------------------------------------------- /storage/locations: @@ -150,10 +163,10 @@ paths: $ref: "./openapi-projects.yaml#/paths/~1projects~1{project_id}~1close" /projects/{project_id}/nodes: - $ref: './openapi-projects.yaml#/paths/~1projects~1{project_id}~1nodes' + $ref: "./openapi-projects.yaml#/paths/~1projects~1{project_id}~1nodes" /projects/{project_id}/nodes/{node_id}: - $ref: './openapi-projects.yaml#/paths/~1projects~1{project_id}~1nodes~1{node_id}' + $ref: "./openapi-projects.yaml#/paths/~1projects~1{project_id}~1nodes~1{node_id}" /nodes/{nodeInstanceUUID}/outputUi/{outputKey}: $ref: "./openapi-node-v0.0.1.yaml#/paths/~1nodes~1{nodeInstanceUUID}~1outputUi~1{outputKey}" @@ -165,7 +178,7 @@ paths: $ref: "./openapi-node-v0.0.1.yaml#/paths/~1nodes~1{nodeInstanceUUID}~1iframe" /projects/{study_uuid}/tags/{tag_id}: - $ref: './openapi-projects.yaml#/paths/~1projects~1{study_uuid}~1tags~1{tag_id}' + $ref: "./openapi-projects.yaml#/paths/~1projects~1{study_uuid}~1tags~1{tag_id}" # ACTIVITY ------------------------------------------------------------------------- /activity/status: @@ -173,21 +186,20 @@ paths: # TAGS ------------------------------------------------------------------------- /tags: - $ref: './openapi-tags.yaml#/paths/~1tags' - + $ref: "./openapi-tags.yaml#/paths/~1tags" + /tags/{tag_id}: - $ref: './openapi-tags.yaml#/paths/~1tags~1{tag_id}' + $ref: "./openapi-tags.yaml#/paths/~1tags~1{tag_id}" # PUBLICATIONS ------------------------------------------------------------------------- /publications/service-submission: - $ref: './openapi-publications.yaml#/paths/~1publications~1service-submission' + $ref: "./openapi-publications.yaml#/paths/~1publications~1service-submission" # CATALOG ------------------------------------------------------------------------- /catalog/dags: - $ref: './openapi-catalog.yaml#/paths/~1catalog~1dags' + $ref: "./openapi-catalog.yaml#/paths/~1catalog~1dags" /catalog/dags/{dag_id}: - $ref: './openapi-catalog.yaml#/paths/~1catalog~1dags~1{dag_id}' - + $ref: "./openapi-catalog.yaml#/paths/~1catalog~1dags~1{dag_id}" components: responses: diff --git a/mypy.ini b/mypy.ini new file mode 100644 index 00000000000..bd8c2057cf8 --- /dev/null +++ b/mypy.ini @@ -0,0 +1,41 @@ +# Global options: +[mypy] +python_version = 3.6 +warn_return_any = True +warn_unused_configs = True + +# Per-module options: +[mypy-aio-pika.*] +ignore_missing_imports = True +[mypy-aiohttp.*] +ignore_missing_imports = True +[mypy-aiohttp_jinja2.*] +ignore_missing_imports = True +[mypy-aiohttp_security.*] +ignore_missing_imports = True +[mypy-aiopg.*] +ignore_missing_imports = True +[mypy-aiosmtplib.*] +ignore_missing_imports = True +[mypy-asyncpg.*] +ignore_missing_imports = True +[mypy-celery.*] +ignore_missing_imports = True +[mypy-change_case.*] +ignore_missing_imports = True +[mypy-json2html.*] +ignore_missing_imports = True +[mypy-jsondiff.*] +ignore_missing_imports = True +[mypy-passlib.*] +ignore_missing_imports = True +[mypy-prometheus_client.*] +ignore_missing_imports = True +[mypy-psycopg2.*] +ignore_missing_imports = True +[mypy-sqlalchemy.*] +ignore_missing_imports = True +[mypy-tenacity.*] +ignore_missing_imports = True +[mypy-trafaret.*] +ignore_missing_imports = True diff --git a/packages/postgres-database/Makefile b/packages/postgres-database/Makefile index 8cafd06c062..630ede5bf07 100644 --- a/packages/postgres-database/Makefile +++ b/packages/postgres-database/Makefile @@ -74,6 +74,7 @@ setup-commit: install-dev up-pg ## sets up a database to create a new commit int # some info sc-pg info @echo "To add new commit, sc-pg review -m \"Some message\" " + # adminer: http://127.0.0.1:18080/?pgsql=postgres&username=test&db=test&ns=public .PHONY: migrate @@ -96,5 +97,3 @@ up-pg up-prod: $(docker-compose-configs) ## starts pg server down-pg down-prod: $(docker-compose-configs) ## stops pg server docker-compose -f tests/docker-compose.yml $(if $(findstring -prod,$@),-f tests/docker-compose.prod.yml,) down - - diff --git a/packages/postgres-database/README.md b/packages/postgres-database/README.md index 08425d2a363..78164b328b5 100644 --- a/packages/postgres-database/README.md +++ b/packages/postgres-database/README.md @@ -50,10 +50,30 @@ Once finalized, the migration script also needs to be added to version control. ### Upgrade Upgrades to given revision (get ``info`` to check history) + ```bash simcore-postgres-database upgrade head ``` - [alembic]:https://alembic.sqlalchemy.org/en/latest/ [flask-migrate]:https://flask-migrate.readthedocs.io/en/latest/ + + +### Development + +1. In order to create/modify/delete tables one can use sc-pg to start a clean database: + + ```console + make setup-commit # this will start a clean database and it is visible under http://127.0.0.1:18080/?pgsql=postgres&username=test&db=test&ns=public + ``` + +2. Modify the models in [src/simcore_postgres_database/models](src/simcore_postgres_database/models) according to the new needs +3. Create a migration script: + + ```console + sc-pg review -m "some meaningful message" # this will generate an alembic migration script in [scripts](./scripts) + sc-pg upgrade # this will apply the generated migration script on the database + sc-pg downgrade # this will downgrade the database again to the previous state + ``` + + NOTE: when changing the scripts, one needs to delete the current script or the database state will be undefined. diff --git a/packages/postgres-database/src/simcore_postgres_database/migration/versions/1ca14c33e65c_add_groups_accessrights.py b/packages/postgres-database/src/simcore_postgres_database/migration/versions/1ca14c33e65c_add_groups_accessrights.py new file mode 100644 index 00000000000..1bc7827cf6e --- /dev/null +++ b/packages/postgres-database/src/simcore_postgres_database/migration/versions/1ca14c33e65c_add_groups_accessrights.py @@ -0,0 +1,28 @@ +"""add groups accessRights + +Revision ID: 1ca14c33e65c +Revises: 53e095260441 +Create Date: 2020-05-29 13:28:10.425714+00:00 + +""" +from alembic import op +import sqlalchemy as sa +from sqlalchemy.dialects import postgresql + +# revision identifiers, used by Alembic. +revision = '1ca14c33e65c' +down_revision = '53e095260441' +branch_labels = None +depends_on = None + + +def upgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.add_column('groups', sa.Column('access_rights', postgresql.JSONB(astext_type=sa.Text()), server_default=sa.text("'{}'::jsonb"), nullable=False)) + # ### end Alembic commands ### + + +def downgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.drop_column('groups', 'access_rights') + # ### end Alembic commands ### diff --git a/packages/postgres-database/src/simcore_postgres_database/migration/versions/694f201e484a_add_user_to_project_cascade.py b/packages/postgres-database/src/simcore_postgres_database/migration/versions/694f201e484a_add_user_to_project_cascade.py new file mode 100644 index 00000000000..0c191918196 --- /dev/null +++ b/packages/postgres-database/src/simcore_postgres_database/migration/versions/694f201e484a_add_user_to_project_cascade.py @@ -0,0 +1,97 @@ +"""add user_to_project cascade + +Revision ID: 694f201e484a +Revises: 72f8be1c4838 +Create Date: 2020-06-05 14:18:55.443267+00:00 + +""" +from alembic import op +import sqlalchemy as sa + + +# revision identifiers, used by Alembic. +revision = "694f201e484a" +down_revision = "72f8be1c4838" +branch_labels = None +depends_on = None + + +def upgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.drop_constraint( + "user_to_projects_user_id_fkey", "user_to_projects", type_="foreignkey" + ) + op.drop_constraint( + "user_to_projects_project_id_fkey", "user_to_projects", type_="foreignkey" + ) + op.create_foreign_key( + "fk_user_to_projects_id_projects", + "user_to_projects", + "projects", + ["project_id"], + ["id"], + onupdate="CASCADE", + ondelete="CASCADE", + ) + op.create_foreign_key( + "fk_user_to_projects_id_users", + "user_to_projects", + "users", + ["user_id"], + ["id"], + onupdate="CASCADE", + ondelete="CASCADE", + ) + + # change contents in projects access_rights + # NOTE: this does not need to be reversed as it was not used before + op.execute( + sa.DDL( + "UPDATE projects SET access_rights = (regexp_replace(access_rights::text, '\"rwx\"', '{\"read\":true, \"write\":false, \"delete\":false}')::jsonb) WHERE access_rights != '{}'" + ) + ) + # add prj_owner into access rights column + # NOTE: this dows not need to be reversed + op.execute( + sa.DDL( + """ +WITH user_project as ( + SELECT projects.id AS pid, projects.access_rights AS current_rights, '{"' || users.primary_gid || '"}' AS json_key + FROM projects + INNER JOIN users + ON (projects.prj_owner = users.id) +) + +UPDATE projects + SET access_rights = jsonb_insert(current_rights::jsonb,json_key::text[], '{"read":true, "write":true, "delete":true}'::jsonb, true) + FROM user_project + WHERE projects.id = pid + """ + ) + ) + # ### end Alembic commands ### + + +def downgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.drop_constraint( + "fk_user_to_projects_id_users", "user_to_projects", type_="foreignkey" + ) + op.drop_constraint( + "fk_user_to_projects_id_projects", "user_to_projects", type_="foreignkey" + ) + op.create_foreign_key( + "user_to_projects_project_id_fkey", + "user_to_projects", + "projects", + ["project_id"], + ["id"], + ) + op.create_foreign_key( + "user_to_projects_user_id_fkey", + "user_to_projects", + "users", + ["user_id"], + ["id"], + ) + # ### end Alembic commands ### diff --git a/packages/postgres-database/src/simcore_postgres_database/migration/versions/72f8be1c4838_move_groups_accessrights_to_users_to_.py b/packages/postgres-database/src/simcore_postgres_database/migration/versions/72f8be1c4838_move_groups_accessrights_to_users_to_.py new file mode 100644 index 00000000000..7597be8538d --- /dev/null +++ b/packages/postgres-database/src/simcore_postgres_database/migration/versions/72f8be1c4838_move_groups_accessrights_to_users_to_.py @@ -0,0 +1,30 @@ +"""move groups accessrights to users_to_group + +Revision ID: 72f8be1c4838 +Revises: bb305829cf83 +Create Date: 2020-06-02 13:01:35.073902+00:00 + +""" +from alembic import op +import sqlalchemy as sa +from sqlalchemy.dialects import postgresql + +# revision identifiers, used by Alembic. +revision = '72f8be1c4838' +down_revision = 'bb305829cf83' +branch_labels = None +depends_on = None + + +def upgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.drop_column('groups', 'access_rights') + op.add_column('user_to_groups', sa.Column('access_rights', postgresql.JSONB(astext_type=sa.Text()), server_default=sa.text('\'{"read": true, "write": false, "delete": false}\'::jsonb'), nullable=False)) + # ### end Alembic commands ### + + +def downgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.drop_column('user_to_groups', 'access_rights') + op.add_column('groups', sa.Column('access_rights', postgresql.JSONB(astext_type=sa.Text()), server_default=sa.text("'{}'::jsonb"), autoincrement=False, nullable=False)) + # ### end Alembic commands ### diff --git a/packages/postgres-database/src/simcore_postgres_database/migration/versions/bb305829cf83_add_groups_thumbnail.py b/packages/postgres-database/src/simcore_postgres_database/migration/versions/bb305829cf83_add_groups_thumbnail.py new file mode 100644 index 00000000000..ebd81cf09d8 --- /dev/null +++ b/packages/postgres-database/src/simcore_postgres_database/migration/versions/bb305829cf83_add_groups_thumbnail.py @@ -0,0 +1,28 @@ +"""add groups thumbnail + +Revision ID: bb305829cf83 +Revises: 1ca14c33e65c +Create Date: 2020-06-02 12:06:21.302890+00:00 + +""" +from alembic import op +import sqlalchemy as sa + + +# revision identifiers, used by Alembic. +revision = 'bb305829cf83' +down_revision = '1ca14c33e65c' +branch_labels = None +depends_on = None + + +def upgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.add_column('groups', sa.Column('thumbnail', sa.String(), nullable=True)) + # ### end Alembic commands ### + + +def downgrade(): + # ### commands auto generated by Alembic - please adjust! ### + op.drop_column('groups', 'thumbnail') + # ### end Alembic commands ### diff --git a/packages/postgres-database/src/simcore_postgres_database/models/groups.py b/packages/postgres-database/src/simcore_postgres_database/models/groups.py index 4051a0a25bb..8ddb68a3a2e 100644 --- a/packages/postgres-database/src/simcore_postgres_database/models/groups.py +++ b/packages/postgres-database/src/simcore_postgres_database/models/groups.py @@ -7,6 +7,7 @@ import enum import sqlalchemy as sa +from sqlalchemy.dialects.postgresql import JSONB from sqlalchemy.sql import func from .base import metadata @@ -32,6 +33,7 @@ class GroupType(enum.Enum): sa.Column("name", sa.String, nullable=False), sa.Column("description", sa.String, nullable=False), sa.Column("type", sa.Enum(GroupType), nullable=False, server_default="STANDARD"), + sa.Column("thumbnail", sa.String, nullable=True), sa.Column("created", sa.DateTime(), nullable=False, server_default=func.now()), sa.Column( "modified", @@ -66,6 +68,14 @@ class GroupType(enum.Enum): ondelete="CASCADE", ), ), + sa.Column( + "access_rights", + JSONB, + nullable=False, + server_default=sa.text( + "'{\"read\": true, \"write\": false, \"delete\": false}'::jsonb" + ), + ), sa.Column("created", sa.DateTime(), nullable=False, server_default=func.now()), sa.Column( "modified", diff --git a/packages/postgres-database/src/simcore_postgres_database/models/user_to_projects.py b/packages/postgres-database/src/simcore_postgres_database/models/user_to_projects.py index 38f7dbf2b1c..5015d5daea6 100644 --- a/packages/postgres-database/src/simcore_postgres_database/models/user_to_projects.py +++ b/packages/postgres-database/src/simcore_postgres_database/models/user_to_projects.py @@ -4,6 +4,8 @@ from .projects import projects from .users import users + +# DEPRECATED!!!!!!!!!!!!!! DO NOT USE!!!!!!! user_to_projects = sa.Table( "user_to_projects", metadata, @@ -11,11 +13,24 @@ sa.Column( "user_id", sa.BigInteger, - sa.ForeignKey(users.c.id), # TODO: , ondelete="CASCADE"), + sa.ForeignKey( + users.c.id, + name="fk_user_to_projects_id_users", + ondelete="CASCADE", + onupdate="CASCADE", + ), nullable=False, ), sa.Column( - "project_id", sa.BigInteger, sa.ForeignKey(projects.c.id), nullable=False, + "project_id", + sa.BigInteger, + sa.ForeignKey( + projects.c.id, + name="fk_user_to_projects_id_projects", + ondelete="CASCADE", + onupdate="CASCADE", + ), + nullable=False, ), # TODO: do not ondelete=cascase for project_id or it will delete SHARED PROJECT # add instead sa.UniqueConstraint('user_id', 'project_id', name='user_project_uniqueness'), diff --git a/packages/postgres-database/src/simcore_postgres_database/storage_models.py b/packages/postgres-database/src/simcore_postgres_database/storage_models.py index 2e6a911ba05..81984f2d5c5 100644 --- a/packages/postgres-database/src/simcore_postgres_database/storage_models.py +++ b/packages/postgres-database/src/simcore_postgres_database/storage_models.py @@ -5,18 +5,16 @@ """ from .models.base import metadata from .models.file_meta_data import file_meta_data +from .models.groups import groups, user_to_groups from .models.projects import projects from .models.tokens import tokens -from .models.user_to_projects import user_to_projects -from .models.user_to_projects import users -from .models.groups import groups, user_to_groups +from .models.users import users __all__ = [ "tokens", "file_meta_data", "metadata", "projects", - "user_to_projects", "users", "groups", "user_to_groups", diff --git a/packages/postgres-database/src/simcore_postgres_database/webserver_models.py b/packages/postgres-database/src/simcore_postgres_database/webserver_models.py index b46494da692..eaab49671d8 100644 --- a/packages/postgres-database/src/simcore_postgres_database/webserver_models.py +++ b/packages/postgres-database/src/simcore_postgres_database/webserver_models.py @@ -12,7 +12,6 @@ from .models.projects import ProjectType, projects from .models.tags import study_tags, tags from .models.tokens import tokens -from .models.user_to_projects import user_to_projects from .models.users import UserRole, UserStatus, users __all__ = [ @@ -24,7 +23,6 @@ "UserStatus", "projects", "ProjectType", - "user_to_projects", "confirmations", "ConfirmationAction", "tokens", diff --git a/packages/postgres-database/tests/test_delete_projects_and_users.py b/packages/postgres-database/tests/test_delete_projects_and_users.py index f0e4b9e18cd..d27564b20a0 100644 --- a/packages/postgres-database/tests/test_delete_projects_and_users.py +++ b/packages/postgres-database/tests/test_delete_projects_and_users.py @@ -16,7 +16,6 @@ from simcore_postgres_database.webserver_models import ( UserStatus, projects, - user_to_projects, users, ) @@ -70,16 +69,6 @@ async def start(): projects.insert().values(**random_project(prj_owner=4)) ) - await conn.execute( - user_to_projects.insert().values(user_id=1, project_id=1) - ) - await conn.execute( - user_to_projects.insert().values(user_id=1, project_id=2) - ) - await conn.execute( - user_to_projects.insert().values(user_id=2, project_id=3) - ) - return engine return loop.run_until_complete(start()) @@ -175,10 +164,3 @@ async def test_view(engine): res = await conn.execute(projects.select()) rows = await res.fetchall() assert len(rows) == 3 - - # effect of cascade is that relation deletes as well - res = await conn.execute(user_to_projects.select()) - rows = await res.fetchall() - - assert len(rows) == 1 - assert not any(row[user_to_projects.c.user_id] == 1 for row in rows) diff --git a/packages/pytest-simcore/src/pytest_simcore/helpers/utils_projects.py b/packages/pytest-simcore/src/pytest_simcore/helpers/utils_projects.py index 9f87139f649..870d61eaec8 100644 --- a/packages/pytest-simcore/src/pytest_simcore/helpers/utils_projects.py +++ b/packages/pytest-simcore/src/pytest_simcore/helpers/utils_projects.py @@ -74,16 +74,10 @@ async def create_project( async def delete_all_projects(app: web.Application): - from simcore_service_webserver.projects.projects_models import ( - projects, - user_to_projects, - ) + from simcore_service_webserver.projects.projects_models import projects db = app[APP_PROJECT_DBAPI] async with db.engine.acquire() as conn: - query = user_to_projects.delete() - await conn.execute(query) - query = projects.delete() await conn.execute(query) diff --git a/packages/service-library/src/servicelib/application.py b/packages/service-library/src/servicelib/application.py index 57c639e0fee..1e2cd1228d7 100644 --- a/packages/service-library/src/servicelib/application.py +++ b/packages/service-library/src/servicelib/application.py @@ -11,7 +11,7 @@ async def startup_info(app: web.Application): async def shutdown_info(app: web.Application): - print(f"INFO: SHUTING DOWN {app} ...", flush=True) + print(f"INFO: SHUTTING DOWN {app} ...", flush=True) def create_safe_application(config: Optional[Dict] = None) -> web.Application: diff --git a/services/director/src/simcore_service_director/api/v0/schemas/project-v0.0.1.json b/services/director/src/simcore_service_director/api/v0/schemas/project-v0.0.1.json index d40e6ceb1a4..4ecd40e4248 100644 --- a/services/director/src/simcore_service_director/api/v0/schemas/project-v0.0.1.json +++ b/services/director/src/simcore_service_director/api/v0/schemas/project-v0.0.1.json @@ -46,7 +46,34 @@ }, "accessRights": { "type": "object", - "description": "object containing the GroupID as key and read/write/execution permissions as value" + "description": "object containing the GroupID as key and read/write/execution permissions as value", + "additionalProperties": false, + "patternProperties": { + "^\\d+$": { + "type": "object", + "description": "the group id", + "additionalProperties": false, + "required": [ + "read", + "write", + "delete" + ], + "properties": { + "read": { + "type": "boolean", + "description": "gives read access" + }, + "write": { + "type": "boolean", + "description": "gives write access" + }, + "delete": { + "type": "boolean", + "description": "gives deletion rights" + } + } + } + } }, "creationDate": { "type": "string", @@ -307,4 +334,4 @@ } } } -} \ No newline at end of file +} diff --git a/services/storage/src/simcore_service_storage/api/v0/openapi.yaml b/services/storage/src/simcore_service_storage/api/v0/openapi.yaml index b0dfb02d379..e06b3b29233 100644 --- a/services/storage/src/simcore_service_storage/api/v0/openapi.yaml +++ b/services/storage/src/simcore_service_storage/api/v0/openapi.yaml @@ -1764,6 +1764,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -1976,6 +1996,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -2198,6 +2238,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -2520,6 +2580,26 @@ components: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date diff --git a/services/storage/src/simcore_service_storage/api/v0/schemas/project-v0.0.1.json b/services/storage/src/simcore_service_storage/api/v0/schemas/project-v0.0.1.json index d40e6ceb1a4..4ecd40e4248 100644 --- a/services/storage/src/simcore_service_storage/api/v0/schemas/project-v0.0.1.json +++ b/services/storage/src/simcore_service_storage/api/v0/schemas/project-v0.0.1.json @@ -46,7 +46,34 @@ }, "accessRights": { "type": "object", - "description": "object containing the GroupID as key and read/write/execution permissions as value" + "description": "object containing the GroupID as key and read/write/execution permissions as value", + "additionalProperties": false, + "patternProperties": { + "^\\d+$": { + "type": "object", + "description": "the group id", + "additionalProperties": false, + "required": [ + "read", + "write", + "delete" + ], + "properties": { + "read": { + "type": "boolean", + "description": "gives read access" + }, + "write": { + "type": "boolean", + "description": "gives write access" + }, + "delete": { + "type": "boolean", + "description": "gives deletion rights" + } + } + } + } }, "creationDate": { "type": "string", @@ -307,4 +334,4 @@ } } } -} \ No newline at end of file +} diff --git a/services/storage/src/simcore_service_storage/dsm.py b/services/storage/src/simcore_service_storage/dsm.py index a4ad5918ea8..668724589ca 100644 --- a/services/storage/src/simcore_service_storage/dsm.py +++ b/services/storage/src/simcore_service_storage/dsm.py @@ -31,7 +31,6 @@ _location_from_id, file_meta_data, projects, - user_to_projects, ) from .s3 import get_config_s3 from .settings import ( @@ -218,11 +217,8 @@ async def list_files( # now parse the project to search for node/project names try: async with self.engine.acquire() as conn: - joint_table = user_to_projects.join(projects) - query = ( - sa.select([projects]) - .select_from(joint_table) - .where(user_to_projects.c.user_id == user_id) + query = sa.select([projects]).where( + projects.c.prj_owner == user_id ) async for row in conn.execute(query): @@ -381,11 +377,8 @@ async def list_datasets(self, user_id: str, location: str) -> DatasetMetaDataVec if self.has_project_db: try: async with self.engine.acquire() as conn: - joint_table = user_to_projects.join(projects) - query = ( - sa.select([projects]) - .select_from(joint_table) - .where(user_to_projects.c.user_id == user_id) + query = sa.select([projects]).where( + projects.c.prj_owner == user_id ) async for row in conn.execute(query): proj_data = dict(row.items()) diff --git a/services/storage/src/simcore_service_storage/models.py b/services/storage/src/simcore_service_storage/models.py index 5676caef903..2954b9397a5 100644 --- a/services/storage/src/simcore_service_storage/models.py +++ b/services/storage/src/simcore_service_storage/models.py @@ -12,7 +12,6 @@ metadata, projects, tokens, - user_to_projects, users, groups, user_to_groups, @@ -174,7 +173,6 @@ def __str__(self): "FileMetaDataEx", "projects", "users", - "user_to_projects", "groups", "user_to_groups", ] diff --git a/services/storage/tests/data/projects.csv b/services/storage/tests/data/projects.csv index ec7b4af07a9..1f9f3796ba9 100644 --- a/services/storage/tests/data/projects.csv +++ b/services/storage/tests/data/projects.csv @@ -1,2 +1,2 @@ id,type,uuid,name,description,thumbnail,prj_owner,creation_date,last_change_date,workbench,published,access_rights -151,STANDARD,161b8782-b13e-5840-9ae2-e2250c231001,Kember use case,Kember Cordiac Model with PostPro Viewer,"","",2019-06-27 11:42:03.168,2019-06-27 11:43:49.128,"{""ad9bda7f-1dc5-5480-ab22-5fef4fc53eac"": {""key"": ""simcore/services/comp/kember-cardiac-model"", ""version"": ""1.0.0"", ""label"": ""Kember cardiac model"", ""inputs"": {""dt"": 0.01, ""T"": 1000, ""forcing_factor"": 0}, ""inputNodes"": [], ""outputs"": {}, ""progress"": 100, ""thumbnail"": """", ""position"": {""x"": 50, ""y"": 100}}, ""a3941ea0-37c4-5c1d-a7b3-01b5fd8a80c8"": {""key"": ""simcore/services/dynamic/kember-viewer"", ""version"": ""2.9.0"", ""label"": ""kember-viewer"", ""inputs"": {""outputController"": {""nodeUuid"": ""ad9bda7f-1dc5-5480-ab22-5fef4fc53eac"", ""output"": ""out_1""}}, ""inputNodes"": [""ad9bda7f-1dc5-5480-ab22-5fef4fc53eac""], ""outputs"": {}, ""progress"": 100, ""thumbnail"": """", ""position"": {""x"": 300, ""y"": 100}}}",False,"{}" +151,STANDARD,161b8782-b13e-5840-9ae2-e2250c231001,Kember use case,Kember Cordiac Model with PostPro Viewer,"",21,2019-06-27 11:42:03.168,2019-06-27 11:43:49.128,"{""ad9bda7f-1dc5-5480-ab22-5fef4fc53eac"": {""key"": ""simcore/services/comp/kember-cardiac-model"", ""version"": ""1.0.0"", ""label"": ""Kember cardiac model"", ""inputs"": {""dt"": 0.01, ""T"": 1000, ""forcing_factor"": 0}, ""inputNodes"": [], ""outputs"": {}, ""progress"": 100, ""thumbnail"": """", ""position"": {""x"": 50, ""y"": 100}}, ""a3941ea0-37c4-5c1d-a7b3-01b5fd8a80c8"": {""key"": ""simcore/services/dynamic/kember-viewer"", ""version"": ""2.9.0"", ""label"": ""kember-viewer"", ""inputs"": {""outputController"": {""nodeUuid"": ""ad9bda7f-1dc5-5480-ab22-5fef4fc53eac"", ""output"": ""out_1""}}, ""inputNodes"": [""ad9bda7f-1dc5-5480-ab22-5fef4fc53eac""], ""outputs"": {}, ""progress"": 100, ""thumbnail"": """", ""position"": {""x"": 300, ""y"": 100}}}",False,"{}" diff --git a/services/storage/tests/data/user_to_projects.csv b/services/storage/tests/data/user_to_projects.csv deleted file mode 100644 index a72f5822d66..00000000000 --- a/services/storage/tests/data/user_to_projects.csv +++ /dev/null @@ -1,2 +0,0 @@ -id,user_id,project_id -122,21,151 diff --git a/services/storage/tests/utils.py b/services/storage/tests/utils.py index 494a7036a68..45086dba81b 100644 --- a/services/storage/tests/utils.py +++ b/services/storage/tests/utils.py @@ -12,7 +12,6 @@ FileMetaData, file_meta_data, projects, - user_to_projects, users, groups, user_to_groups, @@ -124,29 +123,14 @@ def create_full_tables(url): meta.drop_all( bind=engine, - tables=[ - user_to_groups, - file_meta_data, - projects, - user_to_projects, - users, - groups, - ], + tables=[user_to_groups, file_meta_data, projects, users, groups,], checkfirst=True, ) meta.create_all( - bind=engine, - tables=[ - file_meta_data, - projects, - user_to_projects, - users, - groups, - user_to_groups, - ], + bind=engine, tables=[file_meta_data, projects, users, groups, user_to_groups,], ) - for t in ["file_meta_data", "projects", "users", "user_to_projects"]: + for t in ["users", "file_meta_data", "projects"]: filename = t + ".csv" csv_file = str(data_dir() / Path(filename)) with open(csv_file, "r") as file: @@ -161,12 +145,12 @@ def create_full_tables(url): # cur = conn.cursor() # columns = [["file_uuid","location_id","location","bucket_name","object_name","project_id","project_name","node_id","node_name","file_name","user_id","user_name"],[],[],[]] # if False: - # for t in ["file_meta_data", "projects", "users", "user_to_projects"]: + # for t in ["file_meta_data", "projects", "users"]: # filename = t + ".sql" # sqlfile = str(data_dir() / Path(filename)) # cur.execute(open(sqlfile, "r").read()) # else: - # for t in ["file_meta_data", "projects", "users", "user_to_projects"]: + # for t in ["file_meta_data", "projects", "users"]: # filename = t + ".csv" # csv_file = str(data_dir() / Path(filename)) # if False: @@ -189,14 +173,6 @@ def drop_all_tables(url): engine = sa.create_engine(url) meta.drop_all( - bind=engine, - tables=[ - file_meta_data, - projects, - user_to_projects, - users, - groups, - user_to_groups, - ], + bind=engine, tables=[file_meta_data, projects, users, groups, user_to_groups,], ) engine.dispose() diff --git a/services/web/client/source/class/osparc/About.js b/services/web/client/source/class/osparc/About.js index 0974b5950f2..b489e0c853e 100644 --- a/services/web/client/source/class/osparc/About.js +++ b/services/web/client/source/class/osparc/About.js @@ -77,13 +77,13 @@ qx.Class.define("osparc.About", { entryLabel = new qx.ui.basic.Label(item); } entryLayout.set({ - font: osparc.utils.Utils.getFont(14, true) + font: "title-14" }); entryLayout.add(entryLabel); let entryVersion = new qx.ui.basic.Label().set({ value: vers, - font: osparc.utils.Utils.getFont(14) + font: "text-14" }); entryLayout.add(entryVersion); diff --git a/services/web/client/source/class/osparc/auth/Data.js b/services/web/client/source/class/osparc/auth/Data.js index c88c3ab5884..3096e6b76de 100644 --- a/services/web/client/source/class/osparc/auth/Data.js +++ b/services/web/client/source/class/osparc/auth/Data.js @@ -25,6 +25,24 @@ qx.Class.define("osparc.auth.Data", { type: "singleton", properties: { + /** + * User Id + */ + userId: { + init: null, + nullable: false, + check: "Number" + }, + + /** + * Group ID + */ + groupId: { + init: null, + nullable: false, + check: "Number" + }, + /** * Basic authentification with a token */ diff --git a/services/web/client/source/class/osparc/auth/Manager.js b/services/web/client/source/class/osparc/auth/Manager.js index 13ccc0d7a68..e04a951dbe3 100644 --- a/services/web/client/source/class/osparc/auth/Manager.js +++ b/services/web/client/source/class/osparc/auth/Manager.js @@ -148,6 +148,8 @@ qx.Class.define("osparc.auth.Manager", { __loginUser: function(profile) { osparc.auth.Data.getInstance().setEmail(profile.login); osparc.auth.Data.getInstance().setToken(profile.login); + osparc.auth.Data.getInstance().setUserId(profile.id); + osparc.auth.Data.getInstance().setGroupId(profile["groups"]["me"]["gid"]); osparc.data.Permissions.getInstance().setRole(profile.role); }, diff --git a/services/web/client/source/class/osparc/component/export/ExportDAG.js b/services/web/client/source/class/osparc/component/export/ExportDAG.js index bb6b176b923..a0bb4a45e55 100644 --- a/services/web/client/source/class/osparc/component/export/ExportDAG.js +++ b/services/web/client/source/class/osparc/component/export/ExportDAG.js @@ -105,18 +105,12 @@ qx.Class.define("osparc.component.export.ExportDAG", { flex: 1 }); - // const shareWith = new osparc.component.export.ShareWith("exportDAG"); - // this._add(shareWith); - const exportBtn = this.__getExportBtn(); exportBtn.addListener("execute", () => { if (manager.validate()) { this.__exportAsMacroService(exportBtn); } }, this); - // shareWith.addListener("changeReady", e => { - // exportBtn.setEnabled(e.getData()); - // }); this._add(exportBtn); }, @@ -149,7 +143,7 @@ qx.Class.define("osparc.component.export.ExportDAG", { }, __getExportBtn: function() { - const exportBtn = new osparc.ui.form.FetchButton(this.tr("Export")).set({ + const exportBtn = new osparc.ui.form.FetchButton(this.tr("Publish Group")).set({ allowGrowX: false, alignX: "right" }); diff --git a/services/web/client/source/class/osparc/component/export/Permissions.js b/services/web/client/source/class/osparc/component/export/Permissions.js new file mode 100644 index 00000000000..8c00053b4c7 --- /dev/null +++ b/services/web/client/source/class/osparc/component/export/Permissions.js @@ -0,0 +1,329 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +/** + * Widget for modifying Study permissions. This is the way for sharing studies + * - Creates a copy of study data + * - It allows changing study's access right, so that the study owners can: + * - Share it with Organizations and/or Organization Members (Collaborators) + * - Make other Collaborators Owner + * - Remove collaborators + */ + +qx.Class.define("osparc.component.export.Permissions", { + extend: qx.ui.core.Widget, + + /** + * @param studyData {Object} Object containing the serialized Study Data + */ + construct: function(studyData) { + this.base(arguments); + + this.__studyData = osparc.utils.Utils.deepCloneObject(studyData); + + this._setLayout(new qx.ui.layout.VBox(15)); + + this.__buildLayout(); + + this.__getMyFriends(); + }, + + events: { + "updateStudy": "qx.event.type.Data" + }, + + statics: { + getCollaboratorAccessRight: function() { + return { + "read": true, + "write": true, + "delete": false + }; + }, + + getOwnerAccessRight: function() { + return { + "read": true, + "write": true, + "delete": true + }; + }, + + removeCollaborator: function(studyData, gid) { + return delete studyData["accessRights"][gid]; + }, + + createWindow: function(winText, shareResourceWidget) { + const window = new qx.ui.window.Window(winText).set({ + appearance: "service-window", + layout: new qx.ui.layout.Grow(), + autoDestroy: true, + contentPadding: 10, + width: 400, + height: 300, + showMaximize: false, + showMinimize: false, + modal: true + }); + window.add(shareResourceWidget); + window.center(); + return window; + } + }, + + members: { + __studyData: null, + __organizationsAndMembers: null, + __collaboratorsModel: null, + __myFrieds: null, + + createWindow: function() { + return this.self().createWindow(this.tr("Share with people and organizations"), this); + }, + + __buildLayout: function() { + const addCollaborator = this.__createAddCollaborator(); + this._add(addCollaborator); + + const collaboratorsList = this.__createCollaboratorsList(); + this._add(collaboratorsList, { + flex: 1 + }); + }, + + __createAddCollaborator: function() { + const vBox = new qx.ui.container.Composite(new qx.ui.layout.VBox(5)); + vBox.setVisibility(this.__isUserOwner() ? "visible" : "excluded"); + + const label = new qx.ui.basic.Label().set({ + value: this.tr("Add Collaborators and Organizations") + }); + vBox.add(label); + + const hBox = new qx.ui.container.Composite(new qx.ui.layout.HBox(10).set({ + alignY: "middle" + })); + vBox.add(hBox, { + flex: 1 + }); + + const organizationsAndMembers = this.__organizationsAndMembers = new osparc.component.filter.OrganizationsAndMembers("asfd"); + hBox.add(organizationsAndMembers, { + flex: 1 + }); + + const addCollaboratorBtn = new qx.ui.form.Button(this.tr("Add")).set({ + allowGrowY: false + }); + addCollaboratorBtn.addListener("execute", () => { + this.__addCollaborator(); + }, this); + hBox.add(addCollaboratorBtn); + + return vBox; + }, + + __createCollaboratorsList: function() { + const collaboratorsUIList = new qx.ui.form.List().set({ + decorator: "no-border", + spacing: 3, + width: 150 + }); + + const collaboratorsModel = this.__collaboratorsModel = new qx.data.Array(); + const collaboratorsCtrl = new qx.data.controller.List(collaboratorsModel, collaboratorsUIList, "name"); + collaboratorsCtrl.setDelegate({ + createItem: () => new osparc.dashboard.CollaboratorListItem(), + bindItem: (ctrl, item, id) => { + ctrl.bindProperty("gid", "model", null, item, id); + ctrl.bindProperty("gid", "key", null, item, id); + ctrl.bindProperty("thumbnail", "thumbnail", null, item, id); + ctrl.bindProperty("name", "title", null, item, id); // user + ctrl.bindProperty("label", "title", null, item, id); // organization + ctrl.bindProperty("login", "subtitle", null, item, id); // user + ctrl.bindProperty("description", "subtitle", null, item, id); // organization + ctrl.bindProperty("isOrg", "isOrganization", null, item, id); + ctrl.bindProperty("access_rights", "accessRights", null, item, id); + ctrl.bindProperty("showOptions", "showOptions", null, item, id); + }, + configureItem: item => { + item.getChildControl("thumbnail").getContentElement() + .setStyles({ + "border-radius": "16px" + }); + item.addListener("promoteCollaborator", e => { + const orgMember = e.getData(); + this.__promoteCollaborator(orgMember); + }); + item.addListener("removeCollaborator", e => { + const orgMember = e.getData(); + this.__deleteCollaborator(orgMember); + }); + } + }); + + return collaboratorsUIList; + }, + + __getMyFriends: function() { + this.__myFrieds = {}; + + const store = osparc.store.Store.getInstance(); + const promises = []; + promises.push(store.getGroupsOrganizations()); + promises.push(store.getVisibleMembers()); + Promise.all(promises) + .then(values => { + const orgs = values[0]; + const orgMembers = values[1]; + orgs.forEach(org => { + org["isOrg"] = true; + this.__myFrieds[org["gid"]] = org; + }); + for (const gid of Object.keys(orgMembers)) { + const orgMember = orgMembers[gid]; + orgMember["isOrg"] = false; + this.__myFrieds[gid] = orgMember; + } + this.__reloadOrganizationsAndMembers(); + this.__reloadCollaboratorsList(); + }); + }, + + __reloadOrganizationsAndMembers: function() { + this.__organizationsAndMembers.reset(); + + const aceessRights = this.__studyData["accessRights"]; + const myFriends = this.__myFrieds; + for (const gid of Object.keys(myFriends)) { + const myFriend = myFriends[gid]; + if (parseInt(gid) !== osparc.auth.Data.getInstance().getGroupId() && !(parseInt(gid) in aceessRights)) { + const btn = this.__organizationsAndMembers.addOption(myFriend); + btn.setIcon(myFriend["isOrg"] ? "@FontAwesome5Solid/users/14" : "@FontAwesome5Solid/user/14"); + } + } + }, + + __reloadCollaboratorsList: function() { + this.__collaboratorsModel.removeAll(); + + const aceessRights = this.__studyData["accessRights"]; + Object.keys(aceessRights).forEach(gid => { + if (Object.prototype.hasOwnProperty.call(this.__myFrieds, gid)) { + const collaborator = this.__myFrieds[gid]; + if ("first_name" in collaborator) { + collaborator["thumbnail"] = osparc.utils.Avatar.getUrl(collaborator["login"], 32); + collaborator["name"] = osparc.utils.Utils.firstsUp(collaborator["first_name"], collaborator["last_name"]); + } + collaborator["access_rights"] = aceessRights[gid]; + if (this.__isUserOwner()) { + collaborator["showOptions"] = true; + } + const collaboratorModel = qx.data.marshal.Json.createModel(collaborator); + if (parseInt(gid) === osparc.auth.Data.getInstance().getGroupId()) { + this.__collaboratorsModel.insertAt(0, collaboratorModel); + } else { + this.__collaboratorsModel.append(collaboratorModel); + } + } + }); + }, + + __isUserOwner: function() { + const myGid = osparc.auth.Data.getInstance().getGroupId(); + const aceessRights = this.__studyData["accessRights"]; + if (myGid in aceessRights) { + return aceessRights[myGid]["delete"]; + } + return false; + }, + + __addCollaborator: function() { + const gids = this.__organizationsAndMembers.getSelectedGIDs(); + if (gids.length === 0) { + return; + } + + gids.forEach(gid => { + this.__studyData["accessRights"][gid] = this.self().getCollaboratorAccessRight(); + }); + const params = { + url: { + "projectId": this.__studyData["uuid"] + }, + data: this.__studyData + }; + osparc.data.Resources.fetch("studies", "put", params) + .then(() => { + this.fireDataEvent("updateStudy", this.__studyData["uuid"]); + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Collaborator(s) successfully added")); + this.__reloadOrganizationsAndMembers(); + this.__reloadCollaboratorsList(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went adding collaborator(s)"), "ERROR"); + console.error(err); + }); + }, + + __promoteCollaborator: function(collaborator) { + this.__studyData["accessRights"][collaborator["gid"]] = this.self().getOwnerAccessRight(); + const params = { + url: { + "projectId": this.__studyData["uuid"] + }, + data: this.__studyData + }; + osparc.data.Resources.fetch("studies", "put", params) + .then(() => { + this.fireDataEvent("updateStudy", this.__studyData["uuid"]); + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Collaborator successfully made Owner")); + this.__reloadOrganizationsAndMembers(); + this.__reloadCollaboratorsList(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong making Collaborator Owner"), "ERROR"); + console.error(err); + }); + }, + + __deleteCollaborator: function(collaborator) { + const success = this.self().removeCollaborator(this.__studyData, collaborator["gid"]); + if (!success) { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong removing Collaborator"), "ERROR"); + } + + const params = { + url: { + "projectId": this.__studyData["uuid"] + }, + data: this.__studyData + }; + osparc.data.Resources.fetch("studies", "put", params) + .then(() => { + this.fireDataEvent("updateStudy", this.__studyData["uuid"]); + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Collaborator successfully removed")); + this.__reloadOrganizationsAndMembers(); + this.__reloadCollaboratorsList(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong removing Collaborator"), "ERROR"); + console.error(err); + }); + } + } +}); diff --git a/services/web/client/source/class/osparc/component/export/SaveAsTemplate.js b/services/web/client/source/class/osparc/component/export/SaveAsTemplate.js index a18815e74a5..eca7b4a5728 100644 --- a/services/web/client/source/class/osparc/component/export/SaveAsTemplate.js +++ b/services/web/client/source/class/osparc/component/export/SaveAsTemplate.js @@ -16,73 +16,107 @@ ************************************************************************ */ /** - * + * Widget for creating a template from a study + * - Creates a copy of study data + * - Using the ShareWith widget allows to publish the template */ qx.Class.define("osparc.component.export.SaveAsTemplate", { extend: qx.ui.core.Widget, - construct: function(studyId, formData) { + /** + * @param studyId {String} Study Id + * @param studyData {Object} Object containing part or the entire serialized Study Data + */ + construct: function(studyId, studyData) { this.base(arguments); - this.__studyId = studyId; - this.__formData = osparc.utils.Utils.deepCloneObject(formData); - this._setLayout(new qx.ui.layout.VBox(5)); + this.__studyId = studyId; + this.__formData = osparc.utils.Utils.deepCloneObject(studyData); + this.__buildLayout(); + + this.setHeaderText(this.tr("Make Template accessible to")); + this.setButtonText(this.tr("Publish")); }, statics: { - createSaveAsTemplateWindow: function(saveAsTemplate) { - const window = new qx.ui.window.Window("Save as Template").set({ + createWindow: function(winText, shareResourceWidget) { + const window = new qx.ui.window.Window(winText).set({ appearance: "service-window", layout: new qx.ui.layout.Grow(), autoDestroy: true, - contentPadding: 0, + contentPadding: 10, width: 400, height: 300, + showMaximize: false, showMinimize: false, modal: true }); - window.add(saveAsTemplate); + window.add(shareResourceWidget); window.center(); return window; } }, + properties: { + headerText: { + check: "String", + init: "", + event: "changeHeaderText" + }, + + buttonText: { + check: "String", + init: "", + event: "changeButtonText" + } + }, + events: { "finished": "qx.event.type.Data" }, members: { __studyId: null, - __formData: null, __shareWith: null, + __formData: null, + + createWindow: function() { + return this.self().createWindow(this.tr("Save as Template"), this); + }, __buildLayout: function() { - const shareWith = this.__shareWith = new osparc.component.export.ShareWith("saveAsTemplate"); + const shareWith = this.__shareWith = new osparc.component.export.ShareWith(); + this.bind("headerText", shareWith, "legend"); this._add(shareWith, { flex: 1 }); - const saveAsTemplateBtn = new osparc.ui.form.FetchButton(this.tr("Save as Template")).set({ + const shareResourceBtn = new osparc.ui.form.FetchButton().set({ allowGrowX: false, alignX: "right" }); - saveAsTemplateBtn.addListener("execute", () => { - this.__saveAsTemplate(saveAsTemplateBtn); + this.bind("buttonText", shareResourceBtn, "label"); + shareResourceBtn.addListener("execute", () => { + this.__shareResource(shareResourceBtn); }, this); - shareWith.bind("ready", saveAsTemplateBtn, "enabled"); - this._add(saveAsTemplateBtn); + shareWith.bind("ready", shareResourceBtn, "enabled"); + this._add(shareResourceBtn); }, - __saveAsTemplate: function(btn) { + __shareResource: function(btn) { btn.setFetching(true); const selectedGroupIDs = this.__shareWith.getSelectedGroups(); - selectedGroupIDs.forEach(selectedGroupID => { - this.__formData["accessRights"][selectedGroupID] = "rwx"; + selectedGroupIDs.forEach(gid => { + this.__formData["accessRights"][gid] = { + "read": true, + "write": false, + "delete": false + }; }); const params = { diff --git a/services/web/client/source/class/osparc/component/export/ShareWith.js b/services/web/client/source/class/osparc/component/export/ShareWith.js index 99833550c5c..a2ebf560ed0 100644 --- a/services/web/client/source/class/osparc/component/export/ShareWith.js +++ b/services/web/client/source/class/osparc/component/export/ShareWith.js @@ -17,22 +17,25 @@ /** * View that shows who you want to share the resource with: - * - Everyone - * - My organizations * - Private + * - Organization members + * - My organizations + * - Everyone */ qx.Class.define("osparc.component.export.ShareWith", { extend: qx.ui.groupbox.GroupBox, - construct: function(filterGroupId) { - this.base(arguments, this.tr("Share with")); + construct: function(header) { + this.base(arguments, header); this.set({ appearance: "settings-groupbox", layout: new qx.ui.layout.VBox(10) }); + this.__buildLayout(); + const store = osparc.store.Store.getInstance(); Promise.all([ store.getGroupsMe(), @@ -41,9 +44,14 @@ qx.Class.define("osparc.component.export.ShareWith", { .then(values => { const groupMe = values[0]; const groupAll = values[1]; - this.__sharingOptions["me"]["gid"] = groupMe["gid"]; - this.__sharingOptions["all"]["gid"] = groupAll["gid"]; - this.__buildLayout(filterGroupId); + this.__rbManager.getChildren().forEach(rb => { + if (rb.contextId === this.__sharingOpts["me"].contextId) { + rb.gid = groupMe["gid"]; + } + if (rb.contextId === this.__sharingOpts["all"].contextId) { + rb.gid = groupAll["gid"]; + } + }); }); }, @@ -57,43 +65,87 @@ qx.Class.define("osparc.component.export.ShareWith", { }, members: { // eslint-disable-line qx-rules/no-refs-in-members - __sharingOptions: { + __sharingOpts: { "me": { - shareContextId: 0, - label: "Private", - gid: null + contextId: 0, + label: "Private" }, + /* + "orgMembers": { + contextId: 1, + label: "Organization Members" + }, + */ "orgs": { - shareContextId: 1, - label: "Organizations", - gid: null + contextId: 2, + label: "Organizations" }, "all": { - shareContextId: 2, - label: "Everyone", - gid: null + contextId: 3, + label: "Everyone" } }, __rbManager: null, - __myOrganizationsHB: null, + __privateLayout: null, + __publicLayout: null, + __myOrgMembersHB: null, + __myOrgMembers: null, + __myOrgs: null, - __buildLayout: function(filterGroupId) { + __buildLayout: function() { this.__rbManager = new qx.ui.form.RadioGroup().set({ allowEmptySelection: true }); - for (let [sharingOptionKey, sharingOption] of Object.entries(this.__sharingOptions)) { + for (let [sharingOptionKey, sharingOption] of Object.entries(this.__sharingOpts)) { const rb = new qx.ui.form.RadioButton(sharingOption.label); - rb.shareContextId = sharingOption.shareContextId; - if (sharingOptionKey === "orgs") { - const vBox = new qx.ui.container.Composite(new qx.ui.layout.VBox()); - const myOrganizationsHB = this.__myOrganizationsHB = new osparc.component.filter.Organizations(filterGroupId); - vBox.add(rb); - vBox.add(myOrganizationsHB); - this.add(vBox); - } else { - rb.gid = sharingOption["gid"]; - this.add(rb); + rb.contextId = sharingOption.contextId; + switch (sharingOptionKey) { + case "me": + this.__privateLayout = rb; + this.add(rb); + break; + case "orgMembers": { + const vBox = new qx.ui.container.Composite(new qx.ui.layout.VBox()); + const myOrgMembersHB = this.__myOrgMembersHB = new qx.ui.container.Composite(new qx.ui.layout.HBox().set({ + alignY: "middle" + })); + const myOrgsSB = new qx.ui.form.SelectBox(); + osparc.data.Resources.get("organizations") + .then(resp => { + const orgs = resp["organizations"]; + orgs.sort(this.__sortByLabel); + orgs.forEach(org => { + const orgItem = new qx.ui.form.ListItem(org["label"]); + orgItem.gid = org["gid"]; + myOrgsSB.add(orgItem); + }); + }); + myOrgMembersHB.add(myOrgsSB); + const myOrgMembers = this.__myOrgMembers = new osparc.component.filter.OrganizationMembers("asdfasdf"); + myOrgMembersHB.add(myOrgMembers, { + flex: 1 + }); + myOrgsSB.addListener("changeSelection", e => { + myOrgMembers.setOrganizationId(e.getData()[0].gid); + }); + vBox.add(rb); + vBox.add(myOrgMembersHB); + this.add(vBox); + break; + } + case "orgs": { + const vBox = new qx.ui.container.Composite(new qx.ui.layout.VBox()); + const myOrgs = this.__myOrgs = new osparc.component.filter.Organizations(); + vBox.add(rb); + vBox.add(myOrgs); + this.add(vBox); + break; + } + case "all": + this.__publicLayout = rb; + this.add(rb); + break; } this.__rbManager.add(rb); } @@ -106,36 +158,54 @@ qx.Class.define("osparc.component.export.ShareWith", { const selection = this.__rbManager.getSelection(); this.setReady(Boolean(selection.length)); - const isOrganizationsSelected = this.__isGroupSelected("orgs"); - this.__myOrganizationsHB.setVisibility(isOrganizationsSelected ? "visible" : "excluded"); + // this.__myOrgMembersHB.setVisibility(this.__isGroupSelected("orgMembers") ? "visible" : "excluded"); + this.__myOrgs.setVisibility(this.__isGroupSelected("orgs") ? "visible" : "excluded"); }, __isGroupSelected: function(groupKey) { const selection = this.__rbManager.getSelection(); - if (selection.length === 1 && selection[0].shareContextId === this.__sharingOptions[groupKey].shareContextId) { + if (selection.length === 1 && selection[0].contextId === this.__sharingOpts[groupKey].contextId) { return true; } return false; }, - __getSelectedOrganizationIDs: function() { + __getSelectedOrgMemberIDs: function() { + if (this.__isGroupSelected("orgMembers")) { + return this.__myOrgMembers.getSelectedOrgMemberIDs(); + } + return []; + }, + + __getSelectedOrgIDs: function() { if (this.__isGroupSelected("orgs")) { - return this.__myOrganizationsHB.getSelectedOrganizationIDs(); + return this.__myOrgs.getSelectedOrgIDs(); } return []; }, + showPrivate: function(show) { + this.__privateLayout.setVisibility(show ? "visible" : "excluded"); + }, + + showPublic: function(show) { + this.__publicLayout.setVisibility(show ? "visible" : "excluded"); + }, + getSelectedGroups: function() { let groupIDs = []; const selection = this.__rbManager.getSelection(); if (selection.length) { - switch (selection[0].shareContextId) { - case 0: - case 2: + switch (selection[0].contextId) { + case this.__sharingOpts["me"].contextId: + case this.__sharingOpts["all"].contextId: groupIDs = [selection[0].gid]; break; - case 1: - groupIDs = this.__getSelectedOrganizationIDs(); + // case this.__sharingOpts["orgMembers"].contextId: + // groupIDs = this.__getSelectedOrgMemberIDs(); + // break; + case this.__sharingOpts["orgs"].contextId: + groupIDs = this.__getSelectedOrgIDs(); break; } } diff --git a/services/web/client/source/class/osparc/component/filter/OrganizationMembers.js b/services/web/client/source/class/osparc/component/filter/OrganizationMembers.js new file mode 100644 index 00000000000..04ae22524fc --- /dev/null +++ b/services/web/client/source/class/osparc/component/filter/OrganizationMembers.js @@ -0,0 +1,70 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +/** + * Filter for members for the given organization. + */ +qx.Class.define("osparc.component.filter.OrganizationMembers", { + extend: osparc.component.filter.TagsFilter, + + /** + * Constructor for Organizations creates the filter and builds its menu. + * + * @extends osparc.component.filter.TagsFilter + */ + construct: function(filterGroupId) { + this.base(arguments, this.tr("Members"), "organizationMembers", filterGroupId); + }, + + properties: { + organizationId: { + check: "Number", + nullable: true, + apply: "_applyOrganizationId", + event: "changeOrganizationId" + } + }, + + members: { + _applyOrganizationId: function(orgId) { + this._removeAllOptions(); + const params = { + url: { + gid: orgId + } + }; + osparc.data.Resources.get("organizationMembers", params) + .then(members => { + members.sort((a, b) => (a["first_name"] > b["first_name"]) ? 1 : -1); + members.forEach(member => { + const name = osparc.utils.Utils.firstsUp(member["first_name"], member["last_name"]); + const bnt = this._addOption(name); + bnt.uid = member["id"]; + }); + }); + }, + + getSelectedOrgMemberIDs: function() { + const selectedOrganizationMemberIDs = []; + const activeMenuButtons = this._getActiveMenuButtons(); + activeMenuButtons.forEach(activeMenuButton => { + selectedOrganizationMemberIDs.push(activeMenuButton.uid); + }); + return selectedOrganizationMemberIDs; + } + } +}); diff --git a/services/web/client/source/class/osparc/component/filter/Organizations.js b/services/web/client/source/class/osparc/component/filter/Organizations.js index f116eb15a6e..8396ce8b017 100644 --- a/services/web/client/source/class/osparc/component/filter/Organizations.js +++ b/services/web/client/source/class/osparc/component/filter/Organizations.js @@ -26,21 +26,18 @@ qx.Class.define("osparc.component.filter.Organizations", { * * @extends osparc.component.filter.TagsFilter */ - construct: function(filterGroupId) { - this.base(arguments, this.tr("My Organizations"), "organizations", filterGroupId); + construct: function() { + this.base(arguments, this.tr("Select Organization"), "organizations", "organizations"); this.__buildMenu(); }, members: { - /** - * Function that uses the information in {osparc.store.Store.getGroupsOrganizations} to build the menu for the filter. - */ __buildMenu: function() { - const store = osparc.store.Store.getInstance(); - store.getGroupsOrganizations() - .then(orgs => { - orgs.sort(this.__sortByLabel); + osparc.data.Resources.get("organizations") + .then(resp => { + const orgs = resp["organizations"]; + orgs.sort((a, b) => (a["label"] > b["label"]) ? 1 : -1); orgs.forEach(org => { const bnt = this._addOption(osparc.utils.Utils.capitalize(org["label"])); bnt.gid = org["gid"]; @@ -48,17 +45,7 @@ qx.Class.define("osparc.component.filter.Organizations", { }); }, - __sortByLabel: function(org1, org2) { - if (org1.label > org2.label) { - return 1; - } - if (org1.label < org2.label) { - return -1; - } - return 0; - }, - - getSelectedOrganizationIDs: function() { + getSelectedOrgIDs: function() { const selectedOrganizationIDs = []; const activeMenuButtons = this._getActiveMenuButtons(); activeMenuButtons.forEach(activeMenuButton => { diff --git a/services/web/client/source/class/osparc/component/filter/OrganizationsAndMembers.js b/services/web/client/source/class/osparc/component/filter/OrganizationsAndMembers.js new file mode 100644 index 00000000000..43172fbad78 --- /dev/null +++ b/services/web/client/source/class/osparc/component/filter/OrganizationsAndMembers.js @@ -0,0 +1,62 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +/** + * Filter for members for the given organization. + */ +qx.Class.define("osparc.component.filter.OrganizationsAndMembers", { + extend: osparc.component.filter.TagsFilter, + + /** + * Constructor for Organizations creates the filter and builds its menu. + * + * @extends osparc.component.filter.TagsFilter + */ + construct: function(filterGroupId) { + this.base(arguments, this.tr("Members"), "organizationsAndMembers", filterGroupId); + }, + + members: { + addOption: function(group) { + let name = ""; + if ("first_name" in group) { + name = group["first_name"] + " " + group["last_name"]; + } else { + name = group["label"]; + } + const btn = this._addOption(name); + btn.gid = group["gid"]; + return btn; + }, + + addOptions: function(groups) { + this._removeAllOptions(); + groups.forEach(group => { + this.addOption(group); + }); + }, + + getSelectedGIDs: function() { + const selectedGIDs = []; + const activeMenuButtons = this._getActiveMenuButtons(); + activeMenuButtons.forEach(activeMenuButton => { + selectedGIDs.push(activeMenuButton.gid); + }); + return selectedGIDs; + } + } +}); diff --git a/services/web/client/source/class/osparc/component/form/ToggleButtonContainer.js b/services/web/client/source/class/osparc/component/form/ToggleButtonContainer.js index b534f6b5957..534946a3b8d 100644 --- a/services/web/client/source/class/osparc/component/form/ToggleButtonContainer.js +++ b/services/web/client/source/class/osparc/component/form/ToggleButtonContainer.js @@ -16,8 +16,8 @@ qx.Class.define("osparc.component.form.ToggleButtonContainer", { }, events: { - changeSelection: "qx.event.type.Data", - changeVisibility: "qx.event.type.Data" + "changeSelection": "qx.event.type.Data", + "changeVisibility": "qx.event.type.Data" }, members: { diff --git a/services/web/client/source/class/osparc/component/form/tag/TagItem.js b/services/web/client/source/class/osparc/component/form/tag/TagItem.js index 20173a7db56..935583a991b 100644 --- a/services/web/client/source/class/osparc/component/form/tag/TagItem.js +++ b/services/web/client/source/class/osparc/component/form/tag/TagItem.js @@ -53,8 +53,8 @@ qx.Class.define("osparc.component.form.tag.TagItem", { } }, events: { - cancelNewTag: "qx.event.type.Event", - deleteTag: "qx.event.type.Event" + "cancelNewTag": "qx.event.type.Event", + "deleteTag": "qx.event.type.Event" }, members: { __tag: null, diff --git a/services/web/client/source/class/osparc/component/form/tag/TagManager.js b/services/web/client/source/class/osparc/component/form/tag/TagManager.js index 7ab7cfb08fc..1885a8ed177 100644 --- a/services/web/client/source/class/osparc/component/form/tag/TagManager.js +++ b/services/web/client/source/class/osparc/component/form/tag/TagManager.js @@ -35,7 +35,7 @@ qx.Class.define("osparc.component.form.tag.TagManager", { this.open(); }, events: { - changeSelected: "qx.event.type.Data" + "changeSelected": "qx.event.type.Data" }, properties: { liveUpdate: { diff --git a/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js b/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js index 33e7de057dc..b32e43721dd 100644 --- a/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js +++ b/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js @@ -26,35 +26,32 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { extend: qx.ui.core.Widget, /** - * @param study {Object|osparc.data.model.Study} Study (metadata) + * @param studyData {Object} Object containing the serialized Study Data * @param isTemplate {Boolean} Weather the study is template or not * @param winWidth {Number} Width for the window, needed for stretching the thumbnail */ - construct: function(study, isTemplate, winWidth) { + construct: function(studyData, isTemplate, winWidth) { this.base(arguments); this._setLayout(new qx.ui.layout.Grow()); - this.__isTemplate = isTemplate; - this.__selectedTags = study.tags; - this.__model = qx.data.marshal.Json.createModel(study); + this.__studyModel = qx.data.marshal.Json.createModel(studyData); + this.__selectedTags = studyData.tags; + this.__workbench = studyData.workbench; this.__stack = new qx.ui.container.Stack(); - this.__displayView = this.__createDisplayView(study, winWidth); - this.__editView = this.__createEditView(); + this.__displayView = this.__createDisplayView(studyData, isTemplate, winWidth); + this.__editView = this.__createEditView(isTemplate); this.__stack.add(this.__displayView); this.__stack.add(this.__editView); this._add(this.__stack); - - // Workaround: qx serializer is not doing well with uuid as object keys. - this.__workbench = study.workbench; }, events: { - updatedStudy: "qx.event.type.Data", - updatedTemplate: "qx.event.type.Data", - updateTags: "qx.event.type.Data", - closed: "qx.event.type.Event", - openedStudy: "qx.event.type.Event" + "updateStudy": "qx.event.type.Event", + "updateTemplate": "qx.event.type.Event", + "updateTags": "qx.event.type.Data", + "closed": "qx.event.type.Event", + "openStudy": "qx.event.type.Event" }, properties: { @@ -66,22 +63,48 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { } }, + statics: { + popUpInWindow: function(title, studyDetailsEditor, width = 400, height = 400) { + const win = new qx.ui.window.Window(title).set({ + autoDestroy: true, + layout: new qx.ui.layout.VBox(), + appearance: "service-window", + showMinimize: false, + showMaximize: false, + resizable: true, + contentPadding: 10, + width: width, + height: height, + modal: true + }); + win.add(studyDetailsEditor); + win.center(); + win.open(); + return win; + } + }, + members: { __stack: null, - __workbench: null, - __model: null, - __isTemplate: null, __fields: null, + __openButton: null, + __study: null, + __studyModel: null, + __workbench: null, __selectedTags: null, - __createDisplayView: function(study, winWidth) { + showOpenButton: function(show) { + this.__openButton.setVisibility(show ? "visible" : "excluded"); + }, + + __createDisplayView: function(study, isTemplate, winWidth) { const displayView = new qx.ui.container.Composite(new qx.ui.layout.VBox(10)); - displayView.add(this.__createButtons()); + displayView.add(this.__createButtons(isTemplate)); displayView.add(new osparc.component.metadata.StudyDetails(study, winWidth)); return displayView; }, - __createButtons: function() { + __createButtons: function(isTemplate) { const isCurrentUserOwner = this.__isUserOwner(); const canCreateTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.create"); const canUpdateTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.update"); @@ -92,16 +115,16 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { marginTop: 10 }); - const openButton = new qx.ui.form.Button("Open").set({ - appearance: "lg-button" + const openButton = this.__openButton = new qx.ui.form.Button("Open").set({ + appearance: "md-button" }); osparc.utils.Utils.setIdToWidget(openButton, "openStudyBtn"); - openButton.addListener("execute", () => this.fireEvent("openedStudy"), this); + openButton.addListener("execute", () => this.fireEvent("openStudy"), this); buttonsLayout.add(openButton); const modeButton = new qx.ui.form.Button("Edit", "@FontAwesome5Solid/edit/16").set({ - appearance: "lg-button", - visibility: isCurrentUserOwner && (!this.__isTemplate || canUpdateTemplate) ? "visible" : "excluded" + appearance: "md-button", + visibility: isCurrentUserOwner && (!isTemplate || canUpdateTemplate) ? "visible" : "excluded" }); osparc.utils.Utils.setIdToWidget(modeButton, "editStudyBtn"); modeButton.addListener("execute", () => this.setMode("edit"), this); @@ -111,24 +134,35 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { flex: 1 }); - if (isCurrentUserOwner && (!this.__isTemplate && canCreateTemplate)) { - const saveAsTemplateButton = new qx.ui.form.Button(this.tr("Save as template")).set({ - appearance: "lg-button" + if (!isTemplate) { + const permissionsButton = new qx.ui.form.Button(this.tr("Permissions")).set({ + appearance: "md-button" }); - osparc.utils.Utils.setIdToWidget(saveAsTemplateButton, "saveAsTemplateBtn"); - saveAsTemplateButton.addListener("execute", e => { - this.__openSaveAsTemplate(); + osparc.utils.Utils.setIdToWidget(permissionsButton, "permissionsBtn"); + permissionsButton.addListener("execute", e => { + this.__openPermissions(); }, this); - buttonsLayout.add(saveAsTemplateButton); + buttonsLayout.add(permissionsButton); + + if (isCurrentUserOwner && canCreateTemplate) { + const saveAsTemplateButton = new qx.ui.form.Button(this.tr("Save as Template")).set({ + appearance: "md-button" + }); + osparc.utils.Utils.setIdToWidget(saveAsTemplateButton, "saveAsTemplateBtn"); + saveAsTemplateButton.addListener("execute", e => { + this.__openSaveAsTemplate(); + }, this); + buttonsLayout.add(saveAsTemplateButton); + } } return buttonsLayout; }, - __createEditView: function() { + __createEditView: function(isTemplate) { const isCurrentUserOwner = this.__isUserOwner(); const canUpdateTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.update"); - const fieldIsEnabled = isCurrentUserOwner && (!this.__isTemplate || canUpdateTemplate); + const fieldIsEnabled = isCurrentUserOwner && (!isTemplate || canUpdateTemplate); const editView = new qx.ui.container.Composite(new qx.ui.layout.VBox(8)); const buttons = new qx.ui.container.Composite(new qx.ui.layout.HBox(8).set({ @@ -136,36 +170,36 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { })); this.__fields = { - name: new qx.ui.form.TextField(this.__model.getName()).set({ + name: new qx.ui.form.TextField(this.__studyModel.getName()).set({ font: "title-18", height: 35, enabled: fieldIsEnabled }), - description: new qx.ui.form.TextArea(this.__model.getDescription()).set({ + description: new qx.ui.form.TextArea(this.__studyModel.getDescription()).set({ autoSize: true, minHeight: 100, maxHeight: 500, enabled: fieldIsEnabled }), - thumbnail: new qx.ui.form.TextField(this.__model.getThumbnail()).set({ + thumbnail: new qx.ui.form.TextField(this.__studyModel.getThumbnail()).set({ enabled: fieldIsEnabled }) }; - const modeButton = new qx.ui.form.Button("Save", "@FontAwesome5Solid/save/16").set({ + const saveButton = new qx.ui.form.Button(this.tr("Save"), "@FontAwesome5Solid/save/16").set({ appearance: "lg-button" }); - osparc.utils.Utils.setIdToWidget(modeButton, "studyDetailsEditorSaveBtn"); - modeButton.addListener("execute", e => { + osparc.utils.Utils.setIdToWidget(saveButton, "studyDetailsEditorSaveBtn"); + saveButton.addListener("execute", e => { const btn = e.getTarget(); btn.setIcon("@FontAwesome5Solid/circle-notch/16"); btn.getChildControl("icon").getContentElement() .addClass("rotate"); - this.__saveStudy(btn); + this.__saveStudy(isTemplate, btn); }, this); const cancelButton = new qx.ui.form.Button(this.tr("Cancel")).set({ appearance: "lg-button", - enabled: isCurrentUserOwner && (!this.__isTemplate || canUpdateTemplate) + enabled: isCurrentUserOwner && (!isTemplate || canUpdateTemplate) }); osparc.utils.Utils.setIdToWidget(cancelButton, "studyDetailsEditorCancelBtn"); cancelButton.addListener("execute", () => this.setMode("display"), this); @@ -196,7 +230,7 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { editView.add(this.__tagsSection()); } - buttons.add(modeButton); + buttons.add(saveButton); buttons.add(cancelButton); editView.add(buttons); @@ -215,13 +249,13 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { appearance: "link-button" }); editButton.addListener("execute", () => { - const tagManager = new osparc.component.form.tag.TagManager(this.__selectedTags, editButton, "study", this.__model.getUuid()); + const tagManager = new osparc.component.form.tag.TagManager(this.__selectedTags, editButton, "study", this.__studyModel.getUuid()); tagManager.addListener("changeSelected", evt => { this.__selectedTags = evt.getData().selected; }, this); tagManager.addListener("close", () => { this.__renderTags(); - this.fireDataEvent("updateTags", this.__model.getUuid()); + this.fireDataEvent("updateTags", this.__studyModel.getUuid()); }, this); }); header.add(editButton); @@ -244,21 +278,21 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { return this.__tagsContainer; }, - __saveStudy: function(btn) { + __saveStudy: function(isTemplate, btn) { const params = { url: { - projectId: this.__model.getUuid() + projectId: this.__studyModel.getUuid() }, data: this.__serializeForm() }; - osparc.data.Resources.fetch(this.__isTemplate ? "templates" : "studies", "put", params) + osparc.data.Resources.fetch(isTemplate ? "templates" : "studies", "put", params) .then(data => { btn.resetIcon(); btn.getChildControl("icon").getContentElement() .removeClass("rotate"); - this.__model.set(data); + this.__studyModel.set(data); this.setMode("display"); - this.fireDataEvent(this.__isTemplate ? "updatedTemplate" : "updatedStudy", data); + this.fireEvent(isTemplate ? "updateTemplate" : "updateStudy"); }) .catch(err => { btn.resetIcon(); @@ -269,28 +303,43 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { }); }, + __openPermissions: function() { + const studyData = qx.util.Serializer.toNativeObject(this.__studyModel); + const permissionsView = new osparc.component.export.Permissions(studyData); + const window = permissionsView.createWindow(); + permissionsView.addListener("updateStudy", e => { + this.fireEvent("updateStudy"); + }); + permissionsView.addListener("finished", e => { + if (e.getData()) { + window.close(); + } + }, this); + window.open(); + }, + __openSaveAsTemplate: function() { - const saveAsTemplateView = new osparc.component.export.SaveAsTemplate(this.__model.getUuid(), this.__serializeForm()); - const window = osparc.component.export.SaveAsTemplate.createSaveAsTemplateWindow(saveAsTemplateView); + const saveAsTemplateView = new osparc.component.export.SaveAsTemplate(this.__studyModel.getUuid(), this.__serializeForm()); + const window = saveAsTemplateView.createWindow(); saveAsTemplateView.addListener("finished", e => { const template = e.getData(); if (template) { - this.fireDataEvent("updatedTemplate", template); - this.__model.set(template); + this.__studyModel.set(template); this.setMode("display"); - + this.fireEvent("updateTemplate"); window.close(); } }, this); - window.open(); }, __serializeForm: function() { - const data = { - ...qx.util.Serializer.toNativeObject(this.__model), + let data = {}; + data = { + ...qx.util.Serializer.toNativeObject(this.__studyModel), workbench: this.__workbench }; + for (let key in this.__fields) { data[key] = this.__fields[key].getValue(); } @@ -323,8 +372,8 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { }, __isUserOwner: function() { - if (this.__model) { - return this.__model.getPrjOwner() === osparc.auth.Data.getInstance().getEmail(); + if (this.__studyModel) { + return this.__studyModel.getPrjOwner() === osparc.auth.Data.getInstance().getEmail(); } return false; } diff --git a/services/web/client/source/class/osparc/component/metadata/StudyDetailsWindow.js b/services/web/client/source/class/osparc/component/metadata/StudyDetailsWindow.js deleted file mode 100644 index b2e6607a347..00000000000 --- a/services/web/client/source/class/osparc/component/metadata/StudyDetailsWindow.js +++ /dev/null @@ -1,58 +0,0 @@ -/* - * oSPARC - The SIMCORE frontend - https://osparc.io - * Copyright: 2019 IT'IS Foundation - https://itis.swiss - * License: MIT - https://opensource.org/licenses/MIT - * Authors: Odei Maiz (odeimaiz) - */ - -/** - * Window that contains the StudyDetails of the given study metadata. - * - * *Example* - * - * Here is a little example of how to use the widget. - * - * 
- *   const win = new osparc.component.metadata.StudyDetailsWindow(study);
- *   win.center();
- *   win.open();
- *
- */ - -qx.Class.define("osparc.component.metadata.StudyDetailsWindow", { - extend: qx.ui.window.Window, - - /** - * @param study {Object|osparc.data.model.Study} Study (metadata) - */ - construct: function(study) { - this.base(arguments, this.tr("Study information") + " · " + study.getName()); - - const windowWidth = 700; - const windowHeight = 800; - this.set({ - layout: new qx.ui.layout.Grow(), - autoDestroy: true, - contentPadding: 10, - showMinimize: false, - resizable: true, - modal: true, - width: windowWidth, - height: windowHeight - }); - - const studyDetails = new osparc.component.metadata.StudyDetails(study, windowWidth); - const scroll = new qx.ui.container.Scroll().set({ - height: windowHeight - }); - scroll.add(studyDetails); - this.add(scroll); - }, - - properties: { - appearance: { - refine: true, - init: "info-service-window" - } - } -}); diff --git a/services/web/client/source/class/osparc/component/metadata/StudyInfo.js b/services/web/client/source/class/osparc/component/metadata/StudyInfo.js index 33bb1badcc5..2eadc7b766a 100644 --- a/services/web/client/source/class/osparc/component/metadata/StudyInfo.js +++ b/services/web/client/source/class/osparc/component/metadata/StudyInfo.js @@ -38,7 +38,7 @@ qx.Class.define("osparc.component.metadata.StudyInfo", { this.__study = study; - this._add(this.__createExpandButton()); + this._add(this.__getMoreInfoMenuButton()); const windowWidth = 400; this._add(new osparc.component.metadata.StudyDetails(study, windowWidth)); }, @@ -46,18 +46,31 @@ qx.Class.define("osparc.component.metadata.StudyInfo", { members: { __study: null, - __createExpandButton: function() { - const expandButton = new qx.ui.form.Button().set({ - label: this.tr("Show all"), + __getMoreInfoMenuButton: function() { + const moreInfoButton = new qx.ui.form.Button(this.tr("More Info")).set({ icon: "@FontAwesome5Solid/external-link-alt/16", allowGrowX: false }); - expandButton.addListener("execute", function() { - const win = new osparc.component.metadata.StudyDetailsWindow(this.__study); - win.center(); - win.open(); + + moreInfoButton.addListener("execute", function() { + this.__createStudyDetailsEditor(); }, this); - return expandButton; + return moreInfoButton; + }, + + __createStudyDetailsEditor: function() { + const width = 500; + const height = 500; + const title = this.tr("Study Details Editor"); + const studyDetails = new osparc.component.metadata.StudyDetailsEditor(this.__study.serializeStudy(), false, width); + studyDetails.showOpenButton(false); + const win = osparc.component.metadata.StudyDetailsEditor.popUpInWindow(title, studyDetails, width, height); + [ + "updateStudy" + ].forEach(event => studyDetails.addListener(event, () => { + qx.event.message.Bus.getInstance().dispatchByName("updateStudy", this.__study.serializeStudy()); + win.close(); + })); } } }); diff --git a/services/web/client/source/class/osparc/component/service/manager/ActivityTree.js b/services/web/client/source/class/osparc/component/service/manager/ActivityTree.js index 69a0b2f1518..607052e6769 100644 --- a/services/web/client/source/class/osparc/component/service/manager/ActivityTree.js +++ b/services/web/client/source/class/osparc/component/service/manager/ActivityTree.js @@ -75,7 +75,7 @@ qx.Class.define("osparc.component.service.manager.ActivityTree", { }, events: { - treeUpdated: "qx.event.type.Event" + "treeUpdated": "qx.event.type.Event" }, members: { diff --git a/services/web/client/source/class/osparc/component/widget/InputsMapperTreeItem.js b/services/web/client/source/class/osparc/component/widget/InputsMapperTreeItem.js index 4ec36fcb3bb..9827786b413 100644 --- a/services/web/client/source/class/osparc/component/widget/InputsMapperTreeItem.js +++ b/services/web/client/source/class/osparc/component/widget/InputsMapperTreeItem.js @@ -39,10 +39,6 @@ qx.Class.define("osparc.component.widget.InputsMapperTreeItem", { extend: qx.ui.tree.VirtualTreeItem, - construct: function() { - this.base(arguments); - }, - properties: { isDir: { check: "Boolean", diff --git a/services/web/client/source/class/osparc/component/widget/OrganizationListItem.js b/services/web/client/source/class/osparc/component/widget/OrganizationListItem.js deleted file mode 100644 index 8896dafcb8b..00000000000 --- a/services/web/client/source/class/osparc/component/widget/OrganizationListItem.js +++ /dev/null @@ -1,96 +0,0 @@ -/* ************************************************************************ - - osparc - the simcore frontend - - https://osparc.io - - Copyright: - 2020 IT'IS Foundation, https://itis.swiss - - License: - MIT: https://opensource.org/licenses/MIT - - Authors: - * Odei Maiz (odeimaiz) - -************************************************************************ */ - -/** - * - */ - -qx.Class.define("osparc.component.widget.OrganizationListItem", { - extend: qx.ui.core.Widget, - implement: qx.ui.form.IModel, - include: qx.ui.form.MModelProperty, - - construct: function() { - this.base(arguments); - - const layout = new qx.ui.layout.HBox(); - this._setLayout(layout); - }, - - properties: { - gid: { - check: "String", - nullable: false - }, - - label: { - check: "String", - apply: "_applyLabel", - nullable: false - }, - - description: { - check: "String", - init: "", - apply: "_applyDescription", - nullable: true - } - }, - - members: { - - _createChildControlImpl: function(id) { - let control; - switch (id) { - case "label": - control = new qx.ui.basic.Label().set({ - font: osparc.utils.Utils.getFont(14, true), - alignY: "bottom" - }); - this._add(control); - break; - case "description": - control = new qx.ui.basic.Label().set({ - font: osparc.utils.Utils.getFont(12), - alignY: "bottom" - }); - this._add(control, { - flex: 1 - }); - break; - } - - return control || this.base(arguments, id); - }, - - _applyLabel: function(value) { - if (value === null) { - return; - } - const label = this.getChildControl("label"); - label.setValue(value); - }, - - _applyDescription: function(value) { - if (value === null) { - return; - } - const label = this.getChildControl("description"); - label.setValue(": " + value); - } - } -}); diff --git a/services/web/client/source/class/osparc/component/widget/inputs/NodeOutputTreeItem.js b/services/web/client/source/class/osparc/component/widget/inputs/NodeOutputTreeItem.js index 1e4f62fa096..4cb0e7819c2 100644 --- a/services/web/client/source/class/osparc/component/widget/inputs/NodeOutputTreeItem.js +++ b/services/web/client/source/class/osparc/component/widget/inputs/NodeOutputTreeItem.js @@ -44,10 +44,6 @@ qx.Class.define("osparc.component.widget.inputs.NodeOutputTreeItem", { extend: qx.ui.tree.VirtualTreeItem, - construct: function() { - this.base(arguments); - }, - properties: { isDir: { check: "Boolean", diff --git a/services/web/client/source/class/osparc/component/workbench/NodeUI.js b/services/web/client/source/class/osparc/component/workbench/NodeUI.js index 4a047c0b726..40b5b10c18a 100644 --- a/services/web/client/source/class/osparc/component/workbench/NodeUI.js +++ b/services/web/client/source/class/osparc/component/workbench/NodeUI.js @@ -64,6 +64,9 @@ qx.Class.define("osparc.component.workbench.NodeUI", { this.__createNodeLayout(); this.subscribeToFilterGroup("workbench"); + + this.getChildControl("captionbar").setCursor("move"); + this.getChildControl("title").setCursor("move"); }, properties: { @@ -111,10 +114,6 @@ qx.Class.define("osparc.component.workbench.NodeUI", { return this.getNode().getNodeId(); }, - getCaptionBar: function() { - return this.getChildControl("captionbar"); - }, - _createChildControlImpl: function(id) { let control; switch (id) { @@ -241,6 +240,7 @@ qx.Class.define("osparc.component.workbench.NodeUI", { paddingLeft: 5, paddingRight: 5 }); + uiPort.setCursor("pointer"); return uiPort; }, diff --git a/services/web/client/source/class/osparc/component/workbench/WorkbenchUI.js b/services/web/client/source/class/osparc/component/workbench/WorkbenchUI.js index d7b1816e3b2..4a54b281d4f 100644 --- a/services/web/client/source/class/osparc/component/workbench/WorkbenchUI.js +++ b/services/web/client/source/class/osparc/component/workbench/WorkbenchUI.js @@ -870,14 +870,17 @@ qx.Class.define("osparc.component.workbench.WorkbenchUI", { qx.event.message.Bus.getInstance().dispatchByName("maximizeIframe", false); + this.addListener("resize", () => this.__updateAllEdges(), this); + }); + + this.addListenerOnce("appear", () => { const domEl = this.getContentElement().getDomElement(); domEl.addEventListener("dragenter", this.__dragEnter.bind(this), false); domEl.addEventListener("dragover", this.__dragOver.bind(this), false); domEl.addEventListener("dragleave", this.__dragLeave.bind(this), false); domEl.addEventListener("drop", this.__drop.bind(this), false); - - this.addListener("resize", () => this.__updateAllEdges(), this); }); + this.addListener("disappear", () => { // Reset filters osparc.component.filter.UIFilterController.getInstance().resetGroup("workbench"); @@ -905,12 +908,9 @@ qx.Class.define("osparc.component.workbench.WorkbenchUI", { return (pointerEvent.target instanceof SVGElement); }, - __allowDrop: function(pointerEvent) { + __allowDropFile: function(pointerEvent) { const files = pointerEvent.dataTransfer.files; - if (files.length === 1) { - return files[0].type !== ""; - } - return false; + return files.length === 1; }, __dragEnter: function(e) { @@ -928,7 +928,7 @@ qx.Class.define("osparc.component.workbench.WorkbenchUI", { __drop: function(e) { this.__dragging(e, false); - if (this.__allowDrop(e)) { + if (this.__allowDropFile(e)) { const pos = { x: e.offsetX, y: e.offsetY diff --git a/services/web/client/source/class/osparc/dashboard/CollaboratorListItem.js b/services/web/client/source/class/osparc/dashboard/CollaboratorListItem.js new file mode 100644 index 00000000000..9e6d7f15c58 --- /dev/null +++ b/services/web/client/source/class/osparc/dashboard/CollaboratorListItem.js @@ -0,0 +1,134 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +qx.Class.define("osparc.dashboard.CollaboratorListItem", { + extend: osparc.dashboard.ServiceBrowserListItem, + + construct: function() { + this.base(arguments); + }, + + properties: { + isOrganization: { + check: "Boolean", + event: "changeIsOrganization", + nullable: true + }, + + accessRights: { + check: "Object", + apply: "_applyAccessRights", + event: "changeAccessRights", + nullable: true + }, + + showOptions: { + check: "Boolean", + apply: "_applyShowOptions", + event: "changeShowOptions", + nullable: true + } + }, + + events: { + "promoteCollaborator": "qx.event.type.Data", + "removeCollaborator": "qx.event.type.Data" + }, + + members: { + _createChildControlImpl: function(id) { + let control; + switch (id) { + case "options": { + const iconSize = 25; + control = new qx.ui.form.MenuButton().set({ + maxWidth: iconSize, + maxHeight: iconSize, + alignX: "center", + alignY: "middle", + icon: "@FontAwesome5Solid/ellipsis-v/"+(iconSize-11), + focusable: false + }); + osparc.utils.Utils.setIdToWidget(control, "studyItemMenuButton"); + this._add(control, { + row: 0, + column: 3, + rowSpan: 2 + }); + break; + } + } + + return control || this.base(arguments, id); + }, + + _applyAccessRights: function(value) { + if (value === null) { + return; + } + const subtitle = this.getChildControl("contact"); + if (value.getDelete()) { + subtitle.setValue(this.tr("Owner")); + } else if (value.getWrite()) { + subtitle.setValue(this.tr("Collaborator")); + } else { + subtitle.setValue(this.tr("Viewer")); + } + }, + + _applyShowOptions: function(value) { + const optionsMenu = this.getChildControl("options"); + optionsMenu.setVisibility(value ? "visible" : "excluded"); + if (value) { + const menu = this.__getOptionsMenu(); + optionsMenu.setMenu(menu); + optionsMenu.setVisibility(menu.getChildren().length ? "visible" : "excluded"); + } + }, + + __getOptionsMenu: function() { + const menu = new qx.ui.menu.Menu().set({ + position: "bottom-right" + }); + + const accessRights = this.getAccessRights(); + if (!accessRights.getDelete() && !this.getIsOrganization()) { + const makeOwnerButton = new qx.ui.menu.Button(this.tr("Make Owner")); + makeOwnerButton.addListener("execute", () => { + this.fireDataEvent("promoteCollaborator", { + gid: this.getKey(), + name: this.getTitle() + }); + }); + menu.add(makeOwnerButton); + } + + if (!accessRights.getDelete()) { + const removeButton = new qx.ui.menu.Button(this.tr("Remove Collaborator")); + removeButton.addListener("execute", () => { + this.fireDataEvent("removeCollaborator", { + gid: this.getKey(), + name: this.getTitle() + }); + }); + menu.add(removeButton); + } + + return menu; + } + } +}); diff --git a/services/web/client/source/class/osparc/dashboard/OrgMemberListItem.js b/services/web/client/source/class/osparc/dashboard/OrgMemberListItem.js new file mode 100644 index 00000000000..24f7ca06b66 --- /dev/null +++ b/services/web/client/source/class/osparc/dashboard/OrgMemberListItem.js @@ -0,0 +1,125 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +qx.Class.define("osparc.dashboard.OrgMemberListItem", { + extend: osparc.dashboard.ServiceBrowserListItem, + + construct: function() { + this.base(arguments); + }, + + properties: { + accessRights: { + check: "Object", + apply: "_applyAccessRights", + event: "changeAccessRights", + nullable: true + }, + + showOptions: { + check: "Boolean", + apply: "_applyShowOptions", + event: "changeShowOptions", + nullable: true + } + }, + + events: { + "promoteOrgMember": "qx.event.type.Data", + "removeOrgMember": "qx.event.type.Data" + }, + + members: { + _createChildControlImpl: function(id) { + let control; + switch (id) { + case "options": { + const iconSize = 25; + control = new qx.ui.form.MenuButton().set({ + maxWidth: iconSize, + maxHeight: iconSize, + alignX: "center", + alignY: "middle", + icon: "@FontAwesome5Solid/ellipsis-v/"+(iconSize-11), + focusable: false + }); + osparc.utils.Utils.setIdToWidget(control, "studyItemMenuButton"); + this._add(control, { + row: 0, + column: 3, + rowSpan: 2 + }); + break; + } + } + + return control || this.base(arguments, id); + }, + + _applyAccessRights: function(value) { + if (value === null) { + return; + } + const subtitle = this.getChildControl("contact"); + if (value.getDelete()) { + subtitle.setValue(this.tr("Administrator")); + } else if (value.getWrite()) { + subtitle.setValue(this.tr("Manager")); + } else { + subtitle.setValue(this.tr("Member")); + } + }, + + _applyShowOptions: function(value) { + const optionsMenu = this.getChildControl("options"); + optionsMenu.setVisibility(value ? "visible" : "excluded"); + if (value) { + const menu = this.__getOptionsMenu(); + optionsMenu.setMenu(menu); + } + }, + + __getOptionsMenu: function() { + const menu = new qx.ui.menu.Menu().set({ + position: "bottom-right" + }); + + const accessRights = this.getAccessRights(); + if (accessRights && !accessRights.getDelete() && !accessRights.getWrite()) { + const promoteButton = new qx.ui.menu.Button(this.tr("Promote to Manager")); + promoteButton.addListener("execute", () => { + this.fireDataEvent("promoteOrgMember", { + key: this.getKey(), + name: this.getTitle() + }); + }); + menu.add(promoteButton); + } + + const removeButton = new qx.ui.menu.Button(this.tr("Remove Member")); + removeButton.addListener("execute", () => { + this.fireDataEvent("removeOrgMember", { + key: this.getKey(), + name: this.getTitle() + }); + }); + menu.add(removeButton); + + return menu; + } + } +}); diff --git a/services/web/client/source/class/osparc/dashboard/OrganizationEditor.js b/services/web/client/source/class/osparc/dashboard/OrganizationEditor.js new file mode 100644 index 00000000000..0a2b67be035 --- /dev/null +++ b/services/web/client/source/class/osparc/dashboard/OrganizationEditor.js @@ -0,0 +1,173 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +qx.Class.define("osparc.dashboard.OrganizationEditor", { + extend: qx.ui.core.Widget, + + construct: function(newOrg = true) { + this.base(arguments); + + this._setLayout(new qx.ui.layout.VBox(8)); + + const manager = this.__validator = new qx.ui.form.validation.Manager(); + const title = this.getChildControl("title"); + title.setRequired(true); + manager.add(title); + this.getChildControl("description"); + this.getChildControl("thumbnail"); + newOrg ? this.getChildControl("create") : this.getChildControl("save"); + }, + + statics: { + popUpInWindow: function(title, organizationEditor, width = 300, height = 200) { + const win = new qx.ui.window.Window(title).set({ + autoDestroy: true, + layout: new qx.ui.layout.VBox(), + appearance: "service-window", + showMinimize: false, + showMaximize: false, + resizable: true, + contentPadding: 10, + width: width, + height: height, + modal: true + }); + win.add(organizationEditor); + win.center(); + win.open(); + organizationEditor.addListener("cancel", () => { + win.close(); + }); + return win; + } + }, + + properties: { + gid: { + check: "Number", + init: 0, + nullable: false, + event: "changeGid" + }, + + label: { + check: "String", + init: "", + nullable: false, + event: "changeLabel" + }, + + description: { + check: "String", + init: "", + nullable: false, + event: "changeDescription" + }, + + thumbnail: { + check: "String", + init: "", + nullable: false, + event: "changeThumbnail" + } + }, + + events: { + "createOrg": "qx.event.type.Event", + "updateOrg": "qx.event.type.Event", + "cancel": "qx.event.type.Event" + }, + + members: { + _createChildControlImpl: function(id) { + let control; + switch (id) { + case "title": { + control = new qx.ui.form.TextField().set({ + font: "title-14", + placeholder: this.tr("Title"), + height: 35 + }); + this.bind("label", control, "value"); + control.bind("value", this, "label"); + this._add(control); + break; + } + case "description": { + control = new qx.ui.form.TextArea().set({ + font: "text-14", + placeholder: this.tr("Description"), + autoSize: true, + minHeight: 70, + maxHeight: 140 + }); + this.bind("description", control, "value"); + control.bind("value", this, "description"); + this._add(control); + break; + } + case "thumbnail": { + control = new qx.ui.form.TextField().set({ + font: "text-14", + placeholder: this.tr("Thumbnail"), + height: 35 + }); + this.bind("thumbnail", control, "value"); + control.bind("value", this, "thumbnail"); + this._add(control); + break; + } + case "create": { + const buttons = this.getChildControl("buttonsLayout"); + control = new osparc.ui.form.FetchButton(this.tr("Create")); + control.addListener("execute", () => { + if (this.__validator.validate()) { + control.setFetching(true); + this.fireEvent("createOrg"); + } + }, this); + buttons.addAt(control, 0); + break; + } + case "save": { + const buttons = this.getChildControl("buttonsLayout"); + control = new osparc.ui.form.FetchButton(this.tr("Save")); + control.addListener("execute", () => { + if (this.__validator.validate()) { + control.setFetching(true); + this.fireEvent("updateOrg"); + } + }, this); + buttons.addAt(control, 0); + break; + } + case "buttonsLayout": { + control = new qx.ui.container.Composite(new qx.ui.layout.HBox(8).set({ + alignX: "right" + })); + const cancelButton = new qx.ui.form.Button(this.tr("Cancel")); + cancelButton.addListener("execute", () => this.fireEvent("cancel"), this); + control.add(cancelButton); + this._add(control); + break; + } + } + + return control || this.base(arguments, id); + } + } +}); diff --git a/services/web/client/source/class/osparc/dashboard/OrganizationListItem.js b/services/web/client/source/class/osparc/dashboard/OrganizationListItem.js new file mode 100644 index 00000000000..c7a83ae6032 --- /dev/null +++ b/services/web/client/source/class/osparc/dashboard/OrganizationListItem.js @@ -0,0 +1,100 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +qx.Class.define("osparc.dashboard.OrganizationListItem", { + extend: osparc.dashboard.ServiceBrowserListItem, + + construct: function() { + this.base(arguments); + }, + + properties: { + accessRights: { + check: "Object", + nullable: false, + apply: "_applyAccessRights", + event: "changeAcessRights" + } + }, + + events: { + "openEditOrganization": "qx.event.type.Data" + }, + + members: { + _createChildControlImpl: function(id) { + let control; + switch (id) { + case "options": { + const iconSize = 25; + control = new qx.ui.form.MenuButton().set({ + maxWidth: iconSize, + maxHeight: iconSize, + alignX: "center", + alignY: "middle", + icon: "@FontAwesome5Solid/ellipsis-v/"+(iconSize-11), + focusable: false + }); + osparc.utils.Utils.setIdToWidget(control, "studyItemMenuButton"); + this._add(control, { + row: 0, + column: 3, + rowSpan: 2 + }); + break; + } + } + + return control || this.base(arguments, id); + }, + + _applyAccessRights: function(value) { + if (value === null) { + return; + } + if (value.getDelete()) { + const optionsMenu = this.getChildControl("options"); + const menu = this.__getOptionsMenu(); + optionsMenu.setMenu(menu); + } + }, + + __getOptionsMenu: function() { + const menu = new qx.ui.menu.Menu().set({ + position: "bottom-right" + }); + + const editOrgButton = new qx.ui.menu.Button(this.tr("Edit details")); + editOrgButton.addListener("execute", () => { + this.fireDataEvent("openEditOrganization", this.getKey()); + }); + menu.add(editOrgButton); + + return menu; + }, + + // overriden + _applyThumbnail: function(value) { + const thumbnail = this.getChildControl("thumbnail"); + if (value) { + thumbnail.setSource(value); + } else { + thumbnail.setSource("@FontAwesome5Solid/users/24"); + } + } + } +}); diff --git a/services/web/client/source/class/osparc/dashboard/ServiceBrowser.js b/services/web/client/source/class/osparc/dashboard/ServiceBrowser.js index 49b6891bca1..0bbf49cdce2 100644 --- a/services/web/client/source/class/osparc/dashboard/ServiceBrowser.js +++ b/services/web/client/source/class/osparc/dashboard/ServiceBrowser.js @@ -160,7 +160,7 @@ qx.Class.define("osparc.dashboard.ServiceBrowser", { ctrl.bindProperty("key", "key", null, item, id); ctrl.bindProperty("version", "version", null, item, id); ctrl.bindProperty("name", "title", null, item, id); - ctrl.bindProperty("description", "description", null, item, id); + ctrl.bindProperty("description", "subtitle", null, item, id); ctrl.bindProperty("type", "type", null, item, id); ctrl.bindProperty("category", "category", null, item, id); ctrl.bindProperty("contact", "contact", null, item, id); diff --git a/services/web/client/source/class/osparc/dashboard/ServiceBrowserListItem.js b/services/web/client/source/class/osparc/dashboard/ServiceBrowserListItem.js index 447d7cf5dbe..53045e26795 100644 --- a/services/web/client/source/class/osparc/dashboard/ServiceBrowserListItem.js +++ b/services/web/client/source/class/osparc/dashboard/ServiceBrowserListItem.js @@ -32,7 +32,7 @@ * bindItem: (c, item, id) => { * c.bindProperty("key", "model", null, item, id); * c.bindProperty("name", "title", null, item, id); - * c.bindProperty("description", "description", null, item, id); + * c.bindProperty("description", "subtitle", null, item, id); * c.bindProperty("type", "type", null, item, id); * c.bindProperty("category", "category", null, item, id); * c.bindProperty("contact", "contact", null, item, id); @@ -49,8 +49,8 @@ qx.Class.define("osparc.dashboard.ServiceBrowserListItem", { construct: function() { this.base(arguments); - const layout = new qx.ui.layout.Grid(0, 5); - layout.setColumnFlex(0, 1); + const layout = new qx.ui.layout.Grid(8, 5); + layout.setColumnFlex(1, 1); this._setLayout(layout); this.setPadding(5); @@ -83,15 +83,21 @@ qx.Class.define("osparc.dashboard.ServiceBrowserListItem", { nullable : true }, + thumbnail: { + check : "String", + apply : "_applyThumbnail", + nullable : true + }, + title: { check : "String", apply : "_applyTitle", nullable : true }, - description: { + subtitle: { check : "String", - apply : "_applyDescription", + apply : "_applySubtitle", nullable : true }, @@ -139,23 +145,39 @@ qx.Class.define("osparc.dashboard.ServiceBrowserListItem", { _createChildControlImpl: function(id) { let control; switch (id) { + case "thumbnail": + control = new qx.ui.basic.Image().set({ + scale: true, + allowGrowX: true, + allowGrowY: true, + allowShrinkX: true, + allowShrinkY: true, + maxWidth: 32, + maxHeight: 32 + }); + this._add(control, { + row: 0, + column: 0, + rowSpan: 2 + }); + break; case "title": control = new qx.ui.basic.Label().set({ font: "title-14" }); this._add(control, { row: 0, - column: 0 + column: 1 }); break; - case "description": + case "subtitle": control = new osparc.ui.markdown.Markdown().set({ font: "text-13", maxHeight: 16 }); this._add(control, { row: 1, - column: 0 + column: 1 }); break; case "contact": @@ -164,7 +186,7 @@ qx.Class.define("osparc.dashboard.ServiceBrowserListItem", { }); this._add(control, { row: 1, - column: 1 + column: 2 }); break; } @@ -181,6 +203,14 @@ qx.Class.define("osparc.dashboard.ServiceBrowserListItem", { osparc.utils.Utils.setIdToWidget(this, "serviceBrowserListItem_"+id); }, + _applyThumbnail: function(value) { + if (value === null) { + return; + } + const thumbnail = this.getChildControl("thumbnail"); + thumbnail.setSource(value); + }, + _applyTitle: function(value) { if (value === null) { return; @@ -189,11 +219,11 @@ qx.Class.define("osparc.dashboard.ServiceBrowserListItem", { label.setValue(value); }, - _applyDescription: function(value) { + _applySubtitle: function(value) { if (value === null) { return; } - const label = this.getChildControl("description"); + const label = this.getChildControl("subtitle"); label.setValue(value); }, diff --git a/services/web/client/source/class/osparc/dashboard/StudyBrowser.js b/services/web/client/source/class/osparc/dashboard/StudyBrowser.js index a004254ffc9..f07bc02e376 100644 --- a/services/web/client/source/class/osparc/dashboard/StudyBrowser.js +++ b/services/web/client/source/class/osparc/dashboard/StudyBrowser.js @@ -91,6 +91,21 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { this.__itemSelected(null); }, + __reloadUserStudy: function(studyId) { + const params = { + url: { + projectId: studyId + } + }; + osparc.data.Resources.getOne("studies", params) + .then(studyData => { + this.__resetStudyItem(studyData); + }) + .catch(err => { + console.error(err); + }); + }, + /** * Function that asks the backend for the list of studies belonging to the user * and sets it @@ -99,14 +114,14 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { if (osparc.data.Permissions.getInstance().canDo("studies.user.read")) { osparc.data.Resources.get("studies") .then(studies => { - this.__setStudyList(studies); + this.__resetStudyList(studies); this.__itemSelected(null); }) .catch(err => { console.error(err); }); } else { - this.__setStudyList([]); + this.__resetStudyList([]); } }, @@ -117,14 +132,14 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { if (osparc.data.Permissions.getInstance().canDo("studies.templates.read")) { osparc.data.Resources.get("templates") .then(templates => { - this.__setTemplateList(templates); + this.__resetTemplateList(templates); this.__itemSelected(null); }) .catch(err => { console.error(err); }); } else { - this.__setTemplateList([]); + this.__resetTemplateList([]); } }, @@ -308,7 +323,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { commandEsc.addListener("execute", e => { this.__itemSelected(null); }); - osparc.store.Store.getInstance().addListener("changeTags", () => this.__setStudyList(osparc.store.Store.getInstance().getStudies()), this); + osparc.store.Store.getInstance().addListener("changeTags", () => this.__resetStudyList(osparc.store.Store.getInstance().getStudies()), this); }, __createStudyBtnClkd: function(templateData) { @@ -328,7 +343,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { }, __createStudy: function(minStudyData, templateId) { - this.__showLoadingPage(this.tr("Creating Study")); + this.__showLoadingPage(this.tr("Creating ") + (minStudyData.name || this.tr("Study"))); if (templateId) { const params = { url: { @@ -358,7 +373,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { }, __startStudy: function(studyData) { - this.__showLoadingPage(this.tr("Starting Study")); + this.__showLoadingPage(this.tr("Starting ") + (studyData.name || this.tr("Study"))); osparc.store.Store.getInstance().getServicesDAGs(false) .then(() => { this.__hideLoadingPage(); @@ -368,7 +383,6 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { __loadStudy: function(studyData) { const study = new osparc.data.model.Study(studyData); - study.setAccessRights({}); this.__studyEditor = this.__studyEditor || new osparc.desktop.StudyEditor(); this.__studyEditor.setStudy(study); this.fireDataEvent("startStudy", this.__studyEditor); @@ -392,7 +406,16 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { return tempList; }, - __setStudyList: function(userStudyList) { + __resetStudyItem: function(studyData) { + const userStudyList = this.__userStudies; + const index = userStudyList.findIndex(userStudy => userStudy["uuid"] === studyData["uuid"]); + if (index !== -1) { + this.__userStudies[index] = studyData; + this.__resetStudyList(userStudyList); + } + }, + + __resetStudyList: function(userStudyList) { this.__userStudies = userStudyList; this.__userStudyContainer.removeAll(); this.self().sortStudyList(userStudyList); @@ -402,7 +425,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { osparc.component.filter.UIFilterController.dispatch("studyBrowser"); }, - __setTemplateList: function(tempStudyList) { + __resetTemplateList: function(tempStudyList) { this.__templateStudies = tempStudyList; this.__templateStudyContainer.removeAll(); this.__templateStudyContainer.add(this.__createNewStudyButton()); @@ -467,11 +490,16 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { const moreInfoButton = this.__getMoreInfoMenuButton(studyData, isTemplate); menu.add(moreInfoButton); - const isCurrentUserOwner = this.__isUserOwner(studyData); - const canCreateTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.create"); - if (isCurrentUserOwner && !isTemplate && canCreateTemplate) { - const saveAsTemplateButton = this.__getSaveAsTemplateMenuButton(studyData); - menu.add(saveAsTemplateButton); + if (!isTemplate) { + const shareStudyButton = this.__getPermissionsMenuButton(studyData); + menu.add(shareStudyButton); + + const isCurrentUserOwner = this.__isUserOwner(studyData); + const canCreateTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.create"); + if (isCurrentUserOwner && canCreateTemplate) { + const saveAsTemplateButton = this.__getSaveAsTemplateMenuButton(studyData); + menu.add(saveAsTemplateButton); + } } const deleteButton = this.__getDeleteStudyMenuButton(studyData, isTemplate); @@ -495,41 +523,35 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { __getMoreInfoMenuButton: function(studyData, isTemplate) { const moreInfoButton = new qx.ui.menu.Button(this.tr("More Info")); moreInfoButton.addListener("execute", () => { - const winWidth = 400; - const studyDetailsEditor = this.__createStudyDetailsEditor(studyData, isTemplate, winWidth); - const win = new qx.ui.window.Window(this.tr("Study Details Editor")).set({ - autoDestroy: true, - layout: new qx.ui.layout.VBox(), - appearance: "service-window", - showMinimize: false, - showMaximize: false, - resizable: true, - contentPadding: 10, - width: winWidth, - height: 400, - modal: true - }); - [ - "updatedStudy", - "updatedTemplate", - "openedStudy" - ].forEach(event => { - studyDetailsEditor.addListener(event, () => { - win.close(); - }); - }); - win.add(studyDetailsEditor); - win.open(); - win.center(); + this.__createStudyDetailsEditor(studyData, isTemplate); }, this); return moreInfoButton; }, + __getPermissionsMenuButton: function(studyData) { + const permissionsButton = new qx.ui.menu.Button(this.tr("Permissions")); + permissionsButton.addListener("execute", () => { + const permissionsView = new osparc.component.export.Permissions(studyData); + permissionsView.addListener("updateStudy", e => { + const studyId = e.getData(); + this.__reloadUserStudy(studyId); + }, this); + const window = permissionsView.createWindow(); + permissionsView.addListener("finished", e => { + if (e.getData()) { + window.close(); + } + }, this); + window.open(); + }, this); + return permissionsButton; + }, + __getSaveAsTemplateMenuButton: function(studyData) { - const saveAsTemplateButton = new qx.ui.menu.Button(this.tr("Save as template")); + const saveAsTemplateButton = new qx.ui.menu.Button(this.tr("Save as Template")); saveAsTemplateButton.addListener("execute", () => { const saveAsTemplateView = new osparc.component.export.SaveAsTemplate(studyData.uuid, studyData); - const window = osparc.component.export.SaveAsTemplate.createSaveAsTemplateWindow(saveAsTemplateView); + const window = saveAsTemplateView.createWindow(); saveAsTemplateView.addListener("finished", e => { const template = e.getData(); if (template) { @@ -544,7 +566,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { __getDeleteStudyMenuButton: function(studyData, isTemplate) { const isCurrentUserOwner = this.__isUserOwner(studyData); - if (!isCurrentUserOwner) { + if (isTemplate && !isCurrentUserOwner) { return null; } @@ -556,7 +578,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { win.open(); win.addListener("close", () => { if (win.getConfirmed()) { - this.__deleteStudies([studyData], isTemplate); + this.__deleteStudy(studyData, isTemplate); } }, this); }, this); @@ -615,10 +637,9 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { __createStudyDetailsEditor: function(studyData, isTemplate, winWidth) { const studyDetails = new osparc.component.metadata.StudyDetailsEditor(studyData, isTemplate, winWidth); - studyDetails.addListener("closed", () => this.__itemSelected(null), this); - studyDetails.addListener("updatedStudy", () => this.reloadUserStudies(), this); - studyDetails.addListener("updatedTemplate", () => this.reloadTemplateStudies(), this); - studyDetails.addListener("openedStudy", () => { + studyDetails.addListener("updateStudy", () => this.reloadUserStudies(), this); + studyDetails.addListener("updateTemplate", () => this.reloadTemplateStudies(), this); + studyDetails.addListener("openStudy", () => { if (isTemplate) { this.__createStudyBtnClkd(studyData); } else { @@ -627,13 +648,20 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { }, this); studyDetails.addListener("updateTags", () => { if (isTemplate) { - this.__setTemplateList(osparc.store.Store.getInstance().getTemplates()); + this.__resetTemplateList(osparc.store.Store.getInstance().getTemplates()); } else { - this.__setStudyList(osparc.store.Store.getInstance().getStudies()); + this.__resetStudyList(osparc.store.Store.getInstance().getStudies()); } }); - return studyDetails; + const height = 400; + const title = this.tr("Study Details Editor"); + const win = osparc.component.metadata.StudyDetailsEditor.popUpInWindow(title, studyDetails, winWidth, height); + [ + "updateStudy", + "updateTemplate", + "openStudy" + ].forEach(event => studyDetails.addListener(event, () => win.close())); }, __updateDeleteStudiesButton: function(studiesDeleteButton) { @@ -667,20 +695,39 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { } }, + __deleteStudy: function(studyData, isTemplate = false) { + const myGid = osparc.auth.Data.getInstance().getGroupId(); + const collabGids = Object.keys(studyData["accessRights"]); + const amICollaborator = collabGids.indexOf(myGid) > -1; + + const params = { + url: { + projectId: studyData.uuid + } + }; + let operationPromise = null; + if (collabGids.length > 1 && amICollaborator) { + // remove collaborator + const permissions = osparc.component.export.Permissions; + permissions.removeCollaborator(studyData, myGid); + params["data"] = studyData; + operationPromise = osparc.data.Resources.fetch(isTemplate ? "templates" : "studies", "put", params); + } else { + // delete study + operationPromise = osparc.data.Resources.fetch(isTemplate ? "templates" : "studies", "delete", params, studyData.uuid); + } + operationPromise + .then(() => this.__removeFromStudyList(studyData.uuid, isTemplate)) + .catch(err => { + console.error(err); + osparc.component.message.FlashMessenger.getInstance().logAs(err, "ERROR"); + }) + .finally(this.__itemSelected(null)); + }, + __deleteStudies: function(studiesData, areTemplates = false) { studiesData.forEach(studyData => { - const params = { - url: { - projectId: studyData.uuid - } - }; - osparc.data.Resources.fetch(areTemplates ? "templates" : "studies", "delete", params, studyData.uuid) - .then(() => this.__removeFromStudyList(studyData.uuid, areTemplates)) - .catch(err => { - console.error(err); - osparc.component.message.FlashMessenger.getInstance().logAs(err, "ERROR"); - }) - .finally(this.__itemSelected(null)); + this.__deleteStudy(studyData, areTemplates); }); }, diff --git a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonBase.js b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonBase.js index 967878ce008..d2caa7afe33 100644 --- a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonBase.js +++ b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonBase.js @@ -100,7 +100,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonBase", { }); this._mainLayout.addAt(control, 1); break; - case "shared-creator": + case "shared-description2": control = new qx.ui.container.Composite(new qx.ui.layout.HBox(6)).set({ anonymous: true }); @@ -108,18 +108,18 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonBase", { break; case "shared": { control = new qx.ui.basic.Image(); - const sharedCreatorLayout = this.getChildControl("shared-creator"); - sharedCreatorLayout.addAt(control, 0); + const sharedDescription2Layout = this.getChildControl("shared-description2"); + sharedDescription2Layout.addAt(control, 0); break; } - case "creator": { + case "description2": { control = new qx.ui.basic.Label().set({ anonymous: true, font: "text-13", allowGrowY: false }); - const sharedCreatorLayout = this.getChildControl("shared-creator"); - sharedCreatorLayout.addAt(control, 1, { + const sharedDescription2Layout = this.getChildControl("shared-description2"); + sharedDescription2Layout.addAt(control, 1, { flex: 1 }); break; diff --git a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js index 2262d12984f..55e4e796eb1 100644 --- a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js +++ b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js @@ -108,7 +108,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { statics: { MENU_BTN_Z: 20, MENU_BTN_WIDTH: 25, - SHARED_ME: "@FontAwesome5Solid/user/14", + SHARED_USER: "@FontAwesome5Solid/user/14", SHARED_ORGS: "@FontAwesome5Solid/users/14", SHARED_ALL: "@FontAwesome5Solid/globe/14" }, @@ -199,7 +199,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { _applyLastChangeDate: function(value, old) { if (value && !this.getIsTemplate()) { - const label = this.getChildControl("description"); + const label = this.getChildControl("description2"); let dateStr = null; if (value.getDate() === (new Date()).getDate()) { dateStr = this.tr("Today"); @@ -215,7 +215,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { _applyCreator: function(value, old) { if (this.getIsTemplate()) { - const label = this.getChildControl("creator"); + const label = this.getChildControl("description2"); label.setValue(value); } }, @@ -227,48 +227,76 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { const store = osparc.store.Store.getInstance(); Promise.all([ store.getGroupsAll(), - store.getGroupsOrganizations(), - store.getGroupsMe() + store.getGroupsMe(), + store.getVisibleMembers(), + store.getGroupsOrganizations() ]) .then(values => { - const groups = [[values[0]], values[1], [values[2]]]; + const all = values[0]; + const me = values[1]; + const orgMembs = []; + const orgMembers = values[2]; + for (const gid of Object.keys(orgMembers)) { + orgMembs.push(orgMembers[gid]); + } + const orgs = values.length === 4 ? values[3] : []; + const groups = [[me], orgMembs, orgs, [all]]; this.__setSharedIcon(image, value, groups); }); } }, __setSharedIcon: function(image, value, groups) { + let sharedGrps = []; + const myGroupId = osparc.auth.Data.getInstance().getGroupId(); for (let i=0; i { - const grp = groups[i].find(group => group["gid"] === parseInt(key)); + const sharedGrp = []; + const gids = Object.keys(value); + for (let j=0; j group["gid"] === gid); if (grp) { - hintText += (grp["label"] + "
"); + sharedGrp.push(grp); } - }); - if (hintText === "") { + } + if (sharedGrp.length === 0) { continue; + } else { + sharedGrps = sharedGrps.concat(sharedGrp); } switch (i) { case 0: - image.setSource(this.self().SHARED_ALL); - break; case 1: - image.setSource(this.self().SHARED_ORGS); + image.setSource(this.self().SHARED_USER); break; case 2: - image.setSource(this.self().SHARED_ME); + image.setSource(this.self().SHARED_ORGS); + break; + case 3: + image.setSource(this.self().SHARED_ALL); break; } + } - const hint = new osparc.ui.hint.Hint(image, hintText).set({ - active: false - }); - image.addListener("mouseover", () => hint.show(), this); - image.addListener("mouseout", () => hint.exclude(), this); + if (sharedGrps.length === 0) { + image.setVisibility("excluded"); + return; + } - break; + let hintText = ""; + for (let i=0; i 6) { + hintText += "..."; + break; + } + hintText += (sharedGrps[i]["label"] + "
"); } + const hint = new osparc.ui.hint.Hint(image, hintText); + image.addListener("mouseover", () => hint.show(), this); + image.addListener("mouseout", () => hint.exclude(), this); }, _applyTags: function(tags) { diff --git a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonNew.js b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonNew.js index 52ba5f837be..0b893d9161d 100644 --- a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonNew.js +++ b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonNew.js @@ -41,7 +41,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonNew", { const desc1 = this.getChildControl("description"); desc1.setValue(this.tr("Start with a empty study").toString()); - this.setIcon("@FontAwesome5Solid/file/50"); + this.setIcon("@FontAwesome5Solid/plus/60"); }, _onToggleChange: function(e) { diff --git a/services/web/client/source/class/osparc/data/Permissions.js b/services/web/client/source/class/osparc/data/Permissions.js index 6f00b10e795..8161daebbd7 100644 --- a/services/web/client/source/class/osparc/data/Permissions.js +++ b/services/web/client/source/class/osparc/data/Permissions.js @@ -135,12 +135,12 @@ qx.Class.define("osparc.data.Permissions", { "studies.user.read", "studies.user.create", "storage.datcore.read", - "preferences.user.update", - "preferences.apikey.create", - "preferences.apikey.delete", - "preferences.token.create", - "preferences.token.delete", - "preferences.tag", + "user.user.update", + "user.apikey.create", + "user.apikey.delete", + "user.token.create", + "user.token.delete", + "user.tag", "study.node.create", "study.node.delete", "study.node.update", @@ -159,7 +159,8 @@ qx.Class.define("osparc.data.Permissions", { "studies.template.update", "studies.template.delete", "services.all.read", - "preferences.role.update", + "user.role.update", + "user.organizations.create", "study.nodestree.uuid.read", "study.filestree.uuid.read", "study.logger.debug.read" diff --git a/services/web/client/source/class/osparc/data/Resources.js b/services/web/client/source/class/osparc/data/Resources.js index 0417e9d5ebc..d1d4006f00a 100644 --- a/services/web/client/source/class/osparc/data/Resources.js +++ b/services/web/client/source/class/osparc/data/Resources.js @@ -3,6 +3,7 @@ * Copyright: 2019 IT'IS Foundation - https://itis.swiss * License: MIT - https://opensource.org/licenses/MIT * Authors: Ignacio Pascual (ignapas) + * Odei Maiz (odeimaiz) */ /** @@ -66,7 +67,7 @@ qx.Class.define("osparc.data.Resources", { /* * STUDIES */ - studies: { + "studies": { useCache: true, endpoints: { get: { @@ -136,7 +137,7 @@ qx.Class.define("osparc.data.Resources", { /* * TEMPLATES (actually studies flagged as templates) */ - templates: { + "templates": { useCache: true, endpoints: { get: { @@ -160,7 +161,7 @@ qx.Class.define("osparc.data.Resources", { /* * SERVICES */ - services: { + "services": { useCache: true, endpoints: { get: { @@ -172,7 +173,7 @@ qx.Class.define("osparc.data.Resources", { /* * GROUPS/DAGS */ - dags: { + "dags": { usesCache: true, endpoints: { post: { @@ -192,7 +193,7 @@ qx.Class.define("osparc.data.Resources", { /* * CONFIG */ - config: { + "config": { useCache: true, endpoints: { getOne: { @@ -204,7 +205,7 @@ qx.Class.define("osparc.data.Resources", { /* * PROFILE */ - profile: { + "profile": { useCache: true, endpoints: { getOne: { @@ -216,7 +217,7 @@ qx.Class.define("osparc.data.Resources", { /* * API-KEYS */ - apiKeys: { + "apiKeys": { endpoints: { get: { method: "GET", @@ -235,7 +236,7 @@ qx.Class.define("osparc.data.Resources", { /* * TOKENS */ - tokens: { + "tokens": { idField: "service", useCache: true, endpoints: { @@ -261,10 +262,66 @@ qx.Class.define("osparc.data.Resources", { } } }, + /* + * ORGANIZATIONS + */ + "organizations": { + useCache: true, + endpoints: { + get: { + method: "GET", + url: statics.API + "/groups" + }, + post: { + method: "POST", + url: statics.API + "/groups" + }, + getOne: { + method: "GET", + url: statics.API + "/groups/{gid}" + }, + delete: { + method: "DELETE", + url: statics.API + "/groups/{gid}" + }, + patch: { + method: "PATCH", + url: statics.API + "/groups/{gid}" + } + } + }, + /* + * ORGANIZATION MEMBERS + */ + "organizationMembers": { + useCache: false, + endpoints: { + get: { + method: "GET", + url: statics.API + "/groups/{gid}/users" + }, + post: { + method: "POST", + url: statics.API + "/groups/{gid}/users" + }, + getOne: { + method: "GET", + url: statics.API + "/groups/{gid}/users/{uid}" + }, + delete: { + method: "DELETE", + url: statics.API + "/groups/{gid}/users/{uid}" + }, + patch: { + method: "PATCH", + url: statics.API + "/groups/{gid}/users/{uid}" + } + } + }, /* * PASSWORD */ - password: { + "password": { useCache: false, endpoints: { post: { @@ -276,7 +333,7 @@ qx.Class.define("osparc.data.Resources", { /* * HEALTHCHECK */ - healthCheck: { + "healthCheck": { useCache: false, endpoints: { get: { @@ -288,7 +345,7 @@ qx.Class.define("osparc.data.Resources", { /* * AUTH */ - auth: { + "auth": { useCache: false, endpoints: { postLogin: { @@ -316,7 +373,7 @@ qx.Class.define("osparc.data.Resources", { /* * STORAGE LOCATIONS */ - storageLocations: { + "storageLocations": { useCache: true, endpoints: { get: { @@ -328,7 +385,7 @@ qx.Class.define("osparc.data.Resources", { /* * STORAGE DATASETS */ - storageDatasets: { + "storageDatasets": { useCache: false, endpoints: { getByLocation: { @@ -340,7 +397,7 @@ qx.Class.define("osparc.data.Resources", { /* * STORAGE FILES */ - storageFiles: { + "storageFiles": { useCache: false, endpoints: { getByLocationAndDataset: { @@ -364,7 +421,7 @@ qx.Class.define("osparc.data.Resources", { /* * STORAGE LINK */ - storageLink: { + "storageLink": { useCache: false, endpoints: { getOne: { @@ -380,7 +437,7 @@ qx.Class.define("osparc.data.Resources", { /* * ACTIVITY */ - activity: { + "activity": { useCache: false, endpoints: { getOne: { @@ -393,7 +450,7 @@ qx.Class.define("osparc.data.Resources", { /* * Test/Diagnonstic entrypoint */ - checkEP: { + "checkEP": { useCache: false, endpoints: { postFail: { @@ -410,7 +467,7 @@ qx.Class.define("osparc.data.Resources", { /* * TAGS */ - tags: { + "tags": { idField: "id", useCache: true, endpoints: { @@ -437,7 +494,7 @@ qx.Class.define("osparc.data.Resources", { * STATICS * Gets the json file containing some runtime server variables. */ - statics: { + "statics": { useCache: true, endpoints: { get: { diff --git a/services/web/client/source/class/osparc/data/model/Study.js b/services/web/client/source/class/osparc/data/model/Study.js index 74f3e9b688a..378667cc960 100644 --- a/services/web/client/source/class/osparc/data/model/Study.js +++ b/services/web/client/source/class/osparc/data/model/Study.js @@ -37,7 +37,7 @@ qx.Class.define("osparc.data.model.Study", { extend: qx.core.Object, /** - * @param studyData {Object} Object containing the serialized Project Data + * @param studyData {Object} Object containing the serialized Study Data */ construct: function(studyData) { this.base(arguments); diff --git a/services/web/client/source/class/osparc/desktop/NavigationBar.js b/services/web/client/source/class/osparc/desktop/NavigationBar.js index 9388f7b3438..38f960a2753 100644 --- a/services/web/client/source/class/osparc/desktop/NavigationBar.js +++ b/services/web/client/source/class/osparc/desktop/NavigationBar.js @@ -18,7 +18,7 @@ /** * Widget containing: * - LogoOnOff - * - Dashboard button + * - Dashboard (button) * - List of buttons for node navigation (only study editing) * - User menu * - Preferences @@ -74,6 +74,7 @@ qx.Class.define("osparc.desktop.NavigationBar", { this.getChildControl("user-manual"); this.getChildControl("feedback"); + this.getChildControl("theme-switch"); this.getChildControl("user-menu"); }, @@ -173,6 +174,10 @@ qx.Class.define("osparc.desktop.NavigationBar", { }); this._add(control); break; + case "theme-switch": + control = new osparc.ui.switch.ThemeSwitcher(); + this._add(control); + break; case "user-menu": control = this.__createUserMenuBtn(); control.set({ diff --git a/services/web/client/source/class/osparc/desktop/StudyEditor.js b/services/web/client/source/class/osparc/desktop/StudyEditor.js index db460734066..dfd6a02a123 100644 --- a/services/web/client/source/class/osparc/desktop/StudyEditor.js +++ b/services/web/client/source/class/osparc/desktop/StudyEditor.js @@ -28,7 +28,7 @@ qx.Class.define("osparc.desktop.StudyEditor", { minWidth: 0, width: 400 }); - osparc.utils.Utils.addBorder(sidePanel, "right"); + osparc.utils.Utils.addBorder(sidePanel, 2, "right"); const scroll = this.__scrollContainer = new qx.ui.container.Scroll().set({ minWidth: 0 }); diff --git a/services/web/client/source/class/osparc/desktop/preferences/PreferencesWindow.js b/services/web/client/source/class/osparc/desktop/preferences/PreferencesWindow.js index eb7d88d2190..a14194c7a58 100644 --- a/services/web/client/source/class/osparc/desktop/preferences/PreferencesWindow.js +++ b/services/web/client/source/class/osparc/desktop/preferences/PreferencesWindow.js @@ -59,11 +59,22 @@ qx.Class.define("osparc.desktop.preferences.PreferencesWindow", { osparc.utils.Utils.setIdToWidget(expBtn, "preferencesExperimentalTabBtn"); tabView.add(expPage); - if (osparc.data.Permissions.getInstance().canDo("preferences.tag")) { + if (osparc.data.Permissions.getInstance().canDo("user.tag")) { const tagsPage = new osparc.desktop.preferences.pages.TagsPage(); tabView.add(tagsPage); } + osparc.data.Resources.get("organizations") + .then(resp => { + const orgs = resp["organizations"]; + if (orgs.length || osparc.data.Permissions.getInstance().canDo("user.organizations.create")) { + const orgsPage = new osparc.desktop.preferences.pages.OrganizationsPage(); + const orgsBtn = orgsPage.getChildControl("button"); + osparc.utils.Utils.setIdToWidget(orgsBtn, "preferencesOrganizationsTabBtn"); + tabView.add(orgsPage); + } + }); + this.add(tabView); } }); diff --git a/services/web/client/source/class/osparc/desktop/preferences/pages/BasePage.js b/services/web/client/source/class/osparc/desktop/preferences/pages/BasePage.js index 2bbc259a5ed..cc5f79a088c 100644 --- a/services/web/client/source/class/osparc/desktop/preferences/pages/BasePage.js +++ b/services/web/client/source/class/osparc/desktop/preferences/pages/BasePage.js @@ -28,7 +28,7 @@ qx.Class.define("osparc.desktop.preferences.pages.BasePage", { // Page title this.add(new qx.ui.basic.Label(title + " Settings").set({ - font: qx.bom.Font.fromConfig(osparc.theme.Font.fonts["title-16"]) + font: "title-16" })); // spacer @@ -36,8 +36,8 @@ qx.Class.define("osparc.desktop.preferences.pages.BasePage", { }, members: { - /** Common layout of secion's box - * + /** + * Common layout of secion's box * @param {page section's name} sectionName */ _createSectionBox: function(sectionName) { @@ -47,14 +47,14 @@ qx.Class.define("osparc.desktop.preferences.pages.BasePage", { return box; }, - /** Common layout for and font for tooltip label - * + /** + * Common layout for tooltip label */ _createHelpLabel: function(message=null) { let label = new qx.ui.basic.Label().set({ value: message, rich: true, - font: osparc.utils.Utils.getFont(12) + font: "text-12" }); return label; } diff --git a/services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js b/services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js new file mode 100644 index 00000000000..5613368f77e --- /dev/null +++ b/services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js @@ -0,0 +1,410 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2018 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Pedro Crespo (pcrespov) + +************************************************************************ */ + +/** + * Organization and members in preferences dialog + * + */ + +qx.Class.define("osparc.desktop.preferences.pages.OrganizationsPage", { + extend: osparc.desktop.preferences.pages.BasePage, + + construct: function() { + const iconSrc = "@FontAwesome5Solid/sitemap/24"; + const title = this.tr("Organizations"); + this.base(arguments, title, iconSrc); + + if (osparc.data.Permissions.getInstance().canDo("user.organizations.create")) { + this.add(this.__getCreateOrganizationSection()); + } + this.add(this.__getOrganizationsSection()); + this.add(this.__getMembersSection(), { + flex: 1 + }); + + this.__reloadOrganizations(); + }, + + members: { + __currentOrg: null, + __orgsModel: null, + __memberInvitation: null, + __membersModel: null, + + __getCreateOrganizationSection: function() { + const createOrgBtn = new qx.ui.form.Button(this.tr("Create New Organization")).set({ + allowGrowX: false + }); + createOrgBtn.addListener("execute", function() { + const newOrg = true; + const orgEditor = new osparc.dashboard.OrganizationEditor(newOrg); + const win = osparc.dashboard.OrganizationEditor.popUpInWindow(this.tr("Organization Details Editor"), orgEditor); + orgEditor.addListener("createOrg", () => { + this.__createOrganization(win, orgEditor.getChildControl("create"), orgEditor); + }); + }, this); + return createOrgBtn; + }, + + __getOrganizationsSection: function() { + const box = this._createSectionBox(this.tr("Organizations")); + box.add(this.__getOrganizationsList()); + return box; + }, + + __getOrganizationsList: function() { + const orgsUIList = new qx.ui.form.List().set({ + decorator: "no-border", + spacing: 3, + height: 150, + width: 150 + }); + orgsUIList.addListener("changeSelection", e => { + this.__organizationSelected(e.getData()); + }, this); + + const orgsModel = this.__orgsModel = new qx.data.Array(); + const orgsCtrl = new qx.data.controller.List(orgsModel, orgsUIList, "label"); + orgsCtrl.setDelegate({ + createItem: () => new osparc.dashboard.OrganizationListItem(), + bindItem: (ctrl, item, id) => { + ctrl.bindProperty("gid", "model", null, item, id); + ctrl.bindProperty("gid", "key", null, item, id); + ctrl.bindProperty("thumbnail", "thumbnail", null, item, id); + ctrl.bindProperty("label", "title", null, item, id); + ctrl.bindProperty("description", "subtitle", null, item, id); + ctrl.bindProperty("nMembers", "contact", null, item, id); + ctrl.bindProperty("access_rights", "accessRights", null, item, id); + }, + configureItem: item => { + const thumbanil = item.getChildControl("thumbnail"); + thumbanil.getContentElement() + .setStyles({ + "border-radius": "16px" + }); + + item.addListener("openEditOrganization", e => { + this.__openEditOrganization(e.getData()); + }); + } + }); + + return orgsUIList; + }, + + __getMembersSection: function() { + const box = this._createSectionBox(this.tr("Members")); + box.add(this.__getMemberInvitation()); + box.add(this.__getMembersList(), { + flex: 1 + }); + return box; + }, + + __getMemberInvitation: function() { + const hBox = this.__memberInvitation = new qx.ui.container.Composite(new qx.ui.layout.HBox(10).set({ + alignY: "middle" + })); + hBox.exclude(); + + const userEmail = new qx.ui.form.TextField().set({ + required: true, + placeholder: this.tr("New Member's email") + }); + hBox.add(userEmail, { + flex: 1 + }); + + const validator = new qx.ui.form.validation.Manager(); + validator.add(userEmail, qx.util.Validate.email()); + + const inviteBtn = new qx.ui.form.Button(this.tr("Invite")); + inviteBtn.addListener("execute", function() { + if (validator.validate()) { + this.__addMember(userEmail.getValue()); + } + }, this); + hBox.add(inviteBtn); + + return hBox; + }, + + __getMembersList: function() { + const memebersUIList = new qx.ui.form.List().set({ + decorator: "no-border", + spacing: 3, + width: 150 + }); + + const membersModel = this.__membersModel = new qx.data.Array(); + const membersCtrl = new qx.data.controller.List(membersModel, memebersUIList, "name"); + membersCtrl.setDelegate({ + createItem: () => new osparc.dashboard.OrgMemberListItem(), + bindItem: (ctrl, item, id) => { + ctrl.bindProperty("id", "model", null, item, id); + ctrl.bindProperty("id", "key", null, item, id); + ctrl.bindProperty("thumbnail", "thumbnail", null, item, id); + ctrl.bindProperty("name", "title", null, item, id); + ctrl.bindProperty("access_rights", "accessRights", null, item, id); + ctrl.bindProperty("login", "subtitle", null, item, id); + ctrl.bindProperty("showOptions", "showOptions", null, item, id); + }, + configureItem: item => { + item.getChildControl("thumbnail").getContentElement() + .setStyles({ + "border-radius": "16px" + }); + item.addListener("promoteOrgMember", e => { + const orgMember = e.getData(); + this.__promoteMember(orgMember); + }); + item.addListener("removeOrgMember", e => { + const orgMember = e.getData(); + this.__deleteMember(orgMember); + }); + } + }); + + return memebersUIList; + }, + + __organizationSelected: function(data) { + this.__memberInvitation.exclude(); + if (data && data.length>0) { + this.__currentOrg = data[0]; + } else { + this.__currentOrg = null; + } + this.__reloadOrgMembers(); + }, + + __reloadOrganizations: function() { + const orgsModel = this.__orgsModel; + orgsModel.removeAll(); + + osparc.data.Resources.get("organizations") + .then(respOrgs => { + const orgs = respOrgs["organizations"]; + orgs.forEach(org => { + const params = { + url: { + gid: org["gid"] + } + }; + osparc.data.Resources.get("organizationMembers", params) + .then(respOrgMembers => { + org["nMembers"] = Object.keys(respOrgMembers).length + this.tr(" members"); + orgsModel.append(qx.data.marshal.Json.createModel(org)); + }); + }); + }); + }, + + __reloadOrgMembers: function() { + const membersModel = this.__membersModel; + membersModel.removeAll(); + + const orgModel = this.__currentOrg; + if (orgModel === null) { + return; + } + + const canWrite = orgModel.getAccessRights().getWrite(); + if (canWrite) { + this.__memberInvitation.show(); + } + + const params = { + url: { + "gid": orgModel.getKey() + } + }; + osparc.data.Resources.get("organizationMembers", params) + .then(members => { + members.forEach(member => { + member["thumbnail"] = osparc.utils.Avatar.getUrl(member["login"], 32); + member["name"] = osparc.utils.Utils.firstsUp(member["first_name"], member["last_name"]); + member["showOptions"] = canWrite; + membersModel.append(qx.data.marshal.Json.createModel(member)); + }); + }); + }, + + __openEditOrganization: function(orgKey) { + let org = null; + this.__orgsModel.forEach(orgModel => { + if (orgModel.getGid() === parseInt(orgKey)) { + org = orgModel; + } + }); + if (org === null) { + return; + } + + const newOrg = false; + const orgEditor = new osparc.dashboard.OrganizationEditor(newOrg); + org.bind("gid", orgEditor, "gid"); + org.bind("label", orgEditor, "label"); + org.bind("description", orgEditor, "description"); + org.bind("thumbnail", orgEditor, "thumbnail", { + converter: val => val ? val : "" + }); + const win = osparc.dashboard.OrganizationEditor.popUpInWindow(this.tr("Organization Details Editor"), orgEditor); + orgEditor.addListener("updateOrg", () => { + this.__updateOrganization(win, orgEditor.getChildControl("save"), orgEditor); + }); + }, + + __createOrganization: function(win, button, orgEditor) { + const orgKey = orgEditor.getGid(); + const name = orgEditor.getLabel(); + const description = orgEditor.getDescription(); + const thumbnail = orgEditor.getThumbnail(); + const params = { + url: { + "gid": orgKey + }, + data: { + "label": name, + "description": description, + "thumbnail": thumbnail || null + } + }; + osparc.data.Resources.fetch("organizations", "post", params) + .then(() => { + osparc.component.message.FlashMessenger.getInstance().logAs(name + this.tr(" successfully created")); + button.setFetching(false); + win.close(); + osparc.store.Store.getInstance().reset("organizations"); + this.__reloadOrganizations(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong creating ") + name, "ERROR"); + button.setFetching(false); + console.error(err); + }); + }, + + __updateOrganization: function(win, button, orgEditor) { + const orgKey = orgEditor.getGid(); + const name = orgEditor.getLabel(); + const description = orgEditor.getDescription(); + const thumbnail = orgEditor.getThumbnail(); + const params = { + url: { + "gid": orgKey + }, + data: { + "label": name, + "description": description, + "thumbnail": thumbnail || null + } + }; + osparc.data.Resources.fetch("organizations", "patch", params) + .then(() => { + osparc.component.message.FlashMessenger.getInstance().logAs(name + this.tr(" successfully edited")); + button.setFetching(false); + win.close(); + osparc.store.Store.getInstance().reset("organizations"); + this.__reloadOrganizations(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong editing ") + name, "ERROR"); + button.setFetching(false); + console.error(err); + }); + }, + + __addMember: function(orgMemberEmail) { + if (this.__currentOrg === null) { + return; + } + + const params = { + url: { + "gid": this.__currentOrg.getKey() + }, + data: { + "email": orgMemberEmail + } + }; + osparc.data.Resources.fetch("organizationMembers", "post", params) + .then(() => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Invitation sent to ") + orgMemberEmail); + osparc.store.Store.getInstance().reset("organizationMembers"); + this.__reloadOrgMembers(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong with the invitation"), "ERROR"); + console.error(err); + }); + }, + + __promoteMember: function(orgMember) { + if (this.__currentOrg === null) { + return; + } + + const params = { + url: { + "gid": this.__currentOrg.getKey(), + "uid": orgMember["key"] + }, + data: { + "access_rights": { + "read": true, + "write": true, + "delete": false + } + } + }; + osparc.data.Resources.fetch("organizationMembers", "patch", params) + .then(() => { + osparc.component.message.FlashMessenger.getInstance().logAs(orgMember["name"] + this.tr(" successfully promoted")); + osparc.store.Store.getInstance().reset("organizationMembers"); + this.__reloadOrgMembers(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong promoting ") + orgMember["name"], "ERROR"); + console.error(err); + }); + }, + + __deleteMember: function(orgMember) { + if (this.__currentOrg === null) { + return; + } + + const params = { + url: { + "gid": this.__currentOrg.getKey(), + "uid": orgMember["key"] + } + }; + osparc.data.Resources.fetch("organizationMembers", "delete", params) + .then(() => { + osparc.component.message.FlashMessenger.getInstance().logAs(orgMember["name"] + this.tr(" successfully removed")); + osparc.store.Store.getInstance().reset("organizationMembers"); + this.__reloadOrgMembers(); + }) + .catch(err => { + osparc.component.message.FlashMessenger.getInstance().logAs(this.tr("Something went wrong removing ") + orgMember["name"], "ERROR"); + console.error(err); + }); + } + } +}); diff --git a/services/web/client/source/class/osparc/desktop/preferences/pages/ProfilePage.js b/services/web/client/source/class/osparc/desktop/preferences/pages/ProfilePage.js index 905ba654077..e9544002885 100644 --- a/services/web/client/source/class/osparc/desktop/preferences/pages/ProfilePage.js +++ b/services/web/client/source/class/osparc/desktop/preferences/pages/ProfilePage.js @@ -36,7 +36,6 @@ qx.Class.define("osparc.desktop.preferences.pages.ProfilePage", { this.__getValuesFromServer(); this.add(this.__createProfileUser()); - this.add(this.__createOrganizations()); }, members: { @@ -61,7 +60,7 @@ qx.Class.define("osparc.desktop.preferences.pages.ProfilePage", { let role = null; const permissions = osparc.data.Permissions.getInstance(); - if (permissions.canDo("preferences.role.update")) { + if (permissions.canDo("user.role.update")) { role = new qx.ui.form.SelectBox(); const roles = permissions.getChildrenRoles(permissions.getRole()); for (let i=0; i { - if (!osparc.data.Permissions.getInstance().canDo("preferences.user.update", true)) { + if (!osparc.data.Permissions.getInstance().canDo("user.user.update", true)) { this.__resetDataToModel(); return; } @@ -184,40 +183,6 @@ qx.Class.define("osparc.desktop.preferences.pages.ProfilePage", { return box; }, - __createOrganizations: function() { - // layout - const box = this._createSectionBox(this.tr("Organizations")); - - const orgsUIList = new qx.ui.form.List().set({ - spacing: 3, - height: 150, - width: 150 - }); - - const orgsModel = new qx.data.Array(); - const orgsCtrl = new qx.data.controller.List(orgsModel, orgsUIList, "label"); - orgsCtrl.setDelegate({ - createItem: () => new osparc.component.widget.OrganizationListItem(), - bindItem: (ctrl, item, id) => { - ctrl.bindProperty("gid", "model", null, item, id); - ctrl.bindProperty("gid", "gid", null, item, id); - ctrl.bindProperty("label", "label", null, item, id); - ctrl.bindProperty("description", "description", null, item, id); - } - }); - - box.add(orgsUIList); - - const store = osparc.store.Store.getInstance(); - store.getGroupsOrganizations() - .then(orgs => { - orgsModel.removeAll(); - orgs.forEach(org => orgsModel.append(qx.data.marshal.Json.createModel(org))); - }); - - return box; - }, - __getValuesFromServer: function() { // get values from server const request = new osparc.io.request.ApiRequest("/me", "GET"); diff --git a/services/web/client/source/class/osparc/desktop/preferences/pages/SecurityPage.js b/services/web/client/source/class/osparc/desktop/preferences/pages/SecurityPage.js index 4843cffd3c0..0ff307619d7 100644 --- a/services/web/client/source/class/osparc/desktop/preferences/pages/SecurityPage.js +++ b/services/web/client/source/class/osparc/desktop/preferences/pages/SecurityPage.js @@ -130,7 +130,7 @@ qx.Class.define("osparc.desktop.preferences.pages.SecurityPage", { }, __requestAPIKey: function() { - if (!osparc.data.Permissions.getInstance().canDo("preferences.apikey.create", true)) { + if (!osparc.data.Permissions.getInstance().canDo("user.apikey.create", true)) { return; } @@ -197,7 +197,7 @@ qx.Class.define("osparc.desktop.preferences.pages.SecurityPage", { }, __deleteAPIKey: function(apiKeyLabel) { - if (!osparc.data.Permissions.getInstance().canDo("preferences.apikey.delete", true)) { + if (!osparc.data.Permissions.getInstance().canDo("user.apikey.delete", true)) { return; } const params = { @@ -272,7 +272,7 @@ qx.Class.define("osparc.desktop.preferences.pages.SecurityPage", { const addTokenBtn = new qx.ui.form.Button(this.tr("Add")); addTokenBtn.setWidth(100); addTokenBtn.addListener("execute", e => { - if (!osparc.data.Permissions.getInstance().canDo("preferences.token.create", true)) { + if (!osparc.data.Permissions.getInstance().canDo("user.token.create", true)) { return; } const params = { @@ -321,7 +321,7 @@ qx.Class.define("osparc.desktop.preferences.pages.SecurityPage", { }, __deleteToken: function(service) { - if (!osparc.data.Permissions.getInstance().canDo("preferences.token.delete", true)) { + if (!osparc.data.Permissions.getInstance().canDo("user.token.delete", true)) { return; } const params = { diff --git a/services/web/client/source/class/osparc/store/Store.js b/services/web/client/source/class/osparc/store/Store.js index b0cc765f5d0..941aadd94f7 100644 --- a/services/web/client/source/class/osparc/store/Store.js +++ b/services/web/client/source/class/osparc/store/Store.js @@ -81,6 +81,18 @@ qx.Class.define("osparc.store.Store", { check: "Array", init: [] }, + organizations: { + check: "Object", + init: {} + }, + organizationMembers: { + check: "Object", + init: {} + }, + reachableMembers: { + check: "Object", + init: {} + }, services: { check: "Array", init: [] @@ -158,6 +170,33 @@ qx.Class.define("osparc.store.Store", { } }, + /** + * Invalidates the cache for the given resources. + * If resource is a string, it will invalidate that resource. + * If it is an array, it will try to invalidate every resource in the array. + * If it is not provided, it will invalidate all resources. + * + * @param {(string|string[])} [resources] Property or array of property names that must be reset + */ + invalidate: function(resources) { + if (typeof resources === "string" || resources instanceof String) { + this.reset(resources); + } else { + let propertyArray; + if (resources == null) { + propertyArray = Object.keys(qx.util.PropertyUtil.getProperties(osparc.store.Store)); + } else if (Array.isArray(resources)) { + propertyArray = resources; + } + propertyArray.forEach(propName => { + this.reset(propName); + // Not sure reset actually works + const initVal = qx.util.PropertyUtil.getInitValue(this, propName); + qx.util.PropertyUtil.getUserValue(this, propName, initVal); + }); + } + }, + /** * This functions does the needed processing in order to have a working list of services and DAGs. * @param {Boolean} reload ? @@ -230,26 +269,40 @@ qx.Class.define("osparc.store.Store", { }); }, - /** - * Invalidates the cache for the given resources. - * If resource is a string, it will invalidate that resource. - * If it is an array, it will try to invalidate every resource in the array. - * If it is not provided, it will invalidate all resources. - * - * @param {(string|string[])} [resources] Property or array of property names that must be reset - */ - invalidate: function(resources) { - if (typeof resources === "string" || resources instanceof String) { - this.reset(resources); - } else { - let propertyArray; - if (resources == null) { - propertyArray = Object.keys(qx.util.PropertyUtil.getProperties(osparc.store.Store)); - } else if (Array.isArray(resources)) { - propertyArray = resources; - } - propertyArray.forEach(propName => this.reset(propName)); - } + getVisibleMembers: function() { + const reachableMembers = this.getReachableMembers(); + return new Promise((resolve, reject) => { + osparc.data.Resources.get("organizations") + .then(resp => { + const orgMembersPromises = []; + const orgs = resp["organizations"]; + orgs.forEach(org => { + orgMembersPromises.push( + new Promise((resolve2, reject2) => { + const params = { + url: { + "gid": org["gid"] + } + }; + osparc.data.Resources.get("organizationMembers", params) + .then(orgMembers => { + resolve2(orgMembers); + }); + }) + ); + }); + Promise.all(orgMembersPromises) + .then(orgMemberss => { + orgMemberss.forEach(orgMembers => { + orgMembers.forEach(orgMember => { + orgMember["label"] = osparc.utils.Utils.firstsUp(orgMember["first_name"], orgMember["last_name"]); + reachableMembers[orgMember["gid"]] = orgMember; + }); + }); + resolve(reachableMembers); + }); + }); + }); }, _applyStudy: function(newStudy) { diff --git a/services/web/client/source/class/osparc/ui/basic/Tag.js b/services/web/client/source/class/osparc/ui/basic/Tag.js index a596fd31cca..c0dd4535673 100644 --- a/services/web/client/source/class/osparc/ui/basic/Tag.js +++ b/services/web/client/source/class/osparc/ui/basic/Tag.js @@ -20,10 +20,10 @@ qx.Class.define("osparc.ui.basic.Tag", { */ construct: function(value, color, filterGroupId) { this.base(arguments, value); + this.setFont("text-11"); if (color) { this.setColor(color); } - this.setFont(osparc.utils.Utils.getFont(11)); if (filterGroupId) { this.setCursor("pointer"); this.addListener("tap", e => { diff --git a/services/web/client/source/class/osparc/ui/hint/Hint.js b/services/web/client/source/class/osparc/ui/hint/Hint.js index b447ef0f37c..4c2b9ce5a18 100644 --- a/services/web/client/source/class/osparc/ui/hint/Hint.js +++ b/services/web/client/source/class/osparc/ui/hint/Hint.js @@ -65,7 +65,7 @@ qx.Class.define("osparc.ui.hint.Hint", { active: { check: "Boolean", nullable: false, - init: true + init: false }, orientation: { check: "Integer", diff --git a/services/web/client/source/class/osparc/ui/markdown/Markdown.js b/services/web/client/source/class/osparc/ui/markdown/Markdown.js index 8e8effce1ed..ec5ae9dc011 100644 --- a/services/web/client/source/class/osparc/ui/markdown/Markdown.js +++ b/services/web/client/source/class/osparc/ui/markdown/Markdown.js @@ -147,7 +147,7 @@ qx.Class.define("osparc.ui.markdown.Markdown", { }, __getDomElement: function() { - if (!this.getContentElement) { + if (!this.getContentElement || this.getContentElement() === null) { return null; } const domElement = this.getContentElement().getDomElement(); diff --git a/services/web/client/source/class/osparc/ui/switch/Switch.js b/services/web/client/source/class/osparc/ui/switch/Switch.js new file mode 100644 index 00000000000..be309414cf1 --- /dev/null +++ b/services/web/client/source/class/osparc/ui/switch/Switch.js @@ -0,0 +1,51 @@ +/* + * oSPARC - The SIMCORE frontend - https://osparc.io + * Copyright: 2020 IT'IS Foundation - https://itis.swiss + * License: MIT - https://opensource.org/licenses/MIT + * Authors: Odei Maiz (odeimaiz) + */ + +/** + * Switch button + */ + +qx.Class.define("osparc.ui.switch.Switch", { + extend: qx.ui.basic.Image, + + construct: function() { + this.base(arguments); + + this.set({ + cursor: "pointer", + backgroundColor: "transparent", + source: "@FontAwesome5Solid/toggle-on/22" + }); + + this.addListener("tap", () => { + this.toggleChecked(); + }); + + this.initChecked(); + }, + + properties: { + checked: { + check: "Boolean", + init: false, + event: "changeChecked", + apply: "_applyChecked" + } + }, + + members: { + __slider: null, + + _applyChecked: function(newVal) { + if (newVal) { + this.getContentElement().addClass("rotated"); + } else { + this.getContentElement().removeClass("rotated"); + } + } + } +}); diff --git a/services/web/client/source/class/osparc/ui/switch/ThemeSwitcher.js b/services/web/client/source/class/osparc/ui/switch/ThemeSwitcher.js new file mode 100644 index 00000000000..2a4ee5d912f --- /dev/null +++ b/services/web/client/source/class/osparc/ui/switch/ThemeSwitcher.js @@ -0,0 +1,41 @@ +/* + * oSPARC - The SIMCORE frontend - https://osparc.io + * Copyright: 2020 IT'IS Foundation - https://itis.swiss + * License: MIT - https://opensource.org/licenses/MIT + * Authors: Odei Maiz (odeimaiz) + */ + +/** + * Switch button for controlling the theme + */ + +qx.Class.define("osparc.ui.switch.ThemeSwitcher", { + extend: osparc.ui.switch.Switch, + + construct: function() { + this.base(arguments); + + const validThemes = []; + const themes = qx.Theme.getAll(); + for (const key in themes) { + const theme = themes[key]; + if (theme.type === "meta") { + validThemes.push(theme); + } + } + if (validThemes.length !== 2) { + this.setVisibility("exluded"); + return; + } + + this.addListener("changeChecked", () => { + const themeMgr = qx.theme.manager.Meta.getInstance(); + const currentTheme = themeMgr.getTheme(); + if (currentTheme === validThemes[0]) { + themeMgr.setTheme(validThemes[1]); + } else { + themeMgr.setTheme(validThemes[0]); + } + }); + } +}); diff --git a/services/web/client/source/class/osparc/utils/Utils.js b/services/web/client/source/class/osparc/utils/Utils.js index 3c1f2d359bd..64955e5e64a 100644 --- a/services/web/client/source/class/osparc/utils/Utils.js +++ b/services/web/client/source/class/osparc/utils/Utils.js @@ -50,8 +50,8 @@ qx.Class.define("osparc.utils.Utils", { return loadingUri; }, - addBorder: function(sidePanel, where = "right") { - sidePanel.getContentElement().setStyle("border-"+where, "1px solid " + qx.theme.manager.Color.getInstance().resolve("material-button-background")); + addBorder: function(sidePanel, width = 1, where = "right") { + sidePanel.getContentElement().setStyle("border-"+where, width+"px solid " + qx.theme.manager.Color.getInstance().resolve("material-button-background")); }, __setStyleToIFrame: function(domEl) { @@ -362,6 +362,12 @@ qx.Class.define("osparc.utils.Utils", { fetchJSON: function() { return fetch.apply(null, arguments).then(response => response.json()); + }, + + firstsUp: function(...args) { + const labels = []; + args.forEach(arg => labels.push(qx.lang.String.firstUp(arg))); + return labels.join(" "); } } }); diff --git a/services/web/client/source/resource/common/common.css b/services/web/client/source/resource/common/common.css index 49a4bcc00a0..45d71fa3c25 100644 --- a/services/web/client/source/resource/common/common.css +++ b/services/web/client/source/resource/common/common.css @@ -18,3 +18,7 @@ -moz-transform: rotate(-90deg); -o-transform: rotate(-90deg); } + +.rotated { + transform: rotateZ(180deg); +} diff --git a/services/web/client/source/resource/form/service.json b/services/web/client/source/resource/form/service.json index 2ed9429830e..11da25ff6aa 100644 --- a/services/web/client/source/resource/form/service.json +++ b/services/web/client/source/resource/form/service.json @@ -129,7 +129,7 @@ "name": { "type": "string", "title": "Name", - "description": "Input's ID (variable name)." + "description": "Output's ID (variable name)." }, "type": { "type": "string", diff --git a/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml b/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml index d7380c324d3..7e9f28a8dc5 100644 --- a/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml +++ b/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml @@ -2108,7 +2108,6 @@ paths: last_name: type: string example: - login: pcrespov@foo.com first_name: Pedro last_name: Crespo - type: object @@ -2125,67 +2124,182 @@ paths: type: object properties: gid: + description: the group ID type: string label: + description: the group name type: string description: + description: the group description type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights example: - gid: '27' label: A user description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' - gid: '1' label: ITIS Foundation description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' - gid: '0' label: All description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' organizations: type: array items: type: object properties: gid: + description: the group ID type: string label: + description: the group name type: string description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights example: - gid: '27' label: A user description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' - gid: '1' label: ITIS Foundation description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' - gid: '0' label: All description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' all: type: object properties: gid: + description: the group ID type: string label: + description: the group name type: string description: + description: the group description type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights example: - gid: '27' label: A user description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' - gid: '1' label: ITIS Foundation description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' - gid: '0' label: All description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' gravatar_id: type: string example: login: pcrespov@foo.com - first_name: Pedro - last_name: Crespo role: Admin gravatar_id: 205e460b479e2e5b48aec07710c08d50 error: @@ -2290,7 +2404,6 @@ paths: last_name: type: string example: - login: pcrespov@foo.com first_name: Pedro last_name: Crespo example: @@ -2390,7 +2503,1798 @@ paths: - user responses: '200': - description: list of tokens + description: list of tokens + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: array + items: + description: api keys for third party services + type: object + properties: + service: + description: uniquely identifies the service where this token is used + type: string + token_key: + description: basic token key + type: string + format: uuid + token_secret: + type: string + format: uuid + required: + - service + - token_key + example: + service: github-api-v1 + token_key: N1BP5ZSpB + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + post: + summary: Create tokens + operationId: create_tokens + tags: + - user + requestBody: + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + description: api keys for third party services + type: object + properties: + service: + description: uniquely identifies the service where this token is used + type: string + token_key: + description: basic token key + type: string + format: uuid + token_secret: + type: string + format: uuid + required: + - service + - token_key + example: + service: github-api-v1 + token_key: N1BP5ZSpB + error: + nullable: true + default: null + responses: + '201': + description: token created + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + description: api keys for third party services + type: object + properties: + service: + description: uniquely identifies the service where this token is used + type: string + token_key: + description: basic token key + type: string + format: uuid + token_secret: + type: string + format: uuid + required: + - service + - token_key + example: + service: github-api-v1 + token_key: N1BP5ZSpB + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + '/me/tokens/{service}': + parameters: + - name: service + in: path + required: true + schema: + type: string + get: + summary: Gets specific token + operationId: get_token + tags: + - user + responses: + '200': + description: got detailed token + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + description: api keys for third party services + type: object + properties: + service: + description: uniquely identifies the service where this token is used + type: string + token_key: + description: basic token key + type: string + format: uuid + token_secret: + type: string + format: uuid + required: + - service + - token_key + example: + service: github-api-v1 + token_key: N1BP5ZSpB + error: + nullable: true + default: null + put: + summary: Updates token + operationId: update_token + tags: + - user + responses: + '204': + description: token has been successfully updated + delete: + summary: Delete token + operationId: delete_token + tags: + - user + responses: + '204': + description: token has been successfully deleted + /groups: + get: + summary: List my groups + operationId: list_groups + tags: + - group + responses: + '200': + description: list of the groups I belonged to + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: object + properties: + me: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + organizations: + type: array + items: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + all: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + post: + summary: Create a new group + operationId: create_group + tags: + - group + requestBody: + required: true + description: the group to create + content: + application/json: + schema: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + responses: + '201': + description: group created + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + '/groups/{gid}': + parameters: + - name: gid + in: path + required: true + schema: + type: string + get: + tags: + - group + summary: Gets one group details + operationId: get_group + responses: + '200': + description: got group + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + patch: + summary: Update one group + operationId: update_group + tags: + - group + requestBody: + required: true + description: the group to update + content: + application/json: + schema: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + responses: + '200': + description: the modified group + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: object + properties: + gid: + description: the group ID + type: string + label: + description: the group name + type: string + description: + description: the group description + type: string + thumbnail: + description: url to the group thumbnail + type: string + format: uri + access_rights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + required: + - gid + - label + - description + - access_rights + example: + - gid: '27' + label: A user + description: A very special user + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '1' + label: ITIS Foundation + description: The Foundation for Research on Information Technologies in Society + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + - gid: '0' + label: All + description: Open to all users + thumbnail: 'https://user-images.githubusercontent.com/32800795/61083844-ff48fb00-a42c-11e9-8e63-fa2d709c8baf.png' + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + delete: + tags: + - group + summary: Deletes one group + operationId: delete_group + responses: + '204': + description: group has been successfully deleted + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + '/groups/{gid}/users': + parameters: + - name: gid + in: path + required: true + schema: + type: string + get: + tags: + - group + summary: Gets list of users in group + operationId: get_group_users + responses: + '200': + description: got list of users and their respective rights + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: array + items: + type: object + allOf: + - type: object + properties: + first_name: + type: string + description: the user first name + last_name: + type: string + description: the user last name + login: + type: string + format: email + description: the user login email + gravatar_id: + type: string + description: the user gravatar id hash + id: + type: string + description: the user id + gid: + type: string + description: the user primary gid + example: + first_name: Mr + last_name: Smith + login: mr.smith@matrix.com + gravatar_id: a1af5c6ecc38e81f29695f01d6ceb540 + id: '1' + gid: '3' + - description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + post: + tags: + - group + summary: Adds a user in the group + operationId: add_group_user + requestBody: + required: true + description: the user to add + content: + application/json: + schema: + anyOf: + - type: object + required: + - uid + properties: + uid: + type: string + description: the user id + - type: object + required: + - email + properties: + email: + type: string + format: email + description: the user email + responses: + '204': + description: user successfully added + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + '/groups/{gid}/users/{uid}': + parameters: + - name: gid + in: path + required: true + schema: + type: string + - name: uid + in: path + required: true + schema: + type: string + get: + tags: + - group + summary: Gets specific user in group + operationId: get_group_user + responses: + '200': + description: got user + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: object + allOf: + - type: object + properties: + first_name: + type: string + description: the user first name + last_name: + type: string + description: the user last name + login: + type: string + format: email + description: the user login email + gravatar_id: + type: string + description: the user gravatar id hash + id: + type: string + description: the user id + gid: + type: string + description: the user primary gid + example: + first_name: Mr + last_name: Smith + login: mr.smith@matrix.com + gravatar_id: a1af5c6ecc38e81f29695f01d6ceb540 + id: '1' + gid: '3' + - description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 + patch: + tags: + - group + summary: Modify specific user in group + operationId: update_group_user + requestBody: + required: true + description: the user rights to modify + content: + application/json: + schema: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true + responses: + '200': + description: modified user content: application/json: schema: @@ -2399,27 +4303,59 @@ paths: - data properties: data: - type: array - items: - description: api keys for third party services - type: object - properties: - service: - description: uniquely identifies the service where this token is used - type: string - token_key: - description: basic token key - type: string - format: uuid - token_secret: - type: string - format: uuid - required: - - service - - token_key - example: - service: github-api-v1 - token_key: N1BP5ZSpB + type: object + allOf: + - type: object + properties: + first_name: + type: string + description: the user first name + last_name: + type: string + description: the user last name + login: + type: string + format: email + description: the user login email + gravatar_id: + type: string + description: the user gravatar id hash + id: + type: string + description: the user id + gid: + type: string + description: the user primary gid + example: + first_name: Mr + last_name: Smith + login: mr.smith@matrix.com + gravatar_id: a1af5c6ecc38e81f29695f01d6ceb540 + id: '1' + gid: '3' + - description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true error: nullable: true default: null @@ -2506,75 +4442,14 @@ paths: message: Password is not secure field: pasword status: 400 - post: - summary: Create tokens - operationId: create_tokens + delete: tags: - - user - requestBody: - content: - application/json: - schema: - type: object - required: - - data - properties: - data: - description: api keys for third party services - type: object - properties: - service: - description: uniquely identifies the service where this token is used - type: string - token_key: - description: basic token key - type: string - format: uuid - token_secret: - type: string - format: uuid - required: - - service - - token_key - example: - service: github-api-v1 - token_key: N1BP5ZSpB - error: - nullable: true - default: null + - group + summary: Delete specific user in group + operationId: delete_group_user responses: - '201': - description: token created - content: - application/json: - schema: - type: object - required: - - data - properties: - data: - description: api keys for third party services - type: object - properties: - service: - description: uniquely identifies the service where this token is used - type: string - token_key: - description: basic token key - type: string - format: uuid - token_secret: - type: string - format: uuid - required: - - service - - token_key - example: - service: github-api-v1 - token_key: N1BP5ZSpB - error: - nullable: true - default: null + '204': + description: successfully removed user default: description: Default http error response body content: @@ -2658,67 +4533,6 @@ paths: message: Password is not secure field: pasword status: 400 - '/me/tokens/{service}': - parameters: - - name: service - in: path - required: true - schema: - type: string - get: - summary: Gets specific token - operationId: get_token - tags: - - user - responses: - '200': - description: got detailed token - content: - application/json: - schema: - type: object - required: - - data - properties: - data: - description: api keys for third party services - type: object - properties: - service: - description: uniquely identifies the service where this token is used - type: string - token_key: - description: basic token key - type: string - format: uuid - token_secret: - type: string - format: uuid - required: - - service - - token_key - example: - service: github-api-v1 - token_key: N1BP5ZSpB - error: - nullable: true - default: null - put: - summary: Updates token - operationId: update_token - tags: - - user - responses: - '204': - description: token has been successfully updated - delete: - summary: Delete token - operationId: delete_token - tags: - - user - responses: - '204': - description: token has been successfully deleted /storage/locations: get: summary: Get available storage locations @@ -4361,6 +6175,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -4678,6 +6512,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -4900,6 +6754,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -5214,6 +7088,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -5534,6 +7428,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -5846,6 +7760,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -6068,6 +8002,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -6404,6 +8358,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -7420,6 +9394,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date @@ -7733,6 +9727,26 @@ paths: accessRights: type: object description: object containing the GroupID as key and read/write/execution permissions as value + additionalProperties: false + x-patternProperties: + ^\d+$: + type: object + description: the group id + additionalProperties: false + required: + - read + - write + - delete + properties: + read: + type: boolean + description: gives read access + write: + type: boolean + description: gives write access + delete: + type: boolean + description: gives deletion rights creationDate: type: string description: project creation date diff --git a/services/web/server/src/simcore_service_webserver/api/v0/schemas/project-v0.0.1.json b/services/web/server/src/simcore_service_webserver/api/v0/schemas/project-v0.0.1.json index d40e6ceb1a4..4ecd40e4248 100644 --- a/services/web/server/src/simcore_service_webserver/api/v0/schemas/project-v0.0.1.json +++ b/services/web/server/src/simcore_service_webserver/api/v0/schemas/project-v0.0.1.json @@ -46,7 +46,34 @@ }, "accessRights": { "type": "object", - "description": "object containing the GroupID as key and read/write/execution permissions as value" + "description": "object containing the GroupID as key and read/write/execution permissions as value", + "additionalProperties": false, + "patternProperties": { + "^\\d+$": { + "type": "object", + "description": "the group id", + "additionalProperties": false, + "required": [ + "read", + "write", + "delete" + ], + "properties": { + "read": { + "type": "boolean", + "description": "gives read access" + }, + "write": { + "type": "boolean", + "description": "gives write access" + }, + "delete": { + "type": "boolean", + "description": "gives deletion rights" + } + } + } + } }, "creationDate": { "type": "string", @@ -307,4 +334,4 @@ } } } -} \ No newline at end of file +} diff --git a/services/web/server/src/simcore_service_webserver/application.py b/services/web/server/src/simcore_service_webserver/application.py index be91bc0eced..ee1e8e1f05b 100644 --- a/services/web/server/src/simcore_service_webserver/application.py +++ b/services/web/server/src/simcore_service_webserver/application.py @@ -9,7 +9,6 @@ from servicelib.application import create_safe_application - from .activity import setup_activity from .application_proxy import setup_app_proxy from .catalog import setup_catalog @@ -18,8 +17,10 @@ from .diagnostics_plugin import setup_diagnostics from .director import setup_director from .email import setup_email +from .groups import setup_groups from .login import setup_login from .projects import setup_projects +from .publications import setup_publications from .resource_manager import setup_resource_manager from .rest import setup_rest from .security import setup_security @@ -31,7 +32,6 @@ from .tags import setup_tags from .tracing import setup_app_tracing from .users import setup_users -from .publications import setup_publications log = logging.getLogger(__name__) @@ -63,6 +63,7 @@ def create_application(config: Dict) -> web.Application: setup_director(app) setup_storage(app) setup_users(app) + setup_groups(app) setup_projects(app) # needs storage setup_studies_access(app) setup_activity(app) diff --git a/services/web/server/src/simcore_service_webserver/application_config.py b/services/web/server/src/simcore_service_webserver/application_config.py index 706373f86f2..1c3698eb905 100644 --- a/services/web/server/src/simcore_service_webserver/application_config.py +++ b/services/web/server/src/simcore_service_webserver/application_config.py @@ -91,6 +91,7 @@ def create_schema() -> T.Dict: addon_section("reverse_proxy", optional=True): minimal_addon_schema(), addon_section("application_proxy", optional=True): minimal_addon_schema(), addon_section("users", optional=True): minimal_addon_schema(), + addon_section("groups", optional=True): minimal_addon_schema(), addon_section("studies_access", optional=True): minimal_addon_schema(), addon_section("tags", optional=True): minimal_addon_schema(), addon_section("publications", optional=True): minimal_addon_schema(), diff --git a/services/web/server/src/simcore_service_webserver/computation_comp_tasks_listening_task.py b/services/web/server/src/simcore_service_webserver/computation_comp_tasks_listening_task.py index 8f203345110..f5ae1349a91 100644 --- a/services/web/server/src/simcore_service_webserver/computation_comp_tasks_listening_task.py +++ b/services/web/server/src/simcore_service_webserver/computation_comp_tasks_listening_task.py @@ -9,12 +9,15 @@ from aiohttp import web from aiopg.sa import Engine +from aiopg.sa.result import RowProxy from sqlalchemy.sql import select from servicelib.application_keys import APP_DB_ENGINE_KEY +from servicelib.utils import logged_gather +from simcore_postgres_database.webserver_models import user_to_groups from .projects import projects_api, projects_exceptions -from .projects.projects_models import projects, user_to_projects +from .projects.projects_models import projects from .socketio.events import post_messages log = logging.getLogger(__name__) @@ -78,28 +81,55 @@ async def listen(app: web.Application): task_output = node_data["outputs"] node_id = node_data["node_id"] project_id = node_data["project_id"] + # FIXME: we do not know who triggered these changes. we assume the user had the rights to do so + # therefore we'll use the prj_owner user id. This should be fixed when the new sidecar comes in + # and comp_tasks/comp_pipeline get deprecated. + # find the user(s) linked to that project - joint_table = user_to_projects.join(projects) - query = ( - select([user_to_projects]) - .select_from(joint_table) - .where(projects.c.uuid == project_id) + result = await conn.execute( + select([projects]).where(projects.c.uuid == project_id) + ) + the_project: RowProxy = result.fetchone() + if not the_project: + log.warning( + "Project %s was not found and cannot be updated", project_id + ) + continue + the_project_owner = the_project["prj_owner"] + + # update the project + try: + node_data = await projects_api.update_project_node_outputs( + app, the_project_owner, project_id, node_id, data=task_output + ) + except projects_exceptions.ProjectNotFoundError: + log.warning( + "Project %s was not found and cannot be updated", project_id + ) + continue + except projects_exceptions.NodeNotFoundError: + log.warning( + "Node %s ib project %s not found and cannot be updated", + node_id, + project_id, + ) + continue + # notify the client(s), the owner + any one with read writes + clients = [the_project_owner] + for gid, access_rights in the_project["access_rights"].items(): + if not access_rights["read"]: + continue + # let's get the users in that group + async for user in conn.execute( + select([user_to_groups.c.uid]).where(user_to_groups.c.gid == gid) + ): + clients.append(user["uid"]) + + messages = {"nodeUpdated": {"Node": node_id, "Data": node_data}} + + await logged_gather( + *[post_messages(app, client, messages) for client in clients], False ) - async for row in conn.execute(query): - user_id = row["user_id"] - try: - node_data = await projects_api.update_project_node_outputs( - app, user_id, project_id, node_id, data=task_output - ) - except projects_exceptions.ProjectNotFoundError: - log.exception("Project %s not found", project_id) - except projects_exceptions.NodeNotFoundError: - log.exception( - "Node %s ib project %s not found", node_id, project_id - ) - - messages = {"nodeUpdated": {"Node": node_id, "Data": node_data}} - await post_messages(app, user_id, messages) async def comp_tasks_listening_task(app: web.Application) -> None: diff --git a/services/web/server/src/simcore_service_webserver/computation_handlers.py b/services/web/server/src/simcore_service_webserver/computation_handlers.py index 8340e8eaabe..1c74009dae7 100644 --- a/services/web/server/src/simcore_service_webserver/computation_handlers.py +++ b/services/web/server/src/simcore_service_webserver/computation_handlers.py @@ -83,7 +83,7 @@ async def start_pipeline(request: web.Request) -> web.Response: log.debug( "Task (user_id=%s, project_id=%s) submitted for execution.", user_id, project_id ) - + # answer the client while task has been spawned data = { # TODO: PC->SAN: some name with task id. e.g. to distinguish two projects with identical pipeline? diff --git a/services/web/server/src/simcore_service_webserver/computation_subscribe.py b/services/web/server/src/simcore_service_webserver/computation_subscribe.py index b00ac056f62..837a08cdafa 100644 --- a/services/web/server/src/simcore_service_webserver/computation_subscribe.py +++ b/services/web/server/src/simcore_service_webserver/computation_subscribe.py @@ -81,9 +81,13 @@ async def instrumentation_message_handler( ) -> None: data = json.loads(message.body) if data["metrics"] == "service_started": - service_started(app, **{key:value for key, value in data.items() if key != "metrics"}) + service_started( + app, **{key: value for key, value in data.items() if key != "metrics"} + ) elif data["metrics"] == "service_stopped": - service_stopped(app, **{key:value for key, value in data.items() if key != "metrics"}) + service_stopped( + app, **{key: value for key, value in data.items() if key != "metrics"} + ) await message.ack() diff --git a/services/web/server/src/simcore_service_webserver/data/fake-template-projects.isan.json b/services/web/server/src/simcore_service_webserver/data/fake-template-projects.isan.json index 66666f04841..178ae71fcf7 100644 --- a/services/web/server/src/simcore_service_webserver/data/fake-template-projects.isan.json +++ b/services/web/server/src/simcore_service_webserver/data/fake-template-projects.isan.json @@ -7,6 +7,7 @@ "prjOwner": "maiz", "creationDate": "2019-05-24T10:36:57.813Z", "lastChangeDate": "2019-05-24T11:36:12.015Z", + "tags": [], "accessRights": {}, "workbench": { "template-uuid-48eb-a9d2-aaad6b72400a": { @@ -59,6 +60,7 @@ "prjOwner": "maiz", "creationDate": "2019-05-24T10:36:57.813Z", "lastChangeDate": " 2019-05-24T10:38:12.888Z", + "tags": [], "accessRights": {}, "workbench": { "template-uuid-403e-865a-8c5ca30671c6": { @@ -135,6 +137,7 @@ "prjOwner": "MattWard", "creationDate": "2019-04-30T08:52:20.937Z", "lastChangeDate": "2019-04-30T08:59:26.090Z", + "tags": [], "accessRights": {}, "workbench": { "template-uuid-4021-b2ef-b2e163bfbd16": { @@ -161,6 +164,7 @@ "prjOwner": "Colleen Clancy", "creationDate": "2018-10-22T09:13:13.360Z", "lastChangeDate": "2018-10-22T09:33:41.858Z", + "tags": [], "accessRights": {}, "workbench": { "template-uuid-4674-b758-946151cae351": { @@ -242,4 +246,4 @@ } } } -] \ No newline at end of file +] diff --git a/services/web/server/src/simcore_service_webserver/groups.py b/services/web/server/src/simcore_service_webserver/groups.py new file mode 100644 index 00000000000..e447dcb5af9 --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/groups.py @@ -0,0 +1,42 @@ +""" users management subsystem + +""" +import logging + +from aiohttp import web + +from servicelib.application_setup import ModuleCategory, app_module_setup +from servicelib.rest_routing import ( + get_handlers_from_namespace, + iter_path_operations, + map_handlers_with_operations, +) + +from . import groups_handlers +from .rest_config import APP_OPENAPI_SPECS_KEY + +logger = logging.getLogger(__name__) + + +@app_module_setup( + __name__, + ModuleCategory.ADDON, + depends=["simcore_service_webserver.rest", "simcore_service_webserver.users"], + logger=logger, +) +def setup(app: web.Application): + + # routes + specs = app[APP_OPENAPI_SPECS_KEY] + routes = map_handlers_with_operations( + get_handlers_from_namespace(groups_handlers), + filter(lambda o: "groups" in o[1].split("/"), iter_path_operations(specs)), + strict=True, + ) + app.router.add_routes(routes) + + +# alias +setup_groups = setup + +__all__ = "setup_groups" diff --git a/services/web/server/src/simcore_service_webserver/groups_api.py b/services/web/server/src/simcore_service_webserver/groups_api.py new file mode 100644 index 00000000000..722fb264997 --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/groups_api.py @@ -0,0 +1,310 @@ +import logging +from typing import Dict, List, Optional, Tuple + +import sqlalchemy as sa +from aiohttp import web +from aiopg.sa import SAConnection +from aiopg.sa.result import RowProxy +from sqlalchemy import and_, literal_column + +from servicelib.application_keys import APP_DB_ENGINE_KEY + +from .db_models import GroupType, groups, user_to_groups, users +from .groups_exceptions import ( + GroupNotFoundError, + GroupsException, + UserInGroupNotFoundError, +) +from .groups_utils import ( + check_group_permissions, + convert_groups_db_to_schema, + convert_groups_schema_to_db, + convert_user_in_group_to_schema, +) +from .users_exceptions import UserNotFoundError + +logger = logging.getLogger(__name__) + +DEFAULT_GROUP_READ_ACCESS_RIGHTS = {"read": True, "write": False, "delete": False} +DEFAULT_GROUP_OWNER_ACCESS_RIGHTS = {"read": True, "write": True, "delete": True} + + +async def list_user_groups( + app: web.Application, user_id: int +) -> Tuple[Dict[str, str], List[Dict[str, str]], Dict[str, str]]: + """returns the user groups + Returns: + Tuple[List[Dict[str, str]]] -- [returns the user primary group, standard groups and the all group] + """ + engine = app[APP_DB_ENGINE_KEY] + primary_group = {} + user_groups = [] + all_group = {} + async with engine.acquire() as conn: + query = ( + sa.select([groups, user_to_groups.c.access_rights]) + .select_from( + user_to_groups.join(groups, user_to_groups.c.gid == groups.c.gid), + ) + .where(user_to_groups.c.uid == user_id) + ) + async for row in conn.execute(query): + if row["type"] == GroupType.EVERYONE: + all_group = convert_groups_db_to_schema(row) + elif row["type"] == GroupType.PRIMARY: + primary_group = convert_groups_db_to_schema(row) + else: + # only add if user has read access + if row.access_rights["read"]: + user_groups.append(convert_groups_db_to_schema(row)) + + return (primary_group, user_groups, all_group) + + +async def _get_user_group(conn: SAConnection, user_id: int, gid: int) -> RowProxy: + result = await conn.execute( + sa.select([groups, user_to_groups.c.access_rights]) + .select_from(user_to_groups.join(groups, user_to_groups.c.gid == groups.c.gid)) + .where(and_(user_to_groups.c.uid == user_id, user_to_groups.c.gid == gid)) + ) + group = await result.fetchone() + if not group: + raise GroupNotFoundError(gid) + return group + + +async def _get_user_from_email(app: web.Application, email: str) -> RowProxy: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + result = await conn.execute(sa.select([users]).where(users.c.email == email)) + user: RowProxy = await result.fetchone() + if not user: + raise UserNotFoundError(email=email) + return user + + +async def get_user_group( + app: web.Application, user_id: int, gid: int +) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + group: RowProxy = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "read") + return convert_groups_db_to_schema(group) + + +async def create_user_group( + app: web.Application, user_id: int, new_group: Dict +) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + result = await conn.execute( + sa.select([users.c.primary_gid]).where(users.c.id == user_id) + ) + user: RowProxy = await result.fetchone() + if not user: + raise UserNotFoundError(uid=user_id) + result = await conn.execute( + # pylint: disable=no-value-for-parameter + groups.insert() + .values(**convert_groups_schema_to_db(new_group)) + .returning(literal_column("*")) + ) + group: RowProxy = await result.fetchone() + await conn.execute( + # pylint: disable=no-value-for-parameter + user_to_groups.insert().values( + uid=user_id, + gid=group.gid, + access_rights=DEFAULT_GROUP_OWNER_ACCESS_RIGHTS, + ) + ) + return convert_groups_db_to_schema( + group, access_rights=DEFAULT_GROUP_OWNER_ACCESS_RIGHTS + ) + + +async def update_user_group( + app: web.Application, user_id: int, gid: int, new_group_values: Dict[str, str] +) -> Dict[str, str]: + new_values = { + k: v for k, v in convert_groups_schema_to_db(new_group_values).items() if v + } + + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + group = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "write") + + result = await conn.execute( + # pylint: disable=no-value-for-parameter + groups.update() + .values(**new_values) + .where(groups.c.gid == group.gid) + .returning(literal_column("*")) + ) + updated_group = await result.fetchone() + return convert_groups_db_to_schema( + updated_group, access_rights=group.access_rights + ) + + +async def delete_user_group(app: web.Application, user_id: int, gid: int) -> None: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + group = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "delete") + + await conn.execute( + # pylint: disable=no-value-for-parameter + groups.delete().where(groups.c.gid == group.gid) + ) + + +async def list_users_in_group( + app: web.Application, user_id: int, gid: int +) -> List[Dict[str, str]]: + engine = app[APP_DB_ENGINE_KEY] + + async with engine.acquire() as conn: + # first check if the group exists + group: RowProxy = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "read") + # now get the list + query = ( + sa.select([users, user_to_groups.c.access_rights]) + .select_from(users.join(user_to_groups)) + .where(user_to_groups.c.gid == gid) + ) + users_list = [ + convert_user_in_group_to_schema(row) async for row in conn.execute(query) + ] + return users_list + + +async def add_user_in_group( + app: web.Application, + user_id: int, + gid: int, + *, + new_user_id: Optional[int] = None, + new_user_email: Optional[str] = None, + access_rights: Optional[Dict[str, bool]] = None, +) -> None: + if not new_user_id and not new_user_email: + raise GroupsException("Invalid method call, missing user id or user email") + + if new_user_email: + user: RowProxy = await _get_user_from_email(app, new_user_email) + new_user_id = user["id"] + + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + # first check if the group exists + group: RowProxy = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "write") + # now check the new user exists + users_count = await conn.scalar( + # pylint: disable=no-value-for-parameter + sa.select([sa.func.count()]).where(users.c.id == new_user_id) + ) + if not users_count: + raise UserInGroupNotFoundError(new_user_id, gid) # type: ignore + # add the new user to the group now + user_access_rights = DEFAULT_GROUP_READ_ACCESS_RIGHTS + if access_rights: + user_access_rights.update(access_rights) + await conn.execute( + # pylint: disable=no-value-for-parameter + user_to_groups.insert().values( + uid=new_user_id, gid=group.gid, access_rights=user_access_rights + ) + ) + + +async def _get_user_in_group_permissions( + conn: SAConnection, gid: int, the_user_id_in_group: int +) -> RowProxy: + + # now get the user + result = await conn.execute( + sa.select([users, user_to_groups.c.access_rights]) + .select_from(users.join(user_to_groups, users.c.id == user_to_groups.c.uid)) + .where(and_(user_to_groups.c.gid == gid, users.c.id == the_user_id_in_group)) + ) + the_user: RowProxy = await result.fetchone() + if not the_user: + raise UserInGroupNotFoundError(the_user_id_in_group, gid) + return the_user + + +async def get_user_in_group( + app: web.Application, user_id: int, gid: int, the_user_id_in_group: int +) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + + async with engine.acquire() as conn: + # first check if the group exists + group: RowProxy = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "read") + # get the user with its permissions + the_user: RowProxy = await _get_user_in_group_permissions( + conn, gid, the_user_id_in_group + ) + return convert_user_in_group_to_schema(the_user) + + +async def update_user_in_group( + app: web.Application, + user_id: int, + gid: int, + the_user_id_in_group: int, + new_values_for_user_in_group: Dict, +) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + # first check if the group exists + group: RowProxy = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "write") + # now check the user exists + the_user: RowProxy = await _get_user_in_group_permissions( + conn, gid, the_user_id_in_group + ) + # modify the user access rights + await conn.execute( + # pylint: disable=no-value-for-parameter + user_to_groups.update() + .values(**new_values_for_user_in_group) + .where( + and_( + user_to_groups.c.uid == the_user_id_in_group, + user_to_groups.c.gid == gid, + ) + ) + ) + the_user = dict(the_user) + the_user.update(**new_values_for_user_in_group) + return convert_user_in_group_to_schema(the_user) + + +async def delete_user_in_group( + app: web.Application, user_id: int, gid: int, the_user_id_in_group: int +) -> None: + engine = app[APP_DB_ENGINE_KEY] + + async with engine.acquire() as conn: + # first check if the group exists + group: RowProxy = await _get_user_group(conn, user_id, gid) + check_group_permissions(group, user_id, gid, "write") + # check the user exists + await _get_user_in_group_permissions(conn, gid, the_user_id_in_group) + # delete him/her + await conn.execute( + # pylint: disable=no-value-for-parameter + user_to_groups.delete().where( + and_( + user_to_groups.c.uid == the_user_id_in_group, + user_to_groups.c.gid == gid, + ) + ) + ) diff --git a/services/web/server/src/simcore_service_webserver/groups_exceptions.py b/services/web/server/src/simcore_service_webserver/groups_exceptions.py new file mode 100644 index 00000000000..224fbbd7a96 --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/groups_exceptions.py @@ -0,0 +1,32 @@ +"""Defines the different exceptions that may arise in the projects subpackage""" + + +class GroupsException(Exception): + """Basic exception for errors raised in projects""" + + def __init__(self, msg: str = None): + super().__init__(msg or "Unexpected error occured in projects subpackage") + + +class GroupNotFoundError(GroupsException): + """Group was not found in DB""" + + def __init__(self, gid: int): + super().__init__(f"Group with id {gid} not found") + self.gid = gid + + +class UserInsufficientRightsError(GroupsException): + """User has not sufficient rights""" + + def __init__(self, msg: str): + super().__init__(msg) + + +class UserInGroupNotFoundError(GroupsException): + """User in group was not found in DB""" + + def __init__(self, gid: int, uid: int): + super().__init__(f"User id {uid} in Group {gid} not found") + self.gid = gid + self.uid = uid diff --git a/services/web/server/src/simcore_service_webserver/groups_handlers.py b/services/web/server/src/simcore_service_webserver/groups_handlers.py new file mode 100644 index 00000000000..4e5629ff8f9 --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/groups_handlers.py @@ -0,0 +1,190 @@ +# pylint: disable=no-value-for-parameter + +import json +import logging + +from aiohttp import web + +from . import groups_api +from .groups_exceptions import ( + GroupNotFoundError, + UserInGroupNotFoundError, + UserInsufficientRightsError, +) +from .login.decorators import RQT_USERID_KEY, login_required +from .security_decorators import permission_required +from .users_exceptions import UserNotFoundError + +logger = logging.getLogger(__name__) + + +# groups/ ------------------------------------------------------ +@login_required +@permission_required("groups.*") +async def list_groups(request: web.Request): + user_id = request[RQT_USERID_KEY] + primary_group, user_groups, all_group = await groups_api.list_user_groups( + request.app, user_id + ) + return {"me": primary_group, "organizations": user_groups, "all": all_group} + + +@login_required +@permission_required("groups.*") +async def get_group(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + try: + return await groups_api.get_user_group(request.app, user_id, gid) + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + + +@login_required +@permission_required("groups.*") +async def create_group(request: web.Request): + user_id = request[RQT_USERID_KEY] + new_group = await request.json() + + try: + new_group = await groups_api.create_user_group(request.app, user_id, new_group) + raise web.HTTPCreated( + text=json.dumps({"data": new_group}), content_type="application/json" + ) + except UserNotFoundError: + raise web.HTTPNotFound(reason=f"User {user_id} not found") + + +@login_required +@permission_required("groups.*") +async def update_group(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + new_group_values = await request.json() + + try: + return await groups_api.update_user_group( + request.app, user_id, gid, new_group_values + ) + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + except UserInsufficientRightsError: + raise web.HTTPForbidden() + + +@login_required +@permission_required("groups.*") +async def delete_group(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + try: + await groups_api.delete_user_group(request.app, user_id, gid) + raise web.HTTPNoContent() + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + except UserInsufficientRightsError: + raise web.HTTPForbidden() + + +# groups/{gid}/users -------------------------------------------- +@login_required +@permission_required("groups.*") +async def get_group_users(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + try: + return await groups_api.list_users_in_group(request.app, user_id, gid) + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + except UserInsufficientRightsError: + raise web.HTTPForbidden() + + +@login_required +@permission_required("groups.*") +async def add_group_user(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + new_user_in_group = await request.json() + # TODO: validate!! + assert "uid" in new_user_in_group or "email" in new_user_in_group # nosec + try: + new_user_id = new_user_in_group["uid"] if "uid" in new_user_in_group else None + new_user_email = ( + new_user_in_group["email"] if "email" in new_user_in_group else None + ) + + await groups_api.add_user_in_group( + request.app, + user_id, + gid, + new_user_id=new_user_id, + new_user_email=new_user_email, + ) + raise web.HTTPNoContent() + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + except UserInGroupNotFoundError: + raise web.HTTPNotFound(reason=f"User not found in group {gid}") + except UserInsufficientRightsError: + raise web.HTTPForbidden() + + +@login_required +@permission_required("groups.*") +async def get_group_user(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + the_user_id_in_group = request.match_info["uid"] + try: + return await groups_api.get_user_in_group( + request.app, user_id, gid, the_user_id_in_group + ) + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + except UserInGroupNotFoundError: + raise web.HTTPNotFound(reason=f"User {the_user_id_in_group} not found") + except UserInsufficientRightsError: + raise web.HTTPForbidden() + + +@login_required +@permission_required("groups.*") +async def update_group_user(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + the_user_id_in_group = request.match_info["uid"] + new_values_for_user_in_group = await request.json() + try: + return await groups_api.update_user_in_group( + request.app, + user_id, + gid, + the_user_id_in_group, + new_values_for_user_in_group, + ) + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + except UserInGroupNotFoundError: + raise web.HTTPNotFound(reason=f"User {the_user_id_in_group} not found") + except UserInsufficientRightsError: + raise web.HTTPForbidden() + + +@login_required +@permission_required("groups.*") +async def delete_group_user(request: web.Request): + user_id = request[RQT_USERID_KEY] + gid = request.match_info["gid"] + the_user_id_in_group = request.match_info["uid"] + try: + await groups_api.delete_user_in_group( + request.app, user_id, gid, the_user_id_in_group + ) + raise web.HTTPNoContent() + except GroupNotFoundError: + raise web.HTTPNotFound(reason=f"Group {gid} not found") + except UserInGroupNotFoundError: + raise web.HTTPNotFound(reason=f"User {the_user_id_in_group} not found") + except UserInsufficientRightsError: + raise web.HTTPForbidden() diff --git a/services/web/server/src/simcore_service_webserver/groups_utils.py b/services/web/server/src/simcore_service_webserver/groups_utils.py new file mode 100644 index 00000000000..5ac3a0eafa8 --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/groups_utils.py @@ -0,0 +1,54 @@ +import logging +from typing import Dict, Optional, Union + +from aiopg.sa.result import RowProxy + +from .groups_exceptions import UserInsufficientRightsError +from .users_utils import convert_user_db_to_schema + +logger = logging.getLogger(__name__) + +GROUPS_SCHEMA_TO_DB = { + "gid": "gid", + "label": "name", + "description": "description", + "thumbnail": "thumbnail", + "access_rights": "access_rights", +} + + +def check_group_permissions( + group: RowProxy, user_id: int, gid: int, permission: str +) -> None: + if not group.access_rights[permission]: + raise UserInsufficientRightsError( + f"User {user_id} has insufficient rights for {permission} access to group {gid}" + ) + + +def convert_groups_db_to_schema( + db_row: RowProxy, *, prefix: Optional[str] = "", **kwargs +) -> Dict: + converted_dict = { + k: db_row[f"{prefix}{v}"] + for k, v in GROUPS_SCHEMA_TO_DB.items() + if f"{prefix}{v}" in db_row + } + converted_dict.update(**kwargs) + return converted_dict + + +def convert_groups_schema_to_db(schema: Dict) -> Dict: + return { + v: schema[k] + for k, v in GROUPS_SCHEMA_TO_DB.items() + if k in schema and k != "gid" + } + + +def convert_user_in_group_to_schema(row: Union[RowProxy, Dict]) -> Dict[str, str]: + group_user = convert_user_db_to_schema(row) + group_user.pop("role") + group_user["access_rights"] = row["access_rights"] + group_user["gid"] = row["primary_gid"] + return group_user diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_api.py b/services/web/server/src/simcore_service_webserver/projects/projects_api.py index 23f7502f01b..35896cdaa03 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_api.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_api.py @@ -22,10 +22,11 @@ from ..computation_api import delete_pipeline_db from ..director import director_api -from ..storage_api import \ - copy_data_folders_from_project # mocked in unit-tests -from ..storage_api import (delete_data_folders_of_project, - delete_data_folders_of_project_node) +from ..storage_api import copy_data_folders_from_project # mocked in unit-tests +from ..storage_api import ( + delete_data_folders_of_project, + delete_data_folders_of_project_node, +) from .config import CONFIG_SECTION_NAME from .projects_db import APP_PROJECT_DBAPI from .projects_exceptions import NodeNotFoundError @@ -291,7 +292,9 @@ async def update_project_node_outputs( if data: # NOTE: update outputs (not required) if necessary as the UI expects a # dataset/label field that is missing - outputs: Dict[str,Any] = project["workbench"][node_id].setdefault("outputs", {}) + outputs: Dict[str, Any] = project["workbench"][node_id].setdefault( + "outputs", {} + ) outputs.update(data) for output_key in outputs.keys(): @@ -308,6 +311,7 @@ async def update_project_node_outputs( await db.update_user_project(project, user_id, project_id) return project["workbench"][node_id] + async def get_workbench_node_ids_from_project_uuid( app: web.Application, project_uuid: str, ) -> Set[str]: diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_db.py b/services/web/server/src/simcore_service_webserver/projects/projects_db.py index b8735ea5388..51f473e938c 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_db.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_db.py @@ -8,7 +8,8 @@ import logging import uuid as uuidlib from datetime import datetime -from typing import Dict, List, Mapping, Optional, Set +from enum import Enum +from typing import Dict, List, Mapping, Optional, Set, Union import psycopg2.errors import sqlalchemy as sa @@ -16,14 +17,13 @@ from aiopg.sa import Engine from aiopg.sa.connection import SAConnection from aiopg.sa.result import ResultProxy, RowProxy - from change_case import ChangeCase -from psycopg2 import IntegrityError +from sqlalchemy import literal_column from sqlalchemy.sql import and_, select from servicelib.application_keys import APP_DB_ENGINE_KEY -from ..db_models import study_tags, users, user_to_groups +from ..db_models import GroupType, groups, study_tags, user_to_groups, users from ..utils import format_datetime, now_str from .projects_exceptions import ( ProjectInvalidRightsError, @@ -31,13 +31,60 @@ ProjectsException, ) from .projects_fakes import Fake -from .projects_models import ProjectType, projects, user_to_projects +from .projects_models import ProjectType, projects log = logging.getLogger(__name__) APP_PROJECT_DBAPI = __name__ + ".ProjectDBAPI" DB_EXCLUSIVE_COLUMNS = ["type", "id", "published"] + +class ProjectAccessRights(Enum): + OWNER = {"read": True, "write": True, "delete": True} + COLLABORATOR = {"read": True, "write": True, "delete": False} + VIEWER = {"read": True, "write": False, "delete": False} + + +def _check_project_permissions( + project: Union[RowProxy, Dict], + user_id: int, + user_groups: List[RowProxy], + permission: str, +) -> None: + # compute access rights by order of priority all group > organizations > primary + primary_group = next(filter(lambda x: x.type == GroupType.PRIMARY, user_groups)) + standard_groups = filter(lambda x: x.type == GroupType.STANDARD, user_groups) + all_group = next(filter(lambda x: x.type == GroupType.EVERYONE, user_groups)) + + if f"{primary_group.gid}" in project["access_rights"]: + if not project["access_rights"][f"{primary_group.gid}"][permission]: + raise ProjectInvalidRightsError(user_id, project["uuid"]) + return + # let's check if standard groups are in there and take the most liberal rights + standard_groups_permissions = [] + for group in standard_groups: + if f"{group.gid}" in project["access_rights"]: + standard_groups_permissions.append( + project["access_rights"][f"{group.gid}"][permission] + ) + if standard_groups_permissions: + if not any(standard_groups_permissions): + raise ProjectInvalidRightsError(user_id, project["uuid"]) + return + + if ( + not f"{all_group.gid}" in project["access_rights"] + or not project["access_rights"][f"{all_group.gid}"][permission] + ): + raise ProjectInvalidRightsError(user_id, project["uuid"]) + + +def _create_project_access_rights( + gid: int, access: ProjectAccessRights +) -> Dict[str, Dict[str, bool]]: + return {f"{gid}": access.value} + + # TODO: check here how schema to model db works!? def _convert_to_db_names(project_document_data: Dict) -> Dict: converted_args = {} @@ -51,7 +98,9 @@ def _convert_to_db_names(project_document_data: Dict) -> Dict: return converted_args -def _convert_to_schema_names(project_database_data: Mapping, user_email: str) -> Dict: +def _convert_to_schema_names( + project_database_data: Mapping, user_email: str, **kwargs +) -> Dict: converted_args = {} for key, value in project_database_data.items(): if key in DB_EXCLUSIVE_COLUMNS: @@ -63,6 +112,7 @@ def _convert_to_schema_names(project_database_data: Mapping, user_email: str) -> # this entry has to be converted to the owner e-mail address converted_value = user_email converted_args[ChangeCase.snake_to_camel(key)] = converted_value + converted_args.update(**kwargs) return converted_args @@ -98,7 +148,7 @@ def engine(self) -> Engine: self._init_engine() return self._engine - async def add_projects(self, projects_list: List[Dict], user_id: str) -> List[str]: + async def add_projects(self, projects_list: List[Dict], user_id: int) -> List[str]: """ adds all projects and assigns to a user @@ -114,7 +164,7 @@ async def add_projects(self, projects_list: List[Dict], user_id: str) -> List[st async def add_project( self, prj: Dict, - user_id: str, + user_id: int, *, force_project_uuid=False, force_as_template=False, @@ -127,7 +177,7 @@ async def add_project( :param prj: schema-compliant project data :type prj: Dict :param user_id: database's user identifier - :type user_id: str + :type user_id: int :param force_project_uuid: enforces valid uuid, defaults to False :type force_project_uuid: bool, optional :param force_as_template: adds data as template, defaults to False @@ -153,6 +203,14 @@ async def add_project( "prj_owner": user_id if user_id else None, } ) + # validate access_rights. are the gids valid? also ensure prj_owner is in there + if user_id: + primary_gid = await self._get_user_primary_group_gid(conn, user_id) + kargs["access_rights"].update( + _create_project_access_rights( + primary_gid, ProjectAccessRights.OWNER + ) + ) # must be valid uuid try: @@ -164,13 +222,11 @@ async def add_project( # insert project retry = True - project_id = None while retry: try: query = projects.insert().values(**kargs) result = await conn.execute(query) - row = await result.first() - project_id = row[projects.c.id] + await result.first() retry = False except psycopg2.errors.UniqueViolation as err: # pylint: disable=no-member if ( @@ -181,21 +237,6 @@ async def add_project( kargs["uuid"] = str(uuidlib.uuid1()) retry = True - if user_id is not None: - try: - query = user_to_projects.insert().values( - user_id=user_id, project_id=project_id - ) - await conn.execute(query) - except IntegrityError as exc: - log.exception("Cannot associate project %d to user %d", project_id, user_id) - - # rollback projects database - query = projects.delete().where(projects.c.id == project_id) - await conn.execute(query) - - raise ProjectInvalidRightsError(user_id, prj["uuid"]) from exc - # Updated values user_email = await self._get_user_email(conn, user_id) prj = _convert_to_schema_names(kargs, user_email) @@ -203,27 +244,25 @@ async def add_project( prj["tags"] = [] return prj - async def load_user_projects(self, user_id: str) -> List[Dict]: + async def load_user_projects(self, user_id: int) -> List[Dict]: log.info("Loading projects for user %s", user_id) - - query = ( - select([projects]) - .select_from(user_to_projects.join(projects)) - .where( - and_( - user_to_projects.c.user_id == user_id, - projects.c.type != ProjectType.TEMPLATE, - ) - ) - ) - async with self.engine.acquire() as conn: - projects_list = await self.__load_projects(conn, query) + user_groups: List[RowProxy] = await self.__load_user_groups(conn, user_id) + query = f""" + SELECT * + FROM projects + WHERE projects.type != 'TEMPLATE' + AND (jsonb_exists_any(projects.access_rights, array[{', '.join(f"'{group.gid}'" for group in user_groups)}]) + OR prj_owner = {user_id}) + """ + projects_list = await self.__load_projects( + conn, query, user_id, user_groups + ) return projects_list async def load_template_projects( - self, user_id: str, *, only_published=False + self, user_id: int, *, only_published=False ) -> List[Dict]: log.info("Loading public template projects") @@ -231,32 +270,44 @@ async def load_template_projects( projects_list = [prj.data for prj in Fake.projects.values() if prj.template] async with self.engine.acquire() as conn: - user_groups: List[str] = await self.__load_user_groups(conn, user_id) + user_groups: List[RowProxy] = await self.__load_user_groups(conn, user_id) # NOTE: in order to use specific postgresql function jsonb_exists_any we use raw call here query = f""" SELECT * FROM projects WHERE projects.type = 'TEMPLATE' {'AND projects.published ' if only_published else ''} -AND (jsonb_exists_any(projects.access_rights, array[{', '.join(f"'{group}'" for group in user_groups)}]) +AND (jsonb_exists_any(projects.access_rights, array[{', '.join(f"'{group.gid}'" for group in user_groups)}]) OR prj_owner = {user_id}) """ - db_projects = await self.__load_projects(conn, query) + db_projects = await self.__load_projects(conn, query, user_id, user_groups) projects_list.extend(db_projects) return projects_list - async def __load_user_groups(self, conn: SAConnection, user_id: str) -> List[str]: - user_groups: List[str] = [] - query = select([user_to_groups.c.gid]).where(user_to_groups.c.uid == user_id) + async def __load_user_groups( + self, conn: SAConnection, user_id: int + ) -> List[RowProxy]: + user_groups: List[RowProxy] = [] + query = ( + select([groups]) + .select_from(groups.join(user_to_groups)) + .where(user_to_groups.c.uid == user_id) + ) async for row in conn.execute(query): - user_groups.append(row[user_to_groups.c.gid]) + user_groups.append(row) return user_groups - async def __load_projects(self, conn: SAConnection, query) -> List[Dict]: + async def __load_projects( + self, conn: SAConnection, query: str, user_id: int, user_groups: List[RowProxy] + ) -> List[Dict]: api_projects: List[Dict] = [] # API model-compatible projects db_projects: List[Dict] = [] # DB model-compatible projects async for row in conn.execute(query): + try: + _check_project_permissions(row, user_id, user_groups, "read") + except ProjectInvalidRightsError: + continue prj = dict(row.items()) log.debug("found project: %s", prj) db_projects.append(prj) @@ -273,27 +324,31 @@ async def __load_projects(self, conn: SAConnection, query) -> List[Dict]: return api_projects async def _get_project( - self, user_id: str, project_uuid: str, exclude_foreign: Optional[List] = None + self, user_id: int, project_uuid: str, exclude_foreign: Optional[List] = None ) -> Dict: exclude_foreign = exclude_foreign or [] async with self.engine.acquire() as conn: - joint_table = user_to_projects.join(projects) - query = ( - select([projects]) - .select_from(joint_table) - .where( - and_( - projects.c.uuid == project_uuid, - user_to_projects.c.user_id == user_id, - ) - ) - ) + # this retrieves the projects where user is owner + user_groups: List[RowProxy] = await self.__load_user_groups(conn, user_id) + + # NOTE: in order to use specific postgresql function jsonb_exists_any we use raw call here + query = f""" +SELECT * +FROM projects +WHERE projects.type != 'TEMPLATE' +AND uuid = '{project_uuid}' +AND (jsonb_exists_any(projects.access_rights, array[{', '.join(f"'{group.gid}'" for group in user_groups)}]) +OR prj_owner = {user_id}) +""" result = await conn.execute(query) project_row = await result.first() if not project_row: raise ProjectNotFoundError(project_uuid) + # now carefuly check the access rights + _check_project_permissions(project_row, user_id, user_groups, "read") + project = dict(project_row.items()) if "tags" not in exclude_foreign: @@ -302,7 +357,7 @@ async def _get_project( return project - async def add_tag(self, user_id: str, project_uuid: str, tag_id: int) -> Dict: + async def add_tag(self, user_id: int, project_uuid: str, tag_id: int) -> Dict: project = await self._get_project(user_id, project_uuid) async with self.engine.acquire() as conn: # pylint: disable=no-value-for-parameter @@ -314,7 +369,7 @@ async def add_tag(self, user_id: str, project_uuid: str, tag_id: int) -> Dict: return _convert_to_schema_names(project, user_email) raise ProjectsException() - async def remove_tag(self, user_id: str, project_uuid: str, tag_id: int) -> Dict: + async def remove_tag(self, user_id: int, project_uuid: str, tag_id: int) -> Dict: project = await self._get_project(user_id, project_uuid) async with self.engine.acquire() as conn: user_email = await self._get_user_email(conn, user_id) @@ -330,12 +385,12 @@ async def remove_tag(self, user_id: str, project_uuid: str, tag_id: int) -> Dict project["tags"].remove(tag_id) return _convert_to_schema_names(project, user_email) - async def get_user_project(self, user_id: str, project_uuid: str) -> Dict: + async def get_user_project(self, user_id: int, project_uuid: str) -> Dict: """ Returns all projects *owned* by the user - - A project is owned with it is mapped in user_to_projects list - - prj_owner field is not + - prj_owner - Notice that a user can have access to a template but he might not onw it + - Notice that a user can have access to a project where he/she has read access :raises ProjectNotFoundError: project is not assigned to user :return: schema-compliant project @@ -349,7 +404,7 @@ async def get_user_project(self, user_id: str, project_uuid: str) -> Dict: project = await self._get_project(user_id, project_uuid) async with self.engine.acquire() as conn: # pylint: disable=no-value-for-parameter - user_email = await self._get_user_email(conn, user_id) + user_email = await self._get_user_email(conn, project["prj_owner"]) return _convert_to_schema_names(project, user_email) async def get_template_project( @@ -360,7 +415,7 @@ async def get_template_project( if prj and prj.template: return prj.data - template_prj = None + template_prj = {} async with self.engine.acquire() as conn: if only_published: condition = and_( @@ -386,19 +441,8 @@ async def get_template_project( return template_prj - async def get_project_workbench(self, project_uuid: str): - async with self.engine.acquire() as conn: - query = select([projects.c.workbench]).where( - projects.c.uuid == project_uuid - ) - result = await conn.execute(query) - row = await result.first() - if row: - return row[projects.c.workbench] - return {} - async def update_user_project( - self, project_data: Dict, user_id: str, project_uuid: str + self, project_data: Dict, user_id: int, project_uuid: str ): """ updates a project from a user @@ -409,69 +453,50 @@ async def update_user_project( row = await self._get_project( user_id, project_uuid, exclude_foreign=["tags"] ) - + user_groups: List[RowProxy] = await self.__load_user_groups(conn, user_id) + _check_project_permissions(row, user_id, user_groups, "write") # uuid can ONLY be set upon creation if row[projects.c.uuid.key] != project_data["uuid"]: - # TODO: add message raise ProjectInvalidRightsError(user_id, project_data["uuid"]) - # TODO: should also take ownership??? + # ensure the prj owner is always in the access rights + owner_primary_gid = await self._get_user_primary_group_gid( + conn, row[projects.c.prj_owner.key] + ) + project_data["accessRights"].update( + _create_project_access_rights( + owner_primary_gid, ProjectAccessRights.OWNER + ) + ) # update timestamps project_data["lastChangeDate"] = now_str() - # now update it - # FIXME: E1120:No value for argument 'dml' in method call - # pylint: disable=E1120 - query = ( + result = await conn.execute( + # pylint: disable=no-value-for-parameter projects.update() .values(**_convert_to_db_names(project_data)) .where(projects.c.id == row[projects.c.id.key]) + .returning(literal_column("*")) + ) + project: RowProxy = await result.fetchone() + user_email = await self._get_user_email(conn, project.prj_owner) + + tags = await self._get_tags_by_project( + conn, project_id=project[projects.c.id] ) - await conn.execute(query) + return _convert_to_schema_names(project, user_email, tags=tags) async def delete_user_project(self, user_id: int, project_uuid: str): log.info("Deleting project %s for user %s", project_uuid, user_id) + project = await self._get_project(user_id, project_uuid) async with self.engine.acquire() as conn: - joint_table = user_to_projects.join(projects) - query = ( - select([projects.c.id, user_to_projects.c.id], use_labels=True) - .select_from(joint_table) - .where( - and_( - projects.c.uuid == project_uuid, - user_to_projects.c.user_id == user_id, - ) - ) + # if we have delete access we delete the project + user_groups: List[RowProxy] = await self.__load_user_groups(conn, user_id) + _check_project_permissions(project, user_id, user_groups, "delete") + await conn.execute( + # pylint: disable=no-value-for-parameter + projects.delete().where(projects.c.uuid == project_uuid) ) - result = await conn.execute(query) - # ensure we have found one - rows = await result.fetchall() - - if not rows: - # no project found - raise ProjectNotFoundError(project_uuid) - - if len(rows) == 1: - row = rows[0] - # now let's delete the link to the user - # FIXME: E1120:No value for argument 'dml' in method call - # pylint: disable=E1120 - project_id = row[user_to_projects.c.id] - log.info("will delete row with project_id %s", project_id) - query = user_to_projects.delete().where( - user_to_projects.c.id == project_id - ) - await conn.execute(query) - - query = user_to_projects.select().where( - user_to_projects.c.project_id == row[projects.c.id] - ) - result = await conn.execute(query) - remaining_users = await result.fetchall() - if not remaining_users: - # only delete project if there are no other user mapped - query = projects.delete().where(projects.c.id == row[projects.c.id]) - await conn.execute(query) async def make_unique_project_uuid(self) -> str: """ Generates a project identifier still not used in database @@ -494,20 +519,27 @@ async def make_unique_project_uuid(self) -> str: break return project_uuid - async def _get_user_email(self, conn: SAConnection, user_id: Optional[str]) -> str: + async def _get_user_email(self, conn: SAConnection, user_id: Optional[int]) -> str: if not user_id: return "not_a_user@unknown.com" - stmt = sa.select([users.c.email]).where(users.c.id == user_id) - result: ResultProxy = await conn.execute(stmt) - row: RowProxy = await result.first() - return row[users.c.email] if row else "Unknown" + email: ResultProxy = await conn.scalar( + sa.select([users.c.email]).where(users.c.id == user_id) + ) + return email or "Unknown" + + async def _get_user_primary_group_gid( + self, conn: SAConnection, user_id: int + ) -> int: + primary_gid: int = await conn.scalar( + sa.select([users.c.primary_gid]).where(users.c.id == str(user_id)) + ) + return primary_gid async def _get_tags_by_project(self, conn: SAConnection, project_id: str) -> List: query = sa.select([study_tags.c.tag_id]).where( study_tags.c.study_id == project_id ) - rows = await (await conn.execute(query)).fetchall() - return [row.tag_id for row in rows] + return [row.tag_id async for row in conn.execute(query)] async def get_all_node_ids_from_workbenches( self, project_uuid: str = None diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py b/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py index 4fa7db1fd61..9507566d572 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py @@ -13,25 +13,32 @@ from ..login.decorators import RQT_USERID_KEY, login_required from ..resource_manager.websocket_manager import managed_resource from ..security_api import check_permission +from ..security_decorators import permission_required from . import projects_api from .projects_db import APP_PROJECT_DBAPI from .projects_exceptions import ProjectInvalidRightsError, ProjectNotFoundError -OVERRIDABLE_DOCUMENT_KEYS = ["name", "description", "thumbnail", "prjOwner", "accessRights"] +OVERRIDABLE_DOCUMENT_KEYS = [ + "name", + "description", + "thumbnail", + "prjOwner", + "accessRights", +] # TODO: validate these against api/specs/webserver/v0/components/schemas/project-v0.0.1.json log = logging.getLogger(__name__) @login_required +@permission_required("project.create") +@permission_required("services.pipeline.*") # due to update_pipeline_db async def create_projects(request: web.Request): from .projects_api import ( clone_project, ) # TODO: keep here since is async and parser thinks it is a handler # pylint: disable=too-many-branches - await check_permission(request, "project.create") - await check_permission(request, "services.pipeline.*") # due to update_pipeline_db user_id = request[RQT_USERID_KEY] db = request.config_dict[APP_PROJECT_DBAPI] @@ -63,12 +70,13 @@ async def create_projects(request: web.Request): ) project = await clone_project(request, template_prj, user_id) + # remove template access rights + project["accessRights"] = {} # FIXME: parameterized inputs should get defaults provided by service # overrides with body if request.has_body: predefined = await request.json() - if project: for key in OVERRIDABLE_DOCUMENT_KEYS: non_null_value = predefined.get(key) @@ -101,8 +109,8 @@ async def create_projects(request: web.Request): @login_required +@permission_required("project.read") async def list_projects(request: web.Request): - await check_permission(request, "project.read") # TODO: implement all query parameters as # in https://www.ibm.com/support/knowledgecenter/en/SSCRJU_3.2.0/com.ibm.swg.im.infosphere.streams.rest.api.doc/doc/restapis-queryparms-list.html @@ -138,12 +146,13 @@ async def list_projects(request: web.Request): @login_required +@permission_required("project.read") async def get_project(request: web.Request): """ Returns all projects accessible to a user (not necesarly owned) """ # TODO: temporary hidden until get_handlers_from_namespace refactor to seek marked functions instead! - await check_permission(request, "project.read") + user_id = request[RQT_USERID_KEY] from .projects_api import get_project_for_user project_uuid = request.match_info.get("project_id") @@ -156,11 +165,16 @@ async def get_project(request: web.Request): ) return {"data": project} + except ProjectInvalidRightsError: + raise web.HTTPForbidden( + reason=f"User {user_id} has no right to read {project_uuid}" + ) except ProjectNotFoundError: raise web.HTTPNotFound(reason=f"Project {project_uuid} not found") @login_required +@permission_required("services.pipeline.*") # due to update_pipeline_db async def replace_project(request: web.Request): """ Implements PUT /projects @@ -176,8 +190,6 @@ async def replace_project(request: web.Request): :raises web.HTTPNotFound: cannot find project id in repository """ - await check_permission(request, "services.pipeline.*") # due to update_pipeline_db - user_id = request[RQT_USERID_KEY] project_uuid = request.match_info.get("project_id") replace_pipeline = request.query.get( @@ -198,9 +210,19 @@ async def replace_project(request: web.Request): ) try: - projects_api.validate_project(request.app, new_project) + # TODO: temporary hidden until get_handlers_from_namespace refactor to seek marked functions instead! + from .projects_api import get_project_for_user - await db.update_user_project(new_project, user_id, project_uuid) + projects_api.validate_project(request.app, new_project) + current_project = await get_project_for_user( + request.app, + project_uuid=project_uuid, + user_id=user_id, + include_templates=False, + ) + if current_project["accessRights"] != new_project["accessRights"]: + await check_permission(request, "project.access_rights.update") + new_project = await db.update_user_project(new_project, user_id, project_uuid) await update_pipeline_db( request.app, project_uuid, new_project["workbench"], replace_pipeline ) @@ -208,6 +230,10 @@ async def replace_project(request: web.Request): except ValidationError: raise web.HTTPBadRequest + except ProjectInvalidRightsError: + raise web.HTTPForbidden( + reason=f"User {user_id} has no rights to write to project {project_uuid}" + ) except ProjectNotFoundError: raise web.HTTPNotFound @@ -215,10 +241,8 @@ async def replace_project(request: web.Request): @login_required +@permission_required("project.delete") async def delete_project(request: web.Request): - # TODO: replace by decorator since it checks again authentication - await check_permission(request, "project.delete") - # first check if the project exists user_id = request[RQT_USERID_KEY] project_uuid = request.match_info.get("project_id") @@ -239,6 +263,10 @@ async def delete_project(request: web.Request): raise web.HTTPForbidden(reason=message) await projects_api.delete_project(request, project_uuid, user_id) + except ProjectInvalidRightsError: + raise web.HTTPForbidden( + reason=f"User {user_id} has no rights to delete project" + ) except ProjectNotFoundError: raise web.HTTPNotFound(reason=f"Project {project_uuid} not found") @@ -246,9 +274,8 @@ async def delete_project(request: web.Request): @login_required +@permission_required("project.open") async def open_project(request: web.Request) -> web.Response: - # TODO: replace by decorator since it checks again authentication - await check_permission(request, "project.open") user_id = request[RQT_USERID_KEY] project_uuid = request.match_info.get("project_id") @@ -275,10 +302,8 @@ async def open_project(request: web.Request) -> web.Response: @login_required +@permission_required("project.close") async def close_project(request: web.Request) -> web.Response: - # TODO: replace by decorator since it checks again authentication - await check_permission(request, "project.close") - user_id = request[RQT_USERID_KEY] project_uuid = request.match_info.get("project_id") client_session_id = await request.json() @@ -311,8 +336,8 @@ async def close_project(request: web.Request) -> web.Response: @login_required +@permission_required("project.read") async def get_active_project(request: web.Request) -> web.Response: - await check_permission(request, "project.read") user_id = request[RQT_USERID_KEY] client_session_id = request.query["client_session_id"] @@ -338,9 +363,8 @@ async def get_active_project(request: web.Request) -> web.Response: @login_required +@permission_required("project.node.create") async def create_node(request: web.Request) -> web.Response: - # TODO: replace by decorator since it checks again authentication - await check_permission(request, "project.node.create") user_id = request[RQT_USERID_KEY] project_uuid = request.match_info.get("project_id") body = await request.json() @@ -372,9 +396,8 @@ async def create_node(request: web.Request) -> web.Response: @login_required +@permission_required("project.node.read") async def get_node(request: web.Request) -> web.Response: - # TODO: replace by decorator since it checks again authentication - await check_permission(request, "project.node.read") user_id = request[RQT_USERID_KEY] project_uuid = request.match_info.get("project_id") node_uuid = request.match_info.get("node_id") @@ -399,9 +422,8 @@ async def get_node(request: web.Request) -> web.Response: @login_required +@permission_required("project.node.delete") async def delete_node(request: web.Request) -> web.Response: - # TODO: replace by decorator since it checks again authentication - await check_permission(request, "project.node.delete") user_id = request[RQT_USERID_KEY] project_uuid = request.match_info.get("project_id") node_uuid = request.match_info.get("node_id") @@ -427,8 +449,8 @@ async def delete_node(request: web.Request) -> web.Response: @login_required +@permission_required("project.tag.*") async def add_tag(request: web.Request): - await check_permission(request, "project.tag.*") uid, db = request[RQT_USERID_KEY], request.config_dict[APP_PROJECT_DBAPI] tag_id, study_uuid = ( request.match_info.get("tag_id"), @@ -438,8 +460,8 @@ async def add_tag(request: web.Request): @login_required +@permission_required("project.tag.*") async def remove_tag(request: web.Request): - await check_permission(request, "project.tag.*") uid, db = request[RQT_USERID_KEY], request.config_dict[APP_PROJECT_DBAPI] tag_id, study_uuid = ( request.match_info.get("tag_id"), diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_models.py b/services/web/server/src/simcore_service_webserver/projects/projects_models.py index 82d7e2e6191..3952c803d07 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_models.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_models.py @@ -5,11 +5,9 @@ from simcore_postgres_database.webserver_models import ( ProjectType, projects, - user_to_projects, ) __all__ = [ "projects", "ProjectType", - "user_to_projects", ] diff --git a/services/web/server/src/simcore_service_webserver/publication_handlers.py b/services/web/server/src/simcore_service_webserver/publication_handlers.py index 6720b2451d0..74b041c58f6 100644 --- a/services/web/server/src/simcore_service_webserver/publication_handlers.py +++ b/services/web/server/src/simcore_service_webserver/publication_handlers.py @@ -25,7 +25,7 @@ async def service_submission(request: web.Request): # Read multipart email while True: - part = await reader.next() # pylint: disable=not-callable + part = await reader.next() # pylint: disable=not-callable if part is None: break if part.headers[hdrs.CONTENT_TYPE] == "application/json": diff --git a/services/web/server/src/simcore_service_webserver/security_decorators.py b/services/web/server/src/simcore_service_webserver/security_decorators.py new file mode 100644 index 00000000000..c1663fb22f7 --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/security_decorators.py @@ -0,0 +1,28 @@ +from functools import wraps +from typing import Callable + +from aiohttp import web + +from .security_api import check_permission + + +def permission_required(permissions: str): + """Decorator that checks whether user permissions are fulfilled. + The function will throw an exception in case of disallowance. + + :param handler: the function to check syntax must have web.Request as parameter + If user is not authorized - raises HTTPUnauthorized, + if user is authorized and does not have permission - + raises HTTPForbidden. + """ + + def decorator(handler: Callable): + @wraps(handler) + async def wrapped(request: web.Request): + await check_permission(request, permissions) + ret = await handler(request) + return ret + + return wrapped + + return decorator diff --git a/services/web/server/src/simcore_service_webserver/security_roles.py b/services/web/server/src/simcore_service_webserver/security_roles.py index 3478c54a166..368fafde3ab 100644 --- a/services/web/server/src/simcore_service_webserver/security_roles.py +++ b/services/web/server/src/simcore_service_webserver/security_roles.py @@ -47,6 +47,7 @@ "project.create", # "studies.user.create", "project.close", "project.delete", # "study.node.create", + "project.access_rights.update", # "study.node.delete", # "study.node.rename", # "study.edge.create", @@ -54,25 +55,21 @@ "project.node.create", "project.node.delete", "project.tag.*", # "study.tag" - "user.profile.update", # "preferences.user.update", - # "preferences.role.update" - "user.apikey.*", # "preferences.apikey.create", - # "preferences.apikey.delete" - "user.tokens.*", # "preferences.token.create", - # "preferences.token.delete" - "tag.crud.*" # "preferences.tag" + "user.profile.update", # "user.user.update", + # "user.role.update" + "user.apikey.*", # "user.apikey.create", + # "user.apikey.delete" + "user.tokens.*", # "user.token.create", + # "user.token.delete" + "groups.*", + "tag.crud.*" # "user.tag" # NOTE: All services* are not necessary since it only requires login # and there is no distinction among logged in users. # TODO: kept temporarily as a way to denote resources ], "inherits": [UserRole.GUEST, UserRole.ANONYMOUS], }, - UserRole.TESTER: { - "can": [ - "project.template.create" - ], - "inherits": [UserRole.USER] - }, + UserRole.TESTER: {"can": ["project.template.create"], "inherits": [UserRole.USER]}, } # @@ -91,11 +88,11 @@ ### "studies.user.read", ### "studies.user.create", ### "storage.datcore.read", -### "preferences.user.update", -### "preferences.apikey.create", -### "preferences.apikey.delete", -### "preferences.token.create", -### "preferences.token.delete", +### "user.user.update", +### "user.apikey.create", +### "user.apikey.delete", +### "user.token.create", +### "user.token.delete", ### "study.node.create", ### "study.node.delete", ### "study.node.rename", @@ -107,7 +104,7 @@ # ], # "tester": [ # "services.all.read", <----------??? -### "preferences.role.update", +### "user.role.update", # "study.nodestree.uuid.read", <----------??? # "study.logger.debug.read" <----------??? # ], diff --git a/services/web/server/src/simcore_service_webserver/users_api.py b/services/web/server/src/simcore_service_webserver/users_api.py index 136544c9b43..1679a7033e6 100644 --- a/services/web/server/src/simcore_service_webserver/users_api.py +++ b/services/web/server/src/simcore_service_webserver/users_api.py @@ -1,57 +1,96 @@ - import logging -from typing import Dict, List, Tuple +from typing import Any, Dict, List import sqlalchemy as sa from aiohttp import web from aiopg.sa.result import RowProxy +from sqlalchemy import and_, literal_column from servicelib.application_keys import APP_DB_ENGINE_KEY from simcore_postgres_database.models.users import UserRole from simcore_service_webserver.login.cfg import get_storage -from .db_models import groups, user_to_groups, GroupType +from .db_models import GroupType, groups, tokens, user_to_groups, users +from .groups_api import convert_groups_db_to_schema +from .users_utils import convert_user_db_to_schema +from .users_exceptions import UserNotFoundError logger = logging.getLogger(__name__) -def _convert_to_schema(db_row: RowProxy) -> Dict: - return { - "gid": db_row["gid"], - "label": db_row["name"], - "description": db_row["description"], - } - -async def list_user_groups( - app: web.Application, user_id: str -) -> Tuple[Dict[str, str], List[Dict[str, str]], Dict[str, str]]: - """returns the user groups - Returns: - Tuple[List[Dict[str, str]]] -- [returns the user primary group, groups and all group] - """ +async def get_user_profile(app: web.Application, user_id: int) -> Dict[str, Any]: engine = app[APP_DB_ENGINE_KEY] - primary_group = {} - user_groups = [] - all_group = {} + user_profile: Dict[str, Any] = {} + user_primary_group = all_group = {} + user_standard_groups = [] async with engine.acquire() as conn: - query = ( + async for row in conn.execute( sa.select( - [groups.c.gid, groups.c.name, groups.c.description, groups.c.type] + [users, groups, user_to_groups.c.access_rights,], use_labels=True, ) .select_from( - user_to_groups.join(groups, user_to_groups.c.gid == groups.c.gid), + users.join( + user_to_groups.join(groups, user_to_groups.c.gid == groups.c.gid), + users.c.id == user_to_groups.c.uid, + ) ) - .where(user_to_groups.c.uid == user_id) - ) - async for row in conn.execute(query): - if row["type"] == GroupType.EVERYONE: - all_group = _convert_to_schema(row) - elif row["type"] == GroupType.PRIMARY: - primary_group = _convert_to_schema(row) + .where(users.c.id == user_id) + .order_by(sa.asc(groups.c.name)) + ): + user_profile.update(convert_user_db_to_schema(row, prefix="users_")) + if row["groups_type"] == GroupType.EVERYONE: + all_group = convert_groups_db_to_schema( + row, + prefix="groups_", + access_rights=row["user_to_groups_access_rights"], + ) + elif row["groups_type"] == GroupType.PRIMARY: + user_primary_group = convert_groups_db_to_schema( + row, + prefix="groups_", + access_rights=row["user_to_groups_access_rights"], + ) else: - user_groups.append(_convert_to_schema(row)) + user_standard_groups.append( + convert_groups_db_to_schema( + row, + prefix="groups_", + access_rights=row["user_to_groups_access_rights"], + ) + ) + if not user_profile: + raise UserNotFoundError(uid=user_id) + + user_profile["groups"] = { + "me": user_primary_group, + "organizations": user_standard_groups, + "all": all_group, + } + return user_profile + + +async def update_user_profile( + app: web.Application, user_id: int, profile: Dict +) -> None: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + default_name = await conn.scalar( + sa.select([users.c.name]).where(users.c.id == user_id) + ) + parts = default_name.split(".") + [""] + name = ( + profile.get("first_name", parts[0]) + + "." + + profile.get("last_name", parts[1]) + ) + resp = await conn.execute( + # pylint: disable=no-value-for-parameter + users.update() + .where(users.c.id == user_id) + .values(name=name) + ) + assert resp.rowcount == 1 # nosec - return (primary_group, user_groups, all_group) async def is_user_guest(app: web.Application, user_id: int) -> bool: """Returns True if the user exists and is a GUEST""" @@ -61,7 +100,7 @@ async def is_user_guest(app: web.Application, user_id: int) -> bool: logger.warning("Could not find user with id '%s'", user_id) return False - return UserRole(user["role"]) == UserRole.GUEST + return bool(UserRole(user["role"]) == UserRole.GUEST) async def delete_user(app: web.Application, user_id: int) -> None: @@ -75,3 +114,85 @@ async def delete_user(app: web.Application, user_id: int) -> None: return await db.delete_user(user) + + +# TOKEN ------------------------------------------- +async def create_token( + app: web.Application, user_id: int, token_data: Dict[str, str] +) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + await conn.execute( + # pylint: disable=no-value-for-parameter + tokens.insert().values( + user_id=user_id, + token_service=token_data["service"], + token_data=token_data, + ) + ) + return token_data + + +async def list_tokens(app: web.Application, user_id: int) -> List[Dict[str, str]]: + engine = app[APP_DB_ENGINE_KEY] + user_tokens = [] + async with engine.acquire() as conn: + async for row in conn.execute( + sa.select([tokens.c.token_data]).where(tokens.c.user_id == user_id) + ): + user_tokens.append(row["token_data"]) + return user_tokens + + +async def get_token( + app: web.Application, user_id: int, service_id: str +) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + result = await conn.execute( + sa.select([tokens.c.token_data]).where( + and_(tokens.c.user_id == user_id, tokens.c.token_service == service_id) + ) + ) + row: RowProxy = await result.first() + return dict(row["token_data"]) + + +async def update_token( + app: web.Application, user_id: int, service_id: str, token_data: Dict[str, str] +) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + # TODO: optimize to a single call? + async with engine.acquire() as conn: + result = await conn.execute( + sa.select([tokens.c.token_data, tokens.c.token_id]).where( + and_(tokens.c.user_id == user_id, tokens.c.token_service == service_id) + ) + ) + row = await result.first() + + data = dict(row["token_data"]) + tid = row["token_id"] + data.update(token_data) + + resp = await conn.execute( + # pylint: disable=no-value-for-parameter + tokens.update() + .where(tokens.c.token_id == tid) + .values(token_data=data) + .returning(literal_column("*")) + ) + assert resp.rowcount == 1 # nosec + updated_token: RowProxy = await resp.fetchone() + return dict(updated_token["token_data"]) + + +async def delete_token(app: web.Application, user_id: int, service_id: str) -> None: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + await conn.execute( + # pylint: disable=no-value-for-parameter + tokens.delete().where( + and_(tokens.c.user_id == user_id, tokens.c.token_service == service_id) + ) + ) diff --git a/services/web/server/src/simcore_service_webserver/users_exceptions.py b/services/web/server/src/simcore_service_webserver/users_exceptions.py new file mode 100644 index 00000000000..fe04503749d --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/users_exceptions.py @@ -0,0 +1,29 @@ +"""Defines the different exceptions that may arise in the projects subpackage""" + +from typing import Optional + + +class UsersException(Exception): + """Basic exception for errors raised in projects""" + + def __init__(self, msg: str = None): + super().__init__(msg or "Unexpected error occured in projects subpackage") + + +class UserNotFoundError(UsersException): + """User in group was not found in DB""" + + def __init__(self, *, uid: Optional[int] = None, email: Optional[str] = None): + super().__init__( + f"User id {uid} not found" if uid else f"User with email {email} not found" + ) + self.uid = uid + self.email = email + + +class TokenNotFoundError(UsersException): + """Token was not found in DB""" + + def __init__(self, service_id: str): + super().__init__(f"Token for service {service_id} not found") + self.service_id = service_id diff --git a/services/web/server/src/simcore_service_webserver/users_handlers.py b/services/web/server/src/simcore_service_webserver/users_handlers.py index b27e48001f3..b2eacf6fbfc 100644 --- a/services/web/server/src/simcore_service_webserver/users_handlers.py +++ b/services/web/server/src/simcore_service_webserver/users_handlers.py @@ -2,22 +2,16 @@ import json import logging -from typing import List -import sqlalchemy as sa -import sqlalchemy.sql as sql from aiohttp import web -from aiopg.sa import Engine -from aiopg.sa.result import RowProxy -from tenacity import retry -from servicelib.aiopg_utils import PostgresRetryPolicyUponOperation -from servicelib.application_keys import APP_DB_ENGINE_KEY - -from .db_models import GroupType, groups, tokens, user_to_groups, users +from . import users_api from .login.decorators import RQT_USERID_KEY, login_required -from .security_api import check_permission -from .utils import gravatar_hash +from .security_decorators import permission_required +from .users_exceptions import ( + TokenNotFoundError, + UserNotFoundError, +) logger = logging.getLogger(__name__) @@ -26,219 +20,86 @@ @login_required async def get_my_profile(request: web.Request): # NOTE: ONLY login required to see its profile. E.g. anonymous can never see its profile - - @retry(**PostgresRetryPolicyUponOperation(logger).kwargs) - async def _query_db(uid: str, engine: Engine) -> List[RowProxy]: - async with engine.acquire() as conn: - query = ( - sa.select( - [ - users.c.email, - users.c.role, - users.c.name, - users.c.primary_gid, - groups.c.gid, - groups.c.name, - groups.c.description, - groups.c.type, - ], - use_labels=True, - ) - .select_from( - users.join( - user_to_groups.join( - groups, user_to_groups.c.gid == groups.c.gid - ), - users.c.id == user_to_groups.c.uid, - ) - ) - .where(users.c.id == uid) - .order_by(sa.asc(groups.c.name)) - ) - result = await conn.execute(query) - return await result.fetchall() - - # here we get all user_group combinations but only the group changes - user_groups: List[RowProxy] = await _query_db( - uid=request[RQT_USERID_KEY], engine=request.app[APP_DB_ENGINE_KEY] - ) - - if not user_groups: + uid = request[RQT_USERID_KEY] + try: + return await users_api.get_user_profile(request.app, uid) + except UserNotFoundError: raise web.HTTPServerError(reason="could not find profile!") - # get the primary group and the all group - user_primary_group = all_group = {} - other_groups = [] - for user_group in user_groups: - if user_group["users_primary_gid"] == user_group["groups_gid"]: - user_primary_group = user_group - elif user_group["groups_type"] == GroupType.EVERYONE: - all_group = user_group - else: - other_groups.append(user_group) - - parts = user_primary_group["users_name"].split(".") + [""] - return { - "login": user_primary_group["users_email"], - "first_name": parts[0], - "last_name": parts[1], - "role": user_primary_group["users_role"].name.capitalize(), - "gravatar_id": gravatar_hash(user_primary_group["users_email"]), - "groups": { - "me": { - "gid": user_primary_group["groups_gid"], - "label": user_primary_group["groups_name"], - "description": user_primary_group["groups_description"], - }, - "organizations": [ - { - "gid": group["groups_gid"], - "label": group["groups_name"], - "description": group["groups_description"], - } - for group in other_groups - ], - "all": { - "gid": all_group["groups_gid"], - "label": all_group["groups_name"], - "description": all_group["groups_description"], - }, - }, - } - @login_required +@permission_required("user.profile.update") async def update_my_profile(request: web.Request): - await check_permission(request, "user.profile.update") - - uid, engine = request[RQT_USERID_KEY], request.app[APP_DB_ENGINE_KEY] + uid = request[RQT_USERID_KEY] # TODO: validate body = await request.json() - async with engine.acquire() as conn: - query = sa.select([users.c.name]).where(users.c.id == uid) - default_name = await conn.scalar(query) - parts = default_name.split(".") + [""] - - name = body.get("first_name", parts[0]) + "." + body.get("last_name", parts[1]) - - async with engine.acquire() as conn: - query = users.update().where(users.c.id == uid).values(name=name) - resp = await conn.execute(query) - assert resp.rowcount == 1 # nosec - + await users_api.update_user_profile(request.app, uid, body) raise web.HTTPNoContent(content_type="application/json") # me/tokens/ ------------------------------------------------------ @login_required +@permission_required("user.tokens.*") async def create_tokens(request: web.Request): - await check_permission(request, "user.tokens.*") - - uid, engine = request[RQT_USERID_KEY], request.app[APP_DB_ENGINE_KEY] + uid = request[RQT_USERID_KEY] # TODO: validate body = await request.json() # TODO: what it service exists already!? # TODO: if service already, then IntegrityError is raised! How to deal with db exceptions?? - async with engine.acquire() as conn: - stmt = tokens.insert().values( - user_id=uid, token_service=body["service"], token_data=body - ) - await conn.execute(stmt) - - raise web.HTTPCreated( - text=json.dumps({"data": body}), content_type="application/json" - ) + await users_api.create_token(request.app, uid, body) + raise web.HTTPCreated( + text=json.dumps({"data": body}), content_type="application/json" + ) @login_required +@permission_required("user.tokens.*") async def list_tokens(request: web.Request): - await check_permission(request, "user.tokens.*") - # TODO: start = request.match_info.get('start', 0) # TODO: count = request.match_info.get('count', None) - uid, engine = request[RQT_USERID_KEY], request.app[APP_DB_ENGINE_KEY] - - user_tokens = [] - async with engine.acquire() as conn: - query = sa.select([tokens.c.token_data]).where(tokens.c.user_id == uid) - async for row in conn.execute(query): - user_tokens.append(row["token_data"]) - - return user_tokens + uid = request[RQT_USERID_KEY] + return await users_api.list_tokens(request.app, uid) @login_required +@permission_required("user.tokens.*") async def get_token(request: web.Request): - await check_permission(request, "user.tokens.*") - - uid, engine = request[RQT_USERID_KEY], request.app[APP_DB_ENGINE_KEY] + uid = request[RQT_USERID_KEY] service_id = request.match_info["service"] - async with engine.acquire() as conn: - query = sa.select([tokens.c.token_data]).where( - sql.and_(tokens.c.user_id == uid, tokens.c.token_service == service_id) - ) - result = await conn.execute(query) - row = await result.first() - return row["token_data"] + return await users_api.get_token(request.app, uid, service_id) @login_required +@permission_required("user.tokens.*") async def update_token(request: web.Request): """ updates token_data of a given user service WARNING: token_data has to be complete! """ - await check_permission(request, "user.tokens.*") - - uid, engine = request[RQT_USERID_KEY], request.app[APP_DB_ENGINE_KEY] + uid = request[RQT_USERID_KEY] service_id = request.match_info["service"] # TODO: validate body = await request.json() - # TODO: optimize to a single call? - async with engine.acquire() as conn: - query = sa.select([tokens.c.token_data, tokens.c.token_id]).where( - sql.and_(tokens.c.user_id == uid, tokens.c.token_service == service_id) - ) - result = await conn.execute(query) - row = await result.first() - - data = dict(row["token_data"]) - tid = row["token_id"] - data.update(body) - - query = tokens.update().where(tokens.c.token_id == tid).values(token_data=data) - resp = await conn.execute(query) - assert resp.rowcount == 1 # nosec + await users_api.update_token(request.app, uid, service_id, body) raise web.HTTPNoContent(content_type="application/json") @login_required +@permission_required("user.tokens.*") async def delete_token(request: web.Request): - await check_permission(request, "user.tokens.*") - - uid, engine = request[RQT_USERID_KEY], request.app[APP_DB_ENGINE_KEY] + uid = request[RQT_USERID_KEY] service_id = request.match_info.get("service") - async with engine.acquire() as conn: - query = tokens.delete().where( - sql.and_(tokens.c.user_id == uid, tokens.c.token_service == service_id) - ) - await conn.execute(query) - - raise web.HTTPNoContent(content_type="application/json") - - -# @login_required -# async def list_groups(request: web.Request) -> List[Dict[str, str]]: -# await check_permission(request, "user.groups.*") -# uid = request[RQT_USERID_KEY] -# primary_group, user_groups, all_group = users_api.list_user_groups(request.app, uid) -# return {"me": primary_group, "organizations": user_groups, "all": all_group} + try: + await users_api.delete_token(request.app, uid, service_id) + raise web.HTTPNoContent(content_type="application/json") + except TokenNotFoundError: + raise web.HTTPNotFound(reason=f"Token for {service_id} not found") diff --git a/services/web/server/src/simcore_service_webserver/users_utils.py b/services/web/server/src/simcore_service_webserver/users_utils.py new file mode 100644 index 00000000000..cc7af5cb18a --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/users_utils.py @@ -0,0 +1,22 @@ +import logging +from typing import Dict, Optional + +from aiopg.sa.result import RowProxy + +from .utils import gravatar_hash + +logger = logging.getLogger(__name__) + + +def convert_user_db_to_schema( + row: RowProxy, prefix: Optional[str] = "" +) -> Dict[str, str]: + parts = row[f"{prefix}name"].split(".") + [""] + return { + "id": row[f"{prefix}id"], + "login": row[f"{prefix}email"], + "first_name": parts[0], + "last_name": parts[1], + "role": row[f"{prefix}role"].name.capitalize(), + "gravatar_id": gravatar_hash(row[f"{prefix}email"]), + } diff --git a/services/web/server/tests/integration/conftest.py b/services/web/server/tests/integration/conftest.py index 4df31d2dcca..1625de18c10 100644 --- a/services/web/server/tests/integration/conftest.py +++ b/services/web/server/tests/integration/conftest.py @@ -14,19 +14,26 @@ import logging import sys +from asyncio import Future from copy import deepcopy from pathlib import Path from pprint import pprint -from typing import Dict -from asyncio import Future +from typing import Dict, List import pytest import trafaret_config import yaml from pytest_simcore.helpers.utils_docker import get_service_published_port +from pytest_simcore.helpers.utils_login import NewUser from simcore_service_webserver.application_config import app_schema from simcore_service_webserver.cli import create_environ +from simcore_service_webserver.groups_api import ( + add_user_in_group, + create_user_group, + delete_user_group, + list_user_groups, +) from simcore_service_webserver.resources import resources as app_resources current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent @@ -169,3 +176,57 @@ def mock_orphaned_services(mocker): ) remove_orphaned_services.return_value.set_result("") return remove_orphaned_services + + +@pytest.fixture +async def primary_group(client, logged_user) -> Dict[str, str]: + primary_group, _, _ = await list_user_groups(client.app, logged_user["id"]) + return primary_group + + +@pytest.fixture +async def standard_groups(client, logged_user: Dict) -> List[Dict[str, str]]: + # create a separate admin account to create some standard groups for the logged user + sparc_group = { + "gid": "5", # this will be replaced + "label": "SPARC", + "description": "Stimulating Peripheral Activity to Relieve Conditions", + "thumbnail": "https://commonfund.nih.gov/sites/default/files/sparc-image-homepage500px.png", + } + team_black_group = { + "gid": "5", # this will be replaced + "label": "team Black", + "description": "THE incredible black team", + "thumbnail": None, + } + async with NewUser( + {"name": f"{logged_user['name']}_admin", "role": "USER"}, client.app + ) as admin_user: + sparc_group = await create_user_group(client.app, admin_user["id"], sparc_group) + team_black_group = await create_user_group( + client.app, admin_user["id"], team_black_group + ) + await add_user_in_group( + client.app, + admin_user["id"], + sparc_group["gid"], + new_user_id=logged_user["id"], + ) + await add_user_in_group( + client.app, + admin_user["id"], + team_black_group["gid"], + new_user_email=logged_user["email"], + ) + + _, standard_groups, _ = await list_user_groups(client.app, logged_user["id"]) + yield standard_groups + # clean groups + await delete_user_group(client.app, admin_user["id"], sparc_group["gid"]) + await delete_user_group(client.app, admin_user["id"], team_black_group["gid"]) + + +@pytest.fixture +async def all_group(client, logged_user) -> Dict[str, str]: + _, _, all_group = await list_user_groups(client.app, logged_user["id"]) + return all_group diff --git a/services/web/server/tests/integration/test_project_workflow.py b/services/web/server/tests/integration/test_project_workflow.py index cfd06181bbd..e40f0df35e8 100644 --- a/services/web/server/tests/integration/test_project_workflow.py +++ b/services/web/server/tests/integration/test_project_workflow.py @@ -50,7 +50,7 @@ def client( loop, mock_orphaned_services, aiohttp_client, - app_config, ## waits until swarm with *_services are up + app_config, # waits until swarm with *_services are up ): assert app_config["rest"]["version"] == API_VERSION @@ -227,6 +227,8 @@ async def test_workflow( client, fake_project_data, logged_user, + primary_group: Dict[str, str], + standard_groups: List[Dict[str, str]], computational_system_mock, storage_subsystem_mock, ): @@ -241,8 +243,11 @@ async def test_workflow( projects = await _request_list(client) assert len(projects) == 1 for key in projects[0].keys(): - if key not in ("uuid", "prjOwner", "creationDate", "lastChangeDate"): + if key not in ("uuid", "prjOwner", "creationDate", "lastChangeDate", "accessRights"): assert projects[0][key] == fake_project_data[key] + assert projects[0]["prjOwner"] == logged_user["email"] + assert projects[0]["accessRights"] == { + str(primary_group["gid"]): {"read": True, "write": True, "delete": True}} modified_project = deepcopy(projects[0]) modified_project["name"] = "some other name" @@ -251,6 +256,9 @@ async def test_workflow( list(modified_project["workbench"].keys())[0] ) modified_project["workbench"]["ReNamed"]["position"]["x"] = 0 + # share with some group + modified_project["accessRights"].update( + {str(standard_groups[0]["gid"]): {"read": True, "write": True, "delete": False}}) # modify pid = modified_project["uuid"] await _request_update(client, modified_project, pid) @@ -291,14 +299,16 @@ async def test_get_invalid_project(client, logged_user): async def test_update_invalid_project(client, logged_user): - url = client.app.router["replace_project"].url_for(project_id="some-fake-id") + url = client.app.router["replace_project"].url_for( + project_id="some-fake-id") resp = await client.get(url) await assert_status(resp, web.HTTPNotFound) async def test_delete_invalid_project(client, logged_user): - url = client.app.router["delete_project"].url_for(project_id="some-fake-id") + url = client.app.router["delete_project"].url_for( + project_id="some-fake-id") resp = await client.delete(url) await assert_status(resp, web.HTTPNotFound) diff --git a/services/web/server/tests/unit/test_projects_models.py b/services/web/server/tests/unit/test_projects_models.py index 75111351261..052f10726ce 100644 --- a/services/web/server/tests/unit/test_projects_models.py +++ b/services/web/server/tests/unit/test_projects_models.py @@ -78,6 +78,8 @@ def create_engine(mock_result): mock_connection = mocker.patch("aiopg.sa.SAConnection", spec=True) mock_connection.execute.return_value = Future() mock_connection.execute.return_value.set_result(mock_result) + mock_connection.scalar.return_value = Future() + mock_connection.scalar.return_value.set_result(mock_result) mock_context_manager = MockAsyncContextManager() mock_context_manager.mock_object = mock_connection @@ -103,8 +105,8 @@ async def test_add_projects(fake_project, user_id, mocker, mock_db_engine): await db.add_projects([fake_project], user_id=user_id) db_engine.acquire.assert_called() + mock_connection.scalar.assert_called() mock_connection.execute.assert_called() - assert mock_connection.execute.call_count == 3 # not sure this is useful... diff --git a/services/web/server/tests/unit/with_dbs/config-devel.yml b/services/web/server/tests/unit/with_dbs/config-devel.yml index 15b6ffa7950..31e1d3f3861 100644 --- a/services/web/server/tests/unit/with_dbs/config-devel.yml +++ b/services/web/server/tests/unit/with_dbs/config-devel.yml @@ -67,7 +67,7 @@ rest: reverse_proxy: enabled: false session: - secret_key: 'TODO: Replace with a key of at least length 32' + secret_key: "TODO: Replace with a key of at least length 32" smtp: host: mail.foo.com password: null @@ -97,4 +97,6 @@ tracing: zipkin_endpoint: http://jaeger:9411 users: enabled: true -version: '1.0' +groups: + enabled: true +version: "1.0" diff --git a/services/web/server/tests/unit/with_dbs/conftest.py b/services/web/server/tests/unit/with_dbs/conftest.py index a4376dda928..eefc459f8c0 100644 --- a/services/web/server/tests/unit/with_dbs/conftest.py +++ b/services/web/server/tests/unit/with_dbs/conftest.py @@ -27,13 +27,19 @@ import simcore_service_webserver.db_models as orm import simcore_service_webserver.utils +from pytest_simcore.helpers.utils_login import NewUser from servicelib.aiopg_utils import DSN from servicelib.rest_responses import unwrap_envelope from simcore_service_webserver.application import create_application from simcore_service_webserver.application_config import app_schema as app_schema -from simcore_service_webserver.users_api import list_user_groups - -## current directory +from simcore_service_webserver.groups_api import ( + add_user_in_group, + create_user_group, + delete_user_group, + list_user_groups, +) + +# current directory current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent @@ -351,9 +357,45 @@ async def primary_group(client, logged_user) -> Dict[str, str]: @pytest.fixture -async def standard_groups(client, logged_user) -> List[Dict[str, str]]: - _, standard_groups, _ = await list_user_groups(client.app, logged_user["id"]) - return standard_groups +async def standard_groups(client, logged_user: Dict) -> List[Dict[str, str]]: + # create a separate admin account to create some standard groups for the logged user + sparc_group = { + "gid": "5", # this will be replaced + "label": "SPARC", + "description": "Stimulating Peripheral Activity to Relieve Conditions", + "thumbnail": "https://commonfund.nih.gov/sites/default/files/sparc-image-homepage500px.png", + } + team_black_group = { + "gid": "5", # this will be replaced + "label": "team Black", + "description": "THE incredible black team", + "thumbnail": None, + } + async with NewUser( + {"name": f"{logged_user['name']}_admin", "role": "USER"}, client.app + ) as admin_user: + sparc_group = await create_user_group(client.app, admin_user["id"], sparc_group) + team_black_group = await create_user_group( + client.app, admin_user["id"], team_black_group + ) + await add_user_in_group( + client.app, + admin_user["id"], + sparc_group["gid"], + new_user_id=logged_user["id"], + ) + await add_user_in_group( + client.app, + admin_user["id"], + team_black_group["gid"], + new_user_email=logged_user["email"], + ) + + _, standard_groups, _ = await list_user_groups(client.app, logged_user["id"]) + yield standard_groups + # clean groups + await delete_user_group(client.app, admin_user["id"], sparc_group["gid"]) + await delete_user_group(client.app, admin_user["id"], team_black_group["gid"]) @pytest.fixture diff --git a/services/web/server/tests/unit/with_dbs/docker-compose-devel.yml b/services/web/server/tests/unit/with_dbs/docker-compose-devel.yml index 534b32a8edc..3771f537596 100644 --- a/services/web/server/tests/unit/with_dbs/docker-compose-devel.yml +++ b/services/web/server/tests/unit/with_dbs/docker-compose-devel.yml @@ -1,4 +1,4 @@ -version: '3.4' +version: "3.7" services: postgres: image: postgres:10.11 @@ -9,7 +9,7 @@ services: POSTGRES_PASSWORD: ${TEST_POSTGRES_PASSWORD:-admin} POSTGRES_DB: ${TEST_POSTGRES_DB:-test} ports: - - '5432:5432' + - "5432:5432" # NOTES: this is not yet compatible with portainer deployment but could work also for other containers # works with Docker 19.03 and not yet with Portainer 1.23.0 (see https://github.com/portainer/portainer/issues/3551) # in the meantime postgres allows to set a configuration through CLI. @@ -31,7 +31,7 @@ services: redis: image: redis:5.0-alpine ports: - - '6379:6379' + - "6379:6379" redis-commander: init: true image: rediscommander/redis-commander:latest diff --git a/services/web/server/tests/unit/with_dbs/docker-compose.yml b/services/web/server/tests/unit/with_dbs/docker-compose.yml index 72c8d43851c..f7ed5638d04 100644 --- a/services/web/server/tests/unit/with_dbs/docker-compose.yml +++ b/services/web/server/tests/unit/with_dbs/docker-compose.yml @@ -1,4 +1,4 @@ -version: '3.4' +version: "3.7" services: postgres: image: postgres:10.11 @@ -8,12 +8,12 @@ services: POSTGRES_USER: ${TEST_POSTGRES_USER} POSTGRES_PASSWORD: ${TEST_POSTGRES_PASSWORD} ports: - - '5432:5432' + - "5432:5432" # NOTES: this is not yet compatible with portainer deployment but could work also for other containers # works with Docker 19.03 and not yet with Portainer 1.23.0 (see https://github.com/portainer/portainer/issues/3551) # in the meantime postgres allows to set a configuration through CLI. # sysctls: - # # NOTES: these values are needed here because docker swarm kills long running idle + # # NOTES: these values are needed here because docker swarm kills long running idle # # connections by default after 15 minutes see https://github.com/moby/moby/issues/31208 # # info about these values are here https://tldp.org/HOWTO/TCP-Keepalive-HOWTO/usingkeepalive.html # - net.ipv4.tcp_keepalive_intvl=600 @@ -24,4 +24,4 @@ services: redis: image: redis:5.0-alpine ports: - - '6379:6379' + - "6379:6379" diff --git a/services/web/server/tests/unit/with_dbs/test_access_to_studies.py b/services/web/server/tests/unit/with_dbs/test_access_to_studies.py index 464c6b0fcc6..ba4e50b9764 100644 --- a/services/web/server/tests/unit/with_dbs/test_access_to_studies.py +++ b/services/web/server/tests/unit/with_dbs/test_access_to_studies.py @@ -154,7 +154,7 @@ async def _get_user_projects(client): def _assert_same_projects(got: Dict, expected: Dict): # TODO: validate using api/specs/webserver/v0/components/schemas/project-v0.0.1.json # TODO: validate workbench! - exclude = ["creationDate", "lastChangeDate", "prjOwner", "uuid", "workbench"] + exclude = ["creationDate", "lastChangeDate", "prjOwner", "uuid", "workbench", "accessRights"] for key in expected.keys(): if key not in exclude: assert got[key] == expected[key], "Failed in %s" % key diff --git a/services/web/server/tests/unit/with_dbs/test_groups.py b/services/web/server/tests/unit/with_dbs/test_groups.py new file mode 100644 index 00000000000..d6da3bb01d3 --- /dev/null +++ b/services/web/server/tests/unit/with_dbs/test_groups.py @@ -0,0 +1,569 @@ +# pylint:disable=unused-variable +# pylint:disable=unused-argument +# pylint:disable=redefined-outer-name + + +import random +from copy import deepcopy +from typing import Dict, List, Tuple + +import pytest +from aiohttp import web + +from pytest_simcore.helpers.utils_assert import assert_status +from pytest_simcore.helpers.utils_login import LoggedUser, create_user +from servicelib.application import create_safe_application +from simcore_service_webserver.db import setup_db +from simcore_service_webserver.groups import setup_groups +from simcore_service_webserver.groups_api import ( + DEFAULT_GROUP_OWNER_ACCESS_RIGHTS, + DEFAULT_GROUP_READ_ACCESS_RIGHTS, +) +from simcore_service_webserver.login import setup_login +from simcore_service_webserver.rest import setup_rest +from simcore_service_webserver.security import setup_security +from simcore_service_webserver.security_roles import UserRole +from simcore_service_webserver.session import setup_session +from simcore_service_webserver.users import setup_users + +## BUG FIXES ####################################################### +from simcore_service_webserver.utils import gravatar_hash + +API_VERSION = "v0" + + +@pytest.fixture +def client(loop, aiohttp_client, app_cfg, postgres_service): + cfg = deepcopy(app_cfg) + + port = cfg["main"]["port"] + + assert cfg["rest"]["version"] == API_VERSION + + cfg["db"]["init_tables"] = True # inits postgres_service + + # fake config + app = create_safe_application(cfg) + + setup_db(app) + setup_session(app) + setup_security(app) + setup_rest(app) + setup_login(app) + setup_users(app) + setup_groups(app) + + client = loop.run_until_complete( + aiohttp_client(app, server_kwargs={"port": port, "host": "localhost"}) + ) + return client + + +# WARNING: pytest-asyncio and pytest-aiohttp are not compatible +# +# https://github.com/aio-libs/pytest-aiohttp/issues/8#issuecomment-405602020 +# https://github.com/pytest-dev/pytest-asyncio/issues/76 +# + + +@pytest.fixture +async def logged_user(client, role: UserRole): + """ adds a user in db and logs in with client + + NOTE: role fixture is defined as a parametrization below + """ + async with LoggedUser( + client, {"role": role.name}, check_if_succeeds=role != UserRole.ANONYMOUS + ) as user: + yield user + + +# -------------------------------------------------------------------------- +PREFIX = "/" + API_VERSION + "/groups" + + +def _assert_group(group: Dict[str, str]): + properties = ["gid", "label", "description", "thumbnail", "access_rights"] + assert all(x in group for x in properties) + access_rights = group["access_rights"] + access_rights_properties = ["read", "write", "delete"] + assert all(x in access_rights for x in access_rights_properties) + + +def _assert__group_user( + expected_user: Dict, expected_access_rights: Dict[str, bool], actual_user: Dict +): + assert "first_name" in actual_user + parts = expected_user["name"].split(".") + [""] + assert actual_user["first_name"] == parts[0] + assert "last_name" in actual_user + assert actual_user["last_name"] == parts[1] + assert "login" in actual_user + assert actual_user["login"] == expected_user["email"] + assert "gravatar_id" in actual_user + assert actual_user["gravatar_id"] == gravatar_hash(expected_user["email"]) + assert "access_rights" in actual_user + assert actual_user["access_rights"] == expected_access_rights + assert "id" in actual_user + assert actual_user["id"] == expected_user["id"] + assert "gid" in actual_user + + +@pytest.mark.parametrize( + "role,expected", + [ + (UserRole.ANONYMOUS, web.HTTPUnauthorized), + (UserRole.GUEST, web.HTTPForbidden), + (UserRole.USER, web.HTTPOk), + (UserRole.TESTER, web.HTTPOk), + ], +) +async def test_list_groups( + client, + logged_user, + role, + expected, + primary_group: Dict[str, str], + standard_groups: List[Dict[str, str]], + all_group: Dict[str, str], +): + url = client.app.router["list_groups"].url_for() + assert str(url) == f"{PREFIX}" + + resp = await client.get(url) + data, error = await assert_status(resp, expected) + + if not error: + assert isinstance(data, dict) + assert "me" in data + _assert_group(data["me"]) + assert data["me"] == primary_group + + assert "organizations" in data + assert isinstance(data["organizations"], list) + for group in data["organizations"]: + _assert_group(group) + assert data["organizations"] == standard_groups + assert "all" in data + _assert_group(data["all"]) + assert data["all"] == all_group + + +def _standard_role_response() -> Tuple[ + str, List[Tuple[UserRole, web.Response, web.Response, web.Response]] +]: + return ( + "role,expected_ok, expected_created, expected_no_contents, expected_not_found", + [ + ( + UserRole.ANONYMOUS, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + ), + ( + UserRole.GUEST, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + ), + ( + UserRole.USER, + web.HTTPOk, + web.HTTPCreated, + web.HTTPNoContent, + web.HTTPNotFound, + ), + ( + UserRole.TESTER, + web.HTTPOk, + web.HTTPCreated, + web.HTTPNoContent, + web.HTTPNotFound, + ), + ], + ) + + +@pytest.mark.parametrize( + "role,expected", + [ + (UserRole.ANONYMOUS, web.HTTPUnauthorized), + (UserRole.GUEST, web.HTTPForbidden), + (UserRole.USER, web.HTTPOk), + (UserRole.TESTER, web.HTTPOk), + ], +) +async def test_group_access_rights( + client, + logged_user, + role, + expected, + primary_group: Dict[str, str], + standard_groups: List[Dict[str, str]], + all_group: Dict[str, str], +): + url = client.app.router["list_groups"].url_for() + assert str(url) == f"{PREFIX}" + + resp = await client.get(url) + data, error = await assert_status(resp, expected) + + if not error: + assert isinstance(data, dict) + assert "me" in data + _assert_group(data["me"]) + assert data["me"] == primary_group + + assert "organizations" in data + assert isinstance(data["organizations"], list) + for group in data["organizations"]: + _assert_group(group) + assert data["organizations"] == standard_groups + assert "all" in data + _assert_group(data["all"]) + assert data["all"] == all_group + + for group in standard_groups: + # try to delete a group + url = client.app.router["delete_group"].url_for(gid=str(group["gid"])) + resp = await client.delete(url) + data, error = await assert_status(resp, web.HTTPForbidden) + # try to add some user in the group + url = client.app.router["add_group_user"].url_for(gid=str(group["gid"])) + resp = await client.post(url, json={"uid": logged_user["id"]}) + data, error = await assert_status(resp, web.HTTPForbidden) + # try to modify the user in the group + url = client.app.router["update_group_user"].url_for( + gid=str(group["gid"]), uid=str(logged_user["id"]) + ) + resp = await client.patch( + url, + json={"access_rights": {"read": True, "write": True, "delete": True}}, + ) + data, error = await assert_status(resp, web.HTTPForbidden) + # try to remove the user from the group + url = client.app.router["delete_group_user"].url_for( + gid=str(group["gid"]), uid=str(logged_user["id"]) + ) + resp = await client.delete(url) + data, error = await assert_status(resp, web.HTTPForbidden) + + +@pytest.mark.parametrize( + "role,expected,expected_read,expected_delete,expected_not_found", + [ + ( + UserRole.ANONYMOUS, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + ), + ( + UserRole.GUEST, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + ), + ( + UserRole.USER, + web.HTTPCreated, + web.HTTPOk, + web.HTTPNoContent, + web.HTTPNotFound, + ), + ( + UserRole.TESTER, + web.HTTPCreated, + web.HTTPOk, + web.HTTPNoContent, + web.HTTPNotFound, + ), + ], +) +async def test_group_creation_workflow( + client, + logged_user, + role, + expected, + expected_read, + expected_delete, + expected_not_found, +): + url = client.app.router["create_group"].url_for() + assert str(url) == f"{PREFIX}" + + new_group = { + "gid": "4564", + "label": "Black Sabbath", + "description": "The founders of Rock'N'Roll", + "thumbnail": "https://www.startpage.com/av/proxy-image?piurl=https%3A%2F%2Fencrypted-tbn0.gstatic.com%2Fimages%3Fq%3Dtbn%3AANd9GcS3pAUISv_wtYDL9Ih4JtUfAWyHj9PkYMlEBGHJsJB9QlTZuuaK%26s&sp=1591105967T00f0b7ff95c7b3bca035102fa1ead205ab29eb6cd95acedcedf6320e64634f0c", + } + + resp = await client.post(url, json=new_group) + data, error = await assert_status(resp, expected) + + assigned_group = new_group + if not error: + assert isinstance(data, dict) + assigned_group = data + _assert_group(assigned_group) + # we get a new gid and the rest keeps the same + assert assigned_group["gid"] != new_group["gid"] + for prop in ["label", "description", "thumbnail"]: + assert assigned_group[prop] == new_group[prop] + # we get all rights on the group since we are the creator + assert assigned_group["access_rights"] == { + "read": True, + "write": True, + "delete": True, + } + + # get the groups and check we are part of this new group + url = client.app.router["list_groups"].url_for() + assert str(url) == f"{PREFIX}" + + resp = await client.get(url) + data, error = await assert_status(resp, expected_read) + if not error: + assert len(data["organizations"]) == 1 + assert data["organizations"][0] == assigned_group + + # check getting one group + url = client.app.router["get_group"].url_for(gid=str(assigned_group["gid"])) + assert str(url) == f"{PREFIX}/{assigned_group['gid']}" + resp = await client.get(url) + data, error = await assert_status(resp, expected_read) + if not error: + assert data == assigned_group + + # modify the group + modified_group = {"label": "Led Zeppelin"} + url = client.app.router["update_group"].url_for(gid=str(assigned_group["gid"])) + assert str(url) == f"{PREFIX}/{assigned_group['gid']}" + resp = await client.patch(url, json=modified_group) + data, error = await assert_status(resp, expected_read) + if not error: + assert data != assigned_group + _assert_group(data) + assigned_group.update(**modified_group) + assert data == assigned_group + # check getting the group returns the newly modified group + url = client.app.router["get_group"].url_for(gid=str(assigned_group["gid"])) + assert str(url) == f"{PREFIX}/{assigned_group['gid']}" + resp = await client.get(url) + data, error = await assert_status(resp, expected_read) + if not error: + _assert_group(data) + assert data == assigned_group + + # delete the group + url = client.app.router["delete_group"].url_for(gid=str(assigned_group["gid"])) + assert str(url) == f"{PREFIX}/{assigned_group['gid']}" + resp = await client.delete(url) + data, error = await assert_status(resp, expected_delete) + if not error: + assert not data + + # check deleting the same group again fails + url = client.app.router["delete_group"].url_for(gid=str(assigned_group["gid"])) + assert str(url) == f"{PREFIX}/{assigned_group['gid']}" + resp = await client.delete(url) + data, error = await assert_status(resp, expected_not_found) + + # check getting the group fails + url = client.app.router["get_group"].url_for(gid=str(assigned_group["gid"])) + assert str(url) == f"{PREFIX}/{assigned_group['gid']}" + resp = await client.get(url) + data, error = await assert_status(resp, expected_not_found) + + +@pytest.mark.parametrize( + "role, expected_created,expected,expected_not_found,expected_no_content", + [ + ( + UserRole.ANONYMOUS, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + ), + ( + UserRole.GUEST, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + ), + ( + UserRole.USER, + web.HTTPCreated, + web.HTTPOk, + web.HTTPNotFound, + web.HTTPNoContent, + ), + ( + UserRole.TESTER, + web.HTTPCreated, + web.HTTPOk, + web.HTTPNotFound, + web.HTTPNoContent, + ), + ], +) +async def test_add_remove_users_from_group( + client, + logged_user, + role, + expected_created, + expected, + expected_not_found, + expected_no_content, +): + + new_group = { + "gid": "5", + "label": "team awesom", + "description": "awesomeness is just the summary", + "thumbnail": "https://www.startpage.com/av/proxy-image?piurl=https%3A%2F%2Fencrypted-tbn0.gstatic.com%2Fimages%3Fq%3Dtbn%3AANd9GcSQMopBeN0pq2gg6iIZuLGYniFxUdzi7a2LeT1Xg0Lz84bl36Nlqw%26s&sp=1591110539Tbbb022a272bc117e58cca2f2399e83e6b5d4a2d0a7c283330057d7718ae305bd", + } + + # check that our group does not exist + url = client.app.router["get_group_users"].url_for(gid=new_group["gid"]) + assert str(url) == f"{PREFIX}/{new_group['gid']}/users" + resp = await client.get(url) + data, error = await assert_status(resp, expected_not_found) + + url = client.app.router["create_group"].url_for() + assert str(url) == f"{PREFIX}" + + resp = await client.post(url, json=new_group) + data, error = await assert_status(resp, expected_created) + + assigned_group = new_group + if not error: + assert isinstance(data, dict) + assigned_group = data + _assert_group(assigned_group) + # we get a new gid and the rest keeps the same + assert assigned_group["gid"] != new_group["gid"] + for prop in ["label", "description", "thumbnail"]: + assert assigned_group[prop] == new_group[prop] + # we get all rights on the group since we are the creator + assert assigned_group["access_rights"] == { + "read": True, + "write": True, + "delete": True, + } + + # check that our user is in the group of users + get_group_users_url = client.app.router["get_group_users"].url_for( + gid=str(assigned_group["gid"]) + ) + assert str(get_group_users_url) == f"{PREFIX}/{assigned_group['gid']}/users" + resp = await client.get(get_group_users_url) + data, error = await assert_status(resp, expected) + + if not error: + list_of_users = data + assert len(list_of_users) == 1 + the_owner = list_of_users[0] + _assert__group_user(logged_user, DEFAULT_GROUP_OWNER_ACCESS_RIGHTS, the_owner) + + # create a random number of users and put them in the group + add_group_user_url = client.app.router["add_group_user"].url_for( + gid=str(assigned_group["gid"]) + ) + assert str(add_group_user_url) == f"{PREFIX}/{assigned_group['gid']}/users" + num_new_users = random.randint(1, 10) + created_users_list = [] + for i in range(num_new_users): + created_users_list.append(await create_user()) + + # add the user once per email once per id to test both + params = ( + {"uid": created_users_list[i]["id"]} + if i % 2 == 0 + else {"email": created_users_list[i]["email"]} + ) + resp = await client.post(add_group_user_url, json=params) + data, error = await assert_status(resp, expected_no_content) + + get_group_user_url = client.app.router["get_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) + ) + assert ( + str(get_group_user_url) + == f"{PREFIX}/{assigned_group['gid']}/users/{created_users_list[i]['id']}" + ) + resp = await client.get(get_group_user_url) + data, error = await assert_status(resp, expected) + if not error: + _assert__group_user( + created_users_list[i], DEFAULT_GROUP_READ_ACCESS_RIGHTS, data + ) + # check list is correct + resp = await client.get(get_group_users_url) + data, error = await assert_status(resp, expected) + if not error: + list_of_users = data + # now we should have all the users in the group + the owner + all_created_users = created_users_list + [logged_user] + assert len(list_of_users) == len(all_created_users) + for actual_user in list_of_users: + expected_users_list = list( + filter( + lambda x, ac=actual_user: x["email"] == ac["login"], + all_created_users, + ) + ) + assert len(expected_users_list) == 1 + _assert__group_user( + expected_users_list[0], + DEFAULT_GROUP_READ_ACCESS_RIGHTS + if actual_user["login"] != logged_user["email"] + else DEFAULT_GROUP_OWNER_ACCESS_RIGHTS, + actual_user, + ) + all_created_users.remove(expected_users_list[0]) + + # modify the user and remove them from the group + MANAGER_ACCESS_RIGHTS = {"read": True, "write": True, "delete": False} + for i in range(num_new_users): + update_group_user_url = client.app.router["update_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) + ) + resp = await client.patch( + update_group_user_url, json={"access_rights": MANAGER_ACCESS_RIGHTS} + ) + data, error = await assert_status(resp, expected) + if not error: + _assert__group_user(created_users_list[i], MANAGER_ACCESS_RIGHTS, data) + # check it is there + get_group_user_url = client.app.router["get_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) + ) + resp = await client.get(get_group_user_url) + data, error = await assert_status(resp, expected) + if not error: + _assert__group_user(created_users_list[i], MANAGER_ACCESS_RIGHTS, data) + # remove the user from the group + delete_group_user_url = client.app.router["delete_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) + ) + resp = await client.delete(delete_group_user_url) + data, error = await assert_status(resp, expected_no_content) + # do it again to check it is not found anymore + resp = await client.delete(delete_group_user_url) + data, error = await assert_status(resp, expected_not_found) + + # check it is not there anymore + get_group_user_url = client.app.router["get_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) + ) + resp = await client.get(get_group_user_url) + data, error = await assert_status(resp, expected_not_found) diff --git a/services/web/server/tests/unit/with_dbs/test_projects.py b/services/web/server/tests/unit/with_dbs/test_projects.py index 7780dd096de..26976d1abe0 100644 --- a/services/web/server/tests/unit/with_dbs/test_projects.py +++ b/services/web/server/tests/unit/with_dbs/test_projects.py @@ -2,30 +2,27 @@ # pylint:disable=unused-argument # pylint:disable=redefined-outer-name -import collections -import json import uuid as uuidlib from asyncio import Future, sleep from copy import deepcopy -from pathlib import Path -from typing import Dict, List +from typing import Dict, List, Optional import pytest from aiohttp import web from mock import call -from yarl import URL from pytest_simcore.helpers.utils_assert import assert_status -from pytest_simcore.helpers.utils_login import LoggedUser +from pytest_simcore.helpers.utils_login import LoggedUser, log_client_in from pytest_simcore.helpers.utils_projects import NewProject, delete_all_projects from servicelib.application import create_safe_application -from servicelib.application_keys import APP_CONFIG_KEY -from servicelib.rest_responses import unwrap_envelope from simcore_service_webserver.db import setup_db from simcore_service_webserver.db_models import UserRole from simcore_service_webserver.director import setup_director from simcore_service_webserver.login import setup_login from simcore_service_webserver.projects import setup_projects +from simcore_service_webserver.projects.projects_handlers import ( + OVERRIDABLE_DOCUMENT_KEYS, +) from simcore_service_webserver.resource_manager import setup_resource_manager from simcore_service_webserver.rest import setup_rest from simcore_service_webserver.security import setup_security @@ -125,6 +122,22 @@ async def logged_user(client, user_role: UserRole): print("<----- logged out user", user_role) +@pytest.fixture() +async def logged_user2(client, user_role: UserRole): + """ adds a user in db and logs in with client + + NOTE: `user_role` fixture is defined as a parametrization below!!! + """ + async with LoggedUser( + client, + {"role": user_role.name}, + check_if_succeeds=user_role != UserRole.ANONYMOUS, + ) as user: + print("-----> logged in user", user_role) + yield user + print("<----- logged out user", user_role) + + @pytest.fixture async def user_project(client, fake_project, logged_user): async with NewProject( @@ -142,7 +155,9 @@ async def template_project( project_data = deepcopy(fake_project) project_data["name"] = "Fake template" project_data["uuid"] = "d4d0eca3-d210-4db6-84f9-63670b07176b" - project_data["accessRights"] = {str(all_group["gid"]): "rw"} + project_data["accessRights"] = { + str(all_group["gid"]): {"read": True, "write": False, "delete": False} + } async with NewProject( project_data, client.app, user_id=None, clear_all=True @@ -171,6 +186,12 @@ def create_fakes(number_services: int) -> List[Dict]: yield create_fakes +@pytest.fixture +async def project_db_cleaner(client): + yield + await delete_all_projects(client.app) + + def assert_replaced(current_project, update_data): def _extract(dikt, keys): return {k: dikt[k] for k in keys} @@ -186,6 +207,20 @@ def _extract(dikt, keys): assert to_datetime(update_data[k]) < to_datetime(current_project[k]) +async def _list_projects( + client, expected: web.Response, query_parameters: Optional[Dict] = None +) -> List[Dict]: + # GET /v0/projects + url = client.app.router["list_projects"].url_for() + assert str(url) == API_PREFIX + "/projects" + if query_parameters: + url = url.with_query(**query_parameters) + + resp = await client.get(url) + data, errors = await assert_status(resp, expected) + return data + + # GET -------- @pytest.mark.parametrize( "user_role,expected", @@ -199,36 +234,40 @@ def _extract(dikt, keys): async def test_list_projects( client, logged_user, user_project, template_project, expected, ): - # TODO: GET /v0/projects?start=0&count=3 - - # GET /v0/projects - url = client.app.router["list_projects"].url_for() - assert str(url) == API_PREFIX + "/projects" - - resp = await client.get(url) - data, errors = await assert_status(resp, expected) - - if not errors: + data = await _list_projects(client, expected) + if data: assert len(data) == 2 assert data[0] == template_project assert data[1] == user_project # GET /v0/projects?type=user - resp = await client.get(url.with_query(type="user")) - data, errors = await assert_status(resp, expected) - if not errors: + data = await _list_projects(client, expected, {"type": "user"}) + if data: assert len(data) == 1 assert data[0] == user_project # GET /v0/projects?type=template # instead /v0/projects/templates ?? - resp = await client.get(url.with_query(type="template")) - data, errors = await assert_status(resp, expected) - if not errors: + data = await _list_projects(client, expected, {"type": "template"}) + if data: assert len(data) == 1 assert data[0] == template_project +async def _get_project(client, project: Dict, expected: web.Response) -> Dict: + # GET /v0/projects/{project_id} + + # with a project owned by user + url = client.app.router["get_project"].url_for(project_id=project["uuid"]) + assert str(url) == f"{API_PREFIX}/projects/{project['uuid']}" + resp = await client.get(url) + data, error = await assert_status(resp, expected) + + if not error: + assert data == project + return data + + @pytest.mark.parametrize( "user_role,expected", [ @@ -241,25 +280,95 @@ async def test_list_projects( async def test_get_project( client, logged_user, user_project, template_project, expected, ): - # GET /v0/projects/{project_id} + await _get_project(client, user_project, expected) - # with a project owned by user - url = client.app.router["get_project"].url_for(project_id=user_project["uuid"]) + # with a template + await _get_project(client, template_project, expected) - resp = await client.get(url) - data, error = await assert_status(resp, expected) - if not error: - assert data == user_project +async def _new_project( + client, + expected_response: web.Response, + logged_user: Dict[str, str], + primary_group: Dict[str, str], + *, + project: Optional[Dict] = None, + from_template: Optional[Dict] = None, +) -> Dict: + # POST /v0/projects + url = client.app.router["create_projects"].url_for() + assert str(url) == f"{API_PREFIX}/projects" + if from_template: + url = url.with_query(from_template=from_template["uuid"]) - # with a template - url = client.app.router["get_project"].url_for(project_id=template_project["uuid"]) + # Pre-defined fields imposed by required properties in schema + project_data = {} + expected_data = {} + if from_template: + # access rights are replaced + expected_data = deepcopy(from_template) + expected_data["accessRights"] = {} + + if not from_template or project: + project_data = { + "uuid": "0000000-invalid-uuid", + "name": "Minimal name", + "description": "this description should not change", + "prjOwner": "me but I will be removed anyway", + "creationDate": now_str(), + "lastChangeDate": now_str(), + "thumbnail": "", + "accessRights": {}, + "workbench": {}, + "tags": [], + } + if project: + project_data.update(project) - resp = await client.get(url) - data, error = await assert_status(resp, expected) + for key in project_data: + expected_data[key] = project_data[key] + if ( + key in OVERRIDABLE_DOCUMENT_KEYS + and not project_data[key] + and from_template + ): + expected_data[key] = from_template[key] + resp = await client.post(url, json=project_data) + + new_project, error = await assert_status(resp, expected_response) if not error: - assert data == template_project + # updated fields + assert expected_data["uuid"] != new_project["uuid"] + assert ( + new_project["prjOwner"] == logged_user["email"] + ) # the project owner is assigned the user id e-mail + assert to_datetime(expected_data["creationDate"]) < to_datetime( + new_project["creationDate"] + ) + assert to_datetime(expected_data["lastChangeDate"]) < to_datetime( + new_project["lastChangeDate"] + ) + # the access rights are set to use the logged user primary group + whatever was inside the project + expected_data["accessRights"].update( + {str(primary_group["gid"]): {"read": True, "write": True, "delete": True}} + ) + assert new_project["accessRights"] == expected_data["accessRights"] + + # invariant fields + modified_fields = [ + "uuid", + "prjOwner", + "creationDate", + "lastChangeDate", + "accessRights", + "workbench" if from_template else None, + ] + + for key in new_project.keys(): + if key not in modified_fields: + assert expected_data[key] == new_project[key] + return new_project # POST -------- @@ -273,53 +382,15 @@ async def test_get_project( ], ) async def test_new_project( - client, logged_user, expected, computational_system_mock, storage_subsystem_mock, + client, + logged_user, + primary_group, + expected, + computational_system_mock, + storage_subsystem_mock, + project_db_cleaner, ): - # POST /v0/projects - url = client.app.router["create_projects"].url_for() - assert str(url) == API_PREFIX + "/projects" - - # Pre-defined fields imposed by required properties in schema - default_project = { - "uuid": "0000000-invalid-uuid", - "name": "Minimal name", - "description": "this description should not change", - "prjOwner": "me but I will be removed anyway", - "creationDate": now_str(), - "lastChangeDate": now_str(), - "thumbnail": "", - "accessRights": {"12": "some rights"}, - "workbench": {}, - "tags": [], - } - - resp = await client.post(url, json=default_project) - - data, error = await assert_status(resp, expected) - - if not error: - new_project = data - - # updated fields - assert default_project["uuid"] != new_project["uuid"] - assert default_project["prjOwner"] != logged_user["email"] - assert new_project["prjOwner"] == logged_user["email"] - assert to_datetime(default_project["creationDate"]) < to_datetime( - new_project["creationDate"] - ) - - # invariant fields - for key in new_project.keys(): - if key not in ("uuid", "prjOwner", "creationDate", "lastChangeDate"): - assert default_project[key] == new_project[key] - - # TODO: validate response using OAS? - # FIXME: cannot delete user until project is deleted. See cascade or too coupled?? - # i.e. removing a user, removes all its projects!! - - # asyncpg.exceptions.ForeignKeyViolationError: update or delete on table "users" - # violates foreign key constraint "user_to_projects_user_id_fkey" on table "user_to_projects" - await delete_all_projects(client.app) + new_project = await _new_project(client, expected, logged_user, primary_group) @pytest.mark.parametrize( @@ -334,44 +405,20 @@ async def test_new_project( async def test_new_project_from_template( client, logged_user, + primary_group: Dict[str, str], template_project, expected, computational_system_mock, storage_subsystem_mock, + project_db_cleaner, ): - # POST /v0/projects?from_template={template_uuid} - url = ( - client.app.router["create_projects"] - .url_for() - .with_query(from_template=template_project["uuid"]) + new_project = await _new_project( + client, expected, logged_user, primary_group, from_template=template_project ) - resp = await client.post(url) - - data, error = await assert_status(resp, expected) - - if not error: - project = data - modified = ["prjOwner", "creationDate", "lastChangeDate", "uuid"] - - # different ownership - assert project["prjOwner"] == logged_user["email"] - assert project["prjOwner"] != template_project["prjOwner"] - assert project["accessRights"] == template_project["accessRights"] - - # different timestamps - assert to_datetime(template_project["creationDate"]) < to_datetime( - project["creationDate"] - ) - assert to_datetime(template_project["lastChangeDate"]) < to_datetime( - project["lastChangeDate"] - ) - - # different uuids for project and nodes!? - assert project["uuid"] != template_project["uuid"] - + if new_project: # check uuid replacement - for node_name in project["workbench"]: + for node_name in new_project["workbench"]: try: uuidlib.UUID(node_name) except ValueError: @@ -390,18 +437,14 @@ async def test_new_project_from_template( async def test_new_project_from_template_with_body( client, logged_user, + primary_group: Dict[str, str], + standard_groups: List[Dict[str, str]], template_project, expected, computational_system_mock, storage_subsystem_mock, + project_db_cleaner, ): - # POST /v0/projects?from_template={template_uuid} - url = ( - client.app.router["create_projects"] - .url_for() - .with_query(from_template=template_project["uuid"]) - ) - predefined = { "uuid": "", "name": "Sleepers8", @@ -410,39 +453,30 @@ async def test_new_project_from_template_with_body( "prjOwner": "", "creationDate": "2019-06-03T09:59:31.987Z", "lastChangeDate": "2019-06-03T09:59:31.987Z", - "accessRights": {"123": "some new access rights"}, + "accessRights": { + str(standard_groups[0]["gid"]): { + "read": True, + "write": True, + "delete": False, + } + }, "workbench": {}, "tags": [], } + project = await _new_project( + client, + expected, + logged_user, + primary_group, + project=predefined, + from_template=template_project, + ) - resp = await client.post(url, json=predefined) - - data, error = await assert_status(resp, expected) - - if not error: - project = data - + if project: # uses predefined assert project["name"] == predefined["name"] assert project["description"] == predefined["description"] - modified = ["prjOwner", "creationDate", "lastChangeDate", "uuid"] - - # different ownership - assert project["prjOwner"] == logged_user["email"] - assert project["prjOwner"] != template_project["prjOwner"] - # different access rights - assert project["accessRights"] != template_project["accessRights"] - assert project["accessRights"] == predefined["accessRights"] - - # different timestamps - assert to_datetime(template_project["creationDate"]) < to_datetime( - project["creationDate"] - ) - assert to_datetime(template_project["lastChangeDate"]) < to_datetime( - project["lastChangeDate"] - ) - # different uuids for project and nodes!? assert project["uuid"] != template_project["uuid"] @@ -466,10 +500,13 @@ async def test_new_project_from_template_with_body( async def test_new_template_from_project( client, logged_user, + primary_group: Dict[str, str], + all_group: Dict[str, str], user_project, expected, computational_system_mock, storage_subsystem_mock, + project_db_cleaner, ): # POST /v0/projects?as_template={user_uuid} url = ( @@ -484,9 +521,7 @@ async def test_new_template_from_project( if not error: template_project = data - url = client.app.router["list_projects"].url_for().with_query(type="template") - resp = await client.get(url) - templates, _ = await assert_status(resp, web.HTTPOk) + templates = await _list_projects(client, web.HTTPOk, {"type": "template"}) assert len(templates) == 1 assert templates[0] == template_project @@ -524,7 +559,9 @@ async def test_new_template_from_project( "creationDate": "2019-06-03T09:59:31.987Z", "lastChangeDate": "2019-06-03T09:59:31.987Z", "workbench": {}, - "accessRights": {"12": "rwx"}, + "accessRights": { + str(all_group["gid"]): {"read": True, "write": False, "delete": False}, + }, "tags": [], } @@ -537,16 +574,12 @@ async def test_new_template_from_project( assert template_project["name"] == predefined["name"] assert template_project["description"] == predefined["description"] assert template_project["prjOwner"] == logged_user["email"] + # the logged in user access rights are added by default + predefined["accessRights"].update( + {str(primary_group["gid"]): {"read": True, "write": True, "delete": True}} + ) assert template_project["accessRights"] == predefined["accessRights"] - modified = [ - "prjOwner", - "creationDate", - "lastChangeDate", - "uuid", - "accessRights", - ] - # different ownership assert template_project["prjOwner"] == logged_user["email"] assert template_project["prjOwner"] == user_project["prjOwner"] @@ -570,30 +603,162 @@ async def test_new_template_from_project( pytest.fail("Invalid uuid in workbench node {}".format(node_name)) -# PUT -------- @pytest.mark.parametrize( - "user_role,expected", + "user_role,expected_created,expected_ok,expected_notfound,expected_nocontents,expected_forbidden", [ - (UserRole.ANONYMOUS, web.HTTPUnauthorized), - (UserRole.GUEST, web.HTTPOk), - (UserRole.USER, web.HTTPOk), - (UserRole.TESTER, web.HTTPOk), + ( + UserRole.ANONYMOUS, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + ), + ( + UserRole.GUEST, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPNotFound, + web.HTTPForbidden, + web.HTTPForbidden, + ), + ( + UserRole.USER, + web.HTTPCreated, + web.HTTPOk, + web.HTTPNotFound, + web.HTTPNoContent, + web.HTTPForbidden, + ), + ( + UserRole.TESTER, + web.HTTPCreated, + web.HTTPOk, + web.HTTPNotFound, + web.HTTPNoContent, + web.HTTPForbidden, + ), ], ) -async def test_replace_project( - client, logged_user, user_project, expected, computational_system_mock, +@pytest.mark.parametrize( + "share_rights", + [ + {"read": True, "write": True, "delete": True}, + {"read": True, "write": True, "delete": False}, + {"read": True, "write": False, "delete": False}, + {"read": False, "write": False, "delete": False}, + ], +) +async def test_share_project( + client, + logged_user, + primary_group: Dict[str, str], + standard_groups: List[Dict[str, str]], + all_group: Dict[str, str], + user_role, + expected_created, + expected_ok, + expected_notfound, + expected_nocontents, + expected_forbidden, + storage_subsystem_mock, + mocked_director_subsystem, + computational_system_mock, + share_rights, + project_db_cleaner, ): - # PUT /v0/projects/{project_id} - url = client.app.router["replace_project"].url_for(project_id=user_project["uuid"]) + # Use-case: the user shares some projects with a group - project_update = deepcopy(user_project) - project_update["description"] = "some updated from original project!!!" + # create a few projects + new_project = await _new_project( + client, + expected_created, + logged_user, + primary_group, + project={"accessRights": {str(all_group["gid"]): share_rights}}, + ) + if new_project: + assert new_project["accessRights"] == { + str(primary_group["gid"]): {"read": True, "write": True, "delete": True}, + str(all_group["gid"]): share_rights, + } + + # user 1 can always get to his project + await _get_project(client, new_project, expected_ok) + + # get another user logged in now + user_2 = await log_client_in( + client, {"role": user_role.name}, enable_check=user_role != UserRole.ANONYMOUS + ) + if new_project: + # user 2 can only get the project if user 2 has read access + await _get_project( + client, + new_project, + expected_ok if share_rights["read"] else expected_forbidden, + ) + # user 2 can only list projects if user 2 has read access + list_projects = await _list_projects(client, expected_ok) + assert len(list_projects) == (1 if share_rights["read"] else 0) + # user 2 can only update the project is user 2 has write access + project_update = deepcopy(new_project) + project_update["name"] = "my super name" + await _replace_project( + client, + project_update, + expected_ok if share_rights["write"] else expected_forbidden, + ) + # user 2 can only delete projects if user 2 has delete access + await _delete_project( + client, + new_project, + expected_nocontents if share_rights["delete"] else expected_forbidden, + ) + +async def _replace_project( + client, project_update: Dict, expected: web.Response +) -> Dict: + # PUT /v0/projects/{project_id} + url = client.app.router["replace_project"].url_for( + project_id=project_update["uuid"] + ) + assert str(url) == f"{API_PREFIX}/projects/{project_update['uuid']}" resp = await client.put(url, json=project_update) data, error = await assert_status(resp, expected) - if not error: assert_replaced(current_project=data, update_data=project_update) + return data + + +# PUT -------- +@pytest.mark.parametrize( + "user_role,expected,expected_change_access", + [ + (UserRole.ANONYMOUS, web.HTTPUnauthorized, web.HTTPUnauthorized), + (UserRole.GUEST, web.HTTPOk, web.HTTPForbidden), + (UserRole.USER, web.HTTPOk, web.HTTPOk), + (UserRole.TESTER, web.HTTPOk, web.HTTPOk), + ], +) +async def test_replace_project( + client, + logged_user, + user_project, + expected, + expected_change_access, + computational_system_mock, + all_group, +): + project_update = deepcopy(user_project) + project_update["description"] = "some updated from original project!!!" + await _replace_project(client, project_update, expected) + + # replacing the owner access is not possible, it will keep the owner as well + project_update["accessRights"].update( + {str(all_group["gid"]): {"read": True, "write": True, "delete": True}} + ) + await _replace_project(client, project_update, expected_change_access) @pytest.mark.parametrize( @@ -608,9 +773,6 @@ async def test_replace_project( async def test_replace_project_updated_inputs( client, logged_user, user_project, expected, computational_system_mock, ): - # PUT /v0/projects/{project_id} - url = client.app.router["replace_project"].url_for(project_id=user_project["uuid"]) - project_update = deepcopy(user_project) # # "inputAccess": { @@ -624,12 +786,7 @@ async def test_replace_project_updated_inputs( project_update["workbench"]["5739e377-17f7-4f09-a6ad-62659fb7fdec"]["inputs"][ "Na" ] = 55 - - resp = await client.put(url, json=project_update) - data, error = await assert_status(resp, expected) - - if not error: - assert_replaced(current_project=data, update_data=project_update) + await _replace_project(client, project_update, expected) @pytest.mark.parametrize( @@ -644,9 +801,6 @@ async def test_replace_project_updated_inputs( async def test_replace_project_updated_readonly_inputs( client, logged_user, user_project, expected, computational_system_mock, ): - # PUT /v0/projects/{project_id} - url = client.app.router["replace_project"].url_for(project_id=user_project["uuid"]) - project_update = deepcopy(user_project) project_update["workbench"]["5739e377-17f7-4f09-a6ad-62659fb7fdec"]["inputs"][ "Na" @@ -654,15 +808,17 @@ async def test_replace_project_updated_readonly_inputs( project_update["workbench"]["5739e377-17f7-4f09-a6ad-62659fb7fdec"]["inputs"][ "Kr" ] = 5 + await _replace_project(client, project_update, expected) - resp = await client.put(url, json=project_update) - data, error = await assert_status(resp, expected) - if not error: - assert_replaced(current_project=data, update_data=project_update) +# DELETE ------- -# DELETE ------- +async def _delete_project(client, project: Dict, expected: web.Response) -> None: + url = client.app.router["delete_project"].url_for(project_id=project["uuid"]) + assert str(url) == f"{API_PREFIX}/projects/{project['uuid']}" + resp = await client.delete(url) + await assert_status(resp, expected) @pytest.mark.parametrize( @@ -690,11 +846,9 @@ async def test_delete_project( "get_running_interactive_services" ].return_value = future_with_result(fakes) - url = client.app.router["delete_project"].url_for(project_id=user_project["uuid"]) + await _delete_project(client, user_project, expected) - resp = await client.delete(url) - await assert_status(resp, expected) - if resp.status == web.HTTPNoContent.status_code: + if expected == web.HTTPNoContent: mocked_director_subsystem[ "get_running_interactive_services" ].assert_called_once() @@ -702,11 +856,7 @@ async def test_delete_project( mocked_director_subsystem["stop_service"].has_calls(calls) # wait for the fire&forget to run await sleep(2) - # check if database entries are correctly removed, there should be no project available here - url = client.app.router["get_project"].url_for(project_id=user_project["uuid"]) - - resp = await client.get(url) - data, error = await assert_status(resp, web.HTTPNotFound) + await _get_project(client, user_project, web.HTTPNotFound) @pytest.mark.parametrize( @@ -898,9 +1048,7 @@ async def test_delete_shared_project_forbidden( # delete project in tab2 client_session_id2 = client_session_id() sio2 = await socketio_client(client_session_id2) - url = client.app.router["delete_project"].url_for(project_id=user_project["uuid"]) - resp = await client.delete(url) - await assert_status(resp, expected) + await _delete_project(client, user_project, expected) @pytest.mark.parametrize( @@ -1044,16 +1192,17 @@ async def test_tags_to_studies( # Tag is included in response assert added_tag.get("id") in data.get("tags") + # check the tags are in + user_project["tags"] = [tag["id"] for tag in added_tags] + data = await _get_project(client, user_project, expected) + # Delete tag0 url = client.app.router["delete_tag"].url_for(tag_id=str(added_tags[0].get("id"))) resp = await client.delete(url) await assert_status(resp, web.HTTPNoContent) # Get project and check that tag is no longer there - url = client.app.router["get_project"].url_for( - project_id=str(user_project.get("uuid")) - ) - resp = await client.get(url) - data, _ = await assert_status(resp, expected) + user_project["tags"].remove(added_tags[0]["id"]) + data = await _get_project(client, user_project, expected) assert added_tags[0].get("id") not in data.get("tags") # Remove tag1 from project @@ -1063,11 +1212,8 @@ async def test_tags_to_studies( resp = await client.delete(url) await assert_status(resp, expected) # Get project and check that tag is no longer there - url = client.app.router["get_project"].url_for( - project_id=str(user_project.get("uuid")) - ) - resp = await client.get(url) - data, _ = await assert_status(resp, expected) + user_project["tags"].remove(added_tags[1]["id"]) + data = await _get_project(client, user_project, expected) assert added_tags[1].get("id") not in data.get("tags") # Delete tag1 diff --git a/services/web/server/tests/unit/with_dbs/test_users.py b/services/web/server/tests/unit/with_dbs/test_users.py index 7e7ae7c8b83..c4451548111 100644 --- a/services/web/server/tests/unit/with_dbs/test_users.py +++ b/services/web/server/tests/unit/with_dbs/test_users.py @@ -24,6 +24,7 @@ ) from servicelib.application import create_safe_application from simcore_service_webserver.db import APP_DB_ENGINE_KEY, setup_db +from simcore_service_webserver.groups import setup_groups from simcore_service_webserver.login import setup_login from simcore_service_webserver.rest import setup_rest from simcore_service_webserver.security import setup_security @@ -31,6 +32,7 @@ from simcore_service_webserver.session import setup_session from simcore_service_webserver.users import setup_users + API_VERSION = "v0" @@ -53,6 +55,7 @@ def client(loop, aiohttp_client, app_cfg, postgres_service): setup_rest(app) setup_login(app) setup_users(app) + setup_groups(app) client = loop.run_until_complete( aiohttp_client(app, server_kwargs={"port": port, "host": "localhost"}) @@ -130,10 +133,10 @@ async def fake_tokens(logged_user, tokens_db): ], ) async def test_get_profile( - logged_user, + logged_user: Dict, client, - role, - expected, + role: UserRole, + expected: web.HTTPException, primary_group: Dict[str, str], standard_groups: List[Dict[str, str]], all_group: Dict[str, str], @@ -306,9 +309,6 @@ async def test_delete_token( assert not (await get_token_from_db(tokens_db, token_service=sid)) -## BUG FIXES ####################################################### - - @pytest.fixture def mock_failing_connection(mocker) -> MagicMock: """ diff --git a/tests/e2e/tutorials/sleepers.js b/tests/e2e/tutorials/sleepers.js index 401ca2ac421..34bba4cbf2a 100644 --- a/tests/e2e/tutorials/sleepers.js +++ b/tests/e2e/tutorials/sleepers.js @@ -17,7 +17,7 @@ const { } = utils.getUserAndPass(args); const templateName = "Sleepers"; -async function runTutorial () { +async function runTutorial() { const tutorial = new tutorialBase.TutorialBase(url, user, pass, newUser, templateName); tutorial.init(); @@ -34,6 +34,7 @@ async function runTutorial () { await tutorial.waitFor(5000); await tutorial.runPipeline(25000); + console.log('Checking results for the first sleeper:'); await tutorial.openNodeFiles(0); const outFiles = [ "logs.zip", @@ -41,6 +42,11 @@ async function runTutorial () { ]; await tutorial.checkResults(outFiles.length); + await tutorial.waitFor(20000); + console.log('Checking results for the last sleeper:'); + await tutorial.openNodeFiles(4); + await tutorial.checkResults(outFiles.length); + await tutorial.removeStudy(); await tutorial.logOut(); await tutorial.close(); @@ -50,4 +56,4 @@ runTutorial() .catch(error => { console.log('Puppeteer error: ' + error); process.exit(1); - }); \ No newline at end of file + }); diff --git a/tests/e2e/tutorials/sleepers_project_template_sql.csv b/tests/e2e/tutorials/sleepers_project_template_sql.csv index e213c2b136f..1a667e38cf2 100644 --- a/tests/e2e/tutorials/sleepers_project_template_sql.csv +++ b/tests/e2e/tutorials/sleepers_project_template_sql.csv @@ -1,2 +1,2 @@ -id,type,uuid,name,description,thumbnail,prj_owner,creation_date,last_change_date,workbench,published,accessRights -10,TEMPLATE,template-uuid-5203-915e-1ae8ae0c9991,Sleepers,5 sleepers interconnected,"",,2019-06-06 14:34:19.631,2019-06-06 14:34:28.647,"{""template-uuid-5f7e-92b0-5a14e84401e9"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 0"", ""inputs"": {""in_2"": 2}, ""inputAccess"": {""in_1"": ""Invisible"", ""in_2"": ""ReadOnly""}, ""inputNodes"": [], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 50, ""y"": 300}}, ""template-uuid-5d8a-812c-44dacf56840e"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 1"", ""inputs"": {""in_1"": {""nodeUuid"": ""template-uuid-5f7e-92b0-5a14e84401e9"", ""output"": ""out_1""}, ""in_2"": 2}, ""inputNodes"": [""template-uuid-5f7e-92b0-5a14e84401e9""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 300, ""y"": 200}}, ""template-uuid-5706-b741-4073a4454f0d"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 2"", ""inputs"": {""in_1"": {""nodeUuid"": ""template-uuid-5d8a-812c-44dacf56840e"", ""output"": ""out_1""}, ""in_2"": {""nodeUuid"": ""template-uuid-5d8a-812c-44dacf56840e"", ""output"": ""out_2""}}, ""inputNodes"": [""template-uuid-5d8a-812c-44dacf56840e""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 550, ""y"": 200}}, ""template-uuid-5065-a079-a5a0476e3c10"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 3"", ""inputs"": {""in_2"": {""nodeUuid"": ""template-uuid-5f7e-92b0-5a14e84401e9"", ""output"": ""out_2""}}, ""inputNodes"": [""template-uuid-5f7e-92b0-5a14e84401e9""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 420, ""y"": 400}}, ""template-uuid-559d-aa19-dc9293e10e4c"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 4"", ""inputs"": {""in_1"": {""nodeUuid"": ""template-uuid-5706-b741-4073a4454f0d"", ""output"": ""out_1""}, ""in_2"": {""nodeUuid"": ""template-uuid-5065-a079-a5a0476e3c10"", ""output"": ""out_2""}}, ""inputNodes"": [""template-uuid-5706-b741-4073a4454f0d"", ""template-uuid-5065-a079-a5a0476e3c10""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 800, ""y"": 300}}}",true,"{""1"": ""rwx""}" \ No newline at end of file +id,type,uuid,name,description,thumbnail,prj_owner,creation_date,last_change_date,workbench,published,access_rights +10,TEMPLATE,template-uuid-5203-915e-1ae8ae0c9991,Sleepers,5 sleepers interconnected,"",,2019-06-06 14:34:19.631,2019-06-06 14:34:28.647,"{""template-uuid-5f7e-92b0-5a14e84401e9"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 0"", ""inputs"": {""in_2"": 2}, ""inputAccess"": {""in_1"": ""Invisible"", ""in_2"": ""ReadOnly""}, ""inputNodes"": [], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 50, ""y"": 300}}, ""template-uuid-5d8a-812c-44dacf56840e"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 1"", ""inputs"": {""in_1"": {""nodeUuid"": ""template-uuid-5f7e-92b0-5a14e84401e9"", ""output"": ""out_1""}, ""in_2"": 2}, ""inputNodes"": [""template-uuid-5f7e-92b0-5a14e84401e9""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 300, ""y"": 200}}, ""template-uuid-5706-b741-4073a4454f0d"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 2"", ""inputs"": {""in_1"": {""nodeUuid"": ""template-uuid-5d8a-812c-44dacf56840e"", ""output"": ""out_1""}, ""in_2"": {""nodeUuid"": ""template-uuid-5d8a-812c-44dacf56840e"", ""output"": ""out_2""}}, ""inputNodes"": [""template-uuid-5d8a-812c-44dacf56840e""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 550, ""y"": 200}}, ""template-uuid-5065-a079-a5a0476e3c10"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 3"", ""inputs"": {""in_2"": {""nodeUuid"": ""template-uuid-5f7e-92b0-5a14e84401e9"", ""output"": ""out_2""}}, ""inputNodes"": [""template-uuid-5f7e-92b0-5a14e84401e9""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 420, ""y"": 400}}, ""template-uuid-559d-aa19-dc9293e10e4c"": {""key"": ""simcore/services/comp/itis/sleeper"", ""version"": ""1.0.0"", ""label"": ""sleeper 4"", ""inputs"": {""in_1"": {""nodeUuid"": ""template-uuid-5706-b741-4073a4454f0d"", ""output"": ""out_1""}, ""in_2"": {""nodeUuid"": ""template-uuid-5065-a079-a5a0476e3c10"", ""output"": ""out_2""}}, ""inputNodes"": [""template-uuid-5706-b741-4073a4454f0d"", ""template-uuid-5065-a079-a5a0476e3c10""], ""outputs"": {}, ""progress"": 0, ""thumbnail"": """", ""position"": {""x"": 800, ""y"": 300}}}",true,"{""1"": {""read"":true, ""write"":false, ""delete"":false}}" From 3fb36d0da4c1af4f1494af2ac3a2aaeaa2307ef1 Mon Sep 17 00:00:00 2001 From: Sylvain <35365065+sanderegg@users.noreply.github.com> Date: Mon, 22 Jun 2020 10:27:32 +0200 Subject: [PATCH 06/43] maintenance fix codecov reports (#1568) * add codecov.yml file * set up codecov to report for api/packages/services --- .codecov.yml | 56 ++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 56 insertions(+) create mode 100644 .codecov.yml diff --git a/.codecov.yml b/.codecov.yml new file mode 100644 index 00000000000..4b47678244b --- /dev/null +++ b/.codecov.yml @@ -0,0 +1,56 @@ +codecov: + require_ci_to_pass: yes + branch: master + +coverage: + precision: 1 + round: down + range: "70...100" + + status: + project: + default: + informational: true + threshold: 1% + paths: + - api + - packages + - services + api: + informational: true + threshold: 1% + paths: + - api + packages: + informational: true + threshold: 1% + paths: + - packages + services: + informational: true + threshold: 1% + paths: + - services + + + patch: + default: + informational: true + threshold: 1% + paths: + - api + - packages + - services + +parsers: + gcov: + branch_detection: + conditional: yes + loop: yes + method: no + macro: no + +comment: + layout: "reach,diff,flags,tree" + behavior: default + require_changes: no From bdfcd084a4bde44b3b0155653fc5f52b14faf75e Mon Sep 17 00:00:00 2001 From: "dependabot-preview[bot]" <27856297+dependabot-preview[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2020 10:34:29 +0200 Subject: [PATCH 07/43] Bump faker from 4.1.0 to 4.1.1 in /packages/postgres-database (#1573) Bumps [faker](https://github.com/joke2k/faker) from 4.1.0 to 4.1.1. - [Release notes](https://github.com/joke2k/faker/releases) - [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.rst) - [Commits](https://github.com/joke2k/faker/compare/v4.1.0...v4.1.1) Signed-off-by: dependabot-preview[bot] Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> --- packages/postgres-database/requirements/_test.txt | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/packages/postgres-database/requirements/_test.txt b/packages/postgres-database/requirements/_test.txt index b84a9ea42c2..7de06d70860 100644 --- a/packages/postgres-database/requirements/_test.txt +++ b/packages/postgres-database/requirements/_test.txt @@ -17,10 +17,8 @@ coverage==5.1 # via -r requirements/_test.in, coveralls, pytest-cov coveralls==2.0.0 # via -r requirements/_test.in docker==4.2.1 # via -r requirements/_migration.txt docopt==0.6.2 # via coveralls -faker==4.1.0 # via -r requirements/_test.in -idna-ssl==1.1.0 # via aiohttp +faker==4.1.1 # via -r requirements/_test.in idna==2.9 # via -r requirements/_migration.txt, requests, yarl -importlib-metadata==1.6.0 # via pluggy, pytest isort==4.3.21 # via pylint lazy-object-proxy==1.4.3 # via astroid mako==1.1.2 # via -r requirements/_migration.txt, alembic @@ -49,11 +47,8 @@ sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_migration. tenacity==6.2.0 # via -r requirements/_migration.txt text-unidecode==1.3 # via faker toml==0.10.1 # via pylint -typed-ast==1.4.1 # via astroid -typing-extensions==3.7.4.2 # via aiohttp urllib3==1.25.9 # via -r requirements/_migration.txt, requests wcwidth==0.1.9 # via pytest websocket-client==0.57.0 # via -r requirements/_migration.txt, docker wrapt==1.12.1 # via astroid yarl==1.4.2 # via -r requirements/_migration.txt, aiohttp -zipp==3.1.0 # via importlib-metadata From 1b7a47e5f7fa32a159fdcada8ae1f7ea81f721f2 Mon Sep 17 00:00:00 2001 From: Pedro Crespo <32402063+pcrespov@users.noreply.github.com> Date: Mon, 22 Jun 2020 13:37:26 +0200 Subject: [PATCH 08/43] Is1570/study fails 500 (#1572) Fixes #1570 * increases verbose in gc errors * Turned gather errors into warnings * Fixing issue when valid token with invalid user * Authz cache cleared when any user is deleted * Tests fix emulating a valid cookie invalid user * Enhances error handling --- .../service-library/src/servicelib/utils.py | 18 ++- .../resource_manager/garbage_collector.py | 2 +- .../simcore_service_webserver/security_api.py | 14 +- .../studies_access.py | 46 ++++-- .../templates/error-page.html | 14 ++ .../simcore_service_webserver/users_api.py | 13 +- .../users_handlers.py | 8 +- .../src/simcore_service_webserver/utils.py | 5 + .../unit/with_dbs/test_access_to_studies.py | 149 +++++++++++++----- 9 files changed, 198 insertions(+), 71 deletions(-) create mode 100644 services/web/server/src/simcore_service_webserver/templates/error-page.html diff --git a/packages/service-library/src/servicelib/utils.py b/packages/service-library/src/servicelib/utils.py index 0c8ca8fd686..758b47cbf3e 100644 --- a/packages/service-library/src/servicelib/utils.py +++ b/packages/service-library/src/servicelib/utils.py @@ -60,15 +60,25 @@ def log_exception_callback(fut: asyncio.Future): # // tasks -async def logged_gather(*tasks, reraise: bool = True) -> List[Any]: - # all coroutine called in // and we take care of returning the exceptions +async def logged_gather( + *tasks, reraise: bool = True, log: logging.Logger = logger +) -> List[Any]: + """ + *all* coroutine passed are executed concurrently and once they are all + completed, the first error (if any) is reraised or all returned + + log: passing the logger gives a chance to identify the origin of the gather call + """ results = await asyncio.gather(*tasks, return_exceptions=True) for value in results: + # WARN: note that ONLY THE FIRST exception is raised if isinstance(value, Exception): if reraise: raise value - logger.error( - "Exception occured while running %s: %s", + # Exception is returned, therefore it is not logged as error but as warning + # It was user's decision not to reraise them + log.warning( + "Exception occured while running task %s in gather: %s", str(tasks[results.index(value)]), str(value), ) diff --git a/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py b/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py index 0c361313eb8..14e01df6d0c 100644 --- a/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py +++ b/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py @@ -177,7 +177,7 @@ async def garbage_collector_task(app: web.Application): keep_alive = False logger.info("Garbage collection task was cancelled, it will not restart!") except Exception: # pylint: disable=broad-except - logger.warning("There was an error during garbage collection, restarting...") + logger.warning("There was an error during garbage collection, restarting...", exc_info=True) # will wait 5 seconds before restarting to avoid restart loops await asyncio.sleep(5) diff --git a/services/web/server/src/simcore_service_webserver/security_api.py b/services/web/server/src/simcore_service_webserver/security_api.py index ac76c16af1c..c9e76c6f518 100644 --- a/services/web/server/src/simcore_service_webserver/security_api.py +++ b/services/web/server/src/simcore_service_webserver/security_api.py @@ -18,6 +18,7 @@ from aiopg.sa import Engine from .db_models import UserStatus, users +from .security_authorization import AuthorizationPolicy, RoleBasedAccessModel from .security_roles import UserRole log = logging.getLogger(__file__) @@ -35,19 +36,24 @@ async def check_credentials(engine: Engine, email: str, password: str) -> bool: return False -def encrypt_password(password): +def encrypt_password(password: str) -> str: return passlib.hash.sha256_crypt.encrypt(password, rounds=1000) -def check_password(password, password_hash): +def check_password(password: str, password_hash: str) -> bool: return passlib.hash.sha256_crypt.verify(password, password_hash) -def get_access_model(app: web.Application): - autz_policy = app[AUTZ_KEY] +def get_access_model(app: web.Application) -> RoleBasedAccessModel: + autz_policy: AuthorizationPolicy = app[AUTZ_KEY] return autz_policy.access_model +def clean_auth_policy_cache(app: web.Application) -> None: + autz_policy: AuthorizationPolicy = app[AUTZ_KEY] + autz_policy.timed_cache.clear() + + __all__ = ( "encrypt_password", "check_credentials", diff --git a/services/web/server/src/simcore_service_webserver/studies_access.py b/services/web/server/src/simcore_service_webserver/studies_access.py index d89d38d3b66..1f9e7160a46 100644 --- a/services/web/server/src/simcore_service_webserver/studies_access.py +++ b/services/web/server/src/simcore_service_webserver/studies_access.py @@ -23,6 +23,7 @@ from .login.decorators import login_required from .security_api import is_anonymous, remember from .statics import INDEX_RESOURCE_NAME +from .utils import compose_error_msg log = logging.getLogger(__name__) @@ -156,7 +157,9 @@ async def access_study(request: web.Request) -> web.Response: - public studies are templates that are marked as published in the database - if user is not registered, it creates a temporary guest account with limited resources and expiration + - this handler is NOT part of the API and therefore does NOT respond with json """ + # TODO: implement nice error-page.html project_id = request.match_info["id"] template_project = await get_public_project(request.app, project_id) @@ -166,25 +169,38 @@ async def access_study(request: web.Request) -> web.Response: Please contact the data curators for more information." ) + # Get or create a valid user user = None is_anonymous_user = await is_anonymous(request) - if is_anonymous_user: - log.debug("Creating temporary user ...") - user = await create_temporary_user(request) - else: + if not is_anonymous_user: + # NOTE: covers valid cookie with unauthorized user (e.g. expired guest/banned) + # TODO: test if temp user overrides old cookie properly user = await get_authorized_user(request) if not user: - raise RuntimeError("Unable to start user session") + log.debug("Creating temporary user ...") + user = await create_temporary_user(request) + is_anonymous_user = True - log.debug( - "Granted access to study '%s' for user %s. Copying study over ...", - template_project.get("name"), - user.get("email"), - ) - copied_project_id = await copy_study_to_account(request, template_project, user) + try: + log.debug( + "Granted access to study '%s' for user %s. Copying study over ...", + template_project.get("name"), + user.get("email"), + ) + copied_project_id = await copy_study_to_account(request, template_project, user) + + log.debug("Study %s copied", copied_project_id) - log.debug("Study %s copied", copied_project_id) + except Exception: # pylint: disable=broad-except + log.exception( + "Failed while copying project '%s' to '%s'", + template_project.get("name"), + user.get("email"), + ) + raise web.HTTPInternalServerError( + reason=compose_error_msg("Unable to copy project.") + ) try: redirect_url = ( @@ -193,11 +209,11 @@ async def access_study(request: web.Request) -> web.Response: .with_fragment("/study/{}".format(copied_project_id)) ) except KeyError: - log.error( + log.exception( "Cannot redirect to website because route was not registered. Probably qx output was not ready and it was disabled (see statics.py)" ) - raise RuntimeError( - "Unable to serve front-end. Study has been anyway copied over to user." + raise web.HTTPInternalServerError( + reason=compose_error_msg("Unable to serve front-end.") ) response = web.HTTPFound(location=redirect_url) diff --git a/services/web/server/src/simcore_service_webserver/templates/error-page.html b/services/web/server/src/simcore_service_webserver/templates/error-page.html new file mode 100644 index 00000000000..b322bc40f7b --- /dev/null +++ b/services/web/server/src/simcore_service_webserver/templates/error-page.html @@ -0,0 +1,14 @@ +{% block title %} +Site Error +{% endblock %} + +{% block content %} +

Opps, this is a bit embarrasing

+

+ + + {{ error_text }} + + +

+{% endblock %} diff --git a/services/web/server/src/simcore_service_webserver/users_api.py b/services/web/server/src/simcore_service_webserver/users_api.py index 1679a7033e6..451a9e2aae6 100644 --- a/services/web/server/src/simcore_service_webserver/users_api.py +++ b/services/web/server/src/simcore_service_webserver/users_api.py @@ -12,8 +12,9 @@ from .db_models import GroupType, groups, tokens, user_to_groups, users from .groups_api import convert_groups_db_to_schema -from .users_utils import convert_user_db_to_schema +from .security_api import clean_auth_policy_cache from .users_exceptions import UserNotFoundError +from .users_utils import convert_user_db_to_schema logger = logging.getLogger(__name__) @@ -23,6 +24,7 @@ async def get_user_profile(app: web.Application, user_id: int) -> Dict[str, Any] user_profile: Dict[str, Any] = {} user_primary_group = all_group = {} user_standard_groups = [] + async with engine.acquire() as conn: async for row in conn.execute( sa.select( @@ -105,6 +107,11 @@ async def is_user_guest(app: web.Application, user_id: int) -> bool: async def delete_user(app: web.Application, user_id: int) -> None: """Deletes a user from the database if the user exists""" + # FIXME: user cannot be deleted without deleting first all ist project + # otherwise this function will raise asyncpg.exceptions.ForeignKeyViolationError + # Consider "marking" users as deleted and havning a background job that + # cleans it up + db = get_storage(app) user = await db.get_user({"id": user_id}) if not user: @@ -115,6 +122,10 @@ async def delete_user(app: web.Application, user_id: int) -> None: await db.delete_user(user) + # This user might be cached in the auth. If so, any request + # with this user-id will get thru producing unexpected side-effects + clean_auth_policy_cache(app) + # TOKEN ------------------------------------------- async def create_token( diff --git a/services/web/server/src/simcore_service_webserver/users_handlers.py b/services/web/server/src/simcore_service_webserver/users_handlers.py index b2eacf6fbfc..ec96851a1f9 100644 --- a/services/web/server/src/simcore_service_webserver/users_handlers.py +++ b/services/web/server/src/simcore_service_webserver/users_handlers.py @@ -8,10 +8,7 @@ from . import users_api from .login.decorators import RQT_USERID_KEY, login_required from .security_decorators import permission_required -from .users_exceptions import ( - TokenNotFoundError, - UserNotFoundError, -) +from .users_exceptions import TokenNotFoundError, UserNotFoundError logger = logging.getLogger(__name__) @@ -24,7 +21,8 @@ async def get_my_profile(request: web.Request): try: return await users_api.get_user_profile(request.app, uid) except UserNotFoundError: - raise web.HTTPServerError(reason="could not find profile!") + # NOTE: invalid user_id could happen due to timed-cache in AuthorizationPolicy + raise web.HTTPNotFound(reason="Could not find profile!") @login_required diff --git a/services/web/server/src/simcore_service_webserver/utils.py b/services/web/server/src/simcore_service_webserver/utils.py index 3b3d47895ec..3a12b43e0d2 100644 --- a/services/web/server/src/simcore_service_webserver/utils.py +++ b/services/web/server/src/simcore_service_webserver/utils.py @@ -196,3 +196,8 @@ def get_tracemalloc_info(top=10) -> List[str]: ) return top_trace + + +def compose_error_msg(msg: str) -> str: + msg = msg.strip() + return f"{msg}. Please send this message to support@osparc.io [{now_str()}]" diff --git a/services/web/server/tests/unit/with_dbs/test_access_to_studies.py b/services/web/server/tests/unit/with_dbs/test_access_to_studies.py index ba4e50b9764..9f39f410b00 100644 --- a/services/web/server/tests/unit/with_dbs/test_access_to_studies.py +++ b/services/web/server/tests/unit/with_dbs/test_access_to_studies.py @@ -5,6 +5,7 @@ # pylint:disable=unused-argument # pylint:disable=redefined-outer-name +import re import textwrap from copy import deepcopy from pathlib import Path @@ -12,25 +13,25 @@ from typing import Dict import pytest -from aiohttp import web +from aiohttp import ClientResponse, ClientSession, web import simcore_service_webserver.statics from pytest_simcore.helpers.utils_assert import assert_status from pytest_simcore.helpers.utils_login import LoggedUser, UserRole from pytest_simcore.helpers.utils_projects import NewProject, delete_all_projects from servicelib.application import create_safe_application -from servicelib.application_keys import APP_CONFIG_KEY from servicelib.rest_responses import unwrap_envelope -from simcore_service_webserver import studies_access from simcore_service_webserver.db import setup_db from simcore_service_webserver.login import setup_login from simcore_service_webserver.projects import setup_projects +from simcore_service_webserver.projects.projects_api import delete_project_from_db from simcore_service_webserver.rest import setup_rest from simcore_service_webserver.security import setup_security from simcore_service_webserver.session import setup_session from simcore_service_webserver.statics import setup_statics from simcore_service_webserver.studies_access import setup_studies_access from simcore_service_webserver.users import setup_users +from simcore_service_webserver.users_api import delete_user, is_user_guest SHARED_STUDY_UUID = "e2e38eee-c569-4e55-b104-70d159e49c87" @@ -114,7 +115,7 @@ async def logged_user(client): # , role: UserRole): @pytest.fixture -async def published_project(client, fake_project): +async def published_project(client, fake_project) -> Dict: project_data = deepcopy(fake_project) project_data["name"] = "Published project" project_data["uuid"] = SHARED_STUDY_UUID @@ -154,12 +155,45 @@ async def _get_user_projects(client): def _assert_same_projects(got: Dict, expected: Dict): # TODO: validate using api/specs/webserver/v0/components/schemas/project-v0.0.1.json # TODO: validate workbench! - exclude = ["creationDate", "lastChangeDate", "prjOwner", "uuid", "workbench", "accessRights"] + exclude = set( + [ + "creationDate", + "lastChangeDate", + "prjOwner", + "uuid", + "workbench", + "accessRights", + ] + ) for key in expected.keys(): if key not in exclude: assert got[key] == expected[key], "Failed in %s" % key +async def assert_redirected_to_study( + resp: ClientResponse, session: ClientSession +) -> str: + content = await resp.text() + assert resp.status == web.HTTPOk.status_code, f"Got {content}" + + # Expects redirection to osparc web (see qx_client_outdir fixture) + assert resp.url.path == "/" + assert ( + "OSPARC-SIMCORE" in content + ), "Expected front-end rendering workbench's study, got %s" % str(content) + + # Expects auth cookie for current user + assert "osparc.WEBAPI_SESSION" in [c.key for c in session.cookie_jar] + + # Expects fragment to indicate client where to find newly created project + m = re.match(r"/study/([\d\w-]+)", resp.real_url.fragment) + assert m, f"Expected /study/uuid, got {resp.real_url.fragment}" + + # returns newly created project + redirected_project_id = m.group(1) + return redirected_project_id + + # TESTS -------------------------------------- async def test_access_to_invalid_study(client, published_project): resp = await client.get("/study/SOME_INVALID_UUID") @@ -173,34 +207,26 @@ async def test_access_to_forbidden_study(client, unpublished_project): valid_but_not_sharable = unpublished_project["uuid"] - resp = await client.get("/study/%s" % valid_but_not_sharable) + resp = await client.get(f"/study/valid_but_not_sharable") content = await resp.text() - assert resp.status == web.HTTPNotFound.status_code, ( - "STANDARD studies are NOT sharable: %s" % content - ) + assert ( + resp.status == web.HTTPNotFound.status_code + ), f"STANDARD studies are NOT sharable: {content}" async def test_access_study_anonymously( client, qx_client_outdir, published_project, storage_subsystem_mock ): - params = {"uuid": SHARED_STUDY_UUID, "name": "some-template"} - - url_path = "/study/%s" % SHARED_STUDY_UUID - resp = await client.get(url_path) - content = await resp.text() + study_url = client.app.router["study"].url_for(id=published_project["uuid"]) + resp = await client.get(study_url) - # index - assert resp.status == web.HTTPOk.status_code, "Got %s" % str(content) - assert str(resp.url.path) == "/" - assert ( - "OSPARC-SIMCORE" in content - ), "Expected front-end rendering workbench's study, got %s" % str(content) - - real_url = str(resp.real_url) + expected_prj_id = await assert_redirected_to_study(resp, client.session) # has auto logged in as guest? - resp = await client.get("/v0/me") + me_url = client.app.router["get_my_profile"].url_for() + resp = await client.get(me_url) + data, _ = await assert_status(resp, web.HTTPOk) assert data["login"].endswith("guest-at-osparc.io") assert data["gravatar_id"] @@ -211,7 +237,7 @@ async def test_access_study_anonymously( assert len(projects) == 1 guest_project = projects[0] - assert real_url.endswith("#/study/%s" % guest_project["uuid"]) + assert expected_prj_id == guest_project["uuid"] _assert_same_projects(guest_project, published_project) assert guest_project["prjOwner"] == data["login"] @@ -220,29 +246,70 @@ async def test_access_study_anonymously( async def test_access_study_by_logged_user( client, logged_user, qx_client_outdir, published_project, storage_subsystem_mock ): - params = {"uuid": SHARED_STUDY_UUID, "name": "some-template"} - - url_path = "/study/%s" % SHARED_STUDY_UUID - resp = await client.get(url_path) - content = await resp.text() - - # returns index - assert resp.status == web.HTTPOk.status_code, "Got %s" % str(content) - assert str(resp.url.path) == "/" - real_url = str(resp.real_url) - - assert ( - "OSPARC-SIMCORE" in content - ), "Expected front-end rendering workbench's study, got %s" % str(content) + study_url = client.app.router["study"].url_for(id=published_project["uuid"]) + resp = await client.get(study_url) + await assert_redirected_to_study(resp, client.session) # user has a copy of the template project projects = await _get_user_projects(client) assert len(projects) == 1 user_project = projects[0] - # TODO: check redirects to /#/study/{uuid} - assert real_url.endswith("#/study/%s" % user_project["uuid"]) - + # heck redirects to /#/study/{uuid} + assert resp.real_url.fragment.endswith("/study/%s" % user_project["uuid"]) _assert_same_projects(user_project, published_project) assert user_project["prjOwner"] == logged_user["email"] + + +async def test_access_cookie_of_expired_user( + client, qx_client_outdir, published_project, storage_subsystem_mock +): + # emulates issue #1570 + app: web.Application = client.app + + study_url = app.router["study"].url_for(id=published_project["uuid"]) + resp = await client.get(study_url) + + await assert_redirected_to_study(resp, client.session) + + # Expects valid cookie and GUEST access + me_url = app.router["get_my_profile"].url_for() + resp = await client.get(me_url) + + data, _ = await assert_status(resp, web.HTTPOk) + assert await is_user_guest(app, data["id"]) + + async def garbage_collect_guest(uid): + # Emulates garbage collector: + # - anonymous user expired, cleaning it up + # - client still holds cookie with its identifier nonetheless + # + assert await is_user_guest(app, uid) + projects = await _get_user_projects(client) + assert len(projects) == 1 + + prj_id = projects[0]["uuid"] + await delete_project_from_db(app, prj_id, uid) + await delete_user(app, uid) + return uid + + user_id = await garbage_collect_guest(uid=data["id"]) + user_email = data["login"] + + # Now this should be non -authorized + resp = await client.get(me_url) + await assert_status(resp, web.HTTPUnauthorized) + + # But still can access as a new user + resp = await client.get(study_url) + await assert_redirected_to_study(resp, client.session) + + # as a guest user + resp = await client.get(me_url) + data, _ = await assert_status(resp, web.HTTPOk) + assert await is_user_guest(app, data["id"]) + + # But I am another user + assert data["id"] != user_id + assert data["login"] != user_email From 294611d7822045972aff714871d72dffc62bc461 Mon Sep 17 00:00:00 2001 From: Pedro Crespo <32402063+pcrespov@users.noreply.github.com> Date: Mon, 22 Jun 2020 19:55:33 +0200 Subject: [PATCH 09/43] Maintenance/upgrades and tooling (#1546) * script to create invitations * ujson 2.0.3 -> 3.0.0 in ALL packages * Upgrades webserver * Upgrades packages * Autoformats web-server --- Makefile | 107 ++++++++++-------- README.md | 12 +- api/tests/requirements.txt | 14 +-- .../requirements/_migration.txt | 6 +- .../postgres-database/requirements/_test.in | 2 +- .../postgres-database/requirements/_test.txt | 25 ++-- .../pytest_simcore/helpers/utils_pylint.py | 2 +- packages/s3wrapper/requirements/_base.txt | 2 +- packages/s3wrapper/requirements/_test.in | 2 +- packages/s3wrapper/requirements/_test.txt | 18 +-- .../service-library/requirements/_base.in | 10 +- .../service-library/requirements/_base.txt | 8 +- .../service-library/requirements/_test.in | 2 +- .../service-library/requirements/_test.txt | 25 ++-- packages/simcore-sdk/requirements/_test.in | 2 +- packages/simcore-sdk/requirements/_test.txt | 22 ++-- scripts/demo/create_portal_markdown.py | 2 +- .../simcore_service_api_server/core/redoc.py | 5 +- services/web/server/requirements/Makefile | 2 +- services/web/server/requirements/_base.txt | 16 +-- services/web/server/requirements/_test.in | 2 +- services/web/server/requirements/_test.txt | 40 +++---- .../simcore_service_webserver/__version__.py | 1 - .../activity/__init__.py | 1 + .../application_config.py | 21 ++-- .../src/simcore_service_webserver/cli.py | 2 +- .../simcore_service_webserver/cli_config.py | 2 +- .../src/simcore_service_webserver/db.py | 3 +- .../simcore_service_webserver/db_models.py | 12 +- .../diagnostics_monitoring.py | 9 +- .../director/config.py | 3 +- .../simcore_service_webserver/email_config.py | 1 - .../login/__init__.py | 1 + .../login/decorators.py | 1 + .../login/handlers.py | 3 +- .../simcore_service_webserver/login/routes.py | 2 +- .../login/settings.py | 1 - .../simcore_service_webserver/login/sql.py | 9 +- .../login/storage.py | 11 +- .../simcore_service_webserver/login/utils.py | 6 +- .../projects/__init__.py | 2 +- .../projects/nodes_handlers.py | 5 +- .../projects/projects_access.py | 2 +- .../resource_manager/garbage_collector.py | 22 ++-- .../resource_manager/redis.py | 3 +- .../handlers/aiohttp_client_extension.py | 10 +- .../reverse_proxy/handlers/jupyter.py | 2 +- .../security_roles.py | 1 - .../socketio/config.py | 2 +- .../socketio/handlers.py | 8 +- .../socketio/handlers_utils.py | 1 - .../src/simcore_service_webserver/storage.py | 4 +- .../simcore_service_webserver/storage_api.py | 3 +- .../storage_config.py | 1 + .../storage_handlers.py | 3 +- .../storage_routes.py | 1 + .../simcore_service_webserver/tag_handlers.py | 3 +- .../tracing/__init__.py | 4 +- .../simcore_service_webserver/users_api.py | 1 + services/web/server/tests/unit/conftest.py | 2 +- .../server/tests/unit/test_catalog_setup.py | 1 - .../web/server/tests/unit/test_healthcheck.py | 2 +- .../web/server/tests/unit/test_package.py | 6 +- .../tests/unit/test_template_projects.py | 3 +- .../requirements/requirements.txt | 20 ++-- 65 files changed, 277 insertions(+), 250 deletions(-) diff --git a/Makefile b/Makefile index ef2dfa7fec8..71e34f82d28 100644 --- a/Makefile +++ b/Makefile @@ -6,11 +6,11 @@ # - In windows, only WSL is supported # # by sanderegg, pcrespov +# .DEFAULT_GOAL := help -SHELL := /bin/bash +SHELL := /bin/bash -# TOOLS -------------------------------------- MAKE_C := $(MAKE) --no-print-directory --directory @@ -60,7 +60,9 @@ export SWARM_STACK_NAME ?= simcore export DOCKER_IMAGE_TAG ?= latest export DOCKER_REGISTRY ?= itisfoundation + .PHONY: help + help: ## help on rule's targets ifeq ($(IS_WIN),) @awk --posix 'BEGIN {FS = ":.*?## "} /^[[:alpha:][:space:]_-]+:.*?## / {printf "\033[36m%-20s\033[0m %s\n", $$1, $$2}' $(MAKEFILE_LIST) @@ -70,7 +72,7 @@ endif -## docker BUILD ------------------------------- +## DOCKER BUILD ------------------------------- # # - all builds are inmediatly tagged as 'local/{service}:${BUILD_TARGET}' where BUILD_TARGET='development', 'production', 'cache' # - only production and cache images are released (i.e. tagged pushed into registry) @@ -127,7 +129,6 @@ endif endif -# TODO: should download cache if any?? build-cache build-cache-nc build-cache-kit build-cache-x: .env ## Build cache images and tags them as 'local/{service-name}:cache' ifeq ($(target),) # Compiling front-end @@ -152,7 +153,7 @@ shell: docker run -it local/$(target):production /bin/sh -## docker SWARM ------------------------------- +## DOCKER SWARM ------------------------------- # # - All resolved configuration are named as .stack-${name}-*.yml to distinguish from docker-compose files which can be parametrized # @@ -179,6 +180,7 @@ docker-compose-configs = $(wildcard services/docker-compose*.yml) # Creating config for ops stack to $@ @docker-compose -f services/docker-compose-ops.yml --log-level=ERROR config > $@ + .PHONY: up-devel up-prod up-version up-latest .deploy-ops .deploy-ops: .stack-ops.yml @@ -235,7 +237,7 @@ leave: ## Forces to stop all services, networks, etc by the node leaving the swa $(if $(SWARM_HOSTS),,docker swarm init) -## docker TAGS ------------------------------- +## DOCKER TAGS ------------------------------- .PHONY: tag-local tag-cache tag-version tag-latest @@ -263,10 +265,10 @@ tag-latest: ## Tags last locally built production images as '${DOCKER_REGISTRY}/ -## docker PULL/PUSH ------------------------------- +## DOCKER PULL/PUSH ------------------------------- # -# TODO: cannot push modified/untracke -# TODO: cannot push discetedD +# TODO: cannot push modified/untracked +# TODO: cannot push disceted # .PHONY: pull-cache pull-version pull-cache: .env @@ -296,21 +298,7 @@ push-version: tag-version ) -## PYTHON ------------------------------- -.PHONY: pylint - -pylint: ## Runs python linter framework's wide - # See exit codes and command line https://pylint.readthedocs.io/en/latest/user_guide/run.html#exit-codes - # TODO: NOT windows friendly - /bin/bash -c "pylint --jobs=0 --rcfile=.pylintrc $(strip $(shell find services packages -iname '*.py' \ - -not -path "*egg*" \ - -not -path "*migration*" \ - -not -path "*datcore.py" \ - -not -path "*sandbox*" \ - -not -path "*-sdk/python*" \ - -not -path "*generated_code*" \ - -not -path "*datcore.py" \ - -not -path "*web/server*"))" +## ENVIRONMENT ------------------------------- .PHONY: devenv devenv-all @@ -332,25 +320,42 @@ devenv-all: devenv ## sets up extra development tools (everything else besides p @$(MAKE_C) scripts/json-schema-to-openapi-schema -## MISC ------------------------------- - -.PHONY: new-service -new-service: .venv ## Bakes a new project from cookiecutter-simcore-pyservice and drops it under services/ [UNDER DEV] - $ - +

+ -[`master`](https://github.com/itisfoundation/osparc-simcore/tree/master) [![Code style: black]](https://github.com/psf/black) [![Requires.io]](https://requires.io/github/ITISFoundation/osparc-simcore/requirements/?branch=master "State of third party python dependencies") [![travis-ci]](https://travis-ci.org/ITISFoundation/osparc-simcore "State of CI: build, test and pushing images") @@ -14,10 +14,10 @@ [![codecov.io]](https://codecov.io/gh/ITISFoundation/osparc-simcore) [![github.io]](https://itisfoundation.github.io/) [![itis.dockerhub]](https://hub.docker.com/u/itisfoundation) +[![license]](./LICENSE) - - + [Code style: black]:https://img.shields.io/badge/code%20style-black-000000.svg [Requires.io]:https://img.shields.io/requires/github/ITISFoundation/osparc-simcore.svg [travis-ci]:https://travis-ci.org/ITISFoundation/osparc-simcore.svg?branch=master @@ -25,8 +25,8 @@ [itis.dockerhub]:https://img.shields.io/website/https/hub.docker.com/u/itisfoundation.svg?down_color=red&label=dockerhub%20repos&up_color=green [coveralls.io]:https://coveralls.io/repos/github/ITISFoundation/osparc-simcore/badge.svg?branch=master [codecov.io]:https://codecov.io/gh/ITISFoundation/osparc-simcore/branch/master/graph/badge.svg - - +[license]:https://img.shields.io/github/license/ITISFoundation/osparc-simcore + The SIM-CORE, named **o2S2PARC** – **O**pen **O**nline **S**imulations for **S**timulating **P**eripheral **A**ctivity to **R**elieve **C**onditions – is one of the three integrative cores of the SPARC program’s Data Resource Center (DRC). diff --git a/api/tests/requirements.txt b/api/tests/requirements.txt index 0bfa736a91b..81de68bb585 100644 --- a/api/tests/requirements.txt +++ b/api/tests/requirements.txt @@ -11,11 +11,11 @@ chardet==3.0.4 # via aiohttp coverage==5.1 # via -r requirements.in, pytest-cov idna-ssl==1.1.0 # via aiohttp idna==2.9 # via idna-ssl, yarl -importlib-metadata==1.6.0 # via jsonschema, pluggy, pytest +importlib-metadata==1.6.1 # via jsonschema, pluggy, pytest isodate==0.6.0 # via openapi-schema-validator jsonschema==3.2.0 # via openapi-schema-validator, openapi-spec-validator -lazy-object-proxy==1.4.3 # via openapi-core -more-itertools==8.3.0 # via openapi-core, pytest +lazy-object-proxy==1.5.0 # via openapi-core +more-itertools==8.4.0 # via openapi-core, pytest multidict==4.7.6 # via aiohttp, yarl openapi-core==0.13.3 # via -r requirements.in openapi-schema-validator==0.1.1 # via openapi-core @@ -23,12 +23,12 @@ openapi-spec-validator==0.2.8 # via openapi-core packaging==20.4 # via pytest, pytest-sugar parse==1.15.0 # via openapi-core pluggy==0.13.1 # via pytest -py==1.8.1 # via pytest +py==1.8.2 # via pytest pyparsing==2.4.7 # via packaging pyrsistent==0.16.0 # via jsonschema pytest-aiohttp==0.3.0 # via -r requirements.in -pytest-cov==2.9.0 # via -r requirements.in -pytest-instafail==0.4.1.post0 # via -r requirements.in +pytest-cov==2.10.0 # via -r requirements.in +pytest-instafail==0.4.2 # via -r requirements.in pytest-sugar==0.9.3 # via -r requirements.in pytest==5.4.3 # via -r requirements.in, pytest-aiohttp, pytest-cov, pytest-instafail, pytest-sugar pyyaml==5.3.1 # via openapi-spec-validator @@ -36,7 +36,7 @@ six==1.15.0 # via isodate, jsonschema, openapi-core, openapi-schem strict-rfc3339==0.7 # via openapi-schema-validator termcolor==1.1.0 # via pytest-sugar typing-extensions==3.7.4.2 # via aiohttp -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest werkzeug==1.0.1 # via openapi-core yarl==1.4.2 # via aiohttp zipp==3.1.0 # via importlib-metadata diff --git a/packages/postgres-database/requirements/_migration.txt b/packages/postgres-database/requirements/_migration.txt index 999ad388cb4..850c491883a 100644 --- a/packages/postgres-database/requirements/_migration.txt +++ b/packages/postgres-database/requirements/_migration.txt @@ -5,18 +5,18 @@ # pip-compile --output-file=requirements/_migration.txt requirements/_migration.in # alembic==1.4.2 # via -r requirements/_migration.in -certifi==2020.4.5.1 # via requests +certifi==2020.6.20 # via requests chardet==3.0.4 # via requests click==7.1.2 # via -r requirements/_migration.in docker==4.2.1 # via -r requirements/_migration.in idna==2.9 # via -r requirements/_base.txt, requests, yarl -mako==1.1.2 # via alembic +mako==1.1.3 # via alembic markupsafe==1.1.1 # via mako multidict==4.7.6 # via -r requirements/_base.txt, yarl psycopg2-binary==2.8.5 # via -r requirements/_base.txt, sqlalchemy python-dateutil==2.8.1 # via alembic python-editor==1.0.4 # via alembic -requests==2.23.0 # via docker +requests==2.24.0 # via docker six==1.15.0 # via docker, python-dateutil, tenacity, websocket-client sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_base.txt, alembic tenacity==6.2.0 # via -r requirements/_migration.in diff --git a/packages/postgres-database/requirements/_test.in b/packages/postgres-database/requirements/_test.in index 0b4c92a022f..fadd6b3aa47 100644 --- a/packages/postgres-database/requirements/_test.in +++ b/packages/postgres-database/requirements/_test.in @@ -20,5 +20,5 @@ pytest-runner pytest-docker # CI -pylint==2.5.0 # 2.5.3 fails to run in parallel +pylint coveralls diff --git a/packages/postgres-database/requirements/_test.txt b/packages/postgres-database/requirements/_test.txt index 7de06d70860..d51075d48a3 100644 --- a/packages/postgres-database/requirements/_test.txt +++ b/packages/postgres-database/requirements/_test.txt @@ -7,10 +7,10 @@ aiohttp==3.6.2 # via pytest-aiohttp aiopg[sa]==1.0.0 # via -r requirements/_test.in alembic==1.4.2 # via -r requirements/_migration.txt -astroid==2.4.1 # via pylint +astroid==2.4.2 # via pylint async-timeout==3.0.1 # via aiohttp attrs==19.3.0 # via aiohttp, pytest, pytest-docker -certifi==2020.4.5.1 # via -r requirements/_migration.txt, requests +certifi==2020.6.20 # via -r requirements/_migration.txt, requests chardet==3.0.4 # via -r requirements/_migration.txt, aiohttp, requests click==7.1.2 # via -r requirements/_migration.txt coverage==5.1 # via -r requirements/_test.in, coveralls, pytest-cov @@ -18,37 +18,42 @@ coveralls==2.0.0 # via -r requirements/_test.in docker==4.2.1 # via -r requirements/_migration.txt docopt==0.6.2 # via coveralls faker==4.1.1 # via -r requirements/_test.in +idna-ssl==1.1.0 # via aiohttp idna==2.9 # via -r requirements/_migration.txt, requests, yarl +importlib-metadata==1.6.1 # via pluggy, pytest isort==4.3.21 # via pylint lazy-object-proxy==1.4.3 # via astroid -mako==1.1.2 # via -r requirements/_migration.txt, alembic +mako==1.1.3 # via -r requirements/_migration.txt, alembic markupsafe==1.1.1 # via -r requirements/_migration.txt, mako mccabe==0.6.1 # via pylint -more-itertools==8.3.0 # via pytest +more-itertools==8.4.0 # via pytest multidict==4.7.6 # via -r requirements/_migration.txt, aiohttp, yarl packaging==20.4 # via pytest pluggy==0.13.1 # via pytest psycopg2-binary==2.8.5 # via -r requirements/_migration.txt, aiopg, sqlalchemy -py==1.8.1 # via pytest -pylint==2.5.0 # via -r requirements/_test.in +py==1.8.2 # via pytest +pylint==2.5.3 # via -r requirements/_test.in pyparsing==2.4.7 # via packaging pytest-aiohttp==0.3.0 # via -r requirements/_test.in -pytest-cov==2.9.0 # via -r requirements/_test.in +pytest-cov==2.10.0 # via -r requirements/_test.in pytest-docker==0.7.2 # via -r requirements/_test.in -pytest-instafail==0.4.1.post0 # via -r requirements/_test.in +pytest-instafail==0.4.2 # via -r requirements/_test.in pytest-runner==5.2 # via -r requirements/_test.in pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-instafail python-dateutil==2.8.1 # via -r requirements/_migration.txt, alembic, faker python-editor==1.0.4 # via -r requirements/_migration.txt, alembic pyyaml==5.3.1 # via -r requirements/_test.in -requests==2.23.0 # via -r requirements/_migration.txt, coveralls, docker +requests==2.24.0 # via -r requirements/_migration.txt, coveralls, docker six==1.15.0 # via -r requirements/_migration.txt, astroid, docker, packaging, python-dateutil, tenacity, websocket-client sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_migration.txt, aiopg, alembic tenacity==6.2.0 # via -r requirements/_migration.txt text-unidecode==1.3 # via faker toml==0.10.1 # via pylint +typed-ast==1.4.1 # via astroid +typing-extensions==3.7.4.2 # via aiohttp urllib3==1.25.9 # via -r requirements/_migration.txt, requests -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest websocket-client==0.57.0 # via -r requirements/_migration.txt, docker wrapt==1.12.1 # via astroid yarl==1.4.2 # via -r requirements/_migration.txt, aiohttp +zipp==3.1.0 # via importlib-metadata diff --git a/packages/pytest-simcore/src/pytest_simcore/helpers/utils_pylint.py b/packages/pytest-simcore/src/pytest_simcore/helpers/utils_pylint.py index 73483c028d9..2553e383981 100644 --- a/packages/pytest-simcore/src/pytest_simcore/helpers/utils_pylint.py +++ b/packages/pytest-simcore/src/pytest_simcore/helpers/utils_pylint.py @@ -13,7 +13,7 @@ def assert_pylint_is_passing(pylintrc, package_dir, number_of_jobs: int = AUTODE command = f"pylint --jobs={number_of_jobs} --rcfile {pylintrc} -v {package_dir}".split( " " ) - pipes = subprocess.Popen(command, stdout=subprocess.PIPE, stderr=subprocess.PIPE) + pipes = subprocess.Popen(command, stdout=subprocess.PIPE, stderr=subprocess.STDOUT) std_out, _ = pipes.communicate() if pipes.returncode != 0: print(f'>>>> Exit code "{pipes.returncode}"\n{std_out.decode("utf-8")}\n<<<<') diff --git a/packages/s3wrapper/requirements/_base.txt b/packages/s3wrapper/requirements/_base.txt index 8aedfb9abb7..9349477f2f9 100644 --- a/packages/s3wrapper/requirements/_base.txt +++ b/packages/s3wrapper/requirements/_base.txt @@ -4,7 +4,7 @@ # # pip-compile --output-file=requirements/_base.txt requirements/_base.in # -certifi==2020.4.5.1 # via minio +certifi==2020.6.20 # via minio configparser==5.0.0 # via minio minio==5.0.10 # via -r requirements/_base.in python-dateutil==2.8.1 # via minio diff --git a/packages/s3wrapper/requirements/_test.in b/packages/s3wrapper/requirements/_test.in index 9c0bdb53f36..b5b1c1af315 100644 --- a/packages/s3wrapper/requirements/_test.in +++ b/packages/s3wrapper/requirements/_test.in @@ -16,5 +16,5 @@ pytest-runner requests # tools for CI -pylint==2.5.0 # 2.5.3 fails to run in parallel +pylint coveralls diff --git a/packages/s3wrapper/requirements/_test.txt b/packages/s3wrapper/requirements/_test.txt index e6d34318a92..68c746fa78e 100644 --- a/packages/s3wrapper/requirements/_test.txt +++ b/packages/s3wrapper/requirements/_test.txt @@ -4,37 +4,37 @@ # # pip-compile --output-file=requirements/_test.txt requirements/_test.in # -astroid==2.4.1 # via pylint +astroid==2.4.2 # via pylint attrs==19.3.0 # via pytest, pytest-docker -certifi==2020.4.5.1 # via -r requirements/_base.txt, minio, requests +certifi==2020.6.20 # via -r requirements/_base.txt, minio, requests chardet==3.0.4 # via requests configparser==5.0.0 # via -r requirements/_base.txt, minio coverage==5.1 # via -r requirements/_test.in, coveralls, pytest-cov coveralls==2.0.0 # via -r requirements/_test.in docopt==0.6.2 # via coveralls idna==2.9 # via requests -importlib-metadata==1.6.0 # via pluggy, pytest +importlib-metadata==1.6.1 # via pluggy, pytest isort==4.3.21 # via pylint lazy-object-proxy==1.4.3 # via astroid mccabe==0.6.1 # via pylint minio==5.0.10 # via -r requirements/_base.txt -more-itertools==8.3.0 # via pytest +more-itertools==8.4.0 # via pytest packaging==20.4 # via pytest pluggy==0.13.1 # via pytest -py==1.8.1 # via pytest -pylint==2.5.0 # via -r requirements/_test.in +py==1.8.2 # via pytest +pylint==2.5.3 # via -r requirements/_test.in pyparsing==2.4.7 # via packaging -pytest-cov==2.9.0 # via -r requirements/_test.in +pytest-cov==2.10.0 # via -r requirements/_test.in pytest-docker==0.7.2 # via -r requirements/_test.in pytest-runner==5.2 # via -r requirements/_test.in pytest==5.4.3 # via -r requirements/_test.in, pytest-cov python-dateutil==2.8.1 # via -r requirements/_base.txt, minio pytz==2020.1 # via -r requirements/_base.txt, minio -requests==2.23.0 # via -r requirements/_test.in, coveralls +requests==2.24.0 # via -r requirements/_test.in, coveralls six==1.15.0 # via -r requirements/_base.txt, astroid, packaging, python-dateutil toml==0.10.1 # via pylint typed-ast==1.4.1 # via astroid urllib3==1.25.9 # via -r requirements/_base.txt, minio, requests -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest wrapt==1.12.1 # via astroid zipp==3.1.0 # via importlib-metadata diff --git a/packages/service-library/requirements/_base.in b/packages/service-library/requirements/_base.in index 1edd0b10c94..78d7c098b63 100644 --- a/packages/service-library/requirements/_base.in +++ b/packages/service-library/requirements/_base.in @@ -2,11 +2,11 @@ # Specifies third-party dependencies for 'service-library' # -sqlalchemy>=1.3.3 # https://nvd.nist.gov/vuln/detail/CVE-2019-7164 -pyyaml>=5.3 # Vulnerable -psycopg2-binary # enforces binary version - http://initd.org/psycopg/docs/install.html#binary-install-from-pypi -openapi-core==0.12.0 # frozen until https://github.com/ITISFoundation/osparc-simcore/pull/1396 is CLOSED - +sqlalchemy>=1.3.3 # https://nvd.nist.gov/vuln/detail/CVE-2019-7164 +pyyaml>=5.3 # Vulnerable +psycopg2-binary # enforces binary version - http://initd.org/psycopg/docs/install.html#binary-install-from-pypi +openapi-core==0.12.0 # frozen until https://github.com/ITISFoundation/osparc-simcore/pull/1396 is CLOSED +lazy-object-proxy~=1.4.3 # cannot upgrade due to contraints in openapi-core aiohttp aiopg[sa] diff --git a/packages/service-library/requirements/_base.txt b/packages/service-library/requirements/_base.txt index 36a65894d15..ff9829ac502 100644 --- a/packages/service-library/requirements/_base.txt +++ b/packages/service-library/requirements/_base.txt @@ -11,10 +11,12 @@ aiozipkin==0.6.0 # via -r requirements/_base.in async-timeout==3.0.1 # via aiohttp attrs==19.3.0 # via -r requirements/_base.in, aiohttp, jsonschema, openapi-core chardet==3.0.4 # via aiohttp -idna==2.9 # via yarl +idna-ssl==1.1.0 # via aiohttp +idna==2.9 # via idna-ssl, yarl +importlib-metadata==1.6.1 # via jsonschema isodate==0.6.0 # via openapi-core jsonschema==3.2.0 # via -r requirements/_base.in, openapi-spec-validator -lazy-object-proxy==1.4.3 # via openapi-core +lazy-object-proxy==1.4.3 # via -r requirements/_base.in, openapi-core multidict==4.7.6 # via aiohttp, yarl openapi-core==0.12.0 # via -r requirements/_base.in openapi-spec-validator==0.2.8 # via openapi-core @@ -27,9 +29,11 @@ sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_base.in, a strict-rfc3339==0.7 # via openapi-core tenacity==6.2.0 # via -r requirements/_base.in trafaret==2.0.2 # via -r requirements/_base.in +typing-extensions==3.7.4.2 # via aiohttp ujson==3.0.0 # via -r requirements/_base.in werkzeug==1.0.1 # via -r requirements/_base.in yarl==1.4.2 # via aiohttp +zipp==3.1.0 # via importlib-metadata # The following packages are considered to be unsafe in a requirements file: # setuptools diff --git a/packages/service-library/requirements/_test.in b/packages/service-library/requirements/_test.in index 1e78d11fdf2..f958c7097cf 100644 --- a/packages/service-library/requirements/_test.in +++ b/packages/service-library/requirements/_test.in @@ -17,5 +17,5 @@ pytest-mock pytest-sugar # tools -pylint==2.5.0 # 2.5.3 fails to run in parallel +pylint # NOTE: The version in pylint at _text.txt is used as a reference for ci/helpers/install_pylint.bash coveralls diff --git a/packages/service-library/requirements/_test.txt b/packages/service-library/requirements/_test.txt index 2a4e82d35b0..bd2752ccc37 100644 --- a/packages/service-library/requirements/_test.txt +++ b/packages/service-library/requirements/_test.txt @@ -8,23 +8,23 @@ aiodebug==1.1.2 # via -r requirements/_base.txt aiohttp==3.6.2 # via -r requirements/_base.txt, aiozipkin, pytest-aiohttp aiopg[sa]==1.0.0 # via -r requirements/_base.txt aiozipkin==0.6.0 # via -r requirements/_base.txt -astroid==2.4.1 # via pylint +astroid==2.4.2 # via pylint async-timeout==3.0.1 # via -r requirements/_base.txt, aiohttp attrs==19.3.0 # via -r requirements/_base.txt, aiohttp, jsonschema, openapi-core, pytest, pytest-docker -certifi==2020.4.5.1 # via requests +certifi==2020.6.20 # via requests chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, requests coverage==5.1 # via -r requirements/_test.in, coveralls, pytest-cov coveralls==2.0.0 # via -r requirements/_test.in docopt==0.6.2 # via coveralls -idna-ssl==1.1.0 # via -r requirements/_base.txt +idna-ssl==1.1.0 # via -r requirements/_base.txt, aiohttp idna==2.9 # via -r requirements/_base.txt, idna-ssl, requests, yarl -importlib-metadata==1.6.0 # via -r requirements/_base.txt +importlib-metadata==1.6.1 # via -r requirements/_base.txt, jsonschema, pluggy, pytest isodate==0.6.0 # via -r requirements/_base.txt, openapi-core isort==4.3.21 # via pylint jsonschema==3.2.0 # via -r requirements/_base.txt, openapi-spec-validator lazy-object-proxy==1.4.3 # via -r requirements/_base.txt, astroid, openapi-core mccabe==0.6.1 # via pylint -more-itertools==8.3.0 # via pytest +more-itertools==8.4.0 # via pytest multidict==4.7.6 # via -r requirements/_base.txt, aiohttp, yarl openapi-core==0.12.0 # via -r requirements/_base.txt openapi-spec-validator==0.2.8 # via -r requirements/_base.txt, openapi-core @@ -32,20 +32,20 @@ packaging==20.4 # via pytest, pytest-sugar pluggy==0.13.1 # via pytest prometheus-client==0.8.0 # via -r requirements/_base.txt psycopg2-binary==2.8.5 # via -r requirements/_base.txt, aiopg, sqlalchemy -py==1.8.1 # via pytest -pylint==2.5.0 # via -r requirements/_test.in +py==1.8.2 # via pytest +pylint==2.5.3 # via -r requirements/_test.in pyparsing==2.4.7 # via packaging pyrsistent==0.16.0 # via -r requirements/_base.txt, jsonschema pytest-aiohttp==0.3.0 # via -r requirements/_test.in -pytest-cov==2.9.0 # via -r requirements/_test.in +pytest-cov==2.10.0 # via -r requirements/_test.in pytest-docker==0.7.2 # via -r requirements/_test.in -pytest-instafail==0.4.1.post0 # via -r requirements/_test.in +pytest-instafail==0.4.2 # via -r requirements/_test.in pytest-mock==3.1.1 # via -r requirements/_test.in pytest-runner==5.2 # via -r requirements/_test.in pytest-sugar==0.9.3 # via -r requirements/_test.in pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-instafail, pytest-mock, pytest-sugar pyyaml==5.3.1 # via -r requirements/_base.txt, openapi-spec-validator -requests==2.23.0 # via coveralls +requests==2.24.0 # via coveralls six==1.15.0 # via -r requirements/_base.txt, astroid, isodate, jsonschema, openapi-core, openapi-spec-validator, packaging, pyrsistent, tenacity sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_base.txt, aiopg strict-rfc3339==0.7 # via -r requirements/_base.txt, openapi-core @@ -53,12 +53,15 @@ tenacity==6.2.0 # via -r requirements/_base.txt termcolor==1.1.0 # via pytest-sugar toml==0.10.1 # via pylint trafaret==2.0.2 # via -r requirements/_base.txt +typed-ast==1.4.1 # via astroid +typing-extensions==3.7.4.2 # via -r requirements/_base.txt, aiohttp ujson==3.0.0 # via -r requirements/_base.txt urllib3==1.25.9 # via requests -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest werkzeug==1.0.1 # via -r requirements/_base.txt wrapt==1.12.1 # via astroid yarl==1.4.2 # via -r requirements/_base.txt, aiohttp +zipp==3.1.0 # via -r requirements/_base.txt, importlib-metadata # The following packages are considered to be unsafe in a requirements file: # setuptools diff --git a/packages/simcore-sdk/requirements/_test.in b/packages/simcore-sdk/requirements/_test.in index 4a124236c11..6316344ba96 100644 --- a/packages/simcore-sdk/requirements/_test.in +++ b/packages/simcore-sdk/requirements/_test.in @@ -22,5 +22,5 @@ requests docker # tools for CI -pylint==2.5.0 # 2.5.3 fails to run in parallel +pylint coveralls diff --git a/packages/simcore-sdk/requirements/_test.txt b/packages/simcore-sdk/requirements/_test.txt index c54809e303d..8b8c9aef0a3 100644 --- a/packages/simcore-sdk/requirements/_test.txt +++ b/packages/simcore-sdk/requirements/_test.txt @@ -7,10 +7,10 @@ aiofiles==0.5.0 # via -r requirements/_base.txt aiohttp==3.6.2 # via -r requirements/_base.txt, pytest-aiohttp aiopg[sa]==1.0.0 # via -r requirements/_base.txt -astroid==2.4.1 # via pylint +astroid==2.4.2 # via pylint async-timeout==3.0.1 # via -r requirements/_base.txt, aiohttp attrs==19.3.0 # via -r requirements/_base.txt, aiohttp, pytest, pytest-docker -certifi==2020.4.5.1 # via requests +certifi==2020.6.20 # via requests chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, requests coverage==5.1 # via -r requirements/_test.in, coveralls, pytest-cov coveralls==2.0.0 # via -r requirements/_test.in @@ -20,31 +20,31 @@ docker==4.2.1 # via -r requirements/_test.in docopt==0.6.2 # via coveralls idna-ssl==1.1.0 # via -r requirements/_base.txt, aiohttp idna==2.9 # via -r requirements/_base.txt, idna-ssl, requests, yarl -importlib-metadata==1.6.0 # via pluggy, pytest +importlib-metadata==1.6.1 # via pluggy, pytest isort==4.3.21 # via pylint lazy-object-proxy==1.4.3 # via astroid mccabe==0.6.1 # via pylint mock==4.0.2 # via -r requirements/_test.in -more-itertools==8.3.0 # via pytest +more-itertools==8.4.0 # via pytest multidict==4.7.6 # via -r requirements/_base.txt, aiohttp, yarl networkx==2.4 # via -r requirements/_base.txt packaging==20.4 # via pytest, pytest-sugar pluggy==0.13.1 # via pytest psycopg2-binary==2.8.5 # via -r requirements/_base.txt, aiopg, sqlalchemy -py==1.8.1 # via pytest +py==1.8.2 # via pytest pydantic==1.5.1 # via -r requirements/_base.txt -pylint==2.5.0 # via -r requirements/_test.in +pylint==2.5.3 # via -r requirements/_test.in pyparsing==2.4.7 # via packaging pytest-aiohttp==0.3.0 # via -r requirements/_test.in -pytest-cov==2.9.0 # via -r requirements/_test.in +pytest-cov==2.10.0 # via -r requirements/_test.in pytest-docker==0.7.2 # via -r requirements/_test.in -pytest-instafail==0.4.1.post0 # via -r requirements/_test.in -pytest-mock==3.1.0 # via -r requirements/_test.in +pytest-instafail==0.4.2 # via -r requirements/_test.in +pytest-mock==3.1.1 # via -r requirements/_test.in pytest-runner==5.2 # via -r requirements/_test.in pytest-sugar==0.9.3 # via -r requirements/_test.in pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-instafail, pytest-mock, pytest-sugar pyyaml==5.3.1 # via -r requirements/_base.txt, trafaret-config -requests==2.23.0 # via -r requirements/_test.in, coveralls, docker +requests==2.24.0 # via -r requirements/_test.in, coveralls, docker six==1.15.0 # via -r requirements/_base.txt, astroid, docker, packaging, tenacity, websocket-client sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_base.txt, aiopg tenacity==6.2.0 # via -r requirements/_base.txt @@ -55,7 +55,7 @@ trafaret==2.0.2 # via -r requirements/_base.txt, trafaret-config typed-ast==1.4.1 # via astroid typing-extensions==3.7.4.2 # via -r requirements/_base.txt, aiohttp urllib3==1.25.9 # via requests -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest websocket-client==0.57.0 # via docker wrapt==1.12.1 # via astroid yarl==1.4.2 # via -r requirements/_base.txt, aiohttp diff --git a/scripts/demo/create_portal_markdown.py b/scripts/demo/create_portal_markdown.py index 75cd698039b..bce8fa96786 100644 --- a/scripts/demo/create_portal_markdown.py +++ b/scripts/demo/create_portal_markdown.py @@ -121,7 +121,7 @@ def main(mock_codes): print("", file=fh) - today = datetime.today() + today: datetime = datetime.today() file_path = current_path.parent / CONFIRMATIONS_FILENAME with _open(file_path) as fh: print("code,user_id,action,data,created_at", file=fh) diff --git a/services/api-server/src/simcore_service_api_server/core/redoc.py b/services/api-server/src/simcore_service_api_server/core/redoc.py index 45ff4d407db..b3f256d466e 100644 --- a/services/api-server/src/simcore_service_api_server/core/redoc.py +++ b/services/api-server/src/simcore_service_api_server/core/redoc.py @@ -4,7 +4,7 @@ from fastapi.applications import HTMLResponse, Request from fastapi.openapi.docs import get_redoc_html -# from ..__version__ import api_vtag +# TODO: move all these static resources away from the server! FAVICON = "https://osparc.io/resource/osparc/favicon.png" LOGO = "https://raw.githubusercontent.com/ITISFoundation/osparc-manual/b809d93619512eb60c827b7e769c6145758378d0/_media/osparc-logo.svg" @@ -14,9 +14,8 @@ def compose_long_description(description: str) -> str: desc = f"**{description}**\n" desc += "## Python Library\n" - desc += "- Documentation (https://itisfoundation.github.io/osparc-simcore-python-client/#/)\n" + desc += "- Check the [documentation](https://itisfoundation.github.io/osparc-simcore-python-client)\n" desc += "- Quick install: ``pip install git+https://github.com/ITISFoundation/osparc-simcore-python-client.git``\n" - return desc diff --git a/services/web/server/requirements/Makefile b/services/web/server/requirements/Makefile index 9e3b90f7e91..8903b3c1bc6 100644 --- a/services/web/server/requirements/Makefile +++ b/services/web/server/requirements/Makefile @@ -6,6 +6,6 @@ include ../../../../scripts/requirements.Makefile # Add here any extra explicit dependency: e.g. _migration.txt: _base.txt packages_input_reqs = $(shell grep "requirements/_base.in" _base.in | awk '{print $$2}') -$(info in-repo deps: $(packages_input_reqs)) + _base.txt: _base.in $(packages_input_reqs) diff --git a/services/web/server/requirements/_base.txt b/services/web/server/requirements/_base.txt index da1514401d2..f251b56bebc 100644 --- a/services/web/server/requirements/_base.txt +++ b/services/web/server/requirements/_base.txt @@ -16,29 +16,30 @@ aioredis==1.3.1 # via -r requirements/_base.in aiormq==3.2.2 # via aio-pika aiosmtplib==1.1.3 # via -r requirements/_base.in aiozipkin==0.6.0 # via -r requirements/../../../../packages/service-library/requirements/_base.in -amqp==2.5.2 # via kombu +amqp==2.6.0 # via kombu async-timeout==3.0.1 # via aiohttp, aioredis asyncpg==0.20.1 # via -r requirements/_base.in attrs==19.3.0 # via -r requirements/../../../../packages/service-library/requirements/_base.in, aiohttp, jsonschema, openapi-core billiard==3.6.3.0 # via celery -celery==4.4.2 # via -r requirements/_base.in +celery==4.4.5 # via -r requirements/_base.in cffi==1.14.0 # via cryptography change-case==0.5.2 # via -r requirements/_base.in chardet==3.0.4 # via aiohttp cryptography==2.9.2 # via -r requirements/_base.in, aiohttp-session -expiringdict==1.2.0 # via -r requirements/_base.in +expiringdict==1.2.1 # via -r requirements/_base.in +future==0.18.2 # via celery hiredis==1.0.1 # via aioredis idna-ssl==1.1.0 # via aiohttp idna==2.9 # via idna-ssl, yarl -importlib-metadata==1.6.0 # via jsonschema, kombu +importlib-metadata==1.6.1 # via jsonschema, kombu isodate==0.6.0 # via openapi-core jinja-app-loader==1.0.2 # via -r requirements/_base.in jinja2==2.11.2 # via aiohttp-jinja2, aiohttp-swagger json2html==1.3.0 # via -r requirements/_base.in jsondiff==1.2.0 # via -r requirements/_base.in jsonschema==3.2.0 # via -r requirements/../../../../packages/service-library/requirements/_base.in, openapi-spec-validator -kombu==4.6.8 # via celery -lazy-object-proxy==1.4.3 # via openapi-core +kombu==4.6.10 # via celery +lazy-object-proxy==1.4.3 # via -r requirements/../../../../packages/service-library/requirements/_base.in, openapi-core markupsafe==1.1.1 # via jinja2 multidict==4.7.6 # via aiohttp, yarl openapi-core==0.12.0 # via -r requirements/../../../../packages/service-library/requirements/_base.in @@ -60,8 +61,7 @@ strict-rfc3339==0.7 # via openapi-core tenacity==6.2.0 # via -r requirements/../../../../packages/service-library/requirements/_base.in trafaret==2.0.2 # via -r requirements/../../../../packages/service-library/requirements/_base.in typing-extensions==3.7.4.2 # via aiohttp -typing==3.7.4.1 # via expiringdict -ujson==2.0.3 # via -r requirements/../../../../packages/service-library/requirements/_base.in, aiohttp-swagger +ujson==3.0.0 # via -r requirements/../../../../packages/service-library/requirements/_base.in, aiohttp-swagger vine==1.3.0 # via amqp, celery werkzeug==1.0.1 # via -r requirements/../../../../packages/service-library/requirements/_base.in yarl==1.4.2 # via -r requirements/../../../../packages/postgres-database/requirements/_base.in, aio-pika, aiohttp, aiormq diff --git a/services/web/server/requirements/_test.in b/services/web/server/requirements/_test.in index eefd14bf731..f56a752e56e 100644 --- a/services/web/server/requirements/_test.in +++ b/services/web/server/requirements/_test.in @@ -30,7 +30,7 @@ docker redis # tools -pylint==2.5.0 # 2.5.3 fails to run in parallel +pylint==2.5.0 # 2.5.3 fails to run in parallel. SEE https://github.com/PyCQA/pylint/releases for updates coveralls codecov ptvsd diff --git a/services/web/server/requirements/_test.txt b/services/web/server/requirements/_test.txt index 006ae8d7cb1..b37c8c46a0e 100644 --- a/services/web/server/requirements/_test.txt +++ b/services/web/server/requirements/_test.txt @@ -16,29 +16,30 @@ aioredis==1.3.1 # via -r requirements/_base.txt aiormq==3.2.2 # via -r requirements/_base.txt, aio-pika aiosmtplib==1.1.3 # via -r requirements/_base.txt aiozipkin==0.6.0 # via -r requirements/_base.txt -amqp==2.5.2 # via -r requirements/_base.txt, kombu -astroid==2.4.1 # via pylint +amqp==2.6.0 # via -r requirements/_base.txt, kombu +astroid==2.4.2 # via pylint async-timeout==3.0.1 # via -r requirements/_base.txt, aiohttp, aioredis asyncpg==0.20.1 # via -r requirements/_base.txt attrs==19.3.0 # via -r requirements/_base.txt, aiohttp, jsonschema, openapi-core, pytest, pytest-docker billiard==3.6.3.0 # via -r requirements/_base.txt, celery -celery==4.4.2 # via -r requirements/_base.txt -certifi==2020.4.5.1 # via requests +celery==4.4.5 # via -r requirements/_base.txt +certifi==2020.6.20 # via requests cffi==1.14.0 # via -r requirements/_base.txt, cryptography change-case==0.5.2 # via -r requirements/_base.txt chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, requests -codecov==2.1.3 # via -r requirements/_test.in +codecov==2.1.7 # via -r requirements/_test.in coverage==5.1 # via -r requirements/_test.in, codecov, coveralls, pytest-cov coveralls==2.0.0 # via -r requirements/_test.in cryptography==2.9.2 # via -r requirements/_base.txt, aiohttp-session -docker==4.2.0 # via -r requirements/_test.in +docker==4.2.1 # via -r requirements/_test.in docopt==0.6.2 # via coveralls -expiringdict==1.2.0 # via -r requirements/_base.txt -faker==4.1.0 # via -r requirements/_test.in +expiringdict==1.2.1 # via -r requirements/_base.txt +faker==4.1.1 # via -r requirements/_test.in +future==0.18.2 # via -r requirements/_base.txt, celery hiredis==1.0.1 # via -r requirements/_base.txt, aioredis idna-ssl==1.1.0 # via -r requirements/_base.txt, aiohttp idna==2.9 # via -r requirements/_base.txt, idna-ssl, requests, yarl -importlib-metadata==1.6.0 # via -r requirements/_base.txt, jsonschema, kombu, pluggy, pytest +importlib-metadata==1.6.1 # via -r requirements/_base.txt, jsonschema, kombu, pluggy, pytest isodate==0.6.0 # via -r requirements/_base.txt, openapi-core isort==4.3.21 # via pylint jinja-app-loader==1.0.2 # via -r requirements/_base.txt @@ -46,12 +47,12 @@ jinja2==2.11.2 # via -r requirements/_base.txt, aiohttp-jinja2, aioht json2html==1.3.0 # via -r requirements/_base.txt jsondiff==1.2.0 # via -r requirements/_base.txt jsonschema==3.2.0 # via -r requirements/_base.txt, -r requirements/_test.in, openapi-spec-validator -kombu==4.6.8 # via -r requirements/_base.txt, celery +kombu==4.6.10 # via -r requirements/_base.txt, celery lazy-object-proxy==1.4.3 # via -r requirements/_base.txt, astroid, openapi-core markupsafe==1.1.1 # via -r requirements/_base.txt, jinja2 mccabe==0.6.1 # via pylint mock==4.0.2 # via -r requirements/_test.in -more-itertools==8.3.0 # via pytest +more-itertools==8.4.0 # via pytest multidict==4.7.6 # via -r requirements/_base.txt, aiohttp, yarl openapi-core==0.12.0 # via -r requirements/_base.txt openapi-spec-validator==0.2.8 # via -r requirements/_base.txt, -r requirements/_test.in, openapi-core @@ -62,16 +63,16 @@ pluggy==0.13.1 # via pytest prometheus-client==0.8.0 # via -r requirements/_base.txt psycopg2-binary==2.8.5 # via -r requirements/_base.txt, aiopg, sqlalchemy ptvsd==4.3.2 # via -r requirements/_test.in -py==1.8.1 # via pytest +py==1.8.2 # via pytest pycparser==2.20 # via -r requirements/_base.txt, cffi pylint==2.5.0 # via -r requirements/_test.in pyparsing==2.4.7 # via packaging pyrsistent==0.16.0 # via -r requirements/_base.txt, jsonschema pytest-aiohttp==0.3.0 # via -r requirements/_test.in -pytest-cov==2.9.0 # via -r requirements/_test.in +pytest-cov==2.10.0 # via -r requirements/_test.in pytest-docker==0.7.2 # via -r requirements/_test.in -pytest-instafail==0.4.1.post0 # via -r requirements/_test.in -pytest-mock==3.1.0 # via -r requirements/_test.in +pytest-instafail==0.4.2 # via -r requirements/_test.in +pytest-mock==3.1.1 # via -r requirements/_test.in pytest-runner==5.2 # via -r requirements/_test.in pytest-sugar==0.9.3 # via -r requirements/_test.in pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-instafail, pytest-mock, pytest-sugar @@ -80,8 +81,8 @@ python-engineio==3.13.0 # via -r requirements/_base.txt, python-socketio python-socketio==4.6.0 # via -r requirements/_base.txt pytz==2020.1 # via -r requirements/_base.txt, celery pyyaml==5.3.1 # via -r requirements/_base.txt, aiohttp-swagger, openapi-spec-validator -redis==3.5.2 # via -r requirements/_test.in -requests==2.23.0 # via codecov, coveralls, docker +redis==3.5.3 # via -r requirements/_test.in +requests==2.24.0 # via codecov, coveralls, docker semantic-version==2.8.5 # via -r requirements/_base.txt six==1.15.0 # via -r requirements/_base.txt, astroid, cryptography, docker, isodate, jsonschema, openapi-core, openapi-spec-validator, packaging, pyrsistent, python-dateutil, python-engineio, python-socketio, tenacity, websocket-client sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_base.txt, aiopg @@ -93,11 +94,10 @@ toml==0.10.1 # via pylint trafaret==2.0.2 # via -r requirements/_base.txt typed-ast==1.4.1 # via astroid typing-extensions==3.7.4.2 # via -r requirements/_base.txt, aiohttp -typing==3.7.4.1 # via -r requirements/_base.txt, expiringdict -ujson==2.0.3 # via -r requirements/_base.txt, aiohttp-swagger +ujson==3.0.0 # via -r requirements/_base.txt, aiohttp-swagger urllib3==1.25.9 # via requests vine==1.3.0 # via -r requirements/_base.txt, amqp, celery -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest websocket-client==0.57.0 # via docker websockets==8.1 # via -r requirements/_test.in werkzeug==1.0.1 # via -r requirements/_base.txt diff --git a/services/web/server/src/simcore_service_webserver/__version__.py b/services/web/server/src/simcore_service_webserver/__version__.py index 8f4c858af49..9267ec38c28 100644 --- a/services/web/server/src/simcore_service_webserver/__version__.py +++ b/services/web/server/src/simcore_service_webserver/__version__.py @@ -2,7 +2,6 @@ """ import pkg_resources - from semantic_version import Version __version__: str = pkg_resources.get_distribution("simcore_service_webserver").version diff --git a/services/web/server/src/simcore_service_webserver/activity/__init__.py b/services/web/server/src/simcore_service_webserver/activity/__init__.py index 8c7520cb601..b212dc44027 100644 --- a/services/web/server/src/simcore_service_webserver/activity/__init__.py +++ b/services/web/server/src/simcore_service_webserver/activity/__init__.py @@ -2,6 +2,7 @@ import logging from aiohttp import web + from servicelib.application_keys import APP_CONFIG_KEY from servicelib.application_setup import ModuleCategory, app_module_setup from servicelib.rest_routing import ( diff --git a/services/web/server/src/simcore_service_webserver/application_config.py b/services/web/server/src/simcore_service_webserver/application_config.py index 1c3698eb905..4ea666d6f72 100644 --- a/services/web/server/src/simcore_service_webserver/application_config.py +++ b/services/web/server/src/simcore_service_webserver/application_config.py @@ -9,20 +9,21 @@ The app configuration is created before the application instance exists. - -TODO: add more strict checks with re -TODO: add support for versioning. - - check shema fits version - - parse/format version in schema """ +# TODO: add more strict checks with re +# TODO: add support for versioning. +# - check shema fits version +# - parse/format version in schema + import logging from pathlib import Path from typing import Dict import trafaret as T +from trafaret_config.simple import read_and_validate + from servicelib import application_keys # pylint:disable=unused-import from servicelib.config_schema_utils import addon_section, minimal_addon_schema -from trafaret_config.simple import read_and_validate from . import ( catalog_config, @@ -101,9 +102,9 @@ def create_schema() -> T.Dict: section_names = [k.name for k in schema.keys] - assert len(section_names) == len(set(section_names)), ( - "Found repeated section names in %s" % section_names - ) # nosec + # fmt: off + assert len(section_names) == len(set(section_names)), f"Found repeated section names in {section_names}" # nosec + # fmt: on return schema @@ -113,4 +114,4 @@ def load_default_config(environs=None) -> Dict: return read_and_validate(filepath, trafaret=app_schema, vars=environs) -app_schema = create_schema() # TODO: rename as schema +app_schema = create_schema() diff --git a/services/web/server/src/simcore_service_webserver/cli.py b/services/web/server/src/simcore_service_webserver/cli.py index 492b0632828..49facafcece 100644 --- a/services/web/server/src/simcore_service_webserver/cli.py +++ b/services/web/server/src/simcore_service_webserver/cli.py @@ -18,8 +18,8 @@ from argparse import ArgumentParser from typing import Dict, List, Optional -from aiohttp.log import access_logger from aiodebug import log_slow_callbacks +from aiohttp.log import access_logger from .application import run_service from .application_config import CLI_DEFAULT_CONFIGFILE, app_schema diff --git a/services/web/server/src/simcore_service_webserver/cli_config.py b/services/web/server/src/simcore_service_webserver/cli_config.py index 08e2f8cee03..d5c3276678a 100644 --- a/services/web/server/src/simcore_service_webserver/cli_config.py +++ b/services/web/server/src/simcore_service_webserver/cli_config.py @@ -1,6 +1,6 @@ import argparse -import os import logging +import os import trafaret_config import trafaret_config.commandline as commandline diff --git a/services/web/server/src/simcore_service_webserver/db.py b/services/web/server/src/simcore_service_webserver/db.py index c9e5bd289ba..a78e2126444 100644 --- a/services/web/server/src/simcore_service_webserver/db.py +++ b/services/web/server/src/simcore_service_webserver/db.py @@ -5,6 +5,8 @@ import logging from aiohttp import web +from tenacity import Retrying + from servicelib.aiopg_utils import ( DataSourceName, PostgresRetryPolicyUponInitialization, @@ -15,7 +17,6 @@ ) from servicelib.application_keys import APP_CONFIG_KEY, APP_DB_ENGINE_KEY from servicelib.application_setup import ModuleCategory, app_module_setup -from tenacity import Retrying from .db_config import CONFIG_SECTION_NAME from .db_models import metadata diff --git a/services/web/server/src/simcore_service_webserver/db_models.py b/services/web/server/src/simcore_service_webserver/db_models.py index 76972e49aea..18564c97303 100644 --- a/services/web/server/src/simcore_service_webserver/db_models.py +++ b/services/web/server/src/simcore_service_webserver/db_models.py @@ -4,17 +4,17 @@ from simcore_postgres_database.models.base import metadata from simcore_postgres_database.webserver_models import ( ConfirmationAction, + GroupType, UserRole, UserStatus, + api_keys, confirmations, - tokens, - users, groups, - GroupType, - user_to_groups, - tags, study_tags, - api_keys, + tags, + tokens, + user_to_groups, + users, ) # TODO: roles table that maps every role with allowed tasks e.g. read/write,...?? diff --git a/services/web/server/src/simcore_service_webserver/diagnostics_monitoring.py b/services/web/server/src/simcore_service_webserver/diagnostics_monitoring.py index e678bf44f9d..5852d8bc881 100644 --- a/services/web/server/src/simcore_service_webserver/diagnostics_monitoring.py +++ b/services/web/server/src/simcore_service_webserver/diagnostics_monitoring.py @@ -10,9 +10,10 @@ from prometheus_client import CONTENT_TYPE_LATEST, Counter, Gauge, Histogram from prometheus_client.registry import CollectorRegistry -from .diagnostics_core import DelayWindowProbe, kLATENCY_PROBE from servicelib.monitor_services import add_instrumentation +from .diagnostics_core import DelayWindowProbe, kLATENCY_PROBE + log = logging.getLogger(__name__) kSTART_TIME = f"{__name__}.start_time" @@ -44,9 +45,9 @@ async def _middleware_handler(request: web.Request, handler): resp = await handler(request) log_exception = None - assert isinstance( - resp, web.StreamResponse - ), "Forgot envelope middleware?" # nsec + # fmt: off + assert isinstance(resp, web.StreamResponse), "Forgot envelope middleware?" # nsec + # fmt: om except web.HTTPServerError as exc: # Transforms exception into response object and log exception diff --git a/services/web/server/src/simcore_service_webserver/director/config.py b/services/web/server/src/simcore_service_webserver/director/config.py index 29f23a2f603..79033b5c422 100644 --- a/services/web/server/src/simcore_service_webserver/director/config.py +++ b/services/web/server/src/simcore_service_webserver/director/config.py @@ -7,9 +7,10 @@ import trafaret as T from aiohttp import ClientSession, web -from servicelib.application_keys import APP_CONFIG_KEY, APP_CLIENT_SESSION_KEY from yarl import URL +from servicelib.application_keys import APP_CLIENT_SESSION_KEY, APP_CONFIG_KEY + APP_DIRECTOR_API_KEY = __name__ + ".director_api" CONFIG_SECTION_NAME = "director" diff --git a/services/web/server/src/simcore_service_webserver/email_config.py b/services/web/server/src/simcore_service_webserver/email_config.py index 6550b7c613a..93c6201e221 100644 --- a/services/web/server/src/simcore_service_webserver/email_config.py +++ b/services/web/server/src/simcore_service_webserver/email_config.py @@ -5,7 +5,6 @@ """ import trafaret as T - CONFIG_SECTION_NAME = "smtp" diff --git a/services/web/server/src/simcore_service_webserver/login/__init__.py b/services/web/server/src/simcore_service_webserver/login/__init__.py index 12ee926619c..ba36f4bb41a 100644 --- a/services/web/server/src/simcore_service_webserver/login/__init__.py +++ b/services/web/server/src/simcore_service_webserver/login/__init__.py @@ -9,6 +9,7 @@ import asyncpg from aiohttp import web + from servicelib.aiopg_utils import DSN from servicelib.application_keys import APP_CONFIG_KEY from servicelib.application_setup import ModuleCategory, app_module_setup diff --git a/services/web/server/src/simcore_service_webserver/login/decorators.py b/services/web/server/src/simcore_service_webserver/login/decorators.py index 275957047b4..924c935f30d 100644 --- a/services/web/server/src/simcore_service_webserver/login/decorators.py +++ b/services/web/server/src/simcore_service_webserver/login/decorators.py @@ -1,6 +1,7 @@ from functools import wraps from aiohttp_security.api import check_authorized + from servicelib.request_keys import RQT_USERID_KEY from servicelib.requests_utils import get_request diff --git a/services/web/server/src/simcore_service_webserver/login/handlers.py b/services/web/server/src/simcore_service_webserver/login/handlers.py index ff1c5c1bacd..86e43439926 100644 --- a/services/web/server/src/simcore_service_webserver/login/handlers.py +++ b/services/web/server/src/simcore_service_webserver/login/handlers.py @@ -1,9 +1,10 @@ import logging from aiohttp import web +from yarl import URL + from servicelib import observer from servicelib.rest_utils import extract_and_validate -from yarl import URL from ..db_models import ConfirmationAction, UserRole, UserStatus from ..security_api import check_password, encrypt_password, forget, remember diff --git a/services/web/server/src/simcore_service_webserver/login/routes.py b/services/web/server/src/simcore_service_webserver/login/routes.py index 8a8554217e6..56df605b7d9 100644 --- a/services/web/server/src/simcore_service_webserver/login/routes.py +++ b/services/web/server/src/simcore_service_webserver/login/routes.py @@ -12,8 +12,8 @@ from servicelib import openapi from servicelib.rest_routing import iter_path_operations, map_handlers_with_operations -from . import handlers as login_handlers from . import api_keys_handlers +from . import handlers as login_handlers log = logging.getLogger(__name__) diff --git a/services/web/server/src/simcore_service_webserver/login/settings.py b/services/web/server/src/simcore_service_webserver/login/settings.py index cd092905e45..8a04cbbae99 100644 --- a/services/web/server/src/simcore_service_webserver/login/settings.py +++ b/services/web/server/src/simcore_service_webserver/login/settings.py @@ -1,6 +1,5 @@ from aiohttp import web - APP_LOGIN_CONFIG = __name__ + ".config" CFG_LOGIN_STORAGE = "STORAGE" # Needs to match login.cfg!!! diff --git a/services/web/server/src/simcore_service_webserver/login/sql.py b/services/web/server/src/simcore_service_webserver/login/sql.py index 5876bfa6dd4..b371973f298 100644 --- a/services/web/server/src/simcore_service_webserver/login/sql.py +++ b/services/web/server/src/simcore_service_webserver/login/sql.py @@ -1,5 +1,6 @@ from logging import getLogger +# FIXME: Possible SQL injection vector through string-based query construction. log = getLogger(__name__) LOG_TPL = "%s <--%s" @@ -21,7 +22,7 @@ def find_one_sql(table, filter_, fields=None): keys, values = _split_dict(filter_) fields = ", ".join(fields) if fields else "*" where = _pairs(keys) - sql = "SELECT {} FROM {} WHERE {}".format(fields, table, where) + sql = "SELECT {} FROM {} WHERE {}".format(fields, table, where) # nosec return sql, values @@ -43,7 +44,7 @@ def insert_sql(table, data, returning="id"): ('INSERT INTO tbl (foo, id) VALUES ($1, $2) RETURNING pk', ['bar', 1]) """ keys, values = _split_dict(data) - sql = "INSERT INTO {} ({}) VALUES ({}){}".format( + sql = "INSERT INTO {} ({}) VALUES ({}){}".format( # nosec table, ", ".join(keys), ", ".join(_placeholders(data)), @@ -67,7 +68,7 @@ def update_sql(table, filter_, updates): up_keys, up_vals = _split_dict(updates) changes = _pairs(up_keys, sep=", ") where = _pairs(where_keys, start=len(up_keys) + 1) - sql = "UPDATE {} SET {} WHERE {}".format(table, changes, where) + sql = "UPDATE {} SET {} WHERE {}".format(table, changes, where) # nosec return sql, up_vals + where_vals @@ -84,7 +85,7 @@ def delete_sql(table, filter_): """ keys, values = _split_dict(filter_) where = _pairs(keys) - sql = "DELETE FROM {} WHERE {}".format(table, where) + sql = "DELETE FROM {} WHERE {}".format(table, where) # nosec return sql, values diff --git a/services/web/server/src/simcore_service_webserver/login/storage.py b/services/web/server/src/simcore_service_webserver/login/storage.py index ca908ae205b..540e86550b4 100644 --- a/services/web/server/src/simcore_service_webserver/login/storage.py +++ b/services/web/server/src/simcore_service_webserver/login/storage.py @@ -1,13 +1,12 @@ -from logging import getLogger -from datetime import datetime import enum +from datetime import datetime +from logging import getLogger + import asyncpg -from .utils import get_random_string +from ..db_models import ConfirmationAction, UserRole, UserStatus from . import sql - -from ..db_models import UserRole, UserStatus, ConfirmationAction - +from .utils import get_random_string log = getLogger(__name__) diff --git a/services/web/server/src/simcore_service_webserver/login/utils.py b/services/web/server/src/simcore_service_webserver/login/utils.py index 6a3a3db971e..c1ff8854fb6 100644 --- a/services/web/server/src/simcore_service_webserver/login/utils.py +++ b/services/web/server/src/simcore_service_webserver/login/utils.py @@ -7,15 +7,15 @@ from logging import getLogger from os.path import join from pprint import pformat -from typing import Mapping, Optional, Tuple, List - -import attr +from typing import List, Mapping, Optional, Tuple import aiosmtplib +import attr import passlib.hash from aiohttp import web from aiohttp_jinja2 import render_string from passlib import pwd + from servicelib.rest_models import LogMessageType from ..resources import resources diff --git a/services/web/server/src/simcore_service_webserver/projects/__init__.py b/services/web/server/src/simcore_service_webserver/projects/__init__.py index 66cd4423026..f1ed58e39e3 100644 --- a/services/web/server/src/simcore_service_webserver/projects/__init__.py +++ b/services/web/server/src/simcore_service_webserver/projects/__init__.py @@ -4,11 +4,11 @@ It contains metadata about the study (e.g. name, description, owner, etc) and a workbench section that describes the study pipeline """ import asyncio +import json import logging from pprint import pformat import jsonschema -import json from aiohttp import ClientSession, web from tenacity import before_sleep_log, retry, stop_after_attempt, wait_fixed diff --git a/services/web/server/src/simcore_service_webserver/projects/nodes_handlers.py b/services/web/server/src/simcore_service_webserver/projects/nodes_handlers.py index 32409184359..2ee923e0ba6 100644 --- a/services/web/server/src/simcore_service_webserver/projects/nodes_handlers.py +++ b/services/web/server/src/simcore_service_webserver/projects/nodes_handlers.py @@ -6,10 +6,11 @@ :raises NotImplementedError """ -from aiohttp import web import logging -from ..login.decorators import login_required +from aiohttp import web + +from ..login.decorators import login_required log = logging.getLogger(__name__) diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_access.py b/services/web/server/src/simcore_service_webserver/projects/projects_access.py index 0a71e902d8a..c09ec4a0000 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_access.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_access.py @@ -1,7 +1,7 @@ import jsondiff from aiohttp import web -from ..security_api import get_access_model, UserRole +from ..security_api import UserRole, get_access_model async def can_update_node_inputs(context): diff --git a/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py b/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py index 14e01df6d0c..c7d3adfe2ce 100644 --- a/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py +++ b/services/web/server/src/simcore_service_webserver/resource_manager/garbage_collector.py @@ -13,24 +13,24 @@ from servicelib.observer import emit from servicelib.utils import logged_gather - -from .config import APP_GARBAGE_COLLECTOR_KEY, get_garbage_collector_interval -from .registry import RedisResourceRegistry, get_registry -from simcore_service_webserver.projects.projects_api import delete_project_from_db -from simcore_service_webserver.users_api import is_user_guest, delete_user -from simcore_service_webserver.projects.projects_exceptions import ProjectNotFoundError -from simcore_service_webserver.projects.projects_api import ( - get_workbench_node_ids_from_project_uuid, - is_node_id_present_in_any_project_workbench, -) from simcore_service_webserver.director.director_api import ( get_running_interactive_services, stop_service, ) from simcore_service_webserver.director.director_exceptions import ( - ServiceNotFoundError, DirectorException, + ServiceNotFoundError, +) +from simcore_service_webserver.projects.projects_api import ( + delete_project_from_db, + get_workbench_node_ids_from_project_uuid, + is_node_id_present_in_any_project_workbench, ) +from simcore_service_webserver.projects.projects_exceptions import ProjectNotFoundError +from simcore_service_webserver.users_api import delete_user, is_user_guest + +from .config import APP_GARBAGE_COLLECTOR_KEY, get_garbage_collector_interval +from .registry import RedisResourceRegistry, get_registry logger = logging.getLogger(__name__) diff --git a/services/web/server/src/simcore_service_webserver/resource_manager/redis.py b/services/web/server/src/simcore_service_webserver/resource_manager/redis.py index fef9636e658..005b0347984 100644 --- a/services/web/server/src/simcore_service_webserver/resource_manager/redis.py +++ b/services/web/server/src/simcore_service_webserver/resource_manager/redis.py @@ -2,8 +2,9 @@ import aioredis from aiohttp import web +from tenacity import Retrying, before_log, stop_after_attempt, wait_random + from servicelib.application_keys import APP_CONFIG_KEY -from tenacity import Retrying, stop_after_attempt, wait_random, before_log from .config import APP_CLIENT_REDIS_CLIENT_KEY, CONFIG_SECTION_NAME diff --git a/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/aiohttp_client_extension.py b/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/aiohttp_client_extension.py index 87f6fe328ff..a817f210215 100644 --- a/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/aiohttp_client_extension.py +++ b/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/aiohttp_client_extension.py @@ -13,13 +13,13 @@ import traceback import warnings from types import SimpleNamespace, TracebackType +from typing import List # noqa from typing import ( Any, Coroutine, Generator, Generic, Iterable, - List, # noqa Mapping, Optional, Set, @@ -77,12 +77,8 @@ strip_auth_from_url, ) from aiohttp.http import WS_KEY, HttpVersion, WebSocketReader, WebSocketWriter -from aiohttp.http_websocket import ( - WSHandshakeError, - WSMessage, # noqa - ws_ext_gen, - ws_ext_parse, -) +from aiohttp.http_websocket import WSMessage # noqa +from aiohttp.http_websocket import WSHandshakeError, ws_ext_gen, ws_ext_parse from aiohttp.streams import FlowControlDataQueue from aiohttp.tracing import Trace, TraceConfig from aiohttp.typedefs import JSONEncoder, LooseCookies, LooseHeaders, StrOrURL diff --git a/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/jupyter.py b/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/jupyter.py index 59fd867a7e0..9e9bcdc5bf2 100644 --- a/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/jupyter.py +++ b/services/web/server/src/simcore_service_webserver/reverse_proxy/handlers/jupyter.py @@ -8,9 +8,9 @@ import aiohttp from aiohttp import web -from .aiohttp_client_extension import client_request from yarl import URL +from .aiohttp_client_extension import client_request APP_SOCKETS_KEY = "simcore_service_webserver.reverse_proxy.settings.sockets" # FIXME: Image tag should determine the handler instead of the opposite!!! diff --git a/services/web/server/src/simcore_service_webserver/security_roles.py b/services/web/server/src/simcore_service_webserver/security_roles.py index 368fafde3ab..903056cd6b9 100644 --- a/services/web/server/src/simcore_service_webserver/security_roles.py +++ b/services/web/server/src/simcore_service_webserver/security_roles.py @@ -6,7 +6,6 @@ from simcore_postgres_database.models.users import UserRole - # A role defines a set of operations that the user *can* perform # - Every operation is named as a resource and an action # - Resource is named hierarchically diff --git a/services/web/server/src/simcore_service_webserver/socketio/config.py b/services/web/server/src/simcore_service_webserver/socketio/config.py index cc4e3d5526b..0b88d8db69b 100644 --- a/services/web/server/src/simcore_service_webserver/socketio/config.py +++ b/services/web/server/src/simcore_service_webserver/socketio/config.py @@ -7,9 +7,9 @@ import trafaret as T from aiohttp import web +from socketio import AsyncServer from servicelib.application_keys import APP_CONFIG_KEY -from socketio import AsyncServer CONFIG_SECTION_NAME = "socketio" APP_CLIENT_SOCKET_SERVER_KEY = __name__ + ".socketio_socketio" diff --git a/services/web/server/src/simcore_service_webserver/socketio/handlers.py b/services/web/server/src/simcore_service_webserver/socketio/handlers.py index daa271f8773..51681a1b992 100644 --- a/services/web/server/src/simcore_service_webserver/socketio/handlers.py +++ b/services/web/server/src/simcore_service_webserver/socketio/handlers.py @@ -8,20 +8,20 @@ import asyncio import logging -from typing import Dict, List, Optional, Any +from typing import Any, Dict, List, Optional from aiohttp import web +from socketio.exceptions import ConnectionRefusedError as SocketIOConnectionError from servicelib.observer import observe from servicelib.utils import fire_and_forget_task, logged_gather -from socketio.exceptions import ConnectionRefusedError as SocketIOConnectionError from ..login.decorators import RQT_USERID_KEY, login_required -from ..resource_manager.websocket_manager import managed_resource from ..resource_manager.config import get_service_deletion_timeout +from ..resource_manager.websocket_manager import managed_resource from .config import get_socket_server -from .handlers_utils import register_socketio_handler from .events import post_messages +from .handlers_utils import register_socketio_handler ANONYMOUS_USER_ID = -1 _SOCKET_IO_AIOHTTP_REQUEST_KEY = "aiohttp.request" diff --git a/services/web/server/src/simcore_service_webserver/socketio/handlers_utils.py b/services/web/server/src/simcore_service_webserver/socketio/handlers_utils.py index eb56ef26129..4f10ef951e6 100644 --- a/services/web/server/src/simcore_service_webserver/socketio/handlers_utils.py +++ b/services/web/server/src/simcore_service_webserver/socketio/handlers_utils.py @@ -6,7 +6,6 @@ from .config import APP_CLIENT_SOCKET_DECORATED_HANDLERS_KEY, get_socket_server - socketio_handlers_registry = [] diff --git a/services/web/server/src/simcore_service_webserver/storage.py b/services/web/server/src/simcore_service_webserver/storage.py index 734283adb61..b7a71934a1c 100644 --- a/services/web/server/src/simcore_service_webserver/storage.py +++ b/services/web/server/src/simcore_service_webserver/storage.py @@ -5,13 +5,13 @@ import logging from aiohttp import web + from servicelib.application_keys import APP_OPENAPI_SPECS_KEY +from servicelib.application_setup import ModuleCategory, app_module_setup from . import storage_routes from .storage_config import get_config -from servicelib.application_setup import app_module_setup, ModuleCategory - log = logging.getLogger(__name__) diff --git a/services/web/server/src/simcore_service_webserver/storage_api.py b/services/web/server/src/simcore_service_webserver/storage_api.py index cac23f492cb..d846dd524ab 100644 --- a/services/web/server/src/simcore_service_webserver/storage_api.py +++ b/services/web/server/src/simcore_service_webserver/storage_api.py @@ -5,9 +5,10 @@ from pprint import pformat from aiohttp import web -from servicelib.rest_responses import unwrap_envelope from yarl import URL +from servicelib.rest_responses import unwrap_envelope + from .storage_config import get_client_session, get_config log = logging.getLogger(__name__) diff --git a/services/web/server/src/simcore_service_webserver/storage_config.py b/services/web/server/src/simcore_service_webserver/storage_config.py index 905b0cbd113..35c48099ce3 100644 --- a/services/web/server/src/simcore_service_webserver/storage_config.py +++ b/services/web/server/src/simcore_service_webserver/storage_config.py @@ -7,6 +7,7 @@ import trafaret as T from aiohttp import ClientSession, web + from servicelib.application_keys import APP_CLIENT_SESSION_KEY, APP_CONFIG_KEY CONFIG_SECTION_NAME = "storage" diff --git a/services/web/server/src/simcore_service_webserver/storage_handlers.py b/services/web/server/src/simcore_service_webserver/storage_handlers.py index 700829442db..f1ca3d12051 100644 --- a/services/web/server/src/simcore_service_webserver/storage_handlers.py +++ b/services/web/server/src/simcore_service_webserver/storage_handlers.py @@ -4,9 +4,10 @@ """ from aiohttp import web +from yarl import URL + from servicelib.request_keys import RQT_USERID_KEY from servicelib.rest_utils import extract_and_validate -from yarl import URL from .login.decorators import login_required from .security_api import check_permission diff --git a/services/web/server/src/simcore_service_webserver/storage_routes.py b/services/web/server/src/simcore_service_webserver/storage_routes.py index a1f31ae18d8..663ccd5dbe8 100644 --- a/services/web/server/src/simcore_service_webserver/storage_routes.py +++ b/services/web/server/src/simcore_service_webserver/storage_routes.py @@ -7,6 +7,7 @@ from typing import List from aiohttp import web + from servicelib import openapi from . import storage_handlers diff --git a/services/web/server/src/simcore_service_webserver/tag_handlers.py b/services/web/server/src/simcore_service_webserver/tag_handlers.py index 14f9a835bd0..991f77202e8 100644 --- a/services/web/server/src/simcore_service_webserver/tag_handlers.py +++ b/services/web/server/src/simcore_service_webserver/tag_handlers.py @@ -1,8 +1,9 @@ import sqlalchemy as sa from aiohttp import web -from servicelib.application_keys import APP_DB_ENGINE_KEY from sqlalchemy import and_ +from servicelib.application_keys import APP_DB_ENGINE_KEY + from .db_models import tags from .login.decorators import RQT_USERID_KEY, login_required from .security_api import check_permission diff --git a/services/web/server/src/simcore_service_webserver/tracing/__init__.py b/services/web/server/src/simcore_service_webserver/tracing/__init__.py index ffb1a0621dc..717f626777c 100644 --- a/services/web/server/src/simcore_service_webserver/tracing/__init__.py +++ b/services/web/server/src/simcore_service_webserver/tracing/__init__.py @@ -4,9 +4,7 @@ from servicelib.application_keys import APP_CONFIG_KEY from servicelib.application_setup import ModuleCategory, app_module_setup -from servicelib.tracing import setup_tracing -from servicelib.tracing import schema - +from servicelib.tracing import schema, setup_tracing CONFIG_SECTION_NAME = "tracing" diff --git a/services/web/server/src/simcore_service_webserver/users_api.py b/services/web/server/src/simcore_service_webserver/users_api.py index 451a9e2aae6..ea35c123b37 100644 --- a/services/web/server/src/simcore_service_webserver/users_api.py +++ b/services/web/server/src/simcore_service_webserver/users_api.py @@ -94,6 +94,7 @@ async def update_user_profile( assert resp.rowcount == 1 # nosec + async def is_user_guest(app: web.Application, user_id: int) -> bool: """Returns True if the user exists and is a GUEST""" db = get_storage(app) diff --git a/services/web/server/tests/unit/conftest.py b/services/web/server/tests/unit/conftest.py index 0adccde9cb9..70d54fa9d22 100644 --- a/services/web/server/tests/unit/conftest.py +++ b/services/web/server/tests/unit/conftest.py @@ -11,10 +11,10 @@ import json import logging import sys +from asyncio import Future from pathlib import Path from typing import Dict from uuid import uuid4 -from asyncio import Future import pytest diff --git a/services/web/server/tests/unit/test_catalog_setup.py b/services/web/server/tests/unit/test_catalog_setup.py index 6b1aa9f3046..3e219c93c0d 100644 --- a/services/web/server/tests/unit/test_catalog_setup.py +++ b/services/web/server/tests/unit/test_catalog_setup.py @@ -7,7 +7,6 @@ import pytest from yarl import URL - from servicelib.application import create_safe_application from servicelib.client_session import APP_CLIENT_SESSION_KEY from simcore_service_webserver.__version__ import api_version_prefix diff --git a/services/web/server/tests/unit/test_healthcheck.py b/services/web/server/tests/unit/test_healthcheck.py index d4bc839fb77..4a13aa8c51e 100644 --- a/services/web/server/tests/unit/test_healthcheck.py +++ b/services/web/server/tests/unit/test_healthcheck.py @@ -10,6 +10,7 @@ import pytest from aiohttp import web from tenacity import before_log, retry, stop_after_attempt, wait_fixed +from yarl import URL from pytest_simcore.helpers.utils_assert import assert_status from servicelib.application import create_safe_application @@ -25,7 +26,6 @@ ) from simcore_service_webserver.rest import setup_rest from simcore_service_webserver.security import setup_security -from yarl import URL logger = logging.getLogger(__name__) diff --git a/services/web/server/tests/unit/test_package.py b/services/web/server/tests/unit/test_package.py index 53366274c55..d8c244b01c7 100644 --- a/services/web/server/tests/unit/test_package.py +++ b/services/web/server/tests/unit/test_package.py @@ -2,13 +2,13 @@ # pylint:disable=unused-argument # pylint:disable=redefined-outer-name -import pytest -from pytest_simcore.helpers.utils_pylint import assert_pylint_is_passing import os import re - from pathlib import Path +import pytest + +from pytest_simcore.helpers.utils_pylint import assert_pylint_is_passing from simcore_service_webserver.cli import main diff --git a/services/web/server/tests/unit/test_template_projects.py b/services/web/server/tests/unit/test_template_projects.py index 0ca947e87cb..e5edf23c420 100644 --- a/services/web/server/tests/unit/test_template_projects.py +++ b/services/web/server/tests/unit/test_template_projects.py @@ -9,6 +9,8 @@ import aiohttp import pytest from jsonschema import SchemaError, ValidationError +from yarl import URL + from servicelib.jsonschema_specs import create_jsonschema_specs from servicelib.jsonschema_validation import validate_instance from simcore_service_webserver.projects.projects_fakes import Fake @@ -17,7 +19,6 @@ variable_pattern, ) from simcore_service_webserver.resources import resources -from yarl import URL @pytest.fixture diff --git a/tests/swarm-deploy/requirements/requirements.txt b/tests/swarm-deploy/requirements/requirements.txt index 7f356bd52b0..e34055bce2b 100644 --- a/tests/swarm-deploy/requirements/requirements.txt +++ b/tests/swarm-deploy/requirements/requirements.txt @@ -4,40 +4,40 @@ # # pip-compile --output-file=requirements/requirements.txt requirements/requirements.in # -aio-pika==6.6.0 # via -r requirements/requirements.in +aio-pika==6.6.1 # via -r requirements/requirements.in aiohttp==3.6.2 # via pytest-aiohttp aiormq==3.2.2 # via aio-pika async-timeout==3.0.1 # via aiohttp attrs==19.3.0 # via aiohttp, pytest -certifi==2020.4.5.1 # via requests +certifi==2020.6.20 # via requests chardet==3.0.4 # via aiohttp, requests coverage==5.1 # via -r requirements/requirements.in, pytest-cov docker==4.2.1 # via -r requirements/requirements.in idna-ssl==1.1.0 # via aiohttp idna==2.9 # via requests, yarl -importlib-metadata==1.6.0 # via pluggy, pytest -more-itertools==8.3.0 # via pytest +importlib-metadata==1.6.1 # via pluggy, pytest +more-itertools==8.4.0 # via pytest multidict==4.7.6 # via aiohttp, yarl packaging==20.4 # via pytest, pytest-sugar pamqp==2.3.0 # via aiormq pluggy==0.13.1 # via pytest -py==1.8.1 # via pytest +py==1.8.2 # via pytest pyparsing==2.4.7 # via packaging pytest-aiohttp==0.3.0 # via -r requirements/requirements.in -pytest-cov==2.9.0 # via -r requirements/requirements.in -pytest-instafail==0.4.1.post0 # via -r requirements/requirements.in -pytest-mock==3.1.0 # via -r requirements/requirements.in +pytest-cov==2.10.0 # via -r requirements/requirements.in +pytest-instafail==0.4.2 # via -r requirements/requirements.in +pytest-mock==3.1.1 # via -r requirements/requirements.in pytest-runner==5.2 # via -r requirements/requirements.in pytest-sugar==0.9.3 # via -r requirements/requirements.in pytest==5.4.3 # via -r requirements/requirements.in, pytest-aiohttp, pytest-cov, pytest-instafail, pytest-mock, pytest-sugar pyyaml==5.3.1 # via -r requirements/requirements.in -requests==2.23.0 # via docker +requests==2.24.0 # via docker six==1.15.0 # via docker, packaging, tenacity, websocket-client tenacity==6.2.0 # via -r requirements/requirements.in termcolor==1.1.0 # via pytest-sugar typing-extensions==3.7.4.2 # via aiohttp urllib3==1.25.9 # via requests -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest websocket-client==0.57.0 # via docker yarl==1.4.2 # via aio-pika, aiohttp, aiormq zipp==3.1.0 # via importlib-metadata From fb9870f260d9cfe7abed3db92b4d5014a127fe40 Mon Sep 17 00:00:00 2001 From: Andrei Neagu Date: Tue, 23 Jun 2020 12:23:13 +0200 Subject: [PATCH 10/43] Adds support for GPU scheduling of computational services (#1553) * added sidecar_gpu debug profile to launch.json * added a new API to the director it is now possible to get service extras containing additional information which hidden from the user * sidecar now supports GPU services - it can now schedule a container requesting GPU resources (VRAM) - sidecard has 2 start modes CPU and GPU - for development a GPU sidecar was added * updating comp_task now adds resoruce requirements - uses the director API to determine if node requires GPU - the requires_gpu field is used by the sidecar * added call to get_service_extras * fixes some pylint warnings * this should redirect errors to strout * disabaled warning * added some logging to detect why CI fails * added more debugging for CI * refactored the way cgroups is parsed * fixed pylint and message * removed sidecar_gpu container used for development * sidecar_gpu removed from the wrong list * node_extras can be None an it is now accounted for * correeclty removes the sidecar_gpu now * sidecar_gpu is not present in all deployments removing it from both lists as it is only required in development * added tests for the gpu and non gpu modes fixed an issue where the process would crash * fixed pylint * refactored tests - names are more readable - removed some typos * this is a dictionary * added comment to rememeber how to run in dev * updated service description and openapi spec * moved generate_service_extras * moved env var resolution to an appropriate place * added annotations and fixed typos * added annotations and less broad exception * cleanedup implementation * added more specific exception * corrected wrong import path * the sidecar_gpu is now properly started locally tests where reverted * fixed pylint caught error * changing import schema refactored tests to reflect changes * removed unused import * moved sidecar_gpu to docker-compose.devel.yml * keeping track of these exludes * replaced with cleaner implementation * cleanedup and fixed boot modes for sidecar if will now properly start as expected on all deployments * fixing import and moved comment * fixed an issue causing issues starting in dev mode * api server ninja'd 3006 port moving to 3007 Co-authored-by: Andrei Neagu --- .vscode-template/launch.json | 15 +- api/specs/common/schemas/services.yaml | 27 ++- api/specs/director/openapi.yaml | 39 ++++ .../api/v0/openapi.yaml | 177 ++++++++++++++++++ .../src/simcore_service_director/producer.py | 31 +++ .../simcore_service_director/rest/handlers.py | 22 +++ services/director/tests/test_docker_utils.py | 2 + services/docker-compose.devel.yml | 57 +++++- services/sidecar/requirements/_test.in | 1 + services/sidecar/requirements/_test.txt | 26 +-- .../src/simcore_service_sidecar/celery.py | 37 +--- .../celery_configurator.py | 136 ++++++++++++++ .../src/simcore_service_sidecar/config.py | 4 + .../src/simcore_service_sidecar/core.py | 19 ++ .../src/simcore_service_sidecar/exceptions.py | 17 +- .../src/simcore_service_sidecar/utils.py | 78 ++++++++ .../tests/unit/test_celery_configurator.py | 151 +++++++++++++++ .../computation_api.py | 48 ++++- .../director/director_api.py | 23 +++ 19 files changed, 853 insertions(+), 57 deletions(-) create mode 100644 services/sidecar/src/simcore_service_sidecar/celery_configurator.py create mode 100644 services/sidecar/tests/unit/test_celery_configurator.py diff --git a/.vscode-template/launch.json b/.vscode-template/launch.json index 28d4310274e..d8fc96ae2ec 100644 --- a/.vscode-template/launch.json +++ b/.vscode-template/launch.json @@ -43,6 +43,19 @@ } ] }, + { + "name": "Python: Remote Attach sidecar_gpu", + "type": "python", + "request": "attach", + "port": 3007, + "host": "127.0.0.1", + "pathMappings": [ + { + "localRoot": "${workspaceFolder}", + "remoteRoot": "/devel" + } + ] + }, { "name": "Python: Remote Attach storage", "type": "python", @@ -86,4 +99,4 @@ "port": 9229 } ] -} \ No newline at end of file +} diff --git a/api/specs/common/schemas/services.yaml b/api/specs/common/schemas/services.yaml index 29ce84ff5e0..12a54157f71 100644 --- a/api/specs/common/schemas/services.yaml +++ b/api/specs/common/schemas/services.yaml @@ -8,8 +8,31 @@ components: data: type: array items: - $ref: './node-meta-v0.0.1-converted.yaml' + $ref: "./node-meta-v0.0.1-converted.yaml" + error: + nullable: true + default: null + + ServiceExtras: + type: object + required: + - node_requirements + properties: + node_requirements: + type: array + items: + type: string + enum: + - CPU + - GPU + + ServiceExtrasEnveloped: + type: object + required: + - data + properties: + data: + $ref: "#/components/schemas/ServiceExtras" error: nullable: true default: null - \ No newline at end of file diff --git a/api/specs/director/openapi.yaml b/api/specs/director/openapi.yaml index a41a9991cf8..74dba637194 100644 --- a/api/specs/director/openapi.yaml +++ b/api/specs/director/openapi.yaml @@ -129,6 +129,42 @@ paths: schema: $ref: '#/components/schemas/ErrorEnveloped' + /service_extras/{service_key}/{service_version}: + get: + tags: + - users + summary: Returns the service's details which should be hidden from the user defined as extras. + description: Currently returns the node_requirements an array of resoruces needed for scheduling. + operationId: services_extras_get + parameters: + - $ref: '#/components/parameters/ServiceKeyPath' + - $ref: '#/components/parameters/ServiceVersionPath' + responses: + "200": + description: Success, returns an object containing details hidden from the user + content: + application/json: + schema: + $ref: '#/components/schemas/ServiceExtrasEnveloped' + "401": + description: Unauthorized access + content: + application/json: + schema: + $ref: '#/components/schemas/ErrorEnveloped' + "404": + description: Service not found + content: + application/json: + schema: + $ref: '#/components/schemas/ErrorEnveloped' + default: + description: Unexpected error + content: + application/json: + schema: + $ref: '#/components/schemas/ErrorEnveloped' + /running_interactive_services: get: tags: @@ -403,5 +439,8 @@ components: ServicesEnveloped: $ref: '../common/schemas/services.yaml#/components/schemas/ServicesEnveloped' + ServiceExtrasEnveloped: + $ref: '../common/schemas/services.yaml#/components/schemas/ServiceExtrasEnveloped' + HealthCheckEnveloped: $ref: '../common/schemas/health_check.yaml#/components/schemas/HealthCheckEnveloped' diff --git a/services/director/src/simcore_service_director/api/v0/openapi.yaml b/services/director/src/simcore_service_director/api/v0/openapi.yaml index 55e20af3fc9..883b49df9da 100644 --- a/services/director/src/simcore_service_director/api/v0/openapi.yaml +++ b/services/director/src/simcore_service_director/api/v0/openapi.yaml @@ -900,6 +900,163 @@ paths: description: Error code type: integer example: 404 + '/service_extras/{service_key}/{service_version}': + get: + tags: + - users + summary: Returns the service's details which should be hidden from the user defined as extras. + description: Currently returns the node_requirements an array of resoruces needed for scheduling. + operationId: services_extras_get + parameters: + - in: path + name: service_key + description: The key (url) of the service + required: true + schema: + type: string + description: distinctive name for the node based on the docker registry path + pattern: '^(simcore)/(services)/(comp|dynamic)(/[^\s/]+)+$' + example: + - simcore/services/comp/itis/sleeper + - simcore/services/dynamic/3dviewer + - in: path + name: service_version + description: The tag/version of the service + required: true + schema: + type: string + description: semantic version number + pattern: '^(0|[1-9]\d*)(\.(0|[1-9]\d*)){2}(-(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*)(\.(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*))*)?(\+[-\da-zA-Z]+(\.[-\da-zA-Z-]+)*)?$' + example: + - 1.0.0 + - 0.0.1 + responses: + '200': + description: 'Success, returns an object containing details hidden from the user' + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: object + required: + - node_requirements + properties: + node_requirements: + type: array + items: + type: string + enum: + - CPU + - GPU + error: + nullable: true + default: null + '401': + description: Unauthorized access + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + required: + - status + - message + properties: + message: + description: Error message + type: string + example: Unexpected error + errors: + type: array + items: + properties: + code: + type: string + description: Server Exception + example: ServiceUUIDNotFoundError + status: + description: Error code + type: integer + example: 404 + '404': + description: Service not found + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + required: + - status + - message + properties: + message: + description: Error message + type: string + example: Unexpected error + errors: + type: array + items: + properties: + code: + type: string + description: Server Exception + example: ServiceUUIDNotFoundError + status: + description: Error code + type: integer + example: 404 + default: + description: Unexpected error + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + required: + - status + - message + properties: + message: + description: Error message + type: string + example: Unexpected error + errors: + type: array + items: + properties: + code: + type: string + description: Server Exception + example: ServiceUUIDNotFoundError + status: + description: Error code + type: integer + example: 404 /running_interactive_services: get: tags: @@ -2230,6 +2387,26 @@ components: error: nullable: true default: null + ServiceExtrasEnveloped: + type: object + required: + - data + properties: + data: + type: object + required: + - node_requirements + properties: + node_requirements: + type: array + items: + type: string + enum: + - CPU + - GPU + error: + nullable: true + default: null HealthCheckEnveloped: type: object required: diff --git a/services/director/src/simcore_service_director/producer.py b/services/director/src/simcore_service_director/producer.py index 70247f8b743..13ac078f229 100644 --- a/services/director/src/simcore_service_director/producer.py +++ b/services/director/src/simcore_service_director/producer.py @@ -946,3 +946,34 @@ async def stop_service(app: web.Application, node_uuid: str) -> None: "DYNAMIC", "SUCCESS", ) + + +async def generate_service_extras( + app: web.Application, image_key: str, image_tag: str +) -> Dict: + result = {} + labels = await registry_proxy.get_image_labels(app, image_key, image_tag) + log.debug("Compiling service extras from labels %s", labels) + + # check physical node requirements + # all nodes require "CPU" + result["node_requirements"] = ["CPU"] + # check if the service requires GPU support + + def validate_vram(entry_to_validate): + for element in ( + entry_to_validate.get("value", {}) + .get("Reservations", {}) + .get("GenericResources", []) + ): + if element.get("DiscreteResourceSpec", {}).get("Kind") == "VRAM": + return True + return False + + if SERVICE_RUNTIME_SETTINGS in labels: + service_settings = json.loads(labels[SERVICE_RUNTIME_SETTINGS]) + for entry in service_settings: + if entry.get("name") == "Resources" and validate_vram(entry): + result["node_requirements"].append("GPU") + + return result diff --git a/services/director/src/simcore_service_director/rest/handlers.py b/services/director/src/simcore_service_director/rest/handlers.py index b830d3a91a2..25c5105104e 100644 --- a/services/director/src/simcore_service_director/rest/handlers.py +++ b/services/director/src/simcore_service_director/rest/handlers.py @@ -83,6 +83,28 @@ async def services_by_key_version_get( raise web_exceptions.HTTPInternalServerError(reason=str(err)) +async def services_extras_get( + request: web.Request, service_key: str, service_version: str +) -> web.Response: + log.debug( + "Client does services_extras_get request %s with service_key %s, service_version %s", + request, + service_key, + service_version, + ) + try: + service_extras = await producer.generate_service_extras( + request.app, service_key, service_version + ) + return web.json_response(data=dict(data=service_extras)) + except exceptions.ServiceNotAvailableError as err: + raise web_exceptions.HTTPNotFound(reason=str(err)) + except exceptions.RegistryConnectionError as err: + raise web_exceptions.HTTPUnauthorized(reason=str(err)) + except Exception as err: + raise web_exceptions.HTTPInternalServerError(reason=str(err)) + + async def running_interactive_services_list_get( request: web.Request, user_id: str, project_id: str ) -> web.Response: diff --git a/services/director/tests/test_docker_utils.py b/services/director/tests/test_docker_utils.py index 48a122c4d52..2e50d9affb9 100644 --- a/services/director/tests/test_docker_utils.py +++ b/services/director/tests/test_docker_utils.py @@ -39,6 +39,8 @@ async def test_docker_client(loop): ], ) async def test_swarm_method_with_no_swarm(loop, fct): + # if this fails on your development machine run + # `docker swarm leave --force` to leave the swarm with pytest.raises(DockerError): await fct() diff --git a/services/docker-compose.devel.yml b/services/docker-compose.devel.yml index 47daede4cfe..7d5492cdb78 100644 --- a/services/docker-compose.devel.yml +++ b/services/docker-compose.devel.yml @@ -48,8 +48,9 @@ services: - ./storage/client-sdk:/devel/services/storage/client-sdk - ../packages:/devel/packages environment: + # force to start as cpu mode otherwise it will boot in gpu mode in development + - START_AS_MODE_CPU=1 - SC_BOOT_MODE=debug-ptvsd - - SIDECAR_LOGLEVEL=DEBUG ports: - "3002:3000" deploy: @@ -57,6 +58,60 @@ services: endpoint_mode: vip replicas: 1 + # adding a separate worker to handling GPU mode for development + # in production the sidecar autodetects its hardware and start either in CPU or GPU mode + sidecar_gpu: + image: ${DOCKER_REGISTRY:-itisfoundation}/sidecar:${DOCKER_IMAGE_TAG:-latest} + init: true + deploy: + mode: replicated + replicas: 1 + # NOTE: Allows 3007 to be exposed for ptvsd + endpoint_mode: vip + resources: + reservations: + cpus: "0.1" + memory: "100M" + volumes: + - input:/home/scu/input + - output:/home/scu/output + - log:/home/scu/log + - /var/run/docker.sock:/var/run/docker.sock + - ./sidecar:/devel/services/sidecar + - ./storage/client-sdk:/devel/services/storage/client-sdk + - ../packages:/devel/packages + ports: + - "3007:3000" + environment: + - SC_BOOT_MODE=debug-ptvsd + - SIDECAR_LOGLEVEL=DEBUG + - START_AS_MODE_GPU=1 + - RABBIT_HOST=${RABBIT_HOST} + - RABBIT_PORT=${RABBIT_PORT} + - RABBIT_USER=${RABBIT_USER} + - RABBIT_PASSWORD=${RABBIT_PASSWORD} + - RABBIT_CHANNELS=${RABBIT_CHANNELS} + - POSTGRES_ENDPOINT=${POSTGRES_ENDPOINT} + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_HOST=${POSTGRES_HOST} + - POSTGRES_PORT=${POSTGRES_PORT} + - S3_ENDPOINT=${S3_ENDPOINT} + - S3_ACCESS_KEY=${S3_ACCESS_KEY} + - S3_SECRET_KEY=${S3_SECRET_KEY} + - S3_BUCKET_NAME=${S3_BUCKET_NAME} + - STORAGE_ENDPOINT=${STORAGE_ENDPOINT} + - REGISTRY_URL=${REGISTRY_URL} + - REGISTRY_USER=${REGISTRY_USER} + - REGISTRY_PW=${REGISTRY_PW} + - SWARM_STACK_NAME=${SWARM_STACK_NAME:-simcore} + depends_on: + - rabbit + - postgres + networks: + - computational_services_subnet + storage: volumes: - ./storage:/devel/services/storage diff --git a/services/sidecar/requirements/_test.in b/services/sidecar/requirements/_test.in index 8c54392101f..be5db65a909 100644 --- a/services/sidecar/requirements/_test.in +++ b/services/sidecar/requirements/_test.in @@ -13,6 +13,7 @@ pytest-cov pytest-instafail pytest-mock pytest-sugar +pytest-lazy-fixture # fixtures aiopg diff --git a/services/sidecar/requirements/_test.txt b/services/sidecar/requirements/_test.txt index 28090520cb0..a9f449c9fe4 100644 --- a/services/sidecar/requirements/_test.txt +++ b/services/sidecar/requirements/_test.txt @@ -11,19 +11,19 @@ aiohttp==3.6.2 # via -r requirements/_base.txt, aiodocker, pytest-aio aiopg==1.0.0 # via -r requirements/_base.txt, -r requirements/_test.in aiormq==3.2.1 # via -r requirements/_base.txt, aio-pika amqp==2.5.2 # via -r requirements/_base.txt, kombu -astroid==2.3.3 # via pylint +astroid==2.4.2 # via pylint async-timeout==3.0.1 # via -r requirements/_base.txt, aiohttp attrs==19.3.0 # via -r requirements/_base.txt, aiohttp, pytest billiard==3.6.3.0 # via -r requirements/_base.txt, celery celery==4.4.2 # via -r requirements/_base.txt -certifi==2019.11.28 # via requests +certifi==2020.4.5.2 # via requests chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, requests click==7.1.1 # via -r requirements/_base.txt coverage==4.5.1 # via -r requirements/_test.in, coveralls, pytest-cov -coveralls==1.11.1 # via -r requirements/_test.in +coveralls==2.0.0 # via -r requirements/_test.in dataclasses==0.7 # via -r requirements/_base.txt, pydantic decorator==4.4.2 # via -r requirements/_base.txt, networkx -docker==4.2.0 # via -r requirements/_test.in +docker==4.2.1 # via -r requirements/_test.in docopt==0.6.2 # via coveralls idna-ssl==1.1.0 # via -r requirements/_base.txt, aiohttp idna==2.9 # via -r requirements/_base.txt, idna-ssl, requests, yarl @@ -32,7 +32,7 @@ isort==4.3.21 # via pylint kombu==4.6.8 # via -r requirements/_base.txt, celery lazy-object-proxy==1.4.3 # via astroid mccabe==0.6.1 # via pylint -more-itertools==8.2.0 # via pytest +more-itertools==8.3.0 # via pytest multidict==4.7.5 # via -r requirements/_base.txt, aiohttp, yarl networkx==2.4 # via -r requirements/_base.txt packaging==20.3 # via -r requirements/_base.txt, pytest, pytest-sugar @@ -42,26 +42,28 @@ psycopg2-binary==2.8.4 # via -r requirements/_base.txt, aiopg ptvsd==4.3.2 # via -r requirements/_test.in py==1.8.1 # via pytest pydantic==1.4 # via -r requirements/_base.txt -pylint==2.4.4 # via -r requirements/_test.in +pylint==2.5.3 # via -r requirements/_test.in pyparsing==2.4.6 # via -r requirements/_base.txt, packaging pytest-aiohttp==0.3.0 # via -r requirements/_test.in -pytest-cov==2.8.1 # via -r requirements/_test.in +pytest-cov==2.9.0 # via -r requirements/_test.in pytest-instafail==0.4.1.post0 # via -r requirements/_test.in -pytest-mock==2.0.0 # via -r requirements/_test.in -pytest-sugar==0.9.2 # via -r requirements/_test.in -pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-instafail, pytest-mock, pytest-sugar +pytest-lazy-fixture==0.6.3 # via -r requirements/_test.in +pytest-mock==3.1.1 # via -r requirements/_test.in +pytest-sugar==0.9.3 # via -r requirements/_test.in +pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-instafail, pytest-lazy-fixture, pytest-mock, pytest-sugar pytz==2019.3 # via -r requirements/_base.txt, celery requests==2.23.0 # via coveralls, docker six==1.14.0 # via -r requirements/_base.txt, astroid, docker, packaging, tenacity, websocket-client sqlalchemy==1.3.15 # via -r requirements/_base.txt tenacity==6.1.0 # via -r requirements/_base.txt termcolor==1.1.0 # via pytest-sugar +toml==0.10.1 # via pylint typed-ast==1.4.1 # via astroid typing-extensions==3.7.4.1 # via -r requirements/_base.txt, aiohttp urllib3==1.25.8 # via -r requirements/_base.txt, requests vine==1.3.0 # via -r requirements/_base.txt, amqp, celery -wcwidth==0.1.9 # via pytest +wcwidth==0.2.4 # via pytest websocket-client==0.57.0 # via docker -wrapt==1.11.2 # via astroid +wrapt==1.12.1 # via astroid yarl==1.4.2 # via -r requirements/_base.txt, aio-pika, aiohttp, aiormq zipp==3.1.0 # via -r requirements/_base.txt, importlib-metadata diff --git a/services/sidecar/src/simcore_service_sidecar/celery.py b/services/sidecar/src/simcore_service_sidecar/celery.py index 2a7a641a98f..715f31c8357 100644 --- a/services/sidecar/src/simcore_service_sidecar/celery.py +++ b/services/sidecar/src/simcore_service_sidecar/celery.py @@ -1,41 +1,8 @@ -from celery import Celery, states - -from simcore_sdk.config.rabbit import Config as RabbitConfig - -from .celery_log_setup import get_task_logger -from .cli import run_sidecar from .remote_debug import setup_remote_debugging -from .utils import wrap_async_call - -log = get_task_logger(__name__) -log.info("Inititalizing celery app ...") - -rabbit_config = RabbitConfig() +from .celery_configurator import get_rabbitmq_config_and_celery_app setup_remote_debugging() -# TODO: make it a singleton? -app = Celery( - rabbit_config.name, broker=rabbit_config.broker_url, backend=rabbit_config.backend -) - - -@app.task(name="comp.task", bind=True) -def pipeline(self, user_id: str, project_id: str, node_id: str = None): - try: - next_task_nodes = wrap_async_call( - run_sidecar(self.request.id, user_id, project_id, node_id) - ) - self.update_state(state=states.SUCCESS) - - if next_task_nodes: - for _node_id in next_task_nodes: - _task = app.send_task( - "comp.task", args=(user_id, project_id, _node_id), kwargs={} - ) - except Exception: # pylint: disable=broad-except - self.update_state(state=states.FAILURE) - log.exception("Uncaught exception") - +rabbit_config, app = get_rabbitmq_config_and_celery_app() __all__ = ["rabbit_config", "app"] diff --git a/services/sidecar/src/simcore_service_sidecar/celery_configurator.py b/services/sidecar/src/simcore_service_sidecar/celery_configurator.py new file mode 100644 index 00000000000..6c66bb76bda --- /dev/null +++ b/services/sidecar/src/simcore_service_sidecar/celery_configurator.py @@ -0,0 +1,136 @@ +""" +It is not possible to tell celery to refuse a task once it is sent. +The solution is to use 2 separate queues, and have the CPU mode +nodes accept all "comp.task". + +To decide where a task should be routed to, the current worker will +use a look ahead function to check the type of upcoming task and +schedule it accordingly. +""" + +from typing import Tuple +from celery import Celery, states +from simcore_sdk.config.rabbit import Config as RabbitConfig +from . import config +from .cli import run_sidecar +from .utils import wrap_async_call, is_gpu_node +from .celery_log_setup import get_task_logger +from .utils import assemble_celery_app +from .core import does_task_require_gpu + +log = get_task_logger(__name__) + + +# used by internal queues in this module +_rabbit_config = RabbitConfig() +_celery_app_cpu = assemble_celery_app("celery", _rabbit_config) +_celery_app_gpu = assemble_celery_app("celery_gpu_mode", _rabbit_config) + + +def dispatch_comp_task(user_id: str, project_id: str, node_id: str) -> None: + """Uses the director's API to determineate where the service needs + to be dispacted and sends it to the appropriate queue""" + # TODO: use _node_id to check if this service needs a GPU or NOT, ask director + # then schedule to the correct queue + # Add logging at #TODO: #1 and here to make sure the task with the same uuid is scheduled on the correct worker! + if node_id is None: + log.error("No node_id provided for project_id %s, skipping", project_id) + return + + # query comp_tasks for the thing you need and see if it is false + try: + task_needs_gpu = wrap_async_call(does_task_require_gpu(node_id)) + except Exception: # pylint: disable=broad-except + import traceback + + log.error( + "%s\nThe above exception ocurred because it could not be " + "determined if task requires GPU for node_id %s", + traceback.format_exc(), + node_id, + ) + return + + if task_needs_gpu: + _dispatch_to_gpu_queue(user_id, project_id, node_id) + else: + _dispatch_to_cpu_queue(user_id, project_id, node_id) + + +def _dispatch_to_cpu_queue(user_id: str, project_id: str, node_id: str) -> None: + _celery_app_cpu.send_task( + "comp.task.cpu", args=(user_id, project_id, node_id), kwargs={} + ) + + +def _dispatch_to_gpu_queue(user_id: str, project_id: str, node_id: str) -> None: + _celery_app_gpu.send_task( + "comp.task.gpu", args=(user_id, project_id, node_id), kwargs={} + ) + + +def cpu_gpu_shared_task( + celery_request, user_id: str, project_id: str, node_id: str = None +) -> None: + """This is the original task which is run by either a GPU or CPU node""" + try: + log.info( + "Will dispatch to appropriate queue %s, %s, %s", + user_id, + project_id, + node_id, + ) + next_task_nodes = wrap_async_call( + run_sidecar(celery_request.request.id, user_id, project_id, node_id) + ) + celery_request.update_state(state=states.SUCCESS) + + if next_task_nodes: + for _node_id in next_task_nodes: + dispatch_comp_task(user_id, project_id, _node_id) + except Exception: # pylint: disable=broad-except + celery_request.update_state(state=states.FAILURE) + log.exception("Uncaught exception") + + +def configure_cpu_mode() -> Tuple[RabbitConfig, Celery]: + """Will configure and return a celery app targetting CPU mode nodes.""" + log.info("Initializing celery app in CPU MODE ...") + app = _celery_app_cpu + + # pylint: disable=unused-variable,unused-argument + @app.task(name="comp.task", bind=True, ignore_result=True) + def entrypoint(self, user_id: str, project_id: str, node_id: str = None) -> None: + cpu_gpu_shared_task(self, user_id, project_id, node_id) + + @app.task(name="comp.task.cpu", bind=True) + def pipeline(self, user_id: str, project_id: str, node_id: str = None) -> None: + cpu_gpu_shared_task(self, user_id, project_id, node_id) + + return (_rabbit_config, app) + + +def configure_gpu_mode() -> Tuple[RabbitConfig, Celery]: + """Will configure and return a celery app targetting GPU mode nodes.""" + log.info("Initializing celery app in GPU MODE ...") + app = _celery_app_gpu + + # pylint: disable=unused-variable + @app.task(name="comp.task.gpu", bind=True) + def pipeline(self, user_id: str, project_id: str, node_id: str = None) -> None: + cpu_gpu_shared_task(self, user_id, project_id, node_id) + + return (_rabbit_config, app) + + +def get_rabbitmq_config_and_celery_app() -> Tuple[RabbitConfig, Celery]: + """Returns a CPU or GPU configured celery app""" + node_has_gpu_support = is_gpu_node() + + if config.FORCE_START_CPU_MODE: + return configure_cpu_mode() + + if config.FORCE_START_GPU_MODE or node_has_gpu_support: + return configure_gpu_mode() + + return configure_cpu_mode() diff --git a/services/sidecar/src/simcore_service_sidecar/config.py b/services/sidecar/src/simcore_service_sidecar/config.py index e178fc31feb..46a8f7bca87 100644 --- a/services/sidecar/src/simcore_service_sidecar/config.py +++ b/services/sidecar/src/simcore_service_sidecar/config.py @@ -42,3 +42,7 @@ logging.getLogger("sqlalchemy.pool").setLevel(SIDECAR_LOGLEVEL) RABBIT_CONFIG = RabbitConfig() + +# sidecar celery starting mode overwrite +FORCE_START_CPU_MODE = os.environ.get("START_AS_MODE_CPU") +FORCE_START_GPU_MODE = os.environ.get("START_AS_MODE_GPU") diff --git a/services/sidecar/src/simcore_service_sidecar/core.py b/services/sidecar/src/simcore_service_sidecar/core.py index 8b05e04bc81..c53c9459383 100644 --- a/services/sidecar/src/simcore_service_sidecar/core.py +++ b/services/sidecar/src/simcore_service_sidecar/core.py @@ -21,12 +21,31 @@ from .executor import Executor from .rabbitmq import RabbitMQ from .utils import execution_graph, find_entry_point, is_node_ready +from .db import DBContextManager log = get_task_logger(__name__) log.setLevel(config.SIDECAR_LOGLEVEL) node_port_log.setLevel(config.SIDECAR_LOGLEVEL) +async def does_task_require_gpu(node_id: str) -> bool: + """Checks if the comp_task's image field if it requires to use the GPU""" + async with DBContextManager() as db_engine: + async with db_engine.acquire() as db_connection: + result = await db_connection.execute( + query=comp_tasks.select().where(comp_tasks.c.node_id == node_id) + ) + task = await result.fetchone() + + if not task: + log.warning("Task for node_id %s was not found", node_id) + raise exceptions.TaskNotFound("Could not find a relative task") + + # Image has to following format + # {"name": "simcore/services/comp/itis/sleeper", "tag": "1.0.0", "requires_gpu": false} + return task["image"]["requires_gpu"] + + async def _try_get_task_from_db( db_connection: aiopg.sa.SAConnection, graph: nx.DiGraph, diff --git a/services/sidecar/src/simcore_service_sidecar/exceptions.py b/services/sidecar/src/simcore_service_sidecar/exceptions.py index 48bd3d40bf3..1c7dc3e77c3 100644 --- a/services/sidecar/src/simcore_service_sidecar/exceptions.py +++ b/services/sidecar/src/simcore_service_sidecar/exceptions.py @@ -6,7 +6,7 @@ class SidecarException(Exception): def __init__(self, msg: Optional[str] = None): if msg is None: - msg = "Unexpected error occured in director subpackage" + msg = "Unexpected error occurred in director subpackage" super(SidecarException, self).__init__(msg) @@ -15,3 +15,18 @@ class DatabaseError(SidecarException): def __init__(self, msg: str): super(DatabaseError, self).__init__(msg) + + +class TaskNotFound(SidecarException): + """Task was not found """ + + def __init__(self, msg: str): + super().__init__(msg) + + +class MoreThenOneItemDetected(Exception): + """Raised during the docker's container_id validation""" + def __init__(self, msg: Optional[str] = None): + if msg is None: + msg = "Unexpected error occurred in director subpackage" + super().__init__(msg) diff --git a/services/sidecar/src/simcore_service_sidecar/utils.py b/services/sidecar/src/simcore_service_sidecar/utils.py index e60ce11c2c8..f6bb313f73f 100644 --- a/services/sidecar/src/simcore_service_sidecar/utils.py +++ b/services/sidecar/src/simcore_service_sidecar/utils.py @@ -1,11 +1,18 @@ import asyncio import logging +import aiodocker +import re from typing import List import aiopg import networkx as nx from simcore_postgres_database.sidecar_models import SUCCESS, comp_pipeline, comp_tasks from sqlalchemy import and_ +from simcore_sdk.config.rabbit import Config as RabbitConfig +from celery import Celery +from .exceptions import MoreThenOneItemDetected + +logger = logging.getLogger(__name__) def wrap_async_call(fct: asyncio.coroutine): @@ -63,3 +70,74 @@ def execution_graph(pipeline: comp_pipeline) -> nx.DiGraph: continue G.add_edges_from([(node, n) for n in nodes]) return G + + +def is_gpu_node() -> bool: + """Returns True if this node has support to GPU, + meaning that the `VRAM` label was added to it.""" + + def get_container_id_from_cgroup(cat_cgroup_content) -> str: + """Parses the result of cat cat /proc/self/cgroup and returns a container_id or + raises an error in case only one unique id was not found.""" + possible_candidates = {x for x in cat_cgroup_content.split() if len(x) >= 64} + result_set = {x.split("/")[-1] for x in possible_candidates} + if len(result_set) != 1: + # pylint: disable=raising-format-tuple + raise MoreThenOneItemDetected( + "There should only be one entry in this set of possible container_ids" + ", have a look at %s" % possible_candidates + ) + return_value = result_set.pop() + # check if length is 64 and all char match this regex [A-Fa-f0-9] + if len(return_value) != 64 and re.findall("[A-Fa-f0-9]{64}", return_value): + # pylint: disable=raising-format-tuple + raise ValueError( + "Found container ID is not a valid sha256 string %s", return_value + ) + return return_value + + async def async_is_gpu_node() -> bool: + cmd = "cat /proc/self/cgroup" + proc = await asyncio.create_subprocess_shell( + cmd, stdout=asyncio.subprocess.PIPE, stderr=asyncio.subprocess.PIPE, + ) + + stdout, _ = await proc.communicate() + container_id = get_container_id_from_cgroup(stdout.decode("utf-8").strip()) + + docker = aiodocker.Docker() + + container = await docker.containers.get(container_id) + container_info = await container.show() + node_id = container_info["Config"]["Labels"]["com.docker.swarm.node.id"] + node_info = await docker.nodes.inspect(node_id=node_id) + + generic_resources = ( + node_info.get("Description", {}) + .get("Resources", {}) + .get("GenericResources", []) + ) + + has_gpu_support = False + for entry in generic_resources: + if entry.get("DiscreteResourceSpec", {}).get("Kind") == "VRAM": + has_gpu_support = True + break + + await docker.close() + + logger.info("Node GPU support: %s", has_gpu_support) + return has_gpu_support + + return wrap_async_call(async_is_gpu_node()) + + +def assemble_celery_app(task_default_queue: str, rabbit_config: RabbitConfig) -> Celery: + """Returns an instance of Celery using a different RabbitMQ queue""" + app = Celery( + rabbit_config.name, + broker=rabbit_config.broker_url, + backend=rabbit_config.backend, + ) + app.conf.task_default_queue = task_default_queue + return app diff --git a/services/sidecar/tests/unit/test_celery_configurator.py b/services/sidecar/tests/unit/test_celery_configurator.py new file mode 100644 index 00000000000..fe68735faa4 --- /dev/null +++ b/services/sidecar/tests/unit/test_celery_configurator.py @@ -0,0 +1,151 @@ +# pylint: disable=unused-argument,redefined-outer-name,no-member +import pytest +import asyncio + +from simcore_service_sidecar.celery_configurator import ( + get_rabbitmq_config_and_celery_app, +) +from simcore_service_sidecar.utils import is_gpu_node +from simcore_service_sidecar import config + +from celery import Celery +from simcore_sdk.config.rabbit import Config as RabbitConfig + + +def _toggle_gpu_mock(mocker, has_gpu: bool) -> None: + # mock ouput of cat /proc/self/cgroup + CAT_DATA = b""" + 12:hugetlb:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 11:freezer:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 10:blkio:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 9:devices:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 8:net_cls,net_prio:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 7:cpuset:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 6:perf_event:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 5:memory:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 4:rdma:/ + 3:cpu,cpuacct:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 2:pids:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 1:name=systemd:/docker/2c52ab5a825dea0b074741fb1521c972866af7997a761eb312405b50ad289263 + 0::/system.slice/containerd.service + """ + + future = asyncio.Future() + future.set_result((CAT_DATA, None)) + comunicate = mocker.patch("asyncio.subprocess.Process.communicate") + comunicate.return_value = future + + class MockContainer: + async def show(self): + data = {"Config": {"Labels": {"com.docker.swarm.node.id": "node_id"}}} + return data + + future = asyncio.Future() + future.set_result(MockContainer()) + containers_get = mocker.patch("aiodocker.containers.DockerContainers.get") + containers_get.return_value = future + + def gpu_support_key(): + """if GPU support is enabled this Kind key must be present""" + return "Kind" if has_gpu else "_" + + payload = { + "Description": { + "Resources": { + "GenericResources": [ + {"DiscreteResourceSpec": {gpu_support_key(): "VRAM"}} + ] + } + } + } + + future = asyncio.Future() + future.set_result(payload) + containers_get = mocker.patch("aiodocker.nodes.DockerSwarmNodes.inspect") + containers_get.return_value = future + + +@pytest.fixture() +def mock_node_no_gpu(mocker) -> None: + _toggle_gpu_mock(mocker, False) + + +@pytest.fixture() +def mock_node_with_gpu(mocker) -> None: + _toggle_gpu_mock(mocker, True) + + +@pytest.fixture(params=[True, False]) +def mock_node_has_gpu(request, mocker) -> None: + _toggle_gpu_mock(mocker, request.param) + + +@pytest.fixture +def force_cpu_mode(monkeypatch): + monkeypatch.setattr(config, "FORCE_START_CPU_MODE", "1", raising=True) + + +@pytest.fixture +def force_gpu_mode(monkeypatch): + monkeypatch.setattr(config, "FORCE_START_GPU_MODE", "1", raising=True) + + +@pytest.mark.parametrize("gpu_support", [(pytest.lazy_fixture("mock_node_has_gpu")),]) +def test_force_start_cpu_mode(mocker, force_cpu_mode, gpu_support) -> None: + mocked_configure_cpu_mode = mocker.patch( + "simcore_service_sidecar.celery_configurator.configure_cpu_mode" + ) + + mocked_configure_cpu_mode.return_value = (None, None) + + get_rabbitmq_config_and_celery_app() + + mocked_configure_cpu_mode.assert_called() + + +@pytest.mark.parametrize("gpu_support", [(pytest.lazy_fixture("mock_node_has_gpu")),]) +def test_force_start_gpu_mode(mocker, force_gpu_mode, gpu_support) -> None: + mocked_configure_gpu_mode = mocker.patch( + "simcore_service_sidecar.celery_configurator.configure_gpu_mode" + ) + mocked_configure_gpu_mode.return_value = (None, None) + + get_rabbitmq_config_and_celery_app() + + mocked_configure_gpu_mode.assert_called() + + +def test_auto_detects_gpu(mocker, mock_node_with_gpu) -> None: + mocked_configure_gpu_mode = mocker.patch( + "simcore_service_sidecar.celery_configurator.configure_gpu_mode" + ) + mocked_configure_gpu_mode.return_value = (None, None) + + get_rabbitmq_config_and_celery_app() + + mocked_configure_gpu_mode.assert_called() + + +@pytest.mark.parametrize( + "gpu_support,expected_value", + [ + (pytest.lazy_fixture("mock_node_no_gpu"), False), + (pytest.lazy_fixture("mock_node_with_gpu"), True), + ], +) +def test_proper_has_gpu_mocking(expected_value, gpu_support) -> None: + assert is_gpu_node() is expected_value + + +@pytest.mark.parametrize("gpu_support", [(pytest.lazy_fixture("mock_node_has_gpu")),]) +def test_force_start_cpu_ext_dep_mocking(force_cpu_mode, gpu_support) -> None: + rabbit_cfg, celery_app = get_rabbitmq_config_and_celery_app() + assert isinstance(rabbit_cfg, RabbitConfig) + assert isinstance(celery_app, Celery) + + +@pytest.mark.parametrize("gpu_support", [(pytest.lazy_fixture("mock_node_has_gpu")),]) +def test_force_start_gpu_ext_dep_mocking(force_gpu_mode, gpu_support) -> None: + rabbit_cfg, celery_app = get_rabbitmq_config_and_celery_app() + assert isinstance(rabbit_cfg, RabbitConfig) + assert isinstance(celery_app, Celery) diff --git a/services/web/server/src/simcore_service_webserver/computation_api.py b/services/web/server/src/simcore_service_webserver/computation_api.py index 37795f4a0fb..53b1b0f0408 100644 --- a/services/web/server/src/simcore_service_webserver/computation_api.py +++ b/services/web/server/src/simcore_service_webserver/computation_api.py @@ -20,6 +20,9 @@ from simcore_postgres_database.models.comp_tasks import NodeClass from simcore_postgres_database.webserver_models import comp_pipeline, comp_tasks +# TODO: move this to computation_models +from simcore_service_webserver.computation_models import to_node_class + from .director import director_api log = logging.getLogger(__file__) @@ -65,13 +68,37 @@ async def _get_node_details( app, node_key, node_version ) if not node_details: - log.error("Error could not find service %s:%s", node_key, node_version) + log.error( + "Error (while getting node details) could not find service %s:%s", + node_key, + node_version, + ) raise web_exceptions.HTTPNotFound( reason=f"details of service {node_key}:{node_version} could not be found" ) return node_details +async def _get_node_extras( + node_key: str, node_version: str, app: web.Application +) -> Dict: + """Returns the service_extras if possible otherwise None""" + if to_node_class(node_key) == NodeClass.FRONTEND: + return None + + node_extras = await director_api.get_services_extras(app, node_key, node_version) + if not node_extras: + log.error( + "Error (while getting node extras) could not find service %s:%s", + node_key, + node_version, + ) + raise web_exceptions.HTTPNotFound( + reason=f"details of service {node_key}:{node_version} could not be found" + ) + return node_extras + + async def _build_adjacency_list( node_uuid: str, node_schema: Dict, @@ -118,9 +145,6 @@ async def _build_adjacency_list( async def _parse_project_data(pipeline_data: Dict, app: web.Application): - # TODO: move this to computation_models - from .computation_models import to_node_class - dag_adjacency_list = dict() tasks = dict() @@ -148,6 +172,8 @@ async def _parse_project_data(pipeline_data: Dict, app: web.Application): ) node_details = await _get_node_details(node_key, node_version, app) + node_extras = await _get_node_extras(node_key, node_version, app) + log.debug( "node %s:%s has schema:\n %s", node_key, node_version, pformat(node_details) ) @@ -167,11 +193,23 @@ async def _parse_project_data(pipeline_data: Dict, app: web.Application): "inputs": node_details["inputs"], "outputs": node_details["outputs"], } + + # _get_node_extras returns None ins ome situation, the below check is required + requires_gpu = ( + "GPU" in node_extras.get("node_requirements", []) + if node_extras is not None + else False + ) + task = { "schema": node_schema, "inputs": node_inputs, "outputs": node_outputs, - "image": {"name": node_key, "tag": node_version}, + "image": { + "name": node_key, + "tag": node_version, + "requires_gpu": requires_gpu, + }, "node_class": to_node_class(node_key), } diff --git a/services/web/server/src/simcore_service_webserver/director/director_api.py b/services/web/server/src/simcore_service_webserver/director/director_api.py index 816af500e6a..351bcb38ca5 100644 --- a/services/web/server/src/simcore_service_webserver/director/director_api.py +++ b/services/web/server/src/simcore_service_webserver/director/director_api.py @@ -122,3 +122,26 @@ async def get_service_by_key_version( if not services: return return services[0] + + +async def get_services_extras( + app: web.Application, service_key: str, service_version: str +) -> Optional[Dict]: + session, api_endpoint = _get_director_client(app) + + url = ( + api_endpoint + / "service_extras" + / urllib.parse.quote(service_key, safe="") + / service_version + ) + async with session.get(url) as resp: + if resp.status != 200: + log.warning("Status not 200 %s", resp) + return + payload = await resp.json() + service_extras = payload["data"] + if not service_extras: + log.warning("Service extras is missing %s", resp) + return + return service_extras From a329aeade349a279003c6a73b83e62fcc6bef71c Mon Sep 17 00:00:00 2001 From: Pedro Crespo <32402063+pcrespov@users.noreply.github.com> Date: Wed, 24 Jun 2020 12:52:01 +0200 Subject: [PATCH 11/43] Maintenance/cleanup api server (#1578) During the design of this first version, there were many variants of the design that remained in the code. This PR cleans up all the deprecated code before extending it with new features. Some relevant changes: - Pruned and upgraded requirements - Removed trials sandbox folder - Removed unused models, db repos and routes - Left only basic authentication - Added client wrapper for webserver sessions (see osparc-simcore/services/api-server/src/simcore_service_api_server/services/webserver.py) - Reverted logger from loguru to default python logger - documented dev: services/api-server/README.md --- README.md | 3 +- services/api-server/Makefile | 6 +- services/api-server/README.md | 22 +- services/api-server/requirements/_base.in | 23 +- services/api-server/requirements/_base.txt | 22 +- services/api-server/requirements/_test.in | 1 + services/api-server/requirements/_test.txt | 31 ++- .../api-server/sandbox/_test_client_sdk.py | 209 ------------------ services/api-server/sandbox/_test_schemas.py | 21 -- services/api-server/sandbox/api-key-auth.py | 38 ---- services/api-server/sandbox/get_app_state.py | 24 -- .../api-server/sandbox/model_conversions.py | 91 -------- .../api-server/sandbox/pydantic-settings.py | 51 ----- services/api-server/sandbox/simple_app.py | 45 ---- .../api/dependencies/auth_api_key.py | 46 ---- .../api/dependencies/auth_basic.py | 48 ---- .../api/dependencies/auth_oath2.py | 100 --------- .../api/dependencies/authentication.py | 49 +++- .../api/dependencies/database.py | 2 +- .../api/dependencies/webserver.py | 26 ++- .../simcore_service_api_server/api/root.py | 9 +- .../api/routes/authentication/__init__.py | 0 .../api/routes/authentication/api_key.py | 15 -- .../api/routes/authentication/oauth2.py | 77 ------- .../api/routes/studies.py | 50 ----- .../api/routes/users.py | 56 ++--- .../core/application.py | 8 +- .../simcore_service_api_server/core/events.py | 18 +- .../core/openapi.py | 6 +- .../simcore_service_api_server/db/events.py | 10 +- .../db/repositories/__init__.py | 1 + .../db/repositories/{base.py => _base.py} | 0 .../db/repositories/api_keys.py | 12 +- .../db/repositories/users.py | 89 +------- .../models/domain/users.py | 32 --- .../models/schemas/api_keys.py | 12 - .../models/schemas/tokens.py | 25 --- .../models/schemas/users.py | 12 - .../services/jwt.py | 66 ------ .../services/remote_debug.py | 9 +- .../services/security.py | 25 --- .../services/serialization.py | 4 - .../services/webserver.py | 92 +++++++- services/api-server/tests/unit/_helpers.py | 2 +- services/api-server/tests/unit/conftest.py | 5 +- .../api-server/tests/unit/test_api_meta.py | 1 - services/api-server/tests/unit/test_jwt.py | 35 --- .../api-server/tests/unit/test_security.py | 14 -- .../api-server/tests/unit/test_settings.py | 4 +- 49 files changed, 285 insertions(+), 1262 deletions(-) delete mode 100644 services/api-server/sandbox/_test_client_sdk.py delete mode 100644 services/api-server/sandbox/_test_schemas.py delete mode 100644 services/api-server/sandbox/api-key-auth.py delete mode 100644 services/api-server/sandbox/get_app_state.py delete mode 100644 services/api-server/sandbox/model_conversions.py delete mode 100644 services/api-server/sandbox/pydantic-settings.py delete mode 100644 services/api-server/sandbox/simple_app.py delete mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py delete mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py delete mode 100644 services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py delete mode 100644 services/api-server/src/simcore_service_api_server/api/routes/authentication/__init__.py delete mode 100644 services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py delete mode 100644 services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py delete mode 100644 services/api-server/src/simcore_service_api_server/api/routes/studies.py rename services/api-server/src/simcore_service_api_server/db/repositories/{base.py => _base.py} (100%) delete mode 100644 services/api-server/src/simcore_service_api_server/models/domain/users.py delete mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py delete mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/tokens.py delete mode 100644 services/api-server/src/simcore_service_api_server/models/schemas/users.py delete mode 100644 services/api-server/src/simcore_service_api_server/services/jwt.py delete mode 100644 services/api-server/src/simcore_service_api_server/services/security.py delete mode 100644 services/api-server/tests/unit/test_jwt.py delete mode 100644 services/api-server/tests/unit/test_security.py diff --git a/README.md b/README.md index 580f6c4e3d5..b8186e962c9 100644 --- a/README.md +++ b/README.md @@ -9,7 +9,7 @@ [![Code style: black]](https://github.com/psf/black) [![Requires.io]](https://requires.io/github/ITISFoundation/osparc-simcore/requirements/?branch=master "State of third party python dependencies") [![travis-ci]](https://travis-ci.org/ITISFoundation/osparc-simcore "State of CI: build, test and pushing images") -![Github-CI Push/PR](https://github.com/ITISFoundation/osparc-simcore/workflows/Github-CI%20Push/PR/badge.svg) +[![Github-CI Push/PR]](https://github.com/ITISFoundation/osparc-simcore/actions?query=workflow%3A%22Github-CI+Push%2FPR%22+branch%3Amaster) [![coveralls.io]](https://coveralls.io/github/ITISFoundation/osparc-simcore?branch=master) [![codecov.io]](https://codecov.io/gh/ITISFoundation/osparc-simcore) [![github.io]](https://itisfoundation.github.io/) @@ -26,6 +26,7 @@ [coveralls.io]:https://coveralls.io/repos/github/ITISFoundation/osparc-simcore/badge.svg?branch=master [codecov.io]:https://codecov.io/gh/ITISFoundation/osparc-simcore/branch/master/graph/badge.svg [license]:https://img.shields.io/github/license/ITISFoundation/osparc-simcore +[Github-CI Push/PR]:https://github.com/ITISFoundation/osparc-simcore/workflows/Github-CI%20Push/PR/badge.svg diff --git a/services/api-server/Makefile b/services/api-server/Makefile index f14a4727c80..d85c03a936f 100644 --- a/services/api-server/Makefile +++ b/services/api-server/Makefile @@ -46,19 +46,21 @@ docker-compose.yml: run-devel: .env docker-compose.yml down ## runs app on host with pg fixture for development [for development] # Starting db (under $<) docker-compose up --detach + # Creating db-tables: user=key, password=secret + @$(MAKE) db-tables # start app (under $<) uvicorn simcore_service_api_server.__main__:the_app \ --reload --reload-dir $(SRC_DIR) \ --port=8000 --host=0.0.0.0 .PHONY: db-tables -db-tables: .env-devel ## upgrades and create tables [for development] +db-tables: .env ## upgrades and create tables [for development] # Upgrading and creating tables export $(shell grep -v '^#' $< | xargs -d '\n'); \ python3 tests/utils/init-pg.py .PHONY: db-migration -db-migration: .env-devel ## runs discover and upgrade on running pg-db [for development] +db-migration: .env ## runs discover and upgrade on running pg-db [for development] # Creating tables export $(shell grep -v '^#' $< | xargs -d '\n'); \ sc-pg discover && sc-pg upgrade diff --git a/services/api-server/README.md b/services/api-server/README.md index 4386afbe3a3..ce70592724c 100644 --- a/services/api-server/README.md +++ b/services/api-server/README.md @@ -1,7 +1,6 @@ # api-server [![image-size]](https://microbadger.com/images/itisfoundation/api-server. "More on itisfoundation/api-server.:staging-latest image") - [![image-badge]](https://microbadger.com/images/itisfoundation/api-server "More on Public API Server image in registry") [![image-version]](https://microbadger.com/images/itisfoundation/api-server "More on Public API Server image in registry") [![image-commit]](https://microbadger.com/images/itisfoundation/api-server "More on Public API Server image in registry") @@ -16,6 +15,27 @@ Platform's public API server +## Development + +Setup environment +```cmd +make devenv +source .venv/bin/activate +cd services/api-service +make install-dev +``` +Then +```cmd +make run-devel +``` + +will start the api-server in development-mode together with a postgres db initialized with test data. Open the following sites and use the test credentials ``user=key, password=secret`` to manually test the API: + +- http://127.0.0.1:8000/docs: redoc documentation +- http://127.0.0.1:8000/dev/docs: swagger type of documentation + + + ## References diff --git a/services/api-server/requirements/_base.in b/services/api-server/requirements/_base.in index 89ed918052c..c7d7f1aae2b 100644 --- a/services/api-server/requirements/_base.in +++ b/services/api-server/requirements/_base.in @@ -5,18 +5,21 @@ -r ../../../packages/postgres-database/requirements/_base.in +# fastapi and extensions fastapi[all] -aiopg[sa] -tenacity -passlib[bcrypt] -loguru +async-exit-stack # not needed when python>=3.7 +async-generator # not needed when python>=3.7 + +# data models pydantic[dotenv] -cryptography -httpx -# TODO: check alternative https://github.com/latchset/jwcrypto/ -pyjwt>=1.7.1 # Vulnerable SEE https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/?_ga=2.21160507.1609921856.1592236287-1918774871.1591379535 +# database +aiopg[sa] +# web client +httpx -async-exit-stack # not needed when python>=3.7 -async-generator # not needed when python>=3.7 +# +attrs +tenacity +cryptography diff --git a/services/api-server/requirements/_base.txt b/services/api-server/requirements/_base.txt index 8bed8f166a8..9b443040e7a 100644 --- a/services/api-server/requirements/_base.txt +++ b/services/api-server/requirements/_base.txt @@ -4,30 +4,29 @@ # # pip-compile --output-file=requirements/_base.txt requirements/_base.in # -aiocontextvars==0.2.2 # via loguru aiofiles==0.5.0 # via fastapi aiopg[sa]==1.0.0 # via -r requirements/_base.in aniso8601==7.0.0 # via graphene async-exit-stack==1.0.1 # via -r requirements/_base.in, fastapi async-generator==1.10 # via -r requirements/_base.in, fastapi -bcrypt==3.1.7 # via passlib -certifi==2020.4.5.2 # via httpx, requests -cffi==1.14.0 # via bcrypt, cryptography +attrs==19.3.0 # via -r requirements/_base.in +certifi==2020.6.20 # via httpx, requests +cffi==1.14.0 # via cryptography chardet==3.0.4 # via httpx, requests click==7.1.2 # via uvicorn -contextvars==2.4 # via aiocontextvars, sniffio +contextvars==2.4 # via sniffio cryptography==2.9.2 # via -r requirements/_base.in dataclasses==0.7 # via pydantic dnspython==1.16.0 # via email-validator email-validator==1.1.1 # via fastapi -fastapi[all]==0.57.0 # via -r requirements/_base.in +fastapi[all]==0.58.0 # via -r requirements/_base.in graphene==2.1.8 # via fastapi graphql-core==2.3.2 # via graphene, graphql-relay graphql-relay==2.0.1 # via graphene h11==0.9.0 # via httpcore, uvicorn h2==3.2.0 # via httpcore hpack==3.0.0 # via h2 -hstspreload==2020.6.9 # via httpx +hstspreload==2020.6.23 # via httpx httpcore==0.9.1 # via httpx httptools==0.1.1 # via uvicorn httpx==0.13.3 # via -r requirements/_base.in @@ -36,23 +35,20 @@ idna==2.9 # via email-validator, httpx, requests, yarl immutables==0.14 # via contextvars itsdangerous==1.1.0 # via fastapi jinja2==2.11.2 # via fastapi -loguru==0.5.1 # via -r requirements/_base.in markupsafe==1.1.1 # via jinja2 multidict==4.7.6 # via yarl -orjson==3.1.0 # via fastapi -passlib[bcrypt]==1.7.2 # via -r requirements/_base.in +orjson==3.1.2 # via fastapi promise==2.3 # via graphql-core, graphql-relay psycopg2-binary==2.8.5 # via aiopg, sqlalchemy pycparser==2.20 # via cffi pydantic[dotenv]==1.5.1 # via -r requirements/_base.in, fastapi -pyjwt==1.7.1 # via -r requirements/_base.in python-dotenv==0.13.0 # via pydantic python-multipart==0.0.5 # via fastapi pyyaml==5.3.1 # via fastapi -requests==2.23.0 # via fastapi +requests==2.24.0 # via fastapi rfc3986==1.4.0 # via httpx rx==1.6.1 # via graphql-core -six==1.15.0 # via bcrypt, cryptography, graphene, graphql-core, graphql-relay, python-multipart, tenacity +six==1.15.0 # via cryptography, graphene, graphql-core, graphql-relay, python-multipart, tenacity sniffio==1.1.0 # via httpcore, httpx sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/../../../packages/postgres-database/requirements/_base.in, aiopg starlette==0.13.4 # via fastapi diff --git a/services/api-server/requirements/_test.in b/services/api-server/requirements/_test.in index 9e44fc7dc40..18fbc1d038a 100644 --- a/services/api-server/requirements/_test.in +++ b/services/api-server/requirements/_test.in @@ -19,6 +19,7 @@ asgi_lifespan # fixtures faker +passlib[bcrypt] # db migration alembic diff --git a/services/api-server/requirements/_test.txt b/services/api-server/requirements/_test.txt index cacef8fad5c..e66f5e54f44 100644 --- a/services/api-server/requirements/_test.txt +++ b/services/api-server/requirements/_test.txt @@ -4,7 +4,6 @@ # # pip-compile --output-file=requirements/_test.txt requirements/_test.in # -aiocontextvars==0.2.2 # via -r requirements/_base.txt, loguru aiofiles==0.5.0 # via -r requirements/_base.txt, fastapi aiohttp==3.6.2 # via pytest-aiohttp aiopg[sa]==1.0.0 # via -r requirements/_base.txt @@ -15,16 +14,16 @@ astroid==2.4.2 # via pylint async-exit-stack==1.0.1 # via -r requirements/_base.txt, asgi-lifespan, fastapi async-generator==1.10 # via -r requirements/_base.txt, fastapi async-timeout==3.0.1 # via aiohttp -attrs==19.3.0 # via aiohttp, pytest, pytest-docker -bcrypt==3.1.7 # via -r requirements/_base.txt, passlib -certifi==2020.4.5.2 # via -r requirements/_base.txt, httpx, requests +attrs==19.3.0 # via -r requirements/_base.txt, aiohttp, pytest, pytest-docker +bcrypt==3.1.7 # via passlib +certifi==2020.6.20 # via -r requirements/_base.txt, httpx, requests cffi==1.14.0 # via -r requirements/_base.txt, bcrypt, cryptography change-case==0.5.2 # via -r requirements/_test.in chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, httpx, requests click==7.1.2 # via -r requirements/_base.txt, uvicorn -codecov==2.1.6 # via -r requirements/_test.in -contextvars==2.4 # via -r requirements/_base.txt, aiocontextvars, sniffio -coverage==4.5.4 # via codecov, coveralls, pytest-cov +codecov==2.1.7 # via -r requirements/_test.in +contextvars==2.4 # via -r requirements/_base.txt, sniffio +coverage==5.1 # via codecov, coveralls, pytest-cov coveralls==2.0.0 # via -r requirements/_test.in cryptography==2.9.2 # via -r requirements/_base.txt dataclasses==0.7 # via -r requirements/_base.txt, pydantic @@ -32,15 +31,15 @@ dnspython==1.16.0 # via -r requirements/_base.txt, email-validator docker==4.2.1 # via -r requirements/_test.in docopt==0.6.2 # via coveralls email-validator==1.1.1 # via -r requirements/_base.txt, fastapi -faker==4.1.0 # via -r requirements/_test.in -fastapi[all]==0.57.0 # via -r requirements/_base.txt +faker==4.1.1 # via -r requirements/_test.in +fastapi[all]==0.58.0 # via -r requirements/_base.txt graphene==2.1.8 # via -r requirements/_base.txt, fastapi graphql-core==2.3.2 # via -r requirements/_base.txt, graphene, graphql-relay graphql-relay==2.0.1 # via -r requirements/_base.txt, graphene h11==0.9.0 # via -r requirements/_base.txt, httpcore, uvicorn h2==3.2.0 # via -r requirements/_base.txt, httpcore hpack==3.0.0 # via -r requirements/_base.txt, h2 -hstspreload==2020.6.9 # via -r requirements/_base.txt, httpx +hstspreload==2020.6.23 # via -r requirements/_base.txt, httpx httpcore==0.9.1 # via -r requirements/_base.txt, httpx httptools==0.1.1 # via -r requirements/_base.txt, uvicorn httpx==0.13.3 # via -r requirements/_base.txt @@ -53,23 +52,21 @@ isort==4.3.21 # via pylint itsdangerous==1.1.0 # via -r requirements/_base.txt, fastapi jinja2==2.11.2 # via -r requirements/_base.txt, -r requirements/_test.in, fastapi lazy-object-proxy==1.4.3 # via astroid -loguru==0.5.1 # via -r requirements/_base.txt mako==1.1.3 # via alembic markupsafe==1.1.1 # via -r requirements/_base.txt, jinja2, mako mccabe==0.6.1 # via pylint more-itertools==8.4.0 # via pytest multidict==4.7.6 # via -r requirements/_base.txt, aiohttp, yarl -orjson==3.1.0 # via -r requirements/_base.txt, fastapi +orjson==3.1.2 # via -r requirements/_base.txt, fastapi packaging==20.4 # via pytest -passlib[bcrypt]==1.7.2 # via -r requirements/_base.txt +passlib[bcrypt]==1.7.2 # via -r requirements/_test.in pluggy==0.13.1 # via pytest promise==2.3 # via -r requirements/_base.txt, graphql-core, graphql-relay psycopg2-binary==2.8.5 # via -r requirements/_base.txt, aiopg, sqlalchemy ptvsd==4.3.2 # via -r requirements/_test.in -py==1.8.1 # via pytest +py==1.8.2 # via pytest pycparser==2.20 # via -r requirements/_base.txt, cffi pydantic[dotenv]==1.5.1 # via -r requirements/_base.txt, fastapi -pyjwt==1.7.1 # via -r requirements/_base.txt pylint==2.5.3 # via -r requirements/_test.in pyparsing==2.4.7 # via packaging pytest-aiohttp==0.3.0 # via -r requirements/_test.in @@ -83,7 +80,7 @@ python-dotenv==0.13.0 # via -r requirements/_base.txt, pydantic python-editor==1.0.4 # via alembic python-multipart==0.0.5 # via -r requirements/_base.txt, fastapi pyyaml==5.3.1 # via -r requirements/_base.txt, fastapi -requests==2.23.0 # via -r requirements/_base.txt, codecov, coveralls, docker, fastapi +requests==2.24.0 # via -r requirements/_base.txt, codecov, coveralls, docker, fastapi rfc3986==1.4.0 # via -r requirements/_base.txt, httpx rx==1.6.1 # via -r requirements/_base.txt, graphql-core six==1.15.0 # via -r requirements/_base.txt, astroid, bcrypt, cryptography, docker, graphene, graphql-core, graphql-relay, packaging, promise, python-dateutil, python-multipart, tenacity, websocket-client @@ -99,7 +96,7 @@ ujson==3.0.0 # via -r requirements/_base.txt, fastapi urllib3==1.25.9 # via -r requirements/_base.txt, requests uvicorn==0.11.5 # via -r requirements/_base.txt, fastapi uvloop==0.14.0 # via -r requirements/_base.txt, uvicorn -wcwidth==0.2.4 # via pytest +wcwidth==0.2.5 # via pytest websocket-client==0.57.0 # via docker websockets==8.1 # via -r requirements/_base.txt, uvicorn wrapt==1.12.1 # via astroid diff --git a/services/api-server/sandbox/_test_client_sdk.py b/services/api-server/sandbox/_test_client_sdk.py deleted file mode 100644 index f2a17a19081..00000000000 --- a/services/api-server/sandbox/_test_client_sdk.py +++ /dev/null @@ -1,209 +0,0 @@ -# pylint: skip-file -# fmt: off - -# simcore_api_sdk.abc.py -import abc as _abc -import json -from pprint import pprint -from typing import Any, Dict, List, Optional - -import aiohttp -# DEV --------------------------------------------------------------------- -import attr -import pytest -# simcore_api_sdk/v0/me_api.py -from attr import NOTHING -from starlette.testclient import TestClient -from yarl import URL - -from simcore_service_api_server import application, endpoints_check -from simcore_service_api_server.__version__ import api_vtag -from simcore_service_api_server.settings import AppSettings - - -@pytest.fixture -def client(monkeypatch) -> TestClient: - monkeypatch.setenv("POSTGRES_USER", "test") - monkeypatch.setenv("POSTGRES_PASSWORD", "test") - monkeypatch.setenv("POSTGRES_DB", "test") - monkeypatch.setenv("LOGLEVEL", "debug") - monkeypatch.setenv("SC_BOOT_MODE", "production") - - # app - test_settings = AppSettings() - app = application.create(settings=test_settings) - - # routes - app.include_router(endpoints_check.router, tags=["check"]) - - # test client: - # Context manager to trigger events: https://fastapi.tiangolo.com/advanced/testing-events/ - with TestClient(app) as cli: - yield cli - - -@attr.s(auto_attribs=True) -class ApiResponse: - status: int - headers: Dict - body: Dict - - -@attr.s(auto_attribs=True) -class ApiConfig: - session: aiohttp.ClientSession - api_key: str = attr.ib(repr=False) - api_secret: str = attr.ib(repr=False) - base_url: URL = URL(f"https://api.osparc.io/{api_vtag}/") - - # TODO: add validation here - - -class API(_abc.ABC): - def __init__(self, cfg: ApiConfig, *, parent=None): - self._cfg = cfg - - async def _make_request( - self, - method: str, - url: str, - *, - url_params: Optional[Dict] = None, - body_params: Optional[Dict] = None, - headers: Optional[Dict] = None, - body: bytes = b"", - **requester_params: Any, - ) -> ApiResponse: - filled_url = self._cfg.base_url # format_url(url, url_params) - - # TODO: it is always json !! - if body_params is not None: - body = json.dumps(body_params) - - resp: aiohttp.ClientResponse = await self._cfg.session.request( - method, filled_url, body, headers, **requester_params - ) - - response = ApiResponse( - status=resp.status, headers=resp.headers, body=await resp.json() - ) - return response - - -# simcore_api_sdk/v0/__init__.py -# from ._openapi import ApiSession - - -class MeAPI(API): - async def get(self): - pass - - async def update(self, *, name: str = NOTHING, full_name: str = NOTHING): - """ - Only writable fields can be updated - """ - - -@attr.s(auto_attribs=True) -class StudiesAPI(API): - _next_page_token: int = NOTHING - - async def list( - self, - *, - page_size: int = NOTHING, - keep_page_token: bool = False, - order_by: str = NOTHING, - filter_fields: str = NOTHING, - ): - pass - - async def get(self, uid: str): - pass - - async def create(self): - pass - - async def update(self, uid: str, *, from_other=None, **study_fields): - # TODO: how update fields like a.b.c.?? - pass - - async def remove(self, uid: str) -> None: - # wait ?? - pass - - -# simcore_api_sdk/v0/_openapi.py -class ApiSession: - def __init__( - self, api_key: str, api_secret: str, base_url: URL = NOTHING, - ): - # TODO: setup auth here - self.session = aiohttp.ClientSession(auth=None) - - cfg = ApiConfig(self.session, api_key, api_secret, base_url) - self._cfg = cfg - - # API - self.me = MeAPI(cfg) - self.studies = StudiesAPI(cfg) - - async def __aenter__(self): - return self - - async def __aexit__(self, exc_type, exc, tb): - await self.session.close() - - -# ---------------------------------------------------- -@pytest.mark.skip(reason="Under dev") -async def test_client_sdk(): - # TODO: design SDK for these calls - # TODO: these examples should run test tests and automaticaly added to redoc - - # from simcore_api_sdk.v0 import ApiSession - - async with ApiSession(api_key="1234", api_secret="secret") as api: - - # GET /me is a special resource that is unique - me: Profile = await api.me.get() - pprint(me) - - # can update SOME entries - await api.me.update(name="pcrespov", full_name="Pedro Crespo") - - # corresponds to the studies I have access ?? - - ## https://cloud.google.com/apis/design/standard_methods - - # GET /studies - studies: List[Dict] = await api.studies.list() - - # Implements Pagination: https://cloud.google.com/apis/design/design_patterns#list_pagination - first_studies = await api.studies.list(page_size=3, keep_page_token=True) - assert api.studies._next_page_token != NOTHING - - next_5_studies = await api.studies.list(page_size=5) - - # Results ordering: https://cloud.google.com/apis/design/design_patterns#sorting_order - sorted_studies: List[Dict] = await api.studies.list(order_by="foo desc,bar") - - # List filter field: https://cloud.google.com/apis/design/naming_convention#list_filter_field - studies: List[Dict] = await api.studies.list(filter_fields="foo.zoo, bar") - assert studies[0] - - # GET /studies/{prj_id} - prj: Dict = await api.studies.get("1234") - - # POST /studies - new_prj: Study = await api.studies.create() - - # PUT or PATCH /studies/{prj_id} - # this is a patch - await api.studies.update(prj.id, description="Bar") - - # this is a put: using copy_from - await api.studies.update(prj.id, copy_from=new_prj) - - # DELETE /studies/{prj_id} - await api.studies.remove(prj.id) diff --git a/services/api-server/sandbox/_test_schemas.py b/services/api-server/sandbox/_test_schemas.py deleted file mode 100644 index 7482c3aba47..00000000000 --- a/services/api-server/sandbox/_test_schemas.py +++ /dev/null @@ -1,21 +0,0 @@ -from typing import Optional - -import sqlalchemy as sa -from aiopg.sa.engine import Engine -from aiopg.sa.result import ResultProxy, RowProxy - -import simcore_api_server.model.pg_tables as tbl -from simcore_api_server.schemas import UserInDB - - -async def test_row_proxy_into_model(engine: Engine): - # test how RowProxy converts into into UserInDB - - with engine.acquire() as conn: - stmt = sa.select([tbl.users,]).where(tbl.users.c.id == 1) - - res: ResultProxy = await conn.execute(stmt) - row: Optional[RowProxy] = await res.fetchone() - - user = UserInDB.from_orm(row) - assert user diff --git a/services/api-server/sandbox/api-key-auth.py b/services/api-server/sandbox/api-key-auth.py deleted file mode 100644 index 824fdb5f8e4..00000000000 --- a/services/api-server/sandbox/api-key-auth.py +++ /dev/null @@ -1,38 +0,0 @@ -# pylint: skip-file -# fmt: off - -import uvicorn -from fastapi import Depends, FastAPI, HTTPException, Security -from fastapi.security.api_key import APIKeyHeader -from starlette.status import HTTP_403_FORBIDDEN - -API_KEY = "1234567asdfgh" -API_KEY_NAME = "access_token" # this is acces - - -def get_active_user( - api_key: str = Security(APIKeyHeader(name=API_KEY_NAME, scheme_name="ApiKeyAuth")) -) -> str: - # the api_key is a jwt created upon login - # - # - decode jwt - # - authenticate user - - if api_key != API_KEY: - raise HTTPException( - status_code=HTTP_403_FORBIDDEN, detail="Invalid credentials" - ) - - return user_id - - -app = FastAPI() - - -@app.get("/foo") -def foo(user_id: str = Depends(get_active_user)): - return f"hi {user_id}" - - -if __name__ == "__main__": - uvicorn.run(app, host="0.0.0.0", port=8000) diff --git a/services/api-server/sandbox/get_app_state.py b/services/api-server/sandbox/get_app_state.py deleted file mode 100644 index 342971bd1dd..00000000000 --- a/services/api-server/sandbox/get_app_state.py +++ /dev/null @@ -1,24 +0,0 @@ -import uvicorn -from fastapi import Depends, FastAPI -from fastapi.applications import State -from fastapi.requests import Request - -app = FastAPI(title="get_app_state") - -# Dependences WITH arguents -def _get_app(request: Request) -> FastAPI: - return request.app - - -def _get_app_state(request: Request) -> State: - return request.app.state - - -@app.get("/app") -async def get_server_ip(my_app: FastAPI = Depends(_get_app)): - assert my_app == app - return my_app.title - - -if __name__ == "__main__": - uvicorn.run(app, host="0.0.0.0", port=8000) diff --git a/services/api-server/sandbox/model_conversions.py b/services/api-server/sandbox/model_conversions.py deleted file mode 100644 index 0c2c4dfc86c..00000000000 --- a/services/api-server/sandbox/model_conversions.py +++ /dev/null @@ -1,91 +0,0 @@ -from pprint import pprint -from typing import List - -import attr -from pydantic import BaseModel, ValidationError, constr -from sqlalchemy import Column, Integer, String -from sqlalchemy.dialects.postgresql import ARRAY -from sqlalchemy.ext.declarative import declarative_base - -# https://pydantic-docs.helpmanual.io/usage/models/#orm-mode-aka-arbitrary-class-instances - -Base = declarative_base() - - -class CompanyOrm(Base): - __tablename__ = "companies" - id = Column(Integer, primary_key=True, nullable=False) - public_key = Column(String(20), index=True, nullable=False, unique=True) - name = Column(String(63), unique=True) - domains = Column(ARRAY(String(255))) - - -class Bar(BaseModel): - apple = "x" - banana = "y" - - -class CompanyModel(BaseModel): - id: int - public_key: constr(max_length=20) - name: constr(max_length=63) - # NO DOMAINS! - other_value: int = 33 - - foo: Bar = Bar() - - class Config: - orm_mode = True - - -@attr.s(auto_attribs=True) -class Company: - id: int - name: str - public_key: str = 55 - - -if __name__ == "__main__": - - co_orm = CompanyOrm( - id=123, - public_key="foobar", - name="Testing", - domains=["example.com", "foobar.com"], - ) - pprint(co_orm) - - print("-" * 30) - - co_model = CompanyModel.from_orm(co_orm) - - print(co_model.__fields_set__) - assert "other_value" not in co_model.__fields_set__ - assert "foo" not in co_model.__fields_set__ - - print("-" * 30) - assert "other_value" in co_model.__fields__ - - pprint(co_model) - pprint(co_model.dict()) - # co_model.json() - - print("-" * 30) - pprint(co_model.schema()) - # co_model.schema_json() -> - - print("-" * 30) - print(co_model.__config__) - - # CAN convert from attr type! ORM is everything with attributes? - obj = Company(22, "pedro", "foo") - - import pdb - - pdb.set_trace() - co_model.from_orm(obj) - - try: - co_model.parse_obj(obj) - except ValidationError as ee: - print("obj has to be a dict!") diff --git a/services/api-server/sandbox/pydantic-settings.py b/services/api-server/sandbox/pydantic-settings.py deleted file mode 100644 index 77bfdbeb8ca..00000000000 --- a/services/api-server/sandbox/pydantic-settings.py +++ /dev/null @@ -1,51 +0,0 @@ -## https://pydantic-docs.helpmanual.io/usage/settings/#dotenv-env-support -import os -from pathlib import Path - -from pydantic import BaseSettings, SecretStr - -env_path = Path(".env-ignore") - -env_path.write_text( - """ -# ignore comment -ENVIRONMENT="production" -REDIS_ADDRESS=localhost:6379 -MEANING_OF_LIFE=4000000 -MY_VAR='Hello world' -POSTGRES_USER=test -POSTGRES_PASSWORD=test -POSTGRES_DB=test -""" -) - - -os.environ["MEANING_OF_LIFE"] = "42" - - -class PostgresSettings(BaseSettings): - user: str - password: SecretStr - db: str - - class Config: - env_file = env_path - env_prefix = "POSTGRES_" - - -class Settings(BaseSettings): - environment: str - meaning_of_life: int = 33 - - pg = PostgresSettings() - - class Config: - env_file = env_path - - -settings = Settings() - -print(settings.json()) -assert settings.meaning_of_life == 42 -assert settings.environment == "production" -assert settings.pg.password.get_secret_value() == "test" diff --git a/services/api-server/sandbox/simple_app.py b/services/api-server/sandbox/simple_app.py deleted file mode 100644 index 7fccb34353c..00000000000 --- a/services/api-server/sandbox/simple_app.py +++ /dev/null @@ -1,45 +0,0 @@ -# pylint: skip-file -# fmt: off - -import json -from pathlib import Path -from typing import Dict, List, Optional, Tuple - -import uvicorn -from fastapi import Depends, FastAPI -from fastapi.requests import Request -from pydantic import BaseModel, Field - -app = FastAPI(title="My app") - - -def _get_app(request: Request) -> FastAPI: - return request.app - - -def get_my_user_id(app: FastAPI): - return 3 - - -class ItemFOO(BaseModel): - name: str - description: str = None - price: float - tax: Optional[float] = Field(None, description="description tax") - - -@app.post("/studies/{study_id}") -async def get_studies(q: int, study_id: int, body: List[ItemFOO]) -> ItemFOO: - - return body - - -def dump_oas(): - Path("openapi-ignore.json").write_text(json.dumps(app.openapi(), indent=2)) - - -app.add_event_handler("startup", dump_oas) - -if __name__ == "__main__": - - uvicorn.run("simple_app:app", reload=True, port=8002) diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py deleted file mode 100644 index 9bcb8e6a962..00000000000 --- a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_api_key.py +++ /dev/null @@ -1,46 +0,0 @@ -from typing import Optional - -from fastapi import Depends, HTTPException, Security, status -from fastapi.security.api_key import APIKeyHeader - -from ...db.repositories.users import UsersRepository -from ...models.schemas.tokens import TokenData -from ...services.jwt import get_access_token_data -from .database import get_repository - -# Declaration of security scheme: -# - Adds components.securitySchemes['APiKey'] to openapi.yaml -# - callable with request as argument -> extracts token from Authentication header -# - - -API_KEY_NAME = "APIKey" -api_key_scheme = APIKeyHeader(name=API_KEY_NAME) - - -async def get_current_user_id( - access_token: str = Security(api_key_scheme), - users_repo: UsersRepository = Depends(get_repository(UsersRepository)), -) -> int: - def _create_credentials_exception(msg: str): - - return HTTPException( - status_code=status.HTTP_401_UNAUTHORIZED, - detail=msg, - headers={"WWW-Authenticate": API_KEY_NAME}, - ) - - # decodes and validates jwt-based access token - token_data: Optional[TokenData] = get_access_token_data(access_token) - if token_data is None: - raise _create_credentials_exception("Could not validate credentials") - - # identify user - identified = await users_repo.any_user_with_id(token_data.user_id) - if not identified: - raise _create_credentials_exception("Could not validate credentials") - - return token_data.user_id - - -get_active_user_id = get_current_user_id diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py deleted file mode 100644 index 809298acf33..00000000000 --- a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_basic.py +++ /dev/null @@ -1,48 +0,0 @@ -from fastapi import Depends, HTTPException, Security, status -from fastapi.security import HTTPBasic, HTTPBasicCredentials - -from ...db.repositories.api_keys import ApiKeysRepository -from ...db.repositories.users import UsersRepository -from .database import get_repository - -# SEE https://swagger.io/docs/specification/authentication/basic-authentication/ -basic_scheme = HTTPBasic() - - -def _create_exception(): - _unauthorized_headers = { - "WWW-Authenticate": f'Basic realm="{basic_scheme.realm}"' - if basic_scheme.realm - else "Basic" - } - return HTTPException( - status_code=status.HTTP_401_UNAUTHORIZED, - detail="Invalid API credentials", - headers=_unauthorized_headers, - ) - - -async def get_current_user_id( - credentials: HTTPBasicCredentials = Security(basic_scheme), - apikeys_repo: ApiKeysRepository = Depends(get_repository(ApiKeysRepository)), -) -> int: - user_id = await apikeys_repo.get_user_id( - api_key=credentials.username, api_secret=credentials.password - ) - if not user_id: - raise _create_exception() - return user_id - - -async def get_active_user_email( - user_id: int = Depends(get_current_user_id), - users_repo: UsersRepository = Depends(get_repository(UsersRepository)), -) -> str: - email = await users_repo.get_email_from_user_id(user_id) - if not email: - raise _create_exception() - return email - - -# alias -get_active_user_id = get_current_user_id diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py b/services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py deleted file mode 100644 index 806ae19c519..00000000000 --- a/services/api-server/src/simcore_service_api_server/api/dependencies/auth_oath2.py +++ /dev/null @@ -1,100 +0,0 @@ -""" This submodule includes responsibilities from authorization server - - +--------+ +---------------+ - | |--(A)- Authorization Request ->| Resource | - | | | Owner | Authorization request - | |<-(B)-- Authorization Grant ---| | - | | +---------------+ - | | - | | +---------------+ - | |--(C)-- Authorization Grant -->| Authorization | - | Client | | Server | Token request - | |<-(D)----- Access Token -------| | - | | +---------------+ - | | - | | +---------------+ - | |--(E)----- Access Token ------>| Resource | - | | | Server | - | |<-(F)--- Protected Resource ---| | - +--------+ +---------------+ - - Figure 1: Abstract Protocol Flow - -SEE - - https://oauth.net/2/ - - https://tools.ietf.org/html/rfc6749 -""" -# TODO: this module shall delegate the auth functionality to a separate service - -from typing import Optional - -from fastapi import Depends, HTTPException, Security, status -from fastapi.security import OAuth2PasswordBearer, SecurityScopes -from loguru import logger - -from ...__version__ import api_vtag -from ...db.repositories.users import UsersRepository -from ...models.schemas.tokens import TokenData -from ...services.jwt import get_access_token_data -from .database import get_repository - -# Declaration of security scheme: -# - Adds components.securitySchemes['OAuth2PasswordBearer'] to openapi.yaml -# - callable with request as argument -> extracts token from Authentication header -# -# TODO: check organization of scopes in other APIs -oauth2_scheme = OAuth2PasswordBearer( - tokenUrl=f"{api_vtag}/token", - scopes={"read": "Read-only access", "write": "Write access"}, -) - - -async def get_current_user_id( - security_scopes: SecurityScopes, - access_token: str = Depends(oauth2_scheme), - users_repo: UsersRepository = Depends(get_repository(UsersRepository)), -) -> int: - """ - access_token: extracted access_token from request header - security_scopes: iterable with all REQUIRED scopes to run operation - """ - - def _create_credentials_exception(msg: str): - authenticate_value = "Bearer" - if security_scopes.scopes: - authenticate_value += f' scope="{security_scopes.scope_str}"' - - return HTTPException( - status_code=status.HTTP_401_UNAUTHORIZED, - detail=msg, - headers={"WWW-Authenticate": authenticate_value}, - ) - - # decodes and validates jwt-based access token - token_data: Optional[TokenData] = get_access_token_data(access_token) - if token_data is None: - raise _create_credentials_exception("Could not validate credentials") - - # identify user - identified = await users_repo.any_user_with_id(token_data.user_id) - if not identified: - raise _create_credentials_exception("Could not validate credentials") - - # Checks whether user has ALL required scopes for this call - for required_scope in security_scopes.scopes: - if required_scope not in token_data.scopes: - logger.debug( - "Access denied. Client is missing required scope '{}' ", required_scope - ) - raise _create_credentials_exception( - "Missing required scope for this operation" - ) - - return token_data.user_id - - -async def get_active_user_id( - current_user_id: int = Security(get_current_user_id, scopes=["read"]) -) -> int: - # FIXME: Adds read scope. rename properly and activate scopes - return current_user_id diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py b/services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py index 84cbbf6d0c6..809298acf33 100644 --- a/services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/authentication.py @@ -1,3 +1,48 @@ -from .auth_basic import get_active_user_email, get_active_user_id +from fastapi import Depends, HTTPException, Security, status +from fastapi.security import HTTPBasic, HTTPBasicCredentials -__all__ = ["get_active_user_id", "get_active_user_email"] +from ...db.repositories.api_keys import ApiKeysRepository +from ...db.repositories.users import UsersRepository +from .database import get_repository + +# SEE https://swagger.io/docs/specification/authentication/basic-authentication/ +basic_scheme = HTTPBasic() + + +def _create_exception(): + _unauthorized_headers = { + "WWW-Authenticate": f'Basic realm="{basic_scheme.realm}"' + if basic_scheme.realm + else "Basic" + } + return HTTPException( + status_code=status.HTTP_401_UNAUTHORIZED, + detail="Invalid API credentials", + headers=_unauthorized_headers, + ) + + +async def get_current_user_id( + credentials: HTTPBasicCredentials = Security(basic_scheme), + apikeys_repo: ApiKeysRepository = Depends(get_repository(ApiKeysRepository)), +) -> int: + user_id = await apikeys_repo.get_user_id( + api_key=credentials.username, api_secret=credentials.password + ) + if not user_id: + raise _create_exception() + return user_id + + +async def get_active_user_email( + user_id: int = Depends(get_current_user_id), + users_repo: UsersRepository = Depends(get_repository(UsersRepository)), +) -> str: + email = await users_repo.get_email_from_user_id(user_id) + if not email: + raise _create_exception() + return email + + +# alias +get_active_user_id = get_current_user_id diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/database.py b/services/api-server/src/simcore_service_api_server/api/dependencies/database.py index 96903570029..ef94b71e26c 100644 --- a/services/api-server/src/simcore_service_api_server/api/dependencies/database.py +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/database.py @@ -4,7 +4,7 @@ from fastapi import Depends from fastapi.requests import Request -from ...db.repositories.base import BaseRepository +from ...db.repositories import BaseRepository def _get_db_engine(request: Request) -> Engine: diff --git a/services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py b/services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py index dd387f12c9a..e36d8390fc9 100644 --- a/services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py +++ b/services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py @@ -3,16 +3,20 @@ from typing import Dict, Optional from cryptography.fernet import Fernet -from fastapi import Depends, HTTPException, status +from fastapi import Depends, FastAPI, HTTPException, status from fastapi.requests import Request -from httpx import AsyncClient from ...core.settings import AppSettings, WebServerSettings +from ...services.webserver import AuthSession from .authentication import get_active_user_email UNAVAILBLE_MSG = "backend service is disabled or unreachable" +def _get_app(request: Request) -> FastAPI: + return request.app + + def _get_settings(request: Request) -> WebServerSettings: app_settings: AppSettings = request.app.state.settings return app_settings.webserver @@ -22,13 +26,6 @@ def _get_encrypt(request: Request) -> Optional[Fernet]: return getattr(request.app.state, "webserver_fernet", None) -def get_webserver_client(request: Request) -> AsyncClient: - client = getattr(request.app.state, "webserver_client", None) - if not client: - raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE, detail=UNAVAILBLE_MSG) - return client - - def get_session_cookie( identity: str = Depends(get_active_user_email), settings: WebServerSettings = Depends(_get_settings), @@ -53,3 +50,14 @@ def get_session_cookie( encrypted_cookie_data = fernet.encrypt(cookie_data).decode("utf-8") return {cookie_name: encrypted_cookie_data} + + +def get_webserver_session( + app: FastAPI = Depends(_get_app), + session_cookies: Dict = Depends(get_session_cookie), +) -> AuthSession: + """ + Lifetime of AuthSession wrapper is one request because it needs different session cookies + Lifetime of embedded client is attached to the app lifetime + """ + return AuthSession.create(app, session_cookies) diff --git a/services/api-server/src/simcore_service_api_server/api/root.py b/services/api-server/src/simcore_service_api_server/api/root.py index cab791b02c1..b3a6454d7ae 100644 --- a/services/api-server/src/simcore_service_api_server/api/root.py +++ b/services/api-server/src/simcore_service_api_server/api/root.py @@ -4,12 +4,7 @@ router = APIRouter() router.include_router(health.router) -router.include_router(meta.router, tags=["meta"], prefix="/meta") - -# TODO: keeps for oauth or apikey schemes -# router.include_router(authentication.router, tags=["authentication"], prefix="/users") +# API +router.include_router(meta.router, tags=["meta"], prefix="/meta") router.include_router(users.router, tags=["users"], prefix="/me") - -## TODO: disables studies for the moment -# router.include_router(studies.router, tags=["studies"], prefix="/studies") diff --git a/services/api-server/src/simcore_service_api_server/api/routes/authentication/__init__.py b/services/api-server/src/simcore_service_api_server/api/routes/authentication/__init__.py deleted file mode 100644 index e69de29bb2d..00000000000 diff --git a/services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py b/services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py deleted file mode 100644 index 385887dbbbe..00000000000 --- a/services/api-server/src/simcore_service_api_server/api/routes/authentication/api_key.py +++ /dev/null @@ -1,15 +0,0 @@ -# FIXME: Until tests -# pylint: skip-file -# - -from fastapi import APIRouter - -router = APIRouter() - - -@router.post("/login", response_model=UserInResponse, name="auth:login") -async def login( - user_login: UserInLogin = Body(..., embed=True, alias="user"), - users_repo: UsersRepository = Depends(get_repository(UsersRepository)), -) -> UserInResponse: - pass diff --git a/services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py b/services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py deleted file mode 100644 index 1502be49133..00000000000 --- a/services/api-server/src/simcore_service_api_server/api/routes/authentication/oauth2.py +++ /dev/null @@ -1,77 +0,0 @@ -from io import StringIO -from typing import Optional - -from fastapi import APIRouter, Depends, HTTPException -from fastapi.security import OAuth2PasswordRequestForm -from loguru import logger - -from ....db.repositories.users import UsersRepository -from ....models.schemas.tokens import Token, TokenData -from ....services.jwt import create_access_token -from ....services.serialization import json_dumps -from ...dependencies.database import get_repository - -router = APIRouter() - - -def _compose_msg(*, fd=None, rd=None) -> str: - assert not (fd ^ rd), "Mutally exclusive" # nosec - - stream = StringIO() - - if fd: - print("Form Request", "-" * 20, file=stream) - for ( - attr - ) in "grant_type username password scopes client_id client_secret".split(): - print("-", attr, ":", getattr(fd, attr), file=stream) - print("-" * 20, file=stream) - elif rd: - print("{:-^30}".format("/token response"), file=stream) - print(json_dumps(rd), file=stream) - print("-" * 30, file=stream) - - return stream.getvalue() - - -# NOTE: this path has to be the same as simcore_service_api_server.auth.oauth2_scheme -@router.post("/token", response_model=Token) -async def login_for_access_token( - form_data: OAuth2PasswordRequestForm = Depends(), - users_repo: UsersRepository = Depends(get_repository(UsersRepository)), -): - """ - Returns an access-token provided a valid authorization grant - """ - - # - # - This entrypoint is part of the Authorization Server - # - Implements access point to obtain access-tokens - # - # | | +---------------+ - # | |--(C)-- Authorization Grant -->| Authorization | - # | Client | | Server | Token request - # | |<-(D)----- Access Token -------| | - # | | +---------------+ - # - - logger.debug(_compose_msg(fd=form_data)) - - user_id: Optional[int] = await users_repo.get_user_id( - user=form_data.username, password=form_data.password - ) - - # TODO: check is NOT banned - - if not user_id: - raise HTTPException(status_code=400, detail="Incorrect username or password") - - # FIXME: expiration disabled since for the moment we do NOT have any renewal mechanims in place!!! - access_token = create_access_token(TokenData(user_id), expires_in_mins=None) - - # NOTE: this reponse is defined in Oath2 - resp_data = {"access_token": access_token, "token_type": "bearer"} - - logger.debug(_compose_msg(rd=resp_data)) - - return resp_data diff --git a/services/api-server/src/simcore_service_api_server/api/routes/studies.py b/services/api-server/src/simcore_service_api_server/api/routes/studies.py deleted file mode 100644 index 953e096a331..00000000000 --- a/services/api-server/src/simcore_service_api_server/api/routes/studies.py +++ /dev/null @@ -1,50 +0,0 @@ -from fastapi import APIRouter, Security - -from ..dependencies.authentication import get_active_user_id - -router = APIRouter() - - -@router.get("") -async def list_studies(user_id: int = Security(get_active_user_id, scopes=["read"])): - # TODO: Replace code by calls to web-server api - return [{"project_id": "Foo", "owner": user_id}] - - -@router.get("/{study_id}") -async def get_study( - study_id: str, user_id: int = Security(get_active_user_id, scopes=["read"]), -): - # TODO: Replace code by calls to web-server api - return [{"project_id": study_id, "owner": user_id}] - - -@router.post("") -async def create_study(user_id: int = Security(get_active_user_id, scopes=["write"])): - # TODO: Replace code by calls to web-server api - return {"project_id": "Foo", "owner": user_id} - - -@router.put("/{study_id}") -async def replace_study( - study_id: str, user_id: int = Security(get_active_user_id, scopes=["write"]), -): - # TODO: Replace code by calls to web-server api - return {"project_id": study_id, "owner": user_id} - - -@router.patch("/{study_id}") -async def update_study( - study_id: str, user_id: int = Security(get_active_user_id, scopes=["write"]), -): - # TODO: Replace code by calls to web-server api - return {"project_id": study_id, "owner": user_id} - - -@router.delete("/{study_id}") -async def delete_study( - study_id: str, user_id: int = Security(get_active_user_id, scopes=["write"]), -): - # TODO: Replace code by calls to web-server api - _data = {"project_id": study_id, "owner": user_id} - return None diff --git a/services/api-server/src/simcore_service_api_server/api/routes/users.py b/services/api-server/src/simcore_service_api_server/api/routes/users.py index b1076647bf1..096c39e2b9e 100644 --- a/services/api-server/src/simcore_service_api_server/api/routes/users.py +++ b/services/api-server/src/simcore_service_api_server/api/routes/users.py @@ -1,64 +1,48 @@ -from typing import Dict +import logging from fastapi import APIRouter, Depends, HTTPException, Security -from httpx import AsyncClient, Response, StatusCode -from loguru import logger - -# SEE: https://www.python-httpx.org/async/ -# TODO: path mapping and operation -# TODO: if fails, raise for status and translates to service unavailable if fails -# from pydantic import ValidationError from starlette import status from ...models.schemas.profiles import Profile, ProfileUpdate -from ..dependencies.webserver import get_session_cookie, get_webserver_client +from ..dependencies.webserver import AuthSession, get_webserver_session + +logger = logging.getLogger(__name__) + router = APIRouter() +# SEE: https://www.python-httpx.org/async/ +# TODO: path mapping and operation @router.get("", response_model=Profile) async def get_my_profile( - client: AsyncClient = Depends(get_webserver_client), - session_cookies: Dict = Depends(get_session_cookie), + client: AuthSession = Depends(get_webserver_session), ) -> Profile: - resp = await client.get("/v0/me", cookies=session_cookies) - - if resp.status_code == status.HTTP_200_OK: - data = resp.json()["data"] - try: - # FIXME: temporary patch until web-API is reviewed - data["role"] = data["role"].upper() - profile = Profile.parse_obj(data) - return profile - except ValidationError: - logger.exception("webserver response invalid") - raise - - elif StatusCode.is_server_error(resp.status_code): - logger.error("webserver failed :{}", resp.reason_phrase) + data = await client.get("/me") + + # FIXME: temporary patch until web-API is reviewed + data["role"] = data["role"].upper() + try: + profile = Profile.parse_obj(data) + except ValidationError: + logger.exception("webserver invalid response") raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE) - raise HTTPException(resp.status_code, resp.reason_phrase) + return profile @router.put("", response_model=Profile) async def update_my_profile( profile_update: ProfileUpdate, - client: AsyncClient = Depends(get_webserver_client), - session_cookies: Dict = Security(get_session_cookie, scopes=["write"]), + client: AuthSession = Security(get_webserver_session, scopes=["write"]), ) -> Profile: # FIXME: replace by patch # TODO: improve. from patch -> put, we need to ensure it has a default in place profile_update.first_name = profile_update.first_name or "" profile_update.last_name = profile_update.last_name or "" - resp: Response = await client.put( - "/v0/me", json=profile_update.dict(), cookies=session_cookies - ) - if StatusCode.is_error(resp.status_code): - logger.error("webserver failed: {}", resp.reason_phrase) - raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE) + await client.put("/me", body=profile_update.dict()) - profile = await get_my_profile(client, session_cookies) + profile = await get_my_profile(client) return profile diff --git a/services/api-server/src/simcore_service_api_server/core/application.py b/services/api-server/src/simcore_service_api_server/core/application.py index 5f452974dd4..2cff3fbd259 100644 --- a/services/api-server/src/simcore_service_api_server/core/application.py +++ b/services/api-server/src/simcore_service_api_server/core/application.py @@ -1,9 +1,8 @@ -import sys +import logging from typing import Optional from fastapi import FastAPI from fastapi.exceptions import RequestValidationError -from loguru import logger from starlette.exceptions import HTTPException from ..__version__ import api_version, api_vtag @@ -16,12 +15,15 @@ from .redoc import create_redoc_handler from .settings import AppSettings +logger = logging.getLogger(__name__) + def init_app(settings: Optional[AppSettings] = None) -> FastAPI: if settings is None: settings = AppSettings.create_default() - logger.add(sys.stderr, level=settings.loglevel) + logging.basicConfig(level=settings.loglevel) + logging.root.setLevel(settings.loglevel) app = FastAPI( debug=settings.debug, diff --git a/services/api-server/src/simcore_service_api_server/core/events.py b/services/api-server/src/simcore_service_api_server/core/events.py index 1a1fd646857..4ca73d97686 100644 --- a/services/api-server/src/simcore_service_api_server/core/events.py +++ b/services/api-server/src/simcore_service_api_server/core/events.py @@ -1,13 +1,15 @@ +import logging from typing import Callable from fastapi import FastAPI -from loguru import logger from ..db.events import close_db_connection, connect_to_db from ..services.remote_debug import setup_remote_debugging from ..services.webserver import close_webserver, setup_webserver from .settings import BootModeEnum +logger = logging.getLogger(__name__) + def create_start_app_handler(app: FastAPI) -> Callable: async def start_app() -> None: @@ -29,12 +31,14 @@ async def start_app() -> None: def create_stop_app_handler(app: FastAPI) -> Callable: - @logger.catch async def stop_app() -> None: - logger.info("Application stopping") - if app.state.settings.postgres.enabled: - await close_db_connection(app) - if app.state.settings.webserver.enabled: - await close_webserver(app) + try: + logger.info("Application stopping") + if app.state.settings.postgres.enabled: + await close_db_connection(app) + if app.state.settings.webserver.enabled: + await close_webserver(app) + except Exception: # pylint: disable=broad-except + logger.exception("Stopping application") return stop_app diff --git a/services/api-server/src/simcore_service_api_server/core/openapi.py b/services/api-server/src/simcore_service_api_server/core/openapi.py index f1c3df7b1a7..b0b3286f372 100644 --- a/services/api-server/src/simcore_service_api_server/core/openapi.py +++ b/services/api-server/src/simcore_service_api_server/core/openapi.py @@ -1,4 +1,5 @@ import json +import logging import types from pathlib import Path from typing import Dict @@ -7,10 +8,11 @@ from fastapi import FastAPI from fastapi.openapi.utils import get_openapi from fastapi.routing import APIRoute -from loguru import logger from .redoc import add_vendor_extensions, compose_long_description +logger = logging.getLogger(__name__) + def override_openapi_method(app: FastAPI): # TODO: test openapi(*) member does not change interface @@ -55,7 +57,7 @@ def use_route_names_as_operation_ids(app: FastAPI) -> None: def dump_openapi(app: FastAPI, filepath: Path): - logger.info("Dumping openapi specs as {}", filepath) + logger.info("Dumping openapi specs as %s", filepath) with open(filepath, "wt") as fh: if filepath.suffix == ".json": json.dump(app.openapi(), fh, indent=2) diff --git a/services/api-server/src/simcore_service_api_server/db/events.py b/services/api-server/src/simcore_service_api_server/db/events.py index 8523967ddb4..eebdcb7c9d8 100644 --- a/services/api-server/src/simcore_service_api_server/db/events.py +++ b/services/api-server/src/simcore_service_api_server/db/events.py @@ -3,11 +3,13 @@ from aiopg.sa import Engine, create_engine from fastapi import FastAPI -from loguru import logger from tenacity import before_sleep_log, retry, stop_after_attempt, wait_fixed from ..core.settings import PostgresSettings +logger = logging.getLogger(__name__) + + ENGINE_ATTRS = "closed driver dsn freesize maxsize minsize name size timeout".split() @@ -30,7 +32,7 @@ def _compose_info_on_engine(app: FastAPI) -> str: @retry(**pg_retry_policy) async def connect_to_db(app: FastAPI) -> None: - logger.debug("Connenting db ...") + logger.debug("Connecting db ...") cfg: PostgresSettings = app.state.settings.postgres engine: Engine = await create_engine( @@ -39,7 +41,7 @@ async def connect_to_db(app: FastAPI) -> None: minsize=cfg.minsize, maxsize=cfg.maxsize, ) - logger.debug("Connected to {}", engine.dsn) + logger.debug("Connected to %s", engine.dsn) app.state.engine = engine logger.debug(_compose_info_on_engine(app)) @@ -51,4 +53,4 @@ async def close_db_connection(app: FastAPI) -> None: engine: Engine = app.state.engine engine.close() await engine.wait_closed() - logger.debug("Disconnected from {}", engine.dsn) + logger.debug("Disconnected from %s", engine.dsn) diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/__init__.py b/services/api-server/src/simcore_service_api_server/db/repositories/__init__.py index e69de29bb2d..a5eeffe1ff5 100644 --- a/services/api-server/src/simcore_service_api_server/db/repositories/__init__.py +++ b/services/api-server/src/simcore_service_api_server/db/repositories/__init__.py @@ -0,0 +1 @@ +from ._base import BaseRepository diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/base.py b/services/api-server/src/simcore_service_api_server/db/repositories/_base.py similarity index 100% rename from services/api-server/src/simcore_service_api_server/db/repositories/base.py rename to services/api-server/src/simcore_service_api_server/db/repositories/_base.py diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py b/services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py index 7602e872daf..e24ebc30d32 100644 --- a/services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py +++ b/services/api-server/src/simcore_service_api_server/db/repositories/api_keys.py @@ -1,15 +1,17 @@ +import logging from typing import Optional import sqlalchemy as sa -from loguru import logger from psycopg2 import DatabaseError from .. import tables as tbl -from .base import BaseRepository +from ._base import BaseRepository -# from ...models.domain.users import User, UserInDB +logger = logging.getLogger(__name__) -# For psycopg2 errors SEE https://www.psycopg.org/docs/errors.html#sqlstate-exception-classes + +# TODO: see if can use services/api-server/src/simcore_service_api_server/models/domain/api_keys.py +# NOTE: For psycopg2 errors SEE https://www.psycopg.org/docs/errors.html#sqlstate-exception-classes class ApiKeysRepository(BaseRepository): @@ -25,7 +27,7 @@ async def get_user_id(self, api_key: str, api_secret: str) -> Optional[int]: user_id: Optional[int] = await self.connection.scalar(stmt) except DatabaseError as err: - logger.debug(f"Failed to get user id: {err}") + logger.debug("Failed to get user id: %s", err) user_id = None return user_id diff --git a/services/api-server/src/simcore_service_api_server/db/repositories/users.py b/services/api-server/src/simcore_service_api_server/db/repositories/users.py index f10ab46e081..c60400544ce 100644 --- a/services/api-server/src/simcore_service_api_server/db/repositories/users.py +++ b/services/api-server/src/simcore_service_api_server/db/repositories/users.py @@ -1,12 +1,9 @@ -import hashlib -from typing import List, Optional +from typing import Optional import sqlalchemy as sa -from aiopg.sa.result import RowProxy -from ...models.schemas.profiles import Profile -from ..tables import GroupType, api_keys, groups, user_to_groups, users -from .base import BaseRepository +from ..tables import api_keys, users +from ._base import BaseRepository class UsersRepository(BaseRepository): @@ -18,7 +15,6 @@ async def get_user_id(self, api_key: str, api_secret: str) -> Optional[int]: return user_id async def any_user_with_id(self, user_id: int) -> bool: - # FIXME: shall identify api_key or api_secret instead stmt = sa.select([api_keys.c.user_id,]).where(api_keys.c.user_id == user_id) return (await self.connection.scalar(stmt)) is not None @@ -26,82 +22,3 @@ async def get_email_from_user_id(self, user_id: int) -> Optional[str]: stmt = sa.select([users.c.email,]).where(users.c.id == user_id) email: Optional[str] = await self.connection.scalar(stmt) return email - - # TEMPORARY ---- - async def get_profile_from_userid(self, user_id: int) -> Optional[Profile]: - stmt = ( - sa.select( - [ - users.c.email, - users.c.role, - users.c.name, - users.c.primary_gid, - groups.c.gid, - groups.c.name, - groups.c.description, - groups.c.type, - ], - use_labels=True, - ) - .select_from( - users.join( - user_to_groups.join(groups, user_to_groups.c.gid == groups.c.gid), - users.c.id == user_to_groups.c.uid, - ) - ) - .where(users.c.id == user_id) - .order_by(sa.asc(groups.c.name)) - ) - - # all user_group combinations but only the group changes - result = await self.connection.execute(stmt) - user_groups: List[RowProxy] = await result.fetchall() - - if not user_groups: - return None - - # get the primary group and the all group - user_primary_group = all_group = {} - other_groups = [] - for user_group in user_groups: - if user_group["users_primary_gid"] == user_group["groups_gid"]: - user_primary_group = user_group - elif user_group["groups_type"] == GroupType.EVERYONE: - all_group = user_group - else: - other_groups.append(user_group) - - parts = user_primary_group["users_name"].split(".") + [""] - return Profile.parse_obj( - { - "login": user_primary_group["users_email"], - "first_name": parts[0], - "last_name": parts[1], - "role": user_primary_group["users_role"].name.capitalize(), - "gravatar_id": gravatar_hash(user_primary_group["users_email"]), - "groups": { - "me": { - "gid": user_primary_group["groups_gid"], - "label": user_primary_group["groups_name"], - "description": user_primary_group["groups_description"], - }, - "organizations": [ - { - "gid": group["groups_gid"], - "label": group["groups_name"], - "description": group["groups_description"], - } - for group in other_groups - ], - "all": { - "gid": all_group["groups_gid"], - "label": all_group["groups_name"], - "description": all_group["groups_description"], - }, - }, - } - ) - - -def gravatar_hash(email: str) -> str: - return hashlib.md5(email.lower().encode("utf-8")).hexdigest() # nosec diff --git a/services/api-server/src/simcore_service_api_server/models/domain/users.py b/services/api-server/src/simcore_service_api_server/models/domain/users.py deleted file mode 100644 index 5b35d3fc388..00000000000 --- a/services/api-server/src/simcore_service_api_server/models/domain/users.py +++ /dev/null @@ -1,32 +0,0 @@ -from pydantic import BaseModel, EmailStr, Field - -from simcore_postgres_database.models.users import UserRole, UserStatus - -from .groups import Groups - - -class UserBase(BaseModel): - first_name: str - last_name: str - - -class User(UserBase): - login: EmailStr - role: str - groups: Groups - gravatar_id: str - - -class UserInDB(BaseModel): - id_: int = Field(0, alias="id") - name: str - email: str - password_hash: str - primary_gid: int - status: UserStatus - role: UserRole - - # TODO: connect name <-> first_name, last_name - - class Config: - orm_mode = True diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py b/services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py deleted file mode 100644 index 8201495e219..00000000000 --- a/services/api-server/src/simcore_service_api_server/models/schemas/api_keys.py +++ /dev/null @@ -1,12 +0,0 @@ -from pydantic import BaseModel - -from ..domain.api_keys import ApiKey - - -class ApiKeyInLogin(ApiKey): - pass - - -class ApiKeyInResponse(BaseModel): - display_name: str - token: str diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/tokens.py b/services/api-server/src/simcore_service_api_server/models/schemas/tokens.py deleted file mode 100644 index 89fb7692f24..00000000000 --- a/services/api-server/src/simcore_service_api_server/models/schemas/tokens.py +++ /dev/null @@ -1,25 +0,0 @@ -from datetime import datetime -from typing import List - -from pydantic import BaseModel - - -class JWTMeta(BaseModel): - exp: datetime - sub: str - - -class JWTUser(BaseModel): - username: str - - -class Token(BaseModel): - access_token: str - token_type: str - - -class TokenData(BaseModel): - """ application data encoded in the JWT """ - - user_id: int - scopes: List[str] = [] diff --git a/services/api-server/src/simcore_service_api_server/models/schemas/users.py b/services/api-server/src/simcore_service_api_server/models/schemas/users.py deleted file mode 100644 index 32e51ae900f..00000000000 --- a/services/api-server/src/simcore_service_api_server/models/schemas/users.py +++ /dev/null @@ -1,12 +0,0 @@ -from pydantic import BaseModel - -from ..domain.users import User - - -class UserInResponse(User): - pass - - -class UserInUpdate(BaseModel): - first_name: str - last_name: str diff --git a/services/api-server/src/simcore_service_api_server/services/jwt.py b/services/api-server/src/simcore_service_api_server/services/jwt.py deleted file mode 100644 index c3aed9445ce..00000000000 --- a/services/api-server/src/simcore_service_api_server/services/jwt.py +++ /dev/null @@ -1,66 +0,0 @@ -""" Utility functions related with security - -""" -import os -from datetime import datetime, timedelta -from typing import Dict, Optional - -import jwt -from jwt import PyJWTError -from loguru import logger -from pydantic import ValidationError - -from ..models.schemas.tokens import TokenData - -# JSON WEB TOKENS (JWT) -------------------------------------------------------------- - -__SIGNING_KEY__ = os.environ.get("SECRET_KEY") -__ALGORITHM__ = "HS256" -ACCESS_TOKEN_EXPIRE_MINUTES = 30 - - -def create_access_token( - data: TokenData, *, expires_in_mins: Optional[int] = ACCESS_TOKEN_EXPIRE_MINUTES -) -> str: - """ - To disable expiration, set 'expires_in_mins' to None - """ - # JWT specs define "Claim Names" for the encoded payload - # SEE https://tools.ietf.org/html/rfc7519#section-4 - payload = { - "sub": data.user_id, - "scopes": data.scopes or [], - } - - if expires_in_mins is not None: - exp = datetime.utcnow() + timedelta(minutes=expires_in_mins) - payload["exp"] = exp - - encoded_jwt = jwt.encode(payload, __SIGNING_KEY__, algorithm=__ALGORITHM__) - return encoded_jwt - - -def get_access_token_data(encoded_jwt: str) -> Optional[TokenData]: - """ - Decodes and validates JWT and returns TokenData - Returns None, if invalid token - """ - try: - # decode JWT [header.payload.signature] and get payload: - payload: Dict = jwt.decode( - encoded_jwt, __SIGNING_KEY__, algorithms=[__ALGORITHM__] - ) - - token_data = TokenData( - user_id=payload.get("sub"), token_scopes=payload.get("scopes", []) - ) - - except PyJWTError: - logger.debug("Invalid token", exc_info=True) - return None - - except ValidationError: - logger.warning("Token data corrupted? Check payload -> TokenData conversion") - return None - - return token_data diff --git a/services/api-server/src/simcore_service_api_server/services/remote_debug.py b/services/api-server/src/simcore_service_api_server/services/remote_debug.py index 67b9b279d44..a9568a73b12 100644 --- a/services/api-server/src/simcore_service_api_server/services/remote_debug.py +++ b/services/api-server/src/simcore_service_api_server/services/remote_debug.py @@ -2,9 +2,10 @@ """ +import logging import os -from loguru import logger +logger = logging.getLogger(__name__) REMOTE_DEBUG_PORT = 3000 @@ -30,9 +31,11 @@ def setup_remote_debugging(force_enabled=False, *, boot_mode=None): "Cannot enable remote debugging. Please install ptvsd first" ) - logger.info(f"Remote debugging enabled: listening port {REMOTE_DEBUG_PORT}") + logger.info("Remote debugging enabled: listening port %s", REMOTE_DEBUG_PORT) else: - logger.debug(f"Booting without remote debugging since SC_BOOT_MODE={boot_mode}") + logger.debug( + "Booting without remote debugging since SC_BOOT_MODE=%s", boot_mode + ) __all__ = ["setup_remote_debugging"] diff --git a/services/api-server/src/simcore_service_api_server/services/security.py b/services/api-server/src/simcore_service_api_server/services/security.py deleted file mode 100644 index 2dea4396d82..00000000000 --- a/services/api-server/src/simcore_service_api_server/services/security.py +++ /dev/null @@ -1,25 +0,0 @@ -import subprocess # nosec -from subprocess import CalledProcessError, CompletedProcess # nosec - -from passlib.context import CryptContext - -__pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto") - - -def verify_password(plain_password: str, hashed_password: str) -> bool: - return __pwd_context.verify(plain_password, hashed_password) - - -def get_password_hash(password: str) -> str: - return __pwd_context.hash(password) - - -def create_secret_key() -> str: - # NOTICE that this key is reset when server is restarted! - try: - proc: CompletedProcess = subprocess.run( # nosec - "openssl rand -hex 32", check=True, shell=True - ) - except (CalledProcessError, FileNotFoundError) as why: - raise ValueError("Cannot create secret key") from why - return str(proc.stdout).strip() diff --git a/services/api-server/src/simcore_service_api_server/services/serialization.py b/services/api-server/src/simcore_service_api_server/services/serialization.py index b4266fbf491..4848851bd08 100644 --- a/services/api-server/src/simcore_service_api_server/services/serialization.py +++ b/services/api-server/src/simcore_service_api_server/services/serialization.py @@ -3,10 +3,6 @@ from typing import Dict -def to_bool(s: str) -> bool: - return s.lower() in ["true", "1", "yes"] - - def _jsoncoverter(obj): if isinstance(obj, datetime): return obj.__str__() diff --git a/services/api-server/src/simcore_service_api_server/services/webserver.py b/services/api-server/src/simcore_service_api_server/services/webserver.py index 74631f5a33a..6d53909fdc8 100644 --- a/services/api-server/src/simcore_service_api_server/services/webserver.py +++ b/services/api-server/src/simcore_service_api_server/services/webserver.py @@ -1,12 +1,18 @@ import base64 +import json +import logging +from typing import Dict, Optional +import attr from cryptography import fernet -from fastapi import FastAPI -from httpx import AsyncClient -from loguru import logger +from fastapi import FastAPI, HTTPException +from httpx import AsyncClient, Response, StatusCode +from starlette import status from ..core.settings import WebServerSettings +logger = logging.getLogger(__name__) + def _get_secret_key(settings: WebServerSettings): secret_key_bytes = settings.session_secret_key.get_secret_value().encode("utf-8") @@ -29,7 +35,7 @@ def setup_webserver(app: FastAPI) -> None: app.state.webserver_fernet = fernet.Fernet(secret_key) # init client - logger.debug(f"Setup webserver at {settings.base_url}...") + logger.debug("Setup webserver at %s...", settings.base_url) client = AsyncClient(base_url=settings.base_url) app.state.webserver_client = client @@ -48,5 +54,79 @@ async def close_webserver(app: FastAPI) -> None: logger.debug("Webserver closed successfully") -def get_webserver_client(app: FastAPI) -> AsyncClient: - return app.state.webserver_client +@attr.s(auto_attribs=True) +class AuthSession: + """ + - wrapper around thin-client to simplify webserver's API + - sets endspoint upon construction + - MIME type: application/json + - processes responses, returning data or raising formatted HTTP exception + - The lifetime of an AuthSession is ONE request. + + SEE services/api-server/src/simcore_service_api_server/api/dependencies/webserver.py + """ + + client: AsyncClient # Its lifetime is attached to app + vtag: str + session_cookies: Dict = None + + @classmethod + def create(cls, app: FastAPI, session_cookies: Dict): + return cls( + client=app.state.webserver_client, + vtag=app.state.settings.webserver.vtag, + session_cookies=session_cookies, + ) + + def _url(self, path: str) -> str: + return f"/{self.vtag}/{path.lstrip('/')}" + + @classmethod + def _process(cls, resp: Response) -> Optional[Dict]: + # enveloped answer + data, error = None, None + try: + body = resp.json() + data, error = body["data"], body["error"] + except (json.JSONDecodeError, KeyError): + logger.warning("Failed to unenvelop webserver response", exc_info=True) + + if StatusCode.is_server_error(resp.status_code): + logger.error( + "webserver error %d [%s]: %s", + resp.status_code, + resp.reason_phrase, + error, + ) + raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE) + + if StatusCode.is_client_error(resp.status_code): + msg = error or resp.reason_phrase + raise HTTPException(resp.status_code, detail=msg) + + return data + + # OPERATIONS + # TODO: refactor and code below + # TODO: policy to retry if NetworkError/timeout? + # TODO: add ping to healthcheck + + async def get(self, path: str) -> Optional[Dict]: + url = self._url(path) + try: + resp = await self.client.get(url, cookies=self.session_cookies) + except Exception: + logger.exception("Failed to get %s", url) + raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE) + + return self._process(resp) + + async def put(self, path: str, body: Dict) -> Optional[Dict]: + url = self._url(path) + try: + resp = await self.client.put(url, json=body, cookies=self.session_cookies) + except Exception: + logger.exception("Failed to put %s", url) + raise HTTPException(status.HTTP_503_SERVICE_UNAVAILABLE) + + return self._process(resp) diff --git a/services/api-server/tests/unit/_helpers.py b/services/api-server/tests/unit/_helpers.py index 2ba444489a6..6375d331b16 100644 --- a/services/api-server/tests/unit/_helpers.py +++ b/services/api-server/tests/unit/_helpers.py @@ -6,7 +6,7 @@ from aiopg.sa.result import RowProxy import simcore_service_api_server.db.tables as orm -from simcore_service_api_server.db.repositories.base import BaseRepository +from simcore_service_api_server.db.repositories import BaseRepository from simcore_service_api_server.db.repositories.users import UsersRepository from simcore_service_api_server.models.domain.api_keys import ApiKeyInDB diff --git a/services/api-server/tests/unit/conftest.py b/services/api-server/tests/unit/conftest.py index b69ea0e2666..c2bce8e28c0 100644 --- a/services/api-server/tests/unit/conftest.py +++ b/services/api-server/tests/unit/conftest.py @@ -35,14 +35,11 @@ def environment() -> Dict: env = { "WEBSERVER_HOST": "webserver", "WEBSERVER_SESSION_SECRET_KEY": "REPLACE ME with a key of at least length 32.", - "POSTGRES_HOST": "localhost", "POSTGRES_USER": "test", "POSTGRES_PASSWORD": "test", "POSTGRES_DB": "test", - "LOG_LEVEL": "debug", - "SC_BOOT_MODE": "production", } return env @@ -162,7 +159,7 @@ def is_postgres_responsive() -> bool: return config -@pytest.fixture("session") +@pytest.fixture(scope="session") def make_engine(postgres_service: Dict) -> Callable: dsn = postgres_service["dsn"] # session scope freezes dsn diff --git a/services/api-server/tests/unit/test_api_meta.py b/services/api-server/tests/unit/test_api_meta.py index d8df761a822..0e966a5fb81 100644 --- a/services/api-server/tests/unit/test_api_meta.py +++ b/services/api-server/tests/unit/test_api_meta.py @@ -1,7 +1,6 @@ # pylint: disable=unused-variable # pylint: disable=unused-argument # pylint: disable=redefined-outer-name -# from fastapi.testclient import TestClient from httpx import AsyncClient diff --git a/services/api-server/tests/unit/test_jwt.py b/services/api-server/tests/unit/test_jwt.py deleted file mode 100644 index 5f13d17d4b4..00000000000 --- a/services/api-server/tests/unit/test_jwt.py +++ /dev/null @@ -1,35 +0,0 @@ -# pylint: disable=unused-variable -# pylint: disable=unused-argument -# pylint: disable=redefined-outer-name - -import importlib - -import pytest - -from simcore_service_api_server.models.schemas.tokens import TokenData -from simcore_service_api_server.services.jwt import ( - create_access_token, - get_access_token_data, -) - - -@pytest.fixture() -def mock_secret_key(monkeypatch): - monkeypatch.setenv("SECRET_KEY", "your-256-bit-secret") - - import simcore_service_api_server.services.jwt - - importlib.reload(simcore_service_api_server.services.jwt) - - -def test_access_token_data(mock_secret_key): - - data = TokenData(user_id=33, scopes=[]) - jwt = create_access_token(data, expires_in_mins=None) - - # checks jwt against https://jwt.io/#debugger-io - # assert jwt == b"ey ... - - received_data = get_access_token_data(jwt) - - assert data == received_data diff --git a/services/api-server/tests/unit/test_security.py b/services/api-server/tests/unit/test_security.py deleted file mode 100644 index 325b001b963..00000000000 --- a/services/api-server/tests/unit/test_security.py +++ /dev/null @@ -1,14 +0,0 @@ -# pylint: disable=unused-variable -# pylint: disable=unused-argument -# pylint: disable=redefined-outer-name - -from simcore_service_api_server.services.security import ( - get_password_hash, - verify_password, -) - - -def test_has_password(): - hashed_pass = get_password_hash("secret") - assert hashed_pass != "secret" - assert verify_password("secret", hashed_pass) diff --git a/services/api-server/tests/unit/test_settings.py b/services/api-server/tests/unit/test_settings.py index 8263d46ae03..cfe542f36c4 100644 --- a/services/api-server/tests/unit/test_settings.py +++ b/services/api-server/tests/unit/test_settings.py @@ -14,7 +14,9 @@ # bring .env-devel in here def test_min_environ_for_settings(monkeypatch): monkeypatch.setenv("WEBSERVER_HOST", "production_webserver") - monkeypatch.setenv("WEBSERVER_SESSION_SECRET_KEY", "REPLACE ME with a key of at least length 32.") + monkeypatch.setenv( + "WEBSERVER_SESSION_SECRET_KEY", "REPLACE ME with a key of at least length 32." + ) monkeypatch.setenv("POSTGRES_HOST", "production_postgres") monkeypatch.setenv("POSTGRES_USER", "test") From 95df8daeb02a895b867d2d618ca30479905db583 Mon Sep 17 00:00:00 2001 From: Pedro Crespo <32402063+pcrespov@users.noreply.github.com> Date: Fri, 26 Jun 2020 16:32:34 +0200 Subject: [PATCH 12/43] Cleanup catalog service (#1582) Cleanup of catalog service before adding more functionality * Major refactoring - api/dependencies: dependencies injected in handlers - api/routes: endpoint handlers and routing - api/root.py: join all openapi-specs into a single router - models: domain (orm and business logic models) and schema (i/o schemas for openapi) models - db: database tables (i.e. sa schemas for tables) and repositories (crud layer between handlers and db calls) - core: init application and settings (parses values by args, environs, .env or default, in this order) - services: modules/plugins with logic for the app - __main__,__version__ : main entrypoint and version --- ci/github/unit-testing/catalog.bash | 2 +- ci/helpers/ensure_python_pip.bash | 2 +- ci/travis/unit-testing/catalog.bash | 2 +- packages/postgres-database/docker/Dockerfile | 2 +- .../src/pytest_simcore/postgres_service2.py | 148 ++++ requirements.txt | 1 + scripts/openapi/oas_resolver/Dockerfile | 2 +- services/api-server/Dockerfile | 9 +- services/api-server/Makefile | 48 +- services/api-server/openapi.json | 2 +- services/catalog/.cookiecutterrc | 23 - services/catalog/.env-devel | 13 + services/catalog/.gitignore | 2 + services/catalog/Dockerfile | 118 +-- services/catalog/Makefile | 67 +- services/catalog/README.md | 49 +- services/catalog/docker/boot.sh | 37 +- services/catalog/docker/entrypoint.sh | 87 ++- services/catalog/openapi.json | 715 ++++++++++++++++++ services/catalog/requirements/_base.in | 13 +- services/catalog/requirements/_base.txt | 44 +- services/catalog/requirements/_test.in | 5 + services/catalog/requirements/_test.txt | 86 ++- services/catalog/requirements/dev.txt | 2 +- services/catalog/setup.cfg | 4 - .../src/simcore_service_catalog/__main__.py | 24 +- .../simcore_service_catalog/__version__.py | 2 +- .../{endpoints => api}/__init__.py | 0 .../{schemas => api/dependencies}/__init__.py | 0 .../api/dependencies/database.py | 21 + .../src/simcore_service_catalog/api/root.py | 10 + .../{utils => api/routes}/__init__.py | 0 .../{endpoints => api/routes}/dags.py | 59 +- .../api/routes/health.py | 8 + .../api/routes/meta.py | 15 + .../api/v0/openapi.yaml | 452 ----------- .../src/simcore_service_catalog/config.py | 56 -- .../simcore_service_catalog/core/__init__.py | 0 .../core/application.py | 57 ++ .../simcore_service_catalog/core/errors.py | 0 .../simcore_service_catalog/core/events.py | 38 + .../simcore_service_catalog/core/settings.py | 84 ++ .../catalog/src/simcore_service_catalog/db.py | 60 -- .../simcore_service_catalog/db/__init__.py | 0 .../src/simcore_service_catalog/db/errors.py | 0 .../src/simcore_service_catalog/db/events.py | 56 ++ .../db/repositories/__init__.py | 1 + .../db/repositories/_base.py | 15 + .../db/repositories/dags.py | 60 ++ .../{orm.py => db/tables.py} | 4 +- .../endpoints/diagnostics.py | 17 - .../src/simcore_service_catalog/main.py | 78 -- .../models/__init__.py | 0 .../models/domain/__init__.py | 0 .../schemas_dags.py => models/domain/dag.py} | 14 +- .../{schemas => models/domain}/project.py | 0 .../models/schemas/__init__.py | 0 .../models/schemas/dag.py | 20 + .../models/schemas/meta.py | 27 + .../services/__init__.py | 0 .../{utils => services}/remote_debug.py | 19 +- .../simcore_service_catalog/store/__init__.py | 3 - .../store/crud_dags.py | 60 -- .../simcore_service_catalog/utils/helpers.py | 2 - services/catalog/tests/unit/conftest.py | 12 +- services/catalog/tests/unit/test_package.py | 21 +- services/catalog/tests/unit/test_schemas.py | 40 +- .../catalog/tests/unit/with_dbs/conftest.py | 76 +- .../unit/with_dbs/test_entrypoint_dags.py | 25 +- services/director/Dockerfile | 4 +- services/docker-compose.devel.yml | 7 +- services/docker-compose.local.yml | 2 - services/docker-compose.yml | 3 +- services/sidecar/Dockerfile | 4 +- services/storage/Dockerfile | 2 +- services/web/Dockerfile | 4 +- 76 files changed, 1755 insertions(+), 1190 deletions(-) create mode 100644 packages/pytest-simcore/src/pytest_simcore/postgres_service2.py delete mode 100644 services/catalog/.cookiecutterrc create mode 100644 services/catalog/.env-devel create mode 100644 services/catalog/.gitignore create mode 100644 services/catalog/openapi.json rename services/catalog/src/simcore_service_catalog/{endpoints => api}/__init__.py (100%) rename services/catalog/src/simcore_service_catalog/{schemas => api/dependencies}/__init__.py (100%) create mode 100644 services/catalog/src/simcore_service_catalog/api/dependencies/database.py create mode 100644 services/catalog/src/simcore_service_catalog/api/root.py rename services/catalog/src/simcore_service_catalog/{utils => api/routes}/__init__.py (100%) rename services/catalog/src/simcore_service_catalog/{endpoints => api/routes}/dags.py (68%) create mode 100644 services/catalog/src/simcore_service_catalog/api/routes/health.py create mode 100644 services/catalog/src/simcore_service_catalog/api/routes/meta.py delete mode 100644 services/catalog/src/simcore_service_catalog/api/v0/openapi.yaml delete mode 100644 services/catalog/src/simcore_service_catalog/config.py create mode 100644 services/catalog/src/simcore_service_catalog/core/__init__.py create mode 100644 services/catalog/src/simcore_service_catalog/core/application.py create mode 100644 services/catalog/src/simcore_service_catalog/core/errors.py create mode 100644 services/catalog/src/simcore_service_catalog/core/events.py create mode 100644 services/catalog/src/simcore_service_catalog/core/settings.py delete mode 100644 services/catalog/src/simcore_service_catalog/db.py create mode 100644 services/catalog/src/simcore_service_catalog/db/__init__.py create mode 100644 services/catalog/src/simcore_service_catalog/db/errors.py create mode 100644 services/catalog/src/simcore_service_catalog/db/events.py create mode 100644 services/catalog/src/simcore_service_catalog/db/repositories/__init__.py create mode 100644 services/catalog/src/simcore_service_catalog/db/repositories/_base.py create mode 100644 services/catalog/src/simcore_service_catalog/db/repositories/dags.py rename services/catalog/src/simcore_service_catalog/{orm.py => db/tables.py} (62%) delete mode 100644 services/catalog/src/simcore_service_catalog/endpoints/diagnostics.py delete mode 100644 services/catalog/src/simcore_service_catalog/main.py create mode 100644 services/catalog/src/simcore_service_catalog/models/__init__.py create mode 100644 services/catalog/src/simcore_service_catalog/models/domain/__init__.py rename services/catalog/src/simcore_service_catalog/{schemas/schemas_dags.py => models/domain/dag.py} (71%) rename services/catalog/src/simcore_service_catalog/{schemas => models/domain}/project.py (100%) create mode 100644 services/catalog/src/simcore_service_catalog/models/schemas/__init__.py create mode 100644 services/catalog/src/simcore_service_catalog/models/schemas/dag.py create mode 100644 services/catalog/src/simcore_service_catalog/models/schemas/meta.py create mode 100644 services/catalog/src/simcore_service_catalog/services/__init__.py rename services/catalog/src/simcore_service_catalog/{utils => services}/remote_debug.py (58%) delete mode 100644 services/catalog/src/simcore_service_catalog/store/__init__.py delete mode 100644 services/catalog/src/simcore_service_catalog/store/crud_dags.py delete mode 100644 services/catalog/src/simcore_service_catalog/utils/helpers.py diff --git a/ci/github/unit-testing/catalog.bash b/ci/github/unit-testing/catalog.bash index 72c3530c91d..c1004dea7dd 100755 --- a/ci/github/unit-testing/catalog.bash +++ b/ci/github/unit-testing/catalog.bash @@ -12,7 +12,7 @@ install() { test() { pytest --cov=simcore_service_catalog --durations=10 --cov-append \ --color=yes --cov-report=term-missing --cov-report=xml \ - -v -m "not travis" services/catalog/tests + -v -m "not travis" services/catalog/tests/unit } # Check if the function exists (bash specific) diff --git a/ci/helpers/ensure_python_pip.bash b/ci/helpers/ensure_python_pip.bash index ea5c9111411..13f7f9bd5ff 100755 --- a/ci/helpers/ensure_python_pip.bash +++ b/ci/helpers/ensure_python_pip.bash @@ -9,7 +9,7 @@ set -euo pipefail IFS=$'\n\t' # Pin pip version to a compatible release https://www.python.org/dev/peps/pep-0440/#compatible-release -PIP_VERSION=19.3.1 +PIP_VERSION=20.1.1 echo "INFO:" "$(python --version)" "@" "$(command -v python)" diff --git a/ci/travis/unit-testing/catalog.bash b/ci/travis/unit-testing/catalog.bash index e4d91aa3f61..0f8cf8c9ca0 100755 --- a/ci/travis/unit-testing/catalog.bash +++ b/ci/travis/unit-testing/catalog.bash @@ -34,7 +34,7 @@ script() { then pytest --cov=simcore_service_catalog --durations=10 --cov-append \ --color=yes --cov-report=term-missing --cov-report=xml \ - -v -m "not travis" services/catalog/tests + -v -m "not travis" services/catalog/tests/unit else echo "No changes detected. Skipping unit-testing of catalog." fi diff --git a/packages/postgres-database/docker/Dockerfile b/packages/postgres-database/docker/Dockerfile index 9bcd9b37935..a03ad77c13e 100644 --- a/packages/postgres-database/docker/Dockerfile +++ b/packages/postgres-database/docker/Dockerfile @@ -23,7 +23,7 @@ RUN apt-get update &&\ RUN python -m venv ${VIRTUAL_ENV} RUN pip --no-cache-dir install --upgrade \ - pip~=20.0.2 \ + pip~=20.1.1 \ wheel \ setuptools diff --git a/packages/pytest-simcore/src/pytest_simcore/postgres_service2.py b/packages/pytest-simcore/src/pytest_simcore/postgres_service2.py new file mode 100644 index 00000000000..fc4b593b7b5 --- /dev/null +++ b/packages/pytest-simcore/src/pytest_simcore/postgres_service2.py @@ -0,0 +1,148 @@ +""" + sets up a docker-compose + +IMPORTANT: incompatible with pytest_simcore.docker_compose and pytest_simcore.postgres_service + +""" +# pylint:disable=unused-variable +# pylint:disable=unused-argument +# pylint:disable=redefined-outer-name + +import os +import shutil +import subprocess +import sys +from pathlib import Path +from typing import Callable, Coroutine, Dict, Union + +import aiopg.sa +import pytest +import sqlalchemy as sa +import yaml +from dotenv import dotenv_values + +import simcore_postgres_database.cli as pg_cli +from simcore_postgres_database.models.base import metadata + +current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent + + +@pytest.fixture(scope="session") +def env_devel_file(project_slug_dir: Path) -> Path: + # takes as a bas + env_devel_path = project_slug_dir / ".env-devel" + assert env_devel_path.exists() + return env_devel_path + + +@pytest.fixture(scope="session") +def test_environment(env_devel_file: Path) -> Dict[str, str]: + env = dotenv_values(env_devel_file, verbose=True, interpolate=True) + return env + + +@pytest.fixture(scope="session") +def test_docker_compose_file(pytestconfig) -> Path: + """Get an absolute path to the `docker-compose.yml` file. + Override this fixture in your tests if you need a custom location. + """ + return os.path.join(str(pytestconfig.rootdir), "tests", "docker-compose.yml") + + +@pytest.fixture(scope="session") +def docker_compose_file(test_environment: Dict[str, str], tmpdir_factory, test_docker_compose_file) -> Path: + # Overrides fixture in https://github.com/avast/pytest-docker + + environ = dict( + os.environ + ) # NOTE: do not forget to add the current environ here, otherwise docker-compose fails + environ.update(test_environment) + + # assumes prototype in cwd + src_path = test_docker_compose_file + assert src_path.exists, f"Expected prototype at cwd, i.e. {src_path.resolve()}" + + dst_path = Path( + str( + tmpdir_factory.mktemp("docker_compose_file_fixture").join( + "docker-compose.yml" + ) + ) + ) + + shutil.copy(src_path, dst_path.parent) + assert dst_path.exists() + + # configs + subprocess.run( + f'docker-compose --file "{src_path}" config > "{dst_path}"', + shell=True, + check=True, + env=environ, + ) + + return dst_path + + +@pytest.fixture(scope="session") +def postgres_service2(docker_services, docker_ip, docker_compose_file: Path) -> Dict: + + # check docker-compose's environ is resolved properly + config = yaml.safe_load(docker_compose_file.read_text()) + environ = config["services"]["postgres"]["environment"] + + # builds DSN + config = dict( + user=environ["POSTGRES_USER"], + password=environ["POSTGRES_PASSWORD"], + host=docker_ip, + port=docker_services.port_for("postgres", 5432), + database=environ["POSTGRES_DB"], + ) + + dsn = "postgresql://{user}:{password}@{host}:{port}/{database}".format(**config) + + def _create_checker() -> Callable: + def is_postgres_responsive() -> bool: + try: + engine = sa.create_engine(dsn) + conn = engine.connect() + conn.close() + except sa.exc.OperationalError: + return False + return True + + return is_postgres_responsive + + # Wait until service is responsive. + docker_services.wait_until_responsive( + check=_create_checker(), timeout=30.0, pause=0.1, + ) + + config["dsn"] = dsn + return config + + +@pytest.fixture(scope="session") +def make_engine(postgres_service2: Dict) -> Callable: + dsn = postgres_service2["dsn"] # session scope freezes dsn + + def maker(is_async=True) -> Union[Coroutine, Callable]: + return aiopg.sa.create_engine(dsn) if is_async else sa.create_engine(dsn) + + return maker + + +@pytest.fixture +def apply_migration(postgres_service2: Dict, make_engine) -> None: + kwargs = postgres_service2.copy() + kwargs.pop("dsn") + pg_cli.discover.callback(**kwargs) + pg_cli.upgrade.callback("head") + yield + pg_cli.downgrade.callback("base") + pg_cli.clean.callback() + + # FIXME: deletes all because downgrade is not reliable! + engine = make_engine(False) + metadata.drop_all(engine) diff --git a/requirements.txt b/requirements.txt index 26e833fe8f0..305907057c6 100644 --- a/requirements.txt +++ b/requirements.txt @@ -15,6 +15,7 @@ # formatter black +isort # dependency manager pip-tools # version manager diff --git a/scripts/openapi/oas_resolver/Dockerfile b/scripts/openapi/oas_resolver/Dockerfile index 58420fbffed..6c0bda718ee 100644 --- a/scripts/openapi/oas_resolver/Dockerfile +++ b/scripts/openapi/oas_resolver/Dockerfile @@ -12,7 +12,7 @@ WORKDIR /src # update pip RUN pip install --no-cache-dir --upgrade \ - pip~=20.0.2 \ + pip~=20.1.1 \ wheel \ setuptools diff --git a/services/api-server/Dockerfile b/services/api-server/Dockerfile index 172ae927177..9cbe8cf8873 100644 --- a/services/api-server/Dockerfile +++ b/services/api-server/Dockerfile @@ -1,5 +1,5 @@ ARG PYTHON_VERSION="3.6.10" -FROM python:${PYTHON_VERSION}-slim as base +FROM python:${PYTHON_VERSION}-slim-buster as base # # USAGE: # cd sercices/api-server @@ -43,7 +43,7 @@ ENV PYTHONDONTWRITEBYTECODE=1 \ # those from our virtualenv. ENV PATH="${VIRTUAL_ENV}/bin:$PATH" -EXPOSE 8001 +EXPOSE 8000 EXPOSE 3000 # -------------------------- Build stage ------------------- @@ -64,7 +64,7 @@ RUN apt-get update &&\ RUN python -m venv ${VIRTUAL_ENV} RUN pip install --upgrade --no-cache-dir \ - pip~=20.0.2 \ + pip~=20.1.1 \ wheel \ setuptools @@ -111,7 +111,10 @@ ENV PYTHONOPTIMIZE=TRUE WORKDIR /home/scu +# Starting from clean base image, copies pre-installed virtualenv from cache COPY --chown=scu:scu --from=cache ${VIRTUAL_ENV} ${VIRTUAL_ENV} + +# Copies booting scripts COPY --chown=scu:scu services/api-server/docker services/api-server/docker RUN chmod +x services/api-server/docker/*.sh diff --git a/services/api-server/Makefile b/services/api-server/Makefile index d85c03a936f..88e1ecd1891 100644 --- a/services/api-server/Makefile +++ b/services/api-server/Makefile @@ -4,10 +4,13 @@ include ../../scripts/common.Makefile # Custom variables -APP_NAME := $(notdir $(CURDIR)) -APP_CLI_NAME := simcore-service-$(APP_NAME) -export APP_VERSION = $(shell cat VERSION) -SRC_DIR := $(abspath $(CURDIR)/src/$(subst -,_,$(APP_CLI_NAME))) +APP_NAME := $(notdir $(CURDIR)) +APP_CLI_NAME := simcore-service-$(APP_NAME) +APP_PACKAGE_NAME := $(subst -,_,$(APP_CLI_NAME)) +APP_VERSION := $(shell cat VERSION) +SRC_DIR := $(abspath $(CURDIR)/src/$(APP_PACKAGE_NAME)) + +export APP_VERSION .PHONY: reqs reqs: ## compiles pip requirements (.in -> .txt) @@ -71,18 +74,32 @@ down: docker-compose.yml ## stops pg fixture # killing any process using port 8000 -@fuser --kill --verbose --namespace tcp 8000 -###################### -.PHONY: build -build: ## builds docker image (using main services/docker-compose-build.yml) - @$(MAKE_C) ${REPO_BASE_DIR} target=${APP_NAME} $@ +# BUILD ######## + + +.PHONY: build build-nc build-devel build-devel-nc build-cache build-cache-nc +build build-nc build-devel build-devel-nc build-cache build-cache-nc: ## builds docker image (using main services/docker-compose-build.yml) + @$(MAKE_C) ${REPO_BASE_DIR} $@ target=${APP_NAME} + +.PHONY: openapi-specs openapi.json +openapi-specs: openapi.json +openapi.json: .env + # generating openapi specs file + python3 -c "import json; from $(APP_PACKAGE_NAME).__main__ import *; print( json.dumps(the_app.openapi(), indent=2) )" > $@ -# GENERATION python client ------------------------------------------------- + +# GENERATION python client ######## .PHONY: python-client generator-help + # SEE https://openapi-generator.tech/docs/usage#generate # SEE https://openapi-generator.tech/docs/generators/python +# +# TODO: put instead to additional-props.yaml and --config=openapi-generator/python-config.yaml +# TODO: copy this code to https://github.com/ITISFoundation/osparc-simcore-python-client/blob/master/Makefile +# # NOTE: assumes this repo exists GIT_USER_ID := ITISFoundation @@ -91,7 +108,6 @@ GIT_REPO_ID := osparc-simcore-python-client SCRIPTS_DIR := $(abspath $(CURDIR)/../../scripts) GENERATOR_NAME := python -# TODO: put instead to additional-props.yaml and --config=openapi-generator/python-config.yaml ADDITIONAL_PROPS := \ generateSourceCodeOnly=false\ hideGenerationTimestamp=true\ @@ -106,21 +122,13 @@ null := space := $(null) # comma := , -# TODO: fix this, shall be generated upon start when flag is provided - - - -# TODO: code_samples still added by hand! client: # cloning $(GIT_USER_ID)/$(GIT_REPO_ID) -> $@ git clone git@github.com:$(GIT_USER_ID)/$(GIT_REPO_ID).git $@ cd client; git checkout -b "upgrade-${APP_VERSION}" -python-client: client ## runs python client generator - # download openapi.json - curl -O http://localhost:8000/api/v0/openapi.json - +python-client: client openapi.json ## runs python client generator cd $(CURDIR); \ $(SCRIPTS_DIR)/openapi-generator-cli.bash generate \ --generator-name=$(GENERATOR_NAME) \ @@ -134,8 +142,6 @@ python-client: client ## runs python client generator --release-note="Updated to $(APP_VERSION)" - - generator-help: ## help on client-api generator # generate help @$(SCRIPTS_DIR)/openapi-generator-cli.bash help generate diff --git a/services/api-server/openapi.json b/services/api-server/openapi.json index cc38013fa9e..c22bbf0a345 100644 --- a/services/api-server/openapi.json +++ b/services/api-server/openapi.json @@ -2,7 +2,7 @@ "openapi": "3.0.2", "info": { "title": "Public API Server", - "description": "**osparc-simcore Public RESTful API Specifications**\n## Python Client\n- Github [repo](https://github.com/ITISFoundation/osparc-simcore-python-client)\n- Quick install: ``pip install git+https://github.com/ITISFoundation/osparc-simcore-python-client.git``\n", + "description": "**osparc-simcore Public RESTful API Specifications**\n## Python Library\n- Check the [documentation](https://itisfoundation.github.io/osparc-simcore-python-client)\n- Quick install: ``pip install git+https://github.com/ITISFoundation/osparc-simcore-python-client.git``\n", "version": "0.3.0", "x-logo": { "url": "https://raw.githubusercontent.com/ITISFoundation/osparc-manual/b809d93619512eb60c827b7e769c6145758378d0/_media/osparc-logo.svg", diff --git a/services/catalog/.cookiecutterrc b/services/catalog/.cookiecutterrc deleted file mode 100644 index 4a1cb9d42fa..00000000000 --- a/services/catalog/.cookiecutterrc +++ /dev/null @@ -1,23 +0,0 @@ -# This file exists so you can easily regenerate your project. -# -# cookiecutter --overwrite-if-exists --config-file=.cookiecutterrc ../cookiecutter-simcore-py-fastapi/ -# - -default_context: - - _extensions: ['jinja2_time.TimeExtension'] - _template: '../cookiecutter-simcore-py-fastapi/' - command_line_interface_bin_name: 'simcore-service-catalog' - distribution_name: 'simcore-service-catalog' - dockercompose_service_api_port: '8000' - dockercompose_service_name: 'catalog' - enable_aiohttp_swagger: 'false' - full_name: 'Pedro Crespo' - github_username: 'pcrespov' - openapi_specs_version: 'v0' - package_name: 'simcore_service_catalog' - project_name: 'Components Catalog Service' - project_short_description: 'Manages and maintains a catalog of all published components (e.g. macro-algorithms, scripts, etc)' - project_slug: 'catalog' - version: '0.3.2' - year: '2020' diff --git a/services/catalog/.env-devel b/services/catalog/.env-devel new file mode 100644 index 00000000000..d77e2e84be5 --- /dev/null +++ b/services/catalog/.env-devel @@ -0,0 +1,13 @@ +# +# Environment variables used to configure this service +# + +LOG_LEVEL=DEBUG + +POSTGRES_USER=test +POSTGRES_PASSWORD=test +POSTGRES_DB=test +POSTGRES_HOST=localhost + +# Enables debug +SC_BOOT_MODE=debug-ptvsd diff --git a/services/catalog/.gitignore b/services/catalog/.gitignore new file mode 100644 index 00000000000..2bb202b8906 --- /dev/null +++ b/services/catalog/.gitignore @@ -0,0 +1,2 @@ +docker-compose.yml +.env diff --git a/services/catalog/Dockerfile b/services/catalog/Dockerfile index 48868012a0b..53b48c4180b 100644 --- a/services/catalog/Dockerfile +++ b/services/catalog/Dockerfile @@ -1,4 +1,6 @@ -FROM python:3.6.10-alpine3.11 as base +ARG PYTHON_VERSION="3.6.10" +FROM python:${PYTHON_VERSION}-slim-buster as base +# # # USAGE: # cd sercices/catalog @@ -9,20 +11,42 @@ FROM python:3.6.10-alpine3.11 as base LABEL maintainer=pcrespov -RUN adduser -D -u 8004 -s /bin/sh -h /home/scu scu +RUN set -eux; \ + apt-get update; \ + apt-get install -y gosu; \ + rm -rf /var/lib/apt/lists/*; \ +# verify that the binary works + gosu nobody true + +# simcore-user uid=8004(scu) gid=8004(scu) groups=8004(scu) +ENV SC_USER_ID=8004 \ + SC_USER_NAME=scu \ + SC_BUILD_TARGET=base \ + SC_BOOT_MODE=default + +RUN adduser \ + --uid ${SC_USER_ID} \ + --disabled-password \ + --gecos "" \ + --shell /bin/sh \ + --home /home/${SC_USER_NAME} \ + ${SC_USER_NAME} + -RUN apk add --no-cache \ - su-exec +# Sets utf-8 encoding for Python et al +ENV LANG=C.UTF-8 -ENV PATH "/home/scu/.local/bin:$PATH" +# Turns off writing .pyc files; superfluous on an ephemeral container. +ENV PYTHONDONTWRITEBYTECODE=1 \ + VIRTUAL_ENV=/home/scu/.venv -# NOTE: All SC_ variables are customized -ENV SC_BUILD_TARGET base +# Ensures that the python and pip executables used in the image will be +# those from our virtualenv. +ENV PATH="${VIRTUAL_ENV}/bin:$PATH" EXPOSE 8000 EXPOSE 3000 - # -------------------------- Build stage ------------------- # Installs build/package management tools and third party dependencies # @@ -30,36 +54,27 @@ EXPOSE 3000 # FROM base as build -ENV SC_BUILD_TARGET build +ENV SC_BUILD_TARGET=build -# Installing client libraries and any other package you need -# -# libpq: client library for PostgreSQL https://www.postgresql.org/docs/9.5/libpq.html -# libstdc++: needed in ujson https://github.com/kohlschutter/junixsocket/issues/33 -# -RUN apk update && \ - apk add --no-cache \ - libpq \ - libstdc++ - -RUN apk add --no-cache \ - alpine-sdk \ - python3-dev \ - musl-dev \ - postgresql-dev - -RUN pip3 --no-cache-dir install --upgrade \ - pip~=20.0.2 \ - wheel \ - setuptools +RUN apt-get update &&\ + apt-get install -y --no-install-recommends \ + build-essential + +# NOTE: python virtualenv is used here such that installed +# packages may be moved to production image easily by copying the venv +RUN python -m venv ${VIRTUAL_ENV} + +RUN pip install --upgrade --no-cache-dir \ + pip~=20.1.1 \ + wheel \ + setuptools WORKDIR /build # install base 3rd party dependencies -COPY services/catalog/requirements/*.txt \ - services/catalog/requirements/ - -RUN pip3 --no-cache-dir install -r services/catalog/requirements/_base.txt +# NOTE: copies to /build to avoid overwriting later which would invalidate this layer +COPY --chown=scu:scu services/catalog/requirements/_base.txt . +RUN pip --no-cache-dir install -r _base.txt # --------------------------Cache stage ------------------- @@ -88,28 +103,28 @@ RUN pip3 --no-cache-dir install -r requirements/prod.txt &&\ # + /home/scu $HOME = WORKDIR # + services/catalog [scu:scu] # -FROM cache as production +FROM base as production -ENV SC_BUILD_TARGET production -ENV SC_BOOT_MODE production +ENV SC_BUILD_TARGET=production \ + SC_BOOT_MODE=production + +ENV PYTHONOPTIMIZE=TRUE WORKDIR /home/scu -RUN mkdir -p services/catalog &&\ - chown scu:scu services/catalog &&\ - mv /build/services/catalog/docker services/catalog/docker &&\ - rm -rf /build +# Starting from clean base image, copies pre-installed virtualenv from cache +COPY --chown=scu:scu --from=cache ${VIRTUAL_ENV} ${VIRTUAL_ENV} + +# Copies booting scripts +COPY --chown=scu:scu services/catalog/docker services/catalog/docker +RUN chmod +x services/catalog/docker/*.sh -RUN apk del --no-cache\ - alpine-sdk \ - python3-dev \ - musl-dev HEALTHCHECK --interval=30s \ - --timeout=20s \ - --start-period=30s \ - --retries=3 \ - CMD ["python3", "services/catalog/docker/healthcheck.py", "http://localhost:8000/"] + --timeout=20s \ + --start-period=30s \ + --retries=3 \ + CMD ["python3", "services/catalog/docker/healthcheck.py", "http://localhost:8000/"] ENTRYPOINT [ "/bin/sh", "services/catalog/docker/entrypoint.sh" ] CMD ["/bin/sh", "services/catalog/docker/boot.sh"] @@ -125,12 +140,11 @@ CMD ["/bin/sh", "services/catalog/docker/boot.sh"] # FROM build as development -ENV SC_BUILD_TARGET development -ENV SC_BOOT_MODE development +ENV SC_BUILD_TARGET=development WORKDIR /devel -VOLUME /devel/packages -VOLUME /devel/services/catalog/ + +RUN chown -R scu:scu ${VIRTUAL_ENV} ENTRYPOINT ["/bin/sh", "services/catalog/docker/entrypoint.sh"] CMD ["/bin/sh", "services/catalog/docker/boot.sh"] diff --git a/services/catalog/Makefile b/services/catalog/Makefile index 268b99fe573..df3401cae86 100644 --- a/services/catalog/Makefile +++ b/services/catalog/Makefile @@ -4,13 +4,16 @@ include ../../scripts/common.Makefile # Custom variables -APP_NAME := $(notdir $(CURDIR)) -APP_CLI_NAME := simcore-service-catalog -export APP_VERSION = $(shell cat VERSION) +APP_NAME := $(notdir $(CURDIR)) +APP_CLI_NAME := simcore-service-catalog +APP_PACKAGE_NAME := $(subst -,_,$(APP_CLI_NAME)) +APP_VERSION := $(shell cat VERSION) +SRC_DIR := $(abspath $(CURDIR)/src/$(APP_PACKAGE_NAME)) +export APP_VERSION -.PHONY: requirements -requirements: ## compiles pip requirements (.in -> .txt) +.PHONY: requirements reqs +requirements reqs: ## (or reqs) compiles pip requirements (.in -> .txt) @$(MAKE_C) requirements reqs @@ -34,12 +37,35 @@ tests-integration: ## runs integration tests against local+production images pytest -vv --exitfirst --failed-first --durations=10 --pdb $(CURDIR)/tests/integration -.PHONY: run-devel down-pg up-pg -run-devel run-prod: up-pg ## runs app with pg service +# DEVELOPMENT ######## + + +.env: + cp .env-devel $@ + +docker-compose.yml: + cp $(CURDIR)/tests/unit/with_dbs/docker-compose.yml $@ + + +.PHONY: run-devel down up-pg + +up-pg: docker-compose.yml down-pg + # starting pg database ... + docker-compose -f $< up --detach + +down-pg: docker-compose.yml ## stops pg fixture + # stopping extra services + -@docker-compose -f $< down + + +run-devel run-prod: .env up-pg ## runs app with pg service # starting service ... ifeq ($(subst run-,,$@),devel) # development mode (with reload upon change) - uvicorn simcore_service_catalog.main:app --reload + # start app (under $<) + uvicorn simcore_service_catalog.__main__:the_app \ + --reload --reload-dir $(SRC_DIR) \ + --port=8000 --host=0.0.0.0 else # production mode simcore-service-catalog @@ -47,13 +73,7 @@ endif # stop -up-pg: down-pg - # starting pg database ... - docker-compose -f $(CURDIR)/tests/unit/with_dbs/docker-compose.yml up --detach - -down-pg: ## stops pg fixture - docker-compose -f $(CURDIR)/tests/unit/with_dbs/docker-compose.yml down - +# BUILD ##################### .PHONY: build build-nc build-devel build-devel-nc build-cache build-cache-nc build build-nc build-devel build-devel-nc build-cache build-cache-nc: ## docker image build in many flavours @@ -61,15 +81,8 @@ build build-nc build-devel build-devel-nc build-cache build-cache-nc: ## docker @$(MAKE_C) ${REPO_BASE_DIR} $@ target=${APP_NAME} -.PHONY: openapi-specs -openapi-specs: install-dev ## TODO: implementing a way to serialize openapi - python3 -c "from simcore_service_catalog.main import *; dump_openapi()" - - -.PHONY: replay -replay: .cookiecutterrc ## re-applies cookiecutter - # Replaying ../cookiecutter-simcore-py-fastapi/ ... - @cookiecutter --no-input --overwrite-if-exists \ - --config-file=$< \ - --output-dir="$(abspath $(CURDIR)/..)" \ - "../cookiecutter-simcore-py-fastapi/" +.PHONY: openapi-specs openapi.json +openapi-specs: openapi.json +openapi.json: + # generating openapi specs file + python3 -c "import json; from $(APP_PACKAGE_NAME).__main__ import *; print( json.dumps(the_app.openapi(), indent=2) )" > $@ diff --git a/services/catalog/README.md b/services/catalog/README.md index 6f1e91dba5b..29bbe27fb58 100644 --- a/services/catalog/README.md +++ b/services/catalog/README.md @@ -7,42 +7,33 @@ Manages and maintains a catalog of all published components (e.g. macro-algorithms, scripts, etc) +## Development + Typical development workflow: ```cmd +make devenv +source .venv/bin/activate + +cd services/api-service +make install-dev +``` -$ cd services/catalog -$ make help -Recipes for 'catalog': - -devenv build development environment (using main services/docker-compose-build.yml) -requirements compiles pip requirements (.in -> .txt) -install-dev install-prod install-ci install app in development/production or CI mode -tests-unit runs unit tests -tests-integration runs integration tests against local+production images -run-devel runs app with pg fixture for development -down stops pg fixture -build builds docker image (using main services/docker-compose-build.yml) -autoformat runs black python formatter on this service's code [https://black.readthedocs.io/en/stable/] -version-patch commits version with bug fixes not affecting the cookiecuter config -version-minor commits version with backwards-compatible API addition or changes (i.e. can replay) -version-major commits version with backwards-INcompatible addition or changes -replay re-applies cookiecutter -info displays information -clean cleans all unversioned files in project and temp files create by this makefile -help this colorful help - - -$ make devenv -$ make install-dev -$ make run-devel - - -$ make tests -$ make build +Then +```cmd +make run-devel ``` +will start the service in development-mode together with a postgres db initialized with test data. The API can be query using +- http://127.0.0.1:8000/dev/docs: swagger-UI API doc +Finally +```cmd +make tests +make build-devel +make build +``` + diff --git a/services/catalog/docker/boot.sh b/services/catalog/docker/boot.sh index ef94369f3ff..6c011f49bed 100755 --- a/services/catalog/docker/boot.sh +++ b/services/catalog/docker/boot.sh @@ -1,37 +1,36 @@ #!/bin/sh -# +set -o errexit +set -o nounset + +IFS=$(printf '\n\t') + INFO="INFO: [$(basename "$0")] " # BOOTING application --------------------------------------------- echo "$INFO" "Booting in ${SC_BOOT_MODE} mode ..." -echo " User :$(id "$(whoami)")" -echo " Workdir :$(pwd)" - -if [ "${SC_BUILD_TARGET}" = "development" ] -then - echo " Environment :" - printenv | sed 's/=/: /' | sed 's/^/ /' | sort - #-------------------- +echo "$INFO" "User :$(id "$(whoami)")" +echo "$INFO" "Workdir : $(pwd)" - cd /devel/services/catalog || exit - pip3 --no-cache-dir install --user -r requirements/dev.txt - cd /devel || exit - - #-------------------- - echo "$INFO" " Python :" +if [ "${SC_BUILD_TARGET}" = "development" ]; then + echo "$INFO" "Environment :" + printenv | sed 's/=/: /' | sed 's/^/ /' | sort + echo "$INFO" "Python :" python --version | sed 's/^/ /' command -v python | sed 's/^/ /' - echo "$INFO" " PIP :" - pip3 --no-cache-dir list | sed 's/^/ /' -fi + cd services/catalog || exit 1 + pip --quiet --no-cache-dir install -r requirements/dev.txt + cd - || exit 1 + echo "$INFO" "PIP :" + pip list | sed 's/^/ /' +fi # RUNNING application ---------------------------------------- if [ "${SC_BOOT_MODE}" = "debug-ptvsd" ] then # NOTE: ptvsd is programmatically enabled inside of the service # this way we can have reload in place as well - exec uvicorn simcore_service_catalog.main:app --reload --host 0.0.0.0 + exec uvicorn simcore_service_catalog.__main__:the_app --reload --host 0.0.0.0 else exec simcore-service-catalog fi diff --git a/services/catalog/docker/entrypoint.sh b/services/catalog/docker/entrypoint.sh index 1aa3bc90a9e..9e734b5db40 100755 --- a/services/catalog/docker/entrypoint.sh +++ b/services/catalog/docker/entrypoint.sh @@ -1,6 +1,11 @@ #!/bin/sh -# +set -o errexit +set -o nounset + +IFS=$(printf '\n\t') + INFO="INFO: [$(basename "$0")] " +WARNING="WARNING: [$(basename "$0")] " ERROR="ERROR: [$(basename "$0")] " # This entrypoint script: @@ -10,45 +15,61 @@ ERROR="ERROR: [$(basename "$0")] " # *runs* as non-root user [scu] # echo "$INFO" "Entrypoint for stage ${SC_BUILD_TARGET} ..." -echo " User :$(id "$(whoami)")" -echo " Workdir :$(pwd)" - +echo "$INFO" "User :$(id "$(whoami)")" +echo "$INFO" "Workdir : $(pwd)" +echo "$INFO" "User : $(id scu)" +echo "$INFO" "python : $(command -v python)" +echo "$INFO" "pip : $(command -v pip)" -if [ "${SC_BUILD_TARGET}" = "development" ] -then - # NOTE: expects docker run ... -v $(pwd):/devel/services/catalog - DEVEL_MOUNT=/devel/services/catalog +USERNAME=scu +GROUPNAME=scu - stat $DEVEL_MOUNT > /dev/null 2>&1 || \ - (echo "$ERROR" ": You must mount '$DEVEL_MOUNT' to deduce user and group ids" && exit 1) # FIXME: exit does not stop script +if [ "${SC_BUILD_TARGET}" = "development" ]; then + echo "$INFO" "development mode detected..." + # NOTE: expects docker run ... -v $(pwd):$DEVEL_MOUNT + DEVEL_MOUNT=/devel/services/catalog + stat $DEVEL_MOUNT >/dev/null 2>&1 || + (echo "$ERROR" "You must mount '$DEVEL_MOUNT' to deduce user and group ids" && exit 1) - USERID=$(stat -c %u $DEVEL_MOUNT) - GROUPID=$(stat -c %g $DEVEL_MOUNT) - GROUPNAME=$(getent group "${GROUPID}" | cut -d: -f1) - - if [ "$USERID" -eq 0 ] - then - addgroup scu root + echo "$INFO" "setting correct user id/group id..." + HOST_USERID=$(stat --format=%u "${DEVEL_MOUNT}") + HOST_GROUPID=$(stat --format=%g "${DEVEL_MOUNT}") + CONT_GROUPNAME=$(getent group "${HOST_GROUPID}" | cut --delimiter=: --fields=1) + if [ "$HOST_USERID" -eq 0 ]; then + echo "$WARNING" "Folder mounted owned by root user... adding $SC_USER_NAME to root..." + adduser "$SC_USER_NAME" root + else + echo "$INFO" "Folder mounted owned by user $HOST_USERID:$HOST_GROUPID-'$CONT_GROUPNAME'..." + # take host's credentials in $SC_USER_NAME + if [ -z "$CONT_GROUPNAME" ]; then + echo "$WARNING" "Creating new group grp$SC_USER_NAME" + CONT_GROUPNAME=grp$SC_USER_NAME + addgroup --gid "$HOST_GROUPID" "$CONT_GROUPNAME" else - # take host's credentials in host_group - if [ -z "$GROUPNAME" ] - then - GROUPNAME=host_group - addgroup -g "$GROUPID" $GROUPNAME - else - addgroup scu $GROUPNAME - fi - - deluser scu > /dev/null 2>&1 - adduser -u "$USERID" -G $GROUPNAME -D -s /bin/sh scu + echo "$INFO" "group already exists" fi + echo "$INFO" "Adding $SC_USER_NAME to group $CONT_GROUPNAME..." + adduser "$SC_USER_NAME" "$CONT_GROUPNAME" + + echo "$WARNING" "Changing ownership [this could take some time]" + echo "$INFO" "Changing $SC_USER_NAME:$SC_USER_NAME ($SC_USER_ID:$SC_USER_ID) to $SC_USER_NAME:$CONT_GROUPNAME ($HOST_USERID:$HOST_GROUPID)" + usermod --uid "$HOST_USERID" --gid "$HOST_GROUPID" "$SC_USER_NAME" + + echo "$INFO" "Changing group properties of files around from $SC_USER_ID to group $CONT_GROUPNAME" + find / -path /proc -prune -o -group "$SC_USER_ID" -exec chgrp --no-dereference "$CONT_GROUPNAME" {} \; + # change user property of files already around + echo "$INFO" "Changing ownership properties of files around from $SC_USER_ID to group $CONT_GROUPNAME" + find / -path /proc -prune -o -user "$SC_USER_ID" -exec chown --no-dereference "$SC_USER_NAME" {} \; + fi fi -if [ "${SC_BOOT_MODE}" = "debug-ptvsd" ] -then +if [ "${SC_BOOT_MODE}" = "debug-ptvsd" ]; then # NOTE: production does NOT pre-installs ptvsd - python3 -m pip install ptvsd + pip install --no-cache-dir ptvsd fi -echo "$INFO" "Starting boot ..." -exec su-exec scu "$@" +echo "$INFO Starting $* ..." +echo " $SC_USER_NAME rights : $(id "$SC_USER_NAME")" +echo " local dir : $(ls -al)" + +exec gosu "$SC_USER_NAME" "$@" diff --git a/services/catalog/openapi.json b/services/catalog/openapi.json new file mode 100644 index 00000000000..1f9fa770653 --- /dev/null +++ b/services/catalog/openapi.json @@ -0,0 +1,715 @@ +{ + "openapi": "3.0.2", + "info": { + "title": "Components Catalog Service", + "description": "Manages and maintains a **catalog** of all published components (e.g. macro-algorithms, scripts, etc)", + "version": "0.3.2" + }, + "paths": { + "/v0/meta": { + "get": { + "tags": [ + "meta" + ], + "summary": "Get Service Metadata", + "operationId": "get_service_metadata_v0_meta_get", + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/Meta" + } + } + } + } + } + } + }, + "/v0/dags": { + "get": { + "tags": [ + "DAG" + ], + "summary": "List Dags", + "operationId": "list_dags_v0_dags_get", + "parameters": [ + { + "description": "Requests a specific page of the list results", + "required": false, + "schema": { + "title": "Page Token", + "type": "string", + "description": "Requests a specific page of the list results" + }, + "name": "page_token", + "in": "query" + }, + { + "description": "Maximum number of results to be returned by the server", + "required": false, + "schema": { + "title": "Page Size", + "minimum": 0.0, + "type": "integer", + "description": "Maximum number of results to be returned by the server", + "default": 0 + }, + "name": "page_size", + "in": "query" + }, + { + "description": "Sorts in ascending order comma-separated fields", + "required": false, + "schema": { + "title": "Order By", + "type": "string", + "description": "Sorts in ascending order comma-separated fields" + }, + "name": "order_by", + "in": "query" + } + ], + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "title": "Response List Dags V0 Dags Get", + "type": "array", + "items": { + "$ref": "#/components/schemas/DAGOut" + } + } + } + } + }, + "422": { + "description": "Validation Error", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/HTTPValidationError" + } + } + } + } + } + }, + "post": { + "tags": [ + "DAG" + ], + "summary": "Create Dag", + "operationId": "create_dag_v0_dags_post", + "requestBody": { + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/DAGIn" + } + } + }, + "required": true + }, + "responses": { + "201": { + "description": "Successfully created", + "content": { + "application/json": { + "schema": { + "title": "Response Create Dag V0 Dags Post", + "type": "integer" + } + } + } + }, + "422": { + "description": "Validation Error", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/HTTPValidationError" + } + } + } + } + } + } + }, + "/v0/dags:batchGet": { + "get": { + "tags": [ + "DAG" + ], + "summary": "Batch Get Dags", + "operationId": "batch_get_dags_v0_dags_batchGet_get", + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": {} + } + } + } + } + } + }, + "/v0/dags:search": { + "get": { + "tags": [ + "DAG" + ], + "summary": "Search Dags", + "operationId": "search_dags_v0_dags_search_get", + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": {} + } + } + } + } + } + }, + "/v0/dags/{dag_id}": { + "get": { + "tags": [ + "DAG" + ], + "summary": "Get Dag", + "operationId": "get_dag_v0_dags__dag_id__get", + "parameters": [ + { + "required": true, + "schema": { + "title": "Dag Id", + "type": "integer" + }, + "name": "dag_id", + "in": "path" + } + ], + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/DAGOut" + } + } + } + }, + "422": { + "description": "Validation Error", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/HTTPValidationError" + } + } + } + } + } + }, + "put": { + "tags": [ + "DAG" + ], + "summary": "Replace Dag", + "operationId": "replace_dag_v0_dags__dag_id__put", + "parameters": [ + { + "required": true, + "schema": { + "title": "Dag Id", + "type": "integer" + }, + "name": "dag_id", + "in": "path" + } + ], + "requestBody": { + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/DAGIn" + } + } + }, + "required": true + }, + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/DAGOut" + } + } + } + }, + "422": { + "description": "Validation Error", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/HTTPValidationError" + } + } + } + } + } + }, + "delete": { + "tags": [ + "DAG" + ], + "summary": "Delete Dag", + "operationId": "delete_dag_v0_dags__dag_id__delete", + "parameters": [ + { + "required": true, + "schema": { + "title": "Dag Id", + "type": "integer" + }, + "name": "dag_id", + "in": "path" + } + ], + "responses": { + "204": { + "description": "Successfully deleted" + }, + "422": { + "description": "Validation Error", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/HTTPValidationError" + } + } + } + } + } + }, + "patch": { + "tags": [ + "DAG" + ], + "summary": "Udpate Dag", + "operationId": "udpate_dag_v0_dags__dag_id__patch", + "parameters": [ + { + "required": true, + "schema": { + "title": "Dag Id", + "type": "integer" + }, + "name": "dag_id", + "in": "path" + } + ], + "requestBody": { + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/DAGIn" + } + } + } + }, + "responses": { + "200": { + "description": "Successful Response", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/DAGOut" + } + } + } + }, + "422": { + "description": "Validation Error", + "content": { + "application/json": { + "schema": { + "$ref": "#/components/schemas/HTTPValidationError" + } + } + } + } + } + } + } + }, + "components": { + "schemas": { + "Connection": { + "title": "Connection", + "type": "object", + "properties": { + "nodeUuid": { + "title": "Nodeuuid", + "type": "string" + }, + "output": { + "title": "Output", + "type": "string" + } + } + }, + "DAGIn": { + "title": "DAGIn", + "required": [ + "key", + "version", + "name" + ], + "type": "object", + "properties": { + "key": { + "title": "Key", + "pattern": "^(simcore)/(services)(/demodec)?/(comp|dynamic|frontend)(/[^\\s]+)+$", + "type": "string", + "example": "simcore/services/frontend/nodes-group/macros/1" + }, + "version": { + "title": "Version", + "pattern": "^(0|[1-9]\\d*)(\\.(0|[1-9]\\d*)){2}(-(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*)(\\.(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*))*)?(\\+[-\\da-zA-Z]+(\\.[-\\da-zA-Z-]+)*)?$", + "type": "string", + "example": "1.0.0" + }, + "name": { + "title": "Name", + "type": "string" + }, + "description": { + "title": "Description", + "type": "string" + }, + "contact": { + "title": "Contact", + "type": "string", + "format": "email" + }, + "workbench": { + "title": "Workbench", + "type": "object", + "additionalProperties": { + "$ref": "#/components/schemas/Node" + } + } + } + }, + "DAGOut": { + "title": "DAGOut", + "required": [ + "key", + "version", + "name", + "id" + ], + "type": "object", + "properties": { + "key": { + "title": "Key", + "pattern": "^(simcore)/(services)(/demodec)?/(comp|dynamic|frontend)(/[^\\s]+)+$", + "type": "string", + "example": "simcore/services/frontend/nodes-group/macros/1" + }, + "version": { + "title": "Version", + "pattern": "^(0|[1-9]\\d*)(\\.(0|[1-9]\\d*)){2}(-(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*)(\\.(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*))*)?(\\+[-\\da-zA-Z]+(\\.[-\\da-zA-Z-]+)*)?$", + "type": "string", + "example": "1.0.0" + }, + "name": { + "title": "Name", + "type": "string" + }, + "description": { + "title": "Description", + "type": "string" + }, + "contact": { + "title": "Contact", + "type": "string", + "format": "email" + }, + "id": { + "title": "Id", + "type": "integer" + }, + "workbench": { + "title": "Workbench", + "type": "object", + "additionalProperties": { + "$ref": "#/components/schemas/Node" + } + } + } + }, + "FilePickerOutput": { + "title": "FilePickerOutput", + "required": [ + "store", + "path", + "label" + ], + "type": "object", + "properties": { + "store": { + "title": "Store", + "anyOf": [ + { + "type": "string" + }, + { + "type": "integer" + } + ] + }, + "dataset": { + "title": "Dataset", + "type": "string" + }, + "path": { + "title": "Path", + "type": "string" + }, + "label": { + "title": "Label", + "type": "string" + } + } + }, + "HTTPValidationError": { + "title": "HTTPValidationError", + "type": "object", + "properties": { + "detail": { + "title": "Detail", + "type": "array", + "items": { + "$ref": "#/components/schemas/ValidationError" + } + } + } + }, + "Meta": { + "title": "Meta", + "required": [ + "name", + "version" + ], + "type": "object", + "properties": { + "name": { + "title": "Name", + "type": "string" + }, + "version": { + "title": "Version", + "pattern": "^(0|[1-9]\\d*)(\\.(0|[1-9]\\d*)){2}(-(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*)(\\.(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*))*)?(\\+[-\\da-zA-Z]+(\\.[-\\da-zA-Z-]+)*)?$", + "type": "string" + }, + "released": { + "title": "Released", + "type": "object", + "additionalProperties": { + "type": "string", + "pattern": "^(0|[1-9]\\d*)(\\.(0|[1-9]\\d*)){2}(-(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*)(\\.(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*))*)?(\\+[-\\da-zA-Z]+(\\.[-\\da-zA-Z-]+)*)?$" + }, + "description": "Maps every route's path tag with a released version" + } + }, + "example": { + "name": "simcore_service_foo", + "version": "2.4.45", + "released": { + "v1": "1.3.4", + "v2": "2.4.45" + } + } + }, + "Node": { + "title": "Node", + "required": [ + "key", + "version", + "label", + "position" + ], + "type": "object", + "properties": { + "key": { + "title": "Key", + "pattern": "^(simcore)/(services)(/demodec)?/(comp|dynamic|frontend)(/[^\\s]+)+$", + "type": "string", + "example": "simcore/services/comp/sleeper" + }, + "version": { + "title": "Version", + "pattern": "^(0|[1-9]\\d*)(\\.(0|[1-9]\\d*)){2}(-(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*)(\\.(0|[1-9]\\d*|\\d*[-a-zA-Z][-\\da-zA-Z]*))*)?(\\+[-\\da-zA-Z]+(\\.[-\\da-zA-Z-]+)*)?$", + "type": "string", + "example": "6.2.0" + }, + "label": { + "title": "Label", + "type": "string" + }, + "progress": { + "title": "Progress", + "maximum": 100.0, + "minimum": 0.0, + "type": "number", + "default": 0 + }, + "thumbnail": { + "title": "Thumbnail", + "type": "string" + }, + "inputs": { + "title": "Inputs", + "type": "object", + "additionalProperties": { + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + }, + { + "type": "number" + }, + { + "$ref": "#/components/schemas/Connection" + }, + { + "$ref": "#/components/schemas/FilePickerOutput" + } + ] + } + }, + "inputAccess": { + "title": "Inputaccess", + "type": "object", + "additionalProperties": { + "enum": [ + "ReadAndWrite", + "Invisible", + "ReadOnly" + ], + "type": "string" + } + }, + "inputNodes": { + "title": "Inputnodes", + "type": "array", + "items": { + "type": "string" + }, + "default": [] + }, + "outputs": { + "title": "Outputs", + "type": "object", + "additionalProperties": { + "anyOf": [ + { + "type": "integer" + }, + { + "type": "string" + }, + { + "type": "number" + }, + { + "$ref": "#/components/schemas/FilePickerOutput" + } + ] + } + }, + "outputNode": { + "title": "Outputnode", + "type": "boolean", + "deprecated": true + }, + "outputNodes": { + "title": "Outputnodes", + "type": "array", + "items": { + "type": "string" + }, + "default": [] + }, + "parent": { + "title": "Parent", + "type": "string", + "description": "Parent's (group-nodes') node ID s.", + "example": "nodeUUid1" + }, + "position": { + "$ref": "#/components/schemas/Position" + } + } + }, + "Position": { + "title": "Position", + "required": [ + "x", + "y" + ], + "type": "object", + "properties": { + "x": { + "title": "X", + "type": "integer" + }, + "y": { + "title": "Y", + "type": "integer" + } + } + }, + "ValidationError": { + "title": "ValidationError", + "required": [ + "loc", + "msg", + "type" + ], + "type": "object", + "properties": { + "loc": { + "title": "Location", + "type": "array", + "items": { + "type": "string" + } + }, + "msg": { + "title": "Message", + "type": "string" + }, + "type": { + "title": "Error Type", + "type": "string" + } + } + } + } + } +} diff --git a/services/catalog/requirements/_base.in b/services/catalog/requirements/_base.in index aa4eb284375..12465f1409c 100644 --- a/services/catalog/requirements/_base.in +++ b/services/catalog/requirements/_base.in @@ -6,9 +6,16 @@ pyyaml>=5.3 # Vulnerable +# fastapi and extensions fastapi[all] -aiopg[sa] -tenacity - async-exit-stack # not needed when python>=3.7 async-generator # not needed when python>=3.7 + +# data models +pydantic[dotenv] + +# database +aiopg[sa] + +# other +tenacity diff --git a/services/catalog/requirements/_base.txt b/services/catalog/requirements/_base.txt index c6a2bafafa0..e5f6e2414fd 100644 --- a/services/catalog/requirements/_base.txt +++ b/services/catalog/requirements/_base.txt @@ -4,42 +4,44 @@ # # pip-compile --output-file=requirements/_base.txt requirements/_base.in # -aiofiles==0.4.0 # via fastapi +aiofiles==0.5.0 # via fastapi aiopg[sa]==1.0.0 # via -r requirements/_base.in aniso8601==7.0.0 # via graphene async-exit-stack==1.0.1 # via -r requirements/_base.in, fastapi async-generator==1.10 # via -r requirements/_base.in, fastapi -certifi==2019.11.28 # via requests +certifi==2020.6.20 # via requests chardet==3.0.4 # via requests -click==7.0 # via uvicorn +click==7.1.2 # via uvicorn dataclasses==0.7 # via pydantic dnspython==1.16.0 # via email-validator -email-validator==1.0.5 # via fastapi -fastapi[all]==0.48.0 # via -r requirements/_base.in +email-validator==1.1.1 # via fastapi +fastapi[all]==0.58.0 # via -r requirements/_base.in graphene==2.1.8 # via fastapi -graphql-core==2.3.1 # via graphene, graphql-relay +graphql-core==2.3.2 # via graphene, graphql-relay graphql-relay==2.0.1 # via graphene h11==0.9.0 # via uvicorn -httptools==0.0.13 # via uvicorn -idna==2.8 # via email-validator, requests, yarl +httptools==0.1.1 # via uvicorn +idna==2.9 # via email-validator, requests, yarl itsdangerous==1.1.0 # via fastapi -jinja2==2.11.1 # via fastapi +jinja2==2.11.2 # via fastapi markupsafe==1.1.1 # via jinja2 -multidict==4.7.4 # via yarl +multidict==4.7.6 # via yarl +orjson==3.1.2 # via fastapi promise==2.3 # via graphql-core, graphql-relay -psycopg2-binary==2.8.4 # via aiopg, sqlalchemy -pydantic==1.4 # via fastapi +psycopg2-binary==2.8.5 # via aiopg, sqlalchemy +pydantic[dotenv]==1.5.1 # via -r requirements/_base.in, fastapi +python-dotenv==0.13.0 # via pydantic python-multipart==0.0.5 # via fastapi -pyyaml==5.3 # via -r requirements/_base.in, fastapi -requests==2.22.0 # via fastapi +pyyaml==5.3.1 # via -r requirements/_base.in, fastapi +requests==2.24.0 # via fastapi rx==1.6.1 # via graphql-core -six==1.14.0 # via graphene, graphql-core, graphql-relay, python-multipart, tenacity -sqlalchemy[postgresql_psycopg2binary]==1.3.13 # via -r requirements/../../../packages/postgres-database/requirements/_base.in, aiopg -starlette==0.12.9 # via fastapi -tenacity==6.0.0 # via -r requirements/_base.in -ujson==1.35 # via fastapi -urllib3==1.25.8 # via requests -uvicorn==0.11.2 # via fastapi +six==1.15.0 # via graphene, graphql-core, graphql-relay, python-multipart, tenacity +sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/../../../packages/postgres-database/requirements/_base.in, aiopg +starlette==0.13.4 # via fastapi +tenacity==6.2.0 # via -r requirements/_base.in +ujson==3.0.0 # via fastapi +urllib3==1.25.9 # via requests +uvicorn==0.11.5 # via fastapi uvloop==0.14.0 # via uvicorn websockets==8.1 # via uvicorn yarl==1.4.2 # via -r requirements/../../../packages/postgres-database/requirements/_base.in diff --git a/services/catalog/requirements/_test.in b/services/catalog/requirements/_test.in index b75eddfd81a..e9fd578a097 100644 --- a/services/catalog/requirements/_test.in +++ b/services/catalog/requirements/_test.in @@ -8,6 +8,7 @@ # 'services/catalog/tests/unit' dependencies + # testing pytest pytest-aiohttp # incompatible with pytest-asyncio. See https://github.com/pytest-dev/pytest-asyncio/issues/76 @@ -19,6 +20,10 @@ pytest-docker # fixtures Faker +# migration due to pytest_simcore.postgres_service2 +alembic +docker + # tools pylint coveralls diff --git a/services/catalog/requirements/_test.txt b/services/catalog/requirements/_test.txt index f2b0284c413..4ef4eaebc95 100644 --- a/services/catalog/requirements/_test.txt +++ b/services/catalog/requirements/_test.txt @@ -4,76 +4,84 @@ # # pip-compile --output-file=requirements/_test.txt requirements/_test.in # -aiofiles==0.4.0 # via -r requirements/_base.txt, fastapi +aiofiles==0.5.0 # via -r requirements/_base.txt, fastapi aiohttp==3.6.2 # via pytest-aiohttp aiopg[sa]==1.0.0 # via -r requirements/_base.txt +alembic==1.4.2 # via -r requirements/_test.in aniso8601==7.0.0 # via -r requirements/_base.txt, graphene -astroid==2.3.3 # via pylint +astroid==2.4.2 # via pylint async-exit-stack==1.0.1 # via -r requirements/_base.txt, fastapi async-generator==1.10 # via -r requirements/_base.txt, fastapi async-timeout==3.0.1 # via aiohttp attrs==19.3.0 # via aiohttp, pytest, pytest-docker -certifi==2019.11.28 # via -r requirements/_base.txt, requests +certifi==2020.6.20 # via -r requirements/_base.txt, requests chardet==3.0.4 # via -r requirements/_base.txt, aiohttp, requests -click==7.0 # via -r requirements/_base.txt, uvicorn -codecov==2.0.16 # via -r requirements/_test.in -coverage==5.0.3 # via codecov, coveralls, pytest-cov -coveralls==1.11.1 # via -r requirements/_test.in +click==7.1.2 # via -r requirements/_base.txt, uvicorn +codecov==2.1.7 # via -r requirements/_test.in +coverage==5.1 # via codecov, coveralls, pytest-cov +coveralls==2.0.0 # via -r requirements/_test.in dataclasses==0.7 # via -r requirements/_base.txt, pydantic dnspython==1.16.0 # via -r requirements/_base.txt, email-validator +docker==4.2.1 # via -r requirements/_test.in docopt==0.6.2 # via coveralls -email-validator==1.0.5 # via -r requirements/_base.txt, fastapi -faker==4.0.2 # via -r requirements/_test.in -fastapi[all]==0.48.0 # via -r requirements/_base.txt +email-validator==1.1.1 # via -r requirements/_base.txt, fastapi +faker==4.1.1 # via -r requirements/_test.in +fastapi[all]==0.58.0 # via -r requirements/_base.txt graphene==2.1.8 # via -r requirements/_base.txt, fastapi -graphql-core==2.3.1 # via -r requirements/_base.txt, graphene, graphql-relay +graphql-core==2.3.2 # via -r requirements/_base.txt, graphene, graphql-relay graphql-relay==2.0.1 # via -r requirements/_base.txt, graphene h11==0.9.0 # via -r requirements/_base.txt, uvicorn -httptools==0.0.13 # via -r requirements/_base.txt, uvicorn +httptools==0.1.1 # via -r requirements/_base.txt, uvicorn idna-ssl==1.1.0 # via aiohttp -idna==2.8 # via -r requirements/_base.txt, email-validator, requests, yarl -importlib-metadata==1.5.0 # via pluggy, pytest +idna==2.9 # via -r requirements/_base.txt, email-validator, requests, yarl +importlib-metadata==1.6.1 # via pluggy, pytest isort==4.3.21 # via pylint itsdangerous==1.1.0 # via -r requirements/_base.txt, fastapi -jinja2==2.11.1 # via -r requirements/_base.txt, fastapi +jinja2==2.11.2 # via -r requirements/_base.txt, fastapi lazy-object-proxy==1.4.3 # via astroid -markupsafe==1.1.1 # via -r requirements/_base.txt, jinja2 +mako==1.1.3 # via alembic +markupsafe==1.1.1 # via -r requirements/_base.txt, jinja2, mako mccabe==0.6.1 # via pylint -more-itertools==8.2.0 # via pytest -multidict==4.7.4 # via -r requirements/_base.txt, aiohttp, yarl -packaging==20.3 # via pytest +more-itertools==8.4.0 # via pytest +multidict==4.7.6 # via -r requirements/_base.txt, aiohttp, yarl +orjson==3.1.2 # via -r requirements/_base.txt, fastapi +packaging==20.4 # via pytest pluggy==0.13.1 # via pytest promise==2.3 # via -r requirements/_base.txt, graphql-core, graphql-relay -psycopg2-binary==2.8.4 # via -r requirements/_base.txt, aiopg, sqlalchemy +psycopg2-binary==2.8.5 # via -r requirements/_base.txt, aiopg, sqlalchemy ptvsd==4.3.2 # via -r requirements/_test.in -py==1.8.1 # via pytest -pydantic==1.4 # via -r requirements/_base.txt, fastapi -pylint==2.4.4 # via -r requirements/_test.in -pyparsing==2.4.6 # via packaging +py==1.9.0 # via pytest +pydantic[dotenv]==1.5.1 # via -r requirements/_base.txt, fastapi +pylint==2.5.3 # via -r requirements/_test.in +pyparsing==2.4.7 # via packaging pytest-aiohttp==0.3.0 # via -r requirements/_test.in -pytest-cov==2.8.1 # via -r requirements/_test.in +pytest-cov==2.10.0 # via -r requirements/_test.in pytest-docker==0.7.2 # via -r requirements/_test.in -pytest-mock==2.0.0 # via -r requirements/_test.in +pytest-mock==3.1.1 # via -r requirements/_test.in pytest-runner==5.2 # via -r requirements/_test.in pytest==5.4.3 # via -r requirements/_test.in, pytest-aiohttp, pytest-cov, pytest-mock -python-dateutil==2.8.1 # via faker +python-dateutil==2.8.1 # via alembic, faker +python-dotenv==0.13.0 # via -r requirements/_base.txt, pydantic +python-editor==1.0.4 # via alembic python-multipart==0.0.5 # via -r requirements/_base.txt, fastapi -pyyaml==5.3 # via -r requirements/_base.txt, fastapi -requests==2.22.0 # via -r requirements/_base.txt, codecov, coveralls, fastapi +pyyaml==5.3.1 # via -r requirements/_base.txt, fastapi +requests==2.24.0 # via -r requirements/_base.txt, codecov, coveralls, docker, fastapi rx==1.6.1 # via -r requirements/_base.txt, graphql-core -six==1.14.0 # via -r requirements/_base.txt, astroid, graphene, graphql-core, graphql-relay, packaging, promise, python-dateutil, python-multipart, tenacity -sqlalchemy[postgresql_psycopg2binary]==1.3.13 # via -r requirements/_base.txt, aiopg -starlette==0.12.9 # via -r requirements/_base.txt, fastapi -tenacity==6.0.0 # via -r requirements/_base.txt +six==1.15.0 # via -r requirements/_base.txt, astroid, docker, graphene, graphql-core, graphql-relay, packaging, promise, python-dateutil, python-multipart, tenacity, websocket-client +sqlalchemy[postgresql_psycopg2binary]==1.3.17 # via -r requirements/_base.txt, aiopg, alembic +starlette==0.13.4 # via -r requirements/_base.txt, fastapi +tenacity==6.2.0 # via -r requirements/_base.txt text-unidecode==1.3 # via faker +toml==0.10.1 # via pylint typed-ast==1.4.1 # via astroid -typing-extensions==3.7.4.1 # via aiohttp -ujson==1.35 # via -r requirements/_base.txt, fastapi -urllib3==1.25.8 # via -r requirements/_base.txt, requests -uvicorn==0.11.2 # via -r requirements/_base.txt, fastapi +typing-extensions==3.7.4.2 # via aiohttp +ujson==3.0.0 # via -r requirements/_base.txt, fastapi +urllib3==1.25.9 # via -r requirements/_base.txt, requests +uvicorn==0.11.5 # via -r requirements/_base.txt, fastapi uvloop==0.14.0 # via -r requirements/_base.txt, uvicorn -wcwidth==0.1.8 # via pytest +wcwidth==0.2.5 # via pytest +websocket-client==0.57.0 # via docker websockets==8.1 # via -r requirements/_base.txt, uvicorn -wrapt==1.11.2 # via astroid +wrapt==1.12.1 # via astroid yarl==1.4.2 # via -r requirements/_base.txt, aiohttp zipp==3.1.0 # via importlib-metadata diff --git a/services/catalog/requirements/dev.txt b/services/catalog/requirements/dev.txt index ebdfa55d837..99cc51a1cef 100644 --- a/services/catalog/requirements/dev.txt +++ b/services/catalog/requirements/dev.txt @@ -10,7 +10,7 @@ -r _test.txt # installs this repo's packages --e ../../packages/postgres-database/ +-e ../../packages/postgres-database/[migration] -e ../../packages/pytest-simcore/ # installs current package diff --git a/services/catalog/setup.cfg b/services/catalog/setup.cfg index d993000b975..004829b443e 100644 --- a/services/catalog/setup.cfg +++ b/services/catalog/setup.cfg @@ -7,7 +7,3 @@ tag = False [bumpversion:file:VERSION] [bumpversion:file:src/simcore_service_catalog/api/v0/openapi.yaml] - -[bumpversion:file:.cookiecutterrc] -search = '{current_version}' -replace = '{new_version}' diff --git a/services/catalog/src/simcore_service_catalog/__main__.py b/services/catalog/src/simcore_service_catalog/__main__.py index 10fa4f0890e..0228973c881 100644 --- a/services/catalog/src/simcore_service_catalog/__main__.py +++ b/services/catalog/src/simcore_service_catalog/__main__.py @@ -3,14 +3,32 @@ `python -m simcore_service_catalog ...` """ +import sys +from pathlib import Path + import uvicorn +from fastapi import FastAPI + +from simcore_service_catalog.core.application import init_app +from simcore_service_catalog.core.settings import AppSettings, BootModeEnum + +current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent + -from simcore_service_catalog.config import uvicorn_settings -from simcore_service_catalog.main import app +# SINGLETON FastAPI app +the_app: FastAPI = init_app() def main(): - uvicorn.run(app, **uvicorn_settings) + cfg: AppSettings = the_app.state.settings + uvicorn.run( + "simcore_service_catalog.__main__:the_app", + host=cfg.host, + port=cfg.port, + reload=cfg.boot_mode == BootModeEnum.development, + reload_dirs=[current_dir,], + log_level=cfg.log_level_name.lower(), + ) if __name__ == "__main__": diff --git a/services/catalog/src/simcore_service_catalog/__version__.py b/services/catalog/src/simcore_service_catalog/__version__.py index 3e72d0de708..ac32db2ddd2 100644 --- a/services/catalog/src/simcore_service_catalog/__version__.py +++ b/services/catalog/src/simcore_service_catalog/__version__.py @@ -5,4 +5,4 @@ major, minor, patch = __version__.split(".") api_version = __version__ -api_version_prefix: str = f"v{major}" +api_vtag: str = f"v{major}" diff --git a/services/catalog/src/simcore_service_catalog/endpoints/__init__.py b/services/catalog/src/simcore_service_catalog/api/__init__.py similarity index 100% rename from services/catalog/src/simcore_service_catalog/endpoints/__init__.py rename to services/catalog/src/simcore_service_catalog/api/__init__.py diff --git a/services/catalog/src/simcore_service_catalog/schemas/__init__.py b/services/catalog/src/simcore_service_catalog/api/dependencies/__init__.py similarity index 100% rename from services/catalog/src/simcore_service_catalog/schemas/__init__.py rename to services/catalog/src/simcore_service_catalog/api/dependencies/__init__.py diff --git a/services/catalog/src/simcore_service_catalog/api/dependencies/database.py b/services/catalog/src/simcore_service_catalog/api/dependencies/database.py new file mode 100644 index 00000000000..ef94b71e26c --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/api/dependencies/database.py @@ -0,0 +1,21 @@ +from typing import AsyncGenerator, Callable, Type + +from aiopg.sa import Engine +from fastapi import Depends +from fastapi.requests import Request + +from ...db.repositories import BaseRepository + + +def _get_db_engine(request: Request) -> Engine: + return request.app.state.engine + + +def get_repository(repo_type: Type[BaseRepository]) -> Callable: + async def _get_repo( + engine: Engine = Depends(_get_db_engine), + ) -> AsyncGenerator[BaseRepository, None]: + async with engine.acquire() as conn: + yield repo_type(conn) + + return _get_repo diff --git a/services/catalog/src/simcore_service_catalog/api/root.py b/services/catalog/src/simcore_service_catalog/api/root.py new file mode 100644 index 00000000000..a17002b1378 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/api/root.py @@ -0,0 +1,10 @@ +from fastapi import APIRouter + +from .routes import dags, health, meta + +router = APIRouter() +router.include_router(health.router) + +# API +router.include_router(meta.router, tags=["meta"], prefix="/meta") +router.include_router(dags.router, tags=["DAG"], prefix="/dags") diff --git a/services/catalog/src/simcore_service_catalog/utils/__init__.py b/services/catalog/src/simcore_service_catalog/api/routes/__init__.py similarity index 100% rename from services/catalog/src/simcore_service_catalog/utils/__init__.py rename to services/catalog/src/simcore_service_catalog/api/routes/__init__.py diff --git a/services/catalog/src/simcore_service_catalog/endpoints/dags.py b/services/catalog/src/simcore_service_catalog/api/routes/dags.py similarity index 68% rename from services/catalog/src/simcore_service_catalog/endpoints/dags.py rename to services/catalog/src/simcore_service_catalog/api/routes/dags.py index a75c2ed6eb1..a373a987f2f 100644 --- a/services/catalog/src/simcore_service_catalog/endpoints/dags.py +++ b/services/catalog/src/simcore_service_catalog/api/routes/dags.py @@ -9,15 +9,15 @@ HTTP_501_NOT_IMPLEMENTED, ) -from .. import db -from ..schemas import schemas_dags as schemas -from ..store import crud_dags as crud +from ...db.repositories.dags import DAGsRepository +from ...models.schemas.dag import DAGIn, DAGOut +from ..dependencies.database import get_repository router = APIRouter() log = logging.getLogger(__name__) -@router.get("/dags", response_model=List[schemas.DAGOut]) +@router.get("", response_model=List[DAGOut]) async def list_dags( page_token: Optional[str] = Query( None, description="Requests a specific page of the list results" @@ -28,7 +28,7 @@ async def list_dags( order_by: Optional[str] = Query( None, description="Sorts in ascending order comma-separated fields" ), - conn: db.SAConnection = Depends(db.get_cnx), + dags_repo: DAGsRepository = Depends(get_repository(DAGsRepository)), ): # List is suited to data from a single collection that is bounded in size and not cached @@ -41,18 +41,18 @@ async def list_dags( # TODO: filter: https://cloud.google.com/apis/design/naming_convention#list_filter_field # SEE response: https://cloud.google.com/apis/design/naming_convention#list_response log.debug("%s %s %s", page_token, page_size, order_by) - dags = await crud.list_dags(conn) + dags = await dags_repo.list_dags() return dags -@router.get("/dags:batchGet") +@router.get(":batchGet") async def batch_get_dags(): raise HTTPException( status_code=HTTP_501_NOT_IMPLEMENTED, detail="Still not implemented" ) -@router.get("/dags:search") +@router.get(":search") async def search_dags(): # A method that takes multiple resource IDs and returns an object for each of those IDs # Alternative to List for fetching data that does not adhere to List semantics, such as services.search. @@ -62,20 +62,23 @@ async def search_dags(): ) -@router.get("/dags/{dag_id}", response_model=schemas.DAGOut) -async def get_dag(dag_id: int, conn: db.SAConnection = Depends(db.get_cnx)): - dag = await crud.get_dag(conn, dag_id) +@router.get("/{dag_id}", response_model=DAGOut) +async def get_dag( + dag_id: int, dags_repo: DAGsRepository = Depends(get_repository(DAGsRepository)), +): + dag = await dags_repo.get_dag(dag_id) return dag @router.post( - "/dags", + "", response_model=int, status_code=HTTP_201_CREATED, response_description="Successfully created", ) async def create_dag( - dag: schemas.DAGIn = Body(...), conn: db.SAConnection = Depends(db.get_cnx) + dag: DAGIn = Body(...), + dags_repo: DAGsRepository = Depends(get_repository(DAGsRepository)), ): assert dag # nosec @@ -87,40 +90,42 @@ async def create_dag( ) # FIXME: conversion DAG (issue with workbench being json in orm and dict in schema) - dag_id = await crud.create_dag(conn, dag) + dag_id = await dags_repo.create_dag(dag) # TODO: no need to return since there is not extra info?, perhaps return return dag_id -@router.patch("/dags/{dag_id}", response_model=schemas.DAGOut) +@router.patch("/{dag_id}", response_model=DAGOut) async def udpate_dag( dag_id: int, - dag: schemas.DAGIn = Body(None), - conn: db.SAConnection = Depends(db.get_cnx), + dag: DAGIn = Body(None), + dags_repo: DAGsRepository = Depends(get_repository(DAGsRepository)), ): - async with conn.begin(): - await crud.update_dag(conn, dag_id, dag) - updated_dag = await crud.get_dag(conn, dag_id) + async with dags_repo.connection.begin(): + await dags_repo.update_dag(dag_id, dag) + updated_dag = await dags_repo.get_dag(dag_id) return updated_dag -@router.put("/dags/{dag_id}", response_model=Optional[schemas.DAGOut]) +@router.put("/{dag_id}", response_model=Optional[DAGOut]) async def replace_dag( dag_id: int, - dag: schemas.DAGIn = Body(...), - conn: db.SAConnection = Depends(db.get_cnx), + dag: DAGIn = Body(...), + dags_repo: DAGsRepository = Depends(get_repository(DAGsRepository)), ): - await crud.replace_dag(conn, dag_id, dag) + await dags_repo.replace_dag(dag_id, dag) @router.delete( - "/dags/{dag_id}", + "/{dag_id}", status_code=HTTP_204_NO_CONTENT, response_description="Successfully deleted", ) -async def delete_dag(dag_id: int, conn: db.SAConnection = Depends(db.get_cnx)): +async def delete_dag( + dag_id: int, dags_repo: DAGsRepository = Depends(get_repository(DAGsRepository)), +): # If the Delete method immediately removes the resource, it should return an empty response. # If the Delete method initiates a long-running operation, it should return the long-running operation. # If the Delete method only marks the resource as being deleted, it should return the updated resource. - await crud.delete_dag(conn, dag_id) + await dags_repo.delete_dag(dag_id) diff --git a/services/catalog/src/simcore_service_catalog/api/routes/health.py b/services/catalog/src/simcore_service_catalog/api/routes/health.py new file mode 100644 index 00000000000..d8b50c5f504 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/api/routes/health.py @@ -0,0 +1,8 @@ +from fastapi import APIRouter + +router = APIRouter() + + +@router.get("/", include_in_schema=False) +async def check_service_health(): + return ":-)" diff --git a/services/catalog/src/simcore_service_catalog/api/routes/meta.py b/services/catalog/src/simcore_service_catalog/api/routes/meta.py new file mode 100644 index 00000000000..903ce9666b1 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/api/routes/meta.py @@ -0,0 +1,15 @@ +from fastapi import APIRouter + +from ...__version__ import __version__, api_version, api_vtag +from ...models.schemas.meta import Meta + +router = APIRouter() + + +@router.get("", response_model=Meta) +async def get_service_metadata(): + return Meta( + name=__name__.split(".")[0], + version=api_version, + released={api_vtag: api_version}, + ) diff --git a/services/catalog/src/simcore_service_catalog/api/v0/openapi.yaml b/services/catalog/src/simcore_service_catalog/api/v0/openapi.yaml deleted file mode 100644 index 41fd31693ca..00000000000 --- a/services/catalog/src/simcore_service_catalog/api/v0/openapi.yaml +++ /dev/null @@ -1,452 +0,0 @@ -components: - schemas: - Connection: - properties: - nodeUuid: - title: Nodeuuid - type: string - output: - title: Output - type: string - title: Connection - type: object - DAGIn: - properties: - contact: - format: email - title: Contact - type: string - description: - title: Description - type: string - key: - example: simcore/services/frontend/nodes-group/macros/1 - pattern: ^(simcore)/(services)(/demodec)?/(comp|dynamic|frontend)(/[^\s]+)+$ - title: Key - type: string - name: - title: Name - type: string - version: - example: 1.0.0 - pattern: ^(0|[1-9]\d*)(\.(0|[1-9]\d*)){2}(-(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*)(\.(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*))*)?(\+[-\da-zA-Z]+(\.[-\da-zA-Z-]+)*)?$ - title: Version - type: string - workbench: - additionalProperties: - $ref: '#/components/schemas/Node' - title: Workbench - type: object - required: - - key - - version - - name - title: DAGIn - type: object - DAGOut: - properties: - contact: - format: email - title: Contact - type: string - description: - title: Description - type: string - id: - title: Id - type: integer - key: - example: simcore/services/frontend/nodes-group/macros/1 - pattern: ^(simcore)/(services)(/demodec)?/(comp|dynamic|frontend)(/[^\s]+)+$ - title: Key - type: string - name: - title: Name - type: string - version: - example: 1.0.0 - pattern: ^(0|[1-9]\d*)(\.(0|[1-9]\d*)){2}(-(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*)(\.(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*))*)?(\+[-\da-zA-Z]+(\.[-\da-zA-Z-]+)*)?$ - title: Version - type: string - workbench: - additionalProperties: - $ref: '#/components/schemas/Node' - title: Workbench - type: object - required: - - key - - version - - name - - id - title: DAGOut - type: object - FilePickerOutput: - properties: - dataset: - title: Dataset - type: string - label: - title: Label - type: string - path: - title: Path - type: string - store: - anyOf: - - type: string - - type: integer - title: Store - required: - - store - - path - - label - title: FilePickerOutput - type: object - HTTPValidationError: - properties: - detail: - items: - $ref: '#/components/schemas/ValidationError' - title: Detail - type: array - title: HTTPValidationError - type: object - Node: - properties: - inputAccess: - additionalProperties: - enum: - - ReadAndWrite - - Invisible - - ReadOnly - type: string - title: Inputaccess - type: object - inputNodes: - default: [] - items: - type: string - title: Inputnodes - type: array - inputs: - additionalProperties: - anyOf: - - type: integer - - type: string - - type: number - - $ref: '#/components/schemas/Connection' - - $ref: '#/components/schemas/FilePickerOutput' - title: Inputs - type: object - key: - example: simcore/services/comp/sleeper - pattern: ^(simcore)/(services)(/demodec)?/(comp|dynamic|frontend)(/[^\s]+)+$ - title: Key - type: string - label: - title: Label - type: string - outputNode: - deprecated: true - title: Outputnode - type: boolean - outputNodes: - default: [] - items: - type: string - title: Outputnodes - type: array - outputs: - additionalProperties: - anyOf: - - type: integer - - type: string - - type: number - - $ref: '#/components/schemas/FilePickerOutput' - title: Outputs - type: object - parent: - description: Parent's (group-nodes') node ID s. - example: nodeUUid1 - title: Parent - type: string - position: - $ref: '#/components/schemas/Position' - progress: - default: 0 - maximum: 100.0 - minimum: 0.0 - title: Progress - type: number - thumbnail: - title: Thumbnail - type: string - version: - example: 6.2.0 - pattern: ^(0|[1-9]\d*)(\.(0|[1-9]\d*)){2}(-(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*)(\.(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*))*)?(\+[-\da-zA-Z]+(\.[-\da-zA-Z-]+)*)?$ - title: Version - type: string - required: - - key - - version - - label - - position - title: Node - type: object - Position: - properties: - x: - title: X - type: integer - y: - title: Y - type: integer - required: - - x - - y - title: Position - type: object - ValidationError: - properties: - loc: - items: - type: string - title: Location - type: array - msg: - title: Message - type: string - type: - title: Error Type - type: string - required: - - loc - - msg - - type - title: ValidationError - type: object -info: - description: Manages and maintains a **catalog** of all published components (e.g. - macro-algorithms, scripts, etc) - title: Components Catalog Service - version: 0.3.2 -openapi: 3.0.2 -paths: - /: - get: - operationId: healthcheck__get - responses: - '200': - content: - application/json: - schema: {} - description: Successful Response - summary: Healthcheck - tags: - - diagnostics - /v0/dags: - get: - operationId: list_dags_v0_dags_get - parameters: - - description: Requests a specific page of the list results - in: query - name: page_token - required: false - schema: - description: Requests a specific page of the list results - title: Page Token - type: string - - description: Maximum number of results to be returned by the server - in: query - name: page_size - required: false - schema: - default: 0 - description: Maximum number of results to be returned by the server - minimum: 0.0 - title: Page Size - type: integer - - description: Sorts in ascending order comma-separated fields - in: query - name: order_by - required: false - schema: - description: Sorts in ascending order comma-separated fields - title: Order By - type: string - responses: - '200': - content: - application/json: - schema: - items: - $ref: '#/components/schemas/DAGOut' - title: Response List Dags V0 Dags Get - type: array - description: Successful Response - '422': - content: - application/json: - schema: - $ref: '#/components/schemas/HTTPValidationError' - description: Validation Error - summary: List Dags - tags: - - dags - post: - operationId: create_dag_v0_dags_post - requestBody: - content: - application/json: - schema: - $ref: '#/components/schemas/DAGIn' - required: true - responses: - '201': - content: - application/json: - schema: - title: Response Create Dag V0 Dags Post - type: integer - description: Successfully created - '422': - content: - application/json: - schema: - $ref: '#/components/schemas/HTTPValidationError' - description: Validation Error - summary: Create Dag - tags: - - dags - /v0/dags/{dag_id}: - delete: - operationId: delete_dag_v0_dags__dag_id__delete - parameters: - - in: path - name: dag_id - required: true - schema: - title: Dag Id - type: integer - responses: - '204': - description: Successfully deleted - '422': - content: - application/json: - schema: - $ref: '#/components/schemas/HTTPValidationError' - description: Validation Error - summary: Delete Dag - tags: - - dags - get: - operationId: get_dag_v0_dags__dag_id__get - parameters: - - in: path - name: dag_id - required: true - schema: - title: Dag Id - type: integer - responses: - '200': - content: - application/json: - schema: - $ref: '#/components/schemas/DAGOut' - description: Successful Response - '422': - content: - application/json: - schema: - $ref: '#/components/schemas/HTTPValidationError' - description: Validation Error - summary: Get Dag - tags: - - dags - patch: - operationId: udpate_dag_v0_dags__dag_id__patch - parameters: - - in: path - name: dag_id - required: true - schema: - title: Dag Id - type: integer - requestBody: - content: - application/json: - schema: - $ref: '#/components/schemas/DAGIn' - responses: - '200': - content: - application/json: - schema: - $ref: '#/components/schemas/DAGOut' - description: Successful Response - '422': - content: - application/json: - schema: - $ref: '#/components/schemas/HTTPValidationError' - description: Validation Error - summary: Udpate Dag - tags: - - dags - put: - operationId: replace_dag_v0_dags__dag_id__put - parameters: - - in: path - name: dag_id - required: true - schema: - title: Dag Id - type: integer - requestBody: - content: - application/json: - schema: - $ref: '#/components/schemas/DAGIn' - required: true - responses: - '200': - content: - application/json: - schema: - $ref: '#/components/schemas/DAGOut' - description: Successful Response - '422': - content: - application/json: - schema: - $ref: '#/components/schemas/HTTPValidationError' - description: Validation Error - summary: Replace Dag - tags: - - dags - /v0/dags:batchGet: - get: - operationId: batch_get_dags_v0_dags_batchGet_get - responses: - '200': - content: - application/json: - schema: {} - description: Successful Response - summary: Batch Get Dags - tags: - - dags - /v0/dags:search: - get: - operationId: search_dags_v0_dags_search_get - responses: - '200': - content: - application/json: - schema: {} - description: Successful Response - summary: Search Dags - tags: - - dags diff --git a/services/catalog/src/simcore_service_catalog/config.py b/services/catalog/src/simcore_service_catalog/config.py deleted file mode 100644 index a04b5d84611..00000000000 --- a/services/catalog/src/simcore_service_catalog/config.py +++ /dev/null @@ -1,56 +0,0 @@ -""" - - NOTE: CONS of programmatic config - - not testing-friendly since variables set upon import. Must reload when fixture is setup -""" -import logging -import os - -from .utils.helpers import cast_to_bool - -# DOCKER -is_container_environ: bool = "SC_BOOT_MODE" in os.environ -is_devel = os.environ.get("SC_BUILD_TARGET") == "development" -is_prod = os.environ.get("SC_BUILD_TARGET") == "production" - - -# LOGGING -log_level_name = os.environ.get("LOGLEVEL", "debug").upper() -log_level = getattr(logging, log_level_name.upper()) -log_formatter = logging.Formatter("%(levelname)s: %(message)s [%(name)s:%(lineno)d]") - -logging.root.setLevel(log_level) -if logging.root.handlers: - logging.root.handlers[0].setFormatter(log_formatter) - - -# TEST MODE -is_testing_enabled: bool = cast_to_bool(os.environ.get("TESTING", "true")) - - -# POSGRESS API -postgres_cfg: dict = { - "user": os.environ.get("POSTGRES_USER", "test"), - "password": os.environ.get("POSTGRES_PASSWORD", "test"), - "database": os.environ.get("POSTGRES_DB", "test"), - "host": os.environ.get("POSTGRES_HOST", "localhost"), - "port": int(os.environ.get("POSTGRES_PORT", "5432")), -} -postgres_dsn: str = "postgresql://{user}:{password}@{host}:{port}/{database}".format( - **postgres_cfg -) -postgres_cfg: dict = {**postgres_cfg, "uri": postgres_dsn} -init_tables: bool = cast_to_bool( - os.environ.get("POSTGRES_INIT_TABLES", "true" if is_devel else "false") -) - -# SERVER -# NOTE: https://www.uvicorn.org/settings/ -uvicorn_settings: dict = { - "host": "0.0.0.0" if is_container_environ else "127.0.0.1", # nosec - "port": 8000, - "log_level": log_level_name.lower(), -} - -# APPLICATION -app_context: dict = {} # FIXME: hate globals! diff --git a/services/catalog/src/simcore_service_catalog/core/__init__.py b/services/catalog/src/simcore_service_catalog/core/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/core/application.py b/services/catalog/src/simcore_service_catalog/core/application.py new file mode 100644 index 00000000000..3fe1f837297 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/core/application.py @@ -0,0 +1,57 @@ +import logging +from typing import Optional + +from fastapi import FastAPI + +from ..__version__ import api_version, api_vtag +from ..api.root import router as api_router +from ..api.routes.health import router as health_router +from .events import create_start_app_handler, create_stop_app_handler +from .settings import AppSettings + +# from fastapi.exceptions import RequestValidationError +# from starlette.exceptions import HTTPException + +# from ..api.errors.http_error import http_error_handler +# from ..api.errors.validation_error import http422_error_handler + + +logger = logging.getLogger(__name__) + + +def init_app(settings: Optional[AppSettings] = None) -> FastAPI: + if settings is None: + settings = AppSettings.create_default() + + logging.basicConfig(level=settings.loglevel) + logging.root.setLevel(settings.loglevel) + + app = FastAPI( + debug=settings.debug, + title="Components Catalog Service", + # TODO: get here extended description from setup or the other way around + description="Manages and maintains a **catalog** of all published components (e.g. macro-algorithms, scripts, etc)", + version=api_version, + openapi_url=f"/api/{api_vtag}/openapi.json", + docs_url="/dev/docs", + redoc_url=None, # default disabled + ) + + logger.debug(settings) + app.state.settings = settings + + app.add_event_handler("startup", create_start_app_handler(app)) + app.add_event_handler("shutdown", create_stop_app_handler(app)) + + # app.add_exception_handler(HTTPException, http_error_handler) + # app.add_exception_handler(RequestValidationError, http422_error_handler) + + # Routing + + # healthcheck at / and at /v0/ + app.include_router(health_router) + + # api under /v* + app.include_router(api_router, prefix=f"/{api_vtag}") + + return app diff --git a/services/catalog/src/simcore_service_catalog/core/errors.py b/services/catalog/src/simcore_service_catalog/core/errors.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/core/events.py b/services/catalog/src/simcore_service_catalog/core/events.py new file mode 100644 index 00000000000..58d91eb81ab --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/core/events.py @@ -0,0 +1,38 @@ +import logging +from typing import Callable + +from fastapi import FastAPI + +from ..db.events import close_db_connection, connect_to_db +from ..services.remote_debug import setup_remote_debugging +from .settings import BootModeEnum + +logger = logging.getLogger(__name__) + + +def create_start_app_handler(app: FastAPI) -> Callable: + async def start_app() -> None: + logger.info("Application started") + + # setup connection to remote debugger (if applies) + setup_remote_debugging( + force_enabled=app.state.settings.boot_mode == BootModeEnum.debug + ) + + # setup connection to pg db + if app.state.settings.postgres.enabled: + await connect_to_db(app) + + return start_app + + +def create_stop_app_handler(app: FastAPI) -> Callable: + async def stop_app() -> None: + try: + logger.info("Application stopping") + if app.state.settings.postgres.enabled: + await close_db_connection(app) + except Exception: # pylint: disable=broad-except + logger.exception("Stopping application") + + return stop_app diff --git a/services/catalog/src/simcore_service_catalog/core/settings.py b/services/catalog/src/simcore_service_catalog/core/settings.py new file mode 100644 index 00000000000..cf684359a5b --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/core/settings.py @@ -0,0 +1,84 @@ +import logging +from enum import Enum +from typing import Optional + +from pydantic import BaseSettings, Field, SecretStr, validator +from yarl import URL + + +class BootModeEnum(str, Enum): + debug = "debug-ptvsd" + production = "production" + development = "development" + + +class _CommonConfig: + case_sensitive = False + env_file = ".env" # SEE https://pydantic-docs.helpmanual.io/usage/settings/#dotenv-env-support + + +class PostgresSettings(BaseSettings): + enabled: bool = Field( + True, description="Enables/Disables connection with postgres service" + ) + user: str + password: SecretStr + db: str + host: str + port: int = 5432 + + minsize: int = 10 + maxsize: int = 10 + + @property + def dsn(self) -> URL: + return URL.build( + scheme="postgresql", + user=self.user, + password=self.password.get_secret_value(), + host=self.host, + port=self.port, + path=f"/{self.db}", + ) + + class Config(_CommonConfig): + env_prefix = "POSTGRES_" + + +class AppSettings(BaseSettings): + @classmethod + def create_default(cls) -> "AppSettings": + # This call triggers parsers + return cls(postgres=PostgresSettings()) + + # pylint: disable=no-self-use + # pylint: disable=no-self-argument + + # DOCKER + boot_mode: Optional[BootModeEnum] = Field(..., env="SC_BOOT_MODE") + + # LOGGING + log_level_name: str = Field("DEBUG", env="LOG_LEVEL") + + @validator("log_level_name") + def match_logging_level(cls, value) -> str: + try: + getattr(logging, value.upper()) + except AttributeError: + raise ValueError(f"{value.upper()} is not a valid level") + return value.upper() + + @property + def loglevel(self) -> int: + return getattr(logging, self.log_level_name) + + # POSTGRES + postgres: PostgresSettings + + # SERVICE SERVER (see : https://www.uvicorn.org/settings/) + host: str = "0.0.0.0" # nosec + port: int = 8000 + debug: bool = False # If True, debug tracebacks should be returned on errors. + + class Config(_CommonConfig): + env_prefix = "" diff --git a/services/catalog/src/simcore_service_catalog/db.py b/services/catalog/src/simcore_service_catalog/db.py deleted file mode 100644 index 675ec192395..00000000000 --- a/services/catalog/src/simcore_service_catalog/db.py +++ /dev/null @@ -1,60 +0,0 @@ -""" Access to postgres service - -""" -from typing import Optional - -import aiopg.sa -from aiopg.sa import Engine -from aiopg.sa.connection import SAConnection -from aiopg.sa.result import ResultProxy, RowProxy -from fastapi import Depends -from sqlalchemy.sql.ddl import CreateTable - -from .config import app_context, postgres_dsn -from .orm import DAG, dags - - -# TODO: idealy context cleanup. This concept here? app-context Dependency? -async def setup_engine() -> Engine: - engine = await aiopg.sa.create_engine( - postgres_dsn, - # unique identifier per app - application_name=f"{__name__}_{id(app_context)}", - minsize=5, - maxsize=10, - ) - app_context["engine"] = engine - - return engine - - -async def teardown_engine() -> None: - engine = app_context["engine"] - engine.close() - await engine.wait_closed() - - -async def create_tables(conn: SAConnection): - # FIXME: this is dangerous since it enforces an empty table - await conn.execute(f"DROP TABLE IF EXISTS {DAG.__tablename__}") - await conn.execute(CreateTable(dags)) - - -def info(engine: Optional[Engine] = None): - engine = engine or get_engine() - props = "closed driver dsn freesize maxsize minsize name size timeout".split() - for p in props: - print(f"{p} = {getattr(engine, p)}") - - -def get_engine() -> Engine: - return app_context["engine"] - - -async def get_cnx(engine: Engine = Depends(get_engine)): - # TODO: problem here is retries?? - async with engine.acquire() as conn: - yield conn - - -__all__ = ("Engine", "ResultProxy", "RowProxy", "SAConnection") diff --git a/services/catalog/src/simcore_service_catalog/db/__init__.py b/services/catalog/src/simcore_service_catalog/db/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/db/errors.py b/services/catalog/src/simcore_service_catalog/db/errors.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/db/events.py b/services/catalog/src/simcore_service_catalog/db/events.py new file mode 100644 index 00000000000..eebdcb7c9d8 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/db/events.py @@ -0,0 +1,56 @@ +import logging +from io import StringIO + +from aiopg.sa import Engine, create_engine +from fastapi import FastAPI +from tenacity import before_sleep_log, retry, stop_after_attempt, wait_fixed + +from ..core.settings import PostgresSettings + +logger = logging.getLogger(__name__) + + +ENGINE_ATTRS = "closed driver dsn freesize maxsize minsize name size timeout".split() + + +pg_retry_policy = dict( + wait=wait_fixed(5), + stop=stop_after_attempt(20), + before_sleep=before_sleep_log(logger, logging.WARNING), + reraise=True, +) + + +def _compose_info_on_engine(app: FastAPI) -> str: + engine = app.state.engine + stm = StringIO() + print("Setup engine:", end=" ", file=stm) + for attr in ENGINE_ATTRS: + print(f"{attr}={getattr(engine, attr)}", end="; ", file=stm) + return stm.getvalue() + + +@retry(**pg_retry_policy) +async def connect_to_db(app: FastAPI) -> None: + logger.debug("Connecting db ...") + + cfg: PostgresSettings = app.state.settings.postgres + engine: Engine = await create_engine( + str(cfg.dsn), + application_name=f"{__name__}_{id(app)}", # unique identifier per app + minsize=cfg.minsize, + maxsize=cfg.maxsize, + ) + logger.debug("Connected to %s", engine.dsn) + app.state.engine = engine + + logger.debug(_compose_info_on_engine(app)) + + +async def close_db_connection(app: FastAPI) -> None: + logger.debug("Disconnecting db ...") + + engine: Engine = app.state.engine + engine.close() + await engine.wait_closed() + logger.debug("Disconnected from %s", engine.dsn) diff --git a/services/catalog/src/simcore_service_catalog/db/repositories/__init__.py b/services/catalog/src/simcore_service_catalog/db/repositories/__init__.py new file mode 100644 index 00000000000..a5eeffe1ff5 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/db/repositories/__init__.py @@ -0,0 +1 @@ +from ._base import BaseRepository diff --git a/services/catalog/src/simcore_service_catalog/db/repositories/_base.py b/services/catalog/src/simcore_service_catalog/db/repositories/_base.py new file mode 100644 index 00000000000..81f04c0f7b5 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/db/repositories/_base.py @@ -0,0 +1,15 @@ +from aiopg.sa.connection import SAConnection + + +class BaseRepository: + """ + Repositories are pulled at every request + All queries to db within that request use same connection + """ + + def __init__(self, conn: SAConnection) -> None: + self._conn = conn + + @property + def connection(self) -> SAConnection: + return self._conn diff --git a/services/catalog/src/simcore_service_catalog/db/repositories/dags.py b/services/catalog/src/simcore_service_catalog/db/repositories/dags.py new file mode 100644 index 00000000000..9138378efa3 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/db/repositories/dags.py @@ -0,0 +1,60 @@ +import json +from typing import List, Optional + +import sqlalchemy as sa +from aiopg.sa.result import RowProxy + +from ...models.domain.dag import DAGAtDB +from ...models.schemas.dag import DAGIn +from ..tables import dags +from ._base import BaseRepository + + +class DAGsRepository(BaseRepository): + async def list_dags(self) -> List[DAGAtDB]: + dagraphs = [] + async for row in self.connection.execute(dags.select()): + if row: + dagraphs.append(DAGAtDB(**row)) + return dagraphs + + async def get_dag(self, dag_id: int) -> Optional[DAGAtDB]: + stmt = dags.select().where(dags.c.id == dag_id) + row: RowProxy = await (await self.connection.execute(stmt)).first() + if row: + return DAGAtDB(**row) + return None + + async def create_dag(self, dag: DAGIn) -> int: + stmt = dags.insert().values( + workbench=json.dumps(dag.dict()["workbench"]), + **dag.dict(exclude={"workbench"}) + ) + new_id: int = await (await self.connection.execute(stmt)).scalar() + return new_id + + async def replace_dag(self, dag_id: int, dag: DAGIn): + stmt = ( + dags.update() + .values( + workbench=json.dumps(dag.dict()["workbench"]), + **dag.dict(exclude={"workbench"}) + ) + .where(dags.c.id == dag_id) + ) + await self.connection.execute(stmt) + + async def update_dag(self, dag_id: int, dag: DAGIn): + patch = dag.dict(exclude_unset=True, exclude={"workbench"}) + if "workbench" in dag.__fields_set__: + patch["workbench"] = json.dumps(patch["workbench"]) + + stmt = sa.update(dags).values(**patch).where(dags.c.id == dag_id) + res = await self.connection.execute(stmt) + + # TODO: dev asserts + assert res.returns_rows == False # nosec + + async def delete_dag(self, dag_id: int): + stmt = sa.delete(dags).where(dags.c.id == dag_id) + await self.connection.execute(stmt) diff --git a/services/catalog/src/simcore_service_catalog/orm.py b/services/catalog/src/simcore_service_catalog/db/tables.py similarity index 62% rename from services/catalog/src/simcore_service_catalog/orm.py rename to services/catalog/src/simcore_service_catalog/db/tables.py index 01557d31052..be6fb11dfda 100644 --- a/services/catalog/src/simcore_service_catalog/orm.py +++ b/services/catalog/src/simcore_service_catalog/db/tables.py @@ -1,3 +1,3 @@ -from simcore_postgres_database.models.direct_acyclic_graphs import DAG, dags +from simcore_postgres_database.models.direct_acyclic_graphs import dags -__all__ = ["dags", "DAG"] +__all__ = ["dags"] diff --git a/services/catalog/src/simcore_service_catalog/endpoints/diagnostics.py b/services/catalog/src/simcore_service_catalog/endpoints/diagnostics.py deleted file mode 100644 index 15411e27b83..00000000000 --- a/services/catalog/src/simcore_service_catalog/endpoints/diagnostics.py +++ /dev/null @@ -1,17 +0,0 @@ -from fastapi import APIRouter - -from ..__version__ import __version__, api_version - -router = APIRouter() - - -@router.get("/") -async def healthcheck(): - # TODO: this is the entrypoint that docker uses to determin whether the service is starting, failed, etc... - # TODO: Reaching this point, what does it means? How is the health of this service? when shall it respond non-succesful? - return { - "name": __name__.split(".")[0], - "version": __version__, - "status": "SERVICE_RUNNING", - "api_version": api_version, - } diff --git a/services/catalog/src/simcore_service_catalog/main.py b/services/catalog/src/simcore_service_catalog/main.py deleted file mode 100644 index 63a1ad27460..00000000000 --- a/services/catalog/src/simcore_service_catalog/main.py +++ /dev/null @@ -1,78 +0,0 @@ -import logging -import os -import sys -from pathlib import Path - -import yaml -from fastapi import FastAPI -from tenacity import before_sleep_log, retry, stop_after_attempt, wait_fixed - -from . import config as cfg -from .__version__ import api_version, api_version_prefix -from .db import create_tables, setup_engine, teardown_engine -from .endpoints import dags, diagnostics -from .utils.remote_debug import setup_remote_debugging - -current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent - -log = logging.getLogger(__name__) -pid = os.getpid() - -app = FastAPI( - debug=cfg.is_testing_enabled, - title="Components Catalog Service", - # TODO: get here extended description from setup - description="Manages and maintains a **catalog** of all published components (e.g. macro-algorithms, scripts, etc)", - version=api_version, - openapi_url=f"/{api_version_prefix}/openapi.json", -) - -# projects -app.include_router(diagnostics.router, tags=["diagnostics"]) -app.include_router(dags.router, tags=["dags"], prefix=f"/{api_version_prefix}") - - -def dump_openapi(): - oas_path: Path = current_dir / f"api/{api_version_prefix}/openapi.yaml" - log.info("Saving openapi schema to %s", oas_path) - with open(oas_path, "wt") as fh: - yaml.safe_dump(app.openapi(), fh) - - -@app.on_event("startup") -def startup_event(): - log.info("Starting app '%d' [%d]...", id(app), pid) - setup_remote_debugging() - - -@app.on_event("startup") -async def start_db(): - log.info("Initializing db") - - @retry( - wait=wait_fixed(5), - stop=stop_after_attempt(20), - before_sleep=before_sleep_log(log, logging.WARNING), - reraise=True, - ) - async def go(): - engine = await setup_engine() - assert engine # nosec - - if cfg.init_tables: - log.info("Creating db tables (testing mode)") - async with engine.acquire() as conn: - await create_tables(conn) - - await go() # NOTE: non-blocking this way - - -@app.on_event("shutdown") -def shutdown_event(): - log.info("Closing app '%d' [%d]...", id(app), pid) - - -@app.on_event("shutdown") -async def shutdown_db(): - log.info("Closing db") - await teardown_engine() diff --git a/services/catalog/src/simcore_service_catalog/models/__init__.py b/services/catalog/src/simcore_service_catalog/models/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/models/domain/__init__.py b/services/catalog/src/simcore_service_catalog/models/domain/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/schemas/schemas_dags.py b/services/catalog/src/simcore_service_catalog/models/domain/dag.py similarity index 71% rename from services/catalog/src/simcore_service_catalog/schemas/schemas_dags.py rename to services/catalog/src/simcore_service_catalog/models/domain/dag.py index cfea6816e4b..0bef8016217 100644 --- a/services/catalog/src/simcore_service_catalog/schemas/schemas_dags.py +++ b/services/catalog/src/simcore_service_catalog/models/domain/dag.py @@ -16,18 +16,6 @@ class DAGBase(BaseModel): contact: Optional[EmailStr] -class DAGIn(DAGBase): - workbench: Optional[Dict[str, project.Node]] - - -class DAGInPath(DAGBase): - version: str - name: str - description: Optional[str] - contact: Optional[str] - workbench: Optional[Dict[str, project.Node]] - - class DAGAtDB(DAGBase): id: int workbench: Json[Dict[str, project.Node]] # pylint: disable=unsubscriptable-object @@ -36,5 +24,5 @@ class Config: orm_mode = True -class DAGOut(DAGAtDB): +class DAGData(DAGAtDB): workbench: Optional[Dict[str, project.Node]] diff --git a/services/catalog/src/simcore_service_catalog/schemas/project.py b/services/catalog/src/simcore_service_catalog/models/domain/project.py similarity index 100% rename from services/catalog/src/simcore_service_catalog/schemas/project.py rename to services/catalog/src/simcore_service_catalog/models/domain/project.py diff --git a/services/catalog/src/simcore_service_catalog/models/schemas/__init__.py b/services/catalog/src/simcore_service_catalog/models/schemas/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/models/schemas/dag.py b/services/catalog/src/simcore_service_catalog/models/schemas/dag.py new file mode 100644 index 00000000000..392f3d3cdb3 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/models/schemas/dag.py @@ -0,0 +1,20 @@ +from typing import Dict, Optional + +from ..domain import project +from ..domain.dag import DAGBase, DAGData + + +class DAGIn(DAGBase): + workbench: Optional[Dict[str, project.Node]] + + +class DAGInPath(DAGBase): + version: str + name: str + description: Optional[str] + contact: Optional[str] + workbench: Optional[Dict[str, project.Node]] + + +class DAGOut(DAGData): + pass diff --git a/services/catalog/src/simcore_service_catalog/models/schemas/meta.py b/services/catalog/src/simcore_service_catalog/models/schemas/meta.py new file mode 100644 index 00000000000..dd23eced796 --- /dev/null +++ b/services/catalog/src/simcore_service_catalog/models/schemas/meta.py @@ -0,0 +1,27 @@ +from typing import Dict, Optional + +from pydantic import BaseModel, Field, constr + +# TODO: review this RE +# use https://www.python.org/dev/peps/pep-0440/#version-scheme +# or https://www.python.org/dev/peps/pep-0440/#appendix-b-parsing-version-strings-with-regular-expressions +# +VERSION_RE = r"^(0|[1-9]\d*)(\.(0|[1-9]\d*)){2}(-(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*)(\.(0|[1-9]\d*|\d*[-a-zA-Z][-\da-zA-Z]*))*)?(\+[-\da-zA-Z]+(\.[-\da-zA-Z-]+)*)?$" +VersionStr = constr(regex=VERSION_RE) + + +class Meta(BaseModel): + name: str + version: VersionStr + released: Optional[Dict[str, VersionStr]] = Field( + None, description="Maps every route's path tag with a released version" + ) + + class Config: + schema_extra = { + "example": { + "name": "simcore_service_foo", + "version": "2.4.45", + "released": {"v1": "1.3.4", "v2": "2.4.45"}, + } + } diff --git a/services/catalog/src/simcore_service_catalog/services/__init__.py b/services/catalog/src/simcore_service_catalog/services/__init__.py new file mode 100644 index 00000000000..e69de29bb2d diff --git a/services/catalog/src/simcore_service_catalog/utils/remote_debug.py b/services/catalog/src/simcore_service_catalog/services/remote_debug.py similarity index 58% rename from services/catalog/src/simcore_service_catalog/utils/remote_debug.py rename to services/catalog/src/simcore_service_catalog/services/remote_debug.py index b29069c9fd8..d1ba21d5016 100644 --- a/services/catalog/src/simcore_service_catalog/utils/remote_debug.py +++ b/services/catalog/src/simcore_service_catalog/services/remote_debug.py @@ -1,38 +1,41 @@ """ Setup remote debugger with Python Tools for Visual Studio (PTVSD) """ + import logging import os -REMOTE_DEBUG_PORT = 3000 +logger = logging.getLogger(__name__) -log = logging.getLogger(__name__) +REMOTE_DEBUG_PORT = 3000 -def setup_remote_debugging(force_enabled=False): +def setup_remote_debugging(force_enabled=False, *, boot_mode=None): """ Programaticaly enables remote debugging if SC_BOOT_MODE==debug-ptvsd """ - boot_mode = os.environ.get("SC_BOOT_MODE") + boot_mode = boot_mode or os.environ.get("SC_BOOT_MODE") if boot_mode == "debug-ptvsd" or force_enabled: try: - log.debug("Enabling attach ptvsd ...") + logger.debug("Enabling attach ptvsd ...") # # SEE https://github.com/microsoft/ptvsd#enabling-debugging # import ptvsd ptvsd.enable_attach( - address=("0.0.0.0", REMOTE_DEBUG_PORT), redirect_output=True + address=("0.0.0.0", REMOTE_DEBUG_PORT), # nosec ) # nosec except ImportError: raise ValueError( "Cannot enable remote debugging. Please install ptvsd first" ) - log.info("Remote debugging enabled: listening port %s", REMOTE_DEBUG_PORT) + logger.info("Remote debugging enabled: listening port %s", REMOTE_DEBUG_PORT) else: - log.debug("Booting without remote debugging since SC_BOOT_MODE=%s", boot_mode) + logger.debug( + "Booting without remote debugging since SC_BOOT_MODE=%s", boot_mode + ) __all__ = ["setup_remote_debugging"] diff --git a/services/catalog/src/simcore_service_catalog/store/__init__.py b/services/catalog/src/simcore_service_catalog/store/__init__.py deleted file mode 100644 index 848941974fd..00000000000 --- a/services/catalog/src/simcore_service_catalog/store/__init__.py +++ /dev/null @@ -1,3 +0,0 @@ -""" - Access to data stored in database -""" diff --git a/services/catalog/src/simcore_service_catalog/store/crud_dags.py b/services/catalog/src/simcore_service_catalog/store/crud_dags.py deleted file mode 100644 index a10815bb853..00000000000 --- a/services/catalog/src/simcore_service_catalog/store/crud_dags.py +++ /dev/null @@ -1,60 +0,0 @@ -import json -from typing import List, Optional - -import sqlalchemy as sa - -from .. import db, orm -from ..schemas import schemas_dags as schemas - - -async def list_dags(conn: db.SAConnection) -> List[schemas.DAGAtDB]: - dags = [] - async for row in conn.execute(orm.dags.select()): - if row: - dags.append(schemas.DAGAtDB(**row)) - return dags - - -async def get_dag(conn: db.SAConnection, dag_id: int) -> Optional[schemas.DAGAtDB]: - stmt = orm.dags.select().where(orm.dags.c.id == dag_id) - row: db.RowProxy = await (await conn.execute(stmt)).first() - if row: - return schemas.DAGAtDB(**row) - return None - - -async def create_dag(conn: db.SAConnection, dag: schemas.DAGIn): - stmt = orm.dags.insert().values( - workbench=json.dumps(dag.dict()["workbench"]), **dag.dict(exclude={"workbench"}) - ) - new_id: int = await (await conn.execute(stmt)).scalar() - return new_id - - -async def replace_dag(conn: db.SAConnection, dag_id: int, dag: schemas.DAGIn): - stmt = ( - orm.dags.update() - .values( - workbench=json.dumps(dag.dict()["workbench"]), - **dag.dict(exclude={"workbench"}) - ) - .where(orm.dags.c.id == dag_id) - ) - await conn.execute(stmt) - - -async def update_dag(conn: db.SAConnection, dag_id: int, dag: schemas.DAGIn): - patch = dag.dict(exclude_unset=True, exclude={"workbench"}) - if "workbench" in dag.__fields_set__: - patch["workbench"] = json.dumps(patch["workbench"]) - - stmt = sa.update(orm.dags).values(**patch).where(orm.dags.c.id == dag_id) - res = await conn.execute(stmt) - - # TODO: dev asserts - assert res.returns_rows == False # nosec - - -async def delete_dag(conn: db.SAConnection, dag_id: int): - stmt = sa.delete(orm.dags).where(orm.dags.c.id == dag_id) - await conn.execute(stmt) diff --git a/services/catalog/src/simcore_service_catalog/utils/helpers.py b/services/catalog/src/simcore_service_catalog/utils/helpers.py deleted file mode 100644 index 4d95766d28b..00000000000 --- a/services/catalog/src/simcore_service_catalog/utils/helpers.py +++ /dev/null @@ -1,2 +0,0 @@ -def cast_to_bool(value: str) -> bool: - return value.lower() in ["true", "1", "yes"] diff --git a/services/catalog/tests/unit/conftest.py b/services/catalog/tests/unit/conftest.py index 3c222784c79..c934ce49f28 100644 --- a/services/catalog/tests/unit/conftest.py +++ b/services/catalog/tests/unit/conftest.py @@ -11,11 +11,16 @@ import simcore_service_catalog +pytest_plugins = ["pytest_simcore.postgres_service2"] + current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent +## FOLDER LAYOUT ------ + + @pytest.fixture(scope="session") -def project_slug_dir(): +def project_slug_dir() -> Path: folder = current_dir.parent.parent assert folder.exists() assert any(folder.glob("src/simcore_service_catalog")) @@ -23,7 +28,7 @@ def project_slug_dir(): @pytest.fixture(scope="session") -def package_dir(): +def installed_package_dir(): dirpath = Path(simcore_service_catalog.__file__).resolve().parent assert dirpath.exists() return dirpath @@ -49,6 +54,9 @@ def api_specs_dir(osparc_simcore_root_dir): return specs_dir +# FAKE DATA ------ + + @pytest.fixture() def fake_data_dag_in() -> Dict: DAG_DATA_IN_DICT = { diff --git a/services/catalog/tests/unit/test_package.py b/services/catalog/tests/unit/test_package.py index 3c4e17d5671..11121fc8d4d 100644 --- a/services/catalog/tests/unit/test_package.py +++ b/services/catalog/tests/unit/test_package.py @@ -10,8 +10,6 @@ from pytest_simcore.helpers.utils_pylint import assert_pylint_is_passing -# from simcore_service_catalog.__main__ import main - @pytest.fixture def pylintrc(project_slug_dir, osparc_simcore_root_dir): @@ -22,25 +20,14 @@ def pylintrc(project_slug_dir, osparc_simcore_root_dir): return pylintrc -def test_run_pylint(pylintrc, package_dir): - assert_pylint_is_passing(pylintrc=pylintrc, package_dir=package_dir) - - -# FIXME: main entrypoint -# def test_main(here): # pylint: disable=unused-variable -# """ -# Checks cli in place -# """ -# with pytest.raises(SystemExit) as excinfo: -# main("--help".split()) -# -# assert excinfo.value.code == 0 +def test_run_pylint(pylintrc, installed_package_dir): + assert_pylint_is_passing(pylintrc=pylintrc, package_dir=installed_package_dir) -def test_no_pdbs_in_place(package_dir): +def test_no_pdbs_in_place(installed_package_dir): MATCH = re.compile(r"pdb.set_trace()") EXCLUDE = ["__pycache__", ".git"] - for root, dirs, files in os.walk(package_dir): + for root, dirs, files in os.walk(installed_package_dir): for name in files: if name.endswith(".py"): pypth = Path(root) / name diff --git a/services/catalog/tests/unit/test_schemas.py b/services/catalog/tests/unit/test_schemas.py index be56b2503be..0cfe82f8042 100644 --- a/services/catalog/tests/unit/test_schemas.py +++ b/services/catalog/tests/unit/test_schemas.py @@ -7,28 +7,16 @@ import pytest -from simcore_service_catalog.orm import DAG -from simcore_service_catalog.schemas import schemas_dags - -# from typing import Optional, TypeVar, Generic -# from pydantic import GenericModel, BaseModel - -# DataT = TypeVar('DataT') - -# class Error(BaseModel): -# code: int -# message: str - - -# class Envelope(GenericModel, Generic[DataT]): -# data: Optional[DataT] -# error: Optional[Error] +import simcore_postgres_database.models.direct_acyclic_graphs as orm +from simcore_service_catalog.db import tables +from simcore_service_catalog.models.domain.dag import DAGAtDB +from simcore_service_catalog.models.schemas.dag import DAGIn, DAGOut @pytest.mark.skip(reason="DEV") def test_dev(): - dag_in = schemas_dags.DAGIn( + dag_in = DAGIn( key="simcore/services/frontend/nodes-group/macros/", version="1.0.0", name="foo" ) assert "key" in dag_in.__fields_set__ @@ -44,22 +32,22 @@ def test_dev(): print(dag_in.dict(exclude_none=True)) -def test_api_in_2_orm(fake_data_dag_in): +def test_api_in_to_orm(fake_data_dag_in): # dag in to db - dag_in = schemas_dags.DAGIn(**fake_data_dag_in) + dag_in = DAGIn(**fake_data_dag_in) # TODO: create DAG.from_api( :DAGIn) # SEE crud_dags.create_dag - selection = set(DAG.__table__.columns.keys()).remove("workbench") - dag_orm = DAG( + selection = set(tables.dags.columns.keys()).remove("workbench") + dag_orm = orm.DAG( id=1, workbench=json.dumps(fake_data_dag_in["workbench"]), **dag_in.dict(include=selection, exclude={"workbench"}), ) -def test_orm_2_api_out(fake_data_dag_in): - dag_orm = DAG( +def test_orm_to_api_out(fake_data_dag_in): + dag_orm = orm.DAG( id=1, key="simcore/services/comp/foo", version="1.0.0", @@ -69,8 +57,8 @@ def test_orm_2_api_out(fake_data_dag_in): workbench=json.dumps(fake_data_dag_in["workbench"]), ) - dag_db = schemas_dags.DAGAtDB.from_orm(dag_orm) + dag_db = DAGAtDB.from_orm(dag_orm) assert type(dag_db.workbench) == dict - dag_out = schemas_dags.DAGOut(**dag_db.dict()) - assert dag_out.id == 1 + dag_out = DAGOut(**dag_db.dict()) + assert dag_out.id == 1 # pylint: disable=no-member diff --git a/services/catalog/tests/unit/with_dbs/conftest.py b/services/catalog/tests/unit/with_dbs/conftest.py index 58fa505758c..6c17c38c60a 100644 --- a/services/catalog/tests/unit/with_dbs/conftest.py +++ b/services/catalog/tests/unit/with_dbs/conftest.py @@ -2,73 +2,41 @@ # pylint:disable=unused-argument # pylint:disable=redefined-outer-name -import importlib -import os import sys from pathlib import Path +from typing import Dict import pytest -import sqlalchemy as sa +from fastapi import FastAPI +from starlette.testclient import TestClient -import simcore_service_catalog.config +from simcore_service_catalog.core.application import init_app current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent @pytest.fixture(scope="session") -def environ_context(): - keep = os.environ.copy() +def test_docker_compose_file() -> Path: + # OVERRIDES pytest_simcore.postgres_service2.test_docker_compose_file + return current_dir / "docker-compose.yml" - # config database - os.environ["POSTGRES_DB"] = "test" - os.environ["POSTGRES_USER"] = "test" - os.environ["POSTGRES_PASSWORD"] = "test" - os.environ["POSTGRES_HOST"] = "127.0.0.1" - os.environ["POSTGRES_PORT"] = "5432" - os.environ["POSTGRES_INIT_TABLES"] = "True" - os.environ["TESTING"] = "True" +@pytest.fixture +def app( + monkeypatch, + test_environment: Dict[str, str], # pytest_simcore.postgres_service2 + apply_migration, # pytest_simcore.postgres_service2 +) -> FastAPI: - # FIXME: dirty trick to update configuration with these environs! WARNING: might have side effects - importlib.reload(simcore_service_catalog.config) + # Emulates environ so settings can get config + for key, value in test_environment.items(): + monkeypatch.setenv(key, value) - yield + app = init_app() + yield app - os.environ = keep - -@pytest.fixture(scope="session") -def docker_compose_file(environ_context): - """ Overrides pytest-docker fixture """ - - # docker-compose reads these environs - file_path = current_dir / "docker-compose.yml" - assert file_path.exists() - - yield str(file_path) - - -def is_postgres_responsive(url: str): - """Check if something responds to ``url`` """ - try: - engine = sa.create_engine(url) - conn = engine.connect() - conn.close() - except sa.exc.OperationalError: - return False - return True - - -@pytest.fixture(scope="session") -def postgres_service(docker_services, docker_ip, environ_context): - - url = "postgresql://{e[POSTGRES_USER]}:{e[POSTGRES_PASSWORD]}@{e[POSTGRES_HOST]}:{e[POSTGRES_PORT]}/{e[POSTGRES_DB]}".format( - e=os.environ - ) - - # Wait until service is responsive. - docker_services.wait_until_responsive( - check=lambda: is_postgres_responsive(url), timeout=30.0, pause=0.1, - ) - - return url +@pytest.fixture +def client(app) -> TestClient: + with TestClient(app) as cli: + yield cli diff --git a/services/catalog/tests/unit/with_dbs/test_entrypoint_dags.py b/services/catalog/tests/unit/with_dbs/test_entrypoint_dags.py index 9a70345b589..948c14f0b58 100644 --- a/services/catalog/tests/unit/with_dbs/test_entrypoint_dags.py +++ b/services/catalog/tests/unit/with_dbs/test_entrypoint_dags.py @@ -4,25 +4,22 @@ from typing import List -import pytest -from starlette.testclient import TestClient - -# TODO: app is init globally ... which is bad! -from simcore_service_catalog.main import api_version, app - - -@pytest.fixture -def client(environ_context, postgres_service): - # TODO: create new web-app everyt - with TestClient(app) as cli: - yield cli +from simcore_service_catalog.__version__ import api_version +from simcore_service_catalog.models.schemas.meta import Meta def test_read_healthcheck(client): response = client.get("/") assert response.status_code == 200 - assert "api_version" in response.json() - assert response.json()["api_version"] == api_version + assert response.text == '":-)"' + + +def test_read_meta(client): + response = client.get("/v0/meta") + assert response.status_code == 200 + meta = Meta(**response.json()) + assert meta.version == api_version + assert meta.name == "simcore_service_catalog" def test_list_dags(client): diff --git a/services/director/Dockerfile b/services/director/Dockerfile index a0acda52b7e..cbc0627f1d7 100644 --- a/services/director/Dockerfile +++ b/services/director/Dockerfile @@ -1,5 +1,5 @@ ARG PYTHON_VERSION="3.6.10" -FROM python:${PYTHON_VERSION}-slim as base +FROM python:${PYTHON_VERSION}-slim-buster as base # # USAGE: # cd sercices/director @@ -72,7 +72,7 @@ RUN apt-get update &&\ RUN python -m venv ${VIRTUAL_ENV} RUN pip --no-cache-dir install --upgrade \ - pip~=20.0.2 \ + pip~=20.1.1 \ wheel \ setuptools diff --git a/services/docker-compose.devel.yml b/services/docker-compose.devel.yml index 7d5492cdb78..c4876264f0f 100644 --- a/services/docker-compose.devel.yml +++ b/services/docker-compose.devel.yml @@ -9,7 +9,8 @@ services: api-server: environment: - SC_BOOT_MODE=debug-ptvsd - - LOGLEVEL=debug + - LOG_LEVEL=debug + - DEBUG=true volumes: - ./api-server:/devel/services/api-server - ../packages:/devel/packages @@ -17,8 +18,8 @@ services: catalog: environment: - SC_BOOT_MODE=debug-ptvsd - - TESTING=true - - LOGLEVEL=debug + - LOG_LEVEL=debug + - DEBUG=true volumes: - ./catalog:/devel/services/catalog - ../packages:/devel/packages diff --git a/services/docker-compose.local.yml b/services/docker-compose.local.yml index b0b813ad346..33e07664f0c 100644 --- a/services/docker-compose.local.yml +++ b/services/docker-compose.local.yml @@ -18,8 +18,6 @@ services: - "3006:3000" catalog: - environment: - - SC_BOOT_MODE=${SC_BOOT_MODE:-default} ports: - "8005:8000" - "3005:3000" diff --git a/services/docker-compose.yml b/services/docker-compose.yml index f2da6db23c5..5ef9124a6d1 100644 --- a/services/docker-compose.yml +++ b/services/docker-compose.yml @@ -36,8 +36,7 @@ services: - POSTGRES_DB=${POSTGRES_DB} - POSTGRES_HOST=${POSTGRES_HOST} - POSTGRES_PORT=${POSTGRES_PORT} - - TESTING=false - - LOGLEVEL=${LOG_LEVEL:-WARNING} + - LOG_LEVEL=${LOG_LEVEL:-WARNING} depends_on: - postgres networks: diff --git a/services/sidecar/Dockerfile b/services/sidecar/Dockerfile index 50aec0e82bc..b74a30d7759 100644 --- a/services/sidecar/Dockerfile +++ b/services/sidecar/Dockerfile @@ -1,5 +1,5 @@ ARG PYTHON_VERSION="3.6.10" -FROM python:${PYTHON_VERSION}-slim as base +FROM python:${PYTHON_VERSION}-slim-buster as base # # USAGE: # cd sercices/sidecar @@ -61,7 +61,7 @@ RUN apt-get update &&\ RUN python -m venv ${VIRTUAL_ENV} RUN pip --no-cache-dir install --upgrade \ - pip~=20.0.2 \ + pip~=20.1.1 \ wheel \ setuptools diff --git a/services/storage/Dockerfile b/services/storage/Dockerfile index 512ff02b9e6..99dfd140d6c 100644 --- a/services/storage/Dockerfile +++ b/services/storage/Dockerfile @@ -56,7 +56,7 @@ RUN apk add --no-cache \ linux-headers RUN $SC_PIP install --upgrade \ - pip~=20.0.2 \ + pip~=20.1.1 \ wheel \ setuptools diff --git a/services/web/Dockerfile b/services/web/Dockerfile index 2ecae9ea643..e38b0474338 100644 --- a/services/web/Dockerfile +++ b/services/web/Dockerfile @@ -1,5 +1,5 @@ ARG PYTHON_VERSION="3.6.10" -FROM python:${PYTHON_VERSION}-slim as base +FROM python:${PYTHON_VERSION}-slim-buster as base # # USAGE: # cd sercices/web @@ -79,7 +79,7 @@ RUN apt-get update &&\ RUN python -m venv ${VIRTUAL_ENV} RUN pip --no-cache-dir install --upgrade \ - pip~=20.0.2 \ + pip~=20.1.1 \ wheel \ setuptools From 6b02813693e65d9bc55b6e6223477498dc2bdae3 Mon Sep 17 00:00:00 2001 From: Sylvain <35365065+sanderegg@users.noreply.github.com> Date: Tue, 30 Jun 2020 10:13:57 +0200 Subject: [PATCH 13/43] Bugfix/apiserver does not need sslheaders (#1564) * no need for sslheader in apiserver * sslheader middleware does not like hyphens * declare swarm stack name in e2e testing * wait for services now checks the latest task * discover name of postgres container --- Makefile | 3 +- ci/github/system-testing/e2e.bash | 3 + services/docker-compose.yml | 7 +-- tests/e2e/Makefile | 2 +- tests/e2e/utils/wait_for_services.py | 84 ++++++++++++++++++---------- 5 files changed, 62 insertions(+), 37 deletions(-) diff --git a/Makefile b/Makefile index 71e34f82d28..0bf0e115eab 100644 --- a/Makefile +++ b/Makefile @@ -54,7 +54,8 @@ export WEBSERVER_API_VERSION := $(shell cat $(CURDIR)/services/web/server/VERSI # swarm stacks -export SWARM_STACK_NAME ?= simcore +export SWARM_STACK_NAME ?= master-simcore +export SWARM_STACK_NAME_NO_HYPHEN = $(subst -,_,$(SWARM_STACK_NAME)) # version tags export DOCKER_IMAGE_TAG ?= latest diff --git a/ci/github/system-testing/e2e.bash b/ci/github/system-testing/e2e.bash index 3749c0db734..06ebb2dc4dc 100755 --- a/ci/github/system-testing/e2e.bash +++ b/ci/github/system-testing/e2e.bash @@ -8,6 +8,9 @@ IFS=$'\n\t' DOCKER_IMAGE_TAG=$(exec ci/helpers/build_docker_image_tag.bash) export DOCKER_IMAGE_TAG +SWARM_STACK_NAME=e2e_test_stack +export SWARM_STACK_NAME + install() { echo "--------------- installing psql client..." /bin/bash -c 'sudo apt install -y postgresql-client' diff --git a/services/docker-compose.yml b/services/docker-compose.yml index 5ef9124a6d1..bb7752a149f 100644 --- a/services/docker-compose.yml +++ b/services/docker-compose.yml @@ -17,13 +17,12 @@ services: # gzip compression - traefik.http.middlewares.${SWARM_STACK_NAME}_gzip.compress=true # ssl header necessary so that socket.io upgrades correctly from polling to websocket mode. the middleware must be attached to the right connection. - - traefik.http.middlewares.${SWARM_STACK_NAME}_sslheader.headers.customrequestheaders.X-Forwarded-Proto=http - traefik.enable=true - traefik.http.services.${SWARM_STACK_NAME}_api-server.loadbalancer.server.port=8000 - traefik.http.routers.${SWARM_STACK_NAME}_api-server.rule=hostregexp(`{host:.+}`) - traefik.http.routers.${SWARM_STACK_NAME}_api-server.entrypoints=simcore_api - traefik.http.routers.${SWARM_STACK_NAME}_api-server.priority=1 - - traefik.http.routers.${SWARM_STACK_NAME}_api-server.middlewares=${SWARM_STACK_NAME}_gzip@docker, ${SWARM_STACK_NAME}_sslheader + - traefik.http.routers.${SWARM_STACK_NAME}_api-server.middlewares=${SWARM_STACK_NAME}_gzip@docker networks: - default @@ -116,13 +115,13 @@ services: # gzip compression - traefik.http.middlewares.${SWARM_STACK_NAME}_gzip.compress=true # ssl header necessary so that socket.io upgrades correctly from polling to websocket mode. the middleware must be attached to the right connection. - - traefik.http.middlewares.${SWARM_STACK_NAME}_sslheader.headers.customrequestheaders.X-Forwarded-Proto=http + - traefik.http.middlewares.${SWARM_STACK_NAME_NO_HYPHEN}_sslheader.headers.customrequestheaders.X-Forwarded-Proto=http - traefik.enable=true - traefik.http.services.${SWARM_STACK_NAME}_webserver.loadbalancer.server.port=8080 - traefik.http.routers.${SWARM_STACK_NAME}_webserver.rule=hostregexp(`{host:.+}`) - traefik.http.routers.${SWARM_STACK_NAME}_webserver.entrypoints=http - traefik.http.routers.${SWARM_STACK_NAME}_webserver.priority=1 - - traefik.http.routers.${SWARM_STACK_NAME}_webserver.middlewares=${SWARM_STACK_NAME}_gzip@docker, ${SWARM_STACK_NAME}_sslheader + - traefik.http.routers.${SWARM_STACK_NAME}_webserver.middlewares=${SWARM_STACK_NAME}_gzip@docker, ${SWARM_STACK_NAME_NO_HYPHEN}_sslheader@docker networks: - default - interactive_services_subnet diff --git a/tests/e2e/Makefile b/tests/e2e/Makefile index 9d0e8683a24..844b4c7cc1b 100644 --- a/tests/e2e/Makefile +++ b/tests/e2e/Makefile @@ -61,7 +61,7 @@ transfer-images-to-registry: ## transfer images to registry # completed transfer of images curl registry:5000/v2/_catalog -PUBLISHED_PORT = $(shell docker inspect simcore_postgres --format "{{(index .Endpoint.Ports 0).PublishedPort}}") +PUBLISHED_PORT = $(shell docker inspect $(shell docker service ls --format "{{ .Name }}" | grep postgres) --format "{{(index .Endpoint.Ports 0).PublishedPort}}") .PHONY: inject-templates-in-db inject-templates-in-db: ## inject project templates @PGPASSWORD=adminadmin psql --host localhost \ diff --git a/tests/e2e/utils/wait_for_services.py b/tests/e2e/utils/wait_for_services.py index 6726fceb3de..995cefc371a 100644 --- a/tests/e2e/utils/wait_for_services.py +++ b/tests/e2e/utils/wait_for_services.py @@ -1,4 +1,5 @@ import logging +from pdb import Pdb import sys import time from pathlib import Path @@ -10,20 +11,14 @@ logger = logging.getLogger(__name__) -current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent +current_dir = Path(sys.argv[0] if __name__ == "__main__" else __file__).resolve().parent WAIT_TIME_SECS = 20 RETRY_COUNT = 7 -MAX_WAIT_TIME=240 +MAX_WAIT_TIME = 240 # https://docs.docker.com/engine/swarm/how-swarm-mode-works/swarm-task-states/ -pre_states = [ - "NEW", - "PENDING", - "ASSIGNED", - "PREPARING", - "STARTING" -] +pre_states = ["NEW", "PENDING", "ASSIGNED", "PREPARING", "STARTING"] failed_states = [ "COMPLETE", @@ -32,37 +27,44 @@ "REJECTED", "ORPHANED", "REMOVE", - "CREATED" + "CREATED", ] # UTILS -------------------------------- + def get_tasks_summary(tasks): msg = "" for t in tasks: - t["Status"].setdefault("Err", '') + t["Status"].setdefault("Err", "") msg += "- task ID:{ID}, STATE: {Status[State]}, ERROR: '{Status[Err]}' \n".format( - **t) + **t + ) return msg def get_failed_tasks_logs(service, docker_client): failed_logs = "" for t in service.tasks(): - if t['Status']['State'].upper() in failed_states: - cid = t['Status']['ContainerStatus']['ContainerID'] + if t["Status"]["State"].upper() in failed_states: + cid = t["Status"]["ContainerStatus"]["ContainerID"] failed_logs += "{2} {0} - {1} BEGIN {2}\n".format( - service.name, t['ID'], "="*10) + service.name, t["ID"], "=" * 10 + ) if cid: container = docker_client.containers.get(cid) - failed_logs += container.logs().decode('utf-8') + failed_logs += container.logs().decode("utf-8") else: failed_logs += " log unavailable. container does not exists\n" failed_logs += "{2} {0} - {1} END {2}\n".format( - service.name, t['ID'], "="*10) + service.name, t["ID"], "=" * 10 + ) return failed_logs + + # -------------------------------------------------------------------------------- + def osparc_simcore_root_dir() -> Path: WILDCARD = "services/web/server" @@ -81,46 +83,66 @@ def osparc_simcore_root_dir() -> Path: def core_docker_compose_file() -> Path: return osparc_simcore_root_dir() / ".stack-simcore-version.yml" + def core_services() -> List[str]: with core_docker_compose_file().open() as fp: dc_specs = yaml.safe_load(fp) return [x for x in dc_specs["services"].keys()] + def ops_docker_compose_file() -> Path: return osparc_simcore_root_dir() / ".stack-ops.yml" + def ops_services() -> List[str]: with ops_docker_compose_file().open() as fp: dc_specs = yaml.safe_load(fp) return [x for x in dc_specs["services"].keys()] -def wait_for_services() -> bool: + +def wait_for_services() -> None: # get all services services = core_services() + ops_services() client = docker.from_env() - running_services = [x for x in client.services.list() if x.name.split("_")[1] in services] + running_services = [ + x for x in client.services.list() if x.name.split("_")[-1] in services + ] + # check all services are in assert len(running_services), "no services started!" - assert len(services) == len(running_services), "Some services are missing" + assert len(services) == len( + running_services + ), f"Some services are missing:\nexpected: {services}\ngot: {running_services}" # now check they are in running mode for service in running_services: + task = None for n in range(RETRY_COUNT): - task = service.tasks()[0] - if task['Status']['State'].upper() in pre_states: - print("Waiting [{}/{}] for {}...\n{}".format(n, RETRY_COUNT, service.name, get_tasks_summary(service.tasks()))) + # get last updated task + sorted_tasks = sorted(service.tasks(), key=lambda task: task["UpdatedAt"]) + task = sorted_tasks[-1] + + if task["Status"]["State"].upper() in pre_states: + print( + "Waiting [{}/{}] for {}...\n{}".format( + n, RETRY_COUNT, service.name, get_tasks_summary(service.tasks()) + ) + ) time.sleep(WAIT_TIME_SECS) - elif task['Status']['State'].upper() in failed_states: - print(f"Waiting [{n}/{RETRY_COUNT}] Service {service.name} failed once...\n{get_tasks_summary(service.tasks())}") + elif task["Status"]["State"].upper() in failed_states: + print( + f"Waiting [{n}/{RETRY_COUNT}] Service {service.name} failed once...\n{get_tasks_summary(service.tasks())}" + ) time.sleep(WAIT_TIME_SECS) else: break - assert task['Status']['State'].upper() == "RUNNING",\ - "Expected running, got \n{}\n{}".format( - pformat(task), - get_tasks_summary(service.tasks())) - # get_failed_tasks_logs(service, client)) - + assert task + assert ( + task["Status"]["State"].upper() == "RUNNING" + ), "Expected running, got \n{}\n{}".format( + pformat(task), get_tasks_summary(service.tasks()) + ) + # get_failed_tasks_logs(service, client)) if __name__ == "__main__": From 681fc9c41e7ef8d8616050349ac5d03669d507a5 Mon Sep 17 00:00:00 2001 From: Sylvain <35365065+sanderegg@users.noreply.github.com> Date: Tue, 30 Jun 2020 13:56:02 +0200 Subject: [PATCH 14/43] [feature] UI Fine grained access - project locking and notification * write permissions needed to remove a user not delete permission * added test for opening a shared project 2 times * access_rights renamed to accessRights *added test for groups access rights * adding state endpoint * mypy * now check project is locked * user is automatically enters room upon successful login * project state now returns the value + owner of the lock if any --- api/specs/common/schemas/project.yaml | 43 +- .../webserver/components/schemas/group.yaml | 4 +- api/specs/webserver/openapi-groups.yaml | 10 +- api/specs/webserver/openapi-projects.yaml | 26 + api/specs/webserver/openapi.yaml | 3 + mypy.ini | 13 +- .../src/simcore_postgres_database/cli.py | 16 +- .../src/pytest_simcore/websocket_client.py | 18 +- .../service-library/src/servicelib/utils.py | 14 +- scripts/common.Makefile | 3 + scripts/mypy.bash | 22 + .../osparc/component/export/Permissions.js | 4 +- .../preferences/pages/OrganizationsPage.js | 6 +- .../api/v0/openapi.yaml | 221 +++++++-- .../simcore_service_webserver/groups_api.py | 9 +- .../simcore_service_webserver/groups_utils.py | 4 +- .../projects/projects_api.py | 22 +- .../projects/projects_handlers.py | 103 +++- .../projects/projects_models.py | 27 +- .../resource_manager/websocket_manager.py | 10 +- .../socketio/events.py | 10 + .../socketio/handlers.py | 14 + .../simcore_service_webserver/users_api.py | 17 +- .../server/tests/unit/with_dbs/_helpers.py | 71 +++ .../server/tests/unit/with_dbs/conftest.py | 63 ++- .../server/tests/unit/with_dbs/test_groups.py | 361 ++++++-------- .../tests/unit/with_dbs/test_projects.py | 468 +++++++++++++----- .../unit/with_dbs/test_resource_manager.py | 33 +- 28 files changed, 1118 insertions(+), 497 deletions(-) create mode 100755 scripts/mypy.bash create mode 100644 services/web/server/tests/unit/with_dbs/_helpers.py diff --git a/api/specs/common/schemas/project.yaml b/api/specs/common/schemas/project.yaml index b71b11006df..cceb224263e 100644 --- a/api/specs/common/schemas/project.yaml +++ b/api/specs/common/schemas/project.yaml @@ -1,17 +1,18 @@ components: schemas: Project: - $ref: './project-v0.0.1-converted.yaml' + $ref: "./project-v0.0.1-converted.yaml" ProjectEnveloped: type: object required: - data properties: data: - $ref: '#/components/schemas/Project' + $ref: "#/components/schemas/Project" error: nullable: true default: null + ProjectArrayEnveloped: type: object required: @@ -20,7 +21,43 @@ components: data: type: array items: - $ref: '#/components/schemas/Project' + $ref: "#/components/schemas/Project" + error: + nullable: true + default: null + + ProjectState: + type: object + required: + - locked + properties: + locked: + type: object + description: describes the project lock state + required: + - value + properties: + value: + type: boolean + description: true if the project is locked + owner: + type: object + properties: + first_name: + type: string + last_name: + type: string + required: + - firstName + - lastName + + ProjectStateEnveloped: + type: object + required: + - data + properties: + data: + $ref: "#/components/schemas/ProjectState" error: nullable: true default: null diff --git a/api/specs/webserver/components/schemas/group.yaml b/api/specs/webserver/components/schemas/group.yaml index ebb7bfde29e..12459b729da 100644 --- a/api/specs/webserver/components/schemas/group.yaml +++ b/api/specs/webserver/components/schemas/group.yaml @@ -42,13 +42,13 @@ UsersGroup: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: $ref: "#/GroupAccessRights" required: - gid - label - description - - access_rights + - accessRights example: - gid: "27" label: "A user" diff --git a/api/specs/webserver/openapi-groups.yaml b/api/specs/webserver/openapi-groups.yaml index 5de07b012bf..fc7fd24fb83 100644 --- a/api/specs/webserver/openapi-groups.yaml +++ b/api/specs/webserver/openapi-groups.yaml @@ -181,7 +181,15 @@ paths: content: application/json: schema: - $ref: "./components/schemas/group.yaml#/GroupAccessRights" + type: object + properties: + accessRights: + $ref: "./components/schemas/group.yaml#/GroupAccessRights" + required: + - accessRights + + + responses: "200": description: modified user diff --git a/api/specs/webserver/openapi-projects.yaml b/api/specs/webserver/openapi-projects.yaml index 197fdbb1438..3efcd1f1f88 100644 --- a/api/specs/webserver/openapi-projects.yaml +++ b/api/specs/webserver/openapi-projects.yaml @@ -171,6 +171,29 @@ paths: default: $ref: "#/components/responses/DefaultErrorResponse" + /projects/{project_id}/state: + parameters: + - name: project_id + in: path + required: true + schema: + type: string + get: + tags: + - project + summary: returns the state of a project + operationId: state_project + responses: + "200": + description: returns the project current state + content: + application/json: + schema: + $ref: "#/components/schemas/ProjectStateEnveloped" + + default: + $ref: "#/components/responses/DefaultErrorResponse" + /projects/{project_id}/close: parameters: - name: project_id @@ -362,6 +385,9 @@ components: ProjectArrayEnveloped: $ref: "../common/schemas/project.yaml#/components/schemas/ProjectArrayEnveloped" + ProjectStateEnveloped: + $ref: "../common/schemas/project.yaml#/components/schemas/ProjectStateEnveloped" + RunningServiceEnveloped: $ref: "../common/schemas/running_service.yaml#/components/schemas/RunningServiceEnveloped" diff --git a/api/specs/webserver/openapi.yaml b/api/specs/webserver/openapi.yaml index 34d54bd2e85..06a566c05e6 100644 --- a/api/specs/webserver/openapi.yaml +++ b/api/specs/webserver/openapi.yaml @@ -159,6 +159,9 @@ paths: /projects/{project_id}:open: $ref: "./openapi-projects.yaml#/paths/~1projects~1{project_id}~1open" + /projects/{project_id}/state: + $ref: "./openapi-projects.yaml#/paths/~1projects~1{project_id}~1state" + /projects/{project_id}:close: $ref: "./openapi-projects.yaml#/paths/~1projects~1{project_id}~1close" diff --git a/mypy.ini b/mypy.ini index bd8c2057cf8..e343faa54ff 100644 --- a/mypy.ini +++ b/mypy.ini @@ -3,7 +3,8 @@ python_version = 3.6 warn_return_any = True warn_unused_configs = True - +namespace_packages = True +; ignore_missing_imports = True # Per-module options: [mypy-aio-pika.*] ignore_missing_imports = True @@ -17,6 +18,8 @@ ignore_missing_imports = True ignore_missing_imports = True [mypy-aiosmtplib.*] ignore_missing_imports = True +[mypy-aiozipkin.*] +ignore_missing_imports = True [mypy-asyncpg.*] ignore_missing_imports = True [mypy-celery.*] @@ -27,6 +30,10 @@ ignore_missing_imports = True ignore_missing_imports = True [mypy-jsondiff.*] ignore_missing_imports = True +[mypy-jsonschema.*] +ignore_missing_imports = True +[mypy-openapi_core.*] +ignore_missing_imports = True [mypy-passlib.*] ignore_missing_imports = True [mypy-prometheus_client.*] @@ -39,3 +46,7 @@ ignore_missing_imports = True ignore_missing_imports = True [mypy-trafaret.*] ignore_missing_imports = True +[mypy-trafaret_config.*] +ignore_missing_imports = True +[mypy-yarl.*] +ignore_missing_imports = True diff --git a/packages/postgres-database/src/simcore_postgres_database/cli.py b/packages/postgres-database/src/simcore_postgres_database/cli.py index f86c97035b3..697a3101c70 100644 --- a/packages/postgres-database/src/simcore_postgres_database/cli.py +++ b/packages/postgres-database/src/simcore_postgres_database/cli.py @@ -11,14 +11,14 @@ from copy import deepcopy from logging.config import fileConfig from pathlib import Path -from typing import Dict +from typing import Dict, Optional -import alembic.command import click + +import alembic.command import docker from alembic import __version__ as __alembic_version__ from alembic.config import Config as AlembicConfig - from simcore_postgres_database.models import * from simcore_postgres_database.utils import build_url, raise_if_not_responsive @@ -110,14 +110,13 @@ def _reset_cache(): def main(): """ Simplified CLI for database migration with alembic """ - @main.command() @click.option("--user", "-u") @click.option("--password", "-p") @click.option("--host") @click.option("--port", type=int) @click.option("--database", "-d") -def discover(**cli_inputs) -> Dict: +def discover(**cli_inputs) -> Optional[Dict]: """ Discovers databases and caches configs in ~/.simcore_postgres_database.json (except if --no-cache)""" # NOTE: Do not add defaults to user, password so we get a chance to ping urls # TODO: if multiple candidates online, then query user to select @@ -125,14 +124,14 @@ def discover(**cli_inputs) -> Dict: click.echo("Discovering database ...") cli_cfg = {key: value for key, value in cli_inputs.items() if value is not None} - def _test_cached(): + def _test_cached() -> Dict: """Tests cached configuration """ cfg = _load_cache() or {} if cfg: cfg.update(cli_cfg) # overrides return cfg - def _test_env(): + def _test_env() -> Dict: """Tests environ variables """ cfg = { "user": os.getenv("POSTGRES_USER"), @@ -144,7 +143,7 @@ def _test_env(): cfg.update(cli_cfg) return cfg - def _test_swarm(): + def _test_swarm() -> Dict: """Tests published port in swarm from host """ cfg = _test_env() cfg["host"] = "127.0.0.1" @@ -182,6 +181,7 @@ def _test_swarm(): _reset_cache() click.secho("Sorry, database not found !!", blink=False, bold=True, fg="red") + return None @main.command() diff --git a/packages/pytest-simcore/src/pytest_simcore/websocket_client.py b/packages/pytest-simcore/src/pytest_simcore/websocket_client.py index 5e4d49ba0eb..a9f5927d241 100644 --- a/packages/pytest-simcore/src/pytest_simcore/websocket_client.py +++ b/packages/pytest-simcore/src/pytest_simcore/websocket_client.py @@ -10,7 +10,7 @@ @pytest.fixture() -async def security_cookie(loop, client) -> str: +async def security_cookie_factory(loop, client) -> str: # get the cookie by calling the root entrypoint resp = await client.get("/v0/") payload = await resp.json() @@ -32,17 +32,23 @@ async def socketio_url(loop, client) -> str: @pytest.fixture() -async def socketio_client(socketio_url: str, security_cookie: str): +async def socketio_client( + socketio_url: str, security_cookie_factory: str +) -> socketio.AsyncClient: clients = [] async def connect(client_session_id) -> socketio.AsyncClient: - sio = socketio.AsyncClient(ssl_verify=False) # enginio 3.10.0 introduced ssl verification - url = str(URL(socketio_url).with_query({'client_session_id': client_session_id})) + sio = socketio.AsyncClient( + ssl_verify=False + ) # enginio 3.10.0 introduced ssl verification + url = str( + URL(socketio_url).with_query({"client_session_id": client_session_id}) + ) headers = {} - if security_cookie: + if security_cookie_factory: # WARNING: engineio fails with empty cookies. Expects "key=value" - headers.update({'Cookie': security_cookie}) + headers.update({"Cookie": security_cookie_factory}) await sio.connect(url, headers=headers) assert sio.sid diff --git a/packages/service-library/src/servicelib/utils.py b/packages/service-library/src/servicelib/utils.py index 758b47cbf3e..150452576cb 100644 --- a/packages/service-library/src/servicelib/utils.py +++ b/packages/service-library/src/servicelib/utils.py @@ -8,15 +8,15 @@ import logging import os from pathlib import Path -from typing import Any, Coroutine, List, Optional, Union +from typing import Any, Awaitable, Coroutine, List, Optional, Union logger = logging.getLogger(__name__) def is_production_environ() -> bool: - """ - If True, this code most probably - runs in a production container of one of the + """ + If True, this code most probably + runs in a production container of one of the osparc-simcore services. """ # WARNING: based on a convention that is not constantly verified @@ -46,7 +46,9 @@ def search_osparc_repo_dir(start: Union[str, Path], max_iterations=8) -> Optiona # FUTURES -def fire_and_forget_task(obj: Union[Coroutine, asyncio.Future]) -> asyncio.Future: +def fire_and_forget_task( + obj: Union[Coroutine, asyncio.Future, Awaitable] +) -> asyncio.Future: future = asyncio.ensure_future(obj) def log_exception_callback(fut: asyncio.Future): @@ -63,7 +65,7 @@ def log_exception_callback(fut: asyncio.Future): async def logged_gather( *tasks, reraise: bool = True, log: logging.Logger = logger ) -> List[Any]: - """ + """ *all* coroutine passed are executed concurrently and once they are all completed, the first error (if any) is reraised or all returned diff --git a/scripts/common.Makefile b/scripts/common.Makefile index 3fc94e1ead0..eb8b6b5b7c1 100644 --- a/scripts/common.Makefile +++ b/scripts/common.Makefile @@ -100,6 +100,9 @@ autoformat: ## runs black python formatter on this service's code. Use AFTER mak --exclude "/(\.eggs|\.git|\.hg|\.mypy_cache|\.nox|\.tox|\.venv|\.svn|_build|buck-out|build|dist|migration|client-sdk|generated_code)/" \ $(CURDIR) +.PHONY: mypy +mypy: $(REPO_BASE_DIR)/scripts/mypy.bash $(REPO_BASE_DIR)/mypy.ini ## runs mypy python static type checker on this services's code. Use AFTER make install-* + @$(REPO_BASE_DIR)/scripts/mypy.bash src .PHONY: version-patch version-minor version-major version-patch: ## commits version with bug fixes not affecting the cookiecuter config diff --git a/scripts/mypy.bash b/scripts/mypy.bash new file mode 100755 index 00000000000..001f76bc7da --- /dev/null +++ b/scripts/mypy.bash @@ -0,0 +1,22 @@ +#!/bin/bash +# http://redsymbol.net/articles/unofficial-bash-strict-mode/ +set -o errexit +set -o nounset +set -o pipefail +IFS=$'\n\t' + +target_path=$(realpath ${1:-Please give target path as argument}) +cd "$(dirname "$0")" +default_mypy_config="$(dirname ${PWD})/mypy.ini" +mypy_config=$(realpath ${2:-${default_mypy_config}}) + +echo mypying ${target_path} using config in ${mypy_config}... + +echo $default_mypy_config +docker run --rm \ + -v ${mypy_config}:/config/mypy.ini \ + -v ${target_path}:/src \ + --workdir=/src \ + kiwicom/mypy mypy \ + --config-file /config/mypy.ini \ + /src diff --git a/services/web/client/source/class/osparc/component/export/Permissions.js b/services/web/client/source/class/osparc/component/export/Permissions.js index 8c00053b4c7..90bda71e574 100644 --- a/services/web/client/source/class/osparc/component/export/Permissions.js +++ b/services/web/client/source/class/osparc/component/export/Permissions.js @@ -157,7 +157,7 @@ qx.Class.define("osparc.component.export.Permissions", { ctrl.bindProperty("login", "subtitle", null, item, id); // user ctrl.bindProperty("description", "subtitle", null, item, id); // organization ctrl.bindProperty("isOrg", "isOrganization", null, item, id); - ctrl.bindProperty("access_rights", "accessRights", null, item, id); + ctrl.bindProperty("accessRights", "accessRights", null, item, id); ctrl.bindProperty("showOptions", "showOptions", null, item, id); }, configureItem: item => { @@ -229,7 +229,7 @@ qx.Class.define("osparc.component.export.Permissions", { collaborator["thumbnail"] = osparc.utils.Avatar.getUrl(collaborator["login"], 32); collaborator["name"] = osparc.utils.Utils.firstsUp(collaborator["first_name"], collaborator["last_name"]); } - collaborator["access_rights"] = aceessRights[gid]; + collaborator["accessRights"] = aceessRights[gid]; if (this.__isUserOwner()) { collaborator["showOptions"] = true; } diff --git a/services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js b/services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js index 5613368f77e..5675578ce85 100644 --- a/services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js +++ b/services/web/client/source/class/osparc/desktop/preferences/pages/OrganizationsPage.js @@ -88,7 +88,7 @@ qx.Class.define("osparc.desktop.preferences.pages.OrganizationsPage", { ctrl.bindProperty("label", "title", null, item, id); ctrl.bindProperty("description", "subtitle", null, item, id); ctrl.bindProperty("nMembers", "contact", null, item, id); - ctrl.bindProperty("access_rights", "accessRights", null, item, id); + ctrl.bindProperty("accessRights", "accessRights", null, item, id); }, configureItem: item => { const thumbanil = item.getChildControl("thumbnail"); @@ -159,7 +159,7 @@ qx.Class.define("osparc.desktop.preferences.pages.OrganizationsPage", { ctrl.bindProperty("id", "key", null, item, id); ctrl.bindProperty("thumbnail", "thumbnail", null, item, id); ctrl.bindProperty("name", "title", null, item, id); - ctrl.bindProperty("access_rights", "accessRights", null, item, id); + ctrl.bindProperty("accessRights", "accessRights", null, item, id); ctrl.bindProperty("login", "subtitle", null, item, id); ctrl.bindProperty("showOptions", "showOptions", null, item, id); }, @@ -365,7 +365,7 @@ qx.Class.define("osparc.desktop.preferences.pages.OrganizationsPage", { "uid": orgMember["key"] }, data: { - "access_rights": { + "accessRights": { "read": true, "write": true, "delete": false diff --git a/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml b/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml index 7e9f28a8dc5..f52a88fd62b 100644 --- a/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml +++ b/services/web/server/src/simcore_service_webserver/api/v0/openapi.yaml @@ -2136,7 +2136,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -2164,7 +2164,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -2196,7 +2196,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -2224,7 +2224,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -2254,7 +2254,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -2282,7 +2282,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -2867,7 +2867,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -2895,7 +2895,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -2927,7 +2927,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -2955,7 +2955,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -2985,7 +2985,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -3013,7 +3013,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -3139,7 +3139,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -3167,7 +3167,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -3207,7 +3207,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -3235,7 +3235,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -3373,7 +3373,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -3401,7 +3401,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -3527,7 +3527,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -3555,7 +3555,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -3595,7 +3595,7 @@ paths: description: url to the group thumbnail type: string format: uri - access_rights: + accessRights: description: defines acesss rights for the user type: object properties: @@ -3623,7 +3623,7 @@ paths: - gid - label - description - - access_rights + - accessRights example: - gid: '27' label: A user @@ -4269,29 +4269,34 @@ paths: content: application/json: schema: - description: defines acesss rights for the user type: object properties: - read: - type: boolean - write: - type: boolean - delete: - type: boolean + accessRights: + description: defines acesss rights for the user + type: object + properties: + read: + type: boolean + write: + type: boolean + delete: + type: boolean + required: + - read + - write + - delete + example: + - read: true + write: false + delete: false + - read: true + write: true + delete: false + - read: true + write: true + delete: true required: - - read - - write - - delete - example: - - read: true - write: false - delete: false - - read: true - write: true - delete: false - - read: true - write: true - delete: true + - accessRights responses: '200': description: modified user @@ -8641,6 +8646,138 @@ paths: message: Password is not secure field: pasword status: 400 + '/projects/{project_id}/state': + parameters: + - name: project_id + in: path + required: true + schema: + type: string + get: + tags: + - project + summary: returns the state of a project + operationId: state_project + responses: + '200': + description: returns the project current state + content: + application/json: + schema: + type: object + required: + - data + properties: + data: + type: object + required: + - locked + properties: + locked: + type: object + description: describes the project lock state + required: + - value + properties: + value: + type: boolean + description: true if the project is locked + owner: + type: object + properties: + first_name: + type: string + last_name: + type: string + required: + - firstName + - lastName + error: + nullable: true + default: null + default: + description: Default http error response body + content: + application/json: + schema: + type: object + required: + - error + properties: + data: + nullable: true + default: null + error: + type: object + nullable: true + properties: + logs: + description: log messages + type: array + items: + type: object + properties: + level: + description: log level + type: string + default: INFO + enum: + - DEBUG + - WARNING + - INFO + - ERROR + message: + description: 'log message. If logger is USER, then it MUST be human readable' + type: string + logger: + description: name of the logger receiving this message + type: string + required: + - message + example: + message: 'Hi there, Mr user' + level: INFO + logger: user-logger + errors: + description: errors metadata + type: array + items: + type: object + required: + - code + - message + properties: + code: + type: string + description: Typically the name of the exception that produced it otherwise some known error code + message: + type: string + description: Error message specific to this item + resource: + type: string + description: API resource affected by this error + field: + type: string + description: Specific field within the resource + status: + description: HTTP error code + type: integer + example: + BadRequestError: + logs: + - message: Requested information is incomplete or malformed + level: ERROR + - message: Invalid email and password + level: ERROR + logger: USER + errors: + - code: InvalidEmail + message: Email is malformed + field: email + - code: UnsavePassword + message: Password is not secure + field: pasword + status: 400 '/projects/{project_id}:close': parameters: - name: project_id diff --git a/services/web/server/src/simcore_service_webserver/groups_api.py b/services/web/server/src/simcore_service_webserver/groups_api.py index 722fb264997..256cfe6f86f 100644 --- a/services/web/server/src/simcore_service_webserver/groups_api.py +++ b/services/web/server/src/simcore_service_webserver/groups_api.py @@ -120,7 +120,7 @@ async def create_user_group( ) ) return convert_groups_db_to_schema( - group, access_rights=DEFAULT_GROUP_OWNER_ACCESS_RIGHTS + group, accessRights=DEFAULT_GROUP_OWNER_ACCESS_RIGHTS ) @@ -145,7 +145,7 @@ async def update_user_group( ) updated_group = await result.fetchone() return convert_groups_db_to_schema( - updated_group, access_rights=group.access_rights + updated_group, accessRights=group.access_rights ) @@ -271,10 +271,11 @@ async def update_user_in_group( conn, gid, the_user_id_in_group ) # modify the user access rights + new_db_values = {"access_rights": new_values_for_user_in_group["accessRights"]} await conn.execute( # pylint: disable=no-value-for-parameter user_to_groups.update() - .values(**new_values_for_user_in_group) + .values(**new_db_values) .where( and_( user_to_groups.c.uid == the_user_id_in_group, @@ -283,7 +284,7 @@ async def update_user_in_group( ) ) the_user = dict(the_user) - the_user.update(**new_values_for_user_in_group) + the_user.update(**new_db_values) return convert_user_in_group_to_schema(the_user) diff --git a/services/web/server/src/simcore_service_webserver/groups_utils.py b/services/web/server/src/simcore_service_webserver/groups_utils.py index 5ac3a0eafa8..f2183b2602c 100644 --- a/services/web/server/src/simcore_service_webserver/groups_utils.py +++ b/services/web/server/src/simcore_service_webserver/groups_utils.py @@ -13,7 +13,7 @@ "label": "name", "description": "description", "thumbnail": "thumbnail", - "access_rights": "access_rights", + "accessRights": "access_rights", } @@ -49,6 +49,6 @@ def convert_groups_schema_to_db(schema: Dict) -> Dict: def convert_user_in_group_to_schema(row: Union[RowProxy, Dict]) -> Dict[str, str]: group_user = convert_user_db_to_schema(row) group_user.pop("role") - group_user["access_rights"] = row["access_rights"] + group_user["accessRights"] = row["access_rights"] group_user["gid"] = row["primary_gid"] return group_user diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_api.py b/services/web/server/src/simcore_service_webserver/projects/projects_api.py index 35896cdaa03..ff615334a80 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_api.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_api.py @@ -22,6 +22,7 @@ from ..computation_api import delete_pipeline_db from ..director import director_api +from ..socketio.events import SOCKET_IO_PROJECT_UPDATED_EVENT, post_group_messages from ..storage_api import copy_data_folders_from_project # mocked in unit-tests from ..storage_api import ( delete_data_folders_of_project, @@ -30,6 +31,7 @@ from .config import CONFIG_SECTION_NAME from .projects_db import APP_PROJECT_DBAPI from .projects_exceptions import NodeNotFoundError +from .projects_models import ProjectState from .projects_utils import clone_project_document log = logging.getLogger(__name__) @@ -49,7 +51,7 @@ async def get_project_for_user( project_uuid: str, user_id: int, *, - include_templates: bool = False + include_templates: bool = False, ) -> Dict: """ Returns a project accessible to user @@ -326,3 +328,21 @@ async def is_node_id_present_in_any_project_workbench( """If the node_id is presnet in one of the projects' workbenche returns True""" db = app[APP_PROJECT_DBAPI] return node_id in await db.get_all_node_ids_from_workbenches() + + +async def notify_project_state_update( + app: web.Application, project: Dict, state: ProjectState +) -> None: + rooms_to_notify = [ + f"{gid}" for gid, rights in project["accessRights"].items() if rights["read"] + ] + + messages = { + SOCKET_IO_PROJECT_UPDATED_EVENT: { + "project_uuid": project["uuid"], + "data": state.dict(), + } + } + + for room in rooms_to_notify: + await post_group_messages(app, room, messages) diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py b/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py index 9507566d572..24715830fbb 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_handlers.py @@ -3,6 +3,7 @@ """ import json import logging +from typing import Set from aiohttp import web from jsonschema import ValidationError @@ -14,9 +15,11 @@ from ..resource_manager.websocket_manager import managed_resource from ..security_api import check_permission from ..security_decorators import permission_required +from ..users_api import get_user_name from . import projects_api from .projects_db import APP_PROJECT_DBAPI from .projects_exceptions import ProjectInvalidRightsError, ProjectNotFoundError +from .projects_models import Owner, ProjectLocked, ProjectState OVERRIDABLE_DOCUMENT_KEYS = [ "name", @@ -273,6 +276,11 @@ async def delete_project(request: web.Request): raise web.HTTPNoContent(content_type="application/json") +class HTTPLocked(web.HTTPClientError): + # pylint: disable=too-many-ancestors + status_code = 423 + + @login_required @permission_required("project.open") async def open_project(request: web.Request) -> web.Response: @@ -291,12 +299,34 @@ async def open_project(request: web.Request) -> web.Response: user_id=user_id, include_templates=True, ) + + # let's check if that project is already opened by someone else + other_users: Set[int] = { + x + for x in await rt.find_users_of_resource("project_id", project_uuid) + if x != f"{user_id}" + } + + if other_users: + # project is already locked + usernames = [ + await get_user_name(request.app, uid) for uid in other_users + ] + raise HTTPLocked(reason=f"Project is already opened by {usernames}") await rt.add("project_id", project_uuid) # user id opened project uuid await projects_api.start_project_interactive_services(request, project, user_id) - - return {"data": project} + # notify users that project is now locked + project_state = ProjectState( + locked=ProjectLocked( + value=True, owner=Owner(**await get_user_name(request.app, user_id)) + ) + ) + await projects_api.notify_project_state_update( + request.app, project, project_state + ) + return web.json_response({"data": project}) except ProjectNotFoundError: raise web.HTTPNotFound(reason=f"Project {project_uuid} not found") @@ -313,28 +343,71 @@ async def close_project(request: web.Request) -> web.Response: # TODO: temporary hidden until get_handlers_from_namespace refactor to seek marked functions instead! from .projects_api import get_project_for_user + project = await get_project_for_user( + request.app, + project_uuid=project_uuid, + user_id=user_id, + include_templates=True, + ) + project_opened_by_others: bool = False with managed_resource(user_id, client_session_id, request.app) as rt: - await get_project_for_user( - request.app, - project_uuid=project_uuid, - user_id=user_id, - include_templates=True, - ) await rt.remove("project_id") - other_users = await rt.find_users_of_resource("project_id", project_uuid) - if not other_users: - # only remove the services if no one else is using them now - fire_and_forget_task( - projects_api.remove_project_interactive_services( + project_opened_by_others = ( + len(await rt.find_users_of_resource("project_id", project_uuid)) > 0 + ) + # if we are the only user left we can safely remove the services + async def _close_project_task() -> None: + try: + if not project_opened_by_others: + # only remove the services if no one else is using them now + await projects_api.remove_project_interactive_services( user_id, project_uuid, request.app ) + finally: + # ensure we notify the user whatever happens, the GC should take care of dangling services in case of issue + await projects_api.notify_project_state_update( + request.app, project, ProjectState(locked={"value": False}) ) + fire_and_forget_task(_close_project_task()) + raise web.HTTPNoContent(content_type="application/json") except ProjectNotFoundError: raise web.HTTPNotFound(reason=f"Project {project_uuid} not found") +@login_required +@permission_required("project.read") +async def state_project(request: web.Request) -> web.Response: + user_id = request[RQT_USERID_KEY] + project_uuid = request.match_info.get("project_id") + with managed_resource(user_id, None, request.app) as rt: + # TODO: temporary hidden until get_handlers_from_namespace refactor to seek marked functions instead! + from .projects_api import get_project_for_user + + # check that project exists + await get_project_for_user( + request.app, + project_uuid=project_uuid, + user_id=user_id, + include_templates=True, + ) + + users_of_project = await rt.find_users_of_resource("project_id", project_uuid) + usernames = [ + await get_user_name(request.app, uid) for uid in set(users_of_project) + ] + assert len(usernames) <= 1 # currently not possible to have more than 1 + project_state = ProjectState( + locked={ + "value": len(usernames) > 0, + "owner": Owner(**usernames[0]) if len(usernames) > 0 else None, + } + ) + + return web.json_response({"data": project_state.dict()}) + + @login_required @permission_required("project.read") async def get_active_project(request: web.Request) -> web.Response: @@ -357,7 +430,7 @@ async def get_active_project(request: web.Request) -> web.Response: include_templates=True, ) - return {"data": project} + return web.json_response({"data": project}) except ProjectNotFoundError: raise web.HTTPNotFound(reason="Project not found") @@ -416,7 +489,7 @@ async def get_node(request: web.Request) -> web.Response: node_details = await projects_api.get_project_node( request, project_uuid, user_id, node_uuid ) - return {"data": node_details} + return web.json_response({"data": node_details}) except ProjectNotFoundError: raise web.HTTPNotFound(reason=f"Project {project_uuid} not found") diff --git a/services/web/server/src/simcore_service_webserver/projects/projects_models.py b/services/web/server/src/simcore_service_webserver/projects/projects_models.py index 3952c803d07..18f2544985b 100644 --- a/services/web/server/src/simcore_service_webserver/projects/projects_models.py +++ b/services/web/server/src/simcore_service_webserver/projects/projects_models.py @@ -2,12 +2,31 @@ Facade """ -from simcore_postgres_database.webserver_models import ( - ProjectType, - projects, -) +from typing import Optional + +from pydantic import BaseModel + +from simcore_postgres_database.webserver_models import ProjectType, projects + + +class Owner(BaseModel): + first_name: str + last_name: str + + +class ProjectLocked(BaseModel): + value: bool + owner: Optional[Owner] + + +class ProjectState(BaseModel): + locked: ProjectLocked + __all__ = [ "projects", "ProjectType", + "ProjectState", + "ProjectLocked", + "Owner", ] diff --git a/services/web/server/src/simcore_service_webserver/resource_manager/websocket_manager.py b/services/web/server/src/simcore_service_webserver/resource_manager/websocket_manager.py index 5ea83ebd0af..1deff4df369 100644 --- a/services/web/server/src/simcore_service_webserver/resource_manager/websocket_manager.py +++ b/services/web/server/src/simcore_service_webserver/resource_manager/websocket_manager.py @@ -16,7 +16,7 @@ import logging from contextlib import contextmanager -from typing import Dict, List +from typing import Dict, Iterator, List, Optional, Union import attr from aiohttp import web @@ -32,7 +32,7 @@ @attr.s(auto_attribs=True) class WebsocketRegistry: user_id: str - client_session_id: str + client_session_id: Optional[str] app: web.Application def _resource_key(self) -> Dict[str, str]: @@ -150,9 +150,9 @@ async def find_users_of_resource(self, key: str, value: str) -> List[str]: @contextmanager def managed_resource( - user_id: str, client_session_id: str, app: web.Application -) -> WebsocketRegistry: - registry = WebsocketRegistry(user_id, client_session_id, app) + user_id: Union[str, int], client_session_id: Optional[str], app: web.Application +) -> Iterator[WebsocketRegistry]: + registry = WebsocketRegistry(str(user_id), client_session_id, app) try: yield registry except Exception: diff --git a/services/web/server/src/simcore_service_webserver/socketio/events.py b/services/web/server/src/simcore_service_webserver/socketio/events.py index d7477aca481..9ffae614981 100644 --- a/services/web/server/src/simcore_service_webserver/socketio/events.py +++ b/services/web/server/src/simcore_service_webserver/socketio/events.py @@ -15,6 +15,8 @@ log = logging.getLogger(__name__) +SOCKET_IO_PROJECT_UPDATED_EVENT: str = "projectStateUpdated" + async def post_messages( app: Application, user_id: str, messages: Dict[str, Any] @@ -28,3 +30,11 @@ async def post_messages( # Notice that there might be several tabs open for event_name, data in messages.items(): fire_and_forget_task(sio.emit(event_name, json.dumps(data), room=sid)) + + +async def post_group_messages( + app: Application, room: str, messages: Dict[str, Any] +) -> None: + sio: AsyncServer = get_socket_server(app) + for event_name, data in messages.items(): + fire_and_forget_task(sio.emit(event_name, json.dumps(data), room=room)) diff --git a/services/web/server/src/simcore_service_webserver/socketio/handlers.py b/services/web/server/src/simcore_service_webserver/socketio/handlers.py index 51681a1b992..3a0fa3bdc6f 100644 --- a/services/web/server/src/simcore_service_webserver/socketio/handlers.py +++ b/services/web/server/src/simcore_service_webserver/socketio/handlers.py @@ -16,6 +16,7 @@ from servicelib.observer import observe from servicelib.utils import fire_and_forget_task, logged_gather +from ..groups_api import list_user_groups from ..login.decorators import RQT_USERID_KEY, login_required from ..resource_manager.config import get_service_deletion_timeout from ..resource_manager.websocket_manager import managed_resource @@ -45,6 +46,7 @@ async def connect(sid: str, environ: Dict, app: web.Application) -> bool: request = environ[_SOCKET_IO_AIOHTTP_REQUEST_KEY] try: await authenticate_user(sid, app, request) + await set_user_in_rooms(sid, app, request) except web.HTTPUnauthorized: raise SocketIOConnectionError("authentification failed") except Exception as exc: # pylint: disable=broad-except @@ -86,6 +88,18 @@ async def authenticate_user( await rt.set_socket_id(sid) +async def set_user_in_rooms( + sid: str, app: web.Application, request: web.Request +) -> None: + user_id = request.get(RQT_USERID_KEY, ANONYMOUS_USER_ID) + primary_group, user_groups, all_group = await list_user_groups(app, user_id) + groups = [primary_group] + user_groups + [all_group] + sio = get_socket_server(app) + # TODO: check if it is necessary to leave_room when socket disconnects + for group in groups: + sio.enter_room(sid, f"{group['gid']}") + + async def disconnect_other_sockets(sio, sockets: List[str]) -> None: log.debug("disconnecting sockets %s", sockets) logout_tasks = [ diff --git a/services/web/server/src/simcore_service_webserver/users_api.py b/services/web/server/src/simcore_service_webserver/users_api.py index ea35c123b37..2e990d24aa3 100644 --- a/services/web/server/src/simcore_service_webserver/users_api.py +++ b/services/web/server/src/simcore_service_webserver/users_api.py @@ -44,20 +44,20 @@ async def get_user_profile(app: web.Application, user_id: int) -> Dict[str, Any] all_group = convert_groups_db_to_schema( row, prefix="groups_", - access_rights=row["user_to_groups_access_rights"], + accessRights=row["user_to_groups_access_rights"], ) elif row["groups_type"] == GroupType.PRIMARY: user_primary_group = convert_groups_db_to_schema( row, prefix="groups_", - access_rights=row["user_to_groups_access_rights"], + accessRights=row["user_to_groups_access_rights"], ) else: user_standard_groups.append( convert_groups_db_to_schema( row, prefix="groups_", - access_rights=row["user_to_groups_access_rights"], + accessRights=row["user_to_groups_access_rights"], ) ) if not user_profile: @@ -94,7 +94,6 @@ async def update_user_profile( assert resp.rowcount == 1 # nosec - async def is_user_guest(app: web.Application, user_id: int) -> bool: """Returns True if the user exists and is a GUEST""" db = get_storage(app) @@ -208,3 +207,13 @@ async def delete_token(app: web.Application, user_id: int, service_id: str) -> N and_(tokens.c.user_id == user_id, tokens.c.token_service == service_id) ) ) + + +async def get_user_name(app: web.Application, user_id: int) -> Dict[str, str]: + engine = app[APP_DB_ENGINE_KEY] + async with engine.acquire() as conn: + user_name = await conn.scalar( + sa.select([users.c.name]).where(users.c.id == user_id) + ) + parts = user_name.split(".") + [""] + return dict(first_name=parts[0], last_name=parts[1]) diff --git a/services/web/server/tests/unit/with_dbs/_helpers.py b/services/web/server/tests/unit/with_dbs/_helpers.py new file mode 100644 index 00000000000..ed826046a94 --- /dev/null +++ b/services/web/server/tests/unit/with_dbs/_helpers.py @@ -0,0 +1,71 @@ +from asyncio import Future +from collections import namedtuple +from typing import List, Tuple + +from aiohttp import web + +from simcore_service_webserver.projects.projects_handlers import HTTPLocked +from simcore_service_webserver.security_roles import UserRole + +ExpectedResponse = namedtuple( + "ExpectedResponse", + ["ok", "created", "no_content", "not_found", "forbidden", "locked"], +) + + +def standard_role_response() -> Tuple[str, List[Tuple[UserRole, ExpectedResponse]]]: + return ( + "user_role,expected", + [ + ( + UserRole.ANONYMOUS, + ExpectedResponse( + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + web.HTTPUnauthorized, + ), + ), + ( + UserRole.GUEST, + ExpectedResponse( + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + web.HTTPForbidden, + ), + ), + ( + UserRole.USER, + ExpectedResponse( + web.HTTPOk, + web.HTTPCreated, + web.HTTPNoContent, + web.HTTPNotFound, + web.HTTPForbidden, + HTTPLocked, + ), + ), + ( + UserRole.TESTER, + ExpectedResponse( + web.HTTPOk, + web.HTTPCreated, + web.HTTPNoContent, + web.HTTPNotFound, + web.HTTPForbidden, + HTTPLocked, + ), + ), + ], + ) + + +def future_with_result(result) -> Future: + f = Future() + f.set_result(result) + return f diff --git a/services/web/server/tests/unit/with_dbs/conftest.py b/services/web/server/tests/unit/with_dbs/conftest.py index eefc459f8c0..b2fb1368756 100644 --- a/services/web/server/tests/unit/with_dbs/conftest.py +++ b/services/web/server/tests/unit/with_dbs/conftest.py @@ -14,7 +14,7 @@ from asyncio import Future from copy import deepcopy from pathlib import Path -from typing import Dict, List +from typing import Callable, Dict, List, Optional from uuid import uuid4 import aioredis @@ -23,11 +23,13 @@ import socketio import sqlalchemy as sa import trafaret_config +from aiohttp import web +from pytest_simcore.helpers.utils_assert import assert_status +from pytest_simcore.helpers.utils_login import NewUser from yarl import URL import simcore_service_webserver.db_models as orm import simcore_service_webserver.utils -from pytest_simcore.helpers.utils_login import NewUser from servicelib.aiopg_utils import DSN from servicelib.rest_responses import unwrap_envelope from simcore_service_webserver.application import create_application @@ -90,7 +92,7 @@ def docker_compose_file(default_app_cfg): os.environ["TEST_POSTGRES_USER"] = cfg["user"] os.environ["TEST_POSTGRES_PASSWORD"] = cfg["password"] - dc_path = current_dir / "docker-compose.yml" + dc_path = current_dir / "docker-compose-devel.yml" assert dc_path.exists() yield str(dc_path) @@ -223,7 +225,7 @@ def redis_service(docker_services, docker_ip): return url -def is_redis_responsive(host: str, port: str) -> bool: +def is_redis_responsive(host: str, port: int) -> bool: r = redis.Redis(host=host, port=port) return r.ping() == True @@ -239,41 +241,54 @@ async def redis_client(loop, redis_service): @pytest.fixture() -async def socketio_url(client) -> str: - SOCKET_IO_PATH = "/socket.io/" - return str(client.make_url(SOCKET_IO_PATH)) +def socketio_url(client) -> Callable: + def create_url(client_override: Optional = None) -> str: + SOCKET_IO_PATH = "/socket.io/" + return str((client_override or client).make_url(SOCKET_IO_PATH)) + + yield create_url @pytest.fixture() -async def security_cookie(client) -> str: - # get the cookie by calling the root entrypoint - resp = await client.get("/v0/") - payload = await resp.json() - assert resp.status == 200, str(payload) - data, error = unwrap_envelope(payload) - assert data - assert not error +async def security_cookie_factory(client) -> Callable: + async def creator(client_override: Optional = None) -> str: + # get the cookie by calling the root entrypoint + resp = await (client_override or client).get("/v0/") + data, error = await assert_status(resp, web.HTTPOk) + assert data + assert not error + + cookie = ( + resp.request_info.headers["Cookie"] + if "Cookie" in resp.request_info.headers + else "" + ) + return cookie - cookie = "" - if "Cookie" in resp.request_info.headers: - cookie = resp.request_info.headers["Cookie"] - yield cookie + yield creator @pytest.fixture() -async def socketio_client(socketio_url: str, security_cookie: str): +async def socketio_client( + socketio_url: Callable, security_cookie_factory: Callable +) -> Callable: clients = [] - async def connect(client_session_id) -> socketio.AsyncClient: + async def connect( + client_session_id: str, client: Optional = None + ) -> socketio.AsyncClient: sio = socketio.AsyncClient(ssl_verify=False) # enginio 3.10.0 introduced ssl verification url = str( - URL(socketio_url).with_query({"client_session_id": client_session_id}) + URL(socketio_url(client)).with_query( + {"client_session_id": client_session_id} + ) ) headers = {} - if security_cookie: + cookie = await security_cookie_factory(client) + if cookie: # WARNING: engineio fails with empty cookies. Expects "key=value" - headers.update({"Cookie": security_cookie}) + headers.update({"Cookie": cookie}) await sio.connect(url, headers=headers) assert sio.sid diff --git a/services/web/server/tests/unit/with_dbs/test_groups.py b/services/web/server/tests/unit/with_dbs/test_groups.py index d6da3bb01d3..884cfea7d53 100644 --- a/services/web/server/tests/unit/with_dbs/test_groups.py +++ b/services/web/server/tests/unit/with_dbs/test_groups.py @@ -5,13 +5,14 @@ import random from copy import deepcopy -from typing import Dict, List, Tuple +from typing import Dict, List import pytest from aiohttp import web - from pytest_simcore.helpers.utils_assert import assert_status from pytest_simcore.helpers.utils_login import LoggedUser, create_user + +from _helpers import standard_role_response from servicelib.application import create_safe_application from simcore_service_webserver.db import setup_db from simcore_service_webserver.groups import setup_groups @@ -59,21 +60,16 @@ def client(loop, aiohttp_client, app_cfg, postgres_service): return client -# WARNING: pytest-asyncio and pytest-aiohttp are not compatible -# -# https://github.com/aio-libs/pytest-aiohttp/issues/8#issuecomment-405602020 -# https://github.com/pytest-dev/pytest-asyncio/issues/76 -# - - @pytest.fixture -async def logged_user(client, role: UserRole): +async def logged_user(client, user_role: UserRole): """ adds a user in db and logs in with client NOTE: role fixture is defined as a parametrization below """ async with LoggedUser( - client, {"role": role.name}, check_if_succeeds=role != UserRole.ANONYMOUS + client, + {"role": user_role.name}, + check_if_succeeds=user_role != UserRole.ANONYMOUS, ) as user: yield user @@ -83,9 +79,9 @@ async def logged_user(client, role: UserRole): def _assert_group(group: Dict[str, str]): - properties = ["gid", "label", "description", "thumbnail", "access_rights"] + properties = ["gid", "label", "description", "thumbnail", "accessRights"] assert all(x in group for x in properties) - access_rights = group["access_rights"] + access_rights = group["accessRights"] access_rights_properties = ["read", "write", "delete"] assert all(x in access_rights for x in access_rights_properties) @@ -102,104 +98,18 @@ def _assert__group_user( assert actual_user["login"] == expected_user["email"] assert "gravatar_id" in actual_user assert actual_user["gravatar_id"] == gravatar_hash(expected_user["email"]) - assert "access_rights" in actual_user - assert actual_user["access_rights"] == expected_access_rights + assert "accessRights" in actual_user + assert actual_user["accessRights"] == expected_access_rights assert "id" in actual_user assert actual_user["id"] == expected_user["id"] assert "gid" in actual_user -@pytest.mark.parametrize( - "role,expected", - [ - (UserRole.ANONYMOUS, web.HTTPUnauthorized), - (UserRole.GUEST, web.HTTPForbidden), - (UserRole.USER, web.HTTPOk), - (UserRole.TESTER, web.HTTPOk), - ], -) +@pytest.mark.parametrize(*standard_role_response(),) async def test_list_groups( client, logged_user, - role, - expected, - primary_group: Dict[str, str], - standard_groups: List[Dict[str, str]], - all_group: Dict[str, str], -): - url = client.app.router["list_groups"].url_for() - assert str(url) == f"{PREFIX}" - - resp = await client.get(url) - data, error = await assert_status(resp, expected) - - if not error: - assert isinstance(data, dict) - assert "me" in data - _assert_group(data["me"]) - assert data["me"] == primary_group - - assert "organizations" in data - assert isinstance(data["organizations"], list) - for group in data["organizations"]: - _assert_group(group) - assert data["organizations"] == standard_groups - assert "all" in data - _assert_group(data["all"]) - assert data["all"] == all_group - - -def _standard_role_response() -> Tuple[ - str, List[Tuple[UserRole, web.Response, web.Response, web.Response]] -]: - return ( - "role,expected_ok, expected_created, expected_no_contents, expected_not_found", - [ - ( - UserRole.ANONYMOUS, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - ), - ( - UserRole.GUEST, - web.HTTPForbidden, - web.HTTPForbidden, - web.HTTPForbidden, - web.HTTPForbidden, - ), - ( - UserRole.USER, - web.HTTPOk, - web.HTTPCreated, - web.HTTPNoContent, - web.HTTPNotFound, - ), - ( - UserRole.TESTER, - web.HTTPOk, - web.HTTPCreated, - web.HTTPNoContent, - web.HTTPNotFound, - ), - ], - ) - - -@pytest.mark.parametrize( - "role,expected", - [ - (UserRole.ANONYMOUS, web.HTTPUnauthorized), - (UserRole.GUEST, web.HTTPForbidden), - (UserRole.USER, web.HTTPOk), - (UserRole.TESTER, web.HTTPOk), - ], -) -async def test_group_access_rights( - client, - logged_user, - role, + user_role, expected, primary_group: Dict[str, str], standard_groups: List[Dict[str, str]], @@ -209,7 +119,7 @@ async def test_group_access_rights( assert str(url) == f"{PREFIX}" resp = await client.get(url) - data, error = await assert_status(resp, expected) + data, error = await assert_status(resp, expected.ok) if not error: assert isinstance(data, dict) @@ -252,48 +162,8 @@ async def test_group_access_rights( data, error = await assert_status(resp, web.HTTPForbidden) -@pytest.mark.parametrize( - "role,expected,expected_read,expected_delete,expected_not_found", - [ - ( - UserRole.ANONYMOUS, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - ), - ( - UserRole.GUEST, - web.HTTPForbidden, - web.HTTPForbidden, - web.HTTPForbidden, - web.HTTPForbidden, - ), - ( - UserRole.USER, - web.HTTPCreated, - web.HTTPOk, - web.HTTPNoContent, - web.HTTPNotFound, - ), - ( - UserRole.TESTER, - web.HTTPCreated, - web.HTTPOk, - web.HTTPNoContent, - web.HTTPNotFound, - ), - ], -) -async def test_group_creation_workflow( - client, - logged_user, - role, - expected, - expected_read, - expected_delete, - expected_not_found, -): +@pytest.mark.parametrize(*standard_role_response()) +async def test_group_creation_workflow(client, logged_user, user_role, expected): url = client.app.router["create_group"].url_for() assert str(url) == f"{PREFIX}" @@ -305,7 +175,7 @@ async def test_group_creation_workflow( } resp = await client.post(url, json=new_group) - data, error = await assert_status(resp, expected) + data, error = await assert_status(resp, expected.created) assigned_group = new_group if not error: @@ -317,7 +187,7 @@ async def test_group_creation_workflow( for prop in ["label", "description", "thumbnail"]: assert assigned_group[prop] == new_group[prop] # we get all rights on the group since we are the creator - assert assigned_group["access_rights"] == { + assert assigned_group["accessRights"] == { "read": True, "write": True, "delete": True, @@ -328,7 +198,7 @@ async def test_group_creation_workflow( assert str(url) == f"{PREFIX}" resp = await client.get(url) - data, error = await assert_status(resp, expected_read) + data, error = await assert_status(resp, expected.ok) if not error: assert len(data["organizations"]) == 1 assert data["organizations"][0] == assigned_group @@ -337,7 +207,7 @@ async def test_group_creation_workflow( url = client.app.router["get_group"].url_for(gid=str(assigned_group["gid"])) assert str(url) == f"{PREFIX}/{assigned_group['gid']}" resp = await client.get(url) - data, error = await assert_status(resp, expected_read) + data, error = await assert_status(resp, expected.ok) if not error: assert data == assigned_group @@ -346,7 +216,7 @@ async def test_group_creation_workflow( url = client.app.router["update_group"].url_for(gid=str(assigned_group["gid"])) assert str(url) == f"{PREFIX}/{assigned_group['gid']}" resp = await client.patch(url, json=modified_group) - data, error = await assert_status(resp, expected_read) + data, error = await assert_status(resp, expected.ok) if not error: assert data != assigned_group _assert_group(data) @@ -356,7 +226,7 @@ async def test_group_creation_workflow( url = client.app.router["get_group"].url_for(gid=str(assigned_group["gid"])) assert str(url) == f"{PREFIX}/{assigned_group['gid']}" resp = await client.get(url) - data, error = await assert_status(resp, expected_read) + data, error = await assert_status(resp, expected.ok) if not error: _assert_group(data) assert data == assigned_group @@ -365,7 +235,7 @@ async def test_group_creation_workflow( url = client.app.router["delete_group"].url_for(gid=str(assigned_group["gid"])) assert str(url) == f"{PREFIX}/{assigned_group['gid']}" resp = await client.delete(url) - data, error = await assert_status(resp, expected_delete) + data, error = await assert_status(resp, expected.no_content) if not error: assert not data @@ -373,56 +243,18 @@ async def test_group_creation_workflow( url = client.app.router["delete_group"].url_for(gid=str(assigned_group["gid"])) assert str(url) == f"{PREFIX}/{assigned_group['gid']}" resp = await client.delete(url) - data, error = await assert_status(resp, expected_not_found) + data, error = await assert_status(resp, expected.not_found) # check getting the group fails url = client.app.router["get_group"].url_for(gid=str(assigned_group["gid"])) assert str(url) == f"{PREFIX}/{assigned_group['gid']}" resp = await client.get(url) - data, error = await assert_status(resp, expected_not_found) - - -@pytest.mark.parametrize( - "role, expected_created,expected,expected_not_found,expected_no_content", - [ - ( - UserRole.ANONYMOUS, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - ), - ( - UserRole.GUEST, - web.HTTPForbidden, - web.HTTPForbidden, - web.HTTPForbidden, - web.HTTPForbidden, - ), - ( - UserRole.USER, - web.HTTPCreated, - web.HTTPOk, - web.HTTPNotFound, - web.HTTPNoContent, - ), - ( - UserRole.TESTER, - web.HTTPCreated, - web.HTTPOk, - web.HTTPNotFound, - web.HTTPNoContent, - ), - ], -) + data, error = await assert_status(resp, expected.not_found) + + +@pytest.mark.parametrize(*standard_role_response()) async def test_add_remove_users_from_group( - client, - logged_user, - role, - expected_created, - expected, - expected_not_found, - expected_no_content, + client, logged_user, user_role, expected, ): new_group = { @@ -436,13 +268,13 @@ async def test_add_remove_users_from_group( url = client.app.router["get_group_users"].url_for(gid=new_group["gid"]) assert str(url) == f"{PREFIX}/{new_group['gid']}/users" resp = await client.get(url) - data, error = await assert_status(resp, expected_not_found) + data, error = await assert_status(resp, expected.not_found) url = client.app.router["create_group"].url_for() assert str(url) == f"{PREFIX}" resp = await client.post(url, json=new_group) - data, error = await assert_status(resp, expected_created) + data, error = await assert_status(resp, expected.created) assigned_group = new_group if not error: @@ -454,7 +286,7 @@ async def test_add_remove_users_from_group( for prop in ["label", "description", "thumbnail"]: assert assigned_group[prop] == new_group[prop] # we get all rights on the group since we are the creator - assert assigned_group["access_rights"] == { + assert assigned_group["accessRights"] == { "read": True, "write": True, "delete": True, @@ -466,7 +298,7 @@ async def test_add_remove_users_from_group( ) assert str(get_group_users_url) == f"{PREFIX}/{assigned_group['gid']}/users" resp = await client.get(get_group_users_url) - data, error = await assert_status(resp, expected) + data, error = await assert_status(resp, expected.ok) if not error: list_of_users = data @@ -491,7 +323,7 @@ async def test_add_remove_users_from_group( else {"email": created_users_list[i]["email"]} ) resp = await client.post(add_group_user_url, json=params) - data, error = await assert_status(resp, expected_no_content) + data, error = await assert_status(resp, expected.no_content) get_group_user_url = client.app.router["get_group_user"].url_for( gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) @@ -501,14 +333,14 @@ async def test_add_remove_users_from_group( == f"{PREFIX}/{assigned_group['gid']}/users/{created_users_list[i]['id']}" ) resp = await client.get(get_group_user_url) - data, error = await assert_status(resp, expected) + data, error = await assert_status(resp, expected.ok) if not error: _assert__group_user( created_users_list[i], DEFAULT_GROUP_READ_ACCESS_RIGHTS, data ) # check list is correct resp = await client.get(get_group_users_url) - data, error = await assert_status(resp, expected) + data, error = await assert_status(resp, expected.ok) if not error: list_of_users = data # now we should have all the users in the group + the owner @@ -538,9 +370,9 @@ async def test_add_remove_users_from_group( gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) ) resp = await client.patch( - update_group_user_url, json={"access_rights": MANAGER_ACCESS_RIGHTS} + update_group_user_url, json={"accessRights": MANAGER_ACCESS_RIGHTS} ) - data, error = await assert_status(resp, expected) + data, error = await assert_status(resp, expected.ok) if not error: _assert__group_user(created_users_list[i], MANAGER_ACCESS_RIGHTS, data) # check it is there @@ -548,7 +380,7 @@ async def test_add_remove_users_from_group( gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) ) resp = await client.get(get_group_user_url) - data, error = await assert_status(resp, expected) + data, error = await assert_status(resp, expected.ok) if not error: _assert__group_user(created_users_list[i], MANAGER_ACCESS_RIGHTS, data) # remove the user from the group @@ -556,14 +388,123 @@ async def test_add_remove_users_from_group( gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) ) resp = await client.delete(delete_group_user_url) - data, error = await assert_status(resp, expected_no_content) + data, error = await assert_status(resp, expected.no_content) # do it again to check it is not found anymore resp = await client.delete(delete_group_user_url) - data, error = await assert_status(resp, expected_not_found) + data, error = await assert_status(resp, expected.not_found) # check it is not there anymore get_group_user_url = client.app.router["get_group_user"].url_for( gid=str(assigned_group["gid"]), uid=str(created_users_list[i]["id"]) ) resp = await client.get(get_group_user_url) - data, error = await assert_status(resp, expected_not_found) + data, error = await assert_status(resp, expected.not_found) + + +@pytest.mark.parametrize(*standard_role_response()) +async def test_group_access_rights( + client, logged_user, user_role, expected, +): + # Use-case: + # 1. create a group + url = client.app.router["create_group"].url_for() + assert str(url) == f"{PREFIX}" + + new_group = { + "gid": "4564", + "label": f"this is user {logged_user['id']} group", + "description": f"user {logged_user['email']} is the owner of that one", + "thumbnail": None, + } + + resp = await client.post(url, json=new_group) + data, error = await assert_status(resp, expected.created) + if not data: + # role cannot create a group so stop here + return + assigned_group = data + + # 1. have 2 users + users = [await create_user() for i in range(2)] + + # 2. add the users to the group + add_group_user_url = client.app.router["add_group_user"].url_for( + gid=str(assigned_group["gid"]) + ) + assert str(add_group_user_url) == f"{PREFIX}/{assigned_group['gid']}/users" + for i, user in enumerate(users): + params = {"uid": user["id"]} if i % 2 == 0 else {"email": user["email"]} + resp = await client.post(add_group_user_url, json=params) + data, error = await assert_status(resp, expected.no_content) + # 3. user 1 shall be a manager + patch_group_user_url = client.app.router["update_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(users[0]["id"]) + ) + assert ( + str(patch_group_user_url) + == f"{PREFIX}/{assigned_group['gid']}/users/{users[0]['id']}" + ) + params = {"accessRights": {"read": True, "write": True, "delete": False}} + resp = await client.patch(patch_group_user_url, json=params) + data, error = await assert_status(resp, expected.ok) + # 4. user 2 shall be a member + patch_group_user_url = client.app.router["update_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(users[1]["id"]) + ) + assert ( + str(patch_group_user_url) + == f"{PREFIX}/{assigned_group['gid']}/users/{users[1]['id']}" + ) + params = {"accessRights": {"read": True, "write": False, "delete": False}} + resp = await client.patch(patch_group_user_url, json=params) + data, error = await assert_status(resp, expected.ok) + + # let's login as user 1 + # login + url = client.app.router["auth_login"].url_for() + resp = await client.post( + url, json={"email": users[0]["email"], "password": users[0]["raw_password"],} + ) + await assert_status(resp, expected.ok) + # check as a manager I can remove user 2 + delete_group_user_url = client.app.router["delete_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(users[1]["id"]) + ) + assert ( + str(delete_group_user_url) + == f"{PREFIX}/{assigned_group['gid']}/users/{users[1]['id']}" + ) + resp = await client.delete(delete_group_user_url) + data, error = await assert_status(resp, expected.no_content) + # as a manager I can add user 2 again + resp = await client.post(add_group_user_url, json={"uid": users[1]["id"]}) + data, error = await assert_status(resp, expected.no_content) + # as a manager I cannot delete the group + url = client.app.router["delete_group"].url_for(gid=str(assigned_group["gid"])) + resp = await client.delete(url) + data, error = await assert_status(resp, web.HTTPForbidden) + + # now log in as user 2 + # login + url = client.app.router["auth_login"].url_for() + resp = await client.post( + url, json={"email": users[1]["email"], "password": users[1]["raw_password"],} + ) + await assert_status(resp, expected.ok) + # as a member I cannot remove user 1 + delete_group_user_url = client.app.router["delete_group_user"].url_for( + gid=str(assigned_group["gid"]), uid=str(users[0]["id"]) + ) + assert ( + str(delete_group_user_url) + == f"{PREFIX}/{assigned_group['gid']}/users/{users[0]['id']}" + ) + resp = await client.delete(delete_group_user_url) + data, error = await assert_status(resp, web.HTTPForbidden) + # as a member I cannot add user 1 + resp = await client.post(add_group_user_url, json={"uid": users[0]["id"]}) + data, error = await assert_status(resp, web.HTTPForbidden) + # as a member I cannot delete the grouop + url = client.app.router["delete_group"].url_for(gid=str(assigned_group["gid"])) + resp = await client.delete(url) + data, error = await assert_status(resp, web.HTTPForbidden) diff --git a/services/web/server/tests/unit/with_dbs/test_projects.py b/services/web/server/tests/unit/with_dbs/test_projects.py index 26976d1abe0..4feb5fab05c 100644 --- a/services/web/server/tests/unit/with_dbs/test_projects.py +++ b/services/web/server/tests/unit/with_dbs/test_projects.py @@ -2,18 +2,31 @@ # pylint:disable=unused-argument # pylint:disable=redefined-outer-name +import asyncio +import json +import pdb +import time import uuid as uuidlib from asyncio import Future, sleep from copy import deepcopy -from typing import Dict, List, Optional +from typing import Callable, Dict, List, Optional +import mock import pytest +import socketio from aiohttp import web from mock import call - from pytest_simcore.helpers.utils_assert import assert_status -from pytest_simcore.helpers.utils_login import LoggedUser, log_client_in +from pytest_simcore.helpers.utils_login import LoggedUser, create_user, log_client_in from pytest_simcore.helpers.utils_projects import NewProject, delete_all_projects +from socketio.exceptions import ConnectionError + +from _helpers import ( + ExpectedResponse, + HTTPLocked, + future_with_result, + standard_role_response, +) from servicelib.application import create_safe_application from simcore_service_webserver.db import setup_db from simcore_service_webserver.db_models import UserRole @@ -23,11 +36,17 @@ from simcore_service_webserver.projects.projects_handlers import ( OVERRIDABLE_DOCUMENT_KEYS, ) +from simcore_service_webserver.projects.projects_models import ( + Owner, + ProjectLocked, + ProjectState, +) from simcore_service_webserver.resource_manager import setup_resource_manager from simcore_service_webserver.rest import setup_rest from simcore_service_webserver.security import setup_security from simcore_service_webserver.session import setup_session from simcore_service_webserver.socketio import setup_sockets +from simcore_service_webserver.socketio.events import SOCKET_IO_PROJECT_UPDATED_EVENT from simcore_service_webserver.tags import setup_tags from simcore_service_webserver.utils import now_str, to_datetime @@ -36,12 +55,6 @@ API_PREFIX = "/" + API_VERSION -def future_with_result(result) -> Future: - f = Future() - f.set_result(result) - return f - - @pytest.fixture def mocked_director_subsystem(mocker): mock_director_api = { @@ -61,6 +74,15 @@ def mocked_director_subsystem(mocker): return mock_director_api +DEFAULT_GARBAGE_COLLECTOR_INTERVAL_SECONDS: int = 3 +DEFAULT_GARBAGE_COLLECTOR_DELETION_TIMEOUT_SECONDS: int = 3 + + +@pytest.fixture +def gc_long_deletion_timeout(): + DEFAULT_GARBAGE_COLLECTOR_DELETION_TIMEOUT_SECONDS = 900 + + @pytest.fixture def client( loop, @@ -80,10 +102,10 @@ def client( cfg["director"]["enabled"] = True cfg["resource_manager"][ "garbage_collection_interval_seconds" - ] = 3 # increase speed of garbage collection + ] = DEFAULT_GARBAGE_COLLECTOR_INTERVAL_SECONDS # increase speed of garbage collection cfg["resource_manager"][ "resource_deletion_timeout_seconds" - ] = 3 # reduce deletion delay + ] = DEFAULT_GARBAGE_COLLECTOR_DELETION_TIMEOUT_SECONDS # reduce deletion delay app = create_safe_application(cfg) # setup app @@ -122,22 +144,6 @@ async def logged_user(client, user_role: UserRole): print("<----- logged out user", user_role) -@pytest.fixture() -async def logged_user2(client, user_role: UserRole): - """ adds a user in db and logs in with client - - NOTE: `user_role` fixture is defined as a parametrization below!!! - """ - async with LoggedUser( - client, - {"role": user_role.name}, - check_if_succeeds=user_role != UserRole.ANONYMOUS, - ) as user: - print("-----> logged in user", user_role) - yield user - print("<----- logged out user", user_role) - - @pytest.fixture async def user_project(client, fake_project, logged_user): async with NewProject( @@ -148,6 +154,23 @@ async def user_project(client, fake_project, logged_user): print("<----- removed project", project["name"]) +@pytest.fixture +async def shared_project(client, fake_project, logged_user, all_group): + fake_project.update( + { + "accessRights": { + f"{all_group['gid']}": {"read": True, "write": False, "delete": False} + }, + }, + ) + async with NewProject( + fake_project, client.app, user_id=logged_user["id"], + ) as project: + print("-----> added project", project["name"]) + yield project + print("<----- removed project", project["name"]) + + @pytest.fixture async def template_project( client, fake_project, logged_user, all_group: Dict[str, str] @@ -372,15 +395,7 @@ async def _new_project( # POST -------- -@pytest.mark.parametrize( - "user_role,expected", - [ - (UserRole.ANONYMOUS, web.HTTPUnauthorized), - (UserRole.GUEST, web.HTTPForbidden), - (UserRole.USER, web.HTTPCreated), - (UserRole.TESTER, web.HTTPCreated), - ], -) +@pytest.mark.parametrize(*standard_role_response()) async def test_new_project( client, logged_user, @@ -390,18 +405,12 @@ async def test_new_project( storage_subsystem_mock, project_db_cleaner, ): - new_project = await _new_project(client, expected, logged_user, primary_group) + new_project = await _new_project( + client, expected.created, logged_user, primary_group + ) -@pytest.mark.parametrize( - "user_role,expected", - [ - (UserRole.ANONYMOUS, web.HTTPUnauthorized), - (UserRole.GUEST, web.HTTPForbidden), - (UserRole.USER, web.HTTPCreated), - (UserRole.TESTER, web.HTTPCreated), - ], -) +@pytest.mark.parametrize(*standard_role_response()) async def test_new_project_from_template( client, logged_user, @@ -413,7 +422,11 @@ async def test_new_project_from_template( project_db_cleaner, ): new_project = await _new_project( - client, expected, logged_user, primary_group, from_template=template_project + client, + expected.created, + logged_user, + primary_group, + from_template=template_project, ) if new_project: @@ -425,15 +438,7 @@ async def test_new_project_from_template( pytest.fail("Invalid uuid in workbench node {}".format(node_name)) -@pytest.mark.parametrize( - "user_role,expected", - [ - (UserRole.ANONYMOUS, web.HTTPUnauthorized), - (UserRole.GUEST, web.HTTPForbidden), - (UserRole.USER, web.HTTPCreated), - (UserRole.TESTER, web.HTTPCreated), - ], -) +@pytest.mark.parametrize(*standard_role_response()) async def test_new_project_from_template_with_body( client, logged_user, @@ -465,7 +470,7 @@ async def test_new_project_from_template_with_body( } project = await _new_project( client, - expected, + expected.created, logged_user, primary_group, project=predefined, @@ -603,43 +608,7 @@ async def test_new_template_from_project( pytest.fail("Invalid uuid in workbench node {}".format(node_name)) -@pytest.mark.parametrize( - "user_role,expected_created,expected_ok,expected_notfound,expected_nocontents,expected_forbidden", - [ - ( - UserRole.ANONYMOUS, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - web.HTTPUnauthorized, - ), - ( - UserRole.GUEST, - web.HTTPForbidden, - web.HTTPForbidden, - web.HTTPNotFound, - web.HTTPForbidden, - web.HTTPForbidden, - ), - ( - UserRole.USER, - web.HTTPCreated, - web.HTTPOk, - web.HTTPNotFound, - web.HTTPNoContent, - web.HTTPForbidden, - ), - ( - UserRole.TESTER, - web.HTTPCreated, - web.HTTPOk, - web.HTTPNotFound, - web.HTTPNoContent, - web.HTTPForbidden, - ), - ], -) +@pytest.mark.parametrize(*standard_role_response()) @pytest.mark.parametrize( "share_rights", [ @@ -651,20 +620,16 @@ async def test_new_template_from_project( ) async def test_share_project( client, - logged_user, + logged_user: Dict, primary_group: Dict[str, str], standard_groups: List[Dict[str, str]], all_group: Dict[str, str], - user_role, - expected_created, - expected_ok, - expected_notfound, - expected_nocontents, - expected_forbidden, + user_role: UserRole, + expected: ExpectedResponse, storage_subsystem_mock, mocked_director_subsystem, computational_system_mock, - share_rights, + share_rights: Dict, project_db_cleaner, ): # Use-case: the user shares some projects with a group @@ -672,7 +637,7 @@ async def test_share_project( # create a few projects new_project = await _new_project( client, - expected_created, + expected.created, logged_user, primary_group, project={"accessRights": {str(all_group["gid"]): share_rights}}, @@ -684,7 +649,7 @@ async def test_share_project( } # user 1 can always get to his project - await _get_project(client, new_project, expected_ok) + await _get_project(client, new_project, expected.ok) # get another user logged in now user_2 = await log_client_in( @@ -695,10 +660,10 @@ async def test_share_project( await _get_project( client, new_project, - expected_ok if share_rights["read"] else expected_forbidden, + expected.ok if share_rights["read"] else expected.forbidden, ) # user 2 can only list projects if user 2 has read access - list_projects = await _list_projects(client, expected_ok) + list_projects = await _list_projects(client, expected.ok) assert len(list_projects) == (1 if share_rights["read"] else 0) # user 2 can only update the project is user 2 has write access project_update = deepcopy(new_project) @@ -706,13 +671,13 @@ async def test_share_project( await _replace_project( client, project_update, - expected_ok if share_rights["write"] else expected_forbidden, + expected.ok if share_rights["write"] else expected.forbidden, ) # user 2 can only delete projects if user 2 has delete access await _delete_project( client, new_project, - expected_nocontents if share_rights["delete"] else expected_forbidden, + expected.no_content if share_rights["delete"] else expected.forbidden, ) @@ -903,15 +868,7 @@ async def test_open_project( mocked_director_subsystem["start_service"].assert_has_calls(calls) -@pytest.mark.parametrize( - "user_role,expected", - [ - (UserRole.ANONYMOUS, web.HTTPUnauthorized), - (UserRole.GUEST, web.HTTPForbidden), - (UserRole.USER, web.HTTPNoContent), - (UserRole.TESTER, web.HTTPNoContent), - ], -) +@pytest.mark.parametrize(*standard_role_response()) async def test_close_project( client, logged_user, @@ -943,7 +900,7 @@ async def test_close_project( # close project url = client.app.router["close_project"].url_for(project_id=user_project["uuid"]) resp = await client.post(url, json=client_id) - await assert_status(resp, expected) + await assert_status(resp, expected.no_content) if resp.status == web.HTTPNoContent.status_code: calls = [ call(client.server.app, user_project["uuid"], None), @@ -957,7 +914,7 @@ async def test_close_project( @pytest.mark.parametrize( "user_role, expected", [ - # (UserRole.ANONYMOUS, web.HTTPUnauthorized), + (UserRole.ANONYMOUS, web.HTTPUnauthorized), (UserRole.GUEST, web.HTTPOk), (UserRole.USER, web.HTTPOk), (UserRole.TESTER, web.HTTPOk), @@ -974,8 +931,14 @@ async def test_get_active_project( ): # login with socket using client session id client_id1 = client_session_id() - sio = await socketio_client(client_id1) - assert sio.sid + sio = None + try: + sio = await socketio_client(client_id1) + assert sio.sid + except ConnectionError: + if expected == web.HTTPOk: + pytest.fail("socket io connection should not fail") + # get active projects -> empty get_active_projects_url = ( client.app.router["get_active_project"] @@ -1002,8 +965,12 @@ async def test_get_active_project( # login with socket using client session id2 client_id2 = client_session_id() - sio = await socketio_client(client_id2) - assert sio.sid + try: + sio = await socketio_client(client_id2) + assert sio.sid + except ConnectionError: + if expected == web.HTTPOk: + pytest.fail("socket io connection should not fail") # get active projects -> empty get_active_projects_url = ( client.app.router["get_active_project"] @@ -1018,15 +985,15 @@ async def test_get_active_project( @pytest.mark.parametrize( - "user_role, expected", + "user_role, expected_ok, expected_forbidden", [ - # (UserRole.ANONYMOUS), - (UserRole.GUEST, web.HTTPForbidden), - (UserRole.USER, web.HTTPForbidden), - (UserRole.TESTER, web.HTTPForbidden), + (UserRole.ANONYMOUS, web.HTTPUnauthorized, web.HTTPUnauthorized), + (UserRole.GUEST, web.HTTPOk, web.HTTPForbidden), + (UserRole.USER, web.HTTPOk, web.HTTPForbidden), + (UserRole.TESTER, web.HTTPOk, web.HTTPForbidden), ], ) -async def test_delete_shared_project_forbidden( +async def test_delete_multiple_opened_project_forbidden( client, logged_user, user_project, @@ -1034,21 +1001,31 @@ async def test_delete_shared_project_forbidden( mocked_dynamic_service, socketio_client, client_session_id, - expected, + user_role, + expected_ok, + expected_forbidden, mocked_director_subsystem, ): # service in project = await mocked_dynamic_service(logged_user["id"], empty_user_project["uuid"]) service = await mocked_dynamic_service(logged_user["id"], user_project["uuid"]) # open project in tab1 client_session_id1 = client_session_id() - sio1 = await socketio_client(client_session_id1) + try: + sio1 = await socketio_client(client_session_id1) + except ConnectionError: + if user_role != UserRole.ANONYMOUS: + pytest.fail("socket io connection should not fail") url = client.app.router["open_project"].url_for(project_id=user_project["uuid"]) resp = await client.post(url, json=client_session_id1) - await assert_status(resp, web.HTTPOk) + await assert_status(resp, expected_ok) # delete project in tab2 client_session_id2 = client_session_id() - sio2 = await socketio_client(client_session_id2) - await _delete_project(client, user_project, expected) + try: + sio2 = await socketio_client(client_session_id2) + except ConnectionError: + if user_role != UserRole.ANONYMOUS: + pytest.fail("socket io connection should not fail") + await _delete_project(client, user_project, expected_forbidden) @pytest.mark.parametrize( @@ -1220,3 +1197,226 @@ async def test_tags_to_studies( url = client.app.router["delete_tag"].url_for(tag_id=str(added_tags[1].get("id"))) resp = await client.delete(url) await assert_status(resp, web.HTTPNoContent) + + +async def _connect_websocket( + socketio_client: Callable, + check_connection: bool, + client, + client_id: str, + events: Optional[Dict[str, Callable]] = None, +) -> socketio.AsyncClient: + try: + sio = await socketio_client(client_id, client) + assert sio.sid + if events: + for event, handler in events.items(): + sio.on(event, handler=handler) + return sio + except ConnectionError: + if check_connection: + pytest.fail("socket io connection should not fail") + + +async def _open_project( + client, client_id: str, project: Dict, expected: web.HTTPException +): + url = client.app.router["open_project"].url_for(project_id=project["uuid"]) + resp = await client.post(url, json=client_id) + await assert_status(resp, expected) + + +async def _close_project( + client, client_id: str, project: Dict, expected: web.HTTPException +): + url = client.app.router["close_project"].url_for(project_id=project["uuid"]) + resp = await client.post(url, json=client_id) + data, error = await assert_status(resp, expected) + + +async def _state_project( + client, + project: Dict, + expected: web.HTTPException, + expected_project_state: ProjectState, +): + url = client.app.router["state_project"].url_for(project_id=project["uuid"]) + resp = await client.get(url) + data, error = await assert_status(resp, expected) + if not error: + # the project is locked + assert data == expected_project_state.dict() + + +async def _assert_project_state_updated( + handler: mock.Mock, + shared_project: Dict, + expected_project_state: ProjectState, + num_calls: int, +) -> None: + if num_calls == 0: + handler.assert_not_called() + else: + # wait for the calls + now = time.monotonic() + MAX_WAITING_TIME = 15 + while time.monotonic() - now < MAX_WAITING_TIME: + await asyncio.sleep(1) + if handler.call_count == num_calls: + break + if time.monotonic() - now > MAX_WAITING_TIME: + pytest.fail( + f"waited more than {MAX_WAITING_TIME}s and got only {handler.call_count}/{num_calls} calls" + ) + + calls = [ + call( + json.dumps( + { + "project_uuid": shared_project["uuid"], + "data": expected_project_state.dict(), + } + ) + ) + ] * num_calls + handler.assert_has_calls(calls) + handler.reset_mock() + + +@pytest.mark.parametrize(*standard_role_response()) +async def test_open_shared_project_2_users_locked( + client, + logged_user: Dict, + shared_project: Dict, + socketio_client: Callable, + # mocked_director_subsystem, + client_session_id: Callable, + user_role: UserRole, + expected: ExpectedResponse, + aiohttp_client, + mocker, +): + # Use-case: user 1 opens a shared project, user 2 tries to open it as well + mock_project_state_updated_handler = mocker.Mock() + + client_1 = client + client_id1 = client_session_id() + client_2 = await aiohttp_client(client.app) + client_id2 = client_session_id() + + # 1. user 1 opens project + sio_1 = await _connect_websocket( + socketio_client, + user_role != UserRole.ANONYMOUS, + client_1, + client_id1, + {SOCKET_IO_PROJECT_UPDATED_EVENT: mock_project_state_updated_handler}, + ) + expected_project_state = ProjectState(locked={"value": False}) + await _state_project( + client_1, + shared_project, + expected.ok if user_role != UserRole.GUEST else web.HTTPOk, + expected_project_state, + ) + await _open_project( + client_1, + client_id1, + shared_project, + expected.ok if user_role != UserRole.GUEST else web.HTTPOk, + ) + expected_project_state.locked.value = True + expected_project_state.locked.owner = Owner( + first_name=(logged_user["name"].split(".") + [""])[0], + last_name=(logged_user["name"].split(".") + [""])[1], + ) + # NOTE: there are 2 calls since we are part of the primary group and the all group + await _assert_project_state_updated( + mock_project_state_updated_handler, + shared_project, + expected_project_state, + 0 if user_role == UserRole.ANONYMOUS else 2, + ) + + await _state_project( + client_1, + shared_project, + expected.ok if user_role != UserRole.GUEST else web.HTTPOk, + expected_project_state, + ) + + # 2. create a separate client now and log in user2, try to open the same shared project + user_2 = await log_client_in( + client_2, {"role": user_role.name}, enable_check=user_role != UserRole.ANONYMOUS + ) + sio_2 = await _connect_websocket( + socketio_client, + user_role != UserRole.ANONYMOUS, + client_2, + client_id2, + {SOCKET_IO_PROJECT_UPDATED_EVENT: mock_project_state_updated_handler}, + ) + await _open_project( + client_2, + client_id2, + shared_project, + expected.locked if user_role != UserRole.GUEST else HTTPLocked, + ) + await _state_project( + client_2, + shared_project, + expected.ok if user_role != UserRole.GUEST else web.HTTPOk, + expected_project_state, + ) + + # 3. user 1 closes the project + await _close_project(client_1, client_id1, shared_project, expected.no_content) + if not any(user_role == role for role in [UserRole.ANONYMOUS, UserRole.GUEST]): + # Guests cannot close projects + expected_project_state = ProjectState(locked=ProjectLocked(value=False)) + + # we should receive an event that the project lock state changed + # NOTE: there are 3 calls since we are part of the primary group and the all group and user 2 is part of the all group + await _assert_project_state_updated( + mock_project_state_updated_handler, + shared_project, + expected_project_state, + 0 + if any(user_role == role for role in [UserRole.ANONYMOUS, UserRole.GUEST]) + else 3, + ) + await _state_project( + client_1, + shared_project, + expected.ok if user_role != UserRole.GUEST else web.HTTPOk, + expected_project_state, + ) + + # 4. user 2 now should be able to open the project + await _open_project( + client_2, + client_id2, + shared_project, + expected.ok if user_role != UserRole.GUEST else HTTPLocked, + ) + if not any(user_role == role for role in [UserRole.ANONYMOUS, UserRole.GUEST]): + expected_project_state.locked.value = True + expected_project_state.locked.owner = Owner( + first_name=(user_2["name"].split(".") + [""])[0], + last_name=(user_2["name"].split(".") + [""])[1], + ) + # NOTE: there are 3 calls since we are part of the primary group and the all group + await _assert_project_state_updated( + mock_project_state_updated_handler, + shared_project, + expected_project_state, + 0 + if any(user_role == role for role in [UserRole.ANONYMOUS, UserRole.GUEST]) + else 3, + ) + await _state_project( + client_1, + shared_project, + expected.ok if user_role != UserRole.GUEST else web.HTTPOk, + expected_project_state, + ) diff --git a/services/web/server/tests/unit/with_dbs/test_resource_manager.py b/services/web/server/tests/unit/with_dbs/test_resource_manager.py index 2b3cf1ff176..fa25d82d927 100644 --- a/services/web/server/tests/unit/with_dbs/test_resource_manager.py +++ b/services/web/server/tests/unit/with_dbs/test_resource_manager.py @@ -89,22 +89,6 @@ async def logged_user(client, user_role: UserRole): print("<----- logged out user", user_role) -@pytest.fixture() -async def logged_user2(client, user_role: UserRole): - """ adds a user in db and logs in with client - - NOTE: `user_role` fixture is defined as a parametrization below!!! - """ - async with LoggedUser( - client, - {"role": user_role.name}, - check_if_succeeds=user_role != UserRole.ANONYMOUS, - ) as user: - print("-----> logged in user", user_role) - yield user - print("<----- logged out user", user_role) - - @pytest.fixture async def empty_user_project(client, empty_project, logged_user): project = empty_project() @@ -143,19 +127,28 @@ async def close_project(client, project_uuid: str, client_session_id: str) -> No # ------------------------ TESTS ------------------------------- +from typing import Callable + + async def test_anonymous_websocket_connection( - client_session_id, socketio_url: str, security_cookie, mocker, + client_session_id: str, + socketio_url: Callable, + security_cookie_factory: Callable, + mocker, ): from yarl import URL sio = socketio.AsyncClient( ssl_verify=False ) # enginio 3.10.0 introduced ssl verification - url = str(URL(socketio_url).with_query({"client_session_id": client_session_id()})) + url = str( + URL(socketio_url()).with_query({"client_session_id": client_session_id()}) + ) headers = {} - if security_cookie: + cookie = await security_cookie_factory() + if cookie: # WARNING: engineio fails with empty cookies. Expects "key=value" - headers.update({"Cookie": security_cookie}) + headers.update({"Cookie": cookie}) socket_connect_error = mocker.Mock() sio.on("connect_error", handler=socket_connect_error) From bb0788f465412866a72d7df08e224dd380c5ec2e Mon Sep 17 00:00:00 2001 From: Odei Maiz <33152403+odeimaiz@users.noreply.github.com> Date: Thu, 2 Jul 2020 16:16:51 +0200 Subject: [PATCH 15/43] Homogenize studies and services (#1569) - "Services" tab renamed to "Discover". Under this tab, all the available resources (templates and services) are listed. - To start a new study: - If a templates is selected, a study containing that pipeline will be initialized (same as before) - If a service is selected, a study containing that single node will be initialized (new feature). Since this will be a single node study, the service/app will be automatically maximized. Providing a more app-like user experience. In addition, the content of the Discover tab is also shipped by the frontend compiler with its own customized navigation bar as standalone application that could be served as the Discover/Explore website. - Plotly removed is not used - Removed unused images --- .github/workflows/ci-testing-deploy.yml | 3 + services/web/client/.eslintrc.json | 1 + services/web/client/Manifest.json | 1 - services/web/client/compile.json | 12 + .../source/class/explorer/Application.js | 60 ++ .../client/source/class/explorer/MainPage.js | 55 ++ .../source/class/explorer/NavigationBar.js | 35 + .../component/message/FlashMessenger.js | 2 +- .../osparc/component/metadata/ServiceInfo.js | 19 +- .../component/metadata/ServiceInfoWindow.js | 14 +- .../metadata/ServiceStarterWindow.js | 117 ++++ .../component/metadata/StudyDetailsEditor.js | 24 +- .../class/osparc/component/node/NodeView.js | 5 +- .../osparc/component/service/ServiceJumbo.js | 2 +- .../component/widget/CollapsibleView.js | 15 +- .../osparc/component/widget/PlotlyWidget.js | 86 --- .../class/osparc/dashboard/Dashboard.js | 37 +- .../class/osparc/dashboard/ExploreBrowser.js | 654 ++++++++++++++++++ .../class/osparc/dashboard/StudyBrowser.js | 377 ++++------ .../dashboard/StudyBrowserButtonItem.js | 19 +- .../source/class/osparc/data/model/Node.js | 9 +- .../source/class/osparc/desktop/MainPage.js | 72 +- .../class/osparc/desktop/NavigationBar.js | 51 +- .../class/osparc/desktop/StudyEditor.js | 77 ++- .../client/source/class/osparc/store/Store.js | 2 +- .../source/class/osparc/utils/Services.js | 48 +- .../source/class/osparc/wrapper/Plotly.js | 138 ---- .../source/class/osparc/wrapper/WebSocket.js | 11 +- .../client/source/resource/osparc/img0.jpg | Bin 218892 -> 0 bytes .../client/source/resource/osparc/img1.jpg | Bin 293584 -> 0 bytes .../client/source/resource/osparc/img10.jpg | Bin 150560 -> 0 bytes .../client/source/resource/osparc/img11.jpg | Bin 184219 -> 0 bytes .../client/source/resource/osparc/img12.jpg | Bin 171344 -> 0 bytes .../client/source/resource/osparc/img13.jpg | Bin 139003 -> 0 bytes .../client/source/resource/osparc/img14.jpg | Bin 205875 -> 0 bytes .../client/source/resource/osparc/img15.jpg | Bin 170411 -> 0 bytes .../client/source/resource/osparc/img16.jpg | Bin 92737 -> 0 bytes .../client/source/resource/osparc/img17.jpg | Bin 143159 -> 0 bytes .../client/source/resource/osparc/img18.jpg | Bin 217118 -> 0 bytes .../client/source/resource/osparc/img19.jpg | Bin 122084 -> 0 bytes .../client/source/resource/osparc/img2.jpg | Bin 81734 -> 0 bytes .../client/source/resource/osparc/img20.jpg | Bin 75891 -> 0 bytes .../client/source/resource/osparc/img21.jpg | Bin 282835 -> 0 bytes .../client/source/resource/osparc/img22.jpg | Bin 202543 -> 0 bytes .../client/source/resource/osparc/img23.jpg | Bin 312572 -> 0 bytes .../client/source/resource/osparc/img24.jpg | Bin 154187 -> 0 bytes .../client/source/resource/osparc/img25.jpg | Bin 229343 -> 0 bytes .../client/source/resource/osparc/img3.jpg | Bin 426911 -> 0 bytes .../client/source/resource/osparc/img4.jpg | Bin 320725 -> 0 bytes .../client/source/resource/osparc/img5.jpg | Bin 134645 -> 0 bytes .../client/source/resource/osparc/img6.jpg | Bin 1806944 -> 0 bytes .../client/source/resource/osparc/img7.jpg | Bin 225430 -> 0 bytes .../client/source/resource/osparc/img8.jpg | Bin 120040 -> 0 bytes .../client/source/resource/osparc/img9.jpg | Bin 266454 -> 0 bytes .../source/resource/osparc/modelerMockup.png | Bin 243248 -> 0 bytes .../client/source/resource/osparc/nih-419.png | Bin 133339 -> 0 bytes .../source/resource/osparc/rat-light.png | Bin 152563 -> 0 bytes .../web/client/source/resource/osparc/rat.png | Bin 142838 -> 0 bytes .../resource/osparc/screenshot_container.png | Bin 48315 -> 0 bytes .../resource/osparc/screenshot_dash-plot.png | Bin 76171 -> 0 bytes .../osparc/screenshot_file-picker.png | Bin 15033 -> 0 bytes .../resource/osparc/screenshot_form.png | Bin 28201 -> 0 bytes .../resource/osparc/screenshot_grid.png | Bin 404727 -> 0 bytes .../resource/osparc/screenshot_modeler.png | Bin 172977 -> 0 bytes .../resource/osparc/screenshot_notebook.png | Bin 110894 -> 0 bytes .../resource/osparc/screenshot_postpro.png | Bin 302443 -> 0 bytes .../resource/osparc/screenshot_voxels.png | Bin 265939 -> 0 bytes .../resource/osparc/screenshot_workbench.png | Bin 56452 -> 0 bytes .../client/source/resource/osparc/test.png | Bin 2478 -> 0 bytes .../source/resource/osparc/yoonsun-light.png | Bin 75666 -> 0 bytes .../client/source/resource/osparc/yoonsun.png | Bin 68204 -> 0 bytes .../source/resource/plotly/plotly.min.js | 7 - 72 files changed, 1284 insertions(+), 669 deletions(-) create mode 100644 services/web/client/source/class/explorer/Application.js create mode 100644 services/web/client/source/class/explorer/MainPage.js create mode 100644 services/web/client/source/class/explorer/NavigationBar.js create mode 100644 services/web/client/source/class/osparc/component/metadata/ServiceStarterWindow.js delete mode 100644 services/web/client/source/class/osparc/component/widget/PlotlyWidget.js create mode 100644 services/web/client/source/class/osparc/dashboard/ExploreBrowser.js delete mode 100644 services/web/client/source/class/osparc/wrapper/Plotly.js delete mode 100644 services/web/client/source/resource/osparc/img0.jpg delete mode 100644 services/web/client/source/resource/osparc/img1.jpg delete mode 100644 services/web/client/source/resource/osparc/img10.jpg delete mode 100644 services/web/client/source/resource/osparc/img11.jpg delete mode 100644 services/web/client/source/resource/osparc/img12.jpg delete mode 100644 services/web/client/source/resource/osparc/img13.jpg delete mode 100644 services/web/client/source/resource/osparc/img14.jpg delete mode 100644 services/web/client/source/resource/osparc/img15.jpg delete mode 100644 services/web/client/source/resource/osparc/img16.jpg delete mode 100644 services/web/client/source/resource/osparc/img17.jpg delete mode 100644 services/web/client/source/resource/osparc/img18.jpg delete mode 100644 services/web/client/source/resource/osparc/img19.jpg delete mode 100644 services/web/client/source/resource/osparc/img2.jpg delete mode 100644 services/web/client/source/resource/osparc/img20.jpg delete mode 100644 services/web/client/source/resource/osparc/img21.jpg delete mode 100644 services/web/client/source/resource/osparc/img22.jpg delete mode 100644 services/web/client/source/resource/osparc/img23.jpg delete mode 100644 services/web/client/source/resource/osparc/img24.jpg delete mode 100644 services/web/client/source/resource/osparc/img25.jpg delete mode 100644 services/web/client/source/resource/osparc/img3.jpg delete mode 100644 services/web/client/source/resource/osparc/img4.jpg delete mode 100644 services/web/client/source/resource/osparc/img5.jpg delete mode 100644 services/web/client/source/resource/osparc/img6.jpg delete mode 100644 services/web/client/source/resource/osparc/img7.jpg delete mode 100644 services/web/client/source/resource/osparc/img8.jpg delete mode 100644 services/web/client/source/resource/osparc/img9.jpg delete mode 100644 services/web/client/source/resource/osparc/modelerMockup.png delete mode 100644 services/web/client/source/resource/osparc/nih-419.png delete mode 100644 services/web/client/source/resource/osparc/rat-light.png delete mode 100644 services/web/client/source/resource/osparc/rat.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_container.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_dash-plot.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_file-picker.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_form.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_grid.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_modeler.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_notebook.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_postpro.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_voxels.png delete mode 100644 services/web/client/source/resource/osparc/screenshot_workbench.png delete mode 100644 services/web/client/source/resource/osparc/test.png delete mode 100644 services/web/client/source/resource/osparc/yoonsun-light.png delete mode 100644 services/web/client/source/resource/osparc/yoonsun.png delete mode 100644 services/web/client/source/resource/plotly/plotly.min.js diff --git a/.github/workflows/ci-testing-deploy.yml b/.github/workflows/ci-testing-deploy.yml index 54c10604e1b..56e6856c724 100644 --- a/.github/workflows/ci-testing-deploy.yml +++ b/.github/workflows/ci-testing-deploy.yml @@ -748,6 +748,9 @@ jobs: run: ./ci/github/system-testing/swarm-deploy.bash clean_up system-test-e2e: + # FIXME: skip the job until make it faster and more reliable + # https://github.com/ITISFoundation/osparc-simcore/issues/1594 + if: "false" name: System-testing e2e needs: [build-test-images] runs-on: ${{ matrix.os }} diff --git a/services/web/client/.eslintrc.json b/services/web/client/.eslintrc.json index 4d1bc01ce35..a31cb1035a6 100644 --- a/services/web/client/.eslintrc.json +++ b/services/web/client/.eslintrc.json @@ -8,6 +8,7 @@ "q": false, "qxWeb": false, "osparc": false, + "explorer": false, "Ajv": false, "objectPath": false }, diff --git a/services/web/client/Manifest.json b/services/web/client/Manifest.json index 8ba3118454b..987b71bd015 100644 --- a/services/web/client/Manifest.json +++ b/services/web/client/Manifest.json @@ -27,7 +27,6 @@ "svg/svg.path.js", "jsondiffpatch/jsondiffpatch.min.js", "jsontreeviewer/jsonTree.js", - "plotly/plotly.min.js", "marked/marked.js", "DOMPurify/purify.min.js" ], diff --git a/services/web/client/compile.json b/services/web/client/compile.json index b29b0cdd09c..51f2427c69e 100644 --- a/services/web/client/compile.json +++ b/services/web/client/compile.json @@ -32,6 +32,18 @@ ], "bootPath": "source/boot" }, + { + "class": "explorer.Application", + "theme": "osparc.theme.Theme", + "name": "explorer", + "title": "oSPARC Explorer", + "include": [ + "iconfont.material.Load", + "iconfont.fontawesome5.Load", + "osparc.theme.OSparcLight" + ], + "bootPath": "source/boot" + }, { "class": "qxl.apiviewer.Application", "theme": "qxl.apiviewer.Theme", diff --git a/services/web/client/source/class/explorer/Application.js b/services/web/client/source/class/explorer/Application.js new file mode 100644 index 00000000000..62c89ef53a1 --- /dev/null +++ b/services/web/client/source/class/explorer/Application.js @@ -0,0 +1,60 @@ +/* ************************************************************************ + + explorer - an entry point to oSparc + + https://osparc.io/explorer + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +/** + * This is the main application class of "explorer" + * + * @asset(explorer/*) + * @asset(common/common.css) + */ + +qx.Class.define("explorer.Application", { + extend: qx.application.Standalone, + include: [ + qx.locale.MTranslation + ], + + members: { + /** + * This method contains the initial application code and gets called + * during startup of the application + */ + main: function() { + this.base(); + + // Enable logging in debug variant + if (qx.core.Environment.get("qx.debug")) { + // support native logging capabilities, e.g. Firebug for Firefox + qx.log.appender.Native; + } + + this.__loadMainPage(); + }, + + __loadMainPage: function() { + const padding = 0; + const view = new explorer.MainPage(); + const doc = this.getRoot(); + doc.add(view, { + top: padding, + bottom: padding, + left: padding, + right: padding + }); + } + } +}); diff --git a/services/web/client/source/class/explorer/MainPage.js b/services/web/client/source/class/explorer/MainPage.js new file mode 100644 index 00000000000..c3efc4e5f9d --- /dev/null +++ b/services/web/client/source/class/explorer/MainPage.js @@ -0,0 +1,55 @@ +/* ************************************************************************ + + explorer - an entry point to oSparc + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +qx.Class.define("explorer.MainPage", { + extend: qx.ui.core.Widget, + + construct: function() { + this.base(); + + this._setLayout(new qx.ui.layout.VBox()); + + const navBar = this.__navBar = this.__createNavigationBar(); + this._add(navBar); + + const exploreBrowser = this.__exploreBrowser = this.__createMainView(); + this._add(exploreBrowser, { + flex: 1 + }); + }, + + members: { + __navBar: null, + __exploreBrowser: null, + + __createNavigationBar: function() { + const navBar = new explorer.NavigationBar(); + navBar.buildLayout(); + return navBar; + }, + + __createMainView: function() { + const nStudyItemsPerRow = 5; + const studyButtons = osparc.dashboard.StudyBrowserButtonBase; + const exploreBrowser = new osparc.dashboard.ExploreBrowser().set({ + alignX: "center", + maxWidth: nStudyItemsPerRow * (studyButtons.ITEM_WIDTH + studyButtons.SPACING) + 10 // padding + scrollbar + }); + return exploreBrowser; + } + } +}); diff --git a/services/web/client/source/class/explorer/NavigationBar.js b/services/web/client/source/class/explorer/NavigationBar.js new file mode 100644 index 00000000000..8460a010200 --- /dev/null +++ b/services/web/client/source/class/explorer/NavigationBar.js @@ -0,0 +1,35 @@ +/* ************************************************************************ + + explorer - an entry point to oSparc + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +qx.Class.define("explorer.NavigationBar", { + extend: osparc.desktop.NavigationBar, + + members: { + buildLayout: function() { + this.getChildControl("logo"); + this.getChildControl("platform"); + + this._add(new qx.ui.core.Spacer(), { + flex: 1 + }); + + this.getChildControl("user-manual"); + this.getChildControl("feedback"); + this.getChildControl("theme-switch"); + } + } +}); diff --git a/services/web/client/source/class/osparc/component/message/FlashMessenger.js b/services/web/client/source/class/osparc/component/message/FlashMessenger.js index 26c581e1825..145995f776e 100644 --- a/services/web/client/source/class/osparc/component/message/FlashMessenger.js +++ b/services/web/client/source/class/osparc/component/message/FlashMessenger.js @@ -89,7 +89,7 @@ qx.Class.define("osparc.component.message.FlashMessenger", { * @param {*} logMessage.logger IDK */ log: function(logMessage) { - let message = logMessage.message; + let message = ("message" in logMessage.message) ? logMessage.message["message"] : logMessage.message; const level = logMessage.level.toUpperCase(); // "DEBUG", "INFO", "WARNING", "ERROR" let logger = logMessage.logger; if (logger) { diff --git a/services/web/client/source/class/osparc/component/metadata/ServiceInfo.js b/services/web/client/source/class/osparc/component/metadata/ServiceInfo.js index c1b08d3b04b..cee96c3caf9 100644 --- a/services/web/client/source/class/osparc/component/metadata/ServiceInfo.js +++ b/services/web/client/source/class/osparc/component/metadata/ServiceInfo.js @@ -42,14 +42,22 @@ qx.Class.define("osparc.component.metadata.ServiceInfo", { members: { __metadata: null, + setService: function(metadata) { + this._removeAll(); + if (metadata) { + this.__metadata = metadata; + this.__createServiceInfoView(); + } + }, + __createServiceInfoView: function() { const container = new qx.ui.container.Composite(new qx.ui.layout.VBox(8).set({ alignY: "middle" })); const hBox = new qx.ui.container.Composite(new qx.ui.layout.HBox(8)); - hBox.add(this.__createThumbnail()); - hBox.add(this.__createExtraInfo(), { + hBox.add(this.__createExtraInfo()); + hBox.add(this.__createThumbnail(), { flex: 1 }); container.add(hBox); @@ -68,12 +76,7 @@ qx.Class.define("osparc.component.metadata.ServiceInfo", { }, __createThumbnail: function() { - return new qx.ui.basic.Image(this.__metadata.thumbnail || "@FontAwesome5Solid/flask/50").set({ - scale: true, - width: 300, - height: 180, - paddingTop: this.__metadata.thumbnail ? 0 : 60 - }); + return new osparc.component.widget.Thumbnail(this.__metadata.thumbnail || "@FontAwesome5Solid/flask/50", 300, 180); }, __createExtraInfo: function() { diff --git a/services/web/client/source/class/osparc/component/metadata/ServiceInfoWindow.js b/services/web/client/source/class/osparc/component/metadata/ServiceInfoWindow.js index 2ceb2c6945e..32acad345da 100644 --- a/services/web/client/source/class/osparc/component/metadata/ServiceInfoWindow.js +++ b/services/web/client/source/class/osparc/component/metadata/ServiceInfoWindow.js @@ -32,7 +32,7 @@ qx.Class.define("osparc.component.metadata.ServiceInfoWindow", { const windowWidth = 700; const windowHeight = 800; this.set({ - layout: new qx.ui.layout.Grow(), + layout: new qx.ui.layout.VBox(10), autoDestroy: true, contentPadding: 10, showMinimize: false, @@ -42,10 +42,12 @@ qx.Class.define("osparc.component.metadata.ServiceInfoWindow", { height: windowHeight }); - const serviceDetails = new osparc.component.metadata.ServiceInfo(metadata); + const serviceInfo = this._serviceInfo = new osparc.component.metadata.ServiceInfo(metadata); const scroll = new qx.ui.container.Scroll(); - scroll.add(serviceDetails); - this.add(scroll); + scroll.add(serviceInfo); + this.add(scroll, { + flex: 1 + }); }, properties: { @@ -53,5 +55,9 @@ qx.Class.define("osparc.component.metadata.ServiceInfoWindow", { refine: true, init: "info-service-window" } + }, + + members: { + _serviceInfo: null } }); diff --git a/services/web/client/source/class/osparc/component/metadata/ServiceStarterWindow.js b/services/web/client/source/class/osparc/component/metadata/ServiceStarterWindow.js new file mode 100644 index 00000000000..b6dfb1c3000 --- /dev/null +++ b/services/web/client/source/class/osparc/component/metadata/ServiceStarterWindow.js @@ -0,0 +1,117 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + + +qx.Class.define("osparc.component.metadata.ServiceStarterWindow", { + extend: osparc.component.metadata.ServiceInfoWindow, + + /** + * @param metadata {Object} Service metadata + */ + construct: function(metadata) { + this.base(arguments, metadata); + + this.__service = metadata; + + const toolboxContainer = this.__createToolbox(); + this.addAt(toolboxContainer, 0); + }, + + events: { + "startService": "qx.event.type.Data" + }, + + members: { + __serviceKey: null, + __versionsUIBox: null, + + __createToolbox: function() { + const toolboxContainer = new qx.ui.container.Composite(new qx.ui.layout.HBox()); + + const versionsList = this.__createVersionsList(); + toolboxContainer.add(versionsList); + + toolboxContainer.add(new qx.ui.core.Spacer(), { + flex: 1 + }); + + const openButton = new qx.ui.form.Button(this.tr("Open")).set({ + appearance: "md-button" + }); + openButton.addListener("execute", () => { + const data = { + "serviceKey": this.__service.key, + "serviceVersion": this.__getSelectedVersion() + }; + this.fireDataEvent("startService", data); + }); + toolboxContainer.add(openButton); + + return toolboxContainer; + }, + + __createVersionsList: function() { + const versionsList = this.__versionsUIBox = new qx.ui.form.SelectBox().set({ + font: "text-14" + }); + // populate versions + const store = osparc.store.Store.getInstance(); + store.getServicesDAGs() + .then(services => { + const versions = osparc.utils.Services.getVersions(services, this.__service.key); + if (versions) { + let lastItem = null; + versions.forEach(version => { + lastItem = new qx.ui.form.ListItem(version).set({ + font: "text-14" + }); + versionsList.add(lastItem); + }); + if (lastItem) { + versionsList.setSelection([lastItem]); + this.__versionSelected(lastItem.getLabel()); + } + } + }); + versionsList.addListener("changeSelection", e => { + const serviceVersion = this.__getSelectedVersion(); + if (serviceVersion) { + this.__versionSelected(serviceVersion); + } + }, this); + + return versionsList; + }, + + __getSelectedVersion: function() { + const selection = this.__versionsUIBox.getSelection(); + if (selection && selection.length) { + return selection[0].getLabel(); + } + return null; + }, + + __versionSelected: function(serviceVersion) { + const store = osparc.store.Store.getInstance(); + store.getServicesDAGs() + .then(services => { + const selectedService = osparc.utils.Services.getFromObject(services, this.__service.key, serviceVersion); + this._serviceInfo.setService(selectedService); + }); + } + } +}); diff --git a/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js b/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js index b32e43721dd..3054efb6b01 100644 --- a/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js +++ b/services/web/client/source/class/osparc/component/metadata/StudyDetailsEditor.js @@ -115,14 +115,7 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { marginTop: 10 }); - const openButton = this.__openButton = new qx.ui.form.Button("Open").set({ - appearance: "md-button" - }); - osparc.utils.Utils.setIdToWidget(openButton, "openStudyBtn"); - openButton.addListener("execute", () => this.fireEvent("openStudy"), this); - buttonsLayout.add(openButton); - - const modeButton = new qx.ui.form.Button("Edit", "@FontAwesome5Solid/edit/16").set({ + const modeButton = new qx.ui.form.Button(this.tr("Edit")).set({ appearance: "md-button", visibility: isCurrentUserOwner && (!isTemplate || canUpdateTemplate) ? "visible" : "excluded" }); @@ -130,10 +123,6 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { modeButton.addListener("execute", () => this.setMode("edit"), this); buttonsLayout.add(modeButton); - buttonsLayout.add(new qx.ui.core.Spacer(), { - flex: 1 - }); - if (!isTemplate) { const permissionsButton = new qx.ui.form.Button(this.tr("Permissions")).set({ appearance: "md-button" @@ -156,6 +145,17 @@ qx.Class.define("osparc.component.metadata.StudyDetailsEditor", { } } + buttonsLayout.add(new qx.ui.core.Spacer(), { + flex: 1 + }); + + const openButton = this.__openButton = new qx.ui.form.Button(this.tr("Open")).set({ + appearance: "md-button" + }); + osparc.utils.Utils.setIdToWidget(openButton, "openStudyBtn"); + openButton.addListener("execute", () => this.fireEvent("openStudy"), this); + buttonsLayout.add(openButton); + return buttonsLayout; }, diff --git a/services/web/client/source/class/osparc/component/node/NodeView.js b/services/web/client/source/class/osparc/component/node/NodeView.js index 3de4b3d566f..633f6e6666b 100644 --- a/services/web/client/source/class/osparc/component/node/NodeView.js +++ b/services/web/client/source/class/osparc/component/node/NodeView.js @@ -75,9 +75,8 @@ qx.Class.define("osparc.component.node.NodeView", { isSettingsGroupShowable: function() { const node = this.getNode(); - const propsWidget = node.getPropsWidget(); - if (propsWidget) { - return propsWidget.hasVisibleInputs(); + if (node && ("getPropsWidget" in node) && node.getPropsWidget()) { + return node.getPropsWidget().hasVisibleInputs(); } return false; }, diff --git a/services/web/client/source/class/osparc/component/service/ServiceJumbo.js b/services/web/client/source/class/osparc/component/service/ServiceJumbo.js index 283d9a7624c..985da74931a 100644 --- a/services/web/client/source/class/osparc/component/service/ServiceJumbo.js +++ b/services/web/client/source/class/osparc/component/service/ServiceJumbo.js @@ -63,7 +63,7 @@ qx.Class.define("osparc.component.service.ServiceJumbo", { } } if (data.tags && data.tags.length) { - const category = this.getServiceModel().getCategory() || ""; + const category = this.getServiceModel().getCategory ? this.getServiceModel().getCategory() : ""; const type = this.getServiceModel().getType() || ""; if (!data.tags.includes(osparc.utils.Utils.capitalize(category.trim())) && !data.tags.includes(osparc.utils.Utils.capitalize(type.trim()))) { return true; diff --git a/services/web/client/source/class/osparc/component/widget/CollapsibleView.js b/services/web/client/source/class/osparc/component/widget/CollapsibleView.js index a6a0956a508..89dee4d3e2b 100644 --- a/services/web/client/source/class/osparc/component/widget/CollapsibleView.js +++ b/services/web/client/source/class/osparc/component/widget/CollapsibleView.js @@ -32,9 +32,7 @@ qx.Class.define("osparc.component.widget.CollapsibleView", { // Title bar this.__titleBar = new qx.ui.container.Composite(new qx.ui.layout.HBox(5).set({ alignY: "middle" - })).set({ - allowGrowX: false - }); + })); this._add(this.__titleBar); this.__caret = this.getChildControl("caret"); @@ -46,9 +44,6 @@ qx.Class.define("osparc.component.widget.CollapsibleView", { if (content) { this.setContent(content); } - - // Attach handlers - this.__attachEventHandlers(); }, statics: { @@ -101,10 +96,14 @@ qx.Class.define("osparc.component.widget.CollapsibleView", { visibility: "excluded" }); this.__titleBar.addAt(control, 0); + // Attach handler + this.__attachToggler(control); break; case "title": control = new qx.ui.basic.Atom(this.getTitle()); this.__titleBar.addAt(control, 1); + // Attach handler + this.__attachToggler(control); break; } return control || this.base(arguments, id); @@ -198,8 +197,8 @@ qx.Class.define("osparc.component.widget.CollapsibleView", { return collapsed ? moreCaret + caretSize : lessCaret + caretSize; }, - __attachEventHandlers: function() { - this.__titleBar.addListener("tap", () => { + __attachToggler: function(control) { + control.addListener("tap", () => { this.toggleCollapsed(); }, this); } diff --git a/services/web/client/source/class/osparc/component/widget/PlotlyWidget.js b/services/web/client/source/class/osparc/component/widget/PlotlyWidget.js deleted file mode 100644 index bb5c1666bcb..00000000000 --- a/services/web/client/source/class/osparc/component/widget/PlotlyWidget.js +++ /dev/null @@ -1,86 +0,0 @@ -/* ************************************************************************ - - osparc - the simcore frontend - - https://osparc.io - - Copyright: - 2019 IT'IS Foundation, https://itis.swiss - - License: - MIT: https://opensource.org/licenses/MIT - - Authors: - * Odei Maiz (odeimaiz) - -************************************************************************ */ - -/** - * Widget containing a Plotly dom element. - * - * Data for being plotted can be dynamically set adn rendered. - * - * *Example* - * - * Here is a little example of how to use the widget. - * - * 
- *   let plotlyWidget = new osparc.component.widget.PlotlyWidget("elemId");
- *   this.getRoot().add(plotlyWidget);
- *
- */ - -qx.Class.define("osparc.component.widget.PlotlyWidget", { - extend: qx.ui.core.Widget, - - /** - * @param elemId {String} Element id to set it as dom attribute - */ - construct: function(elemId) { - this.base(); - - this.addListenerOnce("appear", () => { - this.__plotlyWrapper = new osparc.wrapper.Plotly(); - this.__plotlyWrapper.addListener(("plotlyLibReady"), e => { - let ready = e.getData(); - if (ready) { - let plotlyPlaceholder = qx.dom.Element.create("div"); - qx.bom.element.Attribute.set(plotlyPlaceholder, "id", elemId); - qx.bom.element.Style.set(plotlyPlaceholder, "width", "100%"); - qx.bom.element.Style.set(plotlyPlaceholder, "height", "100%"); - this.getContentElement().getDomElement() - .appendChild(plotlyPlaceholder); - this.__plotlyWrapper.createEmptyPlot(elemId); - this.fireDataEvent("plotlyWidgetReady", true); - } else { - console.debug("plotly.js was not loaded"); - this.fireDataEvent("plotlyWidgetReady", false); - } - }, this); - - this.__plotlyWrapper.init(); - }, this); - - this.addListener("resize", function() { - if (this.__plotlyWrapper) { - this.__plotlyWrapper.resize(); - } - }, this); - }, - - events: { - "plotlyWidgetReady": "qx.event.type.Data" - }, - - members: { - __plotlyWrapper: null, - - resize: function() { - this.__plotlyWrapper.resize(); - }, - - setData: function(ids, labels, values, tooltips, title) { - this.__plotlyWrapper.setData(ids, labels, values, tooltips, title); - } - } -}); diff --git a/services/web/client/source/class/osparc/dashboard/Dashboard.js b/services/web/client/source/class/osparc/dashboard/Dashboard.js index b44b03c0518..c587df9bdff 100644 --- a/services/web/client/source/class/osparc/dashboard/Dashboard.js +++ b/services/web/client/source/class/osparc/dashboard/Dashboard.js @@ -56,27 +56,23 @@ qx.Class.define("osparc.dashboard.Dashboard", { }, members: { - __prjBrowser: null, - __serviceBrowser: null, - __dataManager: null, + __studyBrowser: null, + __exploreBrowser: null, getStudyBrowser: function() { - return this.__prjBrowser; + return this.__studyBrowser; }, - getServiceBrowser: function() { - return this.__serviceBrowser; - }, - - getDataManager: function() { - return this.__dataManager; + getExploreBrowser: function() { + return this.__exploreBrowser; }, __createMainViewLayout: function() { [ [this.tr("Studies"), this.__createStudyBrowser], - [this.tr("Services"), this.__createServiceBrowser], - [this.tr("Data"), this.__createDataBrowser] + // [this.tr("Services"), this.__createServiceBrowser], + [this.tr("Data"), this.__createDataBrowser], + [this.tr("Discover"), this.__createExploreBrowser] ].forEach(tuple => { const tabPage = new qx.ui.tabview.Page(tuple[0]).set({ appearance: "dashboard-page" @@ -92,6 +88,9 @@ qx.Class.define("osparc.dashboard.Dashboard", { if (viewLayout.resetSelection) { viewLayout.resetSelection(); } + if (viewLayout.resetFilter) { + viewLayout.resetFilter(); + } }, this); const scrollerMainView = new qx.ui.container.Scroll(); scrollerMainView.add(viewLayout); @@ -102,18 +101,18 @@ qx.Class.define("osparc.dashboard.Dashboard", { }, __createStudyBrowser: function() { - const studiesView = this.__prjBrowser = new osparc.dashboard.StudyBrowser(); + const studiesView = this.__studyBrowser = new osparc.dashboard.StudyBrowser(); return studiesView; }, - __createServiceBrowser: function() { - const servicesView = this.__serviceBrowser = new osparc.dashboard.ServiceBrowser(); - return servicesView; - }, - __createDataBrowser: function() { - const dataManagerView = this.__dataManager = new osparc.dashboard.DataBrowser(); + const dataManagerView = new osparc.dashboard.DataBrowser(); return dataManagerView; + }, + + __createExploreBrowser: function() { + const exploreView = this.__exploreBrowser = new osparc.dashboard.ExploreBrowser(); + return exploreView; } } }); diff --git a/services/web/client/source/class/osparc/dashboard/ExploreBrowser.js b/services/web/client/source/class/osparc/dashboard/ExploreBrowser.js new file mode 100644 index 00000000000..9936c124f3d --- /dev/null +++ b/services/web/client/source/class/osparc/dashboard/ExploreBrowser.js @@ -0,0 +1,654 @@ +/* ************************************************************************ + + osparc - the simcore frontend + + https://osparc.io + + Copyright: + 2020 IT'IS Foundation, https://itis.swiss + + License: + MIT: https://opensource.org/licenses/MIT + + Authors: + * Odei Maiz (odeimaiz) + +************************************************************************ */ + +/** + * @ignore(Headers) + * @ignore(fetch) + */ + +qx.Class.define("osparc.dashboard.ExploreBrowser", { + extend: qx.ui.core.Widget, + + construct: function() { + this.base(arguments); + + this._setLayout(new qx.ui.layout.VBox(10)); + + this.__initResources(); + }, + + events: { + "startStudy": "qx.event.type.Data" + }, + + statics: { + sortTemplateList: function(studyList) { + let sortByProperty = function(prop) { + return function(a, b) { + if (prop === "lastChangeDate") { + return new Date(b[prop]) - new Date(a[prop]); + } + if (typeof a[prop] == "number") { + return a[prop] - b[prop]; + } + if (a[prop] < b[prop]) { + return -1; + } else if (a[prop] > b[prop]) { + return 1; + } + return 0; + }; + }; + studyList.sort(sortByProperty("lastChangeDate")); + } + }, + + members: { + __loadingIFrame: null, + __exploreFilters: null, + __templateStudyContainer: null, + __servicesContainer: null, + __templateStudies: null, + __services: null, + + /** + * Function that resets the selected item + */ + resetSelection: function() { + if (this.__templateStudyContainer) { + this.__templateStudyContainer.resetSelection(); + } + if (this.__servicesContainer) { + this.__servicesContainer.resetSelection(); + } + }, + resetFilter: function() { + if (this.__exploreFilters) { + this.__exploreFilters.reset(); + } + }, + + __checkLoggedIn: function() { + let isLogged = osparc.auth.Manager.getInstance().isLoggedIn(); + if (!isLogged) { + const msg = this.tr("You need to be logged in to create a study"); + osparc.component.message.FlashMessenger.getInstance().logAs(msg); + } + return isLogged; + }, + + /** + * Function that asks the backend for the list of template studies and sets it + */ + __reloadTemplateStudies: function() { + if (osparc.data.Permissions.getInstance().canDo("studies.templates.read")) { + osparc.data.Resources.get("templates") + .then(templates => { + this.__resetTemplateList(templates); + }) + .catch(err => { + console.error(err); + }); + } else { + this.__resetTemplateList([]); + } + }, + + /** + * Function that asks the backend for the list of services and sets it + */ + __reloadServices: function() { + const store = osparc.store.Store.getInstance(); + store.getServicesDAGs() + .then(services => { + const servicesList = []; + for (const serviceKey in services) { + const latestService = osparc.utils.Services.getLatest(services, serviceKey); + servicesList.push(latestService); + } + this.__resetServicesList(servicesList); + }) + .catch(err => { + console.error(err); + }); + }, + + __initResources: function() { + this.__showLoadingPage(this.tr("Discovering Templates and Apps")); + + const servicesTags = this.__getTags(); + const store = osparc.store.Store.getInstance(); + const servicesPromise = store.getServicesDAGs(true); + + Promise.all([ + servicesTags, + servicesPromise + ]) + .then(() => { + this.__hideLoadingPage(); + this.__createResourcesLayout(); + this.__reloadResources(); + this.__attachEventHandlers(); + }); + }, + + __reloadResources: function() { + this.__reloadTemplateStudies(); + this.__reloadServices(); + }, + + __getTags: function() { + return new Promise((resolve, reject) => { + if (osparc.data.Permissions.getInstance().canDo("study.tag")) { + osparc.data.Resources.get("tags") + .catch(console.error) + .finally(() => resolve()); + } else { + resolve(); + } + }); + }, + + __createResourcesLayout: function() { + const exploreFilters = this.__exploreFilters = new osparc.component.filter.group.StudyFilterGroup("exploreBrowser").set({ + paddingTop: 5 + }); + this._add(exploreFilters); + + const exploreBrowserLayout = new qx.ui.container.Composite(new qx.ui.layout.VBox(16)); + + const tempStudyLayout = this.__createTemplateStudiesLayout(); + exploreBrowserLayout.add(tempStudyLayout); + + const servicesLayout = this.__createServicesLayout(); + exploreBrowserLayout.add(servicesLayout); + + const scrollStudies = new qx.ui.container.Scroll(); + scrollStudies.add(exploreBrowserLayout); + this._add(scrollStudies, { + flex: 1 + }); + }, + + __createButtonsLayout: function(title, content) { + const userStudyLayout = new osparc.component.widget.CollapsibleView(title); + userStudyLayout.getChildControl("title").set({ + font: "title-16" + }); + userStudyLayout._getLayout().setSpacing(8); // eslint-disable-line no-underscore-dangle + userStudyLayout.setContent(content); + return userStudyLayout; + }, + + __createTemplateStudiesLayout: function() { + const templateStudyContainer = this.__templateStudyContainer = this.__createResourceListLayout(); + osparc.utils.Utils.setIdToWidget(templateStudyContainer, "templateStudiesList"); + const tempStudyLayout = this.__createButtonsLayout(this.tr("Templates"), templateStudyContainer); + return tempStudyLayout; + }, + + __createServicesLayout: function() { + const servicesContainer = this.__servicesContainer = this.__createResourceListLayout(); + osparc.utils.Utils.setIdToWidget(servicesContainer, "servicesList"); + const servicesLayout = this.__createButtonsLayout(this.tr("Apps"), servicesContainer); + + const servicesTitleContainer = servicesLayout.getTitleBar(); + this.__addNewServiceButtons(servicesTitleContainer); + + return servicesLayout; + }, + + __attachEventHandlers: function() { + const textfield = this.__exploreFilters.getTextFilter().getChildControl("textfield"); + textfield.addListener("appear", () => { + textfield.focus(); + }, this); + }, + + __createStudyFromService: function(serviceKey, serviceVersion) { + if (!this.__checkLoggedIn()) { + return; + } + + this.__showLoadingPage(this.tr("Creating Study")); + const store = osparc.store.Store.getInstance(); + store.getServicesDAGs() + .then(services => { + if (serviceKey in services) { + let service = null; + if (serviceVersion) { + service= osparc.utils.Services.getFromObject(services, serviceKey, serviceVersion); + } else { + service= osparc.utils.Services.getLatest(services, serviceKey); + } + const newUuid = osparc.utils.Utils.uuidv4(); + const minStudyData = osparc.data.model.Study.createMinimumStudyObject(); + minStudyData["name"] = service["name"]; + minStudyData["workbench"] = {}; + minStudyData["workbench"][newUuid] = { + "key": service["key"], + "version": service["version"], + "label": service["name"], + "inputs": {}, + "inputNodes": [], + "thumbnail": "", + "position": { + "x": 50, + "y": 50 + } + }; + const params = { + data: minStudyData + }; + osparc.data.Resources.fetch("studies", "post", params) + .then(studyData => { + this.__startStudy(studyData); + }) + .catch(er => { + console.error(er); + }); + } + }) + .catch(err => { + console.error(err); + }); + }, + + __createStudy: function(minStudyData, templateId) { + if (!this.__checkLoggedIn()) { + return; + } + + this.__showLoadingPage(this.tr("Creating ") + (minStudyData.name || this.tr("Study"))); + + const params = { + url: { + templateId: templateId + }, + data: minStudyData + }; + osparc.data.Resources.fetch("studies", "postFromTemplate", params) + .then(studyData => { + this.__startStudy(studyData); + }) + .catch(err => { + console.error(err); + }); + }, + + __startStudy: function(studyData) { + if (!this.__checkLoggedIn()) { + return; + } + + this.__showLoadingPage(this.tr("Starting ") + (studyData.name || this.tr("Study"))); + osparc.store.Store.getInstance().getServicesDAGs() + .then(() => { + this.__hideLoadingPage(); + this.__loadStudy(studyData); + }); + }, + + __loadStudy: function(studyData) { + const study = new osparc.data.model.Study(studyData); + this.fireDataEvent("startStudy", study); + }, + + __showResourcesLayout: function(show) { + this._getChildren().forEach(children => { + children.setVisibility(show ? "visible" : "excluded"); + }); + }, + + __resetTemplateList: function(tempStudyList) { + this.__templateStudies = tempStudyList; + this.__templateStudyContainer.removeAll(); + this.self().sortTemplateList(tempStudyList); + tempStudyList.forEach(tempStudy => { + tempStudy["resourceType"] = "template"; + this.__templateStudyContainer.add(this.__createStudyItem(tempStudy)); + }); + }, + + __resetServicesList: function(servicesList) { + this.__services = servicesList; + this.__servicesContainer.removeAll(); + servicesList.forEach(service => { + service["resourceType"] = "service"; + this.__servicesContainer.add(this.__createStudyItem(service)); + }); + }, + + __removeFromStudyList: function(studyId) { + const studyContainer = this.__templateStudyContainer; + const items = studyContainer.getChildren(); + for (let i=0; i study.tags.includes(tag.id)) : []; + + const item = new osparc.dashboard.StudyBrowserButtonItem().set({ + resourceType: study.resourceType, + uuid: study.uuid, + studyTitle: study.name, + studyDescription: study.description, + creator: study.prjOwner ? study.prjOwner : null, + accessRights: study.accessRights ? study.accessRights : null, + lastChangeDate: study.lastChangeDate ? new Date(study.lastChangeDate) : null, + icon: study.thumbnail || defaultThumbnail, + tags + }); + const menu = this.__getStudyItemMenu(item, study); + item.setMenu(menu); + item.subscribeToFilterGroup("exploreBrowser"); + item.addListener("execute", () => { + this.__itemClicked(item); + }, this); + + return item; + }, + + __getStudyItemMenu: function(item, studyData) { + const menu = new qx.ui.menu.Menu().set({ + position: "bottom-right" + }); + + const moreInfoButton = this.__getMoreInfoMenuButton(studyData, true); + if (moreInfoButton) { + menu.add(moreInfoButton); + } + + const deleteButton = this.__getDeleteTemplateMenuButton(studyData, true); + if (deleteButton) { + menu.addSeparator(); + menu.add(deleteButton); + } + + return menu; + }, + + __getMoreInfoMenuButton: function(studyData, isTemplate) { + const moreInfoButton = new qx.ui.menu.Button(this.tr("More Info")); + moreInfoButton.addListener("execute", () => { + if (studyData["resourceType"] === "service") { + const win = new osparc.component.metadata.ServiceStarterWindow(studyData); + win.addListener("startService", e => { + const { + serviceKey, + serviceVersion + } = e.getData(); + this.__createStudyFromService(serviceKey, serviceVersion); + win.close(); + }); + win.open(); + win.center(); + } else { + const winWidth = 400; + this.__createStudyDetailsEditor(studyData, winWidth); + } + }, this); + return moreInfoButton; + }, + + __getDeleteTemplateMenuButton: function(studyData) { + const isCurrentUserOwner = this.__isUserOwner(studyData); + if (!isCurrentUserOwner) { + return null; + } + + const deleteButton = new qx.ui.menu.Button(this.tr("Delete")); + osparc.utils.Utils.setIdToWidget(deleteButton, "studyItemMenuDelete"); + deleteButton.addListener("execute", () => { + const win = this.__createConfirmWindow(false); + win.center(); + win.open(); + win.addListener("close", () => { + if (win.getConfirmed()) { + this.__deleteStudy(studyData, true); + } + }, this); + }, this); + return deleteButton; + }, + + __itemClicked: function(item) { + if (item.isResourceType("service")) { + const serviceKey = item.getUuid(); + this.__createStudyFromService(serviceKey, null); + } else { + const matchesId = study => study.uuid === item.getUuid(); + const studyData = this.__templateStudies.find(matchesId); + this.__startStudy(studyData); + } + this.resetSelection(); + }, + + __createStudyDetailsEditor: function(studyData, winWidth) { + const studyDetails = new osparc.component.metadata.StudyDetailsEditor(studyData, true, winWidth); + studyDetails.addListener("updateTemplate", () => this.__reloadTemplateStudies(), this); + studyDetails.addListener("openStudy", () => { + this.__createStudyBtnClkd(studyData); + }, this); + studyDetails.addListener("updateTags", () => { + this.__resetTemplateList(osparc.store.Store.getInstance().getTemplates()); + }); + + const height = 400; + const title = this.tr("Study Details Editor"); + const win = osparc.component.metadata.StudyDetailsEditor.popUpInWindow(title, studyDetails, winWidth, height); + studyDetails.addListener("updateTemplate", () => win.close()); + }, + + __createStudyBtnClkd: function(templateData) { + const minStudyData = osparc.data.model.Study.createMinimumStudyObject(); + minStudyData["name"] = templateData.name; + minStudyData["description"] = templateData.description; + this.__createStudy(minStudyData, templateData.uuid); + }, + + __updateDeleteTemplatesButton: function(templateDeleteButton) { + const templateSelection = this.__templateStudyContainer.getSelection(); + const canDeleteTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.delete"); + let allMine = Boolean(templateSelection.length) && canDeleteTemplate; + for (let i=0; i 1 ? this.tr("Delete selected")+" ("+nSelected+")" : this.tr("Delete")); + templateDeleteButton.setVisibility("visible"); + } else { + templateDeleteButton.setVisibility("excluded"); + } + }, + + __deleteStudy: function(studyData, isTemplate = false) { + const myGid = osparc.auth.Data.getInstance().getGroupId(); + const collabGids = Object.keys(studyData["accessRights"]); + const amICollaborator = collabGids.indexOf(myGid) > -1; + + const params = { + url: { + projectId: studyData.uuid + } + }; + let operationPromise = null; + if (collabGids.length > 1 && amICollaborator) { + // remove collaborator + const permissions = osparc.component.export.Permissions; + permissions.removeCollaborator(studyData, myGid); + params["data"] = studyData; + operationPromise = osparc.data.Resources.fetch(isTemplate ? "templates" : "studies", "put", params); + } else { + // delete study + operationPromise = osparc.data.Resources.fetch(isTemplate ? "templates" : "studies", "delete", params, studyData.uuid); + } + operationPromise + .then(() => this.__removeFromStudyList(studyData.uuid, isTemplate)) + .catch(err => { + console.error(err); + osparc.component.message.FlashMessenger.getInstance().logAs(err, "ERROR"); + }); + }, + + __createConfirmWindow: function(isMulti) { + const msg = isMulti ? this.tr("Are you sure you want to delete the studies?") : this.tr("Are you sure you want to delete the study?"); + return new osparc.ui.window.Confirmation(msg); + }, + + __showLoadingPage: function(label) { + this.__hideLoadingPage(); + + this.__showResourcesLayout(false); + + if (this.__loadingIFrame === null) { + this.__loadingIFrame = new osparc.ui.message.Loading(label); + } else { + this.__loadingIFrame.setHeader(label); + } + this._add(this.__loadingIFrame, { + flex: 1 + }); + }, + + __hideLoadingPage: function() { + if (this.__loadingIFrame) { + const idx = this._indexOf(this.__loadingIFrame); + if (idx !== -1) { + this._remove(this.__loadingIFrame); + } + } + + this.__showResourcesLayout(true); + }, + + __isUserOwner: function(studyData) { + const myEmail = osparc.auth.Data.getInstance().getEmail(); + if ("prjOwner" in studyData) { + return studyData.prjOwner === myEmail; + } else if ("getCreator" in studyData) { + return studyData.getCreator() === myEmail; + } + return false; + }, + + __addNewServiceButtons: function(layout) { + layout.add(new qx.ui.core.Spacer(20, null)); + + + osparc.utils.LibVersions.getPlatformName() + .then(platformName => { + if (platformName === "dev") { + const testDataButton = new qx.ui.form.Button(this.tr("Test with data"), "@FontAwesome5Solid/plus-circle/14"); + testDataButton.addListener("execute", () => { + osparc.utils.Utils.fetchJSON("/resource/form/service-data.json") + .then(data => { + this.__displayServiceSubmissionForm(data); + }); + }); + layout.add(testDataButton); + } + }); + + const addServiceButton = new qx.ui.form.Button(this.tr("Submit new service"), "@FontAwesome5Solid/plus-circle/14"); + addServiceButton.addListener("execute", () => { + this.__displayServiceSubmissionForm(); + }); + layout.add(addServiceButton); + }, + + __displayServiceSubmissionForm: function(formData) { + const addServiceWindow = new qx.ui.window.Window(this.tr("Submit a new service")).set({ + appearance: "service-window", + modal: true, + autoDestroy: true, + showMinimize: false, + allowMinimize: false, + centerOnAppear: true, + layout: new qx.ui.layout.Grow(), + width: 600, + height: 660 + }); + const scroll = new qx.ui.container.Scroll(); + addServiceWindow.add(scroll); + const form = new osparc.component.form.json.JsonSchemaForm("/resource/form/service.json", formData); + form.addListener("ready", () => { + addServiceWindow.open(); + }); + form.addListener("submit", e => { + const data = e.getData(); + const headers = new Headers(); + headers.append("Accept", "application/json"); + const body = new FormData(); + body.append("metadata", new Blob([JSON.stringify(data.json)], { + type: "application/json" + })); + if (data.files && data.files.length) { + const size = data.files[0].size; + const maxSize = 10; // 10 MB + if (size > maxSize * 1024 * 1024) { + osparc.component.message.FlashMessenger.logAs(`The file is too big. Maximum size is ${maxSize}MB. Please provide with a smaller file or a repository URL.`, "ERROR"); + return; + } + body.append("attachment", data.files[0], data.files[0].name); + } + form.setFetching(true); + fetch("/v0/publications/service-submission", { + method: "POST", + headers, + body + }) + .then(resp => { + if (resp.ok) { + osparc.component.message.FlashMessenger.logAs("Your data was sent to our curation team. We will get back to you shortly.", "INFO"); + addServiceWindow.close(); + } else { + osparc.component.message.FlashMessenger.logAs("A problem occured while processing your data", "ERROR"); + } + }) + .finally(() => form.setFetching(false)); + }); + scroll.add(form); + } + } +}); diff --git a/services/web/client/source/class/osparc/dashboard/StudyBrowser.js b/services/web/client/source/class/osparc/dashboard/StudyBrowser.js index f07bc02e376..74ecb71ae59 100644 --- a/services/web/client/source/class/osparc/dashboard/StudyBrowser.js +++ b/services/web/client/source/class/osparc/dashboard/StudyBrowser.js @@ -16,12 +16,9 @@ ************************************************************************ */ /** - * Widget that shows two lists of studies and study editor form: - * - List1: User's studies (StudyBrowserButtonItem) - * - List2: Template studies to start from (StudyBrowserButtonItem) - * - Form: Extra editable information of the selected study + * Widget that shows lists user's studies. * - * It is the entry point to start editing or creatina new study. + * It is the entry point to start editing or creating a new study. * * Also takes care of retrieveing the list of services and pushing the changes in the metadata. * @@ -76,19 +73,21 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { __loadingIFrame: null, __studyFilters: null, __userStudyContainer: null, - __templateStudyContainer: null, __userStudies: null, - __templateStudies: null, __newStudyBtn: null, /** * Function that resets the selected item */ resetSelection: function() { + if (this.__userStudyContainer) { + this.__userStudyContainer.resetSelection(); + } + }, + resetFilter: function() { if (this.__studyFilters) { this.__studyFilters.reset(); } - this.__itemSelected(null); }, __reloadUserStudy: function(studyId) { @@ -115,7 +114,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { osparc.data.Resources.get("studies") .then(studies => { this.__resetStudyList(studies); - this.__itemSelected(null); + this.resetSelection(); }) .catch(err => { console.error(err); @@ -125,32 +124,21 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { } }, - /** - * Function that asks the backend for the list of template studies and sets it - */ - reloadTemplateStudies: function() { - if (osparc.data.Permissions.getInstance().canDo("studies.templates.read")) { - osparc.data.Resources.get("templates") - .then(templates => { - this.__resetTemplateList(templates); - this.__itemSelected(null); - }) - .catch(err => { - console.error(err); - }); - } else { - this.__resetTemplateList([]); - } - }, - __initResources: function() { - this.__showLoadingPage(this.tr("Loading studies")); + this.__showLoadingPage(this.tr("Loading Studies")); + + const servicesTags = this.__getTags(); + const store = osparc.store.Store.getInstance(); + const servicesPromise = store.getServicesDAGs(true); - this.__getTags() + Promise.all([ + servicesTags, + servicesPromise + ]) .then(() => { this.__hideLoadingPage(); this.__createStudiesLayout(); - this.__reloadStudies(); + this.__reloadResources(); this.__attachEventHandlers(); const loadStudyId = osparc.store.Store.getInstance().getCurrentStudyId(); if (loadStudyId) { @@ -159,10 +147,9 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { }); }, - __reloadStudies: function() { + __reloadResources: function() { this.__getActiveStudy(); this.reloadUserStudies(); - this.reloadTemplateStudies(); }, __getActiveStudy: function() { @@ -203,8 +190,6 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { this._add(studyFilters); const studyBrowserLayout = new qx.ui.container.Composite(new qx.ui.layout.VBox(16)); - const tempStudyLayout = this.__createTemplateStudiesLayout(); - studyBrowserLayout.add(tempStudyLayout); const userStudyLayout = this.__createUserStudiesLayout(); studyBrowserLayout.add(userStudyLayout); @@ -223,24 +208,34 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { return newStudyBtn; }, - __createUserStudiesLayout: function() { - const userStudyLayout = new osparc.component.widget.CollapsibleView(this.tr("Recent studies")); + __createButtonsLayout: function(title, content) { + const userStudyLayout = new osparc.component.widget.CollapsibleView(title); userStudyLayout.getChildControl("title").set({ font: "title-16" }); userStudyLayout._getLayout().setSpacing(8); // eslint-disable-line no-underscore-dangle + userStudyLayout.setContent(content); + return userStudyLayout; + }, + + __createUserStudiesLayout: function() { + const userStudyContainer = this.__userStudyContainer = this.__createStudyListLayout(); + osparc.utils.Utils.setIdToWidget(userStudyContainer, "userStudiesList"); + const userStudyLayout = this.__createButtonsLayout(this.tr("Recent studies"), userStudyContainer); - const studiesDeleteButton = this.__createDeleteButton(false); const studiesTitleContainer = userStudyLayout.getTitleBar(); + + // Delete Studies Button + const studiesDeleteButton = this.__createDeleteButton(false); studiesTitleContainer.add(new qx.ui.core.Spacer(20, null)); studiesTitleContainer.add(studiesDeleteButton); - - const userStudyContainer = this.__userStudyContainer = this.__createUserStudyList(); - userStudyLayout.setContent(userStudyContainer); userStudyContainer.addListener("changeSelection", e => { const nSelected = e.getData().length; + this.__newStudyBtn.setEnabled(!nSelected); this.__userStudyContainer.getChildren().forEach(userStudyItem => { - userStudyItem.multiSelection(nSelected); + if (userStudyItem instanceof osparc.dashboard.StudyBrowserButtonItem) { + userStudyItem.multiSelection(nSelected); + } }); this.__updateDeleteStudiesButton(studiesDeleteButton); }, this); @@ -248,34 +243,6 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { return userStudyLayout; }, - __createTemplateStudiesLayout: function() { - const tempStudyLayout = new osparc.component.widget.CollapsibleView(this.tr("New studies")); - tempStudyLayout.getChildControl("title").set({ - font: "title-16" - }); - tempStudyLayout._getLayout().setSpacing(8); // eslint-disable-line no-underscore-dangle - - const templateDeleteButton = this.__createDeleteButton(true); - const templateTitleContainer = tempStudyLayout.getTitleBar(); - templateTitleContainer.add(new qx.ui.core.Spacer(20, null)); - templateTitleContainer.add(templateDeleteButton); - - const templateStudyContainer = this.__templateStudyContainer = this.__createTemplateStudyList(); - tempStudyLayout.setContent(templateStudyContainer); - templateStudyContainer.addListener("changeSelection", e => { - const nSelected = e.getData().length; - this.__newStudyBtn.setEnabled(!nSelected); - this.__templateStudyContainer.getChildren().forEach(templateStudyItem => { - if (templateStudyItem instanceof osparc.dashboard.StudyBrowserButtonItem) { - templateStudyItem.multiSelection(nSelected); - } - }); - this.__updateDeleteTemplatesButton(templateDeleteButton); - }, this); - - return tempStudyLayout; - }, - __getStudyAndStart: function(loadStudyId) { const params = { url: { @@ -295,19 +262,19 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { }); }, - __createDeleteButton: function(areTemplates) { + __createDeleteButton: function() { const deleteButton = new qx.ui.form.Button(this.tr("Delete"), "@FontAwesome5Solid/trash/14").set({ visibility: "excluded" }); osparc.utils.Utils.setIdToWidget(deleteButton, "deleteStudiesBtn"); deleteButton.addListener("execute", () => { - const selection = areTemplates ? this.__templateStudyContainer.getSelection() : this.__userStudyContainer.getSelection(); + const selection = this.__userStudyContainer.getSelection(); const win = this.__createConfirmWindow(selection.length > 1); win.center(); win.open(); win.addListener("close", () => { if (win.getConfirmed()) { - this.__deleteStudies(selection.map(button => this.__getStudyData(button.getUuid(), areTemplates)), areTemplates); + this.__deleteStudies(selection.map(button => this.__getStudyData(button.getUuid(), false)), false); } }, this); }, this); @@ -321,14 +288,14 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { }, this); const commandEsc = new qx.ui.command.Command("Esc"); commandEsc.addListener("execute", e => { - this.__itemSelected(null); + this.resetSelection(); }); osparc.store.Store.getInstance().addListener("changeTags", () => this.__resetStudyList(osparc.store.Store.getInstance().getStudies()), this); }, - __createStudyBtnClkd: function(templateData) { + __createStudyBtnClkd: function() { const minStudyData = osparc.data.model.Study.createMinimumStudyObject(); - let title = templateData ? templateData.name : "New study"; + let title = "New study"; const existingTitles = this.__userStudies.map(study => study.name); if (existingTitles.includes(title)) { let cont = 1; @@ -338,43 +305,28 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { title += ` (${cont})`; } minStudyData["name"] = title; - minStudyData["description"] = templateData ? templateData.description : ""; - this.__createStudy(minStudyData, templateData ? templateData.uuid : null); + minStudyData["description"] = ""; + this.__createStudy(minStudyData, null); }, - __createStudy: function(minStudyData, templateId) { + __createStudy: function(minStudyData) { this.__showLoadingPage(this.tr("Creating ") + (minStudyData.name || this.tr("Study"))); - if (templateId) { - const params = { - url: { - templateId: templateId - }, - data: minStudyData - }; - osparc.data.Resources.fetch("studies", "postFromTemplate", params) - .then(studyData => { - this.__startStudy(studyData); - }) - .catch(err => { - console.error(err); - }); - } else { - const params = { - data: minStudyData - }; - osparc.data.Resources.fetch("studies", "post", params) - .then(studyData => { - this.__startStudy(studyData); - }) - .catch(err => { - console.error(err); - }); - } + + const params = { + data: minStudyData + }; + osparc.data.Resources.fetch("studies", "post", params) + .then(studyData => { + this.__startStudy(studyData); + }) + .catch(err => { + console.error(err); + }); }, __startStudy: function(studyData) { this.__showLoadingPage(this.tr("Starting ") + (studyData.name || this.tr("Study"))); - osparc.store.Store.getInstance().getServicesDAGs(false) + osparc.store.Store.getInstance().getServicesDAGs() .then(() => { this.__hideLoadingPage(); this.__loadStudy(studyData); @@ -383,9 +335,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { __loadStudy: function(studyData) { const study = new osparc.data.model.Study(studyData); - this.__studyEditor = this.__studyEditor || new osparc.desktop.StudyEditor(); - this.__studyEditor.setStudy(study); - this.fireDataEvent("startStudy", this.__studyEditor); + this.fireDataEvent("startStudy", study); }, __showStudiesLayout: function(show) { @@ -394,18 +344,6 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { }); }, - __createUserStudyList: function() { - const usrLst = this.__userStudyContainer = this.__createStudyListLayout(); - osparc.utils.Utils.setIdToWidget(usrLst, "userStudiesList"); - return usrLst; - }, - - __createTemplateStudyList: function() { - const tempList = this.__templateStudyContainer = this.__createStudyListLayout(); - osparc.utils.Utils.setIdToWidget(tempList, "templateStudiesList"); - return tempList; - }, - __resetStudyItem: function(studyData) { const userStudyList = this.__userStudies; const index = userStudyList.findIndex(userStudy => userStudy["uuid"] === studyData["uuid"]); @@ -418,25 +356,17 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { __resetStudyList: function(userStudyList) { this.__userStudies = userStudyList; this.__userStudyContainer.removeAll(); + this.__userStudyContainer.add(this.__createNewStudyButton()); this.self().sortStudyList(userStudyList); - for (let i=0; i { + userStudy["resourceType"] = "study"; + this.__userStudyContainer.add(this.__createStudyItem(userStudy)); + }); osparc.component.filter.UIFilterController.dispatch("studyBrowser"); }, - __resetTemplateList: function(tempStudyList) { - this.__templateStudies = tempStudyList; - this.__templateStudyContainer.removeAll(); - this.__templateStudyContainer.add(this.__createNewStudyButton()); - this.self().sortStudyList(tempStudyList); - for (let i=0; i study.tags.includes(tag.id)) : - []; + __createStudyItem: function(study) { + let defaultThumbnail = ""; + switch (study["resourceType"]) { + case "study": + defaultThumbnail = "@FontAwesome5Solid/file-alt/50"; + break; + } + const tags = study.tags ? osparc.store.Store.getInstance().getTags().filter(tag => study.tags.includes(tag.id)) : []; + const item = new osparc.dashboard.StudyBrowserButtonItem().set({ - isTemplate, + resourceType: study.resourceType, uuid: study.uuid, studyTitle: study.name, studyDescription: study.description, creator: study.prjOwner ? study.prjOwner : null, accessRights: study.accessRights ? study.accessRights : null, lastChangeDate: study.lastChangeDate ? new Date(study.lastChangeDate) : null, - icon: study.thumbnail || (isTemplate ? "@FontAwesome5Solid/copy/50" : "@FontAwesome5Solid/file-alt/50"), + icon: study.thumbnail || defaultThumbnail, tags }); - const menu = this.__getStudyItemMenu(item, study, isTemplate); + const menu = this.__getStudyItemMenu(item, study); item.setMenu(menu); item.subscribeToFilterGroup("studyBrowser"); - item.addListener("execute", () => { - this.__itemClicked(item, isTemplate); + this.__itemClicked(item); }, this); return item; }, - __getStudyItemMenu: function(item, studyData, isTemplate) { + __getStudyItemMenu: function(item, studyData) { const menu = new qx.ui.menu.Menu().set({ position: "bottom-right" }); - const selectButton = this.__getSelectMenuButton(item, isTemplate); - menu.add(selectButton); + const selectButton = this.__getSelectMenuButton(item, studyData); + if (selectButton) { + menu.add(selectButton); + } - const moreInfoButton = this.__getMoreInfoMenuButton(studyData, isTemplate); - menu.add(moreInfoButton); + const moreInfoButton = this.__getMoreInfoMenuButton(studyData); + if (moreInfoButton) { + menu.add(moreInfoButton); + } - if (!isTemplate) { - const shareStudyButton = this.__getPermissionsMenuButton(studyData); - menu.add(shareStudyButton); + const shareStudyButton = this.__getPermissionsMenuButton(studyData); + menu.add(shareStudyButton); - const isCurrentUserOwner = this.__isUserOwner(studyData); - const canCreateTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.create"); - if (isCurrentUserOwner && canCreateTemplate) { - const saveAsTemplateButton = this.__getSaveAsTemplateMenuButton(studyData); - menu.add(saveAsTemplateButton); - } + const isCurrentUserOwner = this.__isUserOwner(studyData); + const canCreateTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.create"); + if (isCurrentUserOwner && canCreateTemplate) { + const saveAsTemplateButton = this.__getSaveAsTemplateMenuButton(studyData); + menu.add(saveAsTemplateButton); } - const deleteButton = this.__getDeleteStudyMenuButton(studyData, isTemplate); + const deleteButton = this.__getDeleteStudyMenuButton(studyData, false); if (deleteButton) { menu.addSeparator(); menu.add(deleteButton); @@ -511,19 +446,19 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { return menu; }, - __getSelectMenuButton: function(item, isTemplate) { + __getSelectMenuButton: function(item, studyData) { const selectButton = new qx.ui.menu.Button(this.tr("Select")); selectButton.addListener("execute", () => { item.setValue(true); - this.__itemMultiSelected(item, isTemplate); }, this); return selectButton; }, - __getMoreInfoMenuButton: function(studyData, isTemplate) { + __getMoreInfoMenuButton: function(studyData) { const moreInfoButton = new qx.ui.menu.Button(this.tr("More Info")); moreInfoButton.addListener("execute", () => { - this.__createStudyDetailsEditor(studyData, isTemplate); + const winWidth = 400; + this.__createStudyDetailsEditor(studyData, winWidth); }, this); return moreInfoButton; }, @@ -555,7 +490,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { saveAsTemplateView.addListener("finished", e => { const template = e.getData(); if (template) { - this.reloadTemplateStudies(); + console.log("templates should be reloaded"); window.close(); } }, this); @@ -564,12 +499,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { return saveAsTemplateButton; }, - __getDeleteStudyMenuButton: function(studyData, isTemplate) { - const isCurrentUserOwner = this.__isUserOwner(studyData); - if (isTemplate && !isCurrentUserOwner) { - return null; - } - + __getDeleteStudyMenuButton: function(studyData) { const deleteButton = new qx.ui.menu.Button(this.tr("Delete")); osparc.utils.Utils.setIdToWidget(deleteButton, "studyItemMenuDelete"); deleteButton.addListener("execute", () => { @@ -578,80 +508,35 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { win.open(); win.addListener("close", () => { if (win.getConfirmed()) { - this.__deleteStudy(studyData, isTemplate); + this.__deleteStudy(studyData); } }, this); }, this); return deleteButton; }, - __getStudyData: function(id, isTemplate) { + __getStudyData: function(id) { const matchesId = study => study.uuid === id; - return isTemplate ? this.__templateStudies.find(matchesId) : this.__userStudies.find(matchesId); + return this.__userStudies.find(matchesId); }, - __itemClicked: function(item, isTemplate) { + __itemClicked: function(item) { const selected = item.getValue(); - const studyData = this.__getStudyData(item.getUuid(), isTemplate); - const studyContainer = isTemplate ? this.__templateStudyContainer : this.__userStudyContainer; - - const selection = studyContainer.getSelection(); - if (selection.length > 1) { - this.__itemMultiSelected(item, isTemplate); - } else if (selected) { - isTemplate ? this.__createStudyBtnClkd(studyData) : this.__startStudy(studyData); + const selection = this.__userStudyContainer.getSelection(); + if (selected && selection.length === 1) { + const studyData = this.__getStudyData(item.getUuid(), false); + this.__startStudy(studyData); } }, - __itemMultiSelected: function(item, isTemplate) { - // Selection logic - if (item.getValue()) { - this.__itemSelected(item.getUuid()); - } else if (isTemplate) { - const selection = this.__templateStudyContainer.getSelection(); - if (selection.length) { - this.__itemSelected(selection[0].getUuid()); - } else { - this.__itemSelected(null); - } - } else { - const selection = this.__userStudyContainer.getSelection(); - if (selection.length) { - this.__itemSelected(selection[0].getUuid()); - } else { - this.__itemSelected(null); - } - } - }, - - __itemSelected: function(studyId) { - if (studyId === null) { - if (this.__userStudyContainer) { - this.__userStudyContainer.resetSelection(); - } - if (this.__templateStudyContainer) { - this.__templateStudyContainer.resetSelection(); - } - } - }, - - __createStudyDetailsEditor: function(studyData, isTemplate, winWidth) { - const studyDetails = new osparc.component.metadata.StudyDetailsEditor(studyData, isTemplate, winWidth); + __createStudyDetailsEditor: function(studyData, winWidth) { + const studyDetails = new osparc.component.metadata.StudyDetailsEditor(studyData, false, winWidth); studyDetails.addListener("updateStudy", () => this.reloadUserStudies(), this); - studyDetails.addListener("updateTemplate", () => this.reloadTemplateStudies(), this); studyDetails.addListener("openStudy", () => { - if (isTemplate) { - this.__createStudyBtnClkd(studyData); - } else { - this.__startStudy(studyData); - } + this.__startStudy(studyData); }, this); studyDetails.addListener("updateTags", () => { - if (isTemplate) { - this.__resetTemplateList(osparc.store.Store.getInstance().getTemplates()); - } else { - this.__resetStudyList(osparc.store.Store.getInstance().getStudies()); - } + this.__resetStudyList(osparc.store.Store.getInstance().getStudies()); }); const height = 400; @@ -659,7 +544,6 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { const win = osparc.component.metadata.StudyDetailsEditor.popUpInWindow(title, studyDetails, winWidth, height); [ "updateStudy", - "updateTemplate", "openStudy" ].forEach(event => studyDetails.addListener(event, () => win.close())); }, @@ -674,28 +558,7 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { } }, - __updateDeleteTemplatesButton: function(templateDeleteButton) { - const templateSelection = this.__templateStudyContainer.getSelection(); - const canDeleteTemplate = osparc.data.Permissions.getInstance().canDo("studies.template.delete"); - let allMine = Boolean(templateSelection.length) && canDeleteTemplate; - for (let i=0; i 1 ? this.tr("Delete selected")+" ("+nSelected+")" : this.tr("Delete")); - templateDeleteButton.setVisibility("visible"); - } else { - templateDeleteButton.setVisibility("excluded"); - } - }, - - __deleteStudy: function(studyData, isTemplate = false) { + __deleteStudy: function(studyData) { const myGid = osparc.auth.Data.getInstance().getGroupId(); const collabGids = Object.keys(studyData["accessRights"]); const amICollaborator = collabGids.indexOf(myGid) > -1; @@ -711,23 +574,23 @@ qx.Class.define("osparc.dashboard.StudyBrowser", { const permissions = osparc.component.export.Permissions; permissions.removeCollaborator(studyData, myGid); params["data"] = studyData; - operationPromise = osparc.data.Resources.fetch(isTemplate ? "templates" : "studies", "put", params); + operationPromise = osparc.data.Resources.fetch("studies", "put", params); } else { // delete study - operationPromise = osparc.data.Resources.fetch(isTemplate ? "templates" : "studies", "delete", params, studyData.uuid); + operationPromise = osparc.data.Resources.fetch("studies", "delete", params, studyData.uuid); } operationPromise - .then(() => this.__removeFromStudyList(studyData.uuid, isTemplate)) + .then(() => this.__removeFromStudyList(studyData.uuid, false)) .catch(err => { console.error(err); osparc.component.message.FlashMessenger.getInstance().logAs(err, "ERROR"); }) - .finally(this.__itemSelected(null)); + .finally(this.resetSelection()); }, - __deleteStudies: function(studiesData, areTemplates = false) { + __deleteStudies: function(studiesData) { studiesData.forEach(studyData => { - this.__deleteStudy(studyData, areTemplates); + this.__deleteStudy(studyData); }); }, diff --git a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js index 55e4e796eb1..b55950ad807 100644 --- a/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js +++ b/services/web/client/source/class/osparc/dashboard/StudyBrowserButtonItem.js @@ -50,11 +50,10 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { }, properties: { - isTemplate: { - check: "Boolean", + resourceType: { + check: ["study", "template", "service"], nullable: false, - init: false, - event: "changeIsTemplate" + event: "changeResourceType" }, menu: { @@ -117,6 +116,10 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { __dateFormat: null, __timeFormat: null, + isResourceType: function(resourceType) { + return this.getResourceType() === resourceType; + }, + multiSelection: function(on) { const menuButton = this.getChildControl("menu-button"); menuButton.setVisibility(on ? "excluded" : "visible"); @@ -190,7 +193,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { _applyStudyDescription: function(value, old) { /* - if (value !== "" && this.getIsTemplate()) { + if (value !== "" && this.isResourceType("template")) { const label = this.getChildControl("description"); label.setValue(value); } @@ -198,7 +201,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { }, _applyLastChangeDate: function(value, old) { - if (value && !this.getIsTemplate()) { + if (value && this.isResourceType("study")) { const label = this.getChildControl("description2"); let dateStr = null; if (value.getDate() === (new Date()).getDate()) { @@ -214,7 +217,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { }, _applyCreator: function(value, old) { - if (this.getIsTemplate()) { + if (this.isResourceType("service") || this.isResourceType("template")) { const label = this.getChildControl("description2"); label.setValue(value); } @@ -254,7 +257,7 @@ qx.Class.define("osparc.dashboard.StudyBrowserButtonItem", { const gids = Object.keys(value); for (let j=0; j group["gid"] === gid); diff --git a/services/web/client/source/class/osparc/data/model/Node.js b/services/web/client/source/class/osparc/data/model/Node.js index 41fd0daddfc..22334d0baf6 100644 --- a/services/web/client/source/class/osparc/data/model/Node.js +++ b/services/web/client/source/class/osparc/data/model/Node.js @@ -950,14 +950,15 @@ qx.Class.define("osparc.data.model.Node", { __onNodeState: function(data) { const serviceState = data["service_state"]; switch (serviceState) { - case "starting": { - this.setInteractiveStatus("starting"); - const interval = 5000; + case "idle": { + this.setInteractiveStatus("idle"); + const interval = 1000; qx.event.Timer.once(() => this.__nodeState(), this, interval); break; } + case "starting": case "pulling": { - this.setInteractiveStatus("pulling"); + this.setInteractiveStatus(serviceState); const interval = 5000; qx.event.Timer.once(() => this.__nodeState(), this, interval); break; diff --git a/services/web/client/source/class/osparc/desktop/MainPage.js b/services/web/client/source/class/osparc/desktop/MainPage.js index d4548a4fec8..52e975202db 100644 --- a/services/web/client/source/class/osparc/desktop/MainPage.js +++ b/services/web/client/source/class/osparc/desktop/MainPage.js @@ -20,11 +20,11 @@ * * It offers a: * - NavigationBar - * - Main View (Stack). - * - Dashboard (Stack): + * - Main Stack + * - Dashboard Stack * - StudyBrowser - * - ServiceBrowser * - DataManager + * - ExploreBrowser * - StudyEditor * * 
@@ -41,28 +41,27 @@ qx.Class.define("osparc.desktop.MainPage", {
 
     this._setLayout(new qx.ui.layout.VBox());
 
-    let navBar = this.__navBar = this.__createNavigationBar();
+    const navBar = this.__navBar = this.__createNavigationBar();
     this._add(navBar);
 
-    let prjStack = this.__prjStack = this.__createMainView();
-    this._add(prjStack, {
+    const mainStack = this.__mainStack = this.__createMainStack();
+    this._add(mainStack, {
       flex: 1
     });
-  },
 
-  events: {},
+    this.__attachHandlers();
+  },
 
   members: {
     __navBar: null,
-    __prjStack: null,
+    __mainStack: null,
     __dashboard: null,
     __dashboardLayout: null,
     __studyEditor: null,
 
     __createNavigationBar: function() {
-      let navBar = new osparc.desktop.NavigationBar().set({
-        height: 100
-      });
+      const navBar = new osparc.desktop.NavigationBar();
+      navBar.buildLayout();
 
       navBar.addListener("dashboardPressed", () => {
         if (!osparc.data.Permissions.getInstance().canDo("studies.user.create", true)) {
@@ -80,21 +79,30 @@ qx.Class.define("osparc.desktop.MainPage", {
           this.__studyEditor.nodeSelected(nodeId);
         }
       }, this);
+
       return navBar;
     },
 
-    __createMainView: function() {
-      const prjStack = new qx.ui.container.Stack();
+    __createMainStack: function() {
+      const mainStack = new qx.ui.container.Stack().set({
+        alignX: "center"
+      });
+
+      const dashboardLayout = this.__createDashboardStack();
+      mainStack.add(dashboardLayout);
+
+      const studyEditor = this.__studyEditor = new osparc.desktop.StudyEditor();
+      mainStack.add(studyEditor);
 
+      return mainStack;
+    },
+
+    __createDashboardStack: function() {
       const nStudyItemsPerRow = 5;
       const studyButtons = osparc.dashboard.StudyBrowserButtonBase;
       const dashboard = this.__dashboard = new osparc.dashboard.Dashboard().set({
-        width: nStudyItemsPerRow * (studyButtons.ITEM_WIDTH + studyButtons.SPACING) + 25 // padding + scrollbar
+        width: nStudyItemsPerRow * (studyButtons.ITEM_WIDTH + studyButtons.SPACING) + 10 // padding + scrollbar
       });
-      dashboard.getStudyBrowser().addListener("startStudy", e => {
-        const studyEditor = e.getData();
-        this.__startStudyEditor(studyEditor);
-      }, this);
 
       const dashboardLayout = this.__dashboardLayout = new qx.ui.container.Composite(new qx.ui.layout.HBox(5));
       dashboardLayout.add(new qx.ui.core.Widget(), {
@@ -104,14 +112,25 @@ qx.Class.define("osparc.desktop.MainPage", {
       dashboardLayout.add(new qx.ui.core.Widget(), {
         flex: 1
       });
+      return dashboardLayout;
+    },
 
-      prjStack.add(dashboardLayout);
-
-      return prjStack;
+    __attachHandlers: function() {
+      [
+        this.__dashboard.getStudyBrowser(),
+        this.__dashboard.getExploreBrowser()
+      ].forEach(studyStarter => {
+        studyStarter.addListener("startStudy", e => {
+          this.__studyEditor = this.__studyEditor || new osparc.desktop.StudyEditor();
+          const study = e.getData();
+          this.__studyEditor.setStudy(study);
+          this.__startStudyEditor(this.__studyEditor);
+        }, this);
+      });
     },
 
     __showDashboard: function() {
-      this.__prjStack.setSelection([this.__dashboardLayout]);
+      this.__mainStack.setSelection([this.__dashboardLayout]);
       this.__dashboard.getStudyBrowser().reloadUserStudies();
       this.__navBar.setPathButtons([]);
       if (this.__studyEditor) {
@@ -121,13 +140,14 @@ qx.Class.define("osparc.desktop.MainPage", {
 
     __startStudyEditor: function(studyEditor) {
       if (this.__studyEditor) {
-        this.__prjStack.remove(this.__studyEditor);
+        this.__mainStack.remove(this.__studyEditor);
       }
 
       this.__studyEditor = studyEditor;
       let study = studyEditor.getStudy();
-      this.__prjStack.add(this.__studyEditor);
-      this.__prjStack.setSelection([this.__studyEditor]);
+      this.__mainStack.add(this.__studyEditor);
+      this.__mainStack.setSelection([this.__studyEditor]);
+
       this.__navBar.setStudy(study);
       this.__navBar.setPathButtons(this.__studyEditor.getCurrentPathIds());
 
diff --git a/services/web/client/source/class/osparc/desktop/NavigationBar.js b/services/web/client/source/class/osparc/desktop/NavigationBar.js
index 38f960a2753..26b104915fc 100644
--- a/services/web/client/source/class/osparc/desktop/NavigationBar.js
+++ b/services/web/client/source/class/osparc/desktop/NavigationBar.js
@@ -49,33 +49,10 @@ qx.Class.define("osparc.desktop.NavigationBar", {
     this.set({
       paddingLeft: 10,
       paddingRight: 10,
+      height: 50,
       maxHeight: 50,
       backgroundColor: "background-main-lighter"
     });
-
-    this.getChildControl("logo");
-    this.getChildControl("platform");
-
-    this._add(new qx.ui.core.Spacer(20));
-
-    this.__dashboardBtn = this.getChildControl("dashboard-button");
-    this.__dashboardLabel = this.getChildControl("dashboard-label");
-    this.__dashboardContext();
-
-    this._add(new qx.ui.core.Spacer(20));
-
-    const studyTitle = this.__studyTitle = this.__createStudyTitle();
-    this._add(studyTitle);
-    this.__mainViewCaptionLayout = this.getChildControl("study-path-container");
-
-    this._add(new qx.ui.core.Spacer(), {
-      flex: 1
-    });
-
-    this.getChildControl("user-manual");
-    this.getChildControl("feedback");
-    this.getChildControl("theme-switch");
-    this.getChildControl("user-menu");
   },
 
   events: {
@@ -107,6 +84,32 @@ qx.Class.define("osparc.desktop.NavigationBar", {
     __studyTitle: null,
     __mainViewCaptionLayout: null,
 
+    buildLayout: function() {
+      this.getChildControl("logo");
+      this.getChildControl("platform");
+
+      this._add(new qx.ui.core.Spacer(20));
+
+      this.__dashboardBtn = this.getChildControl("dashboard-button");
+      this.__dashboardLabel = this.getChildControl("dashboard-label");
+      this.__dashboardContext();
+
+      this._add(new qx.ui.core.Spacer(20));
+
+      const studyTitle = this.__studyTitle = this.__createStudyTitle();
+      this._add(studyTitle);
+      this.__mainViewCaptionLayout = this.getChildControl("study-path-container");
+
+      this._add(new qx.ui.core.Spacer(), {
+        flex: 1
+      });
+
+      this.getChildControl("user-manual");
+      this.getChildControl("feedback");
+      this.getChildControl("theme-switch");
+      this.getChildControl("user-menu");
+    },
+
     _createChildControlImpl: function(id) {
       let control;
       switch (id) {
diff --git a/services/web/client/source/class/osparc/desktop/StudyEditor.js b/services/web/client/source/class/osparc/desktop/StudyEditor.js
index dfd6a02a123..6cc7b3f3580 100644
--- a/services/web/client/source/class/osparc/desktop/StudyEditor.js
+++ b/services/web/client/source/class/osparc/desktop/StudyEditor.js
@@ -72,6 +72,7 @@ qx.Class.define("osparc.desktop.StudyEditor", {
       study.openStudy();
       this.__initViews();
       this.__connectEvents();
+      this.__attachSocketEventHandlers();
       this.__startAutoSaveTimer();
 
       this.__openOneNode();
@@ -604,7 +605,7 @@ qx.Class.define("osparc.desktop.StudyEditor", {
       this.__scrollContainer.setVisibility("visible");
       this.__nodeView._maximizeIFrame(false); // eslint-disable-line no-underscore-dangle
       const node = this.getStudy().getWorkbench().getNode(this.__currentNodeId);
-      if (node && node.getIFrame() && !this.__nodeView.isSettingsGroupShowable()) {
+      if (node && node.getIFrame() && (node.getInputNodes().length === 0)) {
         node.getLoadingPage().maximizeIFrame(true);
         node.getIFrame().maximizeIFrame(true);
       }
@@ -635,53 +636,59 @@ qx.Class.define("osparc.desktop.StudyEditor", {
       controlsBar.addListener("ungroupSelection", this.__ungroupSelection, this);
       controlsBar.addListener("startPipeline", this.__startPipeline, this);
       controlsBar.addListener("stopPipeline", this.__stopPipeline, this);
+    },
 
+    __attachSocketEventHandlers: function() {
       // Listen to socket
       const socket = osparc.wrapper.WebSocket.getInstance();
+
       // callback for incoming logs
       const slotName = "logger";
-      socket.removeSlot(slotName);
-      socket.on(slotName, function(jsonString) {
-        const data = JSON.parse(jsonString);
-        if (Object.prototype.hasOwnProperty.call(data, "project_id") && this.getStudy().getUuid() !== data["project_id"]) {
-          // Filtering out logs from other studies
-          return;
-        }
-        this.getLogger().infos(data["Node"], data["Messages"]);
-      }, this);
+      if (!socket.slotExists(slotName)) {
+        socket.on(slotName, function(jsonString) {
+          const data = JSON.parse(jsonString);
+          if (Object.prototype.hasOwnProperty.call(data, "project_id") && this.getStudy().getUuid() !== data["project_id"]) {
+            // Filtering out logs from other studies
+            return;
+          }
+          this.getLogger().infos(data["Node"], data["Messages"]);
+        }, this);
+      }
       socket.emit(slotName);
 
       // callback for incoming progress
       const slotName2 = "progress";
-      socket.removeSlot(slotName2);
-      socket.on(slotName2, function(data) {
-        const d = JSON.parse(data);
-        const nodeId = d["Node"];
-        const progress = 100 * Number.parseFloat(d["Progress"]).toFixed(4);
-        const workbench = this.getStudy().getWorkbench();
-        const node = workbench.getNode(nodeId);
-        if (node) {
-          node.setProgress(progress);
-        }
-      }, this);
+      if (!socket.slotExists(slotName2)) {
+        socket.on(slotName2, function(data) {
+          const d = JSON.parse(data);
+          const nodeId = d["Node"];
+          const progress = 100 * Number.parseFloat(d["Progress"]).toFixed(4);
+          const workbench = this.getStudy().getWorkbench();
+          const node = workbench.getNode(nodeId);
+          if (node) {
+            node.setProgress(progress);
+          }
+        }, this);
+      }
 
       // callback for node updates
       const slotName3 = "nodeUpdated";
-      socket.removeSlot(slotName3);
-      socket.on(slotName3, data => {
-        const d = JSON.parse(data);
-        const nodeId = d["Node"];
-        const nodeData = d["Data"];
-        const workbench = this.getStudy().getWorkbench();
-        const node = workbench.getNode(nodeId);
-        if (node) {
-          node.setOutputData(nodeData.outputs);
-          if (nodeData.progress) {
-            const progress = Number.parseInt(nodeData.progress);
-            node.setProgress(progress);
+      if (!socket.slotExists(slotName3)) {
+        socket.on(slotName3, data => {
+          const d = JSON.parse(data);
+          const nodeId = d["Node"];
+          const nodeData = d["Data"];
+          const workbench = this.getStudy().getWorkbench();
+          const node = workbench.getNode(nodeId);
+          if (node) {
+            node.setOutputData(nodeData.outputs);
+            if (nodeData.progress) {
+              const progress = Number.parseInt(nodeData.progress);
+              node.setProgress(progress);
+            }
           }
-        }
-      }, this);
+        }, this);
+      }
     }
   }
 });
diff --git a/services/web/client/source/class/osparc/store/Store.js b/services/web/client/source/class/osparc/store/Store.js
index 941aadd94f7..e0ee27fddf8 100644
--- a/services/web/client/source/class/osparc/store/Store.js
+++ b/services/web/client/source/class/osparc/store/Store.js
@@ -201,7 +201,7 @@ qx.Class.define("osparc.store.Store", {
      * This functions does the needed processing in order to have a working list of services and DAGs.
      * @param {Boolean} reload ?
      */
-    getServicesDAGs: function(reload) {
+    getServicesDAGs: function(reload = false) {
       return new Promise((resolve, reject) => {
         const allServices = osparc.utils.Services.getBuiltInServices();
         const servicesPromise = osparc.data.Resources.get("services", null, !reload);
diff --git a/services/web/client/source/class/osparc/utils/Services.js b/services/web/client/source/class/osparc/utils/Services.js
index 4a4803ec6d2..567eb09c216 100644
--- a/services/web/client/source/class/osparc/utils/Services.js
+++ b/services/web/client/source/class/osparc/utils/Services.js
@@ -233,12 +233,35 @@ qx.Class.define("osparc.utils.Services", {
 
     servicesToCache: function(services) {
       this.servicesCached = {};
-      this.__addCategoryToServices(services);
+      this.__addExtraInfo(services);
       this.servicesCached = Object.assign(this.servicesCached, services);
     },
 
-    __addCategoryToServices: function(services) {
-      const cats = {
+    __addExtraInfo: function(services) {
+      const categories = this.__getCategories();
+      Object.values(services).forEach(serviceWVersion => {
+        Object.values(serviceWVersion).forEach(service => {
+          service["uuid"] = service["key"];
+          service["prjOwner"] = service["contact"];
+          service["thumbnail"] = "@FontAwesome5Solid/paw/50";
+          service["accessRights"] = {
+            "1": {
+              "read": true,
+              "write": true,
+              "delete": false
+            }
+          };
+          if (Object.prototype.hasOwnProperty.call(categories, service["key"])) {
+            service["category"] = categories[service["key"]]["category"];
+          } else {
+            service["category"] = "Unknown";
+          }
+        });
+      });
+    },
+
+    __getCategories: function(services) {
+      return {
         "simcore/services/frontend/file-picker": {
           "category": "Data"
         },
@@ -400,25 +423,6 @@ qx.Class.define("osparc.utils.Services", {
           "category": "PostPro"
         }
       };
-      for (const serviceKey in services) {
-        if (Object.prototype.hasOwnProperty.call(services, serviceKey)) {
-          let service = services[serviceKey];
-          if (serviceKey in cats) {
-            for (const version in service) {
-              let serv = service[version];
-              if (Object.prototype.hasOwnProperty.call(service, version)) {
-                serv["category"] = cats[serviceKey]["category"];
-              } else {
-                serv["category"] = "Unknown";
-              }
-            }
-          } else {
-            for (const version in service) {
-              service[version]["category"] = "Unknown";
-            }
-          }
-        }
-      }
     }
   }
 });
diff --git a/services/web/client/source/class/osparc/wrapper/Plotly.js b/services/web/client/source/class/osparc/wrapper/Plotly.js
deleted file mode 100644
index 4afdf2d2c53..00000000000
--- a/services/web/client/source/class/osparc/wrapper/Plotly.js
+++ /dev/null
@@ -1,138 +0,0 @@
-/* ************************************************************************
-
-   osparc - the simcore frontend
-
-   https://osparc.io
-
-   Copyright:
-     2018 IT'IS Foundation, https://itis.swiss
-
-   License:
-     MIT: https://opensource.org/licenses/MIT
-
-   Authors:
-     * Odei Maiz (odeimaiz)
-
-************************************************************************ */
-
-/* global Plotly */
-
-/**
- * @asset(plotly/plotly.min.js)
- * @ignore(Plotly)
- */
-
-/**
- * A qooxdoo wrapper for
- * Plotly
- */
-
-qx.Class.define("osparc.wrapper.Plotly", {
-  extend: qx.core.Object,
-
-  statics: {
-    NAME: "plotly",
-    VERSION: "1.49.1",
-    URL: "https://github.com/plotly/plotly.js"
-  },
-
-  construct: function() {
-    this.base(arguments);
-
-    this.__data = [];
-    this.__layout = {};
-  },
-
-  properties: {
-    libReady: {
-      nullable: false,
-      init: false,
-      check: "Boolean"
-    }
-  },
-
-  events: {
-    "plotlyLibReady": "qx.event.type.Data"
-  },
-
-  members: {
-    __layout: null,
-    __data: null,
-    __plotId: null,
-
-    init: function() {
-      // initialize the script loading
-      let plotlyPath = "plotly/plotly.min.js";
-      let dynLoader = new qx.util.DynamicScriptLoader([
-        plotlyPath
-      ]);
-
-      dynLoader.addListenerOnce("ready", e => {
-        console.log(plotlyPath + " loaded");
-        this.setLibReady(true);
-        this.fireDataEvent("plotlyLibReady", true);
-      }, this);
-
-      dynLoader.addListener("failed", e => {
-        let data = e.getData();
-        console.log("failed to load " + data.script);
-        this.fireDataEvent("plotlyLibReady", false);
-      }, this);
-
-      dynLoader.start();
-    },
-
-    createEmptyPlot: function(id) {
-      this.__plotId = id;
-      const margin = 25;
-      const bigFont = osparc.utils.Utils.getFont(14);
-      const smallFont = osparc.utils.Utils.getFont(12);
-      this.__layout = {
-        titlefont: {
-          color: "#bfbfbf",
-          size: bigFont.getSize(),
-          family: bigFont.getFamily()
-        },
-        font: {
-          color: "#bfbfbf",
-          size: smallFont.getSize(),
-          family: smallFont.getFamily()
-        },
-        margin: {
-          l: margin,
-          r: margin,
-          t: margin,
-          b: margin,
-          pad: 0
-        },
-        "plot_bgcolor": "rgba(0, 0, 0, 0)",
-        "paper_bgcolor": "rgba(0, 0, 0, 0)"
-      };
-      this.__data = [];
-      Plotly.newPlot(this.__plotId, this.__data, this.__layout);
-    },
-
-    resize: function() {
-      let d3 = Plotly.d3;
-      var gd3 = d3.select("div[id="+this.__plotId+"]");
-      let gd = gd3.node();
-      Plotly.Plots.resize(gd);
-    },
-
-    setData: function(ids, labels, values, tooltips, title) {
-      this.__data = [{
-        ids: ids,
-        labels: labels,
-        values: values,
-        text: tooltips,
-        textinfo: "label+percent",
-        hoverinfo: "text",
-        showlegend: false,
-        type: "pie"
-      }];
-      this.__layout["title"] = title;
-
-      Plotly.react(this.__plotId, this.__data, this.__layout);
-    }
-  }
-});
diff --git a/services/web/client/source/class/osparc/wrapper/WebSocket.js b/services/web/client/source/class/osparc/wrapper/WebSocket.js
index a257f0263b1..47ab23723a1 100644
--- a/services/web/client/source/class/osparc/wrapper/WebSocket.js
+++ b/services/web/client/source/class/osparc/wrapper/WebSocket.js
@@ -240,10 +240,13 @@ qx.Class.define("osparc.wrapper.WebSocket", {
      */
     on: function(name, fn, that) {
       this.__name.push(name);
-      if (typeof (that) !== "undefined" && that !== null) {
-        this.getSocket().on(name, qx.lang.Function.bind(fn, that));
-      } else {
-        this.getSocket().on(name, fn);
+      const socket = this.getSocket();
+      if (socket) {
+        if (typeof (that) !== "undefined" && that !== null) {
+          socket.on(name, qx.lang.Function.bind(fn, that));
+        } else {
+          socket.on(name, fn);
+        }
       }
     },
 
diff --git a/services/web/client/source/resource/osparc/img0.jpg b/services/web/client/source/resource/osparc/img0.jpg
deleted file mode 100644
index ab9e47cc01871b0d276e02268971e9b9dfbb4d46..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 218892
zcmeFa2UHYI(^
zNs@eL;nBzE{oe1p@45HfbN+LFhqFD^Rn^_q-PPSQT|LFgr;}-lY-K+udjQbZ1~>r#
zzy)w1WB?R|AmASWp#iW?VF0j&(Efs*A(#H*!2o##05Aj?!Jj8Y@D!#1;e-e$0Q0Z3
zMc{n^z&{KH0FHA%?+SKqws0mrM>mw4m!q3IlcFNiC2bp+6A~T23<&ZIh)W6xND4|Y
z35ZAv3rh-$fw=$xGzapxd^s3D%fJxJf&PRcTBn=a2p`R#l^+L
zCB(xcBqhKnAf+TBBqX7vA}6OLC#NDMJiY$9okjjNgb)!B5D^odBPKpaK}<|cfewf%
z&XSP+CmEbP2S{;&>p%_^!VF-LLZGCOlL@er_$RL+a-fu0kkbnk7=1wj2nHq=HV!Tx
zJ^`oz|0F^H4CqhdIRJtQfns1{VBuinVnGRoKq4s=^CFo5mV&+wIkQKYAT~w9qpB+`
ztds^XY=wk9Z}uwUuq7IV&4se^AsT48~NPHL;=O|Fuvl7eLVmVNC0w^xDmeQU8cuSlQjgQisZbMpQXst0m2UWEb
zl)TURyfr52SXVdFzoCMNb##eYeR3QY8{As1y?p{a2w7O(YI}Jcqh~KOAy#OfHM&^C
z*>2*oBAca1YZ2*ItZYKS6*%Q0BQ{bq(0&X*jwyu+$uV*iOOD<_yjjws6dttTs%jJo
zb$#AFDkkRDmOJ8Bb4(652@vtW7p@}BJdL5dn@>z~q{@Ad8kg0_Po2q8C-cQ+bKZ!L
zJ3b|=*Rj06e$|h0DW`g#R<{#yKBf>+yRYljrmou?(tKQ3)WMSl`%W1kh@*d4jvdum
zwH?1hM#qXnB2eE%TL4MaQXS7zf=+j6c{2*Hw=<0_iS`ZOlU7}O(=KU-CtKRVP@&Rn
zQQLhC+X{Xk(r2+`VOQmeGom)>+=e&VD$|)cni>I%X#c#GD^_$6cVcbSQ;gQ`{v}k2_dSP38H7
zlydc$l%KHPm$Lj2P4Yvd?PW-1p(1le)k?6;3PZk51l6$4^wh)l+Ohbsfv8ICYgN*u
zOp|T=tE5(ni_(d&wk!|n?vymmBj0jMeo$aMN6E&D$8!B1bq))kPTvK~loEp*23il_
zKFg*E6BN;U=t-t{(ldK?S-~sJCD2(Vd&Hprn`k1f!^r))2#Gq8ZmEdPd&L8_D}mS6
z`i$H9PXJYieI@u;Ij3Tc1HVHrDp1rPXGdx@N~3wwOSI
zyS#*68*4Y%%>AwQe73k{?NNw##k$hggOhAeWKdPpLz
zMmMtW1YH;%GutmKym-5|6IIpK9+IE5;uX@%qtkL%K(Kn#*(R98a3~3q-`T-@AlCAz
zbDOI^B;UB1abNUOp*Y@sv$Q6h-G-cywUDh0iqLAQr4}l_w$d3(O-3ZviwET$^(JlS
zv%RKL+*(uNTe~&ibhpiGgh*KWjz|`cbW|mh;c$zja2l@0RlnjKQRu^Y?7H$UFVULC
znq6?<9$hG?^OWs(&}d_1=-d`g@)qeJCL0SLUJ!WH)_EKb`ya?4ydv2%u2=ym7^y)^%)kN9usFvz$1;cU>|`bnZ)y2PVP&7nY&N
zM?U;wUKv|;BTFWavfn%+45!1n?eu2f^tcpaTxTOv9Tmr}gze{oBudR}hKi~4YCQSL?A^3|jHkUktIIwksMlfuEJ4^8vB;St$S
zg#05*@)=T--5m^g
z7c3On-*+w;Q|`Fre7Ls#@q_CwS2asR@;2X%4vD#*0LGmGUHOv<9y=>uKF#h4SXU*=
z36Y{g*^6pp4c~S9ywc@T8cjdosaW_O(cTwS(UVqk7I)cdXj6tB)y9X2q#xQCnIQcl
zlE$g_N{U|DbAR=KjHt6F2I42hUa^~rPs~2)o#Si&Sjc3uw2^@*KM#|fGumG%JEC3e
z808wPZOhwkOFsb!;La(r?{Vz)c)VqYp47XTk+f|g%J6;6x4;2;xYlpUXu5cR*YG+o
z{goz3KOSD*iI!EuZ62?YZzllGG12?bMeesELM%a@A`Ml8jb&R8*Cr;HgLHl8g70Jx
zm^TzIkg)`(EUlja)cv9H7^-@~Lsq8zT<@2~jlW8)z*7-Ym=gJ&zIjL8jIH&aRvwl4
z4kkW>DgD&~*N0t2GK$XEalsUpS!#Okvec
zCqQ3Fo;@;Hyi~HKRv@i5^y+@=opQOnLYXHATyCR9UNRbs;Ocvfmz{TYLZRVPWnJhr
za{q{?MCAJ%=|V=m)L!Zk!nfv_WPh1BXGmmXLVs9IlAPlNU@xF<(`=7$TSiX5PMVs`TVQLp`)Dp_FcMx-
zp|a^n%#92u**>b+2|QXtz7pS&*sfZqQ#ryN+wzt8$a}1DJw_!B?AG4<4eARy{F;?P
z^?hcWJT44$i!?#N(CTs5w#H=APC?VS&jpb}rx^p0eLh6&;aaC{-EQr@+KP%g+H8x;
z@rl`<&lbLg^@yyj&br`)?5+~G+FC?C!^<(c-P&z_gkxEV$Wuk1s_#1?QVz%W44919FIql+CP@DiV7RM1imHpQ`w*y2QZ!I)9
zt#cgje=eBygomql-&H%u%&hvsYUl)@zkW!}f(LsRahQKh$GA@mwL#t53Iqx*GA!ze
zd~Pc3Eyyj!-;I&>R@-D`-6LmK7Ylr%w7$|0AOA8_V)u?I+Ccq)U0Fj%0uLNoY9S|m
z(DfawWI+pSuWTui@*a8j35$pGV!q!KF15sBL|G`*(OnyZ_`ArD4vUNL2Tyb#ez4k0
zDWw>@j(9+MO_`@~E7|UoZlR$=zqeSXPYuVS(DApBTWY5LONg6?`$P!$pb-0szz-44
zUWyhLv_}r3)ix~8SuPp?L^76grJ#BY&)l=djKj;B^$y%vSS}M?eSELYy{@tNqZi7x
z-?%lVb>iOG;qE?{NsJ6vkzIpmx~0d&QnYKd$5iuHR;g$C3D77z6(qW!y)M^PlBrtK
zzd#4xzjAlhnU5B61uDxoiW&cg~!XPp~;c$F}e{o#4nTZB(XPs
z<61CG#!dIQu7)VES~DZZqfeHm)Y4tBqJH4v$i=jl$AN)IqN^Nx-10dBLw(CzMGK#`
za9OsHHyB;aw(XgpyegNsiku!SfxqEme|KypBv&^J8`?Cy%e`}9qb$6=c@bf9+?xcK
z&8(|?n|jlx95N=~yNaBG=?i)`h2-qg9I1pa^gP!|uM5&{d+babki_Q_bRN600xRRO
zIAm4u_UcfUvR~`--E(Vtenmf7G7<0;bDvU0g5BB7%8{cmpAUB6|1;?h%d*UEXk_C*N3;&
z?_%zFg(Y&de=m@UyO;e&>fx|-<73Q^e*WwppZ!QateyaEmpXE_LO<0es=C9C-KzN3+LuvxRt^xg6bqb!s<-dwwCp<^5SQhmg!T-t=VN0
zzMlZ^SQR1z>+0_^ChciFxeYrkt4NL<-w3vv5xetrXlKNl*G1-Andf(sh4$6DO1?lMf#)1
zI*FPx?ZHYYrIzqtdsxNnBN%BRLHDj+!166-uTi_%^8r_}f
zo@0$EgEwEFniFlMs|+?AVi|7tLBj9^0u7Hef5d!JW{0-;X7e#
z_A7-Cn2z{1sll}@8(ge1I{d2prngjLeqfE;3Zx#a(k?o&#jY;OWggD$p8zXUN4Vff
zc)uMS9ir`ziuQQ8P%)HE?M1T_>{3_1ABD8IA4gF|ZZPh*8^u-na8hlXL4mh)7#4beA$?kVo!0F>2hP
ze~R3yI{|DQzX;Z2KW(k!Cn-=VwEDq6zjoBEum3>;q8BN+T#)U&E}19|D5{W0V)f{H
zeXbNuzj`r8W?Z`2wLD~4MO`QN1l!q$TQ7uFKb$0UZ
z9J`}aZhOmO($#BBZZ%AgYD^hP%WIp#Dd0Kg3T@X)(7k=`slDum(m88_hvuEA=B=Ta
zAc3y->|A(O_9FKfs4U+aW7(d!7L0=`ul~}uu6?lud*z6&*(V_62j4y$xBb=&3roXS
zRj(AhsOU&akBO>J0Jl*Y-Tb8!V6<|{cuA4kj_e6urXzOAqk(55iw`n(`tUdsUXYGi
z!7_D^Lr#Dw#b$;%50xB6+NWCdYrfh<3rmDGhuyh7V8s7!l-9y2a2?Y8AMoL
zvD2QdByDBAtw(_R8C`DXpyR^LJmmq&d2*|cq_Md^ux$M0@bQ;EjFuQeA-1t@8zP*s
z!@}Oh>b4(zb3NG&0?!Y^c(=M9z1sEZZtfqeIVMu(e)u|a>%FYLT)I4w*pMdHy>m0H
z^{>gB$GSm%8q<_2(GzS6Rz?ht`9AfpAD3GsY8$g)6>|h`GAVq&qsjKP;VQu^NW}{q
zrg*m4@y)`ykUN@$c^ov@FR&$
zdR{0)TQ@h?Qx0_`3JynlBhUmijJ_+ndZObbr)dqH{Lma%oKWaAX!2Q}a8Df@1l&m3
z%m_rC6?T?D&(qD#-Vl!RcGtCahJi#vKo9T)+`vD3fC(@J-~bBn2HeqE0r>8}xWU+I
zHdkCx$iE~awDop!ML8i)vjpjQr`(F#=9*`%A%)HYg9i-$t})qfHP&@UIk_RdK>7tV
zr=mLw`LhyWC2c)_MGPFgw0}huJ&}rkN06w$BU-kuUcV?h4k({r5oLs{(ys{Ej(=x;
z1?J-LS3{h&5@4WuMG=$+z1IvF*fBBLxp~{lyM0DSPcKzZEjFBi6
z76Vsw-~PI;xY{xOJG_CHE9w-l=jSSK@QWSa2M$BIc`DhUY|u406;jVZ&+DgFpkXvK
zct?v3Xu<8zviX-{jliw!e^;y_%=HYf=LwTHN9S;Qor8J0xtlt|!OjIW)CuYEv-yb8
z1Orf}D{d&18^YBM>F`$)!k-kh2*2Tpe&P+B92|cq5d0*7vi;&mj}_?3nG9ze+Thmx
z*#<=sBTssViV_8`R-48g5>@Phn>dGsLt7e??De-#XW@`#*b(3<}j<}}YAU>rb?
ztdoCxK^M^Ee@i;~zoDJB1v+c6ZUE#ohBk}*kHL^ZJ*O4nv`fMk@?}9v;7R
z5RCte4g*(y>H3)%2ESDKv|89+u1+wxmx-$udN4x%Q4ZEA4MdZHKb+Huy3%iD;W&7@
zdAt7uh3)3)ewP=dOE-1M?uV@kY6+!jW)K8x-6QL;yzq?mw3a{4-`W22D{%
zI52^?|JU`0dV9M5W3f4H{C{G!y&V3zAYt3MqKs@D{=r2IgS)yK!TnI`UTQ|#T0f^e
z+@I)wFylG8c?KxBIywAoDU!3wtNlcSHOH}o+uL}bPQiFSa8J~~VK@1S{wF(ut%IVQ
ztDEO{9_>eV<7xvApBz>{9_>eV<7xvApBz>{9_>eV<7xvApBz>{9_>eV<7xv
zApBz>{J%30p6$+E1oz(n(541%!J)U~NB{+J!`lt81vkE#K(m`82&2HC*D2%AzYDOl72GGr!m1SBLR`1l3+1O<6O4jwOmB+AB*2kFJ~GY2KO7tGV?)WXPw
z&Jnbpd81^QK}pZ5fN=kn?Z0iS-x#&E|7TVN0^I{nWMa7X>LrgktsxGNk1vU!1>DDbN&_n%*={7UkVdi)}v_B^@(
zcS%K0xD9AaGy?62KRfDgBlbVPbNMX+9JD>cWth<)zVHYL@CZs6{rvES3*CMEXRO+w
z9@v3K%Kwbn&Cbc*|36{X)|OO9dZBEPFu1ys3^P~@UMD9zNiktTTU!ZRF&Za#GSGqtsIgMoScY9UFmX5zy9w){M{
zVm1Oi0x)4Xj}2VNo<~GNNX$-5)J70y3p=ePnA@2Z#>VycT+ve5fjNo_!-OOxVB$Rd
zb|NA?!a|^Y;^H=N9x=GM2)}@ct*E`YATyI4Ow!)X6JZ1Di4(%c0nX>_4tHQ?`dge+
zFe9Y*|@S!K8vrggr*Zw-C
z{Wfv^WCv$MH27;8mi;+h{<;5Yfj=$qrv?7Bz@HZQ(*plLYJtCB*mBi2~r`Boq3%5)J=#fp4ulLuZGx`gzp!n3#SN{=+*d%-s__{Rq(m`GxGjS27U3
z4Z^OzD0eg-eUyd5)&&h?pwD4Zc!C0gFclhhID@%QdCp*YG;D`Jf~TG^&@#K*A?(ob
zYY@KciHb9+!F^rfC=`z#_;zjM
zX$QXhBHV3|{s3@RXLKrn?7uv-pQ6u#|B?6`-~R-n`}T~!sejsMkn
z@DLw()Das0H_r9}0My?B0IJcyajZGu=EZFQsO$c%KIhT;^4pua6CB2iZqQ%X|CZqw
z=YJ3URvs_9ykGA-OiE|xx|q;f4Fk_ftwp}CZ2y);{W4>zlrsm9NY$Qd$=bY
zd?RHt0ksS~8w++f(#{F}QpMzi{Ks3_Z#n!QCi^W1GVap#3*asA0q6k+fid7SFbgaL>%b0h0Q!5tfe=B+A=D5?
z2pfb8A_x(O$U>AMS`Y(>Im8;`06{{$AvYkmAkmOSNIK*Zq!>~KX@tChyo2;YMj+FW
zMaXx^J_Zzn5Q74P9)lf&4?`S70YekR2*VP?0mB0$0OK}BEXI9|#~5W8br>%&K41)D
ze8yPD*aqEk5J1mEFG6{s;!s7XF7ztY9_k4VhDJeCp^u>z&?aa*v>*Bz`VG2=iH%8)
z$%M&+DTS$qX^aWO^uP?pyoZ^NS%g`K`5Lnya~g9U^B9W=iw=tmOA<>R%M8l_%NHvg
zD;28%s}}1G)*#j_)($o{_IYd$Y%y##Y;$a9>_F^$*qPXs*w3+hv1hQiad2>`aky|~
zaCC8Oa8NkmI1g~jaN2PCaAt9S;1b|6;tJxb;9kW=;@-qf#Vx^Y#qGnL$34J1hsTB|
ziKmNahv$zMhnI)fgx8HXi+6xeiqC;BgKvcIj30)7AHM?s4gNU(CIJBfGl2wwK7kWK
zD8YS#Cj=b?(*%2jWQ3fAiiFn)y$NFp3kjbSju37V5fQNy$rD{ALJ`Fh6%)N8nk4!`
zOis*8tWIo4973EyTu0nTyh?&c!bYM%a-AfAB$cFwq?_d1IlOc1=M>M`oC`jeajx;)
z@VRYLa#8_OT~Y+;J<<}=cccqsIArW(%4BwAx5;wJUXjg^L&;gl70F@bx5)Fz-;mEz
zU{i2Vs8cvoL{pSgbWyBRl2Hm%no#;tW>B_Jem)O9&wgJ0yzBY6^VR2v&hKBKzo2jd
zej)Ng#f82LyHvDP@>FoDD5^@TL8^UfCTeAB7wQD+dg=)pOd3uaeHveyESfho-)Jdl
zrD$QaQMA>xqjVT_oOA|sfpocaAL+K~8R%8%-RU3DzoP%faGpV)!I>eMp_O5gk(^PM
z(TOpcv5j$wiIPcy$(89o(`%;ni*y&&E_z>lbg}E=0W$})G4oC4O6Ca`d=_yQdzNID
zmn`e7jI7$MH&{zqN7?Y$#MvC#(%9PBcG)@DP1z&Z>)97Ls5sO)0ys)J#xD_FlDp(_
z>G7q3%h;F2FS}gMyxhZy!70M&$eF>}&4s}w%H_nB$<@n^#Vx^&zLR4U1EV>xthJ?~uTf
zxFQiE@l0Y*QdANpSuMFH#Ute+RU)+@%^?k!&Xb;zVV1Fxc_i~$mPyuHHb?fe+(kJX
zxyN!}bj>eXoLZh*P1+dR
z8rn(P<2r0QNS%6JKv!KiNq0hzL(fC6Sszb8ZlMT*7jHIZxK
z*M=-PEd4CsU8lM3dcDPp#LC91#v04o)Vjp_&_>thvCX!vy6r>Tb(kV74Yq72Z=W%59Aq4l92Onr98(>?IVn1&J8d|tIcGcXy6CzTx}3P0x>h1^5!Q%C
zBpK2L`Pz-a&CjjZoy$Gk{j-OpM~cU~r>19t7sSibs{us;K1_Y|zT|z!d)i0VC&TB5
zuZeGsAE_VG@1sAbf299>fJ#7qAZ8#e@a2t*H^OdA2Pp(S3WfyR2EPnp3Ar6I8>$*w
z6owz>64rT>|7PONty`wInr_qI4!u2dNA*r=IB~dV_;7?&MD|_GyH0nzB84I!L>@=k
zMZJ&ak4}v~ya&7YK1Lwse#}X%eQZ~pXk1o2c04kEC_yfvD3LTVAaN#1JE<<2DLE>6
zE5$11U8-KB{}n{x~%kJJ%<7F3%*dJzqS(xPYc0y5Oh~S@^lgpy+k6SaER)T}fOi
zMyYq{V%fE_o^qw~h63H@|@?GP5@%Qx~L_gGh6!}=&DbiWnCE8Wj
zE!N%8Bhk~;E8W}LC)f9)U#b7?fcn6PL7l*M>!`FsCf3o|uFycD0G3qmVFcvzF
zH6Ar_ZX$J(Zu0Te<*CZgqMuu)m8L&_G5j(%1Djd?>h<+-_VygnT^=9Fg@Yc(1z3s^z#LmHP
z)DP+(MSJ3V?fa(t^9R0%IEVL-E*~`=YaWlEAixh&{`Mdx4?YW=d5}8u&-5RK7=K^T
zU)OIb(f*P!ei8mt-~{bK3ZjJ}28Dnwm;Ux3r3!kG0v~GuYz)u~(yt2#7aI!`4~h?Z
z(gHn50oYKm{9iE*b|@nMXw0Qw4vzDjl{=FMqbJ)Vydu9#wMmT
z)i3+Le7C!WO1cftt$Ecyb6MPe)0ldbP3WKh%
zs9;JPkE_{5sEtIG?KtqgZY8Op(DE9?y-mb!-#Ha{^D<3x-cz*mtCTbESC>>x?ZtmN
z!1~+!m71BO-`)E~4IQ5ren_aBJNZXGC~kZ=vbe`7sd3dgAS%72>HX-^{y&{m4fMMk
z8W&t?P_?wk=PaRcE-iAPu@5BcNbxz>k
zzRzzUykU;zRj!NA_~9{q-;jB0=EXQ;yyrQO-q3=d*Xk`&>fSFe5IkR66ba{JR;E{a
zd1*+MyGlhmLd)Ya{^LVHCaUW(g$rvamM)q6mtcp;y)C~-ERW-fWyB9p0NHd;YMQ3o
zK_azT6@De@Gsn97f&SD38;imlZ(Hb^o)MjnzsGphq
z%KRvt#JJutKi8RGRtdETH61kkVaj1lspa}ScTg+m))sUZt8%60qG2gpKoDYZSRN2x
z5|wRsS4_C(URIh?lIir!(?la7HGWY=Q0R_Q<9?RR$cVYfzyNAoph`
z-06apTSBay6)#vCFSNufbA-!Rrb=$@Nj{k2GBm$lFtbZmVXXjN47!0Kv!_|Sf~@6y
zxu8_K7khu9+8kGK;3jv9hoV6gpRvqGq(-$^#cRQXfcb46j=^^IqgK_N*+YHS3!3t<
zKD9l=2vf_$%2qjes}ZvERrSW8#Zu0fDQewY83>*7RK%OaVq*UFqiwhdH)?=t!dR%Q
zb0(af=7;ERxRqapfAE!P=Ld+HG_PjD^DLI!xlh%;Vmuex0kG7uZyU5=5q;G&)>v{j
z?SX8{Ey-L*ZY&UGY-HH&gzLH^@zyi%3@3A0)U7|Do8-HkN!x}rer2p2|Iv^;C3(B1
zozsb*XWH>Af-`8kqW9yC!7jS?8iEDd1=b9ud}s-`t}*I51%tQDAV%Tiv9wtEUE=Kk
zSP!xI(w%@?Pn+sz->$6%O@CJmG2NPENU~d_uOFsf$*nK!FzKA24G*uYaha>88kM*h
zo^5X!smWI%E8f{$D>vF4c;}`2+NFD+hF+?ROcpds|B-m}
zioivRo~rMQwB{0y>}|$s=8B7l$}T^O*9VOHBd6myjWbvpFD*Hk*NCKiS76-|GAj3W
z-P#Uu5sp{q<})&Y=}Nt|gg%x{rAelZ^Y^B;_&|Z6QxUeN;sLmdFd+D9McCoDqwbMO
z(vQjS6ji!mx{wzM>tV#J7LL4ZEM$26uvMeedGxhaWsLJYr`$3}y=tm+P(W*y3I_j$
z{tspDNa+cdz01{&xMtD(lwQf+$B8TwrqDy>_BM4liVp?w0lE7JBx?3%_LhRLsX_#H
z7_t}YSC<4iMX%d4rZ_FJIOy9vvSe?H4$*~gB1CO8F|C6~k5Mv0M0cK5=F{c+I~*A=
z4qtBeT7jfT6*zu%WV;h{t=hOQ66V;I@}1jxq0$?vW=%3P>Vjycw?VSn>pkB|d`1*J
z$|$fHo7Fr!kT~@w-O|gDf`V$hLRVhB!*0>eF|V@XqD~@Bi4QAud-k}see@ZexKIW{
zEt_r{Yy4a`NL>QI&e*QQWa-QDuGgpN6F`BZ?v@%JPK3r)DSKr*sA=JcV*a^OGGpWN
zaz=|2Al1lXNgr{I!BSCls%Nw!K=Fcr3_c^>x`vR&_EyTg|u>?F4el~y#T^2
zsH^pXV0D&$!;bxc*6rn_&S`#3rQC}%;hYad?!Hoi-k(Zo)C{m33u>9-pP*tnyU6@Tr_&hfPXo~MDYP}-DA)nDP|>c!4E
z0Zw02Y!sx)6lNn{FSB|od>wk2P(*ORs9isjs}xxxN|?tlAj7g(+7^kwnQtaz&
z7vnf1SCc2UL6;ste5Gk|QLHq3;|@I0M=~%A(;?KAD$uwmC+6l0|
zIn`8-Q+WNDBN6nLaL4!98*~q5C38@z7vSy4_~CupY>RB)9&|Jln)m|Ik}>2qOfiwx
zR+DTbXn!Youkzy;pSLf^#%{KXRpb_S>dy#Lj?e^LCR5Z^VomD9c^0tyWhTJ}X;?eA
z-ITSn(3QHb%z_D_v|MF4hic}ch!wMTycQZTU~{PcjE?lm>-FM8Ic5Me?!IggMc3{g
z<;YQjm0@kQOj^_Cm<3UKhY^k2%md07cAFRuH?QTh;gAT55b4Czv
z_hp#d_EAR;7KI+L2P^FfK<(An+q;k?J4fA
zyRBf)*rlb`s1|Oc()H}VB+KU9Gc5Qj|6Yy$m0V5f<-N}E&Yd=6)YJ!}Y^&7nl|!BJ
z*IR2IcC#f}H-;uBo>t0SZ-2LXIew}9`FvG%x1vJ4tv+iW#mDzroS$aC1urskZJJ63
z!kV%%zJHnBCBT#$c}J>Oum8p>Ty31YPf5`DV<yd%Px
zb0kN+Aa@fQm$3NY9FHB9Y|wSzfZ1lbxvAH4%i1rLvnMR;H+-U5(iit1vcXIp1dU41
zUs_#Bl6+O7-Kmf;RwV*IccrFW3Hqj}S>=<>`-APu+Tb~a^h+_S>8~pXS{KUsIjbJ=
zT4&`QCn?L2e!ys=uhj!y7;;^cM?Dg1AI}}=OFqCAJ`Qr}YSg;LUKL+CeP_+kfLj8S
zpBKNu!xp!JW&fbtOK(69^va>PSbJ&1FZyBJr;z6^Up-|f8`*W4X*%O8Y67kfdQC09
zH~}Pn?B*uu_gC$-rhax0$WUNMwia+Y2P|z~OjG19&U^_)8Y^Yh+w80E#I!MtG&ICc
zilr)!X`BG1hb=r~b<3GAS7|ljvg}Rd8a+269l2c@-=iwXS_b;)OYG6$N4e0GpC5wxKbm!pgGV*}DhqZYX$ALX0f4|*-H
zmY}i8{)l=2uvXYHY@SktGv1OZ6;GPZ1&9O{HYqk4V2>QQ5ElZUzCG?o#X^xfO}Roj
z)>oUUz6purBG)Bwpz@HSO2ejh%ql#r?+Yw>
zO;h`xGcJBBE}v0%Ja=rD6=U%Ii&+Vra_E!Uo)tGiwLw(hUWyNX^4~+8?M&W*w
zyS(?xjH<`Ux2+0mq#PfcP#PNcS`H3=xCnV+TzQVGhq2}$iLJ(yye?3{^vV-{;>V`n
zHSomD9@O#^@&-R1-mxBYh|$HvlObn-iN3h=F)Ea9o&J&(%iMWIpD$L7k)FvOm|+i9
za-Ln{#u*1{q|1N-P1*xPc=ZParwb-|mJ9{**&rgwiA$MTFiazsVhcO_^Fo+|mp^w5
z-1~-iZFuo)LPTnbkKIjOeIo{K0=72x9meGY1`8-v41L_~AerD0-bX|qx!*c{j?o?+
z{?bYDHS8&tybFCdo_>3wFr&vX
zfINS>(QE?oZB!{zKIBeAX|PJlp6TO?>r?ZynJ0kD+@)MWnX*R{a#IOCkt|!QSLEqL
zu)Z&7tU7WEq%>b(i|H8Fj2xGuiLIeG-A$?=SJ1UIct=3Z3G0!V@`aVoRk23-+m$n-rlWGk3@&DCan0(=HnrzHgFJ5J`H
ztBtojh9)H6YIfM_^>?eyCl%nD)_4Le&$oGBCDCa))MYyXr0~}cm$Q#s19z|IY%NzM
zz9Ylgz+VkntO!{MnVWATR~Srjer{McFd`k6?A&3pc$q`aSN~1V=CRkl)dXwBLyw}x
z0~u_aBA-RK4~!c@Hq=`2*dsK{lzk!Z=f7TK{IPhX+Wc@UQzu^jv$Ev!k1Wk&AIhn{
zVY#ClyQ?hA-QtH1JJn&fD>=>OYn4-^wRo^=slX?+>TG?_k{C#DsoS$UZ=vHrShZv^(|
zgtZC3u*Kn%onlP1R4t7}weu2JT?$ZH0}OI_oD4JS{6qwBd`t`4x|(
zX9F2B%s4!OUv$-wUXsnneQ>7laiqojYAzR^w*_J>o1JSbQU=K~Ji5_(?-pm+v|h5M
z0Ah4a(fKEU^k&Ddl52lqzF|QQ>h?$5tB)C*@7AaC8S)%Q$vtiBiF3Jl|8n0riSmWi
z0;LV3UE(A*PQrjI%bp>cB!h0-E8VqB`F=Bxzq9qqb52b!ZX#TdW}BC)V#3hfC{trwT3uYTngcBt$68e+V0p)axl?c
zC+7v*m71-4YY4T#|Ewhyi7`|gB$caaY#x_ubWiOzr`4v-TK4tbwV4P0HJ-+`v4}eH
zA$~gFuyb!n;_U~V=C5s2E;-T9QvwfzZb9>`?DX9%yIX5AqMsPbSws}PvuA&9SK}Ya
zam!CRszg0+d=Rok`CTO8!?7*3{C-5$=Rob+@sUx_x#9DD8_@@MjXLv%7^)PggjXnj
zd}eO;!tGTWdV7ft#WSM$uRdKch!*OPHY3~qy&O9K=+{i$3fNAN~dlk^&1jS
zoIY7q@4j%qaf1btZ0yz!0F_1_v_ei)%lJ;;dAcP-_4l}gLqj5ES6%Y@3-mbdw!J2n
zG*X%?Na)wCkRpgBirCS}?yla!kWj$Ec|_>yP;Xc0xy5K-)pci9p(rC!t`PJlYAuuf
zY5Z0`ZG=3}Cc^!?5hX|7kyw0f9G33P$h{`{q6G<;FXuV^ZuK|6wlx0ssI4TLakqVx
zEr>NL9few7)_V<1<`!@HL!o6}^e%%Efms!0lI+G6fy$jzLaz+fOLQeJL)
z1zvVj?M0>1SW9Dl!=vjWi}jJunhHYg^I_%+RoqX~+8DmQTe)ya;n|2e^=?Mw
zON&y~FY+3c{$!uSO=4K@rI?>@vXGX?(Ijn5eoJ8caf`$ukNtAl*nNS}4&&AP-^n`<71`oDq9RM+<|U6D
z0u`kCQ}k$eO2-IddVQ==GTj!XZSF_}ojT=EL@Z{iF4;x=3QCyvMTn7i*HhDCNmk#n
z=OuMfpZez%I#^aP8SCTn?U_R{%9Fu=$qT&(#g#Z25?a6NjtOd(4??3zg
zLhlAe<2?oqs*)nOyj^SwruU`yB+o2%yT^jo0-NgQ7)+X7c$VI#o!`ZsWi?N%#eXGi
ztww<(kqb-mwHjtz?r6-*_dOuWb_q}cE<+C0$MXz
zqDz){D7R4=?Hp;b#)V_|A9`a^#3iIQ<~TzMBIRA6oQUfSp4o!mS;t5DWV54wr%y7Hw@jStBZu%}tSo!w}xK#K9x3
zPdXkALzC;>n8o4wLfWh%BEs9+!Xg9rzJBac+ISMk5y^7jE&q
z(6Fc|{m?gRGLyzjLxvOqQ2kk*yOo_mF~o27NLyX3%U%7+#&<>^ENxG_w(lDkUMsXLq?5bz!Q7>4Z^oW!upc+
zWUL0YMB`=D>P#5d+%F~~3@$}>m8CKP$uKcA~Nc%3qy{i0jtzr=DQ{g)3vijYCCbdipa=$?xXK
zzm^mhUF_wyc%?w!f#;5s6t{g8;j8Ym!4Mre3(vn4h0V1zf0(H*UF!6aQIBoR6#+}G
zEBET?j=yXvKypz}YGWtsjzGdhVqZ|EP9RdBtI^*!Z%k-_nj28{DScNy0zQ)EhIKzF
z>_=R_oXSN|DEz|dd12+tEGsvI?loSw^j_E1-J@#2EV1fSP11sTqDRsWq29x+JF8EU
zYKxfO8M(%c)K5EqVz}8@vLhnk0l_kR!!42gfFgn^o^J)~s}x<|+u`PG`wV;on
zg{ricyHX>go#(qdMODOJl_H8DheI>Ql7ze1bKi~{lS{8gb+*JOvfKGz2Hhggr0Wf1
zrEmm%O8k0+S6>ro*=C(-bg5Bsvu9?{Nd|LQ$9jH@!;1@%bm1lFAkB%}8Mfd
zc~+Ln`F2On;y}bjMiL{T+m1iD(=bLRDHh&z(
zdW>E!u4S2^{lHpaksMR$Myq;m+hcpDj&|X*-|(#yprnO-%C+CJUCQQB<-9KEK8?o$
zTjk56Fh8WeN__4Cd+|FwaObgzKy0hNrl{gxS>9~iAu6OMtVeL!<$NS_?57tLTfBbw
zH$qwW4f9q_u?%&Uc}!Ac#jMWR%I3e>79!@>Wtb>2dKIor@hcr*JZ%
zaoLo0*xcOPVu&}2e_jf;B^e<7A=}OGNh}GRGfJ^hp;LXd;5_1X{&2)N(>KjCX~ns)
zdxfwO>+2iklok=Bz&C<-vCgyL&d8WzU6yfB*zTL4TQ_b!;2x@)D7@vt2)P*7cr8FS
zJ#;e16mwh3lk3$gBlF~e!?O;P8OP*F#ISI2y+vGqDs;|9@Q#lTjpfr_&Mh*#4Rbo)
zD>rmZQi?q(K2m-;(tm$1#QAZe1y*t1L(kY}q%W#4Au;6>wJXnjeG((;kvJb2MQnbU
z`QJJwev~=vIKCtEe#T*l+~JenLG~(X3H;B6DdokD
z$9Ei(CS|JzbS-i3IvF3}=n9KBJ?wiUINYPEPJZ<gO!f=a%s3rY3Nr)FeFy?}lEcS(w1u
z;}GGSagRm7?ZgO4dM3Y;x;ZD+v*eNKmlT!>tUTo2s?GM-v##8DJD`kzzxGI@BX@vr
zON?P{YATpZ$V5k}0kKdb5aSVE<3|1?`=gF(&WIB4MQ
z_%;1@UGBx>+b*Qbgu7Pk8Ml+xL#jzwL(03`_)`3~3nk&(e1A;rcSbfk|xn;9INuprav$ei{5-*eR5#5F$^ks~$z_HFvF&EN%x(Gcg
zcR6mxIe|gx8$2Ivj+Nbr?&yy+az^dnh&|5FdvB9iV)kU)TR2Hq#)LOjEdGNwmgkI-
zBdeNrnCy4xBvHl8*ioAQt+d>p9&mGkiJHf&>By4uQrYI0ScT+}$m>yGw9y>;;0m1*dTd?$&5G65I*yWcdE7
z`H!Zi=JYv!YTtXWb*+0{3W`#sN%>cz=IM20(l0E7o=j`)e50PrUrW~?c|o$sZnKBr
zNy2D$;~VTE;zXd42&tkKunoXwoDX=h4=RIj**IuYlhJV=CyK@^c|Ug>@-!luyS!=C
z<%lZ7Qm2&hlQOD%PHNvCs}TF@TlcnK-ss7GhO0y7srSrbQ9_Jt&Aw%J4YfI3!X5ex
z50o!B4Nw1Fmk(qA&^MfpW+D^)L{zKZ=uL!)!weY9;&w4ZcwXO#eR5npU@CW0xGr;F
z&C)R}Bo61t_{5t~vc9P-OM%jfYWhs|Pq=ub?tA3`7G9`^Xe)-pFP>Wh6=DqD;>CVHHzX<4z#
z@s-GjVre7m15k@pMl0qbYh_ymoy;RV>swW-9C~~-@>@&Ab>83lyJM(TNRz)rjeUv~
z!DaPIT$cJXnIgO?c}PvxQMDTW;`8|*!25Ox#>8e3NL|u7{hid;GLqhHPG$un+Wm|3
z!N!w!*sRz;ye#E
zJ2aC{H%2fZFU}YW;qkS@XdLQ(B5dkdNP40CcanMJn*i=P`|sg8aw7h>V7>sNlYQ5Y4c5NDw+I~M?$^?
zgLyH@5YVm0*rfZy+hz1dr3acUF~gz3tTDpNuH?sUS9@<&K28`^%RWxtF|P}n{gJuu
zz`0hJM&DYBMEx=^Q?EekrHVaj^aLqhUG!#q#{Pv#6@Z&
z3iz{c6t#d^YLjaY;)`G-w*h7`Qq_Y8=kg{R(z7&M#fm~%ukQpDLh!$2N{|EIZM3BJ
zUQJ8iatbzroLe}!?7+I|{D=l$E5WjxTw7@elhc}l?)UIds805RGB9&`#v$n<_EuhG
zH;gFi>cnvxZfuU^qa(x+s+!;RR6Bm};O}`ZXj^kH#dSgn%;Q`N?qffos{dMgx@32<
zF|}-jA;lYTf#FjFAIO3lWufW4e6NP=lg$E%Uv|=?TTZUUb^A&!PO_=wn2f|{V&B_8O;^>iG$ZY+&*I#wRIN`o>R+C|`M4JzcK5CO*)a$S
z@d()N;lP#Uxyh8=zJ&YGbjVOiXmewWN1;4_{`5bW8z%wJ#XjA#wzv;y{J6s>m^DxQ
zGGlMXFIVCxt_IjIUD675t~x#us!=NS)91%OE3nuz#wx~!Y;|tP(R(r{0%;Lfvk##j
zL2U}maj&!@;(zHVj2%u}Y~^ZxZDaP&97X>FtQ)B0)hEie#d@cI+X|5t*0fM-Ykm$X;1k4oa4_^d`l_xH6OZ#k03aNnsXZvrLuCQFBFcRI8eC?x0Rm
z#gyjVSEI2Md8NLaMIOh4QspohJ+u^4QO@iBm-)IQ&tAKQj#m~i*QA*;pV%@s{1HGK
z+D^1>+Pk^2tfpJ5X0wUDrOTu;%y=YmrQ+IrX~7uuT`jFSVO*#t{AqI2i9?#mktMG`
z)4xf8)jnK_oG-cWvaeRbb*~|5XSV`Al>RF`mwv;;yu5p!0tuYM@Ul7F3rxhca1`DW
z(tuEFCp>%iIdCADS2$WL2M<--4F5J)#{20`{tuvNXvhj7A^Pt;l#gd-tVbV@Ao{&Y
zfQ6l^lX@Z%6PB`P%r&!A+Yl>>Onih?JQJR&8h5m*YfUM`hXN+btSm{(dde3uNZpm>
z9M?IRAcR~}J4!g!M5Z?RNGxHG#Jw)DS$CW90a_-ns-upo$B`sPxf$n9;(2ndao<&+
zGBk(gVZp(mG8lNICY4V(JiR+3kyRAKKb9iZg}?yib(@#xPfAwLs2DN%q-4Yu%9`kI)U34GxIjjHH9%Qlk>>*~V%
zWO4JaVB5U`;}ujssVxW3lOW7(;jGle>4NhHh%~k>+*}WrCCqbv>+gkS
z_PE711eu1LRtn>RLH!HlO5>$MT|F+%Yv%IV+FXQ|
zB6z$-I1=~zVLrYdk)GTlG@
zf7kwV`44(lt}&@^jS*<
zJ*JcMDQIQbaF8f@Aux3HzkdKp0Q}AN(_haF4fTcNay3vn<5!4$8UBUzfuP2uH%$bJ
zX#RS2wq7(}Izq{$j-?kAR-G#(&ZF-e6JdPAQZ21~|87y_Bw(=#NO9wHeHU3_?tVp8
zG_$09Z?njQs*ZC*Q|nZQvT@qA>`cbhd*rf*{wnjU>#6eQJn(qUZ=?Or=*_=b>Uyg6
z_&BVz
z7h%SK5E(p5{827>o`#%RN$|oFo4=I0V5YXv!qL7zY5cYIuHn&Ht6*2*7-Cg5P^$XsPtihNh#8-Pz|LO)RqBp2w}*+h?^L
zVWLYR>ed#+Ko0CJkqjN`vUIhQ>Xtd8HK+G0WqBW5lO!r!C}xJ65{
zBq@>H9+RQViEogN@HLnpI+x=pOO=Goj8>+=ni!Lyj?aF8yCQ=q_77mI?=lVXNFNoV
z{hNlJriZYkR**z^h5&r0vy5{=_lOgSl6h=jyj_Z6ApM;)LxCJVWW_6N`(0;y;1q5o
z!<+1t6he$4Xep#|WYJTm^7*c#3P#pGv*DOgr?-N04JwvRA@wV^M9FopmGZ)*yx#>-
zs4M-Fc?j~ye+ZH3b{1HospHI{UHI?B@!>draQV8K(EDh=XrvSWhR+^oM{9>8&rq8D
zPIC|`;a73FmeyV5`pZ+#>91`w9x{k`tml97z|ZJT(g0*kNwsF`w1|8=B1@zXSYl*S
zaQLW4oBpH|rAQ%yuxJ$pOvS&|`DmyoD`@N=Ah}H_kLoFt@1Q>h5i@BJ8QQHL9Ur{LswviPR7bfR6^
z-I*pTZfKu;isV8S2(<~!FsoplAp)|Y3WvISW4@Dp(0=aH$ha(9Ch2kaPlM?)n2e~}
zH;rg2@FM#+n%zP>MpK!UQkt-27iPpSJ5QnnF_v0+5vhc4I{TX($kz>4rI=ZI*raeV
z1PkH0SUFnG5G}vT+$J=ai)OMGn_4L
zTbiZ6inI<68#h^Ap4{T9B@%c5o0@v8FF%%7@1DtpoYCDXXD)%wcbH%TAL@W|5VU(&
z2pNQ0bu39aswi9o8?|Vh-UeUogQBe~d&(=0aC4V0{eBEX7AtAKo^19pe(0ZVyVxTc
zWaazB0LG6TobyFIpZfCF1Bt_0VF0E0)iUx5KaC3e=d#D7dxXPf-uU$VV<>p#S?1M+EHySt
z_$GD`^-8L94NfS17fM-25=ZO`qMS3%h)?4wAQ>q2E<>zhyQ&tsJ
z^6#dEd@r#C6MdUq!Qs@XHD@hbe$uIIl@IQNiiC_BZYB;dtS7&<3J4BF
ztb?nNkNCp3%Q3%wX@hKEiYy^LwOU#{xc}@2Y9j;})GGVDyP82UdrvPIq~;BzICipj
z_&w|_N+?9($bZJOIdF$CCjt5guz$k_it=USyMzs0EY!p(@k)nqNpi9s}d4#lQm7+0+-CQ-am|Ozn9X~SqVpyWR0bIt$NeH^|
zw@7>_v@~o4hr=6TPnJycKdN*g2CuWx+T+P_;iXYa&s*0*Qpe9s)*^#xic$Ih0ScAi2nSgsAsS
zO)Jip-le~mN$V$*+%`4$RsQw$A=$}!)&Cssa9{PCSMq?R9-atzex)3dYey`R%(I@J
zSW;O&g=?*l=x`&IB{3Sc`5$KLq(`D)+Cl$8zfZGuP9!-K(vlG?uzsxkZhDlSJ~bH+
z#&01B;LaKra|i)JK_H`$=qvTDXCmip^f{wZhrRSwA#8zYa=W7?(Nw)e__nrUDcP_>
zHBP}u0<~i&CYJ@07@8=eP!Ul$6yuszO7&TE`iy&rp)JYiB;|}<%)DX!bV9KbgDwHc
z0c_b!;Y<&&a${aSmL!JG`r0U{e$qh%xe{tDacxSl|4tO`cJDiAc94rKot(>RU#YOM
zRSwNp)s~NqmCNI@(=^6U(hTS>zBvR_1(lQUVy$zh4;iB%`=~QjAVtm`ieoIz6?9M4
za;Y^C(fx-^5$@cRO}_mcsZG^o+}KgHm2h)>2045=?70#!%YOO?XujK!aKDvcXlZ%9
z=~ofS6!_fi>TFWSt<#zC)iy@%?}|Z=f|qmxCnMueF@YYg%b>PwUf!$ETzbn69FRG9
zf4eb~kAtN%>fB0MG}QFbYKJKjQd}1qFw_HrGL!f^xfuO=zaYds;JPNFLrBW_7J9Y0W&5qD_*j`W;muJJ7f*f_o{_h7fT(HzIDGxe7zD#eT=f-dUiT6tJLsQH;njk(kS^%7?_J;dyn@zf>)=K
zL!tRz5G&pe7kEuA1^J%dIjc7KZnlywNnPecJ~(Z=dBKboS&`d7@!@MiBv|a0$mYMV
z6-03hTLVX!IMbA2w;y~{<`!vP$eLVg(qmHNH6&GPlL)kB)c4CdenQC$<~&}=XNo2r
z5f$775QzjShN;TH=DLeFX;XEo`!?n`r0GLh4c=R|5dxEOUZ5l{sb2P0xW$^@dokMh
zhopmV^X{K%d0t6^5!mYo@(FCYal~qRGEN_~1lHiI_nn~`=-ag}0Tny^T3hUSAK$hi
z=|>F*6cMB`eQG}Vdh)1ye2MQJrHi2|O3V0*n5TT?t=CVXxQGtMxEv~m<<*c}(m`^R^)F2xsjq}fQnHlDU@%8WaQSO$_P4KG@CI@
zi%0sC2BvoKD(wz)7|QCX6|1Ndh99$^X!qWIy^U?9;xCN`i;B$gI{yRs&=n*?#yk^T
zSDns2_cyjB*m==K9)CgGV1=UR7FPj7Exa4Z_~%aJ4rC5W;hpZ>v79=nId+r4xx7FFQe`yWK8-J)d*@
z-{R;0-GQojlT@!RgP_>TZ~uLB;LBp7@xS?nu`=ZJnsM#+riMNO2N2`Qgd=T`%4?R)
z{JH?q2MwQ_S*ZwVG_mshwu`;2>5
z#egM^(xtnJ%tZ1o|C)^GD80q|n29R$CXYZcE}9l>FX)m|5dzut)1jtir;=P1vPqn{
zj$`guwXZc)ymPC-zn&=gRdNq`!ufmmr`Sb^V|CfHOa%o)2d=C#CqvMeYRic8xC6`k
zdl!VSE*Ez_3ZXnQbH9F3mm!5J3XwXo2qI{Kiip9V03T?A3hUo(Qk37$m=VWcxEB?zF%xS7hNF#d=e6*RK0^J>m#}
za2%6!7rreVCm*Bj|8^VovxEOoh3AQa#nI1fKh5N8HpT29$X&~{pS^FY;2uehBg)e@C9a{9izGYVTxH?{`-sLrC28{Fxj){GDov*4F64
zmPHOPf$Pvh>Lt;Sg3NSQ8AKG%DgCvVp{v;7X*47*4Ht{IXG^b36}
zz;;T($)O_4hCAp!VSG;HV%3x
zO}cBX^npVij189L>G@7X1$be4s|rnGDLOn<@d4)MZ$$T}$`h@tZ*!S|$p0Wfmj7
zNCZqS4~?b=j1VkMM-J;zFa^?0R!DLf;;0!&c;9e%b?tU3V5Q|{3q)g#`-zk9YkSHU
z;!d&m%DcVlCB)zYb8e&rQdv5_Lz%U?{ko@oOP(PC+GT^^+eM`Xqw_LY>RYD6s>5^_
zgkO9JiYnOi)Ho6SBA%bR7s%2kGFl)FNJ*b4!|p3>iXRj6#4EBi=N7Lt8RXOf&WM-C
z2G~!_H$ti~*tqqA42>|q?>@XkPrTuv3PzFua@A?0vJvl$NZSEt$;TGgHRQ^4NBjBo
z3{O61H=N_v*_FhJIkRi#0`Npd|CA$p+-M=0mr?i3DY&)aD44%UBqnV#9M1?g5-HYB
z-#p@&8-DR`Z7lmR$r5o}UhjZWZqr&rHqmgcGRw
zde?$3Q-8~3ED^7u?}Q@;quvK~`N_X8>C6(}yms)zhsC!vT$}d47=KMs83ej=X%YjO
zs}V5lm8mxV3^x*y=}HW%O3b*fGnge8wiV&wWT@KKRcTA9^S4(wH89rjZRv`A{w^i5
zqIz?CtzF7cC@w(ia!K~3V@2z1YEP3=9{2Y{-IYj&g1hW2Bw|18;o0r}t=9C^e}`>p
zmL`--aT9tYYz>nb*a^3!q!@nOUUfIEF!a7Q=dxFmEvEh9KB+`Zgptx~XZ%;Dxj}WY
z3s>JRLaq4^v@+~S3nC)_4-nZ>v?(M1m86xO=x~&Z8^8K*B&tY3>MuddPdw#}#m)z01?fKKrV>VVywF&kP%-keZ|>>JQ85Wk9y;ti`zxP0c%Q1RJ;L#LvhtGXB0nZ)
zId9JiG)Ri#@Q`6rFhaWN0&YK{v}ZVJI&{9G*50UlObb^M-LA2~RS`=0z_CUQBsmdSreo-^bE4iAduJok`%A-4f!)
z5utf*m!?fPq9ES5XyaB3UTCGTKQH%U(3+rrB6X&6rBq0R_Eky%;f|rxqA~56|%5l4+
z__(XK*{Or$9jB~*Qwicgnwhkb9K)ZvSow|`BYdrs{$Qv$!UJ*M?t+DqvPAJGT6oL2RxX3RnUBRxl;p3yoKuBzK#H0&
zo;CZ7y*~3CMp}6x7-VJn4-lM2Z7^+vDWPzp^LStP=!dU1!4Ng{NBkcEZxd5H5)|u%
zL$$^-*&#cve6qo8Z4(K+7(~U6d~H8A+FGmY{ErM0Rb`=KQdkaWGdVs!LvJP%ma^0`
zzh4{;G9_Dl$}n*TZ^)rv;oipx&lOXw7?mVwuXGJ`{Fp=;wLa=3_!XD~dtn@_7O_#C
z6Y($ISTPG@W4#~Y;wMWXuk)s8+j(~Q*>y;F
zuCk`@F;~!oC=)1)0KJKF?y3{8^xYQ6`cqO^{dfzU>}wU9N;M7&NTo@sCb>$J5eGZ3
zvQDRhJrz$&g1~>iQV6IqcCPucQP;BMR|%6ka*gwBE2$q-!tI$r^Z*Cp3^6;P&*2?;0SY>o#$VRNUhfVOx#PoO475YUEppo=oC;H2GsAMV9dH__HQt!yZ04b
z?WxITNEw7V-eLVHF>WStjsT9DAW-NMUwqRKCprgQf9LU>ayShsf|J;>%Bz1;nZ(z#
zC@C+fDDZd>#3W?R3|_#W<&R}!Jnkd!^V0v(;urVi0VlRfNJFVST9?^9DkhEj;QyG(
za~eADx!XZ*x$5MvPXZQiKkzn08{4tU1QA3Kaaz>Nzc;9DzT=JW9{4MfYc5HnhS%vzNpd0G=s6^P%NYj$9^6Y0
zBNOcDMY_RK1?t%P_#=L5#xpD-^m<2s^T|a?`)?8aZ{7RJmc@qyx@4JnF;NSu_JeQU
zVXgDT$H$8(LJuo#*&fUJi?=*;ytBuyyAH`s-o#Tn`s4!@%v6j_Qe+U*~Eo!=tV#%m4DP4!~zTGXg>nFpf}
zG0VoVX+LXn{+R^IP=-9CBv@_+uBPT4;pXqO-SWx=8UR{hu68Reoinf{zoEWLSu&mWebD4gh;mMuKeq;_T9`()MQDko-+>n<
zbdL%xdvRC{XpI7Yk|AZLHHH>z6zKURvia8!`24)K^YFk=2aC*W9UE%)Q-sI66FlqE
ziP1F?f5&GD7>|pN;1$3K0jm8pRR2J*nq^8O^}%VpS#az~xLvd6`c`1)I96EmOIE2gL`jUbp?){*#S~ZbOzOC~CCLqPs?R;Y3CwwQ1n5bLkMi-rZ-~SVR|7{Hl&{lE2hqo+;nUPv3!FrV1k=
ztBuW1icGHq;XNJLDBXEGhZz9b@SxadEU{PYjU+>D|vUFt1niiYC5OYpr>F@8%f@{
zpeff~*~ofIRk4E>e*QX~cX-;Tb!IL$&#Z~^16Y4`@cp%a6v>@*&9kbE(~(3ITG95gytJ`Y4q-L_4+-Hja5F^j#-t;A
zQ}MIqbpp=r{(#(T6P$$8-Lm3#-|`yqyxNL{d!DEzzl2E>a>#3>Rpg@ahf^0sL|K$H
zeQR~n5cPTXlY`N<(WU3U-^wDAIZ~x9Zlapihnz4!_Mtp6AE~6{KvfPC5
z?uhE#{DIA7>T(=SfTKEfT(B&9I@-@=ybr<3^=Gj2o+kZ-eTah={M<1+e)JtXhy1%w
z+{F&e<@Li~%6^{|7Gr4&Q3T$t{vzznDC!BJ3^A5V0*E+C-YQ_bIY5`pf?`KyxI&Do
zoGfjQtT`G+X4YASv0E7Ze|TWMMAf3HDBc
zlDi*@!<0XGCTtSQ*5XP${2i|GZAy&v7CN8pkpI});H{Sl^U?&hGTol96pU}1xzb6U?GBJe9Yl9Z^lSgB58nj-t*oWy>Qm3gD4RcVaD8u|3brNo=T?8e1KpljI5
zz~S;UT`)D&K7z4GU487h#@vfhYS~ZdsmpaoYhLcF7Tvn%?pH#9p;mxuQtbeB9DkU2
zpIxtqqhZ2gz%5g>lpy^|21V3uVnZ6xXPXQ)Z@j;~LPmN-Qk9H@uv8PByw^FgfbB*5^jabL2rurbEk47kKZvwd8uN$SaD)!Y`g^LO3QG(?bsc;`6uAmyVqm1k?4lu?d%KDDYg;!oY>)}q))XKAz4!L6Uh^`bJ#uIa-%@P~LNxnH&
zeG5l)LD#6egQE9tyJ$BDQL6jT6mwdUrMTRHcZIbBR{6li`ahP+d~&5(*v|ldVAFuLI)t7hzk%s3UaltKqqoB@&5p`LhP5ZmZxKICuNW>osqWXo;Ty}G7KD2!R2uBlTm)WEtlxZQ;yO$K
z4*%itx6JV88CIAvULd7^6@PJ{_#G-d(eaJ}xErYFa|_GEIjY&m9B0t`!9J36A&ZE+
z1z0frk`@|6*rCTwGOV^uy&KAO;Qg0-5{r$0X?jO_IHBNBdi)=ts5Zk;ccb~6;DRQB
zBOPM%o%GZw)MQXkb=wP@%AjiJZ<}6B#rtM07F+Y0qIkg;FsDl{Y05O|;G`AudH@9O
z`QyL9pYcGqAz4F7p-+6&{yR+t8at+05DIbYv9w_)dLfms5zr76@FK%)}I?*3XDu;XM%F)48
zeNH!!?Z==2KiMO0jJRtz%)H`WQiM6j(wf4oO++h{;ltrZ`U31!y7Byl1(*~&rOypa
zgGjenMJ&x;!(e$8jyv6j778c}7SjEtFmah*#P(+{P#wtqB{WyZ0M~B$O%rbJ%B0Pt
zqRjgm=9)>_f%!T5aO{^Rn5`GVWqRxO8MdmUQuV=?t1}h!!Gs|prN$5Lb~5o6=S9hF
zuPmw_j2#l&e+;U-6Ma`lT{g-g+56}rKp_}Rn5G*|EMDG0acp{Xo3+QyTEFnMng!
zx48ZR0A%bjjFo(!{uAG30*Y&kGv6Os#f}--{R8}0&PJxBw@&!lVt$x%dJ9{tl&p_H
ze6h$9k|ZV3i8*3kxCb)8C!lP@LkUX3J4=iDKRJw)zrEJ<(`LoRR!G=j!ARvW-O#OHhJ9@=H!fKUM#{KiN>>w1;A>m1Lau(j
z?P(!ij;CY~r}5WyLox_#nLOjEGfveK=^#H@`POl`KZ5YR;P93e(skAFqjRI<6!``0
z`cJ%kZ~%e#h|E@6c@a=WJzw{Z_Ur*S>vV0c6GB?IYq6pq#*L&C!zh`bj@1SNr4F7}
zFg7%V#ln)*)Cddz9#()=s;4FfLB&tPqo+;&d3Bd-dC-;Ed(*{N+7?bu>8on%_ktx^
zWjb@8isV96F5hSND|o-*~#jTYg^#6EXR3@;I9K6xq#8Ps-Ae?S$8LKPS$_*P|r|W-%k@9;6TXD05T;q?C
zl-o$GnoI6r+j(MbKAObK{MP_tiapMm`crg%uO7Cij_+1)@n2+arHwT%f%oObN2j$d
zyyUBcW|b94-beAfoyOd$6XsPVHg=dZZ~vh^Q4zLsopQZD9Kz}L{mW#tkreiFg&U&5
zMu0)Xpg?@p%_tH?B5da9qjIL`??;0DZO{J@)JB^
znl+O@dRfFQQ`s$P3)`3IUJ^>jgPgp~sMkDSO&UB?BXL2t7f8w4p!^8+ddPeICBp01^T9twDz9{30||lj*h3PYXat&ZTDhs_YTIEz{Vm`P2GIJW8C$-zkB~=<4~LqbB45Pw1x(b
zIyC3b?K;o0PiW(&;1{*Ya;wm10*^7%tO9I~r57d|md+;IBz8&&MhV%*SNzCj`=Z^J
zzw7VVq+<9tQ(93fWW7Xgu}<*Zrnmn-tAE!r-)*zUd}b$Zn(~8#xCu|?ok}t^%roi9
zr_D*A?8m%o$v8T%0HI42zQeWylcxN*uhu01$!qcPzwk`NYZsm#_r9-q*;p#AXT8fQ
zrj>`6B3>94)*L#9eM&ZrhfK5Po++OV#Z)A!-Vrl=qev3lGSrt1Y*;zHlT1~?UX+p0
zi^+@DF-c^f`K?%Mvqptg@0hgVIyqPYoqSAI#P0`b=f6(rz$g>Ldn~4kGZ5O#d27Y?
z_A16^?fnBqxEFn@tLwYJ3(Y?;j#@k8YZBm2GeIqVkC~K~Z7QXcnc3%fl0DmnT|q>i
zXZElpDei%U6vhN-hZN>s>Td&S$v*$+BzLcqrWw8I3E}xG(n&W_
z7)MZ0hEon!_6R*jtS8`|oo>$lQsd3KA0L4O9T@UH)&KSDFIELULDB`K=7S>8OM9nV
zYf^xkb1M{~y6a>nV^ky>PuYysJOyVdY6CR(=
zVoHu3Qn?uYn|_8p#N805F#^;48%E4E%`_k=8*fHN{q0T-aluTOw!+G=8*qGEX^0KI
zEJKZPkx%6vf=3793p37>d60v+E=dB8+}8oud}QhR+{o2D+|nVaxMMSZ`A(>uffPbR
z%1C|C&GbIp?^6%n5igN8_5Q$3@@K1$4$X$5whh0r(aU~Egq_sF_IxvBbhqQfNCNp@
z!>)oZ=r(d0e`0qLOyWcT9^$OnkUlwDR~rw~3b#n~&NGhh(BJJ8M!xGmJ~>X;O>vj0
zVI-4Tkqb)6*KV7Y5n)n9Hxwf#(%<(8xri%rHL7d)eU;
zOoZq5osr6!n!y;!37P$o!NeyMhjURd>GSmE(Ns+BJMEYXx+T?$x8qD_a%Dsi@AS17
ze(~DBevdO=I;kg)%{ctaS(Z9U;C*me;*mGgYdwYg=E8VFm+7}8%$AcjIp$sLb^-o;fY&lC+`0UGM{f`
z3A46;Wg|rwsVW_Lpxvyb5Hm5Xa*U8f4%)iFoZJAO_
zv*bhDNn&DymPE~Ag+Q($`>Rc9iuAs$U{saCcGJX<1RN!5qGdYN>a6cJj0bB^CoMK}
zvv7kE5#}`=Ni7Jy)g|+e=7UB0AKlIlX~S~KxPiiy<$cEq3+wtFl@KaNp;}FD8VCG>
z(s230k+J;G7OmQsl=ZFrP}mA8o4tTBCrr__T|Y8D93j7a_^~@c+<#o4md(*sy4c!M
z4XuD*L$l&)3w@O6>cG0sfBwu~={t2RJ+G%$j_YNnoeOk@I7`k!Zg-L16wfAsK9SfS
zt4FvO(mn1P_{SV8HCs|M-kP)!ER$O(4Z3+XU_^DUi`MYO3dG9oGF(`LAr;69uvON{q-=YB3otUL1>~@sl
z;(r%jSJTznLF9j?%x?t(cQMY5Hr!a&!cUNMxgw-L;Ek6ooMvlwpnq=eACkc4BeT8W
z)yIF-fATSn5f!bGBfcoXPA4zSPyYQ=tbIKj(bix1EIzxNedTfL{2n5fTQ(*Zkv}2v
zauaFy9k=r08vkL*2{NuZE;IDp(B;%u~4DW9xoEuT4OeEe2Pzm)mkpBKSmOvaPCKE
zH$yoieWiKeCa45~@{O5mf%UwJb+4R5;s61=fs88vLfG+e<@&+YueA`hX#`PYAx$O7Sf9%g*Gtt9pYl*fNn#b&qG0bVmXJ{W5s>9
z*eJq7uxs2>fiDv3V0@K%l#ITl&|d{ws=y7qM?;JsU6b)O3Ei6k@RnT1W#F2pjWGC3
zTnCG|IYv`1PF+|g5xda4maZ}9^vsM(Y=GkLbKfO3>f8ROy~G6}n{JMz=i&Q55{6l;
zPg&OHXIYiR%S?=(#cA&KYFiMLi~e3P*R=9eQBMj?Oss{hsER
zv}&=kb>0l3sSU4&)9z2#`vdx^DrnwUD$sHd6Pz?L%24!!T=x%Lu2rf!Nus^A#38$?
z589Cmd6S5LUeE4#m-OvgJf)r3GY-j~TA>aT>n_Ew)X^nXmob9CHu{xvH=OrPc71Zm
z#K}~jh{vWoaN5&JA13bLB@@{i&R5|j6}Hk%F`HkAOEtHNN<6-5uoKH7VW$l`|3F~;
zmB{$Ff{S3fHY4*W)0If5J~j_AcO}&a)6h~_IQywD3T~FdEw7wYS|)3Ix!hSKhVSv8
z!hC%?zwduqRTK;il^W=DowJbUwXfT7p3^hy-H>8o%%r3EELvc-6B$U??01GV1INrP
z$nwzICsoeSJ;pMGa{lxe;CfSd>Qn4&5FPKQKZlsV1R(rR=Fi~!jfI8fiMO?E%lgAu
zVo4{bX^=)vQXYLb5A2I-jjFx{v%^bijRgMiGTkP*gFfX>m%VkV`c=NM-y0c_*sjPN
zULkoq4@CTyEXfzC&@=A)AK_dJX`N8DE-j|aWCgc;_F$65ssVzs6+Pb=cd2e=4^({*
z;k)1S?s<+2cV24e@kLTSJUn+JCnve%le60#9t+UghC53v_Y_sFbBCYT@_H>3NE!fc&x
zbFd=2G(a6IMT^{?9)}n^=9p+ZP~JIcIcQL5B&^?Zlb_by1^=hATs6h&!U$faWkN4*
zIsEFCV(xXURx%l5sG00Nk2Iv+q;UihbLWOcM2bwXq{u@V7&u>I=!_#;?AK##^~!R3BL1-s!b3LLE-O
zxEa@I;r=AipCpeFdo6;)DQzf}9hpNckP=e5+Q9JH27V%
zd{rr+VnA2eH#MBo<8XtweX>bmlrNG&(T_oi9pdfy;bdKEm#SP*mq`|+zLEN9f6+f5
zu)JQqrG^|%mko{?y{}_laj&9BKc60mw4rPwy1$?%8xUApRSp=Wb)LD>iP9ey=Pa!5wu;uP@jj_W8@|Ty0~A@72pj!+d3hlIwxqs(@HE=&#!EDJbM!RTc~{y!!oxhdz*8=
z^6`D*d#gG`G3O8e0P!5jD>@PRCk%FWYs#Mtg(!j&1w3Ab|Ij?}eue4?@RpTE`ko5)
zbY5J02$V=%K3+7@XQ=-xPE8JZqX
zY;9RO34qpqf45rqa@f5tZRdgYvx#X_3@@eath#h@u1DUHruFaU!Q71D@|sf2q0iLU
zg8k%>N55~0y%>m^Zy+)5Y2>jI2rN1E+G-ILJ{`tWX_lKjr-JL6JGjy^&m1Q)u)lgXMoQ_Eu4Gbz!$ABv>FoAh-t!4#C|*
zaCdhKcXt8=hr-?6T?%)1FRXBPclb{I-Q)C4k2AXO_r<?K4FPubb
zUtODosp@Nk*kt3-kumJ;CaeGG;@ekCipNIq$7l}jw%|N+dHYQfIv#wY<-hrbF|em{
zzpto-{wARw*!G*CgwGk;lfxQq2)EE;@l6e#s1cSqdJe{gtU{-tqhZ>U)6(A
zh_%V%l}qcW&hnuBXt)ntoZez(MH>h6+`Zqbt4Yi>=Dr95)XKedL41uP`J1+y$vIe;
z3M*J%sp!HJEyugo09Njf1)=^Mr(K+8i>>ed5@Kpf@*8<@0Tq~%_lW$lxqm%g(2Z;#
z!1f(Y+0EimXAw4}p1+p{_YFd0VYl*G&aJ5D4GHG02}cN2F%8MUeTS;GbYBh3hc~k-
z+RUG3*Rk+zFBb_T?OhpCljvy>00-%|?eWR@VWhm@*P-#QNfuqP%@`L*#TC
zSPzi7wWRmU_l3+f6MLp}i=}G_CCI2KR3UO(uyvI#RE_?R%I{uODL9RB79CyvmGPDf
z5S@|X$ZxTqfgMOv7yHD>3tu;S1Z+mYFLyV(QE0MdJ-o
z|FROm!NViRxFtweoiDo0L-*RE2psng4ePw|j>y;!r#{>;F|pIy|ARrY+=D-1xsLn?8vmpu}f^~nDgv1
ztX^?#?NBq~hxQ#@Sk!mx8r06;AyGFfcKoKbr3P3~FDsyQ*c79~NqKZXP@L@Psk@2g
z+`B6Hy?%8JwIiNx6eXhI^H8Y+p5p?0Eoo%_8qj>7@zr?!5W=`@$N4Z#)wwPqJ6jK&
zNnm!2J}n#?l3dRm7WQI@Gryr#qFhuNe{_u+Je?iTcXym{X0XEfau><;_gjFGy%Wm$
z!z5;*QVcv|?@;0`_74A~6aUL_sb`F{Od552i+yEg`UG0mpP1ml2zo_D%lw>v`JB3E
z-G8o{Z$+rOjVoR-ff2=?QMIF(()HsJHJHg-jt#Y~>TN^Aik~y`(pS;Zygl>P8=ci*
zkb|VZ;N(R44~3vhH0xw54OU~(3{;_{jaQW~!1qjz!>
zK%=J497!)Ocu#kW2O`S?$-4r?81>05X_q+WB~K9I+w^{OZ->?n2LJQ+nOkG9mPR8*
zDFEpDr23qoN?N@pvUgxbR~xyGW{Tl&$8UG0v?Y3J8_p|fChGSe$Hh3in!v=jjb4N{Ipn3LOY3QKZ>i%;kK^uWn)MR!
zvL*^daRT>FnFazCnm$f0Bx!HO^b+O3kVpZ+_4S3MKVD{$D2ZOk%Rzd|k|@iV3bg>>
z>RNF1du_{t`M=Z;4V<2F43dyP*BE63zlac3sDIrO@prf0;0mpQLW!ey!jI(L&L@*s
zk4ZAcIyT^rwSz6j4dcCd|AV3MlEGc~wc)~92}yaK4zb+J&Sp*aI0(uK2Beyy}jwt?u!m{V-5RXC+P;e=$FJaek1K^Mhqtz|n{SN%
zi-jA|c7a}sm-RJ>n$J70lLP?XdMM}QL+>XjDDC0FNQ(L`L6b7$R6D|#GG_$lm31XW
zeAiUsdj273#w3e$ct7hL#XlE(ibzio71}C(_z%X&-i^eUvoGDUCnBcy>a-RG8}|*?`AH4;1sb1-
z@!Hn!pxYPoGl+%iC;H|LXS;zqilD6z^p}q}C|S!hvoV@%N6zau@>~C1%RB)!40Ds9#)|SJ^!-
ztQ=VyRgfpnFDS?hK1f&o#9*a)C9tG(>W!!D+jqfDW{Jb$iASCi7byO>3D(^STNRM{
zmu=2E08Z5nph}4x4^!5Ie@hMHnH{j~5Y-?>iM73z`kZ&IEymJlk}N9Xumv;)>)!7?HClQGnjpPj<)PYVKgi
z4cb^3wDavvh(u9#Y&WNnUu4rz6cMK%ltb0tIVsVm&LC7hrxcx2ty3f8=o}*29M!Qp
z;~N}WYyRVo1?IOEuGE2Yj4;G=i7l!I3<*q16XrB=_wd#l>U;b++%ru4sKUl26Z&G
zhSM@i$NCbfyk|%Fdp}61-apE^61~H=I((N)@3FH@=yuCwsl0D@77*2(>BR=X#wtXW
zR`gFl-lb8I(5C(}WApNz^hp?l!p2!{)n7VpjU1TBllf8)jfIoY)0@~w@`gjMKdWKo
ze#!n<*H86UfyH`_9XB1j9dT{4hln0~QhHFreUhLj!yjluF}4pWyyY+K2vIljlu72I
zPPn9nU>-1kQY9gV!OG1gqCJMLSUh_|G)U_jig)Q1JVp=fTu=n*RoS_q$#jA1H2}28
z`LV_$5V!JFDNgaTF)`yKV8d#;`5nR7D}pXlU%?z8$MN&<-|yT-kAE$PfrjxoTm}v?
z?TR<+893WU6Z{|sFs*u1Eb31QVLV=4Ds3FZtuo9IJt=vC-{4o`RwaYv2vplREA}OFcLicKDuhA_1AspuCvVUvCM00XX3u89n?NWm@Err%63D9
z$Wr3p__ZlCy+ud^$sCP-F?tgdN1qP$4Lv}9zEVDy`{)q@r@xzi@cMz23sx6A}fWqBD!
zJo!mqB2!f1Nw3AdQrSG$1LpY+Pq@y}P^=UW-1YNZ2fAwaIz*(^@9SIka#oXAbV}Vz
z3S)c4>-Q4(C6g~Q2#B?`7N`8L8TLye+m$`l$15vDks=xr=Fxc;R&d6&$tz`}x+@^>
z+4JVhF)(W+ni&YBBlGI9XX~IGNUIc%ncg%ts&xSSrS7WTko8U*tW+>C!`9?h
zX=$vCzLfvcI~V36;kmF%~OX3-zWxp1ixq
zK8~GKb)xq;LCx7%gwYM+W#+9E{Bf1>-%xt=_Jr#Tumk^m{oZHxTXkLvyI*XVl{|}H
z{y?elkyv6XJI2Il0Gw&3O
zPRt`eJn7H0nJ^NE?(*)BI-8%9)v_72hl`v9r{#03W)^x0^{R5w)y6+@@8w)S7@!~(
z8byHf;1|qJHn`vdN~WW|Y>Qzk6K_}}2_yf5QMs!Vl6h65C98};7jqk{tY4GvQ4wHY
z#0^nUp!Yv@{McMwc4<3|`SWNdNp&ue1qjKlt@{tg`|Y(b4#shQMi&QOLD6b^sj|lx
zw)@FH2DI(Y2$8g
zxh@baC~ZR6dE`QjIrX!-c0rWHZCS6>)n&JP5RaRMtvdrzyAum~o`%0Q0?%mdU4pF_R>U{ZYB
z_i2*l0T6Q?izZBp@M1FjVnehr!x+{1PFf<#GY53x^HZ0`HHK;saqqE-`FF{?9m`&v
zmZgKRpvg1|nV2{}Z;r*$tP!=A2AP@
zgkxKuseNCy#DVly(`U$=wfq5@5@x@>xdi4_apnn2MJp+3vnbCDD5|bM{&M|5Aq2Tq
zi#ATF=i1nntb3ez8EjoCC?#$R1jGWRHP-Lr#daf!n;dRsX|9X&7SyDEsKQ4BB0bCJ
zjXLXE_ezog4<$CqDG8N<6y0{g_`z8jab@=d@wIW-Q)`U{`mB)^MGi+`b;VwBQ)6=LR~Ym3FcgATY;#mcNhE#19>@vl6AvO)tovcQYmH!Xf`Y7%)aC6=Xo&}
zE5?73Dl4y&Y40rXdI5MYFQ|3aR7-iT9sn-vcCRV)^1xHGeaMitpJuZs>c_zxI>~|0
zyKscl?=)+J@=k%||B-BAPBp>AmvKGYytmb*4eiW?3axCdvIjS%!zR`n5rLo|jHpbk
zUvBWgmF3f@?IKv|G>wfI3zG4}gbYf@7LR~66_djY&jV7I=i=S8&ap4V-4{38d21tP
zh8aogu;g4;ebJ4}Guq@sDQtavYo7%=Htd$vGyH${a8@hDY`4v7nHdb&?8G-lhZ3IV
zPErs%7QC5K^qYbNznff+$-V<{RwEsZEG>QvDFE}6K~D&xRC2^xp>_lL?buTIe>AC0
zfj5#R8V~Pbp8au;kW;ia6Vw8$=G1X}i?i7=Jc%DsYqqt><#CGB+yQ#^p{ioRbkyrqym}3ZVdJ7tIEhC%9DHtxmL)?=dzq#0Z&miI
zVwHZ%k)-A*em3)vfrJM&Ccb+*S6>1(4u#*f+k}ad~_Hsp+*v
zk65^4Q;2w5BIC7ry@}Zi$&SF)z?9exO?3T{AS!wDYfb{;@j?A{s8hOKE`7*421Ok`
z#nZ{3)k~k#jO+`D{!xfW8hj(Bv$Z)V$M4`(ak+(EWhoiu^Pc_fe8R@-kc(*0RoqMcpkDJUSAHC4x=R>V3oYOv#b*%$|4&&d&x&DAfW{D29n
zf`wVi#Zjg!?xZ}jd^l&PTdQ5LU0wMhoi6L9{WJ0@i7n_u1y~a%B@tKDwi5Bnl^^TD
zo_pOuX$>ix%tD+0SP&Qz6@9EEx(AWQVIHqdO-M^RV@3|qJjA-jo!m*XCK^30JRw3x
z3m|G7yMLx0w2UEUG>w7(YGrwB9>PVAua0R8cY#n5Nl#izGNf)H)>#i(SpSD@k_>l^
zefv4I^hV%!#=!B<-PW#Iu{9DWWiod06Lf3%H#840Y|J-ad-aHXRvQv7cs(M`KyHgY
zgYq_LP={6}-WKw=hSh_lADcQ?&Ab;40_&-mVg@9*v_|
zKp4w1&ETcoTS{5!(RVxa!&U3VQmrHlG^9Iwh1zSEe!ymOi-T9
zIzU>=x$AY=``JUK))#+8p^MKoBxuL3%&imimte3^>lTw
zH}6>AW7NkahVg4ouOi2NtmTQ{LZ{8OH(-|XShwTdxGuMOp}F-cUwmSn{p}d}Lc6g7
z6=3yR-N>bqR={Xk6ehO1WJ&fnf2f6!9`@byVQLaR)D>Y*J+7$F{EUorPtHqgO2c2J
z$-rrj$MT>yQ)T2+_33{w1d77<)9TpQC9RKQ;@>}+iN;DfJhjq&v2|P$QxR2oMB!(W
zw3VHxM-%CMAAXx}9)^e9(Fbc~`HiuZ+-xsgp2z%>X*uUZJ*~AgZ4CVF5yD7-10AWz
zO4_f@x}R+nXKV4f`=3YPMt%ogUQ7>|UI#7Qac?aXbqc6T3MtPhq{LAnbB9&rOJI@@&kpSwk>iwh0$|DjX33;b00K?j6$L4Z6H$c&RZdZw8FOE8~YD|8-Wdx7g^
z9V=M+nUpNdorgN8AeLU8O2;)5H#kg|bAo>Nzz9^9JfUlAQj3nZo>L)%V}X9Eu~qgD
zFt=w*%cm{|baxo*e?w>urb4n%R1>pNJHucc{*hUq?9D1AE3ac1Lwj(R#VtGJhOWTW
zLf6G7hRqGXoR%i?yhVyU4*P()IgPvEQspG3Rlk(ocOwV%S3+-JSY-O)LN;s$={KRh
z?Kx+M+kj~n*uY)tTK;HhrCw+y$+*9njvMpC73!Bn7yJWl61{^@V#1B~t4L%Ye_RYc
zW0Xdo8mdC0m)lhzl$b)xudyRr=xBAVy3sb>_;BdcF^3<1^$Rf7Q0f$3V$9L+^_a&T
zS5YYh#1HwXwNt0>uVi
z`dWqjeI{w$xGwjXaDx_PU@LtruWgjY`{@~|nMl6l(GJ*E&Y#Y;{}JGOvD3o);nU77T8NrH&|7)STo+Nr%4#(fP=moM5T>0`DzVaqj#
zhwPoEVBcCA?adlmad`o8SS}>d6R&I2-8EZ>&p<%{6)U5HsN~6J1ui|Do)IfojJDC_
zLVVWTy?L|v9wg;Hh8xG=9ucq?zp}$yRg)JkX|g3q^(`qjZ>h-zn+&oOH#nxt=L>hz
zXean}{OZ@;R|miOL;2|LN$3E|V>8ARHD?`S9bd2^MA#mL8#uAs@CA(-x0N@g_O|hh
zK?`q8om&yM-XA`DTCrG9q0mw3+ualP@vrhe)~R5}X5i`@-XoTqY^;x(K3bu1n;+SNp-AcQpD!R{
zGZ}k3-b!pg30xq)e|<%P^oiTRB6vxHyojHBNJWvlJU|w>_0Rq1?);g1i`L5IM7s~J
z+po@nte#+d3^mCMR`o=L)E)kody;8_3!*jtpBQ)v4zNjIc96>ME8rJ~@u@>a2=5o#
z{C28qhr;pW3KnqxSTVn(_bS4UQm+Ty!>2M2q^tg&NRBtnPZUclgYW6GUf>@6%W?Za(lUS*VZ>@hqU}P1B5onQk}nZ;P?tW76taXCNrI&mzIY
zPW?u}4RIX{dRqIPens91xnjcn9S3tk;Um{bpdlI?-V
z)qA!RdLG@%`5~N)RkAj}kgUuy`7GuCKK#b53F|9F_KB&P018+q-Fz;#e9>tEHBXeJ
zoAvD8urArWyu|3~i&~nRdPOm)v38eBPgtNzvBpbxaM@`e3JEkHN*qo}F1H367C6KU
z;L`l6a3-}Wl87G-$GZAa%I(Tvn?m7G3u<%wB%)@>pXK1VNBC7xBDdzrNlgXehC=gG
zuOu^`&~N`fD9qDD51%*dK{IX>RLo&Z7wWtVjm@yGMY6pov2HmAXLNlB8!8H)ZLi&{+I8UNHnM12>hAcUZ0m-54gt@|qLS=L^NXk~
z{#o_8y}S}tZsPXL^eWSUW1lM%D^eBeh!=;FIDx(cG)V|y(sT33C=-O&L*wfNrH6^b
zSnELi04$bq6}usgtxIVW7tA%K3b7J~u)P0j?JbG$hkj@|{L|y=vO*FuVoTSjM_XSs
z6gQ;{B=Qr~^VFJu^Jl>6HRr{hUun-jjgOT?^mY^QQ>1-=mS^W>TG11?p-&Sv`JdLy^RP0^O!B(=ul|E6
z{>@GF>mKe7(TC$4vU0_@KP6frC~iYbxvJGs3DMiolWVu2DDB&S_&87>P_G46kt8>K
zNzX0E#!{;b1zN07O4PN)3ykbT5;mCa8J|C>F3nanRtrom%^aeNwMfrcH
z`oGbMtivIh4Tl7hRV67hKmmK
zE9+@~?D&59eB@u!6uZHc91RxK!`iT!_lR2;rM7$uRkX64zUvH~e-r4&$|7rPE`sN8
z3kl2n+oI%6+C#EwM(Gm5y{KzmVnIvp>oqcS9gD=S6KsSe^K{Bk_d?i9P!e1wbyi`cD5_G4P9K5pzh=XsBy?y?Of;BBCD7j
z+)|UJ6FMU
zs9uCl5Vf#%f!%JZ^Qnb`<-5iV6FUGs0fEJh&KgCtlZQ4@^4VIa!9O!;ud05Q8Xp@q
zY$l3e{cC9`OZb*c}Au_mQCjXKifplZo5AUEPs
zZsPH4o-Sp3k2)%r4bn$C_xJt-d{;tFxoH6YVjM5+JXND
zjlB<@&mLAYK36=>-6P0X*k1_LHJSFQsqHwsByzMKE@x~ubEz&U?$)i@!(uL}%}1=z
z99Ni`xk%BDw-n#DyfW8rocSGX=<67)*s$rI>863knp!s8e=m);Uj*6dDeI(Hw
zh45tSv~r#YYxbHu#I4)D7M}Vyag0W~bZK6=dp8*hCT~hvdrO-BtWzc%Cu}01N%rm-
zr}WBfyEUBMJ@Q8MtiD~-B1$pn6x0yPoKSl9*0)^(wZAoezsIJ|-n^L%
zrS7#p&w<>U_+F;xhOh2=Sp=(xG)$T%1OtbbzrSQ8t>}cHD%#BaqvMi9+y0sXZb``>
zPf1Jsxj{4wrIP4%=shaemFdvH2K(WB$52ceRTjepY2SpR06lE;j9O{HzaARz~r^>s4jKz2*JwX?$iAn#gVk
zoH=kbb2$&?=tQBaDh0gTBqIOyZY@*DByn6>}h(e~4$rKO;|
z)#R(}9ykxQJ9IuF(S6-gewMw}zfV!7MN@Hg9}_S>hX7!eg1ertALeIb;uts)*&`%{
zj*Ex}CuHjNvu-WcxR3&sCAm<$HVoxx=v9HPrGx6KMzR>Q5D?>8sY%<)em2rHVsmSP
z!kh0d#h&WDk--FF!DF_)*?rAu7}tS&)2XAk!&&F4M%J>&SN)HnovRC0?z3VYw)#R{
z`M2Kla^9gZjm2FHCzrdzFaK(Xh*|6}-lx|C*EWB71Gt#{)l1r1UQ%V<MX~Cwj~56ehN#|HN=W9eZRpI8Ezo!r`lGHpz(OyJ)r`3|Ps4jJ~a9-rF
z^K?q%Z8>$8p{&r5L&{GoVpCC&lg-9T2b%sQ*7ds6tZ)$K_nt^=M%mDju_y|XWevO@
zX|&i^b{g5qTOh*FF6)Q40>MmKcp**;ySpa
zPG?=l0HYBK$mgKXi$QfklzMZa*g3`OZXhcq65m%Y^kb0JJP`s%WpLfAe2}avEEu3)
zf310zI2`bKX)NhYIPsrZ4xoO*{+Myt$bD;zoeLwNi{~kfGpz^eBiLd)5;}?Y4EzTZ
zpmg43@Qq)sKf=#P^+V!KfQHSNP0UsPNR!C3j6F_aq^xG7^vJAWOcvsuJSd7et`t-m
z05Lz}2jIw$dJ#
zEB|o|(JXgjS0Ri2Wa5H!9m}Aq>-{zV=jKE#oizU30bSffIoGqui9)hvYv>wdpOh`K
zC?~|dkhES(oCKUQQ)80VAD~ItM<6pCeuEgIM;KZT-e|Wc{7NH=SbG4wP)d
zYe#y+yNv87?1G(4AKfRH;bl@Xu(my&few%I{kiVh#lnyEBEkk|bH%P#Ujl-zsa
zSCKRZpxhhfM*3HsF;A&~{M>KfeaDVD94=#9c|8b9_LSgx(H!2BBHb#H$SHHwJbzvy
z9#4`PmuT^Z;%^>_F=^m8p~F_<=6m{pqJcvc#?Y5+fxoTgv_D!`e#q*IG_ErFWYS9t
znbj@qp9|b~4(9OaO>3;#x7N5NkVbqb*U4Gi=6>ZZgKP$8*qXEP`FWoXYADDNV$)F-
zqgThPAqZZ`8byf08J0Fna#xHMC*3N}BQ*4F>o`dZzv;;t==F
zH@czezeUWgVBKsYk113Cw0;Br)PG}tree&ukfWdPdmSF~he$f^)p2HpG8?r$JSb3i
zA%s#hhDg;hF{ZB$zfoR
zyt17Z3V8SLUx{YBIbzqv#^yO@Yu&eK9`ce|G0p!qWa}%gwJo!jf$&xAKNylp&PLQW
z+tUM*k{h@?+=EtaCY1wxdNB)j=4ln04_BTeq>>+IzlDW#435weOg=i_V|3LdPf5--
zDX;53rR_er9!faO!)Rg@xD1ztiQt;Tr0~
z4J$9tmTo@PABON5FbhXZ8x;@l&^I(a3lUSQXeDB~M}6Yy27&Cf9?5BT5|UcqqbGb&
z_d8e%4%@ZMtBVC~mD0Uj2=;XtcXpli*8fNs@K_QZFYSF3Biy0PJ~32@NfGCB_6dGs
z1mkru`YZToj$FzeN00UE>|8=F6E^XXY)`H@_-+1cfBdq2y8Q@V>-mfzk>+i13ngFrLsyEJvx&j|eX|4>E2k
znzuuOeyr@8omZNoi!?wTUgcLU?~(Ox;=cxr@FqcFgZbC)PI;6E5
zD>m_B{5nY4M+A)tps*XBQFrQaY9V{cg5`6=YlC5Dh8&!9T4VaB`T^uw5pF!J?O7&#
z{pO8!w}#gbK!T&HYU8DL+^9z4$fDJas_K$j13`c`^}Q!vvUQHr8Ot;%HNQ?Vxil9Z
z1|Fpc27y){h{IUy&0@=sOe-QxBgYcYW}xhGSip6K=zabkx2A@LVaF00pTQhHZJQZH
zH>jpgTa=tY73E2(vCwqaFhuq5KbXuqq8ou866lIgabKeB(&@RTnRU#`cj<;^f+{M#QW$z(
z&hi=qjerl4MN&ys$YS9~Sc1Md4qLXaxOd4XZM
zv=*t37U^9ycIOP0O^O!0`zltL4-0iKt#|_HpUNA{-@w;s?0MUZT;n2C9HOZ|lhl8g
zlXoSy{!n9*s~lL%M(k+4hSlHh`L6$u86!OFJ~pxJ4hA_p7*g2^scXSCyr|?*N8wCj
zpR2+Vp^z?}(ng{$E%GFbw=fH-2D-#^YT--Q*0qqqJSNp{xZO_Z$ld5_VpC{isy>+(
zz#ze48;ZbvR_YJ_t&{ls80-K_0@TO<)Xh7OOn*{0HM!_HvTJ
z6;p0n{MXnKpJumIJB*?%1W+E;%7L*YJffip1J@QS_P&#|LAv?`XwUG-?o;@zv~(KH
zAcA$5S1M%ZarYe*FNcm3Ph=Q0fUzeLN8+mydTaF*)6vE3ez5*5*4SL+$5!|uX$m;A
zt%@%!PG%sPIhVFNC%mkwptqP2`Q60h;UBh}l!kv?p3c$!TWSPqH`Hk3%-;3(bUrs{
zy+B?+AHVXYKM^W(2hAme<3h$8EqqWSH2#EDFJLlDIO<1MXff2l&h;n(U21cc*@F7A
zOBAVFMf}%ZGvMD=6y(n2E}mu4M=q*giNwr}MBthD5Hq23pZ4#=bD*&YZq^mXhJ&*CSqgnKTXF~zwO3Bv=#3_&dMftr2p
zh{Dor-W*Acdy3{{!S;PUTRBR5(pw8(=bGAL4onh*p8ekxpVn~JHDWN@uPd6M5sdm)
z^B@7Ol+l^@a|8)H@bDvtS}Q;QETd&b<_|WJz37nU$PLO@{BdXRl?!GroeK@~$3&TX
zbg;dC^=`rb_>
zQG=aNq%ED#!!VCmtLbe=860~PTPrKAnRPg)^*d08vD@O|6v8KIy8vr%>w>vgo+p$a
zxYh5v9k7bkz)J=z3FA_vw>Drw?7}2zC)6bG=Srf7ZF9RrTYq0`WIEY}r`qUoxSqOv
z?b+h01!QJKWfMTzFGca#w?Hl|v{n^%2{*TwIX*kzxHo*c`P&jO5tnm3q~IU2uAwG<
z#bBwQBU3-pMOHwn>z`4IlT2e&o`ic=&f!7FUze(tnB;1P<|B*5xmf)0&}0}dp=lBw
zwKqe9P~1U7n=@YM_PVjgIJIj5s!L;3Z}?
zcAw=~odf&iHMm^&)MF^+GspcgiAeO>rlQAMIIwROg
zt(s=ot>#*cdDIl4Zfw1rc;`s3NTw?Um)2e!BS9|$n&OmRY_V2|v0{Try)`8S$iRRq
z(E9S^Whdv7cT26oz>P=A%I$^E)Vk5XiNiXF9l@OxOOJ5wl@t1-BQg$bX9+6f7C0$@
z7%@}*gSY#`>l(eF#6yZBP!JHB#Q5M_y>U(w>uk`9{Jxbvrp4~NM@E-vSyP8
zRNd9j#s{JOMeQh^w{vEDE2k|W%26$q_%(=Yz~~SQx0hLf+#jb=GV3zMpTpl&fvD?9>4HFt5gK9Y|CmAU1S{;gK6iOI06awZSMMZ_9nlM>OzZs@*0EWu=)pD55ThUX5Q~8!q;U1&*n#z0(+e>VP&a#U#
z^t^wQ9e-W03aaxU$J#T&FtjxN#Rx@dS^(5l$^DtJIS<7;iCa2ZlUrJ6@XfQWMUzLqr|XDONs>J%_Jqc92!h1Xpty8#w#j(e&|0qEguYqX#C9D!
zqCv;DpE8arUyD>HRK1Rx?^$eYnNo0-m?5>KIfi`lhI>_ACjvpMq&8+7kI%4boe**^
z5Gw(4Q}w)^_8jsztv{O`lqerzth_8a)*Cg3-d$D)N&rJvqXz$yXfY2NPpY5s1&9*!
zWjDn9i_Dfw12I|}Nx6SZRf}`zMVreOCAXOPF6!dQp=w{0&T@?7{&dI3u`SW-;LvvS
ziXwc3_nKZ73_na$yf=rgr^oM1Uh<}tRd0NJhAM^&Ci)Z^&l=sF%psmpApu|EAo~ZD
zy7-9V>S8hIg$fPAj_nEuy?hNyC3}V12_gFi`7dp509u>@4qz@(p`G@otclPwoX2<`
zAw%i{{MLlEK_%kzj$Z@*n@gBOIT-@AB2a$lng07`yAVq>k5^?=nN@z$F&8S^r1B5u
zUALmrk-o*oeNjDaS}a}k(%oef-vd%dw=nAc4cFTE69i?s;%n=Bq`N9UyM#ft8ieo}
zAYFe+?!KKAMDZfCg*?!x&$rDUKH&KYbvxmtUc7(7wLzl4YBpkBPc*IYJd;zVv5nf%
zmgs}8;YNoGQ7aXaB^NxtT|Btwj&QzWQK8i3MvN*TU%ooQFuQND!*HXbfEmvdeGx->
zgD7wtT&WM%14=)R(U%(7uU%I6EI&q;?rB79+CWNdy~TGKB8xZX-C37)CDrjjNTvYg
zAB|lb&wi^?Tp@hfeHH305dvJXG(6Uk7EohxB48i%g$_n9pQ6ePw6v5{*8bVYRo$8j
z2=VZ(YrWxiOzr`z>^W+A(RqgVT@shYMrR|)7L#jQ8CwUZ)ABpRj_3zDnRDvu+B7Gx
z&)05hpFdg@pFl(Pfj51}-ako*a@lc{=R$#E>{2dxdkevuRPAdCjyk@l#-0D{W=oEA
zX~FOV)UD)+H4jTSv{*bAIbFQ0v5HA|4Mz0@f8rDf$<>rq2Z}5!j_5>K>{3cZda@8p8(KMNMiMkz9AODFIEUJ6TOztv(=2HvjXY&{t$pCEw{;kSSJt7zLQ
zRo0x84N_woT%86mr25M(O>bPMbavu77}eYA8Zv*f>lR|jZLNz#O08Va{9@y9`dOt>
zX&5eg4_$$@=6DY%dG-bIws84Bm@vVW?q*KsJcQDtc-m)f)VFAnXJ8d*^4_h8lC%_f
z)$*K2=WjLh;Y-_GY}HNtNkL2~qNtRd%6-sb7;f}V8|7AFHGC_SC-C`#gjqI$TB`t1EJwlVT|L)uKCx@
z!8_*)3D(Vu!f-iN%g>e^{q*YpNU%!tPJH&yZw~s`;@Xz^-EmZGFhw~!ny%g?&sSN<
z$WEnjukRxNzp?2CnaQG;*bZk@hr#a0SGa1Z+DR|b-~Y_6U@)!$|Ywf-F_N2ZIxz+3G9uw
z7@z2@ZV7NYWb0Kc6D(U1k|eo=BsX8s&3xiKa}|sz9vX0@U$(vp&HMlJc@eqPpJGbx
z_XUNekw+UR251+d1TOps;|mUdLp|c9f?BYgc#yTl5dSpLOZR<*kqb)c#N^I2cR#%*
zi1jo>rPKi?LDMbQsGN4-VXM|kDKBxaF@KzQ>PN4_gbT$UU|vcBm!kjc8RFBzLIY!W
zO_A^eQM2?o8#MAwdL6fr(K;!^hu2~uLGj+6?*C(+wxtb9$BB8!Ig7ckI(N7+>d&VT
zDI)~ZKX{@y6jr~NU7b&Z^a+}qf!X~>ihOe9IY&rQ-W<#1;8u^&Knl`nsFH>*g6_!V
zL!!kwVllrio^vk3AaSNNLznyI6X+PdDCQ34nEE}muC6*A$bN#Xn6FrM6_WQK45C(n
z$84?}e3T^_=fRbOMOvd2SzaMzXpCG1e`qw7));qPHN>&JR)9U}XUQ08mKe#>C-9xl
zsq@9gk0M@hU=yl-`uz9k{E>Iach&E_{)wWhVPj1{!a7)M7*UwF-UT{L-Q*bM<2_i0
zXj(epDeUWH1ZHM{-?jD~AmL1uXXK=8Ss{?=^!9KBt=eO+DTjJ(C#
zGYJ?R&*QBpg|Cctidt9-z#jBsUIS4!b~n3TwEbbV7+EAy`^#P=Z^6AgUnNwuQlX%y
z76wsuU6wxjdUUL%pdzN2gtb?=5G|(~r+~5r~_1VNi@Nwud)81yvdcqivSfUMi_QFE}qF8RC}PH&1QfG~Hn*)tb`RLjoAZ3}jSrTxG#!QBpADOMZrEB`whx
zbBvc*uX)Y7HXtN6;lyN$j$ej;Zmc-lC5Lku6?&^1c2k9?YUHzxX4GZxEg~!xF2x=n
z2Pgh#kgU|8-kAk}z^==U5fOfsSi*qX=Tnq@OQsgvcbWRou@{U{*~A`8pp-IBU#Ss`gfa|J#GCS~_?85j};isBl!>zoLs>5df7C~25i@v_($0me
z);G>7FnLSMQ1KUdu7D&&7D%LBY2VPGnXDR4&}cUKp8q6L!L@IUQMobk@1vWQ5R}~RgwVH|82({)Xm$UNQL_UwqexBD<*3~sn
z)A|O=;G`Y5Pw`iG;vLnHh5~(itS8z)6g@x>rXOv-cg{KD4uac4lv4f7!9;RrzsM
z0xED+T=?qmLleQRb`acJc74)H$RISrj5(~G-=%H*D_p*c_n~hd|!J64p$=nI40Z~@7V6h;YRG_6&bVQK5)k|~7oOLP2_*K$Mx#>beW3%Q=6zC9zByC|_V
z#ZVjhHFZMtGTmRdFgX?_K|*K>a24
zwI@h>w5JQC8c2l+>y~9Csvkqbv-GszS+CmeV_~O%Ky>M7PIvt(U}M57iN_f^Hj
LYx%T`&yd(uRrbv1?4rGX1#NCnW>tW`PO|!#1SGo<>YuJgEfe*+D0jB
z;=G{*Vi@@O_fBxF5|_xybydkKqZ0u0obfS!Z`VjRV&Z2{+O)RvEi=(}pEqo4_3qB|
z4asI}HyjC&D6XKTrPSy{aD#s6s1wRyWO;pm&s9K1ZL3^NEyG<*IQ4k4%+qBFVQ$?J
zNPCd;DQ4vkDI8T?P}S9fXP3hTeVw5WGow=dJ>E!x)1HwRLY_OU>~eF#P5vK@Y*_M^
zr<;LK^t0;Q1>~9U>X|em^Qlu1g(+Uhy3|j*gMxblvPf!DfXev0Sq<3GgCn
ze!mpH%#5w{Xx`YWnc-BFUR)B>IN1BOiu7WQae%;&?x(-b&lK}Q{ew~bEf(fK7+SUe
zU{-}xy4zA+rkVse%`PT_TFUlKa}e4clOX|gBg9>N+7YH!vxM`zGhB$4fL{1`FT7FT
z^|6lqCaDhR>Q{@F^U6<{kkLdbpi+exjY4^?IsrCP?%=rzp-eeJ5NcmICZnh)rr;4k
z@P)woL+dibEN+O
zQVQ~BX^i`YLLwSL3S*iv4^l|y6A=-Px>IG(tuhE38WmuXsDd
z+RBED{jGI0zV!r_jKC`s&;P-M
z$@YrgQg-6YuMO;{(l$BaU@Crh0AHt-pLcr?p-BOhaP+=Itr;*yCPn>X;-5<*0_(jT
z9E)m@otIeczVa0$Jm~G)xo6d%pgBma=7k?O+v|d({SGH4xY0pGS^q4oHaf3`)^LpH
zDJ7SabQvlO!He7|W^zmcWmM0h(XVWRX=uVBXh}q1BfE+4C1_USjmz-c6u;F5Y%wA{
zS3Ie1UiNC^Ww*!Ws*~bf9=a5=B4id6>}&RoCr(^U$W%?Ol+e0}{L^^~Wa8t{VXgO4
z|C!KsZQ(+4lVx+P`H?-XV9&s+xrv<}`01T7>q3AR^x}v*Fu7@Y1#{>=ed6Awj~8wm
zOuJ+qESG{{ZRY5PQicWtjQt&)w5S@)^=ZM+i~`!gM*G8QfB^X3(c=yV)y4$N|`yS9l)9BG2f`z}~^2;5^9NB918?02u
zvkez{9eI;EeFkmG*aP)!uL=zlYv^(s5LdW95m!YI+sz3ZlxbnO%JEf+L&)tX*7u-_
zQRUm@4hI+T?bL>YOS(f>27BX8HY9&hld16(9QJGa%K2lZup}Hm%x>^lujJ}e;_2V4
z=GWLd;T(q`$`qp=8K!jazh9_zIa>)7&vKc6AhYTk63tPGGO#@zJ*2Fr%15>6Gq*-(
z;hvD{UdVddG%(?X8F4LvkD*HY<%@1l7VG^L>W9nJDn7JTE7*9>oRGNtMNSl&;^Zg0XsA{)@678>4hB@EiF!ZjkmVzBWdPwc%z2)VC
za^s|MGQke%a+p(cZw7P(Q`Akr@aKru-la`0=sO-Nl5MMtiH9Bo_nkZk3n8%(#|l#Z
zA}~asQl?7F)ag(^B?~(Ko2}a?>D|_aE8oB=xl=np%+4yPPPHu(73ph$IJe2es$?9q
zH*wUxP+O%G=SBYgK`ZI5j_rkSXB$M~-~&CIo3zqyLmlq0pzKhfooD(-%s9uQ$!M4@;(m#37)L(MJkHU8
zI9>@Juh!9iWDrdF!{TAPPwzSR>`g!m5%UNH9}$}J{hV8s!!O0udCEb?v`*#0l9b7l
zX%l;mPxAWf|GZ)@UDKP}UhnkvXt_TF=BuA^Yi#c@6D^&D?FK2Z1N=&uV{*&1Z#~S837x-#m0kwNk$Gu6`mA}ddI?{4B=X$1
zL{B-nXC-v-(%g@<*)@mG4={qXZN`XHF^4E<_M4(CGm1YWNk9QJH{T9EF`1aVHeKjo!SiQLkn
z^`Qk7*~o=2$LeVxe(?{>CI_Ul8@8HQ?PvXZKb_^YrB6xb^^>AB!nTFrbaVQ>o8ID~
z7p?^_ZM*g+J9GR`_63rlMFs5RQ>L%a(@f>lsfb=P+0q*)~1Ei32qL-
z1*Q;tE&dW$SY0PP>Aq@%68u2@8me_@p=cmkpsWxY=f#g23?MHq>GJbbp5LE)a$
z+J);oOQ;pL+5WX1j;x#?URXsVuoUAD5%tZ?qzA;6s%{tjo0U!{KHFIf(Z+|Dy7FCo
zd*$SyM)Vu#BC;HddLCW}qCFN=yw`{&fis?&`0Uwy0h9Yi)=s!HK<+ueU>c17U?xW0
z{K)VR5$?yhp%QQl%YMei$nr^C!>SkHCrCMIn+R#fV
zT^)WT14hcUyJ~c22hr0zDJX%g(IB#9sqz;dV@{o;85Op*&AHB>bG13HxNzWor+_D|
zjLq1d#MN?CaVSa=wgI3l6BFv?KEbj5I5l3E-;|^&hobyCSANl95BBHh=PabD`ZQl|
z5;9Y=73fQj*O*3a6Lbqq^RUa)a`FMgq<||DGYJzfZpbuvBg+yT@`B
zS}Lgjc0<>HQXV7$5XMh$(BX~fGcR>c8FkM66zy_fsp1~U_vH-bc(2Mi$pq={Uab~I
z+>fjO--~q{?@Mj}kLul-U%)ciW5K0V1uGfk<6GNfSH=HAu9{skak-$gxq`Zihi&L@
z)KvLot<<FB;fo=p9ZND(>|?A7cOnGU--vZFcbaI+_zc$MOk{0{trE!P3DMY_)g>
z!#f9y-A$z5@)W%#EvE0NgwS*ZoD9vX@+w9LzCIo4%IQEkGu7oRT)FRd0VRzbgInm`
zc#>>mL@+wx3PS1Y0em>rP3@P>H4r8I8|ch!uDW232xSP6O{%FN}%WI$b{={su6)
zCXC45)s8)ova*UJGH1ZnWhsq=5SY+#ajCiA>+UXMw8J_zPD~6jB8~(mAP4{F+pbOS!JZ{S(v4pMwOD!KXZFoWAM))(zU~S`e}{g}?A&5m
zU>0~RblJB%EzT*K)@rJAN~Wy|E?AH#Aqu-{CQ}8O-(boC?+$7i0{>Y4r}vZ6O@5uj>W=tut_Nm;
zW%y`Y^+9qOTO!IRuA#Kd?^mC@RFX-KhcgI@N+}X-!gia#X-VOuq?wM%dg!`L^VqcT
zYe-yupIn{Pyd+`WFvX&~8ha`=<|-f6B8(c|vZVVLR!@_(^v7h?j>l6BSd<_;Un*54
zCxXh*b5hMH`l&|Zu!=*6l{sx$VQF10dF41_jn6t}ac9cDmDhcLLVEsKnk}Gzw{P20
za${(&5mQXQjzB$+Iz^J1IWRhVcOx%4AlmQ1^TGtQNE7vW8@&&IUT1Ko3Nq-w@BTeh
zwmc9oe|^+%;8Ba2m5_6ra!!;&lQ{U(@Q(EtAySbHF2;2~syYu5^^x$Ahm!um^-PGL
zEkRkC^UBLc()jf55!n9u-}VhxGPc$zAP5-sg`-gcO9lr)Wxi^Wwo&Trpz2TBqhF1m
zOu=$%Bt`I-`8G*bDtAjGFDi$J
zG~$CWqAF|k9m$@|t=0IgsqSHt6zK;})Xrm=$x))3WEh0PBSu`@5+>^8cNq2UYZ;=^
z-d|!s*2RDQu?7nwgp-b*_V8#M=u6^DZSXMa9{mRgF3y2PjR(z(57_n9Cf4bN$;S-4
z6=O5$mRSK7zcRR@eTLd|)*oMElMmS#M>-&S_|-P=f1CGWISo~2H#6I*)e3LQR18wFb^H*^o0H-{(5#90pGy3Pg)KTl$D_
zV?mQ^Za#ZSZTUZoeST0W|{B8o7>nt@JfRJQJYy@Hc$pH@06nyGxrK>CqJ
zR|;ACG-kd4y<{5009yLaEdA2FY?tE>`aFLMX1%H}6eVOMY%jd%u}4)D9a31An-$n?
zYrt;QVMI{TZV+;9P|z>{g!kJNevs+lZI~WP1ZQN&UkZ*#=w+>INF$@Q)Z}#bEI$*j
z>YU#?YL=syhj7SAePsYv%NQ5JTIRyq=*K)W2v8Y5dMtfQ2}-j>jO7AK*AULACe(#r
zqam1xIu=wIoUra!1;;;`zSndXtZ`#CT0?Y9X#Bq85~hox$!O#xi^Lw5|LGi6mI7c!
zr~HLc=wLZi=w#VBIOh{L<~d^U&p#`W?eV7xAw#Cg-KB6RhBv+AX*sa+g+oZL9}LXE
zN=(#6&ZxVk&X}Jkt-;%k@1IOMb^)Y71ZYj|ycfc_e#fL)TRBHmpvTEjPcFSLN?p(@
z`&K5x^c=(X{Y7{b*kJKF%)y;<+pM|RVzLgF#JDbnrJhY93&9y86~Z96sHVTiYDfF&
z^ol5wD%F+aWn$IH%yKZa_ghSf-m>c^QzEu988Jn(lKF|}qwD$x06Ni=v@4gc$O05q
zJj9CLx7AYpI5zoyJ+xn!kJ<}%f~169P(|q`;c))EE)`Bm0cBSZUiu6kjS>zX#+ydg
z>#pji^Q@2R=)|aoFnks<;bHd;){e93PykF#M
zdC10hp+9oJ5Z2ooz*0o5UA6e@(?5dC^cRy)X}y;^xL64*Qe8Z9|P(JuAPtWi0z1$QY$_TlHjR?1yvoo5AkmQ&9z2;}>;sV#
z#KXbW@9#R#DU_@mUG-=M?SdPQFmdShj8NOMjUI`qyn1ssgn|Vonm^CA>7?!E?GU6(
zrV#%C-awrM@R-)#@iqiTB@=+WfC#$|HB@$L&XcnB*Bb6L&`-TzTpyB9#`3i1?uHJ@
z>I_i=PkYGMxs98;wuKA`n9W6mW1Ynp@@V1s_)kr>i+7oUho$JS5PLwDFPuP1aC7*PLg2AMunU34^#+-lkBrnEx8FmuM
z)FMk(uT5!oAK`~}uBtA{S{d!T9(^FBmJjjH2Si6;p-01&Dwa!f#VVZ37GCh%)Hw8T
zWh0ZflCrTXMSawi&d`%_ZzHVUxnZ)xoEP@v;_}?q5cQ`P?Z!c-Q)klLBx(oNVJ?3L
zX~o~!>HUm?^P-PW;hR6Zoy@F_q9jr+U6BkHn!bGt%l`65I$0p2n;724<&m>b9<{&!
zZ^&8=Q)|7@uwXpc)_06-UQagirQL!0jE4El&R9~sSm)S|3OO*erM0ORd(QcuE8e26
z)8sByM55^u)@Nm}2sM@YyxJt>n2X}FDCP(@UkU^Eb7CoX;!>wNl8ed~g89uloAU09
zjgiD}4s<)_I`{_VZ7}xJu^Onkb)EXh@PPsGJ*98bqZn!J<9*6CI4e5G_SuN`k=9xI
z>{-NA^(BG_(2Qq!?vPFJ32Tx}3$kcB=j3khQ8C~=9bJgG2%h5^XlEJPx&3}kSUlET
z?isc^Sw!CE2_?O!yh!-3keGKRJ;^5hYJ}cb{_R}d?KZs1QE73ioBmS1&?V($+TSZH
z=~WCZ6*v_78kFH1E7|sWPh~q!jnw!TSVw`{1x52roqh@m)ZP4j&b?O-Nsi5$JF(D_
z#+T)-*f+kB^KquB*TSt8^C;9uXP%rwt$HK+Hc#exNI*j|PQLcD9xaN|OjP^9jQk1w
zJ>^IY15v4RVDkJWrz54N-s2scptsDlua`#hevKbJ2lSgEM|@onOclLm36BqpbiSzu|3oNP<~
z~7o=}}nJC-=G_Zi8jErCrF|Lb!fw_|)6Ak5ykb>t+Hj70l+zkwj+FQE_(|qPU!c
zrM6A2F~ABpM91=(7yjYTSk1ST(H)0}@i(kd#=`xFPiu_N|i%z!w`Wv@RrrzuV
zoV{;*cTZD@-jJ1J{>eyC{U(nd*6Y%Kkb1!LG4b$yH`V>}y;TNW%ZK_Z7;HWHZ`{_Jkl38n
z$sUd{?}M+Er(CJo=x@8KnheuwMB1n1kJXi%|6r({;~TP{UTN!4OCa`^EjeCw5OMZs
z^R|~}qRE~Z`I08cBN`4aLug@k
z?w1XfT9g7-f}0~f{whEJw?SVsM(jQd_2#&A+-)7Sw%S{vuhby92<0|*pO4bZOY*Z;
z1M3yP_td0^Mb^>we{DKer3)7A%jwM6m@eBz^W;qmzHT=qqU)nCw@wc;9yWP;Cp`mH
ziT%3Ey5*yrl!LTfcm8R$h9p^CN~w3v3rPki^+SnefdO^ble=p!W9r2Y_V3fc+FG8~
z`43D
zNf`w?Yo~{Mc~$7tCU`c00J;{LHExUMV1Cqru6JVm%_))8R#|=t4qYJJ_vdOsI!kFs
zd>O^4b83aXFDazs+iorGu<=E@tVXqajL5NNEAEh{v@pp**jz5v;g+@nn{>-9vjtj;U>k7JD}^keWOuqAHaPEt0|-B#eJM(|fjlUhmUh
zTMC7wE`OZb2^BPvuR<(v)U*!D5`FCH=}$ert25<1m&b3nta|(UaSY=q6(^uoy${eM
z?vD|{b4r(-R2N?FLHpeiGq{>T`241R&KdqVDvJsonMkd~?;e)a2J4w_;2B6Yp8CE=
zzFdj=Xe9F%`f4fHC2+t}LG)7Z+{=bnSWe_OW(|=XjpQ06xx7$C!=#jv*qn3zP)Va?
z)Xb1woP2BOx5O~jO3G_XqmNltka8*u{2XhBK+SRgM%a(ZVzT~^g4|6?=Q9oBiFSuE
zhOy>fQx?$ouvr*A+Pq$|b1GI@91pQFCW9CWQMu4aYM&%Ai6RMuI^d{#t6P*GGEMu>7SnrMjhj3_Pwaxsr9qwUrY}`33JhZ)j{Rgu}g6VQZ
zKT@xOaFO?RbQr!e&3I-vkF{jDOmATdgJ0;SwdGfS<+)`b)HRoV;iE
z0+GVft%G-;ztnU5&Al-pzY}5N!=Ddvg{jJzs9LJBucpStkmTB~KoR2i0NQs4H~3UT
zNu-yGxhX=LMrA6sztcIgUT6wAH7ko~JtBX6$W9$R4SLD42CaE}Ivx<&V(=h!s7Hy>V`G91Z9ii_JSu58LH>DxAAn&AhCRGpz%Yp{O1*
zKNmQGsE{gqUUr@OOuDeMRj}UuT>wNJi}UN0S-CNsBAEs;oneAY91E9&qr16oumM(v
z{FTby?{#iWa0wS81k!1Xl4MGiRe6%@s*)N{v3~wE8$EGzpjc%)T_@0yY$TL$i`r^ZGN3uZJSQ5Du-fGbG_h>EcspHSi-lNl5Dpi#fU
zfyP^d_bmk|_cUOCJL2O~LzGUt!cl#fBi+2vOvDKr$_?1?&Y<6GXyo9e!kEG(efK&O
zY0o^7aOr%_Y>{!Us$|q1S^fA8TVHCl*8|J%p4r}CCDa(V%l%~Sr-s5#W@a-D*A|cl
z9Y;bpB#3KIP4x`5A_JtATQ{$qR($yb<3ks<%awWk)bm^oRJ{3Y*bTaCx94Wz>!&$x
z6WmKJ8rSl76-Dd4#(mr7g-OOj@}ei99^zLk(hM%@aKa_+&v&=-B1sOT)(pCOxQpxE
zXg&Vm5-G1A=U_%tEJtnRns53T#IwX!q$
zF35Zi4Sz|Wl!jaze|~v1Rm*O{aCNzrO>@pVdnvz{M}D>)?H@uig}PKmzkNO=uXLVC
zYb`GiU&I&|F`u7OSL<}=HK5U`fI`nZzi+3uqSvpQA13EWw|7UOdpyDh)?#YkFII%2
zn~Q@?-T7jJ+MR%k5!Bb?&tEFouEivQGRN+~;6Klg+{?G$dfPZyR>pno`nc(++JYjh
zMb$7>K|f#^Z;r<0%tr|;T=Urdo^7wfu7
zr$|SCR#26F(bgEwk-aLtCDAzPV441LKPuEGsJcR%QtW*S0J$_j3D^?HJga
zr)zQ9lliipr`d<`jo+(|Z`3-9|8fgsaW%@b+@b(QIU^yGE37Nm?{@4Gu6xx1LJ~qI
zd2qv+Zp2BaP4X4FGAE)IRkioLiVaOMG^xBQU-aiN0v)P#&vT$v&^0lf?0x+6*1dtQ
zd$om)hllDw?7)Sr-8GnhiYopOmWGrJAa#94c_0A-P)%S`o*fd7sS-4$_y#)K9)5_w
z$eHvBr*~Kz8Edb!d)MozOS#Lh%@-<9(Ne?;KGh@>L{8M>J~9}~Ok1UO%~l636!2GE
z=z*#XGjJ2qgN|kJ%}#|1h!lD>rf3Gyg-WI6W=f
zGbnSf`Z6HcBW&a-!V-vjf6ME1ENza(1`g?T2)Z8P
zG)UCPSg-yzW4g$I^4Y2zse>F#)}rftSWUdfQgJn2*WV8YxbiKTJJf!C=Pch)a~*6-
zu!$T~3ADwUooU{jfL}u4uyQXi7Plh)Oc`7fLF)PJ+IePQtDms}3D{jcT5WfsB0Yd)
z>a_B!G(&+sg?!bWXD|4i5a;4(r%1}7sd&$rw8~`8(V4mVpIa+xN;D;e8l8pV7
zU{uS)fhP??O|9n@{tqU1ort;2Lw`fBAY;gsja`EdR1I`&S)rUzk%})!9KKUiRbZ-}
z|2f;!Z!KP0wOehz&Lgka+O%QR-q;TE)FP8`9j0+Kv9qNk&<>gjZoxN_y(hax3l)C#
zoX%2&Ew3`*R?3+Y!XZ5=jCMBTRUhn~pS7z>Y;?jr^oH1K&_ad`lALfYXqnWKnMr=B
z!88A6sI1-lu0@TVQ0>=J%gq?V$Rv0T%wh=)Q*y@hYAN5Ktd{*&H%F@=ALUHN^T
zV@eTEWsVi-z~J2M`bHEeBK!_ZRu!ps2d&w&aFu9xx2Uc-e76(?pak{N!Yqv@R|QPX
zzb`acGw=eGDs!l`qE=re8yxo-uIDeg5x$dZCzp5PFmiM+&(Z-a)Esst-#Y>Bm@K;;
ze%~kTDZbphjFQLj6_*fa?h6#znF#8$|`z|cZQA2
z_382W>lCmJI^|fZ-F-H@HYP^j4n531XJ)t`ollH5*P8^|V^XI&P5YM@)^l;@8rq>q
zUcNY2VV*M?c~)sz!ATFGmC?aSPO`zVUOVpacj$L63t+~nPs|Q!rI*6@MyFB$Gx!;-
z5e!KRiu1#Aem518Ffn1WeVGS@i##W$wFaBwVsVJ!5x|nOOnR!N{bfxP1W3|PXVCr0
z!Om&OYq4dL)OKPKE_P2pGafSMC`0{8){p;EHVPdZ4a{RHaJL#N)KVNULVn!o{>o<`
z*o{f>w=cNII=rsQgDc9zhVjm5!RZG))IXP%7t~pMN0KuY9Pvf2;}iLbQLVbPWcFXH
z$o=x|5!r{iKbY$)QbYK4T^bW=N_Fhd{9O0;N|!}tQtEVaVini2Pe1Tm-az%Vcy@01
zY@mRrHB7uLA1Hzl0P$(6c#`Lu0XT}@KF729`zg&Sa`7FBROVLo&&{e+3C{D8wP?$(
z(}aL#hLtNwlr?6X8iVGSR|;bnhTxYaQ2X&f05}*hhShvmP^j9{3$ysmS7ay`)=ZO_
zwDk75!PkDs;!#TZEd}y4%r20T<8J5fRdk=Vs~PTL=xiUKwI
z-_>^Vj}P^HK6ZHY^4X*%zjaGxbl?rsi?{D?UTc0@KEMmU;Oz|3e8aGsbEJGy3kij}
zrk~Af+giCKqJf~3%bl8ox|Ax1$2YCxMF0jY6<``UM9LaFLpDbVY~aChe^P?vMR%`h
z!P)21sJghFtXsu=zIW|mGRZ?Qud|FXplxC$eEY}{wg@DA8;(9)6Os})7!xjDZ#O9s7IrY4xxm&&ljva*>VFHJ1y7)e2L>=jV>AP4#3WwTlxNon~
z{3(^o+x@nm3^AJ*!E(3AsRwW2RkDPpE6{ZuM|q
zw^dj;hx}=~xgWnC;7R{vzS4}XN!~0Trcl)$lkw+cPXaqVkH-Ffw4>9>twT!}FCG*-
zv6gCIU0A~CY#7%|@jFao{V~*XcUH!#1Jl}?AB$>rB{nFf&*E`%smGpqb1l<@y_J`k
zPd7yzwb2_&xU>W@sVfjEr2SJ<-e>#KMr
zKxuxZ?Y#CEOoO+Z0w6C(HBZ4fPM7(eOp^)5;z#09pKCEeoUx%kGiF#KQ=w;q
zfvAN-2g43TtWAVGId*4DeQS^B|CG#^m_t!K+&@`Tq$D>kSHh=C5D@P06`IqjQ47g|
zd!q2cB1ZH5Lt|RZzx@K5G|`FPqJZS1_TEX#cGVt*tRvSoq!T+iD;Ii+znTR~I5x`i
z9I)*c!*R;#;&x6%(JYxB`lCR9;Bxi;y{gpa_gV4+K3s)n8&LE6KI|mnmnKDu7{w}R
z`?TY7Q5WipoV$;P&?!Y$iZ|L@tpneHO3Zq)xc|XmVUTT~y9z#@Yx87w8`}}0sjWT!
zN_;=Arj8&}m?C-bmyR?3K0X+rYi^nbY3t7fFOKLz12x38E(QG7_VF
zdG5=K%OUr3>^mvZUbAAd?4YIyg&oy06!uRg1~m;t`l=6q)>yCoe;?Sy=^T{c$O-L8
z@71M`)P#OJ#}s8=hWY8|R;k#4gXWn`TLKzNcSAj
zJ1Ia0d;)sjkAk`izNqjTJg^A2F{vRq#+IFIiwri)OPa?*pS$_|L|iF?elbw1jPW>A
z*FEu9_5=@$dF%c|#{=0Wgt2h%sTjoNMa8jk^FAI(Rt32&JBO;9)`Lan?9s_Eneo1F
z93!)w+w)|$Ph|Qwffh9j3rkOnbv($G6$PiuzKSvv*LhIavq=qW_5uY2eL
zH(EF1hYkgD>gnD4BFxKNCz)0<6MMNw%UM?fhCC8q10o$`6{
zN=ej_Yi&4hFRDeN%jUP+i-Mi_md_b@-p|ArhT5xEL5*fVbd~kBp57sY-3@6Nlb^*k
zZ*Q&Bfx8nB{ZD%FCGGnD8QJgGpJ8;RprI|F(ewHVaJPr>(IvbQ3+=LdSVB<0)~11|
z?t98Zw82r8U>l;n6L$`SPbzjkuybOLc3d7v>{rj}?{yrNAz88l33inH+qKmm
z?JCz==U|SyJB~)4)3+4yXV>~KsNXLOtY!)5UY2YW=NEAje>?BhsaB}h!VNDewL4p(
z)=UWxrV>e1uUr5+yS8Cb+kwyi1T2kBaC+MP^`2%eHi;f>a>m`9M^d7F)Jq+izRb{w
zD}&ccnLnnI7ZZQ%J<GgW
zf=CVaUw@jqglHYaHP-aW=}?q4tXk-2Gn5?$=l{n2QFt6$oRUeU^4mA)#K`GQxtIrh
z@y|x*e2a1ifa0)lR+GkKW95_Z-W-eA)hXT~r89hW;It!j4mxtJ$Qd&?jHUtr!<_UZ9}Y&a=B!Tg#0o-O;F(
z(GqeCtvEuA*`Do2zq|Pn5Khsqh!Gh2Z;u7ze0oH75e(%O=(1Vk`Z)d;4T}lmRVK}}
zs|1kwYE1(S%pWY!a1A8Ret225gQPIMckkc19$*o7YjK3TASB!Pv<>f(aO%lXG=U}U
zB+Y3)OIxGyET8#T54oo3V5Cad=?s~f99_3W5&Mw{%$o7+^H&K8Nl;hj&H`l1qgB;f
znM}#oz%BVCV5ini)8zH+)&2A_c5V(H=oqYw#wh^?3Hy}lk;Q1)eM71-c#&?m3!+Si
z`(qv_?(<+W5Df>w03U)02RajocGcWF`(d6}RuN7m@dJd1e7*Q5RBUCzuK|3Ax7OJ)?Y{rTncNND%p3S#H7RP)atV&F;(evp5N&%eF3c|h(F
zzcQOS%>#bdOQMyZUHn3p5jio@;Dv%HEW!A1a!2F?*l^EK$QvrZ;Qq)PYTU!yVtt*`
ziOdhho=GFB`+UV1%qK8j=XdL=A2&3#S`U=|b`dN3H?gS^K#eAA3q
zh5X&~WzO&B{AqPl%#Ze3;Y?MxAKOV?6G@O3^?}0_Z6L0!AVvqJ_x}e|OFFPFZm3a1
z>iObi^Z|Ll+zi*Y{_EQ|#+hzrE+UG9{Y}jz5|;}~@v}niK7U`pW(X9Sm#I-upaO6T
zIKq6oL52+!);z_TsB*E{*o%xp
z^aklClRZapf!h9Fw9nZsubZm>A7`}xxA|Ar@*m9YO~Cv&h5umOn*84v;|>0s&js8I
zFVxgz)bJ_^saolAHmEMBst&K3If`P+5BK}C-aSUUFV5)T;WpPv+B_*qJt24>8`VRo
zFov0SRK%X7p1r@=*zk<05A)0=6}f$i8E)%OeTR#-f_|)(u0sXolj4hA3$5E2`=p@-
zNB%?|Fg+@vs+1Z^Wpqsz!*=|Ftq2r;(OEeTK((23_)MTI!W8f)7t9!s-d>-HLZ-0u
zAI#G2)5A;mSm6W?=d55wzrH$8teCT{r_x9*ER%0JqWh6vbga
zlatjntV1_P7t#luR2Mo--`#6G6{{Y0vNX@W$chD!V{i4K`}@$2%di#SKdSDH<=&ig
zcw#M9i2dv~af0_Pn?r5XgHYis^T|8~FX#wL*I+%Md*g#0ZqYsrx~XzkFK=|VaeMPe
z4Xukxt>ZfTdYej}QMtL2dblOO<)^e0Mx($P>Zv7pd%`1}3ne_-0L?o(_RyT{b7d46
zYa%8}5f>D`={Y4D^us0swXx>dr-U~NK$_J`i~xlU-)NQaiHe6iEQjj051sWQmG_gU
z?Y2i=^~GtWUGqQH&R!lheF|DQew6-anV?K6ZZ&VJRC;Kb2hnS~10#OoF_n+HMhsS3MBIMD_A13(aHyC=6!=gjW!q
zWf!hOSj+rTFOW%xAn#@?%kSsi?(udH_=TepJ|3lyvVe5RolXH+c&WE-tUhE?vA+=;
zyL?YFriXI)aj-K!+kv;e#*GJepC@D8Znq`WSNn-qsh+}go}v6YMT6Qxu}U_sK$4Rh
z_}lD^oDLiI5BD$*`2$edQmhzF-DYK7Yc7DQi{Hd(a{CtYuQ-Rcu>n6LtC#Vk+lo0kY
z3@gM8E9y{1x|M2gwk4{tX^GDzdE{@RIX{1>l&d{cT-WT$LnF8n7xnvf^L@yC|st
z?!p9R+{N}^^&t1o+$f
zI?34$nZ=HLKLRjrF2ggug=35&i9e0)z>OGK;YffK|I_cgaksm%lL784mW!Ai8epII
zo5k+r-spk?H|{E^E30@z&#_hJc$WV>w4*Fnw!^kMHL5C!<`3H=sS7+V#0BzNH458GH{KL$*}
z>m8{4if{6l$QSvWTEF{@Y+TyQ*qXl79rI#0VH!Jfw<4cJ0fuNKzG5+pn=1#ssU8)9
zXj{Q>%PwnO>dhO?X$M%6DXipLC*e*p`@91ypSb+-FT08T@l^6u
zW8sp2d`uq6{O{#YPcJ%F-`z4cbqY0vmGw@ei+mAR$4!6dhovOCA)612Eo1hf#}m=b
zNl8=^o*u_dr!vb}oL};uw?DkMTqrs(bVP0!RU~o^CzV}&nY9xWscr>nV<0fBlR0-5
ztY0+WCOg0q{NYqovRcCv)SUhMS$qB@`&7>7=TB+sK-^ab1`j>T?X$?fOCnrqqZzOV*Ul
z>o681sC5ijzkFq|Wa!ZvCXXnLSNfV4^!$Y-M*k1y
z$OMXuP)zU+e9ll6NS-K4{>rmjP=db4>*r_fhz3NOzq59C7a@!BCB^y_Up?j4d>Wx*
z``(Et_vCJal{LIDJ8$vA@JEC?{vEPWd-3L~CEq>yEZ8Ve%rDE6U~5FyXxVHU^2k;U1n=pU+5+)I7JJnpl
z?e*5j?%ffSRY0DaHeJ`7>a3uCRigBDAAe-)-(Bv(L5{T!F`S8rXmwUsxm4TMx4?eG
z36s&F$SDaGSwN%Dp+oz|+SrKiz>m6MO&*&R^C;Q?>{VG#=0v%FY9U$b4H|F8Gx?cM
zZ5aP!#n!W}q4|0mCdlp0Myef-v9~}%Vyl%~5yNC8ZDcM<9*nky2BnAStYNs_ql4X?
z4rl(MdtRLYBq3lu00L5jP(2d5Nww*)D!3B@JAbMnr-=hKln
ze__w;HG8jh-`BNB6OUtnt(8;>>X)YnRHY13@5%h>VY_?ur>yUbuH_@%7&gDe;AiA)
z?@Q$+PNGSQO;qgLD$}TY7ZRrfAQZDfN$_!1n#QUe-w)gzUQT-lz6R6TQi{-nYyb-tdpo1PXOP1MM-e5YfvkqG$v4CkDN6XK2cJ+~kqqZS
zc1F(RM;#`}bOIbKRhr{u=6%fr7n>r=G4C>o=xINpg2jM7+L!aAlCu56dFMz<8vUPg%Vtaj
z>BvR%K+QJ6n+*Qt!1HLYHhC}@NA!bn=I7tnFYbx3M5eJ!$JEL@27b?_6`8Qj7m-*+
zyQ{HJ6s;aPIkb(OO*@I#mbaOs=myE`>OBevoW4o+_vlWQ`&24-zF1NHNyA_!1g<4F
z;}oq@^JMOH5NO!&7~)i;H0~N|d2K~XyWu19t4vlTe<%t8=`*9i5o<~K^Ua+ld23B3
z^UrXbK(3*mO{tBMv%ol5%Lf+7pw)aLWbcdhw3$58RJR*Yxwq{14uH*T
zsG_)_epJQq9J6l6;Kl9epdVYtEak;2IuR0dHEnPNchi!8>$N%ho%stder?
zhnP?jW<$0GHv6Oo@_s*zu_kQ!D{am{yKr2mjaxKXMx*t2k20auX#+Jy*k1a68^}vjf;KGMm&o5I;PjQ}Vm%hkN9`t0M&M`0wXsdF0W*Mq?@(TT1tW
zgb}vrsOA|WzBTRlrq4#;oK#%XrN_FQm7F;4H44)(P2FC{dzb6YWq)!?R#MTLUPhvv
zH_d;Gl%8Q)*GsG8T6o!pgv)QmA=mZSGd%;dpzfJ7(T!--XE#9d&|BkC6x=s_jft2X
z8|Mqkyk|gJgK8f8maM10!2ufxway82a&1TrBXU|vqSYzNK!U3(Y
z`RqLfZ?6I={z$R|c)vwxwlk+^f7M-8=-k}V0<($GJKy`1g*w1=0q7KGf>k8TXrajqqlWT^D-%GarT~YQj1>C50Jx(Un1m)y?SLd}X@fQhsKY>7b=2i%#nwxmS
z&`|z3s+^q>t6Bi*pJko_cF|qX*57OI8hQA&CBy|E~r`obQ(*xPjoV40>ElyU>CfunpszO*83PanIh_`
zZRJMWm+!#2@UEy*IAeli`g8Av2<%>b5pD{LI%=;vQd2(c6yWwse5EyBV-Fgi^rcMr
z8`V_1Fr2@aH=h6L~eJ}1a
z;tdT-C>_`3FzH~89G&GECeW1G*);Y@qCg)da4+P$S*oFcRz2Iq&;tVoy9}Z2pAc6~
z|Mp3b99h`5t5=+sWbkMp#P$35Us8X*q(A+bNM}KVt-bY^Fw!AHK>K5m991OB)t|9X
zb1OpdCH3EH9S~y=3>g9|A7sOk&5N(Hkt^LkZmLu*RE#l
zeZ+0nI%8R~Nrafdm3eI}#pW=*W{zCd#MP&~JG76c@-o^xR&!Lr2mZyM;I`-A{hCI7
zxkS}k$YY}?J6IQyQC7=igFLJfw@d0{mmuaCzAJkPy+k#W{Ok`wCZ}hvowZ^1GzYW7$aoqJZR9l;+N28n}VGC<@ywkt-mW*fNrnqGj-Ba`gL|ML5~-cn*}=0
zIV%6wjoWMbIY+Yk<8RHN5sM#e9~k(?kQ7C??URv$gdmtBAyR~FZttbyj;kON_H+|
zcv!mHR01i$%_KoS)1}KuNSiJFL)#Mw6|ZMmhmYXwnZfe|9-f&a@pyPv@z{0E(ZS$4L;Zs|2r>l{)5YsEH*`PSWC5w8cO
z2?ut8vL51eMM2;C5i!NTIBW;69>LunEl1GZKZ*>U%YfE33tPW3E$`&Po3gIL47)F_
z%^KuUJZ~YU1&-tiVzz5ll|_0Q@zr+$_`G845u2DdulZs_BIhe)8&NYH
zpg(JXv|*Pdxm2l#vh)s;L$Rx74dky%wAA>V^PXKElcSx6u5xNtU2OdOO+<-wtObiv
zglI3rAgT)VaZ{(N?JhYA#StGLE3yvix=96(%yAp*$-S-jSlN!>^&BecV(4&}BTy|PA-f?xd#1vW>$^0dpT(r
zGUXn!88nc*Nk05*UVaawU^>hO3U7R`&~>z_t>n|HLbWLY>IDc{vVYzKqM;y9fJc*q
zGig=+8E1XKOCyagc_W8*h>0LI2IEZgm-@n!7O9NZT+&m$n(WgGV_T3yil!A<-z8NUc@smp|Nes+~DY@=+YrD*=TIjRt=n8zJ0Ke(v?;}bwLJdZVkH63K3!D2wxt7|
zOFF0<-TatXZm8uZLTPDw%8=N5rII>-UBQP)Ed_UPefG2c>!@CZAQ_gwuUR!sj(g!$
zjqG0)ee)8WDb}>8M|>=VwcGVuZuY7FSAzoPbcV`^`t%1YRYkQlzNu|PB1WGKH;Lw!
ziJ`F9Qfy0#=J{Hvmzb!&<@8mg_Wf8aI8_&erSg{k9vCxdlMe#**Z3w>5mrJ92vr5nJ6+AJ*&e>ramhxNk~_p
zgt;(GE8Am87b-{f*(^e|VK6B*)5LabgV-gnZfkA&hyej9I!hRD1szJq*hhgXHoo-s
z=T_H1+IZwoV}+ARWyuXLVV8lU(D=noh^eQgVGk1Cs@tq{l8N3YAQwZ?pubvQ*jq-0qN+|0BgE$FD4oL(!Jy+4iA0WxPs@x(<@4il_yxBKX0+K7U7H
zy(ikT9C~a-YeBk{VvMml6mbsI>fqu@_9$O0$*bi0iSJ~Pjr0kVismb|P4{-^8m36T
zVntHvkGx^!9mon5JH#ld^XcW_cE=s^Zb3XrG~&XFH&+b`_Qxo)U&BX!uR)SV;nFa<0`2Q}>Rbl}C!cNmqJoCSOvwzWlj=O?87P
zcXZl)#Jkgs76F4
z?QZHlK{``V1OBc=b-z!?TVBu@6=h#CWR{+?E=$bte3G2I!q%t!3%%1LAL8KL)_MDF
znV@RcZAYnbKvZ&PzAB2kH?CBx?FufwE#5XW9#s8{YK=cD;AagN{^F74=s+*`V|68u
z+jLx=BR=C^Vt5l}fI~H{6^6GmI}O!ku=o?M&H2WhM{tdtRcCAdoWja5;i5`Roph9T
zS!;@(5$WSi*M;?_Gke`V$$98zP&JtrMF6tfrR2mZ$+W%@^D*Ez6IzuU#E}krehH5{*v?XOe@yR2;MiWOT%p<3zJg5tvGn9gA6%TUS}P
zo|DR-P+nD2J*qXoxTs2*33kvu{Mw#lOzSVPttOr6>flS>t+Xw@iVHSjpc6zVbg@h{
zWvyM%C3kxNUQg6X1A2Ii_@06{nP9J`?EM=h=Znz9yh5)KYDf=w@6@&Ek+2><0mwDe
zXAz(b5GJqp+CAgG35;W@vaG8sugQ3CnaXDHJ+=@DXQ{G-9KP8vu*NvrVFX(orRW*R
z{xVq8%6+NB`hkW3fu=YdQz!Q(XDrN~R*)H8T`igg34olv(uvI7NPA$T<4{s(v(w6Q
zu&i$a*8CqmXl!kpsBtmKwapfb^rQv&+vAvlpSX>|G{Q;a{ekIVx_|!DsH3K9&}Z@?
zpvtz|wF0A#>l=nenzv$RZ`jH$5kFK*(e097$=pEQA4!Vs3zrP?cTt1Y&nZ}~F2p+@
zQ|1B#>-sEUFBL5!pW5!;$p=3N!$fmA%!xK;046^m0YN@;Z%_=Ubi7HPs6e0b#W*d~
z5Bvr*C#u5sU*Hfd|4siEh_c9JH)e&KF<@fazF!;VCw=*cgz?BW#zM+1$*|a{Dja}F
z55V2CR4^K2n#9qkJyqsUD;fb)q9FS(_6E~2Zp01G~{d!db6kFNn^zQoQye>GGvvAqcWnR%ubzWyrP8)-tC)+D~`!S5PaLM@iQ-Me1
zP|6^HZ&4skwo1IR
z@imnTBXxz(M&IC@Zq-Q!)Drzwf@uSDI#qm6R8ve^QMckPQD?jXxQW
z|MU1b({a|5A&
zTBO$+Fn=eY1B?NixFlm8hFEurFpNCsIBvO;abXJ6XEWFrFO4(mMlyje>-LxG@MlWZ
zia2AA7q&Kaf2eZ)NdA_hTjNe;&u5V=$*-+@thttR(Hs!b!FJzpj~C~>e{Uu)5w(>g
z6X+5ac?MVn8`N6ghg9%0(A&f9Y<-
z6>@3me@Ft|tF)KXFYxu3(6}0da>cv$NeBtKsD_%?p!U1#jpdvO#^ecDpHKqNXrO82
z_?<{2ya29jUB=lyz3tm8EoBHR3mYfbff$!MY06XuNpI6F=xtwoFG|71&eRCaYJgTK
zufwT2??K?*=HQnNcr4=&9bKqs`Gd3S$7RhD;pzBlNM;W~u`G7|Cwhd`7Wv_XyQq#JG}Q>(g&JgiXmek^*WW9-bV
zY^u>ioCM_SdGXGem5X{`gv&2()z;x4!26aAf=g7@_g>`hC3wUQL<7bez6Ea`y<|1`
zGr1ncLHtk>{2eGP{eBb|XrXw>{ccZJT$Uf1q$zU@;1g+JS`+EEvhvB$mx!6LsBB*H
zfBMoK_?a~QB(v0Lzo@=$%A(p`SGRdlF*Qr6M+F_P6i2-$RJ3T~B#?bY@KeTOCYW=*
zM|N)bBT_R9>wDR;Z$W1(+6X1z#%BA9!9~<^Ah~9)SYfziWuaUhM@xAH(=E0IY;PX0
zv1yZDRd5bsbS9G_dH$*iiSLiND>js-
z;on$%D9twOXaz+<-LeAvO-kSJl0NkKf}D&kO&pbK?-NA0$N$Y?ohB=Z{}V0gGztDB
zc2zb+Mt>!Pc>;3xB!m8k)N{8v>lr;LPB3H&_JAftpeI{7@V{oF|9)Z6Q?9S6y6^So
z5SQ_SVz+IPs3rix*Za-AMOXd(k-qoF-@e_=*aEAXGhx|aew@eC6CxQ^O?-J3(Y86N
zfQ|Mu_yzti7mNH==U!h>;_(Ds?C7`ko4B|WyZGuDLALZzO!Dui1EskXgpjLTEG_ftGV&0rWuo8JO72Qy9<^^a_Hya`0Q6ozzTet$^z
zxjhi81-Fm8<^DgUiMj!UJr966rpp=PIdzEI76+G^MnMi`*2E&iOZ1dBg0S2&No2Ig
zSSu23;$53y|6FrWjN9jfghIi_Uhl{RX_|&Pz@XJNX{4Kvryhj(l?~wJTXdUDwa3ZCuk-y9BG2fA#Sk
zIyY
z%?77##=1J|x=T(Z5Kq+Dn5?RVvFGbmag5?CpB-9a$pXxBt?!0>=^%LK9^`N^%^I6Q
z7R?KQv&t1(Sgzll0NHfSNHJ?wI#8@ihtf>%S36?v86`x_^Va91%NwQu(~EIXjvut%
zbN^tZ?;Wq#s+Anj5VH=aEE4mabU%>fJpb58JtRkmZ0HVNf?>2J%g~c3`e)FsIyE?E
z7dO}IQ;r>cK2WpKfX2jR8=ihfA=y0$?{QUXV!Wp%ya
zPMp5*1!SysHugiTN=#fu@LEJOfNMI+T>#6eC{o;Yh03>NSSx=V7_bB76nz>y6fe!08%dUmR=~LwrF
z>r=p(4;^RAxyT%}jk
z3$LsXtWZ<(V?;lnB2*mV2E7MHVOj6b26wU!JCJW&O#1jRlX38E_th0w)DV|ysAtml
z<>?(I_j>^l?HUh?y0(zGeD+$Xj{hgXGIfH((aj;XxMXmiBO*uB?F~Y+_Q};(`U3%=Mm?Y41}qNpDy+i*#Z
zVq$rt%ft02r8Gs!>*u(}f;DaZl#TA*piAr^IH#JPvqj50gVsI%j3fKZ>g|DGzMf=?
zbS?e-ZpQE%T7Bis?#!HkLrTZyY)+#s5Y-ta6n6<2vJ0^WF8;dv&ebPy=61;Z-SNR(
z)>j6PNF(a8Q6|{Qy=PM(&iEy;=bUE+F5NuP3eH{*DRE2t9F0SBQo5+BpuX?U&%)ui
z;ihb8@>s31@-V6y?cdT3XQybl)38|Kn&rz>GQ8c_5(~8_{kpUJ6W4TRla~=DbOZpt
z?%c2Wid(itoAqvI!bH_KL{n|6N#zoU8G))3%t0~^d#1lx+#NtM7BBE$u64d2i-NgT
z53D{=o9z)?fByp(wy395rIp5{Vm)Lc;bqs+qj*l`vj9D3Q&$#GX@Kc#W
zvn;X68+UWVH0h0Y6Gr;`r(MV#AX&wW-H
zNtkg2PUGLO0j>xQ>o{uSEX9Vhuao#{hani6^0hm%6&o{NHIv=4=#z2!BKaqwuP9ML
zh5SGtL-+cx)-`5A%*-HV%~BHQ5_~MQ>bou`Fe78a;`r{AqLQo-?pZzqBk}FBGEF?y
zRNyCm`TlF9?A@8gP2zJxU!l2U@Z%@j4}WFbhH1|}bo!y4n0<-=C9vO?YbJgswkWBN
z4~VmCivr~zr4t>Qwsn%$gWxY_G#%-x{6;ZoaZlNnz;Ht^qhZo+B4w7S+7bD%K~;9+
zfc!!o9Ys+^^_1EDJ-rx@tS`G=EMI+$jBIRU6B((AQVvr7{fCq<1acwzcV$jvq>4sw
z)Yp%vfjYAH1yvQgrZvE2U~K%(x-C8(Su!9ztTovi6m5bv3Hqdx;J)FhrH&*H(zB
iq0gwP}ie{SY_(i
z^!N5B5yi=cxK)z`9s9*i^l#O2asnmuh7T+@5UnnK$l2Lkv6383n>2>|+jnBB4(5`M
zlA^2*N;ehY8_Ndn*szkT4^DJi(Z^mjU!2UBi_%s58=C7@tT59z!YZYyu0us{SPzu>
zd$xT1D8(#}kdhkl&GX(99|N`s#aZwOP|!(jDg;s9(9mRhAfY<*hbA>LPEwZIiCPD|
znn>(+<#&SjW!c^2FsXksVGnu89~{jQrq^ebYhwy^McqmWSW1-j6;fHjMZ98=$9UB!
ztPU?iIhN{B`!vW4v==F*8#T4E{nq$RrIV+Gxc>aE8Gn%(>r11GONDyjWF6pfm9mC9
zTv2`74WQn*h>R?1PgL4c;t7pZ`v6z?^J-Vxsr93Xi0zyF&0qJ|-+_E+8VwCncx4}?
zndQx>u$5T(om}#iFNDB9huFT2n7Zw-bl_K1UsNf$#%hAxTt9{9
z6cjE$O3Y#V+@1hgN<<|kK=u6%hubMP61x(W;x8-zD;Dy9rbYkH&gPt?|Bxh@UL+Ce
z%X?$}i%t96|5jF8JO?fVay(&TosdnTwP21O`x+EJLp2~2qx}T3TP)z`L1MJozvg~W
zUY52J!L%;Jm6)ZNWT;WGg)HL_>$zL$ZlJ#|-|Rh4(wcY4P$cN9j^i&%(qK!%P0J7i
z`z1C5DgCx+t&LXO7B)An1)ahj$>0n_Ir#q$RQF6od}f%=$m1(8Hf-5d
ze0i2wgAg2@rDdo|sgVNV;G~qGFr)b#YM={zGWSF@2s9(wNs+`SD{})vB0do1H#EVi
z5vICFl!G6VFONOjFW_>|O|?zzzOi5Q6(uYPmcEdZCnZx*d-T%>HgK!O8H3>~)pX32
zigJ77Ektc$i86Ypl~NL=NTDltOrX1qRDkvQLC!bH@(fA&bGjtRd@96XSiYq3h7*y6
zWqJs}_Jk~YxaP(isvdOuzPlKgBJjGo&B+l;o0(Qr{q$IEBsZa}8{Ebxb2E~y8;ZOZ
zJL}X0rWSzP#0$)kr;xJh{Ht0(Ri9cd^U;#R!5t>9s2XpmVl3|!+N&0&RzgC;QP8w_
zZ34|1Z<6EL``u6{YL{||C!h7n;Pypg
z2qE&hTPHZVbxbNSyJkm19;x}R_}X_n((9b<9S>zaKSLjL%+6;X{@%hf@u5*TZJh(Q
zYZLE4TT!0BHX##Lc)T5?aIB;@bfMO`ex;uBYrKP{MTqrbKn9`0#q>!m|D
z{%s(J>VyCf7AJ
z(>D$1iTwT?c(mOfbO3Vom~4UxfL-?Gsd2$ad`K9JQ`pI;r{^wr54`EogmGo2(}tk3((3WAuU>V)DB{yy9S?U@rKuwPG{o^(E$HW|7nmXTD8s759o+6xE5=91#&Wy!{M4SmTUP<2
z3hVwTlDtW15K?uP+?o4UjhD~Z$Km9dh5J@SAVbAJF}r~!1z4Z0qH&*GmG`b4m#t&Mif>j_-B_3CDF_TMo5o!-gLd!YFTopVE6=u(s~>wXlc
zssmlQpgTv60;}AnQ>*L8dO5hu%cFdYYtpI5e&;L9L?tAQc1%Ld><_T4k5qH4HwAKt
zoq_vgm86?ML+znC6fE`Aw}yP?@txMcdthM0<%u;yg5wubtg?A-E6+H(KnBx7NazbiWy-!_SU?fe76h63jqEgwW8&serJjeG|$M2{#
z79%P=GSI{mU@{rn%5jpQIyu7s{nRl~W|f{N8}B_o9o^X7Gw!Q(6F{wf{6?G#wW}Kq
zHE(pu>Z)6&<+#242z)hfZJ(Ve)buBY<;bKdYq_TZH(UcSIyWi~gY$Pub*WAnw*XR%
zbehFLN#s@3j;EyK=x7-kSU=pw-v4n~S?rD4bE1lt)}4>R_=1jH&`OHqw^}U@RcjtO
zr#w1;!mN{0mIYO8`uqDl7O$+;Vy)-9c2^HsmZd)L&RLTxDHpNgAr+q7r;FB2e+s;3
z@Mz5$9_%}!D76HHf|b9J>M0`aRPl{x;~Avp7s0%@@~>Ps=OrG}IDlV7BVrz_tv^oz
zMZ4VoEFn{fzsu3$_$qA@hrL8yo;h{zI@0l?Hu4+00U0cEe7xX-HYOaEbnrN&hR=K3vi|5Wm~ou?(j**>**ehh
z4B=y?&Z;d-4PB;-{|*#nxc2bWZQvUB={7?Ul{XKx?myuwb(s%>_I8>U!1d^K?{Ct-
z1@NbOv=P-gYY!!d4ep@0Rozm}SHXpCEB{#EclvDj2i0E}IR*iEq0fwGv(CAyxC2wH
z+|h2(^_r_x+j}g^CdJqmI$aiN>?mT*)+}YmgDs;2F+4-)yllriAN&pDK`(;|7N*7K
zYIcpW9;*c2hs`zpVt-D?j!Iufo_BUh$a#^r>bF{nV
zvBg!l>EW*jLOn+G*eq-wr8zdCPD}NcanP9%k^^Qv64C?K64E#36zc_q_+G<}_=GDw
z7dd49RmrOe(9mg#w-l?=C%YTp^F_$Xu|-pN>RqWpb=B2^&f=1r7uzVG+CB?9R$;an
z#37TOahJF{w0*9Lkcyu>lI>JV?`^4m*tML_5{m>U|7)=Hkgm#C6a
zvpTU^IR+-XNMC{;_8yt1C!=%(wsPz=vaIf%Ezn@amV^8|TVSAD;=-x@&L)RT;pTKV
zL2B#7$Yx>#x*xh|0=;>4K6Q$s1~P}jX+G5ncS4xP`b|kd#6A`#a{!@mKR2JDV-F#H
z`dW27r#zkN&jA}Ihh}46UKtESbC~bt+hNB`pyeqe{DZfsGs~1a1(Onrf7g0QEXN<+
zM0>j!j21a&;L!f)t&s#qxMV)-9BzX)dMv0eb5Zp@t3uIL#jkZWDm!I+la=K*8&z3)
zS4@@kHy)nBJsA#D@sYOXA5}e_xZmw=jWbxd+Rw=)>WoTT5fU5e6)s_C5}e49%@)ar
zy!6SCMPxYW+SX)h?N;kzZ`XO@e9CcM`TB#j+HiO2Uvsimr%hXyis_`Ms)cVyq|9IH
zW!8eQlpOpbiH}u38$H2Pm=}s>wzf
zRC(IM>{nd1s3vePi0`{=Hh+0_HfL*DD^9x=+(nq_eG7pzP;*LG;5&e2$SOcdopby`;mV5*s{p_p2-K
z00IiX)BLtZ&NHh)eS2GN>G*HC|9MO3Xj*|u2TJG1j!$Jq`VO3wdl5x<2uy9%!a%qF
zxN9nd%->jneV&H`BsPAuO7%n=rLF5ZhaLzC^T&k7Ic(u6l5WF4)hhUnv^nx2nm0(t^c!kJ(g}7{cgS{
zLq5gl5YKR-uxmCIn+-(v60?t9Errz
z-?3O2L6QAK%P?eemVCAm8dyF*LH^t4)x3j}V(ahuyy@0q1JzOmLeVM2zAgVjoW=5<
zed=78iKIT|;j+=)VC;U?@jj0+kmhZCl%2zK2qa4!G@{>En5N^u(co;^0*SO_{m831
zH!(0=fqXPsAW?Td@vaP?$<-q
z?Zmked;RixU(Y~KtJ`?m`BuS(d%KxxoTjGmfNpZB^WnDf!|73y5gK;C_&H?wZhK7p
z%)<*J0PX0DGk}3b;>gw|E$JFJ3dM=Lbx}*Aq@4Uhn5_WxVfB-)Q?KhVsNhLy=mzJj&QV(=VUp81PvH;W(e7+)Hhdp%0dM7>;QuoN|$H015uoR
zFUP)h<8HAV9s70~8s9sdPL|5>b2AWx+ZZBlX-uf9cI$*fJEqs*+hGYazo^|Qx!PCk|NeDJn~W>hrX
z7Jtg}Kxi@YbkNaEJH*)BKpAGobIk)8&EkZ18txthM@`TGuP(^f{V95Z+PB#(UU;}k
zM&}6lD;ErNG#I=w
za!tLJ!P!|GK4_4-b;bj6gZ9m58DEZgH&J)-P7+2o&Yhi(J@-zN6gz@0cNfMC-8r_o
z00;z<(CwtA+n;SZc;Z|NhB38}miF<&RQzKPhwb0=9QIk_dCZLc?g;J&Y}^ykE`Swf
z=x=xx&I}y6-B*Zdl|>p7ZoKPd9w2#+_DQ1Oz7x#lJMj_+t`m+1OIqw_4xHQhJLes
zdIeAcfPi5umzdKDMeTkt5HUuH*%6>s!HIC2&jqnk$(^JjbNy@_8avA3R|rbPIeazN
zRW|UM6hav&jb*@M0t!&9;*7H1ZNZxHY_Q%USTl2PhlTCUqO^5CVW=OaGu^bWd(`Pq#F_vdLza!syv2I#>
z^mU1KV&fPY3zqF$bg7k{SsnYQGy$J^@noU%IXpoCm$OR!T;_)ad90$jpc#V5C$irW
zJIykJh2>TYJ;e}~9VOkdYNeNI5=Y^89_!bpZ@VcQL*~sJXth%RlSL4h|q^^XD6NF7WA@4PPC-1w+g)yS@86-20A-)LzR(jP^F1
z=e128xIOY(A`t`f@s3X@);}NCo<TwM)*>L^pS9Wxd35#s_CKW0(pZzVqjPpk
z50u5uw&L|&CHjvYrn-6rDND&o>{BHQw+>G!=YoAQp6;N6C3N6ewV1+n;Wd)ZYP6OF
z?KS`s%FO|oN(CD$vOUohqJJPK$qXyC%~d#iceuf?d%?6Zg9YMI!D+;Rj+?3&W+LBw
zx;tD2$-30+$p6*|&f}go8TakzDbN-3#xqJE7uV&d5AdQ8M{J|>x#|Jd8k}9Di`pMQ
zhMG4tF}K=&tV|Ytinrb>`Z=Z*|N9#j;bXzSn*tsY<-@cr@-g~gIq=VKVAa03;aUmG
z)yOw|oJ48Id^SEgqiLtf?Iq^CMvLcH6%{7L8Maopwzd*yP3)nNRM>BgH~YdRcvDk;
zK=nh<702%!sQr8hD|h?h=u1);jo9rgXPPPM+imq+ndjECc*G8~7a?xueqBdY;J1RI
zsHoz0)f*Bq)UL<9jrHfly45(jpq{WF`7ucMpRmX%)5*5Ab!9A0PDz@;8)#o7uwyn<`h>etlRvz5DdpV|=l
zh$r)F*MIk+EzydR_H3i|FYvnCi~m2)`hQQrs*WNGim9)K9-;8MntK?6FSJ@SoBAKp
zB-{SGm&ps4=ZEXa;ln4e68dVxK)Z`Sue*zhdcIOEB_<|$ql{)wtblzi{PN{UA#b_LFuee={n*dlJB?N@r5DkBaxRq&egLJwOI
zQ!KTIRgu2=4*!%*XpB>p(|6f`TD6ENJ7$on_~(WzlDrad<8*RGP1&R(CMQpI2~{r`Ue(hu!+&L5!v|8$Wt2zLDJCDasv>s3Sp`Q_ECP
z;=C?Lef?Mc5ycAma|r*K@rj>QHXzo)CZ8Eg17;h?>u#OPph-j0jWIT6o*C9_SH
zNDCO-oGRl_hu+mYY0`8-1?qu_8r$?ex10PKRcz{`Qub=7k&DC%5(;c2B_Zc793=JP
zg80^T!K71E@V?ng@s0oGRRS`*>&}pLvHP)tH9pPyTe^~gd9V?zV|xoXnTDeitMfon
zmk)&{*avf`GhT~|Ji^4RzLb-$ZLj$1hRTMlZw&EK35vCPGQZy0_GxX
z{gVat_XtGr2^grdXWC>7ZdaCzbQOHVp8%I(`Gmh8Xap%D3=H+R5wA9b%s
z0prwN!@jd&z$dvfF>V4XQ#VhMvitX{C&uju0!ZX(D0D~;wQatrcS8B3Q@vu`
z&}AB`35RFtEBz$PfRTQw{=A{89p=goP5f6Wd6cNCq6L;`ozbE((SX&!$8v91%X8Pv
z?rdiFnvNXr-NOhLL&bPaLOt~lx;(8Z(g1?wcHw5;o91J>0)O{=nZx(Kh@)k@5LR45
z*G*UK>dg_d#OEcMyOmy*p6GyUsZiS*jrta5I#hH2jPg)LJ^62zh%JdQ-HEQf7d%3@Y5<4E
zZE1iw4}^Q=yWHi8FV)ablNRPOZNsYy&8;)CbFz%xyYb>cg!VPj;~yFC;>cFZ=giBgjD)WkHwGg5FoIf$=qY{aNXZ|v{6+RT5`wlS0K
zXjR=mP?oGGrhC%V-~)rk`I)ZA;Q_6#k-?rF0<&W;b*gFWBno71
zE)+$YvfY=224H{YDqnWnj3j`nfHZpUH(;NBVwsht*=I8Uw}nhwobZZHV{?z;Zt#V|
zzmet=<3=U~EGWxf3Od0}r--6eQSy@Hyy5Ko!^-i^zX)ziRJv58M1ID!#k&Z#I^(v$
z&mF=MfxZo<7h;de+d0BY=WWH#agy$IME1C-ez;ZwO3q
zoZ^64WCP}QTjxd>(fx3+bzd%7DGQHDv!S;uLeRFWk9)5Ep#j`f8^_#$lne7DnAWTY3hTJAxkFA5@W|?PGDX2gUXuj}jTPl~
zM{za@G*9s#C!JfvUxnYfd}@*lZv-zVK=+_uJlIv)KJ2B0DdhLQEPqj%ncZWp#Pr4Q
zPQ}k2^smV1I-BzxQrF>DpT%AMy`j9jyavJPJ;MEh9I9&Q4Hk!;0WP68lRKswe0Sg8YYbD
zX4GZZ*V(6J88znvv$PaXZMX;2aH0eA^{+xdZ;bc2xJ!~m4xl11&34#PUAme7Bvo}d
z4Xc@jhx7hOri?HQvd%qa=OeF@t4ocHf)Uy#sv%#}Q7tC)?SaCS{h>t%Cq#>sz@uq0
z*PHgvEzP1Yr9<$Zbraei_*L_#1H%Lr^!;CXDohU?O48*!dV_sFWKiM#&adUP8NDKz;V75>wW3fl&UcKVf`+|GpUo3#u
z5o;#W-Gu%<*5dxGlX>*`3_iHJHf2b`h$3!*FHFe?=&r1G2@8l}v8~ay!=>8AU0P6+
z9x;qaE=3-@@0P!RcWE-(3g!#&7O2GGGFs@3H1(U)&_7s-2~&6{19yLZLg%rw;q)m1
z*z9qA6I7E3MSS<(hm+6^er0>zfNk|m!i<>ms+gMzywib$1oQn6bvZDSB3%>Zh=0so
zCMZxO4X`j_EHaC-qFtiDxHXC#xiofKJyk3E^%s3Jzs#F?ie2v)CXBY7K~{CB1g)@3
z%>>kZmm+kHnBq_4VKXGuS=WVKPgS$+T!>W=M|6;mJ9W8D$X~TSf$fRv|vJg5|
zHWQpAfpy|p*eY?Y!i|LE%Yv=vyGKgJmQGPFXWPv~!8mVRCnwaSj#W|{*@1Y5hE}pD
z=zCvI0?v_1FUVhF(H<0!d5a%Rmu5RIznuO$4~X$hhGlowXuFLnYh{T#dl_2Ld;Qya
z1%JsW&APzV!c2=exfAKSzs{!x!|ID(R$^RMj&TO6f&`Z-KJYlw6RMp)J>4wj_F5+4
zy*4dZSLkOVJ)#HPSlt~d=|D+kq@uREvyHf7Qx;)jpvdX5*j#GDCJa?Y<}dwAN$yeb
z|H0T>gtgU$ZQD34QYh~3?(QDkU5f{IhZYKy;BLh=xCeK4cPXxc;!x!IcnAON|74IO
zlRetUO7_~+x1
zsa^03F<0Yow``m>1s3at{e(!)$5f-)gKt5!9g01ebdnUZsJd4ZkvMzmDq$(5z4&AH
z*7300?MS7Rc&fvidw^$NnwWXGn3&%jO7
zy#UG2CW5tVoolC{p`2bow|zM?ZEWH2!R?E%o%$YC1*<>M??~i3Y@VQHI)v{Zps2Nx
zAG2M#VwzO>uPpz3y5Z71adf7$0i(Q^n#iw(%obIv!+oBBE0#+>J4q8wiL(Oznw}-~
zxmZO|>dFt(6we%$EGQbUxUCpFY7c{D>HFs@z89s|tV?iK8e{YiCUzFRYt>`@n;(VN-QTckb}%udK`KUC`Ot*@t>VCVMdP8^}Q3
z)1JW%O->+1R$Yh&G#&7y=bE&tMik3ANHPp68ngS%ByyKvPyrC7c%(OU>69b#-x|91
z06GUn8YW5VWUlHE7rFgmDwJJfWodis%A3}e)wpf(FHpOAEO{F8AcXL$0BMhe|uM{Q|?
zo)Kd*?W}@sz>_^Nkf!>X{`*>jpNOda+MDnyF{+0%dRTmUwGOy^@Pc*!ZFk6$jxFaPR@>Kux(}5c==HPq9X3JTyi_g$(2M#y^1JG~ERBP&v!E!vHm^p)NN#8R
zhq=#>l9Smw+mYn}o5P$?Vy7;WyuOzg_huW%IVUz^GGg_W*WYEKVJ>su9+nA9dFpL}
zoKK*yv?$sumyG2bZhA{Pp+LsEzq8-2TQjWPt(3iRe!%*zDF;A@|3O|FjJLO*bldm2
z#6ExUJvep(_?kBY@MO%$JSZ3ju~1v8`iAuj@AIheuGFp+%uPL+yE@PzOR4VsIy>6q
zM$1D3t_!^1HdT)+v_Yy?F;gX)Ra8Y&hlY#L(6jurqP-oI7Itt-1yO`+kZPocNPHIz
zr#bGGYBnq`|^w+10sEWWI{tv3m
z=*_H!>l!S0=(Gqn0$;^43|SNkmVTm|M?;F0n0$>4yF#Z3ySFc|uy|j*wZux~v8s}1
zST1g*=Eg*c)R!jjJ>z4Ok_^_gkfUlw)E
zM@bRfI~3xvD>Fh=_2Tqt|GC{w_(0aq0h|uM+sO9M=|W&K;X67bHRrN8abj!4VFnFx
zmHg;qt3Ner*EQ!^uP+)Y8}NUi!q5wJ6>lUE1NRzEET_(5y0Ij1Xg{PIYh<89LL{vV8aon0+E{vGY7iWavKTxH#cF|0v0
z)_kC^kz
z>|eEd69))(wF8F4+>V{?kD-Ti0w~(R05Q70+t9r
zWs!0$OP02lcRg64cSlNPdv-Xm2jw6*IS@xV2v-8;OExUU762jW)2p%3s`htRU(Zn%
zuF^>G*Ea5^{=fN)(^RycWvB&CmfsY}&jXyk&te|DzWM86*S9)^SI8%M?uCUTA4@)X
zWdTo1yi+(O%FAa$bfRGD->VLcUXj~r7%H$*!PVkRrwg~v*h^va9CR@d)f+&gR?`^LyjIH$$kZvYnvp*6KxeHhnjc@D4
zy`vE{ZTA7~?OB<~gvi4ymhVb%XWi{2PWkF88VZsd`P1e&m*Aj&#nv~Oxrgfw676xZ
ztg31(&mSf0ahWLGS_sChYVpS6|K&Q(Dfxzd6dZ`0t{4@zA=iDCgZ$
ziz~If!i0BN;=9If8So`2^=kKctIc~3QOl??*iv!j0No$=#rLnidt@7N(*?pd4(Bjn
zzhtoChbfDs;qioszr?cMm>DzBJ#lSyBl=X+m)t}oq$cQ>1w_dU#}J~ibh*#A&kawh
zU#@n6`<6F(w*pm@g`XhxP$$-b>&mRuGgJxDuhXF(@>xj7~hL4H?zV!=fZRzW%L
zVZ+vDv>=cBf5vbhVPN_GcAjo>S-f7$-Ob2>A~p
z*+T^m;#tF}O=5`%21Wu2^2Pa&{qr~2|6nYfKh&QWUUDPYhp+8f@LW}@gXmO#V;@e-
z;leq2i#Lh3hb0Nx@6Q;Sx1#JQlTm2#k}A$2;Sx}@nRxxPuhjZ7HoIXhJvEJPQzIn7
z$ot!~Y3!z=yj~=3EO6X96j}d1I=WYH&Nyk_RG@b~`)@9%(CH*B6()xj3dIPD;3fvO
z7bVP()phzK7U;bImE8I(buUzdwEa-X9ytwRk5x
z+gd~*71a!%B|PDfN?tx+!cSDCX9@Ccbab_xN$yGg10Wyjh%w7CA9^*eFuD5TXZLJ|G6;V275ZJ(Fi@r3%LgS$|_ILRDQrfG6dst-3j
z_>Anp18=Mc!``pPAkQWT#jtp52jB|pf~chZgpWdiAR0}92m?mYs5j25jCVk5
zgoSPWA@zlr>Njiw4)`or$e|9xZ+JB9At=dr*uQ9RxUQI~bDYL^H(64ONOw~}lkLz$
z@iNKgbud9@yYZehY~9>x7XCdSc_Knq+;*Z!Wg>wlG3m-ye@`4lM?)Pr7wbu`9-zu7
zJy*E;kqBbfKqAP!E(~AqvRzQq6<_0(E~^KUlWnZra)D96dhL`_K)IW}VRJIFcBJ&P
zJ_lt+00>fRS9(MWesH#LiZF_ZSN5rw>*nHP7~IXul0<68LBNza!S-mnY~iXfcJctT
zO7NuViqA2Y2abG6en~D7E8@L=X+0X(vhv0=qoh_bz%ag4
z<`btzx>`%tRgh(6NgU9V>&|f@{Uy?TToe58;fj6x7!fmXUnx1^pE?Kl#{N7B1+i15
z&h`mtY;mw8xiJwn<2$}?*g6sSb;z?X%ErsnKk4%_1P2G3TNcjgWUldOpUTS0z8k6N
z8OYQ00Jputh2W$tdD%o=-=%d@38Bhxv3v}&qn`!``iHEmCso`Ua_YU>+C;jk2%)}2
zUQE?fKO*Qrk?IIqBC@{mYH32rQ5#yvxZHNgb1@sj%&=jgxRyfo+e9xn`UmKl1Z*AZ`%O@OlC8U}5I5-4KFUbEVq5v2zT@jP
zMNesIjY7fg2NqN$+Ep`Yihumn8xrYqS|eqOPwvb=*8NG$w~VCWQ`eu%K5M9{<@W38
z7Cp_xnpb{)B>HjpM5aD+Bl{Na*U*3EcIa$g*95zM!6DbEDGHRSQZTj`o#O!!x3fQ{UY@_higCu(<*)EZ@^
z)zp~hOm;C5SB*3O`-lJqu=kFtOK;>x@mUlwyAkEBdtW|!;5N6o#L>jP*vjQ!@#b8xMfX4slfq;bs
zKOkoNq0v;;X>Z%`QHdO|05?g}`r?}7R^Fn)Y8^=2pMn2vpmtL~?cW6WU9hcg3d`5I
zc7)Y#$Ja2~XIwxx8vaDxylhY{arRrk|I;G!MMRTRn8Tw>901~ti+i#^i>>6f2|FLD
z)LR>67$|>-r&73&qgdk6{|_b_slBzDD}M8D;w?^{Bn1Y~SDrPnE&*wGRlaT+PBr%&
zAkW$J>Vx~<+zO~f!zhaQ8sbTVFPd1mS4Lh}HdsU9p7Z2MKU|GydMlZ1W74gNK$oJk^ef?c5}M$#Iqs_3?0(y
zey@jf=fzSF09cIUneMv#TxEA<8L|Fj26PJC`^W*@fY|uhuV4yR3(&hR9H~S8_
z!6rld!zA}0g;ALOnRq#+gG+Y*%g-HopK%23Al)w2h|XMT1=f+&$$=3FR$uY#VYqax
zPEbE(0B^X%H35$pFSZ^nPI{Z^LG5;LD_<@U2LCE5m1%tu(kWL%fz|pk*GWdcGQ1FC
z3kJLh+$)M&bXK&KIMGQ1t#6DhnQ|#($M#o;L}{hI77CtPcdG4MFub41YYR&dYW!YE7!N_qHFI27csE-Zg~HkAB-*`
zxE7S@MsJx-TEDBj3J!SIj*50kZi?0~64DHN5mZ%8nfJ5@SWb`$i*_-4Wavd0%d!Xv
z`GUdlQ59UYV#_>CrTW)1iDFlsOXJ&rr9(zHSNtF^UMy(o7NDt5HdTp+0|@P@8IuO%
zY>5P7)ODoQv6~~Uxdtj%HvG)2n{gJd`L!|Sy-#smQlUsmsx=gDqB^EKg@q#kwyeoi
z9nXZ}`)A`A^%+`iI~6cFbXD{VUCzdXy@eSjO!^A#=F!$$sME$bX~@P1iT{ab7B?2x
zh1wA1EzN%DtQVFFPdZknjsIwfwJ6LD{6ayV9YEFuUFJT93dATvn;&kdm=39sPaG;J
zZ4UJZh({Z32DNw2KB*fqu$Ogc2hN>VaNQ@xc
zq}BMTjB(KJ2f#YyDZrm!z_(5XwNAWrj}68S&GduB0_E2RlLyLD7{<<=%&f=Yd{3_;
zR7`o%IX)(NlwK%Nl5weOXLb1SH$ja~#i
zhssa?TxqIu+wW31QNyu1lU3`gIYs=)74!Z+bfXHiybd)N`=E!T%7q*-nU@`>ifV!hudA#60(Zw=b-Vdr4qIyiwU*2!xO|SWo
zmvX4Fn2(1l04M$pCTZ-Uh3Dw^2bg_76_FtvR94~Dk?bpY_7BU;lUMp+Jf5~nceZ3-R_k$5bE)R%m(!l`Rgb@Uz4|`iK%J2P--*vrV
zQ|aloZEJUBY>hqksu||uEfa4~AC-n%F1Yy~O>|Zt&H89}Ft{kBgHLf^&M#d#eou-{y
zv{>H(S8;%c04K!7F&7A_Jh%GDD8nx2mN4|2QiPL*yMPTTnTuuLQZvy4p9CK+bsGs4
zwP|HN&F6y#irsjUgoY*R#-KMIIKPX0JnCkqK4s-1G{q7zfhxM|sVa$roHn}aaXM|-TNFF{G&rN2p?|K<+Q3xU(*ZgB`7|PXAMnVUHzxb48%=MP
znpFWjJwIjO-bkj@&;dp01I@=qGBQ2h{ZRzeHlrtYUfWf&`1Uy~4x
ze$DtQMc{hsC*OVcsLK{l9yc(OTehvK>+~w4zYZx%XH2-A-?uKpdB&igpH6-LL`|l@
zq@2W-y|a^lNR4~oG32v51J9ge&X>peclH4O-Sj7M`nH38=Ni9Ly6f8f+4AMO!mpnb
zm_a~^^4|bbScBDb=sr!b9cdSBXT_aaE
zYXVqif6kDmS
z%IQWvrVC@1=V$zndeGa}2eAwPb`>vQr+J+gV=qw?4DfLV
zJAxAyYhUJ^LcTyp_1qewS^Le9j$o?SAJSpH|T&&AIxV$TNe4alxU5tJ-i
z`Q-PN{~5O*QXz0F*z>0%u7!I}Ll~btW3E)$$8xOQqxn8nJK|b5zcefMr}lNF
z+s0K8^pWF6rYxh)^kYw1pLWZ=~dccIGS8+gv
zRsM+fmD5D@hPyS<1y%8Iwep0CmJ&>xPbeRVT&odIDIlUNIWkvp?^S+Wm~6MbE9=~=
zITSD$Ty-cHZV5uB%!YyETu~KN+cuSbcxP?6&3uM9tv?(lE8Eyp$MF0N9SW3!7gey?
zlPKWP_~;;|?6$wV6s9$aJX192U@JsU%Vjz6Tr#r!HkYxbqbdaaWjS+1^EKfoVy3r80hejscgoFjj{gu7_ZTHmyE-UGu&d4pht?-wflZoYv1COb)5dz
za_|!8xHHOp&)u=+RNq=ca}D=qGC_?bL>b3022*v%d)DGJ<8XC3RGL&Inr)$?rkT_S
zsmCm(cV189~Ic4^^V(anU_GN75UCisqbZ?J$CGpbyo;U;`
zEsHb`ebn2D_k24BJbrOIV!swRLdy;+cCd%Y{E3JSZwmSN%QMka69(n5G>f`HE!51i
z23?5YYYBV2ADG2I8`+gk&TD-vL`xPHY9L87A*BFQ4aPwL(oKAni=|(~G@}<}bL{JT
ziesPx`Edmw;U9&Q+HH)oO`oakoR-^4;1O%f_O*S#aK@~WS>GEr?x5A_9z1-4Kk6H(
zJ*xfch5vQ)!`=bw@_>-{7$1E5?A7=IKPz@Amj9Abrvdf*cCO=W$|Nb3eEkmwm2nRI
zV^@;o1<21@sW}TS39=LK%fc|eYdHFfO%bQAE3+gKjA{6toK=5O^3SJpE)`N9E-sl+
zTTYg58i)LHTqt4X_IF|C0{G(D0Y%h`=Xyf24$5vrLK-Ap>r-y=
zl>OaJXTg+*Z`Fi%)BsqXNTpa*$a(SY#2n-e|M+x?UE`$-gIQ`ndq-?MOu|{e{K-
z!&Ak(qL&hrjK2#81kQ{URqBHsn!1+MzQrkIo{QR=_6Ytiq+MxGGFOs^qyNnH7Bt(+
z$<2ZP9`y?Nmzi$3H`c#bzf4wzwsDTZFinb*?&pgzrJORL*S=HjTwpXhhr%Qp`hmPY
zPP3V~OZuoiaqV39@{4?EmPJqgiW(rAAWwP?CIBe(u@uN>KRy?tSK&f)l+l*!}{%hi&;VCc<7o)5{W+6DY+>ze@!DRc({Tg{yYncni
z3XHtHKQ+F^Sk~UB*3LVb)%a+Li7!8$3sJc@`b&K3_V$_F>>N6dvNBVgm8}YT&~1AD
z7q516Kh7{&Q!d`*Cw`_Kr1paG*yC@5QWCEhL6@Z+6*wI%J$XO1RFbAfgjL}g9fXTL
z&jzU54LZTBXpd77xD{Dd|6!j~fznUsJr)k#{IW+#|
zBNXy|ylnCP@=^8e@W02K|4;GU9G&+}NE_)6%D**$~2)0p=AW
z)C1Lro#t#CW#{>IgWQ=g(Zv_j`gudNVedSk&fHk)J1K$=?3tYx*iO5lyBYOT^dnr#
zYD><0UP*50cIl~aOl3=WGj?OqY+EM%fZv{`bH3J7Xn%JwjeCT>T
z!-JHK9G^erG5ve?_e$8CKmR#B_!m5+mPuibJ^16t;ex4=!|WbVnb%_gS0)#7&EO>K
z+lU#W-qTe)-Ct?wRRq^RwN;$UbNk|NwNJZpRYPnNLSr6;ngvcDpnU3+dlOIe}u@uRw;2NJ>yozn2N
z#?r=s5%`)6NjxbVIvaW-hc;~E^ncabkG|-k^<YQ!CDKX}#|!N1m7P6^~^ml3EE9JTC=6AVp>2ZJ&muGNW-tI{0VR
zofiUp1tb1~1NPm6p8M?(ClNyqv5~9`3rrNec-{oKnbe@A^8HQ{d_s5A2i9gn1p{cy
z7RAa{OT<+q0v_XfH6p*hwgVlQ12SwOnGP;gTpaJwaHV-dB!T}LdVY#Fww<@oJv=>Y
zwV{4%z*#VVj93D5swlOqidyEmSTj`F)*b=V8=&B6umvz*%ZFsVJ$EZ
z9~jwQo5|;I+ez@`q#-z
zV_C<<9ukwI#_*o7-e*}YHZ44Jox*J-hJpy+;p~jEilT3TmI!_ka$o!|_si=Ek25tjlY46`!k0B4he
zFi41oCl&9ppro5Rz39n_GG67StxCu^%jMf-dKID$sSm1oZgnvZYr8UvttJybSw<>N
zSYLdkzt+r8Bf!l+ahM?XRA1lPY4C3Djn){o{$!Bir%t3D$6K&FtF!5ceoFF{kJ{NQ
z?Vv0SH*I`Q>oP`_+il^fzHWl2T7{3ae0C_%4JDEATb3a8ats0ELs5F0nQhYE*;&xB
zYs)p82EoPz4J)BJLtnFP55g&vWD#65DdtqY3*DuGE))wtF(dUGz%c2PGRj|AwI?A0
ze~6ET&%L;z3!11Ct%<5UA{mC~{`DFO)Jtr6qCu1ui7ESKf>*^<$k5qEj0+|5ziLy{ZwX1+)n9aFIZE@^s@
z$Bs&A8i0>uolI^zr)Peyyg?kjIYPL;mPiV+E_k6GVep6`20=KNTGLun)BlajPX`RyP6|
z9g(;utg@Q>CFOC78OKREriv_n*9qfvKf36XOgG6b#H_b2S*skcUa?v0bhy;N%fn2H
znIGlma8zo_!!N638=zA~S;ih!gDMJ`aJCo&!QAwh$ar4yvKKHE|G}tPblnUaoD#Lh
zZ6y$0TWT1p2X#6uVJ`5@NKNQ;t14_&gqs)-nMYa5ahAc&Y7XZom179W)4T&7@FPB5
zsP`w@$Dk_*&fI0ZzDBC*mNw4-(5j_)W$p+hrSryyC?i^`54<)6{DzvPQ^qA~>EtPK
zhbxG_(hR(<(a?}P1h+8zE-RJT&4MamMD)lCRKKcSk4c1}K#VAUv#EV>Z+fF%aOl5N
z=SSF_yDMF%Q2mnPfQCTP4%uEbyOui}MS_~bDOM%z$p`du{syD2f0_hFgK5`%!T>J*
z4f?_0p?MLoDr6UfTkEyQRw?8UbD}?I^hlSDO?a640P5IoRaBy8ExLL=%#LkZvDs&;
zenvP27VI@;JFf_FKy(&0RJWpZ2!DcgY
zcI<6qaDHjgO3Ou$O)Qi|RSrHaEgxFjK4?{J?07e3@cE&qXM>q
zcg-wNm@GG#{1wPi7{ry&_F0pl2wAfoC5xk|evqK{G-jWGss~+i7$aBYpQ@%4)9>KL
zbwVOPrtYbHlOisg^5Rtgl_qZ+Eoy9Nh3^?*Ln{m2an=!`Bw9s^aqe2!+!d&Pr9!R8(dF0e(y}@huK^
zkSDVPQ}89`&ln-hyVy*9yf2arc5O%%xRsj>U>XcP@vpo*yNM5;bi0kb0tRQ541rp-
zLD=)UbJ}d}BsszWk{$;m*!B+t(Oo@Jk&9-6d|mK9WS~tJ0iP(fFhxjcci;TeV&pHu
z(LV#om4s=}Ni7wzI4UaSz1}V=^$5!5#Rtl#tP;y9
z7K5kyenj9;fAeA45XSz#*(T6^M$Ia!dOWJBre%OhNuVPH`^_a&_n|Hf!gd{e3%!Uz
zsBoQox>16`;js=kz{Mcz^}SDfpTD6SfCR|;xs8#;*Sm)($3qOCeWSO|ofG@wxnMUf_
z3wV>3HF-LKp^7Z)X^1aFFR~LPVbg(m=q>AfDtQ^+@s(Kwcz|l}?1Pj(&ho{NdI*%B
z2qhk-X-isa8H%IB3*}g`_b}R3TQ{e;jovO6Ke2_O2|$d>%J0H5MFO9QhLJ+eO&@WN3d(0R<#igQw42m4
zWW;X?r-l;5H4`2a*(Ym$SAw7S44nIAw-8)fJk8jhUE>6g``ra&>WK=Co$Ba~D7t++S1WnCwWxXUUj2Gbd@r
zle!i=vbK@LSm8ZAH?Bh+1^|H+*B|2n8Cr7RvGhgj*C40Vd6wJk_;&MOY3(#DDUp6E
zc~a6QaVn2Wfq9wBbEB+woE9Ya+M!b7fK$TDCu>X=u&vmJRyokDWkZerPtu-Cbgza*0KjwM7-O7sQ36
zth->%g_a7InVN#=iUw_tR0HgpHoqk;+)pHRDd{Q2;X?8Nc_+hXtXH@@J-UD*EW!!
ziNHx-NeWu9xW4iZXeovzI77&25D~;#09aEu&tME0drArW_i*0u^)Pn6==nN}K6mkx
zG#seDZxIqzE$^0ArPOhbJSO234a@u);^RXM&4f$%6_@{#>*tcvW|ZU?Jdo1Hop#X@
zXVhfEv0*4xH<()-4qNP@*p$>bKC9Nr
z4qQILg6c24KfP8D!={a&(|^huDC{q1W#!i7ylLMrx^tNE(rWrAb{8c`n9D;BVhg{O
z6|K@K{aTh05FhE{N5G%;Pp%wTe#%w
zSZe20z}#fG1@)9s-v9l5{f_tS$-i#>@7;LIkK8?nryyXfMXuI*7JdYx^%Pu#Qra}6V+rI7uqer@c%&Vu9yDH&)dg$AhVjq5Lgf19j9IkY9qkWBdqtVTms%rH
zZe|^!0tm5(NId&m@R*zE-Z7ehBaW@=?4wN>N<%_mNWhb1Me!njnU->*JXrqRrbAFd~Ah0;4H`8!Pw|TLwvhR{>AM|
zdIownr3fbBiTkKv);S;C-uc7&-hUAP*b{tzZnen%QHc2ww%L@qCsUGVe{8G~&7DII
z$ZKCPyxep|#eqkH`_wbY7ve|z%RtW{9gZLxJJ82f4m~B2e4-6
zdc|+G|373~|C4^5Ig7u(=H0`8;Hq0rW<6d-EC0<46XSo3=ga&bJOPpGgsfDE=ChdaZdZe!?DfTd0ee^psrKk0mFAy&0+e;7MmPW;C
zBaLtRJ#Gj~(fpZoP3LSlf^>TBlM?&GZD3YS6}Jbi>DJ0G|G_}t7og)gYd`uA`8EZs
z5`2ARgUHaY?{HiXsDe~XRHS5umRA;l+Hsgxu3mfz>{oPeH4kOZ4qXtxj{3|hDle~Z
z`wCVr`O@c0dQmIw<;%@rc5%fIO|2LyUVC?PS}i3y
z&+Q1pQnTvdr|rgrds29_&1@79T^YKKV`orak`+b=LIga2iB;k6?JgKF=Q4<$yG6BB
z5+%bqI6ZBju(k0q!Bq)ZOU717p0;xRoScTMNek3x(~lJ~ehE8%g#2b>uXcP;vxZ=k
zG}>YKxhLd^xfC)S&K*ij+h-k@KLmR;s#n`X6g9fBhO_>InMXv{c!sk-p4H}G0o-$2
zaCYfM?*!C(i^_==(XIxZrIVvA;Y3jwZU%2}VB!ydJ1t3Ckv>jSVXCIRx|mnV&U@af
zRTDH>Gq?Z|$XnYP&z-K`s)lIllE7Z*fGLIGJdim}T}E5xD@)qDGzEseTyg2y*7DIM
zwIpC?bTyKm4eDQ_U7+3d&?tvG?8W^B2bHX%VfD9IMEoe=0;LXwYgP$BYBcnsn<`@S
z7-3z<{Nd0!=btj&y7GCQ8&7;{l%;6Z&z1iIHMGN~#3*fp(shzzWRf&EcOV_YZ4p*q
zse^GZTr|L{vJz!k95reZ{JtS9WY0qy(4hTmGk?v;YC8YK!!fTUE6$AV{sM3r+Km`q
zsh~Yyw-=C6(f1_H?wm+P)==G%)>QLl&QWt~3z~cCXlt2j)^J8i(_%&BJy}e+YYtS-
zGGtQ6j06KWe&-rUc86OaEQ57bNieX`1K){)GO6AiXl>;mOjVN`__`gwxd`6akkpLs
z82Qk)xTj>=U8H{Iqvu6u))rY70x=imX(kCiCM~bDkc_nSwO$CPc0DYQfo&j(bTPFx
z#dLX=>hT;x#7;hV(<)0%l~iH@Dzbso0)gkMan(p?g&)t>P92n>YAX$to)&#s5fz-l
zu@{(+gN(JOdjsoI;W(VTrtvaAR?GM2cPuZ*{HY=TW}3fh0u4Ww!!BW#f5y_uStaKo
zvmJF6TFtMutZl8KjspyGEfFJl)VV&d*-cEfk;5LDCeY_j&f
zWNIKnF0N2Hn5!WhPz8=Pc^_~0HA!VWSYV*LK#Z)X7c+wzPjxsqUg&+@)Hj;G_U+^q
z`u*L0Gyhl}Dkfj}`S_mzoNLYs{H$N{vnwg7Q}arPDN$VO7UPip@%F}c!6JthkP$a-kT;zUz3Z2*Yg`szG*-`*lVOaKi|N?s7$B-wN=x!u{h
zAJk}{ag0NmTKuHx
zy`z+=G<&)jzKcp+sozR^iE=)R`P@Z?8}p*^Z{^1(k8X#g1Ie{D(a>uX)My>YDsA0s
z)_tmC8P)WHCu7b(gP$GjGx3&LV=%7KCUDi!>jXZw`Edl13B??8~ppnlcGDD8{M@QWxC(IZSBnM
zKA_wCXOoF8_a&XxO$MN~qw_84!cy0VPrWl)dk?TqjZJ^PK#
zj*Cx+NmE*dtxaqot@U+j>LMmpOH|CIG5JDlT6?CvB-sNIfMS}x18ZQ#H
z8W{~D%sZ7(F)kRJ3c2IivZZvB98z6b8EP1YK7zQ?aTdS?A=$ZyPOMAtCi{pn{v>~)^Z^ZQ(j
zcXu5-IA9$-Zs_5-2=Z%1R;eKT>~cn}-#3XCmcl=%+41H|ZPkYBSHKP$>QJnnFS01F
zvF^(C#gG!S0siKCc3r6dp}cFIIF>|67-7NJ6%D75Y$ng)=jM)+=_v}VlLX>d`%al}UB2aECJ_ShX8(0;@5;7m+PlHymT
zs$}uaT`2=PPUv=TBTzIBWvWmP){QG9S~V=pEmF4kNk}xE;oEYXP*2;Sl4<$1rm!_P
zM!HZIX}-H$JR-zXr%;WJU|q=%oR2g#9&UEhBvoWI0b+P3K9$SLWvzUl^0zN4JNp;|
z^gINvfx3IM8~KhOySr;^ICVO@&F-?}YSJRI(nOH3uPplZD*5&_w8vPQnJwg$YibT&
zBv=G<&w;BD4@bWHb!YU>Z>P(!cd7+rTw`TJUK!)x5yaOuU{R3eS4hB}6{1JGXu5pv
zFf!>$wB*qn@?|(_8zLm_?<27xw)JS$7KZ3CzJZ}@}ns=vilCQ
z@qc}Esc0?j?}E$oGY@@h_C_QRqWFyh1TG(=*nI$GLoT>+zrK_k=YzDbY3vdzQvoRq
zjzqE25m3JXOS?UMkp)g~wWoNick*&72QbAo{;w(x!P|l}CoPv4&$;kmcIK58BOW7PrL{b9(9oJh1IRGxY0Qgf#7{0h;&Jh1%pPAMa}UDF
z2sxk
zNwYXzTf#(|7a?|fd(>HM$9<*^e0wsK2(YWIVY}*$5_T&#d=lsI<|m8e18O
zjo?u#;xUH-)Qhbc=|ej>8V>^)oYqOZm%iC=f!?HL7;Xy}niTtf!yroQkqD99w2X8)
zie$P>b*{{04=tv53?^|&>R%+b0YyVK~Sy~vENDnycs&VsAWu{OZUvvEF>^KdLl2
zwglum)$3`^V7DWM(=>v5WVT@wquN|hPQqw{sj2Pwwl+72d9NF7wUy@Erb^7dE2m@z
zFNYt$leg2BE@-Hz#Z~)OFfyE9-@JLoB7R;jaj{hTY?>{t56yC(Y)6Yhm1nEM93Uze
z{p2ETT5{#eH_CPqbWFDQ@{9kAM$7upg;5}u{FnWvCLA~3rd=94X+C02fU`CvCY(vu
zT>gttmVZnxyvLwz<=gsJPx7$Flu{O@0+QmUjtMU-o_1LY^H&@N1?}snsy0LG9@8p#^AtL=w%UD~qQ$
zU=ye_kl}`dRq`VH52n3UX=+xwK~x%5F&nH6LiF2Ek|wq`9>7e?SS}KU_YpHYd@(C0
zHjDalj9|FsqCMaO_Fxa~D~mQ{X08w&C_?!mEjgEUUQ^b;a&%)9*;K)`#(LW6)^Pkd
zH#5a*Dwk)!GQK7R+8S@j=p>G;2QuKHnV@xN89RyGn-Zk=BN$C}F1R~ZL;aLT$W|N#
zK#PMg@~!Gv3BQ+#Y29zfdq}Qu3|G%9RMK4n(ED|_t5-LQL&eGZ}RmSb=n
z&{I`|oGrDvjy%Hpza2neJ84Oic;^eM=fW}2s&aGI<+o?E{wvvIuMJZLr>6QousA8r
zALKyuSDu7h(suwWKotD^V&A^Q{)nrTJ+V{P`MsZ~-^rMH!hr=yB3%9j^sL8nO78~K
ze|B+!e~#W>7b8Ox8%B1YqD=!*P0C;V+WQ@r;H2)#B$h9@_T@fu<7ulvqdj{jt9Q4=
zqu$-9#p%PQw47DA;FLZ!j;5)u9X!8G&>J8GX$!MEVtCNUcI@1u?XH7Rir7owyGj2Y
zUSVp@pu+4K)`0?)O7`ZGi26iCVF{80a7-dY@-m&6yC7fQ;4v`#yfIr)nxN!oO-~@!Ex3sPOkHU{7gp*iDTP_m6cu&7}D=e6-x^G79zU
z-FQ)`HEoZ?V)aCaM|Xz@aEcXxN6!70TZ24`@W4itBu&6}OP$xgoHOZNZuV}7ixx$pD3
z&f_Q;0{(mlI-jni_nN_U_)IwnOTvEpnHLM{hjT9X0_y!}aT+^H3A|a}mI|viie)Y=wsv5oZD-QygW|^QDjrVG8jgOTOv}gZ?0Pc2wO?*}-j`;M$
zwRwj{9tNX7!JaNb?en}=JFRF-B{&GhmGIatDBOqVhcYd-uX~_e*C+ohNlWY
zO{9_`Sw_-VAbL^VdE=oV@V@0^&garQ7KUormw9yq=tXMW3Kq{nuM#)^lXlhJL+&@@
zZ)%)hug*98ok;>bPV3(ixc_kx8~=w8ad!sMpL@%@^xq`MOCA5S+||@yK7ve69YWg*?Bx7AjJL&C9X_cuiM|Cw*fB6TIe|INmnS
z-IIzRk`qx9qCbB}o0sKX8j1h2DeU8Vd4j0TvhQ5nsheL7VVyv`?mc{b3MlH3OE_vM
zKKdl^XCjbiAiuee;{VhUh07L~_^VvM^`HDD-ukfTUuSg2t7%R_v^yeV8y$B&)&Cy}
z^Z!Y)JV)|sVAFy2G^m$+e8k*9s=;VoS6O7Y7DY_gl;f)6jHhx4NR7>)KoGkZ7+rjN
zUW$LWhIp7{jzdC7Qu(|3+rrKjrdqcN9kt~C(NzYl
z)bQ^IVh0DuW*)oVuc~rGTa_mw@7k*hh3rZjbmx@q
z%mqK*ZC~+;s;*=uce7hsz0Nx>Eswpb1paC-f#!o_%Ym`ONtqzPh
zgbgVm&2y0pY!#T=<;BjfK9Rd5AjS@{P^0oi#l->25)f^E4oLhSK2p?wi%dbRckg<5
zo_v;Lk!4DCH1gIy&b^R%E={G>13j{jMRVEJ?>tw>(yD7F4^Fx6Bc+ZVk@gRN<`uFZ
zgixhAsm4Z_r!jN5eBh70Jvq-5sBKwIwm>oUZYc%u(#eYe(=jA=uxy#;DaUY@dj;Ic
zz^=_wU&HvV3MF^F?9sMaU0SD|)4ydt^V9oqsjB>Xr8bekOjHGYOqy39;qr5vXNvL~
zw!~@Sma9RkcQr@6rRr#jcL`R~D`BkT+{sGp{ZMPqTu#$=bL2W9(hhNB-(*YOLs)x9
zFN8oc`&-y{O))u4!+j<>BrmjkI&X68&Pa@Qch!?z&IBG~MW;uoiJiJM9R3lBYRCs;S%w)zAs`z)Z{w
z_m8|(JtSQDtz-6T_r}v)-`^m2?)KbAWxO>pe-2#BhT4LwcwWMeR+x-p^SQ#WG!++c
zddzQuamh$GG`Ygb1G=hnyaSv39005tejC*9Ro_i8;%531Rn*{zZDEqPRldaj`wv$>o0TrXIA^&
z754o#{bv)E7)k&^*Q0nCpG2>KP3C&Hg0
zSb(o|I@&Zh<;l1M5Bb!R`?Jm)feh(QzJwu&87DDuqifgmq&Apsk3y~<*r{v0XXSJm
zS^B7o!iplTUuq{LgYj8^6N>FS-_(Sg?LT;_^k&kw!LCQ9&MV$2s!O2JrTnWW2@-UV
zcI&jWHUnTLze8Be31n3Zc{`g8+%l+9z)N76$4&Dqf>8a#5zA`rWG8DLZ$pt}OC3s4
z4K_Y3LUC;T2snLtRmM@M5+l-Qk?bkw(P_74m^5EcqYC~79uq|rdIkG5HHr)RJKdS<
ztmT&EP+gefo*yjeIsEFB!S7a970jtC0-nf=v*#i3z!`%o0obG!PW4sxf{1wd-!PSNhOV_&j0@lz#<0mWK51-x@{B~A)0
z-5XwwU^(WZKVjCa@}|rLEv6@>_Bubwuz`~+qIa1^rE9vAbE>xn$@fkI7!8_3JL22W
z{bNlA0G-;)1UFQcS<-au-SpcP5c`G`KJ7qIxnP~7KyCd>P3mpkV>J9tY$_D8AsRCW
z+n~>!LxZO7h-zJ+J-42;e~E7{+34Kp=(V^0^pp&CON#O5mT%P(T38`N&VaI?fSZW
z@(@6<&6BIzHHKH3U8RP2l?mIwEgx3B;E^&eUBBN(Tr5t`0+_W{w$^9pV_mUH%%>LdldEYo1~yKSKUXcJ$2#-{K|6(V
zxGmly{P?dI>8e#wtMtI#Pr$<4*1lr3iJqAM2Rh;XNKxj)=MT>(f$Yf%a|*19(wG`5
zB9{P8NerGzUMQ#TP8eV38|tkAc{LaaT+cvJQ(!d`0shwx`Cv4D~`U7S58>4TP*fIVGe1R{DxNgjyY(qm#4Lt?YehBR-8$#
z#J`EC;D)y|v(UT-X^M8l3%3@URm579^w1Uys1K+g7O&}&$G6!1yS6jX9pSJ2$U>et
zsDvt$Rk2%HaY=Bhu5J2cp~{*nODCq{smWb@(k>h9gT#sNt(xqLhJ**ZCfI=^JVR8$sls4u(nJ!@luZ0mHXY9qyP+o*r%
z@?X-c7JIP%mK-bEd?#v6X>NGTOjQ4;Puum+T#czLlX9z~OO|`0;7gX+Y0Kb^VfVEh
z?5Z`d=+nUZHC9$#nq-h2YD68o*5W@zGGUMm9dUC$eJT94e%VORC~EbPpv7$TCDck3
zNn>$AUBt(scxvxROPif?yiCZ-;)nsNgl!JGy>bcezjL2O05M84S0;QOL%|A9iE1iy
z;o~eMm+v%QA9?cV6@B^%IZNL(nj{5HusB|hnR|WZypJSPri)r-36n{4pFz#!?LBVS
z$o@5Y&X!4`SQn*uqg$;>a9i)_0HkH)n}jUJDOgOI?xa2|ngUwnr^Xfq`13Y~9=}9K
z07FxY2Ar(a_IK@0x7cQ=cx6pX7Nv0CTsjF;XlhH4jXk$>rtj>Voo>?{ib7#VQ$}6z
zM|1DON5BhcfH4r-l4frJ6O=897AegnFf8E_GTbn6+2g5ADaoI39mjXoQrA?U#6n9@
zBQXIS8)<#5r!u2y#7jcWFK=|ZYsgbigQedwN=H%|WUzl4bngIns2#hJ>&QnA+ffC_
z#gpY8Ng%CV#dBT-c4QB?sW~Tp_=Hb5iOBCFN#JF8C+w
z>W<7U>rHn2Y>EDrU{`F1@jH`KMrsZn-Nru1mgt6i?J0H4z#Y~r(m%c_J$(h5wh`O9
zg{~1?&{)OMHLF+ceA@`MPl%7FYg)Q=XAVvXNcx#^W@MvePUs}
z!cdA-=!psi_bQox>XEfSNdSpEl>uh_x_pXjTzvR7;@O)3>t*
zqND+f1TSL8%%||eaf7qziyN9-iFOmm{C8~JfF7Uvl~%q$+@O1_J{=@A9%R@dg~b)l
ze7xph>5~LVLpOB7*=oJsBD^04|5{C^ugqD5`uIVRn6XY@^`g2G$IcD~7n4pn?3vNJ
zaTPoXK5+=`Oe|I~#F@ie=4~bN7Y_9DcUPE
z;Y6Mu;aHdFe~{r-Py6&XICGquIsRS{W}=br_+11K4iOn`opzZ98F*2XL`-f~O>D=$
zK`%<}5x4BoPr61a=Rs@T9Yek4jJf!8Q8lH-PxfI2J~kx*c*)H?_pAq$)J=D-PMej(
z>63P=5Auu`y?d(a?_}J+t4k%8q$pa3l@jO<;Q@ORBq!1hOIw`ylX4IGtl5E*dE8SU
z>`Z@gF|-|90cNYp!dgG}KmB=6(-thG;hkwDk3zug!9+BSNjY5<(m|U?mJC#WtnS&a
z{H|GneAa}20w^2D9no{+rM61>E~D&bvLU?+=K&d5MJ1`!0a@;4kWrqHvdXUmrosaD
zvW-?>`*YZ+bPv|lYIhimqL1dilMwfB)Cn@;@3xYsx^XsUVHfb1ZR3{Nh{gvG;w*f%
zudWynS3Tul7iD>^WFPzq!kbQ0X6fXRU+Zth*+a7Z${ft9cMK`VpLcT6e&g_kHENRt
zE})WyQJzxTxf%g1igC*2B5GyPC|Yk$3`gj7Dk4`0)szbmF4ByRFxC*ro$sllpX_uC
zb=NQ+{9a9(Z?BuYL;rM7u)8Pl{T#FxjPk)XQIqk}bkgyA6{qZ8p#8L*ndZR`axioeK2FdMX_LH+ln7JSV)9c67
zh>|2m+waXz_8sm4h$L%bm>D1g<88HpyMU%&hvp_DiGuX)R0six_Q
zSDHW`#kpJePWMbebE9oq&_LxCV`0n5(|d6zmi{s+^fxO3Gf`m84~oT@r6N3x*HIE{s{tP$o{iUJ5-n|r+*BHa+{@;Y`?yUR&lP&$P?;uG*--x8Qsj9?q
zC8GPSIvMR-RiQsuUYdC@TR(z$J2&ytEnnr~y~Si&!u8>`>^FP<1Ikm0X_(K&vC3W~
zKzm4px=xfSD!@qk_FVq|Kt+38!yTbLL4U-3h4gxyH^&<_&U*x?(r+rgzS&VtPS5*^
zP9{9ajcwv#uhT}pcfkLR@5*-nLzo`@4?#^x{AF?B=}uoX@V|Mq9w1o&_NRot?XCxn
zx%uhjG`#)Yl3>&3HZE`hm0Y{o$l;~vMg6K)*kM-986;e{=GnBUERzrV{&M~|c5}_-
zss+qy{Wd~Cht|<9MP8C7hdfOAC9+9$^4aGjRf&4sC!xU^FwuVhL`E`L#Sai=&Rzqzxr()l76
zv(X)bX1-^&p3Oo1jFRxM=7I9Pt2$wOH)fpFWZ*UmEV|^q^0Il58~)uP(-VG+(%vYe
z;xb^W0k95?RRv}^w+KHDxU3f
zZw7XS#;LDws3;-7J{+}|h0w@eiKY5+mC`u;DfVEt`RkPvEQN5SsCI`F1
zqS4>=QfGVjlb58sOGAEje~V9YCo}$%!&YGNru~f-E-eHrU0;dD?7i(6Dkl2rR742~
zT*8`4#}qH}-$Na-yL1loJoaAw@0{jr+76y{+l_|?6|&?~L5p9{Gk7i4#yV!@nQCR2
zneqxY?ADhu+aqf{PxrExSsl>a&@+kbFJfhx9V%P25Q?X(8loQ>0=YIL?vH(T{AauQ
z%LwyX^sik!zkPPcFD$RKg<^_Pa&=rR;D-~-Q?-1M;fQ_jOkO9~9z|&;T61WvvT3ym
zbx)$xeq<_QqB2YxCv}+4utKpYafYu!-YTu_pvzIie5}>H;G$ozrvAAi@aY516{GRa
zY_Hq58nyQM#zU5%3txA1t80q^WrOv=sQNnJA8{@9Yb$QJIA1~NCav_IgW_NrukIc>qKbUUY^Y_83)@2Ll_={W%3`(
z>;9Q43{6al`u@BcmQT-{9arFgomaNc5z!u&uCNd*ZIBGiH(0q9(CO3ZEI%4L0vhW;
z3Des64s40#oiS!I%P2lkHE9b7?2KkDU*T)UpX=^EQqty6g4SEv
z5&xyWt;N%MYE%iOF)~?}xaXBtA6$5k8RDBdyGX>g>*Unmibid>hudc#@3tqB8!^eC
zAjq3Zmh;u;!;jg|F*VNcWl37t#okOvYNDL8?&V|7=W(*}EuOpt+2f8@7Nmh#9Tb=!
zg)Y4_p1C9KXXMn(?By_sisdKvR$4#7Jq`tY&A<}X&1c^Y;5zTi_J(2sjn%D^?-MW@
zYMBZ1%tJ~RmE6c-O5A8ta?34SGJ=}V<;6c$7W`WqZ?6tJu|aBEoSB$ObLzVnLKEbc
zl!5HxeY~lHSr*R*l(A}Am1UkD71qMRO^NV)P!&mqBoh*gQ_<6+aYGfeD#drRhr+L>%>L%InoTaLJ9c*1ug0IK
zB=wdPYg6H7HQSlo4i}nqK21W{zk_Zsm)DV5wNpx!FXyo{zp6n+1?|wLt9oI}${^O3
zwy2Kx$6N6f>bsdSPSmLwyMKfKDE@j=2PMTBz5QRsw_iSl)or7-cy4raEzL`Hz?+3ZBwdj4`jZTc~)Dr4gFNtcUr@mJpM*cp*UL
z{4Z8pQGX|3T#_s}cP6x9#jLG`%b#6dEW
zH^)*Cl7FJ_yBV^EZ_XTek_Wd<-24xOS;lAeL^7Oc6bSGSkTaHds@jePYQ88G4t^ycIOU~NZ6*r_nUc6AD
z8H+yYy65oVa^wLTe|BJN7a(h6gJJQhSdsJb)h+n$>iGP#gZmqmn)ipcOY8g%>%+
zOmRG=Dx1Sg9RW)=Q)iP38J*pvyth%dd~|~UP{Ny~vAO^43`;m?DBoDz!VaKYrlMdn
z;$l-Vks;D34P~0&7vQ*zr|Kg-oPr3DvZ|uCftPKtDg
z&c-|EUwT%vDW>fx<{H<&Sv|5yS-=?#6g*sCT9z=8?vqCLS2BOk$9_w{CY7qDODUf|
z7ry8g&;sHCcZ=hq6#Z*k57TehXJAR9(rg-Wq)dhj#0o88*k}(8X!#yd8&gJ|b`dLZ
z)72fuu(7L}K3>)f>Ld(;bq76fz
zHqAS+{u_)!5}A0Z>gYf_`=0SAKhX}_xyhCpC)(P6nc7Mk4ZkF9#{9lqb>B?D*ATNI
zK$@nn>!1o#D9h6RSn;k8fWQr1+;nT^_pR~ubFJZ|sbMErT>FKP2BcHoDQA^Xyk+FG
zn8k|zaeJEe(y;nc1^ZEV%&(=JX7EHzvVIl=_}n6=-`bjxYI}R6eD}^{T?plC)3H}e
zyKv1KQI3`QbpE(mUc8GHG@D>iD|vol-iqP(nc?*V1}{wT@!4L1ji;1#ey*`un9AHk
zfTb8_;OsXLNtXkYy>fE^ksDv?!3SKTGiqmK79`FG%=9-r0@=Y*`l3xVKjnH8Z#3L4r+;@@w6*(C2x+)f;e6AX2-vW
zXgbgTy&m5xsMwe%kTdV5H&g?PYO~NnxJgO$p#GtWCAFXCCbeZ`40JzK!ImAYV1L;j
z+)nUZ+l*Gv@c3%}L)ev)vWcbjW>8ANSg&aWH{>=H@*;F-c45TKb4a{{d{!>0&k92H<`djn@vE8k~e5h
zQ8Hm0fBtg+bO-1mdgnk+dBZq8?C9j+OW!RkxV%MBeX70fm0ik5LBL@-#g<^kYA*Ly
zp)q^moD?Pnz&AWa-P4t>(htFO$la~_!^uur2SZ|Zx6B(BA{sKDv}@o<_HWIMNh@b0
z;{z^Vj{?fA+5p?`ZH>8>#QHWV#eKCmFy`9XyT0i?nDnHs?els
zj3c34BGvlZLr|D#C!9n(8yiT|8QQM+2c4p7`v?H{W~?bGCjBQ4NhJ1BLUwka;1Lz^
z6VQ*6?Fij4`xQ%WgUfU7D|DC^qaaQ*L`t*n7Gzek3
z*TLJ-Dj>wiUzy%$Y}eHZ|HJk$MGG%bO01?|wmVa(|z&O8;Ed_ouHghpq(F3IlgJO-c!|=>4KXRh6~`y_Vvr2bvwb%<5&KLh>UugU>tW@I<8?>7gVZI
zD#V;dh64CN(SY%YZYr+ByH-A3EiGtmS<8ZiEsNxW;DVaQI3IzS9#d7ZRld{0q>`pO
z78$Vh12^b-ozBoy*|iP+TP@A(>AICp&vEe%Hf6F0O3xSVQ+0wU?Y8J$i70~8F@MH}
zK9$FtLx)_8hvZs2BpkLU`V>5jV}+1>ja@sO^f$$2$v1dN#IehI^t)S5)l>8&W0xoZ
z+^Kz~@0a||?Clu2+;o1=Sh_qgxh}{{G=|Wkr4g%#<7q00GTAO0$vfY??8b{-+VJ}N
zPdxR~UFFRz8cv$gXIju#jIG3ZQzALor8tCH^)nR~S2NOpsy+6*58d|RxAT1+(kcpr
zs!5}y0fIT?^1CReGr@?~NPE~Pa!-g449{o{s)|9CZ{gG7gL`|jor+A<;NiuCpY`_8
z-d4`iaMaVU5%@8UFRR{~hg8kKVd1r5Vf$Z@vb)x|=*CBeZUD^F2ly;6o9oU(7r5#4
zMS;TMLX)>#+H&8Z8q~Ao*RaNRep{Imi7EUmZSRMn)U}6npB2K8eziWd@>y0
zjDC-jUUt{nzra%4)-o=5GTY3Y?*J58^TBf4_T>a8TKGw0E%^VK{THkZA~M&4C!)qI
z{0(UybrEmO{ULy{JdrrnU(s3ECS1=wQ)vb(O5E_pH?3RKkGLdNJj8b@-WW(|mCqf!
z$;@S0_-(q|sGBp{!E85#kZu@~pPY!2hsttQwyqjZRcd*uU&qhFRa&}8Ef1;TBT;^&
z{}7fEM0?f9I5NpU+j{;Q{kC8#p8h0iap#nE`M)vS8zjy5{{l&SrHntmKRkWic-yS&
z0S^CfbohUFrwUNM2B<#%e0vqn!1bFQv#0+pux>Iw(SD3f5C0(PomGENHDOy3MqD~J
z&c@odN9XswRnKDhN%aQOBjRf^{y9B+KgLT3*+6B-+d3?mn^Nzp=;!|Fv2imc=;!$z
zC~pXhf)#@MvwFK9mG41a6*gl4h4Jo@(9G}2_DMA}p~)j~l>bxh8t6!?nLKe=)C>Z6
z+MDLZ4XUbvqMrS^fl!&dBHpeVJ|l6&6n{hP=@v?Lnq=v?yhrb8+<9TK<`tN&0*x$F
z)cUGVi*x4Am*?Sy!V0ugG
zm@!=qn(bVo%d!wLB&t#E8^h{ur!2_!%{zOpi1S^8%^vkr%_A_pafAGn5w()_Pt5oB
z5OBK-uPpZCURQ6_oi?VX;A`KdUsWSdGwg()&|;Eg@ZGu9XScS>ZT)zrLVG!l5ym5hPA%J2K_~MqkjbVx_`=($4tr5!Xp$OIr&cH20K1+
z#T=-n6>M{$>h9mx-u@qgAus4INj=En$bwSGJ{(DpfI$0z4*x<@ofDzK+`cpy;@{cO
zo`rQB^vjY&Q*mx*NdrJ+asMqxqacZI_jXa|6Q2{BC;V|8(h1I!DksQ=mi3ncSyf+1MfYG|qm2}~Zm^g?mwz+dptWYvAZ{HcQIMwN
zvqq8_pD8j+9QDr%Dh~{fI4JzDkJb>MhB`nyi#NC^{4V>?u2>9{@HPe9k&g$qcdXHrP#k_F#b1k;enXZ56MwzQx_1tw|2$~n
z(0`$A2s>7(Rmm$WFT1#Zkx4Huw9w#wz}Vd`4t!9^2;*1t--Up?s==3U90IYy
z8wa~~SRdbfunx0tUnjpm+WG4=ULG&19u=#$iU}TB#=k!i
z-gmB*@$33vuo3XY<@I!GyD7A&#Rc+82Z5|=)UuUiXRZ>5(sg83uv1*AZcg~_?y>>{
zu7GLNj)!-in;#2Whod??reZ7on$~_OdRvH?w+%U|wk+rR#uO_^
z*K(hOvnkUKX;-OBW$1)}p^J6n()-5ms-NVh$tAV6{2uYavNDSnIv)l_Visn^giEQp
zvh>pyh@A=3v&QxQ#i;Oq!p0Pm*z}^KU4k!Rted
z8YTHY9y$+Ym7`O??enSCR!>gY5in!+SOc%@)B;3%JJ!M#=;Ik>MG>~p_K#1Elf6fR
zQ!D>RO&|M_FJZR8yjrAcRg!j?Cd7*HdDMmDUhKDkXh|B8qh{HvC*R!9xh;a_n3|%@
zE^~Q1`@Ph&EDC?)j6E{ra+%3G?ZY_#7Fuw7QzW^PQe~>TY?0JM>b3rbIpWPxzr!*_
z<%FgBDG&oI3AJPi!tG7yl1HNd{bRer@8EU%HdZZf36g8ZZLe>hMC&T<*O34z0UrhZ
z92MfdVUXl6pTNr3lB>T=fz7L|(WHL>3Hg81+pAyrOS%2hf=peeHJq6)kJ1((Q+o2$
ztF=!h2W$t_1SP_@eYdquQhjR}_-$Pmd!j>vJ5&{ZU-I84#tHi`=*V&{KLXWx7jU7{
zD)N+2hpJ793c5(#;v@xrH3fvSc>3rjjeQ!EgPVjaq_=lY$Z*`L?1NwXQ~8SIqjeZ}G|eH>3L
zNRr*o6x;T!Rk!A$nsw5|lF~GGVRc{itX%iw1Yg+Bx&71klABioo(`gcq?2nhgoGu3
z7|GOXT)h~gU3h452Js@$>Ed;pCk?um(wn?>xaAK_-V~rP!={TR)*6qVIE)XPmk91=
z9nIjUWa8GNqph>r^T@&3;gnLCZ{X)&#(&nY-T6`zbgWKk)BI$mbT5UnI?&V4xIGp$
zGm3x!nksb7%{=*A*B{;B4ddIqKjeQnu+Gl_9sJ;?DT@+yZx;TPf4Jj{)G{wRr7V>l
zpD)1|6M>y+4z*`Gu_v@7$b$O&tpt^rav;C(WntW<7J&ns_hBV#2IF8aKEV8?j#K0p
zW%xExdg<(DA!Kt};`Ws_r)3WyHdF(h&X$hx)tS5_G|3_L^
zNtEv*EJPJoM3Gz_V;%(Y7M)Jo$KW-+GboJFb$f!g1%jBZ&ZXcqN!JcQWh3*{c0pv+k=r&Hjr}}F99usRTMg0pV#K2XolKy<_&*}xV{?q`b*crF<
z#dXWX6#GE8H{645yK8G+S5*E~-&%@{@F3Yr7b~fq*1^2wuXXViI?VIVFWJLmlkW|M0VcfjK8j!7A1v1FowdPaVIRdv|N{|6us%|qZRj)@d}9aruC3_SqhdL&btYM
z%+Pc-4qN%u(pRhyTMKXdW?HA5d{QO$$0D~tA=^HqJ$sVLr}y=+wAdS00_Hnq8QAu8
zJU(d*IMX%DIIuWGwhV%->`=IsK-RPUyWJDX@-qTM2G*V&cXIE*NBsM!M^#m^dwn2K
zzaH3g>b^3w(7#_N_{)jn7)8%|@}d?iT$)}(+3`|?TavgUjdL%jCM_qw&CS353*SIa
z*=%=UQ=2S)nrXL0HlXoqUoi#wShRBmsKR`0w`U}MoBS*B+x(nFTVRfy|9`xUVK6q8dw^~%BKW(W*+
z$o7ajclI?n`kF?1u+p(ej8*eX`iIRAOi(SJl1IUh1c%Ir-RvJ7mvd%!pFG==le@I+
z%!0spv0D>~gqE40@%xKX)ks-ZeHCG;iF|AGO7PirCbxHGL)%G}k3R&sI(xtkn@Sd@
z^`pRx|Ih~hJ7+~o-I~^IPpDfOKOjBQ5=W@kly^Kvb~>JO(Q-A-uD|*pf>CMg-Wr=H
ze}tY2Srr9nY-1>zd}_3Z%`%B`Hxaa-q@+~%9w#qSK+I*63!*P;+D@c`3uVMI^-u^GL+zrC`^l_zTKjei2f*9I;b;j40gf>K*4nYv-xI=^7p2xo{>&tC`
zQM7sP?$Eznf>v=_Sxgx3^eh(Na}1w}bB(u&{xYCgdY5bWp*y!(rYH#EvOz~1nIQ37
zeN?L`T_LXX9O*2XXC-VSzLV?qJZy97Z&yhJ0u+(L*=EhN|Kl>|GmY-C9ssz10{I6
z+djKC?C;-$PW>~3OnQ34DoM`CA1oTvPEyj-m>A7Q4L~;rM6xuDmOi+Pqfny$?j&jb&$=a$ealaE5y&Su42uINxJoWlWeAcu}P;-wIFS^-!BC*
zF)8Z$5L%A2y~<0XwZB01`34H9gEfvWsyiC9e(lXPOQvW0#ofS
z0}<6c9=0;bM3a3Jy%*14x)Lx##8Z=Ml~yY?P6bkYCbLo?S2_dT=ruo{*FI@y6RW1w
z<~us&mDQBg77SatT6cPbj$L&luiBm$E*>yd*#E88@_ogtCQe8w2F5qN$}dxI{7BFG
zA!Pswd)EnBBS_p3l7f8$BuE2{j+wx17;zH?LR|AZN%cOkMafdZ9BdB
zK*!}{<_4{KKB+Y3sxduV8+}V3A7P)Zz5-h_bLBTeralE9O2t?wn1+5XO^|4m#)v{wOWDV){SF;hp+6*H4pvUx*PuZyb
zlR4Fm&R%Mv8^(xqt-tRRAh(U;7gAFs6`Su7Q>tBSW6DUWLq@f?oBr{OGsNX7+CSR$
zu5-&GW3fW?ic-;S*PWVZQ8gs*{+v1Qi<$32B+1i8-5*zuQ_9do-
z$IhoD@$2Dc66@|VK`gDKtlu*)0lhIWwqB|HBKl5IWShy%>PjnoegHI35)?{nwkqR*
zs8ALL6i$}EoEro~ZI&_IA;04fM8(-t7UjhgI
zLl{VW9fqw_5!b3tzd1f3o}?R=@N
z91jlXk_C_X2!iL9xo+oQ6>o!*-K;7XX@6Z_EBR+i&>3a|Y+@i5v(RDBUMl|IQfU`B
z+1O;IK>MO7VZ1DrR>F?->YaPyp4(i2#3-MUGPq5Ww4Jh4TZP~GCMLM@u&M?>WPguoj-j<1=jQ(&RL}q9Wx%m^rYhRQ%2X6ORYh4i@iya
zs#@CV5BwFuVg+j=6`77bu
z>tH)4hJPUQHaR<~G_FuSHp%2?`W)m>S?<_3${sB()pDv45sVkK3cOCKu3gp>;5O(I
zS+L+;&Lpn@GX!U>79~U@l~1EKLF*w{kn&qo026H{Z62!j&)-&5^8`XDl$>(NGrhU%
zK;7-F(zlL+WN!uPbFSgP@|WHYX4Kuem;s+_Y%2#ZcBAsxlMER($0?71k?yHj*|orU
zNRWh}`?_IHj(hECj1$LaP3-k0)+`3{>NN>1ZE!tXENiB
z`c0yjeU1C06aJx%5p(`M?}<>;%1UD92%C&UDqvg^SlE>ALeeYd3u-g&A3)spp_#C(
zNe9yvRNV|}t!l+(OO8rwh(dZyZTX5*42)&edtc20V7pKHG!hijae<>x#
zuN3mt`ryMz=L>b5WE5gDE#|>b!e8@=Gtzkvi8QTU`^#$gQ&Bd7bTN0{rmpPQDF2{6
zC0ol**ojYfUN>cEr9IQmz3Om`NAkYrYV*NNuU`)%+cjv^>{cf5Fv`K?OkDgQmNB6g
zg^o%u<+sq&w7u|b0i|^Th`RjFGV`p62XOJcd;n{^;)P8HQ8;4ZPfqkGblHi^&3{Fm
zchQGdLbpMIQCjdG|9GofdrFm}0(Lmau0t1Eogu^8>v*ZE&Z%DJowk3yoSh)nb17{P
zCHEma>xfZRywUc5mmQVwGmFgHQiRdrQ^mac!?LWdU}Q#%O;)%ktO+%)EUqcZc3~%#
z*oa&bE#4+Oh6R947Ew=%L@Zy`Kocr2NEL%S<22mYQS%v>rOz1aL=g8Vz(N$H+9Z${
zcz8B7vICjgQ|=w_sX1)~E(o<0{@JyERs1`_A2xRLdOd=u#Aag)sCDtE=OPFGl5>=;=(LoegQ1aqYxUvSH9H-#&9lci2V0ENZTq{gFALJC
z2M4`4i;9wZfiU+ehNc=7r5jf6?Rtm7hwkd{kj`fMJOCb`($GQ!53%%PvTWhVktje=2>T&Z4XTK
z_40s2R<%eW$PtwVr6q%Bn4(tSX!+WW^Bh|#NXfIp_(*-3Xf!IrYUy-Wt#wQIeV=~%
zFWp_Gb>|;Y7_17A%5~-a{hUjcit=wrPaQ*cD2ZH7E5i1xdG&f+P|o_~7rM^6@h-Uf
zCcLWSP?o0hK0$UE<9-pYE>n~P(V@I3-^uYexCo?9hu;l*^B?dVEhH?b2>m~-y;V?L
zZPcbsAP_vk-5aNI3GVLh5S(sk+%>_1OXKeD+PDO_;Mz#g0Kp*;^d08-|EIpHsX5s)qrZ`x+bzuPsK!v{7wh$rq^o&h=@+L#$Dx=n
z)0MG`##}L9#wY?~^2L#S@`D&WI$
z?r=(;nBf~bJ;+M^qKcno*@^h(48u<8@@wU0Kxf)4r4>pbPgWut=B8~?#X*>=_C#NP
zk@^*STJ8$tk9Q&mY5Zup`GC@^TaKMbvPX#OOc2w*s1?`bo)1xFKdJdSDgpCWmm1
zGh3^mHoG{EBp}?AV_h4lY6%k8Qxi=!7>pPVEXo1`)I0M@YrpgMx*+Bh^`^mqvw2FE#1pd_N9aLBQ=XrOV+5Z-n
zEW_&MGvKdn&%fmh;k*2z^Uot=-4`L+xhyv11*HQxNuGMWbH$a@D;Fm@Ay1%!|2Y;P
za18Rs_A0ymoI(58nd`|O$V?^lwQ2vGgGGwsCqoYI^oWK~4YN*YV5f#}|ko+uQ%-?$+VH?ja)XS40t
zVh7A&auzG|#=6P4Rsd#gBJpLBH&fqP*myo6p{_==#jo~D#}`Fplf~8+kN6&gZwM|m
z2TAobc8={7mi-cNKsHHyW6tb}?4y}(H$i9q!NKmGPTYj;9a*}z=muy2yV;saT?teS
z?R5lVa_(%)1FWi%qcb;Ii_RPR)()use#YzmdSN7T+8>{;$o~-HGt@y%Ezae>k!`-`
zWgalwoB&|~qU7?30CsX)Os@ISsL`E*@dN5lJ9_}H&0M*(IMB`BIr8rRp3L58v3da41jTMZ
z${*SrayvSGTToNy37cN1$l?E>SU65{YvEfvo*e)B*w2P-GIB?Di4*yzG@LOJCY-~z
zAgxyRU@qg%?-&HYH)Sy7wA+dzQBWyrXWVjUe0l!oaaj^$U31U^$)^aSv*xp|&~?Xo
z$B2_(IQ03EhRa(%KU-$;i}McNH>ZXp%t}b9OFDrMSv4&7MuH&VuAh3l33%gTQf0P8($46wjT#YH-^nl5X*)Wh?4~1bDRt_O-K@yb
zgbafr(P{xpz44lqdyRaHo6S?!L=~-oM^%*^g@>o;Dc5)FGYt5YetJ)FXfe@!Wt+AP
z`y?*~&p~ZwOz>%q1I9LuIty!k(UP}cD~i^hk2g8!S%IJRr3u9K%fgdM9=k||kW`$M+k;1_}#*IMxpDBOrgYm>O?AO0;
zs^6D0tnz|M-}KY))pb*?(}MQEmGsTN5f#b(&h_*j^8P=w`k({ipW9tM_5XU7szsm@
zx1@>fcs}+%ig>Rz71R2dKMNYH=IxsJ6TCbRmCBnqeIMg*PS~8JQoY5zAqPA?kk~0y
zy7J;8ixr&?M@sQl7&|;VDNm&hSe92tCiRyfK8mH|EJ4^GbgnmQae5&tNd
z_Aa_~oB<@TwXF!`;a}J_p5rQJ8~zBo=%78{1n&4pQqcb$*>kpr%9EKH8^2Q~|!SSVQUC?yl
z_9wD`GN1I8b!*-AfP8F{aW=f%ywNrjuKojO3p0~{;aQ58#;^vNMRROJ-
zYC~Y3m&i~-yfHIS<#gDdzFz&l=`hLwYg4F7r;nX8Y;<&XzgN^XmH$>3
zjj3Z#K4Sr3V9C}9Mv+@v
zc&gq~T{Eus@3Cr(`S;*FAmz40)Ihh~-VKN>tz4$B+eKim-k~IH7PL-7lugvi;Jak}
zqc^V4e_hH=^Gn1=H#fgV$xY2bD|^P!*ITwtFJ;xrZ>K5L~&uVK;6$dQ*Fkv|xGJs`C`vkK&2)2nYrv8f*Cma@
z{h5J1u`#W5!r`54KjGHJhU%bC;LWy^?PhR=uqi;H+%DqeT4qsh!R~!EUh(Fbl_9->
zRmk!?k4$~k8QgulMx6BZ@1~+BJ?ntsGxTGf&rwe>uN?nYym*ffOXP#P1gC!4{dP#l1YBhUQPn^YYQN)L^X{_fq+`42k
z6jludJB?wZ49tSrTD4>iw~rD-N9E3%ddw)&NjW&TKqMS;$KYS#V#Sw%Kl9+uJOk~U
zZc{Zu(cX%Cl!`)LJ>rKo)`%h#NTX$Ue;%y9wY>xv+@Rs>BTDclzi!%poR-|1X9wRX
z^E<^PtWNYeqWzUg;8Dev`W*6t?>n`vj2Jw+Ju9%O^n9MTI^C)eYz*FXq8Z(Za7ou-
zdJ<6-n`tf_`8$IJnjBdi-^6S}P25Kj-BGy4#(4M7EM@SkAA4Y53*DxUa^|QEm3U;i
zLlNRk@~~``UJ?IaMNO&BypLxDSX3(t2;04|%_ec54ob6t1LIGDv#UVEikR&V$Q9ze
zF(-*bw(JtHa8g9d7|iwPlCffSE?c)Y<&~ztf^fQ`rUO+ZJRiMX#d{4gYHSyOSIAq8
zsAc#c!rMNBnu>mOVX@%b>)Pyo6@y&#BWY}-iI4rYv+Sf4KSKa_@=j!*O;h$nt{i4XUZQh3POSXWh5++#&YuW2~3
zWY*xGVjjwRxLq=uD|x`ONj1VpFG%F8mOJ)0`$daqHT+T?#zWtmC)77%7Im@CbS?md
z$a2+wNR@ma*n;qDx978+eaZ0rucLiZn~Kq#a47=}krCvmR;0-zY5zFsqrkF;T&L3B
zOt%<@Z+GY`4>`Ubc2oS^5dLiBl#DcEXOhwBmT+;%yIS{spWB=}n_2V!A;0!NC*1x|
zPyGLMC#9G#74*KBfihhWCyPxwW9vUgOOq7&SjH>pICk_0U3mAFjitTDbvktsGv+G4
z9}aO`zxUM7jBnWPqoBlUUNu<$&TRUuR!o+DEw3+~UYbs)t#Kxu6l>&N6zw4uPiP&>
zOr4Nwq_IIB1dyH)`a1AQJ(#RNOqMMFinp&U
z;k}oDu@Rtkv<~zwCO9$w^aG_lc$l%qzf4#UQzE}bKAY4rflNNTnqzj$WhVr|<&5jC
z_FvC;<`wBOdnrY&fBda?U9kP4dXQE(3R!K!V3#wo`d;@PPvu8hZymHK7@)|pR*cUM
z#N)Jm^k+IWeFVl>_HLZf#oZ%oB(gqp2;YqmyM7_-NU;v5n<<##a?%$@ne%N=Gbgcc
zjQC}3B>_6b*NuFzqc8}Uci$D0Q2+iXmP225aZ|Fz^G5zfUcBT5-nObfz+2(!)i&?x26tFY0}}a=i&R1gj49lKW^#ewKOF`bYgJC@T6Y
z@)hA#;{Xk2c(^H8G_UPwtOaPr5^h|yPWh7YwLlk4B;qe8yFL{NWET=rA_e=|Tg6d_
z5YxsJ7lrWR$YXMiRFiWK6Tj1y&_(Pw-k7UNW1H4qT*i?K(|IRRfPjENjPUO3hs0k(
z_5UHHQGCeV7G~so#-l^6D335|=S?CXHbhNh)EY1hu3vtG-)y@AcV$@|h>xmW8=(d{
za{iUeFamsde&xNVE{a(uGih3_mhW2nXlV)8h-GG6D*f}v3K4&b`p`gBE}d~T3VA<{
zwx0dZ_Y51Ke
z$$57C2=Ghm=EXcS08p^ld6J{BD3yisF6CFKl+aqTcYxnUJ}XG*I{Dz|%z!N1*xYhl
zAvfs_kdHhw9Tvm>Y*|&!43s&>n61-jRXGN5GkZ5KOke7Q?u9cu8Bn@UQiYR6s8~g@gBo;PRbi+daPq!~$%cl#{6NOT%76{&0eib=^+{TOJ3txBfYRkb_JT(|3YAASLy$N2@Ek-)9Z2VZ_J3
zEy+?I8!lGnt~~{B6F}LhyRe@Gw3Z=DcZmu0pxAz6S=Q5X$%ak?%q1#Kws|;!yn$ox
zJQEy@vv{6r<2IC*5NS#cGFri>M%N0{-!~s~nm?(J&!4)n&{Ee*a#oAj$PB8g=5@{a
z`qNpaY_%)O4LZnLiel78G5K4Hz$!Dzki@#3mdg2o1G3pOd`A&GwXNB+KG04`TkGt=
z)Q$L^K}cf4UJ+p~B3T3JP|U`-qMmep$qJ1G=V7*CE|IC|>)xTz+$4c4HW$-QNm;Dc
z-ZC+$vIMh{jkl_C5KTk6#G5NGD+q{i@8RKaPV6I#p<-!GyZ*JqVgx7+pN&6S&z}^;RaA%n5(8X
zzl64KT}>%{Knn+VHCl-bo77m$ak4tHiMfWju|J&wq!!q%$)t=Tu|}uBIGfLtx5f91
zbzxZ#_Eh^UY`bE`xBQ!4X&9Fm%1I0?l`KN^FM)8C6WNfQxLdKfuR?~C6G;;~C#QL7
zSxW4xhpmcU@gl-LFYR*H0t#D93KKWBey_bxXTX^BicU28Rz94nPIzubE*CqrNU$O?
z7(yArPu>hO-hMsbz|7v}Mld<^H>uL2*Bo`-)Zy!?v6nO)uK(ZrrSrmCX*qVN$Q>m#
zU&m#inIQI)Jl!bfI@W|RE+vR?nZuv(b$js%xRJEm*)AM_J@4WRC>9kL86llZQv~W7m0+iPHOIYw9lsCvJ55c%N;LP$(np4j
zz{1wfz&68r8Yn}nbeVC~Aci%;2O0YhQLcjJV5U7OUA@{x7g`yeC~Y-iP5X}zDFKg4
zUpl*ht#nTmOQEIV6%0|8ml=NY>DD{@fRwBdkOdzZjFp-wna2DCK=Ek=!OHmT6>H19
zqG1CS8hj|HkFah7B^dN7OTfK
zVb^X-*UC7lG|`#mSWh=HfNUB5c+U0QuL%Bk173FllatrR#_3Sju`azrNub)@yAbr8
zEJCEoLW(|?aqp(r=k0rfbzdV73yPr%>#PffO4H71Lz^CvcUg^w@}^p*SZqCbQzrD=6#9t7bED1z4n=52Hd6DV0eA%(#T*iL~5)+@6H5*z{%08)yYvr&vvs&V-YvLg&9Pf%_NVz;StH~s(8MVd6{Wt&%dz#}F^$T@
zBkpZH+u+yttj6jenB|UXushkE-};x0yMC3c_#p?y4-gMnkPJW%N;0aO;XLjO!KB6O
zaA(J}&R9O))UJrcl{P6MSrv~pytuK^Fdj5-lUoh4Zt8V=g6Ew9B2arrz_!>G;x@9me8
zO>otnWki1ega_@sf9{(Y-a81790gpbU0u*!VGY(K&~O85V5Ifz()m;#JywD3q`=mm
zw@vkl2?ej#h1y77a{eIt2b*i)?dt**WP#tDM!4Ve#JDtdukr
z6F`fq8r8NuHYURK3?BAI4#eFRkW*`~iUJ*hcS3Yy8u~z8-gil~=y9#*V#v56PM@DNA6oVxPD56A@XfKSMT99U8b}
zsu~^A=XThc7TrdowxE}W&UEt=DYMYez8DF9N|yE?!t@sWY24rAPVB+)6R5YdrH#nV
z=}r+(qG*Sn6@qDG>zd9=`IqG3p9r)qV~*nWfH
z`rkOMd>*woOZ2dnt4M+(wNK#aC>#jOgb7E!G()mhobrv&g#&Q1vnxuHW}*P*nzSVi
zGypRBkGDfUN(@>}p0at$KB;v>5xNEPq6M>-opQtrY|LhS=>N16LPt2IPtUIuZ{K-mX?VF*xNq%Z`U?W+`y=|ydj?T&d8#=25Rck
zuyB4y^V$n<&iw>Dd>7)nK5Pe=7xC}@c~E=SN*G7onTJ7KlBwsD-+x6Lhc;hRNw*Gt
z&t))b_m4D}-Ll0oC_;U90C#
z^fJ+dxoroZq{*dwi7(ok1IabwTuB%<=)Q8Hw_>V%3tECu>~U|?*Y?b6Z`4vpW#s5i
z+~K0Iv=Hp6MPc98mBGKacm?74&42N##XkLM%LS+M`n6o|^Xml6+*YSgPv})F8VM(O
zJOTguLMdd28wpqKUtG}JoD6t?tvmYXT}=`({2L~>bA>x0ou%un?6lTyhTZcweGR9~
z`|PnCzGRT9vrwbwzO_2zi>?q+CaN$LDn(knr@gQ9$$eSm?&jyh=(p)pC8fYj3Y4Sb
zOQ)9#xAv^{+i6+T_?oQmXmsic;Z>kRbh}EN6X~O<{=Sy{uDb^gTPLrcWdFWPRQ`0W
z>~M_~8|9cDGiF)G3~F0Onv(b)!Cj>jJV>mu)XYm&fs|qe!{=kEH}{f^Ydkfn=ct>L
z5@aE&pz_DBDi?!|08id)Yn}(2El>ad5V)JWA8I0&v;Scs2Rgp>6O%?quboh4;Ov5w
z%0FbQ{q~#`e%=_EQigQ9w^ZVLdDS}7wX9ps)3tz3hZ4{(SDGPkLLdeW5$+&eVtqBU
z*3c0D5f1-93_)Mi#Brb}&waFlWc4IlSS2;b56(}&?Ht8+)(xlfOs@$DNb>OtpA1bw
ztUJ6~i%ZJ#>d2qxuSXE2%J^B>&m1zjMVmbjVyffza?tz4OsGhOnYV{KqWZ87k2*7q
z8$_4WxEpesBGOQ4bmc^{U6KwHvS1WbW)}juK2eq3dR7vIyF33hU4O~2nzGn8Rv>Gp
zjtv@WOH0Pbe`aQ~T+~Gl%T!5bOT~1ykZ6498yl{U$|<%6oRUx?xprQhzP^gQ7k=P4V`CIldgiYrI$9{i-|`iDCka
z8!ZVD$>XX#6t-rQ@9jwnkCpE~-M^;4G29yR-DO)Hxo0-^XV$YPkI`Q^%39uk+e3r0<+TAJU9`
zC{&v4u!|Xw96C;}0wsegf97Ah{km1XTbS5i_7%BL?g~vFR68%`ZZpyvARWD3_
zj%?DioLp)1%-Md4HmKlP%{0hTsS}yt<8{o3QSYgYZ6N6QPi;y4hIHk3m^&Q;dy?#I
z=3GBfXD}l5U@M|;lUpxW$SHoPNnLxJuwd{R{v;oKG^r2-KRX3LgZ8jPUh={My(w9o
zP%PMabnn>e)WV1|&I4%ydnp>Vc~0&a-}ZwhX$jbHU9O=4w$z(CQcy@khMNBju>HC>q90I&H`!)TOZ?ORRYy
zfUO#NH_2Xqh
zlZc9}8{~FbWA``{_?z0KJ?{jAUF!gj+_27$%0W=l)HBpGgq#Oq`jLXQBU6ZtW_ul0
z*U@>A1-W1^XiA2x7u!&>^#_&8Dl>s;3i_)Fv?N(ZDUfnqpa0qwZ{g><&kHl!{QYjG
zV^f|LLjrUCz(^@)Xc;fa+?Qa3smnuS&5-h5p2cG$oN}1;-hI1`-6-Fuql65P{n%}a_4Ab%6_JNjn~#-5fzDP$&Ea?!`ME#H`#Jv9
z?6nR)qi?)2+3a-=FN-Ux@SL=EFg
zcb&v>r@Ug`aCRz9b-$#JngIP&W+r!4XaDBCbu!*I`~*wAi*&4+g<|OG(>E#B5|%HX
z6d<@z=(D>w+S41Z>+eVKWZ2cAATuo)9hk}7Z_
zvKQY$!45Z!6_dV)XTLoeRJXm-WNy9AsHj6?o`~x30~4SF)?BGiWEa0SJUmkpzQ47R
zwIs7EPlP}}BT|Vfrn%v>8e%=%F?8(51fGu^!ZX999qr);)Lc5HhOGh2C3Z6fkWo%r
zoZDZ`D<8hTU1_MP+s?l>Ip)Y<_@pA9-Z@(1b8h1GC&VuIMrDHuo
z0%S3X@0(n0M&JGE4^HcGpnWURvn|C@0OM9wQ6a=-K{OT>$&hd>9SY5S-X?tGZ55S9
z`p!*dmfGHM`qi&RRjB6x%m-}7iSm**FIaZ!S?@~Q+O&Jel=^o}uI{Fu&&TncKL;H2
zzVKE|e&U%;ZffM=xI(k$N>|t($Hz<_N0rg>fXV>T)hqi^F&f$*{jtyeLsfAV9f+01
z@1OfeNj`j&5i*kq$oL0VC;-lmuxmHLop;wCLhg)v?XBP~5LxyMFmt8Tc`@#~p*_H7
zZuoCHYFteX0GFU0+^8w7XBF+kSgLdq9j1NH$I3vSA!y#g<4?a5!*V@i16)H
z+_z}`nkY);9v>Ny&i_~A;>
zJeEpHdDYvVTkoV7!PwYDmODo;J`BMkR)jyi^(JzViOR}~5;8Y(DuKZ^Pku~UWmFwW
z^nT^+wLA(#tc|HN2;jYS|Fa_B{j|fYwK`90l*Pq*#1s5?FQ~eBOWO&OU2m;sXH6rb
z$w_w^G;pnyq&Jt*BDznK!NdaZ^(F0%Z`$22f*P;3h_5K{%bjyyESA%LGl*D2mB79V@v9JC=VYxw??3p>1u#`J
zc4+sc;;?$cD-Tk-;d@#}8L30wCg3=mQd*iVh)`k^f`)GOi`p0O*e5@uBf)mrtNv7mBne?ErUT#pbv&OxZdu|5Z5%zu;_1-Tdozo?L%3BND2#d6L}@B<07AjK
zXS%5*!$0?J)6j$vArdM_s_;#~5E4+57jP@sJ*1CI%=47YXvh}E>0+mZcD2Y`VSs2Q
zV=KU7fRSL~K23JhXm1^|+;@>-rBD6X{DJij$voE&7fnz;4U50M@Q~6<`}M$t?)9Y2
z;y1{ST2X)*|5-p_lA_=XbkL6J{7-Q_oS3}WqK$BLEz}c`w6vtkustfq=+M$u5yRMS
z2li#5>=-@Q-YfE~$d5=IB&zIQ=?YucRPJ^rDu>vxk}LC6|NP*09!jd*xIfAEPQuSTtA3hM5uzTiYZA{ewS-gDyw{ty#$G
zi-r5ka2v{ezs`l9=q5u@y4T7c=x}^x?+Js1@Mzr->|=+kv0FI$+p?zoa(hSh
zwX8e0-QAnh^sGC(XS!#DqRoK=Q6Y6zF5;&&@(^N*tzP8NUoQ@3h_e=g@urg(S#C;B
zS2M(1dXf-^Vo+dNFR~z{>0E!HLAZMxU3HAOHO-2gMe6|7X2rf0oKoXgBJJpXZ6;7O
zG^Qul9BWsa2dmEqzqnhHB?C3;^wI0Btaeib>T2@rHwpS?j6>_QZkDIiifDBt
z%-w;*H!b(LROA)9Wg>i)c+*<_eRRAo}y;%;2B$j+9|N=wVw85SLN~YjyUSB
z?fTtViR`i+Og@9cI0x*}=3>6K1xw2~f(t;JSqwHIroPcGOc&q9ic8B=?4i0kn-SkZ
zK50|fii`Eo1#e|}VW@*GtSjI8z_w`4x1RM&dDyh*P
z5n+ZBFv@_i79Hpm5NDMZX-lKY959?Dnn2#!#0>YiC?By>Dw?F*7JU*ooszO@Rt`}8
zO>0{Ln7Dz%%8_Sp!F}L`x~62>Hc98nX7ZA$9j`907@+v|_QG^URK#`XS7F3bBE+vo
zdRZPBldIHL*5Skq!u3*Z&$RjwFaWHZv~Zxf;4u%06%Hf3Vx{eS$K?W)5
zX$^_!N+%PcjKiYFMi(E;jF3?GR2|Y6?%2mt*qbsN@DZ?Iwp?ay42Ne
zK5;(Qi_kiB>dfD=ZZL){Ucc`b5k^7IvNTR
zl`6TcmV*Az5mTbstufJ|{D8*a@z(7JR49{Rhemh2beYzqI$d@%2sIK{nj%GlGem@C
zPT`NSh)vrhUzgSjDQ~MJ)~eDsX(I%Lo0;L?E5PjRZ9|F$M%~>LSL2J?&X8nb)7G-n
zV~Y*jUf;^nCH0JaH0`L8?d-m?tE5RuY@xiyt-8kZnZpo;NaJilfBV)0xVigu>1O;z
zr|BrfYZ+<4;Jg^o6vrn-ucc)}7kW?zr76_?YK~cb`>YQQbj)^5BH2k8k{Br&QOi{w
z)RaSJLaQtkJRYqR5+*b6aO*0!JSXqPb34neY-`d@9mSDoG1m52US{y>&3A$1!eryd
zmmr;=4^seqEhKWExD;)hiocU>>8}=q+Wn4KZP@Zvc5Tlisre1n6-X-#05}LgkV@OM
zBjW6KwPsOpe|zMn8^=*(*nsh{U2TjLEb6dKMpFWWFhy)j2)?-XhrByFKBG#V3>|k)
zJvS@ZBoUn!xaS4~=jL`}0zL1*q(o!P&`{QftB151^dxOlb#j~!tW+t5l)Gxy
zPrYvGoMnUJO|SQmw5Ly5K0o2p>vwVMD<||E9RKz;XWE>kR)@aWh8S$AGSf+uBqDf%
zd|8`I&kC-vn2sc+ORVBZSdH!xMXLOOrlThQlLXho0w_ODDGu7f_hrA|JpPVnX`B=m
zFeZL)9Y-O@h{KJ*{7&1Fi71dmU9yHkHU50ZlaUvQxA30njEHjfJSS$-{U%}@)I91;
z&L-{$JR2U|G&AWOMvlw$_tKZb^j6k?2NJ2?Sv)plZS)&=ph@8>wVFpjXWd#GxZXKL
z@uPvyv+)uBNN{n641|gaIbsE(%&oEND$ANpGjIm>K)|GmC!|J##6ATPDGIM0^chcM
zo3Q(DTgYkS7TjYbq3W(BOiTNI5+l5+*44lIP@O2@~==qib%sz@j-+0=|T
zZg#r89ux-&NbBB$6fHAHPZTk57292uvXkYaRH^5|FARCeovH$^Z+3R=C!Wj1&#WJR
zQ4I_v3~R=J#ky#xf2#5=6EkYTPo>k;ogJi6XH%0$O_>8w!@vEbd}Fj1oE?d!tEC0m
z6xn`GU-58N^TvV=$Jx{r>lNzC%)^e+ai8qW?L79+=kPVNaGH#HVBs=1zw%Ah1P1-z%JP{S&##rIs}XgB{MbYHsF^PS~X
zPCSwOj~q6Ib(mTsXDPAqw;h1%U23G2>l)ct~1dX1=A&6f9x`!wHk~nKzWC
zk`F-r5V%2J&02QwJIS_f9+)fH3{S);Fo<~>tzs_}T(;jYuLJk0=WfT3Zf$ba(zKx`
zpk-O)j-WO?wS~7|1T1tq!QingW|W6*S7VQWvZw%udPImA_i(ML2ny7IXprL_y1dbL
zp0F`5>bH*}Ch_leG~bbs*tdEW0q$xO$dzo5PkcCqY$8q_h=u1e~Bz_oY$6dY@t=W~MD5#eEu^WB2rN!BHJ
z?f84p?p4QGZA$-Ai)B$0LplMS@pC?(l*nS56QF)CDeSzem|^o;t9^f^Ig&0kBt5*mXmy1oleVj=HUAJ
zRyF$RW75u(&+E_d-h(aRD4*E2q-rmh(~xalhpV|LFG9fhF^VD}`7guomxShX;uBGZ
zlH{TPTU62u7!(wm>|Fmi_^jR+{Jr)o+RP8}rRT>#Z&EbAng6pNZ~`OUK)!O0TK~U^}oXE-Hm;$-i5qD(?mQ%T8#YZw!*2E0t|H
zB&FC!cL#GTXx{zJ_IKKP>OF2f!%@(zqt{^*N1ttm?SGwpAf=4?t>P8$Tp*ygy0qHcX~UXU)vY?1rnTY-*_2$~{4;;mm^z4E9xh)1bDv=M8(eY#EO3
zWgO!rWsLok^*QdRVlU4fOubuLdkqD{f1uJW;4)J;>6LLWRjz0`7=52eGOOq4c{7OJ
zq?dbLjJ=@}I<=`APu%Fh+HNnDXd$){UGSIaVrETMi3s8fZk)6d9v5-LO}lZ8RpHVbZy;@7aolLt0-i~@fYy{t2PPKB5jX+cjHv>lIl(y#q0hH
z{dV-_)Z^D!x-8?dnS5MMA3q$Z!bxM3KaybEv=gfvB()SQvE;T^AcV8yd2
z)lzeftuGT-eRaX!R{O{15W}aQAM0fPap{#XL1Hs=prHFf{nNceXVOH+63&%`;^DZWz&4hR8e7$|soL
zR8ksVY*iXf1fw?E+BqA&AmV!@_GL{mwPrCeF>lvF=c)wm0O_)3k%9TrYQ<)j_xWGo
zHqZrdOWO6BDt4Cr`~MIWbaZ^@3;eE*=qD`tQa=u=yaYYP+6wnIx%fOz*=`oAUq9n7
zwc0o8PoypYDLKymVtu4m%t00t4h??0Y`pO9)YyQeKP3-;X+k1hE1&!EQ;ftW5!~*P
zKyP)*Zm)=c!m=H>wdIW5u8oyr6eIBcF`4ND0#cc%wTq>K(F4vL==9@nj8*@#{HN;0
zY$A}S7c13=^;z|{D+iUTWWKD{k_uJT)CdGxLjvA+6&1))ckBn-U7`)p<%=wD4xCvE
zNm)uchSCynvoPLJ^KuG>e7f1r&t|ip6mUe!oB~7VZsk~x7b4!Pk89eM+ip=jwWWy>pdL}w$+0<
zuVTr*mMmZw;(f2m$~l8Rr}e5Lk2XzViGJx-}>9PVDb8gsBI4-XlC;g
z41O$_-Z~9qHWj~oqU{QFR@#=Y>tpEcgK(0c+dYEBGiENU@{?}A+gUUl`_)mFu3~gm
z+ylQ{+Abn)eed#K)B
zB7B4{f?nYTUn98rVWpttzG+NZ7`iPMF4p{ZsruCXHfzo9*#Fuf9%s4MokrIlP-}I0
zD8^l69l%`T+Tu+bNm&XWZMYCcNl1p>MK6^l_kY1B)k*Y8l$Clmk~8?qoY&Jj;M?ic
zmhH6d036xl7{phYpXk@XZ7cwmyhS}h65uHmzwV1eqeX(?$v>c(<~G9Pfzy}qYwuF}
zs%_z_2&^9Y^lV29SW1SHYHL_Elwv#su1lZ`RpEA@pIyjQ_>?)&{)3}yBfZ(bt3wfZ
zR!Er5x1QAjVbCVFqQQ?@9CA941(M4=L#u=HM87
zeRG@04oS{(q;uW?CwsctQcKdNMK`As`;N{mzP{59iC}Y@9@~HK(V&g)7o|UhID(3`
zL%_Y1k}g+zXozV)f&7)+zh^jg^L!s_wlM~HkENnBCF+4(!{2{ZVyP%uYf~>7)9Ze)
z8RIBS#eDik=wy9}0AvAcLv~~*mBu@rPkY9ugMoSLM>?Zz4HQTQfqQ0i2gWEPZErlS
zTyE1}=(KEjgrGf(Wd*MTI=z{0Qe7#t)@MoTOh~XLSr-Ox+ocsuH|(>ON*eWY%}|=v
z3!|;59K7tT>taQ7>w+vS9ZxQtZmHBNLP&cM7Qv?gEGj_y0gGq4MALGgU(R$94&>~Z
zhMVg{a|tuAI7B{;3ysZ|SjIR))}60e6!)N_^s^%UYgramLp-j4dyN^ahIe0Snxp-i
zUB~{8PL@nm66?9Y22WOYje_mG!vVToWqB%Uh_IE&^_1kOrs>4Euth_PCA|V(=om(*
zO8ILfDQ#N}9*GQhs)Neor=O+WT|au-**gs0o`eFEhPTme3uc4HsgXey&I@gvnIPNyh~2ak+-ab0pD`rG0_)0yx`c6q)&
zK~ui18;q5E)7S|T)?sg~aS;QEeSZY3iAdkFpc%e6d+2#Xd-k_5c(V?^MjpSMWjOPJ^O@E?ZlE@DgelyaW!K41gQXn@nq!Hf55R+C!;n-x?#iSbFRc2#Ajo
zf)0Tze$l`@n~;_CGaDdscu5d)3UEk)W^tPLu+<^ElCho5Ad0|PA;~mt+?Ja_I2ins
zIxWIowL?G)^{^DKRnXm@BUcCz1nxLdeg976G9QtxVnObJTvc=L@(;?r{8?4vi;p4~
zzRmY(O%UK2zsA$8*zVxT(CerpJ@d_kbwGRCm=W?~yGKhZ+PexxOwo?X9r@yTIxKN@
z?g78882ZB0@OeNzu9P?9D0jc2ro!vxG0I?E)K;BdXMa&oM?ra#t%=ZUKlu!Eh1+DK
z8-|zZY?j);DDk6;HkyU$hul||*mp+Ik^A0F=ZGI0MzVH|YbeITOc;TpRbvh`TKnUo
zQ$r}7Jvpt@lQwHsXt;zgFI{(ksaza=@ACewUjG*Oxv~*xl@Vrp934o#p^nY58&>hhkvqaMgeIMqkLp#Qxr?V
zs9-=RVWCnbAcYh;*SlgoKt$Y|Hr^x
zZvqGfGG#x!-N!|jfa~lz%r|cN_MyG3YII>TyE5jiv~sKYdbbx12uh!W)5Th_ayPD^z_+Srg!Yjik=Z~lX8-Tj&`3uGsGWI@O2Y|$Ft&K9&g
z*)`l&O&?cPxM`?T>sqNaQQMrLxDC`%ypsAOuecYxF1@|=+|$0U+O($1+|Y(7bvY!i
zms^Iqrz%9KUEVLjJ-Its@k|p#=s;qfn>g-D!%#DvZHzl2Z%dy$&NeTMJEaJKDl(H&
zglC;cV>KHmRF6ARHk}-uxNK@;Nvg09Z<3(+{+hVxG;;eZ{M~PaG0zXv#(fyI!ZWYf
z#I;*VUA#tlqG|g({8!WFJtE~L)V4d)N`*s}6W)rDX3)y1D(TUMLK{W~4G(TmI-&~8
z=l|<0p+5EKIpgFxLgxDWpm-`L0?gLZdMRNp^O+^ScMUJnEqUn+h(0~Ty
zysE4|eUL5ovi@J3on=g1QM~O3D5X#+6nA$RthiH(3~qx%TdYV2clVaT-QC@1a9Z5m
zt+-3E!Rh5C@4n>b<>}X*oaB5sviJJ0^;?De?eiH6w;4}hH$&SGKqFTRg7d(`UhLg%R^_qs=!}=*6XtQ7l3-c{
z>&ZzyeRGBNrrVl;@3xi0!wuX81`?oAh8Ft|vq@v!D)|ol`i_mF?qFy^NHvF?5U&y7%
zbC}mms(GzKp)KM0EBnw$TvdXryktvi5JOW6QK7su#1b${7%V}#%EuTy6-2wI>l*zR
zV|3&7!V*Po;?nKtQ~L+9WtQfG-2VAF6Z23^3$~NG*4=!(HcQqJesLk~dfMtJ%WI9P
zsrQ8hoIGBP^Dz)2!;@1#x?_U`M2w6bvf-eYsBOh4i-_+y!3s~LOoH^Q*fEvV!VIli
z*M8^7Io15y)2F7|w@kJy
z(!zhrMw5KJ+TQ4(Yu={;89|&64*xi44}l%lq?}Pftql>znwlCWMa4-nsUNd8K_`1a
zCmmV{S?}l{E@^YSZ&t6I2;eo%O&%^jpZGyrws1}N$_fnwdCgBBL1tRa+RKeIh?@_u
zbTbzhrkfLxe!*}6Xt|fX1pC#ldonI6vxh6br~58zPsIu;QLWvlKGQ9=e1gv%J+@0j
zBh*8aCzY33yy#7otu*8{MG{D$L|qoY9cHWAG!K!LEaz1Z=#A+Os|Z%sNnwkZdrpkl
zcG5nTw5knZJ>b*SDBnub&h|fm6kmyjSqNlyy*xgLQ1rDNvfti>!`{T(&IdH-Zv}~U
zWMNJvmC9j36k$D@>#jbpSz~4d``0Z`ICd&@>1FkpQn%Qpc$oP=JI&KOR%pjPX?cf<
z&3wmV0JF5P=X=SrM8pEIzz9+z
zG%cS>3a7ZA{yKp`m7O^_c=8PM&d<8thAhi^*>#|*`K1s}c4>FTMmui%meYkf`f3=>
zb)H*ySF%bM3%u_jaeB%7l}fook%bpU#o2%Hbq1>Zz+s`lnW>qVNUea~*FANb>M^r2
zrYI=S8o3K^oM3UW7B#!Zv}s@$Sn@LsKcV`WNPFAjcOfE+W&T#sTOVFw6kj@U#YOz3
z5r{;H@uO$7TdA!8i&3eJ1*We>L!`u7$=QX1#}&nCL@xuDE%S`h`(T=(=+bHJNRIeh
zuw@GNb^G=_y!B$q$TnGXOhfvr%<8ZXMEBhF<^ga>zq{IEQ*yi&#u{KthA5+bo{)OH
z{{%ZLl_`Z%ivdL&E?Gz;>a?<9nO)&ag1CE+*v*)il}GG{#I+j7k%os>?*hH|@wJ|P
zkpCo6TLcg866kue=CGqJ^;2+}3B>88?h^3f^-cZe8w@P6w$L3KC35WGnT0Hs7%*o
zIjfpqlz#0d>?nV>J0lV6Yn*K#Z11H^;RKn8(c{msbqm^QfR1RNI@)III40Q+v&Nv}
z4sp)eh@$d~e$YA1dk_w}!g+o6wIX3&xZPj3&Zgr^Bf~os)$!fqiWy7j{k%6@PAe#r(Sz;y1t}7;gl*2`Ot6*cpbs*v1bD^
zYgt4Zo@!#XO{A5|kT*Bk^X4I4&{^u*#6`*?Y!H5M`YKtcywGwfP?ijg9b+O{vdNOw
zqH~fo^vO-MpFfg^CG>r7GU(}>M0bh5zXO}5zbDG?4vG
zXxBG9to1P^to{Cn+S8h|XWoQkcB)ZNdMyu%p5}kP9Jik?43?H$#*&&3PiypT23Cbq
z-I9rGI)>j`&5~sC;&Kt)gcx6(YLh>VYkM~j{`GO)fxL%W(VSvYiyi2z6(9!`Z0P$d
zv(0=PL6E6DG&A$(t#hQQ;p(elBuTRB9^{nZL-+B(N>1vGvnJGskY}t-Ppjf|tRx@C3GXr&)d5phaI61a50pQo
zw7DCyV6JUsn`u|AbER;O)*&ZIfpordAZ4jAiA-zaDJb-}A{C6+11v|ItbKlH|9mn(
z^|}3u{{}ZlkKDH)&3jfUR2F=FT6(=t&~!=Adw=UTKd<8uI`e9(6?z}5uGt@HrFrOC
zNqKQsxt6&YOW-x{t~H!T_e$$XlXp@Ix7k_2a)%Z}o!IepFlrb>82=5Y<3B({Mt&_7
ze%FnF;Hh6s@siwX(=A8Y!?KiZjqICTUj5a7mL<`70C3t
z4jVzaeI(){2}^gW#J889f8>2}uzs2+!YDIKQzM$mit$^+P!JB}Zm64AbSiSiQdID`
zPx|sL)~_g$>gWM?>0r
z{g!(2*CIZJOn0J;-I3<1NhW~%da{22Rg-kA(5{JcdeQ=_u!ra!L+k-(%GT9Wi&wl2
zsxrU+0fe5~Rc<3^v6m<=;U#fJ?9OD|(O^4BrY_u%(5w4ufKMY-hR;q@k_#=B0=J(gNsUeN!&LOPoYn8;%;^rV*92jf
zHixBLGkou7M%7<`{9!x&@~aGDc&kE?r!XgL9wwWpsDIPhm=RJ-sk;4wSMAJT|HWHf
z7GAh3JYsqa#lQqdIZPw8$*Q?+zu7LpTEka+O2qNsOmP__t!38A8IqW@;65`^5FMt?
zh3iBr9PZe@tMZ%a|NReO@?9((tGB1Np{9qX!T5vfLgxuxiA6QRjHV72Q!X%@6@v45
z8RB+xX=gY|bF$>BdY&qS#p2Nv9JjOzZsj1HZ7H0HvAllU+
zH7gJPRb@4##K~+-OEW&fCB7IZqPyW0wpb7+pTRy4xOuICJ+%~28t@3reXrWr=J)fWZ2uA
zf068u{pMxEo~`-4FsotF%@7FOL|2qs@r;#Ly4-4jJmGRl$rJRk&`yxmb9ek4@uyb=c?P5
z73GGo4=Vg28iH?ynpr}Sx3u($@Xg0Su%6bC4mR8Q!LrMSF;;1m5a~g^uUw&SDMQ5M
zy5%92*4GkyOCuXLlQ4z5qpYHjMe8&-2B49fQ)i@}Ehft1>Er#@ZX|1`3A)%(`S_X5
zzgJtFsSj4`iK1(wzT8a3?l{{=Ayb4%zvKx|m48sFeoIq~2r7PD@k>@3q?N_e)d{s{
zwMSb50g&S4QN*y*-&%c*$BG=@;kj;nfYxD}kY{Nm&WR%N((EZ23BGXM!rB8%60aO}
zRy=%KRDmnC5X2y_H8CNUJg5@z4R9Omhv`}4OEa;_p=MOX%qevGtXxWgQdrhUzgnbC
zph=OQU?BL%ziGu7hu8$&nzeCQ5;M+RTqzS(ji)g)Q>(1b
z{<)_VAMmrM4FR8dz`mRt6u)a!wE0F7_bj9#FGa0|44&7-LE^40rT^+lzsvzd?CHc*
zXn*BR!vJs>`THsO0|e8MCPN3kL#-@U-d~SVaWhc5o0K{UMf80H<|cvuo`WarP8vcn
z#}tVdMZechD}uN5TU^2iF$&U*Xm_?5nnlbE#&&RtMKy}>1(?A@wHmtp*|c4sCVsfeq{h#E1qKALl~-jY{Cc(H``q
zqpvzQuXozK#>WMAVDjLpgsp$l;-DVwZ@4I6{5M`8@iLjADEnki&y4-FH_Q}tr=%wHN|QQW}Z?pudYRBy>x8js91
z=|m#}A>4P9gDb5yQa+tt(RhYZW{359p&YeJ-CEji3}lZs&Ka6riFmvz#*Lab)Jz4ntrZ5xG=Fvk=|OFY+a7`
zC*j#4U%J~8Oc{2W?C}mHik{20YWqF(ZTiA_+1wbd%So$&8VZhtfoBfcA}*_b5JN4z
zUCAQ@^NM$75o8*gZ8b67XgcwAV-+9Ij1^{lwW^2y#hR6rwSrQ%nj%c=0<6eK9*u9-
z@V$0V@M8Y#E!NuF;kTa^XMSMGi}s3Pe1piwme9EqiW#m|L&9ld#em8ZVjRRmDZ2kB
zf4N)}z!&61?lcX5O9sO1?xn^yCDx1#4d;xewl0R>&Ayin?*A@?{%0ncR0qPCG@_h!t={f|nZv@@N&6
z>R_X%(tyv$UQO@3fXT7kCC#A3$LA=6gI|W<%ufR;w`pBHo72m)V($srjtvkV5QajL
zrv~X_Dq=%zw~RzRePuCPGyzRWK?Q>4Yx0DM(;kwl%$abr
z<`jhN04qbRWjSf!-bY~}K$jB4YYx
zq5Yvnqt#x!kB7?^*yFk?Y{8@c#c_twXjMJ2z_O&IRw>k~G|eI%v74krJ*?uf2N_P`
z^niA|q*k3!=drx`5+O9vK@X9~rCYl|Db$lxs0*QBO`DrzCM1$tSrm64%-u4^e`@n&
z^E!i^Wks#(M!4zOtqy-m4;M)o5nmadKd}-)4lRd3z9%U}3oW{1rceOm2B+s{G~ZCs
z-e#_TAh7kVa}{#FmI{757Ali+;_
zhMbITUBS=y1MK~LYO@%s_7X*^?}R_k%v=kUJi8(KKSLBO9e7)HzVF_+>WH<#2@wP$
zLEmqT4_}b}lN$%jHLc@y=XWR7kv%4`XHwLHeu(v*`KL7b>%wp^)?L-sYT8TjlWONA
z#GXw9R4{Ia*6;+j#zsP)WFYc7YE#FGVo9&s1S|}`%6QlK`hjs3vZ=0bVPaL@9s9GZ
zs+l!M4U5KLEK>wxEgJRN+*bMbvKO}BoUQ&zVf@O24SM+E^iF=s0C@eV&YeBlz$(%3)TZ95%W)5;|d5P
zhiE1De0iaUqfDX0!-`Tv)<%8n{Eb1YGcdOr;g#ga>O8S6Y5l-DjKWZ%ZYb
z7b|u@TT_gtBxQT-)O$$4|DJi0`$}<@!w-1spt&K1(7b#aFa}73OC~aH<;EzlJ1uK?
zc|O_i28!6ARy?xpRSwXZEb)y314Unk;4Qq-~EZ5f7@BfN#IMG-3pkKas=+u?Qmgj9Cg8y7}l
z%8JbnGZG$64|HOz8YfB&zAt8jrZh}bMO2|Qfr>t5G(LR7V01gWl1!uLRfX@|M&}6_gJ(
z5?C3P&|!8i_BFD;;lb&bcU&__E~{0}ULrFna`jyuoSIiuHkcM+B6?KFXOdA>#4_jb
zYHpa#$T}HXhElWv>tlN_|>g>t`1R3y@S5Mhw!J
zL__LMvS^p-WMvpv&a~x$LD(2VR9E-P?c*?MCyv#|i&>~KkdHZ%OtMhgP(`chIf6Up
zR92qk!07za4s7On=|*HCtsJ!SV$pOJ6aOTRhXu=DT;;4eWE_HwxZU`nU=p`c2yeQ+
zh}oWCE2H;TJ@G^9@EVDx*2FreSLCrnYxK+Fy%d8HBs(oOkweF*nWH^DgCg#61+@CK
z^(4HqP|3qN^_rkVjyLCK(;E2HZ<_JdL+}X-Rai7sKWV~Re*l+7`dtxxx{N`NI@^|9
zDTgJt4_?@mVF>-{4WLN!QYF+3
zkCQ7?Q1A#0;;a4y7qHk=hWzEG##ZHikdqk`!0COjxPUQK+)Upb`N(Z8vBWTN|Lije
z?Gf`e>4Y^r8`060tBPii`->s3)~B8C)i!)~RzIjE-H8woS15z_Yjkz>z)_z3OxP$U
z47yot0;~FpPbNS3^=D;g%Z$TQw~e^8fPe?Sp3Zd*KaQZE^&=I?Wbh^iXTRu3vr}(4xg|pz%09)w+hK3fLBp^i`ooU9Uvs?CE3!cX_#$M6^cG
zvj9R>fIB6Ip@tUx<&6-kByG?MuNY7{LcX_{I-i9$LmE#%yGF~Wod=XwT2e9lfuK0;
zlNEJG$);nV#0&U>NHq5NhwDm}o8a!d)sP_63ry5^*$U9-wJ3fYdH&WE3bfddYv#IJ
zI+a-1JJZF}3kJE(y*4w0Mj;HMO6!5ny5k
z2lICP9VX``Q!)7qA;rQ8oUi8YicolC1VUmO;Kk=Yd~QjyfZs-2Rd1b#B)m?r31&K0
zsQm{3?Dr>EiHE_5H`LBg>hof^FY&`{5Qn@6!7qEceE`bS7vPBpAN>^-fEhy&Y2NpG
z?*69J<@Eoesq{bft(T(GmX}L5f{g$77j17TB0W$2cxnmy2f#a%oN@6WQUth9_;Js)
z`Q6<~9HKG(1GFr4dL7iy|C?qcgTrb_$k)CBV+S<{HI4K{Cto%z*8QOwB0goTnk8W_
zpQLe5u|+S>UfoF~7VWGVFT;YROI<|jsrqSV7DcTB0+dXvk|E@O1~cM^lL$qMxg?jv
zG}&XN^j1V0e0UYAh~$ScaBNf}qkjXVf1F_b1E?>1t*b#O^A95|6rC~0&WeA~D7Lww
zVgZ%hGmJSg1Lb+RWnv}_28@9p_pZDm#IAN(U{5I*DwCf70G)7B`aIlEu^$!UT5j{@
zxvXTTtZrLSoUl8%*81jJUr!uZW!i}V%qXQacoeGBk*`Gsorxaf?)a8I(+LD$dl>br
zM=!ctFYO~b{wyEfD#@mrL_xjN)HK=;Mh$t_X@4+i#oOyfn~Yog)Ga(UEl!>sC*M4c
zSbuZP=h12H(!6*y(yudR~`e0io>?vqU5UTf)Ye&2{vZ$3D$vTLdfPnuQPAyI5
z_wnV?u0B?_8YUc+ZH+ColUnK=ZhAIzrfB(NVf|B!_WoRAmqJbf{n}^LY-(l(cX0EjWa#Q{5Y*X2uB;ELm+_TI*f_OIl$N
zQz*VUtDPgZjDA>;eJ{Co7+oZ--iu2;k~x5=FGo-L$GTtjsj+hudeVjYw8-NJL*z>#
zreMM$zVlmUIt9}AD#7;B9wYq8kDYez$?00``g;~TyNVP^3rHHvf4EfsD5+$h#0)nX
z{?Me?C?|DEnY>FK`I62OC+BBah(j1B`}zRi5_OPi3U!=vuG`9utzv|fk(@q-J(Q6+cichI86B{}RTJSO&Hl*z#8ZL|n&g`JbRUYGhA?Ki53Meih|WE_H2K7yc}k
zPlY!U097BZsh=;lORV$18YzMaI2QWmrseDUY;M?VXEf#%F`-pf`*amaGOs+b>yd0s
zt>Ki^jG%;ysO`3?*Z9I2nR;mctQ}C{Xo0LRyOfqc?3QoXe&#P!vRuvaPZSodS|gQ(
z+Yo>33Q=|*rcTFb<}FUV1OhUsQg&IxH>+p)2++7bp}=6)w{i!t7CSQg-Gg>Z4z(Z`nM+o2B($ejhXqP#H;C@iXRTg*8nN
zxQ$)oBJ=qtF=d6?xl8UBSmXQKrWcd!a#y}i>q$=qg;}cw9Xd=lgy2^7yh1L>0EqdH
zHGShT_~Eye^LtWbu)#ItJC?ds#=ys~t6oV8YK0O(rbV>*wkE97D_TQ&WoF`uk*W=~
zMh1(jG~wW}t@lV<5s}=X{f7fyIQM}dN`?MhhGq9p#-xpNP~;h||{)7Dl!KEser
z_U~J-5AT}Py26oOB{fSH=Nu-nVv>Vof^wC-xfFT}?BlfCat<;xPY=keHi85>+5F01
z^rp~0gR!S2m$(lfX`(fLiT<{p0!5?zDdMt`KbYFy&FoB8{c(a=WGEbXMKN^NmF)aw
zxUjdSs9d>@za0Bq9k@)Rag+O-0^P_wH7cA8G3$7T8wIl#E^sEm5^b0sdB38hQo~Y~
z*l2u=UFUPZ_EBq@nxg3ffa#y>?(L6HfxN}AWQV%fmk%iNhp#nJC-hVl`d7GRJrx6vO*3_q>=_-r{
zl(BjT>|a_f2>_2AV2cO?bPhPEksy-Ah?Vt1gj?%{1JMkA-kz%w4lNhHsD6vYYB8PE{IKM
zPeX~3FfeY{x*}9ch9tE@4w@9n>K(7em+!B8u>%ei@m;u5LWb`?-(z3DvDs!D=gG2gU^CB
zcn*#T?Pqd4#*&M8X>e?xRE&gEM%iM!cO&lw57hA861ZY$ql8Aw^85;{66ZVRM2h9q
zoETYZAFu`Qa2K^Jej%mAG!;iWIA{gR@s&o=6i{!`9EXVt*W&w#9BZfBKD7;{V^7l=
zK<3Ulqg(~EJ9Lj}<3TGPRTmw=o#SnT6XEA_`%F9Wtg*G%>s^D3*Pp#8c)E?6S&J&&
zf(Itaqt=H`1?`TtXS8XC5cUJnh4d5R__+W`BY%l%Zl_E<(K_2czNvyUZ8STL)~EX_=L8G1+!(r
zq?&6Zez=}qisuiueD25rW?q8eP;B;@+St7x@)k!B4-T465Lm##4Of~CS`x1ss(zrk
zu1vJQBKNB#%7Qe{vn)qh9zP*QtvXY1#*;uu^9X!NK_Xr@H2hkeTv^#mWA{dyaWCFO
zT_ddmZqqG1z3C8lJ&W$&(@5+|>h2J&FmP#-2E?Brmdp5*vDnZ@e}BYgWZ;bU+eQb%
z1{+|bk6mlD*=WUkp%u~Z%l*9X3$*%vj23!wUo71DC&-`ek{sh1ubX7wYQ=!fZJoM!
ze2Z&Ap?cjbD&BmPAD@IJ*=0{e!c%4=i++6GXP48}PLzUMFZNj`zg}|st0)8
z@3Y91wYzlqyrHjX5wq(4!vBOQRRG!XEZY8sTRhg*-i9ix8CE}
zIdRcDim(pTJF%36XAnb%glD(CWEm36abt76Y!Y(>~yGYpjEkptIy7XYaWDptV6trtX)wRRfIJblBjob&RHA(
z*y^HzNFDc8Dr`k$NI9{w<&<2Eluw+*u{|~Y`R|?^!7Hby9a$>0i2kkGnMRj8bf!TI
z)YRCu#2P3-n6{R28Eb6}hMDiPl$FsUA|#ubMB
z7V45t0f((Dmvwl~6%?yoioNkLi<1Q&Gt^!xKmFlS9+`8qgDco>TZ)oUP>>{^eoNfZ
zpwtV-s6BF$q@OA)101A&k&T2DMw%&82!#T>5h_n;QB?D_Lzy=-bzANY1IZ@`Ty
zCjmK=x!#h#{Hs;-T`P9<9$EZGjM7VqmtcS#32%!E7zu#DPyGRcJ0R)dooOH8u0vrmmdXasCJm$PWuq
z3eEjx7=S_EC)(ZVut`+#%wwo+X^Id4Zyq=_csy1lh~+Lgm$Mg@k$&Z~*bSmcDt(dJ
zUCti+u;{!CRTB@+HC`+yH^Ougeb;thlOEEa`c}-ES90NKHp^+@MGcB>Ndy>4Uf*$(
z4CDz26+7Q>sRKO7^SV|H4S&NI7}Fh>isB=!l98f}bslX&Z$Ik;;HQw;*7fdbmpMH4
z#l*37N8SeakzmGRN40gEz;#(Bs^nb!i*4#>EUC|=AOk!x3VhsbHf$@goJ9|pyE01q
zwTe&tUd{)iRYfr%_HVt~?rXUuMV8jJT)2a@ktq2b7SeW>kcw?ukKZzyz0$66*rd#r
zZ2FqfpG2HyB)K=`jcHI-JPy`%k2@VygL?}k?4jZ@^l&wZE#M|ONkhbtpjlbq<7noy
zs*_Mc^-{S4Hq8Xc6yp~SBMmdk6T4MWXX@7FK97+~E%mFUz$6NZ*)r?L7x=Yd*#mdU
z!J++2cuWl6w)-VKhQF5D@=_AYY@L@={6!iYi#%Rtw3A`o^n|^#qy{a-F9zkYopf1l
zqaQDZ^|xv@p(ER6&c+lz_LO)VHPf?He&-YR*{5>}yT_+z+cqNfJHJ4Q%j<~fqdN@0
z<+4A|p*QxPmX&hb62BzIXWWcm&gTLWM|ju#{{U9x*tRSOB9&5Tg+RPUCAIfH5X*(=
z5@%uE?0rchgpTmfHK|+oXSpY>eRZ=@CxS+a23}1>1m3f8CTnO*V(9KDkI>XZMat!486F#Ps%Ojq|a4hZNZk-*L1F+pdVSm?bNc7&k
zy0GCh*-ol^~?6Na5M`NOMmm?Wt@(zuN1@
z`2WW?^xtKb|Ai9c_v8BJw7s9gEHy~J*H85&lmmY2hv2^{#8<!=$!fRc>bF~WqFuhH?cz(pmbY*ocy{oh|vs-q`V*U!ysjSJJYMm
zATFEH&ZiXSKptC_Xkm~jepl->xOUwW2{AoAZ9+izs@HSyq+~g>2cv9OJQb1
zMavO9_|fKTI_qX`Aq_be3xa#PRVZ5*(OI7as8cBETGHarxE}`XSSt{xy+W2R_1A_o
z#hm1@z1+O$TVQnh<`D?WTG0+8$8YR*S7lj)aLh%GG4E8
z_*L0KL{6Nk31Ly)-+sGpps3jpAB#6Ko3Hw?aXE1|I&c!m5#`wilIQ`
zfU|`|!x)5pUZWjT?Hm|{FvT63`B_~Xi3xhSMkTWVfvcs`&
zqO0Kml!B<9d9g2*@?XEc@EX$(6p=~FRIi^>P6vQ@K5Ta5u$|UGwD%%-_U^QSQ&fl`
zy1B{%?|Z=|Ap_q(-wReNDseeJOa1Y2qFq{`u9R3QEs2X+Ed&N%zUJk2&K{Hu-_mc^
zB(0LLebs28;&3~OPZP)Wl5R(%ev(IIfvQvjL<4830;6Y|tp82{%=PbZsCXFk=eWlSHAvV#4)DXa$LFTL@E0wP
z>|P3an1+TE{3s%UOd2xAe$}HXM9udnwC59XpIB%HH{a+L)h%p#J@p*|J7_7Tt!cSE+mKJbS!##)Jr2poPC4I9IJ5|DA
zzNths%ue{W!j)6eh2h=1{I|`uf=eT(Pu?)wbfG35mkC*`^|A^>??ypLA+#G^nP*a3
zG)}afzAh0-u7(q4^5FePC_lBQ7nl(YB9WHoqtJ?0%d4j*%_wDMMxJX&6Z(;g5d3bk
zXlG~ghdRQf+YZFvVHj4fSwS8358y%LZ-0@Jn^t_i^inOj8X||Clx;i7zg-%c#$rQV
zq5y=;F>fT*zx>;4!Gl=c#LRT%vGe{~52HJ@zh$^T4?^Sx}WTd^fkp!S(E!73+*
z!r)u?^Fs1>2=_dNUk%*N)^7E;bYibxZbw^5QP*%>k1d8(ZF5HSmox8fsrr`cFIxTD
z=d-&!W5-&F1qJ0vgJ&2|hYJ=hyUlRrJ@;_C<;mENvM)vnxmcvXZL`arxBxt#(zG+D
zK%_HQLOUJ0tMHcs+cq|=V)k-;uLt;F_8>DJ`d+=$q7qi>`lwBav#b_9Wr7Mb=W2Q51SW$GnVqi=Wq=`5cf4Ba7Be=w{3by|wP-VDN`_>Wm=V91G
zO1jCGf8R8+SGEN?fDJyPe>*MVyKCdGC>_b*Q-TPa}z;
zyfkUIjzs$RcZ3MWMkpCtyxn`&rB2&KfZ81?wuFYGd%SUAYsmHUiI@0M>t|(`7Lc-&
z(g}S88Y+8FOt|sDTx?DkYlJiTj(#?S(BMS8b;!%kVY2YRLRd1@wC1fc*XHJiq0=?O
z4n_3s)x|S8%QfYXd+A52Zy@COtb!9WcOJg7U(zxL$lB0mU3xaXC@EAIQJPd2_`>aO
zOtiw!g=Y0*xKpc^89Wjb-lHYkM5Brp+ayEbhiBeI+q}-O=wacZS
zTvyK1kRREe!TKrr<|V!==^qRYsVag?X}}B0qTN4J=+OU#m~!JNR&G_U7zS7*>?ego
zjBK^6JpTd@ek4a%1I=sOv
zci`6BhoL74=p6d%a4*eYrvd>lFIa+mRf<3E7Jbw0!Eo1cBOhZn-p_(BtaYgjV4i8s
zwq&NRU=Ub``K3wF(MN{PP8lz?2%Rb1TT}C8Q-tY|-E-9?>$K66z(cO(KZcdI<2G9K
zcJ$oO$qW3=Bk!$A;$NT-A=e)^r4#`
z`aH)O8_p5DRKSMmcK1Z|1217s=Skapmxa5sxNFXY9@n``_ibB3QDrP=;z^gO9@)66
z*k2M;+u2?#r@i%;Vv%)k=136flCn;0eP+CTgRIu>&yq+Owq#icBSZ(Sc5dSi-uq8|
z{Ju?Jf()Fwj3d6*F25qs&;Zyx0$l`}J#M(Y!u;=SxX&GY{4rG|l5U!^H)U}4qP%CQ`R{^iu3juqvDMPNlm
zi2NqS$DPu-t;oe$-gvfY6bX~)y3kH8(BYP6|JN^`OjUcw!0x8M>B+8&4}VYbtDvpl
zAgle^#rgz&CrqaFXe|0riST)9Xf=DnX$#@rV5s5Is7~8nM`p6!vPI)kQrHGQo0F(I
ztk5PPl)IdC`J)RxYN+z-ScV2R8zSf_>F3YXD$L^F&M6r)zZCx771&Y2j`PkU`@WT*
zT!kQ9O4A8#<%?gN`Np!a8q}T>XFZT`;qt>$n&uWx&I!9Wv5U0Euid$VmE%a$_G`+n=ZIinD@uzzZlmU*VW
z!KRrg>BcK;XHC=IQlRoTL)73~;kU!7S`ATGsAdjC;lKu5#3;2kV<^|s$|+qGO{op3
z?*v+L&TIdg4Sj6!Y%2q@SrKWn@S?!Pi$q4!mZp7k>8FD=5h%!!1mmu54P;(j7zZnI
z(;qbRd&i1p?M(fO=VhceD$;O+H_SBMhjHle6#QQOV{p!!84S!XSelJ*WnO#}RI{sBNq~k)RsfGCqRSS2k8|2H^
za1!#s1N_1i4~juDViUrQ8AL$dGU5ok5T;>m8jre=MY@wDYxQ%pE2x2azk(2m{=F5J
ze@V3qFwLEIaIGM2zk9!uh^PJK{LWk4!NFehY1T#QLBbaNB9Lg!BuAEY9J$%Cx_ud`
zE$@2!zW2AbVJ+WjUo2#jxh+met)4$+MwK;Rgx~ofaMk}e6Br=I_OpJ4fJ9vSm}*Z9
z$)J@4+$>=0TM09MOX*0^`onQz3(lZBY_?B3YEtHerJngrqO8U$kjSypO-$D)|ARtN
zlR#9*4Yv+EUnPRiZU=L7puLZj8KR=
zLa=nqeP(9D+fznx9S2QUpv$h}S*KdSs={b6xNGx>1=hhYh*QeVIr2AdZ?g#P`VKW@m+l@Wx!-@#E4K(6m
zFXgS3RpaKSpTY*7YAB7qYOm`jjmh!H7cuS8Pb1VP(B>;rh>BT8h<5zVUpZUxSh4uM
z;2xQsIyAMx{SeqmrrF{~c$-$#cqD@6{>>zBMW|HZ1LW3PhT#?OlumDs@U0##qTH-$
znV+q_)&s>R-DTIqR)fDO?aj7<<%z!}jL<$gkP4tMd0XF>M_8)4`Pw&(9#r+J(v4ZS
zAzp^*1+!h7%U5U#s9v0CooN(28H95!cM?T@CtNFCUO0X?mQ&t`)s98EmiJ!EqVC|Q
zxl}~|?hS_gUy(9}8RwDSz$n|?!^U`xlX8CtW
ztn@Kuk7AVHwGUxk>x?n$tWb@gVrVfIr7sbu*NoXf>Ca6M#tPgzoevfr;*GaQ4K{Qr
zx7v%(q_>wHPHOiZOZsiBv)>%wiQzB!VJbf)nt9esr@8Pbz-gbxPne)&>+vmUO#1pHNq6)(c1
zHghW&;YXiXxx~*@4+&);!hE`T=irphtb!3z-Tu2$J|=|EPBn|IYR3g)b|l^)#bPDb
zAT(mWhHI)+GY%hv&6gqH<4TS;*fq?Z)9!9us>lvVh)t9*noe9>GY6gy{Fq8brHWX%
zBHFsC!_7g^lH4|J-CgUDE0|kb-MtH=4;dC2=q+S2tWq9UO8B6qGWsm;ndMV3TQNWL
za`^v6HQ?;1*=ta{9f!*ZMYI^^Q*u6mFgz4
zul>q@sHVHjfI;|4%(a6;omb%c%O}MUM3AF~iOy$ej$itnPX4ogtoEsV!7XyqQ;@`1
zrf^%tx$HJ`lE<#&?vQf{gCaK^fH&R{@Ufm*tSmp@A~B12#~fLY-qe^FFxAN+F9
zQFYj(TGWR`@O$a`_J?Yh|AA0PN-3jFj$PE?{XBCag8GSS^H`GdNezkJGDj<0QZNff
zuuvu&QeXl=38SAtLZrPboS#a=IBdb)Sc@`Mr3?4Bh}0PYh#r6xnV(^uu*x00-JC<%;t|GAXrt6a?=de^l!}
zEf;yFl2dI@HB%NFf&98yUil5WBBmt{naR-1n9f+4#X|w6kliXD*}l>l@UG
zVW#rGj|rxT`JC&yYZnHvF6})h)lGi(UuW8{W|4`y9nHj8s&qtdk1MUX22Y*!h5pPK
zfH#6j0S|)CAo}e%Q0d*?-Bq=0WWxQA=>v!7<$Eu8YV|3(nE3u8&)|>$0E^oferu}m
z1RabIQ$mGN3|0&=?51J#0P!h@{$f#I1yn{sa5=*(6mntbpestfm7g>ke)Mq?#SIXz
z_pZ=IrOPPR1Zt`Sc`v+a`q)RYw=~<8OCs_D#->>m(WWtAi_UrSxGIp1B7t^CE43T;
zJA$xzTKf;v4R^$*SKDl&>@xEtKWBm8!=IQ+YZ4{$t#ERwmJpe1-;#f&t%v#jAzW`r
zc+N;+Q|(nnmme^l2)9{+Eg;U@9RC1&`R59?&b)ihmmy`_v&xx)^>SRE*1>}hQ_eA#
z?)YiWnH6IooR=X<@6V9_JE&x%-b-gFO<~5NeEJ31T=&!GM(*YCkFc>}>(9Yl*n~U%
zl)Jfa4~Y+p9IW7jd+9&G(1lZ3Y?a>O4krcg8(pHr=&1L@Jnwu`WNhbZl|_h;*$;Gl
zr1tF6M`pFEafo`p*fV>+y~O7G?#A|&a>q-8&z7(Or(aagZs$RaZz`$POdRvZm!ym+
zMeoIm%3yv;;W=DqFF{hfoZocO;Am&tH@MEU+-?J})%$tAtco39QX!Qva7J;YPN0+?
zXqkw^FJUJY`=+$C%(Ok&X@pC9OjG}2u1A!jl<}OS%8)2d|J_9HO92X#)<{~)q-n7f
z)|uZfhn1JbA2rMf5D6VyP`~D2)MAsqE=gKaXf*!xux5Nz>}vGN_Fn2PhhDzMcX}Xfu0I(z;5u6C
zE%K?9-B-Z0H!bTMGL#traMq+KW3&DaS0Lvfk5b1>)qCvX)q;k`{4C9h@J$i@iNg-M
zLdVTR`h|$|LYR2d++|7BKR&Ump>jtBJBJg5s{~^|a!@Gokg9j*SC?-4
z8W7YrsF?pj&Yo?7>bklc-gR5(i&Tyj$+k}0Snes6+OVE4q~B?M7i(?gKP53K$W10o
z$*o=yT55|@aPzE)xOtnlq8FCQTJIJ5A8egfP+M`h?I{#!DQ?Bxt;LJG1ef4e+})u_
zahCwWr8vRerMP>rAjKVuJ3X8`bI!eI&Ye8$m&~3$$$t2M>s#x$Qa)TXO4La^)IzFD
z*55sy|8Q(=caNZy3Q|Tx{KoVT?n7A~U10{aC28(6Z2fNB6aOjo>)D*4A&o9I2PQVb
z03%+9Y#CaE=(|VFivhwsT6s%|*Q=+Wt61Z!>ddY5N1D`kt1Y^eLYA?A!W17C8*D?y
zpo0|%ivixZNz)pQfOoobZ}?2)btS*4hqR4L|I^WC?0`6XPR=|*#l|rk6^w)^r{j{D
zA*p`M6UG%6;SG^XGDyAUNRWGX09+y9=F|Z->!fm
zh*ChjS1s8^O*&voOS3Y>s{H$O$yw{;VawftCn2vHc{{Nrd6Wen_Z24P{S^5^z^qX(
z4fU_~6Fn_PO(nPJBkw>sb?Z3sE>ag_uhy8OMiK)1g`Ew#La$4mg0GCnn)`1(Lp~-m
z>UBU9r_0`&sH>0jIP}WB((K#K6n8+F>^StGpw?#Ss(GhJ;c86&e*41t{M*h>S6n0*i{?dZIUlD
zR`-#wLO
z6*Mo1WJw^CFeC8`I_2sRt5mt0{a99I>y>%`>fE^W*{wkS9Gu0Bdn>Lz23M+!4Zg3L
zqio6Q&U>wAdE2PHD@oN(`z&1Tm{lmZ^|P{jb}NrV2_p$Si3L5Lyry-2|99hDV9TnX
zkf{w>l8{1bj^%==%H%fd*+bLMtq**D)tclVn#wE_Q+2?b;2c`@Va#AG$N?efPRTQR
z<+KMd#tB<}8o^6%HW;A9T5;(tLoM!0t=L^)b?ouLXi?rW()$eZQ#Bga6-b6jw)|
z;Svrmi@C=s@0g^rVD8!~<=!BYrj})Ge0*GGI&JqV5}ki&xeb#UyA*TF
z`j}VU(rtFCmtXHY*2mL3R6Pw#sU}SUsKe;P_!HTBrfWIdWZPTArG>jD3+=t(Qz4}+OGHk2Ilb@|7Kf75tz
z=f!^3#Vow`v$kV#z&}lvJuc1gn10h-voHmJ{wn)DB|Ej{6*su?pg546SGH16?LYPu
z3SG{Uvw!Vb_bXH9RF`P=WLqANic#7x98lIl7h*V^qoTBCGV=}|qD}4KZ5JMTZ*}Nx
z@1`y9NqoOBt*6dD#Gxij+QUW|qm6=x{%a4HYXXi{ojKWb!g)+Zs_%)HEac`xhVD
z4}rlv`Ae;*zcsKu$Oa}fl+d%d^^^p-mxi0~uI34ycbrEsvlN
zZ-H-~L&^5_Ey~;*;yz7Yb%8HY`|l)G8v5sF1b%Kp69MUk%qxYZ2s@1N<8#Gmm0~TP
zT`wD*;pz>?Nu<$hgt48?6xF3eTeaV$VW(JY@oZZ3G_JrHHYG$YtFm=I=CYk+(y!tW
zs@2%Iu{yiwuFQTTm4%s(lV5AQi|TmPF_`&MrX}iOSR7?Ug)Wi;8uii^S^YYV3FvS{
zUONwr4`x9>0*{pMJl)LL^_pEQX!s`+&z54KX)=3=NQM2%cGG|Wt8JI
z&V5#7Zj+;oDpqULOE9|0G{afaS@~Gfu1Uu+T8;yF$F)enO3gg7)dE*$p@CEo8B5Qu
z%!pF1umgTqrb~hnIxBdnKBwfzLvEs>xx-tmXECslCTHK?c*`?7zQ>+M#CX)?Kt>`g
z@5cc&J1EzT(l4LF{~&5Iql{H%+faU*-DPODJG|Mv#8N%QH90%s?vAUb@Y^x~i&ac}
zS>9@P(fmeZNss<$JRb5uwwJV4w)az(dcX+5sD
z>Z{b#G;GevtJ+JB0%w0aZ5=Q~nHjg74_jn5=pG=S?(_3%2$@?!$-sH^?Sanng4C-OFw
z8`$pn5%3xhbDAHn%U)a}{y`KA10_zAw~h>`g5kUJPwKS@Qxx-gMn!Dz4EmgxtF(O6
zkxn^ZOnUO-OBz~En?yxW%}ri#^O(_tr1aekoFFlR>`MZ+N9&dk`}>BGU+ngcgGfB)
zV;d{&l4s3&GjV^FBo=A3?9!B`8;tyeQ+wMhD7(;(VPP?b!__=_VeADY92zb}ID8(^
zh1GwUTJp^b-f;_J-XXX)Tz!yeF`#qL`5u^5xVS)r#UNrx5g-5ewm0@YBloQ6KR7Qn
zM7|Qsf5Rr9hVFT}0OX`FPPK=ve>i5jA7oWRP-x*PefZiM|9c!nQ
zhVN@%>Y3v2&$Wk9W$rKj!Og^
zEcw@h+0%lTsgTdpAP<}a618qCu9r?>@KgG>);mfauJ;tnlzQ!9{Jxj)c1VbZ
z*zPOj)sGIW&K1w>Pp#{NLHU5{-nZ7~_&=O8t%G}v#wh_nPAQHh7!)^}>gs;i?=YF8
zjqE+vlN5i4k_nhFbxTH*+@{9(c}V}r!X_glBlX3d8)yFOc36&9avaOIFOKf9?^UHR
z|3HvWaF6adJE2hMeC~=oHQ$p#bUrf%9iCF*Es;-`~HgL
zk&B)8k$T4!=$bxfyPvPw{`a%)6NS+6bSppQL
z^iHnHIh^>n04CZ?Mt_9^{o&q1T0$o%rVvhi+K8fn)UnIs1|~xJszT)XFShZwO|79WG=-)z_+~YquVkiSj280RWoozstlW6nJ9cDyWL0q;s
z;OgMpuyWDbytd)OYxnl)jj9r;9cRJL-$t8-yOuokGxW8FJlDgXDVDkhXh@R)_XNlz
zPd`c+5Q0KGV+*mB{W#UWeCy&4?_z+6u;
zTdgll9cE+ha)v{{-C>oL?O`d2d=_tgP(q9D&bhniNq=W_A^FL>wbtekX@&7UPYykz
zFDy+*e=jWkfvH2w`
zH|mX&Tr-kry`2t9MFl~ha^A6ge6;Cq{HwF-B@cgC-}n#CuSd-FHN!@&``bL|tJ&4T
zmkw9yeqP=+bDS$rj?mdJcgcx%(?mesQ+P#1tjoAtU?izTWdyRa`r`&dn{Pd@#?K>&
z0u8~qo3(nYfIz^a#;HTaO4^+T6g;xC!r9_U^VMs$!|f~N(eVzYF#xqr7zAA>E3xOlVs%3z1r_jaFqegq>L83XstSi{gqh&oNu#
znjzB0r@yV|Qe|1<@XINwcJ4GS%IUT61i5A;Slw!57Pyr|Ynu
zCa~((%Y_CC6L_4mSqdko#D)ycPGzk|V=K}j6SJ^S#D~d$IJ#rg%;Vv;F6*
z$b@}l6RN4%Fl0z>o>|Hr?BSZYlpHO)xnEZPdrcuWLeivngyJgv*nv%-ftEpc;~f}v
z=Z0b>-pf+4C$3SH?5wu!vA8;~ZgvN}P9IO98PgDp4E~
z97%_qW?E8ndm@jPKMH2YU0^sH0?r0Z0MM-he##m(=d+%t@m87f*mfF**Efl5-Ol8T
zncEHqEzDBXhy$_nMZ-*5yp7_;0pQ^qZag@~_6e@bPuPPevvQ{{;{lZ;!UqftNN@)w
z08=rLPh0%%*wXcUCVEs*egP?*oPG$<-J5{267)^7kr_>cjN|*TIfGJavJYB>kr(}W
z)f&OR{p=PkD{%{58c{=3)FZ;-&@bUNn?ZtSebexVM}+`xrI6qqUWHTrb=au7s#%kg
zT+)}=VRMkz&geu$R9!~($1to1CJrcH20u7I!+0yd(7R8W$x6d5XW%Iox%tO)rMEpx
z)8aG%A(e`@4U;O2f~g$M&~E-6a6W+!_F(F|_u(wpUOT_GZuX8>y*t>_CN|K)k|Kl+
zBHBRVJeGjtx|
zya=4BK8e5W=CpgzOUoV4r_LNuK%^4d&m6^^b=~|p)Z{Wcf=mUV>}Jxq^EPESs7sVq
zY{CYt{Bc&Xpl#+$o+)Zn-Mk43%BX)kSut@|a^Wu3lRA)-{kFvHOsL4!d%CuAOv(tuGb-FPO*IHALc*;0h79b=&9p^forq@b`3-38A&a;5
zW2r6^8m#Iq?t`aoV0axSTJmO92$%R}eprY~dPjHFg*7h_!|rEIZsTi2$_YY4d1rKKM+=
z7*eCCPRnvbMlcJ>&p{62gZn-Pkgg-=0?NvisJ6oq#L7ero@oHhC7rQo0tYLg&&r2}
z{9ZXMvUvxv%+9`5``w(u-aW+in_$W&XWFLKi;|Esd;UW~z7`F~j
z+iGrZKvL%zlLefwLGn+lj^ej6bzJA%=kRYtT^%mQ@(_kKcg>9n*v0I>YD$(}7h(|w
z2$PDNaO>!D=`y^@EfoO{E`Sj}J|TX0R29`7pCn$E9(nniE3e*P2n}OK&0oXk=7v>(GcKLw!^c#!e5V>JA?z_VeO*_;pD~@HKNQ
zJtm|rNSm8)ea`r^&)Y1)$_>9&=cG?n)uszMSk0ci)O#s@21iv6s7t{YjL1_xQ6|}d
zX1B9EKb#WnytPvuB<=FR(y?0+v5^4}O7}Xi}#VduOBC
zqUWFw7RV7iPoLJ7RuvXMOYayMd_zsB2%@Od%b(Hp(ukPlPM
zREz5Ru7$cD>j?S<&~rkB-E|bpc
z}90;%TPwWqaPFoMqgh@&hsU^1@GK`wRlpa+`+c|%_h
z)GY<~K@j|q7uBG2oi-ZfGe2gQV^b1KWlr@f5AzImelZa!Z2IE0o1V{416~*2=hr5f
zou5;V<`=Y}`G{Trm2w&X3tBk=&onyyNJrq+ms?B;q8w5ldqFZ@bK_WPNA{#qGiR8A
zb9=Y@o(spWOCy1Tbw$-`w4y4bjv@`8Zqt|q-inSnMLpjK-10O}`@Xa)lc1FahEv^x
zG5hyc*xVU%UQ&U-Eu?s=_I|1b!hI}bnd4KL8y){`t!5)0m6SW#RZ>v~O6M{BJMNIh
z&9*smD@5T3ZLUjBoM)9Vvu3=#GcuVKH_dSC|6W)aXWo)+##zHZjTt3W^0ImYe&W7b
zmS~cPtXQoE{nVcDklR6X31{$!=L+JgJ*doz*!9LQdZm0$eF#V`&dM>ew682{H(pz!
zTg~Jw^_in?EZa>0f)JeeOx_QjK&ldaPAQT1I*KNB4^XjycDb@$9@~$=g
zgEL(lD86fRh;)&K;=uZd@eI(&9|>M`M9rs7V@=JiE@q`c+<^CG5N(zk6`;YUOD*JI~s-bX_`aZT)-BW8|(JK53e&
zp=hS=MTQs((OKA%QXlL1?EzbVs0TD|5D&J5EEDW})&!4i_Fut9-)r`2X9Xs5*q|F2
zqquspvW;8+X?|}dmBHyvt`?uf;cRsxRc_!pGvW^HRacH1%^t}p9)y~6
z(&H#6jafE#iF=MfXG~ykQW=q~#&^dya2?kTfS%HK`1bhKWVO1o!ht?(xQoP|YKW{3
zlE4%J%@r*!E=NO&aVno~VrS7z=)cU*Q&)RO7YG`n!AM1&_qpB$t-ylGYn$V?&d}y^
z2-+sgPDua3Wgi{c)Q7=b&wdQ0634+>+gNJ>QfwNv>^m1pnkp#2l$fv>RX(ULN9^x0
z5W6mWoB?3=3+H#8l@Oz3Y^9na8gFCUFlT}!$%~;c;nmV*@xBadu*j+qJM-**mI}G=
z@XCpKWRgJ590P?(yXtr$LTJm>_7k(6-S|AIZ?uB6tGB5$E*{@0lob)3u7o~z#O&~B
zw}K0n(X!CM{+WFynspw-j5vVZw`i(k%%$DvtHBw*QHMSNuY7omftxD=Bty(#pi&)1
zSf*pEpEMhQ{>dxUROPo6^PX2gxR48^JgC6x54#^mT{D?7R-``JM&GUGLo|JZPqRpp
zc{F)^xUoI|impS?Nk!Gxu(Vl_pgSHSm94i01ovWiD?y62>Bi6XjP1pi^ty|tPFpAK
z%=1Hn#_HNCHFrvscv#%r7+2U&HFB&J`GJF|rVCJh_RyyXbXKDj;q_p@#QLqn6`}5g
zNfW(>E*Xba2M;DYk1y2k%c2HN?sz;gG|1S1v86u2B~Fd-Qn{?^M9M~0Vz?0;>tsW`KppJEzm6o%e3Pnj(N}mF(cZa-0$UjvsC;S`-E5zj
z0@gq8c|AXRRp(7@b3g^uKW0Ze-8H=qsw_ILy~O`A?|1k3jnjdvX8#PVq&99^C*1{Q
z+HRXUwvL$>{)pA+6=1$y6tG`Q)?3(Y=B{qmvzr8aIQ)YvYcW*8$B|{+nqtK}-$&?c
zYSL&73r!})JQ~0&ciN`E*V+*b2gP$H%{V+DN(CC`m#!^Yt7FY)^MXr`Cn8KspSsT%
zZUDQ)1w5ep@z(cXWN;X$>ZFzE-u5VR_T3%hlXdI5&ebnivpJ`$|CP<%U88}BjCG-(
zAg~gv(JFB(?`!|<^iTC!?>V6D=9j~AM6qYZ{eN(u_miOP7MJci<5e<@Dvs(}>?M(6
zZA09eDQ~Hid{s3D<(uCkxvp2=EHoX%w?q!L!cRqZ4qYVv44TA1lf6VA$LI$GR;olC
z6$|qc-rRjZkuMjO%l<*Jo?OU^d
zaC0LzZ^0oS;j@i{+|%v^)j8Fu2@~F8tV{7-d@>Psmi5`*n(a)~Z5XrwE!HvVV0n$-9biB_S&weT7r_>Q~NZp|LOAtRE
z3bAc;Blmnp08Gv*fLn_1Mo9ejPU;ORE8H4lN<4P0;U*dY6$rCuer1XPycw3)W=m(zkT6e4B?cnIM)g;x4w#Q@sHlm*Z%l7&xMH}43dEpuY5z+c6ZkJUp}F=
z|E&uBmv5*W;U&J?z3mVB8~o<~szCpV&}r{R6{*U-<)OKHZSMAtYr?R_&<$Yw@7oSH
zLd70S5MDocBfN^e>1W^lj*{v3q0u%{$Wed%a&lAeG4%b;A^%;1r|$d@ZvXAyC?&~#
zJ+^syswC_Fw^+n<(ypkd4JnE!FD3EAzY>{WAA22I1qe>V-Y_O9xPPm0UXxMk0~(PF
zSToJmTS0qz!bU5Woh|X(f0M1E@yNI)H9t8?i{)rTJ0cHryd^`z{j~PwNM+(=cy)Z2QeFe$d?^yE8=&W?*{YLXATU8|J3
zq-du1KBI{miuOiz;Rj;0v0cTtXj3~32+w{Hb}@klR{-tH=tZ3H@aJg(Eos4+xYHfe
z%R|zf^wze>kz$XD&0RQasoR$uq4~r1<
zq84;^yL6k!XEjt3IKO#XK3L5Okr(*F6kVnDjBqkz@8E!E+L}e%f{XbZs3Jt9z(*#f
zBAw&+u5eE%+^P+H1#Xh*+(S;)JIn0KEDv|?m9_f_p5;|T7!cY%`%FQ~TAWQ^vYv8T
zj@B7}(c5D+dG_t7l)bL(GtTzcT7vpkH+SAR03t48Xf)QTc&7Zf5KKsg>E9x_=c)9E
zY{jbs_ErN&lD?La_Vf0byUclKlqjpHT7%u#6Sg3~dVYi+ZL3rE1%ZR9H-pg`TE8OvE}g
z-Qhl~tBUQ?A0nOqz~B{sAm*7;qu8cQ0D1$FJfHc))-8=62RIt5K(YqydegqRY
zmh&-5c9*g_Dliv+OE!Oidy$mpj?MLR@X!=^(ya7?Aj1=D#2_JU04qoN3RpwMJg=z*
z#IY*-17M;RWWqVCq1$fZAFxCa$H-)`mc7ABDrP^L%|bmOB^j|E`O&a*&RaIF_qL?(
zwttFoIo6xZAD8>kHDs;xzj6IjjxQ;0FgSHb0GA19t)Y7Kg6vr|74^H;>K9-gi
z=|=f?4UHEcbBpG(Nkz#h`UW%Dv+&GL=II;dMlPk2pJq*uTmff3kCe?IJ&d<6a!5Fu
z2C#fRacU~Hvp3N*=t9s9#w)ZG`|d)QHRY^k%U3O4y#6b%$8-*-xzDU0`xO0Ed}XpTrSk0$y1NN(oD+F=BDN$z+s5O9i(UmBaq7Hy1ZmI
z=pst?y=D8Ywj75tR6daZ)o2f>Jmmt>n9{cwVXllYRx;#t?;TbttZ9lXYPdA~h%>>s*%&@cZ;;!3MTer&n6Cix1ZbP*-9^YtsDIu%0+!7w&5b_Qz
znL5irRiekp&S0s6Z`0jQE+3m)z!V8l*(#&`S?3OP8QgG*WO2h?{3IlS&;Ha`?c*J6
zyWuIDw^RbMO%acCJBURgBIHi6L5I)4H~sr1S1q=h5q7!yb=~zMW8G7XM$b$E$0?ma
zgY2NjxKZ!hFekH-T;o?g+V`E>QzM2G%NpHSPcr5^&IRPDC#+5PSq@YgvX^>S0Xt3&
zbx;X_vXE%u8%+N%N4~-#%Jd&+ENLM$74->J7rMn3?W?e{c9;^X2XCSx%dCd+Px(L_
z-?WY>ZHDt46GZ{$qRKv(J#^Pp``y@jJJvVT)@?g3GpZRvl}1eM{2!uKhtDpYf%1xi
z&e_yTSzsvc@{0bNt@^yCgAB;(SAGz{iP%?!OI-KFkdDwzQHRGIt3)>v%$?zuf+xxp
zUP5fiFX4-~uxvFeV{0d%6Bk(&)!}aWTe1{c(R^AA5m8wd1WV-;5ldS>e_la{d$9)(
z3?&Mcc(vCip517CB~}_vFzVxN3ss2U28GBe*Wf)iXmX+@VwEgNP@*wuxhY6
zI;6m}@K>@Zlm6{`QQ;gFu`P*|^s9tmG@{J;x&cowC?A8HloU7%MBx`7WKW;clq^&+
zF?FZ})}z{mi_&B8Hd3;}`Pe
zIpOgnVMpx9?mL2mL$<*z<=t@7jO8iVUIx9^OF2y-qgjY$wtKRRE_VW-X%EyGoGO(K
z?lMA-IqmgYY+adZ%x#XAFF=~2M{fOLiO||)V2mR`8R4hm_x_Hetgt&W<5kw!4r2EP
z&4s@f4D-l9>I(CMjT6LS0zRa*X+^O11eR*`-Pe;dtv9T~A|3}J&5)+NF&@v&
zpn4fM?jNSb{%%*qw-pPfP`jbNgU6K-Y}B0UymqtqH^{5OA?ka@hi6JL4mBe
zIPQD+Xi>O40^GMx35wIPun~8BuSW>B>JXtqyapgPUbh+qQ1=}nKBQqs{XXL7b^XK+
zv!{0ecz-+(_t$zt&@p`&f*#;+b=9iBa!=bmL@Bi`wF|f{Kxa*U4b1ZJ59jJM1g#}qxN0);`ruG4RZo-!Ij%l`y^@BJD00m;N7BW?+3GNie{DMw#e-Cp
z^hhjBNBj!Y<2={(0R!fGfz%5H}hUOg~iJ;qSuz9
zAlf{)2WyS*4x8~^`QpoT{@w_P5Z~I%$dg>isH7>Fji1y*Nex@9a|HZ?ooZQa^JHg+
ziTmRy(?E=fG&*SRpqOEcL{UU_c+U51mF^XU7|3dHtb59dsy$l#GG&MI%|;A0rsSSm
z`+fzX)|}cM*<3iOqh^{qm+slQEA580MH42)mfp;V)*9v3wTW2V;*lV(K#>-0F={24
z;?mj!z)d=g28IY8OvD
zX-n3W6Z>Xb)%;brG3d(|4V)3h?6n3wyy}Fpx3|gvk`f=`>88bMyKHp7h<_0|UiJ?=
zgN1R}@~En|PG95MaM%&jXV2P3B4*bT1rZh81yfYJAIws}bHrzDgnrdCz2|k9kBDWD
z@Bas9nP&>x=w%n1wRAW=@*!D(4NP9&Seo>`oDciurQU0xA503KhsTA!anv%|)o#2|
zJC(#;pxknd^C_Yb!?k9BBTIG0*JC`G7qx~Uz%(w08lW^ClsG`bEW3SHq+9q|o>SIT
zvtKnTl;oXo01r1!(&d5ZNXOf7#A(f?I<>WE;I@o@d0ZtQB1tw)mNHl(DYWx-3r!N}e45qG#Vp
zyW~W*lj{jVe!;#yhrMPHellVgtI?M-ghPO>W)vB;%`BI@cth
zjy;X_8usDBfm|d+Joq+of7Uj9_FbhFld$Qq|J<~DX3s=c)v}Pp-AyeKYSQi7&u_+P
z9FwFGI>PEswt!c$PTsX9^fNJ(cDibQ=|p$r&?S)cG^w)CH2cJKIO1{4kn2m0Jl(I|jltMYz@eRF8kp+Y)`cu}^ca_bK=*|LW>N<`iH!~utu?_Mm
z)EwEN!QU)u6A9w^sH%gZC{HyG#3z@_^9xsco5bWHKmBB%_+>o?JRaBeg6R{79rY*Y
zVRNT~gIn=$M0GYI(xFILOXyeoN4uu8v7w~IqdSY6^0)$4L~a&a9QFG?9Ho+#Gebjz
zl_r=i0iXXT*mb+?ME~WeG1zjvlC;6%EB+@ZwY3~^ZJvA)mAL3CGWke(u29n=Q3MKf
zJoH@7mufu|
zq{(3d0GgQjA!q-ehI&?Hd3r1H(C=noXCTU6*$!n;GMVH>$;gk$8$rQvadHJmR1b2}
zoFo6Zp6%nOX72W8d5-|&b4a=;(t00IriG*1vEA3yLnNGWDf2)Tb16GTL4Ax7aUm{g
zSetLMqtnxmXKk`;>rAbr*<&FQt!r>X5@#6ITF<_1NmGDW$g6cNr%f}DaDNsa*Qt_*
z=Sa|HNS#M?3ST7R@yk83x+^I_0yMJE?^w*KQ?%;F3EUM{x~np!R7NvfwyXL!rO`+`
zIyacsX1KYQmTCq9$4EslJ=u3!+O~EOOA~
zp_7KO7Q$74j#}2LhfMh+F@Rr#bUzRrk+1OG2y1MX##4qEjTKgHENKhvLiyH5iOKW_
z(6@#ZFM=Pu+!Wzk!t2^aY8Wk7_$JT49STai53a(#?xtd-lqPNu*^i=T`;L%6f$@}I
z1h1Ml8(p)*sU*hbQNgaUPua~LR81Zpc5KEg+);1t3c_=uRWX{BW|4}7)dnb1(9%{pOulY=LBV@XEZu=UZE*J_FqTUBw|
zXrkOSA>$Zbqb5r4AFT5NnC3S6O_P0Q2h*6NpCeumnp}laG*!7;egg#&HWNQ2_ah@g
zbuiHAP~o2ba{ID+tXKk*@|U_h6p4-cp2t|ot^0I{e&xkXb$HTDZ=o@@oYutr-gd-_Y?FxpZk<=`48Aq
zrJ5g_3zeVu^FVJE=XO))W>CNlYQTEdyI1s%&k~S-aG#__)~QSa`WDb=29bAu6Odox
zvq`++f^K(x%U`J94hYDA(Iir2QiRtEoCWU)meKr!*_60Nd@`?3Mvvg9B;yyMrZl)5
z3d>vaN8}<-%<-e{%v&B?V9TyM4z^REq99MgGfh3>5WYYiZx06
zLyHiYQ}gInxi>cN$5j8uMBsB9jtp6Bvsu$O?}CdBL0k{X0B#u*k&=1Yc|H@ROzO7k
z-6eQ&jKi0J1+q1pKz=DqElZl|K-srCm8zT9Q7IEsoeXbe3R^STc;%uA!EB@V1RcJL?rEAF%
z?W}+eu)|7b^GIsFITm7N*A!>77rw4xBuPv+SdO$*
zX#n`xsvV+!#0{sTYq%~&E53%4Qz#?P)pw^iSm9tIA0)GFBrM&0V8Txn5B;sj;Q42vAHW77uT64#eJ$gsNq7kC&&I|
zd|BSJ^o$n?C}^r%DDlGMK5~Q_hYXH#Lk`Yl@pk=fZJTKO*I=Bq&;C%eL6XT$KMp?z_Lu
zn|lADwg{yfQ3XE!?WpoP@9+1XChY9-XzTUXnzk!#0buR{w*K(vjb~@+@(un(mVn@p
zE4kZQKZVk^emP~2CC5-|L~}O!2!Zr-6pI6T4$mIDA}TF15$yP_9XSqo
zehBo4$igovqGf~EF`7s&WgBSZ7DU%c%f#7(@bc1J6})uUl{x;%C%h5aA>TiIA+g~H
z&WVup9((_YazmKX(1j!reY}06f>V}P)(pLJTLxAEGoPN?Z9K&O7-fi-j
zyA!h`dGP0p(axd0gn9CsQ6SbmhB(p+pL#0IKe$A?J>J+Eucg!apAI4ZpC(qBX~iHT
z=*uLR(pzDt?@HxII*wdYxWC2zj1P7t725vS^z?Td-Un?38=hWk*54Eo{^5X6X{526)Rt^wVy9;e+a{=2fLm3;O@<;Ire
zb4!dvZi!*uYXT$$t??n%wqI}HM5{D*0J2-c}KKO6fAUKdSyHzqz@urlTt
ztjOMVxh=wL5sOIw6C3zALIGocW*na>*^(&t0ll?~QzzydNCqtXCyc<<+J=cfB}f91
zTTsrtG)D(LMFTNCzAiI!sj`QIN6`vNdoC6^@5)5HdW-s(@W@zZ$=4B&b~oqBB1l+k
zYlawNQ9c=lyGu`@=ic?KmOD{UZKc(T
zY+k_Es1KUPhMUv9tovp=!_Ws_jiIk_w(a_o*pgfnvBi^$;v?3oH;Yt?zmuE8n!Z#TpX%~)Ff|aM6)AIjFq_+@?PrZe7G%f;w2qUu$7_DTrj<+oC7Spi
zS_VANSvtY*=z8*BXvSXabswX}D@qhStF$KK+k)6isEJ*%tlSb-oy=u;r@9I_vgi+w
zr*beWx(CqO(w{wf7_(l7{DZUgW*)M{;xBHqP$#VM``L1%P!MJM3usaYIXDwJGL#g`t+Z!Hh+URTcBz0n){nQ
zc!0>su+`*Lp@|6+@1ulQm;Kb>eC@`)MDpyYeurh9d0NP*Q98`Ta7l0!i11cou2Rk_
zn7?8s_Ip=h$2;f}aB{~?=msD}v`u-B!cp@q7Ag@u03aCB+hvp5;G5mj=1Btyb@4EB
z&kref@JkmHK~U?Y8(mQihV!^4-kSktO?f!)e`IAM=*qV-Ff!Do%Plj`n=sV2eoHKM
z<({6CFRm8?h6DPUhgezexXB0zQG@N<_WFG5qSGvm?hG$+W2R+5(6rt!Yo;z~su?|=BJ_0&D#;{1^#_V?jh8v6(lFR?#+DWHpKM)oq
z_7OPb!=A_;Od!XXC=V#3Z8jN@$CYk8CAD&j>r?V|4Iu6Z8@IsdB25NLcm`E!e9AN9
z*449fRg3TNqzqBAaop9t!Bg|KXRewwHw5};z8YaOB1|rB*kWTG??2RE-WkoXj*Q=cvKPr4jG`OPCta?ml<$QFQ|+P*31u%
zuyC->zc`p$HpXTgILwaao2lhxEo!11{u%9SOb8+%xiMa6kmi?C7D8GXHQ~&>qW|>W
zY6}wR*fy({L>^O;ff@@~cbe;;KvM@Ou
zsNXCX@ix=DG*!bM(tFTd*OcK2y>enXh!l-YTpL8tSc#1y+B|0?g{M^cT%bjHp{-Fu
zX$Dcxs>Opr8R}wlB9}o2S$>zOa7iQ`-aszuGPHjn*tHHurqraEgqks-BQv+x+DpHiIa
zG(V`1_ZH>KQiW<-r@;ZkLv5*fJ`z-K>YC-IUp!-riTJ2&b4g6HBwuk@~t*4=W&tJLib
zf$|xCeSLwTgD~mu_7vPm+*0n|MUlx|C2}4ztHsNO*b;(vDi*=R|KI@O2)Zf=yI05L
zcDKT3Bj4*gZRI0M#uv?9mOAS*R=xO_+2MbAqH8c*Jh@UzaX?WN)_qdUtIBnC3^6uq
z(nca7qV)Q;w)L#L;3s#Q1R9lwH^MZD>jYH%+(HibUm{bSR?G
z_KhJ6kX@?q?V~MrR;Q>R$EeF5vbF7{(xHn_`(mzBltL0IA>zi~?)1H_LkEEkIjkGy
zTCcPtOb1Q;kB{@OlCfcbKLL}{+dUC`EeF9<{U-@l%|^W;k68_xRzVgFBg`NYB&H&~
zx@7DvE2_eQS@rpkDp0zFzL8T_=-}TkCbdmJ9Zv?+D9j37Ju=eG#3da_qsLD|m4XfE
zl@(-<62T@i>CYF+V{ktnr@~>dRQu^B88;Ond{=kqQ0B<|0F6f4ihd06P(Bjow#;t<
zLN12gYsAH>!ba}kJ@$>73RjydXW#PMRg&P_QBxpAVJM({bfyLsHC~Gb#d_v&#-4_B
zD$LZVCJy1&^!7UHS9$r`(+VVy7cv+ZXP50@
zUe~JYBRx?Vj71K~3sr-c8~*NG&U@o|-Qn4Nj0*xYJrC&XX(2&z(;gw|
zrDZnDb$pS#6{Cy8mk6rd-xF4P;9q*jywm^0`KooHkV-{K=1>R9m0IZ1*kBXPqc9aG
z?yHYkHi?RVo%MRBCLV(hx3il$pK<;9l#t`8#PlpZzt5a!Z|79EV@-W5!8LZ+vT0=EI}hsc_PpmQ^I*qG<%PaeAA
z>fV#iw(oIYHoYPCiORPGvWHxCQqMS_^l2-~L5Q1pD-H!B3*4dp5_SvU?8c@30wj6A+lfxArzGrMaLl{Y1
zX?LZ>eVOU5@x0n$_Cz|!2kB#IZ(489Lvg)QD@Gv=(X{6L2||Onyd=L)vrq6dZL`mg
z&Qz#dvp=j<6yKZ5+OK}B-Zd2ktwvOiplE*7#+il4JFBckE5Y57H~dw-#1j#Y_S9ES
zSZ#L@ik-tMo?2RZnP{h|IwcX}=jP_mo&Z_&UymxyRqd@M^?sgeEwQ$8?mw1+l&R)x
zZEQ8JRBxoU-o)Oq%R7El>{4^*J!H7x6=(dThhTvJ0bl18U)z{om7O+yySd*uR@<*T
z_&-BTfe$$`Q*z&LE!{US{Uj16W^OEh8-jmydX5Mm7gY_b%$?t}S1iAb&2bUW(q(jY
zr3z>YZ`XL*DXJ!vm871it`}F)g3<15)9$M6&MRB{9P5)jpGI9#q}%BhM&mp-DgJ(6
zGn}8H264RzCE0&Z=s&(uD95FNWNL#B6=;L(6Sef5pnGav0sleRTL!fizFXf=+$%tF
zcP&oQQV0;-9g4fVTMM)}!QI{6p~c-b2~b>vyY|653H+3
zm%2jLEcF9&#x~RSOjD!n?Ta{S{W`||+ELytdXVsZo^`FC+Z>8=-z>ICr5z`qd}bo>
ze_W=0i1sHeKUjl-$;;=GpXOTwMLqUS9j4+=0{5rk_)HGVMoI$=Q=!*!)4HTMMX0Np
zKE2g^N=|`Rl%^tVUbZ>xAFJWGuw_D#H
z>U?4)C3P;~TT-~4rC)oim`6BH++=!T3tE4#L8-f9wfCE{DclwtTT}F!n(I>{EdPAq
zND{-Y^5@dQ?|86g?|Q)Q{y@J@NlQ7!&nz@We{_F=#Z87}TI%A|UuaXo{}9C5MT}EJ
zJ{!7w4?IIwidlW*=c%>eNig|a~+oZ29Iw%fz=B|)?&qkZw#Dy7Ho9Jp&^dblL}1}(|w*T$uINw?cS1bz!UqmiFKZ2OnrXP^N#r)u-ni!*xXIo=9{?EPJ~zwg-(GLUodVGI
z7jgJxNJ*s07M^>h8r63YMTN@0n(G*X(M!uqOF5M46_UA&h1{;+&d=hLi$hx&$%f;MUo4OLY%($^RZKt`Lp{P7_~e1j-VGBx!8>$
z@)36R;4%3ICDCw<=;5_Txym;PT>E-)b62RQm1Xzb_1M8C2Rdf#XU;V=(8?A1hrl7~
zT59ob;ds~IF6e^cFXAhG_t6(%Y?j?(H8G)Z?_19U`2GV$+({KI0FX9DOOWRj_^V?8
zU&$M5e~{xvIuvHR>_`Rg!({%0NBvj2l$#f4!9RqR7?q$Afp$1v7UcUT`5`9@B*_@@
z4IaZa)#kUM_}?7We!~?
z$^)znC6%QN&O^ux3jP)-XRYU92O8Qkl%$%!Boj~7>4uaD{lB}?{)e=u*#fpbE3D8F
z4GCQpnyQ=%r`ADL0Egsf4Tabds-d~6WU!%+whO*E%nWLGjY0kXo17!Mcx=?$CmM1%
zC*&RNeeL`V^D|AZ-=r#$>MSZe3Qb(6ZGM!U0p-hu%vqMYS{{YS
z65>?Lmp$&_r&o`vllPRPa~q!rT8KmVn%~wvBEb$h3gl2usZ@NJD5;0Oj~KhZjU7!d
z^6VETG#gCMWSbafn{b`59oPZ++7`qB3=++lD{LDY6Yq$9SNF!O7#BUv#Pq6~nl2hh
zxdEF$LLNm^r#%PlXoGXI(00TZe7})5xjeJxBwc%>n$nF-0r?p+vSZF(OXNV}2NJKt
zs|KmfbW*+P@PPM+$DsaF3UZe6%}DfTjq_pTZ%1Z^)V+h5DG9v;i7@2(DqE}eG#0#p
zq3G7^+ZQ_Rj0Hb;JH|V7RSoraR;lzmF>h9!
zq}WA0pqI2em1OZC9Ftj*3*c1dtc{WSYLM}xtcdu1MAN1bHAV6u?G(n)i|jV|SXjzT
zl5IUSv_1itAS``Wu*-dU?2mW^2vQ!#`VYgc#V9*SgRrT`2{
zfH8yHGXO;yd3=o|-uUX^Sae#A7_>LHC>hHFVl%=#jl%U-BEV5`o5NZ1Hx;!jXezFd
z1d%aiIxwdzl@4fL-CvvF-bCRmRi(!O*sAcqS54JDf2YkQR`L~cCq
zL*9~A$$PJxHmmui+|u-mCPL$T1mt+3cZWyy=Tfp(7VlCxO9y
zaraME{)1-i;$baDgWm+=53w#a=sucUQKO}c2vPn+&}=!?t?GKcs@WmX<#cdL5y<-Ea@xgTt->^3_bTgt*|Ct|J7PET$>GmUUA<#hvi#P&w9ZiTvR?;W
zP9NTq7&6k+7$VQGG_x+{+@kMx~^y7xb!zaGjT5h}aq!*3z
zwlc*Oy;IsfUGICqSs~7bwYSn6>C>t+u83_{W}aQ>+mQmTO(1Z~z3GDH&9zIJZpGJ^
ztoP9Nj4$<7+2dJ_R^xtvnq>>e89kOz?aj8VtaJvGw6_9%v46&1ITU0$+dS)p!4A_=E^nW
z%so@CX)fFK6M6kmFaiOhkZCBsEU3dY2Hv~4$I05}n#N>TVY^>l>CZG|X5k&Z(OQGf
zSO{smy%zGpIbtoDm-%oxq}|{*$PV6HIs4$rBC}0MMS`*=-EukH7h2Ol3Q$(-86Nqx
zQayPm)G)wKD3CF`8+}`}g#$R2G
zwzKn&Vc@0ZmSeBZ_AKubcBPR&=5-Bos+}e~C6yIr;D-w9owD*lZQp|O(MbY@ImPs%
z30ZR1!U_=3ZqxMi^&2TeReP!D>YYw2B5;q1&^s*{Boj(g5lqX(WXcsxZOmJf{UxL|
z8|t{^*~!0Q@zk5_P|Pi1Tf4=T7Q=9QYm4OLzm3BaLMH1^D!chpHI&#beS+1zPFJvS
zaIdUfWRaI^WPWaOR&I}o$D5_U_)>>tl;hpV<$U|6sYiH6^BbV3gQ5MPS$NK;d1Y$!;6x|mr?k^n_CCS)wa&o2-)}-olJhiG)h4VfxQC0)
zTTSL1?m25&Gi~Q%LkHQZPqNX<5wVt6<7aHqrBi}gP(*Ku27^yYuMy(8|L#)Tr^M(
z*{wbY?3ugP=ZvjbD!1Rp*8iR9^M>#J{mY?{5r@DXEYAEBqsp?S>1xL!iv{7b~mv-j51Hj)|no&5z4Y
zi^B51COoAtisi6{LWt)e-z@)b+CCnJSVYG1V}r9fiREpcruO!SlR;ozJ-bvQ^OoQv
z*PzWtS$CShse<^Z;Z*3!UnA=f5RZnRgUz2i`ZHJEJ@lu(m-C0qm3Y@BgY4S{H0n7o
z{MXI5K6?9qhjnyQ^=s=RTLhG_j7mXNYl?GKs4t;!@CdvxJNm{P{jjw6WFWpGq6OICw
z4tkC~P&3516ZVJf;;7Gwpis=hn0%-p6Hj(->cA|oCg4I}m=vHMS7j`lN)&S9
ze5b8HICe&A2NfH&`S3&0!h@GP4W=biaW|#Q;2`r?rUp^eXiipZH9xIjYEA`&iiBBT
zS`e(^KXPaRe!3!7Zan5+UoC)s=uaKc+-53w_KrMYHik4^%xzWLl$BP!QkZ4PR@z)F
zyoMT<^0%v>L|K9@0)~V;pDHcV>D7jS1epVLb!;Dvg!QB+QM3MDTi)Gv5Yu>?7Yj=i
zqcY)&O@(IN9#;^-GF$5`>PlHv0dx207amPd5w3vNhHqBdVEs~@7Uu*_Ao4i_fpz_j
z+gO5h{3~eZtp!e4Ricwu>KCZD@dlUsr~a)W9o<2?xdavP%{U3OS(!OzENE?`Xr`Zx
zNrJqPDjsjhJ#v5K!*ARl2TZM~$~IedD--UbUdlbLjoTOFipt74Yxrqop_8hqm3gHl
zmIE+r|J15^``r{OknZKzW774DgVeDx=kJ^Pp93+g?<)}V
zC6%ch5aEu}ftj47hT(iuwJ)Y@$fCBtUriC>9b+eOi%%FQeYZ*$xxphrgVJy5~AFsmsd=+-@!X`QyJSY^;b`y#MU!AGR+;86NTNhKGLj_
zUdZ4=8Y-KfjC2oLx|+Q^$d>E`vQ|2AOUmX{PO@{Ae>4V1dCz?>L0+mBL{!M0qhYGv>9MlC_oV5_
z3;v@&;`
z%+`vxZ0NS)Kk{%0YpO`SPx*%cbt|!A3QeH?<)U}|xZ7~$csTwPxCJ>|PtBl977*
C^7xM2A3+|+H@W=9u#Gu&E`7?w_vg`0IlR*$JC82jz5>IIOz=~L|9C`7zKsP=XXC>}GN~v(
z_edzIlEWVPl4xcClp4~#d-plfdA;WCkGRy&48QL$Ad6+}TREhf?Hb(d{KtwtOV0Ei
zmA>^-9os0??0zafqdca)+!&>grUS+v>bW#xsP3`iPiIkUt3S{E8n^x-3=2)|JgBc5
zIxe&`Jz?!kdusEa94qDZJCI~V2hJ207iY9oFfB#qgt`xFn-)-$SGi$9l)E^^3|=?8
zR_&vo#QEL0VV$Upe&skh!_Bqx8;;xtOnxbrSfpIZdy>4`ju@(Qj3LHloRV+6L7(y$
zS^ZfP6g1{{WZw7|b6gx&A6{%Xwlb>SVt&kRs;l;XSBIyZ=dOImi{4(%N|dD
z97MQ$C;5o+sel?QLcnTg<&@YZwNg|3lC@5PJ^(g>Xqh^7>onrhQeh-sD0&
zj{1qHO8ymT36N}JduxF`t(Y7t9QzI|B*=$%AY}sA_dc94zd3DmO#T>3r6{JEXsAQAYN>!{DK#BpX)GwLH!!~58-<$>^u<e4PD}EyMXwa*x8&f2q>a#
z_+pPy*ZXAmqWt6(cLtZrWN5;eChGqi&NnB%`rSA=REfYw?X(wN9!NL-uC?K
zu&Vf()}0EI!6RJ3QnYbQz9-C`er2r+gv}fN-))Hhp|U{IOPbS*NvQu22$g~2CtuLk
zlhg{wx<9jiWTh4zv<{qwBZ}Xv0`KMn{`d3zC$L>{_#Z-U;%lC3&=b6i>9ooB-`sNI
zNteeei$6QUk7-@?J7uM+8v>cB6Mfo*^qi8i@cp}D2k|JsNJow|(A=oR)jtF(xTK>W
zyQ<#83#a}byM6tNAjZ0v?^B&>A@lVbl$Ub_;4FABez5rPs(EU4AN}+6L+|wb`a3dT
zbqUPhp+q#YW|XqqhVaw;YAuhuuNRw9BgX~s_!45D#wemL0Z+3Fx}U|Bj*ip%vCtMz2B{DKk&v;-#8XTv~c#ko%i#CGKcAfLFd^*VBNeTzp%Jn6J!c5wrD9kG>#SpXcVd}&}z-$fX7`aTkB9Q;!!is
z@nR0(zB)Ok_gn|~NW1E@(y+;=nA0`>NgINm<*_MS`>K8!?6hLXB1^x_2h17awMmwG
z#2>0zsDcfoiQXL9jij(>EJAJQD*9qWvn_7A`1iR&{8)(*98!T;jmD|`rYFAh>S`88
z|Tcwdf2nXuj*{J_+nrjQfq<)G+hKGzq=Xqi)w30vfYsi%eV2>$RM$JtP5$}MjlDtJyaD1Ce}5K>-R0IIFa{lc!ogB8@I
z&E%f+qYFvE7qQ!`*w|SskpufqM`xlG))VkjMP%gxZ#qK0Fhm`_UDT|oUs;!hcXP$)
ze7+jI{5ng9^KCH>>Ee`XqdiCd&{iq!%ls*9L#nP6$dr5S^7uD!*!08lNQN2+oh>W|8k?Kds3ZM
zZf>en-3KdZ!v6Ce`d%e(@31S#Ok>HSL1UG@8<6a#$ubXM_~3GS$nXtPHlh0EqGt+R
z!0?h4STeelkE1q2i~egs1YQ|1hK17|wgvqr8SLR54^c;!TK)Kua!^!+Xi`i3ZRn;L
ztfytSb-K?F+&y^S9|;
zb@ktGd?gxOd$xO^hLTNxh-1Ox?|q6r!k6YKDA*UyR*{4HaLdg_>j12`Hz11kwQEV*
zJAK29R5S%Up2mI=)lJV`UM7Z=QuiI(oSZZuGTrCW4@~;O8>+79pL;FZA1&hC-T)yA
z@?XuV?q@6Md7(o6@nwwzi=a>38Z|8%W5xv+3R8#b9Na^K;fV&$TchJAY#D)aQSJ{f%uv%9m2
zDnv5c-iYOBWQ8QIC8SACTkLN9N&3u=XM=v}kzlNdYLcLyh@)+u?~mYxQduF@&u49t
zq>2lzV<)heqjLj4SwVg=_*UP_yQp1P(P+0QQR5t<{wAf!WR=$7wAuhP|==0W_9nto(RECL#(idyv{R|?lgr$EzvhoB<@&OxE-__x
zP~V?4F9I|7?flWj
zTHsg$wDddnVrduyqOP+bCD#n`3WNc-rVrT0Eg0!OAft`KFD@(-o6>#Upvl%3ftzGD
zYOtD>|21AcOib$|GD{=d;OO%tqwqS%s)O%%ySGKo#{dMHXEjz61slEkYV9x#Dnf=<
zJ9loO*KB8-{T=2b|A^c#HBPRlX}z7q9g+41kVuVXajs_nZFEPzUH&8ua;g}dGh^hvEVvo>D*3=p_`cK^hF>DP)w~i@
zEU8Z@@Rr;C`chtz)6@xGrJSZv9?^}7JDGE%NM0;+7Tb^M;QcMtmj7!Rfp`BwvNfcw#rMv
zs`Ws*?!oTucdENBuVSh1utap4-oN?g=zvWJRK|S!stu%5Q2+-dK^-%X;Ma@kZXQg+
ztp8$rAvZXQwf#o7sFDkR4qg36t=t=gipg+O-EOYkTf`;u%BGfe%<#(ATsL#iQV3bg
z$*{5WP$g+nK163slAjgV6MA7@r*`@ROVkr@E0uFsrE5y^dLz*32k-anG%%DI=WGc0
z!b*n2O5i&%x>2D8i70iSbS}uhHZ`z)
zQd{^O&kOx|`*f-ey~6>o52xchXcZe!V#BAVdLog3Mr=6fY|H1cc=Ae}WOr?7V~B=z
z4Q03YckuF%;zlSk&v`7)(>g@tPM)h8lCn&Y`j)6y(1KNKOM8VE5Rh<=6mvtyC2%<*O~<2IE98{W<=^e78{S!l4!WN
z!Hxyl_`4fDp%9O%GbBljx3Y3o)tjR<;jCIzA~t()`&UN#>Z*j&jO{9!4Bl1lc)2h}
ztK&WN;dEZEx;mmTBc-y&_ljEk*^HgnkJE9_vT{v7CsuybwgvMaiy2tgz{3(c+Eq96c*a6ZenlL8vh!BTz?=i>b+0i-i-3q(^5*5T&QXgV
zT*Uv@0@?OHF!pdiDaF=`XO5oY&QF<}{Z<=%?=a!<(cq*4!?sL-P#q`yLQ|HZb|NdS
z+1Rr@=cn&av5l6l7BCgGBz%hK#B)V^z|>#Mu6zYGh7Odcs@`|cTx_v9*A$aRb0o$V
zaY7=KBL;pvKQwPs?2L{gNbWPv`@Lxy;cDW^n^vZVlIq}qttibPva`5Q&u-`eZ=+tl
zNmA6po34c($dxUWT@P6t(Szf{
zBgnpZLeHaD*9V$?s*8(O+{C^l2drG3mV_(%dRhSUbS_0@iqpwIe5BS1c9#nYD)8bY
zXi1*4x8v8=)VI||{C9*WsUO*IcreeoHTsEh`sKJ1lFofl1l?=+9HhcgWUS$u&+s&*
z@nK|5CvDpkslyISUa@^35_MZ12x+nAX)wsYdXWnN2sxA~8eY_oS6F^=qJ+tL9*A
zhS0;oMcbHQitl5(-Lt#%kSNpQ2kv2f-|XNwyIJv3o>YER4G;Pc08A$=cD0Jjkf9VUOW>$
z-Mj0T&n9Nk
zMse;d;sth;B=!nBJ6#-deqk@lioa1YuXl2I7Xd7K7Z|Kw?r`WsPJFQJoGz#rFMgBc
z`Oz;C4XpF>$FT0xQz3c!!}et_arC$++|TR)$9Uvz{3Y)p(Y1nLHf{a6k2dA!nVJ=J
z1NOFBAffKvo(jfkO}SA;rPmpD_@ih5TY4V$YZ^yeJ4@X4zC9)`OC=lZ?y$4r)c-E;
zQtarZT`1E615&KLM@<17fi1C3wQIINReste!P|Vm#n_wH59mu4G!c
z=6(o7TNXF;*E(hq7}cJC20gf_J>Yhft=(%CvcAB|ArH?lT42b-ig8&=sq2ngXK0RE
zQv-@%&k8&sc~U;in->0MBd@lQ`BBbC&Gb;EC`LX+5B>+5hV|i?|Xxp<0Ytn%q|`j3m4XMJFK|{UwcL^#nTzDXxCNd
zsD^4im&MdS*LBonZzbd>+Vp4s4tifWRBm1AnKLykmr$s2Xht36=3>)z702Sh4RC7*
zP|~|<)|=Jd>7j3R_EJSgeaBx%PR!ud58rjKnxHA0`GV~{c7ySFmCJ6R88{XhvR5JM
zTO_{6({R~4_^8}-x8?y5uzN0obWXQFp;>5a%JUfwLimJpUq8KW$kIiA0K^V@G_5?M
zX=|k3C)4ZI(Q}@O^qfF;OK06STC;i`t4E)U-5gqU*Jy%U)vG8^hipSVL{bZEB#>*r
z)6uDG3P~SLvR96OXSOM#Fwx2(Vw`aNB!a{tD^NblC
zxd9is%It*LF++<=h86c5q!73SlUTOT$w%A#Nc=^7*+y&+p29?r6cmW_ow3~O<-6>$
zeRdz^=3Bs%Qp;$C2oxipmzEFWG!ELtWG
z{FuLBiw&9wveaIxDnk~=Oa?Y)D_MddJ`S(fqNS;kK}Fxr-8(i|`Mim9Z*5DJB@KGs
z3`>1E0-!DI@wFyCBe0shIKU`A7^3J;UtJzte{6en9af-Pz~hm)2x7xa5ar)^cH{_J
zfxZMSi!HdT>pg7$cRqQdqTG!d`ZkN;ZrVx!hrKv|Ys*fOR7Ym9XG@$9QzQ*qxu|mv
zC33i^UiFRm_L((!fsc8S!}!rh!K6}ItnR57`1rpwPaAPJad7{kM=y*2e~zqy=VJN&
z_toKVY+fA?ytNN3+~~MKeve1-|M~cTV5Q~@Gt#zWODdQOWefExg6oI!wV$spzmVkw
zmh3|@cq4P@uEq$t2GeHnl9hAw;FY9>$2dLz5WJx5x7oQ)IcFZJe?!s1x;of|=)o;v
zyvx*xZ!K1(ef!=9$~>98-o3Uq75MB^ZY9`6!$CJ$bY$NmZ_68$CQirg?N}B
zKA}_XfGa__hqNGo$snf}3DCw?0+vFm>gS4xUBa`R4IW)gnn*yZ-+SYE4DCs=IADF
zH#IJjCI<1PpTRE*W#HEI0X_lTE)5lrwDVL`e`wX8;}hi}jeW(q4gfL3nV9j(X|h%XdV$_w@3qP|2cM_!
zZJy+V1>L>V36?0juVI&BUF|JBh*pM
z5K1A}56clU)7@)Rju(Y_9)!B86|%>LvL-)SSDH{If3(Pua=m=}xfSab4gA?L$xKJ}
zcE1?t_$x8xm;hHTwBs8Jxj6xD`Hl%f0!Xmd!LjdCLevYQfOyDBoXdL4OUK$Nha+mj
zA8FmVg69|DZ(>pQ*4CV(z4fU%4EnD0J{dCGIUsEg7MV5iTGv5^BBBW5p-1GvuT`R|
z9~AyM4C3GJcVe7s9}8b0Q0Cq%zM*|#dDgIKleZL$l$>foA1D}iXSVM+hR3G*GZA_>
zW)hwn)*ZO|wu7N(`D|~?@2l*I_sg(ECp#KBzXtLU17+Ti({UFxvV@LT=}ev7=$n6}<^3{iX{c*`woh1O
zuX0F2+EQj^6&2UADJqu2WRcC!q@>VFq($a~F|Igt3F^gcbiB`)R0m4pD}10-k}2>F
z2eIh!nl2K&TcJhW@A6sN0gsc@A{ktgf0C%&v=Y(nn&ZQvD}6V#O6|JtddA$5U8R5K
zKY`1U!~NvYh$l>Hqp7sXO;!xsV$XQnAYsEf1bFFOCM^uycV5&FkDz4tKmrhsuMlz1
z+fPOy19~QzJO)4B<$6ff+HlVg<;ekyB84Ax@H*U#*6LRbAr5Y`Etg0)AJt6vPI99(
zG0xei-#JG6*=!5@BXIh;`L!FZosq6Rr;M6PAqw>lINfSi332F?88w|8otyX%=%!eVASQh8=HQ|F7h*
z(zgoR@fpB9qi?806J58t)-!!s{I=R9ms`fN>offfjC5!!!;Z&D6w
z*0=|V*kXGnqx~XjRwKH@nX*1HZHzf3tZ8{{g8W7-RQ93XE+uK^IxVQ@kfKxV`UYqk
zZiVTePCIaHBX1u(c&?eJj7@EhU~s^S((eoxk9b#`KuVL!m7sP0NA76WtPRZt!R6nB
zQNK;;qiDlcu#AF&P4<@eilLczJW33SZl~Xan9Sd+&rK{9T~6tBk$$XOaX968|5DtW
zhM#gKb1cU!9X`ij8iKY-HM^s#+ax3Js^6~g#DD0~>E<@v`IIzK1es8?Q*2Ls_u{QQ
z+tC@UBGD|V*wYtm;2n$7(RNndMBcJTQPbgn`n3RfOjQs>L5V1jt%hzY=dbWS&E^nA
zp+R_Dq+#MOFQ~JfE^npP6m{3j=?w(JglV7!)Jag+MK5=tLa3-H$k#wr3i)^^keLiy
z+U@uz@6ll(You%8peDOdk{w5a&4jO^@{T}N^GkB{h7K&Z^)J{kKweo?!?o%u&b^6&
zOjAj5Rsx^b#01pM%wEEfs^E*Se-sdQ>M5MP;S#W&#$fT48JlXcF9_K1Hir#G5qM3m
zAqbcydQwhRYU&p6ZEZng?j?!!Z62I_Kb|@TJTZkm9?dXgRqAdM|uJ5GWkAcw$tk^ma<{8_m5SKAj>p~uRjEPn2LI0akY1u
z=$U!TJnGK(JCbn#13Q#6tr48~h)sRnm&A_(nei
zq=(a%9UUGmqD)V_`#Qu!0LuJd;|e+&oy~iWEl&bkfn**Zw7mozwC|6~>(7fo%EEM0
zmGX*j{o@<=E}RJ0#v4$fo_=o16#3@RT2ncLH8~(A|1nCH11kY$ULJ!kQ7B`R&`tsZ
z5HIx|Ng}xL(P@V#>l~@rLuq8>gm+ZK6BSy$ie&6?z;xTwSH-o|G9E7Xx#H+@m8Gn>
ztYD42FeQ;j54fG8S(s7UuQVwFn%aYSaXCQ8Qi2w%!K~NaSxv22nioHfEAr9ta0;yR
zP^6m;m8CQ#+#J|&Xr?h_0Eil|BoB`t`L=g=_k00c)<-<6KmjGWT-k6=25y9PozlrU
zx_fUHV`DVvHa{u@;ecro)dM&8P9=V}sz5#Y#G#F2XFyjPyR-;;OxX^lOuH*XnvWFw
zmI#siR_vawKWkiT#N}Tx4^f$4+fdy$n?hrVmCeFotqi8ko#lBx2!po2pn1Cr0+A~x
zl*{WVgnMcvkK}APTjBAsv@M)9A6u80bSVBIBqd`0xRR|{;SegAUFUno6t@`?GxmAR
z@^QawMeaOqc>l_nNEYm_j(@5s-*y66N+*$a
zsJrS0N>A6jq0G`A*DeXtA_ti{4iFpo@>b^KM;AFtW8D-9?S%HeS$L^_RT1yMb!VKX
z^GFZKjAbV=={WNSCahhJ3#-pYpGx~TK?HELz;oHxqKi7ioBwp1Y+~)~lP`>JvbzoAB
zw+*+ZyP=DG;tzRx+@Z;Z60KU1>qR+>INILaJ3{GsHl0XY>l!JLA#Wzd)EwAB*@Wo5
z6v@GmdwAPV{CA5kC6F-gYT*&6rY}2u(OrgGS3_Qt_ImAtf)N+8BJ9mC@c9UQ9NI&n
ziCiTScwdb{DfUB-Ef&QCn_CwTLmlAN532gy>JN0Ue{P{7F%~W?^x-fM>w@ByPsRyl
zmF+dTVG_m8`m$F?;d-_UdCRnW0pd=VwGs^a0^gHe_0=L%xuQ1oyASzMjE?(Bd~;Eh
z)Z98c`-3K>a`-?78U#&gT^8`n_tMgEZVzeYdOBgx8zlWxP9GpF$vh`L8!BV;W&pY-UjihC293zleBww*-Sl14I#@eBsrv#O$+K&~|bjRaM9O
zxZ{A}nVFYr%Z1};dVJxyx;qO^oRpTxTDo>Uz9MDWZycg#V&S*UZG=xAIU8>px|YB-
zHMZasyKeJ9Y@*Oh`HfLKx!ne{GFVwNygz^`NMI8%omT3d%k%*4eR;Y~4q*_t|9Kh%hR
zm!rgEUgw1Y`rb;TL3aCZbEk`jpnoJ1*V171OUbT|_LkGfBQCCv;FIJ)EYs~PV%V5P
z&A7HzB@;s`t7=Mdzr6l!TN-Oog^xMFohp9mAHqb7AH}Lm+m-A)qqT1z3F~PTJ&*Av
z6-@b@>yf$HEafA9O1}YB>$z8~uS^`1Da$SfGSG2C`bxU21s|`iJe@S{4I6bOGokH~
zHIr)^9|Cr<<0Mjw!EnJho&l_{hmuZP^Mgxs)ZDUi3do9$+VNb`A{}@XH
z%#VSZ5@W=lVR7BjW{Oq5W%A4Hhq>ApyV(Uo&$_o0L%?pgxa-1k*yjWDDM#c%nBjir
zA7h5R+TvA6Pw9P)k<{?Aj4H$WXoW(gUGOJNNRXD0FrdkG;4jIXn1$BfWNkfF>t#{854!0U2U3s}jNGg13)5
z+OA!z)&P9NaoBDQ5goh=YH;?M&{p+eK%-7DDnD?n%P23LhRb15T1CYEc)D{97_BLH
zwXwN8oyV#7N}tu(jqzaYx3MO>PuX#HpfmH^k9KX5io-6+AMV0o{)BbIo8?@S{u{WE
z<^dy!;wSLIp;C-lkI$_HeOt>iXj!kykYr6!tvTvNd`PQP$n|
zP@94(se$?+kYV-m+(a^;7;V}bxA!jg>GF+V+Th|{OLbS!gx+4mGIY6Zx+GI+m7LR}
zF-I;;S_3PnizO*ed)9%qoatjAox6TD|khk@{?Avq!#Xc-;2hZ(V
zblsng2_c>@y3@&MC{H*DNcZ@;Vn3B9e9_J*<4E_Lk37RA#o>KntgZdGwQ`&OSg2Oj
z@G=N}uyAyS|@l{TX}bqzZA3
zU|hk%nbKQgT{qpRp_U2L@pnKOPz6iD)bTxeKwo8*fhDL%++d~7Qv4eob-w4JK#K@H
zI2^-B6-(Gs{594)KOf~+a~tmX>(yDoL$vx7oT-WFRnSnfySGe&Cq?nX4RF-74>t=A
zXrv6J%pvjlnxC3c1@M6ccLp8{A^RY2E9&YNZzrBf38xoAW
zRpLmCyP&VwqddV|UK`iofd{)w!vP=}MHZFecbDfMZkMEwEGR$G=H8hpQn&6K%)N86
zSN=tWM}>BRRJJ2?N9lotUoJ;d%Ow3jtkn(?&{3O)7B!to0)ZhZRWE4Mo^5tt(
zFWCDwP!2g%hkrE=asa06Un8*06Cpp+iyLgtSGq!$_pQzWft5W=Jo?r2Ju0{FVIs&Ip`sG@y2V`#gs<=%vvbMur|^=DvH5MsVGByOK2sgz4e>W&E$+CWsW}eh|!IG?(<(({(*m&HIJ`j@Gb;=5oU!~}WA)dMP8Sq&U9Yk{b4kr)
z=F{VO8!l?oZI-bys8tqpC0~l(H+%db@GS@SCYz!uc=hh~iv7vVd7_NG7^YWs`KG@A
z;1eX4!>q?d-Yx(82D&)^)5b}$8rw`$t=6R~JTf)S
zfBLIvX|h#MT~y#2XCdUX?kI+rP-ABJw@6_u^P<+vIB`5cmk*D@a8Ycu=kl@l!B!-?
z&3N--+Rq1&yc=zlEnFWgzE}N?1O;}viL|OU%}{3u4qC
zZERO7m_pzq$5fGDO`S+T9vgIdnM$BB*1Atq&>
zqd1Ctfh~?hS<*HFCC)^bbE!hl`*bJPZ_V@Ko8x77%hZkac5II52!#vk@7OlGcA4-l
z8eNLW_ovT;Ztbfv5svlY{VA&bQG!@R>BAVcRzXWpjxw~PDfeo$?>KGv2R3~$1Hz&F
z%9Mr*gA_mRYgI?`jYNR|sjD}~b*2-!gamP9E`jU`ju=BImonDsPcL;Yq*Kz#*B4%9
z?62${Z-+>|N8d@|l2}>s*%0}Ay$7AJuvC0ShKP-}J84(9!U$trf;Q9X_%w93zD3&X
zy4LGMN<8FQ=}ePQvchNyM+aE}-*TXrqv3r6rUm(6jjJgE!o7-Y%>LMFdr2{AU?uTT
zmh|VYhBtv*&LP35j&~O3q0{!78P{(ng%LNuB952-0u($yqYAD>|$zxDx1i;uJ7JGwO1f0E({_M-dRziK~_D+0zVRD*b`3B>qwn
zU1K##kPIQcg~zF9YZRlFS1W7h8tgg5jbnRiz6iALt?GGc-wF?B{lvWQ4elgrMQVo)#N3CfL2x6
zT6zx_nAE>IyZ2DTT3{t>d8_!L3%n`2%b4cQCd|0D-#-<);`V^i=?ZX9S|8s2B&`Mc&+%1qXFUf`sy?!8=CR!cA
zJ!9an7e8E9hu+{%SdDU?XW=*+<;anc8NK-xxv#0%E9+8T
z$Tb{|>Kc;#AJ*Qgt*wR&!=x07L!m&CV#SKPyL)lB7AYFsp-{Xy1PJc#p5U&x~B5X+brJ9);Mvj>S7atjt(#IvP^F8pkx8m|wscZ1WAIgC(=%gIe
z2c*o+9~Jfka=NhS+5%wTOaj>nu+lQN%0S|)Uc~E+tx-1dOMn*4B>^pD3y40iQ8)tR
zt0vdg98@LpT{_>FaIp|olCZg^Pl1>=VHs`PGWg~%!B)s&O8iIAd;iS*Op^~@H=rD8J`%7
zg}(e#dM`&F=k4vDN#_nDIp-Sy60gJ1!W~Hz-m@C%dtvcu%}s4i$g893ZtFVqy?zQC
zM_r+$wV<+FHqg`z&yDLY`5V*6)~px=l(IK*Xleq-eP~``KHdPqSRvIZb58451nP<~
zOXU^_7-0^6%pQ^>y#BL#vu+B)DAnB;Y28(cvh<9Tb)BEY>FTRg_~gMg?Z-mEJt^!{
z$Rc>4!gHLV9Gy?ANS&RFJwBLxrybQhWD-ePa&$BYBUz=`P%(YpDx2E(9u^=1)r4}H
z1``2QjN5MYw*Jh1w!BqvaB`4b5uHH)@~^_$B=C!z0&#_k5G0fOQ`fp3p
zoFd?ClBySak>&A7TiK?bfBydsxc6u{uUt1qcJzn6!ca?W|SBY-uFI
zWPbL5r%B_J7p&Nh&gaQpU&W_lK=1%s=MI?}7YX8YcMfkYf{l?KQ4&G~j1m)vMx?=i_x*VTfDtaLVv*x!BEn9ZUrnVFiXKb3m_;jK{!w4eWn1T&3;xTeg=
z0au08`c(8oT@Bd>kDe>k)pa{Wkc~)V`Jx!eGJixzrGu*fjLs6gkWRM=0B!|95OfIJ
z>dU_3Zv2HH=EN7s$EF4YHa)q@Jp6DIBxGr%;pTt2KfAZE@jr)PTWy|6NgHLm?i~dV
z%u&t^>w1Dl`w%^w_a;A0&Gv^&$?dEv);I&2)WBfe=?}U!ybB+KFn~En8R@E}g8L}-r`==1j3
zoM&!d8!%}gpr8{(5Xu~){B;zLGlG>L!anNDZo6vZA16O8ocJL1v0q8I;8@p`}ErB#v7(Ei~dogs*wfh?pZhMyYRjWWoqHzQ=*rawL3vOSPhNErVPlDh@`lqXMvMCD
zM0I=fqwb`>rh@1v2!z5_{tt6cyfXTZ=JSVhq(BOLsS-cMRJU84(EdCQiRmXX4%Z}|
zk=;Lwy8Oa<{@c6jVsT39CMgU4+Qs~v<@Rb7T6;i2ZYT&y7G53kXJx+T{NR2J4G15fo1OiB^kwc1m?r}>t`BlPKh3zR0&ypgwX&?s4N;)}JXBO^OU*@+yb~QLG+m}
zkJ$x{Iv}dX?#AP=>4ng_c4Py()6yW)VFO?#hHgOXYWa(Wl#T`10`1dmzms8}gh;#>6PBvW&IZYhwqXX^tO1IOU)9h~Gp{9$H5e{>6gttGSWp^SNQ1p9E
zd5Qn*Yty?N%}p*7u6S;ZaZ(bb@b~ZRVY*F2$rJ7M3_P|6
z>0*ctfk1<%Rf0uR;IZ$IpX82ZBgFVZvghpV62qA5CTN~qqV|7{k(sKBM)`-L-MQQU
zG;BJMu*<0--z?~5%VT+5#;+OocsNteuU)54;2T1IaD3OC)!sd_tKgdNvH_QKC8)#)
zm-F^XJ?RVSjgwW|CX}NR-;lLI`Av(g_9!Z`s-kPM(;SBgn_8|;8Onq&UOs7tDA7d|
z_?ZE}&VAkI70yy85Xaw3$Wtf6M?}A}GDAy|dy~brxYz35;O0o
zBK0$nn3;@dczo)xVDjts9LpPry(T7i#0tVXYsE7Mc?4`$Y$cv$J(Y`Ie;Jg`09?4u^Gc0!6i2SKJVAN)t12I89D&
zYVfjnEoNiqrap1Sp4G|e(&b>4U~K!mOkZ9NBt?U$`{QDXhetUvyZ
zf45S4s$bBMN_j8UUd8owRz*&QB~};5vPM3_V|JK-)(C0_fP9*UJpY(+=7@TP3<1&i
zP&BI2j{u93MAk_P39R2n%2{;u>9~96-R};~?;1rT-^|#JdhWmLaI)!^fD7_;IiK5D
z^a0oMzW7Ia+Ss3Gte@pJ#*0n9_751p>2{K;F5n)O#UMIZ0*+;s-@CLvv-nJu046%(
zx(^`!ah+n_hls_^v3EmY=wKc3B2g@HQ%h#(Cv~TnVP*y;3XzMJHRpDJnP$X!kin_psc(;;H_wQjv*U~C
zO@!a9ia!&{WUGq#t#yZ}S3#_zj`I*jT5aTj*|K&p-6okY@n+Fki8^HwZr9kNm1_^F
zxBPb58ez$Z;KnnmLWDJ9MwRLeVH?KUpr7IRDSXpwn
z$so@ywc+MkwS=r5!^FxQZG|kqMS%mA>obUz=++2%^E!V-M2=*x?25!4A2O)T`in@>
z0AYR`VS_OO_T!8JCxWOi?*oGG^k?3ZXC#wE{lZ45D!T^;!rr0#>
zl!_*Cx-BX!qI>7BS(lu*bV-Gf#VWYGU?~rL~F=mt?EGtk){tkWmOPtX*
z@UEgd=cREJ)=zcLaWX85hBB>wrNSim309~QJC&<@sp9e#v`MMfC!8{9Hu8ZhA?k1!
z*LWBCy6P0*7=CQ__hhQQtS*L$czDCOsIH-nq^zvsan%vm3qq1QJ1MWmRgnqGFft{^
z`eI$*5~<%N5-2+NC!lI#7Mh;t0^RKNpsodh=zk&!cqL9qFVWk&nSixO0-Wco+@U<@z+56R6c5yUO`LL}X
zzN;Adp!k?|fBq=Evx|27A5zsW3;Z=mI4c1zdwp4U=faB<=I%cSS{*r6Y`=Z2ErZNQ
zaWI}9@{nyq=w4=r2!iifb?kQ@HdgJ(b>i1$b7KK>a-B+FH=`wlZORxaG1btb=-o)2
z*o#6fou`tn{zIa&>sw+|=tq-}FI^vz39^Svi=j;)d@ZOlsJp_A58D0ka`_!TEBKs4
ztyf?!+50k8s;`2oW-P|tI7F?kf>cxe*8c^A4W3S*xQ)exIwDUVwz#BUdlM~-`wkaJ
zq3&S*^C0x$5Hn~*9qB)$Iww3x#f-0;w&L5
zq@K{XBg9`)7>!=-*f(8X0<@z?;VSm5O)}D-p9fApGtfO~mub;Uqfexi1RVZD>Q4av
z65e9hX_<}VxOthX7AsiOGEQkg+4?
zuV&FqmpYKMteb)-)bRVgS-5h0rrVW{2Sd;cUy)eU=e*6$6{?bd=a6w0W
z`9|K4TW!aB?+02+(D3abpGeJwFp8|Jh;{6%03HtuIzzwl0h_-d`0(+ALJDj~yO!}T
zVqpb9MrUa7EkF+r(}@-1f=3H|SGqAi@2K6F7l0LX{)}`PlWxhz3p`;
z{jB2eb)6GjGI132S2q?v>7kAm2k9eSvdOr+x99~gu)&u;DWfDcVepg|xSJ>RDUEgl
z`-;}m?)=Wr#|tq(Z28whD%|$)dKUiNIkm1t#iaic=zBrXgAm2fa5$ob^HiBWhjTEt
zc7xPLJlhkSS6E@Qo9JE_L9d0C6TQ+dte{Yb=RosXCJHyd`3Gko8mx0RgsTwxq48_RoP
zZZdLbxu|7&>>?Eb(x%+_9wG2{avkOLFrIoN3Lz_i0IGwt#9zYHSx
z_k4|(FfM-0Wl&Ta`%`D3wJa`4RMF~f8&?&R=zrhpKJP%iqfQur-fY_UuktNXr$sKe
zI&~lm6PJ(eH{w4}X^R+K=vp`4qrDT(tgtVoa-{=u6pu<9Nl3G52L8n`yF@+U3M`pQ
zuPzd{jFL3i`AQ=lizGNFgs^~b%!nU$jqoL3ybM?@idJk#Vbc$$eblNOaBVaBVqTf!
zGei*H)LffoD@Dm7Opj~My3ed^$jotQJ8RyO|I6KL%o?*kPGW!l&7S*E7ii4W&hhOe
zr`#i-&@0lJD&r+tQ-Sh#Drqa;_0KMBn9SUA?9@TosMF}?T62~cZDwUjc~k{|H=CVA
zAaCgqh@s_r$jc7|R6^SQBHot`oze$oIY0r}i;X4%5hN7at%CG@xJ_1V}@sUqQgKKSkcS6avZI3%OlxHay5P~tpaU!qDn+1Y-t`3o@uDRb!~Ayzb@ulT(bEO
zsT&HduTQ^&Ozr1JkO@^C(s;k%HG54lGnT7mHMk@<@ESzx3ztZ^>s|9TimvxArExoj
zQ@1n``=e$xNjZ_UN^g9+9JO^~-+O!Q^a+#WaIitLGKaj+iKeQnD-Imeg($
zoG$y?Jm+AIg9xP~$Vx+|)4^N(G|le%>)+@PiDih|;ekb#y{0x{BQG4&^PQb*RSEwr
zYwI$YNG6%dH+LBvlQ;>tj|`0S>^t34iyBbFn3%({zfeGSWq_ci<(boCV;<&eeph&m
zif7q~kIv_gR$l!6%#|!<4l4W+f}kzUbIZQfm|n^_^%3W|7!vKpQBxBFrv*oz#~!izNd+_Do{sZ;iN^$5*6-+JIIVq^t?b)}5S2
zZTlpsW4oC2X0yWN&P5*Sy|K=(f#K{i7YEX=2-s%6FO}(>tF!X?qtd0bDkcZ9+1gN#
z`L>s{m4&O$3OlTS@9>7v2yVA;pbx&~-+4@EK31A=CQ?|QREw*qt1Q>5l8P>=1Sx1#
zz!{leVVnle0=Xug9ky-qwnj%cE-a7T=pM&iMCFU5vm}2*tXqAObbx+b?NI;_R%;4*
zi?Bve4_4sYdt`^*Hx>VA2ezhlugs213ai9Ym!Z&}CSy>Ot5pT`gDy0u1vCxEzBzz(
z#4*ttWm68Vw64&`=a+*wpuD{EG4_$M%1qsB5;bej&1$?79YRhcX@%i5GTZDMkP)0g
z4dZ@;L(tJ)AB*;jfIn*!*)X{>@-b@o5Y=F-KX75IriF>_fjM5HKOa|ApZi)D&Cu!V
zV4k1e?ycA6+Olfk-o$Q2IRVAU%5!QPgk8a6hyP_^0H~E)#%RvQz=0ZXJQOo5Tkf8S8R!?o9~xtd&5I^XZeuY37=&g`XdLXF+M6g|_E2
zs*crk{PN7Hy{O*&&?GLTCbx)Q>((y=Gp2O?^-8m*HajLNmTcebxw@!I+>scQ>~-XF
zEAe%1<7WD
z=oHNoTzsTT;Yks`@NrWSAX62Dvo6=5E
zQM_{VqMWPXulSNmzh3)B818kffMaJRS%lRwT1%TPtsX^JV;jaTNB?21J+H=uhgh88
zwfkR>aK5V43GsPTH4z^}e6RxZfZA9fFxA?^M|G{gWr~kZ=~xsDFCpS~I?R{^h~a;v
zWNyY(G^M&Ktja=Av50Va29#q8-z&$}W%xGTE^#iu+_#6UGrs#nl$t{gfuP7Ce_SXR
zYeIXy?)+F{63)I-V3yoo55lG}CoREXyNeSYu-xU^`%BXe^j8`BNl
ze4Y$Y6ZylsHF9sNt|s;LYGsPLCBaPloE5Qv794@ZQh(>oDfzY{bs_HFO3#Jmyc4q{
zr+^+bPXDwik>klGIR~EAep)r{b;WU~awPLBrjqv~+GSwr<%llEwk9QF5pthHH*{=!
zTSCmx8%`pLv^x3do^oLeR!4jbeq3=;8|A;2w~>ATiqY#vetQrIOvVoWhuQQA2=%)G
z9fh-0*jt(tSrc+84sDHc8c06IAXu9eA!{%fC+`(XsC_O$zN|8+3%2z3$*3RM!h=!A
zt*QJCJXpY3#p}&1vyWktnp+UI&4a2NUiv*{)@28qH_=zi)@4_69
zof6ZJqH6Ijs%+d^c(^ufZhmq5=*wA_3%v4E4t4_1&R4DO>-P&KNd}iFi%K2tKOTME
ze~uaBB+E6b?C|gno%~XuI0Hyo;jsRPWXwwNt1ze-^2`|CZvKfTMeaR@J8fV-?HhUJ
zq`^;i*gR?q)K@?JReUT~NxnskM(TQ-xn7Xe^cbsY6AP<)eL($PwPpI>D>-&-nbzHEuDlur442-kJ;M8;!1$LDT?adWC
zEuhcDM6$0s%#P71F!K;?^@?($Dxqz;R2kulqM~UF&oOlb@&)*;a?YPj=siHmjjg^{
zaW0F>sruAFfzzjcdw<|HT`ABuaxEw9b#G6^s-OK$K@MZ;US<$w{`#!DY3?Kw}-iX=HXLr6K0{ufyTLi_+KGRn17?+|WU{om(v?4w5BhkTBPW3x>Qba-Ou62Qh
zaNw8x`1iHNirio2jH3kmCWEMj87ce~WMWnfP^S@}78zZ4H>+WW4`i`0IX3B~Q|wfy
ze-Xala)gF);A+V$2%v6AZFDSQ8G_)_z%h6>-FZLA(m`p
zqTKs(+;TSWn);g+ZAwN~y#e*7Fw-|wQN4;Qs{QRC@vNiG3Q(?+n`1gF;g`2NVPl`J
z@o|Y+}%iCte-{+u^*BRNV~
zA>w5`lvEx)
zahJuXpnG2pp_qZv|DjS)kH0FNt=JNG!NP%kt2M7836sew)5gQqom+1c*q~rWv>iA%
z1P!Sb4i@jN`2%*}_Anmues_HWDMR$^bFI%WaKtOC#kKxh)AB@oVA#*ZsX(*-?z+(n
zUcl!XfwUh1o2ajjT4q;t0)|lYq0d`@M5v>&frt$QK(%1pR2sGf%%69{NvXT`ZoDO*
z+*bsEqye+-XEDT$ONLb4-uG1fc%XuCs&Hnz++2vwcN=er;eSX?`px-8CF{^Vt{#jY
zP^6iZOwzFCH$Ox;`i9uGIb=0cw{P~~kkiHuGm6PF;X@;MksGLQ>xSR-5%78vaTJ~Z
zS+Gv$z3g@IG&6M@J}aMjK7Cg^n`}?XB0c*|9860dH+6%s(zuyG?Nmq&tfYBJc+kL;
z+P}J};dALP|Ac3Rcshqt7%siSnjBuy>=n626W)3!YRO9-bu3?`A74KNmV4e^t?A;1
zMKu{ZhHX1mQI+Z*NnVBD&h~VyA5X50zz08#OfeH2c(1Y7vF#8Q6BCRX+v-r_%ZIA9
zzD}vG_(F`u++h)RWb36Y9{6=vC8Fxk+|vxP5B%?_kFqljQ0ZiUnt|&RSn!T?1loEj
ztW{jR<^z>Gg#jaB6qaMrTx3tX$=eds_t$gz;)-ckX(hwM3VYPgN2RY1evO0m0sN9_
zGM>EVEx*fQyeNVv`l4SyW7ZCCu1-e#EZtZc7A<$q5_Wo?K@t(0xzaeog6({XlnCut71O{y$w-(yv
zNhb=nF`h{eZkGDo*LH{ilp2QoJc-jy7
zWdtHz%r(#HOTN7w8?z`ngX~-)P*P_w>ZraZ06)5jM#=|O`|SX{=-DTaNBPA+(C2MD
z+qDUFiox>M+gJhYZ~ebD<@I0W0K!&%bjvf2Z*fJT6(KUZdo9)#tw+CPEA8_0=Gv9lLxMT%EIw0qt*ATaCi~c^FknR)}
z6m@%>48~Z)K0@?&KscFvDkB0*-oz!xnDbx8u08VYPjsYQAimss*Q4j3e`|(X
z)T@C-aQ^J=E0Uo*F?uE9^Q8Q4+|z+Zwi;I&A@Bh}xF!KwI5S_zNZqz^ah`USOlp#q
z?w8&gmiWj|YV;)Zi3=yLSfZfiv=DeC_-IddE_JNH5{kg*h+_LO
z)?Y~#t<1mVOT|6IKtJE45777xV`Ev!rt
z(h?gyn|H@PUtV6;ccM{WwpOf#Sc}Rm#SV+E21Y9@FfnL`x&ZTtxbdIs0VnjXZBDOG
zo}XR7c~!|2to@8ab)r-iKj}|;nkqt`G8J%BVrT>_;
z@C#ehuGPdHC7F&3-Eor$s4ooIM2i3;0pWMF8kfp}M4yWZPP1NiI!C@c_*lf)w=f<$
z)+G10K72tEkj;>Yr;w(+GJ7qT)(>xT5%9jN-p<(-^Xo*tO=U4_3aBP;m;_(L4X7
zJ(BYDhIpkJ;lID-+yVy?m?D5W#auYDsN*68y1MUwD3w@6(15H-4{ceveL?=u>x|?K
zkR+4{w!Rc;EG2qtGq4~Tqj8$=H)kp?oLmOUe_z+rg^&{YUv`os
z1)6zjZJL@jxlrHz{DEuUJE&>VVl=fhONZ%Ez7hp$n48^MVW;Q9lFK3~S7SGK6&08t
z^f}Y+7@{UsRx~uDDIN63YJjYZw*tjgflBnCl7={~@ub0T$2)XN`b?@hjsS<*
z{w^!J?EBVWY#&J)1r=Nk5EqUxm<2_L)|n=W^fhLU?+gWq*qGr*)pO)lsewa~@VHIbrg=M0DFc*j%7h(znPN-vs47!8o`1
zZxq-x(%0DDE;KvN$fq>i9e&1CoS%JP-yeo`Iri!DWcbn*+#I{MzJ`J(HeBs+v8{e_
zv_-O|Ag_A8@NVi*Y|A)nN|d~?-Os9QSfkUm(*t4YOYLhlE4~s!#j;^sF$Go5@#LR8Z>Ou^uE?c=dDG;>)1A&IGo!%!Ha+YIs86oC#ybz7qV?5ZjUv$S9>)V
zhbPse+Sl{tN~(F3=DeGJ_r(!qjLpdn@KE9xTri&ZpwCI*zb%6moPVHM5Txkq@g6e6
z@(4&-^Otz5-tFFD5v>~7ccj)7sm)Hc!#MJ!I>`+0PC3pb=55po8XEA}-A-dNr;8KS
zd|iOuno-)Wv4SapEHTaiHV!)enXjw0w-|eaS&K*85rAR%zb*AcgWfR*WlFb2(bp~ufoE3e0d3MyMcvC!?>>~h>m2g2&kb^XQ@%%+h!(W)hSB>vs#?%77}V`+Y;f?SB|ldaeJ#5+@XSUD~4oSBc6?5^s#1C7>R{sTavd*drAohiBdXr;;MKBMw30U
z6KJ#OtST>nv$|r!;zUv(lN?fpzu+&zw|Mn4>G$!InVx(CDUtM#o2*5riDqG%vHfkE
zg_{(Q^>J@X+h$1H&5sSM4v>>BIJuwOmWBR$P~X}1){VL<(IQ*n`&-=t@HeI%H4dZq
zAk+Cj`6iq-EMcfJsA!S+`VvvylAgJBAEGv3QRj2J-SU1W5+
zhw(113&-yB)n(D_4h8p{7aO)tFMjy=LJ(&8VNYz9vfM_Nc_VEm*6VP2)JR0s;&Zp-
zVt)w@$(adDi7&K{ams{x??NA|zWX+xoGUoHV_O=m{mdX>wZBVJMp2|u*;@Zlw`7;J7LpYqTi
zlYeV$=>WE^!3-Gh_U5qIp{bdk^x_)QSCgLfVa5va1`}VLzO0S^ycUS^S-REtEqU3)
zEf5bKI4l5rsp$67)1_mIdT`|a{IPz$4sD
z>M71K(3q6HSzV(uB;}WRB~^R)2>q`{ct!f
z`@+ZxJTEEA&b>+{1*mgq8e>Nn#q=>~UU$r}tyCV1$mF_Fv63qr15&d-B*0ddcEbb=
z)Ga=Bb&F^qmc-rj{H5}fT9X2pq!;&1mkwtAdtt(vwKt}Pnb7w?r2dh|K#of`^T_gN
zyckff+2Xx~nwXm2zhx$=`3`^Q4#>)l9%9W`)a>A-6IEA~EAwAvhl7v)H_k^RkJxM{
z*vR%lui_U(=waY$i;tOHbV4A?>xxsi);AcK
zwNl0xGF16klRE&2*rBDFO|RnStysf{RVBO5BsuO^tS&?Lh|Rd(O)gs=rzH5%s0s<-
z#mA;{mHO)$urRCAaqVZ{9Bq}RB21aaYTr9i3Y7IfK48qm|Cg>KUW^}owY32K+7akA
zd@=1LJ9-j$xw;(dNV>{wcSyw+vEl!~tXdPe4!uyFv-D0d_4GE@_y(?zTQwlFj~-j@
zzkWB?2JwdMAv9LJp6f?~M)lo=qS86zRaB&Bis#-afIEA-{Hq>*RTELiIv9*7v;Cd)
zn3}NY)L=QnxS&*xZZ`kQNOT-=TvrE!@_0G{F2RS5k2Wpb9J~==d}jd
zbETM`AF)^Ks#N725H@5@lpi&8aCH^ob}*~P@XXl%O_Cj^r>R?7-NLP}i!tQ#&Th8J
zO-iN}@?iM@@m{FyKN1f3aT6e>79cVX2rBMcQZPp|*=lgnpK`mxsOJ|`GqdW{Rl8|v
zxl%l@DtmK`VFML%E!*$Pz~eksz3Kj30M7ddSiw1IB%~zI8ZU`ojUze#9N~p6^>2!V
zZ(2np?{9pZdX%R?KavocURgW_1+vJat23;j2_i;}ZUN
zXk%RpYS5?ka!T=ETObl)8cE3s!Vg!LLtZOzOlDPzAH-rA?Jmt8cYp?MdQTirA~T+k
zswqCzHtUrU<@xa-6e;yDhFjqBjL70)@pte)?vp_{=iRF|?sP{)NgyS1orJQpHjA$<
zl>%sQ6ZGbH5AnSc(zo{hQe+ga-(kmn{lEnI=W<ld@%Ra@#t%04YOoPXsjy)fND-Ixs=itYcFXnLW>Hk2cveA&hB%SasZ?
zj++s1;-O=#UF&YRn?^)tNn7^EnQcr75=U!Qm2019(+97NY@Hoar_w$##|Ga#mG~_h
z`}&>=2o`*nHfi?y+q~LL|B+xSl#l3N>8%+UkGgQ!$C9#dnz4|A5Hw)k06`*0JjhPNnD}%8&tM5
zev_RyUi$FIhl!awi-k3#dd^JMOBh6Cu;~!k87SDGY&#!V*$!ewqY2(w{Y~dvl*IO4
z%CZj@uRgXBL#6mvd+%WBH>SSk0^{pI#rZ!UL}ep!h@u;5jLt5lyvbL}-}glkZa9m{
zrg7GR$&W2gD6VW*hg7S+mtxr3(1fQC7&p-t9$??k+O$F`|{$D
zCVhBePDicP)x+Q7>+(-XUhhfvi#LHgA-Q}W2bl`Jn0k1{h1<#W_WXPcsh=%FaO2Ax
z4F1m}#QLwnHUPvO7XS65#-t~82#z~As8Wd(C9
z60A@Jyv9gU)>7~X<0}TgMKoataKU)8?Q1=j9%LBDG_<1*ja$5LylIjuPu1$0Z7cn0
zyTM0K_AmNkrmbHpT}i5O2iCbp)Y>~v-QlaQx=JmshJdDDrbB7v@8w;fjA(H~iZ860
z{*3EF{>~6^4D=c5>#-MT*7kfmop#nZMz`cO*wQ_RGNNLl^y!jZ#A7kA%%i=%LwCs@
zW@>E_Sn=W7ijtx|TZ58aAu)g6HSEo+cQo%{aTY3ObDa{pV%Y-
zt9yFMvjhDQeQO=@cDuQTxANWr`xivIeZ@%?`&qpP>1yq2w_fYsX7)D&&IdTFYklI+
z-eM=3mU3Mwu>@1-l1S*ETcQc0f1&A~Bb^>%6-tSu(icE9nqP#XgdXizE>WJ^=@-w)
zg|KZ?kIF;?_dMkW?XC{g?q1>V{@Fdvcdpy-i*`d39=cyC*1^S*`oFMxu1W&mUerpk
zw@H1tFAVeBEsK5k@K99+O;o>Qf;>|BB`wLc^*8*76w9aw37?peMzxBQaBR%G3<~pj
z1p2(34ZOiYMbX&Vave#AzcKtF0oR&uYI*Jab)`Yyoym+v(a}$j>%X~YLsNJx8oDmU
zayRz(Fwl9pvxwbr5VE|{E~il;$5n4Z2_7lNtlp1i_Pc11pD!IW8w~pWipj61ew;yy
z#$QU!AlKqo$h$ZOj+F`|C^oGg{Occl&v9=ip8F)HXus=el`QKfS8V4jAsX;BQhprS
zb+z$7E#}hyECT`zuAoi6eL->*$83N_(ibhz3xloB5doUJ#IF)yPF!XD9
zkYCPR^1aL{5hCyy?!i6T>MRnx9@zLGm}?3KK%ac!j%<-p&V)0arItTkcVKwsT=I$k
z&Pg=-b_jUL!hFlVk=pGvqz1pN#UH40y_Q_v(5`w~p>7>EHWn-5K__@;czcUH@PM8+
z=R^Mq{iS0-BY6nBx5#knj@^_YQ3pZ*Ye3Z)8f8s~np&Vmg2_vg5mwox%%_9;YexHs
zQ@8;|f$p0x_XlLbMc#MMELS%;o$Z?BqhlHwDECy5vjp?AE4yc_mgOSgT++A9MTOYn
zj@Z>8->)?h2D}7WrX8_9Ue!xZ?E(J%_BqU48L_!eU0xf;+a+r&yOobj7xT+&5$+ga
zwIO}~>>BQ@lW994^ukR4A-T>o4yb>#KZuf{p;b$T6=r!8gs1C?_`IrXvVOT&hT)?y
zK0kj3xthNd;QfZKRgUd-goHBx@?Pncb*efzpO;ZZDTYnX@oAQQI|7*5DG|
z-e;UKe=RYos7onyT{P$70F#BvbClN-Z|Eb}qmw#}=r*6yTC|Ln4-)WAJ
z`zWe8Y!yrZ!Ln%|xPDAkAf3F$DFVqtJwyk3oTxh5EVN|Z8}HHtN&>&!K#i(QlKRRl
ziNc7gn}DS}Jd6+~uP$k;%lqGr1hl`)FCvH^nVBT{v42UcDTn|7`B^=?XR
zcGcVnk?0l`CxR+N=$N)0#bEwgaLh+Jab49E^f)Z%LqIHJ1T
zeJDV=_rfszWvqA97`~h>;RmV4iqxMz=<($<&L8qtJTd;gB4%)?ib62v?6rgBfl72g
zypxs}auqC0Vey9PAaR?5WV9wIxsp1Nm+w+Ro3*+A$8LTlp|0-lN}K!Q-iwj-Lie
znZL)4&IdlD>9`S`FdtLDb}
znaP0sM24JSc!2L3e`dYLePrZpk&iO~YePF>3&W&`8hJFk(-)iB#-oI2I(!VXBQsk!
zot(AnF)ZTh^lWCfde-h4qOqgg9WkzZRT$N4#*r+1nWc?h+$#Ol@r3cbA1_&Fob=tC
z$cI+JyB6pL8mz9vp^fOTfWYsu-)S}F#`(*BSb!JbU~1}vTdwJH>5>QYxL@rZVfR>2
z57>9p`u2kwnx6|7`e0kynj=I#bit?GeOXmaT<9XhY<8_hsOJ`~g@5YpN5a&k{mT$h
zN(LY)cdD5I(^hE>{qDMEa!`Wbe*BLh*g6y-j02lLrZ&u!7A05IWnvplLrvAgvR^a(
zsN#d!T*u08YU(4;;_q5}qsshx`e9Y-#X5pj4KDs7c%1)ft!bUM!T}>-~Qx|F(Qs9J0vuMO~Y=f2b2dQ2%oA)Bq56)!Q0uBKZsT?#(v)&-
zi7xezciK~twfB_%4Z-;2>~Mo2lq4sIp(Ei*Z&^W29@dr9w#1v>
z$-p=YZLXq>_ma}>UU*kp
zY81fU%(KKi2K^)eRR`Y$4AWpuYMOVzJF$#bH{>k=Gew^Z6>`xM92m(a(waXDVkogx
zt#{JB1S?BiW#9w|KOpsvT@?D}#=IJg_FXlfJSluL*HZuPJsfx;d~P*DzAI_Q9d>6=
z&h20N{-Kd8Rd!7H=2){7w{nN6qZ>(^IFYGCD}}{=fm(91cK(rT#jwiAe6^o#K2G^D
ze(Qq*HlPZX74a?0wcSlc2B$tXxJJo(KJ?!z|0_Iy>6w}AK8PT(Qgp0LQl7k){$#yB
ze?4o7l%Me%LiB~_P4_=8PmOM3wu4{45$s8Kw+U%71BOk0PEn_A>mu4qr^+owuAepA
zkYNMqkxXu#kK&VV3>$!aUjU`tXZaBAO@x0(EK%#4K~U6N{TM*(1ZML<;eD2A|0LrL
zwsid`zW9Gd_mzPXpAXcN{w-L5->nr-Iz0y`k0ixU?l7(yV3q+3s!E_j_fLkEwu~U{
z{koN`s@p;@O34;3#SN9m2m}QF$5<^Zy{4AM9Xo_H9Lb!L#$fpuXWDzOL@pgq3Oaly
z;P$%I>caOM0sNb)pfJiLU2<<%Z?ms}819+>kceJKgtoI(k=e>p^n-jDY%4w@k7G$h
zT-ibC)?bGH7bs7t&62umQCCxAG(&p8%5MHh>od#2`KswV~N!B3Af^&BO4AVTmR^6unfiUj_g$JMGY}Ht9`L!Qk8t?U6s?7m(HJSXQ#jllc5-#m0jI!UY-F`fLUxvQ`<6a
zfp&#@l=LmuG}eoL^UN2b-u(GKo2eQuq!;G;Wg!?y_n%x2FUs(nSgP#Y9>q(WoZuYM
z%jZe!E&jm7vD~$;hNzLnQ^Hk>f+)MFNh^L&3V>c3W`F+
z2oWR13mERBfMzSz2q8ouA%ut_3FHC^2{W0=`TASycg{M0oj=Y$=bx;s$y%A2Z{GKL
zpYQwLc^>2K=P9L|LUcuI9ap0Bb~PT@v@l5KwXy;udq+KJ{X8=xI)!oF7Qa0#>XFx+
zrq%H;6|Bp>asBUqbatYCya_mkFLfSj3Elrf7PkDteg2`bnw{?krmtNIG8EVRVqbAA
zDlGXgvwBuvR4~2LOULiKS^K{$K3VcF@4vn`R`b`~>ihdYKG&PpmGM^8cc5t{>-VoV
zCwCmGd?ix_72c8@`yrdOwhQ_^F8Zk=(Zg8@G+jmC-ie?{tS#Mkz)uahqv~%O*htFnx
zUh%mu>eR8fg)Nqk^(%9u)ls97k!~})-IM;cd1+1#75Pd!wIpu!C8hEgdZ<5k5Lwxp
z8SrI|a>uy`zp2H~sRbX09R9G7_H*~^FCNd~9*I*D8dmCB8&f}0e{ff}|J=3ztUH|+
zr{5xHUZk|5=&Z43y
zpTW(R4_94W=C|VTyr1sJo&UNqKG~A4Eyx#FW`ulWKCyHeM&09AAW8a2yYuUCIpZsR
zec%$t=7)0*{O!}Jt0ywhpEd#!tN^gL`prhc*Q>#dzOd*+M#MMO|;zRk0
z+T3Mll}&ri%kJBD`ybvie(U|D%HYyZ=VkvbVjxkfVp~V@|6bk<^?%;~Rs@=%_B0=Y
z)#;CeKE7;-UADLA3g=BQX*2V@?-KKv^7(sStv@woz8Kf1uzmApZzrTKW^{lb6F8!QhpGE5`
zddp9fUTbb9=YF_#^Q^Nc-Ij#%g47+>23T`>YM!Po`WuVa(+izf9)p?XEsbSZbz${k
z7s>rw8#*WJxBVm2Km8^jbEt@axbH-wIA-BE^v*lr>FSNXp_>LPBlN||w8QJy6vb};
zofWt8@I>svL@)n5V+Uy-bu|3R3}OvmE1U6`n=7K<GOr1~dHejkk@Jhne+G^h
z89&E=8{@I)_a7%%k<+UWetGdG^&j8g`{Ij_pbsY(Pueb0ce}6Xy}hlw@PtzL2@QdGbDqvu!p>!z2kytZXW
z<(30o;q&hw8r#{ac+&Jk@4KM9@6Gb7WgdmI|GwHk~EnzgzfS?hO4@_J5*g!3=PC8uXRf*u6=7@r-qG^noNn%UHH_TuyjSy+5+u$N%n
zQQZ%ii_{$WfmFKlY~^NkIZNKW{@col(CwR6f>mOF+vaDfjmMXlr@p|ByiCvZMIOY>
zTr>WMy(Hp*Q9f4fT`8Mixgg;1O2$A`+38g+id7pnrhK+Hq;qA&B34?*w(*URoQelAZ<9rmQ^)X@pKlqRr6)AE
zlMYFYRe^(hBJQfrg`dmwjSKjAp?5H*^H9RqgZQPa+x;R+>iyaW?>1arU0>Kux?OZF
z=8x`2z4`BzpHakqEKa^XyJ&FL)uvmaAN{_a@mbOjy|3qHH7nj1UY+#|YpG`D&AFsq
z8*hC$%V2oJ@;uUTW`<cuNS1s%Klw&Gco~(XRGIa_ZCA-m;vOE~VWDquNxWo*a!I!Ux=CEXG+Y
zw>4xHUyef#u~EfGS>&C4Vlh51-u;cc(PO|xs)si<6|m{+e})CzIChN#Or
ztW+hxyMdWZ?soFi7<`N{IFRPdMwVz0=VOnIuq<*(fPI*ey)ZnNTT-ew*{rklId=iXpUCP@4f153{ovbeg?aARrtS&0DO?p
z8im7jg-~RHPZDj{9EdX(evZ_W8L$R)iyjwHO*(tRUKH4PMoM~EGHWBo#l)tm9mxq8j){*sdR-5LL05dSeQW8kq}ctkhb-R{>R
zBRh+els2C=oS8JonF4Z{N^n#DTNm+%`%|h3)YR@wyEMf``YSO8FC`48AS7;~Lx{dl
z%)rQ_nGWFq3+QQfjSwq@&YOesNxI2hFa?5!mWR_&wHo)xS33qbO<$)ekBUBL3ZS)Ha^zOH?ddc?3hnn&9$yr7Nz>FM(aP~I!UB{O0BKUt
zhq;-A2I)50kueC^s&tAS;(Q6Q%TDR0J4#krhcyxS2M)NYBz-Bqn=`
zY7Df%jbIv#m`!UHI$|NFO1G0Uu~xs69ps6MF;&9`Y{1^;sIycJ@1yc90qjEVcp5Vv
zNG%j_=J00XO%ASGUg7dBv8UvD%d<{dPi}_9aJTX>@*_($&;z>@)6)U)0wUmzYS7mc
zc>#i7^^~nO!oQ|WK@4^p=1sM65eCF!xkn>}852r$Um*pXkM(mLRtTlz8ix!0!imL0s
z-=K?BAS8FHF}69o4k!=ON9DBBeSDr5edcI|
z*~Z#b!S`A0BF$n>quTOAjA`i1A)+0BA7+9vGba&~ECgWqa*+IB2g6$KT#3JeGpu+E
z@(Wz-A^|U^Em#Tb*A=+hb}i6$$)4!Ee8b`-&(t@2ryi9LXXwqa;&_lbNmf|8kjY*n
ze7`DISMByejzccFdHFRtli*~#;{cq~k-js8ehBJ&1{{|WrO7HFI$vEU+f(tmr$C>}
zchL@2A9(m?v~Hl2h%!dJgH`NBkc^=K;CCE*1nDz#h3yuBH>_wTP(DY^qGuLFhL&W7
zCt3+Vha?|s-;b7{i4OR6eGVn2Cd*qy;ad4B&zuBzYxZvwa0YY^{-JfiF$=Po5Q0o-
zobb15Vj06uwg*$B&SF~giDEz?;B2AQ6Ut&6iaX5Bj7oE}pWG5+J6cl>^KEJT!&ytT
zx=%`D%sEjJI@z5TWGp(E!txBgPh5mw)9LU@_$T-SVp%POz-??5Hcp&{&UJ#{eqAWn1M+D>q8bo&-{qG9FFm
zz*jX2&t}ufSXe?p#a6ZS)n&8O;cWasL{k9mGR#77Kp})wRd6@Mk`43VN7#E%-?2YK
zHyzv&Ks@ZBnwVwhj<`sJoInfX4JP?vFQ|v^6@#sps3z(ixDu3@Dwz#@;D^xy7Shrj
z8JnH~z>MHfJhsE-cRcmx+Ig}5&QHxr)F%e2SiD%z=;T^OM1EkRJ={S>V+bn)G8UUV
z;pN2IDSsq=3P~k~-~vYu(#Cd?0D=}eLR_S`1f6Mnh4j44X~4fn{q$m6iRl^2qOAQz
z9gYi64_ISsL0DS+!VA=CDT%h2YdRYf*;6Zv-N*k0Uc7tp3YZE1
zoX)k=9UOBqoQ*WupwYEY?A-fyA25t>reOtyMgcyjx6n(-$5>2hQk!$AGuRKeZ?U$zO~q#C`1+7fl;zW@#x5TIv>b54b0tk1@X!M}hS+KA
zmW*PH>K?!ZC9HOlbYkOrsDYj`g(y`f5BmwaiD5yYF*x-&zjFlV)?@Jr1qn}bs_}TV
zz+@N601v9=R8@p9+@6uC>S!ohyr*p3$9L`v{Ki@F=L1vq&^dV?2;0}i(X
zqvLKc8{{W%w+Y>g!4E()BcxDiCgBQ(22>Rg#7Dxg0epy9_zpJ>Q((7gs4v?y_Iu)i
zkuK-X)WN5oS_539lLW7gyiJ`1kTUSJwTx1xa%-2PWzf#p#+7JG+|;~%j1R-}p(vKD>fVW;C8_KK_L8@Uw7C++rt!L-51J
z43iCckplskdK(=2OwletE8J}wJtf}`icyr+igE-Nw>)dl7%s)Q#7-!ec2*6ar&VOs
zqFjqF^rjG+U&8i-JUSe@kqFJL48ZHc>7#KqP%eB5X+gvpWHbho)DjkW9vJn_E>b1c
zI;{nEdKlT-FpQ~MfXF&F2hW>^^7~#r2M8f&A3?{-jqEbRsK4}y+!}7rG?ru@#Z`hf
zGeUjJ?_pQg)S{G&zKhX2HNx1VMoUPQKn}HcUA;|sgsK45j^Rmebs5llD@|wPixd2V*EwqS!sRsTju$)!1S;9(Q^YGVO^I{+bs_;x
zLC6rfRXw*lYWjn6x?iQINit2g`*sDB+M;@(P=ae1X3X?$vBFNYfiwnfGou4nD5g7{h?W}=j?2)>g6
z4fGeGuz+Ld=HI*`XNp0Z*Y1ypR3QxLoWksOk{H)p`Sr
zq+ytd$47`Mmc)_`9!s-})ZtVxL$w}&E22;FV^}*}Ybbd-fB0tF8LE4NOdUO%R!W|vLF7`VizE{6ErXiae{V*_zV>Rn9V1WLDc*FB
zNX93&i5%D~sin1$LQd?{PFtLY?f~M2pGRI{PAsr1%}&NY&`p2MrCgWTQzxB20GkHK
zjPW(WTZ8W;i)#>-2(0QN_*bAC&1^T;l@xks;}~oM<1BM$8~Uo$a@f@G1T4I@3>tFR
zBU-1gNy+F8Ndm`S_Phb!=VdeapsB`=%~9bT?ZA!_j?ejzWkZ`vp)uQgU{pueoFg}@OM;JiK$
zNguPB>>yKRU=p-96cZ*2VT3^lVYD3hg@*pOYc{A%pk@kG#O-W*f&`rCzfL#xfA@6j
qIat#Oi!3%x)ycukc&>~;b|*m9sq4ClR_moKiXdB+An6pk`u+p?;Tcr`

diff --git a/services/web/client/source/resource/osparc/img1.jpg b/services/web/client/source/resource/osparc/img1.jpg
deleted file mode 100644
index 035fdd38ab80391d9e047dba8cd7077ae722ef2a..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 293584
zcmeFacUTllw>R2D&KVVuAgD;rSwKVtM1tguFbp`r%m6chfPfj5Bp|3D8OcFFauQKM
z$vF&B1SBI-hID&i>vq5AJ?Fg7cc1T{du^WSUbWV$s#R61d#a{>y*L;+m^i7ab`$OZ
z0NUCBKL7w^04an4AOtB0_y<5(0pdd%0PG-azi21OxxaJ>KpimvJOiBI#~mVmNHc+S
zcpw}g`YUe+c#-(=yg+ZZjpj^3BRk_Y-+d|<;e3}ms7ZsD0
z7ZZ~gm*WzXk{6eh7ncA_0RX~8$lvxQ68x-#Kqis!Ck?rJs0jch5W>H7Nq%n&g!}Kd
zK=^-e3jyR;8R7)L%4Vbet2_j>RZYp)FJI$>
zIyv}TsA-$qL?=zdad}D;Q2)M71-}w2+<8mX4-2zdl!t$T&869Di_C$JYm-va88xCSMTWDk7TJFtNeCuN>n-xYd~pb
zDc@(>By?LFnTlO3EK#qi@J~qJ44b8BydwCy5s@1hSQg7-#uZulZJ>`tu2(T(-j2eD
zCggdP_5$LiF&AyiC>iv`f@`7hI35GuLK`#4l`5TJy$+K_d{UNX0vpEWIT6Y9<
zZ_gs`p$c+*CMzC&%xqzsD}HF+fVJJYfR0;i^c`Jx#;!Yi&Fn|c<^|5RU#l2>*7$t6
zqEaZG*GwtJ#kaH~Kz=B}s`3C(_OVYq(|OBY)pI|%YsMzTU+0(#ApJSV`#N@A=8O4`
zn9Ix_L5Sl#i2@eaChcL*usLE;FiMNk8DjTUlnD@F>p1}Kn;Q+xo1av0?@FG?p;qa6
z>bN7HMj86y0Zz-SeZSP{eWfZ~n15y3)O
zaje*jI%xLsw{Om0aAq%iUWzUakU0QSo;&V~iVeYM2Yv2hM^sZ(kKIB028>8G4l6n+
zu(V^$$Gk}>UzX>UCtTVYvyd*(IOCg0F*x*X55<=BWh4rXlCih19&@xsHVfocxbY*k
zL($cw65L}}+nf{1S|+o5ia~_=BME)N4efJjVhhI-P{p}f&!r28%@2TAgKDL(qU>xj}mTi)F_a
zv`l&^`<8D_>uhz&SLo6Kpo;rwC8W0|3
zbxhDQ?@o`rS8om#uG#<7i*66qYtASSU+lLkS;gK#HBTJPzSp|Vg!1KzrNDi$`KtZa
zc_Z`Pr(IYZD}644{!#_{vCA{+l?w+zTfnf3eO2W2G@J6JU6*vzzJadR*3-9nc6>Jv
z0Fmuwu-D)3KOHfV7pp)jWafQ#6KB=AEJ4iniqHw}f$~b*5z6gX#(M1`F82A^eE9U~
z!)$)}y|b0#qVYqy!f6d+jSF&2KB&we)C0`|{+|o^4gjs)sm}?0f?BStp~S~ac^BG7
z5IrS|@8oLkG@>{CgV5E8l92-diHm<(ox@$Je9*DM@^*#jW|V1QX$A+R@DBR{5bImJ
zm1MET8ah|}RYrlmG0?Edx!gUKCSoh@c1hYMr(G
zLUwU`sCKWSb-|L_nd1t*Z=BP)`+9M#S(xIxo{Mzd9E%HR&w&FVU@dqbF2pontGH)}
z6{+ggpk^)(hOBVdm)Deb6pZ0=k$%Q)<#9e)0$e69=Zz5Vo@K_^LU`qt-xYS<^u4RG
z$6p0ngt+-DG>6#NaeI;PBMyM7eu+J2ivZ&_7nA{uU>Roq9>-98$C-xr#337k&_SEh
z!F4)$t|sa+TiUmrHxlNeqzA8a-|`@h`e3keZ=Qy+PR5{zFQ809U^cw{+iC%!jZM)=
z;b)YIYfZJD7PeP(?4fh-7WBA%PhYrDVV_vasVLB=#GVJ(Qd3-3>8RkeYS@2*Jt2ieWdvYp$N4Ic@HjhGWum@r_95d+I~{
z1!0cexgCv5sA=KT#)5vWt|XpPi{3=CD!e_cD97?|^eKWguSapI&75~UqK3V&0fPt;
zwrYNB{=%^$+||+MwLCwJc(e5Zu)?`T*liYvY>DwnyCu=-DRwirRN*GokoZgEp)Iju
z|G51~{)#Lo996zuFYa-7{daYJkNjaQA}y;vxl}68SJ0!UIM*Y3N1!BMzp=3N01z)y
zDlBN7uhvQQC~Ua&fo{R)yzVq|b4m9xGez%;vf
zX6PWbCB#eF{9DoqeQ`FK2+oPxm;>PI1F#QQ2dG`re5h)r7@C-He8QKVy>vz{;FzuVBNw
z*T3T(Rt*=3E%}j`4_kQO0(+@!UpzJ&PK_aQ5FP3j%axKQ8Rd}BI3&j$CLDP?`-P|+Dpt
z-QK(B6R@Z~NM@dS(77R^;~yE;)cDn?FxwgV!Ic%4M-=BDWgLdfeY8Khoq7P|uSVVK
zWH$Z+40`Z3#SZuoMZEkhSbIQa&;rdM
zmf&0dtAzG(BhK#GsiXuh7?#Weahfi_kCg$FG65g=ztrLCUPk#{uB@gvz5AuE{EOnf
z^<`(4?c$hd
zb@ltv4)4i)+wZvZyhC`RyDA8kvS(Ao7u@~{^5QoeVCtY23Gzk6Szd@_M&7uDnV&q`n|k7jmkF>xLKb4g3O%
zi7eXky=QrS@+wNVr6+~_Nqvjpb|GM_P+eeRPxG}dYsU`(o$s4xHG
zO$V0U)!!P
z4lSvyw&|)}5BOnAM|LjCUr>B4yXlQjT}x7~YaX+S*>b^GCPtcAsmrV`Z{Drv$yZfusy#Wtk__ic>A9B?t_
zO}B3mEfBZvwQdH?U3zbnIrlzGytHpe_2sj1!kF&aN@(@;rffyS0;;>Pwf1{WOjo)L
z5Al~+F|oo7;7LYtH1zB3#oU-x0YXnK+jiIiP}0E%GcqwNk58hvG}XRc(7@yIU`JYJ
zySBxAgsd<&LC;yE_+9Z`jrB)VFrnut^oeDIZO?!gu^%mt$vv(w+f6v=+K^R#wcNyP
zo$}V!a@-@gCVj6&t#<39qhtM&YIDB-nT_`D+(q_sI5}U^#=Z33UU_46ofU^BB;=;7=
z5#18su&cCLz4taI=c1L3(l=jIuNM^%RZk?nABtU%MROMQtXq_C`0nY>2;@QveFEEN
zXJ;~up6zJ03A58QHK8pDQwhZQpx_#$-DbJq0NCOPs(tU{v|YR5lbM^4@;WIu^C?UE
zjBy`rd&uZiKxf13m~o+-r}UP6fTDNwl3zQ_cXLT;D0|ajY4>A-_MMgl?c%pD<&g(K
z*5(e=rG1wTqr6nPYSm1!Fe&Ns;vDYkJUD}A_#CZAh;u;nM!4g(n$M5QTS>2#`RXdf
zEg;9driHes8ivLSy3Iy8W*GMFlRM4|7L4hRlQbpRyiVUA6iz4+1~I>I(2NSiQ)
zwMp$>XW3nRa)BIrn`jPaEtFtV;boft8XELQs6O`@Rk~?MGi#^rYp9jcbBXTq_#H(j
zMG=$r5+9lUaPNI2tjxB=P-gN~5QcX>{zYM<*ee(35rcp=BA42sXKS;v9M@IvC|_>(
zb>6SC$cNGq9=C%_E(hjrJsXh)U^;(T!qEjh_W{q6`fJEp7egEXjg-{?9
z^5tZUUEi$SFU2X(9JA4;mhMi(S`IjVi>qx7o5RI2zltsJJO7#G`rxcj2=sF7ZECdN
zy|t3kZvpQGcPZ;7;YEl*`
zmtkRF_jT8Zts>~fL`nJeGf5xnhQ<ixL`;Gla$DDQmaHtD`5
zS3}4ZRF^{4Erx*(SfkCxe%BSWYI@QlgXOT@$a&NEW3Si!qnvf!ytoibyibi-PjEg)
zTua-1veB&yOG?@8=QfEL!lBU|XL1tFC%>}How(qkd6UhJxRED~5y!B@PsqJa{O;X$DE(un>5hl8gT}Z7XOZFW#kmD7Z1>cEnEMB@dlh5Z
zq5grh%IdpcMrUhHglgxeZ7kEpv*yy~UlwniuNYh(wCV6FY!+Uhg(@nq)Z}Mw2c5_C
z`&bu$EM}xZ=vjNlvCXNz_+0aR4*|!_yW_%ot>ZS(Y2s*i@zuEN!=9uv0jcxIFwOWl
zk&3<8J>6b`_3RBrsneRpZ{`;FuHo{7`o%codg5pF$r~CQa&a=<=(&x>f{^ThSr!~s
zz;r-2t|mWSHvtAU(ec=jd(aN+>ywtfv#9i{)N6WqYtectwx_~IjdF-~iHEb3@AS;^5Fr_yimOS6z?DJ)x9hlh>ENp#bCH*A9ppc`}*+uxFEN#k}F%9am
z>4nQDkafu|kx-Yn(4kFPr#{merP}s=&-UTsv4MSr$vdgSw8BeG!-GBW;Q+pzO)i4@
z{<(;@h=o@Px+l#iYbrKH*{G^e-Pm%+_yn9YKjM9X!Dz>P>ILMIb?fL}ZIhMb#jJNN
zTW{!{REPoL~`Gx
zE9$~^SQVqTF+6ji>pO>1ySuQWf>5lp8*oSParf5HNbNd<)QFfkI~h0y1#i}#4Tj~%
ztE~QKM2BwzoVDLK)0fkgcoP=RN_@E0&biI>tgnIIUsZj26sn1HNgE9)De@_LrIb}g
zO3&PDro7RhzsI)ItQG^aZ_61mJKwMvKfYMov>uHz8$1A{3uVJh7q;zpl-pD*)YV_q
zd*_W$xAVA76YV@_yQejmvXJk9b+evZAT7vkgT|P^L;I=|Q3zxlP3oRzCP?8Beb;AD>Gz1;9joyhR{7u4VkGO^XFz(T=MT(r{6ZwVLV4_
zKD1OcGG0Gc-ZfpA_714>RhFt<@oxyYw%9yb-MA$tWR52NW)PVXwVS@5xKF^?Mht1oNaaEiZ*{<++>#Cdd;H
zZbuf!u$SDmsw^9ET-8^|A#-&v6!2cRv?g1wJ4x$P>XF<~vf~6_ts&qBHnyC4lbm{M+eJCV$A7`b&=ASOWk`S9fp+P}c+F>VW~1_}xc94~;Rf
zL!n#_H8hbJ7!2uwzzgs+{;KNYj!)Ab<~4xd#A{rHWAJ(K;-fNQ?mD&zn4y}fA;>za
z>?nhtI|}7s0K<5=>e@L$K_L~O2e<<$@XrC@0t^5cfB`%JSA0(`Jm4-EIP$PaP)>fRt*ULNb<`UQ_#y~|z!Sblj*MXVt;M>o7&r=v24%;=51{Ib
zLH=w6*ho9~UkQCjwDzxrsykBk?*tO_cjBs@3;LHt#}VWCE1`yPx%4Xm_T%40UxYe4
z{?!pj1_Ju(7ga%P@Vml*zC9P0J<7xG0%{zeJUrChk^hBv(dEDDU39lMG(uu7^XR+a
z$M)B8(Z!zY-|_X)E|^2U-c6Sa`oGjEJYi4_%Kefp#und#LnHMZ_0T`P0#D;k0L*YorpWR1;7wCgF
zT|{9pD1-|N>G)R`s-F_P3BU2FfAaO=jyHZ6Q2rEvw*At_-z$WRM>ZU7J%gLK49EYW@9j3_-&)^AimJL}-z
z9)#cU;(seT_gTaNd&qdq4);WM_46lIK
z`j_K39zO3cpu;b<-xPlF{xTAuMtZp5pNROzlGvdF+-)&1dyoMbdb|GonxHsR#&hrzO@t#C
zc=^BGenJm-mw$ZO9CrRcIofE)e|{m6*t%d0Z5{uiMFWMoxER82Vl>ejhT2zuKJv(Z
zvj3q>egoz1qv8U0{Ml2qM~&C`$p%|aY7cX;^*DS4lY7G4G5<#0_$T|H>Xdelswfwf
z`){2~e^mZO^mrHXQgaY+eF3qi#sMY&|;gvF#qC8fj!xxlalG9sc!iw8!L8?^MO2?*C;#s1sA`b|+=`+rtNAn+Y<
zSS%W&<_XsFKMevJzw;}i4@09o+@UZvPZ$!z^E10W^jBV2aPRxDrS?z}m(8hUzq0(J9lykfBag4ZRbJH{W(%Tz3_--t&w=_IZuZaE5x-@CfhZxEA~!ym
zgpin+khq-T&tMV)_~8>hQq>0iz#fDX{b$N3d$@!5f1;|bEw710V{DO7nC2x#Zm<=?
zaJap^gqR#m)?P+T2qrG$AS5XxAuS{;BPT8-DF>4ilXS3?6_s*0vrL>W_koc!ZoHHx%yBRD4is~d{^cgCY_J^yFZ|1%f)zi9ej-3q;7i*$s6
zk600Id}BoL52K?&5&75gI+XqP;QFZ!J`M5Yug9>`&&TDT>z^L@(*u8c;7485z
z@c*M8_FZwBysCD%;-u2J3P+*{K=d*Kd_4g_Wi&N2
z=OS$b(aYo@kQ&4(+d|Q<+6I^L?{fg)bdn1{uf)@T9pI{Uv+oE--7Tb{$Hnzi@E>03
zp|0-WdkPReP+!6xT#|wGeUNtX!nor3c+e@6oim;$z$2!a+(83D`UIYKJfZ~;b&lu@
zc-kI;1o6oPc$;1A5%zfc14uve^uXhm39o|mLr*x&3#5BM`m~D&0uIu6pga=-W(#7e
ziSU5d(-;`^21tv7G?lxdKDe$XIuC~LqjLO>w)>67fB<4p7f?mHdLKe+xz0iPxWJXD
zESCn%%LRtP21FaP5n5wMBXZz)_p=xd4X$GG{+zAD#Y3;ct5X6Nw+&Bl+63
z!!d&#Yx$e^ch0|gsALds55AN@`1Eg{-Ae!{eE7~Wrg
zTbaXQP+@$B{yP3wg1|1jHcCE&>;zXl1$
z)O~=-Mi`)LX95TpTL2fEsWG&;<+uGY}FE
z1%JmvfUkXd0k?oVz(XJicnU-TF+c*43SL8yWosdDu1Y{Pn3c(Q&5>OE^5wH`SB@iKyB~T&IA}}PdB5)*dBk&=(PY_D*
zf*_e7hoFR@j-Z*KmtdS=o?rtEaY;#djPMkp5TPugDxof+IiUlgJE1?}6T)c1WWqec
z3c^OhZo+ZG1;TA25+X(-E+Qc!1tJY1BO)k~8<9UzFi{Lq22lyo2cmAG38EFEePU|j
zlf(kV^2D0Nro@iKUc?WHqlwdqi-|uH_YzMLZ<3IZ93$Z+ks;9_F(Yvz@g)f+i6hA;
zc}LPoGD)&QN=nK?DnP18s!M81iXnYS`jRwHGIKH{*L8>)sYU;Dp
z7pTptG1Q^dnbh^vqtriW7-@uQG->Q<0%&4sN@%)hmT1Xo&(NySTGRT_M$;D2w$m=q
zk<*=}Q>C+|^QViYE2rzH+n{Hp7o*puN6-h;XVHJ6|HeSdaF#)h!JgqhLkdGZ!z3di
zBM+l0Bb4zTV=CiE#wjKeCSE2@CMTvKrd*~rrWIxeW=Upa=9|p1%+<`}#|V#|J*Iig
z3cHeWXs77b`ExRc31Y7?Dgym
z9LG2=a5!;1$z
z&wk@Q!K=yZ!<)@Je2)5@@;SG2$>)0bNcd#=ocZGTI`|3rrTA~~$MUxe5C}*Mzy;z2
zIt7UZLQvdiWOrJ
zyCQa1tU_#6oL?L&9xL7>K`n7vB0!={;=81PBup}1azKhvN?R&W>b=ySw2ZX7be{CA
z%xRhHGOuL%Wtn94WP@d!OX<2&qSCnXDP>#bWaTdxcrMsqNV_nj!l&Y-lB2S8QS_qw#o~)ws`9FS
zs_!llUQ)mG`@O#haCqXDCVjX{>drr|}yFhi`-IU^6F_r|owmd2UJTPBxGB230jMNIuno6T6w
z;AUm!q~^xvY33UiY8FuzQ|rr!8k)=XB=-7ZaC!1R3Hwq8!P91fz1HI8ZlHovs3|4_(LI-_HMi08haEfT`Q+w=?cg+;P6sdRO#r#NG9KCig1tv){jcfAWF)gY1Vi
z58WU32Py<6JR*7of7JF^;_=JJ`%mnjd=3%~iVoThh6aBQ5es<{auDhe+7>1q7XOsw
zDe`GwxN>+#1bu{0#AKv)WXUtGXHTB3N7+Puik6H{cuw)$E6zTyEB-=!UIKeUPy#Lyo;Z-Co>Y>2HaR+lB*imjI@LI}@wM#h
z%rw@tptQYoWcql9e#VDPnas?rlUZTe1lb!|2F-&xb8+*Q|osk@;^v!}UNr?<1u
zsBfU(vVVNQe&E}n%i#AR&!HXc?P22KCnIzt(W56vlgIeR^2epet0yi^w0tr6f}Mm;
z&VNOJ-JQBWO+6hw!#R`rP5fKc?B&^xIg7cedDr=!g@=pui?5c>Exld7u-vj@x-#|M
z{rkac@EXfn`nu%$`whK~(M`nW&eoG3EI%@~Ww#q~Cb*d$uU*pJ7khkr75iHI!v_fP
z)zQDBGG74a0!LAqk76GGM`wb+55ix^Z#nTXhzWiP{!`)rAC(z$l|Y6N0){dEJ1Vm}
z7?l~E)&e91U}WK62Pqi|F%dZ-1sI(gjLHm<5Q6pp5`rQ^QUWpvIY2>42M|CA!MMzX
zc#8-~$UPun#AbS829i^xjNAa37?X-P4>S3-i^ptFOB~mCyK}-W{ETW+!OB@lcM6ue
zPAT3A1L?cpBa$x}qSY?Ts6)>g8Jn;czVG_7YJU$Cc^{TiRNpJtH&gZE;CyS$V~Wj}47YpFa2W_Vo`8
z4t<@Pp7}OAx4yBt^-o{W{)*hVIHIRufXcCmfw{uk`cmG8(5P1ZI-gW;XVJ>%V!>IN
zno(V{Q|an~DxqzuPGzNU+3qF8l!z6YmF&oM)BQ>IxagUOty6~)hKbAO+U#>ev#
zzoCXUDalE7?0)_VMaz{zcxq_uIi4q)R?xKkM@)@&WSopdF#K0U(y{^{ZKu}ud+_MSC{KS7Z%S((WfDj+B#i8a2*TybN<
z_{Ph5x0g@kZ|Z$6xp92A?78jw1^)!SU7yMau4KHcl3>>u`0Qx_&p_~ZMaK0q2SehQcQbHBbie^%
z84FoTeLxhc()UjA0zrBz!eJllYS=@l@wfQ=h-V+p7pWoi+B`+K1pI@Ny7pMMW1&e!!jpB(e<+8&SYSM+Yhjf}*R*zn-q6D^)S!Gp)!
zuc^m;?zx!La3=pT+^K-9K=IY3Tm?d$L-5+N4&n>K_;ah<73b5*xBcj~EpNp=3s6rR
z8XBq?ovOMLkQBUkzbuJUi1e$v9(>b*mjPqnmvZ9t)2f$EjHs}tE1_I>tlTWx)VOWyn`MP&ys<>j}ANPKGOv%GwB(_`UvXu(k;j9pNhVv
z-PN$+5p)P!5+Oo%zX>iYwAdGr{TA>r+hzd1Tj8#G`UNe6e*H}SDk0|^kJP~S+L@5u
z1||PZj;)Wk7>BLuzspR7c8$Dfi^Q5~m!GttET~lVbU4K_7q;B*XkeeUWn;WtT_2p}
zlv`c0LL&b|EWG(-w}8;qjHfSB2AAa~fI*a}_wp5EqZ)2Hay4UHx?CeL%Oe4fjq
z@{m$9@SftRc539v4SwR7BGPdHoG6JS*7=gR&sO0(>0yvJU+>|*aFrLP8M41IF`bdJ
z&l_x@d2gUH0aD^wBb{fr*7Cg=U4M#!TTB)m=^
z@rx{jpUKX}zMw9SYt+}G^4FY+zR{(4P4!kl>Apa20ZNHoVcaL(Ybp4nf*$oOhp*SP
zTdZ#YbW5he>c>D<$l82+#
zD0$1)jIqn&W6bmHJ6p*XF6%RmnA
zj2&vX-ndm!|nDP4!RHu1L%6s_L
zbIE!)rPQ0Vm74>^gbSCo$5w1yP)m8un3|Qm?Z#e(N63ZCXpzAH7O#?yj~fTT4fW@r
z7enWh8|>h&%*;K575q)#E3+bxM`R?&@MVUm@rj>Pb)S0FHHsqWwUWx@ckdxR^T2~n
z>_M;P*OT59uL=j`gq-KX#58nXEe
z-A1;qDZlaQ3rj3y<8+u*67xV^AD4dEy|6SfB-vxJCN*TShL}O$9LV$~iQ(g)dvgoejTu9UGfJ+cf35gk-N*)hyqlnIB_XF;Zi_
zSfoud)!v(Dmqpg8xz_MqR%OS9$&#nq*Re#M&~l+2?JOSi_FB`z17}N~f^6C-$Vn1$
zfuZW=;WM$brM@@LhCDcCMo&1mA((w3{Wehqjh5lK%JVOKp8P(Y{VdgCMdJo%)J|ez
z9U`6jTa2Q03o{~7dXu)9q8eHau!?Mkch>uL%Dv9TeI|ZSWpfFIb*ZE-e)VR(eZGQ`
z15=5lCuj9=Y!UKGZet>zN^)C1PjlO8Ah@Yc6lYE$HV|9N|?=gx}cHE!V!S
zO1ODgkjiD|weGugwld%q%B0UD{rc|3A!hH-ibWw!S~WQ1NGJBmyNmK!
zRHu?1!{ErGM>CL_)+F
zGVj&a_AVMbu@RA1PhUbf12-5=n@%iF+*9rGRz9T@vy_6hn8n^U!(=5Wcl+^@hPk$>
zsT;?2Dz{8d_PbqMln+MTShyvGhB`l)_-gfeu18%Z&Ax|Q=}zdC{!fnximB6+*|AZm+z5%1I)OXp
zAGyOtTJqxiBy&wpQ^50llrcN`r^K5LVh8-5v!ve`Jtr0=%U-7~sLv;4c%1%eC|r-m
z#JosUMg;}c77!bIKbQ?4CcytFPVsu7ye`V5%ft;U3
zqAcwr_oLiAAtPpryD*YX&hF9q<8dFZ?|$N(Ak4qn>DsTl*7(E6tlMC3flu-DgOsO?
zO!*q84fZP=Rx^+9-dn1JFq`r4e0{e*&eioWC2`Gry{~OSaEVc>JOdqRFa3()V{r3z
zFXZl!k*n_cFBt}E93Abpd;;*?PU%C7-Cp@F&WFE
zy)#z+${*&s<4L7+73R*uS&%t&Ge#=9u%yUE{C%;M2%!S6#{|w}+w}l2$-nZ9PiUC%
zdOwl<_O0E_hB%#!v2dLzV`>|h3E65S3T-!!q5L=V1R$l-j@C2IXeotB&qem+
za_UlT4uTYQBc7~wFi|a<8c)*!0I5Aa@*40{Qp1T;qogqt9
zEEe-r>^6z6DMMocfM+CEtNS+mjK7SMc@5fgo1rz`UGqp6T*nc26AZ}3gs4&Z61a<;x7t?y(8
zti-5ae-K~R`~2$np7ggAa30+RZRO(%1_EVoVnrMfw-#ZS1(?+y1?@>XY(=vkXNKWoOM#G)Q21##X#QL@7~w;QFj%<2p~&6mEg
zkC_PGPLPM@YVHdM-?6tcJl&CPm)aqmRTQ)7N~q2BYMsDqwtd6vlTBD$(BNLW$@f_J
zCdua9=O=A5Lu|NwftR!KMHyJ-_Ydugq)0{sQSB8a7>imVW~UA{MPu~4&N(T8)8EpX
zRhjh?ADm6$Vw{;VKj|08uqJq1xebBor(XIE@H_j_fY
zzko-&$=1@3dEKC$z{xF>h1S@x_gjum_PAz|L3WAKm37n53h+LXu31V;ZB_60YYsHO
zRm{)xmH&G&bC_C$248uodrRx_B%jl3IH5Pq6k~WQv?5yWh9mWk
zfnrSS4+c82($k#srP~z+SG(VHE+aY~uv?!sojYq(f12rOtAWWig8?H$!}Vu9xLX?@
z27Sfn4SU>vDl4s*4;f9P+e+%{Q!`yomPw=tv%zu_+7;7
z+5%14H%sA_AL*-{6+V&ZX{XA-x6*BM!=^FS+bRziSjomXL*^9ABc8BY!gK@;VXc^A
zisBvu*!TRx(mtxQQhUZsnUa@Di;KNYCQ#hewAva3{%H{uJuwVUeBpC`>gnc%o)5*J
zDAg^h=u(+3SYq2k6WH!2xk#OSW`TzE5Ady)Q{a;kkupCKJyCx3!7=#tRPzhi_V*o%yt|S0A05K$@^~RoE`s
zo0BvCy{4KKhYd5=3XHp><3=d|^GJ=S#~Du5J`(&8KFchAPj&9rJHn~e$qy^Dud)qy
zB^%RmVY?<5?+kk{K97IDd3N|#v^cV2*i?JDP{#M`1dH~Rq~WK?rtZ41OpVpYO3ufb
z!moW4l5f^jKgoEas+g?R&?sC|{7LAzpIbuwOz(q=FInUB4!CA_19ajJfivnYf%fm5gCoirt9={Dz&S{-%*xs%VL6lUBOIXbi3
z?Ip03Zg%dm?a1XPQ}>oPsU7%TLM|`Qw@6)9ratC~n$8v%G7%ORMC(-xbRPiJ>8t0(
z2%9Z>Up9|;-RFu^U(t)Wa6;0>K&(S
z&rL-g6O<>%PJKUuJ^k5ymC{sZQgZ!bTz`?coc!#pc$rl#wQ${tH+8M9jn>`t4@L(-
zE!q{D^rYlUCch?wT3mRQS^jyAw2Cu^4LR!2*EA8t+}C5?{%~9$rnZmlxH3I%abofF
zdDm-?>>x|V@3>;hdaum=corwg&J?<`Q1fk8Cv!n3ZD1rMGAzB+Uq`99dBbyjI0Dt;
z-!zgPb>;k$PNmz|?{uvtzP!9N{HIe}ujzatv(J7QF9r`Q+=m(Nb-J&JhR_?+NjV!y
zoh~XMh>(^nfLc#kK3Ok<+o4V|P`mU-yzSE90+=~Y8@0HooudCDWG1lM
zUq0=mugOQPYwB07nh-zeeY;#@Nt6?0cq)r<_KXHs2Lmz736s8Oq)EZg#WWd4KAQ8T
zQ0PVFQmZo%yVkF+v71`2@2iI|QB)}IeaC*?_ma@6+Kd*jWLIA`$>5VI5h*CyHI*N!
z?>{lxyeM4Re!X%HP^>lt+W8*R7vbdNTmXx$C^k5L{;GZ(~)YvW~JrDcLNFgP_qejRs
zBXI~@Pe;=CYQnQurM|Z{xUC_X)v3Wp4jPeoi>tqhwyArQ7TbL_xawwC!gs%mb7SF(
zz9g&IJ-;&feZTqv$vBtDMcX&iSV==R6TYya9b}N(l6LP??4S$6!k%kb(x^AT3jW$0
z?zuy8Bm7oZ`>C*d8Ziz6Mu^iCcZ*Lz@93e2Wep@Vvh*iSFX*T_-Q>Ks8K&CU9C&fF
zJu4Z}s`da|nc{oRWn3(ZvKqc6MC?Je=lkH3QNKaI<7zo#G0Mk3XUsREq=?<9mWn(!
zGv@ef(jR`TvJQ{P2(J2s>8^1wPi}iSTql9stb+e-%LkLlwj-desa@gOOM}I_8hf(S
zA{;ZlNL?4G*Gfwt4vjKL#Rj;mv7h~t(KuPMY(4FDNmBBrOR-Dm<-sS9;;GOVVK3(O
zzEla=TuUfzp4pM_y?HygzAH{*=}CutW5IW}Y)YF~Lpw75y)%_s&dYhdW9?KFM@#t;%kLjHTS2txbumt?axFWkyG_YO?)tN4+}tWL06L#bA3?w#lKnXWQ;cT=
zCsFxS*MXt^r_ZA&*8R^T(DlAUV{RVG#%?ac&+VzR84Aq4-=zNlK)5dUsylnB`-gC3
zHw_$EY^Lkk866c^I2yZg#gM3JTB^Q-9Zeglq*o|XBObj^#-vd^Oe>m-5`dfT`{Q!d|Saw%y)+E!Vq0Yi?Wy$HeRkXWf{*7E1|JupaDlUF$e
zsa6UBzy*T*I*1_T64!!VUN){kpuolmAd*2O;+ZYkUD?(+s_w$Y
zZoI}9XKwx0ChR?%^4qL7tQ(G>HPw^l^R?7C+}=lZ;QIa=>O8#pT6$Re{{S;xjoZ}h
z)y5cwrEO7MG#Yg`ZA!n01!|qxp`}4B@UaLgcy28sNR~iA0<;BmA120p@&NdNEyJfT
z<<0OQcE`x>*XeEJ^2Z;Y+qq08TjuXuZV!&LVRvOLbX}R2+c-RY*=+WGamTRd+lieR
znZJ(V>P8bkh^vWXkIx^lEyc`lz-z$zZaSdE7m3d2U*r=S6_eWAUHDsq(u=WMpT?b>7dC
z7-W`6r2hbg1#E4hC(Tcb
z8zZUqA7A1z_+O0GX;ZhhmIDp9@mZnT{ppd!Zdqz+@RZO~=0AY#ouegdLLjcFcXntI
zB-bD?+h==Ojnt}4$?$?bYAS1r14Bw?pPxx?XvuiRRPkT(
zkDtqd`+82u(Gu|rsp7xoU!SPpen+P|YM3hFN{VR~Sf2J}xFM94bafy!az?<0RsofP
z1Oh#{tgZtosOjW&bquDXtp4rQy7#|z?yHNiswBgIGmeW|aAJdc{9EnHER!ut#I;lH
zUCoHdPzhGR$0^j=kOLn27sqzi~03B|hfYGV*AMxSQ^$J)p3S4PAhMi+c
z7GTOj1xPj^@JF&CUoMRsO(^uC=_ONLjmH+Gqp7CJ!8ml6ZNyGSMq3imWBdtJw55;y
zqf}{uiS)Ey+NeNP2r5Ux$MRk@{{TwezLdvJ{SD5NV}zJI!%;x{3lKkN+4h#7mNfMn
zpW`2M?fOh^L9tmqkyjMdn}V*F3zWsJ9c30mcvczbs>xPSMN3BP@U&)M66uAc3;=cy
z8N}k&2ay1yDWG)7JP9O>aBP9_k~-8-#)TN&hKL`913L!5mTH-niPg0rr+6ZD8tNEG&i?-ZheY
zz^hM%2DUgJb$QpvFEGq2t68(AK*mj
zUZ>3UE8RNxRkQreKbmL7pXGPc6@8E2d#;MNeeN7ibo9?f;wz#507#w9xiK{H{{XnG
zB_D>YVD`lwU0pim_XTumio`)EXO_055a@05dz+0lzz1
zUEjU(d8&M_)Y`cZ^l_E1+W8u7t$^uXn%uP+T6_jKV0C^rwi--UU^RH8X&$zs87d``
zSu0H|8LZEdsh$+pBb^ptg2{{Xq)n*zIRO4Pirw6N{rO`!PMB@twWNa+gV-Xyth{8q@&tH#aw0CaENjA^+}kX
z46f9|(8F2$GK~vlYim@~(#b~DJ{niA6Vt_gH%xWz`rRG36(3u5-fokxa2toG`p+Yu
z-F>Io)Ny4pG^vHk@7?p+7>W&pvpz?`0%P)9mkEiQB(25dX?!eZjzF3Ou%OO!{;y8G
zOq}DRPqO9MSpB8s?Ty>k^7l@DqXoEnf2jJ>EyFh1-WyMG)yA2PzqE5S^>vW#*|J-j
znxk`O*AgPm#gmDu7esOo6-`OSY1e`I3i|&5o2fg)GrDk;*($B4-`$7O{c~NGtlczH
z&$fF*KbY)1yuybIjE@(y5|<6Q_itv`(qZJJ!b7+-Ilw4#05MfJ=mp1ZTk`9~
z3hF&3y2o+RF4K!OhTWZ&TR}yN!_++LqFORZ44ED)9gC^)eUaX
z+MAEE`%kv_>|57wR77!~-j3JY6*#;Of3DjdJ}$bO2bY&Eh=(abADG2k6!T5*#MEF=
z4=?p``So5P^_RJDeS5Ta4_Ib#S?teXRAqa|XW(+%9dSE{vzKM=e6}p)sqk10?bf}6
ziif-8+_ac>pC6N;HG5kHOHW%#4R$=r)0!HRY6ti~;=jY!vBH?>(|i{GWW9;h{j=8_
zez(51&3D5-#NU;WZcGm1+q3p{7eruQj=GmK2U&Ji77sZ1Tn^mdRk+2@(uCh4=;Tt_tj07?zmPb_NtN3A@@PYU#Px9*ovyf8h(n^4uJq9}Z_7-GIn
zf!5?S*`0|~38SUk*y^n90vc?L%a5gko=Tc>VyJi)l@<)FkV>ZSAM7#uNI~W+z3>tp
zQCT;MQ&z8KK1=wI<_D=g5AE%@Q#&he%$AI55V0-+$PKG8gTu{-@Q#W`&B5&2pXLkN
zG?JqtRs1IES@I&M$i|`5yZaepm107$h|!TFSmQ-h;9BI8=FttD(e6ocmGG2}V^v#P
z)KZ_rS`GvG^=;5?GQ=IMW>+A=X%sk-pg9n}-poD=jDS
zlb6LO<+S3m63X<>-%s0?CQrw;iMHD4kN1A$V@^6j4ujUQu_aIYWh2ORMEkzs6p|aQ
zrF8*H=_C1&K_8V5SleZ8h&4$yV&y56M;Z)9XD1z8#X${IEiP7~NKCin#YE=y#XQD>^m
zX0a^l(vou#)1DX&3rAT+3?iauAyrZASc`IfkzDM%ebnSTHLc5Jul9fSP1G$<^je;M
z9@+CODm*oYDU?tRQIdb&)rp|v+&WCjv9~n>R94H8&VB7`qD4pdG}RK#!x~yBW~D%+
zqK$LN!-o#-byfCVKPpcPGsAS<#(=Wazoj%DA2KijC!@$YlWVzH<2KOvXevmk3*=ab
z9()u7nuQ!sO#72#NtmKI?c=nu8_FjO=Bcm3Ve=H9Y|%6mP|J_WP}9#>OEo)`V=tUa
z-m*Ucp66lRt!7CY*T+?%)g36LdMOJaZ2
zt$ct@Be&*h3*~R}k;iVW-n*0H3>`n!m<`WBnEvAFE%CEP4;!4Qq@bwAV>cIEZfZI_
zzCUZ1im~Odpq_x!&pbfH%@os96Dtko&J>#0acwoz4fFC71JyD01X1puvBK=%
zkp17-6qH?K5{{Vt?
z6_gvxvO50&zdFYahl@9h-u;8tw7tKV$(%KHG~0`8WViMQ8P^j-n#V^cLJXQr=~ecB`PpMQH0rr;yY%
zsRubKGAXE$KyG?R`S^5gb|wlA?CSpQ>5j_BVrH9kt_!AS-`ycqQA34`HJ997ali06
z3>JGWwVe*!3cnr>;67
zn+4uk3bkl^v0qHoeV@yuKVbg=GVh4p83*@+ygos6UexM6!0i?TxM=%xWp53glFvH3
zWOf#Qn{Cw1oZGvul7=UiotB!j6IV|WLs<<`N@sFN{7JM$Gc;-l9iVoo;!Q;=YDxL<
z^6Io@0JOe&s2+Y;p|AR>){7q;_jVUYP2=&B)b8qS*V(&Zgs}&Cqrp0|~eBn>T&p`yX?!U~FaGr*mcG?HMvN(|z9S%XOybmX50h
zStsy!OgUWYg3x%?fKB~;r#lE^Ak1M^gT`6yPhoNX5y^h
zy9$DyqX)iruJY^5#_H>>%|$-c&TKf7u6G0Vz5}^ZZL?dKrKi&cH3r>=x@nv4@(2;6
zRB0nn80X}83fDeg>hkE*O%h6$rkapJ6$b@-PsLw`nV_c=h8?%uor~Tby|MQv+aHe`
zd#}D2ZycuMPPfMFZTlAd!tKqK{5x^taM^vsTy{><+*|7bj-I;M9)mHzd3N02#41=HS~~R;v@&@a;~(=`Q5k`-8D+YP)|ik%q3957Dcg
z%2Lr&)MPR8S7tK1ewgGZl8E|~$jZ(As32mz2rED-!@8cHzP&Dk!e0=YiK|ew8d)3`
zZER~u^)WgMza-DEZAxwi%%lZ(G-=fKoHG<;0hX0D8SF{{Qi9yq$to{ELQ=I
zsqJMfBx#+h+EkP9fGS2+ayv#?dIPQ~zDR#JZ-za4y0)GVd~{_u$jz78y@R*+J}SPJ
zoOXsYpf`Vb;Wk_}n}W8h_?{Z4FOZLO=5U!>R;y*Kr~B7$xmsA4ZTdV!R%%sSJVgPZ
z`*>2LpvN_WZDx>63}Se(LI`F;%rn3pL8yDGYIu&fDf##C^KSg;>2=vVpRabEUvBl@
z=Ai9=jeGBSQDOHjF2nAPvy`CRSj=`v(AHzJL#?|)TteVCRS5q8C9TERGqgfjA(0N#
zLbX=s91aLH^8%oX(}zF;HDgYC%Y^yI*Et`B8*k??c4BL~>upQ1WXX0;4nskatJ=M#
zg57yOx!%1ew8nC`3tzi;bq8!=>o7Qa7~+njD^wy_W4wTS@rVa1v#l$RHO~$LoGDz;
z9=r+C3odD&^7W{n^E>`%{lW99;~jo8KLWHGW4AMY+4X
zcw?)v*j>$w*|kDgF`G()8m+sI$;VNUs;JA<($d9B=!8PuvT9-JS^{{`;=gYXO7zik
z<0?X*+DAm=CAO(H9>v}{eWyW!-Z*?F!#N(q-*30}^==1e=Wsn)E<(Bg0Eq6HXb#(_
z+!Py%vVE^tM~Ip0D%mmlR3C+{Etmk)B-8~uk}~?bxq$FDED7x
zc8=2P+`i|NXHaMH8Cq-}(A0@T6zE66!4%?;N+mfoWF>usmT`{pu
z6v;shlg%71=$YIj5x{pERGQ$NpTtNN_2JbDDwY+cP6wx$;pja-KCLqy@v~{}-lfj%
zDs8p0_VL2ta(jy>ym!t{r*h_dGOuU$hF7jCal4x(B^+^Nw@%>Rl@&BQs-q22M_UFl
zDC5P%l<`Vsv~n24G6u@(t#~(g!^h{6Gs2yDl@6t-$rRy?asL1}Rgc(vPc_xs#;dDw
z7$(@6d{0g7t@F5co952%l;$&7RHfZJgQ@r4IWiRuhTc1RS|+8Vc`DZ)&rwL#Q2m;(
zyQ7HNnii#3SJ_@EQNZ~RA~Ti0>T
zf{%9RdRJ)D*JM(keRcli%HnDJW2dH@YU1khneM>YSQX0T_60|ov6OLTtD%lW@kYmT
zsyBrqR+1A%rfN+HubHk#`frtb@-Z6Gh^kXR;6EYj_I&z38}F_tzC+OCwwCkT`TTCs
z+54AlY)!M++dC1s@!MCcPCISnH{Sd0j;!pR#wa&eU;hAi@fDQySwoPiTuo(GM^!~N
zNmyWoH5X6}%mSKVQisfnkwQHBbTB^(>Zq^V>Cs)n?2hU9^VjwD7>XwD&5wqgu%y85
z&7V_+z}4T+~Bbf>7zHZq{s(^TT4){>33Th~}Y
z0G%PgP;{180J4T!Hm3r=$6nydwH*hq?a|~l1OimliqNSvG&rKxhw#%BCp`rfd2HWo
zb|=N1i$zb3&Tbvk-hEj<)BY*E=`tOEU5T&U*bV;xA;#gdGSlEUPSkzBf)o(aS7fUr
z6!CJY{{ZP>o7p%t*;yP{UT#g#*L|P0I?H_Qp2Y1r
zw~l9dZvDf&YIZ!B?ajL7-xSy!UMXre`*>^CJW}}UDW#fPe`Hg`ZzZwt(5zt#D}^fW
zQcX%^vkEO&;-cY!$4jD;bep`XV!#zGs4V~#)qn>c?iD!%bZx(upY!{RU~HY6@t@~5
zkCFsFIWKYiVjWm&pu90*bP$YqsC1r^!S8>ZYWgo*GI;j=q{b
zBB$7Ee%q|$zn13GM_YMN7hcyWT?uBb0RYIY+H#W}Q!PCxO*^YvnjR}!5soLKxx|r@<;eio)}VP(n8%+G
ze$I|QC*zND;Pw_Xz2)o7_sH#m+Bkf+5={5UItWqn11=
z0H08N!TFCf)2`a=JU?_|a`?T=w>o3vx^5lEvEZuQ2XFO;M*+Pyfv?(hRGkr=%V07S
zCf(dL*@}jWw=R@^2gpSu;!xJpjaAf+2rH(fdT{jr0B5gIicpjLc>48^bnG0a-^cBW
zyhItzsfoiSZW5}yv8fX$*i&Y3-K&s`3%46w;q_>($My1(XGyP-WRgp
zPseV%+Zf@F*n7UKXh|Li6Gsj*J;1T!w%B+uG}(uewh3ws6*UFLBpQTTSBIyk{8tL+
zs-77>U$>-8*)7wz@pW_?K2MOTfY{k7wk1X@eqpOJTcSkU*_?%LZ#A~|-uBBu2W4Yw
zcGgrwkIBdJ6EkS`-iP*cZ~HF+rms|TyH$y+uS%~SCWq<
zMHNoW##0z}?7mYBvYN#(m;l}%ipd+JZHaqRCAs?p
z<8OX$sHteS_BBpVF!`pdsu5LJ>#w49);Lv`NYpyDDg_82Y1Bna7@ep`7{R
zPi$@qzV_HyIOw;)!#Bnr%}VX#yx@Z)lWctfsC;&M8hm`&I#ZHQxqubi+CzNOO>yGK
z0)wTL0C?~Uz?1v}v}FJhT#lB*e)i!K-BIOZ+zG(>mf$~&0)(0xVD)pG5BZaPnd^Po
zkn2B^JwMd@%R8|#_#MO9wcSaL*&SorwS9NGqVr&T2d}Za`*mjeXK-cl@DmQF@~OxLQZ`NQ&CqrO*vFfQNEbzf*wb{}4C502YUsP_Tg_`K|!j}wle
z+SM6N(SVC*OG%0C)TV=X??F9lZDfv0ikpf#bgZ%v{8n#hUMr~FOQ_dgO?@lp{?yaV
zW1~t$>Wq>ZSBNC)Is0%v!Ua7#pYZm1>ia{x`xif!$kI`#^40lulfmw6&f46KwQ9Q3
zK7hkeVXLs)W|o>Q*t1n+cK$~qHqw~$)Yy7>rl_c?tFHnhyXqaX(q?1*s#2r3PLoP}
z@J^f%v?QA0CBOTXEI~${4Ue5i@}UB}38=+7|Iy!7a+%;rmuyNv;59a18z^Ics1*%H
z+AaAY8~#5&)R?XR01eRm)Q|92tyKR24^34W8KSEDx;!S}p{kO`q&7YpnhL~GVfSfA
zTQNzN)>%+_RDDCQr`t_slO#7$2lJ~C58F}v{{U}HG-NT7EJ%3zAGV%;glFv->O4J_
zw_a+B8KKU>m!gR#t;9#S^BD@tXk=osRJ547I_fs0oR37JT?goF*8-}H^;9a-4k1}d
z{{Rk0q2bb~l1UV_iQ!X@zS?~A#2+Fm4_Qw3hC;pwX(3rGVqA?~Wi49+^w&cMDz13g
z+SVrE{{XS}=hEJs{WTZVvi|^(o}Hzj!(5Wz(Nj;zoi*ycK2L6HeY^7e;CApi{kun!
z+&jm!`i8Ob%LYQGn;p3}a%KEgO^}uoNfffssWWR6*B
zi+xAg@;^SwO^To<>S_`AKrTV_#SkC0k49frGXDT#i5Na=xg+LHO@4Lh`j;JFG&(xq<>4pYE8d)kp
z;>M@>{{V))B6~kh_KE;aG_4emkq6~Yy&@r`iom@XmbJdn=Fpg!@A>rtL!~R1<)3>*Jf1+Fb#lA{yKZt(^K2Usv
z-TSq+O+Lfv{oFRzau_P=@(tMgn;j<7>dZD8l77AKYttSe~{hXwD*_Ho#ELX-AT1}pIYr1b6vIA8^7dc^6NgK>#gA(XJu`{DX*`V
zy0$vwR}ja^Nm1p>?g^sD!zEQb`Zd)}e2-QG*_~6>JEMJMHe{(T7ktx4yLY`Vz^wD-
z_cqYldu?dwHg+>NE>cz6*eYWt#;&6*TPA!7WCOX+UY!K?5XXrS=B}
zL$$XSBOjmN{{S9W8%Kr1Z`zu%*ZWs(?%MoT;K*UC=rbG1>#`YcvDrELsyu0`qr#-L
zwHRDwWO6Ju71c0OqH@B7Q#?HX0OI<0NhgOMhHc5db~KsVw(BfMN>=su+iB=F?N3}=k^e8yL=woco?c6M`g<}sT#ox5url-#?mGDW|;8`F4hIkz8k
z=XWCHzuc8>6A@2CO-W4>Q^ikMrH?*i$|O3z4B4u8N0o
zc2-Z~>^~do`-`wX<9th)q3evs(Ad>=+3mTQ%gI%NY=EbqAxlGzr-E<0H0B6X--xgI
z>rSd@eDl^mz~4Rdm)N_Hv8a0W&g1R;R@K@2A1kyse$B+L;@-P~sCHa*U73s9Im}Ap
zsj=f1l8+z1>y%(NokcX?V6sw}mVW>>Q#k(sSNeyaS|pA=D>3tYd(Ceix6fmCW?MO3
z2G`w9mc;JOt5MilbjZhx!_-vve(mk-eoq}sys?{qCrE3TIf}w%>guRrhI!?kDb^@`
zz#5vG@c#fmr`guQ`RAmTOSJm0ckd0O{*&|n03E6K21{}0B@5D&+tKbmw(R_mUUx3k7`iRz@|!W*crLf<+^*xvP1pH8)A;QS+skd@>h=$4q;*?*
zYzE_#ZrdRa*u_xPBRWeml%*69z#otV`sa>EukGR0nYCby^zGQaf41|xL#HzN)!I9M
z8HDUgyeDH*U@5mQJLOYqqkiz&9ewdPur>snGYz`79?_FLkzi{u6j`|Il~$50jFlA?
zERC^nu0wf>1Chp=9Dd%at5bv1e{lZ*EsCzw!uH*NYHi3jwjlLR&E0z^KZMs#Hn=2Vlg{8>k
zFgdDxcH+ZP?_4%AI{4zrQ&H5k#-Mn-XpZDJyFy5kDga|9qM4<0_G6(W+b`I*a(giE2PY+51`O~9GuRx1$g3&_=ev~1Xt}n8b^Nt@ZyvOxKUaO
z8lPwlQBRQTgGV`1CDNfaKcVVr*ii4t?yPU;!8(Z}~d1$r|JulZ=HV
z{{S!L`E=J)Raa9CGgZxBHZ@!fRy8CQb63^rZ8c&FsGj5@CIo9FN&C`U({D&?2!-Tx
z8Q`_mns5Pu75+ns$6Jct*vlrHc!ad?V!A+ILR61D5;DiNeEM#r#Z*$v^_2M>mNOwL
zltsqX2BM*f%Co~29YB_nqFG9hEZ#IS5oHR10+KrvjF*DqNTvRR9Uystq!l&uG!^oo
z>Di;Ul>~oGz6EM(2rNeeXmL-%xu=~^Q>Lxo5lFHc>^4+IAKTN4+-&&DqaUafRXr@v
zOC{8mAR_+&U$4D?yNKMMsfJ_%iWv-T_OmI{eJ}@1EuPw_QW)e~olQp!EBzXZk6iTA
zTV7r;+1<4~iwGdi0!NdBfpWBk3e^E|=~Hj^{@A!=nLyljqTzl)$JmFD*eXA7OKs+w
z*@(8fWUm?;erz~>rk~5ET55f-T<psiR=RA^0~SgZ@6-O{r2&EyzLK$5MqBS)xr6ADL
z6|Oom-tP9vq}#U}YiWLg(yCHYrCb`gu9ni(7_LHro~cXc*Ycyoc7yG$;qjjb(|;a2
zzZX?WN4fXjQ>!Gy%L3UB(IGv~R?^SdW!4=f~5aZPzSatR&gX
z6V5AxQC=DU05@83Z;iLr+jF=3fBho-cJKa@-Wy-#KWWrp`zPa_cVJ;*=`O|I-I2U9
zy=}5EopX}MCKqo}ZB(n0pC1O_l8Zf4SB&sa0zr8cOeVCP7qh!rREp4w8Xttyhy)Q@
z`TF!!u}utUF0I-&Q>LKfRZcw#2D~zS`Vjipzk5rivYpM>`*(cF@(&5!xlXAmyPIov
zPQv*vDQIX0b7{~+Uq`g*Qy-gZCVD!VsQ&7Lk>9dY+hi@8oxF<^DZyE|tV@t-pino#8{7!*+L6;!~^kw&vW~
z6vysLyzW;So5;&oxv`l_m9L7IAzfa6+bbf98d^$9coci`*@>iSN@)*Sc
zr96+VI$D#e!mu%Qv~o2Cp{UNIl1Lh=uUeYa04de!^~Uq-e$m+2?aj5fzfEUoM@@8F
z?#wpT>_x;iK67vMZ1sC)qZPF~HET1QOSm&rZHl}e*OmpXrrQ{5N$YY{v&UE=1xy(N
zhejTiA3sroJ$+9O9T}imgGiD_MwKRpgWx4d4V7jBiTo?v!iJp{YRsi~VfXK4?ESB~
zY5Mzl?OwI$?WMan-p$;-dAy;=v>jlSSbdk!+aqh@;ZD!&j>p;NiwgOShEk3^J$`bk
zwskI27${Da1Ry9$IUa{Rcu?oeVxK;gEK$r^B#@=rDz9rP!9hS3Xjzzcj^%2;qCm$+
zxA}2({^W=Gmvq+I`16J7E`{$u?$>hWaa%jH_TORlM$+06O5kJB`Xwk3yhqa
zaIG*8mN9|p)xZS-U@CKtACRvP=h8Y*yLO*5fZUj0vt0U5LHu@$cdcH}q|T(dgu~%?
z#^R{VC4Md;x<25|UsSae`I^;;)l$I}(bWx=P)Miq{{UC}J$p)$4LTKj3*jGS?vLfe
z@-ye|Z*@;Y*ED&Zv(;TEfRAsu60qV8WLX+K
zwRR4@$a(~zPi+PQbN~W8{{YqU`So)c@W}#)%c7q*MP#V@k-H+W(qQ{ph!U
zhNhAonKgFb!sEM(C%195H5lq#9O9=DyCbQObHOe)uM?D{SfZwLTjUBMW{*=44RApf
z9=?BVYvoLJNmX3wA8-1<)t;0ayX6%%2Ey5UW3F-=S1D8SH>P0g&fLP{ShmLN&E@^`
zsmkKEcH6GaJ
zZ;qS3O{?BmKZ#r4c2Vv+2ka>}hS2P8(XQMhWaqX$3S=_G#`~epV%wq)u_GgzK#K_>tkJsM_^7!JJxL
zJhU~H5y4RqaX#21k~raK0Rp)#O1_Y_qSk>+d95pg38Cn!^HNCiD%UCitrn#5K4cGG
z9(;Nt+xOxobFqGYd{Wq78@k_l%epIik8pgE-2HEd$KiVWA%Tl&ZR#Dv4%yhm=Uz2x@M2DJ_H=PE`I?>Oym5F<{jf68b~e_`kzYQJk52a=$$yNSGoHWXI_5{_CVEV%$y<+RF(H{NB;PCkU
z$zMT|-Pt{|k!@_&PcMkhq?qW|vKUJ5?X7mnAbUv}p^=?*zLHXaQAqXk4U~F4bZ;HW*1IomZH@l`2U}3*I;yiXviIHtZ(-89YPu?F?X6h`-j;{T;p451`R(oZ
zsD7ojCE|@bsu&$0c9k8}01^nOL8vY|YB^-Elfo2ha%)NvN|TUyRPgfDXirxI*8c#@
zui&@yBF5#uV02f`&z4zD)3|8y^?9w?u_=B$b?#GYZp{AIqt0O~`-iD9y$y!jS={|j
zBQsA|<*lSze1LYSrK&R-C-xVSZY>x`BIz^)a3F>i1Q19djF0owba19Al(L$N=j|9E
z{KpQfU%kJUf6kAMnGMIfq`~ig?AVy9tOi3n@;l?Nb5ril*2Z=J0AJ^_JCkXL>uko*
zJ->m??fL7cuScV$&(hN51r0cD)GTX~|
z?d{XNwtmX${Dpqq+xQ$*n;Ww$qQPy<-gk0mrKiJVYVrR7#$>@m1tmiL#Vstd>r+*T
zTvN|D{Qm&r`uBg~QODMq`$zh#(2J45P{R9qlnuzdpjG8uf*=0HX93Dm%(j{3b|@_=h6loeP-Ro<#WQjZQ%Cy>c>*x@|b#V$yqCYaxjomKs=4*150YBZ$R&g)_&d
zXSPOUsAeG48t|u|rynob(%-Fn{{U`dHm2C^ewgd6#j>`x3u9$AhRn-s`n=T)Sq`qx
zZi*eNh2NQ;w0USd3w38{_I+MTd|pjOJtotRmP*PAtHnihRRX=i7V#0HSwaS9L3P4ic-Vw)WfJd#4$n
z>pr>KbiW`s#&3N+cJ{B?+pntkp4p2(m-zdYuCK{a<%z=8?drgl%TrdAivdq&5xflr
zvo%JSVWf8wO>znYr1^>fMQhuW(g%)Zl3fQ=5He1YOjHnlFV3Uw=?zQV8JW7
zpH(e2O8u*XcQM5jTG}>o-9ie+ycU@4YS8L5$uyzGS{2sPHjv~srGPadyJ|YpFN6AtcIS!J
z!h~jo{v+gS3C1(iN5_r9@|R%tA7RzvzDsZF72F>lK1bB1{mNE#cH@gRmFygS7RlZi
zO}UuQWO93AD!6g<)X+}&r%7=8f{sX;;D#wCMw@BdWVJyopP;g9LKt{u!J`bZs;c0s
z;aaPKo}3rgD={d)s8>r0cLk;n1_?O?@f199*Zc?v|I~%pPL`>C>=*I!B)&h8*=VB5yY`R
zZPtSyeg)E+vFK^Sk!jC`tG{=@`-KDG6-fkjb+JJQA)t-(;kWpb42&`#>px${{R~irjKnJATGQcz1RNTko@GPBp1+e~p)zBd(+MFU*aP~*PY{Ueu#
zStNA)mRm8Z?gdYVmXSvOMw*HH8TEc*fRD31Q5=@==ER@K{Kxr0$oY))ME-hXF?&L{
z;rD1IH6<+f<*w7A+QW2BV?vp`tbdk&c9Q2k(a44)TG13(=Oitye|JlXoz+QFNv2hN
z@#$Z;sygXMV#Lr_KP>#ZCqK)gIkVp#>#3y7=VFU*cHe02x_uR~pEWKoIUPJ^NT;Qc
z#|zl9M0izy=zX4ATrbkZrrstRX_fh(D$}Byg#Bqj;a|)4bay4%we*q5nEduqu8H}R
z3z1wkO&|kL`~i8fCEz}jXq}82j~+kNJj{ZjZ6j!p6eY*|$<%cJ05R!KkhBE>5rEMi
zD0qLhK3`@>*~g{|{GCqP#^!T5J@)v_4g(ckna>@=ip0TDwy{{sX{&M>S!z$(r1(sI
z94{oK`IttRS(@5Tqqu=vO4?O_gu4b`vbEGdKd_!1QYT>A5s4mZ-xB=C@h|N@jCghP
zVE$v@&Y!funx|_Xr{9X3L-}NFUeay%w0fgr%SE$0ljLMwd$ua~M!>*!pJHV4^=BWs
zcU<3TT{bfTPfJ6$V%#)OAg##I)737?1&Px^>Hcc}0GIjnsIlO@dMFv)ky}HI{{TrF
zdt_m{$6{`|_S_wH*P9QzQw7*r-L;;{K|`=AaNVDi+gWYT*co-)^!3YIx->yUO}26K
z{g$dvC1l>H&s7=4bJ5W1+70C%FDFITy*t<4Yl_>In~O2n5bs}=+d3@2Z)f%uNx*Im
z`?%;6VeY^5p-Ydh$Wr4e@bt4);HQ%mn5cm@6HN6q&!<{AJ;yyKpJ`&DH2q(?@?9g_
zJ8v6NSGY6#rh~dShF)oV3oBKOr``K|YGJY+dArkb@5~Nnff8EC{`!u#vIRKrGSCTN
zY@)71VxFJs$5#$m{51anS00q`X7KwCx`urBWA)8NUfRdu_in}MUa84dZaRI-lie^=
zVjFI4iW*D>Uuxj88xsXvSxU57SY@xNkrry%mMW@k8ldv)#Gg)pVY;`j*QLVtj>WF)
zJ->==(^Hg!n|5RSldHS057zldY;6_~a&A3~h1yiRM`lTt5dHL6sxgwIiR$YwGEVL9
zbOaDj`n`Ite-X#}zn?=U#jV=V@5uWTa%@Znz{}5q&20*LdM}id`Sgq4
zGHkj&;Om(-eHP1~c~RiEhW6aJ?yJ`=eL_u)%WZzT!esG%^MRniZjHsds_JX7TT=&B
zByrNy(u#@c1w}+m+XT{-r~0$Q{GEEBj_ePgMxz;l!|%)`WqlU(`1!Iixp?8)yR&cQ
zJ4dv0J6EiCRB>f#5-Luz*qeI?xN=+ZzT!$+Y`raQ7Q&~jmZ=_ThvDdb_A$>VEj$nQqO`_cvDLb9)c4ch<|!L?zkr
zQf&i80@|RzP<7>VyJ26q=jIWpA~53(;s0RYvum0^7U+j
zGmf7zpC>ap-OrHQo%7dJdn&TKv~XFxmRokwZ%H<#C&|iP$F#N<+3Z}GS>-z?2icoD
zw)%H<;VW^OytXqP7Tk_(taTK$6%y1-Jaq7s57Ra6{$FnbJuB6#>(Pt&uipCya{TA+
zycJeU9fqm-ONyb$^p#x($=)4hx4XM_^qnnW-202HGg;bbaUFq`#cbT5!qzn
zBIJWp&*6jQ?%|3kQnHd09FsYc=1HQl{Qm%7W%5HVi3*V4ZV%)~6ZVdcQOdkjYUj`V
z{aqhkZn&!Puw(Kt%S9|4it_r%vuR?IMe)fz?jz{{S)2i!xJ4Q}$w!9ju8Gs~VN!)<2|EkE@gEKTdvybhh?h
zBu=*JLev2bLl01R06!7o_VDPwHknnwP=W?Y{6F+D{3DO~Fuo#%r;@5j5$c^hWx*j*
zJL)k)r_&lUa>m-6{;$9V7go07X(U7%&!+%A6nPKkc%M$4Tl#PVlNxOXQG>Xp}TeAkr))VC|*j{{U6=Bk}D#@KQ$#K}|-VXP4~g#>VAL
zOCvOkLEL!f%(wvJ)+XlxuK&DgmK9mMyy(@eMcUc
zq=J!_YC{BW@+_K?R8@H)k;^z)(@Qie&CjS>{QGV(6S#^*?ln0Su5&}?E5|tV=|qTp
zGcE`e28V&BDma7b>*dlJ_TDEkG!=p=>GAaP3GuO0&dD8ROnQ(23PJV0Wa=Z8WR>aZ
z+W!D*g@&R`r~4k>TWDNrP*yN|Ks-;WtxX4z{QWvjBw;Fq4;YT`kp3UE{v+k^k3O>H
zDJpRP0B@eB%+DNnkpvadI>{U|;VLR3hNc}c$v>8+ouv-}(S1Wt_Pv#E8(qMf4bIN#
z{;DDsl-End%mXO`y~|xlX^IiR^kHLgrYW|`kQgNekolyl304ID7N(a62DRckeM%j|
z)Rj==a$#Yw72dmoiGgQ^#WyROMUMR;9^V4Cf=#stb
z5WnuEaw|v_6;i-k+J7H$h{joU##)S7Gyt^qTGu{
zn=dUFn+F2O;7GB`vdC7GD_L#RnxmM24h?8fokQ@GT5#aU6zDL)#P^Zmlt@WKit3rrbM+wz~4Js%%al0h8JrdU{T{+SqQ`rOQi~u54a%
zi*{D!@v&t0JSAko)6XHLhL(D@h#K2&>SJ%OG|~+lH6Rm0zz)`+IP)3#^whg>SrA!Q
zQ!piHC@KX)l4#0F9o|)@38zC6WH$~1Q@tk5ZR~$x=J46dE~o2i&8rse{s)-qefG2+
zN4c<>I4beGqp>KqL^IbcrnJWn8EfG)EQkE47_%b^D^)N_2Z&+*TvOMpS~DTmO8E34
zRINxV)Klb6oYub$bL-I*?=OxWPg~Rdv)ZSqb`+B3X!6*-m5|14Ebh?VnVjVnRY;S6
zXC$DH6^_V0a%u@AT(vc2UM?NWEYL`0q^e08y6AKV&z@=rm-6(d53{A~6KPq*K&Ui8
z7fCcE*0ck-)anF)odz#++K=lq=X6=5)$Zv-J{N;D#yPsv#
z!&STKw*LTJU^4kWp51+GmzH>UJatr2;%1(fnv2sDPV&DU%Z6Iep*5!fDT<2mG~w&h
zjcHR|Z>dO9N{1|6e8T?#W)-m}4F(1}uU?w@Awlu~0CsjpUV7?I>+9|BgUxNv2-~$A
z2OYX9E3&wFTPL`1l0Iscw+0%g0Ubn92+b`U$ux{4kz-J%P_walB%%0)X;OVDTnbXO
z;&=*l()f|V;YZ%J(@-e2Bq`QtbrmYaFv6&-XQSisH~FOEx(nu3W8{_zDKdSxn&@7|
z+8YCP_Qc|!srox9+j$Hna_0A-+8b$~e^JrV)8w*~%M@7H^I4p_#WSH-V*Qnrf=5M<
zv?w^PL8TAN6dB>rW0-Eu{X
zo9*q>Q@yta`|YYt>x}G1-Rrt$H57E)j|q;Fdi~qCDmJxl8VX!Q-@)*0hM}Ji3eu%6
znNDK2l&d^e?omca1c6^)TI2j31lmLd2a$Ci6*MR8=%`a~=(lZ8YWHMN?(CMr+EQbv
zFxgGfMW3q0&x6|iZ7wz~$Ccc8y8i&N!R?xU#>9ECl+jk2fRn%xr7Eb@k~fWEnn6W<
zT5IQ^=|8abbzscsxhqQkc^}KGG5%j48umBNZ<4zY<3D56<>~3@HhyQkzD=ziej_7Q
zQMPe3nEl6=*_eITv{t8W;ddu(=`m2r}eJ3Y0CqL@{0E+0L_E%g*uzMG4?r5VqcxM-
z`@WSaYO67uOk!zr7@E3@jN3(3je7AC&{fgb_|(uc%!(pUsZ@c8)(sG!BgaUlJB4(6ea={t7^{*CDI+kXR>+j-nJQ?7FV
z0BKi{ug7L+vov@up_0STO_!*xs>{_^)YOV-t7}$@MtVo2vDJcbJpTZ0Mg=Hy`+Boh
zf|>K^p8o(Z4fmDUo#B-0X{g_@aUI==!{El+*x7p8IqJ8MR#DgX&sXNMa_yfLWV?44
zzH!vB)y+usOAQjw6DJd~@a#n5KnM1j&
z^BaXT+1zw;q2Dr4WAUvWMO8tDVMo)$6cmUVB1BT;R5G19mm-KkCZrFFilkSflQX-5
z>=DZyJP0DW$Hj_JSA|I(TJQ3{gBPFvbG^fu#^SQ6jrjTS5jHrQd~B&+`CaF}Hm1k^
zDK^%m#?#d78jQ9t9W2>A6o#oWHRed6sFnd5s8^e3h~Hbrl?sr7!-*bxKih1c-l*vgY4MF>lVRX1Lwxw77oJZ%;
zt1>X7M%4Qc`DxaO-_1j!K1lp8?|PhnV{IH1AK$LH+x>C0dlO+~pDnTeKy_}~%Ftu6
z+q14~G8DAcJ6pUq^#(c?&f&6xY`)saM%B?tQ%zWpDfZud^Rprf%YpzRwFFj~rAm%J
z5TGN>68Ynd4RxaCzn==yzJ67vbI=2|etd79j;F=`Z*ekgY#!0SQ8ab)pSSxj9PK7HMT$L{L{$H*=2#WH7lzeD@yuQf%EHd
z&*fe4kK+{I2>vZ^x*oa6_3v_RJ-gVOAA9ePtL(kOu(#Dt?Ax8mzUg;f)$DBdR_k;ZrztVqN@5(lgrL`@KX?d+Qs%@$w;amKCie`q^GR2S|852-39s3I6~;R@28n;Oc~b
znHR#pn4bW1U2)u)Kau;#V_9<5?lCK4&#
z=&CBJPMVV7xRF7~1&&9l7|HuMa2{PzqFRqI1`ns@_VMC+X30ZEvupFaUkQWlJ7_b<(Ty`m{KEo@yrn^B$<$39p&JDns
z9lR*SjK-yxP+|Qgua^P9pHD84OKLQ#>tdjA284Zvo`0}(TmEW6)meS3)f-!EVsm{L
z*c0y!+rM{nOZ;`PB%<8gpS61{Z3?Zmo2IFvZL5k@qsA;W
z^sgJ6TZou8nDlDb#OW!)hv|YfWF0IBWCn_HPLN0>Q{4K1Bg&xh7;0cpz%$zVO|pSGzVRZ}sNkq^aJ&=#y?_Big$s_{DZNKJ?hU#s;?^x4SnPSBwo+
zmBq1HOo8NkJOB+kPz2N3@JiS;!+Ei(m}0yO3^otvBVW;
z_*fRHY*bS`GmpXrYA_F9|I^=x6(%=Kuu)P&j-Dbu>VQ+lOEe_hD?CvEvPAauNV<{7
z(4Kwx+`YjjNf^jDh9r^uf5XG3qmdq<3OM2q5&o|u!>50K>E6BX-Fv9jRFGD}V5m)L
zsa;4VWQs&Oqna5Mhl*(1m1Q7;|gS|qWHPiX`L{zK?~d=JRu
zs>JOSh_asAiZ}TWq51GXBaV-++{0Lr)zdhVp0YUWDdbN1&(d$6S5ar@G4l0(eQ_31cVyVB_85V6sNXfM9>0P0A}2fN|1)
z!O!AhTOnCf$0
z(zQHqOm|A2sKd;0{{UC*>frFZ2X1Z-?%o@Z7lYn;e!-KhXe;+8V|Je9&QV3RcBC|!
z3}(pe&drl>$xB?>4Chv0tEzE(cMBagRyk_1u*XXcD@{z52ln*duFwuM{;%~Oy^F2D
z$+{nPZTx=Yma9D_ZZUJ%jk4Go-)HTW#_!0xZVj=G$z$JcQdBNRmJP#=%gu~~d_@Id
z`^ccCS2pW@T?qLKdVZ?gTg!NDjhWYYOuupUrVA0j>LPrGOLA@9>6^>%OfEERZLx!^
zqQY(GmXjY1ECUHiJuMweM?7tY%La
ziQN0PuRD(I9@Wj`FjGOdW7<+@^0}-i*zZ0vvCd9<-M_tS==iD;UthM$F%<){zv}yb
z&aNFvq2th9+q<&~+#P4}=9dv2ZsN{$cIKkrn{tn_u%}^S`xkpwZC8hHbja&Yy2w{y
zHjiUuUma0Xg|Di~O-9&=p#Cpi8D@EED5Q~}^?$4U-Fby*YAevEf$u*4%;#d0a93>2
zkx{wp_RD9!HDx+qHM=(_Q16-yOtn>8hY??#+dF=;rwvI;$7yD=m5Y?3qNdCVaNovi
zqK;VV)HTm{t$OetWK?vN>we^?uI-N0-uY}c{n|T!1J}4NfTy2l?ibC$lI$+M&eivh
z=$|B*-n9GNw$`L-&+gRu7Q)fi?R*Y3tRAvRfYDq4Xn)mCy@CiM^61MxN0?@sIL9ih}6_t+BPcUJzxZM-*Q?o9n&)6ZbLN{0`>dm3EM9~Nn{80whmmN{vu
zvpBj+YFb93R;6hR5(&o;D^Ir{>hkK!qXUOS2ISbk5IYMc+*$6p$8Fu$)Yv|p%zw@sal*w_Ivh6hq-P;>?vg&r`PbC!@?Y)ump1T9SvKZUsC7wKX
zyuL&DhFxEhZ9erwM|#)WmXDw0$8(hv!rG8{;~1{g?)a1;2Av{SY1)VI36Do
zNT>tX=kgwBqbDz8prVsS>MA0qjpmw;vFN9$nlY=vN=lTDj2}wsTiWbJ$@UjESK82t
z86_fx)Ripm16P`I_Xh^ELSl4xe!whdq~$l6owr0(h$6
zie`qoY?TE}65RRdBAIC(Dwd1rWii>0AY0jNw!Fav<~6#ul0R26D}9=kSxNqpP&&DX
zXz)zmOL1C}MO0vM@eo)r75p{)`g*9zZoGSW>oF82l~n%iHhv4Xq5>`Iacksja&M$x
z{5_+ZZR*ZIZno&WKjKNj2j#0l75hNz(c5zU%z7f+C0Vgh&@~6I!6~5qy(Olq+;w#`
zRngJOEDSi)U$-jl__VUb6@XT~$T#EZ?#Xv~B}#3CigEE{Z`wx>^<$%0;M${xIGb`B
zf%1-EKPvwKgQu)idC4hiDXSie8D&E+o+>EjAcM?$gs^KRc)h*4zfkCWWJQqw01kgD
zkPk?&K7}QUXe5!h1?k2M}m#HT)pvhq{CcbR*iYY>ug}U}lUBG!5OX
zqFH$N$XgLQ5JuqdV%+yq+9A^V9EhE#{WIV8C
z5;vSMlNUlnbrbmjk$&b?ATE@QeNVFsb_XrQihrN{!=%y#RMertCWD9Of64oLRH4r_
zYRs5MWBQq8$)G3x3iR@@KkKo-v@D<#N>lUc&|(-m{{Z7Z=N)05k0FqWpsJ_Bx|J-9
zwOKWIrc0QnjEYcFSV`2RScCo^>QXkLG^ohqkDp#HBg&VdKs?*PhL;x4Py_r>ndI<)D@Ue`IAkdE5SIBoBtH-R<_;y3I
zakP}Hfz3B-9Ol+RKtXNsJ(
zFqrK)To)=)iCTcQB+-KB;a~;{uaK^KTWS@FQB{ypw4GD{RZCQSK$F~}l{$zO9Xez8
z0#ohjsO7*n)Ipp1)IlLb+PemcXcNCrtJ=uUBB41y_J~UFz#l>of*aaEe5SC}=Y&X~;s#|+eG<<^=w5u)u5
zSsgSI;Fi-+7?2&*mKAYL3<5BwMRn4ANA2oNR@=y~{MoyDOsyq8>utBX_p|Pty>|27
zkW+sWtcsflwP`SPRT%1ankGaNu0Be4iV2!&oqej*NT38LJP4=&f0XghpGdUD9E#5{
zb|Z?h1iKJ^E(KF7P%^7PYI>iv{wem37dcf^#p@>~6ou?_93d>y4Gz
zcs=2`vAw;P*t?=?UclWOj{}Q`4_G?SE0#*!0BnqvGh{L`K3bkOf|3|yKa+U4D)7-k
z;gV`SXlcQ}5IC&}r3XO;ut7&w^y~j@Y{WLMYkr~HPFjJiNS4LljOF(VxJjZ1$H{BIU64h45?Y|
z>swoW&fX~A=tXfId^XdmYBCZ}Foc0dP*@T>be@@-Tbnsql>@}o)I90HmGae}Isyk8
zj*vgg3%@ou^6B2cCAZ&Jc3xX{^`Bn#=FFQp)cuRJw!SB@dy}DXJ=aM|+q3n??aETo
zWFqX2w#05&cYYfaK=t%hl`vIMRloxYsnAbhe73O5GHFMYg4{r2DkwlT4NQ7@fN|24
zxQ(TF0EZzi*#(N>bzxbb_%kpH5-!^REpG?*ec_eDP-}hpo$riS4ka1k1s+FLBR9>054B!
zeF2LCr-nR_%zrF(QZIzu`x+h5Ce@>YvnN^C`F89N2ZQ-_a@BWi;vFGV>HTc|}
zW+ySRw>ijHXEKVkl+^Ta;NR_1NhJHJQDqzg1A~vBpZE{?I-v%&sHQ*F^Xcz-;_;jB
zW8-$WV9?CHT)TE{;g_I?uIje-ez!ff-)mtzQ+3o&kFKK5Zk%>fwAE#C`++A&R}_?V
z^fA;pcs;l^Xi=}`P_EkM5Zw-*B!{=~YJ0Z98HIc=R&26pywKJz9MLiqA72ui(XrTJKl7ePg!wp@<
z{?G{oSK=(ZDNYonc(f}WV`6EFeTJW~1IE22zBXG>stqSGp`rki+$kbQh
zrpC*f+Pi-#h_2cn-M)2JJNtOk_E%w7=Qk$b+FNI6
zbuKF?)VpNY!;ZtQZ?7?1J@T>DZT_Ik<$D`yW2F??3i?{f7ZZv5(>zT&j~L9zoX}_~@EIMu>Uh&WrlaD)$peLYH66Rt6&=yia#Za4jNanh
zk|xvbnmxI^w?5kH{pNc%w*!rC-|U@}vEY1bZC=*t-QQ1&rrh!wDX=+w4ksTI)5TR=
z6sRYJNWv6bkdCEDC6#1dRMvEPmF?EQ4FIN3MQjuqTf;1*8j2F9O=tn~u5_L?uct>l
z{u7<@C#H9|$#0XpcXLOR!FNva=#Hk@yAy5YKaAAoyFUxpJHLHz9>UIH;9s_3l@n$m
z%w-{~m+m7TNgTV7Kxdn61d`g`LjjJ+sZp;`qgPccN*z_yJm^NCIyKpuOj5x#f#wFd
zJVy=y*A%Cw4LBaQ>x=j-ZTnkqBFtD=Nw#aMn77aXYG9qoH~#=)ez!itA_X7szuG!E
z5yn5z$Lz28dZpjzto=pYf6IqIvS*V4Ur|%?OJY%NY}Qw6twu9z?vAX=XKMSVn;TtU
zMIAmLJ&)R$YP>~su(W8>%M^0R&?&P0x-yrL)zl_ykb6j>$IKjj>C-nf`gsD3`BNG4
z;r#wp>p`E6W?iSe_Ri|4+7;WkXYJhOS8Dah&h5O7Gf8woCS4oAarqf``wmi{C#ZHa0t_cWr;$b_H(x+kIn(&L-xYe*XX%z<+qs
zYE6%`@Y^pZS(4m2?#SI(yawbs98Tz@s%ortB~4s1Jvd=U?QWZkcu6P4?HXi9s*}I~
zDqB#l4;87Y0Mn)ihbz7OL
zResh0fW#V8OEA|!brXtX73)#5%qK9tG!^ayj02j~4%(4GKgreq0RI3Zujbjdehl^X
zPsCrGNx3%9Om02#mh8@^`70b*P49;4Id}dKZsaTWKYY_+W69)p_QcNR5*oZtGUxEtFCz7-|MQM
z@b~Ws{{X*Z{{VXHRrwx+F6Qe_zVH6B-Cal88z*??Hh%1-h)UGBCZ^48{N_4OyxW_{
zYh)Us{{V&Vt*ez(s-d352U3mXOGoORK%d>t$>@Sa<
z)wyb>>Fwo1yt`)u+*G?Gdv4h~QxTTQ;dTXAUUlZfu8yqj4$13mHaRl2I})C};1waK
zuB4Iv@@Yx-)qWzLlCqdJE~Tjy<|&~RQJzI_&6+iH)q`#=p2FlqDtXOC7p@gLwv
zSA3rM^|QMlnX^l7>ntC{Jkzg=tEUp8zO2Q4_~JD&|Gj
z01ZQc!-zHVuMUepaP3c&p9iUHx0h@54&mq?s>9=VZra4sC9TaQ0s7>>L()i!p%QS-h?SlQA9=vk`!%
zS$@kUUa{nsjvBWR)1X&*PL&KiF~zd3KeZxt$iEi=0N->^5fM4u|3a0!h(YzZ}@s4{{YNUaS7O+P?+2vCuVNmufguE
z_M3-x>)Br*WT?#j#t#XxJ41SB_YPkVi>YcjDzovyk;Dr6M?Y;LWULCtR`+citAqzg
zs2~#6{{T(FNaLQ9NdmI6l6$!46#G2KMXP9hfP#}DUp;pJ0LW%3BHLT>?5gwpVSfT
zL&Wy=M&YAz`hoXHj6Dwq90=k+)#<~gY+K{`vehq2OFJ1r6PlUV2gK9~bbe}FgS#<}Rq85$53$LO91(>{N1AJ6uQ
zpH2_g-FjWuU^5#iB>n&do(0bXo&fjmJUa0p3X?(63HXVSY-h+{p7`Ms*H%^cmK!ZY
zj>mZBooOoYHE{jrO0<-urAewO$W@WUA}9e#U7@*NjTY~({EospCo
zYKqg)aX*l!&#M9Z45mw*tyrR^Kl1Fv%OV$E4w}rVSgNJCxGM_4KdE8uO&Pu;LFhlv
z(>^3Ie`1=S_?!HT!}izm>*h=R%sySy{{S%W<_Gfrd{$BB>OPU&TfgFeQf|G~kgI;W
z>7Jw8c$CL>uKVenbsEZL?k@G-n`b#!kj{!}C8gSOQAazrh!k3Y3IUFjNbe(;b|sHR
zV;z^+dxLjvJ-xEFwpS&Az_moMWUBKSxnrx?!ZF+!!fgElWog07wq>xS^+S
z^ZdPfqiS3z2mC+g{JIwU-xigbuaLP-(bpSq8;Ppi+qY}e^_N%HOV(R^VQtEsH7?)l
ze2)0S0oOFd;&qrj;ZQ&Ik}FZ1>4>Izk=Kh@>X
z?ylq8J*z>mwyy7oU~LRW$HHLe+o`iQHhPMY^4J=U!Hmc6&B?QxOfE)B
z&D%*ym&#}9s1>pmH1LF^ZxT-)y^+F|>XZAUb#&)X?rgp{aP+-4@!Oj}x^{19(e6r)
zvEJJ!D0;IUTae1-Hm7{Ui9xcr-bZs{vxc(^0D%?Z6!KO&S8An=nm3W5{{UAGo~WRx
z=|djm*)7}oZT++5rq1CvrGDGaLASRaGqI?5$6oE6Gwm(k)gAk~Hy-FY?bX;@7pkjh
zqsLRyJaxF-bhQz~B-K>#tiqfs-d=y^ALZ%nvZPc1jt3d9@gMLX+tAJMmZ!FBc28hz
zeY-_R)md%LS=o4*b9?hKnBMy@zk7ghTI}BX>^Zi^%M?=e_AhVkj7Bn|tY&Jd_Reya
zm^BRvMIiZ#ohOgk)k@H3A8+l)pGRk7S9Uj6=enb`wohwy&iCFqdYL!eyQ?R%*AKIM
z9+PD4{n5Dh6)wl>UE#Mg*zJUqVDeS4RPL%O*rdqhB5FvQPb6}qYy$>XTyXupYs#Gr
zvu%lYM?mZ?x3qfWVrDj8H#5I`yK8KHgSfT^!|EEX`?ZV*E_$m@Dg=i+rw_nzt}q~u)6jPX5ZZv
z^c|(SGka;fzi)Mx%lT8WGCS8PUDh3U*;xF=WZRo1K}sjxxjHN+I+rIyLj;fsyh8|@
zLrox5{@jiL(zx^E*MT_I)nM)(uG~8Zu{ZYp+u5CwLA3U!`Jvc5;vK=<5@x#FxqCAc
zS6Fwp``mkbW>1XRJ$cxft+!WMxZi3tRG7WVS>v4Rnw(O`;39!YI=;-0&(q4jT{tOP
z*QEDa?#{}_bzaoR?Cd2@HiNGAE_ZG9e_`gZo11J`;kt`sUNTLSOQb%~I`O=413j5Vp|
zMRfKcb#K&BO5pk99==ubJv|1dZwXBY9Pp=~?CWTHQJAKYt1?*1I=ZPLjukj6wODZ!
zCXJ~
z>Dmp$Nd%~s6%*s-CyIQ$6Jw;)Z`5R|QAuJyq^H|%u|I1KE%Oxr0AsDJ+6X#``*F~p
zi_9ZM3#5Wb00Jo@aPWUq!)YB+q9D`}3N1f3S4q?OxB
z0VmY|071oQS1U99hL83D4r+J|^-4w$YbaxqO({W=Sor`lN$K(|E_xJ6vQbk{Q(H80
zR+@ULDUt}`UmZOXr9#OY{jEP259^S#b8+sbJCxO~Bxi0kZ8WC=+z7|p#=RmNmANdI
z{{Y#bA#syaQuxnt%{+hu%b@3SS4V@+QDhD~B=WqI?a*VUX<(_BCKjg;1hP`gE~HB8
zb_~UJMH?|3U)eRmj@tgl?rUikn^X+JY5;EJ)uft$%0+2Ws~9JtJ&dy5?e{jpzzU*Z
z52|*^SLdaHrE*4kosX`^EMIH)&{WhjJhg7*!8KK7LDx|_K~j*+!JGh=QWiB)`1WY8
z9GQwy{sa3B5Ax|3h@_B3K3;%%f2+)%oefQF3K3?fd+GlGfpn6^>A1N604JDTw0#Y}
zzSuVR!hvRtn*JmsAMIQD`t8wiS$
zUN#XpXVxua#f|Un!*6$jf-X6!VULy$e&5^DN4vL${5MHRBLoFGuL3GDOxN=3Rv-9K
z?^0CZJJaFUe94xkp~dc=wC%2&uBciWb5xM-t%Fnkmv%wQQB%;(Rg+x4*URp#Z`el-
zY?DJIvL!r?2p+{-Voog#V%9Rkhqghef@s>X0ufZxnjJhxL~k@LdpR=68k513v=E|{
z0FuDb^pD7Hmq9d$)MPJ~NCR<(`iQA}kK(r^}3@gj6oU_tnZ92lrLZCDykMKPX@t=zm%
z;mD5cq!C>z$KpW5WptfKP{FQo(1DVu-5=hJZrqD0xUyT5ACcI(y{C%E;MWhd_Vzx$
zn)Tm#vNs1}<~LT%-k8njQ?Rx^GA-7d6KPWIy4+SgnN;s4Y!I(^Y6I*RL&Zg}i!g<`+sU`hu$NKwv`0kf}nc@Bj{-
zH8kn-oH|9v@>OJ
z@zlYUpCvRknJiX5I+%c@nj$Za0-Z<5e!>2)T~6WF6eKaDP!9HBYf9u~0u6G?
zpo#)IYTeOg_s-GkUc16?C=!EX;1>9M`!z`#8B7Mq^^{5Bk>zfPpSFfQ|$Eo$m-VXCED4-Wu$1N4J$!FwJaZrs~UG_
zj*!B=W!u?mU8kGwoLx6xtxs5PAC2ED`hv4D0IaX#c&A=r~}-`
zj~D0c_)!uVO2+tl=NQEooI-4)b0Ofo#5!X~Qi{==nBy;B02Bs-Rt
zNPx*A+%`^GiU6#j8qC4vk%H+2@bv!xSD(+IIsy?vH8kh~@6V0>P5jS(WaehW?wqd6
z+5Z3nc1~xicVEc9q)b!pedqGauxe$Xuj$$?z?0CveuLwWS7N1uA&^Rjn+=!C3M_S9
zJdsMi-HqDW1dCAb!!+#}Cmv+tzb>fCC1R)HU-16`us_4rydB$w-#^Qb`HFUK-S3Xu
z>o}<}oqw@A*J>ls{Nl^Z$2%owwJFKSJ)`pZcDrv-L*P_{M0!)*@wUuj1=9R%Tu5rYA
zaOj9{PoABu{jJemW7`|L8r`YVn-_5PS61$f79#}(R@Upy#oBb8oq>ZDPm)?R+?gx{
z3yORlMO8vlrA984MOF6N*^)_QfuJ_;@vBs^;zLq{9BIb11k{26>GZf_vI!S~7z2PK
z&*feobm;zIcb{4IZ%KBqV`TGDm}R=
zYwSItlBR9H6seAUyGd0jv|{Wsl<`(ih#DWXeEh{fE}bU68D0fz()Vp+Df4@a8$K$(
z1wuCt$Ee3((`@!VCJV9`d~d7_87Veq#m?=@ER`lAimy40tBX5XO!&r*j~O&GIZ%?N
zkXE@BrZbwKAy4P_by9!T<<_~sG4~{!^RSmGvUbk#qU(;o+PIC8O_<&I^M%W90g0~2
z?JQPrBZ#2MWT^Ib3n^RSrN`1h@#_fFfIPw7`%0@9@an7NNdVO8TGN5m!iKcr>(g^l
zfL(NB>6&?;w;z{B*ZFv4cJ6=UA7c*D>pg?JcJ9~To1}`&teE|oN4b-CF3zajadvk0
zqQY(+^DkdRo@n65RbgQjn0(7q$s35w-t~4rR;-_dXNIQ6qfuWo`4QIQHC#8J>>fkY
zfawdmHpluQ@2sz0<+kO1c6={%RrT(AJVqgKo9e%B?rh|^Jbn%;EQCInTZ0HMm~
z&*a}_K^3h!IKAo6y|eL7w`c6f>|Or=v^Jl4ZhAaqw7E(;UE0`8@9<+5D{?^wYZX&X
zO|^Hf=r~M1XBCvK`%Twe7a+3-jv9DPVm>$NJRn@QlC&fSrAuJolZ+Gkhs;n8k}wEE
zEQi4r2Llzr$lwNY0n$9WN%gm4@2}-;{Kh($eeLb{iN@|d?}y8Ld*Ag_bv`#8hS}0?
z&bioFoSeCRtG#m2Y`PJ&_nXqwWipMCpsT2-qphea^ztgZ``W`M*>7ulCXz&DlS&da
z#!!MtVWOab6|n7p4{v0%epYV%GysDybx@n;p1v
zuS-n!ii%a1Em6dgKvfO3#)_1Wme=3`}H?MpAkHhaSzRyrWyYijE_q)Pf(X%&{^&6LJX0|^5+L3*a*#kE0tp1yiu(4~%%GC;7PMzsGg32x
z2q*b`{WH+J@MEa49i9BHyF+jG2UvC9`@{6F%$}Y2{{Tgm>?ovyldE=r%6*Bq`qw?a
zA9c$e9^#|gooU|ts|mfSnpb*hoof}o^vM*f?d|~v;H-q|WzWw^BA}B~s+G^!38i|~
zgq|g_4g~?n%DJTm1uIN`!NZ^j`JI0#e$@B_*CSyGC6?
zVVRr;)RGE`7=l8DF{wI;=$hpnlw7L#cU7wZ+DUEzDI$!x(gET~V@h>(-wr-we2DlN
zjLUYv#e4RzLq$q|zn>IyyYixstnj#+%&lcU2Q>!OZM6A5ia1JAs++GJMn8!n$4QV{
z+S44B1b6#Atm`*}6=WDkN+4lUBVwgRP>NKZ`gZEoO-rr!2_tC4vQbW1TeyQtveXks
z2g`?@DZ^oImHz;R6#oD&p53qOjk%ky?S7fv+s2D_OTQ_5BWcsmvN|TWXX1Z|%Dsu%
zdp@^uV6qrJ-%%8>;Vbd5&8;IdS3^XBtQC`K+@sh2CgiUgQ_!Ec;RS%DO6Q}MzP5cO
zWf}Fy%ltU|db?etn|{XH`+I$L)cap}>}}nLq1;%G(|>L;Ma(AVv}p4!jQx04aO_MYIyGVV-9Qk^S3i}w4tHwKY6
zHSsMPrI1t=YEVfXI5GezwE>iAYS*HRn`3II)_^R_@UhKBYE`S6Hgm)iQP$8MVcGbv
zo}UUgHeV4%77H!i9XHuMPrvp)O)F@B(f~>b3r!k18p|8$TWT;ai
zN-JW;*3(HOK21Z|Zt~VkE17MkHD#f#DODn>)Hxc34Gu>SE{&j>ZX!uk;QZ@CFhzXm
zabG^EFZo;l04R@#J8*m=zE!rVLaYMre-
zm{FDNjm?kCeb4a6xA60$F{S3j~FUEu4rjzc@eD)>g1~mKkXm0jSuJ6q=crIT*i2M{hw&y
za6Nb)wf)_gY_DYYzhG}J>%s0EXK|+GhkbS)3ZJf4gR^DXcx1-qMK<%>IqaSiyRl=Y
z!_&o2RaZp#f8Z;Of@u}wVzL`S8WLWt05xqmZ6i4q8ms1UN)C`nSO6$9!n`Z;G{?)0
zdUmd+_{D(8FJV;dzOb&@m3a&R5t%0M83EI|i?2>0&2#|MW@ryo;~CQLi8hUK3V
zP|PUW=TQ_=fX|L{Z|MQyx%~_Jy|Ll6d4%KmPY=t}{2wlpn4T(_4nKtO{J)3%A1^+o
z(d3}4cY@MWRzfd54N8dWVi&fs0c4sMKS?8JL;Y{ZyQGTbuLm4KkorpH%xPg-wj>EMYe=)a2P=2+_LJaMY5wR5>*&1)YSUv*4F?{EDuTs&~-C
zp1SDGwF8C7ZyxsS3VO^hTj1za$1b#?$!p73SxZNX##Kn6nF6x@k@fOc=>3t}8-poD
z(YWmWT^E!S3gO(=FH$L==$D@9Ox8O^W<^4Y>o>8ur)OV
z5~*s2rDz3usi)*RckAl??^BD}^{*{F+05l$)ZP_)qigT#O|yu`^&$bfI>$Sg*}G>C
zN7x&7P2aZg6RzZ=id<$Vb{s?%Dsm}2EhmYo>&BTLT?W~Yiv4rAw+`0C?Y-r{Fdd1!
z)3G~iH(9qTH$TUkI!c^F(eE6V*iN^u&Hn%t*q9t;22L9P0Ph^~<06YExGEqt6J+$j
znjmrW>w1k1K;chboANzx@{4bF_g>O&=qoaNM|IP0Y)@WL_CITOY_aaH!rFDTIezKd
z-6irjFOSUc4z8-p?R~s*m>i~Nk`1%IYAI72EhJJ=q!a5teNY-!ryUO4pX4U%uh_WS
z4(IsmzdK*7f4mf(@w_%R;O&Zy{{XwG_T-ryRN5f;ClOM@0Y1NXxF|qC&14va#6g{v!ik-AkzlDDS_1-
zYXOp+DS=KHJbFufdhIFt%djxGeCK3u+;>T~?4+NyHvM)qZyw*H!{YLo+KF&|X87pv
z`7N^8P2;v9cEUvQZ^V8IkvISnekQ;H
zJpdH#;!S8zSDn{g@wa;id+be#vinP;H@v&&Z|`pS?i&5Ey88ogF5BtMOve#CTOzk9
z1}8bQFx!#0YU1YF5>92nm@;!Lau!Oa_joK>D7*$isrml^pU4=HT|cmbZK@6X5*+fR@2%$;*YFhZr0rx4&~kTy@&C$
zBQ|$?b*@Kp)6wqT%d{!5xT=+)`Bm0?wwD>UYN}}9f|jC=ikETJ#37_L0h3T$Po+Gt
ze>%_~+vV2jTJ)9qBi;KetM)d;q}+R_u6wVr_M^*9*gZG1yRHrS)2!QTyEZOctGg$;
zCtbN$lBn+<(cM+B$+@>ZGtJ2uWT6X;{Jg*)Dsit~9C|Cg-Se|&
z^}la-M3`NLzWN(GKgf>Psopztaba=CVRueGlL?R88_zY^n@O@+Zl$E?3{KUmixY#x
zr9@koC6jt=hu>xyHiBMDthMu2iE0W|r4gU_H(3%|P0
zzq9pQ!**=ltAok)$5iyDj|a00&m;Bp6BwDplZ5;dK%*BCj1)
zHYLW9aO*Hd=U0My#*Vsn#31wzzq^gf5U+|Gb(3;i!B?`@x{;K@?F}P~1eAH;t
zB@>W8aiE^)2ppA;aIOdY6YQ;Zr9{^Cr<$-I@s^=Kx1#&Ryzxm%9*2fF{$m|M&Cf#u
z%aMa4_G^q;A*YC=cqGUbR+*WRB+&HmKa3N?muqv+x=1Z`nO5oJDe#6y6?5lNP&AI(
z*UXX9izbyq+uU1g6A)O}A~D1AVl{l|D~^*io21t(#JMOYcWES=29lAbRZA3k<}3E}cVj2e&?<%+
zSy&zgSWvI!#-s65$Wy6OLmhM=PYe?k*0!pJDpeRg+r{P7%8kyF573W$Vq^ze3fCZt
z)7F*pK3^`q;id){diwppKVP3rl^B{>n0=wEpw!-@L0eS;ZhtD$O9%T69@Ik&RP79(
z=~$2RkLA)iR)kRg!_&wW@Y8tU&KSU5PxthYR0N3>w2w7KIi#4Ppe37<0QT@%7POe@
z8OR6rkweogtVp4&a361{=hYPd06&eZyXrmwZJyGkIF;NTY4acBZvLYaRODl#lWcAb
zj^gTl!L@R&6fctg6}fhH{CX;ZOyXHZQL`g1uzRqQ=H=vwcYrFVg+nsnjMG3htp;n+
zR`BvgJ)A1yk=CAs)kFOAsg|E1^6OQelcB>t%+KZUiMlZO>}D@@<+{%qxb|o9I(NWt
zj@ru6WH!R?TtwB>nDiTKc*BUG#`#O6IXsR)Ad;U!QF_xW!=^CNw3L#EB8o_H!-FkY
z(9{KAI`pE;!eyAYrDc!w@llooN#n&^N{WgS&GP75tEiTfZf7AF4zSMcN<2I@n3`(L
zcI?M>_D2W0DmI5)?nq;=&reOfcmC^qMJ(9tO$}uX>0D@W^))s0^>b5_#8SkwMXp&E
zQqnaaI5j4@L@%VwebGc*55qw9&Mo9o@{{N(dm3q_8A(7WSPSPqy*+
z)uh;)lP8z?U$AmpqKb~Yb?$xPxN-YtyK>X@mM3z{xFt+j-#ce@?K*5$R~L+YZABau
z29?&N&jU#H#IVhCX5J$WF%YJpDuxwvjOi+BD^)eFD0)#0PZh1|XpHKZ78z$^tw_PI
zXmIPKfksd$YfyR-I?HfV<}!I5$Bn9=c+au7)*CyL%R^mVNs;UvwGLjt3%PK0dA-56
z^R$^bvy|BgcEng|=;&)H=mf%igVRMUDrILs=_Ry)EV_F|N5TdvL&bR1R--iQei&gb
z)I`XFQK;suYHLzK_=(Y^fJSP>W2Ll|IZe^oyVHAThS1)-Z+K+#ThgO$$B)ZxEN0fg
zbnQfY`)+M0^0c{J7R;*ZO`(Iz<7?%54?cbJwNkw@pS4O=#=x~Qp+XSAR-tq#p{n=PnsBE={{Y3kyZ)0um~X|du&-Q>b7XdI>fQ%`
zRMf+v@Ii^PJkkD}ZNX;wq>8a5e8n4^cR$@Bayn4oZE&l+r_P1?Q;kLvT
zoBF48?fm)Nds}i1or=YyZ<*>T>Rn~oH0cdJT@GDvpT(sW(V61#3F*P2+(Rp*lEJKx
zT-JaLn)y<-5ks?f%)q
zS+pj@rrY9QFpE7hAM9CiCCf+-6pSk0o7^
z+ucP@)O&AiZ3y;WUa|`9wO_Y3ejiY($y5M!6)m)OyYf*}3nf0jo{?3hW^4Z;W8+xibN-D}OzQpG?9`6Tn(?^QlJ5PP)=yJI1
z-pAb=@24_VG!;4R+kxAAowlrX^enhqStLm(mTHP+Pi)IZCSinjB!3M!a5=63K0~Jv
zPzcUhK(DQM@!?PAdNsc`x?;DnI)b;f=`j1AZNZ4!8-D@18*}f;HiqljeL+{cpdBNc
zsoJ}(+I+8R?XB;*<(6q9W_WOte!|jyl2kjE>;p7z7{@5mb4@k)O%Dc>niJa?Jrwxtggb!
zrA1!E-mz|k+ST!9s48ar2r6TRvFQnx%5SylOQee7g2$?jRx}mB0M|=agb+;*0OQgd
z!>T4|^7N>sDt!2H6sX`TJot22cdp8+?vIK6If%wnW%C=eGrzkRxbRd}vtaNP-Fbk=
zYzXGwxlP2mUE7kyiJ7SN$KeJO)(g~+nu3(r+jZ0br+OtpLsZr-o^v#a8X!tqv&oR;cN7kJ^^2=;Z*`E)4
z{{Z7w!r$9EES$Lw(Uq?1z0a}f4`=80_ge0FBdqP7o61yWr%l$t%Zq|q
zS(c6{?qp5KJod_>?FAV}Z;PjliVZv4%|;0rHRwo^wW$%x9iS%$mC;@ZPwUJ4-rJnBzIwZtg8^Q0@@OvZ^to8Zqsn)}DaWEp-z@cmdKI*yEl8ZOG7A
z4jeO@XV1*=rG0wayZHcoc!P0&D?R)EnEKyk?yZCKH?%toEt}c1Zn*QCZ*lA_HYXj|
zU&N|Ehg13Rl{w6&E~2uYIw{h(7ds)80
zmWsjvRdp#oW|$Zi1Xs(e2>xh&J%Qh!%OmAB$=$Px`VO|~3SIBlxq8&eZoSdAclS)q
zgv)i7`(53gtCMooZp6$z=yE5%(|8_Z^zys~R8wq{A=GE>4N1^^xe@vj<=BOFIc
z9cC)s>J2=H`A_+}&z&_Oy>itXfvM>;@oqDgsmJ5@9N95f
zN0_MFo5xDi;wT`GFqsM|WUW`CEl>%8N;~*uwuT@c8Lbrg9OD`3k->GGu*m*of3wh2
zpZHz!W8>D<>n+vY{XN)yb+)_Pt#hRQp$V
z(ycUA`-=}93T|9YD}Bw9j-R(qV*Hzr6VV5(?o=j3=1#QBWVhfU3A9mGnqC?w<)
z
z8HmhmXERddyl~Vi=^=^oZ!38XymG*vG&R!csY-*vGz<_An_vv_&qd8(V0oDw=#%1B
zp#+XCQ|5gK9*sxDbHBEx{9fOZyJq0GP9FifvDhr1YD1E2y>?%8<#G7TzGn-$>-Pp1
zZ*5HOSR9PBiMd{$H5l57X$;bcpmTfM@fDqw%uy2r1=XB)G8QV{Aa-LxAp`*8tE7fNcjdp);uR5^;?-|YR3x^p|Te^l>`
zuT$-0E^8y0-IO?-CQoDT`VG;$dpoW$n->?J!&h%ALey=ls9-SMxERljP58=l)mk{{V_zLDfBPy8B-EJFgXmr8`%w@f$;=n{CN6?+oteiLjV0-91FGRM1lxV4%p=g-G?g?p71+
z_RB8bCB6>ovl7Tmc*7{ml{iNyN{X5iPhPUOnmd__T(ZDbNsJ9te^5xGf<7e~IL!xF
z+x)V=NbC=cpUSrnU*9w5wvOQV(b@a+sQc4q$i;swz|hG@72$2q(4}3aU
z6I!tKImK&H)h&GP`DfcdFneDQzxzvX4x8J36-|!a-68SAAw$@k=XBuLa#n5(2;LH4
z_G&|c?~drtRY4rNOiEJAh1(daVNBIBB}+?Ctj&mKob|z9fE!ROdTM7Ny+!$@8*!aqve&)$G3w*oe
zs&S85_Ia9^n-5V==|KciJf@APR1sW{oZVnZJmbO~1NY
zpJjFrXytmxJ08T#Z~V?qvlp;;^c!CxPnjRZHpY6jWXJY|xQvB5?rN%Wv}x<%rH)S=
z5-EZwJ6NJ?TZ07c@S$purhwGY*Sup<8g&ntr$ywEEPCP}hz~K5=jJ%mjSpY{*5Bjb
zy7yl9?!DK&`>%BlvVxMiQEFliVr_8BtkKU;Cm*>_JY^<@`1-30{&@FCjUJkZ4j!ZI
zJvSstAR5;rf%6|>;yOmxRT}DihTTuO-84BGN{m%pxbL)%uN@6^GSbXz>*ki16(YwI
zo9J)37XJV>A@epIOYcmw>8$n@gc-AAO#M}g|tdVH7h{{Sz~q7VGGYU(rp
z024OO3aYx;&b;59wbn6Xv9%JbH8#%d4BkE}T&6nyc%qIv
zbd80YHHB105yABfdaupz?JzXq!~I|CKD|7{UZVZQxRa88(tp%Ex@VrEJ-;88u6Uxs
z0L3P#nIe-GsxHZSolRabKN<^72hz-dX>C=>(;RHbJd_qI_JLEQ=f!?wq+qqNBjSX9
z)%$*5>iY>U3oT86{$e@0+;uHRS-W53)-^GcplV7PV%gPDNM4$%v{S=UY9^y9UN0($
z?0>C;H^g!9yJ0Ie3k&YdT_sE#HAwPyZgk@Eil4_avd0K%$1X;gP#&OL|l
zm}V()yCdQL*4x|ncI|R&YN_`xZ}&#Tuicp~$(fp+Db_4EPjtj|jY}vuYK;9_mW`bh
zD}4cojFP`GO8!;zAA3&Xk+9IjJ%Z!PzS
zs@q#vtuYi$iy8+v$wNz;!BcMhcHO|`G5Jc}q_A!1aCB5MCM|30Ua7v~nwkCb
z>b)hqPjT!B8#~*3>#$Rz;lWk!9Jg`pEt}Xe?p($<36k6S>P^2_OfZ=!A>P}Uaqdb=
zkwv#=e3V+L;f-U)K^n_1y3nZ<0=+J}w|RdGf^F6(FAspM)~wPRc*YC
zdn0IVEXH!CEwNiwly26??(XvHo#i&vq1d^3a?hZ*950u^F_>
z^xtda_uk*bZB3)r5cO7C80v6%ZOw<4haFE`)e}`@D=OnF;srQkuTy{^Q=|u2{L1XC
zw_$9*k6n}f+`xRq>ga1Rb-T7q)>moA@*cBmVr|EE1&gwe7e_@em42(-0n|o=QmCUZp!Oz{r%I#b_38;L$-F_
zTWwb4sVgd}wX#H8?2~k
z!=cw@!`QzXK1%Hj9`na-Z1&8}RAF%2_p0TurQDrK+g)+o+aemHkIv)vT(p^*{4RGD
zPcBkyPCB}ps+K261ZaVbjFs@!rdphF9B_ZtnsjEjA6|)O%oWR3Yd|#-micfvs1zrL
zI6-kv6!OY+nSrNF!?c*-o017sOG`$Y79SFZ;h|pJ7XWYaorka
z*|X4M*J)0WQbS3JiDIdqno5K3R82}mv~N%LJpTYLkiER|t20E}0W~003L0n7A1czn
zZ&#m@%Wf|xIoqCtH@X{3O)p!54rPB)cLcjf-0{!X3~
ztL5oF_{R12(%ZT0k4Nm@!`wTIY~^=W-u~#*ZVjE)z
zRdUnGbmL!NKiktR0Rz{g&G2jIrc>en0C?g$^SS2UJLlua%v{FU-CM7;q`+jS$n>Ac
zEZs-?GQ#&ZYDJ}rT<2c*q`PXGgLjbyH}LF@H3nJ}BF{WBZI-IWnI50&{heMJOnt4D
zuUkxsU~0OWA0nD6z?w5her8fgf?kLT)tGt=+6MI?pGE`OJhACSjMY@SCI
zoTzMci%a(O?HSEXA&F&~n$p9CT9i>LiB{58S+21akAoriwc5(5XSG(Z3=iAu_J6U~
zjr2x@OGdBykNLWHhb@eOqmGuUvXuZMMGbvKajJc6(ahBmTUX;qxBJJmud&Efl@6cj
zSc?AIkLA;exk8K-HF|kmom$hAkI9+L+M1bbC@H3n;@+9+pfs})d-H4Q`Wx7LDxYt>
zR?xC{f%udW`H@5ZuU?GdynwE<$3=X&=hMsmUY$)`hEZxD5<`cmjJK=_E9oUD6^^UO
zl~F5}wYj(Tx4OI+YaXclGC|0z0!QWu>dP_~(;(t8_VtS)N4Y9!-JzjTPghk-Lm`T;
zlCou^mO(vi@x+o-vn+Hl$QS{CQ2xH%6Qf1p%WUf8f!bBR+*BR_*Bvsf@m#A01S*yS
zhcv(y;Znp?*Q(b3csaqJ{#4&GWykHztTlTNX!Y-A(?eB?)Fgho?hd}(wFqFB$w^y4
zDJdjcsEa9jH;^j_wT||x{cJISRyRIseFzy91LE_b{{RO>7w8rtGrP2^O)E-zpX9mg
zOn#o;8CrgU+PkN5%k7HH@y}{}?q>nz3{iiO?daj(vSM~iydFuE6;i<^Uxi`+??H;em
z?uV(}yH2u#zai8V5zUz2dn*M|5T&4`XmWV)WTVN>M~a}ZkV;)+69qyz1Pat@3z*S^C4??eE!MAI7#^uFRWZQ3N
zaFrX%2r;;9Mq7MGUHp3ww{~qV#Dg2B8&%ilY$Q+$$}B}KP8S1)p{jJQmZj^pHym#i
zQOKxC8Vza_Dobkgden-OsmTLPH1uV5u$!5!*}^c^G=O9jbyUy>3}%$7s3{t$I?2`0
zf1m7q%e3}7=P-HA)W>Y>3aXvKv9bHS(tiS;k9Op8_4{g%Y-O_9oxMIIZfAEA;4((4
zrzMMyd1&LvLlji7&@j1t375xO7?=VG^Qhtvt}(#z`ScdocM`{K8#tDh)8U7`FmF}(MQHYWS!u14L3>{|BpvCQ)
z4Ao5Lu+moVsN*7N*%%6Jx;Dk>Nujf_Q0jZLrA@inI(@O^`iK~8G96TxV)un_qL
z;H7nTs5Ph+t5TUfDoreB`7B4UzCw1t^B?*9us3Gs>ujHXe5t61E%8$Ul&6EPy5kKt
z(oBxm-hHpLvDFacw?}pM1XY#UNorh0ONXy|{{XdwG|a%&#EOX@h%}0x0<|;*die?i
z_KtxdF(rf0@W|une7~1h8}cW-YW_BK{(rQ}Rqrj+9#?K`9-iy$J_3SVzhU>sW@X~q
zy*;uhma`-&DKXi7?N?7eUao6X(c$T8rjYs-S+z+R&`3CXdVYOuhZ!>e0LFjW>Xg1u
z?p$~Bp6E~I{jv76aQxNps_*6}xjsXDn#A1X&ZF#|$MPdRkH%0|?p&dv
zpCP_e7SvffQzk2HQAX}5l0zhR0hz!q065{p`SrRo)at18r}=-_=!X2m?TSwQ`PuRd
zhkEf_3j#aU89c4&khFz*ZVrF1oYdMUBq@>
zRu{ulklWjfU_MhTx?-T&^z_)x<3)$XROBh?XsPOR11CdSkb+e4zN&QbqJ#E+UoJn+
zx$2Fm&|CGgH*YDe{>K;mD&>(MIr_Re@v@Q&oOKzQ5=Fy;Ls-IRp0fOZkXvYH(FK
zt+!WEUyH5BQdZZRsd92x<+HnSQL`}Ps^g=Mjw(&IDi&h{G{UN~Mhub!Kn&jLgmNOi
zV_*p+WHRxgr9c%pu1-$@(q)BpBN0Xw;BiChK7YtydGu*$JKuABeC&;px+o~pe#O{Z
zV6#u$Pa{1aXd#Kgk#F5C(9iR9jpA!@!PkgJ7b`>PfPXw
z)}!sbMp}qvvDt0Wo`rDR&vVk}t8vuvZYkrJYHsJIp{SOtAq{NQQd5LPp#&;NR9NIv
zu#&}&0m1o$Q-jAMqtC6+Yb~>>nSr3KLs#rH#}S$kIP@EBzm}T@x8p{4p;AYOb{~)%
zKXQGRB9^X?U~cZ9z+|%9t_+Sd4K*~>*lpQ?-5D4tsbr<0dgj7;=a49dSmiZ=mN}%7
zN-QOTuK-j4K>!0vu^MOzrmsWMbdj@0x>m9QPnb2$PAiTzAXc9)tTTFGG5aU4Kfign
zGTC}8j?b&a;0%~-e7j3y>
z(V9RZZ2&xv8Su*<08lDXl|U2>1cVi#)OeAKbXqkKh_ZJ9=jzo2)YgQkHN`%8uU6yn
zs(MOa<)71E6TVXC^ZR$LDZ$0eIE4auEXr?Wb`|qsdhH!
z-X(FnTO&{Y?jX0d&Zsw
zq^XZDxiXn7{^YFfT-MXuFwKemkv2Lid8UpiAf9>Eb+zt^mUmrW#0afx#DiMu11fle
zF~s!5uxdhs0C4jA2c;{6>-lxM*Ze2zrG7~Ccf%UUyZVnQ)}3>|GMhVne0Aw<`JBa8
z@6D-)%x$`ir)PGCb`TdMvN4_Yx^mEFX*R7~?>;4>nqvhSsxbR5+%BNGnI1LLRdkX_
ztJ49G&Xn@`c@CbpLkbm=Maiff0@sKiD)nR^K65>AJ`((;+x>yt8y~8+_hR&qWA)WG
z^4(j@1GXraEuGsHNBDLFA(P0_rdM;dBD29mM$=cw4!_#FGp_LciMuw&Mh&ODyL%V2D8@T!=XUKj>!eP{
z#K7$xMRht)O-E8@j+Q$6qM61>hEQaqX&ilP$L;%nEcBh|U1+3=o*tC{09X81TUdWG
zjg|91<_6&S@BF*|O>`Gg{4Drw-yP+P*c&tC7gO%j@;`UrcmDubZ9Lv*r*?{LQFI>R=}-}d81mHp>!2pEZ{McoDB!_sjvBZe3r!$g1;*N0EV4t
zqu5#=s$GkQt3dS9_Or(W$}?+p&m+nb+1fT!JZRA+L1i1WH(Zkny(irWi`+mYe77ggi3V{pe$w10;|O7%3K
zb&G1oiXYmSS@s~X-EOw2+8FJl2PeE$STgpOQCgie0M?YpuSK^OaowPiu5xcJ
zPBI<6Q37M8f$|ZldSsMU-)x$3D{G4xF(?3e77^5|7B%7NULbX#mx&RK5c$TVll>i3
zr~rEXo_!5_gL`j3k(ph)*7!c1rQeH)hO=~KXu1=#a@CvfCDgk!DTX^sthPpXJ}UO*
zcJ#s;myFi!zrC-?PbA{5p`}(aZsTlWCy8OWc<}xZY8;Qki^W-oo|*u7p0^ds=__$=
zW0TDBQR+{ck4opzbj{q|k<|OUt9p}ZQd0IF!rS{_J-hH*d#HP>wd!(P>t{<9EY)ZD
zFJsFxX1|PLGU;2HlOs<_i=xHX$5FT1HWdNEd)!MD?O}2;5oIf{R+HufisWR}P;p)d
zr2-TvE@1<_1`HOJ9#tNPhI8k~p-?%bDb!`}U)vwFj;sXCvrx5XD^XZFtI
z!)~tA>3!jms@j_?bM=2?=dqL-3P89>E{_Or}-!1#I
zN<9AnQf?YP%kK`c`305Q-AhrqHh`ZygWCCiqS$+PZDOnE&*pbtezT`5XBR(jRDS@nzMNUk_h9&Nw1emXPM$gFAyx=Ri^>wP6l{-
z^c(EYmHW4OWNP*vAL91P+V$O$UAVVa7j$Mjr?F}CJ(;;TlSi@ydtY$l){>f{t2aeT
zB9m@ys<_1Uw6xRG)0rtuPNZ2hYR@7O7ac~t4g*(!28RHWDbq%9#45Lc3S)@kJ#mbX
z2Uo$@f69aT!f)iqZtctQ$Ky9Z(Y_BOkcVni{DeujjbuBDM67yjhS=Nt6LDQ>Q#L{D>L(-dm@1=6*g>{l*UwEfqdP
zap$RURFv46D5!0Z$vab1hSq&Wm|Pze0%!oh^(W{49<;~T-ZK&5kD6sN6v|JUC0
z`{gywskZsI*G}=plVSC+Fadw{$RFeE!{~?cN&f&i+x-1gSK0e|$0qtnqLO)OaWTUR
zhn874cHT(hQbLB3Myd%KmNvOIzrTGA0VUd>^G*K%&DOyz!Bka`0qfIg?8xT;V=)nA
zKXqez<=ne&3^)X^m+k9j$gNI7T4F6C!A|NJ*fBoa`ZsUvi7V<-KtJQZ%vYrz5~Y5k
zK#fm?P`Bm*#ebwh`E`|ZQRM^4lx&4<8sAk0FykpGN~j^tY-^gEDNz^a_e^k~${%z#
z5{e0CO8R#J`$~%c0IMBrT*nyy02hdc{wASs%gKK#pPyMrK+WiD^n##nCCuJku;E1cq_pk;kHCB
z8^pa$Yrw^+nEi}YDF&W;hf8gf#8qmLf6e*-0E8dq(c^u`oVu-LSKUCshyLx$wD7fx
zR@z_v&TdSM^$j8V{i{Ww57BY}LE)@G(%47`;vw0;IFS{9-dO#eDn2q%To(t;NBCB>
zKeoL~#^x~6OC?@66OGB###GIatlk@bwmwk<&W?liO%=0nwR;Dd|S#IG=m?J=|0!NNd!4eU3x*1
zuguj{#U&tuzA*k#8$Cm!ISLh3Mwj<{J7El}u(h!%PWvlji863Y;)&vr#ujrJv6V7FApM?yXGv->e7ZH;54Sd6*TvGs
zx@w}6W$m81>#S6G?Yl<}USkE7#BHqRYYB(J;4#?@4s(8Q8tsPp3_HPC($nES>S~DP
znsH9ettU9^N6Vur))m-akTsbc`_pYI{I1&AskgTFAcUI=zk>x+pJ{xh=
z?WZ5!zQCpw6VzAKQ_@crCN7~dPZhMwy$$L7`q7~4G+kBD`&Ya=Z#A`kKXu0G>Wn^D
zHA}Vo4{mG?&${<6Eb=Vrt*I4)73q8B~m%BDL_sZm{yB};~Hs4=SZEAk8
z%xz3{J|d<(rUP`tlACGc@x;jpjqMhI97QSlb>c}NlT-V8f6ixqOl+H7e?cLF`w_F=`
zy9ZAc*}TSUElt^(UA2{|j6DuUqP7@u^Geal3e6Kk?wXS_
zGh2Tjx#%&tnhdk!8y6NLoKHv$DLgVKG9ye=P#}5wHy^WymmKtHmea*zw*nSf9FSI+
zc=#HDRunm}0s#QlfSLaQkG~`{IsX8VoejG_RPJ5XHpA-}cdp5)&uyGd1pDmex3n}=
z&AB_0w_w*$6@LaOiewb
zY80y};sB;pkBYg+#60>-eEr(nYK=N?vFYe?CYL3&x6exNefFE@ZuXYw+qtQ;JGU{_
z)p?Eeg`}>+?n*3v)WcWea2Z;+hNgTaZ8z}&4Aif!_d;o05&I8CO4KY5A5ZmvG0|Y^
zUz6LagKNIQ?5Kx#^%maQJD+Lo&A)@MpK9)CusfS{?MljwvUX-ZD!tQ>-}`!p8ub`C
zt302=sInFG(n;W$gkXwRl;i%d%co5$xX(s|XZM~zWcHru-Fqu@XK>p~X>K3y1`}%T
zTAFRAxVJ2|bb|?m%Wf*H0?|=qqnj5TRJh8?Wr|j*r2C{TS1*jGXc5pVtqB}>)6eqH
zMpnCw@yS`H)Rn1IfY_#TD}&~6as_&^9=85uZ`6HrRk!l_4E`T(RCQ+E>pjP{`ZGQ@
z1s6na+I{0ypWnTi411Go=5xb%?j6gYrBVDEMv{)Ek@8Z~!%G_G}PGuRh*^A(AV&%uHy*I-;o`5d1?tRFgnS6cy->e2DpNy#7l;Pxl**aXEg)#M0Jg
zx_@YGOqXVEx~gmpyK`sl-sa5io!`&g|u@uqMN1C3M@>Q_ZRLYmSRF+>3
zioRsiCp7;6Ir8gLTE}e^a(z;?tzOU$6dG#JlYS2}GeN_qY$o5J-}t@phsUnp+SonI
z7R0K^cfaCWAYak01OSH5{}D(IqmM0yrzj
z{Ioyj{{RO}7D{#?4NoDDpW9#X^dxM)gsa+n{{R=gcgJn!H+2Tq-f(4U@jHf_eAMNz
z-ILi^N7~qY9(xBy`AyThYB2dc{Z&rfdO9ib6!a9rbeiuX9TSWSeq(_7^xl(AI&oh^
ziurzh3_F*!HpO>-Wj4M-mpz!=7;lbSi>x-Q?I|j=8HuYaw`Sdw8Nc#-#}ipql-_%U
zRqZ#W&(~z3T#a5bV6)LaiB)!rMsfVVXH{i5>KAh3sXGG&nA=+)4UVI)%FwpO*?5z;
zw+7$X8*gT3y6%r{?kXImLqfIny}yFbV<{x8rmc`Pv(Qsg(fDhjc^$wAIUnHal=JIl
zZ{-E@+5T7j3F~^^+R9MnyNBcE;oM&pJ5x0^J!$^+<+@fpUN>d-9X(1@Bhtye`r@}0
zG~zal$y-fPAh>(`ZdeN+f~)+;`A6l_*viO*Qt;}_TX0a)I;Adt9E1!mBFe2)tr@?l
zE?Nq2yhFeUCyHp*f4A+g25@^pBhdcFHQ~7Z{H-c&B)Wps0stP1Ze3clahU*M#QRk_aNu(^r
z(TJ+3tf`gD$j$?^62`;nRuYm~l|2F?hHR}y>dEPZtQ;*5L
z)$Fn*nu77j2PnWEMToKX2)nhpTaf}urE8OeQJx+^`V&#|=v{9jv@0=$8jo62)9oIk
z)68_6t?m7v24Lf%u9cv}6bWMJJWiY*`@JHtU!lSCDsGoKGN%;ds
z1QmFErECVPAJ&_LKSh*3T
zaH-^fED`<#){`F_a@Dk-9=Zb^S()6F*zLj6H2tZD&1}uf6?R`E+Em*kC5PSnTXD~j
ztd9p-9&2vXP)}2d#$oHSnCd!-W~`J-7O7gijD1ARhzZmbh8WXYf;{+>LP!Mg^yt#b
z+*;eIX3|i&Ds!rY5Nc_WN~lsmsXo077!3Y5D~H@$S2eVL>$LYpOgL=*{{W=KXL}zf
zx_XZw`nEn>YU3y}7^mwOY?WN}R5d7*NR$w}#WO;%G-dPK%dI3<9s=YoRcPbl1dw$K
zd3y02dOX|biK3DQhPQ5Xv(UL{&%#s!G#cO>npTGcq>f6rZ)dybqBl-IZH@ic)Q{bD
zJ1+r-r_ODP+-5T)wrH@}>^6UL?5cFzS+2|5Th-C$nx=hqkjGgqWk`;ZKH;GhvBc4_
z(J$iQz|)BVjY5?so|vG{4`C3^aUAOxi)T}$3aJa6Ga%B^2Lidssb-?&MZskDFR1~
zbiA!KBC#wiu1b=!mjnkOs1?Sb#Ybq=8IKwOcmvX?9Ud{NJyyatR%k;9X4BjwDjc5>
zn94?^P!?}8y#c=|a~+A4>OS>O#lk@N4V|_+`n)zHYr#vr&t_x$bFMe;@5Oc2UKnwa
z&$c>`37x3NZMyWRr;ejPU0C(l>e|(sSWPx}fX3F)$i-75y1j;@K7^dIo&bs(Q=~i0
zTY|dJb#4TNf4;Ngg03|1)Tj=aoPIj$R%+2J+@BHlXJU3YV^UG>{O;G6YW1(h?3QA?
zbZ)%XMu#m=+rsc_2ZN0@;A!^xV&C*rs
zSZSuvu&k!6OH}9K{{Um4j+Ph_e<9IG>Q2w!-#EXRzg_mG&T~!`BgB>i;%++#C73v_i
z3JEtX^{p@v4ixn#C(r@&>a?3)WEueU88!a^02mz)zdUew?y#R|{EF+YvchhEkr*AV
z*c96pI^(PMWIegv+uEmkbTxj%>yfzL7RY8PpC`AfD)JK5%_6oQo~oK(G;%Bqzzte7
zfM+=2{QA8gCslth_IlPo6Q0`p*RQvZN^D+N9oAFlx2Ivy^?oBOSF~rt;x|uf*JU=g
z(W2}cOqE7sX6}Bc>%82Q)f+kps_ApB8KSRLs)3;fh}4aB5Ojg|A58t8UVeQgaMdJI
zr~O~*^yvxM`P$uqik1WOPp+13o}$@#UEQ!dqiR!kY)g*anC#tF!_LKpr^aHtD|V)1
zYDq%5y}vF#uMLN#WRLc$sOS&7)Br;eX~bvGhuiZX<{fy{==qN?@O4&SH-1Tcgzajr
z_lewF+p2pLYU6iqPcfL^y*)+z7YUo)TelewBWq%DIcmSW&E+=DH(wa2F_@QQwspa7hCQ`6Lsw~637Z1`8OY4@i1+E@&per!)&
z?5*Fk_a5`kZOx$`_TG_VaXW?$>5Ht|^Q==*jFlyR3QFws^CU4);Av5-A$WmbcDOoZ
zP^O7aJWUNVQHuE=I&mFpId8uk9DJ?Ri6^r5s)FU3#T6$L)^z{D#
zW1=SRkh73#DZmaN;rlwQ9gmpXnVpxCqpaUqOg46EN{p&3abmXJWhQc(qJpa)+i9^o
zeuiTw$O;JW++BmrAac`5z(JG)Z)YpjBt7|DHh|1E^Rv#DCJkWd;L0jO&Rlq8DN0MLQt4_76P$Zg)o{zp9x*LV%v
zvwH_8xVA4|?!NEZlwFaxBHb8XzQu1|)ZY8Id1m&Q-PGHo2~7q|4~fM({k)PS*(f5A
zC@0)YJG39Di|bY^)nwd}lXt(C!Gn2~hG^VUvWhPG}Rf2}H
zWT=P9<0~#%p@>a@(wYno1CImRN2dT6LFm5Bn)JjAOm)4j${xkeW>s*#o
z6}7XKJst6OC#%>vUenz&wN6WJ?47;#bJn#oSMH6_^u7q{wh!={50_S;6rk%^{l8j{ikH2R
zNP!q>HI0Q-`j12NQ-=BH%yguGKE8SX0L-W1X7=cw_3V#~dvE)rxVs}QP0>5o8&Ol7
z`~jj#|EcbpHS#
z9DJ$MYz1_T1N^JeblH7lymtL&a}%;RuHnyaUEhwICy&q3utrCp`*ssHva(6
zR@Rs@ePOq%@py>o=iGRV)ea*IL*nyIRXLKE+Sa+bl6JV3Lh~QRgTsb#N(=%iLDF#)
zNf?Px1Rh`N^*nt~L_dA+3EwdlR>#=8gK2LKxm6u>dut1g+}TPzJVPZeZ+`5V^76#-
z)z)pz#%mdKQ;)Tq6I7y>chb))h~`_Ok%-(dIMOP>S5c?*tHhj8)92GqAA_m2tq9Fc
z0XzkMUX;yxvA>0#Mcm&lcb56e{7%JfUhUtw>aC`CKgB%u)!fo$a@ftiO(x*0?A(_7
z+x3_(rN;Fx!t8n>PfL`OEkT#8%+B;wSen|V(NOi>+gme2>as;pRmLd8$Wx6!5a11I
zQ=X{|B2Xk&D)b<)8jqcLe7wl$1MiQM-JO=~UFk#E8Q!zY=Xb8z-W_qC$L#zXV}3Q`
zHmF)WER;P_wYv{(cIXvt&v@+FKvb2UrrbqT=4b_I_EOTxU#McHg30lTY
zIADB1K*MTNpUb3@MRRK#rK`A%HAQH^dhy|3N*)~%o%hh#stOIOxiCACa8FA~xR~7ODhoI)rjeFx5Dzau{5l1~v|_uG{U|
zFkuaLHy4zjF_M-^H$GC9CES^s&*3!`)TaxGml!D4DWjStqn1et^FaO~nl~?Ow#QtF
z-Jq5yOssUXF(2q_PfawhMZO~G(&J2~Tq|Q$02M)y2lS5~HLpt?Ej*k44Zo0rroSDH
zsK`$
z)wn&wlGuMd{#n&aU7v!JbZq_kzBl$+_O{>2;p?g-&F!2d``am$*)&;M-l_>P^>vXw
zC4D4xk0g%XXp&v+do*b~TN2H#udX!#6G=LPgH$Bc6(j{9El&{i7kAEMS-=aXgG(Oc
zUIhLuWH8AFv>jN7#2=Ku8g`#fe3b4Vl)oc>MfL~IEZ4;T=E8hy-94AE^ZVCnY>nN!
zb{^!f*n6j_dr|hY_J+{;3Ab`IG+%Hsb#YWutnfZ1rD)HM4d%f-QrU=XkM4&7$QnZk
z>sF~G7GjiYP_WrxW(KAIk&f)8NNv>Pj_cW}1vz&kiFS5Mnv{
zRpgqrgInlCYj1Zm*+vM8)tLIbANcC&{{RW;Js9zBu{O=XRF!n^v#@a;!Fqn
zj~vVP`UmvUZ+89Xc9jq~g-?`YPxBf6eQQGb=k4j>H^MaH9y!$EfBtPhl`%gw%2dVw1{QX0#!C`A1C!ZHUDx(&Lwkj$(>tPnt
zXy@=TE2oVv9WDKzbz;szGB|Hg#5e69;58pEns^YMV38-SbJc(RwaVhUv$_5xc13&`
zc`0yPgSh6&RDTYj##X))Yjs9@drL;MqOAfsd|S7g&;$xtf_N+JrMeSF%_(#tmyH{S
zYvg$RiSy|Nz>y-6emWIDJd^5a{tmuL{{RnrHdy;#D>nPV$-F6dmdD;O&dractpa7w
z*KcX(%1q43kHJrr$yLo?Gel-#qBPSRHlvbH8t0@(t7Peo`L=16O_xE4+54k4lk3ce
z?3)#v{u>Pp8_t7p(rx@^er?;5Y^+t-j<~_&nyRjzNe&((K@}T#1amx^>(uDV_4Q`e
z*tDBgC=+i`)X%+kPT1TmYw9ukdnvi-DHe}?Ze7WU&TX8=2N5>ei7BWsxp*ZGC@U)K
z=_FZR28(q(E7p&nL-yUnZoSvC`vwdK6FW(k!R?s#uHK=OuBXoRzASZia+0rZP~&N+
zve`<_pWA=jIdYQWFu00|vGrze;)5eoT^l4`)O~uP#WB*O?e>iQSJj=9zp}eO5x1r8
ztapZb9o4gTmLoN=`vR(`?(6#_Zgx6jHkR}47zlE=N_
z&dtflaha@Sv~^YWRi9-`Iu}LtUk1Hw&;k_y0JHwbQa3-u9;{3kRdzlTrCw?&!Vo~n|Bqx=`yB=bFS#E{w+b}^6lxOq{&MTiX#ju?uA2Tg?h40
zEOiMX3y<^tm^mLj^x2#EN%4Pj4V_K1;O*Vve!tG^ml+?u?DWFsA>f-L{AH@^5iRwxHpJ&VVby|DV
zrMCV%u=Z9fYwX{WdDr~@aUK12`zuc!ij9V&agjY%F{b54dV#YTF&3yaF)^O*{Vz~m{iTczdB
zuHei=yejDj@h-chd~}e|SI1W1sa;`1G3Do1b{?`gkd}$MLN`KH}D#?R8?
zvioMICtW^cY*XSQ&s0|Bv-ym!MnuA`Efhb)+{sF<%VK2IS-~~NC@G8@VDP{IW~A4r
zBfKd^QJvsqetq{lGhV9Kf{{X@3@~>BI{{RWj
zp{~i{{{WgLH74b$s@n4W!0OH2iOX#~l(g7Prs3Y*L6yz!y4-a=MkbONDQf(*QYuFR
zDlUlBn9*79ad7cP3$$S117G&v=IZvatdAlsDUv@eJU?$+4^-i6sf%jdyRlR^40BZc
zs65;pXtn*A)3DW;^HQAtZe7^_$3C5Ij2o;ta;Gb6_&)smJAVX4<^6jan>RZ)tHf__6ZC)T(g
zew{YJI~O2_Cy2-TzdpD=H?*-d(o2KQ;WtH7WMiqSZ0%gTYOf&Ds1;Q;6H;O;F@fn}
zRS-bF6cMOFVRBoZNeZ1YA;kqMC_lmZ@h7WCP)5GsKO%q0{tlmMayy239!mjMm;OSpPx=iawK8e
z5D#2b`ucSKA9BV7V|PgiR9B4~Zes{2O_ao9mYOw>{49U3)7$1KDnG@mUpk((;yn+2
zI^zv~=h9pI%+r418Y;HkJun(gwZ>t{MI!=!m-Lay_olbEZV=NRr~JKbW|4TB^sB^X
z^RFk0vvAVEND++kzA57g5LPm|BQJ2N7$l#-7r(NL-MtkIk*P1yrKRqt2_WqIf0s;%
zGUpz(^cf0R=`v0HLY^hU$gx8~BC2B`QgVwY+eeOyEj(OmC!epn?P`W3)@bch$Jc=2
zjis#0ZfosnuW0{M`{b)HqOly3mi|K64j>>&}|M#%Z;HxP?;Hl;%I2PzanaIC{9h-M!^H$^5b}aayGJTCmkL3T
z<~SOT;MEi(@RNaBo`hROkg`K=;On5_jY5aCtq!1T+y`+YgU_SAxAy*YWH#1Q5s}$+
z+xLCuQm$Ws065
zNhI0Mh)R0)XE4IRz0i=l4)GH@-@zB(4x-LSl$^FsGd`$T#Zy^6m%iNf@y>~
zr~-gco`Ie1oEQ&~n|8f_y13o%)q6j9?wrgxt?qjl8H&y1_YYrfE#C%HC$;kQRGXKv
z@Vg)F=%uWonH9O96q%MfJhjt0Mdk_>IANy;x`bETA?tvkFq0
zs%R-fK?k@1YDZ1MyG3k~NV5L`jVn7LB*_{Y*HJ*JQ>YaT2s#+D&=b*L?OeSc;OHL4
zs>1CZr$I%R!}d1p*t=&XN4j@@18;0h#`kW~`|3~r$*(#_t
zq%gFzFQ7?mu9cmtnt*abf=K}f3JMA!HLXB7CY?U_Huum*BTXksC_C9zH5nLRZfj|v<7W!%`UD?~1jlY-L(bGxXnIDN*{C3#LX6f=780qN#a`ZoF@6FM;;gz7s
z?Ty`)?CiOvTwK@tYDh{)9Pk-*j5hw+CIzYh$Idf;%L-n
zW9Fo}rjx)AKDPMz*^{Q+6dOmQ@qKz{?q8Lijl4ROqblK~#^g56&dpS9%$8rXdxv~i
z;U%Fse0NB7T)7>|h?+^2OPC&@9iD`0D_~DD)&T_Q&VCx5zKLPF;kfxtgJ&Rl3h#ZMm49%
z(~nwUNIG!eXIhhdXX-w&-rY6VG~26hzVz%a%+7Xxa|ge2Tc37epzEsK{#aL5Y~H%u
z*<9@xU2VDe%^c4@9aK(JHj91SGq_O~YR2p=5
zx`MN*Hk|Z(Z>T!=t+BNGOSLHXCsbEaZr#h*8wYT20fpR=_1@6jIepcHr`;LNrMvMS
z2(!>6)suf3Ws$seF;Ya%Bfb?FP&P6tUoJoD{#|*%pd@}AS(B%aK~iSfkYnS45Vek9JAGkO|^PP(Bv;l$;Y$
zOoLOC#+d6yB1h@D1fC;-12m_lG5%hK9*s?>*c+o|bnfHbIci;ji`+!N(^a=Av~1LEC`NkT@oy@#Kr9yL$I7G{b!!>i4Hoj)UD9axtrib$Z%nT8t=@Sl
z^O+3JE?vWw>uO!8wzf9e+IUR+WfN;+an*vNhKDIhS}QTNwFyUjmO4;$DmAeb70y0f
z0RI37`Nv2-2NO=Usok3gd37sS?ViiolHfD@XE9s1X|ioc6-72uj}2K4H!qK-&3)W-
z{7T}gg1S0+7HFUL-Q$+t&Gx?%)<|b)`y(Lg#W9bF(@DrR{D!KL(mS$}qsAM#fybZh
z^Zx)2z#oi|qE
znxhYy+>rJ@*;*Z=K|>NtO;1aUubx_TGs{t?2_faaotaR`agZs60N@JbQh;Om)1j%i
zj43)e{{S*aAD^E~pN>6w+*l0m+osHPX85npb~bBZ&|#oi;lo2kou}W}ZNW{28>bJO
z$5hkQ?>vT1m1KgmA&baUX
zJdwMFc5c(^b4q-`;pN7iTTc1@WnV4!p4F49yHDodc=Z-gRn6A@TVJ7Vp=;K6QO
zEOS!sTuw(bL$>Rrt;+2@h8lb{yOk=|vng3KEbtlDS)8R;WN72;k!$#}N9+WGJgbWN
ziuAOb;LY5mdVjOW{N6{P2dICTFU-BWNhUw9{(Sc`=CH8k>UQ?qsofbW+>Q5$VC2|Q?*#5t)_D^E=(ia#n7>*U)D
z#VMiApSS!q89$#6i3e7E!S4LeWp6(H?fk}fe&915jMe?WlG^_OBk1~nwR6=u{r>=n
z?5)jHvumWlZc6G1V#`h|b2U^LS>>gUa3BtpK|Qw>!rMl|-4P~bp<>4Yswt%WOG8$s
zerB25#ARS)W@HAmpvfL}91bWe{$93hkNy8h%NI*6qcENZVRL|kE2R)^{lszo^9@U2gk
zJ}*&2#B{7kO&G>U`oF{eUZ^kSH}hWEUn)LvcCX92{-WNyFB7|F>&=sn!{c`sUvBv}
z<_BSHT3)=9H$hvFo*l81-CM@Go@$zjKH5xWPCp+=vBxR9F5!jMYfZy9$=2vdh
zZR*S?O>U}wpui@@-5Wo7Yz>8Nl~Ch!^bx%sJoNC*G*z{00vA5_b!grdwB)$_U}VA{2`E$O$Fl~Aczoe69?#!N2i?Xp*eYt|!
zQc+N1==YZ7**P4I4&|fT)#;atOqBJM(q<@Ur%9P<;)$g@{r>k7XuOYDXADRtr1|EY
z8}U<#0+j1RZ4s?teIzLqAaMTxW6SO8w5uW9oprkKxc$YC%Vj95YH}GB$?UkZXMb)V
z;XiXj{AVGNImmO{n&fLlz?(_zc4*9pP#RnL;nE!dd^~~sxSi`zqV%S%x&siHalhHc3n*_#@A&#U-k1p|j8c6_+)UXvoDyF0yQ#CFt
zsFP1BSEkL4yE4jMO)K0u@TPvn#Q+uS|Iy!QlZL4E6Z{^oP!#f06;&YsDLj;*tC6_9
zmKhDWMjBZD!Kwa&Py5L~%CdTNlrb{${@?Xxy}P+n3`nMQ#dY`;Af5RAKiv=E2rY_T&vR#S22W7xeOezR=%*
zA|#xVPx#WG@*b7i6XF5oU-B^j053<|*(XNbbbb4(lhq4|HU5B)@bg;D5@b13p+Yi^c+A1qDnt3vmRkd&#`S9xvYg~I>X;UNs4h&E21N_IN
zcOr`|eAIs;f6hAjt!%!i&1~aMki}PHad7M|#p_*)a%k;@tK6C0=dx0>b5~{Q%|w%f
z*U;rst>xDAuS~Egjz^JMPP!}mM@L7ia2;2^Gq_&EIB4*hO5Be9>Fv3;YH>Lo#f6AA
zB9k+l!uF0WUV&w--`jq&rzK5MMI|tT8B7GpP$EaxLB|fOk;8{aYKL&F+9stNW~Sd(zfgJ>(xG(
z=*;y-R|`vx&Fu^fJ4(NEc0~CsXZL?PnXQE_emiSz4a2!Jw4HmCqslFI+1*_uNhJ}X
z$!FxI$J0YOsH2W(<&GuQN0(Xv5vskv>hkFgpWM|o(KZ8d^oB=sY`wLx@cSn>mfl$I
zq1>ChF}&)sv5fUplr@=*tq%Cu^WbBq-V~e0N=Rj^+&I~0t8}In5ASsA$2bEW0gxW5
z*z}lejsxJA%5ABW#MamDtmgj!+j~c&HscNvt`L`iVe$2h}-MfN!56l%5MFo
znal1zxx~-8`e(E-Fzy|**L2u=lU+4UGd)&Lh|pDe@z5k5?yDA(WR{1>5AdItm)p~9
z&M*+1dHR2x@%uh~16u?6i1#KdEwpk+0kr#99JTl@!?f~weW3eKFHbX9Zq2cq+*>Lh
zuRCWQj>+dYHsO@EURp~0T_sq2tPsaDc_m!dw$4C+$QFX6(T;Jze@o0_nK;i(c+#L_
zC|c*_J$Rp&mm1@tcd$R0uEEaXHxFFD#C)FZ={@t6+xTwFtL_fk-5HF&Pbt#-e;C!6
zioMBzuf|Z8>DWjUQ5iMl!Q^!!jWs;#;)Y_d*W{?F1hM;>vQBnu
z%}HtlLNY@d1C9gFH0ql&d8$0FMyD+fK8p`qoD!VoMl7akIy@%cHMLbZdOfQIlGMeN
zn;Es{N(r))$ni!|4Q{b7kzTb~^@6t`FXDWiDg|h?9-XXm0U$Oytj0PT!fW_f)cTsA
zT!F`pGt!F{w>IwDi*m+c!_>l?N}4+8cLr+>HuW&HP*H7|aC@sC1%4ADC0<&-Rmrsn
z-mEmyE9+7iA?RpfN&Hx-h9RiP${Q32M1W~v%)~fK(t&{`tNAmQPO)z(sW3|It>T63?yaChFXJBP}FMrEwhg5)$WR|3*
zcHLwov`Vs9#?i$R`hXz1v4SGWtdZo%Y6$W{WGjB;CP!M`=8T9BftNABYOWH}lGZ_8f
zHbV{8nQVU9&SU9obK8q{7#KyqZ9%)ma?u{EupYBIRl;t0tPdn-F;-)OJi
zcD
z4y*_Sb^G2;PK15~d
z2ZiZ+6Sqoue)?;pbocWWn
zw*6jGSHyga?hFQ3YhiH}^X@IpO||m?o#M#8XTBa)WqQNk>KZly6;3D<+Pj
z3aI>H#v!ANP!!TW&q|)3w^QGwn(Ay0CYhl7LE&8I&!Li^Z)V$d<9B>Jn>QsDCPr*c
zR_n%Zs(q7MH&$CGx7RJV
zaXSw+A*RLQW~7E3Z}93Gg{g(*YNtjdwp)95Ec%?$K(0q_G}e`2$0oX|0)VRj0m=;4IK!snk#Y6
zp5NvN8c>?kpl3G%^20G;8QGW&aFf2Z;&N~as;vP4*R8$&CVZW$`9HljenY!*T`{sg
zLVQHpy}#B!Bd~ive(jkyZU^OV{ogoFpsmB~dd%)iACr#{*qlLlmzmlDEwl?<9s@hw68fp&G`0LVJ
zXKZ#~deALiAXH-a-(hFBx>HG#q%qATc!4RC&orgBSe1=@lpp7wyZ{A{uR?drJ=2V)
z_=oc2BVAWTTZErZ>2To}!P+Drb@FN-{?htwyu~4bL^>*80**
zr}v&}r>J_jZSU>Gn_7nru)3ClpKoI~6+TC*aJ79a*AzQTA&lI+dT1+Z_J-cc;H8g0
zT`5Yx;+aa(Dww04JZ65`h0uD1%~Gds;E+q)YBLxI@z
zpWZ3r+`E6|)@LalbbBMNYAbO2hKqC7Wj8fssX?Bf9++xeY*NP;o=DrndQqrO0LRI_
z2OrzlnA8L2f5Fu<{Eal#8}}uS-1Ttcu#?Y<&Fok)dx|WL9e&%!U@}`%4@EvkEHc)e
z-MaTAb$`TaWr}8OBMF&fm&RFLn}yJ>;2~^&!YFZElb#}my(gVXsQ{Bt_I}T^=Z>(+
z()H9|7I!aW;WPVwgKO-*&DnEHwWrEsccO3p)6C0&!O>OhEENti3?(KjZPB%E3oBER
zo-Br4sga{tR*j{Zhm%XZgsz~(90Dp2m#Ffo$)M@z)}l24@Em{3>FZ7%1Upl&dpkM4
zC)pcAX-~XTzX3IUXJ75=jBf0&$aPHy?V@aTLgDAjeeDZV)K2vnJg|}}MFR?|l!i4}
z*J*c|6H(G>jx__%Ir#(S=hL?kc0$B1E1Kkbf2+@-a(%f=w{jKxPj*Y1+SyH|S2o##
zuQ`So$@)V*gveCOP}RG4D7BQCzPHb9ueN-%;<9AEVKN0AUKj}LFo&_P{6G#l08S-JpB)+9+ExBOPuZ9ov`-H{pB`WX6~$(KLbTiS3{G^
zZR{uaeRDN^dAI0gsE(+A3d-ZD>gUEx8w-OoD^L(T(37Yox44aEi5YGIq0>rf$HIoA
zRYtDirFi_hLn6r&6lMl8F^G@J_59)%E09p{4;iIiaEY8CGEIL1v!r&f)di#wH%
zsWCfaebj9#3})W#T-{^jx|ej;;r9MhZDi@NSoqroiq8$Tx^fMd>>7GZhWD!`wuWh8
zd~~uwM2LqwZR?^z;LoJSr-~K;*8+gh*0e5iE8D}Q7f>r1HOElL_<%e;X;H$VMh~AJ
zt&{mX_HW1k0F!&C<^>;pbvIY<{`t!G)h_qMZ!OKUFx#hW?%t@_TQh9z3Q7%ww)X^i
zx%Rei3z);z?o9B6&e_V0+__qof^}+jA>DTAcIH`QmtCVZE5s{g=*Y;RI$O?!H4hUT
zJG8k4S#-_?NcA4SFPQSKG0~d-YZ$+Y{af*WDc4&AsXDbgi{(a6E{oZ+V75FPc3cM9
zg(>$I{m;cV0|ym+)fjvuEd~!46l)D`XDYEqzFR96!>U;oJ3@JyQiInXT`G`;Qb4Kl
z>XtrTeFMhxs
z&+Yf4=?=S~Z#HKQUsIFI_1kYf(-s4-qpGHdEry}qSt_dOzk;GIZd}kmo?arSn#vMn
zjTp2bhNuRnt4<_v2lKB@6=ow#9B~vBKX0E+J8Nldj<~7XS!Jr*JG*;fw$o?#-Um0E
zT1@RG=Uu~#lO41+RV5ugO$;t+YRaFyh|}Z)MNrd-OGK`PcXo)OG69Nt1D-r6e!tE8~Y;Zfe|JOXPAeMP0eGSjt*@d_^4%9V>}dF5D#1<480L_N#s_C7y!-
z3<1RF9WrO2V7j$&sT8R61I+oKFP}u?Dss~cG=t;zcrb`Q(*Vj
zA0@h~j#T~h5KD}x$Ye7(Xc{^(S5a4)i8653*Z$PrI#Y=4V~R4RSiq%gkgPn;4LfQ1
zfNI8^5Sa;aN(l%*FnqZB*Y@xo6aCrObod_2n|9aix=83-dgb=!cWCbDFgurWt#vFo
zZ019GCKqhiW45M#hZ7EJ3`8cDTCojGW>}JUk@W8B(Po(4Mub3Kq@4uR(CTFrLI(vS
z8OE&jxTYx>g`4#PtM7G_PM@k>6s0vD9+anB$EROCujYsG_v81%@8%n|Iv=K~`xkz7-Up{~nTlX!I%tex_+w|4aP?vKvLXSjbtr^sg
z6{w|u%TMLgFG0W_s{?ss>j!pVaajF_pT_KLCivRGtx;W
zHhA%sOwCOxD~YReShA{?IO>-pikJ`|6BBu2AD31olqNP2G3`GI{{SKRk1tX49WaE%
z!WTV<;Xm`~`HwGA^9QHDZ}g+Dd-q=J-u>6Qt}XunQ7#Ypophk4iQz?eo|Q0
zC5oRmLT#JC?AvUCE|vNRA6d9@s{aDv7^(}kNEKD_a9_E91~8l
zvHW|m>Y#P5=lm*rGp(3tal5pv;jOi5^-IJ
zp3g%@^HFDBZ078z-x-`ncD|z@Bwd5I_Rd2CJq{f*4ofp3Li{s|e>Q2DlJ;CwMs{8M&Dx!>uteHkdrY@y0)uiVvj3NPv(vnsg6H;MRsC}#9-Gn$DV)Hp0wIj
z20Sb2T={-|1Sk1c%gw<5nUOw*55*T0TGA6q1t
zyv#YuG{kuE`;HoLE9-DM=|}Ne{ACpug`!AL`PUK0Pb8}EPb9H7sT8+QISk>=EAblf
zR}OJ=&AYb7
z?WfOC(PSseZ4ACwF--M6~eJRAI!XdZ}fhuZ0>fEjgW_
zj+uz2RjIKcsP?@sVwfsktxyVM6#1{&=y6Xf^wEW5)Yk4+O4sej1NQ#kGmf*>Z<_pO
zPZeK9n5fF`d`r?-;BvS+i7{1sdZP(EXqAv=9w_IE91bcJqo-$9h`D3vjI@5!wUinc
z!JNE|4Mi|BUK
z2ATf=4Ss&TDFqlKM*6`O`Hztvqxt;0&ymOF`%}3#^#;{U)>5V(zsOR`*xFscg~M0i
z+kN42@#8wz1Zi>GPYI02SJ$*sS60>7v~@KV0c{v>D5Yyp^?LPI%>_?Ep8f0|sq5)C
zHY06kcGmLG(f!8U!fi@@&pv0bcD_R$GsBzRd9B$+MM}A?!7g@K){i2ecrrd2V5Jel
zBB=N0Z40ccAG3-703aT{CAqp=Sj@f~Nty*p5>Mtp6yixZ9bIq1-{xKOTjF2BeuL?*
zuH8Qd@Y^G7((f$nyO+5-
zd-=e9&Q~8xxc(1q$|{&~Lj}08{{R?!9;%-)jNLR9xjY8r!sjYGOLSrCFm>1(MyZc0
zMNwBt9P&p_&mB<_ipRKHs8As!=Af{}FhRgI2gr}*(sbuohk8XALw
zqyvIzMtT!^EBWJhe@j%zKbRK9>CMsc`5z&UkGOswY@OS+djqJV#L`0e+~)l0t>u@W
z6T3E^>8z`zf}*yMB}-dJHA)5hsY^m1hV3pS&_gSlQnWSs3R8!rKVa!~hcrifaL~PQC2yt3GBK
zC&B*!9_y{-*xkU8X5flLM^#3(v~>nIRG7Fc?MYHI<R_#)o?0rnYG~>rA!ntij#_z>T8B|A5(IVDjtIErP5y`8tBO}0JJU?q>~!F)*y;%l
z{Y=zU-dm5sltd*T?fulMo+v+OTGFSAkJ;39!sBDHriP-0htf(MhDM#i{{U2=RWxAO
zk@|jw{(bAiKqvtpVL#{VS{KTr^F4C@A3AdeYcQ?<08MhyBr~a
zw0b*!dH(<>S}J^^_}4M_91=cJ%UJ&-jn>>Rnborl@MG$8BoIEvs4#tsO~Y^(Lia
znxLrv0G5|O;qHZGW89Jd06PBOnPt`SDiisS=f|SM^EddWKjI(B8i*;fbdj%D)?>hr
zbJEw)!kPT`18oEp845E{>gO}01&|S_bHN_>M*z?;{{U4lHLXt)*dPTR#2O7c
zwB(M1U7v)BJFl_unf=e2q{&chj;Gi%O_GOt%|nhggLLj)jZcVJVBNKt4T-+t$x-Bz
zf;NU6UNWfH
zpFYXUOPI&d*U4F5B}7w+WsKfil?cwKii%WlBvcPvkB9(iL6OsTS{i8KmBkgUPH2}FZVVVqz
zEn237qlqf3CB?R-x>(d4lcKCqnY&j~5I`hRgE>^vwLMPQTf+(QzbW#sF^k#nUxM0y
z%dU>6Z%32en`>fb>NmF1?O%!;t7(+V#{^U6vwKS=g{01AHs(Gxbih~FUWYgo^Qi>Pp|0;a80^b~q0xeXmZUP$VWK?AExjGzv
z*x4U>MMFn}r+jWq;3}$8hDE?WZySouZ9UJBsfuZYWJ4l{m=~NORTJrAt&|*iV!o8E
zD17~TW!9pj;{O0w+2zpjwQ-vtdVDS(8ihN)gzRYht7c>_`9{;%`-bX9;!u4&a`cXv!x#ht-abhS1^%TGnSGaHtN
zbU{tq8~UQ2E!VdCzN-};Rt>XDyK8qP4GnD#6@4?*)vQotD&~r1o+fDxEM*!FrT}KA
z1k$+%s%x55aWy1x=^Wq&#!t$;e2xw=T783}m-1`k{{UxfTJ6tOy1L%0u4-{ucB|Ud
zIAxD{SN0w@ibgq1u5!C;?hLNn*tuP&je;tS&E2JHHK%5V1xfvk>?B*;X<(IINYqk=
zor$PzECJIRs0EqHAc6wvqXI{9`Z6T3kigJ2Ku`w?f<;`CXse14Yg&WSli^2b?QidV
zaqdj6BMXhG+M8C6S}gWcGT05_UrCCwGz8YJ4t`ak^uVn!
zd3!6cvGjYpcV;p5c&)p&`j?}tF#FK#P05tS)3p{OapdwFcW3RbnUYDd)f5;UX4}Ki
zWb#u*Jws#arl>K}%Ply7p3NRZ!z#RVogUtDS>C@*x
z*I>FgDUW@J*!!2MH{U~HI(xlW(v;_ZLnP8
zVTU9A;ltFlvzLitlh}@UA)4RmCN1F=;wp6N_?;AiRT@EFEZ-Ny(M)eLOXIGcTDV|V
zoE42t4rq7)amS(Wynb$Xp6BddwE1)LO1Ep`cMnDO*2JpnUa`niMb&$23)0oQ$_Tf9
zH?~e9UDZoXyt{K{WtVVGNq_?>fmI+7)NxU;a_4G>5b;Aafa)OlgYfwhR)Bi4(;mKE
z8bfl=rKJId2LtEk0P`L|^-aC~@)r+Tx$^k#ui3R#-yiV(v$*#kQe(TLdGAi!%WbLz
zOtp49Y3_+P9eou}^V@qut1(emj;L4=`Ih+*>E#$EveT#4{}v51GIB^?7e0q6G^yw@`>^|j<9(KA^|j6
zYNvdLDqNLK9Ca@tcJ|`hqpQkT3DAr=(sb5^!T2Z#1IN2aB=u7}DOIOqdSq6g5AkRA
zVyB^VAG3PLtvYk$e`tK8-jQ^F%KpHh%hr5ytKV6CJ79Ju_1is{fy-^4y`kzno*yB)
z_fK-+sN$oismxVU$Bx5doJN@ik*cZPY;;m%H!l&X3hXP~SOuhKI)@Ghpn*}5(nr+n
ztdXmwD#{O)IF}fw`FydMya;5H+RzBlw{_3lP6aBE%$}myQgYX?fTk`DXXo?N+O0?S3;^5#sp4dNip$|~
zbyZt4bZzbTfjMg2MO`M}-gri@n`dsSyhSBbWHGhWl2p{oOXda>AZcP(Xu(fZ@eBON
zUew-E{{S)2r9X1+91h#v`@=tq#!=z6F3sGV!z|eC9c
z8%G0AHqXp#4bM}(Y8T?SNPKdw+_kvO#@UBz?_H~j+?mbaSv9Jnp?cXFDMV4u?IbR!
zuZ8~r51$?$om7r3s(}2f)~Bhkeotll?rd&%C
zx3Caxg|CAbQJu*D02F%qD%nzK>L{vVtx1+xRx~wOoGTS_PoJRjr7Omnr=<^&-@5lvs_7xEr+Rt8(Dosbic1uTLq#+)4^(qQAPkH-Rsj2}pmi$T
zKh>YNsyZx+QMiAD=00P~s1%j5!75|&Y!QGt42Z59cV%OkeeHV$O>{B
zM=C^e{9Z@M{{XY0vUia?3)pPu(mYZsP%J>7l
zkx?smHtOx}ov4}V1O4JyO=njhqPb{5k0
z`5)Q^M@O8W&#?DLJWp8uzU|ez*Ju6}O}Q#CU&&wO1}-5eP4U^^9d?}ZqnObt;_e-@
zx~1}wBqm5)?S+k$Fut*J2R_U!MoIpV{{RDYityk8$4UPH3ib1)_{p5Z;GVlFRke21
z^)%gswCgt$(aAm=D^s_(RYu}Wj@8_>6?GC+M~uZ&OC4n-lmezGHh#Nr_dQ7j{BhVZ`q&rI??+&9`b9tsyeS5*7(LuoH(t`
zzcyw&Y;9bmU*73xDYog%Z+xY8@Z2<6Do*#@W#W8?0uJ=
z$<@zCwlWl%DtWQhSvH01kg;!iEKLKS^L1M3G~h|-O5FJDcG%2s480cEudM70k62TT
zzQ>@!?G5EsxA(?#dD3G$gQ&3?DQohZPA;z9n7Qd$@%42OM%ej=R+a9P4}SS|y!4aY
z9kbM11F5?^d~e)_dk@!mzRcP*l{-sp_0AzTPTk$PyuLECYMtvY%ikF4YW}&44UehY
z6qGp`6CP&6{mn}~JyXJ)3R#s05@+B?gB)9g&7c-D&t{5FdZRFKvE{8UiJ
z8QG&)e?TA9uXo7$eqLwS*QTOx60b@|cz>0@K98kmS?ruAS>`bmn+mJ1_U6{!xNYCL
zUu*1I9m#;I-2I`HJ94*Xc1~L%xwG4Z?#-|L9}
zS>EvNs+y`AjMb~?ad|k}sD_NmCiwNeRl(!YI^XzxliS;3I$RbZs&n_qTZct+d~C`+
zm%Fz98kZ4=+gSXyW({k%1UsU?c+oB=bidi-w+1evNrq0ZYS2*QYh|RKtsY5UCZ0&)
zWJta5tLi4FQLpUiN#C0h
z#zTyXTsem)lQ91Pxh1KFC@I{{$AJKXyn69wZY)nlS9syh2`TF~hCwRhf<4tuk*}VH
zr|#+3?9cm;%vJrxWDZupy7qxa~TL6&IZfG%k
zj7L-_}imUp```VasG=_dv-XCR>AUqSd(aX82M
zdZW5TuHO&LajE|R3G*EcThF;S?)2MRI*)Z$Q!O6chxlBPtdU}O4)w&-R2QL#cGP2~
z6m^vJZ&xf3MHMPDmGae@?#psJPu6-*4WMza0VI_XkLrtqFbm1!M3q$HY>I0}lB@}U@~pFrtlDJ+q^W9f}@
zld}_C4%G!!i;+-83YrALBV@gm)0@(2I$hb+J5Oul@LO{yN1Ma-R!?Nn_Ac7my=g;L
zLyX(FT6&(*-BcT!554;?w-qHs8*_7{ZBs2ZOqiPUM^8~lIdr!X0isu9QB6SUCBNE=
zQAgrl1L74Rf@_P2Pw3uC<%;RltWcKCaEe1J0tU3e1ZrJGFy*}VJez+V*i@B!UvOb^
zIM}zRU(-#MIGxRt#^Yhnlr
zqWg$zvFlw$PgYfiB&vr{0jH;)2tIA(z|%>k4GA4D5;Ht#vc?roni_%*s)7wNuV-Bt8hZLKu)nC-2N%Wf!hyK1Wsjlu3X
zYwPTfS3OoWsc^7U)lk(#8KD(rY*&)PMul1vjyy>NHK_h|I3tZZH@4kwEeiN47M5x)
z2^nGsb!sug4Oi`9#+?iuY4S(;#q>u<>^+^*A2T~Ar#hD#Ha0DVwRa=ze$Ux3_3rSF
zlD8GVc2{ceTpsnPZJY&Il6|7tS#o#?CpFPir2%aV7Wxw9AH0hFpo;d9gZ4Ejcvih1
z!OX~#y}6a7D_Y~cGSnE#&>t?>BT1&3>gZD2AI%f_to5$tql>b?nC|t>$4^@|G_gg~
ze;)gzV{Ulj+fwAHvb!T6CfvZL>q>3Pu;Vhjep&GOh!SS1kIM`%FTIaOqEFWEg6*_#Wz_9STu
zlX3Mf>c#JBN?MwwR-(jbsc_TOW%h=4u0|34hFY46x+w#z!VGc+b%9Z+jDLsI_W5)m
zij!#Y$RUM6;wehjya)q5ENE#aqNnjy6>8~bnzJVB`d=kf!Rmqmz>c2F3R{mHN=Mh;
zfS}JFtn3}CzW@{;VB!9A^F2@2z!l(s$Rhs$?f$;?q*lFGqPg>6`93E1MF;9^(sf1!
zBOJ8vn(yAG$Cy=rv{@%(Z|D!d94mc?t&StDWyQdi
zfyamYKW9aAXLd44vp1XKTXJlCy(KQ)#qJu7k(}GuCfHk3uj8f7Y;C8w_WtFjuB;h8
z*Q3N#)8XTaeB5-?MIBrM1e8QmT*9T1Tmrc?H8m#$gZ&!kqs_i{RFuT*j44v23I)gn
zAL6A48XV)Kheg&&ySo>;NAOMCN0Qzf&t&ZupxQMUX59OW3qi8-Ilb?<_Dm#vc|B*)|N4;hBCdbp!R&lD)RU_j1z4iv6@jR?kTTy$j<&oRO{EJ(#F
z!lt?f0jU*6&H~beo|oAijTU>P@LMYrf!Me$rL}AJ{T4g7HxF-PGMloq4~MGH$+9-?
z+M&tNM@zIa)za-lgNVo+*449AB|R)O^)+p#(v#~Yi<f){5nh{ceY@N
zf;7?tmldHWNC5CXq~)X`)zdygrL#dVD(1ElrI4S!>2ahsmE
zsBqhK=JLC*KfE^O1x+TL&T}(UPn@pGJk*{EJPxSm)$k}#2XHv@?bTWUE1W0T&K!z_bwiZa8)fmkP%K_mqVC>556Q0}6wF-&i#)pUC!bZjoa
z%EN@FtEI^7O`)5>RkXRfSaKLToE9*xA*K8H0@iJctysF+X%kcuQ-yRMuV$MK)ED;6
z1j+t64jV02UJCqp`8S~z;Ccz~TP?Mv$Bz^P>83Rls0!R!aA{A(zao7)c-Z}KjoR2h
z;0=hz;ixb#PZR{Bp}l`iIpQh
zFvrG(f3|P)^iFN!CbS^`0H$yA^osc%*R=bW<44Jzvkq%@r}6KOo##ZcO}X-QRF668
z?bR(J)KgVSDoseWF($Z)3h{!b_xG_71X4%;0D3)mLI(+C{{VV4{QA*H<0kvSWVW^=
zv9~_!-diVVW;UkY!a3R17<`>H`%7XgvH2?Omd@Qfk2zmM9d>fQgFd@IU`dt4(_ryQ
zwRW{-c2<;a_pX|!BSVZe0)kJzfU9GpiC+2!Do7{!5A}bSt!bbKQKp`O8h)tQ{i}}M
zeSz3`4YyBAf!sNaA5&tpc-PCrwmR1YnY5EVyXyA2o~oC9?|l9ek+6+?g*HpUPe~my
z5>@-P0_vkupR@g5p1o8LKAb1&s=QY1`;LkJ@!5-cns2npI@K(KW?;On$Ufo
zUY%AZ3wGivtFgFE^}4EXJD09kaZ==WMsGJ9ZMbuoT*fN0tXJgdYVtX3z76tQehR90
z!w(^$jzm>mMPyyBl;#
zlc9`N_D)U_xi;3u%xqkREq!NlVPlUCyf>9RSZdmR^#(UDwBV!Kb@>RW#&UX@B#sD#
z4R_j%O-4_Ur=OYi`FiwHs6bLqN2v7j`F#C4LgcrbXZu62YV#YFF#AIZ(_I~~==L_>
zuG(#f!bwq`-FbJb#U|N#Yj(XRAG2Y_Q0DU!!&97moUD<<434u#zA1o=t1%IpU{aoy
z#zhS(c=``MnP{4zgICUJpYw3wKW{>AKDKOK4`l3ms(qKgv+1|{Cv$FUsyww83uo_b
z#ggc1+;3rScFb~c^XR@X#vqe#8lwaaL6_EBiF5Ht2)xCZvM5$QayIr-5FTpsHDbY
zapxmLhoN}uC!vZwz%G$yWZQJ3AyW-aGnzVh5_uTJ(Uo&^S*+SCfia2WchUx9I*)h<
zDm5)C0HF#ABxkMK6q#N!n$?2T{wxmCe-;gLe8~WD>c}uXzwyp*iM^WDIqiXq-rHvx
z)mW%{vuV~}m+j%QFsK|YS)yVKiJhMk5#67p(nL?uw
z3~gFaD$r!G6|0Yy1!xUH>AQ35u_`5E%htX%xxN6KJTK=X1g+ulAf-QZ(!@|>mbBopf0%T
zRHvk8XO`o_byQ4b$wpH~$WS|uco3~x02F{J)nbYu;f#-*1*(xzf@^_~B1aRDPejLa
z^@nxupOO>wPJ1_%{`l8bzL_fG^VMz4e&U{Zv^S0FDCv~xT41Enh@VS1
zQC#GcisFM$0rRFaN(|T!4^UE0Df#)-*N@rzYr&spZrmmpaPK|M77raR($7r>0*bau
z7oeuY)uujaAf#Xx%gVJf0ygd-m
zFA<95{wnbVd3>>v)r0K~in|i4VD4{}^jml3H(X)=0K8Ay+g~TY>+yS*JZ%=?qO6Y*
zitnxaPrA2tKUi+MU9PvQSQ7pGe##Uv(_{W=IHRr0yU)O2@as-v2`n4Q&H5I
z8KqUJsYqi^wPvoaM9~QVp;`c^=UNIjeP~v+H3OvV@q9$@I=!sPoVWKDjurm3lGyh*m&?C-F}mBDD0>YCp@-FY1lpK09p}
z>pb@B-;{J%T!ju>Xs!*S&*`-BdfbY1Lw~xFMFs?FjcIxox)|D+`&2u=
zl22uK8_34qPY(vVPX-kP*E!7zrDU>VzPPNBky4z*ZY~7ePZs6V-ELLxG;3%kaOp^Zq4a3a~
z7lIp(+pxUHUC>I#%OKjs5wz?;nhUJstO;@nI61)rZ1OW$MR?APT73xV(pwx
z2dlP@8*uJCT{UGMZ#B609&<54yEAxwr%e#fOC?4>Zs6!4qN$FOGU2YUq6q~}Nb{im
zzv2G?4_avnDrt}Pf2;f*S0`lkcX{tV@!Ax7gCo_r%+|xhY$n@#s~M5Z?aHpi+y4OG
z33~FMb*ETvm!ZyXX!`dKwGw40sAZcdl#!)X8$AtNnj9MRkZH%}JgHh9KjG??T7oP7
zuPXKb)ZdzyEkRcyf;q%>BZj1?R;H^~wa7H{gpsU2DhmGqkG9rW*w8f_(BS^V(@8u|
zbcUn)93R+va`xv=^@5_B3bM^$83
zQm!h!HF>JB991;6xWW2sP2{YhU+G=|)l*EP{obQmkMn?lWcJlsFN&=nubBINN6(M1
zuT1KAF!gACe8=1BK74(BdU{7m5oC>(<8@a@MhuRO0ajL0Ln{MtM+AF(5I`W~r@;gQ
z4M$bk^ZqDsS+9m2r&9VUI_KrrU!_}p$)+D~zOg%lW-wwwjH5nHLl)pEBlGR4n5MSrRMz4VeTexi7x`4$fU0PiWNb+aY18YpRApXnFv
z0C%6Tl?SS1{{V#v^u1qh{{SYBoj9txDE{|pb>`OX`Z|i7olbi<6;Dp~9@XD9lNzT=
zTy-o1ZewfVBArj|%EORt?PaL5M`05?$%Ckh58`j~arYB`5-bswi<2HV{`ey411xTDEc)a9ejR<_NcuFpZZDrH#)Eq5Lk
zo)Xn*Tl^}Xq#|oTpcvMiIw;3hp|o#%h@GHs`XpDT~S)KG1i
zYPZZ-4!!ZV-pMCtMYQVj1#2WSQRT6t_BBe3_A*|9YvX=-Cc7Y)!7*S$;D$K
z+gMHf^jnJ?J}znrskc5Bdc2|quAqLs!(}O?$Vo0fx*YMWrjcD@rHkJ2*18r~4HQ^h
zoes^7w=T}2$n1*$0JX2eXYjc#sj&B59(OI#`)>o8-B};*pI`26vKUk3t7c>ZI!Nf{
zSDE2u*IM)W^qcP8HwMrt1*rO7$1;U^Nl6U|<%$)SwzJMsCu`~dA{{WMx
zx<0?&9jir<-+v-D_gsIYO3u67eYLiFJa4K4x3M%B%tdYo3%dKyDTs$_cKdAptd&kX
z3x}enp0gYLLT0I^nlRMRvOp;?>A<1%<4^W|Y0&Ssu@d#COJZYQxZM?7
zKEGt|&AVA1*skl!%ztFpcJA4ma!Hr$-MdS-qwBbKo>yyCwpRgFnOa(%y%QOFySA$-L$|TmZR=OJcb?eFVtK>~*nfas2wwT_IHP9T`odkLmrr
zx;Dfc&U_BsrRpk;>9cWJ%;Ho_*0h~Nuv;Bdo~P|x*KB3-d0p{8V|E^Hl;HDFVT83<
z$~a=8tjDx<1?!(qylYH#SDV_8ur}^#Oea|;+UgW9qGHgAow`QTL
zuEyZ78*y+|b5>J{ay4yNleDu)uVmk^TLUJXI!5j;*{?)Gs7lH@JWhI|u_3BYvxw_ik|EXv0Fy;2{+@)Bk<{6F0o5$73MLr6%D^MuXfK1cOvwq=6(-^Fh
zBx$L-V&>&7Vrd+JJgRt~%jKSuyNhk)qs-4)ovE#;uFq1?ZrXahzCL_SNvEiZDXHsm
z)G*RbTVI8dArL^3MI9g8!W|_ZCSqAF&bpRAD$<~To8`p(yt)fr?n`oqT~%_Wf|3WB
z2DAuik&;OuX~7
z6kEKSR9KbCG|;@BBuzjM@RRw0Kn_RGpmp@O5lb+?vXI9REGT1RhS^_v`sSZg1(#LV#>DIf`v82T1F?f7V8+B}K=F-?y`7MQv
z?A-qVV6$zkcH6`6{EuVpItg2@wzf*N#ap-+dX2=X-@E^CPAjwwuy@KV1C9h%K*
z!B`YfQ}D`EaB7Z<&0g<|54dsA>>P#@Z|$fzmSZ8dKhceD6RkUu7yTsFKJCZmYxnNj
zr`Z_HhA$8NPalqkuAls>h1c#LTI!kRnNjkOqVyBA}4S)HNd^>8LR12hVihTYqr!+raIaHk4a0
zGqiENg)J7`uc5&~xHJ2zqaU|(I})#Ye;UYOu@lRMs?FfDJGz>Ze0s+=2P+EF)GchP
zR_0$7V=@NR30#6`1xPfdPC#I_t{HME(&+DQO~OOs>M|=7sTHEABtDt~MMAp9PO6Cz
zk~Dw^X>Ayvd1SWlZ_@0I?Y8%|bxt)Yu$f$*2DYykw`%d#+b(>yCgiWeL)W<|>Z&U1
zA`xU`z|D>nxY%mx=>|NNGB{|%M64M=IRNDGr7Ng@RR*Mr*P{!ER)JpJIywM*fFiA3
zR4Y>Bg>k4Fu~OQ)N$-z}eJ-@j7JBXK^*#{{W-19ksGE8;dW1l6>V2
zCv;%p%+lp?RJ7HV6#05;yqt9+rh_1YG=azysJ6e1#ua0Cz%(RN{h=5>VAFyAMjLl9
zMIE{b1kx5&I(3Rrf4{qjvm*?{Z%%(rJ+ODp*<6m`e
zO~Tnq{=qWQV(aPpTXF97p^p{0X53WOGvxLLT510CBS)(lQzO)^GP#6hWsWw9wO96&
z=}%GT(93Atqq~9;^*$z`Xv{z)*Wn|MpfG-86|Y+^e|UEMcZ}t!V=%B#;Hq9_u7BgkobnI@;4x{k>~h{NO0@^qxUPkZ3!+;v#`TD1NlJq1lpJ}QC?KWRr$l02yllef0wR#<9K)Dui`$N4|Q
zj+916jKH480>6>t{;%`&R1Fb)F2cp-Yc{iP8r`?MDQUJ=S9w!!&8@d^6`1Jgb`1Lm
zac-P;Gk0WrUb>Cek8a6_87hgZ>gokVkw6Zj>D+2_rS#Mq(uAKn(;9r*v=r!5x7#yE
z3Y`X4R_!NHp#x5eikS}t(^5$_r%6ALG}F@W4%?~E({EZ#4l}cHdn0k|#M^r^w{vHy
za5yf#e6H2pxvJg4wd*!^S24IGq1;0?ji~-1{3?V|$sgXDq-2ti(UToD8l6=%uc)9k
z6spkTx#3QYV}@0b3D!Xx0Hrj7)Tkv`lDZh0Hl;Pv06p5eFt3c-x#@Dab;{#6HD1u%
zJ$X~yxeU(p*>LS0*pcNoWP4{2`0dMwUeD}2F7TtOp{B&;>*aW(j-p5@BZ8c?@g^-Q
z5ZXuuSRm4BD@vM!rD>Xh_MGu^!Hz)Dh749kG7`(A(6CWLHLz-pEKivL0gze#TW)&h
z>)qvyBdP;mp
z-)AT@nHv)WgVl%e3rdJ1tmI@l2H3okPNR)9=(^DpQ8%>z1#I!IZ
zbkxSU*GSIsh1Tp|#lu`RV>|8FNqMTR7&Qa&0x~|s`$3@{7~Q~^&^@j+$x0vLAmII@
z`Hr6;nJQ`N>S7Ecse&ov4Q)!YpluCq3r0y&M+A;N%1Xh}9ex&2!|WoXsO^-aIyc0m
zgZ6_%({|*=rgvy>+zg8&rr_(I#@p%SY*NSsWjyz4flX
zd4CyW#%;ce>I~j8mjjNU9UNO>vUt4pR2!EWQ@lUCxDB6Mm&Qv;RZM4=ouzzaeoS*`
zYAJG3RhobDR%00c1wZP~5A}KHq^(^{IurKRPi4|>Ex`SSyEk6l#BLm4WOerH&sJn+
z>&?pjle+1bZQ^6XZrp7pZ8lqXZ`klu5oEIRM?p)3p~%K1s$*tbp&E`&bMiI+09O;`
z*O(nDKp*P=09HMESII$&+BDeQcFWqBEZuECNn`4_2HC|yK}FX803WNirtH9Of9|%{
z>@AU&z{qB%&f}-6$5GI#)NTujE2^cAm`5hf0H6T&{z8VhKkBbqi0WR)z{Jl
z%S9RufJJoFHhy2~{{Sx@J$j?gl>Y!%`oGxft~=MKdiN9GSzO*W823k5cDC)J-`jGV
z83jFNUk|so?h_a?6cWKMGi_F6yI#99_f)gf#Uv5bPgAa?R(Gl~w=k&Iq*1F({@VHy
zf5XztHUdNr2>^nB*!A?|PJ~^L*S%^w>1OJTWmeV2b?#$tW_ymC3z@Blc5aTp-T9@;
zLsh*o&A2LJ+<8>nbN%%`Ck`h}21jpINYwY5Eme)RL>0IJpY?IipzBw#q&H9DHDhWr
z*N6-&q~zsz9*rI+`v)#;%~mhaE8_dP5wVaP^?!L*@34s~fUEjpeqc+|1$XBiNgxVQy+I
zsV;U3TE@=pjk~tDMk@`PuEy5n<%x4U!|%5!Tx`^armG{0tD1^uMp|fC?{boRy_#@H
zRETgR{q%UN6J349QiCW;G2l8bwN!%nCT`s=eYGuFg5m+?sJr|Z4!E8c^1?L3^LJzuwTJEIX5WYA2p-EY>x
zF}qiN?as}m%w}kptfk!>k8?r0Hoo~l1SsDpAm={i7Dfy
ztY)S1`8PS82D%c&5;IYx@d`omI0^s>N*WHmABNqy1J4<+sTBO{n*7f|4qq+um%Mi5
z``@d2u1Y92MK(hfxO1ClBe*2&?Zb)BV=&m!jjhGxBgkj*w3$a&rJ=2eM~Q}URJ2J<
zR^cLE6jo9^KvYtM;Mb3x2s|oul1@DOd7%tJ_((tM`$a!LpO-~R;2Y4aJzL#vJdpVIM5zAtw%>|ptlC!>|Vd5-&^T+2IZG4luGQhvCC0kP1T#nt|6Z_*SQ*v
zmw?Dml-acT%w{_qnuVivtddVPE*hSOh%_%&ajC09ha)v0ej3w(r3w9j0n-6!2N1)E
zr7P>l%hUWlEOR?kytb8p%H7Rg)T4CoN^Djx)Ejb!zjAH_q}!vd_U6vo9cfjOs>-b%
zcX@C8t1e3y9aU+jp=k0Bk7>Q=v+0pZJU`R`^v@BWUah4=3gmyQHU9uVL|5eY%##z{
z6*!o&xe-}O*ZWs*L%3$$IlM02&2C&BOXKr3SS&tTqjGMHr(tUkh=Nl*MP2qaXe
zN^%{nfzYagLvRMBo>ZqAsr`U;R?=!|kMe(z^fz?($J|b5s;J=0?w;19{{TuGI~Pwy
zL5S=P+p@OJW3;#UbAyhU^AJT?!Ls)?E0DF{xJ*kenj;}hA_faS~s5$PBiuT^kkbMKUwXZ&VMVL%l52WM=!AVHt^ZC
zeRYl5xq4b$<5uomCt!50?>Ha0?9Rc((aT24*=pHnBde#YiyInN819%;6+U9M{{RU8
z0B0RJoc*8buS$KV-hFF|ldiD29rcXFX19jMt-;hqU)WigKKHF@GmE|O3DiKj6?q88zMbZ0HZP#ub
zzTVwS7B-G;m$Y`=dn+$rQ3hVVqP=%Le$>KOZf(j!}RgnKNz|)k0syky{Owe2fkYs
zwDJ^{+5Mx{TYn|F=G?h`<-I4Cs+%3Rs3emf@?>i0XAsiQ1WBfLjn+9WoI4sQAc9SN
zhBX@S94qVBfDEOURVoEZ1QGfA59ina)!#C^aP10!VXUsl)&wjpv9)iEvhwk~5l!Rc
z`)Wmx=KkL{6UaNQ%|3J=;q(4|HtQ6Ej-Za9e-NjH2gFwHKM$n%Zj1UxA|-Q`fI`|{gkW+q3$2gKhLO>@9{wE4Mr0)l$DoO
zoE|jKPzCG|(7ju^lzvqtcDFY6p*G#bjZBdkhZfhM56VEl$ez98%!ZE`Vd|&;eLv(U
zriSg9q>VgVM{#57WRS-l9_*V1v?`DAeLmk4X}aF+
z(WzP}k;wUBG}qFMdc1O(u^ca}(T1Pq)L-Y+U%c%(b+!X&VmAFOnx?6bDVmP4oG~6x
z;S_L$ikBc*mR~rEnnTN~lXB06w?x|QWtG>>U3@h@qyedi?G^cP>CdMY^=)9EG(%8+
zVaTGNu~;9M9*9TtCEK}-x5f!`nHs!?Vy|R(FURfelBCV$VTwF{J8X7d9$cK&TWDaGzI;;Rj!-)K2?I%B)
z(0X-Y5z=I0l+C`qP#v&O&AsSO_Fl>X*N2~K{x>G4(dF6Zf`#a>laR1QG~
z_x}J7X~DG|B6IezAK+e|0fsA&^?GzwzIAo(OR~NXe9!CJ{Ippbef9A_mv+)ptW!x-S0&P^(5|I+xZs0g6kEv$iKSp5k;hRyJGfAJk1BM;>e?8v1bwH^
z95{LP@%#9xmX|S$UA!{693)$5XmYFeS(?06cHo-7e&D=RcuIfanH*MgA&$wd5fpV%
z$gHxnBAG3q-=c%no!~dEPVmd;Gr0V)sN5I~eH6P>50avv?(p52y8L)-rsCTaSa_*&
z*y?=dUWQD}wAK|>Rh6LWvVi`tpdD+=qaB>X%e<>|_0<9r`=&aL;hn%uRgR{_<#8J-
zra0u?n?a~CRoMJaD?eFPK{h(Fo;n%oDJv@>tk*p}@9)I_07QPyy~3R1f?)
zG8B+aRW(vay5w*lmsROU@!x0XG24qB+5O2;jHUS_xU04mUdqW)%}2cOy?@fpPhQp7
z{h_nB7HWXwv7L-IV$YZCDoX0imgJJ4zB(yn6Nd3@)icL+ojwY9A4wXZ?3bFnx}j24#eHNb9&YE?ER?@
zLO#l$e$?Q$p4N_=b(&{O4}YRa5s%U2kQ#se
z-N*JDr>C)*x#!1ko$X)P8%M0SM#9F_9DX+wU4X!E0g<5F_-?aT$!2nuaZgi2wzmy(
zNrv-HRV6$c)ZR>bu7w7gsC@={S7m8yXt#EDk8bS!qB|2aN4K`_4;_%)TW4pA>I{C~
zTwhS`joG^~IGWw%PnhhAeXp3QsKjF@pCb$7C#J}GsOu2NTD59Te?GKJf3^94v;P1U
z(}#ZSzP+ra*t;IOuLDi9H-}($cVgzH!0$T!-?cW+Xz#wh%EzAhAl
z;@sVP+jTpJC)-;)6-v85BLz2Q;r4|#`q{NryUz_zE@u*$ti=1OuDXVvPy&H&oC-Yn
zbw^(kL@wCU}dI?
zOvXVMA3Mb?Mn4?$GL>IKGkdF!JsEm>YCnxwo!_@!pyfVP?ro)?k9$o`Q-RD-^zPfQ
z#MCeMOC6r1imGwjHJIF)lO+@Z(t=2e%OGf9MwsapBc|n$M!Ju!Kh^8fA8zfuMLyk=
z9@Th^HZllswY0gcX5YzHVfPkW4T_@613nD;cy#yB$72U)eKfPl*Wmw9b}U3@I@O-
zJJKH^lGPQ&eym!9`b2;_CyvFpD}ieSZ6dg;)tqS4TIrJ!tsGI`A(^zTC=W-^J@5y2
zZ7knZ$Jx7+YSU-FP3(xU*p1Ogvzo4bgSi>1FqrMFjL5!LtE{%x-R^2SYHh!UtK2iw
z$M+8>nnkR1m;^tp@x9H&cGI5%)yZ&5_l#DRQ7L%I)ZP#*MFlC2hC6p5rM!A>XO*Oo
z)-VYXqg1kz0O&v$zeucyQOu90wu__z(E-5qE@N;<+Ifm9&E=KGbu(qQ?&1^WhC_69
zegcjNF>qqHj5YODvsP2>T%JCrhNhZ_f0=Z9l=i$QUVe*i5jGx
z6yO+8ijYa|p*;kyd2S8PJKLD8nM5;!Rz(9&f=fs!0g^J+@hPRE1zE!iP+P!l7e%4K
zZe8zFN0P@RTX!P6q}Fe!u{(|MnCa?q)f;K5BC4gX+q-t6IQL{Ve``-tm9SOgO>VV?
zP1bdhS;AHVDkvx#mGkoi;84^6K^W*i4&0iq?z{y7{{RT8YgB5HtPNTLA!21(01Q=9
z4NPX&?+vH5v(;Iw?OyrW`zr%3K3&_ou{78Q-`zwvGX>9AZ)*A~n(Ca!@XKamz~=FF
zYgEY_nsu$FlkH4WISh`1G!uA@og?_X$Q9E?sG;>E2DKeAKG!@p@W7!bk&6UIB&>uS
zMu6$l5gM0C6(Y21o{a>Xw=uB0A8_p**P72zR`*SIHw1Tj$%Vz!Quc;PVi^9(s{RL%
zsl#rL)$Dp)K1RQJ*X8lhZVG%RayooFnC_?F8?Ou4n@6(4Y(333D`ane
z-|M~O{2OR@nru$F`^?_Jq1bUzP;SkGxZABW7;IGyEp)V52F}v%c&cS+Dp89PX-JGx
zK|-LgLZs-cVXIm&ED1COY12Voofk1c_Ve1t9x%?ax)w2NdI!}~uBE|ZKqEnnsHi;`
z9lJJl=r??r{I_21${o{{tHsl$EEU_otv7~$W92bb-Gh$J*J2^eV)o8scHy^y!r}55
z3hJt8Ddv+^AjeQbVpAkpj-p1=JwRm#fz1g3jYKf5eDxF2jHN@u3{yEkJk&ae1Su8L
z%oMJs4gn{D*2b=xj`L6jZ0*n27)(Y&
zyK_+2V0yyyd_eWI
zzLh104}giyS!<#e16sQ|U4JSRIoV$iPxlZjA2MN*c;6w(T%c
z_AgOk_d4M-JG%vj&c{{Z>@AtRH#TlPqx=^mjiO2n)Ns^MrBqoX0xgQ^jNT)Hp}5m1
z#8d)D;UEoqfi)EdntEFW^zU`!%1T1@2To&zxV!u6d;
zTGmtKGaXyG4OJHR*%HsWYkJPNHM2VF2TNPI_dR`eWjA3zVZ)Wh;xiajo-B1XFKn#I
zGG!_0VpvngV|hG9Z8C}#JR2-<2f_!$r;S^Nn)F{Ac=LFn^js+g8h||+%@i#(1)*ea
zC7y&7)taKO>Pi{<{{XA^Cg-BVS01zMIQrWywCU?|_&lCl5Gv@mH7*W4^CnXbHr?zx
z`0460TVA#rs!WVIkP=DW2tL%F3zhMuNaUep)(#Ckt4!j!Zz_Gg3fB0o-O52bERPtG
zUk6KkA%LOn1c2isPnK)e>VL{V=Z;_JPsUn?>VD3b8(9(K
zePA&MJUCO&%a8iFbyqnIy)86!@K#oBoGVdpT#oIpqR7|o{6<@^H!kJdyN-)BnCvdA
zrZx2yJF{ifQAv%!;ct$sB0J&MO_FlIpDr~(UX>KpM
zsWch=k1lo$bzb7ZH7A~WdWyx8WPr%gn9m(;;D(^hLP$BO;6M~O6w|AKs^dKbUiBAt
znA}JHDO5$M)7ec*O({kpwb19{1lK)%2Yv*1_e*@T_{p)mT0OH-h1?Z%pWII0*tu*b
zM`_pWKHu6DloVU%2-|7187T2MD!hSQmIg|CiRov;*3!#OD@H-~6}*X}lp2PJjAS1n
zT#WwEGf~7IoMyjaBnc*ok&a5!Qj&DxhB5Ovp{WcyUhaOqO|zGk_RfDllG@exFhVo+
zaAfec&f1ohRoX}@G1VH0XVR{+1^W7~X|ZpD#r}r(PtdXKW)<+s@+TBS=6?yzC`}RW
zdtBG?ePnSc+!S}J@Q@G0Kd18Z7~%(9cGef}Hx>?-Y|iOKsLW$&CrL7JOng-pkijZR
z6<#&n*u^3Axg!4n;csKzbUBGB@*n0u;OHSwnd|3AvQ@U+8^dYOPqpds8(XpdSzv3X
z&g1s>Z)t1V{nb&kW1`FL{KX^{nS7L3S>C#`o|>Xlf}|^x6sa9cD=UnH8sJig?CFOc
z$2}ODrpxXf&9m`)wkln)`)7A<9kbX|?QPq(#^Bt!2{)!cCA>H6J4&J|t*XQ>2N_G-5Yw7aoKZmc{IqJG5r^dGC$L*>e
z=Tp}^CwJg5b(8Me9=DG#4#%LP%Hu1j=`*nHTCDszO3b!O8hUy;e3}
ztq0k|%gg-zcC+Q3wCx6)`qJmlEmQZc0TB@p1UQB>?y182YDttJ-cViWHU7D
zO;c3=0Ba>JH5xf#6KpD~x~geW`SJe%SC^+sZT>c5J3-BOet$3U^j|kN<=z`}uD5Q-
zrmSjO9?z`WIo!N7V=s)}IXop5Wj!@+OCh*0f{SD3Fc~z)Q_^56iKofYQCP^5ea%go
zj2OiO04rMgWBpj^UD!zsa+a&og=v$=B#eH~AS=;$#pa@}udK=Bps%LFZVbL>b5-D}
zGP#{a(E!cSmJcZ^}WlwytZivRE4Wdc3A@2Vc5(7T}`Ey#)+oD$v&M!%|?M
zY*5n=J!DeBQCk$+l~}_AHR4hQT-8_+@~53ougaj)Ij2p^@woyhz#~8LU+T|IJBPD3
z1bcO4tE+=>;BeG*nO&z(mcU_W$zdq7w3Kp%gCk3ef;!9;xoiwt9!OxRnpjq%W+fF|
z@l20na#Mua7Sn^S(-GQn1Gf
zSd=*wvIGXSKP+ao&zSs=M)KRhU3@1xX`Mp=@Syb{G6zMEudB|^-Mce*C3SuSabap}
zcZSu?iKNQGjir&X*-fn5qLVR(s->#gk+oZ;M6e-}awL~h2+;d|=9Wm%vm91{8dE-A
zS*}3i$IGVD(F5sOS3aQs05U(qda!Dbo*Txu50Axl&-bfp?!2b)j*}&j+WVC;`+sy}
zk#Un@c6P|#HFR`2{El7gyu?0bAjnohUsFw1S!5E%(oYm`N2p+OJm@HDM;w1YKCJdP
z1}2ngFz^lJYm8Ud(~dAP*AC16U0)`86XGQY&H9!2<&xR5=63cEaBQ8g+;sbwxPBti
zc5YedG1)HZ>P5oQQEl2C$-VL~0zl@jyANC8i$rN>_d$3RmJ#R5yfd7E$2s|VblHHl
z6u9I5tp5P3=h0i+vUZkIi>tP#{_VZbvbIRv6x(8!mvU^j-1}Q-?Y*H{h19
zi!FZR#?<99X%z+nXeJEASL>4U6-zD8gy*=@hLs#~^QomcSNuILg2C=Z6$M2rPcGn~
zpP6C@^WmPBKOtr8-TYy#$kxfesdjx$cEE#t)^$>B6wYC*nzL|KV|S%M-E!A~vvSlA
zCMz1$a6^p6m?|e&r(putJ^kp8ztrX2I$c{k31!W~kJab$X
z;@*p&mqh}HZ|`|wt=yRx{vEQ?d`{lU)n+T?#^Gybt7WXjV>cZi-p0)pThc7E{p4~Z
zc=Z$L9@X1uxv4TL2JPpK4khzmv7YP@pSmQnRh>A_I}>mb#Dz67~FMMDiN5VgKhoo
zah4b)ma1uFhO#?NO%nnsd4-K0+R##?;w16;iV9QCym|;+^PHkKJ9gFMP_M*VhNRYv
zx>Sk`A11*B8uUtg1A1=V&%Sql?2|1=mX|KuZwUz7Q|<~niE+D6Yf$Z(<%j#lKIh6%
zGbPuG2?PrUQJnb?#W
zQ7+=fW;fSlW-z-G2DvK9^wZK&?0TXKRnm3|JL5vOOUNrjtcF=k&S_Pe}m&__Vzx@sCdP8Kz-3m@p$BJ
zK9@e#{cXC?!MCYuadOT6607`=PyHh=_SXoR;aZ>AwLjqNBJGO0r}ETN;_2AMq)U>U
zA-XG3kJOc~nhFJf&B8j5z&`YM3*t1SqBQhC7ydd2UJGWKA>?nLX#W5y{{RP1P;IJc
z&__LPLU^xzSGs6iOcY!RoxPOF{2Td02%4WOSqD>R@;K8jG^K16c!_B8@H{h6$gimyhfvUpLxpSD5${G8
zZ|w@Vr9}w*$N4(qWLF?iNwYJ&D
zZf>>Pwb`mnb$;6HoW9!K=+V>tzCK)T=B1>r(6oi>@{J}ch2A+tXw5oC6oy@3LD4r>
zqtzWvOS$^1VbpC+$DE_xl5eKpILF%%!Bsx^dcDO%w6+%8rJ|Mz>++lHX+wae%+yu9
z^xtbs6t7D=7npn3RrBh=y4D@hxBGUUqi&h^PU^=W!W)_9JTN
zA+Ktxd0@;YOCW2oScx3sDd;K;^3_2lDQ*7%gRLHy6Xc>;BdNz48j5|*jGJR^efyn<
zZuYiEc*(Z6-WPe*Zq3iRag=xs*_`XDie<@cxZ-IS9Ys@w$BNGhAx^sWIuNtc&y26z
z)Lnm)Udq7YGnwt_)%eZLklb-r?n(PQFC;WOTDN`f+#O{s-IIfo81mFOXD~k3#5_~b
zRa!`C52`x#4-zTTvkLP~4oX~hCHG$Tr^DnnEfzYaJJ!t9S$N3NTe?FAm!?QOG)fG8tdrF3b4cS{u
za#GK*`@Wj9JGgOwWkExi*?XI5#X}a{!q8D=cLqA1mFK|2STHs9vgIjIRYxL^Q?F_#
z2l;U68&{gh?W+B=oT{YS8SKAaU^eWSOg1(uPRQMzmDT%KDU85nx|b7EipOuPrsC^<
zwd@&w?{aP$NS`4-;G~jznmE>)Lni6->b(eisrx=$X641?aXqJn$}T3dd`=R-vZ}Wp
zM+<`7dsatTo
zkfDXC=%L6|tpJjFsig>~zwk&2Zp74&l?R?H_5th0fF6!E?p#}-WS0F=0s}#Yso*Ho
z6auVB#RUK*lp6isIZnghJBKj)?{jXQ;g?KaJ!oOw*<{@H`@ee4j~HE-Ph6Ff$&cIH
zXKvx@34qTkP*BoA1U8YbsG=)|k})QwAhF?EX&zb0BZ0ur0Zx+LZP8oYy|{)|Wk5TK
z)L4K)G^(n#Y6VRP6Iy^Q>^{Q9e0l1;T-{rWqkoYbvXgQy;_OO_G+p`EnW%CGJk-^B
z1*wqiEG8QX1W!*xVEIb3(w
zla@@bQ!w=vFI7o2Q%4N7@hk;oB2rP^TuUp3Spr3xk_|!fBg^DL@~N*5f!9)7$^wGg
z^-wh^l;Cvg9~m^E;rn_te-{2UZ?BS>93~3`Rg|IF&~6R2i``qgdfBo2Z)$zDRaAf7
zXyB@;#K~K~H#hMTwD_7CsWKD0$y($`;f#j&ozZsKowSF#&{K~jLOn(y6GiIyqOASgnNx{
z?=PLBJET_9+~to3YHDo0EF9XCO5Jg(O3oy)Se?EOEJ>b}k0pT?x^S+`GT;cC-(ZJpP+cKo=E
z-g9Ve`mD`n)5+m5+a{i>Ay2mQ+olR?n4%Pj{@V*Ymom(5Slm@(A!7nDiX*8|%nyjK
zB&-kWEF^>6di48T*3iPTTbT6%>#UGi43S2qMwURM@RtDe?Yn*>{B`X7_W0SmRvh0`
z{PL#V*=_T-^7&k5)!KUxYf^u8_UdhpzT4eximsl&cyzyIQf6yrtlYG8`5AVyQ|Fqx
zu1a|6so28Hb-7z%^%RoL6;;3`i-66lR${gBaD*vj;(#L-ECTz_FFdm}_I?~2i8`uK
z6@JnBZj}mGi18@Zp)XYhO-6RMV{u{Y_b*=e9u|uokm?#77hU!*TyFipMThLJq03fg
zA^V-tP1v{$zEEzyrN(9}MjvmzeKt!c1}7}|SDw`7D26t30I1M5p*3DN3`#fxsx*)^
zxlmn*AQoL<3iJfI+Qr;=v0R~D>NBH3)uJt6vY2E~hBHk{tx{wWiRjRjM``b^P
z*wihsw=T+$`2H7iS8a>b9{SZ%D@MsFG5jfFf-A@rSHj&Rv>%p@cPELxQm
z399}1h+LN7z*1zN8IRpK+`h}tZ(k12$}LR}E_ou^xvE)m6w_1V^7(9)B$N#-Ecr+x
zMWvP1o-GSux%y~?f*{PmX#{Ym5U0|Hq~fR7qASQ%ZQ*NbNplTMYDUV>Sl%Bxwa+L&hp=s$->!1MMf!TNVP^Z7SeKKy_zgtSVN8-y)KcL?=K}!1UFL@6VArJoXzkgzT#Qy@RfngK}r+w(jQG
zJ$*k{?RuJ;%DtSmyQ2rR&f3FOZjI(EbGUrnCOFMei>NSO3V$k;7ct2L_;aY#7X(#<
zlf;3aT`ahXtJA|VNmSaj=kH|d%kMT&w|WQMS5v;<#M#}
z(PYp0GptD2fRs^!Ge*pNPFaW#mO4g~38DNXmEsBU+L}pq+FG(SsO^wVU8p2b8nqzh
zaiMDZbrL!~bw4V4vwrM-o0DF~+ZePvr+h~i*WTNgKeDoT{n^^ndH1aj=-QIOF2;u`
zws-FD$tG_ryR%JsL^G*W9m0aPPN;EY8A7O!o7G3c~C%RmTr{Y`T1jj=(T%hAe|SYF%T
z`2FpM$;*?>(C$Hp{yDaG2Jp=0B##-raNEyp)HP)-L7}H@yttWE&G$8JtwaG#j#V&9
zsZuBitqTA$2sq>2QRF&ZXA=0*6pyr&QltO~tqZ6bQVuwsbq16jE`OJg%PooV`{$2X
z?=0;T;kHg|YW1&Aca|>+4rYr7y!MxV%a8sox#|}>X!A{!>F&yW7JCY_F{?~fO=U$>
zAU9>}Z>d#fP{>`VNi|(K1Zf~}s6JJo&q7_KwWR2>QLUzSQ&W|p?BP+9hBW^GOV;5(
zCH5UACv|*a#YrAZAC{NpK071!xV_7oYD`Q!BdGh2GgBTOY3pht6)RGaG}WO)NLtCJ
zD=AX(z+hPm0iz|VGIy$VEni%qQ^o2ZsxZxxgVLqUw
z@(n?7O=&}1dHj#dqZpoB-jjF53o85HB|=hZghquiN{h8n*Yxp8@{-(lwFq08m_
zDx-Z;?i&655twf*4lfV=)}(_QLAQ1;KO;d&Rg}h7P-j`vhB}vyI%%ZzkQ7=MI#hWD
zr96qq;%UH&ai>QXO)QQIIM*SkeQI0G3}6MQ6$Cd5@I40K9k)$pQW}XB@RM|Z_@6njhP&Ii7F}aGws|p43bgP6%{p5X`qlQ
zcxt8VoPOOz9MYzlH9UPfSd-D)$C8mMW8(8YqBWtWq6J9{p+TVHdKykocJ8{p!p9l4
zc4*uCb0?4NB-=-NX7W98O}rwf!^M`yPqE{s&JCwSOP8hJThl2uZCxI7A5omi
z*UKz%_?#cIWg&Oe5CG+hikjwzwH3yY22{`w=4NihMk6{gw^UbPv|imns0U3OTM}r>
zS(>1KMEifjaeguMe|q$X^8o4&?d$BHVdwXiXF+fLoo+d3c8_M@C^t^q?0in*-hFAk
zaTzKcg$*3L)eLm24D;hFUY1B|;HZE!PTuV^#@13tYV4^|RiV?ul_ZStJP6@Y<
zj_TbAw;)iFKm!9)+dy23ldA=mjCC4-%H^ywOkP!yh2o7QFsO9^XIE&|Kthhv#Z)d1
zleQmOc1FbQov~e?*|nLf*s+-^t-ZVO8LhcliryOoc2GJ&mDzoXv|ed*dp~l}O5m(@
zF^X#XXO6CldYU=lor8a<
zj@;WVw-pR|&BSpzY;IPWXz~e+%e6L2l8&M$p^CCOv3g;zrH&$`hayBDUM=ih%e>1B
z(c5i%l$v(|RgJW`SrvW|YQ3@r85N^aqMSMm@B4HRHOA>?=jd?KD+8)FKM~=SEO_x+
z(E9cBxy(*F@8sX}BI{~-vGg=s8|Jsk?bU$XFm3u==5^$gu(D>ln;BC*WiH~tj=Xi2A|9PHRIJoCX?JLQRY5>>ZeH!ue8qlhi&6&sfgOtIsC@srocnB
zsBwGO5s9U*G&!!i#BXQZSiI(Dr+8%c-F*9gl~y)d#iq)n^V&c(0BQ_Uzn|G(pO@|H
z#el9y?f!r2`#Nvl-OaH2vYDXVSuVZXHCTPqn%#A~V`c6Prs}EQyQd{pQMdNS(}JIT
zR=oQ=6G1*U2CrOw1LHBO)hP86JY^->U_Ay&{{U5buu{~goDpVGN6K!PHr6BVv$zZ-Nd)-XS~s69NU0%>#Dq~;6P^ONuczDc;YxJW
zw{F3s(1CCX(gC30eqS@h^jlZ5adUO{(CJ-+wK1DRtgCSNc>5Ns2aB4I3)p+IqP`5q
zTPvE+=G{Abt73JwA9m2u)nFy4{t-`;lw=(xfJWtFL`P(ifI+9(P9*u@5%LwUNE!Gt
zu^{LC)bh;_+tYgC=<~QNh9b3AT?l&UT(c^aVP-3d`bAjYdOeDxI8sZT7qoNbzMC)sLNK7c)%d&By%q3tCD}hAzB$v?@9oLH>$^5nSD5Yo()j1M
z(U&E&vUvf~87$Xe?2W-!lgJ~`;FAp1)HTuRV8W^ERFTyL*Am4!M^R9G&y@)n_4!i=
zqiFBx6gJmZ(ai`3s>k65rmMh$2&nWmr=Ljgls_Q4pDngKFRFH?J9Te8nT5|%=ONyQ
zV`jGOJL@5e$YG_*<$Lb0vNAOL`?mWwl9){e1Ts~@L62Iw(uz1-y#CUx$Z1&tKQHro
zeZ3|Z`(wNK1ck;4)Kq%63Rac!raZbUJz+uETjOt3Z2qt6J>9!1wx0Q{i#NM4U9p?n
z(Ip1yprfJMI~xl_Q!a09^~Da^r=XGEzautLjU&lLQ8XS%by9gDVxjA%o_sOs=SuY4
zJi~8kATerM)YQ~ea15h09zzDcRRErZs{W|$4%fzZOz(@>oprMM+hkG0SCgJi*Vuca
zyE%-OYV1Z6thZ%$6A^`Qr
zz*mT;nfo|!tuex#C%O~kZZEMmhU46|R9GyHW=|(swB+2?`23D{bsY=lCm9ZybWqgKe*WPDO;glk0i20+?%8Ue!~AGaC#k0H=r;`(Yj$QjgwTAn%0
zPvXsLD@_3Tnsi*U_#f^CUS9*bao9)7M^jT3Rc;PiI_dC6UtL~T7d1-bvbZen+Q`84
z(HMm+=~Jyta{>vg29gwHRV5B9imA_Vu0SIkPI?Y4%+cJL5Cx6UX-85jMh2j@T79*^
z{3D|~)IIU?7bAnoU~t`$+TI;Yw&`VYob9#B@H+Gm7bnK
zUfLO$M+%tSuIk93K){7yNjg-MLyaZ4Q2Az_e0onMrHs0oYe-~6m+V@BN~i^hJWW6b
zi%@DuLL}9=-NTKosOy@!D05VqJceIvX6W|Te<@x!1T|Gf=(8B<=qNLJdYqHeM|l9q
zRzp^zQ6Qv{Mhcny2_cGgkP3GbfEUiM!ybZz%RLlHZL*5T1d*#1i*)dUV!jB2@Usmg7&R(r2&EU|^r$@++HaRTRLx+U
zz_zwPG>Iipi$PUJ4;f@uT4`M+&*9Vw=wrk5MkB6pJJV(K-^iZP+qfJ#rh^~0I}aI8
z*ELx!r$d;7al==Y%}0~XZ5$TV&16f{Bp6JsE>j~si%(JzNZ>mT`@NtKZFBl9N?9I*-j&yeX*=8k2b!@9MVB!$IPlu4nf#)M>V5shlj<{+voPlQw@Pv$4s6bCJx
z?(VYMJ=2WHR_e)THbzc^Y2vpXT^(*ZT6im{FwtadE7vQswzA{nq}*7Vm|>zrB|OUz
z*C_VWneT(6O>DZz6UBDnyo3JOqzk0I29Z!DKy6n{prO3Dv}^;uN#Bpk+65=bjX
zG{_Cri+o`IczZi<@BA)zc^;eqn=g&n
zGd`XDtiOlDY8_3D1A~GJk_~$Q*Wcsc
zy7yl9?!DK&`>%EHe(T+P-@5lfM|$AMJ5S8aDp`VmS7k
znyEvSK1U<=9CYgHdf@w?tBbYU7eEL_^qE*xqXq;n`bYzDH|n>ucMAS
ze4TAe&MF#|Ont+MJ!@M5@Y5b$379U&+^1%Ae_v+ksWw(HmF&L9+|+%Enxok}Yq01u
z`=K)1GZ(q@w3!XPy7q4HV)+j%CYs-BTP+EMC&I;Cq;YhIUIb8%0!w%#vx
z(Bg8dwXqoLOpZHr(c*SpUsZL*ZqCh9M?GdUuJ`P8b+Pwe?AtkdyeiL4Je1U!m?Vj#jJqr1HEwx3lH{LUCV`=eOZQ)&;?HM+H$L|Wr_jV(#Dk`AJL*1JL
zE7@3DnecnRYtbb`)?k7~L6FQ<3P7>XD>H3Izl2w<54WP%zI(5+dV^==w-(s1>AY<>
zWn{8A_v?MHuxPTe9hbXy-2`1*mV;nJQ?vKx-0Us?0GN)dERGig0%2P_ENCFTU#Z$
z_TJT{X=pmvcx5HaN0r_c80>6PWnQ+gJC}kb^21S4#p2XdshdxsLXZyi!+*?X>t3x@-oRc+wJ-WWu?i~7|^;)w-b|pws*7GE(2yHWHRHK_k4SBow=u^py|TOa
zBTu(8xeCZCDmI2k8LDRyVO;~Xx9tsrWyVI+Y_#^zX_dm|9
zwY_(4>g`NN#lMUDO9z_7Y|g>nyH>`Ejz4XE#G`iu#p^MYp^QH80kT$P@^ayxj|Y!fkml0Km^XiY`NVfiDO3_
zZmj{Z9rzE@p=#@j5;<8fmvSG2&@gR!(p{DK!k--U0x(0KB1*Sa?ArARFT!V
zh2X`H$aU^pFzUWYXn>76iBovOPXFz*813V`!(-
zJ+$$%va3-_NC0ZB2ns-2lAs@iWRUp?dkxPK2!9jLRC1k73xEJ}fRMOlY6>Cujvk90
zvoV?c_Is{2eRk8!(bVl6jy8vHZoR#{I?rljn|)=rR>j*HX;Q1~_ZIQqPW2Qtbv0QG
zrcNDBKFQZjT{p?^yeK1fCMF_Ex_C1)Xj3^-S;C@J5}{QIr*I&yCz5}5c+E7?+$_kZ
z4%r%bw3aOiWf7%aw6N4ppa~Rejve2Ez;`Cq$>IC=Zf-8O@BO*B_B68gZgw0z`y=Ef
z9{KESUh>^E9a|RMlW5~N7V62==jrf69h=M4!H=WID}AzL0IEehcI_p##k^4zD(Nct
zN?3SJ9A#0N+%O10GL0$?SoahKNDp+`EoXnIb&wdH2$G;xS;H_WtTh!qv})3aPL?(3
z6YRf%)EkRuL!NEtxNy1bwI<}nVX1bT=W4Mst^+47PY<>Cop9URZ*b9Wz4L?nnX-Sx
zCo#~{VX31N%Oyi<5bWFeaTB5fy}GIpWQsY%Iu%nux_%Vx$
zI}mi8FB@bY@ltdXq&kW=O-~xS$?ScpOS_|?+#715vYT^k+>Hem3a<~8+gT02xi>JR
zro!$m%aEc?OSg6{C=ujlr%%7h%QAkqm7PZ`B~jg64FqS6K;occnvDqbq4XUDHv2Iw
z4IR{ohS(?tXe*?7k}*~)$Vh5X(=_Q-w=i3EGg9Llva`7=tVTyCh&1CPw=o$?{>;er
z_7bBJnA}+Wm1FJxzQ*oJ;9NusW0~QvrIs3XZB+{E;GPK;T*Rw@Xh}86Bvb$>eNG4<
zV<(_}<)gzak+g6tg;_OG*a&<^X%T$gl~@^5-^f$_rY3@y
z4UVpou9vQ+#x~-hs>{``*xETWN1dMuO^&6GvI&yXP~%aZV=+hISC5A>w~8vG6*K^x
zQJ0NIbm02r^-+H%ly>3ui88nzAvzgCxtJ2HrI^QB<;@L6Pea}-YW9sBn|mR+HiS9M
zg+|_dMk6h@sHNLmn>VtC3oA!H_uX~dO^y$BY{>G}X0vnWB*{|bq?VdECunZW<#&5K
z#+MBQgvMV`Mm1^@2-D;!pn!f6fZQq4qs$B=yhmCrMMk3fS)8(!j41sc48#j1u{GKmwZ0(c$QwuDRVrAQ#Ck-aaI81dlHr~i46LjS9l`^(Q
zNk&qNwr4DGdT}}K{qfis*O?m@cv--q!Zd#*t*&qDK3jZq-Z>BD@w(4{{Bg_es+>;w+*z&FAIR>Viw3z!
zz9YUKj(o0GO~VE=2R&Zk%Fe2laz!kaD$Ar3a+c=OZ<&X&swa0XXTGZVzF5#mkYb`ClT0NXR+~7
zX0f!%YCOg(ES@Oitf!Tuk{O4I&amOT7Q69XUBLklkp`fSlunjlMA6q#ar40kst=;d
zZr$OyUOoA`Yd4NB1DvGHW$5y_+(z@p?R*wzGLi2Lz8iU9%N0RR)+K^{N~(}xnqlsyEU
z6G@E1^=Dk}p2@@R4bYpj50TGStHH9f{mD
z1~kVs6XRWFr>>Nh5sHGUz!k+k57|#%ApN~k=2aRbky(}dt4it_pa!%!r5IpkdL6dJ
zxsAQNW~!GJhuIsGrtlN)j=hU&;Bq_LXW(<)fmxHO!gdb$prhS6OoW)7sxmdW*=XsG
zL-<6Q2ywJe6tu~0Op42-kX5jALPwYw{{V}pTC;f;Q6kY^JgosL81OBhEQ$(|PzMf+
zPt85YF524gV6!_jenqmkZ+Ps?hTy^XRWua)qZhq)vhBLuon=IlO8EK(i*F@WJaW{U
zzc|Tcs_~L|;z(mik*1*QAPyFtrv*)a%ba=udOMNj(JUs_+81ik#aKuJ(9q(vs1>io
z%!dGVc^~kcC@L_0_w&ng=XX4H^qIb^>NVMM(qj`Bh^N}M9lgKuAH-qCV9rMoj;P#u
z64glrbyW=<1z5=KGaqc+0MH^L`R6sw2bs<($D)hq=3BU=cGNqWKmY)>BD4h4Q6$h3
zMhW72FQ3k@eReM5`Tf|&i*?7f>bj4jD>~z-X)!c%UX{0rGA-g(@<9`nJBk$K*GjKX2|Wu+>>zuehi-=I7h{f+wDh
zGB_;#20uTyvhYB}R8iDb;_?tqVsf&A9;_S*T+w+s=?0d4mYi;eZy*_XER&O7dpCg*1
z$Vb?TxhinmTXk-I!?)M(b_^RblVnxU!YZVX6_bIrH9X3;X=iD=@$9VpcOOvEsXkRS
z2T=4M%c$dVfJ1k3AqT)$AbHSKiXWe+Ou5lrwf_LR-Ho@+F2|Rv>#J*OdyjHt=-Uap
zw;tujJ#JGgTC!)V@cWk)x%$ego}(i|^tk%0ffezJ2;Qa!kkEtLzyL>|ule!*UXTEW
zs>%&~s6Q{~&?UV-S@q7w#O3zR$=SO*uyeH)I9}S^nB0W>S0k`C{{U`cD)SqM8Q8Qt
z-)7dsRlRoYZsf?pm!{iwRWM;Ov{6Mx9F69h80uXV1<*5|91jqEY32t`MQqblfHZ;f
z;qtHecy(4Chl$MY&G)?fTX)w_k=`4QwyY5O9T_gE2B`VmI9)T0pXe&`gzivdgb4LA@cb>v7G8X
zn~Z}4wQ^fhuK{0@t;NBL+`F1x(zw0ffZK9mHtN-5_U#7w6qL~`)TLc4w6MmlJT(<8
zzSRhs9U~!4M+53c0jHTBc^*}-MFYbixCa@iua^`4tn`VX$L
xauQ^ch%ATo)Z~~
z+qKokyDPh^DCkDf+*quHd8sm$RXNO_Myn#&>RBqJT;YYlDNO>+64j1TT81F`6Y+Tw
znwr+M74G{p(tlg0fz!X395{6Yo%&WMRRz9OkciUBAzq*@8
zWDM`w(QPbf%HgT1E2&lM^3>GS(Upiq!To`!yJ+4;wloEp15d$IN)IekkJ-_KG7ta&
zzA9;4`SAFN@~r_sv!G9V^=1vbzi!K#hjL`_bd>l^vt^pMS+u
zF{{H<3YwWH;i!_9c;iPwAdm?Q$Le^Y*t3;1&!F@9Q;!4Ed0EjanRg%>k^o;m7^wgX
z(!N}BEH5?jKVW33<{Jd#cGmunZ&X#%L%A}|6gZ5I*xb_6R_>T8V~Z;uZ>g{uM~O2S
zx=MP=ij0+DRj5RzXb`W&nj@)Co+vo{kIek>Pb~BtovsmNMrgH8#k_*I|Pk&`=>F^kSnHl`%XL;tkBPX@@W*(I)H#YR#aAEgT!LV@~M~{9#IM}kgU#=HN9U
zt*@#3S}`=P%k4QCpaYJ5O+9{f>qR?)g#Tde
zdF)7bj{3(?!?re79+MsN19s&%zR-e9PG=WYzGvGw`l>v(1eq%Z6t&qp!s{eF#Sm66
zOR!d^s-Vt%xPw8HUo(z~_XLq6mrMky1&(pYI9kxwnl&8?0VEJlK_>0k7%kzqY4-*%
zBazw>*5>z$?j6UtwuA>UnaRglE)yEKy{vLoIS4VEe>090CZf2mVy>otBxqO?$ruDN
zYNLk!m1{~0lTTB_he4K+67eIr(>7G-6EhtoQm-LU51mvI9w=Yc=>#>(#WJSqr5RUh7qYoeK;V~Nm3|H7_g#{JDW~AupXlsZTU@t
z-V`4YcNCavY(C(JG~H9a@>TniKL6h0mEXT073IOsre8nwc}j$TXAx$8yjn&udA@?Kq%s*vjx=DI8qlx
zW}q7P0+#)6yn^ka#U1yZYOPKHfHO~SM87Bv)9l^lcd?%-oVF8xA9v?DfaWz
z)9wn$Vy4GDk0MgX{{XFzO|{+S$~C$uWqB1^
ztcSVYH3is@hA>%)1R8-_o$LnY>@J7jm~D}{c6Qb4-oe_KOwQuR_4ePUucJGr8JeSS
zRAH-Squz8qR(BRVY{NY__tLUCD$OJmvLvYKDuiqil(&JdCm}$*s%n}^82fs=
zgfm9QCkKNN##JC@sDvIP9}<)E=$h*He%h|0k{fx;(5#IVjdK|l;}xr`Gc!lp~{0AL30rfp;#77Q$6cypo&4%zS7Vg?e
zh=T4mb)-RGQlx{$@JJe@Y%3>*4{22r5=USE(BI?Vy7yl9?!D7|*=$`qGE`)-@H*R4
z%~?+qE$#-Tc@&G0?Zt*x6hx#EyZT6iQI{hV{!*5~>T
zexBVHcPIS>kGCJ;r(V=Odh%|ZETEXCt(YmZ7;yQSf|JM$W1wK9kDxq}@5a(~_?1W6
z%l>}7sC5p%B}bd2tiwJtJoMRWdGV4?aMe)L{k?omOC;?jT0)5m$1x{Z2E*um_}dVr
znrOub4M3l=g1PI}`5vpA`Eu_zUx?cmZAFQ%t*Gnm>D!%IPev-S!m>!V7h>meu|$hc
zHB&sP44@rr9hr2S3lbl^Se9qka<#4i49CmJ3}p0mXB5v7Dwh*n=(8psE){cG2xpX;@ekI1?FTg5@{>ExA_T}i!G0(pUIMfvWA7'&D6nuq41W~_af%!P
z$B*ap=!#MrNf=Uully*M91M03JqE+cb!Oyko4cR0PUN7k-1V5aFgg8?nx)Kb%w{We
zQ{l05QDV&|dWRI!R~V{kTvJrTS5*|o2+G={IO(p8PSD#C2|P71Nm(Rb_o{~#Bk~{Q>qH!5rSD;3
zXU|t-@h!5KY~mro(r)ZWQp>R*+LT>uRW|0V*_j>bytgjhZ0-+nPnfL4QdHJ$yqz(Q
zEPWGaYk{{OGLcLH`B(fsR|Ab{&}Y0i=VQ;hlWJ{To+t^^
zQ`BRybX9dpn~N7(;YBnsjZ+ug@PIwNY3VEI$*#Vh$!=U$I?
zosn;zDQ-YZW))xQQ_RqVrhxD|xEfPE1DiK)VsZHBHm6jr7Vf5{$mO&9dwk>SsgpT?
z#o@Enc{!;!X6xSAe6<}$e=nG$$x~!;Quy(8QR5bPVKO|-#ImzUOtZ5q(@6xAT93jM
ziVg;#R;Qt@tT4cfZDgq=HP()SS5Ahg5;G|b#*C#H(1iyky)HLZ9ZeqQpD$Is;-@l7
zqZPbyxnoU3Ns6o6_0J9qZ|3PT89Y69e0}ueQAP6#{!28fIa1+qJ|#~P9VCnKP{d2SuUiGw+q+!UGY
zZdW_EGBG7o6_l9l-eF~qOnw(-?;K`U=rP-SGmeudRXtg0Xd0plilJ7LM^2kWhDJq+
zl!amCP(4|G(Sb}HflfVoS#ID-B)AT*BxfXm&59~GCxWol)uCS2VATVnS4|eq?l|kR
znY@NC9n@PFBU8GwSgpTKCfq%_y0-jFxi=j&IqE2JOSC$7VC308;=IH6849X-q>eg=
zjwr(B@n9ezCT74Vf&+j^&0U890;@BjDKw<#u
zzB@0oaXpQ{>ua`qRAKgx9$4vi_FAg5Cq-3`#w|6on})U+1eJobb=S)ElgLcD2_O{E
zMk0{R-qvVnA=3GgxcU8ne1`$$TAqNL=H{1km4Jk`QWO(W_P5Nld5}rK#SKii#9or>
zzRcabw|n-^R=ypxvUB@G7dG176X&rMo4&TA9g?h`P0d}jXmVN1CI|Sr&eqcB#J#_|
zie`EEJb(rY6Sbs?SjI{*MtKIJ_|jN0UZwr=^KXhBzi8QvHulz{g&-^=EvqXOr4~&N
zH3de~qdKTSBw5?Lqhi%{o;zXX_JqAl*Bg(marJ|+_da5Wupq$Kb|xEU?s|%7G8>z4
zZGE5IJq{?1E+cP>*<{Y+^4T$sqN{+!h1y$b9Hha^+#?RuMN-}#p;{;}47ICB6lr7{
z*-cMG<8q$Oos7mPY!LTVndI+d{1FCTt+(yWx!_n?a$SCp9
z<~m_w#*D6G8ys7sY2kKFX5jwn&M}ocVO1tR1nnHs>Vd7lUmNvG^Ml=
zku?ZVdsxU68l6Fy=+jmVNL=(v+nhq?N(oFdf1#EvX^;_`l*JTQv>HIJI#8Tc6`iZs
z8`}cCF`e1iZI!v>%I;i+80`MTmwx8==G>d)J!bCOTLwp=74cN=x=HG{Edxe&j%ILj
z0MX3g79n;MMK{$f{oSImpp94jT&uXKS}9Q*)JnKg7!H+vOiIwQHNS>RfLevw$tFe8
zDXH_Ssgxj+2(LhJUf%FGJDRaZ*E=Hx9BI|!vVYS(Cs(N
zRj95@@pmj2%SfGzvoSif)OB;=JZQ!QNeqO#u{6@u^Eg+aHDwxffl;d^
zGuoYd*nL&CdnSIf-vY{Uhakjw0mof
zN*aMCTbs1?smC`cso`xQp3r^HmDVN9HQ;+UrZNA2_KKQUS<
zo>e-h&>D(0YGywRDmP-2plMJSv_4r#=ufV#t~I#LyOYiBEavvB*fjWjF@r!_@IThBxYdy{3Gb_g+)0Qs4s0-63=iZcA?ajIS6Dd=_sCSO<
z-ttt_MOBzPa{)fyhZ5c@99=zjZyP~NQBQ{4R2cZFC@G82P_;9`Q&%0OOT?=!A4w99
z2Lid{f&k(M1xX%!Ix)1jX124pP?}+afQ8gcYWT@fN)}Q}8Zn>+LG9=U!EEi5n%XZG
zB7-T`^jmWko!y!G^OLTvtfD!(^|+!T3jlea0Q&2DO%Y3hU~n;}a?k;D&z
zX`e>c)@AWpDrp9#PLgwyPC#!UO>su^LpOmhCNC
zYG67+_6{$xsdjcRKS7YA-g71@mZvc`QcBDxVqrElC2Ta9Domz2zcO)?K~;sQimEI|
zG2X9lD4ArAC6UQSn`C3eXq=SG0YQqK6Ol$dSmwT9bbn#FJdG@Fpi-1zO9I0to?sFW
zoe7}?SEAv$v-8sVHjZMJs)nAwY~%6p$z8XN4oe41Q(r9koZi)vx)`Lu;&+WjI>`Qt
zxK@=3iQk7>2wFD`$V7pOp*TL3JPkaE
zinyNU*_Au%<4;cY?R?uKJy*E8_XF27+m{!*aI~9SY~pacyC!qHdOf9zrraByqMElU
zMHKZo`if_$qN7-ATuvI*ec^?Mc^Cu7P#Hd0HSHV$!LCj^$QFjcOXA&a_VK$$J9GxX
z0BXvF0ot0FWk{%6F{w!JtX>yx{8XpfTU+G!eB(C$-1!ODS$(zBxlQrAE51C(pWHBH
zg=RkivM9G5O6^>)T;;238k;L0+GFXVk=hvivcRruZF72VLc9YmW6yRz`b$Vu}
z^XMmkw`}Qa<3%ACKTx%)IvZ7WEfuOXAIE?P4kN1f-uT+O465g5?fu1Dp2TDJ{u--v
zWOtr>b5~+##U^iO<`$PL;iSgru@%{CQo)Py!e*st#D+RY`*P%$fG}4FSqwtbgzz~T
zB7^Z916ow{s>f+rBX@)^gpC@st=y_=P|<)2+L({i6lMiUA#u^0=ntM7e`DbG&e`k^
zxZb8*kM%>!@OkOi@$yZwieO~0I%x8CvH6%3qFJk2PEkzb{FSwH}o7pt8RaREkQp~uT
z*9}J#!t6>pbog@XCWDBk2bmt2CxAKgIOs>W2|lLR!BskrnAklFiqJR&>Y-IMb`%DM
zK?kFo{JFkzZf}kKW%6%t^mk$QKG5vW(ZzMP);s45i^0(DU8Au!hUwq5+cuvcSDvVf
zi)w$Q4BqFbt;=PifW0mw9W|bos(&K5qg*k7QL|56;-DIF6rlTQ!=hd07>?#-xr$Xy
z4D>1n2|68xa33sB3J)f&Esvr$SHnz?S^T!|KjvxJn@_xZ_P=J}YPySU)%Ome^J91IU6a|HZ{$`t
z_^wwO-5t+{>@CHO-<@H$GI(m;kBaLJ!MAgJ$3EM(r#30%$6@Lwj!y(LvwgidMAHI~
z8lxwJ=Uz1Ku91*12gQw4si8eRBHc{MCxbq+qfG(Rs(_6|fK5px={3{9V02f08-F@4
zogV@s>#nrj8(V4ooc>?kf83j+ueR4O@vPLo(^vVD<3KpbL;Eb@K`KUEIYH8Brvu|NWw`x668v2h#Qu=_8#cb-bJyA4~r_e?mA
z<-a$+;M=BKbb@yjfxX;PGk<3j>L;e*(U21k$ryf6=$
zJa}{*@PvXxGtj%WMw9AslauBE;3=A#bcw<5P0;zRlSiJ-_9P=~V7E@}#Qy-KN#A%<
z)Im{GOHVguW;WG+-jf9mHz`Kn!{?REwTY6DAex$@1d&YEaW<7^6&ygueqZ70kw7h4
zInn~4RE9bH*b#wDeWwH-flQX;-J4;%11qw6_aTkI?d_4acDG$u(Y1
zhb2##jk9mIrHe3>nEGs$H1#n>OBA!SBraLOS^z0Pe?Qyu^y-Ah%j_E*U6o7uZ(8`xr(E4{nIx~`uqPqPzX$F;iKWlOhfG8o$3!w%t~&BIq;
zy0?zZ@z++=I4o-2=ZR{S=hdH@ww?^SPT3x}G^3~_Dm00J)KGe)qW#P`!RBX+=G|PYz`|2
zwKq23r^)Q-rQ9=S5-Lh4bJIb%GWc_zfihGxP}lze0jH5qsrv^HPOl_Gi;CkFr7MmcdSRj}
z)LGzOhGc|jUCqlG%j~;m{
zY4NoW9d-vDj0&|h@QRrIs<(7tqGDDWR;Hq@VlC=E1@%DKN
z8u|2r$z!mY8oV@_EaUEqUB@MQ&`{FFJ`-!yQ_|B`8cgcps^Q4Xn5)KAwBNx{BID(f
zfxr<9)d?SovzJ!e7bD@43=ZV5whj7fXU?8g>I{E{O1C4FO@aW!rR-wY@
zb|&D#+hoO(w^wr;(>tmV#=W#zEnKOi_}SnvPB~Dc1X>
zEJ-xT018&TIQss0&qklKdn0D_trd1depFKC_OsB?XEx?H8M>-u>`l*=+fsejR;v|D
zSzD8)#8T1Co`!s8-^aa5rdFnTY9|!5k_AN37NM;TeKDRNZ_J-AiKMeK5b?NH)J8@#
zz)(=JG@)boerKWu@!tbaF5TRH)3x^&=-odfw?W*pK06R=mu%s&n~+5YKVsGPW=1ux
zUBQ$xA*bB?URhdENn1-e`$eggDha2wkWgpy^`{TC9vJCt5Js%WK=A95MGFvqEg%6;
zK-pT3gvxm-Gt?b{*Mn=VJx=VRs;=D_-0eh^OSUNMnrt
zA4ac7ldGmy$7@SCbk_v*U`ZuOG;iDaPMKqsP|=7cVX0a6*YYUmXim!dgguA
zn#j^^ZLdB?qP_FkJk};@(zdau6*zk7DdU}{aN#yk>M_=+rhwpQ&&!2)e$ngEP0BPu
zU+GxYszpFLjVee2pbj7!*E(o()!)-$`uDK<=y<9&tQ`xzI{yF-y0?rNTvkJJ_7z=S
zeLUE{ojV_HQ&!JWw^OZfl;R|-qK=kY+?%VY@TBv(Op5AH9~c@BK~6P3bw0J|rtUeC
zqf48hbfF{!0|m=9DB6#cYM>PJr&W=?^ZU1{EB7wK>bxG|-Pt@|;m6Cq^VA!8sCF(U
z42~8mtTqERm%wHs!|rOail%sS_*vT{TC_3LH9bnSB52p8%3Q>@l9eL0Q&3$<98#jR
z^$puku=G=Q(IH#5xeGL4_;i-Fps5-PoH40Vz(%Y`#40)vb{_cn!GPGQQP|i`!`VCM
zKO~v0*S>JuFL-TQExy@l+ZR>0cD@s1ZUlPVKHG_TeI}-%6x3CC
zRE(2>QP-u4&Uu7)a<#CgmoD?IxdwzHjbn}pk!nfdUL6_OJ|b@HF7nOdyA!W>CqZ`I
zWmXQSWAvWjqQ%rh-P^vly+68pQj&{qZJ2OWTeE#t?rNG$URJ9=QMRSrNusiNWJRWt
z0GiodV_BKhg4t&68fbKqcvB^G)UHNz(hsJw*A%w*?>s%u$HafpT{LYaoRG8tx(LfO
zW}pV|AOF$cRN(98Qnj0xGa%Fm6pN0>dPm`&o`=j$@5puI@%i?r$Bj)=)d$
zT2Ow|j--suM2b@zfyz_}!h~vwp~TY^wUowdq>6I3`T-HJ{+`(`O=yIl+5R4#`gB@&
zw8VY-l>!pXkexdXq&#hL`I0tk2
zDE|N{>m*o9%N+IjES5@Wo*7YPs1&q`G%h4b7K(vsV0$`)X*{3oefTGvF(>_AooTKx
zRw$7a)NrYx`L$2%r&ZPP3Z92%?XQ!)V6RC;{cZCDyCAIz8sn)J4d;}k-niFb<~nk%
zO_jQ}`9h@FpJlg-?BOFykC4qs^c;R4PL*1|s=SO^N**~N1N(EUqr`Ux9LQjTx9{o)
z(w`SiSCf)M{-!sff_ipu`3zh0?Kja~5FO&so~}ZF$A~}6rDi}pjVad|a<$<+u;6Q9
zhmrR=y2=a$Xh$Wyb4gcJ%09p5)Z5<0v_R>S@pXD4v!C1AKc7wb)dNjG!;ZdOU+|)S
zk;n80^Njful*d=b*e?G7r08#v)woL1Rem0}EEwEdZyT1_5MgsT
zD*5*=PN773p10rCd3p+1WyegL<}5--1!~4dCQ6}AVDnlx2CpUQzKlll#bR)?c5M#Y
z%C2`2nrZOx@50g2=HS~IoPHM-Pm4T(MmDnvQt_==xJ_wh
z;te|WeR>kN7Ute~>@^(c`|rH6SnP(`%+XDrp*7iU@x40Au8VAT7A8H#P5dhtlfZ8p
zh-S$_5L$Gs%rzNfG_ux-eNUL{-DJpb8hn0Rs-JEb-xzw$v6)SsSB%bXowd0srOwx9
zH+FwLp4u5awMxF+IjWfO6`Mw?XhuF+s!}zqgBKen=s%139<}6a(t~k!4oZ)4Wp-a(
zZ|s$3CbZAI`%AO;WJf6{Wkr+u7#$yVkx1N5XoACc=QzF
zV%z(FDKV8c8=dv$zyk&USAKDpvX&x%WdkZYwEG@Xz}#P
zGuHh{DO`#TA@qvXv4l7)LO6mb2;z8jVGK)G4r4Mk0wMfTtq5{dgQTgc1keiW9VL#}
z$?f{x#Z5(Dgo8hW+qq1p<1=CRlWe`Qf}zG!=c-?Od`A(OK>7(5~`BGtLRk#5?rVS(@FRe
zfVP?ty%0|8&hJd7>e*di(ow;?yEC%z*?b3HW3ul=&9}C#D9e8t-&tJcTT|eYsu~=8
z)m1qeWo0z*Qqz$*qM4;z3dE7gJ<-z&5Lk-PoL~+#%_uzTMJv%wd@O-QH6{p*jZtEKqO)Z4capV)nE4Ro8Ed*f@V<->L^_KuXx
zTyVMA8n&l5ws7qMPJ*SY4VF
z8FnC0SG7kRso>+`sV2N=I=Y{Su+?Y!mbvixipqWAo6Gh#SF(4$209wr=iR%Da8$z{
zYxst4j|)oE<+k42r@_@=sKZs$Q`Xv`L{>HtuQIWNa9Jf#@kil^qGD8ORmeJZ8ml>#
zWo&9%Eow(o#~=YWEiJSKmgY|w%`gDAw~&xWh(IdHiwj1C>Q~gjW2-*vuIi`SI4#Sx
zwzVcRYvpIjVEZ3&>;$RAQFb?GQ*Di<0_={HSKQU}Nz}Q0&$sDns-oO1SMIS;8d~~y
zt1UZ`OqTNfJhu#V1ZdU1D5EUJUT(ky!Cb19;2i2w7Xe(>`+_~pP+GZtOCefmk-$w+
z#6yzMmW&nzWv&h@BMQl9w>O>qx-8kvzh2|9x{PNvc*g^4*;Q~0`7Nx64s@5XG@#{JDECWe|Q
z_D1ik>fAQa+WCBz&B8X|tgpmovl*Y^SUgTsa?@^@nv!~Xao^qz;YU$d9ZFNv#@>IW
zf$nvXT>NMxW^f$o6$&ayUkfz{!-;~GB%YJ3Z!}PV2vP8{O)7MaMum+4uCYoHslhb>
z4uXC4S&F6X-nrV_QS-QL_R`q>gS)#5n`G{+M%LULI!@)y(jZf%aY-S{1i
zi^Wmy3~m;Rwn3HL5LGToUP^%QD7BTDS)G-jm=!|dnPl*dP)Qc1kxQ{Lv$FOkofM#{
zUC4=KMd2i5F{LVn_?X^-dqzf+QfdzqOtqPAxWH_k&$;pO<+h#!s`m!!-*v4eKHY~k
zxi?K-=4`)lV>f2Qsi?^AJWe$>=01Zj{4N5cCrzF)llxS&dvn9QYpZ*Akz|tL7BQBh
zs9Hi%zzR;X$*k8&j=pR;XK5o-vA|ovC~ngqO$2|*b}7osXB?HiZC7|4zZBY{8Rw270m-MH4F_ZGHF4T
zHFlr--<;jq4Z)9!YP{T1ZGF3w+{16?cTG;%+!(FBQ!dWz4#L|MabY%Y6RtL;G}UHl
z@p573IcmsFbtEQ2J+~jzTf-8T8Y;{ds-cydj~X%5#orVT9;yzOG_Of_3l-d>nm0xO
zs*OvlQnHGxk|+X7jZ2{2Mzomx+-&fvn`73&Apwa+c;^q6;9B}
zw`9-Qd;1|-hsN!xQi`4GXU5wnl)&PumKs@cu*ge2da*`D!%WfJs)eSFM6hAusEh;R
zElv+=yMn|y7(uk!O$-Ta@vG0A>Y$|#qpXposmF^@`B$LFaZkRY%VjY;^QLh<>9_FI
za%^mmX>|VE+k&$fw>uZ@w+7dypu%qXv$ZXaq{=-(#kL(1yE{cB(^WMMM3m#&{gT|Y
z=5;Qh4-h7!O-tEQG2BPStaO4GMyeiy-2HGN+o82UhIWtvPzfr(sLBmSIB9B({6ipg
zRWY4U(w(WjDq+F)7WLZL9l5zOwK$!JF4?I&Q*U+F_rqbTFm&5{t-EFNd)IDt>vqOA
zDm-l*a^@E;3&!3?sHQqb%W*VlfEs|ft!M~po)i_ON%F566j_kS)&6h0r=gNv*
z(_Q1+)U~n26((Yqs)~i8imrx=o;@+fB%Kt(JC7Mlfkhx3jFZRt9C{N{IyQ8XHorhrzJ1xPvWW@f20=rGA-cevkhVDbBpbYeFp1wIFCLxb#HsfnShrN(VN
zrBj5KpK)fhH8{v}u;Y^xS4lNeS46Q(49+iCRpSc`#U3w(|Kbesj2TOOV=`{pUf7+(SK&%uTrE+Br;hJh{Emli680vh=ZKohji;2;^E!
zJsQtnR|J(Msn9*9=^CgOlxkA6s3VR5IQ2g=agKx*cbj~&H`Grdgp$w$dli*cK<1zB
z5lcCl(r-qNJ*#t!!bTMin_(C@S&Pw6M>VrmG9~il~aoB%@BGjD<-qsR{+4kB*X~
zCx)u<9<`_jnd8ug)nKw&{-qi3Y2o;ZBUJ!xULKGtz>daHtjbSm?L8iEgnc`U?akBJ
z54$rRbxfN|iv=BG?o!t6|bPidiL#W4c_GTw*nMs(3U7=E2WMVK={C=SU!_lmnG_=
z-*@j-^z57O0au#sj?Uj5L;OP+X>t3bWz+RVHC7g-R-bZbDt63y*|FV$K_>T_cbg?q
zQBf``qA;yVmZzu?yD25(M93|XWh3yC+49d2Y2-Nif;vvtTQ#l3QYPVXEubL&r3DA#
zI&iGIzY+LP5a8s^d{6j|-krIhhad6#qWiBQk?c5WG8_A{Bck2ic~6F?#6vFJ+4JYS
zkGb#|4WYOr+SC(Em7>Yw=wYa&ib9yEB*`pbGbN}^DB2ZN;2KjoVn98hoDjx`@fseR
zmzaD&^EC3j%m5@4tF&oF1c0toWlE?jJ`qvS-3RjA{$c%VoB5lvB>w*+kI_X5-HM_LUHeJB>$Z+&ji9K)=XVxgaf(b{QkOTJc=GUL^7x9F41zlLtBx~iWp@my
zTt>RGcu=tP^{qV*?dqt^6`g|cp*5$SYDWTmsq?QMif;b^mwM3V#uA%gZahsLWQJY5
zwVRQ*3vO&}EDHrL3pJdonv#ntOOJ*pohYJxOpaD)iAM@$5M^4tnwuV2IrQ_*J$gqh
zrPu_Hia1o)%h!)c%3Q|i$7Cq8TWY^_VK6O?%;9#%+c~OYyKY*F$!4p=VW+IFk?ZhK
zXQGx#s^VB-Rg@5#Z|zJ|Jr`3kY=zI+kC^`eP^jst;DG9uB<(b)K3=pn%@0poziwct
z@SAfYa!a_glVtJxhjLX^At>Z})
zGJ>j9H;4^Oamm50JqMqz4@gyrbAS`bf2;f-nCUsTy6+LXp}t5sfY#rnOQ=zv8_(B)%^HljeNZ6=l1mUlQ;oX
za39S70H}1Zld3l!LvU?wx!D~yWqP-1?3n4%k_uTVGPRE>S!JD7
zqeVTzb}<$@Yg6{{`!FfxPw@22uRuzk`ed5^Rr9Gov+U`&D~X>WzA3W|aTJlh)5td3
z#!CiHhJw2bx6G!kD(UN$a=99+=xAmy7u!Mhj)vhD(gxxF(*~b!pwIh1E{j}+j+H!3
zPB@+?CMBv
zGB`YaJ9UrP?VNX)Z|oQiG~0tIPnN{NSCFB|VJT?gmX9jc8S1Kra}wAJu+@RazQ5-D
z{QBCLEvtn+cwppxgB1rRnCRbi&hOZ{Z2lvucAZ|)-*|18v#P5yZGgg@w@1`h;kNW!
zX9ScR-mLBHoZD)eiE*)Hq>ZZ0ReQZ9JV-T$Z%{r&eE$H|`Sn&}auvpDUrguEj~Zg1
zKR$&d#8B<5o;P*nuo$f7G8i#)s1mtG~96;s{i^7P^I{(0&?<=dNHzX_MD-}*+h@RV`SHcDE0YGWcSG9lFq5vSMvSn7<&
zQYb<@vFTq;JV~xA(R}PZy|H^gwer1hh}#u=1@V}?tzThwy*!V)J3kpmB^kr*ErZtG
zU5u@!p@U>^Nas-myq?#o!S+dE`Oy7JwNxiec1n9#V)A*7RZL-2EffwJtvxH%VpyY!C67qAQ9!k+px~vAYJCYL
z{?39Pgz5g~-&o9@1#aNSWOfbQ`*MkWykcWoPx*oWjV^Qu6o7!7%C%w~r?pW~E*~(m|?axu{S~^a;f8lj?xb2;i>%Ez_V3vy;
zO;bKFNne*UI5101OwB+eg5f80?jI_SImZ%6;yNd}+Z#cZ8HLf}#Z-Vk5l0
zpsjj1c%8u8->NpQK!7E3P`Om&!u=?u{Xj#P{vMRhDNh^2$XiPWg#7-#S|6ds2)JV6~L
zkX?8d^jSoXjEKu#@ECrWtwO_%C{%{jLE+J5_=}C&{olCuCds6x+IusxvfDd+XLJ7m
z-KtSO_1}~mLj^wL+W3uuym8f3xcUrj6%)ZjJ$+R@eArw#kpy!~8joyV!!5i@(yKHb
zv}PcJ8;KxbpCY*Kp!FRTOd~}$&a*z-6C$4!(N?WV71oqyW1Te`%^6KAOYGWGw$G@<
zZH<$;=y5%nhuT{^WNse5$>#7F4zb-E>pM?F4#?R%*SfQKnyve}qNKq^Rg$BtpqjgJ
z(a=dGQd317PYRJp11V`E{{R=%O0Wd5QN)BDtK_saQgdFCN<3s~B!;#n*^$Drkt0w;
zGD4(AqPkN_0SN$xB!khupI~p@sWI4)l==Wa>IeY)vV!#09F#s~NFTPEf1g_Y=pz7#ydUeQ~4gF1La;Tqai+RV=4U&|oQEuOlNZgDJ<*Q?*{W^$kIg6~8{r;oB~x6^;-W
z)Rj^DNduK7~3^-
z<7lfZ``fL%9+Drh8L3+jx_YM@O&wCho0@1T<(j60*6~CmMmkg;LXlrxh(anCHBpUP
zMgdZEu%rVVcPqjZ*FbJQBNKpK67|He&d4~iQF4&JZj{j&ky0h#Bm#UcBFK2
z$5PWmOqn>Nh3vAyP^zo*=`S2pqeEM{lX4x4kKb_9Z@#$PmH5rcOMuvP^J6y-``egW
zcyO7GgC^0et@|uzY2$W2B1Ea$i~N$j>7MEsLkSf>u*a0SxSm(O8V+(D_W|C7losx
zjXj>cbdOW~x_RwQ0O>#$zuBJLJA#8RQ4ZKO`>!!cxUw?sjq^Sg+jnQN^fFLa)hd8$<{oso;jxo^G(6-#8Ty|=k4Yl%{TvSx=CRiwT{G-LPp%cb`Vhq=aTV}X0vJ(Q)oVgaItm6-
zfaI=TBT_uNNBq?JEt}hYE1ug}T)5764*tvH_SP~Cb^{9n*GGq{%I+N2_}rN+K36f0
z!tKr1w#@{z+is}EBGBTXtg4P#HlK(>!gG_&Tkqj9sdCG&Vw@FWsSnn
zSM~-Q;|4x?vCWsm?p%
i!0`_9r-(9qJ-Lr+(l#L_d%DpIl~Ny@Aj69hyiJ9hOU
zOrC@fiIh;()G0Wr;1Zr&?Y7CTB$)-x`f$<=g4`MgRymDiAgBV2=%%z%0|Pq>ixYs_
zxeA=@l(9UK(A8pyrCf$TZbgxfNo2{@wPI3ZD{~$gBF9TlB(EHARQ`ElPui2$F3%>E
z1dlQ1Y2}KanENr%Vn&KM-&oefN9UEBhJTqgW|_^cH~=TO|RGazO;{j
zB}UoG_cv-|sQTw=?fiDj+PFRMy7y)}zxZ6y?Jdc?HZw_z+gR+TF;^o6LbWW-D@a^F
zb-LPG8CFSzg#aQn?_ybsflAetTe;a!Zi$s$tQ!Ic-7}9~+tH2o-
z2sGxSNhZA>-HFqb{Ux`z?$xN=81C5XZOdDW-T9g5YI4}Ug^r|-yBUwcXEx0pVadmm
z!*+Er#?Oz*O;mDK^o-dzk3t3kO~&Q#?yYA~E%zApDiRf$fl^pE0t|iHmYQ{TSE(yx
z+f!!SuWg!Bcecz@M^!AT8wOAebu0*%1U*BQCP1U33H|8JQ0=9OLlQd}5((%=*4Nh-movQ6Bnp9>UZhVAgDDg>F34CHigLPs
zH8db}i0aM7fjw8#82K=JGOu`HcCf+;@w;0sklmTxi@7nFifzS*t)SdA7+t@;rpwap
znIq0*<9c&LiKP_u;%bOy41(nyt}fU5wAfmVv$tHtQ}Ei3?nM?9VRqgDX6PePl)U~{ASY5?L3Yunhw7eIn0*M
z+S1ZJa?tObQ=wQm41SE0zV3P{2;dAyF@5lt1&cLbTN!BmK~f2;=?aX9A56~
zZNb~vNIMU3*X+KUkF2{cuC`oVHFoN*&BXNkDJR?+KBf|7nq;co*m-ey+$9SfRyhEc
zq6Z_ytcJOaMc_r^Ze~EWVWUZ*Aq3dRhC{TBH9r8twdkVrZHnN@BS@)e5Vj7Y!l6r;
z^POO*MZ)=m(lcu3_BI1CRlN7^>e`)&{1YjQt-(?DZ7Nb^^7~&OxAL2>cWr8{$lG-J
zjklV|Qc+MrkjqiyDPyjO69ePRg=KTuB{N30)-g0n%0qZ{pe2GUQnVnkG(yZ&vumdi
z9~*K)#%ss%G`DDDjvAP7!Jr+~6#!|k4!W+~xh$^Uo{GPCWGiU*R4M)L!*52d#KXR^
z8*_Bi;icR=4`*R%j@;TiM|162Qy)(OYI^LJLsfJ&G&6m~!2!61ZqI?Y)WpX`i9?{W
z7Sir}nU%pVMM5C}hZJ6f7P}0W7OQc0xFlNC6B`4mlrU0NM`)-tKxwUkp-i5fbGzup
zIL67B8T_7qs*{2As&yrXWtJA6<`EJk>hZCY48?S`riGfS;HXyt8YM3ps8P|S*3tA*M{i>}xOaq!
zkgYVRV9J2dDuSh0vK>ny5y;F~^q`^b=_oNfw->n{H?7Xevby656?PYIMOgcLW~E(4
z7Tn&npJBN=@*Euo0jl3{WuFyQn5xW)o-!FyW!l@_&pzH`a?xscYBK}`
zQ5Mo8ATT^Sdhhowp4+_26Gh5Is)tA}PXQc&hCl!$$tW6&gQSi-GGcZBwN}#AD6&gS#g$8Sr!>nTF-PQMdxT3X{*52Py#XFdtO#BHks;Nve
z)wLhPUXdM*@s__kyf)ur(rvA&h}}CwWlh&RyLMAxy9aXgW^R)`*xTE$X!{p6gvIV1
zskmQpWA_dUqdP}kho~7$eQqA3DUqU@ma3j0x#L+?!^lpmVA8Yz9Y0|Po|H5kItzBZ
zaz@uqQJ4^?N}knM(T^ghL8+k(6jZN7-xIgCPQiY>?7rssqfdb9{lB}jIgG!4?7gR&
z>}`#;akQCCr2=nyYz{N-cLCj)h1wI=;*xLTNrm;*WKwpTUnbclim}4vk~D>{=4!-^
zE9+i77o$4AeY7*y<(EiMX-?P8}>OckO2F-n(->v0=sbU2rhwHoUbs
za~Ry4n{ifVGW&}&jL%fm=5V{WdGFoPo&GDBkV4T_~UsBO#xrmJIbhPUfMl
zz-_^k%WmivedoJ(4Gl$Z=dRm(&vpuk@;gaYs+T826!S^uD3V?&Bv&$Mp!;~xaHT1M
z=jqntX=E=Ui%mEXYItQpB7%#-{SF78RoS}wJA2PvgxZp3HtsTg*NNZR3c76OY4E#i
ztM;x7CY^k_-1F`{b^;jRDYP+j!`L*=BU8UoZ21f9j`4
z_HZ*?%5>MQp5>QT&4G-KD-);{yhns9fh9
zJk36RQ|RT2Xq}LNr;P~w@rw0Sxh~S%S^O1kJr!j8emu_H&*OH+$EU`@x-r$MUx=Rr
z1hZF7M@5XFrZpn3FIKg%2B*i#B2j}_uoo_AB9%yKC@68q{g0p7!#xNr%(1xeYg15s
zhDZ1a@;;pc`5{$RyK*$SX`|c}bhNejirw8L@MdVnKAH+VRbSaxWoYNg;d3tgNeNk0T?;UkOX>_h
ze+kVvai_?TE9wtN5gGRPhSWyUsuC!KCI-07khLUP#
z&16T}ZOWM=`|3t3O$}vMH)m(_ZADcRWwF)B9;&Js(IaUiRcS$yuA!w>PdacprhnqF
za8D7#tI0eTGTcmf>pERQ1k?>$OPxS4C%h?OwbEGBlLPS=rM716rp?xF+FsGg?>)u7
zwoV@xirds#{2e7G7)e)8m&ny;Hr^X>Zp=30+dHB?K00`2#!LgGj|-P~`9x^Yo$ohd@31bG?%IPaMpl;6YsKqSZjDBv%>IXgFl*Ci8wP)$C7=UFFn&
zB0BqZZLZ17Z2j?w8Qrnodut_A9{$->ZMb&6=-T^3w0k12DVW&VtTrxs8thI_9Zx(|
zJDDmbrwNP^y+P&1)3sl1@>)WXL|ZD_G8lOlsBH#=R+{;cC^98)U
zX^~OHR-RSsa?gyPHM%e5zBT0Q&Fz@M_7)bR8a><69gVwbaoxMJGZPxf#xP>3_da6@
zzH!rxbjF)4wrX-%>d0gAqoOiiFWoj9jj^=dL!nQ?%JozB5NY;`0yxrybThErE$)CY
zIoIYWK_6(Tr|qHO2{q_+_}8~FS#0mjgS+rCHFs-#oa~L6xvM4urnhtKO}W-Rb+Yyq
z9$K!i?p}H*wj_)8Pz^C86$OG_-I%pU(zG%p^Jpx*ROAs=1nE9l&N|%jeMD|Z
z0!ZUiN?;OLzwM<@9=>UtE4_AR!0H~e+8c{<_Empn(QjUC`;ilObgssF?qzg3PaZ`<%BZ5GK52uo6CN&yJ8S?#}xjhwl%7_E8
z)DI6o+v$#quWt9(a(1nDQ_`gM
zAHwTq`%r1BAw+doi6m#wBOagS>WtLD2kiO!^joT@$Yb(TZ7k;GqNc&hmZ_$}VBFldkQE)jOq~4x
z06v7Qo{@y~vx)0HonM}o4A)>T&7n=PO|$R~xpwps?p@83tA{HVDvC<@mY$9*
zeN3@IB#iSyQKPojX(6tb)ABrP#{&n@=Lge|RF)KNCV+w~PRL**Mr0R^k
zQ9kCX+c~U0*u`RUv*fF)w#I5$DtB7vC@_0ggRki8AdK&w;`xd!~VsWwy}8oCFtvm4W^rKH?B
zEr+>xe_~4oUJ|=~Z`foQ4bgzySp21Ib+9Jf={(+36((B&1~NKV$!VUpMFIqE1_|Oe
zfOz?2`PV*&%dKh*R4aX)e`n|G(MHE(H|8T5D^_m3t+OKBl~cAi6`YQp;>^@wV4k}#
zk*d!}kjd8K8oM|5j|?>g(@9#MD3S=-2ec>+Dp(5o{{Ww&<&{~m3saAm9OKC1pO;P;
zmaU}SSt;?g+lvi@%~0dz-T92Z5o(!@e%hjzlLD1AmFliO{aI>=t)on;$hxf@G6JF&
z5wRkn2sJeQl>Y!Is0Zxmy6aPTt|(+$Qip{JsiDBAKRkI?p%Y+dFJ!yuZY1
zBoWC|j+VDGyR-H9ES^q1y|*yf%8Br}oxQRC+NPomTG7o-k;TrGaz`BOv4Rq#P8e7A
zbg9J>oJjnD%_>hE`JY_$l-fH-8@c-e4ba<54^2%&o6m}F+s5PL$5!q=`@hp@?W#HU
zrrD{AqaCnu_^qLjo-Cnfn;o}mCSb+o^n3A21B_FL`ndl9hpjMG1bnNfKRVaf%ARMT
zBQt`|WcGhx?R}w5kIBm(N_i#QwMTF5ZIz7M`;R$8NwhYt4(qGQQH)Llt8klEN~qBx
znnwGGzU#p&61C0K%%fAtf$Xac3*5U>Or7HGEa;QI1GFv(v+%64M*Hz_nIm&7Ts*UiQW~yi-
zz);04GQD&dJY^82Nb<8()fb(r(b&x#tr^nH>|JsN%7kQ^v^f<3W|=juJizq*ogP^t
z?SxAV_JoR7tP3!uO*JhT`EkJ%9YVw9a~V^-C|d)Q!BTb|OtgE6_T_#%7P*bWD&VKd
z?>Xjbs$IiAUaJs-lgex1iK0*`A|9k>4hD!w{fpNMZD;>eo6cRyN;Db{+nG#fX6?Kt@UGpI
zl(f5^r)gz!bsNtqj?PIwLR^#^e=W53#!9@)I;{FrBNQu1r=KG<+y3Ecb8q$Fq#D>b
z@T=M@O)Q10B`N&@n&%xq7a;QP?Ps{luw1L|9t!wGTrCz#fW}CrL?RQBT*?hJf&nDf
zVQTP|b7B>DjEjV(+|%NQd$#tL6MWQf41P^(YwC7hLlHhI32+!{EaoW|I(Y&|Sq&@=
zP37=Bj3$QSJIH)kSQ@TWP%z&QK&1OG!?W4S6Y8oRZ+t_#-?=BBjD1L6JdW%-F%&`o6T+dKHuy;vAGPhW~utm1-SB)(d_-_
zkcl#8DfcaQQnIpwrg2Y3YE(xO7}aRMtE!bWBLbi4b50y620eO1Z4_lw^^BzhF;-F(
z6+CE}Dse)(LXZyw&=u3YceHxHoe_{39uq>Dsfp^Ek}@W-MM?AG4@`
zzgRf7hRm&odT4hBVvy5T)Jt1X5}qnR%r9}`Ndf^NDjJ|_z&uIdaz6;+=f|Y;Lnnq7
zIrWMM3*s)6aayqfTT=m17@<%GPNUVc?YymRHuS66m@VC~@RJR*wH~i*Zqd9uE3kG#
z46Ko3r|QnN+GPG_+@wR~>48u{#3aZ%P%o|lR#Ew2g
zp!AXcg563abnzGmRY=k5G9-~-T`El&jywRRL9f}F%x+Wr(VCOLwr$(b
zHrB!4`xk%ior_gbQ9-q`-xqgnE)J`wuylFaB&I)Mgv-{~ib~9FC4D?{BvPdCnMhx!
zVkv|pxK@=uC2~kSbpR?3lbSW*6#-3*i~FxJz_NlCf>FMNI6@x>)(H^Vh%A9U{By;1Js(i>kM~C=2Uu4rXnpWM36g{+Kz~X~AubvGt(bE3;V`SC#xV_hqDSdy#
zw$*K9aoB)0)W+XsVo%~z{eGPLCh?avic$yk3I6~A=+ueSua5zWyfx$b4Ndt|tWCKk
zkcC)r*oL*+`1M6|%mMm?M~|aO;hBHby-lyjKI|ut&4Qnuf6e|A)r|HjK=&@k(NL{E
z(ok-o0&^+Fy6z>`1fS#fzk%#!FGQHk4EuY^_yhCnH*l%~iK?myW+DPpztGWJIWf
z7lD|2IQ;X`aXzP`QP8cp@z^clM7w1l7bfna#%zs`K~)a^~vw=y#BItu;IK^1N@
z8?<*_em1^Jjk%V@Ngh%0PI2?Bu_Q`8*18xXpxD_B!$GzR%|71F9ErX0kngnQ98;%v512Dxsjr_-YJVC3y@B-DTt+5V(^7SbcNgWj(eBqEh6k)*)Pix4wd26>BO->N=d8GG#kjH*xLmf}##QCCRmZcpSjb71
z#N{#3FRdo
zTM=K5&Sf!DR_v+-K=>HdS1BvQTRyn8Flt9?B9%gwH2IG(K>+9Yys|j-s@mQ%)3P+H
zAp)QP0+2?MtO*^sIxtw#xL2%{Yy1wY2{)4|wr9#=De|~16>ibPZ+xsfmovCt6r@UT
zHEt2RMtaG}didSewt=3V>QNB@WSpzDV
z)#FF^DJ}IzU9WG`Dh@57%A#N+{4UC
z6n8e3Q#E4%Nb01~tMCTEInreqsyAslAbZN(pK|hAZaa)|(ogK-Vk^R|?6s+m?rG?p>ueD?7dL
zU9C+~O`eK^DQCx4WazR>ER=NgO&A47JnWXJ@gf+BUY}Y
zS)zs)x^N|Oj1oz+*8r^tf8p#cfPV=cwI&?m<~i8VO7GDI-9-p(_yp
zFsnpaV>JY^XKhQVOG?@a6dG8XbdvJ+)Lb3qj)FX`W=e*P@2N$5y(ThPDye7{Dk-Ll
zqMj(i`r_G{W0VGD15T2w9Sel1E2OuEx_j6aE=ss6#GZ^c{lG-hz(OpH+O-C0DiFOD
zTTovWwSJnA!4x!X82}wSbd6S8O_hYkVewFAcPyA~y_2q@-O=n^mSd*saa7xZ+~Tqo
zPmijLF}+?%s#PgxdPwVPp07{YtH9*9iws^Amp7t2P|_fHykNHhnN$LRH*9!PNUnv_
zPP#A*MQId-vS4jcfds`c~
zquaGLnJuFi@crj5?8-FKXZLjRVgCS$?|tP{x^WKqSW=fAMMsmOhs^CsEH4?rVG(p^
z@a~>NB^F$!fGCjF=^R=biBil_+fRCsLAOzB3nXje+N5DBVl;hcFE?dnl)CrOBCLqD
z>|j7XyN4|wW$m5wilU*T$kA<1$$ZXE8r6>&yNe@Tx85o$FTJ6~C6IZjqVykosYJ3|qzba8qRmmH
zu_Bbhlc-P)HH{CEJ>3aWY#f9*jlVrMZyC4iW~!}5%ds4sWdvN
z(q*v?8dmKi0FkYWceMdfS!-2{vnhJj2*}gYI=-1Q`AH_)*?fg&8#MW7vDxVHHMsgZ
zc(PeKd=*wxCyvZi;L$Phi6;IlJd7$bb`n(zigOGStd3HUDqX~>Duo3}1k?h`11M~f
z@QeuZtE7TLH;74c#>VDJRFguWs5PJ_j8s$9=T-?U4G%mgUFY*JNsq0-ZoR#QtEcl*8(>$>vd9Q7u@nwn9Td33%
zLN&1}6s;9O0*-YP_(>${p(b!`JGAQ>O&pNgOlg|8#RO9v|U-+nR@QK$Vt2R0nYXedwX$j
zJQ@W`tw%+EzP*d&guUPpEW=UBy+fuRVpp?+lx0YEgHkmFVcS+D=g$br{
zk>uIbei2OZ9b<&oR_?bDriOr$ipo^25~cLyH^elNm6Ih4kxq@TTK4`MW669B2m*nd#A_6{D4mfZeLJG*V~)1d*1~l+=U}-P{{D
z>gMFxIc#1|x-9h6+jq0J=Fr~R+KIOQ2MM-NcU~Kp+CEToOhr
zGp{y2W27@%qoKA|>F93M**j-&ZQS+Hts-5Jll
zdWuI#>M1dQXEiE`36o?qRz}0Iz~f5%RVR-M54OB|GL7W8LvbqUnTeu`lQ9Wdn!)0$(LL_Gusr4eYrB4d+`S7Pz0!EH8Zb^={CcVT|5-QvY
z__%juP*9eb2hfWF}WbJcLlAs*n*BjS8cWXl4r;K~v|^!ZXMT
zG@#*30rn3s^7-_o?2WlMWOYYvb#7S6n8Nl?RQ7JiuG{th0PaT>n0?u@GkAJxI_ynn
zo`SwPvK26pvc}`cs=#VhA)w$gu;K{n#Yqeg0y_EOWqNC;HwVVKcLW__voJf?Zo{zX
z7d0If4l65}tIO~F77uaI?K$?APx!VgH-*Pn(9%_z@pSOZPp+nlug>x#88nWv=?s6>
z>s)&O0F-rTV~yhuKolS0K2*p#6`&a4dIx?_{CCc5{=ZA>XjoP+UDkyZYVpDO3eqJ4$xe%#;N+X1pR2H(l=>WOgpnoYSqV4%dN6KRa2
zQR680gj!<8?8)G*$|s&`#%U>-q-^TU3MZ;79Yh0M<0Sc-*EI6~08r@U$#88|qedze
z1@8eu*S0?lDALSH)W?pKS`(|ID?#z+w0h$Z^X^@VzbLb`86alde_=;m3>n(&jbu~p
zc{bHFd941$qs0nJ*{LL~p;n%*Wv&zWOlj@lVgiWW#Bn})goF0e1mpZXtE$aYcI8Rk@b%{P%kM4Eo~y#w&$_87(_>54*b30QZy&S&
z0E6}-?wm#r8oJf18A=$l?oB*~Y0;8(_EIuLrAZ@E&*$>}pJzmS`0;lsd`{NTxEKPW
zxb?3RMhPaJ97Wq{wjzUYPrcTH9nXl|xT-vc@yO!#mfWnyNww*)m~DsG@YUce;eYQ=
zE=nreOpPWElN((5sj>BSbqa2WP~Hf^H9S9+DM82l9&|kiUf8i2>7R4fZhWRAYt5L8
z2|a!}vy@d?4c)eJcy0NLugz?oo4MM$gLT$n-bxLnkHg|AR+_VI3Wlzh?_EY@dE|9%9^W)|x!!E+k)ci;7
zd5-Db`h?7(JD)i%7B3sPe)|>`w4es!T06zNoE^4;_##iOC^B-8B%wI4ch80wbr
zb$R^lY+IrC5>W0OrhczKk*NF1aW(?Bw{ULwu(fz7aj{j=!BI%rD!8Lq;FXe^t!bcG
z)P^=x8c=Wm5B5Jkn=I8Px#?9yoXh2MbQsUNMcWx%fuoZjE=Xml>F6qVM%vqX
zJZ)8EISBDp4IGtKYVOZ0_X9)8=y6
zF1oMVwbKYq2+L7U*?A|##FY5_TU5&;SC=IY~sD7&&N}&AxKh^#pQ`4WvEveRcEyIW1J(`<~
zvHJF}H%pS-m=m|FVV`YnEWNhw=HEDsH3Q{wc}&g)tMN6Pe-D^Hz>0y*JXFy!NOz2+is4^Z#f(&Efv&GAe6#1$fU(FPJvxOx5$BwIwE2_japlo4
z`Rl#**HhzZelcv!PUqTneT|*#T)$`0Z$0^%>^#QT>+P40qRdeB&UZDEnzwG{UwZas
zNv=5@4MjaPv>2#qrbj4MP9eK_EwoAov&Foa50T;JUWqT@jt7uNPMs&T@mh~xKbJ&?
zDi~$SVraJ3OC3c`g8l+F++TTHU0o$HtHxw<^bqF76-FYhF!ecHl+n|{5tXK^X(jb0
zk8UWb?Qc&$h=?FbB!jrtzJSw@%AgPObiKo3YH)j3abqYmIP}KV?n>MiCmmd5{^V9-
zXU<|J#8+jv1T@Q4lErTql_}^cC#0m0C6=L{mE}~4jH-lh;r6wEz;jWWdGMt&K^4bE
z-XM}tbF1Pcd|U{oo&btek(EK3u5r7Z+ZYQIIjKN9QI1RRGXZ{I6F3;ZEQy-DQ)r{;_@NVYCSLbVF
z%2s3RvKxL19pzI~lEh0v8_}4lX~kQ^4Em8FD%I3YYCqLa@bvMcv8x*D28ZST9C5Er
zbz53M*&WHb=rZ^`b`x*V?aY-O#s-}DYp9xv`DgO=>BZE!%4C~0Wu)U5;p9CZZdIb@CHc?za^9e`5c)aIWo
zgZ}^*$D=!Vk{NZTSOZdNT6xlxp*7=^L&v0z7BVUtoIM2v9zllBkYXB|iIqO%C0#>9
z1c|sQlvGndxMZkmiQZO0Ov+>`(P$4^FjlKCclxk+=cgT|a&@;KDw+?o{2gPerNV9a
zv69OS(oK(Qteq`YEfr2nB?Q$q6&U{j;!?p~O;uk>QCBWnNKswZRfHcn~Q%jbnTvIkalvd{i^f_55V#>>pix`xsv~a~We6dSOO3=h2
zsh(JaCBs9hixWa)U_q{x9(42n09Jb1G5FA*^7JWeypgl*nKIS*j2N1}mp_`uH}`8E
za+5q6DJtpr9;T>*s;-i$Dd8})3aNyy(s=?><@2vYHZN}M?A&$R*K_QBr{nwTitVwHn-iC!-<9)Xm4uab
zSq$rpRFc!yu%8YMRW$-o)I!2PCkRO~xKFXCQR8?DQSQ@scEr-T#T20SU6p>+Zv~{?;
zNO9F0YP)YfPCP&HvRG2ZEK*cb!b8e*ysB9v&v|Dh-Nl^V1L{o!NO1bH2_v|~M-?3XkFIAG{-?vi<*ci&n9;e*9
z12fmVPp|1P=LfQOZsFco%zyCeeWQ`W$6pOj{4zr|QL2zq)C&A@RjZPj9b8nK$B%4W
zByV`NECD%CNG<`$jMAdDBDCX9p>6Mw5*y`-ZthmXVoFIOD=;Jiw(iT>;w5{CrlJck
zZv!<`ncJAia&-e{?#g_&XzZnu@KCZ#|iWDJu~NT?Mx;pO&&_byK6J4#Bn
zF*>CHk}4X4eAMY>dghd&;lyOgbcSDWPSl$hX71nP5bY{TjGpJIr`+{)Tc0zvcMDTZ
z9^crx&d$eeZPOP0!Q`ngOI<;ftC|{W3V0)sJzP!ia=db{jw4n^Gz1(56$eli6!jjY
z`g9B2;+6?r@AktSu0RUPQ%eAQq>h9b*+?|gMl4Q3o{wf1ZZ$p=EsooJ{{W*hT{QbT
zdL8u^Pi_S5X{zclwZFsPt@{fVxN3J(Wj5^;wAK5l))lUju9}$^u`*Fi#Q|!vmx@tw
zTxYlavXM$0g{CQ7Qk@cO4I;eObB)9kqKEYU$3g<>CaV|~S`u{VBd`C|-{ar9_g?qz
zz1BHqiU`_S<&GGTUF4P4IM80#XL1!q&*b~}44$?DViiFrrdHgT#x9giQ(~#Xx
zTThBYnqhlK#5|URqwMlK=?u)l29*rNg#+-nJOS*ObYQ9lNE~|TJAq*C2lNbW{@V8U
zZB0s4)2mQ%rh2H)=F{=hX8gC>T_^FMenU#zf8-udxH^_<+KO>KMl(B*>g&(3r
z%@nPVslj$O7adf!38qNZT|v_9rEQq~NSypfQ2eM5`A83$J_)qgA{DZHSCqniH
z{OSx|>+8MCh|F$UEJjZ`jLmGsr=@+_)BEym%O1a|^eVH!l-MfDiOOyNU{fyjuJ8oxV-U@cMPKPCq#^*6Dv%3mvsi`ts
zu7vXRpOQr$N4R
zB@SaDPm`mEDGZr9=_&Ud#-(=d=f`0rnvS;{T3ZPXGVU5ojbs!xR24Yl^HS8%66ji>
zLQqW0t*FADUSR(Ks9^LUvx<=*(UXIc2p^Zug-FOEo_!9RGb@JNTU6DYMlP1JY-F^V
zTqfhLt&3;k_Z|~>P*Bm}rK;Lkx7}G>Br;O9WgT57ktpgUsTC`7#v;iO2|}I$stDpi
z9CB%2A`cNte8g}%eLFf+SxOaRbg5PVDAF}ki3|w}YhRZt+{P)Vq-q_z9#Ak^p2
zNv3h+NfqHCpu9#{yKTSR=|vC@HE>XAE5M=}5XXySf$I5wAO8R>E|ci3+tC|`yfO23
zCh*I$p2x~%F<9DtrG?35_Re0Zwnt7J)IaFnuQ9c9v=L!v&E{$+IQ+F_2_#e!Pft#u
zt;c)2zK-=RTS5XffO9~@x#{2BD%w{CK_gWO=wY;S-rcp&WpR8wTY@UYs9}{ov4hyf
zT8deY7>p?+t5fV9?@6=s*xk9cD_b3yU7v;S={D~C-Meo;xVCR$&}^|3onCgn)2?y=uvYD
z>R5=R-WZf4I3*Y__H-nGIA>R3?iFkjTc6x{J=M532V7)udslAOOfZmDa6}PswIv66Pr^!zY?LOavxqJxonz&5>`dBZ1
znLA?+$~6O_wO2AWrenmYIC3aWG@g*mB%b2W$9%qkNLp(Yr)nq)qkw8%OwBY2cxumkX1V50t0G04u6G0?Xm)ZU{w4JuQy*_SLLe
zXDJv;#zGO{h8iO=k{e8wqPK~tad2n|>C-d2f_;RQnR-fk?Y&u^-jtPd*5-5BT*l(7
zHM>h8klZ5o)=Y7SnAfP2rx*A5gI~;j8Z@qXkS_e
z^&h87oHa`>_gQ-yOP|+C8c@|NT0_{yjuT7i;X~h223M>Z`n}(r>}|P8jFK$2@7ol6
z{;IEXRM1UBCflg4!fkA=4i973*CiGzik38qr&(rUSx5Hi3utu)jj2!zo<#YI42OzLcOitMe-
zHjX})8r_YEt^PGrK|zbdM_HNLv~lDbfoQ3>7FBdi*b1rf>0cgBJX+~)me)%(#%$*lpal_>F~<{6jibmR4cw-izG(7wvB_(EOliS3Tq<{JOS|n
zoRR?`o`9{}+*zm~8LVFNs@Yh)eiv|Ja8T|2ulz$Jo!d0o*001+!Pq%?GTVYmY@X(&
zO4|4`QN2|HtujJ1#H@=?7Ml&8f%?08nyRD&m#svhMGYd+$4rq{!mGz4Xc`F<4w?PdV6m$TM{N
zp9@=2SiiwPxz*TgPQ}UY`l_i}D-10h_~uxmn@dj4aR$sIYFw;&cVMd+VWf(8YXrCe
z3><2yrUyXz`P%YXouYX{#>&Yv$ul%z7N$@EL8!AZkrJ916~;+=?QX#N6}UD|+0OPK
zX=k#@p8HyTl{|TxeW`;K`ARj*XJN!_OeG#C5c6&9Qbjq6e6=Aq6H{H
zkZG@V4x%VRY@IH9BL+6RZ)}{UCMt@iIZo!?LW-Ukv2})p)n>=#O>gmBUNI+*m0mQG
znmDC%RMPMiBkIh@9SC%C90&2KK(?FyZ}jN8<>Oy>68
zJM%KwOnfc(f_!vQV(F=Z(5_CMN6;%X%{}7Ol1b8dP;jZO0HCD-4U#nUTMg>8;EQcR
z&KP#7G*KVKbp$8`jKl!BcFP4N-+OKz-tWBb+uPJxNU?OWO_Hsts-=n@ueGokY?#V!
zt@GL&-UrPZiaM>Aw=3$QhL<;3==6A~;>Q`aM#t2)g=8VTMmPeWWig!p04&#~me(!0
zMp3{KoD`2!0?I~&4?(F-7gYlMeaptDBVlxg)9XwQ*rnUOKUs*OU7?%Ys+p|yE+;?O
z^tIWFZJu{GVCQG3tEt9OZwl;wRq^;bSp?YZT{%=qYsxbvd6<^eNhFH-)6Rp`41dLR
zapIH=s!1TKk^sglMWrjJ6*Q$yMFo0X_FrAoZwWUB`PzSOJ2nl+wyHMn{n~UG{=M4W
zN7b0x93*sfm|U*zg1;}i@ZHal+_fdP&R(0!vE#_53k(%gQ>H*hgaMX18iU+RXVZq7
zao}rSH0w}KRK*<8vc;t0x|yFmLf~iv;^1{xi50Fr>b>i~`#&GleN&m+`}cP5F3j3H
zQ?AAXZc$NVEBjV_wKmPdV|LXvaZ5u*ire)p(h54-CZ(^1{{V?1iB&{P;y?gtE5kMP
z;(s&zxO5}4jT}T-SThPx@uAI6&+Is*4_ku4@&oyd{1(`M2>u21AM*D2
zDlt=zAI~}b{{SJ-!5+a8>oYc*Qv?(KLHlX>o|ju|=C{c2kG<*gQ+t0gUyZoEv9jgb
zpBQO(pKW|SUBlaZOXF%swKuJP*4zEhva(qjx7J3BF^$}FR^@Ye2(mPIi6UKoXil<<
zM!A%rE|sU)f1mn~mrEm?Z4s7ClS}X&$hbSuNRW8!|czNHTy1y8I?F{9h7MB-ywGv>yHslS&*QPOd`XN
zt&*}eNfuh=s+N+KBZi@-L(ECxwM9rCzMty*I%?h2A=AJQuwefHs~&YD&!uMl+dB)l
za5Q^MEx0jzm~Lzj-=#*_%VYM2LlwAk`<&+TRJAkEI{vGas$^Z%x^{GMGKu&$GK)x*G4gs}M^^H72OBapHBbk7Wo|0Mq%>
zgUDke{w}>W42sjpS#?t&{2-D>Sde>LH9nsWI=!#u#qfjS_sQ>tbMCI~>0Cc-R%Cut
z{Gk5p@2%BYo5A*F9t#bh+Z!UI9Cv=u%HT6~SV5iIb#l_LCS}?&uZa4rR=URNaAMzi`L*X!7+H9=f$v(Y1hL(zkxUY0n
z_B90+CMeTB9+wA->`W$Iu=E(&Xrcm=o~jyYsgTl0rj_0zqv~b@h(Bom05?Ux0({5k
z)oAvo@=W)1D@*2zYT
zg3IG_u**mR^vI>YncaH}6PByMM}W`m+=9n77jdOjnP@R^*3BfD8fkIyN%vBxfmt@P
zMvD`JCTc!@qw?d@dQObx(u;~8^ZtEN2VT%s;x>*Vwo^fmhaHtTjHV=gg6>IjwNtHJ
z`LOvk6*zgQm&FAYbW>7AJf*2xMMBc6=@|&DE9v`x)sC4h-A;_2UXL-3#6q}pxUkr*
z%ahFJKZR#AP;Em^CfJIaTAB&!c9m6pvu+ILBXUr-KfxqRo2K)FA@aG6@|dVNKjh<_
zf^&~vsjTqy=-zx<_{)vnnaz*c-JKt6VfHrP!nb4p012bSOPQmu&%=^9XtFqNz1=mZ
zX>JXL{rfnYS!gnOH-j+r?-W%sqE=`oyqS8QP`;jTr1s9}Ak>
z*@QSprN`!Wy*@UcSpNPxdCcWR001k)Bafe#`mlO3Qb{B>cptad{68`C>ZN<%XOE6O
zxw`(#5wr9Cf4TQQOLx=aYIb(#+xW^{#y2OC-MLIv1Q=YL)f5<=k2W5HzMDIP`^iS!
znkB_I@W~C=P~5^bF%AU{DZ_`K9YVM?70Jl!R`ZJ~>JeE3R)iiP>IVj(DFe7vfq{a0
zHGLDl@VlY*?8kdnV|T{b&um_`iz0&`xTtFI`wyd?bfog;>nP}I
zS}c84e6xuqZ7uC>2Aw0I)bHXmpDN?ahwc7dKJ8q7I+d{WxcMk6G{=a^;o(}Ee2zZ@
z{8rP)gwHnXG&E9VDynPcrF@$sO1?-nxzc7H&PPd{_Lem@C;e3Zf48XB*y?oIyKSf{
z=_~5?_STkdtG2PLh{z%a)E)%M;OeRV?*oU**5xCSv(+?K5m7>FeNP|SaB+e#db59z9b+!u>TE+y*qXepZXYjOxYw^+b!Kz8
zJ>}aOd~5aAGOaQB94_44^tf%4ouaMDv9?K|l1&Jy43F%NUB(BVO--N{G^oJ~P)I&Q
z98cTl)56l>Vu&Rh3tG^5RldSc05CXoVDUJby6mcBs4)24f7@oa7D0A~-Q9V7C1&qk
ziCXma*j!ywre9{|I_oc<+gNC+aahP@GD2&_(XA9SJG-i&kU{?dSNgw~Ntn8do;b-I
zEBxz|$K~hILfo6bCB3rqZpz9es%pAzyGsf~jK^Vd^VDqj{_E}PN+=>)Ty_GpX;959
z)XPm1K{XIE4GK|11)Ek42isf`ULJMxuMUjkkHSqFX~wy)9R0cJ0l8tD3m)2%f+?{y
z+gCG0xLkB!Yc%xq6;jMHd2DSQc^98EH9Zp3)V(yS8Ym|uN*$b*$w$j6Ae_^MeLh}d
zzb=))#N}WUZD;j}sO2p!E!E=@`g9wDS2MPcEp^YNoI7XQa=bqKnUw$5ieN)brEfpo4Bx
zW2xyCMsg&j+eA^}-8hl3-Lpv}|csHZzeAxn}>Wh~V*O;@<%FvPiPykvDW%S=RUhN2Q=f+M0v
z_pA*dkx)+&{JlPZ;p=s#dgr%t)Y%%{t&oO|qZ^7k>fhk`iWp+4pryyvtxaUv93DdW
z%vE04ub5TTJcLvUAxL6{(^Zq*Mod!aYOwPa&N3=9+%Zp{dNtcFLR?0!L5{SpFnvvN
z+H>oUj|R?`oPP++Q9&I}PQPcaKBG55x?#+kEM_Wdtd2VwwzhUQo*YE;Zk$COO@HxU
zw~YhZik&1O6WBuPGRpB6pjj%Rmq=o02rf-VhM=Wu=5TA&sbO#xqMJsd(NURPu|-;t
zRxmV@>sHlDc`Zl-rz#D+&qa;MWpeos<4c~$HX{!5$DWTVf~1cpQ-r49@46O`JGb#P
zboHie-Az3-ej3GO)h38yWV016=we?4qg2yLS0o1T^wmix;03-Ka0H%=?L(|_O0u6F
zWKy6I;gAL^;_IUT0jrR|6?l-Kg;~wHK2IGyPZ(w_H5GF5*TYEw3L^}x0CCaB**j}yKU(%&
zyI*B?HYa)Y_AeLMKg3fnw{v5AWT|oRVz(C4f=bQGVx_=SP{^%5J{nUbm9^Bmk&+)L
zw2gZW@6tST!b_5+NGj1}kj%8HH53keN~;l*PJ=gGySeN)H#VDvq{0w8BvKkVvGA*c
z$_)rD9d)BJf-zp9VKDoSzM(NYqj^n^-5Z~8&~81mxwmfBsgrAC@n3ZYU~T#sVp_~p
zTiv3eT3Tq#i&0-at8A3$V)o&V(5R9aX>P1TsyL}8tEkii;by*yJ963Rl51Otq;z>%
zq#zY8wE~^g^BTn|>PW8+hP(#Bqn;W}_8V|vu-j66&OdNLGYzEGd;s7WW&4lPbeJjXKmx2vsFxK~VIrkZ3}N
z8Bs<#C!qHAv+bMAa<1WR8zZe2VcRN_cqEk63Yw4(D^W^xDGatxXjjM59e(|5))>s)
zWSbALc7E5{`3>c{yEQlmTz1dFWGW@v8N7L}UtGigv%8WoU$9SIs#fN0guE7U8v@=eW#{{UfYe|aU%tn(_vawt41
zvaKXqpVUBW6g4{71`Gvh|JC0S>i6YO6ga)RMINw4R#v|uB##mPnA$30W0KtZ>P5bm
z{)x%DKMKYN%%AX6{JmSlWT%NdZSp|a{M%3R2d>u{ylO_Aj(-~(I*mz&$JFD@Y(KJ-
zR94s2NUixgqa*R}+HQ};=sv)I&(?&~E+e*vqs_Ik{eY_f0EeziwVbe)S@H8uEIie;
z6&rox=U#qNKOQ`F0vrBy7fFE@
z{(yV;hc}(U{e!P~Q~BK=_m%$uXR7o0K~MeE`IqnmcpRN$?!KC+oPDGZ_B*4m
z&g6_lf`#dVijA~O2KBQfdQS)2S1`N6Q^#tS85A5%JcrLcD7QvdC8lC%e}r(z^62aT
z01W=QZNNw5e-sK2`xxm_$NK_3k?8*bhfDtT{>MiD08V`7dVRfh{35us^yuoyewlZRcUz&?fY#%Hd5;;EIoNN4RNe_YOJ?^*#f9;_LDiHM7<^YEdMS
zQp-
zI%#V0n0%Dg)HKq?*V}6`MdFqkgm`MAq|om&!zvUhlSH*8kBR6oXCz%+i>=!
zR4r}Bbsps>P7W)e5JqYZGg=%hE3sR5aVqC&YODK49~BNdqYEBi6G4un%2HJ160W)p
zm{e`N&g+|R=BefWC0SWNo>^vHLSyQcAZL!Nr^7WMYJ>iYpf5RUts&
zPE=OBR1EZ6yN@fsH)mt@55~Te!PD)X4}W@0d%TZN&UE1TULqPr!GrP_Er^y?8H
z-8pw<9WFvTDX5aXP!9~!M?~PW){(2m_fs+L2S4Gb&X}!fT=D4!_juOw$G5-~Au3sD
zPs77k^Z^=xE37YR?K!dEkpBS7gQh+Ze4zgTWy@>lVC>%F=s%9VZQ9={d!9_(v{d_p
z
zb!cwaH6s;V5IS>gw6VAeJ+yzR97Wy9A(~GRXc=G>xC~=e3yLEbDr9RQ*m=n}Uf0WI
zHb#GCXQ+C|Z0-H;Sv5Sn&aWZ3w{Cy1Yw|gz{^-)yQs=iGdWR9Z=(5>H#ZXmjdVIi&
zyBe=m0ynT!>R^=?c->lNDfnmm5*4bp4@0YFS(V=2M0JHkhvKPX=T~Jz
z6GjZ$RKyyLl_Q`(c;L47)}^4Q&R}GPu+UW0WTK>`*}HnXYvi_`+}-%vY;NCmq2BGc
zG5wcJ$+|N2xrEirxE5J^kk0
z8;YL2^Sh(8aQ%lhPHHIV==Lt@s`4dFkAfL^XPTY{ia03)XoS(=W8xL1Rfd&PG^}ix
z$#oPU2hu<$q@I*rMglZ4Xm@5qHMz384Tz|->grl(wKe)la$RJOE1wQJjT&^xt6A2@zX_up0U`?H
zN$H2YX(RC3DVh-NLRz4q1pq(@t|};Ugn^w{DnBPXW3~Frv3CbiQo)G8<
zo>Gf=P~r0xSdFzN-=)P+%TtQOQfGFq-Oj;RhOVk<7M8K4N_3i3Wl<+C?3Vk5oEwA5
zK`dcS28xAd)(Jm_nxXg?PywevK5ge4ox1kxZL>m54^qdxsc7{n3z`VPO0^gvV?rtj
zC{!ONyJ&7UsmpdfcJag1?Tnt-%5BZ_k*CaUytX4LJW|xsRN^Sd4eqVx$%*p;%Qyks~tI8x2t({U=j)g4Xsf`rSCkNEW*pCeFZTF!)r!V=>XLUaLKX
z&(+e&xHDVd3!2PLUr&mLiH6{*cB)2JMnw-xZ7s74OM7=vG?ivnHLe1ctvohR6`Y^a
z14;5Fdv7!I3rV|O6C5#8i7tpp;PpVwS+$l{b<)JJVT}ZIf$px;+nd6=mXm9)ZMMeV
z%3*7B72BqjWU0zk)9tKf4JO;&HMA8}mEDSyPfIHdq^nP_%?&iMvc@D9+pO+ljYZP0
zis7{Bs9h!4>QF)Oz#o7UT51Q&pqB5y+FpGXjh?oGY^R7qu|*_1;4wiN1%Rrvrf3SU
zKrU}7EOZb73738@`a1?(-Qb?PJ%&h^z$
zsK{3Dm&Wa_=avJTp%NtYKmMNm0U}79^CebC7FVj+I8Y7W-|ys>QBNTU`_41XY=skWQwipb1a|
zy?B8OWM^sj7V_Kpn&h8gE)}%e&;uQOjE@ymgXN`R8eI
zRHmva>fA$0>=R$fJ)|sQiDZ*cYG%ABeFIXpu1jS{5IR@4w0n%AE6c$I4B<|``m(!K
zlrBOs6m40MiUzcHWp)S_0H76?XI`mI}>Eo?;XY2J;S;-Y`ceZZ>;4fU~G&g
zE3UU*OA$j)QM>m>BRiXHE*7_HRZ{JG=pvR?H1tbQ@&+vTDXuTBAi9wn;gl5v3`UZ5
z0bBwGq8w{bKsD%DzjDUcv{@b7Znc%!%Ee3+Trg%Vz=5iRQ59Ar0<`On@}-)Ke#$ZU
zUcTMCsaLP@Sq-=Mn}29Ww~o)=`?nR+J8HHKjkc&ZmSZ)uYw?t{H>abhqsnA1?^P`v
zl2!XXP&Ay7x%}z|qwAmL>E+OV5(GaJBz?pXD_W@5a%uqtoSK2;4F^Ihb)78+*4n$H
zIYnEC+?ZK08`H3ADyjDNKXe(ST;Yp$Z7<{EYRYV7USo7inSz3o6`j%NU81*8I;2l@X1KjqN7ZSk2}X+qQ*Ei>{b*i=R{0!VNHS2=M>RctF?LwxC62E=FOr6%)1&0L
z3;>gluT@3S+g}URoz3#w1F?3M7TepH&FRtjh-mhuAcmV2J}2Ym+I*fiOg(SJq`*?+wJ|G
z)?XmI`>guwZl>nUw&TxI;QIGyb}k=l;%RbusT!(CBBofvR)Pd!X@O7xa^FHcoFOHwh4}Wd#qmk^)uTV|ceGS~(uMagwPqI5RZDhMot}+{=
zF}Ql`D^pWfy!QkWWT^7(QBOS4)lybUlhbQU%^LWq(53}IBldpJ_IhL}5*6UJAC-M5
zKjOTx(sHMNbnZhNTb{=6jLzV$82!(UOD5!hv)M1A3mKHkKYlRl95sY6e=pfiqo`##BglnW2;%()O(|R?LDCQ
zUG0|5KK`l6?_3UJaAv3L{;jIV`D*BqVViAL<>+dvktwUG
z8UtAs5HU5!=6_{9N88g@alErcs?{y(bgq76k0Vj#TAn!TV$b9wOOMKbE(#jWy}96)
zcs^NtwZ~`ccHi+xcGhP*N4{{{^BZ=Wu6%uNBW`A~64A{CJJUfrf?d^J-u`&su!#um
z82Ahsa2$*Z156)7`#?QhfyZtIw~I9!k@{M$ddaSTvdW(}!T$9Fxk#TadB-+>i0E+w9>-p#Q
zf3erUTzvlkXZsy#z5f6Tmia5ZCG3BVKMpB7ZlaH^vil2iZ=USwy@$DR^fOP|n7#QL
zY)HFG3T&oHQ$2vhW74x3jIW-Jsa8dup^8b;W;NU6VjZT5fUXTO{uBNYkG8!eo>w##
z$o~LWsmEHPr9Sk>Y+8NBGPKgt;~+3pO_IQ*6wpCch-hcpmH7&a9F8OGGQ?866g5&r
z)swJgjQGsn&C^Q9+zmxNK+l)Tzdn(Yb>oLqI`jL%Q%$$_*vn#TFzuGCrp0FD&*taL
z>~Jw}OOV`qmj#HGw>&!|XwzjXrZsTWvQrq@;=1Z~al*nF79^?Qek#)hgTQ%L_F&hl
zsnkKIA5I^a&*l4lI=`K{K1*wLRNG^&&O>vjTwtFs)0EZqc%eZ9A+Oxqs-m)jY=Enm2+LH{Q`eZ>N?Vpa>IN4#y
zuIssjp@63t8HN_b{zs5npokAt!W;c?h*)x
zqqdeQmOy(entzaexj#O(*AdGWkH_Wq`Dg6F`E^b^FE3TIc4qV6Fw2*rJC_C9@b%U&
z7eXj;6ZUTHj~TS7Y3Wvyij^g+$L%J`9F;vqE-cel(8CI(<;XRdDI^pCf-{%w6)bfysc@mJ7d$w0nT-faU?28B!TuU`
z19#xFTbFP{v*KDj%_i*_wc8jSi;%`vRA+Kod>sZ0C0)0p#aGLb$*xZ8AbI04O_9aS
z)U>M;$tiY55u}dH018hU50-rir%8fTp;JaZyg#Hr$%=W`JzaKJeeDgCy0%`{hatJ<
z!u4A9=F`D$O{qm5-rm`)g&g(!S38BR+*Jk)8snwgIGjyob#qJ%n&y^J1b2`akjX4k
zHkH)+i3HV0m^91ktn2&<@Qj!spFY0Deyib&)UGE+)SVaQhzjG<_oRCL8M
zJpTaa>hbxWk;?Ld7G$J~Jt%%(Z&4}ds;#5OQKda>IZDa*AfumhV8txi+GuFbUL1Wy
zdvpls_Q|EFgjT^DM^OGWMb}VSgP`dw#L!R-ADt_oI`Ha;2DSeHi|TbvayC+iT%|o^
zkx-=+v=qrQRY4YcsOu`ID%eKm935>nERRo5Q!JBBXJW+^4|)J;U@4mChAW@8r^_8y
zn8#UYyt!<3U4G$)3X;^6hO(OmuS>VLe6`s1u8xL9cvCe=6)iuCDsMTA#Kq)A@V_1)
zD*%T%CH{tY3bl}i>Bu2_J_
zx$97Cz#Tt^qloBpvR{_c=`jwO6(DLW@TDk097xr{spNVy8)t9VNsgn;Wgii^GI+`g
zn*3Dse{n&%cFx$Wc}#~ZRl?M72V
zj>8(YcJUcdXjda9pvZO;JH{rLOp`{HS5+cZL!BCOIQFpss~Q{vC||3m?8xe}m>$%j
zpYLlcE4MBxeW^!RU$E=58-f~Kwl1!G)+)CjP{(QkOG+s|=!)vNd{R#u>eIA}(_e`U
ztRhti%Jf#!D!M=*hcA;_c7ufnr`B!E!jVY=JaVdg%aF%bQe?i$w<(%0uDTf>N;ZjFo}g<;
z$tT>AAT4mSNKS&W&^&6y8ZMT+o{uhWITC+gJgl2b$
zh6wUCL2trnvAYJ-(WdAba=Xi^u$YWq109B3JzisSZf)Cx&CiMK8cm(NHy+?zg=Gg^
zR?SgckIdro_|>e&=O$?BX{nqv0ooJ*#ikO-WOe;khxe4nPo+PG&)MN!-qIcQrkz5@!;NbZc4&qklEq=q~#Ph@1a*8Rp;Ww4k%n?X^M
z>pXr7voa9v$*OSJox{AVcV2#%2cE+3td%5{vSn$pvDHyZArr^<62g6>yN$eP;f`2}
zBNm`?V+7@bg;KzvG}2mx5>(J0gR9<>NhD5LfECg;V*s%xgf|+2QNZV(n;W>YQ{{2d_150+?ZdmWnJj)zJiQ%O+k%g&cNWT%GDynC^s*$&=7S?p
z{x&Ce_b9U5-bAw%EHe(T+P-@5lvYOAQIls#=_Eh4e9wN*q^>QD3r
zS3pmK%ek+qCnz$t?!=y5<4Ss|o?NP|YO;@0YW#b(&7I6K7nM~w5vhRSN0oJdF0C5|aG>$W?dav#=Vzjl
zNTr~rp$dI6W^+_Da}~Xm{{RZ1T&79&{XkW@9>dKItX1)^MxbaysVDZaU+^A}<5{L7
z!i2D=kjMMi!~1%Mxedo!7wsb}e^O0DgnDWzlllyn?5w6xf5j;p=jnbu)5Wq{_;#|%
z{++@P%SzYz^?w0}_SXob%mb;1#11knxIoq
zVE2+uSk*onTtyWu3*}aJiClU`&jZ`hT)1R0#SCCN(u!HU@=KBpKF>axnP3`#N0ao}
z8jz#Qg(}qJ#Dmc~{{V#)e=fRzoS)0Tckb@Jpr*}tcg3uxZ{-hE!;*?DtXsDci`%tF
zwmPvEvsy=r-`f%=nwp+9yt$laJ#LC!y`3}20dlmaO9q^0ZAn-7AGeT*pENIF>fX|qkOdjXLApgtE$LTOGQmdh?;6jjP^Q6
zV}MjE1@fVPdRby>q>V=+xH;2WV;;N#uUmUdn2JjRRuy2CWuVtenwsMTg6c&pUODP=
zZW`$^c}!jx85doRskL5R-<^hsEtAA`*4)EQQBFXr$wqf2W@@V&nv2O^auY|ChO!9b
zFvKb)R{SWncejbG;A1WMcGDawf(g%0{Y}?}NMi5|OWfHZ5MzlN!y3@Gqo^#Di#tMp&RAu|_Ld0Klm7Pfi-X!PL*}{{SjSYh^z)?skyP
zHT-Uflg6?t+p!^uSE$uDuMrpk8ZoJ1?7Gq1pEZA(4*Ac?ynl}Nhsye_HrB;$`Ej`%
z&O)E9Gnp>4#ANYK^&@aWR|Yd|)D(uDYf)+?r<~G=<6jZMc1^cwDBuqOvoloCxYlc2
z9I&lvz<_#~lwuYF)#zvh|T;QihT#rZjM|WR5f_Uw1qa
zTUPGp!%D`d=d2K*qf~rhbr!}>Gt#Sj8{50r8%={xC=)myY9k?>he8P&3uz0I6nbGw
zH}>VO!@f5Mx#+Rm9$MC)=AxHMlSm;Hzuqt=v0if^EB7xVEiUA92n1*edFp
zs=6}kkXleYl*Kz6C7A=bYtv0?H8>4g0Il2=wI~YWfRU!YeG|=jzT3ehvDwI$Dh`$)
zMoMX~c&f80R;g27I)L)%D9F)Q_1;GYyDxF?e05Y3(e2u(CEPGe)U;LgRJckl&ptCf
z9x7UWhqyMf)=*VJJha(tK3ghXo~3E#l_E5XSnkB0JW-H)z7yh5S5Bp`dbURuWm;mO
zRl7aNJa9dnv&Q0zRIu=dss<|G=xjS!R5H6(qy{vRh@$L_tt6OTi@COj&D^-m<_{&c
zDr(@)S7Y`^VTvs7PM15o_O(24QRTMOczT&<%SB84YaLBBWVKSpYGIZbt1!1;)Sf1E
zDnkQ7sVWAQZXv2Dr?s#K0R*SM7fy{Gox(*RWhy|fhsh+N#R`&1qoT8FAdpw0YrVJM
z$=qf`B|huiJ+HU-p5GBZMyDS`w6j}VcW+&xxu(d_c5W-N@tZ1SY6|HfrD`c_e}~DA
zYG~<&Y;B+u`$+Z;5r2v!D{xZJ+N`uGq_#l^Dmc`ddG!%)n}<4D+|L}+Ok%F1A^<>8
zX{hO3kZ8)wQY%d)U>2Hw+1$U~N*s23y|+$2np}==JCXx+w%e(r+?$Vo#Z|eet1$4<
zN53-Jte)z`t!`{mK(%`C#YIL`kUAl_
z-Z$w>>)dWbDI|d<2s%M6f(1`(f~P=i3X`M&JF;%U-gLWc%~9Lhm~Cu=LI9v6NL3=WT7g`e
z8dT??%+B|B(cT;8l6fNm)tW?eRnlC7qgYm2>mr5dDW-&^s;MBTpv2?$;zy9l)?)L}
z)?~i26hOlrG}sKXPT
zCypso(Q4g1*Ef+Q46M-VYHE}Q8bYJhXdH1!X`=)H>Xo!-z&I9UVA!}_~*o9=BY=)
z$5~rnJJC|jkCuX~D^XQc9=C9K>G4ZVNUYMB;<=9PF0$l{9TrIPo?s3&KM1Zz#ofa^
zcn*vOv5L~lPani!YV=SG9YCrm29ejq)gc-|Y6c)BI#C?9=gjO1>If=V8$-2scF)FC
zVdblekt$5s4aJDUPHBWywf_LbXo47>go=^0sbw_;Fff{FCV~?yuj$Zm92S%m{{Tzz
z8s?d=Mynhm+Ekr`xnVA7aZpNuimn*7O$za<^eFWuMq3e%s@=0y>(HS^|i^^G-lZk{x*G;m|1iRu3UdT%nHG%_QK%QWjGk~fK^R-%LiBBrzz
zR;?%q$oY!(t6?U!p36hdRG~k@tx9AKAo($R6F?HWPez}j{#eh}mDE@*`++;NuC|3e
zRwE4Bt7P0gL5Y`czTw=FVs=d$uG*>Us@j~qIkQ6$eAW*dCx;n1c*3JCwZY=eeQgQ}
z*plbZQsA&}n83{rYv<9^?)$Cflr|SPZQ#|hT1J0XikgY56<|>bs=Lvct#W+#6!cll
z6&~p7Y_{F(DK|;L4dvRKw>d$c*_ds~y{K96dlwCzq@|_FU??A|Fx20D>dEE~TO#pI
z5SoleT1O2+*il*m#DT>9wXf{yG*X5%lodb;RbC`1%MrkxWRD;K`Sd1kJXdC6cRprn
zIrp9mvc}-UVfQ}k-Z3USdu?jGZan526S^{4I@XUeli_eUq)JM0MUNBKW8gxq(A6{4)8>kJM$sWH(10F&cIae+XPN=b}q
zqBL4l9SLn>5L?3#PzX^`^YiMCI|KRH{{S<{`i
zi_p!r_q%N^nbP?z#^=h??pkf@F5a4ha{mB$VyUa5%wnq^cxb8PXk&=_#@BA1G#5T7
zkW`YScW?nfB8o>HUDY04F>x)_Y~B`vr+_1esi@=WOi=Xs@jLmS_Jv;L?0w(z%L%l*
zTWR)JedY1}iP-%Ku&U@g8>#B?`&Vr2`d-J{xebe(>^+Oyy>qdm+jzV#Z*479nWdJh
zT&*U7PdyZh?|DKyt97{Bre>Rg1d1G=g_IFd+9*v4KZ89nZNELdrYoqxhmA#QIB`;I
zLz7S{DfqG0!T4R7L%sGU3$%J~d+mPx>n+JhG8=1n_1;RGIW9{W;Th*N^is~H4<+#Bm_(B4-=l+I~T8ODl^$!KHuII9S73+&96m~%WiBb5^cz7bJcl>rdeml
z%Pl*sAo-<@y{d=-3J*M=+t-w^m5oMePs{A#=lOJ7ch5t0ChE!0grV3pI4Z2(3c5J=
zdf=*#Vy=$2I~F$$*_%TnkICWcqwB4`M;zGN#>bkULuKRSUF?-P!%Vhrms~>Oj
z=*lK26=Ea`eW2$Ae?)O3EPUx+saC&Z(^XdP?W;&JGG=yk`C1AM^--CsprYOJZS2Ij
zn(VwZIZCLhaTvUMDnmmJI?}WX%@m$jQyAJ04uP;uaZ2NjE9Orc`SI%0xw>NU)W)G|
z<${X*I>P=GUxX+WL5_@P#P5?Bovl3&RQ9^fA4k;XGMSc2>P)8ZgRb(sew0^BjHZgV
z9Fr;Znzo`M2WUVr8b{N3iJedo|$2KQwR
zZ0WWt@x6`nD`@1Rsio^Y;m7l1(|ONa^TL`n>-Dm-#ei`H_gnZ0_dRD@V8U*gf4z
zj>+y_&yUPxGWiVsR#P*$s`oY@J(9?7dJ62ePd`zFsfKKi@ejPnOQcCvd1edj-W3s*
z@qr1X_V7MLQ_JV}eELAdwR91xqdZ5S9YO)Ub$5flb^!zoC8Tgb>@4;t~|L!T-G=kw~gI3SV!ug^Uw
zem&>2QEu+B&zW}i*r>zrZL@&L?yt6_f@a&hn<-g|-J7F3y7IKs;x^vg+cfpH3r5pO
zm6cTyq;SHs2%L&tlINDLP2y@~QQUcX_|$uf7SVPd4tB4=wQTD?Y-4L*T~b>
zW~rY$#sd$#C@}lCU{uXPyMKzyxW+q+&`MzCONaIeQw=D+Ofwm?~51paPt`{3Yxwqy|9R*HL6G^`)cG=ElsXDTwedo5_
z9VWraV7Cl8P1iLAbh!kIIG0$YCW6xME{fuTKmq
z)YYl;;qu|ob+M}HsBsll!iNi$rp915wF2XEb#urnnyYTn;%O*r>G73O)kz$Anu)SB
z(LoCd>6%;08Kcy|q4KHeEP;-N4MxW)A
zN$B8HGRkgh+Z
za78%aXYA<8d`rUO7vv7p-LqEVb5uQdQ7vvmbBQIX#_c@XL7BqrZK*=^wDHAHy>~4?
zmY*3Ry(N8Y(bc-erBIdb%}Y5U0GDqe#(?qrJkO{H*QFL@>SrK?75vG~f7tRPqpP$w
z+h;1W5!KXG)l}`gre38f^VsT~wBn<1Ztb~`she?QuoYCer=;2OOG0yQ?^R8ls>pd^
zGE>7a1k%p2gz^kN&H$WOInJIGr;+H!qo{q^l+MkHgKkvRPhGb5hTzL@4WnJSDx`hS
zwW_y_mB~qq-8lT56{~}%`(~&!|yIpCjN-I-=(koF)S2U>y
z7_NFzZUJXC$QbA^NRpnKy{64ULlr)9lP^(FzF6@YEY68?8Jg-Gyue9YNmosdG*aW_
z3r>13&?#YeGSgqCkbY^SP
zuB=c)jhX1_D=^gc5cwplr%JIKc}LE=^ZmVRR8YlNG}@|JPLnGg8&+`7nyESe05BYS
z*aoJ8zP(MtQ&~YIHJGH^OXAlYYm%8ztSXPGfnkDVL`gqV1gan^K&kE@3Bv~RJ-jPX
z#8VaRtgj@I0}a#CM_}NbcCqhVpCQ}EzDfcx7BekL0ySI7bS8whNrh2=#^Efol
z!?fm_JUn$2v~fpKl8Y2x8j6Udt1aR%v1?i9ovkMNil9gE*_BCTP$E{+7>dx7MJV9C5`I^%C*u~gL?&uvuIWcOCg
zqoeK)zsv0$wg!f?Gq`9mO}V$8UlD|tH-g*mw`-(_B~e#9V_KPuH;D@pls(yTD7SA6
z0z5eb15e>fwvyHOXf;$0C!*mTG-&)ms|Qk*BEGFbP$|Z^r(gfq-_luPg&J9;jwp~_
zWuje#s>olU?Y+!o~}drDrzz_QPYM4{%tk?0K?ym
zn`~4fDI`DAV1xE3C;m0nk~yR_MXC7$dTG^K08~!KTf4p>xTiV35^9iW_*VWVi07W3o&Jce{(Eh=n<Ws}J66-AHZ+BZ#6
zxMn7x{{VyK*4A*c#?eHnL;jfgXS$-e^c+t|rD^CPsFtpRnvx?^G?i&rPfrwc%C$^q
z5}J^Lp@gd?>{`PA072}5f(LULqSVvu{{Rn0;pBMHWp-*P1QJNbIB@GBB%6{+KT>%o
z-n#ch{{ZLwCSQf0BqT`EN$5K2t1U(x5)!u;mBrQ5Kc>vKc2L9ZL1FZRg5BzC=
z$a-#4Mvy$oAMum^ZjKLDRkeRu^~H0PFI%wogeLzXtq|Vjel@
zjBxAcdH(}<+FIvgpVaP4Pw?R*5auoIc$DPn<-scO`fM*+)-3fWa_heM;s2HdPic>e7x^&
zxcG&#w%rvD-`%^irzrs6Kp?-~d*Y)SHw715^`6#-ry<*UJ(Ien%Gc3uJk?$rtl_-z
z$2AroC6kU6Naa{0L^t;XYO|kmp5rQ@Agwhsd;qO6ocfRsX>cKHkJ*sHcM+w{SRG
zT3l8S364l9L@`j|u~bmgM4%`UMlJ3lnIw?-%*B|Rlafg$r}o#ZuZHHt|Q9(ck2iew``+~a-ocTHPMp{WJaXYhZe9`RqcEuJ>p}&D;skU`q@7-fROC?%V
zP;K7A#imAzT70c+a+(OCnIc+w36M&NSvLKus?7up^m`Z8KI&fRk-*D!j8-Q!ic8*2_xM
z?Wpq^JXCdio|_?+S{kV+>XxRGhN4B98PPNZGvaz_Qlhn5em@|`G*e27;I{$~T8xux
zsai#Ir%URm>F_#or&UM?Ny3sC5zwP8LESl*i?g7|?piJ5h}rcU#}7-l#JRk~?3x-K
z?X>rC%5}XhUOIs+lB)5@}IwpdUl}CN^UmR8dQkrF6Xs
zW_$)}s`u0if>O@6S2r>};u-u@3nG%$bqW{~$yzF?3^ezA1QS98O57gRjALfskGtzJ
zcsMs;>>BKaR^#mM!R-m8T1v_&_m&G4nUb@wa~YP%Q%pAOw2@WCgr@MXff{KGu+Mi%
z1**s5Hk|-cIO86A7_aI9LstZ@vs}=0hC4_hWD*BhMRkI8yJLd|_-l$O0kn+MJuqc<
zH)D#Ox;77C>`tHl2UEB*`;UKiW)iPGh}hdeoDD7mWYTTb%1Mja^c%{8n
z$k0PO#VD$onpGn5G9@<_Z!)j|ByC1^?$p(#TS?L=NnpfOX&6;=WqM+Z=BBNv|S+4K^l($i~*t4b62_U@9mx6F5}pkO!T>Zxl56kY*KB0o}td|3aoW*BNwkqKg+3R7AumDUgd+DhuAY*M4Ty{D$0xcKMVTjrIk_TN^$
zHadz=w%j!xfw$>=^z_+mmhHt#vtlHwpR^9&f`*o&OpCQu212STIcw#aDdUP3r2NOW
zTNwVGkkBv$P%G)6H6T*C(?L30*2b
zik%Ged@b#$aP@T?ceXmeF@f4Nb+}5+!%2?aRJ&$PnY!ty;{Fwf&01fO=oTq|Xd1`7M!HAPwb2+R=<{61)6hc=}BZ$(}rjmQ!q%m3n(U1Dx9~>pV=^3jr
zc4Vj{xW>u`q464&1wjYlT8a|Q$Qj`)QAgSUMd{s2{=#zZp
zUFO=)>#e*y-wlIEqEj0cY!||b1Y(0+T0te49@1N;tkULl6}Vh()u7xN%xtSJU6z9d
zldIlYNwiX&reczoY7?2B7l5o3aAQiqWJv_fVTocJg!oM(+%Q>=E2wA!rh^#A7A=}m
znKkGyWw7s;cMlsx{{UA!dRQu%6e_U_sJd6UWXq`KLZTf+u?2Fp^1>@Aa#7P`;FB?*
z!q!l{Uv(Z8@ln%MQPkC8DJP1PFO}Ryj3KG#js&PlRwTByWu|s!406CJ7^QU+r~{oL
zc#uIfrE{LEB0N+0QnM`aGW;u{^|e++Q{CY#bgL@{V80tyge)ocKJcENQ3fY<8mM!W
z((LLgJXp*nZGB@=zFWgRN-T8QECf}wQPoD1uiDhq!vIyf`(woscurjedVAQKPylFg
z#af3+ra&xn)l$vlTWwkv5;Vx{Xg~@;Vg&;ukaT|#1>3)*zT?Jk93D_nZVkU*wCc9;
z50IkGwKXkmGS5(auj#JtXxEr|vyLWGfk9V{3C1nieMxWH>8Y8UjNP
zC8D2|1wDFDmThd4%q0^LS5}QcHCL@9&)v%4>SMNg61J;%N_9?Z$?oCjoQ@RMV+-9fYyAkorO?>^(%wK&Nkq^=1iJvJ_{
z_-xaVvcm|Ym-h~83p~5f5gMtDOkr41olMF}?KmDs80Zhp{Il)qUG4V#sT15rORUY~
zJ1Y{S!$_P3?*^xV8KYN+M8B@LM{0G>cXZ}9XJygSZjIHyBhKbr1*e
zzHbVY8&4i(+n?Qyzr8kv1XTwSJcBu$kR@D?6b_Nd797`q2$x)HVPjLpK>&gQT(1#R
zfvfRUQ=lH{?Z(>eZ5$W>0It!mX#GR2!3LNHfSm+~U>MP8YfBgSvGe~P51HE
zgJEqfuJ7OYOgDD?a?Wlk_U}aZtp*!xRpvL==!156ayV|K`4LAG!JEXxio{n5>Z<0T
zmbW8H(PQaPZfDuKiqUS2(c4~wKwYX-DLR9ZO+)b_&@ic0Y7#mFKE=!%4(R(-R`OlI
zR-mGhsIrC{Yk@)9=T!|dDgo+-vt94Evc2iK>FM@0E*h6=e1`dX-nrfDx4UO(?!0bZ
zvoD^KN?nz-&i??~bkJnB&Ms>DTB_P~jx45iC|artN_9Yegk`Y{aV%+j3#!y=sR+P%
zii+p()B{dE2rY!~Yzx{lxT`QFbtzse#)SHSYH5K^lvKYWx?^)CF426J_lFOT#?(;c
zY4KYNd1fnT&NgbVCAspHJL6^UT#b-%
zA&Aavlju10em}^g`Ks<8G=9&;ZdwwG+~EI(rH92UduEu*mab}zMdPhRDc
zyBiH==Zh_m-xM3~W~DVt(Bfm0DGc-u)bUTRKv4~p*A8JCbp<3E@uq0C89sy0)E<&<
zOC6#m^2=DHdJ&3(XhAeIqh_X*2hq?jZ6k$d
zC|+PqN%%*gAJVUx9C6TkYpaHR71J3QrxWUH=047fe(QL!@noqhHzah_8-FbLNMfYH
z;IXy4lRGtKMMmYu=3(1(5n(a-ijBEVP%A|(Wo{wlrdnlzBbCg}T&)B#N#&&1xD9R$yZA7V#NzUGmZ3g?p^w8#
zg(Ha_Bz4fy+^kI?QcV`5)QVwi@d3xweEK_CKJk{5aM4!oO}pBgDmttlNM)+>(HvIQ
z+@~upR+o2B_D)-E*3|5LCfLlfikM`@nj9p#5d#GN9V^8VT0rtju?eEoe9M5N{WBZ@
zeRxubrG`aSW+?O@(IlU+as0USpzEFSwkk0DyJYN)e&pP{cXRDbPU+Y*nJvk;rNwNz
zylp1j#cmoLUhSSb9qX9Nb#)}L987UkK?`lnse{BkNhi9^6qfSI1gl9D(Bu(XSG0^U
zra>G*>d5ONEQotZubqD}<@xj`?@GLVPgU>z&r`VfD^ue-$9H8n6Rt~cNOAj$iw(MJ
zb9mf`TV&H~F9Se7d*Gs^|V=dw(ki=IPuuJJ8g&
z&FKoc)JQ5I$nK}cZfs7_sLSPI$z!nfvt%;6KNXExauGouE#ac`QZ$hVo!Gei1Lf6Z
zI8b;K{vYynURzdKaTIkJ=akdq^X<3h$YgP)1#T`1Jb}r=k`%|9ue!#^7+SdLi18=Qn-#P
z%6jKYMrwyv0o}#xbjukXpaJ&rG(LGFhAKTeII%}DR#0^wIH#}rtHzY*QpWa9^4U9&
z6W7~2Yh>rh_MTfMw&`~&WL8?utF^X_lv(VRe&yS<#r@HwO}~VCpF@(>v>tOz%7P+L
zNXW(`GO1cu^YtEd`S}`Gr9}mMT+|=S{QV34k5it>b(SA+t`aAuY4EaR_qO4}%~vfR
zBN2+E+y4N0SDK`&qORQ84cSQ~lhZYH5Y|hMfxg_vBQZ$BL1QDddWyH2j8u|Hr>2wX
zit*#s;4{YMv?&A}{{XSj4J}hUQ0ra8O&I$+n5$IQLpDMttfYq(g~qc~SAkz!kBV2x
zv~c-rY5xFn@vgG08$wmQBBnwqPa#^CBvQC;1Ivd?gv(G^Fa!Nx>h)ESJg$h
z)|o1*p?W6A)8guXf#I5(3}Tv$U+&Ou1&bopO%qhcWAaO?2;>p5RG}U}1!Rbt1H}AH
zGC(J}2^x4Df!s$=h7YNdT4Z9J2lx#${!X81qM3IEWl!1CJ+s-B@IZWN_r}7DJPL#yoUbKNYaaFs=-M$05JxK;apaSP$cR!r4I~r`UdeI
z0lbbspV{_wm?-u12}?&bn}aJ&9yYF~sc?`*Qq&bSH5L1B6+IL);G>~NoW&=J^rMPK
z@}tW;5F@j4upnp*Yg3I?8ov<-I6g#r-~c)#yk`2B)t(s?^z$C0f%EH(Q!7=G97v*_
z>Nhm7#eJ|24gk6aB*Yt@$G4&+t`}?ElpIl7w|SC4TGSRX15hBUPeJRd_s~p
zrXRS9%B2R3VnWfd1R8^0C++eF)2}4r7ZOK4nOA`Zj1TSoojKz2gDFj`3yIwLVUnT5
zWF*eTivAIS#z9etmO5B+6YdjDPrKCR^$Yjs(>8q&3GtfgFEp019PLRngbqs2v#hQxUQaqjs)s@$V0hw$(}|`PjXE1zPj?N=#dC66+?uIfAc2~IO>~O~ma;`4}#aEJiWzL9Z{&p
z(#=&XRnbW6MkxoM*nZ~L$!?67k8-wgr~$wpG1Pr%Ed$E5iS+6MG;Y>fvglo1EAusdgOQ@zeNd5g<719CuQQeF
zJPs~`E!=Q;EN*ffB4oDUprXN5b!-w-ii*hz(5&TkPfCI&QERw;MYYZ3jWTW#hG8=T
zVtOq^s4{ib=`s94hX74_18=;i9@oC?wwC2**)FDy8WkW-0Wt(@XJPY=^!)?8N7^=d9Fj(T
zN$UO;ynotHsQMuP04bpTfc22#E9y=18QSL>^$0PE9wwX*^#$Ye*RuZruRpzMC*pJY
zWBs1Dl=f0tS5@EB@W^2d*-d5dfNijdWnI=`r?t7+#S@>jitQJp#J
zjdMGVCR3--V1B_t(~Q+r)c*kI>L7#DtM{gkFHP;M*30R?7x&`IzY_t{W_4eQfcsBT
zPGb-aj#C^6`h#6e2>$?K<@a9}FZb&H(bYV7f8WddM?{bLk4;0I_$%_Fiyu`>Rb5Hc
zJC8F;spqIvtiZJ{UW#NiX(Jh-t)q>jwZ^as^n>qSG)AMuAC`Z?*1o0yf3+C&&-g3Q
z;jniiWxD&XveD6I>xNfgY>cO#3J0iJ21jdRYXdb@k53HJ5jEJUAe;Vp_CYL(;t;X9
zPyoW7APVuPpY7=CJAe>UHeyLUK4+z8-&VKztR-_1%L(dnl%NCjDq6B#ZGWiZ-r5f5
zgbn$XAK^VZWs@3h-}9jV053q-$h;MP_2>@j+VvQkYHDn^Snmau>hiHn3Q*!IGK6?&
z>18F`>}&yhYWkaV?#k1U%8@7~PZkFQK0x|)Li3WWVE_j6KE1v``t;%P2Xtn4{{Y3V
zgxwL>xjX?re=<55x0hVtJ11%GJ%QO+>(q*t4
zj|G>auE%BYxk@=+De2~ol1SKt?_nhdrgBHvI?~55AhpRO(@6gSSNgd1^N#*-U&<>#
z{Ik1{aaR0t#^pOZ;m>AbW$i3J!Q3(Bw^rxqTyERTntkE5gjEz1)AnCh?cd`NMG5lB
zxG|V|=oYNiB|NqAHz{$qj1ttxVQJKHAPt|eHmto4F3kwfTIj^)o9R)YhlUcp
zCJCy0-5@CQ(g8n#MNMi?krW=i8r)e4v|4QbBS`*ZTe7IkvKkE`RdK0JSbh=K%pb}>
z;gtPF@!Jc(cC|$LD!%KZru$s~0PvBDj$W$SmG!t@yTxJYtKJ&DyFr+!rmEZ-Iz4ik
z^0oe1UQ--S06fvY#c_Dnj{(&Q{{W4jil>356dys<^X-o&OSf$cyG6Jrn~~jI5fc9Z
zWkHr&f@Ed$FPf3n%k1Beo0liMsWDZbY)tJ0DH~PERXa&LqQ+3tMzN}^H_*Q)k6~kV
zJjG#(JuXj~uOG9i4(Ya?rpkTd^6j3^H75f}Izc3NaN)+EKD8dobj2cks`*8m^GNvJ
z&GOf``$im{20mJ$F3#(1-C4GK2Yl8?g)-#%Sm8z&FlqBh{aHQ%u#x!Vx`+ME@D3OJ%_p)3qd#Mm=Go3Zm6?GNI
zb12XOCa?I-jkRFg^r-|G;n$B%x3@kYe~EIKxqCNmVrVnf@^88|&gCY|$B~~alUM~t
zG7Mf$ma`;_lYg_5#~FLeBTB@`eyCIw!SL9T+1e;Y1!&rV0;n|#m%>1n;Z`;JKGqTd
zSH)Efd`ht-8k%ZNEDKTlO#zL>?93L_+SsVF8_z9*J@t{>*~OoyDh>|^v9miKr*UTJ
zs5fT*%5Oc%k)_4%x{xWG1%-yQFZV4`PW2SaH9T+=&nroA+AWpZ-B^C0sc`yKlt79q
zqb1mcr3eOumzEfk*coma7U7ik8U!h+fOjs&jld#}VB(^x0yl7uuNyNb+56^R$or`u
zKb_xsj6N#`h@ySTQG=`6HEUP2arnL6ywiDYjC9YB#Z=eTW~yrFr;?hYYK5${bw%7w
z%yu^E3ZT*vOEDoq3=XQQ6nbi9P=QSd15ZevU9vbNy^zYz!L^X87Nlt-O&P>Os{rGp#R+h1_)eV4Xy+kb2A+y!*o3n8`N54Q4q
zl8+~Vs9L(1WXM%6+^3_OFEH{Vp}nQW?UZaSVuCA{LQ559C7Fm1uB0gqiiHM3LGnEZ
zH#;jG&ge~lcXKU@kfJ4Eh^nDU0cfmA8Th|U0xO=B`vy8rzkC)ut2)bVbsRXR$z-RS
zXVK%adsu9pp_ItUou-HT(IlB%XJysx9N{@k#btb1WoV>YWSW{8blPZqVIy8&yv2we
z)i14prAXp|#Z^Elp6=p0OC06`7jE0*w?k5N0HB4%bCV%MMrJy(j1Gg&sHMqbc5YiQ
zxAXDg_D&0P_q9gf+jTqpGIxes0Q;{gi=(Wd+L1*zOMNCXndg+vlB=nz#Z@y+Lp=2Q
zkhJX)ltnZeu2`m`BN_vIMy>FstYJV6fWQ(6Z6cFTjI*B%2B0o=5HW$psh%euM1j+G
z`>w~F4lWPiIIgv<`&c%OFYxxbAS#HypTB#ARx;SqNsV%T?o9%>{hX
zB-JyZtY*$R6rsfQ93eieT5~a!9~9
zH5~(!&}DI%{iA}zV5li)mjS#hFuASOhN;NSRhp{UIIYfTs`4_{;j=XxXkjSlu&x;D
zYWago(929rGBEbn7ZXJzR8mS652bV~6$eEbRqIR*Oa&;xvJ5|X?e;dZExX4h!9Y=p
zGmj8}N|#nwWCEZXg)PNO;I@2%>rauj{d>B*4|H~}(cV-YbGISKZtahU$YOfic5Ygw
z%-|^NDRx~x)S?->t+R`$&XF_K2{!F0h&-;-`a-R`-)pp$V70e+{7DNbqdF)c(^jHY
zSdp4{w+;uOhcj+`&3|V#&DQ+h0w`AjRRu5t>5K}-7>*|(dY*}1{oI>dX(m-RR@>Nn
zKYezF+`wWe@{|)KnJtNk6`oxF>D-vPBB8-`hhgs;Y6YR8n;B6BWb~p+gqD#dXx#q*
zY_gv6SmKgrXc6*T3eQTaD;%;4l6BMqC~H7^ip|Nljh{pBt1>Q?O42HxUU{o#X@sAE?ofgdJ4@aYm=FopMibW4eM^p=~QUfNcGP*iBCCba4FK{QtA
zT~^~GEn3j4Q%Z_Z<4pxrpk^k30F!@V20wZ^u7OT9D6x@6O7xVoEk*+wjIE%<(op{Z
z3JH#>psA&-g(sa#{{WSwvBdsZkFknMHyGmanA8;&;>rNh0R$WYnjRpLLDsh$acu!h
zRaLlWEDb_tMp+AxG6B;WO3WRqADtM%F|b+MnqL@oGw)|
z6qtx|?9~++>iU|P;ZrlgG|?_Tok5;di3k1Stxz=%0-bZp?&>|~j;q?cf{!OMW%3bL(9-!}%5Dm|sW)rpcJ>ww
z?PO5ZXE9XUYD&FAt*K_wJVk*N@TyFNGKPL1KZ*0#$8Mv706s;-m5
zf~%yRH5j19M@?O2ON8CKe+!G3cF^KB{QHuYr?B_l_Q@tvmuTg(`RvsAtlrYuG=^=@
zoQn^(sZv~$r-~)5l!~d|2XyvjZ)}rkEjUO+0K}diV;oL86G3Aw#EM-QKsW%T)khP7
zkT?^=*Q?X$j=R|Z03G1PKS6H}wAwq~qX$V+dv>R`Hcbxq-xc{hU-5eEUjC-s6!{Ii
zS51_p&e63t&84oxil`sO1n)f2%}yc~QQM;UEScci#Yv@Te5;Y$QTCE>eFTEYg|h`5
z4j^|L{{Rpp&(qKO^f2#k+1lM}Mwpqm&cMU}02H9cN49qUYjjYIXWn4ahYg*zJ{WwRBV!87Y@3w`xR>OC~~U8KS9e;I{`$+$i(~{{U?OC%4L{Bg(YtVr~;a
zg_b5K6go*Bns5z47!}Ck3G+o(cFxt$VsZP9vjc$Ncv=Z}219MWSFxweV{w@SBxh`-
z`~IGjDZSdGW#aahMZyB;X
zw;BLd^n8}CL8FaEqoC`(x8~34>PmcG3bzTnbIr41++Aa{FqL@S
z`PB8xJEwHojg=wlboa;kRCM
zAG`NvYaWZ!j@aF`)eBfFvGsv6*yc@gM+_AaA~@5GiW=j9^7Z+T
zn8!ieTSirk_=})1?sG*f7|;+ht;VYKWjsI)g(h1mp4;1tVeGouu(Ugl7u+9bxpCWt
z&dSr2%u~jjTXJJzk?L{t*JJAIps1vhwkk|%s*Z|%Z6uHF%X_IKZyqLLr0~u~GAIr~
z^B!Y`I!nx6CAFejm|=UC3_~dlyhk1yU2;WOXr_ax^n|9$Vl(ymEQHt$U3NPsnylDa
z>fBa6@*7IOA(2}2!is&Lw<;+zpU3hPlsCiWUnsF-YT!vD6)WLyWq$=(pTw9XGRYKvQd4+@knq27p(l=fsNZfWN_1l~
zwCwO*+m@Pc(yRi7P<0;BKq*m7olF28eOnz*VaeNB9lzXFIouym_SRODZ}s&C{oQmg
zN6`J6aXWro9&R4=+L1#=o!R^Tvlxv>k*TOzF%TDqy0BB!6sVZ$E!r!hBe)(MzyY6t
z`kH_<=nV&+4Qdv=<=fjBd|P+=jkS$Irk7tzp=yR+4NB92!5u!y+C6pHn_;5a(BwA0
z^x3bys5>VEPq`)BAKiIPULIV=XFHj!%4YV)Z#h>-SzS+$tlOCw@J)=FAgF{w78PpX
zBdPG)yjHX|A89!s?N&E|q@!H??pzbafWTS5)F9T$2Gb!Wm3bNoJ=2$bH?xL|ETgS_7t>Nf^%$
zpX{d|thr*sm8li4m-@JWJ{>f}S4~%ts(R+jX6xzpn_zbKZi>E>6C9WYf~L1GTQ)-i
zWNaQ!A6Urj^=74_SteFWYL`hBl_VM*nthn_$l>|@oN3dIkZJ4o^<=*g`x+W8t=KzH
z5u2~tvTf?EgTAXI+ccRPERIEX*3_&1ExT#9#EF%shMOYvbhwOe)}EK_tIb52YI*9X
z8pHRcOG4^EssMbASBcZ)C_oGHCpGD~0|4NG@e}zUD*2uypUa~oRgT5uw+_OutJ*o~
z_Re;@N-#cfUw8du0c
zT(L=r$U}~bs~a9-IM3YZndw;TXug41Sl^&+y}<^fAaUXbuU$GwVAP?dM@TOray)x>
zD|ET@q5l9U+guS`S3L_G$9lnC*73wOmzD%k(v?C5~En%V!u|W2?Z{o%*cRmU|&Toj8+x>_wrrYkp;Aoj&8L(?ll^*PpQ`#xW@
z{5=b`U71S-P7W=X0t(7}PDgJ?T}e|_{oTz~XXL5Hu0Nq
zjCx~7RSHbL5|>a#2MYd2?632uNTs#aBcVF=9AcFiAn@V{#dvY2rH6HAV0FGGPQU6r
zCgt1Gj0aXwRMb)9a`9~%T;@j^xMsv>sCPbJbkIpGGD(MOOui)}j;5C~KnSGjBs(Rr
zo>qGCJWhUi`SGdZIyGrt-AH6QxPLA_hw}63Yg>owF4*ksHYyInsoXW4dDdOIRlYyb
zZB-=M7_k!#vqOTQq1|~;xx(#v>(%C=ug6tZR7JI@9%`8Cg+#GaC0Qm`!jI3&xbpP>
z0F4?7W2SsWZ6<^o`Q!7anECnj3u@#cpyaa{8onwo`lBvf_92(`aJ`~8oua`@_Xyhy=k4tc>{{Wcz{Q8$A
z3|RRovSI+`=Ak%x2&tDH4HHL*t)_XZ>S>yg=V&62AyHQ}NY|z_y2631ee4r(z68;g
zI!#H&6P?N~gGfnP`W2$G?e@KH2bTWGlrg8Hq6u3zD9zZ4~fke$KtS2WFa-RGDVlF)JtM(
z#bLcuO>!PPn7*WBNYO%2iUFE=(-hJNnCLOMTwFsvvc%o47@j4K4ox^|1Bs}i`E-xQ
z_MYLy!Ax_sG42^)f_X%bhl_7yF!>BVMy;|nc|=)h8ce)&c_xC0RxD}Yndat5h3(>{
zNT}0LKHBj0#wuyUqbNho7?B%N5n9vB^8Q}EFLvJh*;QMM9l5IZ7x#a3Q_Yp2!sfD+
zw9(`%aaA=j64hDJHf8g)bZY||n)#lQqL8FIY9pZ4}7P
zSpn5T3e?na;p^qYr@i0VJ11#l@HKmrDUVi~k11P2C0^xiF=?cYB6VyU{syP11b}{Af5X$#S;qys-Zk8Q5o#3#hp(oF
z$*9doZ7ZKHf++r6($Y^&NlUb{o3n0HRZ-C9tFze3IID8i*jYUBW#Pimzwrt>il=y_
ziZJ9-qIm%xKvtJKGu~-&d*Mm}3qTs0g(;En`kET>;nKaUnj_iFw*LUT%+X0Avn!es
z7a#(pWq7El$*&%U*t=(7Z|Yi1rY{><^ibO!JeasDsl_c_RPfZuH*FO}4^fND(oxfi
zU?MpdT1ljsDA0tFe(&7u!l#WGkg+s+0v4GO>B|Q52M961^f^1`$GNNAeFVi706rd}
zSJi_ka6+tHzjU!%YlgW?mvB_7lu*F&
z?PWSyNvJxhP~F~L8!SC0J8A94%EM2zy5f^>XJgFn-{NhYrZ2K9nQQawvGBN7H5qQi
zmnP{2B?`2ZHC2@e!bppUQ1NM`x>%-3t|e&ns{lW=6$)L?`WXcGkgOCCz|x%!!|h46
z$$f8iZD(f`rKAOzeu<+vjxa0ZDF6t=GBdL1BDLthb`Q$#=+e6&?tQ>?o>o{tvZO`}5Q&mYn&93gj_B}4!{_*s#Q?R7Nw%M-j?a9!)TMHgWmw8CpOf`1d
zrQ7?~vK`cRW^)}aMLsVlPf52Z+KPDp0CE}ZOPiAR8;4nZTg01hP{vm0jfq5U{Z+`G=##jBn=BHZvdhwo5_o{z_op<~aFV06aN8}u}U5NgN
z*YrO9;1BoX{{X!nz4XKV`zQO+>&>^Z5*y1+B<8?gqPDuDf%N|XJyQPwr}6zi9{2R|
z6H=s~nJ4@wuYD{8)Tt-tN&f%|>Ox_$G22Emfk^rvw1A(buc)Cnx4Q^p93x-YI=F%X
z!WI34sY^*psugLe)l^wkVT>w|=m1**?!i=GD5qBlfKVW(+0bF$xCl2lNB0KWmKBl=
z=T`6BL4-QM2(Q|?T2u=u1z;hh1U;;TU-9n49b1PEi+90o&r`g<7yMb=)v}qZGMyc;
znx<19j5M@(nDN9S9z;mAVNm{11Nrtva)BhrolpE}hxs}=w_?a@cvJp5IyFSw+G1(b
z{5nl{2_9(+faMaTJfZY)(l!ybjhnz<`-8+&V3?TXkaqnjrfJ1CWXaT0<5frc
zuNZo|qCeM+A8u-6!4Kz-wctXv@h+CX(FMQEKc7XjQZACbSwhvCYoFu5!(TNa=SOMgHKW|RK
zdku^DkcKLLEk=Nkuy8(xrk;nb34Tid04n~Tr0ssd#=%jzemQ)A+Z(ejLB2A5M?;Rz
zY+b{-2!f(b$0t>1V3%yrMYyRYgCR##hMx~AQ`HS(M`u3Ji-(M~Zgo=>{{Uovm!p@q
zv%3j%ZgdtE1w}{ZI8+=G2+v6#w*FfC`!~686+PYZMx(U4(;faxxwak;W8}Klw|-$_
zSY?B4?i{pxvn^4E!{;lhoYoTuhQ`y=(P8oQ5O}Dt
zbTrYdbeQ}_1oafubTm}3C`jT&3KV{Qf^O_>uH4FDq=zPzH9tP4&8K$WcGyzYF2S}?
z0^U^KPNlW5P)j_EO<%$p^(iC*paLjz-6=3lNxCtZstwn<@(rJ)-E&paR^p+L
zac&x_JnbfTb7CUMXQ@=n()&^k%^g%S%Rw~`Dzg_G6`C_JqX}hcE#!B#g?u8EAe|s-
zqM8r%Rx3g(3kJn0-P0!CE45X;xIQR)igy#LtThq+l7^@>q7}_++tZF4V^im{`2D|-
zz~QQ+&28n$QC0n&D#uR*8H|=gbIY5q!sND|{n@>5RY_4k3ue_z_d=qQpw&kHU_-Gb
z*@h;OW?&VlbHtD|kx4b8Pm8PM>Y=2TaTq^gD8FaDy3^)%Udz
zdQl5*%~eA(+(KP-I|9Qr)9|!nqXe^tt0%%Z*QDE{nEWtpCv{?|x)+5*d_qDNfPkpN
zh}=)7MVEDCySA@!M^UmmBVz0v2Ij8EWj5Z-?`_<18>1(U$JW#CEy-QjSRJRAp*vd#
zk;u@yK}5+?roEbJ=b0-6MB3SH1TEv=G?OhsXoXZB3Kf_gL<7WTn8hp5V)lLEr%$KZ
z;)d1hiKHGUtx6^Wk}5?(&MHo8^1Hh`TWW8dy4K^i#>~s(w`T0k!C5}r-8p)wy6ZQ%
zYBQNkZ`|(TL6?tWW_L;Z1)8b~N{FJUh5=6;O1Bd2duG*r9EMAlE*nh&P@#aSe$YcO
z01h;+Yg1l;TlV?PTTo~g)jpwAI3P7-4rqaOWJV2Gtt&uvP-Ca<)$;GOjYgUp-m%({
zVRLjjO|P-`zgz9R?hY*W7PIYkHfs}{$k${y+*`{DfXifCACIibq)}5v3^IwF#v?bE
zYTCqp3P~r338|<6rv|M6sdG|kz>hlDsQx|ca=e~78CrIc4PHX%cpYFzN*F_EU1~h)
z09y2(KQ24R9h%x-#5*S!yR$f|t;ZH8Z`JIqO*H$9Bfc;RgQLOZHvDwaS8hang?dud
z(PfA1eX`3#6Fhw+7y*pukd9Ju#=J%GBnvvQow1mlHbH(nnWZhQ4(^6$O?zT-$|`2_m+T81#aa
z$qY>hAl0ZoTn`dD4JDT2y4zbaLdhWrT19hIsnk`40*M@rJ)i_q0}==!yF0XZPQlF9
z%aM|%lBWZjdTixF)(J6rZ1PqnKO>IGDR6ImOl}g
zn{?%>arBwg+jW~uYrRf3TFK`b?0#!()#sV&Qlle9lfYst)uPE!$xoSVn}<`W%#o;q
zSgwd$nN%<$t>$Zt(rlcIQ3M#89aI|0$B?&xp?kvs+
zEfL&`Wvk33Oc`a9ElVw4;M_0wG{46xcQrf}?S{s!4JJBlg%vFsYC0(6ba{T@TiJu8
zDyyQTaViIQuXPOuawtdxiK*!utdkjpk~`eUv}WL>`DrvKEZP~*bbx`t*Pv>zCz6jT
zU7RpcK|O6vOUDI86W7BW)TtS%A?g){Wknr4@d#CeM^zJtC`i}snJcZ|PB2K}zzV6R
zKRyS_ogT(Xia3}S6dLJ+M)+!?p+O*mc%d9?(pCz|(qI-vig@ZJo|>XcnQ7{2YUUm@
zRrd=Jo5;~kt-=`e=qAHZ0jU%`X%k2ShSW)@__0BZ38;(nT15
z8|h#Qp^l6go;4&9j9^qy@TGoTDVLa_&U
zYSnG5z9)IX{3{o>DrvI#jitEoTk~LLGEh_GD6!prMYp!T7X?96Fs`D+Qd8vTsmNqL
z`bvoAqpd;r4vngHjI5Bkpc$iT1k#is3X_3Dnw(JJqddoENC|Q%!xSJ=gwz4SLeom|
z1u|Gty&^ZB*WI~#yhaB%*4yT7^_ZiArnh3@I^Qlcc=n~Qq>Blc!DHgXQ4P_B&r;OO
zl*s1PWosqLPg6}3Q;6hGb~{|E!Y`(i#bHvqTD)*+ja3;fljJE*o0FL>=1&!;h>)QH
z?HYYmaA=_CjcUg_O*$`hS*%W17m>v6?XOKyxwivLPg9MIWU)>D{b_3>$YF7`jZ8M(
zX3ne1*2hr`ED~g>i`^8K!H7te{zEl1<6lusBXQ;Crt%*$^cX_|praQirL@-!bV9Xk%;a)_ZOqAOH?rf%wjbEq1hFof#p
zHrtuDe&OC5rnuv&av7|5lPO<-rNYofh^>~{YV6e(P6$7OHsZ{|kCr)WY1G!qE8Lcz
zX(K7bAVN_=(hdP6@Zt6kLBMpLTc($FdzqblNfZ_+6-7v^8h`6(d%Xri25+qk#bCy$T&kk<3d&MYn0IHx*VNBTE^g
zp95Da=c(cTIfDCYN~@Y|P9d-hjgF?THBEWqMKD6jHHB(y79b5{*M|f7{#^$4iwK76
zw#t%88cTMp#VfD1fdx(ihVy-0r^xW>pSyAN^gG{oRo1Q^2FPPJ-v0oinkuYqQqj?6
z@iE}3F*RwAr^ZE=-PJiN2^nRE2WcD+x|M(h_XE4eg&69{{h2hcm+kvHlu3j;s^;oQ`vLrsB^$LyWb_1myzaaelnPB#~yrKYE&k10c1C>J4y
znu@Zvg`>vpitLidsiP}bO)QDzbx`2$RarY%jcO@gK72gsU$><3w6-JaCT9>bD#@rV
zKq9e)Enm`S0)Pskp(JqV!}c8WZu#(gdV-rQo4;`G4XZ_#tf=$t3|%JAqokw5qVbnbe_XlZKqR7_JPOd^O&EO7-|MXgI0kdy-+e_$BJJvad2Kpwx2i#eBYjduAw
z3uEi9%
za?SR6JjE!FA%d;PrE1R5NmWb%t4Pd+qXEU_X(3i&j;-%b~CYEe&Dz6b)78C8~T1*`UH8MUL
z7%0iC$j^$UrASh+AM%pg{{V0z#NO9h-d#Pog5{2|xIAm+`5piq*UyJXd%o4SL2$Rb
za{~ckt|By)Co4>n>e(y+1qdVIAoMB!0DHD3QzCP))lufN_0{<*IxIy75vrQIHM+8O
zQe`NpakTYwQrBbNy;Y*Dt5YmA&c-Mss6};huS)AQ^{#%?=zV%XpG#F`iAz+9QlOTu
z1x*O_CxGAq=*xU-&d^Y9-OWmyrwO-mJBJIgakOcW%~tJ6v$UIQcvIF^%jd~0JUEOM
zTV&#=IhgC|CRk~tsuSxRC)}>CV2avdMqNgr`S#RM*9Z2K!=;;E(_?z~Fgr3nfK-FS
zx{OMYL0TLVR0(XLZrp8FrPet-
zPUYX*7K!(MVuA5FeyiLS3Tsl0)~6$ptY|47vRYV}tgQ%dFl&#I&mT^T>BM;+fUb|o
zQSP3)*|1egX2tH#!t2VNu|<@hF-=QTRkOOge{X7f2>13jvoEzaofST3!%w)fDFmCD
zKIT)IUkhmmThMtEYq@j)JQ@M=VH;3qHKk}xYhQ>8Wd(>;Yq*txDfMT
z)K8oAIEZ?yX>KewLYF$*BeUY!)P+`pmFc$r`r1_(vxcUq$5p07HL`LUDrGo>B=ogO
zU5>A;sf+xnEI}%E5$Z3F;vuWi8A=QQ&3*0(!~nZ(o&fMYDoZ8;{|KOq=kq$91rD@nsli6*Vmg?t9);r
z!@eiMZahz3Y$^&Y4Glq`9f{9x?c)?w*cVyq5JM&_0g0BXx~^KFk@%zXn9E0hY40Ur
zr2#oL{D%|sKAm1Z@~uHoY5O?-+VJxH`W<^;to}Yv*7&{Kw(0gJxRd;53N;+iZ}&4-}byP}$lBGh@E)k&CY
zZph1Q+QV6esi~-HsinvyH4#^|0b^bGCQb;T5(p>MeqB2hi3-axG-FRcLG$x&AR1$&
zZ)1F>O0hvl)i^B15|)ytFXG#Wa5XgvrK_Hj0a1n86m@dfW1-5{G%?gu$bnvpoV-yf
z4D%gFYOdrt6t54n*N5gj`qST}kk%;(Vx;4^u4z+B;<&F8cn*;rcibDVYVOEtGg0n6
z!$FpUp=vh1M>$QH&7})a%Tr06pEZ$`P{E1C<){0d1u0v{E5_1&84g~;+VagJwh;@R
zVt`dnns*jsMbL0Xa;MaEQx59Zl6cn=yIT}GjcTR;01B%7O8B9mq4el)$^4exw2ez9
z*y}`!2`REkO@`e2s&~6oRMSHFES@V1hlFDAwA8W4G1L)Nmo)M*Z!Vo)*@u_pbyFqW
zahG5gp|C6QF(QF!-R8s&9(^i(`ZFYomd_$3D#}A-iiKQ)TDT<9LB)Cw_J_zUZUUzn
zTiJUniIu#Y6%^I0QZa&h%
z&z;M@&e%qeYt{lWbva6?>8fZjQppt33W{hvhKja&uuM_Z$x$f*3}e=P)S7CePz>YK(-{6(>dPw^{V+^|g!z&Ws9#?~IEAcs-4*#K
zpsJ<*=~P!m37aLl44Bz!=QN{rO`j1z%gj%QYFje)T-uMS*QjJ{n(UQ=^U(3(hAn8P%0
zkdAOM(55~KKGK34O07-gX1j#|hjcghPaMkH;zNYP$>OYRtNQwrx`B)wtbNhx#3JL0SeQ&ZOwmOmQ^_qKDCo>}f?p(=ouV$H)!j7In;PLYlsSuaj}X8t9R**I
zO6{pxMYpD&xhnT(VdeVc2q`;bv9|B=ih6noDWY6*Ls08ATTH4D6}j_Cyi1!6gj^&f
zid-pH)hz%D1dUjgf|`SoOEpEs?vw<@i!&AddURW)~LmXej!v
z=`I?oEcd8BDtvdRq3lU^w_DIqQsuWNVC~Mv!S1Y|UhPfD+e;p^;x^;#+_u;m%trFr
z_4s;8P}AhA@uA|ZQq=|GoS5?V_V(rM=D6L?q|+ot433(VRkerG(Y~QtqOqtnT!GZT
zwrzWE-45enxAM$uYcP9zgmi@@@ZGeijgwMI8A4W$$SA_DNGGrV(%<9Xy7yl9?!DK&
z`>%EHe(T+P-@5l+_wK#Ye=S*quBWQN)z;HU*=Q;;Qqo36RIIhpH8Z5N@d-*JEVd=U
zTYXKv*II*3S?T4sos_tU=mNDk6#GwA$^5o*`AV;cy8~^};c6NB({*;gR7*BirYvx!
zU4z+sn+;BCsbX5%$7O{;XyZf?Y0xdF*(K>=F(rFzL0S(&am4ZH+SOr13nj|x^iWuy
zBaRes#!uPN)~Kss8M1q`7mr2%06j;76tT+~P)Lz0tE9+fQsa|o6Z}20mba4{qz*^P
zO+Vg`Px!DYAt5Y4;^x1#R*U@4O;ou(lT(nUju^6AzP0Ct8c67~dyUy-kVaavTBTe}
z5ylwnW(W~MHsjsa)Fjb~-Z0e|F09Ao0+!Fnfzo+*7g*h5lqshK00H@^sQk}G5BX~4
zw@>>n+5C1dY*DJ>yZ->cF$?@pGZsEN8d^>JS1k&)6%8&@Rg|S$2ZR&};<#cRPqW)N
z<7-&|0LE2F$HGqne1?(y$3%B+a&Bb_5X}y!Z&Bzfe`y_97ufG=qD5{`2}=|GW5&af
zSBQaoB}>a3vVwR&=I#ynwThn#%ZuDxvGh?I586bH{Q6JfOyAm1k3|&zc|YLmlzUd8
zoIO@qCTrcLOic`x4u7er%KrctkQ-a+Vg455-pB6bsZF#q`n-<+0Oe8E#k4~uL2px&
z{{R}VRQvqdJ|p3C8yx(n+Y)3U-Tiw*jl*_)an-dwKJe?=G6_jRp2<_u3TR~9U42tt
zz6z9#Ncf3ohE`;X9~v9d9x10@B
zQ_$6ldU(phDJe{B29jxDcDXu-t>b2E9!ETT4NioD+Rc96q+2V=DzTGPJs1A~pH-~jE*Kwd?Vugb(*nB5
z{KAvdywc7&V|r~(LkLs$7eGPz8udv#mXRxV{#|iYwUpGQF;K}t6*YZsW`tF4SgE7g
znEFaum7q!p>##%#F$MD?8gIR*M5e0oxzY+sx~NS~cmt1!{PXy`e1=C+kvgGrl>&fL
zl_R_16!NOzuXy;F0Nn~$Tvk$(YHt0nTSbyNN(%kICIfBkqS5X>%|i}CmWLNc=fM;1
zt&6gt%K<@5^+lftQBhwLO7!L^OJ;b?&`hiZWHngu7_a+AYGl*n0Zl8Dc;J`mZmrn~
zloise@isso^HC5U(O>Mza88l{!qvGPO%C77?l+~|3D>xN&w$QDOHYp8m`%Z-gCddT
z^0;uh~U6vC{nN;;OWaZ&OH8ocqAd-p@X-OlZkbH{N(lV@}s#{4K6dh};O*7JObj?A!voJ-x
zGW(M=Rkt%aoGx2;jlYJMa*d^#tXfK3<$fCtmK!FUXYacFZ0IJX^ZmUpIjfYtV@XJ=
zAVUN#;G(Xe7%roySQQ`=H5O4%ij~!;09T^hpVyptuEZ%STS(QQoG}3CqY!vjnoDGw
zbp1iNHvN5OJ8N#e$Fp}fZv{!#6GxxG&6>nibq3iOs?41ZS8eWGe#@rG_FXKsk3o}4
z44lwZW+jziE25af$z|0;EwZ|!c!Go}60jf;%3g{1m5Pcl#B$Z?=xyV2VYrVOFODea;@c9wZZ0o;;y-&X&-J6T#9^mb+!`&OlI4!B
zpvlw+aUMX^qV?qMs_s?4-=w&>ziFr#$qIuCFKAL#!Dis#FrdKU(YEWqk6i_~>pLfE
zZQhmZZlTUWwGPtQM|xnhnGV40OG8++8-q8$@_5|RV6!`yHI~OF9zywS{z{@PILcWU
zT(O_*`?ULwqAkS2dDkq;R4oam6>FUoA&3eEMQD1AIrm|gm#^)vHv37FXpzkjxArUm
zI0x`ZwPjF3iZLdX=$`ig00s|C5iPW&v#3R@
zP}FMlEXI@-8i69Y2}P=t2Rqp~ioLms+Df~>2ZU-RS+Eo$nuiCvBgbTi@Q%~U<(8nV
z**1=n5mO#P78a*(wuD1DGBa@5U&(Uo8H~6e6Mg_esxcsG9zur=L!KQTTeNoDe6wx=
zq@B~TLpN%$#RV!`hN^~80U&f5WS>8}vTuIW
zEfll@nl`D8^cwV_T7fLyNQfrsvR$`_B!x*=6jMNIej0&F)Kt(KcJxgx+7^%|hXS=`
zj8p=AoA8o+fCo{JB~GrC8$+li-r1_za(P^4Hz`i}Jgm5*Rhy&A?kVxK6ge3vu+>#K
zg~wH8GZoX*(9*QBLM0L;#a0#adpNY&{-IchRb&KdCWWXls%RHcCZ7-ln&P$SmVL!G
z>t!XK=%GV7S|}`36GB4iH7pd64;-6{9kBrNL
z{yP&<<+2$1{MJ&cYM2ETEc&5|#;pw$%&ymNOLSRUU2(gznz03F2At5*NyrMU53MuN
zV7*I;uVIR1?O{n8uF^23uMLic5h~yYBe;S%5DWEoGMYNbp^aKbz)O;=(<3WU!8ll|
zsvKj}&n&e#r-@Q{`%^8x4fS)g1?
z{AJ$>()*tkyf+_Q?o8g+>`kp-wXyix4Veaf)^04#JuMa%Obsq?&lO!pT56}JGh?(@
zMM+kR3i%4Mi0$r;nn84846PQLX$F}2)OzG(1CE8y2aXH|L#bFA)Qs28l>M9u>hN~A
z$_jk^`(XBVGpKMIr)v4~RG3ZEfx`7HO}Mb~W^q+p4|i>v%qgvh8AG>sC2TopX?zmp
zs|9UD)ilw?z=q$L&C*2E2z99>R0S2t(nSwxRy6{ejZH^Ia_teqTt*&;2P{vKuO2l5
zmEnOy(bn5Ey^p-)hjjEt%ih^Dzqf=NSE_Ow6B#ZK1CWC)nWNm>uX=0^(YCO4Fz-&4
z>YOe;2Gq||$59;fQ2zjxOA}QsP%?_<=51FNLV&)NAcb0!QbDFs0PJk=$<2C4ELM>L
z71s?lI<*t%0nQnZ5nAU16zDYC84bq<;>K>Q?$zx+$J>2>QzG`4Q>`8sZfy;+-H+C;QSuG{}s%WNa8D}pXvPSYm2Xc0WrW{kzb$ln|
z1pY?yCAd~akR!JS?yY_k`RU{MNEP|?OS9Voi?jNoqxzl+dqhTH9k
z&SNqg%W~7@v$S$zs3~`5-lN6|sH-sl0Bw`XWwA5Ik)f4inN=R;8(a&cJ-sdi)oK=$
zBCH7%8h{lAXiF*7r#&sQnIP~HZV7;j9JN8M0US*$#2SDIp{GR-tEalRF^&H5)Wb|@
zcTPN1G`PLVxaqe3PN(>t9QC!(ZaJcx_+`L?Ha8XmCqWVpGKCmG>!U_S0cY>
zr`ga~l&DYdzUIs;(nk{4)#6}}A0+cURWw+LD%UlYY$8&M%tGVNmoQPs10-n-sXUDA
zP>KP8gVS4yc`jvhDydQiY2+#BJh)>#2i+;&4xZYfSuge_xjnuz
z;<#cBR1gTDq4K3_K&d8;+xog}{_4(e8me4{TJKt{o*p=-r;58PgQ443!{j5Wnzkqs
z5lLAW+tN)fSge{TktOj-^sIVTIFK;XwXddr&+vYINEadGo=b@pjFScwrCbq$2w_bs
zM{8#z%7pdrk6B!VJ^j-4v~|^Mm8#!#ITWXskYp6oOG{pccNKAFLVfB|NhGkfJBZj5
z<17OeVN^1P%2PkH{5i#XDSM8=qDJxBL?BQf#l#a@3aKmwYJDrwrTICxHty%&^DNl>
z=Gfi4A8Kd6jI}g0xmqY{(=yoZzsK&}u3nxjCf=&tc)Dte{N75AC@5aL!wfN`?sT=<
zwa|M>{{UCp&`+CgR4b35|!Pi4mj>)c05l>54`1->}xP0qJp((4W*it*hu*V!ww!bJ2
z1g$`6egm%=-PC?{*wum$yR1#*plQjn}QrJ
zcMaHhYK_ac^ZRES^t+d8;45gc;(DsAX637z7~q5K>U`DCb=XRp5^e@o(wa*J6SBKm{_`CZu$C_P=2Dl{Al>!f&mc(3n=u
z!9x#E_7!LM_YqyZ#@wmS!MY&I)X-!wU4Mt%Ekh+W8epoWt-w80G}V+7$x9585eVmw
zUmn$8>SdrijZO>#M0A9RuwQj79sB$Sn3oDttc)*Vni`NcmJ6fyRcs4?v4e25b5<
z)UuyUQkD7SQog+je>T2DNxQawM`+-s#V*|4Gv%}O^;s>myXkj6)2WBB;m^L(#lyO!
z$K>}nwV(s-{{Rn>{h#6JPrz&nO~9C%m~t@DrbU*Z$GB_V=o+?`cxfqh42Vjv^RVIg#8aIqQ?^PHAo}cFb0E+qanqW~w
z>g_CkFWH_486O~i)6vUKm$Pu*I$AvLZ!L)HwZdg7<<8~vdz)rw7KByJMV8we226?j
zjkTStF;UgRAd-?yiv6F2M$PT9Kuajk`j7g)c)PYq37IGN#+
zY8H|@%C>B+9c2Xs`C~+|>x(5%syf&uF^vI2`(>k1AY=xHo_QW$pWD$o?Sj?gHn5)w
ziuS7=N~$z~q?3wgBn($Iz}UuOc!5
zVlhn|F{B~M06RzR(Ya6DtWJZ(0%$!e$A=C%^XXdI#S+6vhNKiHNIF5|!xiJ4(D2Vw
zHvp~A)U{1)RJ2vpD>=nIMp$ktjBHgN8eFD7TqzAMVv??^Sq!j3wCNO@{CCpq%uhQ^
zR7i94B>vA&U$><(s>Eogw6#bSQ(qzn6(D5ihe6&+M8=aVjHh}GgtamOEi}`-nQB<6
zdn6t@ZsnF8JMh%R$~k_nH+_61jyfO
zL!aBN;DZM~4bPn_Zxvi{$f#p&3f}bV1geW5AOdK3epD1Dygcjn^|)l70!%angQ-{w
z9R43Vjw3#OJ5z6M!mz`R&roBf6>!qlOIn|Kk`rV~)wl6#nq`r(lGciON=mcE9FkHy
zU5F~8uWqCd3PVBZlTS7Epr@^UdUfw-5z0y}3F2${5T>JsDtP^!WTeVuvUQlW$V-vS
z(`1q8w%t-j(&cG#ts+uAJrSpw#5lT2YLK*sm06kOQ6bU^H-sBFJ$yzWYjjp5?$+@g_YjLVmKpBAx>Borx@va4U^eeRGspo2L
z66t^f#Z>B(Kgbd|Ql#e{8m)yQb=Ee%9l0fR7zU%qq}c&q9NGN+Mq?vDW^B{Z&<)CR
zDA7T#Xq|Kt@U546QYdBgh
zxB*dG85pv#X(*;({i{|cl>izqR(lTJ>$mF(w|n-o&}Fs^)tjq*<+9smyE`6hZ{#9n
zz-{f14%~{LCeq^a6++Zh%Tkci}?%RM+rr^DGfGD89L)(mT9rums`zJl@Y5_Jf@w^z$&IIC7vg31H@Pj
zOEWIAp|p{zfXNe6OM*);aK;LIjo{l{MutKld$rOLV{sUEK;g91h-W}`M!+gL(sC+4
z|I^>&-@5l+_wK#c3W}O)NX)fU!%q+dnI@4UUI8bUAR7Vhtmu@~z*pC+q;g0|jSC-;
zuSq$#-T)L@DcdGwy2m9Nm!%R5fRfbynC?f^2KJ#XuH_Yq&O$v%(m!kIAF!UBFo?}3
zoe=s~t^V@0Kj7;R@vXsMb)?2sQU)Aopfkx}e_GaMsxZ__9DOYu-|HWC`Z-2sxq>nN
zn7a?j0Uyt;Yqej6B#`{*i~d&rL#UJDvlR$t%1KQXIdIb)=4PU%6a$4L9f^w#j9dOg
z$sqiHTkOTQ#ZxuJvVDLe{{S*i^6SR(L=}xAiAS9(f8LEx_&Upug`<%YhPJx05m2&-
z@Hl*K8xY19yCl_9#zjm-3lNhrVaGT2+g{pfDQUL@P(?{&`GZwj{OEc__fIjXXO+Et
zzut~NWqPh}fjeqEX4Uy8)^%-6ll6zpp8leeIZaktNMPQXx-IcWu_b)a(=1X!nLoJk
zOXP4}KnK)MeRq5%J`}488WW*KYHNy-KrxDEqdP$>BKHL+%7KnJ)7{dM)58HkHJ}t2`3!XThPny`0clU$(Kh%MBzQc>
z%igi4@GUQ1e4^eW2x7T-*LLFZ8;rcH+_9hT1CQx)J)T*DAkuyy#D6}DZiq7K914Tg
zh5J*|e!cJAd!*j++IT(rw6`|M+|+`gbi3Tt_2QR5q5e
zD%K;B??eU#PXpDF+Ba8I+zm(N)|GvM*V(R~>@DxrS?Z6x%=Mn@%Iyk_fD&6PPl=cu
zE@7HqT$1MSGSbz`Py4cV_DtzQ(YKa58$~d5isC;o7=N4cIOsvZO-o$`B!$!+3vf6n
z!q?#Q!S)loSs{5Ao_$K2OqTa>z~zSlUzbR~m$-~>=J>zcy-`w=PnPc8fx3F{X_#iE
zqD9YGKyw&OaV4mp;faiKIP>;RH}
z&ZN73SCg9d-OHD)WksIi&QPq_8iMLkUshlge9sZqyc<^&xp%fRud`cXluKJJ1s+oc
ziNsgOjmX0dWZ7(fXB7=KV`Ag0-8s3atLPFcWtrj1%`HVmM24Of_A8S5RGQ)^wWMH?
zsDnemh6nfsLCrNN00C3fAr8-C*0wXI=1s!@-Wq8vw5W6{Xhfufv=z|Avz7`v5H_6B
z3R&|tRMZvIB#K~`~8
zt6=KE8n(Xhnx0>_smE-bjaOh|Hva%y<@bIXyLjO@mR}FHay4>n@3fCGHC{fRIO%C3
zmnWZmeFicogY6(ltD%gcWR|xd6Eh;j#zjuoRn!K$kO4Wag#?pbO;tTBmhQzuh#W}M
zMk09#c-izZ@XCf`r?d|dnN>j=R*WmuP1i4A)L?|0?!OY7+I$8N0^8GbXEye0a#dB0
z<5?t+j5S!y>60HzkK51okwF}llB5eIHB;3fA=nbt8AYJ3et;i;tjsYOzifKxc2WwZR58_zLY_3}&jTJcjWo>RchK92WRPBnm
zcFNOdcdpCH?uuM>Zs(-f_$sQXav98(RYpds!ieIbW|mpQnl(m>KrR8nJ;PN%Z6xU|
zau5Iqsl_@%;Uk_$7)p$fgwlnVPz8dF7d0pPIj>9nUu13kjy8^iePpZl#>{H}0PkmG
z>}Vj(Z_$UyQ4P@aIZd&)t7IFNTxLTdRSi;9SJh{iAX=SM8APzF6jIsA6Fipa9_2=q
zbEZ0jrlFX2)KHGqO*yNzdQ~0#Oo<%w810$0Isnf?HBhRa>KcRGUsgL-gP==ocF$OJ
zJe~JTlk7bH$lqV-OLJtg_{=_h@15zo7YVs(D=GHuJ!Q29J1dLbZ-dSv<}2%~X|Pqk
zN{6S7;(`76?c0X!BncgY&unT9S3;m=2T+l_Sv3qQhLJ!Tsa}ijx9z85j_yhK28Qtk
zLZR0q>0?DPiUg3UsWLi7+0#%DL~ph}LVSeZ9ix-nyJHvHJ#*Gudbe?8;_CgqgOjSa
zPG(Bos|^lovNvi`<3ELDbNP+EQw$XoP&Q34v~5f&{4aT=8|=Kf9i%at7#+t*U1wB_
zq*a0fbkQr^4Jy^C1aO79%bVYPs-pNCKyMLSTxu1I2>ezGSsFrcs7Msl0qCjs2XS{l
zWnidi_txg#yNjJB^t2fqoY`tm9esZ3!r&P{$E0ENgksW}}38fTMTybKmbj8w>^G79TDb)BWv~Zc-;l5}$E-NFr_kKfTrB>depsB~_pKWBTvsEK2zc;ow
zJ)FdB-NDvdCuPu9o!^hh%~~UlR7zNdcryc=Ehol_kUKh6b5Oa#VZf+b>QYD^L>>iK
z#jXT$B$PxnF2JRJ5>*bCaPGu-P68Tal9U0Td-c8tYU1}2?T*f*%+TlM$71k#DXFU_
zJKt^Ynd?_SSBA`0Whj>ew6+~9R%EF0xd`RU(?wGLO=h3Sh@AK$XycVxSkP2{6ULrE
zCQ61C&&r`o1e#&v+mPVYsG!lJhbpRS%)luoh{SgB$Yq4un@ez2W@L*QHt*b9qjXYH
zY@Mls%qlkW%*~GboE05T+S{gl&2pS&Slmp`#0M@A~7JY-4wlDT0+RSbfvqN87ifQInR6fvg}
z)pPet?ryT&JI@^-Xr}su0Uirz;-B4sL
zl5~|73<_v>8>?52IizVR;xkv%Ru2QiI%sLc6G8|B@V&Rbckf|tkC4*s&9Cvva($_}
zs&QCeoyl&he~%qaN4oar8?5_w4v*_mxb~Gz9$szhRb4fF#BnV}dO
ze3$@hP(?VDN=lj}ILc^plp>dDQsDDRn+u1^;da#dy|skLWcH$9w(Rs(b=f=)evTS!
zzG|Xbs`2?4*@R$J-c*}}w&LR9K_DZOog^vXR*S@fD9md@F~+3A*<>+BeA!2+uc6NX
zL8u;|XGK3FF4c#6?ix+Mx-pxglkag=+Wml!O!@ksK7}^%Nj`uVypA4!>Kzll-AJmt8#NU@
z4OF{p`D=nCEcNpwLy2PT{n1r8-p#
zfXt`i9(+g7qTH!hSxH@%qsdp(xq~bBd7R{utxTCL0PnwsJ8Vj8l_*~C0FD0CrnC7)vMA
zEn0x-1c8dzH5ddM5(&mS%h(jKVD~m}15Fm?{u_d!lVX7GCZ1%we~*Z8ttTqJqIe
zdW8cgwNw&I6G9nIK^<9_$sdhb9=osa-MQV}jZa(K+aET)TZY;FU5J9SY1i(G3|7$2
zKGAHpMmaYXfA?C0byPI16%2^KZqo)PXxuSxdM-t@w$c9pi@NG1jT(fI52k7B&@Y}g
z`7CY)p64+)iFp)2#=4^q+CViR)4ND&9Or@PZlL&=*WEGHIUUd0o2|P?v^T!+!F8`$
zU~*8d0++8aIjw|q`{R3W9Cp{28I;WLN86ROaN*;grffzwrzHc|3FeGO$y)02d)V#c
zh$X6_cW*W!sH(NVQfsLEMwA%nOUss9IN7(2%2`aea$oo`t6>lbftErP>MWy5rB01R
z76yQIRDI2{Xm+0Y$5(AydMsp4`TRW8v<;P5YOAr8fpHBUKX=eUx*AC_HSAE=B()Pk
zFj(M@AsVs$w}|?L#M2b7`oAo6UAjRXxqB%P!ye(z<6@4t37W^(
ztqo>UyAK{pf}e6vi>?vJjR`wb#VBV5FDz0!9Y9lo#}8l6%jfdwO9h?$5h^TgA}|`j
z)DEIDq#9I;fci}|=78s>>U{K=&D}|~vbfE`v~in@8;#B5WXjZ2Y}oQy5VWt=5y?LW47Ka9R>#vh@g(2Z|8B@2X@P}6jFZ{prje7
zppB$g+-}UXyRwu>P_mt2N_z1+bJI-`lW*QAs>iR4-3GWh~L-sjD8E
zryA7NG2>`)c#75W)@{s1O(V-BP|?mKLpPE?9Lh(!nF*$GPv!njs?n!vyl%#ZzF777
z`hC8=FJa!fTHM}4E;p5SOCy@5s~Pr!T3n1VWaC;Kx~_8vm!*pvU$ez|g{PjGVoH+{
zmPJ~K{{V5Oc|VI3HLqJR+7v`}BAH)N^QoZuRDAkoi+xs7RYdtJoPKmsMrF$_Wdt-^
zgDngBYjTiK%a4|pt4y;Ak~pgArI#F{GpW(Y_d_cwUeH%QnDqO4bLr!dev9|2)|epv
zXEgazl;hLRN3?d$J_5HNk8FZuYJ_xH9DQv?OjLA`N%u@>a>b(*uwg01T+>V_jB!ZP
zi5w0S+kw!URPfIq^&XP6ZyS)xYAaf1zMf*Eho{@neGF7dO-V;WF?HbAWJWr!Wqf>j
zdimChOr>2i(nStZl2pe+^3Y3GSi+^kf~&^$tFEP?6!QI_%cQaf0mP_vY3{B_uL^=N
z0pm^_MlsZ^mR=m<(8knepjIYBE03paUb!nV5P2cS)MIC)o=S)@p&D4HjI=J(MvpOI
z;EVC6Y1RI$Q~h4ORDznCm;ijKP9xBhN{=p}W9Hl$EQT{~E-tGa={{bHjq7KF868ys
zghx$>qm_*9i~E`ysI^$hA#&z2euGy6NMor7Q*g-q{djqFnn!6BlGb!3z&SY{M2hhs
zc>|I~aC%Tl*Ey-7Y{oM;w#7AO1>TB^fwKrI@etI14ydi47gn_uBkbmmQ!I){o=q_-
zDRdst>!l+;P3P-RQIE2`I=ptx*$;{cQVA`VBmf&AaPl6XI@7LLorWceD(my~$%@0r
zB}F{TPc=C;F;OjEGHl*76pDOY@_{C^0jh#V8qu`{S{aQ(1p-oOoQ^yJALRYLE&3?|
zHI!Dg!qiY?0l<$!c+#D9xOSH6r=~SC)6!Q%lB@fSeqMsHJh_aFQN;~)PEb`hp0;Qf
zpvJW`)tH?KbLvnA)u=nF0I2&jjQ;?W_Vku$r?*n(QqfU|pJ$&DU*su_^q!`k8Y-;S
zJoCi_6w%2X^i*=urC5%hMW>Fwmm;PpYw*TcAI||2&XTH;c!R=~=*R7T;>_xsoX)+xeRQ#$hvA!*v#)
z?N_zym8}QHN|UP{i%JnfdNEsD<11^?l1(ijF!hgS@G5S&r3wW-ApnHGFxz
zm1QnQW|t!PeW=r9aQNC8Hsmt1A_{k$5FRGI{e~s7x-k!{vSwR$)XPAqqMf6~?PJ|a
z*Hr;IJxG?@meVAB+jT6J%D?
z(?}#ylihg=TpTFsNLdChlx1^LMBES_7#RIMKVNE$R_G49olFk}1pfdtq<+fu{{V!G
z{iMRai`;*259im82YTelY`*ebOb;6*xc#Gvrlnv>HX}2e{xMcs*1Ja)IsTUV`_{Wv
z1TDE^jI$B^mY?DO05@LoB2Vn$1lNma`3eu)UZm4(9j{L!RMpZ?n5&CR3jM*5t<6;_
zOC3ojMxu0p5-vn)ihrlQi^*fv;3`B99SRix0KHRJ^Xa#iR~lYZpm}f~uuy){)3Rjo
z6wL5rAzG!16atp5O&d^A7u21328-|`I&KBWHumi+r~_21D4?LX!p&#!-s$>|#Z0KFgc
z59iiMu#^bmYJ_}+NcvRdU+&~zR-xlb2ZEl*=p#e}-oz*lrW%{n=ly~Cb+K<4I+$vI
zR?qD6ACMh8`*)}MtsjeY(%?Q${{S(~vr^2HRQJzV_6038l8K-AZt>}DwM>;N+!T&#
zyd0K}){S)YcJ^7g5HzpiH2zw@&(iBLQ(r9q0F(UP9*)jJii4iUj=O^@Cfddy2l+x>Np+_?%WDUMQFT-MC5J1-?$EO?UiqD+kfE9A6Is!r)1`p0?bd9llf?&d|h+A6WOKS+365x!Nj<
zGefmI3nQPWmw$C$Clg-n20$F`MEPu15}gwG%J~E+UNa}LZqq8>ZQ3Uw+(SiSoTwC5
zBvZ=;y+(S5xz@<+{K#%BV=1=YR#?cT5<=CMH3X1AYPzqQxuC^*2llmR+)FK7843v}
z+Szsa;6HyvSr>rI3Cg$(KQbDmWAsUe)#X+7(sRm`qI6
znNRd|wlWC)C1T$K?s
z6FqdXQU`=7=kl*=AHoed0n@YC*pkyML+NztRdC0~ZCn?Ibe&QIT}(9$lShm*Wofq-
zLY|8myQt~&*zBcD+kwVZ*+`%Rc$;j^TpIgxD3V)s*XC@3#sFFiWpnG9^+a%upNr{)24vpl&u+sPfH9A
z7k2I}J|7Q;+*mwCB|R?Vs9IchBW!H^0?9odPcMPo-G_(kjK*INh?6w3MHnos
z;ySN&3Zc@+S8}n^IxN2-dt(c+w(k0&*?XRXyRw%Z6;2YHuQq%*9kH}`2J%`wola9F
zmd=VQt<9F(n61*!9!81^>Z;26m~wT+W>ZW}_KmK6!Qt0zMW7@xchtlor2z5-fmNu|
zJ4Q3mTbXz3U7i`@hUUAQuV9Wo)Mpi}hZ=N-G<=pcbDVTRdj9}z(M^t%YiuOSZY}R!
zxO4fn%g2|;?wTxL0Odd$zg*Gbv6Yz}#kep{ONy-PnrwbXN`LqC$yoHWSIjBkl!_9r
zF}l5u(Gp2fRv<+bR8-drzHC_4h+O_%L$K|)d!&+E*;~A`5DOeo0CMh6WfK5u?Ni-e
z@zB@Uy&>FGRXB=%(67Sv-oxEB7RFa$H&uUS9if`v4Y;MM*&Um@HyC}(j*oGzG{+r5
zSuH!}DC8{-d&<$gWD@gA%LT{o-*rAGR^hSce
z9CXke{{UtsL0=554u)zWClwj!qHo-0A0fH6p3JG*_
}M~Z_xlF04PyudJ*cGA$x
zg`uWwg-X!A(>SZp;^XyQ8W3DtRi%gEJkO~+q=*N9|dL6l6wsExdwSUBE{{VqOOEOT>B^QyY)fQQ5kh}Zc{Ld^fM=G<0s6{j*
zA!vMs000gk3i+Os7LMIaR(js-(Ul7j&O=bT$VpPY?UKdCTPmqel39FJZVM?{S({zg
zw6jz+CLOW2v(J~?+ou^Oc1VAR<}1H)OuSfJJau&|1Yda7l=SgK508jd>X1ztQ8)p>
z$E7_-+f4aZr-A9{#1|;0)9K~5Eke<#WMGu8kHc2d3o|Z)b(+wUCE)iK>8GD1LALYE
zl+xld)H#eLRt8+AHz~Hh)OF|r+sP!s71lzaHlbB*Ey7YXD*h_ctQLfYpenuH*uArp#!0s8_so;a
zx<81)xl)G*gsg{jCb}81m~1*@>8Y~$yx^i*6vy}tJw;4XOGypZ8iOPA-Lz1;6(wEYI5WbMNNT9Y
zs58z$G8tu;v)EbThN#nDQ#wxwG4H9SnQqOPY(6RY80
zD*JHn4ei`?b=#M*%~yHv$SXg+Q*G=n8K&A@Pq%WIJZ&CIEti1XNfyuRU8AunV}hP~
zi6xR~^EHr9qSDrilkzMq);P!wDIgmBL|4-^BiD_1U>>U@wZzcF4yf%&rA0@HMl?AU
zc52iT04NPI1q%;!Hg90bnc8Rj$rIromlK-Ab~ZLzP5ZU-J8qLPQH|L$F5{k;F^{6f
zQf@CT49gWP*&n+#s*%ECWKrYAENsxYWIks+H~?$FR)CISNGYG|M29JQ$tz1(a
zS4je(Y18CKRvYqbwD#A=KBnmHt)0ZsP1(Qbm!u}!yBje_nZ`!j4-L2F$!+}R{{X30
z812tY)j7dYOG8)uJjGo^lf5NGwMkP^BkngTve<3HfZeol=~IFgR-ni~5IU-=)D;yf
zYf@up442n8B)91XYPYE-hfkr#NcEr~U?g^rVM$Zg+gr9J#cmy(yAx{UF|6wxn!1dpG;Qn*FOQGHh1#nwk$GgLgi|q6ZbDe0m?@3pQVGZo-b^X*
zl^wXR#pDG#TGp(t@zgM4Dd$1v53NprFH>HZy1-s
zTauq6klULdv-ajRU@%x6zmBe{l0B)sHf|<~Xr!vCe2g{H)Fl-S6jYS-(lN}pay%w!
z=0Iawgf$^ucv8O!P$^STYoq`G=>%|vaT*~ZjSCDGQ|s$fgm2_
z{{Ss6x9eW7$M&bg&Xwz4rm5;Zk&oM3&#bz0XHnp)H@8`Bh|k$>DoV^=4L2TtdhD7e
zk?NMNdb*6o50XZ9s);p)E)r?`-BGAGRgdRFJic8DHmj+u-@!T+T;Y_^gXm6?+I+na
z+t!L-H?aF-a_`>!uM~SJ@p#-`@R;Lcp^2#_G-}Rh_XI)Il$xd{Er@qj@|2>r(d-D8lx`_O$%Xg
zSUEPmDBL+JOy(vEn%tM)(`6}EDc3VTQe162PSr&*t4_p03RFs|Bl0|&;|Z0oamVHU
zp`V{b+hlgeJ>FRZ34l~woX`?@V2YfRT6{cuSoL>Q^%ni#U0FrCGP{P3i#@(J?PqIX
z_HIKlhsol0nw*|Wn`vxZ?(N#ukWpso>8T{Xa-h`xoRXzH(FJ7+it>Aypt@+(5)g&d
zDhc6M0E0~YK74vzvD#SP^B%<&#F8$li?)-cl~7ko)Dc0)QO2S=KxTIK#M?Pqyv7F;
zoUNjtcjvJCN~mV>+37bG1Ut=fVk)fdRLe%WxZr51>O6E<_f7jht&x
z3E}`cYfwEr#!r|XNlt9zSuP`t_);-Mp;mVSK(sDNtD4d3plJ%y8sN<9Jbhk&KIh17`U?HOkN))Hy1OtcYp7c@M=;0DnXa$!V<{esB_WzLXyTR1qNAa_
zJ88yL7|uvIE-{WYrAesc#B`E)ey4JVF@Jnj>5&tqJZS-6a>%#XZ_ug
zr{37^^6njr*mZe|PUZQPMLl&?+nSnY$Y8U5)Z32_P}rK8Z4O2l8q^AofZWY~)9;s(i43Vd^SRaWR54}20HcZp
zsTCBc9Xw>|se2c*Mr$2_++BCKHsu`I(U@381=WuP$;@hKqW9wdRdCkhX
z8X6jdPbBqJ^t4k{(2oj;QOK5ScTkS~a{ZuL^@zl8VYTR~5rHog|u?l^|oHUD{t9_C7nW@;ifQ?jFaa+?lW7
zTY8@rCTAJAvCW9wJA(-}*lbqbsKZ6LYQ{?^9ZcAII?9-`89F*qJ4&>QukBsGFwmPr>CRRNBDU_`2WxgXcDvv4)V
z0jG6E8LLe~xfG=_Lt1o01QG}(oivEvaD?#g0G{ALJPF}idHHmoldJNOWpZ$BQzl;z
zhr{KwRFueZ8EUM47J(`1_a<7uZep_Ym8if^Trqh_*jzf>@~DYOGBqJ}>SK9JAEP
zQB^5)N{5|el9HgbLVM|W0GK`KKmf}WK%$L#)mdVS@Q#A?J*N99lRdG(gIhLamR
ztxH85^z*h(dFd-FG`U$yt7AnSMM=nG>(v&k%#y^>O4@nRqu;55PZ9^&{;%?NvqMd2
zD^P3dKh>O5*QmWv9x(%`hr
z5UF+)BnldNo*tj-r%yv}^Q6WoYEelb0&p@8hld8p@`Wg0n#unCcAl&^aioHOORW)Q2E@WT8^pQneNH6#oE=>A4zO
zHi8Z~=7-LQ=T9?_E;#Eg9C=z1PSrng1u2x$Ele<_R1DbKnB`h(g{g5*Q57moGz+P621RT0^7E$v
zI`OiNUs^dis*(WmqMD8ePZ|n&pH8vj_g+U4FWst19Y@}lH^^4e)J-GF6zxMuCY1!GkP0E-251lZust|+XdK0+C#xVe`FiAvQ|uV?=u)NZt-+X%
zRjbGhKzfMMGq!0=Svra2E|6s@sea~2D`}us@ys0vft1PtaL3wksj8Z2FilCOJc*@2
zu75tBdx)4ROM&6DHB*Bj0>5cf<-l+QsFCF}wbZpS<>lRPNmlbyWGd20>o8Tc4jwvs
zWz$bfB}PvrkqHd)2Z;y|q%pboeIOCSqd#EtG~rL@(rOZ*F>unsdDOjK?{{WRK^H$=1NAl@!wzn?&qt9b;)Uo8TH2E`Mhgj;)
zCm{_59(7=^$InA9>ieiLxY^Q~L6&)?r=XZ=(;S{PR^B9Kkbn*~d5V#OF+zXKjy)LJ
z+}uSvh^V2KoyBQGN`b5p2d+wk>C(jY?(4?O4Nf-`x-q$lS3H>9?jDM5#fQnokbx?z
zt8$fk@^ci)Qhvy2lq=MvwFRWOMN8uA5-}n~!6;~?9sml`v^lR3D7fg!_QH&f9hA^d
zk>Vv}M&f&rF$54mC3KHE`E=!7viGeo@G4ol_8iVKk8ak`V`-$vG<2Jn6%xjjTY%!F
zink{oCZ9VXrA+c#*d9NRyQ
z7*5>?z_=NyLz-&fz}JroWxAtlRc-n9w%(*L(a8lQd#+KJps2;x;irQi_wr-6b{e9r
zWS8$K#F0Xj6Gm(Q0AXQeZAuhHduw;8rl4BTXdu@#!8KAxo~|B!AZUCrs~M6zkZMC~
zhEY|oa+);o>jOo!efloQYrwy5o4tIZCX~038?a3m)i5!
zG{I+iV;1XmSuoDh61CH$Xm-~kfC~aukRCLs$N$yeva=yYK&sVs5yPz7G$gdLn}Mbn
zP&Csu*l?;(x;%)V8&myWoi_5v7^|=!;rxda)DOJMR@>}og$yK%)#XD83f+Skaj>|U
zn^=!4!hgfvHOl`00%;zt{$c)7I&WOke`g+*^>6Yh&+Q|w*9#QIUnx^jm2suKbtPk=
z47agdd;uw&gZ}IiAMy9^1RTo6&(DYK82z>D!rV0s&RqQXf4q!-+Vt-nam0%pNRh^Z
z$sB5^ia(;NfT};%_UHf#0YTH?1pp|Z>z}>#zP<0=d#`)GqlTo~!M
zU&arP+qRixUm2*W!tUMmwX5c(R61sk7?znOk;c7Ds68p|74m}_Vlo&0eqNQ@9`L`?
z{{Wv`qtaBW8CYnDePw?{YySWSk*tb8*FMR{O$Q#0YB*OtCG%U?Xl>RpW_KO?yuBP%qu`<|{Rm|CVRB^4b6au21}rm-?v7+8;~j%51(0Il!JBSH*zu&q4EF5mA?
zTl^haVz7vkmW7+u+P}zC{5?5G*ZWscmbV<)sn*(O+!d9X$yVI{-|;!>QXoj=C{TU4
z(#+s1&g2g&(0;|B{#`%yQUZK6ME?Lvqx>eP`SnEK&Vy~^X*b`-{lQO0V5nWI*|;ip
ziZ2Be6!2vBb$E)O#F4}*9je^2T>3c*IX=rS)k8)=@;w~v@;jx-b|)%wYvf1y2UNi=
zT_g@$AzYNPK$1^YBeP32H6#(V^)&{bF(pQrY0;nb*n#a6x}fhp94eB*SK{lRK#kQ+
z4&&c@iV5P}eV>$}%o;4ai2ne(+anK8Em?Hz^FDa~L!ig`scq^^_rkoE{isS>tlvxacUo^OT=UW&
z7Aph0Hzq%>H~VAOn_fiZ>hSxDndziSW0E?GNS{zuH!Il$knZadbD~sbBY>zHmcL;K
zkCEZfkDgW=-cFY6sPV04jzvC-%p;PXc~%ssm>KG#cJ3!Jg|5T?>{SrsGWlp~_dP}{
zI&nG4v)D{t>%r1v#5qArlFvs=22z@io?3XIhI%^Rx0UAc(#m-(i6DGYhy*Q0p+Z!X
zj1B~lNy^kxq(+wTyex*GsA3Dy={l4;ft&+Z&lzFciiG2_U*
zFlHKcnoE0Xa8v<2Z0cJjMI=+F8Z?nmp!`~aT%ZJW)C4=oZRJSZCum|?Hvx@Anv~G9
z4}_r&MRGwsR+q?Mm^B-Nuz!PWrO)gQy-Bz!vRm(OY-|P_Y;O#PS8qU+S)IBg7|dNp
z%Ex2!v(`z9tEGZAN0ZLQ?+1)awQUxO0BgAwf+P;BzSZw|8+gWX*D6spYqh;>;rpWFM_nF&M*3)fF
z#&VtraLWua(^6t&8ST|k6UjYAMEZONyN2s&YZS{FT}Ub;Q=}YINIVsN
zNfa0+nCLCEY+IJ?brLnKiw>|JW)(x4mK=OnCxX=H2ykg-`wOmm`>Q1G>?XjfO4?WK
z{lT|#8G4MbTFL$9uB4#GO^Mu9^*J2YPJ?q`s3UBg)ca1q8()SnR>fCuxW-8=apae`
zyM&Ov&>Fx7pQv;S3aFq34N8v@STLa#A;9WnhikCfA(9Qb2ZmUJYL#PCMFILXkw#g?DY+uPvBvSJI?*Km*;tSAZH0qsFU+Cn2h8dJc0pG;H6yuQux`
zR(rOrWP(`~&=S(nA0a>&Ra;Jq4i&}Q8y=pQC$qQib9!THH*WUdJE?Q{=yB_lF!fbM
zHs6l}x_3mC)s>Vqv^$@2%TY^$A)1mXXc~74kuoTz*KqI>J6lLw>5@8Chy|P)vgs5R
zL6#hI=El81H)nRBXyDxFLKHMnlJ*z`DT{x2z#
z+ndfUt+TWA*(@fk9g<6Z7h9eKPO4KqpGNU&P>fkkH^t?
z+sQ|`mPc6%xGX`d5mAZ(r_|&XprE5O9*a`t!$9#{$r?Kbtc7Z#g%t!f_}+yYEg%J>
z$nE4&ch)89CH9odOS
zB#ki_(pVaGA8zi5FdM4_n4fjlVlbO?Jy(&b+@lLYRZ+6HOf}iKDe+iX@#1Xc<0iJs5d#s9cffLDDO@C!X5&FQpGWk%6W;
z7zt2?)XYMHBS#8K1WiF1OJwyIsdG5$oZjQ#G|!R6Z2grcS1+Z37{jmNu$vWhgH3}W-g+!wMa3t#Ehk`3u$Ts!3!{=k^rC6U6D=E
z7|q+)_(QOK)dc}&B^sU>TZT{Qxqn^y`x5CN?ZN48fNZ+8;ht2r@-sbETKQK4uB36`X!
zK{Tl4yi+M8OjW86Xy|
zKsBHQoYyR91v>gW`~v=6KNP+w^mQTI7|gcy?0)O(?z*h*KFIFrV(p#nz35@vbU7?G
z$E~W&~m_0HIvB{9ZeaS261O41oEB;}=JTf6tUm&CZbW|RN{H8>mx+0e2piyLBN
z@YJPiii4jpK=a2CN6U{yYvmvEbN)%c9eS6wepB}s#hUrL^P{?Va%J<|Djx0m0a>y4
ztu6)y8#e)2wzB);S399H^%U5Bu#0%9W~+%1H;N{Xi+0XdJ#0y!6xI0yj1RXTKAhEL
z^=Kul3Y{#Z5I#nlPtPFyv(}K=Uyit(X5Zbr&!P9eXgG{|eE$G1
zQPMLsbp?~`#(&lRevjw!o%kKH`}R+t-zI)bVe7kRV*C~BD(%107_P+()r#_8yZ*aCzhr
z&(M#46T&m&3jK%t-FVzvkU^AF>_6t~=286V`nP8Fzsv8CJCkHnR7-^I-p%ejqU>xY
z-@{3_@e4`v8+dGV!fhH@>ao?-@#Sgu6x)hwS}=l2nyKKsEUOZjLb1>^Bxqw_v+VnQ
zJi4rxjd2r+SQk}P)r^c9G2>BQKAd{0m9G8~v@@|{sjKMsUigz~b^R=|8tADe!BXwn
zQ*={NC4AUCG?-Yh;ohCSb(7V+aG~_d%diDN#*tI}`a`z6Ew&YNn`~T!tHTK0_amt*rheA3Kf6Jv8~Y&lx$AmMVI>iQXs{AsiI!
z#o0#;+-bt1m8CFzsq?4+R<$Ro9O#}Rk^BIIsH@jWH3gEOkk!ClEX05YkhLB@IaN=&
zd#kUu%{pQ7`-gGus>pion`Sl^mXeZIs-(ho<_k4RQCEOZ?i@1*sd(e7Gr{Bk04rIl
z8A~+8Tg4=m>{bEwRMxp;=1ci-rg1^inm*-oYiz=N#7IR{EFcQui&O&j
zYFD20+0`8}7Srx+!;#Ksx84WjX8VtDZJdta#T<51d*buEx`RJgx2gnjW)lNRyG1nB
zc^T>}YqBxR46(x$cOc#)6si(6qO@!KC@3lRd3kjcZmW2kq4Ai!s`FLJtsPkB)r&P~
zPCU;;hg@g#Ew#5s?at$>M(C*A*)8Rss-?|GQH2$mN*q>S8(X&|%05byGf_PXRY@9T
zDDE;1EFM*kYISECFAOS<08^u$T->9(+r-f7qDacX;*Nw?gCL$HSIpBKIv`vB04EM(
zvak};ZV7Uah1hlZ*j_q1T8ym@TRPdF1q|Y6sH9x}Mw&I3AOod7sZhYN*^jra0~+>b
zxcUD8tIMZ%i52IEMaG~bugnro4<6zLTA0sh8R+}<#U!|$i?_2Gbi>ePX>qettZSBjP+_I0biN-}TxeRtrwp<-vA}oz1G*MGi
z)QRF+iIj#O>KKL4Sh(7_mc*e{7L2&Rue*f@Wy
zH96_c<%*)j*{sY4NvGl@SJ0n61W`_bkjkTO?MnXuj~hFCw6*db!Pvd0UpiOq>2S4~
zaTRt~ZeVJ*pJB_A$2~si*|nHCCaR#RGR=;tucwU_$#o{xS@(;`w1SBmAkJ#5nvX1!
z2dy|0(Q`!{dnVm+Q>o>Up4tKlAZdE#lnSu?C5M(eiGamovisYm@HxGrBBP57NxiH0
z^I&rLs_cbE*V>~ejm2(i%svZl!-(4%ediPy+&yDcPzs7l-@K_WXs0ahx}dUsIA$6}
zKc&Qq(;!sS&#Uc>w;P3wZyM-BthEkGih#vHpe;oWK}yv6^yBlAvprL^Hw4dBn5d}h
zUdhGoj7@bv*;VB$u^B8vZS0LcUv%Sx9F;Z>i#0SRXqjP5t5v!yB|`|qTT;gqk+Ogb
zr4JFB`2)hV`)NVt(2t$GYl{oGSe8g<47dd8D@qn05L(cl8ubzJ8Wg%}taHOI0*4KY
z&0~Z$D~-uza+T=&NvQIFb^L2HmZqm&cubvUw`dk9<1lKZDol=ji6Ur=Xm%AoWcm7<
zd4I)q4ZIg%Jjn|c9B?z_Ko$98jXDrEzeM!^0CsLYySFx0-OlYi{xff7>FX-?)g@g<
zUv%boHb##hwCXn&(91^_(vnTNnya3RAaND2(A8t)hNMsAUmv^QM{gW3v?)mo8u7@b
zMMnTeM`h4MHeLBA|+J>Q8C>LaFMFr$@Umo0DVZcIMxP
zqKkFMjfXW3YX`Y1D5z>7!Y0AqvQlKXR#P)YB~4l!V#;ahsibM?nQ4T?sOG)geSc>j
zmo3n!5_z0zr6_Usf0I2DO3YqgFO;R0N*SmkN=fJvol>5rw+jRn6_sg6UqK;-=_|7D
zI>i`}4HAS<8E#5v3Q~+J0s9HZAIpwDeHq%`v@!{!auSpTdRGcYFxB%NaG=K4%^o$g
z6qMOoC0J{64LGiU;W1UjvEn7J{uidQi^U`*C#!|YF{>vktUdWPAu7ysfO!3&pPvz5
z^7X5+Z!z($5}5B$D89HrXt)_GgTzy)nQBOJl`3VY$-wWGuBM7PBbi=`Dh!H>oNN(B
zwJ{hC6p{shxml)_qidM-GpPq0b5Hdj^?6sK)2E6Y3e$lewf_KDm3o7Zs-zRlY2&4Q
zC<R`$=`}2UxQHN>r{{SfcpXD8TMGlUP
zq^a`%0H1*2<;U|KIO8yw>e(tk1dal<`JcDX&!l%(62TIQ6tYSQ1Wl
zu(b=iW~vo01h|?C+-5SGq8W@ea?q_($t8QcM`e;$Rgu_;%P`aI(QF}We-vCPpELy0
zp?wBPC&*xVR=pz^6UpHrg^-Oo{?O-#qR~eXwLA|^Ye4B&Q9Kx?`?Q{l8tCVvsD^_U
z($cq*ndh0Q&L*akdRLNFsP(*n5H584P9hX$uAn|tJUE}r$niWn)4YgENa0&ap{*-J
zKuD%phYDh!WqJ|z&iKtyR>wt^mnE8#X{|m+riPH@aoDRDv74?EFN8HC>Swz&aDx}pa)ikw3H=f34RV7%YT3D%7&yqhPD|;^`
zkgBp2?cxak01hY!{(T;Rni5rf9u+jME9b_ZL-z6MmV&Ofw>w`!6j=!>lBTkP3ZJ;6
zsKL@v(a^Oh&;zr^bcBSSMSLQfMXlnV`oRZt$91rBN%tB>$g^9H>o4zf=q
zY&dz6IC^m5U--V2*w5pbE6a$i%i-$ko{n~GHCw?)B_wt9#Nu
zanvAj<4;nSWD6q!rCu-y?((OQZ@2T{M@BaDTv~!)nn>D%f$hhhpNE0L;6-XH(Wlwf
zxz>s)Dw%1kY9yu2WNG1LpB)ZWjK>RCRZvSq{BoKPAQ4i};f|hQO6#!&H)@F;KvIXd
zRx3^<6auUX;!a2%4R-18NQ+aEI01@+K(CPuO#=bsrhuNCW!rd8!Omr9dlwAPkAMt4
zT~2BK^K#)Uv3T#|?N>v)DKZE)u{#XVl#=9bjt0jEc5HF$#`
z1}#HUzBMazDcB~rmBLyp^}zKpG<3L@7KbA638@#
zO9cwREd>UoufjpnC{0$nfaB0+U^wCARh7~>?W_a8Hp
z`%ZeF?arO+-u>6Q_rG=Sz3<(7raYGAz+yCvj$Ve9or)}PI<%$7)kIP2lUMj#+skh=
zuAvzT>To}4pzF(4I#3pGKnXvvSEdHuQ`Uq03j>j@KwTcPwlj^Rr*I1-lYPKhO*=0-
ztT^|oTPMeHsQMt){{R{^LH_i5eA`T*nRLdyd)N$ofUAEY)pT!qjloU)%esDAdbnsM
z?C*xXv5d>M0%nRiD!Svb@R^KC%bIJ&T8aJPaU4p-#@DVltaKuAAO5b+nawEiL(~+W2hopt!>K|u4R(F%Y9C%PqxCujjSSv^*L|%rmKHGv{iVy
zuiO4^AIqYFQIMzFf6Sw3YpJJ-Uex%hxsFfnsumeSb@uY1cx6!|F1XeSwK+dP3w;5x
z&fK!d?n0IOK|`{?yDc(FTEc4UbIO-tg_6F`3~O;%>2
zft^;zn9@MU^xxY)0A;LKFfjGkjx^#GtNzpB&;)}05AsdfWc81vlIlevjz53bfIBlj6Y%MVYRGZSsJ@(1RVbWll`8I7B2}^
zJZVu5J}DaDg-o3gSG~o75r6>y09xL{)7^z)jKqFNsY=IYj#Nowm00|T9)ORZm}uts
z7xJPk)-GX;qw4r_*(!FP8k6=oz2miOrJPgIO8E)t>BKtaFfW-PS9G%|_KR+~Pv1Lu
z5)Ex72a%~$>(Qq(?ZJ5~n2QsoZS@hJ0np-~>Ze-t?U?KEnH-ki!PPYiW~y-&cx|PL
zmO3hV_RSvPhO=|cIM;|Xw
zkRqKzmgvhP!i`OON}$D8P%NgTPzI(?9F;XR=w!yvTZ*j1$4`OV(q!=Q*6loa&tc5VVLqS7~
zt`4DIjY>Rz7!fCmr$7uU6><3^u=bQxbU8YmzeAJWv?o7FwQy8h
zKP!U8?ntO)5X(OEq0DXyT0AcMZIJWT!8G`IYO&9bq?Kt*H9lyZs_tsMVn$SOx`}Yb
zN#Uf0HIG&)sD{)=Px|18T
zG8FYWoCP&Z6#Ij+cdiqyX&JX>*UmM4PFoU>HZyeA)70$@L`|2-K0=0yhB>KbmX20<
zim?9xR+_G~s>x2+)X9}1fE*AAW7@h&G$1e?F(|QOw!vAzJ<>8oU0~&xgHWg%n_7WT
zN}O~AcRu&+d{+3IYjtm4V*3ZSH>StI_NMox&u)r(uB_`Fp)P)p5le%t?P@%>*ud_M
z)rzBU1T~1URp6>6c_0gtGnrRf!)jnA@@7kD-$E4wTd`eL5s=zc@gUV$4JQ`eDAx}?--k&RTLa?$ExLq-LAm=WDxfnKrr)t}vavwh@#LvC%YkQklseAijN
zHlGpH{dte6vzh%|nx#pvfdJGwOZL1dBz4EmF8;
zB)psmqf)eEP86sp2M{_>4#{(OD^0%63KRW}NQxqGY80(XRMYT-uU4%!Aa8e5Q1qVq
zr0dzXU8iHhXVg(qo7IZCzsWlysySCQDj~lvrmwsV)MiQF~gV~tsTvp4Q53{K2
zv2oz>G<#k@^qp5(jZCiPn=4Zl4K+PIE5y-q}mBXUZRi5);;QdOHlS9ZWD
zh$+=&0f@sPj5u0-BjArA0+(dyRe}<`0*j5=Q~if6_%MV>+jY5*9$f8oO&B
zs57ltpVP@EuEYUB&}&yd17ueJ0CwTb*5r1B({CJ>DQGd&d0o*{xAPArZWBM5+SRR;
zs@SqcT`T5O6!jI=bhOYK$%9W(r`?xSpt7wTl?3Dpj1U-8R}D3w1mIwG=)6m?@}xRu
zEgG{DRdp$&qR63qN>E4QX+$hS4%O*5xM8Z_-AleU!4-%IoMQ
zNpU#Z?2A<`Zfmi3R@lnbQf>^~@VrY;9TY})M`Z^#?kJ=h$51Qke8?OEgTQ^g4fg5Q
zkhLh9>A4@X|t=uC&o-tgSQ1Krwgsdkuq=0|5{{W%7*K__9AM%c-
zuLbe*;8xe%a$+}cdG7j7(%<=vhB5H8n|o|^^m~Ih)H`Bal~PvW@Y}0)k>|EnUvkrowoN157&K8|SWzUQ$=PEw$jA*(
z-A79&po=oLm-?;29>Z^GxNCEx%=vu%HCO!JeH$U1B7ri2LF9kW)1DV8Up`A499g}m
zSsPbTp;~-}OI1jXQ4k?whapuMl?HKB_{C|br(B5zjsEvGJ3WKTXDOqkNoXOa
z{wZ7*k1bP&pvKqbXfoJbzurp?PD>uXDv8-zF-uBh)YO8g%2Nl^{X_j;r>j`YIp1wf
zqOAw^jD8&i5ZU3ZojO5YzPq^PH%S>jq_9YoswlFtCpbjAzd07fZVf&ug-obje`I+u3K+DM))
z)RDp5%v6wdXds4gGpGQ7ii8X_(VD#r9}j+6b&pegfb5R@+}kT9zjJ#Jp||d5Y{#~?
zUNshreC4X}byQhss<$02Da0&LZFix?nh5H0A}V>2CmwU9xwdP&+hJ{KIF2ytS&n-J
zaY6BFCcZ$Qv!#~Y&11FhCvn`Z9$7pIJTw&TkcA#8(G1++{gADnBQneYgTT?ug`P}tJXK>H_Dq3oBBzTHZ7(aC+tVIyP
z;hNU1{!Sf1*VkS&*9{^4C5_1gHPmWH?LNOMo`zkYnxWeJFSD^2oJQShnW{30y0X~X
zC@M2~Wo#`SWgG2`Y}NT`w(iTtS5GA<$$j)xzh;_#*wm6^Q0TgQh#94S&C|TGdhNHF
z5;ZDhVL?(rQUwh_A-vkW3FwUNJhZv4#@_p)XRDfuyD=?2RaO?Ftujar7KKfZ#nkv%aw0n2pcY8-A)O
zpsu5*$6&=NXff+9Lo2r8$Y68%TDt0psB7_gEY=c`)2^*jVyVkK)YH<(EUI55ejLt#
z;2eF2BOmI|LI@>UY~o|WgN-s)p@}EY`~!#}SD}8IYAjw}w+1&btEbAv6=vGcN#$%*
zaj=3+b_)?tOB3!YDE9?bMoN-;I5HH})pNlGQB&rLz55s?cy(}S%&R?rg#Q4Ld5Yu^
z2n2w9$5AL^!q@)*8p_n+X`-XTOEoU)s>x;P(+xp`6_Z1Us5nU3>v9-M8uIeiVA44z
z$WlfguBFnW#*}o_J6k7*PDII*EFG$QtHPWCrdw8`
zy_<%}ZX8WLH7xWyyKQErz-|1d`QEt+_j+#gyi!OpG?{ths}o{!Ioxe5nGr_0TB@jN
zDUv24ea`4!O??-|BWfYC)UE~xaUP?Az!g0R;o7W)j5Zf%#7O%?DJrGOseM(V*NT@>
zs10R;igbQH4gUZteZSiH5B6$%$F=+SYWzsry90middYW%Ud^99-rMSfKe(}5&;1AP
zx1oLSiumERs4+BEbX&Tvih`>vl^F!bQml0eSPA*Bo7&TEhAknlUQ$pEE>z$hVzmV4
z9mp6Ez_tOeB=UFf-eY?`yiC?H!cD`;RgDp<+Lgf6;Eg6dIvv4gR#oomz5f81FI#l>
zGi%MeI$x?&uKMeG2<*2jS?1G)oy7L$nMw&FI64cdw
zv=^w-2uqZA%k9r`xV7Bx!`;QD;Zvna851y|1nE68iU{LsOpZciR|Vo}1f1u*Fb0LcXQn+o{#{~Z5rZ6}MgfBG2On)~
z#CcMnx6eHZl{@lYv)=nxIag0EM<+vxtk{c&llbn>lQ&PgakA~ao(m#z*<7AG7qs?;
zbdbkW3hAV(N{J?;sFFDu0fd^8%*fSXoz%@K=lca|=6=fbQ+C$#&m2b*a1BAKzrsO0
zD^D{+k<)(q-JOeByrj+cWkfrlJ(j{9s+g);x%TVqioLZ*K}UoB1(2_5>Eb5O}NnkdZF)OjkZnO=@3S$IF7O&p=}~W8o{TL
z0RI4kA3XYWo*So$0_mYRY7s&>asL1a^Bg)-<2KG(nv$}Hm4U!liLnx6C2E-}=;Ot_
zmEU=Xt;18*#e#Zs9JCX(w69Sa0ytR2>uM)yWF%_i@+a&*USmIRRhHoPxvhjKa2Qq#M5Bsnx2pS%ugb&KXca5!3
zwM$O2dC}~o)z*s~$m|^89DGBE9Pr~@(w%x)1d+NpS^^0NfLhcLIN$)lKtI3JfuR`r
zgyhk)NEV|_95n^2@YC*Um7o<9WMQ^Cs-m|U8_9;579Rs8V~R?EzEHZ>-qVoY8LIw~
zsPwKpyutIKpg+%~?6Iu+BNa3R(Q*|}#JY&UIUZuPB8R1oCL{P=J$55*?l`d3RWW1g
z%$fSUjxxHSRhen>O-CI&tW(GQO#Qt13Pdr=j3!XZ(#D>9D=UWmJA#s`;~adnvgC2i
zK@=Q5PPdCJk;)6HQb8%6(kcT3RbVlS23`TEdRXD>p}=Ble(su{TyYNvP^!n!6!iPTy}=lTR9GT)rNt
z#*#%7tS*%RO(`l#_S{=#+Gx1%^OWL9OE7L0j{k*2v6G&+YG
z5&52sHr($XrKiaX?4EGag-old%;9q~V@%l^ZxEtt6r#w&l;#R|M-aPxoH4rTZD9K>
zx!Sh`3`#Jg3h1W+Q&2%2_5HqMp{2JmZAGZhN+Ca}4l9ZgLsX{#GB}Qg&bsZ6lFDt$
zV_&&2xRIEtu8%ECS&groZ{nb4M#t@Hifp|bu0|})ML?#ccBd5)#iTPB^m{=r(Y-ravPtx98|CecdCHLrBoE`3m)-
zK*>1iGgH0r(GZlPuOT6JhSb#3Dn&iL5!5{5CX7f=3>AgB_TxY!G`OBP&!IJM$yTlW
zx^g(ClvXHNm)C&*0D3fE=hRV>-T6xjJX&F)aM852p=7D2l~1N$-Du;Q2OsJoay{$B
zwqJrNBtEC~*YgqKN
z`*H=B`>leBb$}(Tj|*8{TQOVdbcLZsa@W)(sHlj3Y~N3MHaF8SX`>N>emR_1@>0eB
z0B9d)OttmgtEM7SKeC^(7N3!7bn=j7s$@r-16`5@mC{`PT8fsQCex(2#ZawWF#&!7
ziJTAd`rqg*loLMTt;dj7Vfj}={{X9xNyGq}$P1t89Dlrwe=dkW$<@nk-u9$$A}V)md_{ztIG2#9R9L_tuHM?a7Gfn>M67B7u9dBE
z<*J;2)yJjQ=S$UqpalNRkMMMLzlPVz{{RB_9#TtwpW(FF+%BK$HN#C+I}iGKfA;>!
zJa||8I~d3MV$c2(2lD9WNg#sVa65YyEzM+gnJ2&b%#K$nQz!L0fUJ%aaxQ%XpLQ45
zEB%uy4@E=+{yI)Hl0!=hc;xa>yP`SbAab5z5RpvC37!@YX)khL-vn=OzOImjrW
zIt;BO!Yc&@t|eh^N%p4N?pBdnN!q#yH76uBcz(|+;Bu
z{zc>aY1VkK&=yIn0vTD^ZZ&c{vD^96P@MiP&yx{qv8Nm5K}6XdtU@OY9~0#Y6d6}gg~ai$;oBgj~a)`f5Xt9YC#>Jh|C7JKg%ECuT`y2UE`TP-X#i)
z=$f)s$I}H1=rN?)YNw9N^jOCOgY6WDQV<3{cpvQaZEox(Rz)X|`n^v^7p?OY84nC~
zIoO7X^))>dqBuaknjmSu;;wOj^-c}H1K1~fg`q52xSuS4v((ecGaJQ?YH%_*e}|=q
z$UUdG_eaIgk~lgU3(b(|p31F?o(x@OWR(>gcWqW~+IUeOou{nx)Zi67TCFAY{(XjQ
zr!j6@dj!Cpb3^86bNTfo?>l63^3O0t7*(vL#aD`{VT$J~)~+2%m)hHdq%r&cEPYPt
zgKlm4wU7V~og`LPWjr
z3l%QZEGhvb;q~sul5s#m;7RKlcIJj{tX(J$v8JGgg@T`ohaIFHVQO_SEAapdw-cYq
zml-^@(9;~XMmGT!PhHg1iQ1O9XQrZ2nx={vsIhJ!ik1qQrI*_h
z#3ORg+uV52R+*!ZN>{Yjr!^o`rBTZF5UNH)jVtC&D@Ckkm^!K600D8ONhhJ}YUC;Y
z=7{ck4eOaT86kqC+Z|t<+ex-mMotTO?F=>&qO-@ovD?;`rh2@UQ`e?mingAnhH9xK
ziI9}sBhma58mJYlfY&)jEItB;fC>~Kh66n;jpC|(M~Kc^l!$`3?R8Z+kVq<6)H;yJ
zO-EQ>uL(rBx{9u|+lGS^whb(shMuabzaP4AJ6k_hNw%Y0EHp7v?d&8w>U>$oRbc3+
zIf@jJ)+wZxq9)Ku36{5yMtbQq1Tz7sR<&j-8&bIiO*G^K(Ot~(p@c_hrGisXtqQ3$
z#VD#9PL@D*4~qnjqwmethU%@8M;`3j3BIruDYs?A!37@fq=H_@hjP!g<<4YiF%>m3
z)!`d-W~(q1*u0=@Y_+tauvAo0tV|>r)rJ2lOi(IH0Ci#s(uK_`lH7V8F
zMJuPcflvV3mo&(+Ngmk&S*xd8#%ojjAXF<3C7hL9iW*m>M#!M+d>wUNPD5wqw|*CX
zEjBVPzU%zMVzL=ZY}Ig*fwvCmtlXK6&6eBkLsK4CHkGu~#g>kq3Zo1%!BU>}bZ+L2
zM0X-7B5L@KH2_B%E|9vbRYC~SQo4;)^&CHmPZ}xdrH_8Fa!9FagI1}c>ZkzFH=jYf
z)$ho=Q?0iCc6@yfA8_FJMjID`!RPWd6u69^`Da(C)0P(M6Y~c^%}6wz`Sx
zsuS&DX+1_($pXP6#NGZTtxNzUkQfjSkwOgt6b6GQpuX$$t{+2E;uca_!ksLCQ0dmn
z2BD5B2?|3Ij=kG7kLtjGzLlzj&~ui;W->TfwyhMoO}OnAW}25fpPWd!>14yTYXA(G*o$lB{r3BvL6sH+^YsGuBrP>vq-
z7+ysYkYZhZv0#j;U|vR}IV=d#Leu~rvC-kGYjOgMA4!wV?nO*?QcTuv81_vI
zl*pAHX*8f?K|@T`R;Mbop*(XyYhE?r
zJ}h(O
zYBu%?y9K*u-T0it;^-*os+%)GTP+qhMGQ5uH1W+7y+nTNB#5k4i3p;Pb-gUxvm27Z
zWbw3Hk0U-Sv}!i?-mRW$nU+{6YI1w8apmft2bQU$sK8;Wvh_5vQdNosboR_nz9)HV
zE_i%3JO`iyx`Z(Tq>9s|)^exRua5GRjE2Y`rLFLb$3m))5C#%DsB+34hoXT^k;!fy
z-MczB0a2NfzrH8yE|}QVm|T568Z7=&qqX+Ma^v@XB|UvrK%tc{{Tq*tHPf;aq2+XqG=M<%4WVJRMak@KnsDAv?Lsk6~|v}=$4BGiH#>5TX$nIGFu@6DW+7EUCct|%=vCLvo=@>vXxHr$e{vT?a-vzhvOK{lGq
z`JPEuEPBMky^7gYB$?G6$OJ12f`5e8gFFcQ{JJOHWhIs{Sw=x1(9_g?pX_<{X20;8
z4xz8@FPMG%@h?-k4vxOHJE(V_$-BWMP45%TUk@JGIcY%NfW(9lhy4^q>k<7nt`MeW9pdRYFF_}
ze31g^w;y;oZ@)fa-J#I29wvk2X=|P9=PXR}}&FhLaZ_
zLXN7VAB<14s)nuVWXDl?Y1Wba??0WX%(0ji3tSLZ*BtxOO(L?N74+9RKj5!Sy6RQ{
zW|-^dS^Vem*qT1|{#ZM1gKi~W_5T2d;N%mcM8tLwvnI6bWd`?MJWb`q}R}SpImXqeLAmAPqPMK*f3A--nZcuamzaCat3qLpd41~uuj*vhTZHqmM-;*!z~T+zWg
z$rAXGw_ZM-C4iSwrnn+exnPf^bh6HJ;ub2BB
zJoDtJ`zs2QiB!SoCJCx5}8lXB4Yw&TlxqbM4;Zk$%;NpPKo+HvHo
zXZs2a{?K|@@i@wAn*3tOyIP$@QRB?HS*2@)S_@k0c^9~F^&Cb%e!g_*c9(%s1Ty}U
zVV0-9gdHRhFlmJXlp3l|It{j7Y8+lKxi@t=`@DTGSWAL58M)(^Aqmayno4>s1PvV}
zOt@M|mR61m)tXaHPKwg9OL)~?s0y<%2P!!HvC(Gq`kfbAl~D8^Y8dLFu4+8$O%5y5
zzSh}0v%9yRKV{?bP*mpOr>M^7Dk96!?ft(tcDHlTQqbV&>Z7cDEoM(Eh@z3{BY{?I
zjIoKOQ3}k@=aD0+W1sbZFH_JW8+j(5aFLJ%03bA|0D{%wQc2<~_EMc%Cu8=8!uaFx
zi@Ndq6CISJ?e6Kw@12p1$j!M;lh-u@rDQmnV~w
zS30~BN>RLW-p;Qf9vT6GN_x-_^&XFTaR$%JsT^}VT*)k^q}0<<9()3fDC&&*e-`oW
z>bil7$V>Mz<8c)Rhr=>VDppy>CBE1_Z8b(y?gXY-*HB#`-_`8TSA>l-Vl`4v*ac79
z(+wiW9FjSrAS_Ry0;lUwyYtioAau(4W!7mGu
zS{#aGe$Yv$%jHgn++{?0jjxl*QRE=oIZc~BLFzCxux2tjZNHMHp~vnDY=u1a*!ku)
z+0DMtOH9)lW2&Y~iiLq^N!2UdFzHpN9=6^C10)wZ91>`2T5$&>j|_Rxk4*m10de09mPCI21V)3w$kSUx308vj$RGjvLI=Ekjy)}pV2fRAZthc6D6S}%XtvbJF_6G9W
zRdUnR;kT9rvh>qp_O9}eEe&2;lNY}?wlN^0q@%pGxT+k8GRKaSOtFUjxJ9*X)7+(2
z{^iO=PAgxD!1P7H{*fMIsjrfDGtB$7mfv+CeVWzl29e8R~L5`NrR
z`beTw2tW}kTdIj9MAIcW@oJtY<@o`gvSi+PKTl+UeKk}NKZS4sJWdChI2{z8*Q4AU
zpR9LQ%-dLW+`)^;;DQY(
zYfiP5?m2dL&D@k5gK4HaFSPfi4&ljdOhgmc#Q>nrO*T$?TC{@`HVYqD2E&ILw;q~mnK8|k!pV)ttPGg>
zBo6rq>=l9HQbdKV;yGztOW2vc02o)3{21WO#TOGz*XuNsk>k|~PjxF;T`t~EHy
zyd_2>AvE}i;mAi@mfOcW3^jFBn7lG9FkmvP1cYPvo8+Wu-mJAvGs7pDWOY_P+-f>X
zrC5Rjuv+H1B}w>_gM|YOif5&<4JHB^MLU$Y0Zst?6B{a*E~KibNKv2yC@4Tx;%IV3
zGAU9AMc12qOwDl<2DoLZr~|~+T8s(?@*fED`SsNuH9c-Z3_Vse9<|wArDU}erA}&{
z5G&I%S7crah~8|QWa2c@qOBcFu)8y=geZ_kUym8p&!{ci)8Gp1C$+w=9O+`#tue@rQBde#X
z`zajwWSl#&Xh>ADr8R#E$@$mqIK?Z%fb@gvWDO!l!^9jE&fh~z7F-r}X(-@%p{@s;sc<7%rZa#QXMQo6jeW2dX7HFZbh&JqA0!X|Sn_a2i*s%~if~ER}s7
zdZOjGPAX@`ihAhs!U~tiR#ZnKQ&q_-MJY(9Rt$uj!E%L~KN7LfQn@tzsw?U^@vlmr
z>L-zcNGNpERY?Hk5yWuf253!vI!eur+&QRXIlaG+$mTZII-*Q!N0svLOqCf$ijs?P
znJZ`#d|Wc2qpp^YC|(&`%)ylE_G=E~Z*J{xJX(aR0-9hDYeDEwtwGaK$D*st+k0!P
zYi60FNr+%{vqoC2R8p$cdIHKAX<=2t$4m!oVyGv|E=wu6G4!)gBsDePZC6KMQ<0-`
zf4ex-S2Q&>S>3%>#a0b$l@zgl(Ukt92wFGR1e^tGJjmfr6sOsmQ;$wO@)pw?q3^8^
z0IWVDxm^!Toj|Q~P8~DSRYCkFC~BK2MdPT*qhs>;I+~g~ip6B0d1Y#tmmf({5bl{mKqN9!#WgBxTJHLf#5>(Z6**u-eYr&To6Q2Knlz~VYq
zVvT0o!omDYXJ*7v)MIe@UEBTKg)tbFF)6d>vxKPZtZ?3Y{eI$fYQ0>F3btv^wu~WicDKHCxva
z;c;|TwYiwK#TMks)8w-s!*H|JmBTDFPAf6_Qyh%6$qMlTzU;ohFzPB}=pPHHI
zHq|Sqk~r$>p{K2qI~1B3Jjp#_ln_cZFh))IYuNi&5*a_-ODB}q;$T99{*`l2^vpia
zo-sn7+uaYb1yB3YqW-|$MWmphos5yv=XVU##&uN1OD;B&aG&PH`CPQ|S4`<|)U%Z!
z4^QLU(py}Srt298Rq*cNk5SP
z03hqp;&WLbuTzxE)5b#n?DN4%EUUp_xSVV-#SC(SNAJ%hiax3jx*O>YMYWtUN9xL5
z{#4XTkIa5uFg$rUb}y;p{`0_ob^AJT$86oTjHoq`VxXTO&axbqK)z2R83766t*>f{
z>Cpk-qT%SY5~Pd$TH?qoLRzGrH!RAj3)or0gBHymkldFXyhW+VI@h42tT2{(yreE(S2Bd
zfqeefpd-tsd`ToBVj4m7Jbxj__S5V=5igY$G#HE^CTR7D!bh*%T(C2fd>CW*DyX4DBLrj!)<0mpzHQfoQA)3|bYIU={fl0kCC=s^U$&>Apn|X#4NBEhRS
zHTn#n<$?L0nt5y@VxBCL$>@qdnPZR6pPy0Z#_n3!rK!yBlYqu8JknIs;pu2;Y9Nhc
z*7DS6D~)i0APPw_BzjbG{{UZg(L9-XG%ujz`LX{1ApH8TiQ-b0!3X+c%zn}|f%XCU
z^`@`LF2KWgKYw>8aMYQOJ9}@s{{ZfExvZ64Mn!fW*QKP{`y%pG)ypvz*sLJP1x9@W
zv>|5G$zv#IXFyJPl1ZTXo`%+O{WLJZvO*%sPjjR
zQvs7z$dazTAXE?iZo~QyY|BN6uq#7cV!yCgqbq3SdyyQjz=Ax_LhjqZ?hHmsD%?_0
z<6>!5j7>C^R}v6p3mqa;(v@I-jOU+ZH-5HN7LWkjEk;0L6l^QUkDQ7l3N%R!S!V*}z%jdm{_H_QuZN
z5hXr;w-dYY^(mXL!P4#g&P%Rxc?t7)Dk{0Q%vfEufu;MX=a$n@>roja
zT1x}mKs!~_6l#FrP?4&v)f5EPKw1i5kj$6qeI2dJKCLoUi9id+#;aCcAwrta1!7vH
zwm>T9+Ig(zBC7?mCVIR)n|X5Cs(O6fn{JzG?R@4_FPP0n{ed~!@xI-Hjhc?4u8xNd
zTO!Dm@cqj(DwY1W=6ngb1^ojP?I9Xb?}SZnR5
zr)eQkh%^r3Xbf6JHryehhd`vYAQiu6l*m!
zStLU3^$xDbw*=HF14}9H67qKh1
zUr&m7Hs)qLejjK}Pq*{cX}aW^dR%4_Y+XyhwH}v&qmlPw#w$~86n&Tqbd(Dr$OV{c
z15G=eJqCdG)rx5qHw7LFzg==tZ7ixI)V7Sh^;Y!)DgNMhSuU;%1GAA=HX9<0~KirQ4(tb
zi-rTm71GF9f<-_oj0P}ePJb_4F?ei#`N&DOw!Tv-B?jEfadv&iM1(nx&6xy
z$=ML?s+vr$b7*z^cv{`JyEA*I5rBQepHQ?i$6r{>8m(H>)P^(wvTJ&m2U8FRqftdH
z4L}5i2RI&;=^L+xmp(k9jG=?bRaeB5TIolSFmwu7MvX!Ws6P&&(nDcO*xi$x?4F+M
z4!3IjrF|}OFkLNxp~zNmZ1&*Y6tvzw<%!)H^vv!&4`J*q1p;Z7v1lqXkv&QYil&!v
zp_D?xP|Z+F9DoPmAW?Lm<%|+~Q1QLWSunc}YOG~BP^eGox(Y^PW9L((g*r(hhZA=E
zGVZP0TY=l#{{XPEnU3AtyKZU>4ILj*;UwDojvd>Pqn4qmd(Ur5g8c)@Y#Vq)S&~8b5lwI`ErAB`(#Z+%-8mn)srU1);{xRUC4J2Te2M=62MYDH5Bw#Xj*DzT{K59rS)Jdy(clE$S%ZooRAdveeTi
zzdRlwie{#V7&S72O>p-YKn^H8y*P2N5%wMx>tTmce?F{w5exg%+4+<4Myz~P+wRcq3SNYpe>CJ&hTA65SV
ziurUR=9pGvr&u$U)e}<4xhh&(y|mR!RXr}ImWpQ>c%+gXg)2)3j9b+p=HL*D)?`UE
zNpjuPi$sm-V#*LwR(rK
zH+D8ky}F56U4+MMJpNxFT~#{Mz`uKs`%eX603SSKlF|=tjcFs>z1QlYApW1FeqS%}
zA3mOzKm<+BK1QCBDrc6Gdc5rfSs%C<{5s^aR8vnOuf!UfXrY2T3cA%+R#MK5g2UnKT)45i
z-^dUMyhU1y8j(`OC^X5&c+e0jPLve8hMyUQdTfSGPu$T~7$u>rsK#%)DWs{OK|zkM
zp{LD0LnF5&r)W|4`CTM6c-KZ*w$?RhXRF(|
zs&>gpYNcr^uMvh?tgoetQ#m!pGsE*AZ$)>;BP+t^ON1I!W|hedPn|P@K;Tb9e#6J$
zy63Zd6BC5Rb}lOvX?mKI8$E4IP;R*?X*NZ46Yj04H7uDdF5k)LYx9pCJ!~scRg0jf
zg**>FxV@yfUl~=)EpzsMe<4mC7Hu~gEp8Nr%dj-fG}LiCTlkM3E*%HI%w;op{hhJ!
zl`>IEo3o~RLw?m$Lo89nj?dLTGCQcVk57PdX}b+q2{T^R3p>YL0>^e
z`
zFkkZj0GFeowd?D4v^xiJoTVmOpLOl5&cv>zsQww?moNM(t1*J0+&Jn{Pc>1d+^T08
zDAHMEmrR7gD{GTiRhDOv`s3sV2kZl(O}xKO3MNw`htG~1^UZyIIuP@8QU3sXHsy4u
z3y0o2iv^b39f4k6Y;FQd%x>KqqYGP6Tbs>iGI^-0@)?shIy&SO(*ETdPLRjr3{{b+
zN$E*g=2F5m4}ji6rlz$doSp!Rc>~a|kEx``VDfaEguXj3mZIDB>oV=fS#Z?!YcA~T
zdVGu+>1%4}a63v?I27(m
z(>g;6cJXX5q3EXeW-k$m?2gadIof>m)VsquNsFW02Bb}u#?^1f*}1IkWhU2SNs_AG
z^~R>F4T{OnGSEQt!A|jp*BBJ?$Ln0%TN{BIxzbz6W`xvcx=HjO#f!Pv6$~HEmOGWk`*3AiZSY9&1u6*$
z2~&os4%uq1K_G*H)<<$J*DhG{^l&^99r|eFxeenwsF^`1Xu4U^aEy-3tQ4&PC!#@L
zncTS^#Q6(Lp6fow+~VeO64fyVB0PqntTWw*}A!Q?TS-pSth_Q>r$y|nQ83?*1I
zQp+s$So(NkrK4$?2eo$mxyzCTk~pOB$ft(VHjz#vO=@fBR?T`P+&#zV>uTFvUqcnh
zB#D;ZHIa{#YapmAz)?jgG3U~Z*5SI&yRo}#(08`7%r)zT;9y;3ZBaC
z4bhp8WbA#hwPVPC7~T->N}32(rmJw(h$ux|zvm6Et#1O`{6r~BrTG-~ceg|;nx4sv5
zPLz2@e1h*viY!GvZdRWoUB9Vu7^=J#JvC!dV>W)(#!UrYCXSLvcxWSPRE}#g_BV;-
zF+jf+Km+!9@Xc_3eM55yrIu+)3UXL^WwR7#+jZ3JQRAam6}j#%3Dekp84(
ze6Tt&3zp&}m5nU?hPANfBIF&RtVS`2#U{w8`3N08oRVt>rsV0hZ
z+^Lvj6m&0xholMiwHYST7nZ;AjNtZH-;-#z0(&l$0c)zw-*3D*8t?F<@(Q=~)8Lo5Wx$X{u=V6hE{~Rg;(_q^OcLRSNn%(J9s8jUt
zzDLw~f!2%>J3oa~B||c>TDF=V+W8+gT#^Up&1!c2J{BAVsT>v0j(SWMGb6cZW83Dp
zA4b}0+Njh!<0&V}G@b+%YRw9uQzoW9>IZO;YQtoJYIs)^8jgFhUq3FFDTZ$5sC-n=
z@y1A?)PIW==`U5co`=a@jLBd(9%F7j7AFxN8!(yt#ITxaB%Yq9G3FD)L6vHiSR$*T
zuce9@6UgpNjqT{}p`3`NRuQ#Hs46gMeqf4M1QT8zH8r@nMuFHEWF(y?gHn+~qXaOe
zds#^&`gM(Dz-~&k)46J@V5i8>oy!HM#BI#vxi~)7mP#zGCPJs}ak>0l&g)B6OF(3b
zl9tXSZ8Cc|5Zaj(#Vm^v7{DNW>M+2Zjs~>zuSnL_t&on@3yNwq?j+@fb*_rM*QK;fbb)DA3eKW1z_+Dm;FdXldR%NEMU<)RHuDw5GaKJa~NT
zO#Qw_gRR>9obS2Xh(9NPL(lX-*4d7ec`caaI;BELst1!Tz+n+
zIYAw&YAZxk)n9!zO?%Sb8j5+Nr$Z?5%mFG=eO{*k&4Oq}C=D@6;)H(M^lPNsv?vQV
z5n7rGoYAb{BArT`a@15;;p5qvY2wY*SIPI)5#*+N{GE0*Q|BR?ulR&&lVd5V
zVYNI`!xcm_s>IJ>27y}D
zMKfPYk2+VQbFg2e?af+b6dxBEqc(tdy(iq3zXET@)a3r&
zuN*PPNl{lkNy$H%>BHNdJJ-GYuXXQ!>)kfh<}s8q2x@C0T81DcELy579I&|2M^3WT
zxFCH(Tir`2!8z&Z?dFtKBRYL}5883nYJW5gy=8yK7_-<+4oa*29QV)14fR)(tcYW1
zXlZaA&9t7jdU~musw9yqWn_{_qLE;ZQeBjfY2H&J$dN`{wB+GpnwO|c+RA8TwKW#cYwK%+mR!XM2qb*Lls%MstN*YD0mMTf*X(C!WoQ|qobix*2
z--4N>kovXrZ)7E1rDqrIUj`a%HoWu{)-47;qKZLoQk*4Jv;SN0j4$xo`?dE
z<)7!#9{J&w$L&3x(7l0<`zUI<@8xGp%?YGhY8ps?y;+&I)oO~Qi75?3K{!T8{E`6Y
zQjR^nX8NvUjsz~@s6vbi{{RsfA7)QQcT_jZxg1yzsq8!k1q4^B{(xakd
z9Fl))A*Z6?erJjNsrGd`pB=c869hFlEF1xgM;135HDj&MI_0UJmKKnx7jF&N`+0tb
zAOvu`519%-Ua%x`O4+uL*9Dnl=aZy3jzEOU=Cf5Fn*D7;&{bS!D8AK9Ps
zb*N1SE{7Kc6tqQp3$eJsidQdsv!=j&@A$j
zt0OQCXxQIV+vuX?{yoRLjExh>;rnaWK=SkvPXrN36&R?YK7M@zKgrc3S$_A$@1kj>2w%ir66EMDo{
zF&w1QV=JMehMFzD)T8bos*;+i0WiE$iiDK64-#E6NX1dofPvhmsxhCQeqMfEVz$n(
z!>$OFJdw##r1m<6X3j81oKzYbVwvdG2;mi(%;wjqikmUG4p}hSe9kL#;Oq1Bd5X$B
zy(Y`dL71;vX04a_g;f~GV(aO#bu^NRt0QWe5oIq^MMQDh0Ieu!K&GI5FbznkB7*}4
zjSOup)5SqE)GIJ$ETq*?f^bDxX;J|Ot&%DtZ5(wxIMZLYDd;mhcM+YUlWj|$!s9bF
zI4W8k{vwK#Z*E%J>WXT5U8j-$F&w*p2$ghaAuc+0)Ay0cs+Qr&b`q9Z3g=4^TB+_@
zd5Te*hLsq*D=~OH<~q7;RC{Y}$Be3yIH25(Uy8@OnW-10ZO5%AP{~Pp~kv};<@TpI=)=KQgX9o==U~%XPOFa
zr;CBNRYheEKOvahyJN2v*EbeC8UE5Ngqx;pe3kXovn&-5B{YJlG|Gz@9jy|*brYtQ
z0a^H086Fs50T?yMO{a*`)RtKa(v;O&Rh4*w=yi}u97QwI8*A=8vi-N*`EAbiTTZJh
zyLL@gR`}j|V`dQs-K6Qlh6AYE+gr>gyy9`rPSa=e@hM8XReCh74#kky=qjI(WcivsIDJ
zF5T;lX7b!nc1Fg=WBP-1Z>^QnyCbu*PI2@*YahM$B~#IEoy(kDg#{#k!?ul0R&IJ)
zT~bXQ1IWO_(jwQ910XRhW!bx#lvLs|!i1daPzRTHK)!0+^=RsHwHJb`vVuAs5`Z(F_jsry|qo-
z7=PgLrYmY!Q2nJA+M}L^s~xn&amy1&D4tWN5=zakL8JqPAT4-TMovMgEyeOUQ>Y$z
zuP135X@H4W{SB34CYmeYlIJQzGdRrDDnS$hOrPDH($?-B*DeEUN0Z!9=5b=8hkP>b
z$u~7Amm9Tlbv3m)Ezym^ZAt`*cQ$z>2A>%X9yVC1{wCKTErM0JP0vkNm&|S2I#{qhgC1_S
zJmv~qPBR$$lDjC_I!Za9lQ1()9xrp{v6NVuV8mmn=b38hDWauFk)>ANGE`{=;~)V_
zwK)1xw5e|5cx30KlUh8Hp^bcdQmPh(+^DNifRqeVQ%Vc7P=X6o^r`sw(Hpn5yEk=p
zUgzBT-n-h8!&{r|Ew@hFN}F}jWbt)08K`#MCKGz(vD7$K+!9hj_tl$ZCNOlHE_SPA2h<#yx?x6>7rZou6!rUQ6qs;84NzxyM4ZAzS+Xlm;jM-W40UIYN2miZE(i1S8T0@ec~ZE^>1vP*qg`?NS667OX9^X9;4YngxnYLg
z!M=9FT{ZY^n8@lNW-!Dvr)eqME{KQd}~V4QTSJ2^yt8Iinl*x^bYTA7%NRhYAm
z&_gj1@WC|RwfU{xLD+I`oz1!+uG*D5FKEPxl*TUD*>u$Pu~cswsvgGMI7~%tEjL|Y
zYyQeig*7ny2%;F_{#TKC3Zzw1g;Y?~`PBYIo+r!CkC#UfK^!d)g%~=u5>0B}l~PZ{
zMQP@HxDKj$FcWRxku*CO6`9Lm_a5Wf6}w+=V`=vNeH~T@b9aW&s>98<@>C*9e7#);
z+dGCSrk-673IjHY77%4p>-tXAsuN$yeE$G%MzbLLN#rORBKnSeqs>Q6>u=?c(OWC6yEDA{`>47DqWcrQvt4UX4rY%(@}`@rw&pKA)o@E!jmTkh
zG}{AfQ|1OJ;rKT@I=NT2h^)ngBe_4@>WE
zl*Cdtq>PpH(g?+T!Oj4w`#LM%%ID#1pUp$(#$%`Z_XFI2ANnI@Y`xj?MBW$Uqf
z{{VPyOfE-kb-p`iP-ik5c7{ETLypCELQ>Ub=%`qIg%i-?C8L_5s-a!X7X}B5>4jis
z)mq><9m=3_&>KNuN`p|oy)m}NBvvvtTnbawYl2Voh^;VvdiovweE6}{pA&ksZ*-5w
zov(xG{;1l*rc6H1+xUp9BaEmUntJ?}Law5^u2ZT>Sb^*^
zCWj^MgE1tNsfQo+dDrLB#SZ{+&`a{`7oMLh@c#fGCSsns>i%i*>{QH6PIQ2a(l4XnHa6Z#d^?idsF14WfEB^or7+w3(-LJGd
zbK-t`YhkyR&+Z+$vv*f@Zk&{LmHR7nZEeT5@}5nf*OXOM+d{ePE7n?QYco~rPg16i
zVwJE+s3iTylO$Jj-xZmo15T2}uo_OH89>xD&AP8=UPP$K0EvdhFeU)g1+w&&7(`m|TrF`V+(AHj#&CMb+3m
zb|Vjrl342M@!~a_MkvcsQCTaN_Fr(Yr2ZOVK%uFwMFBsV&&#AqBT0X08$Wm@=nXq`
zo*?l6(zMSG9%U$_8V?oGM2Di822vkuqX
zJNF~FvpJ2qPfN6L!}wKYen!6m25PdqJlm5u9JDl8%1nl4yIV&LWJ1L#T&P~kgZ{7Q
z)%j}Nt(C}N7GD&S6q+??HG@t*Kw*!T2Uhjc-yOO;t8rEG?D+SWVs;HRbkc7f)btn)
zl||STJAXM2QopSRUo3h^{OO}lX!4~u^tc1>2^&fv0L#q%5IFUkFtwzhud
zuf^8x{?pj`zm5L@3_9|bmwVMyW~yh*$%e{q*-c!|@=(tqsD)oj!pkC7Sl7Iqd5(cx
z!#26DYx9)#p
z?%a%ce1#O5h$$#{Pgd^SUM3mwQp+U*y(vg=ItHXMuOC~@11t9tJd9%y5Y
zJv@~E0DF+!8=oR(SR2l(8kZp$D(`FzkfSotyR&{ontvhCyL(uT%fktx!whN1@ggW{
zeWad=2GgdBhiOSqNgWE)rYm%1YUy57m=7eiH0e^4vd0;CmY_*aQ(WGaj(vI+L6y#*
z3J92uGEW+s{MxnoQkDFuYtT1wT~R?FliWnV@x5R3??(q`@BX^p6>o&d=Vqd++_X;G>uYBcCsWJ?RlZ88ZMs4BT65J&T&
z{#fYh8<^Raq=#XF^Yr}so40Cd;or%$yCS7&@^S1s%1xQME2B9)eqLO@?OF-9wN57`
zjit#&y+tNC(&c<`wnlL;mYF5cC3McAsY>*+-c^m9N$@wQ{(1iZSEoXjA|1z3M?;Xx
zRODl%$IqXKDK%=%Hcu0k#y$?RhwSQduZm^INjuZlPdf*x^G8oLLcB75(+r+oy)TYt
zAzr3}r|jXvzqFsQoF1ar?D;o8dvwn1hL;_<@V#HSA=ugdzn`tGD>q}*P;TA*)tfe}
z5V<(>8GXl&#NjGyQdN?kdb-J}b*eeiuE96aOBw;*=TRA@0a3(IgIaL%=|UpkOBKPR
zBtt-{{A4pArxu_G?KJ$ZpWr-{9mz}I`_8fz%GT^I&#mgsfnH(8tnhUvM=zD^b*QGQ
z!bL|C((bOrtjW|USmALM1R8^Wq7vts8qZdS|T
z3Ij0VQ%qOn27f+^mtbs4Y+hpNV>s*)#$rW$pP>8Ex9RgCPx)JPhP4SfS2P9uQ+XCtDUm`rpIl&B(}x_*2QpYq^(
z0{6z>q?=^a_9Qg*8S1>AzPQa$oNGMh}WB_ENkBJv})5`bO=1woa3K
z?ajd)xtwiPQN>WsF?G$5uc621sGA43@LOQkjJiCy=;)@P(UF2yNpB0h5r{00a)`Zz
z>QHIzBp-y+)Cy1zBQ+f%iNegHfVXfSzt4?$d3w^d=*R7>Tn2Cdk@{92bFfK+4>4LW`7Glt(4@44w?!e@h0Q&(Vd
zJ8uP-!D2C@TDQjMqp5hSYO{Gmi3DDQneJhX$(?TP|`^qo~c*!Zb}+z2(OCnZM`dJJo^-N&=quN5XTpFN4rMBm1!
za=2)yYAdNI+Or)^H5OKq86>aAJ3BCvnV_CY(6vH_RxF|!ZE2}ocJR__J!wK}2pFNL
z0~zSDO^R4NDUuQzmB2c2L5>}!lo%udLcV=1wzmA)_?%TPH*)QazRt;2WU_PRbD8Wt
zC2rG=vdj|)G@FJMYMg
071mZlbTS!7n1OEQ%;@ljm}WgGzGgOGoOe=nCx?H)U2
zST0}+UON(S&)~iH6>5eAfY(XmOs+1$e8n-)&^Ns>{!b9uoVP@3)D#dmWUG?>ptlw{cR9c9wBZ$i>QJdAgLgl@c;~rgN~P4@&@xX
zOnggp7z8tg1qi{{LZm6}uB;p$JxD(r{z~BRMxK70?9BB5$YSd9wHq!SwZC?}NYX02
z8&h`UGr21Lr&lCX!zoy!@=q@_2$_iXvfrEba^3~a>@5RScyek+AXL8)9)~p3<^dI@
zdP95de>DwrL$S{K00Kz#$b(e^8lf?<;fC%U4mxAn9aFh+^fdnf#c8uUJ9U7Sm0Mim
zDC+8|XlQGv#bYrwc-*g^rP95m*Iygd!AIu-V}>}wzqTGrIi;3MX4e*@rJK97Rx|$EQ!IYB@uK1g)r!JXePhJ$*nQKCX5bih=H#
zlgt%b*VK6mjCxn8Rb5$-o$^nN-Vs;hAg9Aq#f;qesB)MpmW({~RrP66n0PQUQb{(n
zYFMp2QHd3d*FM}`!bB@TYg*UWc}+}ndGfugOZrKZnESTmcG0be9IC9kc+W${?tjzbFYit5Z3T9Tkmk*8DSLKW?6
zN$o@5T1v@vHLY&J)UAzSg&WHN)MK|kb>Y!$duKA*y~UJL{{VL5`3RH*C!(%-6&A5TVPbk{9R)-@HAx0b4MKS+{N1*1>wqJ@nI=~3>98l_0f9whNU
z>h$5$am2CIikCb|$v^7!;5wb|{W;gY`>%A*Ri4IEN@>LAuCQzW03pZ5_0^Y8)EWw9
zk)gNb$)QK&`>AyptxwCR(%NSlwCPV)!2PF>6-v^TVd}L8
zJkE75^l9V&0AcS{bHQo${{WbEZw}c$Ig1}fALVL)fb|Zth(?O}%+5l)%F;&;I)P3;
zDyDV6+r>#he)^<wQg~OriTPI*`xJGO
ziv)}bnwAV@BLD^_gG6R!0>QG?kOh*mLJu(p@eiXJKECQAFP9ou_(%NweE!ZKZ%HIG
z-JMr*F;C&I_)qx;KHiEC^D4!yZ@^ELbkyktO^@ll%b25AnP{ousoQbGo}ysuq$0yp
zj6x7wSpf&v+Lc1oL|UIfKgc?8Q9z~u=v3M}(X)FiVpn0Y)w#;N&coSxg{Y7v4G51Z
zwlP(SSy4NdmE+Y=rd32;I=Es%0ETpm8461!Bmj0VbMO_Y!l194u=@{2zA;cEp)wLp
z2ON`1`6%I%e=eTRBXDI$`}j8iqo#Z7!fhB%KAzv%6B&{O<1zj$uNdQ6Oc?|HT}X(h5e|C;!o2}R6y%M08j>M09tzd`n-_<
ztQX)2ar-I$Uaantsv7D_TH0q4Q`S?%RZk!whlZjxmL~;CQW`f0f=9EyiTaW6-FvD<
z{&M}%4mWCbcgNZ)rKhXjIgj+Cx@392-A38im620mG5Xq6j!)uy#=07YLI^31BlBX4
z@<0MdUOD}r?DToFKv|}_p&>?*isiWf059Efbh4R?B2rVzoOwY|r?rJ*v&<5LoT&aw}cuN2$c$8{=dRRa|x9+=NWd->XL
zIiUVn-ym^VXrfw;)1K*#pCZ%bDOm+BbF_B-M4|rxhly1pH8{9~mLXg8kV_A5@{|qx
z{>;2|RSthJgmC=&r@J>Qp5Jc*8LHAr0`MaSRVOF?FIvj
zsVH)iQ|A(B#TLS($ei6g6d7Zgk8$9ZNMWEzKI%!LS1AhGX&&tWi6PhA81WeXDpQ3h
zb6WZN@Wu_gTHHx+Qe%M{#Cm&Ti~B
z-i!OuhoH{k@Kn{bn}-c7`MgDL#_Z=z!)4PO3eAPeGRftSM1~+rqBIaI+%}aIQrILh
zr4A0X#VUK0dE&hY+IE&prjFG-SsJXWDxj#SWi1j
zdpovT1YDI=XAvD`b}Mb;F*s~CCohZ0XY*oeO|wCo#$&rKt`}ONLz1VKnrcXvcphoI
zZiTa4MHEu0eIkeACZvKCWr!s_s-~cl4F_5ll9^+dNMliz3IGHaKMg>W&r1qW0xD_N
zIq9+0Sc-_TNwMm(b1P8ecK+8|^rgVyvssCa8PO{+hO19*Zll3Jb22A0*NiYnl(0)`+8l1MB_p`#^LOB?_zKnbdq)D2m(
z8{#SnI2q|Rvdukra(3=(ZQ!bK71D1mt4dnDR!?v~-NU{|uXA{u#(Bh*n~Noc+SO9x
z>8lP>MVf{)O&p5T`6GduoQUnhT**|?n&}MGH3})DGg7Oh8k+D1r>A0!$suS~j9(Nj
zrD`Zi%Mi7rYTzm7!=c{?wfh%n<)_#~%7
zAi(11+Ymy@np)gd68+cRWaC+Zr)M^s+gpqHCrNa~%F4RwR}{zxQ)(frP-;a8Q>Q%;
zbEeexoVR$Apf41uEQD7|QK_kcQQA<7P*l`*>NrXFM$y4;n(nK{_V)Mboyn8PcDCk|
zaqN7hM`-78yW{;I^%ms7DXC$nNa&}EZ@%^~Ky`qT
zw}(&Y;<+EU^ZR_dgn(^Gu-m_YM;a$>O+ex}o;YffYDW%&y1tU@&d2!unXdTT@t-ZR
z_Xa<&^5gN)cMnd^jIvDtx|q9a?KUbaq?US4~=sXb6lIN&q;5%qvQcITWW#?v>fydC@x`
zYwoS5@_Q%Hy|0|vRKqv3=j@J_?M~FCJHDF=I_tEJJR4glHcB1IHcqx!=xXZYtJ&D6
ztErvD)R0p9@IXLOYzlGUK=mVzKF>2j)shq{A{$z?JZce;ROQo%r3e6uQHTPZPeSJI
z+}Ig0V|d~>A6H^kXBG*
zaqO6Cs*N{jsFm|dB)>vrzd%5PY*ux(Dg%vWzJ{lyj!11>tNDOI`Js%ng6nR-BE
zs9g0uG+A6?(NW`~i5pPBgeg*Mid2eIKA+~`a(Ya#6_l%6vq>deNvk()GyEgcxYB!D
zQEK%60JQrXW6^KA>`pTgl-zP}t=}Hz#b8qzxVKthDz*mQ+|W+|s^2vfIX%a=;o7+I
znXk!K3R?OIg-q)taHR~s>|=c(lfZGnt$xl2<<-rjJRr$H%9JLcS5XJ>;2l^1R2&ac
z)i`&S{{Wt{Tz2r-)l_+E9M<-t*~c4IAlujsolZ9&gP_|RFAKM+OjwLpU19Q>KjT}P
zsTvA;y7o#ck|Lhbm`0St8Z|5abN2ZTg%+?X1014+EqzW&s}sbr;J#pFaOex`J)4Nz
ze=Tr19^LF+<6Ti%-Z4C-#3>Sm#Otez6DZ_s6F4JI}t8>|uv
zR*y>(nwiPAc8x|BzPvoYKDT`%Nw!P$(Io^`0fj*ziZ7w589DXp;C?pt4)DWZelqm7
z224ztji=E)Q`y^^qpx<=7Si6I!e*k}b$c&47XCET%i4QccBXQm?>t^sN}5fvnXY(o
zYbV?}NkebkE+LO-vx$k7qE~G=0YyNeHPi?vSE0snMlNlmk*_XYa2riBYH?Z&P}Fvx
z#4>u=+x`=Sv$5Ofy?>amcV)6W$F%o8-oyM}`1^?8`_`g*9M(?<4%OU!ox5>#6U~yX
zr={AMox_sG(Bk8vn85h#Z8MW8a>^g(Td7xYh(hfvMH;AL0L2dgaiCO%prtd$y)WBU
zqqHp@y$d-yK?0vM{UgNr)cSR`@@>GU_AoKhI|~^G>CDGr!)cT4Kz0`&KuEu`6McNx
zD4(8_{{TMpy0e}TDE|O#f5r|Hw^mqZ
zI|r~SzC3o`Gp_pEZq!y&NVJ&^+qiQA2AHcFN>McTIxI9~xwz8{K>^f%gna0D4?aKO
zuNPx^V{LAz6a!x3f63N@pCP_X_cwBO*UDdz-G@QByEnXhKW}BK_YDVF?7hoP{)@IA
zT8kgI7jI(oTbFTHWiUH)sw-f|;xG}zOHE6-82#%SY>ZMFj;(H6ZHD6ABV95LI8qKq
zX`ViVKDehy<&0fP9E>TX*NtgT9$Y<5e{FgKwpQPVcXZdvYVVR&Gg0Ont#*D(uKND~
ztMU@kKJVNcpLJrk=Jeg&pOVVte0iOp)0=vxT=witX{^aM;Fg-MY=tZgV3xPC>9y1l
z2Y2CC$O5FFDvIZic1acLo+pAOax0~AkSN5^4izBzaP;XH@_Q%o%cVPKrmMa^Zce=I
zZR$2ZW_51r>7K9Kb@^;gI+ttq)lM5|QEt84lBKMx-8;9pHuSP&8*tLrR_CF_==00>
zQb5s?8l19_J!}52_IiJ54$%v#ka)6;nCNTcq3()k8_G>Y2@4+n|W>u`L{m)o*Aer
zarJeXXsTt|>4vC>d+th%Z5}Hl_kYB(%C&7vCPpTj8jWP}A7J7BU-l12TB7jJhpSH#
zNvnQi6z((t)}u78K)>;C_@y^mbWYjZ8=D)Suh>5g`xA6vHr*cU$YHkQb{A)MFUSu3
z+?4WU=qWN3I8C^_YZs1P(?va2J13CC#;=c_I+$aMLjc6aqMSZmM%={d5=x}tvWkIR
zu>%9toDMnTj)gyuzZ`SBmJO@%lDBeg4ON@>Z}p9S>fF0>rbU}Kv~tur49>~^Ekc!Dvrj#n^b?r{#_^f;+_eqHe%+nRMi;N#O>eWlH{kF
z3TP^7vx@O#RjKrS%(-dk76+o#72`%nby2I`?iHkKHK3_t-M>Hr9Ek$xD=|s%l2fV)p%BLWoM)8YnTelSM5x
zMm3hMC^13Uq^&S2_c+8i_bRan)sCR6O&~A_vX$(q?Hp8goQ|nuA(ql6ELnyLHPws_
zRn2HJe8{g3gbKNLmtSoB#&>LQOkZFwJXKXb)!&%+$mS*6TU8{h%i;F6@vNwiF15J2
zIwquq&rOtEgCT}mi3-L&qK+kZ3d@c)^rm`I;xtG~9{wM1`nYsG_NEKG_TJt2;qmc$
zuVm~>fr;!NlH1p@usyrBcOLfbnfK*B+1feH)sUK(2a1Pg*Wu#M)8jBcdZ76F8b%aT
z)0k1*s@_kiy1Ke&EfJst_(zs~C^L?a%u5Uw7HC4v+|T}+fK=cd6O7;vBhKW1mJN36
zT7B8~*!gx&$;xkyrL=df+f5^=-4V9O*tq8Kiueae`;#AL`u4?@26?mc|
zSsthbJ;-I6=WdQRCP*y>Y3j^P2b}-_0!JG4FndQV_VDhlJXKqZpt`78L5%{6ih@O2
zry$eM&#j1lQhXfRvV2jW{RT}Q3p0Yi$=cm%TEE1yaAP}9XbRomw>M@^TI#8@xvZw)
zsWmitTB?bps;q+{F?VJQXv4&4L^laGrKL~EdE<`{mmVERJ3leUy6)SzFJIY+E@G4-
zQiQQ5O%LJ0B8Iio#;32Grp~X%=lgTJI|8bd(aXELGds5FPDWNMwQDeynCa`^!97JC
zMs6%j(W@4K>y;ob%4Sf)X|Q58?Y=WjMkRCR4yx13%zvA#UFPHmnYY;@W8o#+#5|Ab
z(SMNyW9{h9Z;hibVfCKn#3dypwL5un`-X!JMHL*>;#SF*gF11PG_(@#ZSkLHY<@Co
zdhHc6Mv_&>Gk&zII$B>u;}N|9l7YA^|LdIW^^jGU*si==2
zDi#U19z01wpRLPb;iiHL>RSH*;qW#twhX-Dut#4@JjKMtYGal~Enx^MqKqAI%A>>J
za%oRf>rt9(1dP##B>n?YsTSt2LXiKDF3N
z`8On4jm^2?s>bY^%1Z2A($w^J-J#Fs@OUo8+xyN%!_anaBRADq4Y!=6
z#?sVd=7NVSS=ZE($w}BiogLHxjW9VZBF0#gkC_IanIr*^K~Qyc9dEt4ifURcl#^vQJ$us}zIu|blX22X
zNkdPUlL-bYrw^E-!qv=`^)%-od~kWFDc%tqv%f2>i$?DeBt~#Dxg={Qsz?~BfO!60
zC%IE3Mn)C6S{5duyfSo<)f7F#zN=Az&{=|m`;(@-YU43^EEKcT(AMp2>OoZ;IhmrV
z^44LpRWwx@EG$b`a)_`Du8uewY84qH8TnKEJqnl&#Y$fwwoV{c;
zsEvWJa5s
zn-5zaLl?JmmCZ?*%2(%cFjHgRWysggaxw*0c%dxBEVtbj(tT!hX&Q{hS!+;1Wl~i_
zzHoqP0FVjjw)bRx#?VFdvZO1i5IV2{SP>hthGOxJIgyUCKqXhI%c$8??TYR1jD%2C
zU~)N#v6%YmI+-dc^7uR*G+3JYwa$rZR-%$TvP^ABRMJd!tZuDsLd#3jF1A%@=UVDg
zpAVs;fOt@qBNZJ+`<~LahBVZYTRk*7z8HD@M2s4Mz~qDZ^$IL)R8t=jr;Qe>IblfQ
zTJaMjO^>Xqsfs8>v7)mgI#n1V14fn>FS7;_v5?RjQnjNV1yoUo*l;-Xjv!<46T$|f
zwbO#5h+=BLn5jGmP82YRtJb+;HCYji%g0KlzAB8wc&glGWoA~b>LZO;8$(A|PaGnq
zSWlj95uv`J?Y&a64-LQ?yM}bsdNJaB%^L^h)7}-j$V;OWri#@B(BP7zfFB5|f5S@A?fLsMub@YsWdP6`>Aypu6;UvE#+~qO(Xsz
zf%{J%%DqPWto>pC041QN#X?H{{#IYPsxh+Mvg7Dv@uR8yJwQLyd(~X7>$1d!4Fre;pQ+Irs@(qoUv>Zt0YTFa?;+IgS-xhy
zK%XHjvpp6rG^nYKv{cl}TkL2W*V8j04LwK%5eg98jckB|T4@O-A{Al8`497-ko@V=
zW|f(YaDZHKCxH8XPsn~`bk!Yx9)ek9T8fPBU68EuP}9CjuFBRh0Y;5WjDcV28#GDz
zVoxPZR&EZr!ym-N57}QYkR5F!R3(WmDdK$o&ye|a)nB|kQOP8=*e$(Ek{FtNjzSEk
zO_|h)(w`HIo#Qo5{303Ta!2{LwY{zuS`);0j115rb`am27o*V%ufXU>ns$14#tE5+|m+$
zA^25kU-+(@k~mbyu5#5R5Q;@RPX=NE^x^a9-F1#DJD%%axyjGHvb40>9=q8U3rm5a
z!qLI5eXELTrb?>(Zc4a`>KUb5JbFU~wTB`v9dS!&>GRZ28u8Ui4g(dZopaG3Xb=rB
zlEcl9`2Yj_Ju9Q@>P6IQ_fGoA2K6|r-Bt0#Y%IsaL-tT0Hoby?KNcR``jlW4*uZ|(
zC;TU`8;NUJ=!g0$zvTq=tKaih+_)P50GQcrvxHoRUZ-YtZ(QMHN-T|bSShdm@NNlO
zs;+4(7MWvAq(ziSj^ye;Kz)(kxoesWXu|~pffYxsO#u5VP8@m>?RO6LB9k+-NXL!^
zC@5+3=zwFewH3(AT`o?dbdf44e~4zKr^iz1Kjz@W(Rt+781nKqqJNNp%q1VEPub{t9&kB4EhPkOausz|nz(x74qj5A4J^^rL!m*v
ztQ24TJ%nzor;=m(KquxpmNvd(u(z^M&OBd5{{Rj>dL=*2Hmaw8{{Syi}HJJG)CA0!0jWnD6RP4KWwB0SP3g;t@ekCK%
zqP}(C*Lme#(#kYoKu53q({*YeksWJ&@sd0(PRg#>_0-W;U{gr-u``vTA8&N|UG091=x5ZDk_6)1lTu$51}B@+4=78U46DLfdkQB6wM-
z0ufW^kW?ISV}tXd1a)D!T#hp>OZN>Gc1I5uA8lcCSXvFRdoHFZE2-s+CAF&}udK%!
ztUhDysT!`o?D1!BMk0zaQLU8&bF7iIH31=JAePaeA~0xp&=Pg#wCMU4h?QV9M@0l_
z*N-(h6&xzSE{p+QgGzYul$)&XoK998Mq%mpj&C6ZTU#*LjE8AbQ0`o19{K6{v9$Q(
zon85h#vFh-NGKwLN?MUMmE+W*yhe+`G1fDv0!XNg(CCmF(?P~7#cAi#weWmTsYmeT
zq7nj{89-s;L_ihs0Ms=Bkk#T3LhKnV4K5n8ijQuZ>h;^X2r`?3YMuAlnGA+LYK^g%
z$i-7877d@YvKYyzbFkv*BB!EKE1av<#Z2uyWlSBU5*ceo!qF0hYEXN%Ff|2_cM4HS
z!FoV}3~Ls2kXo`xNIF=K-6~d$6==L`Rs$eqj+%pV(e4TvXQri~hjZeiooZ+){{X%f
znF@?%z0tb!`O3<@g^}Df`=>#3j)0mpqv%MwZwSW$HVO0fWABqQ7L(`|0&-+QYIkgmp4(_#9@
zE0&*WS7B@SoLf_LVKdu*bK&VWh6g*Ez|hxXcfCC(4e4=SdO7m(JO*R}p_5Jo(X>pO
zp19N-My2jX*2)R0RrMMbOo76#z&r^OK-5vkNmC}4!>*NL1s;o~aLqs)b;zGwm!b7$W(3ohw$FR&tP*^dxLWAEPg*N2Ij^l6Ap56CQENiOt9tZ1hB_l
zNLYtkw#FX*+G6T-$*zjZbcR|6G}1|64IZ@vijj~@%~D33y}HE8%BBLPh-D>}!w?B4
zNK!>cGnHUP3O{tWVdcB4p|*`y^V&PdWd8sXufgEz@*Q5gKX<;@$aVh!VQy{9ygP4m
z;d48ee+)j%ms;nmYU!lI&{4(wE;%HUj-pC&x-3~>q&HNc9lBa#zHySrv6qDC7SC7t;9N6pfyWi^StT
zUlv6^W|_y?(cbE=uk7x<>;2Jy!gR*z$87z@p5K`q{{UrowRcGM_R7WP@L3=4CTgp%
zv(1{{Sh|kgY{e5#RgohNIncVxIYwymz?heJMtlkmrzR04HB+u3M7hi0~
z+qlo;Ikl*(kNDL-Uo`ogqQ)bmXdaz>JC9>Fic}CWkF@^)gR3Izdcz}_CqqPb<22PX5p2
z==Z$_J9FW+<94{iRBilaX4k8%y&js3VWWYSEOW$p)68O&$DM1RK0PLx5Ca>?<(h?o
z$)$UM3I>{km#(9z4B+%z`}?pr{SRMI?d&gNNmadjO=R0N_2+Tt#I*Z%mb#XUb$0&%
zV$=PlH8E_a*u#lvq%%$8j!5*wHEEifCnAk?7GQLbv+@J|U(2Nyw$XT=BcahAcn&^D
zDdY*r{{SX>t}V#zhNq+6F;Y`*Ob*z@;97*HvUl4vVmKsa&g>vo10FO1w90-JYDSGXeEe;6ny*coiN#c$8x
zb8TE0!sj5|Rk$XgsNC^G9wdFd@g$Kf*!Ux=r-nLpo)P7$Io$2zaaNAaDPHPfj%mbG
zhuAAhR3x3yTFzClXEpNk10J4V_st#0f=s49IkJ@1
zJ8Nh3&rZ;7DkQ4Mef=zz7`%N{iBz#j@WWQpMvTf8+=rMZ19hEP){3;CBvO?b6&0r%
z9yO;*>|{voV+1y%QhQkE_J6ZZwn{n5U|6*-O(9TO>ZQk2!Ay}N>XKHd`TtLhfGj!JszKjyDrJ};ghD?8iy#Qy*^-ks{Njnuf>{gc%Dv$OW6
z!>x(Cmo@QhzQVjg(ur
zb#H#E+F;POLYr`}+uc-3jo|0}zu#cIUhP_{))K_Y>MD^Pd<4_1BCdrFIA^>z;d
zv$JyT#i!_P$AsSTWap{g5^fFmzII+md1R=lD>lRJ?YXyb8_yA*rI!)s6UU08tCnao
z5Z5{ojzU?9Iqv@e2l>4J0KwF^x2nNy6cM(aHu_C!)nd5@{Z=SEh=5imxw<5z&j>%wm#8mxjbk;kf}^&
zJ)0JfUhT%c+Jezf_(ng~^2yFRS$OH;80B#H5dvs<5Z&!k21Y#dtF?Q3x(|Psp32zN
zU2)gDmod51sj_?Ptnw#dsng{lXXoVPb-nfZcI$sylY@-q{m>P
z$wf&~Gd)C<(F0#jq3y=mFK+hbn%~4v6q0yo&Y*n-4LwO16zK46?$yfl<}c-cZcjc_
zWKqMpH{R^ok-c_93%Rlz8{`Jy-u;2lonO9b9yqYMjiH*0F1ZYqG_tK^Rru(Z3YM0h
zXyUjeu;E(y^z6}zcMZLe{4USyO)5bmzlc--eF?7~sB`45&&+JvUai^H?F|$=UlE7e
z^_B3***Y4mcH7BjXWI~Cs^^xHJh{u_Ag8RVYB3B+;wlW1#VKV$DI%Hyihh6bT^xy6
z!qJoFKWC>{c4a!$rr5_sv;D<(;@i}e5K}uzD29ro_=ldJ4>cqdsEX>PC6GX8HVo*k
zYCC_7K|pG;%75Oppg$lgN1@@;2k+dr%16jhswqNbZSHa~8($|>q;Q|(@|c}+6TkwavlL8v-`QJ#+3
z-J@vrog`E8^!q(}B)d$_v1|5z?Aw*Oj9x`#iii8OlsTMqnT^4>^RQDyDXQriD62BL
z7LKBdDke1H2sJ1Qhb$nGl1-&$EKLxj0*B%Ts=>}R9D=Jx13V8z(T9rmfKjz-9oeS>
zG>@#sl&F-!tRa9nZV7u(t3)4KGn!$<${vB
zXdmt6seweOCD4z(rWk~ABWF-2BNaR=PbyP~_@4z!ut8P
zCq!)pijnrFYc-k8b{&2yzY!G%DliqI9Uq;
z9`l8?ce~x>u{B`Qv4Sc17fB#-9o47Hk5iYo`<(VXzho3r;7HPtatU?@j6P}yTQPQ@
z%bXs>{#(2IjyJKx+sbkyt+DaW2a#CcoQqt1Xzmv+6
zOo(r&djN}j`_#4Bo&zKzP=wG{J!eg8K*2kKCZqy*XQfwZwCvpFxbp*EEw#shZsI^+
zOyPf3gBB!spvNM3c-MjmJ$$)3Zj&ecYL=IF3G%zYEw-oa?Yk>wsi|7Bvv+XHsRxpIPtOBUTtr;VttuH4(hcV%d@xSXfnQczRm
zDZjf}40_svu7)vJ1#(YXY8qe_N$!#vWGK)E%|XQg1Qit|9Ywf+%VDR
z_Pz@>lxNCgUm-(HjmuO-)~Z^B)X5ilTWsCN8$*y8Rkcvi>tq_0h{CW8Sw#&fY0(67
zKYGKV*UO<5hclU9XSM6sn&Yl*EtVIE}+eDnnU=
zrlY5tC^p^}k9tD!Le#k0T%&SYLRkjE)He16qUj)6T1s51-3DI~DD=;cGOO
z?$wBpz=|@FohG>kfQ-?B@)+nn-(qUKRJ6|oZB;~=*^WOyi>9omn-?`TO(st_LAWsl
z#$b~r976CX-T5g}W(>YdpH4;eYaX&5paN-tE1L14;M5d6Nb~8NdL;_CYgEu0HBAjD
zaB-34npAYE>Auq1yF)oXPk4WRGCy#b%)EPtVAEoxu8TQIT|}@}=VZy%PmIs)oxe)Z
zmBv&SP`aR%Rv98Ng>NnAl^Pg~UTQ;{sTtr`Do>LP`HYT^t*>L2Ch;SZf}`OTsLcpI
zpNGhtSBF*uhxxIzjTY;|V`_6)tWHB^Hq^mxN(?OfYXO$T?mYEt?h1tyULb($T!Mh#A_aLO
zniX=?G6BVSnu2MMBbM?9sr%c0^^WcS8&%cyf5$dm4$s3?LyW1xP-L+EbDX2wk!|{n
zY;etxldy0#JF>c88LBlEwD4ssVS=5INTer%+3n<+ZlUn*OoV)0@-Cv)tvogZj*XP5vUcbC2>*12DJGTKtabqmi(#1*U6vSwVRfvrx2BNn3{T>&m6h>
z9lukEME*B}q^ZQ_6Fn^j4Sgvz(NslEQBC4@n95={TWcK3VY!YVB>=S$>G3n!P*+Jb
zJ=8i#G+!=;sL)MqJ(J3iK#WMDNLU~@?(MPj0?M|
z>P1wNL7vCdPenyOBXd^c;jN^sm^FPhE*p1asiym=D=3PsH{Md3d6k)0)SA81N*vIJ
zp*0o3`KjP~+;YmNJ<0qhkFOph`~-P)E9{NiS+wb-%j0K!JXDzam^U3%RC8piB&mqY
z{2H?tkDDPb-j@+UODj9bjT(r9_{d~r1$Pn2Gx%#)Cm;d>{KEzn1^!(HKw@fmP*+J+@)+W1e7ZLsdEL1x&83dR?!BeD_ZXnbS61WuE(+RsH!+`ViD#CZ
zabq&cK0db!@Pi~D!qys?=@rz<)2L=6y0S&OSyaY~^ad~p%i^^eX
zUd!ojVvYj(2mo5u}LlEf;W;VaTr^P5Fyi7G-|f7#Ttx~r)?`!(3zW{>F(L-Ty*r=
z`RO+%GKw7O%Wo~6f!Uay#+#Qd_Y}CQ<=gmbeV>WUQe~@J2FaRuo62ISk&)yK$Zg*K
z(&hrz;DW?5tc>MY1E{EH)>Mi%fJ;)kK?9?E$abB|%Hc)X1S+yK!jY@15EMC7@WTeG
zc!UM53lL95pKg*eM~*_QXxav){{V%W8WWNWW|iV`&{FSWk_lhwq>gA6)M`@aOP?u4
zMg?d><5dX74_FhfvozHdlSfHWJh>?H6aun(DCjESsHMkO)KrL~t1-`!$H!2Cgb@-6
zVCY**A9fN(<<;&ei$b7eP<+;^2?si;al@qM86(i~+SW#>W5Cq>nvB2^g0&gJ>;Kf>
zzLtuThCdA*G!(I3$-}nS~&c*bu{#`
zUfxQHqk=pC08MhTt^WYn`*9uljf+awTlWWN$0d?
z{{XzNp<|W-Ze0s1j!lO?)~4BV-yVp^^w(d&f
zoYFC-A6^B&()thSV4or9(~KJ)vUo%}&Cig?LOB!|%1S&ACI=2(8kUljR8)Yajr{c$
z48+`$eY&^Sw&7OGZA1gjnVkN0p#6$Ebz%ykL86Z#fdJn?Aivfs)Y@42{{V#|!IjG{
zg7h=ZSCLwGDhzYiW9e3@nWcXcW@#n$a&h(wntzAX^zvET#KG<^gUUaIR-fr>MIX%ilhci64jziv}vrXmj_*7toZc)#rF-xdVKcJ)52
zN&Z5E{5@AU^4W%gz8-a!9$FY>t?O*>Y4sydT?$WDi`N~ayD&8R5~R-9qmaI(mHd
zbEFjMVfsAP4v{J2fq!YhEJCOyy#`P09bW>zy#k%(4mW#re{*e`dR&HLmowFy`jScL
z=-DyLG#h6nTMSZUYmF^Fwy32*ravgT2mF1g7V-*-7$KoFCapoAgjD%?)2cHsX(P}5
zjDFslz8`OVuIu=J@yB^(bCh^kGQCN$!E~iL9Hm_FVxyssnxD+E#U(?*N{X?^O*69t
zYm0jjc=lHCqsXO+1BsxmH~=b1{Oj`QJv^xfrj|gfT71c`063HA04Jjcn_g|kp|dNI
zOk+89r_5G8PExT?{H#&H(PFW*@(-*cCu3k+N#HbYZs!zQK>_knMq%@8u=@e8u6j$N
zd!gP8a33$k-*1wSmmgg9tdH|EqJtOnN3!W@%y7_0w0g2wq6tk+OOJ%@Ri}!MF$8c!
z9Xw{8q*ErTHA>fFxL~F^RU<`C7-{InQV`-@OKVbBx_`q%WW2DpfnTV(tH9?Mfh>hfzD^Z9P(UQi}OsAirVQs`W
zcGH|o&d0#fERe7rrzeONKBQBvQ9d(ooV7(Z>%z$es_-~Hp!8KW
zawb}7Fu0xH43!&0Bb=nA$JSINdCH1tYNcq7LY`P+5j>E2G#}l>D;e@6{?a)9&n^e$
z)Ma6C`ea&U1^t1zAI_QLDd}FUXBoS)b(Hv6+KV$&S$v{aLxQEI+tjo<4Ahg=*VED+
zzgLB#!cUal80sv9wN)7!l*YTfbrj+pgpjy?TWHtBI)NDDkwNy?@RBG6PY`Og=tUjO
zjAHCM^S}kk<4RJMU=3<$a77r7pR0DJR&0Z9>ST&2)Ygg$ZOwzKqNsh_pQXg*AjV+p
zOz9qUS5-|7Jv9t?#)YDNI8i?rGVU&co
zTu_}MhMwl3qMtgNP*kWSmeLLc38;gA9F**LW+*CAU
zaOT23&B|^4v$wO`iV9h$r9vuk_+b(m=A9;r@WbMV!BarP|U^D>+w{yW-5}>P$rc`8iV&J
z2tetYEPUHzvU^7%Rh+BcxQb4{>%8A!v~DshMg8byrJJu2kxciPXo-q_V?tW#WnT
zu}b)(!zdN#TAC@TY8wnR$e>UPcXSkPp3g`&)>^9@U%onzX(l5Th~BldR2#Dam9A_}
z4LV_WO*Y!3t**`P4CX^03^_=k8ElDMZ4cU1Qc0IdiitLh0rj!TDM?)mI-b_kTK4Lo
z0*q-;s!1e+pn=d2ns-t*xh-OgPmQKBrm7qYRf>{pRUT|rMKujzo{(F|CrJ+d=$);)
z_Q%TI<=lDQ`A>k|6&t5;b<8_wHJz^8yZqASHV<8OggbL3SJ+reTF5h>X}Tm#WO=A&
zNomNQq3VUIq}72z5Xj?S+I+mKGftwdF3Qp)LLgj<15hwB%~~ySRL-6U(8cVH^HI>$
zxXfQ#ZN2p_+WTJRq?5Y0A7}5Kowv8n#K>*jZZ~AfHs{?q%v>9Hc-Ck46jhssu54{~
z7afk1?6ApKB}_6!;;krcOcdgn1lGC7_%og-rk)utwV54J`)ImVm@ql*1mFSNnw}<<
zp$4e;m48m`;nw|~u{x*w)lW2WWMIhmMPB}kA+zbIaQG}dQRAp^b$EWN+8bLT8fR)?
zz`;wp_c?>lC0dG_h^KU*X4Dwd?5F%+r=aOkxAA20qm{JN_-W=z^BRfZE7~|y1ESH6
z+?AbsRSxpOZT+8^$-#n`XKk*`-rJ))x+}7KyLrKgdAFX&>rJt?VXN!PDohkV!=s8^
z#ItQIhT!{}YPq2B6m+hv6X#kF@Dp7B0G6FAG5D2MV@lS5Qv=A7bDx)WDNcobvDv$`
zd-n71{?dK51bb)rbbH6Ic0Y<;m%BR-Y!o!`P_9c8Mwr>F8k(MkGI-o_)qSLR*lFqN
zg-%MQaN8{tN)OEW4wB0fq&guScr$SVzMr;)`qYX6)DGUO%JzoS%WaIdb0I!ct(2vi|@A$H66iB}~mwVQnvK14E;a
z+vq>bUp^f*84$=Ee_>rlrlpQR98akv`I-s}bVoNa#87R{h^SosZt2^Z`aR#+BN~*H
zF-@~^SlWi!yEAN1V<>3qsVVSHxc0)!g_=62idvytH9Ev8byYeAOrn|L{!)LQe=e3S
zS?-3A91yjyAH+%d(B~E5UN}x*aS?BAzqD}}yhiTBZhXext8IZDMRqGERl95Etf)Jy
zFHMS(XH0VCa*Fj@YuY+laquN##_xZAq1U7envMhZeZS|&R@F(0sa6`mAPyWTE9wWA
z8k%)^TYjG%w{lx5Zb|A4s5~2BQMCp!KgtmW$!r#ueB_3ch7eWhF2mDySd9}Se<)be350|t{*>z9CqTp5c!p+lh(z8a8UaI7{;xkzK9m+!Qp~_8>p~ypnbyB6c5ls3lX;)zV}jdV
z^R#xSM|RId^-sti`N3nl?=eY3PuYEIw>MvBZP;t)+WS{>@2Xn7401(?N{UQma8F57
zkfDUkl=7>%Fr;wBxJXf!riuY-*GUAH0Ai$Z`v)GFh&g9_Weg26YfoGX5`KI>-!8TQ
z{#0Me19f~#>`l}1gXK*|)!d!@#=8O1`+sX^^4rG`)jNMDLsdb%yDK@nGLX|pn(kiF
zqpfOcu|$nWh@)BBI*OXCg;eCfa@`W(3wvb=0@8qdun!YVZ~&atoYSRtmS!{JN^2qF
zf7Sj`@)+v5KjBiHm5HwGe}FwFjokUIxxF@iS2f+~{omVrpFLkz-G#q)r%&wMB-NNL
zINh}SqPqi;hJt*XEj3L<4ybj)*mQ0MhZ);?CR$7a1gLbI
zm)rR*#ka6sizPIBin?4qKI_~VY&PMd#bYR;p~~bd4iS7+6fx9PNs(H47sg{j5MbuC
z=qMoio$AdQKu;M-1#4XuU`}dj!EgmnsOs4B75-|u{{V*M>$jy(T+vWLwTv6vJ6)H=
zP;LFdDc1o$+}qe8OSUna_X;D!JxwiU0U;p`Ha<0iWhsg+2+{yNanzzEa>0X=%flwP
z^2Y#paUUVkbomp!I}fk%+mk!KvKxC5h2Pstvnla-9=UTH;Fl|f!QnSn^sc6(r+24J
zl}0j?ZbtIg($rMTL0I&(@x+qLJ4qB}fIw;pO>SC^
z<=!}&BTbN8bq3$W;PDt7-F*9szY~kZ<0x^|m?*RL^3}!sf+M}5)>!T~)+0=$P-l;*rUfZd2*|;x;8VCGM=UpJxl!dx
zeDTLW%gdvI@$ckiN^b4(+c-f{viFY0=;!O*w^C-J%VzNTuFu}MouSyf*Aqo7wRozU
z9gDHB`7Es~53=)D)>6vrFpN&fcRjl4EjH(t0M;(-3ywOHwMG>sTg(CgU}`Ee((S(f
zF>!Y!Z%d_&Pvg$EM
zKe};Qob0qUsk(o?n}VJkj+FlZDTYj&#AHVc?VE{Bjfs(2d|3{a1Rm0B+_@P5e8xIc
zZ5(%(kwW$Gm%0969tOX~!1c1u-KnPg*_D;CIu&T%nII2_Riy$7cyZFudFejN7*SFn
zwvWQAqyg?Uzey2vkQi44asGWxTM&wAOTzkIlq1U=C_K6;f6bG2@2p?)``x<_Z)WGB
z+5Lmr{dN4)yCsCy>vK9@HuKKc-p%wl#^>gGUDP91t-Zkcb!@NiS8l_E#O0V^g=NbNm>x@*zO
z>n+o?cLX~_1GY1mU5~bL;;ka3movBU6?jaxJ#y=s&PTiH^0^#FR~L@G(IoY=T+vbj1Ob_zO-w!_BH_M204ZrU70d^>U|H`Zo>
z;fWG#azQ+QxfM8;H;~tpcPm-#E@Mc_$YvzhRXj=p=%s*SV;nvzjtodNv~tDZ$s+#%
zZ7b7_3%ZKX9xTeEjR~UD%LGFva8&%w5L+FmOA6DatprpXu7hW7nmWqrEuTXUMtq*;N_erOcvREW(^J&dVFZvsyLK!o
zsd(yEs;U0~i1-#rgGvghYT=pYxwr}gvjg@6ntbc(IAjw;(5@(;dw7>!4vd^;fPB3%
zpNIfPdNS1eYb}h}$&aG0rJHNTxTBz^#^Ro{35t^+nu1iz?VRQ|v{c}tuCDvdH8|QS
zYXxMm6CaMg7}S<38gDcsXZ$wz6eL7MO=b7Vx$njitxZK
zk?Yfi4@dQ8e`?nDHZrRx)%eUF4h&v1b7E`ir|Z0(Y&F=t7W&wAI81rT_O2!!n$?My
zl9Hx{>MN(Inxx4cJYXtGFK(i^7NtB{nd()t^vg!znnra{twRkWfQp`jcQB})Rp6YHzugDv4e(XSTNRQ|TpE
zDCt)x91t91)>Bl~=!$01S0+iFh-dVblNlq0B#x8?1%4t2@hPo%QwO(B4^)G|xw*Ty
zxQwu1{i2Gcsll;9R;?L(gYc-wUDDIiQROLUYG=V!G@pG#Pf<@T4qlnjJjsy3G&G4(
z{C+cD8}6s5R7mI4;Zs8(QjGG%N~oq@q}Lo;y(&aF8kkV67)58v10{ea{xT-1Usl(7gB|Iv$&|am*6uPL^oQP(O
z`eI@p*2xUy64ey*8S}3Z=-!^W=@L5@RwSR75&K4JJwDE{QoarfnPi%3YI0$vt*Lsy
zx}=RT?@JJ=SzewfDCtAdLLsMCh2f2Sr|KFnZOg2P{6szpG#LjzKzW?}^Nt-F#}b^Y
z{Kv_0UOX|t9s~AtD9}l~H#R?R&qs%-4Fv)&)~DQA_#(zr8hC|XJ2Q{m(N#ifin5={jl<7?prEDPxSA|o
zRN`4(yv&k_n^a*yV@yznj!SnDEN2T!8jRtID*Ov@9(+bbR{M4Q#@=yzZY~Uq-bckO@89bJBT5y~VVtD2v3FW>pR1
zwx;}G&;c7%5;WB)MkqQ@(B|_IR1LK*Vzz8C#N_bwRPQ@UH8d3%OsyqF6f_=Ls;Q>_
z5YEL-LWv}hpmiYF)o4S?C0`VZp4xEk3<02g<%X7^=rZV5NbTC)yb#(~yHUx~P_U^(
zN~*DC)JU&i|JB~!qOPW{S!qURC77#MU3mSg1wKBKmB4f2tjtXEwK|qtFf}VD`$779
zHd7Q~U2PE-pA@9AKQN+z{{Xy^^Xa^w#827Racz~0$&ks-ONvD;BMKsG>&Bv>dA9~$
zI-27v-%Y8K0$BQ3pKZ;#6-^<@Ks@_b@y#^pqNoi}7L>|A
zV-XjhA)T&PyQAfb{mxEgdtGVSj7xFkB=DsY%J($-hW$F!C;3W@epLH&!qHk!ay&+i
zh&>Jm+Qk0=$7}Y~@O}I2-B`U2DlB|DQH54&V6GGUR>x5^vVs@!B(R_AJ=;^B3qkY$
z05?lKJ80|TOj!Ca5BH;w*bhw!Ls^<~vgK=QD7|sbTN8f`$I7L>QDZ46ohGVb^!tgX
zk~AXd9FI#q@|r6hAH~D{=hy8x9#!c%yk|OWqFB@T{wDtbXj-HFwwezro(gPUBN>IJ
z`%GOGJro6ty1^Q&O)33z)XV;IrlLd3Ng-!r$tT;%8b-QNXg}4H>Uz~$fEFk1B;@fq
z_3C9sO+6${Jyh`1LYCJxM5zo*b787U8BuP3srKrtISPtPdJOgMn8xFRse)oCtMeBu
zzi~|fgC3;_4SbDjQ&UI)H~pg_KY{K40H!Pbyo(t0IdAuoQ~PPvb$SZ*T3-UFayYH2
z@>j1HBTb5ay7{Z}I)b*F9ZUE1OBVCow4H@V6Xh~-h<@Rr+|2DfP&g!jw$go)-!v&H
zUktbz1ey%ca0b3yDmpZ?6+ml7{{T1qUq`Ym9xgdWOtkHhtODPCnVL+sVNh8p9pD)#Q?!bYuGU6tE;>?*~p_TZN(gRZ23
zDyMfujhIddk5FwsrYN4TY5Z>u^dc6Rf&z{?1b>#a8TFvgN#>LaMuM+UXgxu%?Z*$y
z&~#XTmflYvFT;L@h6*~Z#huyPcRknBO+ym4GaXa3w^n--G!&KfPX;;&%rPQsM`vi%
zCm;Ys*0xRI!#&fg$)IuKKE(pRB4{h?PKh27^)D=gRN#^FTAI*)+@2@w=<-irl#zh1
z%;5ISN5M85;T5an_sjmBaC`tSg1fYLk>ZrY(SOCc1Go*gNYy8JgEHlU|k+B~j
zPgs_s$vrYsday1BAag^#Yb!^=-Baw}3(wKYVps}drrCX%3P
z_Dgj>yNL?XMliS>2j~3y7j5uLmR9OxYUhvIdM7`{al|P5*ldGJ58SdZ(#kw`L2v1A
zX*DmeOME$hfb{cn_iz<
z9+sHBqL9^7RmBZok_jQLf{9B#T>c3bL~7>^;m1(3C=8{wvXTpaJ(W$m%GFbW=s2IZ
z(0@LJR=lrl2zoVsWY_(H{QA{X~RtrTNh2ZlyC?$UH(n#MqE(2-IOMlv?gS5f2ke0_C8xa+aI9;K$N
z+nCDTm$&lyj2<
z08yyK2FR|kduqH?X1J-xM{r27+Y1$)g`*m%D5aE8mGFx9>2gZ5c9BCxsmjA@Z!WmS
zV<__3Zn4AGROT@|ryYR9Zc$KjH28_CV~$)E7F!DnnL76)m7}SvpCy*2hb>8yl1gEc
z^L?JQS1?Y}AMxf@45aCx6#}(2;NTD_2|~Fk$D<2owP;n7Y7Fd-0AN_qnowyKXv+d>
z%i;&Xe}|@R%fIkh4bPqa>h)gT+SNH4z2&%Nml?UT*z6`(2SJ9y?nm}QheVp{MR7^x=vf5nTK(L$HTHNRw*%iC0RCX~G97q7L@jJmQ#OBiG
z!)Uo{$!s87^$tWUD=%SC
z$5RGc6IPCtQdOFcX~KXg02-5S`^~Q9Y>h3XF<+j*RSKTbM3IiCP|Clipz*0^W+YGo
z+nXzQ@5$uY0@zD&ME$50G%Q^2F>BZ}G-jw;{*T_9?w+nQ4p^y&lMw+SvT?j#~Y$of@46$Bpo
z6Y*Ehl&vZ{FcR#2$%5GX7jo_1=Gl13>-$S!;&<-T`0v-599C1OvAJ!PzcYA%^hsjQ$ZxE&?-soU#hBMK4ca+C+r{Q$3%}Jnc`Dy#)Oq;Y%$^R
zk3U>s3iw
z#+fS0d}f?{sIQHtjcDrUcBZrhenb6Vv#V>6F;sCwj?h2LllBVd&xq;EYwa37%I`YW
z+dFrpy8i%cm84>dW);~9^S^}X{xdt&p6n;jOLtIZmi`tNSxd_Y9W%B>|v#a
zX=4+4WCu&qgVf~xpYdHa6tPL+Oe3OFps_4LBY>|Q0x?`>ro9F5<0>|GKEHCoy&rjY
z?n<_%t8(vSy0*SQZ*4946${{Z)ov?rOOM9Z*YlM-T}95rP5YX{1jp^c=_0`f(IcM?{P*~)j_CKHchg*Qv
zqcX51nu3(zdq>QYIMa`i$5r=&%hqQ1P7(~%%}#4EyL)C=$Dg93q{>uc>J4st9hjxV
z7^!IS+kXL2rW!XXPg2!&Uvxl89#Wu+DW}`flZ8ZLgUp<8t^v=PK74Q~(d_s~(A|sJ
z-z5J4fx%mY+aKsFVtk|dHIv#1+qL(D~JAW~=a`iP-IL!4O
zOiy1lGgmN@o^_;~+m`F&NESMmrZL8(3jWeMy_Ar=+SSgl4z%)NQK|TP(>|1^pGJFR
z($Mc6r-SSqE75iS`s<#a*nb;i=#2ckf_(b-uFZ>iN4k2SYl(L4Wo%h_sW-%%mWsBs
zD<9m_)5IWosn~~*c1v4>d3`deTfoHxc`RJ0Qi?!5!!5*cpvOtCWsE~^hcFRR+yGkC
zF|U^a!11qJY5xE%&zn6B@XPr+e=odV>c-Y~Kgd4f>-^mPE%8gK<)rLCkbU95w`XJT
zthPp%ZD1y-im2l#a+1v3k9FkQi*4b2GQCw)KtmIRXKRPKx;j~0GZqyllqR)4bUaTF
zJ{=uK6=H}3Q9(>`#dv+44SQetR(8kDZPS47-{#%F>9<}-50%Shx~t&#O5`XpA07G^
zY3_KcX06#9zj@>Exb5HEyZU9VN^IugrKrS1UMORykIh4LlWTn}3jY93?5yAhW0oL!
z1HdoYnsGg8pb`*f$Q%ck+w(umqhCqZok7%}E4C+5b>7I>ooUp4LGV9$9j&tV<}VMl
zb{@;XWqa?h=dYH6hK+Ifj6ER!>ODnV=RkMYEUsCdiDb72MPr{Naj5kJ{f?BwBw>jz
zwEIU4{{WYx3AXcnIlH#@3wUgu?bkbtYHpO8O{u(ghh<_bw%+9w)$-#fmu+WpJDKp=
zud>R(^zZhsD#cWd8vx*sXdd!Kc8*(x4!lEXsQDU-{{WYzMrap|i~D-h{{ZDK^}zh1
z{(hY;g~#MGxowBnUp@XAe0dn`&0LhY?b%oHdtrAMaBr%lpsI#yz2~tgdv*z+rj?~M
zP-gHo5)=(OGngZT;gO@ufE3|DPf&cmROp)GMtl2ZN@xnillJ|%HDEmJU(c#7{(RYa
zI~V!LeAC`AW$AHdgTDH^sd3p1atFA`;jkC>|E_77~1rG&$2R@;G1qNZho5)
z26^lAn`7>%GP#&G?jE}>6jc@UGSttIG6txL%_)i!*&I)uIw!S)58t-;MccGhg>mE+
zn0cQdMMobxb#6QIrk)+kU$rSQc^p2{$JFI1w@%%uk|}poVv8w{%e6eaW@<_|+h4~s
zd0J?1j#e2rW`6xdXQOH#Ly}baUOrO%RgzL_2{X8F|D(S>)o6-elD+K
zVD~TZt;e^wZq?Z~hZ7WgUVL6slLpoFG|xr9vN%QFCQ6+4MdqrhuAD;*(#c5w0B@)c
zr`4Kyet+QMz;x#A8o_JftDusNP`}a07{d{(;wL8n;|4PwxN})AiT?l?DKfZROj~M};wc7qCyl}kMP3VTLjM46tdKCo%=9KG=M^;axevy|zF+0&!rY@=%OC?$
zj)%zhupePu=h208s{}u`^H9(7E=<){GMfm~(%00_v?#vTvk!)(sIQiavu_HVy&Mfu
zg3Ht-^>9rjD%wy;m$SP@O5-md|L%cOKrk~n=Bzbgv1r2LT{{V-eBjlC~C6?K6oMt~gk<3T|e^H+v{6P@?&srtacwEFJtZ;EcEn0V?WvC
zdiN+djteOa=BpctlkD@^JVc^EkyFhg1(sOSM+Aho*ky=q!a@3MjLIqG8i4%C8ON6%
zh1(I0&f$TqGLPg>_Z4qv0|+lA94(iSJ&Z&c&RgS{n*HfA^|fy40*~W#Pxo0C+8dt*NmCJv
zF%&s|?W2bmOPGp|yC(TORwrrYE8t9H$F63in9f{A3HEKfmUzgn1c+#Hs7BQ)O(=B=
z>a7JuIP?MK!jVoJPE1lIM|OspN~?iTL5-=TinR@RSEEI{`W>sF%Iux4F?HYG%DuZm
zLrJ=w@O0aTe6~>G*J$D5%hWXZ9JLibE-I+SeJAkridT{;AI%+@+iQ1o2~t6eR&`c@
z3=+V11|*Cc>Hshl>wLvLdp(86i~}V4Xf%;hc!gT_7}Y^F6e`4_I=UFP2U+BHW4
zmw9aUgC|S;LZfGGeXwitJC>qt@R-SWR>aLla@%a-w-qKvNZ|t5fKOtBO3R5jL2W3<+!JFN+=a7R(~{g&l#yIJl}BMX>hLRl-MMM7j>
z2PsUIc|i=-4Tc?25va^&@$^|Nj8zmkrD|+mV<6h*+LYOPKykSVCaZyHXmHC}jG~q*
zdPpP@y2Pu08{J0MSHDjrwo*t8WE~*WR+GeJn&9D&*lSLN7V<|O{JUiHgCK2Ch9F6x
zcTnV+0ul&woYJ*kj8|LJQSTheU}mMp?fN4QGEBB2i|x)TTG^-?D#{uRY_-*gaMjmC
zUkzP06bOx63h_rL-8!S8++%x0R|i~Lj(D1J;yw^K7Z?~crD%IC(1PB&T9xh;KBqrm
zJb#2x@acVm&u+b^I&GcPO_9rO-LFqixFyF$Lz1qSWn_~bkFPtY8GsZyJZ>*7jmOFN
zbU7JgT8b)}qa;(y8nHt(FwaS2U?pmb`LL<&)CeS345NsxE1r&Hn8|F^I^xoN^-!KH
z0I2@}Ru4zdZ`EUWUe%H1qRrx>rcJvZ*xPjZ>W#0uDR)(FGMnx9=1#hTlMRJ!-<8<(
zPg_k@ld6#pYBqtYUY@c=K+Me~G6d9xsMRHEG}qztV;FwZqS4y49zq(
z8QgwDEilMYl!?ncLP~=*@u3BlbK-+VWdMRe6)vhle?0|7K{XVu0klvw&_!
zjzF&!HSICEr-%vRLMTA!t59zFw$^tciQGG0dKa!3T20FxJ|bE+r#QGovy6l}tcuT2
zwV7Dp$Wl!N&lJ(>k{Nv=0hEgJ#*)P4NUomzHGK$NVxWc?JV&2RS#Rdvdzd%fu_0}G
zYP67cit0>?f<~gX2B4KRJveS%&$qE}RZF$1=y!JRrKgD~{>HAH<7(omH5Ge{Cs|tb
z7`hBSVpdd!SWrxBWt{|I5bkvv$*Wrumc$Cw5WtUwR-~|}1Lfyl9Vy)I?5^xgQOM1B
zq%eHxAc9$`MWuYgmIRssQI;*Wxoakr!-YRbyrVS
z_A|yIuBQ$6es>NeSWUgI(8_gbuA`j)0EA=h2h-H_8@3V_4I-+u(9=;SpFS0@mjh3;
zr8dCXcs$lhmMpG9s;-8PG~7F?T%-&|SA!!4LJAKY^1S%^D$J!C+{fpi&kL)1T&VP}
z=!KO5t_J~6D%Z??w8zh*&9c=exmA(s6l)}oG~frVczV=yY@k|fr9;-{A)>3S%F7K-
zZla}SOciOUrGVn-Db}ImSR|T(qt=wxgsPDwMVj8oE}#Y>3DzP&bcMu
zw0KGol!=CxZyg;tsL0Ha>yk)4Fp+AIpD*~BSl>VEV44xYq5#7ly`BvM>Ee8GO-ILhizDavs}A7ER`(i
zvAJ4SsB&I|E)X46tpU~0g|^r^gXyg-qmJH2gd!|*ys?QjQ$(VGN2uaAl&^Txq+aueGwkjoVuF*+y~
zpqNQ-q?1z26;xG}cM_xn#{?5zfwJtI)GoGnc5M~$byWZ&GrP4TbJ!Kth^VDhfkJ7H
zzyH?XFy|qsrbWbJ-DqPe991*L{3{p)w=u0GMiX0D@;S036zm<1f#=;Mp0#!)*Ub6<
z0F<7ec%rvb*HeT8$ago{L5iOsO?t%!7cZ2UR_-jEixSw;;PE=>D5;c&23qQ`B$f5`
z&Zp`gD5Cl*YP^M|jpSh@ryfc?zGu|`03qd^^wP+hgo4-tJ{@#ozKu_ZSLAg08t13@
zsj+xkSzZ_^sAFDLjIZuw5vg&b)|l2hWvNguB+4?jm5cNC;FbRXj)l2Jrk0kP#UuV7Gxq-goA&y2
zmrG5V1tR_*Gya?Yf&IRN8}2-IzqZClQJI=Dk(hAtB}6b>9RhmRc(K&LX|eLKLHR-8{KTi~Kf$pt!
zDFsx7Pel~}00vLyPg~MDa;nJCQ56++l+^6v=^V30lF9f2D2sU|Vt4^TB>g?5W>pnt
z0CeneOE30uvwefAwD{Aw==SHyzveZyBc;t|Yim3I0Ic`+HyehaY=u;q{oT?VT9!%3
zXQZLVQH+k>s2Zo1Jxm$yZ^A3c-PKu8glcyl)yA(gO7ZdsqZ>$B8N68$G}g6YTz4hko+hWOffO*vQrSFBCZ&rv?5O~H@Z*zH(NX?c*jjpzk6XhLmyWKkO}p|_tyNmyI_Hm>_2~`8#Hn#1k4o_PR1flX
zV{l?IRHa&*8$kmth-j$k<8VjN>sZ5T{{S1`+K{R^DCsLtGvTIUK4kT${{YPTYRq@c
zFOxCVNl;{{?TW03^Hw!m2rD+m)_OIK%#Y!LXc8chf&?IGu=;x{oF5iZ^Zx)RLc0<^
zlGM;pFZoYEB`hW7FR7X`!HCq>0I$=J$LHC6k`T17cSn$0qd9#brFvb#kEW-fIVU9|
zh$wjr5?H?x!iW#<%`dglg7BAqHS81Jxz
z0ukh*hHA=nBTHBqoha%gULI%FB8vnHE=ogZCBP*}uaL!Q^8Wx;eL69ZcUvhV@s-g}
zrE&W_`cY$d?#;){^l3^N*W4e!k8yY?jjOdI~I_1*%j9izP)z
zT9p}mMp~Iwd^Py_=&Rz=G)lhr6^+HKtk7MuOgI%k%g~RJsOxuo*4ep3EuQ1H#XXyv
zm2|~@K?D^(jHEZA>V!URe=UmciRx{`+5Z3$`xkOx`m=1-tL}e}b$P{_93>|3$WY>@
z-P;3tZraG;%VqHycc(vZpK0r9=w*1Qs~wrqgxh}OEYmDoj0)0I5`j(`qbT7~{3eE(
z9YvhW%X@vDl-Jz5eJWdq8m*k_rlJO@%7?2hK_POYf;Xl(&F3-d7-nQRaP5DWN
z##3f$HjioGvD;H};j=W=Fk$x`aqg|G*-f*Q%;560a6<(yMwRMl9)w7%1c3voA}OSJ
zWw+1{1EHusV+M>WGf{(DRP+}5xhxjmWW5h24}~D315gg4Dx`ua6}yEiMa4wDmA~ff
zjD8O_E)%h+H)i3@W$CwwXz{r0hVk7LbW%$6yRb)74sSQMw=^|TnKIOw6lsda&jmnm
zV@oF5kZMlGiBwZnNKg;q2CG%_)DPM^Ifs~KyD1{HvCiz;iVzvtiXBWS+E@{*L0_0|
zj1oavPaR!$*xXRiR^zthnM!Ictrlx(=j$r+l;%aR-rJHavf{S1b#yx5@x4k@U?&k$
zQONI7lSW*@K`T5}Qb5faK=f6mPH1=%!z55sr`WO0tmnl5oCZcD`MYYOid1CL4HObs
z9*|IBdq+9k8-^UV-J-!$aZ_YBdC1dYq{huIN^Det
zY6e0oNrfuaNTG{z+*wSbw{!-T)7Qdl0*
z-NJ`aQ=N1=YDYo_+1;BPQBl*TLW-|7LrY1LlNOa!u)$9k+xtF^nydlr&jZIEqtDiy
zIt0dMaUk(VjMGWeQU{v~)Sd(aXblZcdJ#JZo7#wHg?oN8Eol3gYuGZGqH4^|JzXA4w&*i-DY7=C4J=f7OcvU%t)Fq6jN89wZrt3E
zQdPAi@c#gIqJpf>^VU=NS}x?0=N?|aZ~DCYNh>qEJfjrs^FK36QiKm*ixi+eIY-u;
zF9(^Eapm*dcQ+o`#clnoQJ$v2VRO5C5x+MUGNUPv+0VK9{+f=Ct7m2#04r&?Gto|!
z6;w4?oO(|zbpTgeoB&0BeqOor`F>}rnIv_fjDp0FDnZgQS~s3)ro0GaK~9S2XBytX
z-19?Kgv-sg_WYZ=3i=kpQf+;;ur~JJe0K85%Z$h5B&vL^Hg=~KiJrDh%#uA+RT9)y
zQ!kR5gOO-~X}NgXkH5{yofr`Ch=
zzP`epM9p&Ivf^>Hh#Nosn5X@q_u_e44DsZQK^#$9zt}d{@~S
ze8oG{({BCK@}{zrIlXc*=I}{G2I`k!V6jy7>yMg2Q&Uw+w5>3b2-w$di^aONk5|ON
zaX6u=7~z0vpOrc|w>}gGYMRimtqphq2^UdagWvYNnjk=>dOpuX|
z#ddBazM4iVlT@)9wFVj1tLk`Xi9A5*i|ELX*aan%1GE876gAK6^r#1|xPOpGaeQR#
zKY_mz`p0EsF|vG=>W_#WXNljtcYo{*zgu@4Jwv#%+1!rX%HZ-l&uDGzmuPfWV{uDX
zDRbL?Y>w8e$oT+~YFbE?65>qJ8k&te=xJJvu4%wi85}9m#ln^eNCN_*z0@@VjsDb}
zfnElLW2rcL#LRY%Ptj_PRhSt81#Fe4cYJUoz5QcBazCnrcb+F8SRV
zIU}IMV&E@XkglF8coegN?dT2b%N$UqsTqI(v0_Oy00taS^XV^uhzq^6OBl%{mZ0-L
z50L9kTJE*^z5f6T0r@rZQ*Tgq=I8i5@kg(E(K^d@Z8{CTT=*=8E~|EDa=T;Wj{gAJ
z(Ntk&?e4+EZ%lldJ@=WX%C;|TWCXbCWT=uz!W{0VEuB));#S^4)gfhFC{Gyapqj1-
zpc+_e2Y?>565a=v6-Bf-Pz5zpA*v}rPx3rC)lJ@C@Rxn*)?E{psp#LISZvzt>S4Y&
zZqoTB)0j+0R*XgyZ49qyZh!AjUQlNDlGn>qfJ*8*V?>b{<07I%P+F;wTk{3#vV-AQ
ziTyRyO*pdZe?k@W4KklXj54|(lD6!p5kgJm|MY20j5u3!1a5w~1u*FHJIiVd8
z-GwzC~+9@XFZ+IY5e;qu!rFIS(b+cg+^
z+F9wOqne_jqlgHq{G^W;w<}$~-I2EI)}A6NbtnZ*eCS9u;wi(|I9UzF#F3b;pjhOt
z05t@0G_5I5pU)WRAnLxX-QBUjy2E7bd=Q>hrOWQjyBx(0I^(e0Vt*dw%x9(*i%|)}
z(o@KlXiRmpAW=?<8%7C1;KsdD-U%*m9yCFz3KL!$b!u$!JPwh-A1m
z4d`Yih@qu8`PYxx{;xiYf6sa?lLa>0AKmztNm;Zegl
z>fkmG#gDN5JbZQd*+savid1L1!>Tr}$-_|X`BQqf?ay_#=uB+EM;%>xIF#@Ao>G*OkF_YKqU=eQB4#Qf>tvlGrm~Z*?AsJc)`@HpLt-qA$-bM)
zo@6)nv1A$hSY|Pc-~0Xj!-eZI@B5td+~+>eInTNEk_BnR`C>RHL{%>#)v0dvnq#u@
zPXGJA**Y;&HL=ptvMz4!*4~0xm<5*n_v6a|URQrF-;GD*)v9Pmc>Nh=RdaYw+Y2L4
zK)5Rm9i7{)Ab+drxQ@8;(cv*T_8a5UaZ`(ktC@z!A95bgaCpNOPn_kx+VBB;zWR*v
zq`A3K|7d>9<+pTSL~VkVp6X<)%!kf_hdqg3+=2lC(#o4KSY)Te&VM8JcG5N38`$82=KqTfnhi7=!f?0ZESI(e>mtP-CnaM`TauW-?TV*#JzTbSCl
z%Q4gy+Hlv+RpDPWY6R$nXeyEJOZv%V&wQ&9uTk$SZ-4d@?{P(qm@X7QIsPZjiZX(d2!9H|O%?
zICh?P2&zlVHVKc-$(OItGnddW)AQ3mVb*^0`a3Q+^J}?J6)0|=BD5lq&~EQ7U%&4l
z-TA5WZKjlgFeoG;LGPn8^UXxar2I0C*U>NE*UZZ7ev&!nnf=YLtTz?XmCqj^ZG|@~
zS*ja_Unu2M@V%P3>Xh(AL8IJsNe@uJxmNKZ|N4tO%o*q^Lqh@G`_Xp@nLCp(nL@g2
z!>Qc}e(CH(f8b;p2d<=4Royy3gENyK$&y~#bX=CRsf0{Fx$aQp7I&m>HO*>9
z=C^qza@(J0k>}r}bHOEb`^wHa#kG}Q4DcDASC?)u`Ko@=GWrwafgj@}XWdGq(}@Im
zzh{?8ek#WXjJ;)6xNnMI5s3>K5^tge1_fD0CYz-=HQ
zH#8)IxfQT~J{8+sZ&mwlLQCamG1lEo|8mN)mt|sHduXH
zdem2?YF1;NPpLfqE_1I^Y?i~kLa(T5dypuF%&8!W%wJbt)MZ+8zn^fG5d7d6gO7E&~m5Dx;b!sGtC^K<^eoL#Ix;p@8X08?ABrNl<4)~DL?lM(UJ?5@gw
zLbFqBn)TzCHf5ofw&MQ^epr-UeZVQfV`^xulJrTW&>(`jsKesq4zZk2(k{6gSEpqj_kgbly+B54UdVf5#b4;0`q1`a?WJmVh%B%R>#K+rJzDo_6e7PZGl(al_ooDn!wx)vN6rXkV
ztjbA|yE~$`9eHMcpkTG>5I_fyJ-HY1(Q_W{zw9RGGtge=FS)lp+IbaxN-z~y@BG)n
zr(PkeURj_)@3_gmJhDnPuhE*xGnXkLgWl6vfvXu&cdc-rR0ctt1_3-0mU5ZHzLFCj
z)Z0D2X{XL6=GXI_dB;`n$9*)nzxZ6QPVl+GteP8-BcuOp*zQWwL#IvbaAGZP(v;rt
zC9Uvby5^I|*04%U`+RA+%7Bhw`8_AJl%cG}ugXAENqN?-A4)}%(nmfBpDJsJtH1
z*u#IN7Dx4uz4j)zaPq(IcY{Q{6$Mw(od;9Og7rK%@}h`=O)91f6%`{+6{(MzkmXK`
zyJL+AWT(|3sFf;f>ZqdXFHuJ6c>F9sF(_HG;Lb6@KgT|xBr7HjRo?u3SOqjx7u+a(
zm)pqw*{Ao>)4iN7kdF@_nJE$7dqNA$CMHM9;6&RNwF_@0Ix9
z#*#srM+(2a(9wF4q@r7BoTroXCE~(x6-l(X>AOXD
zdi`werO@{R*p!9padYm^Cd3%u{=4QXf2#fXE5+_h%Sv+JfrI#OahRJx9;wiZVb?@f
zVAYZ{0#Ep++C($qQ8z-H<(4~M??L-5g>@*$JPwqwwKI>J`*yL;(Of{ovtX~@ve+Z
zDJov~uc1_3UF=NJdha_~y;$j~2T&nDnT?Lf52E>b$Fa@ds21Mk@kQP1z3)1R=4+T#UryDD=R79UT{M5@gWOQDH@|AaXoU6`%i)#_
zuL*`#U-OO=s{R|1)h$$6eZfF_j(V1;{aHU<=zi2b_*;nBe&(}USF)go&ih|K6Tkgd
zn~(M${^5}LBwJcALB-$#$S=9z7^^s2u+t25ea
ztGwIqXoo1*L9y@TaTQDJ@^r&Yxd$h#pl=@v91@7{lG9w5*%BY_TsuTyRXxOVEjLhW~L%O{B!?bKJnWh-iWs`ahU`CY7>B|G0o~
z`gKx$%LNe)n)+>nk~s!^b=R&WLM*Jh-xhqZ2xG*h7{ugVzjW60lDq4(w_yHx+xwx?
zEeJLHSmtY$eVkEA(>F<s+n
ze!Q8f%8GIVlBIfAXqaQNt9}ge$Wl+Wb@Zd+R)DSMR+yrY#H~
zt9FypqOsyH1wn|%&^tRFumfhu&Pm6oKGvBqu7cP_~3V8&ZZ<|l#-E%
z8=F32Agx+5|4lkfW4ck;{DPbGORnFaVYz)A#!q;~Q6ATHlXEVo1UC2DiM{=3r4w0n
z!^%KVIwz>4m%CE1=B?>M>v&}6{>UN|N39g0{=hB9hQ1^6=N)dk4)5s{McY07bN|1
zlYaOiSc=HGqb{$zPjCOORQDh)&WTw)m8zmr;rJ|G-loURgVkxOQRQ1E@wRJ)&-bVy
zzsK{ioJZ|1E-Q8WyL|hV$D1T>DURvuS<;YdknAbq9=W@>`h(5zIRy1V0j(7D+#zTb
z@7{Etmu`%tcOHVY_j0gIXdf1i%oGwcA=0s9`HzXvWRH0Kg(&R
ztLIz}%F-z1Jz<7a%-3kaZDHQwy)g8SarPRyht=S8`(1;
z)V3Kjn_c|TYlINgule$tL2@EWZ$L6Qb2ZRGC#lQAR6t+i{ADz*qO{BW0rK3@Te1Ae
z^n1n?i}p!hKFme0AA;gmoW^=mi-7~sXUC{ed)S?nam$Whtpq`LEsKZoG0izX=ezU@
z3|`;m-c*Wurq)omU&OKADX>`Vru;1Q`**fCz;iM
z1FT~{og(=bmzge<#8XS!WE7x2P_%ccc`U~fBKUOwyw^U)e(Ocsd3UUTnB7{BWyJRU
z_lK80-*3_~>W_*Ql?}w-Ffir%$G8zo>HTD;f8meu(UP?1VIU!?+{A@SFJbR)Uyu3N
zUeJhqS@{>j(Qji|Z&0xmNc=N(xikFFMB~jX>3=Edh>hkYyBd_IpRw@tRMsKrdxhVy
z!GLA=$8!yTAQKZ+Dylyu4DELGuBCGu9=9^d8mY?b{d^)90>}%ZvyK-?S9QssqjURy
z-AP-j)Dd2MrCF|8mu^|dd2P-j{z02^WvrNK-u+{iF-1bVyBuXN8_&)s7za2y%I!>}
z#_El+-@S23#qZL+W`S~*ANZ*!lMOv`ui|%x)~DAKH+nvN3yBR@7c!7F@a!1(S=hu%
z)_S}oS#izX7aZhQ5q$D7;ZCJ!a`5$~jRu9r6sDX8EPVPEXt2_E=nb`6%p9M*N6m>Z9gPjV5A{MWxrx
zNY&I|#+vFJ$7HOkutvJ&Mp=;pGFGDPH%?s6?Jv9ayad|{_i!Ip5^g>6Us_ab@|dij
zquY7SS9*?Rx!HSi?TGT44*seQw__-;xhnIY
zExG9rd6x;Ui$!t4^*^=4KAe)v44i$;*H?Fz>}&MM6>F6lX#u)(HP$`$yX`{0^K
zrpxKehA?idfvWF~{xqSZWgwx!Z({DB%}OVpKnAD%K8d#FqP#8j5@JjF5`Ge%l4)AR
zj0kIEyw3ae;3nIvV2&EKW|dVLrE!DUBvlGOLQ!uNI`olvovH
z^+tn?1>cyY>WO{*yD9MG^|QMV%e-?9bb(^2oK=C&BLTYz?9k(5VZDvz47g(2&&^P0
zlV8Ju2Tzt(Bkec8soI&V-{rLbUfXQnmZmZSJ=Ufa`jfK@*
z7J}}$oN^%98n~PBx$4|d;QMh6w2&iQuautj%q-pD?Q4-LjltJlizUC*N;?cX9x-pt
z^T7SjKJ`oc6Y1GgS98VW080#tk5bbWZ_AOPoDu(`Q2PP<*Fo=zOwXq6M%}8hoSI3^
zt<0EQ#yR^4zofg_O+MZJwWjj1v5}$>$tBU*1X>s;0bKnFvXakWJ{-c?=`4vlcdRW7wV
zcwH}@kK(t1-(g2PEmH8*SCs*qi_r=hKc6-Vc>DcT7IvH%t|KX{lPYdoX{}`xj6dEO
zhZtnOLn**BlVe<6p8J^WfOohC-hXh*11%)d;Jua2s4+|q>9>EKQx-%?ntE6-p$DRSsk$y74#6@M4x6}mx?Pub@)
zw;0vomT-s|UMP%Y?$P^~(9UN*Rz>~eE-lh4kd>PV{BXwP%ZcH;9XfY#_bZ{}+3=`d
z|L7+V9USZ$jlww#os;FGIBm3Q)O2K~A7d9&GL_|n?%Fo46m-m9-(LV*?a|>_Tv4)y
z(n$-6ml7|5K9RoI@V`g%TyAGM7e9hDM4Ag}l
znP%y$l-Z_u%UNLWbZPP5s9Est{uXvjQI{h={AC&na8*
za0s_;IYH~v08sN=fAn%c#e39{*ho-BeEPj4_t)LeGnC@&t!f8Xur*cFma*Qk
zw9uDNeDZcH$?>C&t!0d=Ldn-IBMes;JVbY54*uQn
z$)0G$d+(LOOZ;=@OABL@)A{NfOXXr#U)YAKTU-Ce*CfYpolP+*Wmum)`}Bz6>5E#S
zkGjO)5-9&^mL_IrSG9F~<~qPUDD)>4G&s$%hNo
zzO#Sf=VkAtEb_i|^~Nox(_+s*Z$6+2B=fDFwz;v5p-hDO^unnmvGJWVV+@4Iw^&ovC6
zl+rWvj{?q4DU0ri^+f-h3YqB6-7b=VI-`xBz(nsmrF?)(5E5l5baT`ht&>FYhJ}B+
zUMK4Vs0KruF(m;`^O&^^0XJ1)y;sYxDq6)?I-VAPH%TH`8Y7OGYASzy9{W|{o@TnO
z{GR!^ZUwdtwDbk@dJa{|R_w_)e5B|p^tI;YgD@#rmMiC5j)%x@W^bPvv#4**vF9IK
z$70FY#9ZAL27PYs5xD*62s;0rE)JNVTp!61G07jY8JHEP{n7S&bWl1mT{j>iFI2ZpUhuC=PQj%KLtzscKiJtp6RG2*`u~DoFt$e?`Li6|P;Z2)-<+6`(F!zJl
zlYUwPO~D)<3k%&&JNtn~g%gum_R1N-2A|*ZE$>tsz5L$T
z|IG!Zd&yZ`;zN}tr@OYckp&!uzGI^z(`2F@Ip&Ln&0j3PNRYhXx`B90_0C*8%Y`jcPEylMM0){-`I}W
z+`WLiXqaj%XSX?Rmn*OYMW-9Q@Kosz{kFKM?7&fkRZ4m-T=k2fuhmf)Vb?h=W{)r4
z@o`3?7AlJ0PvM`{$*xrF)0hxA2aQ)?VB4?dcv~FJYe^C#f6Val`3W%-BawXs0tJ(qyIXP(cdr20ilK)v%
zI9_6l536$<1g{>8krR+Xr4_1^786eTSw3G2QL3&g%aN4rm8e4L97`4%v*1fBy1)fC
z(GnhaaTm-UJDxOMp(E?yW`X|h%oMXhn^-&y0Qj?r*v~pZr7tlowN^%Ysl!o?&GFq|
z{FM;uw|T#5pSX#Pw3-#y74wL8lksmKIu_gt4LF31yeC&l6A{w@>chqJOC*ju&0}eq!
zYNL?k)1!{r9Wz~ny$N~Uw{ZP^Yxk=I6yTDe6F&=m*6fbay}7ik;s=XN?-#i79@GW#
zLX{G682Z~okZeN1AoA3K`)!>!Q(?w&Sqo{uXPWiK2IfnyHx3mu?B%{IJyzHlJb#cJ
zSR|Klb@7h_Cc;{D)~zsK)KJS)LoY>DS+)63r7X`GV^=nBPZxT!zhSa<>cz8ar?1=C
zBfH>12JgIh{mN&i^mtZhA#xCHx;2fneKTb`vd;Y5AE#vY0lsM*SLJ=u34Re*f
z+h4-6Qxk7p$;o+ca~`g(mKyUe%QO8yTb5w?gNC=(4>&GHCTI_%dQb*xS*{y8>#y$r
zsyKRbR!1gsIVaJ7zRe?SE($l1)p~9uL%wr7Z0Y9Zk-FNT^6I_%7k2leW$v0ALvCMr
z-_!roQXg(?F1T%RFEL*JuB^iqeNMcy9$&URZ@Q&BvsbNf2d4$j`nn!Jy50H0xCj2e
zeLi4A^>nI);?zb)Bv)M5R{RCQYDP_iX!Gle=a??Dst?3Y36m0A>k8Dbw3Vl6cU&nK
zfTH(keKN9SvSztoFG^hqxZznR#DI%gS>4P3ev{Yf+0AzoZ4Y16*QAktdoVXcWK8ci
zsb#DOuY0K8&+viOxVkNrMoQP=>wXWK%lqQsf;mda%Z=-?sNw+bhN!<&eqBMuAINeH#a#)252X$1TRj
zUij8u&5x}Wi)x=+-BA}^m5nd-aGfs{(0sN~?3ZBgN5(}c9n(K6>ciaaw_=lUo}1Uk
z?+o9;?CElepA)y(+rjCXd#!6Vk2XSa6!yrf{L%G;bzP1CRv|zBZ1c@g7Vh`+Raa`2
zO?vo3@oK=C5RrPNYbm!@&8qx(K`u(`TNgftRI3WB(&15B8uBVmuf9bWi>LfmTGaly
zxD?EB`?bYCYT+xf2URL6-{+;3sx5CnAZXdmw>@19E4^ED2x=CQwCzmlCOo&tzALOs
z{g!dk;l0@hNhj&opWXU)cU5+Fa5RnUHK;v-_G2H-wC<<_d9c(Slyz%jmvQ6vq+6+o
zPA#R+hcNiGd^m=4baHq82E*&zNFY$ln=`iB}yN|64Sy7Zw<->@knmR(BO
zh9FiK2J5=~IIoHZhW|lE=i=+sTI>b%GiIvZeJSI1D?YOyYowC0&$w5TY|T3_7FAtd
zN0K)7KU41}k=y+#eEw1U{l|iQaY-&SnZ9ag^!gTeAm|K|Bqi_D*E{#${^Ky1PsOFm
zJaPEvRF}|ii-lTIw89rrGHI_U37w$p5Q{!se(j
zH0p{=DgsI3E)I#0LOnuCwHvH6QnhWbJtXL3IFH~@-pc#yZOm(+me944?)pk4zQ#o6
za{qM&yTOM!i`Js?|H&;UV&#tGxA(`^{nWe6THp6}n%0qOuibQXERV58O`H@GK2uXF
zr~jcKKl6eKzk$Ys(BB{5X9T`ZlpN#>aW%90!go1a!_QkjB#Os%+M0YJEI8>)W7NE^
z{+oo3+&Pnbi9-){T&l$NqH}X!O+krG{!*+fel4WQhmNvJA}7~&1RD)LUaAi<p8GjCxRuyEb>7_*&Rr*?L`L#|!D3{Ml)8>QKV|dyRIAUamD92XjsF2c!S6P_
zJ7c7@IevX<<_yTOt@_y3TqRpJTW&g)?1a6F+EdFLUg0#>2W9SE*gR9({e193Gv`*8
zTmo+Td!Jz4#+Qr(1^O99_g`7Be0vfTA9>4(o%T!4O}m;FCv(rrM&G(jt8_#l$zt=Q
z!D_L==huO+U6b0+gHNs|?TnNe*!~{hxRuXskt!LyX#7B~_0}5Nc7FcHrZVSlS?LU2
zKBXSpE3B+e;WJ-9_&jo7pf6=S@QIetRqn={mS1EI4pvFx@LcB@eszP&{Ki?6onh*$hQxJD$)x74f_Z#MHU-MVU|gTMZ|O$Do?xDV+7v
zd`YxYhnLL#?d|r6Da?g30~e9>wpYG2W$USHAfIFQ<=lOX?i0a&X*OLP?+`D>)vMAp
z1TIHeJ}Z1%tj_fySNhRSKhabWNlR?2#(S&LW2E{Icjl+;BW@)Pi3D5Y(*2_qmYm6L
z7H(po+i;=eiIKgkd?7>Q*YEVv5^>f^89BAeM}j7$BvY}JjIqFk={KXaLl
zX9(UZ@=NMb4Zn77C-*1@hAY%~@87lMap7c!rlvcpOK3;s=guvN?a7Q1{k0OAK{ut8
z&jl|mh1^DzT7emH$-$q!((VBsSF|iGe$F9jhF?{7+f=jo-0-=#$3(dWR*ZQwcDo9d
z`b*>jK1W%eZsRjI-96g!H1VA3-{5G%r{d3L?%l@L^{lA){P)zpH!f5BX|H^-9iZA%nT2t21tPL;Y!8NZZ0
zZuU(xCF1BnMt|hM)Y^-`BUqr8sBLT`7?`OcFK$YbOw0F}_dzb+&R5RvGF!ZopRQIn
z@qI73T577t5_V&V_DQqo>sgr_Erl6@*y5CaPN!eTxh}a$Pq&%A%MBEd8pU~%UDbML
z^DN!?yNc7V>D+bWhgXT_4c_Tmxid|FGIQSR;jEkNzuV!Tz;fc+TAwf-o?%1pI!~;9
z>Gtes{Vn^_<}ro!C^+<$_P$qzZ66?HGC_|7+Y0YG_Q%U{qzksqnFZ9U4~bTqn(OImh|8ut&8YY
z)$kgez=0)hcLfS<$Hz#K!C*2kbR(>DGK^h%2({?Cp@VM4@suNp{uNB>CSE93|pB+AwLF&!{KAXF!P5X@-slCcZiM8XDv)}
zb*>*EzK$&Bo8S(L(L4K1;R*<#k>)2a_54=u2#d(z9b>>67z)Vt(B1_GaUQxz^a}~A
zW@+prz4WTiBAc0xKu^uDokFY-odiq@Fnkj3OG+D<$Hl<71ouXE0jA5F>b`6ea~zIl
zUzm?v_oCw0lb!K+2v4};9FbJUyB9*ik1@QU#PCEv1fqo9N=WTzD}>sH5uJfbhr2bh
z2K#DoqozgvfV3|f{!LW2ZjW`~lSHG6;MLq-tQrG>=
zOMhnz;G?1L>_6$d{0#8TNET!r-?Xzb#PnjFdln9~17Jqx8PICLbT^sA@#$)$T~ny`
z08oKnfs(lN>?K(9jBa4)=ppDoHV=-8W|Yn|&}XOq-xiFt9hwJjoyPvmP)Cuf6r(U5
zg`p-wnAF?hy|!0XcjtE2o)DK7S^b9~CxinsKodCw-n$aTR?UZzjiE%I9wu)O6V9yN
zYH8gJ4Q{>(XuGV|R@nA+kfY;lt+@(h%ni)J&i9Pb@PTd&i{{EWj_mF%>BX?OSiOpo
zG}ILRUA7$dC6l@&67%Q1j98z3_A7J?~u{(-!hK
zK1YJl$C?C`c60Gtid4i#9-EHj8DUWvhoCAXn5+d}g#K&_sGVT&{#&zzE?uy&Cp$>jq6Ptx&)4#{fkv
z)F?tPePRI;Q9%&29}vG+W1Th3G*trqZWF*XnLJZ+hX
z{D3@Oi=wnFj76r)&Ds(WF$;=6tx1Dnw@a-_h3-2TQ?7;<@RkCa#MFWsUd0LLh~xRf
z#ljj?%&p3Zab&mEZy~Q(>9{>d0`v!d5K3h*=3;@|2}$DEz$emOpiRgC90ggAo;C)*
zV!~Lzk?pNCIOA|hV5s>7sF+*=
zQcLs}p&_#>JXIr`Ya1~)iJ=7?++uUg^&n5Pmyl=Jv_sI#meoc^HPf6yV6%~%ykr!9
zC-4wN{7Gr?I!nLOoIYh$L!1oL(Fy0}wdKS|*R~BAgo~1xwkH%cwcz^)USBXCp*Q(&4Z^Ep^-Em#ckM@UKXnx=~GQ&
zC_p!rH?fP$h{nf+Ran#%fo;
zo`s(E)uFb7_JdfKNj_$NukR-+7BB1vN2K5BC9Z@=Ap?+gE$0ZvDp-?DT28R*_JWQk
zw7nl0&*lopv*nofjQX-##>gS)28@x-d_Im-+*aIlW-y_R2b#oI2$9vv+Gm0nMOj&D
zXfleI;by-uV&pS2X(zOcx!@}-1kBYSBP(zLlwd#ScZnOCu8VdeD{iF>JlKYgL?OKo
zL4#$yG<-U(_CTIZW#w!SFcAzqdlC5mOhgccxF}2p5Y!o7>)(vPmNfX;!$teOnRr=3
zF7;*@FAB(y9QO}+TMbr<4?zi5Rk(CL0hg8SWleAp1wGx|$eIPp!}w|ZCT4r9sfdAG
zK(s@r^r#_><$v2Y%q$u%dJ`Yey57D&;%k<=yFmBlPH$&Hxij4YnTYg7W}R>Diq{^P
zog@qNB^`oJvsaNKU4RDxxApvhCr_s$X@ZCu{1)$l77MjmOC9`Qv;#UwNeq}GU5||L
z`)KusiCD#e_mS7K>dBg5sBliG+!J#vIam*>CpQEO9YAh-wz0vi5dzZ>*@Aav0XB5f
zqba5JCK7IsxpI|#RfKVu;M@VAqe;mtUVFG=gvej
zqc@T7R@ur_ATlOF8^EKCxZb1nq|W(2TECVHf)#4
zT5g;S3@UI%{Kc;_f#rgEv~aqX>Q-8tTj6^8PqZU7)$WQ}2vh~^VP&~M`Wrzl5M6*?yw`n*AmC61?Xk}@HBUS-)
zz8BbnX4<9TW*1hF5TOOOcT5=d+>=0zXRTYGE?pgo!J9BwqK2WhRrwSlEu1vBW4%!Ol(HO-$BKu6LO6gG6
zZ(wml0XHzhcjDKJTkatXpnFIPetK&jcku^6w~gO&o}@ve5Byvicq;fG
z1zAmlHsJONt=pMZwD1e=g}$ppt*lxv9YVO&sLf#N=q>U>CS0f>ko|bgb&K{8$GDDM
z|L)7nxCWj=ZeqxP|FO@rDF3rC7h8heQwZ=Jpjl#yxCLhHA@TU1$R_j;d_1xae-@3{
z48v8ZYbuHkAt)1PZCzP~uBC72vXGM)jR4?zypE2?
z^-#rOaaJwa;AiYOs@Eid&(&Vdj8bA83kvx~K%8LWmp2nPXl&w+uO2cR9nDJK$OjNT
zmDLLX#`$@v17HxW0oa`#hpa=8bQKryB=9EQnSn(Lmy)UBrw+U}N|Egp)b>qdPmPwe
zFwtrkm7$JmLCoJ~Gg!MKK)W5N^iN2R|KBVHc#1JHE1Fu#SY`^aWDY?bL*xY(u#3Jb
zE+ER8Hmr2sP3ktWp4B%St|g8;TdmJ3J$Q&r|1ynfWf8cdVKJo!L-1_5998C;kvaB^
z655L@f}6+B5EsxLm52`D)9jfxwCO%Fw4SZNfFQ3mvIumqWa0$XzaUsU0CQ)^_}l`!
zGl2ULbgwD692x;#sbyVQJ_NPkXP}!>)Ed~$833Rduq|GyNfslYDL_Lo=*YOBP-q9B
zX@X1#PMM)QNX43e1a@?19|Zu_k9qzBbAdMkiDNWOG?^s+35QiS2=aR_g!f~=3+`kz
z<^x6@6q7I0L#_C5ilu{vpRGVJCA3(a64->$Hw*zsH&fWTp+=HddmUz-sET!#Y{xY$$7n%~*%cg4+PhL<;=R
zarvje{x37Fp3D0yuq~d0>dAK~58m5nN`2
z_}1yQX=|q6?hr7a-|mVtb>ziM#3C`vf
zHKzsX!9>vdnEA+43YO+
zgVnmGxFtpIYXDv)2)cv&Ve_&9LJ0h=J-mko18kDU!cB%@)`Obs
z#j*M@7<7jns(Da2o=@#qoO3PU#6o#weFyQe4b`L$taW46p7?$`6~XAOs}9>jGqMsH
z&{_s!7Vo!=VQe+BMLOTjC_>YjrFL;X8!y7Iw)|DGyC8?qK&ESI@F}(n-CFI$_0acc
z*4RQUGSmx*A#zMBOe+=IS{=BL-zI)%gV`hk&ICmPPf$kN_ci>{`8d=Zg}h)@pb}tJ
zJr~Ok6M9U8*5{J(-S*rU)YJT_pUKoBGTF0=3E>7$LfD-_#
z;K1!SSqDNa0Se6vgQQxAIS-?GE#)R*aXXkf#w!yoxA9#RD~-6eX`#Ssr@s}d=6^xO_m_~YZ;GEJjHO*~hXG#`?7O2IOa!{N
z7?Y)2Hx;Qp3_Me=hc(X@kOFq_Q3jOC3ov2A5~FVpS-!MmlWjMERShtQr*G`i%?ZD=
z#kfsS9*|f62NU;*O)*>1Cia^_%MxJ6X0xk)S
zXr&?m3IT+2-~=BaxrmT|`*fx_c(S%?V0HU%ENR$vt?eL`7FxGlFx@cJURVOKAPhqc
zK6;x`%LE+XABtiT$W2?++q9d}TlfZayBo3*(S8VOByKv>@Y^`r$^U&2X`}<~qV2FOF2(K)jWVa=AFd{A|qLNYV`Ux_!$L_%x6?mQV&5L
z_$GuidjZ-&{L$2M8vtE8zRzcta?UmwX^x1VwjN4UA(i>Thkzib%~hC}4~v-uCT}X2
zS}I`%>-Tq7B*&mrUYqQjEa5QfHm(KeqYQ>NKm%9(+<51({pQm1WH3fQ3Tq_Ke-<-4WCKyJeXxLkQUg6nD^e--9Qfad(*#
zj6=`@14tw`m#0}dcpx$H5C0APgxYFv3WwISHv9>sk&RurO*m~QtQNBcZGs@`
z0sA5O@afr*v0(quV1|3=+~z(T)w&E@*?Z-&;0lq7nxhV;&=|K|cL`*+D1p2eoz=-U
zrl3P8Y-`*Wn2Z3xB&?Jc;WmO}rngcxHZassYt5E82EQK0z_qMIL8c>x?z~YbXP0k-
z+St71Nln?94uACH=i6<0MFXO$FZ_V416UU%+%hjuv5fs0K6j(z)mKv#{*o8
znRwhJDh?5MWg-R(b5@as?XH6iaLLGl??^0RZeg;s2Jhr*_tqH88fI^7;O5aYinVO9
zYRDuF$U<9yV+sg{@$(CD@qdgu7C}qE|Ay@9O^|Wpinu6@?nmp@1)BR}8JhF6`NGc1
z^9Ensh&#EO+gy*g9o7!Kp7^)XOy$8I4mJvzuz;*bb^@Di*EZsNKo8Gv_twROyVnG
z+ey_{@p*3^glU|?LPAdeUTh5$SGLqo)mVR{fwh(ZGR
zf21u0-`xP|!8HKjqyG6;c0@TKIP|Zed{Ew3P@WvBsvKu@?cqodT$~>e7ZsD16%&&c
zm*EhTl$8JhX)qT6fM!GflrJ0aXBl|sv!Op>h|V!501!f;fAA9iUKa@GpLKx<{9YG4
z$ge!a@qXn^X7ERTn&2C372x=N)PJ-HkRR8=R#g{(94!Hq$1%Y18jkO15QqTCiHV6x
zh{;Jv$Z5z($!Hj;$jPY~PSVja(9xZwAwPcpc>Rd{V+f%jBcq_Cpr)jxrl+K&q{ju6
z^goi&{5KgKy#i>60UID23gHCsXdqA;$k8xZNz$Wc2n>{x0CN0*0^=Si0Kvm2AS5Ct
zAteJ9;IBjofCv3aqy`}P5GWo#9sv;{F#(iZ0wmHv@lVr=5hxqj({XxT7bm1oc=%L>
zi<`l)$wA^AI;=yLh$qo#Wo#AhEy{yZDb{Ip4C8`=Rz`f6{@(|(#AmWvL-3bcu=!B!1
ziIflG`!5mxy##!Jif}XlkVB8lqyb<6B_pNvy)5Lu*i{Mbw#QdO@0^ZU_AjxmL0lTC
zH}mg0UEs;R$U#kv)mSq#=#;&6Wv|5JjGT2PH?gStI1+VeIHhiC0k=dwiJT)G2j)z)_fj|vbIaPmkK=j`DlAm3dtSQFLd
zy;x?k2g@mmc`uuIs((du0luqUIP*ZcD%7Hqe&+H}G<&az&_T%qk>D@$EH-QS&s(&v
zlU~wGixW$_ckL#--}{BEd2QSMp0uYQS-g_4hVtU{Yb$>!W#R~Uktk(C?`H$**dYy#vtrW5`DJ6pp-E_
zQE9cqvNWk^@3dL2_7T9>JX3{y43I3gVztaBS63M?cjZaduxef3$sw%rR6I1~5&C#h
z{&{J7ZsNH=8IBzO+9%*
znXIYisJ*2|xCKE}rTFn1DPzlK8ZZ85u>FAX@2Hm9GiBbF*NrY1Akh^dL5-nPHP
zo-TICIqit}YU6!{k?~22Hl)kkEKVTKV77Y@j=q9;=5(I(IZw~CtV&U;PIs@(hW5Ui
z-Nqry^Q7v_mpa#F@m_x=@*6MO!aDEHg-Clgr#akyBp-E)KfcpK_KRR(ri;bu+6o8N
zi}90>G^W_HG7gL{u~a`
z+>3jMJsJ;o@`cSW->MHE3y6@eFot)h@@&eaM+mme6*OI$l-!W(dLBX7L{t2wqL*SZ
zN|{y~yTSF@VOl28@p`w+2+aii+8bW3x3Leb^XEq$kepk3NN?zy)$XStEE-c;E~k0HKY
zQLNhQ^-B3RITpt~lI6!!b7a&!arAkF_D*BUG(xU*WTwdH397
zy=k|CT)FWYVLYfU7}!5ZI6U!ceEkUMSoEJR6}g@id%0IQ0l!K-6BhO12vG4VUrFz$
zD(zV$(%&W`iF>rs_}Th|Ml%zW%7teQt=loJ3Z%uWtHPnB{)NL~2?Whguuot1Eo^-C
z#%R14fuAthM3;BSc0KgId3X8dIzC$Z>8m3^Iw0f-2$a7k{XAq>_QPc{MGq|7Db_o7
zvEysP&PCr3Gq_(xHm;Sm5hUDRp3i#M(-!KGtL(X8%8mcr#sgr#hu6Pj1o}OR3TmO!-^?%PBVUb~_?Fv5*q0u>0t=H~WdEXfpQj&zB@QnQ~>cPJhUY
zcQYS3>U?Co9zJ#ZS{D`3XIA9+;9N)MoIC?wzAswp-Q5x$6PHQLQi=Omw_OFk
z*Y6%q&2JEXE>mZtbCbsNSZ~cq_d&1h&;Y;!u8Tq;AYtb6+U^
zDzeA(Is3iygdRx9mw4Dr*yNC}vpP>fQ%T$2y_g5@hb<@^X>pxnJVU{vIw{9K*
zIX$o?@=S>^Hy11IL$Rv#0q93~JlAl|`i6Cua+#>>I$8J(w&2my==oVT>$cs7_O~+%
zr*vdn-LtX8Ay!ipULy>|^ED@^W_g*>%vVz^QXjr%FKWB>VAtLu)DGy~d~q|MOnw{F
zBV!k87h<}Zv`V#YBPu7nr6`RS>3eYd5$BOubYnw`(+`zh^r)g$kB3UBbO
zT@^TuY?}*cDe
zRJ5M!7Vog=S695D;fbwu4La8jIs2R7>0R86DPgCmt@7`nmN7{GP?op~V+~Ip&z*;#
zBhwUL@ye&#w=Yw@c1CxwquH4^94GnOfyYAt8%Q3%Nb_WBubmU8T&LYuV&@`g|^#^td?c%9Ojt5(U@(4
zUb)qSTeTCbo^WWBf3tVYnfsV}j#M7GKvVIHQQy}sc+fnFs&^AviY+Lc?i_W0!I#!t
zx=%|UtHKbR+fw?#z+@&dWFXhjuU1;~Qn<}%Xx&Z(!kHxw{=Hd^^<;dKjivEjO*Vlo
zne=YvHQN{?T0$UcbfBy~b|~ZC=c>jl@!z`&MJpqh28ysL(#E?BEU`+8tMZ=MgGX`L
zr26p8DX!?-_ZzfSOUDzUCK35SzcE+gCd@Jmm~k{3ZDlhlB3=hk3E9fKUj_awXBZn}{TWmr*oF
zfEL`Svg1_4<&xT|cU#xj4AyI9uELWe0&ge0*7$ff@g(+(6e@CRtW`eH>w`J>RWG_G
zy2I^YSZUqfjdPlihk31+@UK){9wk~e;2ps~ks(jdPCgOH!q@T1;iJghL`2)cSJ}pZ
z+g_e)J5%uP7V)g_C2ZHG_1?E*WnINx!S7Y-!DMW`@hwH6u
zd7?(45MFLBg&u@k&L6p-eK={7Ae-I;SYVF69xc*e`_mkd5EccbRkU>Rd5%}6)W_j(
z!7)wt7%>TkI67`=4gh4HXwZhx^Y!uc^#P+e`vuVV_Azomq1=u+v^;ze2oGO(903R8
z-l}eBT%77Str0Q+$DxAs!KJ~Gf8>ckU$S>c7^|5ZgQy>c{YapXMxmUH5I(-1dJZmd
zkVp>b184vR{&NC203!ea_yE3uCoU_1)bkfN7(32J#m&d#4~fVfe35QGNRQ(zK|0AX
zx2mp%_K(((!)1Xd1O|WBnD)0C>v{ShQ6AnP{RECv)zio0XC=T&I-q|=44u7oe??T$
z9;$yvJbeC)=s37}|Ds%S_VN1_QFC{@@GAng`K7U
zk%Pk#9OLx^
z+>{J|v6K2C;65ny1$!TRTn&ze)OXhR{;3r>7{?60abg2H2&W&}{6n$EpxOGbiZz0}
z{lM#^;Yt>`9F8AqI2z??b_D@;E~ueM59goFM~NdCf-9WV~yM%K~4e4sNp^1mb<{h!c|+X9z0ST_K2
z9K$(5fMfT;kCqcXj^jaoP;qkOB**F6k2WVh#{4mg@svO``1_;P*>KQrc`@UnP%SX{
zQFmMvz_~f_&Vv9cU;=o6GYk^^xq)+yBOnBb;TUjS|M2{V!=?S@D*46s8^bT$A41~d
z9=>k484*`mLI;$uhokpDjC8mUu4tUX0J!1tO9#RDKj<)^@=Mo$h++6km5-}M=j#O@-p$9@-uW+FlyHQbn=vB5N6TB&SXbxglt=s%{TF7ED=2i3vK!L*XG>B2sJ!M+
zG+1*YM}(8T@9`8&;)g){{0nx|pXk4`lQ}r6qTEpE-x`*fY3-z;89E&ajnZ_{Ye_xi5dH
z@Q;y-;{eFq!2mZnvcaDX2#x~46D1ID0GtG!eSbRx|8@rc?F{_e8Thv|@NZ|}-_F3l
zoq>Nl1OIjg{_PC>-#Y_;ti(@)Yi$7ZpMlG5+|rv0PzH@#6yN|Fxg4O2?FtC{fIshJ
z$P?tC{U10u09EiGZXthc0sOG0iNIqI$0Zz%QS4vw@$r-u5%KUAw#OY%5Qd}NMFQ+S
zMZ|JiKKC6gZDFmjz)QT7;A1n8n9cf%EtX0f)J+K8Gp_
zjo^?JmJ))CofG9aFC#1_C3;R$>?{X(G~&F7sHBLfl#r;Htf;iCxERMD4<}d}+R;hY
z@PhguWq~mT&Oa*U@9!_{FCmOVJBx_P$jFF@ii?Pg3xOO$-hm!I_5ng3-dsO(xPb76
zqmjqnL=Iezpr_2&M}ZTR^hXukJ%45UFWc%jMqS^tvq(n8V_=N*L3ON&auMeSvz&pSvT%LS&tfP(wtnh%%$huS)#;9wrVT1ZyX
zK?W`%BOxOsDJ~`{Bx!$6R7mE$y_1lrqZk5iFYV+Y;UxAmw;vuCd$-?n#YyD|=6LR$
zxQwKvOgmeQ5-k?jGLrYCnN=!ydN=RH-45#;?9AJGl
zk=|e@2mUdVj1XRbKyFBmWA&7^hvR(g3Y>79Iv^Z5|3D-EMLYj@HTsdQKj<0$k81LR
z%^T(9<8O~fC_96F@;|Df$iEZb+urX#i~irK$p1yr|7ceD6?+e71USWtaN;T>f}4zf
zbc)D7_SZ4(w~6Z~J2)HSz+cm_;?L>w@Auy=@OKOR-2#8Nz~3$KcMJUgs0IEsbMgj0Jxmwz^yBB@E;FowQlwP*of^C($weR_(}LL-!yPfGOP@ZHaOFAmCR(
zSQLcG(Z+_LU5zgfULhcN{tb5c4fX-IAVFS073CRtyeY?V2F}j`TB6b%nh1Y4gpZGq
zK4@Lrqa8up*WJ_JBM<<7)ESowp#7&c`!V`Q@E?i4@%<+d*SA0D>juYt24Vd4C+^Rb
zf8tO%;D$YTtN|MTC(a=a0BUXkz{!C>aopLU^CAKOp0)i}A4Z(M{AQUW5pZE#gZ_H{
zM}}XV{~q|QJYigUzw8~33qSU7IdEDH2lr%s(H!2Oa|6L4^p8sXzfSm@Sii|}))3)@
zKqEkll*1I%GVmM>*xeqENSsl{f%N!`RrXsB|I1{*<$wc!=rst?WPz00#6+jK}5@-TifR8{s&;twtqrfCE53B%Nz&?17g9t(ap@T3%
z*daU+L5Mg+8lnhMgXlmEAr=rjh%>|k;tL6ZghOsY5+Ui3hma!3Q^<2j6XZRl1M(Fz
z2APGdLH6*Vc;tBWc&vE5cp`Yxc*=O%c*c0vc+PlUctLm(c(Hi*@N)1T<2}P`!uyEV
zgExvdkGBb4vmt{rLQg}5pwduPs2I6kYuR>#>DbO5f8MF@C3hjc9LKmRB_=Na$
z_#F5`_;UD~_$K&pd@uZ~__y)X@eA>v;Wy)V;g8|3;A06W2v`UN31kVh2+Rqb3H%8n
z2~r61391R+67&#E5^NC?5;79<5uPX1B(xxOAq*zGP56MYobVN42jMv3CJ_-46Oka1
z0+Ak(J&_MlBvBgCW1>c)PNGSo9bz(Kc4Bd2bz)0m58^Q56yjpy2I5ZQY2tknY7!n2
zSrR=GN0LC2IFekFI+8Y$Ns@h18d5$|1yW;D7t-sb_eje~-;xfIu9K0Gagxc98IU2#
zu94j%dqVb(Y>aG|oR(aGT$TJXxi5Jvc>(z=@~`CU6ciM^6iO796h0KO6h#zoD85nb
zP|{HfQ)*E
zN4-fyMaG5Y%Xkf*&5hp+3DC7
z*^%sb*&EsCI2bsTIovqzaWr$RoMt(#dD{2%!_!|*?{o5TnsA13mU9ksk#b3MIdR?P
zdd;=M&CadM9l~A0J-|c4Bh7P#CzYp_XPcLg*Niucw}y9y?;+xuSz&v|<;Jk`wg_bIlnmx~b-tPSU^L^6v()!Z3rQgXA
z$f(F*WM0bb%1X)l$X3WM%L&Q3$`#Aa$n(h~UOu9-ybCm!vnW&!_LD|H6RKK;Iz4V9HR;FvPIch|b8?sMu)BSj9Nb
zc+ljGiLc3PQ!3NTrbVXPW*5v7%|^{d%tOsTS}u$BBq@boD!X8oE4mtoM*4VuB2R9K&m3sk*hA6E?F+yu6nKou19WWZsqR8?so3a
zJ!m~#J(^K$r~p)lr=Vw~=ct#gSF+a%S{t434e_@2uJxe@7gL{n&-mW(9rIK4%kbOr
zH}$U!pb78@_!KA*cr$Q1NIfVo7(W;u{5s@x$n}u1Q035vS0Ps&uD-@_VInY-*EFsb
zUMIcodi`^lXjo#{Mz~pcT?A{ywTST>8aGNJDI?L5eNl2zS<(2>$mlOOC2pqO#Kt(r
ze7GfgE9KU~ZTRgEcf{`8yK@xl6#FGkDlRjgFy14+HvyJVm`IZtlsKNGoAm51$K9B_
z8_BlG?^DjDWTld(`lgQF)45lh#+??Qc94E0y(dE@qx?S0{hRlef%v8!O%VN#C
zm9>|R%CBbtcs`Vel=Zn%rnTd
zz-KEpS87IUEowWSUwr<$POh%{h471lm#1H5)HBq_HIOz$G#oVsHEzE0e6`Tz+%*2$
z_VwT!^Echi2F+jIYQKHgqTceRRk^kCox;19?`7XV{~-OL=A+cdXP+cLRezTJT>VAr
z%d@ugZME$(?R6dU9SxnZ&Ze#lT`k>O-5+}{^>p-_^!E2%?i=lQ?4SAS_H}i@Z(x7$
z+7Q7|%rNzE$~Ts8IV1cd<)c!g^qL@mVW}hya5ubTE
zt3KO4XEirD?>WD}5V=URcz@~4Qq{83@~0K^mC04~>e1Tmb*A-#jdL5XH}yBaZMkpl
zZ^!H~?G)}x@3!ul?M?6d9}pefJLEsC!)jxPj@-e+r+?lIRRY%nKW>KpxOe$qg?N8H
z&|lAQDRK88@qQ8hTi^(HGZdnOcOD7>uTuVbGgJe-8450I0YW_RcH^&yh?tN7p9D$@
z-jD@vh6038u>4;{kOU>dBZiOwq-4|p9s~;B4Ta()!XqT{g@Ct4X$WWuPZQB`0>onU
z%HmuMBnB#s_S_OD485+ObV%S)efV^R_Z*s(si{MfZ_G$4Y&9|Gg0Z)n`gslb852`8
z=8D&y-`5<&eUc&&k1F4Ejq^)8t@{ed$ZBd`1Q%=0SCB4#{sDnOHzK2=Z^qnBPD#C&
zmY$oJUr<<7Tvh$7ruKPV^V^ozcke%R_w@Gle;t^ZoSL4Qo!i*l+TPjS1FMg_%Zd*r
zz{kfYBqVSLMWzAovJ!|90-SWp21Mfa^j^d&*SQiH3?Di$N{~F|Zt74)ubdbQI|p8A
zJqf?Cnp43m$z&|0=Ez6t9iF7_gOk?;;cI$6;>NMS>-@}jbE|NdT9bd=YCWT2<|O^=
zV(Xu`S~bnD1VrB}tbNx%vm>KrfegHvR`mS+*V$bG*^8DgK{4sYbsq-i_WpYLw5<5U
zhqoog1{P+BqWfgsUs_(9vQ%nX#O)+%ZHrzzBPttPCthVuWRRXa_+-@IDd-XG`6@e&
zz|-#J1j8~ZmaO-mKR(~WdYWpJhvnLDv7E#&DTt@xUQG*`ATU}y{haLaOZde!*DZAj
zds->1sWT3*PUUI03Z~^f`-cab9}oOKIQdh~zuhEUasL|8pGHb*-B(v*IyJxZl)nG$
zGiP78*kLl8YDrB2!rrSMrKejt=Yp1Sbmgx&hnJHgadGWZOh_tc0!dD8+)8mIcRJ;O
zsG)fxc)`It^JP0?L%RK?7UwnR+IUT}n8Zs8vZ=P6Rl(ZOez^z!PQhFzm3~>RLT_&7
z6&DnQF~67l5XtaFf%+SF;#%ms{Rw=E08COrzU1s{(9jbLV^?HDV;
zTxihtH&e`qVZB4WRBY__qTm5nx$)lS^2^6ZKyqEyUY5uq>+*ovj)qOq=KM&Y#StLr
z3)@t*-IE)sDqo4MH=1vMkTOrP96mp!aRniMa=`sz?bH3B0uK|GYKxM#iS@6#Z|@Wh
z?4;XPS6><*@LUWk{?u*REWLOB`t4Gl3tsfdKzE*@6wQdC)9xx^G4%Z1dMnSesaN5b
z_31hbs?&rzC+`v8BXz#XeTQqRP7B4sf4?ic^)EHC$iqbVq!jd(hfX>lly)Bh-Mg5X
z<*S{IuVpv&%5C;PwC!3I9RWpa;HAcIhaj`>T$WA!c5>EQjnNTcG}$^C
zPX||pm7HR7#Kuu=m$6sW3(RejAiL5x8b(F4
z#dC#D^50~pg3#_8SI9HtF~#wr@!!y2hCP`U`_PWf)Z~;RJpTx&|82M|G~$$L*7`r`o^!a7{;L&}{P+@RlPSStWp;z*
z0qW6guJ+sPHKjeZksKRLQ)8tqCIbR>m0J4D7tt=fvS%@9LfM9=Nv)fP3N8D+y;AeV
z>W$wkj0-;Y=zX0$q?JA8o;qTMGJ}niMDFgLpPpVX2d`&_TH%JQ?QVz2A^Sp3c-JGg
zmx3iQNnh@(%7qyTyX@ub%dbSzV|*9(Ht5ZCt+cJoE(r>h(ys{|0e7|cPR=X8Nq8-~
zO>aAR$g?^8WXDj2s2>eWV5KT`T3vLXT6bjF4`82?y|vxbxc1!S2zWpXjxubg&k_x%de9auYLi1YDgT4qh(7OrlGU09hVz%pLBR`z|+>g44{0@`IUFY~1!zef!NC
z$HxUNt^CEsw7p`5XycZ2F1pM*^v
z^y|q^#cx6fM?h28@`x#@$HQh=AMk3v#=b)K#!N|B!(I*6OrUW+$94}kQuv6Qvc7X4
z)zRCTW7cD068fnygu1E=s(UI-vQ`Lt6|6;~@eyDc8vBeQ**!sIDd_-_TCKSQS%-Dn
zW7nvPX82z$*~m%eQtXiiM;}}Wq?!re*ZY_U`)wlK;=xTnod0gl>}y!7#G1}w=0X}b
z{2OsIaZo{DnOAq;r|)N+AE%h^Y0y{7W$hA}X9U0WOuMW>ua>K*WQ=X<%~ZRi{hq^^
z&9VJzS7&4@$^H9;g^v?&QryWcOtE;ZH2(I~SF5Z=(JhSYhwVy(f)3J<{fxs2PZ)A0
zGjyv{;IV8TD&@phCMhwwt|TS-4m#K`vgP2
zB|Fy-S?mBVeWG_h
z_g^GxIp_`cVf@WNWi?^nl-0w1U-(w2zV=n0UuCP`_QkAK8-SB_?(t-;f&mU61RG&!
z=12ZbilD9$B?Fl8bL=1UM3>A~NHu&0La98l
zzOyOTFRcv1g%YDPkXqal9Mg$bhBCE#RIL?(ffqj)+dcQ)z!#(%4DYxb@&bMIR$DCW?=~7n
zu2#o)`d*1EXE=Pswa&_i$l`+Dn@)em1mVc7(7EHa`79q2wR0=Ze%CJGa_c!BZng_X
z2l5!~FgEYyfkk^pEc<$3}3Tv|i
zq7r#yo&0%i2}+Zu>Q=594WhUpgk=a9_+h59!r$9GYA+L5-Z=&8oB^nF)rX%{ug%HM
zyc!KYUtjDu?1!-%LvPT(I6>7uXlm2+Rr>a=$!7>Necczl^OotCBMeP)*|SQC4%JFtxyFIWQkaBM_k+@g7q*f$
zau9U_wX)>sWPBsfB@_DgV;>7qYQck`(|bi8lCNU&a%oD5=*Gs7nS5>8)2HLg
znB~vW4j~a62YeO_-ibNACp-
zn(OKe_?{dqToXZ;KD_&Mo7nD(@^|9zRA0OG{N}BLN9wk1z%N2)Z>(a=h`FU30nv7)
z-(qG-(~|BRwHq;(F$+}I?w`Jxl4mY`HtKv)%19b6_8^77glDW+z(S+&YiI!~_gO+7
zic+QkVHj}kHUYKSEoxDs_}NimK4s?lfbXUpUc@9N>`El#b3rPG#!c~=q?bdA;!BF%
z>8pH*mR$uVHm)=9@Q9@37du=A5=z9l0pZXhJAK;kG15ub6gvZaUY(96brl<7?v`4A@N;?zc#d)X%kr`!H}YoL--G)>73_d6rucOXtc2^hj79
zy!;$UGQGEdVxa%)SK$mRU)A}yaRaS<*~4#pK6jKhzl|!0-v?R^4~u7ExNhpJ$9>Il
z-}pcJ?cXDOlsJkY$v4u>2~F8M?hc6_0k$J|hy|1c0>b03cJ#hg#%HFP?sVpQhAfuU
zRx*vfs&^}^DmktzR#)Z-V5r4D>PLA_zHp8C=y*W_Lp6%pBU(JU>*McS-$p?@SD`k)
z(|Sm-J3ZaWoRc1;m7bZ;8;O{BWR(olP(NX&en7K8=Y>+pEhYG*#>1x3)y*y%5x-Crqg$OAHI0xoT~{)plu{Q<=k64wG-lp
z9%Z>SSfU|YdD=l;p_d=E3<@z{6fZc2)Um0Z^=?kO;ChNQZZjyB=&{Yf?3ei9{H#`M
z3Z*?0B`8LjN2UX{C6>H}H&ue6+#^ePZ9a3gyLE?n#^kAXS+AxZJ!azT5kL{78%)08
z|EuvebMsw36bG3|Nqi{OQ@p$Pu4U-X8LDc=l+S^_D3|+=c8X0?nA0|CwfC%)&n`AG
zHfF^i)|1W^#}tNNa0avc&10V*X?SgI23r{+rLr;;$_c%Mk{
zytTmA7X6ox@sFdK5tW9ox7h;eS0&1)@VTyGtT5NM&h$&6SW~cTuvM?SMmuq!UXPq>OD>xv5afD247Y!7COM8_)y3YwY4dE*1~3lP7(kQPA6!Z=39_h(jhq
zCj@+w-iM_$#}!b?;We&l9s%$LBjktNYkk}2urZkAxLu;@4uTdeL=Z`V$sL(6z#8rP
zJkHC_&$+FpO{x+$ntUQ*`Mvl>6n8|{ocn@_yQ@36h0sfVbM5=p-tQQR4*YGpq34N#
zWarn|?M7k3xxtwHpzTKArTXRJ;PT*YoB3~teRcm9@z`6HLM5P>Gd7@Yi$~3OZ{&{3
zeA`A%oi4o@u|w@m8<;u}H;uhi&XTAyFqV*fs9c~mS6UjEzNoX-QNwpJ>m2uB=Q&N^
zmh3~fp?#{MwYL$iCNJa2f+!~sqc}pN9z~xYtX-9Td~1HCX7MEK-Yi#qvl%?psD+K}
ztBXC)7~dRpg^dx`agBX^fge-#ZE?6Ozfk@Gx-lyqi>Y}?kU#Dk9G#hX1ducxyo{UN
zmv!5+>ijRNmfMMWfZB@$O`;*0!=Bo!@B@Va-=mIy^|9^unc5$;cCNunq0ZE>v2zak
zPw;LnX1*HOxm-<$8gdIb5I#}*M6`^vwo93S(7$~0vzC^85~;;x35|^Yn)#sHf0J~tlJvr
zjdUfw-!jnM%u#A+A#!Q(z5kwLuOedpGjrex?RUV3$70y~WN+2X^*31d_Kig&R5!-1
zb;U%-&lwjrA=w*@Ufp-jYZ+XwfADovPJ-wwS=CCFbltavZyA-o&Z5?V)n2|#WjSTv
zUW_~ul-d~dC(^z5(S!2cm&vDc!Bn@@I(VTh2|6*Ww|FvKYb#ICTFg7yiwl%!wj@Se
zpeQP2lq6poX=#pCfU$0v@zU3J7L&VuQaSS&k@haTNcduL`O57L%{3;=gDq{rTJgLu
zW?l$%MwEafcg?EKVyL9Bb
zE3Kbr7PU_JZHbπQEcU}vp*HYcd@y;bO<2?Yhy)^(ZCp8ElJMl0UsGA0z40ymY(
zHH$(G-_LdDyLRRe_k?AU2V76M-WhhgB8`F=XcywrOLm>?w*ELU2t~IJ4Mrh!^{Qm|
zDJr(JtbEulrYoiQGFu8CFCDJm{UXd;0<}|!w2}}?*Ssu
z{$Ulr84rz{ex2M&@3MD%ZV<9TO6={{jc@w%zqBl2RaqaaMSl+vI4n2_
zhY3fQc`Po{SvTJ;hcstB!K6m1@XC>?#u9&IZZoELDNgofwH*+BWNmMCC^UyH7`k4w
z&}$W-ZcODvXkFoYNbUKkGi`T+^5xJ{IT=4X-i%ZMmK)Nxw(GOJFqng_U$*|2a~frR
zpY5g4dW!nDZwSJO{1mSp0Z~!w^TWP{n0HZ?n!6aEq}yl0_jHKX7~ZYV4d_{)V80ex
zddcj$&`97(+js|z6YNc2Se9a4AC_$xTLL>MDBo{70$^5M>+?^>*QlP2Bu_Jk$o03C
znndjg_EsJ2ErWkOC?Rf_y-FO7ojqB2^Rn}po!-K^@d??jq&|#oK}At^`q!$9HYHlf8AzgVx82JICrvAf?VuU`R_p7kl9};>Ln{;kTjCK%+NTLv!n&J{vl{;*nTP
zp?ngdn0*99cq)eSSHH;oqQ^-1P+oad<01Q~yoPeV2CKpCLeWc-g4Wp&lxf;dN_98R
zS!1di^)YXTylUOo7rX8`F&HJ=H$@e0aD577PgS*&dxvsZb$CN{GX!){X0-2aLI>EA
zHvYGLx4apxv9&(1D(3@+S%L*1LqGh6kBqE^PQX#d1v(m~zjV3v&&
zvx5|OuzVKd!7*2qQi`JR^A_TZ4$gfN!jgF}bU6<;23kjdYt#uh%1ZWZbY%%mRyeU_
z)~Jdq#XNHp8Jxn1taLq;1|FIi3l!f_GeDSt|JiTopH+BoM*uMfvh^XaAg`$6XDGF}
zaZ3=s?!C>C`pu=g<`3#6JuPE$HmV{&J<=^GvLO~D{4Sj_`*{5jvc)m*jHEoQ%}2*H
z)3$khPx00vSC(>zBzBph=t?$ZN&X19adpIKjXiBPSXWn1gE%aOC-U@{V|l7zTo
zEsE!S{d3<2$TTAuJMg0esbFdHTDzHHNxDMKkrop|d_`-!kO@WA$JlSPW&hoW|5tne
zWoa-HMiI>siI4Y~s$29tIn{>Z;e-!+fwP9b@s9OH|0m2u&HUs>|>RHYLO=
z%lnKqR!%%Ud-b8l&VJ^W!V?cON*-=2^<*4yjrY4ldZ
z?%00qy>|qN$!fSP*-Y;q0sXa~$8Ws%7h5^XE
zJrWPlbyGCBuVPoH`0v3}Ya&y$Y};L8dLiOu>B0#7_0#M5eLr6OYlu6QSTFnsAQm2_fbHcZA>
z4Q|wP^$mFXh9zFTv_QszO9MaNg}|0OJ5H(iofRwBvjK-pGN(XR9zTW_K=^|a{ljyY
zfq_kCdZ+@AzklH*}e1h
zK}pF>Q{}U7P3~Xsr4&@JoHFxTJl!~3q8=@}EBndVhl%Ci9Xq
zaEkFfN6{q7q@Dog&FaDe<)~sPBO6iaRs&7@;`0WU1Ixq$==Jo6bwou6U0Ts^t18~T
z;3F^PF1zwkOK@P}leQeKIk-dl8Rexg>zKlSYhXj2q90tyeqVSQ_Qd$R1?RYyQ+=qc>f
zt;3bZ%2LzDG&5bhn&r=N2^pzk)#oF*92d$m<|1w04R{p}1bh2^uBu^m>ixR;!ixQw
z>-4b2=dpWtbd_Q&S;T6u6bm{g>EP||FR<+$j4W=ST_*FVD}8$~J61_Wi?}mRC$3=3
z*+Nos#pRtT4?zaChT>ztjH!jN6Kt$6oh@T>-ArN#^(phw(#8f*nR85B4|cocP=#hF
z_~SbwL2{wUtf&uH*pjgY^BX^TZB!pT3+*Q
z{dz<9jC4?-Z^OTw)yocN!|G;y$ulGHVD|IFekYHBa%^Ko@PjD#+HO-W`l!#MFiC0H
z$KqL5Z*r;~O!d2TjRLXH6QSgNYN6u<42Q^9wOy@)>Rt%|fAa1j+OmN`}3)rA_oY)xQ`n#58n
z5Xz8}tXA`;qnYQ+n2arWqce!0`)8@h8^6L96k1-~h#2&JUy~liV9LT2s_}4*>mAmb
z^6b+0`UqV{2^IP7JUqdS35D!wvWm0Kru5z)%Is^{qkl!NGKEB3SCIjS~x-vrf7=@8C1`
zQD94qx1O+WyPlR%4_u#LxW1{_YvsP(=OeZC>EnD82AO@BJnzHzu}rpgG*~t&ML6T|
z-SZ2(q)!iP*`09X&-uzM!@Zw)T%78E?BXe7d>DasKOl_O;DYuCg~&
zn~mQv-|Ca~J_biPZ&>iyCUj!pn5Cz5ST<3C;%@O-@=7RuIjZeVD!ZMDz6B_&1;Iu-_786rPk9
zhgd(lYEd{eAO$npS`$;0g3Vcl1>gshEM2ZDFLtkp!FnZyWAE;=&)g59X^(6TLFAhC
z2u_THzEvH0Y)6*mMvPCugYU`AGH{0q^>OV-RK*pU%3Bo2NYW4a5iHc9#4{Hkmle-6
z#m9t6)2z+M)optG)2#Ea9V=aYFgT&27JpGwr?~Qj-{e$siIH*K4t_sC1ds)PywmW3
zj7%8?ED|>-y^T#W#Jryo>s7F^*7lc4H%h+-j1qVf?NtQrk?W&~yVzrGUto4>;B5>v
zhnBH~u%*Vi(1ZM;{b`!Im+TEZ&7D+>sqgzSL?0h7g{QLSsBVlOPV61lU&QXVf;)F;
z%=87!=JFtHev;~t4P0N{2alR4`D|~x9|4mrn3q}Wo4ICRNC)D!d>c%9j7)mE&eacQ
zWxdxnGtgP&QBdTyL~3_w(IAlmT(l}jKrxfCEQ1|YW1h$h-kBFi!0?Oy(q-G|nviPL
z83$EH%1+00z(rIOpqcEYTaP&z_#%z-q@drMlWRsDc0mVs?|xL{H51_>b+i>@Q&{`T
z*V>w%(sFsin8Fyz`Q?L>kY%C3y){R^p|L!u3vpf1#dg!IH
z=?c#4*=Dg-vNX772rOm|3GZ&14e9J2ym>b1$dgbb7St|x
z-7QmqIil6kDbJUXFO#2H9AbD@VW*hU>`Y!ORM}vQjk8g>zNpYxtTP}coxRFaK{@rH
zJ8SLp5in!4*!?kkH?}x{ttM{AweC^w&YjiR``vZ->i8bR1^CozZXw4Vs&6~q3OGFY
z96EM5dCPTs`&((@QU!nY)SVWAfMTG-n-}Pa2{JyccdFra6Y=`+vhhp=b+0FT#BOs`
z-*iXPU;1`P0owpt-yPrec0V<45UF712Epxia1%2SHa%~Ono6x*hfb9py4hen;YioL
z@sjb<{I|{({U3C~v?AWC2{A^;h!FTn(Hjs9%b8Wk;X4a!iO16{=TB(RV2mhqRG8)wY^^
zmejR28$29#_w^qzRF2Ep-e8@>=1ty+N-ZTL9MYv4Nk!+bye>9#sc3Ws4-c(_r2!7
zZN7=JnU8nHL~m(7cYC%yHW{1n4Ra!ieKu})$GNxOIOee4aqm#!x^tMTg(X?^2Oasi
z9pzEwHLhY`C|_(G-^K1_M7;HE-jkO`klBefuB4gqJ@1_@ljrWM9;T(x@5*;kW2kjD
zinV=NGep3a#Ld(*o^QG__r2H^!)i2ce&au(lOU(TdDWzS7I6gFY3%<$biH{zl<(g*
zKBz3oq)^#LD3Y~o2}7zO)!2zdDND9&Wxq&Lim?l2tl2}dFQdpVvNQI5UuTBdF3{7T&S?{d~Uc5rm$%
zXXHd&O=k8tJy*Vf!l{0(i5VNRsM;{yX8nA(NqOWD`L@xrYsmt7BbP?u+@%qGHqeX;
z@E?zH@$iK{QP^Y*!wD~;U6#jLuaUy7BeK%p`Wxp+bLrRQ+h(u!YOKt~m~Fx%AJ|k)
zBltfiGHt7=&yY_y#h9&GN;Z*BA=?Mu78P->{MMvr)VuB9FB;O$a99XGI^Qkn#^DUQ
z{StI?whpM~y6y8MI8e+Q_oF{wM=1Q-1yybx`s@1R!8{6Py$?i;BbW)=1Hu@xs9$3I
zDFw4Ru3Ip8iM1Dk$L_+&{%J$f=hXOG^B`UMBvzA^`~F75`~g2E?r`3hjCah=J~Yfb^B{|PO|Nkrz7F4^oFGZXX^7zJ^z4MV3=f#0hmSpf
z5IFg|wqp62jDu72P1$Z5suw^F53jF0SU3F3{7{zx#FgE{In<7eFUvy)rE@djK%fY%
zA;5{zciIfQeF(Fl6X_qF6`dP;bR{2&HtndR=au23Wa10h8m7!Vc8K!dn3MliW!aki
zbj;u*gH|(t2$|n&v-+3_4VYAmw%jFtBs%&wi4oj!$=F@a!8?)F$CzozVG>{MNab<8
zKO(1^k3LVL7wiOf5Hqs8I!BSl|Nk;hvim1rrwqoS*Lle9K?%lY3)*<2S?3vQ2Z+r1
zUes@2Io`{&Uc=ANPLEi{b@}*uK7L%){iK;=8O~k2XQf5MU^VNFrEYO;pbgJO8rS14
z2~YmgP92I-q;Z0+ShtDpLXw9CeXueU)Nft4qQHyv)h&k)VO(U(-K$~&Rsf#w_1FE2
zl<72tiLn>~)YvCk?w?QER9{4T`Mqbog1qqHG-)-t-W`}YZk4`&Idwe`eca89{toMU
z;434z3#2Lio0R&6-g7;K9dV^_QR}S6P~ayZEWh&Cl%0ixzxBrH$b;ctYfIit>Nj>ZX-Mgs`VCj%4?Ql`
z7q=RZbe4}H84il(kiUDEz(h2ysFIe5gnVLttvzc_Q@b&MEB$!yKHU`sW#fsUc44nHd~yt={{2;|_3Wi~x(6R4Z4ZNpbjSyq=N9lh^H
zER6?mdUYV`6-TMq$$C=LJ^7I_C2DUR`7|i_-m2jX5fkulk^N>cw3sBED}HI*c6*lV
zo&WvYXJ{MCxQdXXAhg+gu{97svfJwX13yeS^*uWAnhj_ja7=yj8%)4!1F-n_uC6M}
zKVEwjF-JtM!ShJ;@}l4KsoaGZrWP6la)M|*7RI*n`i28a1&(71u)uSnP^se!U@o=H
zk-U-5OR;r8hMwT^FLy)6GpyXfV_H0RSFg5hQAV)a^OyRgfxYslN>C?
z1_t@J=q6DB1}bM4;7?8ct8J8RD+;gBzW?LyjHcB*OViq(CMsSt&|gsnjkcTUVe@`0
zQ_huseg?D1epUWw=%x9<+hJKfd}7UVYeRb46u%4q5dXs4E@#4yaSi0m2dHWOT=~wh
zCaxqn*NMO8B>ia2DLM*u%&-x&ixG*;y#+-O`P;{wj|pXt;k#h1cdRP#{WX~Tj$A2n
z6@B1$)I)JxP_Ft0HuqCZs^k3B^KG#Mhn3zCn|krZ4wH4KoObAiD5|KQjb-)1Z1b@@
z$+zos-bZUw-ZST4L_E3~t`_7fm9RTBJBZ_rQlAtd2lv*Dc{sbB_yzJX?@j~pzAWn<
zcS_1GNihf{v-G_4#bnp(SD%WgZrK3m&7Ox-R_qtz=y5G8->2)4viO26;I2}!Q#
z-4Y=a*MpVwix1#L>3J-%zN6x0-ZRIeSpXZG=>QqqMMR8`D-7(8BYBV|KJYfrANVTQ
zs!P%NhSL#Sx~%+0Du}(FKz7cmX}}?jAlUK{SN6WcMM)QOXr4KEM?(#2P9r%5L(+zJ
zs=dz_P9yVCZs19P1&rnoVD8BtRjNj=#jd;O_o-y${R`pg>@G{FF+V&Gph<_Y9rP1=
zZK6J7cU6Re4{9FSk7y3m5-eZ+8Q|Nxt`BukX@MF*lviMtYH2Iw6BC%TI<*m2UQz2s
z+;lEViam%tL&ENw7D&1r!r10=H_So^nMwyK;)gKjc9IwT@`S>P-yK4GFdk$jBd#+i
zv^MY}6PfsKNINh*gc6_wG1N?>AN`A;*7#ezw-|mMLVGXp&>|;Au!=ViLy7|mGr^1C
zpqPxaj`^<*D^p}g-0Clu)@XXYw^28ki`edKSoZ-OgfKaetz^6PNl%HmW5^jWz@6J2
zldAdRGI}55gngF1wHU#w!mzQdP#tN->LIkTPXC))rQlXQ%HTuf@|NBS(!-NrL
zsi_+s)?^g=di=L=iY`;Mvzroi46FNJx}QOszo`G608Plet^D70zoy(dEDBZ1JMD>>L}9E*R5xC$$$Ts|9ewEC|-`+zLE)MnjOL_@^E#{m}ysX*3?eZ
zkaA@+ZeeCk37Zn*8t4Q)MChMH5dAbYny}Sw^qKubSk@H24PZ_wU0aFl
zj51u2!t`N-d{8SxR)iuMTCo`YZX57hEep)U?&EVhYo=DzmvApH-!W{OU%T~HH7lhbQC6IK2m>~5
zg*7y6nT4i>`6oGi)E6eSt}l!4$4uP(@_%bq|InFJqnAE(gsoeP{h89d9GvHnxa&3U
zSh-?Fq+^}PP_ZTITdYk=G}Ehj$EvsJ@pb_8Fcz3ugimDqlo;finvWtG;!Q
z^4Gt%dSM>f#N;dYh1hPaDnyu9n<(V8{5-2sis21q9D2k&H}yMl>S{dAwZ3)I*6U4Z
zpzmY~1FV}y$m#g3LJ^?Wxf@LSajw(nG#+Fx6jirp*coTtu5K^xQIi4se&BZNu*9q9
zp(48lDyfQzBBfC^G`JW4*$|#
zhOO-S$N%y@4)Z92iI980r|b*%x$`fpQ^vyW9Ox6M0~C#hVu%zg3braM3~c?|$}d-_
zmu8k2be4(!sLmH>>4*D|y1paCr~`xNsWNP~VMGeu(xGb&CZR*-sAISoWS4to@Rat4
zV8Ree3}l1%0(I20&f}H55}j51x-=LGLuh`A)jOd+8IOXUi^b&Vvr4)&$I^AG4`D6=
z@8=?wqflJWqbUrUROUO-Yem?-hHJeVYD5{_HJDb>OcT+9D6_d6eS$Ey*#G>#!V`vP
z=}I0TKb*9*woaN#RASY>x)Q2xTSRi;hmZMs-dKucHZ#xeSz*I%j2y!1sMo?03JrCV
z9YobX>C?*4J$oxZ86!ngOUccd*;feh@;BJfiwvZCJV7v{isZr-E)
zC1l{o&@@SD&LlR*58}DdpmFEm51H-AYSyRx%&sKpZ1~|SrX2917gB$zq2^HsECTi|
zVd0V0;Yp}rUErG(NI?C#vb%^Eq9adT-FYsYv-DoR!`wPBc6S>wG6zFB-#U92=Hn
zs3`;unP9BH{Q4!;f&b~w6k_Z;gCwxhwE7oS?%qN@?8qz-$@QMUjWQ%W^^)iSh7C8B
zQknRA96bbY8OMRY)PE`aNBE{m7M{Du&l|Fg;&|;#QEDARYY+dp=luzKuFS+6)1b>|
z#18W~I>3JDjE8yhU$g_!FdkV(4(SE^W?VKhsu1s<`pV8CU3Zr+_Vfo-nB*Qk&cEEx;BE5^t~_`?0ymR+Il+27y^
z315O}--7-^58EOhSCx`9cey5U@a=o}=pD?imylD01?t7pTTf9$rn
zU<1cz-pEHUW;{FZ3^fRmOZ0d967Ij#6NsB5fuAp92phrFqv-YJqYdLM8!;n-WDcOO
z7%^tAa=O%ezug3NUs{+a=BtMDT#kW)87PSE!_9$})t8-0oLe@pyXl`fqyA1AvFKRyI0M&DlvU_&U`Vxs4u5;@A
zD@ELSlq4`D_?yS%j73OXMPwR(>9683piLssQu*B<`^?-^Ms54Ym#vnO(8z=(ZZ@^$
z<@KZSUlTuh_hS?V(rAfci;jIiLeGeaL9G22hUPjtqk1&3hos{7?Ls_YC|*f?3=)YX
z+RNdq+$Ztc&D$BDLC+iu2Fy`4w=2!ai4S1o6n$+hYwVShv+ysCz$YQ37-p00agb^F
zhCPNfOn+ZVovLr>sX^TtX>(lB0vUaGB3ftEJUGIZS6#sY%ny)9Mz5OJDA&k7
z1`+yT6$SIy@qaPcrh<^)w#2cEnNQ#g98>+If5n29k1MRD=o5xH{^o+t!y0efW
zNkMih1e^jduZvZ?FK=R<5myC(xi^QfR`k4oO`g^LYAS1#rbOdge$AfQ(^HkLJu-NVn@oN7EvGok^B`lmB3@JbCPr1(;rd+~)wiToBMj
z0DmL^91e*OLg=G_Ch--yd$$XiRa@i-SPx;z&;b%qvk9R=pj6=u1VPT3F1*Rl$NgTW
zvz-QyZpy5mK<@NF5G3glRr&4iM#KBP%ZRrKMX}-HN=Nk5*P~{@JDn77OcV2LgvIdE
zFt9$-eF(emi=?fMTM@U$T!|@Y@(p1B6VTIt2wS^|TsVf_|Ag%6)lB&Fr9ZCC#YVWp
zgD4euCG*aT*to=r=S0~3#$`&?;MPj!W_M-aGPR1zSAJAvrP_T`g_li#p+#C!n^091J8SK>
zd?`p>D{p1j*0Kf}#GWl`!|G%ekzbbommc$u@ygG0p$~4*PxsT+Xc+;^YI*m1wgk4m
zEf69DGgFivT>i?xTK|ch431NXB)@%aQot*jn&OFCPs%0up!@9}DbJ=aFZJy%;wsfV
zAP04eD;fXy5VrJa780uir?LOF;6pcnLg?|wokLDqLyet2(2!G7T$Aj*dQZ1qb0P9h
z-bu(_9-Y=FSR$o)xgg3LfdTFyCTdF}&8Zo?Z+k_=Py0`#z7bd3{pBs=N)GTP8-T>k
zhx~c_Q%janHx1EJPFM6onTgKX&;MTcpa%GEO?r6!iL5HKpac8G#6#FH$?M1ZR@IP$
zj;^eO{%=eMEi5HaOU;Rm{>6r*7O6ZFA^e`PIU|Sz1{9D8OAyZa4_x0WS#YwtT8xlO
z!R{QwU}~S7@lMpZ!swHw#m%ijWd9K|ylbwYl~3DV*%L2Xe2FN?P^C{n(M;)>(v3*G
zL**r&l?N>89y^F#hTXF(&u`~#@2nxpC#;J7Mvg?~vp%thwTsQG?CU?u;t=7*jbT&
z?cqT>@?*C>Dfz{}ROU9&7R4N8*^;{u0ECmUeMo#@@jk{&k{OE{dRSg>0tb(_Ed(xI09-;8(fE%0M_(kKNgd&Y>^@qNZge%43okAcs8#h!s
zM_-z3!l-)cylTH5cRu;g?6m<71QR_@!2rO+@2lOSx0zv#oXPC!xOMd~ys2WvaOr`m
z95Y%5lC?x=2Ae~RQqcYXIoXXDZ-N;EDI7$Px`S6DmaP$yEZF^+`f$@Tsnlk+vnTDs{~)1vBxTDARTl0
zky%K&rM`0+v#aWV!AGCD@R&7le^YYtGMtwaI0a_e)GnstuHYc+ehf5pV&m24b1Chc
zoBT5#%Fe;y@7
zcrolTge`=C_k-0&67n))@0A;NgldtD7mRTuOq<+`gW265R(?i=257q=qSSP1
znN0Yy27ms{8B+!WE(Cb|bd@z2p$nl-jD5Ux$%STmVMUdUF7P%}V&j7F>w=2kZ3D-vR%?{(x0$X7j>*E@u%=NqHB1?c1Lu%hyH|ItEA)=xPuqjhFm(0
zAD)Z2TVV(m9)}LvLjbxn>in2DRjWmf6I}{gY0Q$yK5Vo4!@$Xyx+Au#7_@r!A*`9o
zeo|BD^;!Oq=74&!e^Va+RNHTNoWV-!ChEI0-X7zoCF*JM_h;2H@B`%RuELb%M_W}E
zrZ!4rPS+WvKj7*OX%@^I4qW+PW@&!Q%MLVe8{PiiBqXs6UBp%$*nDN0Y^fkV`K*hu
zx7bJ3yI0_3HF)|tfoojfwS+s5$4BvVf`ypqR?WAj0vE3or9F8hcI=J=T3uVGgx!fb
z;c63{gv7diU8-!an2?urKi^zbac75cy
zJtJ
z(3?#k?6j#km%J5Wb&YAZaWCD
zvibH9&pRdpsPs9QgsTp!q0?OtHq?Asw@iQe9L+)zqV^Fc1ac^ZHAnk$15lJX`qoJL
zy|W0cCK)J;r9<0`**I@xP=U2!-?wm2oG(_%`a%?g(-$ba5DFjNN(86rlK|is)`K6#
ze+aPMa#Qd(yXAj-(40%uq&!`L*kk2}^GFQ{@7esY|ENqlJ}j!j2<*l*Jv%vj0*>#K
z`G3}J9ZDi#Itv+rP3guVU^y`wf}Ig?>JD;=52E}s>AmY#g{60!%lN-NS$Hoxk*8Cw
zO4r%PTD=l9bkQcII4@MbOaI`GiwTX-6-~_)XWV9d{fY65f5aioUvN2PcxpIR>4;E)
zd$II42E>WaA;CR2b{v6Xkc#!;{NWttminE|{QQ>c<>kype>(G+%Ay%JRi$~^?O@?$XKUw_C(aK97?LB|tPLttLM4Nf!
z)yQIgTP@9|F2X?9pWmOxvHOkiW#(#LmhZiY_Q3W=r
z#^1&jZYzxY)Vfh&)0yk-dukHegUW7eh%)tW+Kf422G-dzuKG17FgFrS<3wldX@XS@!;y8b%o?wl
zuX@rEqMibg9)XW^!2zbd)w^!(SMA^P-Uh>ETo2?Z5S4B
zwcRiL<4mxMs$Bjf!Tq1j-diMPYll(d1#d%)_Ad-+X$)1b`Q`?YsO5)nRXV2;@QWnQ
zyj{GiwDAiw=3kRsm2WIqCiyww0Rbre&S0|<;v+W=qZNRHZ%W)bezFubC!R`vn%Jv8
zCd5U^*4|rFZtWA~`J{xvTt0;?W_R5v^N^jBLfYNlaepPFb2IG8gA=N6K57fvestVZ
zulFg9%ksF>Ce4v{Q46fdaJJd{wfcNk4|u%hv8&i@qki$Hs5Z+c<5OBWzaGVBF4z5u
zu;YQPcMm1$SotB0m4A>Tal|Uk^u+d@(*@aWay#_La`{c6eHrejf9m
z49vN`KiD6HCVlO{mUFeYuZd6{Kry-=Vjw^*j~(vFfh?ibgueP?jCFY+BdL?<%9!Qm
z-P&`INYN7V*XsGE*InE$o0_wI9SrC66%?bzrO++#K8b9T-{H|zpN`ol$xmXW_$;ogmM
z&%OTo9|KyVQsB{{#;Kj`!hm0Xf5uDi`Bg^wpD{Q?zsxZ;;zsrya961Nd$&$Mn2ufd
zJmR8a;&18XlGCZZCiNr6tG_ct113CtV|?%N7J~eC6zfzMF-&}NzRITnsXkr%lUf3R4Mi|ZykbCa#wG3mzxnXZU1fYodO-Y>Yi+~W2mVSQj0r^19@
z7%1(WcdRwv*GDfH_DOEDBJ|+Y;gSc_4z20pvnuCge+U|WXcZUY`Wn$v|7=*-EP#iZ6cZtxPd%w;4uq=mTc7mmZYCog_{ak|zWi
zX|t#VFyB)JQYJN&!4I3>BZa>w=gx_rsIzSCKdVnp4%8r?+8n+(*1kMdBxX!qk50%_@d&EuyWb4p>zAz31{v2R?Pw+iSX(MtHH9^D%
zias}9S-L*E(eQl--j}z*yn{8Qb3(6fSDuF7N&jH#!7;T>_$&Dfsl9Lr%b5Xw<63EI
z9eyU=(lcLu@)L|_WzAD{cXtOHeM~c1=44_+S0%CrPrNve?G)q&MpBten@?Jd-4w2T
zCmI;iv*_PWPK|uIkxzAZg}atZru9}Hu_AQ2k)P6PKF6_0K67u~J=2#-e@{g0V_psU
zhiP?6YnQz@-oN}co;G;>Bv5gHq1oj*9I>H|!=NY_8yO<_wVSwaFx5Q4R!F+nzzK?!
zr3<;4b-fK6h#EoeSn5*Ev1HRvK+$QS8SZ>g3gAph1YtfN(xsed)vy;?PYu^wRHpxS
zy$K7~)2Kedx6M-D!^1QYlHO58&&=8zb&-|RP2mf*me3NJ_T5ffV>NPoYvh8IV6CKb
zx^0fm{e4FK&Rp{S@5SR
zK455aM*4Kg_TzXYHk!%S~`|JcmH)Q(EEe1VoLFA}X^;%Jn~0$MBQ%Fw&w2kLbgH(GC}>*b#+
z-0}BVkgIL#s4mYbORD34`R@Mh7GXXQS+Wg3iSY;}ynTkKK2lLp4(3nYHiV#`;9si|
z&8kN0&w3vVI3xm4odZ6YFDk}%J_>Qa%py?71n;WB$?)i9>AbJ0kv^C5Pv88@Cwqh&
ziaCAPL=^qdrapK1gHMrI%-D>4R~?{!#P{_T6#*@IQ%=$CavN9T$v~T)Z$|&cx;fy(
z7LiT;nZ<{_|1VbD_3Pq3Fx*|^w+M$$mes-b>W}AFk1xg!;PR)^p@sv%K$75C9=pB&
zv9@ATG{sEs`={0t
z&rr$8Nl}RCF<~gp+H)$(gKFr@$7z8_!>*zaRH?sR>`Ja%U2&~_e1y+0;l9u|6J&-q
zTU#97y6&qaQwoUm}f`P*jq8ogd3AezWbAP2XwN9g;+C94<|D-ja3R>QG$
z+j2ZT%VKYR%?5va#w-6Bq@{(2;fRwxfx;xZP0Akc;?9ysm;B_Om$gj=l7n)smXM!{c
zYC`4jaaBuR3!@cZb}Gc9-oF?X>b+(w8qbw>4t$8Vx;{0jP%BN{FI)W5ZgvvS(N%SX
zqtl0($*{NAN0iEIVWDMrmZ$P(1r*A7E_{kX4`BDl;qI#Xw~pwri}PII
zf;cjXl~c0Tc$)zu~WiPac7NvsP?QuZt|5@$Q6vdpLrJEc>?
z6r)3dA&V<1Zk+R;;i6KPp}@?n*hYr6{vx%r=!cE+i8F!uAvDzA6#BHEQ~3*JuZ!#c
zIVV1yxt=ds*`Tu{9FQ4;>mn61JW{(4D`iV7JH?p)S_c^f+t<=yy%>_7FIuJ@eTz@E
zP{UZ?z&{8E{ASo)Sxn^e_H96BvH3t}BT^l^1}CZacKRGVrsEa`bgrK{f7PLSYBjUt
z=rxFHjZ_A*wH}@Sjm=90N*`4c!8ol|6
zjAMw}mq=bc$GqUUkfvGR+&Q!i_P!1#S8-N3jETr`6!J;Y0Q9p{TM3seFU%v)qZfgu
z-bH-;zKS?2JBwViwPBmkw6Z~FA+{--){UT^1V{L2f+jJ6gDVdfEN0~^W>^K^Ttk#Z
zW^})QC0O+&agD+P2dn5(9w4s#h3nAM;5k)0iWcIBX~v1+sK9c*HN_Oi$ZO`zgj}^E
z!;ePWJ$K7y2{FQw5p8n!Phf})Z8+)+RN08D$t}2EJME4mSiDW-auvi&-bPOt))|Hm
zom-6
zrkOpEnfp}u4gYI+G}ZUFy8S}>vpE+Nxs`HeqD{8yRr6B})8$Pv5U+R6AxG%}^Qr+;
zE-eJ2nXQ}XOXJVFEO^tBe`5~n3d}}!j=Z1^%q`|D4S1>E2vvR8if(gtbU*tLXh!Vd
z>UubM
z_QTdO#XeY|PrQdiB%Ob2=I3>+s12<~HpTq2j+MTFM!zlt>%no+jm%(2%O{3p9$ej<
zg%55Qh`-w(jr1dgTd-|V#v`X|8P|`uF!v2?=`En?{zo2s7S-u_*RMVk+_=)vtdP70
z3sURr;?&$Gun^I3>-!twp~Z!t2)iSQ?^*Qvn-+tu7+)L1{|w;UA$zW
zZ^4jD|rUKa^I^RNOx^x
zrdN}cCAl2*#MPAHWu3H;JSOV}t(T=%ER^9yj}hADIxdl?BAWjuSs7&
zd^mxuLQ(Gmw;+kMJ|kh{WYm`)8qSqmgMBG|v!Ukg#j0DSc+{^N`+46&@8e+7GCF;Q
zl)`IKEC==&{Au4HruX6PWOO{ls5=7uK$sBPvuSnT6INP7nOfYr;
z@Y2`l?7VZkp5uH#$^K(ise|0W0G@}tuda?kXX@R#Cr2OwXqCv7r}CUPY&}mo=iZ*-
z&G|yYss;U~*2u@E*S;>Wk=);I3jbLPV`p
zJiIC8!H(giT@IWDDrZ`$J>@#Sa~x@y5um$Qf{O31aYk1@(qTG;9S_V199KppftK=U
zT{R{003qPWht-b|qYCy=S|*2D<=tr~uxRzn?qTbR3X_YJfdlU54--(A>ZFb+4N|-P
z%#_zs>k>`23hM7^@XEkH@9bVru8JHTxFpKl9*SC6A%zR3d`%Y_WX=UzuLNj;Y^_B2
zwkov>fcX9i@)d0&x=hY*+lAxyiKoq4p>7nXMyvhO*0OOsYp%r7W#H#`GOl7!EIL5HwlFpL%u
zvVY&oKIEZuhdEODAbQn^j9K0hG+w#hbT-E)PjKw|s_iX9h^+z|rdRa
z>qW%;V~DsFI3LaKtku+6nA%Ic{|}4$uONXaMaV?4i<}KeaPfO+5vOsAX9491^c1b;
zkohBj-16<*ydHB+IC?hzpHVYGA;Q$7{rmq@mhOAy_N3ccHb2QCLQx;#C~rj9@Oc&c()8<@0cqlX34Fxo0N
zR6ha;M>Aj~;4?TkBy!I&9J5W3W0K!nJNzq71h%CiJ`@Vs?CtaGV%Tma6(69?=Eng!
zP%!V*z2&=uXHr%S4Y1qim|0cdAt!Kup?-B^-jDqWAJA{L9z}bU3(v7UZdJD{aT8Y`
zlmX#Zx4B(Cv#DPfS}k=~4RoURKtg*~Lk+z?Lc_eiH6c6sL!(>uRWDB!-NW>!2xI@?1)F
z$fM$-h8Xi+DX*j4eXLAjF!T)#_GXDocD8Kc>V@k!@-aKMiu-)9t{WMH?P-Ep+X6@0
zVLUds7_(?$f}u{&*yijrvY8D(v|k?^TY8}y2C^me;ilC(EWE-uhTJUJt2z-Ts=)b1
z|1gcq_)I_dz35xhnSW7md^4@bkY2PRW?8&ybs!75m-aIo>0cba=d7=O@JoEf8#uk8
zVki}Q5ei%)Ob68P9ck~<9-Kc~*yXd|x8+)KGcn5NqVsXnv7!`Aq0PeZ9W@-a`RmWN
zhwCX8_GaU;5jOrbVyy(Hz54q@)E
zd^7|_M$H+t%w^u{&_?FzL0+%bK@a;SjK{w8v(w(GQW06cKi+^HiU<}-)q`QRb2zs{
znBLaE`nCJ3;g${IG7xY@ti^7uIr_LPg^zJQ;O}22ia}bug|Xy~NU^VB9wLcI!vioV
zfSC$+cg`*}G5KrWv@L_pQ#GTt(_e>lW**fG=X$Y*DHpIPbk`QKNY$Z>P#`oxX{5^H
zD^^~eqsec)ci)(2&Y{>WQ17eMocBOWr@WWcm8(V?08=m2+De+Z>vWE=@Nl0+ED^=J
z$f*fXW<0ysg2_uG{g*b@$l082=1TPdq_eBSM6+T=d;aY03=Fo547-AkTA58vdVEIF
z0X>L2P9)?IcvP`H6`iL^UQ$k~^{!>NzqfzA*Y*(?GaTOfh-t8@vdt#1w@GxDW!Ca;
zAa2#z)%iZ~JrnP;#+&GYA--6)taKhuDH?lV_WPSh>w&TVXwQuP8ksFM?nj({-*L>t
z=9B%LHa7G){$;EESTf02enT$(moI=F&a1RuC=j&5m~&p7HG2Cg+cYsN}
zPZ)4jODg6^u5NTf;WyTh0FVle#e_c?Qf0^GPyqA6MySzT8M?W?H&i
z3dTixw00%Kg_J#s9BMo*hKsI57~(8)EigxfURhGKNR61H!w+p`HdsCG=dB2ryVWbvz&awId*I2(O0UY<7?b)#uJ<~YQcoSmXj5l)}iPRqvrHU>Z2<{iS6PQOD$
zFQ2I2_3^ZSRw=C-qlrT7-J=KoQn@ql_8}|bXyzmC4Qk10uwW(66>J)>{o(5HD&0%`
zOX!Q|k;u$Fa$wK>wEG_Ox{d`e&xp57upYl~Ns>Ll`?)!Vgq3AwPTP|CDAA{^VW;oI
zh`)7Hl&{^D_!vc5T3L5}=6O~kmSPu{tB$oZ)7eCwA2%O=bhl#lm3H6vqX*LGg}^lC
zoukJxKfsJ@gD$YFkjg#)$v|IVL#(wXn2j#y%f@aUKPRG3SsTZ#ge6iRV@8L#JTCT7
zzY#OuATpyI-^CiD6~qSbt3L_L>Cll5)mgj>T>(d3ZsCeBb-s(;)uPcUsFm>+$Z(Ux
zh^-8!YA&C75obM#qN#~hIthIY(4iblND32maJ+-t5PAVLQ-3!&zQ$@^-7&H6ISBlj
zOmOYo<(+6+(rDT^3oYd>G4Ixy>{Q`o_6Hit@Ijalp=c8*bM;RDBX?jD+iVi*l83%q
z&b$uIM|NUn(Okg=`E0|($H7O@2l6tB>7`6JF_&=jD6WqhP%nqXSZ};%Px&3nvhidp
z$`DhT&a*uBlA0eW1Rq1)M%(uO7$|K?BVSP%V?Ki5H9z@_cJhq=5y*DiE~xk2p~xnJ
zdG#S0-S%>r^jvwBXHhque{S_GT-zVuxvcb`*5&3vpoxyFHYCh`yd5NY=Mq|o
zIcimZe)2)WrlaLAGxm?&+QN+4_#k(96pbltPMIltNa@tiCNo_jTnQzD=}rIt+WK8dVz+C^a`%zdkWK;kk^17Qixr^I2XkgwlKW%&bgxV&S+;t
zOAp;$uGHp97rZhzECMzBhNnhR)Kjc;bl1mz4Yt~WT#*XI=uqGp%3uR4cFu@3$A{&t
zS>lhtr-%{Q+(7y77Tj*+1|&JULwdCEFzGgJ;j|%r{KgLg7rj0wlQ93z0JoWHQoJLF
zEUWVRxl;l@j#dUc6~Yei1FR%EP9aHLcswm8=TAIRaz#zft-a!d;YGZ>9ePGebB}fd
z=eoXnc@9O*H-J-;&S1!wd=6pWq*riRMfHpkZgqR0&5a7bsl=a^r1&aJX&XYi5=*4W
zl+{b3w}id5S_uOhG3r33`5L&hzB&A&yjo;siH@F8b{$nA#zumUQroMRQf&e{KM(`H%V$Jh(ZPiab)YkI9mfuO8@x;ADm>o^+w%^qGv5B?n(Io4d
zi(jvx-!y;joo@-$;39K;vJ_N&8huA4h5PXnDLOJ28A4F+GL8>=reHW=2n{>gsa90#
z{dmP<-|_1W@EIX2!7?-8u+rz&lif(D;)le_CaTs%@a3j7aIf@%>!p1CjBSolSkK5D
z@9_LRRJ4G+?&)7+4=r}#Bs0KRef$W2WQKFAbKTgt6Xo;f_dQDv9>SY*x_l!=f(2~$
z8wAd;-n_a(s3w4{lw!IFNL;^G=ajLmFqq8Xshrygl>I$~%}x6B+|}Xvws27MW&L#Y
zYjNLu!}V*$UJ$sqUUfoIpCE;xwm@*Cru;35xuVKEGjLG-uDT6*TY0rGeIRe9ztCMW
z{~RzRvYSIe?2l6;ik7Y{lZ<@N@e98)9d%X`~
z5q{?p{GYL6OfIP5$%ChEYvaDR
zIwQ>0e&1O;m8>!<8hxs%<=YdWD(5nx-y;`JlmZ1C{UXOJQYKO)wU!sZuyFnMif|zL
z1Vd@K$0fJSmmI52Jcx2P8?h=5Di$=X{n}yQKXkQpC1^ef;e^gDS=28qWR!p76^Z%~
z7+@H{{M#z3x`vm1QY5QZ>wMTaSLx#R0|{sBm*=W2d>73N_!3&W9E_juRI`~ru>K;$
zUn=W$L0g>?jGWYsb9$<1T8A%h@?l|F-sgF~+yRs5=!as_PHKqs
z&uN;Ni9QqlB=klI^GVe6+~#EUgdg(@(+#z~ioF!1=aW#8rxm1ymU&rnGFO|v;nSVn
zfw{Hxw;9UrXUE!}TL-9Id~FoXdfNb97_e3`A$1;yml3KejXD)`)7sOT^+-WMyu46|
zRx@X_r?H1Z_vaqxS1vn$>WqhV*-a$|M4)YTL{Q)%^KI13%A>q@Kn>}(6cQPh2iAcB
zd%%QRZ-k%MHy?DVj11Mf(3&;S
z?uI}Pi5@MYJFllC6u#LndO1g!K1+~xMDIr%QdOjy<
zy{LaZ^_W0N7!Hx4jzFyeaWn7w_Xef?x8(Id-4j%;TuArZ@Sl3NRo=YGuQ=2-^!R&>
z%`0x(>!MZTZ;Vb>Y(M`e?qA`Mc5h~d%U}k8!zjim3Ll0w$_FBD%z-+aCv*p
zwmecpRW2(&#@Lth1}kGGlr{Qx?-j4^vmfJ~$26Y4MHy%*_{D3B4J#0rnWqG9;V7+Q
zsL*xi#2Q6uh)cjIM6|lpsq3;DM>lmF8*2%gA_SZ`12(S}zq^h8^r4z
zNZ!Ct)LO3NzZ6ZRxo6Kf`sm5R;w57^a~WB=bC38Eto(?0&kVk`Ymeh{RV>+fd3*o<
zO6KL|)$64Q7B$UqA)I%57`V5b=WrIQ=(SD_puDHb6uaNDsBT|9@rmsRr`S;hWAuRz
zqGw~}dFPz44xJmkQ_lyto~#@WBo5cOlnjL8?l}|PW!5_6
zR`ceOcsHbk=l3IhHJE1L=YZ7{LG0RB>$EaHm^8XlI9z8TlEvhEbs7S>=YvhOfW^S(
z`kf-5K53;x)PVt#X*|)!jyv?b#qZV+h*{SwK%*K=K=Kw#8b?)tH-Bs+gk@=U_OP0W+rozp95?YLAxcyldg{sGyo_ntQCLvxm#17U!vlL(T$I>x!2<|>pq5>
z4+v3_oc!oEFGcaJ)LY?luN?8)FocQCfiaDmS<{j|PKpdA@tpC?9yd{xTdfWh)L{7i
zi7c@rwtG$_+fq%{^Y6Pk#Ox+u6hW2*atM%vHT8kH$-q<;Vby<3(N8L}+ga+2s%1~}
z#$s0hGSpj~)`R9UdSr1=mR`Jmey$A|M35_x^IOFF^wa?En`)q4KOMX6C9xYO9=Nl;
z?>r{6Z`q>Ua}Kkkl=TR^)k7%H4^REF%G}$tq{KqE
z8DGWLbc?IZyyQ4HDv6-q2sfNpjvdJU;k5HwlC*q7jK>B``r{qDjIfn=-y=#>&bcN
zpzowHFts}JsFj`_7((9~M|SzICZzrLkTZE~{QBx-C5&LDcv~)--OOE9|N)FcAUDd@`
z8z{1E36{|eATsND2-yVZYR3DWi&AGpV;F!y#p@4#Z}t(s);cG|!kTmEB+Jy3pVWxU
zEoutANGrb4=Ho7#Ztt*btZy|s9P|C0at+^P$7BK&+X5MQ@%S?hoIk=%Uc|-*eOJ9=
z6Xuw3;#&I-<*Kol!X{UvYq5p@kw+?D6?!JDZK=D%C
z3GVL20!4!qcWZHXw*W0r+`YI3FYfMEEI7s8iaU93p7%HJJNM3=d;iTOlT6N;@7a6p
zwb!SV0~h)}!En4M)Ra*NfO%PPjFLWlb%f#o3WuvQ`_GL`(MRBs&a7pjlpq>r>po;XN?b-y}3e
zwchj%>=QQKoTckBhfO4td~K)GL!&uReKuX>CaF-whO@7RI!#INr9VdQZXDfy|C@iJ
z^G#wyBJ4MZvybZqmKk3_{?eN#A@WxY%2%zs{l&gJFHpHX`xtf2=aj};S!$61*<
zdUDPd;s!aXj8OHh*ZjCpWz4GhyzrzI40Oiwpxq=(Q%s#u=ov4*brK}}5Z_=XTsTry
zC0EVpR~Zs$6h|3beFxZvUmLQK0Yf>qpB#5&E^y14^QzxSw|)D<9W~(GD*rzSial4-
z1$Z?|a*|?gbHHAl+Lw{eroE}!0l|v?N{q+Y8}BWk^CPO{i$~@6JrVO*i35MQ>+uad
zXc`PG_kx!-4@v&U=@&2bu@R3055Q+Tmlp!_^IGX#y%n&Z2_n1)#*2z&x~;q%mT>Ty
z53a5K{2oBEgw@Obr#CCSrSu5o&ezOpsO$R9_w?L8JaF*7+yWQypZRr?#
zk?}}JA%NMKAjTJAutY<0$|pQ#j`MSk(P{`nvFC-G&zNYyYu^qwH?xTL{0tH1F^W7w
zp0XmaFyy)V0(aAQx8GOiQx>ng)L*`UKEq0uL-
z+jGiy%SH|0&=umhh{JW+wwGv2O
z4g0{G>vP1*bQ_ZGK^Hweu`2Rr?~~@eZsUIthE*lI=F<$q4x04~0kJ3~fsGe{Nsrar
zGfuTr)A4MR&AClEsy$IE%TSHF&9X4AtN8Ed6886d0V9(3T~T@i;@LiRzU7bI({eA|
zLGaOl6h*pCH9_70Wo?3Pw!=~W~vhfbm-X(JhdvoYVaU{brQ
zqoqD7x)B-I;_{-4L*IHNX*-SiAcczg_R5Q)omx)?eNPm(nUJ!iENP1G&nd3Y7D_O<
z9VZg-{cMqiNE_OdaeMON?|t-C(pA+z;yCq@0r(^tj?@ZCkAk;BW@BWEVHB=+$boPb
zq{8$Ht_0t2(OY-`*5SmIxrJ)Zxw>DW67v(>FdO}N_v)bUb$gKuVBcl
zzsE;ed9{P%roWEFa*Ib=6h-l2OHe<+jtOg!789WB))4yBYTm;9_!V#myp4xTViz|J
zfhLt5@F^MjtI{i&=MDJyfRyDinRs$x8vQE%o5M
zd+rOODQA{~o$76)McW8ME(|5M{SKygN-jYX$#M+Zzv!|=@^Ro%Ljg5~Eq7)cWxMYBTLe-7-8_l5%d
z?(ye;k6-celHtXa9guvKe+rsi`p^7-_uyDNUa8=>ee(_AG2Zt_-hUU85_kOC;E{HT
zYnzlpOamrAPN|OmQfe-AnAJKsVsEdJANrh4TKWI>H@9&zXx{qX$t<&f7Y8xk&eRs6olG{vS{Q9iv^m+p$Grg_ui72{N5sMp;4k748SJ?Ye5
zdD)0Hk0_B!&)e0Szr2%%gV+$~)cASMOV8=G??Y&jW6T1P{vNX}O}5NWWhdWol@WK9
zVGu15@mB@38H1{rNn`0n;aeL&7k`3pAXGtKHiMh6?~LD%|~ok?=8>&mP?1j
zsIQ>fiZC!epSnCoq{5-qdQG*JN*x*Wy{%jtN44S_L;t#hG`RH~A|FPuQv;fxk#?_d
z$rbFj{FSPAoo`D$In&6D23xT)rC$nBL-Esh=8C36QrYl5@-7zj$6k2*zAP&0aQ^o&
z2BPvew{*ENW4&GQFe~}&>zcsR>lZWRk*RwP^+m1X+6oL8`upaIELcG^xx1M~?#Tuz
z<<7V5f|UAuB#muSkSm0@{9VlQvA`17Bb`@=&~Ew1*6KU%NTiKdk0x8h^g;Z9<4
zr)nUnu?WEYyCpT6`|4E>{O$|LW3$RS#vlFnEc_Ve3$s$gZE<`5YW
zbLl_Y2-Kll>C7&Q9WZOrR@my`3vGBG_jOjz*rNz{RiOYvAIg7gOc|OjzUXD;>-b8G
zWg(`O*xy`Ac!2;_3&x=;dC)c5ZC_%lzjEF39{#hwV%#R7>3_!YEOE+F&+C|;Cf*a9
zEn@#nv}v%^7=B}2jo*Y#_9%KEb`3(}nrI>2>hpTbIO
zbMt60FDM4JQ{(Ap}B5@g&-k4O|MN}r6ji%BXVklfB;{aJu?+Exu=z?{EKM~O*ho25cj
zv4N$f<9)i>d3E&nP2r&4K_ydD`9`_R6<#Nk&Xw$W2TLz1Cbz|V!Rs;PxH3$2DxykE
z$tFT=Knp_RA5?y$b_dr!Z=1E^B~_%}XRV2CWxCcZQXTJD$8CeuOyvo_Bbf`k_dOni
z)j@O8+>HupQq<+>)dF&H;oQUW{3vLjqs!w^lsR&)VDVgYU143`T80zO|K2)Om)&>n
zUmM+aZ6G5iXE_a>iWWuHy--bGJ|x$QDI!(65C{RSNQ|9DP8NgU7c=vzHO9Yo9A(SJ
zNy`e)--(6z#?UZJB?p-z42CF9YsxXCZ_D?-KWD?3#p49A
z8;;G08)_dXzazj1fm>ELPilU*74&lgR7?=qpt0zDDy4We|M$Eq>1S|LB3vkc0ehJ5
zi6nkf`ifEakGL*$g!{j&+Hl;{SENyI-?(4e`YYN}R%V1+flByafy*xr35fJFABvd^
z(|pZB(I%$pP_!xjD;2E4rWK<^WJ=-_uqIJc{{?}eG_UaTp))ryMU^MBXWKmZKL{*O
zcOuuDTvESR5yr{g66K>_-A6tH=rv)t{_&{*=5n!-30BznrULL{kpdS!x-y-<6Z4mH
z6$~lB0Y3s)PE7VTbjYi|yRUz%fkxD+qW^+F*oS+fAG2G+{4_Kr7w~L}(VDNhTS~wf
zK(eew!2HUG?SM4yQ+__7{<6uZqA~eY73QK*s}xG+
zf*+JTa{RRMBeU|aN`Qwv*TwU8OoigEc9BDONw&{Z$Jg37Wrzdu8h@6W(Uo-sf6_He
zCGQn29gG|f?%iIgs@BdGDce71-@tyuYT#*qgQ5qIGihyYV7zV1$9MgeqEgvf`B4*ixlek#B>AeX$53GwJU)bqR
zCsecb?rQTAZ^PHoMbht8!i8cnWeW!bShnTNR#Fo5Km3PnAU$5kKVST{N_**Hd-DErDRR(Aki
zxH-|`LP_}prN@=xBbH{>&(ef`h*u4}vYlYj16{m5>9h(VSVEuqAZ
zxZ}NAIH8HV`>%r+#6UMy@_pD^SRewa`L*fV%yIKGZ%s9AO@%^Ih}IZ~q5+0StOD-@
zqfS>EABx!5hE5xgFnV(Le*mFckFqzzZ(cB#R|;_(WY-w{-uDhm;V2^a`M@LF-aP8F_wI9s{+@s2(rOtrLx&w+|Ip@UAt-R>7+Toh(rqhT^NS|92
z7kG&I?3cTYsH^=r2B(Ynr7>4mANI6?^v9SlC9?7czU*7o)+EU1)=*D1Y&w5X@&{ux
z#mNt#&b{@wD?5aWgr6fTtvB8rb?>|Db2PCIrL5hl@rQz_!@s*b#GJEV%4sV%u8;+e
zDI^J-1tJO{ngunJ5{`B6sUZGjxHFfdEV0x^y)jnfzW(Z=TW)Iq@NUGr*_L5VPrxIo
zUP>w?0*5t~u@jB$3-A
ze$dp?UG$>EXt@YhLVwFv@gR3f?-)TTx_utAxY#H=U3hDi%g^xK$#M4~Z-8Gc6#odtbD%N5cp*4DkOaa+vHpjRZ&t360v~=>DMdC)DPO_wI_Xi+3xBevpmPHwXHU#7caypz=CpRXtCOF{%W!IgH2w?Da&>fX$psL
z9M%4+157S}M98s<2JP7PwWBP(K3ZDlWPBVXs*NszITH`WykQw9T}(+Is{1OwJuP8S
zxwf7{v()P$VyNrksNUZ=^ubMDN>pRUiO4TJ?F!+7;E9U=?x^@)1x2yTkR9J}I=(zv
z%ZX$EX94E%o*nJRWyJbV67puXAmLw22aO|#U+T$|_BEQfejO*uO2~E53x-i7X=?{T
zS2JzD&ehe4F#bxTw(Tw`iy!$N&m_I`*Lbe|r|d|PAXv=20F_5+yAQ=yQorGZ_?7hN
z$Wc#BOMnlq#M*`6;h{`=jN;#Ya4?ST``y~pxwdDBC|d27^aVA2faFim25=%?Z?;FN
z<^-)Lj5TOc0Pf&F(fO?Ig>)%q4;x9NyLo!Z42Wocj7F|042zkHqx)h0+Qnm&lRtk5
z`!?T=2`HaQUC1xOwLgWp9)0HMAMSif<|>={q088laP!t>+0tl~b**G4_U?N4Xi%g5
z!lLwtn7^4(VwOf({&xoAD}
z;61)2mB9ABA5AUIVVZh4kh*R5{;WM`AUeycuvu=CiTX?^k}$oH*rn+kTy&uU=D)rS
znRp+zo=1zNBa+%x5Q~7fU2%q3ULE_ued%Il|1~zsrJiV%&9*&dcN(
z0}sXajd1Jx(;bD@lsIe^y$tj2D?igSJjyBdW!U8FL%ZJcu(Q6}FYM2Mv2l_ZEUx?L
z11|kY7?;c)r8(ixy}1kE^y^>micX^@f>n8Ttu$(I71z@}dGyAxFD}`mEz|gkB$z{z
z>wM(Po8Y<&eN@?kyh&V>l8u>qUmZv`_CE-vHSFM}mNwD!x2?3T{&eDyCbh8E0_~;F9y_
z6u5QL4K_0QeuLi!FuazrAF#Bf5=2C0=K{`C5BgW{Q!nOT78XzxpLn~V8mXF$6~8|(
zE6Y1B=FWmuG`G2`1k-xM$UDB3*vD@1m?668ce&&lz2?9EHpu-}1ljajrEAw|T&H2<
zjaz(GG8K@p3mADPjstosfa8d%DZZQEf$)!A-=tpSN9y*gp+br1`3}DE0um92M*)v<
zg=;V9XN*a67u-^);}u7)>L%2e)R$X+s*CE6&g`Er^Wb_&{EL6a^zL(@_%A7m?vY2h
zFaw)bvlhHgTvfU-G{bL9UhhsI$
za|<^yWy%lW0jPERxsLx-_KHc_xAEVPMR2L)^hB7u@0d*tPg8LgWFL(2`;9Z==oHqo
z7lhN`v!|~natSvFsBxY*89TJhEgR2_7FG;wdx(+fE={^>s`Jwdp-61}q7H`e|Z|wbsJsoalLuJ4EHdi!<|)m_kj3s*l_tDz1FqG
zWb;-QDdHA3@YwBpcg#Nv6L^IKWS~9YzGVEb741Y-q1eXcBX{#R!X9iG@#_oSrr>l<
z3txZUu4`1hj;X-YeAMgJ;XI#wwI|L`kHZV#?i^?PL-+qULpSFW&&vyPp)ttC4c-oqi{_Ggq2J!RPLayodp5EZU2Qs|~&jgsTlQVZaJ72_KytnR885^69b~3je-I#0uF*S6Zo9OCq7NeB9k^l
z)_vQ<|MV%gvrtcyR<0jX7pp3>=pN{$|3L7c30?Q`b1Wo7XOmIS&t+g11>LYIKHZtK
zj~H7goIG}9xBn8bZqL=O78z1ao=~5M&dwb02|tsaf|bk56t1B$#X_BOiyagHWr06z^!qE^v8jg^NdC-;w
zvK3>@A1>vBEX$(#+9(8g>;khQ%OulG^ZoEelSZu?awwssRU0Pt0pW%`X{WJ83FDT$
zgq#)?wWCW5JC^0uRglDJv3fqyx;FY3Z>zmOdg~7?HUE6=hK&WhtwR|(&s-s?43Prn
z2Fc2|mLDFv1|ta!r&d1)qo}imA-EvC&qo^lkUhT(9udCtfdM^|>}j%9bsg%;L&H$2
zBlg17fbclB{~$n3T6mxWH%b)OOS2kgw8h~`?VxRWJ~<*4n`-~yz})3?_>#XJyWrn$
zOn(HuNA=-yO2eHqHR6sd^Nv4V#M7Rhos}A5do>;rnz2#DSpI8=A?{n4`IQTWsT9hHUs{@-=
zXO+FB02l`5OTGq3{E8G1Q0*59xsW=x)?g{P0hvGJL;r)Y1H^=vC%CY+zj`wP&tm)M
zMGxIub)!8y>fWFmKp1fC7vN~AtoG?6ya*FUfD?*0H95Hv5D+C%;lLCL>4~yQZH|-$
zg-`ZBxgNhrk2#-=gutjK{xOzcYVE>n2*rS~x(XTZQ}|J@eezp(%#BLXukKv)l{!)J
z7Tz#(sIv}pBJMAPEm7gWr6%b6ibE3GOx^DO{T;W1zu4NvKK2ipDpP{kSKRoYZ)Mx+
zgUNBIC1UDCJOg;~{j_fgNY8n_NGE~G(<0IoE%;5ivLLuyu^f&UjIFCfUUlpUpk_v-
zGo?nj0n(&7^J%!j+wNXE?QkA9U#n*#=W{+VyxQ@h+WkB2hGpH;;m8fyJ`zg_7=v?q
zIL}4(nxnA0r#uzDsJ@#z7}*o+BG4?W@Zr>fKS7N%;GnDtz+=b-U{k1YLvYti*sBod
zaXkLAAt)$EF(TQWB$ZwC8*bXqa~bme`7OH~>{aQ@^ea
z^_~NIdp`V@F#4#=k=%R7<6tPJffB0~jpp;*;94M277bALJU-ByNq*Li#;I)CmVfjg
z0JyYmY>@l^G|S0$iY=!B5Dqr+OMX$*^2QIf8?Hdrq*`cBooD}vTdKJ}x{^Tsh}!u8ETel7hA6^3n<7S`mUip_L1i=_O9*?vBrmn`fmk
z=z{)y&>-7F?Axa;Ud%P73}7-Cw6ToKCRH&ufNHXHFZIV0Do-I{_!&IdSe1>K+cC}6
zL=wa#e!8u@%^-I@C>L|oFshfX6j5PjOKQV9L(Qbd6OI!%JLJAexn}6)gTz49>d^yTogcXDo)hREa54;jAZ3LL_=A^1|b~KHtsmeA$hvm(OF$2xRlf71-LhCD_
z&B3FUv)pg}2vsuH8rEeTy}ywPe`N>F
zwaNH3YdE(nRj>_2%28wa`g7iqieM2m6_y6(Ks|Y%lr689yUIbDA{<%t>5tvp@ih0(
zbQF|o>7yN!&%YFYM5&;kfWc_O|v%E9Ec;`_y~Yz3AAqqC++f^*V$Lf-b#
zE=4K{S&Z@c{{FD!SW
zo0)lSH=fc+X`!)-Rfz27MjJy4xg!Kf#J%UJIJ)wPH~jI$o5(L`E!;JdGXdqF=Tm4N
zo>PK5>}pTa)zF7VByKblstzvCqxJv&AV9h``Mg@iJQXG5}S_*WI2=a
z>H9OW;p>LJ$bf+t=Qh^`7TRQSu)%^A!~zE0@w0=~<%g0;{kA2usDFpa%n%ZEHThy;
zGq-jVeqV!D7HMUn10$q4Ge^Kr6Nzy2aXl^En7M`u)~$^?Ur=Y-39w^rbzrP3*pnj=
zXz*x$KS1##Jo3kP?v>HUNp200xeCMEy%tw#w6*^#eG*9@QeKKyUskQMOh^q2+y#r>
zT+3PE{Mo9K`~}!Babx4Md?|M6Y<$f;+ckQ)gVDshv{A%Z;LM{uA?gYp;VOa|`F0rd9xt_AJHv)yZhih(aRWGEK+nd8o~K-bdOqVqigD>7uH#V5
z(Y3K&yyiL~YfrAy^nQ>y;OTy80wNmlu$Cp=Xy5AiOxAe0G9v&CFW7fIG>A_;8VAJt
zO0_^r*E70WGaEzoc^zBI?aJ0{*~G$0T|H}9Zg?c2j-*Q>xK#}}Uy{#|aN5+fkIfr9
zQr42*o!TkLv631Qr+s=2E0r4q{l%lX6Y>sg%2o3#~t1s+Ugz`#xjC+-q$3@e_
z0xDIROz%I4M0y88rgl~*-~AnSSqHN|6@lyd=EW}AE6h^#$_2kY7dhW4f~nyJT>;g;
zV~-1uk8ZOQ857|X?=#>t&@Q(~W!fR?`jdmRTGdaNfY~m2h=lp~56N?bv!e3Udq#oc
zoMo|};q~peGk<4SN+^pM$0{5)^!0V*MO@aq*=1g_bz4!q{y=2Vru
zcwwb;_Z%}N#li~WUuIw9tv{;lL@kJFq?oS
zR5}jAl>Q35U+BaO_<4mb`=I9|*FLz{?A!q_!$@db47_k668kCIJU(bGcdf}8znuvf
z)(OoOq4*Y2O+HcFz(&U_lImerRdzxWD1R$4)rW<|Qjwdlzm>Jto
zg_$2P`$cP_W(vb84C&0^+B?-J%(s7kQ{ZR$2X~@Lp=dl>sks;+-B?=XI&C={ShQqk3V>=We5puR}MortFJMZ!_(b?0`y
zobIav!18Zs#52>xx#ssLfJEYG7Fn)|vBkadg2+SH<+RE1c$SLm^7U9>&px;wyyki#
zv3Z7)^Dh!_Zo}^PE%sx?`REfMUBOC)OZ_tMj;h$7{{O}m&&nIQd;Tv=b}~(Zodrzt
zFGd|^zXx8;1=3xgREa&0oe{&orpNQ*f3F9h$Z|am!>Pi4J#T~Ae@%m5;0ysB6JR1-
z)iV9h!v9DyutIo{W_9&HZryD-R=`b6RlRHNe^PVU1XCp{vf2xU!wEvLyW>Ue?8(>h
zDZq2
zu6>3Fl@JX%-mZBl%bzHE=1pV15Wk8W`@m_tBRc;}xQf+!Hph^taR6@>CBxRQ&ZH;2
zg2Z=?+82do<)7UL?lJOK=4Uue)wkfWIo@?kN`4PL_);ca^A5GuW3L~G-@ZNl2f_S8
zVbuW^)lZUX%ZIHB%XkX<{JkWxCKYMADrmC3ji2!NB#Vnc5v`#GE@fAbZh=SX;C^b=
zGEF8<$GrCY)+E^yXiquQs=VEQ5Sk2d8gt9$`|TLxX#9CP65leG(w#4Nk6{w4X;K6Z
zhZ7NN`!gd}YxEmJqQ+gUgsV03+p%tk`!P6~lx&|X!nBN8^I0LUi2WgFDM=vuy}N|j
zAp)KuWZdI01a0-b_wW?>v156V>iv~ow8FhD4l!Vs>+K_aIgC9^mGJ5^4sdu%{Ylr1
zoM^F}ciuHCp63=AF7iwb{3jc)D1s*D`jmm~7O#4z2ai~K#mogSw*0nw@UhA}R)fV@
zON7B8ktP5~zsxpkN20|ZW7hv5#3+jf>Hul(Tkx;TR2#2WJQGjA^KTw7;Bwsqp*z*~
z?s_!y<}J-*7v>X8f#=xZj`d8(gaDv*{5I@{n8M(R4)M?Td$Sr9CJAG%Zz
z(cXcFEMC6Cm(;ERc~5D3^0cJo?IzG9Vfl{(w$nDRY)42!RHfC)PLceqOplF5YzOP^
zCjrxYBHvZe$FvbkV)>EnFwkw41d-^XMxXS4N(8T@tnc(T?qgdYYz7teT
za&$z;`FFFOJTmS8W$2ODuMuDUz1t>3rkDDfs;iH%ez4R({HN#u>m)g^u_3k?7qx&?
zFmd@Qnr}nK%6{s8Kvt|kFVdy%82%MtFwl=L<1Ovqk1=W0sL~0=*73*Pfko{s5v-IO
zjq&gJx<)J~gU*RdyIJl86BunGWUC7A(3yI=BfIm5b7>bP+oSe0KSQ8OR
zxZUwvBITfyJbNm_fTMi={2iaA!uaIJDG;Z?vF=v-7qls%n1T3s-C`5vKx_USbTjyWzLvH@RDWI@!+%v`Ih>|K|t6!0sOI|nYFOF5W-osHCD0pH$BI@_YH5D3;%_A2z!2>m(7PEp
zZS#+*zHiATJ5T`cftuHiwD1g;2PeN^8=nt>m=s6~yM;Y}bx%9bj8G8WICf0WscT{S
zj};+CA_Qd_*9hQ&Fkz9iJjH!mXEWGk*KtB}EYwLIH0fru%WTwB7tgz2Fx+GuqLw;L
zdgE&Si6^hdo1<2YKyWeza2^TQ@`ZyFH9^ses%$Z
znu<7_S-b0cq;NpdgCK^1PqYXe9P<0?5(0&)8}^?(AJPl@g!Z9r;}K5HZ3N$*1SGg?
zRqR(1XAd5#ve2OYUUxBkajGf@tP&3*Jp7vj(x|!%7pAFRBhY+D8;56=%%RSYC%2bC
zsKw(HluosB5BoSty8rXt+(!}!6C#+1_Y3M5caLHk?YPg9l8WK{W55V8;adltM2n(W
z$W4b`b0(gMr|{HyaD}{0s(N|B$Ni(DCWcU6^a3~Z
z!*5~STXQB-J}|+CEi)?ruGfE@G=I~fnl6N5fGl4v((B!KKg
z-hq^pAV~Ux#yh+^O~oa}ujBpjDDwT8>Bwv!Su|W{$|oe@%W>OhOLlH(5$-xOt*(X*3qS7#Jwr)DN#`K8BUAIu^Cnr%0WF(tKP+i5#>8
zboY~TyLN$6EOigTLFYFM3n}=O#tH9bect6KRyK0bnL-^Bj8k;Ftfm>yfAyhss(#pJ
zCHtCfyRLO*M%QE!D33s2Y)cZ9cOS%8=N+f4VfnB)9!HGGFml*l=|iceTCPJD1-iU`
zoa^Qu%1qmIB5iGzcrv}n6C2@g7^8PDM(CShw8Qkg6
zjmy65vXS95S-a+Md@Uv7}Lx$c~Ohs>lg?~4=Fjso~
z!(X9dTYARvh43N`((xql&ulL&8y^gKT>H`PtY_9YuRoZC@0SZ#=_n(LilS|IHi%2s
z?2$35e+(>1$;TFrs+q^`#=qvG`1Cf~iA(GX9_Z%6PHde`0^O1<{T3DTVxbMZ4X)x-
z(g!}b^vk}PcxdVY0x^h}l|_o)
zfl>dk$m1x^S54kO{L(oPcHH|~riLUOIokialOFYquWAx?i6i@|IJG8x8aX(c&`nX8
z4n7r5e0270IR7UUiMNWx$I#LBaWNdduUyUN*oqExM}5guKGtYFu*-V*9p^HB;wkQz
z6dp%Bav*pK)_oJ5*wzmc6WvF8_`wg_-J(?8LC70Kq=upM4E#j$TUDQ}&VC^p7rIP@
zIiW82eb+=yZ~?kX#2mhPWlkff3S@HefsxB=pW~joSq?iVPOAANbO}y-k*pi
zNV3lwtbz*?1|Bvi1q>GbEW5(tn)LIS)>S=>JB4|ProiXU03FqPcwY)P1Jt}6)nJU;
zIz2ikUOP{OJb9A->#+XErs9foH5$V5MstvtM+i$_n+u#}kc%Cf9m)ujzXe`eN(^t+
zb6biJyqQizDz5*mxi;nwUyJL^Rg?I}%TdLY(appq^A668&H@)yQQtK3=5}96`~~Fk
zm|c7C;?_#x?{^{=^&EXuSVMiB*{2A|u->y1YquQNI8|+vI*l<HX~X_wjCViKG8@X^2Vv?0!dA?3vaaQK^nBI-_zi}UU5(-i~GEgUjs2?fnNItWU5
zQs5zfe}i0-z`4eNs|QbD1Z4MDvokt8(0dJn`w5eoO4+6MUg$k66@7Oe+;NM1O0VIw
z4mist0Y}`yOCx`dzg}0Zs~PF|HEOSKIAg5MhnptWDNLJ=uK5m8@pTE}L0
zz2jtQW$AH`mC^LSMUTpv0P2&IGs2&ai`tPXz|GPg#>o5Zlu~^VfX^PDy
zyEsM3fF4`7aR67QZp0iibgS^)aDuq0rw_9*q#2=rbmJ$*?TabQwT*y0F>8$v?3B%}#e?q(Zr)(nv
zCqi{R$
z_{H85wbW(pBX}XM)I@d_J8p69$AnULJMIZB00EwGW_S2jtB8RX&|v?~BYYBE06yb-
zaRuK~O*mQ1QYBsqJ&HYNwUJwsr(JR$D6Sf)Px+AI+}qz2R3;u3l`x2z_$Kk)GQlOW
zK4SP5r}HhmS_!aO~9XwBgvodmhN-fyI*Lv~MP#}QU^Aqgn*jp!1B4w5-
zv43^^(^nvdL@>Da_JPEyWyHBY&1G{J`$ugy064)8UOBN`s~S3AcS$Wq;!tIvl0NT`
z%VRNHd>*|Wu?K(NT!9nzI5HM4_09ly%I)$zY|DH&oXw6+O-$Sc5R
z7HbN^g+Z);0_BK#sa|D*hL6A*%_-smqVgk^FpYt?fRAIRdYhcd=5E)~}3`muhT1}^nOKX*dW%~V2hTl01
z;ia#}{{YFw(q-GsMce(dKhx^P=<3CGhB&9C_T6lP0)Zk4zEPDT>p5&KEXcwWJ`!x$
zDJ(9AhE3YDi;OVpU;&ua9R0_%HDnaPP@JoW@PN~<&KniE5*yp&eX_Txu93sV_b*|S
z8b<3zws!BN%JR4I;IAGY`2EHXYyR^SiCVYK>MKf-BP&x1QjqQ9teix851fHv-PO(<
z;{gE50uFa?Ag6er8hpu0XexTP0YAXa0#;8R0#@c|z;(ub?vaQsTu@JEMtQN*rzsX9F5^q!E
z9*+DRk+JUdYmPCmRB}*F#}Q!zeYx_+alNp!eP^Hmd(QSycYGZ0xTNFO8lmk#op-5b
zaYN?7=Zsltp11v}|ee@BF>7MxN=7PfGVfT0;;=2;rT{
zOOu-YjCNAO=b^Ps@urPMKG4y;5#cJ1Oy1+5K50k$HSCmjeES+-*5J3Tyf%Em724AF
zFb_6+N|VW&QMf`|2{)_Q-BWQbDMlhiqUy3uPd3E+oh3FU|KN^qNEJ?HprsgE3R7aC+x#kC
zzLB}pG~aW<1IpKl#tiQDC1NgquUPNx%W^|$UfcR{IH-{S!0|XYyqh^nR)C+(@{M_|
z=}7H8HM9;X-`w4b?;|>y$=Swj-TKoBtKUn-cBp7c>b|l?lP5z!-7<3Ix$98dL;8!v
zzqb6UUr+v6^zRIh*%hdMgrRhfpfHJv>;pG&Y_ANimYbk4WiKkY(8i!d0n`A!TMV2$
zHCNFQANVv-cI{R><-qF*^z+mgAeh>AKQ|_Wd~*
z+lp33*iCu-zO6!V
zkvv|SXPvGIrjskjJ8JeB{yx;C+az`bbk=yzjpx#5$Fl7Pj*J0C>k>T@(tFk#^V
z{QxczE#H`1E4NnCdS1ne7MLh>(%hL=ZSR4W`e)D#mr~q7ADV{A;1SBdF^OludFc@2
z&J6Fe16~(VLGHJxhO7z(w0sN|J}8eRcMQf<5CQn3YD=W~eE00K@N;BZRz&_idn$t8
z@fBr!c)l-e{oM@+6tgzQSJ)XkEICD%!?^yE_JCaqB?`xJx*v4akkL)7VN*<1NNc2E
zMMt>H+4P1PzzxOk{dL;ER@j`W!8`xo0w1J!74oxS@S$o!HlXgtgSrW4xZ+iFFhC`7
z;C^E)}RuCS{0dX30W`q2n#EhlkNuFOOF37i^uuc!2$t~S-Lve_jNfb{`nGH
z*-zKkC)U(%aXX=ij-$Lj(Nfi19MC3iU?VEZoe+YH#K4DICl!XTaSdfJQLHP!$XZ?2
zimWdx9Hpfd8=*~2!c#3`oWaa#gzcYbboPGlt9Fa6mD(>D{)jSDVAN$##m*v`{|=Ih
zv5kp0sn>K^joWlsBJRxTEDn*C(OexD_{gH2q#dE4o>Zv@LcsbB6h~bmSU$3~)2->q
zjjPfxiKeN$&-DxC;|$RzloL$lnNb*;@2{6NnjKCY?H$GG{`wL-Ij2g01$$guv2$Zg
zC7%o>NuxegM`2ZB9ugVe^!!x8eLZAv3&y}gq*oK*Q&*=%q{aj3&>5DO&*A70ws615
zRT$`lgFT0jsxpbl|NSkg|4rcYXb!T}FPNCQHzA@i7GkZ_fpUm}zLDT@cMCWPWoPor
zwdnpX0q=-4C`^LhWs$A?Njy;Z#7{e?{FcY(oY?URuLKc>j66dYb;2(-n7}$nC2-`@
zf5*5yg?>=@n0cl8+YMVJDy{g>9ZXczP)&o8fXk@kd(h~UzHR6uD?=rUe)9c-8d3Ex
z!wwPp^_yS9wst;*_J+mD!cAB`UG14uEEj$qHxBiXLTCg4#b#QM8yDl@^EeZ$K^DO`ZXW%Gb#@2N8xIofqWs~bI)1P_zzi7}b~69HXFY4J
z=lM~qa+Rx0;m{K9T*Y*D;YumAz|=IP`QzVU1;0zA-!h^w{SqCIQT6!F+or-_;BiJ7;*s!p)l
zGz&HJUP1BXDRXAGqzpVPPQ4DkMn^{TPiz|+m)!I|H@6Wh3cCtD=jFPrR#sWUsO
zx3Qp`mmzNYi2$5lVw!Uj2AD+p9S~CJneE!38#BZhqz-T+&Y;en=kYlU+UBZm(6
zfD5r*>Y%6f<-1RSi*U=5`PB0kBz4jEAxbEd$Hr|_1|*}4REhndQ8C#aWF#OeWrVs8
zBeM!xNYWu>Nq7$qan>C1vqcHn(*ye_w@UA$h>RUsJmKq%r3{ota6Flk5J@;
zEf&B2N+b7mw8gVWBaDd;SxtTp%Q054;_nXf(R%_N-{4&Bj@&$YpQcP}UP3oZNWMN9
zIfVLzjcFDumg4M#RSk2;j^4Q+
zjb)N|3$G;KP-*n=NG{^~95Aa{Wgq3jwGNQshoB4a=WLUDyw##j+}Tvj?JYzQ`J==E
z|Cr32Fiqhj_Vwhy>Dt_(JlAX4L!bhpPBadNzOf{fUKu$?@;kWc(Fp$b4!p|)i%ryL
zl8nWSQv-&ygZ~fQ)>+NO0f|GrgGr2QW&`8fG%9N|{-QL3NRNBrT^g-!sY`_AZvV!1
z{{-eIR>&_QxFk~0oieN+K4Gqaeu~szJjLCKAR%Y}gGihfME{E-4(=ip2OE;px^ix9
zo~x*Sa5EIqMxA@sH2Rz_-~mr}eaGiT=PODU7brpW#UC}J@f(1l{N~!4d?Yz#7!LoT
zMU%mQ)8kr&X5kQvrxx6Z*2a>rs!8`PmVZ&WaVk5#hmJkwAO6Y2cK4a+jYIVunBc#7
zn}sRL%uFA%%~Q-B{eP(`O%&;}We1r@BM;f&hrOdy&0I27X)?g)KhvrIRQViR$_<-8
z$~>YU4q69B-y3fzbqy@vWi`gtIYX>KV?}RYlN<`wfxxaO(lp^sIhDmvarrf`5UZpokz_9+hX;eobzw2iF|A|iQX^;zJnNm>Pm63}Sr~Lq_75hP7a|haM1SYh@qoLx
zGj(eP-Edz$Zr*;L2yzpRH=EqfMYtXq{XoG%Zl%IeNYLN`G$XwJ>-AjWkYb3B@*ZBD1(&fVl!+cb#?GR>76Yej#D1^*QpZviGEwk&y
zSErXXThrk&<)Ga;U;ha^By}Lp#p5RFkY!uy#t^j6<7;FQzR^-4e)JvdL!*;Sdm=`R
z39Wxo$rmcACG9F{6VksZc)(2~zEf;^#c`jsoRwwJ8N0*+_EpN^OlCUObXuanbUkGK
zQ*c37<3*H`Eal4aVQFEY3zbyh@WZ_s#}GWMc8_yOU}q{-+WN=rBER(0FJ#VF^n3Ub
z*!f5w&1n2DN}7sm?%I;W<|Dm_3C?QSI-uWu!9B#ih{n`zrE7d%cr;D#6*$Lw-1`sn
zsLeT}PU%;*hI@hPEJ+?<{f-Ie>GGTEGO4Y;(z#a^&n|28Fw{nKV`qb718$S1^}W;?>PFW6^k-&87xhZWA%NS3!4nVqk4ma
z<_vMr21}ZzFvXkfs9e}K*5b)N;+NCw@P~lBD^WjZ*|hyKn5K})oP?2V%qlgfCT+mF
zHT-HZe(ckt$t}?hc>=Pi#)?Qhcv-CTJL=>3D{MvZXv_Obmk(FVrwVI7B%LHK=@jQ^
zsj{Sa%Je^*I?$bIHdmR?juE?|W)Nmv`&Ny?*@pk+Vq1(EJ4_e`6~b
zlxS8GNe}uz=Ux%P~_!0#W+1j+NuNHsMwBy#;b;&(G|c
z14<_iSYeAEJ?nyLC+-%_i4x?-6(0Q9y-L2q`s%NPez9k02DnC#efBs};+JKtKi84Q
zMJS}VZ(2Qqbno*$F&$j!Fv_z&Jx25L>NH!>!75vd_N0rzn
z*C|uo9XdHmHu9Xv-bDYlwnXX16clS9!7)mt#r$#PXH!`j5R+f~_ylRcS$x0S!ZhA(
zJ&&Ldn(CX7crZg*(iMJ|=Hud&B%x0_W`nyBe3!=X(p`
z`=gBZ$kaRg*$l?&f=D4GG>bagjJta5?7P@*Dz8{6IV&ys3lLS>v1-DuNTwGpONjy5s2
zy|^hv@*_R|5ILPjAk8GavMGMR&iSHbdhmHO8^zZ!vsapEAqq(Wm{n}x$;B5{qFBdV
zhVA0UO~oM$Q-p(oR*6cUS_P;Yf|Fy66upfi8$!||vvaDZ>~$)hN346Q4DViw`t<)f
zNbxj7?=+)(;ou0oMn>-XW&3DH*+MnO>Da0mJ_oNv0+3ARg{JB}X_Sjeaq9B*lhfZJ
zr+czi9};wDTc3%c^uL~?n(2Dk;o@+@Y8)C{Qv>_*`l1uhZfz*7IQ&vqIG0kvZ7ve6
zGK6SMW#!JenHH6sN3x-)a%!YjyYz?AGYhoYXX_p>_a43si(18t96)LxsT-huoD-2F
z6$&a1Wo4Xn#4&S7tm(pce?n#8>pQ=yW}fIO$!VWW{djBw(`IBZ^NhoKyq>$7!de%;
zlCFXNO0F6xMF14M4O&05ch~dl8iStj4zMzPRbs8##6oMcO`^!SDCS%I*wwMK*1Rfn
zFuYhJ66u*>Fo{>h;%HAi^qc{Z^XI^;4pzU{Ff{~F_AM#MW(yBXwLI$#OVkPviOdjr
zinCICX=PTKOdciq%1{giCC4}9HY)AF&BI{QUM@s}6wByYfhwGI0|wH
zZ;^h|n9p)kvu#XTcw}y<7X4|Ew_glid0p780x)NpE6p+)&2*>?q{JnwPH}QQ`dBS23Bff
zvIox9lGj{NmFRqMwatQVV#nNsJ&3S*8`YN-6c!alhQCWX{!CVx|=q>c?FX%nkxXTFpVBlUT
zE>V&!o(WUQ3`%X8bO-9tD~%VlabviLe!W^#@@DP|pAYHEes&jZdm>$Ve^EH?84c(?
za>M_5
z^r;|$?IYbv>lDmE&Nkq1@3>Hj`$!=Tzts-?4y`ew*Y$YI?I__dAHTvon_gRY>K=k0
zV4{y>%Cc(#dYA!dehe^Gc;
zAH)5FrNR>KNMpgbab5){x5)b5#EJgAkTCL|0>i~f@hynyh>;dj)`*-jSf_!Im9g-_
zPrhEYy9Y=mWHW5t!I|dxN_VWO@vHty{6)?_Ni}FU^ZfqpK6?igBOd&5h>6Vi0HKP&
zDHtPj^PJqMhv(ao6Yv!w4F)vgBa{pD#^lbbEE>Ok
z83an=etilD?Huq+kZMvzRj?v@WH6tA!>GwY?E)$R5=ih#zMzbZXK`Gsh7S0c_NlY`
zSCZS?J0{N`BA%w8dCGVYGT8MI*L)fjLFNDgwN!fS0t;?w&RmR}9!xgK#hjYOksqLS
z*zqJyx^ui2EkWsxxB}qN*kKVNmWT>#pHbqq6s3F;Gm!4QZOU9La@f?Jv{V47QL2C@
z8>h=)*WY1Qb9}RYzP=nkoNY!mayxC4d7w6e%kRM*kf+%bmVLQosH?A=GuQ~A?*~AY%a6)FK3rei
zZ2P@v{dYOIkNBq?bl;MlWS@Wa#t#BHNN;e9{qLpGqxEYIZC>GWJc&mf+{>di^R9bD
z_a?N$y{RpGIaD?LsWWbubylBe(SPaxD-WmsCwcgb;ZlLfTfvJl63FhSNIfs7=i-dp
zF&HZUCi$qK%|t|@f6|Lv0+j&eZt97H$g{PImn
z#8Hj+e_hHyO}rrV5O>oReQ(Gqxaa~Hphbh1PG0@nGVNQ+srZkkl`XfCcDPZ*d_*1j
z$8Pr-i@(c^kB^q61dPMt&T|?{a)}eWgNrvzPE&5q{3qj)YrEAl3&$IC7l_*5kWQbZ
zO3v=s(UqmAkH{oAMQ2EQi9)h#sbRYY*J$wJI4QiX1(}Eboo^NfJM(aIup)&ewwEFs
zM^;9|7DX>m#Z|9WkawuI(@Azo>6V;HELjM>G?v&877?$$0rw0Oct9QZ!^xqE!yOCY
z1fJLB{bK88@{>`ECf(j@iy&aRG{RrHBMq4!5&+`M2C{sK8{=^Li&Ei;`$XitF|(d<
zTnGKY=Z#YgEbeUq&h$B`MwqGiD-6Uv4g=X#MPn0cD3(=l_g}UEj=1Y}itr>k&U%S*
zmJu!sicn}~W|WUyh(LWQO>o$y(Yb4h6nddGhp;qS6zb6951K8#ikfGyGMAM#bS9xg
z_ut)kb)hdAn;X8WzElU$@;n6`oMykh%!kf&=YuG;_CZUTJ|P~NL(R2qnMQa0X_ya6
z{fG}GWfqo=dYMO_js8I%_{d}j5TC^Cwn-vn3HL6?^LA3mHO^sWy8dKSXz9I*|IE-O
zQkm|v-3r+XW7D6!bJ&r%zagns;u-#N39*CJh!TJnNN>Ly?l|m9bguW&72rGII6v1?
zxgKmrw(d_C?fyu=HudmTf+6pmG}qcCGAF&HA=x);3^{ipN~fR^7TE-%zbF#)rGTx9
ztLxifO)S6y1OOjMX
z^Bm3Da@(W8fgT9$&&01hzpX>R6JXr+Tt9p%0iL23BGV=m@yQ+ukw?X9XlDWEF|{2t
z#ge#34j*YkRUlhHE*aO|`$O@MI^{aqB8J`6H@EM^OTI=Kg=Wk6LrO?*V={00lmr8O
zGM_kXo{?@IyQB(mK76V%I1EiZc=t2+T`TXL||S~tJ-=#CFtPez!frS
ze6b%tvrizOSr+TzRIX{R^y!S}a%U(|pnbgMB^{i%Try1gH%nEFZkYo2&{=bsuI+7^0z^Vq#J`KMGHHA%GwVC3qB&gM=*(Ru;f9fHH5ri1;GiGOJaFKO7
zvDUxlx+VPL!m!RY-x0n6Dp66FS6R_W>8fse)_6JRdHtsGn~LhzP|a8_W+TI|J-Xu3
zRrQTAN>E%#h7-l9bxSGF=+}=+2bbFVMT}IlY%IKYjGqdULE*TTk&E`LXLJqzu93#;
zs@2&7#8`)N#7L0Kqe!Y3+r@Zo#T{4fx%B}&Padt@^&VJjSy+~CEi$$VRD4OBIS{aF
zrGTD+lJcVLkoIVlAcpVLgDFFepifQb8qC7$i$LD{;?w?YLMHjifrpdWKdSf9vF%?@
zu)C_anmN=i2YcC&bdZ_&lMlE9*EQg9-&P8$*vLd%3buB9AombXV1oSz^}ZE#M1<;f
z7BNxgyBCQsg*nL=qPaMJ_?$S@DRSG<8m*Cd@L~{iGex479{k>ZTPhM*#kx0h>b2A1
z(clvfY+2HH*~htGT^?u%)jr3TC_$Uj=@Lxg$t_jA=x$E7TGO;X7IOV#9J1HW>S<%V
z)~Hdhs(8!7B)1&WMEm8-G{OK{WzTUk0$Y(myO3>@rIxW;<-#w86k_-e$m$P2{yZ7O
z$Qm1}d!?>h_Jwy`^n-~=O0>K_wE)Tlp6dw$qQonzk>`(0C5JAul%Gc9W{
z7FMy571eaW@_y^sY&F3>bT&7%yM*X+A8CJ(e8L1Lo|oMkAK+oQL`vBSK??)Omz+W{pYV`8pXK8o*8
z!(1EdI_Hc@wVdw$jpbetr;R};!+L+0RBKzRO
z+3;cF{iHQRm9^$5E`zmG*j>7iu;DH)A!=oTTp?fBf&kscR2}gPEm3bG_f!X}ZcZz+
z6X2uTA`sMA>r?!Kd1#v;yTsktvW&;`q#?1q5PGEaghrk{RwSkNYf_Q;jgF=Y!PRZc
z(+bWcZBEA75U1@zf?~rimJz_cbw)DO;hB*Tof}2m&BT*Zv|uBSIuP7JF8v6gI4Q;81HNjet`XM
zFKhLqY{CoqLCaEji<{2^)uZsH-U4VK3N{wULmSIr$v4fzaURsrd3Gcy3OIw7*gzM~2
zt=|N>7ouz|A}!f%NrbVM`El)Hh9`3=0&#clKmVf0W;U?uaYPa@7eV8H3n7lH%J73K
zU~ki=>E}j#>VCox>>a8#`NqC?z2!{JIeeo*S=LFz`SKr1mSRROQv9
zD2pW3lg&PVw1y}K4?mT>S{)?)25V!}l56Sap!o1S_Fq
zT@(1W)4?K+dy9=kOmY8q3uwgFd;0)G{)cG`x4u1vr08|esR>X^FYL$sN%@F{ldh70
zJq;l?A9JGJ2a-{L{T)_Y0=X@-`bJgF&lRl6hYD<=465QIW{#*Rc=EJ~R(*J27ynT=
zv*gAVQt;u$tLJTun@!aU1pRR}q8qF9rZ1q_YCo7OWOUdVGv?dvWCHM6j;Q^F*Mn(XCMs5?I;{4Rm
z8S4*C#M+ZsAUq3Se4N_Up+AhcLf`n_l(<@4QGrr53c7eeeMjsENG%jV9Q{QQuC9SD
zYUZCENLjOWamM3C=yFjQqL0WLSEomiCCy0Hh~UO
zF_9e6^b#dr!n=Q{d!t85B>yTZ^%PNIFJ)d?n}zwVgc#HSNJZvt*~&Kx>x|b2Xi&OZq;+apOEG*2DI|M=6Lv!an}c2vg+%mD=UJG
zL$ZCl(Smt(5JpeZDphdv!3%U{*ZKtsU-b*OGgA0=>2Q97_ZZmxs;U?`K;*ellcPpC
zCA3{t)Z>7Yb|;GOD1i>h!wkZ`!$0nO0!pH@Kda8oL&x*PbCliXnUN_b1dApB@|&iR
z(gOMobO~-K{Vq=dDnxztV(rA1^xAchoyYn9%yhya#X39Rxq&qC3hWxu_?nxryZRT11X=^i$D*y??Vr
z*FR|1(GU$r@FQ-?<526PUlR#5x=1r&6fJHNY4D0cd-RrNJ8;?eo;c1dez@(rIsJZ+
zqb^S9oSlSdnMa0n4t4h0Tt6nYN6NC`h^=EkUEN=Yn$2v_VgfB-3bX&60xtDH;}>+F
zy~;SzH5zw9D*vbzb_p6Q7t)7^djE%+G#6=fh1?ZVxq&=J2(|a1B86ORWhaClfzyK|
zkNyusN)Rz1l{HS`pi5r{*0aw9E&&*jzES5{W5R5
z|H>-|K6}P_jW;xF4%RscvwWDvE$6$&G_US2nme
zlYlc)sAkFs3#)i^cFiedrrhBOHx0+Hr36RkDKAyGP>itbU@U{-R79JI7qAC
zOdcQF!Z!N`x_egFe7?l>8C_qR^%&#cE#`dm^|t=rMkV$2-z4q;a1sI!xn1sjFYuM-
zfXshj1mSu_+olU0Sf%+BX3GM8H2;CnIFMFsiO>02208|#t$rDAdB)jAi`lJ%@|4Q_
zl%cP1smdm^)PGR~dmag|Z=?MG*dtzl?}bqAGMpEPNd@Mr0s6Ji
zH~C_Vs|_3fqL9{xq;8%$Om;jG9h6sJ%A>!!F-L<(N8{|3{_5K_X)xSx`v`V6u4bMfOp%6P0E&LLGp
zoeXprQdTl-QY_yagC^V6362nz6D6iGu&D%VP8bL;HzGx%L7q18{<{U|VER>dI-&RBC1uE7*!B^T*XWg2w8UKm@|FcW
zV0iOr4_8a~0Khksc@U_x-wwE`OAbiu$ihgavPThFYeqG;%E$GFj@8p+2
z4Tc(P(}BoYF@t)qIU)a?5zVdm2q9Haes!T1qZNASoct}l3(W}q(%5Ir=pD&H4cGZ^
zi6k|Y0pcg8`~{!#vlv3f$%Ih%5aqGCr!?bZ=F*CD1|d&f9tc@#zRjl!r8X(1eAcjx
z!~*)*@iWNptHJRZzf#@A%3cR^0-v7%7Z^L)*MTYzvZ=)RuY?kBj!H39!QSyNXw?(n
zqU_6?u~T@^fj}u@ek96c`Q>=qyp&-DJ*m6S<<%1W_lj;Djq_M5CNVjzV&_Y(2R2OK
zV_2rsKa}Ia7$y1z6NOvyuyc5?^m$@mep26ldh>3AHOQKzFi7+v`5iA02hy%gg(0lc
zgt?2AEpT&~;jcJ#JY1Aj{xDlmcVovV$J(5%;SM37&w?sP2d-&XeDp1Be5DwH{f+&t
zAi2*8@y>bTqRgKEMNrpl40fcG0Vdg9l!X9VoB?;fry3Aq^Fb&5nD(M^$|~|C00j?)=hsD`I7@zp^jp+@
z!ehUrI^KkVRu*0#593pB?bjVPP7@?2Lj@YW<#QTy7uk%g?yeBsr#ED6EO?WZ063?z0#)CNTFo!bcWsprX
zqmCwDXsK#2JflvFw?x$(5JvIlK9X$mAxQQ7%=o=5f9|WwY(3ie>&Xln@B<=Ifia&>7j$MZF;(*pbnOfb$jl&t3y!h4yyL+th
z?!!UVlQxORx#U|VcKex}*{UCvFN{87p5MI1#FVr(y~-Ra_fD$JTT55OAuR9)Hyr(AL+*C#S!RBlB&8ehV|w^p#;#B5*c91Zvr}ccqWM#=onvmUqvz@)Tw_aZj`lN%
zJzNN-d4g;>txuqHJa+6)y;a`%oU6Vg+(91a`1DV@b@Z%n#I&+p@gqN+|m5-Bfdk@qL?&{`zc4HF4eyw9|-@cewO7@iO
z&Bcu`snR%F7bp5hg{*Hjr@8gG#pl#9DNRxD`uv5|1UiRF6WcmPe+508JR2K-pg5Wi
z(^t2g4G*Q12c-uwd(jCdXy+9}5`&P#GoEH>Rlamv%9?i0%e9P^(f)dZ(t3rv&9Bs4Ehn<-zbFS0CPlG{(L-H=U-{=RKdB8BE}Gh~wT$aL70Zu69Uqs!
z9gFJ}yf(85&$HqpLIb}EkzA3>;E@`T8?~>22xG!1iz!5IjjkQ3c_Gr#2A5uCvH&s<>
z0It9H8-&X^B!=$(N-%KOWN(+wD_E
zUcAcIG41SduyPEiS=lGizbHRNJ}k->*0#Lag8L!=;Lz_kKna_cFb7X}`6l!36Q1qA4bMYw59HR(r)t>aCZQGzssN>$LZ_SCRNtIdvb1lYWw|8oCArd}H
zA~)_ORctn98EBE@FN!g6w}i#v^@1MBaW&HB5ca6D?`ZXL-epJkhQ_`*FatJKV-pOX
zq+bj?=q?kG0`Kxwz{93{)`2?~+-n@~qpc~g%?$)@YMcR+PhB56Zt5}}+)EBWtn>_T
zj6G5Fs&j75-%CPZn8BxpI~6&Yj&BK}ytDAy(Z49)+=$O=J(~^R-sM{(WHFz@igov&
zz8%}Sheu%E)c*N_%yopUca7@tBe1V6!KT6TkDhUR2$}*MlP1#l`qd=$A0*>+9Y2FO
z5C(5~BZw2aV=GG#ACPa!6DELO_F6c2?u(Nh^-0sf_xw7==rA~P^_&ZoDsPOHSaMj1
z91I)CW5Tz6gwXL`{PrHydE?2D_)?l7CNif<9us-tW=Q?VCyZp7=fHR3b8Zuke~uu8
zCs#mYa|Wke8-Gz4*5;qPAX^qg@yM^R<3|xwSWoFtv32W{3lG{XEe@z?@--%s=;fp&
ztBNV04JWyH&o)Co6yBXI>?k%kxhoQLx`ru|^l`n|=ny%}3Z8uIg^}-i3h3#r#$kO9ZBQ~rKRuvh;Ds+wz;X{aZBNZEqB{VR08bX&AsaMHG+wF@D8DIYhsO93r~
zx34s?_q}tD@n@9(&pST#KpxUxCXC2&bMy
znwq~TPE5C2zs05z`17f8+mPNxBrEs-Ek0czo2R-B30}ZktxbiV0%@XfVHG3CSE+d2
zXQ=4z1vxulXm(^v@vD}PxSM8xUp?FV^0#kXU;XD_{+ESw2qn8~f$#=&lylqT>=)#z
zDd@C6E0;=>R&#GN8ys*{WBsu4Zzwuzr`n06RBAvr!H*lr88g?=pA)A#au4&T3JI9w
zf$g(|xb#C%!>{Z^0r`3sL~X#PbxCS5igv;Gz*pCLUwx
z@KpZxohG_h6XwY~gaI{I@*syocydzOzB73`CeJW)X(#`!%$(^=b*JNtI>1&a)xEp^
zdaf-w0o^W3+q=uFr;7#t$8>K~yI$g2vsnCH{%Soj9n3}H!(R`3By|IEB~3r2CDAB@
zM*u#+&H#ZC(G4WOFQRkOUFX!ShF}ljM+KVKzX^WY@ikN!sTjx#dvfxGl(+3)*oxTk
z=YJBbE14N@FSf{P%qf3xy|~_6!ZZt?XbYWHA;SUmbi;UU;d
zX^7AbW&fN*%^#4svaUUgM#?YG$@$gG<`cljQz*E2J{w~Km;#49J^u7?#-Lpnlt`ep1-=tpzV}#ucJ#|1r=J!hqR-h%O
zQ>HGCKs~P{`|UEvuCRq~O-<*GBVybfepQMfIz2lrUJ~24T6ZYR#X3LTaZj|H|
z%2-iki#9f>)rZfo&DHkixVzsK#O^4z@U*9>$x2bjI)4Zm(HwI4>4~M5ClHk=gZfl4
z?S5=qyi!o;_m1lnO73Yj9NX~aSpM?uRH_Uo4yB9wHi1P%o&#mNR6SdR%;kGDx?bwR
znWNjO&zZL84QBRCuXOQKqHzRe&W_G?
z4P6$K7tRvR>-cA_}4IQbmIyoh={MsQnj)x~6
zdq{s2Pyd}_>N`L`@_e7PZZQB%8qsOLFpNuPXBv-XJ?Zwn6yqhs?4PS5Z#ug!WlCHF
zgRpyy9&0u$mU1Tk^y*@}AM@E{Suxl|;3oI#H<4BbD32K_jkI+ZFCE{@-+HWOug|>r
z(|yigB&W{zOvbfTfJ&WOx=d1crpuIB^z4;Qi^1B`6>R$w-54F}J*;g7tSDYz7vOwy
zFc28S_^rna{1Y%duP)o^Q-j)YHBa!9zHklB+Q{Yv&6m|7k_=kE)5!>PoQp#DB(P*(
zIIXAa?-?An_vQDv%4W%q#{B0Q{J8XOqN>%kFej?GNrOUz|A!UC+-O&Pm@j%8_phnJz(mrXMVlqMWNnsRHW7P
z!zY!XSDflWZ1(KC4ugt_m-NS{87o=XaVvg{@ka(Zs%g;796wbGgN+XNZjwy9?eomf
z8o7B$H%QB%VYZ@2pk}eY$2y5wvW79PDR5zRb8j621Fcd&+`2D&*(6x3!onFf^%$Xc
zyOCRN%_)ZhR?MCCZ}m7El#dgZJ7H5H=k>z3><3;w%iS_@CMz==nH+83rM);CrE9p~
zWQ_XwydMiz!tXN=KG;sJO-UqYFlU&0ejFE&nOgL@{OEfMeRYEla4~fqz|gU1eq!5w
z0Hux)lDBf0HxTl$=LaeGO*c^z32cY*xae=
zuYF1#{toZ9qa0#6anyEptJJetgtob*+`6Z%AHHI-XFz*09G12ouao^KL$fKxr0G1}
z0Mp$2p{22H?Trj12dhj;x9sn%K;wvw0tW3AMeCytneFA(n)$r+v(W1eD<+>A=8Ag1
z!5<7T<8Jjq+(O3m3{Lk(QZqRcKiJbOSeYd5uI*xNvNyjtp8XJLk|@Avf^_OHL@Rqe
zT8*ABpFRJJVza`{Y|#?CG4wi;M)>fUF1(LkCWf8#MMZhw%V&{9AMz^JO5RC;Mf$$R
z{mM`9U>f2ZP|@lCKyEsCGpf058cJ7gOpV~w707QNvKT#^TFyU1Y8owIzM38=L$
zqHIp44FF@^q$aMOX1b5@kMCl!&M*fye&<1{N3xz&)DJ%>32TuQ%;IfV)VZcL5BSop
zDP$xPYDlhVS1v3xZbzoAU8Y*G^<(j~%jhWA_}1+~(+WDWT|m6z(`YhH
ztW3h6??%~J-nPfe*=|*PKej&mYI;_I8
zXs#JN3nkYj+ll2c?b2A%88>i$PbZC@s6MHd@bkE;>Z^W0)~|@Nur=BQ(VX4Bcy7j1
zk`_{?g|qZqSevnepDCM!ZX^b_6Z@w~A8lfO;ey#p(E6{6HeKO2_`xv(0KNhB3o);!
zfPLfA)yy$llfw`#*U711tQZU#aS2jayJ#x)MDF!z^)0^l70y)*0@&WxCIX5YPD**k
zg>oa(zreQc8(6|pDtDKbSdGtkP18t>)zQ@oRqC+BsedFH271(dvbJQ0{dO%sT3gAA
zSvK&{?wV{Alb)@zXJ$(_0N4ILs@iIxkHlK>Y$3U<{#ezk?=Ho5q?C}C${3TObL8sR
zF^IvAbVIfTG^gzHHcu6?94c3_5Y;&c)g4y9(!zQc!1jUx628a`H|+GTefnxxp*QOu
zowHxbg&YU8+&+JdX)OJo8-7RZnHI<3q>c%T2MT*#TUar%>;Fdl0%9(+91m_i7{Psr
zg#O95tIXAtu9VHsV~HfW57YT}MrmYJA|%UVm=E24D4B?4gKY*}qi}3%+jURFtRHXI
z15D82;7)CZKHoW}M$9WJt4EQPcORY0189i<>=cFqvXw;WspDiQsr6S4SpSsINxa<2
z`!1s+2UnhkbN^`VX@ey16-~5Wa%f#T87&*urzY83d0BT$k3Q`m=>jASD0s^wu>l85er;UR&!jMZ+ulj(>x=TPl}e3%C7n
zXz5%dH~w$ubSg0_mZvg9AdyJZqi+HH!|)Na=qqKQxSu@5+1cB!&ecw#C42H8Si7VG
zPs|O%*X(f(m7y&TBm;ipC6AMj)Zn;B$p<_L^a62vCIIhl<9vS50{U$hk1O7%;9D<_
zg!xfF_ek46R}}39G|)eFnYfXffh3&}ypGV^$ElQJi*Dr&`2pbT0{*9S%;6jS
z)8^sS#pWH^ul-xwn>{qi>UH~0XU)pz{eC8~EatW)__Fkny1n_N
zy&>K_I_!iP?SATd_OpcM1D;0Df+)aww~B)ydK(X!XR4YfemMQ{y*9DKBxd1QSOz|L+zk^Jn|J@m#%izG`Y>h`(FZ=aDBN+jEKh~kDCYb*qJlm+
zi{-?bFYKwaUJhyhMfsJ|qcGl)OcKSFE}Ju$-(%q@OeJDn9XBQ~f?EoH0|%*Fs64=h
zF;~Xir}-^L8{u8DqO(>vojvUzFbqsCNW%um=Y-FHygOh$-YP}G6Q>VTshGK7kMaiO
z92MOm(akL#bQ2<&E=@I2&Cs>LwbzZH10%q2fVVYlPZgr`M#M}Kt_OZZ8>&B9p%a99
zhK&f|HaUZO=S_)a9z~pQDP5!f!#if+ELI1dhy!jigAunUID5Erc8dvWA};~f+mPUL
zIkspqgZGco5~Y~=i2tVhJjpiOzaiAq{{W$~1qug)_ZHeGPT7fbYiKh6e_9sFME-w9
z0=X8iBpeP;Fb=<+?h0vj;7Ay>hfvr-jFq*N^rGvvet$)HhXcm)mEZ>!6l$CC{_5!0
zv_3Sh`2Uxfl_J5AC5(eEw)dUth-(UeyTB@dp@?`?{|ltu_>YV9AYZLq2YaNWsRoW(
zi`?D4WwERCeDC*7TKo-T6;Q4W-c%!lANdA1RU2M;2$v`qYeGhpu20sraL|&Zeo~(=
zLfZ-Xi(*mq7H0t@R`5vRdJE<^o;&EJh!O&A4kaMaaqWcqy;JX%0hnJJMdWz-x_uAl
z(0#+vO0Y~9)td(0z_d>ihOT1xxm^63NrbzUk#Mo{?Apu@dY=TIe^l@ECb`
zQ1J1VVMlTR@``ArJ{@VqFOi!PKM5sKBK2o6YnKqPXBWuNb5IpBmOq*)Ba
zKg|7B$K}3UtbBJ%@N{RxS34QQdQ`ctNdD*ZzONfD^
zoLz5=u>3S_Rx)~0$>ErONp>L-uY0KOX_%pIj+Tc^Rn(*Oo@Fx?bK~d_HfjjJd3;Os
z{T8r1&6s;Ey6`)xuGBYBF`HAHsYpB~DJQa}T3~RrtW!NnkehNDBOfSvgBt=!}{RqZubzY(+If
zyj#Q-Pwg}=Zq2EM=X_3HRhqq9(rzNOa7pJoP+6oNzl2UNTsM&84Q~e4V_%MIC3=q<
z`zrL=SedWx0lggX2P}RCTaGDNm>KxOHsc!#U@X_ean9r|nfWlp3zFXSM!mmoXHg(x
zc-#2Lj4V+@m$_ks^ND^oO-4pq4DVQ6hL?VQaFuLH*7u#)EtH$N^*e%eBTCK~77T$!
z8Vs@=zQF+)q7ma^W6?iP@j{g}s@058?AKc
zZ
z9y{;J8q>3C}GRnh-|~HT5o18+SAY7bWs<
z(>HT&uLsft)3{Ct`)7D-IgBId+y1CKoi#z+JrV_)@K;5N(0&(T(jcS7uRu9EIuk9a
zmv;61qO-o1xnFE0wd8tdMgJFTZyglXAODRmAt(wc-5}j1T?;DRT>>hN(hb5A0+LHe
zOLsR*BhsMK-Q67vY`SlR
zNG?eSk8Hgkopx$gF}xT*jbT;vd0$eYb*VMl;+iHExZe9_&!gphTIqW1=(RD=S(Q`@
zVs)#&(dAu$+J>xt1|=^e^A|e7w~3{=N_R%d4E$v#p1%QAkUJ0&xZ3OP&U}tH4Td})
zD9$J_5N6i?o5K_rL_LslMiic?{0Aa~4fYT0ZpsjBK$($uU0qA##4Jv+m4ZDOh=Ajs9T>7eqhi2Ofa8zG5jqK
zA7BiO9dxAI{(H>s#phvgDm4)Jg#bR!#?f@hA!;yEywFV_PKslsE%bnv*gMvY4sc&+{W9ooBTCTw`6YiH-&beg
zawj8dk|Tl9j6eBp$uwh=k?h~H(v)~wkf)vnizLk12{pDLZ91DpJU80lEwWuW3Mbn;
z{)4KsZ=Y%uZQ|w3Bs6@JysGuVE;si8DbGU@N-Q56f|abxqjoh)k}qN^Za*y}T
z=<41TIlJ2lTu{Ct7UtAc->KBxSv>S^*l+i#%|-C?X?4*<^id=slqMRRNpq@-=Y)27
zX^TwKk`B8;mASRSZ-I!piEj+D+
z6?uvMK2h$d#(c`HO&z~ub~z+=v2)x);R!{lFsD*!+0%FH2`V04^Gkvah!qm$$$&a4
z-8RZ_dQZ=AH)fw%Wwq-DD+f2@m>
z>V`f>16>~n0ou&z6<1mw8}Z?X6jPgQ#&B7K;%@1(op)gPyb9hlg}e4o-$%(+u1Se-mn
zBfBb2#p@_rMI#NOC@l;T>5az0~Df)tl{*WU7WGlgQY;_*yq*$X(ayhI#qM
z=Jw_7qH3P2HIuvfKhVv~U}q|ET05l^)TeLrL1M%dr3^ujnJV>`qok6OLwK+=0L5S}
zq<4G}*8KN&fkdwXlDBLz=p*3vvxT{EWq7GwBT*>^(z6(^yRKcAtRYyRC7_0-2{=sAYmF3*U@N`hvQ1M
zYn`bw>*23aR?Qgm`owIbT9ie4L|j@JXqpEP4W*hzKQQT$b^Ov{a0HT42@s*uyVSI#
zZ1BJ-JvP=2=?@Zu*!B{1cP3)gMfvSqy}4OI96
znHj81*-=gG)?~|Kav)ABoPs{I+?cMk$2p`GX~ht{ahj2}(qi^bi7m97`N$To&k3fl
zc!2sU4|_ARy;eeT6$!0_91OvYXfqoK3>HHE+DM1G-@yeW&855V2I15A<^-s;xNj%T
z8S#TVw_JL2hA~>;DL>NPCYDxnEscr|vFRwPaTCgCJGf>I9K*|`-pM+jLvJPiP_|>;
zS$88`9>ah9i1w-ITFkh8C;Ky?GH=?FbU>3pn)Gzyu)%#dhVTk_BodkpNz48NX#?~I
zuQ-)E>yo#V=B@6ut&k^fM0_dOz9vT-ETC9?N~yR7y)P@Fm!eBAH&i=8&lC-kJp}th
z>ge{&qAaLC1rdMeju2jVMM4QR^3_lIaNU0dN8t66Y`#MFjMb>s#|i>OqXYO1;IR7;
z>9?)111pvso0g!>bn~@KPmQK17~
z%WN;)o=8T;%xpSuA6=nes%ZJ`6<1*OJkSw742GgFPMn|JkcAmY(64`{uU!Wyw*;pm
z+VN;RFIDr~$vzCo7}mmJmP*y3#6WbK$>Q$rLP{)6Oyib1x9nIpE?wQoFahPu+MfhH5!l
z3;$Bg63O=xe9)f3Yhatsc#_{V&SV!R{yW0d5?@;2+Hk^bfbi
zHBE65?)rVcIO?{4nEO9u1^wUMum7)svL5A&7Uv=j=-jz~AUERqoMg!IQulp6c&j&`
z?mfV&I(F{@>nScfHG5F{k;MNxkQM)GXeTr>Z~{#So8@yGKKR=PFr9OO*FL&69z*KG
zY=_Ehs7RTeLal^>=<_g8pe#X5P%hTaT<22N^_rG57bFM^1)#`SM7+4K%8AxAQe*Fu
zHD~+a9e5$G79nx)%kIg+Er#7kEVOtHVhnsCvmm9Z8~%r=x6v_ygXQhh!ChfUYKfG?
zVO4adJrVffK`R)E=8K#EFsGBtROHInn2G3z38$DS)Q^94`|t=
zFksW;!*O0LX{--HNjtlG|4nSm>&0F9+)cR;+6b=6LNsvY7(qG-t?}&Sq^*{N^k;lr
z=+|jE#*Hm?`;$qQ&OL%4s{sR7-JZWI5)40FZTh91Y;n<6@`R9*OpSu*a$b^WyhP7}
zSH*$eJow{NH_|1(ou@g^G9bl5X#K-?OYtH*mXu-_xR+!15?`VZ2a&jlwGO|%R=mZN
z_#mP5cSwXD#=SRPaojsun~ucdJkY(>KTzE)UU8#4_59aK!n{tl)QpUMRYn_Jd}tHy|
zqPKl~nb|T?2;#Ur;l+=Uv(KAB?9&S`YM@31ee99TJm7AGdR-`7I@8=62uj@;^3iM^c=xAg~xm)A9M?>J0O^L
zNa32K&m&}-DdYbNBc`%nZ|wHF&9edUF_t3N+xnCko_1(o3_f$zZua|iXnpcwxt*Va
zO(};uf7Zx
zW&IG3N~Egt2JDk{%Imfc{qiWGatv;=0;Mf^){>L`)8W#e8RLF|W|)YCS7IGsN=TR2
z*v?P%OzdAC$NipfOy@Lvf+??Vv;-rDvEQzmWEF8~%Q~7sEX&J4wFwU$vY1U>qcU5GYP%GiEl?f0DDBb)UHgA$Ps;G1b%)Y<84A2W5>zY9=C3j^k^}t?L;Dd0CVwL=?
zLO>+KBuBihz0SL)6(k9*_O`O+^UJ3Ck{VQ2o|x%HuXeIS{_NGk9p6LmQk88P!-Wzr
zb>KED8CC|^iSew&g$nPp5l|!ThZoRaZzPq{#BJ|^ANm%s9GWYWLoL&z3h;p#qcj+tCOhT%`!!WHpG)@
zS0wsE31&Q8+QYAiKeeD&AkTm&e?{fP|Q-b#2Bv9|7;<}0IPIs<3e)*mT1l4)6{oG*2|*@i$Hhh3Q0Nzvr3
zI=hL%tG}|=xfeyg6jR$j4U)@951n^L7pwuDod35){wK#~kNIa#FzjUX_SKKF>%p{w
zzUdOt?#Q8eJxO@Q!)?Tuli!bU*2{C3DQQw3JAMAX5c&5wC3!2cz;%(+L2SQlnz5l^
z$T&{lpVV{2e5bd?z3cv@@|AxOa?o?#sn$ezy3XXJKCA05m(j{sSLF@a0pF#8vXVvYgCzli=q;lc^snD#H=2zhLCE13TA4aUS0*TOO5i
z=}V~NC`-up<4BOyxjN#(vp?LXN9KoFrASDe_WznQkSF?qzGx{m3fa^r!(qM6TuWfWi`dm8w(NpPv5V<)@ED^*bnN@Yi^Q2cKztkrmt2XS9B
z+L{gZQFt2~*s#?QR70%fnew
z%f|0k2*TrDp93Y|OT&VXY7_a~OB!ws$JJ?^yxcF0POdV^$>|bF%bw#r#Km9A$MQH9+xoK8hW-eB{lX|gTg72g6<=0_ou9DP
zX;aMQ9|-)$S;-kM>ue$OV`4?q!&Tdy{U(e?U4Mp}!;2>CgPE!-lEWn+@>y#KDj1DfGz}h8aNo0o6<`TlBy9kx=zw!V`yi50jzL4mj_S8YZOD8lvN3<(*Zf*u}ttG#JYpEI=S`Jbw|3IC9I3;%U
znZai6ZW)?Lf{l8GN1HpRkVT*Qt4Tky_F$S2D+P%Th-}6|F`El3&|4E4(~jaBS!xK!
z4lXEc%=mg0ams7IuI?{({nH->a6DYmi&8{{^+oLUiUH};jLUx&1
z1K;)U82*HQKE+2DaM4fOsht_mQ?V~^1`oB>Ep#6%;+n^s3*oyE6dCoOio;WXB=L(H
zGA0X}a+Gd_JVCY99n5|_p8O@1^3r>pqjMI#FV<-&A{4>5*t!(9a4+Cj2gK#SiK}#Fvh^zR?s}5
zefwjSmY0VGYxDJ!`%vh%pH&%IJpGLdcvTE8;MUi6yBC#THxjrgOaRG}h=Sc+uW@H<
zQlJ68OxW+kFkdx!?T+yiWa8rwgV!KLqOYIIp!W;byyS?Y$4p43Qdnkw;Vf|&3Hyj<
zIztGUfly8Os62UWhmywCy$4Vv8W~+3Yk#&EL>@|f^F5q@=e9C6)kaAq7j^E)c1-d)
zNA8D54p7xWK55V@WT1!f{^=1Y0OSei|D4^&8lt^sux>Puzd;2zE7grzwAlCmDP+t7+F(@;{x3fq-3bsJjr-
z_23`pT_|u0D^SOH-+Rnpdv(yzcQd+RVeNfC9o;_h5{fm$jra^0N_izAGT2Y{_(eb_sols=6@h4U5Y#^<0fLE+w=<)
zeZs-(P!+~FS$RyrVViq9rn^)4np#rqdtwFAvwxr>TFH+fL|@yX*r^M7gg7e
z4N;;xxUi9ufV6l{p6ndX`cR;t-c}__OI;1*jwpxBKTQH?7HeWEd6oc)9A7ul)HJWR
zu?}lGC6^{i2oPHlKe;vi%y$UvJ$N(VyTD}J^m-w>$Gl#c{9Rpt?v*K=cZ?tZf1^=tz`Y7zO@taGHtyFOT#e=*)a0;EGy(aIyPh
zW4fmPA81&Iu&#Tnq@=Vf0_6%+TO3TB-L`~zR`OWX<x%={Hs*mWs3cil{BPkc*AJ7~-R7sihXW6aXQbo$6MzTrSnMYNQb~r0kEup=VDz`x7$E#sR(0r(3{@t0VI_^vC`l+-vWRMjyT1
zbQ3^({eEytPmHE!5^LKM)K?;p*Qw4+AdPHJ(NY%amN`Gmw#Ik$$hGX32Rl^x{nB(}
zHE8XWZFx0Naw1=bgc{(^P2~CvX-;u7&N6c$WOHw1S74nH9$PKSp6;+M8>
zJ+Ry0tTjE%eIz=+>z?_EKbuOKpd`%T_ugTpGF$*5-%81=!w!?NjKSn&*2iq5Ct{9H
z+76IbG~PS5u2@+$9(8Xxp4!GUOB*L%FrmlPl{1-Am-dM(zf2{J2{uen=dytn3L
z_s1l}R$+El9W;}J<%bKny!c4O6CoiVe4@BAE8y;IN5%ZT4F6$IPKYqnkg>R{MB3U=
zWMRQ{@s;w(a$R9AeTi3_0y(n~zfQKCr^_Y9OM|^7Q_3cJQ4`NfPu+W}$F-7c?oMJq
zXg}}l44w&v$H~r35#)^XHk%R#7;N)YSZ53@u+CSiRmx*(awl&Ms%AUP-cJV=|C!I-|9v@^Ptz-Iw#T6V_(c1Bqia}dP$KzIkqXlJHcIK
zkVG4v#AFhmOBZZlJR>cm<8!Nhy3-U}$?|d0DOXQUT{Mn~nY}n|ya8jMnI&kTptoAd
z$??^il1x4sj-|=3%Ae#VWVxsuM+u(fOcS$C*Ff%zTt+V{K=Z@)^{s`O!MsM&pHO1E{=^GWmSdQ+!A8ZYR>tpf}y4UBROp{
zbF3>T5E#yb+3ep-vo6Up1Ip*#s|~9ydK0WLgOTovQrchWHdclOKT{%^(zVbCJ9PXLT$;<+(0M7mUr!F4@hQd-C0Z@^(!4^mgt*{!
z>yK3SSo{p-_0@T2S=oqFt#`&2LSK5gCud4ogI?cbdj%6=Y1x~+&md?gJZavrN||_?
z?co*IjX$u;P9T`Olv|SUQMn%jv-25*u4JBa<&V&`|CyCjOw@NQ@pRQij
znay{Iv=_xr=kbqAFlE?-zHNQgDWxqf!Tu2YL^NX7sI977;nH9Oh&$uOrPWn=Sx|C#
zJYeX)X*n`7tmQ6bG~b+zW24P&6`s-c>h++KgOhgWI`5f~H=?M~RdXassa`+!7q^=o
zeGn{4r-kB8rPWant-F5?Ez+KLJ1rrW+cVz3g~(HnD(X27m^a3g*ZBppzGKxymyE_~
zER0cJBhzx*SmS_k{cYc-W|h+S+z0y
z0NSdcG_3@C&aMn{P66hXCjDn5m~wY1C8eq^4mdhvng@ipxT=oblfP2hk~}_ik*>$S
z)t}H;UC2_te4WIhtje7HL|gCfB=dV|P05H(;Y)^!ycEh0fc0FCKDH6DKgYR`
z`Zku6FeU7BtmYfT3M;=LLOG75ZfN>{&ld&Tt>QrSnR#Oh2T3-oTeVES&of#+5@XKF
z4W(@(er?Mh7Ry}&C6Na>JAZdK=ZvH5UFWTeO7gS%F&oPyWBt@8#w*D!&S#wgK)^w_
z<>c|TfXBK
z-5?~$=jnhVWQixD4iWj|bCZ)|Ob0IZHt-JZ$1$Zc@aH2Ucm8Y>i^-Cxe7f{g7de
zAIv+N59^4(1lpO3{BmoBN{M)WiA_%t3NnB5t1g5c6SIUlM*@G3=gj+ks-jC9L+BFT
zuG8N^eV>dRfAOC`2#JDxD7p9h)|##uYRlqY1t9!)*Tg{VkhS>E(WdgbnYw%$k;qis**7NBV5x4*CVR?pOe<^aB3T;!|`2pS)
z>6fk&zzr_2Kmk90tpB5{*BGAm3^-MkxKmAaXu2fL3yynFu6f&HzyHXSEROEqgJ=MC
z7iQ*3zQ?yC=fhViG(DJ`3DJzsGiJAmY~sZ*__+YrgAD
zys0kK`3L&p{18#`545b@IdezY2>I%1y>(B2?)mTkR37M2vKU9sq)pjXX1Ao?72413
zwAfuVIE4&|6gU2LN}N|+{B;UdhCP=rjZ$ui9DEdSc!llJeJi!k^1lzuBjEUpDiHB<
z(^co6qN(9I2YjavU+h3721vDHyF!muB=i@pG6Dm)hJdNq!fk;eQ4wn*#~l7&Rs65X
z&Oa!N3oPJAj;*h6p0Nh%h?uUhLm;oRQxs7dsH~6RH)vSHfAbg?Dx&E510RwUvafxT
zU5`nB%<~Vln*kYA)VTBPxDws@03z&}MXsS7WhTsXregeH_Yw)xZQo=LTGf;*y?$aG
zRs9r32yGRqlOyp$(FBlvg>k^Lq4%wZ8B$cEACW$ij
zmNxE(>YPW)E*%wkZ3UbUvERmw6sj}&*A?AQJO$xY9p4#dsoctX=^-?
zUmAJ9>HFwo7IHGstKoNrXw74Vic<9JwN(k{CPAI@_
zOf2N(+GHq@Ge60XD!8W$Y7ZWzhat1DAuJ6q9J9Lyom#J!+->BWVA6Ds?YREh>Z$Wt
zejj>m%aT0K)Vp!syx@i4F;|cX{A}`w#Sd^4R>~#@B?~@`+c$rOC?du8gIlsA%h%of
z6AodtPCfS=i?1^5Y;)?-qGz9-<&Mpcu$yoaxav$*GW|Vewnv9rDQ&Y7tKgszakh+{
zmr`yDbXUBkg(e0CD04;Rf2+EXRh~bMb2eXc>Ah$3y4|)~EZa!uM%uA-kG`B*J$VsS
zx~(=-)N{)|OfLqiZ;@Pu2xW~5U{R>Fg8P!~Qm^yuNs#`0p(m0*tYZIW8B|5#0y1db
z-|cXdms0DDb#=cs8?lFx5-Q9jo5dMIBlyIAR_m(iB+*z9<+v?~O*_7%%$iiF$CPgM=0L}2e0-wi(bAaj
zd$Mdli|f2L!8gi=W)pMNm*r+wE9*la-~XC%^vlDdW`81N6|@))T74KDZZBTU^mqXi
zT-FQL=E<541%22u%D}-2>LnCZ&O1t@_o-S?Sa5%4S_oJAq|NQ7&&IBLW3%-}x9adS-rqzcl6ql``hwDb`bU;}KIhV{k@on}G6X5@1T8s>
zn$2?gn^KziI=vqFcE&w9bfyMf*KZH?9Oh;vO+8_eNcd3VL~xbUDzko7
z()#0|v-iYm{Bx$knzuEK=Vs(r{Gbq(D4kVHLkI`6;44l1xZl{3+>tjJ`p;?vcV%Wq
zT`yDq;PRfr>zB@WT(Mzxb%$w!q>1?5y0zyA>3n4JCjl72<0K_;8Ahm+wV*;$y+le^
zsEaV~d7oz3vMI!Am-R$cOZ0$|G24=Ll5;}n(4h&3dTlzp=I3(G9#5J#d(UhBQuo!Gt|&Wlhgf;(
z^rUROUAKQKJ7P5+=%9qzNSH~aHeDw#!c@z(PrA&cf5L;RICoGni7nnVj7cX^Gi0~8FKqP+eTEq9V5+)@@4qW
zkY^AlLXSiEZA7Z&Ma;EG@!pvBB>F7Si-nX~;fkhu?1<(DTPGSP?sKxRjp?hTk`(>P
zdIgO_CRIkGI0w{*sJek@$d*rQLb)qrpW+L2BsI~OedWs<0^nYKvNF5%sFCU6DuA{;
zD)IJKr#wg9qJj(PvdVs|6&(LD5bWH+oLnoHelI-v9iJpY%}!FX_(E8pDy_e;P|yia
z%)az6S&5iRdF_UO7Nq$_4jwprQqq~YmJEN=!|VWS;n=y1trv*34C8knS6mA~9P-dD
zZe^eFk#I;b!_Jp3cnP5|KnGj7aX5vR6~PDTx8XKf^puOHnl96ve-fi$TM9cGox{Gp
z9WPYwGX8WXMvH65RSWF`<4M)6P@BXS~b65
zF@0MGz4K?{!+#CA+-PqG2&!L@g0^>~jBIf?r5+b4mlgJ(s{Bx33A}0orx~myeI8pc
zb3B+LwsqCNPA26Lv2ln&uN?lSvM$|UeMw|6nxYWJ!J|N#rLybYV4%$O$=|VxY)2ly
za;7Z595dF%)u4<@9$y&KFC2zbviSw_9B?BS@q#PQO^cgg=G0qcY)w(K<5r*iaqYbE
zHGZz99f!-*?G4#pt~eTZh>}FM5$G6~$MPjFF*Bleygf>2AMNyO+Y(yi8*OI<;ggRs
zR3~VGE;q768onq>Q=Y|ArYuXgyWuP^nfedbyC^!y$Il~F3O;O!;9GkJf;p0oXy-z#
zLZbQF>gsg0r+X}(k>J@`;op*clIYY*D)tjgh5)mC&m3wW0c{<6;miVA8%ASIwg)mD
zOXIdWPoaN8I=j0Z5xuC0?e2>MKk^eK1n5y>S;;vk0^dnOPKD6t!~mFDPV4FeW|2eL
zdGK-s0=&1gpWzI>2dJ4+6~YJlg+ada2$Uo+$W$imK&}bz%h>KDUSJJ8=99HcVfF0DPNqyQApGBu=HdKmEn+`;jVVhNcgkDSC<3}#}qDj8`y
zi0xK|^iZS2WCobNA^hT4K|L;yOV8KP5`HR#xj-i7!k|${4rV}T;q5yNZAxS#Be1Jn
zG*1Ag@fWNI7xoT`Y7@4&=AV)21h3xy>OL_GLa>9K)dOceunsaB(AeOI;eVjlP$#}$
z0Nc`zR)t$!X@Kw64@KKOs1Nn|X65dI8L>0xgSoxI`LRh>URt0P;gv@plDI6p2lc=D
z*xZW#fds+pf6%>vpJN_3{gJ4FP){USMw&4Pp*dPcH`HePKPILBvJr=JG;i7Fsna3b
z`8ikekY6j>EjMHH{^d7}smLwJw6q0!Q~k8&XFvgxse+FlpaVl|{*Tpi9;oIY#pcgJ
zGD@75qTPi)H_N719>DJEt?y`@uJ>0AGo`KL{!hp@&eiWCYcJVCIncnXe6JN-iE}Of
zhk*gID?QKrKE6&Ai|d>vbnCNf)D{qDFS!k#>hxcEfSbb$=Gv?uh#^&Dhy^%L*(0q`
zEkKTis}Pvwzxn`Ip8{|z5NC?QlOD<>MAB|e2wzW7BDgx$6w=(?=v{CffB)aQ)**z&
z9d)cSI53$~LCts@QORIfk^cXKA2k0LemHt5{swIjkcxK5x!bxfu$ay{2fkw7V0}8I
zJ`=?R8Pqg>ii=2a1crNEw3LK_BH9gS6-Z9|-)>(u&MMGA-^MAgh_HnC|~T$Rq&bX9L$B)(!u{#eX8r;qj7Liwn;|
zpoTJ&=^w}hwE+bKBwqVJ(3lC3T9nHN+#g!VAy-rMcYclL#X8sHxlL(cK`TpwL`4oeO47?V8^tvLbvA{#bvXyyh=
z{~p+acmkvxHkCzvQOUWw*k7`Qm_R}a;i+(b#CzP?d11+~Avv7G*>$(@4d(`A){{F|
zPm6Or$ox0djpag^L1W|0cDdr>OQC(j7Nk15MkY8XF};6j$d%La{v~nkgwn8KH=^itBLvEL&*OvPd!|Fn^JfTUde1&gzrE<@D%V
z1izt=3PoST^y3s5^J9}PE5b!PDQJ$lxisz_dTde5D3dnwUidtTUd#S3XO5E-K|PwQ
zy>_PVP2SN_{dd!nD!0~-&B=j`eNGn-H-%CiV`ff^RUt$>)|jm;wTZge6bDM83_Y#o
za87Yio%s7F2MI1M&HQr;T3MH^+kj47L>JUW_3QA?p{xHJA8p&L!itqn-HC;ObQy)H
z^nwXP)ba3VsmZxNrtE~z8Yc~=Fo+d4dduLWGTt4{k}I7VD;Bzw
z{8w*7Ky@W-GDH7CjE?*2o81~ud-IzDlOxDfPS{A
zr~LgrNJ{LOhlD}`FTK3rn^59c!#E1L46i5>UtFVB=S+fyCdWxWvD4aD&0(5(;RcDX
z9}%&fd%n`;k$qidHj>{!V1nAMnG7g*G|k#RRK~CgBi7!M)z<~{Ey<0Ga;*3#VP2gP
z%&+;as|;H%T(>wTLzil`m2FG{hAm+3jhB0F32!K`l%MjjPfrYb;3(iBs{T;l6orjv
zdi$PHw|<@V(utQVXJ9|0CSl;mprlgE`k;3+O55PMa*O|``j+hz^)P3+seMr#LmA2gpCp2HQC
z+GE0@1;q?ei6(DdDQZzf7vW*6BOZ1vDkiZfjy$(Mi%39?RlUW671h
z9of7UCj)mrlBr=#pQh-Rgvy13Y}(%1V_@LL6BDmUC$)>*F87?N%?(!dce*wvo4LZa
zmr<6c;hFZ1GTp;g=XJZ6PnC@Yh8#Os=~6J%Y0d{NjHUHyU%jH|j-0EpZsoN2blMs>
z__1@b`dAeGp>5?uz)xkD_c@+Q&S!;Gu{yt{@=mJ0Cku+dwbEI1saYnjcbdAqy@yf0
zOnj;h({y%trc&S>zACA#(QK1w+UKiwNhGBDEL0uO!(K$5j-G{-reW%fK~+^Uk+9wh
zWo+9_wKRWUi`YJ8>7fIDs%m(EVrHE5j-f!NF%NTc-j3q;0Rfsx`HJIc#ZUBabj_tW
zW*t!T$5kbb&3v>uF_^(Of+UtG;zHWD<9L8Qp5XZg%q8ER-79deSLK`GSu@1N3a)RZ
zGGa8LH?>nCa`WgJ5oZvk+VM~O$DuQ4sog$H-^s{7xjJLx#Ge12BEThm59&psB=VM3JzyG#kv4hxnml`cUeLy`qi|9IAGB$g+JkTy_CeE{jKlgRI
z><^WQy!N}GCkR2m*Z^evY87L$6Ko+bB$P<@u@onEr0~0ovze9BA2W&u8+G2hk{;u4
z(wq~zpT5%GGRcnSBPCeO#A-b{WSg%kWj%|
z807(WJl<|3eKGxJagF!Fqcuaqk8?3Qdr8dc;3(#;KI7-_t;r@lVGI6)kM_bzW8KVE
zAg$w@34onBCveC_O4)ux&Y_LPz#@wBhU*cix@9t#!&O#EI(FMH62@9xp0aTZy}S{T
zE>m5^rB6vJgRu?23&(NblQ~%K3^pAH@*#8RQ{t5tVq;l%^TeOoP?Z`?>r4&HscPzJ
ze2uaZl-!G(pkk?%p=9L&h4@UgmtF9$%T}o?v3BAx3tO5C?=OBaABpX;Xm{giW%q6r
zGog{0D*5}Kf9gbyZa#vR$IdQ60PyGTcqy0n1WL5LpD7
zX2C@f9-pP&y+LOIXl7Q)t@{BNIh};0eL)9|Ap+Sz*UkwpilFO~J`vKm)V=pV@6z}8
zL{$SJ*-|xVf{Gjnq<_gB5@yGQd~9O+0?o8)wBt0q@~5X55Px|e(61W
z9>_>fBjk_f{Y6`}xAQ$K;JyOJuAB(bf!mblfPVX8+M>HugmW)ys1ezNTdWp=!~tJUg70$N
ziUGL+3kI-JyaqsvAHc-QoCFMmNyttC*n#sM7eJh#AieW_uJq2@eIa#fTmvHi87vY*
z0c6pZAC=#MtBmZvzw6$CqCA{!3@jG9AO1Tc|7hS-&0uI>DC(WGu)py*RX?E|Dv
z=I8P#a4aOiUN#q+>@aq)Ie
ztr2E9NVfx6YW5$^bshnT;(rRW>z{<`|a?=wVOmskZP!f(MZ=Lj9zU|O7zzyCnh
zxzGzFF?wwto=QPm$y=VBd~{j$7;Su@2gco-CA94nb9;R6fx^I{`1as4hgvrR+`Q1w
z*=%K_wh1hYUc=94o;^W^5nkbzeAYFoj1FwEqCc{4fOIS^n)Vod+V3qRkGG!qO-Gk;
zmvV{sU|$gEStOyalgRlVhV-;3xjTm}L9H(TfvnjUW@X*3B;0X^hWbROa|iQ;0PZC8
z@<2_@8XN?a8}p06(9h%hj68hkM^<>`W|
zLt%I1-1K6gmk~e5Tu*)*Oy=wLlU`v4nynk2NUP4`mswi&4G`W*khG1Wd0YO05V}^7
zBa069Jz!G|4!u9Jxb%3u2Z3W=q5S}Eh0q{+`nOI7Ia%8W{y4s&wjl}&B(Lz+GR5O&
zPQ;k2^CxSUGtdRobWyvu!@D0^FNN4!xjA$&H#8M9UATW5;$B@MA28w0=Cr)Ot{!*
zxEO;Y!rJ(0;>3!Hx@+ip$O-ntHyO2U9t`tE3|6;!ut8`2BO%gfMEia;-;c{$S#
zj}XPOd#A?IeRRXqo{fCzx)thhoM8ioWZM)qY)WZ_oP~8VOWGf9SJm=WVJ77qRIy?9
z4(7@+IjC8^DqmY(9;ZIO_6jp7L4yryd~mGx%G^n$L0)8ww9WpMT#!ep%06E?HDop}
z!$Fqe#;novoT5+5nRCP;ef#nBQfU4D+)0KZcfOrD4~$nhb%;utlOlg`7>{=qVF|Ze
znqX|?abt=f|M2zG!R~yKx<PH?{HD#V9At5gsbiAUu+f^TDj%1QXS068jiI*wGj7)ya
zFAOefjO%)^JURAua`J5^GaIpIIzO)3S*EmBk{6ElxR@03AH?VqFiK=!7<8eDLHs-=
zUNNyaBVP5Hg;9NdRIN53_C~8VM)Iq%5hWd#rs>U3pd`1@&hN1igdj7&Zra|6HhNzTOryr16!7k`X0cfEZCbf%dvD@*^T
z>ArR`jXz;dQu$iTn(#I;{i)b{;a0#;uFtKJ_b2jY)2Eh~{#(qG&B^kyMj$t{1&;}j
z*(id7zTls8aqs7jQ76W*E2EB&J1m2iKnZCw9;IdBA02JI53V=0gV7l^6%JL7?ocb>d`Tj)@tL03MuMB(8Yz|aJRCN!5XKap
zaArm4l!ba(f0zek3_S-TDTcVwr6lu*3Yp}*8%unZt9;ZrqpU^3*Tg)&0>{X{T+4Au3CG-jD
zu^d}>$M+!S82&`>c)?uPe13|we$MCPad9^D#VHx0H8t}~+&W^=)9k`dxvZd(-`Pes`&vV8#zLCGpwmdS-z>fTd|Y?C?*HQKt-{(`!){R=ij)cz
zCpg6mMT!P@8eEGMcZwEION+Z}2_AyGOL2E6xVyV#ovgL@+2`u~7yCN7nBUCIGvDzJ
zdzO%>3k%KI;uj|y4t0XVYlWAor
zQgezOQx3qSAZ~nhBw<9CFwA|b6?n7CJ3_)CXD%xraM(+9OhX(;#LMti%k5q#kfYef
z$^L|#-PdQg9wBf%m{z!N{r;xi->udItyRTBMd-Q3V1uBm@=T9Fad8a_?R!vn&_I!3
zi==otXZF2S{?WgqsXt7K%z+CdRF(X9*ZSu}Nvr~!_lo1>l$XsJ7L6oj$pSR3VDi|*
z9bK!Tb<*t1J@am>VfI>0zxvdYw5Y0Nx&^Ml*vk72+r}fyhzJ&12j~Nnr<(zQ33T;$26(_~om+=~jqB0cW2h2z{
zQU3b&&DB*y;Uj-tK>)Pe2XAZHgN3og8yw?)4W@XMvzyYI+c;$WBw{GT)SuOVyk|>8
z%zH7p1``p|XD*pEksCQ~G}EO&8<@yOft8{3D%h@_BZosmiM~=5KW_oxyW%`#-@tIq
zeUZupub{oy0zx#Rn{%O8U83IFR?$Ah;~RK
zD)}$XWL}Fw!8QJ~NMa|)wM|c=kfia$=K5y3AY;ku)KA3a5pso;Fv%4!_|(+DqOC5?
zlrls6)ZixR6XpQ+rSnq*HE0=w_T#%S0wo%-Z+1XuTgcRLvVj-S{p(UHhsp~WU>&=p
z;$}w_sIqNPC{yTOv8+mQML^-WuCs?J%^
z4jTe}*7PEc*TX>Z)5*Kt`)MSYl0nYW$b~L6@*foG$Dt@$B)h@&ECYPHA5S`bltLs!
znV*@To$jD5tJ~%Gy8K8x{y!*U0&0%ONZc^AdIh;W+b^qukP~*eg3qhsfN-DwQC%&8
zWM#Q;;Q-c(^5X-V9qq3+wpll+D*kR7poJ+8ojuTBIW9J)~TdLmXUzsvHTtic>3l}
zvGPE0&6Io%d?EsmuXKq_AT}1Ffyf!Y&)X6l=)Y3%hV!vphtjr~AT*Xo=keaS7wUpKvFy%+1R)#JIuF$1*FMRy-Gy;c_}T5&NPHQk
zhi`wL$twRG^vC74t@!^atxTP!!F>=H>K>-nqG?SncdjF*#QR++HtHO}^4aOX<5%VB
zTOv36)qWh;fKwpIg@kKp<5+v6QF5rag+OlM*U$aQJry(KWL?pWt5emYU>LrxwO;B)
zV-k~!{vs@8uuLS|Wj4lhtKc|)SU*93a{~WUuzDSEO{M%;^zRG?!~$77L&!49aUX4C
z+Km-20Znmdle%C^+}DLF(Yso>n>m&KLUTayQxEhP(r?d-FZRQIz1J$pR!!=3iZ>a7EAnoFlg+vRi+K7Nn8@Qu;Jx
zGN4)sYpM`}>dWl?i;P9Le^A~G0_SMpOSCP;VpA@1uZW}PNp&s{j27mZ4($n3EdVxH
ze?)uk|3UfU)92_dUhkv4_^EddqW^)$Upx+b43?WrUa`Vd-dzB(rfZcf#YVEL>vZvm
z+A-j%*qQOtJYy8W1zoLq8^+WR@`3UvYkw=)cl&P>@DFQdfVDlj!xz83>@BlKcAx|5
zr6E@zdr$Jqz>*<|Uzu_(G`G~E8jfx#YB^5zXzi)Y$N+V(h_+Q9MFK7gzpPh4NAK#)
zjM!v~sOU(ZwH!;PTWa!MHZyL)#aPrJDn%y5}BQ`UXd&49Y}Wb-N6VM)_PbB7~>5o
z;5tNXd)02+xV#E
zy)`pQsw$>v5Yt>&>>f+#l&F5d*`>92Nh3S7sd_U&Wh7f^`%d1fpr~tFb?RqnoCKvD
zq3G6s`J#e++2?*6W`BQY;&gR$vLo0Mq134A4)os*xe(4iX&@G8zCUz
z^~*cW-_-T%NYcmVdN(PD5MkC>Sug4pJ{mL`x`b8&S#))+Z3=U{Zk`SrnX8xxNM&dr
zHKol3R!*DJjD3a-hZaAeLa6U0I!k6e7?gbcC4;!*N<~7$xS=j;d0@(OUUzEJ{P+8b
z3PYV)9)U&kC98&?Wgc)S9}zbzJlmKFk1~#>{G3N~`rG=f-y^eVhRzSpT`P3--fjOp
z%Uo7pekf`vb{9zKO0tR=uH)=rpE);rW7YE%#0->9Sqfq|<$((`Gg8LWPj8Ct5;U{A
zAlbw85WiBbPrBr`dPX0*22N}KLHX|EnGaW=yv~YxLBz)X&_NTcHJwHpL{);xnisYU
z+g-9-hB_~l*TLItxAh#LD(vAD25o86`DRT?ii*Ni?*n6EjZS_!JnIBP6@!CG&T&-L
zCR#3slxlCWcqb-RHF#^$*nK~VguYUpn2JN|fBCyY&C$DZ$aN8Zd@gS18A6Hr<+f*19xkkpKs61m9r`1$PN$?c+VJ8|d)Eh2v4Op(E8m
zrMI^2VndZ^BsGS}U4&TY0)=DTpR-RbZPeuyGAah~OL|ZF1lo#Cm5e5)kE#=L=*4Cv
z&30nD?)4`IK~uF-uHQ;sXoD*AYpcK(6xq@<3{m|T{cCB6XlqI6pLbRHEt6dY%PWCw
z?{Z~%fV%4agMc6q^NUl1D~H^;%h-6~l|t
zE`q9u7akPhtzBJ-w7O+iBuUeK-!-w^)!S88PKNR@c{pW+!aeS!jOBQY3+qfHI&$u`
ziit`0N`19xaOY@2<#Ncsl?AnJ6xHgys1w|$vz(cj*a#gpG99%|=+=6ZO>%B?|LoE3
zV>8b3^(j#}!@^PGr=p8jH2R)e^dF-?UJNuXo(PPZ%-BYYAcSngICE@*=VM0$)!Yna41wGU3KR2yc^=9&lxo?M@TGELgg0&h#
z|2`=dsC5k}U~fy^T+d{J>S`Jm$D%8MRygQHFuQ-|
z`Y0pENwTr4=;)o76KBi1T)mR;XvLx=DjU*c!Ozs}q&4&-D@{SfJ-&lG&7G!5-VNHu
z>C@P*;>4S?n^Ate!4Y#~sYQdduMpU?Xld&c^6+@~0=yk&XAe9b8jYQDzMV0$XM?Cv
zX$^^qh+itumEe4;e~u43qHgHa9(Z~aop*kwCbDppc@5WG9;kf(-eyDh9eeVvkAuV0
z_B$H-0dj@~PgbiICxQHMpFZj@@ph|%0ipt3-xB(>G3;k2r{iofqFFy`C$ha(i)lnb
zZrw
z;_Fo~5ksBU^8cGeoA3?x+lqhDL
zKDUf%ta;o3g%ZvSGe4yJXKP7cO<7p~@+9GP2&5x2mBD1YAxwSrM68Hn8$`<~Z5+)A
za^yD&VBCk^@{+age&L3vrOd4mbeC<3_`|;Xn5@8p_(?)JvcaPm9yLSDGCh#
zt>$z?ayxA7xod70s7@x~v`8SZw#rVL}wCM{y~WdGs`uYr5U#C01iz3h9Ehc3c#t@rCFkx
z+zy+#>?`>$F4wu(5VzcG+rYbxIr2T{P
z+ii$;iZb$giXt6c0-djv(UTi?r(7L&IN~}XmSDk%l=?gIQb>s~>&9u82l_995>8^6
zVMV+ns=pQre+#}58$RmWi$CZq^jRX)tDmQ(v5A^tIb6|;1dCDe`{;~Q6e#AXNY_7o
zFup;RX`g>|_kTStIP!)!9kE^Li(e$xqm}RPb%@=1B{AJ(d~5YEgjm^~S4xxr2j!Li
z?RUr!6*J__ooimH;J;X}3>bI>TsHC#%IhP{;k-ZN0pI8peT&t>PV!L1)Wv~Z6?N+2
zzlySdT`bjH`+!5FgT8>H*;uPs4#oF}TJ%uC*xNb(!T&Lc?0>3c`j5kTamUhf7skX+
zmMi-+gdyguOBS~PGPD%2)f#2SKV{iHU6cqsRv^2d{DWGr`^3??g(@!p^*(HKTmS0x
zXf6lwf10Bxp5-1^dNay7iwz1vYca18^WY43_w_kKQ^(T(AQo1IcWiqhD|p@oxbhs~
zrLS(<`Xd8N8<0tOhpku|Me6=vAFv#ZB!a@F1PG@ld>pGJF&kfVfuRqT{-E91sa!&FY_N-gSX&t$EMi1Y3krv60Au?@4oIY%KjO&f}erbBIia)D);pO
z190%wjjTx101J>h!rQl1NK+aipX2YRmc1MAM|X<^JAMft#*ai_95U7&{`9Ilo|DW|
zz_8+FYLc-73C*^$z*1U8*d0L;=wKL|JJRlagW4V;19l7e=_~2H{RO!&frZ(VEH&`X`iY?&J8M
zV#}_D?~BOqamN8?Q_wv`39t)^F#E*3f42rLe|wRmEYT}G7b>QwPpE$_;BvU%*c1kN
zgO0cWFN~=j%p$WspK1R=nWOoIn1`>t^?_QqF@G$?N7YK6EePp_&`GR!iTzQ63(u~M
zPity|d4zP_mk{i|fY0ejV!+y*tMhl!?`+yKtgO-_3MX{enBfvvQ
zCE_k=i%PR|sm&T1OK*`K0^BRych48P4Uh1z|`XWDn8W=p9`xy+;rkaaGQ_V$VFn{-Sw-PXi>t&FDWY&UP
zYbVXII5m1GK3a;XT>K#VkV`g-*AM(_Eh>cO
zh|YmTtv}rK{MBdR+%ulpZfTPiN_gd@3dh1g*4$JVCHbLaL4U!dtZ}#bC
z?(N&-wu;&X$2V4`%jTko5A;`S3}1|B)V_=9v$2`6cnd7s*3GdroknZel-Q5GalSkp
zWc9W@df7CxqxGHh(t~
z*uZ#Q%RQe@eOiJuvD<&C9>;ke$BJpXJ@Bcrda-pQ|T`l?D$9!{Ij
znpGXxe?eD}6C5lU?pM}TO$PLs5+d;bI7FBPHy
zmiX-neWY!wt;$D=xqj`ibxx%5VTqr-sQPV{$0#nVGM|TK@ZC|lF8>aNpe#*?j5BzEbiOoM7zj?Wpj~hp7B-diX2%3x@f%I{uc~@Rfk
z0Y=B+Q)L-tgOJnKbA_rZSS{8Yr;Ri1T{{(7&a|93_M!o)$PRT08KT*r*@37Acqre(
zxP9FHnw06{yIHk=P%kTI>uiaHP+})*gr{3`*qhC!@uA1}{z!64y@YK}EFlxg;q*Y3zzdJ6bEK41B;Z);K=z?o?U`XJ_J#LCFxNI0+eU
z^7k<~{Y7&%Kja`i`k7JfAcrvgmxNAc+3@B$XGeT(taxILSfoO<-C2)4ZnA^m<7`KC
zzlHWMKvdlO_#razVnc17%OsYC742Xk@jFqo8HVDQE6V<>U;XzhzVr
zPC-_bw|=M%EzBy)*HcGxsGq=8O5K0;!nYMT)R%+am)m;obHXY#3FTHZj2{I9R)nD(
zpe9${{cm0lGjg{>QTc;94g;AAb(d;V(WLXREvq=)_w2F~XY8;pVON{ml-SR;*_hG@bkU$Zw~qMr3pL;CrMNh}`xjClV+u@_x$
zJ-kZ~wE0;$HJO*0ccK+?pu=_-iu5xWU%Z_VT1hkkvFGQ4E{Yc8@*X6oXf<7WSL>a}
z9uR$SBEHBszi(KPV-eu&I<}?ONjF#g#WSxl#2H3(eRa?x%wPM?*Ht*-!-TmDk1h7!
z!0p*8{Vgi2ckLuoJ@>cqA~1B)6UkC3`4CYROqQp<-C2_hnQC60pW4~^QQS|m0SQkB
zKwx#z!`Ps?zRPNnjTOx0ljNjsZGxYuqdY)dbi1Ch`<-F0gbHiOuW9p4u>>M9Xi3we
z8IC3Tx|S9-QcGjv9+0B{9{W)qczp7&zHRX4V5ausHS!zSn1TwbN=4denDR5&lxuSD(Y&oo#cC+eena+=
zcmDd6R?rZqra9)PYy#?G;21LQi*j&nS-Yxp-{=k7vlMc(VD
z%cq9`uU<6)o)b5Qz4xgXtN~fRMb3}jfyannimc-IR~;-f?9fbeaQPGIquVzs34^@O
zP1hwWb;X(!8P6#-z}8`K>s2tUrae3Q+UYhMd5Rm{o$oVV4pd^K?T!V&HK+pg?#I15
z^Ss^v8wb#n9gV<4+$j9psY7`h1@LIi|Mu7atGFml%B9k4xzzt*KhGK
zeDT_V`?tsp=RV3}Zaafw7ylQi05g1q7N9<>{Dbs6AFm&GF~4qLeHWr^qG3Wb{|6a1
z)K5K|A#RVPhSYzzC($E9Uq2&fZvT=N@17&qng33bJHuI6elJUK{{TRq+ULe+DBjZ`
zCgLm+7h%=_{&l&(N5B9r+^?U1%y0b`>z>QC^~>qHj~>~0tn=0Rs=ltCT5+TOYX?HE
znBK-hl;0=5Kbt;(StZL(c>qyL&^{*xzAbn2N4etO3jayH?`jX8$mV@iMd}h!fouEI
z7lcjj%oU9CSi$+f-*}k>fv%ltpEAWKy+ktQsuW11q9jAi@x8#!PokeQia*5Ld)lPrn}Ffp2`|p}AFx`K
zo^_({8J2uPzCSusAG*{WC14?+3L@ZW?ZKCY0v?BP^4nfTq`ELIdi!%iEZ?BOLl)sv
zLOt>x-bRTm+Z0xRdP=jkX?VgF_a((07@}k#-1b-ou2UqD_cC
zQq^mk)u_eaKif}$1SP*DVo>UhN|}Ng4c5LqtV#g!54rv=*qjx<;K^-KP8b{7qtf85WxB&
z&hudHSG@jrfu&U-+}P54!(@%}F5r=&jb#7obHDADEef-?t#T9oShMxXH{;U_SG8#lQDustP&Oz;?rg97eCoIG
zQ9iq4f-r$Xmg-BcU)}fU8WFee_F`A1{?X|k4R65M#$h6=m-XeR`?IU8y-%y~n|8dQsHE^VgucmpmjrA;SWnk^
z5(YdRlfk*`3x5*W(|t#!?kIuJAJRT-S!6?}Lnla{lFKEw4bN%YAv2Fp;%8YAm>z|P
zo})6vZpaZ29%5KYe<+S)m2LXPiG~Pl!LG*IGX`SWjlHX5*;PRuc
zv|r4zLo@0QelQNrPs6j)8WX0)g>0;yiv6rs0Uy+*rR+s+2lASi*Xx(~M<(d&gY-hu
z4tuA^3f^Da#EGLNdTj80K>Lk8OJx7jEYpkQ66KQ^G!hK9>$Jdv1zm~`z$zv#Q7
zVSja%`LK?5MUosxl(Miv{wC^^>H?(LS+
zQvxriFBuD2WD&Ca?$$yX6QM*G93}Wq(Hcy*`TS_B1(f2`Gl9e??!x
zMy))zB^cyx1rnYU4Ak&ctIk}X;L&E}6%U)Re&o@xETZYu3H@WhV4jyI8)ajYuVs!$
z?z10VRbeFey=}yy$(0CO(_UITcCbrRdD?7Uo=vAHUQ%^S^<`E#W0dw{@YK9;P!ZG`^Y<7mZYFKpYo*lflfeCu1b)qt+*?*H1{mmWA*h#hIyz=Fgr3pN)d{u_=synY_
zq-Y8CNa_TCR?e|0@|L3hTW>M{%FWvA-tu(~Rp4)O?sBN1#bb+tJ--jPXcuY(sa|}*
zZnviW1EJXO2X7IdR;tf{*YjR_y15ApK9|A)NmZ$NA&S!tW+C1DY^3t)XC(*yl4pw{
zBFMUTAz4mx7GeSdvfljlZZ=NrE1SzhC?&*+;yA|+&u~!ZYyi1HYfgL9MfTbzgbrN_
zs+*1bvACG??(v-zW>^@0qQJ05KxwYk*v6%&b+cUgPOpL-x~A$bi*x!E1tcFXMjjNU
zD}6St&6FN%Nqu*GVkh_g+obFxX`}WLQkekyWYUcmF~LK|%K9>{(6_0_*e6Z5d^gsi
zUSIx#O5i0E5o!mq_V+B}vI2~-U+Qc#G1qe{4u0K^O$}TpM$ErP`?+{4t2twpuX!U$G@(EWJ9TdYZudkCUs@2S6U>WDo+|c|z
zr)e^&l$OZPV0qatbjiK;g}9k_kKtqB;AUm2=w<*E<}BlDq$w*|GHpNfL6rRFtGYwk
zN-Q@ysb>*+hS}&J{Ixg4;_NK25J4*0<|xYDvEbvUCf8)AmUHb6omzo+E^*~7VWkeO
zm)M?2rkv6OnmaI&@|{ptf`d;+-|=;HYB4uawVHa9wx)RL&CW+HrR3S^vp`gIO8+sg
zYcMNy2qATJaBmT$ZSOcZkyvl>YDCSV9)pZ(1}A?xRmh>E!R5Y4x!@#6Gm^Wxo>|2x
zew#&0QhjcKmu+9-WU4(FzkCl`jvqT-9Or`uEcl5Ki!m%kh@B51)%mfX6R|SMCsU8H
zWT7zXmiOKQRr)dhtCw!%=Bv|Q?dZ?`M3uYG9=AgfH>cV!pyfhLQV|*AjNLJIR@Xi%
z0{dk2EIhv%%p^4!dmIhW;I-0c3!xN59D@(w>^A)BoQu*MrF{)h53@=%VdCw8VIz2_
z*LQ!aO}t;N4PYgoYeJ{yae4i7YOB;GEcx9`;fMOW$D~FVwA*(ZK|yMeINZ6XXY(-@
zI7w5jJ~{7U>|Ov8R6vRjkB_1QFYTk`=1tafe}8&IH>Upkla|4};tbtwZF;vCsRvSy`hfU%a={G{&ebuom;gFR0nO5gpTofgykc?bTBh
zaK(eqsF-*yQUbvp^Eur|o07XjRp(A&03hO~(jv-Xvoi`Dn{#;C=w~R+NxlY;z
zhVzIo*mpvqf|1IZBXutCqTzi7BJulB9I-0-+{5R@YreiMYS9o5?W(zP_qRTQ
zu4_l!@M1M+gIZr$7Q5}ISVNId?k^%Xu=z{>E*t;UF;LnYGlZxMO#
zkno-BfzXDW4P)w!4W~^H5xed*tE0WzNClu+^Ua+8f8gg7?$Qv(V&N313i*uI;(e>v
z+Cwv~c`nNLAKUalfV2OpoaaAq_P(x1E|_`4vTEk8RwFG^
zp3*mifnfN{bp#r)V?yknFw|@Vb(sSFo)U23M&}bFg#EwmQBAjoufNIFYJYs@I4OdzDr`0p4ShoxlT85Z|Uo7HaWNw
zTmW`~L5W4%jIEMo4SiNZ3hB$;;H-PG!5g=LLjm9^^;T)o*7EU9HFxp;4&I*i(J()AVIicikj|ens1%4^
zZTrTHIzcy;PlFenl8>ZkX$B4fn|7-U78{eQE7IU!RLU(szi%GJEmoe?{|SE7Ii+^r
zEc7CzolGaA(PIet2c?+=Nw9RpA0n1Pk9}3ewME6z^dR{3{qe|I__ua=#)frm`GfV{
z=Fab(#N*A+iMqQradLO=(}IXeKTqV#QLNM8NhmA8xraRX$mvGz@{rE!^QO%52yC6s
z7GMj`0Mt|ec@HzVhCU4c8*$kEG~=XI-ApZ={qz`oFAL@@cxjjx>1yx$_v=0Kg&1>{
zmG9FDnR#K11bIkz)i-1Ag`l>UpMCpF%wy*;jmwTrP=!0s5edV*et$b92k16l?Flx$
zFBY~s9(@aewy@vg4s2FdH(2D=&0+EX#cl>Tb!T9DPM;lkEm&$Nc4jWT`hXO4-w{&h
zn1w{s^Dho#)
zN&fG@7wP|C%wrz(qBiMb1ZlCy3r!iG%0xR{c!c&qh>{s^mC5*cUAd{NdtZO
z{$B;`IxlKJlGt2PVOS=5Q}8{%*h*!vU$o5hpPIkVHQ5NWY}eO}oi2hEo98g(aP&IMnmxjUtiYlXjB5q{WbN;3(0w8p{^(~F!7qS{}x~fCQJURvB?NG
zm?Ve!cqC|DWgs&;7I=vo5O8RmE`51czqXcax_88;?W%e&auv!wD)hqcUCqE7FQ`43ZnuFB5!VW
z*SO`VFoZpFSk$cdGCeoFEu)|Q^aut{TyjjwIALmkX5aadhLLN6`v&_B(E;z2^2T_n
z!usUrs!07z*$xNRCi77hx;ZDn4}*8VUW61vXrp?0iC0%5x>L-UB#8V1Sd4-RAXrvm~u2>lO3T9ABgv~Od5!=#q1DZqwscn
z$Bb#+rAW8Oe^A=$PUwpM9PoSsBp7tPnDfL9!}&_OsnG;`pS6(K40cj9`AVr-E16R#
zb4l#?8A`~1D9^OY5aB>!Uypl5Sl@m7Ca6md&$H-4H7r??=D4tjsZBP3n8lr8I0}`f
zU)mP+_^yzGk^m>)))rec^+GZHF4GfaT!UcR)k{N${YNjrb6vHxWp|i=7Lm|OG}=@~
z;|^X(!$ieZfezEv0I&6<1Xjk%AmP^84+d-uuX}TOf#{6BMT+Ia-wyLuMvq^A(G?v|
zYH9QkN5O-wj;EpAOsWR_hGC8+v4UihKi1z=OAs|?7TrD4bx?=eR;2H=^|GZ>6`s2Z
z64YzNrO)i^eGRj$L>scZ#hWiJTdsRB7mdgc5lAaMijNh#SJJhnT`VSt~Vm
z_HEWeKefc|g%I!vWxn)r_+=R|@v|D|ortP2uW6Vyx}>=(HcUw8*N4L>h!+b=Q-ZFV
zDWhy6pK4wKc1SlazABYeF!itJ39R1y-dPK);o~KD3qvYSe)~lCcOGdZx!JahMM83B
zwP}pzg{3jsc(BwXm9`YWldE*I)}wu1C1K7uw+0N(oGfj|YvwsYQPZgIx#%X@Op26*
zctuz?qXdx3RpL>I6AlunI!|RUQ}$xil|O)b-|`>uk0-|-kgY_t53=(RUdTQ
zNV1uxh`f=#em^B)zj{-2^60qg$oUUSc|F{5K{PnjougUqs_u5V4YPG3jV`S81!7n}
zLNSpCW}fFzTY}FX>rog{X}BNKPZ)LE0+OMm{Cp%8xb8t(T7L
z4aWjWaLC71stqD6O(p9xhd;U=U*JOB)Jits@h!|NDz(9$>CC3+Th}%vHr->|<&)zT
zMoBe}xGhWzeX&1`^KVs2aajsQ*v9MAM;$UUL+u`!f}M4AW~6v)^fIAk3-0T&GZ8Z}
z>c@iHws)@xMZ^m&T7KghtTOvwoLD@-a+*F0!bCIizFn%n(wPIUALh5THrihvU*L_J
zDTNxoVB=hw-3_!|bXcg3uq8tK(U>n(?G!eDf9Sl(fAe+%oVVi}Z*Zc?>8
zk-Ith5f+u!ra=x3{R)f2VbG>dVEhC>sVPRzj+;6ZGzmIY7mL|d^E0He0pqi^s@<=<
z$2X#pY!3OhI$lLn9`rEvmDT`hOz(?)RtyKlGvc1qSSdmXpq{X523fjy`AK;
zDhPNG7Bp*kNL5yUOJCHd^3_l)mzu7Emvwqtir^D2q1xygZW4y7ris=4WK1+_C|mz`yIrNmpB->kL9f5)Ce(SK6L-bT6>ew8y*CzB~~mXA#f`+;Yu@DKv^
z$O?HgS3=BXz=j@qV$YY5aqrng`WrW}X{zzi(=*mRNi$I7jeq-i1v=z9d6oNlxJ~b*
z9LGDC8?7xcAnf%s5${F55ZOX0v7a}4`a`q&>?booxaj8VmRU7F6{}&o6E62*O+g1mS&s)YTX}=6(KS*+-*$_hzx2xUL2u(g4l$
zOe)~+%Bd9g>;0@vS)TIq>iN|VY_{ud|F(<6SpF%7jAqNj&bW2}Yd>L)YI5!=YLSFkuoa4x!9!~9PTu+>;&Ji((R*0#%$5YiJ4vQakMI|V$lDA$<6H%1kXXT
zZt3-9*7V^$JB4gF=fJT-@Hfao`6(xAm;Cf2n?&ChkTaz!+KUdEBb1F7`;3=Pcut*o
z<6zxdwo(A8E;L>W?_fm0>tWq$B=i$`ya4XSwi>>2yK
z*?s=Y(Bfa`CI0x{FqQQ~j#Gh4ev
zg$i-A<;GEfa6)Izs?_Zy4?fPGcAIi}1sKEq^=jS2+?NeQ7i4OmHuA?Q5d@y1FN*ep
z3o4p38*yxIGLVI;dBKX@_ipDWTxdUDhCdu4W9R-$u45!YCKgw<9vEZWH9PU6$~~H5
z-?2eBYdoo|9;3Yfb7cKrmk0fa&@7>UV74?c&2Ll)sUB}DDJ$A@j4Ij#7YPL!-}62uX(i5>OU?g%eM1?Q
zTa~Y%P4##DITyR^`Ly(Z1HpeWn|o+rDB!g5meD~6s8bJD26-BC+>{aC6Yfs^`f(Ut
z{jz?}|GJOLryzAsx(tYM063%uuMjpeTQ)wF)-8e!u
zp_<4z@jDojkfQF%sB~R+x9p3g0<#O;6N3J(zPToxZ_dX+!x0hk$&VjEdppFH-9BfG
zBuP#4d~5<=99V2OBNHkpM2oAnt=mR(AZ)_I%8Kx(gpSnWp$pLW{{OrU6-4aX=M27eKd%!0PtEn(s5}#393pq
zv>rMT`r}c&0~Zh`=m6dD6a&)Ez9KF_iv4-#N|Zm&%JLuwksV0hT=S8(>DPgS)sJ%v
z-bY!vODgm0!10>anikm-+rQ6+^T1jaZ_Um{3n~8>mB3?m;Fi%w>&DX3akBG%Nf;mM
zGvnAD+w?;1Fvl&P)y#vvTl_O}TVWXtJ>ahvv3it3S}+Ygfv4C@6vN}TL9^#zbQ_?V
zIbab8(IDg)D=FzuRwu!
z<6t@d$ZgQy3ww_E02C=bu7Y}r1%VLmPE_wx4oax0;Fq-t`Tm|(9y`#=8KRkAP_OJA!OYDTa&Lsftce@}9y8zFl@HAbkSfWEusc|qR2c*9Kh*DIj)~IqI
zsi0RR;%||Lmlwl5%eF09ht(Q{s`ib;v*Vgj7FXzoHXjJcd}yBw#|i=5i2e0#6s%wBU)L@_CME@b
z5SyBP@2ZK(>8?=+9h##@-nQ|D(4-D~aB2J28!CUu8mR53k3@5VlHW^P)O=u;bP;!0
zB0H;$=g(;iFn|(V94y1OH7c1THgj0sIAX%hp-^>Mv0+=U&98hju3WdfY+#$2Zg1&P
zmYVG56xE5q-dIp)*TQ}s+dU^go!DEzs=e3uepQAeKn|vboBFC2hxMTtB*cYFzB`qb
za3J+|w<~8RdCcKCGA^(0B;$r6uex#3yTuY{?>kjkdiuQ3u%*}}&z;x`rsDJ}tm|D)
z%Q-}v&k7TWhB%pG*W<9>?}ks(G_aI~sVSa)B`=mgnTZUt(6`U
zgO?1dYifpRKc;jK3&KxEZ}BfiqZ^K4Yy|q2KSpR~*8=tMImj$9iNzDmSi{y}7F2ll
zbhfzk5O#7eZ|(NM#=Te%qboQOkJgkN+?d$LtYcceD`D|@Abd%9s@CK9%e4Of9CJ)i
zy@gV%tGl{FVd_3LtDvc5?a#@St;EwN?#8y)MjTe^{=fy5^J`T10{&Ju1%po&(DdCvCzcDlB
zAgr*WmSyXEIzWwcw?{`t&nTX$7Of0N9Bf=@yejP%1BV~7o9LZNmBp_w4^ll#@4bN38_^z@)xRloec5&uAX+59F(0MkQJQ#SF&USX3F}PH&V9Cw(G;$(PQr+F^5eM4IkXR(uxGDd`GWI0U8b8S
zXQDa1(TY5!682KXGvb=SK4uwlUX!^qdM6kswsElZ9)(^!3q^zI@1A7m@yMTsyuV?{
z@)0d2GgMZvdy)5?|He%n2|nT;EA_#+ncn)Ua^x%*4*3-HhsDhP1r7+D(BQO
zV!*G4qMxkgt;M%k(gVAKWh3J^e7vZegxNnjV{GPhpF^uETk9(y!b8+|_@yY=_wfgP
zKaK4t#r{8>ef3wAUH>i!h=7P7Avs7lN=uD^Fm!iIcQ-OaNGsh)=g>VgBGM?*-Q6%W
z!_0H$dB5wtKb~{e`2*Ojnc4TfKi9tM^{cxd=G6&OulIe2&cwT@mfkGqR4VswVq3N6
zQFhnYk6Dvo#gBgSL3*30DB$X+f&5-wVg8K&T#Ohf=nO3KWP;&0|7w>`URtVEr+nJ8
zK4>Db6SVuVI#m39r@ddh#IV;Toj!}R&*^mL+J;S%O8Z5;*?{7=vW!?7Xy({i#TsQC
z`t1$9C6YSJf*BmF7*V!fAS`hy%Px5ncaz`95PGG>8pNz$jIQW(!_qw02VKcLChvUf
zz5-%|5-*i87(GI(RgB+ht>GP?!tfSn|G_vcot|dEZA{+UD$(TDDL9=j_|CR&=fX%3
zIW!#YHGUmG)INV?AjxxKMj^OHlrIbTm`t3XnWPlW!g
z{2c9j#oc9B^QAK}jsrKHmTAYpuw^`RrkHm+Q-`fMz1WpBxN9>X;SB6-c)bN0#`j{|
z$=mXSix`=(27d2v0{3Iyw%U)LeKXqmHOp&cyR_FaWB44b=zv)Xh!Lz#=YWU*PqEUs
zrF(VBGJ;@eAS1*pFXuJRi-_^nX
zhv(IbkK+an4NGQMG?2P)kR^}3ReVH8=QDEnSFbmW@Nh}Lv9FS#cxlIHM`e2`vm4Rp
zmpXJ*4w*pqR|i{%i(YK?^wb?e5|@FwHAe!`#-U)dXH$J4rZ59v~XWZ|Xl7gg^BPxkqP52peFIw2Vnp`P!pA
z&~}nXBr$kqj7rgdzNaFRQb$`)9k`SEY9s6#s`Z8(#@9P%98Y!@zPT*4|)(|Gxf?SHn<2Gk9Lmi
zoMf#X!o;lHwKYw;`^PT@4mnm>9)h}kwB+d7&|Qu3=X#}?YlGOe$d@4~uGLhmN0*=x
zA9w25QNPaEP;hTD>P3LOMDrk&aqbP?!`H^4tdXR7iR
zM6qii2skQz1G(wXfVA9vvT9Du`wNLI&t4WACva@6GmG(W2AI5yLH!)V-BC?OjkQMw
zxC{y3m;ZzDYX~wQ0O}~q+{YZ((>7`UL6bBI7;T2^ZB6-hT+?}{k25`}1
zZ8S4D>@yPGY_oOt5952f4rEAZ#^mw`Zv>1^ML$x40K?Gh2ny2hRr)>o{Edf
zbBCNJ9zrH-kooZUh&;W)1CUba7T}%FaoDigMg3%a^0_tUPFC}!^hmWae
zME|82|9{(={>#!yt1d$kUybclRudO9+uHt0xFz533c(OW9;`geNVx@)S8I4|;6I#?
z@$h|$&ffL44$LL`X~|Vwv@a;KY|S=@?7vGH(*zMAh;C5*;`JURMzKO7?$zL#UO>k9
z&P@7L6?j0x?B5`fLuNx0ogX_Y@sDKPc_;CRwR#|z$$oC2kVFHa5-QUVHG}quD{?P>
z)xN*Rnx85O`j0I0ng&wy9=+FQPv*=(LC$VqjA_@aGFq%M2p?-ut_in`ID}^Gr(Hkgw6QJRFeT-}tQz|%#-qFoT{+bss(Rw3)
zsIfrwGGOS4a|p)CX>=ESUiwu~g7bnGp`~%}Ra}_CrWJ;yK&PsR;niL+qg!Y-WO>tYaIa+%Rw(%=`-6{Y1!h;^
zlhd1@tJgz-68dQ%FbceOel6;8z0tYEs0*yd`y1qb4%-E0NU)iwpq7i0h{_?FBA-x$
z%go)*Ayz$0)WpqRd5I&$H31pnpyw>W{PPm(GMR)BtaD9}%C!3EK|()*0#
zMjoTKT;Uw`-R%&mfpkDRU3GG~=YffW>PGM-7n#N0RY`y!hpVS!p9uwm00r(oPtNh#
zg=MLOek!8u9D16G^s!FqCTC%<*a3J}2xVJM)HLvLV9PL*SJ+z`PP$rb`i4EvaO`>Uq6c(5K6!PeK_w;sonzR|gNLAly>$Dw6lJ^u!ewfirJ}=_IqCn03Ty5f1Va0iG
z!Fkg@5!-Qb><8|**aJZkQo{WB3`rAg7xieog7Lcm4EM|jWNKPo?ajb`WV!DP-7Kol
z@q_+1LAH)+0tx+vm1JgcGdFJCHy2);aud%RW`er-r^rd0`2Q$O*)6{lSOekATWta@h?+PpWdJ7MCcwJdRZH
zz^hUq^=ZP{GVjr0jojb}uBhH*E>;uGzCoIzL)m>fG~2HlHNI7hpb?bY
zEvX1MSeg2L`)(-WjJ-Yo1kz;WMciw{+}NW|Y>yHd>6Qyomw#3*|C~}Sb6s@6)w?GD
z{M6w1)(aoMQl+&iOU_M)&YE63E9u%eO%Q{kYQ}}?c_{hVv_&bO@nD;9myXl7mu5^J
zy{dOyN?J+3-C4?>7tR9A{Ds{GQ%fh@`rPeUI92#p8eb)z*M?J)T|>*u^S9xe1&^F_xCENsisxyY7>#AM5GPUi_B0@83371*AhRXZgWQIgzw1dv2krdMt8&
zv}RGZgy_bLtf1cxl!xIsVX<$uOiB26VW=_XT2LjlWNf!$b0wp~K<|AwoHNHN&0mX2Y&q>NgeARMQHY7(6`nIxPNBOv`*&dpjw&u;$
zZmFkk+0sF$h1}YB*C#4B+aM%$Zji-im!IWetM0C;@>cX9lG&8H@{P;;&;=Iu@TD5E
zeNJ_9%IyH6E$(2D>)^!s-C6gnlL^tqpZ#P1i)byS7-+vMBrd_K1quGBdZHTX?F?=m
z(q6ZA&=1p`Vb&0cF)WoPtR8Un@~JTX<9tJ{>q<;{fJ{Rw2Zr;6b;vTjA
znbg<&-9|Cdovam|Dk*Iv%k`23S0C@UqU`Vl!JXvC_vUh`WTM|UoAdDr`LpHK7>C8OC!8$KpHKcgxm3kj+_gj`5_|0aP?OEF_V{-478k+Vy2`TviPo1+7ZF6hrTv
zTzru<{x{=hPQH`{ElZiECy^05hBnTa2~9tW+kX@d=rl)S2U8fhtQLt)V|P?A8@CpUq6B51JC$?kDzW}L|do*#mt%r?#_V0Q^^3SO(N-~
zXLpdwZBaa!vt8)dP;g1{ryn@>gQ+QN@!H{_tyLUP+2PhsD_rJapzE)-G4wbR`Pk!R
z-G=RNdFccR?Rq6~ZBkwKEjzg|X?tyslPab~v=tK<``quwb@W_a?&{ig2>sL;FpkW&
z>#`Dj?b#O7y16zBg5@fVB}QZ0C!<~C(y9p=W9Il(C;byk3c_7zm0104(&tQ=z$YUW
zL$)7)_e|)~39vM45*XAhAVpJR_$)O3d&5Q9m=zHWe%N*!p}oz)=`cRWY*u>G+-Z1I=SJ&y<|d}ywe`t2n9VZDFy+x
z&Lw-Mj*bmT9250M%V8O?H%-T|+h9~p4&J5jiP=KhW4lVA;1TVI{3l&34IcL#3!q6d
zV#tsl7dk`lTJpE^D`ooo`r7;UFZa7wCTH-UWmhK&Ak@+(WY_-Q|7z_-P3k4b2bus&
zX!0U=<|*tsg%1GF
z+HJi1D#H8PC}mOYU~nGD8-?})H5T&=L5cDQ4Z4!A=KjL~g8wblD(pi-+|hXp!1y-#
z;28_`u#?UI?D%X}36C44+4lb%1e{}=$vfw(MHSkj$=&L+w|X09ja44vY8qWj|2xON
z{Z^5-S)aW@lH!eJwHhAlK8scb(K*#O^l`FvjD}Y{s64lq?~AnvfhQ4qH``##!l2W&
zfyN7MolW#y?%=l8hzsABy`{f;@n2tFyLc$D7FN9%Xur`Kza@uza*d8nG&-WV3rt~1
zWsP}XDEMuf_y%yT{`lZo)73WDevrbK3Y5bJ+%T-2(Je>V!m>D{Py*(CaQNe$cb#Ga
zhArCwTZg%g8u*U7au3`9hnfrS%2#_vEAAuQ(HD|iK6*l|enj`T3!Jtce
zZ4M4xLL~Tb_WGJf4K&Kmuc8wPchPXJhGn|v-7IzD&_f*PVJi`x;<{Isnk%Hh=pbMG
zGU%BgE}XIKZkuEviRgqN@7%QrjcFGczQmPDwBP%35*Y0;G;r$&yzL_zuADk$DO^0r
zKq@4mLwZcbqkyY}2!I_g!v-6G5ha6CEva>dIZ%I#^W9WV)J7xbLi+o>uSAlEUgi1O
z{UW-O(N&QTxTrozq&TE1D8(35BN`v=dGC*Q`NemFk5|cO^-6M9Ue1MfK~%a8j#($V
zO*qO+E>tmv41mtHcfwbI^G0{n;Jl-6%R{!XHCdYE#trxlg8$w-ak(qN3C5&Al`uL#
z0|$P2ET4ZIR}8Rid_8{C1~~t84LAn1#%5MM$}{xDZ^k$GOeTk+(9n)?dZy0A&r`wb
z5x|Mca0g_dEK6{hvWf^G+Hz}0(C)muvR1~dme!IquT0#Dl{dKC)94a`qWC;5VeV7H
z^^e3o1J3hWyPbOQ%`)g8EH+2?E5=9aFx1j2MPPFMFg93x*x-bwpT4Z0`n&Lg@mx3n
zy7#F|!9E}Ly@C?_(H*e;*nWho!z1>ll$D*!qhC*ceLnhNC=o+Eww(ZQ-F3OQoNGp2
zE3PaEA|M5dFpngoQWA*%bm0lhGj=x4FwF9m&_HDCAfFCL19*L8xV-We>`ErM?8~1t
z`8#v`K4@i$WcnV0^hc`_$Zm0MyzHY*ugh5{wwA*5@-
zFHhOqPQo_pTE?c)L2k-TVAxGD0Wv-FQ4b}9uIF22_atnT5=oVlsy*I7Xrqs!I>(%r
zF@>ci8H5C6RUViwhoIDMVB#BasVP6W>l!F&eTap^+IW|cC;4eJi5;ool2+D^s7!~v
zbp5j+Ot~as+8+s!Q4~0ub?D)ecZd)chi+O~bf^hi{`(up#lndk_nnkh=K<4@GtcDm
zL~&(Zd!>Ngo2)XP3I}Rt83iShY5&}q%0lq!rC^aqr!!ZQ0Q0nL36{fC#k-H>rrSdp
z#OTl}-*V|w@{4a6)%*w%bWScZE|jIVys9A5Qq!tmZt+|jg!&>pZC?*&>y@QbOrp$R
zMDAt~w~7f<$m%g^Nnw-hZk7AePiR)C(7aLoyc>MrDfTo@OM2i{&92DL`VXJ@f~%Qd
zKQ)g?Wss{N2hY-BMcuEzx|tfiM2K94)Qo5xQ{)o1J>5TOgC2a7wMDQS;qt?=?Dr<|
z?SPS%aOy$smdgwW<*=#Qpg%0{-R6t%n=KlZHeVrrNxHWN-2_osOx`tp7pDHw;Kdy6
zqd#lqQ4p*kFv=zn72G`acRc+h^NiS1Zljm9%Mbta3l0a75AGq(X12r5C8=^|8tIicl+TZk3JrL2n`i%fPTRxsGU+s~H~pmkuQ`7QWb5(X
zd9=M@hG)7mY}`4sd=0bd^3^m$mcqV6Ry-rIZ7O?lbn=?+{VSi?^lB^>oZr1{-LGR^
z9HW^N>lpuzXtFSue-TRiEuDIVBQdwT)D=2;I_24x?e2`v&>rtfz%`ya;fW*82G9(x
zCCJ#-G?-=4?4sab$Q~*4-n}HYZ6C!-LXpK3)-I8DX|RBuqv_TVoxe>v8+?6qxnZ+n
zs>(^a{M#J#NrgR%g<8M#83PlAc^p>8s8jkp7xO)z%b(XQ!@J6(lsG}Y9-Gu`l-GHr
zPYiBIVJ_orel8{Nwa-Zn?fDjF;V#kq?(AC!9R1T>0m%JTPGZ*Pq1-rc>1Z3F09
z(2X1yJ9U00)vYC^ea@eMi^;$cK(9Ui)Yhs(8}?s?PITnV)-g%$DU}y~n^KYB?KAY2
ziNpjz=)9&*f?()+Kev*D$D3KmskI9EX~l|BBee{y!UMj;=C0jV&Tcc(s}oupGu`}Z
zM$!DMpun+Q=@g|0_O3y7)}e?L-^-7wAE+CuyyCDg%6nNlMPFZfNsE-}(@8(kg~|yO
zsS|>tXxKb3t`CPe?HQ9?B?<5*+M=LV`a9K&Iis2RW%)@4i?U^YZ;H!bDlsKSd%q;n
z#f+)fIx9xaet!xTsO*>q%4kb>5>c`ht78JzO3zG_pel!a(
z{wX@XrX|R>2)d8U*UN2h#Fb()RjBAbB3vMyT+qmJ=n=T3GOP#$nmuegcl|AKqFrB6p^PW=$i#Dyo`Zdqw%EchH2*yrf8ZVt}FpM+tSQ$3(
z;&*XOgMj~0$h`>tyuv42u)PEZzdzQE=n&ht%+jig`{
z=zJ?dY|sJXoqDQOYarwdjgi2>QZ3qeE9bFU(Mu7j;k{`cE(_T*Eqd%W0j)OiNls_+
zztF@#nae%;Ea~cT=9{L9Jn5L|oU{uC`<4Rmz0M*ChV~?b=AdgJr1vCB6Su%^$jH#$&*a1U;YDAzEdIF6cVS
z(?Z+c)&uuI?bNsN57SjEUtkj-Y7?-7_@*fN;%e)1%o$1;UU9QE~>`*~~{fQYo7kyD|Ve?g>
z*{SN|arJX^vzW0&Ve#hiP=eLLc#j^gdEBg*po1_iR4VXKz{m^LrH{!=P(blBRwNVT
z>XqAJQ%Ag8fpOB*hye`A6S^H#AJWWM@~mpyEbj*q
z92I2K1EUthva(TpTirLe7xnLehX`P$#FIRtXVCJ?Z(^98+7~VThrue7@)gb~3c|@tj*+?rseT!+@kiCt{QSZ9eGPLvF1)!Cx#hwRWv+
zWA#P(*~4wfEF=V~DFDCxya21Lg&?O+{b^)a@ZedNS3)Wd9
z{l}w%0-^aq1@`y3g({od#%m)|NVb7Q)Z8YprKhpDz53co1+HssWOiOX8
zGv_VZsQjR&O$fi%{WZlX=duddB;B3`c;ppPd3X%hyFP8c@;qRqJSn@S{OE@MjXP{rBF=w2%^3=E8Q(LvlK
z1(V&>O3r#4$>OZM-GE*V)))%cVJbb;^JOel-_hw0?T`r}L@W4sv8G0Q(nEmt!KWM-
zPR4qC5WmzV9juNy7t9naSsVRgb9vHgKZ`;gI<}
zcki(?Z+D5&N7Y}*upzK?STUFPJ6F@TK+9_HVG5%PNCiEl?lJEMYl*`5$>i+jHVTI+
zs9WY{s-n?eb2UdiNCY4?h;T*ceLyXjJ-|~FzW+hD|28wPJ*v?yrD=z<+a^p9D*;Ap
zy|b5fPbbBO_PU~3PguIpZpOL)L8WF3TgmHy|9td4bqc
zYruSt1YhmLVjEx`)TZa!X@n5riJ**hyZRIXfH7`^J`jxBG`6KJpX1`rs9_<18HcXT
zK`j4;z^x)^YO+qU|FQYAK=%rxl}_^Uqtd-QAWv6oXBKGDUHcz`_eG7^qQ>17ni(QG
zhCPDnZMn_Fcs+8{G%J57W4(!`)U>yem=IR8W5~#zJwdEt;KktPayYcNtm+8IZx&dfWAv
zT*!Yvc$AB5R!K77lRAMvT$L7=Bch~OCYh6@?px{70q1VKsGbIB(Rpsz#(Ti-5yQRS
zXC$JTsiE%S&MqlrAm674;l>Gfh*wS3PR=aU?JE8n4)&i0DxtO1eQ3KeqkpI%Rk0Oyy%i*YHWQwQw4H)^F)NZ<^l9yjsy
zaRig+FJ2p1l~ecgLr~(+bO2Y_nEirHR1Hx?$R<2`r
zk&?^991`{va46Ldd-#Eb{K)geJdNZK0ID}i8~?xuUY+E&TiqX2JMQGEmU4G*ij~WP
zaY-5f-p5~mZs#-M?VJMWV88fXq}`04E*yaWjWfAS3!>cQiOFZUjCGcmy8&Mgsj;N@
zi;bIMe
zmHw}W@_#V282t9MkOh#7+b^AKO{7Uycv6P(ds6pQ1y_T{mwR1NgWSI?IJg~(PO32x
zFUrSDMI{4egi^JK3FOrqxNT=_8IW(J#&I@Rp_Fu6XiSDcf}A@^i~_hh6ANs`dA2w&x0FgkRIpN5_XM
zDzy#6mZT31;vKN3HYe!AIt+fb&%5kj55m{9<#zn=ocmz_{B*kDc~Af7RySi+2MkG*s`1Qdb~fiV3!=e`=rP*59o*U9(Un
zT+P?rclE;P$COnJJ6k&g2MxFi<-WXwxT~(MpJoSVy0mb%;r$$9Zd(p?cv^ZKCujC$
z(g5>A6QQCvGaS4eAB6RaqoMLuak(kGmRXD-S%IjESOfnI@G)-H?`yw~;?&${>0^g)
zKNA5RnZ82s)rEGdR4?xuXoSk3%!}<*%K&frtES_Ph4{ZVtj%KB7f3GW7uR;>)01BP
zB!K;xH-9BLa;fb5By0y8mq_*W-im@ZIxQKVG!l`^^|L)WvN+i!R(vTxetxB~p=eSq
zl`y9L_h$8H|GIms0ax12k#j-xug#W6w~sRhPpd0NtqgRpbom-BCh0NM7`sExYP)}U
zT=roLCsQ~7ZU35xp$Jik{k)h-c9L&_PFnF_yqU77?`X?f^IGyj_z`r@rd{-tN=f+(
zQqrI>D5HaUQq61JB1j+={Qlpr}1?tUlzDZxhB)(w1K7Fq&feVF;QUI
zSxIRY%X)p;?Cou^FHE;3@~@mJYSKhSPzK*N4yddUg4#gJEULVm9?-Q-Y>wdiL-oO+
z`5kXb$mh_~!qAkbo%s_%>N!!z`HE0doi}zkr1nfc>(e%6@lv(Y&d#H8tiZ^nX(E+&
zM|!l({Dq9mM&*V7qmK|r0K2fjlQLJGEp(dt^ItPsDlc*bQ=YRcfaHrYC1w3h&*kc?
zzS4y0JV#fbbK@sSLp9XI&smFB?e%BpJH*&Ho)vI7U_F_^eyM;xH%ga7^EGYp$5!K8
z+c_66LKc^ZG-XR6J*Y>AMOq|)X>_M_SO^#6T{|>W54|6w1Mwu&_sv>b(tP0kU>{`g
zDwia!3s^5Pa*pT=&{_Dd=ljgOY8t
z$C7Cy;FfMz$(BoD=&6L1tfOM$F8iDY>MW@^E%8fZL)x(xiSpke4eyvpjJ=l9Oz{t8
zGMQs8Uj^ACSvxMMbyJ<0#uElC#K?0~6Qbs;WywG9Y$TGUvNQT^!iP)cV*1n9-UmG{
zxzJ4>a%R1Bc>SbCVbIRJKQwqy>7|4np1>jNo71I|)Iui2vaUO(>D}as-bk~;mza4>
z^3ZBIHYxgV5E@uGnXZdK!SQz=-Fg-Armga~*DL-D0*U)3$ZLa-s3j`{Wvq{e#^I
zy{i7>Kf_DSO(N{NEljqtrko5vz4cf9I(xT%8qJA$KbS0<>g)GaIV3w&t!D*S3wDIj
zPs&3tEHP*esbz_T-?vW?O{d04hl~#tC@|#Dq<*Nu08pMtT$u;(2?~0ctFRhb^ZOA-
z3wlmYZ?qFo#>IM{ecevg@oM<1bq#}5X*acg?Q+fft}(77*F3EL=R{l-eD!;E)un!P
zPoEvp;-icr>~
zih!0y=)R8~{oWgd7L05p67DOIs8>w0s#y9ZEApfY;x^eAJt?ff0NbS-PWwy~qYST|
zny+=AV>#?@uRd%8r65CQ(A#+M`lVq%;ZIr5&9@GXy4_rZ8;18^?y^S;zhmq#PU0tO
zsKJSD0;H`u$)DL|e*0zj`?{q;GV~veS%qg%R~s*zHq;UsViDwJm-}HiyZdP|_{lUeQ&ZdtuO1pHsjJLU`V(5Ty5ulP
zICav^mt6TUcH$nued%||YBt#sS5WtSQCr%}{g0~XlwtwPts6%tz43~XW2f`1cKr?W
z3k#j{g21)kW@1k(zt1mx@nBO2JtQN8cGeh=^R$>dHDmDN(O8=;ITTqX-ctfU5`Hi2
zaDHOxkHggZX6Wi0$O2_4a38N4n#DGx#olKBBDH5ab|o9>*A`SIu7jeX{gmhh!JW;OH;H;3(`cD9*|zpqc$Srz0KHf
zZ|0-;sVMc&E0K>6{5OfydOaq7x(9Y;-O71MVJNNmI=U=Qmh+z-mJ3NHkWy4h?3YY=nqd`^$IVpo@Ia3*6KW%|J%|3xO>Wi0bs@g(M?K?LK!7ZWuu
zkoiC}YdS-%zF;)Ft^sK^DvUbu(a-LRN>i(|5Cqy+1_gT!9`}`Zlx8h>4>96S0p=c!
zk&wAbk(Pb4jZ-oDMeGkl7PhpH1q5>jVTe3b4)#H`rk5$tRTqj4ehQ{9{wL&vx?v;N>o}#fZE;C
ze0;hvrlXfLvxC&TUP-l`d*QyDsX~*(@xfqYIiTUYyeu>w*?EEB{2O*0^jD@faL)99
zz$=U)O`bW<&oHT=90akV)6z~l<>hLYoOR0M7m!S1HDYPK`SZOlcMov$TlOaKhMv4;q^PpPF
zCEnHyvUyVqNp$@WhCx@8ETMRN<_-6Xa5m2Ozb4G&vRAGwSa-%&0apHA*Iz4MwuMS#
zYi2`%AJg}FAOx&a$iP65_lxEWQs4Mp;QXQHb`DZ#sdR~#hJZSvqJBMT9Y1d)89#_x
zK{ANLeotTuw|?q@$!u8Z()Ff9Jl>jQfLXd5Z04$U%X`LmOkM1or4am$q&D;G_o)X(
zxe~;)%L5%1jg3TWtr{ULbpYrq{8tnu{B;@O;s5?Hqba&%B&an
zu;&=mDRRr2%*-Oc71`e&uAmHYb(yJ{`W@kZ1O*XKUydT$m8gbPGnOYJ&(Y)~`rqRa
zr5m67b9^ON#rx!zWovL?1-3NMo3uzE!HuzE5e95ZTsAJRDzk54hiB0~*9_w&bI|s`
zOAxM2-}&3&)ez}bpUPx7gI`BuKTxzw-S2AVNQ-GGw>fw_wiEnLs#xHgHu}?lQLDSLS94L1akz==NBu?;7&(0%8)gYc5w&;WJQC(drj>&-8Ka-_yiP=E
zW;d6O{;<6@inod`NcVQ(zE)GUZz)!8)LQq@_HIt*WLA$T)Y|?%yUU~A1k$QJtcgpd
z=jU?&sMP=F`5XD@IXCys%7GXu6@~b~+zA1SnqVS&&Yk5SwqdgwWzV;!1%_Smb2<{B
z3(;nv1~Du~k}inqO&YW02cOk#n=};_sU??=FkADBwLUV#yjS?v`T1WYp!PWn^ei!lagQg{;hs~7ag=gWPUBVFx`ue68ldgdT>3GW7_xSX$PZAnlm7_zG
z${69R(Olg%b%&ppcebSo2Aa>q>Wc8woE_L`=2~CrAY(f`SMqYo)5)|{mNH_}{mCn9
zZ@?5#53&h`ErVj?fdIvY`uDzGc#Qb%6iK=1AKjZz(G$l)u99{~L+q{B1Yg2)SK%0W
zz?YZ#kY}c|X9;_>USf$if%E?MHuY+&iWiVyen}I(=9n`Ar-~AIHb{N_+MmT)UYNSq
zdltJK(2J#8E1z(>zdyH)Si=h!S9;P$l`=-u^_XoIt5>H<+mzRP&2O|mroL6Tv`0sA
z7IModkJ7jW9_=-K&UACGGEa8ue5*~Xp{Sh(JvGmYDSYcs%8{f(RhlDXjDUIS?DU3Z
z`E*>(SC{a~kcxe2^qZ9HtzJD*PP)@r{Pw)=M-_AH6FCoJ%LB^!j7$&xs$5aRvyi1m
zYYiv|zqc1+MEsyI*F2M=e|E;Xt3#7-W_mz>r>5&;lr2snD0Py)8cIy9>eIf}ToDq8ai@u~Fzchc1MB7qXeZf*5UwDDm@FUukAyE374MC$ZC7SgOl5{OI34}H
z#p8Y--u^lBTz`p_7n-#rZ$4K#$HAi8(DaMBVAWALl-*WPuEe~k(N6$26a0##_sJq+
zRK+62Dh1~qRkXi$C#}EsnI3&+Z(drRjN8HaR&a)YsyFUig#+`@27N*0<+Ou`%(+R1
z>E_0`^QN$HEyDs=L5ZhI0HGi=j(iD@ov7#@=%wKoVHQ3{d_id?sggeSK*Nu3#mt!>J
z=k;fu#8ieC1BZJWx^<~kETiT(wpo#6iVZ8VY<|C^nDOe)GM#w@#+i2_mSJ=Nf=UuW
zbqI~_mf{OChN37Y?@8B=KRXm*7*BssVH0GG#yr(5QrF`Mv6`J;mk_0Rdl5w+=On>8
zSn*2u6#Hm(V9a@WjLb0mvCT~^@=a)AM(43^68}s65b=XaRb0eyLsg6K&sFX!Zff$$
z)-8=M36(fdLyXd*ojLU`Sl8P@mz(JNfs?!o$F?^af|C3+-)Ni^rWvs@a&5yuN_HLV
zjjNI-
z)ho+s9bVrU*+-O#;{-qBqyVBwnxPm^Fa`H*PsP!Lo?Q~>sg3=J!iQx2lu61?L8RYI
z5hZ>l{j`3h`54CGPJ6S}YkamtpFHr)Nku#R=-|rI^iBGJmQ-w3ZXs3IpmJvMvObrC
zHl~IGyR_L>+{qq&*;<~(8yl<`X+8#33
zC@?nvT$QXs&j|NJNJ?mbPM&HGSJg-`4s8)V6>XOuNJdVmn}WTm#b)`B4wX}x)@RRO
zvp%*8KCi4maekFzED>>`uwoByu_VLvBnUYseT+!9aU%uOT)Hq6hsTAXHTQ(P&=KBp
ztDqL;_x$WyFjh*@?^l}pM?-H+6QhikqI?Zgf>dC}>mqGBtk<<_OAgTo9sFD9DY92+
z&KbI_Z|4wjnAKv8a;>pvJj&V1aPC?byUBZ(LEG42J)oI|gr!6Tgb!$H%nfR23B*i}
zCJNDPx%fE$JbXZIo0T&2sM|k$xkyxyouUSnM9Jxvcyp71Un
zOieYc{gZ%;g_O>N_B^!Q#y;--mfO;w*{FbGIsjFONYoG)cbEt9s&UopC1?}QDC);P
z>uOs8HW9W<#i;YgI(#M$FDw-4us`(!b>JZP$jL3i&vy4vQ2uKjL=f2O3b>O~H_9<`
zC=cZ21>P1dO6u$<-q7vEVM8;LhUr3RKBpxtSK~w+f0eI89$*+!D2anD-Y$pK8N}1N%#*b4O)~{4l#IL5elWsx*C2586yv5vM=w4yLW$|g>l*U$i;$nt)37;kHE4GYhM-}C_`mjAG-8V*
zR(5z29$6FK58ATui;IHA7D+jkb-~wc6CTImwBC%dNh+yQZ9rAYvQ;B^+Q<#L{0W&a
zXBG*2LfLx!$)n08kf+e(%uQhrGF|eWes82`(-lsXaDO$()xNN8X-xq`C=#LVsX_O*
zq9+~xu!zN<3xdk>uOC(Y@|GSW)lnNk*RPCC|4c_|@15tb17~&v>=Li}hkmhbCxK&P
zk&s!soh1V1#+J|#41>rM8yD6~aY^k%zOD{o^q;BrYNn3k=xiWx0eK1|(O==2k}(o&
zL>stMNQ*VCQ`x#ka@|ov$2X$@UEnqit_IyvtI(d`tw8Yyd#U}R$X&m@%zLliq&zJy
ze3w@e>Oj0SL54pQKVN2CKyfs+~AB*$y3gfe>*zR+a_(m>=
zE)^cOg@J#G@->i8;v{kyxE#uRo*mJi)w&3Cj%Fi@9^frSs#rs8SNLqW3)2QWF9(be
zpvka@dR%l=)?v^xewG*Any^OW348@VNa5sbK-+7k0N!8VAL0*|4{(*??c{4Fq#7(B
zT)~Fx&#yM7B)=pNwcUVQmLDDpb%5!-02^&xUjbR{EB
z3>K++!TOC%ve-lI+VcALwF^ZA3hr3pQ(yR)@(Gd#k&Ml0u6JoefMx>z)h>6P{m{dz
z^-h(IM2sUKcXO?Kew`FBc)Q>y)fogXiR6^llr3wGDZ1$K{{=YzUmG9)b>aSJp`Q5!
zaDJG@v+b7c;AK-Y;0YAI*TwNtA^HQY1pe!CJ&GlWzW|(>B_8it
zEvtO{8;8bYq$v~KD!oSVbuegWwzuHkJ9ar#mXJvGKP0t9E|5bXT(Se4L**R_H%b(_
zAy<5uJW)Kz+P!!dg!bNX`N2@0jP@gIyo%{|uoOm^x-4j664g%smOeI=3v?Ig@!l#z
zemA;lq%{9=@S*YW-CPKL=!*d7#OLT*4M{Xnk0NSg`FX?rbAgAk&+XGA_bzZm5>!&&
zJ54<2HuAUCd+&S{1%)soAqObQSz-;DiPD*NwIjNbj
zT}EWIN)hYLJd!vX$pv{fh^)WSaeq-eEw!?D`45II6p`d#z=eOjl(Oigk4nxZu79s9
zDZdx8UOf=Jp(Cr!C`l<#oV;&|jAY$cdx$`Hk^C>d&VsA0zU}f*v=j&q#ex=x(n65}
zL5df5hXTclOOZm57Kb2(QY^T;ySo&3cXtmYo!rkebI*F$nl&GQtaT3OB-i!dd;hjr
zS4!Km73S%Re1qCD)+X8rSPsmK#4gG5I6j+b|GFwjR^lW7g!?TFK?e7K3Oi6#;U$yo
z)l)gCeL&Q;-vA-!cYrI}KUBSK!35(CV(e4EgTj3@KhWco5a~a+QIG1$rsWd>6r8@KQF^Lx
zuY4s52+eq|;cxb2hrB@4&Q2Q3f`C_2Z~$F^OBA92+yn8HKK)wn$l4ChJD;afXI0fl
zMu@@vD&Yc~>s~}Q%EXENEwY?W0o=Ku7v7K!u}EaEFNab{Yq3Y4H0i49$Cze56&q-;
zGpQwG9Qo;nq!j)27%=DREUj(F=PM_`g?1SoB^gx{wWYs=+lAsY%a(Gys|lxpW8xPr
zoq%WA&sx;_Y0$R`e>!Z;{JN2K)0pj)Cz)|p5K*GM_qAcj#O+Ic%NC0&)}+l~P4%;3
zYn9{*!Z3^;FDxlh>Kd*yHx83~Z}?5`==sCrl3r1
z*fr4%;%(aV!n}boC4L>vo4m#TJ!f~486m3_w)i!Zo~GOSmnQ2$Se0LW*}|%++Dewt
zk1#lusB0B>*q0u(ekHuSUtLynJY}{pm7GvVsYgw0+6|rSs#Q4&urk%cPX+B7t2adW
zCQdIkyyE|Y1J0@}?>a=ub$^yIo5Xj(3mqE{>ku%px)Mx_s4rsQX54C9FDgnYwxi~J
z!Sr6EnJohWbCf&iTJC3mNY2W5Zk_c(cUxrf7F5(?H2Y^(F=Z5V>di{d7=>GBanGwW
z+ay`Y!AM+yBV@kRT$~c|Uau7W%YO030H~IZ+4@@D)}=QT_?&mDI?HNNG$3F>RYjtf
z_kDS85fA%}#`x6anbI$nJ06PZ1u2zZ15(T`3wT0G~i)xf7WCM!>H32U2qS!US?HX01cA38sgRlX6o{^}*3
z4%v_7C)wG0B-OU~tRwt5n#t)XeN<|6pLI~aiK_UFbQ!$lo45B#_D6|(bXm
z!Wp1_qsMz`NKcS+U6jZ;c@)aaQV~@x0t`A7d2_W{y2l^wy|`Zigv+JVI4HV<6bKrl
zDH|nsdfQrQ^l-v)wuZ0qEo+V{i___Px;7vCrt^D|9N(pU*3wr?1RC<6P0xs5#A&N^
z3~^;W_2+7&Y{`DYV6NBX-`X{uY{8IYjG_!obFo`Pe6gGIW=zXRr{ObVkuOp61HQJ1
zf3bIUQ2r86%g~iU;|9~3v{s7??W3)}&~qNX8(NXB{+F@QYT)7^X*h%C@V^GHwFxI{tbsu(9skDu&Du7r=H;Zh49Bf^GBf__c5XH
z8hp1(hd*;VwFkTx)*0j0CYHaZ;kbAA0?Fhv*Pw9_PQSx7o?Sca8sUEdZ2F6W4=Qhi
zJeu3)Zh&Si-SK*s4@#MG{piC5?g6U&X%hulZkND)lVi8X+KQ|0b?Kw1U(saZVQE9^
zTC)mYCLY>Oe>rY1y3J@)xJom5FWFddV_vnM=?Az@R(6qClMcDQ$|DbP-->J@+1Y-#cOH2zOUdK5ZMwBW*i
z19)3Qbz?AkQ`Ni{we7PFtuQ7XRc7_zAHCK}vXm&ow{L3Cg_3R4Dpy`6OVAbx8*}=^l3<9N?Prs}-%?opN^hFYn_ZNo-E2+xZd4+86Z7TUSG$)nlBvhXPzV+Na
zTO?^td|q!SXfFJ#(;B^8Mo70DWsZ;!{${d3N2^djy#i~cOs&1PJx+QlpM5*gMUTH$
zH*lN`heEypI3-B0Ntom2QRi{fw{3kG@94nE?8hJ*9q+=^ebO4y)T4~@G|
zT}wuGD0@dsDL>$_?b{~4d{NUSXgYyg^VLUb#^Gd79%lyZJuv!J+EnVK>?hIv7k+DZ
z_g5L*dET317j-{9S8POxzFPIA(s!=codPh@jw8j;
zY)_~gM!p~#k?x}qFR8f{kc+uZfz6}ha|1OEOk1U1PF3lUlDuDd=;mWuBvL8SmWlXA
zyD1HK&vzPM_nfhb)4Dh$gJ`xq%$@-);anSTZ{MwNlyy#~aczzm2cj(VH@=3tnVmLe*UvMSUII!Imbu!@_GLZy^TN)jI8occfmB8CbuwE0RmBlehVCy?-;
zsNqD$^TO-va@5OmB`ue~C`~$ubl_bM@)I5h(v6pp%CE;)6st#JB;V;T3d2*8FS4}+
z-T}NbLfyECeTsi7y~?;bNX#;l?Q0kJm4(ILBY{ca*2g3-AKTZg%iQEQNgjX=jeAJ8
zz^^QLt8~ihCbPLEnqOS{)nWHJJZNkhp2lmz0@El&L~*rcUltjM(5Bs{8Qx6
z#EJAH$N;vT!hI2pjx-`WSig*=+~Z~s?w#bPOJ>rDHvbv8kf
zHhp3lP7nnEN+)G8n?Zt
z&HO3jfi`Yczuyb3lZBQY{G$c(fH1;|Q6l}wt0@lK_>I>07e%pfJrIPOqYLSz-NF7G
zzDZF==d0RK0OGldM)$r(Ph_Ky-AJ%uNG3#-^C(w6y8fTi&SmGhroOIaNG5X20bR74
zrvC$o-6kkNT#llc_J^v{JAVUI1>@_1gOTVcaFDj
zxX^O{FzI_QpzEaW9adfxMP%Ma+Qgf+{iLhm4(7u`eP4F>HH=7
z)eCJ!xN;#UynB%GH6^Jhz~1VDT{lG1Pk$|X3N&Td{#X)QG+!1Biqsfb7rY)LoEoZT
z(~)5xl42}`0So9LNJpE`?F4FoHYrx2_w(&wIqp&`4)&OVL-6Y%Spu*bh2VjTv~I21
zLQTn0PpIHDh=}f~*iRe=w0zrP_C=>#1n>Zw=`S2h^a`gzjF;??yGqCt_|fk$1oawR
zpc-LOvrWc@*WCts>>W@?!OIV*phu3GPjFG>DH8{i`3Z1`MkN(Gir@*Vc6@`#BV*Hj
zGL{s2{$wn-w|Q^C$E+r=OM?CR9a`wNz`MQguJ8n4&@p4vi4r6KPS(sHJy~cm>lMq0
z*9EPwN;4TOrpSINg1~=*dhX@D?gQ$*!Eit?KtaJfQJdVJyFGVoqP?>n6WLY+Y4AxB
zau8xnRP^LuXz!=kO!xlvCn)+&ez5TGTO*iUPSmRu>BT2}Pl0QLf%vO#090lAM&cL%
zfakz4>u(d0A%Ej_T8HhOrU+F*ljFQx1)XyRED|w4<4?gEBTvmE8GCFlqtmVVy8>}Wkw%8(nY$39X}LsDuxd+c=B&-Fsp
zTRlxFg@?CW#P(yYzABXWGRBMW$q=BN6g8aM@!q%g!wzNdB2m7c>a&*zJ9s3K8K?#R
z>tMT8z!juA{(0VnO|ir%VL@JNM*&WNLd-K9rfde%+fYJz0^Lb*vlDIwRdU$fA;i_mwMLe`ISc95S
zPa56UB9>nb2~(%qka+RL!()eq!x0A%8M8j6oGn&hspny=Gy|7@;K+8|bI$E+
zfdwIe^@1@Kre?T?+I79}?c^OBEqZ_)dN>VB?^H*JNK7ne!)N*8SF1)26^9o&Ltpbc
z^KC4`uKVAL$=l=STMI!C=pw!Qy;BpD@u>V>UNTl$zv|ryM92c(pP=u(oe})s(Xm3
z!=H&(AeDA^;j`6};{M~Dy$@(OG!S60W
zS~N#-b%X_<+2gONOCvhGWTVo>SW_>>V2;aaw~&W9`wwd*(+r>&EiREK6qn4e#z=KlC)ve{TUM_Q{st>UuxW6|9+yj;y1%?gwS$X0QH5Z_d=yS
z>p>1qycB^TDQ4|ag4nL3xdY)&jgJGAiAOg;djac{1>!&ic?poy_6JV+
z%Yv7ObhwnK6g_uxMjfYDq>tK2G__hYFMS3CbFhk*R*ha1oI!
zqnv4sbY5_`PY2Xl*E9HCnAZ2utW@?QMK6H&3Hrq>A?aIf)>o6hqlObz(8~d=`Hk2O)sg_*
zFE1y1kH65BJJm68HfQD}^9`PStox$c5{KLGa@tQ=c%2}YxNlnjL6QKpe?rR#G
z&hj?4yzsC_j4!;7D-kLipT-9bm@YbTW4T1|PggIfJm>QkabuP0bF`IjO2;owf8S%)
zM;5}oMm@jd$m5mzqm|(AwyCl)64U?8#`%e%`YEz0LPM1<&_AY!$e(D1U0B8KFUlWj
z_ho)v-^%YnFXoIYHDncQ)$1VkTa?U;o<+Di8tT1@N~B-=j!WOEmotYHCbAaoF3U9H
zZ3fb1u3A;3dA;{McQ|E!W3T`)l{`*`^eLos8Q6vY*u&q$p4}Y
z^lR6%e!f*7#!)y^XC=8Ev$GTseo_
z-cw$_f3Xu@>&R2-kjpTWHGrAZ?0LHtz)#%HtP$nC*N*uh>rM>&D>PK
z`2EwD#J>AJ$w>`PhC}_3Gy0AdsZL?1sSeFld
zz-wQWeH^@FIk^RZ1>B{Z(zm+d1rN~ew+GYq&8L+o+BfQWTll?Oh=ukn(3UK1D~m;}
znz5dK*UoPUQ~YRq;U~YK`3=Tu?4736KET6|mA6D+KG<{niIkZ0uF~xV_bB;I_
z3BrS(4}~peDcL(^ZSsTW6<3$R*6H$yw$V?KADU!=px;Npdid!Uc$xCjR2!qHC+S#W
zHaJx;+VCM27j=qTrlKp0BIPaz%K-nQTCC$Ok?1`lXz@{3L~2v;m|D#0sk@*&^&$4Q
zLFY?F3|^O|@VrIuOOpQV_5@EZU5n`Wc4e$;vCNKV{wN)X7+-E_Nku9!6@gjMETo-W
z13`NlbV2LCywh^8=C@l1o^jTbyHutZo7?QZw>g@!YQCYm86;`O0746&P#;*}jy7ed
zSylCMyXNyPSij9XWf#GT-czr&n67t=NHBmB9mu`>pN+N8b(DEz((t1lM>6yZ5VJ03
z#K2U^baB*f?_Sod#oeiM*w>8^K%gzTj*`~AS^hX3hN1EhGLj1Tee~f61_X7gi7tv1
zYaCF11ByrVJVtV#=Cn2@9-4$jV`Wg2UjqNMl2?;|>K`jJp1S!zZrr`OrXeIkY5Or+
zz~`*I#ftzD=#f8|7n?v3
z&isOGgFEN`PBZC#gDkgNl9Y&CyAy|&$rRdrE6-WHGe^CK-lq5rp6W0A<<0HyIL>{?
z6DvtKu`x#Cgfmu7$2y>g<|dOdd*cGo$2r2QauvUxR-%8CssFB!XMRU3Y#ysBC+uQF
z9<}@i5GsL5%52j-Bw#q&$Hp-Ovmfc{{mN@2RQW4HHNK7K9vr
zGMS6Cf+-^0H^sDQu*LdU(7o?k|B+Z%e9B6}4pMw|mpSKRzkf~xZ@g&Hy`t-9-*AGv
zFaCi_$9k;varL1x5WLd2Gm$z3WqpHeyUuhLAgftu|EXq~ZL%*2>h~i5$r6jmfWlbd
zNAp(}t7I42liQOQGJwZ(z{8UlM2vAPw_>;~bdCHTyl^N`iKTKAtouC(CI|x_Atu*0
z5I4t5wksA(7VI6h*|a-Xz)2Hm!IO!-u!|55aQ}K$LR~Y0;ETkQPmFn-P_}%g)5Pln
z#u0FF=;eX#e-_4rqDZlj<_{{c6W|R894UD&ak&Uyv+p1*<85A8xxF~a*}BgvCu%F+
z)i~iuCI9Y%qewgt(R5*hfy1Hp1la7|wC07jvj?%IbSL`h4OE>F(JlZS
ze~he8*VUsHj}7I)=2w4D+m>OfGpz~aovyEOrQnr05`b9azf|!iyxpUXlG^w732eJ<
zoCVGB;DgqOz&Z_fNkWutgzF8p*pYTw5=9KYY9U>|*n$u49LFu|>m?DqaY0*B@>no;
z5c!`Bx6K4XMF%b9EEuB;u6TEc;mT8^J!jFpcz*v)noHq$q4
zRFp;jY3qyMpCEW=Xm}96Mq`{A67HRw8=U{zR6o?|H@3!c
z5_Gf=a%MP!Sd?xy`&3hVvnkvcs`@IvvBUO!{i+CAyLn?YoJ97%emU`TI2)-uC|Fl!
zGeS?3fc81L!hl51m(VShzEWDeSLxXH?9TqIZjIn11F|=+*g4@sPk0XM$YYRmHA9Pw)NF%`?EW#IsFhpLI
z9SPYRu8jw6;ckG1JYdW$;IaEh)X_=_oaUcZ;5GS2u*nxBpM+ryu5tXZAukwHGJV
z9UmIU4fsCuS{Dk-Zb)x4M!Y3o!z-=)I`X9?M5yL1TbY>5HJfe>Sc$X)HtHH%!{;rUQQ=uojje;j4e
zC!O>v$-77ixZ`sMrq30
z0D7<*o-5={EN)`u*)6#uC2^MZ6T@kjzu;W3#4<@&_B1{V&Yk>DLqkJrLtT>cvF=a)
zY+6+34qW_W{Avdg&05`9#xIEa5%@@$5~eJc)@==Ey84wy);s)$mht<6uS7B2n6abh
zk5Ee+ZOwNcDhXlwjM7_$9Vh(!n;lPulU$hr?Z7Po9707>vvd-yO$z>w{Jja#>U}1&
zByj~1h}qsEx!~&ux9jh+)(NKh(ciqY4q%mm0-v}YZv+j-h&_M3fC)>f&~KT9)CK+|
zd6+5*-SNB@@9v$}W};^6M^g3F4%W)fSugtlCYmFZ-qXOdD_w`a-(NCPtBl&aua4)I
zY5?qLm`#Ip_ceRs{e;l-Ym+}bc>)afd>=q~VDfqIchk)_?7THD;H;wZmF$S?TY}mi
zGl}|(;Y;n?&DE>;7`}tLpU1czOzNLDlW3ySJ|zG-txEjT!I-x@AaDEy0E~PL&NG(R
zaJztyk1?PKDM3@>Si(KLX9<{+nUzTi_Pl_UjULQs#yt0E5
z5V$l+znTh4Wfp&Fs|xVq`1&rTg_Y;#B?fuDig%jxUVRw4hKRGW=nD##5aJhM&c3|0
z8`uf18oQ7S&R!<<1T=c0<$gkPoJ@!_aB8)XtiF?Ky(h#8F$FW~nrFQ}uRS
z(-4#Isus>yG%~l2DW&O?Ja>2ulT4Trg^5Dgg=!K>%oK*E+f$-A^CycB=zOwORbIhA
zdE-gvmUwLsbEBkJJ>L{#?s^(CTBUusw9&}#YijH+ckwc&8KO!8dzN;q#%@T;F(gY7
ziG0+!-lGgdlg~GLw(Z~+`}E#pS01XC89j?Kdg#{5oLPQ|zZIw>H#3LRVpvm!`>+IH
zdR>JIJvHhIPJSts`0N)N?gKVmf)SdeDlfY072}%
z?zF8_!=w_6G;Zr=no2DE-O=Z%WqWXbKJlr>vxtK6gTS&(T@*Gsx8K+#&%XOE80{JG
zvm;3}Lu0MHKk*ZIN0aj6&9Cd&%m^8_U9L4X{-O}CwA<)lbjkAja^6i&6re_9TSH|J79#Q3Qn0FWaO7pD_@s9Qx;Kmyf|0JV^m!zg7tVo26
zBVvy+b4bUsQe~UW8VyUwoP^!A%e+WniSku_vi_Wry+k3$
z%STFbFXHsWRz_Gpzu-nQdl1|4DZm+j=w0s*RsQvO$@FnjY(6X8KRe+yP{q{h%Lb&{Qco
z9NAx!{+ZJL@p7Jc;1+6mJNv=X!$11v2IQgOI{#7n&~E3<`m?Maj*9lwpj)yQe$AD%hL-0(}Q|Qh*aZgX-Ot~R36Bf
zvwvq-9;q~9X*5K-4g>GjjGXi&bkJ}~Bo
zzAs#$0F6R^Ej<8?Gp02|Pf=%huAf-0XOO0|yLge-Vdn@>hG0gr>5wR&)Q9AU#3z-V
z4li|v)w?Z{xI{3qvsw3f#$|b~Nc>pXL)EBQoYx$qi~JMugX4XEW02*1)TYehH?G>(
zY=Irl&-X2$lE=Q+8*MSDtV;Q+2Gg_&Ma`yFg!a%k1;KRutdB9NX@RJf{
zVLwz-jBq9*-U3R3F_vJ7K$U&b6e)r*aGvL1l#~LrWT9wf(`MC(Z2Rv}yl+bb18b9J
z=a8<3O%)|Acjrl2j~j*cd*oGUf@cI^NpqKAkcu7sk33skx=rxR-t^b@D~z&ETc)2_
ztxn&NOEPlOA@-JOvl_XLJXd^Q6Zz*@4=MYD)K#AB;9Cm~sNz~AYSVbm&Y~+lb2{q3
z8e=2g(lS9WQN^)hP~0iAoS&Hlo;XE-9|RF@<&R^{s2Z31qV0}q$90)qAuVxP$X|gM
z_2~(S&k;vc^h|NOaq^8Uhw@KQha0>>rfPYnsR3gvrfOQIbfg?uOfBesRvNOM0=OA#
zeal|_o{|ndej8=eJ71ZghtU{p;FpcK#)7SGjjp-c_c;;7T0>C;S!N(34*>eBa(O0S
zD;Q(R>d-&6l555XeaS$I*{(m`2M=0EDZ(D
zmNV;C-UWiH`^LD9{kz4CN+WZH_6X1=k6D@7@;3@ZAQ{|>6dae1cH(${;_F=u{*aU3v3SnsL9`%vM_e$?4eOD)S8OfKf|LzJPF->
zYbQjx$ceuE)Vj7IanhRGj4u|Oaqkc?7z|J=Iq!GIjZt_{p>cc-vKFFwK3&VJtq>iJQ}6k{g9(X#E9P+pCWzk(~K9#2C#d$N0Z(Ac%^gKtPEJdG6|
z>ivJoLrn}%KwEq6-O4lvt})L}tRMhCi18^})_~%O5Zwv9gmi(D^}+DE0JLZdW!fQwnnip0eU>vgVdryRI$@H2Z-5G288|+SLs&k8Za`){GQ2jds
zwBEjT{I%Lq@|vr33e{VX_L&4yQSnA@fK$1#isiL!pz|B5`H*~AH>V<9`-J~SI}%oV
zLp%Czbk?_aD4=Wsf|Tul{F-Qwy}CI(p#SJcn^9Fo!^sI=3PR8!WGhc
zL9tll5Jp7iWUXmek@KuBJ1v^oVPr}b@GdU@k?Z6V_0d~&;p6Mj-}iF5l;zmPev+M-j`oA9IUb7ENl=I?EO{K5H}!7KkE*jOqzVI*HrckjX+!dx
zz7*%i<-8={f2H;q4qBXpFCZE!Z-Wh9&sbOZinQ}6=PE&=NW|PD*s{Bcq1TV%;{q&NHDu07yLcbw>2i$TTt4Nq*VwN``
zM@|hmwvdH%peYTmz1Qwa2VMg`ZCoK1P#7O%Bl;P^M$R~jivFf5@w2uJh7pba;YAbC
zOF6nA^Zu%}L+qq5q4ZrEGn$iDEP^gu;fge~0LJjY#&N=-^lrJkMl!n~-~
zclXb*Ds}Wk8Mj_8$>8VWrIWY3!luM(n6-sJUp%(9*S{itw#s}C=q2qe!Nqq9TY34w
zYOw+H#XM{5qEOeZTgo|4iG22!>EpNk(WD!l^TX&C0yqES5$;tPx!e^ar%XMIaFnG-
z3qIHLp{k(-DJm`l44qFuX}L+*$Z%Mf>R8|Xh>UeL&mU8n*5d+yS1V9vmy7;BnI3cZ
z)+fTT?)f@7@#07AbaclXjH7McY3br1uvPx}Id)`f5MN*QV|7)1u55HaZ}ru1Kw%W~
zwB}CxPy*u6hv?Wvnf5hC&ZIbn-U-8#uZBID&Y_HDeUjvfG3sNb322tC6b10{lTL&2
zmb^&Wk9F9M_9QXk5)aWO<=v>tJ9Cv@aaPr-ZIQPjFOh7F*r_yowFYOU2HqMA#FC<#
z>a>tbLk{@LiLHcEIdQUn$9;E)cKFNOt4H^mSX%-m@+b-i6e4x;;e8P`2`LG~jeI`G
z(UxVBA8|g+pCq`YhUxE9<0Ky0@!7wfpGn1i^Y@%{zxlHzj{>e+zQ%gV(NE=Vdt^OX
zXGUt_*wtsffuh#{(j`vuiYmiBd~A(c53d4+r&Ec91m{l6WU8{7>+9V5myt`5)-^;z
z`1l7eF@FO^Wpnbb`ocO=9-}H<*6d_OKQ?mWf0T&$T|@GNAs6vnwM)TL=?&~pUOU<<
z$5muE=dJeXM9<}086U;hd>K{IsxUG*BcX+9j1)G2yvpT2bv|A#v6@0
z&=O)AIP+b&44Qake>#jQo3$SO(3a48$oWtpjD95N5*e
zJaH)8Yfwv3X$|X3x`(R1Oj~;rFR-K09JcQ!5eI)+B?l?K-nN`$&S;EA_tTE*Da^R9
z$7oj*B<<-SqX0b@+!Xd0df2kwRvHLHMJHAG%2rU`Z3u7wrGQJSzagEKdq`7!dnHnM
zhg97N$3C$q6)6Wxkg*x($?Omhs$}q&;hl1~)fmXFe5Ybg50WaZ9VNW9ofKR5#K}d?
z6l;W>0N)SdCh~k4EFFw{vqf1bpYaIf%vK%fr~OePcJd|CPOkaL$x2Jla8r2AHWXdS
zhxuxT&|=Ht=QG05PxL>HUMbP}gnJd+Db2EpuUMuhaMmTl3;HQ*V_;b^X6@?9RTPBL
zQI`PG7tKCe5uWLC^LV@+{_oyy)P!jNCfKm;4yO22OpNPR^!rOR;Q9BMweDsgA6Kwv
zRXjVzB6D^R&H_;ii*oSW&BrDyNq_!%&JZFbdSXd4%|U52uzN|;0ch~X3sY6z4fq3D
z(n&X)aK!fDm~0+pf0|!kAFeRt;JABXSiz9YIP)RNBkso*mRyBxeHIuZ$%_H@L!c#`Qdp@nWpBqH(HBYR0nTM`&$I|fS*4^iG(>wR^-(k
z&x(@i+r$D;n6(&^mAsQYMklwt;#i_(oAd);HLAukv+_$=pnSGxN{D?LWRM}H!EPwg
zoY!RzPHrkH(k}`w8L)WsiM=FRxpgZXtE{X*E=$jr5}Ps7=EH|*{tsHxDCVap$NbZA
zFU62tTP%iG8R*lf8$#$-1I|pan^*P|$8}EkaUC(niwe0
zci9^qn2VCK4G$tc<5T=Fp#v}bYD@9^$;NaJl|E@JjT6XnEkMu@`ogob`hq85CxodJ=+
zk}}YJ2<~t_m0POw;?{m=wxNfLY=IHKl-L%tqD?pyTzLq5L6*om7S*7`P>Z9I0(}c7
zgzCF>i)^^7sNOd2K&GKx43Kje>h&#eeSrCg`ugb5Y_zBRy+iLv0pHaZa=R;EBU)MY
ze?-fR$%VgB$%;hn3le2Hv|Y`ZH(~(hy}wj}6=GMI!?DJF_`^vOHa#!2<^EZO6$z&psDTVJ~9+
zfLv*SK0fXZD~dioygt8##KiG&vIjLyQ9HgJdPj&#iVNKcVJQIa>JSm9>pI8#{H>04
z&78JOlxNgLv5@;KXjj73rYGwa?w>P8a#s(K$v)OP>OI<05(TwzsKe>0~w-;{*S{*b
zuUb+j?Mss)=v+Ks0tyk3jH}IWA@UZ#bZnnM8;7!0_{m4BcXLg@l`u{?qQwgGuMo4c
z*NF5kpWAcunfisnH3hluVHgSw+Vd?~a4u&`QMni7_|ODBrs>XUbwBg{Z?G$d9CYS4
z?jUe+GTUcGnotpOxCYvfW%(w)VaQe5s*i1k30@HPLdl8Wv4r?c}%T}(9wSV?#x7dMrOp@diqycCrA}S--
zg26pfrnhPpvjZJaZBq%5>AILy`QOxpCdtkKmI9;8#RV2
zWcfoKTHoFFivy4`*QxBHfbJcuWHYLFP^+&^l&Lq6ciT^MpS02b%$$w=d9C@PFDT2;
zd~Pfs`Wa4k^N+~(&ws**0D!ev{J!zn${@lc8<)WI^)-lR7hl!@GtHb1a$nwv)9+Nb
z{ON+uRxmGDL=$=rk$mm9?CxYY2efNiGkTmeK183MZSE0-Re@D5B;Z)c*Lu+_NIS*8
zPn-(X;^qM~Hqqb>yDnlYUi>Gg22zDbh>8kp%#leueCO`HPB|a%`bQ(K5;3k2$!7(mti3rGTT;KmrQKJ6{OwwRqVjIEKgWs2?y#5
zJVpIS+xE3F|
z+kFzP+b`oAs0E7UaFu%`l94ZQZ%IY(&lAXI;|ATnK3Ju0et{Dj1g`D1e1|-9GXG~6
zVO$ib!s2ZelYN5ArGOjaSqV>N@_gkOOH<%(Q8FJ#HsaAiBs9cG&Y%wbNO~4dcUGy~IKCOw*=bY?(g)!#&
zotU}ia|=olblc`O8K|84x!-{eEqSm`d*jD**H@cMGn#*3B#EU-YGXfhNag$s2&ej*
zz%_WC{cSc)t%)kx>6?qbEIqL~k%3CjF$#2TpOuKK^|%=_1!gdeM60Yjxp<lXitD|zfqkTl?&$13<{kHfC*>dM}w^|}k(q46?Dx~oCX&XtfSi#5w&@1HJi
zS3Ya2S}xW8bIz|;=-G!E5VfovDtGH!5U48c6OB^Into6?bgEQt;0bGQYUlG(uquErQd1{4^Dv3~}1}idu#1>{utawE~
zT*RyQN)rIIa9qW
zS4#fIKQK6}{n;_J%1tm|aR3S|Fvh
zIsFUN0B1CdBZ}z^h}5FQGwl~N^}LtiLtiZEODtbJ=~qneRG}AsQqJAY
z^+V?H8^H~={4xJchTeGdL$4Qy0@K?ArQkxMpkk;K;tJ^*2*2`l3TB!f$MF7(qWtc}
z{0g{nMCVcFWhwW2?^uLg5oy&|WVl1U6cKj*7#JgH2i9^o1?A87FPnRvl!hiGD`JZ{
z%7l$WO}xk_E_``V4U@Y#~th=8coPtY!IA_OYr)e+t*8ttgk;rzqI&h
zMj(?eS&J6Trhon@jA!EN!=1-NVl|Uu;C+7c)NsAV{JGkvCLfkg0xkh*LgTmI?=Q~xk-xj40*d)b})c9CyQkUM;frsk4&>}LL(Ertm54In)f`Z0dC
z8)F9SA^t^81qUp=7Q+R{7^}qfIAea^g*-C%Kjc__7_(UzNj#5rZD7m%AX@b8N&XFn
z$c*ip)yKF|&a)z!X>e8c4+%JlFACDlQTX&|92y&rd_S!UzPhc{(;V&{I_`0IHEEg=
zc(b2VY%VLY_vhKRBujf93=Q(^s?3mpO)@e6Y{4sTo2az?4s401kY$BQ?i5#m_XhT`
zlXt=LXDw@y&hYPM%ij1CyDIqc$0I$}yr0cIJ_~$O*^WORK+^tI@v~ksCwf^Vd+F`E
zYJcWudK!BW1khor*|KW`<*MZz51x3akztu|U*CByq?_XX9`DkZjf}|WUx~zUHh6?yBG6+m3wui!y?Rf{D^`RDKud
ziQ+4d2wDq6A^Y?!KwSj|8P&@3{%6=$8vcu-g1meF$l^ETEipCP^AzY=GT`S77+g1m
zLHA(*F_rQ`Tn9ge%goxWO~4H@GpuD7QDS;_MxS=u9-?E
zcl3SAJ@N@SAnZX9UahCwxXqAnBK0q2+D;m#qjF?<-hbvbe|hBhb1dNKgnwn3>@|OH
zw;C4eZvUXBSNu~$dX3WCSyfKaeu4V9wdK~HWfj!zVkDHiEnif1uMD1ZWb{9V?|)`M
z`ucaO3dmMoo3+~wC%c#O)g$eBFD~4_U#_Vdz#UD?ES7u9ADdSGqA1~6Fph>`Jd*zt
z`@->1B&LLaDPHZa@aDPj%^x23ZGCkB`cn^=(gvSWBf6BjkuUhZxbWY(|Hqtt$kTdr
zn)n|4u7I&`w(%LvhMgu1P3?MesQ)_Rg31?E1*YwN#JnzGTq>s`&2dmUmSOQn5I+F9
zgHqb&bz4uW_9Bq0I0W!;?`J-in?DuQN!usFJ8p&KO&I(eY5G@JVNxGPuN*^Kbm$W|tS1
z4D3kg0a1_$%6a#}omsuv9k
zd~WwywDbT@_5ky~{+~dMEY$T!zr|fU`MAxM>!J1v$ZOdoG4rQZ#}M72SOg>N5oq6B
z+qTVznzfJf6SSeRD`qGQE!V+pb-uNmg`FX1c3tKG=Dq87ScX{pxfxPr^0~FIcN8%2
zWh@V~dqO`)QaQnZh1g4KZx{aeT-y1pS2OEHc~P%I!jDY!ipmS>
zY7F`0OJ>o9*Y-`3N;hf=n5>5Xaw+IuTt>yiFs6!s9uX_;b@S%@PpQr*<4@V
zI9oKo<;{eOLa&VUridDUuYG=Yr@TrhJ?(Uw{7sIQuuT4CbG;_`BDI#lvNNcN1(6-!f
zUmpG93E$?K85K5M6qQpq{V0$a+LsZ$wX?AZe$trT`kUSTgAtn-coxPL^sRXEtD)|$=9u@QtKWkh
z9pj|?%W~!7*5dccuflfyAnUR_-1qSWDyL~4+B%zeG-;Z(?GBL|ZF4#u?x1wVBzvq>d+v8OAm=v++MAFroBUVHB3
zgNbPStWR2N8Iu*Aaa2l+e|@U&t_VgS1WFqmn)e!hdU#nLG7f0k3~o%ia&56;TzaQR
zmg6b@-IQq=B`wMGk{$T$7h5Y`s6|ts({<#<_Nb$6yr#3?IR(_v?xfvg9vE5Y@_g%4
z%kk_L8JB0&m9l@JYU?~5C7-weAB0&1INYx4r!5zcH7$#Ed3we?BOfYpN~3wS
zUD_!Bowvbx1|ch+dg*e;_Q@DJbBa7do%agmd#v5o!h-up|-iQ*@sr+-s#_cSmxSM1X|j{Y%z1&Y!yc?
zrCRh;EB&5-$)~@5STq&-!l2IEmOcfW@Y;Xy>$hlUEVP1#bu`RwUjNxMKxYCkDx0D?
zgVSF8u<3qUaKXx*lTO>_F|OM8cyk+W2k;
z$%P(6H=dSEIxtZH|5+Q5Z#rz1Tapq*{wrlnX4^__G^I@glxG0GhYm1GFUemmUf;-J
z?5I}1#$6lcEPgmMglAflU(d=~8%W+ID#8kc*?Ah;x#fDtS;t51TA8J
zyC^=9oG(o5YZu2$Cznff=4VIzH;vkzS@S3R&JM0${(lOW9-6<412m~3pqe+^_Z}!a
zt;+UIn>gp-5qqp^635>E{_ZQWzl75_%qRV*$e6_%+Zr~1b5*`R{X*wU
z#SEu-hf~QtqDQaCHPJ@eZXlM029Dwn*Ug{;L%*=;ie~c*Xr(OTcHhhQAtmS=pGDf2
zxw`Hz`L+J|XPZPi=+iY<4D)tfym_m;K)>F(rv<^}r-8!lSZn(D!5h!yKYtCiT
zWUn8!GttHwy%(LF(s>}he&7b^;RWm|H7ofzx6Vq185GjW-*5Q$c8aJ}^w&SGO{Zjaiv
zeML$iaKi}ixY*G*LQi4ms9h{mU@a3qxQ?k(cJAm+=s%imyg=zU=O)Ge6sDRFdONYr5Hrp>4VNx
zF$)vuU=8eNGhHcH$ZY>AwDv8lzC8rfZB>^x*1eH
zNLgHx(LZYEQzbWQ6@RTZq$nWipg@+(Ng$uWQoytWIJg7rpT552lm;#sf-PHT1(G3XrFf{nLb~#3r@0!v9t9eoE1L?ZV>YsG!&gq9D6$RiL8)w3}82>vj&$?#Sm6B@QR3}9Ka0gcelnMLtt~T
zg4ZPRnFsk)wHUP@B9BMy+7S+nEhO2;N>=9Lb*xxuzEjYn$ChW&u;v$=#O2lm~df
zfgVPT>ae&NZTo8jXdM`Q4(p4@c5oRadqL?PPK-3v
zF4ao?AsQWF9;7CafN(w_;V6OLBn1=O_Uj~A<1O+K!WUa&8*OSaF3VKCJ?Ty@Q`=&l
z$!8RNHrU86twKROh#ZiZ<7uZmwRy`0{@j>)pN8KC48rY=@T50hEchk}TFR?N?L37I
z!sy~|T&_`!WccJ|C$6%E=dHq+MzODfxkK+BK~!8so<;%jf4UyTn2Mq5>~5d^q!O>K
z=5I`OuE~v2+u$vzLqqm1_0>j}PjXg`g`HRnBHp4*;pJKAr+E^zzBn%
z_R$2S7K}2^%aCl5_+>0t1!<@ZZs-SPFrQS=e-3KW6fGAtpv!h5u1T-aVMW&*Xo=qK
zfw76hmHCr^FrU<_r@?3w$yIeRMa`pj--pX>JF~U~!^x(rLCZVUta6pDxoW(#
z)k9^?9b^N^HlK18d76B>*Vx^ZWjU%oPy!}pXr9Bh5|ade$v0>ISCkIAJ(l((${&;4
zo;;Q4*g#!RCsra))Nq#?21$~!Rorr3CkBDb*T0e*;p0L#P{ml`@*t2Ij=P_b7?rAh
zH&azl$!;hwLuygi!>-;m0pam1n~fT*IR-VJa5BdA5tl9O_+|jDgyQxbX*7Q@2$dGd68^>c-#K1kzvSyTeaRE}*6{@?j&mvXEUrYS+r9jDtV+@;c}N(aIy3
zzqh%_o$Cm1<>5g@MF5-6+*y%`g%wa!3!(_W&??rjgW8G$NPL#?o9*xjUm_ONVBVpn
z(ooiUhKU2`*0}dK%<~K?ZEUK5?lfwt`O5MfmOP>~6w}WdXae*vk{N-Dm=O
z=?c0(<-uzAgc&T6p;4vO7Yi*9)V>>T*3=MwHTBiqI)c^B4-}G7UI`nbL$t#LBO{Vx
z%bS!hN9|-TUvPC&yo`^-18A#e2wxS(@1-0L2!=}K((d74@OS`WVzoqLLKjDFtY**o
z+PBpnDdts!jo<|i805=U&1?f5s{}Q`)oQT0;p_|GTb2>kz`t-SpqhbL*a0||ZV6j2
z6`?ez2g8xlg``f2rkc4^R|@JRjO^P?oi+tOixQP?6vR$|@Ah@*-hHxs)mwV)^+=#^
z%RR{t^%$;S;@6?2#8;kx52c$g9SYM#xF6xatlG^k7)I2Ukkd68*i`&+3saotc|cGu
zctJ2~Z8*D3FDGIs6%HTzT;iDM0>72AjIkdbrV}%a;pYX075W
zAzl|9E7BddDhM~5nLhPHol@pcd?{imB8Ui_0}aF&hZNoLFshO+)>p2^LY<(i6>7qy
z8ZemE*K-EksZl$0mGdxx{R6SuBD3%Sepo0W#3vx?eK1mXsA9OByVWbGC-io
zXA`8h3I5w-ji7qe$|53fZWkk=Jf(vJwTN9`-3(5gqKD(z#cwEwUEjH6x$`u31fZ%5V=JF^(
zf-mI`R;4(B|8~u29jb%@I45GS?1w|cUJx44dKYA&xpoBCl|js8e@(A(+&TOco(WxvyUo$%~SFY;0w`xoEF
z-750&p)T}f4;0;lhXxI}M8+q^NAVea|DwTVkFcRaL<_f7g-W|w!#k0wUuc3fMf@mlsD>5PR~es5bwQe5KrX5!6yF3R3_zsB3}VUiW@;%sF;I=KmFsfBEcbAU
YnP|22b(j*jaGjiGvZ7ST2OVwsKi53nH2?qr

diff --git a/services/web/client/source/resource/osparc/img11.jpg b/services/web/client/source/resource/osparc/img11.jpg
deleted file mode 100644
index 34f1e7abf3b9d24346a0594e2a598c00cfd69442..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 184219
zcmeFa2UJwe(kQyg8BBoWtmK?Cl0_tE5MdaCFf+gmSwKZGAW@Q_pn&8cIg1K{2#Dk`
zB*}4*Ecx!iPe0H3&wu{2?t6FLx7M>+)4RH=y1Tl%ckkU@y^G_)b@?H0HCW2
z@B#op3=rX*0q{Tw2mAwY=mCNg7y#^X7=FPwaJc{C!3B9l05Aqvz@I0M=m~rdgro1f
z0Qi69%?7W%0O`Rk0JwPS=T*f4VGm{1cSfKPNN0pQtEwt1x2_$;1&&Sg0HVSo(y}5V
zvZ6AqA`-GR2>=gJ8u01)Ef{l!c8ds}eW|85Ho
z@9%BF#rai+DDJPasXzQxo)&lowE~=6j|Y!e0P>So*sAIRIL8=(@+1W~+`{r5qk+2s
zIWaLY2{Abd3HfO;-6z23NkVZN{UmIl&8*7
zQc|A7MwI7%WI6qx6ma|&I86*(176_aumiZKaqv##9FKyHBt34zQ39nTz&Qz^z}SEX
z;NapD5E2oSkdlD|;2()N050B7;wbew
zdbhF1YidK|Vr<5}vbd(+>CIQ=ANpptOdY*L<1;Io`)9YMG|ilR?k8kbwhYYeoCa`l
zL22<%WFjIYkT?;6P2>zdD1it2Spw19(dV!dyff_jCdO(1)$>k_su48=DZa)6I|2Xzxk6m;^J2>-nV7ylOFco-nZJE`+Dpag75))#V$x5DpfyDM-kHA@7V
z<&|S(u6Rw@`@8qAP}VLC*}=!Z-Do=oni=xyUK@maypFt_>A=*%QXlQ}VlQxflVwk-
z`xuZ-CZ2tezjmrMM}(zX$W&;p*j*HQ*G}yG$1BEq=e)Nx9~=W=>-A3qELFAdU~pqL
zmWztKrne$u2P&5ZV1;ySpJ{~4$DYB8Z#SsIk`Gf74mbt^)HkOM+t!w0y@PmpB_)gl
z;)k>%E8EpM#505%9(au9?}LL__*akenjgMr7mkXGPP|~iFqPxp+pxfCvQheN&zo<3
zL*QJOwa(+`SHmIaM>|VeYUj;t>lY*YgX+fa^(YR!wtz*R>mG>dN4O(r2g-|rnoBB=
z0V%8H(%tf@QJ*D2ADecnPt~1J!FXYcf|0MAJn3GKGb@e(fq`qsz_)~p{DD%(0OQq1
zZb&N=G|sJ^B-c@TIakD+%KhMkVw;Ag%Dy^(D`>S94E0&q^?87`lIY_30maC@?N0;o
z`phCMG5sOr0#K83O!4&X>H>iPn`_O8+TLS;Xu&@v?omAr89&T~$i}Of+Az?HpHgnD
zr8+rfDR{}7kFkN@v)KrUrrrpz};veM#%PZOhjyf~*lnxxHUO#;6M@SrIsZC^ouH3o2@iie*-#H-cQ1@P}
zz6!E=2cElMKknG-^j)dXO{G+}Z5v{CHB!KpJ6~sHqbAa0r@oqMdo?HSDEaVAD$Dx~
zk2Qzbz&FLa!5q@jki;d0@ea)Ro}9oDG$n1FHmcD^
zF|1THUtrUn`}wPuk^XCofmiNZ9Bk3rNiFa8?Ika^=go6W*^k1?Wyf{09Yrh3LtL5e
zKkD>))z_!DXjZ+y^k&@PO^9HS4|)yusdPo6RFa?YrnK*a$h-^MTB_&l_6$X11BH(o
zj^dClOBXmE5!rB@_IwtGkq&gqn3E}JYR{aje)+ya;nlvi6gXn{Qf33*JgTY7dlhIY
z6}|&6@0aVXn0wwoxRF{GjUbPNPk>{dP`g}Y>XF*rL|vItSpY}Rm8
zk!KKlpqXI0xNu5!+{#j0HZ)Qf?K)buGIq}l=hmJiIi8>hj?#e_)&?1
zJK=iW+eiNM$kzf8IzbxI7YsH9Ap!}={c*hm_Qrj=ocgN0`=n(e>9?M+aVbctrRB+*
zl$&=n0c79VWdtL?Ar4lS_>?l_yo~J#E9pBr&(K@*L$pRjSxWj1+@vQZ+AK+QYz03Jo<|?F)mtgv>2*|)fua`*686*!AR$=>2lD~e9ot8NN}q!V
zsGU&H?#m<|=i2W(m&n=b{4A6p+HWvmrulx_2%SA^$=tYa&rRu$gEoiw&
zVews>{l^rj)ynZb4a_k>IP-DS--7`{_Y_hrGFmpRu|6P^T=7OR;uz?bn-8S==Grf-
zeyF&3e)(qTHF}~si4PfCf>BZdNoE4a0G(e>o4Cvs87@lW2>vI9=jYn?$2J4$j)7XL
zzR5$Xk(T;4oHkG46lu-T)}Yxd!TDb!=aoATo;CDU2!CVHakypENyH~z8UQ*(TLYNJkD0xsb%WE2d%caD^Y6Oji2Ziy_$av@HmH9xMW?w)r{=h^mQtebCujm@n)N;0n+>JOp8nFe~fbJ9RJIUVz8Ljx$chn-_c#9{g3dsfPB
z#hB9Yz(R`5n8oe=LZsr8XThSCpT`}?yJ0&Sna6;BeWLGC-n0JtPPY8A=Gkx-e*cf{
z75Vu_-f{|ZF5a`{>B9iSt0JYu)%4BNB{yAMR&iJfo4
zLSWtfK_1_Owi}WjczQCgJqedA@fxv0F9cA{Vh(5XABVZsY~ztr_KLsl`E1f+1s7AX
z+Y4%m&h8l-p4)JeN+LEbxf3-Wq?FoT`N2{ZIJjTw$_E&V9zNJzO+IcnP
zn-@?|IZY!Xk<7D$5_@tA-oyD)OGMYkL<`!B3uAf~mhDn!Dtk7^EBA7rSc{19RSaU7
ziXtmV4>QgNFa_Rwn-rEoa{rVxdwN!4&i+r*-e9Mjjl7;z?
zi+(c+O4;VKwfeytEyn;Sf;!+Bh<~1#C_^`1Xy&b#sbjq)gp8E$U#zG^2ItHd2Gh?@
ziTMe7c}{*I*ST7NtT?1JnjZCb9IkD#;EByS+vtz;!_}*-#WJ8|?
zS94J9QTZQ5_K3Q|j2#%=>@d^;uxw4i&H4t%^4j|TLy72q-NdKV==*U_`k67xC2cw%
z@L^u%@X`Sv%u%t)o6cDp3LCGj+cq6ra1Q67^u3~O)k?E+)4Y7Iq(Wcl{VwFI6?Tn=
zx-H3kp%;f%d&6k-Ra$*`TZ;EUbVI;3orvaIch|vHB*W3!qobPgDIYJ!n-#swj-fh{
zg+18Tlk6zC-@m6DFdzxFNm*M@1_@^iE
zuFeHR8@7lQG}_%BXU=}b9nO&G%IYRUer?<^={I#v!Z@7g>X1JbSR10ZTV&$tUYZxx
z>2-m)`RN7wGSE=ARV5+lXC_R`$7M1h+*XYlUr#}C5-&mIk}P<@^7b`4z(UZ)jU(CF5tudTd|CM(`+
z>|UD>@Ep`pAJ@8F{i-QYGJZes7?>+wdRj@2j({QGxv~gTW?Yf!i2SU@^J0?DPDC(~
zIE(Fj=V&Y$9l?jL8hOgD-FZK^BAVglQPu}fXDMHe*RFU{2J6@IX7)}hT%bcZ$x0s;
z=7lVBs+e%AANc^
zJnH?tLX1)M{i|Yygta=4Bkf#V5(h?x5QkhvkD1?YMC=S0jnG9ubovr-zs!7aN3^-K
zWad*}V5~VmA!CnRXjs<#E(R7+@__xjAS875V~=~xXzJPnp5vbT79|P54S^9q(ds28
zoy5acuJSvRMD$dys2#qc$bjrkbX81X_w3sK2nzzkzq}7Ld!fSfaUp2ds(?zS{KN6j
z%IpX9qq6-56o^{i`_jAbQkM(zX>O@^u$8~2IfZ}bB4Tf_I%%c2s9?_E#Rg}9nM#jm
zUg?(Ka1Wu%9eS#VhdaTEO@<@w!~J1ol|$sA%&5^?u)nkJE;~(D575D`M^QdeO6t4s
z%7;va1@&M3LJ|{@K%&;-hrEZ&Bulcw%~PD}Gc2~`bzSMYL}wR%^V@NsRT=dNnuOEW
zsqm0>Hu?TA*N|YH+Ic?5M;-7Mq-yf|lgW}nIt>dK(V^i9JwygsgIvjF_1>kVduEX0
zq3sy+?>n#ESNaDwms$>4Di5T-b3Jm&EMCDM)uspt&u#5|
zCm#0HZcw}B^F6??A|kBD_^lEh<#v3`DY!Gc_Yx!LdR;EGZjI#=dOz&)<3r52g|isB
zJH6D@AyfyC-qPwLp*3NRO2{#wB3G;{it~KRJYqD)sOS2mS4we2zv)*;0Ye+3t!~Kx
z*CP8c|A5z`s|!Oy5I#c2NmUif9g+Qpp!%_C#d}++9IvKi@)13!tXHmp^LXVvuY#=*
zhfE898Qrb#ceD;#no<$7FEShYuRS+0Hr|U^PHIICOK*a^1HlQ^sav1=&n^i@pN
zZ{j(l`eHxCo=tm*A;dd80w7rxR_WQ*J=_%1o<7r)|Lu%Xbx7D%NFe){wp;NrD4*@f
zE-NOP_QvWs%T9;eRoZ*ja(Xj@uCJzTY>t5p{N~bcHgFljVqXf^3I8Om$PU?ky2Dt~
z)Z^Zc&PC}RiSp93Ux3Bgs5xohpc`3n*QgU=o05C?zSt_x-ck(9J@Sh*MPC_Kr;V?o
ziE_ntv{^yw1VxO`fGafREf(eKcOME`1;4CM1h4a;4j*|$FpQDeur`%9X*?4{aZlDF
zpEdFq-+H2``2jIS-?lvsaJ^L+PMjL0Jkndut@n<2dd-UIUi1=0;WkZuR^^;|bFEYN
zU`*0j-aJGnldGj!<8E+L!6rISN@7*)Y}u7F!G6ZChdBD22UUHR-tNF3Xb#<1Y>7bK
z@_jDHnPog9`&tcmN={3jc<-`;5OdzTZakG~Wg@!qu}*#AQFoS=ZFyP(lj3az=hX(a
z;J!3eL%EblVI~We+v|C%rdmWbfvm+S)0d@hs>@L3In%F&%FN`b_n_l&EDR%3}w1>k7&6SJ}#a#p&2Zh$)@x)zz+HZ|SPH
zt_@z}4F|DTM%>#dG$fcAj{%E_!@lSGMYhJZJ+c;`Lt0GIEu4nZCRFhKub#aawQ_rG
zr9owZr|Hv&%_7d*loND!C~K1sZI@U@2g*X>aw=U2OAiGpDQ@D^3xl8awk?YV&y{~6
z4tU5Z?LF||R!nmH2c$q@i%kBinAo>_U+kg%F1RI`7G*}+oSnrCXZ>Eo
zzkFO%(K{YGUSZz+dkb1jP#BQDq^*n3b+Q|J>LmUxI-$v)AZEZAOUG^p0|1%3C%A8|
z=Y?|jLV-!_o;je8L>bv55N;hzZ)erO3W)V!n$N`tj!0EP~%tPTh-du7A~HhB^>J>mZacggL)
z@?G+DFgAgsG&l_1uzmY0Tyk?@{a1KHq#No4ukY)oZ1{_v)Ef#xAw1RWPubLDzGq?8N6b}2ChIIe-!gi)f$7Ql7CgL5yb5WUf&a3TEe~4lDYbc*IixBDN0)Zk;-L7D7Mx1}Bhv0+;qR)Uo
zqLYNS+HZ9cIe8+y-2VYZi12iAa``pSsvBWT*E_+1Wl-38p%9u-IMmY)1$6)sfU%$Z
z&&LGm4`wU|OVNfov4WTX)9uIe@^t%$hs}xd{}H2$bo$2!5}}!<~{1g2T%p}eTPk$9R7pI?^qWaNzt)FPHWTUn
z?501_|Hw{e@1%-wLwNqC+|xhGzohw#0A>NMBH&nElb{gp;G-M~{e6xjbpt2E|AHmA
zKbbuL3!V(@V&{KmKe=PMu@!;OYH&C!eLI1F+__kj`Hvy|<4(nL0MuW>2zzt90Dsp&
zZ~_2cD}(qCzy6&n_
zXBRDhPpFaqRbz<1D@4YDT}hEu-dENa<_?3R>{xwaZg8ZmuLAo?;j$o%MGLXBp0J=?
z71&Qcm0~s5)n`>jctTkv1SJI^BI3fVQZj-flEUH=BK)l2Cty-S!V*Hlk^;ga;P+p$
zq9Uw+1$MADPX|X?Lp6=R>H<>=?0+@N$Hzy|M@$gm=_Di~BO@auEGi@_Dgbf_ApPJd
zJ6{1flH+FyYEUG^)8)j1&5A7%w9a~=6xcyYe>4H+{;Sx3sjJ@@b#?zeD-4EJz)7)4
zl)5)q%fIUcB-UObWC%qfygVULb#Evf#ql${1LRj;chF*U(ozSA5Y!C{1KE&ZCyM;4
z%KhgTcE7UxLpy$vPkJ6(fxE1#C)5tKRU3nL>Yp9;_aTXY{7&z;3{cRv4OL*rez+$f
zA|fCvWBl{OJw9yr3IAZ#1;>E{XaxVym=O*xj(-0MtFErBHXMnvgF~R&Y6|RND+FC!
z9Aw2E9mOPM9PI=gB_tSSWFU6p5KvnV5LrirC(I5U
zCoV8MC#cX3cc>FP>)+y>7_W2@4xrM(YX8P-tEz%WIUHTwKmrmx2EnSWt|}=aBPl5$
zDky>-_n;hLd$nAUU?=q?Wd#*!)9fBPWPzUzE&@TT%&;MDA
zeiZ8io<{h$!{i4W65)vQvGatgIDvigKMq5o|4w+Mo%g>N{XZKb{|80?ORW%RJGc`R
zoMMI8v5gVJPDVdEMd+XV>xA~(#PyRMoDH$yuW4BE=XCk!`bPtQH1J0Qe>Ct%1AjE|
z|050jy^w>#!B-0(aG7>INp23lA=>I2>S<_SQ9oI6l51UYfg^CiGj}lXP%ZYA(cHq4
zmFP2g=8gnB{s*3}vx6Yrb&WKzr;q{gb&?hPUWtYO3gD`ByZ^`Gza9ZCeOA_=g#Yk*
z8shE=p035w2l>IbY$ODP?}D(K56T^j#~zhBXYY!Iak1z8&Uu0Yg7A4P?DPZXKjHZS
zD`Q~?7#uuRhl`cj-2vu+g_}V5fwvd-v>o0R5DxWrf%<@OF9>tGdBI#j7<;_)91Lm)
zo&dzh9>d~9K_Si{EDXZrp2mjYx*A^|bd^Hx^c!sd8;k;vy@9-dD#G3Gi4
zzF~0EXE-$Nf8+kn`8N)c1|AXxkJ92r{f)DK3ILV&0O0)a-#E?};O50$0I2Bvtvxi@
z@$%cs+yx2|#47Yx_#YX5asKzfZ}kac>-)9dVO9HaZjco_sv+PxKrc^LB)GW&Wfl16
zLHxg+@i(!4lY`$7>In6Of-6#1Q*e}lXRpEThC8@m7gek-@PAm9{Z_*NX13o-z=A)<
zH3*!|I0DYu3IeA(&jENV?EwB+G62sy1*G8o>bEN-rr<6U0GP4N{TTNk4AM{He~54+
z!6Yuy<>V|XplWE$3i0yv{=tHey%2y0gQVS7ZGtdTn0r~(mFagW}
zOTaf^8`uZ^)ezxO;GD&w!(qYU!r{Xa#gWEQ#8Jn&f@6qdfpZw@p1Sbq9
z1}6#UB~A`bF-|qkJDgUWE}S8puQ&@h>o|M3c(~-a=Wv;DFW?H{O5>{F>fjpV+Tc3j
zdf@uw-o=f;O~g&Z&Bv|4eTUnI+lM=WyM((1x)UP9qrqdt6Tp+kQ^nK6v&3`6^TZ3n
zdxRH{mxfn}SA*Ar*Mm2Kw~V)oPl$gOpA}yKUk+aj-vl3m?|~nL{}?|BKO4USzX`tw
z|117C{38Mi0!9Kp0$BoW0&@Z<0w01Vf^vcn1bqZE1lxp!gfxT~38e_N2rUS2
z5C#xFCVWm=s!f*=w?oWM9d4$pva+Uq!^?4PI;D6kW!n{fijpfnX-bin-W7sLd8X;LUoPG
zpDLcJl&X_z`4q{i3#U|1*_{eHm3*rD)WE5&(`QeMoYp%HJN@`{?&;Rk^Jj?8TsWhC
z#^KD}GwEj<&rF@gJIira^(^FU$k~juAI{F4BRqHUoc6gJ=fchvocnz48}%7#acWa)
zU+QG)dg=)pJemtM+B9x7ku)VV{WN>DOtdPrP}+yIg|ywYJLehBE1!p+e{{a+eBb#!
zI#xP$I#;@Ax=OlHdVG3bdINeN`V{&P^vewA7~~ir438K}7={^f8F?8E83P#88QU4R
zn3$O~ncSJ4GBq+SGt)3DGv8p2Wq!lFz;c#Fk;R22mZgDZk(HWNh1HEUk+q5S8yh2=
z7MmB_OSaE!`|KClP1x_S7qO3Wka9?KIC8{tyyy7F$-=42d6P4bbC`>SOPb4>D}k$p
zYv;nn3uYJYU#Pq=fARc9?Th{w^Dd5XQ*bMBdvK?5_wo?(Nb|VzJm>ksi_0s)>&%ax!
zu!OLiaE35ixwTFCzRNf?3B`!CY3pq9h5Vb=Tvx9Zm8s|U@i$?
z^1M`jX-8F7HBj}f8lIY_+9S2k>SxqV)RWZ5G}twqH1agQX-a4YXuj1V(9+S0)*8@e
z(uQc~Xn(sbbvf{IlMcC#kxr7%yvgadj{2KG7Yy%5@cfwNekz)7E>UH>!V8
z-$TFFfY3nSAlYEnP{i=2VT;jOBU__fqiy3$#*xNo6K)ePllP`nrq-r8raNY8W-(?H
z=0fIy=4}@A7A_W5mPD4OmYJ4YR_a!9Rx{QT)}hw@HWzJtZCbCU
z-g((Y)g{Sg?S|Hk)EhgldahZn$8KhBMKEI6byzk04BQpogkVPaBD&o9+(X?bJY+rM
zJidAAcxEDTkT%FF)H(2Fs@;p*>z>zFZ$+aM&&3k#Fl%bxX1NY_br#`@c;PT+}L$QZXA09n&c=RbuI4nNw;4$R!r*M(*#PH(?
z$B567l94G?3mLr{xMTebe~kjvc^7&-Hfx1YmFC=PfZ|A@Jg6SypmY;
zl=ErS(}N`Eq`u@!$wki?pFMoG^W5QicZzaKVJcHhCrtNF
zpUp7MXn7_5DkqaZGc5Bk3!XKRZJ6DZBbAer%a|LPhnwe>w~%k0|D`~!psG-y@MRHA
zQP^wXwb$##;_JozB|0VVOQlN-%ecy(m7gttRDo0BSMjaVxpJb)qN=OiWnxq;KxNId1T8*m~>!cKMytyQ%lK@6nCsjlE3GaM&rjA$I`}m#)~E-C+fed
zeQlpKnnX`Qrk19W(+4wmXDMdm=UC=)=0)f07Bm*VELttjEV(c3FNdz2UU`P$#+0op
zueN_P|2DJcxput%c!O>uYg2sl{g(dL*fwl?f9KJ6y6@S$(z`8tW_xq{J_kexiHAIg
zHAgx}BgZiCgQvee;33W
z2Xq}ORB
zh(ztqc@ST^%@Iv)_|l$6jHHf_-2cNuL9
z7r%#3bE;d17It}MFI(R5f0UG4^J#c-?;oA)jZcl&>|EQy)DP6}7kRA)EsX~JLHzgn
zIR5f~TVXxcGIatPSJO!dZD|!9BUq~PnpADIFI5o1|x>I82hm|HnwcHr;G;IM&
znnJ_wq{pgoHMzFC7+T`^17a{ekn$&o$rYJ@VO`G`M_jp>~NrFr@;$Tzd9OF6tHvc{}$r7
zYaA(+74M8pFK;w5Q|d|NHVH;%dw-RhNO~jl-KQlaiEAsT
zB`)6(d5nGPf~=KaiH<8wqEX{5H%t5Nqibpd_2^_1JoA8z@j%h;rt^fjx!)x6-R
zx?`aA+PgOs8<*B?FCY%Sd_WDoXQ>UfF;iN#;VG?@G80B;=Rovkx{Wb=!QYpt_Jj8{
z$M}`TO7IQGxZWss?h&Q0E^dymRxG$>E>dj)$3P|RPEwTiWFvV)(~G07YayKa(E~xF
zOE&-WtWTTz6{U(
zjUYH3oAbQL`5OPE#dva41!BybrBPSAL6&bBK^vnIrwk8Z-^nc0A4~9x1%Qs$*vY+2
z`(F7cCB?qFRxyMUvV9|Uc_r60Klf#m69db`+&=Z_RzqWT_DC;GE}|?5c?<}%#Q8Ok
zE3qmiO3uxbYrT90Oa5{U;AfY#3oE)k#*NV(N*a<&iu5p9mA}UoAZj8B5sA2yVCn2|
z`qR=+Qmtd1H7=>JRKVFbRrW;F$(iLB<90BRwJ@I8jzwO>tONJ@G{@v=@s5+7
z8&%{nz*obo_xSnB5QIau->WKo=kD^=^p*BmB0P&~(eL#I$#)@A8Ur0B6CQnZj9xT`
zw-;RJUp`s!q!!cY3g5!yL+XO8Zw7rwhmFx4tuD*k+OBlmt`I>t`p%WOD8Md^zjgF<
zBD$AXnAWHn^O>;2aYa)tOsmt(R89XrGHb-ZWtEm6!{V!`vtJC`zqYDWbI`<7q0SWB
z3G)-Wt|_g
zB-vM1v^X6wzatRXQa>>=rBev69j=Cdyq&i=ch;KgW=DO+YfZH58IK4Bid|dKp_yNG
z`XRc_Nb~d!nnd60RFlBW+YPeRb(7HjW8faw!Qg0srLTXF-PVrY>gB^xTU)c(JePe4
z!eBXvEpAO(o>|J%0Je}VMZx6Of^p51FfJG7%{6@67JU8a%Kjs_H(&N&Vpt@Rb7KQO
zb1ZH?R?7WW;`@OGv9(tx;VCX^v}^L=9u)$m$-b;HoVB_lWu;e)j2!iN4_hizoXdt_
zQg15~PDS>`ckxXXknZ^2b%6{H8sZVH+HsxBhwIIn9gNmyxz6rPk6#G*q!4#6N%qRN
zQLcCYr=|LayYWWkJOrkCMHP-L0vebbUq%<(%tNcno3vLo$HXv|%NmESpX3mH%Vr}p
z9<&b$3NSNX;-y(W{!N`Pa=IJKgULuuZ*U+x%=(H-iX}$biRaFcl>E`Mj1lH
zs<=j?FS|H)m%aYj`}mEdZ=1$#KPSx2_}L^({oC>#+9A-1O_l?9k`H=@UE86}%XKEc$6bL!?j`_64y4A(Ctwqo4k9Wz7Qw8gim
zC5-6R!=of0T;bKCFVw7q)Xz24ODQ51(H-c4TB}7we{qdf8SR-5n+x1_>@BZurxQXY
z3XJ2vM%=H}eEoG*V0A@C&K`Y6Sj__st1!^Gonsk#_vuyP?x)0)Wku>v9xKoDC>7I7
z{5y+wc5Ekja)+Z<70M&pnO>?Y=p+f1=(d-wCAnl}M>TQKk;NmJlh;;x4xjBe1%BNX
zL&+xubXLeW?L183NOg!g;*ShPa?(aQ62TXiHkD_6goE{VXH*K3rqT
z#RuV2=*chQaA_A1C{A
zZGp=f#kWoKA3>?{n3}Tfs@KocFAGx9vDmsXUPz`(hLl4q55y6w+eJA6`RHkiK(?#O#4Gkuz5NG2mR;&fr|SB&9H=7Xt;
zzAve%`qoJMg(182xr|)AjPq$|n>Wkld#zmvVyE}T{o--nuT;;z%k{8CJ#59aKlh)^
z@ni_$G9etziocIAFqsDZK%sk$#0@)C?%kV-7T%0$BbEDbmE&<7x!LViF~8v9z$b`^
zCHInPrd)=@CJvj?50z-;foAqe891kTG$u&_9^J+heVhOG2dyOrsnNzK9kbIrr_pru
zm#%Q~N8}rO>l1#_0%BKioKas;iaKw0D%Bh-g04QP&st_=f>KLDxIz{MkCx?ixj5Q+
zX>=Q&6~6C>wO6pei8G+LV13Z!g|DrbJ2+Rm9-ca;8W-3;SYhiVQ#Aa>qpT+Wb0>0E
z(WJy;$gGjC2G;M{=~X%UK{6|X8^g6W$?NER?-YvUO&FRXIICfF*Vbu70CgXw`JgGY
zjEDcFabXNj-wXb@E@hJ35Vv4amUt#){eZvM+(-CavjlfiGWD%7g}hoh#95Vx@rCp=
z?~ehpWzxDM!I}t?oGB6U*fHl#!ZSp*=SD^k2ZOy?d}ZVkwuS15Dj77zHtyZ4Jo>sKP^ZbaWMu2jQ
z^$s5?p(kyb2D?#
z9Y&rfROawfz|LzZzC`sJJ+^9Q+d?S&Rp}>4R^fL&Gvc-
zA=f`6U%~^v3aHqTgU-~7Ioc#fTkqh#YB0${JzNWW>ZXuA@+w}@aOR`oF<>OeIUw2;
zMn93p9hc!Kh)PO7|2EJ2&fC!yz3(P0pA>HQomsy2X`%h<_O4E)l%NJhWA%EOoZi`9
z3FB5XBSv42JA*@e)+?+p(!QOw(zP;~%U*xYd?B3X>{vrB=m8p`FjTxF78|rSQhsri
z!E-ozd3&l19^5au8Gdi+TKkvbk1O19hQm5m%CAfEqo1a`T;+ftEe8aYwsFPpe5x#l
zd+1+|PjLRkX*9y_XaCfK_#Ht~xM4{g9Yf935%ol^58RL?O6eR;C8{1K!DZrO>upNr
zw!G`&kdqUgJI^}m4)r0o@X+S;ILvrC@qDVc^n)k)#md7rg?BSS?)9+7)sRmNJC#CC
znde3%`BsvBAFY^|l$Bbv1(xfQ=gvw&_mJl!Xw4TL`vdGS!NrXI#VzG+?E&h;cRrU4
z6;8&U!zU5Qcv$x62E{}#&GkMUJu~&lqnp8u-s9?dPSv$>yy
zM$5gfC`2jXKeZIkdr}}3KQ%H)S9(78#-mTfOKZm6rUu<@>_RWHBV}x#u#B)E1Dm&z
z!$;6zne>q$V-r|&C%mfHgsut3m0w8$qh43#2or_e
z{#YB>=5lvbmn*E6$=I;cKqERyAm9~QoS~|)p_6~eZey?j2Zy
zJnFe(R}uz9(1r03fwrM{?ys$G)eoGZzD=UPF5oX7HXP{=Pj~Ug*tiZ}qUm$tr+t{=
z_;Q8osjp*P0gm{)#Sg-}2Z9rs5k+LNX{{=pBF21%#+rP@j(uNav~I6Al{m|Kao2~}
zw=mwrP+bUk`3dbL>q#a2u6n&=_{q67nwPwnOKPMo*rU%=`@T|(K7Z;Hr7Z6FkPXbI
z2UdIc0^j!|ZZx?fYIFD7!uViIM*aW%hX4O6$8q;4-;CgaO}I+Q1wT`^nATagty2<#
z_4sGZZTILD)?N4eq*fa3K&ONbPOqPSVd``j%IZ)r<5ilvDx0eCa7JS`xzH&b!f$uy
z?9mnn)jEo3v&B=rIzY#1qW=}+H1E2|0)e(7qu}NAFyzs~&Yf}36u;4($a=lfinG?A
z`d58?vgx}+;C1W`iAt?M+g988{pN>fGOL2vtq2csha1r6e&ytX3=9CQkf
zya6gQcEb&&hY7x$O-!Tp;;p0(h^IXz8|
z?X$g+j!a_ze%sEZb;D;j^QQK9zU_UZVxPVX>#O-&OltcaQ^D6vAseIRRpclRHfAgL
zDbpNo*@o+lTJO_}kZ_k`-^(|Q{qWaiA0&?k6c7bLgGFr6>sd2`R`o}!CYbQuI(PBf
z`%Wl?778<0_->1+rAFc11tpTmB~1M|`oYTH^S1hZqSMOAWOSgawz`r20yPDPAtdKT
zR^({F3s-+{DJZ60adGM3$Skv_mM9?-kNMkRvY1n!(@upge3B+9r4p{VhnBf~vtJB`
zag(8@Ub;h}PC`W>C#EYO18!8d!7%kN4JtoKj$%fqD!qDUokjM83;gdRC8@-Dm}S-i
z)F?`C4JD_-X48r?{hsFXE^ywn*Dty3zzeQIFAt;WY<40G+*0i!{xKyNUNtYTY;h^h
zy&7kb;S*coFE!AI(c5&?%)b0MZRj`M+yynmP^a+rxhjD>823A}hn|N$X~w+yu$$F?
zm|h_%p-yfSK8P0bxf!w)G=@I3P_5(fK<}mHM%2)xE#Is#y76!^d(A|AKdN8)^0_qO
z(vJ@jZZe%dC2xifD`w_K4_j+1lLXS<(HdQY>z)l{#5bm*$o%5y2vvI^r!{};wI^*!
zgfr&|Mqc2x)*G?ieE-lA`8JorC>*XFWj!suWLw?}6Gxq*y_Sh!R}BB0_E+J3yi#GC
zoTo#(u<&)V>;NIEnj1Uv0Yq+?#siuJJjJojNspl+PxG6)6zYnXEqGpJi#MwXdLK3)
zO^>aNtxN8-+m7*k+_qAxp(plan?3z>SYwVsPYW4_PXx-TtG)a~}>
zFV`GS$9MJKf4%QgkDQ%yIn<7Tw8dO1+^9)CO_z9-^pM(R7?0KqCV@|s{gNidW~RfrGDp?(ZH(0c{Syx7OuI`sNqh
z3pBeOb#bi>0{4YH3tP*FVBS}nhtIR#kzRQkn=a2({&2`V{S(!L`O9LWPX^TLWA|UL
z)YY+81=f!pe5tKSYe%k~xzWgZtEs20@!Zw>BjcC0DVx!WOam$C>(`~I$)-K3Ym_HX}KU;Wp`m{6ql0-12btYWU?mCkLq5MI4ZYYa*
zuL3aD^X8&lAH?B#{j;Uz8q8KD+ji>LC=gVZHU4mSL;~bFs%$RrTxhOj!1t`?9XQnA2rGcBSN{Ht{e0UK8r-}
z!WC^tCmV`KS2)q{d6QjEf)mqW&9Y3
z>tZ%%w6U-OM|az4cf2T}0Bi6c3%IcDSE)9{)yzK6AFGxasH*Y%62oS~Nls27FO5
z@@e&0?l_qe&P+YXQ_JsKjH1Jh3p48T53i)E)8t=1c*nwPy&--Ik)IS#a#49tx!@9S
z41qM{f#UuA040tuLd84GV#RCEE2*H`^4jH6iv4XXk5*oWy^6Tuog_cj(GFRw_Wu+b
z&iSCs!nc>ml$eg#&Q>Jwi^3S%Z!Wj}W(=
z7WmdIEl=?_i|eW^b3z6R4A
z)-TtZbczsfhNV&vjM#@%$i2+`s=SVKtA#w}f?GhWBABk}dTCFm7c1wQGp53QWAF&VwG<
zYgcXi8tyU1Qf>ad6dIBD58mqZ3v6_XW1`Wc6ph|V4E?fpB5ya|_Dwk2#gX60Emt?A
z4h+Uoot5h>5mg9|T$Dk^ifv&SxD4W7H0hLY7w2cSUv;!tKLy8cyfCpr{WMCfx72xa
zT$%I&Q!1umIlgTbzP1yEma$x?@|R*bS5o~(cfjYHQ>h;LtJ;-Q%%e^q@C%PV>n=q$$pU@WmUx^QV(Ahd*weeLCq7EN9B6IxGtA?
zuNNqAmNl3YJ`4l?eZeO6%(2n>E^glf_!@>
zGn6M?Ra-JuB&vj8yK|>C
zOhu;*Z<}XC!zTn`cNH1KPwi*5-;6Hy(cR9U(hLQ`h;s;WGVI0w79-?9CD`46Mh5K=j|yi-L{%5ZgsY#LfH1P=B2^xgn_
zPSL4GX5)UrFeQe3g>(VCen|_$S!cpriOGV6P2@De8IP%`Nk=utT*}?j!BQeQMxtOA
z#AJ5o&BdoXy}USkKw((lEPEaLWCwOj6{)aY@l;eLro&Thi0vG9)ywk{`B_nqmkdWd
z4)EsX+aCT$(|}6HT6dkofTY}>;oKEq;+L+bKenq%=1ME-dJRpK14FU@RqA1KJ2@{{
z7l1ySt^4A;RkT94SroIERq*hfx#XYEVz+Ut`|OYU_MVKdXn!f42D}0+4%_l|NJO{1
zhoRFxfIxWr>@^n|!u5?Y6E?M5<>fh*HokaHY%e+4yTphXcb(@!fbW*_W{^)(BN=)C
z@=_Iy3zk>MGIOl_rcd#x-*N@l8bK%{YlF7uoq`zE*yppDFYBE(_)^RptnZxebvF7W
zYSE#TAmGkUl7_Fn9HP$rarl($0Zz`D*N(0T&rK33tS^IP_mlAM3huwA2Bp~7u$3o@
z3iE36NRkCuO(yi6jZYUWt|9VX|HH7I5(5o~&}=BQV7gT(^UE+;5Q{NfrT0|ndD_I`
zGbKk5Op1f2VEG*yQ{qX}XCS4x+Ch_wNb}qn8BJbc3{2Vo!fOmY4oy!#=2D9J?}=u4
z2k9O4^#AE=`g1FuK?cxR4PIQ!nQrVmu`Q%dhCq{Sb}x+D!8a2wy0giV=Q;)}TK&q5
z9J&`jE0^xbPCvrXL9GypsZR7by3r9C$_4OSK~Yj&x~!Nmowq8aD3k0J>@Y1-k(y*@
zbGDuYeu&*xjp)eqUmeBEX*xx16vEv6{NRPDe!$=?53uH>IAwX6pN9yJcXo_?rs#kF
zFe+?P9DW(-i~f|1e)N=@`iD_>Fsf}OsR^JyP-gh4JsO2Lmgrg+J~DRHA`<xLkq`*562u{M7ANX<8$7hCw-JQ%(;$JYJQ
z!YAeTJt)qb6F9qVd(SRVz4;-t^JW}bpTWjgF&_^?Xbkj{7Z+izT>c$>Bo>3`VJsjl
zG78C9E}^Lfsfk*howDvbrGo%_C(i{u4m-t_S^3&(Uu|WS%8MFA-A|&@
z`?B&l{ra3FenEsnUGhBj+uLBE$u5Ese0d$>pM$*979_bXLnvRuJvp0h*E-`fbcNuC
z<+@Y=+UJZSW}q`0B}~C&@Vs@*T4^`24$l#2i}S*LD1NO^BUFkuEI*v*$}A`KbT%R2
zcx*|4+4Gbm)wN$2kE2PpPf*N_pdx)@+9wxO62a@Kr~Yfaz!X&oeeLwYx4;ebc8>Zj
zA%5%~wcN;ye;B#Zd*(k2VQ-Lk=rv#vn2Z1H_i
zFF((!I{b|4O}_sB6%4WXx45==w~DF|D--M+6|IZ>RH;7REp$!6
zkuP~b;hKhr;5!`Kj&Qi*UI1Wo_k=Ozpu6XzVDMgW#on5Jvzf(MQE+Ap_?E0*nXT8)
zm7y|YMs8jAE&56FtigH|MgMM<^2m>6bU1DC4T2zmK5;=u0>Iz|E}(bGK^IOHTt`1m0N+xtgT3q&&d2$3k4V1En$Y
znA14YW??#iK>I3>awg4%6IsbO1@wrTzRs>q&Y
zw^PJHRvqksvGtFPsA&4M&L9(jadu&w=Z>wdEQ`LOlP%}CnVhNEShJRHmOzBdCdv5C
z6EQ_Y(>l1+Ppx3$0|I~=S#cx?sHvHlpC>`H$IAGc=hanmKJHxe>XPdl2JzO-`0zy2;MbPcHCc=XYAXTC=vr3IvHzj8
z)SmXU0YFB>I3Xb|WMP@@3#zgtSgRSsMyL0#tT26gE{9d0Nlx#qr~WGY;8&TPG6tgFjq7D={iZ6vYh-Ol_Vuw#!QxE5_?G?<2g?F
zQkA&zx9UQ+&e4hx733?)(?<(2pvNo#>=x5F7!Cu$AGiLGHF?S6HE=JA@=WK5t
z9){78G!nkY(GKS}YJWW0q1V&kg
z7Yf`5hDZHSs7aaMb#gfJ^lb9s81eehA?R!f9OP2pqwOYHS;t*Id(#dLxfAEn++?gZ
z((w9VXSE2C=E!Wtlffd3V5!w*)}hLR0(?261QG`}hxqS#BHllg`gMO|-z3{A$@)|mf4A=bbw$-fmsVv9zY=ELiMQmD|jWs~Q7;eT%s?~=ksPx)#ISonzFTdy3;?8^%J(O9FDp)LsR}YOg5GeI=NBTFS#GS
zb>57^xR&8L@HT4I+S&UzBB?`d(uv!wY-F?snB#P;+kfjrBzBQUr%7yHO085UWBNc?
z6IVJJh;)@sLU*YtXDcP+B^4G6Klax^Mp#D{00yie{q!-1PWEZ*>~Jv9Yc4MA@GM0P
zWs5Y2Lm#9e=)wljBfU^3O3{9>2}SaGvSi4TG~n_saQZ+?E?XsX^gE+dcpH&QIaP{}
zGa&%F+H{{cO$A0oog<%fAcD?;UN{+Pq&?7IZ6#D2`zMZiZ1PM!T+nx@~qe9M_Si%+y!gY&{5H+T>wjS8+o
zr3-Q9nwt_SER@Z`7#fOe>0+$Ut)Hdi5Nr`Jtke${^?po7pB3@0Q#~L3m(2zN7RSYMrL)Mg$cAM>%A&EdOhiZl+oxoV+JmQ*WGAPX!6Mm
zFUGFsq7GHg`E88<8gYMveyWgs8GqBt(8^ifoZ@h)dKWj(!AVWf?w
z)TYbfOt&&NHp3mBx4F=P-5#3KV+A0wZgL;$b>QT?Hn2e3*;UwU+BVi_
zc52ZER1^Vzzcjhk2WDQ9j(_1~pxEnnUQrge2y9O*6o);@;QM~Uty`v#H&|Kqp=D+GJpJ3Tc$(N
zs=>c*gE!LO)yZkPnTl&oYPvemO|$KCB(nP(aLVQKJAY`t`0qC?a&N~^bT!uzL3^mO{rYfq
zl;zE0h_h?r?{3eDpTj0)JguVZcFHzMx`0DMY8iI!+Dy(l1L^pN+DS{${>CqRaK#Pm
z4o^*Tc^#R3}f57WS8@BzVSe=CvFsj|HQe1o2n6|V*Nv{YVDO|i
ztP%fbgL)P4k|DO5t~6PS>tO=b7r2kkr<8|)Hu`H>82dkj&pC?R8(~+m%P7(15RMl>
z5ztpsTEVn2?L63-7<2ZKiiK2P>ukTBJH!Xe0?C$x8keutS
zpqcBm$|DD%g8dT+V6rgSa(8go6M=pEL(;%^k)U6m(^mvV{c2f8upXb-L;giAUzH!W
z$T;@W((cmT!ECkE-rll`D`#OB_;Gv0l^~`KOmhv-skV(KXuHXL%iNA4eIn2uYwhF6
zBL){%Y-;zS5_6T!tYRjHDS4W!>EOWHwOi>wA9qOn20laX4hyF&8aplS!tO;kHGKt#
zZUfdR=@JVWprf^5Z*s|A2ssDSMJm;%H6Ubq_6uo2EC&}KeeCeEIu4h`wH_x=)M_h0
z46$osx9Z9O*3QRxZ>7)xNi9l#+5?;g&dd~CfNf00U{*70VHV445IujkfIjG(Em(iF
z6+@K+rMmx)RtkoC`mAaVFL(3|FB{^)RL(q@JcD+jaT283EvyDfb(K!vUh#7;Yp5#N
zR{v=p)wKTH6THxip!8#QMVU_bwWcZ4vnL_hUrXvVk&&v3kpn6ME97znnwANyI^x?nM6@KS68xm6Lkb
z+*-OyBo`tq+=llcI~59TA0^gm`*g;Mks*^c@R=5>Lc^+qJ!n%fIHj?o8SJMjO!1?MD%%IT$YDjZBXs4%Xot1sx+{ugFAFBpz~Zwaf$8@}z~8|pRk)uS
z%cLY+-bf)3%qH15;XN}obG^U0CPmz9d>w+U9%l2)ToVzUK8ToH8kA0{g90slv~7LQ
zzPPeh*%hBFqx|i{b^#eyAukQUjH7VAhw9L^TBMN^DQOBm^mQl~8)0ugIz9
z)%OkLjszIlEN{zuQfe1hRHbwtje=kaP31GoT^3%7LKkkLh8)o-vn7WnWulgnNpV0H
zX%A~(ZG2|KsI{4w=UbXYz7aoNG&H%T
zTE}sY0(c9rQcC0B6?#&VR6)8`^
z(%+?cM-fLLlPZ`|<-f~WfdWgO3!eQzjrL>$36`~yTzi<-ls#_-GDOQgc{O<#T2F`?
zMNrw2z0L`Z{z_+-wJdM5%Tgn56t!s_UyRG!mOCzjR-TG)djP=c^U!hddiP)ZrX#ux
zZs=w8MH?lpha!%*f@rL@phUL_h4FVAR=RgVL~=vC{{`nG{$T)<+;6g(APmXorxzLL
zt_|en2~)1sFEOHU-Z>dJ*|?J%63(gS^q#NWj{?vZ?LkS+UNp-VOG#dBv46tbvDHp?
zHLfFAsWq{fP%{I&YLI@jzxE&1o-gW#0zv2k3mZ(FNoWA
zZyIfBCn2%>v5y&!%D4Xp=-u~dcKcj2z`juY0zkp6Qr0G^6@?WhKyBS89^8L-;8Gxq
zh;9$+nbyj_mjj(II>XEi=Skmj?K!hoP*K-|$;J9!2;c*P)i=$=HuCte)~MCj#DIYa
z^+{>@l%ZXo3|@KdrR95_`Vg94HnkO+I%V(Fg64vkTgk*JBw;iM4#7J&HQVQ>?@{=U
z&dXhi&`%vnS_KAwc0P61KsMV{!poA`Q&wob48T87W6=DS$r;n)b_B5Q)x^2!uXEn!
zAlY`U>LC)2I)FBZ3*yy2ppRm$Isyc8CVUjU
z;of^=g$PD=r7j#lqjQ~V)=_ptXzN|vRY^He`v{?bN(|9#dVTEDA-@VX%MbU!>}2S4
zlLFV!KdOsmz5M=YM@xE1-o3(yA2qZOq-4yPvb*s1|DnJ~E58^Vqorq(GQMkHQCw0H
z#m~^4%EC0kHH68spVV=)jOd;BnB_LC^K>0FFD5tkkC09K73z4f;_+}Dd~R-s{)w*t
z`CuzQ-S(4SQ;OiB^k5G>-A?LwddbGMfzE{YEAIfxu`6AI-ZK-}XQHn8c`t^`(y0_jjg;qPlK%*p-hEZ5(4F%-^D`?HQ}5JCF#okPi=p7!*t!Fm6Wib
zE+up~bmG`7E1tYgE?;B52fvdSO}o>YtYhb?oH5&gIx*cfi)ptY-XIRFtMF}bbTFKm
z<9v(bX3*$ezGlH9l?@(v<*VI7dBNumD5#m73!WhZ+^3CNiiPCiw>z&mIZ+in_uKbt
zSb*Kpw2j%>B<2~(vc9VZJfZB8XkS5rUx>6YXVJHX6cl@FeUY_2JN}B4uUt~jt)UgtF;g^b`Sb3$Cv2U2(HD0ujqy7q4_V09
z^(P0GFE1!^a`;0-sb0l4szjJEjHYVTVK)NB>;c+UG|rzA|D@e!NvYKOZdy}^Uc%-8
zHkTU@DC$N=SflA>Um;x;I2aLpOqqB|9SmF<#EdA
z!nI2(rW5HIN-`9E(;>kUyjb%1|MI-VjLvN4!tMXi?(AFliZN5>!QZO3`=Ts-`b-fP
zt&cZ1mCkO)ISwGeFKB`p2fz2V2&?0MOtGmWHC2?2(7L&!@<
zetIJ|yL5tQ-nGJuXL5h9k@13K$2mf{*0j_Bg<4M=-tyl`q>eQ!Y>K(%c@*^ZiSOG)
z*he1)k;&te(m%dxx7I(%~+ii_g
zb`)J9XCZk|@T>N~7d4(ypDtT>XbvG|Av}X;8py(q-g&etvmja-5w^eKl;+dg>a5N;
zkqm{Az7bD`G@Gh4Y>VmfG;@4(Z&B*k#pK>ih_l}3M4I)5ZsJ7dLY3*-^wd&WHJfVN
zS;{aMs6QRQ(A6%Bby0^W9>Y(%L5<38bu(utr%c-u+k$Qmb2_%Z@=v~zW4!SXzmUiG
zREzz|LqFhjG2KKkcpC;u`kQKaBecscAUN+P+8y1G7HLI@pD=T|UTj=kkGE_Tt)1mA
zFc!Ln{~6^Vlf=OcmJ_yIo0^Fqala8dd*g$6sP!~py12>$GS)RdiY8j|jn;+n*9;qB
zwaHYQ$;C#J6lsq3d5OeE)s4qO{vLx?8LqDh3{3QYVc0s_`&DKB3aOORu&izDa-&D&
zS;l1*skhjGi1D$l*d3hQi>>uyxs?alV$;IRI|;{W10?O?mTe{lh8f1ve?5AWh%|*;
zozF99hx!#~at=SA9Qgw5y)?Ca751i1^UIl&cQ0=V+BCX&b!~O|J!HRU@kAO0jU3w$
zH6?v3ek?d&gd^n-dUbanCOvLU(gZgEsF&pOp!IfuCqnSDnn66tAGG>`-!hZ=znDma
z(fGNX9*MCHE`*IQ*u=V$OGb-w+=*01qgpOCed}OVaCum0_tZ@0rp2i!eLHLZ#o_Z^A7$INDbor?@=@?ND
zW|vr5QC@fCh2+^g>i_3l?uOg*Tva@(ECuFes$HCF0IW^L;OJjgz;U`@bE2q~`QBc<
z&?5trIERYdtGXgaA;Dqoe+pe3MxKA{y6mVk^)7GA*3V+LFi^#dBE$J)c?*6TM=(At
z^n~vPKLiY>2S@L5R_3Y=Sht%X1oi#YStw+W+rmkivdj4kn4WCTgTDLqy(2PBV-;UK
zNZPeDt}f0Sr}Ja3s4ljH_!7#4PC=obz|n5f`AN_}3=h{rA2c{FZYa+O(h)my;@u8bDm+B$2~pP9
zYz!!-4F+&Dyw8BE_LKA{b0oZ&JsTBN4SwHxPS9kBm)LK3bV;E{AP(gsb{8IZT9*=*
z)Vg=6n7*!5yRX~Or6gdiuT**6x7n50Sa-piVq4JJhXocgXN#gTy~7o(_DCqJ_Nq4h
z$#nN@y3jkc%b-t)Qc4QlgtA`e5?NGp-9`d^ngMg!VTL>Hoz3|Wz4%a@ievwDtu$rK
zuRWLW4PE$IZt(uXFQmhgo%8ppuZDS^r&)R-s-K+4EGc1s6W+P4}!k&t7bvxC$@_GwOE!qD$6>ZHJ
z4?|~Rg-s);d`F?{K@pm^s0OEk;-6?Bh2CD(__DUORUv({C51!yyRUp|hjn9-*={f(
z(qI+i39;9!Qu#JbdyeCD;<^#-2MD}#-N`78HIk9r
z0$K!r*iSfdS@Q!pJSN@vqULQv0ds6?yXctuk
zNhMuXI%w~;i1E?uLuFfh8wjeZ%Z$I*
zNPcpo{KIg#dFT6Cb`2rllkvlInhh#bif7l6xosnlg?FjUyk*9Q@veNuxJ))cV$8IIHfM`(Q>_F#3O>6I-+S%)_`Q};U|
zrHVeU7M92&`HwIPC&n@N&l$`m>Ty{g@1hv;4+rYy>q^NEr#3dYeQYUi_~{
zYwse5JenLJjOSRDQCh{iBAEgcT?9#49n44nF#OC%{)ir(R=*q82#O|gnom?_l*Ut+
z3_81OyTHE-zmJ{`O1l%%YO4WiNJRWXOmqlFO%1!mi~CD7sWXz|C3vij-M3v>ADVt@
z^GVZNQGVr7IyFgwqe!!W<`#5&^?f_z&9_KhVq(m6tv_F1R&OiQ`6I15wK#Zdi!X8e
zj_?1no5|$eq22a;(y*k0$h$)n$?_@-!ku&&O^KG|
zb{YW^J^L0OC|&5yhZ>TY?_p7wW+ri66
zT-O*KYc=8sqAQIdM|)1EJ&w7c`rN=6i5r78i!LEHv~?5YjB41f8SviutfJC7U(GS{
zVwepB!-w`lir#B=gZ{?{D93gtXL@ruPLRMS=jvhauGRNM{oHIywXZFxLL^V?&%4h}
zOniNP$B!w3>a^20dy-!7WVy&DYtTaHZE9|2$Ry0-jp1rU6^8n$f)?;p0nvz;CN3QVLS~Ip9P*4<2QotthL=_yX|7)G1Xev!sH2aJ04jvQy=qjQu
zX|>+d*|UkN(leF=8PZ%x-{yW0|5?pGD$@%hc~R%kV+x|RL>+u~2|63Sfl5(?$OL&#
z?MF$u`Mv@wy4b(<*3s5mM3Ra5HQmrSyWLd4>!RsY%Zyaoswx-coR&_lLsQSXKW=zg
zJ=JP4%-uq(ro)rnf6n!tc|rrWM!er)sex_B)JeABktM1gNCyJmAyv$vO>!z
zp)Ft^X@JrnfSRr_8P!9UbBzCEZt0G4#!qJtpDQh0a`K>y(yA=`OVjAK%UJt}l>R=d
z!CCEIZ(@|;0${DoZB`RK@MI;`VQ5*Idet($!^Eg7I@Z_y9`y$1YzE<@GB~|_m4#PD
zen_mmRn3yCsio_LWb9H@F#nCtz}>P-7W}hHR@1ZSpmeY7K&)aJpS|F4
zq3>He9jm7KU3T{z<952#d^Wmat7+#?(aKJpRV8x{=N_T03JVz~DOafYEGP`Ms^RJu
zOeBIErMU3&LXWAlOp2GZBHt?HV5((vLn0q^fbIFys=~+{SEPhhV3qYT4I6v0RBIJ(
z&QhUr%#jhINSUfvUlwJnlC{c0!S*xbRkfamEQfhA8x{^#9F0UI7r_S7D)xBTDnsmZ
zN;&KelUlv>_I9D=@$>!103jZM`ssAdjbGj(BwEtLc3OJ&&!sBl{VC$FTy84Ov{Y)0
ziLo6Mc2#?;O&+y&fOT!2U)|_iuxS_9YHju+I~{gn*}Ay3%5*cOB7@fcraFjz6?*jO
zNcc`f;eoM3JM=U*9l&Tb1q0^GV9O!}jSzHKh)*I4nx1DLn6MQAxoWYjxDs
z&ML_x%pbOW;p7r2&Pnje%v|J~!msgjPoIJbaH_?+qUZT1<%Icr2~Ig)hT1acm@*s!
zyevg(2$hfew`?v!L&1%JO_5NijXSFg)jX-P+`Wi#p$Mhy(YG;QGC7pp=%W)`SIJ+$
z(GtSkuIAO_V`%>Ew4ZA9Qci%_MrNOoT2;8Ugp0(-G~&JS#x_3M=dT>!aI8zpf3tHD8ICL1ZKA
z-_Y}Na6B)&lCt9ulOnu$N4i5R{{K`l6ixJ@NH>0SSJT3A*svGl^dw36%%h=g3l4q2
zI|KJs*Z&A>=TeJ%pK1T1Lg(#*pEB*K57xtxG?tdb{f8_IM$=3XB68A}P(T;bqNL%Oo%Y$`SaozBjM@
zXP97SKUv$A*Z4=4lq%n-3-zn@xulh#$AvkIb;cp%CR&
zxm&btz5Z`mfiY|-CDXS3o|i{a|9OV3rPZ5`IO|PNgAKFpJ1cH>4?6!>@;?48Gtf>K-W3H6+?77{Q9T!`
zrJ~@|;ePxjtuGffZtcgP&va$2bsp>L^h0H_z
zBS;EZWu2tYxFv5XKTo@%Y)~PfgXstW}_pmHyw>fvmIU2-vhPrI47c
zrhZM3x?m_z6r3FKQN*w2e3xFO<|{=BS&WUMn|Y}Q7x;6sMAQAiBQxMH%SlU*{n~X$
zH;x_chnRI>;Zs;byvc#1Q+4%0o>ZYsgsgN>7?X7)wB4N>0xjgTn
zQpCn`abv&aS(+PyBOw?d@aTrbBYIw8!E
z5^=(ksDyf=qyByjy5`~|0R16H#w9rqYu~O}!lBmOLKV;7JF+pRGR#~TT&70j_wn8t
zu@bU5JDzx4>ZZ;zTr9OkwFg`y3%i(G-;31c`)U5Zlu+z3cW4$XZ4$&CAE92(bw;O6bCUG1a`zJvrPJWOnmCqQGNIi1uqammn!
zo;G&-;<|~wn&vC+)!!&RD$nk9w&_)I8I`E~%BYg3z{u|rc(p0C-nGsqv)z3ync&Wl
zRP~upf7^8qk?pGo3lEJy%5E;*TMxcFZzJk#h)E=V54n2`$Qs|-*PMq8HP|jpvelBj
zI*_w`_6478Uhr!XEdTZMmC>WKo)phb4)NId8;HhKXkl?z@Pl6tN!s;=cnbTSeUizX
zx5YgRU(a74Vc5w1`0Z*U;&pH7FGjWer`S1TW3yS=C@A?WJ1qYtH=3A+Cmfp*un$RI
z5>)BTa{vUz3%nbf)?;K)*>rw0mA~lJ1ACqdn<|~fXRjKs7N%03)q*P7TJur$`Jq?+
z?gG~j${%IC{l~i?z(^7qEw_
zlZST}_W@t~FTRQR&Ik#VVp~P(3n9|I>UF4?`;KJ_+@^#`QJkYLp7zPDXeM^jiV{Tr
zvbzv@rTAsbH`?id6*cm!-;SNH_1!7gT&-HLAfNl{4qHtPuTfB0yF`yVBhkw9Dzsvv
ze~xuZ9I(;Hf_jjHHMOi?+h9dQ!hF5*>BOS+n|m7>bsmlzQk$bFOxx7FkMyLKeP0ak|UssOhA^6~;>`GlaCVoYtA3&iH~4`+?u
zmNyLRxzuC&xhimv$S9`R{E|l+C%v2@QO0n`^4wSqQuz+XuT<>7`N~4`LW#dKN)HyTaqh#WN^%qzu~1jdPvY+KU|>>FlJB-uo&d8Bxfa
z=V#WFeg)H>iXAuT#*OF6f@8lopY$I*hy0?p9N(>uwMjM(p&Qi?U{FWy`Wh52$`MOs
zxNB)QI+6F(8n2R?9PqCsBs>otg7(6^>Cx=SLOGVj8Va*hANDdlvL%Xqk@av({tUx^p35PMAI`km9QNqlUqPotIbj6jT&929(7Savo
zY>N`wc=)z?fI5K(N9WxP`GA`tcM%oi|E0np9p4^;7STN>gR1R+Qc4
zzv>^iB;eCi*U|i-QF83(9IT8=Gf@N&y8LWu>FDa{D_~isa1IYwj@=o`mPwJb0dN)*
zI`=E8AbU~bS)R%um^QXJw(Uz=M&G4R_f2zq=ir^tvCW*knLf*VyAzeiS(vc@d7DY{
z;@%(sANq@wg+#OZ|r-oQLx7Zp$oP$
z+t?Oxc}8ND%Jqz+C#i*>CPAwgmA^Ngb$@qtm0zyi`QmOtmy-eaiNlk~q$J>iGRRCewF37g2;xeM@Q)BuD!vjdF5$iwA728{_Ek-ft8LnAjw~+Ts^hF#@nmU
zm+oHrZt&Up3ceu(+g7WYG8OBwIUc{_c}w(e2_5zj^LQ$$fd->O@%AabI&+k&G=uamrUKD_bR7~4a7HV{@$Vu!lnOr9}6!fHHxA|)~*$-g=z-CB_g
zU)wQs&lz47O6#OzVCaW`D*{~3nC$PycQxG7gGBx;XTEp{A$eaom3!5BTu^lScm-P)
zeZ+cKYL6tK@l)Ea0+R5J3?U%Ug3H-pnf(OFoaWWCounG|KkgTt)A2P6uC9pmlhYX$w#2SeW8<3XWl1=u
zyX+d>l|RvEjGkHD&;$0113|>fg8YbBdiX^0&nne;78J47#hRt@iZk`CrZyOG)_*)=XoX()
zWVi*LNbC(7evI)7tkYs4u{NRvgKw)mZesQGpV4gXc@Tv!qVhhXFT;pr
zu}XQ>l87!)=^^M)zogLMb(F^XM>~oBhjXMoeN5y-4yZkh8iCYbKyEKMrdakwt(<2<
zj5K3abW6Gc&D>DGo7J2E4cEP1r+s`9^>Cz8V#(NGk6Kk7VNP@m1u0VRy?znzPx9WU
zfFthUzRQ-15HTODAhE;Q#Py`4cXj51TocDDRdHSb4G{FX+dk;vkKV7}humHGJjsc#
zN_J|>C-fHdb(j+yX2sOw9+!gGJ_i5X-}Ds8@W?5
ztLD0KKYN=%UEq_`$MqS*hLbIg;mf|2;m}c7X@}?I0oW;J=e$08MrLcQ<%>QjGT7Wgexefud1$oqmj&&~@q54MS6f
zqYX+h7WmNbbEy4w1GI43A|K}eE4XG_*i?CiXeSK*b*re9c4`0ZJEvPyd!$IE3UAiJI
zoK@$mw|nRmU%e3XMdZjo3{J%PAKIcrKXp}TS=H=H82>|xMWhP}
z;5e<%xk8zRy;+v;wIG;W`&{{RlT&F>(M=N4diuxKEalTX4E8_2*cS0}nUBgCXE;jL
z)Wv?*dc^jNuF~y$EnRrPH+Zc-qCv2}U~w3p5l%|-XONYmbxtdJEZ3=;Oo__J7(yat*=0)m~cov8E3ge
zWdcd)+rYxv>Lla=N`C)|o&r-!p!2vI6c%e~Sgq;n{W(K$8j~xt)|a#I{cc&|@W~eN
z=Zm9_-e~{dzSI(~3P&y>`w&8Vo^k0!5s^12l}0h#v$5P7chW+H1Cw#iSQPKYUx^Eg
zGw{P{!5o^h$K(R{a!Pw}+V4=ZfY8-@UWt6_OWU@LtAT2egS~!?0vIpddSlb!A@N3b
zO=wRdI`^z(z0lo%0XKDHN3IS@k9-P1g}<<_(IC~G%SibpU0cfzr5)^wb~r_p_k~b<
z?+;G7l3J_x{WXtcUFt&CvZbdlIX*l>Guo$zzri(LlC9Gy*x
zs$gMrE_Ya9fv5xqXh)F+7%0@gVG;Uxjlyp2>P1Toi3O?c5x30ULWA}FbUfO-4hD$|Wj7-?cEmvVD`dalPt_SHNgbNYlT3ZGGn;m)|GTTebg
z;`Qf5`n(Z?k*N}K;?{}e3c(_ti{JqP`DGQ614vge=;aC-P+r*qx12ofpll_2E?#G{
z3M)rsW6`@glI~}s*wt+Tv*fGqK?eldHpafUF7(A8(ydFGzpiTz=@~P=`mHR$+tl&b
zE4hx@w2ZcfGfW(q>`SAQdt(cZ`p>4^P(QYGMe!d7W+F3Yj|>{jr~IBl$vYmm^1qP+x+fl(!M7BL1A1#lXHnHOdrQb40DKtoW3NucQCZOx%Ysj!}iG+
z2LV_*&zZiM$b3HdBig97^LO?z@qfzwhnnmDrW+gUU4E{}ghjpHOaC9H#6}6LDWh7}
zPC_I$f!%G_?;zO5qSj2c7+?k#JH|<#F?@EZ3P`KC5Fr|
zSR!1?hXhky1?$~jOy}LFCPc0#wnL|XAfxnSphJI!W|5Vp9i6Z0#5fq(6_>~HxX8*J
z(r4;Ayv-r&a}72>--p^by$=qhKSBO?&}a!Vw>AOtD}%+*^b9^-Wasz2
z#Do(e*DsYbzhA!@7!hW%c3`tn#%`GKZs44q?D{-9DZV-h1cRlzMG92gg9sK+xab85
zWu|wa515q;@Vr#K*2~_i@HaTJnA6#$u$|VmQ>dx<-T1VdN2f{oaQ)!qr7+qB@u(CxqB(v~Fe0}ER9Xd_3>}kJ2U~b_T+z<<}^&hCXY~=@roPOnsaGV&u
zGWq(Qlr1asOrPO4tg92;7#=zeb-Is*kt1vFUVb~7NkR}bMU{>ZcJbs_f=)!gHOF61
zC#7cDOm^0~i>;D((E0GGM^}~AIR$#uttb!wy+ibExIt&#L5EySsy(G1Zn2cD@3}q^
zXDFl+NRwb_x7sZXeR;EikEBEvwj@Kmgjf}Qrm4bw*lSdAG6pOljab-Rkzx-9?NPdybh)g=>6zqOVFucI(Q}1ffYB)^
zEl>T93pD)m`z+aoQhsdirvQO3PN|$)m*oir+=1JW?d7Sb+Et0|1zp5{4$@T8&#|eJ
zc$WI?dwBj=L+Ag;{P)m*D<7%dRL}c@Pu7v8l=m>L$-L
zSqYgQKVlB)d&tFCZ-bY?MZV5DBF&xb_0)54<5-AjtyjG0~
zN*Myk4ROiIoeBekr{rAUxNB`p>0Z(227t`<4owaxlAh~@XJ;pQI>2P!fAsO}@`vA{
zoq#<8VxhY$=|X5n;d(BSR(!W5X%17nQdGcRMr(1kVuvVssH1Q!Y-lu*`^$M4ak^_x
zIVZvQ_F3*{D+~kMrV0USwfum{}-dwK*eMy{A`z{v$
zdEH@BpUHC7-;9H*Q*AKTcf*g)cG)2{2KJpxMxqzmzi=VmY>8vw#O^ZWOz8zs^`hl{
zZUhx;+K4XbrBMbK{AUX}7D6?{d8HVONIs-I-{aFh{K<68B{A_r7cE!2hy_IP4JZqF
zSd;u|QNB~ujls;Xs*L(00k?T+Zh$>CYX;QWxCJzJ2vManbNspS#AlVnCs*{xzWeeZWt;DoMTcXTdJ4#G8%?2
z4#}CT8cXUc8RNNz8IxG%llF#8?-AEpL8VpyVP%FeP<}k&U5i;0XZX?YyYTW6MJ`Fo
ztI7T}?nRS#P@H7a)u~izy-*9u!XPf=u%xjfW4(w1-j1yt>FhhF<(GgA6k(!z;t9grwqp`u?b
z!wjCh>^lZjSf8mn`(^A+*_NQBMVp+jPiI#CnAReY%g(?3%PjAL^Vd*aXMVFfr-}@q
zGc9q}+S1A>Y$;EngqTZV`}Sl<^V*FwEzmtegPSvjFQ+(ZxiBoXgg5!$TEV{=Ha@3d
zkK3lq-~UARLOT&nVp0=E)8ohAlodntSxwq0iM6|W5g=NDW=~@W&%kj@byA)vUUh*k
z&C{xdqY%rsA*=mF5sF1*kpFGOX6yRw+U1E>=a@=w=Q=@4s-HdtCSV{QGPvgCIId@G
z-P&y8ojSVXH|YLW31<&h|8H2=TI6WW!rwHw>t6#3%|gE-ZFtF7=D#;EI;#W%cC_x>
zgSn3#Bb=bV>=1Ze5
z(!QUU%}yG(N(SLGwQnEBzomt<51u4W7raSvLSx(d4zheWNhnD~rh)GzJ^oHkALpP>
zwFs=~TusRa8@mVRBrrPp0sZAhGnZ@^;&pPZ-SFITb*8nxek=-y6W#A^`!3g&)GE8r
zvEhv76o7;LG@wamm}9>HyCV#fXvY+n;g;8x^lQ~GeYcGzxVKR2T``=JR*$x?
zOD-MoO!LKMOH~y~kOQ@`tOb==;7!8|E2BD_3CqBm^wI`%v0{Y-Dr^$G0Dk?s?Vak3
zDi=&XM5y+%(aDHw_@-#7GcLZk&h12Gy`<*j3eVwY`tFyUK+cQ#7LR^)f%&=N_Xf>r
z@)6k13NXaLR4?iNQfEtO#&YjZSC6dnYA9id`P<|i4TMnEoE4BnU;f50X)A-eU^2`P
z%T%*=sU@{*j@8$C29uV5kX=se;&ohqWqS$YqmQqkCM8QqpV&I!CU**p+Nt{O#N`wg
zvCGAE@4d*V){YZXUC77RJfmG~2<7166vp`wA@J-EAX
zAEpA^QbYIFkFJv1zkNM9`6g*BrctnH!khg3OxL`G{R&#`aN^
z5s22IPwtrck1^DKy<0GH
zG-zHF1?%|U1hP=kgT7ye>7weWtJF#ThnSn)gkKhRL7bu{Pr)VGB0rl^Hel8&;%9d>
zdX+Ul-&M^;n}<8n;&0*iftN1gy#1owZ@>K+T)ZU^c_ij<`KT@3)Yh|t>=~1wBEz>Zur#XwiJsI~8v_#oypLn;Gr>7;1D4&+P52%e%4a
zay+AjyFR+KpswLZ@L?nBgqrIK9OFf#eI9%~MJnY?)Y)rBvcLRAa
zeiu_mfHjn{lSS=7!tN)u3(GW2iCn(KpZ6o9@KMUq+P3)0TAZduN}qTf?J`2W!{3rQ
zs*~mmkj;%Ec;PGNI(2zu
zS~BiJ<5-wuU5s*~bC9M>3rpeJPfMILI%DfU=TJ&t{0AOCX=!=vO7vXVwF4&D**S5x
zf=KTSIAM3=g;_f)oP9
z;h)S(1)k_UdGd)l2d2}re}|^@edZdrE!+IZ`QvuQM^f)Ul-7QhkGG;RM?I_Gcj3+=
z_^JcV@EZ}=;O&O?Rf(i_Sbj!vyp7$IJx|YitUgD?vjc~W59{ev`e%IWlxLE|R)KXc
z4`tV5r`GM>{`FmX3EjE-;;nnRzWEcL-kt(fTf}4|9<3A?fSVM7fU6NH4-gp(Xu`Z^
zI1~xVU-faEiG`UEwH1LduWZVmcc(4Rn!EijxH{9#`T1>br@hLuE9IJ^7==-qrKc;By~rTv$rQ5{
z@2|XI$-xbQ#3C?M0@FQ3a|-&J8IQ#rBWza`vCjet}__CN)L#^tDXfV^x5Vrr+rrK9}t#Yqn}
zxGn>em@KR%k|#5(qv6HE7y>_GRlN5nq<=zezAr7oj8Zic1jLYzkTEW+Gry>I3oYc|
zMu89(n$BQs6^VYrRDhSNl7`d2#ga&6uK-W#gBLVTxPOX1JpY3~b@}`HzVu+~>w|55
zr#k;d|1N`KZ`st`ebNhIF)z)j?dy|cZ{Wz&(0vme`j0Jr&F5k1574Cv=C=Ol?JG{|=2js@{
zn<2-xsJ0V3RWqbVcZuBsgFfuWO{(q3h|+Iukz;JiZk<3KU+hwhmbsTI1%EgU?Qud~zxtO9v-`23
zvoHlf?7bT|6N8g;5R^YC=J*4aauQ2tq2X*1HffQOyj@EN-wrj(XP|NTZEZ%T
ztTmbgh8gSW$ROYFc9FkgrKyyy88P+~)Q-(iDvEq_7W6pe&Bt|M(=Hhr6TNqz$ZZ+i
z++2^S5ga0Qeih&WSiG~z?pEsP40Lub!{)AzGR%8GJQkjLYyiiD=0K{XEly=WN?cC3
z*sBQ0?G;R;2@DbhD0s_yMfVl$x=QLE#rzALZLc}(_IO$+569ht_YM!M9evzF8gjM>QvZ5X(~<=0J~LOk#5bW1Hw$dZ(0hxPxbdeT3R>Q>u=>(!)iQ`{hq(3
z$S9-w4oym2qZ!kR5)}zs;gb*w8<|=_hAgw{VnSKMipK2TjxXZ37H-0bs`k2vM&<~Uu!sB8PB@=|l{2_7_MWAu7)
z5(}mX@Eq2ie9EuT*~5)pX+DTXHz}i(9SvYk-pmx4NFw7^K!HOoFm2P`0T>MB-^ZL
zeI-uv1O2;xZa^W)MEHD77doy>mV5Q`M#QV7XRQ;7h{&L+?$HCfHX1ezpmn7Fk^}x4;-b>ZVpjY3VP|K!
zx0zYN^q$D#0lboOq2j7kC>9kN+1u|%?Pk7F=5ym7;29ve4LJaIppG4Q^_+$@g8;5%
zMmRjmQ+Z(KXs~PJ&1#rp&`+!2LoRhL-LUMo=~RYvaDSpQ
zxRqG5hhv+*jQO|ja#Tl1*qft!AS_s&jcq93+(
zSf~X9cuUmf$%V*#2Gf}$Xw2+q9pLByTa&FQavP(3sx6%=Spwcuquob^&dz{*)pd^K
z>ja5?XoryHGh*1~C3dBv?;iE(P7WyMUfBV#4y=R%Wq$%$3knp3DNvPWfl5OBF~NGx
z?}qI>rOkd0=DC(fO(s(d#R$=>Ww!M6TvDcoG~^3WT&&~?arCKmL)-NXG@0*t%^E8(S8&g;-ol=&>-!p#2kFHN7Vp7h3!-cT&9WLf?w$>bmx
z3bJce&Loei3Gh)=w=m;oE3Aga=228h1nx#@lZZ41==Q8Rj=wTn?G-z|UhMi~wt(Zp
zMWU^?^!?nTx)sOez<`b%db8ugy|Q3oe)bx`b>^
z-OYJ=ed`nssBtSQ<4`1fKTiPj!y*YF$S>cj-2F^Vxo%sZCLY@!dL_<4krx(a;8+nY
zqFnWyHG&{#xQhFSJ=FI~pgQp191Y^IGv>d(r;
zQ^2}Y6426}>ln=MH}XB6gADig@)S7Mc%>mHLDBTHlOZ6%v85<0y%*K0xVpJ&d7dqI
z81wh1tuhx^-n$Q}et}_uZmnBhK@l8Z3~pn2xvpPNM=jo655vtYhns)-lFoeGkbc*3
zGWEXMWFlL8X`3DZ%1|4ug00O$2%?f_^{o#M3}!J{NbT*E#nR6L!y5`@S-IH{^{c$(
zb;s-!*WaI5ydT+u29fJvr<5)X7ZRCm!@|-Lqmo8LK1-s=)GPORqIx;F6YpZqs)KFK
z3Q`Z2*h!Em42hjQ{dY@2y_-pdw}Hx9&i)Sz1yLq2ORfSE^_eXb
zj-n6Df~H7mn#Na_I5CKoG^h2S3@ISe(YG9oS48hF1ndDs>{Ey;eRoT&sD_+=BXL{)Lry
z7|81TO-)#MJQ(*D8GqZq)N#_!r|+IvxDFx}>QWE=C5o-H?-zSoS^2A`=CjS&y?V{d
zlL2{6W5Ot)b0v4OM%DS#=Qk^payM2fh%rpZRFCmmc%p7r87{k`oYSZrj!wigaeVIb
zLT~sP{!PdpCM_gscIht!$&gGy>{cwSSej;@*H(`wk!YL`7lVMNGyNbNm{<^;QY
z9(bkQhf#M2eGfOcz&F!Lwn$JH=r_sX97zJh!a)eoFE3eOIo+uO65==>d9
zO>Fspk(2*hD&_RH7+MvlyAKQK+O!n0TT3feo5>~Xcnv88IY3{KSurGP
zoQ+iX<~ljm@##(NgwD+GQ+C6APcx8?+iPy;_V8Abx8{9IQjR>J^ctvI>~KbwJRw;+
z`IJrz*_0+j3PY9-DJ*rtQ*X4Lqt1udtu|pCXx97}WCpMZ_6{i?x@RzpU7@OgR*7Y(
zQgE_9!B3fI9xfD~_}WRW6Zp5&*Vc-%haCJkn9JAhZ=}daPyTd4F}{GJ!BBVFSl`x#
zTR^W|mW7ZEvjcsVEssW~=#GHpWc=n-^R&LiY6`@g$BvOdD*C=VlK!o>L*TrosDbCH
z0gLu(I@;QsF0rayjns#u!hJ(RdQvSZbGMDcyEV@jp9%mOjKRQEOL{l`sbY(q+mPj~
zSXe7$egl+*yEy+Z_FJMpZ;QiMc$>D3?G3NA8^+0)FyaW?Mj>gd>P;dB8*Q4i^ZHGy
z@>Mz0?+=Zz?o2bg_H)7tYK*IXpXB$IjTwY=w_COjI9~bK4FEhK_s4?MhC;%=#O(tA
za=JyZeYI2bIoAn3<`kzbSQ^P~->A)#(RnUt1FHz5wlhk|jdRDrcZ5;_v)@OOCRG2S
zN_Aa%6kkeIu#g#~8@2}gQX&W+*JJ_Oo=noa7FKwdp3iHiqo~HEeSJNusZPee!Rufd
zoEk}5&A&S|5ax!>clnw^&ALh@3#4ije=xEabwC~m9mY`EBDwDY{%h)V5f*lnY@lbb^M&qa|3wR&6Rj^qH}JL4(Rch+}+`;|b(N}nIG
zfiydQk6OI_issFi&$(8eN+WGz(qkL&HyV~Y8H&%iC%WqWZ>)y2>qSpzQB)m?7a6&n
z{zSn(HW2|Ze>z&pknINXdxjt)X(cIf8Z|EXW(HZ)=u93LCN3Wev4Aa#yBS&@9noke
zQ0(JIjh{x`#C*{yg#C92j+C%KJ`eMS)7oXo}M3g9VK3>GRJUtBj+%7
z^6Vp0QuE8Yh2#aiZ18Mk$BR59+p5i>EV#*GuRs>WFePSDq2GFemMM-XZNbI0aF9rS
zqg-SUEtPx3P$&cgC)?@aoaGj3+NL(4wh*N9F1HQalwoNI
ze2nVAuMjumR?At1eMl6+bzz>v9KW|u?XLpxZkJ|IH6aNq?-(JXqgONy9>J?=pZRp5V0n7CgxG&gG)MhrJY
zX%Z2~Hg=Yr#;T-_W)0>TSCl;crXmRcXS?*5@qf~3(rfv9%0MN}vZrI}(n142oIco0
z*N~Qs*uQKXmg$a?TK*rulUj{;;_Y&5zAeGR-1iv?CDLdu5tn4=pL3=;`A+Qli%Rxa
zs_G$6WH9H=aV4##L;4och>W8()r<<7{ac)Ov
ztE}qnMc?nTCkY`LP9=wRQ}Dkai>0N1Qd0jaMH0g(ThD`D@J3JUc;rINYxhW=!|evZ
z_cW{q3~rWsjn6GzqG62X2wsWtYIUw_Oj`r1=V3*uy_MQMW8G0f$`R_}g)Smg{j4T8
zT^gJb(d6~(s7=~(z2A9t-|m{tfaKS;@}EK!8%+~SZrSCI=K+zlM$-=uW{aD(jkDL+
za~K$7|HE>~W~v>!$;|zor8n-UyP!Db^a`#{_0ALTX0KDfOpsqz&B+OyLZ)z@6wd%C
zF%s#papJH&N;g9+24)Y1`1rPZR~ia&MKb&9vG}IFbNKiK_9CWe>G>i<32D|(qs7h3
zKMTv>9!bI)CN?kU4XM5j@-V$A+Z?vt*X89;3FmKLAcQ%@tUZ%?tPhl3cZWQTu8`&i
z65Q6_S~@bBQVAuK0MFmru-QfVP&w`D0C8aUr(#T<^4*s`+idAOf~#6o>9a%XydJ}c
za-M2-j*)UlaR!TX2bXHC4$nH*MF@v}myC>X+!5QlT5P)^-tz7wH`bPzY%~X^meLSs
z52=I2m$I1qAbgD2pDTku?vUQ!P24LK%U;#vvL@34^@x|kD`7kj(shlU$l5YR`q3#Y
z#&*d-wu!(W&=u2dW$-bFj8oR7*N^0G
zDE({%G(1SgizVLE8(Q#gGAnV($m5Vu(ME_d{)eR#GO7V%mhxhB%F_9qtWrd8`}P^*
zxwNL*t`5#MT_g$TUFsiPeAa?kaP%VZEPv-{y4bia=`Ot{C
z-cP2qSuJTX+0iC17)%y4()-%TT^>1|KAP#^U^^2URbdQA>_w228&;UY=
zEL%UjoZR)Ych+HIE#`k4ig=4I5cb~s;6oWa$=cNTWTeA9d8I-HB&w*K>B>qZ;g29mzy
z>B?Qkou(8ytWE+;uBd~3Cfx2IHRK$s48B}`Wj<0~lr3~K^Y|i!VPO;b&+26WsT(V7NU>oX-nK%&6UWkx%S&$>-s9&dW|Q@2Ff0C3w~+K
zXPi9Xb`P;)g(Z*JUhfhq=*deRHja>~nP8ul=Pw1BwgqVp-&ZtU84I-WdnazRtRmMT
zP5t!Uxsl_qSiLtUaNZA*wdwI_v+6=)PZj2Uh0x#|$R3}cc*c=e<1*5H|5Hi=UPklhn~FTw6QpgnB>z3k#V@`UdDo&A3(k2Hm1e
z*n+CR`0fx7gke`NUQ))IE%n*kV-%M1{4V^H3P!J}m3m7}-*)9q<~feJQJi7RN}(*I
zxweji$TRyvgA_j`OKt0tBRh*|#z7C_=wv`KwrmivW*QGJY7=6V{Azt$WgfWN^kbp#jZHSr#voQvNB*-zqB)?9^|GjL^DmsCK)y-
zSb$qv>ISjK;a6DLLkseC7riRPFPcOKCkNU6{p>F!K`(Ir{JGq{@>NePj;gH}m{a&m
zg69jbdiLX$Yo!NK#0xau>Iu3W?Lpb+&v9PKI_)U*3u`i^K&D~Idr$K$>nzu0_n~JC
z?d9X}TA_!fkxlrWZbY1J<(4q3LBsEX=|74_?jcFb?RjUN=a;`Ka}v8;Y%jHwm(fU<
zok|B?T+0p9t-=92cfE9>Td{mo;QPgREM~pkhjQySl-p<5M2AduE`v9^v`?Rve%_4#
zWKcq5mlJhJ+j*k{x||Zc#JH~j%jRtJowJ9kKmA*cb=yzX6WB4I_f9*lA7BcrCUico
z{8Y+{G^LzoY=W=_?Q)7d@tSoB*WS
z=b~{N87+o1lKnK-qQ1b>z)_%T^u4{Q>vMXn)uKJc6|eBPt>$#Lje%9O6lA?&v^
zw`#o*j)1xPOq&w6ru^Hd#M4UV1^X;fg)R0)1Ml%jGYV
zrQ;+uL1vej-xlEtkLCq$^Lp|`>WF37%E=0R#J^tWsp}H-nz_E_4t`KJCV%?N8B^a2
zrv|>SXPtc1FpDJD-QjXQU0pY^vtY$K1QU8i*0qFQUE$UtK&)K}liN-(TN>@EbukSW
z)g_4VbEAN=sl#SSX$~O#Q;I(vgNe(7?jy(k)sXc0U7)I}tM6jNf!ckxPQN*;4qcve
zdv#?FvL(NN7B9&iC6SP}d^LoVDBHhYr&N#V0twl-m{M`tR!-A+4w3Nx<`kSZk`ASz
z6#nQ~I(dkJVVz>qDS{04Wk2;}V;G>s9X08ntK`+SHGR!sRqP+C;^jo|!jDNO!S%~-
zxk>NN!e@C@`>9#5MuAMaPoWeF<8lN$Slqsx^z_Ffv{4tGrpH}=snY!iPmpSahS|9i
z3ZH&ps1G2dZs~eSoAVt8X
zaz3lo@+^6_5IUS~H?QgAY7q*owA;9jZx^Web-sFdOZD3UVO`zk7OhzmJW9Y($lG0T
z%@W*2{0_BZ4mzHxey0LS0dP^IF{-f2QK}GB`;u-{Cet8rFdp}tNCI_GtTpHs=+A}!CgKhuAzi_
z`Am)6TAiM5SbKMeb;J`F^`cwh#?>Ys@95-&K|
zX@lUoXW*NJNiizrI-<@o(!OzF)kc-KWX8r{F5rST@Cz)-V4Kz7mCv<=PfKi8BF%4a5
zw*6310$vW!b2Y*gHB9G0Lb~bg?x|H1Md+b71G)!IdNT32B=P=+#BI0RX;)W~2kiE9
zjP|K%s!RGQJAVY2E#&F41p~Hh#F~kQ*6!+UH73@ReH_9L!Y}x~<8(!(G0ELSR#`N%
z)!2Sp#pxw>HyTKxS{|j6`2NGFs_4xeNtq^<&h(q%*w5FmQw}BiR*Ey$O~Lyy(12w)
z&(rE^3@<=mp}O?d_fPUTuPyT)j>_+DFs+*ZA4cN;|APOfS+OfFZr^lj7&OnER&7cP
zJLt{)v@ZU_T_Z%wUAV}#2Y&4$M{#K4!h*z83(14z(Y?%H7FzROML#yj<2?9#U
zuD+^P-t0C@w|ibo?Cm>;|wHnetCTUQg>n7LkuAFA|E9S);oh9Y#zOI>voQ%A2Q*nU
z#X?K07wt%JgU%YN{FVK&d%8$^NfKNqd2E5@#R835TX(L8SNZwYuC*u~zF
zGco7X^NJ-ecHeEkAYm-5I{*9ku=FpspSv2Noj6$$oLo>Er{=9pL8
zG~4B9w>v&6N0t=eX-d-fxNay`d1Qgt9@BbhU|ee_{>N#@5
zcla9MMB^+i_XPH^Y+U0LQV4(?@=YLlL{uuMhFfV8kp^pV}qDT}A?TLks=$0Llo?xN|O
z-NBNtck|oku6M^0U<@|B@VJ|pc+JU`rU!7@C0e01+%C(-%B(p;8H~P8
zAhFf?xjG*@U5A6K^q2nCeHxj_e#3;-Kqdy|%-6cqiB5+C$-KT0f?no%$Ow+ME};O=
zrS4#P@5*8)=$Bv!sOXY5^?CAuN=*OG&d+Ox>8kupA8>Vz0gU}6cRY0BI2B
zGJm230Ly1Y`CTd3(F}{`Bj&qXu|4g*7GB$boDyDI`>fP*-KuVXQiVz|8eBm(RdaL2
z|5MWpw~|^B_sdu7_2k}#3Ha>Q#u5&EC>3lb6{-1qT4
zG~QI-Nx@cEka(-6#y^XOb%c82LWf805dOVpkua4L=T;58(&Y4W1if0-7U0ZSJ9}>zP3~awGiK_cWg&
zzp;&mbpZHMo6M<^v}utd!eO{yMbG#R%b>ckVMR=OIDa#M%te&pUQ^;mp~7_N?M7Aq
z>@NSGg>%OXAKO5I`K*S6w9*Q3fQ5y9h?xQ1+s)B_u?io(3$5tNK@s1c#E&;dRu`F+
zx;?ffWfO}^8mUVMr6m>F9#_>Svv+L6_GPb^jF$8k|7~aFoa@7h_2}ikTy7yud|lhY
z824$5cfddXf&sWl2D#swIjt)Z$T*I+(pII^ejsgbB1iY-m#~q5{@#y1j&UD{z4Y9Ftjqs+qXZ|1maTUoJx)F+u4kY
z#AW=Eab|~QRA<|j=lTc#^ir&mE@K&#r!;<)%#Kl*`pCj~YV>8x*RINXaiWPQ%)jiQbg^{2_*opt#BW
zg)5RP6(;v7`_6+G+|xjJZ>o`~)3si$fT<@{iQjB}q$wb1nU!8sk+rUs>ctA?c01Vt
z+6!fd68v$7h>cG^4+%?%g7&-ru-xxeR%G8^kCu-8ryB7
zI4Y_d!q7#HHB(=Ft4QChP9tz{taVLiPU@BIVpw?C4#~To%L|!6?_W`_onNv)(4X$)
zx>#Bw&-(P=eCc{mp{L{>h(M}ig*2}3=F>XubOmLV$~9rvS^I_bCkKAb@e8R~b!G6i
zSRd>EG_}dPXb;riYKE~YtZS12mgOZ&Uk5}3jcZ@_uOL(FL^Dp7L1%7@#};cXO)CJI
zAV+)V9GZ!il=4bHDum#OE?_?Ge7L|}7HU{o#>G8+xH;u3UAmtThnm#c(e?>x*i-Gu
zgo@_1uJ0}Rv~gRbz&mnvUgK~Y)>(;;jxVeZt0(s1#W5wE?Y84xB4=awBVAxn>-Zul
zjkIy(N!`KzCZW2EnZ3CnPpm)_7oo0@A>MPPsS`x{_xmvAH(Or|ysyG{XNI`W3OYoE
zoz3H@D;tBGFd#!0y8p1s=B4gl2_h_(O%QdTH?kRe*8|ovJNb_?kzKPPE$NT@`wi}?
zu)bP_IL`r1c6KqlaosVs9%mb84o&XzqbjKt#M*Ug*gnMJdd&6)lyUknxdKV3-E3mt
zb`f<|Pl2>KJQvwdf#fYN%x-p5mA#KX^s@j^Xkn6@t~VpC%Yjv6nUJlfJmKnM$~#ab
zZ-tpg;m^czxhE^Z3d$))xM^Vwl1tK<;DqNIy!Eac3a9ej2AV6=&*o
zMtx0u?<>YeZ&DO+q$17aKZzdmV?eL1eaO~seICxAxx^IE=g$WPo^bG3ol?@u@_=7~uZ<-me{}ZbP(2}7
zT2j(MX)>|pTReNhqQH%Xcq+b>%@??z-8Sip0@wUP@zvU8LvhYG6KJC{lr~0C;pq{ic&JP#*+W%W1%QMzY1u^7+ONVEzMr$O6q@3YJS+Nbv?5K7%1dn)
zZTsNH(6okbv-3p&(ve5Lo1X5vQOI}tGd*gBiwjLdd-p=TXu>
z&;voZC!$h8Aty~fpjvA!N+I+
zVSPq_{dk)Hb@;@@wF}>E_5{(d*>!y!luG<=(5Oen-I1|OtvYy{=My~NA(FwNIM30y
zGQzq-OCsc|w=3y%?dEhvoHjl5T%>Dy_14`#=ty?0ElkNPU&@vIBz5>=vOqH+yIDG1!=Sl`+Z$?9yMj9mFakLZAI+01D@5<0Qvs06Ym3qkq)SjT1k
zL&lPCzoOV>Ho@CRwWov;1_Uv%oN63v1y1tHXJmTKSOnODZ65z-2&82qiVPwNo-m^r
zWEsv2&dAS*g}pS>(Q9D+2cZubBB#;)RGzH!l~B>qf$XxZb0GWO>VSx8%_1{dxLmvJ
z@PAlv4tiS6vWu>Ure+gDxd32OMz8HfK)1|ffd1*De
zi@=SdOA7V)FC;46nF%Ox?2O?-2a`n`f*;(8mhO-RV+$gC*)ZENnejonp
zjPEuiH&}oET0@hpVfH)bCiDqEi~n{rMN539Ipn?C8s};;>CbM;yYyXv)a+l}YeR`}
ziO*aqhw4r+Y1{v>q_27bNQf~yaiS4vda5sa2!xd5B~Qnyu`pQ{cYfwk{mT|>kYDXs
z(+N9ZDT|eGUyWyu-XY<4X9*P@M9`3cge0i+(nx>!nst`7Fzxi
zX=0CF=*}qAE_Aqj>ST&hd{$c}t+MRyvRcudXO|&Zoj)^J;5aq^$iN|OQzvw#lVeTj
z&tKbW0B?<+7sPteQ68Pq;wQ9_Aze~b0S}v*3jDheVn-VqoH$!oJ9$F%BVxUst*ENJ
zc2KNz+?H)XoA-Tl%ZyO*U#8h&alTOjBgW);}@=;nKV<9E^1l1NR3hElIzhof
z89y-7FD%1CDX$VgBoDYUSQt@JB+#1~lD1F;8tX7e22YVcTyrEr
zk5)1;j(-|xX5TnikUIh~{d9L_{U~$ko_{?lW4|Fr#TpYVkL2
z{rek-irAcd&SIrl
zA=NEI5UUdzskikRW9vkn%L)K2Qj_G;(y;m~!8VaL07^CUT7fxI?#XN+r^Ect6C-K-
z)7sOz3h3eW9VXfm-w_(1?|Uo3p&H
z{nHd^`aHES*VK<7pCMx&CrC(y7k6Uq^b+it@F_N`rYfCCejQ7Q+)O{gQ!AfHU=}Be
zb32wyNtJ?XmUEGnMwdjaui7QF6h;1kW?<+%<8ie(7QqfT?!%oTC!);SUJi<
zdT~Eo5EL;vznT+|XGx7%p)LVXEzOYN`#YQJq4e(NUyYZRd~m*<=CBN_^SdNZW%Otg
zaZFG%laqkiTR@N9(B9Z#@2g9Ut#SQam?dkbJ1GSnBC}49-xX08tYj4%=e+6hcb=yE
zHfMZNo=eZfw*bbDiEivM-~gemL)VE8esLO0Vbs9g7gfZW=UWsmsYN*OCz
zk&EeT*7l6WaZmm@Wa5ZAKh9p)w`6MwHDIa@GVb)sre?_jUXnq1C8nqKZ4W7gUWunT
z#5bi@eU~%e9WgTMYHG=8X>BG^-i&5+)cHP4$SL?q>L_LoiWoq4gk_j3d3TIV_Jz*I
z$GDPx_|(u2uvAX*6{#mH!PVi?pV3Ec&=tJq962Fq*W(tKN|`Gwso<(Tc@=qY&yr0Q
z_mb!_e;btAF+exsrL@pQKvDB%$9pi}GDJIwqdTshsbP=SPe8R9;I&Xrq~v0-FWXjL
z(_turoY0?vxX@fEX!N>k@Fc!9IZRhqo;TGdQW$J|9MMZ~eZ_Yyu1cZQ4#f+3^U8?7
zg-dNQ>I)6c^quik8FKvf8OUx4#5Qkbn4noQfa{v)X$VBSJli(+T?#oXN-9ML=0yVA
zJ2#sAetc$$pNu^;%kc|8IFy;~2@cf@@4kJ$oz^&RgLY=|icfqt$Khr9*hTry4SBlO
zJZ0Z))+y1!nySf1_etR8w$5tg6Ea2{M9^xYp{PIYB67l?B4~-#3NO(_NTB}1Sd}o8
z3omQ_6M@SG`6qjO#`&~+!$&V^*u~Wj`^xX$Ov7CAQ0e_f!4DVonQhlH_;nSBYWHQ%
zRQIj!)J?yBx*dPDl#w5`-y$FR6Zq#`o~X4Jf_nIlLi~gnM`?MsH==6fL4mY?
zw{gE;FhWUY>b`m?@baieYqGt&NDBQU>k+DkddTm(Nj*JlSbu4YY|-vKN$`~3wm>>B
zuuZ_VW>ImKMD_vk(0?;7&!Xh>IyZB;qiyn^+vZc30E==cO_?web}6p`W{UsGg$5Dw
zc-tFlWbd$~h3A9@gYULz8ruoKkTDm=&j&hI=ie;;-zbCs&9HS$WuOVZdi4_-4?WHu
znP<39rN?ot=4OKRzyzy`g5wK9f%Mt2>-N5
zA;XyOLukm2IU3*kTKW63WT@)llF#Nx6_25INob{>;bGDX8C%|@;rSD%$B9)HF~W~V
znzUS|DX+gGe!o9uksW)ma<_yX%9;khLXr8d1YReZ+SmIuw|7VVS_2JvIX2$%uJKBP
z?K}zm*5UhE{gsTFm$KA%U&
z1)kpBmSq6>kwH}FZxwwVu7q04Qc2sc9|-hsU#atFm@2BMtK-=3C!`kC`&sq^U#
zua)nt$Y$vepZrx+%Dhd(x<(}AK3H0dQ=c`eNiaE9ikyH>9av69Ya-|*pbU+aIpvCF
zXqo4J*?bb4qWw1T+LDN|#5C{Sfs8+gFxZ~XJt4M&DHqBHrL%czgEnJ}DPhZQMy}u8
zs4x8fHefTLuhdHs^ZUZUW8OjVpShNqU1h!#RLv~wJZ1W1eAmTbRL{?pM9F)Hgh{XG
zukJxUVs;F-=~4cd-=YeBTcyNQm^>+6ym-Mj^;(fJh2yEUS-0Dzo%6=aKRQ|T$Q!~;
zz!8@f5JsTNkpwy@@%NK;Jp~ZGr+S$^vVA3BOw`LD>49L71l%^42R42swTN)Z>rEb<
zl!bg|Y!NV=*T-d+9G^Io#}ekC4=PlD{^=yvtge03`eK>DEata!Wh!`#LEmQryQC~Q
zJ04=q^-`^uP}-o7VEt4t#xJ^--huv+@Vco#lw
z7Mvlr&F+Yt}{rb5WFtO?v(!K@n2<
zYi4xUn@7s1GjgJrmn#8xcj{YZgL4|o_iN;m@eXR)!NNXMFh@*_5C6^E)v*)EQgP9S
zkjEIpFUaQL`s*-JWV0w(*y!T$u%#}Ew1@lR7Fhga*XjQ-cGe9|zK`3+LTN#|J4X1S
zyK^9tqeJP=(bCdgqojNE=$7toHb6QD(jwur-}4H-?_hsy*S-6^&ht31MpAF|IO2>g
zNDsG?0U{8k0$Eg@Fwj$Hyx%#tS|0asT}W&QAXcr3TG`C5J8Zh_U_2hX4i96;|?dE}Xwt2h+8nSSHX*fH;wQ6
z)xv8dxcRvZQXH3-bhU?xsJ90fXP+jXZ7FqS3Es&Pj0h&>cFj(mP@SZ$rQtiD2E1ZR
zs2u2(b0-Y!ulHEEN7z<5$Xjvwl0xUm+jz;0T*1kFI{fyeZ|CilKdT=SF?=v!&)>D+6+))cZrXettErmcy@k?7G3jvg{JF=O#bQHwcrsl$BJ<
z68iZc#f`|X`!6M}oy5R;>st*C3)-2ndvudE^eN5@y&7CAgM%6&qw~_N5}Sly#xkN0$t5+T9GYDK-Oy}D;teUSalFtTq|@R}C%|8_`nO3SKIBS+r)2HshVV;d$!>d5s%NbuNiurhE==m4Coa4cr4VNprQdY}GfjOL3WliD!wD2-E$<}<`TeyH|8
z^w~Kp8KF!$U1oQLbhN+>-xRK`I;MkFVw7I-#a-Y1E)+%?O_F`SdG7(OlXmTh#T6d!
z$8|Qg&fp2$XLlb-c-DozGI^>HXf_#1B~tGi`L)$6e}WAKndjCixNI2Ky+tNF?JT%w
z7IpdgR(`~UfMY$KvVh!8*uRVv*~-dU5{P=K|6U;RHm+9Hd{n#P&Cbq^?)I@rc(76#
z%k8vkl%7rHxB>RM*It*zY`->NV)&(cZ*sHL@4
zl)2c$3-|Lo|EIOC!G}#hmAmsiTLfxi-C4$JYVi4ERn7I9Q@!5WsI{Yg`^rc%-EZVB
z{*x-IZ7iY?C7ffwP%$3pW8$^?)V}cqYY(4#NOPuz@GWFngbtdWe)S$9T$?Oa~ZTi^8aIX_!R9&~m{9Nc~1Q({hWU(3IU
zP2{Yqc!R)kndPh=9E_a<828)rU9Ki?h(L?87;DUL)esv-yN)S{oU2qWM;}oa?ij!H
z-$yLb;d)WA!kGkm!%>6@=0cOBA|sCeXJX+PD6RTId!XBP4WNbi^UxS;y0M;;uK0iQfMHo!H{^#CF;wK
zzD+rNRS#PfI)k09u-=-bEyk)O!IghoO-hawdrVAr7QHErhA+l0=Ay6gy9bzZU4~LoNV_3JNZj)_o(5FI&&|
zWsl$>C!xEm>8D+Zi5AW)u5*uO{XZfqJUr3(Lq#C5UY6VWnw2X;$7z%K{x&$!cx}>-
z%7&7SS}{^157s(uD0O2sSun0SyEHp|r#@zG0U()TWCv@$Ye4`K|A~CALl1QqEq`s6j-%X46^X!m^?B`eE)6Q0o
zgV2@~gwV=}7(H-J&Phlx$i)ZZC|$qnB&|j(2+`ZI$YACGSl_6k)vEl({6I#a+zuuE
zOA@+Gb8djVkqjR0j6em-5DdDk?ahG=3qHA>t-usxp2=Pkw2MO)FEAycLNP-WN|$N=
zDE?{eM>P{4R#+Jkf5SqtW`kDa#o&jRDs2l%^L^Df)&ebm9ukF{H}iz;&EfR7!&b)q
z*<9xYY&q3y-rG^ZB8X!pmhfy)&`o=rnVpmqihB^=-(P;V4ZQCrJ)Z?+LT|fon
zJ+AoM-?J9
z6A$A)ilwBi4b~h^^?GW&dG9Ih?E_fD>OaE(*-X@2tY
znL6ZY(NKvNT`W4|Vg`qYHm1GY
z>m&3G!k2m->&)xO+njI{Js4cq2`!Y;4dZ(LSK4mT=(b=$8PVd;xvn>UdF*ofG-pI#
z3d8l9#=-FhU7utIS{Aw6!&*t6f4HCVAe_D;C0NW}0=~ibPWEQb&Fk7;r1vuG>ycw8
z=JD?B+o)X~y^5Uh3@Q1nVuM6X?dfMxI)e3(ZPIyz^U5Z|M@N-x(8Eg_o2_D9-FLVt
zZnw9UX=VpLOIL1t<3Oesj=B+f7=lU7MW&WAx@@Xdl81e!!3Ew%+9+Vu+i9rJ6G~6U
z#TcSP2$+aXpso*jS3&gC;2Psw={i+f8lj8kJV{G6Q!O-c(f0~|be
zij$SUHS?FiRIt$sm7}R-<1N-V-49I58{qdX&XMafHgQ`+OqN^ev9{dh;`st$1ur9X
zHNEOZNtpB~a?NiaTyqZ`+8yyQa#o4ux91F7aR`GzX}f2v!$5#*P2Q++rEY`ZEqs$A
z+r~^(&E^X)UznewC&Feht3-AnoztX~t+2EENdvGP{WT(1;aoqsgIoRd%CH+v28M7uyjnBl0_
zMv@U@qA+?T5I;2<)4~I0eF=L0YWSh2+23o3y6fb*e-&i>p~ZZ9t2yBDvzSL8+zX(@hcYACj&J1V=WJ*R6n_Va5$tw;Vi
z8RZ~H)lKtboDk+R40^?RLu~@JJa3YAyvYK}i;u)ydP3PzuF;F321E&dB|Hf!$@Lh0wB#E!InV
znqT(-gH))`yRz)Z+}GAKhe1%Y#(!u!BAcq&wY4G)l4<#42fk|!6!d49*gB>#D08~K
z=PkS2B6g{YZTjf8yU;}U(V)e5m;N`-2!{S&7h++|*y5YYx{vG5MI?)+?Daw-DbYof
z&Rnw(*q-)eIR(WVtB$Cl$32;w#%{XnZp)w}!{Y6x;lVF9eroi>xXLe(Tm!qFjiBPEcDW5kw@7Yux2J!z>?}}NY%}2!A4#QBcEX?9i!mz7|E#9gdb@B
zoO*XtuPTg2|MYZU84{ff36GBsw`+f%JdJLbe`v?nyy|7WriDn+UnX;@#wzI9>mTLIu?~*0Uc{>
zJXX1nytI2^Ax|e?k7`PVuJB}Vx^?VtRaV;CW6ct0OEO9Obk-v$KseZ1S{l8|1$)ss
zCErC@DuPsH5F*R^Y;K|_IG<*QzxVHXJ`$*x@R4@j$9V9|rHu=f$72>(t_h3y+OaV<
ziyzaK^M=VM!9$C7eK%zT06o<_aOF}T0IzpieoeV@(HotUd?1l^{3oz>tt#D+h7%oQ
z7SyaFvavg(dW*YZzP-z@G2+0+v?hDc$WdLR-k)D~tWc|ARVq%<
zr$Sjut#K+UM>2vpU#n=mUi;phB^!RkiPLLx$5xC%WaR3J{@
zQkB<7@S2qjGtYJlm6q%Zpz?m;U5Yktp%hxFm4p!iHLGfsG$h1z{HRcUh*idainaN?8XQ1K2lC_p(a25Pw|1v{a
zp~?VXKC9PBS)eq!mPW-`OKzb-eXqz;TNwp0F3e>!z|e-q*w=y$Mg6=m+FLx3?Gv2L
zyxiea4v3s@MBvN(A_K7v5r?3@X^pp@x*`4hV*^$VzL2J;5ToK-S?fELA%N;o`{I8B
zEg$dGME$7p5Peo`SR9WKCCW}7sAYYNXmY*<^9zx8iVTPJJ3WRmtKkSDKH(U7s80e-
zapXaMRfS2%I?8%bwu&F`kI!&O30QqMb;Oqqd#YQQUoj+a=!=C(91UBO*EIidS_}SO
zUQvP**%yr|v>&w#Hw-3Sm=__*1vKZr6>01!wDhpUi+D1ft^||ank=qK(lp<)bE}Fo
zNsLve@T-N}axW73e2c%HmVd4N2PZGGGz)Wm5Hh{Aw|+5h$|NHF$|$WQER#}!$9%fl
z@uw4+q<=aX$FOo6qTkLKPg4-KL1e-1*)cw%vk*Y3k+?dWG*`q
zjLNU+)QkMgu;7b2AP~r@iUSZG$!c2gzAoQM@Z^k+r?M~kXzn;!kBc_fFRd!h@BC;~
z0j*D+8`c#OmQ~~D)KtMyZXcU61N)J*!XBKJ$EE2PUcS4>{~0>)-zEKbYV2)p5)@6UEMLRF_o^JGCYJ$Gj`?;0sqof9ZDDS_DJs1>>
zMAK>axXUY9^8!DctGR3W-v(T53_XCR|BsR=J7qN8;&26QM0VuG@lq6{DKO-+F|_9j
zX?LP%WtT0Bq+#u&WQp(Pt&s_|SBm@&_7m8i<773dMn+OP-1(swm9Gd+zSRFI0n1U2
zjPxpfG@WSJk(34Fxo@GOG}1iY*7jw(<&{rUhtD)ADKO8av2{Fgc}#Wb9_}W6-tYS-B*79&`!f|T<=hO;}!9x(2O%$xHA_={8V=H
z#vyD;#rdVEy*>wvCoK49tg#f-RC`8+qvRi&kD8URbE+_O(Z4uX1({jR;8PT@M%vG$
z53I2ILP?ugU}gES9G_yC(xbC(UMW{;j*Q;vbscOZ{qK9mxJ-V$BfrpdSe-MxaYnk;
zz?qXjd!{(@h~u+R91nA`OJLz}m7-T`xI(n%5zmjxm+#8TX{o;(kFVzpqwZtv!M9td
zaf=zp)fs!Y-J{Tv51~UN006+Yb7m+?K)xOZQeq9$PN^nz()^*2n}~aRw}RJE#`VxM
zo#*YOacln-F7aDzq;cIVqd?Not(sh(J1R3v)UrccHt;&B?=Crk09oqEG3R-3hVs=6
zjv9V!$?g#}Q5}8ox+M-nO>X7&%I(nRB5&~Dr}l)T#&hBajgk0%s&Yn-tNE?QTD#U*DCtPA;IbZU_KGwD+!ArvA=5}1Aq&bqO#Szw+{!!zJcX_
z%ibEuthi9b^`FHdfwz*XX=BK5@y;~*Iq;RPaaDq7TV@oIgF!oa28D{jHOTdhwg9*=
ztl*u~Jk&q!2V4X^JuP)LBLs`@bm0eWg7mjTDyWXr#?UqeXWxlaQjZ3~*k5q7w{u}r
zE|~so)$)6eaKiYer9uBrH}#iG_@4^t^mv~Bex4Va$)uyk
znj-t5ADdk=t0Y9ZA;VjDnzK}kC>H9H=5`Ca`7uLPzQeu%Mp5AyP+pe+_~CQ>tWvag
z$cuLpH`FI?pBJ(P|2y|nfV)o^b+S0N-`aaybi%W2a>-XU7tdNN=#F~K@e{qd1VrPpbXi-%r=+!5%&ol2eGx9WNGIq=?w~R+H?OSjeUzqOtMZBxnU&BBbA%vrs`F?7qFJg5#F0xZ&`pIF@Eb|-sRKHe(a|U
zzHySRZs-UQZ)&>8Zcgyg*}Z7en|PvDE;=o@iVw+o-B`DvN;x~PkgUpxj{fjHD(9o%
zr9>|!GX=cE3TMkZnj**nZGf8o`@5qxj2a~om-!#UCQG<7D{aTqIh;-#w|@;48W)9x1wp{w%E!+gmh(Fr@qqL>*ZIEWo0P!
zS4An`_Dui=w)KFugyZYND!RncncV3fAV_nwoqO
zn%&VYO}e@M`2qRbpZ#(XK1OIDglvM!CEllurc6
zP66Y0@db4ZHeof2esz5J&S4Q_kPKtGT#{R3ez?9zzRPd3^_T0(I{%W!vi8Ez4C=J|
zuVkS}$#@UNG;G63d-rIR%=auF)RqVF>G0d+u!aj>G$WVlLCTG>=WP5>N>bWokirQ}
zZQEKEWDV!nuq7oiAnARul!Ri!AKr!04c-q0;N@Z$oU^{+ppW)RrzZhDa0~dys@?90
z;|a599J}oZG@Ufs86TG;KIN^&kR1MJV}Xa*cEdSq_nmNM2&qAhflUldTM=_$S_8k~
zHM5jHp@^IAlX;-)$Bs@|=WHYLmd9ChZ7tn0lO7+E#jAjJQUStlv)D1l#N)Mm{$KMvTGT%B{Osj#KL
z#II2_t4BRL4A=H@y4$68^D6F$&kY+5Im;IKe9suo@a-@70V>pdlzJD;K^E5@&aaGs
z`Q)@@5}|uDew}WumOpixFD7Ke;K_}IO-&yY^FCnMMa<%ST-U6FCN4BB6do_NVDoJv
zK;7qFeqBFq;niCSjw#qlDdb5*-)sH8^)liQXcc&I={YHSHklZ~vkrXJC!!hj)odyp
zIr!qlWXWy$3TmZ>WXhb7V{Ep!T};fP6nfOnge4U|M+C&dUmfbxN^|%ZeCttcg;D&^yYr}|q=^P7gs?~d_)vq4?!ek!?wrhr0qy1t#>57R_hR9E
zx;3x@;9rGzhNiT|E)T8PVB+jQHOphm3K1+Rglli)
z8Ip|EJU$e>!BTo$MSc{&gq)!FPsX@%);;$wjBM|*tGYm5eRBM~Q=+eDo21eE()ppw
z;6dXIcTtkp@2jOP_SKQ$3Z0y4uZ4MKUwahB@0~?0N+>pgdPY`3$h@fbn@yLqscNKTTy~zF^JGzWb;+hS{{dNx$Yvc|y_=_2w&b8)poX45**WB9qaks>FGPpN4h|ChSI+PKT(cbz
z8gfU8+NkwsZ)!a4MjgA^B-YQ^`tY5q%QFBHLjLla?hFBGrR&>I5LdCdO_2!v}Sv<9Pybdm}@!3?W^m9
zZvsPey`d4;@R@@paX@3UuK#id`iHM`!&+P>e1kW))bH4@JW{pj7nUuz!})QDWT{x0
zo2F6k>lvOVe?||kQovqD*rhw8i>HtAhnqg6S2Nx0wo-159+?hLCK45NgF05`quz3y
zVnl>>qZ)TO_*Gz~oL3WnZ_d6?l^w6|F*q85h!>{6+UWut{NeY;{H*rFwO}Vf>ap+$P3#*+A|HTdjk1G0?&8#0
z))>^lIywB)*#$y4(!7LwfhAg;=#sUrd;b~#GS#>E)e+zQm7neX+LsjCf>?V1HkQC_=L-Lp*NBY?eY8t
zps#{_Y$jR}uUcr_P%>qbhYXk(6;`C~zQkipgr-Gi^smO91xz)~MJL$JFB~j$#}rRB
ztB^J&&sbbMJ6A9TiHT)|ITP
zm}hc$@f!z18aEvu*?V`#A{N&3^Dc@+*aayB~iTYVbBsf!jiS8HRE7Xum8V!k&b
zY)mi;-&(q60C`pqw+e%_VZ=IkGNBL>+1U4gm=X<6_TdaY^A4UaJ{w2&cReb`hz2c-X7FlU3#4yu6bNcLs&w`65c0JJS`5bGD(JHUSaVI)rfD`}{h6aba@rYzx~!rpLa?7R9llGIHY%BG4y7
z!bNv+hu=zcDa^KyoY={|K#*GYyg;Me{Aq}>7w#Dl~L9LD_6VF>wB&0Yss5CQ_I`jiFK+<;^k@5
z+XE}>t-c*V{bZPG
zy6+jKFY-}bL_Q%JhS^*-y1Z|e#Ovn?1COdD7C?tEc05Ygg>88@rBLswtRF#M~F5)_Z0!xA~AP~g1_&L{p|Qk4%z&lzhYeH`I9?dP6oi8
zJc|QCmD2tdQQ!D*#w%pT6~BH}?iRvZS!wq8iavsfADF=qoyXBD-Z<4yR)#zQADYE%
zOIqKine0w2cq!aftmz{wQY%mH?<@ljS2K)oF
zaH&0RNJy=3^9%T%_z`5_8NDn4mUK2L1EqHf#*t_`XN}zAULy?q`IC~PTUa}Ey$>Yz
z?d+oeq1BTi!nm9%fDJC^>A8$q?}*6&`-Q>%N3X(E5cxdw)!;h#0>vhbw^5j@7b!L<
zfZ4A6BVeu1kt1GM_0tfhuUmF4#mD})jJLZmAfmFW0DnQoxFSDu?+4cb^A7DS+ncyp^^uFL^v
zzg-#WR${j24W1)&hv(br>t2bX!l!wwHNn;izwT9>pEn-oH0IF~5^LYuU%L0uco~dW
z+JH2jIKVTQ-wO~Q=C)un;ZVpAtw5su;NPh0ebQORI;~O7O{pGJpCaVl=0CJ-fhb4%
zJBE~e#7q2V;TC*bHwj03I(uuH0sL()09$S$a&vVZ<~Hv@Q4E>)VeF}(d6+3mkYbfO
z6iP4kvlE|gZg%sixz2Mv|I{RbWwm4bUxS6NhZSJ|z1B{hzL+~`o4w2jZ)Td}O@|0H
zL?O_vc2nzYa)Pp~>&ofsY-4$R$xk&k-D}6oyoJKvhQw%@FqLPNAo%ys%drU=MT!Pm
z+LGJhTqeY+K#XeKnX^+VzWlF%d@pl(sJ`{GNPGK^4e{fcWkPRvO_7Ja9nZ`Nme1yV}6`TES|11T*+kWyC2chdiOQ;z|-kd
zMe|+d+0(Sf`NsOFpR3hnMsagnb4RnCioKtukUo-y)x0%~8N_R#`ewo-URru_d3}7H
zsun>i-oDZ1t0x#9FAOA1!q#;0UdLh#5-4UOOS8~bpj%AE@>8Q|&31B}tc4&%Bbb_Q
zf3zv*)HYx0e+#qPT)R3bQ|?4$`{8Sd&TLzZFVZHvV=_1IJ}Gg(?d;z2vqv`XO?N)P
zF83$R&(NQ6U{3IouBJ}I@LdRZM%CQki}z}toMudP1Rb`7%q80KNdI|>;}%is)$wN0
z7$ZcCu>xb-`c7~uT?sb>LHV43aZm;0Z|t?WK;`Rw>xMfjbU?_D;TZiLqBMgfnbQ1s
zFII@#P~k+_)8oj~-Sd4}plI&q*KeE3CE-|JTH{Z7CLPi+2RKawqTylcFaOid)^nED
z)DKn31>e=p?TBGYr}-hX`b24Y%wiV|i_3XvhaTRzOK=-WYtP)qGuVIb4)Y&c)}2p8
z?AoroDhLg)ab9w|#{B_#_Ox{2?hl?*8c2~=_=hI=H$rEAjx48w#{A5rJjVL$_|x-r
zzs5e)3&-)z2gm3&<(blOy@TS4a%e#ebJkk8au}!vA6U$0_#webn5VZi{`l%98|Z=t
zg%I|);J&6}H>I^Tsr!IetVBFX=)v1uw!
zV9w`X=R7mL;n%&aRk7jA+*urhwEjagSvK`ytHbi~LUtU#`DzQ`J&@7PmGF76oiQ_r
z%>7|IuLEdsS=fbUmF6hWs%gA-!7a9Ub9eh7N38yiS+WycNiNXDzl}ka
ze;@6ueqGMU$`q+CQT$tck{3wT=*&M6BBZSi`T6R}L{=O>2o=SO%h~n17huqY3@!gd
zqd-%l?!BYj!|bRo2^GP`Mwa%7(-OR0v!4rg3jCl|o(AIAl)0FXEV6!s)gWY{L(ECR
zD&TQTwQ*k-&;>uM7ASZ8l?7s}Y79=&Q*U$-61rs6%o71WzWYM3>*h&Fk&45e2
z!gX*H-#GKe{&g8PD#?BK_H3l$i3F7uSQxf+Z8(VrtTlDED@`X~nBUS?Jmq`nZ9`0h
zG4AgJHnQQIq>?CQ^fg!S3zTJuU$Cz8@!X*l(gBVaHx3EC$4oM9DY0+q*-6D~5a*j@
zS7lJ4+uzio9|=k(0R>^U+`jGZ%5!alTpk@?UkS-k61O6$%dQTGgqHa5^N0Va-Tzg!
z1Qh%jB;>3en3|-0dR>P}q;?zG!g6%Rw!gkM?qaWE&-P6XBcmZ9C>d?8>_Rh>fm)`E
zO0SnuMln%K9Ssjg9?5Tnb?!h
z`A0jW#~h#YT)CdaGdo+Fa#Dt7gVe~gf{$)>rz122S;r?Jq9%Jj4bvV(F(YEK#Ba2}
zB%{|#_D8!OVYGT0Gp-bkYJNR&96`A|N|isr7~a0`cB
zw-AWMNo*cGcwYn7gdy9gjFiTW)0HFEo^Jfufj}+un(yA_FzMC`&wWP|s!*0fN8tmt
z(!+~4cw$v$5~+V`Dr;Y16?lB+L=ulJC9N}(DE6hl0FITjaEbfd-@Bf$_%MK1&JA9F
zcxR-cP!)OX2Vd6B3H+F+gdqVqubD>}s^BzqxaY%C;jP2C=KR2Jh6GO}71#|Fh@J3t
z*S5YR9_q~$WjnpnncSIBZVR#^iyJjrUfmS0)Vq=o8?4vM{^XXdJAkP-{sH>wEG#-z
z$>I$pT8~H^vuF7r?f!%HKF)APSNHz7PxJ3j|8*q^w18c@>AK^JTR>kvg$`pDD5Pj=
zlYhD&7aW;NITd+^oi}X?8IMO>kA8*n-k;tctlo$^=9HIvz16j7@E{U;Jk>9WWnBDC
zuciv<5|YoF?^SnvOr4%WA-(c8Dl@Rs-51o
zb{05KQ?CfDN{s%8KS3LUW#80V+R}nB57SXHptnox;87~EitKc#S@hS+96b|D1z+ka
zsyr&!kb70sRQ>Mvje;4!J1x@QP<<vHG`#Pn^zZ4ER17o
zVz$~g{P#&io%;hG(^X(Syn26i%#ZnrZ2zRvI_b7@TqT=*WrCv`U<`NqPgWE$FjCW1
zg2@4su4YJ@M==sN;?8>b+yiOd1lb)#jsKzDfCTZX5jB`Z@dEE=_12~_=6-)*5WDDL
zPL|<;ad8_Hu`MrT>L2P
zp*pFRIjyO&^wl$d#pmu>MzX`rFyg7(YlA=iN|Nw4$k4
zW0FZ;KH4Ung=JdYudpa}TFcB+0O6RFy-wtpE}2qYS>xc)B-9lHyTkF6LZK$dtk|h8
z4U62I9Ojoh`1NhH31~y!ME^JbRZ~?#iU{}IBz)Gk~aV|VbYD#CwS~BhRdax(vOF#Ta>b!FEprVdFgnoy%r$bV%;x`+
zhP4;$b9&XCpf~07yc+Xg*}N!c#jz~32kBJ_RjW7kHJ2Gc1>%1Bz8!8B$8JI!Evwh4
zI*RKgk=D7~!1jMDMuQ*vw)O|CPAXZ9#L<6Q=ZiY(?f8!p%J23|QCmiel$>pm(
zqdu;3S_L&U9?EYJ8%9y1!!oqY)_D`IPtF9PwT!Fk7B{(eO=CEnYjG({z(%25;Hd#CK6_7#~6o3uLd
zx?RhoX?DNdIYeDJeLb17qr~+jOUBsG#*g$hKsc>Jhr9R|($0zGcv-ne3;HD6XL8@x
zdf1XmQ?6d%bJgZ%(yZY&2{*dM#{lwPo*=N>c7r1gethGP2
zNZH0(eeT_yhbFW)UG|M@Zp-IHy{EKx&mm&$WCh+8ArEwRm?SjFC@N&OhxK)
zoXKBDpjj9~T$(_`npfH^!tYRbBLRcA;UG`BNvT
zP7TBd#3s_v8uQRh{N_F+#qQ?cJSJVfv-DTVllW(^lL#|H)UDtWp97>XA~panaBDrr
zab;3~kIye|cvqZM>|Qo9Wsjji0%R8%Mj!=bpH)T0vBd02
z{k`&p`;a}(XI_Sc+;j$|R@!P#GP8UNnWK`Y^0;H~ooebBX*l>s+oSRRxHEhYZeq}e
z6BwOM)waDbka>8SD9*34EXxG!kemJNA(%vc+PyBkHCzp*uof}J?`r<6#!D?z%ir!Q
zitrhnOo3i`^ur2{Sv=q1ETjGGk(g+>plagCM)7x5ckS5M5lHsBW
z#W&5uSFW`$k%(qlVbj}DjhF)XHAwHsAe1w?dPtsrXSZZzVPKZ3M@96{PFXae&G*=!
zUA-b=iiU^kCqLu`B=RiG*;r53%R;$Rifa;RQnSf4^d*y7i^n(?th{+qFTX9x^3XR+
zirhn_#tWd%zjrb0@w*_JQD#)bSf)wbIUmc*87L4S>wSj2Wxo(oZfAoLrY>H|CuQk<
z^*L5pADE0R8x|0CJ!5;PKcOL&n0nc%8?_0~*T(dyiRm64+VA)nSo3#drdq+I{q<(62(s2Z^vld;Hx6@kzOR6kzIcL$3_c4mn(nq{~#rm
zr#<5N{AkiI16$mwCmQkzK9&$H4BKkLBV+e6_xQ$Xq`^=FZ;A-w|eA^57
zvYYD+C%%FRs+hl-U`$)4Ao>Ct2D>R7ClAu!F-FF+D}OLf@Ld;n_F21+uxS77Pa?Y1t=ZX3DqJ$M^r@~lJx6S?BA6+9PhO9%*gfvstX9@-zH;Z~_=
zC4zvsoh}vz%gduxZ;8O`P~Z0jP2|(GGzh37HajWbRew3iB_Skhtgr=7wjC1oUEm%ler6RI`FnN7vo3axR|su1ZFiB&oGnx
zYrH4~;dWq^?X6~gS9kX>Q@5_}hXTK4Y-Fq3?bf*8K>ofGLu-r%KY!Lz{>RB3^dG*5
zn@y4%wPVce{$+?R$nzYcT!&}iBkh)~Zgf@5p|XGD;qLYD73pbB(})&$B&+EQ=VM
ze%dqgU_UxHxy>!Hgwv?5Z?B^KU?f$yqBM9V1EOH5W1f$7HQM9SeY|n{VC+vnXzhbp
zz@!~v+W6g$MmcRz=my)b=#II^+sd(>sC#WTGgWSFQ9r`n8+7VPxFDq|MPB*2hM}_C
z9r@I&s&Yqk?NO&hcuxmmBZ@INCBx0rtz%w1>uE#8j+=KFHr^_&DjLh~yDPl@8=_|P
ze2~|^foz-<4p~y#rIy3*9~Y-wuSdXH+y`kQnBIuNf{$#~YiUi^GTdJLHAO6sn|eE`
zZiE<~b9cp!lM{%}=tdP3B{WnyZi=_;`^Rk#z^vu33XbHusu{Tw-e!RSN600KE==i~V
z+#1=PNkOaG#mvw<~B|lnx|be!l*Y?KfIIomHx6fw+&32z#B8fB8bJOC+wanKL7w1x1&W
zR5xW)#zWV~`$O0C4{g~^{QH^kur%9nv~Kd$s#&L9c&Rd#Z6I}dfW#Gib%FTb^3AHv}m%5Qglr9jqKC^*YD
z|IPKEDvRVo0UlfWns{=4G_j&V0$VqQ{Jl^r)A}U>!BUTF2fOOyH?{65I;A2(1ocM{X%AXm*=xsg|hi_2_;$i
zB`ag`XulQ(Rzh>G==;E4zC1V8JjuZc+ggYHk+R5V(qhm*wAeV#S-uYQ)q0f}Vnv#P
zvd1o;=#n)B?MFybNXj!~{p*L~X-e|qwlwt%rj?fg7WEY;V_53+DYtl6V7P!z7H=v0
zg5-?twPN5OQ7qK?q34IS=^nmp_f1r4nfEujpJvZdyx~*1q_c`yUFH>w+4KB^SdTmORYcpqZ@?2(Obt=55XtvJm(>i;oz
zmJdz7VgE)1L?l!~8tF#q5Kx-YgN+Vl4A>~?5>SwuG>nvn!A5rphzO&5bayK)B7C1c
z?|v_y7r%dCukQQab$!nBa~!eSK(zn*c-XFWh&;Y5tbT#J*=@#%rMau};WgjsdDXqGagPc+WTGz
z8^3}Dp3L$s7^b+zJbZ(hkSm3`9mPdq)Un26xU>xar55ftYGc%_P^Ej%uq&Py&svlveQrSyge(P#Bt53Zw6Qezz1izO*NzfP_yAbF))LZjrw#exc96&EZ
z-j&ABB|TugMeYIgXIZ@4V8K({{N}Qs$Ql^I8zKbU+{9zl*K8_xXNPh7%WAAFTVKZ$
z-h2JyoqA#(^6~myTbl1I{>A7(K!?57kN@W-3M9n0s!zO9o#hT%T65(YfF5e>Mm~wh%M#fkzzcECD678sw
zL(|=wn}u~^2ziYK*#k2I(bgP+KAhR(J8r1pzI^M9&9L@
zt9*y&dqqlrIK-c$@Ix`!JukGZm-fdKpEs7jg{R!wu3DLVCGlcCUH7Lp>Wr;k&%OBO
zqfrTt0LWFSrm9~mQrnAS2)$1F{dR3)
z+YVacrB^P-Or9iFyLfOo&!zhke0+vCF(rc5(v|5hNkhXFtzUjk6i
z$tfTy1TsI?AaeNDbJWCn<|{ROwj<$jF8yx_3y7W&|)!91gsj?-Euu_{b
zN#EwR_|5on&m!}vTi`L}o_ydG-Wk8HW3j*do(T0;jjWo0^tz0z6sr?{IW`0}>{(^9^Tg;&;$^72`oHSc>4_DhC~B*@@wF7oFm
zKuDo^Uv0}n#v+>Ecr1s$&_zefQF{yBP7gMBWg%JsUF(RfbTprH@7%w)xH&xcr5iM}(j3
zas9~*>Z1LCo4_h*6G}|#-iwntW{|Ia+{(+Q*fbF+JPXSGDY(Ay0<0h`56gehZTJC+a@y30^Upv0?`KFy%M#%YJqCBZ{7Jh#fa}6Nd
z9QvW|ips2vXSZmAuXUlcFqy?%fV^T|nq6>uA4QXO`{acWNe7wQ7s;mIEkiW4e8An^
zFi;G9a@cY76U=S^puSnY1=ad|&w4BBDsOIMrZrybnZy}ng#tOK6pi{ZIdjz5Pu6;k
z=J(+HkKi5A#njfmn1x?~yr;YoSx~>=}r=(v`{ad2ebHl`bB3MEfR9Is71NXO+siW(nP=-~1WCjvcGuds4*s1XHxMa~4UG&G8V?NpF
z-RMQWKos`>_yglF-QS0ffL&RNjkK*)Gyu$!23#lVL`cssqG39*PhibdO%>c=`9Tm?1sGEK#0;l;QfFC8jd*l(L8_!RFn!1&B5lZ5D1wzpf{XL{v0aDN1H?
z>EVRtU6325_c&-g;>c=}j@OOMc+Sc_Ez5QFM0_TMy4O{wPFTL-`dC7*O#mBy|N&p^8NLDXwQ&<$z$hB
z4OW;3IC%_gmx(DdB1R*(;Eq7si;9Pe8dY9jk1DdF=NfQKS+5hjj_LnS^VeQ$qVvkI
zU71U@dj(o@aPx(JDNZMy1H;+Skd**4&G_)U0KbLy~h(aK!?exHkym_dmG$$_9xjM&Lt50$H
zje8A{W>TN#QH(IvQkt2@FlDBZNR*6+ma`L#t8QFzno%|eG8KE
z$Sw-xNG>y{H;a@g?vK(uPVrYQRg>ptu;PE`pnigEyZ7uk_~FI^_I`yIymeHvk?-W%
zS@HPp*Vd9@A#M8LulDSiMfz4tV-*$wAfvouaB5?mad_20C-K%#m<24Yf
zgaUpKQ)h#a$7MOP!=8H5Q&;`ipzM@%S2vVLBxnF!HX0ihaX(E~-`D$LhI6$MJvhkA
zGHtRSEWCG&-|4v`Y9&kiaabVzQ_&KHy5J2QQ=Kat_;67EX!!K(+t;2pmxaS>G1*Wh
z0g0mc8Gg_8Qt~j>>gT4L67PWx4@Q33hkSd5U)+KEzlLoNvO_xOW-X~uxt@WMt%yOT
z2Y7w&+7j(~Kk?AA&{*lqCqhs!TFZFIrJKbTPZs(n#Pd5+ag*zP51rW1Zv~-Q4N*y&fLo1Kc3=#pwOX)Po@1=>I@j4xF!YmkM-HvO
zt?<49fbHnEJ1}?2=~wbmXq(GrTX+w`ANDt@j}59OibYXX=lX`Y55*sqbbQEd9&sw>
zSQ0+k;vG}+`K@b{ikP9RXn(>4k-R==YOIJ6FAkQW7rMa0^fU{sA0
zb*G++DCTs3=o#+xd*MPd<8oY5yO6rVeN^4tggiWcE={+Ir2d{%Q2x74@SadW0`fUC
zYrzQQ=Bwx3EHuk8{FiV_;@=Pq>Lc|EWz9z=*;S=g4GogqwnlX$rucyk-^+;`%cSUc
zPmhI!3{!ZOVkWzdFP;n}vAjUPQMtIJTMRmAchY`U<}~xE$aND*q^73G$j2pmR>6-g
zRkm@K&FQ^7{&AIZMa4?3qU|45#kkK$6Dn3O`K~)JzCKVny;}}a3o@gz(i)AgjA)c)
zo%RCoZzd1f%0F#t`RnQQ=G*n?=`Y_paqEX%6@2sw3Q7=cq$jHcHsL81$En1+X6EUD
zsp++5%x5YNm3yd8xeq7i(|3Qab#wMx2fh}IX!(`qCvIhiZ;M6~1*3@w)yd+b9zOr8
zKNjL($O_!joeA)wGdb>fe+U<-T2UmiyWP+!l%m5SZI2sR~tf5$om>N2baqgi?`U7YhUH0#^nI
zrP><<+t{_98F3&ljOCi+SZzeY2c<5`^1Ny=R+Pm4S^@FVWQ@{*Pd!b87zXBr?nQ#d22ozZ;Q$UzaBN&pkAm
zMUIodBN9H9elor>|Ck_P7YDwq%aQ_xDl9l8ZUYww(%r=8#UvTYCReQ)N>nF(eMU^2
z2NiszYBJ;4xoUfu?@XWaCG_(FIPJkSzXc-Y4-(Jg9UB$RtgxzL&j9HkDV5OQOC>4`
z%>($*2VAm&2}07%>kaKqgj=Qe1o7e_vM~KUw7Z
z7BwYS3@q{Ne3W`Zqpl<5;+T!iM9C(jD?A~-#Wb56W3O)%jx>vEqXIHFaa{7wHFh7S
z$$Q>cFX&aK52Zu|ef7+Vzvev79}W!PY9G#7@fs;?dZ76rf`9KvGc(K@qp~SI5?r%5
zCD}axa6cb5tt=pbfx#R%A6!UhHo~pALl+Dia8~it%V&b~uUluD*DvQaeUdo|`3Mt2
zhG4ysWBw-PxXpMwxAqQ4X-c;hsih8L+W!a`a$b25oS!f#-H&shmoFRVntRQA^NYcV
z^N@M@Y?($>Sj`gDtlQKg{iA}ISJGQOs3o?)0CIBRld7Jq`Xto!8T86MUBoG;Zxi0oqZb}0h5uC!OGTHJ)Rg#F8Mu05P;
z_n0&sJegF
z^W32O?C+MfwC01Nn_!*{F;ZgAL573+c&p$8tvz%mkg=^)-}&w^-lfGR!}nEiVEf4R8r4hX8M*GTXH6CDNB#nwTjb$-sJA5k=(OgULS+Y
z6N_py-w%p>x_5cPcPUW2BF%jVI_s|t8e4GfB0G{gVgWpqzuY-ECasVJ
zc--_T07BFmD3AZs8B7;>}ug+5V}*G
zspOe%(|d1Zot8EbI83d_Q5b#EOBCL4_{tb3ywy9`*yASI4Nu9FOvLC~m&4(@R7giY
zJ|c~gyW^XZV{oL%k>cvjrxrIR_0ebH?}!K0ZENF|)eV;*u@Zt@?vZHQE!wZC_gYD+
z>prCaacc67fUNV5mhwy0UoZClTV$eZ!$^fVTvS+}52`)vQ%YWF_N$v4k~H4!Zx)|+
znd95aQKD&(cw}%o$o@C^4Ha-kJkIFzU=A^^f9jA7bR%AZI7Altu;uP<4@>eJ(BxePkJldypJ(9kPo@n
z@8*^oTG|S$U%hUWV|wpnza936nAUi8WX(r??x0+?_Y3T>{ZkFgqakA1%QBCYD)rH>Vw!eV#iSpEUc`b*%7kDEP-wskAWHMLJ8*KgHn6(c=c#KBS~u
z#VFeHZa{Yw@7UZSbKK<@GoVY#m@534IrX7e?#kHYWMRw1{6l>Ab>qs3RYlwG?sSv%
zjKvQ|Eec$0u_TyA8(Bc(?Tv4)H}1n>HeE?r5NJ{k`INpG@)+MG8pQK`|L-8|zv=Rh
zdGr_fA;tJ=QQ}#m;_G|Sg>>+AaVnvH3o|1}TxaAuH$*lyp~CWuK@!7fm~G#>{NEMT
zZi2UAg3+_-I`vtN5C$pCRH{xVd^e~U@fS3jv7h&mCzEv)gb9IE)
z4Ni@Jrd4mJvD5LZmlx8XnU#|>8Psn=?n7rj$C}i#T1LVgXAVVW*7CholNi*g#_D~p
z20xd^2wFFdWr)lzGW{U9IS91(eF`7~PdyPg#D3Duzpn#aKLOQ022J7gw6$>LeT>SQ
zwV!^Oe_Wes1r1N1Gm4rG>|a%QZWk8Bo=JM*#*Kb}-{uz;X24QYkw=c2hTbA&yG^Z5
zrwW0^>dSLf+&b>V`j?<}6(A2fv8*^#iVOw2TP@F#cz|V@et8MOd=D&pZBe2;=)FY@
zwg!!Fx=(e9VkKd`qJvsfwj|Ih%{8eqjJnjSXbaK(3nwd4z4kF!`{l86s9HsFl8SnR
zJ3vIiwJ7?#xW=P|*)|NO
zm9H~w%duusBRkDu%N&FwkJZMTfk`4
zi}38rO$%T5ZN9?t{EEH}yORmK%XV)U2Au}>N8&OusWAg1sb~qT_3nhXlyD%G?fB{e
zAKd4e%X#lcuU)P}6gsu!9&^h0^=}Hb2+Yku#f)03&oCGke|)Z*evv+6R~ExrKLn1J
zHNt058b3seiU%si3f=72`Y!dzbb6WI4`wHU%ICagn(aqizTO7!^hmNiS-}0-mqX=c
z=8$A!!cqE9Ya1ivfeGDB|M2w<+JEO_K;0Ixwt>1oc3JVHNnJc!#Se)oq(r_MNGghZ
z8wp9$3(U8oH>yx^9rqjs^8D?Po1IPa5jkuk4HG66{F8!GAKs~I8pbsX>l|S=
zR+sfno$GtIQC!yJP+ahZ4af-*t$)8+^K+8nDfHczzG1RT=10XKx5BfPwzg-VcdZwf
zB`pAF78;IT%Nv6i0}%9nX-KD;`3G_d@Iqzfi_;h+g`&7PSXX?aLa8JbX^)nFu4+eU
z=9#%uabcG2P$Ncf6&=~NCUr?k$|t2q?)o{u7n@mFGGceqTPU7T*r!wPJy%{gwO%HW
z$v~m3Z@8|OpvLTU^c(JXQJENIlQv4xrJ>t+mQr6gKD8+ZoS9aaX2E*_ww>*_D~n=b
zI{apF#Rx_@BO#BU$Qatk<*GMz_wXS#_+Qj;Y=8D_7Fir}wHqfXLe2Nv)`>)4G%n9y
zn(oh{>_6`yHK>~U=KLRA5@Qd{T%f|7#XYc2+6P)!0)D)U>a9uYq+0AW?u
zz6xq=o3Jk!?I(igxuijORqLkQ)f;))e~oj4%&u>Sfl5GT(8UY#VPOgd=|#bw^@OB)
ziHoNJENtP1W^SYH7snA=R=Btv4%}l-#5;qN$&JLl3IEL)F3+ifm@jfl!rznz(t?Ha
zK6>ln<8`TD1v%z*M#|0mc9BuFwYmxM?4a?_s9vK{9cvFH_<0*v=*#L~l7BZiyakey
z$#a9B)BLc4^#ylYKFtxLT44kj$y(dDT0_0-p9zB
zw(`^2A={lMc|WZW+0I_b*m&%pyHotJ#~fAA%Ey(RE6e41pDjYHX1w2=s6pR}t~LOkD0Bj)&;hL8OGRmgtZk#;mM7BMsd0B1>Q)LLt^B^IEO5!b&=Pza
zC*Z$Rkop9y$C(OF@|!QMT80#b7lyrv4^OD8hvvWSdT6vK3B|wV2i^{D&{F6)I0;>m
zSpY*qDu?VSsOCY27?4H=LaVfX1M`#^r(s*ZNlftRNGS1sR|xKO|NFVjWutPKhqI<<
zdgjnMjpyWpa$3n)ldBd#^aOd46PHI_SL7Q`$9G88#QaImeZ~1GS`P}jx&5}9+q(4m
zS}-I{U_39?FUK4s0|%7gS8Em6!JqQ#ty4pu2R^04<~n&zz29$tBxAjl<)b7|U&_CW
z;Rs{Fv*+Jt*#0z7)6id!Lvi`Q%1#;#+cfWKB*@lBnzmHp%eHUqPcP=or~U0{(a|~i
zdo{lWAtw{xqKn7(jP;pMi+P$N%v@DlMF=|E46_4K+avfj8{eI!UqTJ^&UWYL&9K#o
zhj(klis~}EYlTrSEhC&H{z9S(HH+0!KDzvp^FIC(0mlUOr&SGUCPj-@Jx29L0JbX1
zN(7kfl>RC(kN}(Qy&zT)@WXbVLin1@;9Sz$RdA
zc0V|sfO#0R*GWpica%(Th3b*LpI%X7%D-q9QHA1)iM^J_IJI*q`RjBA-4Pez&PETU
zA41-BW$>%Y;6ryc4H5F!G2K9JBFnKq+>D#ig=4hVYnA$S?cG_jxdF3>EpCA;A}?Az
z7W6;4c%!!Y2;pPZ50UdURxW?t#niQ*_G!}4Sa|x%m>wA~P_B$HRW$bB7gQs9=J_L$
zhWv5Qnw&&{%FBY6hE(q*%te6)M+kt*xXOP)NW-XJv}mA{tnoxq
zEyi!lRbx`WntMgSBld5t&8g3*nDpaIDO9K1UWlRs*=1G0?ZIp!WUhU4yUekx^ik__
z?aYi$vfRv$)_LcT;}7jbMp8`Guj*L$gls&TT~C)!Dr6Pa1;s(rn=l&X=*pj=Zqr1xx|6N9@kPl5|315jPOqb$E_no&O*EM^9
z*LFU|;QQm?E1N#DLodvcu14w#z3zmq{&Pi+mh1+u$w|^6_sZgwR+!KmA`+^l_~T37
zXU2DvE-chAcPNqo`;_QQ7W8alOnSwt>{+p(
z(ZS^L*nyDL-aELl^M9)ncj>}F&zXbOq?I%%r@RmJU@`H)5S
z4N~pDRt9?;x9U&VS<;Nsl4-wO3(qHM3$yAqF&WnT
zeV{Kb&hs)B)-}FRrYi*_>0gy~y;Sp-=As+Ea=Mgq9_%wPVrF6+)~7_+-<`9yOAHL&
zv?cU>7=6);-8!-Sk07!HZe4dI5LEDj5YkvCRkcXp(C26X4cxc({rY&U4`w;SW?-3%cwo2y!yk6@kYJ8WyjYp;vtt0HN~hw$uuj`P|vl
z+bE9EF#RZKF$oDNYc@T`EiB}byG*&gb)mz~4RNu!Zd&OfYyTnnEs$oAPm=aejE{vY
zB)ESKS(&Jm*Q~ywdmD3Esk|ARVW?1-eEFyTAJJ;
z@NK0g1t;S28q;nS^N)@1e|)!3nReG%Zx<}u6$zEu+c;SMx=-7aXXeE+--sE~IPy
zLP4+L2_P}cZHgUc8_IWJ!(i}8u-q`$#ZsNyu;Ovyy9hp~yO10zHG_F`3$&(ip(HW)lxLQ1l97~BgjJbH>>1^3cV*c%J$fc<@l{hc6qZ$g|-@oFSDlH9-$ZS&hSQ!=-
z)3ua{L>7ja)c1382!Dgq@Z~WR+z)?{)<>B_3?{gzcArJ0E`<^0%+BMX8PkXJ9AO@?6Va8NVV$hr$pRR>sP@ujVFUyJGCM%mqPx8Kuw4Sv_ubb5B
zVp?)W_FRX1e(jaMY>Rw{trwtn`9<}M*hTc^+AIEzu2r#D-3sAxaI;#P^k{cOpRvLD=x=FtS<_GFFfLJKJ{1FO8)a7!O|m@(5w%(TV;1F
ziAzEEI!f~wnH~_Q9}EQuSs>yvd4B2`4YNoxdjMq2<7)Y!3I+%-8}S=XhznWFVi55u
zo8XKLGo57hwPM_nJkHq2%|VR?qLN%Z`^WO%ZFt=ZO_docu9ocYvmDaz*laO@3cTcr
zvh3Gg-S-fB>^tATNAfN{DlBQE7ZY!N;}!~a3R(j8F72h=aIUePG4sE2^GG6^nDq6N
zdS`;Sbnl@=1~K>v_uo4UyqrN%mUVR2;%w8ze&WJy4m4%X`YqA
zNnv~5SD*TU+b^%>G`P5pU-8Cg79bik2D0Q`2V5?$I@%{YJO2+DbLW3E#n$V?+c$D`
z@R>tIP`?xvCpfjouBmOqZXuD3?C+4uR7a02Rnw3|rg6~?zY|x1xqw6^;!knDx%O6c$U;41ZJo2Q|;r#9s65dISFlZ8E`A?klR&nVJSA_Ii0#3DW
ztuq>&@KOEfe(Jd1Zb??MPw*27fBwQyt#l8XGs7?|Ni{7YTF@YKvh;C6FMYqTn~PNN
za?_Z18yen3VNK-Z;dp0N(EOQ7S)^<59|FiMJLx&6T=6Ct@
zf;3?zpui`5IJ5iir3?wDUXHJM`nVSh_wgGpv*0lE5I5^x{qAG9>F(Y^@IG09w@*lO
z%qI=e&q7dk0jr{^Ab|nW2fM<@pN$5qyabOZ4r20Bnei$rL!3!DSR|E7LzmdPkefNe
z2dCJsOlKuz26+9+J_A66M{+=}?E4oMA|35c{~%!b`C%+H-bNZ`wB{52jB508X5g^K
zYKG75BCJ(du!wwZ{%GX>Cz#Tp@^jBGg9KG0HXui^RAL*{j*yi%)
zq-MkK3?1(5H==@Mu)My5Aot=zL}Ni41RwbTG*ZHzG`?lHr-AIA>PgS9h~!UCE%4jt
zE~oLML9+(iKkX~F4-EB!^|s&_bz~|MTN{^8=dlhb2XE-+Tw7R?G;42RpGy4TPGj#f
z`i{E}FKgE+NowM5v%@MVuiI8-Xw?tW3XNw-qylKT{?6RJs5tkn)=yYbaHw%=q}+ey
zbT2yI&3N3+?02x%@R^>N-#?L!d2iFCDe%eKMin~si~Gdp_^Id&|BaU_g-|)8U}KHZ
z9n}T?N&Tpw(3W-6z3^v<#MFLgk;#Gyc$ZvV>pB!{<1n$=BxKVixUgH&dP1JvdXvTJ8N01T?bqWz?z$+4A#*au=QHYhjN$GU+*R
z67lK+OrQz#b&)sB3rlu5gF?xJ?gH;qjaOeVd1a%+MgZfpOvFCIhN}()Fn(@sP9|p_
z5GW%V*Rw%v{zK2=H_Z=zC7eD!GfBci&`+d4NOZI4ni#*1o#-Zdg+Ly_Y|DOrGHhV$
zxm(UelWQ?V2@!@l&6z!jIn?MD{%z@wBzn*)d{gYTFKm2
zs^@d22e3o98Enqj2lmW>>q}5!g;&Ufpi2Gn_X~!F3>GcaLJcj$=+?$drbiZ^S4{V#
z!rnQRd4iBGW(pogb8j7$1$9X^3n$i8SlNP{aAmlF%L(ZAf^2#4+V^Ar)47M-y%2}e
z?!o8`G`!v@Mr8l{RPXtLi3Q{1+G}Mn{Xbh#_K8sf!8jI^Jcr7_VAs6w>z9o)y|!ZA
zK|7bI^SQE&LevK-6Y)Q`dDFMbI}OdWSx(hGZh!m
zUuKO>O?t;Jo%*d?y|}Gbn;_uMC67olLu@f3&bniC-1S?ka>=mGgOk7gj!ru7p$$PXLulFM$i4#jo3A&CafV0A4RPs9@GC0c2KqAd
zlw|(U%14g|xf~nfUwjthYI<*Ethn4Tfh`w!i{;r4b3EEb3;Jlgu-2FKfoD|SboPp&
zRcJx}5j}$hAkyBcFX*TS-zlQR|7#>W`&#Mx?Dh5VP&se&U8+HO
zbhk^(5klJnS%Nl6r6s)?C!yh<^!TDpt>(2`D>CONt)fw>_i?
zU*WsGS)+dDl$KeEsg8{}IW3Giywn|6Gx=S>nmYWE6?Mn?sB@iLIM$>$fZ2%fEk-3yy(6|jhOF?7Iq
z*86?V;#Q#vV*r{ccfOyP-s8c@qDmtKHHe)H2gr>{M4yJ&Tm{4{HjI1rfsU72xMnj4
zO2gGD$F#M^mnG~O9pMGg`Z_feogbQ-n>Bx}oTayBS`Y5G>{KPe$|%6bXu8-v7~D2O
zX8pdE&IOQuX@hji`o+U3P+OVjUbOpl1@0T=qUk$PEvK@#u?1x#
z5!uE1t)Y@}9Hj*-iOMaN<=!3n8Z&s6_fBap1JQ*axi@92Y_-fEzV|h*=KPSLt}nWS
z-vpiZ#F7m*>`hQ=v7ZU0{Ru^tjynXxv@Z6&tOZ-IyrCgcILH+djm&JV_*YitCN}1j
zhGF(3`T8l)t6)TqoD?7uVIF0RAVcH&rqDiKPo`UqU3Pt^pR6av=5PW+B%dQGE9x
zCO@O7NLK<}hWze2e<<@)Tko(A9=osoQG!?SDEa9=#m@A>xZm(#>zSG3^ZvuN&jF?I
z92A|^u!(lLmT^+n$RB184TIioki*0mTZV=gO~m|K7nQj%pF0cI`q={8;(pwl20tFu
zf|DB9L?YOxH4jx$HDU}Ec#c54;7Y=3+CFPjRj#@G)0j~)fB520Yh%*S7&a|;-ow2@
z31w)L@ZX;xGFH}(Y#s{58*~I?ALf+)gJpph1``kyC(3$HXT=S4&F|2y9j`9UBTjCZ
z&8>BYZMg5W$SBKA7x%<(hW>)JGc8BXam6fB^Df`J3I9mhtcy>
z=itsRVrBbk*@~8}2puok*0pd{p=GuUN1eRnqz0|7oTh0W<=tezlRKdX*O(mVZ!QD2
zivX{4&u&3EHG#US$5i;p?OE$@KTr{NwXtbI4X8I27|2PtTY{)0hKhqHp?kZSk@XU&
z+VkO;!tCdbNpBqgBT)RhH!RircM&Or_DFEiK{C6GmqDCr#VR$Yra06nD7lLZu{}mw
zBjf&N`wnsHW{(KGDmxY1$MPeF9eh~LF+iaU95saZ$Ga1nbk3$?gg~D|q%^avcf25l
zSFbP-0NNJFkc0!CD6#GjmfoBG3oq`)whEM$84%ha6
znkN)HxbX6bh0ve4cRYo0jhR}nJCYA+;e`5ERlJEip`uKAu(7Jt?PKx}x1?9b`D@dE
zMP)i#GPc6=Ze&+E1nR6LCMNH?)gKRxr&}2+f1}}8tL&V*akH`B<8ImG6FnSTd!EK-
z6<=|p3*3nF7n?f%-iw<;b9QmRh%?wLP6EXwFokv;wlJ^+=Ci%?p)_GjD9Wr@>($pe
zsRzH*g1a{e>KUkC7+{2zwMZ}gAxZlL9m%$fiJ@|{3Z^E8I1LI`c2BQ|nG2`=QmaW2
zd6{pQJgumtysiWkngdq0cdApQOY}oB{c-Dt3s-(p1D3U1js@MS%{JQ%Ure0}h(XGO
zE@){lK(qUO4)Zi1H>Cs$#f7}HQB70zL4DpzI%GpljV;rO#L0gICOb3evArg_C1}_F
zhypDM^M(ocmjyq8mSvPVkc*~8NW|hrtbW6f9x#p9h3GU5a-%%@+;6PrazV-+JA;>v
z}
zGcT4Z$#8%z7)@EiWz409Ju<<>r3UZ^pXh?=p5i?$u%Qet3L;5KZBThlLhHI7+l1~4
z0eNCh!+6ZBWW%^NiMT)#IA{w>b3q%et9$_hgPJ1D|AKQwwe^i?g(^D?s%}J-xB*w{
zGF`L>OQu!2KE&!vgGOUVi$gaMT9Y_SbrF(=fb*n3*EPwT^!Qs%Vg-+Y?GWd7?@W#(mlf$6yWGsHKRVvuu%sxP%FE5@g
z=?ApdFrk4MX^#Lhv2h?7!G`&XDK-D(skSyXMo&)t*GqHMKd
zCslwQCX}_f{`d$4{_Co571m?d=^+z^LZj|^!vTbBz6c{GC$e(=Dszr@CWV&eEY4;@
zn|pD|yqZ40=Cxa;D}bKZ~~y(X!Tib
zjxDMIjeic=jIfc`kAOK1&sVYqXP5k2FpaQKObN@!uM<7FSdd1-Vuqt*tjPj4W-uR-
zT?Z1a6Sh}GAjpG65?J*)VV6+mGLBH03uXQ(Ig!S$@iEjvT+6QKN8@%@2rmLg&1<8v
zWf@HM0SJB9fAnElIW*5Y751*MvLHLFODb8yu*GI>x)taZX*OZorrst!?LRz>YrBkx
z0&%XaRaFBsB^F!5J|1NI%ss?6OR9zDLJ5h2Ib3CW;rbAuE!z*Km$`
zuNL^sLg22!E%t=0vZHKt0wU%CEqz-ozS($wAf-*ofGjFQ@M07z0`S}>A0)iaFKlIu>CD}@iuBGse{$ZUgx;K*Z{`M^mssrGxVcIU
zfn=)!-0DKp{q0iy(8~b<0w0l&f1Gh88V++MCb1Z={}f3088|bCt@64s(oJ1tN@J4Z
zrMfi2D?z1>q!FmnpryyysQn(xL4$@#Z4+J72&h05@QwCq$H7OjfGce?xsdlR0T^N&
z+hT{jKH<|OVR`C77R_ErT3U3zsFN3N`yReE3Q1+IRF*#%y~SxDBIq|!%&KT|f?a@7HU|T#
z{L_a!d%vIoSL$Ms)xO)(@GhO}`AlbfWwMs_PY%W6q9;)TJp?XPv?^s)nLo9jt{CVy
zo}=ND_+Pzr>*zNeO0ku(i^#0a=kkbtCFIVnlk{{Vl;7;_SXX+ifW+T&?R1)hC4Q-#
zn;XQ}V7-d*$4c@Px<=wf!$e*rGMt%@Rks;uGR=sbNfG1Y9XMb{(1RN$YLL
zDaE0F7_PrGc*i6S0D}ypCiMhMVSMj6%shfMB1mCe-l?Wfo)}b1!Nv>%F80seVZN?^
ze`s_{|IEP8C1{y!;Omz>6Y9c2D;Ud4!Q9}i_TS9sFV
zb7!kSF%#x-aW~EsUoS>Kgfe+xmN6>u*XnUwFB}_g#KZQ9B={UA=~d-7(Z`rIOXL`#Fl44WT?0vk-oQ
z7$|-%*qsJ622&FXdjsWXtXi0k-lfK*H8^czw@zDPSL#J60uVByuO2}qRb}yz3@LSU
z=55ywEqWNuzyNlL)UjBNT%kp2y7lqyGY-*lyP`wJk)F6`h=8v?;>1np8W67E0P!nn
zq4}>?Ycu+ZR?sFj8Mx)CKq&FmOshDHNmk*{abt+1PooX{)eB&=XOL%mBbZXZ%9lBV
zG-X;%!|byJ{^qO;ObC@L8h}s;iz)v{(5WF5x;+2Rav%Rz({{c}bD9Ef%gyIH{W?l(
zrigP;euO5xr1Qlrp!Z$~z{ux`TRpL7eGf~VX|;6A*xHNo={PIw0dfU?xz`}t(vw-48EY+E
z#;r3u^1ZA$kAZQ>uI&Xs&58aatbow@hI%u+K*_QJ|F%gx9NuY;=w0{VQu`hG__}OmH62Mx@?Fa^v
zl<1r9{&9|73H@<2WMXW~zsqNjHBpmvRpI_pT!@~NVMM_GF|g69K86aGoq;brjesgV
zDTpdi*SELvF3j0@%2cJpdlzP%wwy=?z*PoDy;t7D1S`c~!*`&~t@o|y_XI%m7njmT
zC^csv>rr5;h+$rU_i@zSjsCjPw0&WYa}Jmh_&82F&Sq`=758(%REng&V48|FUg+4V
z;^z7uYrfm2Yw#a|w~lJOR?NgCXzGnI8Ty~G76RV<3vJCWVx@_LKKF3>wG>$5=v%4J
z#%(Ok$Oli2GcSeonM{~73cztC85^nZe*vXWNEbkwT$7~{5XNB4**|ThS35DjF`Y&EHpYKb<9z(KM?qCCW`p0w0D`3298n^*F%U@eJIp>)@_|jR
zMV0z1PZxx}*7M`L^{Ip!}Fe08>*Gztnk%NB~Iqa=sw2`3Ak-k?Pu;&n0+ww2Eh_vw0UEciN
z@`DPmr#!YDp#tWa%tu-P2??Bs4m+y2dzcGR`_TP&1E6eFP?MlJrfzw=OSfEnruA{-
zowoZHI*UIO)6-29k0(tk3iHUSP5Aq(e
zDSp!>)>qb?yJ!netn<6=v}icHCOvR088sdi0?jcJMZ=--Zcu@>SkB55dhei$9v$Zp
z`FrX(Czk-9rG^-3YkBvfGTKMVPzR71)a1RfmMhX~M$gH~_xl0-d4
zn%+hL)E>l}Nx`Wwe)@)qO<3Z8h&t=Hrr-B}8-P+OrF4$i2x)2Q9x%4iAYSuaHR+#p2&)%9IJVSoek-GW1Ci)nzrz=UgA7|TtHV>So{K(H#oP70VI3-WkdtJeQk=SS$Lh8y((ZTTRV8Y>
zP9XDdV|z6X>zHP!4!e@H%}<(Y)5oyfy2r5wvY1t?+9XxjGNDlbKfpefLyp_|_N{)m
zrhk5-a51cv2A1V1SU90)ZQvwc@$}6AY}W9{?56BYe=1wblcr+YtC#*ww;)S{Po6f<
z?R_NAX--%|b;-Y^BGfh0-py>)gf2w+mf=RH`jjLEmvUQor8WJbo=tEagjbS@!28KQ
zGwJTB4gBRY%>aIE`>U9s;*+MZnEUj%`lR{I_=*BCpQ*=-V0w?@j+O&DdV$2f^^GfP
ziBGxdZ{``&{6wDaYwXQ+*#=JTE~N^!JoA#ZF1KX@Reo^u)LtO+Qn9Wc~NVkapM
zmP9=nk~VN;uQ7vRwDOHl5bp0MXc&5Pv;SGNyOcEFmz{5tZ#ju+4<2X>oh6@0b9i4B
zN~@~JMz5RM+XBv25!DrAfl;fnAOZ)@Rbl7BWvRIzdr+sB7f&1KYd$tEy^@UhYslt7
z-uw|cv7R^)gksKqHiA4Lj|ct9xE8&A*m^5)|7}N`V08LMbI7M$sHLv|ZrQ6lMg#+}
zv!Yck0m1_(&I;OU6-Rg9d7C8wdSc@i(X+nfXc_Gx#}-64us`nNHdiIu)n+JGQeKI;
zLprPToC@-D>Y?@D<7%=tvHOBDxq|VuIsFqz#E@>DlYT@YE2hBbq|U|y6=F!%Q}*aC
z6Q={IO_n*$FdyRMDXWn)`4Ntqjl`3gZv9MAb+US6bd{R4um|Zzl6_Y&U)Q|kYlWg9
zZeAq(?wJcJNe%0eV^#Zs)<)otIZ4UgQ|p_Fq($Q8EaMsH>u28u`rtD|BZImA7IwgeGQ+9gp8Mg6x+)2J_v+IqOx>ZTu9+5Yl+{Z6mfKkpjaqNW_s|xlPzkL
z*`I8BOe3Z)YNmOEG1C1uwmiNP@b2J()1!8De{?yQ2-*SQ2!7RG=rY1%-{*=q8Cw*R
z7Dd!>_%Tc5!{knL@^CcEWdso{8c&WdsUL*rfqM1E7t>>LQXU_NZ$In2%d8`pBw5)Lms-}8OQr7@{22b!Z~Z^l6DkgrKYH#R=4
z30|;O$F%!<0h{e)Ciea|zpg&YH5S3u<^a>nx}ZeRoV>3adbq~fkC6pL2P&eh&vPlZ4fW>?DXC{EM6>>mjkYN70TIndj^
z6KZSPhRP&yEcJ{>Q-*H&7(1t1P6PLmAj{M@7$$P7(3Da8S5I4Ssfw&LsGQV4*Gz9d
zVmZ(d;dF|nn4O|=ZaL->LcdXdM$((<+&dm#M-t)*y-MPI!4=Jor)-ijyc6eDw26jg#3a&gH#u&Fox
z^MMmf`1Gyfh)d%m{lZ0*R%!PJ|8+Zvo3lL8Ks9dkzvq2z<^5y=!2A!;XQ=C
zaO8%w1CM@4V!A=H=mPOM!~EZjmS|GfL2*EOkSl9CIF;x}D1X20oyW&wd0L}&|9W@<
zaJ&%cQOGb%sZZ@&34kXJSi*N0>S}8$hR5Qo>(KO#p-FWEWCI=>_hz7S$|1kqN}ehJ
zoqLYC``d@oOFB5NCOPc!8--c4aIo|r`;j?9C2@4#^h{-ic!Y>l%gI|Gsl*C*-QlM}
zLwg6^GbLB>$$gf}kV3!1Rn=;->XbAjXEdQ7p8e(PGZS`}jrHc&Kc+@60p!}dOS-AE
z#kk9-k*{qs?)6drZY!Opzm(_X#mWfSw_$-*waXnICVckN;OsF7EVsg5G4e5;(F5YV
z*T|)lp0s;jo9jCikm>%$B8Ots#9D`3)Uu|2)^y!qm3p7nDQ7b`#bb0t*
zROJi2#Bp%dEkeu`k&Nl-EzlIkjwmu}w)+M~h2&VJU(xXJby)D6*VnR7MS0lp5hG@o
z%}*0q@4qaRIiR8$mX@L^4grIvNr)>ZkW&Y|m(><0$6Z1-3BH@kf|=MNRtwO+a30c_
zF#wB&{CDYj;Nk$F(m+4TdC0^TY>-zGRSK^*$;M|GlXLfYKT%T@GRUXi*587LhHbv?
z`ZpFm-r#4bjaV-q?ePc>0u@T^5|6?;7Q7NErMOV{8560Dy(k-H<_+nNS+zC0*Z$t?
zzpq9@JaMCe-(mxm1vgIH&W1oX)25xZ-CpMGg%syoP;Wx>I1S^r7DHuLa+(t8T6c9R
zHPC-&;^(tf#arAorSF13OFAN!&&NpE5|UGGC8hngk&A*tCRUpL&>A)YiM(v+7iHBM
zRu_Kjb49=R(YYq!wQONsoYviMKn2*Z?OdC_)c3awZ*AL{rag%XfX>1ZLtEQQt&tso
zA99}h1-=P`g?lU9Qj^2IffH}B;{m*y&bM89x=6^0)PXrLKl6Z?`MmWAB+InIEHy`*
zM&9@Xdzi9rqjq@sgE7-6{`M)v>L>52htvUgYSjCPl^QTSD&%V85LL92x$3`#A2zUM
zWFE6;hCg`c-XuScp))kzAqb2KYlNh0Rh90o$V4Xu4=k$l+}BB7CfkGi;9X(o+7hBK
z#8W=~rjBF#D>JVMy)y1VB5^n57T~;%KsRl|%WPSmukTOX{USHt#Tk=GX{+}UKr4JX
zigHevt$V&SYnb$cxd1#5Z%{_5l5JPd^OJ*4
zBdp2YKTc(@+ZHs-P1)Q!F&MO
zdw0CFzG0{zE(iGJweL>4vs}DJkTS|d{0h#n+3G`;6X%7mP{ebV>M?FJA*(>H`v#}q
z9d=%Q51ingv6RuIGDN!{FY@N7=~|~h4GnISp&r|zPzhm})dxZ{-DvD@>MNSZjAWyk
zd~tW7vOqd5F=Mxid+vVw8t=e>?DjG{3KP;kbH-?{JElUZB{a(6F?NFp7NvQppT?%TBS>v}z!
zpz@v3#5oJye85cr9a$2^C5GPyRWrw3TaCNM7gKR9>);RnP9M~3_b{#VrK67M6EY%$
z$KPFcYPdnigq8*g%LTi_o{!0B>yIhcn`bB9QKHv7+C%Q#tN*9!>ZrWSzMv7I#bA>u
zkRE@hq@Md_t-|0U%9e<;+x=W!kzSr;&*~%L@SssD)&HhN>vTTCy^+iBtq{(kHV1SL
zqU4oye{zZzBPt1Tc%)zdu?uFn#Y5=+`z!q#H4OLd(~3eHv4K5%qrCE!v$W#V;M0&#
zadi|XuS>|1(Eg`pH#Do{Wi=g&898MN7IWM|53fE9k`nt#`Y}+9pV(|v`5Ske#m1pl
zN)gVLRD*a|ojf9{X23*{6n-J}qS?9gv#omKta63Nr*(zV?DM{ddERb3V?o3brZgd;
zD=Z?HiMn){ov=}LOky25F?Zfp_uyz-!V3%KS+rjSbv`^aZek??ZJBS`n$ncf9MebK
zfsD=n&b$oHp7`80si&ahXo-10=Bnc=1IlQtFK`!m+#}X5q+^*fF$8-R&~!K3oobIx
zbiAps_LDa6yX1h_o{xtj%issbSZ@NWp^x3AxOxq-=jUivpdzlm3vu^gxpVAwu7{n)LBiB@K*|ryHfKbW>%f9Q$2e;RlgNWaU;fH@rctoU#)0{3UTZi1L
zTTQusFZD-f_&3~B*X+(UJT4y(Q9f-)=9J5U<^y^^{O6ark4Eo%Uf`xl2
zKN(s=R(|M?^H(#bpZ;*K
z_mNLek>psE5LyD`p#0#%(;AMIzvN|m^+W_++r)HB?xR~!X^#IVDfgv+g?0MLb}x*I
zpnmekna@t%d6susO?R`*ysR*NGbkgm#+Gecjnc3&6fuFbPqj3IEjbiw$K+v`x2v#R
z{Hiv0nnSgPE46ns;ujCC<_Ba9yHsgHuchZEAw&%~0kadn+X}3>wb{JRjx!3B6#k5^
zo$bvb=1|Ht@cxhGC)&lrAiI(-Uthl^1H%~u6Ae@jh98r4Zyo(Utfph>)h2&`dkTdD
z>{+c~l(M7bFtsX?Z&_Tz)_3Bvh8uB5iODsqHj<>o;Gin1lCNYRh-e^_BPFpwej-Vd
zx9n|DS5mu>rlB{2TcHeuAK?>?yq-~8VY2>HZ?4O^hoN0GE51a<%*MQF_B|F}?i=S7
zZ5qc~~l-5~%`;
z{WVuXjWH<}sjKH!jOm~eUxx&^t%uC?0HG|VUfQF_;O(Km#xx_L@3)fgofdzzE)MGE
z?tW$2*$mn8{1gRuXijIT<6ssUfa+Mciss=_#X*DKDD_J12;(d@*=ZemT=|R@rLWRr
zY~Q@y)ua;<+TjGZ@R4M2Bc1_NMk%lgG>SPq9ff5m6#QV#jlwID$GEv}$tGQxDVSrA
zvmR0%G7o>No!v+^qE`ASPPk6ql?eM#C4nG`hb@rlG?)@fLKz5x?c^Dv5
zxzeBG&gq4O2z!;oPU}JJ7Fh918|Ma&MJgAQdlE!`8}2Fjg~M8HAXC^LOwLutTs6ql
zT7#?d`PcGDw*UO?@zAZtbF`b8{|=m48Dcx3ChbH}sIJ1az90*i`e-SoITpn<>oa5-
zxsYr=G-(;O{V5&PDJ;nVoipj)3D1ZuwlOY88`wyS&|R4t2@{qKBd$&rg!4Y6kat{0
z4&KCuFLbz73~nFETakxQ(Igr}G|IFP;r{Bp7=&x#BqEBJ9tphJygmfD8L(6NxNA)}
z=r1L`(x~mr+HZlDpPYQ;wmm^?lq{Nh$r1|hpqM@)Rn;X3(dxgB5wgI83eo_^^lWs1
z#a1ahf{xz*>$KJ%obA^SyoW=`A5XoZ$Pqpba!W__=#q(_9IV0kho_{(Hu}z+ixIs3
zCWHU*(pkLs<*NkuqWp{
z`C_`Q4UiUo=D5_BYQ;`z-I@GIO-K8szdP^z>GD{UPFV+@Tt1NPKxZVhju5Y|biGW-
z0*Q3KCBn^Q1>+0rlHXmeu`OG>xng&)5MDjJFMxg(_^@2gQ6aSAng_M`x-+IZOO^q{~Atx;%Qv-$Xb)?8vJ_sDM_;c-X
zd@iKFRbI!6IHkUL-5oY-3i}vB^}ThSc@I^;4{!*`)7*RVTOeBu6_!Q74}Y#KOH!#h
zS~$FxN8gA!CQHH^0Xcb+FJ#mi^OSg+mMc3j|7$F+LetG`_v
zlq)@FtOrV#?1@aeYV;K6sm0cm8MN4!lW+_6n_U(XS$TO4^Bx}
zRkO;*tZ)AgNc0xC|GYXPqYSKMI$+fZ2q>MMx-ET2cpB7bW1+cEpvnOrMckMg4$=r>
z)NGR_bC6r2Oejk}!7UDHs!67xx~nz?q3`0I6Z40AgF|n&@ja`vwBh5SFvUJut9iwd
zi)w0^?LR)rRm>eRe?+6JR3zZcGbf85^g?X=ro-8W7!@098*{?;wMu_ot2=I5_*D7m
zv2dz5py41u)X!@B0VY{q(E>5u^U^pT!VJ;nvm>C~b((h1zEeSq%Dc;E9Y+&7Mvn$R
z`-{h8&^~tlP38<_ug8Q+R*4K;dia_tEAztI=uOthlY^3q`h)=v)n~it43#^B=8b<_
zBnW~mrs1q{W~6&IjTbj#1W%~F!QBDtna!geF6)vmEIbJ)lASgIh7f4YL5k9PLz35Q
zxHa|vYQA}XQlIP^5QsRP+jt>z1#2fds2R{~q}B_U_M6jWU)Xv4U434zJi)435GT!<
z@wriJmadx8eHmHUrIBbEe|-@_0OE_qv!oQsP#Bn~7WEu0tt5-m`%PjS)`oCeZ50H-
zsJe3bFY><}YG>uffSi@4y~h4x9(0Z=jkEp9Li_|H^&ekPD
zhWv_8d4HL63B*vBl16m8L07}aZ0-+{S$TDCVN+bQ!R&hb&ji$Z20DTpW2PCD?ON5f
zdx)63pluge6|)RKO}bcCIS-5R5B|8`zHJm>nhoE$m-nrtq%FVfRM}D#%-fmXmzMWR
z;E!(RO_MX$Ea9R)b}9afXOMrSSB^WOyW?7SyiZ{2Vy}WeN5n>KkEZuIYK19*`Hxm!
zlR}2QUxWpwh0Q_9lMltvd{I&u9c;8GvlJ6UP8&g~PJ7RpiV*PLRQt`S;PLv7WXa$x
zS7;$`7u=oLe%nlwPm8cQ0f9{S{c(tp^ouHGJe}RpNmmgcjcYP;BpEOU>|^UTFoC-r
zKchqns_Uvs%9N*PY+pWBVy!cs8MA3=UjJHSl}xr?ZfY&3Es(p(%K&BHbLPPf9&k(e
zjC=fyl#hCo_ArOI6z`~H&uM!D{fvENY)Z(?N}BSy@pI%G$Wv#SbWoN>Sj`l@{D
z9TmI9D1
zG$gMogF6yLAxKvHPui$lFTw0p_qUwL!oKW@_~`PrVy;tktQ4Hx|eQ4)1e
zd1(kP)o@P814VIzo=2rMar|V+&)78wiHkUNQS9}kCqBI8MfMauYIoUaZ{x>j)SH^?
zFBSS8u~KEpx3%nZp$2eEK0U+xiM5fRy$U=3$;H{2wH0yZur1FCd3)Ne4hLk}OwXw%a1T$55;ntZhCa<*$a3AN
z9GEVyGFXg!^N%}~nyjxk3GIwcOc=0rlY40PCq~ZJAai8$|d{vrd-=8VoiKIbYULQUy(n
z7@4qtw+H_b>uJK4lo!aLP&RMeQ263|jue@1-~P<9fA0(-OJ+}0-r(nUP@{{+`aWzu
z-ZLvIN1O=O;3}}CvwamO@O~*7?oXGfQjxrq$$EbwRu2$v`SnvisEJAL*Z>O(?Szul
zphm?aJp4@U%P{n03Wmaw>h!E8uKEYUi0jFYJR>yp$52
zx^p@99Lt0}NOxh)xoVHC2msm447MTAI_yA;TZvcTRdWs|9*$=3sI|trr{Q8Rqt^^e
zidq_qgi8vA?3)(vB@@@*d^I;WJts;^y2~^o9$Zh+Q@=XU-C)(eICtT;9Q(U)#M)BE
z|J)E9GBa!1;n#Ju-40kHoXIS$FXYck#Ol4v9X9ujzk5)A>$(Vy&(D*+!RJ<}jMRF)
z*Rp%~EXmaNh7O;+>V~N0#;2!iKf7kbRaA!cWBB&4I1x+K?ml&Yg4AN30
zw(`)CqkSf~a_z6p3=VVucPU+lK3Lw*LzAg-wZ=x3cNyW>DnWNsxE5@Wd3|7w9_f3Qfi6
zYd&Sm)}wNvUn;964Ghl6oE;~ynF%wfRMyn?A>2G0`^Uy;h>(#fs*#`Me4|YUX5G5y
zOsnejYRUWIl$U=Z4^zJi>KBEhtiq&bD?a07{j>`WIB*SZ|QdA|U%qP@A%c#BX
z(LP*ElABAY3fDUW4;
z5_r(KIuy1>I@5G{P)*i%O48q$!>S3ogTo>SWYMe_9o2wk>HO7oYtYSn7fsuX7D5V
z<{OwFRN~`NWMvjdZAE1+=R8D)%Z%k=Y};Zlb;ZNnelMwijWcbF!%2Ss?}VSj|Lm9m
zb(fxumu6y65x$t&s9hWGls6|ZV1|FLP)e>%2PGp&!$me<76Azt7v
zD$mA8&Kb~o?Avkt>fHnETyb!j0OPWM%fp$rWe%0ik-?U*4|;6SZVRA}{j*xNs#=si
zC%uTbaj_CJpeV+xd^V;7*>yr!)2e`sto2rEN@s?Pat6Xehv?M&7I9CzqC!4ihFsAQ
z^*GX9Z75Z9TzzgfNL@()?+eWhr@%%#TiQtw+C
zflq@3t1i!VT~@GD`-Zu;paJu~EBTNQy1=()OSqID2EAuerdis!*uD!8HPk+kv@4SBU$n=vR;
zA>EO-^@}@JLYB?(MI4OArgig^?~HM&zaR8lI+Dzl-im}RV%2K-MBSlE`ptj4J&MC;
z70aXn7{~zNNuU}-Kgt+EuVzscvzBPl?SlI1eIWH**2B-&0TJ5h;kS2$32h0TO#>tK
z4-MGbNVjVEm9yPDn;7{6dREfI`uKd0jhkUVsEGs^#Nr2cJ9{&9R>k2F!4Pe{F)dUrbD+_
zk6y&x!;-iCGkSRrZKfJ{-L5
zLh0yQyY?qIa&~qW+HLZJTcO22wYs$Tt30Ma%^?lR$446*I-)NYpz#yhN|Su(>G9kU
z{^kvrO$VizH|Xv7N3$1$`;W#0zj-h925FAj&c}R@`tMS7;|y|ceawUCl~4Mqjy$T%
z+jD8(kFuKaB$h?V9T#3^KPDM}v2*OFP8FQ|9r@SV&L*c`A(5*=Px>=TD)=k|$8xK_
z6_Yx{!q1lzEoRmKH4FMCeH;)(btQ0g5-OAOUI=NNQwRhQ*9IX_L_=-OM(5*G!F#qt
z^?yD*lDX+|S~9sDBmb7CUCS+;>}|-|)SVwkidEv89Hfj$hQ1J3jo!%<4pPf$3G4=CVT8`zJ!+iJUOh(BLO7FCJzJ;oHF-k!JQcnQ0{
zt*W&9@{H_>@JM5Ixs)lAaVhZL1Nt+gSP{~VI>rquon9_#<9T)8keLa@K-05zts_3E
zfu|IItW!k=ASi(GrdZij`7(M#kYLj+zpc
z85s_?QR}jlVmDi7a|e2rbduYC!3pZ?hdM0M{&kT;M(H<)9c3i!7k3T>qGM|}Ev-{N
zzFWzV{e`kCHi^CtpaT2Cgi70o6Yz%
zf^Oz1YTFl}ja>pg4!$Put=yjynbXbWp=WdY0hY2j^{#4eLDXMx^j&OT&W``@Qp4F7
z#C+G)-+HQ+snsvUc}D<{D>L#FkL&=6yPLA+pXH8#UB%MJf7lLo
z4wQY}ez`c=mL?Bx9*HNFYJo;*{LKt3={V+mSS7ipf-X3e1h`KQ5+^4ndpjIi<~5yL
z!Ymhy?uWVo?;$PJN{C&l*Thx|c>r?FebV|!WY*@f63s!1396(V!BusuR%=JHzht$2
zIlsgvusq@>^Olgf!{h{v?pG%>o~t>|Imv
zoEmTI5&Ow-a*z?AE}ZjZW~l2=q?0V6&oh)K&?h-abHM0DMFp{@Y&q&>y8rtQ(wqsz6PTw|mxjuVmQT{c9
zgga(d7>ryWzUYjhSdeuyrly;Y`TmD_!dy__UU9a|J!N&D|1MprsVyG{E3f9WVe|dL
zU{QOekj*BrrL?pS4`bUAqtt^)svh!P#;s+REq7oIDIAQBU2h;Z+x@A(m<;j@zyvHh
z_4qkW+y?mtBtVV8ilH72KcIM5Mh+?CT#>Oe#gFl|VrmQBIBx##k1QQcQwQcpI*FA<
zl9m}areSb~lpAIu_x{jVGfQoiSK?e)HYMviMRpI~7f{jXXW+~cr~x0?Ih5S;BV{~G
ze}v;++Al@XIK;Lar?$gIa>G?>lEpquv89z=D4lzHOno5B^f}c*cY)U!b?AXR`aFYv&^a+S@Dr1`rJbt#qKv-jE4gWE!$@Pcd8p0{-1dN-2FI0JR#9
zneSn3gsWpd9=^$2Q1HqH?a>5V8`CKz-z!3*#>;qOVJtJ
zLz!lhdg8TF*F_?!t52S^8>YPb`UPq6W?320wzwSQC?Js5GjwR%D!t4T@53Z8yX@q!
z`ZrUidtPHzhCA&*y}`Y9Xrg$jDEh_kk=xd2*wA)_pBI}zf$9!|kRxJtdu|LmvsFGk
zE&GZ?Bed8%uX1MPF=6gvWHIK^`J_Basa^f9P;S5JTZBFTljh6CmG7;srdqPrLtdxI
zcd8XOaslzsD>{Hia*d$&N`oGqEepY@M<*5NR8|5HS(9bO-Ja
zU6Ziwf2;S!Vt8^)9+cn<%j%SX5Ou6;TW(FM9Oq;*^^K7|;5C3d%Y=n^Dey$lC))lR
zf1-Asnow9lsS)PtbH4l7^`mFz*1a-n2Xl|;?K;wGK$%y!<}QFy0@YrLW@-PcSOm+q>cdL5EbM-4rrdlk9ec4{yg`%-${VNf4&L71
z^d8lDB^s;PUB4z~&d0f(wJvIkPE{6iZ81JnjiXUsds$Y4VTxxgpa=F-vwwXJMP;V=Zn
zySlo(EQ!H^Vz-B{K!NbsjLZRh(>gP$f?t5D+-+vISGV#_2islYBX_i_G97l$u68sn
zJjR&MQl-DJ+es;v9CSprh&k$SM|SGuJ13d);pd?`XK$%Ciln8Y4?=(L?_(X3rACA@
z@{Wo1?bf0OGa6qhGW`jmPqipU)Z4$_K#e-7rbvHx?`OC?0}ud@nSuaxRqREA?0BwS
zJk9K4G0*6p8QjE~qLMW%d4y|IX$@PEMCa>bd7&m`jiA%%KXu(Z0{JexoXP;MpKuc%
zfV>8RbG8Uo(yX@p3W#mB74#Y@A-O~cS@z@j8ReMAIwg3U?xgV
zyRwNrlybodrho>F^9`;CGFm0uF(n!XGZt~Kae(=}q!!f#Ix8#2EA7RoXIDaq
zePW&cr4mzb#BHF*Jky&6374zH<5vsCl{zdFflkNY=?<2fr=-C=nG9oBXAlEH)aG?C
zB<;f&%G=?uUcUfwmR3`f{kRePRHKE}+DHisKmpKLeR+AAJj1GpPQcHQAWJH=F@NDD
zuIUT#^kRr{LSGPi##%FDZD1Eq@Qi-n;}!4h5YH!5aUwv_613@#!6%3A>1Z@-kfqIx
zx66Un&dfZYtlO`Qlm1q9PCs|q`@TRum`W*&2jdlP77c(cS|Xjyxym34O(5${|2J?>
zsKeCoFQ$BS6u+j<+yf6i;fAZ90xWd)V$Ie#q9PH9ngNYPhR9pf)0Q@kxNNIwLWY;I
z{dPSSMrgIffxika_|bNze~BA;5VtasU-xNYIcjunw7(y%7-t;)s33(#Zd#h?Rh4Q7
zpJx1L=lUwhiu%Op=?wzbJeRkG0btyO-7j8BG{&}MktBOtJ8pBMoyhL*2bGBb;UZ_?
zJvK$=3WHj!h6n(D#*s;8Jn*W&^gpXM(GC9=x7szxK`FB54aP7{g-z;-(3hNoN|b46
zqRBle4;v=k-79NLTE_;_XJDv@XN|b{ms&Y#?H2Z(?~l;(!`T2Tph|EfKI&^`be)98
z1@#dz+p5&@rk)=wv2%#fq25ix_4k>*z=|nwe&MA19s1T{AIEQI(bB41@MVb1lfoH-
z_-33?S$%LNVBEh|yMl}71UJQPW7Erkp<-<(0n(M;cXD%G(16ED+jRtdbvzs+h@PFX
z(IvyiyzIW{$E);>*m!n2Hr(l)y*Y=Y)-l5cx7(HvXFIF&g{-H?Nw%7BK}qrDelq-9
z1JDkA#nsrAJTNTa8h!1B%Z}La1EOT0848ynF+L)`%n7JY%oCFlwA=8u^NEw;6!K|i
z_R`;O0OSR{qU@C(Y+0cTTPmcdoq>nVC&1Ne2N5Tr(qmLF=`JsNY=L1XWg
zW#yubuMA0ZcuL?wEoja(Kj4=u@>@2lQt-~kGppRPz1SEQv#iql{UPwDh!PwTx7@L`
zg}Rzi6CIsx(~?vE%$n8J&UchO)ZCL!lKM4uY5iDu-}7@b^@-lv(3>*W%NM~D9{46n
z*@tJw@2mHJmqKUO_cl{L=b6J=#fa=)2!|42*3t5t8wzt>ZI)@DxZ_>g^8!R;#XXVc
zs!UYQ9IwrHJB6s1Nz3(I%meXtJX8zXtFWzTED?>FV;*ss@ov)$GlLkM?wp*tKU>_uYR=b%)I*h
zZMpJ*w=M8WFkc;X_SfTsLrMe|pBMl3PS2^#ev#mz$Euz)=95y3z3DxoKoo$H2y~UH
zng4H={_BgI9e%){oRO@lq4NgtxT0_wEhm??n%)lpWR%^bM8LENY+A}Dr3T2-Gu+`t
z9c%DP9Mqbf{WYlD>74$6md_RCHtX~z$eT%aNgqaGygV*Dk!RmG>kZ1}na
zT?2)GL~6sV{@+rNBM*lHjV!j-Gv)r`4cdn!Ph8CsZd?1mUhD
zbia|K?wy%~yEpRpmM<;KdI&pDu%|Y+wQ}e}Qzk7%Gtqeko`*ALpQ}sp8FwBJR?5tJ
zT(HDi@psQ=#03P26GA@a$mJfoqYEq-RG;UMyjtapDS;rC;tI5kqe)eA;H~J$MkTm8
zo)c_S?!=WRo87E*lUfdx4^+Eg_p8SBk`KlwAM1c`n5pNCd10C8)S(`YQPI`kuX_Bc
zq^#PxdlI0W4D~XOB1s{07wO$U3npH)10T8J`^dItP(B)YcK|+9sKbxKRlR$<@2w-9{(1pQdkZn&R0qZB!i_EBUKke6?o2%V1Mt
zPq0twmL4ZI<9GUMI*ln2-`1=V{zz8?=d{Bo{3L&dcB
z&3l|5^jd#l8sXOHD75i}vnnt|z#Vr%u?HAx$%;2X<&V=WQVw?g$4SfaN!YxS4%!#E
zq7P@Zx9GajT9<8wkoH}O3kd~69gsa~T8xA8Dua2dO?T~|kJv&y{8=AI+{V9pI6d>F
z-D0k$K8#OgXj@|1w=j!fvUJB<`>Z0%f4(bfPdamcrL6TwQNo=#eCa-aOFYSE{1n>Tf-qJu-Vao%69+d{ayp&McAtH%Z9UO@_B|ngS4rc(0ryc^-{kFf8!f3
ze3N0*RD$JR;->R0k4KpR6_DheU1=M(@BE0l93I17cf)zbP;eN5-ow-H*U14ffjWZ4
z`gYdl(Sb%@v1Hd1GPo+{_Wqdm5J76!{hVoaDl3Y{c&GXmB{67GW`Y@+Ki0o&ucoH@
z^>s*kZ}EVYTlw(To~$EMf+!i%S{4GcuD4JrY0|M;3lEoS=JKi{*o*74DkU24tz75e
z{O0{*(NZVrow6SCze|^EBq51KK-+A59ln*r*>ICsBlh%d#n^Kszk^`ROgWU!3w$*Fj|g;khsP-Q&YF(rQsDy!F{qL0`0)US6dx!^>ag
zb1qvPkJL*)Z<%dLca;KaDz;2(#yXzcut(Ce!Y-)!lpG)NG~Ki
z*Sg@dIaw!nZU&4-*TxRO1EoO-P#mVnC~NQL_gQKxShMAxj4LhbJveT{)0g=5N~d3F
z%nM0$Rpnunm6uy-=DvhPjlOk@)h%;xXk9(w0IQ?Q7hK-C)G_RVW*X%0=`yMDBi6(h
ztec{u?Z!UPI^X{^?nQ9GE-u=8|80$kWh&pL{>wOvyZ3DTg#C6l^)#jcC$eTra8=Ak
zmw~A9-^zL&mcJF{z1L0yV!xBZ-IZ65lS-l1-dDy$8gYuv5)VGy@`1af%E+i3;?}IH
z#$U}ns`Zl_{L07~0x@%?(`7)`rkU}!!nR5bbtta|r?;NO4bwb{{dm%oq}gdA3L_c*
z+@LHq7HizyC{tYX0ZvIv2jor{5Z|CInkoT0lcj`Bn
z?F}kqK%?1+O^1(d5D;G$EF?pzKE2C%oi?XAgv4Jreg46*&CfR!NLb>orVxR`cQrm+
znAT~+ouc#Z;c&s$bqgJh4QHQqsDIm(v<6$S`e*=AKv7R&c^>o`pgQ>kE1#r~v!u9I
zX4h9I-4yEASz%vh@Rbs}w$wa<+vItQuq0OnAxXDk_#68Af0xFB`LXV4`axUu#%E2>
zE>Us!T3?q`0*6}Uftf?^X7th#JWNwc(M>|A<6L?P!y-<>T=cuB+p*Th^g$AQn5O6x
zwVI%zg%l$#>+-zH>G-_T4+bXAObUZ17IlU~amgmPTA=i%zi76@n-T5L2WVOR9dgTapbc!6swibM!ozZQgUo
z;T2n6d>w*P%pYGR2rQB`l4ddWn`rF-*#CiZVS_N8Zso=_4Wg?&Q@tB|@>>FDh%Q%D`6X;Zw63M^j4#
zj{?p&((((tu}}Ba0u*DZ=jjuFO-HR}rZG;I>on+VLL#?vvy+X@eQR0JeShr!YJNi=
zl#vg<&9Mc?QbQAbwDKk_2oAq>#oX%S9~y28yD0I?EQ*V+vlTnB2hUCpaui>Ged4*o
z)R}^y)Ob|lU$#h)A42-r1NmrN
zNu3m`f}Qp6vX>*6kgRk$gNfQ!C1{7aGbdzEB9c&!OU{u(;OQc;viOK%q#3s%pQ4d)
z&PDq0eVrj{@SrTv^riQ7sktF_R<1zf@om(;A~FAW*RMHz6TNr|9qwNzlm+c)kc*?Jq)Mk{zY-)?_i8PaU!)9
z0dA?SnN0RAa;OF-6^=6_X}#6j9^-OhSystJNd#3kzh&=NYkVa6r6IDb*ikys-g$x)-jpRxZ0z{N}}6?|+vnGuzKITBjQJ
zoP^;9W_GtAUkFupn>8l(A;;*o=~kt%mRr3R6z5iBkIyV&Lv41`-NBVTXZt
zNX`D4qXz2Q4L<);Y=xJbsNe8v@p=Y6q5y!5b4iwUfSO(1gXl<^+>+B>AC7S6$@V{~
z&-(;rb2hW^z)#q0X|N8l&X7%XG6>U@B~Ju`JP^*!ajY1xEPCDT*BOz4S|5AR#{Z*k
z05IFiBOZIe6s`od
zCyHN$6~-!Ukb8?7eB^W0QrNm{cxpKE{@_Nr)Au2n(PhqnZI09J(fazLn_Xvl0)moX
zKm9&-tJ(d*K~m-?mJ`)b1UbwPh+LKd;KCe!B@>d|fR_`_JJ2sW?DUpb#CK(lpwKqjIk+iCz|HyIik|?AL
z)rL;r_GEp)$T4sDt9&@nfb|0t@>`M()w9j_wF(Y1-gcl=9`=tvZjvX)`NvrNqwevI
zI2KhY!#ic>=}#ns+|ZVvBM)tbZ5e>yth`0>7|+5>+Ee}G?uoi2!oliHSAs)E-N(j8
zSAmkcN>q8JC!Q2hp#x{rafC_~E1AJP@h{X=sL;NG)aLG7X9f&jmj+o$mI>1tQ(CJ|!WV8jRnpzmyAO5CxPO|ZeC(TE2e(pR91j~cS2@u+QyDBKEtTGioHQHH_=YcZuR0t
zLCS*a+&lT^(27^V*N3TAo}GpR<_Uw>l_UGhu|WoFEZJ3P;6}RGV>$+GbjpsTXL(9c
zv!0kCkp!7T17@=oI%gS6t*ME&_N4Xtp#VT8tpT6Rbl<^F2y(E#sU+jISV#e-?>Vt=
zAJub?)giyA7?K^CWYhGK(NTP^~i;IgZn|s}Rja;s+Ws|IX
z$;{4(%1BXtfA{wf-1~VvKI47PdA-i_wSMJr=0-zKFTBnSmS_wSQF0tQPs%Rt8q;ec
z-R-0vIt-bc&;I<&oc^N61Ar*6s_MV8$N#P2I~u=hpSue@M>
zKkl(gl<>4wW(IHi@Or~SNP4%Y;NK7F^>)S`*`a$WvW6mH$FDutDh9PBJAvV_;Ik6f
zb!)XgTep8k`v1YW@6Uijvr)p_t({LeW-lG^%Z3ceWYWejE)N!Uq)DS4hn@-fqz3z6
zLN;h$aNX<)u&9C@*IIIe3$zy(s^%D{yWlD|iM3T6=@^N}kR{kc73eHkSihR_
z{5G3i*P@t;OVbN}$a$|gd4~it&jU}D$d^=)>?m`af)###@*fPM$AU|$EQT`Lk_h3{VmAlYakDuXGN5s6;a1h9jfBMqHpidP1d|B5dW4t3{vw4YNX{j$pn5OE|cr~9x!JBG4MfdWr#bOa+IxRc;x1V^;zPO
zh`!pP__+0G?B@XFmwMjZ!`bI_NUZ9uFetNx)MAdU*z@^=c{Ka^7pWowkfJdY1FVphlSLB*!S9n~r;g)FDn1t8^NKGV+ntU_);sq$v
znK!hUu<*KPvRe&QPFlbp>YeEo%HaWG1i0T0c92Yzu=k!Sho%2cNs$vw?0UDc5K~qd
zu$3pTs1`J*x(q2VCdpb4TG&-}QzFCV89Su?MfwXA0oL2%Qhl2vyhh}yV?C`%4DP~g650J!Qa^)FBfQ`(bF#3R8h4;I2wZ+xE
zEhqKid(ImWtSnTNV!fy3xN2dNQQp6&U^aMcKS+Ln%q3Ui-h9JGJCx(jFlTOGKVex)
z^Clg-YPpv;SFjlA*(kI+vZhIcsSTKNx0Q;Lt2w9aZ^!ILY=pza&Ha_9mF#S>M0@cQ
zyp4PGv`I^yU)3Bg;-4~n3o3m(@unY_l#Z)1;}cLxRaygVZJoE<-58w2;v!f6Rx+h1
zZu0;&cVf@RN&WyyFI3l)OHn$bg$Mm6N!jN1oq;z|Jara>&JwCUuMjKMiKW%I;C7f|
zqMI4#yNK6Ce&xs0PMmh6PY%+RrNsFtfOeOqnMA9hiO_v1Gxk^&aGHpJIFN_ZS`9bJ
zlFoPbWlDebZq#+_%D@2URp@ae4Gjw0pI}wk3YyG6;j7@$`Wv|vEG=D%lF}|
zW*qUuhR2*Ho?Uxa9XCPv`2Y(QD6tp^ew;C{$6TO!(J{i|^+fJ+qJtzVedFTe^hzbk
zTcm#sYMJ*udlnh|1)535I96|wDYT{rBa_sEQ7qW_ktdJ1gY%%z=r$Wj^v5^du8Awz
z>{-v`dF0ncF$s^K+||h{eJ|K#k4wz{m8cT|a`CAa@3#>>t!k=0XIAB8Bf(I&^=&zm
z68yV>+&lp-)msh}egRxd?FizBy+v39WYEzUL3}CYfxhRn_jU97`<|lky^OjKD1j|b
ztoDpN45KL7*v-w|1_uWZ!_$WPd^gDwIiYwMz9^n`KycxT)@Oa}95Ee<$7Ldhz4FXIW&a=yZ(G9h{^p!xLSfQ=bIo~;ftrUY*G=VcpI3kOxg%H2K=B5sm5OWmkFq1
z$de<93S7)w{FBNkUU;?(8t)W0D@d{P7)TlPgVHdSLt`lW)$lfyFXz;Q3~#AC9qMygZ$_sqASF*0f6&g+0V`8_9Vk#@`zotR6EY8`1&a1P|
zYGs4i6)l`|rK6tAoYPFG=;i0)wvZKsE>LeV+MzuAYH3IA%*ffYC0~4g2JOy#)(QZ{^-Wko*4j$`AAA^aMB&Nha0jm#c
z`nKR-R)D$ozNWL{VVVA>x2gSauCz?}Nwfl_-K;>$j!EI5&Qfh(q1zZkmHQ5P;FG59
zb9Q$p7vJuY9K
zuO=()du=@!@SeWG1*7M0L8=5w^&m7g5(RWz;wzgX2c~pz4nN$*el%rFo}dnoSnOsu
z8uP2>I2FTkGBQZT4iD|ONdU*6Ad2<-EU4iOV4&B}K*H==fT&z^ym_$m(d)vF3vsLJ
z#jMqP=Eas7GF?>zUnWu>q6jjAQj+0n1tg+m`HKKI%2+?E&m}%EW@Vx&?R;*y#}(n2
z@(Zs|RZ`DEZ+)L4jte&D6VA2aT|iAp`h$P+Z4ZBcfI!@yktS|J1FT`wYnE#+
zp4YvV?vNFmw!?o;UeKJfa@y?ucC%q_ZVFegoIVfZ1h$@hjT~83Y18J>u5NPt7T;r1
zQdJ`3V#FEGhVeU-kaDf?dU=E6*{iObUGHA`MC{wbYBXm%N!@=GRWhciDjnGY5RT7D)aK^TNz-|4YKDR+laOe)W!-k&;`Jez|l4g@`ZI%&QTN~
zB_!f>z>Zg_50H&FOf@Ei+cJNpps7>r)Mmh@pPk4y^~&hKXjH5z?GTe|aGx_uI?)`G
zNfZ^JB{?PNoRog44?}7ldrYlUl+Ro-uFZXW7FQ-Kzbp&K27CX2)G#W0eW^2G$CaNy
z=U$xy?!*c$G&HFv>6#mE3xjH&VyeuWu-nc|NXC_qHdvZh*&
zw-j7@dW|@&^igi=#OUX7Ur~I!(m)eECOc@)zffJjEjX&;{DqKOg;khS{~0}Q?t(Uz
zi`ogVC{u=yT{VS-&yElHWy(z_Z*~QIy%2XewLIt(ea
z$Sd33n#Aj_BwRF-{WDd2F9$kj?m4BghL*v~K!iGQu~$YXqLFv92nmqH;WAu2WepWR%q$Gy1n;g?O|zkzX4n!>!qTa0DZjQ%EHOO
zibYDqSetQ@j$d*HC!y+0SyS93`ZZ(vrX^$csaKpv|LDY2UNJ+$rWMVBIgJyxI%)>p
zHsbo*ldkr;^@w8zR@cK;;&5pV08(KTJ@Ejk
z`VqmS6vdpY#=-f)-GXh&4HaI8x)2@lM1nIbJYr&~-v)YKMh3U5GXfF@=6qr=FsK%|
zwW2(1z$2x;S#!2%9I3{tA?@kJK^$$V4Z9NVy7=+Y`5Q5THPoB7?ZsGZg;bMzpu7ZI
zmR;wrQ2w@d-IM0_;zq&ebvFx;DRH5AQj;F2vj421&swc&f9)Y~>DAGZ{m%~&*z%^T
z+IOQga_Q4|Ch6sPj5p)mpR|UVHdq_5D9V>~NrR-|>{^=>y!JP|T{j)m1fs!g=@#bQ
z0W>?eU>YY4$mvZ!t7BoLLbJUC{AF&d9u4+PtU_rZwubPk
z^V}yh7}N7H!3f{&Dq>=3m3>*?$K;7|gq&z`n^;t4rxMkm!6--hI2KsOu*_W+&dtG*
z&u67se(r|onF(Jjf7Xww=9n;I;pQIu`)1BsSBqkBDWw}cEd1#tD|tV|fFXKSD`^UJ
zDun&;pu8HVx|mZP+6UdLO4RP?Klx|=_%bt>IbcARt|~08i?F5kZp$-F2O)ONq1?g^R_nDVL$X2)FebxpP`$kPfa2KcGisB61)we}D_KjVmzlgzwk7+{KkOYD+X
z!bRU^<^9Jb)8KG{^wsENc7K;O>}W4x_x!^IY
zLR?T&o|ssb-xixWZBI}8^v4!icr!zNjx_W)1tc~+Qmkjj7QamALAdS#o7;~qPYI!R
z&>`j1XtIRJe@q{~nI|pw1t4?gj%X^o^Fp^2pE%vPd4JeUD*Wmv1=y}cU#TfaHxR2P
z@t1Lr%eFp_lz4p;7#Y5PrF9b4E6p3KQBzEf`0G9mr0AzAs<4GC2KZ!VpHIFA5K4Yu
zO@3;dyMw6UDEKY)bl~e@O$or$agg%+QpBGyYLxkgGC+Rq8ISg-69N9^^75hXi}q_p
z6@T?5?@N#NFhxIJ-DZh(ogQ`bCJflP
zxeXcEG(J#)zO!J$7Ru-c)9G1skn=c<5iePpYpwl*{GLRz>10#_83F%3R=yjv8P!(_
zXGGr&JJ{SyHGpF)M%=e-8=OQ!ISdaY|4`MgK)}e>LZeQbO-PIQ8Vp(+CK90&VC#sy
z)L;W&Bl`ryfgP#xYVrsKp-{$JqHi_THs3p1OV&-fJQriSmQ@ve>)So(3)fATPk$Y*
z+kzea7hEiiF4N4MmARo5<19UJP7XgmAyb~-0rp5bFI(Ds4n%U5zT0NSez=9Tf`P;W=IXxj*_4;6N6{9
z@6FCFh0MH+n}g}-)u2oC5e?y*rb`$+yfaiy6ArEW$Iu}ySC2O~U6$L?cR1p?Z@l}t
zcQ)^AMo#}qaAdT-XN|_Zgn?4=V}~STtOG#plDIn=uio(4b#wF(`!DZu0qGzhKC85E
zU7}V4oFW>n(EzW2AxnA?j-}Zqs=d{9`TBhqs?tf_^$>Z6N4=$zc4JsrJTS>a}<_x3jt#fvo;%!;}jx77>lc-8cv**xtC
zAMj987D+%!lyK3(qnaZf&NgHtz+}|RfERkjDtiT8&(Pa#CL{g@`BiFa?n5S;
z0b0o=!rFtvTvWClW)2DCa$x2*O^C@+!@4l{!eS4S&KyoUl-HXtl#jFS|GPYw({@R<
z>02`SBeY8)3di>a#;<37g!b8StsdF(Z5kFoFO|0mboUr)zTi|3N9^yE{`C6%?1t0x
zAuD^&{yVFm1C!4VG1C>LoO3xrD@kb|{%K++RW1%Nr*ghtw9_{BqhH*{sAjHAzH08%
zYCcq=L4snb4lZzh$1_&Y^k*{78`c>@VTa*7O`HYdX}`s@r`8<&J+8vG;ja60W2*=C
zt@1uABg0ndj`LxkLrjNXUTkVhRyyLjW_10Lyj?CnDbh#up=3!!qH~g@Kf`H|-@G9b
zE%ed7oY?E?N>Jt-Hd27)z=j=+Kp|-X;=VZv$8?JgkcoT>{wLTl~Oae&+C(h|KO_A
zjatLhU)~sm6?l*bKyr433PSq1TXRLo_ylK__(8S2kjw?wo2lJ9}k9D*U=o-BO>$Xu0Y6gf61G2i$m-iOT?{)sG_|*uEs^y+e
zWHIXKt_SUlN@k!yyK_Vns2@?F-Ce$TAcp7Srb2d^0$K_mN$g&R=xmEhB1nhkA`@T$b
z@Gd>`?+hb}#@@GG9L^Bec#eW_|=5Ch-_!76J%W^s_w7-6Z
zc5_S(T_PGSGu8*VH#=k^0&9sNX3ejcsD@lR;ICh6uXu}Tv%?`&I8Qi#OA-zZ&X+)y
z7$#66C!Jq&_QZ^pYHJ-^{<2*By3N6yoBz5t`9G#>{csQ{KO>xOyT-`#Q6Anq_H2H<5lG(LZVd6`*Qw4_A_T
zQ!(L8QAO5l@hfxj^tBp1u@J0@0pfTgD`}K#kGXH>Ic=KmeEc^O5diiI4cirgG;2jG
z=}6DSO`g6W&)SuwtT*V<^Mj!`dnKm%XxoPD;N
zbnh6g4idCf@1$p!fw>(m(6CB4&{HvWg85KVtUt*;(4j~^Fx_WBfrR^(U&*;-E*$c+
z1>Tj(>@hRT9B|*Ea5HSR_U#U9ob;)QNqrUWWywfFSq;iZ_oIV$wCBae#Vc<)%){##
z0jylXZ+KquDNqrsE!=k^%C=>y9R*V2QdSlnNJm}D=u#auHdR06A6nsTKwvLD%vjMW1tqhK-wxLz$mYL5TrT80XJd>QehL5d;mZLzcgxW#Nx(t(nB$5
zT)_1@zn<{d4P%lNNt(5dB8!o~iUp65WlpV?p2Eb{6;D!^b(=Y-h;q&Qu}O3W~Kee!Xi8R#ry
zjibE=JH7Pou_{;na*Z#ALIntJoRM=b9C$M2oqPuswT`g@tIErreOnSJ&l#*W4KJMQ
z_{^uGDU;DH*olGG>cPx*(Q`bHTi5&Vn#1mxUd6h
zTp;bvZI2O;vy#1|`^n
zPtBIHDlodntkC1zR5(1s)qXXJ*EYTQ9@rP6->N67yrf0kez^?(H@c|Frla$iZ?~h3
zlDQ}R<39Ui&&{7+LbUNIsCA|E4vL2fAs(zdh1~AX3d}j_A}-UTb##K-ED|%XQasO-dan-4|tH)GSF%FNage0^^`EjsZ{f=v{Mn21~0VzPiJtWK5
z_e2(KwizJ`VE4_&-#ssQ(nm+@NRJ3LgV)jM1cd-`{vBUP@H_EDNyO=_fnOGXpyR*4
z@l);Ub6WMhW@&`J0Br*U9%jF!9@Dy&%^?NEX*pH49F)3c#MA5Y3plL1Ifd6aaKMN^4TD&P73>~AJA4A$Mb4*9$A
z#ENeC_$WY4&1v$YgJHQhF6Tcc3{`{jrrY
z_KIs=6z8&#*de%8cCs=Fq)63nx13w(cimESLRCM?-SRA!D?=IW=T1rbWMD?X+la`#
zBX)zo8C`!)rcGx%1NG~Cr3v`|%ZEt7J`nR}_8sg;BE~n%Maq=yT6~MtfOcXs5%Le;
zd%l}O{c&1Y7aHl@%dWmsN{R*tbT?C;XjIkpT1h~sY|I=)T2M%Xocqkp2%+*z2ssal
zzOI{p?IKagCwg4M~lD4Dt|-Ui9tCr|R@|D=J}8)qIBOB
z?4Cz$d39B{&XYTVUOxj=%$st@rm>ZT+FOdM3Rw?V-d74S7Us2%C=V!tG7?T8-GQ&D
zXs-cxIrVxkMxgTCJbw)>_1~(G%G`?^MfkzVA*4AC27!*K-S{e{YboolG%96vL-}VM
z`LC->Or@3o(Z*Dv@3#?RPESyK`gq#xoxqm*&62>z2!N;7s6=W;Q+r2f!0=#J=>S4K
zF+kW;C+z#jl1FKvyWvOJ{T4P9W0g(yYwYxNYf*Z$*RBAmQ@4*uAQR?_5)Bw6q{Pz7
z^v^u6;|7?c6wVWZzhQ2<$55XpK$V8dV)a+WH5PM4vQY?y@xcJ66aTxeAGds&_m
z-}jA;7JetlV|{D0U|YGZt1#{3s9BdcvB1U=?2!G-lM^d#XPm|W>F+F@oolR=dnoLk
zSsOj5d`ikd#t9FNq*N3uQ0yR+Fc0KTeMUldfK^J)9b>AO)(louZ77XNu$nO;RM=ab
zpV?+Lj};aU+^)&KlveWX=U-tXuiNr=PlpF#RKX4@o7)K`qDsBjiJM5tf?BDKCz9vyzW|T9_0oRU6nf
z-i1Z8t;g(cjlhj{SqRxmlhtYccY1x4##ZI*A!EZ%mt*PRVaYu)d)ffrDw{5m_9(D`0z)-%?MMOwwWp9f^CUK=G^iz_
zN>UT7_44C+f7d6@G4G1;y?E3mc|-xb`hCI7cwgeCa^$>gs~7=$$D}NL)VE$4c4x(_I3l5`
zzy_<*Km@)Tuuo9_a}vxk`DEF$YcZT+))GqBz>>zDEU4Q%a>ySHj?e0--Shd}RCpHh
zBJ$<1nh?qy&h$JFG$E@-;9&#~j@CaodR8CI;}jH(qxaKR_Ejc51ku;@P56k@Rd8wCAaTiStiZB!gYEo3No^=HPMXhVS;gV
zh=oX=EiTL!t$#-Jw)$=Hg#3DuuJN1mMPJe~Se|7t4DQ`BGqk<}t>m88V=OkJ9GTG(
z3XnbO=MLHQ$<56!j=Dt>z=bd@MK@~q(&{F$+RXrviv7@Mb1eeSUM3d2Z%*lXOL|*7
z0I9D@Vs@HaQ3{TxM-S%h;dBn-i(jZ0Afu3%NhPyUuAC8;C)|!ly5V@-k>p12<2oF3^)GT#l61DDoKzIy9S}^_jw%RKTbf$1AQt;1@fhrq`9Q7nDDEy@qh6C%zG+!#ZnBCHT(~n
zR*-;i0yuv5cHDf~-6_iem0rG|U;UV_O}+I}rQaG!ZfqR>iRrgWFHfdT(Kkr$*`|0&
z(R+bs=RUu1-7-n4?V-Dq>r7{H(=nxxY-nmxp;=Vptd@9r?Q6ei?_Jp7#+AN
z2^ZIjYldS1;3$_W9!8ZW!8Ma_zHM{QX#FE~lCEov7eH&P49?t`>aE4^@43|
zYmuqF?&W`CTE0xR^EYruYHa%E$y}FE20m1vUbUXsD$O#jRTv*|@wC?#?UOe2x^I2)
z-fIe@g1UIS%Zo>*s!#jjTlyCnD?PhwI0hnJ%?r70+El61-m{imAfRM1e3j4zA?O6v
zv}wQAviA)Qr&|0$*2yA~5(H+1oGa&Kd9zXJ!8*w?pLmoRUpy#Ko)96QWgfnleE^#r
zZyR0-&CUN%@lFHt=Hh!a(#Lj^s*bb&zysXZDpfJZ2tN{i8npMm%dg5p{ZG$c2D9M7
zIrOM4GTk!zHM$tQYMEf1j+9^GSWE2&7{~dphMkmM*JYSvbl=>dY~>`FOTr6KxlsLl
zl+bi)%!7)`$cbo15--wk>-Y(;@G+x5#(IZO4RPegHi+U)M4Gj3&oyVWCoq^>K^A$K
zcZhX#q1Yeq3+y6aXJ5gnR&&qt^MwCx{2b7=fTBo_$-=-AS?PbDcxbGz?k?}d@}eth
z`gaw3_0qZ-B;9ZAr)+Q+o-itmo^upBjA01m5?mH%Q?Rzc{X6nZ#p>32XAIU=w8plF
z{F+}!E3kc!UAX_f{bhiKnyw&w!~krlPYd}U6Wo8(R?88$iIwH~+$~Bo!u}gJtMxtD
z{u?^mrHs4t@Zr)nmLyC3x$9yiy@3PBkpW16ue@&@8ae>|DsgR8>0#;ijoJ06dK5sG
zu`%%9*xgq_H#%%8(E4rrbJ0&+|7L@$-+5xNw_-y3M1Oddv*F(G6u
z+aO_vUZ|_pd6=&-b-qwS2nH)K1&|y0)^SA>1vIhn9&fjE3>1YBT7mIL-91ztau6R}y
zQ*d(G`lP<4Q%WA-65}lTt@TsuqRQXoj?j|O^;dT?0udL!pS*NFia`owPzRuPo!pHR
zu$Q^w-X56~7tmqq7Xw*|TB+qKy?W5THpXd@_U+2|$Sr&&3CH4I*90-{Gfe%7keOf-jj`hn+t+~=Crf`_XzLoxt*JU2jy54p0y*Cb7aq#jQ0}I6
zix1fhG>nB`B~Z7SgzYLvUDp8s)mCk1;O^N~S19*Hv_vG=PaMDSnzt>h7%Mdz3Tq~b{zJskYl)pdG8{^8v?IVBQd4vE9j$qn95UEb-q
zHVGql_cN&bMMX0}zIItg6z8*DY61c9=AopYQ_hfy_QzcVqnRD!6j#B%0tGCFzx1ipV#f;I3Cmdv{;e3RQ~&*EHV$BFM6a~SKH=`%3(bS
z&g0v|5YFVrXz3s+n;U`gR+wEb%a*aI{pObe4$UK;>bLmyJ^_EtWcE>F_0l
zujM0QXeyx^jn+n2_Ps9bOY7kfQa_G7_!*a1FGAX9uxl_nxp_S)O}=@7t>4)Lk-p76$^TR7Qn-(((eg>Gokb6t%NI
z^y--gNoeZpfOR&H_R_I}QXpqpbG6GB3i6!e)6i->F-2TN7E@4sU|>lMArYWXx%WWF
z1`MTG3NkgR%}qO`a!#17rg%bVb+6*Q@P;^3HIS7cQmY^_h|qEOOip3I7s_1hrq6b8
zTO7Nv!mg|62R$sI64A0R!lERFE$6KwUB~cCv?J5=V-^^RQ|j;P%4-H8!?^Mx1L;{!
zm&w)xSPyMIE}7O)rSeghMJHTW$xeTCEk3gk2M^oY$ar7e6;z2one%e#uydKBdntaF
ze7N`cNZt0?uMMr1hk-cte)>o!i;+Z^mut&;kACQeHv!q&@X=kx;u;K`NF*}43Aq?V
zBYwx!uldPlM#RK!gAmmuXcGQF=0kvggf0$=B)qM2yZbEA*%==0RsAj_NB+Gwj(PXn
z$J`N?Xhtfj^WNWdVRqMzPrrl48T^m+200Mi3eMMQuGJu_ES7h7Tl?xKMx2v>Z0fV!D-$0dSqk20Q*Uut
ziU{NlfGn%VCeLL@xQ90R{!zRk(Y0ku)@f7XSBRn4e4Hg2=~w__yA>{OZ?fDoz}6Ff
zGj3$_-fk%=Pwe7{aO!zTjmMKojxOJ-`BRCgUJG{V%Zlmc1F(;@!niovgCE@RHq^Eo
za~q)AZBnS6C$^2SyR&c`5i`s_O>3}lNvNC;>;IMe*nXGVYNv|BC*5TeMR<>Pr_4u2
zlqpBz_&snqUh%Q~zc$}MOIICtq^+pF9rxYLS}1b|{4GAj?`^CCBJKTaKE8KEq8smx
zns+?A4V6+1aJe%fIBa&0Ma@9gVOZu3lrhD&cxbI>(O4bvXz@#kLz&tY>8h<1%&OmLh
ztW-XZ@o@hPbYRZgV|gN%8<&nyxwb{j)J+kS^-3BQ%w{y6gq^w%6@oEW;ikT#WqBMH
zHqIY%@1zF1!nj&McAv#0zX};77>9QT%g4>Mk=Z^$GhA4U|(s9`#qi+6L=&!PQ
z%`_UN%hf%3(tXRqZf3=UM670HxAwmiFV7Dns_|SEXM+Fz6{p)ZDe`On_smvVjw0u;
z>c)q?j4EC_I^TWMMKu>lGduf^-95HjIGj~1>#4pF)9b(Jt}zxg{*&e})jKhFGV(4c
zikoDS&`)8#>GK_~7!nRosTWFcGqG|KVwZxda32xd8V4z9FP%*{V)^Le#LykU@r7B0!?*>y6+Mk0&Tqz*+oT&s<@N_>>}gw`NgOXYU^9wdoe+qwn$((De
zzHNI)_}}s)&4FR_|Co@-h8%te-o1Uk-*WTXkgb;>_bYiS^)*||&X8xbk?1B9_?v>6
z8Rzr%v=u}R@ob$I@&icW*VanzxP=z*>16kvJ4t8WmN)7fz(=*N2&*dI;m<)O1;#dByZD@K}k(qMI*RO(T
zmlPo_>0657Qcx*V$L5Tz-7lTGK)u|}NT0|##c-un`lpFR9|#z^T)h-cOLU7B0ZDS!
zWD{~qpFUAQ2a?5J*5FE1jg^wIO=df8DUh>guuv~m;HKH
z+WlZN$)SS_S19!iYi(vu>(}Oi`kLDL{FY&l4P1A5otmJifUs=Zxl#BEE;gVSH&}=N0RXbo}hp)YSp-
zl+TJf{@f*0C28LcM!_d3mP`zgWDVbYYKyPGdfh@i0oAelWC(`=5%)DUW|_UQth1H)
zq+)bse08VUKg+YZ?w4d3eny62quXDyNVK%NC@y*3PY#J7^L&$}av{E?xE09MB+6}V
z0gwytHPTq@vC~JHfJg=bCPb+yGk=aA$X2Vs6}cs^1f)f7H5}N`m6Ty`3;68qAo`<%
z+;|bK;P7kg{mtN$D=lNS4l}TsuV$A3&I;nZwQ7#+ry@_{jahP
zEV$oScp&!7*`^&A?mx`}c=N}6X|Wnrr6e43R>kr5Ki<@XUQk*B_TszKD8IDZh8VL7
ziDni}5>u2TGfBTSBuyZVwlSW1G3$eGI;$xKKiMy0O#O0F~1jw%)W8Yk3K7
z9qZaP<*+3pW`U}BNgwAk3|*^C-`o*+E}MWOrTZp8P>-s``PPDmmQPBtq0nn-3ci7?P3CqR2y1eNO=SRuXOHW{1=-CI@9gk${lqi)yp4O#S^6VLETft!GUNQ!mNe%lZsh8QTk1vi(uxbIoP^DI2%*e@tel
z3)+lD`MH>A8(UjbdKf$xmXqK~h_5%X+VD;@kr*OM6!iG@Aj=dq-%Kx}HNy8A)mI2)
z?1a%DDZzoJ?_0?rAp8pCHVSM4J9{s!w%)R2V%Upemzl(?6sNnm5gkj%t8tfjCcsb6
zUeq7@P|Ta+CDOt5V2byck)4qy6(D#SmhyR3P
z@Q%*KDikRx*Y>PMX%}Y3O-4Qy3TBLSskEHdy^(hwfJgEO%CA4<=}AxdhWv%{!y_Pa
zY;w@4wZb{#Jig*rIMnb6ZY)hQkfHlR^tC^Mdn761+oS&2m4-rm_7go}
zb(tq$!&3QMeGXvb_gZ7$*i41zHX;rR{%mM*=J4dBPJ|L++mL8Y^Xd;~A(vsD7H_}b
z{j&8oHu_HPuP2TD6U+NfCgJ02?fnuumUr$537UmM_b$3eaCc-}&72$MUF`2rhLCGC
zZ0$Fy!`q{@QU4~0(Yc=A7(H7FVU*0Ull(V6(txOWOII2g5|ITEl4%MUrRrPryrqI#TB0HolpLhRBOF
zg^S0LfBr^~Z<61#+IG}OV8ZA8SpSDVrM~rJ~FA>vors<49Kg>;kuUvP!T>aQh{5=
z%@<&scPmTRyV{R!5mP)ftgN5*St1U@>7TvLxXtN7Eb8jfb_tXs(S%D^=jw!O1$thm
z0Ow~{7o5ZyTZfmSpX_^-YuOFI?_I|N`}?7mwk5d;evmtG-42()gZPT<1w;DNSfqd5CdGhS$%QkGsESp4aQ=|$=_C9PwF=&v6vIbVD6
zs2z-0yr?22ys{9YnB2~twS!edFunxT(wXiXWvg?ZDLb*E2ay*;X%w0i;02LOdyDzO
zMbAd29oGEZa-!s?nXp!gVx4&g8rOEgzWt@A2gEJA*E-E`{JDE>;$fniGMH0UGO)NX
z-F6k;)y~f7ql$aya|{GcS}GGmVzO^wDvBNCSq$?nW|BaC?r(&x5#ix=Ho`ea=_KiR7`zns4sZFVC;x%z_
zn-1V$=(g96)m{C&j6D4{vaMQ0|DE~SMq=v;i(=&hf#3$xW-@TLAWmJq08W!fRasB(
zRkOT!N)Ta)K>hQ711>yJ@!HoIXwZ1<>K(N9<4$wYmaNJzi)j`k757IT95!VdL#^IT
zAyZHzAug~u*L#Hf;_*JCTi}Rl|JTZrk@*O8RTfh|RZja(vIbX|=*x!%{4xcp3k!yi)Bd!D$QEQbFF?I=_{1
zgFcfM7})M#xUQ}m_;Sy=mNQeYVu3p)rPe&r*#g#-vt$eHjBD1T6p{ZA8SPH1DdB;0
z+yB~pWc;aiaAiBhVY3t1@r=XKqZnoGOpnsK*f@9|Qg4%_f#rjQjt>f^@GguxZq+}U
z1`l2rTYZ;yQy*$1Zx?{ettqXkPnq=wGy0AsHs@;IQ6QYd!bBqatZMH4@V$zO2$7Z9
zt<(WV>^M)$RO99BhZdQHyYFEjZjIxCzaw!N44Q;+5;klYzE%4+yZ`V=>lhN+RVc0R
ztox&spDi{}rMBVW@>XM;NBz4=5BL9=L`&;x>XP2vaQI_LC=mj)F}FR9p{
zG9V%bUmQDbvbQ0|BgEAEw|~*95KT$%pRqQxTJv=mvu;qpDqW*+O0t#_ZIyoii7bgIZB6@lA5`5*{u_1M!GYOi^HUkg`M^*QhS2uQI7VEmk92RsC
z?agUsoywnvlImx(Qv4A4v2T7XWVz_3?MVlCN+%F~H;^Q|SS#*^SG*v5!30JCQV=y*
zWA@~t3g2yf_Fx88m3~eHr&*R}!c{5r=eZepz{Oc91phyZ&chMv|BvI9C?XjrJA11f
zXH&Mb&)pekg){DuEwiGmv)37AbMDUGqmb;Cb;xSiBZ^3&zQ51!FZkfx`}2A~U(e^`
zc@YsY-{BOFZi~##U@>i%**=>7T?bL@pe6oV;YI*4RKH{F1cc`%C&A9!_D3#*syPSS
z)Z5{ML`ki=Gf|aSXtd8#qoB0ljAeg8S@p=HLxeA#0rzB77s|7mmm|s~>bh`bWq8sq
zHtcy~vE`@UM}Y@rUmB*IPCYZTkSV9K)9`LUOs|y53IHmsvbI0pP&FH8m8REyxO46V
zu2~GU`P_yBuZI#3R#rjL!C+ot?`&J-x?;o<)sFq)%I
z|GN}U$!n9Zuyxxgu80Z6?XSEc33{`A(%jO$aZTgbcluXRUDf7!O2?q0JhSiX9w-WL
zzDJQa$Ma#>%=iT#L|A*ErByJkDz~77lMXdkJrv@G5h9XnDkt)WH>VAuQoe8Wha%1Z
z|IK4JeuX6{jeta6N_#CF_UchHfw5g&FQKS^D$21cRE!W|6gL%h)pys=00_}mXfI_3
z$K@5?;0{bkCsyc`L(7ImEDYG0c9}zm$}C8gN$bLM^2rjGS)Ib(5hn+EC1s-%7AGMV
z;ppR&f6A0}=11jmMu#=(dCJ;x6D&IH*Kx%NX6V&j;QBNDp`fLeKl$H{wQ_go8hogg
z3~+E4_I#wec6jf>GF%8IHjC77Qz6Uk8od$&-l?FR??$v;R9wh
zgK15h8ApFdkMnup80{62f8qt|J>>=0tD4u{y~}|_48)Ve5_XmKg@EAC$w46r+_1*U
z?t)W@LHiJt9PxqHpv$;Nwq?FFrWy^O_5my~z{3r$I-Z`>VUQ~-Hsz0@o>58};AX>c
zSfeRLS)!In(2FoYiQhXBIhA7#-VM#oKipKJ>*qmuT=4qTUOh1@eM=G+&A&)uydm|(
zgT^ePX~nzL8268%UFL-KB;>juj9olN9baRW@0T(1!SQGkDOg$#LhxrQ28vx_3hM5p
z0p^Droq>0$d}hXP|j>wb*@>SChbj;4DdQA6Y@+P|D3N^bM5)
z$_-xCnC?^vi
zGN<_lqbfyig(fOBhq8fBpHb_Hdh*ecxQ3xmM0*8c{N_IUQ_mL4HSY6DQTuJL
z%1>=o19N!pgtAXGGVmguN9ya~p{&a(2k+CLu8KF8uYb<^H4w!`Reh`<78Lw+x*?su
zVf;p4msq8s&#GB}Nhb24-b-zc=YmnSW!29cGP!9v03Rq-#@Os=+IiwsbwQ@VYBoO+
zC?xH9soG3ezNy{$whY@!^Q*gAGZSdYll-+LEMvQPU83md`UMnnQjs_m;SAqRB)U0W
zhxrZyA9&syHUcN&{Nq*>nIx_Upn%z;MQ+X_0)80u{#pz2ki*hd-k|dL4!bj28)*6W
zZ=1(%zsXV=8L|LmgESKHH5P~XS{CxCsiDygy5Qo9t3rmym)@k$|Jp+B#SFdENq~T8
zg}KmJaq;`jAQ(lpP6cU+boF>Cd1GhL+?gaZ1#hDJWDxJdKgf4J&jNhcLH0
z@ySKl6LeR&<*J1Lgk3t8?zEpii-vVHbJX0?LxQyaLO739;4jtq=c?JCz)Y!IVGD9X
zGqr)P0Vhkk49(Gt!A34mKj47PQPZyhf$ZB-0mn^Xj|`vrNd#=zL7x)9ev&hxT2n?r
zgxJ`GTEDOtny)@4szuD^ymoO#G0a3Ssl*y<*CDK@=UxYTe`tg#wcd%bj^C0*~82A`qDWzkn;->~y3pxKh^Zrght(OH0p$_82jnc>3o
z7wEd@{dlXls|R$i-SLvSRM0y4xkJ82qa@0}n|{DR!hNo2gd{nr&5J72FLiR2ZL0s5
zMK|p4UE6U*a=zn6A)~sWtRch0pd_OJaF37ez>kDuh^9y1wAbUUDbJ
z?lYyCd47#RNH*B6bYs+ECNe|624eGGDjVp2-1Xy6Roa9;_;|k93Y@OjyrmO;Z~8TP
zPQuEv6vun@;8K%4NT>zvto3~@5#~ykbp1unBnb=X-FN+A9h_Ye9yMXEp=yV9+Q*U*
z5r5a;jwR5pxk5pa)tDM`7ygYfBcU8$!Ke&Z<5AAp#OuzjQ}dpt`UCIPeJ&_VoEM>+
zU;k(W1LI^DFHO*~ssJknC%+ANr$uZmVHv0msvWHkkcNBFDc)zlW}%p;`2e)Cb;h;_&W>kvlV*~|0#;TeTUIsxniSHn`uPgy0Kj!uF{wx77TO0;qq
zr&QdUT5}on;$8?1Hv!0AtUulc|0&3$BkrnBZItRuy;}%icLQ|cOW#e3M%F%`PZ@{<
zmou|mAfr}GX0Pfrr%8r7wxoPn=*xCEqPah^(`ae?G
z5P>QD8Y}Jlj@cp0{6W!~uC~FgSv|gR7@&4!kg^*276cJO)@ph(LMK^Cb(p*B7d3;P
z{SHU^5?42mshw%VHc92~tNsf^HP$pV(a)#pu5i%k7{%AQ-{7HUT#0s`n$QQ1*{G%3
z0M_|Or;nFwP-6$55*Y4ktY9(@z#N{QzB9ze=l&H(RxQX6M@Kkt{~CDxPX
zTY49+QF)$$(ssIP*mP_4)rR;zUeoIpG46Of4?g~dz)QHbPaUUvwVnqn3n~9Z+t*)j
z6wn??G$WuuR+hd&h~qVy0s#uWI8bMm4Z|#1sB(`eq0?Qe`40a9C%)0|V^6o|p@y%M
zGx$^bXPxUez1jsRt0gtj*h7?H#aKK^4~L3hvxb!l2$cB)k;&r56?wvs_p9T#f9!zU
zz1Uv^AT|2AHorjQn4Wdj)WI~AR9lGI(A0I(I+A$Ve4v5@IJa-MS9j%@ew}^wLiA{3Ce2WcfuvmZ!Us^#R*I1mp@1nir>Uu?*y$qj)PuOq!_Y0|E%zZPNXJ$OVt+i-o
z+@{gCod4pnp)BDmXT2CqS}*Hy!^X+Lrrrynq7Fl7+D7FpEieVGQ+3-n7m6xg3AV{_
zP4GY~#O;vk63RGbZo(P?!_2-@iIyF-w1i*H+=S$M!)_=s{}H4VtCC>GYMz15?0Al}
zyu4qd_D5bMjBDML4?g<1|Na;x_iaIfj8c9p;!2xt5JZl_b3h7Ua}zgi&``rQ5gEM|
zm$wJLceO424malgxl=Rrf=e$Qk4reuDj2au|HygWscpy|khwIM9=dyRQ@$LQq+%&V
z`7xyGr<`wsP;FI%qWr#Tk{!a(_&4xFroRlpA-KZa9pT(#pE0SE@3f8Jx&Y8i17{ZwSDeMpN+686NTHk@A{d
z4n|q`){$V%vqiMzqw6AlYt@0Dombsu6+4LQrd$;5VTd^!k@b%fpDxZVl7e8zh)hpC
z=ede~@W6(D(0)5^Un-x5|5G|UmQ)W>;ymsdXU7KnKJGVjURI_qD;?Sp+e78=hDWX*
z_7lM+=K(4mpj`lh_z>N2aw+!kx1v~x!b96-fMKiRiStAqgBB_gG@oP@{=rjpnRnE6h*
z24w$1^gLejaJiGj_t{|aqR^bmqjuHQW#q98VvxaL-ty_b3(`V2ciKHa4FlOux>Dr)
z_Q#%`)am2HF>kuikK)3EYrpW65-?g~uaq=0wdFT8ODp(_lbi`r;`U$_(>_N
z%i$GTJDor{5J^6$p1rW4HPw1v%$h5;P}#Fb!ai7KwlJd*m(R1M_4K&QWj=nyM6Hq4
zM4mAV=Gtp{UC!8fe){i<5ZE>Gp4tW
z;t60exYPWeo$1m-_M-22o6OlGRJc*H@aw-xG|HSY;OqQFz7JBqqoY;FULX?nh(Evg
zT@edCHP;}gm&6&3G@mCIq|@g+7Uv|IXQu7kzGFa-I8@Wt*_jsMr|YP{t#G;<8hDUT
zPH;MEvRama*v_UkK~4}mni!H(WaqU5W($1aV6i1$EVV;+8&(c*AdK*(ZC0WV?mHfHG
zKYQilz5jElIsT2rmx2WQc9X6QOZn*^849pvOfc`!iZ04t33z6H>G=Evc%-ql;-$1t
zU}xsaV3d9j5I$(A$$u>Be6l)!XYKnZyRfox>C0bt9n%ETx<5b?S4)k*;^gK!MnR3w
z94~iE4|W5#{wgC!Q=WW*M575gsUr@ik%e{ZQZ%0Kd1U89wz_|>|9?HR-OK+8i@}aP
z)hyc}k&cmO7W%`~I@I6N;qy5G2unES3O)_=+V=C$gEGs}>f_MRb2SlXu2`B#^td7z
zIn$|Kr^|IJ8iU8l4BOsWFFibQSh;@54G8RyeRIu_JDh>_GS4A7bA1t%1}Jkg
z5C4z#Bn<|kwBKmqGDqh!9=C0^hIKmN*sbmHlCVu)tSQ5=6@K%{CE1r?cZsCk4MIPX
z(V7kAGQIDe~4%DXhE-El@(|#RQ90?jZQiUBp@IbrD@{y)1J2Qe{ll
z530M!muq>OCt>g|4`1lryRK-wZo2!T;`$F$R&6~=%@3@>nnxO!QH6x
z^Ph{PfU)Mrq2nXLv9!Sm0q~-;P%#4^^7gdUgNoMY6{sB=dojVXI63;dwJ*e+zTtbh
z3kB}$zNFXMf?ozA#NI9TrF{?R4?Q*FK#fRXp_RTYBKHvBaj^<~J|9U#Jf-i4oPThh
zHToHhw#xS@fI|R?@m)JB3#emKuUQ9F$Oj5%P!pE@Q+wsj<*!F_HRui9hTX)#E9zYb
z)QUiZeZdwpC5VAF&>z?C^AUsnf^>7=sccLgt9yG$vdsTl6kXW=%~&LB`BQvTyGR^#{aEN2;|vWH31CO6OXn
zpPMd>
z)kJ4OYlU|^Dc@+GWx#;AWaxGSI1nVi!nM=T+LKkPUAl4kT
ze29^6Yf}}UNy(7C6|2oq$Ks}~Z(>T`*
zh^~=#3enmDs<_!Xg+5qrCy@Jd*a~mwkKx0kMljl3Pi`Z|Sy^W@xE?->hSH7l*U3^E
zQ?JwRud@UFAqfXZOBu*%uVuvXgqBrK7QThd?FA9maTQQ1OD>eQ;`bQmHO?B7>He-fA|JvW**WlUN6*=58I6EcHttCtIrs8%>SKI`2fZvV(R
zJHrYMOd1-i7Kq~sd59>#Xd@Z&z@dscO*fIpEMigHfDbW=VXr%^Gn%%S(_008KRd$2I$a@EBG(%4ffN1RUAR
zrHd8RfN__r(za{?MBq1?3x>n){u^
z;F7ZH=DzD@fgEgD;#S3m;qjD*0
z330K;)M1cydQEsBwi;RnzgBg5`@)CSh(Do(Va4C7&}s$7ic)kEdB~yaY+sA7Z#tZmVkJuQn(yz
z8tjos<#}ixmLBO4{e+FKM#V_D>b(WI*Z7M?IyMAUHn}m_nF5F7_!rvd
zj`!MmnDnf51TLpa2xF@5cB4aqL72fMXjv&(mc7-<*nC->!fZhNOJDzsi7qh4~Vr
z0JJjIj!X}42=iN7#Qg@>^#&e9Ee{-Ki)yv`S<{Tlf2xSF4P-D8ZS>`;X`mZ1pP6(n
zC*oo+BZ9`VvLvP1Z|OE-{XTq)cCM2Hve{k0zo<>?gX|v8OSx5E)b=RUpGs0uno!A|
zXE~?^r*srXeb*X#Wtx3S1CI7Tn61sW-xC>KII?`qAF~XyHWH-hsnG~ZCiZI>s~g-V
zWQ$Q|nY4t!y>Jm_T79~XEi-+**onG?g}#
zI($VOa}CgavndN_>`w@N)s-Yd)i~v`1g^S^LC!0&IR6V#D?XdYaw8^z$(m=e#l>4D
zU28-7QDqJAea86Cg5I>tgwS!Tv&D3)Az?|qj$6sJ4tMNa(<@m7tLU31omP`J$z&;$
z7w<{Ine#X7TPF)!LkH>nLh@AenO#Z@R890mZ6tn^kD9%OBcvldAx!L_l!I_Qa-l-g
z0!hsC3a2GNah$U8b5;mDHq@v&yrBzr*wn-!o~?3q=SzC@4nKjI&N&h)kt2b*XlPml
z3cMa_$KUB@Nd_!ZTS#GT&>x28SHpU+G{O)Pet_kcmj@M%(ApwqHd|_JAXl5?@4CKz
z+fb${RGDx0xC+_X%vbBP*IQcM1h)FnU6~T@iRvfyukDnT;zP*u!oMiN9XT>zy9V#O
zk%pQe5ODWm-QBu=K6SNAFZ(?9A9>7nv?N#kxf3@eLgnOAUaj|U%Tykw9Zw@WoJyR>
zjn7OsO-<*JFgu@0p|e74E@4=6v$sNQ-h~#mIu)DU5#Nlr8h3tjVaVAE7xoo5auT>s
z+4V&y(9`r<7W=kUY2(@++ovF~1*O-}R1z_j4VSoecmJ&s=S$~mmRa5>a<96DvckTz
zemqOBHIDfVqETFjaAd5Om#@f952PUmPBuzGNGVXBHPgDy?k^`?={52({D@=&*F!p_
zRaKVY(@jBM+P>Q9t78>CEC_QbOT^#uG!4s}iR@O3UzEk?I#eRm7+mMDuhn;}qTaZ{
z&8Z{?dBSs5)xoVZ@}?km7td;8mCq9oP4P75P6{(Yw)281HauKUN4B?Hg6>L@RzNE6
zlY-Vc7QpNV`WSu`bcesH!aQr%7@2nN%lA;TEM5C-DvAWNTCe4OtB0Iz3)&QaqGQiR
zm0CQ!`ou)?cc-|!X+c!I#}}gm6-oVoOmcY*@u!rdC&AeA><)Gixve<9|1FDCO~=rZ
zJ6}aEaIwrX$>^St6RU$o8Id;V>^b2b)dV1ESC($@K2U(Q{Tg>+GnL^{mHU%;SLNGV
zIMNtq3darQapqavur#k5wW=n3x$ec+&UfAlyrq4D%f|I$`eB`_lP*8gymA`B#&8wK
zuhW0HYjjJmnK+2**hG~@`4k&I%wqfdtPJ?xzFD@CK-sm%yxU*iYheR00>%z(B3)8R
zymZl$V2P%7j@@V-@H396IK@=f%vXQ#yJZxGT%NEB<%`6nP|s@Jr`(U%mg`mzXDRI(
z)>5u?s!TDc5ooD9kNACS>S_&3ZfqmcfP4up>23b@rt+yq!RJ`9Hl^L&3fXcwaS;{%
zFJ?k<#vHQ5TS${6g|VVyhEBM_(P^hu;vCikgsBiH&=qMZ
zl|+g`8(84_=yWWx@6fhU{7P@?3qZ{^2{FidJvlWF(ywTeWDr(F#R||l8ea7o*wn45
zCgrB^*0RIPY%>7qiWo9B0QW%|C4z311>B#WAB5h;<#jAt--4K!wDHBfl>3p1D`2UL
zixatE0N6yt;&OdAMuDlm1g>#wn59w#)5r(9L7_e^2A1W<>e+XqyZZm7kwS#lRVgww4
z5u(Jwed4NtEhSbLRbj+7AOqqkFV^v5=cFbaWxO0y!zA|BJb5f^R)onRy6RJubEY+KIGBF<
z{ObJFej8A#OUUA|h30XA_SEZnx07@zSJP1XWYELO5#212)6QSy+wY#{uc~41Ah^9)F0qP$gUi!GT)44Wa5Z1Cw4aGGL^=F~MARKFEL$>49*P}xI
z0@$kwwVU&&YbKr3tsY)ySlj5Ud#1E0qddyP(qr|qq#s5i!Ry+TwG$t+7ak5P&S6S*JGhK5jO5!>bZ+LZ3lR?O~3t2bo9_Or79Aj>1iI$O_**aaNRpk@wCNATPRE9&YDYL%4n=@G^r^pOUlIH
zwd#}qD0O35G;%IG7;%gM5i9P;!8t50D5k4+5wBWu_CgOXSNW8&+LM8D2fg|>)W2k9
zAGO;S@|D9~vbRSA&cGyY&2P()_n@PxW2b4uOVRup;j#3rIyFYPacJR88-u
zK?&z#+)LkbiRlUEDEsm`?KJZOLH?4;=N)l)WYZLtD_^0Ekn9TVFuS~xC_MV13?a&`qbnU0dVt!bea8!
z$B`^De&E#)HI?np{+#)doBI##OGxlBKEx*nXGCFngM&VZem_&b^qw73^^o_#Gz&0k
z>UKZ&N@|B?On6m!XcV>TFIGop*DF_b9a)}_b5QFEeu@NQ
zLGt;|oiV(ymQ$&pl=_n5|2OU(YW@-PajfK?ou27kf8DENdo4<{=&erd^qP@m8j$lk
zs$>X!?0wG;>0sUFH!FJMLZhGB&P0Xxl0lwYr`{_2Hv{2=RBGBfVtz6t
z@Su>(f2$!(I*5SnY&p1z7al!OUeqCv4C4pBdSJ!mA2So8u&7XW(xzNYO?i$X#LMVm
zU8Dc5**vhR$sxw5+8Z>=!qZ0PH~fBAX|o#{Si&u~_*}^e`^F$C)){#{ff?tQS;rmP
zX#SI(yhKoJzIrC_tXR&MI8XXeirrdHEnJt+obiyvx&
zhHG~B))TamCT&$M~G>j=~PGUkwePfX|Z>&rEI$LU_lPhwQ^6pzQxqw
zTYDtg%Oa!EV8gW#fvhIQlhCisnwm}VLz;}Diyvc=YDi)M>72{SNw9bT_f5;K1r)lQ
z{q5-0vygomp=csulKx%>W>X8(aN*w`S1W
zAJocG${bsj>9$7Tcj>B`hg4iI>nH=@YjJ-94_=dh1^nrdo{6j=j!wGi&~Vku?@I^C
zr|?cdyh6X82CB&&A1}HNj;EGK1)!|wMkT=?tN+e*=+^?=_3MvqXI)&lnIFNHuWvz^`kvlr9$0Ttvj>+M3+gxWD@d2oHK=AhSV$uhvhMDi4
z2Ogn8cn9AeJNawZZh8l8Rvw;9c-reKB*%R{2k4}O-VAV$yq;v?YQqZ
z-o6#un5uEdU-*%gFdW&|?h4$oUx#gWsqJrHrvC4yLf?oF_kKTRI
zUtlkRZfF^u91uM=^F@|EhIq<
zlUPuJU089Y?_*C0FW33hb0yqP{qNv!t@PxWEQ!i-ZbS3gBcVf;I~;%e
zo*6zDyG*)P8!(~KeOfviUD=0TUkrH6K=Tv@l#3fs^f=N(V@upch!sD@a`V@3s2&=S
z&mw*o9Rr7o!D0x*U!+69(gMR*2-?b*!4(*N9$RF(i4(gPW1>`pL^(xDUx+pfA%3oM#!lKLpNrbPpFzhioad_zuceTA{Hj63JGGoZx5;iyOD(h5WWSPK~R-TN<
z6HuWTdpCT640ATTs_{;c)!fU-!CK35Mu(t-sdrwx-@k+Gt|FA$M3*>n{LJ2#5M3R9
z2VN#lvF`Il?hc{lpCmQ&3E!32HoZJwInB}<Y1P@^Z5hi?Q055@KE~kFWtu
zPYGA}z5eh8h>M~>d&ke&LtnVD{;G^nm?zG%`q(Qp19G8zU0!#SSScNsav%@UvGumm
z^^HrhwoYJ;7M?|FqGe}BHXV3W)3wQR4l9yI$*t3pjc3mo?cO+zukK905Y>wwGHk7^
z`$@Y?rhN%bD{w*o7}`z6SvzH!;#uy{ArzWry2L_BJc1Z`9`&GF{+3e)g%p3&`0&l?
z^8QNX%)y9(;zh{I9zD*XK^fyKy>@Vu^(rTEEetipI!P7~kNLY5pGt1YH;as{Sdp8C
zzDgLw*N-xFHVFlsC^7RED`6^QkP92weV4tV{9%cnF>mx~Sq3sf&%OdlWtb-S>Y#nk
zXTeI$*VELhgL*yigTwg*@H8!N}
zbkyVyoqdjx3v_b@#r#0S^?HfX;!GVb32#k;b7}D3v@*b=v#i@}7FRrg1+bxpQ5Iyv
zm^+7Eu%P5>nZ8WsY9GAna3Jz1Fe^P%_=dIC=WI#f8dviRboZKY8!&z4{n^=b-$4&e
zk0UJ=OJnqWwKO!W<*?lz+I6vbCvqeH5!pEDcoyh~GU50whK9&dfI{{R#HcxXV5U7T
z&Z#P`J~MrKSZW7=u%^>;DpO9p7Rgb@Y4k#Mf)Z(gdz#wd>93PvUof__UawD4MP9%9$lQTd+j99hg
z9_oIJG@oHG^88fv`0|-g#IKWsWH)=l^4L@rOfLoJG-3pLDu~HUCnh1=PL9GLSxDP|6yFNr|Yg|wzP#8UvyAK+a}Q8@dwL(T#SPm?aG
zyF1fRNixP1XDa2bUO~*Q5PU}{NRu02*S@m*^>)2H*ms#(SH7xJdM*kT7~+#~Xj
zUcIZVeum@%%`S!9G+zBO*;cPXwRreh5xe%jlWAZL6z>ag
zWv|w?*MGWW-OuATVOI|^u1-vzqoharN&ri}-4Gt9FJ3?EwMxLJC_rys{CpEJsbQ75
z)ZJsW`s%>Bcc}Tn6OjfHO??Z_PQnD!`GeuPv;SsQbM|MXeAgS0nOUr}pf0{F_|>SO
zBE2A2eJml$fYXzdWg#a?N|zDv-Th_MtEM#NxsToT7B*(kwNMSDF?rBt;3*h;t8dKK
z+|a73mPg<|9pvV_p9fz6
z_%Uow9_Z9@XLFAe4}D@a=AR%j8nU6Tzp>uIx@E0u7515BzGFOPV%+Tb_fAQbbyFcu1@Gbq_!>t)#(p;4{zqAZvTz2LnF&
z@ozX=Ztb=EElBsD&K}G3+$R%~Gp@xEXPN8;^1M-J5z8;g-M}-?GJKK!wzHW>a&6X}
zwjj%8A!ewl*42HTWSkD!+G)rFf|y9I;KWCkea<1Y9m@5=2w&M!$ARUdlmwKp$f4_)qw{
zPcFJ=(hHE{z$bO;ax-qPg@)>6983S9~&nk|=OmrlS&Vn*LArIFFe
zWE7Nr+$qy)K`6s$!u{gEOKqogWbA4tRf^5___wE|;g+D3&;v*4g}1Ml!lZ5Nk6i;KbmhpBNb7MAvE!$z^aA%sP#Hw7W_qlnnlz)v+m)^DuH@nU}dvj$B%q
zk3R+y)OV|EYio$)>KcqW=j&))gD4K#>B=;`4g?-@y;CDI%e3!N>O*J$tpVjzz5g!N
zHp)#!^r77!cj`K&M#ppu#4W^KJ4^Q7kL3;6UAdF|avAYLL3_HcG=3Td
z6~#W2oS;qPm~wvDQ66H^=kN8*w8xllK>6dg^Eav0Z&=Q}aGonOuNx8TnDF-^_zVu2
zJneF*y-r24`j9m@GP
zswHScJ1^-NrGQ`WZD{^P2nxtW2i4Vn6*`$gR{V)5PRD
zB|h*D+oNIMeX~6~dd+k)YT47~mq?)uQ!G!zX;j3x`oan*6Z_pVl2B1}!?@*1T|c9m
zg*w4Hz093h{D`b
z{&+E*KiwKsY9E-k3mA|~JY``tKlj38!u&UUa$P@Xy#k6{OxY~b$>dg+)UrVh10=}l
zl_1j4^j8!7y<@sWG?RYca?2KjNsF?~tJ1Pl*M+|C++zLehM>4{c~M{3oVoh7uq{sI
z#PFt{kLf|G3-n%celv3=JvZgi)h{*oBw{pUM2~h*HUf*sC%Gw!bFP`6KG6p%gZ7M`#I|cVI
zOqOFZe*2fn{a8N&W%=|QjSG@kY09GRD}UCOM4v!zKJh#-{@&%@YM~`rF!H6|&OZ@C
zITZO=I&{F$oi@55=@e~j^rlwo>DPtwpK;dCQa@Ftwp<#-0IswDN>jTD{?p976BzlY
zy8g`}(yuSW8TCRqv339fpF!WxY8&~Dhu%+fiZ9^!niOZn`HYj}`YDzYSQG2H`M0k|
zqM(o~we*~1nlB+UZ48$(i1nCq68;YAxYU?F!o9r$I&uRgT4dbR8a
z{eR8d%UPZ58{CNFZr|5fN4Zpvw}l=ikpV_1$lRe-_F<7V4_jZPUm)Be+kX4;UeYUQ
zyMJ4Lt6BgkXW^4X-foW?gyY9lDms}H_xx}QJZM@YW}q7x=Y;xlUfRr>Hg_hkXxHMep71NSr(Er=4rm}v18biN~pqPeT@y<>k$-U5^qy-J5RactszN+E#POr
z`S@aPWEnQ+_KU)r**G=--=(W%g&Z&dqpIS%&L``N6(&Rm0Fz~EeEu`mfPj)+i>IDN
z$-pVu@@ZIoGTd*5GC4Pe)Pk~?S;TsqWKv|FF#{#6h<|tTDl(u<0(Aa@_ak(7)xJ>x
zV?^e)fJc4{MlN!X%$@qf13_|ua5{tPTTJGMlo?6~yhH~)aQ8-xtHoKm+W7_Wh!~S*
zcMr)%D{=>#NX+I?cfJDyX*q$LWXhT{XV9W3>z<(*h@tMR%!-vEhUPg(_(Ndx*|qRS
zuTCZB(cyv`?28Wv7WaD&JKuMZ_|wo9^+tfL@NeJy+x=WqIu5M$!&3H8rstRBHf~W4
z_ab^c%R{QG%y-Onn7^`W0X)FExu+)W5yVn7lBSM%ixCH4x69S#H(2-N?|
zS>7SmT2$zEdtW>#{}`rTW4U0p_!1x#Cu!ejcP11Ho6I^AIkRZYTPpV7np&8Y-kRcl
z*)H`e$!&EnV8`aO17ltLzvA%&?=R{+^NnT16|3cD2uMxngzKqTz{ZbbANWhhiw7LN
zU2i<%g(b$emM}g&?`jzBD-e54b(525x4}`)UT#QDls>F{igmiFiQt}$pWzp^&j|au
z@6T;XKKA|fX>r;b^Zxi34{;9wQdzYq=nk-JR48JdastIh=CRXPW$iju&y8!c
zuEhes&G&H6MD?|W;Qb{XR)nM-7jo5Q5Nc=#x63NPL1ht25Ex61gm?))x1=#dZm{gd
zL}%YRCvTIUM!~ge`GS8RVPE{E-uOS5U&_m_|Di;0w6Br#es*m=oiqH?($Gwme;c7_
zNEWF{^(j{fx*8z3bTC#ym8?9uog3c$EtDQVx*VngpiyW_#=RB+5Uhv?J>RQ4nWPHm
z*m1AjZ^oS0$r3VP7xHDdv^7sPBfl9%(*@j*K~1h&mbu!M7Yz#6PzU?{@#PwN2}8(1
zYYnTZ-=qgog})gROHw>H~Z63@M27#4H(;<@LpJ?>mi}i7`kWt;{wdB@GCc~D-Cgj!)HDT@r`MwSJ
z9q>rQ^y(f->}v&az|t9mDUAd&x#jqR+V|f%k^R7&)l|I;c*R~+#b|xsW6#X^Z43GD
z(t4IAGB3Q})AD@ex40a8d5cC|c`zjoq?*^R!v;9HC0mZReyvd7d@7~pA}`<2L5MN(
zv`R&o8;d6GZoBg7WxHpE*K((`+Q_G)J;LVml}`3k~wNz5CXZ~E>
z**TJtjdzfN$0wH{21c(UInn1SS89uI+elLVpW6pem@K}fdO^;!B
z!o8lJMZf|4HY4~2cZ_SIe(6Qt{zM1*HK3caz2Qjc9f!lB&cE3~l!2jFgpka^We|b|
zLoyH0MuCzIFJm~^4FpV}qAM}MCpCFrhUa0^nujsBICJBhf^aU?G5P@C_7{B$=Y2Xx
z;;Zvk`yJz#qZGs(9M&)647~(>Xmt`&ejT(fb@>Oih3ghfaK}4TX>WyHy4@Q7(40U=
z;!n>{>zj<^PWf{mG;NgjhKa1QBbYH>4J1ER|AH2>#&gTc)0@p}Gz^Z+hPHouzD{Qd
z#WL5Ciu|m|{j~}CLWQO+LhOJc>&Z_Z%uQ_M6BBSA!N|@8x=HAYvW~^^UlY2d)k@o!)0Vo}qx+PBcW)5X_91yggd
znQi||9kEWeL1&(7{_~_s%iQEf&n@4^c^y_?p!vd3_1NgWL14Li0mlw88>!kbH$BR{
z_|^6!iC%57nI=E1nCo%}%~XwbMGF6Y1Rk{r@;WNKNfuQuV({)9p9#OjYD{<^qo?p0j1(69#UrVgGncw|?iDu+Or28{UcprU<*O__Wkp;ga57Cw#y`1vsxL+Gt!
zZXaUWZpr;p*wDC!`4BlhnE!rNbL~2RRZ-Nt!v4PpxqEguUZGy8B^MD%WI~?mOSqcQ
zEHDoX+Z!Y;zWyVVlW1GHTVu^5RG{U-W=30oN`CsGb1LGXUgC>CtuYYWociio_S6#W4Be|&L
zCr$8{XFi>v^9&nF#x+vJ%TG4{dgOnX%+>$_d)I_AHK<`Fj(reQm6?mo@0uS@tw`73
z-YIqOOP%T7NjLAxSU11f{d8|dDroFGn^HMh4+KKYLUP$sJJjV}qC!L6cl#GC*e{Cu
z2F_-I=ocK&ph~G){gkf%80bFO#r*hv5jGdm)Zm|il3A@Fq#f7%KednxSJmSW<@*xR*>tWy(xs(7;
zs=2dz<5KyJ73*)Fh@)ATx`5#D@yDwZTGa9?Pms>LWHEs|J(w+Qs3*CpuHo-)FSU7J
zL$j(ZwETTg(KU{}2;s(BsXr0jY9gBPzXEB#4)(o!l|*B_ErR26}7HcHj<^N>peIS*-cM-fI;8)YjC-BfZB_To&N#_5MkF(WKspj%6Dv<|joVq9
zS;wZooUc2&MHA0nTlM05DCXT(ZQw2k5d%hviDP_5=}jN*X{Z@{2?t8mGz=n6SllZh
zSkK~B1oJJ(jfA|k`3{-CPtq)9q&DOtnG0FoboMkzzPwZtA0p)A-M|0LQvvuRD|6}9
zZ3k6lW(6`+nhi?+cB$SGs&Uf2ou5N@4mMt{pcQ~5h(ZDNNo
zhhWKmIJi$@XU@E7rcY)|4zfu`~^iDvIu20N>?xkFBNk1hOFx={J87s^rA5)9hf
z2t%p&PeMd1^DN24wCBR*ffnnR`>O|Aqi%}EqG~l-<`;4~e`6L>Few1Q1W1*Q7S|yFJXOd!hJ1aj7lQUj(
zrXMO0mFbYfo?iW{wqRchL@>fWcIG!$DxdqEi0t+m+PxaJ$q#SLGH+V!{1Dp_#VE&>Q5D0MIOI8^z3?;
zkSJ|t6oIbYypsA}vV^$dP)U3fxm1$h$E`YGFKW5nC|MiLH~v9#ce9khWa$jVW==Ap
z+={c+Mb#Ch&O*a9z<+;01Y-zvv@cDi1Z
z?2u3x=v`7=&IDyOHA-W$mEeYk*2WNS##33BlIKurSwouis^3}`#T#>bQ&D}Z-R=3l
zvnn>dO(pNvTWaKA)t&}j=~C^weJ^o2%&$>0_cO=YH=}_<4&+5pX)k-C{)sHRxdCx`
zBwmN)D)icSF9LLTZ$;6*JgO#^UsKj9qUYnC0}lpaJ7G0flaf3-_e$3>#6TrT9*mK2
zI?pWuY#sjnTz$;uTI%gQ9^{NAo+r1Ro>+JU9lR~j3Un60T^Dm27`z(XIaRoH;`X3X
zer}ym<2vv*KQgm;V0unXgK0uX^XS8xLEmw9v&Nl5dme5HuShln)fE${NYA>DN-~UE
zp+JIg{<_AS?Y#Hd{wwlJmyqd_JX;!w@+Q5z48UQb;P*
z_xJw%{sA64y!U$D*L_{jEBblrmEnx+PFaC(%$Z9|an_*)9*veR&32B73!Pnz)y_U2Z#Munjg0Q&>T;cU
zx8xd<)K?#UHtN%!YoS6=plisX!o}+P>VEqvu~@BW?ba}JPxa>|R^QfxCP_LPxmH&i
zW7v)kRE*bwAZUN|FPH7n8Ge|~u(_Z?3sl|V$p~URo*+amvU+I|e17vn)%&I2ho*O5
zy^r1IZ7r_A!RetMrare$Ca?mMI5W?l4<^Mc5i#wrIFzgF46k2|gI65_sE_Pq>cH%&
z>VX+lAWN?5sL*|H*j!?70O25^B{CZ)OHC{w24<9Jn24-r3@gB-fD5Kg=8cc-=7`m;
zy=g@V3}NI0{?*bsxHcut%WYGMR){utr*WI58}xc~n3T+&sE_u$C-&`F|HjGQ%Qr>5R%*5!Ko=C$LQ!2vS(8vVEJtDf`aLu;DzU%sSc
zS)#|MAm3Y74R+*Dd9k_dU7s@XDT;6ZW-gNfGSV!GeT$VEuH$6iy0q0hc`)?nUcdi!
zsA#M&z53nW)L_ivQm;T~JC17Xc*dv=$Ey=9>R(}e(^lB^+Hbq6BfHg$S2t|QQ_s;X
zrsT1wpUm4;u0!1-i=`dZuP9j>>cWFnJ|vRyiA`h|A#em}@)EdNBTOFEj8)rWyZsCu
zFyq-0&#X*n6As$>(_#w>Zs_Dm0XWKN=cmPzPT!I-1;>oJO&;XTw
zWZO9AcO`}4<@m=ms1@@QQ!j@y&nhjehTpI_p|mqZf8{Ken7Ms3!WwUg?NPrK@MFL^
ztY%O$kc9b(tzF>4TpJAb!e#){yEo
z_m7(eEh{*Cs)gg
zy6{g75pHP!@Y7$*L<~>DceNGOLHA~HLmylgP%SA1B5ai5Ll2{8@rPEPZ{N)A_`m$n
zFmv7^Q1|2Vn7S6dTBd~wGZi?iY9An`EkdQxEB8SH-$$nA;^57a9C_Cq4R2Eo>+u7#
zVTP623sLBn{B;U7<519y*(jzQOxs$oWo+b^Iil@s?89X%-7MLJZ{AG+whrQLODDfA
zx^NBcqu&mBXZ}nv1(@P>b-fHlRaw_{_c2h^YdhOz*Y#VmQY8t`=vNzL#A1?+XMYE7
zk1>)5{r8y#$E48B;gJ#T4GnV$^}y?ETPqlPa791E*;UZOQe+r<0cUdogk&f-ojwdW
znZLcH;>+EoSidCV9`1Jj{>X?ju{qku36fx>o&u^&G_c`C81l?$&Op8xhWXv+=(K7r
zIoV3p^z4~Bt46L^Xoe;CIyvmXO$|MuclQ+G^aYM6Tv1oj&s0H%g1f?Z}+s
zMj5+b7i`-z;pL{fzWp?KgR%B)?N8Zhg#dhkM?tw(`%=ymh0D;i7TlE3_j;kjaOnul
z)~ZM_66oDgtQ;c8-%vMc^gFUrS%Y>wR<8Q5fjhpFGlwO1q9}qK7Uf3VBT`)_o0QaprmH0pkPho^a$0`+4$4L
zuJ&I&A^eT-$A5!94IR@JT6^dB31F&+0bdsXLS|!?mZBz{&nizWT((bjPh(-LCU)Ud<1gal)7`o}l_k}cDM_-DYHFZiV2h*A{r|dY1f9n
zt|7AC+udf`0Hi$K@plD0;eCrY{WRu-HioHTyE-(4r9k6=?rd#hJfp-;HlzB(1GbEb
zxRyqjIS=w92uD1?a+y<_IqFmT10#xgf%cpY4GrmAU%0!U1(_(vv3uEz%|gx^&8spb
zBPh*1ejPN=3UgR`3Nd(DMJa$(ThJQkQf3KOvx)Mw
z`PnLQ8aY+mi@9~uR8CoRclV{%L5PJgA2j|1v5HEKEiVGOVo35ADpD*$mSF*z%l5;AgR%Uo
z#8PjDjjcirkyteZBTX)3ELI7xev>^S4M
z?PMP8PmKpCT*1zu5`rUqA>dob^Sry9sKcF}NowiQ!eX>Kf5966xYyyYV-9O@44mt%
z0Q3FxUKDO*&O`IJd#-`Ydw}a};Z{5Qhy(EhI>~%NEZ?a{TA49(1$Ulbq+`oY&g5!3
zW)Vcy8
zhG}7q{p3A2u@ydh|!FB(~jFv-|~`
z+0U-7D{IrU;bFr>a@+Z}nkt=dqowKkat((KueX6QnwZR=F6ke3FybP?aWsNAS3g0UpA#*$ECBS3jwAl)rX&ZaYfPaX4X(47szPq|
z@|ZQ!y;lV@9rVBLF>0TDgBbqIG-{vI_gZ!udc6)$iMWDyHeIU}V%MJcb>NbToK^TA
z+ll?JW`MajIjl5`Z+05ScG?)Ko~AmcQ!Va}-A#VX_JgbNo%4irnEqOQln&DW`~?Nb
zG|EaC3$93#=N-
z?V4i-`M{eBLqoYblXmdkS3?iZE;ONR>S&@;r+qRYJNLJA(d%y&VsvDppEpIQ)moA&
zimas4TUxVcB_b_S+4tvWY~+To@|}8*{ONKI#6Ay`&42%%K+Eo{kFq!tuDw=t5?@qM
zQBa}0GUwEugrc-=Il&wHgF#DI*n8f6
zjI=CsMRI*miMscIO7!h8h==?9SUJApjh({DkFPCrQi855E~!PExs3de4SJ@)-?CUO
z?VMxW2&!gP3xZ}!N7Wwt75zNt=K8Hlgu_RA%nz;1gfGH%eIEngy#;Wvdf^VJ4J~wT
zwoPLBYs4SRvpmo<;~l%q#P}=E$yX<9hz#)T13b`m`Z(`yc<8^+;zjy}PH+ju^+d4s
zUC&~!$o#jvW$~fpiPciZ%p6o#A6G6>YX{>y3wq2m3io=K1Q2fAs}7@dE{=p+EEN^7
zUZkzuM0fmoigM}19-f?jx|i=hfZ6yTTk>m*Jv%ixDtAsK#Y0GGyXhD^(2hok$hnj;
z*&g{~*|3?Lk+~#z)W@r+Yej00{5aV#labOF@Qu86|Yg?*Q=c-nS+hWzE{bV4B1(
z{b5pq!YnOmIcPy^4zec%(iD^Tyw|tXb?B)3);+;P(#Ef$v4W22kcUO(-#H`3`SL{y
zobp&8ES_i{sle`j8&Lgv{cnnBKkmPbxL-T^fW!a9Yv@Jln^vp9+DfWh4;<;cQZ++l
ze_%T#q!oP}fUMgd{4k;O_E}d`G%JkK$2RY2luBl>ulCfF=1*5Wl
z5Bo>TS;o*yr{-!8LhniF^{DBF2&)A|!mTAEjm?Wk$IQ{VUeq|gp2QQz5p_TnS-{uP
z+@bb!+>cE_4>gUZ;NUabvkW);KPI0&o}5u*H5J^khME+KmQIsIW94bdYjn%|J~YLG
zhhuCWY$--p1&EeSZaH@*qBb|*$6OfB=+5k)Ue`eL+8#hVlx_SKouv^RMknOmK!ULt
z_b7tN&%bt#e9E>RpG+h_pZ+oOijjGy-4hV8y1UDHiHS`;+R-`W!0K!{EmYXKtmE%*
zp&wx^=qYv0$OVjF#In67l%HGcZJDZdv`PG2{dzKcY{J05tOc5MLmn+h>co!pBT~<+DQZ4X}T9{zD*phRD
zf#x1+wgi_w3yX@rEqz}$8lE(XtE#rpbR4H-B5b>swEd=(d9o&ba*qdF4U?NEJN_EDJK@G2q_l%wYng@%TuY$8PpxAVc%>LCl(
z38$0AT`4#nfe~oy`nq0q2flsU!cqYm@HSJWg>XZ}V18tFVn>2dIfz<$1vu^ZMCjIT
zb|)Myvnuh*ScPvjwe}_!bJs8I?E|NBx;U}g4_O$#4&)Olk
zSM)1ac966TnJVUq`lZCCM3g-=U(5d3^f0!
zXEfrh?9}P2r+OX$kvP|n)S>)9V{P=*umSV)n4~8Eyia^v?!m~*gmW6Q;SjMoz+1{>
z))&aoCt-&gGn3Y;;B;Vl^SSBo^czpz^6IGoh@@{v&+xyZ?Ir8JolgVS%m=7RN5uL5
z)VkP}J!I8%l~Qs!+2TSK-^NT#r_^^~4vD_t=gjOA)Z0C`32!Q;=JG#1rrdOS6m9n4
zqJl*^qbFD*{?Ou7y`G7qf!Inlsfbbzd&nX{i1P9Nlr9}!XR#-h)mweMO7Fr|J=-V$
zvPQaap#vw8)CxmG>ztW$b~a_OKR2d&45Av1*$Cy;P7r@5c|^l>bmI@g-dU&3z33fZ
zL1NjFb&3Ls7`t<@Cl4d^qZRba0vd=7A;Pe8cWr
zcU~zeqj6lhLUw%6r-2AgWifqB08RQPXdYspT&zS;mHQtXi7pC(3IuM@#~3gMFuQYp
zpZ*N|C_Np=r&8$E^on>~7yY6iRRF4`7A9z8#wmFR`B-vkP5-anv6`zTimg-?z!o|I
zz8q=PSvg{E+O<0mbai>Ljjjo`pqS$b2R9?@apkJq%4+OsIe~1p>Jn>KhK%>l#l@PQ
zvG(HF;=Fd%;MKVKFKb;Vk|
z;p<;Rcs~s2FeVvbIONlvXiLy5<)p?Nceb)AP9o(qC95%~TEo08
zc1xxx9CktngWS$dgEzrtloqQ!z#MyfNX1QtP}ntzF1
zr$Kt}5aT$xG&cqh`D)vby*c-#I-%C6@ZC8_%fx@O`TYHSH&%*Xxfy$l<+$U2+4RhY
z7&33Ji<^WSf$qUWNAkZXT>d$@0*h3+wIcOu)E6RWDmFv?tTr~4-}656@=@
zh}Qd`K}DH2r)OqS&Z`=z7IbGQ)WeTJ#>8Ao;nZKi1m`!*K@?2g!e@4Ve<4ZtT*ANI
z!4iJbtVCTO<{2rmYW!HSMQ^KBWHB0vI1rP6zAfUe{DN-Zvwi>4Wv7eJg0@0gqfN`P
z@9P?cWu^>Zma3S^2brO8fU(}zI4l2mCm{s5!xp8nb8>*cyCcnJlHKCV|Owrt+vZjnWUN<
zB+RN)ym_WGtmxuo?ndfq@Kfctx?k@&-kNtSI7A4)o!U8>_p<1`9L7@MRZ#e3ZT5C}
zon*TBad5=G5y+sN0$q)DRQbLv8a1TA!n7}N(G!DsipK;o)Q1Z2c#+y
z`tkv=eyw>Iv2)$kl3rbwEh~jM!`_)1X~ngn!cxG(f4kEDqLRL3_3{NRoU?f384e_e
z^d-Hz$QT2MY1H?qT){{~>yZi@M_0@Bq@QWe(mv&mo^bTsK)KxX-szcGIr;Gx%~)xE
z%uQ?1my7$}*-9ds8k+1E)jZuDJO2o$6^)Q>(1r8?D`30UBd~hG+wPP$*Udu&q^xrAE817lNBj|kT7Sfgr$U8Ug?`F
zGr$Ctcez-}E~9riS0_mrU!-$BoSYA?{CuW&%x`_F^&%^@B>r>E5=Hx77B0tiK(4x%
zosX>#+X>8`r#v^a1NJYwMaKwq{H<)kHn~8~hzlnd4x=&z!!7hvvD(lH)OiK8zlG%u
z7g2Jc%8xFOmuyG3?gJzDwMDmEDwbfB|K#rOFW-J2mTauhrEM)41C%QdJ_VlsP^0PG
z53b(@p|!u;ME+xbX_>FY;EI~C9o}XxR2@@>oXLH`I3>IuUW6G8Qc+w?2m?M%3Wr1_
z1@yz)2I2HtV*lzgxLCWa<+}XE0KzG;M<;ALXBb_4MLpC1&O@C=OA-@rNbous;8++}
zBs4n6w)1S3aJS)o?rW#MAFg(c1Nnpu#~!UqT+zLbriYmZsV5OiwkfjwqI~=~&ZN!!
zp}~Evx}2+)ECXa={Cm?M^KbXdTQN+c1ceYaIa3REUy~;<2nO*^$x+YK+#pf
zjlpvK0wfzew?Z6j4>)ZcodwNx_(iK}jpJ5KK_<6jo$}VQeizg0ivZA?vO&F|2XDNBN2nvh#u|Kg!JkwSCz<&EeSQEiUGgM6dV6s2mbbR;of^D@
zm0ArZg`T;50xv*HRjJf@yO;qC@CDl2Bs-orGza;S_E}gNUa9uGye58EC(Yi*z7BouU9xwyhc
zWa4OnoADV(dRv{i3R+Rycgn$W?qmNh
z;^7bwO}>5e66Rq~H2d4QS&>a8vgO1pMU40L5#QUDz^oV3Ha5J{lsy$%lex=E9gQFk
zgvVE5+qow{$OJ2^(3)rn<14$O0rY}N>?}OKJwu-VBv+qh3II{)b{6gk+PiGp6tm%U
z99*UQ{D=7KpZTLxJf!KD%#~`bOc!u!)j;@CyW_>!PrJ_uqhf`n{HiI@JUFTL$#~k^
z+b?c>Uf`W`%w+UAbSP76OX=mLCdJBysBg>V!d?g$`I;15)@b$|;v#k}C!fS8aAIjD
zIclyxN}TC^i^qYH@n#?oiuyi@bQpuGiLZX}$EyTuHXDMP{2HM|9a1GZ28+!j#4#~D
z(RHNDC$mopeaMt{fO@LUK4?X~A|joq)^!}eAIeZb(JLwCn
z1>3s^%iz%Gx`DBuvK(5~oyzFxC)}=v7)(#2r*yEdEYlbxxt>n{4l+G^CK^pG9i&bx
z$RUSK9nU3}i2{`ZnP-Vr4{?|gSCbmFN>*k1tI4JF$nwi4bq~t{(=j(QRG56>1=bsZ
zMv2kmKY(&2Sr@?O_B&^nCSwUvRae@|wt%iWszKfRvPvnDic(_zms!h7c*g=5O>i;4
zJX6Kjk;~lVj1$QK9T!`!1;~w!v5O%qPGV#b9iLLiWiaM%hWJFUAdp3Ga6>={J071>
zB~CuH@bQiO_xB<^x3Z<<(#ha$`c2qjY)e&^!o~hE
zgZg-svk{{4dhCyB3+!39dduRv+jU7{qcckp9$A!E`B~1_h(+{Ffji_;hJ*qnAGsaI
z%^4&)yCLA(QyJTOX2%fI!(H${wmk7>Z95N1v-dmTGJJ9wZ5YzzJdHp&2)e>A(f<70
z9y7c&b7)Blsp|Z(;PwC)&HC=CXL$>a{^$lNh}~k*!8ULl>=V5Pe{EqEUo7jf0uL=p
z6Llhq_+I7hmB{7FF9oWWE5AP5|N61+a<*RK@Wv+!nTWL_i&Z2Ie&M-foeQoIn5;4P
zjj8fI2>sZTkvOS8XLdz4hxV!``V3aT3-efkBsvv~T}^3%U-C;sosAqUm_JjM
zLgMHZ(&bo;uB-6HHbrm)>R~c@81o;_J#e(DSuE3jB#i
zZ!bC}OPZh0Z&x$8kTH%9`$cPp{^~lPeytOx5vOS>Wj))+J>pA>WkS4@G^Z%h_?`)<
zm~dTH${kOOxF+jgU7Xtw1+ENcurss93rYlDxp=9V>{+xTO?+kYuSLbhnSi!EE2R^7|Tg1!ea71Nc4cm`EV*TVjfT{
zdf~xNQr!>M!9wT2qi~;ZFmrW%Vk5;Jr+BP#afZmWbW8astCRcvqKnW2Gnj)9`%7(@
zs8^Iz)ff;!Iji29GoSwc8#(S&w)EqaGJ5=P*w*YxygtFsT;as@w5}7sDR|pYrwd(p
z>D0UX0K-+WQRI*H82RP&0Ffy1#qiGeP7I7ztdcrzev!sN!EBtNywLM%QS}0Zw+~aQ
zw)7ezq=8c=ef!_5`eA_7zU(@rIUQ<%%K5h1EO-OfcJul(n901@E}9Ee;BKy%ese?t
zifr+0c)9gsTJ7`{fU19oyXxT%}2p0FbFvUfnUkU~%hdxE#JH7Awh*}hyJ0sJ5d*<#ODHn@fqo9-5
ziI!F~Xp6j%+a173!1SHXLmC7_P@hvT;n}iIRNx%tq~}hU4GHGo?>2>6fimQ%Nf2I98b{64OS-`|#@fO0mn;ddV&IRQIXY!Xz_(D8X&zVKOkP)+bJh}-
z&o2FB2xE3eBs@Ii*FQj8mf^-~ygb{M%6uX(tDtk|YHiLhn?+}=
zqdDT7z&%w)TlvL@&xwvp^Vw)2OXsX{vKlk(h&LLD?vuJhDE
zBcbOY!V58QToFLa7;Ds{eqGE5d<6cHOqvbsup4N*>2Zn?Ee|F`00500l_$*lSJ0VbXisI(jLp3Wr+ORlxuDfs9Ck~ytD8!|UQ8^W>-)&Z>&O9n+&P1rK3IeA
zj2)AwYS!Nt7!FtLE<_v$4n~ES3HVW5oBKQT
z(sPn5JNH&VS0dY~{{p@NtF@;@-8_h7EL@qATy)HUf5s^QRNGDi1Rk?Z_2vO?*^f#@{6BdlZ6U
zjaFCv_tbIUHmX-^-$fmidJh|^w<^>yW&lL?J{mb1P?PJe@O^r^zh;k7m1|!Tw0;|S
z=`UBb-wx2uU(}g7KmCY**6RB=8`a}Z`vV{Xs?}1(7RSo!fAx~16VT~xwnAqFZ$+;U
zI;+}ixydO5IyJSZO+KBnIDf%V-4yEPM!+W^(g)tWK5pR|SNYVy8>KDw;%uH9Yao7H
z*fMhzSrOGyvvEdRsVy?Nt!btp-r4}&nvvH#=KMIz&hf`gEUp3UTSas2M@M5veAw8A
zX{P{}J*ZnR7PV9J*R5B`Ow4LK=EwZN+#GI575qorrstM|BGUCE12wrCw8Aa1t+wox
zE=RgX84$Asa!ZBV0DPS|V3}@JL82B;IIV-P<=#Na;ZMGq?X{9ub;d9=4QQa#4jwDK
zI^aKry&Zejz@f-~=0iRkdj|k6e3vNZ
z`$so8%9E6T*}*6`dT?&%t}gMELbiMD_h`ViJVTW&}gve{$0b7<9=lA
z=5)$!OPE~#j=ArvFznmt_}cl5pPf12FCKR=&Z6k(+}H>x@XwRxIcEo&FqI%Q^nmpIH>NmIkcfNe*&Y7+S4#mDBi{HsF5B&{qmpz@=Fqhp}?-+9_$LrI6Ki1{Xnm#F^P>#f^I1)H)Ff%Bs2{o(-$@l`k6A6mc67vR`
z46eZrKj`cNW9gt59}HC1)h%gzuqRUSL=Vj#!3{16zCH%MkW!W>sbGK)R`DA2hCsgf
zd;#jHNQo(8r3pJ~Qu(1xqST8xo?EBfIUjAQbCmUvy!g|C+NQ6&}g(|%2;rVUMi>40%{
z{7RwFt!ve6*q6`k0q)co!j+S>uCHdti*(uzXy;a3rrpT6A3u
z5SDjNCpFzsTxCr6rY{|x8_r^Q=LLL{tL5`+H{w5q7xj2(mrwMA`3B!XR=YA!7CQg>
z^ZUKon<}RnJNCAWhPZS!4h}={iu}(5;b*07Bvc-~nO?us8g&V*ywu7-etTnv8`P|j
z#^$VLqPMyu%v&3o-H~ZmcnAt-FjyYsy1}@jM>RQCzTaV;F52%cC2;=rCBCk^EBeg$
z0na^dm&0>(1fEJ;0@jM^pCo;HGe4#XG=qG1>k9fLP%!f5!6q$8_s`hj{yEtoK@0*`
z?&zHw-ahf>D5f^%(&^eNA6u_UIg)QQ~WzJ*GhmpE9l}$lQATD41PABzI3|CFySI*Zd0|R>7<@4YVqMCcd
z2&i9fYcy0aLh0KUxCvTzk)*GJ`ujQ2QG|!*hK$$jdpn?m_f&zk!qw7&9j;FIdz@q}
zBuUigN`$#Np&G|EBy>!OeDB%Qk`9H$i)#KSmY-G6b@9dAT`HD$Gh}a`^r4iI?kt-W
z;jL7}%m^yaS&3p~rixaNdvzq=YprDVqUeRIr}W
z<{H7oW(})f94HsnX@1;m5tkaEZ<6i%)thZ^9Kam#-1WT-m4vECTIc*?R$c4}h+XX`
zYcwK=Lw0tSkVF#Bs^IR*vq4y~wKMbOS@hLfAh%ZAJa=Ti7tu!FEE&|q;&7cx9(;9J
zVn#LiDZK))T8*w|&6vPcr4y}kxQ~6I2K1hiyj_BL7GEiySz`DolT3ah&1<7*Se5kJ
z!NF2v(lTlBm%GP>!pH4y8s$14%ncAfb_U3nlO2n*kLsmxtthp}qwCaAw?0X8Yr)K`
z2mB+1N5&u`rwmbO?vPhK%khVY$t4Aw_w|@flXvJ4i~MK*PWn-SE>Lh`v{?p^poX)<
zXcHag!OzeV;>&`vIH1a%Mt|ZDoz!Lu1eY%BK2bS2Upo><89}7hkX*KQk0-**(S-g!
zXLCDUm+6&At)`mLGWZRUcM^n>76$P9cw$Jy{b4-ITAAV=LZ-Z(!3yK6%GBy7dMD>z
zdyl4IP_B;RS(U@n6Sm)@t=#&M=>paFDY~38fQ9G1(HeuotEReI6%vWo>?KzYI-;KG
zxIN--zeY?k8w{wZIO>9T#ovQNT`(Qk)yE@Yl)pO<+n8f$(>{nCd)P*~F4~~&rb7>38*dzsbJ3$8s6{yX$G--P8
zy@mWUAsYChZG`6gCD7)EO2s?ZDovk~UGU*$IAS3ywG~4=QA_Bx5U(=_Tq?LXw|NZ(
zJ=N>Qy%aIn$NSB_R1!(wn9r|*%q0;;G}!aq%@v@Kf?KT#v~J?XhW&$W4<+R)HRt5&
z(R=JE8GCmna$;F}cYKVYh*2zk0eLVzGfq*`ZvkOTQvQx9-R-$eNtX1yEQurLVIMvH
zNEG(91^+dVs8r+MiYTGj%0KU+LPY%I|G8U~U3BSqMn*rR!aaE?b1J>djGC-G+2_2gZ92
zcBr3d<+aHMI{hy{w}#5vU4l7T!fzN_PH2_R+~zoS|Gy$YBJ^Fng^}`BK<1#J{9eb+
zEw3pNF#n~FE?WD98&KQ~XtKEa5NG`{2;uKD__<+us}1%FjbpKYBh#`3q=!HKf48$D
zH(y5u9oW+kp$8{=tgeDcU`$ZH=z5L^X5m$qp;PDYa|xRS;M|XIi3T9h^bbjgo
zOtU=Wy5fogg%ACY?OjL6*Nuq?VQz)OeUGA{=jel6@#b;$m
zAHdtgnrhb&tURZ`NolE>5-{&Zvu#z){Ie@|+d7ezFbvdEC#9FxEj=+Q3v0ckN5ghB
z{Tz|tanLbSyK7TylFMavoye_nCPrF>6chh_
zgzY#tm?Q1H-DL=}InH6-r~E-!s!&h-(-YlC+~k)?h85H0P7>1owIE*s>(u~K&Z@*G
z?NFep*J>)x6)>g?6K5McWU_5rCj>h{!`CL2g`Pu7>uV}&{zWv;fMUc6#y_l2Q1-q^_&yoRX>3DUNz*WtO0+1JKs
z*BrrCR+_lw$8*Uo#qCjE(K}^3IH{SjUdc1ViBz5drE?vn&u-?2hCwl_f700V6UtL7
zQy^5&VBh2C4oDA`FaR@|9N4Sa%{*Wb}H3-kkE>;&}8n=P1*6&S&$cE3AoW2TnMEyzk$nZ-T+=
zM;NkmZK9o&V)|5tlYQ0$6)M|M29_lAjp4RkLudA;9O=8#Bbl3KZ%1{CqYX9cYRrqu
z@+5Lbb6s7&UvBOJocOY?t+zYIFnJ2(v+=d!auMhHKM^I;gR<1hs;b%=^NPiD%vsbZbihVmPVEu>
z6eRq;S3uA0QfVLmQmlK-aecZQiZvf&gKYud-Kp
zmjh`(t=KbfDk<60Jm^c$ViZf8GyvL7(ngb@4#6%zHW
zAST=O#_RgIiHdX-0pm0X+#5Q2LJftq+OaoW1qn
zL!QW+K2Xy{M+P|9*AaqbXf)*-=RCoAV(ZI9Y;;|6ZKvbY5o5HeL)+Fyp5(>4JU;uulv9~*
zslJKy(m*Qhc%|24%3_GbvGE=;pjY=`=4YXT89Fih65kMd?Zu;278tA9@oC5`(LrSB
zkqRy1+#sk4G(pa_U{+4S4jZ(9y^Dfj@$6A9=8;N^&&brc?Vh6zhgp6cy_#!Q
zr_uk%W^Jzg=vrxNi<+PVA5gsQy%qtB0*XR4Ie`8RH|~OWaeSZx|7vnwx48Rc08QZm
zSW2f7FILl|lanhvXCo^mD#F3+g3XTuJzTRo|l$fwvfA=md=*Narpq#Q4
z29vtw)I>^>c@Zt;6dGoJdHRi)W{@vQ;U>rspX_)|At8HfH-%
zPDq1#NSeWZdrtpXcw&^*4Dssel}GLWu`)8oG~d8Zp0vV9)S91hQ?S<()Iy6{yTeve
zi3p03EeZ3Bv`LHhKRt3h>lT3LyEgpgBJ#AtU=NyCNViznBa84b_u_E%fR4p!dFnOO
zpyY=KVcbf1R>>*QS)jcny6BN|@hd7*v7Y+m`j|2IK!KXsxB{p+L;?I5tfKfDf|H!9ZEyEO(}-YaQ`!^Q=#YT7cKDX#aC
zqu|$`lDErGwI8O;4}DpvBpHx>eUjueY69+cQwWi$k7Y?}|JEw*ozW+13&@@J#hm1s
z;!uD=$SJ^%f#Bx!BHW*~H4>2HPzw!{G>^)*L7195T5^GM`KF(qy5xrPp5)cJYDrxv
zfayjx{#QwtZJP7y3-5-5?UTe>ZEj;rrv?ZAAhAnMaUq`ODFu~}gfkLFsAO($EfUH_pJ^bG3hBUH7?Ey{3b%C!K6YOC-{r=xv^zPKA0n
zt(=w*n%%NWOBTi_GCf%@
z9@>$>y~)`Rz{(49Jn6Oe_HtATyNYw_iJ-q@FgR%()$`(U~!A)H_UqZB*m%
zDEQN-ZfeH3xb5BiHPHg@Y#9~(zitaJv8priryAmvWpgN!7$q`gl~YZnrZRpucA3bN
zt_Tmr7gZ#QRHbIs;A(h>53vXT#YIf+q-F=N`pAv1-3a@cV)JZZZ!zrR)nbX2Zj6EgeT{VSGiG)%0Pn4U0xiZ`djupdY%RIUM2
zgIt|vCJ23#>*p&9O04+HV#pG3-)l(&K;J{UAU9)e;YXcdUhjCR8
zI3PTtzgrW5-Zl^0>{`hqn(qzjHuE9gUC0B)KhUG05J9LRbDnjqJo
z2w9fvs+EnE^DjzF_04mBymk1Z0hsg(-;0MoQc59UIK4*(K9n&W{8T?_u56bQWaAgz
znNwrX&`uSQDtlJm1NpyYhdgC1GMTpRlh(tbYGXXn%#VrPH&#Dp%IWFs1JuwnBR(Ok
zG<@C#bs?}bv0e5I`26n=sVDP%}4w$Azfxs$45WI(|A1(0SI?7mLBYbMKRW`iRhPEQ#}foT&1jXDVX_>Pd9Ku{d#O_
zsa#gSZ`AcnADn?xk`1qX+pMUHD=T)-)wa~G34{+{Mu5@*Aa$^R!||7yj2F_ta{hm8
zmhCDfrPz&;u-}WH2~4zD)KHz_2gX#xS*Iq{)s~a=CIA>*Q9gKRFN)CX!a^xPx`h>A
zsD&`Rqh)xE^eP@Er@?e=VFt^=R>?5-oNV~})&Nzx#VU#0%kguzQS%Tr>&DXyVu5BL
zy|2UOpfW9*QnF6If7W$}v@@}Kzi$IQe)w8fRnMR)7qZ9(ObU4JY|VTTz0d;@Q9u3p
zv7aBfZy#c|3fiIJ`duWmh$UdCg4yn4pR%F`_h7oMw-UIZx>=`%z^9B3;Rid9{xvUO
zfQahzG}}4bd9dLst>VG4LHCspxY@x0wRwmj@Q44gp@i9l-o{_wPLMXN=nOTCa;;GV
z&}Kf_;wxk#=QA{FcQB`9Y7QYL_CQpsz`O%_ruuf!HyM2U^Jy9B{fK5vxrx3Pa
z#?(MNh^I+zewF57@jHj*^jGP((lu?<+27i~4D#Ok25+7~oK)DPj_&-f@o;H@5bDC;WcL=
zjnDQG4h}#5DVT7Xvo9pqSv0jvWcr7CcC5|(w*BE57~cDUL?-2lO`GDYMrW1ST4q@c67?#d**>m&}
z5;Cu^CeZ*&^yx5vkzlqX&wQZp#xM;#HT%&+OVt<};-?Tl0;dnlrQlM5RlDXja9(8*
zzjYH<260L4JJ<6?fE*)vv+2iyu0?Cqs}4wRf)Pj4rMD`3?@UAdgFX^Y>~v=DfGX!_
zW(3U)F8(m_GzC4^@bgB-A0lk`S?2R1Y?VspE|J}77tB36?k+!1lXrE?bl$xNzJ7hm
zcKE^lsjZYU(SWC=>DozLzpE;q1KvB-ix(hbrHcAowXreTz1DlM7gtd+v>L>EICI0|
z7nT*6_qnN2C{E4{8JO()(!B97KDzD!7w1hk=^LwUzwiFgs^s&+zjA`1y;3qkA(4A;
zI>oG5vbnaNTrI>a5{vD*4ml;rZW*bb>Gy80(Q3XnnI$QhKLQ6j&Gzd;)MClhfi+5X
zw(uES`bq7H@pDg??wFzxkHGvFTy|G%dzcW?Xb|mCDxsg5RLlB-a|k^}$dpZW2J+X2ccRUb|^*a&d`T=;(+orPOd|KG+@5d}dchBN}BMo4Uw
zfOPjZ1|yUd28g7j3JS>R5fajjvC-Wq(w!SpDkUWdNT{ga=lq^O;at}_pYwUY@B4n;
z8|9)Kl~FmD_q8mp-qIOfJIIcAnND)yUN{H|D*C9
ze0`gx{3h?1vz*!scb4e&1D-Ik=L2~q{Bm
zxc;chb(k{!)j4-qD_D{0iy=DFlac~rOZ(fT7IJ(*
z(&Vg07VaG{n_+|A*P=Y*AJ{t;Yw2PZU>}t+JXpRy>1u4_@y%vs%LC=MGl~{WBZdgW
z?9$I%ZX5-HkFP-kWyQISS?f!PvP`EfyeA}?`SwR29{=&&_>U^qOqH2-*Iu*?h30nR
zx1Pzpy^%Kthm^WNBR<#$<5;8IUQsEBK
z?2Z%3!{7ie9vwl;U{~v;!}O*YFsji6Ra?Fjlia}+=Z9j4o-iZe6TA=-30R4i3WdMc
zn$iAHVlzu!M6U9AdN%*=%b^0}>n$DlIBcG*g=QZr=DQT+
zdtsUNq5RI$Qn&RgrQLgv6Z=zv$8-}WaBq@v{S2|P3mp8&tF5B`KqR4Ghx2zX3;
z`O{2ejwhKoRnx6@XL^;=a4)tniRi)45xxoHt2PdB-_mhac~bT76RE#6X5{c=Q)7hK
z`oD=T)7SrwwzEA;@;h$7swtnQhQ-@oy&-vJwiTz}*Ka4$zO(S$S5nkcf@^301lL-F
zCTJ6a*5qvc>Ir;*l=UNr-#5w@k0e7IBQew|bK`h?eq8c*R#%E56*FovT}U
zTcDhe>rkdKq8{~u?8=pR!?~G_qpUXSO6UKm1mnMptp$V>iIBs@JoW(Hj1yA(H!yc_
zyyGlJS+z|E#5@GX51DDaEgI1=^Y~)y>eX~NeNhha@}{gu;~+#D{lfXEz?%j}H}DSN
z<1yCQ?ts#EpH{zj29J)XRS`>AR*57TKUH2si6(BGO#k%kj2?GJH15^)RgN$~8T#!sA@=}->8-bFl8f&4@a2>>pkVgdTolk!F
z%K}mJR^+6nscUHqsasp44>xY;=~+(A%#Atb5o{>=2BjIU4KO$K>p?Ev`MNt8c_E`t
zmG*fZN-US!y`arAP(-*-+t!EiKc;mqQ!!~Q2!X26=^Qe_LxIg9b!S{vks4mnNK$dX
z_U?+g?|i$pqi=Q&WS4F%sO`zzQV_VPC}Uvcz
z#d++;>#gz5_WLKpT4-87axKAq_O!=1N6*&*$4OIp3lnhECE-
zQz%X@|LBjjJxc!ZHb_eNN$@J>vsTCspEJE^C-=`=Mk&m!&3S=Rk&i%Ck9)Sv#(Ffz$B$mt!MIDMO6XD-ihve#rot
z5M3>Hq$K)P*DW|3oHozNMC_WY@&iVt0mj|$QWxyy<-jz$7iP&tQt5wu)S{nva$yqdp!Wceb?(I&Js>vBY%wrH0Z
zXVF5Pw?z!AMK
zfSl}bucG3K^-j>g??K~cv7g9h5~qVAmZ!G1cOM8EHDh*m@^zCzIy?gX+@oN~vmdd%
zT#OiJ43<~0iZ|}-$pTClO3o
z2p$rD)->}Um9z8xWKP5IXiZ7GkB8mt#1b{b*Y-13uXx1Ig;_S#Ta>4wBtoX|x6}l9
z?mpBm?4jsc`af`KaF%Uk^*l?|$bJEzk?BDglW$ofgkO^&Ompx!w2TK&x}R~(ju9qFS6zcSJgS~0uLfz8OI<@UPo2e@Tb1W
z0UW|yd}f_>>A$WL%Jc20$N2jnvwxy9nlmR4UqSUb-y+je*8TwO%a^~G@!mmh#fFA<
zF`O9{B$*KJK`Lz5lV5a?g8j0R>qvIb))zP`)5VyZXx$H_=b6tV+5-Te-(~WFegeq`A`$
zN_mjg%I6wqZr!-*YV=#LKtIbyI{u@c)u;JlshB>PVLzI17X9hlPAH<+_&i+sp&R=$Cm__W%xY(QW33R`!;LD1={#Gk*YshH>3Tkch^82T7mPzk4+S
z{4-NJa81x%9;aOx-FsS$*hKld&s~v8lbg6N{|Xb#bl_yxN|j
ziyEGMMY9p8ck7>efaD#|Qyn7&f=Z*Nfq~Wlp>b?upWnX~o*Wt-;
z6f>~y?lPq6@lw0t`q$K%Y%6W1;;i?`YTdd1!N_rpj*u4Hh
zR+5wP*d;c2Ty-uk8Edk+a#dE+$joqD#mxpMdfhyJlxE%+u*FUl>9n1NdULmqZ_3S~
ziV5~j9kbV3C=x9>qyj+;6JCM5t%1&fs4O#uUtmw3r~5{H-?>_J=b+_;tVx2y-hXof
z_bT4~vvR%CBenB$>nalFH@8MS`nV{<}@rwn}!`fHaiASaPJ
zUBzrBk=kfzr+<~01LzA1UXQ;mgcV~%GrP{tOaqOL18i|o;X0pN_?vTihAE$c%`xf0XjZ04e83y*S+
z8;B_8&ja5~a#zd%QybUQ$EV*S-o<01!v6-X6!pz@hJ}gSf{<2v9+N5V+y7?b55f-{
z1DTc8YfxOHNw3PutLoh+#ic+ioL)VT))^C!Z*@?(ZPN4u@vE!H9+h8ST|K$!nV>{7
zxw(eRRCLJ~&P0Ysy-U)5$diHo2MnE;@=8*cI$}fi|CHTRdON%-O5)V5%3&88opCLy
zN(vp>?}DjgIgUtkJ7Cx&GW2&YwXHbo3EARf}xQ$66!x6LVTlnBU9|LfW%Fkcn4p&S+5(Wl2)nU?(
zPb#eoLIEZ)=d#e%Kzi86Zzf(vyT!>*u&=|JJ_wb|T9Dxp%R3f-Or3!rzPbthyCvXK
zK%wrF@SUT~axQvMV$hJ05W%X%dL#QA+8%+?d2FP7r6z47<`AtwPhhc}AG(XNOA?Ms
zB5~(EJv6qRb=oLSylUdr*ofaDiR5UNVU#T@w1%tm0_2*qM9)i-x@I2d7k3HQV21e#
z!>c(jstt35ac?yqTv4&q=G6`5xqaF3pZ8luKOZ2@H}Bnkr*gRLE`N$)$XY6cSL4y8
ze;Ovt2n3XkWiP7xT|Z}44y8q&8W`|?sqK);iA8AZ-L;Z}al--Y5`6guCM4HE$0Mq-
zMv<6WBBywgxpl$}uo|TQJ~t6oE5^1)Brn4|z3KfpNOuTRg|AmY>cn)BxfDGG?jHw<
z`7P6<9}bM00-4K4j0}yRDQ_R;c!1OI{fg!wMK6YCMK;8^&6!kQoovPeBH0^}WD=VaNU8S0uNk1yCGO9ojYu}KK
zFC#4>(m{=nM6mHp+2uZMmAzkGV~rPqTH?HiZ@?FyQ~>SrrIMhVxK)WX*ELlr^yB!G
zN+h(tOB2wB%M8B61QsP+c7#{tITQw;uLEddruNZ?>)oTHTDAt}zqnIa66s^`CF)0%
z?2~(O5QeE#x4WFFr)PO@U-nkOOV;b;OSytNnA(m4LBW+{tc^20s1{PO@vBIlzLN#z
z;7#mxJiQdJc|&{*s%x;BeYYQSpWIt@`p}kZgFEZz55@3_mBH_zWp?G?UQS!Wv5c+6
z;|9wnsM6gv=)PI(auch8U`9!W`;`$^=Jy32_I}sP3E%#sx^KJ9GU2|=JkKr8F7xw5
zS}!U;{+r)SV{Jp_sp2`}s7HsB<<<*>EBZ#)?%WVfra}QXwgT@H@yFp-s8PeO#gWmj
zJZNnQ#6u*m-y(zY)(~mTW$LkY`Khnd@8QyR9^AdEs?B1N)0U)0(q9*5
z-}hjyj$`Gc{yo*QGgCQVzZ})XF8%8iKD9afkv|z{|73ktJCd-#YchO;Zl4IaYY5RY@hpk
zbHm>rB9T@WRZ!58h4(jZKOI!^&}>AnzA!PL+C4e0`k1ORP19fki#I_|`AdqD#@O;c*kMbZETaGuN)XNr?#q-%W@t0(xG0DO)hQ`Qn+CE8i{Jyk>cVPpy}F
zIc)0u0*?)na0RY8_uE09FqdEBEvB`qFmK5SuF}9%$GYE%+Q+wX?YP(3`ZBtURy5S~
zTR=f>*lmwNRCjGvN|BQG=sKp(eAD;zRb
zbBP~A3)AM?Z~nMI3GbNU3O^js47iFA03re+y@9(*6|okA@v|an*k~d3SJ~c*#13e2
zL88ww07cH#{Rgy3)=~PSeOLQ2Ur!NNhGR`HvL6~yA>dg4F3C)s6Fai?Fzq
zvZ^oifHODdom$Jx^ICa}iloq=+X^&#lJrOh3pppTo#p{~7lX?KzR9VsnT_S5oX=qo
z5@OuU2p!^&k{!0QHrGd+Pc!2VXDm=i#|;f5WO||X^Y~H#YsdgSYW(ak@Sq90%7v0^t_*jseYXiNKCP-cW@Kh-kGyAgZp2ArMVB@-y;I+VO
z=hpzs753cap$^E-=B>6L#o2GJR!S2z)rjA97Sll8j)CG|Z-Ahc8h1BLP+$K6bEwBs
z+vIA7K-zxi1OKE8b{%hS8R-gh0c!}SoMZ|>*x*tPkTdGbJH{`O3Y${T6
zklYvogGJ(UZpCAHDLXfqTTwp0)(tW$qS4GCON>+&V}lNT&gF2Mnyp%GqHCrj3_$(*
z+`2QSpS9m5$GIDdzK)SaT9>3mxqlhl`oTaqF3&?kOqzaTVSYUVeL)JVFNe>!o9#oo
zqTA0Hc*XDIDoTP$cAIs9Hteg#rP=7<9Z%l?vSCVT(Z_Zb7tE`A*!SmQ_kn9CQ)b_I
zB&HoU{8f5R)>KUNoLBgPuJ9w_a0m1yD2;NQSeZ^Hj)?gAUb1K;^}8Ja_1G#tVzHPR
zY*6q{~raMvbz$Z5uq
zr*G7_-b)iAdf2+SYd!UxDF)Z{u(UMwPb!V{Fn^-GdEHI$bNE?c_lxqgOn=@}j;?R+
za!L{^O+eGuk8ueRE||;V-%%?Q(@B%moQIKuR~rZZ$d}RjL;#p
zq6>*PM_lDBOLR=hzA6vpt};`_?tTBz6;_xdhOQ0_joZ}D*Doa!lAKa{zv{$2lD>hr
z348#reQ1iK5(Gj*hB*?saGIz~K}j59Liw~V7Et9%oQF9y_lIlU+|7!Yz{FP+>oz;<
zQbBYtV$tEQv@Ej$>jtk`r_)7@N9mMj(5x=+^6U<$+JIA8_Ppg0P)WQ0s44&u@4NrV
z6)G9Rm!rpdbWe+`2r=F5d8D%@`H6m)Eu3MTFf^MEP48-4PgWi?&ZpJRFWENt{%#*u
zT5Xm5@GD#Pw!(8~#F~2Io_6L>JXqD
zq3B3S)iV6sA@toKg2Rs4;(bA1)s#B#%)MXp%ueBl)9-3=^TYWV)|WC#lap`b8Ev$T
zG}6i_m`y2*a8G_zy;Kx1QeFm%ZN465a4g5hiSA?wln<`^H!?ZOOwX$0dQ(SDlu|1^
zAK_h)Ogn^(@?Z_s)rq4V*7B
zUtfE>vRd7Bs#Jj_Hs9`G9@u31sU$Q35EobnjPtbp%}jv4V?>YW5Auo=uNE!BLquW9
z?&z87?5JPrpCGPmoDRqRXs~{<^Qyw
z>z(r#fLayn*de62qsAW`gn!_49~9TDNKU9o#gz$gNXfBY(48o*S?BLsz+C&i0T6=%
zNhT&xKg%@kbi-pado_(uirFLYGP#ZT8@LF|u!CXtjxfM+V?V!onEQYwZ+u*fYUoQH
z^1_oxAt|ajvn(n2bWNrycyrbSY{QxJAC(ZKq_j?8q-RN=_awaiT<6h62itw|lmXXU
z>luXu<|b|QfohQO^ngho{Pf>dL%MIhULJX3Mu@-ko*3R~B
z?5`5<5MLQd2PN8bWYs}Fo#q4{#Bh4g+rGll>F*J@68K3a_n&0wJ148>r)FLj4#GR>
zwy8V4)9C3Y0;Llda`iIeAmwrE^oAJSETq1`Nwl!Rj(w+-`9ZKeL*?S9JwnxqtmRp?
z02W*}{#A4xkGI)##ua1SiO+Vh!)8Xdf_
znVD$s*~3vAd3{ZQ8v}gB7#*$XmR&jV^^EGH`&-Mru=0-4Yi;LJbe!A1#m)40hQY8S
zAy(OWi}xpF5Y*qk1d}D^AY*aE=n*r`%;Sh{a{#hpq$7qy#wzlXm@ug<_ZiL7AvRb|#e!%W9P3a;)V!m4KZ^gD!q4C(CaGq7l6Vm
zhsqCLNxd=eZd=Y-=dH5d?-S~07r_tCy&u~)U9K4F=TS4BgBy<>)g}eAv(gP3vGFVf
zpFUK+!zcI;{ILGl>smxgwPpex_U3D_7=l0!gB$zDG*eUinH6K6}WiOsz|Bvc@(A&T)I!xm5>;9{RikGxE*N0qo
z7JadmM4Ym<2*&s9Xpp&0ymVoZW$RD-ykS?GyshhFV#~LS-4>3R@vd;&T$Ze*bj7Oi
z*LE&bNcbb7E6ug?{(hrz|7io2Ju}V`T&*6EFk^sDzOmh&M0_u=Z_RmdFz{)KE5~p#
zP7G3Ugy4!wQeGtZHP+32ml)UahS{A$cPpv=0RlSz)TIrD;#d*B-D99%T6)FJPf;b)
zOm6C)vz2G(Q
zV)2CzOtPmpW`D0aDATXT*`SSde%0aj{kWO|lV<;qD}$hGhgEqf^D>EQy5?f#a?JKl
z2AB|93!he<-UP3eAeHAepN;G-3t#M-z8l|<9&ow+WQ*zCR5M?(G*cyWB^lOIa7`>1
zG1rJ_qq`1BpK})d+^1tj#lTeO-L2!y;O0bor+yXF
zRr1EY`-0HQ=bQ=%=K4ibo&s%)6+J6ZWG9@-u
z<+|MNi=;%V(86CNaJFaT6NCcUZ3Lf#dm`p1x_pX5R=C`*%dn=6HMK5QYTrn$9G|bE
zR=N%pApcDGwVMdK#0ep_2agO=zxcTzpl55{UDh;-+`hG7yXN&5^h~WfA7UKi7F=)h
zt=|cpLG6|v_LRz12_Pf`?
zXaPM1y@t%VRSsF)mcv6&KTe&HvGJVS#Tny+uOoLi0BKG$yg|(hSB6YF{NVa(SRAQ^
zR7u0X)Kf?pOPczf{yRghGanEnLA9`pF!5FomsD5X{=q+PXb+V=9^Gg9>&ZIYtaY@c
zK((ef`UwNjhR-H{fxnY$bGIghyGbhWsEu3dt{`n_r>o3!Njb}*>ruGwf-@pM>UIM)
z*|Kj424vUCGNxVA%X|BOV+Y`ms9AqD_W^x7uhyd(ym^dP*J{|iV1XGvV1LaRg`sTf
zW6uyCsj<8JnT9i6K7}ok*+q$d)+<#g^Bo?0S8eFWwb|*}0$N!8j9FS-xutUByOn;P
zS4EFmS)S~^1pb8#wJ;<*_qYnVaSnO7^=33K2$|tpCe;8%HrDITo!E#Pad;HJ(&LQM
z=eAuTIy6mvZvz*8y1M4WZ9E^@s8c0ILW;ZmJx9JbEMfBt|s3^4})2-_Zl{xT$UaZ6cRQEy(_1r
zns$+K>zML$H`$un_PyYHl04Vb6bzD!-cJY&ZovDEQvPjjNFr})@oY9Xb_m_8vtlg2
zpa8q-_(4z9hN!*&@!IweP3jn2x5T4l4tua~Tr@Ow)^P9cXOA46jOk6L{z6DC_wtpm
zq4PSakVnJNK-}C6#mGp7SxQ$4pLE5@z+yEt02};;^@j&
zfm=@ilVX6Z#fPb$%;n&!4%?TwD0F3bW436;_7RE*i7qGL6i?wp#ujrBBi^_hm~v`V
z)oE^s*M4%xq2-*alsHQ|)HExnU80hlrekBO1ND~@pEyPOm(p1jMzC}#d0y7E{ZIld
zN|L{O=e}JMHpY9&&O$F0zWy*^XG57JTA_O~9%KpdH|hp?O&#!IX1p9NOG
z#5Uk~>2@xg&=4`mncFhX%j(7XmMyLsj`oIEPcDz?x3vOk8HUb$l9#^=xCE8N{fgc>
zD!UX{I~Za_?iXhgzHfcA+?o_k?rG|pZ`U?sfH^4V7ZsKfhYsX4P1AfgF*q=bIf`1EV6ibhi+8oJwb
zG|r$3)7Dk~>2!-p4mCg97k?|xE}~IgEC}go6Y=qKFtD_DJ*SvSqAt4<3@{F2DpH1U
zOIFvp;&i5B#cYk1ITqi?s^1E^mCsFO4&p>eF=FK0lvL3q%_zkzn9h5MmeK=cwSfv>
zAb{iF)?QfpOTCYR+pHyXA2phfd#ZTSMvI<|2*jWRP1LmbnRa-KeGV$~!b(Ew)wI+^
z_#BQN36=~Zv>O)~TFM&knxN+qs-M*`Kijp^`Fv+nSM@7be=sJYnSa((rVnHy
z&;6~W+rOjJ%CUYPa*=RB_^z-ry7<{I=v_p}-LP}G?~>JCz~YS9*?E(JOQjLh4Y8cB
zT#xt4$EzCQ#&nDNyF=d-TDVYcypulM!~3XiyPkTVPiuZ>`(Z6Bk1y!z_Z9x5GP>8#
zIt4U-4{f51H=Pryiy8;0BnB(0&-*%JA0nJRkCghoq?`)4{@e|4bU(5g$ETn@gz}SA
z_SyV6ff05RPsBV#W0i9>aT?%S>C4RLv5U{V&+ZqTKlk}X7Eoy37H(;OmG-E0K}mq?
zLg68MuMh_qtKP5(P#We%aRZp=EuS^o76${p(K1EwBf*do#s`|xAEGggI_p9E3;wxL
zL{jsyix9C8N4RGnJF4z&^LS6>n(DjGHJDMw*S@g#nZs)X_pv<{cu_ubr^_Ez<#i~9AF+!
zby-(Pb5O)`KBzyPZ&zTqOFEpi*c3m%@9r};pjmR;%z_u}au^nrFX2EV2L7O-&U52%
z*?OIl7h@y&yM32|G=k_#?EJ-I61UaI6|Sfbp2TsLLoIkhX(8Ssv4&KRnUu${tL<`U
z_**urT{{#kq2&ykE%_V?Pq`X;t}W719#lqNA+smw0u|W|wz38&t>|8fU^|e!8Mml#
zc|RUuVFW`8Tg4t=#IFbpBPIo9?|9pyk5oPJ|I}WJ$kVbZLRLqwur>w+e9NZiJ?rZs
zm37Eih^CI;UzlDDVdIhJaCRy~@<)6JY!M|&^W$bIB|U4J^xhcuLzhkn4A$xuNv=yGI0Lwu(rfr{$tOcCg1`>@*+QTixHiFY%vG#ef!>t8jf5SuCdIUPAgtISOJV<+jIGxgJ>y+hdgXqJqWn5pLfmk5*#LcB@8l}j@-pAIu|OKX99
zxb>h;%Gt7@fDK{I79lx1c2K;o65V1Po)K_E8tJsQ@KQ3%aAjqgNn)SG3b?W*Z|7&K
zny-J&iGf{YahkEP8^1l|==uq0nt_vN17;#oz24s*EAa8q`=hLobLJGJk*d*#uyQ+~gy=2BO;TA454|ZUcFXC94mZjIh9KFF9heMzb{sz+{Iqic
z7~Lm2zhU#*!G#r)_6hd`IY*6om9ai+(mzX?n?5PvbDXNBZpLa}1IjU60EBr3*U$M@
znWYM)mU0Y40Q$p7>wG|LOe!7vc`F~~CP4SXV}PJA6`{M#=VjOkrwm%fC?!s8SHyCHtcjSDvxA1(|znQ)IOH&Ei*j6%^_qo7*kd@{ccq^A3S#S_!Qz2
zf~h$Ei4EC42KjKumttSz#5gp-&BZ>GE!ymNlA0W%pHcSzb}V!$2UU({j9_Uo^a0kP
zK_l?jvND|5w{z71INwjU@m~|jf*sTo7swczB*&c-Yb#trs^8=8Vq*z;?46rwc)cFR
z+?!rDN`a5sT<>|bo|Az|sf;t@bSB`lR2GF?-VQ{7FQeYR@FXkO(?3V-OU_3v=2~@t
zZhjke*~%~Q+4P$oZxeT8b`nbFNf|&POe7F9I@I-WGM)a~EZAs+p*+lZLW>2>s8%)O
zquM-Z@wk%3d%wpd|ASFlE(h<&@j0>!u{p>p2J40|d%q#$)}mxYvzq*R4ltBi&b>Ep
z2S-}9#qODY@`wA)s|I
zr$$Jtxqixw`R^WF<5qRlgB!8*Tr#(`xM%;`>;>+`D*trf8g_hg2zMhY*saBA=ym*?p@D2C1MBk)FZKN@g^?t90-Z5
z9n_a@!;qrqnoKt&jObmIso*ZaT2h_Op~Ba7^Cgq;(`yz+I%VwyrcU41&V1BuGae&4
zZdV;!iUu^&)47eQ%_H;H>f0TkAoe}`Yqlk@&chQ}8;zmrG>A2A*u(<+PcU&g7>My~
zA^X01$W70hZyu6o^rzk*jx{}OFOl1|^qy~jVDN79(>?KT(lCoz7x$vU%~~$y=IA=x
zOoCt}+BKI8SDBx~(LKtqEtFKBnK{*U?@fr!6>+PVH37Uq!hK5%Bgzb)u_ePgM)pbh
zZ~WKCVoJpI;7Qp7w&Er%z1J39o`Ae109-2jDC^^+sDRxwf50g$jRYYiesN0VAlk=y
zl`Cgejce1>v(^n!Zg7kEF*s!C#g23N?j4{~d^>m$q2|F^&G7?a$zB*;w1hleEg{_y
zurxZ$U_{{N*v+X%c`HO#)9dDMcFn{yrme6my5R9EO{XVh+LRcy^6tVa7Teto;}E=-
zgwCOr`E@P&S|;LVLg&J>{6c_}_B3T{V0^|CR*E=PV#T4oG8}Y1iY#A}SWvW-#&RkZd1Tw#dHfE304xiD8X1XN
zju@;x2B75*A}(c*A4k0(hpWWJ>U#Zw1b%nDKEPDE2gfY>nAj8<~PBN!pu&
zlhA>$8of8nwe+A~NFWGU1yl?wE%7F+wqA8xo&ZkL;QFlbmYW+rn>YxnvSP8G(hcb@
zZdaUP9Y;C)S!%J!Ucwke)#u`%oY{LTG(cKTpt3kuu3_gmog+N7GpxgXV63sphT9ig
zhdG-2rIT3X70ts}Cb}Fe`bye!Wuj@ulJ0e6wt}Yf&QTy@bG6@f7tG%NODF)6414s^
zD0z%Y1x3gx%DfXz`F05={8sr~Q%%cr4I>j^gH?vJN$C{76i=&s@wXd1glB(j7paY}
zBxqhIj9MhR?(+yJB@p_I`+Y$9nTf+>lerbFc-%
zQMPqAxs`LggsA0AjO~i0X4#^&i-nC6WLev!(>dtUho|R&07;o4cG=aCY)Q9>Q6XO<
z5aKA^92q;M{Ja`YFLKN4?l%BV>ZdDed<;nj=gbB%f7`Q3V&N(MDu<)=jdc_!5l8Nj
zP}ir95^OeaF7)rK0YT&ex=43vY=*g+O`E3}M*gv+r!#2E(Si0MG3H&rI47OHi2iO#
zYR(!hRGQ3N5K1lpuC{C+fwz!zxCGLNqU3xGocQKqQ-Zh3vFG1e7UwtrE+AhL2C7{F
zg6GeBVhK2phxx%E619a~dwjdDWf4r;i7o~8_Z={ON1L>?iMwOmGV_azQ`eI`+)_Hn
zX5ZH>6qP114|9(ynpZDxcU29(g9Ei<4JfO9Wz0Y&o_WrBV;C_vNc+RUVqFcDu`9$N
zWEZF{W)xHRSNO}tnew^*PjSpfl;K;Xic^M%c7_oOkuoc3hZsJm>OA5kqU|NZXe)d$Vhvj=Qt*
zm^D3nCN$8m!g90%ksviA7>h#QrhE3{>O(!=zkr9dAaZ1*Zd4Bj(g;eRNpgz+XCSdp
zTu;@)l;yi;iEbH*DL*#2qRnX9GPM#pcD+vND&2AYlv_SKqB3TX_T({mX*VgQcrjjo5%=`nlG(@-L-T3#ip}-n=HK|G
zgFD$6k^iVTf;W>q!y>;lL<#2KvbV?)@DL7*IG;G5JjiJ9w|~>9Hs|%{N4HOIUNmLF
zqt*W3L99p4hs9kb5f3^8whh|7
znR{$2lO2Ir@H-uF*@RM`H^=V?A0nBl!!GA%PPTP5&dIsc|Fi0n!MMY5V!c`5(`<0p
zr=(AKubZ3x;^Tf2y@=OWq%Y%1JwtAm?3KTBiNAl8HS<_3*v3BJ@Ll*5)@#9b{Aqz<
z((Fa=+F~daW9RA$gYhbNr)!BODUxlBKvxXDKG>@16zRy{X_5Gksv0HJ+a)y_F12sc
z->4?xhYZ(NpetToeJen_8e#*!{_4dDqrt4}(wC^?8~Te(D!THJzK2neOXc)ULgSlkg
zq^`)*YG*xpAJv!`Vf88$q%x3whra|xhjENQr=54$9{#d6z7H^*PEI7vvvi8flvJXh
zL5D4(D_>0-NJcn_&Nfi8r5Gc_scPvY_P_tn^sg)8bMQ9NI9Sxz){m2Jxm{IN*Yb_3
z#)J5gS$*TyZv(oiw3FO#-PEIm>9!NsT(5sJ3s5BPMeu%#-gZTU4|{}7y|%F>;%}H`
zh(kkt_nbGfx%xq}m$oC3f&_DQ%MdYqdSI>c>hZlbZ|)0Us|H5nLm@TzfpflS|FxKF
zq{PiiNxrz9FG)S<2l_LNbDx)FCi7LjlA3<}l9>wmThMkkVN0u{lQP(&_vh9+kOzj2
z8o@IO`6|V78h>;nO7x5nJBH$5!_3PF%W|aQT$=eLlAw-6f+NE8lB)aEYXSH-R1Hm2
z6O*4NX_J*yv7g3bb~g88^^nZSCC1bM@8{qYOr_7Pt>8ofNXF*#E|+YZl3sK8+FsCK
z=q(gbrOljQxOx;KW-DZ7b5ktQMBXw+--(ISTBY#>qVl_#e%HJAT2&xrYh-m>L5=UO
zfuy%R&DX(s6M3uV`dksqrTE(hP{i@nocccf14kVdOPfs5V*P!3SF6F^S-_M&`*wLK
z>zCLQvJqQQ8QK7H%rxfu{uLd>iHI-x-<7dHDN~Obqif&-S=X#OyHo?noln~3>E3p+
zbq298<@H)w#*xN;z_`6Uo#KSbE6b~5NGTD~h;|6rxiXGD_hv-%)>eMAa<)wqzTgSc
z`*$ZYNH&@3B*%rB?zeH2G!D(}wIKS*IQnBST&gl1U&TxqhCO(t}pssgej8dELJ$0cbm7Mx}!@E9%b
zHwW+nvBXGe@X0YW(G{UTQ4zKhe0osp(p)`1s1uDtV@H~Ey7QCw?^G6iuc)xKMiaLe
z$WHjGjQPGFtOkr{(es~35da4X^6SfznZen|U9GgCXA^fB*pnIrr84N6I5-=bdo)Z8
z6Uz+v>Bq*4teb|;nH*YXf@(Ywu1B9E%>6(x6ANe~xe1hrWIY+stlG=4CQnm%p#eY|v?h%`!Lblzw#8u2zoTnF1o07;QZ
z+^f^j6Ui^)b*GIP<0&LU->@0?2VX(C9!X;+Y&pHmfJ3l7Au>Qex)=%0Q@L;iD3+()
z74aLUZaTxLG4^pGO(c@?EQ^SLD!xXFnG{rRs|aw_*i}iQJ*(%}INl``^EDNZBWAVC
z>*p!XbqmI-!n!e`-&qy2>qD>!4!ohXfKsTKq_642Jt`b^C0FTPLS6D;r{
zQr}XZ*V}V@wBhyjnt0yFr4sLH$5~Yv+w4;9ql)H#=Oww<_w!U=nqk9(P}F`u%aHhg
ze5@rr!f_av0$Ygi6CHPr|ENS3D1%xP`^!su?X`-(9V(X^Oeiq+gl1-yOh}Asaa-jF
zVKIpOsa>|AinkTL*T~81xzeL96BBJW#dYX8&T5JkT=)GyD%4MaqK|G?IoKprFNL)T
z#w~Wec`=-Tl=5LLt`KZdaQ+}x%k_rk?NGlNws&2Ishq^hOJj(A6#R%895X^ySpL%t
zz1P)r_3_2TeyGGhPTGb>-QxC|pMmzKpFbQdlF-VXuBN8#O1n$q&D(pPPB{wwLlbj<
z3~Ru`LgyumrN984%(?>0T*(R%U;D?0j9FrB%zYl{ScJX0{PDL}6B4BPCFtLORKw1F
z!77w_5ED6NE>Lj=lmniszeln>f&TdaXIN3DzYzD_P(FyV^VT~`+-y3$_f#xlAus(z
zCcm$6>B7o`zk2uP&PUK<@$$VlB)4+C0hDHxjdcCbVY;#H74SYPR4xdB!TT-A>C#T2;xYbA_>j-|UjPwSkr=liu)ZF5&
zUJHK|I&Zz+3lp*jxgIgOh+moA+4m7pPDfPAEwk7N9}d*lYX_dzZ4eBFu8-
z^$1+}(}=_=GR4sMBqKeciKR+eg1`vRvf&j8_DyAr+_Nddfnp6(J{JH*q#`2Awgr!y
zU~KFCh(W#1oB~E0Dfw>hO7Gm>nZ9iLDl4UjQK5p_1MnAQ@qkPd=F3Kg`KM-TUDFYt
zWq96o?176*<|D^?X*AYT3;2mfGBM#Nx=+7e;zg)Q%Y3`-H;KxS!Kg&H
zRJlNl;Z^i*oF)CMX}SAp+&}l}*)@L)B`zL+s8^s)4pjr#ai_w|RdH@|l>e*f%Hx{2
zx^`OoY2Av}A}v<)s#vU)rV2=9$-J!#MT$`nsZbd$S_O+~E0i^vsufxkXhlWwlT=Y6
zAdU-*EXimQBSnlDLs&DCAWLF4NHPhtjooR<=JAO}Ywq3UIH0)ItvqO{T(LQLIB8qH-GQsI!~|jy6WzoNx%KEIP=tjr5Pupug+f+8nA^cDSvwX
z!RfuX7IJN>CgI-v+^V3Nk^8o9Ke+h2aOP`6bi|wvVs>Qof6ng}=Lc6OJ^%Jtg^pv&
z0fCWCi*}F4wI5g+|G`;VI7_^FX5~Lu6M`x~jOmJ4>=Wky|Yslo=D|Mf_M-q1*mn;3DdoODIl@5z<#J#$C@}t-O4D%b`wf(xz?jhN-5pdKY
zecAoN-HZQFUHmKJzmr-h|NEQ0Eis`fp>fJRljqt+ev$8eRJJO$FvC(2xza=a$yd4~
zzb9^<9(83DP2Eo>%t<}p{bc>l-@mC!+FiW#XeIOUW`$u
z6cD;W7ro1m^OF(_N=FN4#Ek`?!UAho)Z8~b#?AbpZC%grAHV$XW-{uBm~X)~_=}r9
ztq;03URibKZSwJ+d0(I1IlmoATUJr47re9ByVq*2{pR|U{`p<8(V(G3WbDTEo+(oe
z*9z+@`U19wN1q(X=aX<6T_YY$=
ztA3&1)vPKH*A~rN7JlvL;8?#E;YSgN9oW5lfWv`7!76+<8&Aoua=euTs<{?L(IEtE0otn^S=ddoIGzJ
zCg84D^1AOUDlb?4d%14?%vl1P+gn#^`oZtBu+)@^E>Vxf~`U8&=-em|t@0$HL
zv0`rM+^whSW@Ridr1*KX|B>PIec|P2C*C;VbuwvNXMUkz{a~IrPT%yI&95eSd({VC
z1=QyE&mPG4KH2o>#I)7IxTz>r;HY|vSYNMdAG;PE;II6tTdV)>*RZT^vi$4s3d;Yk
zTHWHlEI=_lZF|l;vFf4(eNES&54$=SN4^>T$*CHz1%i&c2zoH&$5mcWWtWnu&IL1A
zd9hz49-0dxX0!E^w#Ic2HiZ>Kg?wVIQhyVTWokb$~aQ4mjKqP;2
zOYpDvSMB?XN`0<76muo_%hZl{m&QjdyX5g~Qw6=e2y{A_)0{Q^lYQcV1;Lv%$>GZj
zLabv$v0q1ZCjZ8t|DQK1QwQSprVX#XQ{O#D%Fe=fu3j%&m9yi;n&ame8OENht<#H(
zLEz#M7HfU8>Qh0tgpazOMh-)Hh?^D3l1_HQgs2T_?!)rw$D(vXoe+>|#mR*Vv4a1D
z1{AckF13qVeOjP@T&xo`=)wI<4$h~CnH9s(1Ekr-0*?pKyfy^0Ag3Ju0=Xf+*PT!x
zaqAM{=XC6mZ1KjNSqJj5=$G(`@fMr@hQHN)Kw3OC+Aj50(tO1s&yY|!QVeS9VjXEY
zaQLVuqx6>e`dpN}unjc;dnf;k;ZO^~IMT^>wmO3gt~3)H(ei?HMVmyVk<7}9;8E-c
zQnrMdNqkd;VSTjNl9F07kz{kR&RGP?MkU{X4;~L95@g71W^#v%l?fHPSo29wY^aZ`
zBAbz=r2YUcl1@0lNt3L?`?2OU_ytDlPK{eGXF;M>aS(GpHF}3!XqrgT>LQ%Vmm1bA(+kG@Vf=tNBj)3v$`CIMysTxml1UVFqC<)h#kD0mT9j7=pTRf5g(?uA5+Pq`cC2
zKFvz))m;g0B{3p~okqA=g5kUl%KH_T3x=CuyY*)x?Z`>Nh^SF9HkG7do_lxHEID;o
zK7<^ep?0wrGfU|g)g;njcCkE2PVFUzW5<%1=pn{KtI*hV^`aeUb_j@qWxqm<`-$uy
zT&(xW0``N$(0#yqgUn)l3HY84I}W0-&=E#viSG|9rY@2h17tvYM6{ke!6`a|m8pP<2xAsZsh!3O;(o{@supduH`vxW(z
z;QJ)|A*1gkJdr+*gShmqS*vQ=v>gZxI~h)aCl-7~py-uU;egCVUT|v*oW=|Z^(F)2
z{AvP*?Sg?EaAm0b;}AqW2L-~NNAfg{ZuN}29gm1Y7AOHd?rFAmsx~7u%a%-I!Zxr@
zTf32T?tNj0!NqD~l3c8UakCTqU2tWJ619PS-%vJ1)zdCkqvC}velTYe&|kZ4q^3F4
zd`E-Y8L$^*b5hFh+tq&5?2Zu^>u0Fd#mdF0QDbIKpCpdP(bUh4yqnBuiivIE-6TKH
zVJA|YO+^a?Dhr1QGfRY_JLn4;Rtu8)UL|Na@6K-JcwaCYuA1!l{%i{>16)Pk%4+5d
zg_S@)ty4rGsjqUN2Q530MpAy8O!3Su;)(`Ue1+J;mrM57SoH2H6ub7%c1Jg%jg@Z_n=caN?6Bfw1MO(Q4-=MT~#=3x1P2E@{)XdkO#!B
zDQ)4PVR^FZ2RZemFl5Q%AQy`p5kG0T(Kid^^XC=n8O~6iBhSLWHQCUUL3vVTiB_z-
z4Yeg%lO>V_JTgGm*4;F-Y0}{_<*$YwaKZS9rHygYXNy`ag6r@-|0HcY(cPtSu~v3f
zx6)X0B*LxhI@vE8bg_(TPZw(+t!CU~sdymOJmhT>U%}~fu`bf`yUcP_MnKKO3dUf+
zubtEj0`_9RA?XtcklP959cFoSwaFhjY|B{GPOyOjw6~~(om^FsyDd92M3U7tmZ`%u
za7rCkC~&ce{f503TGo%eK^AGOLXMXG5bD61MgLF0T1`B6~lSfTA3t!TAdaoeW_Ouq8
zTO-zGBB~G3B|Uqyj1?U2g6>6eU;5Rt%{#1bForHjQgWJu0N?1F;|Zv^>3D}l+K
z(~I0geh1&mZ|H>%+C}@QFtXL|2YA;2faB>*7}!mWJL>oaoe>_&ZK>&6GA}!K}Ve5cS!2`bRLAa4wP{;%mWjulnXw^r$UW`n&Fc*d0
z6;-|&(ef(Wjx+2;+VIfDdYiE#bD8P*KNL0y4`Dd0iD_c+HU?59W1s#vjuK6
zM0Mv%V#U5g;-kBOf_iKyZVYP14^|TlX$%2|u#1Y2
z4_jZid3pzIT_fDHRnPc|J3Y+uJ0x_M#O_8Stu08iUFt)3x>%2F{WAS)s-na?smuZX
z0Hk1$j&R&8&@D@xWen>BZjp7IMARxVFA)5&>t;^^U+Z+!LNYGy@NfnaC63tQ*nT(f
z-VA84DMd5E*lPGObXVniz}9zNWQH3bWN
zCj6-Aj^V3H^c95(G?gm58ro8@Ln;dE$9Y;c^JH=MrA3vXSQ+&Hs=zG1aZz}-UCO?x
z^3I)-2xQWXQJr
zl=;gObnT=c&peAg!;IB43yzX(?Gm^VGf#2An>B3XqOd$`2Aw`NC3qI3n$+*Ve1uJm
z8h?Za5ffr@^M%d0gqcQnGltAqhp3oGp2zYGE!kvfU4)0@TDU$g*1w#R7|B|~sFpnaD~6iwc#IFgCe(u0b^>=zr)S0-X>KjdYG5zD
z0J1HCykA@M>UiElLfZ-&dw9$#A^cha=(HehjD8#Ajs*4yFtu!i>{h+&?
z@UYw12Ps}VaVEiy-9wu!ZcU<%E$li1I#}Jwx7Xz0gLG1BP1-`Y7XVkjpobVAg3b3h
z)@EN48MojS_86e4GoYUq$Dnd7OM#~4LqkX#gaD(%)}ChXqkJ6cJ-9+FC%8o)6~sw9tJYosyxPx+H^riTS$BvJt{I#upq6Df*Y&brfMg(ifW|^2JE9=>3L>YgA%xm
zYl_kW;HA6DE^h4(2(ja_hhMXh|C`isZgXBB}$w&|sW(F8?7_x#QAUT78O3q2ih?oFDz(7Vo
zkf;KJfFy}~1|NNV?t9;R@9wwz$G7`5zv)w5Roz`(-KS4ibvMWFj%P?<>i%eZ0MOF|
zcmV()0PrD{01Sj6;2!{C0B}!W0I-9c`2{;cxc}gRf;=Js7z5|PpBF^*1f~Yzq+4hJ
z=a0Ol;ByEdI=Bu1T;xBW%1C!R6tjV&JI3AH(cObtRh5}r&lZ7p!=`xvQDG5jSrHLg
zQ5j|t30W~wS#b%l6aawbLjII57y7dfs8lZOCk)X&;RFCY2<#7Dyx-dbVg0i$5Z>S0
z0)_l4LlpX}Y@+Tz%F_a$pjLpB=kdGa6@cWV6_-`@0LbwwKz5P>kk_$%#}hypKte!3
zKuADBNJv6KOhimUbBcuI6b&5}6%7>?9R-@sBZtl$e;5jFg;=jGUT`jEou^
zkx~E1Lh+vzaQqCQAOLKDTo{BEfKotU6p-Udu#rT^9S}uON?gcE00qVd7yyCd;NsyE
z5E2oC1K_Vj2mposB$5LV90&}G1I5M1Bfy1`h=D{37!C`i2(GfBEfuTh4N*Mmq`Vpx
zHg+1L=XPS^UZMS}_#DZ`YcuNzZwcD`+MAqeDJDquwgQag=>gMO)J9!c`=HOlOaZY5y$HSF4
z5rIX75(kvPla&fr^hOdjR)Xh7{cB?Eb~9d~$*RUQ2ygLq4m_*?_?!}L1E3HEr;+NW
zk{HzNFA@HG3Ap|g;dmS%ft}Pz0Vo17qw!0zXq#aMF;j2&zxMfnVw_b#7jw7QvbDDE-6e;Xa;puQ}<^$FQJv&Ea$C(!9T
z!CHoi3G=huj)dI9B!N}e#V={hmU1G#un42
zUsuni>=NJ4bTtc+T&hH*@wnS5p6fZCC&lI%ELHfWmHC7IKzEQ!y%O`IF>BK!zb1sm
zrsA?w^<~|~v8KDX5N33T3^SL<-oY@396rHuPws?dH{{Gv_r2zZtagQ6e7h%lL5mVU
z(Z5q_2N|%Es_8Pocz;syowb7IFt3Y4*Q~HMRISjw%v*eOahnC!1OQ$p^fZ{%&Df2c|7?<
zOC^=I60f$Lsy{X|pzW&(l7MJhgmz(UhWS@6@)z`Rlx*mF-c->cGHo`Y+R%srMoN^l#zZZvUY?|ttJG$mR
zxj20B^T-7QZxPQ)#R&`Vs4$^%uEgTKtlapAWyA+;l;VcdqRDhTJrr>m{`(?K+Bm
zx(L4c%1Kq~hfW7~Usd0`ad*`G%aukAQW%++J^QidL#9Jt&2kVG7sZ?R+Fz0jSg?RLA^|>zhwSqmxVZ{B5
zZY>A>SLYNdb}igrbidn?BxuMUX=Y;T5*tH=q}7-_8iyd}{VDJli2GV1$Z&V#DiqQm
z2^4KvwW`N@_&wZu{8Td`w{>4IVs3s+wcZCAHJvneDISq5uCCp1)D%4>(3vy!?il#2
z6%(0BA%YW5`gINem6rOJfGrtLqGrErsN#}wV8++}FXJHr*@H*uL#n51;*m_+AJB#?
zELxL|kmQLW097@-%qLKu%}{}!yb7p+MNcP1-_`?-grUyup%=Ii@vb-dLn-3^R!-fnbmzxD=NCvjRj
zad7|D{m*=dXO`SE
zTXJH}p6mMHt7G6p>P<2#CNhSn0~IOMPg>-s^eSJzaISpis%mxiW1Y8B!c@>PkaqCl
zn{&jgYrYHPd+{GnlXpE`ls@&=k94P$ybpF386~VZ>U3kKYn~cGe}nnX8Z{F#1hN3fsRL2{hwol{MpHRZmY)7dM}zvuff%WJSVn8%}ZeY=3jZ0rP5Y3`B!
z;TG&;;s(!}*cs^6+c3fO%(pm;dAo$F7%t4SjE!|eMQSffKVrS93ijKtg|gzb;X+xL
z#ZwD!@mw7^yOEr8Ja)W7wfpBXTue|HkXC`~;c%R+2+2?4-=Y(m>oY0W?PnvvM%sD(N*FnK>-|codbz3onQ+7Wnb5U!@%}}*
z;DGV{l~8weQTvqu_4sGeDhOwXKNRspOMsE4iYh1#)}8~5kj%_TcON??_i1eMBxriM
z{TG~y%YWrl@j{xIx?wcfj9jpN`zxrpAesLe-pJbpbAmVUcTqC>#ZKglLSWpz)NC=f
z*cO}!Y2aYs{c}`cVJtKF#EK2*qU?VZ^AFXUfac;qtJWCd@&j++g;27d
z7adVx=Yk^??dI@PePmdI5h#<2I|k$K>f-L^@JAMspA@VJzu`%L;*HP_j=vL#e-c31
ze(_`971+uT8Gaazpn3emh=iWJN1P`#vOg*XABxw3ALEVm1cx=CEl)VyPH=+x<1L0NfoSmeht`>}&~IfiV3RO782xBFHVI(e3s5N#AOcJQ
zH*khQgFhE=u0euY62UTHx&9&ihQsFl<)Zk-_8Y@5+#f<>({4U4*clPqSUfv-A2+1;
zKfLJ(47O_QfB~?t$FDI6rvG6K11i79`VTRTehuZ5X5o3epb;o{3l|vz
z<>F$3^2flvwM_JMe@=M>Khb|-CUkW73RHGMJN(qtsUMBk`iTZxj*mpy+xnbL!Gyjj
zFU&t-H~WeHD?72BgQ~lWyVq~ZrT9_4isml@m<71t?uOMhA;#SU{FHm6exKurT)@fj
zzhFu1PA1R)f+q&M*zq6PPu^H=Y(?O=8XV4wYbWrJHy7(R{4s=oys20YfM@}XurEh0
z__G1QX#jYj1me2^I?&1Xw-fGfC*0poxWAone>>s+cEbJbg!|hG_qP-7ZztUUADwVN
zR=_Oa8W#ZlR^T!hyW~9uD1%0&J75PIm&~AR%MpYz;LrO6@&Gv~{|yH-pbGwB7tkjw
z?;lnyKDf<)Qp52K>AoWd;~^^~3hh(KqA43bq*fmzO9*5B2`6@{^7
z_IGu0^Op6OXFVxg7KE{AAy(!S7L2nz>&ccmv$>uDv#PrnidjNXQUD<$F3c5E7OY5EhXYmX;M2Vg4hqg0*=e?PZPBH2$ayOv$tU(I`JZKS4h+
zL3b|)ArToF86ja&AyH8QkVC*bzzt*TFW~0Q_Ok>vlsCc)ed5Jq#+C?rsC+Q;te~Vn
zn&9g3tJr_4tKS&)^!_!gt1DIkC&hYW)P2EP{#7SH)A
zMEuI@0a~pmEkz=PP%bD}kj)$HM3G-rdHg(S@hi(;+VP8g((~8~JY-e9P`04I&II(;
z{p_ee9mRh=ukl+36zJbW$+Kb)a0rNq2#Cs<{5-(HhwVP$AFO)dI6#7q!2gWd9f`IN
z_)l2%^km^~-WXdq1PZPu&kD9e5RFF4+DVDoi`m)P2}sL`+6st^Ns0^D+DoDYP)IR*
zq?ELTh!{fhL@qGDnmfV=t3GW0AHx>ujsVN}r6E~6J244+1lT+~VPPo&JA}BHfUTXF
zy@05#jHoyYDPxB~iT*6@ho{5V<@ZvtQX#QYi6TTKM8%N;b|Rt@0^)WkTLD`UTS);i
zF_2;}BaIRh6=P*aB4q8|yWQpy+?772#;>=70jHSRqzyV}!7i(T`3M`p5n{q5U>-{bUDcLoE1f8dmr@
zUH<+2TLXV<;BO85t%1Ka@V5s3AJV{|h8)TbTw3^nX4>&Ai8;7Jylh~kuL0LpKe0GT
zv~w(G@&cfL$`0TUavVzXA6h3BfH;aEH+r;q9Sktbsj=0f5U%X6(8W3;z*7
zt95(i#|G%2fR+I>^H0Km_@qF1c!4JjAO;}67!oweKsXG9UHmW}SUh&Sh}zB>3q!Gc
zozz~SfFMkVg&lst{3kp=U?nV!baexF7NJ;~J&>+QEZhOYk-k3I9Y>fh2uJv$QGOsi
z1j6htKCWmG#%^&_yP|BtT~HkCRunr1g>VF6VGt(qGBE<}Y8*N6$UKR|Z?N5OFb3TE
z19<^ecaMOR%`j$e1P?Q4iApnTq5ND>7>s}cXkFWSAwk>M)x*{;004fp8Ji2B{4ZG
z*mFVWMHm1yzWuE|wAk_Tn`MqhAq24s{T2Q#!!OSN9{8<3L2P}$>>XycAA6_F*inrD
z_dn1p`b`dgBa}VL3k6!F%x2&y1J9p;-R*`%V~r|iwA){-
zvfoPhU(EJf30UyQxCQ~L!XtqCvLHbImKuPqyaI5jhymE8Y>)!^)o;3lW}ue|04|>U
z^kdwEFi1a%{}MqHz$DZgeX<`9s2Z6tBYeDkf3Vth|_^H
zh%mQ7VjS3eY|IQ{djYDTlo0+^!R-E^7#7rw)hzQ2>eX^O8lqz1NaO0y9C4p=Lkdz
zGzcsS+z3Jm(h155o)8QWd?MHlT?Y+k`zN4Pg+LWPC7-pOGZT|NCqcEl7*1nA!{TXAX_~}c#7kc@+q5B
zfv3_>)t!2K>I*p`IVZU)xh;7x`5p3yF
zlwp(wlKN)O>NnJDG?X;rG-fpZGw6(M&w0ox+Pb;5BosK$PeR|;Z4&50#B{~#cG~Io=VY)qfW_opc
zXZj@iCi+PR90pznLk2&FY=##MU(QgUIe!LmCi+b6nensGv%F`G&IX+=IQ#1C79$g*
zCZh*qCSyC}7baRJB_=1PRHi3Pi|44$DV#%}OFj4W+!8Ylvof;_a|Uw<^BT)p7A+PZ
zmOPd>Ec>intfs7?toKVp@L0<28e$=0&0_1~eBvnaZ1HyzR1$g;ws^Oqfp|PeZp&6w4Obb^_M=MEd6wU}oz{}uk
z+EUurv^#W2bc}VfbY^vVb-i?3^q_j$dMSGEFK}FNyU?T$=)?6>^d}9t3_J}U8R8il
z7~V1bXe45E)u_vu%J{Nzx$(A%ib;aWgekYFk7=9PDYHvvWoA1U)h;GqoHiFSzh>TR
z!C-;5Xtu<+G_x$W+_F-)O0!zHBylO?(ug&ewZC<@4TFt~&Ew0bF56zNyMlY=;+66%
z2e$gQ`LzU@c=B49R
z><#g@_HM>dgNvzGKHNUxJ~O@wzIS|g{mlI8{3-n1{9gs|21EsX3e*TJ3c?9O1hrjd
zxq9R3%r)g}dBKoiyI}ANKuB1~!gbB-r8kIfINx|3Djb>|x_R^B&6Y66u-x-^z)^i9|=fi4u#-j5>-&M)$-B$E3#`#3EvQ;zZ&y;*R6(|!P8UzlxlMH2=k|1lZbow^duC$hL6&3I
z@Ew&q_wSy)8+CW*9`fEmwo-O=4r5MC&R#A$_g$W5USmFIetH33fp5XbLbJlIBI%;C
zVus?F;=>ZRlIc>T(vC8zva<5Cwe?
zobZI`N!XL)r-4tmo_Rd`^4#J1T-)WgiFWh$p$@~2H!pNvyzJEIZ0}O;diqlSWox%=
z_ro6Po~B;O-o{rFuNq!Uyl!|S`KIx$)Z6AhnZA~Ox&9{uiUZFF)do9<;6uH`7l!*s
zOh?|0UK*W#hkW;W%w=qS+;@C`;`)2s_tBH&lj&1ur}97We7HX?IsJG>ZRXXi@$AGL
zVs3ffd;VY{>?7&N^iStLm3Y5M8Jg3<6#q{PQNH
zCU_GPT-E}3Q1CY2uYga0hl@i9BLZ)Pf;S-nJQ!I2FCs{S;X?@^ga8pSIRJ&gz`Kwz
ztVB>eLLUftOOgVY5|0I+iWMLbp;i`Uqaid@p|xcfJ8k57gU&9ALp85vjZ@r-Nb?6;^5%m;o-W1B2$2OH*rPq09GnxLwr$NYEJ@{8*E85
zMtOF$VuUs9&-+!q)=tlaii1};=@4q``L&!9^d^$(NG>Apn<*L?th}ZuA2X@2@DqW*
z@i3$o)?+Vmrv13Z$*ppI|utY1aQ)P2u&|j4hhJ18LS80_fZsE(`l%o
z!AKXpzb9tc%ooJw`gr+bHsCo|L2ys}(u043@deQ(mV5agHI*6*BZTP9Ih>-pFeA=#*x
zwp}2i9)HK9GO<_i>usc|AzV@=G=k2{B=hA-bpY+=$S_L_V(DH0+$61KLm^gL3MV0Wc@n&ZJ^(8S?6K)z
z30N0fA)R|HOqU@g802Z^t8v=PzK(JL@wsBY%b0g1R??|46^?p?d|a-N|$KPx|;f>BPqR`6lNXv@`!%@7*a
z98BN5g6fXY`;IP}2TcvMXSi;rurzu;3OSvgf?mB=+M98NANR(+rzAAGoWFi;;JKav
zN}aW(o#beF(xGccf!D3lRRB+_`Mkm%p`;fpyWgxFg69`K&d~B6T(HS;x$>Fy{lHD*
zr2H3l#g?D50=3w3yX4ih`&$X@cWgfAyURaouyAb;pUAxW&F4!{a?7=fux@+4is|CE
zz7f=w2|UM=HB||FMT(?k@zm#MgtD!9vo(!Z9}lp7XxXvZS$#bEc>li7SFn46{w3la
z&Ye^DA76);QlO^~&txvXmgXI9cc90+2q&
ztkEXZS;5!*)!gk-R#4ZVYzSBQ!-F6b$&V`PuR9DWI;hH?P8k~>)-S*4O601%VR~lY
z%N&oHo9LyI-1`(eMaj9z1A!-aEJazmu<;wpII!I)@gnaMI(d^C+j+6&PeZ8@m2ol_%SWbdxOSFTplNYz7h2)13Pruc3$Pf3a^iXN<@
z5IG%?2wC`a4A3kEzNt6Say2#T*P&}2S}QAMeRUe12E=jL%W8kK-%HwLl6)kGIZev@
z>gE%PE1z&qMG7W%-MG~EJs#TlX-T31qn6*2sdp+Jc;h6hbndoA*=L?w%X!PFMY_|R
z+8HFNFU&fQzTmV5v$O7~DCFeWOP&|}@T4+%;{7F6)^z>>R&kUGY@JUqIX8M(OM)I}
zuz08zO;%nuuTkzf>){_T@YF$@;o8%xaYEkp0d8AHIp^deGkXKv)(SQT3)4tDYeJ(D
zl){U~t7)DTj%U29a3EvejAe~
z@4w8}-%hK_@xTe`Xr^&6Y=4nyja;uVs$timfIYmbdLi}FO1CR!T3y_bcd6$#^${;K
zS2MEDP@NQ-qS4Yy%SApkY$}GlN|i}#&bQtmPT3GwT)bg1t0Lrc#UgsI9%lO`#&iC0
z%x%g+k4d}*ms&AAonD79xT>aBv9-?SnISnnnnY$x17G0~MeOFN
zVbg|zp16RXs6SqDy5lS1Zu-W|>9qLF+%$7h;hDrx>1|cd9;?I0gO&=z9_%(;%6*!Q
zPP64k_nzO#vzdv{OeenMA3I7esu{{lP%55B1I-U(h&33!rAJC!9w1OAc+nhR?>Sqj
zQnRGu%HvzvthtF!4Mm!#dWV?Gl1hvc2}-|j#Z~}>IIx$;z`31g`xR{5xT)6zckapU
zEl&pi&&(VDerEaK%`x;PRT8@Eb&7Ly~8$y8S)1F)Pe(JtN34sU?#uw{d9LeJW7Pgmyrwa>L4x3Co8$yB-
zdgrpZvT%Y-`puN+A;NXId<2Id6gI$ml2$n~I&ctW;5C=V5+?I*=7se;o)!8-ZfD2{#RH|l#)|@RFn9fF)K9W-ts-PlFJx4Ut
z`d;J3>EyKrGAhNqxshpc+o=1TRE=V(%`srr`pxF_qnc=bJE$ogkt*50*Z+A~k=)di)9z!pVb;V`PwP|;II;h+2WdauT`n1hVE7Pt)AyHdI
z12u<=gICn)U=>z^iSuXCBn1-pO$YhNV;y%Da?<3wCN9*Xqhh@~Y9p_h+a@*>OWnPN
z(o?I~A~0TJyH40NH(90rxFf=GyGzoeyo|GQKDysWYLSJFU%TIgcEE$EyJ|=+S(%d;
z=0pv7$rTP~!;8qT-&mYtkgIYcsM(#*dpsYY#FE8@qhq`yn#>knUtStZidy&~_R>e$WFB3U4ji|TDovi9
zxa~*U^NPHtmpy-KL^!PPMc%m?CscRR-Fc`;Guu@4GxLJ*f&;-d9OB|~C}mr{bnXy*
zx1!J}SkYyck8?c)H^t+k=4->Qd9!2&jgZ2$F`lKPe(SS)t+52GUz8-bZJm1$s#>~9
zj5cB~`ZXMyMt@Z`IO4kdo|kQOR`lX-2GQmt^t%Q)@1gj_O<4NHchxN6*q$jjPZVP1nA4
zfz0mdw;cKJEr*r!;^uHl@LtGX<`P=*tEua5w4w$4ls!gjp1!H9B5KO$8J)5HG~n^Y
ziKsF85&rF4xJgEJs`?LEZ!_u$ll8E7x?Qp|nV}3%ewkl`?ml<1MiScl((KHw-A{sU
zZCyS}jJWR{B?R+f6CW(<##?bU()Kc@)BNlD9uT;Gmz`SDcsQ{mIdLDtALBPc#js$s
zD!jea3XMr1HAh&J2I{Zsx@|ur67Ru>gVVtZ9nG?}#m7=hlcFv9&
zmy*Yoo$isvsw0&O(TUFZn$Wy*XKhT|&~AXGbCpSrc8W&VC{ziMqg2xuJimKb^Lrxi1V
zWxCs_wDE$_p(V?C4`8s^!jW~DD;miuQkHyX2v_I&B~k0>nD^@*3QxK@7pfvc=qsCU
zYwD&B)b%^-S?0;se?JBsN`)wl2PnB>!*f$;%5&CcZ+=?*G(>eFxPsk9k*SLP7?9M@Woej1^*#j2DW>^c(Gev=KhAM$)ej3j1D^{9FN+*ah{!`u3G
ztG=_fV^4Bext|?|!|_*WmS)xD&Q!C|ElINJ-S3*e137xA(6@VmIKqhjYQnk160;#*
z{LJMl&he+GoAy4AN*)8|LDeZGmuISEx75*}MlY|QyX;e9^&fo5{{5%!e*?#oui_C7
z{1`BhQ9K+O-Uq+1#{(rFc6GUIn=W1L{;rs6F<&BcD&9iQw{*oj_``Bb6?-!HFTJ>S
zdf$FEPVh__Kjj)RK6HDpkFV=ipH1M^#SyK;u>d*m+cIt=0^}ihT^)JHKvv|_Z#x&0
zjsYUVubLmu_1u3XIWhcJq~eQP^j-dRHobFK1}?PibwigNmA~fEouRXRo}LB`
ztoOKlUHR(|l@|_F7rq?>knfo9@ojoZ$>l^2adz7FrOr!!oHDeMv7$HUd>p1FZfdxH
ze_CTRR-@PaIsnz^JGM*8CPA!)Ni4dMi0RKT6e$;_OEFO8-*BocRA2Bd=DDGZRc~E;
zNqA@foT|ZsT)!T-J>4)_?RP}fQ{Ps=5&X7KJLDaiZ(I%@_EG}Jy
z6F7ZKBnzd!2Z5y3mT1Wnz8ND8WB-a4_oIhOSiaN)cd)g2s&(wrSnGS7vXcpy(LC)s
z>=IPvFP??T*_-L9|@gRD{n{h(-NB$#=gvEOU@w3de<5IygpP5HY*`-&Xqu&+@CdDz)_z|{c->o
zUY%vIHY<%OE^3P&DkwC`vTP|&fkzZdhzx0LsMSj9a9P1L*eQ(o?O*9=q8>DBFmkJ@~Oka_{r);1*YFvCX@;bB7HnIxWNRshPd*iC#6S5DKar&GYCfiG_
zPsGD+rdl%1La3R|ZWYlQ$;OJC)Mv~NnhXkkXOu3FHZ-&n3;gDjtnr%BAexf(ItvBN
zM_e)1jh7I);e*_JciOCIlz&TPmg1o=M
zk|DxzW{-cBAWlttfMEEQ;idO(XNo%fMq7w8k+{=Em{X)mP<1kTHqOXbM4h3+1DFmg
zcF)I?3j>vTN)C2Gd^f^Lik3PmF(uI!>%0PW8%Qe
z9F~6c)t05pb&s2suY3%O%DR1yrLTPIvRs9ic|qW{^33nSzSh|xQ&PNS_e&brTv<&}
zBv;+G%|C1BiDojIBrjZAWN+HB;!Y+Ah~D1NO3t--R%4}+%RqCrw&NW`Y83mMVs0(N
zY!bK8Qpds5>elL}29S~{w!D{JI?OEPY%h_^W#w0$^~-$Dqpj6d$l#|ezZ@jwPw80c
z#O;)ymkrUz|s^MYK=1Cc1f)E9RE-%;HTRLh4hg>E6kr>5VOcJW(M7
zjSsh_BdsTTMZdIu_huYFFLg`4{GIYCngNB}9xjKsS0%qudPVYTooj#je$IZR3~$|!
zB$zzO24kh;i(}%5zLY77Hn~ymNKIipI48L{HdEpCPBt(@Le2ioEK5AE(%WLca-mF6NOW
ze!I*ak>mMJca4a)xiN}_IZFi1?q!#l#%w>yvmwvpxnEGdbJmnf*;FUAyS-GxjPRQc
zD&E>&d+$J`B)_10usqOy-o&Q4i6WWT(+R*r|urT?Xog%JJpV634&|lQtRj_(#mS()17C
zXt!!7L@!OaKI-DvCD!O)wz3elpr5@#BJweUFH+0#oESHWzJ?T6MnG_nKsREd$<46&
z@+S8}5d9ou{ot{eCt0?oLjbc|ElX6?ES3_8g)Pn+t)@4mbe
zqdA{B>{$j+tmtezD#V1yBn-V=BEIgnBKi99yGyHg+=bc&?mZy(ab{&7n23--1Cg3+
z8uwF?s5Cv*ioDT2W6y=dx`2pfk9V$mA3u;+bSyKzABih523RP1*@;8xb+iy)kv>Mx
zB;!-g=we9}8D&gno5*?GL^3`z&Z^@`PTOKUk~?F@j--)FDsi4AmuiUt4jUU=%kY32rwp(%ZK!=tXdBDP4V};0Yqz~q+qud@qCMB4VgY|{*|8Zysej8rf%2?L
zc$xD~fKE(C_`IG9+H5y+rsxS}Nw4@^7P4!frc?-rmn6x`(l{;0!YYagx4u(L=w;0i
zL}8h>y=iJ(?<{4@rOwla+WKdVS~75nd8tdwY1rd*2}`tSIQNoBT&rHA7mPnYQ9C=3
zow4|^W{bdt8cqLfy^CCkKh`?&6giU#L+Vix&LRHj7=LR+2od41*(~MxtF-I%QS2!E
zB@GBQr`o0M*rdS?k*Fkgqj=3(>SC>L`-;6I7Bw_|K<%?OgohnT>}O35debN|t9{sz
zqTKq**?p!@u4>t@N4(I5eG-~8c@hGL3$2$4!
zSwRBUdM1*Zi#NU{-}B+yFO$4r`9XeWhgZR#ZINZcK8ZK)(b1FFa=X5d915Nvv?*wP
zebTjC@OZn}Egr5d`Garz_i$Ns~3Ue!R>pqR_
z9uvx*^j8XvJ0m-B9i>Mrw~y9s4CWc1uI9Yif6~^zbJr?R5=+_rhFXv=-HT4d+n
zUxqqtw6MshlK7Hme^#BdmcMhU_}Q9%&4m|ELe+B(=BlpM7_`$(ww$n~bHwQ#$nBeI
z2fBJ@oat&rMR$>X*HykJ*@)AZ+~Zs5OG$dGT92lpk1f&KNTEY-P%${p$0y%arLKvj
zkLkL|-`BgvW@5&x_iS5wN+#}m@Ojq)I|ySv`-U1MR}GTPJ8GQ9)^U3__9op-Mc#Y7
ziKH)|BG}>ItL-BC88FVNO;YJ75D8a@8#h&yLu65ckPzkCDj
zYyXH9Ju>d`sxU3Os845>r!w4Pje79&qB!02I+n4EkrI
z9g2LVD7^?xNvPY>n2PWBunBGVy@d@;WP>WkaxN;X1Vkt_f2~
zJ^5@+!@99-e4Ba_}{m9{H?K;Ye?YrKp6x475Q2t<|jP-C*&R)?X>BhK0MCSv~4
zip_j;M#i~`d<1)J)eH6KmfDUmKG`~gCBpYi)D)}4wjQ)?n=y{XX&8})NT+NyBffGC
zBe|u@wn8bm8YzcbgJ5i1zS^abd+8C}YfIU@mX4#wM4o1J>SeBT;at4IPo6<{4_yXd
zxMhv23lA|=H5;%+Utct2<_)`P-tRErsIOi#)-9Ld7H775kb7%JsbN)5qh<)e
zv2&ou*{m!Gba4~g-Lm10uCDf4u3JNE8gfXOs#W*BZ4oWwC~#tMoJJLfK8Nz=4cv%{
zblD*`_pP`$yV1|l;+)7YaGj{?{C%H}QYT%*{P1X@i0DYitcKVsT7ewbrVrJ=rCcrk
zZ~G>8jYQ$e3C)+xqVh1pp=|0zQ1YZQ!M6hPt`e8hOxt&#%yi2>xyWT@v`Nw5pzFA-
zs%&5*Tjre2Ni3cy7@4?hM>{k%!1!d#jp3V5Jbb63Z7yY()Cl6g8G5>9J|+p4~ITY=EphB?*D;hKC~8pEW_$Gx_}o#1YF
zn(&BRHOV5|5RxmR8EM&~v)8+2dwFn1QWxcMT`!zb+!I`!zuhR}4&kZ_Ks
zmgz=(dM}YarzcBIx>%c#r?R?lw&J;^gZGK1vKsE=nEp}YO}-o5TOW_DX`0Z{Che*~
z?unU?lat8F0UbVKLW>&@6Cc4PMf2e_U)}DKO$uwYwPLb~UN=8jSsdkvj}a45PgxbU
zcr|au<$kfP=&^+KF57K+n^^z)1Nj8v=iBUKzQik8RF7QGUpuhUjh^Cov9e@7p`F`c
zF-@^MXe^uAYuI4?&}5VAos>X9S`*Ean;wr+JXCzddiQImloWB2?#BeMQcdKW5;JcY
zOkSvZ>DpRvK2qLpFuZ^cUbTF6Bzfr#N0}Ks>2oqkZgNDOfU)lMV&)8yGI+n_oG&5n
zSZ#*u$cAoSjCDK5dvexwL#il>Ded{5?qb7^PzdM5ec=t?9rwmFE7@o6&Eh+x&q`!X
zId*&48G36Kwm6omobM11EvFCNWL|N~nI7y)?iwEIV|aKpRU8QC6*cF7byquezlk($
z-@fZ(Q4~DlNpv1ka{3V^gU-UPVB^Bx(~5g;2iEwDXQ$d_8OWP_>-fF8#9(UK_@i+o
za7NPaR)KoAJ!1Ucb&Qzp;Oiy}dph`VuM##tmrGcn7-+2U
z{?d8LY`$G4ZILC7lJcru^^@p((%P485!dIFexX^J7(8b)^*J2>*C`jL6ak4i&
zGuYZMj!__JkUJugs2(z9OL2>9kPQ3JubnBI!Ufr`jHPm|Et;JPK?jkOu
zfmzzbi7t=I7BW^!GqD0jNdA23SGK3;UE?zf3JD`FmdKG??3b75l7K
z#3qS`k4afWp*n)W><&GLjg&;p4cq-l^rXsM9Y%IO6pk)3rb|ApsiO3#v+cS3sNciK
zz7tZ;I8EtR_Kt#8dC?L{Y_?i%E9!RT(mds-gz2pCFq$ih{4n_SrTRrQGvnSs4^tcPqN|=AGYN|Dw5d6mPR(c34xc|8PaLwGx1@
zRAm-Nt{oc0)=)Y@SjJj!4m~*4xo^zMxB5RQd&{>d+^B7L=$1yha|o$HK|q>e=waxR
z?rsnXrE>-tLg^uf?jZ%~RAK;0r6mPKQvJPtdA_}S?`QuJ_py%qTGx3lcPEFu<<9CW
zFALY98D-wEs||VzdA%(0@$F%M&2QryHs(&wEun|@3qH^ysH#Im)`_&&^*dTG(Z%}B
zl~=rfo;M5H@lYl=6O_e$n@(40E`L+-BpKTpdY-S|PFE_lsm(rLLTxb%SJ4yKlZ$Xq
zZhzq>=3JS@>FAnK%t8k1ts~(Ug0<^F#jhmDKlI>g-LqP5j$T$&@25P7KFA_Axe*eq
zJWf&6Was|@BAZJHs|Z^sx*23bBr8DQ<#ztqkIg7UO^V47;{z9sSuEQvvr`9V(}u^!
z8J2er*?57*Pb2m1&kdO!N6@XJE)Z8kn41)zM#k&BP
zsARXh;HRM`(uL^K;qk3Rid%X5BzP7m*wg_5L-Ukbf}Id1>cS|M9vW@53+O``Umv|8;aVj|+f}{BR<!V%dSU0sCfzVmq>cN+ah&yc<6oBV4v6Zojt~ldZ!x1
zV^&QR1BAehj2A}B;{Zew`**9V8dn)(}5365}_y&}6de
zz1>TMul9Y!Y*&aNC+$@p9|^tzYoIMT0vy<;CR5`p+ek_pcK1j@BOI6)Ejc=ec3^ZS
z($BWMZouH`X>vq|T^j|ooFNTEZ#pE02+O()nM@6S%OzIUP=On8&_~DIJ-1*FfvRFF
zdsKDab4}VNH8-m`8SrfMr-Sdwj4=V;krnZuwzt@}Qd??}(wBy@THgr#iUinvpz%)p
zZyz<~ty|7VszUz*v{N3vsAf30k8l|buO^M?e0AUS`SduUn@XAU;$MSp^Z!?+?f2hb0DdQ)?4>Am~IzN`}zSP~`WHCjkoOU+;ipzHVX--lx2zU=S6=>hA7QP1ILDxdY1o
zW#8{ZZ^R92(Aj%8!Pf@{ArArf4k7IExko&&z2g!Ve%>`dzIJoy_~Tp=hOZed5aXkI
znDKcUS6FRc&oG<&sFB$Z4;%gq@ybh$bJ$2{E2zzsxk3qa6dlz={}@5=&4r{bk_j+uhq%
z=@tQcpTWx&O1+L#dTD1v-mCoU7d^oz^@sbQB25=G8iEG$scHT>qSp{m3%9mDoN%L@
z!`dQx-^sC5IML3BIUuxb!P220#A94lvd`fCOw~BC(Vx`Ne)xr{%bd(%%V2WKdbgTh
zWkaKNO6bMarrUPtCTWa8lQH8PJP}EQDdtAxV^RwyhFwm+WR`bpt5d{FT7@sqixwAo
zeZdr9Nc0F8Uo8Sn#jmMC!T4_yQcZ!{Vr?(tfdkY~a!(-T7Kn+klT}@KK0Z0)^Y36a
zaGaHgIX-+wN@JmH{}9M-ixF>A;+`boj0W6OHny^uL4CdoW9qcJhRviAc%=iKnp|8!
z6Io&&Ev_aCLkdcjcM&A|Ki2MM^a^5sJnd0DU0-7n;$CO
z)HH?75DWZ`9R=Wj7dy0db?Q-dbQ&BKo{e2p!~YN}yHVAHG_mXjcfKcPy5LgenK;F+YP
zk(Q}tT$Zph>nEX|hv|KYg_+w{9l^^nwevyRfu$I%#dj?qZ~x!6ecmTdn=Dq9cz(>l
z9Cp6p5tZR;C3Rpovn=UHZc=v@El~1U-jfCqFE7rHB99)1?9h39;$Bp2Ji;C$nI|v{o9HKP|vO<*O
zH&&+>s%W<-8vk`S{E{|EcdV#UeUvA`@e&`G(c^LltKU(&lh{83khR64jZd
z{mFl$fZg#CVqIgOBu=Nw0%!1-8fR(Y>Y9p1FRH+TqqW4EPnrArs)^goe)(ZHW!n|I+%#u?rS8HG@j~CK+^w+LbmF_m*CIQdBZ&m9l
zsNjCXB+?mX!BkMimOQ=#^$cG6Nf(w&x7beOKC#I51nTS@sYDy*4Qu(F_hfBwb)(}T
z$lhf0a>e4g!HRRzu7J_A>D1la3ir>0%e`N_N1O<<=e{7*rZWdO&dp%4Q-Da@9WmFR
zx2fi4xQoaNn`@MZIg$!%f4-n#BU5qcu0h0Rq?E5oQ0?51F(&VNr!jJH
z+kRl=)~}F-JD5BLuw?i%uAJbXE6=bWtCQEL`Ox>BfGZM9Qq{fTDS^tmu8yQ6BdnRi
zJ(|2}A=7$n(M!8k*;ePVF1W*41Pr{%h@@2=nZpUv=Dh5lS`1rLZ4Q>`fj0UCi*
zvMM?CT8&B*T{QGy1gp%7or_P2q@Tnqe?pkW?Z8Mi^
zS!$|*tF)ZTveuF6O4lIS^ZeZ0&CR9rXn8laR#%`0c;1K?Jh`!GKV4Y`y@~#r_$GYY
zKX5IDB&~XaJkFTw^Sqv;6)OCQOn#QTH?Y;P8_b)wn_1u_N{d!e7;|&!UGu&;GwJRA
zd1}h1w&dN?J|PCKL8Bl9N)#Hzb=?;b2y1`)Lr%+?Oz+y%(O_9Q7fvqyhmcF<}mw+gVV@^+CSVUBeY
zrwV?v_bJ2c4;nJsf^561H-2{066;VWj3gcC1ud`Gc_tk3Q=d7Rnw#+pmdPi4-?}Pr
zQ+C;Ntwh;_VEr^~oBJIfTqRPZNEpx(X+T>S&v0SytZ}~X&PHVXtN=FtAArWp!!>$%
z_t>@NYP8HT_t72WCbFPQdpeQ39-ztClDDhTA{KzkKeMvF_
zEqMa5PYd%OAK80EAMdm{IU4IKQW5KT4v!CJBo298|0U>b=_(EcSKd44s|qEG&`v`p
zK7O=s61QW2p1G_Zu4Z_eRAe
z2^+w
z9VnVyQYEA0MJwY)&J>E6iKu}3uXrD_@7(V8C(SHf+xMQ?=R~|>ar5%7RL3nnb#TlJ
z-uoCck8-cc+=#d@W$o8#)tl8j8X&shcP^bOC0+LglG|w(k{tepSjgJQJH38^V+;MO
zk-;h{t_jO>butp6!X|EoS|TY}%s3kHz7!mXtoUqt=pJN+Mfi5jf2`Yt#qGQlWK6Vj
zg+Gdd(o8ZVXaL`p-dA0DxwS=FI|rbpAuV0f(gbARjoIyjc7)+e5U+}k8iJ}p&G@=U
z1@6^B&WBqCTl(wTFV^N3MlYX~c+j}Zuoky+__`3x7Nt5}1aHG|sTPBzwPV^W^A~U6HH1p_il5lfM$G9$LDCuwe
z895y1mx=O00ccUl#i{#t=`%V6%R5TDKL@K*QP_L01DDP&;!?#L!TPWCE~(<|w5>3@
z+)-({H)2XeWUU|nN=V5p-MS>q=K&mo;*H$~VdHkUDM_$<yQ{X1$y#V1l68Tplruim?|SF_3Ol6+noj`{CvYqZ)*;eCt6
zCuRxsc&q`e56E@}?G2)53)hXeqj{%K`X^ez%Bi&Q@ytxyN7vy6AgV}K_K=TIfxjWN
zq^42lz2_)1`CB;)w;)Ph&Yrv@XEQB(5<(4z$DP*{9qntIyJ=NneVAS&ThhQ1Ut(;s
z;UNzJe@V1W4&aSmY^M48#uwR=Nf1yhTwP{j;smF*&
z!4`tv5A>{(vc|2fE@S$bJF`rB_EH2zJ9ydN;Wasas202L#)CG&-Ih*mKEq#(DZ$am
z4RRQ9o4;t&>KOmw|Ji#aSu(yX$HGIH8(CV9+kp6(;mgVVO(#u30Wy|bDvh1-|B)s(
zvAu6DXs;?1lOn{-_-;rR>)oBbe7_Re+HHQeMyE|Lh_5S6R#MRBPNPo|JtQP-wg=*m
z%g(8~bN#OlijlK)gW
zfj2zu4B=wQuvD0SdyX4R7iAf&FbI2Usn-NnWJc+-P#aXQB4yRM+eMtPR$0loLh>fF
z5QNz}DwFAXd=|?GkHLB+oFR5m3mhd)VEAdDk(6O?z&4@`*-!wfiS}@chqlP6)u0*m
zI}442{I>h*tBfM9p7v(EnqOhm&7QBVg`9FaRfBXz_|x#H2vh}?SH;b{qx9y&{0Le_
zmgcyd$g#+DJbF4q77pq}=r9|Iah~Lu!kL={y;Spf;lLth2bNSM&?sTUzs9aL#qe>%I^xZo7Hb>;-JE|Q(_r37MTlD(?k&QHS
z3_W*^G6&5OfOKIJb%hAmGI-|})hPI}(Oz>l;P#q0HwOc=_7w@J`Yqbdu`$a{WcmBHNBWVw2;?thVD&E<1_v-KcXIe(_Dw
zi!Tow_2r*=w+owjq#~0kq6&!)mI?=}6;U{MzY^8UVXcZvb>nW>yzl=2>3x!)m#*a}
z=%cw3XE8sbuZAy&v&w8$3o=?a#QpcI==Spo`_Gx)HLrGs6U=jei%>1@(P6D1JS6sL
zFlh^$47&>?JJ7T0-Vc@O`>^!KE3xo>7x`ccU3@n5kuK5NeDPh(Z{JU^JWl?u-kDdcnX#oXPQb(U0;W879t{iz&EYoAu9-fmF!W#ba+Jbb+=@(KC-
zgC%`Ko^WaZ@6o)G_a}s0=;J4`M|2>SqiTS`!c_H8PB7a~`x|B!mL%o~;_|%E0m*V&
znkFtYM3?p*P2-I(|JbFT1hhnz#1~8Me(!CKgBVi=Sd`m<&YFfwhDq-f?Al7dc@*U__Q5x5$#4q{htPaK4mIUjnU(?7S6Z{2ZsfOJv2wT~LUXE16V#8^t~YkC6LTKC9LB(FSJqUiMyFoPywkRecf7?-Ix8-DQqVXWrH
z#mp!5t99@r28^e-XceNUm`^>YvVep%pBobP(J^VSw63hiBC*OqIe8k#glO~Hq-}G4
zqE0N+^J9TBPbO{&ms(a!Rz-X>%FhH^Q^ouK%V{QP7?}m8FAHDF5o4?-eMVC$BQ}i#
zq+4`Tk>KN&_e5y({#sym5C5W4g$SErS7mUbrv`Hur3-PV?QwrT#J9?DFgq2^1UK?7
zv*f$N`xB)!MXbA-G33OQLXUXUG`eXhRq$JiKLVXprE<*6x3*=HUSc`EfnhZgbX;FZ
z0ikA}$aXZk^l&|L^}wek47bV_=gpi#?lau|+IBMW~a}cwA*3<0jJQK&-GYED_
zH|3{BGYHGHo4zhg8T>^yH}Ff5*H6dh_LPz0fp|%f{MmtFfN+|7wRBC+Y}^+dYjQd6
zHB;ABr>_09NfHbtgP#}cqkT}p9$Iv$&fT4-or1}v;*}fMv$L|VflkXoQz>QRk(-o`
zFCF2!!5TG*CcCYKLNBW)ba4%J%`*#%S{L-`{F*OD&E8aJavx9(-n`dac{o?-m}(z>
zsg+U^mM10O(rYhy*)s_lDw9jhQAVTj3a1KW(zdTZ+hfwVmow|VEwuQuOC@dS#O0^&
ziA7ne=V+ws0;RI+^7M?nI>iG$EHg&-TH?#hKFnJ+o;S0(5j&yLn!Q;L+X((e<|dE~
zXN$n{+C!8`VaK3wVO1_hs2r|r+I=5r#KfFlXgwDX_z-2J3)1M$PL9>5_q%Y?eRpq7Oqxjk4ag{^2vG;s6Ma;$z
z;~$&sFULI
z8uHVad0*<;G->G4br{No0n(D)9JDFq5#tdTKxxM`vyNwC5@jC*sYW7Dob
z-F3fhtV`%#_uG
zZ4{-Hr<6A6^YhcC9wW$f)2f+>semz)iK>WpjX*7NFCDVV2EpX+?DZyaLsXvZ+0zsj
zKEfLKnmhc>D@Dfn!65EvS!)4;8ndhNH~t5L8&1i^{>x+J7z!~^)0fF?*U4-|sC(7;
z?(gXt*JSgUg`MVa1vjrYLn1pKtQ)rBDuM;2uBAwBFkHa*vtOw7JA>pLwz;<_Cf~!_
z1DyW@OyzcDoxW525e7ikH}E!LoGY1xgdqcIs>*37*W$b{8CTZDv@iz!
zQ#=)XoUstPC}QRkRyF1=r6tqE*cIsd8-aPM(^ZPJq%-l2?bq1$hBO}yg;B+rSt~I-
z+diN3Fdrurj__s5v+T%~MAJ&h8CA)q1g_nsIB%46d?EbGGDDYTDSas&m|>EHL&jFp
zYAT0HYMWw_w%8*c(y`KmgadWr1vrp8+0DvgkXkMsK19`{IER`7^FtuiBKbWOIufW(
zt6_~pBP&F@?B-#e;ndqv9BeMe*?XbQqp+ZnVp=`OIzy_#dAah??BnDEhB;>~s~wb{l|X6hHS8IiWmRk_gb$3SO<#z?p9
z*na@BoSh63{e-#@1cY#Usn`ALlMb~6!k7!k*8Tc>-JOI(f{%K#61#KU*C8D542Rn2
zdCgiKCvN{ajr&UG9BG=qhKZ1rFTtZ7+!qy`%H<;ohjTez4z0X7G2WG2d~xY<{F-TS
z(4!J(aoFXuhLDH0+QM$Nb4@gU#*gMh-gk|HbBY-)ud@9TmrDOo86FZdRbg6$$LpWQ
zt=$|~U=rN2S;7MU_Ecb*)7G_FdVuTtj2W=$ZfeJHY(ZduKmq`Q-%cO28h{DF%!6C&FB(5vkG5ur3k$J&Rd
z1#DDA)LiL25(H3*lPZVa_3Mcn!e&hTB3~Q|?w|(sTCA>_QGOEtsnmXpm~`PK@5`|e
zmdN(LY2gsAo}x=7!(D5!0b#~Tp3I}d3I`hEByeh7U3GNZV!g5NgCn|P4BE*bRM1ix
zS4loPBM+N{IZNWY70oV;);I@0CLcCyxjx8i=neYN(~4O=$b9^Wp1DLybo02He4I&TOeoiL)mMU@0Kyr%FcQnC(^rvq9#2hYx$Z&8gwPrc8azMj%D^_R5
zWi4?@@cim3lhbkDZrs$-9e6N4wd3FK#v)>Xq1?@+#{(U#u{FO4ewz@`56&?zZ!Lif
z{dvD&HSX+bX9p81@=T{h!Dn)&TnfYt%j>J)#}t=z*@&!`$#D8J(E}rIuRBz
z#kbl1s>D<8N5z5?Y2#4niuzcvJ-eAh79qR51_Ro-57&`hR{-X|p570X8`I$C5dJg>Dg-oIAj+4u5mikBFWY
zOA7x~~R)m2odzA+{M&iy%vi*^s#zMKt<(Qfm>_aB>?jEQn)
zf3!uK((|C(5D`WBi!Vw31--#Fl9b#=60T_)$E&=4uf&^&3SohLX8W|!q1XBb^_}`?
z;X>1}hEotYFxny{0+d*0^z8|+r?4@_(br)6uqr>@Ahbg!8~S$%i2^yZ2-3-#1h)Nl
zGyHXJ8q#)o{SEGov2?Ih`dk8$Zpa1I`Smb~I;FLuGwZUk$wa2jUpgYHcRM#^?KdU=
z)CLHLx*8vq8fFd0+qch~y>6hx84f}eJOAr;AiR1#*>Ba7*Ij6hq-I-chu
z`^3Mbhz(yaZj6g5F5nnwOh4j%gE1Xqt!5miKQE0vK9!`ZEEI0p
z_2^{!_i1{lTkd9k+|ffu?W9n14o9~Y6q5@qfXx=$;;M9h{d&ew^DJ#o>ur2@9x?Y=
z9WC2Pn!Q*&0zK6Jx{~v@5-GcpDAAfiX_vMiiO{}TyQ>`i^t?M*jUkuX9Zi~%liOV)
z46Yk)Kzg%D$iKs<>6rUuvNRP%GV4IPf5|@WwaN0M%0o-WTlfU}?&x@-VVUNygX
z{?1EWd%0sxR_oBowVqE*9Vk#*YN1^`P6dLKv+J}^OeTUINn%aX3i%zr_10=~QfkECQb(iV
z=xjfSN&5>jrw5sGQ4g51eD()iEx{aEz>KLj31Ty8r@+EoX=~>x=^I~5rU#orFynz0
zxg9Z4eXGHVgVsK58i@ouQpY;4$aYf5Rzd<68H8
zoo(47+ta2
z@AIOth7q?l6c~xZtIvtp1c;O3euw<6Cx5&4Cv=y5=!<#T>Oltd^lkNohnv~LX|iz$
z-cP)PxkxLHjO&cc^iJ2bepSrC0l@wyS2cj!@=^~T7&+SS*q}{
zov4O)8Aly<{{i^Ft_H997zd^JPaI|YJ-~_@>m$RrPO0%}h)dZl8zYwgH*%Bz$!z||
zhw^{Hx0hxY$og)I1~z0_{|;@e6+0fh$_H}nSZcn=Sqt-NL09+ba$K;2tm$1=v5dJ^
z;a7@qUr&X9xf`YEhmeLSKdcY=+4+WS{hDd{8Ai|2*Qv!ay=qKNV(!nVcT0ok`&Ee}
zPUZ@kx326(3TsAgWYvdPm&Y*rdZ~rV<5RJ*uhJ6sH|e+Q4_S{1eRw(#o5Nm>csWaE
zJXo0}4SBw0j2&CTmOTpeSY5p*2M`M;BR$)r&=yWzS0Zn>y}ABmR1
z031UE9H*))m1}g~dwWDf?5|b#^^gWH7UDSOS;O_Em}}7VjrYA{myIj)MUm3Cdr`m^
z*t0YsgSF)7=xOa(gL#agG?6WDl&!%%_2{wWiWh?`!o!p^*F>1RH937lXOS4+ePBGk
zjtqS&T#^p<+AE+b=_1Qg`4EoYuU7%#WEc*NB|naLw+dJ^O46=}Nr8{t^0XPUbS;d{
zEYxI(jLfK>@eg$1iRNr{OkOrrd+;}@KWh8O(<*ONL%9&jB^>m)ZJPCcJ?rYFU&I%o
z!UIHAaHeYXe55WQp-pB{<9lQI=-js>;gTt1-6yL?u*g2M1e!+pxT>xxwDMW4h78GD
zuBA~gK8i269>EyVsn4Aw_M^}9!D%b3i4(px<>#Z{n&KtZambGbo~k?(^|a=*qkQ8f
zTS9u}LnBFCOQp@mmyRSe6+-O>d9Q`kTx6cIkFGpCC4-N8c_IgXZ1gR@n{JRtoc*F8W&Y9#}o^v}8s-$Zn==jf2OaMzRKpkciQ>jnlQrwv`cHkFavYy?bX2
ze;jY}z8Q?>m8e4IXjwg%bgi~cJ$*+7;<>LX)iEOoOLlnTa8Oe)^P1Y?9HjFfK$@*8
zue9vD;^2m5m0$4d-?hiDyBbaur`Koa$8t6nSG?-U{p?JDE}q$peHr}EUQz@FDz~%<
zAnB<&4V+Giq|DbNbz96>tg|<@xYdiU6U=CI22nkl8iJ)eDFzwZ%+0dvUsfvOJ}L_j
zJGgJxRo0BlW352y>QQ=cV`3JeQ+UeBjpIh2S
zV6hI}^A8%Sc3Aa5Olp~%v>oq{k2j5u;1(KYbpQTPtQyj5{ZTsDevt8fv_>o6V5hwj
zP7+i_AxMsrdYL@jVCiy#E%=r`vExoEN-b
zG4Q`rFfTg6|LiGxund~GX=j`{jibK<`}ajzGK!lR9NZAVWJB#5;%ds?OZ)1w22;@b
zo9wOuibLDEWy@i2W#siQ;z@+7pJ_pfcL~+L)k8^2>AKQRi#Uk1c|s%_zsEhpo~`5$
zWhyD8a3_=FEfTBi#`(0>me-G)?21>EPAy>P#T1c}!z1R}(91<-L)Id2qOB@YQp&3P
z@FtH%y3R&&*mEd7
zuOBe6;1qeD@sEL@nes~U!hC4!Dqsn1x2zZ%3iEC-6cY&aZ|)gy=`ML>=Xfhkp#OnRp^LYOM@$Idj;%($YK@AT|%
zaIHr}^KR{)?1fP?(hN2Y!kH+D0>IOB-|O8_tRY0%wskGz*PCSY?wJfKrg|v3ARgbS
z7sHPPBiYp1Xf=O7r{---Ww*<;L*(xXP9k`lc?FA{98mY4S<@-|RU(TGA^`R6IhK%f{L4Y_$QmjVFB0sD=yvMm(&Dzfm*nA!I$;xvsicIh(VktL+7Z2kE3xRsFZ->{aN
z!Jmp2VV5pbwK}o=z{+?y+a#P-JfAToDgonp?ZH+a+TI;enCbyq~qg!p-d^;rDz%(B#Ud(Mm7P9KP$ZG3EoC8(I+cQP}Pw%f|wzerLa9
zoVrhs@qK8ud3F8@*UPKcH$2L`$ZQ6CmS<=lg(8k;aelo?u}rdGo1X1;{Is-G1(R`i
z#OkJ9C%#NyB+1;coOH^pKIO_DuW$V%kRXiw^r_jKJV>(`WSYbcfe>$uop)Q6le_(80?t9#p6>M(If45ZA9`w*Qv(LwB{F~ZvV2MT+xDrY5
zu1w2EWz}X%^l@H&L$60lqLnmp)dLr^3C5S$93R>kKF(ykTcHD%{3XQ;>-uNGrI=IZ
zZDr(sc$2i&SYYGF3Z?`>5E=6Fco(W-(a(b0Z&7afnq*2
ztSZDw=eAAfwH)V)*GC#HLu+n6r>HMoR0}&L_U4BUg}8UTgiqu1sY&n*T)N5*yuNr*
zG>X;?^?5_OE6o#<;S@kljK$L!dg+AhLt)a<>}@b*zF3GQNy(}m=Az*T9YYw;g^LqB
zg1V?&udTA4SBq8IFwb~y{=#r+&Tz0Z6bxdn%nFdmU#a9Pt!^x(2iF@?3u3WS<5g-}
zB2%R(6`pd+vo%+TwTAcV5&^%&Xq1I`6FT1pPqLUvtWF-+LZ$>s9qAw+#Fib?Fq+Je
zBgW06NXTo3(BbGLsx*T&uqr{CW4^o$LXv*XrOvfRL-L(KPp#lj*{<5R!O6g!p*aUC
z<~#Won5IrX%d;!)J{|5Ylbe@Pdr>YS6h~g=KGrj+^&fvrPxg|s>$E&UpBbtg&CU|J
zmT?G@3bws(;f8;fD3E!H}*|-wG01dA*VI|REy{o#^$YsQ@@
z|0$L^-MSCt6>1r*Swd{Yi2ILx$$y7j%%7A~G;BXdbHxn|{d?Lbju_wCjc>;ZoiVJ4
z1`S~E2=}adcG$tB-Hh6o9pl)M&ySYNCp5`)6`w!tptbQ&%zJ14Z;f=gk1yV@IK{VL
z-zBo2e!nw{A$R+xaqPufLyQo9C#hITW2(rjyc5Yaq7MGB72v&jw8#)8V<1)2TA{YBjdFqq7RRr8DCSS+qkWqdD95(brmux)kAbB9aM#djHRKK
zLhNa5s>
zu6!dTH}dF(fUuloMe~PsZD;-P@u(B0hkxm
zP;yd`;8PG|uVe=P2k4pH7T%E@G2-CXIfROjf_{EI4bPkK@Mih>TUSytpk!f`UePsxea()(G~oOT%LX_iFA
zz`gnDsbGjg)sff8i3}w*$-PcBeImb*p}l4fwEbExBF`3!9@=@^t49YIQGOE&n<+h;1Kba-@^a{1_FxUM|l
z&`>v}6g}$bez;$wtu$H|vy&di7d9dy{^TV4VoKkXZ%{5JU77Vk0kbNzG32>^=C$1&
zr&4HGZLa+sSVO2*nlS`#$M+{8tW~ZK?A3Jid`foOU>ZzK&E1Kk6u@XLB7}aMKTo^G
z{O09V9;(VPGdbUH5%j16C1mt8RU=>c)5Rchx}X<}
zs%?^^BW=rIOwG$N?d+fvY$%iCYi{X__+EAC!*+F&CBIqK(_Y3t9#QUkqcm
zjs8|y5<2r-PF93%|D9|*-B)Q%;$AoXM6E_N7gLLOG#A@7SR`PBPYq{zuJhMUNWV#f
z$n-Pal>l0p_IX`^;Q)C-ng}J2^7EK6$qj9E^V7^UH7Zo3LLE}&FKa~Q298GK+kxzy
zxX{~ZsNrxi3olk!Ncz~%vL7qr;kN#pIBs)|xBG`>#I)lc<2io)FBuxu(avD#Z^*Fb03OufGqpa#pp;Tvz$Phgbd1fVV;O
z(_6n0&Em;E2Wer_T!fj0Ql$8hc&0*pX#L{THk=-VNaV_
zi@j9+y0m;dOeK=cvky%ThGID5cT@+&-HkwpQb6uw9fSSi&voitVmw$?8oJ()&|mBT
zz{(ff%O`)?=ZZI4TSkpbv+pV#A^!m?6m}NKzjD4hVb+{Q{fo5=yrV0sF
zE6}|X|2y?sm2&1kfZ|%$S`~(T5W)Rhr?OPP{1H&Is6;Bg4k4VJPL%NZU`ZM}O?1Co
z{2kCG@EgEBTbBEh$kYKvyR4Zt@J~t^mC)z+j4dMivvtJs|H4N3e+e3wXP*lEqe(;(
z{%9KiqYBlE{;8SY{O>)@o4+NNyMxNj3bWZD>$JRlR@MF0c|$`69Ylp9QA@ugXitLA
zt!Bve6#40au*~)|IaS`W*nT|b{{SRg^UfEb;Mmt{9Ot_nE7-fD!kY4jLK-Ll5B4#{
z(VtAFy5Hp{si~P7!-`PS8$imb2(+of&DgX@
z8|t{}@C{xT@%sM0rPbLD${L_o7fsD{w0=EWTE=cp&)1ebjt4Xy9rhJ5V{zxoeh|A4
z)e#@{;NI*M0>;`xnjbM~GSNTeyJ`ajBeJhtkGb9A%7i_HxXfddV<1aq1)~5b&g9u<
zikRb?n$p1^HXqjSNl_hu{4TYRO>kdHMNLslV%n~DU)z249kjvs>I#I*%$%*0#ysZWd*T&jVopCexzObTHZoqgNYuRyG0CZO6IensGh?YY31}#*8qr13DI3n(D~|r0QTp$Oa)s0O!5h?FEM;T
z7YP#nzY69lv6af{ZzSQv`J&Ak37|(7h3%b=g3WZ|P23sIXB|^|L2H}Wi+gPnZT`wE
zP-5+Ws*!ZZJT6Js3^24pCsl)EQ_OQK$Ei1wqGj)~tutC$f_g%oj(Kq)iNZJE$}ZVv|@gtNoy_6ubEwxu%ItLEGz!&UBBkR~!SkBnPFpYpVOW!@f&4%Z~^
zaxA7XW-6CukVo%+crUqZfy7Be5TDux>_r?$Po|r*>Eb7Ll}SbQ1BARun1iN}Ce^Q2
z!+x#wEZ}v%-r>m}G}2;VL(*lP{2SO|7FCSr{55~Zs!@4&(xV`z?T&iIA*&UP#l}im
z!H+a2cA0P%be|Ka!*@6AYcy)%t8P^Qz$JRngEL!I~wmj<-#yxaC*h
zU5Ul!`8kL0my9|ifh*)ex>7JHD0X3r0K%DXJ~t_aH`2F<9Aex5)#`uZ!Fp+~>KYfD
z#~^;nJi$pYST2d>5;cMLhI8qbKE)I)%H;P3`5(3Vrc8zLU8w6*)7no%{$a<2
zbL~LTAC#otmRK9Cl@|P)bDKEM*niT=N#UbKg5X_kWQNmP@UdEF$Gv3)nFj#zso7SN
zF$aZtJzo!C7j7$1!$``F@g%}ybewNAY|82KtoA4*M#rQX+j+?dv2hS`{Ri2zbV9r})Rj=T2yFrWtPqF$!*x%03=;dFS`!K%-Oh9a_i7V4_=RJ`Q=rZN6
zuUI=5GR33LH^-2eOvuLWbI&33)}J7U-
zARr(ugS5neFoeVaQc6e-ATq|xZ5`;;%86_cy()xdc{dxD8_s9W6L*!+9^@pO~YrVcfL}Pwsxp
zH60WMrl|v4dk>g32pRpGR!=#}RQx${vN=EVH$9?mq;
z9T`-yE?#lfd!47Of08q0T{D=2(Qysoz{r}c>l2V2@e4hamVb=mfR3RCUp+F*
zWLD*3!0=^)H&{Kpl7_;cLRn@}^aIe}dvO_NSLB2;+&0GNbr1dEhq=?jId)`a?z&&o
z&^@GWqZR7=qKl|CQMFBgBj%^PF6&(bYXwn7v(u}vmPam`~!1`7n$NJTuHPXDeakc<=G7D$>nlKnZ)ZI8W`@sJz-sonb|oV-_em?4$j;b
zgqdZmwc>M4i;UhfX=pg8D`g&h1*dZdAH|b%@aZ!cpKunbQqZGd3gusXf89Pg?`fO%
zS*4i2Cvi}KY3&jai|vGw@%eW7=u-LnmF#v2Duj7u-50TsG5tii^c}3K4ka!YLYS~V
z0)UZZQmkb!!(Y_D^667-YQm~?Oey`-P}b(hJ_&x7D(jgwIc!@gt>jH^;_lyZ_uJ=Y
zIU+rLeeX*lle&A%^C)9(PsUwxrt__*yb8|+?>p0T-^ZLNpjwowxF1RJ5
zODz#$2&6{G3NL8kp&V&wAfRXl3wsF(y3kf=_~~~dZkDNwRUliytPhZD0UMiJll)qY
z)T`s^Z(7{j)?g?8n;stXIMW9efddBX&gHC}${%r38rG}aU(RhMBDTzp##3EzLb6is$uBr!fcJbiEGfja7_UT|UQs7g
zXN-cIHA01{qH4XxHo#-4|22B$;jlG#Vyw@h_G(;3pQS*5tp1a#i*oAg?1Dm6d8q#<
z)LwVmkvB!D!E4q2*aEd}wb^l<7W}{2Ry2ykk#=9|D{ys^?t>&-<|`$u0aG-0%RIQn
zGUg0AyD70Ccsz%nnA*y0CAQ-bT+TatwaVGXhE2ab1@c$;gTf!HI!*u-dT+-e^+S9|+%#h5hsN3XKpJQkUE@WF~Rj=4;J!(6DRmbF5&YxFK+
zOQPW3)GnIJbQUT`Sgxf6{FY0qIEu~SZba}`Okou;PSkHUr?erCxK4N!-@Y`dlx9s!
ziT*Zj=io>FE-sMN{vCR>hDp_pyM(%=$dd9gIZ13a4Rnc1S2?14h&)v;oJS}|C|f(T
zE*g35$O_FcfJ(&GBZ|yY&On3a`N=#Ld*SYDLzE1OodY|8W@6PbmwJt}
zoL1e8u3`0n?m$dc{{nRAR=jypIlTx2G&stArc2M3rc&K7{`?PN^d|u4is7PN)|ZMO
z$oAfy7Xl8rfR&rj3MKZW-6J;sIio+iS98>tl63map!=Ty*82~^w#Q|Sn_2fq1>y-u
zc6~6;-V}~y6PSy2gd0~Wmn+_D_yF5;QT2r-F6wOR841qL@BAdN>gbRwh_j>oB|Cbu
z7r@HuZ&M{rYhdJjPI50;Y2OH$v`YkLod*7{p9%KR6)NjWlWd#UpbJ=|B~+R1KYGl0
zXjY9r=0QlTE`8#EmDpAXe+*P%u1r$Ngmu}gzxMtlBj{KBmVlmpD==4jf~hNp>$!EG
z1cV1=I5I!?rZapP+ce6S*t~G|uG*y5UGYv+oMv>}7$WMtXfV}i+{)bcP0F`uR$vZV
z3(M8rTvvZK^0-w3J!mwPPBD~sRTChMZxNgIgXrMM*85*aSl5}o08_C!#kB@IUU4^a
zW|)F5;cZhsVK(S+qEc67VXq0W*lci=ZOuhWIPb_*#@x<}wrN%r`5npvdddM$FdCuG
zue?iScyLNrkjtk;e?$mcHVxAYdoma*V}uNdRES3}IoKDK9yIHK$)
zT|DM)=E|R7ZyGe+ti>K-u6=J;FH0S~by>s6OcC_aS8d2I4UkcjDHCK46&VU{R4RD(R&XbEW{pFEo4^bO)YQnS%*ppyN3Y@|?p?P6z7EY}p1{j>4J>uIjx
zIw3A8)-a`;a)vySx!qfuN;?A@L+NpaS1S@Xtl3&^o93zQm(KMo<5-V>Ed6q_62gk5
zGAQ|}l@}BSV7f8Y?m)3~?=oec^JR%kf;)Djy877RFp@}lj&6Gpo<=UEk`7i&I;ea-
zSQ@G6!R)J{V627(%&KbWzTrQ5dD&AZC$zraZ9ZSd73r24h@hYi(nCd=65qH={FsjS
z*81T8|H=3{8LME9J<4M=M`v5qyT;b^>eBiK>?=xD6&TCDzi;cQsj9?J+ApZ-@vivP
zhlwI{tVO%Fpb7EfJlc!HjMrJz65!Zz=2QJSADTbNe*i%2;~Ak4^3SbsJg@zN=BqJ><0y{^}3;H2vYhf`#n_N|l|N
zb+(AJ=7oIsw2+%Y>j8C{TNY-UX$jleALCuS<*D_Dtp+)pCF4QZl+1C0Z3X-yNs8Rc
zXg4;!=u%lN&4voHq%KW+7V-OezpY783RyhCF~7lC#{yT8gKW&5Ns5@Sjb}|bq
zp_4OpAb*lSU%*A0o4F<(;MenxK|NsR!kBJCaOJR_ZDq!|??KutO=0w*NKW2c70|GC
zn@=0kOx549&ElM7E>%&&HC!1uaUnD;GESB%O{m$t?RA=>c1uy<+uF4vq{nE%*nT+F
z5I0A0kKwax{;X3xkET!qoR?rNGNq0KRslbTg^kwCD8M_2hCdAwpm!d_;k~+ryvmEj
zvs8HL12?*zYoV0
z&s3#F%h#QZ1WM3*^-E*%mTXii$oA;@S^)
z(jc2=Dm3ap5hTat@zX&Kb-7rA_ep+OHc^R3>O1J1!d-)sk`zG$vs2Y~dpuqzui0+Z
zqFbsskD2~W)&-pK=L?>pFxeAapjxj~9!H)eN8f7qfqH@(XGY#S{kc$M2KNmqdM(Zm
z6_G*jGI929N6)^GC=M3mqsu=hyY9KTn4}5%X)wR~1ptZ%YnEI4tzpSXig@?GCVWNE
zqMxJQ^3+Tj{#ajgcNRz_Q0oUebB|2&{?XpzQ!EbS2RC6ubM!imU8f2Pr>mJpuBPcL
zz*GXoyOh+dv`qVUPLsc)z8*TE-j9FF8|8Ohn!n3^?3uTYnlD@kzsMoWMIZ8V%c<>9o7H+=G5}CVq;dxdFoiRIhp%Q1r
z&r_2*PB-`RWkq3`{k4FnHY7_yn;ldApy|&S%hjyYP$$HrJV{cv?K~${Oi;5AnkzwC
zWq7aHf!yC&Cp1Jo(2h5HV{b}~T$e!y|2+{0Bn_m_AMNG3tbIRC!atmGN
zC+)LrRp}^nQ_f;gm`M`yju$ZVLCfXx_|=eeWk^S&e8?BRrF<{2k*O4*m^s4lqj%SFBG2zUFZDiJ|K?jRFEO6d(l&Tq
z$N3~kFSJ#h^f-r_$QJ0sF3{y6=sltT&AlyXUi@ag!?ZT7JjWQMr+gkXg1=N>+@)6%
zYbX$3Uh2+HoO<;DlBuY${hJabe|de>8tF+W|LfIyv#Da|!>bJUomB0;@7g?TMyP+t
z!vZJbWOSe$xa@->g)F=5D%l$&UKAT)k_N}=C5!VvpSQXA%cRuuD0N~zDVBB5`*t9F
z&&s`x|L`=-DMq@D>Eo<5(uISP?*19G6)(r~+u8ChK6JeMh`roidZ>t?7@{V%oQxUA
z{v~~y?#w2U68Y0pTjb_Hyn;%D7-$-+*X^6S|2_WvKhf4^|Bq_vy}0U!^4d3?Vs4JP
z54mCKB3^AN=b;*|J8pPztmbJ2*}+_iljR9`#M!LBQ2ZuXCsnqB)O&x3fl1>8&xgJH
zaCC7nnss)9Zh;8?EWg4At=_d5QQ`M*%J<)JsNIJ2NT-@ktK?&lsMr&rpefaGGm^+t
zQGt*xTV`}wQJuP(K%FTOynPY;Cmo_`mNY|uUm%Gpf-<1nc%-V1vB|tDUFAOAA$BSY
zcQM3miLaXc(}LYJ)PcZq*yk7xfwF~IZn-H0o#R7Tk{|mjL}TkLmjl>Tc&)OB9Nmo-
zD}N9Lq6YEyf9E!h9Wi7{@v0fpfjQSluvTQzJ42XcG;RdR9A4SUwJY+Efh>A;>vW
z#o%%dDyyUU+%?SR#=)bz8{pqx~<7r{cq3Z6t#$tpitlJqG|7h%oP=p~C+4k(-SZq_krp0_fAC=eqH}Y`UJ~9&%
zfvsKr?bE>D8EBvkX1EQ$B{Y`Z_sa|EZAln~3UQ{PKDv~Wh|iaiGN6;V+wixaGVD>cQr_`C{HKLv7CKF__lQHrkq8f4yZ*e`Y6r&o>
zj2rF8wK`^GvNxsX3bq)VO?_9%xG;KWn{abfJN-ZN?yHG~iR3tR8JTyM```Ue-|n~m
zJG-Cu+Y8^=WI65!{K=se)Xe!0&%OX{Y+GJV)06Ny?9J(EN6GoH?o(gE{Q;p}m*Y^d;jNkt+>X3gprv
zZ>LXw`JKJoGLqrn^$7IzIG@K|*aS>`={Sb;wxv#4Z}skJ|K?8sQze7QMOAX>m^i`fw`fLgtubVJ;hfgas56dbMq3P6F
z-?lhgtcN)S^Ngp)Fw8me_O7d~wr{t{t@r+iC+bUh`9t}Vn8w&7AIZz3Lk%7&PkMS`
zZ{V~|OIJk+y?Hn2cvQNe8=LNEi-f_Dm{+V$;|9DhUn~V6`1UitP!nZmjr1l5g#TNb
zNZW6Ji6w93<#COLKSS8AZ|vLUDFO9u
zB;LhVqN8o77l!qg!xe(J#yna48n3F+hhY;6WO0wEa1&7HBR-qB{?eXQcCJ|6>nEmK
zy}j=-sXp_@ocZMlarlcKMHgf496hi@2+=o3!9ubc#Ruyc_ddZ%!3BR9+}McSKC?W1
zkQE(`<20ZZuZTPc>dD5s%(v`)4MCv+w%A%GUd5
zZ*O_4hfBAb37aj}n`3saem9)+m`m4si(!@!uW2$(mri#
z(PR9o9(1Xaeg0BRmWF?ZeS_Scv_U}-et#$YkX6eZI*xWK^Cqurrtk%&Ck6|Gx&9*4K6bFhvvPCTbfZA2%dYh$+8-Zluw`Vw{R@`srI@i5tJpQpo{B~5yd7i
zLS|n)sMV&ajN@$0Y`sci&;BGQ;Hy9m7n|2SQld|!i{sGFCX&#<-d0kw1?v8!N2u7J
z*&&P&DnyB?D^_?6hguKQ=xCH)9|=fGW(08_L(EM}tHK3##DO_G!-!9SYGp!7o+wq-
z`{-+&bV>xZ!Lr^P_HmWgxjlGLj|OTZ`5TJrtI{rCgHkl(((X#O%;&#-CR4xTvv)cX
zQsD86*SY-FP^K~JjtoGE4km%qcYPcF$p6_{?atC_U~BVZ55y%=4uqbHnap4mqy=HP
zW@Deod{eRQ^Gi(7j6xaXMN}%x$IajdBc<(cLn95*N`cys{1p847ahuxZczj_A1xkq<hq$XDHqtpCf;UofpW>nVab{mqbWz(xK
zcik~(-I}%N^s2fQbBK*H-jWu3EGIKE+oc
z>!~dp%yp)Eux30hHo@9&o+>0%e{V$qcD6e0f@YOJCp*H9ykFK|JK
zrVZv{vN-#=R_RRk$^{*@l?M~1!{Ta{IOpVPHIhFZ|3z#`e2uVQ%Quk;Cz~x(tMI9Q
zL~GZfR+rXkJ&>dUhCnBI2_ktzqS6{p8C;GkE2>9h)Fy!GuzZZs&bHE&
zdIrir)828Gn&9&(9>Kp)65*S9duwiATh;|(PY4tl?d>60I~WW`oMzhU%@dPGkZJ7u
z7j@lsr8k&MUoUfz<{cGllf~(Jflu?UOss_$@3BSBP=JSKIP;*x;Er=~U>vHcQI#=C
zy;S$_*q3pW+d6m2swXsW&Pm4T33SG#l$ARiehoXVIf_^8~6^+
z@VH?A>=bHc5*^LTgM!pj-sysozIFE}M<1hD{agXUqfIA)Jq*s39Ee3-TUaS&Ud@kR
z5Mz3`_O}o9ku=36W3Y39HM-vsd8Iv~Ls}W7d2eZREKO>nZ9Ug=q3@i5eH)Te4G%m+
z*Sj_*$lj&xdKV1FNj^|}Bns);^)_jaZsqPyl@Iuu_pR1mW9sbYQIQqiPm#wy(G$)F
z{>HGuIpw9N
zOKSJy%_XQOfvkqY@V2+bab5C}>1y)0+c{zsF1cU^yww}xn}-UxwD7{1Qc|Gg&V-GJ
zQ#oKuGs_>(h23vkR!}XI9Oj~0fj;Gg#tv<8{x91#KNk?Xz|1)1OeMp51IFjyh#|bk
z&O2#!oKA=$XIyCmL(H}Qc6Id<)2X0PJ^=o>EPEN~p+D*^UFh%|#d-{vApj_e|
zKXn~Gvc?#13JN}h3KUk)1rl21_5tac`P}+>nD|j*>HN|irERN<5pIc-h+)i&Y*9=`
zPW{x)MT!&NT+~(HS>(BvSXuBhs3z0$=EPS-r#?iSrjklm(`IXt_A7?$S5JEnYwc&nZ6fY}2C6K!J;HOhP(`tGm4mem70q
zo;)u*curRQ>A5`Pu|GGlx1s{K!!x?7ErUK#7v#81vBs{zoP*zz=#&Kt)qe26wqlq_
z@3QY-#65d&y^FU;B2J|>2bCwF+O}fNHH;poE5}eUZaJ&qDYr%ZB;97t6G-an{^=8x
zV#5!Kha|#lHtgU|c}%SAOrS%NFI85woZ~!Jv+wI)ny`>#^RPt6>=o5jh~|)=XhkP@
zE+eZVqCHOk^z*I9%IP=z?v;9Sk40Dq4}YM4vbrC+th(Q%0oQR;QCZZsFJFqdMAuc
zSZB;42cY$6Nn5{D?7Cy|lE3Dsqcdai1(EVwtK4<={c%ALw*ZVQ-p?R9T>nvxDW09^
z`4dV~@e4L4WN`|aKYPScNB7=_^*Y8iohti`X-Pw4>m^czcA8DGj=ybW8ga~M>{otz
zx^%$aR9^VN_uJ(AG!4G@;5lm?hU0#K5fXYV@kaeT=@$*1z8xQ|;xTj2>^Qf)JU@pQ
z9>2%txBWyRPFLRgB438@f@6uij%5OSi9+Bg**N0snY=Rzzm8(kB+Pr>Cv?$
z$5|p0Js<5uz1hAJm_p3UwW|O{+hmPiEIkmw09c!q7Dkp5Q$e~tHkCM`$~C~s>Ia>)
zO|lCzf0YDoTC7z#(1jP{m!`y0+6JU#w6l%qp55MbOI%7)I<|(RWrAjv{TLnte~3`p
zB@YugJsD;oX!<}|!YiGQk-AY2DEMNHGXZojD0v*(@Uh@xYCYbzrT+$V`yU0SR#EBO
z_S+uv9UZy)q+J=wDl7X3r@>u93KZ5{lr#UQfRU6~d3^VHwf1}C&klpeZw+U5m1Gl#h{M3ib)#{J_>
z6Luz0tQlzK=A@g=s46_xv@YU?r+X@9Drh{gLr0}nS)=nglK|I?HA~~L%KnsBlSZN~
zUw#3Bhc}|?0unWR^rJZO^-3ZWl0Bd*$#j&1TSAj*QYQBU*UXrlBYl(AQ+?A3zli!P
zw($Xxeg>wd0a_`Qp>eZgmy--hC(Y%><-OhSlh3kW#%L+Hq`=sDmjmeNMx}9+eq1+S
zRB15+=h}_a%gf6XSNF4t6W;d){Q0*x^_96FC-g2Qy(DFsF6#hMni_(qUc
z;Uc*WChGHtgq-4p(DA*irRE+@C~W%>RDCV=-8KcgSE8ur%qnW2BKTCnukk;;2cB*w
z>od0Cs^z8j+l+t33nZcxL~2_0_CB%dAa%kAV@lNOJO)sx>C_9J$wswghG4YuoWq#t1oC6r>KJ$7f~$R
z@V8VsRcM+w`LycJ_L)Wxt_1L(E_`_zUi!`1u+td$cVj!}DlRCII4w@?%gs_OVOd8;S{&XKwc25Ee&aAgQHobK9?$8Kb_YSi(0GW~sirk@JGDhxl
zRNJnjd&hjwpX3s}I0ptAjS&1w&-*7Ft{s?pMbTcAIhWNm5Z5MwJpM
z1AW%0Njh#KeoxC30ug6!=Lz3PJz^Q-chPt|Wk8)+&a%lIr(H7Av|8Ddf3^SN#s82~
zxtt$#2OK*RpBP9VB{FCEMIMX#yoJWceE#4>F}loF5M<|k9zP@-1L2z}R??ePXPswT
zSfkB3YGG*(Q+;jW^5VnH)ag@9#f^Y*GTaDmRHSa>q5cZ4-T0@5bBc4CDv7i%X!&z5
z$OMnz5BMa#{ciJrFKKvl&)Vrve0BWr-aOic`xtSu{`SAQ|GPLkLl>oVteinaaF4lc
zyc7MBe*3`zrbig}Yvlnx1KrEmrB249N69++DJ~W!N{R*
zrNDD4K(gRDF3I+()p*U+-Dh=J&yt}vxscsJ-UFy}#IIWsze8Mn?Z?0UrkO*G%-PCY
zb5R(ju&qe(Vz-io)F5|CM4u`PmPpDAkM(JbmFHQMSk&sE_%y(tcey&8OOL_$36mC?
zh(i(q>XcA#>PVw31sL8^D^I9b#?SG0PVW3gk4*km61>$W%pk@4O1P*pxHx2}z0Fja
ziI%kn*;DIQysX8$GFWU<1)+!`Isi21L6LuwJ;Aw|lD${pqfiC$g(+`=lo235i%a^7
z3K{bi4}MJHtMYB`%3-6>sVV1DR~iR6!m9>|N{L`;6(pRC9DK2#rS|ysW+iAuS|@i=
zz(3&U_;vf`>Pnd48&gu#wCb!U^zu+;N|mIdHb@`tGnqA^7h?~@UCt*7(gbu
zp6q@Qo_%`O_U3}CF_E!MAW4S~lda2Z#5F~p&An&u^fTvB@wuT#XZxxH>4RZ%T`l1X
zMD?oeQI63Jcz_t;rq&PsLLONQ}daG7k_{CRDKaX^)D}oz#*&GDJVL>zlA!E;9rn+bKK2nPaXu#H&Jnq4OAJa{)w(
zXwxKEO%BGzl#gQFe>qtpr5V{=NI(~{U*9j-IdNYyf;OVx3*=zMX-k~UCk0;00cGF)
z9(Uig{g5l!+wIinwCx(CyBlt=6vgOFs;gzyafVgKS9Er?3E?w0)vDzYa}0987~W$E
z{gDp^H)co0)x|O_xY!lwlZ2gLn9W>b`*(gzGytN?>HMX-%v<`R-Cf!dCR*5{(NF19
zr|;8vx}2N5=diPTjQeR2L@GxSyZgjL#_%ugYwZ)5!sDCuvekOG?N}k(r>JKsduBju
z6^#L!C4d2<7Ek|8QGtI}XdCYhysg%Sk%;S|8)8Vo!a@&a;+@dmiF=D;28m`PL^kn5PIX7siNsiw0Z5^iKAHSflQcc&M
zggZ$_m>CH?w@y8`gHet|rEOp%Z3V1?nm}vnusp2o9L&xnM`r(T^oj4fhoGR{e|Ri9
zIO^un84hJ-BlC~yDE5p@1O=Baz&L>@^zzkK9QKT2Q$IS1q0zLjM)~>O^V7Tc5nIeL
zr<~R6%rR1pG88;TF#)@h^xM;8%8#Mq02@J4V;dXornJq^W}nWk<2GB?o7&d^5lx$>
z5-2X^CJs}j>R1asKF+3WIp%bwj(VQX#?GELq?DUZ9$D{5vatxi!?
zZQ1xXSM~b`?w8uO`!_r;A9-58AZhJKY|wlawIQ$TM-4^QRRvky`V{Ur?af0Uo
z$=~qL!&8ga9ql`CW}s2-!g*$!4S`}cYg?v==>y4%QYk!`=Sn)#9LRZ@nu31tDsHsC
zhVgZRs0zv-S#=?+4#EnVWREu(JYV_9)*|EStC6~5y856)j4J;hfNiC=s;JU`OjjS6
zeMM{nLqLnj+EspgalsIBLg?eI-?;+8GliH5JvQt6P@N{HYr%wt`nIAIL`)t0PJnDY
zeLGrKajO`lt*a>mz?p5DyZOq0^MHyFmOW1xeX%n4o*>1a3DiN>mG5`OVjuDHR)`9q
zoj>Ky()Z|TMl}MSD^3aO$|6D{8QC6|Rl>W-oaQ~jdi>6wG?{9ka#~=wkly+^E|j(9
zy+pO-pp$J&-U~0M0Wda9^oxUZv|iF=kJiCny~lfAT)U~d*&?E~BWlTj;KP>_%Ho4}
zLU9fN1E8cD*?Vrt1hlQK$wn+FgYf6%02x&6K`kkZS2^trFax1e+yrD6S(w3CBKp0Z
z!|x$~-@F7Z)*1sc+jOEcfDPu*Gtodp1@~u$@-+*+wX4Y+XU$)}AsnLla&~<1NeF7A
z!c-DyG-(xx(8Of~@h;fKNf4it3#v-sfV4bLT3Qq#Ce}@m^VMxQ=8`2smQB}1$
zf>n5GbyV+uF%3{@Nq6blR+U}?Tj~J!#lEfcLy-A>P#OH~DwRk=kM6>Z%!9oSQc(OW
zz3`;=zcns!XxgFsk}k3~j!1Hu=|n!|*o3z(S>MzJKhL0B!|ycoeeT#;8~oLVsESTJ
zK>{}&r4r>qcE(U*97N5@=xR6ZvwK&_p%ZAqcb_{4SL8xkiB>Di)lC>})fq?aW@e{q
z%9DT8@I4*#+z6(4&egu5Exb8ss$qI!C$F#oYr|x?sBk9LDps4nAy`2BTrsD}ybGxF
zHa5!J)Z*nI6)ujdVmkKy*(ewC_`8g!GZwpy=$}Zhq*(yxeW~WF`6|4};j622<%dna
zxysg80UY?lr+4n4G3P3OSEs~q6O^lGt^=5pM__ls>X+o16ZL`7eAHcB_|@|6LJAJE
z3dezapY>O5)+Cver-lT0GnaVJlBWra>7~O|)aE608u-Y^OlEm!ATMqlBP
zl`qcvi$hPU&aTq7?(LI-wjcaq@&PIdyFx>H5kA0__j6DsP
zdpf6PWT_lxuI+MR(p&~?+_I|D9Y7~BJv&AMrJkGmuU7DvR;`${UsaFR1e&JNSQmbV
zFXM5sCP?VfCuLRn2vhzJ_OS)s5kjNm5I)zk`syJd_Nm)vvaW=()RZ<_(8_D%e|TP-
z^Q8w*){3sJWPAsw=;+@pfUVF&d7tpuALft1g!jL6yUe4dBPA(LkXFsDM%HN?Bwvwy
zOpD-nLw^Nja`mVELl6lKm+GTRZU|3lmI%BHboRG0xg_fu+QkXPUs978ug)jM=twg8XE75UNjr0
z(uxy;uD%?BkVOpT0P+tWuXP7lnvQJ)ZLfTTWO_f3bZneW(a*FRpI<7PE$gNa!4i!J
zdzLAnnMNG*XVqHNc>bNfSi~}yN5=VMOJ7@avGQrcO|82`XMwM=tq>%gV&>?0j@-N)
ziThgqOz-sK%u7lCJ&c+Bq*gP;gI#cFQS%@?xm-i9Lajmx6-@${ko7;%KwOiIouOJ?^J(VYy
zoF8pS_7ptnGUr+&n@Z*%Lzarun#W#$!KO3o|J@$8J8{C*_XVzfUm}+fQoEMZnAe{l
z;98tg<^t-X$`hI%{Z1<DBA*|Fq}u0GcDf!10=lQ06)R>iYSO&x+;eL|;s+cjZF1
z$g6kjpO^KkGM+&4$=%o>tkSSTuGPTN4g`O)``y;6>E|Z*9kq8S45GYbohgCq+qWa|Db)UuE
zV@`PO1OM;i`-9O_5k&k9tDeZvs(RK{lZ3NBp{zX0hG|Od@b%;AhesrN8F**UYD|ng
zL^e#<*CyJvduVIp=FeqJbHZX+E(00`#3>-PcdaL!ZB!5W4x&U>?rNv$8Y_$3JQUD7
zC1qY3V&o?V^NR~wT(lOYhK1KfwAz&|C+AlC`L%kixZN<*&;a3V^~yAA6rjx48(4+s
z{NRZwxSqm~kMo_fyQHX@Fz#2nAB_>oAAL`s9JK`B9lb-aPx-sIW!>HM;(R<0-@H)s
z#z1P{Y6f@O1SXzW4r!8p|$o2~0D~p%g7GaiO>1mhok2VB?T?
zSTH<*8x!Tv{*_DG`&z*75aaRnvqh_h49~?|!+u22hcLW-6F0VY0PJQGmOpW2wt}rb
z!W89y8A!J~2^R?~lHfKr4;5=Hf^qCc_lddOPWy8VBk3%B#w``4f^s#4s@dC>9=?Y2
zEh2-+7v)48Z&Owv_f;GgoMkkI@FHY=r^`XZXAi0O0+~$4yfqwV27d@SR)?=
z)I`5pnsl$zoP>2Lyo9rapDgHTS0GN>m#gsJ^*hXLzH50-U+`MQLYpr`i*`K8*r?Fw
z2w}8CCf}cvZsll$!b0I}zU^OXQC~2oxzy&7=SI}ch0?F@h%6)x{>nJ*l1z|hCY8fM
zX_p<(Mt_p~wHVmwiZUXr`3%@&e#Yq4Lcv~=Np=|;##+o}7+S`sN9CckKRksj&Ja`0
z?gbRs(KT-5!F3&+7jZuul9Kb2P(c&96ost4TGVAx^hw2tDQm#{IgjN9qLpFVPYhW`
z#2+3WQ$uBMNm3Gdf$SWU$jFm?6dFQu0Y_%59Xj#fJ~{g#+h$G4MMcO9y!dsH^A)*|
z*b^Vk!HdtAFg?8KtaXUwT(?#6unckj$<;d5oIW
zYn#rFM9H(Ord`p~alx$hth~peV9`Spe?eCrQs;H&I1@z|7LI6e(sL$~DxPXQaUyX6
zGGHAVCNi9m!Lj&4sI@Wf($FrA`~7X@yY1Z|tadzeGqjYOd||po4Vp?X7Wqb!V$j39
z4L-Vijj3jaMzxltmAqAJ`ZxMwL9HWOOqG@hqq;;2tuX1>z8+&o_MzP$0W%cm78ga7
z1Y93Mn*YNK{C=43Y=JsqKOo4*t8$B*wg3K2?Hyv&44g&8bSo
zYnKew;ExKJEV_Aa>~0+xzrw`1Vel?Br-Pi(u0{*!?{y!0R`-=twsP@Rv$hUECezjE
zlEtwzx^fkQn9z>w!N8p3FOpnp5;u@6kK0T@Z1%*+t`RmnM&3NlUpzwOS;DcFv(lTG
zvrxeC!~^4>E~JZyVQKPJi3XFH06hYpP-6AS9G%`m#0w8
zU6v{rj^9;l{xSE^>Kf2a#9`rS978ndd$4Gtey8`iMUt&aY3U>%0bZt#FOpZyR
zj#OtjgBaBLAryqI#2!VZ#Iqh?G_8;Tf#>8-mhuI|$%=Q~tngHf&
z!5;?|S)p}&Se|>V+IEk53zTcer$X##t)G|WMNaW0q2K1qm(MOqdg9uYr|(a>Nej?`
zCapH0FI8r#Z)3_m@{w!tZ#6xC1V$VvuV)wPw&yD?09EGj>-ss>u9GGh+3D>7&pI$k
z>-|sxZL&sxyzf?%#Klf3@_2X46yCGBSkiD>JmaV|a|KmtRFuv%D!2vI_($SHL$lgx
z4p*oYQ+lD22C)fQoYOct8T3}D*if%gUr~R=ZK1Pzz8^|Usrm)qC9I#bwT?Js=c@QI
zA-7@rI>OPCPr+u|HesA^>#3z~=bsN_t|h%s`pU<#^*KL2t5t+`Y5A5)
zqHCI?Qr>2b-;wQBiN0=kNE}Y67@eGyzkAr?TmB!O<-p51xek6{#>hEgyV!WT(cmTvzDGc^R*!hPzU&&R0>_&yLQ(Iz6Z=-ekBo-pjXpEZVsS!2rA;
zw*4U=uD!2LVyKOd=q*pvKYe_1-&Nz@M3k1Pe0h9KLQpB^eQSaFpKY@LL*>u>|6Kq+
z_*kKRo%=72ZQ1l~M|b?4^1b@sVDO6eZOv5ecgX##$DIn-f(#yUvWArT|C@iYm40+O
z_&Hc`)eR}_Lj5TwW9S-GD~pYz8sC*Okz#u0$W~hXoeS`AFT}snE+O~`XAq?ev_XWt
zcUN!~7zld2AnXprO~-2(N50(DAo9U9w{F!cG<)n>d6=&2+dW*XM?>WyCCjP@~v#Hm+W`WW{
z^adBwrfchv;-JP=C!LB`2c1%*0oEy)%>_%9LnRq6a$?W9?pdQPV59MliwO;AdxFtV
zECtuBO8OuVM-=Ow9bM+0iZEJy&;lR6O3;Jp$eiRpmF|n5wqh#rpt)MMeYQ^#+h6I?
zsaGRz;J&NVgc+@`e5H9^0$;=Un`EsBFO^s85#1yOK6%6w6Aq#!VFT+8N3bhYF5(bp
zB88H$W;PtPwxQDZn1h$}ZXV3VzmrFgt&0+sRLABfP*Qs;2gzX4k|~HqGU#{|TJ4fMr6t
zT6}`0RRSFi4YwNWwA0F`cfV7&ySjL?c4ySq6}sG8)24Qt0(C0a02nve{JCsvM16QS
z@(lNsY`1&Jud~yesVSr+b-+%s)~`vVt30p|7Q{6}~;pVV=)cVU$B-zNdwE
zzcLxwDb-zW4{F1k!dl!uyG%UVIQ~tJ8I}8ycVfP)`wm`_TZ_SZjaMi){mibZFQ^X$
zdLOMb{5s~Q9@8S<^yaXt5I*z-8UG%bc3Lg{q4`N-)h?pYj)dVId_P+mn8Gjs^sasP
zkSTjRQNbelHnnKGa@D*ca-FOy&7VN3EY-I32;WwynGc}9%ITaD#UbGGH2jaoFZ_!@
zpFO^o0_|pz;Aw8#+4uRhTP{cYDZwD>?CQ(8rl=S&ECi8KjAyZN`4}NJge&sK3EV7-
zS|+~6(Eo=AwWTDt9m-B}QNu2w4#-CabqVnGiiGrWu=9+ez%CDbn?$%h6fH%`BJ50@
z?d7DHOWGf)t(v=wIQ-|Jt4?J#=f)_*+(5)CCx9*drB2V8EE!|8K*J{Xu;3Ha_SV3R
zdd@~KpWEn!y^@67r4p`mt}XamJ3P4M^13|3y&$!9yiYKnPvCW|&BZv#l!AXvOx)f<
zL^N;dop`W7x8|~bf74$MefD&<`Sa=X2L}H9{H-Ajk@5z99L)l%9ybzyRtqfT3O@#z
zTbl3P)(a(D?}AQ1t3GFIMV4On$D&e@_ny{?gdzsBSbGP4ebOYeFcA)aFJ$(eox$YK|RYI4BI?jF%x>3F^^hXD&gFhG4u$T*&
zC_w4W2EWU!E{C1R@s%xi+G?=9H|0{Z@#N8VfqM5KbY7|ZGBu47hs<~h-{WD!TY_P0m5F=mDswd*Kv{Dk_+f>1)_Uaym9P8y>cZ2f
zB2U@2af{6StQ6WVHvqfUGUhM&b?ebF{5fN8sV0P`vpe1k7WeUW4hKdqOgSnM8SZU0?7OH*PMf|QBHxqy&uaObVcq7XE$
z$Kna&n^az7^AzEd)Q@a;VpIS2fA@A7joAl=+hob02TN2JOB+c6?agV!!+7Qj)%?)N
zk}jKrJ=sRL-@Bkaf^lbly|JFCXk=u(@3tK})c;f$L>am&fBM
zCUpioRc6gCF_r%4xjK7f{l|)$Y9=35K@WP#p8v<%S;aN^z~P>5M7ojA(IqL(Ml%=<
z5+eqTP7x8LW58$-q(+SHMv(3rU6Kk23K9zH|L{3?C+^Orc=
z%ulfZ`S-sQ>1TIF;0&CTo%aVlVt
zxLeBZA)AUcxnWg)Y(rnKn2mO5%Z2a_7<<15rku4Z{IN9AD06{0+_ZF){Us)O0gXAjy;gk=u?XmZ0_x4ygT0*b}dR=$Wba6M?PY
zk@G}_j)?s|BbrOc+IS5Iax&yhaU_JwTz2#Kn=khH!V7nDoX)(mnL+U=GL(r`n*~s!
zgcuGnGZI*YI{gep>a?v3w{_wR2S8e>oy9c2JoiKki-7pgn&z}kXiiMaj3p(>&HLio
zUJt>i3GOxfw{Fkc69(GJ-JNqkou2OT#B1Gej{xyosdSb@^fyIzKiXLmi8chC4-85e
z*6**?316u341mhq@~q?ps(a12nKBXszIVW62{v+AGm9%m7W6fsWqA(Uc^kk}C^b
5%{i86|p0K9{3qKz3L!hYr|13Fq~!|#Vlos#%U|F8I1bYe*`n}YjEs)aX~LnU8E`wl=`)=p7S219>*8Yg$otyb
zifx9zYF0q#v(B=_4_tSmfR;J#3;?;5xLG#kWDQ!&$2^AXhY2jW({|wdj6wi;`;gn{
zu6G<{46#A%!c)z`FZC;a$Ag>g&tMk{9O2>THw<=?e({
z9PLPEej1+ZE&i>6wJcw+mQBMSzKCLjOEKTgk>fiUHO<5V@
z*+%{frknASq7Q|arL5JaZ|;a&a);LJPjZWVRedWH2_{*wmjo|kUU5$?l6<=msedJF
zR*J|*SFM6|WjAv2Ge&Dun1CkgpEPqn*tZ>}Y^_ck%%5<
zVViY;>2Cntc1$ys5k!ll^z}Ook$9_A1_lS?hgsEOy{<~wPuZ&R3(q_!rQ78F(q?=0
zaG{`7ybO@!h@>5^if;s7yE%)DAU-UntIHu&KxeP(TKp-JWPbLj@~;Pdo!;Y?201%w
zJWWK>LNjB1-q0X)syO?6>*M&$wE>~;(RCv3rGQvF*@eC=JZAw6Z|E
z`}`O*zGa9vc9Lqzzh67Z4>s)3T$b-i;Po-vEl+F*20ix_J`WA#-s&iioMa%1;j*;h
zY{55sA6=WjITDz6sj5OWmQ#9kHf1~IbnISUWm&fu$_l_}#qvoS;0i1=jasSTdISo(
zOJ#CDpIHW&j3oY}Y^yq1)>7wpe-Wo7p)Fcsja6#3vkj4Z#q3s`DC}oLxLCdSk%CG`
zN-Z{0`)s1}x%{i~PO>L-kX49v*0|O{PnprDADWzuipg0w(T;9Y$fx7V`<}
zEyoz1$dP(w)yJm&s;_0h)M-W34C-
zg*4T$XJM(ibZZwre&2y^
zZm__BQ?tobC7z0Tl4KF^2g$WOY_pV-zVUzrNK6L+zKAvGaWSg5DyXN&RkM2M3FLFUi%1*nkn^1Fb(^@Z5sG_W{Jc^S}X0VKSiOiG_
zdm$koB$Ha%-Jj~z9mzv{osY6IWi)fkY(c4fV|$Kw`^&V_@W$0)UwrUR$+Rov9cJmk
z|4iQyFlBqYAHq>wGNO36C{hmlT$4}rO&Z_C&p@Q^Z`t~}*J^%8*i@N7I!9J%0?Gt0
z0sXura(z;WcBR9l1kRmC41kpR9dEa*$Zm#(^*oBkWs9NHms06&2--BfaTsU%0e3#S
z{uR(f-#8|2uETL+)&8s!(3Nb!$NYx?1#wIpvn5NiHc8IUD_A{lZ7d3HR2~Xqj@|A!
zpAFR-3oY>KB2%u|S()T#$}7vckB!MlVx&l51-<yi;!wFX|1ES9D{7o4X*PkzXJeC3(O#!=zx9J2cYcnGjj?
zjIrWIMT~!w0&p$gkCPlkodBz0AiQ$Jk*4rsu2nEeN@>Zc)w_E3wDt6-&f$r3b^zZs
z2g47CK<}rEmOwZ7Ns3n&rUSeZxFlLH&ZE=nWE?>8hcYXmxPeL@@
zb7rQD3ovbz63cc>i5~zh3rjl7`29Qe74qRkj9*gEx34Ec)ujL0Bg6iFzgzyh`(2kW
zHp9bh7&(N8DldO^pjixqVhf=#zGOmnQ3@Tx!sjCJGP50$GLTepYn)ZS&J|rfk=XcT
z*wK%*RV(CgU0aaM;+P4>bonnz31Yz8M(1Ej3lUOhbu{YD2)T|lN2WM({*yCX{rn)C
z^r|VxIcoRSmiIPYSgvadw{?^~S;HP-#t<6N!Z~VIk0f))DJ0>@IF*xyM#;vnmB$jg
zELUi{MVCsBrqn}-JWw{^8gSGkZovFHdOttTyZyP&;pDgSK1AB}ynS?@YLef=9sMK}o8fb=8o=@InS4gob
z7gcka!}v%f1AKm3!9K{y-a{yRtKBjZ=!sZuR+L~>%~tzj
z=}2hx#OU)U$C(Kcmp>QFH0e7WA`DNG%E;$XF$z}qL_XtmCc
zP;@4YilNuz>_Wv7J40|lF39)l;I<4oWeaYJ6uScJ_0qgQ!eId}8yH`DBH$S9har-0
z%}|L($LA5cCHifJn`3y)2D7^wNx%tz7OO_a%qT_|;XIBA8dF#?K^$3b;%4h|K_W64
z#2JY%r6#Y|OU3G5QGzo1`0jxB@q$0sn!~JDobW8KBo=c-#c3q?`^434kjO_}i0Lh?
z>iWlqDCDrKf16IA+@2}Eo8dR1c}N+G
zPG^#!Mn#Nm@(#bW+V*PNBCQ)TkDl6(feU9LQyGLbYDrY>iD(yLwzlVVciiX;cvv7O
zPP4nkjuIcI1{8ZMAI24RTB0OjdVuDN;y)UPa?RVlY$K{re45l%H>qsoRtQ31Eb0~rJro#Lz9&ctgegBsHq8%d{8gOzrBm#>QV%jeqt5NN
zi0P4}LS{bA;vXT)oIb%<7m5rrWGyI?yEW_{40e{T*|O1NJXJrzS~fsVL_1hP%H|E~
z?7FxEv)BGU4-PK2r+{PAe&ZI(+E*r_Ji-X(p6#&jBj`)%BxVdlzUsbx5menex-dzx
z{8B&uI`X_=_~X4)x5DdSI^P95jq0R(a(0s1lo5kIIU}sSg}~)L%rGU+2=R=0oBMOj
zd-tCumDgs4(iE+Jic~0JAh%5OcTF*N9P~vUz`P5?LgRh%g7o^&2Ox6jPOvD3;kHCyNzoU9${MTU*p{lF~-8%cf
z2ciobtEXG6IB@`MDU=`x7x(cSdUECi@9tLA-hqr}?t0s`j!Nut$3PM450_$+Gu+6>
za=t>Rk+*Y4(@S|j;hm)^2`}@Ylc!NPj<^=!_^;E92fq8`Q2W0|!=Yzu3|F9ydA}~)3|HBGwd-Eu1_;2a|LzMktJhk`dX9k<>A=B
zHwVjx^bgvWPT4>U5H(F8uvRk_vsO*8mlfGW@EJkTVet&R74aR1B%&|kMN8z#IA8V-
zG@o9Go$o~s?xE^u)j@{mC#OgY-j$~6SQBsy1D&=h6`!&@uhEjpc)k~jyYoj5jHPYH
zP)G+kDTwKNT#lQ+=}$cBLr}@*p|`2;1ndV^!dd=pDa1f4?B%%8*{4#_kjiHG`>N0>AGpWnq-~sPT^BO@;|~b
zcg`F>#CUnoq)DzzL*(b8c{8*Y6QcQfnZ_y!!)apU@&3P~!pVnIIkm-^wz-xrduJ;~
zhro0zg=kVEBMzeXY
z_VnM!>@QQSM;+aB3aY}^E|-@~-^|X3eoKhWdyS(?%La|6vMNOB>lw?c
z%0HOY$m7J(g#L%+STt17Wk2ErAKIvGoS`BFPqru~UQVg*^&HJdEjxAt?KQfl9#HjX
z?FJ%zh-2X6oS(M%Y}_yw!ykj|bh8&x=0cGre}iz>6@n|xDUv1^kNKtokDie9$RS50
zIlmXx&aF6CRi73JKjF!j{}%Q)aZ)m%&X8PBYw_37^0Q7h@+sf0^_hyv%StI5ecIma
zmIeDQPQ>;$Sk8+U^j^}~^FlW%hNOKd!3q12u%|ua74k`N2NGV=Hgf~B75sLJJIxN5
z$C1d9x!0i1zV8W&oFEM3G>6D{p7-C+o5^N*N6({*Rky~v6)D{=
z!Iu(Bd9l2gURx#vF{|OND7LqIga>9ObC8x+UgV0BHMw4E=+>2uLOm}hDeLIPlGfWU
z?2M)#S(U$!|N6I;t=ZNsuFdS4WNwCKc;6s?f0_U#pmsY`3JsMsg=O7tzHFHCj&0Lg
z$N3t~rN6cf*Jt^`uE8lSbfLZ>M-t)VC0A4M`=x(p>|ck~aI)FOUnaZbPEpn{O$N=!
zWxSMhJX74RDiFbXlkRi}-Rf>pkqTdJ9m39iQ!g}|l1CaFt%
zo&3zH^^w+0#Zj1GfY4?2ggZD2;o2b`uf#V&GCwr3)pcd>Get`rVZ1q
zt8Z!J;2sisc>VTlcJ#uobBp%F_ha(=&1J4b>ox!7S$xlzO+x#I&k0xD%(WgizJIAyYeJ@@b4c;j6HtRv{z*z%tnA7_)<
z$@`ld{*hp_rp%jFf~eQ}0<$Pf0lmy&WBxa4!QH5?CI4WBmV&Q6|
z$^A5UwR2QGM-ZFlD`PKwb9A+Lr|)y%${B5!3x&n64-(wk>}j9MlQX_7dEI5wa_@BmR(Co`&0_H;l4y4ccKY&);KwDS=)YXzbIWDj(He@Fh*Q0pwb%FEBgVNFM
zQfHFof))RMdRmr|!V&NoY8GE56;e)BB_#-)fRB&$p??}`o{L0LZ@xJ6YMLnE;5(f97Cg5w9-JKUI?&p4{WK^(4sj
z(q*=98NU+ds|Nv=qAl#Y|9iU-M&R;g%-ZAjGf$i|9vMR#|}rm%8{opDGLY!A(7
zIZe;?IYzN==Tw9=Rc99wqy7AioSGm;;eF(atv?oPan&*oz?{tAdn*R<*LxH@D~?oE
zvOj59&_r#I81G-6>O#~(`_C9YP-X`3cQo$Y#%pZ8zH8cQtWCC*3N~qbZHdhhBOS$$
zPgRTyk@@y(?B!Z#Vj{Ze+nIcDDQ)Jj@cuFrOM+lveziM&Z`la1(E5G&
zD06Xh`Nr<2A`5l&$K+}sT&;oZgz`j5;1rJ3_033D(WT>0ixC>L`7vfUt5#KwQW^e=
zSg~?CA*~>;&cmYk9Q!|f+rR(LB^IwePu%O0-1K7|)75^Ph$u~!Y-^c^=o_Y^hH5Li
zb&RFSQuV%aRi}NLUWgoPT>jYg7?M(M!MlowH#KATc#@Z@MX3~DsekgyBG!Tg!l^Q)
zIpYjo)vWEn8}QDa|6Ql*^{oG74DiD-$O1!jo|}WUatA6vB@Iu8&-!OhVUnG;U*hIW
zFtcAf@1r*#xx_J1m5dp>j|Txi^z7>MWr)rhBR7WWJ~Qe%+`Y)@FtFLNntLr?ej>YI#Tgb9hT;wMZ+pE^dk2w*==HKd45MDrsMfAKO*~
zoeix=vOv6E{|V^a8h(mb`S9GF%QADu#ObTs=~1(`snM)bkeQR03jt?m*xQmBanX!8r40A{2F}O&gF*Ek?Xe)4
zJl>}h+;_U(p3MSfTKTj@rAH`R9i6nqM>eM1ggfq
z3O(_qq`Ii+^?R^#erzT18odq_>>mnx@VB-`{rfX0nmwzKB6GpOdPyNCP?UES2!k`0-Bh@?1vEBb_O@I#N%z%kJ7
zY9BO{PxAwA+{-{4m?`OTStfGzoXjQdj2jxMLa+c=p0={szM$XP+Vz$ghw=~kAy=#u
z^reBL;Q1jBW=X9;ZL8%KDO+h1m-dfZAdsfMu*mmMsBj+T)4HnC$^8ymVOx1{A3n?qd@d921WC)|7J@ZW
zL>;6#?mtRj?QXww-w1-YvzFzz&$J&?cJ(&Rcyy|kIJoUkK#)M8{a*l(7N_Ye$r!VR
zMj5(?s#mtDePYWu-qh&x@L9pzL`<~lJ6krH3cPoWLbbt}<*0I}>FH>8$)m{gt%C4X
zQTSEgVnJu?#)WTzM<^vWv@uIa%oD;~W$_vQ|3=~4|mH}AEUo;_Y^
z#&7M)YM-!4D~UEXC?XTw3!EShBGc43B0-~q2_|Pfb5GsQqOGYAl!}iHkgCf-#^0tw
z68jQY>N0XHC8UQxX@LpXz2691^cN@LkG|g9zQrZ`mQG6a2*7dImOCgg@sj$JG&cW|
zvuZum9*gkJ;S>Mce~ZUU`M*QkH<^6}f0Ye@ytf2RPNp|X9?K_oLUAdab(9w@q9Deg
ze^*l1CX=w2lUM!p6v-2d$+q~+T8qS|LawmNN2j9#RWq!pV*jyt7eme`@_j%KZRlJK00U0CAjx`VIO2Ynb#)N_07BqNvf
z)5UE)tCD$rVeJv-X1o|)Ne+FThy-3gSJ;QQ3eN_X
zSTamYQ#2V1%}tnEwtA5(b;SXz=`+(!%NkX!0{{uD*9%joQPC9O!CMTeqWU$!IIWlT
z1MK3sNUq+gXcUDsvP%F&RrujJ5Jf
zB_^?>492%f|Mv6s#y6K^k0et4#gz*n{8-&pYSJYLz&P{icC(^P9h|&yBEpaPsy}UQ
z`yZCj=El{vS-SdXTG&ChvxMF(f5|?f;Zp8(FAdWI$bRzhZN6!BN!mortTDX$(D%zg
z_}QaSDkS?;(!-Fo*rye+@7LJs62I6HZgwgbBy&<&1OfTtk|)BH_5cmTs1%R;7(*^VX%<0PcDk{w{Ce^w!Sxj_L_#c**b3L6xRH`29Yr{tn
zbh*ZgWk({_+xhj?w8Zmoo+)wJK_E&&p&!xOY*sHg3n5Rjuw%gzN@
zzy6-qS^@RfLm_v4vel0orJS`9wJ$(oW2plUDbrT5G&X#Prm=iH^6poSF3!+kjIe>2aAX`Wj#`-DF2InLRXEqO?1=9-Z|v;T8K~-j(#e
z-J=7<^)C6Z09HyzkgCIT^sijHBL8bvxHD@O@QM
zZ9AFEB!{L2(hJ|P|JDhrlYh$Zfj+2Imd(#^JOIZ&
zl^)|!(u3=g+v2Os@wj9gN1Xeg^UVGXmh0#YBYj7NA4vEVL@nyC^^EL?QeZ>k%OvBT
zSK=Ojcif(xvda=vmOxz)Qiv=NWj3%Zz|o-iYFtcmJN7oaFyE5vgZIF_dNXFq+*~Tb
zA++Qjt2WJ(d&5&0%kGEMa1_W>WHEwde{T3$HDj)1cjHiLG?7FXtuVN#Rf$%Yv^5n_
zkd+)*(MI<7Gz3UT)ciV$5i}E#RI7@cb#(}X2IGFRFPjy}F=*I)c67?!c<@z4@#SXF
z<(Q8vV*k004*z6QaGXwa8tq2$AypZWye3{rQWBuWqkqiXWuz#(e1Js^
zlwPA&AFv(qgJNA+(F@}?>gSKoro`$n`vDJ=5ulz7Pe
zYjJs(LXq0QtENMKa^j}szwM?=hIo_3{8+yZIu{LZM3JOK^?Rht$TF6BTUr|-EzEDzZ4F~Z@D?QG2B4ik)`7e+aqgzHe0bT61Q5Ogy@;Tu
zag8D-wEX(sV!*xqTWyJM^nX~@kK0}kBEAu{BaJ^|oRZ;lib*>F<
z-^j09_N2V^N2cT+Mn#_~m$G!qjyW|``C$;);O8z(9m|9+PUBC%dxrlHVVyv{pf7@&
zH%fE|fdZuzjhpmv?TU4=cm&0x^6)eUlLHcQ@~Im2)u^s5|s86C21ggut0j0
zpj>~K6RBPPl%QbZ~9?z&uGjf2EB{P(m?P({Iz(
z8fQU=`JPOb>l+u>H{L$~@>p~%I=efuLJpZ9o^H|5C*@~LB`m;|T%_U{okNiVxNxfp~ni~Z!
zB93(=rFO~)nj8R;RJT;WyGG-TPlT*gGg9eHxSgOG+^=}#PZy(G-U9D3dq$_a{hx_?
zP0_6@4a=J8U7`~^`TGSW%3Bx~)w)Y2y*PY8K$PsRQ5)Ch|UM!k&n}qvFrMkh?g29Cae3Ihn<6?{ljQc}j3Kild4Kcyc3H_0*P
z|2_Nu^6boHq`}FLknr8ji}?q0C-%gP?X?v7Dvz%|5$Q^hf7F;x*x~12(`e+YVUgNB
z>qVfcNJz(Fn0#YvVL(;%xP4a{jJ;4qiVCZGzd!EFyTwo*lehO4$)-%NelPt|@}v1S
zqTvdbdbQk1sApg~R5zQWftUU`PUxd58pkxU#f0yyC{8mht@_#2v>m3&ZGUr|p;8-_
zV)x8#L|Nlesez2&fxWWI)b`BPI!DB>eKR;f
zk8(JPFZOZvLAn@a0U^Y``A9s8@R
zJ}#xjmeBHX<8r@NV}sUFrZvV%nFhckB~IDc$@?mt-FkUI`OLM~^MMC7vW+-*w}*Y*
zmq6N&l#3fZdg*95fr(P8;Y`US$Xc#8XCCUVS6cqo1i~(Q42*uQ2$D5m%d;7
zKt449gl~&v3n#;e?T_#!
z5z+8<%c>AqzUu8y|DE>gE-(URo7yWb{8G>7M(Ti8nA{6j^j%bY1BZ2N!x%>KT4LVR
zNHMKfSw(YBt8NC}eorjN0wspc}wMK`B
zq?MO80{u+~tySzR2|y*4+9||UlC!CRsXaUO{g=0lBIoHOVsJ_rCLoU@zINgB0tTJtUY-~bzsA^C1JOoIxSYPE)>V8c6E`d<
ziz?#~mR)l?d`FowgdtGrG
zPq7?MNspj5R!|4;dp)P^BPgCA+zH8B&dr)G6yCwx+xNC46yY3>@c|ruD5H#G^Hi31
zb~zE-XvO-i2@!dVlb_np-hP^6)krw9`FB`YHf|V;%;V4jW|s+GS*i2JC5*#mu;JP3
zpS_t2ho@&8Xi7@m2LHqI{)aq!%&O^YLk<|Ck&a)slp?H9UIy=^M>NQCCmHo
z<=it^n!wRU3s6xjD7aAUOLu8{+=l(hsXLQrp$zG{en4g*O)fx#g4N3^iBIoG)1|Of
zJr7D`)JNn)&2B|!Q=iAL$DzH1>sF)!^M$1gF2?PI_F0T5#yNFfO
zrkeG6x~=Vt*a$7N@}c2+@LNC;6OJ1Z`%;Gz_a%eKM8mjl(g0-j;(i*X<|wm*e?^gA
zpWVZ1&BjNbocoD8P21R-OMf3qsmC5lM5p{Y)xV2yV;jNz&$qjIJIEv31?f@P%qx>o
zC|~JM+9H~8iEpGJJ&Fdg-&m9PWZ%)gbJ_N8|5Z2an6}ddI&hITs-@;fmsy``tF=0$
zFXYeOh!}b~aFuLXyyx9X!f&sJUH$%*qblb$|RvNw=t78JEVL@j@F@o}=Rzy)Bw<4#1NH{AX|uFK5-|v5SoZCNvD(`h{|(<<1rQa*s8~_5OiLwe^2Yx7a%LqgPIN<4xG)AS
z7eB!eYn?!91{zCL(SH@7Q8il)FZOVpvpC(&lr=EzZtu^ZP$YUg46hfrdJEE-KUL<+
z<}x-?VK@oyddQ&I64NZI+H3>c|A&>l;yL|3*HcT@dEcMW^~wL?#+SN|5RxRluH5L-@L(E7_(
zsndIfN{`8!CO;6TJIkVnjaN&-$agcH7VA-;`aU
z^WLwEjwZg70YdrrtD}-w-zOLt`%ZD`T&gOPBhsZ$IES{tq05I`7oK;@Mjk1#*D|ds
zLbNTEy)x|B-XhJtkm+$d4`zzJkH4u&WRoDt^zq0NGQd_r$ur#D
z8NzLBXdN>=T!OVP0atZ)T=Xm!wM>U@+@NiUI7k&|X(v!*(K)wgwLaWu59
zmwXut?J|WXuo-`H^w_JJVZ0zHA(CR8lx$L_zF?a?>q{|dxwZ3fv;Pq&{k@~*#cp4T
zb)SEp&en|Xq0c5KqC1D&He+D_)Xu7^X$GRJC)nHQbYy```^?Y0m)-_7Q;@ya{j=uf
zc~2BUce{r|67XVjlnYePB;Z9S$Er5MT}Rd|MS?duW0!4Zy`>r^Jd-_#|EaXO7^ae9
z^t(zBmr@;Ng$AwaG#6!U$E_*__q3C{d^%57A`I}RFVW#B+6j5zM!7~k+nSj%)!p>y
zjlC1uszM`Et&A2+m&JP)^*Ff3Q{lU{p0ctzo^2VhLYK>u1Xp1Oea$j4n?f~1@2o?&kCv&9@P=loy-HF^;APv5+Iets7N~}6PaCtd4)!&?vet}6yGor1c
z^DO_JQ5b8`Rr0$#L=)xbLCK!!XW}Q6nu@B5N{GR=IWHy#$?vn8Cdd`ZpHk_Qn<;P|q$6#looNCM_^Yb{H&RrUv6j%#
zA)yZr7nYr^n{_-#DYqMt&F`*}w#zW-*6q0)x{GKe#}mb{V0<3D3Db1rZd?C|E}L%;
z=8vly^lPoBC)+8do!IZ~3Jtc7Vml5k63Z
zNeYT#mE_ub1}ex*!1c=DWRKk!g0Bxn2RBwC3^s$FD?e?<8%3cU2VO&f8f`(3V)r1j
z;sCz$C!5=?Y0C$6IkcHWV|b;ndDST_3x-EPAQDC9U`q0ExK=NEEQ0Ao(qP=y>rb95
zvMc}A&S9fHwA~t3*0x!hHn=y#HL=GY(AKV%m$^-=USi$VDih<%&Pb6HzITTUU6T!O
z@#=5tKGMoF(^cqeIg|NSVkF=}AOHCbt59Aw-;BV>!~Ep3Llk^*@7gaL6c`IG<#euP
zVC*1RmFTadADS{-ey$@c|L3FQ_$8~*iR`T<-S5^5pBeK0rQp`y6=;k6l$1w>kBT_C
z1ZPH#d91lAlRLRKm~3nC+lv?H3w_6%J$~)CbLxPwh?R4_b4pzO@*FDZ_k8mIQkEC1
z6!Z;2a`&!6)*$1oO^CvaCh_z<>Ho0&PtYFjR?=9Bd6$;3@-3p3}XRAuyCmxZCn%A82W1NCT3{O3_k?tP}LbSiaca*bi^;-wowut<1fJJ}GGr
zi>1oar1dWE%(XK`1`GH;4c(&8F9IjaVG@Gl2I)o+cWhjPS1}D#cTN%(V^b1?K8=e=
zkpv*{lvLYCWB61KTi_P)q3K3QSi&%^z8JzLr;(+AtSYCHju5n>>DW)sYN
zuwECxamNg=^xYEme4*+Md}REodbsniQT72koS5b)omepJ*ifdX;NU>Fdq<+RV(r~?
z0V)#H6oC>2wJ&yUJk{!pZ`waFnnSFGO{FCPKYOF{v-2d3dUZhdKlYG16B+}y*;-)&
zbT})wasKT`n@LGc%B!7X*~C#=X(PU*kf%mTPhHb`Ogj?iqR54e7d+b={KGr9=7b+>
zL4q5miqY(@+?mOeP?D4C;(=nCvncQ$?BrAbZgpME7U&OeG{mXW?GS7s!pD2RM+iMSl`LtqUm`+on!bdYK8WOSIz8B%7-cG#P0b4{~-;JC?pYbsDNrGmY2j9G$J
zb3`LbR)sdN+#O3ls6Oy^)A8}eD>dY_Pt{0gD->+kZ9KdZylkn&sGJD5MT`3D+;D1k$4I)e7(yFU9E&h7&=FZ%ATSVlR
zxA9$L9)yZWpdBaIa;zNB+$*MMG~~A;4u$&a+fGLlYL1W=pz4ty)`v8
zVV5*UJ3bc%Bm1D!L~f+*15s;hOds0W(tz5!h-voF
zW*tM5X@Q>`{k+g4lTi9^w@1W985GpaU~_0Z@)i0^dO&ZZ(c6B@fn^TJqqBrwR<%<2YRVsweYcq(eWVbw!B4X~SY%H+
zBhDF97MI+-WEu@njr5T(=#gk9OV0d77&D{O8~9t2zF>}9Oq;;m(|A!MaJnANTQGK@
z3FcCxq4#z953Ap9cc=Y3emC>X`is%0I18u&4eP!Zl?zULs(lqAKU*%c){NrO%kJsB
zf;hmp45BwtT81_3Qq6KQ=Zsc62(0OJf{Pv}4UAc7}20-8{8^EJo@qT0B57lwft&
z_BV%=+s$>gG=L5hupuK;$x0lhG^r3nWJ4fNJ%MZer$xcx>i2U>+;2kmv$!)=4Z*LI
zn@t6hzdjiTGy!k%;^?f&*S*5rwFB|QceV*_t(>tZb@HBw*Qr-IQ!p=PuC#vL+5ZCV
zpsQgv?9%nj&(Z1zP(y2g$;B})=K;aRfQBCn_Axm$8{7G%Ql9wE(qc_aI@@orVlE~s3I65U*n=R6MuK+6KMuyZa{
z{O`%KEI_PCy^KYu}W@;GwoE2i7td7(2)1038$&@+D>s8O9G!
zBXqh@h-j`Y5}h2Wx-f9qaHf*U(Qc7n2*N;
zY;3P)dXxA(V|Y{6D5C-t`S=cuD5}^Bfyf3Jzyz!d%BWmXr}}kUQG)m^9#T;}zSJUS
zd?SvQ?jlTeudkPLCkW?sB0Ej_n~spiV3W0`Gi15f1)x9dNu3;Z9a(bbuiSZeM`<|e
z8^cn*m3+H!jNX_?+Ak(5T6>M#?Ib?K=HkT+mf2sI-MV2^NxNjbV10xnhg6cq8E8nna
z%Cxxz{!uS6jG3AMFV$IMi>m0O#i>Q}i>|nYIEC6{nOJDFNjB;{p265Rz1v3vT4Oe5
z{aCTTGwpu|OT9J7SZ5bRP!7MPEx{IE8P#=!T5NuLIoG<^_uRJ{H*T&XFPo9;$|63{
zjT;MEo*rqRjQ?(6_{R&D&3h`_`3*fQi}@tZwY_?rA@f*RY_e(0Gp>p}yTmdHuFQs0
z@JBwjkGwZGKW|PcE=<}{?6G(RY*mNqgU{yQ{U%KR7Qk}ks`;##&~d8)ckkt_F%
zYjMOm0+7lz900($9wL(Hb#W$0OdJIqD^%06%-lmi^I8}SygcUvxfdpQ->
zzX*-B_8@OwTxp6IX8$pUQO-tKBzB9&?l9K?hsW*m=}k4n>|*G(Mz3a{7qRN^J@y9Y
zW3Xbdv1pdTx@jtSuB-%kDFiL!F<3?X$8KeYEIuu#%Pj5yMNh4!f&PZd&eS}&&9wJ0
zHh|6%L=8=ChcVU>-DjX(whB#)$(QnN)h~RaB3)nnoar$xn5t-S_?H#<{n0fYw%dL8
zzxb*DZ#wGb|MwVsii+NzPA2W~9z*bH7gOM))JFyviUuZi6rUmnRe1(jm9_On;yw(L
zBVP#76qwHcO5Aa%xTBO#viL#KbWJC#gWL`0mUbh}rh@E;xanom{<0u&XNvLD1fEoJ
zNOB{EBsqPrs+8Yeo~WmeRe*R?7u%=?xr}?p`>EKV>3h`$i}*@lMkfRqgaFfit7Ran
zt2_T*wpEs(y=6s=}79tCZE&hgq1DQQ23
z#_Y8vf~%Ux%O%Ek9@VM(j%I-F$>kJmo}R}!sETpOqAN#joUpz^Vy=X);4*hkfAya`
zIMJ@I&nliz_(7#u{T|!**Rn4d>^$WESe+5Hl{8QnDH4qjp0ORbZNo(_YGu!08KE(=
zt+`@8;VRR1
zH0}Zu`f$zhc3~kh(oO(gh+$S!MaK6_?4M(vDOX5`G1C`?2B_V$m1Zy-S1gF}O>u@2
zIet(JeP;b2|M&BvjWy_C+J!F5Oo$D|L9suG!rph+BG-E4GKYpzdM)#oLAW+P6Gw*@
zrWgbZMWM(1-751G&)cz;h$qO`D%8|u7$YMiV{=_4>hNLOZ`WNUu83^;cU%%9&k)ii
z7F7Kso4m^{-5y3ubngD^GQwiW
zT!Mfm?rbT9$mc=RG-bF5ZPiNAShenEWkFp1cV;qHp$H*ja~zHoEv?de1|c`D_{F7q
ztqz8)wTWsb?Ajf%D+3kH<|y5aw4nBkH~kwOa&Xot7))w{sZ8&gUW}?aLai1`^WD+d
z^ewS%Fsy=~D|UyX60S+sOe=5H1yU}>4~fBbH(5L9AbAI@W)6~_Q>+-Mu1Hl{}^J6T>}7AJ40IcuKQjWvFh2#e^Rb8u=|_pbKt5K8|H
zAc=pJ0CEAZT5=*PZE@mDdL1iJ5Q8+vEm7XazOLS_^NT~IPIh`FhNt4~>>)v;g
zfzPd8b$Y6`*^zX!IqBJhoaoS(a^BApGGb_bD^F6zqormR`#)GatFWm4@Y^FL-5@P7
z)DY4Q(v9Q{F?82}bO{nt0}S0Vbj;8(G$`FlcSuSLh=79r4*!dDaqiCZoO8b~_x^tO
zyWX`vs}L`*zHNJjer;omfj4OjBID`ASvTQXmy#1Ll@ja1O@VL1u8yC<0hjSV$d{_*
z<(HnI*C-EC$k@^gb-at*_Y962bzwVo{T?=QU?}&=J86);mUp)qVrc-qNJ6nYCcNW`
zx)lv)nR8$u)NRO>Ak-G!^t|0%={F#nQ@fnxE3dwE0wUqxuw%?ysp>-t&=SL{!gB}0
zTukW|>!E&P*dP?p1t|PGkGad40+9Gm`?g6bOK9W-aLw!yHf2~Yd_D)g>K(2;_DPqm
zlvaIPqNx!{RApoW8JVgDCq^pHR{ornfp0WhS!sIt+A|`_ma5S4I526%@|&3jQ94mM
zQ$6)Z$IZ|T`-2A*kt4CV$uqR@O#uTPQLqKIr#e@zXa_J)cwvEDS&q;9uz7p%%2iOa
zr;alZxBM<9{I9QS<<*pI(fOOzX_M>%#ykC|2@>yHC%R4BiA@}xHxxz3fvZ_xZfKu5
z5-~#evNQw=$$ZKefU|$F56tq|n60Ftv@jG>%N1XkmI1Q?S4Y%2<)QXXsG3X2e;82D
zgiv}^`}53biB9p2%mT1LPX(3eeUhUjGKBt*$JSa@zHBm7EkD>^}KxN46>IfGPx}fosC-PXs=KH}xWLGTFspug9Uv)?K
zGcI|Lvf2{FZ%>2iB1${y3)4I2PzqdZm4EN=R*UFp8aR7@S+1^=wwPm0U`>cz?D>MLz02-&LsLAF3PFZAJaDK+!J}*R!L))~HsW)0bu=y=go6D0!xvrPhIVAuE&0ycQ)^>$?=+?-xdTQ+Pd=7OIv*Q
ztvb0K|2;DY<5veRWcie%iFLm{-Fc?RIJwG`%LPu$AZL59pAD4o}|f&Go_=|?q0Lm$16p0
zGjPyliag<=+mIeN9
z$Qa>#{Q85b*UI5DX!o0im*p+Zi!<-sPo0r0g)TsDYs$QJ&~Kni^sKfKQ5Pq@KNTDt
zI^1ij=Vr56_aDZnooKp7!Mt>{$WI;mU1$(zBr+K(CvN}F|MBC^N`nW3Hb`B2MT|;Sc=er_aiex}G_NL~
zKiJ`KFM&PVbDCww9%yMV*j>pP&X$=)qeQbq_3~`gN3S>~N#teHjWuJ6e<$U8yg#Fc
z`KKyMrO4>0ab-GDU@@FeFy#kgbk*#<6YWde^A%G6Yn?c2{pNnNAu@w9cMAgH?mu-w
zHu>isJn;ZV5177d#ZR-3X$!RY$WuDONoMum|2c)
zkrldxNDSjfM(L#X!bOfP=xweYV(WyVLZ~N`S8&FZ%0ZG(S4j}bf|dSU@hM(^pEeJ9
zaG%boURepKt`Bi>GvZb8p?&mJ;wjHY+j}v|)MDoH&9-Q%ptjrD{>mkYhlhO+E9E{5
zfX>|{P{~BHnC?;G7%!XClPlC?9n*65zTRCQqWK<#Zb@GsV%-I5O&?fF&h6+bmME-B
zYn=4nEr0IouCCoMUU!G~F{j5yrH8C?*ZAam`2C`8)V7v2Gp{Y*9!A>4I3|a$I=D>X
z-U5vu(%J9SbD>hc(DwZOp1}4OMml{IHEmB;FT8U|k7G
zY30-gYU1bcCnPTWR_V%QjUHi8`lwKQ&?Czi3Vh7==-qt_S=ibL^$m=osPp#rc#XhA9C$kj@(HBw5!>?wy23JFWuJiFRY
z5_!~Sew!E8pEeo(PmQ=KmtySwMzWf?2gnbfNF#ASySZ?#X-mWo06z<_`-%yHj`|;(
z?pZ!KG;YailqrWY>N@*-Z7NunC+~FxB-7V;lRFi28X0cVZ2B@i4sFRkIQZwQRZRE5
z82N0BKs03?Bx{)Nk>(^0>P)KqP=P@AiU4`+2bbzV5{TQrH|pzy=&XqmcvO`;A^DsN
zk^OpgKUA!HtxX$Ym#;10c`$HgfkQU=KCs<#h=Nc34+XlWSr8+)!f4l4sm`@p!u`QC
zpm$CLZr{2Gc?|tu3EojY^C+`#FY@)t9eg!gB%Q%Oe5u3}^ke9V%u7
zA7E<0uZrDATZrnhAkLqnNslM8DbCx999h}Bk3Yv>g`&kaG#rG3P}GDkTpBFnZS;mz
zVo+kn-;t#+dn81+2c6qPBR+%rT7&bWQ79X0wu08X5PP_o&_tKDihY`P3xaS@{n)cEBZU
z-IhiJmJ1&!W`LJ(*HH6C$358_6-DeME91`Ii@c1@`{KBsI*(92krS<{7>{A$Odcr~
z%aSxc;soZ+&iyYIYo2!a69rRfbh-(IZq?#+rb&~3e_xPDTOTDnm-!n(O`
zXPzI-ZvCc<$5vSv;K8RnO1mK6^FX9GEhE0}^=HJ2NaBTT0K+mBK3@YU>Iw>rVe#;{JUhEV6URFKrM{cIcrRp1hGGRRO&6G
zK1C=j$@=+A{r1U}TbrD@_^jPaH&DrS&{i&YwR0e9fw2Sql!83X6rCu
z`rpODyY)3>d6II_vZsMrS&9+OpLcg#MkbTG(gu4+l@=t@
zt=#^Jx>Qef!0JzD=;`&U1YA^Fbbd|=BPGR*=ipcD(&UpF1m5)5AmL@azFi&l-fX0>o!^mTY;F#?
z?E9IKcf?i`Da{WVl`oJf0RQbCf0^iMx2MuS&mONse3;&yxw=U4Es;igf!>%7g5oQcBeTp1bRZy3%mY=hiQ!mn3HASSl{$RvMq&*q{)
zdd+4)QX^)~G+>r2^r^EQPB$#fc@9mTX&v}VGeqYbU7KhnWLct
z2*)^L;~&(Wcq0IUSoMo?f7{e*vuya1B9q{~!84r1QuGd^$%`6S2c4gbD@quFmH8JdPIduEQ
zPjmd*3jxcvrOSilaZU|0Q{W^W-6E4#m#w8DZT}Hmd)(+IF(_3`fmCgnMC7AkE{p$S
zn3;L3EAn_vI;M4(%pQ;`cE4|^s1~Y8$8xEDpW@|ebm$Of(uw-llm|I2cyk*9w{ng>N$oTs#=rT+lKz;9
zL5dNj``W+dl`T*4?7Qq3QLczbBY+#R*2g(C%iD&!5ODjCZ?)vjLH^Si$hx|kIN?W)tNCoAwFQEx)hqoy=7A9uln8}o1qP%cUJ!g
z)&sfn^t(>Z^;cp4Ka4ww$^Sg^-_rlP7Ce^T^SBKRc?
z?+Xdcj1{J{bIEf6#3jR8Mtwt{&%9p#6DqwHsJ$MTtIQ*kg*q7%EpaHRQ;r;rWFeKW
zzJiUYVHRDJ7iHlegHmc^p%gRxava9Se+ua5@a(EHH3N_(sC3nbkhsLtmq*gHd#8&UY5WisVsV2Mxein9W6Hbo0A)X^;ZTPVqK%u18Nvr$0XZ?UELDL
zW8maRqNns8$p?$@owEAmBOir4WL!ewFbXMa0q`fQdG7y#()FABP(<_EH=N^6^X<>K
z%Xq4`j?~qTO=1}bDvv8l&8F@IB&?SZ6L3eu!Y1kV(Q(d?I}OkcT*Dlx5QcN
z4mLN&==RukxQla6_^TzXy<(8G7xP$oI%@#a=68*T6Oj5Ht
zv@m5QD{-Uw5xFPgTo#L4F4jTk|6y<}exs&M`Xya*C`V~bPhZS%YWH4mxyW|$pfKCT
ztF_{wNiciXv>Y@Citvi5(JGX6Rnpj*dFl!Hi`qDZL3oqzJk-Mg&)a&y*e}o4^avEt
zRiX6yGj4JYC8xv*M2$-hA`dM*x^GV2$QR%wmi#Pbh}Zd%k&9v|G-r2@yzl+n^4GLW
zGhlVMr2`>?g*qW5Rb`4hYd^`$z-6Mxsj$fAg+xGN3J
zZ>^{nlfgWjo0IU~+_lAI)@jl>$e^T3Rc5H2H&K>~!na^+%wa9a*K#?fR%lf5W)z=G
zO_{Lmo@z7MR;ze#ASP&6oI024kX}=tTN*|E78PB6XgN-n7vMrK<51IzS~GxWN>_IK
zB(h+ZX*FsbSFkb?wk-``$bGjGeDK20-~4TE?mT|r(k3r+K@U&uQR4BLUoiX+<9QZ`
ztBT8{F2hMGOJB;x9gDu!U
zw6qL3pFJ??8OY6s>2SL+W&UqW_V_-_7h59_V^1hLb2T&1Y0xPk#P;&0QBO~!qsOD8
zCwA+p&%qVLFB?Lm$r#meLDIc?_B+mPHNY6}4oYbOfF}#NUN}4H*HpLqvS?IDJodRt
zKJM9^Zouuiz`Tw*97#WiP2#g@{esGBLVlrE`QZm_er!r*2l>H5uEuVHv|Bt`vyZ1PJ?gvTgQC5t&sW?$`p
zk!)=Koo$w`kwD+^zt;5JnktPJ>lmzKyjt=~B6;NtIvYQ6&NoMeNL@?5=FpkD2ZFV>
z83me!45Gx_mI8YEIe*IygkK>}7X7>+h+R`@Aj9GgsN$+Bq0LRxrPM
zcX%_a4O>XnW6aI>@H0@=njguM{4+DbtVXca4=GHyu+W$(`7?z%EE@X+bR2~>i8*7(
za>3or&m@)}4*T7(0|>iiqONd-K1E4lp!sU`e1tP7*^;>JFkVUMp8sKlYrk3*&ex22
zL$5o{^ulg-H}K8X)IRDLG@c?V0l8QGd6%nP(=l^iWC4%JNxU0l19$I8zUw}Zuf&&@
zpmunSk>V4f6jGSrct>AP>BV-U#p+-)weDQj)5>g%R!25HL&01J#rX`-Sxt46_-_7`
z>FVR=A_KeQuCVv{lm)d&0L}e|6lqt*#*D)ew=d>X#Nb5uUXg|;bNG}DH9i(Ef+@bj
zf#5Ff$_}z^520m)v#2-_xQ9HN2i?(dpmg;Vk4v?0vhUSpb21&v;b6hVGHTV*dN(l^
zE8JY_qeABZn98e2iMY3Y??ntV4-nk064
zg^0S}39Sz%Xp6IqpYogS9D847Pkot-Va-!kT(8)L=rQ96wB#@hW}%1M@3IX=OAN@t
zRcXhWG-147~|jCiWiN+zm^hdO@g5ovLH8ZToPhpFb7qxE~@s!u9&MmxJ@_%x|>+jxfI&qfKWqx(=T^FI0pQ)_7c&_iQ+bhM=eX3rhILXvusHTZI;yXB_}^U!_X`Mxhr@>4><>)acy
z5r9-J|52rRo+>9}%Fk=);vR)JB5iV3w>bZhU-s6nQD&}z)hIhe%i
zw;QU7N|FyPpw>qJC*CGKHQpxA4~M4GM*&x{PmkFY8gSYIy#ed9C*UnO_+4#wxSF1F
zQ$Gi(2Z+paEFSdakjwv|q{?@6SyZ$UP8{fYgZQRPtZ2^YhvNnB>i;f&y8-R(x-1&@
zk+YP;M2z=(xUkJ-P
z@CT=|exPIHQ<$wdB>&*#h#Y-;vLrJ)tJyi)eqY`yT#cJ4y~1iPR87U%qfX#d$ev;A
z0sFYX@Km4^H)j&QKV~#C$v$T!qT=Q!)BmOHhAJ-nu&((~
zCUz4LrQ~*vsdVC%kjuj=h7iSZbJdroKR;IC*H!<17GN!vRv~payX;0nP-CjhpU~wg~QbTpZRGY2~o(Rf)Yc$?FD@
zA5AM>kc$Jk$*&ZujC}a2SDf}J(+vu&K>|${Hyc6QS*P!lTQ4pqLzzY-4}`|qUzm??
z3`MG8r;aM6DoS1-MFqqSS{yD^$Cm0&ysb(5uu#d)nv9&nLuT!h8_#Ok)KtR@cQG;z
z`y;y$VN?IM9(wJ?>P~-()n5rEbMRdbL;d=mB6#&`aLw1o#xjQGOvbw*q+XA`QwCd_
z&ct6+$OYBn6y2x^Na!9g?E8&Lr*7yD|4HlzOyi-Vo5lZ0S9)0Tn--f&5L5lkPoWZ0
zSI58pd~k>(Fw1R7oBEu22=c0z?EDTAKI!EyzwR=%Oz{=!FAClH5KM&PNP-m4(CP~m
zLMtOOX8pgu+R)}WTbi4**M6JSj6o}`UXe;}WPpm34sDhuXnz3;;3pb$9vJU9rZJ^J
zpptAvew45;L{VjHz036b;%O=xXy^g`eCvt$?(wldxSfCT@8&>!-oWNxoT2zpX+>{3
z&|)loLcQX=7GT4pz9e12)+}Q*nJm%pZ?$MO7%3{NCdr(BfAVE`T}@I*Q@v@LMwR#2
z$pZwIc*UgSG7wDhN;V_ktaRttG_2>75uNM~5uE~`6ZPj|VcTf+P+wZ;
zH&gJ=oxGVEUe+YmbMeq^>hs|Z+7^i)9!>npP7KhM?O4`w^SPqsB#zVfdQ24q}++xs+_-jw!+WEWw
z4vp;#o%g%T5g4M`=?nbY3ysonkfySQq)Gvn_rT2AzrjQ|CubzddT5iNapNRC!)nuS
zn3hXj#@9y;LXaUFr+rR{R;S00@yo|_kdwfgPAjY`C>
zL@!^v_-xYi0B?azN89R%-mJ+~Y@4Dyx$--s%z*W<-TAD_j`e(QIUtEmSa?8R=gFb)q&Brmy>rgQD0@b==|nj-
zb+)Bw?wXBRx|n&8UOBH=Lh^+~=)>tl??`Z=qx6Y#U~7~Frd$v~_AzpWo4kwwm|eo-
z)vkF*7#iWV7TfZWh+^&l+-T%4w2*yCB^(GA`}KM_59rLj?Vg{=
z8{+7q)#GhEH{bO^+>Ty9s2%4HJeD2mn$7+&;0wfpsr!4qwdZzEGv>xGX1dDwuBdu=
zO!Fmy8lCs&$1>DIkw-*_nY}ow2EeTz>oWAh6Wdlfe$rr^NfzBg3Cb+5*ODx{`}dWL
zfiiPg^Dtd`(@w7$#b7{UCnBr
z&qZKW3ce(U?%gOFc0V=C!l+Hgp3Ji^6V%tH{r;?QWt5c&w-LmZS?iY>3wTe=7|2gB_RPE)+LGE$dM))in=8q+_QQ1!OR};0
zAJT^A>4EEK!GRhp4T&|o*n#>*1MkL<#9jyvvMI<%j&x|*sqUhyX#2EBtLQB^4RkV(
z^$gO>;Tl_lr5eD}4rj={g;IOx%gD3-yVIJ`P+Q`uV_L09{Xvq&bID)Vj3Gje-+AgD
z@y@?@#Y*6~8v8d897~H_F2@<+o}2B)oLDn~*YfDDO=FZWfP*Tj1dX-EX`$~^&_+Mh
zAQ}__vAR!{Sd2iti$@N{5?S|sJ+0mEq90ZHC)ag$s&#H}Mo0*PBIqe3-~Gv8@+TT+
zt7B>OQMPl>UwW=dK09*vS3t}yGOqWp4#k?8WZczQ)u5Mf^#XzX)U9DJU+jMvUb$N;
z*`_!e;`7WH&4ofdH@24gji<5&fiFRfAT{$-T_mjKO
zT-u1$b_INTq7rF1xf||ln<=?Dndv_#hY{OEQ4f^LmoC2AC@UId0Npgx?xf~gDRGe}
z-6wG>0F2#8=e-pc9Ntlk6UE@0p3Iqk@NZP5evM=4
z!)wBzq9K8jwx*Bq0gJn0v>3F<75HUW*pkv80y{pBI4m>gQDuvYVH?8y?LmqQK&%7Rtw%TXHpQTE#mx#~c*J_>X{9^f&^h;F
zGU5JIgETL5zy73taGiH9YKa4Tn|1ikpN?jei5^5f#8fbMOy9AkQeTOu!m*RdFv+0yo;4cVQ1LbpJ7U@w
z+6AHMidO?I^#S9zqw?oe{anc?Ewxyrj;{HaG-)_`N!eI9EQCy~X3)>C4d40*lZ1qo
z){d!63dpx1It{_GbdEV^z`aynEh|G(SgEP)Uja?&8h|esMHcXJO=|ct!&ZqAP{^E~sQSRr5LB6hY4!_yT#Gv`OZ@+zB`DU50ZfIV-`U
z1oSVGtNVLYOi?lpqiPQhvV&hFPNrp4y}YXiT$fKS>Us5vEAsE(QlrwHv%s|TMtRk7
zB?%#WHH~lQ7JkSgAg|KgyhSnVQ3QWLRebE#2uZ8b?36)e0~Yw~fDNB0(svMx!J)UU
zx7YHEDR@O#`V{Ix)ml@H!iZ|EreC3{-igkLe(Gy>3=UX!?fKrlIq1DP{e+ax;z(4O
zVJb68=WbOxV?T@Q2e_#D$kc297IGF`se9P;3v*w*hmS@Td3p3)gt~dEqVnz>NqGIg
z%I6b#J||S{s9_sGpZ53(T+_M6qSJ*9BAD+BQ;q`|pv^nQK|0NZ<^CBX0g+TiAGl)U
z3?npI^N{8=C-mR*I`Pi}3ape@FIZDfnF=fDl@}V7{MJ5`>%&SG4iel9Lc3PfYyVL0
zzI254o_=y#`#mNjgWnOLEC2RvrBRYj{NlA=n^O)4H8yR?3DxIw7)Sh9{l$)tA^m&g
z3oRuawmhBD0qbYC4DOSl4ZZ`!F}gejbO{!8tFu%wHc_0fIy!ruoP3Xg*x<8M
zH^X=IQPy{>t_-I}{U#7%qTEJ=g3E&aot!%Z-qFQwY(lluE2n>WAU30M+GQl13@)Cv
zu@}jDQ`6D9cQY3dXH^J0*gu3=Y{`+ACVpwR-vWh2geKqQB=0~G@|AXGt?E=ty2{k0
z(hg)p#^0`vP}~){dUAM}F
z2o1v)Kp??=Zf_w~v(ySWkBVP<`Q@CtJzKYt#xrgU$jV;sZ>`-gIGyXAvAc>pUpGb-
z;I1b9$%8ne$h;Mo8ZlfX1}=;>@h+3QX(WXzm4yg6pt7JHKaJsVUNX?N6vI24x?Z?k
z&~KwQ{g2;T26S=K+fQUTnS|0w<`gQg8?%*oy}6)jk};y?`ppog;#)wed
z+p>g#wyk#P+en?y(wZE0Fx4bCRhvqaU5yHNc;ZE^za~XDzS5v!omzD<{~G`-6-Ss@
zU8`l&?{85{6GT01Kfp=2qQ)13BA(g|Z420%t*om;RehLqKE6EwEC&D42N3
zIBNCKiF23T0C!4UGfIu6C-itA0cS#}hA5axrTB}d4$1hLj=FK+8(vSF2a*;qhjs}S
zyXHKJ)56pA;wk#%2BWy41;hM=nrh+VSme1~$g9>v-g}8O2hQ}RTjqm6H5g&_=i2ldl7;HQ3T1ONz2NQsaZgI3_0)Hd
z+Z1yL>Gc+uC;Q(ayN3zL>9$YX7bMRfYS-wl#e-@){1(w>m?9U6h-pqUT8K0ekw7{b
z(%QDmKDhQig!*>}T^C${0+Us`{DNX)tJ8x{Fk3;dt7~V$#Re#8Ci9C2tJ6?)-ZzMV
zL%Jb_HNMhFje$67S)i6J&Gj;cM*LZfiHt-`pXlVKGV6iSG~QTd17}
z3Ag60=?*4*8RQ4yE|m`M?O)=vzg-l{d*@2$^xhl%y;IxE`3BwB&J5(AIhD8&e;DqU?J6iAN&mt&<^i
zyiL4b!q&0fQ;Pt01bpf!@+g#Nv2R+WvUUcT-WR8Fm&ITs%&c$M#>&=YIt6URZ^0?M
z+Vt4M)brIM`t)yqjy#)tCMCz${bBv=!9f@{&O%VFOO);kaARwwGCa>uT3EONwP&xF
zZ7}&JjvPvON_wECfBv1!2ywQ}XIflddGu#H_y!NTmlae$Kt`YcLbX$v_S7WFg7d*Y4PA89>`CUwyi`J6|
z6yvgWZSZYae4F}Knd$A=xox%+o*Q=sy}6sAse!#d&<~c1>lR{q9Oid5-fr1p5ioHB
zW|t)~B?06cMH~^F^mUY;Kg9`*7xd>mdb8SHh-pT?%#Z6Dq;BTHCino|&J6mZa|fq5
ze0DB}!pd~uv`G0>H3s9YJqfaJeK{Q`_$~pDf%cJsg^DSW0vguZ2oQc>|$SGg99Wer0
zum|ppPyNtNEh&qA_b!ny^DGG=?#-28_P6!1h`%DQeVwE3*Pt3fHGTONE&nqc)5b**
zR>EiMD#OPNOV0wThh@QS)xb7otX_vR#WnhbVhjyxYM{Ha(FyCh=lQgMOaPai=Z|j;
zE$$99iAPUW;sQt(gwF^<>-(8aiJThI7=H#w`ww~F8#v6QDW}#k(Wkrl+oFd)o=1f
z5jnA-H`OCPWvzOig(&ZyzS{-h+?`{
ziKK2e((_lHYJ02GyAbD|_4arHO9c>27vIzrbG+_(ti~e9>%&J1k`Qa>X$Cj56-DoW
z;;!!eQya#v4mE*qbLFYKzbMQQ@}?E-
zj~!t=NHGl1?5}jIcXRBs+_-(()&=L)2WsSVk0k&ALZEi@j`woX{nR#i#r4wU;p*?g
z2kzwA9n}}mG7!qFwORf1Bh+#va(nh#4ePstVSSO;Yvzhxw__|a@N~lu)A^l+~{p2
zvr4LQ$*VOx@3m8~jUpXUNsPMUYr{vIp+{IjLr8N~@cgd^`z7#q-aDGt;r3U}JND5;
zs>IX+B3wGNz0~1qXbVLW#U3bJnSYw<
z(CnCF@&camg5I*N&MG%_;`_wFP5XmAAC_+ToW`W0XoRS+
z9x?)?zy8=1e$tDFRra#nnB>-EHVnv|Df|sYGqB4%(dTi|i@GPkeh^aE_mceA
zi*!x-O4au8r}qv5E5uc^$OJFn>4_4%_d(Pg3!`i6>3CNn{YEMxOR(DCyj63b-|bsP
zszvqHG&omjmQx4D@x-Ax1^;OR>2of4IMRKBN#8z~rVGoq)}6>fWd}agPd#{(=h?wm
zcMCcfC}q-s!E!)e_zPU%-yD__!84Nu>eq(4{(sj|dlaUC2x8T;XWM4esdyfC=j85{18r|}q~^zl3p%7Wt80p@Ev?nq
zU1kIsI;IzpOHZ@mEPQBHIk}4Ay^zg80NiDg2NB};0#;yNFV05Kax5i$LN%56h(hjp
znkOy#GI}Ap?;_*pdCn`vDT^BPkDj$A!Thkc0f;Ysvbm`xZJoBpX?c&q662>2s6m_u
z5wy3DBd!FUfgJI>*13cu;32$<=EsW*J@uGrWqRrPNk)|#y*D_SQTqkWkgx)`twWl1
zoS%yR{H=uHtHDl
zl8yl;;nw-8poEEHKQt?VpVt-7WW!{K8Oha)M_qW#xloQtB781>rO$knkPF%(FC7|u
zUc7Be$BGY>jKUNxnj@@>M^|GYrt&E
z3+aTq5Wjl=@vj+WCNu>?W{_mS%HI*NS8tiK@3@#j><5N_XlrMN=~k1UKjlZMO0q2{
zG|%z=$;6o166rmbs}U(&UMZO*hlqvVZIril*ee3&Fy)w?h1vhTp_l$c_O2^Z(VVO7
zY6&+!VaFme!;lum?KiBM^C8C7wmOn_&~SnjM;ohVC7c22MX`4ZP4FVsooi%8t7%n?
zjZ_4k?o3VKo1gdtrx$Nee-M1(J_vw-J9NXFdi=;Y)T7?wYev))q!KHfxGn048X1>@
zYpJs}w)BW*-9h+rI1YT~`DRoWX8HKxDClP)3JYyAbe??kA{)J;v{T}}jwjkd3RTUI
z9sRAp*w`s)ENx?V$Mdmha8aN8YOE4Ah2snI&@bXPnx9*obgY6`nx5oon9y#FVOLCD
zO7}9Ez1CG!X7CBVgU)+4ZF)8gx4H)k*7@)^(0qulbFt0p8OLK_^qqyM4WG}BAZfle
z;AqB6hjR>ksw~Mk46!d@PP@+-TR7xNAYW!z<;IRO&U{73(r_P2dLhGTP~Z|?QC!jM
z`Zk8xY-0{(rpHK6CIT8L}>}abmmem^386AG39TB=)YpPT>c6}XwYGhd!UaKyi(bC;1hMyiTr!U
zqYvI-Y9_w+?Lcj+maHEGYWbguv_GYt0hKx2`ynaobL~7vOkn^+zC?9IX{5kQklgkPyG_r*y1kVzz4p^Y+Q#_qHM?R^Wqfe^{6@4;v6Lf<@_t=MYbwXhL@m~*
zc)UbQ?bzrAv+*}(Jl^Rz@!J=P@127ImtSg}z{&A7t~mO&iT9b`zAgF-QWJ&X5|5WZ
zdo@Fs;)!w~-LZwGG-qB@ox+t6Vn~#m3{I9av6hAndyY;d67Wr%2ugh{a$BSBfe=e;7^*m5BLuLuZ#U8)rK!$v)tW3%{Z&P7Sxz6%`RdJ}hHl
zctl-RjAEuKJG)Yf08dPGjtN#x!|j&Vw=0l`kG=!RuYejgMPTMfJ-wea|7U
z1Zg@)3vm9M4>JSqh!`f2J;VMvMM%k_>*6Q&i66^HCA+1Y?~40AzKlCfA+~Hsc-q8g
zkOfB)tAfF4k~d6kmEqn5j;Z!-Ctcl$pW#vpODlVhfFilF)5JF5<~M!5(}w7G>UcVp
z(z4NoaT+=I)G_2A&TJkOSM_2*s9;)y*Dv{L4=K+REb$*xG;_)m-dm$=Dt{{-omn#D
zQ-9DAp>v6uL9!V0u8n_BLv7nVmrmVD;n2O9JR7AK8f7hw{2~ZmHQ^@F$`>W;PO2aS
z#8>;P)PBx`yn{Hh(##5>7+YAuD6y(pyh)!717TS62P#y4hUOnZl=f+2;bbmO&*3w#
zuwB;nXHIE!u8e{jS}~Wi;B*{(MupN>;XW_d3v>Lsw(gQs+*LgNyVNxj)J$)xRlF85
zNvQ@g8)K+dRA^E(uz(?(#RYw_uJ%E^*R5!35!hLw&H^nq8?ssO?|BH8b#`%7o7rb%
zBn=`TY?{f!rjU{AdD}g_nX;hl%$7SAWw147nMZp}MV>;v2uO<#gejHZ7ZUH^UThb&
z{fffUge54aq)gZh*C1X-@MX15rMC2w=U{ktl&9d6}5
z9hlIrapZ)?gwHB}3*v4?)sV#?%7Zc$f^P7?Lt$O#fmY73+XcIw&SAa&UA@~rM~yM2
z3dJXeHL`PB5seWV8dhzJ#}{Yoo1fZ6S19}wz__YX
zy=&>C_;tItc`9M#_$k8EZA#bkN5$#%Agzl#OMNUkb@<5FK`{<-XHshoI@glS+5@Ap
z_|GZM-6ldCuLN`@mb7s`EE^2&QY_OH4V
z&EXdVtN~}dG$@Q1CyxQlzy828&+!#q5c?yr{d#Lz{GdgpKy~q^IZPLMW$R0i2d)%H
z8ky0)VEb^O@VvC3u4^!?YvWUZ=aA)xNF7St_5y9PsoGPOj0l{Z0sDxxjvK27lJ1bX
zeW2?dKrB~lLPuVLTKQ3nJ_P7CK@j)wXL+<8j)*94S>zR}QWF554W+oBSFAd$i?2g?
z?b@4ZI>LYPRis4YGXsycM&Lty&ac)+ix&^j)9AhINGMWd`HBxgTMtmPu`2#wter(v
zTwU0uA%x)W8l)gt5uD&!xVs0Z3MkwO9tiI44uyN+3GPmz1;Ggr2o50$U(=JG^rU;O
ze|iUZaMxMq+_T@kpNBRy87M62;o^(>{45g6MNl|-00+Dd20glOwRCru#CCy$@O
zLtntH(Z+?lpnoe=uY`1f&+8j;UzlBII6VHOAm`<15ofl*1T}Ll$3!yH4-)7<8;`WT
zKV;WMPv)*-=;C>xX{S{wk?k0*(osEkf6wNa;N<;N>ou1+wxreW&EoC#A^sXs&&;=A
zRmcu=v@EM(Rc5`>d{zl_MoLu*9yJ&p~Dt`;PTZe3_Nx
z>o01$%;RgQbQX2pFw@78&{(NRY%uv7H8Kk%&Cm+L$e&Hne3u#yGvl%hY5((kswZlz
z%Y)#nm|51S_KxH+E+>0T=#ps<=yLIIEeCmTXqgy{&vcsOC==Q0e^wwn&o>`N{S
zc3&r8HAut~_Et2TNp==eC$bat>&|HWxK)+=-fA}JPjkV;kFKG0RIA?Wt!W(Pj){!=
z=Tbo+uvurM7-Ee8c7Odm!6DJwP=xn6sm=57uw%V<^Tt!7!=1mpg)gIUo258x3(R3_
zNjMpXh@?{z{h~0}DkjCNeO={h=i`HB@AV&wy32D`*@$;tfp_LuK~W|Zc}Yz~Q)X%b
zq?+Hu+Eb@b(AM)Lv#_3;r(YiZD(qevdYpT7x?H~doa+}j5M{(s*TUJVOq-g4s75GT
z>qQoyuA0VQUoQ%nrZ0(3#_A3oOIrNOLoF6zXR-in?z@A;Prmy>IwwdVg&`ckVV#*>9!ddmw3K9_0fLTfE64{>H3hd`}U
zX5kw~4AwkKuai;7WS=dzp~9FYseAgw739UcMpo&^ZSnpoawcAYhb+@`i^9zhY`ob|
zk;4uwc_M|A2mHjcEpyqWGtm4%>+0Q%;C)g~%6LLQ9l84pES&Fw$x{daw%^L4S!!#P%3Z;bH8<#7LHpZ5D+oFM~g8n3Cu%T2xA
zwx;@cwm|S}?^~~SGCwmYr=sC{dl&n0_&R8O_q4Pk@dcOY#=`MgNr_!38hzz9%aBj%
z53H^5ysg=Qk*JqJs=S4aQ-%6dH!)N!aisUW!>nDr8aUKaBl3!m@{3jcJoZY4B_0N-
zwoxc*f5Jt5Zn0BhEH2;cfny+`*i8{_muV+n!*vS=l-RIsI1i-6~jE!{vTO
zCCrVm8JBKyS)%`iK<<(GC;uR3O+g;wmF~`*5~-Su8(Q&d8lWo+lI=ybUXPp~J}>#w
z2II(&l9`kjDKXDi@=eRl;n1OjaO4-7b#*{#K8e@J9>Z75=3%WKzww4zg=XhY7jJ`U
zC6Sx$G!{`gch0-`!1mRoPKtQLj|h>)
z1@c8(y;wqJO09K~Qw-#r?{KKblujH^Y-%ncqdK!T8Fh^7d)~9caIUE1jX(dPG;|kO
zj{F2x<<|rcrun*5H~S|HY4`c|1$)#|eIBGW;Cw42CzZ5G$sth1gl%NvQ=`r9aJ+u8
z-uo*sf61A~xXW#o@FY>#Hf=CDL03gE5`-QH)5vMdmM#{}&N1JOj=nJamQJJt(pL$Mb9AB2
z{r-{-&-|OU069bRUo;qo;~E@d-JTf;hC;bN>KyAOkcKp)nt<`z5l2LA0Kugf&X%h%kuA_Jr@$_m
zms)z_+pY>qahjQf1lh;TAarG9fu@WmH+`CuPm!^%3p;PqzyWO5Wy3KVq_^bY{*dUm
zh^|Y9qsbwD+F&D!A%ZjBzq9G_o`>$4)2|U{V*)ot#a1aq&)S|hdHQ}vnMjd>S{Zw0
z-e4cxnJLtsi(ypZ&M?2j_ZYJN3cQT(IGVnU0{eDmlJL6?E^J{JJms?3#}dS&cQ%P+B)QOrO`kS_6fd>ETihY}32R@u(Hx1<}-sNld1uXX3WyJ6aVt=>QrsEKbtzzeF>M`hG%cBG|$Cn)Lg^%oh4_UBzscmc<l^Ls49DT@`}3)<%`_mpyqi3^xwr&euh(VqGlI499RSTDdvC&_<@N?Kq$vY;YpGqL
z?vzgtFYjX9bIu>FVoolU&Bazcz#Sctrsapfv{YhsUQ~ekV!{@vyLpVsGAweln|_wU
zaNR@OUlRm=b;&HHOC4NwSgU~Ip5i(&3JUm_^O+$`f(l}fp=>-P3VrR8vn>cxdR1)VXCWJO$%lbw@q+a_{GAeE;2jssm9
z%Z{MBqf!?(xfq^4KKk0!fz9KvePg8aVpUiy9aCV$1xD%~>fK{D!~d2*nt_i)pdy=1
z-!YW2V{p@>7Yp5haZyQ~WP-c5r?A|&YZ<`m&ZNa}Z(;Wwo4QfZp3BAH4dG
zSH`fwSOT>|t;Z)Yaun^WWg%YF)TCEtHFngcDI7bPK9p5JT!9RDU6!V3O!Qj0;9V5V
zYm5J(WZY|5cNad*8UsaAKMbUU-0|kKL#4Z=KVht#XcB>^fJRMR-)^bWHZ;J^eg=!D
zgBR;nFe2nAou*^*>q2T`Wd@iD_52Pt^I5P!JdI=j)b
zhX@52kT|$qAyvC3X`#L)v>A;Gw{g~wW}`*t(D;g%V!V?KVL3mDU#OuLdVFHD-&C=QqH96|UxQ(WaMQ9V)X)mf
z3`BWAf$BYe$%LT>8uOgF@}Eg@GWW5Mm`&ENV%Oxm(O+PY_vhRDuXVo{<2y
zu?&$^SK9*(t6nva3X&|2brV`pp}>^o4l?cCc#IR3V1Td)9e$JB!RB=G^yh=RMy8^g
zVwSM({h(h-|WW;ZKhtljm~eEZjEtSAt7kc_<}Uqoz}w9HVW&Hk56
zqFq0yVVi#+kFQ1OJgRxOJ{9-6beCoF|B04b-ugOQEG4~N{GspHd0v~9bp
zN)eT{IJ&ViA<&d-vNEtwux2@=zj4@Ax(mi`=rVB59EaD>&zNa5g%z@*9B%oX6v0uJ^^_nw3#+
ztzN67+@H>Cl+9wBu#>=6$cDe1sGx74p!Qx))jrQ7HfV8nXQ-DQV+hy8Kv&k*F$$tk
zav3U3E3Lh3%tvOT4pf)-I4U*LrAaR48~B)_R1mM{tt(RzDbE-kb)d=-S{@`3?#uoQ
z2*@1VJN)RQQ%k}i2{^6$Bt;ZTZ5FPFea00DF-v((vo&*=TQU6QVUZ)cN?luRC#0my
z>{Kn=NikJ|A#6ib+s0G(fW5k;rh>@sY`Z0ge+nI>AS>*_PIT%a@|K}2D#!3{ldK6dosH3Qee)nPdzp)@kNN*nyqpymqwwAIQO2g+eZi^S#)?sjLgoYz?Vfd
zVPl-h-mQ*bKKJ)DBY&IQD2N8LzScHezEWA=+UkhmW+YBlGuR`uGY2wiFad*Qou?h>
z(#G}AoeQyzA}w4pm0)ae)`JGGC{NA%n%o-p($Cs9dT7d|s$5A_1_VEgoT0H6mOT+c
ziB6Kxj?LjkfhRr14|c>nZ<^a$#a)`zy7w^a86LA>NkKjRM>MGL?Tb{XFb#AkdfT*n
z4F51hr0g-6&|vko6%a_6gi2%wv1V6fk72B-?O&f;n24UB%FIno%~R9Sm9|%|a`p~b
z8#32tr>-W~27M%Ms`O6&VP)_=unTGNeAt^%+?Ben!+>8v%96998B@uktKVOS+l;X0
z7>=NKp;0pwTJ-oT1RY)VC4m?vqb!UXtH$|%00H7X9UD3xV(V`kS~{YXBtRBIrC*?0
zD~Bt&{%;hWUG!&H7PXI&6p3nHdR~ocMMKe*SZZl}V<4?im2OP>Me~6cm(||pDSo5&
z!@|;))ij=ePzv-x5Ou5{ZxqnEMfeLE14MUdv62FLkJITw0_jc^GT`Li^qQW{lIBE3
zBPmVcO;Q8DhB&xyGH|T(6kz=Q_N@HZZOc`X!gu*sLaRR7j_;W6ulpi@=dBw!OUwy{
zi%XrtJ{8+~ES64;N^EvH0h^=W@}Jlj=7)>FVo=hjO@_lq<}L$82%`e=W1$4u%NQmFVtRxAlKPQtXI(t|JGWdw#QOs%Jj+h
zH*B$ptJ#P)YNBe`8F;Rkx_K8-^3dS@-Pw+hvNuQ{Xu!Px-S4RXqNm|zepwH52`fAI
zE2%jG#&TQz5dHW3eEY81c*NhqUnExU{o`bHO_Qz36y*}Mv*z={9WQAGrkfFc1-;oZ
zO$^rs8Ii@SDifl;O))eWOiN!0sKA+^zra|fFy#8T?nm(0h(mYaQGDPSSPwcg)75eD
zwn^B6=*GNcAx)Ds`P^CZ4mpF4|GvE=U0_}`R=iE>6BDtri~%JF;rS?H)~sbytw%W0
zhh?)YRcZHanHY*%9kil!a-*F3GoV|KkW?$RFe%*5g^`9-j}u#z-zBlp_0SvrsY__y-H`4PRYRBN>!Vz7bbiok`#Yv?5-S7{|08pk0nm$F1Kh
zA+LgIX9sF~1PZL|NyBsB+1FW)@i^F&UaT!BSzRiHa-}0^WA|&ee-r%8zRq(X?TN7W
zS>bm%IOX;0J-0w0sbVP)3xN~NQ%N*|@1vr1TqZ+so3Zwy3RRv26jL=fsMG&L0Y40R
z2HS1|BK(ZO*X&nsiJ*D;iB7GZXv{LiU&1Z`(X9oK%mbI?W
zJ@7E$IAHIzNn}aN3&|%G<)7_J5e`58o^tbB65;!WD#O`}_3Iv2vUit%k5rO=p8bas
zemuOOYkegWeU#V&f7@OjTRi#uB>;3e0dQhwqhzLG47&fG@bgs1!oKVUT9VcEZ7)
zx~;F>Apd%Fx_yyN`TN>;vVPFHcmkO{dQ(@5v9Y?4@cTE8u1ysc8@yvh`9hAdwLgQ8
zGD)$x^s&P#$Q2Amkvl9>xfTi^60$>5XJmZC;#fd9@PZY*M>4hvaE}%D$9SH0OgK7?;!AOx+DB
zwba4_EqZEjz4xd5WJ!G%+c)@k{m%Vo*LYEzoydtD%@8N&Yi4=0AE|*p|DjNIWJ*ZG
zVCJH~vwp+RVrtXv=hnZELIMYN>plG?SC4g>`y&QZul=(xa|oJas=`Y}1e!fi
ztpUW|4;@m96XHFc*I9h$hVVb2A*87Q@i6|0CDDOWZoIauCEzo*jN=bWOsu8N2Y6sU
zu1JK#mcrSTFI(&)a{>`R8A`1lSIT^Xrp#!hoMA2AOJ0Bt(tTVl_70*y0{`x9`Oq;v
zYXz5IUjz4#Q31&GZmEE^g8UnD`XE(mCH0k@g5;Y1uMk9?|4_C+XO7UWr_h#vtC{RZ
z)R*v!cgoaMWeuHMfzh~a&OGOh+FI(HS;0L}W1H}+_k=$H;8YQ^R=d*Uc0$mBb_JUX3SFGuR?p3w|Dc^1aB(q+n1!xJGcKUA3C;Ku$y
zODFOeQg!c#X7P}P6GMnbX>H*f<%n;lt
z0Z~0)o`DKT5xn^3=&Q-ky8ih`uO0##?u()Qr=?c7{jbDSQLmAaw4{*3>T4o@c9?B=
zcz|OHF4yd*Nvqfc{#;H&Bw1t=4``ypKOd-(vUSm3{Y?Z@2*<`APy@U@y8K9bO
z>B;X1U-Q;1eKUasuGu8wWErgpgPOg>X*LaMwBo4Nl6&!gbgQI#oxQFWzAUV&MC%11
zn^K4RBK2`X0DGF3)hI@0R{1W#>a3)AVzk7hl>~P|mRdSKd;ja{`tMrrETY5u2iTm*C4TEY~a3aHV~E7%6au>6LaVnG$8j
zPD=TvsV+Y^!*^-+h_H7R2jU=hf4rn}m0JZnX=mk_TA=xT
zW}XA)asZQhfG0=KJq_Z${Do3p1)WFzhBh?B?)|dEOKy)D}_eAs0HtwrLN?3l{f_JvH7^b5qYnqw7UqUPrT=
zCMkkSl=8LT+#canV)@jJ(qIV&66L)vQ!@wkcZq?+3-#V8&Y2
zvCoO(LBY#c_C)KP`3xxlgFGYY{_o*49cNCPVGgEeU1;Q%vOK{@6`0zL*4_-T3NT-Q
zF;m~n4@q7p?{{dp(cy70g4Y}z^@CMOGCp^(F|Wd3ah|M4Blg1HlEAYEqK!sw7xRjY
zx^b>_Q}mV`O28=M;1sqa=&hsB3eQw@;uyzhE<`A_1dQ5fLGsZwhcO5_LnScevj%Zu
zGS!VI9BonmO7W2rWCWPr5m;zlhzLu$=?$s(%-Gqf+Z$5#w#>zp&1NrhA^eGT)oHz3
zCbR}KsX>f~$;LK|*qIL!8=y-d^bR1kx4r^89jcS%VCS4z@4Jq%o|DgqlTh~{tT<3lhuznQ2OBU)!J{yimEEh+j|m!
z0kKy>4%4P9GgvJY8Z5nbDF+ET0%K%qC>cXx|6a-;PSc8?vgeg4BT@AY^j)Or
z@g1Fp-C=WjOE(0+19z^pY!f%q$nehx>dqyXitGLOmzj(+U3Y);8YNNWiaH1pc4DK@
zHXVI@0mXR<_f_ud`a9(a#n{*`?+^-d7bwltmD%i>vqpv%3!?t%`;rBxs7K^$oa()f
zoMz2_Rf;xHu7AU0
zASkCZ`-cxYr|s);%?p~&6G-WwV~k!MdbO!^;gf2gOjL~BM~N>e+Ljpqb!9)zm6?B}
z%Vi}mEKw&V&%0k|8eDxX!=(|n5n-fEC4)~I8=jO!)PCiur=z!`J7=oUQC*qdvd?x(
zq;GzZSYP%jQr_XSG7e*VsEcCTOP!gav(Ey=p4=zV3t>#K_@(^w;!rCY
z*bkvR{HZn8`Qp-MIN0Qnp^|jrjcn{>%91jj
z2Iwyz7D)0vg|fD(vN~t2h(9Npcv??D&f!y1Rh#FVz>IEqSXulSphiK>Z8-iiLUy!)
zZIO4vVSjN-)vwOgXN}t!ulBT1x{lIMt4yW(fPSAf_4*SMd#^y`z{7KOS?@OopwcYy
zP2?W9Dw8ZWpgZT}V6nNoYO~&JvhK_6==a_85FUWAa5q((sm1!HTDhAcAj;}6FN!hj
zFISK#V*7XJ$Jqyk3;Av^t}SN^(4J4RGB%{ufG0tq*u>v!L9T~?tvlayEExu_UQ<~{
zkWg7>WGbsJ>Xp|reGZ{Y@DsI_l`6ic`Qm{T|FEBXYL_XD9htrQChA>1xP7_iQ(H=r
z(0SKVwvTFG!}H3Ma!2GxVpCtyedlJzj4+gB0eS&%aZEZ&XYyxlIQ#XU@K!2&YS2Pl
z>6o_mAy0}7Ytf$e-kud*5b1*Hlf
z;OrDOqGd4#AUU4CNp12c*c{Ks_3V28`A^>;g1wuOxdWuS>otPn@?q=^6r}GxvE--}
z_=|&9GQ+VPrQH(xq1OA2$J&MgJhgG{o^MHa}tWO
z#N2yN{yCQ^tu(%Ius0dVSlUfC48+bLE=b?r`){MpH&R(d)1w86_enFsK=xJai8s&e
z4)*-wNwD7!Y-E9d7fif>I@(iT#KTOPcT?}B
zOGgg{QL#yzj1qQDm3Fj3FoTCatg_`DF1txS27XS-H*MYII+U=ZI79
zXm&izUQ-@UAkFUlt|RkEd3p+aRF9{OQS?YJm+95CXhNa}~ba9KsbQ+T>)kztq=CHkv1wrrfcv|CSgxjcMIc?tEbktKPp%
z;=jH<6;G>?kQ=VEc1y+7pL+#F)0~TDlDs!}dawPqBQ2yM%=S$W+%Cho-gW>UB^Sg^fvmq15RMP}Bq)
zolW%SpY(HV*}ol<=j))_uhqF9#wX?DUhW64|3l#mxW0V1T-bxJX3un
zpu;BE@P2#H=O1Y-v%C6ASy<{LI0mqMb^1*gt)cI%{_g*|RBG{mQdWHdm-ghD{3RIs
zGxulxp*vTn^GuJdo_}fkoka5B3l@&!l%ZPdj7phSzF(fVr`M`&a+^=@71#S`lt2=X
zV?N+l*QioFMCqUUPm(*bgd(%0vmhwM)xFp)_f}$GXK2Zyugz
z$(yeKL+R?#pK>;Ih2Nlep9U(H$4-*I5mJwf(NQ50@FKukU@^i@2}Zbg{9>iS8)UDC
z%Nl0}TGwLPY0Iv(Ytziz4tuMGe9rYwB3~vQ|Knw-t7T<+&S4?Zo%#ezvE4(b#y=qJ4;
zsw}P9rU5WYahX+nvub_kufV8^7&2l;UE)-4&Q?dvC?6JG)EEFZZrGbDPd(ck>pV`9
z|4^_}yHPu?1)9eIo#6C$SN^mqw1Ow5`Z(N8#_SNA_cSe$%VftirgRtgf##_bsjgy_xw{wwHPzx#
zsI!}~omVOHTkW9jo^2KPampsMV&kV%yhW<=6=zQYWw|=LP36h)oEnu_->r`Yk@tNo
z(`L>O)bCn2LfS#*cIOq<{H7e}DJ3CS(PWvm^*K}R1|xYR26;Ck(G?N=gr6j(^;jfK
z&p;}6W4hP@UG7&ecVJ!^TdfI+zDr3-UyjGh8O!wBk6qiPe8}vbG`O-gaUA8+Ml9hM
zfx5b~QQTLzLDP~;;_lzq{^U#>5UyXiVZhUsn6qQG#VH3><|E@3zH4c*jGG5Wm6Sxh
zaj-i_0@)MA`^h2lE{MFv?r^x6adILi?W$(y^Pb8l3(08R?m<4@F@7a)Mc-xRw5X*H
zXrRx(cH;{nD{N1+*kNRIc
zWi;d#mDOX)3`my=Q(G0-_oGyT97%uUrIXEWa*y;m3x%vWIDJlC(QhZ3al#v*XH0Dx
zDSqTFJoY0O)I+!7xIVeu!+RbP3BGd?R^7}#^dySeJUR1<6kwL46Lro`Y
zC^nmu`wvAZHfW-mq_*GS=iA%%R=W{H=p#SXmZ@+1z2CV1eiU8NI;lVx+3Y^7vKpcJ
zWe#vo9EDyg*SO7p^RCJ4#B=&>uZU9?9P@sy@q7z4p*&2?W}X^z!!Xv6Ezl}?{9ABM
z@ehIgF(>>DxM??+5|j7U$J>u4&F8wA4wjBgqDXf;?ZSqtJ=bw|p|^(m%YXTPgWBOC
z7Q>L{-~XY+7ZfDDXpEIQWdgUC)K4|wQ;)n5e-~&Y3m*vdF)}sPt4y0@0AT-obsP-u
z&hqXRI|iC;eD8p1qk#OHZ)XJR3*LAvAgo-
z)!Va8#P%ypBX8<0pi(KK7-m%%*oDPN8kLZaNuLJ+gNLAzolOWE3Ei%aXJOw9EO(+-d!f-oq(4@z
zV>6Yrs(-CzX;p46wZ6j(w74b=gW9EkOvqxF^(rLDTdbmc6UpT>{h3P=S3sYkCR`4C
za`*X-J;LPnT^kaZyR917xmHx^0mic9dPAzON@UKks>J~L@M9I)&|m)Zyiqx4*s^t#
zz}FR5NR_wyria+1SM$ne+CdjJt-Q!p3uGJ<_b$Eia|~ALa!N%;g=`%w-IuLxkHdZV
zrpH&YbHhM2oewkyJLG$ah{C&;?k@Sl`3VENMCEvsY8x+=cOVCw!@NIJaoaYB5NKnL
zPF_K;+;G-Vd`rUQBnFZB687R~j2pWF?o&Z6MKjNzvWh>#@8W0n`I()MAL!*6o8jcD
z^lk4vZFuGd1lD@%B|eaT__rX>URf=0DIDbpz5|^pYkSzF!2hLf)#6Q3-G6RAhIX(P
z-cOkjLI;S3eC;GFRpSh5>Usekxy>CF;I+`M+DvDzl8)|8*WDg?Cy@-zP+f$0om#Ud
z8ma((c)X??FP)q=?yD^HUO3*HH)&Mdh|%ShF~d&SUU5Kdu78v&v&G#lBK-_Ru{FTT
z#J)$GaESV~){EE72mnGuV@{OR^zrOq7N2Jc!y1$7MTv7+_qPwyS
zK91qEoWMFcgR#||a7ZrJ7*vlobho|V3ui^oC&uUum+Cp@z5bhK5g0PV`;X6bj&Jx<
zsU%
z%duL07ZevZ3pFVyh(0}^Nf|Lb=Wvv07uTKV-ky??aC$k`Jv$w%|3itfVf*2ceyvO<
zqH~wn(42sp6Pj5#9(dNYwRWTNJ;cR7?AN=(({tA78T$&Fwsj1ni?~rWkLg#KagKJi
zTC^8`I+ps)Dp%hvZL48FC?xHM*XzW2GI2qQx!cX^di8@qz%HTfbuo-`_CKzB9iBu&
zDh*uE^KsleWsJ$Aj#;FdOkljsr7w!Y2G_&p`cOTSH
zQkhgEy`n7q>|lzYiT%I&hkux-^|5!%;NhQ-YwfU%Ur6>;Rc;AB{%rVJnDv;U@E;0k
zii`gX?RoDEodu15e&M@0kG_3~O}|H64s@sYC8zEcdy7Ym%2bZR5&q(|y1N`=&kgOe
zRIZsv>r1ohKBVa?>+FiGvktE&X7%CY2(k3`88u$RwCJY1&lThdxxasW)cVd4EOXws
zb=A`rurIPi2@aT}3jOAN#l~pyN
zs#(C__Cc`maE3?I~M-W)$VVql6zO?DNcXT?FZBaB(>1YOeHa>2sqEBOypT<*+K9a_xQKw~%=GMB~sH9m$YffxHE8d)s
zu0TE3@=>Slg`oyRWf4?qV=M|z?Aj?42AZ9`CxWIyiPQqApS*tD3Dk-zY64O!`VzRT
zyEE}9`0BD4P%Q)nN|W7_on+mDx8ojwElx^*`7wMOlQBwnZ9gK?^I0
zJntL7zE(kJ_w#jz@r(M2@cK*+Gy5M?dds#>1hGUg~KWgkejikDc6B*Tcmx6DbV8S`=G2h3khz@1gSmgf00q1∨7}d8z2Tqy5p@Dse!$w<`fUp
zE5O8Nc+3tL^ym!Fsz#KG29
zceF5MH&yYKTKbn9IJajFiR!ePL?h+I_Z0QTvCmREcb!IROn!Q+i<1_z(SHT%v4agL
zQ!MOAOuXu+)Rou){*KhMKa(cubWlUA*2<0RSm15yrcpnhY1JFGZI$&VN5)Ye6Tyo-
zmfJMGTJ-haUC!{Yavk+;s(#mz`bvX_+EP`5LyEiP4ih!0*oXs^yNnvQGSGuBb>OA2D{X(Wdv2Z=^VGUUvSFx(3pezFH7_671#i21C5S6m*uQmv&A*c
z#;6J7%iicHUJL2vsV4r{?v%A=Eq}c4FDzrlXg!tW=7KS)93RxyTrl;9V%S
zUhC8Iah+5Syz(pssdcHtV=CKhkGIX#E@ceLxV3xpi16(v@+Z}TNv1SuaN>zMHx|Z7
z@uU-~ftO`NnhvO52~TfbJQKT~kFtAWCo^u?vL;-ob%-5Rt}VIcw-&l(8cPH|!E#lL
z6b$Jj;#{$LY|AukU_quH{jF`ubFORGQcb
z$d6mAjiJSg0KKW44by@Rvt?jAe;815XGj~cRACn|G
zeE;VKvjreVx-#C^AC?z)h4WmB1hYE1p<`ED+eXNxBEW0MCD8lhNwZBx@c~<*nM=i|
zEQ6~E+<56)P3LsfoIF0$696KYRpd;9?^k_(^MTt7Oe7m%VBhe~Aism&&E?REcldYp
zdL7vcn9(vsa&c;kcCHn~x^D&WMfNx93g#Db0n4J==&p`3R%vYwGO9G8wR4|7&%1nT
z?|a<*AZH9be9E)OGvEZgNuc_G3rL`JulJnKfJ=gA#JwK-4x`E^=0ycRunLWXG!h2b
zRrO{J6{M;*HR-~3{pb-;`dxMQ#JLv{WEICio1w&dF6!5-jLNL@8TRGX$*=x@x~$qa
z{QrQ%ZyfE|2P*VPQ6Py54sqh*Sh^TEVT-5EZ}nZrE9<`*{)d7yu8e6+ovO?U^M>q+
zW`ru{lvb(|e|INyBpKLW%lRqtF}Kuo1~x35prhx=In+jt2N_1Ix5bDGNI71U$a{Fj
zS-Wkqg;#m7fHFfuRo0m8mg`a)uho22)~y@6U;M@McH1QU!%K4p31dQQ@|6diY`tpEwwxIbz353h$z#qWXCx4Uu6Li94vT!1{b!MTFwip
zfBX-{@BZ+h)TuT`=A0XHZ}@hqk*zdr^)00PyV)F3^>f|Wzb3TjcN@nw(0QPwi1F8L
z+3IK8JMF8Y}Q=N*Hm-GQQ@2DBkVC|5m&ITlycCIJaM3`oBq_
z6^jPT3ra1zD)ZeP_3o+lA!pT|WBX5Uo$BB?Jy_=#Tn#2P(cg8ti5n6QCZ}X6gNgaX
zTUSEM9B*C%?|pb~F2J77t4a}eoivYn2C}@Ul5LLI>Jn)LZ+X-A={rn;R+W0@cjxcV
z0JaT7v*PtLnJ-|E&xFP|=_|V?&ngO8CfIFpyfUR&holPK^4d%!u1qTmX(iw-=51%i
zRg;h&Fma%3BdwT+;x9^<)JDs-U_J*{v
zlA%4<4PnUlSW>oeJ2shF(Nuq$JnnmZ$Biz&Ysv;8ch8p&=oE=AWf#`VPO_Zb4}02c
zat7=ILZUQh9#Q>KMVugAdRMZnfM5H5CyaLWWyAHXd;vxW;jEAvNHukdT(%L9VnXcW
zP#_LnvU3mm*64s#lKsS8)O@P3p|VGFe$#mdID$zQbA&xJFG~RLdHcoFs)gEddS;(E5*IykrMI=>vPe**
z2+T9)sM7&ChnD~(Cbh|
za{d9!@KH5?;tjt(bYrdNv)-H<00_ic=Fj($8y|7>m;o%uu3`_b2gPz(9;Ozu?sjin
z1je?(ZZCqdn601Chb$*YHphyFz23-@D*$x(v(iKY-T$4uW4oc{9{_|^wr7fn$->^K
z`XP%dvxNZ2t%?o<9a54CQTd}E?6CgL$Ak7qa7Ap$uBjqJh7l4G1lTCcQ8s+p@Wbe7Z
zm&{LnhC3{mzXctenB2Z%LQi|;19mlVkx?F8M+L}rE|I$EmWP(ilkdw;R-cns{_Vxp7*9(^3C;|^t
z&rP4c?!{}VvP{gx2C?d+1+
zrbDrphau&Q<@AwQ)4o^6CJEzyp3O@fq%7AmHS^k$JYH!sqkV6=D}E;wRjMhRoCP7`
zDZ4lrzmPqUWhdNsp1Nx?DT9*7kKE7nvez>|jBSQ8%-1;APmIwGZT6)>7T_*E@xnd`
zSR7?Ks=25Q#!{z>-)f9Sxhe2sV8_37alARaPC+lZz1m8jY8UbO&h-Z4`Dz4ywV>Gs
zc_PtXjVdhoz{nE9hfV^)VwM-PfaA5J2tg)l})K-D037
za~kpk;iu66Nt%q$g&(dUjH}36P(ubO+5Tw8fMfxh`LB(he5)epudSX|Uk${JP19T7
zc8?ne#`w99hTI`EX-NVcTS5SvvPi`JP+lFyl9$j+fbuN
zQ7^yP7Cdf1!Vr779*a4hN}oqBX8ZkEyP9p{we@>D>&f)X15pg;^1@|IFi6SsP}*t1
z_w3)4Zp_3*(1@J6ekZS=+VpaIdV=m>*FdOqrov0<+3y<22@LW*z{axtc1d41sgqY}
z6r23XoAZIr6*3k!+Q3VAcn!aIYk1|e0Gdx2tOuSohzWyXj`tl;QeFj
z-jXL9kIxnVi?+9Xi}H`Vc9D`+knR|eMqucWhM{ZdZU%?$P^1JThX!c|X6SB2I+Yr7
z29%Z>1PKN8x7qh`>=*mp^SrqKitBr=&syhMKVE%2w}SmVpvdO4U~c9#Z1PRi0uwi<
zoH>WR>s@&ALz>SWX=6rPl8sVVP>aV*Fj3w1_+caWXLFe+y3hJve}zVP(M$s*-v4ph
z*7;KBjj)*F$+xo<&~PBB#nVrJ=50cO^11DXdgFIk+OBVsByglYaKv9P;I`5@kr)WdLn3E_|aAaI}O0H8C_1MDlp12IagVA$ET6;aG
z$`!}G?cQt9r_%56pVQ{emd$>j0HFQ7FXmA4$oF!x0T7&fRD0k`Op3cOstjO<;Gqio
zUJCmk+)uRxbd3I}9sjAt+2!mz>#PQ%B@X0o00_fB>vwQy*`>Z7{k7ZuCTRtAtAD{1
zY@3v@vCeqbm-1D@nWdB8KU1kFI4cBe+ht8)*)+aW%NlwiZ3gp@*38r!A`1{1WbT`a
zkQfxar|D?V6RRt@MV?Z+1ec4ac5a*jTnLibz=3skFNRd>D(pgTMe?vWn=`q8d-jRW
z>i0O@`ucrngEhi)v=EdoPGxN{6_cx7n$`KrwQO;3$m(p6-Jh+2utMaQF|y^SKIH3!
zztJcphyrsG+vg|K-=N3yebTk1d%;AVT*)R)HZ|uUQ;7}-eLwfbY{>>Hzusx_6JHT`
zjC~M&#+}l`3TS`=D3!VECoi8~j-N5dQHQSWseFch+}aw7621ilOi!O`M31htL$!xS
zYX5MUHjOe4h`GFe_%{)y$eTEOmF{_XGcm1SioSd_-{4G^`a?O+
z<$?MSr@|Cv(t-I&g7)@_>IF%qk@+1hd`qX!1H)Lj3u0n-WCCj28ATVHAR$p~VP@wB
zu)YX^Ld<;^oo(EY1M!|A*cnB2Wfk>Rs4iR(BrHezvE`}obFdv%W3o2mabW?z54n}?
zTl636|8UrSBIr6WXI-%~e$c(K=W&yEM;|tAMEvCBQ4u)rZ(l&NH%v@5Wl6frk2QSQCA#tNC_nuCt1nya*
z|B7_U-HM~-PP~TwGo}B2;yW%jzk37ZuWDKP{X(5Wk?siDPc0@M%6H6e(n)ocmHZ
zSwz=NeTC*e^)_L5$T)jy3|4^*Q|EGT_1Cjmv+c_rS!_2Np&>J#GyVCQTKyQ8bGi)2
zH9{zLFi>I7=!i;ocrYnBgB2nQIO3;~pYZ$iovj;-$ZH+q<@w?eE#RIRQC8`$wc-y?90l#E7)J;~wsmN{@Q59Fy{MM;e6^gl|J)-N`M7cU
zV*j|sMJE1-LEbVlP|RJsHj}=vzn;a*q}pZgzyK4;*{eZRI?Z+Q(;@y}!K8PDlsq
z_{s)(mSd?;gdh5=6Xdq0!!cRd@^D6ZT}nPHW>asj+9}i7aZs97F|#Hfv3#D`3GKJ~
zwKGBCF4E$ygAHDn61w)zgc`k${8N~jgu=)+4hxhoXA(cqx$|fIzpovbX**z{l4eYu
z{Sx&BPl$tMqp29Y?-)hc{I|n+jJf^7be?UE(vV=1;Ts%Ae{!)fVq~JnwW!Id#b@Vf
zJ@u5M!d#xFnb^lW0rjWvN{qdy&4WkG)8#^lv9aE~Cq^oX^SfgM&C~-Dk-jZv>pVE3
zZ-8)%sM^Ivg)&;hK@DPhB=|TPp_Eo%Q8q8KJt}S}*lY~KjgtV<uC15{!I9p~mJ6S{pB&@!kX)Xw+*a&(MTC`(w)Uog8?Ftz(pf0F3j|Ez
zuK1JX(^~a02OB%nJKtId8qUf%s*^zRGmOR_THG{W$vlqG`rpDK_2o6rPcr$Ma~A8s
zCiTWAXv=bk@kn8H`N831H|tou;~GIF#g_|bMKd~b$d~%kucSKJY8YGY1bPcYJ55&g
z`dWUK`#U%Vu83yMjtP}M9e2WF&7Bc$Nd*ufi;nRl(+LoyR*dNko~&(!
z|dD!Wpf03Oh(2yHni9V2eqb=g=ClZ4ss}GG!qTcV^3f&4=PaI%PH@Xy*
z*t3U)u*y!4Up3=5P+Hvbl}j{)Q?Yu%j(4PQ2TH!252w|Si&E#~XEw^Zw2{EbwT{(k
z4VsL$YilaDto=JcF12H>o&sQ?)t%ap5g838@Lh2ZTXy#pYb@2*xf%@r@nwax*D
z@m;k^U+|Z!G~Tu=>KzwPmF0PnL}e~Jlj>AG1#dw9JT2@oOvXw<@-TCt^LmDPTRvFs
z^9L_LpgQb@c{lECB)gdwv20RkLC*A1wg02u!`IdaCl*EdlE41g>PBky1wO;@#_DDS
zBkIOy(@gZlvlaI@V$vjL03lYkT0UXU~Q(6;mR&
z(hOLTfIhqu$;bI0&O?VfjjN2bG0%lPf%Sn!N7q_Xw<@)({eU$vdUO5x!JR&EZyPBu
z?&DK9@f1H?9Gw0qy!2t0gSso}j!<3xpCs@9Si6q;Uy2g{hqbw&d-2RY$gHz0#kAQ3
zsq8q(*mLv8WQs*8GbU42RXg3lDtxK#aVAZizG=zJJe33#2G!nfyz6yj)(Z1DtVt+v
z@c{gX!9xfo&7B&8TJ&+2M8Qi4qISJ7cs`qbS&e(#<{?nlk
zLyX~8jH3xsG2tGCX0RCT?)VybLt2?+(twlPk&|i0M8r9-w>7vpZ6EK!FVC-sJIrGm
zief?2%w{DKyM(#0-kp3ZA&>vwO~n^^aE}1bVAn6>Mb`O
z6@7y7(%}VaIdsV4ddVrlfHGqg`&{i=gPm;FsQ{l>vF>|vugNO87wyUK5ib__k0bu}
zz3N6cJ%=4DAcffrxMvedG_P)b7umdK#;XY=-~^QH#L22&#yKf*hpH>)3o8sJ+xSw
zTq#nL@cy*3;XSFwhyFfI_hr_isrznun2GmZ?U7?{W?jp*1}zdD2GxEZTI+c6iN{Z@
zwRNz$_bl(jY!RF2Y4Cfm9xi!7c2BPO%Y`vK=GJ`hHBh`Jp*+9)+qhB7W>Zg7ZckB3
z7+Y}iQvUh#n27ltS}8ipa!c>CD!wM4-Vj{l)`@C1TJ-{32A8ATC+4xUg4VHt&U@${
zc{_gM%P&m^?i+)z%*39I?(81cNsBsEu|
zFAKd)ZQ3EGvE&Z+Uz4SEs?*aHBA{9_JzG^0wrl09P*O5i{7i?@YmBN1>|C#IX^s&g
zHL*e0eR{w1?}K-6S5len6P})uEf-rx?H~r9o1*xR6t9{4&CVk)>dSeIuJ`E4%H&>=<;cIR3$V8PYS?I=4KQoRMX+G}azC$0EHk2}vwSGmw!$
zxRT~emA65&J1}5S{M2abesQ6*P9URY18W_H3Nc&C_Pt8eI@8r7rBtP=4XnRpU02E?J(
zejxZEkGEb+-fk^y{oL6dFwRv1Vnypeg)O)=#hgm;uK
ze>j~dr$el<{|p@Sp!1z{r2&d+DDm#OcwupTzsY9xcm;JOYdAVfbd2DdSuT*WXvNW&
zqlP5rk5)*X+J7GJ_jZLqDNfJ@C9PYyR)T4}dCtx^|1Rpo!#juecw2rNtLN1hZ1M!Y
z8;#PkQTsq+O^JP0oUrbXtpmb*xg%VhAj)FQr7uK}KBc5MZE}4~J0Q9zC4L(W_5NIs
zGx{N+Q4CU+hF3Av8GiWs`ng-M8Og`0y>am{(*+ZE1Ym$7oy)Dna8J0x=66
zgM$uhx%*E`yTNMY?8gW$bMt=w>LDITu=Lr2N&AI?0pO)q^3=l@r*nYj)eLnI&NCJp
zBM-7kq8t3aTdRqp;0RKkLAT$pmp*ZZb8S6cqH)lz&#KVx5kx2v{lysQVxOsYD4sE{
zY&X(FGBGWNBuA!($nAzuB#LOvz*zRHPneM~n{9*I5C9}k<4hE8R
zR1cMSIQnGQn
z-do`a=mt7>1(d$vPFVMG@6q%m_@KV~LYYddJ}9I>yB%KG{@mgc&bJ)r{MzwVzvSv^
zvQ4LR<6u0tci^o>$FILlsd{rcpHF2gvxb;iC(sv*`JzCII;O>k;JGlN%qRFoc-l2#72i3)0HPy;1&kpEu^Bu)!<1v#V+GtNHEKyii)sw&70muDS1-lW}e(3FmtEb
zyMhmG;=v>^j~6dQ=N&f(<=NW4VNe4Rs}rtg$G`n#Rxk_m4Xnqd3YymBf-+Vl(#I#A
zEBx`b9PJsrwFPkQl896i=oBV)CxCFyIUw-XpTT3{m=T{}9)wq#_^(jv2ZDOy*@8;fj_Cv`pmYw29^^G
z0Qu@Pj;W5Uau1CEwQ{g1bpx;&LBk>y6yWUG$@JbUSA?r)UL2lHv|HI=3eyp_VK#NH
z99#^;wrtuz>wDhO`9#x6>U{F!=+`2tir&>I$5!xtKx438u(QA8x2&LG^p2r=!IYVv
zgo3byQgUl&MWfj&Ma;hw0P`r6aB8k-0CU3%?0R8|sS4<*vn6a=*o3*qJhOeN>*8TV
zE$GqyU1D&2X7KFC^({oOwATJ|HX74T71B@J;ul(&A23f@Q*bxPP51G}_DrLKAAK^6f(w(<
z2xbgGU*jV$D76ecd28$S4e_2g!l+Tu;nAk=+l-
zs#&Lp{{sXZ!&$<3l#zRDA)9t&Aa~&;f!dM>+w0bCl#)C2x;$Po-2pu;9bo2se#hM5
zeqcK7=G5Z})ROVu$C)Qgn^k7XwFC1xLhym9`_0kmm5A_C3IQ!;2WbZGb680ApBq|R)@IY~&r*aGkG|~vEFkaD>vcxf
zMQUiWkU)>E>fKn?;AN9%+5s%assim_gR!bOfw=iiupOmdP>>UW0uBv(seRi!1MVVa
zycM4$b>%MxdHa8QIV{P}^z7!osCL~#%`g=cK8(z=CT1=hb#m6`ZynP{oRJ0mU!Q9f
zka*O(XJKI;)WQilM32`udy!fIF`O-S&VE9O@;`gwWGwx0rZ&ox>%eb;>%3$dW^*Ir
zu>jU9s)=RjcA9anBd{!`6h4M%)TEwRX*AR|KtidiRq#Dj|AMX~So~`QMC5-C3i*#N
zv^QhC1$N@CauOYNy(^izRfRn>;u5?(soVIo9`;lvdfcpyk7EG4<3szqfg_%M
zgHt1B)0B-e(ab!1KPlKOqq1eG*6HMvs7VL<)JRTmU<;!cnpiHhi^Jz^OU#u4Y){e2
zUk+mC%M9W>`Eap{s_)UPidEOMwNVV$+SUyUqMVQb0JE=VDy)q3WIghEZOJ}mSRcpl
zTTglKC+()~M072}Eq7gBggSU(U6sD!F;Q&9+X&%2yjp{-IeKOs(ml>N3pnRnbeJ?u
z)tMdYc-|4XF6rUNEW_e+Bm65ghd=A63#KXxyH7cech6pRh?yk%TNLK=sKXl5s^ikR
zS5Cpn(cfT_>jyFSkhb;U`U$rgsdFwK-O|g)
zK`tc}UJ<=_{>QklXIwBB2K3s1*rBhmsTa#yU(hYH0lp%@Zb0!Dq1
zP~lBjO~UjSt3-d6gbLrsv7D$Cb^8Sbw=fLm>CUM%wgcgY#i{CEt@HH{4j%^P(b!#D
zRJ9B1kjPFL1%Wdyb2L-Y8Mw__!5;2yy$N!~88QoGrFgTZA>#qtvg4{x8{kt)@$shY
zl9!k^Wv7Qnb)Jj3(k!5@C#7U1xt}4CL!&AO_sC3!MT+rpj%#v^bSrQ^K^^_u()t{E
zN}SU|(;4Gc5wl^ML|9%c$$a0?-<4-H)S;Hty=M9!&U>3e1EQTRvPzw3oJkcz3Pe%a
z_15as+@sT7FRu>ck9e?89Yj2|Kr(g9PY$ig$*~hv_eKk-$>v2k1OwDs!j$Xx}ASoUfG5+8p8SEi;jn7u9{>GLvc?aZ93~cqROh}D>Y~ok8qnT$|C|#Lp
zW-;r=O)xTM#M19D{m091HsPy*tLFEL=A8X5aA8OpfvYzE#kVhFD7G_$QVkM|%}>e8
zY52%;lMGTejswpX`hRO0*hrVQv^UfA#foi5S9VzQpXb4vUe@sJ3D!i@K?Vy`M*`k{
zt60DjyF!r{?FG}YOKCfHU#!n%P$5wrztBy_bh!juPlU0F353zkp2Hz|OtBuT_pxL}
z_1b)}rfZ|K|6ipsZzZBqA;?ga*$zbi_LFag28N)sIOLJmFEFtn=n4-|LeDk>*P}S9
zul&%!ZJb~w-Es}K(q3{!8dAgL5sp;j~AKdqNt@a1U~V@S{49
znpo?3O#-e-v(9*x1|bP0ABG%CZ$62hD-dJtF}s$aI%@MA&Hc9oaf3J$v_&dZ@=CT$
zQxt306-8+jaz}F>bGR9kpcF4L1-edemUrS@UdX_o{PFa%GOboVDrxdT_((7mAU_vN
zXt>J0uF}f%Dtt-*S5v2nJ=RGf4jU$h7eal*%88~WdqfB>n?gA+b0Tn#otdhY$yFEH
zO@Phs=1G@i^*mmWXt438&sD$NUWU
zw1_tQWtl_=k%TR4&NWG(D2-gB9^WaY|JX$|k+l?om^l8W0Uwe)^tx__9%WT#&P(~g
z%PFRPX12C^yN%<&|DW~y|A&+`d7#1n;54{<`!LnUb~b(Oy|w>u`F}CM`=1UXz!<2@
zpqKb(<6+3n#7fM%6%)pu0b(+mD6N@0W3@G!m#!p9%cEyG$sf@PfAECN%1Zzj#ev|A
z9sy4CECdQLIV#4cUsNJ}%Y8Z5%RD!uYyPUo$eHtd2_Z6VpWIv*1ES{1uFgdKp3jF`
zkMFnHs!Qaor$4uQWNwmRZa>EQfkxh!P+g@~cbP_fN|B^6H;*9G(`C}xYp1X^-R4zh
z|H$H{CYhgXp$T)6JYyo`z+}sLpUDW}QO5>96h2nfX
z|BdJ{Cb4Dre6;QS2{ov_`(o==;MCgZs-Da6{PAdOUrKz0SIbkpPk(iE+Ut~t+M{a_
zNDTck$*n3sF<&o_d;2MB>+DFwK?dUxTMM@{S7`&V4@l=KaBGM^pBt
zIUQO9-7zrZ!6PFbc0*R)v5Dr}ge9Sc=Jn2B2VKiGqjZFNeC#W6kIAO>Y=?g>Fp7OQ
zQbxTQ@Yk3du(dq@Q_v0#mg`T!k7_&0)MgYI?IN&l?8GlRd*Vj0gKyKgA+zeY&!n)pH4@R)
zo;R9i-j@8Cp#Sf~;P~NvkfUb=j&8b9L*axp9I)hClV^Qc+}hBZY5u$Edi6aA=(!R)
zV&E#;j+|E~)PG_UXyB3il(A
zsT0fwFHnY2t{#tH^i*$mV9uFS9a=`4fnA+Hb@P@+qdgwTyVeM6xqrtw__xc`!HpRi&eqX3Dr>RdSj+g;o8Tsf(Fh4g}*Y6|4LFI3B921
zetogTxtJm^Kf~n_OQq}XBe5!d_!+mPJ%PG(Lk;&Qj}08V+dZjnf#AYjf6bW7?ZeLe
zLbj#w-10J4?fM)foFK9n&;HUN){i>#^$q$~le5JZZQxI?iVSURz>m@TZtC`Q?-n=6
zyw2&!zMxg(S3T=(ZluO`aw+|mm2_=ck*F>1WY%(utuF5`R3ROH#~XAvNAf$?-7S}!
zty`~$WF|x^mY(Lt6z8u!lI23md~miYLm+H=!$g51SKvNsYjJTOP!iIC{Q*6&PRNOA
z@xe7}lsKEs!xjHtU)E*j*Quzvh{fp6A6yb!{kl*qvV#>i2#6Z)Zdb0#y2QP8OQ*w!
z^(D7M1Lj6Y_HQ{Gcm6X8T>;W(m^{Z~7$WLYj05PkKTJAOf#)JBqn_aq&or
zl}cVzFjh5_VO4-KolwkUY4w^RkOTfiIX%jU*$ul!obr(MZBID;T(&M^<1wx&+#C}Y
z`hFQYiCBJp@ZM+Hr1uGTo?5OeE+!xPLi5RW@{QA%Z3oK-`rD~HBffJ?y`z@$h`zz7
z>=W-cO`49X%g$~VOsp-ByJ^jl2u%_JrI&Jb!)RKa=F5~VOJ0VSxy13`43MMmt-oK{
z%CA9wA5bnXIq~fRFZMhkb_AqA2h(Vpd?v_^z`Dq{)^6B84?xto9EiT%uf>RDjGZwL
z=t=<;!6l`9JFnx15vf8umr&9djj?y)!UK=g*&Ig5ejldm1{I}qq*bZrj)J`-2jr>7
zz?sPETAOUBJoG3}U_bQzis=({u$wD*;OehEI=Hyx>g++2l{qktQ~oaeF=-r^;6Xe6
zBLDbXJuA%ON?(69LFNK&RdB|HKHm?Ret@nC;!5V>4!41*S?igCCulA9FL-AP$-j=n
zH^@Ycy~R=HAdoL9q6*vH3@Pp%6Bc1U7yWCR*ZR67RhIHY_e)wO{75d~1Y@98t`_Md
zAI{!&Vg5(IoTnNd%`h(X4(WZA)KgFgvmV8~V||~I-2t@DB}?#@g}A7iHUk#t7X({=
z)w_t!z?pLh#s>PLn$L}gx|BQ6Q_?!F4^+e_iJt*5{)*fnm6-;0az117@P@MX8
zLBr-AJTniPcaKy)o9J;?rIb{8vrdfYuJv+%IU9J_$yb>Su(LePA
ztKg(P(r^dUT;LJyrDYrHI8+M9zJHWX^B6aklb%Ie4
zdgs~>=i*m$*A}fDtFU
za9~fS_1>*qE42LR+SBlIJNr`in|Ppiwd?Ld&wQRbQFJ1&_dMiUFy|zCy{{>1d%G?c
zvU9snsBF!a8yCMlsNyU2@^YX3UVHwZh;QPd`s*9Ui(@9neQd-A_+Zhh>}&BC
zN!x5STNI~R-bG|f^jv9jH;x?17Jsx-UhTWp8~l6SE%Vr9*88jQx0yGZj?)h
z!FP*bBRy@HbPW;#&a>gVMgX*JdLFmap%e4+e{0`+mk^UrmcA-Ar~QXIHxWDuHOyRMb)oeqV;bF*YSg7%}ppKwrx`XH6xkS@J3&*Km-nm)EsV)zsAw@UE!4uzcS)(hp^NP#5r?Yv>D#vNG~18
z65r#&L!|7_SjN`-?gMxHfA=1DBfcMX{?oUCL-kc!)Mc_ndR!AoUJ}Z&=^8n{C|W$eliHippfwk(;j
zlROj84kNqBe8yj>E!N;A&@5=Owt>Bw$qqibS3_I&eP6Rn8)J0kS=~A@2E0piL4}o7p=PW3tdY}Idp|N
zXZOlNJr_Za77K*xxr|zTB}twINA7i*6|OP|*zM`Ef~qqu7|EY8j2f<`YD#
zp9{?qgj-Zq%*Z6Xye2_eFf*U4Xf%o1aO!YL&uj(fOYQ3Qv6Urv!)y|ne<aPkxrrHmq#0(rq2PpV0?lo-{`kYW%^upamT
zJ~bh&TkMiKqiL>#H!1&*T+A85M~^31C-m|ZNoWpZ;WCM-e>gZ=Pm!Nh^%`%_cBpSl
z-3f9(x#QH1qs;h{Tn1jF-ft=m?b_t(X8Tw|1d}n+!Baa;(E4KWbg+!q%{?_65;%Ve
z;rn+dvh(zTCpLjH&}Dk5mTtUuJQ`z5-6P~$xHh$?SQyvdP9umHPaFK~v!~>_3;Md%
zDi)~a-EjPmdb$Dr+!(~qEd!$dmFxeOxz|)cT*^97yxs&oLsPO-UT9?QkxD^-x6vXS
zsm^$|?=UJvGxHQ#f~@tZiecc79RPMu&sXTQkXNV#jvanzzCiIkMfE|TRHYn5n;Rf8
z{pQg*FGAMmI664b&ELuXa2PEh82*=Xs_aY_Cn{t;fq|DydxhqO=1l*h%D_+8e#RX0
z_W3JLE#9mw5=W`_Ky$-i>m=!(yT9)wWfEXY_!TMK|9BK&wPWAq|p4#si#
z*s1-;E2P((F&Y*0$BPZQpLl&be+dhj9h+Z#EBK_7-+D|3koM+jH*7u1!{M5-D}Z=h
zy(qe^J*ouoXr~UgIr;Lg>(&1F$q}`Y8`*%Ro>&)m
z1zLM(05>C6VgT*PhSuO?Us6#^9@)YF&c{w6ZAwwZ+Q-K%Wp40vB4K;y`J(p|?g#R=9;nPJ+R|D8as2A;;yVBh?pm_3jS_pAh!U)b
zd(DHO=K7Jm_ztMxkSCIB%DX*#r#s>8Z^%iii)hQ+jf*jcdwwvo)_1
z5Ei0dvj0`u7&Mpjn4*sPsj@vGfypJ#8^u1)6>g7m!cpGL!qtp&RM}hKmb$xk%rX13
zE4+>OQ;T$x&E_incC+i7
zn(NCy0uWFBy%?YGw;OwNwf1)O?M#+F&faUgH_hp7)z!|wg1PQQ@80xhL}iLoMvoWs
z;e;WYEdI_HUi@DqRxAJ8iPir*XFa77@tN$p$Gd(YkeoYYjxgwqfWzxqWNBi}TpbUczImrCTwritRj7q9CN~&eAAC7QO}V_XCssSf7B9+CqK*S(&oNVj(Qqq$
z_wt;j%{%gA*(|QI-W+`{wk5)=Qg|_{
zO#6X`M=@n&WCRidE({1M^*#U-m>O1)!gaO+LqJAlp%li~Zl7XZn#
zbonID_?kZ+BGW70ud4pYped}%wW`iMg=eM{l8M8qjd|tX5!{J>1vS=5RP*2X6MU;(
zX_dIqP@nVHh=KDG7k?$dMy)q?fcBua(gPw{WC}zD87WKBv70d$Q>c`)dh&hur<5JC
zS*A?z14&!d?Xp7LsS3DEcrd&0{RA{=eP7?`+CnfWNa<$2`P)}c?-1X~s
z>6KA6MN-g#&dpUA7T`%U4Du49_1Jf?nPC2OzAa9;DMNZ2kb(Q(i@1$})n*eXSgXa#Ta3`xW)=C0?Hd%C@M$^EM0@x5
zFodROHMNGu
zx#7Dx($m)n^OhB!yV8c!$IYkAT~kchq3-h}mO-({plM}XBCeIeH3NZJ#{zHX5EXMU
zl^M%KwDG?!-uUYYAMZI7p=yNx?^m^i^%cwt%
ztP%~gES6U^8)s4={8)ycC$OYaO3~_LBV7BTQz6zQ_YL8LVcasjWLk&5ag-A_-pj}8
z-W!Oj6I`8oxZ%pMWa`5cZHPU&Bvi%u%3X<$$-~XVJ~NMWtn2)B-QTipeQyiswMKSH
z20775mYOrQ5;)8OGA1`v$pNfopfyWfMHPO*V0R(gjLFcL?VENQ=|}?8`IZZmxtFKc
zWjICAlF5^bUrqKxn
z{II$FsE^iO4d=Hz0U|G^7d#Wj$Q$C)>G|vx*pjkU6KbjlvHJ
z7qcd=5G)FK9~tewWXO7C)vougCYjfepgK_$rJOTGD~tK9ns>AIyLZmlPZBH4o*?Iu
zn8_7bPzakG+|YgtdZG5EV-b)=pc~SS@s>>T90+hdkG|AY_CfE&yP)_J1JR>|ITjN^
zL}C(Nt2&pDeGd;R6VLv(sI-T>*G0C6k)S3PA+QR|TJE%J>B6w5_zA_?kjxy-oBEpE
zsLq6_h5G6(_paWOan(Qz0ACo=8-e_BwARR>+M+mJmf|d{>xPRuq{+~tTeXQ;i=8y;F~cua!rC5QE+vpZ
z@#=h!sB(zauQUDYPRCy>?VmLsO!#H_z!at}*9BLCZC@xQAIKaUK2GHWGjgRE;s7Fh
zYgA;QK093le=oW|ZVE0`a>?PFn(+p;N<}V8e<||SMisv#xk_o63Z^)$MivENS!M=W
zmMPUdj{x+N&8lq-Yh*}k#ox?z0z1@tH(nFF@t
z%s>`j1^@J(FfJah%7^+EkDR&hw)8$Xi<%xCt^0)5FgK2=w;@J(Rx*zAi#=S{G;}0H
z3XgKe&RQ47p6y;-oft90_$P2K%?u7oRHj@x@Lv%Ru9iZYx-|0q>Ffufo!|QnD|ny%
zz4^#Ome9&9TuejjB;g+kaw`#T#}7h220K7d5INIV!KI3KM9xzKgCrd|ss+W>8`y^PTU$0~@MyM&OsMX+~lF|yt?e*@x()692J
z@G$n1>JsUB@HBewua!0P-&7k~X)UQEJk}%CVS8ibA3!XD_+AArDAI~TlLm5>YWL@z
z)4>61E*zJ9b>0S*EPkSWL>U5{#Woslupi(of@`$rT7Mssl*4-jaV{yy-PQHUM23GD
z^9A_Nkd*!VIPKFFymd}XJ`>QJPc$qTY%Za)DA~Yytg0}2eMUBq9xr^uB1?|7?mCzA
zP^@&bR{4}eRhHqYTm^Aokn@9x<0?0?rlwEmAM529NG?q-DXoFPit8HIST|w=CJkIo
z{w1J9_wXBsXxqhaMQ_ia4&2^!Ze4x;+@IB^&@Z|4B2YZEp6<@}J>2%~P=m!1jRLXI
z-e6zyhLm1lJIZ{Bgq|~r)PQN
zw6}bt@|Twss1E-u0>-G3KKZo$?2ZpsTNkTdp%oj|y{>%0KZycg@GB(}yG&3?%bRj~l?&uZU&X?Er
zKEJ}>4@QJ5OeH}xGci;Se0=cxyZnpHOzkDpg{75+zZiZyBLh9WP!?yRhPCaOs};u7d&!Q7X=PHQ9(en`D#
zI$PJRgxVb(vB(SH({?cv%LpWFR>Z*0ebyQd`+IXU@zm_4fK%FjtoDM}h%;}IDlNk>
zaQct`aH@Y_H=X~aJh!1kn_M?8*L(8$5_udNY3&Rw(l^KEZ331x$TuC~~;zGK&>!}S@a)HkhXUYJJ
zRU$M15*9)J%^tYu{<0pF1)i~)gYqT$;Ks#de7UsC1n4mR;U<76hc%R2n1ZZL^qy*<
zKE-)ffkVi-D8(!_!-7a3OmM@B|b$jJjJZln>$m9aV)}cp)Wlhw6eBajHs+Se~c#4VOt1IN@81v+QD^yUyrvG6HkV;1YBEhtm!d
zBk$wwHYRrBn#e#<$p`6)nU2}YXX(yRHooT~p+A0}VxhMFjFh^*#=&t)H7whv7_btt
zJWH1M!<3C>-5Ixmy2==&()=*opu3P>3M@W;G+fu4Yn`Q#dOz89Br2x0p*HS9&216<
zKK`+eW5!N_E?2!rsw6?z1d
z@ED$XAJr7lt1~HFIDN@2Ybik`LGqTx;Ka&wc^fiC4c3~CX^GCkVm^B}^r7>smb41!
zjLYoKsU&9d1NVmcFGMdKmg!x{#lZ#K@7Q{u{Fp6Gket9C6a71eRpgi7gD2q%|L&Qc
zuLY07%Ky|6@ZzC|5_Wc64*HZ``#T*6yKIAh;>xLICX-VI$K}cbol0wJ9s#Y3N7G%~
z&qJUr$DH|1=Dq6af626GjDoyrYeun|{K`UQWh0h4mZ`{})6P}7T1I8l#z*zTZpe}u
zCUC7+Oz1wF*}=rgWHTq`reO)1%;HgvODy$5D%D5gwIsLZFh7?Sq8c<+qcInnD_7b6
zQ>c3HqAB4{xvMYzkwl|&p8e>Uj^W)Aj^v{ub?5g}sJfAG!SC%2KVorvN$vb8(+;M7;c^Y>3rk~kLOiRdFzSF(-Vw(OB
zCxpH_CyCDpXH}2=r2)W0uzKV;_wMrJTL1q;+*<{;*}nbSXp6R3a0-E7L0a4?4#5co
z2~vs`3m&uv#hm~tQYaE6!QESmYk?44TC`{%ptR6Zcs~B?n|IBunRnLayXM}zw(hO_
zp6fh+zvDP@&AL3j)OpP(gaZ%}!#HWlAx|VBcITQwiTICmMX3Rh`3{}hfV=lwJZ|1r
zJ|s)$GG;1ENY!#Y)q9y#Jbd@h%E4ov2u}_V(WUP@L_<-PeK9tl8R8;~|EZv3BHT-Q
z7PAS2$C!}Ns&n(*lpYd%U0oIg(<~1EGb-3!1=oE;`~F&sq4Nn0EXJ-u0ix9X1QuG_Bvl
z)F>@O)r%P!bWj1&&18(}-JgjQx%{?#D*&&yp7h)iSI%Le`j@DT57@)%5=Iv|r%%BC
zV7oj0=f<8YbaHp@EUvB=TT!Se_~sIW*WG!Is;;@9rnWTxG0w;Fo7j@KuXp{~qQYmy
zaV^jKL%t{=o4|K1P2S9kE1Sw^Z*8YzbxzH)iLA7Fl8!oR)sajWKUQVNG@MgS=-%H?
zAh&|Zj9b>SbP)w%2ER$wn;2<6m-Ugy&ZEl{8#}Z8!}3DEh4H4MikHF3#u}mJ_76A)
zn(V97Dl=%CSEp#_THcv1`!U6!>_oX2@HjF9v#nO2+rXjjkRMOr>$yOE{jmgK{})*}2Tr-(;!
zFpO&dPnX^{m|=HS!IJoVs5ww!`Aa~ZD%_#pL;32J4k2PP0Gce}Z
zEqxiTZvMtVN>hqi;SGeY84!3))nG5iOQ#JM<=~R9K=g+@=x8V
z^Zbh_6QEH&DEVPArNz3mUk>>z+mJ$=);K==CCur-!FF}0ZN0;DSC0A6@1q&#D4NzQ
zC_78Y5#0Pt-)sx2Yxv%;V>mN!+6c*WoBj2@w_%8@NWF)pgfq=G-6&X&t`U$=
zS_NExozU>(u`kDQW@`wo%)`ZvD&ydM;kGUJ&pEFWw&wf;$NA~_9fMOcY-7oiuH<$K
zpRbg3wS*yn^|qmX+R{+beNq7@uN)E5Mjfvb3#*ewdS3Pel0AigiB<~TTT=;V5r}uI
z^*M;#f1n1;<-%a{gyf7j<-B`VuVq~K*|M!Fs^4;F)z#|c{b&ZH^BQC^(2bg#NyoH
zrI<{FoH;@%W^J1{TO#U>HMV%ZA?lo<{`@9`a2G)mp!LZVvZGH^tFLF4d_D~kjw<9)
zlf*RCuun3?{(KXFxnC(qEX?Axb6ELZtcJhckD7k-GNXpVX-rd%f`-NV>54wBzWSb0
z$W^RjeOpg^ju;!ABsmipydk86nw!)#-7b75d?Bloh~uv)8g};kDFhdGZ*=0!R%Q<(
z=aro8TDpsK2OImR)B
z(*~*@zGxk|Dx7_GZ>obyhe0i7r$BuMY8~48)NLeYzmE)
z!#_$WsTf<#?C>Y*Q+nDz3){m^NR||Zq~KgZypkDC;*N{F%f1%{t-BE%Oc`4lnE2dU
zPP<2sq`2uZ2~3i6mRgL=pog*k$4M^l^Gjnl4_H#cY~OtZHz?+r4n5ek+=-~U6F-0&
zgNIP;L2UzOGc(QyuR8KQOFGLrqwwZ#ZA>#U)uTonr34cOjH#wXr0K8$U{G4{Z2Rh!
z@9NPnL|cdtoSJ`YObl&f4Qi9p9~)e<*HGirGNF=h;T<%cs9iItL$*WZA?UL(tWYH=mDO(EHPF|(S^AXL
z_#Xo?d%2SqQ%n^qk=6Rn)>7*17|YfCh6i9^etG~;1p!TpsIxN@^bfS7iC1fF?tCC_
zm{C1GMjt<%w_iPOSXsph23-i4*@LxtJ?MH_Nx(rRv$HB-;F5)3TBm2Sn@52o+AviW
zE*iv?Mup4$HnK>tsL>au?}yxJn|mekC&3G`)6+O?ywx_vHAp~>O08DJvD^08XiW*|
zU-sU-ll9MimzO&UrWF7EfCzRmK5np>3#13pvJ2xy*8E<|5$hetmwPtO)|N*#GJ=9k
zp6FNh37twe6N03Fc2*-*)TDGp<8SSDQYKSnj6
zI-^7|*~q8ZXe8S4lMtYgUnA<|(Gmhx*4$4K7w;-Q_B7a+?5M{waynUf{FP8&@_rzg
z%8wt0_LGIDM6@tYJ8)HfYJHXz+@4*Cfb&mR>d!?|(c4i?|7wv)<~_b=6qo
z`Oudlwox&
zK1y-XGa7*S#7~?pJs5Y5Xxq2c{=hOgYYBlOhtQ{lJ-T3%qsG=U{A}USHpLZkRmW->
z37Q$0p6WN6#Kt%Yh`BU(yCz%q-Zt>~Pf$`?
zMbkagC#(58t#dz7-Nt8n03p+aqO4+y-Wqn9f84&_ZrDq8&@bM+S`#mQJ=kXdD363g
z4^25#M7>=_uUoa#ltL-3$HMX)6t!X5E+B
zp^2ikb?a@Dy$_#$Jn@OZ`1@Q)jY`*Nx8>5sxG97Rz}XYti7;j0$YvxNItNX2FUZlqGy+D8y90Yll|aDD*iBTW)z
z3y1Mzw@H6lGs(r*q#|~%H~aoXws|-!7Q=PgX2hRchlU1FF}r;_eFHwI1S7pfl@4AW
zNsuDR)cEzdVPsAvT(4rkFLIySkUy6ni=De;`S^=ANW$DoMcYyygW5c!Q!@vqT$vjF
zP$v2QbokNZ7Y3s-3Fyb_pmN)Iiqz$AKV|2wBtFM$YA{zHf?oAXikn&tiKvi!;YE@b
zo_cw8*y;Zoc$H*W1+nV?Ygh`b$-fGfpKr89MPpM;U1Io#U7Ra$m}(0&+S8u_Gb&HQ
z))3g??jeFpKYXP3a=w~d6BN6?*t+_y(W+sM=LrURR7?&q={wQ$to)40V2UXUe@{D;
zkLgNX4q8E2IdF_VJ`l(w7QY=APxUEaE_2C&9Zbg%u%d5_=cADX&X0kw3n9*~PTC-(
zXmPn|6D6qMl|h7(*KhRUblj6t=2M6Zo`Yk)t?6yNx30bwmJ5z9$qs(j1+VY+N>}}N@o?VnA5tG6z_G|d~j0ybR
zvQXHOL9c;svLEQ;6>j~+q-)KldHz^zcbIFij7}o@5;}Chzmlrb`I9ZghO$2@=%=&4
zk5W_mX<#?zWya8uWnh)eX5VsuFgwidiwjZxKug4;*Nww$)clE5UM
zPM|*}NIsJ}+JBC^hi^$9jDh*RuF{Z_>gl0-d3Q9wU?cgd(w$AB5B6O`tTZNWqX+is
z{Nx-zOM1mLwC%~&+!w>9v0Jmu8fdD}H|CbJ+Y)#H!TFAazD*7ww4l&^ShmvM{8?=JNgO=-gRP!U&~G@|i7
zTr+^laj-I+-^x>lbx+kkVkk3^82>kuw9w@7_X^qj!@o?bu3sTIA|l3GGG-sYGkkTh
z!ku(2TpI3qki1N8yKx&?cx(-O@zk2$2}vS`kOR@Zd~f2tr19WPeizP*vgXz%OMm5h
z-`05rrX0Qr0cHMFe(!prK*-hX%DQ;?Xw4P6Q>ZQYl649z57QSw_X@z29pAEa`WE^LVAS?xnZ%G_!lb6PZ;&o+p==l^9(4pw+g&5d&en
z+id1LQwhc%ELd6{$qYYIkqSUn4b5D;q(B}Xr6MYPZwJ{0O}>cPXVxgl)(Jk0Hzl#L
zSvzP{rP-;-h=b&{rQSlvpSwm)aP8)vcXTyxAFXttGNO9SU9;KELQ*-c
zhd&=IJZw^uYj5btGHdUWyR>FUUX~U)34>d}RKbUb`@xsTK297{;sUUHb=Wpiq9Km%
z7yuB~u$0yWjNjzyH^t~L!M3mA2`dPjdwa+aFc`O$A~WL#G=$*$6)s9J4xT#vYl
zX8b7d!*aKANan+eB6&Lx3C(y2hmo(e85)lnN*+^wOd}y`mL&h(jn6Ul<{QHM(yu-k
z`!%&BwfErw#uNTmddhrHA}c7v;!e3)W(l@pBrlL$?1ix^`vMcJeuhF>SbvTZOmAif
za6~EbGB^C1`X{B-HQL0ZSy%P9Z#%JwN8*myMAhxsL|LKW-Rr8&0XPepxRtg1ih@yb
zV^33_mBD4UIB)#)D#hAgHh|0c6k}J{<+oG79V9q2?szRz^uSD9sj8SPL91U1y`7t{ha>)cF*>)bcF>^A)Esd}
zt93S~h?JQ&jlk41ezFs%e3)?E6`73lM$ZHvdKCwPCXUZd?=+`+h;QfidX1xtJ;W2M
z4OYl;<>maaB*IprW?2B(Y2Shh;S~SAW8RvUzr^w4yZI1)k8H^F5=%
z6wU8nn}Vh&ewL`+a@Qfsp4}>WL?iO_GN|~kfLi-3VXev59RxwDNLFe1jZAv5-++D0Ns;lE6eP)-N(Lfh20MDNgV5
zkR;VN&ug?;&r)YWM@oH$YF>#>hFzM;Fz4rTrl*I}zeX$uul$Y~ul_
z0y`EDBtbY_Z&Ts=G_l$gxd$g*hO;J_xHNVg?7%B|;w-9ij4iFh**X3)|7o{->9TWI
zcxXIdYD7^Qp8;0`^dCUpn_9^D+i)B`G(0s#W%JkO=U-lv1Del7g^>1|Ts0pDK7PNq
zQd|+tMys-vou{rghKaoQ5oxY%kzVV1cqSFU!hPFyr#)c%%_h2y!sB08QCxSbC75vX
z4&xPU0w*M7hQ^zu%fBHra*vPM=$PGTw0~`?8HwU#v^}LYX{dF9#Ff7OyD=@dF#na1
zU#RceYMi%j1yE%b+f$fu1$z+1qkbe-Y_p{pz?u
z`YZJ4tU9q^BwvSbui#ScT3CbOV?TAbi)3*^mraPM;wqV{bfHXVNg}Q~1sGV@kduk8
zycn-6)+Dcf=-t{5V~~DNtVpBv8D@O}druPk!5)$%Y-AZJEP<5rV3@73I4g4nfM(jo
zTaffETwbi(P}O-pSI`UMwuay@6A^A35uG2ySxOdl8h58ix9-C!@$E0s1%1m!4U$f@w>NT(!GNz*ylgBz@7W`6cT*}
zKJ?pg-_{zvsP@*9?X)Vr`z@t;Wf6#vh-JAjxrn8pJ8kvJ@S#o$H^(HVKOQx)tpR;`
zg~o!VlD^{PtMeoZWs#6-mpPeWDlCD?)AZ3C;PMb3-dQy)ZRP{+mLX%X>fbKGWn-%8
zP$^}vVhOG;d1?x;_$nVyN8Iy?h#3o{k?meXwjf$Rj{;*ug4@B?DSUf7-Dn*=ran_2
zr4IBmj=C_{KvRSyY*x18NA&B7$UT!E@nWpZ-xz1H9W6}=d23s+CL%MYckeAnq2;k$
zwgW$HZp9J0!&go_4Ca`{JF1`C#&_0!VL^+(qc%TNxX_#xd=QKkN)VSBRk9sxc&yyIF(nh<
zF6Ny)D47UM(yX09HGXuFv@RL*JNojC?Ro^U_6yEWAJ3);M$U-N$8z6MmDEhZC(Ag)
z)W>A|oSBZln$33nAbY7R{!3A|wzB&@tKZp2r4#SIF;Ao;?M9jCkaqk9QR|CI5Uzhy
zQ~dfXxnPBzG=r!b$8q17nAxDpuzBya&5T`h*->Pwd{8&NU4LO}*9V`j{@5D@$iBFE
z_TICk>RP5<8|`+tdBTP$Sq)q#kt0NwXZj#b;n(N2;2UWB&PznoN29Sj5s{p{vJp82
zC3v1#T?YQgMsBL?2D}q$C3O(f%Wf_e6=PLHn0%t#4MTS2mw{XO(A`zny@6eK6183s
z;65wCEQsR(coCtroq!o9E%FNtanYkp-9fvQ1O
z825RNBT}jEb$sP{})DDs{!wCsOhK
zd7^H8-sDTnAoA6j8&Iy&mX`;IQCMF|DZ?1pU5*@VPUQC)B++yj`mQ
ziPpI@VnPEyms?gOXv2&bx|k{ovv);bG15JJ_0+nijLuG_bI-_}D?l}dzOhphtummq
z=a7MAclrCrDryQUr*Jq7{qdl4TLA|
zXHyczl39+{B8u|ncLibxL~vW3dRcLfB15)rvx+D9LjFf;l5Q~tgdsRM2a}Qq)@gq4
zFLB=>Ye=r_dDsKa7j*R^{p93_?Jjv%mf3mdBWyXGancg@YC7p;y;Y+6FzY;8aiNLo
zhki3+ojDJmJ}r^|j6A&~`_sE|B*F$9H(MsFB%-Z92k7XOFmsp@?VwWhKqnMcMd$3v
z$v)7iIBsk87f?|UOBrIEM#^S6a!k-
zv3iYL@N3Ez_q`ASpuefJ$o5h!x!7rjxeawbU?#Oem`;e0np?$JBY>9fh7$A6BB-#9
ziqwK+M*KJsz$U6Jg2fiH`CeEgA!7|jil`$*I#W;iZIy&nOYqx_Uva-avl4n5Yuwc*
zPKSbq)cu&)gIG@|)HK^|Yv!kfJm_$;>3LYulUT)Klx%I6lb)5RDLy+v`F($Bn1`pO
zKKQ5Fl)2{^Jjbk#i`kxzyeh`wlb}6-j@q-mCG&u}6;IoG3R;1%;~gI;SUdl`+Yd4;
z&`04FNaqMG`71Sn&_xh4$YaQ}NH
zZYCM;ltk4rJJPnG{;*d0yTsOCT5p_jnICn85u*tr$VZHQb8ZgFN_pxYn;YM7XH!o8
z$W5qc;E}yOVAUIMJ5D?GkWc%0wSk%kABnaXHLXFQkJVV-pnhlj_rumHQx}_COEa)^
zRA-!yon4VL(F?>!SEA2jbQv&H#Aonub}8C!uGESah5olecn83`ZoFySqnB=Opj+F
zh632oZ$|do$YVM!4F_OSph+=8(BvGjI*LSACaZ`RnXsD;Dg>wETH{r^|Ngd(s#a(o
zZuJ@eV7ulMVrDby>%}(fEL%r0_u7=-UP`6uUm`C_36CsXXFc@jUT~YOmseN&KY012
z>FxmD4`onR5n)GH7|_|t-56J6O;vSzb%6LNF5biu**k+RrvKI;LYYakt3Qg*^A?$#
zBN%925cU~Os56O!X{4DyHdU$mweJZ1>HuyZ${&@tksL^ELKtsxI>IH-GLrdPkiB}^
ziZ(%qbA;T6i1>LqgICSgO9S%*{edL7Yd+ap*}S#HTv(QI9Zn#fQA_Y%rt`^?&F+*p
zynAP_^wB!uLO=276xGVLfCO5gQz>PMWkh=$e#eKe1}in&H3N>?Hv$Z
zJ*7?g5pE}##3E+&s)!(g&Oq3LSFM^92v=Yje&*UWD)%VBXl*BU0~iuo9OxTR12BB8
zy+VF4jdqP6e8g1-vdbD?H~okzRid7C!InvC_B>hy47dQXxzlB`TjdM)fE7-MA=w@U
zA0=g`>Z99~><^@`j`L`H*~_;8A7>@pcoUGAq(C5u)~6oj$@bYq{bwOL8gk)=S_z10
zp}w+(C0YdY#B?PzYgVGb6F}$w0mty?rFGS3-R;RW%-<%=-&WEYnO~1hi0m!!!k#)a
z`C8LMJhsTG|CWX^`nI&`gO49`
z-nf6m7xC=zMyUeaexyA#bpG|gGhk>|c4{OH6m*cj5yGsP(Uhyq;t=Kqui%HoXM33=
zUvwq#KYt#iqZ<|e=0UnEziS4BAoj{*w{f}6K)B8L*~heJtLTHfVSN&9-PD^RgAN)W
ze;DpsfAZvW%2lU`yQ9QrhIKB<%IF5P#1h^(L@haBpEIA$;cZJ}JO5?;>ia&GO~9;y
z5Pn7q!+gU-H+C9TesJ>_zvA1VsO4IgXU0TjH$JtCJ-OU3sC1Xe`Hd48R{p*8IDw|e
zC9oRrD!G}0-CZ+EC(<^d3iWTEI0zz7ZesMYf{M@iC56`rx%a12HIb^wpaHNbM^Yfr
zz|%ZEMcqWw_g5FEuXMi3hcAtKXDbIi{y}Zf*NrWc(@9$Sn8x?hi9!<*$OfKE&y0g$
z_OM2_N^FxfwYid*bcUsClfN#PHdS)H>uu60F)1ty&HmB&)3$cB
z!i8SZL*+-9>RDQAU0A%3!(5oXPBpV`m1FiE&>z_m$RwM;yZl4((uC%%l|Gig-NiL^
zlfyd7ws%5Lhjb{^2L3ov?||J+1l*t+Xm2KKpri~n)rn>kkyaN>se0hM5}QbqZT(CY
zYx6Zxo^F30(r9mY9QEhsvu?*4A5Ql&vZTNlD4qC_-48!PEPAR=+sMT~`Z}!S`<6$_
zaa+~fw=X&pN@k6$*y+zNUvKq8(nt)eXYevSUMl<|!84R0SU$~1zVkts9wc(VTziY(YSd<0XQkKJh5o&_@fl(z
z2B|f4CG*Q0N~IL?CsZZ@ica12mTie0E&dSucoQowci2Ykt_>-)+2#UwyqunE#6OLC
ze2@3JJU(t9XYU8?l9iJ-Q(42x#ageAFAdAXuO*>zkW`Sp9?|n#fF~c*S4yIc?B~IQc`YG$$I!p
zl$msV=18muXR08VEX0;8V#?Ul6IV<+7vDRP71UfkVfjNl*_k)Pi6$GsPL)};%+WI=
z*WP+1Vz6I(yd^#~?2C*7DUw_ynQxMe**rJMF93H0{||
z)=kNaLTdX?f|d{;Wr4*5-bsT5H!#GBSIfM2L{c4e^-eap!5Z<)3^UMlC)_}wXuwn{
zSPbSaU8~16)T5coemn<~0Wh`9PEoSEj`DkZMKpCe3tHUIp)>w6%OExj=AoJ55a}m+OHyaJ+8c~f2sqfEnoozIV
zr)#(0lE}2=`?iFJV81TQLOw$5CnQXSMdC{w-^0kpdMW!b8-rSb4dMqp%TCMH#qB*y
zMS0(d3_wUpi;tG9ET^>1jdV4w;R#iN`c^DtbVK#x
z4?Uc*gW7H{^{weJO=^u}1FV~hNn>m)3RZz_%R0x+ox0$3}XS(F>mF4BbpEP4r_2VUyU@&l~GuAU9I{Z!OKTbBH
zoFADk@&}*>ArthCH!VLXZQ=lF8q!g7c`dCi*<~FkNxF|BrK9TH);gTXcag120_|P~
zq#&!tfd*-*1m46|IHII=B-T>RHFp=OX5+q{n$A&JGq*R1)P~0!N63(~B_uUe*FHy(
z8u7{{j{+-bT3d5^>mO{UdasArUhUQ0wo>mOOw`8;Wb@##3$!4Jy53S(kUc3wS234SQ_rNn2dqLPMqR1kkuEl(TSmaxw;@Ibm64Zd
zOpwQ`knpQlV0%r5D)MZ1i+kf}XNiF8zT&4;Ocrrcd)yX)(3D>K(*I|`tgZuY4V!#<$vH)EwbinFS1-BSu&;X$o8
z+4FNLS=Z(=DH5KWJfSu~7x~hC{V5S0!;7uR1u<8kl0T0CdXvW0jo>@YxzE~Rv{NZu-9-_xv+v$JcENOGT3QnR!1aYZIz@m3u+dJ^r~hW-;i)CLyrhX*XM
zkMTN;7RbamVjB=Pe2-q9J3f_aS=c3|C}DfBD~6GuDL75!O_f17BNt3UhxXN37;m;Z
z)wh+|ajq1Mr1xi=8AzfPsfGL9LtDvunNa%?1hQI3Awwg@ULi+b;7t6(*iwTJfu~AlvCKE9yBT`RUh>X9t
zWU-@T(PGEKieneTd3x}AG#r|yWcMfJDZbOuB1;7y*{k8t^K|Jg_}iOhh_k9PL(B3J
zQSQOnr{1@awl^^Nx_;VRYr2PvlQ#1vZz|-ZLPs5&T|)@eMuwjNTJ9;klLFk`%Ck`d
ze<|+JPnwGHv{$+W=7BdD^E%M%@dub!XBDaP=7Ne1QrZ@cl_hDyhTIpxcbY&DJ&@e4
zI?lfZ6X}1
zg7LqG{n=!A00O1)z^ZY3fLI-DY8Tw!HqdX7W0MAEl&$$|
z#TN1L-C%0r7y4thMP!B0NXcj4VZ|~g5et1KtYC~**I-7O+kM>(7>k?zEmG?V?B|u>
z$0f|#(ld&r;A0cE2)+=KGC>`l{zq(X0G)9cE=Q>l5Jx&=uIA^y64TD-`u;YhfSE^I
zHJ*($d3hZsgYc94O;suDbR;7F-=bf_B|mMUnQsXTpR&@*(o{!2hQ=$aH2%76dXp3P
zA_bEZ;IZav(z0bPL?jjMfS$o^({3_aN2d?(`=7{M7jdQ*!B!@=$*3sQ7-4bA?%N8Y
zl+>@V+_OtE8v-FRtjB||?z?YgMDCjCISTdzYK&j`Ja70mPn0~*!^Pix(153{^SXZM
z^P-K0!T7W!@s6j($%B^1z|6D#Ez`2fpr5-ug{p62{w1=0HTd$wKOvIia{K=hIlczp
zX7V}jF9!_on!wD|3swAo=DWH+-BRHZKHe&A#70?-=EH6~qfkOsajP@hyr+duoHNzb~{UOU21oTCCdqP<1CSB}C?v{yL3EaMD9huPXl^=e)$u#{Gx{lj0}xxNO?l9f+0+EJCrz|b-a6V
zPotLV2ke2uUVKHN@G?3>TQBwP5pE7I_7y94ozycSl7bEC*KUpNySn^ua
z7Ep|Tiq%9ru}otcx9ck|0i-&QrxK|1K2+wtEFyns*`)_!fQhfEg`Sbj0Z8xj(!@%O
zQU{V^zNZVFhqH`L@*h{XHM10mj>A^1^6!*W0mEJ~%@K0*VX~@|-P?HAAETb5t+mcLYDj+2|D{~72XJFHZm5UcE
z&dWZ9R(Np`#3dV^BX{508*lx3ZjF@Xsl~nfCLLnqvRm(F#?8%)BAspQml24?^i7Fc@J}_u~cx#Ts
zg?bSkxu1gpNG$sM@0+c6u2EvUVF+34+sobe*cxw(vh5#(k)jvaTOvDIhL)Q8((1UG
zxrtp%N8+9{t2}RH@U^Hf=jp5ynx&+CU=;b(JYf)Op7i0!y9-m{c^e>+%~O-l`Q-;tyr?hqC^X>a%VD%A%@
z$v1>%J^U5q)>?*rK1Z+f^%^tu#bbL$GL~w6lKt~{cm7?Dq{`yP#82gh{}Lq*j9G$$
zr=>rCC9QzYk)qbVKFHgBskSCZ>^qS!bF=1ou<8o4h-A%*Hxkj^41HR4jwetfUNW7=
zQe2ZtpNDGIdMf<*{r5)wX=Pz+3A=E8sB)0sx_;t8ha{5eCz8pZ7M|bFnjd525_u%i
z+LPRc2|o1=Tpjz7z-}7FMHO&C)A)#zt_l`!4xUj9c0GImTJ8v5KCm_VmMf<+?r$4L
z^MNzKW>K@WBhM-qzqw;2NYC3)QWPFJyZSq^GcR0g;5d0#M<|-l2X8UOC8`xhCB8jk
z(fvpiDK++Z1iJ(yVo&VEy=AYHvJY*Ao?VEqOHbR&*QY{x32cRL7XtLE*a|goHv2X-
zPEQJ)HFo7VQg*JhF|wRBF9MyOrtLdDqbP|M>IeV?G4!7UshG3f+)T@sJaMT49$x|0
zzeBWQb!s)+8*M00&J^qNsNDDX%xtp#^a@{r{QLiyr<=5XJ_*y0xPpiyd=$oXG6!E(
zb>#0Y>k#8X2}q+5jd7Ks%FWa=x&xYC)U~oOJ9p)4-||?!n_9>NUM7aB4Kui=@x^?x
zyqLQQ#7veFqy9*NDoN=@8Sf5%xkr*hmW!a&48G|x;XUZWm(c&-@mbf-fI(|6{6=Hq
zIji<~krVMNz+b&mzg7KQH-w#?WdVcG(z>nn>R|_Uwh2?QjOQgLOKrWp_WmZHAojd{
zDd2pcwPa!zs*Kx*Xe|C=cZp)%4oRP##?L=aVOnGNptz~M+klK+Ku$awsJHQ9zG5Vm
zi}XD|87vb5xg;(NV{kQa)EJ~x!q3kDKd@%o{0ib%YY%fDDH76ggh#$M{M99Mm*o8G
zQP!0gbHl{t@4v|n&9Gbw!}GbuV&<4N8U1N^#`vZfr{H%l9vo-_?Vn6o4+$l~jpjnU5-|
z4oi4dh2sJH9%)0aAs|Kr6&W3FMru7zI6O~To*fpYX`hZwR!V$7W
zf9d&AIP7OBQd5=1m(lG(xAKX}4h$;Xft&!&XZK4(JhT12-jQut4zZuN5%)QErb#r;
z-9E8jfKWAd?kCR60^H(r=B||(~7EA5Kqtp5_VuG%!|J7T7uS?1+?Z<*psW}j9H
zrh>=P?UfN`^0tg4GoQq})_;p+`G8{Abfp4`TW6RLyEsCRO5vv3v`xGQ0l5Bt+k_zH
zhx%z0L0qc}i9>jG)mcu>ApP2$tqcUBJ;X)~Nhx9JaW_Vh0I2ZQgAzj8hU*x{OSuq=0T1x-=4f^6IPQ%`rE*1|1X?L$h?EaBlo9cmRGzv4^HB!M03~LL&E~O}?x9S2y;*wcU(OB+W5gau)|I?(v_c!yovRgz9lqi
zW7R>moly9ttWr^LzZ7VzGhsT)dAVoFT4ckM3V6%%#u8IxS!lw?y~PH&{Q=(KQ+-$?
z%sE#Kw;}Cu`9ASc5Gx&bv3?MJQ-S)2k|zuyAm)>qmbL>inXYx?Sw(oL02P==5|cO$
zzsd6Ui!=P;l{>Wwg0{%`eH!~|WMT_b4)G8Yam5iEHfjs_g2qjXNi?adAN`pkohRBR
zf9O5g=3_fxTfU(@#B=C(CT;lH%q2I9OKhVOTFg~>H<-AHiyi)5(&pITgweKO*RqW`
ziErPdcE_}wpGlO7MX0{k>8
z@hUWF6E|vZh$h4=Px1qufez|)g#c|)CHhi7+%~fqw$eoZg5v1t&a@BLxTa4=>Oq5B
zBtI=*x{(VS+?uXI;Ms6MSse43#_v1N!cxPW$^!#-<-z=URAJx9pEpQoQ?%7f5+ei`
zp=-ytC1P!^ZUMy5Vg`32k^!(dR4#uW3plpdj>=_GgcpEfzLU47E|CQcOvI1BSsa{u
z;3fl%s*Pb9<)M-@+B*?NPV+FBtuuqaQiXfM_nDs~UHtP|^!4{i-tx_IX#)SGxj)eA
zO8u^&evRkkB2DHs$FXJH{%nKs?$n_H&7$h~a5Wm){RrAxG%4gCrnJ8FxRlC>99?0q
z<7kE!V(ekIm{xO(Y!zDC2F`p2Bk?FKX4Z4}Y@~D?HBdG@ZxI#Up#(V$ue37Q5BqO4
z&w$iwp7|NwF3J0
z;e$_fggyE5(88r9Iout^ZVZ;wqejJGcS2i9$#V}Rc%iMqEz0Z7?3j=i+
zF+(Z)6o=3qEk2%VBn{i+)|iY%B5N^ml+Z)BJn5i@r#Xk%QX!3I&*A%`WXbPS85-%)
zDo&~8I5x+^JXcG-Th>MK1Hsb3t#EjxQ0RfsyAM&Bcj&v^z4(MF5q084sKwqt+x}Wl
z_3Pz@kTCdTF@`AKulluUcDDjh;^wleMn=Is)%z4*OAjjD7Yjft?%(?Ti?ib5!S1-y
zLcO5=dl}4L^pX?1sjMk6a2*2zVMb%(6%t99c>;OJLbhvkYbF1Du(`f)z^%vPM_Rl`
zQ54@Hp!b%ldax|!byc%Kfk-p`y6DinR_s`wTWh*fe3sQu{nTG65V1{No8!o7%>i;7
z&+SxsAR5(jaB^x0Ej)sk0;HH#!Ff>W_%e|o)FZ%cZ*=&maaW$FH7=mOhwO1nWigg2BRlv05am*>l$ulnXXqBApP^62OVlQ
zXA@;0Et7Td60bMKOO@vrG+=wc=52L)L$hXQa{pizEJna75iI%W0TwQ-&`X&+xMq^r
zW)l(H^o?`TVesjO_3x^O*~;-hew&w%Md|(?oNq|yFgQT-4C7A?ZjKVtWZ#fXbBIGyb?_J;OpiBF^3ByL_CwSKK*24kXnd=1Gtwz86hm
zz?vV1vGT-P2tt)4+7=E+9=~@-;X}VA91-laj+mSioYhjhVF}V~qhk_Vvp8i-y{r(F
z(B1cCicBehdx8{%aK1uq2w0@}y@80a+8n3i3|WRyLXw03@B-RKRU+j4v;Wxd!9I8(#a(ZW@3ZHf7O@gv6X>VZ^M6BkhPy$>1
z?vH}%d#kG1^Kb7%f68V`cREdXrmzUS7yZVq{O24ptm5};!QubDp#IOs`XKo64cV;|
z)>Pr~_59q`g~Q>$v;WU7#Qzn-KQL0UXvT+`#rvhPzaL9rD&7A`3YFkKdV!7F*+|!e
zNJAg<3VApH0Nn3kB7Hei$5$`yMg4#8RrzmGW}#u_g&$Hi`Bh}33^V%d`Qj#aKtXp5
z_Ca-jdLz3EqEu{vE-FVi@NEK4*EMPcgd*Zg9Z_)|X<>sb|7Jv18Ul4E9Md-u1DwrB=(
zA|?e2yh;q#diJ2qi@^eszk4~}_9?KvY;wB|knoPAdM4#QQ-&Ucv8ePYwTCEp%-s_=
z_8W0@j53I$l)5{oOM%B0YnHu1>BiZVf~gs6tYe+dTg<1Y7c4(1VQtsvL5Nnn)}`@?{+jeRersH^m+wG%$4(4Vt2)PgBxJ>R
zDoRz$YJ%PsWrlRe<$zA$PXIEMtkP+g`UNz2W-_6>(oUs(BR^?&4%$>iMY7XXRBqiF
z8El@;MyU|i78Rz9hY6mJq02VT>5p90g?Q3c;;aJWa%&KiJ6Sxd`kn4BY1&nxuQA>j
z+(2ZnefvXO_
z6(?*;IvD|&O3EqvT6HLJH+>8T#EFK{fja4j=G6o}<=2;MBfbIFf=!tL_BDe8UG9nN
zq3ezG{~vR29TZ0Zt$Pmc2_9Sr8zi_p3=A^Jz~B%(xH}|BfZ#GX2?QD3-2=fj*Z@HT
z1PL0P03mtYS9M?2t9`Y5cdPd8{@c~n)zw{Hea`v5^Zm+sIe)^Syfm>CmA(Ke2%mi(
z;wh)RdrkBM9-Z1mIZMVUlx5368w+pF@y9zzWQ;F0vbr!*YsX_`&!%EEo#J<0YXIlP
zvTKV1kOWo(_cKwC^UME0wrl)%nqGcBhuSc%BvFk?{ARcxTK;rp|L)8nCAMakDC^8u
zBy9PLy0HcniRk>2<>;9vzNrUYU%I_E<~zK0JU$RO-&Nbpu#&2IedVUFY`253@Xd*S
zx@ERe@hZ|(%1@1Kur03RPKu}?m8?d!yi|>kixYz0WPfz62(@3s`W#s~u5su0Nom8!_D9JS-WrolL7?^7r}WJLdLF
zpJ}x%oWlw-?uJJ>ZJ(8!K&#a@=YW?yE-s`FE$PIRI0mJH8)l`E>NA2MazDxDTweJf
zR$ZwjNgK|bh6j1ZfH-O+rb5#7HRizLwE*o0pBP^>Ab0GM~r`^Em^HQ0cIEzm=%qPlouuPHA>>9L=U&0ug;S?%)#i72u4hBWmL9F%m$ugg
z;yN?B#1C{;gL1uRBqJ6Pnx?{dPKFJ1G<2w$
z$1tU~L73>m1c~rOTBmz22?b1C7rme8JwI);uC|la53OTV!rquD@ILpC?9nd&RM)E6
zq@6!K*6WXiQ3!B-dgzMF(Ffge#0r1yjBP3Q!?>!pS^kq2tU4ORm=kz@_db9Akq|l2
zY&vFOT|HawIL2daHq59tX!$IA?Nw%n*52X1m)z&TLW{(b0UjWr;7F!WfxO^ZzyXO*
z!lb)d=BdN55?7R&K1`bb$9Y6;Zhj)0PU<*nPh9z$L0-5!Zs@~R#*I?oDR^Jn+(b2W
zvI|H_BGsQc^ZUHNp)(39@H3I%sK9WB&Du$@h2*`U_p{4h_NxBr7N_zgCUTXKb<_gV
z=`EK=#UC~_R%FwJg0AxM05c+jx*0OB#%mnDlMq?1D?JMoQPrlwQ^a9fU32buyZKau
znD&f#ci475Kk;fobpD*Z6-B{DuHZmSuERX0J)R0%9$&DfO
zQjFH^vqttFS8E}!(NQ#uPe=hHyoPqK*sK`9S7(FI8Yw1}r
zeUrQGoJgB=$dOABSW7=BuM#Z@Wj<%r5UPy!wPzdq;xu39wXyo9^VDNSNv4}N#M(Y*
z)tseGkuXUeBdRv0Pv#TfnB|cL{BklSPVl0R6=(KYh{O26ey`;cJ_vC
z0)t{14yz1J84BN`kIH$N_b=U2iqVFYYNM~)!?7|7Ei3Smb|c|#(?VoM2O^ulB9|13vH7{{6{%FlKH`3tT$LbK{IbpXfb2*zYJ&zoMu?Z6}
z=HSDXG&JzQ(HMqCwx#U!xVCRV7N(r&gTcVH+BPoMB%%)v4N}2p~jQ6q|AC%mF9jm
zCw4>`_WV?pve%Sm3xzBv+{RpIgg3~n9xMBqaQLxI+gLlUo2!Yxpy2T23hv@T1{ga-
z#|{%AryC|NFG*(-Pr%#jnk%IkRa?C%vIs(tW%IYLI?uBtR+}LbPec9S>s)z-2{HL3
z7O9-Gfb>-Vz2fBfF0C9>yR-erh4%H0J8^0ow@N~XfVnA1L^zqSKjyk%ROh;kEW5?znhcT&gn-
zJivc7qIBMAeDr=WfG8w~SNwOnYRITgn)V7^F24kqmm++|gTRg!HYHty=t>C^)qL;Q`V=dKG@J*3Ri0!u>ueCJiLc<=QX%nw0f`NPjZail6GV^%s8`Rsd6t`HX;v6c^-6I*J|0mH!pG!3axIxu~R
zRE*IsN6V=}Bx>wgc{%>!0kmYrBHZ2MxKxB_1vD&7-&FnwrdSY*6$&FBhX|mQDw9m)
zx=V@K^dYi)en{3^lDRW`hhpxM^K1Q60sxP0%v;_Pwv8%RR~NXC3YgBj5kEM0Bc!w1^W|hL
zht(-flnzJHAng${Qjm5KKiZID2UE`c2pm{#->I7M2JOdBYfV}>e&@nLqx*4lzAE^
zh8FY#5|T)m&uV-aZ>Y;d+9b@q>*TSdJxR&|SegNhrSf!YU`qcDFu{i7v|lCr_Ph{l
zR7bmaABZDKIAnAU?h!~z)%rTAk!gQVI+*z*3{UzDr~S+FdOT#XcRCq@;w0DMT4MA)
zdh>rSn*N8Zsx|Tt&=)Irh{N#@(7Dq4bR_g2>i_db@xS-CJJtGYZ(QAPaE{y$JWob<
z9407!$CSKPO_ZHYZmJk|n-a-bjJz)-gRE!7v+dC=)`#ZVnlB_H!sv!xDCU*&X#1OUq2-`;6HGSGT{J
zeENy}S>hrbs1h_TDe1TYB9F!w-?K5K07Hjm@j02<9RJRK7(JoC#$vmwlii_R?{(cH
z;OJ^hSzi+tsP<4_sjb1nQ|4v#NFX(l$`ix^sES2k*G3ZgI)?HN&7J4~J%>lf@pO3_
zb!~`8`lM|a!3oJx*=Z&|#Uoke0|r)2`RXo_5&4;)c&V1+^BwVJ1wfSti@J1a6kO7~
zJmjUH4ff=B$6m7Ru1>wnsby>K%_xSHW%!y3byb
z?5uHgJUt@fFa#tKQew`m--HH#!^G?=oRUKOx!Q6^Ktw8Jzr2J5G^fjxedn0d2NwQd8x^fmX!gqM#p3r`1qyK{Nm%aKg{+PFHVl?F+94eQFV%6xV8UMrnjLqiKIb{vir)93UjWg)5%@*inIhL>D5Ofm
zNGv5pN}cY*Y~?I1CFk&iGbARUdBgaavvq(1SgqxM&!t>a7iKVuV
zp1=S2kfF47&=+}5ZDSr~!nPo-gBv#W?E-7GTxJ?;)0FjtJV7yj@Ipa#pReB|XZG}@
zc6$XM60NLLTZSTw`Y;nv^z~|26OQXp9R+l#Gy>3s{5m(ZJJ*l2KDZ^Ft9=%7YRD|B
z<-kbGW@~DnP#g
zdH`me>NKTwfug|x9Ki+?#eyx&8uw!Te%?5~Y@$wM?;n0s=W(ZQ
zmuZd-j?jms(mA3Bc7-TLhOva_Lw**46Ek9F6?TaJ^2;r^)5&b9D!P;S?v_
z>gA^$Y`gM=iJu6^e4Xi`UzUs?vf5nxhYxscI(m4l0!|DBh&qejS2$`WaZmuHMl}S!
zLM1UzHm-ecO9!;TouBr7&g6nYL_}?G7?`KWCj!Ob(NxWhDm*
z;AhS}^ye1k#29gN-7Elo-3yBnduy?J$7v)cdHCi~nl~f%wPkhR&&=!5MXeRC>CK5Pv*PY0s-}*0TpNXfdt!g=($Bj$
zwX}bC^J|V`9Gn$CY|6=VB&3K^LlsaH)Pqzg1{RcF+%&H0o@NiV*ArDpy;~ZM>Q52e
zw69Us^c{H-RaTRmO#2iiY$u<$C;Tl}?R8mgMM||xbjc+DkQ$~#k@2#;j#1d~#%;qz
z>9nA!s{!4J%+#dI9Ml!783E?5pBsOjrdZOA3&`9y$`x5)PWUXz68Q4ey~b6}=cqkX
zKBZZ!GcT5WE-o19#ZQtRMy>eBR(12`+Y#`EVH)U
zY5X66LbIsIsBwzK5vwrYYyWJ;wxp*N#|YBT35FY#D=fgP`K4etbZYn$o&
zy098%<`UCD`u@nsQC1j0&o7maEzu_Dq-LCpSx>$4U4=Tuqx?mOb8JFfrExJ_hXwGS
z;1!~}2eY47L`aY2ixy?7^?B1zxz|O)^Hk}1V5QLH_Ds_bclNV7-VhG!LdBPn|%>Iah@Apr=3VZM95X=GAIqCGM#m*_yhY2tqvyzn^&h8?Vm26Ru8V(w452
z4C*#m4@^wb+&JnJS>}MxrJ#-lWtAhb8uWcu+E~fyc*rKWA)P0YO)Z>344ZZOJBJQm
zBN;&j_Y9wAy1RP=k7tMc3WrN&%2TUee~pZgQBV5RmFAh{7VQXMRLQ`rAW&pYxDSs|
zHLKbQlHO1(8!LLUN>@^;I#NTQnMfyIl@*H2FVx>ZGH(3hKn#R@XEXXRq*3va4E%R|
z*B&z@mkYv@@3UnQ@9Mjn{aTFKLWr-vXNRhE5sZyS6L(%3uUr6w67gZ;~I~EV(JyPlP|)D9yX7G{;jJ0{?xRlvz16LWVsvuSozCyWNo1&!Sj4%V
zN$1v4r7hITP_)m1%xFqcpBcn8AS_zPiNFQNT
zu@MrIA)tle_0gNm2)IYW(m1&Es1wtL^$IZspRin^B^^&mtvyA?TkVONKPe5`tk(MU
zWlJPX^fFseXO8n6(05d=M&GYarIdXoZ
zrTUg^I`Cp9^-#gRyalxeChAu?^1a7SK-kx(Dk!Np#PV~3&Ti&m2dD_s)RG^{EWAc~
zX?Kjf`Lb_&tkcJKo2!{?nUW>zXJOTqv!iCl?t=M1?5S%x*c;>;uss-&g=GJw9#E;0
z6Aq{%<=1!@t5Ez`8nON&f?gx(AyjEdJG+c7Fo|_yzBZGC?X`S^R!s@YNcqAEWSs+z
zk{ZRCeV_R23!}EHlFKEPeYmp!N^@!=;ouA_#^VPue6fSxRI{Y4exwSU*>D-=PEg#R
z~E#VFbbjFtn_t
zd-Wa=)^|aa%=GO-4rfh)rLqgtV`3-3@Z#b@x>FNbj~VfNx;7`?Yk2=4^ob~M_V>*}
zcB^T!1%MCdS^Gns>Hj04?f-Qi{eSF!{^vI8|6x7#e>%{G86nsA?(gb-@^nvx0;9Xd
z-Q88&O3N<_SaQ4Yxdv#=l(qd;JH$*{O~|t}j+8(Wol=E~-@U8@196L2uvUcNo<@s5
z$~2HwimuyMK-d6*35uiiD*5p{_H7+)A9L`B2h__LL_ql#tht;vXZWpxkfUy|V7Zf@
zh8Tu|dl$k7=GhO%q%JPG-=ON(HPs^aUX>2yBcy`374Nuo%O6IG9(lCAB#x0zdsTgr^uTdFD|
zhE>xN={o9Es_H3Wx^e0})eBOunYD#x4Gb&~l@ugL=!$ByPIe@6gW5kQCyxf&#j%-_
zj5_`h?Tk=!srz*+tN*<)|8lTrl})L}&_tSu3=d%x^NcwUGaNgO+BPN$kU{xz?8Par
z%btcYU$MOa4Swfb)9?nAE;nBoU-#7)m3ept(d1lKXN*Jph^a9$-oLn
ze~+D5k>UMqW9|y|HsVG!MUY}jHDFG`Ea6l|`tA3xy7zJsBVy}M&@sK@5iF~+aVX7j
zfkQ2_1}k@8LxB6B{l;5#i^sX)*CHYrd;J5v2_^&$vY%7635eyR;x81@RaAvZhYWP7
zwz$wv6=ejIyOS={s;3~x^ZL*WAV~xvCTcuAE%XFr(x|%-i>+1I7xUVrOhlP+EUYvl
zXO%ays^&c7=?Rva1kJu6l^lH={=VrbuhZEyUdeVs=3}{~T{ikKFV7k2b&YywETNkc
zh06^8p(EmMDR3pQH@z&$|BS^D1UG;bxtF(Q+L>TUJ`eXJaX4sP}`iea+Xf0aOG
z7XwU+D0dkC`1vLmKStnTys?-~F3I@dJnc);ggaqjiE5!{v
z_+UMusaA`1rAa}8Y@2pon#vK8fhgJlj
zoU0%G=If7sSmEvV~`W-sd%82xN)X7lC5$8|-nG>U``VW3>v_#4x2f7*=
ze|b$!LRuhq5{?@9xke!#xsF>=Q%RY;emDFU?t;gQT^0k*-Z*@ZdQ3Jf5I0Jrc%Fu_
z;;UV}5)*cLJS+@+QpSB*tIsR0qFfUC8f_PU9-K5e2(!=~*RM4ZT4S);+L%Ao#j#U(
zuqi_x9B)08D!XLBg$P`r^B~#*#{3uX
zGsuR#?H*4h?QDEf6V?E@t%}e_(+s1SY9`o6T
zJjIVrHMag#6$X}W2@r$;=mL?1xB(wdvbfiIC)+;2R>$=P#}7DSxXeDq@vnc6s#FP1
zzsjvH`7%2}Fsq$XRQ^G|28{Xb_zk!b#DW61R_D@JDa?yzk?P?F{>O3~(?|%^+bg-cz57$3zLk
zGLIW94M+Vzo`^nml%So}2d7Lthxk^oZDo0NX$i;tZN6Gj8eOV)pqqsvxVT-Ky>aD4
zxh+e&c=YDXjrh$*^n%DUvKTbQ*es
z#=e!Fgv-|u`37V#IOq4^nshql^0+L_4H+d;>anRNX69>t)cvNN+z-=AjiYnQ=)Oh}
zgkNLCd=qI`_dl{}Tb=euZM&&+b@X({9Ob&#Rh}?)$V5&^9mUxGgem%zxhglu-S9>!
zJ*qcq`?4y}PXc6l46I`Cp5eqxVWlMT_H($5!56F#^cds9J+J0ScmyWTnJc213toTER0^CqB1@|ytos9>$MuzCrRc(5uG6d~G)K=(=;=`?4;x!(
z>*vd}@ZOS8Lr})?p*jk^?SB_X`a>&S$AN8x#@l{m=wR&|`@(SH8Y3~92%?~8iHF)7
z_^Y)WOM;Xj{2e`kt?Ze;^QTb_?L#)@-D$tS;ZqU>0#zg#FZGVa4@hXdq
z$3smxx3ORj{KP9vCMid|JfyTx5S&{G$~F0DCt-~opsF2sF`}hd!S~hiAmbmPY2wui
z@5SEz%|`#Wia?GFYSy86sF@vy+yp;+M%2mc`6t7*4QzgMte4U$Y+Cww%+w&;Cn$E;)?0j1
zD@wKef?Ep^s+>@9!9fZtF{|d!lsi?==9Tu9JayWNRs5o+Gm=?V2A;<(`*W%VgLQK&%3ip|bV3Ho#KD
zPKr=2kb8aKyKr$BGHwF$(wRVy1;#vAqH+tFAP8!X+39e&J8v27Y5y&b0dM(Xp&e5qM0DZR5Ry;$qna67<%o`Se1Adtl#lXG=a-
zmf`#o32Z3K+8RXz<5mUX2PfY3uB<@v5(s^{0=9%9tLaN(r&380gip;(L&MpttE5ml
ze$~}GviyebRQ2+gCCw?wwQR^!#90$|
z3j+AR)+GFgJ+Jml+jZNHS(xio@&jWq_NUh-tT)%pPDog0z0s*I4ldP&QMjAh{Xc-I
z>HUM@H6oRU@i;5uj6zxsV`+LfiQ=FR%i(X$;NARu2_K`>(*y!cSlh_)i}$K`4f4}E
zuPpJ4afZztKnx9SbL}DJ&M^O_UtL8ahm|;>YOW-=n|*!HO!{AXSQLA)+u3h;yQLtYnRbfD#HpKr7D|D?%!YDJvv7
z3iD&6X0*a|`}Q}KsmdSX3)&<54J6>P1l(9K7Q}axiX}2#CyESeZP*KLf|)rscW0~
zJhtLc<%Qp3cU}AUV}q_^Lov}y>C{3jw(yn!cM=@ZX=&DLtAunzf_|-M4;DpK2Z!}O
zzJhvGPvT@-_hI9kzmgrfYL3z{)zZ@Zcfh?OAtrPQTZAa3BQf`Ky!@}%&2AhAbS0B$
zC`QtiSEy7%ZT%dp6rn?lXBL83#`47(FPTh<2C{7IBOHv>Y@hqb(;@%noKPs|blZ{w
zSp8EODleFPrsM86al0V%2J8)Ic8
zHyuIW%x+F`vJoTLkwyL)XcXO&?n)QJS+ma46NXl}krQtaq@GzQLSN|6MB!n5DSwyk
zVz@^C-ln%Xa_VcVmTeUO_io;&xP{lyt}ZWQ=w!3DDUH5{
z`gOp$u+53ks;^tajK0oz1;OhEP@2jC3r~d}8M)T
zOIlWa;oLt-pdj_*vUPVS7iEeFD#zjq3Y3S8c4a2bV;68nvqgXuFV+6RRn*Q)4dC#h
zf5iUwcIiXTs)de^;_j9)xks?qxN#nK!4b~Z=J{*h0vQEU@`MG+n$)UHLWg{U3c
zqGh)c#^{ZA+a(UqdZ*d+B!b$eJ+YX5<8WgS&I4)*TmikSAQ)kZi;^_Eri6M<4ATDS
z{(5t%JS)kYH$G{ux@G^dfTdFZsEmRk&qwGtNKFT9-2U2d3Gba0g4`2cRKX%zI0Un!
z<)-P1ZwT0dqYth<5Sw_HF15az0J(Lo8C=%$AlCFoO!)2f;|Q`(Blv%%2z%o$Vdh8N
zE`{_!SR;&Uv#}G{j`Q)wa;w1ZwQ8y!rA5u+n1?d{Fu52ohP~G^HCL}I|CJ-va3G~0
zengs^^#)Hg*kN5Ur;3sdHEs&q*!PZyZf}gbtu1%Tgflbc$`C_RM;&5ZT_@fB(L3Nm
zW<|nUHcn&I1^8}InE}0knb87a(I{%&?7IOwY9Z;0G6sP}Tj~%)n2m%P>b|0Q?5lmI
zVutXAExjN^&|A!$z#kBSYj2i(&O$Ci*2BSd$cqm&!D1SL5}k+6jkOhpjnKS2B0+m!k5HQ`z*
zBHF14SBc8bq83tYlLO8~)tE6mLtY>}bwaB$aHfxf5_`L!Y3;qRk(SHtN&nW(-ACeI
z?muv^b#PRC^MFY?pkx(YWsd;}{u_AdxzHN%r|#@qu~?*Bxd%RlRi6mj@Iw<@1-@%*D2cg!0sp7w?s}3y7#<
z^sX(6M2nwoO2zUP@H+G`4oEM#(h*R_yX%)`k%M)Ia%^JMHo}zBMi=VkxFit--5vR@0IJS4U2!zfvH#kHe33LpCqeiNIA-To`XF
zUxi=68Row$NS`kgDfJu1ak!dU7z6?fgcrWEo^4j*9k6eywzc{yfR!u$rX8mI1BgnC
z10;XwX~SAN)T+bFz0~K1_vWN^yHxJ2<@V7C+jOUTn*52@KIC8e#FUykR~VOp2Q
z|9;;Osd3ax!8@Q>Gnu;b$5#vp&)#%=1|h$@#n)kE9Vp8^_Dlc+VPK%A-P3PmXK^pp
z9+FzIufumfCasQ92k4oqJ2ve+76MyckLn$4uCb?fD=FY>#edt1J5*wEL=}XY)SUZV
z#Y;|5G+5f6+s#oTQ;^s|fX`6@Ys~2wyX+ht>OUYI>MIaFHMG{!6q;kw{5R>vn0Ur*8IjL#|h@P49%<-z%6H&Xd
zHxuc+A)+Qn;9{nLB#(X!qu2NA%q;cQwYhF&EazBh7b~H)
z`}*A<5Uj66%i>p`7~`-{^oe-*ixM}AWQ$>rz{iw#2O$luJ|c-E>Z8zu!^DZ?qQgkE
zq@AXj`F>%3<@;(E?SA|s1*7~Q08-X7eV@61|3D-cER*;nZb{!O5MJ&T`rXS@u5Wq7
zgSUCl9JbGn4Eb|@gtD`b`o=E@Lool)!9kUNpGkVYc_EWkJmCzCQJ{lop$wV+S{K|A
z3x`3I1{3vHG=PkSVb+1f||FivR;kh0Yl
z9e4m4^@#Kh@87@eOAUK_$NdWbkyiG13$^4O4}q!WRYA_kvt0SMP2`>pEk
zUEn_ek8hkJtM!j1@=;$jJ7ct->}NiL?K`1%@99jRmPh&3Sc{J$>_q-%OXE>LeGz|n
zi1=02(w%6yRrHdxCiat8WZx*=82{g?g8w@y@_!N4@V^xh`9ICa|8q0te?8~lDS3yE
zjK+x|ijmt??c%bt)JfSecL-A;6qqX`=;Zcj(Z3kDxt8UMi~<$JsfX%5?&4XhPj*Z6
zvYsD%Pjp{)Up!6~fdwb*n{aGX^~-DNO3`5B>J6CARF3dj<)?PVNa*GMu6_3Nf#xj~B;$yQm7lZUG#%u|->9CzJ2=>U@
zRL3tVZCSAUq)V0KlooAY7dQoC7hXl3p`Sr2=(i}DDa-~W(B;r>H*!aqn45m%?b%dd
z&JY=6krYjfX4_dvWhqlNct;i)3;XEf`!Fu
zTdh}jAifVEeyVnvHbfZV2>>Ji2u#)~kw;hao+4s7<)B`UB?B;?RngW$n8Z>2!leRr
zH0QXX&3+*pi%OC`$yhp4(SS=v1drHZVV6c9m`lDJ-`W#l_~CW?li|PM5yBu@nB?Ok
z#Fxj-XG~eBS=>w+uw<6(>j`K>yeSHfdWEGQt6MCSi}s}>fnI>D)QX`z62TWnzHH{k
z=s)vW`$b++&R(@itP{t@Y%8}1xk~BRy3~V1&t<21bmWC9EM*Bm?+T~tTy#<7MR}X#Vac!@Zk1?1azdCc`9O!FI;V-T2wmXE=U>)k4I(j__HvUgg#
z=c=<*N*JhjIjgv+z3$$V(S_3%gXY5G4&*opM0DrMIXPQZ2fHFnelwvj)xR-l|p5kJHzEY
zN!wC;a@BQ>I5E5A;b}ZdA?ke!07lq7D`CwyAqAS_0rQ^nTSR2yS
zJqEOrj#bRa3NVAXqf-Nl#ZajDP#1Lc51{Yn`(k^w#@*jG`DaayJ9)~CndHRkxmfhs
zkc#pbv~=y#8m8?**6x#=rWH-UBXOH`Y4tHzFIL|;IE}7Nzz@P<9Vcn^Bn(}N0}&DX
zS2RQ-L}uw8q8*1?i^Fr4e~QFF=M!+Mp#2CoEStwqy8EB{-g4(nzjibj-_vg;e}0u(
z)7Vf@=tvIvNrVL?!4?62;tO9|P5R~dd=@W~i?5W+iqPQLr-3k9p3)KBKOD>*7k5tN
zY0G_xsH{XtNAnClUx(}ct^_gHM1e>ppmvr^#;_$&00=YDS6&>4R&=-B+{n$)&)d9z
zacp}s$^udroFYKW*Mu?#Z1;Hn)ovSlb{R<
z-$_{C>k7Nk1TG}9)Xy&~xLh7feVQ?X*oKyn
zc2`m3T=T98Nh%^~vMhfVC5(#b2YWO`9B#S!4~5$$!f_+SuldpAuH`Ek$*rf$5!#+7
zN0MK#pg>aFE%9p2q{i)YL|uL{uYTVr@~Gm6lBkS#s)F^Upf~uDO(23iq|C<`A9{*U
zR+Un2W(1pBcJh#_eWSVqjL&>z(Qq1I)e0?*yv>l+1bf~*h%6~7A6t#$xOhM~Y_D@%~lSix-QB
z9}s}d#dqB9Cc3+IZcXxIRKJt5JXpa7Z;f}HW9r!OFU64%oIW``ar7#sZ}QBanE-Ph
zRQtuHW$#QM*I}BluYXmXMht3e(?2Z3GAUw}yfm8L@}79DYP@bUS`kis7~Yh@GBvle
zbmODx#Wm8kl6RP#X59`WpV?3=QX-5Bx7X>*-|O?M+eXh-5TW8I|CJhO{w`oQI!1Um
zE{cf9=bmy`IR0*&9^T8amM#FPD{PQ)icbI~xahQm31%>Pz@rN+E
z5}<(E8j<=;n!2aCjOXZL=a@j}=ml=RFFF|!U_9%Xh`%{^pR9o
zC#BQDqc)!LFn~Q$Cm+W^()oyYLl6t8EScg&wO91fbV6INQcyC#YmkJgvZ!=SNoxy0
z$|Jzjz@UI&Q4XuEYC}G%Hs!eUZn&O8e$eo_Sar(p>tV<6m5+I^MI*4$69&|_dqnt7
zcpCZAG(1i_6=z8MFv|J7)#DJ{N^`n9%+?v&!277r$#{}@e`tpXzOe*mvt{f+znd^#
z&3+_1f^+}5hk!yLAGV$%uNn92%%uW$jrCATB3RN93BujbzXanCsIR>4q=#788w%xI
zn@_lxPbuSX!Wgxhi_Pq42?g%%7%#3<3OpJxf@?bsskP5_K(0remHEIUVs
z3S8D^3~5Fo0cV{&+bFdS_y?HDwq=yN46T}|zSit*?~6|I++li->|e|Q_ptr4Z^Qlv
zI5IVjjAPhNuEh)PUHu23y5e{jv@}hwf#(FWb(EW!f3h`5y8Z*i+y?{e)bIc6)4%^w
z6XhlU1B8=?qMm6#%|%<@KKTs({qF~2{nzac|53h`1@TljkJmRgr&J*u4l*4|qV4K0
z26$kDql2Nb4LiXy^&9yMSluajyp`41r3Qu;gw;q27Ua7f2e9OsVD-!t;nzmyAw0%>
zamMUYNm|du_>JZ(;Xp#9&qJQ$kFpV2a4H7^?T9?1BgmnICOKYT&aZ&T@`$oM*JXG2
zuT4F?ea(RAY~?4H1dUGkPEuJMAcF6bR?<0uu8CR<+7;q<4^@9o#yJU-4en>v1K
zh|x@U&d@6l!&Ts)UxRE=Nl7;Y=TUrYRarVNHWQ&OW#Kl89#}_<23)57oW_#pM;z6+gWK
zzBvg|X|@PGXLF^umu(ajYJNsu1C_4NZ5O{(RLL1t^Fyuj*|jg%5xyYp+a*-kZ?jjd
z9T><^%V#agn4Os>U|fiqwPT8pml?@uW9xzrstP#^tjpJUy8B|F+r~M33{6y4;j{D+
zDkZGXKt9T8z?0Y7SJX8#DQR-mwm%FdBdeWu%0BXw*>&ySof7mcUY
z;lF-4>-}uW@xHZ
z%?zG`GDY-T$nQ_s#f0$7?*~8;&+D&|WF{gV?5DRbWLTz0EDR9Svk}pPYTSi&_n`Q}
zpDA4Qn77b+7X$1Af4pBE+K|MTuCcEpnprl?73^Z?I!z`#VmO%sNXwb7I*h=Eo@RHU&?fjk5^SoAH
zL^v$S%K{g9s%r`sjB6Is!*z!9#-4qDcK%vq+uYb4^xjlW3GXR{ZY1@Y;g}G&APl{oG
zqF#d={I)f?W~JFn+cm(-FshF*3=)L~HhI1r&RxFt8
zJPT;=aliTd>Tw=>{j=Iwav$t48
zK^Wqj7$@xO&9d{Zf$fhZtNV$|GuZzxBbl{n`
zBs{=wW~H2tLD-ABXeUnY>RZs&7vT$i2nv;3Qc(%ehhzDf1lYVF_nA1#V2%p?DiyTj
zdDY&*(i;e0nRd{Vc^txQ!>3*#$N$ZbRtZ+dxuze9WsPv))DX5qY;`q*si^7DS8DoFH`f-4$K7Fk($&){SQrO-jOaX@
z7I=XbF)E*^y-9-q@*&iYHlcC@KSiZzjt(_DI`@21rRpI_8$Bag{_DrLHnERAYWb&E
z`5%}H;#kL+0$KBBgiNpbuY=7cJ3hD(hHCum{}YW&4dX!ld9~ShG^>0Tt8xCC_l`#I
z_z*p)Fh`>EXGZ8Z`saVw#Gm}5$EE1NrtZi;8YLq;K5ZA4p?rDP7|horcR?5To4)tW
znm~myHj6PPjK4%rL*lkueH)RAwjV4q`kp{hs^^njWvdIOt#EgCayf_5e}I?9EQ+(;
zZax&)4!ticRBIF;Rgf?Kconbwtg#R$^q&h*f7VQATO&w;tx_P~po5=qt?DG%8Tanp
zK|aof+}2UWN5SfbL|Kj4(1k$Cl~_>#9vYF=9mjoe$@-b^ONV?aMB$Xv@rGR@7DkAP
zK?L%hiEle9Lie)l{qoJXXVkV)>@zkJBF0
z|51kg*DII*|G+r@>-Svy1rP!56KlJE(vyQ>Xqa(H&0e^5TG^8cR}xfS1YAUz6FQsA
znXcG-lqy%9<1#?TqO{|QCo9{MN3zF~fdQ&-=jk^oJ%FyCtQb`OI#PAh3Y93wBK`D+
z_Xi4{i8|^#4vhqYlWHA{jOpg4cv*VvDaTk}#x>>}9dVRh1B9I%uKuQ#KcxHh+&b@3
zBu#jB*nr*@mQ)1Hw^I#NIXgWO5EU}$YkLXsaBTKWxku;i_G4*WD@tU^kP5jgmAF!1S%!%qy>j|f{i*TSBY)m<=m0dCunVP9ZM~K%+A>zOL;OgW1@-gYaq6=brKaV
zC6@WcE3caM&)@z1rF|EGWD=*g9D{Lsz}J`>6^f#nXt5^v(UfK*kH((9Ex#_t9N5$-
z6}DMft1bOB0ay`vO0WvhmvE-`1IO46{lM2wJP)%9hAElE*AyrLQ5-QiR`*LoUhXe^
zWPl*Bq}fVb7+eB;b1m8AzE+>^@LMz<2YaQM27!O)qz=F72d_5p`Q?h8pR`qc6)
ze14e2q(80{66P>u@DDIyg)ZQjAv=wB=?OOe)@Hw(5&zZ5Vr*J{vH
zeF?%SkhVcj{e=i_hY3-W0heI=pR6;`G?%(`0{MmhiDqP+R)s*vame0(YwtRvn(ESS
z=tU4IK}4Dqg;10xMUhTICn59_Is`;|moB{}bWnN^y*B|1Riq;zD!rHh3JOuGUuM>t
zSu@}J&bQuo{(SReex9?|UF)86&)N5R&e_l26|SSi!i3_bHxzio#o+c1*XP~-u0N70
ze3^{|1?aU`n%_edC7kLC9fG9vK>H&KYD$UqmY-^mEjLUNA0EjoJ|2t%8SIunaJZiR
zQLYGj@bV@FwXndv=kx?rSnk34;EE^xNDVl%YUI2O?n_r!NBz7;P&u`{GSQeN0cGq7
zAz2I_wL)&hTP)jsus@(RJ6fWJF@RGTHL9-<@d2!gGECBEsi7&%TS%_R?A_hEHQ1YW
zm{v7cB6YKWbA6QbbdbrVyZ)JlSa$T_WbT_BuJAdHa5=4EscS<48_y~YqcGU*GXBD-
z#JF(RyYjf;v`?RWB0h#M>RsgKxon^8Q_M7#m8O#ld>U!9
zT;Tf1?BYfDGsdOwB44G!8H+r|SsFNzWG+!!wOpMn=g87tmq{=8PV`=B#Mme6Y0Q14
zJMN&yLTZ72=bPy)*hn4((|bzC0MMpH5-+y2v5Cb
z@zpKMJwh$_8*(ysy)c@^w$NOua9n|MhFiY*o=Wztd{q
zzH`1E&$*mkWWmeZ%1R=70#N8Y5kGQsZTqC%p-R)F3o4{3luj7e<j2GO0Jk_tH>=V-{>dnV-**mL(2Z
zCGdev8hdmBo-aRB%cLeJul>G4OYlIS(oA7LQsv*AIEesH3LkTfSamg}7@HBR8?sM}
zemm65SiQjbAc3)#7c}>KgWXMXe8`%})$~h=f>L%)2%1yDvyc2h*SMyrfkpeX0`e~Q
z6Q}crPP3EGP%in6)j%skjl?g&THoGzR*co^&L`6&U!wH-EX$koB!_81p|wGr_@U*v
z@-j}^zl!{x|Z|U$1@sQN#PUY^eV~vF`u-2Ix0G^=-Bk#u{{^krE{rig09e
zMX~XR|Av2_T~g)Btk1gX6)GS*)lc>v8u;ymaRg7aKTmvda`hM#%Ai24|IB-%A$HJ#
zN7G#&Tlz6aGwXP5;Gx>cTl|<`18E^lJ(tn^J_9R?4B{V0J*oz)>xwO~-O}9QcWnA-
zf0ERA!M{{PT?xW;?%GyPZU~Di=xT7T80UIFtXmu&%k9_UL9EiT-!p*9sb~sR)R)zG
zOU{CLWlitg(hRGqnALWZv2}|W*Z!U*Mf!Z9l+Zu?_^RZs!DLwCff(uyaU3*G&$-n)
zuQnYugWBdY$HcD4RaqG-31@YpspqPD)9^gi9mbwpLo@4TC2^R>y^ZpR
za7h^4XzIKvNqof_lmim95`8KsH1y>L59F>C-Um76mkHgQ$DdR*qCUe7g}IDNRBRs^
zM|+co+TPkxt0C~4uPO;A?
z`vKw1Fn*i7;#4H}FmyV~)a1H)h9@~nIrqhQ^y1;g`&$|IQruphdq!VvyJ|d!nYEF!
zYLv=)=He<0U#4CbS}CgXrqUP^hVY@d573@$`rR3i1)cHk_w65}
zdIkt*^6dS4NY1U+F=$`%R}Kc@PZY)Vk34GA(@|5Ckt_
zJ(=}>8UvJZBL&_IVWQAl*nNvOwC43Rb#P2t)XJ2ZG+w%w@QsaVm-Q+6D)Np|a1}Qv
zo0LwoX@{ikK)!JjzoPO1bu<$@a1W1ON=OJ295r5dD2jgkA%fgFk#zq~nGQ%bFi9Zz(
z7Mhau?|wYBv`9t)MOB5eGL?|utXCo^)qo*CEX}%^<2(+veCI5gzaC|F$k<*h8KfH1
zX=A(NF&$Vymk~g4m;doj{EF6Wt$8!x1yjEN4lGlapJ6q-+u7wZ@hL&7+&=M{
za0g--9QgC)XQY}N;|pVyb%LnK033PAGE&?2a3vwgRECX*k5)j>gguCfW^!X4;JusP
z3L%$$dR5q^#)c*n!Tl|`NAhm1=gezvb)f9EJ<{Rk+>k3$nk%$xXEls0
zm&KxVrh|Jg8&=F(m#Q1uZV3CtUe)k7*DtOV%IYxl)b4pAb^X+#J9Xdno^m$M@Mb6j
z*z1*SS3jFd5xmK&#tL9kNpFFqC!OunxkKY)Ah}+uuTQcy^meWV%V(5UgJ#X6=U)-A
zgkV>gmXNexdB@y@3RYMaLdd@El5~1;V7)HA2h$j4+P8`+v&7yD>?ASM9~LeA1~^Q<
z=i<5Mz*<^Hrmd8sAWfGieV!*ddIMEI_ohg7Y-A(TK|a%g_w@3ZpoU@Tlq$tfb$Ky$
z`O(obNI22at#d?!PvRvM-6VRi6@a3nKC%r9oRHXpZKU~S6r2f{f(R6Qf`gNX=S)kY
zj>*UcoO86iBvy?nfUM$J*O;jN)JFb8LXZ}%tatp;e2-7>pTyALfa>2melMB(|5vU2
zeQv09
zOPaR&*n>WP~m-!nwQ?BZyFCZ-TQYGeU
ztKOnJXfw#g^_)CX@)U<3SWv#}sIgqXjffwyK4{JGq)us$yBU#;wBv>IP9EFkvi=lQ
zJkY#i0Wk{um;(&(y=bB#S
zS&k!vV!N9rA1k`cZ1}Rz*`pmU=R6IJ1UgJri*5~g8d4`+jll_kOkk$MFH^3l>l-Kd
z!{-Lqn8sf-RqE9w(LUtUIO$UdyL2Et_xg4HJcL^Y6PwABO4Ex#%*NvdRR-<`8M%V7
zYK1s{dau4%{4YoDK+jy>{qGB*zAm1lCHT_bb
zs04ZGC7z(xl`Q%Qih-xkp1&6ekgxXjn_KjfGNWiX9=g`0{q3
zL@I*Y1qR@IIj-aU;59xu&1=jIPHX@-P}Zgw1YVY-@%9Lj0I$W}IJwS1(s-7(OBE!%
zx5?ex+nGEq#LK)9%X2IMr?TW~s_tA-$5JF-Mqg1Te(m!>Mgu?bL-k~OX>2N5v{Co=}tf>lyE
z4A{)hI08gflox~P6m|0g2Ml6!`M$$jmDB*U@0jC@M95m9y2VBM&;}Q$_U-o}n+-jM
zVjm@5iALD5@|wFlA+*Abh@#-({q9%^zp1PHwTI%NYNed`SJj9tjvPB>N#_U2^WM!{8qq%_$eDMo%pE_d(glT2NHP(6_vMv6pFI*>I?@fsFjP_-k
znb(Ja@E^g&xRIqz9)QgnlJ2^Bo`B>PSVNeMY0BnG);iGL~d<4LaZfVUVl
zM~sA8eef;`6i9mI8f46DYrw&yuE1@(rUG+o562DJ6vL#j>c3OPIPpEzz=}3ruAz?n
z$y;UJ<63NH7vUG7@!YMHVO5n{mYv`;PU^%fZO5M|sMHih`)1mBqd98`EUO5s{R}iG
zehp<})$!6e`~^sse`SBiK>Yz7A1rd%LyNDZ{OPRz&pBrQO;Ly~tKAbM8RUKtstI#wPxly6Z
zw8WDX#9>>}88}HxTV*&HcB3S>S5y=;q}Foyj$Fc~=%6g=`fHxb86jGCA-c)1;`I>Y
z?c96kceBI?1tdt6AdTTA2F+=VJS%ZlC^SNjPf_itYgAonFapVLk?0I$Ese(1JJ5Qg
zwQM(7nd{&NKHn%~H&{%Y3eYyTm?5~(6r=5DAFd#cAFzJ(NAAWa$3GpmgpO1pE0+!kKN>|F%gTyR+&39CH_<~ngcc*pqDa2bQ>a%ARA_@sL}
z)J7-zY4}rnkX=pT%wP+;h0ahMx4J$*qP?@aFDIl&_*v
z4&50TIvr}5&7vQ%Fx){vq0{f;=F-zI0&p^|KRY-lpZ)?oKiCs3^LSkmh0K@p`D)?z
zPZ7qy+-iRUhbnA;0ajEBj!4pe0Y14R2#!^Kzy5Ik@_y#nMlG>
zK(7@~@dQ_1=01!uX%;{Q2Z?41}=oiYuisBiZy>VqAI0FSMNpgO?&PI>Qbc@Fb
zp9&DB6^n)(x)2jI_i}UiA|Q@d8o^BYs`a}UK`uE3IFZdXY@B1VG6{GclG*es=QO=6;ZjOn$kvB
zvWP95-nT>BUag%H7%o?GKR);v1BusTxlxXZ5G;Fkw>9A=iCcky{1Z|B$45kt6>OFHv!u!
zNr|$4hx&^J3ImdnytMmrN_V4x)rXQt{Qe=v^$SEhofak9;yHT5fFvBlH7p;kjS?jH
ztuG0#Ztm>EQdy>xRi2y4k?a$-99w?`)bNH~a+y>0fnWz4Er?E+*LT{1{HrCG0pt{X
z`~t_4HE1a*KxN+;S7Q}g!c%Pqk=k%3r9Z|ie9NY3+c^+b`^~A??|1wTUHU()bns8&Q!`kwP}aPz#J6$d0}4Q3T}>SJ
z^i{O4=c>>!D-jWRRz@eyGY{iuF>`sk~!toaM#Ih0YrLWO3B5r`*AuXs6m&wyV4|cEwd0kL^n&
znx_}9Wmx9cYq`pTG%ja?ENt)2lATBSSsJ_-cAk4WYjl-MKyY=0a{nWFe4qe|%-w0g
zWKLX}%fdLgwg{aP=`9hd0pvtX=R53Ln!AcB#}sSmPWP^_JGy<~@@J~2#Oa^KgG
z9Jn-tff84+Z{Z{8;WM50dN)0UG2apeF_=WS9+~s3qu}VQb
zDBy|QlKtYw*x#h;4s7vXz**~%6X?}*+umh*q*cB?BlRu9|UeSy}6K6RSZ!uLb2fH
z)seF}r!Ri(rH#6La$z&qH?o}<0Ao>>3Jo4t>)FK6g86OT{UcVFfU*XF%OeUBTu9`>
zZqw&#^Km$!Yl5!5dI&)a^3rMicrMor6Sb^WoVPrh`*-+|f9%uzUO+WDnc02X{i8Ma
z7a(Ql6q6K!SPjv(bbPn5e=**D?j7iMxK3D<(9q>p0^&`a>;0uDyzjq_|IPtn9mM=_
zJ2>Vtc<$}heyISJ&fz(t2y>UyjmIi4qspyYV^~&Z$2p$;aqrd
zP@LP6>v0hZnopK|Y*L}ESsc+i1ASF6`mKUyCPq(wxpR{PvEJUbY_wqd5qT17vpjQf
zh&T87`FikY_4Zlc?dH)KjmFgix|ox`0&~vO&f3;cws%#np#yzK=F8Zj`44W@X1Jdi
z7yOY=dB)7EJP(4L&HOn+{z&;#;Iif48-%^^-^Tx%0~jF;?e2A)It%#)aIpyG-0v|B
Zc~fF>)|gsA)Q`Oyb_3dg7hd{>5+5!L|5P%T?05sqR
z0v><_LI~goKp+87u3-Q$Lm>SP+aS>YL4yd=Z~$NoP=a3<1kP)i0E8m~tO4Xd%I1O3
zApqn2DFEER_3J5N?q~+1Qnhk)b9A+GbfS`yqN0bGLaiO(X$F9kor7PHgF}#0fQo}h
zkc&%@lN00u07z*FKkL4_0)RBcUv(hzr6K)-5tObe0RR;N=?^(k|JoJ=>Ob3p!1&j;
zAR_$c!HM{rH`e$c{N%wWs1@M)dG+mT6TrM~g^3gdK)Bihu&+~q`BOOE)dcVoz(hks
zLr23zN5{myiE$H`5C;*h@?Y^+<@*tZC)D>voW<@I8WA+j(3Bzj`VSg?a
z)|A?F%NB
zl|?WTxSU87+t<&ZS7j%guujZ-hx3RuSYdN!u=L2z^1}1P)4LY-$o)mtw@oi+@&+an
z2wT|X;h6rHoQ*ZnD87rgAN&OcDC_*@#C$6S?-%BL?{=k#!z^o+Dj162Ey9|3%gJfD
z%p2=qYec1v7Ar3HZR+gkGS+hU`vqPpByD_8gEy9l&fNLkwr9oK6);>lvOq%g#h#-U
zB7SL`xp#c@xG~^ZtQ&IA3zMU5e#iCuk>2-0huM2s^?j^iu;D9UBIYu9=pa^SkaHJB
zh%IJh#KHP7ARN}*?KGh^{Qe3!oH-TQz`04vdTwGEWO(r@r(#Y1;gqeN(lbv9i`A}D8A4U?gWn~{?e(5lJrUMz;h8EBj$mf@njpDAo
zI2k#ey|f&dIzKuU8(_8gI3Dk@;&}U+y|&nzXikJi4c{Jf-DqR)nLTcuATPzBqcTZv
zu5HH~yqVMDFY(>9O9mHK=OlHPiAH+dGp{KHP+r`v>L%i%818b%=y?=_EtTFQN)>kA
zCMcr)CDVvDQdvK%3LGW(#IE}02mTl=eBL4!-G^08iqLA6ZSo?=3-yr>3$4oP*yISq
zvLdS2F*Wv&18N+m8kb`Gy4`PwO+y2ECvLjtRF!tJA{vfPk3@Q5d5q+I$v8f+KCru^
z7OaiyWM4xPclI%RLYZ}a`m-SpgVV=-Vid>dP5nQpYZ
zx1AR&8tWY$YOd*pdmbI}!quOv!Vd3yZjZfi?fQuQ`DW-9kf(rkYTMB~VT8q2CsJR<
zx&76%AL>`0$oXzyRHS|M!|nGKX$#X+B29JKfr^C|XMsLnhsS^5EMEb(d(lr?O!8)=
z`Sk}pYadHBzCIGz^vru^c(bf;%P~_+sc6Ii7WQK*8!|rnnD10E&p}FeM7UwoRi0LP
z6w#+{^N{s^wt>|+Gn?0xZ2~DOIm_gaZq8kbB+D`
ze$}r@@)9uCJXiW-b&6$tbCyR=#|Q4F2@M`q`xsqb0cvN2jzxrJ)vEevhqVg0)KU|h
zmjgprKvi6<1C36k+j6z;VJv%??-z=Ztt;TA-i)rXF}-VJQvAY^+?IbX*2ou2VsO;x
z!WR{>tNuU7%qbZ~wywzdYHH-fYD`&g*(p!Ad)ivjoqA~M1?<@Xrn|5oAMR1r7ssr6
zcfN1jLhhm1xt5MgbX{(0mii`fD!Q_MdKaDJq-yh&bR?LV
zsx!n7#eg-K(w?Vrv)DCtja;v?qh`3Q>2Of2#MTT7P%OHK}sX#@;;uOP=LNtb{nL
z5M5Edhd<4Bbcj_+()wB+>WJMtZUiLl#;-SalWLe;#gX|1QL}J64SUs^2ESxqY`pvC
zi${C~Xf)u~joFdg%exV|>i!s2hmLpo-|KKb6x<-)
zvdr7w50NywBUc#z=HyFB^T~*E>gW4c0B!M@b*DR9W#lOP*gK@EtW>Bz&EtmDl*0Y>
zsl(6XbJzu*IEXWr7wUujUlF3qi}j6G^|Amzg;ffX;)zSk3uo%Q^wz2afy)SHEUFmd
zZ*#PAAACcufcmw3^R|%yA&G}e?H+Zox{#)WNp{RYD%Sbn(<(YPmWgXiWP){JKSReg1I}-yUSM(2D
zIbt!@AQ0y_M0{}1q+!BDY_<;x
zqOM%Wi_PNr2rB>Bs1i@Pm~u@d^8{RvUH68)4Ldl?G(0}KTZjfeHo$(A`lF`h3gEi}
zWSQc;9^I}=ys=s=WdDJjWce(VtL&omz|L{ccUuKq$O}xMRok9fdxQ?|Dl`>RDLuuM
z3Ww}IBAq1i4O5MY!M-9`1tV7gzvsYmV9e(80dS3XJY~z>A67cmpR9HqXn(3}lqJ$O
zd_(B8xD2nlHt<9Bi0UlSM|s<{)fFMne)07%Ov|F>GpneFcHu}AU+xC%HHd+4f_HC~
z3&Q)$KY!aw4nOU5FLqr0lBvo&b}DebJv?>=I2gWf%r(hPwY`C4_b8-ze0!6r_jX-j
z+zOJ>t7@If-J3q8b3K>tU-%f#wmB^=-=*T+_q?E;<n8}$!cCh63F7O7tX{wFIub4v<5ehJnQOM%v#J9>jLQ@y=kU_spjRgd~mi^$Jc?7~HYca(O-_!v}_6w6MEgNNX8bG3pv=F_w8;;Dak#$)E))jy51Z1I98<7>q&i^2!iCmVa;^K4z^lUc;BEP
z4*lR!Q%vRR>5Y(gW~$MQyrUmPGuB&bWb9cuif&Ur@ja^Qa@XX8bpYYbOoSDSax{f-2Vp#gJqcTzF4fr6QsfGXeu
zID#JwfC|t6V1OIo4miPC0T@odsln7W8%aAihd(63G;_DMbF+51W(nq_UsFp#^b~(;
zLkP|Skp+zYY%$(nTCC#aX6@+U3g+K|Q%X6xIs9q_*hn*%-wAa~SIF;#l#7GZp9u%I
zKNCu3cCNp3lr7ynekWw??WBJvKt2A+S`un&`G+EYY6(!6lavCbfjc+=b#p2zb4PbG
zamQJB@;b=5IQ$o!q}_j|lXNlH)N*i>rBSzo_wDZ>X=hIL@9^rbc5c^rRWCbn_21+e
z9x$kzql>hun<=~n*FvgVs=EFf6>u0%3_jsv14=N9pKSi6T20V@^6#qEfZF}UtGYnN
z_23+?!!4+bqmzym4D4KRgjzdT{!$+{JVPCnNz&2H&C%Y@(ZTYMBACB&;3E75kM#?$
zZf$Ax*NmILGC?=;0V*S+gB`gIIO2-l@RZxcLV{4q(u0eek*aE+A**eoo-96K-u{X<|t_ydz3
zpYR(4_c|c}`e6KvhUXdsANhY^u6Z7VX#hU6uKsO6T7_r-+pMeqJ9*c-fU^eM1|VFg
z;NCdk+K=^9bL`h?M1-HYaJk`l
zJ3I-%{cVVRAbs^bJu^F=}@SU~~_di`%~;*Zzh6JNZpBODRV?N0+}S7xyQBNx9z{U=cvs(E+Y&
zbT>yQ@Kx>#`|BEqVFxaT{{@R_cD;E17yM1Ii>>~Z{CdXH!z%*c)!=Xz`*98boVjp6
z`p+T!bEd*60IWkWf=`Y#@M{c$vjFf;9K??UM4;FCAFuR3Ug>|l(*Jm+|M5!ye@anow_BsDL@Om?)L7m!OxulReDMl*-HA&cRjCON9EGxgZF`(QMRI*CcMXBGlJs
zs;G1!s#H>rE-)${R$dk;2RAzvp8zWdFFQ962Qw9TR*a90orjH`mxY}}key$UlY{Dy
zKn>RBVs0U*E-m{Ya!bg)lJ3&
ztmVJ!1Xs8ZgH0Xg>getQg~@op9NcJr6*q_eF6#t(ajsix4rPPc!R$dYSFjT~eplu6
z>nPsuB7bYg@9gWIhgaYvDCGh(1^w5Wpzr!uNBy~R^7jLMe<=V1{oODTYWN9177h*;
zP65qdC;XV;-N*iu6atO|bI>vVpAkEnTU$K(Pe>sUK?Mg_H&X{FOhHUbCBV*NX37g=Vdpku=QHKDun;igp{6p23R*b2*qegm
z#M<7}62@lZ1hb^3`cs^1hZe-q98@~jU-1f3QsDNEg|!`+AumnE$1cDk0Uz#Q^Oaud|34SbUtBSCLgvlDRfC5#3Ckob2Fx>Gt6H8t@Pem9CyX)s0EuCb(;f
z2M7XpOrfq$5~`};Nq~PFKx6fAkBkV;dUw1+!bmM!ge6c40Un=58xogfiR1wn-d)F1YrUfP(To#gu|9UVffA}f!Q^T
z2yY63i>5kg`XUm6@GY~SFnlNWmgP^F9}a`Ry1-3%M0pTq{wV_pf!o2qelB09{vV9&
z?cBk3UI(~=j|p?of?NCWgAZijNf~L-%;y8x0Rix2g@hZplMbhpa&&rhy|+vy0csWo
z+R66dku#VJGnIk^l=a#?W{1
zBI4@mEaU3xA``41?6Z${f4NO14li+io9gFXrT-{K{4*f^4u2^LzdMBZJL5kEu5VKz
zC?WD8A%NG9{=7{k2i~U20L4T_1aAcW4mZ$HQIOG*Fu+@7;B6`Z6$z~WcP5yHbOR9$
z0Uf}&c?&>9KmzYmA;Bd=L`8Q;0B>61qTr$4y@5{+pm7jLaMBQ>t4ZEArRBP#?);3%
zEaIM2df5*;ZWj#V=6;_0a~izQcOo;SHC<(7`Q)JVTG~1!<(~%Tcgyh^>|A5zlL2sjDV&mcyva)k>^YRNStEy{i-`BOa
zwRd!OeI6Pf8T~dkzPPl!vbwgue{gtod~ymlAAbJ}83_d$85tE7#U2zH7rg(4!hs4<
z<4dUB;4~$0Mw5I-6G5n+Zg!gsy^OZGU&`gjow?`S;59HJsPs-oIUNtNCa;Y7eGJzZ
zQL=7ud9`5f+I%lxT?@R&K=L-L5`GaZ`sYnBdN~~n{@<6u{=5k$uWRM?Ixera^V{mN
zfP$X&qrmw5_g!OaCyas*^liL@5(?@*kFTHp{leDpNMmDzZ6SfqNO+YN#!YQaAzh_e
z8_$U3#M4Lxu~grUDVa+e@YYQ9dhhvK;$_&;R>Nr1>qW68?}{rx(BcZnyf`a$-<}u1
zIWaD}0=~vKtzH3OsmI5mQkOb~VtYA`r(!d8N5=o3<07e}X3q5WJOj1vUD)i&wCJ*9
z8?(pdOq2Uoh~vzt-{(z}OShgYK<@0wc+IhFy<%UF*pr1vLk1iFW}VBs;YCIxt5>p=
z2nL3W@zVKcYO;1qdhTO(3Ul#s$PZOi#EI(q+^F}bq3&CZ#mOpa3k7*;8QC2UF`ra!
z_kVuKQT~v@6GeMrB4Uv-CW`NEigu27!lUr#bJ50kqEz1Xe3a3qO8Qaax@x`D*EpjG
zLyc?B5wq+~ZxMK(>azLueNnfZ&Y{+$rfpu5yaBDv4`lIn5MvF}`a7h7MR`$9+CvUW
zn_9BsU&74^s6*t6v(ydB-xPoAbK*ZaF>BPF3l%Xwl(FR<;Zl0^XgSqUlC?)aDMp77
zo4UL@RHxuTI83N&ZS8)6I$4Z%PPn9wZqtp^GyZUnz}_z+HzM{S6pbXWaCXmor5g>i
z?S1!VNJE?M>#3o2_R^_Wt>2T8z)&;^j}mwPp)t5%Eiw3zMze;ZJ0_S+@uNl-GDi%w
zb)DwqKr=ZcVY1;xg;RtAqORLv0$c92lf
z;G7R-yGf3z-Xh(+jMuu0uJD`B@2C(m^9hoV)
z&WrRJUoB81viz%KFkkx@Em&oAt13kdE?R~_->eEMpl=pj0k_t6mZU<#*-C-V=i_h(T4)QN05H8+jeB|yB_SP&A_V?=<
z=w&PSh&fJ^?iu)^s3*rAIbi8DZ1RcgINz2mp|`BFg&-q!`+%|*iy)ZeZb&CGuOb6M
zkGHFmgMTgPsy$v{!Qiz2Iy~tVLBV0IypW$tH`s_>P*Cn4CZwZipulQC$sLbMSdP|X
z*gs}i2R!#z_3F6H91KPgB}TXcpyy(uQN)6x1K&0=CmJ%Rh$>K_lzK)XGn$(UaqSN1
zYaG@RwH%d0ngU8P?pQ*#9oi65X&?3>VTZQRH{Qc<#Gj(=&dQ~Bd!M>*%JQmlG0-(W
zk=W&L-d}@WzO~NFFRwI!w9kG~9~w;3(*E43WwtR<%1*@i!2>U`=7?@SGgLpw{Hs!b
zkf8K~DQA+G?iRF_F;Pk_A;KFU@mzHJ&Uc0DKE#H9EN%&9XniVnr*v1;hw0D*TY-a6
zproa^P33`~#{;FunhU(`f%)^U8ZlqAy5pygQrib)EBlr
zL``B5F0tc7JrXteT0W&TaV>kRsvSY-`br^*Lq4t%`JKH|gdTkKiG240zLiNt<`$)3
zHsaq5$x1K!&L(n?pgi7PUA5NRP8i!))@#}e$x0=gh)RtA?y`e{;a%M
zrv}Zk^HRUd^rJu*fdt6*x2epgcU8mnkMBs-vvZlRRr^13j#hk|9c4e~afx&@VqLIpSGJCT^TSYo@#(Ejqrn#$NjA*IYHX=3?l&67n=;*fXXU76-;r`qqX^9Ap8&%t|}nR(-D
zZ^9i}o5uANEQ^POCwH~9%`Mu|XiO0`cxpn@%e$t+WOQTjs(l%G^Ei-BUV!Q#nI
zWP4gcoYw|a7TPxnU*M;-Z<|k?Og0#^qQ6tKuC%dwc{GYNY!f$f!hp@ieqGP`(JA>{;M5tEvtLUp
zzH@~`PoJpl(d!CgjQDkqs70owOM>u)k#~wT0@y+8=!U4(HeZV`qZ=4boO3A|-Jmc}
z`@HP=wO6sB#6Gqyy;Lbg#oiUh&x$5DKY0IezXD)d+NQf>YEkJQ`z;qb?Y>X(`0`B0
z1Rk+!v(4`gF&%%-kqnI~;FW!Iqps`w`;x6En%2-!XJP{EDjtf=Zr}cufs>-m+avC;
z_6;5cs7a}6?xfG-#72+_R*+0q4}D$cNDi(%IzTb@vyot(o_S&r7}S
zw`gjB%v<8_g=y^>Mf}f&dvM4!SBk!#b-X1MC|G|YHzqvf&cY*H2_aY45+>xX8eEUL
zQ=C!sroGd|(EIJP4Bg=1>a&aLSu{K2H?qaFgm#OgI`|q1_#K03Rm(FzR*FV46Z$sD
zoD0hzZe)vJr0q{9R@`BZ=8(`b(zZ4WRY-{ms+KyC)tVBt(#2IKSZ}}LseJ`Z?ek;$vnI%eQDUj*EcRNg(PKTF@WNC{&X}y)
z(zLJpcm+9S*@rR;R0pI~N*$J}PRR~?o8nj|jFm`nvh
z>Dh~p0wVmr+j_sX!)
z%|$C}t7puhJS+D})sr&&&3t4wNHF2)ctS86#Nhof)7>tr2esM}nXUq%;=!|Y0xP_Ukd8ufz;&WiCH
zKdByr+w+qzaIuUZ)HBpG<((G8iYqS22;J_=!+KdsFCySgI
zF8AKg{+|8|%Jqu|3j3LFvf}x@vAq{k>55DE=8tjmcHd(~MRYrmVJl>IexHo?!8~U4
zNeuqxBJ(uST&=adH>uN{Hb1V?od=zeRIQcT+dsIq{Ej|{{~GbTg%B=vR}&SsLqU%B
zh_(v2GMZNaqgiTi!Rch>BVjB%&D}-1c$<9c;*d!F*XIy=3U2`#OIigPj-43PuYl=8
z`|lP-WSZC_h(;LXw4+(cvg(ZqG1b|O>%jwkI$Bg`@vo*6BCQ9LWv6R9YJ3D83ueL?
zBBF0wloXBfthgR&kbY?WynNcW_0^|gz*k@+b%!kAyj0t7MQLW=5Bw3_a4vTjyxuvS
zdNRm&LAgEkxYQ4~)9>?v3Zw4-w@9pgW=+aUo
zCsoUr>HK0?RW65ObdQc#Z#jjt*j@cQa}CO<{V7&nLR649`1b(kA|!gb8ztfNsJ3gD
zzR?pjmh)@tyu*alsuuW;4t5aXxc<~j43Lrr8&_HGJ|wv?4pLXx@;-*hJYwA3YuKFu
z8Mli@twDaj*srJ0pFT2E7^j$FuT-)JqQnz6YT`pD$A-P#K9u!{yrp`swIe*|+k3+;
ziW-Ihy}P+~zK&cbf?b9|H&sG21G@EBWr|$ghCZs=N_|T6d+{abh~f+5t3nQfyah=w
zpGH5{XeKqfp@P=ozCodZzOSFqs9Xw(bqysfB8qWecYUPI2Yh@Ixb9z`QMKI5*UGmq9ktT}5#f4Q#Pm+`Haq2cua`r!wF
zko%l_4VN~SW#_h7O+ihw<`A^0KWg@NA+z-~%c~k|s#_TAbxG~0hRSkG{#^sZ8lQ(d
zJRc0I$H266Eb^#m?Y5Gl=5cqg0G-V>c_eW&XX7{1Qgchj_wnUEaEv7xZ*Pu!GbUWj
zDa7pze77HtjDQy8WsF;^;7Qb&zm!;bkYjR0Lzip$vd7(19`Qxaw-_E_6@`Wx-Dn;s
z^SMa*+wreh3>G)&nl+*2vL#3&qLSf*T{{ZVX4|x8ZAg2P{V{W78=q>K6)sLBdI#y#6XKN!)@8CP
zO5SXMv+v+%`uhm=nJPOwuY1|T}`upU!8IF7nJTciqFrD34?#tIYWP$rD@GB1TqZ
zyJbmbHMROZ&3Q7t{6dJF&Eok+*lXWzq(KU0;n2gp?j}R*>PhzDd4}|Fjdx#lnClO(78;fF=
z4^Td%3ARi0Uc?x_>jOD3f+PGhu6GmLMV^r4k&TZel7VF?G
zA#s9t=)3W^$4Q}Lmi^0xP9d}1ieafN5-M-##M58S1=8xiWy+gV4|)=?!y}u)^pS+*
z(uhH8s4c?`B13C>9QydqU0apc&p#y#Z9BA1)C-k9#xE39j^e9j6jGpI9hoLdz-*(V
zrr}kz-TGj`TV7A2sMAFI9iy}?B~yqRmVY>rBWVTAj*d4P3%ws{<-qzH!8!|16bh(G
zzWA|V%%nD&{qVMYakI@(B*MJ4sq#c%T>LO
z5k$pSI11qzU6Yv#NC19BkOpynoZgNI-G%&j`v-c=CG!)HWASfAVt;L2&X#Uz
zN$gf+MSuL*cD^iXg|1n#0U9Z2KNzgS+&7J}l;baLA)^zcmMLWr6>a*|Iu-MDFo=Ro
zP8Mh;f3NUC<~>riw6Kg5t;vH~{w^ZZ{><@-4wg!*027bHn~p;riqYAHPrfIbfqyHZ
zyG?Q)`WT&nMKRHZ02izm819Eq9aScg^MqX-khu*&#(UEz7*pJGydbqQ%f16BGi-$l9i2&MTYEm*g
zF`z!84&B&!d-6;T`)dH3l#X0zaR$E5z|aDH;EUe5PFu~8non)U+}ecM=;^%}?0ce?
zWP+-WSp)qa2JTt4zR==c$j5>JyIWm^bHlOUy^H)0i_a1aJr*yc@!9
zZ+CX7kfT~;_}j#z_#)jsyyQ;v_a5a>tqe`kk5Z<4$=Tu+U(gpn`C0D`ww2p=DsN}7E1mRBvbVswpnb5pYaj{m1=0T
z>ceq@H6fbzr_S!2NZ}GK494kEktF
zFXl&B-RJ0FvA7+Ys>HK9JebwVO8p_>ZBEtQ&pj3Kw>9N!XmNWrrsKl^67}q6;0O<`
zm|mVHE4Ch8a(8ogz#KyM*M~MlvelvG%G1qiAceS5#4S=AOE1fyn;b_o}R@A{n&hH?*>G
z@MUdwP->q&Q!|dQnb_7Vv0n~MCm=b{eDZN{<-yLrXtHLnN7Cg|cE(r7gbyDQU$|sz
z&vb8LBn@$@fB$gXmQCaRDwANY`8-phCo5+rbeW!kN@l}qAjFIPjsvgiOOZ4jYQ3=H7`6B^<(!DYZ=K<
z$w$Fv*rAL~qv<}`r#Q?Z2`lx??J}--&J4LtT6!c+8UWRXI^zzhe@}j&k~@BO1(4R5
z7v}26QzT-kk?C$W5sLdi(4Ed9T3<+dpEA;2RJ|*k8-k^5!-#%QnJ{c6Jf2h-D$OeEj?Gj~aaQ^5!N*JYP)q5UJ5vz
zO~8v{EE?qvdGo+~^37R=P|dp^eGSaqaeG>kx$Rvl3K}U-N=WZ2kZbG7%F6g_pS@0x
z8;+n@&~BU7=*AUbA`LEl0wdjI502
zS?k@}@$uwWag%E-w8M{63F~*Pjg$k4QW|5B2pDj+Mih~s3w+H+Vp?hakw@_oni-$D
zb9a+Afr3IR1pOedv^N8{*6hh)`&fO1k49U~j=DB$ZgeC`kZxMO2F>MSh)npamnBCY
zwv&^TQ2sFqL0|lqH1qXV#F<+QeH^vxO#z!dZTfQOC?A)WFHluZ#FJ6_Zs{7GAnk0*
zcah)Yzwv#&eoj5SHDJ9gBej=lR5ur#)Jnp
zIYF`CnXJh3EIi%hA>Q>oPmwE}3nnsg7AR*|2OZLD-Dw1Ij=f2(52szisNYr&Cq8G6
z7L{^l#=5hcC#g7nk{=kPsB_*`xHgy7hlfwo=y0XZ}~KbKBUwL^ilE+WA?z2r$i
ztRztj8^#ds((;olplcLsN{`Uf)O0{t&}?PA)~-!>h(}7Xr)6PoMs!P;q$G%ivj)>xNkauKc5hy0pBPkD^WT?m0@Sp43C
zmC`PTO{`#MLWaH$w|aX%RWwz0fefbtb$H-oL_3j$r>*RU2~Ou%KuD|By_U|G!5{sc}OMJI-{WB?1ge(1RtW2{eIkMEX
z>W8^;Xr#yj3H)WuWJ+R7m`o0Qjg3TKhA1enYh0MDTqGO#-Vjo#t=_uB6P6&raf0bi
zwv%;BLFKUORx_E_x3PTM%D2ODNiWq0714nXT4^6B?GKDRF-QxbCBpt~0C9gdU66a-##!z!3j3w*KT0~ngcA<=~lx`Pkgy^^h3u?2FK
z8Q1x_S8r_i>`uf|$0a?6$Z6sH5VT9aEz>@g*A=%`$mCQhz-+9SZ=K;&C?b7;nqc?D
zd4zKyTe@8H*5!D#ICAQN_u%IG4o6<@X#>-t+e42n1Kb26^jqpnwz&lE-|m`JtuxVf
zYtGFzFYOwn5+W109guRl4XFy}1l$0EUXFGSa})}Z(z-Jhc0O7esXYnPXpdVn3m^Bw
zUkVlG+7*2fkg8!g%hBXm8zWLCw^$ftSF*eV-8D-UdhtemVV%@z>E1-DGw2zvCmMwC
z8Z*`HY}{mYFFveBo^jKH0DHV?=t%MWox(KSS;b-O9_Huy~5Eao*;aivQyx
zS(pb8$i=C|sUf@3cDRt!KS5lb9++rrO4qSy%{BDRCpoHR*zrlqR&hd!aLrMQU|T_c
zQGRYa%*EGhr>|8N?|$e|KYC;uqP%uGL4Gm42*X}3$bcNXdKi_O!Da=IKa3Vb?3V`+@!UbMAQFnQSq-Yt6N9PKvb%B)C?
z9mt%rx_kWc-aC}0pp2)uZ%%w4ro5E_UK6wFzM9MN&w7#M%WR2^)DobbHkn0G$Yn4I57-?xkB>(RS{66f%8u)bKl%HkIS&N~6WnTHkx$T8
z9`JG}`IgGNB^G(|Or78)VWe_xzLA|kMw9GLrR8x-5`^&^0YNs?fWiIA$K_$7^_~Tu
z6t*_YuKkNNlaE_U_QGTmT3fV|g1KrrYsW)!^|S(tz7#9{&~A%!rqj4juqnIJMmtof
zRTY%N(uw{2B`RSFJ(HR$e~=SFDcONsZTJX1b_@@4em0lJ1G5iUUI~LsBiQvBV?^gH
zzIej^w__cV`~`frqXQV!^yBkf6=Ql-={i5IR3B33+78cK<#SF1rKI00_}D9~<(Zrv
znUd&QQHD9Z!zDxUHtp_fx~e>l=2~drR2}`Nnl%i~6y%Yd0<<=IU1u`aMVtJ(Ui(9b
z=B|!sW88^_wH~dBY|h`;4ILzFw*!CZu7~V23dt2ajj@C&u?uXw*5Gb{=
zXwy_$E+bSFb|v`8y<|V3%0ph2QBdOnA;oSqxka?vmbODPa<}M}OI=?d$cYS->@*(kj!4t0CiOSstEH_IGC#%mVWOOOFEEC0zzbS4k67oQgyNz=
zX0W0hfKbhwefx8pc~<7+<9g^8)>181?`GI6ha9;>Z`$~A&y0fNz>pVNvC`v&%sbU2
z<)KYm>pSkuJI@q_qa<*7PXlN6$JL4G(}$l9QZ^+0}
zZ%DG0P<0VC6uh-#L|W@qZ-3OJIIMGcM`N)%Xwfy%1EbTEZnn|?j{lgo~@qE8M=
zMz`lD_?aIyCk@MJiAYmtq_21jtM?&ysH-KtbXTk`P1n{^2L$Cu8Q)(>~f;
z^M2iI+j^1sb=#*mzEcf6PH$qX5*T|^en2(y9t~BY3Q`+Q
zsEitsQ)NsbvJ`$h!D@b4kkQ%4!Yj&X-}Z9S8CFIt(vz6p*`*ehUzGa^YU#DUCavea
zj&Yz+IG3N22fIEo0{;ixqU#Iz*^Vs@S4-0rRH#VVYl9r{Pkq~hf3YfA8ye^?@h;bFV>6^+4dvZCym+w8zi&P7W^|0MP&1)@@!
z)_>bbGMl3Ob~bKN*OIRKsdbS^~6GvAsRT%r}_RG#~L)yocFL2dEh4+F67jYt1X(qVRCR)h3xl|W9rlKc~
z$K#;TL(L(#iGdtpa$%*VZ2XP~1I%?HFA{wmdJ?6!o0*cP=$otq(TTCjz;gG-FN2W5U(`s(F_=4jD`
z(K!^K`EDV14}soYv@1Z%*NDu%rvOFO3;#R}XV2Z#C+(~}%x>12vnw)}^md}d3M115
z!CMadkh1Z&wO#r2M=8F~)2mD7V=COBSqT-~eF>8US{Os}pS0zuU(>|wHRpEcmk3`r
z_t!IoRAKm=Rf&qLr&@NWi0F`MhS3ei-Z|WVtEu^=wk)ndpHMfSs$C|sQ$=~FnN;C0
zr@X}4#+XG(Ygzc)Qxp%cR}fAY-@!hcqdL7is#GjDzKIQ=pE8O(yOsYc6
z#|RC2zh1EmiABF76Akz_$<@IBka^=e;w(IIWbgGQ48`!k1y&~7AO
zJ1@yPd5rPgGHI-xP-pS5^hAj6ZT2+C$1##h$6$PtM8t><|`y
zoKU2+k2_y?hV!;`SJ{o3hv1t=!elgZcOzr>2pgq_6bmb_BQsAg=_6HI!G_ow{@dUE
zbFzE~ygA=VIuN#@;w%H;A1JR*+FNfN(LwNnVquyKE>)FrzI8sGTyf_q3*^DdjGm%B
z(~lh;HA(bsJ`|{^-9wGOsUTqSu!5Xff;D;}k3@4IE*FsrZe#RCQn^Z2?iRZmQ|(VR
z6fl^7PvB<{3r%%YpK}%Rvuz+#Unp1m-i`BvrecS*5KBi9Vt~5cK08d2k&_mm{o>P0
zZ=z@e)652iA?@7F66@Wy+bbFb7Rl*lhZ=+@`>~S;`xWXM5^C=G-Y*C7AZfLMieV(3
zL=mKK?+&r%&|UV@U?q#(>QqI@dvxNw8s)iVOBpkLhGPa1CKyU|E_{67OItpBfIcO%
z0(?2?1b4os&5fzcY1H;{mP5ALrRm65^iO9p7U3E1ePEe^qEJ;Xgm3qd)9W-aOX-r2
zqrpSOtx|13YjL*QVm6H!Z|I#y>15whx`HZu5Nc=!U#Ot_XsMT}EQQ|sdrUMjOIed#
zA-YW43$!^bo9qEmoApM+4g@S5E
z-s-7Er$O87cb5H!D0<^UU^DPLRetM40=K^m#WQgui$a=mBk@cJj9zpq92|u2VaAAAq
zvNF^8hf^K&D3$%E1fp)8xi~6pEB)cQ<3yKn8J$Ce14ABsc8dBxhWnr!uutyGBsE;z
zvURCEwH^ax?TcO6GTa>I<0)Aq<~C;RNSLY*GQIJP5S8u;Um9|(t*xD(*1SHd4qR}+nNjgtY+(z=^zlau$4kcJ}mxdE(Gb(cp
zF!^mBOu2Kj+jU27+Chvww5t=DF*2J35cvc==ekwRIr5nuv0Qf
za#P}0g6>$~W<7q8b)S__MM1p#)i2lI1t4mCoX(BU3hQK^#kJ5tEx+RmcnwOO|)_%@8
zZrC))+rItnS?ZnVt#dIty*j;8(bGfU#-CWoKDqrEV_37v_FP0=cvwWKstT=gU+H6k
zUeed@<(DXVvF-QBf~(IDN8!YBo4snJ6kwlTU}MY_8~=|)X1AsbjmX~n1_X*$qIPeZgVUQET2U|a}C;v8A6
z76?1r$d6|Z5^euD978!lcn&9)cw3_$zWK|~;a|_Tn4?Ea9hYwhqp!pH`AziTN}Qo#
zLSIjT3rg&dLqNMs;M&ON)mlSJ_x#BS&2x!|^o+RYYH*lISEj{M>C{SXQ8vSxLW++X
zA&v$ObBs^n*7Tz1I;jtqFz<6vV+xTXYBE(3paA?$=1UBbZ+n6r>9%R>U+`34=7L?W
z*^gJ2@|Ic;GxHG;_q?3^%HA@5j=I{`uWB#Yth0_D7i4+gb|CsIgT6TU#v?OIgnN-r
zD>cTG7HV(}ijNj_(~YNt4ovpAzln$;VG99G(CuX%g3&o<6PF5~LKSo#rwg;}q%v$enQen0qLpYN3Dq)j*@Gr*oQP5pVp*9x7S!$y;
zRv3_BQeo!Pjepl+S`55Uv&Em3_h-&Ip(e2im{p9xY1j(5EFKN*YdQvT%5&{o=hssZ(PIDSXk-Nmjgcv
z9q8f;|6+Ges;U1R&t(mokBY~)9CWY#i<`<~z(*DdOwhxP_*4M+nf}`sGGnp0s8S>S
zs?%04-8I!PVjxOkfE>0(PnP(2HVsRllznCMVfC>AiWn=+A*9;=X6usB|9zo0FX=yd+6*Qs!{f+KU`N$F+0PJ
z`Qi2jOHs$?g5_D>vz3y%;zRnff>qHPWy=-;Ace2Tup`pl5=0rM&c^?1WpZZQ%B4=d
z#;;9E(y0_>x>;US8t;E5VvvK`ls7U`{EAYpGo(WKP@QCH%5%dpr80|D6h}G`EP~2^
z))_XzABS_Fl>A7xcN5L_o3blA1u!|iYh_Js%P%#>!-E4;Ml
zj{lJ_{k^HK;&q}u9ph56{sn~a3e1y?rBJ3ZP*89e8mcEH8c2QM9X#SN703Z4Bo?dj
zl%mvdK%+Skuv8Zr!v;JRe5Gemd}V+9;Opbru5kxiWF#s!2l-NWIJm{%(Z7!+z6P~9
zXo=ve^toAJe{)q9+DvK-Urki$L{i?R<-#zo}|YIxMqJCOKuUT*Y|
z^76}FABybw;aI&1*Rt_WpAA>HL|t8uwYeW>gERIw->}1OGMye^iN
zu%zLt)6=sknY0n&L)SxZ%w=kX^>MOme4Al!#XCx~{IB>S3UXDU0jce3A2fqE~>
znM>b5)fJbJA=dL^WvJzHC7HO9Y%4R@cbj{RB7KgcDmK~MoO2QXO*yLOjSjFO157S8
z@|yLlbUWAj92a!4+%-d_rdj}^+}^jb%7dwJWEL77Q_S|geEVtt4KfwaQ^oB97o)a*MQ@OtM;=Zr{f(Zp+M&^^lBX`XQYhhbqf!+6Jo
z7G&!G(nNKe-m^<{m<=~xnY5yIRE;6=DA+-1GNa;i(sdWt3a3;N`7SFSjL*e$byD&tq|worz|D;U^Kp
zmOsptiZgp=KRsA>fyrI#6XEvc`K4s;1&_L}0^niq(JGWduVY9tE~$kpH>f#J$A6{J
zvoc@Y%E{03*oqND@HKAm31Nt#V95mDM;I;SJre5lxsl?Cmz0aMJ@!1g%}49biK#&F
zsbrue*R-1=ty$+kjOKp4D_Pn<(ATyxFVyFjsL!%dCS3XS6>;m-$9XsaLA2nntrb>Z
z%suK!83b=h<6n%nc9xQ`q9Xixr?O0#b(=JPUVQ0~(v$gA{^Kraq3YMI(USB)rltfe
zQor_TVs8p}4fG5l#Z(lx=6$}k-#hUpBfNcB)!fJ>Ia6&il|8buBBHtWhClYbpj`Ow
zK9^u+e91?|Eu=>7WLQIdZzvnlzcA-%-8JAbR$;1as;f`WAnbG;aBHr45O_dRK5
zVaTXnhb4(cYk1;*m_DL6wg5zxgF6v}b#d^BX=XoTTutqLxrv^)1t<49nvLaKAO)^d
zoOZ1~uie~FtKzbd@DgYTO*``n&}g#1_7f#$+4xLyU4H(N&QzznTJ~gcP*@250Rk}+
zqf&yIO$zk*+9c9L4uzME&OV}gU<0RgRLbIqh!h
zuVrmmEd@t%mYSHqk}9^#-X)r*JKi_ypD^t_{PFWQ7bxbjycqnJXX8uT))VT=y=s$At(CzdoS*TKp0y>*WYShThFNYS
zm#DM&3BRSl`{Zz#uuP93K^mN1?R>TZX}~siD|djeObz9XY8<@)s1f>L(xh;I_L@Y;
zvm*SgFMsc0EtCRC&f_f8X;Hu9|HFu6p^?ku5j@}nmS82`A6nSann{_-yx)vrlv8%C
z6td?M^cS5quIXikFiR5L_aO)ROZYjw+Yd;z4ITWx;O}UZb2p|4?nNG`g5marg{XkURmc9CvE&*s8dqyu+P9v%|<4!AnHFILsWT~Z-FQE`=;h!BmH9Mf3
zl7b3?(L^z*ell|$Yh}TTbDcE&RK{~#FF02cuU$^IF02j3e}48t3kr;%&z^}a08BU3
zh*fVL)Pd3mZ>Yp&VL4|*T@{DDe!8vZ#7Asmd~lp10sjh>pV8D~fS}?}AvOF3nxe;b
zmO|V=mEsQ=d#pJ2zRnjoNRge)Uo5iJeSIaR&BzW{cuEq~dTcsmVC0agsz)J(a_PBh
z?;QI*RVtF;feRk?oR>iagxZcyrBDk|c9Iv$FTjcf9E+hNGZO%AV636?n*vG`sHvjG
zUHmhbT}=r&egkOfn)9x!-
z?mDbc>tv;j9>T9tR&KnR($Og%>Vz~%v{;i7}*n>S@HM_oCi`#X3R
z2i@JEW8dyLx%Y-3bccCxdIRAaWItqA5@(q$%sUcDZ=s>y0{>=03&%1;b0f)j?Vfz?
z=AXG6%8NG4oOUI^53;f$#*0gx4EJk}Ep_$M(!K#}{*<|qe(zlBXHAv_TB{nYJKB%7
ziR@c%`*%wh4?7I5Rmcx_=12ejNI&{pss1Pj}nRM
z2V>#BE%UBA$7hWjhTE&^1fd9~y8uUz_TX3WV0qDR?Uzm-@9M=VMCUrTQ1#d8uSZCi
zR~YE>KTNDksH{wZf!ERh)+7j=k1nYN<02W{){B!MB44H2WBHffvUfHn14WCTPfC>G
zGyR_V=>8P2Uv;vTKmXdT{JVj1qOu9Bt7JhE1v9YsKFDG;pPqf`xwcU&wgWbs*>PGV
zwUr9@?Kf^g|JpM)j1pl-AS6x-PPe|et&
z(DfHn;1yD&Gw$T++2)jzjUBvU)D9OKk}#4{6_IT-`0>OIq;pE1C@R=I>;CZ8`%hv=
z+s*LSO_q_zX!TzAyn$_TuBYRDvV2E#^GfN&4p)QUDSb@B>iugkTjR|9BuM;nPz8eq
zCsVXD8!E%MkLUn8?;3>xoo*R*qG7AzHBWDdC{4F?D!Ka-&19KkM6M2F31fFeA
z&WbWv@9g_Dr#lml7_8#UMMlX_%n42nr2GnwlyCpLyPYOHm#5AErl0F5d+E{DbwLv7
zRF{HIaDN9`_X&1H?H@5Md+365D#{868Bf>a%G1kKl~s4~J&ma68{|yF3F6~z^Fy%J
z-;-qNiA)3-J3SMj|31y0;Y#~8S;~9x@}Og@d9wd~mh*3MwS6?hx5nCyF<|7S*z?oJ2s1orL(U{;~#7p9)ln1
z(#E@PE=(q$grublX1v_CgkCrhOJHDLUk&_=QH7RTo2$BgsWJCPkrOrenamLtfHVlX%W-9W)1&ETp6vL8!r-$vJ!$6r=#$D8Vwv=>
z>DMk#EqHVciMpsN)>sA-LcRAxJpxg-zC@_(ask>tILn|VspzdHH9kE#&OGnYnH_qT
z$FRg~Le`029Tt8Z;L-uE`oN%EBko|V?7Sry6fzy~{s6wVINGo5vh_Fmarws=Drrpp
zjEa&$#l~i}g|z!2kSaj0hn-1^Fh%Rnah<3k`=(J;VBH3lB#;^adFDcw1rlQ4#6(n3&>WwRL>
z@BY*8&Itfg!H$geu@5xwKbPa^BsT^zj@)gP1<&P*7_PG6eMt#bPi48>x|jfUFE;ub
z&UnEb6KAW%y|oFV?6%Qt5lF;H)!R&Co7i1_q2S=yD!NEtVaPb@(QnSV`^lE^&Vlg}
zPZoK=VH*0s<^B9GcG3T02F?Eeq?`8rsRp1Sd>EPJ72@LO4`o*a@EBMKh^2#)l!j}I
zcPEx0sW(OPudxS@Rdqu7$1-*8lb-zYbyHJskv9aE9SX5V%}_4;OlTcyr+aGKte(@2
zkZjv`?*!@ULIu;Jwf{QyhUtTELU}ajS`#`QW~Q8p0;V4HJiRSnBXv4T15Bko`cz+34bO1jK20JLFA1XZMQ}iIkTl$1Hc@
z6(ePQG&o;F6|eqhe)29mduE%Ux7zDpuUgA?g`_
zFr|zEY}xr?yMEwBV7fN5N1`HOaNyp=@!?^k4bZWX;(}4Wz*zbFdCH$^)N+p6NaMvH
zcMmxlo)!}8ErH+`|A&O-Y&to0>GqrE)0NpaS2Mg8$JLcLxm=V$T0i%EDIao}OBqvw
z1=wDVb8wF4hsE#6gPofz-(6w%{;=O*O#~SU&V6_Ssy`{e8R7j$iW}v8b9373Ah74{
z;p`whyHPJHaTt;d=!|C5^tlcz(Kmcko{ggh%3)KX>Gq+UROO~E!o5Iys_}RJMET1m
zo@|MIbfo$PST_Nd^f9SJSAPe)uCXm8&FI%mpVHsNl{*f@l|8*^Who`UL}?1ymzNi3
z=9e&BogI|Jpye(_sjmt=KARSU=8zv%LyiufYO?e@8igfiN(G-MXVs{Upz_5R7u|(g
zG7-+k_V4K}it|y4+^)?hW;0XhXPiaY1q{}K4^ZVb91D75`rLigpw8g6QOV5naJjUM
z5}|^TONUc3ZMp}O^%Qrvemd+_;7uAQeE!Rd@#
zQ6ssRuT5Y4)4m45K=mUZ&bVv
zZVT$B%Fxni?r2zZdzo>urd?IZxGLsgm$FO-IiNI|cBUe&iV48N_a6r3LxsN9^@$1;
zPXzSv6rLCOZ>ESK8G>5as=YVoOJ99GTz7s)R~2UUiD$G**JOYctgRUr&yjZ^gzjtT
zf1%9{{Bfi&iuhzC{F0`WfQ3$`{0N=h>q!dqZ+a=1$js{?gZ@%{x_r2`i#?bjQdX^R
z;Zw=c0(`%J<6egIyU)Ybj5c)c)1v7Cm*IK3Y!~Co=KJHKY1_ue#r^V!Yi0_yRKYy5
zZykkPDi+s!p5@(HWtZrSzD3JVQk7fo8GwFxCJA!B$FrfOW8j>>8f$)
zzPsE|8jp0Syje+{2lHuvGQo!Aj~
zysPS8a0-46*{RQH%<-7Y%Vm7fg6CWW_|K7j37a37?NQXk&9Q>Wf`g*rw&1pWC*IF|
zwIV<|j14n%f*DQJ8+tjpc@dOEEU18TNAp?1Q)(DBBvyrc6$1X|%v|eYm3`o?qWh{L
zZA~h@Wa3Lv-noslvwp`R2b9a?R{8Vz&82ouO
zf*~1qU0Wi^zH1hyHfT%fO_G&@c&1KEdZZKN&zQ$fo~dD4uJt9vLP3U`NWvCT_R82@
zwr9n(>a_JFGHb-%;pguIww1+UojhzYfY3W=t;b`JVJs}+zD_qjqe@xFG1CGbTWtE`
zmE5C9%JMC@15Nq!RO=ju@6H=(ddO6ZU%bRYPB
z^5=%_*jJ?C@2ewy48aa)f-P8Gt}Wi8Pt1{*7brNZnu9D9IUiv*p^Apu(Zp?Mf-wV6
zzgnz{7#S06{ZslXHzA+1Z*s=c?X{))ua7gl*llme>RHK1u@7j*yaAg{PTAcv-XhE~
zzMflZ)FX_$VG}N^}sa3}+by5YojWJo4gdW9s%G
zD!aJk7sPRO(+RhGTI*`nrF|QhcA_l+bHPbyBKi^WTB9Ge2k`!_s=?g#D!0e+_}J1F
zIJ=X_Q`^=x)X3z~+)6ak#pv(wAxs?i^PpXY7~O2H5_jbsMF8dW0Iva^XqZ)gv_?rO
zLmw?10nL_uY}$Qv9D&*wrazMZd|vp3zgCBUMT6ME9PwJkB~
z;Z(;~oyE(hpT3KYN@r%d+JE44ly~$Zq_XBq7@C{ihO9%0hCqqk_OR5b085d2vFY+e
zY>;w07ruRi*f>YDLMetu#WPh!=1-e=_x@kc4|dwM(*?#WN01+X@F|vI0zTr&S;qoH
zON_zW>IQ!qluA6^LzfrB7JhCOJw5s--5TmIQFrc&Ngi@JE=p)cY3bgl_ih?3x{g}9
z3xK*=w$uBJ(~N@K3Y0ZS+ylD3%xyA
zeu;tIH_CU)p|sg$1b@_-1amVfAnzmN3${3BCeJvq%F^COnw#90(D{FKCizE=HF{n&
zxEXkrcgLt-i%v3^`ccz;GmR!E*>WWy?p#gve9Vd*nwn)}Ut9_WwZA_R+Vu1G`1%=?
zy;=oq{VKOPstO>cjeTqqnIcf7fLa`|zN(@1xwe(Fjq(MCsB@rh&qLoPvGCBC5u78=
z7A9#IF!HftR94DeTJ#4PI{M&85heItkYAL#sg;XpY5UW~`7iO@8b#fy$1kI6|6L8C
z{YApUG#B-|=r*$anw=$Gzdkz|-CbG(Y*}DC!;*#LOW(aNXEEp4DsT$pIy3Zt
z;BUKNk;M&R`xi%B@=Z+S5*O=k;qJ<+c`hW^Rd!6%TF`mA=yI{r#vv0$Q3+Li9!EEf
zWT?w0mr+<#dKHGn=tSQB`8j!6>PT?`s!c%Y;I2Y0i;=jfIlHC+tJ3BGmFw&RevX(HaHT>{DK`z
zZq?+Sf8Ttij)Ar}ycRL)OD+~tqGn`O1mZDBf40Zez@V2bA4t6r744JQi&6P&AD0p3
z)}KMaEggFyNkMTvFaaOGU7@z>TQRTkx4R5@jbMu_;WIayDKF8TYw>xx@j>rWhn`o|
zl#mG97~noHL;c_al{}vvp%>9WBQ{ix9~uK0N(}6JMseO`{0>w3cO}?{FPOhtNGe4v
zr-JlkC~mwDyf%;?&rkMwSC?CzJRl}jpJ@i^(P#BjS{z;~g{S_8Q3W2dlpwO!Q3{2U6AC=B@q*9Kx(~~QP2y^4D*FinxcC{_Oq1*W-4fZJ>
zQ=SyNvrTImLdlv!>6F4d;Z4-(?do;IfPU9nxjqFN^6G>8~6X__iYhO*I}I{*49W$BqdEl)b3|M=DvI$+pCXZ{9W
zGVvw8!Dq+2TxNC>=){WZn*bYHLW|;IB`*M}&}eQ*pb{qdjna9O_$mPDdX8F#8DL1%
zoY22;H;R3xZls1by&u5$vNBHav6H+N&6twqJKehE(m^MiNSfCM0Pys*S%si>N+0d7
zE&uTKQ9UhuA)gtLDh0XT6j)WCUc|e9nLI2$mHSA>Ct2sLdn59q#wsw}v^%Pin89?D
zYk(!mXK&JOF)ty@W5|@x%8kuZH@kRZ9$=u{>@9MAenK>*G6#A_@MS-Xb;T3q{HDAn
zJ=Tibc{gyEJm=*yjR_o&qVQp0$2_5WeMe9dK?ZK2ArlYm-EttOh#qoWjc}pK^sQYeASTqELL-SgXLr>m;x1
zHCD>f+NaM;JXverjz?m>L0p3OHCznGEB8*dg27^hYE(K;G-U1Za3r7lIb$890~Y5m
zl%OWkDwtXpS2)g5;5VY2Jw^Ay)6fmD1rP%3$q;0SA_d
z>bl=$I(<~)A!7VB*s2!Lc6@=ry%$||Qf*T0_>)H>`fx$Iyb|JT@ucz{_BgZ{C9kaFdbrrQm>1Fk3BXrOfI{)6d
ztt$~>llS0eKAz6;@ubRL_o&{~q?3F>e)!OwKmJQuT{YQ2bcW>e;FYFfMk#zi@nf{>
zamIVC0$fG?*myJ7LsZj17xC*cH8s7AbH<;7gUMi>cbZ>}^o1>JPWv;adqiriXd|Mn
zC=t7X{$-W7-_0W<8aNs&IFH0Vwen5=%Ka)VONzuVmXzCNZb+G(&OvSFODtWF>CBNm
zp9E;&t9&8U9YKlsX=+Y&s>Qe$#HRRSc-(*4{rq_MamHSF{)z!cmhL}%iB@f=4
zhQbU4s_?EZF7HCRWZIqk?0I}?ERw*a{Iey=^ai;FJlO%Jw7Fh9|6$;iRreWgJ4Bbf
z->tp*WQ#D`fa@Beetz5EYXUXV{>D6d(l0pPnn~s2A1_m|+SETg+t>}oy_2F8Ywqtq
zB{;OGlui(Bd7p&oa_GGzW82K*FKWAa#K`z{1(c87yD31ewMQ{JckMH!P83vd3e4`d
zshDcwD4MsQlfNLysVPx;<^+WbDPRq^rw#Be2+7>d}gefR5~sANjZ`
zw|aIoB=n(BtL`}?H+aul28`1o}9w-K~d)rIMZs#
zLFeE4L~{I^yZq@S+la(;p(rnh+^7yq=TrKxuVVM_U0ahztPfzVr;y2lhRKjt|Fxyt
zweq(2jWuJ
zb!n&97v?pWmXVDu)pkVR*+-8FQ^!1Z;!y~`E*I{1{j5)7FreZtv)XB$%)d54;tm^{4DXN4(5nk<`rL<*Bc0z#Z?
z3}G83Dkqi$F9uRV{7J|+eS-`^%IW2(Kvl|jxzr8nH~u9IDaemdWPmC%%82sf8r4*p
z=!fCpYVdU-(K&oBKkhE`MkRmMRL?M-UQzei7r@Qhw6Gk^H*o(~|AszPURWJ>beOQxP
z>Rq4{0>mKxJea4ot8F?-YpOzD>Jyri_hbp=hzaHxDMzptA3bN3R^qSJ~m6&zWv`h=$(F0w}jtj)8h
zbY&E}q42^82{ciMj}h+dHmO|OQoXZc4h{f@WWR<$99Hj@a{acPdcA0Q;Tz-OL0m^D
z-;M>WT6Riv@-SuMk+Mi4O7t*}jR7~a$d~F8!U2mktyeigHTbt)@DryQlqNAPh*|_q
z#{csN2iL7B#fhdT^3t5rdXqfk>ND$9K#I`0%vh}XG~HYKHskU|t_1HryQMETZLXV@
z^vGywQM2>uQl4`BkUu@tV>UH!=OghDt?dH_OxnA!dQ`FvNC8HK@v2y{Vb<7-nHaO^
z$)0pqmK$?JFRgJrf%KhH69rb3M9AzNc`vMXUuf+=40@N#?DkILw;^63&7=1OK`#FW
zC>J{t@a23X{91kPWb2xJI}oJo;qTnn&RZalXH%ZKC(uYrQ{99dq15hFL`i0e(Q>MK
z)6}NVDP@&hm@<)$&Gc87>Daf%g%;7%-kj=#kCm>9121(UZ)I!Ogl8zIWvmwaZOdH*
zfI+-KfX7K$Y*Jdoe;CoHL4Tv4O79QEtzGK+H4Zs=4WPl+Jr#a?xn34jR8}5
z!@;NaQmnSwBjg|v3|a%)qURDE8mQT4QqrFTxy}3udSM^2@ybsmC2SOpq{me?_N%U&
z^!85H7ngDqYTYiV^J4Wf_j3f|Ne5&=A}SwGxGD;zB0(A*P!o%gbeT
z@9cCx#^+WvNa7d6O8g8@tDDCixDO6hDb-#G>oNddtHT6KzypTt8;ul|I=*j)I8M2<
zaE(}Unhpv{KHWgVKVKc|Q#W%}mkt<(B&AJ&r_kDZIxiQ70c
z`#1f48%y$XzwKmfCSzT?#_LbbbLqE3U~MW6Qug1;e2-J(d)~tQgJWLH&YY}J4IvTX
zAt8g=*nRsl20I>AZbnBxiA-jE`o_n`{Y*+hotbA?WZ~QkkLo3Pd8>Ze7(jyu_RcWV%YiJV=ardHLX+k6rFrZnu?Uiar2@IkUszAp@9Hg^nr^BXj!p>N
z`F{>lyNrV+KgM+^`+^h&m+#5_!Mg``g+2B>;*@5Sw)veRI*~=%h}~={u?2YYJjCB?_^vFBFJS4Sz(5gM`@p?geR68xzYQ@JB(50
zE+Q<%8N$EDhrIZfLKDV&7esn=7huT9)O>uadrstE+i5)@Sg2oa!n0iq{o>*N3EgJ8
zAt3+!?8j4Ryd6`GqNXBAf!xPm9}cSjKlIlfI*{D${fB{+Nq#yy{2zDlzxn_Bda(#m
z_r
zLGw*kQJzW1t7SM#y~cB3@Z?S*vZQ(xRrx|eoSmIOiXfi*pUxLh8&=+r4S}YNz;a`5
z8O1_m!5@O*>2W2nK_m~CplPwJM`j#@@27`7*NIh+4
z!IXNSVN&}n^!4ORPW8Lnq%53@eoQ1Sm)5gyrQ`;`b~h&Fm%i^G;kSO!A>TX{clvAh
z{^qsZ{EDER*!uFsW_i5;8)0xf-yXZ0_vFc!Q>$vu7l8KZslcWjtZ0DSJDvf?joFGc
zBlRkgNg#n+8bfCZ;_
zMXR!W%h|0+!KV72=A(+UMXi5YaXvxZUEiTaLw09?E#ywLp|ZKEnhj?)oH{|MK;s6P
z1qK!MN%#~U@TWWHT@%30Hw*#;4AMo-vBW=*I=1BR3>(o^zZGw5UcDD{D3EUy0y(lY
za=O+He(!dv!i^Jl^saDi=@2`A;W{+$duAUJ2oU)djN@E?YJ*4;lw&I^hPk;yJypns4L>t{SW
zZ?@=ALqKf+4i^;2P~`8xlt6m&u?p0$uBBb}nmy+DKMaHY#=pBq%N_dlwW5>XlqIvJ
zUkNIA2?j3v!|L0`wg~vrYs$-=XQgk7OcJ|6*Bg;SQg<~@E()~9_#Og
zBKK#D&6VgM;WdFd4$sN*0oLo;>r^eM4j&5itd{1v`5;|E|QZ<+wEt>lVLWQA}<7
ziVWsTlWM>HRM$!ummq51D%Qm=O#&UV^SQQ)y7-as;2fR?;bV=i6d1>GD;S~JdSal1
z)YH}%$vdI@gD#&!q{LRl9Xxf%r1-5#*;k6r4TeNLJ+qh<(}#ZuHu|3%P8sNQ3rJdo
z3WH{F`qg!{H!@ht$#g3F;LI9K3&;22+4qo8((H^k8P_%cVhTtmO0rsR<`?>GkOJmT
zo|7Ab{$8d4T}1^aRO)U;-YzQtTfIwu2b(GDpARr&7wo85a}pP;54sL8c-PycWl0(k
zxz^15_l*e+`nBbNMbvOrS94(*%$2GvsY1f^B7O1r^QAKG*`JNtAG?suOb7DOi&z(y
zH%6?O830_S96TH~bei!|%FGViSips>VB)w2QKOn$ADmo!(G)hJv-p)ql~es
zA-N2f*UJ#KHsp1?~^`of!;RXdNJOtF?Id74W9SZCvewS*A=>#(*tpb5
z7pKVL&iJdWu8>rH{?@vw&fgDC0+ZVOTA7H~P)K55K{U5n+Xr0+wLr$#z{N#p&Ycm5
z(szU>ZmOy39a0&NnoU+si4DC9kk-QTKDAI?S$VG-
zds(ShQf}cMt9>|fX})L%Z~30~K@%P4S8}Tp4TxbB{w7Uts#Xs&{-%b$nn{i5>Iti2
zd#nm>JfGHe(3C9iC&{6w(zO$;hq1;=zEDNbB{PLeY+dYMzhfzqXkS{7Ps8)0jA$$O
zw{x-x1r~VyPNO~>AjGHA!=pS7Xhiiw)hCrjo8UWi$@FMTEXsR!y3_`S*?R^u5~YLs
zP4dtGyBObGvya*)<%uT(`M?fEMG@unA8qsAIyZ38XqutwRBC7R4eC2sd8iR_rE=<1
z_S5CJTMx2XYaZe&Iv(DvYO%DgMv9aYNXZF8a(%gs7rA`vn;7d%Dd&I`^*lV0$C4Og
zsJVDY{jYx4!+k%>#rH+!=_(dInEr?_vbti*igKFU-qXFC^J3Gu7|7l&$|9`{(ru+fX{m5uEwO
zT(o4#zAKIdOdZW8r%Ll;ILKM7I+ITzMtpEZqOzvL4^XqUIw_f%MZ;3&%$rnov_V=-
ziCrHUt;ABCr)c7@U%)))^>uhQAW7Zn_t_Hserylh>P>P3`{Epps}8@lV14tRkwe8R
z+4h23rphrpp0eUnous$qX)xM&inbuA$AaLGpF+cRwS}qm6r@HlU+*9BFz-v`f$n4F
z<+Pg7Mfoj-3%{C-!WIR$BE=k_hu-hB>V)1{9^E4?90VLAo?ew;T}_|*Q;D;Dl1H`M^+g?@Iu3h9JVd%I-ME~|Fu-HHf}&^D2L-W}W2Mr=$~KSb>F
zFJ*xru{oVXA-pY?1W;<#7X~m0xlw?(oVAeLIEuYxtMoq%=D#gY?}dzQ7~#9aBTWJl
z$oi#aoxOl}V*Y`s@KcMG{&Yaz_qgsVvUe!I#XCL*0OL*Iqr?@G7Y<`qv#>BKgwc}k
z>B}3CROvwkBaCM7>;bGM#Mo;18&+~wrUMFy_g-JA3hyz#=+@CwaUf)NK^EUB
zp9^H@OqGrx5*c8u^|>m9OYJSMbi7)TrxTywp6JgW8)&+aFx!KdB2#SL#O1JfqTNG7
z-^{w$_joSTL`~-SU-PlT-t54TT0n!@y
zmIP%p8ZYHdi|$I6w&%
zxhJ)aca{D$d~+sKMymOxMTLDJetuYWzN;CqG{X4(^uHv63ciq7I{CR|{>V>Duk|+x
z!-wVN}YrKfH)s^YbFEs#rw$P1Mud
zPN%CG<#ei&m1V1hCb(dZAXpZehJ_PEsaYnp*!k6>xu
zp+G=KBoo)BPQ>&rCsnpu<+#<;szY|hEJ;lbWvbkuv
zL74%GY+u^cqbt=io_zx{ddgx850u~r=+An;_yRodzU*_emY*ngSbq$>S8j1Bsv6w(
zGij?!516H_-GW8c&-`xQA>R7YF}=NiP;um=mWit7ni>`8Gf9U(8`VqGHnn;gkCREv
za|D&?{H8wL#g-}3HaoUT=z*9nqy>JV+sxQfp5nVpt7kyqo10=O1K&3RbGUI!%gy$;
zKD$U#7b7*cE@&%(-T6Pe5Blz`?Q)%P8gV%$=rO8GY;cNSVD9vw#%^j#>HiNqJO0Nn
zoE>JooInqSL5zKPPk}ui1F(&P=Y&w+RFL*RB8``)%{cL!@*D$+T2r!(V
z{h6KE21+;i-M4^~%(;tD)+XrmU{X~$WaTAYm5HOCQE)40D7zV=fTqlq$rtE$D08)U
z@E51?DYx<9D8E&X=`qr6xk)!!p102@?BgR`q>V+o;q0vbhhh5ztihIqR|*L##T%pO
z1#^xbpDM_OqopsH;q!ZFrE^^`x)63^Pk&;hEZ^G32t-_m>;s&HoG|Ef
z_B1?Sc>$5%efX8(VsOj#ujdD@kApwG;WGWpON+doh8q=zodmSI|8Oo
zoyEsDL)#*U?8GW(?~}=uJGjcvCXJ^b(LpY(+=^jCUKx$?skpKv71OunKY-8h%H+5i
z&xqx-fS5zZG)UCKjq&%L!=V;qrcIx~u3UqX$4y>|De$~KZsfz9r1<)LdxpG?J_fA+_j=XmW@oiYzYj4u1BH~D+g*45&AZ|R^Q
zPx||;!lgiUQBP<$C^z0&Xek=#%q_R@Dk2)d{BeNQNa#DGwIk7DvGOOg|1c^Z)?N|c
z2ojKMK|%}8LxIiGRnwsZd26O2OjcDZ<`wrj=+F_Us4(>38NuLw7BP3kq#}hDOOhem
zfm;rY9SU#J5$6M#puiA@RrtW}Aw#qd9Foio0%t(l#gS%*I+G)6o0^i_|RR{B3~`DMf0wl9)+tL=*E*
zD;y(b7)BYC^tizjwN6O0uD0gAM3*hW8OINDa_ul&L}ghO0&?s~*6s=m31u^uf{AA~
z7ncCvJWo*zLE$zEH8=BYO9@43!Ha{Fm!4{J4#X3e<|Ox%q0Ijo+CJ2DOw4n1bqn^UL7alL=ykl*7D;@DFJF|+aWbbmIOoBG(+Pot6WR@Rl
zmW_5YL*078rO{9O%OPrv!CvfZAXA~%(NHu$cen3$VX6oq;`PzgO^Sv`GP$94RpP}r
zz`EU2$PPcZjgNLe@kPt~uw9-Q
zdFS&34?13bED3>3OACUa=;W@iF_5kQ8W9
z*3jI}VZ)*;>cdz(WYlw$h7LYEY^=&hH(QZ~sMh3hwV7o{zN|m85e2)iO#2$HR&yg3
z7z()UcC4D(PT#u5PQ7VKBiW$*e|Y<=pg8{MUmJyBfgphZ!CePPaF^g7bZ~bD*Wd&Q
zHu&J~Ff+Kj1cEy=cu0avfB?ZE{NCAb)j4&l_SN21|8v<@ebrUny}oOG*7FQL-G#Ou
zPWsirx1q4hoOLrEEZHRMiS1sJ9WNmvAJ$je+J>r%mOa}bwF%DsQs;;Qm86|4A*Jx(
z{^q>31akZVz%!5rDl_Hu$%^TQStAyhhks8L;`)=@vYthb~GMBF=H8r4=XWplm|
z4S33IC2}Uu>L;-SYfE~M4o01ry9Ht$&$$HE-<&K7QPJ?u7!lHctFXGlfN<5px5aGj
zjGfmFyIzViyovgVPpE7(`U-SdS&=}bPF$Mxnz_6>V)7-kamin1MrdFemg(6m!O57B
zxSh3+d+h{$y(;gX6m$Vxs^nc{7;#&fTV@gS2_BmceQcaez%*p)OSllPitXS9l_}==
z_@R8U!_IHsm<-+VtI3OfiyF#Ix1Jj^UtL9D%Iu;&6e13GJ_2ZSSTcZ5{jpBuTDW^M
zMC1Z+4XF;PHFORw)-Xs^tioSbX@(7%IvdO$>5_9YwHH)%xM?aSWuwKAUXGJi5~||(
zxFwgLJs(%O{b`!r-MpJgvD9k6H4~#MZ0Nk@`6$I&2m6sP!`V@kPpg-Cthfo
zCcJF!lNe^6jg#bLWSPQ%ce0Qp(r(bJ4JV7G#STAYa|v3Oif0>?b0A+7k=FTPjS?uI
zC*t{1D4)NzIS@Yk0nKj<9>$H@%v|jM4qulT65lLd%~6~Dj$GAX`Xy4e?s}`|?)s6c
zIdIC>M6eo`R#~12`dAX_a$mwdpq96W!N{Bx>I71KQQ>)c?`!Mg+ClVY!b{!W``z1%
zQEVX$xo*GLpVQ%01JW7)3cswIej@w4p3hFxW9aHS(-gn<_{nKUHJ14E#@&8iQSRa5
z4DeOV?T%NWa?_PA^0F&XZKD#ilBcLH^M#&g`ymc0tf+O9v`|0+`%b|1&
zx+qlb;(qk{tI*e}Xa+|l_+RVgA@D9&IlFd4sGU1KgqJLoS$moC
z*@dSnfA?N1?ZU^mT8zabEIST1@5D!IW3nBGO(pfAP2-F5l1+NzgD^C?8~;BvdC_FO
zag{IsmZFN!+}R*g+Rblz3d5{guLGjM`k@2+qvC?5^t)l7;4UJgL$iK2diA#sn-x{0
zWwiY{=savJs_)nx&Q!Q~^>z=w?y@w%L25a0DBRgzF-V36qFPd~&c`qR9!yI_m3Q$Z
zFW7)4`;{h0$g~0FxjMfR6)mYI8VWNOWM(Ek{?<<(k~3s;QIq<8qu9~rZ`bCqx~y{I
zrjURx@PNZ%Ski{#cS|N|ot_rPBAzISN+mDIy6VFRhtq1Yy7LV%62w7O*D#L`6x=M55GF?o=z6hCDvWTPb&>5CSXXo<@f^8@6I(c5pcP<
zl8jE0ttPMD`~CM2z7=d_7>QCfF~dJZ`;Jh(mQ~QV3WJXe@^?JyHZuH&meL{(7N7XP
zCye~>1GWDF^Hll3`H%h{(ocT&q$(J@P)&`N6e-dL-34Wk$%*T?g|4Pvro96OV`c=nKBgVsPPNguYsds(|
z`1}gn!A<({BB+es4q^2QO%`%d1?Uo%TI
zyW-Ce_>iJ?9flp&W2)HUL^_IemgFsz&P`SDQcf0V1;3D_KS{7+jRiy}q6*|vd`>?V
ztA13WLaxZvi53`wA~DX5mB$vXsda*TABTK8#d||tftUTJ?ql-Wows9W`09H%GY;6?
zg-Qq0z1rIscQ>yLTJ^WfyeqhBQYVGt?!-h%r30QV`dB-^9P(d$;CIo$M^$RRd?D_4
z|Di<>o{^u@etlAY-+km?CoDpiP*+}2oA0`JiRhOXGJU10lQv!l^aIt*PYKQeRh7Q+
zIpPhipdB;Lkqe@>3T3vRx+{D8S`*Raz{g)1TTD=ZkdOzfQ!s!=ik5I|9NDMnZsgwU
z+9hr;gfnGs#KrleTeXnxf0>B%JWQ&pc2itzh`5~ef054b#8QPkhcf$viJ_ecSPTx{
zFGFNVZ#SGM?OIpo>|^n;VCMz7p-iufU6%LRB8~ryM`uk1L`XTSNR*v}oC#oD(b>$^
zoU5Ae&+zoXozQ+HkAHsbsJ3;JX{f&ROQ5sc?Q8T8vPXE2m^_)8AF=Ik0kQ6C_~@`9
zrc)go@36X#mNt~qA(=Dl1mi6;w@p%PmUu-e=3*)RThvcc@zXLF?Q(v5kAoekMu1Y>
z#F@)>#@?dJNrY|Leq0koX$-?PCApRa@5tn^o
z9#}z!7NRfO^Y`pXsp}+x6CFksw1pZ;*yyPCv3@2w!KK&$PNPVGdG9;^rZyydL=1#tOaq?BY>FLcWpEp}6>z*mIWWo9Ol
zuir4t-4}-xAFBamy2B1
zni=i+#puZy{LctD%et-#jA+mNz@v#b$O?dSchrgi=H@
zbhkei)@hSkz4P@XE-?t?GY35+l^p$(z6!S4Iy;2z(7&Umre(E|TMF#W)DUb2#wr3$
zVhZ94J||x=`Gu1U`4Ya=S@#PobyDsEK?ldb56on<0yzKnxUMKF^4PNse3KMHA8ysKCC4M~Tc10O
zzbL~L-O5Y6{}mov)zIIE6UB;GB)SNaY!3grFtqMRy+f@hs88ybI%STTk>1S1eRa)C
z#$S3d{f8orG{|D5NoHkz%*E$|jCuY_|6F4zkAiBs1aU)`^hw|2YB0zYH$KN+;
zDFS=G
z=o{F4sv_5zp#!uR6{Rp{!>RL~4NAsOdqX-C1(14sr68vwJIMQvL?#y?-9CHPp1VHF
z;)~iJ3RE_^rGs|?=tnCR>+Zi|met)HUfN-@JNs1zXO5to<<&+B?N~(3%xJ9z7d!0<
zx4&;<-+27(u+N)6<+!4Xt(Ibc_5fHH?{;o7t^5JVo2)A}POLY2C9kDNR3t0Gxmcef
zXB*ARW>`9C_FDEX{%RCU^w}Kri)XsMIYHqKA48kdr2djDM*QEi$@9O5*n>~G8$HkE
z)U6%li0Y$vD_`Bs{_%ve+^cEMc5eP{YsoPBGJeWdmlZB8HTyAVOx}X2s4AQB6&G@h
z(8Dk7~KAo^L_Txc3v0c;{P}^$AU;51#9=B!#>r!IJ7?
zB}=Q2+!V&N&CO4%8DyjqqcqZcH9veilLmx+1lCgIo0?iXLw+zb0*wujJym8Osmcs8
zbpe$2`WK?`_$3U9LCBV^%`y8*RuxSM;CrxR
zkdD!z;_OxBTy$Fs6@f=Jd~2NPT!I{|G5ui93bRbC5I;HHC}B;hUF&<1t3^-W_L
zy!7!~_3yM!*eAB{L+WNRY_NLxW@ex$*RgqCCf_zE>xClCE}IF|0U08P7xlL)+=}A<
zmqQ^SE0Ihtf`T#bIZmqU9^!M94!-gT6A8$!?;sCLF~sBFW@r1X^h+2N+9axx
zwNsN$O(>lV=HN>OvqUZq%SFb#&DZ4Rb&{TDF*A*kfs(iFn54+ugiBr-zk2O%tbCNc
zh=ZqHL^mKFW^{;oueY3O-q7BxqdkvUv2VJ6c#7E^1%t#_o>{e&R#TT!mlu(`79bEz
zlWQ_P;6R6qH5xfd#q9(Dp~<)fB*!1rXfiHx>Pk-rUVY%D4F+%g^k_X6o^@%srNvf$
zlRj+c(liw_w=F`4_4Cfahq$OJDA${kiYD{zcbz%ZuBhO7E~9^%T6thm;%=%6rgjj$
z);V2k(~>RPYh27XADLGW(aQ4VkM;E@gblHc&4FMz&C%D>0ws%bGPYoe*h!mazf?P}
z(xDYe?_qG6nV%H7#)w5#6sxt^YD%dwk2|+C^9~^5-RAkD9pKaP-WWa>1MBj`e@Phd#KCVK3K37TVY4)2ku(
z>1oyHXh0_uAAtD%yfsuQj9MMh;nD>;DpyPb5%T*k$2e4B`iG}LkL2DTO9B5%kv)LW
z@;58t!OhxxPId`GnsF2vWzcL9%bVYvwQ6cXWI-%NCX|(hRpr_c{x3J@6COd$hF7C}
z;D)(Vnc@aDJKyd`CrbgVgNYcgBiW;SU&}}GX64~!J>|W~50Ti+x<*L-3Lk7MbYd0i
zv@nz)s-ek@t0?l8U|ktw381gwd|bo1R_YzrISBjg%l_ySBjLBha
z0O}&io1#5ixhdMaQnnn?S*#I#QdMD#Qk_F>#<3fyf@{i(Ya~SMkz2h?nrYqqI_~0j
z5O|%7x2X&3I|(8kWeyVx6Saf*W#BuV(c-$4X09a$Z
zY);54wjD#sZu;lTswm^w#_nKFD9}dFwo7B@aY06!y+AI`)Gmq2^A;AF_XL(e76~BO
zkZqB778kblO!a^+djo!hKrp=J&rDp5I{8;r&3+9>2o!CjsBUz>5y*+G-MG>V!0a%=QkE2(FRDrSEG
zgx3^la7$n8@Yu>lN^V7kMfxJAjz5UNEq#LZd)t{aRYf|4Yxsn0Yr*_akgH`BE}er3
zxHidO&1AisN1B_HH7NeG%;6RS9C2%8-p7hpcqpJ=oDj>j?aB
zrr=fUqfJZ?+q1ozBZy@jsjc_Aj{6n!p@Y5nIg(^&du#d05b(O_=fP5>?QiB7d&T&?
zGDBO*XSvbJ?_HO?9>z9Wl8e8}SZe0_}8G$<#$%MI9bDO+e_dwjw5p
z<}GSt$iBMj;&+-X;cIewbt+ZeXrM&OL+8Eku09F&r&Ic4ihExSe+M6;e%8^M4z8H(
zH6th8?gm!;)UWN{_uNS=fv(af<$tP5i^}n?f|x361Ey64T6$fGxwU(j{_z2Y{zJ1u
z#n&fAU)FxXwh(#_ylT)44vS?hoK$Z2@r#8{l@WG5KsW_3|n
zTe)kIce}ETPue7M6xv4S{eny}lPOwPbWoA*#{zV*u-{TTJs^*~`!NM|p50h2EGrD{
zu>CIMteKuy?YYI<+A8Ej6~tLySEMxnsb*_dCg&@wN{lnVu9=j}blKR%ORGeB9wEKH
zC#s^RJce%;yie%nXFWn|QZ-_1$>QrPc-yew(8~(*=Q6~Ui7^#3zRzYf%^p`;uFf;A
zFyhR8ny=x&S?5H2^TP`N*fv%t&exWzko1fC5pkF<@lCdRDVtcyCn%VA)t{|$7M9K7h)PPx;f-|^(aki=(l-~Xt{kBGZ+jFrY
z;bY(^TxI&c-P?~^-rF`j%I(<9AE51_Lwx+@vAQSNq&8Kpq?k*JvenZ?u>{wI$E$@ulzu^Si@;e&cWOZ%O(Spi2Y-bt~M{VcAY9T4EpJ_PX1Rey^@FbPiSSi;^6eeXZd8k;w@%nu?hwB;m1m5t^ylZ%y`#&zO^Tu%LTsk{=I4`3cxo
z-kQ~rCXlqCxv0_Tqx3Z!^J*?GkDofz7~fM;CE(A8jJS-Q9!)^2zAjgp()@=uY{5w~
zz@@Hf;3YHqjd-YO*^d7zX|JrNqS6p7b`sL0arKuTKUu2kd;8!q9W;Hv$i8VmRHiTp
z*y{dQ&V-Vzvcm>T^vSq?{
zt7YEwR)=8m&!iMnt97RS<&wtsEg
z*pc!vWMW_GGzVAaG&vDP8{d5?#Dt4zTOJ2IPiuvxU|zNYITL?qioRFW)lJkXzHkKC
zrTOIG7n17#^pdAANpzjVU-t8?9Ip?~(ZG_78@wEmnL-#!xa8~wlf5uxXbWhfe`R==
zjhLni@}+ue{T=5+(RJ%Eys--EpC7Si&AbR?OJQ$)OaUQw08A)NtgpUbEB#2=1K5WQ
zW6V&CyH>ZbI*y|9%jmLGK{SkbCFMmmGDz?5^H92J=~5wCf4`Nyeqb0M2aS3n<}w?
znYWU_R6m{(o;p273ck5TSLiGqgjHu(hT9sH6^JXPt7E2pH_hV1L)y(7l08aKHei^n
zl-jzS0iNpo1-woq{Umck8!R&^3tR=y^_JRLmgt8?urOC^9UMhWvDHE9+8mWtSpa8#
zvOp8nr2!8e)>NLBbWe$o(%*yT@h@-$F-kS?SJK`u(j6O~%;mrsQoev+sQXI)fxlFe
zxqGHed+V1`SC^*pd4x=`E@fPopNoI!+_2Q7qQ4?lR7T51xPwTAV##Lc{>gm!-t&m?
znpn=86^aek|73^B~ZhcnI&hsSqiO|s5
z_7@zU&DaRPxD!bckaDUlDrY6vC8m)kK>*e;n=QVfvN)&+xE@1{w5BcxP9|=HqRPUU
zJ!g2zRKz6%^sfnix&{(2@XGFizgr{R=%lZm6IxnZvPS(Sq5oTp4F&%qVpPmfFTmaH;A
zzCP(zQ%mOI^QzOVGd84|XR?Du)p1E*%h7%y;WkjE&><#U{4l1tFm5zWl@}r7NGHYE
z^WMfzAi*#K0W{6r2$)X(tuU#HBOP}t9n4G{_B6-`6=+;48i
zvxXq4x1NjEHH^??h&AE48$}Q()7Wu*&VaL=bI-&6Rzuws9m;2Ic93$%Iff{I1$>#!
z63tn0bX6xa>vex+6-M__1dD*&+dQ}L6Q&TUsh*vEOFnr_VM{0c`4m?Rc;-_tUmtLvUE@LT!162L4ty7_ya)rt=3uHo;{DiXq`un(B{L(O5HH@@v
zACzf-$mKBKcuLW7Ka+IeteU5&{zFdgzroQ;`?f2vV7>EI4Wf5;($7x?nzU8bn9^yl
z9t|xSSBY*ujxWmCVD1-R1?A
zB$_k_{tI<#m|?O}Gf;HRv`rm;Z{{sT8@}KAP
zb`A+X+BxG<3yf(Cx*ubF
z4Qjcg?5JOu`O1;?UIH{)o5ssZ)N1Gzomdf0pXH?PWg#8AQn}pRGR~5Ev)^y^9(!vr
z?daypk>A|0+vg{1um!l`RdU%^^~m3NuD!u@THR}+l5TXAOsllzhHM7?YA1vuq1QhE
zU~vQ^ndtXS;0OCRoVq&HW$OxG<3lya;-6W^&fA=i#YNDQrlB8*Q?UtU%6?j#7|vh$
zJiKv#x6tsI$6jc=sXMQ~?+|H{m&dX$;U7suOB!Hk7wI>mYLvt(>CGf2kZXs&@8M#F
zw2ssogV*fkZ4YGArJ3J>ZdISZypCZOt@e|QZ$O`4YV+|ka*N2#32kOm(;P{MI#exi
zTYKkH#aY=hEPXryhQNn*QcB<6unt60?j%kEmImu_LE(%ASA?xa>VX&vSJItzIMs7y
zhO6l-XPtCCBB?@R;&D61mwsE+CWF*tG%*zO6<*j}@NcQ1hBrfiAr-|_I>IiHa(|WoWi}af}@uXNkqE$!MfDi
zwY*q0UmE=i9q8PGR>G??luhLfgkXt$+@|(QA7~s}t4pu`6-rR6G^bOJa9L(IJkkUK
zO#efZ%0J;=-kn|OHYmuF6DvoBH)(}jwqOP75wTb?CQEwY@1moS4-1i?;XBfMp>6j|elkNgCv{99e`DE2{-Q6
z=tgijZKn45>Azuor?&K|;xVL4Anb=|)BF*n^h#7|jRE7Cuoc~=Yw+pegPTd><38VN
zBB@wnmhy?sGiB>ReNh&bBoMF*0KApbSlET~8G%RgC;$MvngBS=j^l+&)9`6bl0DXk
z((9}HsLLa{$@$EnXNv(Q=};QC+@^u9fWNy_viY-i&d%Wp_B&b4Wum_bcz|r!F+nqL
z+Q^)
zcEhCOG!Z?x%#Q>ER|#JV-xN9HD|G5AS5H+6pWi*$I-;S1AveBhqw|_TW$E`~%ChMd
zwVFamGQrmCfa3xD$%S#GkUF;mAGZrr3}$)6%*ek!eFntok#sge!F@mz_d7hwnXk!`|gE`(fz;_<+&4C5;<1mgSmu9IPktlkx
zybxj&JF4U-xj276ez5+t3f^lU6Sd&gO=h_8U1mwESZ;~k;g9B2d`;bBHxKU}48RbX
zGL%58xy)If34g_{D%97!e8F6nR}fgN^{yb<;CwR`a4=3JBOO(c#2TgqnD(uL
zM@ig3X4?Ns2d%<|`z_`4cLX|>NVqs-;1qjKr&~pWO@`acg(ND245SSf9S*9hbu7&P
z(r%tZ8AYV;&fGc@Of>h$eB3TC<2&dGjh%$!ppVezjMwfO8WiR4@XD#PMi<-pKULL$
zL`jTbd;S-SCs{5pvzpn6{$5@G{X0WcEJqzWs`QE)oU-@(X!pY0!erG$Vj=z`(+F#zqKxo_z0c!$cT5@yKo(OKv
zhn>!F_2vFH8Y1E)Yjt3IM?+DIK>NX3Ch~6Gt*f_*gzbI^g>C=DD#Rw@VS8CTe8i9R
z1733`jMedIvKj5}fF^x2;k{+KYF!YcaXZhcz4KHht>U>EXIZe2fF*
zV>}tnQ)t%3#Mk;_0N@?qk@ASB<7<7qU&~4E32>|HXookR%bNCi7e@XJ
z*Z}82siLbht)Xw!bfyB1_C1__wY>6uhryB5Xc#*i5dyOyL#45nL+8FVKIkSon8gUW
zo^zYdw(g)_MRgH(DHNsB^+ZFFg;G+J{O1NW>inEr9VHUKfkXmHYtf&K
z=22+M$72dXY0b@Mh+0$@ApzCfLYD0V`*VAbK`ftYZTJRtl0sS^{tav$o?j>HcwOCh
z#3x@b~>v2?TU%<$1-D^z<~!M}N-GW9<+m8+)G
ziuw>KU>Kd5WG-GD40O2)SIJ33Q+k*2hZ(nYymEEMo>+|{x~*%0*~kz_<(HO)wi-yT
zGFgTG7*#mSY~2d!OF-~e;;oW>hld!T<)Gb-8i&TiPg@;+1VeoUF|L$JKs(S=CryW*-^$X
z-lgg0L^1rr3+JYrM41%|*)4j0!vGi1r~W+(O%Mh1$hOhFXf;Gi
zWRQrW7iR|1`~QbF&a=>CbAq4A=HA>wEMdc&^Tu4r&7Ga26F|S6u9`j7hA#xXo>SmR
z%UrT~94kPh=*u)+g*z<`=H=;jjpD3pS>)YXl$C&V6dTY{Qlig<3D|$Wd%CZ4S1hHn
z5?b`*?&mX;S^#)6z4SwW722{XRz;3CDV44Jkr;iJirb3)x>y>ovp4S$IK7vf@gg8?
ziT}o|-+lBaKaTO+$1y_^l{6Mk7T*g!#2C{EH9s_si69uVf(&HA5V}L@ZVI1;AA=Mg
zJAnVMcj|V)@9h5&)$soxRaJTR`JeZ~0$z3mf+_fa(y}rg&?#-jXfQ8IWm%U@r!?NV
zxhvm2I&8_yZAB}I>wres<*Jg>9+eH6bj-Q*>mADSj6ry|Vb7^8xOR4BRbZ#3^0(r|
z6Ijwvp1EeL5`WIJ{X+UIHVFSxlVvdwQIt=HGb#NQ3`vm?mIwV3p1Yu`)~}@KzQ3tt
zlVD__1lE*~Z1EW#Q$d$&ciEEDnekI-tdAL0aub$$s31cz#f1Vl#Z$3sh#U1PrLw#_
zE&P;AypX#quV8j|DR#day|Kw$3|#GLo1KCY%e_Db=rC0I4odN%iAz8A%`W4muGmgcSdZ
zixu0eM1Q4K+B;KVW00a55}1LXT85{}*gFgD%HWp-4gtqTr8EjGa_Y`ID)bSjp4$Ql
z&hztXh5yi++kxzku8H-Nuq<&kc-~dbpxs^sz!0mOZ?>(+QRHUPg42{X^&tkoOvDD=
zN~(q?Yym+S{Nain-Z*>aI>TaWDh4ToCP=O&{@9pWSupH;ew#h12~3!t-)}y%|7_QM
zt_+&6H|ni>&8Lv~u}Te@UW4M({W`j~;lMliXSsD0i!1i^0PMi)N6B%qVG!uV!MRsa
z@mRYg+1i?OI%jCkU{@VWDZz{wCI^G7qK#jdGH>eR3Rr$wsp)cxz_gB*d4K6=)2G#v
zZGU3M#y#|NgkSL7u?3LYoY_zxZJ(U;ZEym26rsWFW{@#%HgWvR=$0yCNs$!&U~$an
zY?3xVvY62rvw63s99prFp+yTlm{TNC{pii#+%l4qw5!DsZ}ExX(P`O5cq{tl^|QHn
zw5IIUb13QEVMW5(U%!iLgxz=(8p?^coiM!sKG;cb~y|o@uC6b20tmXrBzq${zU5xpHgv#NETwDq;Cb`2lM;tgz
zs$yEaCe)2txzZ}Y0Y@-~%-x(wX04IcV0At*)QVamPY0gwXh7QiN{T|U(CXuy=c3-O
zcYe5sPSd#IR0JrrE^cf|%6Au`mX@a`YS2TUoGhhDtJWDmT4giX(5~^NQP*p+7*{Ua
zLfZ0Jif{LpZErJ|_N!K>Co*^ZAeO8H)T~b(OqQHNpA=~hq^<%BtFq@fG;=qY8mlpz
z#M4&9v4o}OX@hO;L%9XM?LGwQ2VyLaYb3KMCpMFy3sR8X^*M!%KXsFcix03d!>Rqe
zQXQT3+&?yGXBdMzz5b*_AHTb?y=xp@HT>&MU>m3XL}cXG;5y8fl?(I;#DDg#u|C`k;*&VM0F;
zi?VuY!v^Ycquh;S*&}$)PTw@yV`#;*M}$ju-O1lNXtEH>Fh^OQhxQ2w+SfBHh8l1E
zr9=%CiRfr)sd)C9E+LA^(C?z%s9gg)FuD%5Qjv?wY>_g*?V_3@|34}ns^crj`_nZ3
zp&tyP^7I}1;(jH8$ZzAoq=1KzlzZ_h;T1D;tk91iSke|dl5tWq>n8>9%FI|;NMK9oq>8_dpAA#W-_+RZ!?5bk#Krd)~?xKh@q
zNR{tvFI$MYnv?vN2U?#V%sCZ<>I8+uV!Xb=wx3+p
z5(`O%s57iT3Y#Z%3#-7?K+|*9+chwj&+~b42lbWyd=^G0qc_b9_-|~LmWq~-r*PW)@wh@+yt!tiYf@XJ)FC8K=WhhCsOUYF;$fx2
z4?sN;L2dpBxcvJz1KZ;|oA)keU|mJQr^Z?)qy-<9Wyix?vSLvU>-1Q)0!@9Sx1x4p
zvy_zF#~4E&8hr;gmCYsWk{KChySw|#)h8U@$_tqQEoY*<8
z;W+Z|H{`S=6U%=S3xSuyo$2z2sb<8PA1a~YF>tf7StHInHAR_rev
z%3^)y5w;-s7qX08bOKTxJm~VpYvS4$&Sl$_9G*@u=`ydcj)G^cBi*s+YEp4A9}tL@
z^3wAuXICovM5Dg3!a=vdPckOUuE^D%sK$y0=r=dK`nh%LtPXREOySJ!P{QQhl<0|6Ty=JBF
z|4xGRzjyNg2kb}X$`{_%Bc1#gl3tRQUh)!xY1!8G;C^f_2UC8gO(G=UttysI>_-J>
zru5+&uZ{OYAJ@MjzjFWKfgT>>bwTq!>r5}|E_^h@F4EBq6iO&fObg>V$+A|ZE2j$s
z9?D_>na~zsDbhG|@b5zgnt7)w8N6Ut7dwsf)F5ORzOAAh1EEgKA!7zF7oDnw-W%?)Bv{l7L6(ji)C+_*R
zBHzIn+2P5FhQz*bGBa`U#nM+GcyeX$;{5I?uJ{cQo-7_X%q6SsVD&@cdD`(fw8qis
z%)%&%f)}kg=Q)%qjRi7coyR|^RE8y)l3hLhJewUFT~sN-)^7qdQL7kC)Dz8~d0B~4
zUsHihfSH90%kR|%%nRd1WGqqf2b~{pSRUpZ8Fat!ZfpK8I{hSBh&5IdSQDROMH_%D
zF*hco(NYLTZ42M*+2MhtxVcp{S$)}h!YWz*5h00OV!e)_*(xP>lHFVoAeUoxh1N#0
ztM5|U@Ud=f?u+P5(`EGd&V$b~)omsIgpjCL+mnI<4wtSW$g8Csg}z9eBJf&r2$k?kCFq@MPRv@
zZV-p^n$Fneq0C)8^1A1bw}S|wMP3m>Y-V=m)i&5GXUIceJRF{zvX;bxh*+%d^XNne`6#r#bb+wWhr9oc4#_Mmh2m$?4KS-U>8s@LA
zlnJc|{b*Cz{xhQ8xHIjUFst;1(5UJT$~8o`(g02Shb#P)@XzD!>2V%PA^Q89{*h$R
zNv1lV3tAvKi`R3bOiD1f{wKoT*J7ura5e^QQ`%25_P6ot$osUHOGzCW$-=WtHEDT7uYClAb(mFDWWn8Y_~JSj7g~
zA|f+SwZ@stb6(XT0pJMI$lwDi)t@a4(UsBCx$(e4D?nN3$>L@aa>qcj%dM3_Gim7_
zEMZG#JwTmNrH`gqczd2@k1B~hsbbBA&~@sujy#PLCs1BxtAf0o*#%zw{xZBqN)+-g
zl7>)b@83W+#{Jb+{?xV$whtW#V?)Cj((S>gD1|I}ObaMUvBq)n2(H*VDmU&R|0JY+
z<)@EOW5_FdiIwp}?UOCA1Rd|ZQVT}L{+SX=HmCmjMLkvJu-7lip*-}9H<7rNIO-`W
zg18olykp!0M_7s*Lf`iIqSZqSKWEbQ3&jJsE%)lNLIt#(RX_BqQLRFmi@Bk_3(MLa_XVR6v2c37iH^6+(c6pL|STjye=P6fhyoGvjU=>R@Qi<
zL6&P29(8)8=KgXTK8}3kx)#G_9tS{U(!EY_7)9V?3O;%Fsg#eQq-xA
zg@`oiQZ*7^NEk4el9S_!JzSj3yu%2>I7C%J`DKnBoZlc)%Ba>fgB#okaO8B%KD*EC
z#5p6O@YYOl$$KoEd$%#k+Vg{+L!gO7erRZQ7ThR6UC!ly+3D`Y^>FctdkvtZ*JP;6
z(`sEG(ed`PpLy81H3u+f=d2p7v)VT9Gs%YC)J)u(d`MW)VeCk@wh4MsL0SmKOCAH!
zhK+gFOwyKxr5!Fta8+b`kqLe@HKYl-_>o6Q086Ch{rsi=XJzK~Ul?A$g5G0-i6g~1
z9?SA&R{kQE<^(T!*nUy+6!tzp6c4#*kB_{QFog+
z7vJANEt{9e{s;3?h;|-&))*
z>Y(l7&v`1MXVuExpw@fMNA1I$T%J!B(=fRYa|Yd#*$WdftI~N8q>r-S^SF@#74?0E
z5J*-o6m6T@tuerQHA*M(;ECc<+AN51vp&R@3XJCM{3!Xih{dykFuJcYjgyv+K@e>j
z>EJS{5tuqJFV}kU?W@tZvrDnAMyqz|>9v3k6hlXmKk89P30$1>;z_wYoV(O
zB&(qJWGjf3kr57j>&$9LqC~R4EJ^RSqEpE$?hD4JDZUPu&U^&)m)=sA)(CFxj!CL9F;pC
zn#-!aehGiHl<4SQ0{GYKG@|AavqHJ;KaMoA?DXowj;pGJ)HvuMI4&A5L3_Qb~9hT0jf^daA=uRX^9UmR>alRCmQuq53>71QzaTc
H5lz
zQ}Juq;MRirXQ*7tJNTQ%zbLmLK8H9>aI#ldsEtrVt(hrm`PIbY?
zpH9bY`=nF^&aKLHPQ6d~K)jzyQJV8jh*LT~
zfZ(A74I#K&3oXT=6bmjb?tOsb_Pp5#|D!$snfKkZf2TP}=9^^ZzV3Cc^;uGVL1xEC
zoC}k!e&ir8!RI_&T8vkMPt|lgc>Tm%sL!UROQ-TcKchQ#bk!F#(}1zaFg4tB>47k}
z$!5t@5E7RbkM?<-0M+DAOe0SYBL(8vO&#uuK|MOZ~Q{C-V(F$HcjNl3S7V=3g9`
zCUNG_rPGU>G`Xp_Gn#SwCE+ed2hOTc$;_xs65MYrF4)SL_@c|E9aPCuw?w9noQa|l
zumtRyP2wyX#Ew{(iYt+>E!`(lD0Hv6MRDiieciv65lW+O0aS5LW&V~AFFP}AN=k#i
zY_F~^foH1+@l~?>BH2l7008Ew^;=FH$*Nx`5za~aI4&jopXN%MG;%Fcmh_$KwEHZy
zj>l|38&nwBDPMDuW?5Sbu$~}V9x=OjFVDm(bh982+A4qhL%W1J&D`DID`r_&}>Ea((Kw!
zlJL-o^_#VmCVQRc_j>Pt*PTRA9D1b4hq1?Uu=KY6k)&$~u}^`&qCi%c&YANXqJv{O
z@^8DIKH{4J^Q#5=|MROuJK1X>=7o+H$P)1RgCvzl&m(b=PJR$~-l=vwKRqyQ(|!L1
z^F(gpM8l9(6@NW5D#xaVS8LzYG=S4m5}u>bPHp0?9(OV=+c0D3QQ?@}H-D#7meB)(
zzmkM}Nt0RdBzOZ#JlSjWv~^J-<_cn@IBWZyelQ(IECQO)Ypt*&mmZ#W6n)fb
zCvGp390oQTgC2h~NOvwN;3A!!8rrxCQQucx_R;wJw{B_bYUGOUzZf14^<&I_5w)fA>b+#Ni0+Ao5I=
z;e*GYrG?kk?)Sc?KQmer>B>vL{qpJahe56MI2i93-qcJOmNt-0o6F+W)l?as`+6NrbZ4up
z_8w}c2_}>#p(M&Fmuc3v8ViIV1YyQ%nGk7Mms@DM3R5tz#n+Z+C8{V1TnHOZNr6J@
z`^O*xsGMPw0EG<^(Ri&y$X5|91?)1uMx2XUpwH%UzT*3+tUu<|3^fU|zn0RM`bNX(S!#cMi+^}4w)>{AaM|RF!o4|N
zNmFxRX+t(!Rwi)~a@lb0p1>p&%j<5NwH*4@0EV^aCzB=jn5jl8sz$M32BW2!qtwSy
zj<7OZfPq3*M4>@oh4L3wd~6=aC4n&C|U%O
z7}f(b=FYg4Af!|XCW>*J(@fK^nRi2N2=1F{Q2J5N=vlJ#aL@M!prtIyk2O+Iad2oH
zE&(t}KYWs6X0(^lPYM!j&TgL^cS#C7_B=`vyTW_+E90Q{inM1
zMeS*NO511Wu>01EzX8C^h@L&HA%VZEL37eDXLRSp+~vdIu*oq%Pn*v^;8c0!pFEI%
zGek>zu#V)ua6DDByI{Uk{TnZO9L4hE#uO?;CpvFsGi#+j{#{PB9Sa?bhR9S-Gi>@v
zw0NC&$adSiW<9Tx%B)D!0!e)JGeBnY5={zc;uSn95A&n4@-LhZimy2QGDg{Xbu40E
zR4yyV<>^K55v%Ha1H1XoKra7jIV50kuTVc%#av@y@}t&%Nga*ZwKx0dWw`nGGW2V|
zKMC;{X8HLHZX8L^JPc`ynfSOe<5YSt&ag1)>-$-h=U__wDI5cTWurgmf9I
ze7%AXy;i@k?H_>I#WT%*knN040ZnqUHpEZbmCl(bG~>Uek*hj?@zoA`aEMn243VA~
zqSFjFes@hNlJM|2q4v9r%ZNeyrT*GN?nB?|Ynh#jVQTb}JX{CqN
zb=qe(VxdOAr38QN@wlC@MA$q3R2D8e_;Kmw*+PPxTIE9dHLvWzb562dIU2k
z4BTVJ?#B1+ui7hz9?Pn)s9EuuVSWq+ALC}hUnqS{Fk@8nL`j32>iJB2c1cNfb?Kn`U)XbA
zZWw=V=E$P?2;WiTtVe~QlEUb{t&7?R)qBau6T~dzWq(}m>R#CDY1W7VCo!B)a4@Gj
z>&^-4M5F-~E$tUR?W~AITmGK#FyPC#v_J1xyJ`1Il5WQ`CuyjZ&k}Ecwezha%zwKs
zTI>10CrsQqeqQ&zWkWy7cEcm+4EDb&w*CitDM|xQn7hzTw-D&*eYd)9C>`-e3X`7L
z6z2ZZ>4C;(D{a4h70wzMeAm4gU}ejE+2S?7
z{JD+L`11!ce729PAp;#1oDvdr&llJ0B-%w@!$bAu_|WeAB7rv*v$A1M4FS9eEqHl#0iC`{G5Wf!gk@w%dTJu{<ns}s6PGrFKIxzpF1&BhG70x>((*Z7|tT^MEFe3mSaEA?!Rol6vqI9vLMR*36qchm#w@8QUd>ko}w
zrsuXI#LY#;od2~|82%z5EZj-YADqsm_tc_`2B=OCu_&bimo_*D0gR2Slkpm(4togc
z<3~#dMu7CuGOYP;Uf-EmFIiGY&8CKLhp$9APm|g@UHpC_$sazSg&!$>@s<#WML6m4
zAD*3A1DK^oz&}4w#&26OQgL4eI?#<-nI~TY+D8~ym?>jk8XH^FcOZMXSK#RKWV9BK
z>I2r_>j&AT#_B6XIwhX+Y=2Q#zLQnKq`+5(>#avzz*i2u`7G<1-x}zx{1QZtl+&^)
zrUz4EO?843Eep|?zipt7_7M#P~-!{m;XyieC1T)2NTv0(lVo?n)GGI^2@J*%^-TxYZ4MT!jlCd_;`IhHFr
z{~#?J;u`NHqhWy7oCikB{6q05j~gmJJIpbpjMsmMG;F_V2+}@PsGDBG0pv2v@e0)d
zZ_c1cLif-Ey}EWOCq0u_o3F0&)L&AV0t_w#Iu_&2PN>}!oh^nJwTCGXui8YaY*WL%
zlW-UVn!isq|6$qQuZ6zzHF4T~_wG-1vhn1WW7X|qAQ!S`aAu3%*gSs>2vFm|D9IVi
z+WOZ7u4##9DHd^aPRF_3hWAW$l1xyQu`FDqKh(;Rbku%L^?&<8{vlQ3$p&x9(yhA`
z4GpsjTSsHF1gzIK4qa7I-SV8nr6&oh89gU3Gu89vAT3C^*(5{1^veArnB@oK+|S&-
zSnK30@co
zKyQPsGNv7-_$r8y69Z~T+a^2+bG>iF?9ERH<(1<(WFyu)<=fgmS~L_HYiF$~K7Cx#
z)6e_J_u~AJ+fry2NSAn`;37O+J2Y{4bkZm#coqVU_nCAI*z^mm8B?JaaUBW(
z`AmX13Y=v8V?n;l+KMykbm;PD*|K{EHff{oID#gXY9dyU&AE}5vz{6Q6PA>tl*qF)
z@dn_w8xuA;PAwEOf=O_jMbMUL@^F`c;otxggt=MA2Eds!$Dv&hr^%>5jH|l%XBKw{
zmRh~%tCK(Aa*TQH0h}7wu{4%`g#B5tL0Pt!I_%>F-;YNbzYunG(!AB=Sj;7>te4Bg
z1|4aJo**?#=Ma
z?3vW%k+p}AhJL{0oMhf9)!dBE%jD~WZCHt$>MNw61y5$SNUs5XU$G_-goEqtS)s_m|U03$M!9MYm+xFkCqQNLiejn^D^`m%E
zs*0{`0;h1yoz*LQ{mI>`3FOMON2fA=g8_4
zx$PE;VsV^K^4WFgeDj$I9c;eFS8=q~*!RgW8wb`F3
zH1h-*bpQ;4m~@Tyz1?j$Hm(U)j_B3t<^7QNKyl~a*n{;XjK7ILhyN#km9c?s&U`TF
z;{Ey9jua8_H-AylkXFv>ZBQE_jhbVKU*}gL%T_;c_`t*;zA}v-Q&1Pse|J+ipc42^v%j^^8ZH;JjG$CMaq10~3aa3lFL0M@ERwdykIO;wepi}`=)3`NLEgcp|0
zAHQlQ2WXIjM5c})0q6oWCmLB-jmjCNYV1&kdm+z1Ghx>=q@xyalEV6jpGn@eaYla47If!{+<*Q5fWf^^p*;Lt86jNsuVMt?qql
z@`>+2MVE9tZy(dDCM-%1EnSq>oI=QUg>Nr+=t?~Q?Q!Iv8CKvLL?8+weB$o+J#kugeZdXd3P2ww
zA`>5qU)oFd9!kos+>NDgbEGk#o+ei$2;!zZqE8;vGuBJX)2cRKFU9#u;9Ws&H`uA3
zx=okLca`8`6aJ{Yx2V1*c94QF9V{wwiBU#+#px{{<
z)X>c^5X4GN%zbnWx+@JHD|78s+nMZ=|t<-%kUJK`Nh|<3W%V
zL-{)wz#CMrV)|?R>D7FkT~c16%}&3$ajY<@kz`}Fl<}&vc*D1u=U814`P7qsP?`d$
z0U}7(01&F$MZ)Qx@Af-_d@gSO#Yy-V$973(o+Jw?16t#tCqnPGy)Pg9b^WDPxYT=g
zX6se+*=boj#A4nDXuo%R}L9Tp%?y^TO!b_^SY2jFwtH64D3{_LULO5*DwKo$TCIriMG2
z*_U^{i8qGh$mkue)U_N)Uc8aW!8H*K7r|n~T(Ti<==CUi4?T}YQ|#4&Mr^t_HET?=
z3|@nmEj;$m3~9JI_L;AP&uMYg$rNTDR3^roLg+K78Y(XyOj#_`hkyIr=CC9!Wp)hn
z40v0}o@D2BdcN^0y`vxwN@(`UB6O&2TFi?)yO3wr%3
zwgLieSBXXQ_$%Cv8c}T4YIn+lU0xQns#n_OiEe1uJpub%;P7u(IH%v((YIo}3ZD3-
z!T9mJ0!iyK;Xd3?2s%dht?w~&r5bIm29ARMAn{wNXDJX`*D*-}za6kohc_dYF=k5e
z+-$HKQcBx?wMf!l$uMT+q`AdS`{|9XL5vBlIF@1bFOG@)D&nRx&7ZNxz4zX%ZfR$t
zruEgEQTGkei9c2W5}f9OzfN@BC!F@)C9(rI+={Evm6c`XrR6jdMn>xT3HF@DoxD?W
zx#l><)7F{~)-+zEKkPGli#Ss2w1-5oQdqr&tn;f`N;OXSPTQ^!&KZ%?Rma!a-o@`F
zEp=-9V=9Ky=Yl44MypPwHq>sh(<9j_Pps72xTXze!n7j>S6s_uYGxwk?2+S6e}_TF
znE}})u;RCN*bx28Y|aXWwl`w&&S^QUPdcP_Ru{#SYY{}R4T8_
zGUJHj(e#a@`Sj1MmNA(!|T7SK0M>8Ta%>77umT|oWsQK4_+hB
zZX@iOqa8*|K2Ou-?S@1Mj~N>2)|mLg%e6?su>R**N5gYZO+{Stv~PHkRQF+>-z(K*
zJDv0x!@A5ikE=lu9vq|-TB5otE#;5dnyApxX1=~Xc>m%Qx;<}x^d;Ehdt9WW|KR-4
z#Cf5;zU=o}y}}Iafvqz%BVhZxD5WGVc=Yi$-nWeYt`-3jH(8lrLQkbw_X!j>WtO|o
z^fj|sn=#vgrW1X-@TKNeDiZ*j^duQ|J0ja{QHf~O4bz89WNVegy+77q192-*y|Bu9
zN(qnDC#w4q+BBJo3(+4{QGzK5vLIx_e&q*X*VD%EyI7O01ucNyr)B>)F5X9GWc_7}
zZ)!<|@*Zt32J#vQ+qX&jc|SfTxKIM4JoLsrxu*Co??OH#)!)#oW>`!0>c*q{?1zx7NV5YI
z@c_^u1&u5c-{%F-7W~%iJ1YZ>Q>ve&I2)TcahKk4=P4Ze?m{j=FvT@Z@wH7t
z>;)ob%AuW~fu_E(gUby)zA&o~*G
ztk0~c0zSJM_1&8%5GG=GGt0M@lON3G{%2On|02TaV)5p(|KgkzrDLme!VIw4r?3D1
z2T<79PuVaruV2YAFv;=-3{#6s_!=0~!l67R!>TsmTwT9J0$&VysmhZ!$rtRk5*#(s
z&>FgFb_q9?na^9?#mMg)Fm&0-WCRmZ6U|q!TZwqRw+IHq`2YzO&65cWjL{PFjOOqJ5a%DXR8BglFreB%ibhKcf!Gu*CfUrMSWbRkx3Ia;ZqKFSa=Det~
zD+7iMHxmmzrly2IAw4wW01TkGB4`uwI{LM<2943rbH9GzB3t#4&EG|K07@>ItZ{q2UJ5I!}I`e$lA=#l?Fo;ibR@G%jU81ay
z8m(e_qS^
zpINlkynS8S3jUZnXP_*ejZ4F>v?2WRXR9okmgL1dya(9E&Lm;4i3#UMylT}J^WO)i
z`qMYgIgqYF)8u~89Oqw^OX)mrI@vhENwxCqz%6ZJ#~?1u2uOK;Ijg?70=zMOk4UP;
zmZUyc9NJTuDY+-#xJt?H)?
zMB99KJ0L)7&*;_3@QtzzB{JnJ$H|cx0b2}?Nq2;BHisrjCZ~jmLGA%E8SUteLB@nB
zn7K<$r(&LUo^R~T(b($@P{%gV$Ih;OHEKyko28;(XHh4kOO<+xS9Ix9U^lN3?y4c
zZup^-Dj@Vjwp>Y0fvb24PI0d{AK5nLPpxZ?^L~saz?!*cHYl+w%uV}wdzs`P36dHG
zr!e_2KJGX~Im?%#{67_wD^x&b{xWk~$U9l*4ZyU+!^{zXDG~9;&gou=W(tEA1EoTt
zCUgJNZPUBMo0Za*Mt4Z{k1ko7DhdDG&fr5a?V3-0df9ROiS-BRB}O%}zDY)>>5S5w4)-yWpI&k-suJbO1_DEE`GcX!sb=SklT5$r4{oLG#&Xfi
zne*+gqLv}=Ovm$5Uus-1=-0x*Bwz@5uDq;Z0~u#(OY}zT{Sq_Lt~?qV)|#$fZh0EC(WHw
zu4cT;LOb&~54^wKjoNwu%+(dAvCx?jFFZ%69AQV
zrS^`bkJ^^)eB>@w
zX>PyADN_lw^mLMoQ2~=&5^_#P(t6qof$2RC
zy)+Nm7pzO{$0ceNf?Aw6i0GxhRq?4;M&!I8=9rT5NP$ux!Jecr9DGz5
z)xE|~AmwnS&15>4E#D6~X<*2i0^&QR0xAAH)ee>CcD7dggEVLx$Dgu`mTBdtG@LVT
z5ljQ=a015kuP$yY82%U=sp*G0SgKX2;FVeV`Z^qu4@nR_lR2|jGNE@3|8cU1YILp&
z&;8{jN_*##+0M6VQL4qcLq{V%2^5%-c_lK)VZ2w*g((QdJxWw0o3V(N4nDh+;4PEj
z^$U$(nw9^ydU6CGi05c?8NrfCpANRa0-nFr(4l@U*D4b9aYm;wT9^5KAuoT-teS{h
zAp>cRrkbKDFem-Rjj1_rRcdSdx+vcRvz$O<=F6E<4HJ)lalY)(^zhs<%9xn`xz8_H
z3Hw0Ec^mRNy8ozap@TWJJVHoIMRFItXjW}MD|rB;m3r^uWa1sFgvd1kZA)3v1TKO>
z6&9~QB8H}+#FHA*GjYPPZmF5&ta@Dn=EU(UVM<+aP+H
z3sgXzRgHPNTh1;K|Ah4lS%=!wk0hI@_-%^N?jIuAWhW=L1omDfiSIxCQm#RmBu4ew
z-eH;;hfCyCK4xoDZ{C~+C8*mS;eul@K35dK8S5#|WS#%gqz)h{UoHbCI!$M!p?NhC
zQ>T>7@PqyhgUHQNp>usS?M8`ZYD_99@yJ#)`2X|U)rDXi99Qq>I{)uq_-_`y{{V=$
zSPBJ(Wz;u_4iiZ5x}HLgf0}8q3qF3WQkWnXkPS&VgKRB*m=h
z%nI1J8Xdp9%BZ|*P!RCOpUvDz$qRqqj+Vu(-1jQJ4ngKV8GW@9n?ccexmQwAT?d23
zGuh-BtDl|a$z~h-JNvcd-H?vyaq*liR*wLtKr@=fcHZKy6gE=Al?u_dyu^5g{65#d
zMSEg)Kclq>;CBZP1HrF@f<%qij~9|NjMFoVYnB`6UF`Ho90i;$a!sUy#AQZP@B1G0
z{0Y0^0tHbh6|uTNiEia=OkXk@iO>;jjG*FA$JJo1K`3w{2_5o%aO964FU1>ewFwE~
zDs@vrW7w5^5s7iUs-O;K=uP!_#%-qahb>{@7f7&&vt%I~`y`#L04OtBJc`No3=6>2
zuHk=Rc6exOX&@1j5zfVy^SmkBp6nEDzDbY>d`y-m_wpj3`SfOKzmp*D7pBn5f6j!k
zO*9||KiaiC@L}X5fc2@*s2<43*o*_C@GdeuX7A_?FXo(4FW9KI$0$A$rGL_-?U-Io
zukI}Qb-$ylg;LAj`%jtSbkzyXfuKm=)LuGdpeLrD9&+O2dHpYr<%*WLIE|dA8^DUJ
zoObWdvFdf;0!Sm75LT$kt>O6r3W9CuC2-`Y22`1Rbhzt!jl`B|5M2jEyQU4)qHg?z
zl^(5cQuzd4I@W}*R&fy$q0FWb7K;$D=Ey-h3_;~7@b2Bg4Z`!`*Ghd+!`cjv@HbOg
z89FD9Pk7EHc0u=|N>C=&%%Ke7-PGDTHU{wgaSjT2Zs8Fc^dg(z6b3;gE*enJOcmjA
z^68(7OifnU=nWCsuySz7h4iphlF4>ze0bsOIo30C&4IaQM6bO5^wBc7JoO0d=DsJn
zZcHZ?zFvkNt>N^KvycOPN0_|a;iF02Q#@LeLBp!m6~W)r#
z;T!dq`yTRQoO!|R4H6ygeD&tEh?r-3$+hIoKnbrz;;JRueKGtORmA%v-zDA#u-PY7
zXpZ1h40IRnV6O&zm@QK6&5G-13I-wuVz)A3{hrt%!g|IM6*lwdex_@9DC$A_>$%Y~V-0PvGmdk|
zS}*nAy=jzBU{`W(=;3@dMtniGD1*(C#@NB3XAA~`qzZJj&aR`Ym28trp)LGkz<|ts
z8|tG!3hL
z$$L_tF+Ij7kBuBmd>%igUlb!|Ix)P`fC%&q%SoT%+Qw?mAcmm=5@q
z#q?ouR8pKv5QY&!(DOTH$*%L4yN=9aWVF1Vp@F~l4vWvPJQOAcdTA6~igq7fl{k7)
z7(-nJ4)%jVGgxbbBnNGp=hep20U#r;lt%Mv{}4SqbT&w3Tb#Rz5O_?eVxd?;E)?I&
zORK3B+${z-zGE)nrBRL~I6Uju8r(Us&C$kkyAu}P(a=0{;|`Xw2dmbeNXkeXu|8)4
zW^8Ps9y5}7jKtH{tdqFx)x{1HmAcmpP!@l|0u|
zH%pK{w;5RU%zvUfwMx}L!f%Y+Jsa#8An^2hf*KK)T?>_c>;n>kopHfsj6j*qUPcLBYDcw~tXsrcz>Ckim
z6<|~^Ek0>4IEWHy@=Kk$Kw(|3Ybw0v(%Grv!*hH>b3H?hf1!((9+z&_PO#~#Ug>Q0
z7~K?x#H_5G*^2N_EN-0i=3frr{+;Yh)FzQ6;XkoN*lq=n^Bs5j4>TZOHr}_Fevr3O!$#*N?YH}(T4PzgQ2e38{
zg+9X72rwu=1{}(Dvuv0P
zU+Y_-Sh8xNUlmdYT}tbs8*958p~cTVQEaIEoHAmY*3(ly|)^6n&{mp~eOD72--J0aNj(~x!
z2<1hsLYpOCTlM4jZsVnAM`{_vV0pgBg{{Qjd2_RP6xU~EnJu9cN)`8AL|)^*^lpXc
z4wbhTsIsvC)lTpK0812!vXUvkTP#uMBhBN9dk;L7>EWU=OD{Dz(j=Pxi!H`G+TZ>V
z;Gou6FDigk)@nL9JvE4TiQS(7tn%8s_U3JZgZ0SSOpd$ebSO0%=X1I}e84WHZn=AH
z66-C4pd*ZVWx;6de3taG^L%kl#eQ|za~)Up`JmPd?Iv#n!&d@%MWdT1r+*UpeSxF0
zW^vU~Wy|)2dXL~BqmZbzJp9iTl||Q);ctUXxpP^(HB5H;C`4HwWpa!ZnZ}0hMOhU#
zRdMY9$aWFQT`BBihr>f{mKHE)DS*t1pPN<3x_QBeLMARevZ+GvHH}P$pNbVhxdx|u
zaLC?@X_<+CBoW)%OOJUNH_asfi9x~>1(YPp**sAd%adX|w|LBpvs(>^1sk4QyDa?kLngy%NF}X*9)>Rm5|CAlROA`O
zY5DW=>ax3KCgHH}_LGDlvGQkA6Xho{WpA`e9@4Pxem5q+rUhij`u*M5EjZHl1OS_oC@fu$OAaSV*UaH?*?vpT$M1sToH7
zjll`fgpnz|Q&mwls=(>iB6JHkaI+%*g|Wc6?n!~~&~m&buj|YLriGYEzBz>=IvQ1^
z*D2M&yI=K4J^pEjZxcXEO-pihNK1IL!qw!tZn?Eznz2?|MO`{qF!H1NrQODPer1qD
zsM~NYc7I5g*&`U%GmMwXdEXtz)2Z^*pkN`l+F61AT5dYBShrQ-mE=$%SDXj;Zn<7B
z^^9d)cg|yZdO7lulh68YPSGXE=1f7#PVyJ;@?`dx7fZ?Cc)+wIH(L%BT(Us
zSMtSR=T-})iCkIeMvpk|?TJuG?v$@iY-M;D|3f-{;!*1^gtx?Isgvr>Y~bnS`{R64
z*66BTi_#n?g$C5*Zn#**fV-?tG!!~WdKPygE@If}sLrGKTH^2RGy2q>=~>KT$4ZZ0
z{z}?L@v!}INL<(ov{gI@&D3_I3a_
z4D+tfm{zWI?(_Ave}KE|*mICRut?*eCcil&`?OfJS3R4PwrR5q7TcQ}rE
zwlpPuv<={If6MFRwzZS&l3JLyyK_WVb13cl{*De(&=QwjNS6Xe?}2Rtws-k?`lgH>
zU$|dayr58$0CKxpxTyrORl;6#_@uWrqumW3I0|TZt~ZcVHg0@ttS7wkLFHlLKU2tF
zdc8dX3MGFx)G<)6b$TLriWz^+kyjB>QE&PIHUh
z^qtYW?a(e6%^lyb-nNqIt~;7L{QE@0ot!w9yS4F)R~8Ma04U@Sm2R>IJ_2(2&Venz
z-^|J2@{b1L+r%`QYOyf}EhWLE{S;36pcieMArj4At1J||*;k;dJ68Ye*@a5$9T*f_
z?`f=`i$z+FD2el9M09`rqobr}_>rVQ{nhMLc5;M`-0bf_O(idBmYw|zf4HG?+6$iP
z!`)>=pp#8@xrM^zOD(1C+PZJ`#}1AVZNC{%bMx-1r+8mF579up;qPP3-6F_Eh9blG
zp~B`lHuImV&e2XX6AHyG&
zjki_wPt2oK-#%tBaJ6{VG(aXnxR!w}qKNptJM1LnEyjyB8kDAQ{`6p@GCEy(aClP=
zk9q!M(AvwWvQe?3VW1xkSJvhwf!l;sM&fj|HGE``jg=f
z+$M9VUW;}?zKqY-b$!)e(i*f^$;{(X_A!dnaDp~`C9<6W{m?z1zixzu(njPU4V|o5
zUhZI#LK($6jRFF!`?V|Ra&{~D`Rr!fa)Au*_F!16Nv&jB$^FW6N{d7{O!{UXhhmt@
zq6_t;66CBHmtDzbKY&F}E2VBVOvC^LT@Fco%oVoLaufQI$FM=iY=+>*{>cL
z(<&I4(9X*EnMHjLoX~jleH~ywHno?eokqN7!%{ekIx@?9{8m#oEKKC@?u6$(I(i{!
zb$W$bsFA;kR%7W+yt7_?>;B^W!lfiQ6)(Ren%LBJ&|)|>hbwVt
z%%pZ&vglKz*m9sam%BR8$QNAJr@%Xn1OnsYfNE`_zP0umMSSkuS_8KSiX9c3l0((9
z;k$PS{EM(}AyMzq;GR``s9}C*S<_!@f>={SRZY|0UD?_X6PQnL3VtabA%8
zbCZnz7pG<%J4023|37JY|4sfwa{t%~@>KM8C>)H#Ni)}tH(Gw@Z1e1j1-p2)dj5AA
zBOP9?w}PlD`M%yD=bDGI0Op||F&b~tHPV_qDc7`zvoN5LcQr#VE^Hzna~eMWBcUMs
z_RMuNcim6%koKB>(_iu8+*yaH^+cM)f<9+>#((u&?T8(Z>+bQbOoo_g$Gc|+TufHY
zXa1kP-eW{w
z{LuCR)gxa^SZJM6bJ)$OEIq6@V
zl=zmF7ydg5m9Th`_?q~;BVkJh!O$g)0GrWE2T#quhz6`va;C`RR3Y|f0v#zGc=VN|
zd>s{9Sx(z9Jfg0(?CPsBLt$H3VQM+vl9Mh#q#pGQTdOusuU}1AhnquisYCs
zRg5gfKY*e*!{r1}kwj01*k>i%THDW#sZl8NlEj!du3SB&goh-N{`3Fhw1jw&G-dQn
z-!aJ#B+@eSM)W=uPvN(LKMT;zb$Aq7O#_6T=|5z!WejPj=_U0faD(?Q?gFU)PR{+I
zM@-oy-v3sh#(?9iFkXWOO>x?+s}rHuCQYvPI>DVPp+_FS?EU{RG`yFT
zDSV?=_-(t%-*~kBVs?9gQQzQcY!wvC#1Od4944=Z7XGn+UjgNbGYO)t+@Gl}v7^RL
zke>o$02VIScYi1QyXL0aPspb}+9T}aBG(Z`$;TCYE~hN5yKRz|wT>M
ze#{7I-T6T|D}&z&w8+A!c_Q&Yijiyei(FveQ8?of&;%!F`m|i3Q2EDq=`|FL=ai11
z7@Ey_HP8DbT$^DD(8h5SQVHviqDIPm=Eb!Hx!b@x&f*+P&~1MNv~+lV&rF$tA;%M^g0+
zg?Vy2gRwWk>-rYp&PPw^j0C0bKvTSke1F?iJK9P-k{1kPn9bWFp#9Nsh2Gm%DXPxU
zCv6gD^*N@!y}p|SH2uSmQ|59Ecv=kz3(X*LSzb@nOV5Z1Stu`oOX0(+*E+FBQRKtQv`r|x@y6|!ag^`YZzxsFDk-0vBKuFsRW
zMa~#l1l;K%fna`q`}~VCG|X&FK;;SD2KRxi*NNKZTNI$3Xi0`yZ(w=4*|~Hx^yK2M
z6SS^DHvL|}M7sDomCd%X89lDb(-dX!8?aA+Yc<=x6^YUdj$rhSun&xQp*RY8C{%6x
z+8ABvz2=kf@TJwds*;>Je3}Z^bw25rR!t?~feRbu$Xqwj+?2*IX*l``-(3q;8}A{r
zeD4{YOOHN4@1D*#<7tSDQ&rRW5O2KIle6eU7(0~3D!{^8UU4Zs%9K;^`u3X89WaSJ
zlp!2FpL3c70-HtTdzR1t0`YVqKGHkOKsLf$aTkunDC=is-^~q(7M<66kvi6@*V8DW
z$u_Wi+okF25&MdLumJZmO~4HBA4w_vPa_kaj0geN=5reA`azA9(M@7IKrNy~`iriy
znNN0*0FM0^rMnwbf?#L6Dw?)_t4w!m^f$
zO233bWAnX{_Gb-aCM_C_y8*kt$lpD#MJbGEWH{mQ8Q|0LU?I@*G`JPs)KE+vt@%5N
z#hSnGr(;U^ff&$4(`JOu*-XM>4&Wr!))1=r5$9x=Mx;7f1J6KhZmB@xe@fc>|Fe(%
z2Y7oZK_Ni#*qS@2nck{f($lWl4X=^rUG1Re#K8711MDI^FNTA*rpDJDK;#Oc-tO
z@}GpT@JPz%f#nCO5Z@geb7jWY9)Ul_avC~KIaYy#wFs#xyK^TE(avhbc6)axI}bL6
z)=HTfu!zyE2mR!iUfS#NWL~FV#z10u5dl+3X2(hhLTABFJxdseM9AH8>HpAnUQtc;
z?Y5_*NKq-$kuISqy@P=Co`l|{LnzXPNKud$dWR@AB!Pq`9Tb!rdhbQ)Rg|vO_vF1f
zH+!FpbI$&5bFs$A$XZ$dXFhZOW;U@H4QI+ppnl()m^ve#6f%lIUA#+67gAclQ9t5O
zrM$HMp-xbSan2%K(H2SYb(xI7)%B6x-BI-OYkNQgk<*^FRlBP_l{%))rkYjr@@1L}
zsrJe>K4$xsIQ|{O$wie2grn*JmAaImj)v}|cgemb8jyr*#vS5Bn
z9E3x69zLdwz~n2<20eY9n8l}>06ien0VhL0nu3T$$O(B4<nH@B?rEUL
zl3wDHU7H;0tx-^~|H9dgyW%Q%LsDXIqFmGBfgUh2$%WxO=`>42lMI2lb0#RJ%|xdt
z=o`ynmRgFa>QhNX7WmSeYM_lGV;)xwD`4KuM^6FXDueDF`5&aal_nMxGCg*pPQ7aS
z^vp^GqGQ=A6yws~m|oioVAa=<GFMrPgZ}7Zbg*0``NhUXahITN4}ROa5o&ARDT%#o!wQ|zeZpDsbOSEu?zWLb_3*_Ig)uzfBUCLVJbNXcQLtFYC{h^^xc^4qnA2_Jp=nXn
zj)&dhsZ+Vw)s8T`PN>W7KyQMY892&kv*x1ntZrhwM_c!8d0@8*(D4gjj^+|br}l-u
z1aC~OsY9R{kr7R{qEcwYbU|`Yr)UzKL1I0l8}74uOQaC1;fj`rP`5AAvxI-}IHx{e
z$na+E<;SipoTfUhl&JTOTBOgNO-oj%gxanwG_WF>BHo6@Mk+{{@h$EK(X=z%<~<3XfPp%TRk?C
z+a&7{lRQx2>I<*v57iw!&q)
zzpdw$Sadn=0D@U^@(mH2&KylB?T@n)&aFb-b1fsH015dC8C)9A)&BO+NBOdh;|b8)
zx0q93$2zOZR*5o;z2L&aB79)t3JP-F@eQ_Q^3ygnH2>k4(&tb+zOm=#+HX8e>IH6L
z7I4FuChe6*qVAXqxUD|?`(;u`4-OT|M2>pj(`U;w)
zOMTX(l^GcPw{~IZ$haZMkj>B5v
zxKxI+mVHT9ZNig@01e80!1BCAEcX&+U9W>27*4NX6^|Q&KIn?oYoB}EfPXK1BED2X({!6Q=7L}MVHc9$c8)HzI=0E?c4TfQ3I~KBoA$}
z|0B>PY*$6STxVVC;IRqWCJQ&n*o?2CW^9PwaB9i?%Jie08h;ONun4q#iB@~0=IRmj
z4}p`>wBsJCw7l?98v3CMr)Jip4vBi?b1su|w3#ZZv-@h2U_gyBu)(2%k(s@MrWUg+
zy6igN5NI?d*WSJKci_&-1o5W$+=Y(}M0@$29H5p-22mT?oo0V_o;VX3dnFQf3WPECV1(tRpR_s5#`XzMLL#lMo<}SM5bixSG2DtMr+}?a6aXQaG
zWhCo_ghu(9Ag-7mQSO{dZ(?sC$!>y9Be@8nHDIHb2p~%FKF?n1f7v8)-%(H$=LyEI
z8LYhP2!e(NTR97K8n1RRM{m-f-nA&Pc!BvQ{%x$rqKRT$g{go0w~zPYuCiOOpJ@O?-c$85Fj=a&o6XXz@~`zON;-9;9Q$t=pA_v-
zZdLe?+5cKL`!7n^|HTLYO_|E{|GYF;)j$W>zeEIY*!9t{V2inriJvrIU*UDZ-lqJ(
zXFHcd))O-tpBMcn4>%>93xC#DN{Xx}2=FQx)egrZ3m>7hmRH?o{2#-`5(1yCizrzn$D>gzIXAb4mip+z0&yrspg=&O7R-o@LMdY
zLc32n?Ff8LaPo7BWJ2LeX4LMDgM(R1g)XN85_==P2R`)d+
zeu;0bY5o#pokVG%v;ea}(RSM>kw+(azRrT3d?Wi|2&oW6cCZKI$M~Lr^y|oRdga&y
z;@hXAn5c`4oEXcIuZu_8VB2(|tsuAUQdoibAFPThC9Uul7IwENjrbEqNDbNT=wn95
zankXDC)Jlo_yF#=2p3*}vS9C9qEDKTYOn
zLxb3!WxEsHq0B_yW0#aZ{iChKd>OEz*<69sU@L4aGR(;w9!c~bbkGairzA^0DW#0dWqM$
zv;)c=?F^3#a|TnMC;#2Q^ltC#QsP5ZG2@K`Y|UlIpCcsW(*V3fT0dN~5q+9M7I)Gu
z(V~dj3jwxlz+2~IQWx3xyJfZuQ)B`0HGLx%4cXPFCK-zxF*gr_SaP-dl%O
z>n^`T8>FCL>HnBpUiJ%M#802%3ur6^qy+{XpA?rD@;uJQG)5v(MWw-C4u^nR8>Gnt
z75%7p+N&wbhtPn)`>(+{rX}BeN3+AkkB`rGh5}-pf9e0w{MhxXB1i;qP#za0oc=>%
zIup#OfMoMhn;fTr-L+wk;=KZDOB~5No)!_ryu26w*aU^yKG_|=>skc|Q5=?J637df%rSo7fu5c_WN@1pHoz
z|8i!d=miy)=yf}_-P`Kp03&G$#<0(yrH~AJT@HJ7j1@Mv%qc8td5H2NoF*to87C%_
zn8oYu$P_&qwwjgiQEv!jQI$~{nXA=s@4gH~nxuo*VTtSbYWnNTe%nlcBQk7B4=!;r
zvp(=lmYG9DhwMF$%IU<}gXbMaX{PWV7{~qzX(Fcc^Z0RagFKmoTS-wy*HGc1@A^bm
z6M;DMeKIXPnOKQc<}||+qu?<$44$r+Wo?>?@z!thVOsGJc
z0*Q6K=AcP)PEi@jXCy{%6>xY^hQ8g?q3d}$qtt0r;SH@TnoCP|<2R#KGQ3vJeUXeX+3S3@I{$}*@8RI%b&&S;X^cr
zg&c;P6MYCZW>G(aQPx6Rnbjz}fi_0Hpu@$#73^FZSSTEp=tQ4+v=1w!{}>WV7kB}I
zB^slvJ*9S{7lblFhK35D5-vGm+3DJWtqS>ftGBO&0*jIuCraJydz-JXPquGyy4H#s
zujrsx^y(^U!%DAf0Cm%UA)#zS5xr>4V#`3YX!F-Uyqec?PGtpQPXTl&m_*)oZaFVE
zUsEdAg^}+WhtTOKrw2F|d5W3JuCeQ*vEeT#pSRb;tw?iwH$P>~317taf?mOSd%|us
z@n>TzwWfavCZ-v9RYxu2hsW9!snm3s3!tq|nN>xM-+>*x@oqdt#0qYLDF)a(s$-)9
z6(&6EtK~?o6Eu~&)Duf7WNfU%h7S*PPXDfEC*SElTvvWh|H{o+}bRCN4M`lDcX
zu@h3KG`dtXR;@Q_Dj$X}W^e2U5h2d0RMbCOd|HX^Dz
z%uC6p%ur?+%#(P1Uu=FT%xcETza>;dnmnfn0oMksNKUM?^3W*i_Qf8VI0CyqU!yN5
z#tKsv+{YYVRtvuO9=~|$i-NctDLJu%Pb<3*J|e|dCUgMIkZngb
z+CwWvF=j+DQMjkPr)Z6hk>q_C(V#&g3Z$KOPBd?wcPlCr
z+jQ-R=g}+}TIg!p>1LK;v#`wWfhN7X?#T^F>h)sKbVFB
ze-6F>Te;eBOm{2+?D$Zu!u5SG%iFEgfpidn18Q@m3gefYSkB+>8_3<{o@{s}pGreb
z$Q_6=WrD(K$Z|t^DGjCfmUITMK~c2B_}=A}2C0u`wFYJI{b@$!z3WSs+Qmt~h&q-=
z=T0*JaiS)j
zNzCp`RGNc*w?E_pydDTmLw2}gx3`pCb95A_{~`FEYnWpWofixE@G5Ad6{wRK1QOKN
z*K9gJBe(lS8MHQHrl=7?-+HtdCT$9^u&u43#HjNSu43#Y<%z6H4M|$c3I8Dw(|^t(
z2X*|3(+uKD9(Q9(TpxHFsUM2%{W_{B@`ub!yvgnJ8>i-z_{Lrlj5rCH?(Zg99sj#%
z&f;D$SeVyf4cRB6Q6ei0+y;lKBuNfG;%$9auyF~)cQbxIV@wW_O`>R;JYgubdvK+j)
z#qH`9cXP@8zYLZNHm>G9utBhz;d)s%gs&eA5{!v-TXo!eP}hsm{q;#v>%eXIV&?1K
zO+M2C^Wu1LY3tW4(TkMhQx=Dk9+!4i@9PnYg7@}Z^KZzGUG!95K3-E%ep}
zP(21qcnZaua|~S40`RgJ%9qi*&mNi5UF%kVCFv*n-F|Va(@7&fWv^aOK-d
zSAsNt1a4XcxI>Bhz>l5XmfC*GnmAFc6i6!7k6u7^p=z6EL{ZU#iIbbtkFJsZgQ*8F
zn7aoA8}a_-jypG`xqwMv231m3eZZxOpL6-%(;uawjikA@Zbysh5*_l%MW~!1>F(n}
z=fCyN{=Hk6^xFyx?@q`nTuX|L4>#4kNmR2b9XO>j1PKY)5fxLC$(V*9uCbc_KEl8C
z--eGgetme;CZZ%U;nm)}I4U^)s`4fiXJjhH$I7e;{5#NGGryG0A#9t=`r;xOU@737
zu4(4!{%$aYe~UmpjHQJlu|&c2>*(gK?Ry5020S4~%r%xKXXNW(QAWcCJSSX*ZtSYi4TfU&DDXu!6HfN}z(X6tP3E}|Iec7F@P9MRTm2K;tL0d~fez?yor4FmHK^+S9IULK!Qkmq!@u{fr{wEH_6{tmn%z4Xh*Ua}S>n6fH
z@67$H|h##2n7S0X(1VB{SLe2+0pf#%@OxdHzt7bL$&rQKeye4bxxaOq!N^
z)Y(jD;h*>`6GUNJZaX87TS1x<{^VDvyF6q=tPXv-se_{CdEFL`_@Ctk8XZC90
zcV)fXjYuy(VnKaHTIb_=h;9C#
zH!=Em&>Y+Qx3(YPk5AR!8F_RT%0a`20@!{lHYf=)7Xy69@2WY8(>j%R%Tkt}$-cgV
zguXv@<-C6SaGKr$l^u9Lx7^trGH&wg$;dtG@7y2xvDm9!Dv379;2#|_Bg^bDta3kRkEt-86Ww6i6};SMX%;iTImj)a
zmyrDIs%TSC-Br4)F11uWpndb*61L=Y2A&Rvuhb7@w2eEN|5%uIK^G*t#&T?5BqvxH
zxgfenWDZXil(}cZ+ZR7X+&pse6EI2X-S*AA3MrqOT^FPGx7P>!*17rGdj8@eE~(q`
znb8ecC1}HP%OmfHfPpx63uIo!ezAH#HUmG!Ew1PS}%nrVrI?^kU
zL5t~XGSAPNCs>Rm?9udp4Z#aBzGON)gs)hoI$?#AjEe5;P2M(
zuX8oO7{YoCXRm%`@E0zDf0IHs&(DBWlZa=-(~=75+cJk>(l#?hkx@wN}TMu
z#AQ@#)64V?D=j#E1ffeB$FO2$qWg?Y9X;X0=ERRLPgk1`bE72%J_7*9j7g*F#!Y+3
zYRm^7CmeHYMHrR3MC}Hus=J3{L6~lsr9nz|^$xsLu(V9)Sk&I;`4sJ~-5~eu&z+xL
z%o=p>ieUF;eDR^_j?*30xjYKt?OD3d2ybMGt3)VH&E@o_}&yRK7-Y3F?|?3n4P}<|^Qrikpqr
zCsTWRY2O_(xjE*21!xNV4f)tOJ=iG7&A!pgM^tw=t}@4Ex<|JK@ZD?tgQJO|omr!M
zdRhTmRH)&e!Nhy0&g-m=)GYytg|ggyIVy;M*IOKiN=p4Hdx6+&h1a*~3irp3DG$RG
z4K#wO6`7!lpOR1}J(BcNBGt;I;UaZxsZd{=jLKmL-UQxy@xN3pX2$QASWus<4F2Nkn!R06^8#?^31T
zvKWe}+^rs}m-xG|Th3eD?c&(s2sz56mt^b`5nYFUdiJ4^gNwk@UpEt#(J9b?!4`1S
zGlQv>0?MnX!!(c2b_=P9p9LwI^tcHC0g5yns-gx7N~>AV`oCOJ*CO3wI9QBz-@P^a
znAqhrtSL+l2=#0rgA}%<2ml*EOwoErU8?^UOcg?&jF^yf;G2uC6}fqh#2=(=+nt36
z@7|lve6WEjT{d=T;uRJlYW4bQpCYddq!qV_t$;I>U@QB^fTNn9V;;JTMSE~!3z+s8
z{7GD%^*+8|^vLpBd35yWmCR&G2%E0GIe72F=lCit{5vAZ%f!aeYr5C*o*}s%XsT5s
ztvr%$85`dd!i{{kUgkEFC@d_gKz9^;JB?305-hquju-fb_p;pBy?U|OhmJN*g;wMF
z|Aup)`#Uqob0sz&-sLMu&gQxfBi?Q1NO2uJOpfw8lGd_&vv1=c*VjOobdN62!wvq3
zTw6OD%*QvSbG~{59yt7HH;j}ltEdRKIX2(yYX!m9H$_XWEROxM6o95w!%JY8f*juD5wFX(
z+O7B}ySN%Dy1G1cl`WfY#hQN9ll5^*VP&Y`*9S0+Thj^*CzV)lxK5H3}YP
zTTT;R_!e_`DU1>p6un|~(Ih?gK*+}`Yg_2}zKIH16-z&8*_=NaGrSgIb(+q__@)g_
z>%uVT&Iv`iOMJs_vKc%VC(+LJIlbCdK^MNeUWl&(C_FjYSs3{AeQ~HabGj>qA_6<`
zQBy4z>bQ4!b>9Bg#9^)fJm}kyGoTh+5Ng0yNXw?76Z*Dm%Fre&@-D`GCFU&!EN-o=
zK%2F5LfxQgJ~z*StJREdE!=J!KiGkS(eGr+upx)^tP#`u)Axf|>xSp#ze5m$;K7z!
zAXwt^%YnEU6T9DSonVuYp^*OQ?A*M2DJWWwu&H}`m*aQX|FrJ>AHW@=75K!gXFMLn
zzPHuO)=AIC?XJ74O+AbtbRQqZ@762C?SHl^eZ!7=$JLrc==QgY=KsppozCY5?K#yg
zPIAC76-ytYsC2V(SYW8CtT73?+EEJ<%0zp#X@2}4rusp;mk+5t3}onW)tYZSpLa+k
zMGEK~_M`BdL)ah9#36~#P2zt7*60`icgqe0Ku8n^DP$&
z=79w{co(bxB$+RGLWRzAu}Ihw^o}cQSh@2V&0je`fw&ayas|RlDnMu(wfp$(?#*a+
z?~{3pk6X(3uNq6xfnL}7dXoByoomk+mkz8EOggndN4%grL8b#sPR@8LtPtGF(Pkzz
zUh2W*d9<5pT}|Jsuz&kX6o-&0ohEE@?qY`Ft&q20R7j{N2a>T)NQkY|q2&v1q2-!`4`($e{Hr(5M$dZa$s7ghUIJ=v9X
zU~*oId(+ws78_A)Gu~Eq
zXykYA7%Ij7$R()BW9K|V}#6{-M`J^=nIL&=6
zbEW(Wy*NIM5ugyayvf6>cKlUPkAr2z&A^Xfn%_wpARj4Bz0XmERz%Y-QXk(`K>UxOa^^gU+?dva!UYSjMFxx?LM2N{4)81-Mq9sIgL~y%|sj?=;S2j!mZY1
zJQ5xz_a-t5&A577eJ*D=6X?a0duc6f1?roS^fD#l?;WNzciXt-v`WRP=OY;VvAYEp
zp$GaI@JOLHJs?i2!;#ER2*cb`T@ZY0`_+|3sq9Ep=Rt~)4_>Aj$vWP>m$qQunCK`d
z$dB&pNGa={1x*k0JbR4ep3tWg`*KMpS~N-hHf>NXjPe&REmw1{Y5gwcfL8yv9s9ku
z!q|#k_gZtI1EJyBz-cB%G1_|Y+=XB*T^96HL%F2ug|NgKzOOWj{lT6XI=S^$4sls-$Q<%?#3
zfOufcjt3v&N&{9K&+>>boTD)V&lQn45l_<~|3yE}tV+jaMj%6A))%fRaXdPT9N!bo
z#y?OVUEIuH{$7T)Jq@a4JquAdY@_|6{eG#M*44$b3?R+%fu_(iiA#>jI*!qt5mDsT?r=!O_|qJpLb9NB$U276TqAvl*Yb-(%BX@noUjnUUc4cl6lBID)#FX$
zz{B#{+rj4pw8_VXXHeZ(zttn-0bBU5vf-IQ>LtB!2lMyG&e;n2Tmx0`Zv9`K5RG5N
z5Fms=rl{JB%(pX_Cty6LP9xSJl8_|T17z^?eC(*|Id?Hx#$DSppw})fIptle_%3I+
zCpEsa(?dbg*!QWsIw(81-+VjPCa
zE04^dCB9HmKXynF$UIn4x6Ug@C2WvUBAAx&L@rL|>Y0yw*Yyo&yy_=r6_D{s->R+h
z)|KEyx!9+bOKj66yudTajI(Z~*WO1~_%rc#lj+4irJ_266|qX*$d)#$x{w3Jrcdvb
z=?p06AQw0yvfUAJWEXnGL@^9Mr2Ll59((SJkhjR~^7n}BYeqAuKR!}&p7!m!671(A{NHGv^sg&!+3
z2C12C3R?j?p8_Xc-LZT{5VpFeH&Re&qqr#|3iRV4{-itBJ_9ZjXgdUym9)o@8n9<)urhrOEcv|H+hXJZnlQbjXl|&
z{09sN+G?e#T11sg0U+)EX}xx`w0C3E1qs~j?AF4Rov;*6Ne;Wo@vR-oF#GrcFDB*I
zaj!N+U0Jk?Yv9VC8*oE|aSzYoAixm>`Wsm+qN%zXzq*_Pi}
zIE#mjfqI$Z1CGeN44k3S;r@AxsswCx(&P!1Krem=sJyaMtGdflY#}iPrnRL%<#169
zbDs`={e7pba`a_T0f(%)&!GC-C1C{zoy*
z2jpRH!p%E-c2~J3O0%Jn1#PK
zUG;_j&X_;p{DH>0)JsJjFWp|#Gc4n{z4n;lNyGHa^-Pvf-hT+VQKL#4>0gT6*1jyv
zkx{(KB}@!=?7K+e5}2S@E-%)}x(8G;Cz&0Jc;V5mO>MX(A>bkx_(>A0oFTcaD&D5o-4MbmWcur({GCVkLW63-%qMt+M=V~x@oYk6l
zYWSaN=y^P^+gh9e+@ctEzYCa$%;J78mcRfKyq8jb`EPD$Ztr`-Q=19K(9-(3pKLC_
z7C%>qY+~6sapRue#ho+W2iq3#x8M|^K-njvk^DjR*@SG1hx>4fVNy9xnC+{plcm6KJ=>$kg}-HSK!i+%c93Z&0hLC3O4C8wjE
z&wW`b_M1MpSI_g)#<3;(quaXpGNY>oCf|;>?I9AHMv6J0Kly&4GbH$o;E`>05lky$E%DG0}UZ(gGB3A6sj^
zr=)x?`PA-!(!^OOF^LSr_9<&|ipdna6vFXqOYSrMyCp_XRdvmjcQsjg@%Gi$bzn#T
z`>j0+&qm$zB>Dogg%={GBBsPI0x*x**;89Mj_mfTltz-g#T$bPyxSvTA56kmd-|`f
zUU?^0QR^{?hx{^kJD=|x_Pg?iUL1H8JMpNKSG?#y=Kia2wYWwBaY;K3`XE
zYty>r}a^e
z2yY(ZPVpW)EMusLoAALPHJE_#n#Mu>uUSzSypDE%ECg>{syMArcLJ1)9*MLF?(LSP
zMU-RnA1fbZt47TI`|uA*@!V6L&frnm-HB0VEqer1po^32oh1qWPDkPGsq*QM<{G(y
zrgg#Fk(%C~na|lx<$#jzHSXf7;mx4w*9%UZ-)0ZkMjCeY(_Y|a*8b3Y3%*(t(`3rJ
zlAD7Zc_oSW_PLtzHu>iBzQs>VW)v4UZOj$}l4I})>_{G3?W;p*_*`2;jWokA%*ez~
zk--iJ$K}retVDgknpr_f`LNm4Xq(>~Xo|@6XY-%>&Evwt^e(FA76LsclDum09APtO
zUp7IGlPmI}0!D(%Q>XR!*cgtz@-w6%J6KjX`uZ$_Qb~QBx?o3VJGy2uAt^=3G
zuXCw`T~98O8^2Wsz{*!>{)!%7$D*JVf0XnEJou5=lIniRFi8a(Gvo6H=_?9LZZk1p
z7n?1+!gPQI_#Xlubb~}9^V3!{B;BfY@PvoTZS_du9$L$J1c|h|F+Ux>Y?JG6{PTV6
z+sj6S2|UI16DisG(wkP#>X%MFEuKE*y;BEmUzHxY&ni63-TSm?Ckm@5NUo|%b}u>+
zdTPvEpH^~jjyH2jzcM-XNm24+c-lFPh;UeN9Q8xt*#|eBC(}meQCoxrH!-CTm2B=Z
zR#b9r`UlLd>nHY(OspTl0sit|S@^aFO&f)#SXqsA6AKCdq{YPKV*(sqVCu*2HM|w?
zvZcqDw>R9xadFDonwnadPT7htD}DUb4P<<{zA8=H!u@3)EQKq|D8kL9+{8(NiSd02eg2(f%Uz{#=Cr;gz(){^y
z`z^H9F348R+u8T{z%%py`u_3hB0_+A5mQZ{p{B^$t0wYnW`$3p86rGSBBpDS0*9m8
z)xQjUs`=V*N8#C!6%Wl>xaJnQw(~1SO!NWC%|{utfv@(83`5CY?&W@k9RZ3|LIIPb
zyjH^2jCq1fqZTUgL1u^(rYQ6Sa^nbuk4BA!ueg05AS~vV<*1uHzJg*O61#gZ5EmAf
zUxhzEr7as+Kb{JP{&WGBsKc4#+%W|$5I;v+MV35WQ^(!!l#13hyJh7tDH`TI2a%&U
zMm>6-*Q83e5t|nQY4qJ?nNw=v3*qJ*qMPF*UejvV_?9kS#_O_*LWX_v3o7e}O0WJN
z5Z%=S*MPuY2YnM@q?bZxx{e1$K2USrL4}1vGT8OHaHXht6eahdJ`Pe(){Ne^JDiFX
z?QGfU_8i8&TdMb+-f}K3NO@$a$hQXBt^1`hR~p0meIw%M2m?E_J(Clr(PsAP=)^m1kmZ^A>
zX()aDA>jf~VM(c~nh(hEia%lO^R;-glH)bw)d~r=WQM-hfiB?6Grx>O6Yg-?J)8DS|1-M96ww(bRX*?c-UN4{8y_8`ApxCx+U;@uWL1^ZtY|qVEI$&
zm9SOR&>H00^-*@m=Jvp($Z}=+6JDGv;Mn}qIj%upQCQL0It?)0ZIQE(b~lK+d|4-I
zM_v5*>;#S0`W~3XEai);SC*8-jZO}rN2?V17cw>h$8WepT+06NEW1agyfXgH*3o>N
z3toB?;d_wOp<7!R{OgHWhKX0GzVm}yQZrlk0Tmk(zX`hR25@C_Qv`{GLv)fBQ9XhR
zOxMpruh2_PuAZG^oDi9wIuQ9To~yz19*~;wuP%t3n;#Knm-Ve*j0fD1$@ryBWwC|%
zOOoqhs121t&th|1wYo~3Ah!LFV$%_P$HP5yop^S`o?fz6n^`Tw*`4+!q?}%+UoKu!
zftWSwBPB&ZAWxa#qB?|fh3c^|LyK{wXhw#00QtETR7mMZ7uexMd<(GA?XbUJe*9qk
z;94umLrhl1B4O^duE#iwiL&x#dW>a^PP2OeXtMW2O}b&`h#^C_i0LZafAgr@778W(MLIdg=$t5N)i8vzm>YB^%$o~E&vNdVM>h+eWM4$i}G8DT58
zlP4p=r(tgveb(e@{5-wCE^fby@W)CA4Gg-{pU5}XvJKAMM8G;`yeiO#lql6YFPBGw
zj-uKiMFXiRpilz0g$L$-ZEe5gP1D7Vp6wc>Di|fHn#Qk1YKZapXFhx)6k#?yfA)z>M%%$h
zd|Y^w*$VcA2u&P25H*R(`TdhWiofZ#gj;~K8w-^+-f5b-(2^HF?QD1ix;ir(nm0E`%5ymh5ev5
zzQrH8LqhY4{Zx;BI3J#V4M#uHTrI`m#2opD?H&6!R(0a6_|=l2ZppQt7U2i1(23|C
z{ktd`-|HPES43C~{l=5C!#P4rv-3nK_&Qd@40HZV^1LK$#98Vq$fZeRqFYUBuL`{g
zW)eF6(BURE;!2-UQpnvbmF*YH6dAYL*de+i_II-s3q=`?*Z8^kD^-#Vt99{Z_9+n3
zul=|$xubobh>G)VOc8j@rI|aP>?3)nx*YYbEk0?KkDdKsNJYY87NAzRpVXCxwd7Q~
z9{RPMlRDzrVVpI`h{MjkVaUePQcQu24q$!m$M<9CeJqTvd<8Z649W(Y<_L?K)*==u
zlE2`(RS8Prvj_a#v4j__r{%v2hWCZLYM@0})06CvgVtv~K(krQgtWykvHe70in}xoOy~Q(b
zBpUAIK28lD8^fCok8EgIXo{PZw);F2Zzo4x8o$U-UGJS(xqErKs)}}t(I{<^NXsd%dfq^`>m~8{w?+t0T3Tku8U>>bGP*xY~_4G
zT51>=+@z^mTQVy!0*R*n7@uWGy?0biWB0ecZtVQ~@={n}T5-=hhqy&9PFp{9F_V6N
zA$ZS>J|2tcouFV{!IX6N!#mZD#5D>e3J}u#1vXkuz}N4hrY)oT@Qco|!;1ia)^8|$
zY92pQl--8$y%uH{4-CkbziK@VwyxqMtPiT1Wg1X`Iqx0?NLDvVZ4IE4IQt!6Q%OSp
zE^kwz(q)oBMfxZoH>3E4{fPOQ0=
zmQ|s9RP;fxZ@=N8^|TY?lQT137|&kmr%`?Nh0bXhSd5B9Zf_9mPER-Vz256JUN?Px
zfWY~r^7ei>?e2=|OblYvGV0dg-N&UC%mQraWw%OVuL`?r>9*M4-7@6;NkcnOHntiT
zE#M~5`TPcdwWTt!a6Iq1V{f~qho3`A8?3%?dG_8&M%g6-PHWRbIouG-kw?|P)o2H-E3Q+Id
z_60=)y)#pdRLmzS!|uQuVX^%97O)ST2Ge59WkreKYP9J$*n^zUe?HG4#FlQ%6y_25
z;D1&!IY`hXiIX4^9nwVkQA3Kb*Gc)AL
zw8%)Sw$$_z=BTQ>BhK;t4tB59Dbfjo{}$FMef@cBBf3_0
zLdO_{EPz;EpHa^jEgC8TbjqCvHhi;88XD&1NV}&drd-Qh`X=<*oIRNpv^Hm?Up&0h
z`5E*4(H)w>>*i`CzCqpUVILRot(XE9R3KA~E@xGwF=T;e3pMT(^*V-6=w&-9+oZT+
z(J5D74g7+Y*JS@-s*&_-O)RMobK+|Ubs2*@l+wFRL0YWv-HCtAA&xhdP(MPe+|Ehc
zI(+fbM#Lg$dwXIpn=&xSk?wOcf+cq0#Ov?gNemgXa%jrY-J^K%#OZiyt^zzIA5H5efQk%x{foo+~sbXD$-e
zg{(jE*ELRJ*}qC^_q%fR*{BHzDB|L)7wld!@cVdO!eIE$GvtpCEKli9>(hX=h9HA2
zxGWyx^)~6rcpH6o5o?s)$%72LCPi*OGa+7`*0#HhT!q`@1e75GSNd?B%Hh-j)5P#s
z0v}Qo)t-CsA^XpzGzvc4qqlkb=XJPaag=Ajoz#7`hhtMX{UcJk5Nq1yGG4
z9~TRqP1#PfO?vsb)QMooB(@?ZvaL$gGK87g3D8`b!`v$C6&XwWF-TjN(#iO^J
z1Qhh$%R_CzfR{as^Ob#{Uom=P0Kx(>2J_W%#b06?rA2i(&}
zhZK2(-eOXkBi8+4yFaxipqEHk0p<6FpVmpNslypjo*k-rGVWjKA|gP*^t(>}EDWmg
zd`Nq}F~{>r#I|L~L_Vwaz|ro@=^g|BV+4ny#PlW*D#X??Cu4)l>Ut@4Zi}i)XSLxC
zGIw@=;yeP}5Iv=T;4=GW#@4gJ+XYnxwsaYJqDWoyX?
zOa(D!X)j=oDpikv#0Xxn&ybk}-qjc0z2!JLjjKpboS3z|yuSWAJRSJQl=!!l%R%Y=
zI`9f+QB|H0FnE$=I`ya%{)^u{!-vf%dV
zV;o8>49ClHsNH?~!#%yCXs}Y!hWCXr_+i6S%62Y7O0yt1LWmF<(J?-piD$&Qzq{p_
zAG51-Sz@`OX%;tMC}+8=%N}vps-;ONkVPlmt0nH1(>!DQgk$+HXOFW~@**tM`+KUU
zLO??by%3ToAX!W{kNahnVCP$>*$u%hzv(scE<`hyD?R3;$7V`_%)4kbaWcZ|;FFYV
zLVo1YJ?{%*j@FY5Cj=5z;m(7pj7(Q!L1%&8
zrA#fe#Dk(j@B3IKlA-u9?cd2t-IY&wa
zPuj&7cN+E3Ge~pTux9CB%aypTS03S#Gc=RFnWG>vz|diPsxMEfoMz3qj~N*+3JX;}
ze~4!z;S_k7asIJzPRVW*vp=%AwZt^k8x(s4NhEuV~dooywMgoxi8&;-pk0|M~PyAut{7y6<@SyyE0q61sS-QKOb82NZr
zQJ$c8hBf#-DmGTPa#bY%D+@;AmM-fm>Yirmea)PH`{EJM0V_L^b?5BL
zNyvRJYax5r63^uC9U7d;(HNRV74&t{NQL8*mS!R;rxoTbzD(|+i!uClMUuU|`ZLL7
z1uY3Jqc#+$~fZ`(;v|Z0^U5g=&@ZflBS^ky)$)4meoUTpbmXjLO?>+s;=*W
zz65hT7#26~V%+O#RjZM1oRZIQd{xo@=xLK5zgM-rcjcEX`C^`a!_=+_qRJGeJK4$a
z&f7JGlhUoHC7nI#PNy^V4PMY{Mbn)h4hnzV)S|f6c>gq)e0wv+PA=e+h;uSa-%Qf~
zqV27^+G@kLU0MnhinJ6c?iw5d#oaAH2yVp*(n5jat^ooBrx2V#u;Nl^X>oU#;!cYf
z?epc`SUYQPt?_<8AR}WWbIdvK>pIWlU`j}_#Hk2ZEhP@&2V9x`hb7jmWvo5j^4A;Z
zg>u5s?pwo|R6zO*Jz_`Rq+Ey6>~t(R+|=oim7cX8>l%Cd_&s)@nrW5rHF0Rmi)GqE
zCz=N-9jWg>CaJHBOIC@4$P?}p`aZFCz0y|JgvV96BOoJJ>4EU)K(D}mLHD)9NtX2K
zMsMQ7)%7!2v}u41q-2>*iUpiiBXcW&s
zIqZ4*+yc&9aar9VKRT1{{_UF!bZz{r^7fzt$#9g=|2`P~nNAbaeC?*sh3eh*l)Sey
z)K(`9sHNd0(?pD(piyOZJ$qapX~EET{{rW8uSs$tl@-CDX_V8TO^Ce&umPq*IEzJM
zC6gx+Uv|)-H?_0Ag28ojdm2BEeif~>F=NuEcq<8h)<)gG5@MScNQ@g8-w$EmF3yoM
zPcy*i&v-Ta89Cam*AGlJHL$x`hLFB}srkdjE)D`hxFWH+aIq`A+nJDdQ8vq`L_&&p9n
zhVS-+y=mpI9=^+DG)~76X8+QbZ$bKR
z5sJx$A+wL$xs@j28#zB?zhLs{)IbJBQTadMeHRN`^8o_*@9k7k^g
zTz6Kuo=DA|rC61PWNKq4`Z1R>7(z#7s;S2+_YcL;7`&4H*eFeML#V^_E`}{#Y!Prh
ztHMsuDm>l>sGG@lc9Dgt8eYw4YbT64{Gw3`v!!-oskVoPhi6At$-RKSv*3s!xpw|X
z9n{Iw>L&4;I+T11q;~**sJ!-quSssbcc*sk8(a=>M+r48lvh*=o!e9}mHt@AQ6HVO
zh62t(h@sz09pw7s1`VpL2D9WJ)h=A3W%Wl%N;04fjgOIAQNG~m5_)D~PUAzFAJ?HS
zeYq}2*IrbbZHLg;jLFi{QkU8?ui2W{%X{ru#+0q#WvLiU1N<}$9-bp+n}J^eRpH^Q
zKkM0&cU8igy&%Ixd_u;!r^{^m)t`CPVn_5$&pg0$yt`lEDB~&;vlgPuUA24%><9J0
zQ@2F)q|M|t%f?Io#}>-kmNF(#E_4yxsiZn1?fIqh3%2WRU(csOzVmSxK-ptrbZDF{
zlkcmaxp*7oc=XmU)%VRue?Lygju>ryCT{~c)T}svtpK|@9B?7C%ULS=4Ts~S{qg!|
zZNW?o%Xa%OVNBYBx;DwLk2~Fp5yC29d95Uty}qVPso=FlyRQf?99wJr8k#W5f?lo%
z#hAruhpAtmr(Yn^tBrK7SA?w{d{f6OWDw)(;RQ;V6rXns-{PpECIT5An1T0NlQpds
z{RKxuo(zBhUbfRY#RZBamflvB;wnGC4+{MLUX5^kv$28*z`35>qdW5wl$m_7aWMVw
z)0bvk5D}zx`jrUeZS?r7YTV|iJ~gqcX}yx?
z#!LA1D|A^&%KqgKDmR|z!{4e+m4jC>54iIhe_i|MIbIadpe(76*GY|pwgpDkJN387
ziQhgy-FP9{yp{8f#;%5%ELtp|>0(f0_KYK0wq>)L@jq=2D-IBtCXYUYAgQ3yS%ByE
ztM|}qQ4zt~QfJV4?&WMT*VhgYJfBD`YU-(y{D#nS)Oev;;9p+G8Tl-s-_-GY%Iua32&W3xbJG{E_f)BDNhMVPIFcDY~FY7bp&MkoUkUd
zk+n+a#jfy1uP!@S>?IEC8#oGIrZss;(}AtAURG5S$kS;ds@|Su{%vVZF~E^-8c#u?
zAh0=6A0EkyBmwG<;2={G8Rl&0(_!5$lY+;aaz#~;HV6>(Q$$)!1xU8;Z>>-+CiUbb
z`ZIQOeE!})t9*^QmA@}FMP()Y^Ff(f;tpD65_#yIa&+aVs-nSnJ1{{LBB1`z%(;lU
zUMBiJ)+@a&xu=BF2Ct>)DTj5Id~)D7-*c3fMxY&-i5)XJ&mWe-6tU22$2_cFUt4_F
z*>x|c?YQ^5{G>|D&(pTlKTXA$_Cm%AC|?bHuOlQui~SmbhkwE^+H`t|2;oByLDe|{
z0FR5OZ2hwkT{W63Xfaa526U58{#d>LJw}yd3p2Zd%$yJ+_cMI@?LP6+%&bEJ<%X4X
znsJ31(fvE;FK?NVD9T%MA&pFB-^PXfLZ~`0oFe@{EPfP7nZD=+HY#c7Xu4M#N5$FY
zZ;Z8S-jZZaK5@3z#;8%=vO{Hby3>W3r7Zucn$McKq8_oJQ~5@@ks87j7uk-dU!D&j;of2X@J9}mx0=3v<@A1!o`qHUAlu?(RL)2I@KYR{(>_)B?v
zU788gM55uTp0@Q6jAT}+f=F6(o-4YbTC4h%$ow?yW?wk`BWT%@4D;F_Edh+^W%YfZ
zq_Ou1S@-CN`=^E?=t|SZ=da6D1?wB=VnC{MjV4vmSZ*B@UB}3#Uky#TZzNj_`W?AE
z7m_xqsxlbFV^b>T%4&R(TujkvLhj_LKbgs@IKIvs%4VjJoo|_5Zb!>fFrPc8d{8AI
zCd0c92jvrZ!H-8f`LJsOUh~JH&FzfM4LxC*u114kNcInTHO8{4pAfsEjGFM87Gl8m
z*M4BiKopfpym_q8tyZ#pHFO1^7C>_APxSi(&!;!+qQ{$0wiKSAP|LHf=tu~J0-}qS
zEqK}$@&$VlrA+6E8KVAg(+2-9V4Djy%f1LZ{=F9BEE4(;i$u{-ng;?nEYWfYHUL@@
zf@UFCX47T=VI>7u3;CZun|P8srCI;?>+h43&bPdlvnvKEn;TUVaW9dE#8;%z`c5w0=L~M#Rx(M+5`332^A`rQJVCSGS#*lAqVOcvPacB-)Rd?=TUsTaF-V`bg>OzEyTF<#ijVuZ~C+
zX)Q}ok1gpNs?(qHV;f?4I#Oly!M2qjAF76r7gnmG6D0Kr>Yl86!2>|xpvj-nlau#y
z9bp{dNhr9HHJy!q
zEEwPJS8SKXFvJyM?76##9k10UhJg#viKZ#V((Thi19w-adXfrNbMEzrL2`z%?|g9&
z?4pQDSiN3YwbPU0V5L`}omue!t0`hQp3=rB-(b~{MwA)931t0CgMqYbTx`LFcBhpa
zSrsbGJ!t0E`-|A6EB6K*si7g}059aKU{*Oj6zrB<878TCc?42(mnr&{JUC7i^2-Q6g10Q%d1Ss8pcp$>u9qyd7~|y*U#}=$Ac#O}^evhbD4cmWlL}
z6=V>yw&!TZ68cXV$-FADn#yD<8#72*k4Ar#Fj~Y2uI&MIg@oM&u;sU=^krS%`@dQy
z;x?UXySkUCsS0LbneY7dO=62qGz5B54mhV7#)cIOV^jt!Za>+}Oid+P3#$igudg*y
zKa3|;V9KtxiQURT!Y%+%d%kY5KCq*5@807mb#6f~{S8*aH1Izxo0#dRodj9gLJMP?
zt7eKG>t}kCMylZ}%fZzJ=!yc=LK~q0do~y6ZUn`wm==VHSm85eJ$Tr{OcA6BZ2aiA
zd(PGhIgP9%#f8d*>{WB`^h*QkQ*u;bP+=0mpAkFfv{E-72O=wC4%g7i@Zn!K60g#t
zC|Tp|@%wnplFS&45AUraF^eZSSDG-OKAr)2VbAGMP*!sv9T+(^BG_h|RGm|gE^{h+
zQMd!g<0eE_Yjt)*$)%exphACsg)nW3B+%Zq|K;nc?YC^W9CVqlREaNBy?S$^+v|nu
ztqc0*b?#BvMua`x^5hOI4B+^*4jUJ>rxvwt?X0nfzZTQQ=)YNg*{f9=Crhbkn4R4_
z*t=KZ-m!#dtgX@cEt{N-W-n!H!DqY1Xn5d&39Yb6Ps$Lsh^Ok);NZxIhq}p*Oo6qbbFL|_P~Wign&H0
zGB81&MaEn#q;fjR3=#+B*4yj<$9;Wzdr4q(w(HtMerxPisFp~qVY&f
zVUE%=ZpWfBEgZ_aP*1%%nA)N}CYxN?uMA2Q;+b*~IJ0LhS@H|C$I&gXMGAAKL>d&S
zzcSZXf1Z%XnAGqPGvY@wa^-7FBm|qDm)#*RN-@pnd)kSqaA&?Br8o#0w9Z~!y+KFOreda;dC31Cv!Ha`g3x@3X1>5%73L}WFlaNcR5mD&U{%dVM6%($#+Rt<;
zuVBwH^F0|g!K)W0I3@^nI>K`&h-o&oQ2o7tZ%E}X*OWA1CPX#V379s|pi9JTTiyBH_d2vPG$tEz9Hl9A@;PjRcM4qq$`M4#z
z_U8u(A?e6?39JJeTZ{}Qq#n0Olk1^K;OY9U1}6HX@fDv+dmIfyp3_^&^6P17mg#dpt1QR*%gCe{Szs3Z=qT37EgdD
z!uBuuvmX`u1z^mD=g4`?oNml=x=s9(1ul~tk{;4M852j5?i@4xv_r<+`JOY_LgBF8
zl%Vry@$)>D+*O)OyU#8}@OGXIXguh%yIfwGE!65tt_ySZ7_vhaNqOl@^UN~dikne`
zHYqm}F@|j1?9ITqTfeJ-_xN^5i2jfKsc{MzBjjP+lQ--7YcrV>?A^an8v
z$a3hN|E&#ls2??6BJxuuBSS5)QK0xBQt2-2i7`)eXoo#zj($45mE*0y{3lORxglZG
ziQC7v$2_j<=JB52M5S$<&e6Eq)9GqL;&-2#H9fYt8x})PjT|b^#cQR^l2~|IZNd>$
zfHJh->}~>=ryDQ)giv3eGsVgn(3^COsYvgS
z?c&B2Jy+z^+t~x{O8c939MLb-R@|dIUrpLLWdBr1n+XXLer6P>sY!%!qSyBdS=c#^
zXekD{61f-36&&*Bo02T*?aIoayS4MWGXVyC(tr@R=j*Bq{)7!w2^lhZfO1D@P7W23
zB4qx@i*caGsv7|O{9s;F+|KC+%b8;_*F$AQ-js{1Kz45*X;KC;Br*bjd=V@E|UuOif4$8T_uI}M@pIivF0bbj5n(C_diWN_cq_<
zx6GseRxVVwe?4q*PD{OU2gzhteJOz;j72w4C4&wYEHcj@!t++hI%|4xIr3dxlxp*D
z{rRU&IB~fjI_~N^q7RlOMPqyQc$s7Ro7msH(Uj(;GjG+9B@@Ic%W+yS{MoHZt2f97
zI^mj#+fG9ZQ5ka*_GNEe><_W=>K4atogeHLJ@)|Sxqc#^T=q=}-d^#>91=)WHM8>B
z_++`%&0wP&7hfFCW;FG1oYYIo{NGaxtG;@L2^E3gHYS_1jnwz7rDMXD^-FmT}5I3&TD1L9|Fg`JF%*v^cl+nua!grZW!=^)3zg-)
z2Flt1t#mS~J1G%S1=D?MS#kq}T$dVx@wJ=X4O@wbb=SWogTMxJzXW*1^3PgW93>+;
zp
z&=+R>wGEQRZlL&7-#@uXkfYm!vN@)MDE^_*;HCa91{N3e`sbonT2ot6bAf7dKe=Dr
z+S?f7QjXT~>lkoVO>JMySiw0%s#znp!MY~gM+RlV(=
zg(V!-@1yO0_`^nMQeWLH8G{3I=Bi2a7$uhzYG&f@clMHh3T&s+rYTXqJYNx9H!M$7Vd!!SPuok|}_U7%;j$x&n>XGuc?
zs`1F0oq>41Z||Iz!7Vfvsm5Qy>teb#SI$&^Q#h`ypL`|;+UVc;4~u+ebX8t8xu=Oj
zF1l~7*92AzlS9b!;u=O5GeDlj^KMN8!Rc+!ux+ofm*S??5;Mj6mxPl}FA*cN+u&W{
ze+1sOeX@9Fh!OdwGr+XbjD2a>gdeE9Q3Nr`rmT3*ODK?S|GqTs-s0kboC{uM>tIvP
z<%yZtZVk8+Pn7x>vl#ORX89|dROZPtmsN4b@!Bgss>>|a#L4RWj!WA#aV&kMYJ>Ei;PG7{Bs;>g>76eM#{EAYdabFgbH
zGpm411~Gv98(UcSr%*|nRpB>C7B1G{pOB7jB+L2g=|yykW~Q&cHBT^}hZ
zoE{DIvm-E0t_(on)t8w&4i`7QGxxhP`^9okLS?f0D@6I)YW1R+#Xz8e~RY;#sw+lt$5Z
zeW}>Whdvlzwz@JZL)jKIVa+D^fgcSXJKy9TePOye=n^`+31suQxvDEm
z+Y8V9hxM|gzgJIpGONpzG2w|((SX$VA!+$dX?&Cdn7NLy$tfv6bHTX_jyIPs{mg6_
zy36&6vGh}Ax1n7f#v$~(eHd@qQ7FKXFBp@rIIiSk>zUa&Uo>?hO#3i4U6oSY_smYk
z%i%+#*YSn;W4@czjn}4Gf2F?q9a52@8EMnl>oOJL>a7FzNFPx)y{Q1?+Hr2Yo}1qB
z6jM9wcIWMl_q@D?neKnoRVOm2pT2S8#ClJazKBCrN%w?oqwCc<-cbIAv^g&;kHL)Y
z8RJwN%h>k;;=H%SvcgGaZ1DBxO^n;3C9e#hzeR($9f5_9B*;U(3NBc}~%agqI
z7j2z>A7o*i)5^8lCYkwcUB;x~cEY3Z0(130_03Ve@zfE^Aq`Rn5hU?(RNa#>Wd2BL
zIP$q7!L+KzK#k{ZfGVwJ7Z!Lz&GtXM>EmouhB+|<6RavH-`_^i
zdq%VQYy_Im-^AG8tQg`pxbDnd2x}%n{T0zp<}&>N&U1+QteM*&qmq
za2XFezxx*#EWlDqI-H)FdV)JgrES{|usA-m1h>mV_+$jFBg?6m=LYH^jd}+N?cPR9D
zt!+3;mS7Gj59w1rW-qX5dl+Bd4~!v>V$k^=sC>c!>?->p?JS>i)L&vaSdK1OxVkca
z&8I1tyYh9M&8Tr`sx*jy$$>kQK|2!h+@|ni2h~+=Z#vtctVzjO&Li&^<|p@V0qgfe
z$A4JvT>WKFCh@I9bQ^sB!wS#Os;I#_U}@uO$VOu;TgU{?+Iu25q{Q4v2EjxB)(7PI4rmUvl&VJpm1z*D1_`^vAF>)J?EzF>cmK7PUE?-s;S@3|d8G
z@4nV=WZ0b?p2U#&zQgo6*CA^R<>@%kggg&kkWT)gxQbBI2D2%7PJGLwRdQn@GcqV)5oqD>AMLUn4<(Iq~shEy8Hg;K&kb(G-FEtdCL
z`dM|(s+oHXLqbj7l&e=(yT;w2`DZ=3lkL)481(r8nlgfRpt7t-dWH%cn!pgbcT#{l
zKM?9gX+;JqGT3W}WF2Z{tspm#A0o4shV(!!1%>@Q-j|Kl>M}b&x4w6pM5v~WOv&J8
zN;lTO*!{SA
zuZc$RD;HyQqV@RkLESC2bVGbKI-^)HyRtOzC1l(JtltWSpkU%h&)UN|Co3zBya7`G
zVP(k9TGH{R)r3<4(hJY~ks-5MULk*@$5sOB-ZJ>=7f_`KMRf^;gfv
z-8OFC>vJKvy6kpKto`A1uYc|0f2}-{6s~Pq!~TF@S+svr+47d%Fp0N~!N%qu8@rip
zVfm}=Nnljq%;(}82=NmQ2kPdcuPls6w38*|EDPr5W(f4ni>MTF(GbC(5%Gh96Np5x
zhl_vFEk?p}2*SDaRU~!trFn#p6aw#X;IiUz$ApRY22?$TYjkF?2>0n7frSx`-%^GO
zb=;hvh?x$)EyZ}Qr_IgsvfCiZG3p88?5->|g``m@|Jl@0vSL)p|r$&{yiL*1|N979X
zRChj0Q9-`4LM-}crwn}TjhD|ZKeaF>PH0Azv**ffe(bTmO_tc3yf0>MTbuo}ZzM}(
zPrrV?yi;77!lWQXc#{R?d0HqY9vf5?uSx@yTCG?xHbxVO&W~{-6!Cju12>YLD?PtTr
zL#Uw-W%57U6TSzC9zL
zA{cNIa(aKHR|a7-e>Gsj3hj^iRI41%!dW1;Z@;=a++yZzI2@bFoSoEyD5UTw54FW1
zcpRDiIHPtBR(C3rk)^L66UPcTGoevvwG`>cK-baaDk)JaM6$9M-jGf%Ezjkzp1-qk
z)}murQcwomvu5f2;H`;;monESz_nt}
zl5Wtyi<1gjyyfXS+a6g!@LJ{vl^1;smWbiX9`X{Vr28uI=VN#iqxWLo(3nWATSSN;T6*hddB$k_~3bl^Rp?@
ztj$DI=fzn)&6m=}LM%@q?E=QxREm6Jn2t~PG>t<2=bLY1%QThtww#9@2kEQn-k9VZ
zLsE5RMJa|&6dgGgLeghAbgqso;aoa2)mysf8|w5}`i2aV@|W{}Ca{%BnVLjRwpE=~
zIx>on=2CZ#N3J?9*0wHnlEq%XIRznUGiOFMo9L10W9JVuUtyT$ZJR?$VbXJ%ac@mJ
zZH{a$<_cR>vXHjhiIKo(6eLU!6w*?9@b;|1?Y!_+EHT
zp8zy6M*Yg7wX{saOs=T{`C(dVu{h${R1~_ChYbVsfGVMPsH_UI^Zu8Zp``QN?4rQ4
zt8*akH@|gNhI~E$`#^V{>a}cI6*C4JSO29BckU25glb~dqFLTf1|mLKF{V84;Nr_J
z7lr7sdhEHXM1-#Vt7@gnV>{K@mpYj4;043>!yW&M-d0|iUI7*nSH#i9I7;`Bn
zwn6f}xE6cSp#Er54XVDbA!!kfvaO(KV9+Nm%dp=SFIFczC25+WRaFknmyxFMUoBm@
zC*%Y0$h-(}8}C3vB_4b+kjxB(24(p^^sVU2d0q!@vDQ1Q`r474mXgZog6v`6VjQ04
zQ8ohj#;(-&g$qW`u;&kSV}+AW2s$R>m^W
zWisJY@{rcRVS|yBMheVe;-zYy$Io1UV1R;J**Hcv(WZ>--~2@9bJ`CAS!p%ex^D?X
zF0%oyNXtsebhisd`PPQZbD3Y&Kj!pVQ^LcjrL9W?Jd+y)s54o115X9RdR|=|K+WSg
zlr;9C;h^NJ!P(TVaEZ7Di%;OcjrU37&Ff|6W$ex3&A+U--(rH?c9s4Yo`k#ZsN*2-}o@$O2UB8lW~
z%9b+d!n^{%p^gDiy+I2kBjh!YP(k21i1zN)o=(zs`={t%KMU}P&7=fyxRP{1B$n9{
z3OV0{9VPKP???w*DRG|6cpGbY=G0-NCN^{d3P(I|n&h&~49`{rjkVHg$+P
z9qk95Q9K08*G1DMPAcX?Z|Zt&V%6pQC-m6|UpeOvox6v16XeRD7AHal@71KZ;U$~b
z4iM{UxuoQ0cCj@jeShTQ>sb`|P
zthvjfE%XvKgljX4U#FNXR3k^cOWA^Swv)cpXQi)%Q-i*j!ZZTWqa{O*b_(h5yIt%}
z>o#&y_RyiuxJYwVjYN2I9E+a(D9#fp;7p!DHP^Pw#s1kz=g}9TEb(i@m4)K!209mY
zWp>T#IuTxz*rH_-k!llAtEi!25ohVjXNTH9Il@M)9)`Me;;7n0Ho(}!N3o|hlp=Dq
z)nYGYe;lMtgPw{wQyFTIKKVgDhHl#$$<_cpPW61^!w&HSK)c#jmz!X
z1#YL{^tMo%U!8JlukEi_AVq05Vik!uRWLXbNm-Ut$zmckHPy(B)}vNtG-)y?pK^z!
ztHgGAGQ7-5F*WSKqIJ=lk5TJZYk0mB=_~h=h+D&hHTNa4Ffxu|Kx|>|#Lr^$6Mm~R
zUbrAF8)cUKjs|YOTu1zDcz}l5Lr5egDC?^?F|z_$g>W;q_h0R7@ge__a7GH*3<_@
z)u-4iZys1L>ld|3
zG>W+zOGR!?|1gg@=alhUBTb$m{=P=-$X|?pRD^GUGF2uE;esVt{fW?E2w87PQHV^M
zq%2cH?=cSsOs3U{gi2^n{b9qNnw_`*#FzVT57~OBmxFGv%bN{LDLgxD3Xh6^MOc3T
ze44*a$Kj_E6Dq3Xa&d7uBJ$#^$$;fD3FoR)T7|6Ah#9mLIj$;E_RF8jk1AeysU
zTPz5b=wBU@LGwafZ)%3puBUmY*ZS?Q8HcRPS7}V8;YQ06?0)k2J*R)RU)3n2s#1u$h
zNT#MT%&tm*J8KjB=v&>?`S*{ZBO!C`8+CBjF(JkH>O#p#uVGWul>$i%B3npTJFYB~
zo3=6SQoG0`?<6~Pg*CDFMU4;%LBfZ}>;iFdZ1j5#Wn`ns)W>i^xa=NT1tn#z!A2{W
zP2q|e9FAibp83I{FpBo&An7(*g9$HR;q!}&ccbGn{n(-V&wPQ_KB8$7z&sfB%G
z{OvnYjwdv8TKDf|P9XymAVsf%Z*8wK#DNGug={8kE|p#x--;{xrj5yCi4LxroLQ*L
zxkTN55LbWUU$l$Ef~1S5k?mjhg?wyezoX9_lpGVew+(Gb_TA0l!Cfl-;-V
z1Pjwik?3!Qf@ueYLIyqOJ*H`-WPZ-YQ{T1i!h_;@b$Pt8ruX^_l((aH3NeN|x;KgO
z9nLMpf4bfYeT{z;Rya1*Z3sqmoCQZxs$E}!i;--l@G?9e
zO5~=Jq0@vd%DOo**63sYaM`!nwbz@Xh7K9XZwSnwp!HA`LS%u7K^>XN(*r(p=M492
zLn;pFGZ1y0DBW{bKRg7GRb|e9Ns+TsMOpUUy@bOdTj+raw-vwO^(Fk~3PhMj7pu^U
zB%l@7G*@Um;;AZFFdnd1z`9!qFbMp%h9Jf}-d}fh4d7cFFiiixYB)WhZk85~p9m28
zr}l|8Gac7mzuD1{%E
zJgU|Ql%|v@{g4V7od_Q+QnUN0D9Xg;hoNL1Xg61$k&*e)mTfGF
zL))hOY?uxmg&X6ysT1rI-Fu~k6sbRmFvV@Ugg(DI-=8oqNFFIncjvrWE5&s+bm@;@>&y|zynz}bLnORhTsG?2(Rk0`D`DmpHUY_o=}(Jy
z^d`BFN02i|d4rjY?_*Fu^zD~DjW$m4KCqv4gWd0{hfO}OQHuQ1AC+-=tFFrCp#_mD
z*a8TOm>$}Oms*eqdJGCxb%BXR-M>05hxZJd7%5K(9KYD%9p5G<`h
zUG)km6x8}shwJOq@+V8V9PQ$vl+VVZM&yWC5}grZ;OT*UE6bwm?Mux?ar)j-y>7Gm
zzkTw~r)F>I*oE}K5apKr$`;(cmH)7IrXNQ|175+&X09mr$lAzYuLNOv78YLe#c-hM
z>7dB%1WA3mP=uWqZEwdYJbY^sF%eS9?*;xe@@iK1#65rbJbm
zOMs{C1a5kVy2-qLbzii$*S2;m8&4R4cpw7cpP0qFgFt)wqtd$Ae^`-0#SgUp@&M5S
z7T4F^(-)YTYD|pcv?7Gku^gt%7&n(A(M_JnvFAOBmuuiDx=+TZOlGUyhXjYTA}=|bm#
z^0Z1dn&RCrNh`YXVlhzU+q%gSqwA4^?5E$UUv)inB<1fR+YJ90j=CNHeod3KB9=bp
z01*B-YJmY{{d74`PoGSv0g2EXF{ify&>j34;S%r3E_-gyiBm?MR5t5B_r)y<0H+hh
zNI+MC?U(n7Z7n%$*>N9yjW96XTie@*_BWzDbN25Xd}9
zXt9ZnIBlvbU}AcRMpKemNS*H$J~nGe<%LWhA8dBJSfD81-00$*9-}z>wJhno-O@?V
z!eG&aZh?Pn_#5r{-Tz%AnJss&h}RVY6>Zyr1A
z7vSYN_TEM9t81hAVxO==-IocsaMsNdVjv3pdV0DTCt_ggN7V7nTUsJGO&E9meLOyn
z6u3WDtL7c_6MM*?N)JC;Vg*`z5ov|d^fWdm%!8Ia0SMxq(DByBH+3O8>Wjc;kmUmo
zj;o0NOxB`q*O-qI%gvo1j@vLN^h)ac^Q`+?C4@vH35VgGH#
z^83-8*1Iw)9?P*o-8g4U2~)d@!nnnp9D$nU{!O!DdM++05U$nc~M8xN*r**5;wOrLxZl%Sc`)1Y6LmR7Hp8+1Kf7eCeho
zINdOv_!neq`QsOzN6O;8E#YjFc4Mtk>z6i<1v1G@4$-mIt4k{F`_8NDXpxK0jyTP4
zztLI8zvoHWa^bAk+2!Zal^`D_JJ408ouKB$Vtg0yK^<>%^ZC8M6@Ik3loGVYx5>ql
zH#hY8O^_@fY|q7&C^6#ReRhd_+U;9!*Y;i&jY6fMjJ9JwS7dmtusj8$gNvtC_o1`Q
zFNTZ)C>l**yc+}ffmmZ}o(CsQXC#t~O%P%yOeYnV2DUo{sD(7frm(3OaKusd`ufAB
z$MX1mWbLlj&K9x=vOjtOUr!N0vy=j2+-?qb2GyWPg5X*06jT4$ax|NP!!zmM8Vf7A
znr=L=DPYQ{+t~Azn|ReytzLTM+ixj;utgkJKar95Lj(#g)V4AD5+LR2)dbJy%^2TuoI6yxFw!|sgccg*3n9?a$n
z`v!5LxRD+hX}na|kHcme1-n$y4<^Re#*C>P8KJRV81pKvRQn8$t>7DsyXhf-!dS)T
zH4AkP_PwfH(46w;t`x(F*5K|*^ON>{kD!m!pVPHPa8+G>bTC|5ky#+w1-_6r2o?>d
zHuxz-xq=BRC?L^lrD}FX1e5j9>xzl*GZpSrxUxJL-Dz+TlZlj|(}vS}b8xrby>tj)
zq$~1p)jLo7`&m{_tj7Wdc4ST_hUR(gre$zeZTWkpy5-c&VrRh4bJ4?y_NvWSitM93
z;n}>RC1cbxy`rCZ>~A$-}xfx
zF4gRbNR@`+#t7?NbnB$*O-@gPZ7R<^Th(03s){gem-@smENw{SUzt9+vS$Rs-;s6=|-OWzYxZ
zMAQm-XGJS9G=>9FUP{Hqwo21muK)}Y3LYFVd>3*cdMKtBz;WYgcs+NWUERzUgR
zC?0{q-716SKe(}|rZ_{L-%zz4
z0lsY}Jx~5YPW|-DOmync7r$BH5*nWCho~DB+1aDXyefpcafRBz6bY*Ee_)(yUdP^C
zRt?wRj@QI_8)D5zEdsyRn;sIzUp2pW-DOYuXy@XijcK}+9~O;lm2=cAZ$IwXf$_`G
z2*!6fEecU3(Tt{Pr83OEcHp5#cLuD*6N;y0X!vJ3Q2g+W4P!;Fqldn2SlIfoO(kbZu4-8>=tC@=4fi_kWvrB@
z#=l=*=J#f6b~4nxhFn1P=~oQt61)g^bl!63+n<`c=V0rPlq0M!ggRWb4Q3Ft+Xxz*
zcc7gd0Uq&5kE`nd%BkXlnZ$|(WbOw^z8Hq4y_JxkoIG3~XBH#|&mdXQLfs0SKx4ln
zglLKB_`2ux4h@@zY0eX+nRcnGsX~sFEA>LN@du8ilm3hSbJiF1%?vRQxw4M=JCk<5
zo5Lgcn|(?tl}eW-Jq3nfWYUH@g*%ACw2-e*9PyN8#3&alA}E)!C{)Z#m4(6vM4y>Y
zU7_64sTiuFkdaCLQdR|+qHV<%CZRqnkyLtf_fPty75m~ae(&1L_c{@1AT|W`3lp54
z+T29Sdu-axLWH?y$V+@|U49{hO0#AjE~aj9-be{f(5-x3q8@>Bmw1Tdm;dsb)3cYv
z1BRCmwlt@uiWoBBk!uT*&N{qxZG6wBq@mECfJ$q7!Nl}zM5kW9l)Y@4y`=c$
z=`d>%jouQ8@Gy)**U*>;P)Rv8rhYHjT|&=qH}?)zGxof0;jv#nwPr9kijABc+rS9;
z%C4?{{q!=0TCCEs%we`@y-=8m!u}emt`w~
z_b!5P?v(A|wa=uCtWf~3vkL~t<;k>~Re_uiQJ-Rw^hnLmOUdIo3;2o@ns_2a-mbGW
z)50BRz0kL~LS@Ai(?;M~R@v^|$ro|hq%YV*lbwnQJ}gq5zu3l%7%(VLeb0U#p$-qz
zy7z)d2NT>&k!>laNwuEml8qPh`kr7^Q2~o;I+7Ec#&4n66
zrP)jBN>jcxBYf8_IBeDCIZtx1bZugGiScgRtH&~7X&MH(2FZI8F~d5b+dB?Phh{06
z@#DMQiVP~3t}a8J37ZNoZqJ(>PWx0|K8xKcWp=P2?Neh*=cnzwX0bceL{yp`1S(>1
z*<=(F@3z%TKcP<5bA2~WO6)f05ydcG^;j#yXP94h=FnVU`>Iu_o^>2T^!5xrL{LR5
zc6aMi-V5~pX%4pT5g-^6648mrR@c^vSej@LW1PTj>>mDEA^rIrrsP;KMW6pk=I{_l
zvHdVQx#MCgg`os0bld#>%bmFD$-KmQKTBOM+;#J^{+>1Iuon@phM16nXEdf*D9%;d
zyKR{xjt_qkf&QnLD|_`}fAVVnlbvT)?B;P$TY6SE!?O0bFE<63n14!}^55M_*4}+*
zWv*jQtV@}QSCdAW{h4s=^1Dk>#0=&Q$NJ9y&U;te*@7H%ILh^7&?)_WvNbOr2)v@y
z>0Y8D(BQJH7cUx}OdeNbh1D`JrEg>)(a7y3WpJrHbKk!aX8)ARxczqH{paRMSGEO*
zJQ+d;Whp{gqvUBJJzUgUQM9t&aFQ)?z&qe%_E`}Kw8FbF+gEx23Ad4@BvR;1UzV?~
z_jAv1Y2m;R{Un}bRbGN|M6^b15j3Vuy>4Q*@5&NqrVe{M#jQZ3_rWe9P^b9fa8sNn
z(lvx-VtCf%p`O>y%*EFJ6H=!hjW7=)HUxAK(`SzBw&oBfOwRwH(8oBU1{y2Kba@bn
zs!=kz(c}8--!Iz@&8LSkKcAyYGes&FKdVKDQ%E-`Up=r?bajSkpe%^68AOPmLnUSHaf*L)%#fwblRI9$KVOq)1wzNO7ll
zf#U9#1eX?fDeeV|Gh#+j6ZA?2zZ_5r#MF+U#*_
zO-e80>9X8Qq{q-gD^pL&FMrBiltMB4!-=yjg&ilXMEG0>H0d2jS9V@Fx6HEb;42{y*QaJDmV$7qxd)p;bx))}4e@%Ys_
z&8!>Uyk5&zRi3w%A*Yf~CM7jo;Huw`Br7eK0#4qoeEwm=Xu4Jx)=t#VevWFZ>kfxhErg=WdpWGyO*(
zHO|?vlI@hbvbJ%*R`?4hYm-d&eg@XKDP>^kr?=e~+-poJ?AF{L(PwXH00#PSN&t*N
zz8_Ut6U3nYWIAT&=@TLf%n~{5t%dmNa^y44o)1gz-V%5e-5aLlba}eT*tAV1SH6nfPZ{myzn_0uTbG5BSF|dK?Z^1&4
z$uSSH^@+GeJz-YY_2Tocvpz>l;N>w|4n5E=d`>Br0c9i)Iiw3Lwj(d4EfGE>>V3z`
zq@H7?WT84ESBpRQ+wI*iR$|#biRD!Fo(0ET`mb^iA>=bE}zKe4|I;xkZ5VoczKH
zXss?y1VrP7zp^nHTLk|yFfXH8SzeBkZ-bERHUxiuBk*YxiM#uu&5!Xdlz?89LU%lx
zFv`(}Q-{)ft+Y_vw4O%^L9a{)xYFT8;+!&PtH
zyY(V}HKdFi=pB}*sBV<^>)Bqc*%uU_Vk16!kQVPf^)`G~5Tf~3ZFF%ws-!2J8ni(a
zl52gi6X{kt6dUu>@cGY0s*cT+p$(g#pxLP5ZK0v$J`8IPDRgn=G7+EzwC&(OjtEI~Rk!cUYxx6{2Z
zr&DzT#jgY0vsNtyG=U{dA6hBZA{y4?x0?n(UI*B<><}Nli2QS@#QN4|!_2p*u+$`e
zNbOD^1u5cA9kAZpTgk5a7D$Nzpayg_&s4|s+ntOP4%qAT8&4v8w)1mt@mrGh#zx2qL1wz;-1+~$m2c7JipoMYE7^
z{>O1U=GW^t^d?&ZfG-P7aRGDfOg1NKob=FFC#K)Yhd&Jz*kCI+A{Ww&)_g3~z3^TH
zTY1iP;pwq1&9_ghE(sqipJIjuO*iS%fG@9sU?PGfCDcn5DQ>9QyG
zerOEn_8CyE(-Xxz)Me4)k}*MT7>y$G3ij*&qPTGwOdE&7Bwfi&{R=H0*$Zo=
za>MnA9E=9R)ZG;pj~-bdq&AbU{un2`t`R+Y=(gJ!eTS4k!ju`Gc)p`2Ol{?0i%xGP
zqfG$`TRL%mwo)qcjy3z@GIkqD-1Bt!#clA6hAUG`)T1_S>R^0%P!3Oae4$*VyqtC9
zPs^si@=wcswh~5Nnipq&f|I|8vp6RY@@^z#sf`W5hgqqd$f*->cpKVpwqHPg=-S=P
zIv&vs@;K>jq5@o-n5S&_xtrpBrePP;S4$)Gx{b^8-p(o-tm27*^X2xZ*z2EegFNT2
zBleDt)?mHZb3)|YCbx+@h{9D}pK#Jpu+di(Zo-&$(6zU-Si
zvhk$!ddktLIOvfJL*K-PC@p5O8R9Y-S=k`$>9{h2f`bJ&Ik{UardE0cwGt}3tsFf}
ze+6dwX}0Jk6kbE~~6Hvi{p(;>hSeU44xg$BT`R`z%SU
zsBkQuXQe6JZR#dkPu2wZRo;z9bdWc89ewDvmuh+wwKVWZDcvx8gwpiModUI-FjTmA
z^LX9!S&nte^ct=N&KoHMk~S|l^}}j8QFa%DZPfG^cMAQKUcJv~TtmDt+~tJ1gvOme?-zY{{5WUK2YA$5#`%u$3oOfs&A==ZfUn
z^nkNb4}ESE&oXj>#0uy2qk*D@dyz(=d6xmg{fh2OV^@=`}RETe&ZPtDlC64Z8LS7G^hc>!f$}wS@unXv;U^r-$@-_%&#LdGUiM
zH(mu%RKN!b8^G!L*EZf{{QZ?BQ_%(m_=(cykBqdte*v1~4UP0%2hH4G1ZYL0MGbk=
z9x45B&14=hw0X5iNqrr9ROU7N1P7@mKUBo&kx!!L{|@pM^Z{*7CGf3bT8m^-pz9p86d-2|4%!Y&R!RncDVTe
zVi3nMV?QU{_u-K(5!;YGlDpFRGsh-8@v~S*eTRsUYh$_6=i&bFRWTG
zu{S?V4XV-`%rGnJD#azQbtgGKfos~AbbS;gTu1Kx0*t%e&o6YOhWFd*(;B|}wzxQb
zqDNg)n(Ai7d8wGiZ_Ph~M}78eI9aftC1K4#vJ*iWqY-;GTSPT$W@kZJBGdIyou{BY
zK8nto%UXKA>Eg@G+VuAuABw7^SH}cK*@BDKp*P^M6~Ps8wSBv}3R@8Xb*)!HO-hX$
zh@YrUeuxsR_!MeAbQ$)gh*HZp5%q}L20tc+vU)D8JNK(!)o^#IXf^exkx|h=)mK&J
z%Qd>-HB@!1X9{`~l|`37l{&Vz)2-WQczBo65}&dzxOdrK0rj6?WoApO&Pxxz(fwV9
z-IS=MA8s;{d4|q7+xd2AvOExu7&??_7cq`u<$L>KQcixV#fkO+RL(}{$D&+zh!pg1
zUVC3kGoWg0ubjo=N<@i@@WDH}*rgG;QlAcy85)agI&13-j(+NXcwgD>$7)ueY_Q4c
z`)w@UBx&Vb1Uw~tanY8WZH;T%0QQvAfhtGP%(Z_40RJq2FYvI!A1seU&D|=p38yG_
zF?lc2?Wx?Mh2^%7^Pp+*kT0z#rUulUsl=g&H
z*n1$o<
zIX!UuL5XsS^!31?am7MRb$Mw}A@FIPA7N;ieY$k_
zt%`cE;$);*U|9JfL(O^g!ScvMmS-B(o@+;g!1;bB|1{W3uAUR+bKMw2Bf9AdRx%rr
zGuLTiERBAi&P9Ff-5}1Q9%JqW(8{b2WiCG~%L$t{S+8csXH6m``_Zm)XW)5x?Jbxy
zo<4WT=UYvm8Q@SZq@Ueam*n@mY7Pf1w8q2S^rf=o6k6++
z!{=bPlZ+`pZAdIh*+i2ug7K2hGAjV*tZzd9owF0dhMfER-q(czbLV0{?vJ>*lFg(N
zcRPXpIuy@HD&J*esj)Sn5!cp_>3Ai=)*d!p+v@z@c-l9)$p~rCxw>`jOKKS~eyOU-
z+C=*A`q?>EKfe%}zy8&L3|&$xds(R~z$ITM$dmLY0xz{^n6fgMtEFpF$%4u~H2+gxt`sbO5w`6QjIsxQX?
z5}3RXspR(T0s78Rn<}?sDWtp&foydrGnTD48g?G3f8$Go%Al5mri(;!wkm4~F(%Ub
z%FTX90v0-~!Ni-!)QICc_uZ}bnehN9+8
z|8PRkpl>t#Qn$ca^37WCxiQbyqDkKm+mpqhU_A|D5gV;~w&5@mr%cXYQ07M!DL2nQ
z9F7|Z2t2Cd3LTFKlg>sdTVlqag!-hKv5%pne9^%^(p&j`YDph;w*;v@;}*qu-YkK(
zPz~3ZddTO{k6^+9>%yV+eRI0ym8c2xS3|C%uhYtC#*(BNPOOW>(&go0aA~vPhb8*>
zs=?iOx8I8`!Bu+$ZmofpRdbMFdi7vXOHQNLwYYxtHw^cC$691@`-o$&RNi^3v`>F}
zazDY?YWnb{bSWXg)R3(Eu}F1#h@jl=2li-@ecSQwVbEII8M+dSnT{mwKI8t4Ya|+~AH$j`wr66py!vIJL{TFy(bmK#fvwDVjr^_P
z_*HEytWx%rR#}PkcyjcP&aAb(6iG>>Lhj+2atA)8l@8biNbmhJUvAp>?D!1j{j@-J
zbCCGDM(DZ=wsehX95zNm2)vA6h%FFSE&?MXu%%e|18mV1c(0-?7xk5ES{yQ3n&FgK
z45z_&N$UAtOb%%iA}iCCs?~WnNGS=sBk@@eAG_CV>>>#yZ}1HPpp^CxI{&?Mr3;IU2Ngo$xBee2TMfM|
zV+*}!F#`#CWUQJbZsSwHkiP0yh9}Sp>>o9|jlhJzi99#m^7`ww>acO$|1n@|c$7#-=TOAm(ba6pB23AEr
zwUPrIA>T*ItYKtZnV}-_%n=)<52fv4T@UV~g|JgW5wqNx6!U?%VSHG#{ZS^}z7Ki1BxpRR7gZ1M7C22FZNAI|46Tejt5P&!~emAF7cnpR^@
zlvv0ZKY-x}Cl^-@wWRm4^+}#JU9iJ5sh9qWzk`e(x`z|!dU7e~@kckeBP~sW&%S%J
z8mKfTnZ&1L2V*X1@$@^PA>=33U1NbLL2$z`jS?i|>uA
z?-9B;rf66zr+;$d>yqC1*o3@&INRwX8l~q6Z_^W%X12pu)hCD8B83O4)!b$<5yeG$
z66T~w{lUX&LmZCn+GR|hlVzeSGFiLC$
z7+t*xjsUBL{zOI!5K02@#0>~keG_F%h*``X3^3M+gmZ}wZtb+3%IqPa8(rQ408Gj3
zULs-$-aG-r02;0VAX1_P
zUl9gJ_x}DcrFhp@M{*)f=`7
z%`N&nPk|VCmpQrKA_>`is6r>+*C!VB=FCw#Yu`67N
z)q&b`=OR76@n-h1kksp{gGXR-cz9?7GBt;s9_#s~izq=|!7pCFdm1W*(P9X8V^7x$
zCY9xt;8Z11r{j|b8u0*;N7;FQf>jQ(OA$~#9Dyl-RjtVF(tCWc-b4~mV#aU;o
zx`HOn8U8|@}48S`NQ~UzinQ>J|@i=Kv0!npm+7Z|1f9gvI
zwTSf9;xgD3C|JhV7%fGCtgNictgFIv4Ib~8{4+O+^np+l`l0PgwVpo?ehEA
zw;~7^BT)bZ6Kzimv{9JEM?Pd-xVn0Aq7jmaDd79cX%YyWoQzR+&aWM_
z^8IDSNyb_3CmqC?IxtU3EhvmD;5}AcU>&~89Q}CBD586xmujMWA+wuOc}+r%5$ua$
zPCn>dgr%1Jc0HJEm1y%^d++cMR%|Jyy{ALu5U;cX)?soYO^^Fa#mPyuU~-vmqDBPG
zuLam{MLdTL=Jxt>*TE4japhl5);$)MH@P|O_{SBIGJqy=_cgS25^SL|U+wRW5&;-F
z)Q+k!uZBgTlh&4EB~crI}N!XTEZ7
zo}o#SMaFH*$|_ykGK8OvfyTc54t%0tEwH8D>v00J#?R#_-pDHdw|P*T?gl0KJwvYz1Kiqf~p_=wOvR<
zEj1VzXlFve?fAV>TU0erNr3(%
zRjw!BpcKu`Z7SuAHdIJ0JQ=xDX4ZHqnYKyysBgltrn5uP@d)b}BZ^J$&Zf&w=__$x
zhlWt76Ni&v0@qa|$ke9_CRWrrZMhG;#yas463r+LJ%AwCQ27IeZWjBkQsT7OmcKE!
zJo4)RP!hb%0Pdl4@@O?50e3CxtQ`*Fw@U9A6Iu#8kt=rSy?Y~4p6Ts&|Je|&h?-ioTq
zTQ+^%blHQkS#xo}CAD?SzEd`Ij;*PsK6^R)g9C`4JYX%oh2rTAk#x3Xh<%$&>$bWQf0a*<|M6lpO9kDT(8>J5_qQP-tjyyubL
zQ-5fN{Z6RTBUuyBK;VWayOp&cwn=~8+a%Vuve&c#use^_b3j^!FW`QiXIxUhZw`xM
z(-NpnNuTFPC*yAIhN`Gl&)##8+}*%m(8-%4Rfdmn#Uje}xIoXDCdJaJ2u_2>#h
zc_s%VrdgF(X#|&>sVSL%7A4)(j+xgtwtK_eE!9zn3q%R#v{}KaHso9f(Sqs7+}zwE
zY`quDKy+F}l4AX-0j_<*9M{8DqWS5TAG4B(wFlt94OpBg6#@f7IBv3kBLOp4K4*Gxet5t0B_0zuJ2h<%j_
zJnoPF9#=^J$=LNVcW4rIat1@xPiqSSg>Z3y>4Oa3
z2@0~*`*?3NvdrWCs01s1P7rz{%tSUG~
zvcB$)M@ZMKW+x7Tw_)sj8rV8=0KBa)+JcRZ4WGb9gEI;A<Xb7-z&MMKJZ(aR(tx0@;v0mI3H~_dx>~Ibi)ub7rv=!aI1_!XC#V`t7BZ
z8s0i0h8l`^AkI{G*cIkg1aN~bw7;n7QhkEfF)F{8GXr8m-yk_7euFB>dzr53s7o2m
z1F1vf_>p(MGp4@pYOhR&qYTtC-bgc0K!(5yrYd?V2#6R5=PEQa8th0T+q9Ax(m{8Q
zCEC&_8N)C?DP*LD6rjZ`rp;w&8l9zMn)DqK6$)L0AA7$vbp>8*`8`Dm3U2J~ps494
zwdCS^CMJfSomka2-&Gjrr(wPAP=XbQ(H0kdFe^_5aFOU#O5TJ%RiHZY(Txu-|L#4|
z`Oww04RpC#h}WDly6DDNLo3UqXhznJM2ZEn8K>Uz$YCuD(!uGeg58=N17o@NOvYTSSmzd
z^K6G<_t$)6$zPnSik}8aH9H*6C$N`q0yGSXNz@~9i)XAGe+Joa)%=4MMzXXlFVUrz
z+&3elyoAIA2JMy4SU#anN488p<;y%@u@q3}7amn^%y52+WrJXN>QPpJ)uaSJ7=_9iF(V;u2S3deDg<@2B4;KR+jhY@o@czVQS!ls=a7Ro1LQiN6-f0ieO$wl@gcOdEpkeAD06Y+lQx9?~@+M
z(Q@9?JT^=GIPx2I^~YQUjHhF}*$Xm$T{9%bCS6VBe40RACZb1umge*FGdWGjYnC{c
z>c6!;S)pQypow}Md@6J&9
zQkB)#mR0^MSzk;H>G3(udtPHvYJ~GnN%6otKjpRZTdw;qhUF*U?hNhTkZ|KlbntbR
zM?M?nGr)&9K}LDSRX2SvKjq)}5w*bAb@~afw_}to7+-k8LMO_iR2H-(YkNFbC%h=M
zGJ8NrlA_K+00Vuq(dax+A^i;wxbuvYW_z97r`tPU8Bg%6tBD~bQBAfg;;(XJ0b4gK
z^D)}NERkvzJtPHASMQ&oO^3@!OG=(}j}{2zF^Jkxc{cdByR-xjAWo=|6)?M<9+oWL
zj%0P0K)qfb-sJq3PU#Ye+B0C6jsj&t>VWt=gp&8)N3v%t{{LX*jbd;@?@RM3Kk8uj
zcsy8Tm1QhWtlQbW`VN*0|Hk`W
z_NpkYL`pWv&b@-|9F7DyCf;HW-iK5{^Z^xpX{i293uWXEqV-8AcC!ec}
ztHqbdJ7QZD&=yg2bzc14j>Wess{4HH)4XL(6XT@zok0)tQZWeR%d%*v5&+hndh2C7
zAr?ua2DI=@%IQqOe?@pv9QGyXO~z;lrvGP34r*h>RZ5IA-hUENK$Mahn`S4Jtdar0
z4UudlJ|OQ}3H|K$hTM_yxtqTNCJm)X
z4_vkCECjBC`RF0)t#X#Bi)r2fpEzAXvBnT^$_P*zJ|wYco3va~B{3!WWc_q!?jldS
z!OTDYAFTIXS&_H^DdJFOE6BCyXbTPJMn%^V$q#k4_Zesn+O8eXzb4_HtY+~#vBD|o
z5}Bkjd~{MQU3f6|%M&`PL7sT3{@opc`l-y}U_2#AB!e0*fLCh6RrNd#0T4#KvZ6}X
zh;Y*yZ3yRg?8Z3QDE9ytcQ;gl8rUdAQ~k?SiibPbUD{LI%f6!pZ=-HDW)J;Iji*x^
zjSYdKPnlr+n*Eb#BA??Ps$Py3oFxB-6GoyqnD`o(^!VyTXWW7EynoyP5
z%M0u4*U4|a>U~RtD&K|{ywL^{7$z=pCM|R7rNp=^NYin^QHzhIZ$F6b^OM=NPp(ZA
z^BJTE1QSTq*Y#ivnVR)cv#_hNL=X#VIeGQOGrZ1FF!gd?FX=6f`aZ>}m!#=&#?X`?
zQ8sdM`nTz(sqT4-XfNK$sBLF-FKYiy($e(mNm}!q<)iD0Dm<}WvYyfE>#?|?&dHadgj?;zJct-
zXc|ob9zN!t^PTZy2kMzd<~Ei~erb9O8zzcx8?>!LKm%!ea@7|CX$qblH&5Qa>#rJS
z;YMt{XHgK5d3M1dW8&T0`Kem*vkB)HN`|L_Z-ypI=pWJA;T7>}+_7^$H%U}?@i7y|
zWLYQ69sR8y*z^|*GYe9h4`RqWiPIut4<^)VyJ{6{D}@ZbGDk6N{7
zNMKUttF=5K;B4bXeEW%}EVNzh(UXzTAGnUWpV|{e&6v>9r4Qn<(I$h#A+?x}SNAy}
z%hWhfPMqW7BGbGht~5a4`h5Ub?fV&d8ll4{DO$9XL$gV@($@XwR@U!=MXEFJI)~)G
z-*}flT!Gdv57Oci2B!#HoC_A}GY^WXzS>O>&KyD@X3C^b%@azf?$L3JSzau#yqwhEJy{QJZa%cd%I9odb{nx<8PC_Xf0_)?gkG{t^?>_p^J}xFvr_hQ}HyNDU
z`AbC64NHUoR5=_tYFw4{q=f*uyZ~?gceQ|v6OaNg?Qdt=X(bVd=zQjVYG(Z{8Ox^G
zt>FD^(z@bGes;P1)cyeL1Plxdk{x*7@}mUbnUAmS!z|EFz|_*Ko=U2Y-Yq*ji95Gv
zTsNW1u=#|tT3BQ;%xw}hSxGOEYfu13ehj20i|c4INntq}Pa%YmE6K5c{0EDZz0@yg
z?0utB+RJDWEE>S0@Xz=4So9fE;k4v>Ljn^1%VE+necg`e#zc0h|pw!t~iByzPiQ9pU6kmSf&5`Te-S5Fn<2l)XVMl
zk-1@9YUR<{wC0~V5jyku7xu3
zK*GQ1%Y}x$VO$b)qKmwNiUO?`eSl
zUh^kF^R9D2X<4-i*PiEk)^qSoXY!2no}TF%ow51ks*CqoL@Ldz!oD@Xt+o9O>R2WO)8xH{ZF2RV^Fg`eq$$z@99ja}X)r%x)&j2>R>+L(Si
z!D>K~URX~SSvP)@U-zJbtJqAt(tjV+Tjj3xzbg#_WF1!j@uf!@TUT^zCHKiGH8
zRBA~8wZL)E=;9xv#=?ZHUmF_zXF#6M;SG<#rmFC>vb8<104%K1KWQ=)tV;!BRUQAavkQ$!hde|Y7dEW-508aEd#-GmUw@*J)9iniUrH788
z%9HFlV&B%=54ML*NiaiI#7+q4y;mQK#(&Ji8hl^@?j5IDD_b;LkFG{fC*Y`POq45JVa&q-`S~?`Z23=|BHc_0tF7;XQ-@3Z>tys{y
zHUhWGNTH?~RSa42mD9gUFwmiExd_vCk|mj1su?5qN1BcBmY
z2uCElSuo{s6d1xtrSZ~VE*uD7xrQVPmytGR?V1g;PJp{~og@=T31`{2xDz8?Gz`CO
z4$jU_gLDA2!k{@Lj?*;Cb8)KLsm@;OVxG8ko35eEG6G{HcDmeIsd+H3Dy~+
z4`Z~j%+TbJW^0|Ah!hjPZ?2}eK7YM^;&l{^AtPmG3VKf)zo*w>Pyi@ifcy(cOzB$c
zE~1IrPjy;2Lr==GHG2e0_)9)p=}!#gmnO^`Z-C25w>QK*Ze^s?HE2*OFGZ8PF9W{P
z%ebppGMd5oP$iloZyu?#f|>HK&o$Tkz;sqT3*&hyH!jk-!}&NLjcC5+LXJ2{V6Vc%
z_jNApOAkue-n>aF@3nKV?$@1}%vN6zKbX3B8Y@5=Mw^1tAo?gFScAX#k!T`H
zr&_aRWvVEAbBv<3HObq?qYV4=s8Y`2IM%taDXOtiGmZPP8n@L}bq;&)?6^Vu_6W<2
zUpj}Kx1%-bp;!|ETXQTvrm%jfM0sb3D$$1}5R(wPzVS22KSTYK4?WerQFcOgA;ZF7u?_-O6
z-G{KDp#p`H2VQhSCE87Ten9^Z@qF}W?hJP;j&Hx6x+Rr!b=oT{Dg;6HcE*m@(o{3)
z1j6MSTU=OyS|T(_nDuH8eT?jC>iEYIw_zB)Gat-5?HUKF=%2C$rJ$2ibQEb&uAtXw
z?989oc#!(`41h)B4cmA(0S{k_Q%YBg%Ia`v8OE^9GyP8ftbPAwyLttzooc?a-k-JcTplD
zlz`WX16HV{x02zM{;W!V5g?urm>fZ4i?nBxBLgbt^uB)QXm8c+;Cm&T#Y%7zP13N(
z8uwVx^rCZXC9$1`tF7W6UY_cq`{qY#4r19g$#0|cd9V2rNro2Ff<6SCRm1W=
z*cMj)PTI7?fH#2xjWeSXd7F
zw8KUG8&by8LM@u?_nyzH5V+FQ6a~%G(cg@G_53h?fK0o4DdX$LgAAIHcr~#dVF4NMR
zw(g}Tt^=*rF+$?ehAL`?wr~e{Ex}jxtdc5C6NQSF2AFwjLPLbd8=N}9Q>*=1FzQK(
zQB7&~O-OxN%7cG32~>S=2k=d>{u&6V6vU^s7GC3?CFva!4sxp$oe5(%WqrM9=Zx6N
z;MTtuh4*Yck0uO6pfJ){gRNvnSuT>*DX?E~yja~1f)mz#=5Ss;dT+T$c^jz8TJ_vj
z3k|^RBZPIA&*Tu%$>`h(Ap>tZU0l^$Gn))Z;ykywpT?dY+n~m~0k(813ycv|&y#y;
zpVGq|iiqy^E^VD4OcQ6iQz<)6&Pk{ofMuIxS5Xr@A19G1bF@V6bjNMUzptVXtS8A|
zsT#hg&*~7H=%f-D+mk>oP~NJvhxNs&N%{|kW6Be;T?Ej~rPvO3pJVWAb8wU4E4%l8g@f?)xgKi?;h8_FLWj+cm?bi5T*VFuW}FAkCtz!PA22Dj8S{P#AN
z8yC=%xRQ&r7cZNCu!wMYx11)XdX`1E2u-3NkD~fIJOvW*4@m75CV*)sfNe?a|CG+^
zuu6(dO$@NWSJTC^v}`Dpu@jZu`+=1TE9&Y)(B)Bk98rES?6s5|wHQwU+N}i%?Sw!Kmne{HB6*Y7vV+mF*7Jy<+>sNpCSdnm5~f5iEwdU`O|DEYmSe6V
zLIQn5<8dytdFy{Zm2uR6f;d~>lNq@5*x}DDEUYRlMWO8B6_xN@R8^t8@ir0(+lFVw
zJ-4z+mk(gU6gxI_yts(_4{K%qMW1OF{DUR=57q^K3P!;R(ZOJ#JOBCrmCNKh`W`ub
zixL#3BsNw51ByJ{3P(~Lbglr0G$&XPl(H1a9sth$zZ2}>lXujrT(Yl{3hi-1MW^Uy5eS050dmpxsIa-++G1v5V4JgoHTKub-ft8-BNKGx#&>j{tuMBe;
z6;1EIPfpphDh1U>v%Ye|SIb2tC*?Cf|0@~#`VgUowYy``T08NFHX?A)Xo*flgkSMe
zl+hlhi;9c$@20p~335yT#GcYgF?hi*n6GoAFzsf2wvCmP0^PX0xVD=Sq8M4fqAF2b
z@(=H(7Y8wiJ-e!;QIKkQj*XR*&K1Vsrn?&)W$h0$fRJVs2%p_|P(HNhBM?9A_Gf6f
z_^N`dZu_bZ7VFcfgDWMe=nh%w*bb5?Okez-1vk*koB3eNj;Y`;3q7NPM%xulGQ9te
zVL(iu?)2fZaX}&#Qg(>Bb!6nmzo;WQxK8(5JOhj~Zg=&7$-PHfv-J41SNAarI>e!8
z^I}`V4aOsF>Ci$kCpfukl)@mB*Mra3Dsx4I^5Z5PQcLC?48BcCmd-{$2t`mvDsXy1
z2hi%OJ6(+N7>NH~(`WDOr=UN!!MVFp&{IX~X7Dw4^&?QP0c`tNj4|-8#aCI?bm2&xq>K&F3br__(Oa6QYn2ofa$Zb
zsUBGG@7emDYVE|Tr%aD*@}zu$20Va9xh<$hj>zWb-ThaYuGwq_;qL*S=xT-`De3jy
zW$48|fX9DlBZE~?*r_IyG(I|o0GwcE{N#Kw&)H{JmV$2z%R5reksxh1!N~|SWo^%V
zm;$X2XAv3~r0qv7fQ{MoXGl`MNY1j&Y8gr|6^Rl)3w*a@vHFVp0i!FF1=2voIg8b^
z9m`JZRFS{yPaLp8pX?+B-aHg8CAp%SL;J9>C;Lx!iV!Th5kKcDOOpsR;>h%iW^6dO
zCHos{C&w#NIm1D*zj6!u)zqfkcz6%Zzq;7)7-f?V6~8!R>U+ikkjcTvpaAeW_qLvK
zaR(Yb$>n!3$st5R-S;?O(S}tXbj$A{)?~WJbyFb8VhqRLG;W+UW=DpmPW3yGutHu*
zIl~7z`Xhc^3D*(x@=2z?$K+48Bf~J5=)?OzNubA{_e6}8#(om$cbg}CR(jPMdBu~l
zeR4Epa#2PJkfM^R*1JrV)6l|nq=S?lHpp7!aD~Sf!q;>Mk=7q5!=2M*pi+g+N{3cl
zK89y!JAKoO9gp?AQ?BVLcSa6rr@Ttpv5i`6(~(b3#%62Ob~hYypiYjgA4+LbUU2n9
z)xKb!2c5jx(`~&9%DmszgTRp`0BKIZ^~RyGr{igurcC2Dfu!t7(E764TG*ur2Xa85iG+UT
z6=m&S3Sh=`V*top9i*a7mJ{%5&ICO#x=BUwa!+Evd#He9T<8T%n3%HC`RnZ6@(WiO
z_)e$s?b~WDM`AX-vQ9q>KX344_2N)-Euh1-_OFcjAy=0AjmPw^g3Q-yWC;fj*C2Jr
zj3TD8sR^-$b=RvESTD#>*~-<7lY03KR|0)nO_F&4er>1U9f?2|j;tZPu7+WB`ijRO
z169x4+~5Yh?DSh2Gze*EOj^pWPnc{HO<@w@ohZJ3R+cUixaJ{i0G{5AgxE#3pJfMl
zQ-R(&p87*Hp=?1uy1Iv@i)qtkWO0SR0$LD)X%z8^8c)M>TcgW76)bsN`4LE1xu*z!
z`|;IGzEDbS!aO!uqJb8Q8$xhemfuAsCBPHP;&ebA4K4bJfjdg>?|mRqp@)9Su47M_
z8{35zaKCY~^?fi&q;dW5RSRe^pzHgftSS==0{3cY4w;|~Sw1|^K_m~?sm{Ql3jDpg
zAp6lRnXaTJq%2fv<(U@kc#Y60@PYO|YiDlVV@;h_8jr3YY6JJkbYBsNy#C9e0EHL+
zn3x>Wb#%=7BrrRU%fZYerytNlKXN#r%543@l|v=}bO(B1RWyLRxYPXS2q=V!8%F0{wA%L(5MF%fSG+QO?VM`V3s}hSU2#0%M>+Bk>}
z{)F@q2kQ0TJw@mYHI8CNMnn~SdXtw>pnjNet*Bca*>kZ#W5!YwqtZuD#=&}EYg>Y$
zmkqxJ5aKLJ+Nqz7RUEKx&Q~ovoSeCB1}YzeHWvcb;b&jU#j}1>J2?$<40~S_vMmV>
zB$N!uQ|){OzDP=-k%zxDDzc2i+8+_F;`r$}A*d3tm0cRZ0!P3x69EFAvW*u8rXz+IRfX0`04rz^;M#+^
zLW?j5H$Pfp@ppkXFyWwWo=r_~ne{%tF$q-7Ouc==qQ=7HHz&sh2+t)0DIA^?h4|nqo+<%VcN#QUh4b5e6FSJzH@kZUX^svHzaxla
zrRSYcHIEV|(g+hPv{Y!r%9C^u=B(Nvn`K57$0E4*JDOKDQO;r>t3P88gI?C&1m)|N
zm-YLED9trxNxg6@T?*hD40PE5fn|C;$+uC|G})MP-OTI*n48Xrb$;)cHF{e5S6Ur7
z#-%bLa!(t4Ws$oyEL=JgQMk^FmXg_?!WWocS(TZe+Ns(rk~IV?*yq%1k~b7wZwy|#
z7+86v#fV*T#T)fmqg>4e3aW~`dFIT7wuG`4o(MUoRTUMTfG6tpCntt!GBn5gSwQ3}
zET59`w8Gr9@ua&kJ_X7YCE1=8t8d=l2SyjfNa&=zDLGRs4_uZ6K69zBHS)v#Z8KiR
z56Dm03;Kt&N$Deb#o*=PDDoeO+r3yLB#g8|mcs>N!(f@UTlZFova9Nev?b$sZWm?_
zqVezH)*e%@MF|Bk>+kF`33ML4N@KX_x;gvvA=xT;3X2r{@l68V^G~%58}~V^Z_LKg
z@d=#l#Za1xLvH|qHcMh5g$5A-4{Dce5onwKPJejld#Ci&;Q`%pf)f(|aF=bTlG3wM
zIm1dzY`y=kRb5X*jkbPrW=ObPx#$p40RBMrRugH%${c~syvIFM`w%%FhsPK}B5i+f
z7RW6RGq+j)xO?O}3IwF*ri%sFeAe6c6plqfL9t^z$}5)8&~FRR_?+gebzVl}LGnX7
zr6WeRoVhp3`gJ55v?yJPa+P^mRR2^+U5X_2xFMV@BTc0eE;};zkfXEJip&L&%gIM_c{0dzVGXOy|3$fEfb!;
zad%#rViQa}zWky!mhnhLnmMr@&Ea_WT))vO_^#pLYp|P9s#qeo+0Ctr=eH{+UmmcO
zFIN!kTs*Frd>Q!AMJJ2|K5&b+m(kS@r-(%K7)~pi+`FU`MSSccCGNGrc_;Dgx!Z~N
z`iS|vgrS+CD8#44gg^_A^T&Ded6^F``>o&m)W9Bc|9VQ@x`6w+d%vojWOszB$VnkB
z(8yb?QtAix(>=NzM#&2U%^$x*0`B|cE6$lXX~c9)XhqF0PRKQI5_jExSrM*DJc(&pyY4=Met9
z^SWK1`zHp+W{B5|QUK2+Ps~zWmScwle}FrqFE-ajNh4xH18!&?gR{sl(mgl?u`~gj
z-dnPvGT4jP@-v({@0hv}ON@4hgnjK66?67KnZ^8`I@QgSWN?v+X658i0$e3~i(jDJ
zWfoV~gr{HUECNt@2?3WVV6auoqHGjjJ{aY~vp
zSPGTxGrE=FFKBa&7k1TOkRG+#`XOjofIxX-V>0%*u(;3Tbg{6Z+5Y3Kq#L1YeC7p$
z=@H~)5eJ)>*d#C7$X%Sims-F%c-lmM(hJDWs2Aoh3ij6*+pITRcjpmVZLv^D(QR#E
zf2c*~h57NAI+hkc8(OvZ(hJ1psh<~$O714}!d0~11PYKl9Js@ha>J7OU+U6%%8LQs
zU0$vVLlGi&+PD+;vi!o;^Z1iOS&P`{zq~65J~$s~6=>SZW_gvivGA}&W`cGeI^%G~
zYq(Ka-JO~$OjQSfH}j>^+Wx@-O*bVtrGq6;(-Xy{t|Bf_kp1KjM_$AM%T`blk~MA
zN64X+pD-jxS)*FcoaJt
z-9g^D0PbqsL_sFMC;0aNKg_%T!pZ%o68%4klW+BE-Rnc9sSv)Drb>M@KwE&t#kogJ
z+m$UA%A}3l#Ll4wHwu#-+=8S?FHY1}7921qd6L%o63dgSGS9ET&)}cMo->!udT5-r
zqxbDyF|oVK!#XFY`8nxsO0<|vm4Hn|e8=N*_V6<{cwbi56L_7%I!!gYS3K^Zsj*R;
zpkVgSH0b10)u1Ck8hUKv;Jgj*_$CB@Jjyy5{2)}Znpc_ovz@jXdd}g(?Mb~>VVcWc
z=AI%gJD`2)k55R&sn+#_lCZh2>R0vL=h#OSyU7)AZkp>pj!uEDak3m4K{0+>lNw;b
z^1+M+S|e>8^)U$5_p{-X=KAACm7I3>I!bf^M`o@4c+^|vusP{>dgRoIuX@kW=lwq~
zOHPx(&#tc**X=p={NXH~{`mOnr_>1!yy{Bi+3c8x*~_@oYDg{NzL*DTsgKoE+0r}8V;l^B~ZQx
z&0~E0Di>#@S<`ks7C(ImTL>F7Xh~byuym|T7L~rxmJWS&!dqIA2%?whyS6mcu85Zr
z`+o(l4S#VpvX3s+&BH$JPwazcO`120NJqw~)x^Bou&@-s*1v4)feh;?4;@4p#Xk@d
z{M5};+HbSrT*#O9!o?@fY22dYcB0Egt}`Mc7okb1xNxhpM#-AfE4eMe!R)^$;qaf&
zSIDOvkl=M$tqjzKu+P?dr|mI%V&T5#Rgk~efpg*L>)#n&*d9Y~r_$oEpVq@XNti9R
zF~Hfuom#r`gMM&k`S+KfHWz*{wSoOICdj>Ncx||P#6TymYy4~VT7D;@_tfysT_th&
zD{{e>_IVfaj4{3QH(7Vj?i|ouCd?3MHn^zL8D3Yo7K)hDl#HFqkX)mzgyk#n2B_c)
zyN}fSRjMN0JjC9rB)rMRrQK^ae;@GVI+Q;HAs~_FV$azY1ZjMve;lB+K)_2H>`zC2
zr806Y$lI_lPz%4iB%o9}+v1_EgsCi?q&<+{dKZ4_J|iNl-I0=#uzv8q?G4_eU5_v1
z`PDuHVNFHftR%E=7w)fOkUa!)8r0Gm*&d#t)V@9!82U&sE9=A1)liw(b8#v=zo7h~
zn!g@SF_gx4Mt6rs4O0s7KO15*@04a0%4YYPkB>B$pLqjrLMxlrTTA>VC3c%a6y8Vt
zou%x2mCBQ={j4I9|5PFEqaqR3(0p0-wex+nv7pLUl|2qLx5qYllSfBfYlvrjym%ox
z?P8IujO0q^zE8~0Oez1>Cq)$nR@8-OeXh}$vQ8G=$9SL4KdF7`b;JPAQJwOYbw3iv
zC2qjGX?%DHv%2qN+1QW!)ggKuu|o_&{b00+mu;;-P%n#h^fwE8i!k9qh$UOba
z8t(G4y6;fz?QV)lfYa~jNBp1$Yd+D?dR{X5nA_#UNMl9OIseZOxrz=!MmNaQxDaR=
zOtZe`VppN59(T`6fyXWD!crC^-*lyPVz}YpccCFP^ISHjJZ?o!d8iOTT8ks=TuwI#
zdNyELlvW;-X$)4H(X0f%be_ItRj4k^OAf@hgc(bDZ46YiO72_vuDV2Y$cE%mK_yV
zJZiclNZW}rkTjw1sPqAuZ>>*waRs~3-6%r*{3+fX&^0~
z+t^ryR#c!lmBr+G3z5z1d;pK029WK__OojKo{~~$6+fLo5_{Vi*
zi7qcKB+%#UCs`96(@PNuskx|*M~jKC1Y_L}ZsBq*5{_u@%nzn;$<+y~TzW4(Fm7OZ
z?pAHs^;>OO8OZ_p+6OobyS04+|IsmuSot0jin@?TYei+BYvYE1Lb*yOffS?Y1X
zp=GT{`iw@DzNVUt-MMb1|Jtf_;qC3`I%}*p>>E1e6Nr(gAFK4FdbRW&7?#T$-*5Z#
z+uVe#s=U|3=eJ>(hEMxutTzxSa-r4_G*td$wo`t8ANq^n04sXDk5%`KwVt6
zZm6T#iK7S^H!%^Pv7;ItPUXb-dk*obaPzuTLa~ui_$93&JS45Oa*Bp~*~Nd!y6)QZ
zJ{_d^1Bhv#Civ3rj4EYkWUq->l!4Cb+mW^l7|$Y&4xhmjEJC3($$A<*Hy%C)Wr=_v
z{@tcG;#v!f^b}~;{OL@vs!^lVN!{{1o=?X2?Q>IuJ#W@C5~@6nXk6XXA=I%<{_HKNRw?VzY!0_2
zCf?}nxZ}~O4%}nGtdHpzOk^rpapF%>pCl4KS{qkCV-p$u0=mhTerKF_OK~@q*WGs#a0B73f1^v&9{C`Vz{|4vz4_d_~
z_iB7K<+-xD5pZA#z;{7fCi&Z`+evy_8XD&xpSWC`)asvlJV_-n^vI>q(K-&2_Y{R#
zV>z4lnENi^J$#(wqKatVMSEvoW52~5iKdtnl^z!x(6-Y9<$E
zAd}ViB@Esy6*e<7iVd>%iPN*FP6hEvMB6Kdeizo8s@-n(++6pY+F17vaB(=<;VCqv
z)OpPL%3E#)sYac-56d0g`HS*>8
z0=NkZ%gosr8QwN&KqmI_Y$U!pkW{=K-(4
zx?ia9Vb9$OFuK~J$`l)_0v72p7|DA3+(My3*Ik=8(7*TS)F!mpg#CHc~PO3$0GQ3PR?(k$}(mbAgG+O`=DH
zTqkvgCu3HgtC)>t{O#w=8nP0HO1|`7GU?1$e^grVKIX_BYZlXXE%94s`htPp>R#Um
z)xSmcy7Is+eY2@|~Rn*M}(eAoc2zgj*G^H?cHfwre1~w_52%K8f}Hofw68k+)1<
zHGZg8&ABxH*FKGZU|C{(T6rO@pwhg>WoXn~NB-U;jUbLn3m
zDF{SE0<8p|2Z&_}S`|IPdva<@ayw@yqzp92c*xk;P1dkzT=H)7;Sw1k6`iHKverZH
z&uz^{eCEHqd0-LB^@~<#wnDPsnEsqfq6IHj2b>Nwi}`J@tzKj*F>Ru69Aj}zdGc#Q
zcx6gLz(3x&6B8f#!msIDeyZ^C?aAX-kA~d*nn;zpSx2?oTCbbKV$X$#4^-BW+>(}s^ALAxwys9sJa4+WQ+g3Vs`q9w#W>)4%SIi&rJm*`Y0Iz63
zDof9SDB8gC^w1UYOGc--*+F)b#ylovSw0_{63nuZ47>DOX7|pWQP?$0?By}@YM1V~
z6p+yV6=CLX#S3f<+t3`DTvbcnbZLD+kD0u`BQ?@tK~sC)Eq>4Tp1YhGJQ5c{yql|k4`HQ;
zsy)W>j@p$B1*wL5pLDE0^+)rl?;lO
z*xepCnb9RF_2|a&?#}o!VpdE~qqCWgNqEw$MU@miTt3cYCPn_jnDMvCZ2O|{6+ne;
zXKg?cw|vVNbVQ_qm);V*Hu}bw8ZWIAJNYgQD(LK{=(EGa?TGziY|s`I_N{O1^
zp)OXrVj@|pwteltplj#C+BZ(e8OiV(?WX1bCAwx&KVJ3tIW6k&Je5}yns`}>LyJ}H
zsWEqzZ10t0(eC1YajHJlm-`MQp}rc&@Ofy*L`d?l%X#}??R^jwU78^8wF6G6xgqAY`<2z
zYS>}pt5K7DCC(wp;+Z4BYdaNWah>z+)SPEsQGCnp`~PVr`)~Q>KiFFjj2*3}a?K!C
znb*oUo{Y{jh37{X-1gP&Y5=R42b%8~{}jC=Covn56XPg8rUV`GTbl58zqPlWF0p=@
zDLzl&qiOijS8E#TYWPsryR~*rZnRz^{A6~pp*DQM7B+}aw{nMC+kL*r$PtCM(~=p)
zuZN)H%xiPo<{^Ms!SB%RKh6CVQUI3nhc4Yt9$q;F-SF@Y>cTYd?Gg?~yTD@_uzDD7
z4Ar=U{IW@ydm+To8AEoy_X*KZa~ag^-eIzm!WsCuNroF0C9AF(*a)uW--B$3)9|fK
zmAw(tmwyBv_Cmq6r2w6YtqzRB?GbR3KHh&WG~QUb)&R)40lns~L(n;<LegXjn+co&7<8=sn2HpjzTch#-q9lmXh8iUw
zg3Ma}L3`{0FneS?<36x<)}R|IvKBK(Zw$~pJJkA)Do;Vh*df82{A-=G&e}e8>dq$f
zfnirj!|LrwT=j#f38oT$0~mfzD6NcK-}+k_
z8mzuTZ`6!O2&NRPufS775zOGg%tjPImf+ZMhs}T`_U;huHt}Rw&|VG3mk!$?koxCn
zXxI$=<1VBBZ9CHt<;%G@Bgj`w5Zw^ds)hRp1sXGjyQu-(F1r%@`t9ozf6^M3y(p^8YN
zrcX0wU`A*tAu?3Ojr^OQey|<1LY_&6uc0`&04N#EIvpX)aBXddvhT5Na*4YWqDdRL
zP*NYI6~>ihXlo~d@0@3VCkfTgZp9kTP)L1AgXS>2T7!*DHHgD`N+9q0tMrv>_%F*Xb)9fHmtf;6IsDOs(D
zAZiGSik-}YnvgcM@uy85@`w=Xg;F+I5I4?!=-T9Uh&#BoYQ^Uio7@8}dRr6Z7gm}*o-K?Ti^g5!bhE~L$Sp
z)KTUXHGPvb%ho~H{!Ft)NxY>x#jmf_ktcbJpA4_0@;Hp9GEn>iL!`p$
zLr|05&n{F8mTK$#qKPyWC6{5UDQJmnlXc^radNXdCtN%
z41f!yeRY@vb3WJ>T+4`;sM!M_mu>^_uus5sV9XuW-K|hxb$?VY!6`&xGXn8RQYrY)#fsE})Z1TygNHd`77GKUe&*-s=p+@!1S_LNW!D-=PB)Ocv{6xZ};OA%u02&$qD*yl(
z06G#OfC55D;156|2d-Vg0APbe@e6iBy8QQ2&Tq
z0=~xqtg{dRxP|}cTgDb{1Etk=fP29`9pG-Xa&ok{HLM|yFod54;N|8K7Ukg)x5kcDzk{)Ca#uP6Zk4GHBBInn-}7bN<>@`A+r
z_q-q@{o=uk{EIiy*FX3vgKw}@fUEcA^yLiCSIspkDHZ~p!84(c)5fK>y_SN&p>!;^mT_l|A*Ku%h@NseRiE(jp
zi4hJi@y{p({|ST34uAjyumo~Ykmvzq0wfdyq|13QlUSEsNK&Ab*O0CrP+-J^0w5uy
zUPD92z{I)^D!@MjkpN_rKLharBvd36WK`s9=x7+%P_X&HKmrt0IzpanGCI~o^zQe0
z(TEdrYh)Q1NpxS^@bPw@iCF*_qv#Vo-%F5m)L;p^_u@h4
znD^)Jino#r9@eFFjW6#P)^|^=92na9gr^oY^h~ZE3Mm=c`$nV{H}+0_IU)d%kwIxu
zuVg|;yC!fY0v!(_Dkyol_gf>)Yk_v$c-rBV+F|;m(^$
z_&e~oa5>9IrUfOwfN(emzn%)3mHIe#&C2tv`9+^C&(wi?Y@QSs&fSH`lS|-DQeg4^
z=Glf>=7XsZW)#jI6@_EYKKxDZXEF|Lr6$Uc8>cqUnTNkQG;!3Y@Eci7_Y}jNVQHRK
z18|7h@#cw;fIa1_!l2q&nD=|Z%~Yxa7cnzq`?bR@l^^G(zB98=o6TOmk(O!|5-!xG
zz?UM?V!o-JMlg2r{G#;y5|~@^4I)>|9_RiX*!z{tHmnuTwaPho+fX3(Ly%!`h;iCS
zh`}9a-kBaLQ-zKO(|ciZN3MYxJ0tB!BrSX~#v!&5p=#)*2C=u?uBDh$I9t40<(pp2
zJ>eR;NSA4otK$7;yaA)dQ#sV`HSlvdG_Y;_ki7UKP>Sz(ct7@rhEerVfYuq;f^{6)
z*h5Dx_FV#{R4#Da+TYQ21^bj2)?#xrhif$ul7Ll;#=tgM
z`^?H!sOg4|FOGk%0>r-ygR7v@or><_^F3xR-u0idEXT!txKNOTo
zo)u3HH?-nxX9yD2qM}>0z5iOV;8HmYijhy8dd-)<mkCH7F`u3o*wxO=W^)4QAOdKSv>k$z8
z=`)&XIg$KA^Y-S)9!+kB+;xi4;DzAJ_e-OCRpqWyd64W?wCpcIBz9G4o(DBs6@GZ0
z?KqW}KtUwxCcZL7-7q{f;N$d2-3L^{o=1##$?MD4pG2QX&nWF=O1-t4fX28&oXN=+
z(IRQ~^?C?>`QtodVmi%k9*^TGRJeLkrSR;~ih1T%2bNy~n9WlX7ogUdRed$SiDQit
zujCx?c6^4!tfYYeF@NKV(SpmJ}wD6
zIB;iRX?pZ+Mh}oVKd6Ybg;l&V7rG
z7evQ5gr?(Ydvb>H?X>5u*4v!=oaa!eF;ZXV^nG?tw_iO0GmL&5r>BO`55W(7Pn{F#
zHiGu>toHl^=gr#5mj$i$Rf}eEqt@p%#jhl)57-yYKy{on%N%!T+bVt2h?Z!IylNda*M$
zp>i7Mh!cMSW0N|xm+@ctduuw*DOk?VE97co`YS9vjeC*hX7zj;167L0%WyY*UFNrR
zeD&MMgx|Tp+UTdCw5|xNocwTslNu~iqqHgeAg)+rSP{a&$@Yoz))9Q{+>%T0R;p;@
z)+_{|+ve>s6SH`k8Yp-P=xiiyhgx{M^zC;#L0_fUzUd8H4@jkfzDfzscWvJ_$Ujf=
zgBd!nw6w(r237fPe_9ec{sQ*LCL1iK996?=*4>TD&W|;UARizmEfCK6?b3yOV!Jzc
zbCkor_iKwjSrfhlT4=t7?C%cn9_!2})h8Pnip?s}w!i1#wSsuRoM<};oZmM-*=)2y
zGYm>+N1^YX18^K#GCDFV>|egypKUpAq&^;tFGzQSJoi*1F34=
zqC?)6XY(BO59%a~10lyoz3X5tn#o0H@bR=YjB|4LQ*?*Zlrd-$tY`b5W*2sU=V_}f
zCYzo{&8*xNRa%=p%N{o1F=>(*hL>!$m^53r50GC1PpTIm2OW@3e_RlZC1*TzG~^a_
zdqMrOrtrPIFD~Ud&FNlcnz*!R%-L*f@ol8ImuBwd2Lg`P^w>${*=M0lu1J+>iVK~!
zZC0u^@9qOKVPJ#UX`j(ww5V^U7V3F$bpL~_9is}`>&*@89)`QOV6X5lNBV9Jv3%DS
zFVdYE&}w@zV3rZOpg;B?Y7D>Jn6vc2!*UEbVlcb}Mpe@uvp{nTWBhQPwP>kPFMKAL
zUv5pr;O*4+I;;D5K4>|0)v3_#D+~GdS}f*)R*CtM@i1&MAb71I_)Aw)-!orQ_vZbJ
z@3d3I-7(l6c;~mcPF&7AZq#>IGArZDNQ#+15yikIcieHvlu9wbfbZ#L@}IVjn@gWq
z{4mTX45*PO^cwML!uN8Mc=Xx
zOQ54Y$k1M+|D7v5P^-{dGDeS`J2qzW%#zjybW5uy9x$o#$N*8p8C360ujbHMLygt;*!dv)SV||SUU}tvR~akq&Kpr
zVZz=^;L`BZE;^)^S4N>zDtRQew9Apa8Qnaal(kdW>MS|g`RH)Cc)va2G>Yt8WMxvM
zchrv-?VOeoE_%+Q8m##OF!>X{(G=gRT@Y&s7
zwfnrRr?a@@9EsFvBBge55MpI{9JlyQzvKR`!8@10
zG_rh*od#IPdVwgcz@dTc>9RhXFzVh6fSa8o`?uJSka1ivuOpBY|!24;DBW+oT_F4n!6yNI(
zID*uPx;T^fbbqi#!pY9*6&I<_UoD*i7etnXk
zZ=zRz?tE)scw9V)N=S-(TB7FLe|u&Q1Awmd|IVPhoEv=16UCo=RZC5+;
z?QcPI^a8zX#vjy&?@LX3+_WbY5EBx)OBnGMkGNf_pR}}PZr~YtVAsYY;{~*Q&DWNN
z6Z~j>Ardvr$S;&DT9gE-dfF!B(jpwly>_P;m~u5BTO8E%k_W*zE1FYV67D?tHno<$
zaZc=9V=8B9%s&dTVqonid+WzpvK7n)Y0AENq01nSF*Ozx!1bV)0DXv}<|~TKK)DZ(
z8~t;XUZOYco|YqZbrJp*XXTWWPq?=iN!XR?dltiZ#7ySjzFJh7wd^J8i4T64*M=`jc=P*mS}rpi6OXyA^Ow=0Wy&>QL%(tSenb
zDYPI9r;^UDwt@5pKi^$aK;_!&-0I-AcSoi>qwU|NM()Lk1Ufqg_Bl&WyyKSKzs}q9
z*-|XXS&3)gZ1w1z#G<0MH^O+wumf5Z=dAS*+wBr~y?6R(zI(lwYs!(dSXa$
z?Wjo%R)u;>aoW;8Dt2z%C0xi+7d3C|$lw~cRyn5`+x*7o5_lH0b5SnA--Eu+;aj$P
zFYvtn#YyD}JE-Gj`6rKKqhUM9=ja0sm%wto+GbsZ@zRoHmZ93>63v~%X#n_f%XAT&)cV#mLIq7Z;x-mBMzS33uS0T
zi)kjjL-fs{d|{(!oAOBbI1@RH*RbSVcU?6t76-?4woGc|5~ps{YWqS8u9ZtW^rZA
z!u4Zs@AkXAjI9t{-KJ@s$GFfo2fudQp%3FY@0Ux5P)Y^*j+$8(y255naqL@zZl3LI
z+}q0^-<>`&M}Zy;ruT~mF<$~~f%@FMuO*2pm=1#jFOKcY%6cch?7V#EGZ}l&{u1EP
zdsA4|?%h5#d3`fcy|JTruYHa6(A>(4Zyq0o3_E@6#k$DAA+F{P5y=Jxo7p=zkd2=Wz!A?xQz
zQZ4!yF;$=@YA=b&6BB(PF^={0iKnoli@}$w1SjvqX^ia7_w6Y0`Mu8?H5IJZsm|JS
zQa-J;?8VL$A2+Cg!&+zi_x7(@UE=L^C$u`qHW)FL@U)#^hVO(`wYQPq6}3)(@YY9u
zuij!L>~sV+tl;lo&!aLMUyTYmjO-f=pd8Cz1YQEE;r#QWuYzWa?2pZo>YPgnpEA%3
z<}AF%)+tMdGJM{<1iX_>qu%Ge7nfy_-qle~lOu-A@jBm?KPJZN@Wy74RV)6?I;I$5
z*+=#%+t!xGXDRS}akXT524&RQNh$)%+!Y#;R3d3@Re>~+)8QNQ0G27qrualO6VEN<
z6?v~kc;|N)Lve$$H`V5BC~Ir63{E#QkKb9OSbAdXL{F+
z=IG;USw+K?(fU(mZ#R@MGp2%5k@@|5aU=ShKGL6BS_J^+oW+esw=7?9)bhUs9!%%G
zMG7y#&5f1Ud48AR^Zu0K>dI$hmci2QapUWc7)c!=ZI$+=`$7WF5g%7<8o6*{DnrpM
zF{wArEcP4G@z##oeT(f^g9U6#Rp_Jk8Mg>gJyCplj=R}?S8!j*HJf2>R5&ul#%b)Q
zW*ej{`SjG+Ujl`u?xWEH@o^>aUefIJ?QVB5{TH09%YUVl^{~}9fO#o0=(-^4
z_SYlpVoUq)@VcHZURQW+KNo4;U*uRmP>2`YL*ClU8j*u5A+_zbJ^$1S1dJdC-w3e*
zb*SA>Hvf{WKDeO%?~>JnxctOxdqAX35FD-^e253!&By@?RxYTajxhT_iw_qOpbN?*
z3-|JZySl((_J2gd{xbw2!r$;Xf8uo=?H&FeaQ)8!P_|$6h_-^V^;3qQ%j%#3;pZ|t
z@>M%xz6!(rBT?`r6$1R!H=HXR!o*;DMS1g=pZbdH_bWfl35t1Wx?Pr-|Tw(rb
z#mLei8vOrJ>eLA6Z@kD6UKAD3`I&cw7eE+bkcB`13orm+U=QO6{$0Sn#unfJcn|~#
zs(*R@hC{^tWyJYK_BVoGxIctM_+j2Ih#nD?Li2QSgg`wFUDOec5$PZ4T)PSb(S+b1{mP>v|F^Wz?LFY$
zZvQ}`!95)99e?$+3VI0cT30xb2adJ37hDMngL+tdL2W?Mye_}K|?f*F-p;^0l>08_Xg9;Y{b#c*$`gy5%D(h>g|JmhX
z{E7YtF{T6DBS6N*(f-ep!uy$d|PZ!_g@Gv#kH|PZ!_g@Gv#kHCGu}G|PZ!_g@Gv#kH
z|PZ!_ip2h5Z|*9hsrRX_l=?12k`h($p>Kn7fPhXXd?@;fbP{BrG>Qa#|w}b#Ox9u3UcBZd^Q^
z++2XTl%Jb5#2M;EYXb#Wxh3d#TH5Jp9c?A(jRZ8fHQeN&4vxwJ9#FjiO?^m!GepFe
zUP_Wy+)vcc)y);^Wlihn>H_l=^^>5#VlE282s9Tx?G=favjqLsu?t#b4Q*OExCfM0
zfK!kI!o$x^DdGtr
zkrwEap#LLNzP`SkzI>c;4|^^i5fKqCZeA{4UJj6g!_yz;W$niS^JMswgFMs|;^BB@
z=cGk&1Z{ZUUJ~@6q(8IZ>h_E6zb&i35o&1s_oS|_hyu7`>*=N71E%udRe~pCRhvr}
z>IwJufIt;|pfE3nKcm}1e#LbI*Y&S*Y760lxke*P8#3R*y+67+~eKpZ?g9K0g>e;xv2LsTF4
zPf`s~4{SkG>3>EHw{^7h|4&FYG(=Tko?g~42vkL0f*#BTr=z2-s11Y{%FWMX%V8}j
z%+J9u1Qp~E;jb8mpEW;+
zEf2RX2fqynSqt!5bMWy)1-KzRb`a1YLQiW85w(MRxLSjH;^=B^59M-lgWA*6{w2
JJeW;oM^CVB{r_k{dQkU2AQwm4
zE3Fi@h9Hdo67&#+7C>$3|3Ewbo8tY?GV+tHFKDX%Z?)qmnJ3)N%h%ciDq{~;#s8>%
zT>mHGJ*|EId(rmHe}p{Qdr20>4Y(cM1G1f!`(Yy9EA!R04m^-=Hw?)4~^=on0;=KL9@rt+aKu
z6jjs}t|pquUe<1IE{NS#uHcSKa9bs;l5<
z5H}BSOD5725a#gpaznsTKbNn3|1UbOF5X~1uO7q%9~%lYK+N_L
zTj40dy_53bG+zkd21LNUb~0Yz-YNv89Nf+SYPS)s3|O*IaGngF?Dc|ru+yr*Ae>jz
zV{QZ;qRtR+0QjzZRToG%hX2CBa{)kv0o?Bw{TI$A6#yDr0f21aFC1eQxb6V%2X1)h
zX6<49lOO0J9iskEeos3-#QsW<7F!nFA-!;U`JEZu)s+YU=LwgWr+Jr`=lNjzV4Zci
z{O!U8X+(^x3m1M~XYe1n$bUU3zn;IvL|iX`{43x;1+Fe!KvG8*LO}v=DERBb1tsvp
zg*;G9G-UA7fL{+f2HG`LOcX5e;tBA=1po~NO#fFP7=(h3jDds+U|q)tkdaWpD;H1@
z5+S2udLx0CF%VoMM599|q6aW|h-G*gNHBF|Z&)+(k?OkNC$mXllFP06#?0@5b@TOz
zz^zYuf}y*KdGh+63W`EXklO}^M&z|`Mwj+%!@QCnK=WU8j(uhkw)^hQDk7?^q6$`~
zy@R8ZkFTG9z{Bu}$VXAhDXD2s(lZJQi;7E1%j)VI8k=4=cXjvl_Vo{pPfSitf0$Wb
zS^cuMzOjFBc=Y4=1k66-iU?GcYpAHGXlU15L6Hf-D#_)CV+X&;CnZgN(`!FOR7@QGAElSR?EkQS
z%qpsC>J$)_QPw;#vvKmzI~^t_n_soDITJXSyVM(C2^frvnb^5;4m0pk;FU6F-}^eR
zaKQkcT1?p(K3ji!5qGrRHq{=vEVUBw;t~+G1JA>spH_SCEQ#P9TY{&Q-lexA4zGQk
z5Bw1;cVSd6^}PswBDL6jWcmLJ7tQIpSlLvp&6>)x3DwZhFa!0TWAz6ftOH>K62>P4
z?2BqnEL+npC_}4FH0yE454ASe8@JhL68cZkkB88=)^lvxIshX>WAL1}K6v=P;}Y-*
zbS@U%`JaRxZwhWD!CWpfpVz$}ux{8~=ueB}C;n{iTrz*gr?pmzr#}#@4+n!YCsa5T
zllbgJBrNqfbz?!SMbl)isLmU^nyO-tfsK$PB~cI?6BW52DmJhFp32RHuWSh;=~UEt
zxfWDp<@u#<18W_jc(jiL@8V0-juU7HDV40{j(qlwm1m=`G1SFi?RZ~`P8*6ryNoY0
zZ2qZyP=AO@KtNHotjG=%M?k!uPm3)}wwI8{=W|kb$nx%vuDHA6-Vm*FvVILeaJPSb
zR?V#K&GsUEwvwr7j`>baH+fpZ^f#<>-5|}|*Hm(-jD5S`rKOQHJ9xI7`am>qu^j5B
zTQurf8Q@B`lfB@u&}6t}Y_7sJr$!zjf1R?V5NBtbW;NEIbVQ}WRa-PyBtDVy{l}tb
zB?px%y%uPPkGGR<^fP6P1jaSVd3pnc-L{d{u*#fFA!bv*x0OX1{5`jw$lIu0TUwea
zmKL17?V431aGuPK^NndeE=g@@Ixg|>Y*T*{)gAldtd=q`Rh~)BZ`(tOuxi5DLPpJqO`nW=E$goRO*2dbjSZ!l>^$_XHqYD&Z-5+zmgLXglQ!hOt-d4aSsK1o)H+Z}h6GX>y9|*SQZ@>ZSq&j~_By%I$Eal(ulAegThbukSilE4?6an5(D3xI3lZnCUl`LmyY?Yd~qB
zqqkD)_0OHyr74fT
z}?~Cmua`HL|8jDRM~jE8-te&@NGWkhv<(O-q=%Tm|#`&U4d_H
zTQ!UMES)l_o552nF@2auc8%+49w`rCYe)I-N6c?qg*_8t9-f8Qcz@-+@s&D&1v
zEA~-N_R%D_6_f74HwOdi1DEvs?&4zDd8s4dhx?@{?vAJbRT&x<@_$XD>uhb@--_${#f96i1D`we9i1gCM*xnB3
ztV!`i-(3}4Byq{b7h{L}mq7EYRajtU?=}U=iLv%ZJj)LD2c%fdT3!_a9R*^l8?TzS
zqQ6+JO0MQrGbPWaB;ML>l{3;b1{7Y9^(0K|t*j-R6F^I%$rdgWuj$G&%I2eGZ=5xU
zc2!WA5%#_-Dn87rD0XktANRBPB$s?QoXBlNC(q5ct&w`J
z@j&O4s(EVHc=?`fW;<;po3)`Xq>OxW?)}_PmRWO2+Oa=`37UXo$2(FTiZTZ!8=Thz
zZ5syC*H+4T+JaE)acd{I3ySwD1W4R_Vxb9+pM%u#t&|z|cekZa+=&zBH9Y8BYNPf*kRZuK)TtAHvH5>
zPVNcV!y*@V>KZNGAbw*6alY%JXV^2oJgED~^x^eEx>QVQGX}HyhIh90&{n}4rNobQ
z=m$^}6ISaPRKstg3Fxho=a($n&zjjRHsTa*tntp%rp_nFC;otj(IiI|+>pz#r}b6|
zIvo{jDdi(cCl^nJGu3^mw2NaBfa-&dT#x@#srA5kYsG=K3L9QyWqWCe3i~0u#>*{v
zv&_{V!>2Aj+w9#1kDi9aC#tas6ViyXX}?c6BSne}{aU0gjEyX5nQgzhwtClhOLbvn
z=Dkf>SyAzDIt5Z9bDmLbHiwonbN<^gORd|n%}gdyi`uTv`;AS5L9+sEDm2|IUz60&
zGjC;}#~QCZj0}id^`l9XZS?i7GHVJj6AQ1du6$h6AU|q<7##lm62MDiiHYt^?wk~%
zw?+#lVJpB5Nw^jJ(e&a?3v|9`q)mYhY5#$rXO%agoL`;rew-ce6JuDHmv4~2m(ODr
z+jw!GBYEYzZGG>YJNGova^ECxBop0=hhjUk#b=Ml>2Ui^Q;5Tw&pD$ptbZ`f)r`Vk
z1{3rJ4;%W
zl<2?{t`phEV?yUNJM)3n|4Tfad(Vmy$zB3i>BdgJ{o(pbXs3H%G5!a2|IElXt3|(o
zT--)<)p~Bvmqx+)qC&zpLp0Njl2MJmIEtp+gtS2d?P8M}jK%Nffv|mcPS^E@5jnL?
z)i1k_h2(T0UA}ma8K^W{D>p0VKKHf164ZEOBJ!bC#iqU>SdAT1n%40#TGXLT=_j-r
zkpgv{KG-9gUDdBVP8;L5cPJk-$*=9IQ4lBI)Op75(e<&MWtqFNCJ2`$BP#BRIL0wS
zd_d^+lBw$Yl&I&ztOE{xo&Cw7H#KEYy{dY&;`3rf<65g@U$)6=wPt+Ft&vy2D>Qjn
zZ@GLfnKiiF6t7;5TIhwZAC2Gnu6+YlA76$cx9CG-ud@qd2GKzxifI;x-)(C7=%n7w
zVoiaYrV*-9)k`E;j)@{3_#EnQ$7==_gv%Z{Z7#+73%8F72}&m7H7?AG3ux%Y$2M0KWW6Qh*
zodleVD@2N;Lw&M`@tOFs2KOGml#mX{i03i-%a=e6vu04)+T;H%W%(bJw#b&PR#y*Fq2PTz)oB3Vv1oK4s{<|;z%iqj|+#wqqJav24?gt646>W23v8o$S
zO%pUoq#oU2E)u%48=@lA{$*y?FqxOPhIqesbN{Rvedn8rxDdV;vScfM2fkxM2_^Tj
zfXsI)VtBGeZyR4*?#sh>w*tS!&h~W1bWYinux5p4-QCbB-d!tmVo7)Muv6^^e0@iU
zOI@vpgsz8YEXi8cxt}T#2C00PU|*3a;%IlMmv2Bew9$9ZOFD7L|5g^w8jF%cpHW+k
zCu9CNvHyI?Qq=G3411=xfYgV)^ySbTJq?<~1ltGqKHx1w>nj7%>@)nIJa7dsfr!|;
z1cdbLrW&>aZLc$RA-nd)-l8J|??8%Y_)#06e24dVgZP1=Z8=@v_`7-&lq22*D*1|H
z*$@&9i<-05t!a({1T_xmi@GUS%{OyRc~raO*38(M!BgoELl*TJHq3b_SPlR=4N|2_kXamPXtNQCzHQ@wq>N99G)jF
zuj8m9Qy$<@wIVZG(UFL8=v{Au{xaq^;Irgs#NRtR*6U#|8%?cx#tl0d*+(YNp0O46uCpdVmO?Lik*SV@C-S6yrKhu2F%)<$BXk4`qr^TASZ(tIY`xy=Fgb`85#5K=v
z>Qz=2jyKB=4BTc@@a)36pu8}b5S3bK_dZ+~+O}Rf#k-;6LYML&uIR-q9o@}=D9k_w
zWvY&dLT|5{j+LT;H{}oC+U5>zsXuhZuPiOAD2Y}1oHdc$fq6q@*95~L?!JG~xggp}
zk_x1360N~Ut;sl~r}&)vI3JITt1*92(@F5`^-H<-*>2ClmdsX{5!O8X0vaq$)WWyy
zN*mc*e&f-%>(M?|^^Nj-^Nx=ij`lHB6bR_{(WRuWbBGs4%xN3+evMM|5Eg_o%ubH+
z5tXVA6h+rp;*}ieb1r%`YE-AypJowVt5Ia-rtAxzQA8*amxPD>V+Y=afFGX(0?oB
zV@~5Sy4B_TiE0M$n+j{^B)Sy518Eo>cuVdfhG)c(j2MLj!NGgsZ-}ZV>(^p7k(l3n
zxqlCR864Wz7g;5zws?Tj3o5+CnuIXMbkl>_fI)5))6p*a`&yrSI=^qN2lC6EF-Wb)
z(M;c#Vin=|ZAeD&~!qR94?a?&(ZG
zMu5t49F7uka2bpEUMd!;I%JxBI2q^cXtrV3g=~&WR`5p>b90*p_uX^Rfh?QTu1i4Q
z=bg#n>1@ow(qntQ>kD#LX!j;iUOP?b8JIYJ(3{sqVn4O7+G`6-D$d}GEhupkDQ{%r
zK;K0ozD0wS&6N~d<;R+m@s?U!p#x2EtR&9K7Z;M0(y)6cHAdpiZTuE|hEWX?>df+g6ZINlr%kD0(n4P7I5KMe@OBiB
zfLzQTAXe|yS(O}F_53=iwMALF$yIw}al7_#VaF>}
zCX&SC#Sa|aY5mWrNT{#hB$tUR&dcX@EDya#J9(4z$p&ip>e=prcp$~*S%R}GPRsnn
zms>iw`cCvJtd2-`l-hTMX6uW&cwg6-{ZP)UcTXs5y~bv4PZ`iVFiL`1{ki3Pu$hMAVx-5Y-ts*~B$dReV_#Hl3iizwl+qXc&HLH6$J7|^
zl`*sIe9rSc(34CPSQnU27r=oXNGvM=1kY06g
zBqKo|?R2Q*1A;yVP>a>t8skG9t&5Whcta>RUOmU-%>yrt{C+Nx2s7L++0I5ksR6sz
z!1}r)!^tDs$5HRU#O;TGALzMj?`(Kxot`?_eLaE-YL>$^6quOq8t3NKl(HJ+CN`&k
z$j7bY#j!1wEU1rTm~&@OOWdARgU}bQ#S?SHli4Cm-j$MkA^C1LjXmhqs^iPlN#|J8
z#G%wBVHFeV8{`%V53!Peye7#t4`mf)Po8+PUY5fBl{>$f1&5IY$*^ur{;vDDKB__7
zkkE#QF!rS6a(MWXaB$D`%@{R;Z{y4N_b7p{*RAIc1KZx?T1F|%LRf1QFM*jK&I*PB
zNJcRBg<@K_wW%%2AhgBlnr+FxjSA+&=_eTlcMrVC{Fdh1A!fo(>Fdn;kGEOr#+jgr
zx)1SF7}lf>jf{Lw-=+%AelDzh?Mk<%%W_-!z1EwmX@-Xy(&!b5tJ~VMzS*z{VVHOd
zcI)eUIU@D<dhRO3=ywV7(U
zw!?cPbJxo53|QApqzK$>d-}jWV^1c&usr4V0iOz{zP$7OE!4A7!L~O&%j;pz3F;oo
z1sm*s6si1hP84~Yc080(wgp3fx+XK_WuY~>Nb(1~!6c=q5y&qszZ9crD@o(_Y^f_A
zB{mZO*v$Gc_hU^%Q4Y3ZlObACnx7%e>g2d!eCMeGhum5si>^q%V3T+@qy*Nk5v`wN
z8U-$i;45P6uOS7*#%p5H5UIRIB|m%pPJDNw@UGWFizi!*W%Ij=;5TeGsf?i}ciov3
zocuBx9&H*X=FY0|P)D#{e;m@0@zMOpq7`gOqT?PtYlYOq-X|B3!IB8Krlz`Nfu2&1
zNgeu!PU0S1nDlT4b>0;V6v8X*;tR{VZ;1r
zS5%f)8P(0GTcF}hB{%)WxlR7L$(&+p>_e!bM0h(PHF_Lg3dV-p%2q>XCWp(;v6UCE
z*rz3j=|SQ$)-_puZFiDlNAw7Tw&`=Omy*nfK@yU4A5P!oQ$k9Dc5d*Nskbq6hK6+N
zh0i^)YUP>Ah_)T#QzK88>!_upUB4!IFnBm6m^vj!@~oB)+g5w#O~^GC%MI?*?;Xcp
zlb@lU^_D7)FkQL;XRxQ`l0Wt;Xi}Q%~NSE$?pPg-Shs~$mxW!Z7C}Cl@(RJsxU1FMmf|mKBXJTGK
zQCaM5wwY`O#!5<^=Kjxa$cY@A3WMUE_ARa(j|A*OBUf``Nfb*;26p#p!`_b`&CZ`X
z);BV*E^KRv({W_naTrIdRlvwCMa9Pn;HVsvsAzI>`8J*Y;Wn$ziZR`N#=`Yen=IaskzWw1FVpT+H>5>^yY%dsJ2h=;NV?G&BtAXfJgW`Q<@Apo)T|2Kr!
ztpm$Fi|Q7i6-@_2=wS~Y1G8(xNQPogdBp?FE-RS168WUQVwT|zMy}eJrEb{f7mPB_
zn_e45(!v*(7I^2atInAb!L!kgyqQ%Z;(CNNSSEp`T8jMDsiFdbYx|9mmFGbZrzkWV
z;j86r%(G^TuFFmz2W;%-bQNC;*9t$f%;HfZQBEk0SGMSi>}Y(C(J<>acPQ4oGWdAZ
zXYYDfSHts&e2J7_#zlw3s*)B(O(xNkXkP3|JWr?9du&
zh)o%C`8;X5;fJlgT%y-4XT+W$
zL2H-v!yo{K@yXJTuao`bBNmHCTsY$=32kM~;as?Ev+`q(bfbp#-wKc`X{r*%mTpBE
zXn9a4Dh?UO%9)@!pQ$b1TVy`|a(}&XhBNaYpP>KvCVfC%@&Ub83=i(IbU-jNImlt>
z5g-;ce*-O?Ipb9kj_Nw)Ff>XK%2p-qU*Fb(eUH7A+QDyZtUxT~(p)HXH~T+T6BFeP;C8X*ISvHB=5aQ)if*?cPWB
zkhvtgncfG*z4WxbeKt8ntKz-VPmWh*O?evFtZd3CL;N1nYA0Btl7Hi`R(sJKlWIYWqyhDAon{V!4Bq8fCmnQB_%A#=Bx+6ogLa>!|2
z)x|G?i3{9l_6i}YiJ32+4-_cK*DIB&L*5&{vJ1;In5596dg&yDwy}_o7I8h6gJNnz
zzn*JXV!p|V9NS6FsNX2*mVTv;SK1xSv0w)R`DlVzJnHaAJoSEzakv%yW8-cpXH>{f
zHW%)3bT&2gSa+pU%6m_5bn2wM(a*)i~-${@UW8WUwQZo|w_8R3D%*ZHU9Kl}(
zy7E2HKhM+wAxc=m<%eE6_i*ap_F?7c}qf
z>5mijYsBS8xxp!JM96ZV+&H`_xtF>0#7S@E(Ct*xf>8NsbYLCnsdJrPNhi{oTyxIH
zP)S<%_iS0SCMWarX~L~_OX{ihb9xmSPL3?BP7tDzu?bWh9C0&UaBuA3cZahbFjXbL?Nf4M$JH?
zK|zIW|A;Ze=}CTcxHX#?ANix@_JY|EjkcE!G6Kx-l7b@U5k1S#Q9*T;EMMMlo470)
z@R+hBC;$p5;Ve;x*`nFma*Fd`1I``eiXduciKeWTL)njRD0bRJ66)OH(fpK`CZu2S
zZt@yS{Y^@z-7qTH)8`M~DjkN^EA^|8NT4*lvr2k$RMgb2I-UP1I696&>y7xipIfz|
z*hC=F^{6-9YLP1Lx?{S}bDbPlNVHWI^G%Kvy5&xE^dMZwet=wsjjr#
zzx6i6`4S+RgayJK-5Zpg8d7&3L_O3~#*89&EWGVUlOP$y`AYt7Xyq1ecJHS7yoH72
za>uAzePc+`cb;lhvaFl6{7X!GLpmm!gxaBdVv-5Lkj#XPGbQ#M-Vl8nQ(KzDjc=|+KUiK?Q5n8H%yJcBEe5GLV!@93L|LA+`Z+wCjE)^ex
zmS2+HATrA+zn|QVy^qiCtVLSBwE~?geSb=cfx4OSR;oMKbZjCH=|XQ(;?-B?k!zqi
zokOT?RJXbHbE7(6TwP)bF6OO#f`-qbQCXq^#*t)*5`vQgv}y{2a>8niB%#j4BsB{$OqL?mm{ZWSi|#{hr4{|E7HlW&c6^E%9(nCrj>Oq&swqkJd{q4H6ZI>11f*
zyKwJ+1b4&~R&K&n7?XM{EamkT6o{p7qboiA7}v+D8NGd1(2Osld)r*mBeBtGmHXw1
z!&jdACvPjbG`INm*m~BNQkIe_Zp6HL_1b*Cu72X_oC5hIPq`EngW>%_f@SabWJ9wG
z@%Er#al5UqJ3ZazRH}VzonZ_}RysX7S&t(;T;_+LpQ3ntenB=g6w|%@Ld5jEGI3Z>
z|BVpyLSp4Y1YKN}pLH0Mf)?taW;h$WyJDn1frs@#npn_eKV(0#XEYCqKKAy7bp*b<
zj-{kh&Lz-prX}d|>Win!>UFb{ifx!lB~$R`Hb;kUHSyz_k2mtKjp~0&_J1hZl_^IB
z-UA-lR(zv#A#fP7oIgu&CvdUamqvT}#c5HZQ?tc0UkR3nLO5haDz{?GMt-OPF4W-l
z@v?UpZR}>#JnkFMe|VlC{T&EZnvJF|wz}gV#ir?|sXl)TbMW-Qb(t~cI-BA;17ZcOyI0w^rsb@6n9
zT1IgZYfBaJebyN)GHwv>z@BdEjy;n5sDu&|HhI$imNf!ufH6-wFjB!5Cg0S?Mf`E(Jxm
z@S)TcvMBE-ZK$Kgx?9P5J$_*lj?O0a$(#XQr{TqQ>#2LSqZcVgU4_c&$%wo
zLy|WfvF=lp_CBOoO3uf8#^aQDUooJu*?eM~^9aR-GJSxe`atz?h%wfIP-Vu!t~x4l
z2rI=XO8Rie<)JujSl76*x7qlt-n~KN39rCl-{>e661B-rwZzbtfkgKBw-f4+R3#N+
z-ua9!T#3g;iw!{<96jG*Cht_@d2YQcDo8p!i1W#sIL-7>7nGcXE5u`8S1}A5$Vj<+
z7NO)>*b;nqbX(lXXB(@XRN+xkyjXLg|Wp
z+Z?froKctB`F=9x`&!ASd5j%i?Vg|Ez|@@=X3o6HEsudMEun9!C*O~ViAHQwvQpbo
z5KZ%6yF{ij%O?Z=geuNw1T6&#
z($ev@X3Dx4Cp1onIFr|JZnF!a;W)Y}n1qO$eM=O+w#WY|Y&igF&qzqE|Lip}?xLDC
zTNE*qtjcTi=iB*4YDwnW-%!1vjUiu$lPpXGH^WWI+j<+;2n|af^f;rHjH^+01~o<`-e7~Uw6__ZkDK3UGk?bEiPul>0~`ijHGj(F0j`bqY^t$DN!cJ8W$
z4}aAhZnd>GsUg*%SnvFL*ixcKWWvGqy8$csNbwMbwr&4M)?fUhW^7^kYOR|=4y80N
zfw$^5TY%K37{s5WAe2f@_m;;(c}1s$eh00TL7=QE$(um$u4
zKJ;sPCgX!UDHWA??3BzJqiYDkpP!Yyh{qYh7S(#$$ZSx3grr76tw-hYnYX;(W(A&{
z{WczyoA(e$WCO8wvBghvGYZ8&WhJ>8>oO6E*#FhMsLsg$A9uF@W3k}zX9l=m9nOuX
zyLZSwZ67*B7ayKS9}kH9`D`)!t#bYe+>$`bmJ>492>C3RV{UF7
zf^>2bzz&)?8XMs?8Whyz<@o-xmfYKc%OzQGv{H=s~
z1`E<=fATHTX=|bPFOy9N1sf5iE)hX8-HM{&eei`<`+LROwKaR2-ffVaHuLo-GRLwc
z+>V+MJI1j`=LUP?7}INMyfLIh1dUUQnYqtzYe!}m4x=rKT3hP7E~%AaV{s13?H-qv
ziOxD_7V=bd^5l97FnCyoJc-(d+rb?6**U&Tvt}JbV+x6JCW_xj*iUTwA`lVBa*ahh
zUX$ISz3oEtqgqZ=iMj@&^MonYlhzBq-oeH~Vx|_Trz-l~*0uuX!;6E8G>yQLq&>T0
zUB478@^udCCyJW#SO0T?z>SzUU?v8-f4;6h4H}hFY0UwVIb0l*%IO;)q(j)Ho8b0S
z;ujc|IZ19K@C11xfhc&qhC3x`W?@v3X_!$gNm3PU0xzYREh()n#^EW^8c6)
z#aTqHRLR8l=~q}VBi;ef`X0{P#7V?Y>3iMl(uLg{IZ5L>ZQ7uyyYUD=mn}I3@U4b+
zixa7myciQ+QEJk3@cGQ%n4um5;t%F(XSmMCm4|v>Sz6no%x^tp^+6;}-;RZAOjgQ>n5Q)RK~d)w!tz3y{%
z;~tmo?)QomuiZaBCGcD
zlJtGW@qk<@%3AQimQf)~`l_-jgu?2d+*#H~Fu&H5pN>}H)uh>7QKQFVffaUABpT0H
zM+@oxR=#bcc4S93wB5~p$vnn_(
zel>3Ps>D9_l`pVoER?AB-&y2^U2k0e^ri(`rK{nu?tH&jNnD}&@q|sRLe+s+={P~w
z0X?6Xnlod#{I+8;-7$BnZCdA3!C;=lh+WmMQAg{qGRKc1PVpt|zV^VnIvzgZNOdNa
z=f%G-oD*{`x`6`IZ;(%&Bw#B2#R_e;VX>tB8D%3Ovbe4~tIU$8LWUDBL4&adh3+A1S
zCEx;3BDAQ~L$6hQY+C14nqmn7pC@!_ONw4>e``&!qa>%Ffu^ED6ma=LPe`!Ju0m@Z
zd0AS*WexBa6Yw>-EXZ0aZ2ikCdSqiNvnetaVvEPQW$Un}z*%M9kcn1q6v-r>1yam6
zaq@WK77$JNtGGUix4HMNg*T3(x3i<|vne*Fw(|$C{2z=+0v^7dqwz77eyu;c@L&EH
zo6;VI_yL(47A`wl^-K`5aU1>3aC>uB*pW+n3fO+DLKNaBac%p)S;DGu@Wvc6Ho7lL
z8GPSZ@Y?B8@`Tmm(fuxDp%loH2=n%vo;ao=u`2J+Y!n@UQnM%KSipPxB>{AQ%zA#rob`##kqo#p`Yc*CF%CFKhRWce3p=4X=PDjlBrFLr^cElQH~aV+d?4h#BJy^D0^
z{_V!&*5r&dD%fJF$}0?~8GZ^rlWtbg9<&UbqX5{IN5GOh@GV#Jx;EJ{8PvT?MM$-W
z7sUdQFZI(jDN^T3Gma^?_uZMyj_CfVmI>0!(Uji+fx`YgWvNxwR<>1Zm90V{g;iDN
zHYDpDLT}8%Q4SqRhbsi&FD^@|^tuPjZ`|yAM-eA{TRpL>;HKj?FxS2j1@;gHhV-a5sRp>e<)7U`pug+?_u!syZfOwVvs#*5AoE>=xUwwJ
zt6rRFaS*6oLB^Y?+1pPvTA0!xi5Lt;UBa3SG;7yDHbEDgYLTu%GDb)0o@`}F-&47sVO+6ih=@>
ziZ;$x>USR>`qvw1G?nnS^B@oe&uhkF3{vxZ?WX)5BNq
zGv%aS!si#_4o;TVm#)2cd0yrC_$nLoVaL4R>rV62EP#0%SJlkH{o_=MEIQ2}b~52;
zeHiv@U^1O8H;9hci{h4vI~PaRiQ3{eZnEyx=TNRw`i`y~Z|O}V5a`@9z~*gvstXWP
z0WDLTU2lk$5E#&6ogZraSEi=1uwBf}^yn{=_OTZ}eka=}Yn0Ilk|{i8#+jB?Rn(HF
zjHrq)Lg}D-!~6X#Jbv+wIy-l$XEC33M~$K4
zEiV47{v!6;iTm=sljSBgviYN0gjqj(NrKGGVQ*8Xtav>m8p(8G|9Hn=T|R!oD`5A8
zYmn07aQg-QjPkxE-?-hwytOc1vp_Qn(ullGiaakdpz`F-;ag>V6xEjC;o(IYy%)ej
zx)H0JWnB+7{j|HI&V2tMS7ac^kn~x7fGosV{3|@xn|N;{J$j+B__ohJ+&2JKb611L
z4^2-GQOO@FIvF3<#D&6G^wb$1OeM_>?1}8oe8XSvffXDr8fC
z82Vz9+5ceBUi7--9Ut{q460W2ZAQyPT^58z>^P8!vL6jO@bZ3yQ1Ab0gqPy`D$@7T
zD+1N?t3-$m)S;8dHLfafE~M`HEdjT1m+Y7Dpm_u`g_Le|OkG}Y#Bi2;5kljdlliDJ
zO2t~x8&HI?qRq&%F%%|qjLcA4cr45s^`JNM0QJ3pQ>6uM)()IA+BLX;$_fd5prB$+
z#T=^I(l!YN-Ee=q>l@_aed5Y;Zd$;N3`JsC3K
zKx3_ClE^2X5aIcQ$z?}xV&|YO0KN!ua{=BUavUip?59k1E+Rr+baYfbyTrL$t^<-1Z3|q1UXLzDg0oR|o{+Fes=`YgC3+|W4_1#YdFcOzHIFaPdtEDJv>H)
z5iLr~)#ZK&#txqie(;yrAsXu39I&tv)%-r=8#>y@HU@;oBpCk?X!0)XWHd
zL?<1BB1c@py+4gn2w%n-?_?8VcwMC
zxuGHdy~{);z1_~L)(RAOr$U}TmGiz$4lNaQth+??cMt}5Zdo|U2`~aYEr}w!c)^V-
zq%s+=WwuF0ow7EuW`7P%HK(w0^nJA^3>Tm;zXyev7K$Voge$4K5htuoxd)VpcxY4g
zRV$E$#fdM#LR+m|mmps^Eqs2|*;X3mY^fa`Ygb*fI3EV#n8hADNa|hYgw$8TCE~Wa
zQkr~Wd2n@ahmOF>F9-G1AsORJnJOdTX{C_s);!g?U5=H|%6g9*kEVRjpJVO>WYc+J
zGcI=^4Gv9U9M@d#pP(JZgtpfsRCcfbV3erbnDdycYQ{KaEKq}kC{pQz7h{8n4+0SV
zsvzDZ4hnii%n_WmOXc<+=u7MJzt%FtR7oQ09nT4e9Z_cUg(L
zr0wBO@|@mkIirj_xP*gtKewmb~}=1iI(^@!gOdu`@`!1>Ct
zb88yy%9DcfEUq41so%U7oS#ZMPcWRGsO$hW7$zAg8nhrY_w8TfZ}6n%j@E^>z!vW
zge2WW
zM2|d7BdlaHPs`&UnWs9jf(z1opQJt#G0IdGU!6k2)szzD^b?aMGX!1>!-3v1A3y_w
z`Y)cnfLeei90T5t5vnNmx8ozF{Ig231LR|~Qvs>2-x)w(2Ko2_40WFqpx!xU`mYXe^2Zr`{HM$dYm%%+Y#+B*Y
z-=(-;bJLn9Qd;P!a>MrblKs88Aoee$de#I}<*!j!9fgy8id8OZ{O9vNDck#FPRZzC%5Kdwe`7hPvHh<<
zXB=Qg4i3h}{rK`WdZDd{dg3+=Dnutmc)1ZCoK$+Xnx)O5)466{g)N}lX@Q6XRNKLv
zr~4k&EzhLQmB_H@A{;jOzUs}KChLkb!HLUWKNb49c*6OVl04<#I!eJE+mhE?Ok{pUyyR&~J@h>8`!fjpe1da(Ti9usVUkJl{$%nC{vchO%_z)|5#68o%Q?T344==rRm-kybM+4}3&a)E^rZvRIK7
z1f~d5IgkvuXit+Z1KP9DbhF!knZuYgakEHDGDhEp8ScB19Zl;cv>VRfY_UTh)_1H}
znsq=}gFEH_04+{v#xmj5$$vV4w!-ppKDh1%Isx5V*@4)r>xXmWdkt5IoWue8nYun>
z1kD6RUn%7l`JPUS+4~O1)j#^qOW*&3J3eoDt(}+a+4-XGJmDh6OFe|`je5RP2IXFQ3O`7f#?udN7O59hPE2*J38UKl+kCaA}_x2vD^cg%2q3GxP|w|)i8EjTk@T*QXx->hR||xXU7-CXL`~dWD)*&5*Se*WiNlp
zR+f&G`{1I`7`Rq5KDJG9%!5S@S_rR`j4w=CK3c^ub!H%wEc&d^@}}rN|3;Js{;aog
z?*B=H8sv40_!@KWSGSII`XegoR|wA%IuHA3x(cxP<+zLv;2<&AUjiFl
z-?TCAgo&p6v%DPV{zH4}pMfMji5N^tM)qqi4r}6K@VM?5&&QCU3*(?AHh;^USm4`e
zY;DTEa2Z(yF4B`rtEP@CDznz_>Bwc|S=zQ&9v|A!SfQR0Sn?kBLE`54=%Vd5{vOxr
zgv@3IE#uZQsUg!Z%-0kguqvhPEKQpph;9j%P^$|$pE42}#|{#PS*R6IP^98ctMV^@-mLZUK4dW(<|;mqaucn!P#CZQ80Pu5-6Z&Lm?j8ukIguL(4s&;586Pd^;oM8m|
zM4PFJO&M!binuRxTPkDJ)a?^`pfhnndp1Gm{#n{Z=eE_lMp3&fI!hx}7gggo1
zRevNE$Bn9k0uXpL|oqKos>-eoU!xBYzCgvYcYOO*9%RzM*FQjN#
z_vfH?9%?KwM=PN~!@^ht%4=A(3_wE#o0>Hyz#t^lG$3y@v)p4WXz}TeMcT1Vhni~Q
zfKh4zPwe$Sn3dyiZC49!UF9z7_q7g^w4c=p<@JCGR`L4ra_;q4sSyANJJcCPrTQY#
z+8VhK|6D!m%iA#|HKF!*BaQ`|E=6zj?Q~!L=;dFHbCZ|eA;izjWpPJYvB3-aW!Gb~
zAl^`iK~+>78hJ(Sl)inYVih$;n@Z`Vyx=8@!WtuS{Pz2_9l#JbANA+VkEPSoE$@nX
z$T?nb4q#Llcd=4jS2GeJ_?iY~e!5WJ$|3V+zEyK~Ohb*@nwu+Sk%dmJ*8J$Ti)t_o
zpsgLwIu=;o;K}abgV2&dYD*M(r24K@g2dl;y{Ja4(=vo0R3Xax0Uy#!QHAr=4gTHd
z^m?^m6-Wz7lgp|s>e5=oD#iX1l~R;cXE>Vm9_D|lbJJ~n%92L9|{
z?@>Mltlg?N`-Xs>LCk3<6UnMTAR3p~vwW9?_z$G=5Q5ZEywZ7oU_5z?$d&gfcf28M!Fwvl#qdun@)wdJ3jIvl0=Ki3JHR>Xq#9S3NAk
z-dn2oaZsT}wFFUqn)qvFd^t;`NBnjP??Y3q7dGDVTdP#zedvpTp|R_nS&7cSgEYSL
zIIZsoDLSHBNz}()xqQt0-(jD>_|k#9(n0Otbi0tMwPG)y7X22U68rYO<4ZR7(mkd;
zS0h$?_5M6;63Y9w!n8@^DCB%FOn90C=DLM=6t`@nNfB*CIyUCZXy2KCE`KG8&&7Bn
z<7s!iB0E6q9`uCwbRrt0sQ3?t;YGavH2-x!{k5ah$mRVkLU?F)Y=jT)u%>s`y}0t0
zYZpW8e(|GE+Xo!6zu5{*kPU*gW-{8)M5+7-gHts)Gfp2S6c$!g8j-1MgTJ4S#4?I2
zsqS)}_gTR|l$1b!U6E|ms%_AS&_OUVuLIUpWUW=;zxn_1a1~k9?yFp{X6=W6_Do!(
zVa>3o{*J-bl=uz?qf;5F4ZKeTM)YV{K=wud=4HQu7ys{qRwo59HY~+Dwn*f2!ax6)
zT1+$mpZiv?`|tmS+oUWWk!vC7tJeUz&UAUMA2+;=`?WbcKdU*~`7ZqOx)M?*tH`jz
zBhOEV9*-+7KPc_k`8#@1{f?^&6G=m)iWWx&AV0d!bTkPpdwXmuTW<5buUc2T5+bvw
zcw5Ob+VUy_C0g~_RV8S?kh-l@5v(A_X?sQ1Mm5}jUH6>qN`G%@J&Iw1QNyG7IfBa%
ze~j)TUH=DBy_~_E#q2xSh0>{c1q%M_N`j=3o_r{Zc{
zhN*;o?tnWDv`qB%2UmJ_@;&8>@rrCK4AYc!Z&Sqk&|v%GrRQX1
zWZ*ARNaK)QB-|D6C4Qy)))nS=E79CZ4MoE0s*oyypT(8sHDOP?l|L(D>ucJhZ7tPF
zW_jy);n}~!gH5cAv6VjqI5{-c2erKe{KU7V(K8M=O%IpzrXO-3C}ZeaL`c0GNIO~iyp6hC+nZjW87D=g^q6my1CsE%u2iD$-
z%x|pHj#B|#;i-%m~(`%BhPY(;t&)GZF`!S
z>e4=k#S3F8ZI+$ACvROS=T3oS8#GcXfr?$%7^-1(2_w`=!hcl~=SwL$v39M9N~La-
z#L2FwAsc_qjueXohugx!{F#9*e>P*Aa7urUxFO^c6In~E9ntuX{yv{G(7nLqflMw<
zXlh%JOq2tzK3BTihZZ!z8y{2L3j4Xd+j##66W5xmJtov@d9v2A;)1)F=-;hVBd2yy
zbfp|$J7g6+cu;A@QqtYfVqfcP^htl?VIo}qUg^d9Rh>c2w=bHli<9tmb6t@6JE&5q}jJPy!vOUK7a^UOS3%
z##urYNL^T8(3>6pRsS3{jV(}3(@LP37KLFoMgmVsAgk28cU@I%O^M1&yi*?UCrm;i
z#cn#+i-~)ua2>Q!_O^TQ3z0$!d}vY=TR$i7Uc8uu^Iw&4=a&ec$+c;}HBbEJ&Fw$R
zSg;}aQAF)YJOtM3c+@jNlF=6!M}$`~o=}3eawGSlReQ^$0pRun>sKEZww3*YF?Ge*
z(Y;eUL*679H48@1tBVeY{&
z5a*$$R&4PU#!C0zzw~+y$J6h!MLSm98M17+`}U)sbEYPa3l-ZO$7doOJp7f@VHU)L
zEiJU2Sc_rWf%qab?FT|6SZA!05=eg1+fvLL2d$s+tLNeeDE`K(hEZN9`1~7AGlCvI
ziSQRDyGEj6jqBG}$UUt>y~yqHMzM5wJ@>r&EEL7OoLy3vd#|E234Bgxo5O&hF!Fs0
zZS3Pfo4|H%t>83P0^6U0>93smg5Z-19^X`GgtYY>cz*d~ffeEGGEO!6-MY}NSZbS8
zLe{+0PGWAnJ}?VoP+OfXdgM-%HEwEcI5{iTGd@@Jd*<)m~E<
zXrZnN9XrYI8Z|8`^}ZZc6iAB~Z7X#_;Aj2BsABrO9t_QP=sf#s4cw);)TDUrGx;un
z59;1ca=2PO7mWSd)S~NWV;Zlb$j~ID79nMFl%T6#CcOI}%y?%^LxWy=jYq3cmt{wm
z?z*9_z1vmE{7_Acvh?;Mi;$vkQd^=JV)hG{S3H$kFu2KDtnEMtB_
ztB?2I`jdn)N#9!Nw4E7=bGr~m#7Q4Mp)ri^w%hNai>>fS(w@%C83$A{^kxobAiE`C
zlG#ZWDN9=0=7iQ7frTV}aYtoh9|jiOl3>+I^*Apxfw*hQN0zx~n2_wh!UjqPHH0AT
zIjz-h2Y($f>ko>PM9EM6mKU@+0wqr%_N~|%a=!yffpI!qfI#l{?p${sK@3`VROa5n
zAx`9@YAo*q^SB9BL5zE{Q?m);($YJRqm-$TR0U~?{r+HC5#wUFKu>7h@=I#T=D7ni
z&r_9~ATqs3`FC~>t)Fz_>Id_z{pZl9?%yI7&yW(2^F3&7dQ0U^>r-t#&!;4V@|GsS
zxZ`mUN#1b^o#e68%^WhL^LSD;@wdjPR&qO#5X<4-`wx#8fQ&l
zWYtA`m*c|tnSED#Az3<$j*JFa?o3e>s+lZI0SUOi|G4(KcetRwz-f=&H!;^4ayT%k
z;LR%Woz$33)ZzgUCBN=P(7SC5VuKw|N((3VZm@SbGf@^(cPoeYPD{!wLUJvyrj;dt
z$mnkWI8W5}{(bJqzyUMg?>5e`-%MlWiFgj-pPq3%YwQVX+Bxgpr*J9Ebi?ts7pkker-><{Sz0Yw4;Bn$FSRwK7PxB|#;U1~U^v
zV4);l3SgWa2CrvM`XU_ejC4=7>nM*yQe!WU2f39?p
zXWMj$`!(A>g5?h*z|>UehXqwE;_i1Ztb>TcVQri9hbH~4v$})N8xzs29X?)WcK$$k&xI*F3qM6h
z4AH=*4G+F&?hTia_D1z_C`Sl-M+Wt|~eh?^njO_bos7ZK+UgCDgYr8Id2&m}N2;kJNsB
z?IC<0I&)j|?ulvL8QH6JeOV&O1(I^RspF{1#<`ctMf113RcVfD9mf+A%@fD?vpPGw
zrJa&B>X2w)G|Y=qFL<`vdlFA9m#rD#w?TJC7VzFA7k|{_iyunDins}zLb{sy<7?h2
zY)>>s=A#c?{s5wF7I$moTgBzPDYHHcgu+BKdo|og6Cdwo$nKIX{SMxy%VNbyHEp;3`zIvaW!mot8E^0$1`Hqc!qs<4W7w|TsT~Sp(mSz
z__S$8oWyb{4>ErfFv2x#O>K-sVup54^-GdLEYmTY+;6d|t9(v+zD^+PuXwbQob#if
zKz^^HPM5n4ErezO=}*n@KPgQ-s8<7Kwz?fCyEZ7ak2un1)%vh~T^N)Ywj9SRK~ElJ
zl1GYL77!Z2wqejXrqvr9broa40*xvSYjkVjry9E%iN(yxzu;5zNW`vYg6AtE)fj#h
zf&By;p_V%v?F@z3p9`s&^0ZvR$LrNCjzt5P;*c8rKLiIoQqR%|q4ZAupGu7)ly@o$
zxZx7iJ?UST$M99S%XUUCWxbvIp?5m^Lpcn|)Lx!nlqgd~s#Fr=BjOhGvgz7iBkTh9
z9{^?^Z~7r2Y0)HpkA)JF-@1O#B+0=`SB38z$D11SS%^w|h|O$yb?&x9HsgSbG@^gp
z=O?fX=%c8)O6@Lk!7Mkmkqk!Hlap&dOtLJmO05j6)wrXz4S!={RCfQMB|(XPP$hl4
zhve$DQEhM<+kETlrPor-C@iS2Ns^ON0Iho;Gjd|q1XCCFiR&}%2QMI3p^E3$3HSOs
zr8jijApUGtc%p9$d$jde^bJW+QATfk9#7%@a++ay&ZFnSy4^sn%8Xs5L{wB%)G6tu
zRdoVc<=ZYyXVi-hZ_-hS(_iFYOe{`AxDHI7QxU_ftgue~i!Uiq(%x|!3{|LRsRUkD
zRVTDK4X3{d%RnOLnPt+MCnyte%dN_k>wnefL*}6(+T%>)s7!c2zA?YUf8la@T&QXf
z0h;I0mwQCZyeG}K24j#oKuNBgEp(S($xq%Q5zBb0AI~gdKayQBlY{vRg~V_1-Xi0X
z{}~Q?f~Y~pbcOGPIERb{q9)3y&i(St3KEE8O9RwdWk{GOuhR@LuKwcKC|JZSh>8Ef
ze1yeOz9ytg?D?6iOwwB57S?0!2N;IllLeo7IMVlkYlZb&4}H2vD?$``Y$L=m2seB!jlQqq2%{&gqh^Nr94Rf-KE
zI+Ear%e<0dIjyQ0P=_BtSf!7NoilV+MB7xfaxFPF0#z+A9*QL(%D;Z?q)*SNt9jt7
zGl^}Xu;D1b%-UAZBo|E5PxHLGPJ#hU9#tPdJ(+{x1d&@;^?cge_
zdizP3CFf>w%^AMXnJ9sP>gFSTySL`6w`gZtiadApG;=5FGR&r5+pg+LG}jGFlcg1p
zs65Q(6nrpHuL?LCBoWop!gnn?D`IF0_*uU!H8C%GewYFNxb;RLDFYqqx8ND
zMn4Ssy+kIyh*2+BrV57A$Nt%`xN2h3Se~Co7qFR1Xs*tMcjTQ3n(Z4{TUsoM(MyFW
z9XO9qva|&KhOo%IGi)tNXNVX(?+uuLJr|{dl3fmh9n+Fnzyhl_YD~{sZG9(LW5a;i
zoRWxAaRzs4k2vidI+1L%NpK~Jbb>=}X0dI?=HO;Mf-ci3k;!PDT$Dj(FYvur*$j@Q
zqfIY7Rk1EkHxiA){CSW2hAj1zNZoN$D=^<8-!awm%7f~X0G2*_3ZJV`!1tsRNq_)T
z0&m*rzlHzFEU?q81jp1Kx#2nc%SvFvM+Q^Q_1{5tJc6Fa1r0X^uV$r2|3QtM0Nt|E
z|6m}#UEATeFo7u_X=_#WpZt{-e;@xp=7PBl4c<9P$kvUiuHrBG2T~je6j$HxunnsU
zi$Z@E)A)4osGd;ZYWe1EfPaC(vp)_~Q2%sLpgQkLKYF<_985_ci8xB9r*>#Qzi+tP
zCNX3dBVd&n8+|cA8i0|dLBKPG#TW1`e9&?^{FaepY2@f&0cjs~(Lu?b)TXMaO5=$$
z>)&z4oqA%<3#ctsB|!<9_^bMrhjO!H*m`wOO8U8SttYXek31@48$%4BoURrK?)7wZ
z;y*bwYuDrX+bpF)oIPTgB#0@*XR1cH4yR=aNW3)D4f1+Ut`AJ#GJy8%NMC0YuduDG
ztScl#brsT#RaKUc#M#GVCw3e7WxkRl@T&rt#&7Mu;T%5@gGFx8_nbYJ#<_TQq$8-~
zWa_K&5gJeRpV6D{kIpNhy^PTAQaF8kNa}4mswXmA-I44Mu}{594NVg3;_3wIMXk(>
z72eSI5`D3{D>R>lB3$*lTuHghg`9R1G;^IBKW|4`@}0xc&d&boL=7W)
zzEfykW>bL#urQ-l^fmkm_8P}i@@>0(eNot3To!wA*E39YejcQc#)V27Pu6R|u3>5x
zlRz>?84H8V=7bzx&$uS;`$eUDV&RKE(ev}IT}i=@;Cewk6JYq7&)VspIpTBh|$kzMsM5yFbUs*zN@;Cg~r5c9=HZP!fH
z)Ap{7L?M?6EzfQfgBi_&-SKA^H1YDX%t;*Hw2299H1UHOZ?e4iStVJ?n)C^kH=_AU
zS!yYR0;*cJ>Bv%0xke(}Ka)Zrcr}z2eCVDUUPa>HW9*2-GQ?MII9WP)wK0Ls7
zaq$J2@SkhP7^s5@q~nl&!cq^1ETMIK6eAlScF9K6K8JuNPEShjpLvV;zY{6io2$Mw
z148V%FUk+ut8#}7zvme9_L64hM5{6CyC6``b15J=
z<~EsAkX@#jtVw1;gRmB$oe-{9O*o-J+vMew-{5@<(0om}&}Us4fsVKuDuyNk6F9&e
zSJBb`j(=1#yJKo<`Y%d;o1Y|-@gr+ta{8NZLS}rxlC0X%(iVT?q@PJjXpA`hgTT8{
zWtu~S&mt^7+2|3B`S|mhM*sDF?ULN;<`@im;DMYecqm&OFdjD%QpyU5CyuqG7EkmS
zXYu6K$@T7H%1*e_^bH05Lg*9O?z!TH=DQL1xz}7#(kH@fxQ%xizv{@
zxmEmVd7I$jfVe7c)ghg3Ph&AU!v&JK)Vn0?%KiE~9{D4Ge|q@%J|6dCqZxeaaqH$B
z1qLmaeFkHY2~U{4OoGcIPB=~vFgT@9si^c3EKJVb_j}zv9j@1gjW@t}9Zl2*#>K_^1wvO#6F7lhBk4uy5v3Vl-sZ1&^pjz=Sgh;ZOSj$ogbKv(^dI
zK5wRc(xHmAXLFQC83#=vuDFJOquyfn=lrfvhN1-A?7}$
z^3FDGuGhY@2Jhxt=stV?iPQWg`{
zYq{-sgN0_gspzg)3pBvTLhr(R!Uw70zvNdRqUd8{2H|N#8K>=&x#WtuFiI9)JCmL~
z)4%#P_N=jaj1;8?YtzBEM6o8Xj}zF?s);RR$;>J7x%ppKE_FfRf+5*^q&oShkDMHf
zPfn@sm>?n2g+W!-;8D#<7A2m_0#o|(hIpp}b~~2nK$kOoHA7c&O6b=4iA+mGM~5@+
z?*P07{F9&70r<*(uA~Ra>7*2ku!}!W;c$SJ;@58ArUoOPw
zb$!{@9QpI{L@aJ)=0cW>s;XEjI~&#dH5O7_n6c;QFHlf^5?&F9P_o4(NomtvCB?aD
z5V{x%K)Z)Ym*%@%QqxwaR57hulLsxSxqM|6`*8XeYJu{F6zn(u+}}G$=DQqTo9#N+
z6&>A43j*Pr!flY5IHE${3k)bQhN}MJPD{SH`+2TwxYepRe_QB^F0@d6W#UHFCK?V3
z_GY|JT$oI-ij8R!kTP&6*-9|u!qRK2xcBcg`ZxaNBgwh?Pl-=nYX78GQlnn=OGW>y
zEUoJek==`^Nan$@;aViAgnGH-^5OzFr^c?$jXUO&sn9jjxUxFuhf7c$k@l_5GJK_I
z9ne8G&t10uPskx;y+?FrKZ~3?39d5>8+jPvOR#R9F_z({
zZY4zl#X}D(JLA)1=hkd>-sC(*Gjeq>jbguq>K+f1G7yz%CliDo6$XOceP2tqJvcNm
zXuHRw4^tav%hWgZ~@^L0>Kyq0HoWIDgH
zw61=vUrS+L#q_F!&n}I2bPgH6rT`5n&!XUt)x=vWhXlR7C))D%1$9N!G;O6JEq0}y
z@WjF%`f0yv->HYYEo`gTgx;IwQMY!kv$381F7`?L{OpWFjomLBN2pzF<55-wfS~}Z
zJ9k9aC|qk;u($Z86|}_99l@vW^VF;VXmPD&hSiH9h)Y;rZSiZk(i`RuFUT6oNcz-V
zN!I$agIri#Syh?cHIRR>eVv|9($k@f-;zWBvl2hF-VC7vP8`54z$MImqvd(KMD7pu
z??rvg;WgRb8?d-qIo|eR2v{po#&aO!PeYIe%1bTjr8=ITHT?%;*}Sfc-RG6a6UYh(
z{Htu3NL-z)-aYaxyRb~!s?G8z>5EH@g3LdJ@qVpLxOes
zt{8AXVnC7~s|WomT<6qV1iv{tp#PhgY^<_nU?=>^L6~D<;jcZWuGw-sJHMY!DP-w=
zb-vgV-kq2h1&nA>J$YybuU@
z<0gmC;wURB!IUtK`_2u+5npxzdb&vCpYm1g%HDg9s-1;~+mOc)E&qvkGxs_O<6wbx
zqoebfTcB}sJb9<^Q$9(Dru~s}srq>I_X&p5
zV3n(hoowPsFq5~s(Z3~b*V-~&IpRz5bJ1^-6n}9|i7G_G#abn<(3!x^X$NmMJ42(5
zdjIw{Fln7Qee{+hHquYhr9(Y4;;tH9keLsKSWQXNfZJ{FC~p~9YJICK9E@kBz0I-k
z#UOZ-kYr(I*BMXaig1m&R7%RRrDDJWA@O^)5?dAfzIKd9&t5LbQf9mJo8qs=7V#Kx
zArLkg5k53Q1hGc?2ol)E+HYUq=@K|Ac3$hu-E;flNXe7>=JBSM{EYVWQVL^-k`B0G
z`k6l>k_qDFSC?(2jy4>OO=hgE+P(@YXHDC^%ZOcT
zn?C?t=uSObb=Do1zo1`Hop|jU$Px(Qmv&`f#Kzik>7(TFzuY}E?kmRRfuY4~x$*wP
zkQW<2V&AUgZl;(t)#s!pY5a_0EBbyZqE~JVdS4ru$nmY82FJbsI9%@V=M7HVI>9~%
zS9io?S+eZz+)wu5JlxhCD*&H?B;C#mKW7bPTy=8PPJ84Ba@V@I*6XPw#}*@b>W1&n
zd$CP*#ihU-mC16IPem!yIu;LB_b*v*$NO*7c^y7XUwD!v!*mS|B~hEbWN5Oykd4r`
zgGQ*VehsaS!eAnwbc5-KFOoxapZyOcb7dvN>oHK@36N6Bw^fALH5$@WZ-;D;D)@QNwliqK{sU0N
zP0E+>&`9mjRZjw=*
z=j*>SoRXGd6)`v=d!1+Q|fFiHUsEoGVA=$s8Cf{MStF}XM
zXW^3VLhOe3n7wLdaR`@A(R}{qo7rL7dF$pfEqqSuT>*mJp9D9=i`#R&%KVY7>xS~K
zx?tX}%V`u_u;C9Q*t@>6eY&sQ?aT4?9nJNd9+zh?dPm#OWt=J1kobK1+(!SiDPic}
zXUR8Vb?k@@>)J}36-Y6#$VMZMEodu17>j=jrthSjm$
z+uNh$*?w9_qWGZp2?a>zdeUh1sICVobm9!?Rsibi%W>?2H5vH`GS%CJBN!<`bpu1U
z9@3;)w)-r&p)1PD$0~M&ZPlEhW_X=gJ|VmG?}>le=(zK@n?YT#i$Pq=sNEg*@xoVJ
z$U`4yNfD7P(}%om312^NIqEco2zkKn`7imd)zULhs-fkPMMUDcm9^d(D9OIiTCa)Q
zRH$+!y>k7cnGu7JfR=G%42g!~ZS|$@{UyOuAv41rZToQ;(V{mOZdHdNu0|`RlpC1A
zHfkLjlC9R`;jnl1fQ>tf1j}64&I8pzp&$u3gd~FZzV>0hs$1c2huz+4}mVR4J{=;Eo0tiI7piU78ID*V`#`aaJKKxkOdb2o1IzxC!n<
zx#loi`FFg+gyU2{9$j%upG1~(ClN#pnuxrU!flq
zO!+cZh||s)aZeCl@>EQWhJr4S40J;oiqt#6RuV^iKspv9vUZQtpJ}H+V9{p@8IMEv
zUFURFWCCX_MkJ@PLS*|vdCQS$Z4IrB@>B>=EJ!@N4KihHcyUW*e(_pW0{fbj85y#F
zv+{Fx;!2YCL_+3wqp}mj!u#@C_j1Hjbp#&(hueREh8c;0lrLXTBAnqNXye~ItDgL`
z{hYVU!gqwp>Ig!_{sUy!EZwN^>s8_PwhTa|@v^)bc9s7T7$+10s0Q`1XWpCKe+0*-
z$zv&O_+l5dU>rsZIMhG4)}j<<4lU#~YXY;hGAx=Pzaxc|8=eQla#fhyqh
zeA-7wR@gifiKBFfkC}GT4M`tp7Zp?ANbEwmK0M?lmt&aDI$5sL(8d7Vw0yA(-7*RB
zK`ZDZB*L7-Vp*>M>e2|y-3!!~^?lv{0BZ9CRs-E#9M%M(WDwuh5G--A*h=3Bv=91YiSM*>{c(z*!%
zN@pz>%4(_*9`F2m2k$vhCZo)KOr!uCgorD!DESMt_9Kt^FNzo{1?caq)WcEq?aG3g
zF~8?D`8zRKCar0RWUOCG&S^6Ep`Y?UfcsJ3Eu*GS$F6brgalKEVOm8;jvEb&ZPf3Q
zP!o23$^VxBFOgr1Y{PG`YzhD4jml
z?@i9hzg*;o{=q8VO`C3(!Ww|-$U^H&5wQ8<@=(}2fd2aR^P^eE|037_<4QGr>rU5J
zSCv-*8Rc{q7KbR8y{6fblDxRli<=K20E!|nAA^NM4_OVRXA~gNcyrdr18nD%*I=8b
zi7Ztsj9yw9`cAQi0b%5z#L6Dr>y20DHoYe5IVY|5Id$LW?Z;(Q^ZNrw`Vq@b>^Z?Z
z6PdvpO`WNm(g{9C%%HLSaUN&mibDYkm?($WG)q|#J+yd%H!Q-Wur*>c#kz|*wadf(
zcsEd>v$ALLubcAFrH0LTR7u99+uCyQU4^CtL^iqciL?LjIBhS~8)ae5PrNn#n?lsH
z+I5?~pcnSe#L}EV{n)@*O|3&|-qMM=+LsKKqg=UVUi-61P<4{w5Ccki%)UirR
z*<6(Fuz&vBAii=+I-_y0?E91ZIYX|nqY=rM>YC&r=W3N2JGNm(BH7+JjuxSgoQkGz
z$9-j?-+`YKcKh^}1lFu}oalOY4#|#+-=zzYmD7nJGwAk6F%*WI!7tGZr?=O!u2U-q
zfmt&;(`ggBi$C0!?q)yP#b*qwx9v-Ec!rWvu$^b5TUi7pKA4%sf5SnsL0Wy+8@%}N
zi_!|%S$MJS@$o0}*wiJ(7dg=T5<&z`b)~A2vGPK~gT;pRP1jNJj{&|GWs|G#gAYh0
zRH#7dgbI2!hkTa|E-LssbhV-%6q|?-Hn4W=uSmZ%TM+R`)6e_|$e%9Tb-a35(>lKP
z+W~)UY?#0xPK-LBgQdvHpoy(%{3Jb14>{&;c6M@BL6%5t_*iIQ^)dMP%}x9PvY+e~
z7^JI0UM8M<0N|=halRDQ(QnS}Ai;?G!y|{2OF*;wbMfDv$Ij2GY{&N7;QjWN8JwkR
z+0=|GkYWovCmO>kJs)aiUGksCEt1Bo>_;CvPI+UlxZ27|_>UTkZFYSbf{fI8t5)2c
zqq0%GxCFh=xRE8&mhS?@HXjr(oy!6Y8>qC<+4vGQ&Lluegs2gI*7wA}B|A3<_%4AR
z&c^bq6cRkDi!u%bK4b@K)SGm*NH%}UCY*3+S2>&)wv9KSP9MK*c7a#b+UX3S<~T_1
zwK^+P!RM@6wl!Ew{BG~$F*bvsCCs8J-VhVdCWK>_*4H_p{a|#t=*^wsju-=kd(AJ)$
zZJ96_8%`bZxcp?pSBClP^suWv?Td9+VqFoA>(vwH;Y;Tojn~RLbeB&UQ&mVT(~Ejd
zg_B7+ixjUwUkmbUGHF6cnJvE09mzf+gKdOAhDNv_D6q{~e}@RB_
zm@KZmmD1_1dzt)un&Pr^bA6+)OiW9OB?)dHA?AXL2Txz$BV?xmGouvytrcNIZ!&@#Eq8v+WlS*hP{2fQ$pmBhc*PeijA;-p%$;;A=
zYl$yqMvwT1zSK1SzSWyve{vIb(}vX;5(&>hwREtOJ`Wx^fmWZpHR{sjZ4$CUo4|+Lz6JS@#oKO>>83>X5jif$VRV{+8mbtsR=k
zI(!88H4WdF6P&M-bMtfQg28&bektHh=7D5+Nd4V~s{6zTkj?u+Vz}s6f-E+iOrY#_
z##GnJ5*a6kgtikR+U=PBG!OvmR;w*24${zI92R^CQy7*=+fMxR
z1L5#Vq?^>gm3v*(zcky%nZp}Lc;$|edmnZLwVse)np2`=vUo$0D{Usa52srsAkI_e
zMT(DNw|3%Ah<<9Tc0Z}npOuuz0{nJ}wLtSzo^7gV6WVkR!bTtbCr0~wx1Kx(w;tX*
zx0BcK$HeO}3H)f0qa$m`93r4e6e)z5j^8|1yR8>>Yzk5QgX8K>W{%r6-{Wa6jq|G(
zxrUY2Mk}^-g4{>(l1tf#JglrPh64}P^&US4t$G}Rr>)z!5{s2w9Jx-m-od;T3#y~t
z1KQ4UC$*J@CdjDlw}oZgo4Z@O`gM~MWEWX@KI>NJSp#DUOE{&50r8$>M=gYueuiP9
zSv_292K7T~L}U?OtG*6DH~#}z{?GzXoVukgT82S{^L#5){mOOihgu8<1I9TogLih#
zE^lv>4ot^T<0uw6TTd%wm~sv=lUWufp)q0NDw@9u#|MbLC%^ZefqnRCWLP@zzg_%P
z@(XWK<@=&6tDbj;aWvo6CMd68f2-@Kim0zA)2W8Oy0Fa8NA4rsaaxO~+Ad0qIHcEf
zbhdAbeo6ZNuh|y<1#_Q5%Wsrz!kx`#qqsb}75FU2trA5k6gW;5t*s%oryLu|@@&^-5{=a;Aa^pBh^6fVqAkaZRvM2@W`PXbbW2JrbG&BE2}az_17U`UMh
zWtS^hI&9}pD=}o%8MgcS2CVIR3ttxj_{p~`kkA6*}|j+Zrj%D+!|e!59LpX
zZLrt!seRg3F&}}#4d5$LWX@J?bB#XIV(DypZkMsu0G>Jt~C(&&y(iUh;fV}efeG9WTBY4}>K~7VBxotfk8+`?^MUtmRoP&m%
zPMQ$KF$aN(YxkWafst(
zb!X`ee3t3Ce)qX$fHO-8%AV2SNC=E+NFeX<@LY4$QlSl(dqcuJVjdJiCh@LrW;q{4
z)b-9LSOh{A1V|!HOJ6LaMPB!8FPMLTt6mA{%OCq&9)TNG8%V{_#=CUR9gVoWc1a*
zE6v2taVg{I^#eyf@*rf!iCpT%d=Zg8NI%X6c2UeD|2R#U)#o0{Sn(OXq)
z9aka;FjnOr&cEmG0#vIpE!gaW3Oq$@Bz0{WjP3T5aux6CDG%YMi+7ftF^Qu>7a-vM(Ml;o5Z%aq$q
z-9YjULQ+H}n7c5P)Rj*iOJ@EMLfuKYbnH4{qfDn>xzJ
zEeo9yqI~qu**1@K
zoIzPaDb^=o@Qc?fLn-jLPlvs6nR!@yQU0&3{ccRj$|jL1pJG^nDNA(2tIKb@!?^P%Gjqj6G&
z%1$t0h1k$!^`f#4w~+8TNBdlF49m4K=PFk~nAcrk|FnKLmY%}=R6PlNOgXDe7HYVP
zC~lBq6Zn`i;PW=Twzk=yP{L|kS#|!}mum#VxeETCm6gfv$`v<)T&(&{@m8~6y=vO%
zu7zGK76Fmz$;v5u?E9jp?}71j?0*0QMn(JxC4EhVw&wECF9CBO*jEYqp0}BIJDz77
z9sO)Kh`c|E4Wihu(vJA&2~F;opFuMIsOcEajeorn{Ki!{N#|LhQ4meT#)T=Kuwb|^56EVK+U7l
zhOIvr$6Rz7slYDxd%VM{DQWR3X>!s9D@?CC`~KR9>vw(w`HZ{5`MJ(k?J^)227_63
zJOP$OAqdIG2FV1N1cr);*BD^`fK5qeX1|&=B)t}BP>J5-C-Y{Y2B5h?00}j
zc^ZGbzG(S381?`9ZY!vMwp;eanc_cyqb*S*X}dtC8Yidx!tkgeMe6Gog!^58JIRq<
zmr7fC-xX?;f6k_|>fRTox}A{Lx}KoQWB5CPSsT<6XXW27
zN(Wl^w3RUyi)L!C4MB@A7*8GCjmQEC=u8tvEq1m;NQ71DK`{IqM&J;a~3|9+*8zBkHVMY4R{izOQE
z2-j|Q_%(mP=H8We#@3sWpWym~m!y|3&J;xu%NT_k_v@CZdkc$0f+Zd#3$u_(W$IT0
z6wJT}rS9=Gjx->@S0s_p;h(tUs|cB1fr}=k2R7xMO=-4m*QEkUq14DL5CoHDHpn|<
z!!phB(mClzo+Dlo5$Kz+ZOf`&K*WfNUG=S)M$s1HP+yF6So4KfJ~TB=wHl}0N6-3o
zQHV16C}q7edcYPGBVFLLrzpBn1h!g2Qv(iwjm8fmh5*dnjm|EC9ZrIibTMQWijZDP
znPVK8JvXe8$$ryu9mg#Bc~%3%9+Sj(YM=iDR8&bZJxs4SizV{=8Lc~(q~pjvaDPW~
zNhy}lrsVDBaD!=ZpXbRD^Wb6KrC2HrJCbcwDb7t-Z1&Ce=4Vc}w*RVMj)$%khYhv9
z$nf3Xo_T9yNW;3vPzt{iyIrk+H%qQ`YZyQa8y%ZfUAh%7uMEsc2Ryu*nK?_f@_3I0
z`E#|ediaMP5vP)gc+6bNXFw%{w79Aw+2M=ND#iPq0cJWmKjb?)#8XM*;GmetX6l9MVoI8b
zC;gg^4BF1FQ1TjGI}QE3N!J{rmSHe=9%!
zKyV+qxz=lLTpF&Co~xR;15+J{&XLz$0e&w@A>IyBGS|?KAEM@89vV3k8J${yj69`Q
zcr>*q0`H0YBBP{i*-%$@W~$o5bO%&X|HaY#^E@$zU6U95mj1^x3;3NT!$M^vgPwj!
zUgOm!U5k$zT2TmvX_ECxC((|K)8LTl>%q$6{dBhH!~cd5OH7%qvHgKhZ}{ry6t!e9
zzfdZ=xy;f3yJ%{$5<=9EUNRW^!SGgs&W{6}mDKZy7+DJRsbOMJDna~XtT^S=*lNGc
zIK5M##w*ug4DIYXd}i)aJYovVlq&xHI^a^Irnd
z)&IRuPpPiHx6O4-+(y-=~mEe{W?-}3woeb64j>k&Bo
zCKV~`u7-L$cgUkAk{VPc&DCX+jbX&Mcb#gli#>9KghJ~or@{@dtu9!sm>9n5yBx6Z
zesb%v!|&qh$@Dfu#EqZUTiR=O*SArDTUl=9b~vyNE1x4dO~mef;O4SKEa+;zd>Qz{
z^n{d7?m&Y*{dufF#X)={+7(+t8`xKP^gE`fVAb(5`o^(cp=a%?5lpccsTl(pqjSi<
zOT>J)u+COL7TKXko3H^h7RWOz+agDFzL*kE>1L|h@{E&j?0S^2BdO!A=>hfLe^Q)O
zVVf1nvSZ8yXoduDI_>TFkQZ90bXm7?$bJcXmw{BR{R>)vd+Z<9H=B^x
zl*l$b_um$OZT%RG8H{
z^7y!6T%{lPoo?XLkb*AWu(rCLD`hT)V1^^AzQou1A^qZx~NO97j#Xb1@|i-fzRGj;J>XPHCK)Lpc_Xtu8zIrH^!
z00?&AfG27aG`*Gqg33LQMrUSe$&(iO4*pEk;}qXX(!#^5e1kG^qFV|}TYzZM(gd!N
zSp_9>@rKM6kkOL(6N_Obx)q7lxv8zU8rDT?u#V&p=Hl1;*}fiKaHZ!hTX}uRBKqQG
zm7GeC;Q7L(k~@jPDpvfuO^Yt~!Oi54%F;X|kP=O-RNB0zGDNWs$?eouK;XwS{kAvf
zay?__MTPVSPCXgrA2ywcMxIr+?Y+A`oUndKi5&sDil}~)iVuD{zOrXh&GvJ?nke~;um5Bx*!9TPWfmnH_aKmuI
zR%)a~6%d8nm&_c%2`F9-cCRu
zemS~soDh0xrezQ+RoIm2Q_hYs(%j+@wxHAGL0oYjX*z9Z5-(qZ`40wZB^8DW-2~H0
zxi@9-gdw<6>7i#5!Nj*qV~zgq!~9rRac*eln1*~g-p2^rV6)bN4XpD?&KVTJ#P-h1
z<(jo#g;=R;G^xxArN+-+1)h9x9aGD1J`8eZfXv}e0HThz0aawrU#|maHM9PxD$`#m
zb3RtwHaI-!#~d9ESG_J|MF_@+mx^@N)|$a}zW>#w(+DMLdsWo_tN0R7u59K0zVt2~
z3=0rl$5RYf7{oCzditw&LAlo1`^t$GWF>(^10zWqPk{P6eDd4w%aE;_w0LA7ywTBG
z+J|Q9L9ppwv?MCVu=<=Y6a+fFjdBHeU79v
zI8nq{@;_E0#X_vl_J`(C`>gVYsA(qubWijz)S>6!VI(SvXA7tb-`E{kuVJ;h4e%9R|Bhf7Tmz)A4H`
z50?eY9b;SUd=xZo&FgSX_zIt;*D+3&C>x%z^M*&Q@gtCZ!Y(sfEzQ@?Dx31I46yxq
z`;
z@xXZV5EirTyotSEOt*DEXpy?pXVH13
zWQy5j@B-=+GH2VmoglY=1^#VlmhMtnB7-JRWZ?i-ZDQ%Z)%7E>VJnU%UvHioYq=ZB
zGjRj1Z=aOLT-g@}H$rHFC6E0Z@pVm;8^)YX9Qnmj1PSG6>!v3SDsF|LQ-3pm4>l`H
zMR&l~7$;jepTXUtrpbS&vxEoi
zV|RCHWxTfcV)ls`YmEKQ*!QyC-=mL2(_rWBCcg@Ai92M}sy(#}%)n(h3Be3#R3f#m
zYUGSTOb0{K@~!3ff8zGw3(6Zu0g+-I%~9jMCeyQVhvcP;kqS?~|0Ygt}AT6(eR8^CugQYRr-ghjBIZKk8ytwy&lXNp-0
zjWOG9yG(`-SQ5RQfv!}tIhL{J(zgN}>=IjlP-W(uzfK{dfuuKyX2QyHgzQ+Z3X3MI
zl$Cuw^6tz2mkMAer=>*U_FHe``^p5$=8PU6$rm>-2d1J_mWqL$fg%m>w@uLw=BVd6
z%g&Z8-;p#i<%JlnU~vvZO2d8xT8p8?O-JA<$eX~?2!p%!*m*VH4Nunq)#
zfz5)!UM)lJiz>Pf@9fhI&}(qCBT{8F@KYqJj@oxkuB#avH(;A4JI}(KuK!4K3sv5uiz@P2b-oVW82p67t7T4
zK$Q)nx#VvEA%dp%{Qh&A;3g;3^j1ZIoM(pahT)w^4<>+ZBkUgy-!H;BRjkkn@lVha
zf2VHamr^!jR$a6o%>{&Q)w7dU?f=bpJ;lAd
z!IfO}1U^S!>2g~AJ<``^t6>BXayXdH3$=3}En+S;s?j9-`$N$-2IV;L;XPTeZ?k$N
zN^z1=NJUmUJzK{xeC`O3jn#-Vl{RxN=BSzG{{WQ^1UP#qu)VJ2LIw`~33%~qq+P>d
zazmCvbSWv3K@LZ=5fm
z!TN3Tkh8Fe)==IB%|d39Br%*i$*lh9Yg>TxPsjcB4@Qif@wlHK(i@7|#Ij8kBGbZM
z9b26-U{^%9TmJzp6zhF0mIPFU;Vl4@@|;l?Lmb(tUB|!*gKN5
zH{TL+SX51a>BVD|mt>5|Ef|s3rsyRH=x>qF_7MC4qV
z)m-_pl&N;QSua+*lWb6Sty@`>$|<9st&s>>6i`2-U5J>F5%LqBh&~Cw^b2N>pWYCP
z1_+}3+UyzrSOapO5f@$irdW>?isZg>C#$>qB&icZ3JGM@HU9zjPKYHtQ
zh0CIRuG0{e2gs}9QcjX6q%e3-B;m5ptL*#-=(%RQjbS$rNSn-mJ>L|6ad__9$Nyul
zaRKKsVKpS$!EEI_8`4+)6PfCd(T+3x^4+_Vai{C=*H-*#y!YHo8HS`WIVkaDG5pB;
z1tmvWyrh34u9=)(3kLMU!EnD7xF(ceR_e%6jc2I{TSvU5ngAK==E{i=xR}%0
zQh2tIgzw4>Q-QivbW_BeTDO5jJloPvfzqVo4%nzO=x1|9h^h!n7*|(=mODNwAC-TS
zgNM`W*23JUto+Qr{&mo`QO?j)6S>P`V-w+*B=WD4Oq||EhTi;nT#j1-C#HM6d?3AMzc@8h^j4)+7FyOs0IO7
zW7~aH%3JNu=D#*wKef$&ZvcHH?&XL_X@bz$PXm@1xCg~4L-NeoJ8W_4K@!}aqbSRx
z;O5+Dwb`7JnYX0s8a2KUrKa4cRJMGKlT*fbhe4lH$VDsEneliz*|hWWrAd#)RLy!x
zYN9OgbG!~7i!a%)D$S6s@vH1B)b6d_&VYm~!kRCz_qjiMB;FgEPH$|UmpM8R2ABMC
z2xSpY#g2DgFMg84G1R^ipG+UK5^!EFsriQx(YUMQCpPm-H4whI-;^=2JgM$v(3?0(
zau5o>CV8ZG0vF?}aNZYSe}j_t6eI(XQQle(#5iU>k5hr!*9Dta=BB&r_8m#_@{h>t
zb06~3#Dwlc@SD+v!WQ1Tgjvhth}fG`K7w*CYLjtWcZ)UxiMNx|9W}qJIVlM5gwNJ$
zlVo*ZOz=9*wlIl^v@4#j!)DG`q}o0CfYZE}?C4e@w%ocric4-)Z&61`AAA|wcq?1z5nX}|r0PpZYkqu+Y_
z>)(fK&z?F+FPtupS}SdjuAVa%Pz;}0UowK7Rf^_2F3h)Mu&&R*pBiyDq)a-Sd5LYUqD9XVaj1oH^NsG$~mVqkb>Z(f>l$gK%B_`ZOH
zJFgMMRjWUM@95y2i00QTPUFVRFJWfe3oOdk+v*4!`{yXvm9fGoL8)d#Gyhf1lnoj1
zT>-sN++xg%{V=++zO2TNn+Y>WyMnDIFFGp@AB~fbP9RB@7ZEdB-1(bgLQArE_BDPk
zL!|nW-ZlFBV!FhkxF7Gy;+S$Q5Xn6I_r9Mu4KwzBX{cML%?pn?%}ICqS5(IBXh;7G
z)`O>Xx}SySmapeamy7~2@qPAhCS>QX|20EeYR!ttR-H^K-M4vSv@>yao%Pd|r_zh%
zyF+;*+bUlpkuVi>vJi!$9YZB0EA?%?X?vs}Ca$
zWR;zi;$NJ8IT-0_d7LTTJ&XH;H=d0J``D{p*C(C=t@Cg*cohXP@ZRqQIp
zKsAviX$?#V1~0zlW=IPtT1q2Dg*@fvA&fzWd;xl2r6n6+y&yvXmnmgZUX11Yjk@HQ
z=AZu0V8L_D-lPk}|sBDOqDtqw`x=?{6Gdvzm(MF08+6Z42WeW;J-Us_dlb>Os5
z`ad81JV_$JZ;i+1cJ<2E@Zg;S@;dJ39^(_+RD&Lz6OOWVjv4bqku2{3gZh&fvI1PGb}R7K3rmD%C(qDqg6KjSElj5)&EQO
zT4{B`ev+WgZy8@rdHMmxzq%~VIuA)p$`(Rkf%^0GYBC$x=B4+?_~ML~ZKTa|p_z%>
z(TGP$uH!)2AfRU7zr!@((d>Wu;{Q>1mPC}=#22+R-SfyOi82t*OTlhhwWKwT)fgFc
z$K<{oRF^9teJ_g)Bd3ezsSv7fR((SaXnBdVaJ~ak<}Ft14hkqfb?+
z*40x&jc)vH&A=0(;V~a|^Cq|jZ&f?mv^Ueel5@w&};vc
z0+0VxcDoMM3Jl`)S@K}8Ob-KUXPo1@#`$9^HtrS_K?A=!i%I56=a`89P
zg6g>Jn;xI)y@AQ$xl(GWeQNK`ZE0Z_;Ioyl!IQ#*jDJwKhF_xR2go3vLX^>8+dicG
zzRd0xKeC-~RpZAcn*;6+pDY`xb=9bUZAkt>RA0=A;`8FaP#qy!QtbxPuaW!MJ2z4>
zr8y3w$1h$y``$BO^oBQID0NNRed5626?1}Ou@P_+&=v4%FI0cK7W(9?Z19`#u4wd(
z{vT~-d|HyUNt7i+>(JYsmSI6TRJOY=i1Dx0w)ikY}Zp~oPfi`lx&NO-!^tM
zlFz^l{hft|ODIkV>E#v{`j>NR=NmdqwtNe-{CRJgC*Y0SIY{N?dJYJnSbz3$|Eqq~
z$>4b0j0JuGfw*qPQLkO#{0nxrrZwT?im%~SFO)29+l_jepIed}AcZ0b?_vx2Qxy;M
z;={+Z21C(lQIo}!>z-sXAEu2hydU#yJ!l=0yB#jH2plxc4hEA$JAVJhTolQVj&qRS
z!{U1aO@~Ni_QdpY=Qp$`9u{Y^eI7~fXN;C4qrqKT9E?qiWw7}v)hsa*OB;pcmPX-O
zjo=v{6pHY4rzk*qwrg_iK9Z#CpT+P*BrNG7eeA)h)Cnp#GPL!r*;wWtrk8Cn`^TS_
z2D3*1mVXF}6<`PVAI>q(6h~GNm190Zc#o7l`3~=UVoiX)?%kiU_Z}c`=3+R0pi{5&
zzYYFPc6QESc4CtyNQD_8gshtkiXH_mt2QX-L=MDVV&Pew^*uwylx{`b{t4djnJo><
zIzAk={j12GN5}>$N7oD$W?OTSG%HUK|93ogwR1~S>|j-o$ecC=xX}iV@JIw9eD&(=
zP|!X8v@N-oANYq?xI2$CVZgpXEo^R7!?604iI*roohI^QHOZ)$(Nw0F#xY={lxp4O
zQEzJ+)OxFXfOl)p!|`zdYl{yFnpwI%h*HeT7R{nm_=vIHx^rc`>D^;cnzD5XllA7&
zwRBt~S-R9$9o3nls&C(#*pSg%-`0{tw{ibT8CN!;V+W7V$|h*(mtBFEWMzzaim68F
zdFb4(Cm2?IMrIl8af6wEMMK~)|KV}@r8mA#tnY^
z+4Ws)UTncatOD$2HBH`AeV6lX(6hCu#g|$FtBxQKVT~%8+-1&qy@~qLM|7OYzBXqK
z$t6}yw~vnK^sC*F8m-`4aredE4pE8;PljWwee$i`
zM5{cFO;f=bj)-JLeVwV)HJxmHvV{Z$m^0f-E23tg6p;!rpV2TU1%8-%?0}+XIS$=7
zP7BEvA&LOOo`>CRtBjU88p&^B{X6v4{4UP($3aRbQvU(o&uN#hk!xC7-f75Cgml82
zZelZn49l^Fs1E}E0|4!DIz&CM-ezs6eE4($XAHjpT=-9c-$itKM$Q1A#>@TV-=Gfh
z&*DCD(AE(UD{CzM*icDfgTTv7YMW&q3d$Mhu_UCUqy6|$E#EeSU9lq|l{yiPv(zP3
zOQK@wK(e?#PemQZbirifP)CnM#UAmrS}fY(e_TbdNdbOI(2_~ro+N0KHY-V(pI0*{
zv<$NL4-8zWZE5bWGBduR@M!#KhN0h$*Ec&-zpY2eRtz!BS5|nNmRBry914ulN@?>>
znF%~Vu5T+uQ-nFPzUnHWEGCuaz8z0Y)Jctnzxemq&=EuDew2EwJE~##sq}<%*MMc
zg@n1K2T!xrZOq-e5FtA|E}W$Gc1w`3
zy&jrC9R<%NnYf*tzR5O^G|ek}Mo|xU9vR+!d$wjAPH`e2s#q+HR5LY+BxfD4L~m!|
z#nnahQ=e~r0bX%;a;2z)#;0Vjk4qVnk(7Le5aY-8M?3ohi|@M5;^*nZmPFaSoxGWN
z)~(Ce1epYX;*lpaYUntee-V*TMl{e?!k?C5(rc%5fm3xEtn%Qs^oyd@V{{t}S&Zz24UtCY-G!*+}r$SYWZF@Ye45P)MDP#-?+#-rA=n^LVMZS*QT1;mYB
zcrPJc{;qRgB+BX-{1X%)wKx@jp&ZQ*sAn%vRnt|Rm=&QGFx#K9wr6AeWta)|r7r}{
zi0WW@>F~1RGf1a$@J0zNme-Qw&b3eugQ8c2>My(v%25((mK*F)F8hh%e4;T`1B02JuR%U?_Zb1>8V)}n^qVWBcb!U||h6R7bk
zXejppl;__TmaC+IO$(n=p#B_`EGQw}+5>Ce;%o=6Fjk_4GaKQ2Q$AT5pFzjrE)09V
z=3kHQeUqhH7S6HP;h`6NIG6JLR6RHU8jKdU8iwiS%Rri6*Au;N2bwC>2C#|D11Cd?u-$7~Jc+!*eq{)ATHpzN8y8Sp3=
zSyNS6oA-Nv`Lp)wIK_mnb1iLr4T$y&T>^+`;Qm3W^Y)s}RC0B5W6qAFfQ(LgJ{Z4z
z$n|s4Hx=#0)oF06X@XxvorPzdXBo@hi;MHe!;s
z+V<#yWYmVV8b<$))WRAVH|w#d(zeE3!**7s?Us*&zs7kK#1*^y;_WHO;kdLpeKx4W
z>I_3;nCD$wTB)1y^E`8m6$JskfqJou*izArOuO?52Ft*;>Dar`Wsp~b4scdlO6?z#Wb7)iWaYwU6xFS51vqRBUZe$71ai`1_9x-wf
ziSz}G2YXr7K5NMrod_6+$^PJ-$3$c6+r|tC@xGpE!#z4XSv#<2j7}nRfI$514HMlI
z=zAQq2&!AgtnX0;25R4O@5`NMro(jihwB0Lif^#;4hizoi8A#FHn{Sq(k4ii)ImMq
zjQ=rv(`Q!<+vBKEE!`oL!KFTVT`|dUQ|mjJAD0ZzKye;Wl50?`ZT3|_PVZzpAfGXB
zgHKyVfUZBQFgm=HxH5)IQw*X7WK{NjCB&b&NTb_fnNPP+5p10fYRq9A=+7hnz}TLy
z!h#Y7m98e8+bgD5swQnTc|Pvxs<-Xw$hsmdYCeHfM(4Q1UD0<4hu+ZRYb$x9P68zEBc1O
zfL)v4ZMRu(`hw`Z=Rsa8RGQr3_GTcfGG~%+dEZhP=&~_P7O&@D;TvYjXw1!gdQJX_
z)${e^Bj=RY08ZO1r>yc70gHIA90oGIK0qx<$Gjryi`*U4w
zxdBLp^`$kHMEdgzZ*#?iiXam964K`~Cf<;)!97;}QNM)<{kN`W+?nLoJ~noMi-<@x
zhCaXn*x1{U#3q-agpQ+9i*b}!FZ>oEzN3B+ZCX8#CT=?#l%m7EzfDLU{%OHfIsnu^
zjE_g?rlaJot7H4U?U~!~p5>SSa1zN}pR~Y?-1FM^{van=kM2<{#V{02x#Sc)z`qz-
zgZJPV0yXEZ#1S%S-7-=LVy?j-XEuxJJ#ZRnV68ta94Z&`sPX-0&X$Xptiw^KYhoQDM
z^_Zoo+@Zt}B;A>t%YIbyVr7^blhS|+Kq<)PvA#0*3f(;0k_SChlq0IKkFt&Mmc-9j
zxE??E2Uz#0Og&6-#yfG;>W!L2!CORG;_AwcDh~~6l}64fVeAJbmCwdWF2ov1Icm%e
z8u~(50bJ2p3HQn?+Qq^Jm~&^RG?Lv7MysEVAMn!n=E7y#)F4IBuZPFgN`?J8j2TQZ
zYUcBv-SI0<;|!!lZ2g=Fc7l~x2t4v&)^ZX!V!7Js^Va19pfrZ&AN@40o_HfnBB!cA
zD7Gem3{sY1YnO(O#+fAx#t>p2A^kzATz|W`-l@XhbL1&Ysg%pv!X@WPk>n)jgA*<$
zv_kFTDIvm#>B90EPbP!iG8jM}rrC{dq8F2-3G+5@dJKkKB6!D
z$}fVmaD+iK3u#EZq5OKPb4tgPJn9SldEq`C*rnci%vq-C)W~k2gKx;C?FN0e!F>z;
zC2!Y{kkjfES`1Xohl-Ez#{jIWor5L4W_|t?W0p_~F+_uulZ+@hqOYAN`mOY-WKr&B
z3R>+((%oc{f!rkFRT8Sq-y0g*+WIxY@1{*0N1PtnPX!$rC)aax3o2Tf6E?@GCXjEV
zAN{RkNO4P=Skuik`f26b#H*9}bm)$-o)+_ab57`mHDy}bR;|8Y0D9e_aHLMK>Z1@s
zVWnjAG;M_BdOO=j&hKllG-0_~W<_Y}XHHy#x{%0G2Niu`|wq3qywyw%GsSI5QI|goUIoW}dQc5UTsbYUp5};_>
zk}U17ZFkneS3GZwvk>&@mrsG%zg@C)r*DN}3}sYTpvMp7O!G{VnAtBavA-5rBn7pA
zTO>XD*12)NM-Q@)KF%QDAea_d&`id69x-#!sC??OOH*c=M9NwCQ6o`#sPbyY<+uw5
z&cVn46U{d;-Ue8bj)tDRi+SoQlMr%7>H5fm>>UW`$esYFEZ$#S-`#By@9Z)qjAj=4w9|D!1BkH?po
z7cg|Ph==Gs-A`G1L1!eb?9tJ>axL<17jq--BL)H^PPkqUIT24K<7b@^^ke1ne<97A
zyKS`5ne(!=@i-~Cs1h%MK$<>NvZ!d2fD0F8U3qB1rMnN}>swYJrrFlXJo0WeQr1D1
zZn_jt#7)ETc42t$83!B*7)>_3e5zCHB3SI{Ku&f+DKRWf?!d?26a)3S5ib2V^ZzNo
zes@>X{{77X>c0asiOKxFk6LU@U!ETXKt!qHR{YYZdw%uLX~A^MHJ2b-!IlgM_9IkA
zhCa0QZh31V`BTqDozKOWllA|x6U^UGj`R6Ue8%CmpYo-ZH-6%rXzal)iAO1n%x!@b
zJ76_FqQT*KEkr%_X=98!8w9UU7>ZYH~CyHZkf;*l!X1V#E#|2HNXc$YL*>N*d)b8ym
z*SBQ;cK4f1a1k+=XiaT`q4LnHl45x;>7af^kJaV^m)BY!U}Imn^o;Mn^ktQ=Ztqh)
z)a<25R|RXVKq53&x|$>}G<@lO
zKA-8^Heo?orycLJFT5KX2^2y}puCcD@eMB#)oKMns}>c+{)rMPhL4+}Qdw^axa4-p
z(ndec?J3uZC|@s-9`OkfhXsWCR46NKEX4;!kHRei7Jxqso+=_UQ%rPaUz=RURkn8t`_-9#IKtbDpe
z_62?lO9uD2nWi}VeE#eT9_!yaPz9A;YwKCji-Iyf9;PTXYbnZwdTPr54q#iu9a%Li
zdpv&|?6TkRDI@im>&b(TaFn(E>{&ods?+RTe|IhGKI8y*OqW2ZUieCP$|+u+9O0Gs
zS~0jo-
zKIUJ-R{u$E7+HQplu-Q<_#XnSN8+&2
zw=-NS#3r7-Fi{ajr=RkLh*|IR?T9vS=)l@@C!m76AQC?a8f=04|{M!lruK~a*9Vl_rAM`xzKX~{I&N-E80
zRw~s?!4?ppV)hs+>~0+K*V9&`^W^F2Uee_zyE@K>Um+myPfWPOO1MvDkdsqB-b|1X
zX^Q=5P!XtJP%BjWd2|?uQ{R{ey;UG;GI+lw%h&(VW!6&#*`@;Qwyf^LrvyhOF?jJw
z;+r`z|5~fC{xbo_dLvV}N}@l$hHjp4XP}7?Dn%E=6cajE;7x;}H=oem!vH7-S
zrDkiFv+8qdSuVMCnjg|D7ha#^__hJcTPU3WG{?|#iP)T{mrlA&
z=CueIYb?P`Vvjif`dBO|w}Cij6M;uXrIFQy=rI0iN4z?jp}r6i@x0dhJ&oKyjRZD)
zOdzZMf=bT=RWb#{1gY%88Z(%9Iz$qsUS!eeLM9--M87xe9
zam3NXKG!dOl0Vz;%btc^alo^DuGO!^wmZN`91T`+%uf#G>b-olbV4KxA4p>7J0BEm
zo^oF|cBRx;Kc^S><)5+rVb16l6^!Gt#&R@TfK!#(RT^hw=!IE<<=5e%_l*bSZK0m7
z9Zqhod@gq%7&}-YaV(TMs^JEVanS4}Qyt2~pg_#3FWhId(QBf(OI=NQRa}r%!V?dN
z4@Nk83qE{toEB&%)nL!!T!U_p<~XD%)ToP750SP--`Vk?iB;%X;HEDY#WF2Q3|s$a
zApt_!$VhN8O;`RsyR`3Fmu+XiHIAi>9sHcoflG#zOFad%#%tF5gyOi>_hQ;PI8%z8
zgP1`-qOzIN8(!&9;j~d)ly$BV%+K8ELol|<-qzk0(6G)+w!i8YX=*e8_pI3(Uire6
zkVQY@;8_iylL2@vsy+wxnc}j7x<#&kLKDe?1jCg)*$)0y;YKV
zAhE!lt(Qb$W%Z#F2Um<;B0xIDh+RC0g2o`$%7>Dk4)I{m;0nYT!r0clHyUIMQ0Y
zJ6y)`UovuIcYv6JcyiHNEi4jVi!b%-EB)^8&OFObIj~`!NG)6y+WJ$1xfQf_J>t{r
z4U-WGG}$W|#I~#>l;1*v1%Zl$YRdO2JAzhNqor+Wqfip-k+%A~1?oje<7tq(c9Bqd
zw5u)imDnB*f>az4;vT$e^2_#__^ytTo2StF>E~GfviMY4z_kXNTGN+}Xb=wGefdvo
zamvh3|Go!grKIPp<_3Ps6siC~V31zN2xYm!ug|`mq$3C`n?bav-|8mBYsQA#UliQ=
zemELnEse|bd(?rBO2r*Di=~_!oE+`DCaLSS2Yh-nEFZj=Hd({I-hn&p
zeY0#%gEd^4IKXQ{RKU*Oj~st>tn($j;RPOh&{qaY@#(t-0ofyqf#NZYzWHTMUW2_@
zXzZK#NoNfK6Bp%#CX^7Yg|CLMn(}*V20XovZOT)tQRlrzHtf&$O)^--;^V-sqYt{E
znCTN6RMSrsCA)9yNLIVuh^CUUHaD}nd|d{UPzRC1_c`Qq2Ll4J`$v?oX7eU$cCErx
zyG~ePB(VpD$PYod((~F+|DKZSL~?k4lC5@PH~KUk*|By5V7Z156&}0j+IMx9ZZr`o
z<)dfL8Kw>4CVnJ7?}?Qfhb?QYAtIUd0dS3TZvTVd__v_}875RASG5sWdhKA#*T13<
zU*2S)_)5WTp&hGJN30i2Cp8LQmNA8-Kq>35hx?~)>AzLiyY!X|D;+n?IA2>#ckNw?F_T1d!<+%6_aden$Y6vw>#U)0ux{h8A;
z{lgm5{kk0r4N`25K8s<~%qUBv
z==LpD*E2dIL;#sMM;}fpD=Jbestz;oEocx|VMIoveC)cQ>mOrA
z8#NUHFv3*$Q%dF{Sc+%&mt_zUr-U=XPh8tCmVEvzCeWAmg0rJT4o7~%ES5yjX8^qI
zo}rE3%XucfbAuJEX4EcG%ughSAc!T9eR2u!jsJSNgZSBE@2K39R6_m=Q7OG{2cd~i
zR~=qiG>R7K%_+McBrZDt_{~G2qBvwj_uv*F8D
zP(;R|Y0LRBr_pr%ht7A}a%P+BGA@2<+tYuzf3G2^99L0kVNQ4N@cJWE-M}FDYoO77
z*ytO_XNaZ3Vo>o@($uFxZtzIFM1;s&RBlaZiXWj4mZwTk#r!cP?+G+M5ADkDp(-5mp9@kQcZG70TDkQzM
z1^GU(t1zNNl9r>q<$du@z19~RJ|yHYx0bzAYSTR~jU66mn){9`>Xj$zQrZT&oA|R*
zg>-1op1$eLpXBgEFG-<_c2S$3h@!jqJwtAJ)rg^uq5Ch0x`%#>B8ew3#%f;fl7iin
zd`48Il2(KMX#r6GcTMUBcVn1HwShm!T>d48ZA`*w~%}M6=PExI$uin0%dATl7BCy+fJVZ6lk_=Uk)J3_IJAkTa!%V${
z^z)A-s4}V~+hSOP1*(rNf~5)L7+Z!KLBDy_kxB>V7PcBmGH%ir2y7a?=7+WJkuXo#
zuQEO`4r&j)ta>BIJ0vB9LmQ|k)T)vpDUR*$zyrdJ1Ij*v8XKFD>udtnz
zn0QAknur27Rz##M>Vq(LmOQA(B8zA#*&l+9agpjS4OQz=^PBY#W&2N^rFI5eX!J;k
z8EiVhc85dBe~m1_f2(`rL_^-lC-D#=&XigAR+}X5C;vM-_$X37g2iR!
z4ck<&vf!{<+X(lUhSsyPIpS6sI9SIp^+&mfZxKR1V~jR-E{_=U-1oywbWc9$q=lTH_pnRpI
zxO`07_7;W-AXg!Q(E2+<_sq(5Q7oyIg7NC)mZzTct!|nMi6m9pnb_W_*z(nZv|QkK
zNwpT()x<5~;*2a0i@YqeHdh)WawT)zuj2Mpjp1iEH(er_
zQp}+IB}6<*B02Tu5Z7xgiwYCGR|{Vr@nWn*W0er9U?!0syn}m}|Adcc^BDZ4YmYKk
z*L0~t#In^#smy$5S@A_#>POcE%ck*60j7V%F4yaqH(7Ch
zVT4I?+t)*bGAI;UYP1I@wM69cyfzB8!LKdb{STq;l#avCN@i3NF!R&RiAc$xb7vwq
z^xI7mtO#7inw#2?=Y#KGg(fn
z`P(y}IK%d#92E4yFOI)@FuX^Y^c3~=^z{{GP(WeEa)?J*=yMxzDbGN`Ru)fXpak>-
z^|M7eZQ^zZ!_gl6DL9>Eo*USAp*Oe0%tsGDr34q@B)%Oa(nh6E@IqS3yO?Mw9-@jp
zyHPP8ZG8Tl{r?m^%dB^sjsE#@rg=wK2^>q!u6u-G6
z#$kQGJm92zdMj&qA9s?=5%45ud|W&J*KC@=U&wt5D>eF6s
z&Ria1^pD?Or=-V=nvkzb{FnUq){GN*SHlu|B*lCE*r3UUs@A9|L=m^R0zu?P&q3X5
zI(7EZE7GbD$kz7_nQng9B5yF?yBWaHRqT3hPkH@T3_
zZnT=W-O%TTjQt|i^;V5+2uY?t6>fH_BRkeQYJE%A`K#)MR0qBdC4vcJoF)1XK|$|z
z{#AA+BVJqy5^V6ctf(s?i?=%6{}?+L!=%kD7fBxb#%0yoBg`voV#MCMM-r}-ikOml
z`&x2JGaeN9`+0cs7ga@ZTl}cWM^b%IW3@%(RG~FvBjFX25CXn2{^Zh?*1h)KwB{t&
zwD6;ZfLWFm;aRS-EaTV0>f1(
zwaPzKeg1-3L`2I_S4C_8mzEB9jy%Z2<_h4yALBpD7w{&!x~HuBi6bDm2-{*k3Qe?AA;6T
z|3eT8S??&YZ#gh}=aYFn2H@FMvCJBd_VK}iFh(f>H`}eyr=k5rIuo8u{q!$7BS~*9
z^6Z-*4mO-*LpdwNB2xq5bj!+*fd|f>(1z++Kpp1hm^{Zb2D1-dMS2-bdM@{i^wIc#
z2tCgPCK;Kg2DY*m7QkN#y-lOzb2+y7GTm6^Q-^s%<+fJ3<4MvqC%ZrI1Oq8$N)E!}cFf`vQ
zi9#|3u3OVpx&UlXP2&R&?%K$LuKTYfg!PpQ9sEF|AC#!sZIL!eFjdf5jR5kRMtrEB
zWZr76ugck<+()2VLU~*>bV-;N{Q>SFN|~z`LZ_V~fa=aVufkEWDkCu$vO6~NFa9Gl
zr3nO$jK7nXtg*uL;5b$e`Kc~F>u!mRgLMImh~%}aRsq8CfVgcHdsne}PAMmaWf7^M
zUg=p@F@_cB$XNJNEpTUD>p8YJD8#2Ds>9rvLBv9h>(1hTjy%bSq7V~J-*5v4uC6Mj
z3f(@5%tdonW;jBrwS_n;*dULtXS4B|nuw!e4gQFSJ9NoS~=8@ESIL7She
z6I1NhEFqXFjO)>!
zR`K(5baeGSG4cvJnYK@8AG7Lwxo`Wz`)vc}F?k*3)beeq&ldki4#WHwSE|b^2k%%&
znQuw5p8}mVK|keo!zC2`&o3t%u}`p_E=4`-lysQ1bP5W93CJU?Xl^(O2k>jdOpeJ&cGC20B%1$>UVzTz{Fv
z7dMphytLI6x%@eQ%CHp41P7$kiY3}$o#?!)l(=7KqAO^%tAYZ+|bj@)$9}w>KYX+3A~-n}M9%^3TX0%l2!ln#L`JvmqqdL@SwgvD*pP|2;93J78!Q{efCcH6vx|+DXdTXOJcn9*L~Z&ti}-iV#Z=b
z;ux%!k@U_?ly6+662rzc@7liQOlJD>xV=@%CUK0Rd{LLXaI_3Q0zokZ(1;Rjrj~0V
z-i0S4r+m_;)nI#r%FxSjx{WN0C3#}WK;QbnIYatPURhU&at=N}NfJNKY)c}RqFRss
zduq7t`kvoK%?G8iLsvNt^5GA+04Y6~w7g6V>+hfD0(j6%?~;2*jQi^O)>UCPYgCpd
zb6mf^!b}5V44Q%ACt`)6od?TqUp!10LkwIjVxusfA(vD
zv~Js7`<~BI^Rt>s%lTxG2h9~wox7niv{b%=l-`3fJ}peVbV0+Hrj{8Ud_+10RNYZQCZxs|0Ll8j8Z?yzvOAlr*F-N`e8xo5^+
z<>i4rN-iQxH;n5wMqMb3_sNvdJT3Ib-Y#hny5#iu#}GRd$tbAIr-x
z;|O12B*I0LFW*g`?RT1ozg;jowOG**0>8$jL&AFBKj~AvGQs0o&YqzedD(t~@#_Li
zGm23B2g@QWNx_e7QGxxbr;-WtIV*|h_yR8rnSq_uRa;FYP3M%~UYs%a0K(^pisnit
z8hA!ECi0s1a2w=9t$=ar%CWWvGb+s$R20o|W(N%)d2CyDPZ>{)t)m&Ye62RW)~Eo`
z>}vLGLWpzK)ptS8uLzt}lWV*(^d5&~>wPRDy;rrFZB{PFjh
z{jwEz4YKtC1sj}M-Rg{MdGg!zdfM>|$>FyINbB-xYPp>18lZ3rQ4~%VD=Xo1EYpMB3+
zH*1h>J8pfQDj6Bokd(5w)3JFS%X2+HwbkHuORg=9c}O>yNBwE*9CScyaBvRVU+?;&
z_NUzJZ6Q(*)np$>^TlX(xIx&U9L6wUuB`A>R_ML>^6zCeq~%WJn<)1Bvv5!RomyP+
z%GtICqt(BcS&vRPASm3^oW!|G$t!EdT#>Lh|(
ziCY>eHka0ovV=*&WesS9V#mM&DT5A()3OBW9s+#3n&!Jla3OMTYi*@UfR0U6c~=*c
z%3;i>mQ_2*qAn8vfPgoVL{(<$u4y-aeC)+ae#RP^qore7m*DP5OD%h(7NR~*D@pcf)*k0}AZ3cBvURY~|0H9OS)G5BqVj8ocGP-Q)l_!_}0kt@7Rr{nNwEuXH+#
z<-m-in(XXlFQRdS@6l!^IS1%mR9FNWjg~cY)^I%@YlH9ylma7rvhN_zp$9ds{rOOr
zS}wIAW{xZ5-?zT5hs3lUwkgY;uDrA?
zc4#CtZ^2g9D_OBxJO%xO@8sfL>eAw|;yH5*(DdiZU>q5Ywh;c-1Yf1KJDzDbqUA}C
zW>@uGS=C7@aYv+RDBkw4(TFx)uAaC2T7i8}*L}e%uhpAm^7v2Y3w#gop4X2|WF#+m
zMjpgVvlqfDTBg*d=D#@QuoG3woJt8Cq^`FTr}MG?0NJ^M9Hi0Y#iy|(lugaXuNYnX
z2TZi+&RP3KVxj;StV;92_Tb6{^ke|=o!&rqTmAYZvv%w)S1Loaq5(6O&IDV03I+~e
ziq{f%KwLoaspr4$qn7h}!B)lAzoEDTGCx*qSx0M`u$i?g1d}mC^p)VU=Gn!6GQ40a
z?e{xNz_EFif2@hyAH1tD<1&MT+t*k)?B6)B6$=2L&zZ=pH4O=JarR9OW%5LGGl|Fs
zAgn7=rDrizo|>2h*!Gx#?mnh%(Wc`SL2!k%J)q{NVq+EipZAev6RKc_n1>*&xI){w
zp{yZ^Yxr&j?YGjE05ZS~h`aT!b86Mwo`X?dOB>|$!i~zd+bkvH4MI&pG0hIYq(35g
zv}%!_-I*~fQf5|#HV#^i6pqs7ttmUT
znoX4qBy{UaV^D0j2qBLwAy3or-+8nfSC?Lv)eVqk3?sj}wEi`{xg3oBv`w5HOR7qg
zRQ^MV+HLTRt2jvKP;DY1{%Nd1HHH&smfVRyx8`x?oafL0!EUdUUe6BU)J_?Hp`cAi
zY{xs}F(E!S^XdC!%51Qj&aC`kOzvpKuc}9Y`@uj4bGwJfYPl;P^b`oHSQ07bU{Q4z
z27YfO;h-R$S2TQKjX?O5?WtNH-ER2RCdKFay@>qz4#B-tX%X~A
zh$bBl{Q|uRCdYUx-OK$rqjtU2b6?-0-8JI=^*H`m5!Xyb_{iXD)kpsD=!Vz7qqq_s
z4(8v9a*C4nE3c-m;5;^masz^mGUcYBm3PWrUT7oFKFvBxbuPBlI(3mJ+W^pkIut23
z8aT~`rNZVd-_})vo8`Uc`(U%|QmbdAIVsWLArJsm(
za|z93r@W}!1E*U`%c?G`6k<6sb9Fg?QjS5?5m3$TS-yl}2Q6K2ImP}{a3_WNKjMVO
z?7_c!G%B~54ZAshNDnKdMQI?VkNEd5Mq@lSxVbqIKhCCt5I`FIRj%FuQ7?Sp%{5dT
zlBwZ`o$nPw*^RTWOehft_P^WoF+98AFSV=X(=nYf;KVk!$mJoepvL7lEw__>$Xt7O2MQ=>J4#~p%j
z!hFV*?AXFryB4ELh9wANFTYD1N+7}?m`wXA>+HRgTJ#)QRvAvQ86OC8q#Bv*uY2w!
z4H|3EdP(^gwfof_`7ORAVopxq0=WGbcS|xU@j35N#}9
zWD?e$X8q!JR#n8aP~Gg~YYBw|TQ);SLfy3W?iR(BE>NZ&dAiluJxW^~xdxCxc>LvY
zq(FSR_v>4rOC3Y3%KQ!{+hp3Ik7{G#8`8{p~
zJ?qVW4Qkr}b~y;K_Ku9q&oV_tOwkh_NmSoAqQj6(qoPUr;ZS7;3UDO;qm_?f%%S$@
z)CbxNWRmC@LAHMqfe>L2H=(5JNKb04j69-!+*m_pm}szusLs%ACu1?9B$(pAD(Xi*rUm9F(UI7L5+eBP40w
zUvV1mRm9h~cz#S9CNIeWD$CQxZie5_Nh2-xb%qatwJ$#&nOPX+ljO)z>K!naNQVA5
z_y4J+HtMP~R6}jM#xex2p?uL0$6#IND5iMvk-g@X{(>(!$nR?cZ#nTx#fbT6WZzb}
zV#fw?D_9?397nmQ6+QEIqckj>qbZ$;8HusK{+u)@|LM)raz-~U
zJzd0Pim}LG6V2zam58yGh=%|s!6pGo7l%p44uc}Kk?;^K@au8BO%HT4Z$+isYNcM5
zI`8{@&LeVh(A?-&jGYHOFk5{MK`J^Vx1?MW?caavXT>#NQgBjf}>BLPVY+wf?1Mmm68Va-iqOpWK-wWQ)e1!Mxn7nl8w&+bFggDWH$BR
zfJGC+N;M`G-b^21rs3O$eW8Oq6`nh)!|@qDbub<_R^9mj02*x>!d)t&B~HYv=&G#}
zF^=c|`o?Ew8^!xr(g%J1?s|R>Ny#jDk3fK65S|%9%M6V-j({|(pPyiBrlR}JZ@c4qrntI8S^8dP(>x|yh
zwBC-1gqk)?=}OM#WS|Nv8GplQ*jTc?se@)~rHdV_b+<&m){GbbG9}($l~9vWOOctyQ#E
zDNoWer-eVCj?0ZtDV&KMD-ozLjnjPHEg&yQ#6)17&%xl%D}0uTZr4(R(HOL53-F*=pV{E}+njRyP^dM{RA4KK
z5ZW!GeJzGj`g4l{Mn$Mj|1>ph+$QU#i>ov%X#l)mSf}@PrS1Ppsu{44jo+dW{$P5s
zf)b1=qY%ha2dU!X1~wps;p4@k{agNR{_Pa>@*hI0FTCSRR~iqVozL(Nt+VhP8jOQK
z&xxUQ*I`RYtXmg_WLBOv)7FMw=5@>?J0sYv7p8^+;0u?Z-&8|L0)LTR_@gb*$HA_4qY1B3zm;u5n77PnV{+4h)bUWUf)bbqB
zHXYDltW@N7c9R$0&DiF@9F^~flqy#59zV^_8I^c-j=z4eI_={&pC_5NpGT9H?MIPw
zF6^|fV%I3*y+r0UM7|fT;|HOTcmx06i
zN)G+N!cjAtvR&8PdtmH54Jt)Gu{iVK$Cs
zYik(vnN;l0tdyLr|G(}(Df(Yxt3%B99(^MjVbt1T-kGE@zMoaGVWzTiyg+&O$47bN(Qv
zpYAEp+uhIitAZZ^HzXj%p>K2anZ1Yj%ihDEPT>u?7+;@tT)V*Bvf?uJeQ_Ey=9cB$
zO3;_>+&1FG3~N{n8tlBWR61SehfwwK8qdVHl90|dp}Pe)<|~8^1~`%eX2l$psv-g1
zAxMSS7RDdb!W&!{=Wj#4{}pH}q<|3^5Sn-g6*V)J55^ZQTjgHE^IXmo+^
ztHvW`Wi{i2EFP0C)pHKffiRp9uld=*v=T52nDcjGVEo4=Ri3zeBrg#jQtJ^QA4wEVbMqb?*K4S*8KrmqI1
zsl#$O_|gVYJOv#YnW9*t3%vZA{vA!N?O693T{Mb5DJy|xDOZMOKGKI9%Bd9%eG*KR
z_k(yX3cs96Lia-5%I@y7Lt0nU-1a6HHymou=-UHaTxvHhMwzuZt{CI@(U=FhC{?KZ
ztuheu_9%LH(6v~ENZ|US^f&^AY3B#@4B=(pe@0a-iojjTv+7%7Iu4w|7yrC%+WVIw
z(vhL{+A7vZOh@wOi{oLr;Y^?kZRRt}Znur{aYMFQYk4rZ#wE?}lGFr|E<2Uvq
zcBe;L6x~XD%X_j5x1K~-G$m{eUh3x9;3{p-k~j)C)kJUZ+Y2i@0W*8EZ`H{j@C%+O
zYF8(n0lga|c(v`wV5(t@9z>uvd-QApu&-J-a%cu3R*>9br%24
zG&eU`?RQ3Do~p0fBsLM?4%hD8XRy$SjpsEl)O1cTy@lv8_5~>604q(NmEj4s1~}Vg
z@=0B|T7ffWDN;>en)ITc5!g~U~xKd@d8J_i=3r|S_L!TuNG2${UR+w-71agilMUC@q10jl~y$s+zPVAlPm2-
zXkgpW%4~4!rQDy
zD6D{Z581Sly+3a&^UN306mgjbsLRNg_N#JkRT8qXGUEES-Wj`O6z0oT`rxw{(^YaOx+9@8&E*{SyW~!_
zoD5UYBqSBD8B<0j5cv&l7uAlPO+;p@2CBOBB%83Vn;zFE@Cfm8=Ef&FF5L4CSN4>w
ziD<AoBa%>2!5iDZKRs6|a
z^c6fQ4Rw|BXKB`7N~&zyc4KT^UGlZ=u|^F?;XBnwz}Hh3UGN
zl!Q?bQrPs|wHo9!nf6>K!RM-LJT+iarO{z#R_z(WQv}&Di~zYxa3p5_m^h9Y%>5{<
zoKyd&sugd4r5*RB%};pxWMVQ<>g4qVIA_)P937uq_RWsek5y0K@Lb|)4shMJq33`G
z*!3n%QE?MJ@1C`9Gchw_RH23l_YsngGZJ|FD`1pl8x&^X7=*{L)x1o+q}|Q0yZp(W
z?hfjCz7Sq?!rO3hJ?FLnUmGnC2e~gQ+C6!v-ORdRZ3;|$1}I^O$B5<+?4Ag$VmIgK
zp@vV{9{NVY$=7_>>q>qbQ%AH?J-ixVE>eT|0Z=SQVSi9V@Pc~q?nE4L@59f&Z$R35s>FhxG`uunMc`wE4ooRUS8mhxy
zT!eq(AygdUs8Z3}zh>WizWQiC)JL-X-Y{^tCiQM;|Ghg8W#0FNwV5@Sd6~r_Y$rdX
z!D^;~Z`^bI)o~yuTneHN94cQjWSTZVy=idex_{4iofK!^l~hGqod)lPh888-Pro*c
z>z-LvjYYX&c|%~>J@|FMSMm29t;OCm&DgHWwhDDBW}*zAja}sAK%Y$*rV^@Y5;<)>
z)5eC%{)OXP2vJjEfBkfFyy?%%IkC&kCyHtYrOCJtRJ=cvOF&uWPbaC>03ee|x_iz|iL#g?MFUwU
zE%0vKWzX!d=Y}863Ts=Y0OjhB#FQK%E{TD9TwN%t`6ecFLq&Dkeb)2Ba?tQuIct!q
zOkJYGjkVY&=Kd#^sJ#%RJl#peNJMNEs0X0;;Sd3#K!WEkcn9rv#sRn
zwT$Bo?JeO?ko*XXh+qsX<1
zFE*J_x-B#5V9)=4OtFzbq0G8EMfq{~Yyhu@ZyCjAukua+g>kc#5rH&z$kbR$p%RTp
zo}qHhsQ?%Weljhh$)2k*i6CpKcucEl3HX}N{OzX6B&oEI@0xY}#|}$nJeJZ}slk3Q
znHW^*@aC~{e@s0uI)P1ZE60;WpSW?Pj2M{-6+5w@lxDZP>83SaMr_v&F_z}1+#%>O
zgXi&}lz7yqndD_poGAnL04j}rWQW1Ph&D(iU;iF)25v_e@H?d8xBK2{f|yL(D*678
zu(N)PGU~Vf5Q3D5gfs|4cXx@z&@gmMcXxx*T>}i#-Q6J4-Gc~2cS|?;@;vW#&adZB
zxc7D4-@W(RYpqWcz7DZ&VMfyV$;p&Jp`7rFdO5KyrX^
z!yOI(&w?`aB-(G~8I8t*8~3N%jmNR?-5
zf?(mmm}?m-qv|R8P{^hl_Gf->PnA1w8B3B=hC4~{wZ&C5&iuFOB^HNpGnmvYlzLgF
z^6`SN??T3PNM)8uU1iIg)nK;lZ50<+>o`6SA0Dg>eK3;r7*;R3(5S-d(ZH
zxKUOTS%q*L%q$}MIVVj=zCpLAQM-7p8O}tB-YB(kgMC3Um21SMVW6s!04ccH1?@!6
z=@<*!oi`-?gmhH(Jdlfo$2bEMd%F<gl1Gc}zD=&V)sOJzkS7vAVt^j1juS80zqA5D!niz+-^F`5IgCKS13{VxMKb;EK>kk20IOJUlezP^&k7N3*|0vUE}(eL4$Gv`x`r
z>Gg;bNb#4Bno-)L2hTz7`b&G~$Jtxn@G6LGe*lfNUL?;Z!hon5xJ=oib)~wvxqWwk
zDi{Z|7Ld;_(+7;!f6ZgFtn30xw2OPvSM#&;=&S`8)wB6w?Vsb-D9-C{h&5@pAT$V|
zje~58G_Xj~N!Ce4V=@mRvA5;)UOcvFn__c);;fqb+$`VOVVV{63rrUceU&F&J2e)b
z>UcENkeRvmZkjIQONi9dpzY0b77qcOY;$CNDZJThMaS!$)Os*{VfcF9OoOLxP8IZ~
z_}dHeE9j1qHQ5_KEN#w2;^E-N8^5OwUQE4((eGS3^`xbJ+ijnC@?-4H_d~4C%C}gb
ziFB-gZEXjbbct%%%MMVho8Fn5XO&LoD>#H)fZ37vS~jsDI39}00<`m%>S4}VebmJ3l7MDPn?yI|A-k3NPNe28jj
zi5#NGwN^7j>)K%z_(~R6KYhXVJ9Ar%79_
z68OrgU2_#Vc`2KF@{h3h279;WCD8NV6XZycKFv9YH)_M=r6n~|^{l`U{
zX`y13=CpIEm-N*Hc6FN0?2vbdp+>nL?>bW!(QkgszO
zJvd~^l^rTO72Bp5zT&fgE^BJe&p+vE3+uz9yf581;fa%&FFV@9)ol16`cv6NUa`Zm
zj$#v{ns<#@^>SqsnDeFOV@sORsp44cRTb(n9vQ!>I}4Y1e_cUkbpdmK(kf${8Q9fD
zCeFO2sfiA_SJ+C53VuGSaqlk`o$vGJ=0-k@e?8MA`~#G_8_OOMA^QqMS?wCAHVY4>
zKl-%t9Mw3upZ<>r^S_O^$fDAlrekh5+tw6APaj&4S_@2nnZ}RK&BkaWuJ<4T|KYhozyHhV9|c!hplz2e2l
zo4IB2I#vGxqNH@Bw^@+5Q*fb3ieQ?Pg!C_cgGy<@ci0OQ0^}QodsXd!DCZf+hJ#$SS;I1E7^%uC+_`VFJ9vM#@g>y0WP_ZEFa8qHMzQph$b|$p!
zo-Wl6Q~Qe!ah7R8@Y7+Dc9j8lJx=xRxXLrj30z+4p>*{JQqEnU8%Eo91Yu(e@lllD
z`Rv-qc8_p3bx~{{^$sof0Vy!+{IZ&C^mj;;MCw`FKFj{lHkr82)~ACXM-8lbfA#Fg
z;X;RB=54Ni|8%2>3@jAek|d*ov+%LXv?d*nvXNM4EF69+aYlNzYCT>f@bkN$2;?EK
zn3EauR@-2P3KUisCvIeCtpMkMmh$PvF^xRzYpF?`!<+pSro%;1n>5*|*ceXKPd~$9
zq;W+Z@)ZWXOG0p>-+D6mnBD7N2eh3SVa84}s?TdhWKxv~n{l`gHjHJt&i5RR**ao>
ztRlX>pe}V#sp(iy;He75wkFo#&LSKpS
zl+<14kD4vLyr{-
zqD`H?NwF|Qgi@&%hL%#lGu+Fz+_~4>UA@oXE>9Q|#LJ@Od*9ni+axSONnY#F`42Ga
zU&IPuDX6VqSz!IsGh;7oFZvbeKhu1UD4U;KR9sM6T3Rw}x?Y(Ez9Z!kY2vJfZ31`K
zOdL9egbcMK*(yy0DV`ULR@m0
zlSJz_isS}V5QtrV;jA7jx`RtbMKarNrS%<^ZpY>v6(%^TOnCca7X7;;OOr-zU2x>E
zSOYl?zPrs>+t>tXXOJGgLZkfC;k+nut0$Ws>AYQ(2xy7whpnmUoRwC(4tSf
zX^jY{;Xg_HPD#?Kv#od^RIgikoa0QN!%{CZo!c5=Vx>%J-AF@_R)|
z^>b?d@8|nPPsvBg_{`5k&CX{%t#z}rQl0rFAI29I3?zqS-t9vP|Khcc>rdc;M@-05
zgBeeuT?0?&V|pe_SqrwWWUuS5n_R_3lC2Z*0^N!807)_+aYbMHGIE$2Ikb{>e#)0c#EL?j2=VHN>(8TO!Ze(nU8
zxLT@&4zv&=TILB)f8ii;M2c;){A-bE({2X|OJAaKdG0XK3x0KkgedU=D%J+V_Roy0
zzg@3fkiYHoorx{qA@J3;Yh)?a5_Kr32+iIuziH!~osgXm1=c6g${|2}Us%!)Gc&hY
zg6evd`~SSItoscEOFfub8=IKuuoRu5F03ljH2n%ABdr#N|)4iwJJ~#=T>u)@BxyDyd9MPRpMyBE8(<5pKI%JZN&kZsAl;or#kgMqehS
zf!sHOoUGb=nxX*=Xg#%Cz4gY-v>yt4?2VR8;gA{dE7wqA_y@4_!82lpe59f9S1z)v
zkR)?wOO^YMZvD(PO_;1<=df0!tFt$}DP((>3e5Bo+%1XAmm3C?i3*lO&2bc^c>F&%
zG8=&sBR;uZVC-Ra*ex?3xHv2lSI0~igbyrflr#N0y!U$;F*5g#vo2Y>*;m`aV~;gY
z52|-AKsS#^I0uI*`VcnTGdBv^zPCvAgTWl-Re6j#6lGKJxu&alOnDM*7&LSGcL49k
zoUd+JdDxmTHf@$je+BZ{MB2Z0G~UQH*}3Og^FyV;ih)hp|P<%v7#_15vK
zu+hq2gj+DB6tcxUmT6zO!O6EHn7&}YYi4sDwJupxJf;gHV`?akh1p;{D?vzZ&G9d>
z_VtoY%PF`S?Xv1gnfVA2dD)`1#rj=I{XQbu$!=yvH$}sHR
zuYUkE)GP3=bPFNge)(pd&`=Xo?rKK`GjH>s{7GK2+b`+EEwrruzurFjN6wS*y!n!q
z_or@n0Z)C39Q&Qzm=QIn-0FtnUItr>d??g=45W()p!8v6p&!T2I584YT!DSHZ+3uR
zk1A3fCH|nFMKGD@QAKraxhi!#=N{P~w}0+vZ2sJ2;6a|9Wiu-vy5{5{>q@i?H~kiv
zb`$pGou@dW8pEtp*V;z!u?rmjs%EZcM*HwwJ*fk14Vr4jyfbf-ZtZDJ@x=WHz%UvQ
zo++9KtPEEn__irpegM)uB~b1;$gzQ
zXWWa&X>{V)7qh0(frg-a9ek1Z$}27@t$_|CT3fHsBw%!0O3nY_rjmB8}F(_*m2
z^(d{`A}biL8xrrRm^9z>A9m=N?_E}sPE9Bu{EYebq(D597)+cBqGml^A+%4M{WIAG
z$ze$=&GdAD4bGuu(k2?8h4IU~zOP*CL()BDi
zOAD>@kuTJPRojKH=gGH*@tZqz@DtrbE3>dwo;M?}CXe2UOVc3IZ9j%t63<)1-%EPg
z?KxyRC=Vy}$aNW<96PRw_EB#&=e?dogZig6W86iM!XLk3iM%aJ64OuYu6jcfu+VUl
zNZ5;-aBf-35|hQv47&ybydJLJy>@mE9pR~ZjBc2kmvgsAAbj}%P}IITV8nROU4M>f
zb`leIRxvhnOBMkB*kDLh-Yo2Xcg%uM>*xah{z61!s4x#Zkt))?h7b{_eKJxbYlJB?
z&oq4#T0QE3JCOKwXf7{k4#2!b
z?2~&@Un?5dR+fSOTV`Pt^X6Cou*dIwP4@73g}+YjpI)CBo%+6V+@Cb;EH6$>#2njH
zLgW}ly9YOKUVbY;26H}g&002F8lR$%?i@2#nyV*H@N#BY;Uvhd6TQ8qwhvf8<#cq_
z?rE%a=6Lb?3kiCU}iefc-$N-pl
zDnMOib@K<|kU@%B0G-S{GJ)A{0NrzC*umLVh9eXVY|S0g)dAjlEoPd$zw4+Vw5G1qC_bYz!#m%kBjPFXi3lp3vND@D
z|1>q-8*Tn^nCpY>)p3g`LYM5@Jf+3nfN4-gRr3GJ=
z8NHEwODJ7S7-Av5s+0>@TwyGsbit@%YL4q_n17K}`44gAYg}?0b7gt5pLab%ggQ#sW9KfeS5zkx9
zQTS*THnP)NpCrigB#`~Sgz;DVAfI&nzI8fr{MyoBg`^V4MXIu=R90*+NSZ9U*$%}F
z4*o6dsbBrMRrAJB=uOKROuLP=Z}8Zsl6Z&W4ZpXcZos;vAOitTpVQ?oO$lckHe_KKsor$o2BKD==aGD4KmU@#T8cR
zZSA9zF`({+KaPHTraQl;;dubN$^^a$*V}dDH%$#rsB`hg
z-KCvv={Vk>s2^mW0I$`LWr4OknS^dlCn*wf-1`zaSL6K2$uHz-{Qg<-{e&eI;S@<_
zI@lq^$tvcuf%ULD*;Qobu>cc`k8Qw5lif{U@dn{U0ZgW<2)xVL{(aOv$pculrTr*l
zh2zF}bnb828Cgze*e`%=jTO3=<<7KTd;3ELTlTnDZT)L7Yg-vk+(0g>9@mbavLE#s
z_(_`sPz`Ass&Dh|wz>QL_ZoptmN+7BSkO1{>!I*kTcB;!!^>}PN?&VoXks*CJ$eWh
zkJc1-9-asa+_Td5=H;%RRHu4r=|i44N&Qt%_$iM=7ykO@?NU%E2T9bAY{Z4N$E890CrrBwfXp19@8EsZ5lB_V*#L6nb
zK!+Totf*q(dDNnLOZ;drrF6JTku6%YDfI)HH77q)3Fvn~8nSOljljzY?b$zohrtml
zQC#?JssP10sn6s}h1ZfM5|jPINhb4`l&?yZL5y!j4K2e2!J9tOe&AnCwEnFM=OBtd
zV;TlnphAlUIVMclY@f1rkda)iMpta?^TGXI+O8s#qYHZWZhnH^c+jiniL^H>&;p7b
z8}YOn!TWXv$;&cbCs3x^iUx;zxo0<2@{y>)*`?Z!9PNW>GEvu~6F
zCAz!*Tn4g@2s;h6Ma(u)eQ~2`{*DcwiLE{&t5l*&sB)IZBl-tG5mcBpQDOw0&yT5s
z6j`WqODaQrtTppuw=##+65|)$QTkMD1C>oljyi0Qw6T7aQNfZ_zo9>PB<~z4h5xAQ
z5KlvYv&qCc%~~U-;uTmC4r1&|1EXlBrsxL)oPE4dTe6;<}w@!}T)S-A2?J+@b
z{bD-JwQOIn({hBxpk~4bjyf;@HkfNk(U2G6?yhweOr68$4Bb
zS#ogP;Jx%}J^AxHYSf9JLa^pu=J=pmYnQ{$(WA^vE1N+*+3>m)5dP>~)T$NdgXG!#
zEA*()6v?y#nS(;uISaS8YvPOas-$BDB4J>Bz5h?^6H4`f{V^Vs@W^ov7#IIn-E
zUoFH|PSTI`h!RUfSXg7dCmfYXOq2|1z9Wz=+Vbni?Dy_OR13^Bfy}Bh%V3JLIwMO}
z!ybm|!T8Ibe*mt)?{12%7uA283-mvS=*jIsDhsxMc@Fx&d8NiVmy9Unv0`mKQ>zFE
zXy`k6zZwqV<3TVjGJFYV;1_<$QokOGmKUZHzW|Feiwua2qPouekztmXtwV=G!~T{>
zNBcXBQuKGPyOJ|5y9K7~09U{1<;8^HKiGT;?SAU@z@m!(j%)|JYM{`$i%jOjKd3D8iw9uIXq)+1TDDmgjIRVjaI^C1{}+@#*Ea
zIru>Tr6)TKlWs`iS{B4d9!L}(^QViJk#Bqf@EVbOt`;E-@D8+m?{YFWy{wQJFR>gr
zES4j6@%Mez7Y?o*@RHc5&&RVYx&<$LY+l9!Cs@sI{~q;gb_l_BwP5B+X#wBU`BH7m^e}DJnb{tYqT{|v
zaU5mf0-xxVeKoMb=-ry!z!N1vEEQYIwKt8W+@|3Hws3!SjUr8CS06Bz{bpi|?ujDy
zwHAcJVtTEQ1^Si#vtz*ZQ9zdR?P=3O*JF+Q%*UH!&dzsa{P*#y2fuqtv;(sH>5r(G
zBYb5KCc94mf3E$%nySKI8;z<(lG)gOB}GP$xUHD2ptj1d5fw@NK~MFgQAhW%{N+cP
zHfb8TCw+_|rL8wg&gL;UMT=OPJnsRf9t2LG*2m;bH2);BS#sls@nlf)hiJ8Yxxo8W
z?uUmZ5lCJyvXmxTnHk4_Uc?;jwP1$%mHOi7ctd{nEgjfZ-`TWm2jnp59itlVRGkjf
zdWt~FHYLS2h`jmClH>JNiZ;@
zm|PsYU7Z_Zy$J!ruoTd@%Mj1FDo_zvax<|@eg@gQ8aVi}&Utp~QJvy0eYvOtU{DWM
zKFDm~^8oyKO49Trc4NCOm+o^iJYqw3O8&6$VWit`w&H+KYK*%N3*I^N$E8%kYZ)saVYwW|Rl0gu76SCb1MgQbJZvG9Vl1BCh&o
zrc)FR#b%+T6gcdz(>V=7=+M|q+zx6YW-^lxW^UFtWy0dMKEw&cx;jfYYLy7Qt)h#S
zHx~mUKSF7+cFq#_N}YH%vP1N0*j8kmZQCw(`t(jgG>TX_3*)jmm_cWsf(3fW7>kn8
zzzP{yU65p^I7fwZ*enmNGA@Tp;_P<*$C8|30D~~y;BDP2$0p{cV`w?EhuzDQQZx1B
z>#q8btqCQWaW{H+i;jb(eYaENga0^dE|N{01_kbyA(8GV-c!{CZOh_F3oH%U@|N==
zg;TUAD>*Od+O+V{pYk;a^TtkZn&SKjdQtN~>Q5=&Zcdu@(rD{w{{WP)<#{>^m4Upk
zbLWNW@0h7wV>y8s*FOOMT%H!sAvFY2&ciIHHfR}G)p?DOAN;lzA?f`o_M^&;EuO0G
z$wm8@eEIO{RtiMbLdplOeaRd03UM>UbXBAA^+3k#R@j@2%|hYIoNhI-1IR~$m=}An
z3O@gytfRwXgWizHD*{dFKP?Uw-&XzscxS65cfmCxgq8o>;@}1d;BNz%(X;PHvR
z5aXB*`v=e-4HOjFM=-ZQ+&tY7Tcs4cyn?;aSrF2O^H-GCuksIZ!PO*+z2%obczek;lN&3PDuDheV;mAf{$`nGggW9
z2_m~4LA?a}G*p4R={--VVP-xz2A-91mv`yU)UFksA3}upaC0@Vs2Z+E*=UcTFuB*D
z(b#Y;pd*HrN~6x}#$3~=fTi6klgF4twu5LZ%bmZL#(fOFyBZ+e3LcdkX!w&r-FmCPMc{G-hLL%>OK?z_E9Km;nzHx)}U_Ak^gguY)G
zD;&xz&P$P==_xL6pFB^F1jqMR1&xDpaXPHY-{N6J^qb0c=08zx1XMZZ8H+Y!$0%xIzGn9cUvE<4mo+cBLZ-#Ucc&b
zY1?@c@#vGJl3dbj`t9ntkl#^-$!O3Ay(40RLgR)@nvpK&vBKy>pA43i%%Y4c@coFo
zT6&d2ygX84%$iEMQbKNy8R?=USqt4IUZ$6qYUQ>O-h6QaF$!ZT53&k~35SsEf^<6G
zV#zq(bMds&=%5m7^j5B?C{^OlG`9>t_Y(kYcz`yfNG8_o%$>#8#3#ZNAoF+cSWv-?
zaKyMc44MxrwZ*05OJX4QF64*T*3}2e@ZE+jN7DQVICe=bhMS3L?#%3^$;;y8CmV$m
z=b%$Zg*)O8_wXEv3hX&FD0fh_wz$Y`f4aIrk!w;ZoOHa
zU!}b;k1JU7hXJ6ZDq0fFv?K%q=~`UPS7ab4a6KlP^ysjw)0Sr`<+?3JSmuzBl=uu#
zu~lS8(xc$x2<3}1v
zd0Jk%GF!eP!}cg)T27lVY;XjmT4211wpcCEoUs5R2Q4EY_2-Tg4iRnNO|)*7Y(B9j
zwV)LDsneeA#MQ9r<4z0)LaDMvPz1V{?T20y+Y?>odb%C+8ai-Alq|Dk5Dg`k8hdd~
zu#B>S=Nx-kJj)_pTZVas*|>6j1ryV`P#WibeKGTt-CllD1KmQ0qZlC~=^JWwN3y>6
zuiBWcf_B8|#RUkn5;Uh~kUkUn%D>n!;;An8`{J~pX1n<5JJD$#;hD9PJcuC>-f{G;VRKGbryQ)N^M>b~|i-tkqLWe27jtsfhF@r=>
z4QfPb(cm0l?v%NYvGWUqX9v|6vk!z-cQzuG_qk|KlxKKlj=fkuY(IB19J6j#bt3cY
zTyqujlgIh3W6q;^FX!aqXxjDN1BbE(;P`8+QRt)PA`L8l+?O7ZfFBNFqcBwvjd1JF
zqF<^r(_dQ*EwXwdwyh7!JgV^{qe+|IRdFGB+F#>pRN?j;U6Dy>h!qK-6h26)4V~xo
z&7K-;kH!8P5<1`rn=R^ruzTT<2AY4U_KFnxWxHSX9objz=w
z;-cvg^V9}4`1TvGiRaVQ^3LyKNHq0Q#sQ}b8otf8E-^GzJFh^45sL!4)#Pe#ijZ_D
z7ZWrYnEVFd9blPTyy5{|rtEBksN;-R`*{hg(k81QI}g`WCD1F8&~+f?e)MoyNrp8_
zR-awp2TYIWKNnN;B=$%&)m{;*Ru|hi{5+zqSy5-e+i~;X@eoC}-WCnK%nZ9ic
zecNxyH9$;A9b+B0(o|*Rrzo9;qVv4aQFi07tr)xz_;)L$KB>Jr$5VY4X6~H+b}y{F
zf+`c0LS9}9oEqY`07}fmbDr(3q$?2DfZPf<_`ZXC*t6{j!ZsK2&1}vYhrp;tX#pbE
zvnvHFzP53mJ9QJ9B))oj;|0>Yvtu@SN=0#-JPdjsHZwY*UD~!NRKIF29;q9Bhs*-~
z*x@|%HWzvr4q4Y>%b)e(r-xTxNy(}d7In|1YBz>wl^VUCR>=5!)inC2%`n|20<8p;
z9ap|Cd6wRf?)_?tOcA&6)U@>%IX;$fdFTiQQQ8ax-i3?)1Gp}<-0DA$lB6|!oPN2L
z7hvV%^U90sB^#*5kg)uUC)-?u$=fG^lN;MdCBR7_g3_T}a70}aPSinPA03`IDhs=M
zT;Dmz|FS8poE9ZpzEb{IhRAK32~vWM
z@3z3C+x>R?xI`<<-p3QJ?YlC$>G=2JQ5
z?8OCxh;JX;7??;%x;RYY1gomDWh=H)_ias*m%(NN@z$#+we;va07&PAe{>&Z8
z!{_p?G!kI1D(lW>y2UGSuC&dRCKU*2?2U-#KM?DPCN{CQlUjj1_
zFak&~HMF1%S>+-o7mV{MOIvn(P4EvfDJND$QrYc%?)9Yner;J(L
zo-FVz(mpqVT1br}q3YWO@O&s$QMpPmks>W09-?hm>t#~{(nh}%JNUrPT~|YlhzelJ
z&UWsg3SlsP;k}n+4ldV2i!tV0b12(R>Soap;>Jth{1f`=un?$?ZK3$JjUTp?JZr0iH#Ztsx)tM(2$e6#YG8&<{(b9i{J2{zSz{WZ%OC>9^5dD-eMA
zF4F6GN!4xnTG}gi@^vlSNP%|xe@-54&^$?YA#&=7Ue6IfjX15R;}~xDg-m2wz`xt$
zmzdO)ckZtkjBgs}2#ZJ6hqVC&Nr_j59<|Cerfi8B;@i^YgqNJDaM~3xEj6jGsdTQdbWTWV(gK+^rD>slcC3=v`NA8vnqvV+8uoaWou{hFwwS%
zm%=)vW&4g(&U%ouC)bz)6#5T99sI~Kois?~up332))t51^qjN4Pj?&z26dKVfrl_O
ze)!doRefPpMD8V1>ZkXhk)b;jNjt7y$n=Nhfqc3U<5?s_MI{S6r;v0UJ>K_!A1LOO
zeG@E5XciTdJZ;cnZCzB8TgJm}p-m~L8_VO?Q&?D*y6MZ8vOH9Z^AA9L^Jyt|smGZ_
z;*)^}S!_Q*CM`$e6}M^!-94T3sxs0xU`9;TFp((ce-&p>-5s`i%x<0$`{AAxZPY`3
zWMF92TS(C-#B9Oy$4$=*uapt;DtT(7eW^S{EBGywNUw37{)q9U?1^iB8`IfrehFw@
zMu%?1Q*!|>RR+bc=w!yOx7gq>}_g|uYvb^
z;z?mg3-0V2aw1Y0q?ei;4I%$N7Kdnmaqhg$ZpTy+z@zN~I_{o(NEbo7&>Jrc^-@i(
zpGjk!BSdj)nHbmyC*~7lMTN&#m!o0`OQ6?8sOWuY~w-cgDi-O)dj)GcwM*>g(4uB*gSy{*?FM;u9CAD~8G
z^M{bVhCKeSgJnyIKn?I*oROMkKp8PF&dX;#?z?|UTupHaG?OQ~Fb#|NzB_8Oe;zO2
zkpyF2dVL~-W#rATh|9z7HcQ7ntQyZ2f`k=LLuYMsN*f)
zYG+RxO7o5wxvDRBK;Yqxs=z#Flp?YXHvF4$K;S)
zBkm&jZ@xtEUFV-im-b?PrNzN2wRxq$2(3YvHWX2_d5U0&!2_{z}%;YjlV07
z|EZ+>uXOjHZ2gZ?TVh^qbKBn4REzEYp@XR>SGwnx1`MGFB5iZWS$^afiW{+>S*8l(
z!&zxD73ceZfQA?H9RDmg4H%Ny7|lSaCdZ7}(q4YWMJ)xaNJK~M2;1iFvd_`8F{YqLz_8*my~*z2>ofI^Seydb;AtFI()}
z^i~>dyNtqYwT+%nX&le8+w8mkh|YIAKB`B{G%d5{Q-=x*Y)iy5Bg7S3W4j46g~S9d
z>Ek=zb3ba8R*^arQCJP{HwVGUQA<_QcZYh&)Sah@!h6q@NnNE^KTLBrsxb{NaJ^I7L&}17wyl3G-cyv8Ll^a1{
z&6cgXR>{ru_dj~*YR0dS0(D0^p*|YoJ(UL-2(3#iX^F@!X2#>!F%?I9ZD#9ZxpS#%
z%9G$IYMP1ir`l*9pqWU#xk_I~x+d?_YEFZEkP(hCbu-rZ2f*@c_@y;YY@9evm(GjT
zdwz0yd^)bxe1RIpEQ-(o4jM(5mUsE@bGOtf7TROKCRd%
zT(=xL)leztqq8aH{9e)g)ICt*__wI>3ROe1UW7@iS(5axY3VF_esu~l)@WwW7q{ll
zvlb>H+aju=?!Oflz>e?tbih=f4hLj_S{{a
zR_BeG+xY9^|LAn3b}9W;)4(Kh@q68>m5Ky9%^*^>uTiG(K#X%)BU#nqhO1zA>n=~$
zr-EP*O&xY8$B&16#<(LZYKAk1#lr%T$<&n>zLe8QC_vW15(c0FTnWQ)3KO6GBOTLi
zL+~gE@aXfy@{1(f1{rlG0(z$N;dWuNDWnD$nPG
z#w0H*`frlR#`Nn#Vcpl3qRUVQ8vh0du*61@zvP6phnO*wvXqKofJigUt3J!l#_uT&
zDd;iKQNN!mE{^7{VetqtO4n+8(U`R`;PVtU$Lo&*{yWsS>`9ar%X~QA?=4A)*bQYY
zeMx?otysUrKd;z9aDTWNxOgnO$U)15fj^RHg4xSB(;MS{JxYPuQPjwN}YH^^RR
zTNJ%L&hfXi9`RSwbYx6I)D;DC+!vAb-GlvGxyjv3(iCO4EIhn&
znEn>d=e{1PWWq`F#af@R&lv^X3|!HnKh$xT#EDW6?e76%PBq0!%4@6^U9!mKwRiPj
zl^P_80gT$Y#soaTS3r}@kESs#l6ZFe7ETcG!9qFUG*LhPCv)2Qrjq&EdN%COYqDeWPK8k!ls^09
zwNN06Q<|r?B;p@nTFoke(M_?1b$`UO6HO1eC{plS_4kyNLek9EVGHZUs7gJ^2;~!9
zHgkX_HAvCS#y!=EpPL1on4>LQ7$%SgrSJ#?MH4n(BL`Vme`a_^{}Ij#;nI}D$dD|b
zx4MQG6sl-+Q%w+9OZmnHMt#Y+fc|*;0u3G4$>Q5_MPZmR6|GIhYJNREuO^y0S
zqahnEzQ=Zbeo3uXm-+h^O47(
zd2jeAKvBKd0V@-vC_9q{vu_5zdcO1gNHSJ;b6>1V#=8n{Jb{!K8yl2Scc6TPuvDq~
zVetQARmv~dPENAkT{WvK$++5IHS}zStjhbM&0|_onUblst|wX3sAJ*_*_Abt9yWQ`HA@`^H=W%*J
zPAV@zTjcJi)SrA-YMLD%Mp6Cnm|rJ0Xv?w4l~P?OcSzm|=O)xS1P+=~S?jqvkj8C7
zSh^d|1p6B_EnSh3%^
zB)(~pM2S^(!INZ1(OJ{Z+RW0F$92L?VXEZ&!q_i1y2jWM$#NbKS2T9rAuI9msppTj
z)lfO&L~0EOM!RZigq*74j$uie*AWD@COWQFz|XKR|GZk`YT1;1f6Rtxp9$G$9qQ&y
zRre)wq)e0n%=UlK#+Q-@RrQ^l+ko=|xh`5-N-39l?SJD3|3Nb~(UcN>wHv38=I{V;
z^uZ+}BTpS2$|sw{#y*$MyIgMg);jScruA5{Ya{`=uSGbTXm$5;qiMRvzaV+gW{5Nx
zr(}8(v!uf{5I9*sMpiYs*p>`-!r2LtC=c(?$86(KIUk~mIiw~NX*m{-_O&Goab@`?
zAM}%}o)epcG$yxX1dW3jEQ`{GPC?lIt-(Wcw=%QQL&>HAE3%@jvZ6Q)Qey0&*p-r=
zGUl*yQtMnd23oMs7?K<85Q_qNOghk6yZnjBUr?#@NWCHC!+N(~
z4>hh%O5ygo!e8NC>9+2W$I961NEbknLO)M@qWqxQeSpE1M=FSZ>!D?JdgwDQx;(mh
zjuHE~Y)>Gnk7c-;Ns;mkHg9(3WUK)k(KKESC!SEn$0w@RCCsYt(DgaSYr1P5a$CB^
z3b}V=CYA)cBTpYNopTDZXovQB8AGDN^qkI*B0xe)zaO0yZw~s7ei`lO$+ThvP)}h>Cgs68~*(GKoym=oWY)ZqS^r
zXTFPul~aH&uWUeWnlA_at|=E%$=B83y7c>jH|NkD+?N0-b=!?W1AXK-6C@+VEaHCK
z=JG5MWD-OGkjom)
z7;)u=?m+;}ggXU1`A}>M*4dvSH|kS~@~&V=mCTRZyEB=oH$}G5k-0JD!fBpIjVQ>J
zY#4ku@1$fvZA5Mc{87HXu%1p1ZwmCLoP1yKLBn{KWZ-)BiaF*
zLhZ>?^N?!!{5)fy=jh=4=-2v~{-EofNjEd;^<&?N
zF-hh#KDj(mNThYBOh!J^6Ex8j>fv~;fs4EOdGF95I)KI2H;#DEZ#ioRgjhg)MuSeFZ4m+F5+tT
z%{v#4xt?Vw%~Je~(Zz(N>3L-^V$EDImS7+DW6up!OY_cK=~DYmtr8-QjP5Oo@Z*E`
z+e)TQHZn~|d0QmZ0q)G$QvU$;WgKd!3=9Wk=3xc+62Re9F2!PdaKib$nJa1HqPE`i
z(GvWtIllDj%$@sSHU&GsieEeWrG4?PBZO>oRd)M~8jtb)w3g)iM*J%q^=Zv6^P^?w
zv$7_~ydA*myy`2aLf*Gfe^2{@?AZQ^^hL
zjR&{%i0k?QHmFMoLuoqr<3a}K@S9V=Mb=J|k4?eKAwmVFM6uhsJ;<+jfw?AE9r)g*3@_s
zyXfeZLEXj4>21?gr})uh+#6aQ^}Fy!4G1?%C5#8*DtH&PKVZj}m)HD_1{{vTy$71UO^Kb7#)WeY&s7L-u4(X8ygh*7vnimJZP|q0b{8U*VQY?a=4d
zAKNW8PPs5&>@FIqpDz*p9&gAoRGkIfQeq6{W5ld+XZFd+B(7++%GM)%aD*<0)$=mX
zqOIC}#)xf^BX6musosCRgdMDY&|wZ_d^dU}sW@ge)inLZ29$c92tL5A&ajadO);YM
z^uj7pJ7I6}F(0%YyJLgWyJ)uIPWsdZ)$$t7#PaI&d|J{HbhWVB^%->;OS}eHdI3?-
z;CD0@FO>89BEm6EWUshU#B6cy+*`W-!~>J0B6Am9S4e!n;?xmC-`+RBn1t4}4eAivtEcxJ7o0MjQ{1x=|pFo^R6=ng{sUk2`QUn-*8Z3{EC
z#dGn)S%mLUzN(S3co~hU?Odi?r88+^Cvgrou)yoxy=(?FB;JOUJ}Xrao43QH;zGh6fv>duH&u8
z+Gh#UtrKC=E#H?4*UgWN@jstc`MbHPDJP{TiLy{=_nw5`hJd67!@jESaX&^$bB*-!
zeUhIW#p`r6@pRpLBN`4%zGF#D^W6q+H@oWj!;z!Y%+xcVITZPc+e@V)2rfm~Y;r?p
z&bKdV)sxQ*(HFAz^!UAk%c>Sc=cG9fCa^Kv>hIHFWVG1z>eo^-<{J>Gn*a6}x8r1g
zU+>=cV8v+h!O8^S_XQi10hRQN(^ZLmQ)S58%-d951roF|
z9pAJi5vsgmr~2uBOR!`?7K&N+bjg5inOv3q={eQwy|b2%bo>M3WJe;>
zTFDw(78;^!J}^z!10$4{4HkZfUcgsWuC5ufk~n){Ni;o7nHQ~|mr<7TF|t4|J(HUl
zAsIHyA7Bp0(S$q(-rnI5vjt^+4<~Xe&x@hNDY>nro6Gv*e|Z0hHNc%LhGW_&fGv5&HRn<>oT81Tfh7e2E&hOc3K_gHHwJJs77g3i4>!mQl25nGOHh!b
zU|W;%XB{aBR1rN@3hzk{oKcsoaf-QCB#?I{pHq#?F%@5(dZ9g-hg#~@`9K`AnWC~k
z56ecR5NaPRVfBxWIETS?9S&MxPee};EdJ;v#f1go>H1HyGtaU{w3>`$B%cQFU>qc%_!9^p
z-6DC*P9a^2v4}t)n+pUdz8=lfH97j-se+fuyK39}E}e>94Lx#}o-s`J?RXJbzLmr(
zQs$%ves2)B*Lc!rYXnX?;_n-a#zn&s$iJ{f{sA2IL>YV>O-Z6ZNT)PdR;IHReu#|~
z@4Y8`6$|C@D?=g9~0
zl5+|OJ!SXc-ObHM!$zWETK>I&Z6ylWvoek+nBHmEj16J$k7=QA#VHQbN**hfLjIK+
z9}axlJ~1cBF+3T)XEbjf@m
z>f4{@{45g0*(}UC#683Mk9*uz)G;t6&eVLtHGcBVgf}>X6UB$~9hO8vmcR#TnY|2>
zC!OLHu}JayQJj9P{AN)6y0_Fx@rT70PGq0In@||&#c{WhD_x+v*qli(qLnCfF9cjG
zJ>3;XW|s$A^|tEn)J=In$=php6nNfh5q_3Zzl6HcjqoZ
zHT|dv2EY-MH!J--rw}mDL8<)H>P)=V*7}Vj%3It4?J~BzI0oRhD~A8U{~*g-!B*p(
ztpv8YEDk6H^p-#Vf)w}cklAWZ6gM??a&F^9N||Ns(&B=XN)ZXtjMWwgoG*~a2kNC9
z#GxLQd}^*IxXlAfs${k$l5}TN<1zfQ#;6{ZLt9Edc!NdGv{Jh&1K^Y
z3?yt6L?-dEu)4t_<8Vq(t4%1q_7xfi)XtUWki-a6LzTZris>txMa0_1o6hZF)(T{Q`+5NmqC{hD&Ye>f4K#OO9ONoZ@Cg1^hD(2PM
zqb97RNlpRK@yfK88Ikthzam<@xy?X8Vm`@U1g#NRO3gPO%f01K&s&M}=CT}0D(pJT
zpef6sLH)Vt$b?mVBO$m?okE^Z39mtf(Niv)$kU=XR0*>Xl}aIQ_PMPe(PVRPv=u-k
z;7j4jL#RE*>f4Nxz{wfG2#s$?qv&9l{kdR!sXq=g7HWjJg2Ox}fmL{Wp^5!D|LR&*
z%~_n*(Rx#DEP2d4rIIf||6BFD=ZVH%m$gZAL(^K51y#_*gqjPm?jTW5h_&h&(w95s
zd|0#U7RK62xyJog6>zG3Biz}B*bJVitFHy;%+*$Nl#F(Sub?T#;4sbw1*@HtM};^jZEzvb-nL|B?el!_uIwe!LB^5J@h$@EW4Pm0Y^uvw^gc#&XbDpGHDlUG?
z5DP=K2-r~C+3nahpBht&4ZpM56_*_4dD7W@%)AUsAr$AKlADw#Se_dXYeU>fSAwE6
zO^E2V_MWxzFGa!Mah40suZHI&>7yUD)rM6H{A%9MR!Y(Ri!)Crjdo%t4nr7ChiPez
z>$(?EnpOZ#MoFwX%mNCxwbYwP;@QFO0g3=h5O*BACtL}E<|Q&-p#^>Okr@b8oOTGDxR^2_yp*ZG{y9YJF?zvZ(NjE@M&-i)SS-S@z&WrUsyvKq_nYm}?
zT+(+wKRwuv$PIl`uZR>*mDTmC`seZUHCuUo_SiA=D}17LVkTnxCA=j|f>PT#rIfPp
zUF^h2{Ez;(A{np}wX^0N@o_b&zEn)OBzm|Q9lMptGk{?(S+}jt-qGVlfq9b;W=?tV
zS_A>;{8cTd5&=?(;^A5nJFcJI(QqBvdYxWpXBWL%cOS!+te0MW|Gu!k8cdowWMg3p
zG9BF4$KccNcWOy1e2I#h^PN|gJQoeLq=4^Xn)8g_bB{5IjQjNLr%5yae0fU4gSOHX
z)XTuIo+^L#Lvj`t$398EP^m|#h!uJyb`D&ovv4GiY`xT!Yuhf4VC5i3#Ky5q
zEF4hWEsk-F0)aYUZZAJ$&nusRLvqYb917CoNxrHg<0)q0;FMIbD~kO<-RFTZhcqf!
zH;zSqNa*7VD3>IST&5M1a
zZT0oXIB}O&G}i{G#ONGmnS`{t=lbk{`QZnV6e@&%XE$AEy%9N9WS^PN`^%{lF*}oX
ze9?xzF8ScZ2rF-xH|<{BHck>)avi$a&OfTqHyE9KovU*z3n}?6iDebXV%c=a(M4%!MEzRP}
zjDD{fE!pWtm#Fr=X1s_df5n;8je433@$cDR6n9dfID6qQmA
z+igbOE(upe5g~NILBjJ9(6u{Nbg7qUGBCw1Zh14sA4FZv15?gHYO_8Ng_QmMC6Qzg
zW+~iB}PE_rc)`@gRu0sMRIVi
zB$ve^SfhX}aF~g#xua4bYs&4CU?J5}3;uPu>Jj+Mci25ReJebG+#4q0OmlfaM8LMU
zU5MkvUrT7ArG3wyKmk$Nw0%s8V6^VO*ma@
zYLypGsEy?~Mlk5Zlt-8aAc9iOA7`=I_ddea343RfLp-=WU!OpMU#=|PdgjI**XIvk
zH)ThMQSelhqN-~SStSOS2Fii)1G6oWahkG`2=SLY}ryl?%u_8j62LBxFoi{B|){62xm
zC|V>@qBQc2QCITIu0N_LAZf4WCEd93{lw$iU*-V#KO;cN)_;KNn)@#`K~h-&zgs}w9VdUPjdR@1*PM@vloAJh4Y_8vgQqKT82KAAUt%B
zw=P3ci_>UboX6Ix9nIwOTrjTmZ|fuTWN==x5urBaW$Wln@W@X^{W#ye2<~DjCcAto
z+YEP#fKh)6rKhXgqqYnXQbm*UfD{F%@@F;_)mYZUsF<*g=D)8YC~}+v*WvqWbZ8F=
zIPf?ta*13z#PF(R2zQo{-ci3o!Zr7Cza^cuA&&Mg>LB5YwkGqbUgso%h&z3PrU)gmE9DQrcA8%!SnN<
z7*-T8wSy9OU!S48zmz(x=L)N2N|zkF6MkE@UAx3==fK7eNe+WeKp}EgGq$EizG;JE
z;+sTvLsTpLSTw(EsDXJoe^AfssMe^erFGINUTOhywB1@GzM~8Iac0dvA6y?$f5B9e
zW}#R5vaJg935tK*gSD6ddWLGP%_=Jd2?bQe#|djw6-Uqg
zB{!f*rh~@Y3rnIT_0+FjU%Bu$(IE8Mk)hk22SFYG0}z{XoAM~rdLcO@_E4>7?K>vN
zxE2_el#|vk$m$}v
z2qQa9*E=V~ruGqX1x<*t+)T3*t5XVX2wq;jK-O}5E;qtHRNI2;&-ilQi(T3Br2WTT
z1;y_|&~JMUVIA*RO}GAk-lw#m@jEo`@4EMmaOaRK-lR-^3ih2&wQ?QeSXDO&etq|=
zWF%UwrG4vge^o|`6r&@}o@Vr4z4>eI6owuB50IkvjPD=qpZ$|ZQV>Jhe>vyFVIuJM
zGKp?ga`zhc+$@vOOM
zypWT6W5}^JSvW4JW#M>o;eHt*aGj{k`+l}anJsy$X1VqbtBZIpt?=3ytZRUFPXCcs
zSSKPyB2W~c>R^#Q_3t4FZjj1=e9}6A#eHM~adm
zoKuXCX{r(YuOLp$YBtZgH~pz%I3?{<9VGuDY3bkoC%V%L-v0pQLw_RNZBrOtzhHE|
z%(nW+x%}xb^;L~s7Cwa7Z;ByE~o$(!%d`I=V;ACg(k|MwCdwFMSK%R
zEKHmJFdEx3AN;r>p==d?O=7r54PMf1v8Dq5`GI$-iBS|hKHHT-@{9j)mHTZ56k0{x
zRO1nG#2T+;ViFXSeZj8QpoXcwSDOS9EhAh|m+t0)K7y?{yZ0UoHYJK*8?KgfxXueD
zqZi4;>(>7&T}{NG>mp}ft*=c-+J1=Z$6T*O0UIlX2v%=~rVhrb5I&;T8~J(Xin*&@
zNq1@mg)T~*Ez7VQK|60{OFd9=OVF|Eh{;jCA}yPOLF2h2TP5K~mAbbyJgp>7OV{nv(z~?pB&22vp;yU9;hPJ{qa~+o?`Kc8XUtau=!cLB
zpG|IBx7W2**K?KQa$(A7BaR=hM;
zNnp%}Fn;hG%JUs4ek*qhMU8!ZJ=Iq%g-g*o-qOOzkNaGgQs$uWS9V*nNQQ(gh8ONN
zsrJh4LF+=4nztknrC1ixe|lG0B4VSK-HL9HPz8J}|7+C-H*|&J#tyllwwDlyfdW1K
z@z-R0@VffM7s!NDFZb`5ZjP87Xadsdnq^B&{^nQu$kpSsR!-3$j%+6|ait!-Xuq4%
z)Lwtu49WR1N1x|5HT_2O-9^JTQOlfJU!giF)$Ho|axe?6KDjg+Ev
zfXdff1Qe0cp}Gau^&z*^{H5jlL&)9h;OP8($?}hMIR!Fn*uP
z{DO+vO+y376H~88^@cC?cNuDc!TcYDxMQ;zL8&N8kj}X+?>%i9=6uy{X86t1$6}mf
zwNcS1`TBUl7K?f4g+(Gs4kr3F?9cRe%-BBw^jhkAWWC!x138PQ>FZ)=*C&;w7NDi1l(Y&s^_}p1(~^DRIzb^770lar45z
z`dal$^=u;k0gF2pYAN+D-13G8p0S529G0u09f8uSw%oYc{v|&BXuHYc{4+&})ORd@
zdAEOnA1Z@MixQZ{5x!mK5tB`XbBqZsixdmmq`Qf`I#>a4B=CT#ANQC<%$t!^lxnsT
zYU*9iDQii0pKU7bYACPL%qRHNNVMm87~qu+Llxv0?NrA@U+gBD<;W-6{cVD4KMwFi
z1f*1Vf{~B0BD}*imjzjxvbaYg#4b{Jvjt)pf4_cdSqW6~h_h6TeR;@Udt95ODXU}M
zx+luEkKSCb`pk2}QoE$Qz_0KiQ%PIkS=*7+HX)i-8g9xxif^YoKl)R_{1it1sOXu>
zpkO{CFbbwf@{XfWU`Ej;dG=yvVB7XDCAsvE^+I7hpej+FdMpKRwJvi;R;}yL;efx}
zjmCfOX2B&}pO}`$q4VO3m83
zwnokUO-k70?;)x5i{MmHIbKu_c~R#Neg)mg^IsWt_8-fomIszqj=}Gt6Q&q-aKj)Y
z1kF4|@puaS!!f{b`abo;&1JpL#QHX)dMoeY
zw%QrJ5z0k^0V!;eE-@rUT1%8I^uQEiBOcn?s`Y_;=zJJ6{2ps#;DFs`Z)OZR_3Epl
z49!b0x8XTT+mo%}LTWSS(5VeAmf5DITO
zUB%^~V|=Q8C6rWgy;YYiNzVOS^oB!}@$zIWPOOA5JRo!_N@Na{AP+D}RI)${6s(v{
z^*KF#L3ueSPkLmPHq9%yWJUTcdu3sQqp`*PhNXs5Guz>TRmRib(aHRfZq$I%q&z;t
zlipWIF?z28k2BZm@|4N*n|0H^ZLob!(;wW$%V_7+R}O0NcZ%D$$w)CueuU4NOf}r+
zUGd5KB=cp_9O9=?o4l0~$yo*uF^yiS&eK#J9HX7$sFCn$Z5U@Xo(6u22=)faLgh%l
zOf5$6Tc3kGb`^nTefc_Lr*Q)-Crap_^9r_5&mtVR-{liGng0ROVrIG(D1Vn0io(*D*(%9+R`s0
zRuYHPhEjD5bV`C@Du@;%oe>_vG9@5a-+f@fEawGG(D&DuZ=ho-PT2G%2$J2O!YF!Z
zBG%a6yyDl*?V}Obiz!d8GKHT}Y|82;?U)pa5Q8A9XeX+MADXVzseMepOg>XazF5*w
zA#i*yE==*Zs@P#PsQsl4^0(!OtMGYrWuR*;-H)IZqY^QZ{*srfjF6)x)DnWSCfj#x
zeDuRwR~JUvBjS`&u6SPg<8+^Xz)iyE#oo{ms5YNyc*9M4vido%{^mk8d
z+w>FWahqx$C`E8x^VXl+Dp!^-F
z{AAvYek9vf&kIDVWSQw}yQ((KJc1Yx@0orhESQsv%9rX7wcL|Y1vlg1M7L<%uJkQ`
ztu$?JN4=1l2fubrENb+OdFwMfMV`0${&Li!CxeH>$BTIo#FEkm^(QFF;~gyzMui>?
zFxwwf`U+$O`|+2uk^T%;T0vHIg`;Y6@Eji3$`IhC4ohE9&X+~os!;U<7Ertrd7CbO
z@6Wk4x2Y2n4l)zrM-?QW{FZ0X@(La_!c86<`W&+?@1|zForu+Ep!`QKM
zVB8MmmY#Y!N@P+iHEjyuA9
zM*?~9D|%nv=Ys8vYu7h+zH{AgEs8<}$=2Xj5AR)>y?JXkwX;k%wK&cn%I~>ArQN8_N{Ry$j4hb&s8m4$)>;umu&aew>>
z!w<|JR8rleb63^?8nWZmi2+rVJx?tA6Z4d-h(P@y)gBFmCHz^{H4@*JMg=}cDWk>R
zpZNH?`;PZ6RSmv38c_CLUej0B(yB%0~#nPM@Z1@--hQ2@K3V
zGL!GiL+|;h(JC&sV^33=t&Pt$P`T{jDgDgpR5EAWs{!@XFbJ>>jY;nr1Pp*=Xk`
zX`-|T!e?E;wkbgJ?@oj0enojJ++DwuU@?fQ%!e^}7j;SK?`UFeUsW5Y4Cv{^$b#Y2
zh+WnHnZ&92Wt5x)FLqn0jm4~FL`4=luCalbK>ljo-f)j7wlKCft?>v0ELqxcjZa!P
z>_RSYxX!#Cv3QRI!WlL*AmttrawV01H!q0!VWV!iZp|_9Eqq@7_M}JALERvRGXS>I
zf9RDz&p^!BZ0NaW#`YKiX|(1cg8H#Nb-QCxw+fkYqp?rl3Phj$`zWdg2#vB)6SBg5
zvTPqJiYVdw)@=9ka0W!;rDLn#@_!GBSGE@09kNRJ*rb)J%aGgYbtvKzv}$LPjgg2%
zGYjn9c;a472FMT+vOK_XhVIu~2sSs>D;*-|)1L0l)a-OotcBGC3@H<@xjnGx+N_?J
z$V78QFS|34hDIM`AXani6z}1<*$otI;7PiZ5X2Bj|smk9TDL1-Zvu@)X7cnx8cvIzyzyWogDJ&G{8hG6r)OpX>5eH#o2?~+|(Xm
z-AvwsJJ~NOnM+Z>6u8i*kX4C2C4#fhf3a(0J4yL#rDVQuK+k{)0oGS?i{V%swd>z>
ziF9jgVtM%|Gm48+MuG|Zb^pSFp&BQ>wVa&Pxx?(sTcO3v8c3AJeoQ`iG~a&1PcY}F
z|I+QvUw;kP*hRsy*LCaToT+29!=-Osr5}Ef=XcJowl~)W0oE5dwP#7eU+)|33@2gt
zasL2S1e=?kou`jOXT;veWbarnUVk4$G@eU_-gxyNt2*9%m#)73_pRFx>9l2hs*bh<
z*=sts;I-|*Kftngs~!8d!HB+llF~)T?2zB@zRo<~Tk7fT2aBy&Uu_58HXjnq;t+j{
zOOdE@%8R-TP6J2e9%HCJhhA&EcjhVEUXH0Do`wIoSZr%R&*
zbE_BpuewN9pHDM|8zQ_^h;>(l3j&Hd8>UqFO04J@uzqDdu7n7xg2dTpSf4-jI*gRP
z$p*jKo4egG^;0E`aok|<2#)f5F(z|`3RN7&-jHPYu2#7IXLS1?vGM;lw%{xT`cksO
zFsZCki{mW~m++sK@~OLQlIk4HYoGd&;-~6UmKIlS3!0Xq#;l1s(F^N?BjVVF4}~m`
z=Tv0l#OGx6Q9R-pginRD5-r0&FDR5OVVAA+xZxsi}9@H?F=BRS53v!Yu;zZsiXBpmF
zuNPg-qVuVPV+sk9gU9EQJui=cjy3C^dpBLZkwLFe+2crvkMDQE^HJyb
zPC7*ykV~ja&aOX(KyC=lcnBmRR`eF@4244h7pfh)7$ev=UuORnc6MG7I~OFf|Y*x$7y8cFo49MfW_Z
zOy$1ggYxjKD4JvP@QQ^zznVpxs9F14{`hF`{eDP=FscmU478~uVCX5_>VDSWlh6&!
zTD<5zIJN7N`+h$sg`AgI5YH2RwZ}>Kv6yBbI1H5xwlD(>(aa67v4HUHA7|);{CnRQ
zw5M*HSSD4pp~Zg!<3m%lJx`Q{Na_Xj*v2ZP7sJNRuTP0o-uhX`iiI6S!*5x~qm(U%
zUp@Af;U1mO&TPBdDyhR)b%IyctbSRE!;RO*Ns+jc=>25F|DhtdC170Xw|?>_R&pyN
z#`;Fb7uWToupw$FVSg0KqNuR5yYj-iqhpuc{hlvcDd2~6Y9L^WgwA*5WqUdEJ-7HA
z`$X6P<#*Q|+_C+z;NtE&Qw53R4yL*w#ev^c%GABfCC&@bCJ;$+Om;}6pZ@6Mi&2l&
z7WH4es`bXxm8`xHn=l&2U3eNgcV#43&`L@nlXEt_s=a2=c3Bj!gd#lnSIFN`7%u8iX|6`0L
z&28o+QX*!M_YWW^`cf_><6(d-+C-Ub-%tJ{`=JPV@0|&;xG>qxS+|_4`eS9xL$$m`
zDd{xs6ZkbXd!SHbs%WiotDsl--lYn~PknF(;Tw#KjJs9Du`x2h$gZYhJ>bhM>|2Ye
z(dx$51Opypz({cqK>&`BfJ@Hpysv_Y8Hl3*odrrGe4EHhfMO`15L>k_j_=u~Xg#5T
zxpq!vO39fq$?S)WEI6!EI_VBub&DCq4e<5Nux}F|u(+DS-KTWRV}UVYV1W)qw!o2s
z7<({J{JNz`wC$w6L0#vy2Jc*tqa*s&jCfzbL=;
z@UXJ5PQj88lc$+7HOWeYv^Vn!J8~!{$00DBfVqw3aVkYp+x!lQi%sgiAs1T65uzgC
z!h|tZ%Lwx9!Fia=LLmOsxVle+_15*{=i4A$H$}aTL^g8p3{ErFKtK`po!%dO_o9D*
zg1mtuV4aQacw)`GAy-ZIIeS`a@DP@r+(5NI>OHb!2t?Ca(M*+-)UdT#p2}s(~6X-ryZqNTMeV$^4?Q@l)?+=(U`4WP0p!}
zf5bd|X;0Cd^Qm0qfj
zxDrYzf&(cu0+pcHrho}Jk<&KYvP7n@Et|pVX^zCL3&oioA6&oZDvZYxpvDfHT3Zko
zy$1s%d_SgMs2x2Gz&T-S^F-YY8fvQ
zm=vgBHFqVs8Ifgk5O7(A8o0C?b2m{-mWj!r`bhTUnH7ymwXYe^W}1|}FZY{;jjkPY
zOciWcKNT#Ftff{n?S>@XsZ*S_))$IDgb~pMv4l~W=+g#AcOp3f%C!cw0IGq7#a+)W
z%^L9St|oE(YyM9h61zXQvp~TWuHWZ-`bAMAe*JVGl)Qu<3IL`;UQSg7pahHE^Sogx
z6(~2<;gp1}NfWnwrI}%(WOUOOlUK@HDG1Xbr6gR_SYOlqvx-LPu);(6BncC5k>W#X
zQoX!OqnYhOnMQyB*DO8+r{*nz`L>wqbD_lbdCDRWr@(=$`vkLx{XA^ho9qUnrxiOcSzs?MsgJ1%hy>sfh#
zyxy9p{it+MMrf&SSgL?EylIme_$w&;al=@!39{QgTeJ!41k*YCIxnRzc93szC6lLI
z>{pJ|$8JT?i)Me-Q50f68~Aa*Qdu3Tr8m>YYt3LS
zPj?vJwE*@ttR8~$0p144fgXGTi?&=6hGlTtp
zE7SP)nnJx$1SZOI9Hj<;<8-6e?u>KijoY@ZzXdZz`~&fUS(w@{r%r#<0H`B?00Ze0?o9
zg(n+M>l16~6r*wjyA+HmJt(*=1Gcu=Qk4)NWo%-E@}Pbp$hbk-*OJ)B11#cz0p$)?
zSJ$6*SwRtC_-|CIcdpQc8Zkk%_NB&@A;Mf=DA5f4+&0}4LwRY>D;K5UVMS4CBZYF<
z*F^UCVFl%^^4ft}Z$-;V-|Skl4rob`w97?DqhO|j`YADKFXQ46WqV8v5UNDWYCGM|
z^pZH;zLmROAPL;gQaakd{o!LXa6%2e9&5Z$qK3oI9#_^qj_`t%Y^UGBk7}kqGljWy
z%y8}dGdjju!!K5Lg40h-qZKj%#`}t1DSK<~#G^lm^OB@zOFv6gNHf8$WMcNiGiW`xnlv$jeR5ADYGT$QWMZBE#Ra}D|m
z3)1s6y1ofgIX^nI-%n4I9&u&YIA`>?+!E-S_4BP^a>W%ylhB<{9RzVsC~&`&SJ-lL
ze~!k@?addKS09td<@T3qNJO)Xe&69VO;m#euqr6ZD?EDPYCD~mv*G`OD!eY~7Vy{-
zSn&@ltfZ;B_odUYvTBd&1d-Bc-;j|nF(Avp81Os?J3ihQG3|_MTf^!f#?P#Xc?Hns
zRpmvv_Aymk!OA+Hk7yG}C&ydUxn{bki)zz8jLZ*S6A~`&gL(Tx7-$L3NMXU#^E;b+L
z3q}FN53d%B^0wpr!W@T;>1Q6pWUtYPVk)pUxN+VjzH(fWXc^7WC38=Uz^ps~{FZ$(
zq~f+7#|ERLch@!@;%;Oo{UbYLqsUkPnCAYp0
zJK;Nw@@BP0`MlDog~f_NuNLjGX`0Sm`J51FH2M|@lA!lrydNK@qxN>5UA34BL(Sh%
z#k!AId3}yf7@9RXvUc=@2U#H}QHcvQBB=5ytEl(hUZ1M;(1S417BoLG`Ud{pW1UP8
zwWO~$ybo5IS?_3-t%AwFEl{p_PYP6dja8FMU1{JoYYekGP}f~?(-^a9Fn{bI?rZ7m+BLvwtIJfWdnd`6>KNhckXJEpm0
z@0*|Wy>~{t^O)|ro0CJ4zMQ#^7E(grNf@Z2CkqdA%Q}VfX=Ya07}7
zY#%Zjrq43SdESw5gq{(DzGZh>uK9fxQ&Lf&;KlR@yQOTx{{Bo%ARZ18-|Mrht{KoW
z%2o<_au7KBYAe|R>vI(v&5)!PB$kLcIIANYd7MasN6_am9FAI~p_U_H;2H4**_Edl
z%>bg=5yD2V&o_y$@FYvYfcm>1m78G@5Vxqh@s=)!S;=hJN@*e5zlW%ySm&Dz=8VcL
z7RVeFs?JL-cdgD`Mwhlc4b5JmrWy;#71j4@ZVjBDf>$<&Z%bE38gGa)+KAhQzzyv+
zGYXYqLZ%@@Iad@k!^pR}vY8?Zh?xyPO_NuOho+(|$Q>lu)xwYUl(z_L(e65OSpfL6
zw{#?}J%XlCAEBuDd7Cc6*C0E!WRX`FLQitI@j7;90h{0hAjVaaYX}T^?tHa4;zjM_
zGP($E4NAdP$pPNk+JSSoM-m!PKin~tc?l1
z^gY^KWwa$F^uF-hLosM6^2_=SgSxv1;H=qzC?!+$YpKw~ctS_(Yxt(x^EIk*1PH9~
z3ya4;Kz7a))A@t9+XG!)d^;`-3qBy0UE9;BD@7Vn?j?IwCq}mYQ%tAkt~3Ey`5=Zd
z^K;IPl17LYu4V~7@zbLH^#1nN7pZP6MSkj9HrBo=PK+=3}c3_v3Z$gG&
zkYY#uZ9TXa?S6Ed84)2IrEMmSNV`y)B51GAI2502gs7*J4l4B=F+M
zFsr{^V;|*?;sT+NZcgEvfK~sCbN-)v=RYsV6e$4bXEqhqx>pG9uck0Cg+DSV0xCuO
zH@G_DS{35K>|QZ{^QQp`$*TM%bbA*6zV|5w?3=f7j7jkn2T{l^tE%`Q@OQ+U>JVGJ
z@kGVh{?d=yCr_WD__s{lGAqD8KxwD1*~8C@|5DrjcL_6l^esMWT6MU
z@qgtA#`$og*cxfYgsb9-)#{IpJ{p|tvpcp^Ef(ZMZwoFjDbO+DbPNt!(VoyG-!v`v
z2FLtcq%3{qb1+YMR0cYd>@t$ft)iQ+FTM3vSfuO4L+f{sMiu&_)hKeJCpTfHnEH{n
z^}tD{Jyl7*67g`vOigax?+6k>Q;KRmt-xLHUW#5jAQ#&laB*m-VikW-;j!t^(kLn4
z#i>*6uJ}8kFVVA>#FX9E{r(?7VLXnBI$%q(9eLUxTkasgmCeH2!pm&P`8x?CJ55Nd
z2>sY;F}diScEsG}CHF~dCymXY?=2CinUV+nddg)lbV9U&U*V;35B(fuwDpE!F
z6G{m1;`XqziXhTs7N}U1E_YtqEhSbZ^JIMjuJCKa9hpgr4Lz5=j4+F(Rq{|I7C9kt
z{_^2ADpMFueDON$>cX{ddfC1>&#)K`?^=r^jP=xF$R^i}-xr~aDQ4G?bt29z4v{i>
zpT8vixb=^~NI;QSXjh&3@%w27iW2E9j$&zrvi3i~#j?nV|4GH!-9Nw}*W>;_fOsSM
zhfx76FZBT^s`pizn@K2*`Gfe5J9WVQK9jvVUu6MwF2^dJ!j8i-O(S6IJ82C=WtuEm
z`%JpSpK(6TUw;2E+2FCvqOa|Ua&4$aF%7<}&58K_aoa5oB@)8LOAbkAJ;Gx?fPZrG
ztrc(Z_l};Qbk?MZ1TT2<#eIzpA%X@#ziF@Ls%*`feoi&O8;9a
ztcGt|yjpKOsFtTGG2!Scaj4i2h2MGhnqB9KY}5dhGY-lZRd^H>CO?YSGy
zpDXrA=Qi?yP5c$zk9py-`}qF=Il%9=EBQKQT+R7BYCws;5I%)$w7T*Z?NMDH+Pm7{
zUz3YygN~W6ON=QP6-&NR{qkAX^i!x$S9Ox3jE4WL8u)vHwjV}2`&;Z(;o`h7Wg>q(
zCV<2&q8|ES(_D&ia?dRbroT|7GKn+EYbzfKtBn`~4AP1v0FNRd0w|W#Em!=&@RNs@
z*m3OzA(ZhUYA|!-ssRiKUXEMwXGYP)Nm2bX76?!xfhv8J&$lU6V-tMhXsr;?_qV56
zt<0G{Cm-1(`GnnYVIp6JM{m~6s>XC$4qG=%;ssgZ037(lrGhI!OYX;cSY!lQS%i}O
zvsy&bPW*I(uZ$qU6Qbwsf(*PRbYilE8-_}ce5iCOBsy~uKI{u1VA2Nr=i&0F2k)jo
zTr->#)8ZM)W=3pKUjbDEaT7-<2o-=MsmA}q*;}=>!A5I?xKo@`T!Kq+DDJ`C-3x)>
zPO;(+!J)XjyS2ExTXBct4)2%!%{6l}XZsiAAjw+Ky7ipZ6#;h>NZFcjij!B>5Gou5
z+)-vRoN?m$eGGG9e3yi*p7pib=HzkMViAfmu2e}2Wrb6;p2qxynNw5ynHB#HzXl(b
zjDc}~7ijTn{rOPD-&K1y@nHTnb&o&Nqf#o4y(9+%s9svq
zLP7G@2D&|_Ul&$squ$JrKfm|?S}&N7E6}}|zQGfjcxIf+BiiQTJMSdYp|sjjme?d7
zS0tTZoI2YF8AGf3+;wY+Ex)W`5}iF|h-9vxd{?8K7zl&bqwix>=aTa9&*e8PpaQ93
z^2PZpjI}?EH;diC41U9X&+zuzkQAqQu$`_d`t)mS`{QWHMGBroii~U9CKT
zcg3tubgruUssqX5nDLehpmAzV93~CYd+a3B%#=H;w)wQOe`n_rueZPZGoCe5W>9rb
z!ltauIhj)_G3<+5{m^zfwNKe~wBg3oY{nT=Mofx3t8X6Dk-OevPlDEOU=iWnNj-H%raOwx(JC;i6z*OHj#c
z1!I%Q?&_z^1kW{B!;Zq|^HdZ^czsjN7>mVqAja|)1_oPJu@n8oxl2p_IaaLMkXGH@
z=t&4|O+11IO3${)cqQyQ)0Mk;31=wA{38?LIQ=T!=6a3mf5a#hU`6`)>UDUXufc2+
zol9dN@9o~K;$PqS;G4xE5u~=+_`Ts!ptgp
zbhXNKGbcp0s*487e#TXhT1jc_GnP?9nCyp6*pK5nDH|<|OJY8w`c>#6zsg3S23CWZywJwHs)WVMJ;)#i$~QoWUDp7vrQOqvspi2$W)
zPIJCLf*{uSOZcaJ)_$)|(^T{=j}7wO*@RJx@lK--eJ*k8I)g}S_5WZx&#%j%)P;&C
z{plaliXY0cjye|;K<$gRvq4UC_0&xHww;_JolCSznuSFxKEjbWO0GVPWEFBPGZs|x{7|Q<4Hu$fnd;Nso)KO`dBPA;#Dyfk@1>yi6
z?Y5ea-hm9snB4=pC7B*2(x-9T+=w6Pbd1Lw0g$+TPp?dT(rz7)V-
z>TkwV;Qd)BN}iX$=X#|%KbV^SdOw`LSk%;(Wax3bG2X7=)I?4qV&2f?)KnVQ&|7Ou
zK$+dVu~~eBmT%*{Kws_C0nv@)venY+*Geo;#d9BVz-lZl`4aUmsVQ$E4^p=eY`rAa
z3IDUE&^#6C34F?yWS_ojiaBRKRZa?>PfVG;}Xk)iD03uUA5?RcwYom!`AnRyDRngI6p
z*wL&(-$14bwurp#KNxRP0Yb)#FG?E_xr3fo(F=M1(l=lOqlT6kT<_`5OcXkQAj0=z
z9$KZ}G$$W(4x%gZ3t!J$WV0x9V)L7bE>2YBwCr31NB3^O~3<&>n<
zH4^Hdi4eb+m)3>#C{d5xzymz**y%ntqkYsn#!9?&V_;OurMszli*g
z=A~4c<_C{EofYo}PojF1{7dUkT@WBAp$IV(?epj{Fv`%6%iCHHPqI;$uW)7AI>n+D
zJi143j3`3MEFW}8w5`EEGOhL>jF4k)_fc>fO&hwM1H4?7n!W_H3{CjYly5@?HsWMx
z*)$pZ{3Z(XOlFbPQkv;eLGzWgQpc
z!Ua8yE!U-SiCMs|FH0&hB5Bn+UP><-%NxpRMPQA7ybg$09g(*NvgDa&muG0v0)@poc9
z{yq1r1P?6)6x>N9@Lk19qG
zv`pN8L3>L=t9nNa%pypPq{N;M_e#O^jHJ|opnFsE%}vR{K!?_tI9YS?Zm3irUlL=r
zceShenQlaZDf@1g+5-OU4Q2a4`2ObF=cY;7tiy+9V`NoUB9
zdYI8N`?e7Dn_`C|Y`;)yTCs~#J?-O~fl4I(Oq^vki<7Qefzz=35fN!XzA4Ri<)fj6@mT#^`azSiMtYf@O`HkMXt2Z*9mFIqU?
zOBp=YXYdC4fnAl7LWv*VP_deB_4O0v6~}L^YHu|@lv`~(Z}E-NvW%LV-c*$}J~#w|
zUnz>WC_KBG=b|E*?-H_CWDCk~5PS@9;nK!5g{{j-u_^?Q1aZ#4&(1{VWZq+k
zU7~1O(VAVzI0IMp<-FK-3}{yUE0zs*clqs=zV17vH06Be)%GVPKM@m0byCBAtM8!Q
zgQ#I8xkFS3G=KLGBg&WFx|>aK=RwJsC2p4WVTEb1Xxu>6)iPj9661@U3xW7SQLKeC
zna+BZBds7dkqz?N6zITC*=)_fWNb#R+kl2BdNw5~TDr(A@~Lo9m14XjTbg8X=z@FN
z*|}Y!1-~ZCX;vy!7^i9~5qx9-EUwC_cI4Xs=1Rx@J(1`^tzcRd_s#E-;jpuOYJUG}|Nr8c
z{}0N5Cekl#1iYb{Jb(ZCj(%Yk{tD@ZE|(gp%~aIp)U8Ne({J)ZLGyapAfSi>V_gb0uWrJq6L?5g%ql$3qloKw-Vw2$KZ~J(F}HKQOz#Q?vYc@MD<2S&_?8O
z*XpHRgg5%n`MTFhUt(=}Xxcj9X9@qBh)FUS$;|68a~RUgkwA(2ic1?qf%C_d>DTIi
zFiej+1`jzW1%KSqK&BmdoGU)y>!s`6!vX}+7%cBR&=>xovoUVS{uHr+&h-d%$ca#OlnZwjyXe(ngb^^6;S>R!ZeR~qdoKclNYCtXN!
z?>wWyZ`QE1y{b2Fa2~m12M?EL$i+l{_Z7tU+uQiD+#Z5`yTjO#CPF)j8awGvUHD4q
zI4sSiyC*xW=X>#aizb0B$!g6}s?(C>2ReqFBV4qcTTM#pL6X)VAN9N??7j-5!bLlK
zziUEI=Ju9Lnfx@Tx$liUCrX;Nh;B_hDL0C<(<;=3KpvJGY?wB$6>JBT$6w^5x4eHv
zmRoN&7ozBllq~O&m_u9)hpO1=Vp16?zFNc7TZ=6XQuWj1&;g;T~vV)udK=AlE4&y{tu?|
z**%OYUZ9PMI+N~Nv)|8{5nN{DSUEq@Qm
zv-S1-DV)!6CF<=Z+a
z)J&ng<`2e$Kr8%4%YmcA$`v5>t?)O|(^6ep0n0ECUahYfRRO5{VsU?Gaor4{D3S3L
z7+<)1GsbR9q679#ZK005YBsgBnsI)%rq~U>BZb0dS7eU)Rp27u%~k=fL(c^VtMFS0
zllH*!JN*Dpz#oG*;mT&qwzy^CVx`8n;Ke-Wo5gjLU6Wj(fybHyf{P(<1QF46H3`Gt
zS%N{8Qe|>(TSW$>%uExx&-W+3%<-ed^vLgywlpa_O>yR;>RV?tbCv474rL>+J_5~Z
z2u=VT{|d!V2~4tiwd*Ox{(f|g-YeI4i%n{2UouWU4vFU2N2Lq~DK?io{nrR`=$Joq
z@*Avt6`9;#zhvXX>}FN3i&zzsyh5ZC3!xAa*#7at&r6OtA*#VBDS;!6uF=L;n9yd5
zLLkhkdBHkK%Kx%a^##>94+tR0_(WS3=bo79bz!p`CpnqS6vzL-5^Ub~b6&F|FWOlQ
zhG0%Jj?{lX2Xb+hY7lW@N`E&>f6hFRd!=)8vXq4*$F?=TC~IXHDr`jiH6~D1!W?ZM
zhDQh@R0M-K+T6ak8lz-ye_@#uy?tg;6{-r$s;&$}>>`)Y5dlK5_
z?4e7);D$lxV_tl~3rzmn3KyqlaSvb}@y#ngC%fahnGW}nHO@0;)Ox{GSo
zuKYS|NeY-h`Z61_S}Fjcg(byBvdk`1Rf=^QfVm<*PY|Ec_!-+{R`rx@dBx>HlMKF@
zba#`FMU;pLF3dFLC?(t`p+nbnm!l^i_Ucp}I9*<%hd4#82*#fmDP*Aqq>L;vt?M?(
z=1QUwcIpG#Ol$%Tuj@G4`*ExEbYdFgy(u@src`PlPVSQ`Hnw?8WT
zuiUbRLsLgyiz+TBE8Yodw#{K9eRBJpz4dfN7gLJ(iJ8@{DMy-`j$g*oGl}eL
z&rzyT4QsDOrco~_Q6+Gu?6VHS-eAa>s08l_UjwtD+|}AJnp($B#PR#edM`)9z~uYG
zR+ucZwdbdU2(9y)&RAmJco2J09Py8u(>!aqTsw=j3mXH)j4v>E93^K{zM4yR_K(z<
zJt+#ZOmuDPf=1~FRNs(v3P&ZV)df3{^;|;AzdN>Hwm{Y|B5AZKdBy=LPb+Cv5FXIw
zumqewP#xuX4eU^}_KIlYJg3^?>%7=c6E!)jnj#p^$F5~vlVX+BA3exN(IO_1FJ^?6
z7ryuR@ykkI%Lxf0S|U^fXWpZr7D^wf%9Fz)qoPjn^|B=q1nqK(ci2COsoW?R5u_|L
z!ykaNpl^YON=m-}A`lY)7`>P{Bw@-b<(rxbuuxJY>#9{_ZnyCDyLHe-JR8vgN5r~9
zd7(BX18a%FA|p=i+5L?K=W=z?V4MS`KSX3WKCh;*~o~%Q6p-nYKtU*qK_iBT_&n=
zX|S2=6#tm|>P-+fPlae@-_*}NN1Tb%RWvj4#=494Lk8tGO=#uje!}1@?S-WKA+zdf
zUEy(40|2cVKeeqrCaMd}RP0;p0I0}o)01=pIjYBa;1U^
zM0mwuTkjv`97-T3m)k-K>Xc*TBR{M(wrW}3(PLpXvP6OLm~)VSR?BS|V+ttX=ln$w
zR$9hvv*w+(0Uq4m_+gOs#ri83rvl-MrI0%Us>sDR8tgtr>X>*p9NSrv3zg*V_?4zF
z7*?1po#+nQ4f8xg1pQQ<4Q_!c90v_op~Jg7Zf%gvP@;}(Rzckj!FJc49hWWgzfN^B
zax4~PL%oB7OWvrr<|DA%g@I#R@(-eE_85F`YXKia7s+8H7GHri%$^RkQ9g2!3}$dsy)7!n)H2i1pnP*a
zW=RGE+=t2G$w#IfV$E9M%V~4?lS#BMQ%ZvAr+;Y@27;7#=8W^_1ccP5;x8bLk2@^U
zeR
zoj*kCpaeIWHYNJIa6Sav`9nFL_2Hg?*7nTg=2_#Qf4L-kbcJZM6{vlWC)>r`VS^WMf!De!^79=VLQ){tRa<$
zru&H!J`ynkewn_Y&t+ymKj9Pqkm
zl`;gAi9eM;)_;RgxF^`tCv4Tw4}9$k2&d-94{J-FAF0<(b_S%7`k2f`IL}Bb
z#f4_35;G7Jd;9TVu~Z(E*%Bz&klV5mWkFfbya&{FTeic@UF)j2{k=eV7_0=i;Hsg0
zvJ`LMR9>Z)DOMbSc&t}yQg=ptRx_wS@JR+)l5n|C>oN+}b+v6$%b%^kVIyJ_%-QwjJl9b_s
z$=K?jS&D^<6q(HQ@MV6CsHGQfG&~b-g$XFt2-gE7X+QZJ!ON^%3kr$lQHN;ETus1lqy(gKn2^Ua}?#-=}$kBR3#LF0vnx=mAj?cKayWm>B8dTLW
zecAgxf7Dv7|E|SE7-i^=)MHN~?g4#9Ry;V`;`KND`z&>+o`}_uAODOjo%Yb@?{JV^
z{TaKc_3KSRvdT^3Ocf~o3JN+>SQ?|>2}L`WBA$G0Z^hd^NhMZxAprFu)ltV$S%KQI
z!#WMucto|2j)gnPdO&}%o_uia*C{*GG%G*Y!bRsq`><|BzqaOu34o$9-kgdSdAPor
zi+d(!uQX0_4~HN|vYd-ORMFZ(38SlOY(aJ@ld$@
z`jqt%fV>HaS1mi9S~?#Rvxv*Ku8FA0pb0DCdf6^BQfqthuf0uVf8$I5cIqqf)R!b&
zc^6u#JZrvSi<9}fH`Hy?{Id=_&2AWS>&SgNi`Oz0e)v?q^pP!
zZqrK8R|rs6dD)sWJa43QOVtJ3Y8%--AblxS+wTnETNSE*7w+ER7N7;2p#zJbCCw++kOUkqIf_e^HC*ajzL@42#G@CiTJrfO
zOxD7ZSTW57ON*KK1Ytx+J^S`{w*7bh5#7H!wwJ##uoBI&)_{p8Kwh6pCdTXkV4UiR
z0Ah_wbm`D&TbXvU@L2+Ikw5sn1&Ws2+8Rl|OP02FJ{#|V_3o;`ZzH3kl>GjFNZCQ{
zWghdPRS=;b8Qo&3l92M0J&rXR^#?OD!RQnO!ldJZt%0}B)~-YAsIuta&zj!x>DflFlqYYOE)_WN)I_U+$X^~D!-RIX0Wnvb3#?o^5
znKN2hy5diIUE!JyhuK5l+q(pDfu@Oq$DUxt9@(hRY6x25Gz4(r)Bnx?ui%~eIBsKG
zte5oOV{7>L@cFg(Htp|@QvboAo{*iqbCXwpC}*##EkdO9XcF}Rv7w85PFl0!2YO2J
zjhPAJNFizSPd1f<(hxc7~{0Z(7R=F1b*;g`Erc0&YKU+Ip$rxYrJh$9^=V!T@3K=
z+#13^EF+0J*Gqc#gEfl8n}*il%Dl=;DoSi=a&m0+DT%?(Su!E3dcTYi>;szpME5Rj
zS8I6R2PEC?{4i#_e+aV`wUgR3FUY?@1L7?TbgjZnt4S+k(%t*fiXba?9yqLt#4X^aA+4PNCc*(B`>S&>I$jPIM?G?qXYW|Q*+=!lE
zn3S6~dY+S=-7(h|cN!qD`ph(T>Mf@hq^&VlN3%Y2aWl*v?UBrpsS#l@fbGSJBT>cv
z`=>yg;ZfO~j3umAlYC8s#6BT9(*|4fOP4)SCDvHd^Mfat|ECNmum)K@t~sB<)`)&I
zIdJ4hIu_Gi0Zs9-W*tAJGtb@gbA0Z2x#k#z=8MJ>x}=)&uujm}%dWYos+(P<-xm~`
zzol^sa)ma<6`4XVuu2l$Rl+FLF}dY>!F1#4eYi~V?P3KxId^4vEbu#b(xOv
zxe0g(*eX^IZZ*E3EG7`^*>1gH%(x@Yc0FJP%fJ|VPYg~6{`&0!&@LMEe(6I
zj`?-`d)o(ReO1nh{A4=V{0VTx4`2{--N1t3*D0cPQTzSvc%KDyJ`=M
zO4~kvB5sKFP!ddTL=J2&Z~A#KTio?iqN<4-pRyW=YbOu!;l(%LV-?w2=h3?7kPDA0
zh~@MqEjD!4*g1j76lXN^YenT?eipiY`uxzm(g#USQ@1gn7zz?6pcj#RaPuQyk-peh
z%#I~V(IQ|iLso@(wT-#&w_7yziK}xMJN0^$aVY4qPeqCn5M?D?8<2txW)(&hbFbXU
z07>o_hpGA4Wax%^>}B~s`)${Ff}soSpvI^xPDE~fMDCKT4}El@rBEH~sY_+0o}C(q
z1Vpe=p8gbUYUSy&Dmi|Vix=h7JRq5P=l^eU;{Ym-9;AKhcAkG8Je2A2jQ+cJ^%
z#K76ob{$y42T<;1P
z`d@AGn_$Fhd~#qwFfafwDiBq|f^Mj6m(Wn*-_E99m(I|Jzqbs3Z|yA8-2*%lP^KjW
zPDn%vo@k9op%vYeI5cjqUhoON-xsWcnG5CpdB29}H>1n`)~tXpW*T6+3*h@I?wRZb
ziZLF_#aY-i(~wp~HovqVWcuefoshsb
z|7UQYeDkCTjQ5a`+?lH~U2^J@MAUEQ++mz0U+-}FIJ*-}
zDqNj*VQMwf(y=rI?h?X|KJTe~*J@~P(*UvWYVqWV9@W&G_n`1FuUL!c>NzX7W=vn%
zlxw@eQvi5%_(ZI+EL|rruu?56#n@H~r8vQVo6b0QtY&>!x7D(cy$7NV5fWL5qK~17
zO9(DeRuEy&seMZ06%;uNXd~$yC-`|gT!zaR?=$@>c|d#c>(+h)+d*+ng&b)kk7DRXhN4a@3yRf-
z(nijwf`86zWb2blO>fzC$iMSo#qYu$Rt%17lO4K-Ic;pP9&jqL&i5HWI>N`{ZHsm#
z9g%D=AJ>;2Il3;`_P-DfmN2aK>%Uk1+Pl8W?CSoZrkJ?w@T-`B36z-hK0M#a=(#Xf
zO?k6#@Ru74J?)|Wvn`JXBPQ{PTuJ&qsPR;EO#nXXaVc5cEsKIx>AUBYL0<1>j+?;G3D-2;ifXB9*4YHKFNJb~&Z&PV6bl
z*=jGnKyS$rxDa~ug+27z4nTnI%q{OO77zZ5x{HI_B4op4!eXVxrD+cbkVNAK3zvq$
zijO@zvfhkuYuY_Mk`^sh`qdEe@}Dh2lGwB2r6OE53xnzeGewzT!*bqLJJNYMYOu>#
zB_LBJ)@6IqJc0wTuoU4=P5C`ZBLNm`>pvLQ*JvjC+PrXE@NsN@ArZKd*SrQoa4+QL
zeaofQo2*78u=^>T})s)kdiK7JVnF5Z`oR3i3Ps
zda$=yND#JE;-V75D-4-i2d_S~LHOX+@|^nG7LNq+5;8+jToe*iLlnh1-{HQ(SW+@;W9=|-_-_mFU_uq^lKKlqUzk{X!(qhpTo%6tJ$$gD}!Wxn0XAoz)Si+zsvXo4q7liT?*BltrTh
z?1x|cuwDc5AAuc)KW%T1<-UJ$X-4W6oRhLh(F>yZ$s$hGQxxC#j`h0SkhR`)mDPm^
z-2
z{hG7e9NK9??!CVs#X9)KRxKxo$`?KHqwg*EzB_$=O@$o+uKp!a<*6s_OEvgPmn)uj
z^lch;VKJQx0Ze(tjZ7T-kw&2&(7*a~t;i5i`St=X$vL(yN%up3R>^%5u;1|Ye&oUA
zLDMXz4=dB+oP^0FE{M=3Dxsbm#&;p}&k8eTV-fCj{5q#h$3%kQ<9ti%`fz8`b#v>A
zw6bo#nXVvPt(qUitj~-VTvAdJ)(oHLK-No5S%N8hKsv}WiYG(sb&%-JBAYKHo!$`b
zr!+0HU?|keVg*1Lg`X>&UYLQsAtIBS2e&-5#pb+yhI6~u|I;8x_L3w1)<211%Yih
zqynGIcGM$@q@|^FXSIb?Rl7
zI_(taeuWU+hWs}c+k-iDUp2A~me?W=m=~PewH1gMkzFANM)V*1rCbMB!4?W#TT(Z&=wN4l(~If^@Pn?f2<
z*oGvZxcaXGP$Kj1$s=3vK=_S?OnXZBcGlOIkA6o0NWMm;HtkhdiIB9z7-EFU0X^(9
zUTyo|glUV`7YSTlh7vd$(Pu<2d?)Kj_cSPtgM~#mt$Hj%Jh}wl}A&W+Y-5
zL?qvirfZN=ZFG6k3HY?t?kKPP(xs6YU^JoeHPT~sroQ2y67ka$n{IBKsi8i^-AY^~
z`4(M|t%EWu?GnWQVBF34;C-xKScQ#~UQB|WUrzITo5bazX_+q+Cs>C9XyP{Ce4R3?
zf0JOIr!YQ&YYd2!y(LAFwrSGjo(#}1!an`%I;}30v(mbb^mCr7C|c#o*EkUsb9D6g
z^`f`BRxe!+DqR!613Ej~S5YUF)nYNdhZlLMSZPG$DB43<#>Dk~G6)Ks-}8@{$ob$;
ze1o4`n{F<|qSo4%kB5l{B7p*JClM#=yWe*Xs(p0~^>nV3g^X$xY!82KL4
zB<06OtE6V|9^XWVY6j-&8-IxL-=dfLBj-XJVXH|5Ie#-QKPOmjF7jW#gXNm>&~wlRD_mW|
zZ1Ye9D^V*kPS~vs(Vub9ktt|64CM`p$SO`Cyp(fVftgcCo#;z}-d4`=+&O;I6^qI^=eK=telT@HwD+zZ`8w6b!#wi4q`;4j{I0}0rKa)v(L_kKzMWlBS)#5|!
z1o%aq8PjZ8X#lAzbMF`hgdjyCM$Teus+l5&c1J!`|4~d_l1KQhuLc~;39y~6Ra5>C
z=Hh*54bT-PFwSbU&qAB3!c?C(|3C?Y6=G4O+#k=;+9()L_m8o7%KqYS3v<5OeyJ@d
zKWW6^V*R_bUklijVs0++PGtEOX}IMw;R4qd-4pZfGtP3Td7`nZhzfE93jgn7lvBZ<
zN9piJvSc|73^h9O;rzVElc(m{yH?a8o_NN+|1JFQ(3ui;*KcnpF#)5K=i^|q`CI|4
ztGlq*5XnOy_XqIYr^1E4n+hRB?V9YErkKMKOXd=JZ$MY$y
z=a1O||7nr3F(tG&$?)f1kp@XlO{pXqBIXTze?XL!Iphz+?p!~0irKsLM~H7Fqc#&1
z^sf{(I|E6=0QH2=D&6<)M9(OEgs_ZBf%0WKiX30>qC{V?eenjk2XSAZ(*aqElX#Ts
zBM~}B^!)yoygWi{?h*v|Slf8rp=GJU&5{bK)u-9(goh(LOy+EyogURx!-sbr{wG9j
za0^`$ySgct!XkhCw_Wz%hR6AA9fk*5szP8PMYfwM8G
zDHqmocxAI%(QrlYB^6jZ0G~TE!OUK(gIA#YrASBdu&Vv$uG8xgrg*rG0YMyiKC-xK
z%;Ng+7mGQQ&;k#d7%A>IzDE;FKHiS~mNn~m>8)i?0R2o+_)uhcMn60K!l!WPF26L1
zcYIVI&Z_#?QwTl;m!J>2UZZYP$hp*t!2pKw0{Kq?ci0P1F|+-R5)eD19hB*(xyVO)
ziYKPl91z+4KIVF{q~ngKpKmQ>E2(iyX1>TA&z6P6MH62UPt|&x@^reQA;GFSt)~Q#
zS<6d=Mwir6zRPMQyn_Qgy7sdxY^1cWLui(t!goJ4xjRaH5}03KA1V1prCxd}I_l2>YQR_?>f)?b^ymcAfj
zuc%f!cAnu9M)jC;&nFl3r_l%0*fNfQY|LhTcM3&uOFY=#68
z`%7D{YCC6ib+QxcyjAvp46&)g)7xcEAI7HrR@iu#cra&YE>5E7a&EQZ(_1L>3m1&n?$+A7xA6laih^0Ok{GAz?}#p
z1&RF@k-|mJt(81}2HF^C_%*l!_&)oTnWm%ANeeM*$bi(lP~T|Ai>j3$Upq$DVe!R<
ztiLfa^>N?N`dQ%2)^kt>Law_)S}T>RRO)$B|250vPMP5PLRm=TX~Zd}qMv$1Fm!!U
zYQruIzb*`OJ)MgG)tCiMKY)}wa(A5=#ouw%y>cbzi)Hk!%5y68Pb;hdK;~e8Q}6SL
zl=&!%osmTR0&+W^byn&j7r4dKN!q!jL1v$&Z2WhMC=NlfX0}>O{u)prp7~$ut!&n2
zQORFjvGI+dUU*0^+IPy(3ji*oaxpO0#$6#VVxM@{UQ0|Ul>#y{tkt`a^e(*Y)Pb`u
z8-pB6rb$juG`h`$p_zHAb$_g3)*u&P&q^*}B;gja4ZDs1oJh+J+Sz5&{3vneZp_nn
z=e>fMYi%d`=_B^E1kB$Hy+-o&x)wtDTcK?j?okbhSRN>cIBhDp-QQ2vuyZWj&1U;5
zl8-wgO5a9UlcqS4yKY9
zb6@=|I+@aBco+Bxnz=8t+oHpJ#0y$JUK2wEA!gT;?y!J2jFcC
zyPso^tTtTBd?*>W$-W9nHV?l>pn)xIRgkyUarSaz0RONejGwR&GX?SB&%XZ_pT0nc
zEpi%T8>nbbOP1qz2zRg^P7LkA*_7U)UQyeYz4ZHLW9Axn2aSxy+VK0E$!?8Tf*3cM
zg(t_#zjdS|cME4%8txkoJ?)|mO$d46j^UAzU8d%JTDJ%vcxz>H+mph@L3lKFt{LA--9R6}A6JIKjyGV?JAR$=B
z1E-L*D5kPV>&&5W#mJ<^Y$LXbk+%h%KGCO(aHarLt(|XcHxv$-Jbl2N<8ywfr6rzI
zkstesjiUr`1A~2YcpWI%^5|lj{OPw11Aky;Ao5k&u3-9nj8gY47Q1WQ0pax|Nl2?F
z{QGcZ8BHV>9F0D8l$j=sp=CA&u0cZwd}HT7H}Kf|U>jBL_vJZmisMGOb|HVyuefcR
zYb(F1H~~aT(Yk5&Q{qvUl@{bETMYXU6{kmm{t1%oU1M85S~2!DL|RHAsrmBrRPkU8
zB{8D#6j@E>@UGSg0~2P0X}df7Z*eX{_=Ta
zE^}<6D{u}@SVoqnjMlV|2-qFvHCkr|(Ntd=@9SOE`yn&yjym@$b3a|IP%C3lt7#MW
zU^@*U*`v7`^1W+M{@!Q2^)1MLthKnLx2Nk{xm{35oczw&IEtFT-f2ga*e%R*zlb+L
zmnyr5XMFIpI;6eM*SW5HpDD|^vqNj~Wq3df{yP1b#!&M>8CiU@#MpX+4R_dj(Ybq!
zSP44{Q3|m*RnIG;Kvfaa$O3{bH1Fm&{os4}43?bfHl<2f~2UEs+*N3_4X1o3uqaP5gI!)>xL^+rtVUK
z9bT3y&TqeZ?cBK>xRL`9+6#|fy!D2
z+?r(8F6s(Jikg9PgN5#@ofc$-l9=f8Lku>!I9xy+H4zCL>@)q{Z?X`Dl!&aqsW84A
zN{~&O3i#b$QP&<6aVo;-+02Ko2eUallb>5Z$9wv^scZ{4Q2{AYz;9i8AR#?5V$~20
zh(fHivE*l!gCa9MNEN0+OtEFD1g#sOJ>zEt#~s6uW=`E~xFwb`;i1m#oV~Wq&vpq*
zi`!m-LLX2_lOGLsN#$lGJmp~|zcomtsTy^TQDXo$Q>Mq8_Jf{988-~FEQIuPlv6*K&C()0T7Yj5bZ1HZRd7PE#!vAsKWFKCLlCE%kpl5wcy4s
z7rV1XT*w_~!{0axiNHy~If?vR19UnD^bkH!WY9+A)8r#o70s2Fbab(}GZD(ZEBN6C
zor(E(sJtXSBL`ogc6mikJLXCls9Mgyg)55wq1DspHArb+2Ez<_W4*(zpS=q=z4qB6
zDq|f&&A=A<9)DY!LKU1oB+Kh}Q#ty4K1#%3THgpnVnm1EBOVl-d)4y|aZa9qM}zU>
z<>>b71ZYrOTJFu=tBSh+%*&6|)(1;c!*}oArw^=#gWm3*^kGokO>Q5e%1vKO8hzHS1IpVgS9Iz>1BI;-DveAut^l?f
z|2Y)}nR{zk1KEiCTMfce^QD6#s(NS$)Vab5NkThQ{{Fp~B~r)du5M@{#Azc~j-pR9MZJm6Rs}
z?;6+@f_%xOd{q--nE>Sht(D_U2DF0l<&6pmRs|pF;Ehn7Hg)s38ld^VyG;8e>vrr1B!tWgb#Yft
z<0<~hM@Mzej~|*T`!4se8bUnx^3pXk!Vxzfbz}e=v?01cQwl+c4xwTVk~@fxqIv8Yk-d)gNuV2PefL
z#ijPrw9=^l4pO~KM=`dQ6D`NMCxt!PdwFHss8w9ba^r#3GS2fkqYR+Z|M4QSPnJD&
zF(o)SfZv{KXNfEtwyKb5qHUI&BA_qX#6)XytAMMU!U>0-`x}j|Z|}xGXTHB>QxQD@
z$5yQ}@@|;)<&M8?i={d~tjf}9LBI=3!x$+iI9|P+_q3lhx6$@X)j-(-Ty@NkmvEu=
zwd}%v3s<~K)P;qmU{c02{iVX&6HyLHN(J=vP5s3nxD??HcZz-q6g01;!m?%}(b~f6
zcj4TEvZv3Yt$BYW{AuFSK~4cCz-BZkUJhR}0>49WBCHoE2jwlz^{6xXqHMC=0rmV;
zd+sls4Y`lQYk6y8=yB=3?kPsJsw2ODV!>fy`y0`3CI7yeZJtQ38)R6L^JdscH!EvD
z=#vlQ6Ag!ZYi-8a2i-uwBvCotP**$SJ5^VR>Nek02!X|!{PhW>em9VUxymPK4wcW&
zAe1!8(cw%ppT4BnP5K{5r|56)Wh$6sjljIJ_Kfn4FlN(!18SjodDXx#-Uvhv|DYHz
zFd?=*OhA$7%UDoxeuddN%VkS^{w0km(a)?pS0B}oDu?zvViGx-Wn_{_hO+YSdw8n@
zv_DN&yj4ko6EBcMpB#S|OKE*e4&lWy-jQp7o(|bU6k5S;c~F
z>2H*I?_z-bege{3p?BdPk1WpEokHdx>GL;8y^VPyXFTT+)J~)FH%eR)w_<-_yliF{
zSPGXVVNn_YI-^cq#PdOIEdxc6kgGJD@P;K2$Z1xCn17-`$?$VG9rCB8_+2l1R2hv!
zv}PVG6G~t{d{K`EJv5TMprs-ocPzhI>Ylrby3A(7A0UPfKln^aVL4x>LF9PBeY7tl
zfTQb`)c->j)TpP^M{`XB^IPG^&ffx_C@O64i8Gfkz2ZUPApB
z+#%&TQ9G>maxeK{!|JH3og=`xK8zjY$Ka}QECY46kOn)iKPau;Og%hs_jDv`bHAzV
z2I3>$G7VMli!j~)xA?!i=2Lm90psr$>Z1FfkKX^S#;pZtYu%e%ktZ6*jZEkN2Scy?
zG5PZK|5nn6GmR>-q&O8SV6=cvb(b}ZXWgP+#NXQoOi|5W#wyTW1~Ue!7G#EEMDPwi
zlHa2O=_mXRUV3tiTD>zU!3X-$VLJj8i3T{aZ&;hDaS&_x8RQrax9T!adoXA
z4F0$p6iRI8+Fw8)X1ziSb)D@WLomKjQps8
zjk$=wJLO`s_j3lS6r3<3Mzk*x;xq$9XZ(}9D81Jx$WIiMqUYi!%-L
z0sfmtcBhp8!T85DJYQ!p6c_Q}r)b_M-*daGW)_Di$mzk)Ye~(4sJ
zZg*_BTq-zl^vDW{4b;#CVK1ulu*!&2H$TT^$GMf+91t&rkust1Ace=G5Z#{D@?+s%Mv<&m|89{tCtpD(O(GYl4Z_z8y0wnzBj*
zt~J>|ZHWJfy%$98FnDBGm1bP~O6`dbP^P^Gr!`e02`Vt3mRZgGM*8-DD0{1}xVo-u
zm*5cGgS)$j;9gka?(Xg`!Ciy9749yZcDepu;p6wa=tJDU62>pd)3ILN%X=M%EaX+@c@y03Q`!9X@9`I{Izm%)-Kg0<${s
zP-bm;71zvSI2TQt}FZM*;`J&U)eX(-DS
z&WB^iWdtmmj-nX5si~JW-p_9GS&gNGyGc_@Arq5ic!VZ#iC96+l9mIzxw)C(!G*Th
z&_mCKfE;bv@=S_E8>NO39WT`GsPa20H$($8?ay>_KG7-tM0!Zjh@emoY+s!-K}=7Qjdh8!NI|CwvKt&KTc#78vK?!+s%TLG(h2?m#W06(MI
zl$Awz7ISzleDqXGTIpBA2=y+1>!eC#xn(hqgs*hU(bX1n+yN0i=f4*W{wN5@i1ZLW
zej2irw3Q%tWG19dRjDMaSw8}t7jM_^#k;!gj<&FO(;^{QO2|qRp?u3sbZziF@d_9Z
zYJn`ynqU~vs4!>cBr+xwYIYMD8C_>GniaC~ae>|^lTwK&3B4$X`!?oQZq|X_ml~sK
z^7#biTznrhI-$aPQNkIxD#;u^BCSr{S#z2EuayHC*)Cga_;vL9{J97vsdJ~Ylkyhz
zQueeFE^Yi)npb;1!AF(xBykG;Bswk@)Z{YN)j8!+!bZ%oS@sN=p`(#C`FLhOl1_}3v_u$~3a@Z@C+rNB7L;9Y5ZN==_
zy5DRFYb+IIANRM+Anw``EzqldUi!5XMR+x_U#7Ap!a`a9WyjhFfDsa`BR}nDb&IOw
zu-dIjw}D^L@h&9Op-1E`NQ94}(jj(}>b?Z>-fK=^tlATi5Z)LxbR_Wj4no8;{AY92YxnM@OfR=*R$g0
z1y5-ZE2mD%TjCXJdb*nIsa+K+3rJ?#-fzhQ||urUBM
zp4Trd;@@d+B#${dF1cu!_kRg)DlIMIBq-J8&N+t!xS*sb@p2ip%qnW=#jLIRKyD#p
z#ENOqTRGQQgY37ajmu6#6a;lj_rHr!^Ga4>ATt6`mVZOfn?K77p_%5uo)i`Cnyx39
zn~843JDgBU``v6IPs2sQJ>G
z>4<+8cFgNh*hEwu=X#{6s~gG|rX?0^I_W|OrD5BDMkYF82UAYfH;g*!6CAS^${l!n
zj&dXj2}OEvm~;hRV~H*mwLW8eG$>0ms(G{o=+wUOSRTIO`dis{6poy2YAMTpCO73v
zWw(z@zi{nUbe=CyO#LI0m|YK&Zi6j#(^KPZ;dNbf*AkW%Z{j*neSOzWSC`+fqQK0C
z31)S&Omj%buk-5uJn^Jy9(qOLl1iUh+|VvYDXQeck?!lY;U(w~t&w&M$f^pK3YXKb
zJKEn`(9qV{yD^wxOfd6z>W`~0WM(zuJ3g^zrY|V8k7mc0KmMJBsKr|!g8H0qp)rq{
z7Aoj@5jB|?5>Mr%!|uQWYdhmkGl!pGxe~8Kh7jc2&W8=eVM#u6KV9bv@Qm;b1XY<>;e$l{FOZaQ5qq`Kgq!dyGiw^Kf+54YXU0#y=$m7t2;
zZ(6J-4&L{?oKYC_!@v_j;cw`~DfrVQ6sZZm+RP6-k~jUM@zyJoU?ugE)4*tmzN${w*)O76IIJ)0$0+<`T(*C9
zawdT@LPtAvNd85(9zfFatOc>tGVN^D|FeIddr@K%KxU<^mT#)43r
z5FsN`>Pj=n?~S6WDR|em;Y*p|9Ta_T^G4o}#(&23MSY~V+6%(@Q!Fqh=726XBTca7
zqw$*X#blK`sMEFAThTVwghwCqVJ76K=e}P%%xU{Hq=ELhm$-5J0FxKO%&pmC?
z+R200626f%K0-q{lbU(n{AXy%ryfzd`S-_*`B_?E)-O
z=4k_q9V(<3k!2QX}_{MFGt&#w245c!>~|+o)2oS6YL9nQ}Wh5QOtW
zO%=2Y(4m<8p|YXK1<-jqHvPH?Dj}GCI~JRs4*~+M`nzFwLShauANU_yfmZ;Z-g3Vo;fCX{)1^xlz-LrWK{!)uOQ>$da1IR1;aq$Eq4z?iF3urDs`DZClq+A
zdg_SL51ZMX;mztaL)s}G8!f*_zR@+K{HKo)wiVyN)4rN6MeIRZ7J}2~*c7(!>RQO7aXCdpg
z$K+yMzGQ)fU$G#Kt{cZKns@-u6eMy6M2ZeB1>
z71WMNcS4T>dZ!F>@g|1W__Y=9$pN05<#*#6sUKlHF2;03HOVxyC(!Q5ozD@>)e@Gu
zi!R-DvDNe$SHSLFS;_CSX7?n_Q)&RLEJU%=O1#cf(WP%
z{iVB*L35h>(pNpia#3~am%=dngmDTtaD_H3h@0ra%Zxvr%+Q^4udp(4@E7Be!D9&-@bvN#Za21QadAlj;@ixsYotWHN2;qXU~_+
zC``5Dyr1iQ?yMt)p4&g6Bfsd%_--=!sZQ}01Ocb*qW;r|=c^qU)9<}P7@vzUK%0eo
z0X#{dotk5mC1Yev6rZRcLuzt%L3TTYSbX^{(sM;D`-Tjwpz`!leM62iA-@F;)8xnb
zagEFSB=v399(iJ3-!MDav?VYOdo0M2SyEo?VE2*M6;gQaz+2rJ!sC%(~B{^$?+U`*Th;*XxGF#9ImL+
zr@$3c5sZWr|T_o=k>C;wflWGwfKEIYbfL&y@~Fyi9m
zI(yPZDdxj}{lp>+?QA-BeZsKk>KC
zDWk1h(bfxVzoTc$r9z#R^z9@URt$5P?2pTYe+p?bXil_M`sL8~P(4$al>Jyl;O-8a{K(yW3T({+k$`LdztOzaP}+k5g57xh%ICcxY)?JHur*9&KV^71HmsyTXGs`;mfMHU)7
zFREzlkH*8ZQ7>01m|yl)7v0s
z_^zrL-=ceePsO{7k?A@oL$Su!xi^;$ZVxiwt~2xP0&~8S$i(`OpRfMYIr$2c=~$>Q
zi_tnSUbke_SF5wpYP|sz+-q^C#v`M^Cije0S#XzO)XJ~Dn&yD0?wpLioUSv`nQ8(x
zm|#Ui7}3L7f{uYb$9mrHv~l>kgU4w!%#asciHAkdzf69RfS5(laQGjAtI3v9iveUS
z06kbNRz}yA7qNh~u!FKkoZ^g=BKhj?W~0@Nn~dPRt@zgl|FEn-S}1}i167m<1_oHZ
z&8g>dcg)IlA{Cp@q07w(pgS0fLvUC9gi^Xzn)B}(4lBrza|kNCpV;nsj}h2Brfw7I
z0*b0R@t3S&MA9oMe9=7TYTV-ei#=qd%lK6
zc!8aTSRb}VbPk2NRqK_^5yNcD%2Q5jf!(?#^;7_QGKtt1l7OV{Kb8YWe7O3LfHIYc
z3H&D&7X7QQcgF@4?6X~qC#8_4YP<@bgCG%Q5r4tn4VU{)E33oJJA(+ywOnFU)S#iz
zpBDQ!5bbho)Mhp(?MMI+P@opILm=+UG-jxl+M5~WkJ%D({Af*!
zvnO9W+xD56^(u$Owirjhvb1ZtcX3`*rb_0`YW<+NN%XhCZ|9?nqnVA1Jg5E|;m{zJ
zR#qWGUI_)U*pWTa?EPh>^_%y^*_58cFX^XoNEURYLu3Jma(sZ{1eoGq?X^^7TX5gv
z+dxMJdsTe*7y66TOVYc{#&s_VSYHCM*zi0b>AYz7_^e%sQ>#Dq~
zU`6>|lgmhi8qqF`atxSu6XWUI2wn#FC&b_=FHJm6hlP=1hiSJ`Ad{7AKEbzZW^Wg6
zcrIl7kiS(&&`236UGFlwWpc2R9i|DNUF|HxiZ@&n98&15c&OqsOnDHhYQMb31bYg5St1;{DecqlwT=KdVvGG
zQ|o`T%j3r=lv@lQ>-a9TNa?blyLXxw+jdYP_i!H0hc;7AoJl_YTl6VoY?Cl8lkTRG
zNW;Yi#!PjN)5>~6(#jPQiK|=~!{-1EhLl|Y81JODF-=~R5Di>fT>eiCH+-y_0yoP?
zmGG*gN6bN9&W7^BwLKe3(guM_y_(jMASs&b3NhReIy_M?qLcphIh!u!u7AI1x7d5r
z{!HmmG>QZhErr^ah|Jic3Kc;Jr~}hckxiIH1M;;Dd6{>4kwHt>$vhy(3IYn
zuo`nZ_YzmH0~Ug&oMhIvtd(1R^e%OVQ}{09FnObLpi3hzq&8PzY>j79d>}*n^?ebp
zFRSk9l!=bp&5-5}rva}j|39atPN5(6Q}Gj4Hnp2yPio!1b^2LM8WyVe^(*VdOd+3e@bB>6#IxY6E$gv{?12tZ
z*>>8ZqtQ2E6}JWMbP}1qN7Q}FU*=b9jsslRyqc++sI1ysqcR6sN(Dg%5%?I}qZ8kR
z(?}EzRK3!c)s@frN4h7kM<-N`_rx$~iu7Gckv4w5nywyorv(JHY#rp&gUYpNWw4$K
z`e6{epX36xC2OEA&{~xI^$1)I6Ql5xb9g}Vw6kwbn{(3T?4HSmeRCT=ie2>sA8WJS
z&G^n75!m>!j@qHtKr&BsQ&Bwr$MdJLexwTJVCj2GsaBZ|aUB<(EU*w`YNW6v(wJ0k
z2r?g~<-tk=+1ZUw1xv+ceWazr}@);W}9?`AsYf7qx_
z8>BIyl@!#LR&7;gReN=Biji;M(bQ*bmpeAL`GwE}6IhhilQR6@{Us!dKb9<;m2
z9Bgg``aAyw9C2;s46>-VisjdBe@Uzem#hBxw6vu~zEi*6@6!HYO=zGl1?#
zgUGh*?Ypk<6_~`QrujLM61ME&ce*$2ALY5uQJ|cUDbnq6jlqWd^22f}PcyVUHXkj&
z`4y?a-rvLta8wCU=hQ+VQei6@{#A}hVT{cG_A1Ak8=$%PwneeN=KFUvO{fM-6zmG~
z_J1${janNJsJdk^;R&L&P)yIMzaaMoraLG4X?tQ-&O2{36`AOB*r{;rvzL&&D0umS
zhc?rEQM)ivq8jtiL@L?1Lfu@x$@juym_j?;56XDQ(WGd6NeQl6RrmXhBQe+b+>bOD
zdvmJY-Ui0AJGI=$jqBB#!cnI2Ll+9ZkdX>22e2vxNr$xCNt|~M7w&**tM3KXpv0%@
zJIW}&`2DYUx5pTp1)#hu3lHHMjuYa)p@=vct
zGWS5Y*gnlU#ozY=l#T^_weqOaY^1k-dfP|#gR;uB+^mvcicA>*W1NOchG3HsKB->n
zUjG=Oy5OwAUS9Er2xSpuViG{Ug1OMift^VkhKN*P(vIDFjlyXTy-;8>V_YS@=B|{C
z6)FvdGJj_qdrWrm;sUgu2aE70-1*SSD@FFqk`m=>oPSpCFl}z8MRO;mF#BK!O#kfU
zg9#<7L)G&gM@w5rrkaH5-F@SezqYWRkQ0SlqAB@$A#qH(xEP&gO>amfv}>VPMqR6R
z;edo}xF0PP4$5simL37C>8L$RbAJJqgBKv#qdV~8m9~368hH5`45tzgF$#LM2P*!2
z{M`CVsk2fbiRyZ>qU_s~H>oP+dY6h&n9o71NaWjc)hr8boC&I){{RXA_$1)#N;?<%
z$irRlNC}0FdMiX{qnibD5f4hRZNTx3g-Qf2E<-tdeo*tP-b|{);p_<#uJfNs5OiZE
zvBbvrbN|Kd0{Z1H9!)CE7&@Lk=XvZ6Asaiaz!cwGp#%LeRi=cnxijKU6iWLE7jP0XEwjtTi%!C)-<0O31BXsvNT1Ebz=`75AcVF5Z
zlDOG*rOYl2s1()3E94o@Z;p9fdJHau52YNzACU!p&CKcw#IUBej&f}!(D}p7P)=gy4nn6mm$hfY3CzT{1pbO
z53=jUI}M=QYONC5U&Ft=hoZTiILQD$FA=H6oP41@~5jjS+(19tQmvKPdJu0ErGG^)&7N
zW4x+UlzK3#Qm{}?EGY~o!>U0}ak;k-3_4X@k%?N75;kzIq>;g}h~NW~#jeTy5`t2E
zKgoB8cfz6v2uR^@i1-+sf5jVOR)*&pZ&wW{9EAg*3_g0{K+;@}C8u(m${u<1~k2!I~lM|;wIU`XAOgeAy
zZ-Ue$11I1ES4%e=W8H*iY;(KYuRnD{j0da9jjiAO%29D-mxXH&AIL>u8=h%w!Y`E<
zo$UDE=a*YHIzk=N8~E#-F$**?cq{x-Ze9ffmgMMUIa*qH@#PaqLoRVKbAM_IoiefB
zEsD3}H5`2WjniW@D^Fp&(C-s}ltg}&7oqB2d(PTL+XxX-M*oRNQHD0pb;DZMlTkEQ
zv0kV}bUf%R@@FHDy=7wMX06xlxunabi06-rT|Aa4ep+Nd9+E?
zoV5zvevH)Pfh6kaO!cRvxhttn4_=vgaP_(yT1g<2X>bUZEbBk5@X=T9RVG(JwT~c7
z>hX`Wuh$n;u&H{Dw$<~Zf)C%+-(K7lPMwBtRzg70Hs^$My@f+#$@e-V4@^2D8~^2$
z0Pxz4#m3RD<+bS+N1oeEkh5*XAfv9BeNZ_d2AP#@;4P+EPAzLZ+Yfj5&JoqxG1$d0
z$j^U$t0o8At=Dh1-SFOOm&1*|O+H`GVf1mlFCQ^3@z;KHN_I4p;F$m|2olJoWI>RI
zQIpQoO8bEu0UFL16ZQ`vrFQdyp4`pv=8aUW4SWD0g;_cgp=UsoB6)D<x0gT6uO8EHpgW0_NY5E3R5`$?2jdw*<(Vduc9Do|y0
zW!cyP8GTzjTDxc4jh!C7zLkVe8gG~SL3nUcs%{5JNe!R{hBQ`_51xBc_H7>+K#{jt
z?R*R?GcY1{qeUC@IdP-&>Z)^5ReGf*xe;u5Rg?Oqz@7=s3E^32z{{uS9dlmS;N-%?
zY57h@^PHmd$YDYF$8Gu^54!)4^AS``D7Q7_zm@++Rl%a{`cEg5ds#-tcvhg3k4A+%s=&}EjqM_ALTk$bK%hyq+1}%&e=X)p
zP9Ng)Mo|5a%9)E7A;V=^;)~`cj~p#f@zhXhR>=)2)3!o}ZjR!Ufp%VG)J_Xu)Gp~z
zFdGAm>uj)P@OC?``$#zeMcvmAx~+!l&^3=!`z=rFIk;R=lcrE4RYOQ~V{z@o(>C$i
zi37;aqBb0kR&f2eywbJ!sgOI-8a}{8)tC5QrAkBC3#$xIaf`spPA
zYkh8ixDMz$^coZ*DuO#l7)fO^>@GU@Ae134)bME~$cJ#n&7$^Q>u0A}vb~T)L#7sD
zhL%jX10yOQS1$<+!s<;(vpX`=hCu_Zl%2j>YtGt7tIg5QS-9OxC{$g^Y*=gL9XLJ*Z+k77XJ;HnO`w)$+a+a
zgdBxx-;|stTwW-u&$^&pW8T_72tY*p0*uUfvotdOqma4+le2GVX0XGB7E3p!J#A)!
zO-@V5jW|&&4$k&dJzT4R=;iGZc47v`6KChT9C@>`$F0N9p8urcW)AWC5&2sxx$bi;
zu!lYfaxF-mF<$|qr;mSx@6~InXg&XfK^)z554Cm-f)br(f0cbpz6Tcyz$D+lzifX<
zxDjNP&=+;qYYV;H569O(%mn2v;d-;%ql%<<`Ot2K^m(*#Ywp)v3l_{OnBeN8nVmUk
ze90+)%}f+wDX!JC6#Xgs&+w1F`+dW`ZRqBPA)J1w+@3fR0m2H+q|QoR^lK~oR(C+$
zW^4DaGn;OG070&nfhrS~b@hV$YUtV&5$}mk(WzdO-rH}~GEWW5bj%+Ol&l;Sj7ttpX_Wbye4EkQWQ3oAQ$l#IQS7CdHM@JVLS}7s^4Q3zB%>DZzSilVJ-HJ?>J>5fl5wpKmcQlP1ppvVH<0e!=Jp{0o6#8|8#m@H{>Q}q5
z@!|J}CfAQ3XdZh{Hb%5)vOo?^p2+!Am!B6+UtoLdrog|?GW}a*@-Moxwjn6F5(@Bm
zNP75RDDQM@1yuf>qpswi*s9kM%?9fB6fb!>R$F*gL>TMvq%iNkiI*04+tHAZn?P8c
z3c&(hS%SmG$kn{k8F&k2p-7SP6~3_kJWXpRo@pqZwPPI{yHr`ox^g(oZ)}E0sled_
ztjZ|C*vn&+F~b*45t@wV4$qZ2==ZB^-s9
z*i8~~(i7X%K9G$g*Z>tQ@W#i-%;&1^9(G**#@nb-xY+Z@IfX3QqRS}9GO4i(8WsGK
z2~#G&&_ut<{brCKG4T{`plW|?weDva#a*M&KcUXVSWD0O9={w{*KU*8R?kPL#qrGM
z><(KtL55|h&2k4k^qTLQn*A2|T0hj)pN@TX@x*kXdL431%Erf73H2Z-Wf_(LU7kNX
z=HB}BM^EIe%hiv%7oZDmCK@ATMDO>r(QTcJzcO3Skt1&k#PQn8CdIYS~b!l^h=bY7b6QzCsUVjsn
zoE%9QRmE7+*`rc?Z~tol-Z6Pe;rCbWU5M3owzC#vRSDI0e%w}j0q_|}U>)-S*SsX6
zp)A_0uBztfc;zIrc^T@Vq^nTcBh{DJ98?H>tYma<
z;nFgR{73Gv5DN@bH92fF(_SzV!#$CyTAo^E)ZEFx={_Oc9+?+sG$?y$
zS)DmiST0W#UXEDg?bQ5lfdC1w5_pAKG~;>)uMu;aMe?atrc;vqLqdI1GKr6ZDhf1S
z_SCjme)O%Hv9;yk*6UfQ{AAU>3bbV~kmZ<#%eS!>M+{b>K>(71^JOQ;4^S$7Lj7oc
z*APLv_;{Nq?d|VNEvLFFWM^5THV24-A2uKhXZ{WEb^ajeu1&e((Bi#fCW6-@mpb<(
zuACzAbfWb7Hn0C-!q6+rp^3h%etegSW^}=k?MHhepYWIbC`+xO@QoZ4Dh)(9=L##{
z!O^M&KeIR<9Ku3n%i0rsGfr_}xH8~2dP@4o4A{3rKEl8L$1;{2F<6pS>>RC-Z62MWt``+gW{67imaTX&z=|th<&b
z-ngqe?*#1lql-26M$DFdS?6A*V3-1GV3Xh{m9$yzcgpak!4B15zAI8#FV%t98l$;M
za19=g{mJdsS4a*nxION95ri3=BqONmGRBRY*#8n26oihTC6#FHUSzyj%N3G8{CzEB
zNmbL1wvkSzVK>W=5bLoTx2h06J<-rvWn
zg7>q$MWSW)Y5(9a)(1jv6J3KOvHE0!!L}6v8C5DXNr0G*RH4b5vrX?cB)5i9O@-YS
zFL+Tu0S09k@}|WFQ;uRQ$*R^(=*QdH5b$Y|m346C-NkIWwyEU4A8_;R$MFoT+JI~|
zxsSF62^l1fJ{iWHI-~Om|KyX;I7qFH^bfgGUtri=29PonHCdzm{yn^IDvi#%gdunb
z8v&69M4)i?2#w5;T8KOQ$8Pkfwho$Q6=dl--g2%
z6uH8qgeGI(dm@u++=P;c)Qdq#XA{tZzjRZz+A~P{8&z&mv)%mf>Fo0*Y<(ZP+xudW4c-o1VO3uRN0E#D0nl;D1t)?;p!bV_*%ZGDh$L2_@
zp}~^?*391E(A$KU#CrkT3BU6{&P5RwltOFqo1jc5_yt%Or%yF$QeK_=XBV2JyVK{N
z`EJ?d@}0#d{cRpQR$Jt$ulp$7KpwyXOkk5!;so*v{rYd_`gWlO)@heh(RI7*##c;h
z@3)2Nq!QVC7}^i&=?{Fk3YP9w9?WG*jaewHg2B+8cj($r=<8l#!9hv2YP)7TZ-*z4
zIvz5DHBb(BcK<-#*4vWHx%}8P321bT1D+!ePSd0v5lRzd}(?Ond>~#8;8a_}L!FbD=*!a=j8#*k=nW#xnQe7;kv~Tp98QUj2Qs;R;)Y~m&JED=)1LA1YdPZUQUi*y^FF9B
z1@rJ}qkf>#wf#Gl?FcO7Mr#&09s2f?_4qBl^Fk**2j9w)x&7993<*>MP1;(?xj;`L
zapU?@j&U@rO3hIvUPAw_zEqflBKaxeVi5VcFpD0>(T__9zxY!lC
z?1vF)oEJpEJJE@ODHc3o$*V7~2EcD~-D{iwLRbw>4@RL35@}}JO02E(5nxQCpqaRZ
zEf1=yudm$qPo}HSPm>f(9XW@e=XyrH)AhOBSfBm|BqP1+W|I1*Y0Aw<#5@`Hj`It`
zO(&e2cXiFhKPbA{w@Ka1HLhV;$0F{FNxjs7`J<>vLgUv1Nw1OGkhPEmcOK%|T3JN$yyxUq!jjS1z1coM*&
z{C?8CSJDy+stoO+Vp*#gLM)XWOu$Vnhm*6?Z5DGO9nYIMjBqsQgnzcfsjn-~6M6?o
zsaxd6DYh?Bx1X{98;KxarTabOHkO%LhI5fT8&sNfE$3PzS$1kicDI=h%ISuN>Rp=B
z;$VtlTqhK02qwnTl-XwhwLX5&D|i$(7(aB$x|NmT@t;vGv-<1#gmJ5(&2ybxcHa{z
zytT(-kz{_7CR=wru+}tEr!vj0eauOSEP7mTl}1J{vcufpi`i5N_o&ND48FU63AHChB6?>UE7lLND@WE<*fIBhZukCB)2FS*+2!8y1JF4M-m_-3D67eR0_<7l
z(kETFbc#+x%Ox7Ookq6Utsfm62F$fbY+DN)&e(R6-##zD&mQJQly&e6G@_@)|@>Ou&?GC>3Qp{gK%(eAljXAY?nSY0MA)
zn_TiL_beN{U2uJtoST*u*GeISUE+d|$Gtd0M}2ZnRh(Id{3XJ$1ohxuLikk-ifL_(
zMJuGHN7)%!)ITaZiPT(-Ij%g&{!1069r%`9kNJ#_IbDIm5bC>l^7#%G=|S=e5A#^$
zPqLEN=nZD48E-D`JJknyhv3~@_VB_btLKybQ(wvw6ayC72k}GIORM^lRxYM{=C-s@
z-pu(|edAdE!6T@1?Xu$siPf9L`H>N;=r)?j7odBQ+CtJ+&m{@jd*yB0CQ&Dg4UX*3
zMViT%T8w3K)55HPJetr=K<8uO)~0Xbq(Id6_(7-N2n+2ui`MJoC-R}SdpG<=yr;JT
zS}kcQfwaPA;La=jD+gQQpZ0%&`K>x`>y1?y=*-uOEW#Qb*EFcL*paCUMeJ3LeHt!-
zb2EXpmxo)01LXQ&uu4g>~LCZAhV@ms`)wDIoM*
zaGyfWr>&4j6dEn&Y+YA4p(PEIM{MF^*gxG=&}rY1#Dqjx*)nK5rhD}+S;O+(VxeQI
zTYrs-vu5J!$AUp0g+{Ie!(=<7GOB=-=*9;jkaYDu76IeqmwA@H;lOdN$>k%^(bbY(
z!MnaH4Y-dZ!-K=bcvN2lh3*NzZEU*rZCnPFq+R~g>Tg9oP3K^|*W$(AkKojI(-QVi
zb#!@^xmX&}Uxg~p3VhI-+}P@BZUXhUEMhDPf7)Fr
z58QTP%SEpT&zUWOF6rsAWJ#^8-3)T%ut?sFFktx!E4DEyv=XPpmo!oOAM@)G=)XCR
z$e}vbC#&o#acZ&J(F%fce~w60>c@fDjv^sgT#tGDEPB`tte>tXPzuWdKw70QKX1$=
z2V4&4qiv7QraGoN3ia~WZ|)k5_uaY~PHoJQQy)&3<*g}?4nrj5#-bJ%8qb6goM~La
zhxGME8-uksOa|l{jK5Yz;??o~gXw-7@iX#xjf=vwsx*bJmSn3X5j0)MMgHaYdUbUZ
za%FZjux#yNABdrd#wsx2a2dyvWL>a1Ht-L+T;x0Tuz0x7eu(ZS>KZl))fapGum!xN
zk7W?!t{L3un0jvi$@?7rDyg%#IKR_OYXOfO2oUE5@d
zbTUybbLpbwFuG-LLd`k^#yb0iYT#SYW$?ev)!{`ow6sNG&vZ@gVcQe$H#%ZlLKajJ
z-T)xpVV{>Wi6Wg$-;Ok~I&tg!VYAAkTkQTCO$KjVIgT!@unwq9vFek=)xPm+JHpaJ
zK^66u2mYNlmK0h(q`3D?c1=*S4WPkxX<+vsOjrY;l;5XX(2dh
zGyeIU=8p2_FriEo`pX|3@XNzV*{egT=es)Rbz3eENGOsskYfjL#MHa_B&6$%Hj}9t
zud9nIxr6u4a+NhtzsCzgT?6wjHvqV1iosz%v?bTjqj^=
zu`xTMg`P>`FYiH7^xPt}9x~44<^JzQVmy%hj*5b&00S#bVNFb6ByqOn2yy5e+>So1
zj2)zUmwk7AY^Vq46C;p3+)v8o#KmsN`Vq@If)4ZNSGG)hvkKFD3))#%38*y>m
zdzm<7(&OH=B7#qbrhAY@D#9jA4X8-7Ml7S#V~w|Sgpn74DWL08gneoY<Mgb-&o=n`u6tR1(WkmzFWdOFShpfvX(Pg%awCrmYgrlIc&9WUp}K
zDs6bMEYnbmGIc|RQ-Dpf&pw?OkKDyUE~CuYanA%hOegtX)Q+!DL50JBJ&Rz1sC*I?
z_|O-@l3Ngnj3|MGPrc4#`4<+W?#bMRt+Z+^VX6y%XsxqBvZ=^K-XkY5Bku%e^`*;W
z*~o*J@4tqMJO%00lHIuU=X~gw*F!O(%!rloBpyQwfacyKK*&N{vIU?>2@3t!`7OS5
zmJO0@qAj*lFZ8vuGtG%!&U!BAL{mc*zMhKNn5B68UZ(mV4E6=f*Ez}00j_;WYF7~3McI~X5-k0Iu1yPg=(l@ORYv$MX(}B5I=#F&}8aQ&q7c0L>P4N{gMaoNTK!{yhfzM;W*@D6YGPk(03*d`R~cq91`N$7Zg_2~#FY~4JPsLX)K
zk7E#*J$n&41K6St103p}%q7LY5*u{6HSoOk*eBOFb3qoDcO4wA@iWrp)DSzrplYY_
zxF)6B7Err+IdMSmuN}d=F8nj19mvia%Y`JEv#!APev!^gZryGDKQctu=B^`viXhDh
zRVh@^?nKFWk<}%S1cB@iG7J|I9XK99j8{E9KLWF9%_yYKD~#rzHnvn%jx^$2t@AZ+
znlR0muw}}^6CF82i{&PhxlL3*d>?c);oZ{T8MQ0JcBl~d2#bMQ)XMxbS^utR-N1t)
z(!WoIwV$6EwI@H4pIOsVP^{mKF9@Am(LSb{yi+q}^i-I5jo{4T>x_?^;g$?7cU=mr
zDUvK&qVYLrH7{Phm}rHVv$sP~uT7UC?gtIuw0!KSG{zUa<&w`@3&0_DM5g&v@gJ>*
zDIwxw-(Ql%#<%Cb1~|VchSa4Es&S)*pla9Ng7$(n$rz4;HqIJ8!kI}7e7@e=R1m$`
z8N>b601qdI0AE9F5*OetD!jMOgiF;$9q##NRyFq{C4^w*AQVGCIzFGb4Y&{!K#EW>VGl
zjtuiTPSJqfINsSV)2aqu71LL0Q~ZY9GF_pF2aMA_jN{^R7VtTwQ*`2m@mr3Jh_X;Z
zplUGk=6h(-RY-cJo}~rJYCl^CL0Dwu(T
zTtRq2^j~ZC9w6YHLjus*7RnAqMRMmWj7C^Dz{@Tl$L#&g2nMYbP2KU6#&orODBDj;cd*>O>WY>BR--D
zv1^lKE4La=gMsjtf}t{plC6+2p9Nf{jHk<_sl?#lv!MsJ7r}fjd7A3;f9g~y!p@1e
zNOkHfQg}e#TRAi?kR4rW8#Uuc)lEn-Y0*T7@w%W^xi@M=tS}Oge#bd(f=ur>3~9*H
z!+kPbR#fd%lqm|;xSF{K^_Ox*fKa}Zg4PmiV9Qw9!+db%eGt1yn83xgf!AtBuZB0we`7nS(15HP8a^$H|a?8V4Jfjsp+Gii}$Wg)81j
z@{JR0Ir#6<4M`zBj~$Bv5e}D-X8jz5g5TTd2zGm8?s6B4i$87|{}GFBuLpfgE}tAR
z-U#t`4veqUKnYYdY9E;7>O4Wy-u^Y%GnnSmt&!J%-P<1v*>udp4j(Q;zZF5cXjFi<
zIe)CqO_B(-|43Wsb@1snl10G-Da!eWh}QW0vG6~d`~L)n7v@HkYk4SQv%Kh0qiF68
zJ9z~v1~;_!Tp0|fe58KJy-mzL++`hMV)@31sfKWUxGk=iSvXgC$qYkW*?$S(TQB!aQ%};0M5ci!ClVoaM*U(A`Gijc`uKV>@%)vK
z6Z2W7P*EA`eNfQvMuC)FldcdDV2Bhsgoj*AL0@8$
zPl|rH&tlrk7fVd)ddm8OH=*`PEVjf&KP2oBxKrdL>@L30nzRnVvabiq5{cPh|3Avk
zA}p@1YuZhKK+vGUA-D!@g1fuBySsbP;O@btY200cdvJGmf;*kRpTYmmziAKqoNMp1
zYE|8Jh@c^Zet!_kDrRzh`{0(7DWqjML%=H})l
z7xz5W-(tmzv3LpgOm-l!>rxD1LfeLNe0PWc0X)`AdC`HW8f=9=S!HVcYO~8p@Lj>2
zB>LT}U4w_+mY$IwYZX$aQ9uCJCW(aUzB{ZEnl!5LqR1`vqoe<$(?eeRfQrAH-guid
zWBgZBE&ExrV4fMMEhzw>e;#$fJ)OI~c9}p_JGmNE5)}Tq^9Bd!8yB*;Jm$E50@>;=
z?Phco-X_=0($L!nbFWn0IRJB>??@79Q2NP3IAn1c#bXj%_x?N<@AAri(Ci-|X4~&n
zU6RWlWMOrp=mShLp*G^LN7Kg7ZeLA5Gl%41_~
zd`l_rJ7f1+IBJ7KxNcR}jOA4?v!{y&q1C%KP+77{0wmCMyh`HIT<>^o8%T1(rN=r$
z6gW#cjea*m@1tyT=81Nfl@1S2F|D%KV~bz!^ZeEND#a<85Q^j>5&UsJG7~r@OO#};
zj*c}Ooo6(;~V?n^;+;U(*;#VE{&!pefRNxH)WCnwoYBZ<2{?CwjxxyjO#K(dl|
zck%hU?B`6i)V~}@UIY4JdsQCa_Xs4Ka98rCi;m&PI9}x)6rUd_stSTuH3hc_gw)S%4(U!SE+@Xa
zT+6sg#Ta^D5*I5E>fx-*dit;z;>Gh2;x{^88eV5w+3x1K^`d}gD{Kq(JEyb%04=1e
zlchdd3qm)V)~_}R0Id%$znR8YpZ7g1BC{4gQTYv5F@y_<)ls6@@bP3mK*<$M8{t#t
z*u1x7+TRX@w{y5rd8ou&MWo}9eI%;ol7D>d%{i;OPg#C?u4rg$VN3h^$VZoAcOQP%or%PQ8pOvd+LW+9eD
zSefkA*!XdN#4k!1l>MBfb#ms(sVfxIHz&!5B~vBO=S&gFy63bXdzYQB`M(pPuVn
z)`C+kTb8a->?L>_{(7WIcr%o--?hovi_{HXYSCqC(3e}Q??Pxkz|hx~rhY3`G;e`i
zJFI7tYr9micb(Pvt|<64ypZrQQY-#}Lj{WiI?r6wR?l$V@Hk901iH`26sP%&mHXvU0UybZ
z@-c7XmhMkajFhMSn3S4!@j$RQe0;~wi;eo$3lYxBmu!C6;ONTAKKr(@JOxEk_R6_q
zC@O--OJ+`?`T%Pe||)Jd(e6Z~&?1N8vP3
z{UtPqcQ-^w-rz?8=O+ngH2qe_!^`!RLn}+l+U(WO7lx>bB?MQZC0P4pU>mxM3hVuD
z0l&T;OTO8+q#HcU4G(O+5k&e2n3fYXdd@BRW3WQ~f*prz#hAUDD69=ah)Z%sk^Heo
zaSgALYG_JUq=kvZ!03ERO%u4OApoZQH8Qvozwj#w@$lgx^0L!qHWSFY_YZ(GAJSs)
z@lY#nYYC9j431YF$YWE??g}uEheY>Z3(k
z#6X%)292mcNOFYMnd1mB@v!o+Pl7B1j*a>
zmwZChww8127%)Awn)n&^W@M|Yha;He7%2UqwM2rQRS`1aMivFbp`+7ubAO_*C5Qkb5CQnK|^tr$(TE$z#m06ucfnR}&k6Rb-
zRepCE2H_-~>kL0DAjCR5tf{vQj1zW^z)5rI$QMSe1e||>BJG}W=~jXJ-krs!_V
zJIEIGAwpgez>j{2#v`)do=zc$DzQ?*ErqSOd&7(>po|@8k=8z=ykt!(o*+s=dO_;_
zbsTadB%|x9AD72W0&sh;7uJbyX0skv6j$0Bai+z;B?{O~Ql6VvQR^Z$=a(loBa)ZY
zMoGD6#pqo^$!ArDfE^;P6x%?K>zwba3(ODM%hil)Aw#_p%YO538L&6UL*LQbn-+Z3
zXS{YBCRSlym={_hQTeq!d&@MLj}^Mf@Ufj^GYmEsI0eQ^Uk<-S@-fJ`)47!P``RR5
ze!)F&s6P=WQ==5ST&ag0;g
zcyg3+cGrYJ&dF6xT0=6qhrgKP~ZR#ON#mA6?b%yP?D$pQ_BpSwf0J)
z=ssgn$!2$kuIDL|!Mq26R{VkNd~p-fU~tW$^xjNnQX-{OUt$?HHbBV-z#}>icaMlF
zueRktyh`shK5{7uVE@drfAp|091=U2y(e*)#w5K9@GIB2R5KarZq@@I{W9qa36!ooxQ
z{w(7$43DNw9(}vI8*Ob9V#0ouVRP;Lp1T+p-n7X7yuBRqU(#H1Dd9JmWa>jO?eEWi
zae@8Q78+#pnCLa=hwL-H8^B7JR8h@BL2M1feDbe>ASCWO(vWlf&RX8$H~J6p%S8ne
zGx+wUn9{Sdq^nz}Q*u`p8hNA-jkoaT=_(?H7bx;CImNb_1R5^}(9H8MyX4s+TW2N<
zOf@F9a<421lVk)YmmAJun3ls%&R675QK6@076{>457Yixt#>mCBS<{jXOxt(D41ga
zns6i;=rNL=#Q&q`zNL<-tDqrR7KD>RC&+p%FzfZ+c*^TL*wGd@4}@(crN>HsM#>v6
z7M&S-N*Pk8OQjc+)qzd1O!E#Cmy3E!O|+mMK6BzPiyGA!VvyEoDy`8;2FLo_&iG%R
z&s}PMzXpDE^Nyu&SMtviI>FLf(DkGchu2rjM9~YDrZW)ftHw(?_Iis_8|IMfPvtZh
z6drjX=~)X%QZjYv
znQ9Fx`&wkxl!xM?mZV(r>7L2){yocHb8(W$E@@lB8kEdm$F<7_rk7n;qlWNQ`CuDM49Z
zN4NEfD3iEYhe}%XJ?DM_sZQy;S4rXM(F<;!-nQ>27l)A
z*#B`1IQ`z#(Vpn=R}M53^JU@CjJlxW6jjmi-|YWM$lyF+zi;I-ex*MtgB(huao!`vB~v_;uYDpxu0Ovc7iY_Mh!;k)rYK#
z??)An%LBt%l>h%XNz5(49ZF3oI9$V+1XST~V?k)4v>N;K!@fXFb}W*+9VpV&={*Nm
zf3Tpx?80$BaAj})AHeoScB$*N#{F-=*#_4hYPnWmd1S;}l6qIon*29Bp8|;X3Gr1W
z*$d0b>&X;U@Cc%uM#?SFAP@@nN!NlS%Q)jJ&9!oL@ndI#o^ibj#e%5<^J24N1fgE`
zgHq)!t02;hf;)bCSy<|{j1vL1ryg>_l@rwDjRiIACY(_mt^rYUiSKCIy9KeCu~Bo=
z4HB83kez~grQTZNHm5uuWq+ro9hN>N&G)p$PvXr)!%=i2I3fgMf
zcS{e`gec*8u0x#@*nNVYZ&d;Z?rr+gUX7RpYI)=UCAS^*GC&o*6+?f1HHwBrdt?iZ
z*`>_{5MJe!o2XfYo-tfjeqB;-qH<>L*cM60JOhW!E9Le)>TfQ=AB#0k!a&SGE+e=g
zE)7X+(2I%c1x1CZ%^wJ5jQ-n7oM0YWdWWp3L)D+@$@*r~J*Tn)lg*7dTdU-+azfvh
z{jiuM4r&Sv=bPgYE4kGXR(Uhcd_7wa9gO0JV3SeQ=6fzW)HAMVj;^t$6YLpm9a=i7
z20YTtjE|^*=udhk_2ZBQk-XhwDTnT}H}A9>|AYGXmMoCw>n~1@xor;xu7UDN#RM7p
zk-EmaUNyFuaEXG+){?H__KVlUnYvM;SB2T;5n9vSb9{@`$lh>Vgp2vak2nC?X;N!0W2I8
zG=Ri}!&|7=n2nrW0_kQF;>oW0foaC_mlg-Fa31}?=?tj-2L`ul)zH_`Z$%uu()%P9
zabZsUF?!1Z4mhVo0#h$Yspp>xzNaVTvb#a@7CyV0#5(;W53u-a2+VG4nD-}YE+txMGm^7-5Y)GL4Mrg(7sZfrEPS7y|2T$j>X2_z4Xx8DJq_U-fy_e~{g
zjZK{4T$-0BjQ!3r;C-dnwe5HXncnzX&6pk)ge*5%Kk3Avb!s3@H8w
zz?Ho1ciT(az{{c+R-f-OOwuxV%*Bap2*&YMGk;0*%;#nhewJTQ-*
zBXXA~Otn7Ac5@eAvVDH`;XMsN{OS3A=f01-?FH0j1
zlEXc7%jrZ?`rKG^M_yLQoJe1}*`0&T=onB{*mFp@^dh4i@Cym!4Y6u9|B4aDQRnI`
zZDB>(bfArR+>qLnPVGe5P%{BTEgh_JL+@oOjLJ{M<_ZrF+|%IM_a;hvFyr=F>t~;c
zMlDDAAjR?AWFviB(+|`A|-Ts0?
z!p8GH+XQ9RsRJtWSGh)uqFpb`#v3^zt3|K~6_de=D6XScbf)NZXlDdmK7UR9SG1XS
zubP`UDgZ#$iMi&G5hSc2zL9hf-qslBUW`vhponXX!@DAD11cBvJ~|a2g}K99!eFmk
z{HJ5FYgN^~Yb~D-Q;k03q;g5ZxLDQ3(?pk6d#Oo9RK^EC@ihd%rPJ34FFdnzG=NvY|O18NKxr}4M#2Pa%sk+3pT2jUeu&n
zZ(i#Dpghb12Jx|Q!GIbudaVG;2|!FA&ZnvD_o{`v1PfkRW??3@son)M!B~Rjogd8)
zNGbT%Y|#XRsCZr`*mt+}d6W~0Ei}LM4|_V?e?4OAiNZvAn%EAg{c7-@EiHb2UMgrL
zOj~KyT3@?`Z>nvM!}ZKaOc9dS9JH1DIw_63s^C7csXy7-E%cCX^7wIEr`)^ai;v}Z
z10Q!ro$49}6;x`>RQvJ>CnMWs4f+lIs$>5JQZa0)Wx|xJT0YB
zSi8}xs$-|Pczr|0SqA8&XTGSLnFi`{EJ&v~g7k4T=R1pXH&Btv*F7vWc|*Ijfbes%
z^H*t70fEeu#zrRx6eKDpN)E0{>h%)5-`XcMI&kF5I_Kj|M%u+DCDq$bg5PD9G?jJM
z>81R0PANr+Pa6!PsJgph`fFpWfh-qoj&orMS;2S8NH^RiA*Yn>oH^X
zdouU#?*oG)Fi5L$1Js^|;e|-a0TD(LX>kc-;Qr3_J^LuJsTCz$k?Q
zoRANM5Au%Y8omAad48Z`FHpq`I!a
zrogSzzeUpuW=yGUxmEO;L?iR}qQpYm{XVm~gcd7Lnmd+6P^^K+zB|}F*1@twR8lkP+EV0+(1Ph
zWWl>HioIjsmHyOaF9#4Gls
zNYjEjf-Kn%y-E)={{bl6?B6w0*;?vC4xkZgbduE8oO^MNF~J~>i0zYT29eXPY5H+&
zMkWZ&iX3FiAz%5smX_bb@GTCp-3??rAI6msy)pjAt%@)iRt;-PJ}W<$NrJ^nqxsht
z09$8@I@Sk5#U=US`i@+wLopRhE@~2SGngJzXs{5~=MhRQr^gM2A`$!FqwXr#bZZ=?
z*~HOYi3n^#afKR1uAtdd+$Oq9Q75~A?%s~L-tN_}N&ad3WVgs=0rO1#C5cUwb;W7*
zbhqVM0W$_+Pqo2napjSFtTItU^1|C5Z(*6p5=(EN{lkjZ51JCwGH+Fb1EyVgbo>aL
z0M$ah2;@DdBPV@Xu~lVM7riZylNrV?BpTpTc|Cy(I>j#FH~hJN~>#tbzmm?UUndYuXragC00Ss7Z@?$f02g%A{o4Kue{gU$I~w?i*bajpl)M
zkaupw5x9ak@Pn%HAEN$xLw}3@R$$cv?W({R)j>*CW%9(K!lIFo+|cGVAKjB*1Uw1C
zb}>#=UKoZHI(Mi?JV&e{Y>U&p7OY4pN%AP)N2i54^SVleHoYheE3ZB{{s=OWb^V=E$9|i5EHbr)Q<^dBGp?
zn5QOoon2x?Ic!#TLl2{$?o0da{Uh7*&ER;~cidvN-tI#UGP@oI!gw@=+DhecV!@rBIy~o!HQU1C^GFM_3;z7T;
zJ=OqRF~8`(2Rf9$wM*R&Aq)vpOv~n0V~8_EGA+
zT;jH}iD=)u937h9k6LwBB%OpjFaL<3)YYuKL30akYO2E%0y6Gc#g&(GP3$cXkt%rf
ztn-TZ59llB1C>jU+rSNF{3v6c4T3&jl;|^uPYQ+$LLKJ09r>5$xHIxc`uM0kis2iI
z2<0NjKk1mOm(E2)L!nvLG$XZKC49Zu{8XwQqB_CRR1}i*^AeL35>R_Aiv0fdd}-2k
zZQ_@CNs4zzOHSS(R;uRx{aPpY!~v9td?=LjXVhCYNd*Cd;_>Yu7_Lz2Y;!SX(yF)
zk+MFxb?mKmPW0s#p2@PfOi#(_MWn&?U|JJsBf>*7UJCx9
zHH_UUym|l%2($9dy<>WME)VCrck`Nk?e~T;kr1K$$A*6Zr1+aFSelZ!SsyOi&2ps_
zCl%HF^2)MgIS+)l^N1^vs@DD0-&p5@*fktU-BIL0Wknn~RR~}Q%ICaP1f}lx?sZ2j
z$aRksWeMGrav)O8q4nv6?NE+@>b{N5O;zd$l{hXr-VuaY7_-65mKIEBLlxKDOxYlM
zU@|)>QJn5lMc1l^`E9FF+P;2cjXuPal8xPOBO&P1ogVGm6qHQB^zd}Cfz;3*)DyXq
zfz-qX=qq0{<&^zTh#hGOjkxVdpn
z^gNBjyg*NMpNn%wN70itb8CqjZ8Zr$h(2DR-_kMh|0D~ULVFzLz@}vUe*o=>H#Kw{
zyDjkvgV4E$e}IO$FAU|M1hn6C1YZS@K{dXQ24@37$gJw>Uo0$;$^|RfKNoGq!O%qL
zREt0;etYNDI`fM|*d@irRS#lkh!|K+5)%3b{nD5yw6^4oGa&q3_GD37r8LbwjYK42
zoSn%X25Z2fgVKK661j$iMk0w6C;)53l;3p3VXRzh;IAk#4k_oTdFDyz@G1O9e!hiN
zniqJ<#GX$9{E^$bnNn&&mPdIl)98(NqHQ3?73m`LuGU0A5l2)|gLf({nO}B3gO{fT
zEGm;Ykc!{pV1qT5MOE#0X>PCuga-$S8D6{64%~Yr4)U~4=J*;yk<)(ZSG@`iR=XEqw>?_%tcn++9
zdXg1ZvXN<0O5=w+||Kb2{iG*%T*sQqduXm1S=dcv(
z>(t$KBhVwuE-E*$q?)=C+bv6r*0gk@Z1L&9kGRGPxTew;AF`3*#l~<~Q^Ve0{Er;#
zTjG$dO_z((Y2#4l9ujH%a>`1%MtYNA4ZFp20Ss5s9sE>qLY7c(qUsE{HPrC2X_mN6H-O`KFAO_6?ZQF+$4HLKK#x8lW=(fiNeHu7?%BU>!_T@aqT92ES
zY_mi?hZ+9h5#iVpI?q5ZJ`}5_<|d7sr(!*V=R4da)N!}g@7byI;TF64G0CLOt-?33
zB$6dVq*Y&-ALcH7PF(8BEAQqDqn|WB1QR}+mJJ%wC1IBg4?NOovw>&VTaH!;U4d`V
zbuWX^MR-C>tQSO#V^S$JjB%mwXznJ(EIoZ*(5aNZjKMsI#v6-4vUWuF^S%r!P1#aGKdOCl!G4fbrmFQVM*M
z@JS=VJH%R08_gUQheEQ?tm&*-r{M`YpUd0GdN1DmoNK9!XmkwI1O`0_rGhXO&0Pu`
zX%XLBs@xgkjqYorc>h(nlVPUkUmR0W<=T?;s50z(g`V!zt>dL
zmJE*w&ZRjQPKK<8fHdBb6HFP)p>jMdEIlYRv8mE|*w+Lvx*8CG;>7G=jNARPThPeoAi{PqvfZ-?TKBf%Nz
z>2Wa$6vzEj7!_AUBbzWLJTMvBKbukBBBll6DKBqQ-KG19%%sX5_HfQC_nLAjKPyx#
zDKaw;ALEU$_W%}<6*(GpHi&pw+ZCZWM@4+I63Kh$7W)SfNbn*O*siWA+t80pNT=&?
zb)_=5_{K9(mZ0_%H#0DDN%^=iP3t5%Z&VP2t9w-4#|q=NJv!L`~h1g@q4D8FHl$>p(X7JFNKoc`ts|#{Udy=EXzTjNZt_CJ
zWAj%nf=bi*Hq~Qv(W+$Ut_>tYyp?H)00ZPcI51B=p$vG@ocbwifs7Yuh+Z<3OOeqmIqL+1Lw!kR#N{<1rFbzcsbZ5S|e$Q
zb*EXsg*LG3YbAO2wAMdprql)0Yo;~JcUXlZGVa2W0k9y|0>#gFH9DV8R$p|41~n%(P|7VY`!&++
z=s4DI)$?vEb9egSYI*1g{JC96CR_&5%0~KkJ{WjI%y}8xw-9!XmxteN?BXE$o*3rnr4KuZRE{7br{(DaF2Uy$rU?kzRKBb+`Je!9+CF~
z-E)YBcN-G@l2Y%LR#BeHOtk)@uZGGJEkcu^$VRHpkB#^#K_pN&NF*2LC9$GeOIi(>
zl__9)a8olrURKXAK6!a=w+7#!$Z7(uY*dS3%O`TX^42=}m`{W?T@kUu&Et>C9FJYc
z)((Jc@<|9+sg>xX{e|(~((~ktwhoFNP;+N?X{pctRpaR1bBS!0A50#VGPGp37kqxi4C>ru#H2Z8qm=m5)&&H6hf(N#xI;*gOb3GS}&IV7Jil$`|zP
z&VA8A-Py#j)yz-_xDrBD;ON}^iL9YS
zuvaeqi0pBvfRuObtmN0k#v94GRfevtLzyxO4FeRe0Joc09**Wtsga^!^n~H_vp8lZ
z^{}LQ_e|*HOX#&aEw{$`bfi)&N4Fmd$xnfjpwh-s$N9TYTEv;SBE(G}PAN3}e)1C!
z+giH)*qosheQKPJ*Q;U^uq;Tn_gM7d=EFgj&QubaSfO`?*Fr)#88MwDKZt-G#fm@m
z|M8vF!NYngwxx41`5!>&Eaol7g$P}rk!Q|jvUv|XQD>6U#fN1P=H?F`dTpLUxZZaY
zd+@F{J9z~>c3otw*$k&D4v|r+W!~55IBRPTww2J@uZmMdub8@E=-!||nMn79#&HE`F=eLT#i7{C3`Y2t>=b#-A
zQXi}(tL*QW{De`BEeq~WW)O)!u-Yjv_BKvxjwMu**SXt}fVQiKc5|N2HQ`|
zKTe*pK^Wn}0tegISik`i;$Iyiei-AQvUY1tg@=_GJ0riQQ>U~wAR}NIOW^rbSmb^%
zA5J||93aph)bvcUD9xZhh66LV&ySE3;16%C76n7cEx2=cvdE?UWf6e;PIKz@qBC%N
zVLOtDgbRR)ORBV|^0hVKM}Ga{yRe%dm&|`uHN=#Z>n?JChd3Nc15r6KAr%*BgbkJ?
z=_Tx5Opm$MO-Q$l4ZwZ%N1rgAcc*a~=8$hG*2qo++lhb38_Huosaad+tLQHxjjb-M
zD2$+zR>o1sF5puY>eHA1je%pRBI`QFf+9$?ygX)%Gvt^72ngVm`&adyF
zT9S|2lI0uqMW2NvNrDLWi0SF5Qh%~asCQS`RxlG`-Oc)!*>5DuP-5f@(nDr~0tKQD
z*9y6_cD61k-g85U|1O+lSyw#V%$e3-64=CenL{Bw2`@P*=n`z*hW9djY~Rn6{0$Bq
z#2#DR4rCJ3AA(upz
z4oS_d_c8xAp`}CGa(%exsGDzoYG>wr9c2&g!w%sqU+#LH`|=Q9`4y+~8{byfQU@xU
zMk&WDx=odd{eeVnkSHW{PS|Sv7B=i`se~VU2??--F7YRPhI#j0zeIw7uo$!Y36c#3j{jlM<_=iDDS?TZchemL$8m+~suZ7>rJB
z(@B$eU-ba?y$GwYO^PO4%4Sl(yjifxuHoW<&vOrVm9E6qr=_bm=1D8yt0p{*-XObR
z0rk6`Mf$40^3vrWBfIZ2D4iy;6R6lvr^mHq1xiIH6KCu=CQ7@@bQWZOu8@
zpY>>K_JE@#Kig&lu`Gj*#m9JsH{k!gchc$7;$&^IL*8I9S#B9l5*vXKB*j-*XytIF6*8f3hQ~(r&9fuspM`y|
zi~ZDN0mLE|?d2;aKz_}@ygHa4>+kD*R~KZqe!ZN*K$u|uAg5Rf+dKKt`nP&4;OyT#
zsJum+zC1^Mq1*-$Ds*r7hP)#R8k$ILn2EaqRd{I3X$Q5;+(|cHmi~)p{BPd>&+DN7
zE=8mto9X~$1teknYXvbIKRrq&ai#0k(}Tcd=&L?1c$TfsIGxOt#aJb3bwdgO8e)Q)
z2>$qM-O3JCcQc6L-J)b`dxy(?^o5I>{DgZpfa>TIfmummf&r0n*%nz(!oJ$lPe4Uts7-mADKbt!5l5v{Z)ze(U0GfyiV
zZDv0)+oxs=%~Hy2XU*G?m^tHdJiAHwOu@)PvI68UiN}MgmUAp~tJj|uqU8Lz_A6?N
z%Qn>))*SIO`t~NxT6LoATllEJmNHs$?F%J8^Ht~$x166Na+)3VR=*E<@_L9iq<=eP
z#bTwrHY$iVOHvf$b!67EdriA;U54r|gmxvgrtg4<
zK)&fU3TbEhLUdKdg8_(W;kc}A_Ol8ygJ+t>Hn!$NF6;%Rdmm4fH90ta0;W`$Ld1=+
zGHk%7@)8%Q!FT!{Hrtmr!Yl2@9+%fH-UiLw0x{1D4p-1RI@QOHjL}axv*~-T(psGYZv4dP+Ea|6EUE
zg_2({btS#@^=A$(Aw{Z>$M$&GnscLd+#vFg$J9whScdR=Wcp>hQXG)T8J1xP)?wZna%;qmK6$bW95M9-K9Plqn%7vb!i3rJ~rU8a*B{Ggf{D
zXK%6$6~>b!CQugl6+UN;RS&THdMMa5tQFy=QrmbayR+V@#Xt3g9SjPhqeYspeKMvU
z<&(_u512}rngZ*}+IKM~E4x2@<6DrKFlg~{;E~a@nEjnR;-^5}I4<^r7o5CE048`z
zBi|3!)-);+xUDb@Jw-Yos
zkMwWTSGYd2b%k_-Qxucdbu+t%tu9(e8tEf{C2@q|=*%c4TV?)i0)8fttj~_KsI3n(
zS}|5{p_~VkhHv896ZwKF#6LKB{P5hMN+;Kwg@`c2bw*1<1F
zpPZn2c2v1gUZW{e0IRYV<692FRfDz@=5%CSafk7Ez;6#v{a$R*X$fw
zF~!g6!!oD&8o{|B(y3}7=F=Xyta_AsJ3P|7a!ed3J!l_eQd*kS!rprJNoELS8}2j5
zO80`u=S!$#zou%1YPmh)M1b*P39-jg;TL1f|20?m{2lMdCmb`I*>3gcz%K^|KkT+f
zXz5YhcokyV!(!?r<>gd~qrh1lJBK>+mjJZX5dTZLcnu_HxZfH$-Z^?iy
zlH?cu%wRdU3bD)rwEiED30IJ2@+T!9=;_*7YH_u+ak^pWxmEcKBJ?k)H(=Z
zr}7unHSJ`xu^3q#S;*vn&J5DyaLOc?=KoG0^8>Y!RAl5eXDaM7p8BjMs4#|7=%qezU#6H(=8o6K9wFW*n?!PKK
zq}!I*hlqq~6ss@${Ct{wQ7j4YM=Xfyw-=#MG9wCHaezJ7yCZh+e@(BdjPB!XPIO7sOsF7n&DvfW3+W#n7xy?Ie%4FXA2-+Lsi>w-!S-X
zKu<8fw4@`=1a?~TASOWe=%MBO)L`Ye?9a63nx|BcqfPu2tw+x12`;}}1r8qYwOTh&
zisjW3ub7JZTOv6qR*k(vO7>N)q4`pU(5Y^v;3CFYbK&Ri4GC3TsX)G4-syz8RSA8-
z);;>cY%;LbW6EG}iK(N$)^tz=OO8e}nIRc!XU*!{EkM;w;A#B;ybgK!<*VJgW#JcK?&SNR{%?^f;*3dcKn
zAH6OU1$Zs`RqJZmP9y8%>E%1>KPRY<%?}wQ!(f+t>G-?D$j9Wr4sSX>W;?CJE$Ve(
z)HiUksS&1;ov!CsDgh;zu>4S%<(gl
z?^+qJfNgfavB;M>0fIrU`l@F_rbpD{ao1sh*gyq(T&C46Xc|P(JawRneCvQ
z39}IGRiLEnRdVdFhYBXkq-I#v`G~|ayndlTf}*1Vw}PRc2cTRVum+-ak+)^8Y5}>_
zlSe|!?BYLw0c4C4K}%glD+}gm`e965D$CkTE%J*hI|2QVfg~q{msV)DxIvv;EsaOW
zWT^gW88{1~gndB?xfhk1w8vOy_t$;#6|AqlQj@u3XL(CMzZVo-nV0^)olN5
zvRR~P?v;M&INqyjy5^zaN^i+z(Kz3g65NXG*Co}-0d6D6yvQt*P-|njOF1A4iUe*(G{%JdJodMC$5%oX
zbd-h5KTa!VaB2m&?}OLjQ4?lG-@2Zn%^=0-7QMWq-ScMoKsI5{GWXGrd-
zd5Gv|L~{_vFKEBt06(lWYyowOoh9gnQ>jl7XC;Iyxb3xqF2
zj(0CxC+9t`@s8^S8rDd9FyV6=q%+2cpo`~_nd*hkspc_VWnYV@gd`Y9!kvxx6$Qe<
zJXd)+1B)(sHa>-s##XH9J=0(4rR#W(yCo77WPQF9T=R~wX+x@A_fmnm
z>aiYjav{j0FicnEz*?Lc0wX{5wK55ZngB1^E-odRZRgT}Z
zPT@34+u%s2N^o)8dl0l%7;ijjGiSI8ILMS-Ff%?u~KVERJlZ+pGh76s~gmn&F
z|3ySmjoN>@9yL^+n+&+0Y>d@!y<%A^qVt(JoG#A7FH)y$GElXsOdiE=DYqONXA2{M
zY)A|AtNMDx1i3&RT0mAumpy@KoCR!F2u_Z2
    4ezog9n$?O$+j^yu{+5lBj%0JZ
z_$q*%vYD)Y%x|TNC@H@~H&{`|4p$K?Cm%F!?84#gXSdJjjp8n%uF?>lj2+k0A+Hjo
zUyx~<8Q55~?%%q6NvOZxOjzuNcUg(Q@}%vR9T5~sKk$&C2a0gUGl!U-Q&2#WqN$gAEt7lN
z3Z{;%gM{yFSAveDB0Ma-z6~Z>aG*cRoYW>C+t+=%#3|F?I>oZul>&;je?z+aTllKj
zlBtT)6n9L30hPMGXz)s~A`+|(g$w~2YY|9My%X=K|e
z@l#QSC+sOAKksCs-QpTk9_s}%O$g&IH$~a|cY3{W)fBG6GAcz3VTEXotI5AIX=%h=
z%}Lr?2`+2d6!I|zk<}8dtWKi>A`MbsK8hkW4I`{aIyUu1@rgri+4czINAoo8t{YJRxL_!d
zamHxs@1aH(JRy?bGM#2i+tjsev@}RF!F(vdHJ5NKBO}ir)Wc
zF%02luxIhX+mTOsO=6Rbsv!nijhB05YuTya&(WABFdM>%xQj?6$Q~DR9_Q2Ce2k|e
zrJyQHDc-p>d3i!;i)AVVfm|cS=>&
zK0wvp;p!-mA??p7J0VexxI=<{h6V#9nOg&G7%1O
zlAGw?dwI3Ry8AM|ri&QYFU2ceD)~s!eYdO$qws%#{4&;vArjM5jH?H54#KiE8-mHO
z883}-ApI12autX9{-Eti;(xbj{?lr5^Vv>hOCsqP9nB8AR?L`Zpsnou9U^k4#2By5
zJ3-M&%YZ~%f4##$GLd5`5&gzf*bnm{s-0g`d
zuoiqy#g>9uB2KRucW3P$mIt!(o#m9hhD+Em_Di&0v>yFr{^ssC`yEp)Jf>}jdk0tA
z)z{O$)n$mrBoX{<`ca@-wL3XXUR=I5Fyz=@C_6f`5Df#H?E&cpbnZd8CX(Z`_AULd
z-_}BuBvCG#q|__MQr=i4AFg8O88ev-Or-$o9dIbF9^^;+s?!fu7JRwvytr_E8`R&^PXx)e#Sqx
zl>R(5;seqADyWDhDf?-DaZRY2wy_#Qr$tg0|Amml2}DzNOKm*9v7+zfRfRb3BVi}Q
z%``5Iyx5fzdX-zb`_!ao;y=yX#0;DmkM0P>BKvtD-mKW-hb6wcrSI0}w*P2nlS2-8
z5BW8>504;r92Hv_pbVaj!feM+t0nV4i$|0+lPxI79k$#VZ=?6!yxO(aN*&fmgGh);
zwH~;v5Q=)@U
z(PF5BB@_Q_w4aX~8Px|xr1XzpiR3S!i{r1#Yb%r*UjZ0ZXjxm|^3>3?sD!k=sb>FE
z^~T7Rs55Cx^ZABc?+tx!FHMHw$@y|a@}^IQ)|kjs)!`*EO=w{Re%#8VyTI_NqpVml
zeLT4PF}vY5M*&C8lXGW>eVg!|S|^rUcWg!0GQ*fQmGC{~RWMPwrY<$s;A+E-y4W++zjw3J3RwLYgufOrWH$
ziA28sY3pJIDdrGHJ{oO){_dRBW2&8YOwY)4wB-C=;D_>pHZN}yJgPYhSF-5SLsO!a
zyih8Of|ct=${^rq>Vg&fpAR2@+hIf&bbZqEmk60EE&L*F%A0=+IX~_t3J^yT+WNbnVF%TAJ)@>8LpCn^6ac$`)tp*-bWf(nxLjFT$Ox;r;pw^UKR}B(3B(wIS;^cIZk822F=S<>%m_*0I}>9sMQaW+2_7CD28W$Va>=1d|aNsABsx-y)kqlb}uq>Hn^
z5t}`Ge+Lb`5mc0L9SypMI~zWfph>Ak?EV7~gZ88zJQ5gLJD7_qR{9M@5ts*F7sn&+
zKzj}}dJ~D_wm;z!)G;KnaaJYK;lY9(=?0;t5|HS#Ez!YC{^+HCDy)|riiYwk()T~8
z{FGftzHAO7Yz-%X`O-?u)+N(Fd3_?LaVz)wR{S&CNf3Pf^vX9~Dx6rHd@UabS14?k
z)pFR>PsYw}k5w$&|K@yimFoN34|pWT?YJyL4)AM9HH^RUYNeE1xf32amrY~nb^Ju|
z^;ht$aEGM4^`7pCXD#bJH^ot`v(tbIitcE4!dq4sI)Q8RpPfC1N_0Y!yk~rSw7v!e
zx8JKA3guCu6$`f`Z_pmdu_XQcMrlBgJsZyGoExs)C3=#mETJd9w&cAQ?~q29W|7`k
zkMGz_?p>1O-hQq~(M+Gzo-#G0V^x<+_cBLC>L8RSVt!(~!*qT;+wYuVKHF|rb@O>L
zQLwT1Lslw6DEe%RM?F)Ydd4YPc?{%iTJ#i%IhE1Wicbr+z$JqXR}!D%X{}gXeJ&1c
zh{?zfuusP4G~2fenp2Uv=xD;w&8-nV}BK{Z>_HY2W_qtwX%VV1%WoK
zPr0}`=&1@#t$(0e6Vi96L}a1r>f+sm_f4;WG$)Pqav1Z4Ci5;TIG@%?>P}h9eeDLd
ziGn^9uoxzjsADb;Mb%>$5P>%RSvoymiv~yk14KYD993NhKVcF-=h<9t`AO}%k7fF@
z)A_z8O^(2R3yl1fPV4<1o~io`iwKfXNEzO4Q_LI%w>krP5)n<0x>q5OfB7c5G##50
zUk>B?MDzj~kAj}C!ShtmD9BoK5#~!$t{g1s=#3VZ%TN^JngMdKY9}uF`t`;1ZL$AE
zT?wC|EJb?#^_859?GrZmv_LvOP!aV8zFqX;|~{!0jRXFJFC^hr9v(N?sqD57HM&<+G@OQnReq~xU&BYVLv!0atWt5Z9B3gl
zU~yOAM8TB}g4nrAIle#KAHg|vhHovF#L*N-J73PsDJLW~aplpes;%%}<
zqiii2xvN6Kq43)cW5@490WH6c?pv28=ZEOYl17H{-jUT}$D>J;F%}c5C{PPT3Ajfo
zA%($kUO$IAmQ&nU>4d=&843kahrKvuCbM@C@3>fdXLM4Na931(t0qtT^;pl
zjKzJ<6@{WD#(CEZbGTSez2wjTj-8$;{GN7w*q%N=r2h?|jAxIA7l07oXpE?ESrfha
zGF&Ty`Va6yvhVoOR;<`wQ=TS(+O{Q+H0t2s7l*?mcp1GI(qI-HXOW}FL`mR`zqq&w
zZrxrTV=h%nN2>mw$9PF&Y9pIL$-O!C9bQaD5}*Ev;|jDxL>}C>ExFAp2lpQt7W?2u
zR|27eU9&qq0g)!!iQ-^zy~2H!3egKVNK(niv
z{5tuJuN`d%(MPK7BW!i9#3b*T5t^DQtWtcCN75248QFLYL|f;)p7p$Rxi@5S|M0Jk
z!&>HWzKXCLb^)XmLGJ)cLhO2EEVpos`_bF9KU*_@O6*2#Kcb8V8+;Fj#^V|r@HLen
zmb_tqJweB%Y6PIi*C#XZF0hLXUuDN1%@;E{uw-(cSG;E;tJ}g5Vmy+{^!oNYEiW`X
zhD4S8)eQ;7-->QO;tXJtnQAaRFraspi>ZRYL(-#Q<^h;5UEF=f;zG@!&K4lGP!+0f
zpwS29d7Gjy*?eKOzwZBidYQWed@jeXQBPPeX;S1f6RW_)Y`=cWh0B}Jm+%&vg
z?HxnjI(0N~v)ziojQ1lt`
z?hSh?Fl0wpM~}m5)N-X&Tg60^IOfrQ2@p6|Uyi0;?CkK6&W??rH1rp>*2Jz_bV6pz
z@*1+U<@>@RLm6wllfA#34b{@`GM-ePJET7+D8k!Q-MA^XJk*EvnNex!9P}?!{R(Xx%S`_LVZ?dXd={jJduLv-aVO2mJkGf
zqmdZ$OA2o(mGC37W5fl)`=|tgG(wpVbgSH5%HPa`TKIUl_zV;Sj{UfWtF}`d3a_v|9dfS%r$ePVak8(t$_e
zB-HYR>8eMT9Q*o=_LT}3?F!(;(>m74Lxx}QH?YZMUOWnzkMjwx>J=~F1~&g=Q0e&L
zv)crt1wY|{I*vkxi894?wC-cIwT!#&&4-ufhIVsPy1#c+QC)(kG2^Qq?Rl@|ao;;g
zDL7W`fXOHfM?<4TiuQbH5SDIsr|%&@-pFXzCS$UM+1uLn7Y9q|%7ee|HMF#}PnIDk
zC(ui)GYcAvR6<0VWCn)eis@L15pg59CA7YUtu6%4>7-q8g}NKZOH*}9&Hv!jAZ!R40bc#FRtBJM}uyMBlB4P4QalpaA+@EjvOYiY7r
zkpV}i14|(Z(X9Pq#dl$@qPfqUe`aUNuiw7)z`0ZYA>Fn5_gyJnca-3KP?oyG%Wbnu
zv#=^6ZVU^;U`jCqz>@=m{0WhyVRGWItHa^EbW5_zWbE{BiOsW`9NAB)Q*gRMCC4Pr
z0FxpW1tR3NU;f(ES?0B7AN+jtuU^Ggd)+2hFGV9xYf08e@Hf9Df$Kwrk1#4b-fLo~
zL^-xtvxk`(jVj{anI_prpC&xG6zRymk{V-8d+aDRCWv%k1s2KbMqUb_0$kJXN?>b8
zVv~gd)R4|Au2E)AuMSL)Uv-pkB>okB&CesaB?|4TjA{8Ds9eXXmj
zGfF1s(rM7F`P)E=tia#DeFP?7LO@(jdKY+S6?M=%w0@ATAs2(wU
zXB+k8K9_RC`Ke?L0}W0Eu`=XxhDe&SlL*;&I;soj>>OAFdIMlOynOt^rdRjx
zY%)?HU`O6xDthchDB$>0D~#~=Hv$q
z?CJa|W$>E4CcM4b2PF
zT+U0ed|?#bG1O=i3BB)L7QQ-u4eV?!g0YE(IE7@iw2g5ynGiVXxGphvyXEaXVcoJW
z@NJrmLuE`+`K<4A`OFE~fo@Szr9Q3wO}AjuSehJVxwmg#o7)m}9*-McMzkNha-~Ei
zwWOR_ui6hVwbh!A?kt?RD(ft)5~fz(O8?{ac
zAO{}RX}bM-qFFDgEMF$8mNzL%F%of_N~uhBj1@S0Q4SmZJXcWn+ZVzjsl?V$L-Kl*
zNBq)onfUIFuzK}s%lz_bIY$sUR$08cOjc!wM!83lm>Nac_~p@yqp8c#Y5z|gur={(
z#2*YqyH>JGAnjs@A&1#Gea2ZljZb5~|N4C1=8~8nc^0a%O&8B$oZI}-=GIO_)RsjG
zE513`WW01O+rb6HA&N^#YPgXi-HS>YcARah3xWD{n`u_*JI*jU++cE_v_~#+jVwfM
zZImqL8Tb*^uUjinHH*aECRwwD+gkUZk}+47uL`uZp<`8Um*ZuwXMqc};z-|T4+-cc
zSlcl{hZhaCT&SzezwhY>ItKuYztO~9cm$T=*gjEuVCIEJJ%T=bQlXoilS_jnG6SE`
zR@)cC(>Xj)G)lF|Zt@by3h=dTIV$54lJ&6K->=@5G@Cu}KkNffqb?r;e?mE9A{T%L
zsh2e140xZ5;_1+GOn6xwX?AjS6!DY-;|P^Uh_=k*{gY9$618k}x1i?p+8U)6gd!l?
zEKjIJ6T7YGiSb!D|8!)c;AwVkJ-K2~VXqgQU-!%I)&on>Yxnn!O0wPOuV$6!*pq`<
zm<>0vL9N{ZqM^xa3vScmY)1^GngJ#n5;5FDr_xMW%_AQ*zCDMIfwLY(oy_$pRoIC%
z!*QPTA|*eRpB$+Dxbav>Qf#S@w&#FYB$vSCQ~w$>9L_Fi5ztsu>PpSY)?x3bR9{8cP8r!s^^@Bx
zS*WBKt!n@uPn%RcItdRD6c{}nD1m53!RDH8MuQ;(F%|*P*
zh!S5_XKnjNbY41b#C*=+#FYDE{pPmDW@^!Jjny3!e?^zSm&m?BmGTPKJ^%W{SJN!I
zubol|^#7hhe);ka@NLON6K}JdOjj2WsF3)6H)AMs9ZvA=M-UDiqZv}iG=d*v++4|DQlfULADsijTFTRl|(3|Nh2SWVqHAFM2(9XWj
zX@b-|=lPjq`&6+#zx4w~US9c&#$%te?l5PsdoSGQ{j)f?E|8t26l0l;$;#oNcX29d
zddHN%ozEBd#RRmFJOLBb{tyaYE&D*47fyip&6UX(V|z`ku2RkC5w!8;RP{x_gampxQZiKJlBVcR((~$5q88PQ9=$=!$d4sGi`L@{fCLosrFJ&{w-svYw
z6e;doQ7oo7C;VLY`6-I`*NW$TuXHwr-}F4g#s_GO@x3Ak^z;t}kp)p7bh658@F{$+
z(>5N!zccWahl~zINHJgy09>sMS{d$^F_)rcFzbrm(Phs-8K>M+gXxvW9j`O`$~1NQ
z!asnH+yXy-e@zmZWX(`tvGhKa1WUSX5jTSs&V7%-H|jplbg8f*2ibn2dPGxDai`#V;?q&oLqEB#A_+ur^`7x>Zhz40Cdd*RN=yyvoU`*O
z{vpj0wERTnlbydhS2n!OI5In@CJ#_nwl$-2*ViH^`v-_o*2}+nZvD&{e9UoDZQ0b;
z))Zz(j1ZWy72xkHzXXUY0JcLsHBPhPUXefgG%W&;Z0j>?nDR`%3>|IxX--Iy*FXI&srdc
z3EnLYt~e|SnjM|i?IsSL00~4_Uw_gBeGJHc6kA*e}56?4HP1Er3PpR1$ErNH91K+iN=2&@iAiec+E$mNZ
zcf%n$t8lNNJoEN%5}s2VFG!RGI7)HDK}?jd=mq~$IP?#&*cp0SzJ9`?u)qukp3j#h
z@VGb^hOazao>n}{In4J6hyrn2;mOqip=YMF&HTfg+u8LK6+3vzi^p^G@j!+!Ooo1y
zsnkwNS0_-rMgo+fLM0x~xf&E0JIKbAa0I5^3Mk0{H|fwhn2GmqKBqAjufEdR(AO?G
zx2#K%R9KZ#*fseUi<>$x?xqc6Qg3%SWRTxJbU7M%Zfop#2tRD`At>TWa}WHDFkl||
zwz>zdDz4mKDp65|6+s?+TR8XCK)4>~*Y!$_%;Ij1Yby$dBD7MVy?=l|r+j+OZzh}8
zdXT70S@M}LX`714J0dKW7f!0_@JnW^rO+x~Sl_cgA4|BFua0xP?8bF;|^QE`-q+1o7
zcsps)=!+WUNzJ|lfWlMYp)YN~lYr`ro$}jE3G_h&y((tvPtwG6Pa{c(ixh%F6i8G7
z3Xe-PD>hu%4V7>YI46plqJ-E_*`kdg;3CQk`)R$$A1T@lkhhS^>xb(rJT}^dTk*hv
zgDx5_zs~af3_X5IZ=7~^iWq)rJP&TlLGlIJxe+?(MRk~=*4u6YXBr_Y63NvmZ3Gdz
zf-X_|k}eiek*TgP>;GPDskv#KKtfdybM;B6k7wkNCnJP{2xYq9e}|MJNDTj43}Tn9
z@D1inILWvx+{qU;+8#FP-Pa*_TUomw04+>O4TNNmIXykA4~bLlPN&r6@2E1$5P7pF
z39Z2I5ic49YWb&$PXY46-?KX1@0Z34Hckrme*WURK-o9vOpGmlQQNc9%txAw{J^=@
zL{_~girdT3DthAdF-0m3S>$jhx;C?NVY>>#u^rMxnO^9HqpqY*!3F21Qw)^bJBW
zq7g=dL5seo@I8#!YFaJWu}o&*s<5{
zKAi}_^11K`ZG)T60bMc*A3?GVoz`Z0Cd0Sw4ShQVatpzvj7JhX=NecT3F^%eOf-y<
z{{TS6mEvQE|3T7r7WL43m-$)d_U9x6Udn@C+S*dBJdEAArD>ycF&644m{sLdIeL91
z+>HqXOf}sqeo>xFq_2!S{vEt7!l3VirsQ9}7~{1`YOeWKWo*p!6W%8>%3oUE5K4c*
z7_^tqr(bi3&pmWaMXZ!V%njc+v76g#1GRbkU3S}G{J)>g&oo08nV=Kv(V>^(n8#Gf
z(>M$tBUPcvSk4?jW`o`%V=_)|CxD`toOHU<=BkcXlrRuE5oE-AT(YPkRTf0#u$N<7
zQ{8Cn9{`D+>5QEYwCDHLD~C?SmVQAU2uMj%u4h3
zM)T>J@^1o6_0`1Kj=rP&V|q1v%UA-5imGf$PM|fS8Ed$q;m_?v-NtFU&R^l5vwua!
zAQubfTQ?KlF!X%0_S|xMbYsX}3%rBu_=29Scr@L+EUIj711TGChqJ}Kw(C+}|03p9
zw&b_D!$&O4ugBoVT4oy@QeZ2Wg4ELJQ@LC6KT}Oj=n8#ZnppcgG2LK{(_Yv$GeUgH
z^l9+*2XZ}R3@jpcz<`JJ=-Q2$FJo>%+un}dL*QP&-O0$~9(+Y8djS@#ZO(BBb2U%4
zjiN};|F`siRjF?fI~w|%6+ZYhC9DhN;WWzu9KN6X!t#WCz!xA^Lz7?OA#V1eDcct6-kAnMR|FS?XFsrwWI$`$Ny8N`ds`2
z5d3$sQ!R0Vye8Tye@VfxRCe@KN+X(ARM}XRmzSM}o2E^|KccFnMD~V9SC^fzzu=2Q
zIxzV3;18EA8lo-cqAW1ra*?Y6_b~9z9~I~3ic$zpSB88}q6=lP{alf5$6`t4(B{gP
ztg~Zpl}HlX>tb2NA
za3U%0&)^9cas6J~?H}9m=P7w_Mg`VTT*PQ%pD5Y7tT28;-SD*uL*DV1wx+mmeo7`>
zu2l~Y&!LF>0+zWpAb2RDUvm5caYv)`BdM@$z0LXaRbaLhiwZooZKJs?+vh_y&*MwgEqy?
zE9qLoL`0-nmLb2HsX(Lo%ZmmTRadi?O*yx%<@S#7=p>ruRkCP``F8J86}t1ell5ZK
z?i*wN(%|Z9S~s;~eZn7|0hJC94C$(UR_x)OQI&*`}eo*XkAT?YZn`#oYH)
zd^S|@LXZT~Lo{Aaq|0{B}!F*LNv^+3h0
zbyY8gD{jk#HY$gu?`RWUl(fEms;z-nkmT1GJ5)I$`{R=N8Irn$j!CV~k`Axi7}K(N
zHB_;$j8!yy!#1vz5w4pOHyy;mcKXwCv4EV{_@p8<
za(t|sISoNRPMRQ%mWN&xA!F(i!B9j>CZP|Fmj2Q2Q-k(|(L&jkwg~Ov&So*3
zJ^yW~S!Zt>vmU=;dKI&#&J0z8dfq6DA-kryEO28AkDp3jaL3J~JQCK8Ji%0rB*oag
z3Pr_*+e&Il-=bsy`4d1Uai?6)wawMaL_CQ_3H5G3hrsDD)|#KELYFAaCK|FHde5HA
zqWu_^m|JmHnIVHHc%rU)1nI)JwPIP?k&WW-8}7kVk3g3XF#&nQQz+9&i4XZPm)B2l
z`%&kQy`O9wI<6~MFJVKJWs}8Kc{%PNRf%rXjr`5OLWa)jTIGvL%;o7ta4a)Lbg!lK
zBhM-MOxjaSSm-mucilZ{lmw--$(}Knb1yn%KIA*y1V_WPPTEXBew49u2KmG31f-A=GN9wVqEnZ(f2
zK#y?qr$tf3*R%~NApxSQJHfrW*EQPjytf-%H54>FN#2ac&;M5TUGUoU^5Og9ULCo_
zQ2MA%BaR!j&ZmNz+i@jPHpqfTa)@A0$WJOu5c)Wlr9x}+89SEZ
zzK+`vw!%~FmkL#VFN4f?MVKRwNHoho8d`51<-&)hx+Oj4-bqm5+{-{K+
zgjGE@K>f1Zs7;tyVFA;XHS&38PFPy)m)W1?aYJ#-GS(f4#3tO^o=~UB3!NZ2=yzKC
z{=O%;?PyTPfV)ezkP8_-s-!%eZB~z#Yn%%RxH=_nV;v?v0IKCl=1Z2uWkWGV0=dVx
zNnNGS=-R
z-oGo?x%8~W8D$cVFNH2ajC;*^TFn7|JyKm&Ygfg95fiCyII0dr8~tSX+}7;kYHg)`
z&-rKvOB&Ci5;82!`mEc|t>g9sfI|Y3HjQd;OM8PFpf`0U7bT2%LIDezHv&Hi1n5HN
zzY*Uxw6&_xn#5{|x*jeNz1JLL#rZ+{hHK=Y0>~9m*4Y(3O`3-Qn~*)E>;SGljyW?_1X2)v6*_Y)yVm_08uG)`WFxiq9NIwuI!P$}$wC+~jGFvHXs~H^*4J
z%Ux7rtcNA>5R_=4{AkKIl?G*K;)=J7Q|!(H7G%%JP9-Ux`9
zr0$BieBUG{p~G8}_V8rxS-wu#BFruiAk;a(tNd{N{EF9_wu7l8#UBFYxwq)9B7Bj&
z{oZ0<*lh^Gx-3u!oi9C6>ww+vL@4;3TBV}d)h16X9(L@YoCB!yQHTBcBuw%%^vPmy
zBabu9JPlm9AEEpTMuZ8g!x6V%JH=vhcYEaw^@zlxt$1P5WgfA}NTXYJ
zgC1o?rHZ3$(fAlo&fJ#IE~giG-2n}&1)Dy)j1d&qnP*}-?a77@DgcF{k2H+LVaz(@}{-a9{o
za>i0?E?c+?&N;CB-rsS2olHUbRqiXkY&VD+<1cr-TBn!Q4d|KejDr{4*JFKg6=AYgShg>l1*bCEca)U?UcWrHbzAEa!ni03N87SJWp}Y=`=i5%RTmcMN
zv{k@2&s;OTC|wMV9K!p)C)MX_{pBCl66FQoZ!cF=nY)k6tOOXJQ2j#q@Qo%6uj7Fu
zFAArFqU{%lo$#9h{o7N?0NbSFC4-r3nrBeHmcVf*_EY@taoB#n+BOHLJ93urtJiOX
zHrq<688SCZC)?v~M)n})%(jgej9Qu(R7Lg(e|h)7_~RSl)8p2^4V~g<&k`_;HqzKH
zTB8>Qmd`C!iM3)yw!27?h5^57oo!Nle|?Uov4EmPDctuQy+su^L+AKmfzzVNg&w`7
zCn%4>Wx`o2MoFliwt8XZMk4S9n`)7An*B1zg>4QiUW_L;tptzA78xU7rP{EI(Rqf@3pQXkNSoQy>{(wZgfZer#qTyBMKb!iSO
zLk!IV2VMeGC&mkiobHJ5uM=s{3140Xf6p*E6a6q(rb&9v*$}@~CKhw?Wy?hkQG^5r
zKo?m`TA|VB@9ADVkLKKKcNt#7p1Y6+z1eBg@J|ncEKAcId|KLD%WwOXqsBUO!cnEL
zlUxFyPc0UZm=L3IS#W+S*0|UJcGl?+1l%8dKoiB|f9qcyo)RW^t2Mc+~x0dC0_2)sKy4XPIOfm8|**kUPD|PVTA2$WP(MAw@mTC%wg=O%v09>Zf6P=1|F$F2tZmulNUw1V3_N
z3NwT!e5sxDbn1}V;+8GmQidhST%r2DC{+B;e(s4#{i}ns8s*Hbhnze=pm1ZP6I+g^
zq7_XT3d?M0ujHe^e%}&0IKNS5`9fa`LmZ>k7)_&4!Lqa&>1#tu?b4P;`kPYF-f;QD
zHL~*xT$!p?{piRtR`P>qlr)dP^o(_U9vZrSZUTU<<^Gl?St$8vUwNtf8G$0pac*7o
zcZzM({8p_Z704p+Lz~0`gy11IbdXlYS$f)Tsp>65V#B~D(Kj9kMT-^PVBlG2>u
z2?Yk)o0`9zzNEAIm)<
zO?cnrTRUUCj#V~WnKYhkA#)tFG#7!AIMFxPapn-8g}FWr(Qs4({02>c944w3m;v)S
zf^l}g;zk8U+X4?CKeLe5oJ_J95qF>ce-_*SM_^eg^6?AW%U}s3{&3xiFnsgkrQx=A
zT$Adk<>V{vB~50B)J4jD25_HR{89V>kvK=t5I3HeIuZWLO)LTA@@jYGq#&cDKoTi#
zrnqYyDl<~|fcA!zkp$(%HM%7+^#D=KyWdXcURf#B*s3{ecr+DWFYHfgI8~85lU9ri
z=o}b8*^X>!*WgUMTXVFWQ4TrA8^nj02EsgB7Ac>4Q0?q=+TL`1wXlysLuy;md8KFI
zGn*B!_;Vz_a@UV|TTjvQ8NvGViz3UZBx2+wKRrb^2)#{zKpK3}d$`V3&kZV^N!$WY
zL91#+y@iw9^5Qt&fd?TIpdR=863P@tB@Xmtys#Ed4dAApP59=Hy9J8}TDN;eTYc~8
zBofI_dwC!x5Rv~&`T2S#>d-@HiV1;e+4}T}&?lfe(DbNWC3Wrn3A6Vde$jcT+t~>O
zMWl1*OJ+RVVU)f@Rnx)>IH83S#ctQOzWEy=h_W&4mN4ma9!B49=daWqKCH+Kn}zb=
zmFR{mI-6q3vDT?*6z|UII1X3SALX-187_%WQ=((xgXZUm$Y^QJfD7KVdkl?#W1CX#
zr04M3TCuvlks!0Eq)nSYa()sCGp-AX7)s3{qX})Y`<(nY!JhcMUyCuEb&$(wpvD@w
z%n#tax_fp?XSbnPL**sk{93Wk2DA9)Gkt(yUMepl;Er8qKR&Y7bS5z=xfs&Kh)1K@
zC5D}+JI}hTratQWY|~JZydkO##v``#%CjE}Hnj%#?g~vgSy+bJ%1_MRD{fe047mwU
z!V>xkY)TeaDL3fs2+bPNJ9P><#K%OE{sGECg4V1oZ3A?S(;jx>}BN4mWxJu^NI9$C`V
z(b7@sy)&9qzE?D}M92F`6XLZ_b=
zaLmmcB4^P;1&-ORczC^2RPCoc?=!?=2VD5|H9-nos38pl^+o7`^obG9$U0MK
zpF!9rNBHBGUazK_K>m$Zud+lS
z_~_AYw#xZe7)cq5;^ieRu9YaIfPBgFP6DcHd
z-7bxJRKC?$j*R|!u4Qukj-_fRG~$u*h5sd|cwRtgTw@J+Acppv$3U1?bWu^cL+K}h
zN}da+B}#Sevy)y)g0nfH-7(+#0Pm1YYUk@0ze8tFd&?bCuT$uz9r^rE-92z*LLP=(
zxA%(1Ye$kUalleuh8c%KM?!Wo#g8T}m
z*?ATDYsvP_@!Me>fLm41J}0jctvkOR1RjW=RdoF0_}Zo1GlC}6
zbM9k1W$%2sH=W
z#pa*CD*5YDgFMmkiOivhjmBd__vG@?@0CAadaolhiAQ2HXF{dkR3gf)_7MXI#YX1f
z1wxu<^eEl(5#oA*vNG|s1l+8X@7+FCm7K6^|0c=Y3}b~8#R2QzYXokDjFu^x+c9n{
z0w6nuz)ykSz%nO#jo}|AMkn(PTBWu*pw_y>?a<-#)T%0gToPDvziyv1s$>LwoDk;OI6ehVtlvtM#4(KH`%
zX+cLVqO`gj6So8b2R)1L@OKV7xUb)ACpfDhh=I1n&!#6HXlupUzT85`9t)iK1i=qs
zkWCVu>cLH&9uB*L^1)@(yW?e)cbe8=2DjP{ep>mEXVn*!Ws<$kN)IH{j0ey|C$VD=
zZ789&nU$k>>h@72Vj%zBUPMw#{Lhg+%h*rvi!gm-B1#A@qmYx-vDcgJWs<2ir~V^KbL7DQnsy%bLa_DY+5wKW9
z9|x`^juV0b!?)%$b{6s@w@Q++LWiIRL_|J-L#tC-R~`%l;F)>QMH`vY6;V!l8tLS3
zggfr|Gldv5{XX3hQXKkL4cE1KD!(o(CuZOqgXzM3`nD+z*blgzK??cf#UhtS9DCGB
zt=wBqt&B{Gi8YiYg|1J;nz-6sScuI=ta6iJo4RUWhA#P_5lqWRUb&mgp7zU8-s!)xVX^h&91GRXO(K6Szx*7x^49|p8^`C>QGa3?4{gfW0{$?-_!$^^uamJqB}`LC
zI@ijW$uI}9A5JUt($>mc9jVs#
zWU6w?>Y$%&O;S#HgirY5oOb}Z4z3)Et8+-?zNh`*a#|5Oh^I#?LH7GM<&spDqGp&+
z^4FP+U!v-oAKq`Tujp<=wP^x?^ZgRyU(WLQX_YxOtOju|FYL}u
zmF<23$k~g_j9!$FK6O`_F|qy5mQ7LXwzj6GS#ppZmf_aW08hn-QM
zbO-%P=O^tBFhkjo&Icm|Soer;mm8f-rgrUunhhhNOHj{0_jsnXqy0;J+J`8NdN}mi
zVJm(?ROmv8h
zZU*Y~=pphX{`#Oe5``$L&{}@4E#X$YFPSdliY)07%&|3?Ss!1Spy?pYvxTu~@nr-*
zx095j%h2_UKFgz;_wij0pN>7kx>(MMCyAA)AewlCT(&9wBhiAG))E(r6zl*`39?hl
zZo{dPlt`wKGjd$bpUmPazNuOx%p7=fG$O>Q*$j>H%B=(<69#fF&?WRW0^bJI08Gj8
zZw?&I&K%{>+K+xF%s#nRv3ChK1c>kEM}(2-Bjxz_loD!{7iJ*ilR|6uxZ-f>nP~>$
zEdnKBN4ifOq2dLc+s(U&qhFq@qp4+SB=vn9vPr3-2;?(3F3AI!Rb~>cssl
z)ef?@Pf(K!^f?T?>5vZitS7f+pqR#csJoC5p<-4)I))I}pc!WOH4uyYR2s=+hYMz{
z@*3)8aTSI$zty+1vrJEpHb&k&N(z2Tuv~RIV>{haYEf}VS0u)`-Rmt6-d+@P5zp^6
zH8oag<)ZY0?j$z8PnWv^$dhY-g%Rn?V~xm7lZ8=WRM=Wc4R1Vrl^&S;z
z2ODF{CpXGlp^q3IbDD8`(wfdRq>r_#AU*#P^KolTtaLS^9d!7C-~T>O{C)rTe}HKr
zv5VL|zkKD0{^1~FI4VnW));!!>#63N(v?F80)yHec5RhxG
zHmSnweMFEbUpC3;zd7`%B3Fft$R8mcP#4GjVe`Zbx2Ck_2
zME}kGe=FNXMY+95d`J@aKL9hn^9QVKg7-(Xe~ywZMDVXc%J>%ib0FjYu4c;+apggd
zc>Q08+O)^{bzPOOMZcqgxQ;-gxDap=avU9M2hS^t5zT{T_)6ZjE27w4)~%sid#|tzQa7
z1-rzcv7eKT$4O-|CrcnN+EGGPi8e5i_!1RK7=vi-4#{n@Dh>KJ5#raU2u0(bCht!s
zU-MX<=CzshF`}#3&Uf^7j7#3wPyOjWrYkR8O=VSYCZ40n`c4wf5p0J2x2?iLy&%?=
z$@01K!lilEp6Y(2fD&JS@4`vK5gU-st3i=DK7=51^z?juO=%cpR1;s4cQ3h
zhE=gxwPj#{*UKJI1H-id>hJPb-qOY#cEpl3Oy7wUfP?6y5fX1UzA#a`W;iaJU$h~M
zU1y`wo{zm}h-cC%FMSKdWalM;smjqzuB0L!1=w-%Gh+g~E)ks`pTxzlR7cVzW2pE?W4gVD_k)6_>ZMHJkD9hfsVD>#m^Z>E)LQx
z*+aDB8~ovn&+x50Ga3mFuSKA6`yl^jfsyAc$#gC!q5q=mtpA#P+;ESCgoGgQk(>h3
zh?Inkl#T(TQ|azb1?f)d(W66Rq@ct|fsGy@DUEatm}lSf^Ev;(^UL-;ulv5Q>v~^D
z%h~=X(^k8Vywlpwp}pa>$u1wOshz@!!N&)(RFdGlcJ}TLt%*yx>A2Gxk3Mv6L(374
zCbAc!HD@BK^X&>^L1_9cw`uz5qPqYw_unb|yg80mdgNg*>P_)ywe_~RgM;EjZQ`v(
z_5EHPl<$44l$V^)c{WWem6$J+uY6j*Nv7oH)847(-S@sEu1Nc77ztFVm<|n`AceyH6B-tYRZ$)SeX31$PBimcJ06Dm~TO*(x1|
zXmZSu$0X*_iV7)vpH$uSNk_`uJUY|+E2(n67t-80lt)wF%k|FYEK^F{=`7QJZ6-sa
z7`8&kO(r7tHWJGAN!s-l`m;vX%-QExKW}{33^cqz`dIWT9q@JQx7?E=!+SBpM?2?r
zV$XKeAwrs8^*Ung_YNM5R27vE(Zur<*3Gq#o2F5q$`UENZ`H^D;VADGTM1D~HqhS*
zI%VRRxa@(rk@w6IJ5xWAZm_0=|8M}Hb2NEGTb+oHu!!-ur;KH3^08HE1huR0KK-P#
z3u%pyElEns!huidRusm?363HaHKEn-o1E4V$uW>GA<%m~@ymVW3N5}h2R7?EfdMpE
zqH=@DC*TRcE^4IhFiwO`?yXO_#`F}hXF$))D`?e<5xyn8yrVOan0`*2O-f%Oq#d;&
zW1Eu*qS*A>jrhb|cEYHh@!c<
z5U8sCgYiiU&%EXFa@bJM0g1%PEYD^%xH#&*Fa(;4Wg4`!RuQycT&n%|B82enH!|5F
zqQI)NfY_z(6CMm|h}d~JSfVR?tpX%=;rsbn7MY-Zdh`q?$K&rVFw+V;xf*dzD2?Bq
z8BT{>tuFZPd3(6S)lITPCvZ{el1HJ^&GgvWpV=pfedW3Rr{KvOLLE^S6l~^Lkb-k6
zbPgL27Mf7G4~&C8GZPokwc0O&o&i8BwTh}VzLErY8Rnq>uJk^fz(byl{?MhLSu+?0
zz>2Sh4S%~b)^!;fp>o*M-jqGkf1+hrxuIOt_e+IQ;uX{RIIltl~C{{zD`+S63}wlY`+c3MQ+H+7R;+`IzN?v|NU2jp8j%iWl32Y
zeQthm_P7l@A4|>W)hJmdN_}M#f;8gtjCbOXBA$62io1P}i6AcekZ`%4n|{!D`vFk^
z3WB#pd!Y4D*D;|bt26uq!bF?KSvEIWJ#d|@ncz-Gs1YloWnca5QQfrL>rXhkI$}v8
zcn7yvgF~AhKI}0BPXR3u2)f;e?)5axFfabA3rL8h*|M6eT;@y*=jdEq8f4?`$wUL&X<~-=loe+=N;ftT*J|j0-W8VFJ8|pHtQ%40N7qkK0EdC
zSxY`O09!qTlrInX(Rw`wS1A^S5dFgu`?2r1&5+Y}bk^7R8_GkJA3);@$jzm>m~7B_
z^Y(I?idmq_zo|LI5HOM0lj`hA(9s3fsSrqJg-E0B&u3zfsc4tl0zNUbn7tt@P}6O2
zU@pTA{Xkim)iNma2&}vrNg|a6h{ror*$}1Hg(hWKE_k}|NNKVZA2gjQ*kL|CL8d%YO*lCbnsLMWmplP%;+
zQr>Ed(#xjCj*Tlk$R0*&>21neb#G~2?^;*b=?7Cs00IXa=qY>UD1B9jL7ihzdq-J~
zpuQ~t3Q-B$`^+rN-M<}y(MD#7923NzaWFn^dJ(3Ld3!a9(Cik*_AvU3M@@Z^>vDxPu=^gRpWJHvCJ8GTY-!+`=t3*SUh
z6c?ZEbz+T);Y4c@m-rz{&2MCjNr`sJ_fNZ&xM?!zpZZ7a2JXUc?ye-9VUzW(6wsa3
zePCb}P_AAS8g~7ACTM}BN2@R*M)Wnv`j~ooA-k+rKbBLJnOqbhD)l=_?oXNsFN-PW
zx4Cd%n?WtG)4_
z`}wMKgJoBAcAJ>bUw5VT5i)!JI@y`II;^QgCGDp^=9lBZ@6val-sx@&bc~zPx;-&r
zR-()*kLzMEBjV1aMr7gXS|5a$5L1@qvS0QKN{Cj0x+Qy1eq?zb-xsfg-ojQ~Yy`#_
zJPfGM*GBuW*-@vV(SxP_(s;g~W4=wTD{mL?O^A^?BAgC7B;WGOVt$ln39T^34KISH
zK4xaryur$it^;BKsUCqJ97VtRHJfRz5w!ycitS3$>3fpTFbj79wY1=BL7MIdirZvm
z6K{K6IG+(A-XAFo0StM~-BuPi%=Ng_Y=l6-7&sqQaC&DYOY^u-s7PzA%i)rl+Q?N&|t2YJ1Iv4Bba8w+ixV1!T8J~2FHI#n7N0V
zZ*oCTcws5Q;iaZJky(RhOZC1Z#U+@7i0J;=u~E_>cY>hP)VqK`?BQIS^KxqsE$0sv
z5k*Hr!r}plLgnH|&veGH2LWN?ixP%#HPq<^mfmfN;w%2ihN$~5hPhYh?1DMW&TwKJ
zv!Un;Mfsvq5H{8+lnR&cC7%?M_OCr>S{9lEBR3p&s>{p6&D7Y^;yT8Zo(*-D``hM^
zTIp;1_VlqX{U94hWMt;b7>8F>^m1P?zxzIKXW4ARVv>;z)^gA)DT@H1EKu-biyGgr
z7A}8kSD3a_hBeyvY$y>vI6rJWX2sf%m^3)9n|RiSB1MSyM3;n9D-%&5EeYdt7KMjLR#tsf
zKBQu^eClzGH4vKto_=;3qw;5o!&9x60Zi+1~O+wbtS!UMQs*+mG
zP|-{yERR^x|DphT>jSj;7zHf&QVg|yh%oy)3ewWKrzQ$=W
z_)w=IEWddoM`(h5bbV+VHyyW(9U7=9yAPP7ECXKGw{Bj16{zBZ_Zv=Lq$R7R18KAdXOa!5;QLO?Ed=fDl=nI2+^yk)
z76aXLvs)*=B~MdwW6NQQKR_y~i6jjobPe?9bP!rdTt}w^J7eb%sZ>vTJJDPdJo`-w
zRucq8t3cnljNT+D3kLg{s1tbc#I=4wJ%r7OuCxlZpnBiDen{~?K12gTa
z2l1&kpwAX%Rgw~(dXI)kjkC7k#S%mVWUpYi1Rxb=2RpXc4%=H&$Ug7KvtT_tCo)^t
z8c!=hpH>oktA+$OX5_fCtl>K7!zs?c6F7umfoH?u3L+
z%Zn|pn7~R_7F9X_WapbYC^faAi*PGCt9vSlk==qZBGTHK*}4YGBXBPqlEIpZ^%
zT@3D}MD}NN!U3JlZo0($oBf-#62?hmBSO1!G2@{{Nk`S2g2{kTe7}Go0I&E3y(yTi*mFX##
zs(F_q)nCN?TEceBKFvQvwZ^SYznDPTYN$4pEALMb_MZDk)H3E(dF2Yt%p(1`i?SoB
zlvJ)N6Qq?#r4#w#jVDQU+|ihqT|@odc$dh+EB=Z>meVbM=GEHbNP7L^On60cB>0|k
zD(sn5pfs4QC6tk?9Q*1!_hXmsVXcrJ;^`@BGR>(t|4R7rroM{9Txv}=?Yr={>{;C@
zT^lx*3*n(sp;RviHc{F)%_u5*$&!XWOcpp*yzz`@ah4q^oUIZh<4$u9L!hLCs$f_%+W^pT7Lg-1PLv
zy_^O;_EHVaHWhk@#x~&Q4b$A^n_is+hG-<&vOIg
zZcD|-$KRwg31^=7(<9f~3dIMjcDbmyty@bH^IN`;`GstdeWMoA8db20p$}`5ikMCI
zatE+tw6<1I`SmL
zs*cK!9!v0sh>U7$4Z5j2T}oB(4nRCYj<-F6-c7!nlfT2k&@ih4C2w*Izrj9in>BxE
zig!i1T$t3Wi2J#TrnYxM%yB--;1(z%DtVp$8zJ%Dgo+_QAMv~m1ctw!o@oKO(C&_M`un^VfwdXVTzq5{ftptqL+j%E!OX3M
zI&UPb6OUXx+P6WM_kiK6Li>^eVP$UV>^lmjJe!qOlvsOnx*FmOrQXNg{>kmWh?GE0
zsn@*>65ZM&&N$&|a5^uiWcAZmqtfVk!qW#}lpF7>ghmo`p}x-;%B`@kU}^qyg~ZX)
z?ka+%{L)6;@0CNJqfv5Vlsi*=;XmL8i;FQ_)cv5iaf59=27^QDxc{Qq@#M)wE*Z(i
zEo=?^C}<~K2QqUu^)5uJuxo1olagffwcSThJSS@o
zQyZ3bH6_DyV=uC`k-6Ts7cKSUEW{+3M3?Hrxqmno3${G5>>Xd!eXt(2Podc2hu_(U
z&R5Jje;5kd1SrwIaOOQCO-Xx^4*}#%0$?`peZBOfF_X*RDJ6XYe709FV7ZG=D>Z>SBPl0m3d9jr_co}=hS(RFPxQ*5m!3BqXp`Wzn$Dfxqr7zC`G0sAVbe_
zC`KZlf_4yy0x8Jf-rrt_hMIw2^so(T62`wzLEh|8DDK4r=$VHNI~M9Fy%91KCHYt)
zz+S8{Lw9Bj&c1m**nVyGoO-0efHdrNhW8$JSathreF`*F0?nMBNW)PfoZ5wuz0yWP
zlyh*WRt@q&Fa)@tx#oq)WRgZIO?Ez={!_rI-H*fyeZGxYGpSoB6_+?1y9COrVP*O2
z%j-X^W91|gd0_q|pfu>^KvaC>e^F*9C>)-(7_Y^bkQrH$FWTFHSj0lDeft!fJ^s+Im2s@4n^Y5!+D+%W=
z<6jPFmsWg!H=eZ{2Qwd6@i5XTn@kft-g9r%eV}ye1~Xd+!9#b?V*dcM&j}I~I-*^o
z+aKw7d{fO*w<&L?Nqf!fa&H(#$w^gcz1_2L{3zTLv-!p(^#|WywwEuvE|iZ^8a<0Y
zV-x-(bwucbe^n{E>(*4g%!q&5mm*7;qJ&%(MNNl)%dJ`qUH#(KM4uU@bQ4IJ1jxj(MO>AY<2fi*iC*$qHdzoIFRhR|rF;L6CtFEFI+bq);4ltZIdiec{OojK8
z01I}*-*$82r-$d&T2`IZr>=W!FN?gCez7lxzQFxMr|rC*r9@JbqEb$DA=PUeSi$t$
zg!X83%K|I7^mDP#a9U@wozUB7SKn;ntC8sCeXn`qxbE`zwRo6A)Pc`?`@TeNhzbqO
zy~sZtGBKaT!oObIN6{Rnri&}ewz>Xw14WTmbQ}Xb+F*-leKH{nsc?&p9CbabL5pn_
zfkV~|0d_VW5stq_r4
z|LW**Nxh!zg{lX$aiWh0HT6N%-DG=S;ZB&yuh|k{ZPUr@roOEOd*D6W=@eJd+Drt(
z!24eO$E=##>!Fp|cFqa;Fv^k@52>}!4sGl)6!>x
zc?|u}>)%HhLNAny8-_P`=4)@y*7fE+8;!``84DH7qh+hP&P^k>HB0&Xb4UGR-5(&^
zNveU_-#oUj7C*(Xm*sMgc-Tg~5|nKGd3dTM_GnS=tI0mG%~qqj3-j6&T%KwP%KXgY
zvyDfaKYQp*f^s~lG@iH|H+^d?8C4b`B&Abg#%~~*i;lMVhx~tUXjpUW2qt1BJRS17
zFo~G07&m@DaEHJJD7~V>TKrUwUf+R=+y6hkG2NMA{pT43_l2Q_zuvYJrzzq|U|++!
z-$)djk3?bb)*c{rl}2w`R|;zv9Yn}q)A6Ao)fmcer_|St*}(TLnc`oAFsSZ~mdINC
zZ_kQiHeq_jX{~2?$#;P93lJZ2*k1aD1ljf5Blreq<=Le;9vCe7lUM5RO7=57CIyYm
z86P_X)eI4a2v%EzDA+3+a_*F8tV&vhH99Nu#MZbK5E97Ec_`)mq&l2obikou7;y5x
zbx!-uLs++{p7&yBEYFprt#_;W`h>u8Pigxz#mH3d8cP+f3SEMywYrA;A|J0>?2E)H
z%-tkv=u=kX+GVe9VK)>xKt96~xypXiLe=kBpO6Mfjk~tj;35gQUZG+lVycg)A$PWO
z{cEQ_KbeNlR#T*^Hm%~jUN1@~!k5ek4Y6lw>F#|{$>zlyzp4ZbTRkY1Lo}87eb+5<
zJDn78!kz&@5Ot9qf7i?eUo&|o8O(cT|>RlCGZN~67oie!kQ+tV?NY{o8
zv&Y|*x>khmZF4gM_8P3Y_Gf7T&*qs3)?w}6yQolvS;skk`U4{Nei8A*!hZu%lwKi|HVKTT{J)%I$9D>
z2-^#8o^d5E`ASAi!>Bi>EqpeTT9MY>bT+TS+Yz`TuO~-{Jl=B&=os5H>#$O_`-JzY
z59iTVHE!}tL=Mz)t7)G92zo29*B9tr92XZsm`rD!Q{Hb`nlSiS(Y~~7VypD@AP@+X
z=TBm4P4adDX{|d-+L=bZ3H~DM;=+ih&ZCb#C5u9D0=e3IbW?_UtGtFXf8H^8fZZ_qi$)pfL5Ix@a}O&4jpFghYIiLdtoIo`79XYuy2MAvTZ#IJ_*YK|YtpUXa|
zZYQf0(S%)wRYPE92h_FtMkrlqq=L-(PYkz*-i^}07P4%0dGXtr2=}ZuT-$_(WiaWd
zyvA$xc!s$2SwA*=Xn&o3l
zdT)V@zOm9^r_-`ut_ux{s!INjZA3wG#;6DC*u$S`xFdJ%3)0)_M$XDacsbC$+$^-hR)sIB(YcSyR%`5Ww?R@J}-&+_(TVccww&4ff^NxX`
zm22oXN?;oFwE|4-ox5tEB#Wbww{L80Zt?
zToE|Blr;~04^PyTA*rnSS@J2Sn-gz=HfXV)JVRoS`3j5Ch28b~;P%9duh9SiidtQ5l{Jf`%Tw-I|J11;zKFJDdGV4bD@+M%oQ
z&s(5qpiSI6h_~;aMmNn1Bvjc7?Qz5klVdOxvx171qJvbAroxvP6TEk*!$1y9oziX5
zQ35j=AZ@JO^M8n-*QwQp_h@Qkc?E6I>wFecoF?hNz4KSu9gGx8sWN4xJ|c9zF96rc
z*9|T?pt15(6vgX`A-78~<_?WbT1iKjR}n~}^PUqPcwqW5O2<)p05??x3s(~Ky``FD
z5^JLJ+>tv@uOvnVAbTl=3fNR|pxZ6-*b8Ybn+Gen;J^Bl`iX=E&Hm$Mg9)!
zJ)OE!Azyu*Qxa^gg&CbMP4fA3i6)%CNe
z+q^7?GcFxc+)?;Df&hfX2pAI_5qH>X-_iYI)Y6gPoxWT*PEok@3ycyPGg+Kt7sWO6w7zKS)?lo1^=e3?
z?dseuXSO_CQLg_pH2Y4`VLNpj`5^3P1K6BI_pf|qqcG1#%79ektkGeOfK$LJ^X~@T
zCxwuzQZ!b3p31#AVUpmjp+r1}wjK>;Kq?xrroy*Z8Xc}D3r(>Grf4TPNpNex{jQK^
z)P3v7*X|$mD=n)8(J|CiW!}MMtAFK|qvdZJMLbe^M)Hh|J+#u@
z-(6t6q{^;T1QhMv$c*9ua>^pY|E~}T0)0ka3YsRn6lQR)BcclA;vs$4st|LC_6|~C
zuJizNw}}L}np4|Sg$>sbALQ(p0(Iwht*T1X6gZ?L0?SicTSY8C
z#gQE-OuQ<$;%XO@Ap!`7NKKw#w_W)(73SyNkr^*j2Oo^Js7leMFeJ(k-`}xj2RUE0
zZaU_pU80_xx~8CI(oxIv?7@W~jN8sIhZr%esYY+N1kuiHrg9YWkY?FI$GBQ457L}#jdj4Da
z-Qw3Ktie8gxcq~gIGL=+!Ty?wCUQ8@(=wMg?s4zzKz;}a7CAs7H};h8fsr}RW=XVw
zkA3mG^0N^;T!lNlM>Xd!E)1?U_m8^8bJM*JyUjzh{Fk_RPAq&sTBl?Zm@vGO|G~x@b*ce(Xl$cJiZwK4bOu=R79%%^a^cX%Xw
zwmNc+PJjTv(d99#kL}B5rY`LJbRS)D2u&DeHtysryw(pnF6|ww{0%hu3Oau$Bv_n=|{DX
z3B70FYP622`s$|5E`jL=2HNp8IrIfa<%L?W+P82u-2BWxbaa5oXG0?we5*eMe|;6p
ztXFlmFNg~1xr&2Zb;Y@yDf}7!XvwUWhDVuloU1RQSdoTfu~8vG#Cdib%zQB@tJ31R
zViTeWsH?qvB1}P2~bR-)qQ-0pX_A29h5_v?iEu*I-OAikkCp-
z?Mgg43f(t$fw_zFo9-vZBvmez8gH~dhS;TwA2>m_3(RKCrsvYU4?9d5Yy~oCZk?~N
z;6pR+wqrH3w=%OzI!E_%My_U4UsIqLYe8|>bwvz_Z||vQs|i!2N*_!ECqi|vsSa$n
z%f2r`9bn3F0tg?8tcom2cN4-JN8+O0rhCY)%6EyYNX79ACCsjkL)o}9Nfo0kpiozjSB+Oe79BLwYcD<&a_5+rb^Ug>$Hn6Xh3TZDX7;u;GMQ4@pLys9
zN4@96QBU1pxSY+}>ok!;&vZb_3ag$n%tUbN1B%cYSLw$iCCjGycX
zs#Vz6;JBT~VvikvKlDR>C!1iijWhpu_cSErIIb4M4pj}uKc3%OK}*9`{7ERx^9qZf
z-V9aQNFQg1X!LQ+gvRjlPqtG2s9dv}FPCsRI@{Zy;YHX3>(>38AI@_Z+l9~sQ2U>$k1lk(vLKIgSDox
znKRq9X$cwqpXq8S(f*JD2OV>MC_8VVoDq$({Uz;VUq4D&wzz?rdQR@4=;5%8DGKxW
z`r_1C;>WG)16yJIlUF_v2DP59$MsoVI8AM@qb%5%GJD*knZhdy67zke^;?>eRu|<1
z0lazhwze#Pl%tRCG=jPbNQ+yN*TG=S;y;|>_Pr)IM)}J`o*PA#JJ7THujN~YnBIe&
zt;y|gB6(0hi55>+_49f=4|Qw10tXLaYc-{46-EIC1qUB061>9#s;m3mMDPBAB%I)p
ze>gnMS#W#=pYq8^yoXllzS0N1J)w+WSA`ET6R{YkS+fwZ^pgHxm&I#6@#Vv$;dt3L
zcklAEoZ2t@2PMM1+QaOxOdx)zZ4*7+oS(av{dYm1LtWw2faa2}I&3uO)H>idQn&_OT$`|R(RZ)xW!=EMAhq#qvjM%E!
zJXPmK|BJtvYa*(xIjOV9l5&qTd&}7+Xa6hBEz|b*s7zW8Af=cbhrl?JRdX7Vwmh7y
zlk)fa)iHdU0BcKH31`|D&5u?0hr`z1AhswCjB3DvB}w|CS1t}MaH3Q8o8&+6BOq(m
z7K>1G%=)?2z(1UtDZBc2Fz=&>s1nornZ=_C{KuW~E{I{S#voq;TGK-PilQ5jllP!|
z(i*qUY_vnEnjsTgNa-Uh!2bQ@`$Qk$8jk~7-={bw>5uf!h**v(_YGwxY7Ka=&_iBY
zn$n1dT5{Ig*?hyS99DQN@9E*8nf;xyv6*%CA3>h=GbY`PORpsbGivey?w8o<9Lst;
zrx;JlP;hP=t!%P}M8|T>$q8b|ww)O@E=$IAR_8b6u;B_{h8d&GEt$x#{){AQBH
zFV5Z_8pfi?^?-lGY<wY8r{G{^Q|)v)!q%x^65NyZKq
z=N|_@1v(+N2A!q!uwX5`d%WUc+LWatJEm30{+g7j1nD(}rHY8y;9&r_dvIkBsmQ
zbGL!e$#uZw;l9&0zwx@;;0Z6{UCnV}E+Ua9YVtQ(NKUYOGg@cJ5vPnXml-
zEce~TtdipvU}KLrLCQzdmo1C}$P8^%`VmjB+!K2-tJ+hJo1oXeyC4?|Qtx&85Ma6O
z?lEU2A(%CO@5j|NkXHe>KtuVV%>-G_*?P8b{89=fEtOdUt`+hB-CL9%`q!MjbG
z{r%t7zPROeIHVwt2mxOerNwAX`M{h~u^&7sNIM;=sluw`7bxK^Z3dK+)HaN?j7r&e
zO6X|C;D0#Ht4B?LwU<$iiD}grhwj3;HSS^~j7m^tv6*mUj?)W{rIq*YK)JY28wGE>
zUvc=P%62uA17DeDk@h0~;rtC9wbLhGk0QnzwB*JJNmITtx=Y(%?k#1qB`YWDl1YXy
zcK}QrnM*O)h*;fmV>8bqGCXkfX;=-0rJwxOf@xmx{qk+
zC8xHuN|uzoaym&jVy8u;ZM9r(W{*brk2Vo@mS1w+g&WG1C^7??Jk6&&T=flneTg`n
zw5*F>h({(mQm1M~745NqikQkFbsSXD>SI##!N+@0_;Gbd@S!sUpc;4K^=#z18;QP|
zT(k<0_E6Lp-2f!C(;Dq@b05|n)^@Gqk<=ik=?DVN#M*){w!)(CD6XXLD-wF$40x6T
zb-{47(#=1dK|B)H*&}~#7PFQCND7JMzwWqq;B(gUKs?uN
zk|fsd-y$PE-#6LD$fE``D~@{AoywG_1&FDtMq>@PHhH-p)kBP{I2~wY0%(r|aL%C*
z(V|wjQom7e%OdfwQ};WqjNf|iOwJ}#X*l$k96RnjiAP1D+SD2->=OuP0S;fOg@p+$
zEh6O*MYMF8e&C3j&dCD9if{N^aGZ~id^mV`n2~lrE?|5c#_7YZ=AGhLoo>9w)Uzjw>uFn-_Lf91WcWK>I-85iNgvLzH2+cVsb4sv|w
zVm4`tS82%ZKjz3emiutYR!)w1(gSEmU=9;|`HYpC}
z%FN%RACl5C0~Q=JatuvR$o_r^kVxKw*qlYD{&<|RE)PK=k}DHlYD#~VHQ(|P4A9Yd
ztIz!2v#fZl%H~C;G!iw<`6$9BSplh*i;Yve6!ul2?h3;lJIo=3rt#s!Z50Guj@@Gt
zYf{Jq9ERcwTpMGU<+*fBzsDcAyQ(L;2W&z7H?ErntJ>1yG^)TGUMkt`W_d+{W$k#*Smp7(N*K3bPz|IH6IR&6VXO-pA2?zBVy?)t4e5j6)6
zfu)kHN8}+Y^aZg}6%h}dOoVRGs8OY??F?FOBafxtNZe!v@gWr;)k-r`oavxbw2pH%
z!ePC!W6^;}I$E1ujVCS2adh!T6rCe`1ss`uZ@jFwH3QnazuSYhnl?C%3z)h3i4xOv
z85`4Rarcc7+2TT#i}AJQsexXlf4Pq5j>eXIj(#EAcpE||18psr^aiM6GM-{jc+yW1
zJbJqehnh``W+95HA5Ldxb98*>ToYP!eNb_oo`em5)h&)C3i$4HFMf(`Fa{0Zb|cOXyai;7{}
z>Nhz(Ih_E2QEF+H|G*G40GDbb
zr?x9IN80#zpVI0Hk^a%k$u*h^l-Ggw_d;5wmiTdS!TSK3t{RWB|dR2w)P*XD4qrQ
z@#}AOhBd;NM{BCS@+1%19C+L$_BpVXL&ud=9GF*5?;CWH$|I1+>Hm}td1R{LJElOEQyxIPG3{X_JPdVweAB%XrJx&#axe
z(!|X@FMU`6N}G47DvU`8ef^n9HsSVhXSMN65h_{DIN})>H`@^$I%mi>W)h?kIH3Ke
z2dhHN4$Nto#ViRZeRt%fwb*F>xUZAf;2zF%%Qk*Ix~ZZDarDCj(?-)9hA#Ukp?;nA
zb(Vbq66W0ZPGDV?!*PnmUUL5AykY$OlSRi_$-%zv1^6x!^V}K)+HYQ`
zj&%4*rfSdI?0xjW*wR2N@TOv_)q*&>R^+If){@8Px5OxZLCY=iW1LdII7-aC
zdpE?pUHa+6W0x5Y_!3qY^F1hCmR^-VUrCJ-#ASmY_B4=;85HE&O0+6a{|TUWw0(P}
z`}M!{3Bw58(+w47A8ETfLRFpBpfUl};QCMhF7nNDys;x7v7js2QP+B4jzgaH(QJhZ
zRq##4(6)4BN>;%e4Q&nDg`wf3I>rv;I5WZvWY3|dh|AnZy8LBR7``fGxUoL0qzIC|
zD-hIml&2oWc>sKHkWH^abUefn-$@v(Up>}zHe+AIPV#uJqZ?vfJk9ps_!Aon;vlqr
z2cycBes(t7LL!6iS=rtWQz(q7|%*ESz>IgVFEr{bXgCRp5CSFa1;G6
zO~T^W!atmtlT@tmAYv_I2(MG?0Q?N}kE#>M$&E8BpgmYNS?3xTK{dS7{!)F|&grbZ
z5myQa7zcYS<+@7EWr>cIoVX4Ik(;{y_aE&hDB7X5X%G+lFhs)@jPHRJ>%}aSm~C71
z3!}Ozc^A^wN>cPiI`u&Xg?5z-^e#gccrfX44ZDu!yC^dK5f|sQjO%FQZ54oJ8K0_T
zrjbo7=VUYaNEwK~k|Naw4fq}iQ0mX)!?e^=*Il$N#Fy+dZs=W=jom?HuG#2lj
zHcb<>J{mj-xdT2-%FJ6|{}QsBehYAZm|IaD3~WgXC-MTOc6@G6t0&?nuwh;`r{z!YbqkzqHl%lIqLp
z9{~|@*^OuA({feQTKPOT$-{wodv~C(%3B#T&CKgqaxZpD=V1QaJ^9har3$Q{J(_d(
z#7pg+nn_x1e#mzNwr^Q?hpncH_NQHz;brFWbn50MZF+ZcUq4XozP=`MQA|}#pJJqF
z!8*>Qn@fAXX2JNbv~-^zbuTCL?UKeQ%pKuU_LE
zjIt(QB!xA6OEYROjP|H~Lq0fZ?f~lfasYDI2#h<6e{c=yteOsnv2=(4Jrj-Pz4|bP
z7X$p{K=bEY`Lo}d^Go9Q;4MiH0F=oIcC00}4w2rpIO>54X0CZmAN4fC-87pX-O~QU
z3A`Fpr(pCBaC1=wLzT4{C@0&@dhL{aPd+Iq1{OH+MeihE0U!>qToJ%Psh0S5E%*KR
zY8O|ZC$YK18!PDZuS=d@)73A;px{(&?8Mh~;7GFPFR7I4T9{N4Z`j}w3^@F`Vs&L9
ztb$u+w^Cc(Uhw(;&97Md0|)LW{8QEHQ7-!EWIET-wkr=Wl4S*9>7laF>ExXmhi2Eb
zLsZgYM}$7CP+WS|&=I=C4HTO0s!kqDXn-rzm}*Y~8BRu6?4K!B$d0JsVmF)3R+U5k
zkG9l~pF)Vlr1#GbUSAWUI(jqwY77m#`SByUIdv3t#4g5
zS;im4M{Xy#p{qWmG^muCt*@!^wmGUhmcwl3u`b0gj4Jw(w|9e9_)Ri
zr>=E#j6{e?5+WrSmbP{G0Y|F9I{S?d8Sil71_}Y}G|rdq)wA8RBu+4pTA$9CYZy29
zqFC%~EsRA1us2I*<-ef97?aEx=i0zfY3<=wY4hT)_eLU|*a2f6W7P
zw;wW-f3a&}Ua*lS+&hyg;Y>&$ec=WrT-5t@WanxvH&`LB@gm@%n-dt~p&5B+!1lMR
z#MqQqh33mht?D5sZExSZYX8qNL=!T5$2rwdTIpuGwG`e%iZ%0r-w)9(B`%xp4SvWa
z%DrW$`^kH2Z{NB5uVdUjkRH)Uw+&``%0DvId=!sX;oFF$a7x@of|0GRCopvX19r0i
zboK4m91nri)7t3xr`)0PQ^CvknLC@CPSB(_fEgm;s7f8m{Uc~jnJKM5hAi*bb>)`t%CU2!&Yok^;R
z0*rhRGG2u=+}uGEADAJA-$OXLvKazFcR_c~25vO1>#r@yRFq*+IByfn;5C*Qb-{SEoew276a0VPE3U_k@Zs;mS+Paf;=+Yo0jm*d-B1x}oc4xTK6ZJwCuTgfb3x1`rHX
zp4%>z8KKW4+hbf=!cuZR;Qn4Q-p(Ux!JZ#f4V>fXN8au8KoqFYZ;?B95)m4PmhRT9
zI(gM0GO(%i!C~wnIm}gwiF5pMgJ!%djN+-Jw(iS~Wnuuo>^(XFBQ{;-BAd5c&8xz8
zdU^lkZswYqDqYKBI2a9baJi)7o~kvs8>aX=S$ndxlrYFM{_MKsfsG+A4XfZ=Ts}k}
zKOJMvGHs%{$Icv6;VQU_w-OGrGdb4`6cVwTIsBd`Dk-9sPo5Y#huoH&;&N3%>-~e#
zwFdStj977SB_p}EJgzQA-hNy*9jlOXx#UO^1IS>1tk#pIES!9A4Zo06k6EPpVoRh<
zmY*A|LlT>owOCw3$GizgO5kX3ssK$yJ==f8T{K^3PDg2U>^$60GZmnDreUA
zq;KeSZ~MLsynNJT_XRuN_e1adS-`z)_{xQ`oA
zl{qBDk*VElWL;`0$+EWsHQyUmc0d+Dd3l_
z3-BHqtrAoR{lkG9*<~sI!};)kYWnVYw!ZNHsP?0iwq_M+ONUj}(xD>N)-It|QPR?d
zq64+!cBf`&jiRJx%%=7zQnlM^5CpMzVupywxPJHh{l0$xCFga|x#v9hIp;j{{gfC3
zR5s?IW!1LVaq#=dj-G3OyQzUgFIQ7gQ!x0yq&fBZof0-|gmay((@e%$KbMJ*yVQNT
zNB{e}Cin_8j+zKk-x~dPKYq4r5Vw(XZ*`SJLjL(?kD2k2^>&?_*I_ri1+WNWQXsl{
z)=H)os)k0mD?t425ysx4S@#(v*a!}`k>)Q0buJ@A4);;74dF?Q$Pc3jg*Sa+{u{=~
zdk>gDh(f8Ew3L!lbj@nV+H8cmp@v38*50^t7N=}__2XI;1A2cdt4Z0H9;+-dpY-q=
zX!`Y}a{CU~U+HmAP9*izs?KOmcM=jdV>g379DVreR?T*;`)*93+mhZ&Pxr+(MZf-+
zwy8N-x2HCz#oC_gT5{P%cYP>1b74cm*=gzUzV-S^wTeiJlkA28MNZ}ex~_oK4mqjRxpsb7ms
z9QUu(DMh|MW3@(t|G?e%d3@4ksiW*kFxK~;vVY&ukmMdEn#Q?=f3KpOsNK`!QJJ^>
z?wi{@`#hwUci6rAmeYvUVml1Ew&A_WS5UW(}h5o~prPLoo=Zk6<7bxxb-Jkk@S03^z_Vd)Wsl}xOyS7abHt{rzVH?d^@Ch
z*k9IR#Yy|V&52XrgU#ehA5^L)?6{VHa0&UW2-tqp8TD-Hlr}O2UbcyOldYL)V&x|IdxSV&K{*e~1p4{A<3g^_&uX)3rt%vqbj0}MX
zn3dTfMXxqeIP64&p>gORU(HT9Q;WD5)(PZlI$%T}ESXhLJJbO}d?QCRe?^h+^Z
zlk=+axXfVr38gpL$FFcguMJa?lSOP3O_W*iANr|w*;70^t1vHz*`YAh)O~D%
zxmx$uFKM^C_SJQ@E9G{!Q>krs(f{f4ywsOp9Ezl#=F-AWd~58)|EdrFDm0~|`O(p~
zU9I&m*2+G<~9#~$j`JzGI;+~vWn!jcwjmcrlUpGe;0alOdv(N~Up
zrj(ECVdsj&_hGrj72IlCEb7_!)=AW5+6+12Y!ut&xPa&c5c=g)n-?iWN
zUv7_Vu#7)iCC9RFU%$iNJwJjM9_>y+eg>yj)8>JkIt$
zhp+jSf9M%wJj$@x=`308f1u@E3I)P4f}mQ(OzrkK0bRD|ZsQs)b4m2y+hIfpNC`TC~A%T*^|JRUK;`Zf7FvXQ>9UoGpf0?mt&
z?0D@a@;Lm?7EHN)u4Uxk470n?cw4-%X)en^#!8?#5_&B?Avz(a0x(QHr!RXC*{TcqNgrNowq@AU}THD|{Xa)lXStCFPFDd{(GW^t7Qo
zn4jBQJpJO!l*gsO>gxTBA68e@-Nuj<}AP%4&bTAjD^zmO95`m*uAPtE^Crho?1Ptz6=
z-+W45D2$~i3cpqKSaitpsmpA>fIFI!Xc9$Jjl;F-GUIg&boF!|#XXXRD0{k6Im$$5
zmyGZSg+dG}ruib*_j3QH&Y@JLl$srvT+g(S_Il2VHO*wDbq25oJ~THNe+V(I35-7T
zUmTJ#IHZMNcKMa~;>NlGq8@|dlS=d-#kMhFM!)K>&0w51Me!flE@D?(9M{7NGp723
ztMY!*b(1Zn-1I4r%VneExBzxm0C;><*E`a(^AtF&mzwF9nuFql3gVPQg%`as*m
zNlLBNtGhmrQVTlMM)sG%d?ybEo6ctb383Hb9X}X+V>a_g0LSl=)abGTrFf1pq7xfU
zxVrPgf31QIDwlUR`HPO;>m%+~l*l{fVNizAV4z$YLY{V2Do!31ruSyh-aC5SR4Dq3
zBKqt9WMMrP*LR6jbop{1K%w8QoAWUfYkds0QM{C0u5Ek6)QH|h?`S~EnT^CBr+|1{=LY}Zm7m%S65cc?<%>QwlTeBpYw$-
zJFVArHI=rEP7-jOGi-@ruaA%J$DWxp6I;ctg>c)J42K@lPP1vjFC7oRjaD}L`%+kl
zA$qvigf*wJKisq?{QUQ>%NctxmyU~YM56m3_z2&!RAb4pu>%YWoUoR;!&LniFk4MRSU9N~I-v9a8VYzAq7%jfacZB-?sk
z5w?_7P$UHD__5mb$5MA1l)Y-n5Ic^W9IZ&LcC)F)+v7e8@%3!A+x7fb=Z6+M4i0rZ
zFZTNT#>+B2>*}sgF#63Z8=38UlPx>lvekA$k&ny}mq)FJkP`WfCno
z9idYIB?x|^gFJ{)hj-DZZ?Dk7`2WpD#2_kAs2y}L3Hn!0T1EP~QPSNZ92gg<=cv=L
zOlJreV8;XI-^+jj#NWHxn@3t{s>g(|!jn-wr;
zTeB>#X0Ai=x#*2ibZe!JZxUG_yjj!I6*GEs3+95%u20;^JR{L{t-I>{#KbkYMb!PA?)O<=ipD6-WMpU#cxMgo;E^7Gs`pM`0h6X+mn1kj$z>59Fv{K8P@5y
zVjS9v{p()Zh~PZ$-c;#$i3mD2w0w*U8)x
znvG>`R8|`r8aMn?1q)dy`L|(8&;DNN_9TSy#1d(gkm|N^1GT2_a(lQ{lb^uq$}*j8
zwjaob+pac7>&$cFdY@|L{65(7*F3J}+WD6vc`v!Nk%aScp0FMC>W9}38@WtEqpsN}
zg>6S2-d1A$%eEup@aY6Dgt_w+RDg==P9>*%E?^!U`(Z|Rv2byK|>^Rs+b$gVVhMuf5p)kl?r;^
zE4GOp2@UmKU1R7^t0z3DIh?lq=(>vVbt32UtOMFWPB`?mqWt*^_XlDJFRQBr$tk_v
zjfFWIld_Ho?6@N%U5mk{LkVeqdfUcCC6S3SYnzklA{W=Pewa2_E_T1FY7;(pzz5YnZU}%+-K5(XO6Vio_=`w$|nKlEuv%4*6GgB
zWaM^zrT@~Q@V)Sli9rEG>^&60z@e*S$4Z5%Bda78g*
z^Jex`%!ST^DuBS+fHw-8aLt$%B7^<#ae2erjX`-;OE0$L_dSTk^=Ey8fDc7e_MP~b
zM|@^B{ladlP3k@@J|SP*4B2OA{BkV2wy*Z4u-#M*Ea~r&M
z)c7{GpBZ)g%l~uS<#w-U@UOyoR@I#jx#BZ-j1`AW>K_YDr0sG&8na)2LJvK&KCdFE
z+0b)RZ~3?2Y~S+4=9>id6@2W-lmf!r3%9u=b^#sMd+BzcTcObdFZo1=A58HcN{+rR
z&q&-VH7m?nC`hi<#;vDOW6n_6N;r0}afXStck-(QONsAG$7+QL@FReaL;U^wyfiS>
ze_-+l=G)Rg!|Lcm?g!f#`hok?=8T$;VX}j^s8og{VmLl6a3U*veqYhP$8oI9x;FP`
zKf3F5-?`z0Dvw0oJx}@fRcp6mLg4{=B>et~k&E`tbt$G_C`|bGr~D2P!^E?QT9(!ti_jv64CD`cvT)`o(YXv*)*#&VhA<3s$lQH@A{bYx|^Z}2`Sg-T{6cnE-
zc5C0R-n_0n)h!yAq-%#Lwf`Fc-p;f
zd-ve(^S(PYp)}IbXCDLiI^9$2etP!2W7@sl^vIC;#)!1n-~R++G;xnAp3I(b-*F$R
z;Zm@2Rg8Ji@e4YyoFl&l8|c0G`2wZKi@#UXkY-&}91wIZ-qiM(@qZ!(^p`Z6<0~8I
zXNMY&L>@Rs`A=lv234wJq5F?UkF)(rtCiNlNi`r-9-q`;Gn;-Fd#CU+FdPZj_t_zYP_R*ZU{0
zm>Oams3IvHp_zeWwf+SuJBL8*E+k9to)sQx^ib*=ocY)-sC11o~ZvLqBW<$Pe_cb6~7ah`51CDBua~gzCaGL
z?Q1yyXCSW3{fg9eOc>P`6;6v$OV14Y_G{r-S#SAZb7YwK6^|XPLM-0X?St4`paMCi
zP^T0=B*m>BVr;=ee`{abG>{frEpnf=cyrsXJvXrYtr>*uqz*xflNVVdxYtb&fRbub7T`&AS2gO61X%mwyPuOG
z^W%w7~J34g6%
z$G+RWjTA^kUUf6GqDX|+mFk>N`FQqw<04hRYakz79
zx_ZvX6UIJ$ArWFA#}c=e+iV3nEq9*EQ!c(~KcR_p{y^glB1;Bnmk;Bzlg5bPVcCKn
zlkJu=^qJf`TeCgazqb_r`c;%yI%_=>!eK=gzp(7EbA|Cta*#d>1^#IzM5Mj7(#=0w
zpZ={U-H2Ow$ZUrINKNj)cy9j@IC)_Hei&f&9ro7y!7Z08;pbEJ#-h&|A;0kD#aA8-
zM?Cn*&{T?d5_)a8H|tJ*Y=dr6EBDr#-JU`}*&{BZZ-wlwdRl%_Pe!9Sw*b^V>N(9^
zH8TaJ^%ILys(JVBZ96VuxdSHrQn*bt?rA6js&nl5G`7!O-c1^bhMbL(?7=*@=y;UM
z)vQW|&y4(}fAL5(yK&&H)ecF7@W#G|X`g*!3ROSxi-ILXMncS#cq`$9IDJtfsxzbe
zv`njol?G+d2mzZa-Me$9T@YwBn{>BfF}q2b%PKU;c>0j
znP}*l!0jQLl(%M!=hATMljG4}j-knA3m)!W8S1BWo`eB<1JAqXC|Ky($Ko!L=@#-A
zucy)6V!I;UZ~Kl*m@BG1jevMCD-_wB!c_q=goOKHW{`k*->uRt_{{s`tw}8SEKB}4
z?_hk&!`XDpj?Z1=0(
zxSQXy@GBpKww+JY;M7kwOqMaiJvd6a@K^0#1XPbRy+_Qh>R`bv4L9Npoke)qe$@b(3mRBm<+1dTw5-4FCBw4bN@7KaVKzd)D<
zJ$iiaF6H#x3q~yUsWb;a7CHoW!4w6>k#E*idu%O2@yn!%G%}f-s|}mi%!$4ujI$J+
zu00F+T#)fwFyYpU;|4KSHD@Z)ocwzaHB5*JgJkkI`a3Vh{-bGnUW9nXc@{Slz?QUo
zeNI-P&ge)udRulLWNpGVN~w#C5bbUw>wV4$dVXH^!6p>@9;#8;)%IO4cG?6gI(es{
z^+^7Kt9s76Du%mfeQL{wD(HXhJF5bQf^d#c?Ii6KJdEd>y@J}#m1$C~Ph+K`Ghi6s
z_`BZBGgEV(jBBiW$a&uGzolN4r@FKcS!DTGfrSt#pj%->f2BGBALuvx@kpmdy?m4H
zQn=|hyLua~0DQ-z5S&?ntM8o>Nbv1n-KjeScTJHW9OS$eG3d|}pS93I;W_R-Mt^m2
zKb{TNwQs|GJ+sZW!7=$%{KY(76_vLuidd8l9pa@sh|l7k4)%mWU#{53C?K6ro1^6D2*!()uI?M_-Bz^3^ci?F$80@{MW&eHo&~
z)Ekn;t`&a>f
z;nO-qR`UABgO3h+=NDOW$bW!dM01&xpi2XzcgzFm=hxh@qaIT|R}2d>s8-s78Nfec
zhG5lebhUDAy5@#`T!;Ek&z+M%_t$4xxWx;+E_VK@^#ph61(A%Dq`$t#Z3MgnwsroGS@#IQX$ce~lsOXB%Rr{~zhFmc8V`cU^k{1I_FF
z4$Tu|lATDM`ZTKJ&nRaXmuq~1u+IhM0u@@gly=Vunr_2HKKi=3LeJ5eoBR6cqxsHT
z9a=R5*=aWse%kTR#MQ4C?kGPWldqKv6I$rCyjcblV#AQ_o!%y<{>l$x$?;~F;b%in
zxbdrCA|~N={SU+qP_ln^IVc{~jozbP*u8_F%Z>KgWZUXZ>`IV$t95<Eve&WoaWXpTjS%nUp9`|{&hh$!7E}f8mG#+^%uOEz=
zoy%mPIOqYdijj@8g&vwSAurdVYx-e&!s1_lo_ZYhf|$d;tH*;=>6Xg;BhxAEp2-vf
zsZJ$A!rr*k!C(nBm4Hle^+v6;HKKP;To2dI@;HU;oo58SUV34cLJRx0G);Z3Xp19v
z2EopV#K;@A+|RcT^5UM7A2jV}FelES@F?^6BQkb6MF=!n>nOM))iuIyN_Q1;_hgX=Oj*0zTqr%=!`@hT
zkM$38Pl8rX&}!zT?(n}}!Kc(7>*f3uzq|ZX{H03J+S#uK--Tx(ou=(y6)kW`*eCDo
zt-8`5Puh3LD_lEnd1|imvE?wmqS-cn3V%-SE(!Zbw(JAoz6EoCbp?brnwNUPh{>^L
zmE9h0S0*_q7U^x|rrZIiElti98J_s`c-p{L)J$Id{8g27TbUDQuf_>Et?u1dQg0rszgO%yN!;qp
zkpLlaF({XW1G32DX}j^u$PFis5%)Had^r$!6F_>%iz3*6;w6GJT7kMF5y3mmCj&l0
zVbzJZ1Mma<0(3Kd!heNeC1}Nco1J&(ksF6ag
z_YxDi;l_(4@=Ezeroe$Mm??VgFc9qPLFHTXKamMb0@*t3iQe_6;5sv}peC*tr7pQh
zC^`q>>&{h(<#0J9jKHWT6k)?uo*t)G8gXwx)^-yY;ug#hXg-B}1q1`#=m-Ib97T?y
z>6sk=cq$lKJG$HmG6L5hfs4#c7I!^3XL8*|m=lEb^JsmC-c4E=1aoSvc|L#gj%kR{
zfu<1T@On!)oyb312N^?VaxglF8Nd(6v&f%7_!i9fG^qvo(i7C!2!Wg#-NY0Dgc!Ys
z(cXf^cnIXs1KO3{oW}We&($I=(57`$XDuL3VV|yPAae`m$#G{t%)0*~VnLboZW9?H
z=*D0pI2TsP*;RWu5}T{x(7sB4R(D^kklDq7+#*pdC0_ZBu_Gt)esqFKxLmHPu&F9PByy0tAb@sA*qb(R(yAwdYcVHZdEorY#0ZWQu>efH2&Nvjw<569$?#(a2{
z90HbKxu_ddhN;Y9^Kb@&xMU8V=ty1V*8@IRcWHBgOcWl{dO24t^L&kcg6?Y0x
zfr18CS4QXDGw|36LaHY}k2at7Uaml3#q`>Og)q2v&Lbz;K-UV3O(!-NtRpUab_M-{
zrUAU|+=6X~%2jIo(xW!Bk>k^A=-!Q><>_7q6_jEN>*RYn_Vm?y&Z6-|2hkd>lkW(P
z-CC6Q$!_MFrcZKoZeA0Nl+Zy9&pp6T4flIR<^il=_X5*^Am7cWjAwu_ACQJhJ88Jn
zP)yr&`u;{c?*^w
z+8>G=gPx?WF+$Kk0mkD0v{4W`Q1@ae<_qdA3=Qccux2Oat<5pSWZ#T|n2Sby5gg|S
zz`$2L#Y0XQ<~#?9x1I!rTlvmK(BuKsV{JXm>4;Vk`@gRu{ok;Ii)4k!3~poyoJ`mW
z@d?EA(rAGVpnQ`q=SsPV|i7Hk0%H*DQ3TYx&9
zCF)FNi5OugJawx2>TNfzu{WH4a6~rDd;=k?IvqTKSQiv62k_AgA%k9^Ua!}n?mddL
zV=IAM7j$%%m@A<9O>jcRCP_;Ze*d#BuE~gyQ!sE#5wNmRYkTH$)eP)q`
zHyt@$WV?{9S}?szXkOi<F|R;m4-DE`WCm
zk4NQ=&!Vtve4F*PIRx}c_pN(?Cxh33in_&C>e}L&u3V}e5pT2wBc|&j_xxI=I6^nk
z?o!T!%xUoCx5-v$$PgW9zaF0_txs};uSxg0qYow{vsCys1y<_Jp;gPjSf?$PV*HDP(mFlUSL*%vq{QpeNC*4^3k1jl8~SS^2a$qi0-M5%
z8c^AWhl5iqAZGt<%mepv(6J^;WM!Z4h{l9H?{jT3Na+YpwI_WW3{9AXn5k>UB6%~&
zSGrm-KAAlC&AoLqP*7()Jla@4h9NTdxgd=a8#4NwLUE9HveK(wY9%ipAAwz+(^XwZ
zFEyemn;hTXEtu?_N;|M?mXo*cCw$r52$s)6S(z0pkAjl#yfLer&eXt+GrZJ
z%F-JEp1Grk>P7nK|LV|IC>_QcQC^1dCkukA^rP3}TLCP$hz)n!aMVh5T;~#VHu$vR
zyIkjMO;p0aIN};(W3;}^oCTmJLHQsSb(Oq{c-o!zhF8Rng+4!T3swe_-z>1^zxPg&
zh#f$00d)Uhi*Lit#)uT_hE>95XlOav(q)>*o6iv}7i?hhVfkg>v^L#YlyGZu9)3w0
z{5HzXTO1+djj?^ewM|z0D-aIGpT}Z3?iy@(?@?21!h|)t=llbol{YHa>p=%?$>PQFHwZ>i)wh5KH$=3-0
z<(&Cut;lbx9B+**V!vsQ}hNS&SFBXQM$6`rL~vb#3GmVe$$eZfTG2Hv=ulW4O(anjH?Av)b%)M!kFVrqws7z~9Uy};
z$<%aw)DhH#e-4bfftB89Yu+Sxk;g_AP}d<$7ExJ&EiiGqh66VnC7`2dgmie2ppvH^
zyoXoK7Z+$l5*3^`EEoov007iDCN3bO{zpLwtsL^G#4nP5*P;tjcqdCCkga8@`4+)C
z>rxI;w7gY}Wg28H7bNL}Upd2ZLUjUG0LDt2gSO7J2-RTiL$?-aQD$8t3?cWv8M5ig
zsE=SClw`9MP)k(oqTbr|G+?4$Y?U}6wFN@}19e5@@^--st`v89)J5K0+uHtj@@0BU
zGO45M_y+e6a0{YV0lo*F+nILqUBNG68WGM%+qx4Qn*&_yE>72?gCqZkb^*xl7yZ`+
zb3CyL1)!`uwDk|)jGs1gdDAzvl{MS%tue2$d>6teTJAs+AQ=b?r8K;=eqTSz9yS$+
z(u;}fc0e|m2Uvwzt)oSjNO^f2Ra`-@vx^AB8cSzU>w)@FcQ_>Rt3HZ=;HWq+hJc5S
zeCZ8cXs`ByKHi8g!vMMrHv-f_g7qZow*4Rk68MgBw136$XICMf~~!9EMPQ1Us)yL1B>M%F;G|0pn7Q4l(Vr?%F3qwDHx
z$Q#sUby>sI5am^(Pmw47w(pxeU;!imy}&bk)=~2zcD>_(I~s{4z0;ypa-O@qR>8A;
z1gkXC(C9L17&^pCk)y!?B$h#(KY}Xm2m~Q*c}atVqjA8&(J4r$AP5Eu2L9r!>!UT&
zsbg~jM@mz#wadlv6-o(SXZ?_wAOQR>HmV@KtdWZ*bfJY&-gs<%IY_mi_n3@=0viYZ
EA42ME#Q*>R

diff --git a/services/web/client/source/resource/osparc/img15.jpg b/services/web/client/source/resource/osparc/img15.jpg
deleted file mode 100644
index 820767a24139c87f77fd862565c119b8a0d27c97..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 170411
zcmeFZbzD_V*D$>4kS>vKlR&YIAdMgZ`T!&NhoK2wz!V@HAMOlb{*|^E
ze2xM5r*{B=ljPS^!QRsj%B1Jy3HS7I^7LX-RAjoUZ3}VsK!vXXLIQ#kQi6g~LXu2^
zqEfM*EpJ5(xm==)dwn7thA{1*2(QPyzrp8pdC8V*j%&Xe@u11&!;U
zWkE;#%|i(NH*YfIzxb(vPq0>iizo5}aswc^D20upHh_lQ1c)v|fc+g59da570|;<&
zaq(~o@bCyoFX3Mzr6eXGAf}`yC#NJQrzR!1aDP312L9bgBfNBpkcg0kh=_!Oh=_;+
zMY-{ir?E{_<0gYMLXb&MkB
zc2zi&@*mVDcaF{P71VW&FYKE*_&!W2tbaSPcp$E7>gX5#q^O~La_Nv1Kt~6q#k`OS
z2OCTDLIh?(GE7hcZx(Vap}X-EC<$I03~vdu*?ooGOHeeVg!qVTvty$Kz~K;mGXe^c
zciCRqSPTyR_FIJiwFI1hi-4R02rw@4Bn9Mvg_5_8vH<(iJyE}%2bO1@
zgcWamzoC_H1f`ktvn8%<`pg7t+I&}~J{k=AFrb~K-qo(g*!(^JUDE7BuFj@=-_{r{
zUxg(Wy@YTs2QwD!4YBKTy6cv7lF`vXe6+$e(xB1&KnI+&p}kyVxx2Y4`2J^H*Q}R@
zEM}iFH%`ov02UIUj_BK-8dcUlkqHZ`CH9nE-1t=Y9u^}h5lf6G%dD#4p;x#j;;JqS
zq^gRF--ny4ZV*pcl|`8xT0rWnjj(z>uM*o7(2!LN7y<=
z)WN22TPmD!f>!s;g4HwIS^F002Ii)aM(Nv>zR1y7{#K3Ff=%0F!Pa(Xxu>OazN6OX
z8ZipNAI;pVDqjdYyY&D)BcZFtp~g$D={jFz;||uYKRvBBK;5zKH~`
zPvx$gigomQvg(kZujO1%C1D?3JkrpLz`VOWYV+M~^%ml3xvOg*>%`akO!_aA!HlD!
z+^3xT=b70a%1J3%g#@+aINET}#WJoyU*pH=D}3>3esEA&5tt*%OoFEe{j;FdwGHdMuvtA79d?+F87R
zYx-m$lNi?zGJdN%!B6OuTX7osdBTg3`(xgFeR@xLQ!p%_%@Oj%$y&BP7d)V4SR;C{
zXylF#bnmCD
z*H2kb66D0{kpMg6hD2le%=W8p|Fvy*eI$@Y_wY1FpBJIh%lYsM3;ghWE!k3#uWoVi
z9(U-HoOaO}DWm3bvB9%&vxCn&2Y2nW^fsANc4v{GT%aSC^>Z=O(N4yzNty`yg{NW_l1RGzKiOa!Lu9oc#z1E=0MppAtp0+!Q$#S
z!y7y)^o0l<>vsdj;VZ!^LkffmS1=F1Vpm%V?cnVge(ni3`}X+@t|@DHR4W_9c}eJ_
zHBNed*=IS4!#SjV7`2d|KZVb5^;zd+x|3WHB;LdM-b$
zl~4?4TPtjv&~hPe?oP0xZL_&Eu1TaJkW`TJgL!Rw5eW>XHQhEGND#Q23+Ft%5t26I
zBlRec^ktdvMtLe*crd-~%eK|=r^k}Ab&d56+?UA;rxSy437t4+IcJ;tk-)wE%jWyn
z*AZvd;(?hD4rZaA0p!(h>kdu6uLkNs+deex4u@2H`Bv)yK>%;h$|tH{V|cEJ>vY$g
z;~{|@D$B{VsyF%(8;mT~_P^=l?(?=P_f6{Mn@P4P}#iX*!%5vau`L)~Ap_~)$kf$Yy(u(XvuJcs
z)uz-8KY#w}QED!+*R7bjD(kxwQs<)mqOIk`bcvOpPLq2bZ{Bz9ioQi99!`j}fAgrq
zsBPq7K)=x3hpj$o%xode!-a=7{6C0VWEp(EUh#q?LHW(@KB1CSLIO{dTJ_F1)n9ZF
zHP*d(gGcg3ZT@!fd&9a;3z?0_3ZBE>K3YL$E5_d6gDMCgmp{gUM;Onjdnc%;PA0?3
zKCS2kV3Of7-B+T=Wu6cZ9H;Mqq+d!O%^@9Rn1z)dyVe+py*zvvWpr7XZe&9E6Rih*ykbuOU
zN2$j)_M;v0&R!XX*t56%UV7FMkX^+pBrYkQrTe6%M_WkX5&y|Vimf^O
zK`y&eLe$m>#+^HGuXW;t2*($#BQzp3Fym8L%sc{umMoWtwmGVID@Oju8M`M{q0F25
z7C9fHAvDb8m6;K_>Jqc9FOx4n?-0!uvk=$B&gXrx#x`c|_h|n%Nr)g$*+@G#Fwc?v
znijF2+NY~aOcA2HunZ4j?C+*>B9l4~YEGUxmI|(`y?e7Or+tT~!mKa-`M>se)nBDxo~G9@lQq7BL>jHtx+d2;vO^
zdaLrWhyFu|OBFp;O~i8fce*9~Fpip#K#7Tzhhq8{`zJBP;jhhCK2d$n6%(H7UXk93
z=qDXnXyQ4$B|W*~_j$HJ?xjV4*OSYnT~X31^w*V(ww-Qu%d)U`3Emc55o~t-=%6iJ
zaj-hOIeD1kP*W@?+7z2ggH}H=aXr!%XU3#k`FZZX=K7neeo0!wWXU^0Q*s#_HDjfI
zL2|E=Kv&T&Nnifg2n|aOX?;4yQ;xQd5J5V0Gnmqe{Whd>=*dd=N%hfZmA2uNPx<$N
z%^Z1#8jQNhZA%;TW|9>@kKzFx0oAZAQz?(?mrrZbzIXa1dwv~`6}<+lgv>Kv9Ap~zc#XRe^`@mn{EuOit$#!A{
zqhs`$8D+{KjvHpdjmOldZEU~CgSeIdVTLnuLYl%b#=sCc@@+(CqUkNo$ec`AUUcB|
z`-%3ti{eOtEg^l?*rhK`x>kZ%3~akWhfcq*J;dGDrvfk|&--3IO1k>C#a^(m0Z(9s
z4r9Z2AvCeiY@R1jm#VGr__4Kp;J2VCmA6m8xAO@tBhv~Jcy3TTVOR3ek~5yI@iv9)
zCv*33?R*mHH;+DBe_MimQ$KospIKnD26J?7%!DVJW5E{3BXQ
zX$F-{d;*_TKf$h|PHL6XnWyv(EP<^3K2aZEQmehXu()N?B3tbjE#+6U0oHOBkQk7SzP=^+FNkK=kaNFdFI`OrrYI7
zg#Fv>2E%N*JaBq%ia`QpIBHktQ^;b%cFA92=0ao@#~M9Y2bdqfcaL%3^mVB)OGRBLtLVPyE^
zdg;W>6pn0K&9Sy2q35!Y-*?9!a>J!^b3*aSCXALHY=*ZG=GWCR{0R}z;k|~T!Luhu
z)x7z8nt|SO1uJR%Ju92i&w_Mj`mIApJlf9diylv2^;7OyK1x2Wwfb22Hohs=c~-M^
zR{iB!1roS>z|#bKctvK@Kqy60^L|=K$J$YFzjP<_?s3(8IGyd8uhoZwEP5Sjx(NXZ
zx1qsD3r7VjNndwbCMZwrfGo0lujYrwm&ZeR?>31@n``FUb{z2@O2(Xfygd(gy-t57
zR2&`bAKo{2I#=g9hq!qMKlKXz9gOn=O>&1uwvepD_k32uG>;jk%U;Da?7O#`mrHzI
zzrI?NV%AarZh!iv`{M(-Q}&Skr8F8eM)jE^tnx9>-j`@O6?_Q$4=$J+!p{rZG9V@-
z{B`XuJxje7Km1tvOagXwZcy(s@Vf?hhisppJ~j9eBe}!+kg6x4u)^K?UgxQ=*eYR^RBD%m
z&c2Ox31MBoMs%b6Q7T{5`orlDTl8D!HanE@?;@XFMvg92@l_4_SOwoLc>Ne~mFqQT
z%kmb|$ExAd+>6mZf1>BzV?~1xy5`>=kf9N
zUL=s)xj#lHqp35caBp){uF2wg%D0o59kI=OG!g(|PTRe#6xkBh#?w@vM-eiyi%re1
zu$MQkwL17SzQ$sQYdx&Q)m;-FJPUDgZwaK@zz)8rOP6d++G(mJ(NWGkb-p}zx|G9{
zkS%=!0?c&1z^QsK#6t_|-o1$glvnM#3An3tnwLL0m}!r{JncvrJYMZbRGdiEJ)79z
zT%0}GX+G)c@zr*8qnf%D1OyMCnS3{NNX_V3yV}8Un=L(-4pR9;Hu~{QfI@1GepW7`
zEU%N9u0?Jl>yluSrUG1Ig+o-z?bwD5;FMRx3A@Czw;3MH_#Wf&?eKky&p(`;(zewW
zqHSeq$iseUhs5nu^Dat0YhsNO5^oogD>$h}0@*Lum`4SrPj58c+ZrME&M)h>5_L|j
z{3d&~cE;>0+ggti^vPtWe6{;M@1z_P>mtgH;r#w>25#Y!32$D0H?gN|F9-p@B~v62
zYL~*HACdYPYS~+o_G1tdt&@G|8a^C)p#LmJ?Z=+en{8;#P6pfV;`dKWoyGTZ7iAlo
zUt&+b*zn)Qdo=Y~x5uTl=Mceyqiw+bBdtAUJZ{yIv`NQRQ~f(DxNmx&9L85nyE2AG0uV^8~}Kg=Nm)k}!XH>R)zmDX^06MKIc#BXQAL
zmL2)$H3qkUnL`(Koe6=+eT>@?oagx*gqUv+VufEK0hYYA^4X~Gye(wo6`~twvwp`&
zAT?64ZzYH`s)y0rEp!+bBW#8>{p^yqqwmMjjulZkoo|+yy>S8444a{AQ4nE0Y|f)5
zrIjL_%JH+$c-nfDETQFOaxF1$Z0cq<%d}jJ*(f=WAC^A*c<%#eKlK9HpxK-eab4bR
z(q5X7)xf^@tTOUg3f;Ebo}tGYm_?#KN0U_uiB%Sh>x5b}w(7@*9l&n;_mZyo#ObEWe
z+5s=!cC7b7_1cG^4?=6l#u2qd>+4A1c=8+^tB=fV5oH*ohw-Epn=IgFSxz1Hkszl*
z0wOJ&SnfE3i?d6#cy4z;75zt<%?fsihQZe_aU!B&&qpBBk$1Qh%?&rW$6pc=*dd(V;LaWwEWvoZ3u;AebIqT%aUI11ofq`}
zE-~3ZO04SzclPw~0pl;DC>6cn9={3!7Say(J7D1Gqy0Oe2=h?!g(H3C()|0!ETh}%!R9tYoZ-^ow!CaS=!KSEk@Y?hf#?zY$*GP|9qJ3(70M!weT(
zcQ3+t7e45rU8DjP-6)6u*B}8q>;>)q1y&8+&~{xO@j{YFHBBa`frTT1>OSm
zf6<6uU{F2(FU$qcA7B_jjV$DUbQsI1=>Hgn{6C4is0$QpuxtR@MF?dG04`MMKWk3l
zB8-mqGZrN`N^(?R`&s9>7nr|BF}gg62LFH6Is*#&2QL~_5JMgGewG~-1W>Aeba4>C
z2aEv^aE5UP|8C%1V-N5Gf+zwM)xWua;81CQn+txE{e$2)?k^!xVGo2GYDPpA7TeAf
z;bHIdZzCN7M`exbFaT|U#}Vd<@cI`NwkOQl(fRj0t89qku6uz4c@Wwn;GU{b4=BtQ
z4z&jnfKhKoR_*lvx*Au%8-b9Ps%2MGnZXggZ`fxR(?^zlRT>
zE$W~;AH>t0-{01YUyx6LACQ*w_p*h!Lg7qyP*9&L!}9%Q8w-=Oy$p+~sJ4K%mm<{3
zSuGF-H4M}-f&{ukB<)$`WSOM>rTpE!+@Ww=CVzJ~4<9Li8I}v?QXq^%^RqBrkicDK
zST2r|Gnr}YF)4b&piH8CV!RMR5dkJ~Nj^a_0TEF_9wzXJyg0vrD8GOhuYjPGfP|Eg
zAk$xt1n{#UP#*})`NE>cgyINVix6-b7EsckMR51}&GtXm)jtTewf}okcXw0;T(I?l
zEBk`E{CADugVLY!8$f+L5ikf;*%#^oXZ@Aj9`ZY_7pOtLD5*V!AL<5m2g!WEMil&=
zmDjHu2)~p3OF4c=U$i_b11~8>7}OTDof(04vtJGMx6$@r?=k!%0Ti^gL1kD_7aMp5
z1$l)ejecEh;6^o{z)wj8nPE6K2crQmaR
zwwJOKu!qmrD_!`Xcy&cZ(6sE}>;^`tDKUW@c@-*n}{y*y({})C7t6CvWwjPd9aAxIaK^2A{H3$7{
z6#jp2uZy^U%vZn2!ATGW{+@khf6bDAo_}iKPYwL3fj>3yrw0Di!2geG;P3q#)B{{v
z_<_4KQ(X#h@DvYc;o;d&@$qJqC@~9LSm&ku!(f%L#=zlwm-|inNQCFtXe@FaJfs0GzXj%T9NtAdxvb3rk&(ZP$*za0)PHWnrx20nP19=t>jU}J#!|BeKsFmTXu(eMEL
zOC$g~8U}cc90Mg0IyN2x4ZL7ZibaOaj6==>;0jVG2(eP)>EEETWfQ(^;C+|cE}mU6
zr)rBs1cra*^{^=CS3|LT+X=Z!Mn1|a;;N9V#wMmT)o(_=?bzRkCx$`uYC1;eu1PrT
zBDf@_)YLV=#&mRYcJcM|4+wnlFgzkMDk(YTNorbpenDYTaY<=yU427iQ*&q6+wPv;
zcVpudlOH}#%`Yr2Ew8NZ?H?TeI64N4kGl4biGhWQiHVJkPd+Os8&97RyT}fS^yVV)viyDtzH+S&j8)Oxx
zB`#sh3R(N4e9j!thGuEi--%_Ene!?2jFQx>rs@>HlRcYkrm43cd|vR_k72XSf92cV
zQs-^TI&$1E(Z$?1Q-##3y5_76$oJSTFZOLbf$1d8txYz^KiMc2)aB!L)Gts}hg%#Q
zvQbnUYvf~SYHL%M_DJ(6V1B&hg?0CE;n7`);l#1dw*!u&fu1zFbCWh&%*_NN&A5t^
zEKx(!DtC%L*5Dc`uZJpnS*!jHt!a9;u)uvOt<&^Al~2Y^z8pd>olj^Zv)|uzS+JE)
z4T4lA-iARLEwx3cTcGYYJYBwvm}FM|}Slz<>0?
zG<4~v>e=nX&DP1b$oaM`%*j
zvveW1)oPwL*2-7N=gj?RX^OkCR5XSmbY8|>_lfSX>EyeFTzhT>F1Br&rh!ahFNmyW
z5~7jyMD|^QZ{#<}9_-{JMw`^R-PQ9}uW-?X2ujiM{;(P1m(M807bimp_hdIj&<&_X
z8Bb;WX%I55&s}d6_n0K;B-@$_#7j2O_4Y6hZJ){H2x&X1OUp>d9=C>in!MgwnUb0*
zqcL`MjnD(?wC3*c?(Nu2=?nE5ST<(1>g0_txejBuJaFQ?BfFTpbi8HH80*3kxxmI;
zver#6EEalIoz&FiQEW+RMq2nOg}N)FE7gE}S%vNnV?*g=S<-%5q=PwIkLgwB2U8V6
zaYkDu^T(m}hnkT&YFggu&%BVpwY83=p_j&%HtN+*siyYQ$@}p8de4iiU!z|-;$=bt
zQWG!E?|dT!d4YABQ3PiMeFV`W%Vw7#CqMFkx$y+cZC87ee(WQtCb$S
zyzhHPcXJ83R^1~Y&e}%07t?}eD887;T9vz3E&;1Gr+S)d;^x)P9@PqM9o4
z_7xmM4wq|lg(+6?zBHKLeZ~uZcJL<=^;NfKPDm}MW>gkhI0Gl|h!pi~t%RqrUrAP7
zlrq}LY#CTsG&E*dDTz*4l=A0x{$fP8;#`;_xpZt6rpJ49U=tMFcq6})Oz=(FRO-2=
zUR#=sJG4P=IXkPN;GUaCnbS#N)U|17!$|D~xbd__rAK}|;S
zHxx;97eo7{yfwr-6c6D=1|E}zo^L<4!i7%PNC!Ww*
zLszU}1(?=eg^O+_qwvn^UUARsl@s>+y}cTh9NKe}B=Mcbu>Kj2hFen;qL(21ZB?Du
zYaOl@8gY~o>R{>a&JEdq<>v0T!e-63sE(<&C}Gi954*O;o>}e5$}gv6iiRL|*xrP>
zJ|3Xvb6z+~>@NQSzk%fvs503uSdAa$?1I>)8|2j*2@F4KLci`mhqKZ?4~|r5(AUPs
zVc!ZW)`z$vQAc!vTb%35-JXfjMCz<8g++^UeG}LGu;9aN?v{EFG-^^;*<<9C-(<*Y
zGe<~I#}2;8evqI7bzogom!S!~1>X;Q*Jo~2TX#icdF69vG2Ykb@#)vT-OZ0oy#lYs
zwlR2W#aLM@KC6#u&Esm0!AA(g%Q-zGuC$~mmy&nbIkLce^X!3E&AVOk8D&d7XK2iv
zqO#*y84khYcSxY+gv^X(rdz*6U;g!v=Sw#HFJffGKCC6{xHMbfyR>+yUL({JD#>83
zEIqknj1iT3)1K_j-flLR-b2fWRIH!MC(JxPOMWnnYQU%Y5&}7;SbO`xdpzm%=21~x
zU*F@kiskpZL;=x8L7p#MOCO6|@vn$C_|{Mxy+X)fu7HQFwGvbK)kUP&nfkqXHuERe
zvV6UvFIilsqmifQpPwtPO%LzPNY;1HL!;PA?iJi|{$`qxWtpHcz>SW9XVN|D71EaF
zc-^H>G*`OPcxNDF_=sk-R1{5yQ^is|!6CwAtV}+D?J*a7OyrNvWv
zyt2xXP+=TTIoc}{R>s5~lB9pmc5?0PBN^G~b&c`ecE($DAtQnHm0Co1UcE1UUuck0
zfBUV8i`Fx3rpMKkvR9w4yer$`DvOd%%u#I{BXRe1oW2!(W4ILPjbTs?U;jF8T{kxp
z>+JDy=fi5C%d@iTg_XQ`&Ig5Qjw$IGZxqb}E^&)M6<>&t_tKr{`e7(DBQTXhp}J43
zaVBHc-*?>SXSZAW`h?YxU<{qo&;2qTT9IlB3R8K^ySF;hl)mN@i*Gx{T4Y=#F-&Cw|
zrqb)*5f+PYZyVkIZpLsksDO}f|I?V+_pc&P?=x#FI$!Q4xa(k)xUZ6|Y>~rq`hY+r
zQ@OPe{QLm>b|#7a(PZC3NBKSf0K|Lk-In}fO3kJkJtKUH<=aUg@r%t~(>xdpMYM%j
z-kd+vQEzHsSmot~FAH4LmlpHqn^zJ2Wyx3D_y
zjaasvVC^G0&0v|)WnK{>fAsLNbR-a7X|%mO`}I1jw{f?w?!kESaP8IVas8u~NDLLW
zhfZ!iB}SKksVsGy?icKfT@Dqy{>QY&@|>7kOvjZ4SPCm&SxGx`go(4>8TFUPMHSKn
zGvOANM5(hSE05@6vF47_+t|$TD2Ox0+Fur{>TLTqI-#*mQ;bt!QFoTK`eibfDEjTt
zdOs04VSwQNu%k)ZPGr-M!|?TYFd7kEoeoE4@}lWu-w&>TQ9vf^IysbQSl@
zaD!}d?rw&e>3SXe>F?#X(}xA=V|8+dwexy7+}cJJc-VP_&-PWFdPFrCpU6Xr7TO)2
z(8598sa3>aWJ9CCl2Zm+~J}lR^c0_Q$GvxX6usobxKMb(HE0_DjpV
z-c}aXFqnVd_%d7e#e6us$sp_@b{L^%EZ;hr^U6fNMoxCm>dV!)HjGyb%hIbeOWV^O
zG9BV6&J((&QK+i2AOA=M_&m)40LaVsTQ3ns(Q|@UdJ@{KH(i8?lwm^afsU_BV^%
z%RXDO8z&T(R+c0{4#HG8Qk4m=Ef~d6PQaD2G=sG_wFjFUack*>C&LZITV++uR(4<5
zvpZc|DG}U{OOKq;XHL;2RD$T6KJHI9v!bj!!kKb4clwTjVW5t4%32=3G=l!}dVJT$
ztT_B*4)Du4*;4
zpYvUJHa6Il>7dsy3smP4+hoD5G-r9ICD*muUlyr=!B!EgT~U<+iQJ1t{vhlHiNCcZ)JmnVsBuKY*;_<
z<_%O8GZZ%YjLXF#P@z%&Ao|T?HGw&&Th>;^Yzb&~+O74X8rmTY4ISa?1?w5pjckF0
z4GsFG`NX;QyOVvGj-!jPH7o*8TG~~geDN5g5}ttmGweO~m@GQuPp3MK98C1`Wy
z`AEhZA?;!7gB#t;u1`=DMu!CS*PCyCcUPnF2fzA3M9#@jmu*wK@AcS%R3~vCkHVO|
z3lj+-2n^LJ5G)*bbgG(kuRiFLwoTK;oc;LB?K_<(TOfTBSzS4Iy3wtDMU8YiMEIxU
zLu=H&;x5y@{D%hk@%xxCTqHmee1e@Fjo3{3aon>Y*yKsCq-kQ%0zAkR8}ozgmEm2ubOeSZ7A#Db6@!;0X#7^2X2Ll7xq{C?|LcSGO7e4Eomw1&%N)l2(k?0^h{XJ?
zo*R;LJH)k*?cjK!czbh4`!4$|H^~grBhin-inB?~X~d~U(CQzmTy9%DICw*r5HXZN
zAy*q3UcOB)z9pxjlJzZu0tqzGofv5{M)sa)gZr{|Y{)G)|M@eZwe550=isq8iT!o2
zWuHNR+jhlBr#@X#8SzMY4z)d{=;}LYY^!spp6kSr=WCCLMDRCk6b(BL;9m>V1K@O{
zc599!4i8<-JRJk#^MZo;={ztRj_1+V^?Apx*%01ui@U;@MsJXrS71yumH(K=;z4C`
zmJ>yxz++vr
z6}(Gmc+|MB$=MIvJo$4Gag6!|wVEA)ml2bX!M5dOS+?BAgRWL2u-dy%>-NYs>bf4r
zF0@!g*8D_Oo#Um?G#)>nY72dagwAZyqFk4Bzc`6?ozO#D-
zPv~)w*4a!5jNlS^S{G4=1m?504}=@4_>KvJizdUBqtEIp)k~xHo($VECpkk|4#&Ih
zh`$WgT@Fs~YQU4zfR@r3M#|L`Mi*RN9b*;UTb8LPNx@qvNxHtSgMo|+Q8F150z(kS4awU
zN9YfZop|*0ebMBx2n#If7@a&bT62uRDK^m6Rw;g=N)5fKqT*n-FFvVd|LE?S?#qa!
zw2%3mvWl@AYgSTjw_9M!q7-Z7hGU=DeD4V;BZ1n5R+#enh(8h_cIisG)6It1Hf2H&
z?PzDHd)~9PymK3VWGF`ZqBUqLO(T6EUM=44;NY~>*>xvKR%pKBy2ShMhRIV-7DEH8
zSv25R4$e{xRylDok#L?colBXeH+{$Fg&?|s(>y%-Lws~w1Zz!st;tSI&nX^Qi
z_>nbpcf<*i&x!ERY&nS`YOE&?+$k$cHND1@VleLApO+=yzY!kU@ho}8|l?OLIU<|$t=3%Kb2pJuBaUHq&o!K`&?X$MUysu+?ADOzNo!QgG
z4J4qe(=fDB3wxBLr6nRui8y|AX^Sc=~Kh_iu$*1&$hqD=f+}
zn@5#uOkGhDy_%qMB_3)>m!}o6-N^OsOOOqlGgp$g@oKB|gva_uFrkiYX`t`D(l-uK
zX-uh|w3hM=LO2g^08IDXcthRU^GTa~q7cLxp>hr73A*Z)E>e?L9mELMa(l$!r@$AY
zYoEbYhMukOTSHmtq@K7TylC=CZI)b)3|YiIS^MHl5zi6eGRx95xmA}Zs7Xr3IAy%G
z29a1^agR&-z$3%sGTebhp!WvvrL-4SB)iX9i52_DCU9|y{o`_TBh00%=4dfPS~^^_
zEQnj^=_8DzFJ7XwiS0m$ZgqeH=DzKy$J{JeZT!&2RNZcqw`oEob-5HXe%!D~RL(-u
zOl`Kgk$HePHf_ilqV`GELBO@$%BQ!(wd)#WjHH!>w=py
zKbo0$>C+}WVi$bd72anuNJeUSi6E?YT&+4CQJC|R(%z|qQtWu9;K;^frjjL-jq1>Q
z_*6;XdeoTkO`WIIMDn2J_7!C!g`MRv?GI=AyfRAh^9^*yu8HM2c-9ZAQj$3m)LgR@
zFw-Sh*diVnls-tMebCk-Q-haermi=#oo)F+Av>3rb&Jl
zd{PNNsV~iZ%8ThjUG60kL-C=aawbM`aOH7g)c$d*>^M|<+Bp_QO`>~fzv-0iO
zh^|jRylRX&T^?uE>3yag`qK6W30H$)V&~++X!#M`IEd3{4$^7w`%ILqFEKOkGOs;p
z=i7AZm7Dl=?Amsw>czBl?JW2)8G*3ilUR9o=zit{p5M%tB%W$b4yZEGSgGb7%c8<
zUKyd9(&x*cT5pFrHOup}0yt@FvtL)1JWqrBJp$hP)Cy^9o0_6Kb?ObwxfzM^)G9cC
zif3T?TtJ3N2-6go9U5#_rDpl0nPrXf9BY4BzjE!=V>YL#Aa|y5mCMD6eU+0VKyWNm5Z6U=3(UZ@?
zOefW~peX?=3AR_>J;>%A3!WT%$}Q92++cl4Mm4;5veVjx!`wSLKtvlhJU+@kX`Pk*+x98;V4;K9cg6>o62FU5Ed+^_>S_K
zMgQWrf&3M@dm+zGcs@&NO>3}NF2A-d9unhTINDy3sXwCYv0Ql;TqeA`vc&x0#NSle
zK$ZJEj>T86dsWQ=yYEaUzh=SQF|i|Pd_+hm(IRA4wvuBjqK<0mAa)m?dcOXgyrMOd
zEu~JP$>K&QV8fm!-Po?zN?v(1EdHv2{aw!B(RYXNOTj
zL74oR63fg-)rs~KMLE7Mk5GfXQY4@$j|BLS0ug>D9we0;a*He44PvxV*OiL8K23t{
zmUk>>pM6cKq64sNSx)Q9@=k-}H|y(DNa~+k)tP)|$XW?ReX4~#_jg2XeekH&Vz9~-l
z4hF{a-o{2YE)Lnz5qx!RtMpEvo*ZM9rkKZEA>rDQynC`;&M(~ShwrnHod?K$0f-W5
z*HT0XfD@dfKvJ*Z@`NdgCtVw5R8mqOABpNXa%v=xK75+2Ai{=L_{~CbHO`Kv=2ozF
zNtzC<<8$J&{n=t@B`iXU@U=6X>L0TE|~KY$qRx
zI3;%Qayuz_6RyM}c*_bXyl4aqxfF@$Y4~=BJ{!6I$kZc1+1qT
za!sUAvCCBr_4f7G`4))BJ1WfPG4IF8I>z|ix!t8BW$H=N8s4QkN=pDavq@X2p=`eD
zY&J1GY-H4(M6vEf-5)Ylad?wmAzC{6ih0J(d*@l>-$!8!`!kP1>+^l^*skdri##J&
zc+?YdWN0ykMzK+hK#q=^98)=Mwt*c3|<*v+%1e|cb1iGwUbRDOLn-j9cB6z!6gHy9kJCF#sz=ezYcKYdgU#eAH%
z(i!*AH1};Ohw0;GxZrcPhhp)Rih9}|9pRPC+&%~rikNE)@h?UwMW%>Tpm|!cpLKc`
zR8j{9zV96{Paj_MyQa@nqwW|xr^p{>g&}Vo^@4GvlDN7yT3l1scseIF#{T8=(GDMb
zOcy6jJc>_OvP?2Y$77dBVqqz%(+D@slL<+f2!npB@-m
zvu)lrlM>aRLlDzN3EXHFxJ8Y91=9#l?Xeh3c~jLoelF);39W@#8g4oRb(!63MQ*E0
zXQ3S*Skvnb5-qJtdkc+6^U<#rEp>>NbL$Vq+P&P)Nv9I^A8=hI-tDd=O5C$7jCrsl
z3df@}9yRRJ)>*elMCx3;xjk%?MW{=S{^P
zdnCZu#K+KVSX$ZyIS#b7;STN9&H=x}>A9}#{*H}!GL0ngDo?0$_VTNnn}QLx4o8W)
zTSj{eiuJ|pX`~Y_DaS7du8oxPTxs!M0d~7Nvm9cpH%tUX5>!S=+Xb^ZM;ID9)8lxMzQ@!-NYA6Lt*)tysfM0GS~(PKs{axe06CH!w%FKGc{@Ly9XIbAeS0^n
zW(eLtNv>`jkQ!UNC$~@RGQK`b#ON(!Y|^nK6qy&fxZ`L_Tad^r
z_(hapSv={9ehmRWWxcs7xM(>;*`G>l`9O??N-h^O%xD
zmEIW3SGF0mB)7aE-l3@Eo&q94k|N%F4=QGV%lHmcEHtLT>^VN^&|P|ZrHJ+%YSuHG
z?VH!UgMxUUD2mcc@e0^wAq=@jM{D?3Nrllzollc7F}l8QNGGb2<~8_b_pY>aXYqye
zKAqgBZYCCWP{GRLWa$&?qNu3dRw}slK(y9&9tvCUBpw6iKGHAF$E-(^O36ZGi%v7F
z_%i}cp$8c{-|{sGy0C=>lDbsnI7#ot3hUC{=HWJ{>Ckh|6l3jX_KHSh{C1DFhu2={
zHS61f?Q129yM@ZC#RY+%@Fpgc#ovX2c$DSWWqL$9=&Y)$`*RRNEtuoiT{1NL{)}Hk{5B-1*hKTtd3BK
z1E(2{{BhNnAdY5Uni@(-$5%>85%9Z$dvoIt1G~c3(z();H6mB56D6HP!-tBdMsJi&
zm5WSe>JwPhKCQkKtbJDUa@PKyP&Vkp%KS=keCHNWXwA%o=yVa=)pJmAc5kTb|Aw&AuG9g)S~V)rS+WXPzv
zui?8FK11)Q*{IbdP4L1btyPkt?#(kXwk1wi4ov5B|@ASs5uC@uay%~LuyIiz6#Bh()hs^h_LP%u8yT;
zy$TRwl3+E~MN&0X$!R0{B_1az_C%>IupUQb*t5n2TmttZc`+5>_k54@2chI;QR*}_QfU%YvepO(=5w;3QJR5;(%A+?81-!ks56&!+a
zbFZ%DU!}UeVKr5B3j!Y55T3bWl3=3Hes(p_cs)2jLpHCkVe~nMPL2n0oTW;-LvGhX
zPFaRo-n?yIY3W;eqqrMVO1TBE8TCOW(&V98{kX-GuPc*};4~w?)>8vUMuTFuC99w2
z6U==C>*$gJ+BDYW=y;*z%XkPbtlAUvFW{j!jK0#z0$)}+Ugb$o`;yYnb=k@mlFqB?
zrUVvQ2d@Jtu*JpoZTA~mf4H>v3*cCvNO5N|`|?|i9MrG(dY;}6aQQSCHcgvJ!;x;r
z#kDgKN!^kWjG@x2t4=l$f%d(e?N}&N=B;$MUt3p8yV#>SPdxnmJGe|o;!pLq3UDiM
z2Q^3y6(;IrsI)&$j!U{1HLBW-H4XUD`dL
zyMvMcaiz4RG|$r@v;-k`$UIo@e&|B2QYUGuc!D1n`g#;C6}~rS>F3j>uOAD4?aGx{vFTtm#gA3C37(=+Fg%v31kIVX8g|{r+dj*M9l~U
z+P-sl+hot(9qKj4Qeeq!ps6-B(DYn0iNXua;$Me5N#yjdJbEhDQlB}iEm}dG^No08`3SMt7f#c`
zn9$uNBNDfgkm5~$!>EhB1Fr>|oNn05wEh23_Lfa?HBgs!6P)1g+PDM=7J_@@);Pi4
zHMj>0+BgX`-i^DvYp}-MH6%e3^d6q7x8}<`HC6K$PMvdV@4c?IR$%0X>GbvEJg8;|
zs+~CqP|T1fp%#l-oz)oRV`OHNI>Ws_quWWR?nhYEg(T
zW2J|4TNVI}uP?-?#+{a$JHsJNbWZUkDUsS3beNw6#DY44gv}-6dm9TRiiyO0I1h()
z{n1kGN>a|c2Ud&qK+=*jn7xgyy_l{iS!=IJ{>o4{S~@#DIeqgrq|;TQCw^UyWi?X%
z0TEaP21+wMysgb@7Z=$RQ}W_DgXh;d1}|FnLWZS%ljKygI*sUDe2Ns!I|N0Gd)<5s
zPlW@=8PfF+=3HN`Nz)oJ$H)}YftRtGnwnpWYqyF~U1Srz3`Zfh-6CIeS!oLoTWy$$
zMxTUOV4MIwUkO7PyX)d5rb1at{Cxodv$Vm1f4|MIWj$OPQ@gMcYJUxj?RrLUYFYP^
zBcO$f{RhaZYzj*|UC3p5ye&;=jM1ho-`8&NlSpPsaRq!*qFY`|uUihLsRmo6zVdJ6
zKRBPlZ%=dV2&91vz*lYrSJYoG{$pu##i|a7qf|c(?DvrT7wY+L*5u7sY$S6IcCG&M
zHP9Zw(Vc0zpf#bankkJLBxwgdQj~7-`~df~ta;bWuBCMlU%0Qr`KCfHKhLU9eiey1
zMo9QCzL)q{#qJ;PBdN*o-~mj?Ac8P-wwM2X^VlK|4%1sOy;L^t;8yK~ur
zR3?cSc5S*5-af4?5M`+PfGnkN8kgqMDpc#sg0O0%4yfh5&to!xfkiB;ZJgQAVVg>{
zQ(T^7N%vnSq?ID|%Xq}=G8!!Kfeo|OrDZaU_4ya}yexG+Z!9u(+^axF>Nq`pP4A9b{`|pd%>ODJaU~%YvpP
zLY9q4u^WC}kqIG(L%MrMK_(0HV1-)zsuF2&oYcu-9ptL|4o=oX&}f@Ux7W-@Vrm$I(
z@ZyX)m0
zaPh{YEx&_FoKEMi#^%mIa83b_DL5vE_cNq^s=_-nAxJtKJ08~yyjuuApJ?ZE*NEIo
zq@`jG8;C
zZB40%>nU*d?R>^g>!S@94FWTZG&4#QbpNt!OuK3KG#xbFc<;iU*NiQM6}f1yaq;0L
zSjmejuD7|3`|f)vS13;jNQ0N`740P5;T3j|{Ko&RWH!3AwIuJ4otVin8Y{+mCAqtc
zKx09sK!$S}C#$^ug9dp^SAd)Zl0>Xs!dNv&XJXVsOgTJO&SLk$81VTpn~V+A?!4DC;k>}@@r?GiX04h!rF(7!dvl_=mzT4<2YfkO^GEVY1_Yk@(=$uWDit8fn+
z`;(Hi?wh}@O&EVJt{wAjE(bFp%>}Z`nlBuJm^bIPHEhMSW^OWyMy^lCpR7qme>3|o
zRlyCfKU%WOfJxGsgf!lQSt^`;wf2N14bIRB0ZSg|c@t|kug_oRr-&qKKYhH1fTa1U
ze98P;v)_oTSmaspZ`OmrlY$!bs__BQ`5sXos!7L3_14~XGD5johM0zeAm`B%SaUi6u1rH)gnuH{bhE&u4g
z58cIcQT_-zxi;(|bSz*67@WuQk?1{fozBvs`%SaRJ#%yn=dQoXC{@}W_$;yFxB437
zY@*L-bbZ~WKDJ9sy}x17D8%Y|e>r=3vIOipx4zgkL(6Eu&UwR?-oWfp9&bKDqg|AD
z2vH+qAoW3-y|x;=Yj<@e2u~->_k+Ebm9T;fu1=Y?8a~sA(V8_!6!tf2&+Aq#GHA@p
zD;Q+T_b#w=NwnORd@^p-F+^U7$8DBH5U+Gqe~dlj^CvfX$q3+p>dy~jjZExpM_{6_
z4;W;FZL}rkmV0^X=QNiNU;<6Vjo|6%c||OPv#L+M&hWYMR
zl02eQ1`tIaF5N&?y_qSMPWGeoSxN|G3FWB;(lGV%m^3Rf>j1>a-$+qjG#V~!&V~d*
z*Tl7YFd0$=f=6=X(+FibxD9PUv!S&51?7>w7oJXOUi*)4ak+E>vvfdCer4r7egRRR
zt(AFUDDYW4ZOku|{A>_W%-!0+XYTGXu$OUqX37123Pn?%AkOu0enzNOG@Lb4n0D{m
zxq~qGJm}+4>`IwI?gKTp`KvhEin@5$UT^K0*V4)COkjv9$v`mG>7Z)sILf3FW=
zXs5wYzXpIdBxd#YyKoEFS|M)21cmf3?GU2V@AtPd($|G2#4~OV4NxwvUTEIrHHtpAfump-dozCpgY>b>|4b(`G@%B$tr?yQ!?d@Sl6@Wc6>{
zMOC6s{njloO9Z!^i&Bm;NT608$giV+FHK^zYq48VR-tH<$*yIW41W3ksPh?Zzg{TJ
zu&NH=xajcbI6gHV-#a(N)Q=>zwMcQp6j`I$sgd60yYFXA9*I`Y)~g!&Z68Bk<`=slil&?)m71?cw~=Vz}#ioZ|#p^+**p+PD(q%TGk=_r?0L=_p*}9
zdrn@1vXRU@{j!RUV&>eueEbRO!gn65l4)4q^dq&5_1BK|Be9AEs)t|7kMi?|bMyUA
zS3(mAyA)rd?uwHFmQBR}zjMa_antgh>U$isajMCxBvIUq@f%eaTs}_z@zmiQ<%k}C3*_L%h6`w`!Xk|;lY&e^uL=U8(9~lki
z?GFW6QXC@Z<8+t!^3$;H+}u6}Y|A|!jT}M!e$#{-eksch%Ku1_vFgu|h*s`NL4H>B
zLn>t$|EdDPtyk7VK9H=
z{FVc+EY!SY#^I83ES2=w<9?qhIz~#?y1x95)~_N6a9P>!2-7vj}j?2g5SP%`<%;Tf_By>Sq+
zfFS-<&pUEuH%{e#Yq53hd_{@=Z`1otAiPCI53W}FGfE^bj315*Fuc0^n=4MeD1ayp
zX9p2_v+uCD;mq=pqo?~gr~V+}t5jPqHK%a1YxYZXL`v~{B`^9sUY%~x?{+t;gs>HP
zY(7nUmNNNka}Su9j9vzX_{UuiwqG+EB6*QKRH$f{-$c^{xmojzjQ(XObD=NQcgay?
z4@iS|k_-2K{Bl_N@Y7_?XplQTr9{pUm^r)Q1IPzd3llC+QM^
z{@2XK<$@5`ID~*YgyT2mJKmDgrP7$C-V=lkU8jRf1}>6sriXh0Iz1TJcC5L
zxm5c4dUsHq1YaN9J|y@}ns1MGEjO*&oE1DvDV4+uAIXV-Sgl|v>RCP2>gU99x=WTT
zX~~&VAK-r09eDW+s~naL5y}77=)Vz^^T8$)D+&%baEt?C3pqxSf)jO=jK3yH3jMuk
zw5i#qRfyv1g*^QSSUg|M_r=xM)6jTh#KA>$Q06bOYlFXLr)c;|U5`YnlC|WGVfaIc
zcxqmA?O)Uu`3w5*`b~I}>gmC<3e5sA=|fXph%(}R)mK(dpo@1sOTXfxb0|90GWPC2
zKuN4TwvG40{WGkrON+gd?oKr7lhX$NcB-WWG)cUzVZgmF@|woE7#EpFIl4jK^c}gA
z(a&uuyo2r2nVY*zd&Y%N!utmz5V072Q(ej!Jc(`{9bvXCsgiS3p-%jFFA}MJuX9Xb
z6Ju`4lZk{Z;t6)VTw$PuR~4}ZoWDnebLJ7WllKx^>ZSryqp*sv5pDJ0b6%1Z`Z
zxxAZoq1IQr6h8FR^1wG!X%Q{?g`3E7(t8-!7|84~KMTmD&DHSg~A&V~yb(}qDyyC@#b>apu!8Y8a?k=X)$3mK_$
zJj^E*r@h91MnNNrIO$Z$H1WmG>0m|DQ?ew3%bW+LT5)c184?Y~Hx)zp#55{gzq<<7
z(OY?)jlBi~(SJXJ74@v%XZm;xO`}J55Qpt4m@2^03UrD>l#gAOosKGF+P6Q8L;X|?
zF=N{U(XEO9yyNbnrwB7BO;BQFHVA{lYkun|7H>54{y8l#e~%|9&Z0OHviqN5U10`Z1ScAfPTg?esf?~KW?5TR7C#I
zSzh-By3HNq)u9I4prWEES`$WPv6EaK_o1$7$g^tspczI>yJ?|Xfl-aDn!hu(aKyH<
zyr8HOJ-Mi@sZE24&C`5?$2FFkNeQ%n>4;;^=l&&lEoi8`emA^#|Ju#nYF#NTGa>wZHbp71FaG9G
zVM{?jqZ#8zk)ANp#U%Gj?*GVkFRcxoMdb#?^rZi~>QC=)&JrBU&~Y=o9k2%k?aNZC
zzp05OQ;oTuVo%hbpuC_r9KUC`0HCC**3?P#pWol=(cAn$Uss2oxYK#?Pm-XjY)LIw
zeD<5&+HSKZK$my*@9iYpvJQu^QAwHg)$~Nh3~IxUi~`fk9p9p%jfb$4a&_Byt+R9_^U<99>}#7NmrNa
z!{}FTos?{v~tG>&`q1@QbGx(E}n}=LlEq(&%Q*?OPN-_i#(Re>Ly%Ckd79ZuM&3G{3yajwW7;*^>!MhD&~l##>KHu;y>F-Ift~
zo%|#QxsXmK5mi)q!?vqaazl>FEO{U?beMNGVd$H&;4`GMJw|bd$AHT*aR5R`kSmqz
z>weDZ=~)$893u()VVuEN{_#DI(NmXC)5yBI)OygyvVWAc>226OhoG%*gb3@gXwX)4
zNp8BXc7>e|R~*o_B#di^PpJMb*S>niG4pG_m}s{~mh7kXs>%sz<OUM4X4SB8okjg)kR>Z;!75~-I_eU4>KO?5#YcS)7Yz>neLrLROH^@tdKtg
z+MfU)BzL$k&TzXU=VORcU+_|1dtq&g(o1wCGUe&NaEca(Nk=F!L4R(qslCa7S1vTapUnfslzn@%vQn|>WV)tT
zZa=q|GEo79&2G12bImcw<8K7ih({lFr+!BA{S%2njL^m?9Mlj0ASN%)zSu`;j~jsL
z_0LFrFt&UMJcojJh1gb2zDxWN`km2xuoGlZO|j8__#&Qv(l+mgy6@2Qio=nfIq
zZ!pA(o?3N(cSn9#uI|lzQinyTld{<++&yMrjSAQ8)wdBYtzAi^F}_-(Izn4NtPV3A
zJTv%p1ax$C5wTK*`Q6~42qC`4L<{M*JED$;7@N-L-4;wUw*X8lfeJQ3Y@EP|ql_PX
zpJ+reJxa^Xc;a50;ocTa+p?d2PFjrYmuFhgKdy7xuPq|KqB!N3w5?YWc)#!^F(EZe
z%M%lAYZT%}P$I$o3K;1qx1!a)DcO(qJB}8$Qt%YjJPar^IB?)?H?Yy~992s}(vxS|
zzo8JS$u3fpoGvUJ5((K}!r6y&-br2(r6DrRDGl-t!^
zA>Lr8jC;3Z3nIC>pj{G&*$*Zg@6Ot#)(Ea*o!w^xbFkJrmh{t%k##;!X?7a4OWpPU
z3v|ZF(P1*ZgY=A|gO&#fQg_=*EEj#Gc8Msu3Qn4wu&0(QyuG
z>UQi>b!}2OT-(p6Vk8!WP{Mem&pR{zuW@zO59*`g)Q15vN`cl02T#-3+k6$@EHc7Uc|#AaQo-4
zcXzXYuL&#ZMS~LEk&vk!Mk@=E;FXJk8i`|e{0j{SSN6?kzdwR0AfSymHG5#P1*0YG
z(5>#Mu^89p?0;qj3zQ+D?=+z5PjYsJGc@4j%J|%P7`su!DB-4+wHpn80D&wYUoprP
zfD%65{2Y1M3ZmI$T<8^zho;=n+Fj9z@*U4tC?~kQogIuT79>*X=l_sb;(ctAo0R$@
zhG(Pgf~dC*LB2X$3ma7pT=resyR6nqgV{UGEBh={(h!*btmZ%}XG*B$3Z@SU?zCtL
zHaT}AyNjZg@EfBoxyS7?Kr-Vgb;jKq(T$&QZdR6HVyeMB%{MGfD$5B^o}!73rnWSXN=6NG0e2cT{xMD&_5*$T
z>Hv<-X7Xa2aUEF=DBkgc>WrCl;%SEJ)&Zos;k_&>iLn*GS`rDn+DS>K;XGw3a1wL=
zCz%$~tFe;a(94d`^Dt-KSBq{onx_XC!VRKYO>ZkfX>kdZvU5-
z$xEx{6PJ$|XH3NeVk`$M*D1K$aXOAtj2n~S(yhP}s`G0$Fs<9=N~Ou{=T&v25-44+
zuc&n>7sS&1>-t)ALv*e=ZYH)yFqz}>{zmunH{JaPx5!!;B>eJPNfitj`Q&SgZIJ>c
zQROJ=-{&fOy>fX;ay<+F$ol=!VF{ceg{ma*TDr;sx^kp;KgAiAMWK%n)ldT&f>24+
z00l)i@J&{jhNCfk`83yMAB1$
z-Vmr6M8me52ZG<+hc+sE-*cMrEs(^U%JpFvp9MKiy)wCuDuf>-rixk28U27nNKe2Q
z^Kj*$2OD^X8-aIl@l&^Y3`t6Poqf+1qpJ-R@#UB5ccbz3Q{n_lHjMS|Cgg$PJKtFbA*)g655@hOJvhB-8OrD=9)+mBZn&rTP#6AkS
z6#V4zXKyw2x(1@l3Fnu!76qxentq+AN19JKYepk)NKWe=dy)O&pCsMK$3U8QD90`8
z2-lV+Q0J62!7WkO={C*%HE>_O)3JU_>g{6-BBpfkK@p@7#45+7{1UjRp@5cnQvRMM
zG@Har5v9qH{PfCwL7Hj7A~Un7BB5EirjS`kflWoZ!qhfSY5sWQYolk^(agHq*)G9f
zm7-SE5<0v{fM5=Jqr#^}Lt~y&6MzA}C~td9^Fhz&?Yo7I>?^g4@6~QxZtzJr5A0;Z
zII^Z6ZvMN4jLF28amdIz^K|ZdJ<37TZk$>l^@OemZFan8sN-Zuyg&f>V_qRJs3
z!B_=zDJ(ALZ>K_E{{y&uR-18-Ijz#k-Ggk3@eh0m$x~+HfDC+4p35dIQf}rjc$LOH
zw`%TdA%9)wMXWb~>jgv(bL0r>H6JWM$D=H-Gc-!;4V>U^ddp?FryLl^!r9J$n~@`C
zHNxr99-y4it*6|HaZ~*A#)d89hXP9j=Se1Gf@X##*3q=oCUvvP(ZwU07MfKivy7^j8?<3w8j
z=eR-6@|2g~CX?+yw=T8^-N{Z`o%|!(;ND%hu7w~nhD=++Do=J(t~F{B8`r2umYJsC
zI#-oOlN`TEvr=FCbO85y>JTG#C@@UkkWFYA5jB>gy
zIVtC`Ttcjla+V>pu-~aQZ~^>^L|DWuEw#D3pXs6O44W_=%
zdGlgV@1FQ|v`d;>ePDL2P(RHO*CZn!u(FV2%u6{MRU;!HV%cMZnWN~inMf7z{!y$$
zQ*&;90Fac40x-ZM6o$RX;M@YYSLKY=H^va4)*+gIS_))ixan$v-bxx3o@7U!0on)+
zt{}zzPXH9Tu<#cYBsW+$sKp?jBq~BI5+84UK9o{NbH=Py{6p~TrfyW25mL3mM)u^$
z6#g>0uF||(O>vQtZJnmgd7n?`W^@U(Dh1smEfAT>fzUcq>V+68c6f}In-g-s8h;CR
znQ6AzGh!Tz$d{^--8~2y~zYhM6`+k~M
z&7qWGe!2E|500}0r>fz{^L869)f#8&>5|dSk{O&&4+I|N--l=9+b#ufRyrQg6jDwf
z+s@gWD+O6(@>Jaywd16i4QpTvUyPylLem=gPLtKi0R<5z0FEJ%G3(uujG9bpKgy&E
z{}h9!&+8U$G(poyIzzmYgv+r{{piKXEuFT>uO^kjSonwRS?VMq%)!`_xV{Rzo$jT1-jttzLMtbs}S8SwHIrSz{{MJ#VB3fKZ`
zPjr5gaQ53`SF_pe6kz4Pj&L-XBLS&GbFXn^SK#)T>KaHz>8fQZ{DlTbz^O>UAiiW?
zc_Qw)i0t8QAZ$^YDbZrS0FSStcjtToCHLkwsjzUUQa+(f*Nk<{Y^gu;p9KUTc^KO9MF#LDF2FAmt|&;-1e7O_yVOLsWIb=&NqCCdL}na|C74
zUt;JuG(99ID;-e?<{URxFUCogYw5(UtQg`ANy*tF`)Sm8ig)28tbZ#q4SxEd0SM(|
z>eZS^j|5V6`IrQM;FXGX*ndZqQJTEC#)X$nEWyd1+gTiAv*{|jz_fBUl2ErM{I+5_
z(Z332Rl-4!-$-;cKBXq)lkCPjSZJp%YAv8W8a@TZmL?P`09IBAT!X)Sc4BVM`Skul
z+dqI{^hzwiM=fM42B+7A0Z#lY)U_a-Ld@@&uHZjFzcn)GC3~pd7g*0S^X?ge0n1>K*o!P773F+P4*b3p_R6dqZFy!e@sDb!u*=bt74{J
zB%2|`1b)e%x@%V(uH_m=o
zocQaJ(m&%hqFyrkKv+2GcNFPv1ClDQ#6B1I1Rp@lQdQrvHk;Kp5v%1zDLnfXJ4o3B!w!d7dh&N{zemp-stYH
zIF)`71(JP#+pHQ=$5Rs6dk(gSyz{Pv|IIQf9n=!1LuFH0wX`~1Z~=CIP0{kl-I7$`n190-APF;GMxc&Fd#1|T^nB_a#o}M%_jT5CFo4q!`rLupdMTu
zTq_FW#K08F3Q_~w?d%GDut33!K>J;xp#j){V7bHPuj~ISc)VDmHX1W*N7)hcP8K!z
zJ$QlFF#Vn(ZDL17O_U@z-(0dOitgOw0<8$c#u88OG>xR`ZW>ES)s{4xe`8!+RmD{I
ziQv4viU?GKd_zk5w=84*tA4G{;p}MLT@RkPhB2)|W&;@vLRR9aNUW>fH}I>zNVag(
zT7^$17-%#KwORI3AsS(FN2(<-xwRqLpM|z@zFMfs=VfuY#Ry^x5~Wa90xZg4pFYXD
z^*wy6e|qGJV9D1L1TM2a9amC&Q@7e#Tl9nX*(@?6jM`y1BI*1kxVod72Y6fMnuRh1
zg&|$ZuM@QI$TH^pqcE%IPp0~M?6ZM9w(b3ppl0WiJh^6*!mo5cQZq-N!)T}UF!~Fm
zA4L}fa2{n{>^?(v@0fYe-XxQ*)l`>_sd*#znWJkH4w(;DWMw!|t&B>|`T){GXb$d}qm2-&UOX0wCx47kJ8sO!S?a2OBlRd5C@PU0fCp&fB
zZCQL9>m?JBS22k7DL8L(qEoGEciAltNQ^XV?}$snsr=$|(zNv{H}W&<yNNx-T4;?N`*|$-79W_~0
zZe6US8F|0`M5B!4J8BvfQ)f4i1L`chy6&TWnoD~MC&saY$^gl|-&d#(a7xOgl*BD#
zNJ_fQ@3)a2n=Eq?@7T2c2dIoO0M^8vuBsw1UF2d+
zAyM+;$X^T%!Oi}0KbNn6_~f1c+q8t8h~ofWE-2oMH>mpDblRCW&$rv4e%ROtT_1(B
z*w+sD>24b)Uq7Q)3@S-pbmz153)s&U4fW;I{hV(*rE>M?M6=w>^C~T?thS(`VFv3a
zI2V!UjY=+F6oj_knfcVMuh$1Aj&Ry{jhlyB?sjO=p8RCX{CRPwbN}be=F@xjSmJAI
z`?5k37J1lp_N|f?U_zj{lP7H8FY@_CssrgR>Tubd7xp=Y_L?Aa?rffvE>u$kIo`*n
z%izG!RhB`JqEs>qD`-@0Ub!Yzv%5xql=@lYXmpJ;xJaqY>oYO~GA&qgN8t8KoD*_M
zDfow)m-XTtInFxXrqtX~Oxq6$d-CAzb5U3ny~$=bA>WnDn0PRIa8kPNAWl^IR
zX@MxV+!DDK1+lTdV72ZMq1L}tnX!MZ6Ke=J=RkmHzUX-%D-Qjqg&h
zG|D#bF+NDVYo%i
zB0Yt?df@_VHWB!N7#JS`B0;VVt`?Fd=rA@_vlY{q7d^oCKhzn$j-7HypB5nOiNL)8mAn
zKCU()t9&WTNbPO30akRm!FjR!9N<=c7@cUX%;D1)_d6`2Q?|;vd5)ygK+s>^Z8w3s
z8B9(_3@5{=cxOfW$Mm%qT=P3bc8!Zg3#o>+_2<;4PPA0upA5=GGyD^TDrE#7Z9;c-
zQ`_P1pmucA<$pf|50tMIItF&iJh
za2gE8DDSiCdPB&Rb3nzEal+l@3Qb-MzqY)fxS)jf#gks}-h}R;a>rVSm@m)wDd%Y0
z=+`B|mQm9AZ{9bEWT@-<=1|>C!FF6A#KS@#XtpbceC{S5tV>T~zfSUV`@}yF*pl
zud{pBt6aHzdI$t2j>vQv@5p2cF7%L0BNsAjyp{+9GbXP*HH5bM?k<_Tr$8Qr43wHm
zN;aBp^AzeSQXfRF&qOaUQ=l~7gb`a&2G)x6p@+o)CA$58e+j2MD>zW<64%v3b$Jwv
zPDLbLMFGqg#rirO$v4d}KCdXQhCyN;k5TK-(=*$mXo@bud(jEMl8Ah{*4+GP^3v{L
z&q_S?(j-R3*LU=11l8u2aZE%YM$!Bb>B7*vF{|#;Y+|i=C=cZK$F21yqkj`W#1Y)u
z%ojjf9H!91!mEB?l6kR*_v;_4MEA*i9230T&yMB6H8Wfv*cpIZie*JUU&$0|UkWYV
z{t4F$mX?U79z>~bHBctkYx;(T&c6gpZ46I$tp^(*+=W{Do=9(F>D1IQQ^#)K-FsWz
z9WAf=Of)rI74d#-!ddKXx(19;*FF^}Na`!&5;H32!_{~-{8`RtB-1_6nQ-#PTSMplV0l#b<7
z8@_o~8xuj~-2NRk&7VGiLhZCX%NAH6SM!_nog8G^aC3)IU6&Qd&=^@fmecCSEvS2o
zB<|X^CsqEUQMRj!wVK(m)5+7od?c*p=ii3V71+P$-Y}znygTa2oerpKMNKhYNT_CGPL)rbBM3k;`cC
z9ELF`)HRP>jgH03KPQ<1PZ?~Z^=QSLVnkV_BXCtctF6+l@%vMR_dVk@J~}47RWpCs
zi;cDz&cQmp#k)HQWZrC-_;oZ-G5>2%F)}uxhbU2YsT(GEg@P!oF3>!rkY2ocj$2`t)4czC)5O=k5ec
z07U8@BCqIKSBU<4*Y}Yh&RFBsetCMH5d
zO+uqI$>zo6DE99cW8=E|Uj^>uh7SMI=6d7A+Nu?iC^Qfc#>xMZJq&5E#zqYRz?HZE
z0fx~#ZVMa`XtF*Q9#wPQpenemEv(>;XZ1@N=$2a`^h!%|_u`->Q<+A4mnYv454FBbNC`WG^DeQR`+T~c0N
z08grj_h)xx6b4xeNg8LQsx298yp)slScxXAzLeskBm1lh1A(|McV9iQL%)3zGT(za>);O8-1FOC*ezySUW}%}7h2OVgg~AclCz4q*Xv?KV
zYc4Q4;xcyX=lh(e3=(0aw@Th{L;5!-VSuu|jkF7#-N1ej2KvNz^hfksZ1)q(cn^D6
zTz^7TF1sS27B@MxZy$R4GaRv}NU@`+9vo9TMFq(f=b<#D-0@q)GFdx}6i;Vpf0?Y&w
zeRC-dUF#KgGHvvbjP6LA(?`2Z4Tp{bK!jKk+a&0z7DM-Mq~ZJdO}a#<%fT59j`f^z
zQ^oTt@){8_WFmNXh_02g47R;!_HH8GMXj-1g&G68zPn}a-&&spFUs`|bG_)Vi6LJS
z6#-RvnMgFQa*Qz((4CW{UmP^U;Ix{F1KtlVTf
z(9w3GH5HpUhNNAi$fXR4Acy05ZE}dxDfbPt63662YIjuIEn7nyPcI@q6>Nrz+
zwIN0L?Y&MPBjME%nt(A6Zoj=!rfseT7R4@>zGRioO!zWbK*^*TXe#^1DB*Y($)@aoGg4xNI7T({2y
zHCy>wX%Wlt0PMqf1LjQ3JqYGbYEdplYH=oo=BeL7Vwkm$7=AE(KXtI$=YKLx|2J3g
zKTiJtLEry>p6aDiqq!I3*PvD{Fx_qQb5;eRh>t4`=bh~m^qmf=dIbr2ydBGX{!M-o
z&QpW^*lTV9F4qeeU?StwqinE9xT>-f-^~@BBowCirq@n3!TXO^@hA?MS?m&S=U8qT
zP9Rz0k?KhtY9j@B<$n%7@l^$@U}@C_OARu+xwFQu
zjE585rNq<#d`Gl)rZfbxnnSbrk=lh>!GYcdM>g4t`ZkUI`9$udu~|@%<3B)tN?GTF
zmfM($e;`hJ04!CLPH0DRI>fBC8qVG4EuruHWBBW%iL3PGW1#)yS6=Io>1ZpHaouDM
zvnWB5rqPRZ?M`GJN_eoHlHDC;(%r-}PfDfA$7n5Wj4^s~q-l)-KOK?NA6yt$XQdxM
zGdFNJs7u=K@oP~7n?+VQ>`MG15VH&8s+E8F2Nu0fy_pvJAg=y*YLh{+v&y*l9WmI_
zYzakWIejb{*C+YGXL>;CH|5i6pwXWvB^qk!nHH548TLa3Y0Tm_VaDIeeHc_iHBn{BxbqEKQmB9_!C($F46vkKJ)o^T4~V(M
zok!#LFY868E~(ILq2~N43Y6Z#27hF*R%lWwW^Xwe6~0)po5!{woC0}Qgv1fK=B+)O+k2ChuY1wyN8k`hc5J_s8EtuxigWEH#
zzIkTHcqRI`#d=F@{u<``a8C0FhCr!-@Ds6@pa76dF!wlrleCqV6w(I?>xTy)ChqrK
zyb67TOkc^v=>N@zluMFwzg%DNOg2paCEB3ZkLR^_I`Y#Dm~X4q@9at>z=u%GT-`tQ
z1b=jS+GHjUVPDNuaUdgG(AWvB`)fKfVmJ-&L%iTtUCda^bEyyGmZ6h6rD(f
zkO4nGatJvYfGE_ubz`vIC4QZ8b0e4uDUo3x<&XAAHU16=UCo|-vAD^QTAje>SPXCK
zmE|8?2;Oc!+{j*YsDH1J;i1kVaILoY>SHp+hTxa#6}_t<S5_sY9E-CJcXt(&$yO&^D>KfEX
zFHL1n^nN>x^7tVzmFf7C2}C|&b1XiTXk?=JnePYSS^y?*JFue{4!S{yuTY1GrpMHd
zfUP~HCn!H?8(5a5(_P#0Q7I$1+kr^W;_0q|`IlXp$u`izb<7KhAiu!ZCooN+MyVs8
z$xRQZv6DQGw{(6EwiH${`$+K;)J{f^y`ijvq^N(8X+(BB8O}|NhZ3eRm&zHZeCkRK
z(7gIUJE-5)9>^TkO6E0=Z9Ql0x@?E8IbT2+V!o3k{^4=p2T+#~UE=Eo;65L@ut5U0
z+L^6{Hv-tQrN!fF!A5~ayhr?lFMPprR7_9~1?HUrI
z;=A-b=;Q;>!Q~j(9#w&?+2Q*7QE5in_WZ{_?}A!u%hBMV=CbZ$89(Z{j+V`pXRQ8H
zM^R5*6FcxVjkmv)OcSsUwXF5<#d)+m0)6UfX
zkU%~`zRWxsruODd;Cm&0ff)?Y#{iMJ$Ob7b^fGi(VF5|VRk`$!h3^oUIrGs8tBD^A
zYvI`UY<^PnSPLo^X;@+5$64^f=9RY7TAg1kPTBN%Ac&)8egpC&g9%Sg2C>pA5NG#J$Z;W+R%4cC5mjr`~53Ilt44<>D;GH6**;NFcl
zA`I1?&a&E42O?yv0j3Cu_31V``A0fzG$B%7BA`CC!ef!M;
zK)|rw(!1ikYK<4%)>g)<)ri)UWlZAE#_SMlZ3<${WSw+)tnwKfzXg_XYl!`bP<5EI
zq`}XC2)@BLQ~XumGq6XlmgKQ^Ueu2&7}FykW5Hl$*V0@S`!?c(6;$AiCLHt)Vzz##
zb~5G{?;toYMvRQfTN2F^p)t%%2oC}suhpLbjTefl*k&PGF1}3Y23p=hFJHSQS8I|N0Sq^V@g(->E7Y_+(==io
zE|_T3*wZH1eI3y@W|Ifg&d)Ds)8If1ERU~-;|X|uuY{%I0$4VIy{ok}?Hyn|&vcDh
zGY!aw<7g(<9?5gpXfz$j3aX&xygQAz!}LoV%*jysS8=8k7mJ6GXI|r5pKt+$wIEd{
z0M3oe>F#96O<2iH^^+Wu(kK{krNWoDzm}3@g5~qg+IlvAbd1Xa*;8can_m0l(Qxz3
z*2ixV!uICoDkrVztPP4{tzr{nGC#yVUNzAvSI>kqq*@5m2Ce?izMC#pbsBYS{QLIe
zAAwfTn-PJ`?wkt)?ee(C09B4++UQ{dg}3jB|WGo9MW&l&V1?sCzxk>0Os`<1
z`o@N1q*bEnj=tK6oaC05nJ2g04%x$921Ul~f%`4~J2eOjcB76s0TI54bl+%q$fi^}
zS3&Gh;3_AVtA*RFiX|2yUZ`9p4+Os}wQjCi8>b*y)H6*Ye(S+8o4xZ(#<^A7S^|An
zdylns>SFXIk%(@>PWfGOd98fD
z2Ki2>Z2Vo!czWP78Aj7+q4-#e>^ys)BBXaNJ3ecFYuU
zO78CI+;n~qZY2pPsvy)=P^UHUr4%7KH*`Ou?0h2cSxI;&OOG!TX6)q4N`^m%IO8Z}
zUwF)sTv|D#E0pLEnFlQd7Ul`rF(vAcLot?$1bYSEQ|Z(TQ5|d={46~Ps$*NJHH(_x
zp<}=ei->@DUHtr5NFw@V=V?-GyqqGGkZWl4$+zSZJ)ZZ-S!KXD>_tR^n{S8`S4^tA
zxzik#ocD%sCF2bds4oAf0bp=1Jt;&{|6vwKi%nF)C%;AMq8%yH!|#5w!9UNl*VRy{`1s;Kglo!D
zii_x1F+43L@>x5qer!^oD<@0I$i$VA9Ot|vDTjhA((8(~S_tdMAA*DQMM%n3VtZbw
z9IEolUq(xA-zsX8eH%p`*9JYMfa#Qvfvd^*Zb*@jPl|x*HF^cCbkwXLX-5)L1B+D{
zb)wUtPUgjFYym=op?B0>qh$(WP5gOUMPL>vkyOEvsIuGO^Ail(^w!F3V0_5_L969g
zkmuo0y^eO0%DVcW)u((0V^G3^3MW-OOi%0B&i>HaBC?{2gv5cRvXo8)sK8bYr$41S
zVm+bL+gtJarlRQX==Kkzz44Gf8OTT!1(*+=Q$zwGw{PcL3DHTDVY2F%+FU5<95?nV
zEB%9qN#-`|J~@st9JCp)r3q{$4eWt^emiiQ?6GCqP(hLq5gwq6x5Y0Om@~;-9$P4r
z%KSWg!U1$sLLyz7Cnfr|b$n`U&9Jz%<|t898cd^z6fq>u?7-}AH!Fs;3;~F-b{2=5
z6PmCAy$KtqKvc=T+PsQoa%fkR&M!e5^czLkC!qSbN|x}n*{xpb(wn@b8618;<*q8$
zC=3;}Y-pW>=4}szUG-YK0y!ffgIf0QomvNocLX@PL1YbJj4ya8Fr!xXyY;@Q6D4u`
zOTFDnSC$7E7b`9D;TfK-#xrEMdfW>sE4-!94?r^h!{SXY&u{a#oSw1oQ$CG^c*kLR
z_^|}{pNGnO1~IdBl6i(JHg2<7YeMSwbQZE&Rh&%25#!#RQyzf`tlL74q*n2
z95I7JlX7TuHI0<3Dat>D-CSiH)%M5g&)P2%-PqSgWP>+UW_#3A&#>RaNMlJds2}S*
zNj5xp;%ts|h!)7${e<;W1Jgr~Dj}w4a-e?*_Egiq)(cbPgpMcvA&^Ste>r^euL~D;
zJCf*UFWXMe@HT_YeO@%yM^&IsmZo1xf}FUBMt#Wj78FI5udMNj`ZDe{ddn!}Yi=v9
zc<4P#azPsTGOviQaMkKn2VOY{;gkp{^84A+r1>Xz8oO}
zuE!3$@OUpo{Nz4SF2OpUgPoZ$A9hB03XiY9R~z!|Xm>4ZiqOGB|f5`)_N$G!9y6(Sp^eDl3EA*^F6dxfg{YU}bixjZC#4t6>*fDQ7>Uccz-DR|*RB6syH`Td(QlEvR}
z-a6pwBr?JGRyAm$yKKzoi@AkmvZTaEh_R1^);_RkoLxlJ-ixQ_qeI#5Z}(HCH{(EYbJ5PP?D!`0S;zPN}Qca
z^i4?&mTyU_yaG`J-SQoniCx9(2idEVg$V4^@|_OmORqktc$_NDo17SlUfhpHHQCU>}m|bbd;i&rB5C9I{8x2s9
z>PY4b`^UyVcVg?KCkCk^nTUj3QJTXIOxS0k$`2a2S$Sw-Z)kw-7UHjR{@zQI<$;l?
z@5vPO@*)!q%J8ZTGi_$ODt1j_8n6AoU&q$3$CsMU1<5m7n|04OdSpqNwAnO*;fPkn
zxZq8uiu-Iv6|rg&8^UnS0s-zC)_@s!j)l(|t$aY&($PaFP6L>nS&-hOxCg8)Yv^R<
z(f6MEeqHcRn`3leB}2dm
z5iR-qSI4ln*+mff;478XO!RNooq6ooQfvdVRjsbDuQl$~p4PmE5{@q*$yF69t956A
zRec=!mJ>|fe97w)ZJ2Ieu5sPnUy``E#gtg}d}KDh*%kk5ric5}`#r6lWh
z79HRBEe-k(L|J`-mS*QgLS&G>u7v)v6^VlhPXxvGc2owD_vlYD0x+qedB2aOn>AGh
z`I1tnUd~mtzn^`6yi$K%@5nm&q)B03Xjiq#`w0U(_Ke>;SG~FsrnIv;8<(@+7k$>#
z`bMEBl2kRa&pOFFcmQm8qc!76<4SZTn{P}LEIU=;DI~KD@YZDa7NK0Zy9`Ouo1=GL
zE~>B$5@(x9E!PUt6ijz?Q*3_Hp3afT*jQR26mw2{tBR{yNh=P)Z^Up)-W9l_>*Y5j
zkJ02Lnc~7RG4oFqURWsXc766LU;oK`@AGqf+rDZVT{*o{K&PI5urP~AIZW!)KAPkT7W`{8P_#!U*~|@%=-;XXn}g>MltaZ30=9FoA(L
zLW$m?DJyRJh75PR50?Iju=@=H{6J5uc(?5__h~VHe1U(MPCPvWU!iotu$f0ip9Oh6
z4r!*bwq4XYKqpTi@7`W=r(|Bh3m7UdW0;Ciz6wTEk0Y4(kR_p{D+8hCpD>m5Io9*s
zW?AQtG1tb1BLW=#ixU-G8C0a}ipQ&h1hJ(CU%%HsOnKd7w3F8^9~1cKNYh6GGPDYD
ztClHne3v?oH9G@DXfr@`od8GI-79+ujVUyXc^1ytCf3p=Dw0BSIQFduQZuIU&
z6y$c#s;es}3W5<FfB@ODkGG+YZ+O*ZgQPMal`L*#wRSclvXLa;C>YGlag_?>xzLn|2
z7w0qF`&LDXXQYvYDq}73(Tit6XL=*11ll5Vvai0k^zT})2&|5dE;U|8@|5`Yo5hl{PMW#SSs=6ZycWbU_bpFJ5~LU;IP_nhxV%%?|A3G;%k97CRdtgIMi-M!38St3;F_o6{F
zW|D8}guSzJ(0H$wfvz9(m!3>fkuzjloGAHqmO=bW!yh?VQq*IkjGVqgPuIEB(w0@T
zdLo&tqHw%g@np1Myfdl;^*}rh5!O3I=;->>Bl4Xtr+(7UEvLGND7NU2S#6GfHj2_C
zCOQOm{H!3%-@}+zQ~>dz`?MABd&@0X&(3j1;wb)G?!LcZSC=E6*kNXUX2mH$tAOJ0cL4z@bV^Cz}XKm=v@E0
z+SKMoT%Sqe2C`?)jVdJW%cu9#R$>pW$
zE^Qjk5u@yODDjJY&~{7S<@Ms($Zx^9)}Q*gv+qXo6kH!F>1oImhasqLEP3JN{}39U
zTPMx{W!IhHj`QNauuqya&!Q=awu{4T!h{oq<+7uLzc;d!)8`hPGY#lj%?&G0ss?Ls
zDc>9Lx0UVJagLq%-Qnivc0v_jBo@>5$*Mww6!6Y~HyFJuK90s#!*w?k!Mk^OG-w$J
z{k55biXPd|0(>|!Nv?cSGh2Wd#
z<_Ti4eg@BaCJFerCu24hTQVit5jU|CxmtJD@Ilc?pkPW>hEVR>bBx$R<%M_F2h{Vm
z?mlcMk6MV(T2Qq~=BgcXa_R(MhFM^A6$#d*2hUi@)9uTlL~4#h+NP@`O`MrM3t*!r
z<-@ny5A`uv4hf$rDl8o2?G=vo7@qzi+^gOTDv9{qr@6K{mP^Ml&+ZYhRK*wYrd@KV
zmjcZqCA9J#ZhQjl_N(uH><&|?2j>C}^(wlwbQMV(qt(%>N5??o6G#`EIXuU%8?H~^
zL`>I-*FHTJ|JCl`LN``p2xd$y3*Xmqu+xd`h<6PAvPgpaG<~nVCK6}ex9P`d$H@V+
zx8*3~ZK(qOf}~JrteIf8sI9TgvtkN@k&*{yxU0%D7iywVmFMj3Pl(fFOOyMPU=jpj
zr6bV?n~&b#g_5rYN9;SVe(aLu*?ofEyEk%oh!aVp7A0J?@5WT2514dxp8rE=?pZtA
zSR6V3)3*8giw`}%ITX(Gyofqtpl1eVd7NEA}Z9t2FzHhl+Ji#!A@{1&OYM_d5c1H#|oLvz{4QEfCMc==B
ze2kF2qK}sRMDf-GPfMu0ka}u7;s7t@`gi^RS=;|-kH4g(ip9^NO_8R}-qY=)Dcx9%Y5>`SKxGTlH49Cf#8=a2v(t&7eTq!pc(J+uwkkC*?t9@
zB}wHdhPyv~`IoMs+8~*knY|#HlfU#5^q0MkL{cntE=EBm+J!}Bsf?kpxv4UJ4?yFi
zfdv$`Yp}%8{Djs?qAKY76uP5oCu#}VY&-zIxnP>AiYyd3g0EeEm=ylLOcyp>_04zP
zLlq^0uxMLH9?y%=LrUUdtSbZ(EY*o%$-$2~xfxBe-kyGxL|#jdYT`1CodwrS{Kvm)
zKnQ+bhtgu?q^$H7*U8;)SsC&~hoiEg3EpbR@`z<6`rF!--##)W2InoPKDYZuLa#PP
zcuER^?QcTf>0FQyzV!O~MvO0%P&?T;Tw=6(UYT2E$8p8m+2ocGijY{8S6GeKdSkIf
zvNFahEbu!tOcn$~yCT$0Vui#KGCTgn8t!&_zZI}|;YYSMtSReJ@UMP-r|Olk_V7J;
zKU3RsQ@;w4%DOhDFzV~ODUfd0v08sw!Sr9MA9ZvA)?74I&rRT;!nZPcpVXBGOr6WYU6$PvLzY)4f2Bd#bj
zZ$}`E48Yr>r8z@JH;SSw^5+l{0qvZof-DKv^kgtejK@&Ak)FZGgpDC^=00>qv#{q6
z>ybHPjT)H|hOifiIEl}Aynl&Fzq!emvp+tJKWh<`*
z6M=T9``VwC$k%4qXI!JL&R*Z8Jc;*nw&_r$ey-b&2{X$45;VgciEx
zDK`3+wV#y|b?3~C`O|Lcf1h~;K)c4=(a{G#)dpS;EmR%dh#Zv$R;{J(ic#SV-8E^A
zbT#-+W>;8iB%zvQBT>F@N_5p$#UJvhfwZJbL$)ADdp0J-_%n$S7>j
z+1+_BivGV|w*M_^%aZ+%1o#9GuEFVg%!j{%A^&E}I1X1`BO+)P0q(ze%F2oaK2uCT
ztI*Raowg*a9anhV?bBZtz38v4e9(>kZrq&@yP*D}S1atL)NXP*@drD)ZaklY+m9$b
zUTl)3IOUc^4yRO4^%|q8sWRd%-)K<9
zxKdGvUlXJfnkl{vJtK(F7qrBkvh20(zY5{j{*
zjCg}Aqhy^wjdd>m67O8kNA_jl_3eSoes^Z}00(>uiy>i6MWmT)z?gYAQ~(bwzvEa{
zMze=&l@vtf>d3kzsDq4>hW#q1;aT#N7V%#+X~ULLqA_M!#b(keIs{HQFV#ZOcf>?(
zso>J1QGsvMY+5?p^%rR;_H(*fvu_qqDk_jK{~_Q=N#xlxn}bTWg%hvhk9$D
zqFo<Cm!9EE`v4#=|+f1a_XF26GKl~E1k+Bf1ffy+#hWDcukyeI!QUDnlkGw
z>Hu_}1}W>1RPpl0+9>;S6w=v3SxB(#%}-q?dY;@HT#SrMmI=sX%D5dxUNH1j*o4TU
z3XzwQia50h+>p^$)L`EpKs^g%Rw0PG`}EUXdA2llO`ZCAo_Hi
z{8@JtehvOZQ?Taba&BA}20hB=QT|9pidy`D`LJA3HRID2OB20ae6OD2*wEsjqJ57Apv-|4|ig1cbk*kiTA*FsZlL6DXgf9xspFpRHpB7DzyOR
zmv|SUj$@TKKUbCcs-W5EhQp))6(t!W$x1Bpe47i8pdJFQs0KQuOBD8-2Zw9PlHJ3(
z!0zX3dPhH!lyBKwhvnlzx$2F*Q=L+<*1xY`w~}mSEt*E#Q~J53zKL>*WsG`NB~88L
zHESol3jW!A#R3^ATF02i$CfKQ2Z?
ziWWh{)GbL@d0)5J{0y_af^xKfu9W2tJD|K46!T5IHc$<%)$LAr4pZ#`ue9GV(7q1Z
z6@;`Md)NPo){ib>Zv9b&{v<8%YRuUvMr4r33~ej&%Z*H1z-IUDdcdtDG`bF0TlWj-
zR0#Vq)h6#80cCt2gu$3aoq2n7AOhqk_9T`3M*M&qh0Qsco!XVhx-E~OksZ%qkjnNm
zjbo;23tm=gyr(u^{qtoT#(s^Ns-{B2^!*j^d@M6mjK1IQdTL*NT6pwBw%20V{MW#)
zr(I+8GXOOcJw3{7HMXExjJZ)N->fpIA=MJtPMn^c9Vrkp1#t(nQ^gl|3Xts*KDZwv
zb$sM=&eW|EQFB=CPnFNs-mbw^$uuMw@uHQijvKP9ZBM0>H#~OHshd
zqcuq;8MWWvv;xDK-S>k0Wp=xB`fX;E}}sLPT=vp0nMdG
zCBMMfW3MQ~(;qiIorOc5JX^UmjI?5?4GmYSVhMIbg*Y?g@QYe699+!&ALF-TR)J0IB{zUjXrfB*Ia7N
z{N~Re_h&IHK)+ya%t*0s#ls^KqjCa`BG0B<=7`<`-Dsy#G>;G@%M;X@aUIp;+m)S}
z??0>VJJ>EJtcPr{!bAG+fqVrE@^XK`M(S;b9pzwYd<9siF9(qUbxf
zn=Qh~t02{CZ*fU4hiq?y+?0%_Xj}9u`Ah7buS;)j@_0!=4pM6yY_VI^;0vWeUP1Y^
zd3NCWcs;sQbSVmobaqqDXp<~%apjr$kZX^r(9;67;BbEz)&~>Q^*DQu4?l9-e(Y?5
z*dF5nG6_?Q+36ZEO51-3QrD|bY%N(FKDsX>H-h*%{b)BZw1kZEPbhC4f?@R74(ZoN
z6Xvg|cS-txYM(L-2XzlFGJ8yJ$21#D0Y7gCK%E{uv&%C;L~MZ@4|$RseQw&nxH{6^
zV|_h~=TdA=RGSm6=iKrFx48?0bK~<^9nRrOatTz$riNsH@xXA!z8BBW9qS{f?F}YtuHsK3P3uzC
zZSvb4J}Qy!Z*chDkBxwsiM8I6k`*?wEPV`+YVr6YGUo2xzE1Dl7T!*bh!-ATC2q`%
zUwX_~3d2I9Z^^!~ZSViKIrvi~D6Bg`FqKuJx$CawDKQ(GyQfrb*EV9+;6mZ4oWg&t
zI|ob=)`9Q>tMnrNpmi#4QM>hBig7*!H8?jJoq>Fvm#+NB@TCz6WGY_UvKy>5VCKpZ
zOI$DeLBICYO%E57)_%?Z$Z>MxkCeqD6G|q~2^7Fi7XSw99HpxD__syS8l{iBB(%m?
z*40$h6DB2x%Ywo5h#)XFe|WK+&W#G8d2nBT>C2?9ctrcEp$yLA?Z}WqA*d7!ZeY^6
z7XaPV`48f(WqqtYKR>y;3({6v&0L=OoL`P0s<#uYd`rbp91Csd$+o6(95QF(FTuMN
z@Sc&Y!`qn*iniQW%Om+Y;;4s&knJFuQHXRVeDuz5cXAlSg0#%^fMFwu+kUZhbS7VWhYa{;{HA%WOXG@^$?~B(;QA-
zqgud4T4Vl5<3
zuUQU-rX5WIhomN$Q_nut3@LR^-df4C5Sjd;=FfbG4m#_O
z76PND3^TDXEoK=ce!4!>nUdM{F^XiBHWv`(iLmcaT_HU!QUlpg)*8gJnuYJ)-NaWj
z4@JSAfsjC|^B)TbPru758oR+Q4hag9Rn-j_cvxCab-N|8VNjts&-sNQsBw?|uOHef
z^@|!`2I_nDnE$L#jR%yo7@c%L>6X#yTeB0K98!=NOy2P`1d2RGP)+dP=QZP{c0#AT
z#9RerkbRn)|9Y;)Ukg3v
z{$$mu)bK>_;`-5%<6MVA?#qk-t;V8>ja)0i6!EtDA3{3nS0UXj6F@vES7h2C!fhCB>pj
ze9{UnfOvmgBh8`Il5uRH12Nw!nNHYe
zkUhMSi#oB9yk6RPaz4L%XW7&gyQ)LIr%iAsAdD8hq@XoF3wT7mmHpdwLBHkK+kUr|
z$8MS}(bp3`l(R#a&1lxJsS)_@P00JxV2p2b+(nb{CA-huz4X0`*;@G;(GFW&Cakr`
zsx9mD#Sj|;zR?BSHp#I?!E&iK8$GXRhPR-#xdqpa)J}~EvYR6PCXNbW0|>}BJi*I@
zUBfIxLi0Rug45g7yT(=DRy#lGXuPzfO))zeC1Q~h3``-5)DOInCk1I??4IW`{a@#J
zluP?$RFMOSfTd(;u~yD);^b-$CX(*=_Hrk-SPMSh5#OnG%5GE;AjRsO9fXS3RbKl%njSCQp_vV!UbQSCA0W{Pq}-
z_)%iYVcobue~H}7Pyn5+9!P*UWQZ_OopyIq2#LgT@V7iwTj7*U&5kN->Z|fk;S?=?
zhhtwp+6tgoA*r10?;jlA*??}-cM82HTY^cI654@)UkG=@k`Ak7Fti7ApWq8xx}
zzf|HWqXh=lPRY04o0=MV>5hQG8EMo+tcV)ddv=bONu+v-z3Kcn+S;61sv&KN^CO01
zE2Zf%62~CiGv(T;Nu!qa9{uAj}4qpPc*N{C?SH)76S)-0-@)>}5I=OCmYdW5;
z$EQ+b;5TyK-EGUF6JOg5B&0{Z>(hfxa#9$`XUcTj3I8?cB?9gg(KquZw{v-JA&h>L36NxU6*3iS5;QB;h@
z51{Ul@Yd9or(_?8zOKtvN^PHh`BL^6bbhd6AxSt8CCs9wuXi>r+MW06_P532FO5-^u%B$1pgp;tccRrUFP9v8
zIbrKL-X4&XYnNdk2*%MWMox{!-s(X9b`|O+g==^{997#_iG#@nZdzfLR4*;-x!oRp
z)>1oHqGEWgymQevG_n5>KG$~O#{FIdpG(x|t{R|?9v)d0=Nj)O8u64?*iCw(~q
z&;baDlM_l71F)Y`V5PCIKS@bPWTTXg3s57R)KoHAb*FU6Mbo~ex(;Wt)^8MGcsM4*(K{qaV+&RYra6-)oA9;Pr{qe_y<4+n5Rc6guo-!NLZlRQ%*3$Hs-k=bz$
zH!cgvog$=Gl^G!k$U*m$X0Z?u+Iv&gLBBW5)=8gDR!d8&rxt78_Z}LGD!bnsu!gC=
zpB65DPsS>r{OPI_!u72;skfp|^j^N%>s+~ZA^EB5)5YAvNfNnCwc-4*;Tikqn+XFA
zX
  1. B1~b5E)>ya&{n|j4Th%xpM!UHr~cw*9~{i8u70jo#hShqI8Igi{R>(|6BfT|
zsDM3PA<ePdl-Q?f5Xiy{MbN38s7v
zQvqI2j+8)kx#-iTr>H`H2B9@RyDMTl67qbC@kL-plOeLPFo@xppR%;%c`!VUWK`q=
zMaLF>TBuo=q|eO4fWZc$4M=5LlNeve{bB>6>6)OMi=}pZi-XmPh&|Wy-O_mRSXxE-
zQY~Hs*+c&jK3;+4iQXsC(7(}VyR7q4ip-L6W1s!O{|G%?$%woktvr#N#hq8aLtZ=sb^6Mdme}I+qGMP&livDS42JR%BG~*7!p*_5~}TWLgJ_
zr28qY+z^d_2+3ThfPRmI2U}!qLlY#I@Gzt9&nPx!wfx_v6;sAkEIPuCRdP+6uPI3!
zoF}{WJPtjaKpd<@Tx$dLqqi{df?#l^qT`f1WlSfrX
zG)$sieHMKj_=^fE3jvfWmQNi>O)Px&x|0yHo@8yi1rTlY!e`wJ2{ueWR{9d9DuKax
zH41>CECS;EUMhRg-XA(oFt^j&GjR8(F5g|m%y84t`7uqhEL=N#6Tr6<+P;KCW^e-CK%{~wH^K|d#GR&~_J#F*^YhJB
z>x7TM^l!s&rm#@K$K1%_;?un1T{s&a5t%DBd8yc;(;C6D2ocA_UVUY&sojWrrr@^?
zqV`-`!}!4r?i7JZM|h1A%i^m=`2}nH$q)SL3Big=FqqUAnY~r3e+UYhc&U4@o7CIK
zCmgMx%Dnl4rd@9drgszJTA(p>m83h#p=I&y{`Ep5pQx>an96>-y~9IwsAAhHZFRNO
zsvX>41_r4lgwo9qU}H)f$;I}clEkIGj{S5v2>9L3yZND~$-j~5PVe)+dPY$VoDzrG
z7g0*E0JI|s^+h|vLwkf%O*UF08;d
z4s!d>`V;VgQ?3(>a=OHXya71+E&Q7{Po3~P-C9EI_}x;F7lir52u==9&WG2NxhGeG
zp2)1Kk6DV!N1`i7B#;yC4h-*a8aNAgOckq^I~wjuHqIJX&y7qrDE8~m1v>P|0{KX2
zlk91Bxe7uAe0aw`ZzO%BQq(aW_LKP3OLAi`oK5I2xk9I3oicJltU%1Ea8-AdCZ@-^3FeBy*R9#e
zpO>eWXCE5N+a$+DLu2n!l>Q+I`MMZSTr+7?2}ppJ#1q`R{&Y8kU9K<~=!7*s@`ktA
z(8JppDYx{cpH0s$#UGSoba&}N*$Z!4H*f@uO(cau0ioa&B~3S_gV%3j$Z>6oKc3F^
z@^|zu&IzCsz?!CS2;$6uIUU50_|
z3=zi+KPheb4lE;m%
z>>eeJHrcAK?|#$7@)XP%VL4HM7LGRwu>X^}+D@HS{oCPtB%_BNOa)ap+qhU0gp@_(
zZ||l)zy7U=bd%uszS;NBQDR&D&ujh8-F@5U!DLVN2U7|QGIHTcE^kCiF|4x@%C&l|
zGEfvk-eY$otD6YB5r;ZzoR`h2;WI>)@Rn88Yteu?a1+NupJ8W&GUz7heCv;Q
zeQ)sA)yv)PuYq&qWTDtf5-h=Ry|Khljb1i!`1Qr6fvJG$J?bZ8Ds(yFK|ma1HRg>TBg0
z>RMxMgj2V|rl0>6i84QW7a2>j0e&lfogwNu=U`{W)yZfd!6_?+u1T7gm7Ao0wmTRA
zyd^Zzx7SquIoE|6DQh@(lN4C?v=ET>J@EFUPfk9MiYU|pHTkP<$y+tg=f}L4Uu$(D
zdg&aUvJTCHf+{XyP=R@}Xi2)Fbm~voh~K;egJu%)+x=x-tS*24J-Me=-ESiQ{SK2E
zsvY;m-rDUcHfEm9kEKLgUS}@SnJ&457!7Xpj{DQP_=$*W)zyv78BrOoR>DZgVP$nM
zO^~4~!B1Nz?48?3vhDa_ves8g@Gm69sViOONMzW{VQTfeIHcX4qJ6G1qZK^`qM&m#qAFq|Co~V1-ir~z!Ui;<}9vA
z!7udVet==ipO0yyaVIvwBTUJXwfws+Q-=t^%onADIK#WxyhtZ`r`zaijd@vxyH>L9
zF^>0XL6ED_DZ1hyIdtjP*3=+cRTPTwbqT4NSywlOXrV~(yT83s^ZyWL6|ZiO%!U?e
zVwrcbDBQ!!gcmInq<*Co=$KwMQ2p3(LJ&nXeXk-WphC@;_K^2U)fs#&)V}Z%GS+(8
zjvIcTd^z?WSFnN`ML*)f8VGQ`fCB+)Vg`Vf)BZTdgI=LSS4VTtq7RDwlDNRmOkOPP+;gZB9_vL;RLZJ+DGw{ZdOx3JMKLjz
z{AcN+$BgsXWq;e^M}={EG5Y}CiNcX`@<4@GL!pL0X+Y39$`<3+jI;k47rRN3yeAbF
zYw_<`yUcJ%fyW1C8eZZLNXxTdtZn_%_CD)6<*odLxSzXpoZ&RfbPFb$D5a83@c04D
z{ytBm+rE-_G)Mrz!!X=q!g-ag)~L
z$1kJR^sV|O`K&O2YPj4GXeujcVxzQ#!_jFT@#l2^a7BnI23k7&cDvCTqXpMBWxpdp
zN!1^sCdw!EPMJ-v_kbi3qoiN&u1j@(>C9W@IDZ)ztN$aBAaDFOg^nR`SELNlL5Je4
zEQ0?8mBQ1cC+_UU+U5u0G9*196;1XYwK@p}I#_2FqOAZ}d9xy5BcT`c2+SjUpyFW9;+oG>KQ
zNjbKioUP+kzuMo2aDdKEvsn~-bwCn+0{zruiu=VfIS~4u8SJ#~P4;Kw9|G3Lwl|7-
zk=Qq|U5GQk=7iW^S^E!dM7oKL6P5@4bqru2GNs(lHLeHSKXcQ3Bbea+Zj+3;9g*_b
z{y#Yd7;j`$m6Vpl#S+w2ohi1@T>kb^Jozh7R#P$~yZDX{mJgcmYiW)ml!~HxN|Co)
z@Xjy#+8;uB-9=~;_}{UnZn+8wFjrQ}G1MFl^IM%5CDr6lnFbo9c^mZ}(0^>=d9%YB
zCLU}8^?*hN?|uDwSs;n<7k3OdB!`D$trAt2p}57Tc%K{Wyv31c()>#
zS;Oix%
zwdYA^3omZODOX)(7{&m-qwN*8R|Z~W6mNlur{PK*USUAZMjr(~XXL24vJQmEKwbm1uAMZOJm+
zJgh>_Xz(M4mL7)@W#m!FK6XOFj0awLECp7S6&lfO@Oyl
zVqw)$6(H4jv2tI!d7%>z-(tz&Z4Px|e^bIdMs4k$1!k{2`jaBk>s$Y(w_p{Av(HlD
z{@)qEU**NoVcG;4voadWWSO=qn3*gjCg9?l;Nk#kYj;;xU?O?Pk#aWoUl5g?AJNqn
z6Qz*?D;{`lne$@X&gVFhwR3+AmhML-m&`htGOxBrtaq)etxp7}E1cmj*p;2{ynrCM
ztm4&LN)MXgFH_Yb-%R2dP@e`Dc}H|xg=5Y&NAwNs=jEL_leAH83TWE(bIldMIirl?c}V1>80v}J##1h)|*f^T=%7y-P0
z(|=@#h$da#p4=EeO~%IgYD~9RScm5b=Lyz+?*WOc&gQyVu*zq(nv5!cdO6aYEeW4G
zy|yQi#*PPv`f~l%4@q_t_pi343VMs3$447gpHG@znwr>^H?p0UeA!4R8V#h1IWBv1
zOm{K#NS94YFTz1w1)&gr!mC#9
z*vs!U^F`c)8lR3kX4QH#hKG$5x8HZg!gP}P@^9Tv;7|_ZUll$Hc;RQV9l9U+WF;I&
z*z4x}i^`QXEbZjfrpl7f6`58+R9DiE0t&twA$+D%U%nWf)e7Gf)=gSAOS#KueA1bl
zre)7SbS0&bTZ-Py*8hCO;*1nF)`ewY@kS{Dhy>3KNaa)YYCd>T*$T?P(dgCP%riJC
zbO`_Xm|be`NJN6&H~{9aCVV@sv80rh2u(f~e0+l7zzU-~3>k#O;CwNr{3!|Di1EX!
z*L6St=R1dXhSbv3sM0KZR7oAE;OKy&ujSZrCfc&P%oX+bnz8HCbp!+in72um#GiWa
z|B!*`0{#~OB0=508kALRyt)3>4A{(|JYPj6V#6o`#f{>uKae=*k7vBOFNeCuo=%Lv
z%A@=p6>mweZH8nHGWlvlSw{^!#2JDl)iJ>|x=o3R
zWdTn=OS0eDP2TypSloRz#Eu`#g)E}Jq<=gfpG#?EQ0fIfW}Rn;X=Sf^xZ=k|IcAyC
zS&#TE5VLxS{Idb=nR$nAQT{H?Gx-Gs586QfK=ov_m5+54e$	j~j@^#8}fUZ9}OZ
zTC`bD^dVy-#SlN65B5IDZg(BV_2?!sL=OZce$&MMf3u~jZxnUy)O}C-snd=lJ421E
zimn_@6cf`*u8t{U8nhdMsaETA{XL-EZ0_#uB!%y!bt1IXc>SF_8lpHVfPP&JRolX!
zFM_JCq%cJFD^M$Gm5#bfiBYZ@WCWNb^(=nU8G|M;d4}RRh<6>N|GS@-ZT$ll=Phd8VFZrHt#I
zRuQ5G1&cQq`uzappTHi}N3}~kBv8az+|U8)f7Mg+>86%Am86ltMHN3G(6LFB2oez{
zuLLonZCAODHCz7xtVs7N4YqUS2B$K*f{VnnAUe2k
z7$ndRlAGiuRtVZgCW3&_{(L^(oM^U{W<;ac&n!(PiKm7&c18Sac5OO`=D_ppWn=wI
z+hu!uO}#Gk;N0A?p+ChGC6?l0O{;$k=bSrfqXj1KkuA;4i9FeL;r=MB1zv(0Nk$=a$Zr?dp
z{{V8`r@WH-NOv1)7flgS*G~ckXb_!M6d;2`$D?+$iDE@e!ocvzHTn9}`Sc=IIizT<3UV11hJA
z16Gxck_MB+3ThRh;n9EY;~6>_74;`SpG7NrnGHMSY9%sN)#RR>DRv?Vkqm|XU#!e6
zWAqEhys-ACmX~|xsAt@*>9<*0_|dBj$s?T_srY;_N`i6;C38d3cI3?!feL6OU=OVZ
zY4#o`)O3QU$4NAhP2=)N)cItBGI=d7I$aKKZDP^eo&e|GN$*jp`Xz=X3YNF%zl14!
zH`1VR?qmby$Dvmua?JNK!FceOo>pH1I&msV@eO>2N`s7QK3y$3%MK^neRh0pACywT
zA`kP^)K4Bp7L6nWgouj+^!E#UZM<7AwEoR*my)f#5!u9BS?xkr5}4C3@EZ3EOC)an$Y5e*QL*2P|(oDK$VWM=?83oIoWN@xyWz<+x
zIW-+*zbo>l-OBvW$`-Mrjr#8JTM$7y*TrOv40pD;XiBJJ$AXF;t=suubd65s>n-`2
zmKhC3Q*7pG>1PoajUl6~$Wzp5lmOvjnxvARl?qw45C^}O@9!e#+3x+@opXNe^h)p2cllcj0!IgVFQ%ajaA;np|vF8+5-xvti2UrMpdKx%X=
zX_0_6r~#`+_=>G)038=UkzKo4w0=r&&9##YO}D!*&j
z)KRGrO9YVxl$)!PLA=fF2Q=^g({gVta~9Z=eO|-OHvUNy|5weX0(S(d{lHqsx>QFKyX+COoPK6YY*~Mb>ll%((ewX)pr
zu5Lb+D3QQe_aY1cvM@3ls5;rc-m=fxE#H~BU)t_h+wQj+E{}StnG5Jx+^>X^9Gw9F
z07%n?0P5I29#P|I)(jN5@#mzH2?Npr6-2ZbR3ccO;-%=@(n9EFTVCH^copv8z1;5B
zSf?c=s37D9`BR3Wky?&4=ta+-@9tN&w@_|!YIuPNK_ZF316tItsm&=`^|8N4Y`ue9
zO^^HRb_YKS!UbkNND>;V$_balkfM0PQ`9n5(@60$`n@hexc89%0CVqWcTL-Qhk3tg
zBeRN<5=o|&I19uUBnngW>zrQW^E6wP<-;W^%t!ja%h%6i`Ja43ulU*CJ?qo2NhEbW
zGrjWJ&6itI6+*V)>5bPb?oFLjL#15JM!RDp0!4jDC8CveDF@$S<6`1DD*8`pP!x?^
zHL*DXMQcOn!>A#b!ZKTuO7U8;0D9wrBxB2mA1&v^O&H0!V#~HG>
zU2;@{Y2F+ybaBe60d^8pMFIs-M^k%
zzi0S9&WGGb#LT5lIQ}iau}N5=byDE)m6h>Cg!gtLpODg`7t73l^_O)|BDaSwY
zd@ImqdDTz$WDl7i;N#ZOpUBFu8`oVy+P@pl=gj7x3D^>Lp3tVutrS%B)H~A`413a#
z4HY=oPHJ}+Bk$&fvqsM>j~G&94Igu+$s#G=t;KDNgqVK|uAKCelnSd_^j2!Ikv{-2wFUvZ`N
z{g%^dF5$XdBvuHgQ#~kG%m98Wk0D%f$5Xu
zJI>74no3I$9I?9;D#5)V!d-zP`hOL>Q~+sHp57Vzb3=|jPX63m
z?hxGDxC{@iD~~ap5JwPjM<10__GEafs*22P&_uQL@-<4-nZI%~Az&-$T~q~nf;~~O
z(J=aeUF&pG*TkNQh6nQp|9>zx7}~$j@?%0
zLJ9${f}VkxgH`$Yjdo}NOH+wC;{_@#mTb-8Wm+Q9n
zW){~#V^W;>Hwr(oxKXHKTs&m2L4SIErS|^--!58*YvyJ)+{=T4OXU^;m|Yidk^^+IX0(SsH4}l|eKsaL-St
z%M6~GK9@av$*n&Xg7r0*C
zb7!@@%{MCZjfjr;0`SU}Yiqb`K|QpDccJ`fX(TP#DuMwjG%XB@Sloi7sbgo-K??Tz
zskbBgdl8YS9)W#e%4R7r(LG*HqAFnQTn5o3v$Grc>8WF5B)9wk0*~rF+8A0=5+$ua
zm)d&qH0eKq-&I+RpMx8SmK;PgMOBlltEmEJ@V2@-eGnl>ji+5}4x-=MV|54H*A@vJ
zTBVd3h#_b(o+mzZ!9SOuUJX-0()F_yuUY&`O4fSU)fDl(ep-1UJR+oWi6D}iR5me@
zb#8v9{>w$IA};}A0wIx15Ps1@2=(h=nuF)jeciQ{lzYE0^z&CyPZ;|$UFAtu8R;WR
zgr^d76&&FD0^9n7etn2-6&}tVL0L|ISUCL0pHw_guSnnk76QP3z9;-iKGpTEz3<(7
zuY31i>EmzaD|Y^K7nsM&A*rRTrv$nEscGe!IO-|t1;A(}iHJYb>Ny_Sxq&Wi=7LdF
zWk0r01sHYAbI1+RDSEUHTwWmn#$;shsGjXmVR`fGUgvOF0!%V_CBcp9VYnD07
zUfeI!^X$u)?e8M9ChoOxJi)2WSbT`5RdOqii9X_`YAwT^q;)9N`D)ZI;ITCZ^AyLKjG~x*0If29kP0k2kjr_fkOGoY
z$NMPmOcDY8L-XvmOIhQ|N{>;W_IkZR={>l&%vAnb91{uZY|+b<9MjVh3b3Ld@{v%7
z=_mQLKTSk?e%{En9$`iF^FME(`E{!F6LZNVu_UuI63ooRvokT}nV6DE!7djjK4?f(EMvT>XdUc{J(N)}=XDzjB
z#ST&-rd@4AUk%M3Mio50JD<}kExeI8t~2$xu_h@Z$TctgS5+dNFnhmR>)!p>x|u`%
zdH(?F4)n6<)1{5?1JLf>!2m8*@|9I^mL-|std;5zmin7BF#iBy?7r8&
z2+8A0AGBku9z7(>E1TNSa6=9p5%em<)EIsUH};?@Q;r>Lu7+>>zS3l;$kNcL1u7=4
znHm{*3{q8hFFb<4fG*(uJ=~~aLORz_V(rW>>nn+-s9bv){0m1}su#>k2kp;H&I%f5
zJjV->AaAH9-rMj1?yh>>eqAH`V-Jwrc)ESU9ja@#+!H}nABYNyoIH{&j_1az(#?!@
z1ZoAm7a!U8=z>Dp0HUAdf7$;44_+p{7V^p$S!D@p>LdlX_0)K`wLNR4CKqXLJ;4#E
z#bV`}myorSymXY3GJ|x6YKB2G8(3%rU-Ry)>X>7mz0~2=n~Oh++_ZU03XDY%!e%0o
z>O?}Krm8wACZ(sNhg*43su2m6`USYTKHayy7I!xHG0~kE5HmyML8r^6E|bKyxsIGr
z{{Vu$7JPQo#^GUyB`7sByf;^>WpNmhL315CsEr(hZbiqlOTF^{0CEQ2p&=)NidWLD
z#EyaSK@@aw32JdYcQ#szV2?j9BUWmDV01%w
z%(hO=4ZPG}HlZ~i(Z)XBobgm9j)!)^|P@ED#*o)AM};M^(XA7pFt@%-Le?i#;+{3;6*=~{{RO{dKIVABT5`~
zJk|lKBcg@g-0E0_s@@pQ{(zPv>V1p$o>8;d-|ByOUEJM~mU#-(*GOI!{l2{r-fq+G
z1H&<*KsYEB`zlWp{JK}rW3e?5=&V2_RUv91)lW6g7P>J)m;4ZYveEB$lgQS)i27pW
zgk>@en*Jk$eQs(-_ws{
z+bf&xuTxmM#N-W6rE1jkZB-TfDdp+b*#n}+`HXNMZ`niCWW{Zjs0t_}T?1e4OEaaf
zZ&EaxO}`hvv$f|AX1TX@x82ypa7rp5A7cd>#SWZ<@*||e!p~4|02A}6{{RW;Ta2G<
z$0Em8%@i=Mq$R0cF?>#H%zLD2)Kt081CR|WDl^i}Osl0u
z2T5(uyfOa(c*~0k1vG1=1Z$<3*mB49G5-K~_bT%3h1KTYWL_qFmR?49)IFJ$oqFE?s93@ZXr)s$Lvv7Kd^L)UCP=q
z*!qvl{QNp@#=PIfD5Mg#{K~C!Wh;Bx&Gh)w8nM_d6@)JFkdiP-FPOT}-5@
zCW9I)=14Uh47Lr)t{&>y;64_R*fpW81qb+g9~!!)7Bdh-Chfewf_JSiOHogBV)F{gNuBP22V`bJZY(T
z8%Q$M$n?;Yf7^ywo;e&_=v-W1`g@W&pK!IXvX<`X{{V|yhGGX6ERLEN=0pBmP6t^*
z?T0J1_3qDj>O}WfYZ4#ex6;B!1J$WOeE=SP3SD7I7!;Ov2RC|h&f_WL)jVPs?
zB$8+ep;
zJ*z9sBbM6U_v$Vd;G;=2kUPgBL@m_}fHIe0NgI6s03x;8{m1dow=!72wU2XcYHjIL
zm%>LK4J?a6Rkrs0t5Ep4B$lvY#a#sd0A;0^8CBLxbAO$Wzpvc$e%kr-lAzpTjM?n_
zPTH#f09KMS+gsjW+eb8$1dK^o8WA^!ibRT4Lmuvde&Ta}<+yJf*FM-h&&r(9Jll=D
zpHA?`Cb-Zpt&%1rMAp;BRZ+=43qi&cuP0opYoLlCCJSH3;-UfVaeUwGZWY>A8wxmEV
z@_*zVdl(k7xYr%6&Dli-^d=T&jyTJg(+_E(sq0h>o(U^Emj%2+UYexs`aFn|(S)sz
zTD)xVFhqze6wuCjyKqVOI&br)-?8so6a)llg~U2oxG~Ld4Z^Tvla^t?Q#9)!V7PsQ
zk~u~#a-5+s6fqXE5e7Yy#0*)#wE5p$L
z0II!SPTA}HeqU^3^IJ1IS}Ld`sHLRIC`N&T>6VaWDM*$YnpuM(XN+<=;NRb2e(zQr
zQ~Q5zyJXRu*w_g|(}+<*DUi9r;7?dVy)=UQLm)IK75jYp*YElFd~@D1b;ic|bx*f4
zm3e-or*66JJds7n(bjdgVtJ}IPEx+M6EjT)+TAr0(7VWV!$px%zyN#5ZMVmUN4K83
z9AKP^k1G7fLF?2F7m5JXnLlTr`TqcKTC8q=iamR=x9;iNl5Q>8xUqPAqzZ%_W)Yrz
zhBqIWuZ+n{jow3+lEelkVEuhTfW2jo0VX2lfG8BJpEhwR_MGHJ4G8#V#bFMNR-ZC%m=Y#JB?l-*K
zH#_qWCG%%8TwL3%z9qcMo(f%By?hIVh%s2pt|Ub@j#ZI30oQB&jOAUM-M&WHdHZ9x
zjUl)OIpGc+t*+ysxVC@A*u*q!Ko1kf;$rP1r22npTowwTfqq)V
zpLn`$cTLh(l6_TUl5106pC9#c>oB=n+QhIi(h3@ke}b6L?5{+de(xV$R!8qINi44*
zsFr8FB$K!6LdVHhX5mUMlr{u?54jJQ_C`J&1|#(VQhQM1*$SmsT7`7K>{H32Slw9uroI0Fr{~zt%avo&B)^yaqMB1aWMKV*old(i
zC~h~labH~8Qa3qpzislXcgu)a>A_bJWRGkfo^8WuAc*rKqN<
zP(HR*VZ&T|mwmn8`InHl_&I};{{T+tE}0OmE$$+%Og9UKc+Zipv~Kvyu&-L@Z(%l%
zdbwifl6lLQf!T>NMLOw8?B}Hx=FU;@%Dfm7W0h+hs>*Or_pWO{hpc#LOhXYgj~+ib
zut;aBQOcz8P7HY5fM4ucgMoA;eL9Wpw>|RjxZ60tu^tBX3Msm>XAJi2aaC#$8U{ZE
zzz!i~3iv!o`^A0Qy~g{sb49+*&JhdFR=#Ha+q*)fTHdOPn4gc+U&g=NS~;m7sRKz7
z)B<^>mZDausFq5J+>-N7?If*!ZK;VNf52D|>F!GaD58oFmss`G>~3cxhIyvP)Cf$`
zgqa>Sni&-irDlptrnEP+eLyGOB#JqJ4z;Haw_0>$_QqnalOK<&o|=lQAvQi1YRTz>
zOAOM*p45Npf)R430cjWATy-iU=w+{fZ)LlT
zq{8;m%ce&ZBymuEKHeQzdY+9Y;@tI=@lexanhH6p=_0SGsiL>-H0M&S9D!9-$U!Xj
z)p2iN>n*-18d)a{=&V!*^QZ9-@^I=Gbd66eO(V542+&7KR$W0^j8WV-D)u(y
zTiMlw(a8!zxRDn>KbZM{gQnSYUXcFQ^-jI--FvSP2(bW<$UKAo!29=G>yY=ZtPfuI
z?zh*y`>%BaDT>Et=qAQxX=ALSp2eektHmPzii&BM_bIAlKc&=z_%|GTva=x!riZN&
zUW;z;>s+SXSu63aHfIR8XO$zqM;@Q_-%k)CSX6(zqZ)tJ1@^u<)=C40{$H0>r$MM7
zfI$QvK?dND>InM#f30;khy3&Z0Ms5w{{VIMKK<9a|J0;y-?O)OWmjY*!*18XR$%FJ
z6_wRh^O|ftnCL1bm@RCykUe5mD}t~X!)m!!7U$Vt)JJ5Zu`>o>09=}%O5&cqT9xPw
z%i}wGj-4^lRa536l_W>W;l(=EXetq-sHv$+NzgL>mk1fZs6N)L(Kbn^+t#RfbR7Qx
zqy6Xhveh=;$Ox%*v5HrS)R4dDC8nfl+G)5KB}LeC&%5}s)D2>%t#s>0)w{PLj-tpx
z4HRo#2&r01+NYqdrb6x_GsQGljz{t8P!6C7`g_ryFiO5v^q@|?B?wqX#
zKE675DPf*7HbpWIV-qe$d4v$hJg7k6vOgf3pJ^^<0c#vZfaB%X!0BOA@%sm}6z+^3
zFlBNP$t6uqHbR~{$Z-*{)++Y)Dse3`Lkkncf@z~u=r$GzqugHLnC4v(90OiICO<#O
zb!{}yOfy#f!4pj>oJ{JNAn=R2e{wOH6s76Mu3BmP2;AO*dSHlMopxqGt++V^I*kdKC2lVAAE
zWE1KE=&nz3b_Fzw8<{>~LjM5Ao2Pmnw}`qmeoASO5M+*$54T4Alrv0TQGeN9MHimsb}+Eo=;wivfv3+(;Qro(tX>*|
zgU3mYrh7B%NvEJ&2F~qA}SUL3zjS>%^@Yt
z2&n{+eL4vy{eQY&MAy<87!q>EfB}#P0r?JwOs*DsZM!8}n4UDI1hV-IlIk9^0b8kC
z^Uu(G#>;Jz>-YVx+jQv@nS#{Tp0ysJ@D%ej=*nC8;)+>3HY6!D$3b6++lCxln}5Fg
z`JnkTrjVpUa5oHa9dM=nQ``{%*M=G%avP^!oGu+uqZZ_p8@Lv90kHhvkMZ_qJ-OU1zh8Eau#O@lsDHL`!{n>ONvo(SL
z01JM7nppCd>v-vJZ?>IBf|?J`g1@$%G~11`;bhd`AWu+c$<;V2B{n}&1;5)~{{Zd%
z$~yfVC;ckWdbdfW+@&~)H2ls_?BUaICz44&)SI97=iIex
zX=`Mj9i6g7o{A~__@CR-2_=$as#yykpZclSM1>b7!~OUB&$agU*B6rrEut?e@*YFf
zo&bE$R06y@Q0O5PYV2$nwE+P?JSukOxmTT#WRDKa(zeypPx(I6)%cJ
zcP$;h+Bl<6s(Ql}C-J5=H$Z?6m3N>oL3`Lo+g8bS+DJ0
z%>?_7l#YZ3W8WE>|ZS0ZNAn20C%suoY`r&6TfU%d%f&ch@CewNe_hU8iGm)W@@nkNYq$_
z1b{PTVUXvt3lxE0D!FR+hewG7P(_Stf>mzCWHpxxH~?SYWBt{ZZd}|KnIK}12QXYt
zsz1>lSZ(Gm%-yOZ7K}k7@fu{;t{r{eHq`#J@7qP|i5Gr_ppX;@1Z*WBD6MNGw^S)m
zfob;jeqZpOZvCg}51KnGueU}*hL2->gd3Nn_e~y4_m!Ybx_iLi?+N6KZTiP%-)(j{uBX~qr_=^?n%>0S+*`{fynWH!2u$|Z
zlS446i5^H8%Az;Ofyg&or`?xxvAY)^zV=z9z7a&GMOlxAE|Jj)qAU@+G}#fAB(9o~
zem^%iF5vj<@z;Fe@)ea*ZMW>2{hODof{a$ixV`$7co-qfLmI_ZPPCKbyc16xF0jbx
zbm(A5%qPG8+|SP+c|KI#wtJgHePs$XLR*B7#kt$1Gl=7P2w5a*>Jhs|8AW9h0yOj_
z`lcqE3C>|B-8>iKH$H*PT{!n7rz|S
z&$e?c8&GS>ZUmu(5<@2A8_NWNa05dmsJNmx4MM8Z-!uCIvwMfJ?p&F_U;gZyT-MOu
zNSJ}+m>6W0FkU2e0g*}&9MYsys_6Mi)|)>Wy2o<$wH0kwO!p2$3%WKwLTXHXHY*QP
zy0LiO)sMpDXrZf~Y*l2wN#dR)j8jw9M=WT}svPBKzB?A#W4UY_{{ST2B%FtRWg=P?
zsF8k^t@i)R1)nK9Om8@f>1$8ct3|e
z@DlQSy}IsXy^5+BjY>SLg2T?dYQLKFZ_b|INx8x=EmIOMtsYcA6&UfUtpVY~9Um@?
z`9zyuwoSE{o#^SSq(*`&yTkTbZ2>}<-o+xxMw&~DuaGGpQ|?pcKYO{;+x3fc<=w@K
zMgS{ZGI`{2E5!NJ6dhug`|T~n*AEL@ks&^r2mIbcqc_;yk=A|J)t!^moq-K5M`QNZ
z!`$6@yD1%quM@ekbI`p+W0EUz6>Sw|J6np1bR+5SA~w(O2s<98+fdy}&HM9zEwjx8C&F`+>@Qxz09r>-)a`CUT>Uax1b)5uqZny3me1
zI*m78R=?S=?)JNsBH|J_`KbV@`x#CTK%5y^0{+Hx?krSLY
z=I%vm`gB6}GZ8|#JqtJu$4b$}>f+5~Vnx*b2sZqJJ*iH3u}Xm%uR(psXqf8l=wQNb
zigeLuTm45r)BW$;wKv<|X@2LUj)8g2+}yqa!1rDgniukJ49DQ|-$^87{VmmWS?)TAawJUN4bcGB+D%{RAoKv|
zJKM`7@TjeZWM_q`q@ZJvrzlFYNj+4FPXx-}lu`%d-U03Y-swo>Itm=uT@e2OwNO}(
zP)&V$`Yo~c+*=T`cxIo7IPlx%0)kyg$RyB=j2?n){{U;&uoX?=$8uCx=PH)6R#FM^
z#F7}`Lw;e*A6(3vEGT63!7oPw0tYKR(BHJg;z(1W2Q{htQ1uv=!s?JrC?T
zYT*lt^zZqcROja1AgcGab0D=4`6HyIm=GYN4IGgt9173)5XS!iQ+2)lh+x=u
z>t>EkCFUM&kWczvAK~cI*OWH9OU1vnXG^cgP#GlktY@`P%vU+%(mGtF3=ZacrFrgr
zflEz0wXf@MQ7mn1lk8V*vF^8t8G^}{1HqbzwDlFHKEcqiFbWU~DBuSH{z21CUUr_Y
z38^H;#ZyaAzB!_;eR0UYP)bE>GB+wi0<10wKE`~zv+mrry4ml$X8!iuwYjQ1E9=Eu
zUL6==(UhwU5zuFyc{h~3$mLDvkvaF5pxrq`aF0ax(^iI=Nn&x|1;kC?1;j;ViNGpp
zP(qxh9!d}1h_uvX*s&$0rzi0}fV?OBGJmjZ9!_v_AGlT==Loc&Qs0>)TD&9Slnyf6
z*Cl+~KaM}?B@bUcUwa?9-!}c)wItOyNp8#LTKo#v@gAJgWWkpUV<`oJmO`+_<#K&;$jt8~vNzH#_;z-(#
zICZn><%aKlzjbcA_pY`LdiTF|zP<0=d#=GCf(ZnD2>$>c5BmZ=`>hdPf_>lB
z*!;szr$)&-j%%Ss=gy~g?LsvPY2sm*!Zfgfgs~SO7*bR
z=^5L(ycXD~q|P_4JjpQ2NsEpqVU&zBIe3+p8b3STI{ax9r0NF)^zz3i^Ms
z)|#Cc43}$UrV>Yq#!}T}@7Is$)(uY1)2azlqc?UWhi!J{E2i#Z6+hw-%%r@|D5TnF_q@w_9qJ$`~
zsmZ61JsMs}VzrgP?mfR|tXKAQ1pWZIu>Sxb>F#w)8yJ|pRxqo4kbj$?zyM>fdsHx?
zMig)Z0DXgi>wSCQfg>RG?zsAGsMrtcYzO-vd;Q%H)GScg#`kCVP!m!!N)Pzgr>9PM
zlG8wysp(VJ2dM*u7ykfiH@Eu%!9KF09^h(
zoo$;H-r^Qh`c|LDN5%e-dHtui?driv`#Ols&Te@>KnK&Gz#hl8meyNEvv_n%bQ+zT
zi3^fg`TU0uAUbhSu?T{!a5@xlkwcHg$0Kt#hh`_}1+_aL@E5ndbKE4Cb={{n(Gv5_
zbT1Yq+q75LBDLZ64u_VO(#haj!5Mk9fkE;aK7bE0a0g2*y+c<=x3W3m;n2
zH)RVX1NNYGzLOdvuAj~BN3`3FDR;P9ZBHhvT~WbbRV)?T>@3Vj%AHCZCf1uxlMFT6
z)t!f#@=@oc3Vo)hq~6cOwq~}nd1XafdUlzWn@i0!?g?0j_J|iY9^}t+cQdnXJ8sWt
zbVDK1K>q-I!UC%OgwmtVl;PBm?atnAFR%AUBSbOiA2yRFpJI>a(%%QEsuDH3#<>*=
zrMb|We1_nDpaK5?U;I6S?=5H8`45`6Njx~OXC{_;auV67exKaD^oH
zfb}&2w#>vqNxE@)24*l%EcC8QD-fq>JFK?z6cs|m+o&p!PX7SYJ*GCI?d9@kabz;z7;6%y
zhwe6Z#oF|g$xfjpQ?bn-_hgq6}u0Vm!2KWnw#`^{q&jIdf<
zZa4J?jE73Nnm9<*3}affXv8{)0G3@1)@SaU4$*gaxoeh51=BRrGZXRLL{m;d)_4(6
zr@oEl(5dnFyfNFd9sdCF<8$Nb>2_~vRpcqU>KW_&IL^54&9g^cxweK+4K;O5Y*?y2
z*57}Io)}nD7MeMkLirV6lVxp#mG@hH$C)&3Q`n^PNi=>eEi6v4tn#X=JP)Fgwc;t2
zVws|tOArJ>pLtJh=H>mr+uwXScIlg#xpfsc7gVg9hR<-(CCqbZRq1g$YUpI8sHmf!maPp+P*qdR&{xn+S4nAUn;%^hq=>=P5N&njxo>ia2Eq8BUVGimQceFm)iQ1XO(S)S-Rt^`*oyNodI>ywR-4Q?pV^t0JTBmM@?5#6z-Z?DrxJf#a%msG`%#^wKYNoKSdypKAyo6at-yAjU+J@
zQ}{|9B!5T^L+v>GdXG1cX`{La$Fnpa3DU~L>>x1t`g9`FchkWPNiI%l-V}^IKmsO_
z)ql@Q1m-oB)D1)s2{#;j4NL9NcVd>IK_-KZK0_6!r|jd=0QRp?Q1GigC`lg|t#aqZ6Z!Z(*YgQKU}JN5<9=gDpHG_!4uz|19PmTkXPJhU?ldTC~i{S)3~
zebYA?`F4Hh+kM9ybkY-qLL+xB;aqo5HmAc8XW91qC;
zeK{X4_+gdeSmR+sQK^XFLGsU@czJYK`!=?t10)r=m!R9YyuDP?PX;!#AtbS6x(HtB_oMS5a`c2k~!l9k(uS(hV?ehBV=jv5)ds_8z)D8YDwZ
zNUFYo0san}q})SM6!f`7^az_WF%XsxJ?grsMX3)xpj>
zZI>ZgQVLBwvJ-I{S~S1o(ts0h@h8}h*J#@;NPAl~5>lFvbAHyZ@~2y=HTCNn{VnZl
zA2NEnSBF^xfGl|<@I9RE+_$@Knq-FGMX~&Hc7iKIq*ARBiQ3@1Iyy0nLky+lyI|t`bR8^!3ozMn~Qe6?zZyn_w2FmB?wmd
zR$PC^U(|4JE9ut_KJ~wH-N)JyxO!FQQ%DJ#p@GsKMMbhN2spVs`#!g}`gEac
z$Z228)2cDy(tF$8Z?9h5o&frj@7;T$?`Bb&4ZA=LD+JZbYwB#8C6vn}no~O;TQqdV
zbb@RF;9Q?%ca9{ULJd`LKg&%`#P)iiE1j4J+l15sC0q
z#!9BYQ6!rS`&(fFjSQ_#PBBj*{&VNmN%HdP`>m*FijyaikQAq^k_vidHv(fzt){3|
zKUG$f#t-C!&mP&_T}wq6_=QRQ_z&{+vCySSW|&6C!gXkG{TavYpYbA4zRIMiT|)m_by3rNtJL0j~N$F&+rG}zRcb>9>b{3wFqMn{jA6O9rOEfZ1Nl__K2a`?ZrxG=;-kTDC9_mycz0j?-H-0m8#VXRQl(p3Q
zeE8~@ji*@Mf~`z1AEKg|xv?rPhxGx+ww^PBI^B96DRP)itBw0=D(JFR#Y@!5MH>dF
zswdYRlFFdPO#=-o8vFu4=h=J4^T-T{LIc460IP}Wz=6Y$K*sIfINV5j?5T>LO1F|~
ze0>rbYwP8?*81jlmQWnorjeF4{+wIcjA#`=UL92QTK698%kEjE`rE046wb?`s_GBbo%p}$01s|~PPNeGu<9uHj?P?G;E6Jk(@*wQsX6`DdQv8!s`8^O
zvDJOE4Ke~4l{fmIY)S}V$Y|YcaHmE80B~XIFd4j_BBgB9by5gi2GKnnq{~MN2$HA1!gm^}7Mj_zQah^UJD7Wl^0EpUh*Ut)ODy*A*Y&JuElfV+5z7Vit7$RahHb
z*M$qGxKrGvxVsdJyF0>oE
zG45fTWM~CQ0EakLbB<-I44gR1E+I0=~0~;;5RPc
z!WE&-6i8c#TR)-xTYnjYMg40t!w@sq`I;pUh{gf+5nTF>2AK(+Wc!C9%*M?=|npG>~L#R?_9L!XVwH>s
z6p1)R)e?cE9-jb&jVU9H8(w3NH*x*v?tkV8XgnhuN;{);BIm{TzIDVQNlXi8Ie!P6
zG~y97rYH3XisJzs^JMD);(5v{-(9L8MFy>I_j`s8<;7_SfGpFBeSiWAlo|^_?vDbF
zEZP(}z0Of#b|Z16!RKOp)E3W^mk{~c7v`n(ta&y92(&GSC;|J?*7M+$XbN=#q;^#K
zhx45W&IMqR0MV%Sv-RVkqqf#=bCPHlja^IX2G^wL>|CFRvu}r+bx)KluGYmq<1L8^
zLS$@?$Lha+M5uw?i={PLg#ZP9scoMy^0Y!C=h1QgzCv*C)K(~##|7HqUOh
zbfAiP&ig0KRA)ZIdm5=;9T7S6464jF5F0R6NhmB-L?X&M{ygyGqJyx}nGHTPPFuQ^R0y
zte<%!J1Tp{_P|J7Ci@i)XxdTx_jre6a9yPp*!xS2QMQBlI-9DqdnF=MVb}It$dG(g{X!}B@U&1v?{sEnKY>xx}#O^0t)uJZo)@G~c+#{hCTmnr4
zal&#k&en>xm+Sh@yEZ(@*JLsz6!bW0jBr)#q&0Kh7hP(|RO_N15$pO_tz)rb<7?cD
z*YPD^vIE-J@zk1TOgeA*{6Rpq1aB>cshF`c@WMRmNkWJc4y{MZY7KZpEfCTeuvc&t
z=#}Gspv)S1S)+AiP?F6)L`#%mXyr?r^S8aVqiTq}z|^mCxN0wAg2T7%FyLpN5X;Sr
z>9NDH=pgdjAHUWs-P0cGC24$Rf_bOIE!M+effl%&WLC#(9k=3XM64VWaoVBvno_M
zJg+KMnD~L#Bb+U!++2wDaYJ9Rx
z9+5%(B)hDxHNDcOWK_GL*!0_XK6i1-IpbSxFe9h@9{XWFul@viG`|9dtpxQS%&I;F
z2AB_+W|Pwi#9_Gc9sQho7KP(uctO0vVOTDo^&U`mITlgAOe*m5!gKRswP(DvIs(tA
zhwEO*qz{RcriOw8<|i5;6!hZi@ALgue^B*F=`dtzkES4-(QcJR;?Z>51x&r+Yxv}x
zblA}D6*++#t7ys0Vx
zOZh!oi-*Sc(j8AFnzVZI`D(r<4Syn~Bw53A3eyX>T~50=k7k4n!CjQ`{8~?J%ecZ7
z+c8C9$I>ltytMi5#1UlVOxA@f@{LbVGr6&_os^hV2i~xPw)tJ2wygMKyy?EOe|3HT
z(kxH6+LiG+7^)_s<3xJcnT)C1^{m@G7ROL`A
z^E4Dr2`|S)x+lp5E+@cUY7py(u0$ntJeefVv$CwX3YvsH&7~hUttT*?0MYiqYp|C%CcJ%)dJm(G04yhD3M`Toks
z_Um;6A=^yvE91_f(k+4WvT$oavlfA9Ba`VNZh?VZcC`2hwUip!%(8C-7YDE=744Bx
zq!q`s26*W8`tvgE2$oFG;}@SeTr_ICrF_6`u7DE`NjE^o*1|+7lfv38omxCWfBaYh
zs&puy3fTunZf@4RgTyv45v&~I&7M-;T_VYnK*}v&wdiOu4G`t0qfrY^1}@%2`9+dc
zlgcCLSsEMvHlUp7rfxW@s?sa4KVZO&X%Q``pPg8E5}H?_@kzbZ&W|nr$Bt2=JPipG
zF@aXt8FDFPZH{L}F}lVv#IkV~p^N{9E7=-G$UhO#YTj%9rCb6_I#QqwvYxpI{qbYz
z0JB@rv3Kk*>b-qFb&VSv!lNDIK}O(Wd(Hh1kTAh5HuybpV@eVOLw-~vDAAL&3nYZb
zJ)0n%t7xeW=V#*Co~q9pKq6(9S4Si^MCdP6E~sVstoK&)ZZT_kw%o#4?rW%U`}`J8
zM$dK>!H67f6D+krADNt8`CBc4R7Z2V@=OBhO!lwkB@jA6CdhpO%3*(qWk;Ax)9UMm
zdHoP7HL4urI#U;4LQzDiVBB>gK7ZMnw~8xU`f0o@0sjIPX1@46LQ)Q=vUes}*
z(iH8H{Jnh&52TSzbt6$BO>JFu8e&?@QW+YFbvT~Zg7Y?(4L6s7c7k7^(OtA^oBU*Z
z6*u@jzH)x5q>~7*Bhe~*BEl6xf^KfEf2j^OdRoO?7Ddu<(#Vx*bX?R61?kz$lyN4%
z+<+4Z_ZM{Yx^FjK*gU4=X_SKEJ1z=M0kU6Io`8=x23Md$U!7pO((DjbmIp>ns-fr|
z!8+p~ka6fjVau0{w)csP5`kAf5STAum^MB6*hw-4XJW#fW$y5@vLzDVghs%pPm3m5
zA;fI{hZdh{&RyBU(90A3&Dh=fpV3nqWVuQz@dw{{1UF=4QETK)Y$M7)Uv}*BM~@m(
z`PmC|3oB&0%tmQ}IelXQ)JZ?o_Xx1|7kP~M-j7sg&_DWaC&LAVN%x@>_%);fA9)6k
zxIVh;q7Z71?63M(g_w!eatX8H&WP$XF6oRf=qxHM=)f#abki$Yhkr1Ia(6xuc`|@R
z9a=hF%#-)P#-;-+A{HBE5_$Ft{LMn_+ZAQrf=ZzP4`HzGiVhmG!MqfX-(-wV7Pp1q
zpRJz2U+8#k;x^#|Rb2S@+XPT(JXy+4oX%Wb3&aM=?5UIhw>GCuH*L;B04?mfnC=Xk>fqy#d*qqW4Up%5kFcPZB
z5<3_N7Y*yosB7~J?U8n5%TTrDrh5smoCRd?-GVnG$sIr`yAK3?1b2WJDh>*l;OLk5
z-v3sX>S+H15TRYa#=@eXH8U`6SRM$oUIQ=avYv7`KcY7-ccr-hMN_CKORfT@OHJ%b
z4~;UcAT2)u`LxtcPZku;F?e;9-4h2yWeS3Tk(R!HfZNIC5|7y}4p^YulU!?_rL6VW
z*c#6owk0+t_hCE_u5Id0c`&Snn?ZeFF*&?CrznKb~B$%&MBpS?kJC_%`#7-
zPoXkVXM*C4>sM8g;f~AGB{)kdu#*K8)#RCmFgER%k*e-gm6R_77D@|+>@&GvZ^zT0
zGI~8#SNe|Py;e6*Kwo}nmp}N>&yUefIlCP)7d96@CuOm!L>^*sKf$YENo6JR*Km
zuIb+r0sczS5XE9WjgJxGJ(4%I^-?ud1RdU&6Yagq!-@d9{A)_VmR>>k441UX<2+Y}
zp&eeib7%72f0)&}01Rnow4?Jzny&$X9qdP{mDTkDr$(^u@;nVmTLZu4ZC%-@hUbY!
zm+#;=>zYXhIWa8aOI=-=5z;TbMQry>
z>frIe6$A+1sQ=NH!T#6WXw@UZ2=5X)5A`e(
zbg?kpu&N2ee$C+A&IxnuqL9$Rlw)!1Nkw=Z#>XLDZCr=E;j78Smr+axBS
zO8Ca`(B`o`HbbVo;o_}`;9f{Civmm-(ALVYH;krrFx0C!wmQNr`w^}eTEzwEz}pb1
z6p3VLrlod+FO9_-?_1pGF<_ihW|KIJPyR%%lEiIE{wZto&`aurxljvq9Q1y0hudBL
z(-{;k1K<@XqYqBzzU`af>aGmex}q^-R3^K$D~Z3b?wFoU)LM-2
zRT%H$x5(I(aZAUR)3Up<>BY)psEs|1j7+CQ;-INL4JO}$9Bnwj)WD#hCi$-?@$W!R
zZsoRex>Cb~%|EuWn5tYWs5Qegd?cT@h_J#!`vNQqY1J8aOikBo1WwzfT@Kakz)p2S
z9uCJb_5VgI=!m`qybg&rlvglKzphB;vo#K$VarkOt-)ep{ES?KbX;c6$`}*!l~W&l
zHtD2vbwf2AX?1m~n7!(xk%1QWpuoAhtsFxYrV&qm26V9j-}5HF|K2XnDE-2z&bbSlU$NfiNNi!dcsC`SxBPYuX)V_?tf`A4tX7g6@^1O
zEawb#xuQ+VpCuHRxabm*+lqc1R*5-0p0A$|I6h!gOfCI7giC{C-tS1wZlO|k;VJfG
z)s4$oeBg(eO{*g9x43-VNX=Si4L+!!SNONZEsO9`x+np
z8^PR{382LH*4e%)E1veBq|c7_H<^c)yi3aXJ+ivGk=32T}c2R(26bgmFeN~GqvF+Y%r<_08W6i1$f=G^4cAr44
zXbp<|6N=RTe&|_S+vF!@669B$f~Zn{@GWubscX@c588fjwTVAh*TQX#FO2sS^6B9l^edkKBj~f#Z%qlu_11tC`F*cK@jrn`Bny
zlXdhsY*!Hvb`{j_T58+V4Oapc9t4SFMVJQKN2Nsx1v_$n9&t#=i)h+G9YxHsQY#um=4|9R~(k)GgN
z4@qk=92L=M)f*1RbU&Hn5g2Pq`%d%=5hkK9t?oYuaT%}o3|4@(b`d(pa
z?*%Z|xd|l
zAej^Q!pJD>37H@r2rGYaM$3-o4=+5_5S;xu=@e8(IR$)OUJtd^*b3Hp?|U~bf{w2;
zyM!C7V4t!JGgBM0G#Rw->k(1yU*2yQAvYph*JZ&|*-CV-HZD@2t|}Y=b?%0BFa0A-
z*r6%@d5>a~JKF`H{k^Fykl!{DuJ#L@JbMgTvMlQ*t|`_$x#++T^l=FS`)>ii`?~bU
zB&=A1ic#KuDUfPu(FWr~v8LB$sz~VxQ~>`C!M)X`C7id
zZ?(MV?#=iKS%5C1DJ|=1l%cf(%kVngWrMGJA$F=(_}5m;MF6Z0bm*3uPo!x5F(l9S
zrSqFYK=08+iNO4LpJn}4bL1|4)B;7%QGv5fZK_d$GcReAr*T@a09}xJ`BT*X1CCWf
zJ4!ii2yzG&4e!eLECY1f3IqH^$vy=0P?5;bv=bF5fB&I~U&uqQ%UahI_Jp4@4E|z>
z7f|Ir^zMoNx%l1Z)i_FvM&)W-Rf6d7&A@0Zq744;>%Cc&nq496D#}j_L)=ZVhi=p2rcm_N0@Cq+V>u-qa}CR49m0NmX;bC0hKQ^4iu`&
z#6A4lj`a7;Sv+_oBr3o`-}!QJzEZ?JC=4h8Y557)^Cr!CH4X~SZoLAZmM#J{p!
zAFQ7n>0-k3Hod!YV~^8>`#{9fd2N4fd0oadu1`d04M0ghHW+6(D&EM%SjGw8hh7f77sH&Q_(lEXf=4A{1n?>V;rC
zjh7Ur$>WyQVAIaU^3Zc7+ndSgoYKv=AvVjyH79>It0Iu0!=9Y9!{Ed
zrw~=GO;p)vveOGIeNRt^E-`pUXGlHVu~OW{5x_SWGSTCa)l238#^WVnpY;?rvJ9A7
zGHevrO$-Co{@E2
zM3J{9g;!va-0l_XAgTmE+8Ue{aj&!gt%^)wvxZ(V=<@6JR!2QQ>=C~Fs(tyReP}AH
z%sp_06Xem1hoxYcu**Lq%|s>f<9Jy8J_U?7u=mU+#`jHr&G97R+`(N|m6rGrDDSf$z_5Q-
zxV4~y&t-YKJR&<^QIy{Kt(co#1W!zNr_4-=aeakfRYZad1CCB^AXF?b!J}+*!V9`|
zjm(1NN57|T7ieRrX!g9$E*1bMI^6s^t-AS_V$Lo#sM*czd4lx*_tQdrgVFyK_!d;-
zgAJbsD&s6h3Pku(6+pmPP-eYr7=y`SJ(%=M&sD@cVbh%bqss>iH#ey0U-F?2iW%6v
z42`xGIiHvcmRDs9{e-|RX&jOVn#n)+(bAnraX3wvFG^+#)fq+&L1n|x8vh`ZIpz;1
zNqc%_`PdoQy51gm?%ImhIWRe?J7ka^99pixASy%$pZ(Usys@mCH#qm|CyObzzH)cU
z6#{^E8l8GkL&b@x%)T0RR^^O|D375l!jja~JL1&bbBc5~=UIS%zR0h4m%qHDmKA
z>mlN2(Es0pa#=9WEUzd?6SfpLdxd-k3wCxlCSfl&*J`}zMM)n78XzxJA<CpL;~eKIF}6cj{W<=x`+coH)Ke?K=>zwT|fz9Eg#
ziL0tmtJg(QN>&(SAzCSr>jN2Wp0~BXPdQ57QC+|`@fB;8?0F!=2#VBU9la%KSw18O
zrLdB6IHAE@hZ6V^0`;`$l5SHT`GpPf@u`^~+rB}R6F)2?HwqHJMw{4|pd$$ra#vJI
z5VKP5Ct;2?G{>3l%Hc2ELbDhnE_UYys=goE*5GL`>S$<4Lp=4*l(ML!cfxCKV{l4wJC;7gEw@F}!
zJsE`Vhm%07xomf!sG$&7VQfq_^&ddES2zS_z)ffft_i@_n)yhBji|GSAQ}_3^ufOW1UJDBBR0MC<($}t
za{@HUy1_rAOC$t<8acPQttDU4xJeJNVxcF$_WMWqOfkzzubE4hn>3B2Ref97Sm}~3MYY?C^
z+9z{$i8e{e8Cp?~oY1^Jdo1tg*ZqF7i5;FBU7D?LS)9)Jn~$eC@ZGHEiSp#i^v=I-
zI$Z%C{@>@<>4>CH>NY?Bv?)uQP15HG5JP$-MK8d6>}M)rRlW
ztVDXME324e*=Mkmo85`erO6sZpe9WVYAuyQks%myW8ev|lonsp?w?WT03~RJq~>lx
z589EFeTA>neBZB}tFkYgzE{-N;G!oWk#)CjNIB=b8@)Lw+g%={!!G;Y*iebt)D!K=
z+?6{)VUNEZ2dY~$fv^IY&bI%HK7Qc4F*cSbUzx(A)@d~9w`X7M%=%@DQA&Yf#p#b%
zdS~>#tXVk7`?BJ3+h&1If4$36T?R%S8umv-Iz2B)sU2FLk`$$Sim{hgVNf*jbipR<
z=Fr=cyY8xa@`Vh!`V(#Cq*q&QxZ(g(Gjccj+Ap2SMqQmEKh=E#SS!6Eqabs?(r(N@_ZrpY~;`*
zz+}Z_DQ4t|=bqQeIDC9tXjIdIiMun!dHHLe>(bFWLUIlXq7y1V8>ZGQzs$Z=1*2xd
zcNqQO<*_H|DQMMsBC9nf(7tWE`ucGK6(QNUTJSN$4$C1fzf6-Y
zUp+ERk6oE3GaY8BG_i=do%`zZcFt+{$5WT&Xt1C&9fNCDvTJ<@ESe8R`^=Bptpwb%
zRO{o9jqC;Pz+)d{`!84xa+Nf+(qL=C_j6~+G8x$0tIlTMjHK&?`yO0KyzVD_lUZ7w
zU%HVQ8;9Sv#!!+2S!zCizv4$A?n4_VOK|gMbrDIKeET^@K5*II2A#4X2V!GH66ynW
zwF)oN`KaI3m)ujEM;ILfy5sb2**wXLPgOq7Hck&w1H(MJ>QgUrGuj!!Y0PI=FW97<91xx??wp*~e
z%Ql1d4f8$i8*<2bS3C#XvKWX!bCCZZpYX^svyY!&nD|eGvznk2ls8Curx6^ej;2z^
zLHQ%1NFU>(j&{`TNpH50;Y6;Ghu;D8FIDLVHMfpiyb7OIf;4^sWlwN|SoB3|3w{d$
zK0gjZRVggdH3y|<2w9^8;0@OZ67?eZ3$<^2uX;}Qsl`YX4%hlX6G2^(Uv}SEw6ajE
zv3UU*?rXdHB6jIyvB_3T7jE^LMq#xmw4IO6!Bn)EvQehi1jx^}^RMX4`Qbl+zCX3S
z7QH>iU&-TltUu-`v=asL&T{-R)tEAuuU{qf;l$CZCX%3mxwAd@7bsC(pXK*HGrn!x
zQiei`Kj^Mzb7qMW|7nS@%^9R9EJHw-d(AZ$F9@Yp+J*+%FMJ2Z?xc(Lm^I&=ac#M<
z7jftizQkg$`*A}o9hG&-o%U*#?HA2PmRO
zfw~@V4YPCMt1ho_^T}$3;^UR%X>V-{6ww7cfdOm2HF~kI6`2z9%a2#U75Q*gc~%5u
zJYgasPwI-+T$zn&@6TIgRSmGTL^W>B@DdeiAi?qL(LoJHf8JMUZa2b}?;jTVSZ1?b
zv%3e@Ps;{~ST}T2WI-JzI8%5ENcq*+VX-dqFh^D7@!DpdU>|vsN;1p1_{Tn~U2<_2
zPo1|hTb|5PT4^-g;wtP+nr4d|R*VWjC<+Au#ln0Ro0_5ZfTrvlL&rI*;hoUIAs7uw9C9#FRR;pHGN_`Pw7+(v=#ys|Qx1hqsn
zoXhW32$B|Xe$oB2?`qhj4>N}Oxu#X}a
zp0>7D@oO#})!zR3f}A!hYbBktv(=dkDjM=^P?UI{FV5vo(*}F)^kK2R^GN?-qU7iK
zzgSCD!P(I}X*(Zt9A0xO>Pln<_~AjVwI1^1YCH=0V!nG>?p{VqGlDScEnT2%kgxif
zn^6p^wWf;=W@%-y($8l)MucxndieVT`A^(@p?gdf)DdbQXb1TIG9jaVqkcD$P0nYZ
zW1DgzCa|UoMZ0yq(p`V#bw`{!DhVbpz$gjhlD4F}F_DMlKC)N2+QF;IkrSAgO%jaN
zP28PU))bUmJmGTvK`cts!9_|W6siU}xIOG$<;5hZ_j+(P+fRMB_ivOWX#K~6v({Yv
zDyyVAxcJS$Ubh@mcQ;b(-Cw=IKl9FY8N}>(Wtb1=%olxw|9!x>7(k98>-iyxtMNQx
z_op(V5paG$U7cRmY*V|7Yp{kfttgAaz`%!#+tl<`>Q({NWw3F<+3F9ztn+F1cOKqI
zOBX^U!4$VZur_e0Q%oWa|){W%J{SBTZqfW1OjC9BFB$`||Y??t(M?v0!DE4bPXHynQ!
zqAJg~cf%UsvtSrSUuqf8yy+6bN9u4*K1HTIxxl%R($}2kDG&$gEW0#mDO&71HyJUk
z=$IL4kXM_1gYz*G)B)3}ZFk<J4&K2v*_>O-aLpWFOP;0q#x`
zq%bR?#U&o8srEA7TMjh0;En>;?kH#oxI(48`|pk99TwtDX8ktz+<^4YuvyREN2Bq31PTu#jm__dDbq
zrchy@s~$KK-p*mbDt7PpT^$%k{rtbV{|_OJ=T}E$q}N6_HiS-!;l-}Yud3j)gj-n)
zus>ZhTKSaBH7OMjAQBLnmqX({Ug_Z4rEo6Mk6BGb1>C%l2L?3Upgr^ySP8VQZ4~6W
z?H89jC@JD*d{VmY(^ckGs8Lnrt8a8HuE@|ze3~`Vx@9w3qQTkC6G_lKeu)>KsG0T5
zaj9MP+jngm<%}OJv_9+7LQj^dlqT$bCfMJ6Q;f(gTU%~eL7T2z<7cCb&Y_LNs4BZS
zKQjET+s0O*lTyLyNQitU3K>e(3!$<#%0JOOH*NVlyC+Dx-$XF0s(w65$Im@KzA)OX
z`nY}QM5B$t{s998b7p0owR5b{PCgW^p+M;2{@fhnxUjBWfc^VYdEt1s>y5Flmy!0;
za>Ou+rkmUkP_MWl2TW)D*bxa2bz5j^{wf#sjix?I>&Vv;B8O~ZocdD82?G<
z_a-7R@bs&Xsx!^IwW|0ZVbuH74ysDrxc>l1(#0@IwdjB0*(cLz_smZkkZU$k%}y@-
z)Y`GFRbGe()EewRryDJUUPD2YqrSPjmygP=apjY`K@39Bd{2;z#8c840UGMt2v(R0
zIJ08F{FKY{de?yB&90>8$Qqbk9Lz?cH30SZj}ubPDBc#dZtrYPYR!~L)()!#hDh?&
zHbn>9vB*iB+}^sDg_KOU_CtGmGbj^RO;(Zz71731Uw(WYZ-n6j-B3>)rP>1cnfN;6
zV2&TyvpAt)_s@0b@9unDJTSicYNOhqtU#FLU{5Ur!_F13(8$Z$2rnkS;kg8ae;2dvI9vp+
z3FZiqikI_eWwlg}elsvE32kALgqKyvNz((ex*6;y{tz?96brJwJE1|~f~BXCp)g4v
zqNQ^~f#bFJ0RiWm5AAD$f4m}15`EP8cxiq-bv$xiz#qX0s<;|x$~eqI02N=MJQU4w
zH<_NY{@kX-8Vk(F+7SW0*LQaf*+JY)D6BJyP^Nz-bp
zlGeqSO}JHlm0kC=>=T#x{Dg29#Nzt&WoqlJf-mO>$SWx`w4q-@W0b{n@rCPJReysASHk4{sL4ck=|1LT^T-8FymjoyfXOm-)K$1+acLn_Z2zRu
z^74~O{`8NF*XHB|CA6e?Y%|koY+x?7xf#;A^CqO!eEGlo`ll$$i_I0prX!hTABM}D
z$El)44)%hGeD1AlP#g#;3_&L7+sS;`-5H=9&h^
zUt3p+^^ZpDP#uab8PDz#6Sl87t`)Ah#afu+ktb1#Y);DONk&JfvdDAw1!Z5iI~>v+
zyjUmCpYBgK>qK=Hp}{%+NM}Prl1e(Hb26T4aUKS{baqN=@DoJVMj!As5`7Be;>)LY
z+nvjN4&m6Y-GJm^N_ITD5Y`b@dF^<7S?(!ww!CRKeiwu^$>(m6*x9)!v17q|S^UH8
z(3XHLG<3(2IJmU0kFT~l{e?wax1P+LvbQ&2tyk-g6_lOIKk?>>BMD$^zQ=A@KDirH>2bXPSvn+
zNnLevowTfjIRYhR+-6}DxHHOqtUySizwA>v47l*Lvg%?^=E{2~qnDiHUsQ{7ePQ`p
zadCt*xL|0O4)jiVxZE5=EfvDaU<#;wTGncK#CXwt&Jd~ynsGkyTSc4lxIwb@sOKW*7`bVM-1X~o*;F=y49EVNd#
zG<;rVvUdwr8|z;f!q=G{QKL;;veXq(%pLdt77zxhz0&()taTmLnzK3JsjmUfnHtlG
z+HJ9sIwfiHv5>QiPZZJ0U-UG&w(T$ib^lm#?6?9FE*s$!F1LPnljZJ#fgv^{jQP2PpMLJJc>IVS+mzSq*kLMe;-bOjfpS^3c=O0;l
zY2`iG`zOC=ad4Cc=&CL+Z=uffQxEvRGVm}jZu@s#=dP~0Z{1ChwS+A%^y*)Adb*qN
z*K9Q4p|p1OH2+Ja=-NU|CIBU7^?C7hRj?zfU9p)keEqGZhe}g6sk!fgf2}AOUYKla
z2F^{_bWihKL$g=x9=gKpds=p}JBVw_Z8!UIC}!1~?A%H==FG^vzPppzrCp`16c(+}
z%#2l?2E?cH!n^GJ1zZ7&Aq<_RYfT5$JvQ+*&C)Xxcl*1b-kPws$1@_*;FG(W
z;WJ0<=l`4bXLT_Hkc~)z+#Zb#hE&hZMZPaBQ4xq1r8EEYCG~Olu|GXX7Bs-QNpmYm
zlAWjmNFuMrwa$S|FTe0lL%Up95snnDXqxS5(#k*#Li-v0Nsh0TLzXrrB#H>6p6_#=
z#>RJ)L%tyA<6t6<7L0PA~N_rJq!7D7q*zzcp?%-wPB=7fq2Zt+}5tk(qvl=eGdN*fO6(6
z#-MLvT~>|;D`v6m_)Pr=i=Z7t9s(;QUVfS+G-6ty^~w09BZG;Fy=U2{cR6-T8Njyw
z!s+&!S^GFOGhmp;PNPePaPmo2AD0=5>o`Kev@79E`ibXNdN{b#!L_8VT`Dl*Bw(3l!BDjV62Y2}kjF*w3<@3O?YPb%TvkavM0Wbrd&6*D?-ssHZLn-Ih33R;f
z{Ue7{@7EkPfk>?lNhL8_O1r2FPo6Pf72ADg8W?Fk(!w^or>C5`(~nktBIU6$<4_R8
zJ;m%00T#$YI1eI$!0&azU?-O&qbma1XNl201B
z{10H6AiXuc<}P=FVM9;Ht?A$XYG@eTV}ObbAv6jM2ytysWqtD!-+{oGmdEACLEA}5
z@g3QLGYvl2GyEqTPMgK$&9CMd1rm+rI*hk2NT4P&7?CF8_(*GT+4TDO9acUP@{$ll
zH;$3&@E&wTm3T69`Nob#OCjdSuN&L9Yga@Sls=)euzzB|yd@E*tzj8=Y+hWfT&wp!
zo-)!Q*=4e+kYq%ctmFegrF-jLQp<~(eZw%o~!EE`4U{{ZcopVQA4n~hwW1RCXzLmv#P$CVF^
zuop;wLXn$N*BBQ}Jb3;7y-NgT6e|A&*$yUqGrn4gCs&L-3*$F{!HuId4u3MTLuECX
z-M=XPF#h_QIm*hFHCl3S4lzZ=zdAc~mor=6)*cR9Ir5TmkcLSW8mH`^(rk9RQhiF1$o4bL4v_Js(|zzq
zhLJ*PU5wAijYe2ExXj8WEV7CgXN_Ut7v?^|qrwNoLR)ygGs#Ewt$0sJuYXD-Bw_5y
z=6#u^FUSh68r11IBs*0vFNWV3Txf@4J|RzpI%y90{<5p;tE!)3C%jV&dPPN0RvN3WfqIfT^+=4d>k0WTVw%6@R&y8$Qfd_(KB{zEgRB
z#iJI~C9dH%4wlcLs^9SvybWqEy!FYweHv(`)?vj|O+<^f@Cw4gu;UW0+nPRcTHdOt
zNMb%@imoD0R+?W@c$I0$gsq7DSRylD>6#q0$|s#f4_0U(6$mj-xPGNIvd9jxvxz=M
z6$BVS-b#FX1hL9|7xuA
zA2&4sC)=|xNdB|brLIn!_eqGaKJme@oLQ*$IU-w$vk{Jnqs5U^av;axiI5vv_hnJQS0(Epu)oBfB3LIa
z7}JJSnW^m!LifbG`fmIrZ)K#|zv_XH7MOmCr!D6bS&MJuXd{lRXY93vgH*XXb`}26
z;9)Lq*asqWD`h=Ol0Y3CQG%xvpXFn6Pu)>TU!BpqGG=G6iQBcSr1Y`Ur@Ljt>tkgO
zRSv#Up`BOyjKMiHl+a^-SH^Hh1bQ3sAMaWM@mH*RXX|DN8e5mt2>qL9w?vd{=-eMd_x=0!Y8VhA&@zT#GQ@s^*5J@{g
zYj|iHfjFeWh_fylNqd?uJaY#CK0b&kYBp?L1fE40*}H
zP;pnolLD2kE^>PRFA@E}eC&!j`2U78qAQhN*M8@l-v0r}-g9B@2UwcA
z-hOdh{I2dlfJVzUBuw+##HjAS`Tsvt85Jkg_u#z8{&$$you_T1ht=Z3Nu_Z(hFzCV
zmsJrfp>yJpWe;y$E}fNr@6irEaAlgnk7lwGK
ztEDr59AZ^bj@!?CHM8gEOLVDXu>m^W$*b$N$1mYt=@1gtmhI#w!_E7CrE=f2U~5@B
zj=^p$vq*|s=-{NGQ7=#0ZDeR_q{RyO&<^`0M)*e-Saj2~U}bboRUafxgRh3R2z(rT
z{`nmJS~{?|&S09i`#raCj!Gc%t-;DLJC04dBRx)Uo9q^v5_&uT~=k_4`;Qs&@gh
zYToVYZP#tV7)Ai`l@;Je3vTade1SiXr}kp3td3*$up`h;?3VspOvP_P@(<87#?Zjl
z$KK4B?^_G$>rY;W8*I_*iliSk-sGCu7@$#atO6vZ7E{^WW&OdRSL|)K&^u>Z7xA{
zo3EMWOYdlqb$fx24dRHYYj@3mQfqUX`i|7Y7B9NwK!XMNMk#>Hk-iu)KcWt|1EJk+
zMOS@Y+e?q~kU&VS$gi`%TgYqn_4BNqzq~ZevQsCh;XM-z+C6pa-3_xST3ro57{FZkJegT%o}Mw^(i8aI+$#-=MtZvNyZ
zT+53khYT8!!znhy1i*8n^$fxJv{Df1)7grXYUS=%RRLi9k_E3tLo-W);yXA)=jb
zLl|mOR0%Snu(CFSUXky22vdRklw2uEJnLi7&_e$4Mz5qHj;@H~5%x#RY4eB+~PrO51R61baz08v+0>B>YXQYrg&
zuZw9NmhW@N74m8(E5jHCes#~nHyf@|$Y4FS4yle@z(w{h<7#DXlxAh=>
zkKTyQgo!2Hzgh9om1ETM+d9->=-=)KU2?O-acE9z{y4
zl*J_H-pi*a4SCltq`34L)Ywq6#TFLS9Z9}n>^!-ky7#+U|IS8bUnO7fF8
zMKV{G<8}xWWD8_P7S}Vb$|toGr9q1yCsKVqQmU&3pedHlWdWejX(0@EpWd>z_H3!U
zaa%?DbZuT>-9dqls@~R#$CJpN+S8QClE7uR2hwgyStk*f>|S9o*+6h6H7Hi|&(>#0
zAVcirw4uM(@z_Pr@5?TcINAS)v$G10V~et^WHDJ5T8t$Iib;TBCi8Dl5$
zFeYv*j-Tu?=v7B&=NcECE8iKev|mPg=$i10(n*Cykrp{zM&{?lDY}wXO#br3J(|R8
zJjr$0yVH@KBGAD>Y9>WV4JOSCNDeP%5`E^K^Opo{5DG4@@R;bNH2a14Y2);AF~L<|4r5X|PNr_`>+;r1A_S_d#s
zSo6116u3NH-QJ@Nzi=I*;tuhxr{#V96CiFABinFsT|$lg}GG;CuC`JJ~ORY%?QUW7Z)dT
z2|(lLtq3esAV1~LTXPR|IK=nVHIQw-taP17U%ZrBQyN0Kr;gnu5ue7*|5`;-=7&Km
zb?S7`G3L;={K#;Lqd}Ue)|YeBPNmSJ(pXeFN=S{^AcuenlCi0eYFg5CS<>KB=J3Rb
z$-CU_Dl{>tH5#!BJsh%a2NKfzR>vPaN(h5oT)JLxssZ*9UTo(LHrVFaRTQ4&9~#sDF>1A*Hm
z4QRaCZH9nI`YlySUWp=Pwy!VnZO9L<#7&#;;r_uv^w*@>B9potBBr^l*%E#NTLfi1
zq+*|))ZQkE=f#8?U&Rv2TzM`3uxzz_YiZ_
zmfJ3qZiXi$hnap^S83s5*G!2-8x)yqEKGjsfUIq7XvmLvdg)g*+v1~-m}+?zMbL+V6S2NZF?IOnO0BAos2VczK28itO7X{PY46@Mr
zJU{Hj+b>z!DWcd5XQku$BBVuGQN~8!Xy@8nwEx(S@zE}R>y>IaoK1Q640aFvi&G!t
zYFBGsNeiu*E#sbj-(bL%6~?LaIM|O~j%NhdnM3Op;X`{v+W>cQ+yfeL-NIL<^LxY8
ze0?=&PQO6VqUSEgoZq7=Ezc0ce5DN-JVO*n-Kg{)eB8W^1|FhxxqXLT0}p6QlW6f^
zFOq=bvOwBV_3&y!!>P8l3J|}89{V;v;8PmI+VCzvnpa
z_apLhd%D8Deq~W1w7fE!EJ>I;bqo1fa?0N!!Uxd2
zhAcs>RQL&HC3QCo)&#sU$$kx1ca^r?CU?LNd3&%~GVgK(T?m`m%GYEW6+3$NxqZW{bDHoa5DUx5{6V44kRZrNgX&S}#~r7y&QW9+Cs8pJ<;-UMW-itTS#E8!HnZDMb^P
zugjL8e0sa(bagQPsnNhig6ZPjDDn)sKZiwi+^8}$XjL3eDAPsH<}ovm6jL;&|CdJR
z+{tlX;K8(#$+ePLlTvFZnGfYZ5I=p7W>)$6UcWbP{QOmnN>6X&%envI1A6xk|9vn~
zONLXF$L0Pt@H+#AR3#72^#XGg-&ZNH_SNAc!vnjp^k^whqc4kLdZ_74aazo}M0`5K
zL6Gj^s<2TP`{a#>GE=kNLvK)auui;x1}RtxSYccI+eGQd^EEw1R3CT>GI7!M3Lcubc73_p5QfDu@jobflKO4~`@(5uv$Q#IBIgc9GoPMC1Vp
zsw%UWCs(Qc{gx+<(D7uM{%U9o_ll))Y^-z&ESNvx5cG640S~Yv{pqdHJpe4o)$~dY
zKcgMuhtpPJ1UY^N#*#O_ZMjk`FPHd%gwpTm`KK)PFuy}W7Z*noU2LOH;6
z`wu*^{Hb5tMDFsQwLK`_tq5AgnOnvY&0nAIX{GEr*-1!#RO;qg_5SYfp>=64g
zKxjihehiKIVv-202Rfv0l5h%wq95LmbSqyiBJ8y!Ig!UDl1OTDY=b1kfdtx@$hPnu1;B(dwt}1
zwRG1eFGK%1gF#Y6mWZ}$F2{mix;^g|xOyIlP1+s=^{Q_gnVP=%Iee5oCD1?9Uqeln
zUJ}pzNmQNi*S%F45bTR}k^E~JPbw^|Sq+M;9UkQlV4C~Al9STb`k4i+c9Vtys*LDG
zq*fPH`V%Th0`VYzXR4(Z$!nXwMwARx`EW$59m%eBg!t6O9RzGr2JG^Gks?frZq}a1
zsG>E@%KezY=f!47()KKVr1<@T|A2D>>m#^{(
z+DvK>@CG~C^E)x&S^jQFlE^S0eehf>OFhe{Jp=5reiS`eXn$2eh~&k0JF#Y&kmhHj
z+|oFu#w90~uL6M49kq{go<*B{{v~gaQ>yO_GyKu3=v#6~wh!eD=VoqM>1Qb&&i~l#aD5NDxsv?9tQ{X<4&48tFj-Q)C9nEt?tkcJh<$+<6oD5!BjN{-)E`pTaji}b
z_eLg=$09&%^**#_C!=Cw`Y&EC=p#iGc%iU;n|@z9Jd12S|Ffl{L!4XP@|i6Q7MFoh
z0AQ=hOxRgRME&-_tj)xbjx11`2Ql@aG*lcDtqN66R#H<5tahgZB(WxdO-!u|9iXJm
zLUJ&7^K|d?_hR=cmFZKkybE==bv=$wlb9HtvK%0wje-DaFHCWnYGry5CP4^Y`ZerJ
z-v&d4Dq;(JQgc?joCic_VQT#NkTNU!p2F93k}
zZrTzQ`^6Xd$MSP)OHSaDx9UpXwBg
zM&s(XE({x}vBFRz7}A5yJBP%l=DV
z1B_@XC$24;?@jKOg7fIS(y?l7LC;_v6ZX
zzrGnR0OzR~L}HjJcHr#GDjH6~n793GJRbxz2PX*=pt3?B{abshp#}
z5&f)`^ZWFB!@uAgvxfN-(K;#G%PWOzgo&8{oYf2!hI@M=S1WB#)}45RinvGQTbG-U
z(Zqs}ovs!S(Uw9NO;6#B{JicoQ)5;#L`hTnjJ#D`5kj;_WOA6s9le7gAJWh}B%(&Y
z&dz;jq5l=>;83b)a+24$PgNA$CXDs!>YJv~V7r?iec<_%yMoBv6(dbP1h%zgJF5Ly
zUbTJ`PjnH(*^kn0##~fa1)Xoh#S+3@QMgwco5LW+L)=4s0Qtoq?PqP0n>Q9U~v736mTJd$o?C+H7zA
z5cCkOooZS`ASXX%G(^b_M`z=ORmltR!7d>cN&Y?abUyxZ7n(VX{?zL9(vTsiwdp>uPt4s4~w`OcqCOPMQfc
zLQ*N7m+~$zEZFdb>T)q=9f%#eXrK6Db*{OPHk%$}cJ55h$Gi2Y1@>RQ`C}bY@UZGM!;XwR#2&F
zVjIrkS?7GAcb|l3G)xvGu8l3j4NZ0X`KpCh8i<*@Utp9&;s<#=`d+lAvJoeK^VU?8
z#B`wC-s(y^!@XX>IIB3e?n_90BUy3l%nGo7Ien4@&Rd%!hopguvjYvhcPjfjWgB%J
zflYJu3b&gVu>1A$$b?-^3tx8#gu@J4_p^X(5CiDx!K#W3x2FO@zz2}+P?Ky=RWX;+K?5gr#h0*pO6KfiG~=&iEd+zC7QAs+*rsKQ1nsbSfG@?V=ACi8O+J3z8-9B2yrO{iMk`LaPZ4oUsxg
z?dLSWUo)}A;Tfa;e%ijv7UN7*b*Vp2DC`ZXUf7D!^mxJJJX-&~fyvpZT+%v!%xrHi
zVD;^jrtxuZWFCytlZ#oWlWTjGbe4pW4L!N-GM4}HM@h9v!3yCC!2wQibzMi>+HqYl
z2x#VS%zQe_?uVrmpu!V4#ef!YB4H>@H&rv$>VT5X&0hSmW69*%02ClAEeXD486PZS
zqA*ckEGPy%upPDWrW
zA0I>?9S5y5KfUaK%sD^ux*amAEGJ&I3BQimBo5yp$;@8UGUE6bDfbuaVUsv<{a*Uv
zNO@p5=GAlmb`vdX0igpKAN%B1_UnD1BwnmCJlIanujw{$Z_~2i&E%)G53^mHr~9mQ
zJ2)+M-;jcl$YX`ZvSx-d$+s?lWC);uE-Mi@_-J(WS9jX8!ElmjLu*|OeD|`yHTlU!
zT<;=xsWg^RZmd#zTS`MstnQrS=hh_^9nu?ke=q5%P1IcPLL4o|mGza|qn+qx=2^_G
z9$0!)H!j^ScN6miN{WXSIM2yZ=ycz;;g^Za`oNUqC)_^*$20mghuBP%%S+sK8!SA$
zD?X9G{#hSu{UDIHh!M`I|6`BzPJXzxJ)|l)zX3!(fry7vpdx8MK%9tm=o?dH{RiUj
z+qaQC9O>C^3(oi5CvL~U!CA8eXgn?%Y=kK!f_s
z&bWLXcEQwQDk|Sn62%cWnc4is6d5L4bkt70?=zBGRKcUI3ZG(d@||#{D5kxiP$4$g
zU=SkHSLt0jd3CVRk9A{m6NglznpP{Ogj)bq+P?k~l73FOrPo#$(!*}1X{F1c5yi39
z-F^AIjzujf|AjNY@E-`32b)`FfeZxPF?M;>Yp05e8B(;Io&MKs7T=NE6UU}o%9+_tx(Q8|w5FEUG4V
z%i8>mvAb5us^Li*3}a+tOz~hu613{mws46OeAOL+C?%_k@?kiJnzdl3K!1YZ<2BqlbmnWZBt`oZU-K
z&FS*M)Vg%{gYVZFzi6;}Kii?hu^9apSzt;^AY$Dm
z@YIQi`S4>vU3}6!eCWkynKISfFzN~cUuooZla8RhMDs$n-fW`lh*ftfZgKX-?IKQ8
zsg%lKtm%(pt)z(My%^t?Zlj|6CZBHAd(k=BpS(Xln}p6w%a`WP@#A4aC^A_yf87J%yB~HIFfZ}oh7Rb8_pzCOZhwJq
zo|l|1{Rg50>Ft7ZV<`i+jC6Nq7`IY*&{B`=J7A6t;vrf4!yqGgF~z<@p_uKKYuoJw
z!~d_*J<)!`yyWa7pRckr$8LAbO;_i*r+Et!xFsN=Dk}5(d%$wzlu5NKMf>pyyL$kz
zLTf=MudKqh+ZjUI>E!|Mc$PEL+jP-Px`X}&tHR_a_7>{1de-N!=U7F_yVR}?R&Eb@
z=xr71?aRYNm+M8poV`LMADkv1nUF}MsGF&F;1r3QDYeWzG(XChrG?W>qcjQWYa-*z+4C>0-PCHtcWoZCWvuUDCYWGh_l@c9l_lIu2T
z_jn^u4Cot@hapnpc(yE+;79REt*n*SWu1$*Nc*wsVd2k-hLBq$t3>B_#`@x(;^Gsc
z8T%HEtpUe+*}NAz(QvfGa)kWccNw1<(X2>$Ia7PyHVPdbNt%EvRIyDfWAWsohk{-U
zbFhoqUqx}S;7m^m8?yJ)9wVJ&YXigW+xYCtaR1=Gxk1_fDHl@(KPuYEqNo+`tS$Db
zQIx?tny(U*1>L)pe1FJe71Y^GOnzZ}r6PLmU@7|qYb-hF53x!uy3pQn{^?MR{t1CZ
zYl-qczr5u7FP>kI0(TLpa?xweI5TPa>9s|r#tS$o9&Y>B8Q%SOgjPte5U)@d6O|(c
z?v1A
zp-Bi{*`rPs6K~4OakgPyh0ik!Iq5@7mqwvyiCg6;VRS}Xv5GVp6edC
zaVG;F|LYd-mX^jx8>uAP8}@I#cNP>TF$?IV&`I=e(5O|-ZK+D$b2~d!qO}J1OKBdoy0;1@Qs3mBISGGBRN$YwC4q__2|`(5>K2u;z*1`l$vi
zGS>PdW|mIjWd|L-^TIAJpaWAFIY1vrL~H(OdoXWn@d}cEQSbZ;6?T9k
zjT5Dd8y0Ems!riqdu}7BgAe30jWPpjLHl>l`%(MMWJS6R&Do8V`X}zqM}F#h)3pU+
z+iSfs#f3&;sRa}Ts0+=|qo4S>?5;BPB@dhR820!+Dlg6|gu8l{qW6
z3!n}aoKF~K=1xfO%0KPZd5Wv02zwltY0$6vi
zvC_1ol*Z!I*(Dd3!0Ae)n9LFg0!%^>V93eU51T7*Z{tSo!AZj2vS@B@M!0WzMfq%4
z?EHk@GX0UaUk9L<^6C%9Sf%iX&nH*^?ZC)QEhSvBR-~_7>|!gCYnBEn6`%=GbJ@M2
zpb8rticHE$vkPWxdv`4U?-#aTEk^eYzrSkg#P(EB@GNGkuA|APW9)G&-vYgc)=YUDEj(_qiMTle1IvpBm4d%=6R{t*H#S~RX1#v8*8Dy
zHg2Novzh$vd{x{K154b>pbPcT%>K;-Xzt9O*{{YVT_jGj6uNiFH&lFotknH%b;(y3
z?DjLx&p@KNSxWa3so}Frfj@rhIkHS7Cy9-`?e0xL*V~k;VWJU|V*2KC$Ne{pL_-)+
zUM^{TB|E=)WqOhnvcKbr)J29UF6AL}{D6@4MsH^Xh7Ik!DuamX+(`M)`=+
z1o^ytQ1^M((1ufi`SlQ^0J{!PqG#0PmcVxBu9d?06~|6fPqQ#tWz0>ppombA8P=w!
zr35sgn3Oc-pL?}S9dOoZiz|AMAxt8(uB5#+ejF|Q{v0i!lg8SnHIo9?KVut$B|4}h
zmrzan(WSRfjb(8pI=l9h-@{Gi*c!^kpH^O#tTm^H7t_Kj)jwwz9o8ee&31fY9{c%VOb2d6TTOoGZFCNuH1B#d6)E_+x9xW?L
zMQqcuoRuxs&mSs-w?7TKtqB-luRqUcm1TNWi!%1QjNoaBSjH_m2uhcjGaRN;Tf(?G
zx9D)1ER);nH&m^&UiRsBTAB@U&AO>ek`>TbDU|W1GgNn!(3}
z!IpR)&vlWBA=Wj
z&gaW3W=Xg$WYZq@dEZcv)#-$F)rRnnnIusVNmUa?L%
zaL6HN+PE
z2g-6S1e~*s9L`KJ&_bn3L3jRYbnWqA%=KrW;~FCo^G*Zs0!MXKYCYjbv$aG?4i|@A
z++!u;Amyi$*U+anFY!U+#(?Vn8-}SB9?{y+cFk;GvqS2+P0--uAU;NXVI+sAtx_e2
z%nC`&)2^l=sa|VQs^C;rlkULP=c1!Lzq*Fw_Q!^Ki*%Eo^^#pjM}HRdWt?>JER-WW
zvn+BA2Fyo&hI#e{0;!8~~znMoKUn;EzXZ25Y;bMO~-WG5WOWjy{SW
zN!|E(;w2Ho6GwJgftR{?A;^&rNLh_%nVc8^qx_ShFSr5}NiK^~%Nj19Ps2CW_u
zDJt@2y!plaix;BGwgQ(&_Tv&N^<7dWPIOXi*WbP*02CLb9s*x^chM)I$19_wuU1VN
z&QM~%AW9%!vZj5=gbLkI50+TGXEtqB4|mZol%#TRp~em#?H^8k$9$q<_63JNZWim&
zdNcBpaa^-?RCxSoo;K&A^V+Z^CNYQW*P`P}nd_iy>{XhYwZH(!Ih4xj#>Yj~Gpu+N
zQcQ?1*V{D8hw|C#AI(BG7lo1O6aB;@T&PnanxgMJn-4mkH=ikv3%d@^yuPH%%W`!s
zH1?m6$%Umwg9ncD%dhDkVPsL%eYGLet}`fKlIZJ+);Ok$Nzyy
z{92Oin}qJqdA$)D!C0omq0BQG-oCz2h(cD^!ciR+0RG@FqTmjGMd45;6;+`ZwX@BQ
zW;yR^?gjC^hRNRQHCUQPoj5F)6Hu=vCwvbsG7|Jl!ou2eR|MjG{sC93ppFw5b-aD0
zd}yzpTY-?VyptUu;1~`rTEgpd>sL15yyB*1+1HKJXM1FDQPApzrldI0w?vZ`LsmM+
zn_l6~&a0KI`H#Ykht77Hs!8Pd1Y0)gOeG20-oAqc0
zW!_3X8IYYVvPfBVfA_&Ze=pDGB`J~xM`}Q3a?kGvcEG+9d+=jU5ED3&cK4dSo2-V=
z`sVxo>n`oG8xpTAWSxGy(b_M%dG_CWgWJcR{^t)lMbJSYL<~9LWU@rC{Gz9^TrRJbGv;orydBF4Ys)15q}(n;SPDA^{yxKom$c
zTWEfK8q{(#E)cwE%t>|fN%R8w)U#&f{dsv1ACG{*Mb=R14ND^|Wd2^rDBApOz2~or
zZ%C=a3sxiaMO;|^k9`bSbch3KUD4`b5tXKsY7VWp-pikz9K6YyD)~^K3rU;fe_kgQzZIEcY_smQ)y}hU<|(8_O`=nfvxD&+n{gN!)IfMIX?nBo
zAC&S8rwbUtkxKIfNqY2n;kH}2Zn
zu%Tf|qsm;3C8slb(xMOEqGsDeJ=2qSwutJYis5f}^C&o5`e*R#uG
zRXNOHtsL5+V#h1`bIhAnv*%PM!EP392x`t&e=RE7yUIFpsyV}Z(d_Kf$B9mY`-)(b<$t^z?FWF=m}{=h+CU}v|egyfM2uXIQK?)M|%^V{7nHL(2iKocY6K)D>a0fC(F;t4KHpJCY94lkyX{m&&Yub3>eHt-_07R5Yd{}D@+qk`j2f+{7@_(-PI0`4yGShr3>Yh
zdPn;v6X6a8M|mvQUr3WDmlkr{sn5iJ`YtHXKp}R0@WrzFmU~B30jN?Nc4%m!*FoiZ!pMKA7e`pH$EOS@?e~
zVgHYsmc3zG6?Di=eX3wTg3ixZpm!|t^T#LDrh@mJtD@;8_D6l2U&@+joD#%>HLdi~
z2ewV#ma8?Nk7j)vf%WBLmr=OdJBicADOAwwhy1f|zvp;c%(~iIShoGfOmYtVoNoG3
zAU|(NG6V>5uH5crsoZDqGy<>O%-;~K!iRu5_^DjxME+nS`|NV)$Ky_xE)^G>0Rhmj
zWokA?#ax71LYW!^=Jg7wjVcr8=vA^w(--`<`PTPR6NcRCW`6b0Y~
zV%{jLs87h@>L3vWc>`iwn*omJq8AH2Darj5G~1JBdb6$HXAds48OZDkVQ~~W&Th8=Lu`V>X=du;pqw`n1VY)
z*8=!_1)VxZ6w
zvxnfS)l;bi$D@%!CpjnfgS`Uz
z+@fKhcxtxRg~>8*=zN(5*d6rFHzM0jiSb6M`75cP-g`+K2a|iOn_H7cEpcIh8^PG#
zVjKk~IFUlJC=oJ0Kd_np#b=9knz;Rm(BxNZK9RAqtSq&3IH9gbYKxuj!B2&e?xy*O
zt@W-EzBZW5q{*8*7U^viIHE94{326Nm3|q=Q>oiG$P+>sLODC<
zqQdlYvSeRmITD4uqgX*;$h3nmsAlZ)`rM(9EhAoY{6c)b#~CBCWLLn7?R`l6Mx3oR
zlDSU7BvbsSwVWu+tn&Qiu#npxDBV0sCGd$u-Ibi=N)M~Tmyc|XWU0S)(ys47A$S4}evUM;|+L7(%6?xY9E(6Zd7!3{H
zTq(-dmlztGH$d}_as^qjc7!0&3LOyrRL_z=_ft)wA5hh81dYh=5%>8-kQ!*R|LGkr
z;khzqeL3Xk$<_aOXegX#h#{qreL*gQWDyx1dHFD5+_a@)?X#SV0krX+Theh}U7o(L
zPA&7y-(5V2sPJSA2*A_8?9WKBP$*Q1mqCt~)Yz$(OD&tEN6^@Dh$w|Mahd@G{`wticqMSAt5WWanm#~^D$agONyGX
z9pfv=^y@w><2g-EtVBaenF6x2ai;Wg^F&SStL#3Z1nXsEDNyA+YRfMehn9s~w{sKB
zgImSq<)ct4nyi`fqt`=u)S!6RHIX^=5u3+Ph8xLUG^&5
zL_&G-Y5u@29z2g%+Ll+n+9!_nwH6+aq-5)bdCz@cPcXUCsrwO%LKf2@AQ(Ti?bGs9M@*Z~
z?A4qkVF+6qXJ(FAXmXXU)0O>~o-gPOf0V+kjT;t901Ke|blQW%nM+C9%lGUNf|pUP
ziTBxM^Wf9XL$xe%MC`?Tz$}^DV_~mML9#I*zna=i-bd^lmt&DfM!u_}tRgSiXRH7;
z+6Um~6Z@eo+`!9<03$A4pK1Z~iJI(SO_PP_H+FBBthWKWY#8FYjp6Y$ZrAQLUMYfI
zoDY!Il9C-BmFz3B7V48BwI_?MB2i}aJ&cIi%=pe-G(J->zjl`wUJ1_uYMh(|Dp9WawsPcYdR@`v;tc#g-7~w{nqa^iWr@)-YjRf8`c5o2Syt+u
zVWj*AcH~wefOW)bXrMj`W}@Xft@roP=9y*NmemXShIiEoP!V>`kxYp$Cizt}_1)l?^UR`~(IuBP*z32foq9J_<>5=B3kq>m
z;)P-)=~ZlL
zdPYV9B#HOd=V#o>;1%01CmcCs!!x{BS(J$$ov!AZ?oRe9l0vb`Ci_ME
zCr_dxMmr2WTrvq;jI76yu9y88f~HAe_a6w;k701&!V!|}2{0WqNtSBI0EF@roiBV|
zMYWx0f2&*
z0ROaJWz{ivFy-iCDSL)A9DI7F_J?3GsWkBAaX;MsAta^Edf-p3BugwD)TeI4_fH>R
zqTgrjgBw*t%8jfQox(1SPaDkzgY-@}yPV>_>Pm{X=i;<1?QFG*#;e*vJaKtaEGFA9
z9I49U3$1-Du+&`W;xg&E#XGUAx05`GV>Z?{6wa8^_zEuuku>k%@ojzc*e+=8Ww
zNm?mW3*uj+$!qDKw|E+CfC+hqEOItY-Sr6e`6QC0>fze~f_O2*xFDHybkI0Dlg~`x
zVu3>WXeAC*ziP-K9oVHd6JpzhSy9T3==NTWv(l%u2~
zo(35zDBOxM4>Q~g%uCwRw*Vo%8{t(?LLn(b~)gRI@Iy`v6H_B1vw$%5kjypD{zT(y26W&W$R=!dqn6T2vpf~
zo81i-GO4z7Yx`KjU-+;y*$))?Y--M6NlZwCW&J8zN_>~uKM2;M4Zk
za;HL_rB<5zDb8!{b3TN)6Qi|<)vtgy3V+3M}I-(TL>Jqt2$$nO~)kNe*9-!}mG
z9VKj86MHZDmc-_2xuE3@E5r9-!BkjQxQ@eTie(MhzU?=>E`~M%!GY{zv(swtOhu22
zr6u*##$;_dm({KMSaut>S*ZZNe)QZhfxXnVG>)^Vd^`N0KBoG%IK>DS_`P(0L*{F$
zQ>p1~)%ao;avh%GDr?S%tw)Jv=n{s@H6%XdaOV*-1aregFA-Uh)xCLEn}Kg}-?c<8
z-#NDwN1bXG>_l=}J3>kO9H-{8-I$+B9vkJZ%(A^3f-(uF{|KuX2+klpyi>N@vCj96
zWu(k$OCVqofkI!L)dWd-E^V>2LYIOZPmu)yAGk*3;^%Hquf$$f>sFQSj-F;mA{F@4
z+mRmAU|eX~RQbiD?_a|khUu1FF6H;V7_{_<%B`^pe`QI)3ZTdreYk%FX8~QOo-v#$xEKGv4^HG4=S5!=_h6L4p<^Nijrc?^Dy%#0
z&$%}^V1o`(p}xw7KQ>gR=rO(f0+{~&1iCz%KybAF@*(1f_Ujk5+dfc*nqjT@8jF2M
zD8|*rILt;@JP$?euY&RvpQZ4+t_DRDv*IiCQVJxC_n8rl&oe5)14kUr$l43Xpv3b+;}$v&LEmr~Rbul(;pV
zlIG=nK{6k?ekhMO0U(^cZt!#GH!aUE91-40lWqM6A}t+rfsga!=a+y%61Z|A`0wv}
zoAizy4Z)j?n~x(qQuD3K?ZuyLB)%qcw4ji_p};n)6j_G|8*v;zVK&tl@6M3Wlg2jK
zy4+$AbB9hqZRv49B>)nrh#$J1^M3sg#Oi0~^_k;p)SRp%29%RDWkC4D3la4D^EJOL
zhgOPz9n4@sGe_k^8iqZ!R83oqh^S~bo=731nv}X3>n+oLR}o&_{T#(YK}DG(Z$Rn>
zLZ*cJ*Hw4bzo={dHxIOhG?0qqLC9vb=E^5CDI@{H(BGs;0^rF5;Q0bj>uj2qbpNO6
z@V}+?f5pW~YJV)1KG6Q(EW*YApECVa2WJUzy{4=(1MH3fuS$GAZo^%8Njcb$f{&H&
z)}6Z!1>^JKvVlmxg=x5~w)Bm>`O5SHB*a|HoX?Oa_1}cZkHv>xH}57B
zhtyM+(7|2F5b$Kscb#JajXaE@E9g#MhbnyOj+n7yHpEE{B74Q6*3*zl#trwUm_d0cy
zEol32!jTA}BGQ5(elESWG=VURK&|U;Pq_!V|iJLZ7k7V!RKrDPJ^=(aS`!I
zkeI&<|0XG@f6fx;bkzzt(tM}4sbIlatp_`k)XfF;Cp@&8md?m>Z`t2yvg&N>qIrkx
z1!zH+H5aii!3L4Zq-e&$Q>SDI---p}uC$XWKg-TX*eE&Sg^2rG!%%ORG>=NR=1vbu
zOYQaIK&WH6_?6X12%?HvrG)_==bHjWfjD*Mj>2-Rv}4LS>+}nVf@%vYTDRVVUQgp)
z?U$1)7XLt8wyyk(_YjNKZ+Zm|D?VlmM4dD6!9R38PP~VJz%4RU>A#2f<-vH760{br
z8jGdsWwe;7`>o93>X_eT%L}~arycmyZ>y*Zayc_E$Ujzpe+}tXBOxy2a~94pAgg5iTtSR6QX)yJmdlzL$LZttu8Cwt=DJIz*m!Py>=
z{3bpWXpooQozKr4_^baG0zzuntF@tM1rNsa&jR-?AKc4S3D>bj-sr`-#73$74nkZ>
zakPw^WqjjLuhj4cMS3M=ad@*L6_vJAt%Mh%-4|@F%n_ws7t3Ig0jq&pNlfLxSC!PCd_wTSRMrzt@ifq7m#=r(E)ez^}-11gZDC~3vKIUp~O5HgX!yWfX>)!m61Ql1AYa4~xtZTgte`kz!WOH8V
z((wZOv>-)qJnqB2n@cU44Eo*iR9<7feRNczjW4jfdQ}Cg&
z5hr^MWato$@C~VpKw7rusF=JxJP=Q6Q>lgsLKeU)0o3T5wOg3+y^e0R*_;M5-2HBi
zR-19Qwa2rBG#e+6g(eA@5QnJ|7P8>Nn+R-hWz$&aFd)!dS2AE#Y2fC{lChU(+^Pu3
zM{3PC&*I*b^sY)QpC*)I(1#P)&hmVUN#JmZlX=Rbm`6dEitQ{&WNBAAE~cbDP+_S}
zKPd)5Es1uF9TXj9o3)(jHz6}#jOzB5V*#^PG*;QI;z%QOW5^_e#_sJuS)4j_S57KU
zqQ}zBi%x#6av%TtC2dKYZD{LZ{+d#~TU5l1+EiGcpF3c3IE(YWRJCE`DRA@3v!ccE
zdus;v&Tn%XRkMWxgPQUjrt~lGs<|6+8tGv;)W4EW(cZEzZXCPF-l8r7zb79);s^QL
z8A>qKhu>7tR*JN?+8Zg-X3C7s$gXFaHmiX+Rlfkk%k1w5ABPo6S?bwe2n43b#)PH0
z%9ETKDR_pQ`e<{F%#HfXAi6QG1X>K!+$9Y*A93(4VlS4kPb=(XMoG<81e$~_@K1py
zxmtbEA}H{L27-)t0taI?I_I_y`dNebr=gkjfM5kcq!hIxZg2borh;ZY!%WKaf}(O4
z2exdvzW*7k27$4I^-l+};|1O!nA1R$`eZL
zamqu0m*%GuNkzqz_sIv{BBNW^l$unD8u5x(7=mp}*;*;yhlkl_O%ZW~G0YmwjTET}
zO*$pvp-xQa$vQ3I>7#H$Pdtk3TXmW5{&DN1DIkpfo`AEzDDfjV0G@+&LpjJ=pzNs1@^)h6>iDA}h%@*J(4FuJ?
z7itfr=j&CeV8%@LP#8PuPyn!v5Ml+lK-9C$$w
zyZO_jJuN5~-12#$wLkDLWnF3=WabEDW
z@{|;XO*X|Har_2E`S&-I@?Ac+lYP5`w#110lF;
zaBJM%3GN=;-DzBcyF-A+-GfU5IsJZ9Q+3{&GgI@ctM<>{RnN2Ub+2`;m~g;J$ZlS}
z`)dPz+k*4P5evX0&Mt~ssX7kal_*@SI$_WIA+%C&gfNY!-8|rfCgA?3VSd$R_vIFc
zv-?q-vmN#D!LzU41~*`n&{(<2dRb)^>fH&%PY}?cu1JVgZk;}<9E4VcwLRZyEO3lg
zk_Oke0cql-fDZR>Aw4%x|2U-=!s|NETH1qkd8c(1I|2O?__^VN1o`Hy@qGo-54!4f
zzVO+YiLn&pT2v9=mUe`>A@MiRcNpAC&13TExGMo8}n>
z#TcWms>tWu%(S>Pk5NHr4JS0KUrgmRanBSR!@oHCU3f5e%O`${Z2jt!9MFlys;;l8
z40EuV?-_dMIInN8+33zIME|TVma5nlO@LQ_%Rv&Inkn1b{|D2j_^bjdpVkVv<1xb8
z@)058md`r<<-cB5Ir#8}DvAr8S;W-jfQgpUUVFCgjtoM1&bx_Yf3$8(+Uee=*3npb
zh7oF}Z2KXG$rDFSpG?>UlidzS_bE_DTonM1rR#-x>vp^NOxt{rW+!Vr+rrh1hui!|
zzZ@_x(C~GMj+tUUyxWhf`DoCdyT8~^`Ng?~OWgVTG@)y-9p+DlA6b~ZDZ9!w0hPi^ng3wEKBMJv&Q?U!zAF-`p4PHyp8wI
zpJs_L0x6AI8*6$-Ycu9vAI5B%62|+m@`Qq!N@Gehj4{(S*FXjn(0U9|P44kP`+A$J
z)2S#b=3op{Z3J3a(BATk(RlXJ`s?%45s#XGDNppi)_3*Y2U%Z}V|+d<5A}tG$xem#
z`ev14Yq_ZNaT4F8eMSulQ1lk
zIuj}SCW*!@>(PAsD{{Hq>Aoc@cmqahH6JrCRhvr5+qu>KyDgCE1(#jR(>=Ya
zD^nuFEdLVFv<&LyX%!}=V-v)X>~APWl7@7w*0ejTRw%dvP2Pt
ze1nx#6$;vsA>N&>LBJH_3ib^Bka|0ImY#c-hppH5S&=F{^C`@a{XtELd7*Tps5qQ~
zzBg&9p)=DCeHdnspE6
zkns*ttdyyqhcSbuDktW9y4lchtw}T(@EKC9P)jouK~tZY9r0
zRq0QO7sGjEn(p?0F(XI`wxdqDaLG*JN;hf#&TBq3;$pyf<=s1-5N3wwrd5i5kR!|>
zB;&-Zh~MuPN^cnxDFzka@IB&RrKLSQQuM`yodU`%*CJk-_r0-zYEwdJw8s68=srEe
z(zpETQ+`$Qbpr#c{D3;c)Za|PGx^k%+>F0%Z
zFSdys|9Elt{3cF95(qOhogwNVA-3zL!+j=0Kvzbd_awmXXAMUDr3TzMQa8*xQH%no
zqUp+;OkxuW-4&-LW$3fGSuO@ounzsAOA_Tio}X}JpC?YQ_W$PFqj)OfZ|FyucMO#>
z2=FLVQv=P-&1nq?75m|X`AK|~=C1ya_WA#DA&f%1h_0mE3Yizz{)^(LRrmkeRR3Qt
zga0_^|Mv%{(!@`vCx#C#QWSZ|NqljVL-APc56~I26>^5&k506?%P6`@s`m5I}kjnewxJiTPgQ^pssE?&oIXb^Bef^B378rDCKC;Fk>VT2gnj$Ww
zny8H7KM*o|pE|mDnOl|1kGiZFloj3>iwCzT`90b5bd-8|j^?{g#5O7>-{x~r(;DRp)YIq-?>i|f%EqVk)NoY*bh@5t
zUxiv|391zN>z9~<`avixifBi;!@bguW-_u6i;8-jNNx{OlCrT=FA!{3BXwl+Ixh0Ts7N4em
zIg(*Mnq20PFSr%F?l`VX3ufvec
z;^?)CLsxrH(g9u4SRs6?z!FNxFW1_!bJk9S?_2K8O~3QycC!bRN6+p=J}+6Q^@+yY
zt-ncEWddoF7_AinLqrijD`#h)<0|!(ix_?!OM3&*BU*=>M*X)$@e8_2SlnuVk84k#{X
zbXd$4(^Cxq!JS-u^Qpap`BZ!0$T~J2VO+K^MtvdD<92%H_)=9RQX26p%;N4pwYH?*
z_NU27R!N6Ml|>_*$=x$K63^gBSwn$#C{PTw5f`a#wX9of~!3Vv{3qe;;plD(aVc&@b#YzZsZ>^-M;B6RONgzLA#py
zQH}*?HN@ycLEzHHPM2-{-)e|~r~hE`Dh%k_M7q)VrU&}Y;}eNZt8P|_m|~kY*C|_h
zcEKqaE!aoA_-bU?M1Y-`s(x7w*^cW!C<%(0hGL2#A53!=(k~uoY#wtqciB)~)`4l-
zZePlGKlY7V6p*oYMxwMPYKRe-akHCVZU{d%ZuuIT?H@(SQM9RXcb3_?5L>(qdRzW>
zakxju8lrWNGF*Yn=YGsxEjq^vpPc7%-H2~(BoJPTuKKuyM?6w_kZ$Y1O3GO*aLC1~N#o2%4OGuGZI&JaLlW#gCXR<{pmf;7>)pWF33KSaBvOCG
z)l}2;^Ob_O1sZO5TQ^32W7Jvq;(E55um9y#$RCA-WTfOXgZs!a3)+0Oq_{jnJo))c
zeW3bBy{A%g%Akt!;M(jnVZj8X1lCTUE8MQk$3{pCBxF?3eFE5F_xd=l$^%XhD~Phq
z{P7Zvj0{WL+!6l3x5k*vvqDL58lh}Y>%31Kzj3>D=9isk(b*J|{MDE;ISoKJ
z+SSdQ{QJYDQfXzi?n~AhV0{jsr|4|st!gjbWzz9^&*zn7-puo(sGW~#I5aWvoKi5e
z%PVsVBo*bK%mo1D!mh3VV0_mfE-u&I4>lcbGcKvZFYI^KiPpg3OFKD$2_afrShNyu
zneD~6=7VSCCJv~5rg2sw$@}FZzN1OlD0d<>7}*m1=A~>
z^?pHtjz?2bg^%ogP2_a*$a!m%?ec64GQHE_Cq%qF+OPq9^e#i>FR&GSlAKWUF?YS>IudN-um-RWnHIRFyJ+eCei`Gcu%HA`Vq-|wf
zTckv^Y+OYt1M~F5a$f|>EQH|AkU%b!=bSb9T62W6ZzPo8n&
z>`YJ6N*3y(e|#LC0q5Xs__fbMX2{zdJF_bUKf9cJzZzbC3h+9qXdom+B)m;lWiq|N
zOZ|gfVI%U8c9(iR-tyHST#009Rv+LdT)w~Q0Dgdc^oX6Y3f}cRKj2&~85nuzB(0vV
zqV8)#7GlHGG&5RAmHN4q*B$m~BV3jBXsj7Z3{}~L`FAq;itP(HwX}8mIlB9-$
z8?!hW4b#?rT+P@uu$Fh3ElbQ2(c+buhYn}Ozoy4japV_*T9Heh;^z#~yn>6EL033~Bv0k`-CFKkpCkoWzNND(VWDnpSi4H+=h7<66(zK69PcTe)U^pEH3Cybt)`m^kuQog#}H)_
zYZw1FXL62-NpN1P{ljg1wdV(bOG%Cx`T#BQ%1pd=m=_Se_FxD6S&zq2ySxg4z9Vou
zbr*Mg+pVruCaMWDp>D{m=lO{3e@7@SY@!Fmu0m
zESzu6EgXQE{?g+I+#$nKyY_;vjSprMV=LdFoCc)_k)^>6#5&3Xx}1-E9i4bbxuUxw
zxsy~5dE!2Q_!0*Sm_H{(nWHo^3nWxmx+N&hegZKmJ-zv543b7wRjQ#Y}$-2%IyT+cApgk@xr20V@FIjefBz~mE
zTz?z$FBGg{WKqu4&{`m)yv1%r2md1?V@lW?V~a~!j>dZ+!CGA)<#oW3`sfr>@_>He
zxU3{_AA)VvC4;WaF6b=^y4JnGqt;sX(p7t}6odIsAmwQw^CM6M>u9zb(#)6VGbw
zfxaM7Y6KNUvDl8pkDC4ppPm2RIC>nQOnGU$X56*r0K!j~TIRV?)MZCx7;aaSM>GK-
zBt?xV=aX)rwj+VrPW`Xp1&dP-CLlixGM0l0X&f+!e`Q(AP|}UQ@hk>3k=n6u{DYwt
z*fQDX;M&?mLFu@L53S~A$BUJ(*9qbMz`>7U*Lrkv74r|qtFF73)+L^G>f)+Jgzk!a
zVqT#|=2PHTc<~fYoL`MK7>tG;eiwO-LKl;rOI0FsEbcpfqjY7nSRtoe%S92o)vw@Z
z>99@iRbTuM-L_1PXcNkJVMIhqgk*F$m^5mFQbR^^dRxjQKB4|s{!=ap4?Dm%eeF+f
z!8Vw1gP#~=JdKZ#;tg^hM3brZ(Ho&Uic@&uC$Wlr)9(jl7O}@4byd67-4*EJQ8slV
z(i9Scub3O4?|}$0;U7#ZsOQ#)@S=No$kM`o7xtK;;CrQCNH}Mf)7~ugMx0+mnqJlh
zIbP%~%gD_HxjfV>k0=Xx#su$NnsSvyG`(-Y-6t2^oSI2T|~lV@sO
z*1bM!>-M#s=sovqb9n?pNn%{#;KOpDX|20Y>g1Vl_qi%5=V&!Lw?;!IWGM*
ziQ_R7KLG=As29`qH2CR+V)~#Yc;Ymia>nU{f?k?;%vfAf;KGZ|&
zP!uHixa#3l`}Xx2NHNER&=@@=k&&s4MFjzt{5P{wy|LHb3Vf0|bA@U}Fin$8OtgC(
zL#@sd?v`3Ax!RcM!m83&Vt>6q?NPV3GD(2##1L$}eQ#^kNyZX!szA-?Q|}0x1n|sD
zc$A_@|IM+A4y^W^(uEWur6#D5c>|iEdGZ(D@xR4mq0f?1bD=I0H2vbJC*rR`NF6Uv
zOu^Ho=$i|v7&ZXkh*;R2I
zfP5z;6ff`oj8EJ)VLL78`EGiRsWLL@3Tv-pGP<(3px{v&&RwKjJ-Pz*w8w?wIdJ*~
ztofap*T>k6CsY1|A*gD#vT|&uhLV@a9VB?t07uxvVy=8cvNK5W;xY=vBHT;bnbrnB
zgA4ndy{_evjxz#U9m?Nx2eQ-FdBD5HEe*o|!IXfC0;msW3x{8rhiK3_<0Avcg=L?F
zUhMzD*abj~^2E1;G2yY!n~E^Pb6YOFV{0k;FF)sk>^@MHR1h82u16^lOXOBCf8EKt
z_}KXynSH}P_fL|*zSD_Y>a89YZtB+nZiuk##Dljha61>J(v#`LGQ2XalHiolrea^N
z;*=s)QkILOfZ_Pmzv$SLha%p3lw$UdQd3LA)mS|SYoI#!{(l+~{u?XsA918qC2zwC
zYFGHb8WPmc)X)CS{{J1Zhh5}1Gk>Yk(1Zt1y7Qb2|E2?t~OHIrqCF7OQ*h?hh$BI}ol=;Sy$q(K!f|{Wzqc?>UhbN8~y|>trcI%&}<-YXP
z=lrBdPwH;Dj3q&t1&KwLvAY(M7VP6(qvp#szqFnJ{yaPwB3X0tN>S1*$do}$rW-D5K5;4
z_8>D|fzpI%(@K%U3NduI_+#HJ%k$(iVT=EpWe$BnvP7!Ai2HTQgdd7P;g2w*<>amNGzK^)Ar
z)>&iE9ZGTIj>Z<%Zj2cS0@(MxwGj6I)>oy)PvX48?R%?UT&(_D$IJ7H`{gAqbhoEt
zyk@D05E5q}k$6t%H~OfyKB{_1Es`$=H{M=ig?v}{EWmBBypgF1$e^#AIZ|RX%q@rD
zIEq(~>F~3<(~M4QH?$kop}L$G?j<`EinGl%khxOEiWpmTi=;0*lR}e@N6MH-3v=hM
z!R0JBWAyMR?Jxlf*{IM@1#7AU^kKIzY1mdm=#0;^3EoWxYm`O$tN{*B0yBzW!g5%J
zZ=do831p2co2%Hi9Di>|R5%Pue$_1C;!I(4
zC31F(;%g!-G85xD_4ne743hMYJ+`jLLHm77!}$&++#28+jgbYI#9)$7t>rC?SVJ;d
zAHJCW@vt&dTQ`*2-~N)Yr){%cq1qpWOOfE{P3BI=RNI<(bKgGd_;)tGCrYQHlB~29
zT&*HS1K6Y0QeG7MusPX2l6q0go3jhs7FomHY@?!JYCdK|fIr!`0V-ydtJC6NAvGuN
z7Um6&BMi9B+8h0G{hHGQCtN`hqAKuY8+0>`&SBwqO_D%2+y|wd!lvIh)yWby1e(`m
zrH0Gp45aAabMr-g?OEGDZz@@KFE)1lbp!tf{Z{?J;!ic=Y*ktV-&$+hW}0wbBmbAw
zUtxld+)L}hVxw3s8rd
zv1PFETlra97D6+*Fdw_pQd~4->Vh)Jf)*Yg;$Uu)#4&1CYr%^UQIFa4E3emOrnzee
zp>>^g_#aGj-X@Qn{eh(%>x9DBpBN{o>%`^zp&@%zb5>`B$8e9dM-U7N$ego5?OD6r
zXO>&V=5^Y&;f}rZGh9E4OdaQF*Mv5=qTfnCiy0h&>w6&Rec>cnRtUil*Y3jAX^2P*
zVVK*a83TrvOn4an>7P;h>Ny|sM&j^3xOT%BLlYel_lr2}5t^>{Br_!2gOIjBazK)J
z{p&TQ3V$L$6kX2nFL^dv)dseNRu2MyrAd5C<0#eMD;+s18cjC9
z_pu)!m{S5ZHgh{o$$!z&l|fvFQ6%5kxx%=bd>^=Yjh|W%-f-b%G?cTUWid;*I9+3f
zAI@12&zGg7d8+?trs^}Jjr{m`pE%>HyZSM0%Rb^!i4&-3>*oa5TK=fVp}w{O`&XX@
zrrCv6NSP2_7e=u;fSK&6?}1JCf~*nD9YHKYjG6ER#s2gyYm7Dn71F(&A#iTn%R1!W
z898ORZJ>^Co2Yg(u@Cb3&SzJ1=XbARk99|BA@0QSOg`y$kWd%S(>CZC3g7{GX%Na(K-}0XKSY?o=30nJTw5bbC`5<-8myTS@Ld)H_^!?xd@H(~WTr_DwqlRzPVETrP
z?r%JhtiDGcX{5lLH+9!IFLl$$P0KXao%)0C=1m7hxYM_*8-~L#HJ7W5+)-VWvSIG5
zudcjk=jrUB8Y(nW$;8m|m&0eB)IXh&CVytX3mQJd36(WHx2j6hv?RZN5W9k`o?_rg
z7p)d^+OQN&H8T?{kW|1*CKqNZh1{P3B%=Qaw^rxo--G->db#?5+P2BpQ#-wj=(8@E
z+CB)v$E;QG$)?g@Q=&4Iz-OdWHX6m@74#9EWPd+3?Qo8r=xksgy|^-Ri9r^_UyGMeqE3G{Da|W26uZV=mR@V2ZL%X
zlqcF0tev&F62UmQ^SXePV6g>R1|0)2xJ=qLp1RYXXM~bn2gj|p_DqWpYkHc}e@(1X
zkTuN{jr6l#`KdmJBB|&itrHfg!Lzqtr^4XsSy7;(BW{(wIe4){87g#ZSK0PQ9YCg}
zF_v#J+8VnSBsxmFcQvvFTxA9}kPb+Lb^UOg=8^jZxEEZmg)ZgY=ru
z7O{qo5i1>giKKEOfC?v}kHvwVLY$aa!*V}nO$hKIH~b)(2Y2aM94oqA4TYQJl-aL$q&Ep
z!r2X{&3K8!8_BiuR9CANoj%&bevBXd_IcExC^opa-v7&zy7_I>9EJCJ9l+k&xO9_C
zYEaaTC){ztJXLX(ikrx@x993@?KynL_hG>zclnf29;VUL>{APzObwrAIYnK1#m&JM
zhc1_g2Ug>!Qw5Z3k=|y@1yZX4urO&isMdh@eX{?HEjo(HwP2xDX;Gn#{$QfUL}1uv
zrIn1l{tzwvd6)x@HQ?nu2ssZ;c}MJJ}Oa_$q`BX$-wNdY-m9O
zQGJbJ86F8@VvxMLQ^iR%(sj14W_dbq=K8uP-Xi0?&aGR_az{9XJ3I*+^Rz40p-*I9
zjv9fE3++90*7sKOKyBb)K6gr?JO^)zZ{gs;=wNoL>79M2&}ttH>7`9H7Pk??!{zI+
z_y+^0r)_fYXH5qW85)bK6L6nzGH^H#7oO0s0z
z>o*OrAZLuPXsR{5LcxpL)W7QXG)A6$<}XoAab%s`_7rqa=PP9xi>=EXayWmji$Y|d*#F)c!5v~
zE|s+GbjM~G23ozuiV2C)?DiPD;&y=A*}H71KW3-|(jbz>AYt9`9UB#cQP$v-n?m8f
zm$j)3rHb=tK)chSLPV_%QK`gWKxN+f9Z{ZL!Xo_Md>v_raZr*9#a&B0^wcw!ec9ZI
z2P0FX$oP5Fwyn~cXvtX5KcHVoR3;Timh{30s{ezrJ$oj*^c(Kt{#(=k+QE>VW?x+Q
zqfR1S$~{bE>(ZblH)f&c3sZ#CK9ixlMmWtox{A!&Y9>O?=_0JZgM&Hoh=@zsywEyJ
zIPvayMLwy9siY!*ZPwozIbL%6;w|@ynntTJxj=Z|Ao!Iy_S~ql3E|tGibppCO-^5X
zl%6)Q%gn35uLH^~0eO%`uAQ`cN>pw0Pd5~+eG?5F>GgQ0JjS;Pe$mWF)LNGi(n|Gr{SHJJ81>#NQAXE`8p|~@j{K)zF{Hb9Z8aU&(n%MHq`xHE+PJ5^HyQKxAXhh
zgq$s2&z1}tV}(Z4CtD2)6M7oi?#b_qsG`+SAzevxSF&qQ-B)?9d$%dTG``ASR^pt0)ZWyWixx
zDCGsQBeo&ilKwv!1+4goz(?|IoCmky_idkay6t&Reb7QK+>Td8A5)a46DE7G^Y_Yy
zVqfpl^cmW7Z4eEV=`Z%hUhDzbZLhMv-krks&Y_t?f~7=8fcOjM=8V|k%Dl5J_fWIC
z)>E@UHvbtG;+dO9fTEe?US;g-7_L2rkIo#8-Mb=@S9dRR4ccJ6;j=3^IHp1L0(il2
z&qw)aR1B!#6-*&vB#E^cL#NGvh_|@(l-Kyj_^0y6m|qhdVIUCsnwH8PTwwXVh+z(s
z>9SC_w~3RRo1Mhib}B{t-San~qAi!#|gY=G4OT5+V
zOuB|9l{SoSyCYOW)GEW7b5_+$qs@%8Fuk`ht;m4xm+0P45ny1gU`m8xwgqrPk^~M<
zNUnv{sK#(Zz9rUo)c=F|N&Q!r;!PODqB0(jTTVoWOYv9q^hQWlPt!BUEHDKfdwFAfjJg1SYoQlKD5dFQiFB0G&vC-+I
zFf{wru9CPfTmBD*;RYgLt!8@u>&`@0!pO*7M!{6+p|QAKxJiY2OeYcze$jbUrYoE<
zdjU`EWek>zDgGh7$;Wz@cYVG}Z={89lI9>_yeHzBTqN#0Gjr^;=}F@s@6oF3mMGoa
zO5#BIYZ{K>K4_y3oVQtIpR4`H7wnASuin_wREk6s#2T0{<$jnG74P>;FaNtw9=~68%!a?97
zSYxHCV^1!ZCvg^hV>~fSUP-K8IK37l4Lpdtz5u0CQ*gVHQ|3L@&D5!OqiVZP&*4wY`kI2v!TXXY)6p9761<&f*L>;!2}uvGz&MJ!P9#2=}`B
z(;&>Y)K8eDA7cmci+Og9$=6xQ%P$EnEMR1_-d9p+ox}3c=5dGXg0N41bbZHRk>lb-
zn`82z^97p9iiw5Nr?CuJz-dKQOfbWl6a_O)6nrbbv43kgki2xSX=UN&?rhLi|0vvB
z=dh$Q*haU~gMCp=U1oL$HNJ8T2byNye*3tu@1y&X0&Af1e!AKwn*1w1I$-hj%|Tj)
z#YiC+MIiCb?=ZeW3;M}&Rxc<;uz4o}CY
zpW7qK7yi?Vajbn39N)ED>?psoz)h%(O!H0t6#r;m@oi*thy0qDLKdheDr8y&tlMd)
zI4pW?KSAxNpvnhB!lMx8(7zbA;_B)4)7)$O!#XQL$W7u5vh-p@EVDe8*n@2RtN`Sr
zu=C9I_@|DAAzDvj!t6{<_3E1LqGE+d?+i#yI;G*8JXyOMfCy}*C!w)BIAM;TH}!zo
zraYy4)7z7qWYRr^Lvv`r3w2a%t8(OK(CJcSlXnG7Ao(G+NwXYj*MyJL+c$k;MhKqA
zUBQmKp?cr!8TMFo-1mJtuVf0E(<@B+IDwyv&k?u^(8GoIhl<8sK2%NXv|u*sC<^Xm
zqk6A~XUqoyHI_&;AWQg9(abw?&UwO(lEedlgE9IS%)jK@!sBVgz*cb352E4{)Li=W
zcdQ%oOku>!FD30ZJvd{sun#YJ_ZV#ugL(V^a7Alt0_r-4SnBzbkacK~qLM`WM{dtH
zoEUn~0&3319j5dK>F;Uf(t2ZE9&B_!2|ViiTK<)VkXt&s$GZ{L3g4T-8IC+i_gTrX!1^cPmXS(Fdnq~bByki
z-hu~k_U6nd=k*kWE-N|FRK$QU-G(`T+afvc=jLV32-_@JYWu@R^6}u29Qt^Wz+Tgv
zJEbeFGl(l_xkAU|NjvgH=D{ShnnB&3C~>K4x_){hMS$hhy{u=9SYk`FLA&v9-?$Q?
z;RwQG=hS4Oc%D=duDGlZzPQKrY%KgH%lIEQ_h)Qtc8{nV99WJ{<~R9sW6RTHLT7bD
zItO)I#36S+9V!q41;iHbt*8K9sm=z+H$Sn*1fTm*5JY6p2~T>e
zO4c>v#r=jQH2&n{U?|D#tRp@2G`s>VYY8R)08O9TYwqbP+gfF&11yx0KmI8^HLzpe
z$CTl{H5O-=f%VfQm?*r@4=s&`ayJXZhJ(~Se6hq}%u
zO3LQs5dHi5OOmk1l*90FABCK%tX9e&&}Tu!rfEigXv`>)IDxxgd5h7bB$fa&1kvNSZIsR_Ef^p+=mZmN!RkwBb(C
zsJVa|A-81y#+zs!v85=Z3-yRjGl%2-hPxn1RfQpY$SANnOsx$e46fb;7sBAT2W;$l
zDH0Tp1xu$YpSWY7p4Ji~Qz^&yD};P+w_kw@RY21&;EECkqy;=8gh8w(%iR^FJlsry
zM~UgCQEnSDw^1>%U+%3?-WhK>EBD3TTcG2j8%pk0(NghKspndA9_wB}=*-UCy=M_>%mCd8~j`+;+`f{>p1Lk}^x}9lA7Mf7Ey}UuE{&rAr=jtiM
zM{4}T5bH&CByDzMSe9kh#?Nc2V!f-45hkDLM~9=bc;jB+?v(qx&1xMheA4gM&$>T4
z!ym9^pNd8=OHE4kP)DsPQOrrz^L~r$jo;V(*k^ZbKnweFJjCiQNPJKhUYYKBF`==0
z+cut+hE)(8NrUHTcq^@|7Z+N2_M;Qy()KblSi`uHEUa&NR$k6+>4UsS3Tg@zM-
znJRF`k$cHVOz{}Z2XBq$jDUQiD=4ORJ8M(anHVzul%kLf;L*J6Hy%%4iDy(dY}2uqa8=
zR85VqtQalaG+4Q3=X6)oBuzce823$F;O;$zR)eP>LS}AGJX>D)U96K7Lo8er360W5
zi}aO>PtQF!MlkTt+S{K5<0)ttdY~(nZgIT}82RVHy|G
zaIIc>Yt_8+*uqTy(me_(ayb`-&el8VIkhLP22#5k3TJY7LmMT78nb_wm77ki_M;?{
z*}~Wvr$jsHDX%(3H$VG5&#?)WH)F&U@Hq)l72y&arcL0u!U=3m%THdTum`&{Z6nz%*t8Mk}|y@Dv#nX
zuBS=z6nxO`=jYo8hbwC&3ZKY}BT-0A(EvoQQ=im;3eOb;;jN8Ep&A
zC>3oTjE?G{9v`hG+FqhJBsu3bixM3<-Q*
zM%FzxqI27|%#Z99HDRo
z6FxO1LvhdMoZ=LIa&pRnn#zvITzGv|hET(5;+Dk3W;f*cl8W9WGfBW7(zW5Br
zySucR$?;7>}!EO3N8HRz+@D~tJJe6&+hX0#rffkmrWMv#j{rDoLS8q%{<_Qj=@!-k%&yFg%qKG
zeiUHR-n3q8vgwZgFb^mVK9?y;2|S*yzV3Jlml5K_qn^lLC-1CZMd7oxwt*Y^%CmIB
zOyxxNRR~dLJKk9cd}fJsGGzoawVpOGgLzQ+2jqrU!Db;J7f>O<={
z;M8uSlT~(e++nYi)NICma+zKK>8nz^GWgBt7>U>PiEMGe((CKuLGxXdp#~T0c9vfb
z(}^HQswoz$c#@dctX%txeqKJ@>QL=~3oGge+?P9ja1k@9A}P{L8DA$u&8v5b`!>9Z
zsiA*IY^~DE=3uLDiO`xg7V4?AfFc|7Z_#FRWl@LoljV?rgUZOV<@yo&lf!f3>-UzQ
z4?OGbIGRc0N`IJNpIi-`el-1w8nxLHy>&Y7zk6fV(AW93DPQO=U;K_K=}u{YmF9i2
z=tt;VK>hxU+yz=pmph|puM#_c`57ys*cUW
z=X=JpH%1Ea1ZE7FkEInnQ5$8m<{nlW6PA_cDsX&*J1L7ZH(f=gmu%82;dfBRa>L@|
zYmLhUPxHtqCixs9-XAnd;j}kWKE1vXdz9=I4LsZkK1dE|be_XA)zTuO1=*3R=u@)G
zmllR{GZj^aZnmsmbhb4@j5vO0^&+b-HvPQMIGqh*{UQNpu2nj!#xa4lkHGU1az){#
zmU`Yg0pDh(!)DIC2y+exi+c_4WWuQGhoqw+x=HkyWycBMXAAAOpw;MZ@-vgB(n5DxEX5C4D-
z4`r#iEocQ6lb?n@`t;o0>L=i(pqX+OqGQ)1=PxT>VCMG`H#^)x!cA#hMW9JhcYZS
zJ~a$m
z@9;<^;JnR@2iF{p!CS?_g|+E4K4@1c9wHL)nnOwoYIlTy@W_mil`YCxs4L1+;A@99
z@K~%GzkcxLW_Wmw*u}BzZ|+RMcvm-@G|}x?
zMr!9udsZLErGfREKpNMo0$02}02ffmcj;vU(|fe>A=${VdmhgHY7N*HiB7C)cGDJ~vdHR$iTyrz1nxPYusWyxHgDDAi+Hr+yb%d`VK5sKp#rT2YF)wa?A{X;Gp#
z4@E1As>psY2@nxE9ZoA=Ot6VACXfN)q`hsIQj+ryK&;5)|8GYYe8
zS@M!-hF92&mM>-X3w6q_#O5!Cx+ilF3jinO#b>5trL@9carowb_MFr;k-~}B{`3Xgyi2}oEfBO7<{D^kjJT3(jAp3SndYKN!acKKm*Uj3TdW@f8|NQprXm<(R~lX6FQ{K&bMm1
zq#`1{@{XX6{b4`}@Nxc&LOlo${CV>8RHp;>1R4-5QI1Cs$X703et`N|c{V^CiNEoqChP1Nj`?gtayzceo
za+HSZow@)d@5MpKV3rV3U_Ha*>I^}Huc)9vG~XSgDX9Ivj?+m
zDN`d-v>L0`X@B4%LCW-gZDpCbQGDKov$|Wu%C60&P;(}UYj72*KJuHY>arwp^yZK(
z*^L7*oQDliex)1<8d%$9RPtlus%XuCjQ!%mL@$S*SfP|1KK
zYg-51-~L+hbZh)=vL;IV67_v(O`TDT#oj~Mf&*i1J++3VM@v7K+UEzStCI~=74z{n
z))lJ%ozIsI^HFf!rREXIOxun9ZV$_~OdV^N`}FJ>Qz`c#s~NTeL6sbqBZo`!mMdx-
z|6_tz{94W>0nNcwzh!G0Kf2*A`fnWEsMMuGZF@8vNs9b9Pc^_i^Q>0Hl&Ni%$K>iB
ztH_@VjFORuY2&@)G_wIE#o*EV5f|y7BMh3=U}UbQ6@qzbGjEvT^TIznZXhAG4dCRp
z{-uh@PczvSl5&YDyW>;qoiW(R!t&oeNl5y$z4e`cJbH`|-lpOg`);Jav|ugmK)E}n
zy08@HET{yf8`<6f{Hmp`O|1NLcwT_iz~a
z8n#v&B{W22e(lCpS%Y>&Pt1{T3mH)IZmro`SLz9<7kM&lcJc|h#265zv*(S*wrOtH
z&U{#CqdK{U>(G<4c9+W{s5yw?tp4FW;b7|(VfF}j={J?Tpm%c~JM*i>A2QT@t-!#m
z>3u&=8(c%&h0&iK-YNnNh&uT+HaZ`r6mWTBYwU4k(9x}1c#jQb@nY%jxCI?aI
z{gPU(h2bERMW9`_^xlM-t$?1_#cMQC8db^l!h#D)F%99{wyfR$+tnYoZnA|Y?Xk&a
zpO%#DEU+BYkQ><&Q*?%9Bv-S1qVT?v23pV_RzGu*Cu}5WBR+$7z{R6}{dQ`3!@ks@
z+YqqR*&1QDWs=K(khCc=!&(hO8{S0-OCLxWFR}blrTf;IP_f=V>9ZK7J82=;aE~aJ
zmS~YhcrdJm5Lmb
z!u%ojH}hshoutM=1*Y7Fqg6wbP2o_;FvO>;`s*Z5&A|>v*-_j9h@trm0g88rEaHZVI@FF*lJ*J;}L3JPbX_)en=^cAprD0K3K}$iWtkZ1Wy+
zg!eEMF;QpL6!XGE_R>4I+>2Tqz#wvN-7#C+z41huC=yvAV*s@jWtVgoJH3-yh0WJV
zm=~^xe=uO-TqUPV)|yQFZE!-Y{b}Ww8kur)>KzU_`x(@ztT2=|ykq!tbioNbJA*5o
z|3%na2DKS>ZM&hxT8b4ZuEDLi6ff@X#hv1=ffgwa!QI_8xE2D%gG+IDcj(T$XTERd
znf<)8eUl9
z9!B2Q8I>76vb@&7Tb`0x)oyR^{=Irs4aru_{d?XB4q8Zt;F%0<izo`p?d(|5msj82E{dvO*7@)K#>-5Dm^azwFiM6pe_GJlT|fzO3T
zt0-yB?F4WJX4i+MzSJ(f>@Kl*ZyBqid{!pP2=00DL03z?$DyoXSHWes1u)F|Jwx)B
z3C7QdPhX;ewd=gcjx80nYEW%bR!k?t0Uq11x9SEHtY6>iazvE7)X*()RlOyq@;!;Y
zvw4aiCAqk>ZrXlzTHcCu-d;>`h&kjAH*0S+=Ug7<7*NKzrC}kRD^zvLW7TNrnAw7?
z;VcEX-|DaW*Q9%%T8Ftb?tVew2~7&f3&@ddmzs*JCn){Yo6wP`juxkihSCxZqlLYb
z*3g-hb@hk?Fb~d0h!?)S7rs*WUZCzY0F#A=_+yBX<&s4BJi6Uc_!igRE8fUxaU>=e
z7Y)+izwp0LLfp{{?doJmop?+^W9D!FsZNDGKs~MR6B4}&NgztAk)#$
zUCXEnxB!u$>tF7A!;Dx_^lSCq^6fd@Opj7g=;EcFsX@G$DaausC
zKn_;i;p8McakWoBX{g;)uGdsR1*ce)BWOTd>X;Zg)B3KJg^cjXHVSeFSlZ*
zoO%B=Uxr_H#?wW@1jDFAnc{iVmCyG80cdQeGCY7$Ey8Ty@taiNYjIocxKWs;BVww(
z4xsT{2X9NF+IbQ$W@3J;zgJP6v7ghMh^aw>gyEYp8I@^woaD(V+S&v1(kXql{YJD!
zOzy)+;WYst>^*2D+E2HJww8Ck@4VmN*5Xl*hyBS;dT#R|&S5+*oW+t1n(lGj*N-2%
z#U}|-K)pYQdoP}Z1UTlKC~|{A6(c240qZpmMAb&BL^1hnj`=YG*<)4Sl=7bRx$7c-
z{81!RAX@JcbUwWp?Ht&Mf#a60*gLDy$W>pfUX-tIX&bf|29qriAE(LTR(=sNyT33B
z9mYVvPLSh6n~|vtB_aBWuTjq3Jftpk?N9Q)81~OAs*>maT&bOQUQf?ssJJ4MwNsHY
z^2*wa*MmAAmtLMo7FVWgIO?K|n?zT&?ZJ7iyb_<`Pq(%PB{
zXWQ?@<`xI6iA^p3b|4}NAPNlyqtTFH!+MoTf(R)ie+mX8cYtN&*+t62?^1o)SeNy`
zI@&|12CUv7;^FlWkm(BQJc9imp%})yN0Dh(u8e{D)SGmZ0Mz`TL+Oc9{>;o)pj_aa
z4zxcs3vJ{loUb~du&sql*c_8NkXz@1Hqaf*kz|;vF&@gv86Si95G@~qG74`BnUa4%
zpPOi{jXzURWXo`}FSmLcG8MhD;F&aIQJ@r^XEDTEED1Xt#G%53Hfpz*HeI~=E3laJ
zi?!VLmDyVz`RA_B$0x-J#ildY@A^e!JXM3Dn&Dg#yNO@bduahud-r|pSNm}T__-wA
zh;O(SgVYezFk!#_S&qrQNB65oEF6I3gWC}~ahm}!*E!{mBAvk2hZ|wk>Ru}GOQAp&
zZuWlwxK~Z=1w_`@UVI@q*)+c8R<|Vej&5D-cCY2}t(sq$VgfKK&sI5(l&S8THp^YM
zaI|k!no|3fzw9+<=2iLLH?XxJ+hoOD$77q#JZW05l%-$)J-j3Wb-f@)S?aR{B_4m=
z#e-j%9O^Mr7y#7u`078{FvjvbRClE@>_vwJ@PJV%ODDu}YOt+i%R-rO#;6*siVQo=
zkw!?wj~zmuV&{NmzG>sJ^ZpokX^`o>}=uhE|5%!pn6QpYN}!AdrY9now*B
z^2QtvpY`Hb820o}}K;Zk8)^<viB=4$|IQV8d8h@
z;*#=dfcnpGu6Yu_eXr>gpmvA=zP$<;Pg|^i(gcOD{151FXHo{Q#@(-V&464
zdTzC#%=7yLQ69C)f$HHN>sdUGpy>Eg%?DN6_*q#VM1x49WhryA?uM%AJP<;I$LUHT
z7|ck2RFpDsH~YY7ZClQmP5V*0zhFQS(d7}$^;Y%~?0wtM6&tU5>wcQ#uyq*ay&VU=
z8h(EDZ$==ZZhg5z%a7&>rp;qB%7IKjtx
z$#&PX%IZz9428FIs_&8jfd!M0c;u2oh=hfnmfhN5p+xuA&21q-U|uHh%{hQ%EyzI`
zevVb`e^%qZ27h}U@3f?~%)J%_U8p%^iEE~|+$pD^@VE*5reOcNg+&F8O_G^e-6*>d
zMHhiifAsFZiI=tN>V)Lwyu2bRJukKz*z;|~waaS`=KE!b8zZXIvVsjg&S^xy7&x2+
zG4S-PiN2DD=Al~uHK=$aR)@0W@$0Y$s$Zk5%i5P<3L69ekc@%D^OPa@Hsz(pWzprU
zK#@HvI7XbEMCXb8$pTGrjA}&X#n(o(23_WD>^WJW;r3Ewj2@198(Qk}F}jA?GgNHc
zw`HGG4XR4Wo-Boj^_h|Y0*p4e1d+#jqmd18xqnEaE2Y%R_NUHWt*aInSmFxiLgcc&
zWhy0(WSgG87hdyknv(GWd)*kfJh*X8dSYm-yUgOr{XE_H{4zXQKN#O*svX_)QQ+mf
z@Xw1=u3g1eR!D_c0Z|7Yni91tH&u2A!hRnNEB@{7V0VgSasy9;qUsl!am%D_q*fZ8
zivY*#JI0fC{iQ|S^D7KR6e@WFh;IbX;$F~Nb5fU00oY?0_&>L
ztJSjuFx7l)vaksk_X9PqhnZ_QQ(QnxTHC?;t9^Sf-K{t_%TkLD7s=|JaXLZ!pP7CK
zJuywf57Q3|)ygGo>6u=MKoz7;w^lIW|6qas#~%EDDozrYzusaOLTnVthuM01_dMJ+gUvi?)v<-!JgUB;oir!tkSJTN1<`-l^q&}c%zv{V>B
z2%$Vv#wV;z@<2;U?e6mDKo9euJE~{wo9?Yujg!K+jOT#2PXai;n}oMCU0{ymReHWs
zq%^%ktt33!#sT*JJUdIr!>lZbk8(XlwsrB5;#2yfZd(q8_fg%XIfE~p*r158LqG4Z
z;|j->04d2gPD%ER3U>W7vLAF$lE!yz>%BBev6FbF@#&DVU?>|(o1D->BTwOg_MMYI
zeRyr>_SGVy;NJ%pLiI$R@3pl!=(!%;D$Z6&1Nw?ry8mjw5+@&?j{nv1u`b2c7(g-f
z^dKr=39l~0DV({{@RqgS4eQ&dnopuY|6XVUyEM<3fT%2WLgwCh4sc};nl}<4zV9Qx`fS`Y-EnDv
zh+pU7`;~Bp;L5xef6DZjY%`pBGaj@t*`_)XcVH;dO7-J@z#vo-m=KqQWh$9!t%Zfs
z)(kPceOdDEtSSND@P5(plwfCeK~9&XI`$WgETawuReHow0Aqq}j0tt77pwBuz`~b5
z<2=2onq1xe8^bz&NPzh_S!fbrUfvPf*2dv7FG8Mp?(9t}F@Bv(&fgv5veqEZ@n4a+
zS^ok4IFNSAB}Iev-W&W?*O;5)k(`v*{-8{0LYw9D51`6x$v<`n+~vK~K8-x?7hZG}
z5xN{)#9zgLgy`P3zJ_myY9XBzdF4l#AdbaVpdcqWL_CjEIMHwqHjvT71_e;!%pX229LZ5dFru*ekDSP
zY{qxTGA~J_PlL@do5D*G=>WT#gcFf2P^UeA0KZklB9)E~hbBUjj2=C(x%h(^H#eOu
z#T$XG==26s{ZPp%0-;m4#&@C2sb9!A*R7rK)8=rgqrD6*ezSoCXWz&M6`e
zBqc+cB_pdxSLB@f3zxHrbMs7G)_$_~yabK%==Btp35xdg@z`ReKUJw?b@%>wEKjsP
zk3cR{XpY%HquNVzsH>8wz$jZwuq-MX5uU)`UvFAa!j$>HBOflLrQJ5)EiZN!wU(OY
zmzDK7kk}hiGbmz+XA2y@+b*b%Ae?*OCJWXvs7}KU`h@5k(mJ2=()QGUS(!OIv|QV<
zQ*2|(TskG!AdcIJ)6ZC0J5n?|~HQuYdpo51bR0xVL@wC
zGLJVEhyF^>*@uh5x?wbHQ|ffy2uba4LNva@J}1L<(wX(i}r?8igm>)Pe1yy
z>dQykrLtC@>M@vcBS-X>(`yD18W|ZDkv6RCYKemfHbG*m_%BH%CC4vm7y;ERa#}7Z
z2bB5o@L()557l}AoAa^1McWC49eOibyOQuV^nBtv2rsuL!H;e{>%)ov&Wc%tq^yP4
zk>pwU1a?F^mLjU4?PtD(xp$s)$qdF>?$Z;*162GWS{iYJB0}+;$8L%`lf05qDwIF+cq!
z|ICVeP}ZLWv@FQQgYbws)9YBh*+6$gslim_W7?J`H*AIKJH6XncajlMZ29zQ^L6ve
z0xy8*noY?ZBVw;HzF&o_CdqH#@BZ<6M=|cAMIa1_S=#in`bB0YW;`v&UrO9P0+uPI
zEbr%_LQ1WDO>PKU&~ZIpLM>2{RYAGjX8?76IIx}GwR=!;>ws>Py5R#cSbX(gOl50t
zTdhKH%lXis=!JZc9Q50V7z^iNIXfcT`!$
z*Za_olKj4DX=#ZlX^gw>WN%C|pK!npX8_712H-A%q`N`K9v@rhWQrM|(PdQ3$^mKR
z!c*8PkO1((Jtniad+l@{(^+uf=txtNye|S3x(s&lF*4yuNDtxc&X;GRuSEa>=%3%d
zUL9NDZ`nH%$g5U$3*hX^!prAXcQ=?XsikWgCf~okeY|Fz3_<#iAdMKt!;5}H9&260
zTaK>_EX#f2-gtob%L~1&4$QkbnubMq%awire=A_kOJ0+bQg>%E6+`(^ygKA?hms~6
z4+m;hDDOoZSxFqr_Cgn9_m1}cVtlG!*ADL%iK~ipgL|8Jab~nlNRX}fZ8d*x*D`_1
z^1;f$PlD4e{{Slf{h7;So*7K}%em(}HDQwDe1~Q#jhg^Gis$enj?Svxv!m?artO)e
zm%kYeoMsN4ao0f#=&WAv5Ndu4h{Mzel$xWxsb}_597_;iQSLE>`oA<^v^sKxdlEz9
z-iDOHx=qh(M)%6J_+XThgf~}0d?`9+97Da-k~5=&{W2uWmup98Ip*+F(rD&Ne0H$%
zW5a{nC6i1qwVFZp+v2w90jzJh6s?TCdr3s>1aHH_F*!be63#`b9eaHZlG9z!fEJdH@KkC64_%>-Pg
z?zAI3n7~UK+Hk>bHIOuKc}^n6FDVcG9k?RJX)%4T#c{KdETHUX$JHlmCTuEDJgSgi)u+CFm*xlbqs)QdYZqa3+4_?m#zNCdDK
zSF0u`dziOIhMu7h(kY9Rv8P$A|BH2eW=^fa_jKQ|`UlC)cPD9WjWUW0qF%zJ8Bsej
zo~%4kA*wr+tJ5Nl^!WKUi*F-2dgTI(uKe%QoUfqjN{r>Z$ygUW74rB^vSubuy*0ge
zZ5X&me+mDVeM=cJwyuAOz}#riR@9;hmIh+asEZ!fX{rx!#d3-par)
zw*1>NACk;ZnN1sEWgJeD*Q++F7}C}8Diq{>XpWy;n}%Fo$FwI7K!3%a>YBsINMTyC
zW_q#}xN{TO@Eo*+D@wQxP8RPEKPWNg}=ekAQVA;8{=g*9WI1OEW%EsbdYSqF*%_7
zPPr*DTrD?J3NPF0;wx*)4IVspqJG`oYPG;>68^HFojrN4oeUm~Kx-K6c|%JiOC(BU
zh0Byz&QRPb|2p%R%wR7-!@L8#v0l~|hLuhDiGJ!{Ei4yX?l;{prP2(ABqX1Y4UMmU
z_M(qm6fM_BwEeQG58c;ylXm!2TVmt{B@b;wv98UaRfDYd0XcbxqWZQLbmoG+o(Li$
zjdXV=8{9wN17ORDx#jjXVaMOU4ihG=mmUdjvt`OLIVJIv7PVDOjm4C1LbjsB*Sy=7
z6JP!;+q0oWKzP;l{%{AwEDfh9Z5gTRscl{8-2z?b$S%Ll&NetG+u|xZ<~zy49w(>7
zaeClJ2Xwyy0gl#)n(L&%qn}uXKPmr$NXnZzp=uVv7GHd~n&t9;gmK5wzUne|x9ZGF
z8AD%&@HCNvD3ex#i9;{ydxUH3VqN^zpmIXl>y`D=*rjM2mG#Krg0|1=fdUg_urs?m
z^5v}NUFjI&)lJkPgXIYpBcZx1QSgwoggqUoWl&R;RKgWDt6r&hu&ql8
zCWb2Xfv|!DETmOS$ole@L&N
z<>!c8GVd~!x$Mz+X1|PK>=EdUa5)0wl$xSsI4YyCIN#R?RY|&CyLpbE4S~>?UNR7-
z^qcF6>6*yzEz@0Em1;&+Z(_|mRLg0YTMfdLZiVsvX<$6I$gVF!SJ1>(LkFdux}l8h
zIn(;u_U`6$rP5SsV7)x{Cp78Lm6AJ+t$F?*%4kbMh9@w)a6z+Y9W2n6m2O{`+oyrh
z*-ri8Dhn27)j_%_&i69I?tmCKvr?P9WA_8;D_^0Y;}0b=o*v73ko*(jg5}1v;qtl*
z)nVB-kAgX4nxYyX8(^_Pmo%}YGS?8qJX5A}%-;Ts|L@$4r2xk}oW+wv-_#{xQxGzL
zc2cBMvwE3IU`#;qU+ys+8#6{B;@^m5{#TxuM(G6zW-J7ik0?{jb<2P5?#dRt
zty^9rUT-sPc@wO`jvyx9WvfJ@PCtrC);d9U=UZ#YxVX}=EJs*!|M{h|vU1+Nu;xwb#YNe*m;Q3ZpWn-%3XrDa)LP_zB5;t+1@7y?aP0LzKv
z-|o|StK$+%$ILG8a0ttt>xy}TbFw58k^J}KIaHS3v&p!?LG1$mIAcb}8k|593Qe`5V-X%?u#Q0g@2mBclXMuNJ}N!Oz9*F3Fn
zaEdrUMesMDZPVJFvV+T5r55oPV&SWUr7Q_$5>M2eP3)2=Jy+VWh`jDFPyWWp7yA?b
zXJ`)hud=P3L4GwSwY7(^>;^UAscsXFIsdRTBz4+KzkTP;o86j`WYGahvp?O|
z0248DP?}!Umpo$Ai(1E+I!&FcPU}R_q09_9uuME{9e>VvIgnZI3!jOY3!{i~;(P8I
zk3`D}4pi2)Do!$qe!gtZCJbsy1gmX5GVq{W9B&zSK{{60C|jGU2M`ib_?<(iRYYlA
zq>+n6t9+E*U4g39(2tWO&tWN7SC@wz4C;rDRBLgX4q}flAiBlB=PS&c@T7@8mt~Rr
zXJaH+vP?60=C}$aMK-@%Rwl+v1CG*rSDSMsRZqn?fQA
zb8>owH$l#K88K$HO)J$W6rY;wQg`4jazU~9TD|Q2WmQtiwg_@apBb85H=3wv^HUku
zsDwb9kMd0vup&0{`M4F#2gEB!uPNt0aD9*K1n+n9<;67CholE46X{`P@pdJvm0Zmj
zXq&9-Apu;eD+>dKYN8)TL6
ztOOcD`HKHO{RdEr-YOAGvzSV>>YnKnD(d44W}U-C)3LArwz{5ud}Ar7G4(z+256fP
z@cU7-H)GQ2NL;nl;bMRr{EB;m`;bj{d(C^&mf&^#n
zw;MJ+f=4$^A`rp*#fgzYY!V_%SI)V|fiF6$Hvq4Yj(mF!kDOV}`EEPnnL(=1`6fXE
z*+IOjfdtkE&QY1H87^LXuRu&Ya_4LdgasgoT6xJX`^S9UM`iI>nM6I@KQ#T*|>DAb<8kj-)=2baBK}Y^=h>VXr
zfuw)`{0rv6F?;v2z5_mv&I+61#r{P87-%YUVh6pPLR#UZ
z5Mtf)Qr5u%RoTs9+2ta0GebSl78z0)zQ}=Jm-ppCMmX0L
z%12I^yW&7+gtE*a`e6L3k-1%xwd7s*3@pBRt%gYk8tZ
z=*9y0uG5Ac&_YX~V15gq?n9*RbzUG=-+D5+a!GCVPPc|oXAt!-4$vey^{&hliuA3%
zb1!hloeJK$LEz5
zXLFYG=O%rh8VY*}BEb@){ws5s8z)vp;8Y?7t!h^z9XIYd{S+GOst=Xdc+)T4^6P`+
z`wLPsBbgiZScSRSPrRZdMI3x?6!j~JGZ8L`tJ1^WqiY-c7LQK;kf|Is_)hSj0^on6
z)GLUp>F*=ZT@AEuT|wddOmx?DL>qb&WOG=de(q~TNz}e8eQ0J1I5{hOM|ZQ>eYRxU
z71{_R0yE4(F@9joPbh1q#5xWR(ATN>Rdz)sKh!{jSpKVo=C3%M!>)zc)|#_QmWhzrFY|c^UZSw^aQ~
zUo?5@EVIcCs0q2-9!1BP=Q1N?HX(xfqX1-~QY$A*#7aE-WOasEjj_W}SkFhUj6s6P
zT&668NG>>=i9rjs$49aW6x#x^S{UD;UNtm8J)RBsCJinAo=y+%CVoQl;RB23Y4Jr4
z1>mXJ3?>2JBavTx16(iC+m2cIXtxV-acZSe#%P1BLPynTU{?cgp%b5!+r
z>!!ZC&v_}Cc!z+w{|1&Nw%Lw3;J}7X!ox1|V|g_m%guIBQv`&KYw1{l$n~z*=(dn)db(HcRoEDF5yBReXh)zI73M
z+4HL#i4a3hj<(@9(zY{nyL7gDMo|A8d;1|@mvGM0r^d@yk#W7F8?#5y+bfWLj7!dh
zLrm(k{lkOzgOB%o1>8Gga@h_N=@VhQg%jO8U(VC}U!Y>X#Qy+^@^)*HK5X_PXCfPC
zpm~Pw{r{m7D8Xf5l#;6l_nO0FcL(HlnrxyrD?j_mz8
z%KD4!qi^XRQ@WKyL?d~4%e=@);LWB_-Od72B&1{k{+vF0FXtJr?vwBytF@hvpy|9v
z;h#@N^B0buudVWX%_TWoA}4;`tDSyjv!DuiGUAV!cL4Uo!|TMJVQcj{{ME<2=HwR|
zU0*#GG>zsc-{xH0ZeGPb`&u1?QbysMD_f4HVEZ#~PE!Dg`r!HXo9mZeR+gB!NVL@=
zwu;Du`hfVcn&CUMan%`hdt2|j7!hVCIL#(Zlca5iy94hZKn^r9-`$117UkAF|4;+7u)G&Ddm?MG^jyNY0w{?RL~u6O9M}AYr(5>klq_QWzBQ
z|ICwKIujB9L?Pp6k-BieRPpm(cxTNH5>)FOKTKSw%|NzA#1lHXWLZfkPomxZ)1#%F
z{Fl0~|MbEsvH!7&e7`gCREk`?~-h70Rp86HU04Dnw&OWb-0V=Jj4+~Tr@Unq}rsv
zp!kJxDlu1Tma>YQS%ydyKr5bS%`}hES~Pg_@()n2@2=g1#ADj5K)jLkQEzmW&3~)B
zSpyA-M&V^vT)yHwLtqqYotR;BH=NTU&4<2~^)Qn7;4!>g+qe=N=`vUjgX$8B<*DLh
z{45Vs6eXzn;%#ITG2)i|N?e0an60ygsFIpCG$$EAYY-oo3o9vk$!otOLj``;`3G
z#Zb8d0>*OF;$bS*G&!C+55+t&5qqkk;xA+M-S6CqJuJ~iJWnw
zF!V++{L1&2nJEI2QhgytlK#2&Ed)aUO&wD#r)NhAWE%`?-^(!-m!1ft=yhA2%8Pnhg^>4xfT*
zp>0jA4eX9Qc9c`hp6?@o<|%Yvp%No%U5JGq>F7c}_f`Fn%O?=E>Z@3ij18lFr9EyV
z{I>{RBbDJYHz=3`;pTSO?;Qi$*^^t=8%>=N3f=7x#?nUjr<|rJZ0c9o=?9Lme4lh+
zbEqCE`_&k6)*teV^-r%Dau}`9YWGs>k?pN(=IuyYVOwXzqb|*~jMYc!(l6z8I;_bq
zQymhX5m`os0-`1jSB{|YR-wB15|(y>pRNOK)^){}`Ps3U@zclw_2qftvZLO*Jb@=z&$8onU4^zzIx-fgd=7Sw}EGX@!KxZ?1
zaIECXh+~_)=O{5+KQ+F^$9}v5NZ6(nr(nR_ByE%dCM-a5)FGRjV`b-=Yq2;%pyY|W
z>AO#l20x@bjs>AlPv7nTpim#qLji0~98!3L>Cf@M@J3R4al$
zHoMqjW`l%-ZH2}g`M%pYGuJfLUrjaYF^dE_0+Nux_CQGz-Aq?fgDiEl1F{QW>pLdL
z9TAt-0^_x+9b(7NI?IigTx`@1`eu!CJ$G?5&ox^v6XD=(Xo{bY_o
z8bXPK>AW%vg@ZhUXb`1J_^aUEG`yn3Yc7t|wK&2LSP)T_MiYg4feXN%`rdg6nLn@|
z{WN}P-0&}BfZj5haWq5wgk
z{u~d_(uc70(A#D^yz4lM_!MMUa$80Ejjcoka|@twoPNtkJ+DnSM@f(Tbn0*K4wmWuW-xm+UKB01{G8u55<(BduE;c=aT&XlIH
zQSV3SH|m&r27`-gAyDu1YZKqmhsGKL3@TyH@!S+mlY831HAA6@WA8Tp4^9rg&5>7<
zh(oqV3OLzI@ycmMD3Y#=GTbBY6VTs@u%%28J_+ne;<|P;PE%SlQd@89gDmFYQR2PW
zi(A}X`3l6gmdD6o9dfixj(BkmtMD>G&IDM6Ho7ArW@+qr+6Iiaf}Dm%QIhTOyj7lj
zrvES|_ceE4><&$~O@DDks4|79Bzy>?0~Mul=B>DNE_FdPQKBq)kEG4Pp}?3lX2ihU
zZ@s-|5c$!QI9pba*C|GF86H*ZmWsbfid;h>z{jbi{9>HV_}$ys8uCjvdwEX^F~U}E
zv%U`LoE?~V{sr#*bROqBUF!W>k=P>W6VCD6_~|Oa;!X=u$CaL6*b|xm8_zFJ@@9Ef
zC6O
zyJt3Uiw8bd{Si9zr=rR4GW!VSDAcdI-h~33Gbr5
ze+ZN^U&(zQ`liZXT%P$(Af_hQEWrQklJP(|5FFr7%aprcgpwjrvAw1j@e8N^{Caz4
zEAL07rzF;=9IWIp(ku$J#)T9UB(cYI4=LVB|3R|N@4`UpR2KCcGX$%*W61c*O-x1I
z`C^wxv|VR@57+a`C$C4m_l>78UG`^AqQ>TbfCEdwFu^}S0J5s0S-!1;bD0N^rj{k|
z>z`=pm*}vTKnJir<@=-cni^xcR9Y-gU`8adK6=E%`l2wh
zZA5+ht|fXs3z;b!Eeef?9Ch{V$m@|W2_)agE)lPx+ARlpwfUMAX8sDRGI>VD;1U@d
z$5(tvz5c2(BqGu>-|C7sPkK+TDL`W%wq}`bu#!OZfFQ2?(55)MZCn3A&s#`1LyXWO
z$o`s&<2U>a1LxuPQ%6@@r_1#4;xkpAq_F1Jl@R%|o|tW}MAq7Gn~K|;AoP3TNo-hl
zJ;Sqa-jRg&O_E~lJ-HiIr*>t}!isMm-jTlrqVsG2UxvBIU7@3jw}!0@@H(^kUq^IL
z{_st=
zL-^~m!!}Mly~o{cEVdyFDeS8jrEzj&zxhFbH4
zI5R<+KrD@Ltavl1@W|b_2-2~i;eNbV6wcI?b#mB;BK@#P-~KlQi}GyAUOq7`yLR+U
zM@Uj%NK)HC@AHbIsLJ9vIb|fwi^fiz9Z;I|6{~Kt8v0v|h{Ky^*nwGG1mj-UWBmiv
z6<^8X6=HJ~g-0LF{-=EE|CMzAtLgGTY?;`PFou7CXy(Uw`Z<|`Qq~^))^^sbJ&%16HHOhm+f0
zqQa)Yq+L|*&yVqDL&BrplxeLl3tZ_xM(7Evv2CC8U
zm66z_n+fY)U2aX~E%`>2XWI%Uq1&lz^_AmS)0@oAOjD?Hxm^L{zvY<{jT}7dy*|#j
z+P7PAU%upa1u8eL>Gd;c#{Xz;)F$2UNdnH=`ZLA(j4503pB`!~)a-Tp+KKbaY)MNHYzccFWQK3?$nE>r^wwyONPGg
z+U=&b0C=g%F@R`$dP}{=_p*Km4_v(@Z3`>aec?Vm8^dv6pk2k@3Z*v*W~urO8>VV2
znMqY8B1OE9*c31CTy(!=NYTE8yQYtl3xxd^XlqaWkRDT
z;%#9Uql|CwIsbz?^|wa_rLGO?b`3H;9WP&XyWi&}`#rvW+pK-hs+7VV<})g!k*JAd
z<^r$4Q#Gew&Bvc&R+GiSP)$P>-Xk~Z99V+8kd{sj_7qF(eTDVDB+Vv>9+UJIOGyRG
z5C&mGzMHcnbEGT9<(f*bep(c^xMf>mnO_dD?vA)U)>(4EPq871E4p3tf4`#p7nN2c
z`|m3Llu$=$y_hpe9k*Mkd7}c8%T0@l`#%7FuPmZ-V^kf{lCewb6V&NVdc-#rS<0qM
zwo~G}Cd2;J@dJ+L&gM%V7cs8Tuj>l=1wj#_qhhCMde@Ps5011?-ea#T2wLz4x637@
zQu3|a2ws-fVZxdjJufChWFOTaQo)l}eYUUZ&>o`251*@wOWH#T?Hl*#@HsMVsHDpC
z@N8LpD*(zJ6SvD*%#duo9iiR>vYq@{fefp4!=#`&kVLUunBLQeA0582wx<2S)*a%-VclHN_brp4QAgFj##CpG_
zt+&Yygp)0#*bnHWL0+5Ts
zPrdvH4R?rt+4IbYy2LdIe8wdzXOg?v_$J>I^;1P!HRiyZ`=zXQfQkyK(tmzaf<;nU~D(?m-PL$W~n{3twsM&wPd6eAaCqj&v6rYgvSANSR8
z>qS*$I$J3CPG|e^#7AbjM7AV#NQ47Z-hS4PRM1ZE`mcf|=u61C0=a^6Q6t}@HJsH2
zy}`T{9@+DUJ>Hm-v8>4Db~V54LkR^tiES0`jglpXG(m!S%_TBb{G>1
zW6E0B*UCJ82;}8i40aMA9@wcU
z&y!Nd{hlXTU<`}D?kd5@f4dm0|GP>wnCdwMl(zrLvw69IR4n6U;|WDR%65ib%bzCo
z(2C>ju;AhIO3uN_OpBK3Qn=akBj(?HdPZcFBmn}CiZA~F3Ce;pBtF75X4fPuXhuu-
z)yM#p+^l=mm2w|!MUuv;at&Os-EZi5)p*gz%{*p3Efo4o`Q#^ir1y%XT8OoMyy#2tZ$7{9B!A+J0|tBZmj6m2jgV
zV(+5%9yagpScclk5`9Ts;Al(7h0n1;myA8wSETAG0j4hg`W;8N(eH774E4BV*fFT$
zL;Sd4HVH&Vy3v<>da;+@r>vj8>Kt`<*sfNx@t|L7Kq%~Q<{buX2mFazDyev?%mF{Eq0K%mPXfE>RnTY0zcLRubij6D
z?Ixg}p}Q@9){8vFpj!~rr^sh52P1#hyo`R!GFih0*FYUgm6n-st?GgRM`f>$obeKW
z;kE=@aA2UK&IE{pva{%$8(Lb8%Lv~+OAuk+__Zl3x0KT$QIv$@QACcssvKh?a>UiS
zi1a*tSaD^Up3&FO$J9C%X?XiAL?YcFUT{-n^?)(;sy^9W|D}dg4B|;PzEZDgVQuG8
zyq~|^>PA`LB6o03h+0}|t5e_PKv-;{v-E1K#H`0|VY}?#f<2zXtS4Ub6~IW8TDl?k
zIvyp68Z3@yG*!f)-hZ++|8M@k)Xw;U0f=Dn@*odO(>LWo!%KvvD4$f{_oIWKfB-AUN
zG_KQ(xFP#$SzQ@|IH}f;t-cckgjv`v+LwU+A=C%Bn|q)$dZfjpBr4?z-Y29
zhjmrjU)sAW@lSkidM~4-0D=Gi(fq&OBZRfBf9H@Xw=^PKmcim9kz4G{&TA}hw3u-q
zhRzG%j_9iBB*=#HSAtir9e*(&{blJ@NshD@6J!6H7$LWjQJRQjitOJzqr2twR`EoF
zomhNr9p~LbR>p6Hvfn-`YzLxu{^DnyKWGh@Q`CG6wFzZdx`v_hm%c63|M}KsM4|NU
z)ztx+HzFtqE(P4>Kwoo$yXrNP)vDz_J+JkHe&s`iWESdx5z^-6F?A
zH~Nc_YindM7n+$+4#l{yxwA|-^+azIsj`LwP-c~u+_<;L)(-F}>(e#58|cDe5)OkA
zmFNmqLF+S=$|+(gt{)#hAWI1(s?E$|0X6o|39?8HWvN{Rv(=O<4VUC{N`=o;&Uzb%
zEyl=J&weFHZ|O|n*RL0Js3DiDvk(3H1Jr{_FwihoP3ELlo2_^rW&GBc{^4s~ZW3Kk
zKwHGXA*|c|QFgbgFnelpYU;})deXw$2VaLGO6yywiI#i7eNw)z#z~an-JnHoK^bRw
zkZ#*rEt5@Tkb8`Xy7M5tFJbGj#p&x_{TFciZ1h0+A#Kpv@y-t(!m5v#sCrRu4IZ_O
zKKi76y1jJ{!mO!Ot|U>KIs^-NiFjOUG7hUBP(M_Xuze*rw*TefLDwR1NT-v3fbsIj
z?Ba4fNc_ZLT$+1s##vp~B%g6KW~N`^P>6ZD!uf{Z=uhU{6&0)3e1W2v8JR{>v4RSn9MYE*qrx^N?s+M5Jmv
zqqKe0AG%akA*;M4(NP@ZepMgfYPb06Cvh@{W9CBQOU$lN$9AQ^r?k>fxSa5fDE85MyyMMoD
zcfaRD&WXHp<~Q?9vAk5@$e=)f;-7ib&%#q>y0>g9J8B90U(3>%P@lVM(#!i4mBB8_
zGn)SZ=p{j5V04?kcnJIL;8gaiL-(~k*Ui~y#KY_}!^7X`A6~t)Xcisdu&H{k6QTWy
z4%$}qa_Oj=MQQ)Y#|8EdtWLqUb|b|4eb#+es%!&$%4z-c7A;<@TQB2Zm4!{%(%c32
z@GME#66PqmPeQ8(p351wMRggDrK(P&++Ub--V>{S_J$
zEHW-k3UOwc#1iKWW@tSijPI9}Hg8)iHC^K?pAGU49rtWw>m)oL1@h%%$2Lwl*ae9@
z^3A?=;>y&OD{4bNHJU06znu%e`odfUOpW{?>-dx8_D|e>=n5Fab&?BJwssQ
zcjUdttr4wfTHQEpy=d|FG47-+^1JFm!Gx)8E(Tcw3jvKDf+MToexLNA9-!cQ7;Zz|
zcfQo2Xs5@fg1n|G@eS&CJObeM;QfCkK;6
zQu$CkmLL^RAlUl&u)ox6VqfWthk5PwydnXsq}%PT4f-WnV~z{@b)!0A>~>^+87dgz
zu8k79V)N4Dn}@}8E6Cf~TgA?Hf`(yP_g=M~WN+IHxiZCyaVe^Ag)2TkHDq
zsnt#kS6pCh7C5{#i7*?vJ68~VRU}%9{Y8Wsx1?wHyc2un27-%xZbq{rdKEvVzf2!_*r=x9cJ)r6MsoI_nMWO0`j6IgdDDhGX
z{G088lR-YL=*8TkSwTB!oQ=rTNZ>F+*!UW0g5>TBKpF3q$Fsja>e1S2!8+8*2LT8M
z2?AbEXPL5-h}+Ln=^RqcqOv8VOUz^SM(`rxW44mEp;Ze)!ltfazmdgjqZ3&PXReS!
z2I{g9l5Y2YwVy=-_;#n(bXCM?BZXn`iE>v(f@S@2wub3Hc#_-HHFtGB%+{3>_TVJ6
zh`!mMVfcEtTYFVIV21qxl)UJhz6v34H`WOlGDvDIG`-$tH=v%hsjBIg?Zx1NNi^qN
z92`y90vCJgLuvCtaD$F$u}oe$`iHl#?ONLdWUZ0z&(m6E4H|;e?UTTf`j26369)^s
z_qbkEln)fprf`NzN*b**KlCqNQw3iY0Jk51&cN?G*uUa-s_0rbvj{Y#MjX39=wkq;w`Eqgi!fzugL<5fUw5A%<`HS;}4!Efwm4@E$IZt{qCBW`LH92{iU$=n
z3Lhyu66&n_{S}N|ZnOgu0%cwkFGW{0xn$;D4}3hnaF*th7*n3)9#wi8=}50+@K$_4
zj{M9kZ0$;_*{p^woq>~*7LqS-VC6aur~G+af9TcfL2-hVZ=?CKMGmb|AfNtk*;UR_
z>$z}P_;{K8s*-1Nf_K`cb3)znM^%g!^aT=#Ou^)qBScxX%C(|ApP5COg$H|FQC*Q6
zGOy84CVOmCR^-KGT_XPcu_T*UiZTpo4Jd}j%!rNxPeBzbhBZM((eS4GS$jVW>_rYv
zOqtgqLex}0s4T?x$I^!+3HK~|DL(m95wbmuNI09e_Nz0i?@YyjNtMR5?W
z5|XANmCxNGI6c2u^I9%d9StGsBb`G)(LSKOlyY|Og|2gx#Xhl<5q|E8DKo&n7v`qy
zXb7YJz@>e9_(R$56Q&UTNrU^m)iotP4qpSUoI8&1(%3-Hi>)uZ!KLS-)wRbk8Y*@H
z=u#R~pG6McsjuZ4U7L;n)c=4U7+yS$w6pdP(0%xvW0nFpUi5S;~d+N|7wx4q$(AITVfns&6TrP3ZT;gw~mwMSfBw$_RIzT2QT8I5jJ3zT{rnng03$tZL
z4Zr|E0{{R4fGw;CxRvgv#Q^9U#Qz~7)$LhpbUNyL`pb%SwW*>nxCkyu&ZK4oIC(;8}m9D`Kdu53QdZoe;
z->M=1-{q12@e1e-_C3g779@hSmwdTtoqM`zJSD|$UFfT4zGx0r(Cv}9
ze3?II3(ct?S_E-7ML@Kxn?-4SG)dk+krQy0M*?$#C@jgnf!+o*F`81`lqXMtY$;#Z
zKhphHoq~n73Yy%E9QQ1f@O2bM(GSK3
zRcP6zBs#eiYKHY-&r0XWJnBVP8y#47#zxB>Robr9!vX{`CAC^jTQz^3ezxpWPgsF~
zr-_P6h9H#<{iP)3y4ENW8rI-832zY>*}KnFdP~5|{<`Qmm3`I=9>zt8g(m3Bl|8Gj>@)eFd+GvRy5I!gnO$H@GTfDB`=YRVeqXo
zO6ud8R6#GrllsM&@`#alwzHls-^S8r*3cS+$w1oP3!G*^%kVRDmeE4j^moExWzRua
zc!q!4KJ#N%lPFC==r6p-*cg_x7$!Hgs_yLq^ub8W-YO`p;v+Ki=2wS2aV{QUe3*duD5j`zl9Yhe;-Xggmp_yalWCJ}cB>DQo}5ve9!ayZ$`4m7
z4zjdb6awnt!Thy8v-$*{l`*vwrn2PH(@j~abL+9r33g+n4PSjcuHaZPhAaX-7&Def
zI3^xzGoB(Jv`2)3xUiy7e3=vU`d?ZSCSPQWz6v(TU@bgs1y)^PzKkz_c!cr%l2}Bt
zG+d^wN{Eg*cg-oNM~weRAj;cd<%=xq?6;&!{AyV{itS!3IZDHj*Y7%!&F>B#SxFW-&(Xce~upe0^YL$+Pi-fx8#%Icvs)Ne7k2A~SUY?C|oHMnX
z>61T#s%au2|IA(2z}U9udsNdzHr{>f$aYIOBm8)$7tze6qx``yZ>|~y2(y(w=rqpiZd#^Ke3*%1A@&AEb-_l{R86Oiu5ugZ
zgA2d$_l&s!d)MJM&oy4C%bTbsD~Pp$Wmiv(pGY89mLR1_?4IN&Bx3!SbSgLNzTZ$*
zXtg{%H5!`_^$GP5D%;dfT{PTKi}S^FBEfOkbV*x=XL&vLfrFJo+mi=}mc~(YqibGF
z`#qfc0si#O^{pMW5-F+&P9S!pTDR2EgX0?x9?MOSv$wn
zp6ZUEoH%lHgj-y0wXab>Ib1
z@DodphK7FczQt4Yd)Dh!_OcxB;3Oam3SQ6t2=RwiMrd@Z;xx>igA6j)OEb%?M59$`
z!~IFMr?RHpJ^wOkpIbg!8vmmvuZVF@7{7Nu0Y=#{C#Ce8{;fOk&DinlyP(mszJp{h
ziHscOJw^3ts9`Ffz%G7-`wiACw7Go!zVspxRh`Zl7x5X*Iaz_?dpddymrR4)OaX#u
zSp@udLd3;3UZ_U5NV`Sz5);g2wM~96m}a_}|C1Y`EG9+&1=ecXPz?DEDEALgQwF`D
zdp*>%&cgo&$DdI)-r@GF6xr(rslNDpaLS1CE|63vGxNu2>gri^fEtfq&uuOmTJr$~
z4>^a^0*^M4D6E?A;!kdE!}I!O7J_fGZ6E&uAld#GpUcX|{hn#s!!i*CK3owWX~Gw#
z_NAtH_0j&NZBG5Qu=Vq&lk`JZbxe8~QttQl43^5RfUH2PJ4)ef;Z2(4hH*Alrz7v^GZ!`;+~_|5+FN{IPa(|hDN9%AVNP{jfW+FtKLA;iRMJG_BKjd$leS+`Jk
zeh03aS=P9xD(|i<>jI}LqhtudOB<$=E|=p;t_uB~uj
zC5JC@!S9_*l*eabj{)@!p5K^dxvu9Fsh~~cDhy%p(VtD*)+|jiFi^Ou=IrM6S#c_L
z1dOP|L?pF{$dGCh6BEG>d$e^mG#)~DhB1n{_a`i$uCBGTFs~pX7UWEw(q*nID2>!M2!L0|hll;AYz1qWnUA}*}V-|)PUE`Z7ehd)^~Rp`GhFg}|I*=VMNRR+Dm<%XIzP>e
zJX_Jb?X+d4{p2vaAvV)YJ!n~6{58%8#eXkQCEVcue}v<|iTtAC{#D1ePmMIPpbh*V7l1{@0@@;G;7IbY*!*Lyt9FJS}Q)XU)ZI#FJfvFf{6>%#T^4sVOUDF4_K
zP<O2lk%qe7J*I4W$JQ@q2&Eq&+aH?Z8||XbG;7KbWWrI9s49w1JE;wY
zr5y3pZ@hinZ|2e)8a@HgZY8XLgH=i`a)%Rfhsll(_1S&JkOP6_bD)6BAM{g9_Oe!ES6VUiHq}ZCpuDBWljRUnBC-ETTU@7#`Q6^PuHc
zw3PioEErgdA#eKkf&V4nvEHFGxZCA+;`fXF8gaCg8{7_b0wu^6NAJ7Uy0sX0YM&5%
z*YwJw?ZN8OOr|syq*1S}(L^*e^~caLz+BL%JHbBCYQ<)gZZlb7GQpqfNGqn3?B
zI|Em}Hw#L-K}WYaZHR2#7rp40{`jt{!Niw7z00&XV12q|_-|1S#EU;NA<&6d`K~S<
zDcHvEh9$D6RQ?@p(M}H@FV$Htr^M_)2bRs=aD%KZRkE0-Ok%U>-y%ar
z5?XaKYl5siu)*=N82exZsg0uY5-<9&YOf8H5NcWD(g;qgnKv1d$6AUc{yK`~mwt!l
zjvjUwX%5|S{QUPBGt3mu`X&@JBr47kq%NmIuuqh?8j8sVTh*bIEKrTu#-@-0K8D0n
z*fb1FRMCuGD=1j)oR!c}15798Wph;Ef+Bc&Gm``&dl~#UZB4=Op?{L>d+>x=uSjCseDM1vDJa4#~%B#OH4o#Kqw@=*ddPJ
z*8Ty(kq7B}Fxqx2O}J{`Eruc0^Btem2?ei;-7)@&yOFM3`PjSY9cy6C19Xk%nPj$a
z!k6@-**8<`i@{PVFi~ZAMIO5t79}o9)SZABQkaeNEqydu=MvKU*7Qesb9EN8oHwex
zh}=vIPqtL?-8T&)7z4mu0F^pz8u>w~*sO-*PTftZGU@y}GW4o_py+EXsaLV^sXRYS
z+7LoD)MGNf0K**1ADFc-@^f8IiN8!eRLfF{Q)Nt0RAk`UOW%Y;lm9+Sv($}@G#M8L
z=TIMU1@tBF&nFzMc211-)oM#CY7UaxZ*8Zk!zE0TUVaskcMK56@O}_v}yB(6*
za-i6p85rgB-S-;9@1spiL$+Hspjq1Z<^ED-b?DNHtooOHG^WOC4NS!<=Ze#(o<=SM
z1BDPq2Q#bQA~amkGSrJM3_)J%bjokL1!%n)S?XACTTn*=oC3=zjfSUv>9Y@z`=!ae
zp8yCxYSV({;-4w+F;nqX^BGV|>l(0$stfL#`Y7`Gpn}r;lfGOGF)i?wGDotQCr?v9
zejoB26CP7u=vn{aZM9T$4}Z%bD)GKYcp|@B1trpE=-1tAyX0N!-<2Tu6M>WFlrJ)>
zC~usxaBs2I1A%pq)}PU$kOvx-;L+Vymw&4~fGY+L^XM_aj--U$75<8oJ&S@bom>z|
zdUmMR!;&$QSO8o7MB!(|&1+?g+8$^OdRj{bm}d!-G(Gd&U1;>?INT6HyPX~UCAMWS
z?t7G7y*LTB_{bK4UNqK2Ny|)N|LxfdP=Ape{$nGXwpx_nv)}OI1T6uq7M?yO6)$Lu
z^==kv+F$7B&>E5?bcsW~f0`SMEj+8Dt)MbQz^4UAAvAJi9?hCkTEraUT6_n?bE9$vKB|^p50;xV?2vC515HuQXC`WHGo^M+~&#vjrkj(Q&1O3$Z(0
zgu5Z==GxFf>EH5jKX6;!w@^U!;jumlpV`m|G7J8kuT{}3esxJ$+^Mi8ThrJr=aJ|$
z2yV<18^v2WW~zXW>R4|@oowjYrp%*9fWu1#13{ceRz9GWN7A?ANBi}MrwP5R#z+H#J=JUt1Eq8zE#gIBrwvxk
z5()aT)0)o2%27Zibd
z)KNL!hjMQyuaMKz->3CAmsUd9*b?<-n?SW1clpe=kv;X_Bkqfk&V{(a4t!%=DuvnN
z_MavqaHJ2Wo0gJ8Q4JMyQ2Fp_@rUi)PQ<^BWM*eD;)RCP~0hZ+bRy<;l|Ix664
z&O%2l6UlzfJo
zTgU?CozDpXy+p@bw$MliwPQxnTPYOoUq^TOukwu?=*z&W(;|A
z47;=TbHZ-Sb#BPU|M~}@*DF!h+pM>`#s-@@fi>=lk5(7}x~{6?qBwMxou!&T!E?DJ
z)ccZ8&w3k4xK;*Mp!wmd#r)F*=)iA<<;Y%nVP$pc%t7f78B3f}83+@TG?`U?p9TWu
z+)5AtpG=@eexc_V?*tG#$_ima1ZJ3O$dKd
z;9GJDK;xxc=A4NoiKoXQ2HzJ%_ENTkG!SBY7FrsyI_#ZGB38fYGKu7s(K-WAq3w~T
z+HQ~O<|LbvpCz|^$Kp+#?xYQL^3sy>`iv)J45b_qF^hXF%*>2n=l3&P1d6^dn{64G
z3-!ZxwCQ_rVgS^teckk&af&V|5UuMq&(K3c-=v8)KrHlCI17!m!+%Sl2Twh;Pj#60
zGD|^VPz<6vT^&z4PW6q}MbPp@_Ok=Rd-pCH`KIfEd;uu9cv7!zk1p~y7mh$Ubr^5v
zdU-n-Cfi?eubcs7Jt@HW3;o@eS@0hGgi@4UE|s1;K=_L;6^bqTxrL1I7MJ1DV+Cx|
zE0NbQV2W}prT97eI;A-L)tr==a9tsM;*s(&et%Br`{mPX@+jyudGsMHr10ta>8`%D
z%}FO&0#bV}uPIWI$ng5Y;%oItQXCGZ_5UMXx|>W7AW^{q6m
z_)s6&lc`y)>+c*b$n|CZ>KeAb{gs9k5y88KaxUJ_G-*R#_G9BO)JeR0
z4(?KhK}G8j=K+zu@nNiI4mD_FShhJ=Wp|-PoOJ)h9#}G!;D~{QLQUF=C^kuNAPYc-7U^&
zc_bZbm;rn^Y|DWjV~em{Q$!x`%;uVOXo5v^oZGChnjUA~xW*g-Ici4By9KL~sK&(V
zl(F60xR43xd@8lS|Ksv_z>1gu?FTrfMxn>s
zcBV&Gle9`3(lXzRKC+Jck}o$kQA3_l
z*3@z~2%8RFQtq_aL|)Dz92eZ>kUQA>Z2cxeEi7)U*hiK9uRlNjNEgMO?c%P~y%c0<
zPXXi(DMM-+96SDOJ2qatq(K}oy4EKLY6B8_`2k79Vo@gy^KhjlnT|Dk
zbt_ebTUj-OTt92YCRC&>#1-Xg$Z-}`)yAsi?oK=56hkULem_D4(bkF*?BL&X@JYXn
zz(UiBJpc^jHBwSad*9ZysxjDs-sy`B!+mZ68~9J6K(An~Na15pl53eZWpEecX>SzHw2`c3(O9oGtZ81QYGC;sIN}g=1}py
ztOjaPQj>;kHtGKZ2p1bPM)Gc$G_uPLqUV~vp{kI+f1-YEckBRabE;L_fuj=l)qSx=
zQI!{0!E}CBk!40eF_EX|c=qKP9t1Z&5^?XSxx9Xxg<+k@5?CFJ?4PLK6N&XT2|E7(
z<{9^87$b;dz0d(Zf4B#@pE;fnXDj|DW4td>yu{>!5)hbbavsF#F|2RmLqjR#60dz$
z4;?An1!$zWnqkE`An_xwM5O|YJZ+ax2)Hmbg#{z>`t8p#3i5b_dA%P`N8YoyD0~|U
zGw0f&)1LTKJEf&m;iG0i64@HZZ618sET&ajE*%N&5X}NgcGc6<)8S(8k6{G!+;tK?
z3)0|!06P?@MfvrNlx4cN{oof)V4=v-C{3DrF~f4k9`l^*!F6f%sp_896bgxOn=-^J
zngJnjr4?@3_Oe5lxqa=#{01-|e`f=Dodg`)oNG;t6q8duB{2v?VJ*=WN&MyIA0yp{
zSt_AR^4dJ{j2@`6U1#pg>@NaQ0hmbu7T{QNk^`kMdn**
z;E5@dve7N-9XpAo?5Y`S1@uS2+*{$o>ls(`ffp|Ly(zo_65p?SIul6IAn^bX_Z)i`
zNVx^--x%4l&MxgQlA@_BQ&EPd4Z5Mi$0pCmP1zs8-85dzgROd7@*iL$aMML7qxTK=
z^884T9NBBFCR(n-P}Me2l5)NWKK}S@XT8-8r?Y{*yr3oT6G9@F_Lnq^y*k0Voy7-t
zv?%mDysj2hB?bW;D<*q~z>>d#ojDfBYXTVhgTqDdAE>MkV*9mmq1tS~*MRiuh~FDQ
zbXXh%Q_j7FCfh>W=EFjHKzdb;Y}caJ;d8t#PCL53?$96N*=j!blOy=LsEFY*04~gv
zQNP|>$x0DbTy&OO9a8@A4Rgh?vEAaBiM7INhgCl~>30NhUOi=4Z|c`-K#oR8JwxZ+
z_@DIBAh<`Y+8$neIOo;$9iq|h7KF5rq94&E2VcVP!l%k?m;ZRbm%1`7ZLT5guMej2
zm;0I|Z-?#f=jLFFAL8K#z|3oB9&qB&>V~p4X`$ddm;wF)EF_J)89yA2Etm^pBR|4V
zb=x~tDGn8v{LW2&x&pkFRNfd=KV>EK7l)mE
zf=z2bK-b<9rzWvt8D^JrmR^}YRjFY$SI<2+`3b+cphyfpm4^+6n(zTkQARr3`BK55s=nCH1zCElS@0sRn2?)O
zAAqjzG7^vPmlxLR+PDlq4E(W6q(+V$HylW5^3DvsdiHjAAcy^uT;GDZrNfvTxYfGY
zo^C^Iba4O;5L=XY%uyo*R1ithKfkCYmd6nYX?7vy0$32jU$v6o2XZ`5*Z(7-@t=Az
z2^2f4{P*CP{`r}Rr#t-A(cS0Rqz9Ym#jhtvPuB);bp-9l`e*Ag$`|H_Q-h1J1Wc1O
z)2Xobyo&TFr#d@V9ll?zwiq&&rfu-Pj-mbo2;9eY#2_v@b+<4p;TrHr46@EWu4-XpK%zb&E2}S`tL1X`
zm(vcyebrxmb2Mk2Bozo}x~W3~P?tSLO{*VRKe!opP;AMCM8J^Aqx;1QzW>RfT@Tm3
znhsbJuHoKn{XNv@XPf8!-twTu&PQ(AyZR3xKc((TSsxPmbl1l3+4#4`|6NxL?g6@~
zz?N~i_KV*uqF=6O79X0(y5}{JeygPzci=B@PtT`GsJW9=ewovHg)2(5^WZ!Xnf*L5
z9nhzgt6^Rb*22@2hkgOucZ8vJ--S7fWXJo_2P4-`hac{E8{N>acU_>#+^Y~vxIfe3^@F5eeKce3ak8nzWe80AF?wZvgHWuF^qSDwu~YnAs+d;+
z4i!S6rQCW~OHp<;NlX??%H7v<5{&|}dtBBCW>UZ;ZlF<~aKGN4b21ff!cT~qG0@Y=
zUFj`o#I1b;k+m9pP6l&-|JqJ=OL_^{?A(aGb3EWaJ&TmA5OuGpdo~scqbNWn0a$zE
ze?X{PX7|(?B|y=y+d?XXvH)^^$kV0LAY>kncxOjzinaS?`5THA=J1$ZehN8z=Ai&;
zI;v_=D!Wt_ReEUF>WW{{%r+J&|Kh$C!XG)1wiHxWc`G}~`fml;*<{Ok|Lo(w3Ca12
zw5-1t)HaD*bYjm{Trtm#Mh&FW8mO}ck?{SQNe`}wEUDL@Au%Oh1F>^0;
z^fuO3cd-STex78!~0;=
zTa-GU=X?y7uicl7(0@G5^F
zx0M=JL!jq2QDtM3_WTHuU^X$Zq5$JzK2b(TbwX(YS+oP^4nD`U#+IgOy-j)Jk4{?y
z=It4pJ6W()saZo7Ey?CpKXtD9RZ(w56QTI5{rk))BCt;HEjjYi+rU#-6+~w=Es6NyUES@zcnjA%C93k9+pidZ725iIO{udPZEZs8
z)@PpcVct(KKhCE(4GbeL=t5Y#uOoTB?_k-*G>za%*ssHsR*3>fZqu8k9qnngAx%xy
zyG~!3(-^6uju8K(1G!Jcf}FI?_9S@Y$@TlFW7LF!G_!95wF|T01%?P>jV2V%S
z$)a)AD+&x33c9m%>-G{hE%^>_$RD6(DA_l3o3*Gq7qQ_=vXaipx+*c9jmc2O(q`Ua
z90;ZH@n&RogA@1ae>GYQXyaR`6nAQ1&Q%BsKI64?(sA&(2%d9rsWqy?CV7R_$r@%R
zR-6|~VKDU247do52fT^Y7GES5&a94a%hYlZ$ifDh$%Tl?q;QpIu~?lZCmb@aRjw9g
z(2CkrmF{VFE56b3DJvl%<%W~Ap9*jEzMa##qqMm2oPXNOB-FlN<2|2UE^}lN
z;DTdxnrDF-YsE)L5QnW15k017l(cnYvo8_R=PeHrS4+t&My?j^Bc{lLpPS;*$hL_j
zv9`niva&6CR$&ZV+C#C0a+rRi&NK0Szlg~n3Fg6_dJtcQJ{%Pxe%d{HRfvBsmWRWn
zUZ{F4UoZGCWb;fK?k&FFH)DvEu2CDzZBauh#QdbL`Wh~$MlG4xni%}9{;rf+gu}!j
zh4B6U`mX0?Q+WEdY_8L1SD9AhB3ZVw!9W%45YTM#ftLnq9lQw@wd%0J^^?O^p_IM$
zzW5`ZAJ0g_#OGk9w8^y=7Dh4os}*f|l&ZfVN`G6!IudDBv3HPOTozu$|9yYhnqP~~
zO&P)9_%~nXR7<8_#8e>%2#sK93YdwT5M`jbP6q9s2KKhpeZt0nb`wFgR`>^~AeT|&
zqq?%6{7dy7xX{vkf?T@27_oyqrNo^~w5RTRfA|huPnljEFPzPV)~|{VKGSMI8`Pkc
zSN2!O<)*q3`fyRbQ=5f?q7AN^6x)A*$j{Knnp)uS@`Q4KZqphc-;q+k7QPvE{FX0I
zh!Q#6BU)fIIoi*$9vUFrU#KLk`3E3dRCCe)xvSE${=N`nLVv)>XQ?>HK68wbhUO(pP!3$xTd}!dQEPQ
zxV!FCHmrmHE;Jq2)O!yVh@1MskNE;UI19=(?e~WD%)WW#T48?Bd~eSJbQFD)q5&>2
z;I#LNqRsbF6EW-mi4*9ip7_JO9fMA=fKUzaToXX%Q)BcG^8X
z1!_0)EHSuz1*+q+zy!c+GE~wP@O&GZyAPYJ8r$2_X~2~xkdoswGjM@SjQxD&R$oqF
z&=YCsf2@p1=S-ZGfRPj~19|nAXpP>aJQOXN4<`-1%{dC@;FmX2wIP?!pCk
zA3QqhUW135nDQh6CtaK`oBt?T
zT;jXPk}MfcY}GHh
z{sSbqjSBCMDLRu5%9LCy6S0Ag&)QetwtRuD2mUKQ5n0sAN9g|mT|CNv1$e^EYNNi-
z7djr31@wu|2{tHydHR@b4J9MfRu52~bS^7DFFZ)I-2Qo|UBtZ6iZoI5mvVk`vm{fM
zXs3w;`vWLXKsnl#Y>I6l^(WA2PT9jWKx0mb--w;9>(bx$zgxJ0t6zK?T=&ba8*^Gn
z$B8N`9jFVx|FrQmJ-#7$qk^J5y&m-19h~enCk2-i;^uEn-@hINQqR>6%<&-o=7X+W
z-w8>Ep2XEoG-*mx^InYhD`-YV<%+)wq*um+6|Su`6IkCUcle%P;Ko~Bu{iYp;z$6S
zS(Ac7`bY2#DGDC$x@baRDZyA1S1$sHo?#aiYu?@`#_76#ZVGB)SwzL(1Ur8aeyxg}
z<*R?eKkFbP^-rQ35WUD?)t{S@UOv1%W?5wWBjG4P0fl8H{<#ExNL-Pog1wOE1Zcx5
z^TI9P&`9M0Maqu&+_HZCJTcWgjqkWO{9ia6qxeJFR!owYimC|GltxRbbiB{5<_~+H
z+0BKTPH-uR)kKweVncTiW87tF@CLb&LJQbmrh%_rq(!OpGAF>#art~FK+yb0$<)B%
zJ1Atk&z=0ftLl}#oOnl8<2e$a4>VQjWVJ%*rLQ^@mD8k%^;dvhC>(*CG{1B3fNNe{
z68y0R1K*`nl3x3=EQ()}sfFTGsb1nGeAjVfQ{yA$&rV#0IieyPig^pAE57t}SPg8P
zCR1QpPV&cW`;ckblK$8%1VkCca%C7*HIzSj;)X(>?1_(!*B~fHu#<5$AvMIH(!xY#
z-E0yQj8}X3Gd~3)Cj;I09FGUCcT$kslh2=<9X@DynK`Rj9cUG~@cc2nH!I$z&qXG9
zIT)uynhn+M>%@#Q+n~pT3qj}iS@58!_MhUX6V(mm9T;89lF1JCmEA{HWF0isy*eEx
z1{*+JF;l1D6Y{L7CoY`^cAYdbij(4-pl>Xz@@<@E$KY&3=dXxa^VWFK)*rvTAJT%?)PhM_;+k043D2Oj6Pqs}QkB&f+g45OD7IdrTO8ouNE{aFM62`g>p$g|jU!5FieHmJL0DRz
z5OJf1vId2K+3M8oFmb692$Zh_+G|Ql=3@$pQn$x2!B1^j+>m?ey>i8BeC?XT@d|aW
z_cHl4)AUy$D8y?2>kzJthG|4!M4XVQU}n9pE9=5&Bx{kD*#k_t!PP){9a
zk|wb83&Xqk*|AP7GX}4RfQK8ny2Qsr2QWQF#Fmbk#wfHnGXm|j+z3q={&A3+%Bsr6
zXY|A?R^);))_4+v0caqpjo5;Z5dIKuuuap?%J)<8?ZBM#+#3??NFm=In=jS==$}>K
z`Cd{*65IFfm%1FVDw=k}ardjSoyMDV8`7o>+WCvb_9W0%Rl(C(v4t1cBtzJJR9?cL$4&!Q_WBZrCB{65}=kOH}U&
z3#hSY1@0tp!St;7;z}-^>aDxvb)6wfh+aM5Pf2AOWW_E}<{!Ws3YA)YyIeL2CbgSgrB}7j4n<$Vkeljzdp}`GEEuMOIZXZ*^2p*+PkiglrcL)q=ctH
z%{i7@Xe@=aoN1KQ5S+w<#7wbC-VDRu{M$FQ=v2_DFNCzIa_rPWK4lmc{c3l>+v%8Y
zVO3C#xfPXCxb1fP#p|9oTa_tWD%UX==h!H>7WUck&HJGmMWS5Mw~I6Q-SKe7Zzkny
zjL-A^PkGlu$`be&?MQ{}fJ8;84
zec)99X+u=(cNTJMdWZFWU?h(_4L0CcX
zr(eX#lXHoI$o|`l{XuN9-2r*t=<3BTX6~!Z8U_8GS0?_~6XxEypM5R$zXkY!mD#8B
z0{=%<
z2G|Go?kYYKjaVWsw&Yixwg}`6Qx_L!*XV7$~pfnwyDd4@?>f14o
zWHs38-a3|z#bNkF=wuzB=yoCGb%*m3_`gL^|6|D}UBD-@pe&ulyC^IQM^%r-xnWpV
zX%;!n<_DYtCwB}!XKmYKd9YH~^oKS4oP9l4>XJD+3UNwcf{b<9NkPST2gN290!3pa
zfWLoio36-1iwb9TBpl3fsds>BZVM+B?y4MfSxV?r;NTtB3;rG1e@7VnFVf*Z@}FrL
zmiAk&+)b%%{_B$8-YNPD2Ne}Lsz)Sb<{k*lyCIDsTcH;6`kTvyr|m{M0{zy_+?D-U
zx}_i<*y0=qA9ZvTniFp;=Kdmb&Bvi_=Nl7`7#vh*`tvDn780phc2!PW!HKH7HtKkg
zvYC_1+rzdCn`g1HOof@&Ud0}WdiCM1=z=;H^|z=XQprl-e0E41ZIZWHwl{_Kfk%=~
zp+I5c()zET{{Zp3M<9x!>wHNPNnC_TNdOVRO<&eTCsrFuvuXc7x10X6_N4&FsD5WG
z`VXKT4JG!BX`D&!0F3+(kJ<0bu9B&n
zz?;m(6WHi`ht
zU}D;+$0@5xw-k=oT}T!g&9tc?U{>E(p=|GKP^5=r3m`GMo=30g`OTGgLVwscWq!G`
z${fZY{`%Ga19adPIaDqPpb*wkY%>d+D~6^&**w{)9Uilrq{-wka)t1SXiW|1Rt2IF
zP=%4p;+(@mP4D%A2?YncfIO`hm
zm|!k6-;n-#Gd4*SA^wrX_p673oU_Uiyy4n4W+t*ba$+fRm)ai|F=&0ZGHSi8Hmc8J{_9Jbb_v!
z+tWgLyh!%$@WIhzwhJGF&DhMm$$oxm8Z~iJb_a&cfxyqKOQKs8aHx|;PAq5?V;5DdDNmB5&zziHEk_oU~khF0B%he7q@-Cs@n
z_W8^zS!0RcqEeR#Oucy1ZA~5vdhB(cQZ$I6r0S7Tb*AqhE5Hi0S-_gOq`ER7XBGZ9
z6~nlP%o?^o#f_uop+WWGilNJ%R0z1ODb6IOj~g&y)Ss4uD_w)8Q0Y*Kay6{o=i4%h
z#behoQH|~*Xun*_KPS16n;r(YgS2BTO1=*7mf_Q^9iQ5%K42cDZHll$@)M0V@rhWf
z3YQ%oQ!@T=1326>=x$9uSSb~g6S2q9hnQ_MkJzQ~fwx|-afJ3#Hx)QFDf8kKU?5<2
zwK%e;W5JN55e|?-tx3;D$=uY#b)Rq?JzRaM-Wqq^A%fx7tnxZh*+?l;mVWIeg!&hr
zsSGr~7DSM+=A-zre(mTl(hIuA{qoq#{^4z6_7Vbt+#~+l62X^!MEx+XGLZOU_ll+;
zXk_p55AbDb{Pksg?yv3L%-T>Po{FF0thPzJJYwERu>kG5hgHp!t&8|ugOqM3s6ilz
zA{F-A)18g$7jAQpdowWSD6)V)w;Dlv7$Fbxu(;?~-*~mAjOUm1x1mGd^PwrXsELeV
zk)CpVhFPyz0qr0c=I`9X29mxQg*XmrKQOtmn9L66;wcZ91fSWx{WORo7l@|QeSzYi
z7-)^cWXYwUdN&tOgn9|JCR;z2nL)e$W$;>0!N;dcMJB;mR_DjrHt}RDz&b_~#U}mQ
zHi+!uTYQsq&~+Fk$|
z5J4hcK!}QT5gP)5B#2TBLXfKXLg=AK5d={PMF`aZAq1(?N$4dI(zxfnGvC~~ckVay
z`!ku$*=L{Z=j>;%=UHnV5B*7QuV&J3l@<>t=7z=G#I1?pEP8CI9mnR2yat;;7-k=u
z;swiupuey~ghrM>#ZJoG1U>D2Wdjnsxe5q%MnBR#aRh6F_;w53z^!=)wQJM(wbp5V
zZU=Pt6OLT&*`{1RidWgpNWtvNy%(S-D7mJnOZPX&t@vl{fE-~}8lG(5>R}wkpmY-q
zZJo`nibop%$mDmsqk5*d-@TZj`bl8Lzlsqq3fy3x*a5v3+Z=7NI&XZk{nBd=LP)O!
zV-+d3M&FcXqqGENs`p	+MklcPv(@-{v<#i
z7c-{h<=?u8S2f8FIUidjXvnF4k=V-u
z3Y8^YcE59+!B79v?50ljIc;?6bzNzR)&qB94J-xM>0W<=1F)44)!340+tyz|BjF6=
zHCxPEX~f-w;y(l~6#xJttt*f2!`|sY@u?hx^V5of_Z
zIO*OY^h`DD%d;-;3Tfe)JDMep2d0U8aQF(G<0CD5+Ap3BN1YCbr#cJu6^>I7IG<<+
z{;2%JE!PrJ#3v&@3dRoqPdlXZ{LX*Vjr|W>B}bz74lA!=sU*?fNaVBom!!95CvSR`
zYFn9~CRxl03Ep;$zE};mdb+6DAwFJU?K?}~WPX{=2>;!hhRF$ie83ANew5z(OwMeo
z^_rQ8POr4H>dTZX+A*N|Fu|((0uKx=y=hp5_mGkQM_RV$;@%yQ5$ZA^9C%zh_7l&Bcmm+veuAnSh)=jM=yN
zVvAFk97={fU}`)&Fq?_~@09i)5YO-;`!3Reo%_T9@w$xnKQc|ck7&e`D}RbS_IhR)
zFSZirCv}d%{M?V6O0C%H)m1;K_+F=S7$cVHqt{!P7HgpYweK?d_Wr6#)gvi;{X6Yo
zEJ34L?dm2CUNRn9-t0B-!zkN-FZB`PHXMc6Wlr`uwrN=gKTP{3
zlx3x8(%x&`w)^w#%do2_BdSzZnUGaT$Yh}6h}jFko9c$5Cb)*yP9*-
z41Uk3R*e8^mRirNX!0W?wO{Xkae*m)TRN$$ezW+fm70>Ty><(=^K~ZvTMF$8nz@x+
zzPEoUqK1C&eZ_MpOTM^Hf$_Zqk3>ZzLk$jcBvdOnpMvjCJq-7GM48HYb*#_ZHyh)x
zEqdBQJIVC+<9-zC=fRgpm%ym4Q~fK2->XKle&lDfQzl+F+drN$$^NWqzqIRXpZU+z
zB=@!}eReB*_viM8f4%`W>)Ivhej&2~FSH@I#2R;*X-=Yd+%LS)ra6*Z+~Dq0Q1qrA
zlzr5D%3it}eCsZUWa(9P#Z&Kb`=R7oP1R>-yG9BS-N{Nc@*YY_>a3K^6_w*I#h`nC
zthk&1M^3`t!wwS#;|00JC%k*(W#evAt}LUo`?I5E;IbDHa!<6o%~!7r*nIy^|fsL;f5B+9F5F)!8^>(
z&3tupr*=m-Zz|cR
z{bTpf-YXxL?^(E;hqS!aD%+GNJsrd-3VduW)bK5sAfCwous7_$QO3h>k@D@odslw!
zeqa>_s&B)0_N`t}dexLkP)lp?It`l*csH?XXY2-(^Kg-{(!Y5W9o$(FcE`ntyMinp
z3A{3L>_W_CE9LUPLc49t6MVD<&Zh;xI63@{wfoUmeLLE>`U5(woHN3pTbF|F$zLMi
z6!QGMGK3g4?J4`b7{`lGY+E0Y*sIIVQuk+J?+bq_3>X?=loSjyo|&ta!T|PVjoG-O
zNw@X;@?=t$GW#>V$!KNCXFTc4RPP^N9
z#72>MNH=v{xd5Hxnt4bxV%%X;Bp0kW*vHHMu)X0_JnlW6@*(?VhC5L!zcS8rf>JOZogxylFoj#zOK~LSgC&tX_`vTjeR_p@&SXn
ze*WsD&GF+ETB7X(pK5gb6kwBs9e%$ryPdmR_t6A!{@xaIet4W}Y5^K_ImNELQ(98L
z1G@TC+-;%JP-O4xK>=Sr*~#WT1L4zY)lig{o2Ah(p)FHA*;hPy5i}HUI*GlX&N{F8
z5BpO10RqrNye-zet*|Et`Gr^&VZ(1C+^7PN^^fYjdYd&)pTGReE8
z^>U+GQ!0$Hr02YVGo02Z`6IVP)wdUW)Y>*e
zCEkz?w9s)wtc1JcFw6G~ln%amd^z*&t;kjA%`+glVCN}Za7w3jHUl<3-C`1fvBB+!iiFvDLK5+s%5Mqzd
zobJ;zqnjUa6wgkKZ*18CP1Xa7e8nd9KamZHT6F&==H^}pwXgb
zFi=;>%Okbx<{3urd&3>jMPz;Ga>rPWu2@mkO~0+Z<=yv>t*YQ9?8d_{r7>}%zt>l1
z;~WnyN%+jTR4WBa<+)!~6Kz#M)c2gpErLzT?*j3Wuh=Qo%=lxRLPoAlnU5bIkjC$?
zL%MHSR?(CNFxkcD&j}S}rg)rcusvv|G8zj4eB`LF*65z^8a0eh6$@){rJ@I#4sd;T
zKyl>+Zh~0(l^<*4338_MGw4nz&OURJlJZ>JYYr|UoM_N3!RdCsE0kFdRFA&`VF
z{J#0g|Lb|nDod!@L5Ls!{_OgEr$F;&($K#n=E3J65dT
z*431*R`dRz*~q2bLXuE)!P=dgqxKgcHQQ+_rytfzi^@%~nUke$d
zy$(>Vs>a&AQpwL~{q_#On`g?33W}3InJMFwbHAt-MP2>u3X%&65(4SbtZD&%#($dB
z{&z0&KsPzz$ntc?4f+J=u*KKb&%Z!&2`>M7%tdANIG!D{@xMnmH@!(c*V8wrY=6DQ
zN}VJz6rNyvc*^w`VRlG7-EsjjmTLSuxRP|w~3I$9RdkjYUu97M9-;<+%Z}~C>qJ8sX
zPVw79U)jP_QQ8@1Z=QImZrEK2H@3%noZw-0}(
z#Xkz^umh>rHfx`Z!tVoga2Lp_&ku(rETwDk*85#k9U`-oW8LGt1`Q+J9zJbjD;UrN
zkGVb2J#eR4Ks4Z~wdno}Wkw2cf7i2Z6Gy^|frbQw8wEolk?}XENA%N_6m82f4hgD#
zD@Sv&P7wgsUcHr`Z6ljMd$5XSbngIX7vA-(g*y9|QQysB*K4vB1Q#<+ZTstAZGME=
zQNMS0=0?w2wZ)dyi<7Dr{Y#cDI((m$^?VT#?C5mBu+Nh0f~K&Rl_!Y|9#JbZ#DS`}
zMM)$PpU#g26x_wO${gQ)LvZd!Wj%Cqx$m!!8m)#|KfwjgNh~arOtjeySjtt_v<+YF
zwX423t>$^3!G887{>)>8a+-9j*Veh$>jB_tMuQyYjSn&^Yb;+C(~*WR5wM6cwNL8Z
zE%e6wc%Zuq1!=F#<;Zi8oi-+cyz-Wb=tkY5{`_Q{YYh%3D|Fmomam5C-&)!#UAyG(
z$lP6#%92v>+!iC}fuE%rh38{-3Fs$D-KOT|`<;T<(DoQAiYNRw>=R|}8IT#J%Wip8
z#Z7y7-}|T}Ld~Mt_U<}`mnwwZ)w{IWWpONNDI)Z;+r#4rWxWQAr}V2mvr`k3@p)}F
z=Jsyk_bsP$4|bDIpAc4)s}XB(mpQ(+pY8TWRs3)AiIQR~j4fsg0lqCZosnPvOuZ?q
zCH#}(zF&W~KhB+^R%~gC?5h({qFa8APzqPCMjnz7G$!q?qD&0k$Rj>GVE-^*NFN5Ly*81XCVr1UkJxBFirHd$+
z;v)&-({ZWdQ~5ayKLu>NM6W$Y7Q~y`Nw&8su~-SgpL%vfPM&#eU7v!E`dbZ8fCBC@im0KSMGLzWeAuDevZwP*1dGp5O
zGpAZ1c%@c7fa0
z)zp)xOIlmywbiU{q}rdlCaQ@R3ECS^ytW{t*;@0ZG7Y-WR3o&SnKk}vcWA5uLe3?8
z2vR>2(Kn*_hA@F(Qq}~d-tNl^=?VW(?#5snnd#+HChOB+0^%*`$eGM(W+35T!
zdV?<&imP~G=k)N!Jp}n#Tl~-y!DNdKyYrNCMPcJ3Pgd_dYrg?0j&pwBu$6)u=&aH&
ze2~?UrkGXjP|?&B;Vzd-B#!6Obk
zK*FS354)A_&hpLvuEg^r%Q+7lbmh>uYWsEGX_j033Ko)ZG4u%A7QuF8)pgFelsEtB
zxZws$Y{`*SA#)+$=^ZCb4fG$VPIy?=hZKky%B=+vKPQkMlN{dR7sw`Q&Xio_a~m@$
zyR$yB?~_RD>0U~Geqi@p)v+ik&%tpRh0rnO{}c2^gUCe`o+BkkKA#Z
zgKzGw^3wNxSDknKRjJx>cvT^$QvV(<`|Q5K(zeI23UYPb-|4BusK%ccUe6swQD%Ee
z>{o}%lEB{UQ2$#82TeJE90|#iLd&nI$vP~}{(9Gh=v-Nc=jEaBL-CF72n7XXNWP)D
z%ZC(?=?^?JsLjIfu-m%~^$I2s0VLRX!R=c)NztP_AVWaNj2k|-j2f;?ZTzr1k4hbJyGHeeYVJr
za9dSNF?Q6==xOZLw$iJIj+{UA6J=EU9gOpQaHC!D;05v92+eb~FTC}l9JAXRgu^3p
zq4D7ze1&hH*&IvSib;r>+uAq>=6cb(L;i>W2i?`1A9GG4%MR_WrDgTuhu9pzVrJGZ
zEFEsIk@SMUZv)=pT|JsDBXW-%e|(xb$I)|gV+7lv(5JXKCYd%e=?{fOYh_P}9ekr<
z=U5}~T{#Q{F4W(}AN!MZrrVw^7QLbKKr#96HHo*5w`H&!pP@MLco;tl=ONy%eyv-J
z@#=S$A;R@Rp=WYx>vi$ryOn9z_(EX-ZjoS6>IfPqWiC#hq}?dwyBs)zxQRi$ISV`1
z@(Z1QO2r1fct=}j2h=oJFl+Veh1~am(*bIN(;08P3-NiYX2)&hG9^>Aom8OqhQEaM
zfaArP?alI|d!Ee2ZnQZ)m3J$NTFP8g{rM#Z%V>w>@WM8~z>F7aj$pN3E%nR~dwM?V
z{6=ZhwlT9Uw2N*_7GXW&9eLS2)%PAP)Y>AO3@%GE1uVY-spHbE^g3kSU!jY3#8;%o
zCaxe`X+wPq^|)^8vHQ?=WSe>J!`vSGa4&`MJJ{c0`kpJTMMwl*F5`?!So_rH%Qd>B
znX^>tkr
zKNb-;f8YIwU*K-PZ!^j%Dso5VY{Bp4j-aFkEKRLUE7CP4`)x%Q3NS9i5!bC=dO-i&
zzN|8GBtqarkEsOJJMBeQ_7L-HIj;rdRi=YTF&pCLDLNP7R^9IN#L7Ej+xPde>;ieO
z*P&DLk4{Vky(r6R?6E5Ekc9uN64pq#5LXism+qRZ1TFw^l+*aZuS`)*Qv!kxnR0q<
z2_+WpiZHtOr%ig#ciQ=b2f+3>NQK0DG`422p7wnI+97vr2X{7XeptT-2(jc*Gx^*E
zlQW86ew;t|T?sh-e4ZTm=X9p6k@4=ZfU9aWAHStx08Z=-NCJ~>@D0>9!2z4ZMtycI{1+Gg9Z%13ScEfC26HsY`4L$L^snoF
zF7#>sB7PAXg)IBTMhz`OTe*-c&ZKQN=f+?_XyGiiX4-}~Qnl?c%&L64g=^ABEVkfk
zc(v&H=ZjhJ)669d4aoX(mX|N!MhHJR(9hW%@;JI_2NZ#pps0)>Q{wc~UTiPUt;0r0mgz)Oo)X5!??Y~9g<*i+SsVtUf
z4G0zWZj};iz@yQ199Gn)#azC`7TkT3uUz_qwM^#__YtH3_CQt9D1(}>H$b-;hTh*g
zhHm4+S)N07tO{g4ZUSPw9!wx5E>_F|Jsng&WH2(FUpenMCsD{>;^n<0PVk}Q-=UiP
z4lZqlP0%C`{tT>Qap2y?jKvF~sM9u!eR_}mAbZ(-QBnAxo(r!z-~UFAwJc7=(Ky0G
zhU}pjPO`IoP7~IujbcM88CwPbvtk;*fI|!HD1FIgZ*jKJ4CW4~2*MiyDCR^+EuS~W
zu0=Dj#K6#+Eq^irO$_7{;Ov~`kuj~>q4oLybBV3M4#NNB5@p0OfcNJ>;8|_eEuRip
z8jXmJ;Zdn#tNxSdr<>+n71IIqVGis{5Q^-u=)K0+0bOqS#MfNXoxv8YPO)W?;OI~n
z_#fX)YVq$1eA6rpXDXc*s!W4Rf8cBCkgi60F4XmlqDR&LpdAM3H1yCqYX{^@XHuJq
zO#_d`vidhxSfRx*10C`o3)(DYgxVFvRKRm$xYEU}QQ~-peO2OO-59`696=BEp!2>H
zDMOn$IP>DzwMpd5_cue)IC6hAlYz~~mSuo(c*7Pq-oZaRpr{>C2x?{)wlemOb7rM#
zj18P#zif{2{0i8FJqYKa8M@CXs@mDqI~{J4gkAsnF+
zSf;7X+iUPGef0e5(iJqJKOm^G-+R@X*aLtFX9y-o2-EzcjW!jwHgL2jQm1vR2E2Db
zUaLMcYyu#Xb${^&Z?S|m$kn_w2~Q6#R-gcu@0d373_fU
zGHdj21Ttlqu!y4qb^R;Quk1it5%J(98>vz?c!$B>?T!W>dCbLCn?Ank$xR;LW&#?}
zuaHSKfL9rP#m1*+^CIuoWG$;IWo!}d{1oj0S({_;fkoA0?Jn8pCsSvg>@xx=m9c#?F5(l8Bsc)A7n@rQU3ci4htkp%j8lZ5eJ`Hl=^UHFXJ!M+@h>sCE
zT19gOrI#qblUs_Ol&O>Ck6OOxpf}LpQInizuKMy>a06s{0s7Z;bw6Zmaj_*mkXpRC
zSTq_FavmbX4E)3uqOX=hWYPYUFC98ubnHL&6g#9E$5Yr_t#yJVX7Q?ZjsEpK?{!L(
zY@vli$!PYwh+sVwrwtFolctE-qidc%05COD*Nud~
z=B&5in(&)A*wA=T8X8Y%zz4oA{jY^B>3C%w9z~dF}DXLz*Kwl!5
zp?di;6Nyb+^ER#r)*kzrgM^L%>(pRo13AkTq@r)tWi;Jgg^wM}kCkN4jN>f{csaD#
z3V`GLX5gLW!SnJRI0pip<~Is%-T|4=xi@JwbuzD;zNNjGsJ-5R7FnOvhmM}9(y&zB5nqFdLt;s*zOz@9w
zQ^p0rLB+w&cRYxu0B(+jNU2*6((yP;U>b9?oYh1QfL;-sx#Gb(yto)t3vrxX3-#S{
zb@paD0q|G|rk2e{&sU87pl@VI2CynvX(n}-dI%0tYlLJyt3@&pJ@$V5qMDy3c(F+Q
zEpJu@owkloM?};@Yw9#i2LSV=6&@8G)3AwKky%jX*4?`6%Zc$KUSuPXO`n6{Mo*ns
zxZ9BSIr6r8U+&minQ2iCF}N-RDo8OVOs{%vQzG>Qp26!;?9?u|L4}7TSGU4hh;F2J~`3JaX7Ji7Hv*yEr>JHzTqdeA}sNDfI(zqf2AoGEL
zJAVxIsc9utpHWt7*OKNIS;TjJ!MHRFgwPHs0HsBgu*y@*&j=v=#*t@xXP*OK65j!}
z(PL}8N|i*|pE=s|iP~CtKJ8!a$78c_@K$F<4==nQcOMTnFfiyygT5>cu=(ZVu(r{x
z&L>+q$G|XtP?8^>wh3rqZV-z%p8G*>={s|g&AJd}zd9_OVxxyTy$t|rZdph?C6HCI
z>Wcvkg?Jf>Eb8pU{-x9l=2s-d{_v8
zW_YBGIa?KT&d^u6g&9TO8Ltsze-+U1)lxk{%$S=W7`H9#KpTh~YFhc>TLf$@D!{9z
ztb`r#7X9Pf4k(q@jc&(Q-O}rxKqL@HM$r>n{H6teeiIj2-iOCISPJI-1FhG;y$y{G
zzHo}j+QS4Ibb_mBTqN!kK~#r}Fh-4rOL(oiuMofXd2a?ldG$g40Iimb_#MNG!zo9W
zLKp4XoYhr*ozhTElZ@nbypwEzZ0HLqCO*|Mhra~0>B|tvT;L^$t;tX+&5&1JCDsEQ
zQVf~4zUkW6JZ<@QIaGh+gc~~C8_xPS+u)GD?l11PUv4TaMTi4aSb=JfvFeIZBYg5a
zuNW2JJh(xf?sk5*QV~ocXW{p7_2~W+gFuRvY>xgJau!28y|J&3{fO&|N*BJgJTC2w
zmL&45(NSDj(y;@6=EGbV1-~ho8VtcQ-}y
z#kmGMplIamAp6V~)OTVHzR4#J@l$38b7@w1Y)9ra={4c2D-dTHxMAEPvL8npWK|BW
z^ZjGcgvC&lf#5bmGtu6A0`&segUs%dx1_r^;Xno6#+w8GM%&<#tJha^cqspk&8$#F
zx-F1(CDA`r&g(HLv#|CgMp>ORIvc)$#jK!#xz$2PSm-*i8?Z@E^btp}6SBd4UG5dv
zQhgpis*OQeI=TgIU~|AZJsh$rgYC_gTBE|qmKk54FVQ($?DT3L5?xHRM`0bBi}^}G
za`h%C37;A>;oXc-C-WM=tfE8w@8<)NxQOoJW=u@8*;t82{4C$H9AwiG1sg(hQiFej
zNp(wrQfL78O2=PrkUqM~mtP7Y%#+F&I~Zu#FFuK_ufAS}YM-PSJhCQ2QsRL%uSr^s
z8RCCH;l>xS
zga!ncurv07L2*6XV`ZM;5V#FJ{e;UdEX(2(s`ABoBSdZ;k!kwp6$J+Q78H=k;}Dq$
zAk_w=oIJ6%^QVE~iO?3{7h`caoZULf#tYb<`3^nYmq0?~j089N;}>RW=reee7)Dj`
RtqpeRQuQ{|jkfdWe*rBiJ(mCg

diff --git a/services/web/client/source/resource/osparc/img16.jpg b/services/web/client/source/resource/osparc/img16.jpg
deleted file mode 100644
index 47088b967aa869613a3fe0d60c43bf29a7bb82ca..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 92737
zcmeFa2Ut|gvM9XBNDx7iC>bOUIZKo{0IV1W3DWQbU<}ZMUv~_FGngEN|9(K{)XOsYdi-GlroVb5&3kK7l
zZNcFDYg;fee(?~%{KXs3?+<<|;1kpeaP~ZXf4UA3owdS3UIV~5{Q{gnO99qFXu8u$
z;2uDPkB@&2pXl5WddCE?%T2B{~a#JbonpImRF+BqTmheBu20
z3*_g|pC?C0=gEH*A^levoW21_@qwE_1{MYrfJushMT&9y0c<3}X)A^dC?yWYSpWq_
z2P^;s6B`E?5C0qiAvgg3F%tv8#QK?e0l>h2
z#GJoHK;SGWz0>~L!M~+Q2r`#9Wk~~+s9h%Ozc>KHyC;je2w9Y{r|zb#$H&^IS$K2x
zq*bu!n^%8wl10rZL-Li4sek1TiqtLXFKs6vKO@8rWB%R7|
z0NWn3UEt}!?4Tz0Q}uJoP6l@ws^_9x=>oRS<(Z4ICY$r~(@!VDb}V|vpr#nFYW&;S
zRA`(I8{fysm}KsK?vqy1rs5#UFFsi&*8h6mV~VRZ*nF;Vk3SvS+1qMK?0UXZol=DG
z{&u%isTy5FNj~e&1@2q+C0G}EC%$~FtKN95=IS6^|E}V&R{rEc{^WtoLcqx>u-8Th
zb)C*vn`|l;q{h@Nvuw6=gGX(3Fug^d0*J=JYmHwxV+!t5hVXw34LGD<0mfe9u46=B
zQ=pZ9)q4Or1)>a$$EdJuav~mHl%dm4$x>I(L6(*q)QMH51!)U!KGmtYPd7tR$HP$H
zX9qy{x!&(>iADF?@4Y<*8kuYjVs8*r)V%8R9?96ixV;nzSN>wcBw-XHG(){?dJ6bt
zs%dCkGiBL?jz}vSrnZz2-z~7ay#O4u;DzuhC6r4tCfE3vV7(4G9D4K3Shr$l^h0UT
zwO046RYzXbt=$>f`+MxY349lWfGsXPs`s{APd;03N)q8tfpRHCEDw(_2mfmOL7-ceB!(GH*DX$fP=s#scT{Wn(_3HcMKZ4$dBC5w6oVMGIry
z6N+P?Z7UChzL{cWzj?&caS~~n_^sPCK>Nu8=AaZG?fahC7ZX7!{;kJ^eZnb`f)#Vr
z7JE~Y8dHV?tnX~g#%dr$d^>4hVDu-RE~egIFg>-3kEorox@&GF>&N@Mv6@{UY!3(@
zO6N>E*$&*fpSXNtzf-V;#kEaqtb+Sx`{NDi4#T5WT8qz5AX!izZeqNBxsRzuzP!)A
z@?bx`rQonJRW$BYa|%f8%FH4U6K`?2k;Vuyi8Tgpy)JHQXN6I3;x@J&k7<^uLHjZN
z*p4H8jB6|N-XF}ABB@kjU4tr9cWXb__wJEJ^{h>tM1Q4IB01L9Q56(;L9b)6Wx|@u
zq8&j$+kLVih~rd|yY=95NswP7D%&-u&avdVJkyPZ!!EXh1v0`Kv1s`R*r&jg;ded$
z&mfo>Pn(gN;n(8J@5Rp7Mq;~ID4lokBbm-nzIzlnQAz_Hrf-uUat-LsL9uu%Zzs$u
zjXtY><5zg+g#ME9Bn+OL(eV(DCltRWyJz>bjc%ui*(%nf12WYRWp_EG7s8-L$H
zSA~W_LczTcqQx8Pj>`_iOEOT}7h2y8A4l%WCC9E^I|T&vZ1C?Wh>^seSmz!}G;OJA
zbq3gInXl?L
z#|sLAb-~=3ee;YX7(i9YeC^6o$vhpN9aL+8a)9fmsxBCT3n@!3xRCxG;vq8e6gV9}
zUB6KD=gvWphYt|D4%NVBMZd#<3up0PqO&}SGsMCl`RKPe01&#mgWC-)Po%3S5=^4E
zI)JtZQqRi8#qo>+>WqZLojsk<8E6>&ly`JTr%BGr>e+jvDX!Zi(PhxtKX}63H7%Xs
z`ijQ-AnHeDKMH8OySUis!I7S>T2=@cm`Ma^1MYwe_^|;P06hQ>AOTOn70n7DaQ#IM
zrq0-0cSJh>ArX<4r@bT6-ua9rn1Ak!T3*9M?T0q5p;=%;zzD68A3~7*rNvsVNP8D&
z4=|4k`~vc>Navr802^uL{wtwt>!I;0A@A-i|7XG(`Da4i%F*Ljj;1Zr>sLb2$x-1~
z0@UN5tgpiyZ2wTi4*>yPWAaKN6?Zl7UQ0A3p#Fvk&$!5uspF#f<~K1%(C5jew}g7Hrp;WG?+0rbo|{o8=`8J+#NS*QPB^3HUDW(~Ftz&J~x&r87BN#lp+_|DRp7(a5+a-$_j
zkF_5<$3MgTF^e%}K{WXNL+f;C=r6oz&`B&P82xBFItidpM3|x=KmZs3&fp4T4}KlN
zwZ7w!)s(P?K-NA!w_ZY-{qi>I@-$3M+<7!qAI
zdcXka>G5j}g6V%6!@%`lWBrF1y1$0K>9pm1H>?QQLUt+R@HXzp5PIFJXir676o@Yz&IWM?7@^8ou
zf1>}9oY2Zv-o??y{V&QT{lWjb@~;fA2%zcWjMnuzq>C%~D))f@b&Vr%1Q)~qfF-gz
zTRi^*o)GL}yMHD>o3ZTZioka@IGklR&fp(27j5bIF@%52R5S&EmjXuU$&mqmZ-U?_
z0C*+~;{5<>&@S-XZt&Y~@Y`vX^JInwc#_d2D34T4!AXkur?7yL40OY|B`jvmi|Hr-?54=k`tKoEpc+(Dv
zbd})cb@t$~MBjSwz+9Yoy)9jN`FZ$w0ZAEeS4)@!9LZn>2X~!POkZC#GBMa&OEDP<
zYw&5f%ERsKReasydcK>=ST#dOA80))|M
zUM7Y!5~PC^)7iZQgRzD-gS?A7oI#jJ1Onq1;$sjM=iwLO6B6decB?g4YRKeIb9pgDqPYEPsT6DaAACOEnNV*9tc`U|0k#(z!f
zsOI~XveSYvz|v+;3^^S4z~m?4EmsT;b%wvY1;b7OR>KcfP)qZ
zxD*rmmJGtr4-pX8|9MNsh3-DSAEX-KIIspy7ylZui?zLt&%Z*dp&_|)_{GJn&g25iE4aWs
z(dt8&|1oT>U0@)OUmB7S6SNW%vaz&+2#bn|K?H?`U=T4exFEzzSR5uMY$lusNYhaT==
z^^;D~_4#80>A~IpfE?`^&PJt#B@AtZlVXCQM*-ZL=?}F1->COrYse3_w?Wg<
ze>pmSka@V+Aa7f`!{uzjuJ~_9AMbxAyoaUNe=YjIHZuMPMgK#sFgr_UTR6C~@-m?t
z!;4;nesl`&Klj&J-e1f!`YVt%3iCH1Oy7
z4ektXEpCISv(s73d*H^T7t
zW1^cv?yj#39(^&XLHL5z4;XDLzhL_V7DL0}t_!>-!BhcZ?jJIM5NNRfxm`X>{Tm}E
zM^CVwX90b{CxSa0pilegtEnsCU8Vwf%ohdt0CDi{OAZO%b)YHbU0i+6tp5yhpl0FV
zIoSzx3V^$FGeDhTJZHyaJ~SP=&(Kc*_^x}_7Z{X%f8ty+0YID?ynl=O6K9nS0JSdx
zfV%5X9O&T%kbw8|HSb(4-7SCc17nOG?Efz9VIzpX?*wUyu7e&6)2FB3uYxxVC;&K)
zKRrFnIz2tk2I~j=?2Y4JJQ8KmCC)q&fB5_TOEKo30qa-zOG&i<9pCB*h`aWyHJ41mN?N%Ly=3oYT2ZX~`l;rR#Q=+A5w^
zKC@!us*pRurKSO4wi!K<;BTlb1$_@iB~fJGSf+*7nZs-u?mDe6$ZGHWm&xHa0FUjuR*{Dd#JE-I*s=Y%5qtcA-UmoM;E_-xKn=GKT^(o3Q!SzJ%}ni1xousWI@33Si^3k=a*M#
ziaWbESEqj?{)0Xq$)EU~0xKk-_8Jb-!B+z4WByy0|9b=FZ*)2MTbKVfT@L-$<-bjr
z!@qU;Z`0+-Z(aV|bUFH4m;W|hj{Vl(h~wahG*9aww6_65p7
z&gAJyT6+?nPGy(xDSz)!^>t49I21vYNKQV%!X9j%B$;M_b+kz>c^AeObXhGhXy@$*
zN4Y%k@AZ77EIyan-(cQ}X((6@XbBB}K%s1yNm|{MkfYnPY42-|=0o7;d
z+{dt0D-B6QdPLew$1>$l^i{~D&Ncs~h=`@PPUauDNi%&|g)}5uvkvZsCBCCbB#iI9
zOFuS|@@1V>C}!c@R;f&jW~$v)^(u9|@e^lMLs(Y2GC&qZP>1(fwK@fBU3pK!q3q1k
zgtkzjtx{-1)GM^<=|4m0u?P0a9LvoI?po-bod^H_v+pjeWUr^qU2oL%8VEn9ivL4elK$7rfq2LHVDnbj6a9N)xYaq^^Fj)t(V6Djr-
z$Et~!U8R%{!(vq4Ro@DDY4P}uT_4c&lC43Wqv*Lz4!c{eHJuf
zsK;+Q2h7dSS;ysEsGz?Om)>S=tJ43*!;HO;pg2w{H#4>g48F>|CNncL_~k)it)hax
zFmf+Sk__k8wn0{&Y)&*nH|eHu9Atf!X)aAF$NwF6S)vVHBmRlMbd9?(=NtOTlk@3?
z2kB%_#+*kJc7nKKGc}|QQdZ)GP@0P(k==P?B+a%!)7M{1z6OOSx&~)kdz)0GJro3M#83n4ZnbezeK|=C+=j
zHamZksHt2icKlMpEjyCN!4t2a=;WQ0jLzcbs3460@f|{>a#aZy=;EygzqDtLm5Lek)*3-1v)Ps;LSGf9hLG
zZe9Ew_(_I?gx1nTysfj$IT`!q5I2tRE25~9sn=S(T)xPc^{SQ2ITr{h;sFuKZ+$P0
zr5X3(6$2dBXE
zj-2xrnHBY&2zP&YU1ll1Fzt(nj}?a3G92zYTI
znL_POC(xzXSpK|jKE|5t`b@So?ATbwMdgwSb#dwCyuRBjum1b>Mm_TskURyp@#0T`
z5B^%9fvNHI|H`B3i|Cv7s5I*Nv@DD7$PHzdp|_R=pTk&vsBxC=zFC@1DJsjmMKwHE
z8U)RtkmBJ#c6wP!!0Ko1o$7w>FlxkHh)QI*f#WMgt(c^6Q0T-zJHfR&HiYsJSH?bL
zd8_)-%b>%+9tmANPr=K_C#&skht34BWlk70z3j9nEcrP&Qsf44`+znk~<^!e1Pclo(@>-N1a|fS!
zE(S>=97IjBayq8ldJ^l_)P*a_nyNmu!VbQzf8x!>>UbLGi(osVKJgdPs0ti!KX)k8
zmzJJ4E$p35d{u;-o5F?K*H3e@b*N`S_`A>u#l;q_=uFW?lj~2FR<3;ef-;k%S*?4N
zvhS0y<8}&&nnB?ndF(;p52`FjYRtVvbSp~Fpb8D%`bpCe_;Tx8mU~x@GgJ&4g&ic4
z(A>YmxML(8fp`|Cvw~l~XfL;qY~XvVlmM0Cj~#D4@xLbjVpktI`)JioXRv%ZE2DWx
zr#&ZD=dhrwx3sa!Ks(Ln=#cB0@C&kb<>5e?MR#9Q-g#|6ap+Jcu0u2NPOOt)$iw$r
zH1D57yEJ2qDXja(RVMrYG`x3LDx
zQX%z8M%Mzp28VjdHLlIpYCaKG(9R!Ik{e}D`S{>joX7V39e+`$=Ki9O<11RT=JX2&
zGTnK-NhO~i+kc+E&wO+W%q(-&adGmI)3@&4+lM?1x}_lFL9F2Op|u3bVjMnal$J)5
zClU>_c%5X-Prfp?;
zh#(r^kbhA7iws4;)E1-FA>Jh;&Zz3kGb_f+Cv4H~OwY8(io%0gjNBXq8u#MYxs&hF
z>ZG0m%qOs+Zm~}-M<4L3wr2_l3%ZH@u?noa`iXTynP!UZFX|0lrZW*{I11fKT#;A4
zbP5=e4kZ#N$*k-nXYt{NV8BQk3E|>65U50z9j&PJ#uKKcOm}IpFboWW>9VpQb*#*Dh#q6P_oht`)iQW}G
znQW@*7Mc&rZ9LCg+~PJ#<;~j&DCTv*;o5qhhn0TPaUMwJQ!T4-G*(
zYNDPMV&uz0^GuZd1-y^ywr`bqbI8Om%g2nHb;%2LSJkpdv%9OetJ7&xKI<@`SNG6U
zW{HxW(Wivn!eF_hew+BE0Api_nPG@&>QF4!!qW1RX8EV?>wZ@=_URf=|F5#T-9xdc
z(kKmH8Wh5~F%7krfQ3UI`q^hLI6!B_+)rOQc
z-X_FFw~biyQ+W>N+}HbMlH?xgrQPb0;_MoCtqV@rAvC!
zsqTyzQIIDl_QRNbJj9E}$sXg?&PJ<|8gY2*mQ@9Iy>!mvA?gVVb>Y{4L)#HV=kIM0
z?f1$TUy$}$BB~GfZ49D5jf1h^qsjZm?p4~bIIkU!S(Sosk+uESD%qC#>Kaz9%^#h7
zI9SIyU#p6p*mfVu*g{!e=&y&c4R0L13T*0EG`bQ0*1&&9jqyf8XC?I{;|)DlMaRe~
ziT&tE?(_)-g8Ro>&+jQjUst-T*B|(B?E5m7p!o2b8j^8M<+igbZ)2>KQRoE!rL4yg
zwwR)<8l>0#wVe;b>IQ^@`(-p4#R~aDWSz5JVVia^qD;AmW1wmm4t@2o-KEZ1T|AOm
zq?b+}bRsAqGhs)m*t2=1X3^Lfd(@x1oM4nbypF4BFI`F_(F?O-ngHC*e4acaq+~l@
z-Eln%l@NvM$Z7-h-QcSHXqDVR4YNd#Tf6NNDfb3rWD<+am%>k;Q2rs|*D*pBuO3fg
zW`}2h%hK9%mtmsJ$|=CB_W)zN@rAvV!}nG4Z9YADh=zJGjwHTysyz>x5H?|4=A)Df
z3JYm6ez|0*H@+ZGxNg3<)JeEbs@k-Pqawa_LeJefOoypM=Q1cqWRIl-
zi(HYgq*o+cod>z?^KbN=fyF`J4<(8lu4gIly}WpziqZ(ksFW(27+3C(#Z?{6?m0*e47%lujQ?u$
z1pJ|*+oc@x^HO;Gdk1N8W-Yk|0#%+bvI`fJU!&r&$D^Zl3YIqB?YJkBz7XuweBjTI
zI!FwdY#bVou9^S5>QV<(`pC?<)DErBtl+6E)S6O-a4j#&^bI&;U!FYV?tBw`=>~Oi
zHb;e#67~fjY~w@mWwslKyEm8T2-Dtv;>1ys$jsJNPJa4j>-%{gI>BWk*_zDGU1h~M
zo%>6R5|tHt+P*Y9Uly`@vtNtjusYssI3hx^xaw2Y3sXPJ;e6KX=Khi;T?sgN_3$lr
zJWWB-QR7I+QLJkGsGNMrN%@3K(_l3h2TN>EH7Wj=uC@;_?|Ds@FuV6Fk#>DV`SB;!
zu?;w|CatyA)(iHU6*brI22{HS;Dmfk*t&xC_K2jfmh#-x0HamF^~O)D!}(-*lQ9)f
za`8nrpVOLhSExAeyiU9R-32jZKb4E!0cRvHCxDF!br=k%e5J1~qi?g1j%4|gZ;(=?
z^g0376GJj~B-L=pGe_a)jgru9$cb{B*#pPj>_LDSovB@}v^B{_{Mf~Z;qFC|0ogaq
z*#jD*8GBEGY5z*cO9vzeO
zk{@u@3P6QSoND!!in0n+lg>$QkrKeJ2y>?|F;a$QZ&IwCbn~oXJw=r8fInwu*!Y;V
zWh{0=!h&+}l0DA?T`)-#MNcCfDKBSnwN%Q!-{pmGBW|_Z(oUP_9Vfq+p`Y64_=HEQ
zsUx_1AtEKwPUm8xjZOSYXs&Kuet)rU7uv>{Ji*U5Yiiwj!a!H#Sia6J}R_x%`7fyen`>^lfb6|cPWxjl%ktrsEHwfB+}mm>}Gns4#{+_io%B-n*()$!@1K-(%2s#mKFNUG#|FUOL~273TleJkBth
zwPnRZvOSS^e>A0B^BB@u3VE-0z%Db_ao_mr^rbH9S=FaQ@tILnb~$gqmSs&2ujCK0
zzy8pnKg>m}hO8Bx`|j}A%q*+Pk;ckiJ9$@A#k{Uq=|~+jzxOphd$%Vwi{*X`2-(R#0S;
z;v8WQQ&(%68%8w8Ygv6FOB;He7?ovD5UP@y+$>@v9k*IsyCs+XgicBVGEf~*i6Xg>
zP&qVae6wFl>%8=hz|;Su_gGE4`mM_p7bq(v6bekc96MAT#7HMC4T>A&qZ
zcoxNKrfiz1Qrim{80=fOI320^zYY|utkfrXM2<7LCqujVSX{4!i#kN@B3}&u0!yy(
zQ?)A&CR!LL<=Z}KB^=k+WaT=t)*D2f3_r)D)6$ZC+DQ}c*tk)8@dlZg>DI{jY{}}4
z6o-d!?r+WO$My0mnh@^MX_Sm-)2zR={LzU&Ri7(-&0In9RlvvZ$mFX>Y0&wE{hivJ
zV=j@H(O7paDQAso+TsU~3OAz(8w?gJnPp?0=N=(nKeWXxQ;-N^qF@~FVt!G-@$fqR
zuuS)H!opxU)3@_^wCOXa0BkJ#q85?%OJNEP4UL`QZ$mIQZOL;{O@r+XWSlCnp^Jul
zYvp{DiZslXQx)0~BKqFJ6zH46d38qYwcBxOATS9;3zdp%AF9aw^gz1G8`()`*2Bs{O$Q`G@+@fbN8fW
zi7KySrg%9N*Hcb&XzT9^QwP1yS54)8_egBjx0zU7aGvDRDL`^a3$f$kaO>~HD%m#B
zWb3qM-K-kfMl`53umo1)NE|TUqvdP6B|fZzk~T+8%Mi1$U_IsU44fqEdg<42tBt(0
zZ1!09bp-R!CJ@N;A_1w(dJ1&ed7=`crN8NR!FD$7ikIaDJaYJMU}`9Mv?ex!1UR~_{1PUXf{@ns$_+?Q4=1t
zAI$%mW6&NJ{~|Hy6tE!~*Xy^Y4AW0jH89B*&}kx+qcFdBfpi6tfe0axnF_EkQb9D?!+6aa5|8a>S24NB8p!maXwcs
zzN9Vlp_t|*I6K|fj6X-Lu?iTAdV6?2Zdiu7qdT8W5vD()?RQ`6g3T%v3hNje?v+$z
zE67$(OMNY-nRILVoO(5%g4}tYvX>V-C`4R~vXAw-@jsO;rZWkVY;1WDm$o+HMu^#}
z>xpCSg{$Z!4n|od>*Cy3U2Pmy+M`6d7#4l3`Jnxs@yJe`l8v=lZ~hIK91FQHag_
z2r1-2s?oxzLWcmi`@9FS>~og*#&0*q#@@e2Rq!y|rpnBs#n7
z{j5UoF3yuL6C|Ws#E6d0VAnAd`t#Hrd5#+WG;5M1QWPnb|f`=qt9<}(Xzh4JeV7^-H0|d_o-6m(wj(R
zmRKiG#YfpLyn`!);=O?%wU?G!7KWZ&whD8<_~j8bW1d%D+imBKNN8CTBCa{b)G+BS
zWfbWfy2td^V`ia8*3YYA_X;-GYx2?%3en7wHsz{r?<52tI5nh6Svh2Iy^#xKieE1H
ztSi~(@4c1R;mAHm0WpYhTqj!La7W5~=H!CtnO2=Cc?
z2Y>ja?CT59UD>>qDCSg6#w(cnvoA=g%+!lOi%pzZt#CXL;en20SHz6^zR#|kjCvo}
z>Tb#@zTi(Bxv>9vwSZlk*U8*pk=o2VKi%D?a)fh(QFjIda;xLe(3!{b#j9xi`idvG
zxzLYnt|!+EiBvz$`(U&TWj%7739SnHtTJOJM1Bg~ahHBq!8BtTBW5!lM_m;{bg3_%
zRwhVxKp?|}dG$CnE|sl*uqcXTxwabTDe!ZT!2%cE^SJ&JcGRD_
zTs4%R^hfz^G3Ixr^VIWPb1@7b)(Gni;#VdwlZ)b>R``&=fz3R=5v+ZK)xXy+P)7{gV@G7OQOVf=7|Uj#%q?
z#UsNg4AR0Ctt8qo^Y^?ciM1Uy5-s7im(uaQL5oe#?*!6^(YvOxB2Ws4iWzjiss-+J
zVHu@bPZcGe#ZVTKGShF>>YjKCb?D8msJ>5mC8O7`Vns8WPx}q?0WHUHD}v(M?z7g+
ztzd^`Q$hvp(m@gb-RTye%Ac;wov^Ob=v^bd_$ir%#vaMez$
zK83*+)N4E6g-)muKM7iUA?l#7bpd;7QX9iK7TQ>&QP#^T*!0{~rILnGqtO$5{cHQ#
zEBAOUn@6UG3_TFuvc~d|NZczH&eHa)Dm?L&5*;$srV0MOL-(E{SfV}Bz-5d(hGXCxop#1`m)Armr?MDH}ohX>7
z67>E|l*4fjY(Fh3V?y*?dj;;jZIArp^o5}v`J!TxV_^#C^{K-<4g>Quxe1q!pzd>A
z4^g@Doa?VDC`B{|>a$Thp`Ws&*(~9fZfj3{1}{I#2|;lSiflVz5*Z&&*jG(MGpmrOp^yrjtD)4PsgVmINJCJ)zxUCO%N
z8=svyIZpJfH0SAE4C`_fTex`&^b>{o_x3dmGYD!t_Z^KFqgHaBLAKu(Y-w=M$GJUY
z%2^M4Ujakr79@7(s=jxb~r3=qIjtQg_lXF9`o1KYKi)Z=rTgd~Vn`R4p
zrGq;Th1u0?#O%VTG@UH%#!b1!57!o!`Chm`t=y9?YqHt60J$c;UQ(R*F*dfafAHF<
zWJ*yZ*dVJbNng&&lWgFAb^O69
z&+JAhYxOA*$bTNMCo7fh{V7nJPefuVBFAisJ0WKk-ui6TchyE)f2fW5VPYWR<4f1x
zUhYw=%P)w-bje9r*XZCmhL|ptpAV2J0DqnKZm6_3tuW;pTPqhJwC6|Nu`hV&>t52f
zJ~iv#7BDbwf=s%hag!%3-`4tmE>oPmSx}lPZ-ZhK4h6YmLCbJ<{MP}VIRwVDk39P4
z2^lXk9?D1SA5zm*vkhuk6i!+q_A~fv=Zz>1mE~ewiYaX&l|@`D#i~O2Hnxfa&QLPG
zKAo%6Z*`uve0k521ys3GuO^zOaG%37eA&5?^uYhFm98CIOdgpQ@vYrvt*xST{sF&3
zS>M-_%qre{PI7FAy4S3+7L@jpBz$n&=n<64hisInE=rk+tPI5rbgneFlDhgwzP!81
zl-(bz?bp$Rgsw;)tp1(Lgt=PALBoS!#rOVr!^Z(3({I>D-qX5*C?CEi|fSC1q@FAg;S17J$XQ&}YntTz47MX$%?G3@=_ziP>~WKwpiyNU
zdHg=qG9hxt9V?=hC;nAqBHiE2TluuwU*cWt2>LF4gM*T4P35wG8v<{~nOzG&)UkEa
zN#79bsH#@y%Vk^h}2+z
zuAvsh)I?&1Uxj(n&6(EQe3|qTo}B&(_4XW#g(X=zIWc76lz#0DYC1ZQP$^nYITM|w
z;-dIqr4ZEO$FWIepUI}da^{*0_KJF8nRP{3&}?fV;W<-1J*Ue#d~xctnE$>01FY+Q
z4Wv6^bP3KwJqc=BN6uxevF`BMLef+*pJb{0&_aFp2u&5?gsaK%y(bNr6>eNp(##36
zLV4*2m-~87Zb(s7L^u=*lip-In!fpz$4E3HFH+31phLHX41Xq=5)&UrpUWIA$yvm^
zMXw7zm^#dek-tl*n+8|j*D~T?;!S^+{@pY3MqgCeiRov`(F5iDkS!-&1JaXkU#97M
z@h0YuLdx+|`q`}lRDCVWJ{m_WC8vv2IVNrz%~x8?x4G7-x(9q`;l=JkSl7m+Ts~Qt
z3cmP|hL)=UfWFxSceAxYZ{k+EfWm@YyhRC3Bbyzi+2Bynib;Vq4n2HYTFX)Fv9%hL
zA0K#|!#Jf#%zpDuSYub)()SlbEDicTG={uwwKpdPq4)g4Smg>N*^Qq{c*pP6xh|6r
zwh2>^EXQEx?+jh>dnFMH@p_ZTFz2Q3sgRM(uPrK~OBD+hV6kWw6(SurP~75gU=CT&
zc6gymXm)jAM5HU=}zhO4eQ
zkjUx86AKv#i6O)kS&6SDNZpHV@b+B&
zKflSU5u_fvE-^mFU;wFT5N
zpeIl~iK*p)(bu%qq;aZ7gXR^
zs`)r&-jM_(8S>$UH^m-Us(x}C6mT=w>nmjvXH6!^$PJV+9g5XR98S_=RrK^XkJs1F
zag!pJOiiGOH8ES`VD?qwB6o7N#T+e=^fhqguNuW;xstm;N}twD|RhrS!00%FInlzb(G1t>Wef~a5$;snGU
z=?t&+vEp61Wkh!K-+#GV-v3tTh(lV*A7X`dzf46^q6no#9=kP6KjU$9&^nxGT2eI}
zGfy(OS8erXd6OrpguBc8fN$wY>S1@43j5#)vv}9OZdJ*{b8lRQun&+K>e|cwxywhg
z0p55!MkR6g^1O>UZhCVvvd$Ldnaq>+yqT&(dXtq{%No4774?$zjtR4gX?qV!i&QxG
zQU*m|%C{%8)t~He{2D$!xCUUWExqBFw&3)E-M_dxyq05=CAPU$6=;7Ynw7^e)s#E?
zI8?o`xR<56LbpYa*u8R(l-!;Lkei#HV}BYBNe$AeYM&AenUTWBdcn4XOjdXj2emxe
z;`+{%)yR`jeC-VfOKx%d5OppBVH4Lfn;&-Fuer#lC}gOcfhBy30&7FLws(4EVt|#P
z1n0V05WBRRW3GneXwoW_@jko9ch10Ot#n-t*ZfV+g@UKc6j5pv8Z;GT(HhJx*aDo*
zHLv2^i$6l?M&yVWx?_tXP2A!%Cc?0SPZBAvcn1YcCo4BNzq`RW#Y(W66H0JRIeySx
zhBGFoN&m`FXs6oTt(y>1XPStB#WCW`da&i@H{E-;!fT$fO+dX)fx!|prTp^<6CTsF
z;L3*bt}5*FQgo9aEV>G3osEbYI&P2h4K3y{XCsvp0t7fiY;gu7kc!I;v)8eykIR)gfd+ZN01jemr@FuhD*pHt`m{1n#3L
zOpl_V{jIFrDgM=9mD@raP|XLlGSfB<<(E{3Q`<80((dCW#uu^ZG`UZwDU0Bge-N#V
zkVZ9&53E3Iuf6I<IVZAytlh-s!)L)(gsYsR$DTPC;n-+`O#NvkEB52!o+W9;2
zaK?Q6GV~5q-4gEJj9y>gSx&;f+{5E{BwowG>2FW*5+P+rO)$4Kw7{w~o|u%tdyxTW
zf`ju~t*7!0skdatW1nX8YPaEp#likzwS-OwV|wQ9TW-+i2Cr*2;eqGAG}zEvUVVg_
zpIx^@$>Lo+TS!gpfRrOIb+~;8e`fRKhVElFd%o(NIz)0nPOxvJTOYr{SIz#I
zOCcLLGrEu!=@uiZmv5}?!0j(Un|Yfm+xD&*q)s<2jj?H+e3`p{Z6_$F+kr5oRjyje
zuTuS?o+!~qQ#s90?jmku`EuWe@nTN4Zy}*2g8!P#Tpkf@b=$!*CaH>_=u6pdyJ*0V{|iQ68%1A$_9=9ghk;ihk2g>zOYXo4tZS^08wV
zeg#|<|0C>W&VW{}36_ZVtEx57e&5|bUn1BXWF(x~#DQ95GH731(j;a9|4l_Z)K6V;*-z#>h;r^U@
zL*X)FCw9i3XI?0u*ed@n!+frNW+uG>|8)eh^Z9@#8qk|W^X1AuuC!*w$8jyDo0iG#
zN3VO8^@VY`pWEE_dY}L5jZ5x>V10l8DYL2z>^Bw%#SGqF4?z%Lbjwr>gSAlLX6U}Y
zp;N|e!}caAB`SD~_G4P^@l#QeaV0CGxg)`vEJM}TxkYK-!)DqSz3>7!C2wPC7Oa(T
z9hE-^^eM)AE7>jM5*U=(7;5iYhHZAc9=~GyrXLyol8l6`L}i~?&vo@~W@^}%SEA3q
zk+wrvP}@swR}?NxtZix>&#swoTSGLV?mh#ISDWYWd<-EEf0kx5Wm2r8R@$NS4pYdh
zv+Ue@{;a7j#p+El;^JLD^8F4{`m}r&-{V*E4}C^wyK)S!5n?l2X7s(1W?YZG?AlB{
ziB%;i%uiu)^YOEzVCnnH){(1i-=trA!L!SrP8bS(w?=snyu!lLTW%>QTnBJsurr%-
z8-~8)tI+f0>UzC);xsX;KKSxP7-HuwGamImE~j8PAuj)N=SMj>6Ky7L
z0+IO-X)67qkQ;THc%REAQkduN47fHZaRz;BGbWG}eekTcbl&QvQr-O{Yx#_^rIYiG
zr~l@^*LXfKFgjms@0QYKX@V-Vr%ZmDACr9HS-VYPaalqTu{mt+}%SlS_Zv_(sEBmNoxWm5vbSF#0Vy_GFA^VwMi
z30zVd4y;1n$HftL^M!577CHhgxG9qyrY4?3viC^eEjQeBZn%f?HpI-A6(YYh!b~T0
zN%+ksEg^SFMn$H=7}BjEa%n)hZznC^OUsh3v0JT5B$QU#sJakg7|W58uj)9>RVJuc
z$!+F>7*tO}-g!}-VgJ%|KQdd2lG4V`UMDYN(a=jO^tLzdQr$&7o*~^lL$y%)7^T@b
z`sUzRwu`d%BfGQ%CGdl5+AJR&lpFaDfKODk*W@t#OS=iy^-e#VyXmtEFWIXT~>TJiN&i|
zQxn#js-NZDH|@O@lg%8JRvuYmYwp;VEPk8TQ!2kG=^;I#1IiGGZ~TU{(Q1`b4$A~q
zH$MgCw=1}GO7;Rw7Q9hg4QeTl>!~NJ4N|5$7@0{Oq?^%!pdT1Qf~T(R&6JO0uc56t
zv7tO9k@NY2TV3Sy=*VC;nU-gKmUfKESDZ&$l$vSSIs5``2{0vN%(N$XOeVeVkUt+c
zuncuKczmcVd1ETIs=O7Yp^1YhH#S}Nwaj$R-GjLX12dJ})j%ic!93oCL;rw6wWrqZ
z)^PnxO@EeQDkDG#Z>3qy^`Nj7EB<>M{=SHWsxwc*^qtf^^{}3C6T_(ujmz^J?`c>b
z&?ZAKK~h?D_uoubCx#}i+Ob-yhWl+mvvrwko_wfrA~Sja_3;|!=wjBii8&stcgNLh
zV|%tjSTk`kQrP0<{tKGsci5(PC#5QP7Q$mVER>@RQ&TTs4CQ6F66aDjgaE`8v~Huv
z*^d&K&#NX-M3rUa_&%r8<5H@=7MvEJ#+k|z8EIO;(yPbqXqosdz7xNx|AY4Tbbd#_
zawg1`U81P3G~E}B-%t=OJg%zGy9YeSDwHGtEZP&WxbBy?vtz_}`9rhuhj^=Gih&#h
z?2^8AdATbHA{3TB9tHU>W$!Ax$Uu?Q!@GV_jV|QgSIV?#<#ito7uZ?1b+Z@bKfY|H
zED@%9&(o77i5a>>wBT&J_}Z$j4$_^yt8W+8!}w$`{L{k?`&sWan*RO_Wo%+qZ@{bX
zc6}E~apU5v;O2?;k1Y@<>K9aNC9Nv`5SFMauH4~k?2m}$lsXiRs=}@eXHH$Z@k*;6
z#$@n;dTNngm~J(L?^14Nx1J>nA8~o{8u)=`uM>{djF+Mf#7jF#GuaoKXt8~h8_S9c*rO0Nku+;v<
z_nAx8+^jf!b6}(^u_+44nUGmxLltvQzH)RxuiZs5emvV*=-XN#6-2X5(t@f*yeJe;
ztMpP`Ixq8JXNjmor1xbHG9^ygnGTkMjPKv~J-K1ua&uJP+1$`lWlvvIW3^_%?KD#O
z)=Xx~PCO#6taniUwYO^BYwO?Q`DhZ{eB722f%U*
z#2E;$z{!M$zn&mG!%TDG$tj|__!f*>h5w7Ovv8;LkNdbbJ>7kDcT98SG)FVt9h1{_
zbQ{x0934k9OxHByVA|xS+wbuQJkNDK|HFNM>+^cO-_Kdop`Y@uSDR-Sm|>L#zBE!_
z|2zZ`099;AJet9{{Ax-Rt>!L(NBH{B?naBxW>4aE`eMI_4ynuD&`Gz;j$fK1o1%
zn$d*COP+|y5b+v)RS-TTo}=D`7*6J?nfAl;8ZGJ{HJJz-SM$`5pDV*jkq9mYIF6a0
z&PRWYjtG?=qYEC%s)a#wIfQ(1STl$3*yQeiMW|_%omES%mF6lZlI-``L9J<2$hU&E%(FgxUi5rRxW%@3j$gwX~?_p{o
zK_GAeF$*c<#tEB%0@h^=&Gom#QFuHTmk=k+Y4G_Vn?MM*j%TaujhJF2tj);dO|n>y
zo)PwQEg_K0Lzd3I;s7q9VxT%Ln0hoDsr<=tgoUjVRhX`n`q0@W-%I+*HoOsI@hf+iWS9ytYfhlMS}5>aYNuKy>TG*+h>9{5k!flRo6LP!>%j*{U5!E%qK<
z@55Q69^U(bZ>Ea;>8!u;gn-!kyt511B|j_LCiha-;>v1^;fo9Rj7Hi8Cq{*0Mw&8poS@5MmZZlF4*Jc#G_aER62>c*it0y9W8;A1{W4FK
zcXnQ|`7s;uG{$I@v^SJSA+f3W(b@9;_L@+sI`N`%O{Vheb|ICL>MkOwHv8bL&8t7-
z>Cu(rO`9ec=RplEzmlwpidm81V&-4Ub3!6-t*sr)tkE%twrq(}z}UDTp*jQGUgK^3
zTVYmB^pMULX~=|w8k;(oDH9qrPf=RwP7e#6_20q1(kzh*!?k}
zxsy`trG}P9+C3#3`4+Q5t>3rt%>*JAw3(Q+AyFKdpK3MoX`Q*+}Gsw6$;tYHUK&8#nGAN`$`Ny^d(W32hd
zj}Qt76c>J~(5>yfZeYelQ}@|Fj2#ImdS|&8;nEgq4@){~{kA&t>k2IH;KZx55xx3k
zYN2wwGt`Ny|7D?Q-#nvhHXR@*rP%8&xcc6OZ4WVAm>U`t{)j*{I9D;Uy!F)Npk=38
zlodLty@bkT?4&}
z_E3^dmK2A_BGuwDxp<}a{z^T$CP{&B22Dx80(=
zyhr)OyZ@B$+x4<_d&XFDiaC+#hFWdyA%hl%KeRGg!E*p68^T&!S7EPv&?!2uG}=qx
zyL&&V10!1XV9HdIRFq^bFSB-3SNE@UGGb@J`jKPTL4vfoXBbcjR8k9RQ$Bk~Q4@H~
zj>@6nfLDZCyu%I*#DRV41%3GsAye&@n&rjZOlnSRX)1|gX_U&G51;@6+r&I7CFP|V
zTO+3@Dz^~4Bau4czRXCw@usul{Zb{06w$i!nTbty*x!1xJdNp3{a4w<2VTZ!%%0G}
z!WJo9uWH+|>3yr3SC##w9vef7C}xuRYREge)|#e4r)
zDzhL;wAwUHT5QCMk}6!U*CD}OX*BB<*5xPsUUd4MLN~8OpIip;*>^8!AIU;fV7k=x
zLKlo@EaUoN#altbd+5okc@f^pNp;gDIyEg*hvWi%6puU)kGtG!L&V;UdLKcLYBM@(
z-~_IzRSeX;+Z*Ip#x-wGC#EENc)?gPH0W(olemnFJPTeypDgDgaw5{NTbOB6VfzyV
zL3y0@IOf9LSo0xH)td$<8)JZV_IKkil63CJrDxRDnbeuQ7b^T5ptBCj@?7J9{3)1r@wcmi{w
zF=@RfDnvVL@lX7y;tsF)TA34x&aB5t1{z!w
z|4T}sgVtlGour|HJZq1#kRJIBJe<#YCsf
znO?~m^+QvOICD6sNct0yk8ktu{I0~waa#Br2#ok%ubp3MGAZ*?E37T(EpEk+CA(Fq
z{y{qOR44p*qZNg_O0y0}WU7p7L-x&-A=OX$5n(y$3}wJ^sZ-&TU!?>RsziAP!-@8%
zXr0I7ZkLJdL{eR$6H2OJQziyBW^&`GCNY`SFiv2Qzi;{UY0y%zEp2uTyedBDXl0fx(^J9NswoctAdu9MDs1qjbflJ
z_ex4hDt!5n{-z9D{EoSvL&tIzPT_vavAm_NQe6peprK}^lpC2en{nn0e)gT0vMD8y
zw*6uzzMxcbylP5hz%Wu;-&~@VENCuH;){MPLq+Q%_16(Xy2i~U<=Y-#bUW?S|7br+
z&5AGH9<>5@ls!lhfIk1Qe>p^-fu?=uL}C|VCdvD)L^c&|=!eqOM5H<0-(+beT?t!o
zC$;M9zI9v_{s0=Gz+<0>Jsb(uI|UlJdbaf+D3Mf84gw(>7*|70V^R|-1sscU0=eS)
z{M2Vk*kBAp%e8-P-KqU~N3j!(Q^ryXG&P%UZE=_w>UgZ}<}z#WWnlLu_=?==gZdh5
z`zrLQXe11W|3cCVHB{;W0+)4_F~RGwtnFdLwV^Yx
zt#j_*2|_BsBC``XF)_9-es0B}d(R8zxDjz7`>*ZN_3J-7)o%)(NR?t!(%L}J2
zyr9T2xnTU21ApO3YT@=)Hkccm4S`Bqhg;4C#Gwj(=6bm(3spvFcV3>8
zi^WC+J9eyzuoNY5?t!y~(&`NJ5{vs7YtWod~-LW!vwHCT-S%Fs{Duvb)dTY1Ez
z3KTTifaoR)FtRG%EUnin;c`l{4OWa%fb-c@ACPcD`$Gp76~@lG%K4I$Aa!5kj6Vmf
z4T>M3tG3m3@_wais}PU=4pwTXb}RPu__mhTk7}k?qv)@fvV$e%R|$E7TWs<*YYthL8Z!L?UY-KRBeGNl1f~`?{pshaAAJ$u2{M)LKzaUBO6Qinu{#RKtG5Ep`mp*
zacD=i)wLm>$^Ou{`-bWMzoRJrq)I`syxe5&&SA<_nx?^NmqO*Ei%z7pCkYpSeWVJs
z)bKx*0y%@LIiAEP7_-7{V?OI6eoZGg(>Gi-0+(Rc`lI~Q?8??QZlrajmP*rP)5htk
zS1F!P97-F)p<7Jh6WJUXv13@=G@
zHuj_nk=o22g}E)TI<(bf>y+1QOA01)=^zweNtuVJn6-2$>-+-e>gSapFZOaVAgf|P
zIhTa+*#W})NtuO+EE`g#nBhC%yvGO6%gZB&{bXzUU#BgoT9AxlEs??D=NHiwUh$E8
z_Fr1#+WJutVCgH}L4zbXx~!b51iL9OCY`N9x>OkPo0sUFMNLFlggU4+GVZ}+X0jYQ
zZaOklo86?SP%2QbPhkkY!>>X-cGl$X4wmo;`33#C#SjQ6OSg$=bBS!Mqf9mX4%AXB}x4jv+4gU_4vV_@RzhAU^#}
z6KPuY^`?f`Kpx0o-FCZGlMc+nPSOVkDqGir5%5wu5VH6CXjaPW7TUtyd{?3kV(XkW
z;Tqp8+&`Of&zqsJ%Qf=$g5-Y)fXpR=fjG2KYL!=XS#n*LyXI=?uDpVS5!X^n-qIX$
zQQL;9O2tuKhU_YyQXoQ!V-)ef#`!v86SU
zbeu>K0(u70}eDdW0%?jg#6}FY9N7YS%Bv?ZVQSLQP?Au=1v_p@Yy`n{vRV
z#szvGcyqv{a8rbGM4qv=7F%C66SZTxC#?QHPKa9=iOb(rv<&->Jrn6DnzKQtQ(eQY*>a;EJG5f{TWGzwzp20WeX44F5aYea
z2>?~_Z)Pfv1g}HKB$ZA9ihmbd<5zM0l8?TqA%a2|`apRT{nUJ7F2@yy;T)*UO{)?q
zJ0v=Dnp)j7YT_IN^YaO$tI(`jGL5Tl$5LlrKoE>jMuZS|B|`$EW%n`n%Ut7Lr#$!y
zjhQP;Rzc|IYj|&*B%g{=DW}L?=6A?(A!_PpO9!1W(6wSSmDL4^{@O4dx7gJorW>+`
z?pJ*pRLpgKxTXC5ulCHo=*SX_B16_V;~oTw%#hW{F^L4kW8&TlLZ>CwMKQ6j-K)fZ
z2kHHXfIBXzyUR;<>hj+8^uvNxGx4vDZ`PNecAUV^f$}N!byrdrbaP=&PR`1yPDvq=
zb$70VmZ2E#b=KWQz3cF7W=%d&X5=$wd646UjnB(|Z`*dM0_&qbIPw93TDzzkd{}`Dk@n(W5&z_I~4A_xD|Cal}u%r)^?nd
z=DRO7wmtQvs~qC?S6+G9WHb#!Cdp*!?*d1
zlT4ky?h#>rOzY~4rYDY9y-!=Z;bJA=J5yR+b=_Brnm8M)YP?+d)Izpi{#GIst4*K;
zC<8cMSQYp9(x;p&N87OO{a$5}T9<$yCr#{F`?RGg*vxM!+tAifH-@PW;K$=m$fjZJ
zaLieB%;Lb;9jM}VHbOtklH+(xRKJormc1D%gxZtnay~yPKe+Ooe#Ny)%
zQp-&Q9hZQbAuTd)5av9e7E!cfI%+n!u!h4y{>z~UJRo_5k|RV>A=|{rKCw!tIXa#Q
zks?vSUlg+!LX#Uh7Xw#J5os51ch>zR0;KX0O0{pw)cIy7SIEoUPyy~_=h~-(Icvy6
zaRvZS{A-;(W*b;44-l1(H4i~@HZjg&X=x11X?0&DiDpN_^yt=eF{ePwg%N1*79g%UWrcVomRed;aY0^;>pL9v
z>vT0@(0nmpQ`5Hx5%2xUmjjLjvq_)mO>!bY_cq;9qZ;oEt=^zkA$5tNUk(R(hG5>!E8T0{(
zt&Ey^Mn~kVfBYBJh)(D$QXTgDybVc7Z%MjWU2WvWE#&IEe4XQwdFkF3@w}}jvNy*k
zw(SZu%sx&PaZy)Iu8>4oM3izyQCA)IiXVO;piw#a&S{)Jo^2e=VjAp)v7PQ0gyy7N
z7NeTqzG93dD%D_#wNdzMM8PCe)liQ}a>DUnsz0w-xj#jUMwG`D_q2qH1l$a=AV$OZ
zUN0^DF%hhHL`NYk_-{r-(Bcb2h4DvuO!>%cMD^>)J&W%D^1)s=_~Dr
zzqs%0qu2U+k3n5we1i4|8pZO+{R=dobjt>(f&$e&chBljKEhOVc0g6;7_|4TMidYR
z9CqjOFd`;d72Ry3y>x6dpG>;V(x%2$iZRDyGIS=^&4@zd6@)M|q=ZX6njfV3ifjKS
z4j!b6?xU(8_*c077bEplY)koHYh`0F_OdxH<)U~$9Lw>m-Ft>rBkFKeeM|2*sO)md
zK5&p2k1sbjvaHBJ*J|xV!9{qAxBEG(mNH-SgFvMZxya@-rSM|oi)oJ69R(7Lk_xYb
z8Hi=zK?_e>1MC(M`H3(A)Z6C7YFA76V>Z3NdDJNL1ERd~9i~>|by=iX=Mgx%WVHAz
z7Dx%zk0cwMnzIb>8#{juwp6xa6h~;HnOpaoP7@wmK~d-8S8KuqVvbyxEFl7{VImaQ
zZ+8HRp5IzWp0&U#`bFZ6@ah&oMyo7J)?z8{
zK$VBHPIr02b}e>o1VRf%(LLzJV>(`j#84<&lx}e-v3^p7w4i>Y5+#Gq>>#reA$FS8
z)@Pebc~t4MNi)3}T^?BJH$5!B6{ZuGef{gkJ67eaat#z#y*BN-Px|XIht`Qm4Nw*jE^Oho~X6fp@K`A
zw^N~G;(s8yE2BHrv-$@Vk)+K%t%k?;U^_@v0&Oewusr937Cp0Jg%T>I
zO8Zi7fPq^hpZNOvy_3rP!p9|dX0Bc2)jbHY&`ge+fk#iiR_dbe&u@~fdKXs=MQ_Ma
zSJtwTGrv~IhF+2d2w&x9s<`whMV4=XAWExDd0zRk$Zq+TB#qwz$gjKjE$}nn(an0j
zwrUyvTWC{wU@|-+?idXQODw)n<4D5QC_3X6?|UPB<8GY*Hl<<3A!W}=^8t2wTTAQN
z4^96efKM$RG
zr2vU-Rm&>wYCo6p&##O2F{ZdS&xYxJ8GLm=T&eml|6ap
z5hob{vx3`<5?hbbivKNY3OTy7m4Vxg1G4F6b_wYC0?}(yoS)HT@S&;!DOcC#rhN9e
z?3$+R!MTanT6()DM~+lqG4zs@uM%vy}!ofzo!fm5EyURqhw3Sx?rK
z4WZ?*huZ6C$aC>?$(`MUA#%!lMLdep(XIZww0<^LqWcjIhw#$hUiX^GsQyljS0!|`
z?KLN{V-2VOA@H6^_!^1*_}P)?n@Z=1W#f6cY!Ihw(I=!|+>cIQ$f@0TOav1f&T
zMzN24hAio5t|S@meB1uem8Sk|?r!n#n8JYdV;z$p9ku++yx@Ys_$#+d*&}UGNQ*nl
zS7TX>?P_P<-|P+G#V6?^)spzN7ze<-Xx1$Ho>}a@_zcqCYMqOjD8nVmn6*hEf)2xQ
zTb+Sa*=SqE+F6;Imc?4yo>Zx@r8%+TXifnRx+3T{+lyi%Bd%p6NKg8r^!Jt!m3V+E
z>4Y_7WqsXHyzq6*35k;pzvT&4t*TWl9+dzE#ZN4;edX3ZCY?cFO2758n$YjrD(@`!
z_t=%PzJ&06u;=L}5xI3J-cs+7C70mP$v&0d^fYIwa*r&IP}XUyaXt#_3=G*wOV`BU
zM#~dz+^bWt+5|RfPdALh7MOR4-nrD5JEcUB{W^T)SN(3PnWHfPyIg32$Nn^*O3a;D9S<w$-p#9b6OGS8z~C4Z*$35SN^dxU5vi1+c`sq@`a5doQznS^8rcR
z2eOtQ=%X6v)L50cS343LvN*k^-`&D7lzA!8{L7FB?O3vjX&{;4$MT*stiH4D&xr-^
z1OPF(X<@wC)j|iP;wtNOq?i1vg@*tUjzzz)Sy}Yu&T-ixQAnrQuZpHsT~KfQ{H-3g
zKuP?zG9v2(h@~3nZ>pRfkyrKLwU>-2Nomhx>n;v>C2WMcw44uzW#y}WAG}Hp+EWk0
zF|(@atZd>4v5
zekWAXu=(ELOq>z@Qol|z(DybeM&L$`xP?3KkMNy@zZM4pS+ZCvSMad-=kj0o)zP?_
zBD?
zsOqm}Yif0C*8`MlovZiEosUPeZ|WmvD_dCSb;Cy`$4@qv)X`%ZWRJ>Y=rIVE72jlvC*xkG)NSX`iDVqa{mDy4y_4
zc6Zy6Z_Rs%ZEMg(R!_UN&DZ2pwz_D=x%NNF1$+q((bPnD59tXFU}gzgsveo|xw(HS
z0|MSr&i}~cbATZsb%;-&e(5P!I|%Npn!r|x|AX|#2GCeBzs*9uxXiaNAc2xN+OZ;537{GVK
zAy!re?@l&u^)0_p@2hf5XGRZWhG=hD)m0TSvVsma7XcH?VaDfv@$H`pQ1eMcv*U&I
z2>8~pJSvqpYzR|tuPD=GU-!7s4`7vN#U~uw%|88ITV4&+Q;xKcX2x43!>8AcwF4#1
zzoaWhA8B1ff(b^r=+_xzkPxMq;oHa3;KU$bk$=(s+benGb3I0MpMw+4jw{P$rqSyH
z6L~w?;=lS8igr7_^yJu0Qq@5c3UF{M<7Z}tMyY}fZvG9sxSX{IHGW;3{RM~zU82L-
zv_}$5uSdfH$xP`J%u>eZ%A(KXbZ_`_0=c$Wuj2f`fC{@<;Ka*7QDHR9`zeNZKlRsY
zhsmp0UpsKoPpe0`dw4y^c%_vwa)_8nvKbZYHdwymSvc*434$n)0muvG$9NMkJgNp4
zdgeyaR!%0y$!N(-pg;9%JSX%PhZ-mLa20HUv9oF3f0r}XSLHd|KV+YwdVDP99lSSE
zv__xkY(PR}ted1zogi5ok1cH}f)S2ZVuo~8_a{o5DvW@ezW)rQp89G;T;)VGKX9On
zmp1D#n~~$3EZcMoUh()gTRMhunEH<~gKc6}h%kP;(a#M#=&Z%UF?V(f2&
zQX`oNj$7{hq|}XoBd~k~&R8fU#o}^BlFwNGph@~oub}$-1OMXvJ>+KmJ=ha~psTCE
z1!zG@iW3hp4N{W0d!MnrN@|>nThF*SOD%TOAdhSDtJCE39L@GmHCs;zi9x(92wFW_
zuYd6eCS-#H)oO8Hb3|DLj3iyqB4>s5C|
zg&dyrihuK(h2<35LYTv
z!44!LP}I;KEIFk0$0GuEX1N~nWqsD3CWPLx6HUQ??UB5mY{ZZ=m3Bb~&;6KCzck0X
ztS7bqg4Z~sp(+?p?@5td6{w<1bmI^15JJD*QhL&pEAOiN$}i
zx^xKL8ciqQ@<^;vL{`m3`05m;+vzztyCnC)`Fh8L?-q|6TvYfV3RlRUA*wfQb>x`P
z6H*N$NmnYD%V3r*A=X_K=n~%3=d}j>R3o~+x|h0uo~Y?7>n(;v==y*3YDh>uSO)bz
z+_JQ+1%wG|ClCShI2=S4xbf$mSD7*yKUU4M6~q~n#ey)ZIH|)BvUaN0
zWT8mCOzl#K@XTh^uRo2_%KG=LiDax_&9=kOitD}R^!rC3`rqI~`_HyqtuZU!J3K(Yy^;sFrdAjahQc6e=(s*(r#P!_vhS?feZ!)hibV<-)HK5Kr;3YmgXV{aW^o
zuOSHJ>*c_VS-j?=qQ_owTBpaqUf_$^A1-y{*`>eWpnR-?dN4UVA4~{l`1h~IRb9m!
zT_d6Y!1*0ybvhC3j>Je!_e*Uo_-~u5iSVwNHPh1BTxLUzB1FqNj=%{MwH|Xen^Ot5
z<}(>sIWOo#u7c;BZIT*+hVp%;R{MMBKmNMK_Q;7XYew)WA@aYPOPl1<5ky{Z|C#9O!CtM
z0X7c?rs4j-mP4x7UN%24O0^5lmRliKO+$`Q(SL{e
zHFckS(b&z4B7a__h(W^UyjsV<9rd=RpNg4N;PQIo@t
zAT)S~8>Q<_5A(H1ECoxVM)L;=P#ojTPM_G-dI8XzqF_5Yyg#^TT5(man{NFwk{@8@bWlDjYt$ipfJJkE!Rf833Apd^
z#g(eFuM{UKCbhD`HPM#ZHBmo5$-T?(Z95*-SYY)rvI6U~QnniL0ze6ofb%3tWqECl
zVwI4Y-p$V;ht3Cx_Gk-1J0?IuP`RxvBg&F}3CK2^@ujMuM`f4W>Juo6`;;I)#V+Kb#JFB^)=uxQZPAmz
zGm#eMznlFFow(L^8=D1rSX)tbWNZh5w8Vc1lPJv({*VaIS}MFj#3vIR83NKR5sp*K
z$S?tGnLfpO~(>>bGd>zZH@Xr|L-`OWVqOWVs>Pw6);a(@{a_UTTaua`q
z6ko)U*xpHdt+cm))>3!pUTc!&C${8NFD|*lq2jBe121ORc`j~rj5ZE8nVx!{KG|qb
zWU*1%+NJsP^6X?*KOp7xTrDOR-kzVgj6@m*f;{hY>8gTkkSQ*aOsc
zBlcY`5pNcPN?V?KF30;!$|IC|!gD!*E)$uIf?0TRrz9n@{Sw2P+R_|PjuS`S8`BtB
zb4#WE&zkR=o3KyJh&|pRMscF@9>f$d?uLx&$xCS>RDg_(?8?TMMQY8?xZ`XtMMygt
zQ@n5*7|%^i`Qg8W7PXmx1araSxX5aBz9Zf#yx;BVPXlx~%9F`j!`Cns(h#@9*FG>R
z5)l;xs&+?uMP(Ca7Wpb%e)50QTa@MKrJ>|kfLbFDB0(aQ(rxsZr^|DZWRW%}>bXQX
z43={~qatbHqhO>Jh?~>uE6M%ptw}dwWQp`4Q`6eSN~?@1ic8WPcltx8hiP4|
zPBS@WP?7SN7$`)2KFtmdD5Uk9<1EoM!ZQK5V9e~a7u`!Cnt&uwo=1X_An
zOF+tLycS*#;l4&RiPWs7vzvAP3Bi7H888W{avLRQ))%wreX}DvLs_}Hw8i2wNS3I(
zh)Z1~uk7i8j6r9j?#cR21XWzQc_VXGZ~e98<`!*Ttlcw4d&g9*Qe}{lz+_e=O5Jha
zcsE8|dPx|;F5?#p<
zGj5W#u*^rooPhL*)sB5x*V6-YU2M|dh{E5MX^xDBUij^=H#X3dP~<3&*q!K94&Wc*
z@NMnQyNKko0j)>BLl09vS4W)2&33xDIr5gjxO1Gu5`0QF`Xt@8%hY$c2`Yv
zZ(1qTe(VJ*LZUU?><(A*6UN$9HYQm;
zi^W>w!PU0OsqUYD@KborS%H@ItgG^Nt@K&%iAOPu7+CRuq$Ye(x2K6E$;f4ky7R3p
zFBaTIO}}X#rNmY9;`jhv>P9;vzHTA?Sm~Fj0z$GuP4}JAHXz5Ry
zRneD@OjaSM<3NgMdE*ksF>uzyb$nYwr3Hy(!4JZH!UZaC$ZH6R)X|`evHFTyJFj5A
zYBXQRJ=?K8{A&QemawK5NqS&>Wk_$bj}vvfqP)_cFEfNdo`*RmU~@^$Vp76fQH6*i
zr23$*xh#Bl!Pym{)95cDQi%h=H~q)>%2PZ_5AIh)(%o%}AUv`ldJxmsN5GF-OxDOm
zFohqTQTN=QZ~M;GJX`jC75%fe!IUUalO)}8bt4IIs%rZ5y3G8|lo*XTU;iF(5Bhp)
z_!eW-B-GmQ#S5FB)eoq;I@%sJ7))j_v&i(gqNs=`Ms7akmMNkkQO82k~n}M%D
zI@8xg(^s_fcLs_6L%_lWhvuhfJkWGb%U$hV=7-_~KK1WJUs5_@dpCM5S0^{HRH&rA
zz1=&PT>oDEW;!{!l>l7-n8*Rd@(>MGEC~w1yE?)dGAUR)$!*d;-U@$mUPOi8bS9=1
zmbtx6h~rVJ93g9bm>vCZmXGR3cx?uIRqL|M%62Ht##?$O4}lzD4#X#i6eesol!`LI
z-_M=QYhNPapGmXtG8z^J*3JB}?=R*x1+
zZQ|82>AE5YzkYM-d#nmWJ`Sy$ky-+9dReC86`tc^HX*;E{V&jA-OOt8!bNvCbV`kck3dLE4c8vMn=e23x3d9MYX_0T>tNGfD8tp&!dD2G0o)elo&9
zKly7tXnf1_v=ExnK!h$KzANObu9=pN%;o4%UXh3GQIQ7040a~=(PfzVBxw%R_I3^m
zabsM{|KNRFL;I#FRCCJM4~6c(x;5$Ac!RqL3TlscBJ#kQZHN^6>_g<^41o~_ID
z8igZ#8{)wIM-6^95Q0A2a5aDZ;M=kKYo3xU_bq)>{6B=z4JDoB7RIWk%6F*YTo$rq
zay%2o;q`cj&mnzWXXTX+|F8n0I^q!bU!$GX%{xW6=L%ZP{bL%9M`WoO+q5mr58Ns$
z)EGi=0G60Z8mnvmwp>Afur$HKivJ2ihq(K
z>*g!BvR-qhpF=1KM4i+!o(pA17gx%lVlg}LYs*c}C1o_IUxViL8kf&A?D5McM5)6|
zutjy+ED8c8Cis%~t=v`>_R)F;08Q2dE439fHqt$@c0{aZ>7UM(?KnF1NJGqxU+tx(
zTG3t?dM25#Y%+w9YIE++$sWk&$&kQW`Z6?nG$CR*)0t3*U;DfZxpC=im6LAFX-w@6
zAGPPul^6d*u-Q<5Eu5_tCUT{;@$4Yuad!%(hsHf|6gGJFx~1L+wof{4v#?RRft@wu
zif~L$g`{#DbQv~{7L%;We(k7X#q7}yb`;TV%nCgqna;vU0|R?
zXRK>)r%->ywdfT+5$f`&gup1BuQ2EBHWbrt+zPtNaM1@pGdoEo<*G1KtY{e1udDJ3
z9bB_nJuNn_EBlb4V|*|t>QRwZ2~TOSGrgku>*r%?_9qS#AzOq6JxQ%VkH)A$Q{Kn+
z$U3xS@krD3O8y8N0ka8zmp+Kk*Ly&xt$k-bXfX(F$>WUcVAS{9k_Z+%;V~Nx
z+lj@`&Lcqn_gw;Z6Sse>q@9R|~i(A4>4
zTIs-1ikacUQOabw#8afS{>QiB7xnsF?5vHkd2v66awO6-d`L6BP5O|1_~
z#*a#JnhI*O&~&{|3feJK&qB~_p=@7`7Oq+aNJ*@{A1$CYm#woioMC#gTZ
zT%v-PoFy*Rg6(e~s*dIj7HlMyX?f~xH>}v&Z}r65T(UgWaT3M-R-QOnbEo&pI&Mt`
z!M|lkkQDWS6o?2yjw4$+{#4V&Q)K7Z$dZSHc$-H#v-~H*`Fp}r+qn^&glXn#;Vf}X
z0e*4rLQVvfBThx)oNkzD&!$rPM>zfYDtc`l4vy*!XxsZarvD+t)@o@VurYzm+Tm8f
z`D5lEN*KsD9K02knD_r#6SvjYkI^Gc=As%Llv@hb>B><4n)vz|c
zBGblyDQUTtP~eGuiyscMjL2iYjdvQ+z^ucV
zz6CN`+u%`)|Ngf=rqEN2{}2#wq_?Dp-jc45fs%j-BZX6@JfjluyBz|5$1)Wzhte#e
zyous9dporLKQe-me|?eTMnPI?s7STS$Y)aWhqGC2flriQ%LVpKK9lCP?oTXO*^$MT
z6~_o{kM=tg5F>qa%xo3AM6)srWBKJAym~akLvdb}w5Gu^V66F+|hTYD&*RnuNsjRF%0*LbyHI7@qDLSI-H?s8J
zQTu}2F(VDZ^K9{K!vZb-jERrYlL8j`gr~UAD;*y{xbMzul<3LqKBUR+4^jpG>}@#j
z9Dibr%7J&!j}yp^<%lTGrLr!oaboTm1RlHE%M<9WPz$TUJaHL}JDiT8%inZaHqS%g
zfTC6o9M2x&Kc8yYOP=Rif2B(mK0i-(5QALz(9t>+5JF-giLd67CCu6<|*Q6Txs5VDxO(ECG3VI!+liL*b_3=d)2*L21=b+DbZF^3%0U0W;3iv~hh1*Y}KKUy@T?%vt1RRJsKyBG}C)`WTsKk|}K~&g6e7IK}J-(
zj$_a8QO2L0fS1;WtU!j&{iM821>PXhh(&^-5Y8B_y@>CGY``S+oy2HW``Sz8i{p#k
zi}OcWBkLh+tDG^M)j}gS?1di4`ugVX$+^M)iCDp|new)`JZ|yO1AcYcp8v&kAhuh!
z_kEJ@Ya8ecU#B)5KGkJiE|`Q%91mrRySkZCXQ59o50LQrt4a0kx7?V{iQNs^!M9k(
z)LNdGcQl7TO`AJ?7O>29#SnWo&`w?cJX)r#pInj;dz
zkQ}pQ$`NXC1ZnY#R64y{wU&kSW|uUDesLZN&P|uZq=Rit6tRP8%SWl6^6IR9Lt4S_
zghiJO7_!MwJO)y^IMVb7rV(e}u5eQZNxP%&FNW>W#PQq!Khu>LRJ&O=<3+p5_)6tz
zcvdYm1sPRcQLA)uADhEKE9wo&d*4(7-i|`6O2v#o4hb1}eK9@fbulq3*xYbO()1@!
zbeMB;*cG(}fWwxmw-)wimHdTwU0^0AN{OulRm8roY!S|kpY0LD=qL=JCVrT;*`E>R
z2{pBuzWiCc_EfU5WL!FzFr_e424;4R$>_+~(GeiBY%;owq?PxsrZLPiq!wP8as=Y>
z{PWS~?ZoFZu_LM^8pVI%{IV%}d{A6{s&It+drTNFXj)#S^+}ph{%cX~zxVI@;tb9)
z10NtWROQ6B0IfkCkQlZ;8V=fH?f2c6>I3rhAM+}V>BFix_!>vsN7|4UVj70ypHW{<
zsRc((HVD0A<}nOBcz?K#)0VxrThu78GXyUtsmn<~m-Kc@?R
z{uT$6x;R;{fX9nd7m7vss!@_+jQgYzPwkPS9GQ`{5+i^s5MPZ-Zw{zTB+Ua~iVhZo
zcYmjzF(8?#9r1jBOCO!H*Ss=;2LaRMO31W=4t226?#q@PSVH
zzFc(04lrP3lhUE4+m+P#na%76!o`VvD)=kn+U6HjyOJX}@qWq>9|13dQaRzfps7CrqH((63fa-Q
zlF(CSbDW4#{eIi(mWuvsL0J;^Py`^YhlK#5BEtn&c1kzQ2n+SzZx{Av2`IT!w?tV_K4I+i4BlOAU
zqB2=ni77Dwni&Id{GvODN&tU2lKG292AR%Q+jpb>pK3awHUI*l6u@U0YRDbpI
z1dqDv5E3X?AmHpgmgJO+$mRPmc;Duwaa=L(8XDG5C}*q#avLcqksK_gS(3Q
zecvN{e(bZeN8R=)@&t3cr^XqV7;5*ju1>tHiYRXQ#tH6C?a17+H7{B4_Z-y+&+%_h
zQ|q~z^R2BX;OZYMyMM})4cDZJ_~RkKc@?X7g`JGP@HXKM&bG0=wgarVZ}Ohklovc-}r!R1pT-TIJa6T6F0PA_BSnyv9&IJ|jmTTJfT>P+zd60
zu7ieOOlz1Wb;IZsm2sx6ZDhW3*sgL(J7t_(lgJdtp5;bAu|r4$wpF(y(=!~?+$*xr
z$6XFs@F_H#$rTHCi*)kia)ENEBgj&b;`UcPTPhY3^`i=pk3Ub&d>9_t?p*u57aPF*
z=&1dJSSwsHm0X$0R(ZAxU?9m@IU!#N=eOc${>6zn}4a+o_oHFg3Y;;|zFu}<_FuFwOBx%Gq<>L{YBeAPcsm_Z427Z08GCRq>TTaI{
zuv?(~)Ha)F7{*>wuh8`iQ|ui=bvE{3F`qMeJT8oVg|7NrBnJ_bZwUccRxF*NAr0_l
zf^_-YycIrt07;H?!kGg69|8uhawVR?AID{RK%0R}l4rYWbQqIL0?x+;OhjU#3XVad
zqn|0JULzN?+Kr%2SN%V~_2>1YrZywEQR7~}@Ae)~=GkI%^Y~;B)TZ*$#8k8M9pFj^
zQo2x@PrI|G1$=RIz(MM5=9AL*d(&Ak7cP%{Wfr}a8DFXS-&zURpw4R
z#&+o<&%%EJ%R{Pd?P=l}vUS;Aee=brvd;=a!J|6F-$y4+qLdq&&a+ST7Hhi=aV-7^
z+CU}0CVei=pN9gO&r7^M8kAHdkYlmIZi>>?$wfUt4i1S_m{tupYkrWxTwMDCU+(lhQEG!y6Y4yE5B2s3+;_e0WM3ZXz!@%Nx|9HZBjJfiVP7sh
z4@7sIvCJ^|rq0!xDpgm;+v05}$h<&OhP*M*fr{GN%u>^AI!_`IBvbzYrH!)_#^h;P
z5Kn}jHDz)A8rQe@`v+cc*Xm?To@-`=iZcG|xgdk&O3n_SmO2ey?7ZR^NU&rh*KxNd
zqs&zCr=K2%ENul~MeC&DIqp`6CN7a6u;5f_DxfMM1$wG?h*ZkkB-VcNu@t7h%PL7kx+QaDIgk;u7#`fsA~OyFHY1QNuI|2%}pN1
z-`QAN6}1dKv)6M>Mxe_b93FgqO+`|Vp)YMe;xFz;+Ih2MyjarW>cl;Gi&@Zcr*%|-
zJ#cuBE`s;b^8+{qolt)j(PBMwQ~asY-xsv|hN__{Df-8okpa*(N0<}`%b@wS+~Z)+D?j~2
zA3i@Ws{3_EpWK`4bY`mPauH8cna|dkCe8l<5SEWtN=?5-MJ;FXH%g?Y$6)lVib!=j
z#larUEn|w>(g-8EX9$BoNE8x#i6ijTn$RB8P&#ZGnf0_;{{Wib<@4dvPOlG|Ky}ia
zvf0H(R!30RH}MZ65D2#flkL=&2-q>5K=RXWp#K0P{$7mWY03>Y#Ql@he!)(WHJF_A
zZf{r@)O{i-WL+odJd1Yp{{V>R*qYaIk3bQ4Yx8tn&KJeYP#u<_)=xB{AeDN
zd73=HqLMi0r!^HCDC1V6i0hiVc8Ch5$rApdNd=o)Og^&1D1}BoD5bG(0i1G$e{hI^r
zv!KTgk#r`ZI+8>Ifyk;3>VftX>DH1fww;+Qk>cP1ibth5(U*ulMy{mJtPHYloE!zf
zVfQdlR*HE8a1tmO)5w}lh;qWm{5`C+3p1&BZiol)L{6doB5VAq)AMb2ER_(dJu_8g
z1O4m{A88#l*GX4Pj-H_I>|}38Nj&K_4m%YLlFuA0(JDq}u+=bKD!ks_&7uhujAz=~
zMD&#cEjZIMAvpZ~Jh~>97mQKNK#w(>KW!IL>5`45iZw>e%I!@}OGY2;>Hh%EtYV_K
zUY06eO1Voj4oSbV_?$eB>J$(5qvubL%CxV`r3gX*0Er83{?AD{(|d^R51hn%1E~V08te>-~0&D!o&TCw`g1a
z1~wli{{UyCG6_LC@%w+ydcf|+Q!l!{{T$!6)gNilNMnx-!tn+L_E1kt}kzBr%AisxiHZTLbmCyRt|)#
z`ZXRV&4epnxRt$e6lX34$+H)Fpy)st;N9EJZc|#$EpE+9?jaW#rWpMP%
zP))4w{zoBC9k^An{`h{{SkUl1m%skL9cU{bE||EE1UI+!-`For0Xj
z1ju!fDxFI}MXbbF{(YXsxypblU05QmC<;Sg+F~d6^xB~sOIvDxpZRq+P6I24^s45o
z3fjSB$il|teO1jWf&G8O+T_0yk|nsZkP3^MzTfvU2^nMk~q5hso90p@@?&OFg%16wGsoGe~#1gDg{3;%cXE$$b<&H
zwW!SlS`Y9D6*S
zRTiZH^T)7#{?U9G__m6sgNjOi-Zvb28QSi=#W+V>b0s{)$@c#M$~oylPb10uuuC!X
z!32zI^V7&t!kDHAf)5%wkuKa{pRKs|9g@LgR*G0*Y@hTak@KvrQC}+bvPb7bGR+R&
zfPe)aLewK5u7M7gr{WbqKQ5#RYa$m~hy}=79KA||{X;x7#l1gXZS0=r&e=%~Y5_T-
z#JKs4$2CQsp#
zNMdk#AJd;@qQ`8AQEhGk<3Sno^TX%Xo_#qzx40Koo$dC?8v{|)Ndw3i)j&9Wyt;gj
zY?QGzJoWU_Ln+ehCVx9Rr>GGs)IkLuLb9KzRvd6{IQEz6RVCMN727x*MZTUQl+sy;
z4_fq@_Ks$_iN33Dv_`MPABbuON9rRX74rh0GHcY@DC(mnMgF)DK$y9
z?&^b&h*MAd&Yb#>+tL9KGfAi|)xMAUqbK-0Zo8)2Imr%_liS8p#E@&ZE~YAj_$R4rZF*K-%)T6u+8S@vCD5P7s7k1l|GlzF4zOHZ_T2`o<$D>`M|zDx3NxRa3wUIQC%P;_~u^SfHI_Pz5W2
zOmQ|ul6=WI=&0;lnByuIKWF(S{{SaXG4#IoRfExumFe`nTJYKVLb6<|Ej#v8QZ0^p~sgIQ-S~_WrM2*Q+~E
zS~yxvEYzqpSj^aUyI@E#^vjB+>TAvyDEPO6g?r*sBl#z5STSyX=aM7HS
zhtKGN#~wU-X`#C$63beH!2bZ&?!W)j)vqJ}02d1H`i!an0IkpO-Fv7+ToL_6xZ~^o
zKK<9an>9k!2=212RFcCSo)^%Q>0KeAC`8d!OQ3M3#DYby@5AitW7p526K-$Zz8ae&
z9csy#2^2KYQ)MkM$D$IpQ0N*sC6>Y7HWTYr)WtX@JC@TP;o*^?T`O9HLtk2C)5{{A
zOg`ItxqHY%bB^vC%cPtjLllZ0Af%I^$iY&knzW&5KN|`To~b)R3YlO7Zegh=N!8}b
zQqxmbNd!!xX0$>REKai@+>j&bQS>+VO(!X=2_(=wL4c^JVV^9LRA^~ojN8fEz`H>R6EdRE6+q=pWT>Z0sprhm)>F?dCKk8v#3jR5)K-|*
zMSV3?@cp$SM-09_Ea(7R5CP-@7qo^62aK{APsFDrSJS$b^&kpktbp6O+i>2jO}^E0
zYYmKQOf!ZtLg6x0(%)H_4&+C74s};a6)*KUH@a2>=o`X&@c~pjN*iLFt#!TSrEk
z^(p2Hf%Z^>b$(nv(s~PTS36>qhCQQqh?>?^+vMyt%1EJ6!nJAv9m60F9c8J?tgwWS
zZM7{zs{=FCWK_yI^@t%09kl%l{W$y+?pWCQk8QItytnrHg)lTRq4Mr3D160!btkBw
zc86_@Nj#EVIs=Mr<+P8)Tj3!*k8y8W4v}w@l6u)t(BoNarCOn*4|G
z99q}a%$B-rm!Xmh2;-rz`-)tRLdw+@tlf|khIaqE7NijEO;P*E$%1xQh0Cn
z%NvVmp(?LkN}*iTQmzcLllJ1CW346qliFLu9_<^nZaV~KFar!R4K||QMvFi&TDa>i
z4rY%XH6~4Q^>)T&F_~F~Jz7T~hZU2g$;zubyljloQW15r0PsiG+yQrPXV)K#r%)p!
z83cKuuO0`FPTX9?VUcpmMmU4~oYVRBXtdkM5185=qqU`M?ltN#-H}ZkboE)*rm0CF
z%I2{LNZ$VdYgtHX>mhYxNb$-+)T{{vC$bI74Z_~aP3q3#2UXDkDpcFh|N(pGK{)bJDBx)e2xg2nyFgr
zAd68+fj0jDY(0&Bj53g98i6Arf9M{Hyg^XI27uzf=jht}Y~TB5Y}HiKQ6_GiabYB8XFc@Z}7|f)1r8;PR-)433U&xnAdSH`e>+;|3C
z+QPH0v*TN-)T}u^;4XLDY<4-Xw+>EUrj9ZMlK4npTy6=Yogy7Vp&q7{p`q&(d5u?M
zzLGvsj{0s~fU?U6iF6ZGZVRv$%%<50s|Jl&5mjNvp-yvV)$MM`gKd8Z+dIPrx~M8B
z>9AP3iZ!XFCJ2{BO(b=6RTU6CG9&Ael=)ctSMqPS-Tw3CUAvl8PiwgSX|sg4h!O%S#Hu3!fuxS4{iEC6i<-F@
zUPHc3E#%QVPnL>1Td1m+2*RiJ7eVnRLaO8zMbN9x*8a#rh)uP(sOmA4BPm;t
z#pU1-7N>?-;`^E6nwUUj=Kf}nQRe2rdo<)d&uZHKn)P=%rn|W%Vm4dFO55e+tF1!O+#8t{92+YSbB^22TU5Ke5bjqt@3JHw%S-)v!eqQ%iqWh)KbD_j(CRVSo88HAwFm(vQIl-n!uTyr}&3jGNxR&2|xVj9LMNP&Db#bng`hMzWzDhx;
z=~WEz#9%1-NUqFGly#8QgkmqDp{s@$Dl-nr3K90xrOpBnptdAWM)m7wsk|U%uc`zMUEEJQe)8&nq1s!cYkEdG|`u_l|eTO1@
zsqPvGt+scCTZ~P8S00(1sjrZy+racmc9Se-kZxj9E8egge#k+mu6loqe>zJfLm}TZ
z(4o^6Z9dWKe2|!c7_y|4QPQk3rz>(~1Moe{8&=tDAhu~AYw;Lm47UIePxMV%hn+wk
zodzX0%+4AM(g&n!Pv_axT<-6kak)IX&G(3t9fir&M^TvTuDNKS6qFS;F}$sWo)lVk
zkwX)5>bJi(9>og;F(6BLHn|yyuBVsR%Td*w{{WMs_cQ7`(&=gHfPUN#tDhPnF;q%2
z*)^J2v5~nnv=PG7$BcqXpc0}tDHy4$a)5KCh57dUkod)xTYE}+ERA26nEwEauS=mN
z2rKm(zDTG1JvUcSmJG)&Bc5&=EF;^W!o4!FKkIvP-CEIyhh(KsnukBlTOAmSgEHuz
zY1DkwCO+K%0E47`T?7tEdgg5xxLC2Ux`Hk0D7p=g^c;H-!4a4T7P5GsIUb*oYV?9=
z(jeMzz=-4r)QBVCI{sFPGx{{X}Ws)`F+8A(-DuSiwYs^M-g`M=}acahdN
zNnioEa6jPybb>JnaPi(2Kl4vd@~t{*q?(e7pC6|yk*10>7lc>f@J~S$lNl;q9;Tw8
zys*5IHJSZJ{M*}i8$Fz;>GTn}bpfg+LU1cq03R+QoiPsUcWWX@n}m_+VpM{-^ucO>
zF0(@=44!`l7T?Rv32_|^xO!(19bc|FW~dD;vT&hzxwo~}*EgGaL1;{L<4G84^b}xg
z)2n+8?y-HmNE6HSgthgp9cldf^+2JkrGkn)G<0=!^%O8iNj^RbM+DSIJxps@6;?T6
zjx*|0q@FGT_Iob6BSC@azT0A4OUw8S%8k)F2nd@M;
zkUy|>5Dr4Y8%KMr+Fo=jxeZR>~1u#&~a~c
zucM0noo>I<>Ug8g(IZP&jZe3VG98|_mI$K&fE>&<9V_(b>wbN{w-YA@U*-N|(`5n4
zBle&3^)nweJxhq?5XU3wSfhrjYQ}j>X)!2VRZZd@)J&h~=
zh}r@3rXeJsmrq4>>IjZ!2jqx0Czb>g&0{qmOurPx6J2QliI66Ke2Ou_D)GEHwWBs#P$s
z{{S10ue&|Onbm1-WEiLGHxDEF$^r7NK7Ae8OSnRDHNJghjDIhtIr~1&oYs<10Siz=
z8vv1#M*#YfkxGN?KXS6n%v)u)*T*o*!2Ok;l>0HzzRLT0l|Y96(E#&l;-UF>LceJ~
ze!WQ))iQ7)b+*ifmn_W$o~La*+iQ>
zO3baWs;vPS)59O{;(sI3vAT0QE~eaUz`-PLgWYNao*_hrpR!sHl{zpxr!WJqI4znyQJPCw>*s}Z2OnqU
z*Qrw=UsQC_wVVfcrdW!xzt&kiMNbEja6Pnbp=D(kOoeexF2A;?BmGtB9mIR=G@*t+bI-U345ui
z4-n;eam7i;NN$GYu92?aZ5cGinb?wecLo4|t35f>R#yz1!SH}=nOOAF>KC+}uh>+Oc+O9vPy`a0g
zC=^Y)g#MIafcp!5Nd1)Qgton%2ZypnLHtgj{kUGA>Gq~>MG{BWxT%!2wZ#o1NB;l?
zEgk`ZEBUcL$nG~Q1SCn!&YzjD{iOc@lcz<7@4tTFuSw-y;E*4bEmQ191NlhZE3x=J>|?8D=>4K8jSP~BDJb&H
z=4e@Dgh-Oj8u-eV{DubB{+`Moapl6|D1Fb|ex|q&EMQ}e3axAWx=$sh<`Y!Bu>zs<
z3ViT5la85X#cn|%b?G?dc?&W7H_lojPbkr@dLs|lfB*o0w)S~zbK^(b&oZI_0P!fg
zg*bv?I)|yR9*O0N<8JMpN&b#$@-%F9h*54x+t<;xOhx?@e|eTS79fyD;2MDZ5JHW_#@mHf%(Z0{$3D2;OV_YaoHRF>XvCNKT0UwstZ_tNaNbHoeQEKXS-USE{LFgr^CSc^-WGeBWy!YN}u`rsWds9
z&Y56-nP{UFHOUe}+l7_yMN_I7nD2CSjqhT8Utg!w-R0WjY2uwZg-qTcV#Sa)KM*1#
zQaud^&#k4@npqCo+BDLd5A67d`Fj7<)vqJ}02d1H`i!an0IkpO-Fv8h{nxsiLeP07
zig6GV!efeA{{YOzI=V>^m;FprXeiBbr%)%0`}bby?v9#{Y>aQ7&t!J|(aTJqa_ozZ
zikdQBTDt0(*_t@%;}$+7c;$=$d9n7M?e2sU{X7CkD@s;|mCXSJ9C;o+3VBK$f^F+=
z{r>>IwS)pfd{Y}VYo$p|az`S`7N?*xDxDZPtvViQaoEbLN(!t#Ub8SJNvY_nA*P};
z)nX|0_;M6#nEwDJJo^1?FRnLG$rDoZwJ
zB3c+48d$1mC>|jh)BE8+$-~UyPwUj8>{iFwV)J{ItlLz2eCSE2`xp>N`PZq|Pr3EX
zBmP6a@!tJSY8jF+Qe1=GZsJall&AMMxDB%w%gEj;k7vfWC%tW^?$
z74NNp)CmUMd(h@BrbhiuzExj9Vl+RR5AuI5mp`#S`0Y^`t$EXGy`GIpB~8LMAm9RG
zyK)UEFbzOz5vrX?Tpd(|m~u38>O_8Lo;PU$A>(zPidAGrRnp}8hZeDKZzl1vusV^E
z$o~L+q5ffk`v@MD^XM_T@)y24e5o64_BS?>wE#=oxVYz1i6ND0Mj0811fPVgePla#
zA~md0QB9(1e;SOX0rJJE*(B34(v&d?G+Eh8Ahv+w-*Xv(+ThrHF8
z>sYO}*_2hoh}okt(TJo-RMbLS8i>;o@R>-QMlktXy-}r(M8?%BvzTq>6T)YTDno5S
z$q2=Y-{`*A+Su*452xypsA<_S;&^;(U+4Zo(Iw}&8}*u_-g3U_04u1Qjj}=ltJH@2
zYoG|ybONB12$a*`A&BuJ_`yd*EcH}0@k>RRgUawanux@6&@5(}ok1kMk%_(9!`Pb7
zWVd|?1c7x>6=ZOJzyQb3HRv@jz0q5r8hgBFOrl#NJkw*)95BzMV>ev#VVZz)M-)4u(z?k*|S6uRNY)gtkeg?VW0z#
zCe`xvK2+#Cb?=S0=>xl3JtJk!-OL272z6zZ8iCCul}%Zjwx)%;hf!S4npVE4g2>Uw
zEhb)ud1h*feu*+yqPdhEA-^}atMTqiv$?Re@aLa#nokdc_^YVt;&i+jPcj8Z8h|>C
zcdvLXrY1k#u}!QXKjTqKjHo+J3W^%w;*|V8eIhqCHBLttm54!=YLsZ+k`D~;3f54%
zRYODs6*W>CsUTKVgjmh2@ObvmF!Kh@zioG$YCYM!kqtG+5u}2Q4zy5wsoAFl)O8T=
z*T21BxoGxSyhd$8K_qyo<3OUivIQy;Xfvyz-k%Rul%p#gLRe;}dU>x>VVprMT3C4I
z3hM7p#XVMkuOX+}xz|ZBn5>3EraYz{aW$r{$sMY$Yz4^Al{uG_Y_<*W
zm-mgrA#rUvbSUvsG?yi%4&j)_;f93`pc*(8=@!ks?6B?^cIiE&n~WxlL1v3bj2%F;!C2)`;GQXbRpn
z;1l@2unve#)zP)QS*@9iMwz`*J>2nw{j4sg&QbC5_N*S95D?_
z*P(}{G8md2>05}))9tp!?>q%&5GF*_$4f5b!_`u64W5YcMLdyIR^>2KP=~gW_tt9<
zZ0=A_k=tB&4=05nVy8(34{L%x!&=brz$Tq0DkMOfh#w+&`5!Ov^=bPLWPEnc)BUA3
z%Io#5%wy;`1}<2;7c+^+*W+?fwPBKnIancxWbx}cr>SXZI?VJaM~@VTV0Qs0^SM4chE%5;VQ3qSqd(uXQ(X%Zd?K+UsvcWrRhjw38`RF0Y~_0yU(1w6Ulp0!LBB;M?Qm-dWggFYe>tq@Fn*+DQCuGhCxA
zV65e0jYLcOT8cTS)D?*84ilj|gLZCdvH6a^?p(g|z*os(8P~}Wc2-d4;M(Juxw6-1w&jjn++&xP=0Tz6i&9Aut4remvPvAtJG}>B
zr7O_)m#lXgt*kjqXSce%gYYp
zQ^T;yb8X79ZDvwOBc~R0`{73YVbN;fjN-
zqnayf49SNYt5_K5>QX7{8|@XM(4GqHVUguYLp)Kgy0J83MLr4{oBw
zuc10Y&r%hGZd;T~9j&I-6RibWj73FohH7_lqL10r^f6>9=8mE)HruI|O-|Hhw>fyD
zkdWS5XtE?ksMa=F3nv_YJ%Kk)OWk7E;`3$8L>J)-fMC<&F_mwT#eG5OM`z0%({&l1
z+6}cUQ{$N3g+R>!bA~t=)8r01eTu7cn#k2Q*4J%DHI*pxd*R}Ql?-BfWqE$g)Tsc2
zDP2b3gMVOK-I`lvCQf9$(1xTc+Ul(_smM~)<5Hh2)1|Zfb?yUIq)PzIfT?)y5siP}
zND-=h^i
z3A{nOF^^SDj}^IfK4eH85DMTDHCLi{p!A}~
zWVcU>N_>9MuE*9zA@kHyc4kUg>Y$7pL!&K#Bn454Hu4Z+y!&fc7JhhsrGK_
zpZklt{LpEG!2EaqW4Q!J4sM$6B5+o*(JGIv^ijr2d0{y_|Y}eRRp6
zF@UsLMHjm=!;73aKY)WIt{4yX{oh@!K^IV0(0GYT{MR41tEAI|`jE^|mwin~mO}Q!4C1<%jpTHy9TjRGiJUz-I-UdJv
z{gltkq|iLd=C
zYSdT;1ae6BU2eM!qOor_Q)lqXs85l?$%EuYF;6ayA-%qd)|*AjljvB}_QpZ=$^80F
zjNMEKe~N7iY6%Hskz&GDMOHb^OCE008>dylc@el?+dSz}JaVzqB3)^Xm;A
zOe;+R6mX*mQP;Q1Yhz8wM*mReNvJ6*Yo4ki{Q5u0R5Hyop@H-@vJCqfAe_=<5fTEP2G9_
z09yC=?H62pU-KWIpY!X*p%~H#{{Tt{QNG~o1T96&5JFW!GXwoDTE~HJZIf`M>e5Hq
z{{R)&gWDQa2CuV+^F2YT$xf2g1vyk|d>&QN#F5!rsp;t~o-!L*2H*>Shd$F>KBF3w
zL957rv(u^I(nek&e&3kKmsnD4bq|Uc#O7*hf)$(11uZa{l}U}XIjO2$L<430WO8nO
znxCU2sgui(3jY9yqT;ZF+J7=L`v+McH7dDmoO#F*p&F^+$Il2xVWm#FnUqJ#)WJzV
zk8FO4r5h*xUcGv`HPiW5sA95;Fs}t1aR@^dn)%So>6zXu?RT0?z)adM`
zf=-zT$W^fUNNqc^V4@FK17)G{(fCZsNGa^VrsGVnF=5Kf{x8k_qy66)BTj|qm&o{Re=)6fHP+B+OKQs
zC+?z+kLS_~kEiwb<=bwMjcoe7!r9yr_E$+iwuhv}_UUz)Q9@RORpJspWO?-KPq?Vu
ztTg#KC1YiVni_m0DC-3T+jeegZ2?oPoGnz%dqCUPqH-x-o9Fz3fByZ5AIS@lFVESUdwN6L1<5H
zlu0l_{g{qeuuqe?^5aa`rlyX|U+V4%u1^x$&3<%W@?)n;I=Mt}&rMksTqnribsYsI
z6v?CL=~GijP|c*=00yP}duDraBTE&I5pX&1IPlT)$SsFT%nTO1YUrH%z#cZlrdJO-If00UkXl5%sxfKb$RWwDZTLAWlzEVX}2_!T01wZ%o^P*)H?n|4z@0#rT4M{@B?2Dh@8?PqJ%yw%IP$J=bYgxF<+5
z2;WHJbt}muR=$G2F0A&qOBwKP2tl6GMSm~=r}FEBG4F>h{{A}0CrzOnffAXcw+!ty
zYy(hl(f~i!i#z3Q&HSpV}W-60HFN*y8qSHuOt5e7YgtC
zjH&+std#HZ>*Shz=b?&(baE%yd@vs4s^~qe=AHNaOl@_g?B_SBF;H9Tlh>HJC!KEg&iGuyYl^JdlipM1Tv48e$o
zd16w-gEFJ4vkny?nq!Ag^!xLAQxId^*+#P~0Z}AXYpFm~HmQbR^J*-=fz7_B+6i_|
zo^S0o$VvMt{sKQQPKWz%zCQD98U=^B`?|)pqO_|b=Z$P!bdy@Oilag84Z|m*wMTK=cei{ggdPJ5S#m?-R3tu=Big
z3X)8=;hC$(td5yDB!Dt8OxAoIom8P#t8QVZ3L-+#&yb{MNS)Z~Rhn4X$ggJptg74_
zf?X#eY|s6ivLO2b{&+n}`(O8k`{Q9leYfq`j!7h!mOPLFqLq{m7~?=n@TDGUyGt4p
zG^oL3q0+F%T9YXZqr|>XxYBB1Spk)bIswFN7!ONuTPL@08i;S`5Ag%}@TmU)QR+zB
zzr2fm@dUf~x4PW1VlCu^uB>T4s3Br0RcfB)(_D{h!r&9O?iq
z{kIn>Z+33a;0XmhsKl0KKZKUO{U=h*&kua@zrrwJjyJ0cGyV
z?NC9f9V#hzr4+29k9Fd8K9*v&@kpelHnRV_?anF(
z8iV$BkN_Xi%}xzEQ!l%|#&bk|4VN<8T@!^!t|3uE)U6EaN%Yje2-MUhRnknYZAbu1
zL0KVF3jNDc&UKXYRm4iqCV)`esM0fG)m
zrfbxD%zIzA`@~lhTTgD)deg&Ms=O27jkW1vRW++ESOHFf-oo5D4X;Z&e
zd^Ial?mQqsY${X&#-mq}!yk0{FKDoqIilGh`dL_j=?G0NPsQDm`6^bbMMY~sP`ghg
z+v9cOwzeaz8XUIZiD@yyXQIaa^jO*|jG4w`*X}3D)3Ln{VdRTK=$)|lzq9k+|bWVZfBDM9P)-&DV6xLa;zanzWC(@6OYT2j?cvpq%%B4v?ecakb;
zN1D<@BCKK0R`;7SZX4F!ZymrYTr4i$2$%}^2_-bXnu2tESu2VjmG8U7=F75gH~V(h
z*L$U{xsoeS5G;&91y*K_bfYl+K&TmvW6A0P*4Q)@`)es%w{Uyb9PZtVF@c+B?q$o#
zh05){)+r^XpoYdO^`gLUOkDC|Dy3~S@k(f9W
zY1$a%uBHr%@}q)CR;HoD679FWr+eM5?rtotEMU8LG73(ml1e?qmgy;0YO)5nSq8cz
z6)rL-{EO*KUg<>ctTyY;W-8&T#$fk6wGm+>HJJ9N6!VyYIR5~(Q0^EvZ&Mz{%-4Ht
z=VRJ=aZbtD@kkxy5=SbBmf|*ym_$g-2#KCIF~5nbgGmAhUu;yv<99aO?VP4JE04`%
zrj=^!sOt-4VV{I-Kf(9=lwM;Sq7qv{WlTgN>)2k5b
zoC5Yf9$EH|TWTyDrlqo*HkW#1C&=UR+p>IeTV9Ts3+U+;g8Z+b=F}SGNBE
zM`I-4P87g3J4n@zX^y61vMp5>Cq;%qR@RI6q!8!U!>_MDbUT3s;k%KYGN1ITGdOCPNUxA(B$yfmHy7r@}}Xm^R;KxkqwqdrkLY*|#0V
zHrSWLnXQD67{Ivj7E~(AYExFGKmhGRP|g~58UhS59dYGb;(kb0wNa!SK3QKUP%p1g2)XgkKm{Ns$
z2A8{c1~OXeh@|XXd**QS*JrWYlLbJLL4|6c1qDWCvjtyH)Hz(^wuONC497}<0Jph&
zefD={+@9L+XxQE>h@fbcMs9-3L8!+X$qdMInoYk+-8gDIhI)7-UAXx
zEHO&1gkgVLFvnk*eK`Q&j+40_#MqTIHFa1ztkn);1xk!$mDCy7^4R@M7PAc+Rnla!
z)s%@;y32IoyxgO_zzJ0FVB@N71Y>6VWt4*$i4In95i?Q`k
zMFBJf4yP!+uH`vo5>L5qcQYj!2%HT8Y5@Xo4o0Xwz`0|oRrvAn6?k@FhB##dJ47yH{;wUu~p(|BjGoBQv
zspHYF^-E{Dl(drW0RaC1lz8N)p<@);ub``sG1H|s-+;|T@XjHqtAbMmF4^j4rGf%k
z-e}fIlAp;RD%N#xueK)lQ+m-fGh1!f3Q4U+nJi5|-;o24m#%t0+j&yP&qR^$E{K2w
z;#uAR6!0xYai5(JkOcJSM~l1^YXxeuWF(iuA0=54tnijHyU9~aE7QWKk0RMXH$KTP
zy~4Y>W8(6SlLJ~6wX=OSIsVPl$Wpbh4hNylk+if&4STdrENmzxMp6Ma$BS;dffyk7
zD9sN}v16*-3F51ubTb-A3um;wWl&oW`27jR-6^iYt+*7oga8c?+$j#liWDgB8r;(2
z9^9QmaVri*iDr3Mx4*fR^x({1_5`h=E9uWQ_!t4pgp>MK%
zv`KH2w+BWl7v}C@Cv&za$lP3PPAF{`TWTO!|tOHZGdpH&sCByDPqi1tPSAy?6dOY3uD$
z)r31E6J3w`G!FGfa3`?a&dot%K&?6SUR80i#blzigL6~*my;8mjGmtyPwZEn=wlK1Azw?u#~C-Uac!pEa(
zK9t#Vg-+ZVO`>RY?%i-lZ^BiiDxzoFD^u{QoK}Usk-JhaRbF=kIM+vNvL4SCc~*vJ
zMUu1+=(`xHW8u_}`ltD+t)JlC*gl~g
zNr@*bcf(6J+RGZUJ@Qut*JDKpPm1Ia-=@SzN`a}E#L|^y$gW|6>h?_g^@tS?%bq2ObUq54BK>PKCIx0F|`{5OkQTW9T
ze141{rB_qN1C5r|P(9TOFp~N#WEC(oSe^Q|yGBH5b??59|B%naJ#>}oj*@PAfx?o27X~kk%I_zyZ-5)xyQMZ|CsRW(xTfwK
z%(iPB?OB4wPGvC{I^C|ooMIz))|GADO@XDCAQYi#ucnjcEV=_GJ;|_}$tBzl
z-9wG|Y?B;E6P4@)aDUIr?fJbZv|f}URWJSCC?TGLVY61z`)ib3lMf84qWF-r>4b0s
zdV^xk-We-C@$fZ2lDm9#+4rLy
zYCYr1kpKHqA;ap~yd%G8ku9v`SC7H3^$6Dnb;m*xBT0YX6bsh^F_Miat4Pu;ZNh1_
zk!?$!;;>`xB+9fS7v;|xex4pJK5)*u(<3cXN|Sm`!dz9!eqD-+0%@mL^D^j?Wdw(;
zG3F*}+s8v}%{flGU#VtI;eKt&V|DU+q6`QrK4+HA)Xc-%snY0BQK81(62AKf)91jr
zp|zPgy$^nk`Sqm0Cj-=lU;v+ji5+ghHPJrg#{Y)FSjt;R+JhXW@^VP(4`5A!nJ)5n
zJxg3e=ptbm1Nc+L_dk@Z>9S1DVA3AhfqC8byO{Z{(x(VF!6Y5elAwLT{V#{p4=;b3
z*7a+cIABzCPk%P^r%To7+fd4*;SBU*no5#+?8RSv@tzx__W1hg>tu;Q(
z&@L7_{B4WS_rcF&tw|ucAUiYSSWL8XUrw!jPD8W5;a380O8j
zb6d}74rz&NqIN-D&~2|kY0Iw5C%W7%qvlimK^=m);Fj(k$G=aoPBJ|5xcd)f7y3Q>
zX?abN>KQR>orl?kxvZ&^@d9p9)gginn!aE)gus5rvc^eNl+eF}MSbhnCx4U|*;X?3
zGVpXGcP6haDSicv<_!oG$;8K6;JF#;kA5=H$Nd#w{l4x;nvxip
zW-^^`FNusU2b%z$aU}(@O2k4r7R{`tppmZPv4NNGq%&n^_2mfZi@QCru|!Bicfmx1m=^
zL`FG!b&cf_cacJ%oqa_?%4;4UBCINr!VwIwE5tVdYrLTT%fX%BBr9UD@Jcf(%~t1#E*w}wZtlqg&0KT
zG!IUdZbzGs?fF$pF#B9mH^G49wGO1^Ywf*Q%iGRpJs9rcq3iGb9=U57O{H_JZ6UuK
zt(m&dQ5419Y3fZZ)cL(039VB)v}0FH-~2d7p=-%EW*I!P#{M?C7$qWu7o65-J-K^&
zYz_ZsxJNpyBdNerL8ssCY#{pRd-J`CGy7k0rNj}JZB0fq(+e{r6MH#4#m=}*FXq98
z`o=I&CUeXIbiRor;uks~mxm;Hdv%|7sUs_o5=>zP>uLoBwT=BD*DSf-X7IAoiqbrd
z0FA2~t2wx(SE=CeEHkI8fhdF^b3GJoLJdVl-mOG*;3{~e
zMbl~$({PjDswnth{J49SCo>Q{c^y5eBE%c67OPq^Re|(rDtjj)yx9Q(r{0v{~wBz
zJGbYe^`=;)P96apgQ5t}{kiC);6kU=X*sRP;#;7k)~4dcytZ}2oOYDELPGh!yi8xK
z#Q#t<9Hwj-bpp$KRywW*W(0EdE{#gr{t(gJ5#q4MiqxsLJ~mN>#jL4Oosy4i-<@xU
z<)2o~*T_Ph)uAGnF4d>(r7_R7Z?P}?@U7JWvSve~nj$|akp|c?_AMfte?HRl=pL%#
zG#6+?Db8tTn(FRU_A~f)Jv?f43^nW%?n9XfWgT3iWR$r3Pd_i_FHC7e@KaevM9JH^
zwu(sW0cxc=;A9*m(t6D0TXhh(8Sp6CU}
zknUGR-Y-AA3zYKA_r00ag8LPf#B^hpWpVHe$k6F>`@xF90%yr~Iw6SS_SeoYGW9;2
z_Dt_M2sV`HnFE8FITo}?29tT>yt2){m#~^NHqd=us2dIIma{kA`eo)w9d#dIOCh7j
zoAgiPo25!WkCF7%>F7ae2*nnYrTjOnd{?oRNk{aEpT4PFSn4bjrhA-f&1tvEz&ed*
zv#R#0!&+_}i}ML+y`9(H
zII72Y>;rA*C6q+sm7WL^lX0No@BQD>|BZ0ogEUgtA%*heO{AInf0Xq9(+BMt&>KCu
z|I-teqNwgP+j^U}-_vOCd7@JQSQKHah3=-uTZ-$;9fAj{Lqh8n4
zE+#;ZsX2q4lKpeo)!9TvuAw&0ze^BFL)x06X37oVUcIkoHYsuKx#*!wKj<)fMq1Q@
z1L;00X3b-pYG;`^TK$n&t_`gzs^B)yNg;7ME0I_k5`JDCYc;Kx
zMKn$^+?>w4zNLDFqq^2dyNFUacbsW0ZijuWqY$y4YHEpp%HRcHT^vyL>Nieq&7#gpqrMXmAeORXxOMPfDajB5wlw8j_|P%r64H!r*PzDw`PoP#F}++qxD
zu?|g&@1sC8E)2RKK@ra+Z8>F4vC=-|g|DKgsZlM)yA4TsW=z@`n(&}0-wkvi(c{}e
zf3Z5nHn)mu3PvrT;9GUy?cexO?R&y_OK=piN|;PTC?U4AXZopskJqeGg;o(t#g?Ak=>H4^Zlw^C3YD#+`eH7q8oy%^yLgk
zF0s(oqtD=I|7~$TvK^+f)fL_!f531ORz3L@PLK4Cghery6swwndoTN97&pRqv(zpQ
z^yzC)cih{UPqHSR&Yv`y0gixJ7WO!$^urgVw5wWO1EXLt99u*0;4l?@|EoojAw{)4N(
zRCVA^8m)|lnVXbxf?rvduBWQy!$VxYbDl#ijUVnP*dNq7U)dhyN#zp
zt5|zHQN97)JNd2VFM*#fx0!K@ldKSO5g|uMuOzZ&X#|-efRl-ih7iSOWh44RHoopN
z*)!>q3t{8B=oL*(Vn>^}wU54lqs#L)G}^3A_H&Bos>lbZc~Ln
ziI9PMI88!}&BfAKa_N|X_9VILIc3I&Nmg#uxU-&|-#jt@c*?sRik0;*wT{x~
zj|QY}qnTNqD!3P?!9B2_e&61&i67pVduODXTBuM_&b^iPzOWbkfzVe|z@BUhmo&50
zs#SP5e}a!m#`UFmL|?D;v_6LbhGsNtQ1hbGPhtIP^Qe
zVr<#tw{2h7Idcpu_IQYyh}lCmWI|PEjvq1h(`Q@M!7e7Za(nFu*6
zN}W#7{lw<#v&+L;@wz7OMQ^%KETv%|M!H#;CQTkob<9^ik^Aub)yZCc|8wbMSe`Fl
zv#zN7{o%!VjVQWs_I{0!rY1s-RE)PC$MDxEIls$g;sMt>kkr^!>|xvillF@lm}pS>
z12bzIBlc2znN(~?QfBL2wlMu*F)7HKvdpr&gH^D9hY}}fi8$Bu7{_A{2tvFQCnVTpUa|}j4O44Jd+ceY9>iV
zHTGei^jZ))GPXRQ$5>z@D~e>-N7rdq@yGhLjj$PKn3o9o^BZ%@Ig~NW!IV|PB7fPI
zRW#NChU;yR+o?()zV2MKt`MsBa8w>J2||?Er%wL8?p5V(iE;|}`Q1@+EX3gU-gmRJ
zHMtDjD(1$U!#xcU>2HP(%J7{DZu)T(?vjf^DQg0_kd75@JvGI6C3!9#RZWG0F4ujk
zx*TnR)@6Hl&Qo+dxU=d7Yht7?_G~y=loLZ|mcz+IzqBaTx_y*?R#dT`j2@5FPO;IS
zG9@+*J=Kz2)-$K>8^D(#2n})I(A#O=o*egEVNRS}AuI*snN-n4y&(*Uk_nNsn_D+!
z>k3nc|B(f1K}zB~3?#fOjw?e2ba&+A1S=uPh|F=ai=#>5lP{>Q2J!sEkSUMNq_V=#
zKpHn>B-*~_imNW=
zn)EgT{*P1|G#(d}jG8xsF0seZ_JF~?c9lJd!=zzoRdB&RC_^3YnpGB
zytl2MCc1G&GRq^R%J+&r`Y4c=
z$4|1W-Zd;3rchn6$>RS8PWBM{1EZO(IjEVo2(f?u$vj%l-r_}X(9(|7-Mx!Dg04$2$O+H4h;5u0d*BPY
z8t0Hw2Q&_;t*l5%tQM}#a8tH6^_b$Tk
za0_?RQCbSfaibTp(Ta>*#Y+)iKso9}Y&E`l#
zbiH@*YiYS?ZQd+i&Ubt0PpN=-NH~v*tT=T^$q;?SC=ay9)T~hsy1sUTWqB-q?uDcG
z;X2Z>J0Scf+~Ww$%BQA%ICOs?+Gu~ocA+CceVm$iaL0qJ3E2Vp%|$oT=Jj3(zf3zv
zOA!${uKlBaDP&bhHbClM-0$K(r+kH%x|Ml0GYK=r05fG}6zq6Sp|twu<)jrLB|n_q3Nl1u`v4UHYja98uS
zO~nBo-}9zoo$4LX_sU%@HKubW)VW0%=zW-Bw>GUcvIW>1Mx!fMAnR2QWfW}Xw$0KH
zO4&@6_=)=z;3zc49)5e1sL=@R*N-F2ey{&k*aFBfwYA0(YIyq8)eap-CFtEITZEkJ
zEu^HFc~$f|<)yVe&ocqrdzeSugZ3+~r3@DW5{2jWccY0Hv|1PpPyq{zcm9>lr2(Q-
z?BKJgTg4ZU|2Au{%=gEyaTK-
z+%PDp_=VRiGNT{BhP4XR37{5fi$%B^98#(Q06&Aj^6%ljU_U&nv8=WzDQ5rBj=n>x
zfhPJ+7jl0sPHrgmCQ^>6g>a-h6@-48Z%4+Uh1xy*T6IJA-_SaI>xV$zWdQm5m`YNK
z>aUjt@>b0ysVLjdpgcx(KZ*)nvtF_ocTaWoZ*3BZld&(6DN6webuFhx>bKvhFJ6av
zr6%S|$~ceNG}&s8`qygeW)OW`hhz(oc*{v(=WT1@=|+4aKbO{%$8YJ*b@8TQlL1Z;
zgFi6Wmkudpi9_uX9uy|`mBnvHlPm!F9^i(#h5Bq6jVb;(R+c=65@+{?ing`{
ze%i;zg+l%-V9{+p!jV^jx>N
zGem0(GGzBmscK;MG;pI;lU2&y6!D2*Kc+dvg9(bu_hSv
zHEZFwrZq&k^Dn$NF}S13i>TS)zq^$VJ7uIxeFKU;-pOD`BR~F-+QPfn3^UzqYSp~o
zSZIn*E9j+~SvnV<`VaHU(m0!*dxWhI54T`neX|%E=ic}k7beK{F!|=Z*MA>1_=2*#
z#!IdhjrQCk<@dTdSK^qneByP;w{yo|?+OShO}=6NmZ6LilQa2}(GvOGMFWN$P6B^A
zzYunhXD?Ftr;#q#rEErHi6>{^H+v3h_9E&4Si^&toO#ciQ=gPy*6mHSAn
zcMZ<&yVd!HxPvO}0X>`83}AAptSJ$+VC4N$ZW&k`sC%zWzIbWlR2C+vlEijc5`|mH
zot5gYU9u3a_VA3WA2(&T;)c{w@AQTBEBo2g3$6;#-OIu7IRX4mGgXG-9Vfbrf+@$}
z&I=V63+`Rr)VPsOF|#}zSN8~0)t7Qu_Cl>}5zdX{GL0WNHJD>fRie~V|2HMT2DgYP
zYsmN^X@8#2SxQ^SAzP=#Kwr*kisy1iD#1gILL^;#|7ZtRupq;WmyQt7UoD=q9Q%=~
z4s-g1!m9w{yJJnxIpsM2TFp6DVLx0x>2p;1=$K@By+Lj0)Q@yo1zKmu>4v53kK06O
zY0`-7bd8AO#0IeEb7?KO$g0raITC&ew|WjNPT|nxUh-lJrvAVv<&FeL#vdK&rUvNA
zC6oV$BBvn<(iTc7RW;6wYmi-4j0b`jGU7QAxyQ^As*OcO{vs_W>#2cAO9+YKYF@_W
z^_CQrlpZi+Q0q0OLcQc^cyFETJE$7V>Z|gMTZbi8%m2f$Z8!dL-BY=Q?8E-I`IM&$
z|Em#ZDtD|0t>B6ILGsRU^vdE2Td7n{W(9m~+2mPXkNVw_@fXeK{1wwR9zbHNxls6>
zJ-T%W&GJ)No*9#GNm+hHjCgIL=uHLV!BGG)360PQVZ3iC9&=0wfW*Dzm39Y#vq^}Y
z?4V=ksn40_@0E5yb3YzkhyjCYw;=dwO2X^3rF$<*`2wp5?*5$b21y>Q*jZ?FOy+r+
zoNGLOhnaa}TL03!`TVb?8Q2fMl$0R7J%SA-xb{u2ncCW68%U7&GlVo^E`O2~
zQp+`;C|$mg2sB@%|54-3y`H4m{Cxy+m(tIeZ}V?itntY97hkT8mdF^nAe=~_(D(ic
zCPi)H=7CDC$TzpCs34?<2O^rX-Yp@-fMkJB_zmbWfrK2@>*V}GBJYKeFPZQ_Hrv)o
zcMdb7BVSUBk3enpgokaSBMS}DE*Zw(2!=xy`WP2}NRTLQdegdH=tyf0T%+MR0#9P
zAEn4VsGmH4Bx&~eM6x(`BWL#S>MeiSl&_ZidX=beNNdS*F_7Qec6bS4^lrKHnWcx0
zn$@O;I{=_u#Uw3Cf(W76yNM1~!)LkypZ!F`w
zdIO&iMq-dfg7}S#`=;h4cz{h-mi*G*-nliSF)Eb|0o7j$1!@Fz29Y|VXurv{Ub4!S
zU(d>ysK#vy);Iz_2>yXQIl!MfwUpW#Zt&=JbzG{8!N62xtYvGwx)CoX#olRImRQ|U
z#m?g%ZU$`K2Cy+~U))*>}H-B=-vQj2)WujEn?s@I~_N)%ecCKtq=z4-UG*j!>{x
zJq6k+V^%&0tW?d26K0So1UxMbUNryq-}3(}E$x37*ParBwSp_;v;rUNyebMea&Udk
zGh0~4=cRl>h)>|i@@ph9V?>X7c?W~M!hIVztbmr-LUzSPn3|mG_l?CRjB)GG)SyZE
z6aw
zm{2wHV3ntlYg3X1waYK&dVZ~#55qPY!X)bIEp1bx`h6RQ)6JEU+v9V#hx=74IbSo_
zjL5W?tQx60_VH>gjflf6xZN_xcaF16;Uo_PyUL5y=x<1wT(NZOFFB@5D;~WTNY3I*
z?!ldOLF2_FmrU0zcAj58b?etWmQzlAd-EF}<@#_mzR}Sk4jn3DRZ!TZ#on)<{z*WO
zYVl7p2}ZX%JglbQrt*{L+4`5C#}Z$;3s;*cWZo=RTVW~)?jHFbu&26T^nq~v+L2+T
z)gnsR!YMsS0xZaQxXVjD^v1|xAjw^8EcfiaRu`GtV8;wTK;4gJ^RBj;oIb4^`F>6Empb#Oi4_;niQB(a
z@XT`Wvq^6XQOf9a|ALV*Ey$sG2iDS(fwqo%&kr7nk*}#p2^L8GK1k0}iXVOfkSlcK
z8;riwoj>8fM!Q76PI2u$nOfABJs4WNY+0szs@5CcL8j0qoYFl#n_g4=$5(;)Bs@L~KvlrLQP
zBfqC0S&CwE@2%>uy{_+j7PCedRI3o+r{m?lql0=gkDbFr4KHqiQp>`~pLItW9k*s2
zqJPB&D(;+#w+bC0Ek}ehPEwRV-K6`Q!>cV64W-KqJ?@g?O#8}IL@yaDwG#~Zuu+U3Snq9m24o+p}(p3`E&*tdU3_nmV=
zu<&P*)M8YK{NPh(?e-LH`E6I(0j=bf?|Z^P2NuKi<%Jn9^Ri#n&ii>;q_zb%Btw)R
z3#QU4u^);nYCn9Kot;H6>S#lSp-4BpqmkR0>Dv8Y|F$Sb#M%df@4p*(>km2DBiT^D
zObl{jQ{a-5&8Qy0|JvFa?r7ueI2}#h&Q4*C2HBV5)7S3&E~hZWV>DPhK-kboJEH-2
zM|JctRU@1%P5!Z?X0NTReop&1PWhQyKP-Hp9e}^QohmlvYZu~u{LUeBA@L2kS@cj3
z`xQ;QG^}yvA>E5ZR(E@(5cccrL*|Yk+tL=Igji0|N_%kj`hu!V1*Ik+zw!~{2C)ms
zkdjO_!WrHAsFi%RyPCMNUy{#?J2ArhT9HU4Puy1iW^>;~)+#xyrOb?I6h*0G$~RB)
zk8RsyOWVBW@Bs#`W`HxA`BJSppG_s5`~<^^RFwTH-+e3f7MDTu5wc8Wywdz`iIrY{
zb}n5bkzS@abdR?|cqPL;Pchh~C;T6_ZI%()dIrbn2s0BQX0r$fz@4@Eo+0{Cu4~Od
z<+`hPE;YkSud}0RqAk#Q8|4RzzDM$qy}X>3SM$JGr^KK+r!5{0RJqAY+?&nRT|r~G
zs1`vL95ZT{Ds^9co~a3eWu#*WJ|?xfnzwb}r&X&E5_Y*UIjLE4JAleONo1od*{3(2
zAH4Z65B&HG46)m&&P20Lb-C@*-nC~eM&14624O3lc3%`r-LU^$N95E`ep@DAsrZ@19rE)Nm>h
zYhK51zZVhoH)0CeQ-c7}rwBk%&CnQKSZ!{iayRy3Gu|WN`bWE~P-nl6C_7{9zfYPh
z@_lg=KvmY8z5(U|LzLZvK;moP!DBv!BqQYuH
z-JMAT%Ffon#QpJ$g^dQ@KYqqAk64(TQLV(hSaSy!Ue{y%EK0HMI9PcTo_*Ty)!XD{
zxDlHA-A3lp_kE3u
z$@5)Te~+E=
zD@_i)!WoIKAbQHr6~xSzM}OrXys?v){(;tnHbXb*51IHu2QFuvT0E6bp1;G%M1`nb
zZ1vr@BWq5qiG)s5m%neiWG{qK?r?{L>r3Dtv4#erGUU0f-b^ypVFkg34I^0t=CbC2
zSc^GwEu0zI2{nLJsS=0l^Jt&sWZWS$Q92mfD=O|Uj2E}wZUIe+j%+$#KN~_P1k-LS
z3q)?{C0b{cx1X>4
zthSp>GNjz`su!fyn5)Xs8KT~D@R_)gm}j>(rzh7{_g4X&3LJiTYo`wbe;^zeG`^WB
zs5Y{x;fcTG!B;W4PdM!X|rZ)D6N5kJ||9Yqjdq>cN^4v9j+BR_gb?4c3+cS
zU!vmt+FNI7e(w)c>=a;3n?NGFAKh~v2>B;Tz0*zDckilT8w_k>ZZC}7rp)}U2zRb^
zxLkLlL#-qrggAJBnCKafl%HArgarf2IK61D5AlO1J#;|
z5qwLXE!mL@RZQ|3YZ>@9s_YV{H|T*fO}tRtv;w5ZpPt#0cqSTppL7muXdwW-uS`cM
zyoV=4HQwc^zZ$J>sC&d)%Xj!faccY&a&*j!>zMK_-|&4wWfn7R(e$zuyeH_$yU-vn
zw;oAbH0E30tbJV0n5cR8@Tlp@TZv=ix&=)64+WXP3^SsUr%_U}IJga;a{;V}ubI16wksB
zx2VsHEu9eRR>Jq?PCAEHM>Z9VSHXsKMMRSCNrZx(xJZje{t5}%FsoUYRw){zBhueq
z6p^{hbeI0NALFzQOhzpQXlESV+It|5}4xI#&0fp}h
zL{6m7xb{GK^3+Mo;ivmqp8Rmhun{N$x{!7VL*arpgh2TzQOby*cKs++z;;39b4p+3
z<)S{;W#5rOT&Qai0&Oq-XT@lrcg2nGTq!Fz%GNKbGCgbDNc29P!TXS$~xxI}VxTN@}VM!hMY|`}>WJ7{1V()=YJCP^PM^9^1(CUw^
zk-|ez+#bqzWv76tU_mfZTLqa`(MUw}6p%(Y@P|rwJ?NF5uAa0=dTKNDkidvQbauML
zB186P#s`3NR_Fi*H)amX7LV!E4J^Zb!eEGNUIV#nFs%U
zVh7bAaHEk`gl{a?GBMg%UMBL`pb-3&cTx*4K|Lbu6{15B_)TOHO~xAiyCTPT{F&)f
zB#>Se_ZDiQ(FTCfA*Q5y6YbBs<_}E$g0pu4Oh_^4-0QM~1J!YvJRGt{guexZ-csC<
z==yO_If`inW~$7?tY1#%DAxmtdWcX^ltb+Ai0%}&m&VvbN`W>0gE7N?I7vfn$X<+Q
z71A098gfH@i83D#_B5{6R9&)>gVp3e1;Gge6@>WZ)2B)=we&{vb3AB!_l&px$zvp!
zIF-d-iqi3H^b*UTSJiL}VQd`v_l#}Df|ew$ZTTK3&k@Nj_e2NFNh|Jh`3Hl$)eUoV
zZ?VA2L^KcU&~@^iaWb&8xyzAQ+kC!Vy=peAbL2pRFDX0GD2{4sAe8~t?&5B1=GGxl
z=LI(Y?P5o6U;&vJ`2wQauv+nQNKjQ<9I0V%6u;waxGn#8S`!_;tK@;l$#hi7*jRHA
zM{+z{(ie;FmS=cMUVAPgVMYhMd|6)V?-v(Vs=X@hqa!hZ5Rao7P8yX{6zXdX
z<#zE4tdj7=|okdGDcR^BugJ(
z(M!$2+v(w8f)U(4)Z8@M44ARibAE>toScNm;zslv-6K!OI{$$p>t`H&r38gvUsFo<
zLidD?FX%
z;iW^A$16?4_4=o|U*HsAdnpI*h?$l?+l*xWV&U+Qvk@!6u|~9^0T4qY7uw3w
zRU@0tqv5IBGJUU{B)cN8Z5Y)GoYRxAFcc4xsmmeR$@UcSG(}V8O+_uAR1Q-tNDEP@
z@eQBlEq7zyHS4anXXUwfl2X{tqmz;PYJGTK%OmFHr9;bFgSk}(gQ1vK@hVu2$gqK1
zVrk%S&N6$Z5-iswBk-Dq6^}mBz>Iq5fJ6%N?w+ue(c6rKm|S2f@Lp~)W#Pz_L&;F1
zoexRlr2*fMX^v>zG^*WFe5BW{>f9{_!6jC_v%gJqQCgo&{PVfkV)@hdGP$Kopu6*q
zE^dCQScYTS4bhz1a{S-S|A%_g|LWc$ARolcnA)tZ8DPLg8&%KW2w%WW2ANU(S5H*K15r`^(MQXZlu0
z3jbcG8rj>HOG9Y6@drIi5psQ09qfWy_oL-VdE=(joWjs2-&lLGBJSq=6qshhrKI(1
zpnSAfGU%Kczfh#CPP1BO=A+$@H+EfIhdckF^ny%#h8&9%LBsvsM<
zR*~%1&kF<7WlvO976i_>-m+gfQj1-@a%dj(F&`?c5QkIG=*ZuO)O$t0-OR}q+^(mn
zaA#za+e$kXEZ-*GXnA!at5MvWZJjlTcUUAGGF3`>z!;W-P$ZfaIyW5O@|Ha`wCva0
z%!zAQF&kTe{uOQ*z7a)LLb$~8^~0}+eA~v8w{$CM4sDCZ3;b!uM>YDzb_}`@MpP4(wbySEvAW0*E4R
z8gP6QNQwRvx65af70-`B-@T}I+G8qpq~FHs>KQg}HBj*a@hj(%?O*E~y&&8lOLJV9
zoi#g8VDf!EO$XH73j$L$#24C24jxq&3KKkAz3c>Zbrsp8wWfxUaot~JxsUD-rR`S4
zvsPv6j{-re&3v>;6Ej&ri<&5o=8<jGc~z(8H)jp1BeGq0;Gj!>I^$O_Orp*2rje?dT;=S>Aa@8-DO?dByJYo2lP
zQp+24rxOSA%<(~`QD<`9f=DuL9h2fJes4G#RdkSGMHxWN$QS+!$3OCJE%u|=Qg|7B
z>bcpokQ6tsb{$C3HWLH4*;=b$hR`%CG1p?5f#bsH8P=lBTZY}X*UK(`
zd(M%BxOn_?>g3=dbx7
zi^S1L*(@9k_C4ej+mKDYGT5wKnM^Isl!$u9W&%KY{c+RNQJ*vk>4I`5p=vxo2CrcSW
zhTz|lJ}=H^i0-^`Obb(l)k?OmbPKIb#&a?KBS4{-3Qu(C_MPk0`%FHTfw3#7%qgs=
zks^N`pNvpOLiilE0(|T~AxhFm)J2*XPSw*dM_720Ltv05iP}?}dA^q8F)~~yxKILw
ztU_y#PS^6@x+2ZrgK*y~MTGCeRHd>xZG{?PCjqb5Y`pa-11>fidJ07c)B=Y_-9KV0
z{lVSz!rJX9@avH1*sDCUxFBMpOD2YJ@mCC_N+kvttQC(=5f_&un)AxPbSqrZ3drU%
zpMhrMck6&c$GHa18oUT>}nXSUHrI
zbkq<6;*%cOuDk42B>cGh-LGb(uB~WJ8CF)rHFIpgUW5;}i
z`%vg2jYf64$EKPL9KC;0?P0N(Cvr!oe%9v4wH62XW8#N27WE*S&{uk6qWo{Eu~Msq
z$yJ<+sd?9bwb5nz=jdh{C|%3dH_!FOp=qHQl|bTSq|$4!UOz`bOLPQ1&-Ke=@%C?N
zo};VlC<3&JrpM9cAY1+>g=FYZ6qkodS
z3GTeH+=ozb2(hH5p-OF;908X433Ge;OGZ})&mCL*^6VI++!ZYSu8B8&M^`0<8{OrV
z)Le%#h?PXUH+ut+{M`NN!EAyQBs*>oKN3@TTmhs;%-ki58qP(k@l>4OIqnSM2b
zLGI_4PH%3<1TumovT^4{utKM#d{QOjQfJWdt&^iJS%0QtX5WZdc065`U!7`jo)jM?
z3lZzrV5hkADE1TRd6<(+LgT#P#~(s!RX2GcLja&`n5O*GVT43ozNXMzpW3C)FnIJh
zxGkzwY4x`-7ZZxsLkQ-`)yd$8rB68#hFy+W37~~b5gRbEb7?)5Wtf9MQ{J3m@GLcD
ziO-*8-QW_-U(!g!!y)IJlfpP?4lCZmvFn0%RK&IAx#Ih`d<}02Q!@oH_Xi(t@c42#1xUFi
zy*0B|fdxntar45DhzS4ebf{Q)d^a?`CEcJ
zZp>cluK2#U1=Tm;!E$Pc3sH6Xt-lZv2NNbYWGfw0$9H(c%~@IzGYyqevM|#mQ`h7X
z2K=kPF4H0fKGHyDaPi5!hzE2-ikF<%uo`^lmpCs-p8
zR`nPe+9)(c*OlpuU0qiG6}qgzxUSgpof&;GF)hM8Z+P|0Pm8CS34UhiI0^yeo5`b+w
zZ$oNuqH%s}RQh93pvdH)ofxC2)eGwU4Ld7$Kx&TI^Sf+E+cYy-ZTca|y-lx@8dNG)
z$0+3kW-=!dJ_<1is{#gW^6k=5)PNfkJ$V35Cl51@NDGsh-z
zl;e1H3S`V8ECEL6)*TG&6_AqA!cBV!K)6};dJfxChIr|C9-kQ<`F+;12`l(Z
z0%SXjavBLG0v;s823$LpZfITB`3-0s-(W37#R%%~tYRPwUgxYEA}3v*FH2K)=jzzy
z7>$4=2`^dxet0odw69|R2G`B60M?cT4Jj2nsCpSLt9f
zvTAD&dQ}!lj_twm?X6Fr`(>3FD+?U0qf8^E2@nq4Pd6UTm|ub3S5%Xsf#O>ar>3;qzth_5gO`!hj!+I+Te|mHGMk$P4_GQ!d6}_dk@`
zVMQskN*!08!6`izy`n@K848^V3}p<9(Lq&fPLPgFRgm478{$N54eqq4b#lD8_6Kd8l1A_=zd->^)4=HMFDo2A4;4aFWGRL
zr%3D@87r@fGGrJ%mkkZ5##CMTg^ht!uL>Og_-2f$Fw;K7cvY*}U!BZ)yfLUH^Gz!W
zJ>aV_uAesWOJGlLbQz7aeyS>2jApb0FndDtJtC+BjtUIA@c{>IGC-(J@I789kA;
zzx8I9^#2oA_HyWo_+%ezsaw0A4fdz{AOi*X-DDt)a6_nkzcIa1soAYh>2GOIXs_to
ze$wsJkzV-6$PY&xlFv8gIAqB`sRuHshtuIyPJ=3emnwdf^Guv-qK2n
zSnF-IOtA$%-cNj|iW`+WnxG
z$@pJa=>O+KMizLNte&Zy7*7*NdZMiQlZ*?bfo6llXuiQVo7+XtW%wB3m`UoGXn)*B
zdYXg-RKK|f4=jZ-Z50G&A08!rJfrhdE&TD@QNvCQLa5)PC<15(aIBL*XTH}m9@iX7
zlKns0`_7=K);3!ZkRXC&MC>L@PJ$o;O>Sstnw)bE0;0$vH=>d=G)bT()8w3^geHe>
zl7JEg0pXA(JAH1|RNbjLcc!N1oBMs|-tSNU*wwrCuC?FrJn!?YwJ?LujzXsmT8$Lk
z9cI#P5gdNZ$1M-hFB^X0dH&>kx3)jDw))YdZv&5bij3JSC#?3jMM(HUN=JnlRY_kw
zgg@HEMsPAuz>VYEni_LQ3a5IO$`5>!Saj{0=GSm#p8OgNqJSGrHj8OyYk!CyTU>ew
zUk7`2&E(8UiWj&R16c4ar2OUa;(alD^O^k$p&x|kdAaRk&0O_#w7MezWVsJB>QQ9M
zI>S00`U%*)3`RAqz_+#IYk>asvv~w4s+8;$S=GW=7noLS@k1-a}e>3@~(@;0wx3uw7mtg
zrASNsmVc!QKCWv#Q}*-ld)f_9#WmIG7^p@_MO;w19^G^WKK<#CLXXlZ+QntxWC<8^
z=oJevMJn>x*|Q>6;#z_#Eu4j>+n6>6=R6JTlD>A^4a3VQp&Y=OF;SWlo+q6L`#HPl
zM*(TjkYW8sSMIHdjJtN$9p4TaBXQY0t595gon1Y)AMlhvS{3XPlyb0kNA=s73O;a~
z{nYEE&!NGv+(O!F1Br`jg|wX6_rphM_m!E-@e5s~4%Ty3w>O8@TF&b*qH8y%$;MXNt;0WrCKhC{0_rPoMK_+2mQeKgc1=0CpzGg0iFmY*$
zLyn0F_F3lBr#&p(tlcvl;bUsLY620W?BE~Z#z9)5`=<|Tf+Npfx!kTdxD^wbO*@`S
zk!jW)7}A@a%88^W
zdGMp%faL4g><8~suF$7XcGfYIwe)utaI7-%yLiO+3tP@(qsvZPp|bpkQ%C`({Xibe
z4GJlWt^H|X14yFXa!IzyNDM%wu#|?mMjcU@IZpo78%HR5T5PPtJu}EuQW8aBYkE0X
zS-F|wAHjtfWE$S-;;00E&v)<@5+#xsKP7G=(pW`Wx)Qe;8YTN?YjEb!9t9NORZhwcj5
z@dwOBxZa!;zd6OPD?oh{$V7RsT0O?+_)l78F>SB?9#ambu(WQNQj(og1`EbZogmw2dnHB1N=jH@F
z%WsfkW0<{O5oY#1MjOoV#f`+SDAw18)KvS9?V%2^IX9o*)+U+``JIGd9@kVbm}QeO
z3Ypc$UmY~S5_;Woyva;^6
zM@BU-bwOP3y=bIdNl?(+0sLu|c^Ak~eGx()JrC0j6?9A%HLw|G%9rCV%}aO4a#n_#
zd8#=X4Mqf?7jH_L2x=QB*Z3bt{(w)wE_6U+pl+;M(R8PFj
zn8JwD=j4c0-7eV>JCMS5wdS%#@jn+!uQ(tIRHYi6dxwm9tEfai
z<#Ky@?o`5pn1AWWJ4}mJDZi6Ne(QbU6MAWXLwmYr)^}RzB!`GKm$>RJ-5!=WVX3-o
zRyY1=-3@$TLl&r;)0TJerxui53bK(>;gjQh@2uB}tLOzzz3$eh-R{k~_iL|64Ed}ywRj;HLNAC-^nSpJMmMDQ;es$UN-Mg7*+S90>kZ}
zzwoSoh`(xleAkdUqFGm6f4SNCp5cmi34h|Vh;p$Dul9<@+>!Ejw^{8S#`oC_F45Gb
zkGd%EKJKkjDp&~eBlMi+T6Pg>0#I$~#OZJAd1T3B{6}bQ{OFb{D+XD>e*Foog7LW5p<7F8<8HN*7O8omsgx7O3FqO6=z^~~JM#Q2+$2Q3W^rjDEy
z6c6tPc$Z`_v+ZQ(7D9maYV&^QuowcLI{_IsxQO@`7h{MI~!Z(&Uf7(&s4dR>^Cf-
zp^v?H_Iz_e`apEyxXiP>hv(wW-HzXzBrPdijWZA*vlz?+y8P&ru7*!Wm%js
z=^j{T$HMLE$7CCRg}Ny@*#>G~O8vt8m4eED7k1|269RK^g@TFUS_zRsMOb86aU^-i
zQ*%%KS6N~wUS)KqKt0+}1X-|b!CT|hgrPfW+yP3z@Nl7r6;6W-la^mRv2+0c5w|(<
zfkMKHn?QC1R?>j
z2O?%<^ZoP3UrZt?bXUpaj&OTw5u3dsQ<(GG1ZT(T$bve@p~5iN*Gj{(zICA+O`d|-
zT^N6NNHyfQ`f+L{@YDl;Q(JGr)yfO0D?RjvEO>lk$}4+=fFR)})Cc|n=Qc{Ld8zJX
zFUq5yJc6SM-+h@b?4!6r=N~pqo&NH^Pd?@>s}{y2F!IK}Sjx@5$`9IBU-m}8C|yRL
zExYa)9=aBRa<`-HY6h>cG`qLBcOgIm?d
zp@dPtegQ^+Pczx
zc|w5E<{jqy8H7SH>2HfMd^|}#eZ!1h7s%)C%w4n5?(WBR$#_U|3LvRez%}&oCT7@@
z{_#rLySLff!2RQe+fpq)2A)uX6X{prwTKL|v=7S4&)&O+hH8O9+P3F_$-DD|XQDZ>
z(LLvYXliq=8eu37#x@AJV
zZR-ZH4YDPe@`Umqfz@w)s;A+rN;Kurn>sKXH`nR!=GjUHz_$IluRafayN7ZVq`45#
z3X%g_RJik3+?BR1y?9Xy?+<s|4s8besjCsf~nO)p;+N8u4{@QU12S|pf(S4PinS0?FeHH4$wC_HL#E2P26us*$A+rEf`2x~HD@*04Xd?2^H$
zV4VlFXj9WhGyMigR*9{;-L8Mv%GmVj+lk=GlRkB%VGegxZGRhb;_kjnb09WO(
zoQv&Wvw7RYK^OqUrqhf|%HF44C34+RUBQyNU{uL}kQqimkQ=WqefGE1ULuV
zHV+WJo*4nGOLWVIdcnbup-&|X{47^RpG9WoO}c-#u{VfUZVI5ILfNoS*bdli7@Oxj
zIT=vo{C%La>g!hHXE{6mj8rmdp2)X~#qq^Zin7=VLk=zPH}Bt92lCUCeh_nPcyF{3
zT96xqg0b~(7ZLO-;&gzpsK{ekJ8mUgnldkCEoCYI4koMX8soRE&)
zfXI(Vgy$}yI&&5!SYBuEpies*?J%8}t#1-(OPglwB3QM4AZgIMucy8Rg
zdrk&+rJVRg$tXhXM~6!*n|Pk)Hf60Bw#0zf6Pw&q2Iu#>-o&Of#f;C!E9bfWl-=B!
zTXWhLgBhfgB62|t1vrtB!xaV)sWj
z8a0NgOksO(fGcN#QA*RV=Wf_LAbVKH~R
zj#oC)C=DcdJpIE_x#>O(H7$D1HnPZ_OOy@16ytSByALN+Jhp03UngWo?V$u#saa~<
zPnrC=p13qrTbK2wq=Ds9sA&xX27M_<2x6P!t1+vHnS@>+ZsS6h+^&srx9+~EJM%0xY`(EPNegGO4_c7g@
zPmGSYA)Z_Z)L7dG5>0SDR%@F&xM~L%NczSmnwhHOGoiQ6sd|o%K`UExXdC${lI0M7
z`I~oC==%9MwU#Jjd7?o6V|}SMajNh9nd)~?ly{W`;2Kj{wt=uXonLtBmj|qG3>ann
zSwbXZ-)^lJ_l+8B>k}rbL#)mFVBk9tjA9Y=$#=AF(H=}=f^$=e=$P*==V~=qB0F>T
zebAQL(RpC!w@W{fnBJ&j&*dOtX+%)i6UXRjw@0H^yV6aNgtdZ!=}7@CmJylurrPdV(bNV;G&rZ=pM-F
zp?ka12M=w%{P^0@wR8XvRm#&q3KCaW?V-1x*SM)JTcH>#=l4?$G9m*oucj;Xv?L;O
zv3j|m>r^=CVD<9M*^%{luyF;I2IJK4eU6Eu&UwRazANCqzR>&BI)rld7%1g=%$DgV
zdhsNKwoPFF7ar?&P*2b9mR2h(YU<5uiX)=1INd&xDYx$wf^>!XbDvV&$Gz_$J+0@bq`ks89R}#PUNh*wsfs=~f
z1wlr6K5x^Ng>TCl>`&-n2u#|Y2r&p<%W(-Atreu>Ny=j;78|P*+v>^C5U5t;v!Wh?z1C(6;hi%rI&YhOkH$l
z-7F12Z_w4ut>syL9pRO8!UQ#|;+|dmp7*?fsg^%OzVL`(
z73_&>CC>mq4-F?qzVo}6e7b$Re<{jyPvYyYg)V#0cBEXuZh;o;(f~~%`EguFrto(+
z&YB)dk@-cq!YU2bvf7?8K3m;+^IGitU6eT@r?7a~hVO}{PJsV)AprTX`K7;mVV?9#
zZ)A0w01elZ`%$j=$Iwz$`bUe_O(sTzzuoP`TAH?I1m#nyHj5DoTWj3%FXl;kM366m
zwd^6sLY?pD&QwE7hh?FgkckP3X*|b*6b5hauRQGf{T{_U31XyG*Kv_!>9o!1k=^m7
z`N<6Ya#+u?ge@DHXzwqDe3hhmZIMo)nYV}uB8kC0T&`Lp#7_E5EqLlp=1P{}s0Y+A
zYU#G`Q{8<$aZ>wR^MIMf;}aS|Fjc2Q*-OHwU#mWCq7tS^b@h(DK1VRh71ZI*Z0S7I
z=$}c~I%(6Zb952ZQ)vRVhNQ?n89%zO7*wj6zG}63y(sbv5BlZX5%CpBFc-SmD(mtV
z;GSBsy>8Q&GxoZ}6rZmlWXLXqiC@f07j;409G!d-tiFGEvp{nz>h%M>MdqzNmrP-g
zzAvYnZ;CX;v5md#(xAJNfyrAKWZ;RpUBt~bpnUeyeY8>Ht0IA3BA6!9*ShFN+)VqU
zfUQ?+-$lFYk9qEFDy2me#PUGVw_c(`A9zSup*kz*bKF37avj1SP{FzH)-i-e7f^j$
zXb*3OaCdnZ$F6qLFpW{ei-mT=L)Qha+W?lzuMTM+4IslYoj+)1TLVe96y=+%wb;?H
zj>}eNKoWP7^|!)qJ53d-4C53tKLd1%Ucc%H@_DV#P#lW`J%@j-YF7zHPHhEJA>E;W
zxMNfV==?vrd;h5*-G8TI^Y4=Dzx9QRshWq{wf#%mc@8Q!o%(FJf{idnvXwg2RHs51zM_J}*id
zMWv(MuDfPSWAtE7Pi2Sq=$!eo603YB4@4RqC@z{@lnI%K48c_Dx=AF0!Bee9_+CWQhy~5VEvld#gk1L)z+DTe=ATT@~l7
zd~_?ds=i9N1S`X5=&azpnMA~L?&vlzs2eu_7;`4!yvjr#ZF?*R+P;)BT$9*C7n=+3
z@m{x}A%WTEmYlIg%}unJapn%;k>_wvO)A@K(w#V#ET#kh#BQET3_{eH`FX|Fp%}j0<_A5$=u`+N>cKND2oP$(YHsyG}A1noI+?HT+<0Rm^G)h-~?NKrF
zvva)M5nH@#slte6UV1HTZt0;=SmO#5lE0df}
zJ(1q|4I5~4^6EmoaRI@@(TiK&IzNMkD}8MGpn<;ijQWGA2V&SlicV5_;RB#gvTzR-NVgg}NOc+4rFw;Qgls?MjFgWm
zjUUx!W-}pM9U9C)zn?--wIo)Ws^8bv%Ds3)BQQNk>@6|qOYbRlrFfOM4o^TU&pz2D
zxaju*9tL)>CaFl}X8T1|T0C9tTV9Qeu`L6fK0*~m^ZX`{OBkXI37qX5aF
zt4pdC7?;3RBR^dF@-Sl3EHz6}?S4i&SBTy4=QSI`hyjx6p9|g}hE55eG=DG5<&ZhQ
zDY}w8-3T;mWDo~ix
zV)}3!a{3F;NG~NIRZ~o~S+>11GbBWeKgEp{2H=e6;ozBqRALi7Ae<^Bmz1VcGExS%
z&vc95>9gwAiLe%nT36M5&g?zAO1A9by|-2Z`x#lz9$NCOSIsGe9cZ+YvPeW23!2`!
zv1r#XqUih&9lrjdSN;E3LG|Cf`YN6Bj}k%m=XlK*iwoNxzfa4y`&U@t#8-z2u{z^)
zP_arPC4K-;u1!TWh$XHZO$Z?Qi8}$N(w+^y3kIYn%OqtNSw8ggN;isVrW5g5jP;pj
z#JKfU6vaIkuX9}CfP?mrzazr#QEE<{DnDo?%W766x9?AttLFe)ZzodH^4hmw^Y*#9
z2NouFN#;y|M*vx-iEVcX4rO?per_yg>2nTGtxd&`YNj=yvD@`^^-2n;&#KFF$>=OrwuGmkORPUPec9QNwSHUu@ww9%p{KoQc6!*u^*q9g)OTBY
zG(TFSJx&bDI;1Yd#e=}(Q$a$F1=@QCvE+|$?~fO+TuQgg;K=lYoNm&dZQnop@vzTQ
z*wQh-Y8#N8HH<5=5pp*%aq~<%QIhu8CR)#TZmoA(2UzLDexQKX*X4iU67V7`LiX?q8^rNRLbG!$Mf>3RFiio^#iiZ4#ysPxqai0{cCdr2{TRfFz!TM
z|9t)~|H|;OPm+3VVZlILoM~H*AQM-e*YYy`Id*e%D1W`MaGYe_pe$~xFD^EQe$?vv
zwlunb)tk$MI6)B&Wq;Nhd<38tlc`z=xP1|o$h0}&D|9|SV&&_1Z2aoCRRUVJ`17k@
zcyr&SxURC*)|1Xp-7tdxX0ZNi{DrFH|LVB@3$IH$4);6OQH0|zSpGM4h5z(H|AmS4
zukZGEx}}0szf-3aUV;A$&mUKunQ?N+P75t6E-tb@7S@B_?c6pk{<(_3Dz%R$z@7;1
zeWCSJy1y8TXh38rp|m}UX!2t`PGuKFlzjU6rr$O#ql;Q7hQ9cGCa=Rz@;It-ML5my
z`lZ0mjS6GlKXm{aD1$pC9?d&9TpHJWSM+;}JoWPxEQ}*lmLb`4gMFpbq&#pdjV*g2
zLygs|Npu&ekQyk#WAeCwF~j5P1Zp__1v8N1#8-I*?4BNy%0b}bldP4DTT0zl)r_yb
z>}f^-H7}sSwzM`Gi1NW|a?<+We|N5tBM}|jJ;bBjOq%)N86P{449xZ;t-YVwu~J5N
zzKF0eKq-`QRY0|LciDDv|3ij4s7OzTUAiAPJd`I08AZ`hhtxBk~Ab
z^n!QQ;&%EIdh&1hFYW&uAx4)QJ`TE;Ux)v+)cr%5`fsYY^IvQ3`deoP|Ch&Uy5bGa
zM0%SNr`6bUfyD8R;QwP>v%fe}|M^1lCs_Wa`V{|>KG2_F`PVMb{~f{o6D
zmgzsia_X;N^7)6s@;@?f{)MnH??PvzRvn~M!H^ZFCD?1i@;x?tJh{b2d0K=`nzZxKzYCLnkX;Y;M=Kxpmnnh
z+CKP&S7Pyp`OIZ7?(7?VgZjgbW@(S$rV@Bj@J9{+|K|<=MCqSH^tE;*f$WO=_Qca}*CwloWjV5>wlY?+#v=eaQ
zkFrJJbqK&axd8wi7k^&mVIFpHCS6Algolr#hbNPQ0@D>OTd0#eDt#3Y6chou0071lv>$aNkpS=n{bwEMVoxxB!f2Z3lmLK*hVh4-SbuE`8uOoR
zLF4>uThP&d@eoA+#hZlm4}PlP71RoFenoylt^)+;t*}wh0??2f0MU60fZagRA;*DR
z009mT4lWJ>E-nEHJ{~>^1u+2uF$EPF83h>`6$!z4_~Y^;@vku&AwE7K5#dE5qKo82
zL`3AMh=}}05t4t00rDk4f&*9sPcYD!0dx{H3=%ZtB-ltio1Q1q=WU
z{Q@QyHV!TxJ~#mWo{0vaWBkm#2%ud+!$7})j){$hgNZ>P1ZI+8T)0dsfGMwMOUCSV
zQxJpX<$r2(T^_;$^$
zH-o-&JIWl%PjAKoQHWsGHxd@j9NH2gAcrlY<3f@d4M@jHXzkgGR)o#W+B1yr30_r2Y#fF6v0GnOp
z^#CYD-X)llkthN_`%8rXu>>4{ihvvg2r$m;Bmp46>|U0>8WS!PpvDf+B!vKK>Z%Xt
zcV5@_sE?msKKr(7lnB}D4(;_g^%yetvLcExA2VlH#Vnw$d~uACg#>nzy?d$FSGH~F
z^ko^`I5&5A$gKEyPQMbyApzORIAhxW>Uc3|?RQ#SBv1rRiLbq6W*R)-G+}8w&FC8b
z6{oHl$16nhxwtom&ZDrz4c%_(BLMPMh=628&FOwzvUY>+#{j8`@LhA`UG3aN{Yx;x)Bm2ro
zZV1I1R1)27p-^8Wb?FQ2VhG)IubOYV_;>0jrzLHAJs-_wQXA%K&Q7YfkLcr0*)iI+
zR8mPt#-?{#M9q+Zaehb7HFHL_b-vjSX`%Q#o8AM)R)azJ6d$>;yai^Ez|Azy4VQl@Va}+2s@W0e80NV)+@ND!G>%%
zT*9EZN8~NG={5oNMQp$9RU{yuZ*}{_t}lV-fr^y8?6{*sFmEH(TG5qm)E|?m|19B>)2WL9%X767EgBRyy?V?QuoDqW83wt?;oTZ
zs*phA$@mELA-z#*y&tX{;BD_(!4
zo0_ioH2XdDl-4`YeNQ
z7rb%e-zTlNR$sUMy304FSteC7J7{3N_#6p{Smb_uj|3oaxEE6dD>Zfm`S)sq#98{K
z!)Mx9>@nc5+$#acqye&jk+VG*t>X2x&tuFAqQnM=#k1AaR6@eCYWYFWS)8%g^o%VH
z&h7RJ7A~&4Z!8CQGiOd!!skc!v3T~~>T)(JtQnRjYvZ4uuAk`_KT>}sX&o2K>MAL{
zZ_}K}(NKGcRuYL{=+fvkK};Xhk`lA8Hqgax&WsQ^&7L%(*SqeL0e||6PCl-e=Io$f
zyXsmDpOpfXy7zf1?ta}%cAe|4k9~dCSSJz3b5F$el+b23{Db!0
zNkc7B$CheuD&?c`2ABJVo*pgbM^bIe#ZYtC4(6ggUjJH8;B>B0xBbZ@*O!Zp^$i2Q
zT24eRt!c$ghv5o#@*58MLbkN#Gh{Eq?lqlW;!wZK^|I*go;yK&^<;Dc*Cm7dGyb0^
zY%7@_?@6hw+kfk`io){Ht)XQse?E8mc&c*j&G-?SNdci-@OWcvP54p^WB*zFa)k!}
zEJ3ufMJ@kDH-uW^itB#%)6wH$Zs|;ZpR28wUlD^LZ(*Vpf+nK-!|2wSjrlF9<7(T_+Rpm
z|KM?Y?EU7&dvlB>TZ#=L0uRW@&BG$`Vfeyc@9unRb#G2QU4u(#T&Vm0kwt4--BJg+
zV={G*Zm{HmO%y&n6PKsKIPthpr=UXuZofMr9ev4iP-|?Xvk1`Ht|&Zg3g4L((_0aU
zufe^~SA3QbxWOO-g(Qy_A$nH$pqwjgyVLvweyJD3Gr_qs-{*lM2W>L9@#<4MXTe+@
ze+(hK6S1&lY{T%(PW!s&;TAjeNC4XoeQi9>UZ%H<%)ph|KNL;+TVho=_A0TKJ*5Fp
ze#8sD#JV>5`r60q6%fJpv&8JZce2tGis)A!$E)$f-n}Ujg>Zlqwt)ZyIWSj5;HTsk
zLYa0KyDe#1K#=!kdHi0sL4$Z}#8Sr84E)*1H;=Y6vO%*w+Xbno(1kBh(^a$JcBNsV
z;mc1%c0cXc#W%R`e;P#sV;-A+BQ??M*bxVbPzK9wC&J;5WsDjZ$TnW9j@jl-rg2$5
z?ZVy2@Y0Ol5qthfcsx}3mMC$l6QM)DL(SmXSZ?0*}cvoUiSf35hU=a+Gj5b-*%{Oux`So
zUNbt(fA8a(TMc)m(>JCBmD#!%qr>A~j+G_)W7|b_<-Ym12h|8%a^LqAoPL03751OG
z?52brwYw|DNoCeci^Lz5Pwyss-b|Q{jZQp?$2-)y)z4_$&U4GW-Ex0jw)fT@9%hU8
zO_2lbVG32HEzb|-E5s|fea3xMc2Yha!PkPR{Ey<`ZF!YT!IaR-;#qpt?2B`ZUW^9|
zIfF!oVqDm6^>g&InHRboAvr!4yRH2;OCKMxqe=2csU~5luT=93ald{MmpY=s(4H=p
zH#TBAu-F1V_*HMLeuH9YWOaX17;_k#nLDnux->$kQC(bFJSb<+pjPpItxTRU7(1u&
z&5}vOuB*e5F}I1G)pCU8p?f(@Jn^)x=b9iZy2@j-VWHG7l!c|X)iy-D>0S?IVevcU
zW?ulvB1ZRJV7>^!$~Gof;MOm+Z!;l;^#F@Z$|9jA$550Xza74=7<
z%Fkma6r<3?ZWlV8jT_Oq+(rcXZBS&q!4Jkg5{*18HxbyDb2IJpY`onr=I1#YztY0R
zbdgL?WOC_jo)1EqDhfyl7@9^tWm}mC27S^eDH=gk2IoUb?yAal$f0
zMv8sM$-LrY3`;2f*Ff>nS?iOKsP+1q%A1UtP)MR3&B}{u4T;M`Xh&x(I{B3Yjt6FO
z_D%k0Ur#try}a|j$YbF!<1nqzQ8b%fmfP9%vh6su>B0QG7~oq)NpJ6_u#)IK7Mnl)68j<&JBdm7Jz_q$Zst;j2#c
zH)f|px-FweDbe<#nO`zlkF7<1TK`NFemU02^L=A%)#*2r@6orD6!yFzI5~j?yo)jtY%&E?f+%iZpMz&!PLa<4xDH1l#_g@7uXi
zT`cFW3BfI8B;b*!>=PP(v^^K+27UBu!P!Kf}5
zZoZ-AT3&aw*ET_I|IMKVhF8?!19U3bszuvaoa8xp?v+DZpsX-Wh;N`fmZaST!
zaXSB?^{VM>eVgt`Ai_*8SWfbLQ54U&*LPq->-%CFy!rV}Ru|+`dx(iw8kIXKA_kY&
zM_uafURM2yI)=)
z*#ze%wL(WvuYlI1S$wfeVNQcf>&{NMUc~1j0fc|BD`T0JY)5r$$vZ6pDRYcRbR*)B
zA=z)WCNBO0K1je~(=o4@uGs{8*!Ov+ucw8cTjpu@`92!nUzXrFx$~pD2rT6{DmYrYHux6k0pxNzoI((9WtheIhp?Qd)A2W$?dD~uNY#RcCC{LW;WT6Dtu^>E%y&0g^G+QqASEjtIF_my=45)gs|7Gb#tjlEPz_;bEvQcyM#+*fxEeBnM`*e3p
zcNt2Z;)CjY<=rmo;z-Kv7(CLZHf^vVZV|du!Xe!3~v64MEh8%6=5k_4e?v
zH-IC2J$3Ayphmi{+X3PCE1~4(s`x7b>hVw3*Pt#Ae<T~
zYYLz=D8nG24`X72dHCANd3-@7&x4A$`+vY)bN!EW*SukdM(zk@7JXM#-~I~MTwzTA
zgxB|RMV#Yx16<|wf05()!J!BbZ$(>#Evg0QLh3r``urRfC>TWyUQuELnsECcZ2qNM
zL(uN{Pt_VgU4P(py`geuC=Tc0BGlW%)5H-Db}l$Vo!lLMs*ebjp%2P*%>#k(aC7x=
zcle_S!Ot9&2!Fv7{>1A$IXM0`1OI0RDBCZ3)V+eS{zHZz)<@9J`okKDetsXZpXU+%
zQ7L$V+yH)zH^Orq$`WgSPD%YM&2Y|j=RA#j9)l6uc`49Jiwbyu+$7+DJ*V9}$EpH+
z_V!?oD;R@zRWP9afyqhF_=OQX$D4!kPa2f{77aj+{68?~Jimi!0Ci^}|1n@Jp|bxm
z3;92jcdiQ*Yp`tq+Ib3P#Rkspzdtm`f1XB1`;m*18znhvto_hA&N=3fyBJ*#M1#LS
zw9bHn{=$m}mBdg3qaSTYB>|M38eI$o@Bkyg9h_mDz@IBP*T6t637`m2RR0qGfEp#TM|234)n}y}$>I8-R7`tksZbr1f)q{DS2cl87b?ozmn&MyT!glcX@b&x~3d_UW
z$-(K@Jga1Y;;wU!19=eI`XW43;O=m5TLc^iA^^ic&!3M8ydT6U3@S&>&4CHL{O@i*
zhOf8l-ySyS%Ktk?%g5pG4f!+D!`5*B3U>7_7EBW~ydj(Yy
z_^bwpGi37|{&DA$pTnpj{NqkVQ2->oV1&9ko`64V5c~oF&*VTnDL@5!YkqrketUC%
zdvkt!bAEesetUC%dvkt!bAEesetUC%dvkt!bAEesetUC%dvkt!bN-L>=A2ttE`zob
z0Q7%=<`R_Ygcy(qjguaL9cZLv0$n7IAdCQiKIf1pNJ08vP%r@s;2+8mbI$*VH541%
zcYIz0a)xl*5rOcO-FZ@58_wjngg1u6k!hR8BW2S^6EdAh+7woCzTuI@gP
z0W!?z%q2k>h2~>sIwwK6$S|Mp;bk(_(q&Tc@P;#q@QU(41%&yT#3XnHMEQk91h|>N
zy~$#H{33k(qCETplKkS5f&xr`1ZJ={Z
zAtAxXFUTh-$OBUF_yoEmYy)`QeOP{SP=xzHy`9dzK};x)pr^wZA;Szx`lAVMp1;`s
zqpto!sHOFvle)Q~6mZVg2chH#*7Bcqf)C2}$EOeX@$mJA!j=5s?g*Bj#bMB2Wj#Ub
z=XpzEP(HXT+zll20XtFPS5=-rw|@UB^0#*U%0BOTR0W=r3f^#A(C=di`h0$N)SnK=
zzi%M_O943OCxXi`qjr?@2ng^9N*Mm!QOu1THrWXc@`&3Bit-5X3yFxq
z_(kA?!s0)<{jiwZy8e|bN-7x0QB+V!NLT<0=YjLXY|p{t0z!iPc5r)p
zsI7n~GZPFdY473fW($rJCpTLMIG?j8+<}?tPjSu-!CD?LQ0ZVJ{=};(D1dHJdnZ>g
zLsgMUj9-FB9yQ#->cM8JI{AQo8~Dc!WB~X219Ej@IvysTkokDnBm8Z>;qne(SNxZwkMDmZypOHle=hpJH!}V=ivEXM
zp^moh4sdX0Kgq#K5C#64ePw^nlE1INHSk*lzcuh%
z1HU!!TLb?GY2eTG8{8dyweSa5XUJLfTi}bKjjq0qvYMvS`9c#NVe9GXigMt)f&0?H
z&1X!eX68)T697Kw?I#5!flIbfA5VE*U2q4@KL&8Ixgf!U2=0F@^(PV^2ClxqB`IoM3WfPV-9XqCgt?)f-r&YHw1*(f!pQrv8MsBXYU^~wPYJpDxcQ-<<_E8&#=)fIjir_L|4B!VOz#U2Q2yh1q
zic-PDGw^&*29rFfSva^(b_2I+!o9hf)ZC%G=gVV$6dkJ1P*(uh(Le7CG|Ij|aUMAU
zAi)Ceii-UcXO{{94b1>R_5M#BYZhpC0C!E+fAF;Rw*A2mjM4Tl{8woodm+>=G?13y
z8n};i3W?ld2lu`t0l;Y@5_z19M4sk>^@Dx(()BN=cjZte&QI_DI2-$K#pr(qj9=j|
zB~fQp(SK$9yTJMBT{KN}F$^^Dxa*&%cU8dCySbp4Sm@vh)L#J`2MhB8E(RWWiWxk;
z3t(Y@_5aEQvoNsHanNu9Jp79QIvNIeeis8J5jqyGFB*8Vmjsg(>oPVOGk_yNE-%PJ
zfvb0o(w0@|lD^kXD!W8Bg`BEQc42Qk>R0_D95V)@5nD;QiiSQ)%3>wsCv+MoP@W|+=&tvloi(i+PS9bUI556BBfz3yqH@<*@dEvqZ
zEG$enP-GJDyfLN#7Qjp#KeR@6Agy5yIfHV=AcP
zR&F)B2(_W85{v`SC-Q+Z0wu2z+}Bv_*6nkFcdpVTKdnU_JWly>^7x91iM{x*!^eM~
zJXSSz47l^K=y~U-rSB4IW=?^3(~BFsJ})0~N~)VX2gPKRym&vha`g8D!owpkT3fhW
zNL)%?>x}S3jE1Dl>^*t=ScGVai&?Y7RwtFtSQ3yx%1YnKa^_k5!A8qy+nssHLQoA7
zkhDhvd8fyfzTajgh!3sHkiduZwk0G0mJ0rUU*XK86tYv`aRixuabW$M%Wu8>9xuP|
zqyM*NhM^M4qy6+(73I(JE8IC($S1Fq&5@})6o|PZN3{VV4^bkzgnCAVBm4i?>at2r
z`r>%6u%6BGd?M-o(YW5FgB7yT(t%QU*Yee7hk}AJ3o&1JGZ&7S)a03G5}Yprzh<0?
zm@gEXW9pM9tzS_BCgKr+EO(5}C{%iG4i8AM3f~unZeQ4Sc*clx>|SB6G9{sv{cLN8
zT!bN{dP8%KbAsZV3Q;z}OH4b>VO4xjeFPid65v*EXwaUEk?93q_Ds@&5w
zOX>5zE+7GNNVc*v<1H)3_`K-vt@CRcpA*Rq;fy>HuU`q#TH8E}iOP2}$<}oKFduHP
zA^ZFw+V1ZB=9lzbn|Jw!j5QXKI_dOycKb-c6RyBoR2FiN>cQw+%te*GBJFAI
zVqd?DQ6SKF=X);i2e|m6sf?U;VmGzU)H>0Z^>@mB&$tpP))PS#ez`w!KFpAykDKU8
z7P`ul)97e5g2H#1WT8o#u9x
zu6<{4NX>PKF^Dm~q{=|w>5)~41egc+cb|N=VUU%W8Bi@g((v8C;Dejw`qg%ka{-Ud
z*oH_lBSO=co*pKk5vvS
zIu@*N<47vZx$#Jo7=_r4AsT3|ey;JYGZHG_b9P)=wa!(Olir>l{A?L^%|MIw)|P_JfsVYo
z$`?$|@WL8=op76W(@H--y_f-Yv9-i&54MM7rxLZ+TdJ;&jK0jy7z!J5j{p3Ts~M8k
zXFdO*dvtu&XYKv7RCAeOa*II>sZV3ZodX3zLIBiudAo>FenWn&Won^xpg54rLRDMZ
zXaK^YDa7~V|O|~U1PGrb<-+WJ*I`yKr@-_Y_^~PhsYTRoL{M<`(
za;YYH!^DW4t?B`mv}sVva;Cf}cUbFurq+k{Bi5{u1qSvnFCz+1pRt8!%j4g}Z!&>p
zP!h;0w>`TNo~BgAs&>iHl?n^SO1q4Zw4w?%R`&Hn$@6kMQ-1hT@9
zB0G`5Mr$GXwrhhN_@9~&U)US!e|Tl2^!ed!BgUZz*Rer$q-H`Yq_CfH@Vh=vX%u5p
zV9cn9rWOu(0ZXhc8G0o5cj5=Eh!R?k_XS-d{WP@oW;|%9n9;I@ZGe9`+%s%%r_F`qg(AuBy|UEr5K!
z&*vjeN=f4?TRjV<$b1!5)-M4)NI?Ew*FJvZfsZTaGL)#X`6kR}-YWCZB=5Tfvwfms
z^?tT`)tNf>&XWF1yPyL!dUZG6+Rwth+=*q$QvR^6Mu%d@m=yK30_&_73Y{BJJP;STF$6<#lajAf?;QGE8sY%OVa?b<<8*}jlHKG^Q@qM@0>
zqk-}PBr>PqmVriOVF&Nny@RNtrFK4=auE?JQ_t-@#`2bk!bJwhDHfO1>5mGRA)o7W
zbfmW+Y3oZ)4)4c9l%T3C>xYJ;YxK-jQt>hmGlJ4f_ggt1Lp?4AWi;PbmtZY(?KjHR
z;6Vbq+-~7H`zoO>1w6oPByaS{TpVNZxU2P>{pVZff0u=!Z^<#uZrjK6g>egPthpK@y8kBlGoM
zHK?#%B%K>#-1J-(k#1`B-&)wrjH*be=Fi5>eq_X4g(Y}bIQcsgpmTOrpXBTGmTB9~
zbXAI)_C;64Qt0@6m{MGs?=2&#!)Y$1zhbA8V1xv&FgA359Y`aioauDf`hIeKoyLpB
zDocX7_#UwanruiMT%l<|m}^hcy-Ky&CNdfjT)RG*(Qlto0=qDm-$Am31}*L6n)L;3BkyyFtZ>-d>B
zJ{ZZ(XN4BGHjKH>9^K&{a7??OIJuu9Yu&74U2j$4{j4Pp#(|!!x3jlwU=y8sQ%^9k
zgk~af#OZPLq=tpyGr^t|7+&gSwV6}NHre-XPwzVs)PLl^GoNr(e#e^8BfC2P{}zdX5OkiHwY0&3H66H-&iDir`IdQgghc&WCKz>j*9Ps8;S!>p<>>${Ynio0ab)
z@LKPesH{H`ISwiuH0{K@qp}Ej-^l23ZG)?38z-U5;&v`cl>uZ7*UMXSo7RYR$56K$
zGMZxg?ldWEm2$qkW#k5gP=Rl)0KzQE+4z}fp*Zfb#n;4RPp9J`a{i`!?i<+mEqOK8
zw(qnL=^s|@t;p?3v$XdcUO@szwAuR%L!UN+Tf44ge3;enuk0YZSh!A65K6BjuQdwA
z#GA5s`Yb3>@7T%cH17#VW7t(+f44ei4Zg@sr;S4l{%I-7)TA^Py{nYU6XI^zxQ)5k
zD=^a%32wHw#)edxrGREGYr7ldFSnpn$JV?oi~VG)c|{%m^HdANq7(CCo8af0?zds=
z%RmNw%^$~YRyK<=RaCy7EtV2<*LzxrpZeMLtH{0{`hbpA4VSw8^3-FrZEi*c?uGo0
z#%b5-{l~MDyk&g3NtAR(k$j8FD#zEK2JX>XuV30Htu>+CpbESwe;OS>ucLI;%Jlgq
zLb`bJs_I(rH^L5@34LU@Q*r0qsp+_`ez_6)2w^tLhcbGg3>~PYMGML%^4}0K^qz62
z51g6;8Ba%tj=|Lpa`6Ajb81D2p3PplI+HdoudEB^0^8D?tJq4IuhI1+4ta3otW0nvC>bwdReG8bSH|PlRwea5
zC`}nMvxZ)fFZT{jcDGpkT&FZUWmyu>Ioo!9c6wd@ILOAS-r8FBVJ-xcHa-s#l%y31
z;Ei4xd#@KaUVB{Q^Rbilf%m@UwgW>^;(i9r5x1!LLWW|5beNd)To!pu@0C&3Tjg=@ULG(^O>Jam$9wp+sHaJ*
za&})dhux^H;M$@*#=h1>Sb~)*{zY}*Ay!5g^d-6{l(
zW$BGh)wM!)Y#ChP4|yeQVh+%^-kz{acPDLn#GyQ8o;VhcnHu#PN-)2Hh5N)9V_5EWyn0wDNASD)^(4%X
z0apsYhx8RMdl4OOHUz5h^j3z&lCMLf5Wc>AtQCp8E!a(c5jvbM$jYqCpfw|#4N#)ly!%jHLO_3H
zkX3w4jnoh`rdn>OUk#oA8pWRVe9Bz5{R6f#Svn8eZlR0l5ia{x#f)FitSB=xZ`sAX
zVrH(xz+Piq5MP$RdA4J3U+79hV6(-3LnA4hMIt9koSBD~V?y&8=W{D{Bkh#S9@k}3
zbjZ1dr=L3x)GFz6y1e{octo=`*I%AwX=U)zP%_$wEQUBcd*S}`ewclz9F2SNE*QKwND=32>4Y+h#lfb37
z1d&7x)TTBN4XUqePpaHFJgTE9_L#Q=wE2N{*?aWgbv3#=vvB
zz{R5Oo|EjTLFQ3dr}qZ4NOYCJj$TB!j)<#0T3UukN4xP7_qI?X%}3Hg#4c~;~ecH5^8yC!{J~??*Jb6lDcmu=uMtslptjCYb
zUB~#7z9(a4xRmZNF3b$>xnFA{QM2G-DhMoMO?OU=pBSjS;KR*>e{K31EI^H^Jf^B`
zcB;Rl{?z5&9#I!{zI3K>$oGNPW)+=NJHhu*-z_Zp9V#l>Hi5w`Mx0@@GTDWk^1|*%
zkND)izrcHLYblX+X)rz`D?gPp$nojr43)tJvBt0CYq3>oaQZs*jG;*5?P0yQ**bjP
zPuq+zr2Q|s6>YwH!q|UE+;Df5wJtL=v`?wpEBX1F;DDMegu_Tdhlgx_F>cCB6bl&kmoeg27|Gm?)zAIjQ6EBqH`GuTmyLl2f5;IEOBn1J}%p#
zApuSCxtm`&<(BN<_r|=Moq1AWzLxJNMXmi=vzNSIDs)u{>x@HM@UKLb~#uj-7_qT$Aglma3`l
zzEkvS_GaB0GCX}NNJ~$A0q*R?Mb3cP`t+ii)@g1^Az3XM^V8|qh{0`H=vv>Wpl16q
zMc9Q)bV|-X+dJ5YyG*kU?i=^sauugRR3i=EB;=7drraXQFWw&VMl;}y&(*$_Alv$>
z-;IQ8_CmOk`xy9HHx@>4o-J5SE8iHZz0$9-Zxjx9hVb6%@wJvh3?6RoXs0Bv(Kst*
zak{>{P!!;!V^}JIGj|utojV=xU)$U=R$;s{vaM>5mGd#trdNyj)62-EAgql{>4f5j
z);g2u_fIGw4J?NYH+hG@_l-=}9Ee!#*nyvq3V<7#9+Np5>aI`jU$}ltvu9W9M98b-
z;^H1+KvRWaYSG>7AmgZOU^*=FUA^$B=_~B@0E_xI@pRw7Co(EhZI{O;OEv7q*v}|g
z_HnVCwtZQ{NmgF?w{4%SOX9sxm&}CJADfVnaDN|r6i3uI{rpw9mW&@h8)UPmspzOr
zLGKB;S`j&rat&F3_H8SjoA=EiwzhhwwGTQQ?2vml1<2;eC)(`T6hz8v~T36*=^O=RKrJDUdA+
z2bvlblTJzF>>Tj4sJJ-&4nCobH0O>E7uoCF2O!TpiRxBChtfpB$C(e@BJXZJ-Evz|
zE#7X4e4t>Df5IxI=l0%T9}-k|a*I(@@%ZxOVZ7_-ku;%rx=s01h+XWNedO2v{M7!y
z5EmMKh@dC-*EjoyCodS5yk)|NwzOha*IQ1wB&@W)6o(jo%brg0qNtDSXtL+gYFLIz
zKfL;y@}#__owh^5Ju^wzuePoha`zz?%X~;{5T?!+LS{@tTl_QZA(m_z4#go6ci056
zz(=d}iSf$If=^A_-{4E9*hQJePL-yfT}~-|?3~YYxF8QH{A6oB+1<@rGVtsbYZb)d
zZO8t{AcR2F`wt(>T&VpmljQJZ-%&9_WRn=*tO)IG>JK;x4Yx(G2QKSNd?hSwx8#q(
zNr~UDecfhI+%nw}H6}DGFd+VsME$gpW3=ZaT0KLai(Gx^a3tmAHm2-EXp35!JIry4
zPR6kPej16Mh>~l2F0P_a*K&rW{|(mnv87!EW@iQ6dv5OKiw;>#BK!ln(GWMU{p?PM
zf^-GJC|2^>H=TiKXC+xOxU@QqRw+4I=4R|~*QstL84i^hJyWouxQs8oQ_E&e
zZP&%oJuETJGj-tN=^@k7D$gr;_%>s_QzuG_ly7f>pg~V)qQe3~-_dFCzV?GBFdJq?
zW2r<@s?43*;C)}Gv$8QiW}+aKUjY)Fd1_<9yZ1QGfedLgmj
z_R7_2K_i$y{=7Qtb?S7|!gi9&a)Dl4DS+46OR}}iD`MVt&kSowVj6n9&a6mlc%Dk;
zvulhp5jU)z90?B27F7krSo%tDj=-I^kigqgs6(7rvK{}dZ@4
z^(?x}G>A`1Paiau+`V!mQmO3)h;z5l$9APq>n33qEx*)
z;B?nD--4fAJ^Hjr4xcpKG1*PGubH;AfId#oAj;W`mH1W=+Jm>*ym9UuY3>#Qwg6@!
zL6L0a_xR#3(l3JEUiTtws7`-8%BG~f*3qyE3L+(67r0N10k
zq2R%i$K{%uC%2nS4>!L+-UpdECic1T41XFGyC{9z$6#ld-oM3P8^Xih|JH4Sp0$xv
z)zRCcpiCYp%nHQlrWba?N)g`OLSuPwTGM-Dzq-TSq9DVm0`ILnaG#~S?79x^gNe@<@VmV_jqJDC5k>Y61Rh9A4TZyx)zzDy9Y^*14Y!@4^i
zWV~V1EIWlgUk4tG+W8xYyQvx1`sz-#MxNvi(oK8jTB&lP>0>C~K~(O`W@iT_aY-<1
z8D}_77T%Wa+Yi`H(f&eB(2y|{VTN-dEX;Rzo1WpUsN+kp`CaeKFxRk;lMmI!OT54P
zmEvMui%M5~uu#leD(YKzvbAa~Z?7x2Pv2~Ym#LO%$)i^kTf9AUtWrtfYas!zY0~)K
zx2pJZ`GmKw^Q4{7MO(&hg4TjBzSCgP&_pgd^JZ#=>4;&>rH;@ygC*Kqr5c=^Z|QR}
zMM^6Hv1*>z?L4g(b_k)8LEXMkE?sf-m$QxKL5ZT}-wt{V0^C^PaUr5lE^}SOrRHqL
zwbXwswcfL*P0VGH`f~2cv7=K)OdExX60PiPer=V;7r|ojjF&|OFw^QJ-h#KcB%Mevsx#ga4K<#6nGC`Dam2_zVb-{B{qrL=zhxU8?0jEh-SA=U
z`*crL%{U@eQp|2LvZ%*;mir8th{ZN18LFg?Ywp?$i5L;VGoGwmFJcZQp>*>DRtN$p
znWuW(v<3tfM=GeF#$s9dnx9tOLf`{k{OA!c#lQ#
z`0m2a1KExV*J75z86nP>EtKv_+}1{{r;zzWBBtWO-BG#`BtYz>mES{pmrk~hoG4ZS
zZMjJA##uaZn*4Zq{UWBbA_Jo&p?VnHDe^EZRLH%&JZj3cWU{>3i>i0LzGO~7?e>Il
z)o6dMx8>bp`t+5mVKK?1-1Irmk;^SzmUSC8g02jBy}^5_k(=tlFL%|#*jW1Oilvn#
z0r%$0I`^Pu>_~wfy@*gVamH>ndP5`-azZspE3uuKSMbhncPx3U+s347(Z{H5f07x4
zO=a^Lh4%j2{wHi9adMWsf
z>4s8EY_WFaqoA+<9eu?A;F}%(ci*i{Tp!0ZN@4SVcdOGNh}QthyBD~=nsc*Hx3A)S
z<{ptp0`3{KNi4C>89D8Dh911}?xqu{t$uDgWcc9bv5v`ov6R=$Nga7{by1zmC8ouG
zr8Mgu7WhbjY!Ty$+N13KP)W_lO)U&Ib?rmB!#$fg
z!x~Blf}L(U>M$cN(kpuscIZ#Uq>s(m=W4GI3JTm-)}bL5>JX953U^Q%r5uexjc2cNOlvewV#Q-zB17rW;67nqQEM)9R#}Cs(wgpuvJq
zh?5si)&xH7xakN!Pa9@U+R?X-wv1}78$DhH~TV-wL%sqC`ee2!z
zeHU4`m66sO;%H6Y$tU-(JbSp}tYi=uW!jrC=VjV1bO|k^{)Izg+zr{zobj{VwK9Ox
zfh}{3G~mql9R%-&z12Y~Pb)cMlptI%)t`-b
z*%Fw;Lud|(r4Ju`T^;t<_@2jwU^GBG)&XRDHn*3t8xF{f7TF5QVh0wUDvK8s>n9iu
z)xwmh5^k~y8<46bcr%~f?%IbPE67xH>kpu%u?Qa$8=TqH3j(c3#|BTiVh85++j$j#07*HpIr@>H0r
zIpg`=;wzK6{K~6z_GY9w#skk6lDB#K>Kn!{h$eP8I}ys;u7rm74vUU|9$TN<$eme1
zJ0n@%AG|v^sBK;m&+!6Fy^x8E)61xOP(@T$UXPR(S6YDjf^yCn>)HF|OV7TJ?~6vg
ze)Ib7m2JT1tc)m@&wd2a5_07`$xh!o5{Ow2J1jH&R2D^3QgF58Y5uT^F8mRj2g3N9a!R+YgWc#Yc~5%hcHi
zwDns%r}@6x@|(j(+o{ZqFC0dC$zAJoF5Mbmwv%lRmNg-uR4Ynd;l$!p1y}vK7F}bI
zi?1f7Qz&`?@vh}IsS#?zCL0F9p!xvYz$Zl&H|K@b><8E>qQnQ#@s|hf>1d}X?c1VA
z(-_#RJAm-a+@@fOitgOE#ZU1@84z7`;k;?V4wXyGm(``a;a-Bnjm~%r8NzvGG2NH9
z%vhrWZQ_8VYnfZ&PHll|+({Z2u2;=UkDkU`$1aYsMNv(3SrQv`oJ`sD17aM`RQjYujnbH$h$C7hh~3T+(L!!Wa@
z4RQf;*I
zD$RG+oBKCHmS5gy8l@Lr4R-KMT7N*%te)`t@zX>5oSR<^zwBO^cPQ!X)@pDOWRB!x
zm(StS5iyR9d3EePVl>*z$uk!)CPVqGJ})@l)oPvJZB&-0j=cs}(gfgz%f(xcw1!y`
zidvl>bh8jnv`_oT6>VJ=_QaG{Dt?~Jguyr=YiKBB*^+^tFsEAMIW%IXO-rtu
zCeTn94;C)_oN!?zpz*5cL@kMS?JzO^hBHM;tF}Wj)e6^j;~+lB#zzCK`oAN~S
zt(Qn%Of_DRM6T`W(?A8|i?X-Gs+4Xoj4{_xRa`vzP_@6wICC6y)lV|r&VfMsS>fT=
z0%?f%f?r(t<{NoTZE1caxY{%@(826u&d>|I?y;Yl%yBH+%g!Sl#yWyis?FTicgD4|
zBoU0+JV-IDk!_SyIVOz+5|=FF>-Z&Z$H1bwbo6htn>&6GOnPx2e!ZKA^}{k(3IB7)
z4a4}3TH~e&HdbkaA=%CWRr0m{7tVo#8XNptTUq?=_7~XY_X_EDl^3pe>T{D7g3KY*qAv!b?d}6a^DPrs<;8ZB^|AdTAnd*Iz@ys)
z&K);kMvR%`pWmg4tTk+GjZeSaAiTnAekNc0;Ls#@Jno)nz3zbA3eJwf8Hp}LHZr#3
zO?YBJtP7mwGr3gEl{eD0!7AQ%JD(A8WEPsw-#VMEFawM`)+%lNIyE_g?ppX1$MP8a
zyOwUeK#^|P8-sp$#?|5yPREtv6~|S_f*|KHnz6v5)uIxE=)$tR;`^K#W`o;FoX^g(
zhP{Bu$N|>~dFs{Z|L^wr{KJNwk$>YQc}Zt=s=90{=5uqt=XeuCOfz(wdQ_fQ<*H>7
z+XIZ6tuox6uXq>fwsbU#gv*Ev$LQa9)sN>0S;`P6>~MS}Vm)blDKt=Oq2@l{Pt}pW
zz2w^WO{=tKd8ytS3s0uzP7YM}`}>Y9~yZJ0!(c&rn4Jm-)&ZrY-}woNQ-nV)=YH9d(7HU>HRu=5a`0_9q<`
z8w+x!YsIF`Ejm5BSKYLl8l0g~1r-skYAbmGOHNBvrwbaA(M~I@Nvo1Mm&B^?A%S?b
z&~C(}tsuVB163A1ubbPt;wDi-$C4(_+t^|kxh{HXgTBAg506>B$HU#<=&M45|)8%qyUfr2p<@8<7P3jfr5YOz1gsYeta|1Gu&D||>m?hRJa!I1CxN%vIRBrU4
zMJ{yYYs@Ow2-k0LBo=YKB$f<~jQ$XXPlBxtvoBRyCLqy!WjS?i#
znxa{w>HL2Y_m&S)wo$k*2uMgsNq0yq5(3ga)Br=Ll)%smNT;MQFhdX0IdnHlcMd}%
z(lFFZBkAG$K6~#kd!O?UJfH68zSp(Zb^R8YR{Ud_8>s`B-KdY7oAoXFc`kmX@i3Rgq`(8%wv!$-CdJk7#hwJ4{`
zlEDh=D9StL0_9;KnFMLE!$88pVfLm=hWFl>^QaUzHAM-TI+Gv_IJ8^jopca|w)My>
zET_M*XL2LX369k`>LJLz&!6H~n8_Lse?Krxl>gOe1cChiUJM#A!t
zVIF8~=J-V$W$WJH>&~4Act+A-=#C0gbwfDW&UjPV>Uw7WS@hnv6E@iD(ibSSjNS;J
zmkyM1VeU+%(JHqEKPrr#OW~U42&(`1EpnM-uNha6Ka^pSFJ8z3R;c6C6DZNsVI8yu
zb?fgg9>rHQWd>;1@{JW-`Q?~g%pR@0|LUZR(_tfRnKoKfc=IrsQXKBSeS*}T;-E+A
z>D#jFj3>Z-kP@x=L|bxf+!E23WWkJ6V@<@mNV=>qSh^UJjwfM0kLD(S+>-^9`(-s>
z=BObX(CrLq6@i1;!d_gbh95@Do}aK$vwcFsGZeVvxH$KHnx$u172G}{hhO3-2_=Dg
zA1uuIe1EU}t@3R0=w-4u<^g}EXe52VBCHS8;jp8S<%Sn1e1q4teZh_vc$sN2-~0=o
zeTouY0^GhLvB)6vIp>idv&JSLOi*}S>0A4fUJ;?GDAI6)pC2jlsi>56*pe4xrhZO*
zy@>zd%_UXsRSf&L#7SmCv74D0tnKN>i=-Z{tm%mrA4F%=IN+rkMD-g0E!KD71Wt|eaBZgjrrP+M~
zaq_G`q$-bXX<>h)Exj&C2s&hEq;aSagyQm2XJ!8E^#;pu|0;Begs$v)>Lx0y#nIXA4PNOjF1CySA~%XL$ik4
z#2nTffIk>F^UqQ{xSw^v#*O|a=bhwFOZyyv;ogt$2sQ#-3@MTuzkW^Fkeyxb
ziayY=I+0NaGDD-;t1M8CB=qku|U2{5rL(B&g{nC7~_O1z#5b55;WM!!|ClX!&pG~<|E4H{N{qH
zy}5n)J)WBj9H!{SO^?a6F0IJOmY~iipP`06|GVO4{z+;F0+-D8m~)7*Tt4vQas2#F
zL_|_=qG=%Z1|dI8W+E-dlqC7`B)*)|T^q>!q(;|7|3=N8(e{KCk>>
zMp)&J`8W9{&Pzb*7o|mcd~Mp<$do>)3&*G^@kRPRyP8k3s@{rE`qCfMJB}O=_`Iso
zZ#+s|L#FzNY={kf-;sKmT|=duKJaN_9j^S<>cWR$s%G<@%F>b{z8w?VqH37bTh+W&
zI8E6rMPEdG{~|Q@rP5(w#GCgI1N(bW=bzLRA2CF3py3K<)suPHOnQkvuzXZ7X7!nK
z&N5Qw-6A=k`__9JSnL3g!HCTsXV#Jm2GaGQ>|He-@0)8EvEKi85>sx`n(iX-aY
zp4rp*D}VS~C)lr}$l&fN`&RE_8`3w~F8vXGqk1Ap1E9*AbRK{`EL((#5d4yK2L}bU
z`f~WRH0QVIas&?_P1go)R!~5&Kq2(4PQ3x?2$qOVSVq1aeOvhD>48#=
z4eEUig2o#z{2j3(teYLzV1LOw%cuYLCILw<2vE(4n)Z6mmMB%>@+-Bf_$Y)OwUz<`
zn&=S(+`fU+sg%N)h`RH-(WwP83q(Tw>{>SQc%H-oTv2x{Rxc$i9}*g&ho*X}Gz9N%
zQz#!=(P9nt)a2JpI>3|7YL~;G2asR?p;L-XRL(RvqV;E(v7qmNJSPqH|NZmlrLRjv
zdIt?F!59~pLoiQpW})`cmF5S^#8*`gj#D{0EBdp7v4C3YTi*t>UzrIU{$zxX*UiVr
zcvA8|bI^yejFzHx51N%*YjX{`)muuuj}@ME=MMG>YDES=@T#>0|7)9}$G2==9|lRM
zLX^mF2*RCaP`#xG816v@=Z6!#H_0h&(IYAu+E1q_PsW90GIwiPn6;GMGg!^$e$A8j
zDCr0VGfPVkN--99WBB^yqg=0vEoys
zQbmxot8^*H^HOR=5^>xyrCmL;b^bN
zDv4&eq{2B!@PW)}i?(Gy=PtbP19?HchxOM90nvf^k>TdA+0^64_04LS6@(U=n+obM
zMYeG{UAFSjD&ZE|C(pE_ubV&Zs2j5#4>6vYB=t*GJ86wV#6C}JWA^ljM)EjsHd{3F
z*4uNCyaaw=8CvH5hk3t7-am{d&3K6m{fF^85cpKn|N1xozp15*B1acf+UGfRv{Dk+
z-HqUG8~){<2D~EAfAm^-mr(IzwnTXkzTX^-G)#h7-=*_7}Kr0O+3h~3t_A&Uo>ImfO!pt0FRrwr8Rk4&DvD@5KG<
zr(w|f$~s%3jdtT?18tBkw(Y3ZvcV|=v;Slrm%G4(ew3cC0Afej#>TUq4(2T0-)dZ4
zU1Ky5dxbt$FCq=Z&OFa$;L)n6wNV;~(VWnBT!U*>)HMrc70FtnRE9d3U0-{FH7DiE
zl(&cE7fOeT(5v92qH!Dsj^`A5dfRY#Tkf!-(Z$y{YKm3^sqQ0Zf@?uIodr-v(?|$c
zcZ96cljFSVb;%LxFIoFqE#fhH|J7RZruU4Ts7XMjvLB3Ke<|ikdvK{1L$iN;FdLR&
z_b|iIgLR#LlxoNM6(5j5!D9UltrH?Rcqp=eUa>JDO!%VaA-s5dY;OAFTT@prwGmM_
z;Y&eHZa8&TrB)+13yGvhB#VK(YORbVm@{n7skOK(ksvrbYWECHv9ZC$+D!Cx{Y__Q
zx=vYLDe(v^&M1`Mt+ru9qW#OkKPTytr1Bf=I2x&SEDL216K)2ag6H
zh=zXE(oc#sgozn_cNa$Oq~A-2_+F?G)JD@}wnFl8)2nm-;wo?ki+oFXHINq^p@AxG
z8SyQ%ff0z5D!-j-;81UyQ0h+|4GQ|%do`slGDM)xBGpH@d1^B=S-_i_#YrQ7&xR4q
zVrh|-`8ka#A7chTP&dj&Bnd}4ROK-1Re
zK=+2!hUr6>DtEY{SGO0tkcxq0`W^l{F|`aOE=qi9>GZhoDLmXrVOi-z)LT4jo5I|+
zKTFEKE|o>1=Mi9Jod1`BpUE3|>oarOe5_6}AN2U0c7RX+s!bk=rgCeY=feF2%J;q)
zo?4Y{gho3yTF`JKrS?fXk2+qLKH_tg6{RlnX+y
zJfuWHM_h2qJF$b^QQOyoeXp{WeV61X^*^*|a*Ap1Hy)M!NjeVIb>uqJSIGc_3cdZm
zO=oZdX7PJMI&hb#A!(Zeh7QiLMB^X@;l{=b8x|v^kP@Q+T$x*ma0c}kX)=;e1Qjsa
zXB~NS$nXElWb3JypP9byX505*=@W;M8smS4`gWy+7cF8}`V62;9PrNWe~lyQ+&c}HDC$IP$)|WJAV#JWG%ofKKPz8W98E}`)1%wb9gX!0
zquhF(83|k5eFD~v=NFI9<+SLe=FuIgpg{XU*L2?XAM$59GZWJUV0+k(FR8FbYC@LK
zcXwB%sLN~9?_U94syw|L(%DgG2h(H5y4!y)#7Llw1@{cpm6@&OS4f>=@2a+X>LUhC
zfu%ux9#K(mMObmUpq^v_1J%?pg_`+)-pr5}gipTuOeKO%!tou+C&#oUX!=`wO2{&tR4$an=DL=6yG>?+3v@G))8cmyJ&vUa!n*EopB~&jOWl5
znT7958_8mGbsSPR_~3GDx-XSs;_NMY24rp`&;;cE{b}=HwD)d)x-B9r@vS6Dn!KUu
zE<2`ip0DP4
zG@MN6r!KgzEYPoUNfwT7&9od-3`%5xhB_Ra23darzoHm~dG#n5-j&W@zG58m4R#{^
zEeJzzHI2W#S3j%Llu1+j%Ef=rlK+mK(GC)1Jh(U$rK9iidlaDa%4KhJ)Y^fzEQCgf
z8+^uxCUi-Yrm@XrAo~T)R|h)OT(EGGc90Mofy4hw#ka9bqv-q{=NmuD+N*%
zXH>k#&kpvP_r@@Cm%4NR?h)z8YLx1b&?Ps-gk=0B9cPtIm+46bg0h|tV_Xj6>o6Wn
zsxw(^pFQWnx6;TLmB=rHm5DRR8_e`$cyrVIg6c@dJ+GeZ{H~tq|7^LaWvFbr2YQA$
zzd)26?#HmZeNHW>15moFFx4MflYe
zQ7Ac^Z7=SKk?`T>nyO8YCUttp(rzzm3Y75tq1Sk@i_gg($gy7Dd=>w4z^B|$H|N|p
zpiP^0(K|xJt36nN`#{_0Q{Sfzhmve&x2whrN_lP`R@@7T+fB)W2RUnQfnDJ9BT0WZ
zPHeCxyk&3;Rh^@^;$139N`EpdnUF3sZS_cuJDKN1V%gAcif`F)t+m=`IJ1Mkr|JCO
zDvVmMUk}zuFDp5HXZU)K`(?i&ep6CVV2p3@kLC%0m%2F7#0c$Ad|__0BvO%+g_|nt
zFMY&P%98!V26wRyNh+(#9M2jr$VxYGlL!;owx=nMnYQPZ$_hlL>DrGB&3=8Edw}Zj
z>8Fo`dQ4tM!T{|4ldBtDl>B`Y>k;15$d}
zjCh0o1tn=ia)zYyKa7Ra5}0Zx+I{|+k_v#z%$eY+&5Ap9pCEg!65k*({cHA41@Pu5ID*-J8=Nrcr_52mel;`RZh;q00Z*D!rWTzj(Z&){92Vt2`Ah;%Ki5
zZOIpEsP|{+7cD$X&HwHC7N~)Q&GwaOX|_4nUSRMao((KAtGm3Td;_-;
zS+^Xm)|#th@BRc;!QA1#I;{*&1Cad3@7rat9&BAgDQEJ<&jyJ^j=t+x;TvbeI8z)W
zm8EL@?{Ms>{F3`?N^)^R^O$EORlbJ7#{y}XJ&8&OPGr|zP@3-l9N{%?9PTsW(87x|w#Cl6D7aaQ`g-p~%%gSt^t
zkw=j#8E4@{1$F-SDxEt6TBLwb!P*ZVlaPwEZHjdv41rA{?NJi;;2=aq1|?P*GPFW
zqvjZJ9-J5ve^2SYsUV3O86l{6lF7N`lXoPZO#tQuqfvgzvlqUP7M*^J@#CYWd4(=I
zcQT7-XkHK~ZR{8kaEh=L)}?*TO|R2Ws8hYH!o`i9$ftvaW)8okx~dZAKdQKVHBPMj
z88A#QSAA~@nB{cbC4MVKq*{_HC3#Dl+qaGWxh!IskRh0)Cp@MGp25X?RuGg+>SE;|
z6c~kb)X}WGMDt6JAh6_UzpM^?TB^a(DZ%)D(ndY0_oD+ZVsyGvicXzDFf0|}q1}?f
zEqNFh0DlQ~f1cZid2t13Fs=BI(pwHI)$+NfC%^NPT7AR66}ChkJ#4N(jU^qFb80T^
z!k#0el(Qm|9%}_1+eX8(YvfNrI@7u{&5KjoGYC9#^(bgU=>vf3swAjQP!ro@B!Jxl
zYb=}nLglNszO86tyoQPgy-Etz)crXU_^!^rj*_1_M$q&VwW9*xu*`2gq$+pr$5P@9
z@axZND-n8(DC6G`lB7+FNHRw?-PV5?hRf4-KQ}#*TDMa?ARGlEg$Oawd;xirsFsu4
z#@5OWp}CYEk+z}`4a^6Oc>FDSE|2#1^GpBaF#3i)^)b7bDlPSzWSwRx1+|gPvubHY
z?+3axEj$g>T|uR>=3?N{`}i`Z-pMy5u(Wc27Kd{Q@*7(+m=j4$a`1V!+?(=I?}I;Y
z>gnA4s8`i0C#f9oRsKEqJ0GIEPSw%`?z7D?^L0lHFF)MtNHxqbD3u?`iec&`oL$=b
zt5l)CaK;v$wZxMRq>xP+;C+I@Q{~}>deU4l$N%gkV%W)6{4reLR}~Eu^NDG%#xtyVRA(Ur@8+vc;&2tk2WJmqW@((J`0@DG#53K2!D{C=?y
zL21`PhD&@{51y6kkrb3?xMR0ue$<++#^xP~Ww2N=MiEId4<>uXW^e0jX4{zwd^yczL}afGPBi-IF{iugS}|8B)9dj;}~n9D;c>eShm^_RcD@Gmoo
zAfp2$|Bcr#XWAlGS%kpMhSzEci9!8UsS`o?o>Ia$;@<}=nSM$2uinO$U2j@QSN
z#`D6k_amDnfznED9FlK*?T{*mLp#?x`*w^A#{4E5zdf(^>6PWyfmc4B(En`U-
zjD4(g10Gc#AUS?Afm@|KkG*f-QToJQ_)(?8Jk+J|vNGbPRri)07r?~%U05EIjURSa
zx3RCfo(Tcj9w*iKuN7NjSOiA?Vc?zLkqmi?sH7KiX0u#RXE+puQMn((EZKeiD
zR7YAz@g{caC*Wx`3BlvDK*^qFCbjuOi<@P13Y=`ZZB7@}?}uTBvkUUsfU#IbRD%kUwZ4J7{uf)V>#yNh4WCI!v}?C%uj}8EHGkvmR*6
zD?dQ+AiEt|Do=ZmUBU_HBjzMKtFs*jFTPMD_OZ>%>RACNvQ-W@r$u85V5UySX1O%j
zb5UD<F3Qan(
zJ96A4&&YJIPZzQS8^_-%i`II)e72ENawEN(_IYda)h4@qG0)@l_VnTnE-KmIOAz(t
zFBumHEFX?>KtVdRX9H6c(|Kw}1izIv;}VBo8N7Fz@nlC25dke_NO_uFl|UmB94UWEmoOed4f$A%x
zg7^_s8LUJ?f1hw~A;G-j2K(w$K=CnncCh%NeZJmhJomCX5!MD*BnR1i!8?sE(vmA4
zZHxP62EpRZb@jQu^Lu>!P+pTS#lHg@3z%P*Ng)BMeEOxv4t*PB7Ayd3keW7ChYB~&
zG6f~u&PelmdL%;dh72OVzYA&9;3=7^t4}2AHT_+(Hg@*W|H`L!d6s_Uj9w~$KN~C)!SmUd}3qWk)v;`=?cJo?LAfT
z!^GqVqwaf?eeL;&A%bD-f=f1k+Ozpi(`o^zanH_|0wvFm|9#o3Y1rHckX
z(UB7|YT+tfRBEWR!dy>Jj{~0siT90Z5GkL39536NUNT`IrXR*?X&;lkU+lGo!f)>*
zjat>|xF64Xq*TqI4;;8Vxcb4ryk8w35G^M!-0hMGkb7(dd{)=8HGxaq5`2gAO;E8=
zQ`|TU$lLN1oG8HZ`8O41^
zHEoQYB#r^qc2tMopRc4IpKU^55wQt%4SYc}p!0o&Wqw-USLI!X50KCwS%eMH(N-bP
zO}+XF=FmALlTbsstti1IE(|#Bd*wvbGrWFu1?lRlUFOdaX3w_#o
zL=~oe(crHv!0t0_S)=t}LObq=WoLCRZ#FkkDVyMO#`Hy;Rgc~JdSWYtA;Qww*int4
z_JtHDmG3ghjLUdz8s4$~F4EH}SFLSf?AMfu-j6=e{$i=-u?L@98DtoX0N@CRNDfO%
zdzR>4&7nGVO3Lr@*l)=s1nHp@P%7eCLXcs68W1CMf9-C0SerJawE74gZQZ5mXLfSA
z=h!{H_T>ZQJK6cD=2fqf%s1n0$d5!TE`ef0SCMdU_B);78+F^&&5aKZ6|7AN4w2Sm-<+pZ>atZDoWO#kGRPpz|q0T`_)w4_k
zJ2czzSrh^A71gb2_>sjLB_k~Xu?Y2=SkP*v>ogyg?g^|g!6ZBF@6DNzGBh?er=iGa
z1HxTLB!#=Ig!aHl0x5=Gn!CzkJtWkDC_C`3$;vY5gNbN=N%)?Ws9Ci&Iej(#R=`}!
z79Onl7$C83YHrz5{#pNg)7mVMoSMZbkM~Z8i)Tdcnb;!RgQ$$9%hGbMBZWudmex*T
zQbPUil$LRhd#86YMt;i~hC9~%y&sh*u{T)bm20)24z2irt<%TQo5&m%kd~ukDp!{&
zCYLs)Qva{qE0uOd&h}WmGUXcH{im4x`y8!qA$0mkPjSPIFLBt|3xN-g+c=howg+Fh
zCVBn3i`0BA-fEjwry?%FkKy-$(N)@X-#=ms=C1{u<_vl2okU+PdJeBnfPshi=hKmo
z*RD8AcTTo|#G;~?2Ge;7quy`llo-_dS^bI<`*JE@Eh$uAUNNb^@ZD|s^)g9c{H#>C
zI=A|UMBVrEMWFa{H8no6p;9?-D_EL=Uoge!_iQ`I$WwUj%HP`ru@#%96S31@63(On
z9nsen%_bL$F>2B?bZ-KUU*cc^QE+07O-EHFX
zV;lfQcodSn2ahDp1?f#qjWO^~CaFbIK~IJ!j@#Z^MAIi3FTG((O=7L8R9dE%(yX$4
z7*C9X;V%ePj7}LvNbwk-OaDWL+p^!7^IAjPySUq_1T{$V;*yEnW=3!W76VsP@m~J$
zF<}H~7S&MB5{3mN3<67tZ9bEu#|Wp>6t6)N7t-I!eZg6wv;9b+T;=d~_EI{F-sP%R
zh@(3eD<*h
z!@XXsq)HR=lmRi8x^f(js;c=2-N#Z2LW%;qpDOUbe(D{HWU5F?l$I(&{NiGdYGhV*
z82C+%z_z!8le(OxC7Y*|^BKG;E0mQp_E7H}p_x!?-e4UFB2x@c$YcC?`^5VABk9f{Y7cTto!ixc7m8@Rrz{=Cee?_;qL
zkzr6GCjBd8L&ggI{7;ZDN9R=%oj_7(__n2XaGLsR=Q2W+HOmglU07LZ3tYyY{k!q5
z0e~ii;T_`RM!MqscbMt9QWDcey02%Fla?qW9q;{6`7KPA+jabL0W@{%DYjnMQpR^B
zp<1hJgTA_N#AQ$Rq%Nnj`bTcob8l!d~JX3m1Xu}Xa#kS4j>~KUw
z*rG}l{H3kiU!gY@U#(&N$uZH1N|#o&^|bIi_b7hx-ybd|#n0`d*C55|4Cv3g^dgSg
z3?JsCVEYf9&^FS)YPxb^jYHB|Oo!KYg!N_^UbOQ=_Xo)DPHt%1-!}mfFT^5FMOqG>
zU2PLl>c%gS)zF{u^t}9&f4Qz2mK#2pxrtY-&Hn7(eX`p{6}?Y$449a@m(>j)`w=uz
zalL6cNc-@s!M(j(aF`wSuJB}j&$82m_9U*+Yr1AG*%P*+!u9L^=`85Jq)`o4TqKeTE&
zG{75S@st_d)}iq^cZvzFXDgKwYM&C+@^YE%GcNbq1Lv{fa^*QEjAd#5GkU<}0mF@g
zY5n+Y+L$r|zHupi_ECu#tVNUePGLWIS!#c^zIJFiDQJOwS=xvd(`LH#*u!e?YbI{m
zYc(MY1kwhld$tY?>MRIufANKr)DI0*%)X&l=J9O|D;T`hfARjVGLTD*-k-nKe)*GL
zWT5Im$7h+@bM)^vq>6D?0nd{g$ma1)F0Ol#i-5TxH^as|y!;596m_P&d&}FT$H9e6
zH;0mMBZEJG1p0A2G3=CDsjG?Oipjrd&a`VmemUFG(IjWbmw!Id9Xjn#x9-xOGT`%0
z1p{_*>V+bWLa>le(hi7ocB0%`JpSHY1VI4BME2(k&1eazl_&l?hyg&%8T
z2uunXylH_{f1-3S9@Y)G{Tv{$QhH?`z(A%*@+frPvPzIFib=|_GbxPOhPPf
z!op{G%wZ%`VPed8pc#g*k6kcT3@*MgK#jgWPDXkrh5%sg2{XO7d@(=3qj`lQy&~S4
za2`3l&nN0^uK8Q$cfYB^t3qfj+2IA?K`PFS2!n9QNN+O$HJqzoM;Tz4Qb#??-^k(c
znRpEB3%ll{G`hG*F1An3?j<<{^96|2Kf_O?GtV?V`#XVlzvIFjny?{PLV-8l&PFv0
zN0Y$l{6`LGenC}nDR{*1R}IeQ7jllHQpfk$nXjduhE{J^04@!#2G?Y{y8Cgrvqoq`
zlp`-?jTQbSOMCe#*AqKc#Ic%m7A@u++PerjH%gX4ET{>*s=^cs4n|4zLyjFUPK+f@}6t$Iu1(cD5;w_p-dd7CVJIY}n%nadj$c6*!Z=@!hR;718#?FY6!$E
z-37MWITxE&##!fX5QPCt4OkCcT@OD4)l8*VHIXWRG0Huu?u!;r)~+ed7BV2}SU}xj
zNVdo{j*^rZx0J&-42_^*q$-utWAsVr$Wo!Oh(LmTQscyN^8^4I1-oX3LccNo~ss9tOzRJ-e6)%k4Lq%P+4nW(_kRkW+MeT#i!DP$N
z{KBW7vx+rgW!sC4*2b=9T_n>p9Uup$Z=@D#kfbtD-fn$Ap+ctGCk#ks2#5BBx_c091`0<%@X*>k(=E%@F(M
zFXj>724y1^#eXG^H`$2~BFw&ex&SWjEBmu*<={HM16SRnBY2Ah6p&ugLwmR*UZ@nw
zQL&+a-I&j!2lLDQC;3w&u^GD8{}dExQ)7!iADMvHkB&BUcBQpi+XFEkF0X
ztfGqZVF^7=08sUe8m77(#6o3koNUKKlWre6NxCN`p?k;d
z0PPiP#U>=M&i?oh;^zyGefQI$cD)^R7jtE8t
z8UoKL_eU=VGK=36{2E{SXgULfXVEir$Ys1`H;?0$2n7%&rbDUha{$A5AwpX(9y^Qq
zJGk{~dn;jMd08HledYlYQ{j@-1JlDmtP!iCdA`1|IYa5%z2laH6hlP8BOW{zU+U}I
zbhJT@h1J$di=H7$OT9~otCOjY(_DKSwWqe1+q$$liRir0AOok-BE@sYf?1VQ!-ONW
zSKW2c1~hvDLhx#fq@<~Mxx&5?LX$V+
z{;S7<_py4i@Y?&m;2*x4p>bEk=dC61n!RJI_jU%mBS#ONpeuJ>S4lhE$ZSZ4vI65Q
z?Rr_Pm_zD63_C3-)yL<#PbV(Hj>^Epq_icH@ltA_k>vc&>CTURrD-1eayi(6q{rtW
z$Kffy0U$=+F_c^x87tAv=!xhF3(3Pv&l<)Jw&sRrcq+~q*!m03EBm+rNKv
zs>Yd1z9cLejg&pFPE##t&-w_N*x@An^#X)#7!jlrBKZ`fcx|`I?a11XTrX4n^pmCp
z9#6fRVc-qnY8du?S%a%Kl#B%pdwjat^oES#M9LA~NPUL>(o~^gN3#zAT;ClOa2^^rw)kheh=LsWe
zNsWLVUGtHYP7d+-Ab~BYquU(;O;zyxE-E%Hn*vO6jhT?9Pr2MW`Ex>Vrmyj>BBOUK
zWwO@U2>su6NS)rhbhgfD+?DtS#RD=S9065CN!sLSuJnVq`JL?MBNNZ9Vd1f%ZD1ra
zcQ}U3ucIy%LUC!LD4Ga!^~6H|+Pc%Z46TlZM{jNfspMy7GB=&B%(VWRy>BB%ToWl1
zMCOaT_VAmqw&L$>Ii)>VCY;Dr*Lydsr|FU~!umhYowhZnX`0%QFdh$&nhX&_BaveQ
zCdR~xd#irg#P$Or5(xnBc^@a(LB4tSugou
z>8#p?ibouVyg@w_a;#V)8jMg?8v+oXQhtVn+G>x;62gcSmhk&K7cf+@b5W#yOqQ3v
zo_^EJ(bYLn^hN@usJv)ZEUb>eVe91+?6$Hf?89@lXgQ|s=NK+5ruz!PWp`R8stEdT
zRA+3V|1d-XB@^@_*#w!_2M=XV13xq^B&(La^qCG6K$d<29)1tBW!eW`NY8wSa}!yn
zsc9CM>1HWJnyoHp6!y%H64VDB5teb}{vZ?J$WM-@eOlR)rtlQiZPrySqDc1jIDhCQ
zJN}?Z#T=853iNq&~dmoA6Xt{3dgsWp|Mida&Fn8lh^Z8X;k97PW(%DW?+VZ072$PPMhtY<7$1897GFcj?Hx0JQn{bJ67fr>B35ryG
z&eiQz%j;&x_Eg@$DLO|wrcx&w>F;kTnQY5QQv71S%DCAp`Z`C$a=N(w92Ll{E8KXQ
z-Y`KPVx}L)>jfDSq9X&_ISrhvNCH3J-!Ob{L(~d;>7(yI2w1&PNQS6V4MQql8pyBt
z85zg@aSV0|e%0>Fz;P
zEp?&zk-~Pt&~c0lOb6g3!Vq@2(G1~@!6Oq2lb!_KoZNUdPJTQ>1lf8G%rBxc2t|2W
zz7L>m!MtBJ^nJ~O{?>@Q
ztiUlm^Bg$#tLoEGvAp`v%tkcARkMz+M`GQ$-up~R=WQ&X*Kj+_u3N^gYH#)xn;e~L+e**56{I%XKWZq<|d9autWn)F50`4t#!JZ0lPoz!b!
ze`dwKX#vo5apJxjJLl*C@rfrsrM_aTkN%5^w(8+#0Z
zOjN!!@FX|JS<+*m{F&G~smkRwMDn1m@$uXPbL>^LZPL`+k?@-tM$dh%1%8{b->=!Q
zLu4i&t1S}PTRMNC?nFdC%~lD(hu7IF*D%agG`+-qAMaB#JcpTYxlKX1Xs+LBQEDhfQ@|APrd
z42zePjTnqunrbx6Zqy#Ll%&Y_3iCqGaI67HSy#Z7U1MIDvJY2JY{LzS;6ZUtmLI@J
zsRNNZE&tRJ3O|>kAgo$Rr4Llr&{udaN3&C$&8;|~`b0CLO&pLDu1M1*f{Wh142-p2
zx#ulx^hx;UnDcbGE4VXg1GPzpZkWzbZW!BEd{D*9iAu&T)|F$naBc=3PiBy?vcuj%
zMV|_LZGQY#QgIq@e{%IN0dcSM-Q$
zQ?Lt?gUImQ_epZYJxVg~E-xaiQoY$J6?*SwcK1^e0Bu&dp%j5{)*5n)+k;s@_Q`v1
z#BrBj*GQ8b%I=B2ebydG+Z`==ekkJDd|+9@p)M32XE>GpEsg3uaiU4Gutv^gq{Mzz
zaTSlGIqh%}GZAS>NC;mMz|r6l<`w+&SNk%%kok&gucXtXYZgq2$nB*^r6$P@P+fC7
zDKWk|W)Qg=7VbPOaJ0HGAeyhAW!nWAZOl|vsEtj<8JJq7@
zn3a;RK)?Yl|K!ffooF3IWLZQwxJsMc5|kZ1Yq-C(jY^q4*plf*`GA|BfAQ%1OTCe6
zW=>INQHixUdY#0`6I{-@6v4
z)=@K)5_F~5iSWgxl+Y*M?cA4ea7Otzq;Li|cYKkpd$k6>2Rk&RN+;s55Zo+152UQM
zQ;$~8eGXq^vYedU?JeLnMeN!dQfNvB*+9%I)Pl9&`MD%1;0wIaXXKVTdT6^Nb?e7wf-~bP+t4q5i
zye-n36ZIGWsKSvsSGQdcWydovGe~4%+V?qGZK)quTwzQV>E{|xY9r0QzS`r{ZriB@
zW=zXf)2LEZIWIj0*I>?@TsLo94*0z!%#oA(OU1EGNmbXco1e4_n3&07Oq`wXDwvV5
z;EA>ndRJbR6pEQJsl_M1JN2=$;j9x?5V6rqe#rL8JCJ~=0n1Qn@?*v99_b94EM$%x
z=@e~coY&~L&ON#0pc%Due>w-Hl)cpXohfHmN^R!CYsj^!bw%OeqJ>o45|dMjbc_46
z-z4alx58-7w>aY5CIVibK6sf8qfLTlm^#O+d4c>gdy`ni5T}=!l$(-snC_$+%_pCh
z_H#q)*zz1*_X4*PRgdB%faBgVH&|-s$(V%S?`M%=U)|B|$>F*Y19gM26?H&pW+qZI
z2`p<(xzdMe_7s4a45RaHDfUKFpp!x(0wSQwH3n=1)*Ynr$?
zvFPM)-yG0T!pT;u;wa^;1ZoME$TOoVri`)3jW_>7G$foUJiN}g)>!QptL|fVM(7Tq
z(h|elgQIDmK{JF1s>!+;4Z2XLy2RO!-I2ZRt7R<}_~ISczCC9dG~LRiSg_$sK&c2P
zru2im7(B|)s#*45n$`{G-Q9DCd0X!vL#A?O9ffU9V0O9Slj!|tHF@2IbvM^X9H9kW
zPqu4r=h>3)WkDW{1G*HRLgNg{hHJld_co+Dje{SEH((hZGHW3vhtTDzf~HEy&p!|H
zEiFIj4O5MDcB~F1(1IBrua9wS&O26MH#Vn6`uXLG98^l`(F|=V#RiPzZ-n>?`L`SD
zUs#8LuK1|hXw$bs_s2VbPBkh?Yuq_z>@xZ$vnxiHDf0vT&EccmhGfMmKbZf4#GK;5
z;Hp?F*Ax~Gw#N>x&K8GfG13^?bhXgwg(`;{=ZiuA)fSZz$s_20W!qWyP?
zR)N-6gU-Qd6i-0uY=dq~Ts^iDzQreFtVXz=obM$E06Q&_hqus3$=c>~gXa9z+()xX
zhHdjxiBwk|6W0&?>+7*cQs)IX-VEy&QEp9vap4Dv=A$8*h4}B1r@PNf1k5)S77U389m+}^SCsOI?Qk*%jrf=GChuqrO
z)9Q|EIN+%T2aB=r4`wbM7kdWpg@kZ^nD%01w04L$i7;^q4A!WiVSS$my)-_e7XD+g
zGrvc_J}5u)LTgrG2{PDNirS-vlG1|ipen8+f6czwyor~xc=W~$vJ4g1Z~utmc2HQ7
z>f-tW&FJqkOuyFT{sYh+;EP`q`0ayVxPiGDzG1w2Bs@X;A5x>?#}L;P4pfiPd&G|e
zmH+rrWH!Vd2xn1bIu{#}y;pbSsrq5mi_<5Adl=sY?hQBWsW2Riv`$o_`l0aVKP0(J
zK*lf}m6q8x(d0cT#zb^K#>|~~3vZtM1Q4og3?{gm-7_HIa5y~WiElAVp6r^QLh=<_<0T>8?D
z3YOVhpFNY&UcEob1hKV**r|&;m+!C34MDOCNI6)Y$qeE%h>Ty0NQhEd0d4o8i~280
z50xof+l24YUZjhjpL1{N3O+5b3%BenT^(os&BVBc(oG|LkE3>1or$il5{;*wu28|a
z%24<0G0Fds9QF17CazBd4H*Trrf7GiI4g~>fcqK~)a$HNMxBB~=vnl^Jq$YZCS@yhZ7xwaD#oE?2jPt=bQ4iNFMLyfFh^Q}>_k
zsOj79m1vM{RxZyATOqXU?tN5*gCLJLU0|*ygu(*vVY}Zu$Y*^wjw!1)zd8!0kdn%P
zLo{5a#J5&LSzJDUXX&gcr2%b6$^Q1Gv+In+yx1=&F{^HUrtcy!|H7(Ow99~(3ALT8
z#yF}@K`_MCxpn`TcdXw9HKT~@T9{N#Npl!hblos=P;2Dgv93LWyHZeSUf1ose!rL<
zJEep`JLqf~PYTS?n4v`K7=h4GQ$*<`lg!RJXdm1Hznr?^mNpCyv;-+=leOFmGXU!{
zjnINF))tMe_AmeD+gJfRD@5RzL+S>NlNyEziSP8Ot&1a`l%K7mH63S108c0Cn*d+3
z0pM3?l7rJ#2s=1
z5}-e8Fk;#PVqh~eHo
zZEN-R_c*a$uf^Opr5^f1w|68rG;iSxE!7X)ZyYKR
zvY_d+xu{x^XG6oLk6}4NIh^CFig117Xa2O@!N!cfpdSRiTlVe;bRkJW7jqB3|qe&ckgHwTJ
z)(22~y87&4e(#Pb$HZ^8^UR`=Qv57q-7Bun
z=U^!l*3~}bZ}_M};&hg5nXV_&_(nYfT^CywC0z5>=eHu|DlQM}bJ&
zO#F?m%bcFRIZn~lo}V_A(UM6D2(kgIx|kfUM#D+y>Ws8%e!6_%>Ji*wQx`}ZV;
zQ=5ry|5gCRg)eT=a03ueRAskLE><90?Z2r*G%nNb;c?>1zmGcZ
zkr5`f&Q0tgg{fVfZw>9)GtD{Z?#%HaRq#ODsp*>L%k#=;ybjHZ<1?QWZcLR#{1zsL
zhDL3ue{cG-#qdx|?UFo0!~>8nJd4!PLnPCmf?+1*!M#l8iqkk3B;3-AZ+@u=S=0m?
zQ~>gkj@IPftgreJw&Rx<66bg`tX>isKb5yrVm%@X*k=;%qjQ(oYlhnnjJ^qg02aA>1;4O$E|Cg48>V~E|5$YB3%e4x#UNQ<6pR}~*KM^Pi#n`yY$L5*MnH#@e%HytMA`#(+2;Q95xV21JM}RQi_U$kD
z}|=7806c2
zUmh+k!8Mm_O*II3lM>>Vc`#5qiKkoHhSR>NV8H44+0Y7Qc-Mf>Z)qp?lvjrBEW~jR
zS1*P`n4YeHHm|KiCV-ylZe{+K8Yq{)hFBT;=-4?_vP33SLM2H)I7V0wmD-WvkZYQW
zw!>At{F>zNN@JHx$~@kxFsrPZt4m3yHyh`^^GFP>+;W5=Y8Q+!1i4IEb~XM6SoJAb
z?n^uE?0|!iR<WYm8t^O|8um4U@MyH!h{$-#-P|l#yPDp{L)U
zN~&klN$9DtwrFW{w!b~NWmbNTpnN|1=&>Y$jk;bFFi0+hJ|D*
z29XNAYx8(ysEMF2&XJ)JDtu{rA05h#fYwwzuWapy$ef=LeKcqhfS=T;dz~!WB)HZw
z<_REAuOFCY3z9tgahw%pm9&Ud7;&KZEiteaH)><)KAUE({J#D3WtO>-sbUOK>bmjn
za9|BJ5|EdW+^XMcg@4K}A1kpw9CHxbmOB!5<4sQ-V69jZO?u~#8%7Y^v!p>lMMhkr
zF->>+=&iJ)x@+r=7d7!>mdE+PJ3r{M*{fnGw1{uKuXK7?6z|Uw`|cYg-)1f!i^F
zccE){qR>=u$s;6Qa%tQJ0Qp^4>ipe&5JyZo$AI9aD=k}t+C}SGo(*EC#$yeiXZIj_
zo5XkFQ}5G-GphR)Wr6fDXrw^;;&gqWZJ85`^mlYW4v+|ppNUuQJwy}C>DMz7U~EtKHSv}jU*6Ys&c;)$qZ;hazf{6a
z1av>PY@ASS9yx(~qN5A&xQ8smbF-XF+QLtF%_yY~r0fw=SoMK+CBV-meb{%7yVu0k
zlatxD@^#UR-Zl#<9~xV&-AF(FDP1N6(U4iM#?n9eP~1xEo_4P^N2M~L9>)d3Y
ztcoKXC8s6Be4nBs2l@ZT)J-FBmC`G@%5C1Z_Am!~+ZrP%4-GTj5AF$)oCD;L1x|LH
z;P8__zVo>tLiABFHaa``E2HKV8TS@;4Lr7@wjX8HBhC>S8KOI57u?;fMr|0ngb|Gk
znB(HUMv^1*1}
z#fO*br;lwNFYJ{bqMN;uBeT1$2h4s5?|oL8WWXBLsev9jj7!gWMDLve*=zogNNQPp
zcuMHFH^$7fk(^T_n>SCk9W
zm|rkk)i#+U;7{4j6B<&Q_6VcMe@L81HJ2Zq>pM1?ee}e8w;J^?=%(^~zyG~hzPXn&
ze$dyqIrZfo`aQePh*&@>@5A7cmND^S@lsc?Od`;yXcs|frPhB)_J-inuFbll&dyc7
zPL|kjC=s9iJ`~
z`j#HE-@mV0#=Ye=_BnrX+7$!0=mM$K+P^F;0!^8T@I{}IWv^Uc?%
z^n=P8*M2Hr(oKzr(bchriwo~UqHhyN{wR`do7EQ59<$oB_oG((`x<;1a*GS%C7*0=
zJ;z9olrkAZ8CrGDSSF^$Z#f(pS=H7`oT9csl*9^*MB7}~!{tHlLdV(^1%>xsuP8IM
z4m&LgrbZRxluqHvT3QFUv?k(jDg}G}lLT#o&lvc@95_-9Dx|&2r+^c4MAm1TwS`dL
zKoRBfzQR@S3(knvqx-Skz}{YMHNi`nFhE$k%X5OYMqGYBI`I^Fp?ARq3~XHfj&{kM
z{0h5k`Rt`#s8a%5&eLtZO&3Z_(f?$Z^2xA;GnyeD$*>^N7?BYC7s%Do;a&~0Dr>!}
z^uZs2)*hbbH8k!NRhI|!wiJNaZ|9(^zqU=A+cnV;YQMAd#-&St%Cuy&_=A>j?DSOL
zx?J!V?5PxmWY8Qx&Q;c6gT2*RLT2vpz>6*I6hpgn0w_4vwuO%1l*=+D@vUhBG%QL?
zBQzsdIAYkE-OOKIfHL?rz>%uG##lud5Nyy~@~*fn?a9tPmaF1djlq$l?!wF|ss}Z$
zyVvdLapaM0TY;`6EoW>c3JVx>+adW$93b&-{gGrStF_10Bm$|tyb_%HJq?%!iAFw9
z>&%=ZX9JQI>+#*j+}Vdn4j4DO2Krx@$@#P;rw*k)vxeW&5WSxJ$#6DnX!1WM@?8b}
z6MOO6YOnsHodcxxkMzP?BPv!0DY1>RXp*0qQv*+ECoX#O?>}V-
z>Q-KTN02~uX~=#X%KMw^v9Oi*&as!a5D6{wfZCa5`P%e1~H0r>Y;LTKEYErMPg;6
zwQFri9ccD}n-jkp)T+~FFD4x_12Aj5-CB4~&%{iYWwyh3Kyo=|AGyG=T^~=y_
z3!$TSRgH$?5q9f$r0JlPUqj!1_=b*;O~Z=II9ZKD6pl9DPCvybSHJUVEvc1PxWByg
z1b_4}&p!5TGOil6%}CQU2sV)_kcp5NQ3j7C7NunqX%V+CSS1=OtEg!IUMIZSc+q&m
zcf80)ZOH#ba&tc@pXOq>#+NWI^Om-n+wn
zuZH+d^&1)_2XuaK4l`dBzAFsc;_V1Sh1Gq2Wox@6VG-Cq@Wa#Ybl+Q1jm2wD#
z(dldh1Xgk??bay96Bf;RT+K{^gwsjNN+JkqOH-V~J7ChXUr9J2Xi<{qa|5{7WSYpB
zLL_5M2d}j8LxW$g$kOdOv;ku~BgMqsq6;JMnf2A`B
z!fksSyLrQOUOxa-6nI|MX}G*5vQ$ZV5wcg3^&)fyD)o(3=2%PA@DLk|rdw
z;uH@Yr9+oba@^{;C0F5p;gZvnO^aWKEyTSLtea&Vz#B`(=cj8ennP}L7T`>B|)
z@7XwqObdRyn@$^^sBZ95+w$95?UVa-MtSzNF0PRGwVs)0ik6^c2eqTzaevjcu7^=9DjhVzn^o};BnDbF_dSX-isBa0_Co7
zDS4WGia$l7Gws`3$=NzGL8Dhzkls6(Y*l2h@d7#;n5gtCm;hx-)
zmmRpO2dD>pfasFVJ2HOzyxYQ7%G@4=ZuP!>Lmr#k1=D~b;`{i4Lpb<%+P{8(waKBC
z-z&vl!ZnReA{c+gxvmy3yHJOM{zICWvn&pa5m~=DUz~w(DiYrU5IWNg-k9J
z=(TPI#~VnU14^0-&i~`$&t=BldMXQByw-vTgDIx1lT}cO6(dYE=_C=wPpuQuh}bB?
z{IZcfB9n9$e)~q=W^#|{OVY|41QC$!aj&B3(%Echd`v}OhXs#U
zK1oSOOSxsY7?GX_7tbY?cB|IvF?ydE=U!h3%~I?chm-#u*N$wakN*#eH&uzqZ<1(S
zzH_NKokY@VU*r6Q$J`~1sb={
zH;q_lxnG07+$cwksYz28+=+e#QWquTh9J`}|Dj(u9=@hqd{g)u1XOa)GXDwp{Y-K#
zP5OwP6d=_Z7RS~ozQq~foX!%wG_Hf7y=Kjc3O??Dg%<7?y!bX))P=JU7Z!gp)B=mv
z9*Do*PVu}qJBJDJA^2naeS7PVjFSt?yqwKY#Gi+sh4SmG$E@`4x8~+Nk_V&vOXWQZ
zp|LZtR>`Tv%IX=Q-_i7dcZF*U`Rjq>^zejpR
zIhMdkzP~+|Kkc9j7|_ajWhZ84FhYmsQEpd2(w`HP@P+gFn!ll{7;Cv5OGNyLB#S=2
zYLR)Zorm9jIEZT4B%C|YljsY<<5JC34)71}`v-}j8A+)ayXcBAMRlW8P`pWHDKM6;
zq0FObY#yH}DD0%CI|mQfSUU5?qmq4nV0ewQ#&4!Z2$1UN1KH9>-+pi++&>F9SH7lW
zn&mw2ARW_U)gaWoAE6VN-!Hya($JA^v?u6F`Y4u?4+N-IgHlIn2iJ|7@z##DhGY<5
z=2>5w=PH9iXZPk#%1%yS@lfY2L^z$bP?7^nE#CuoD+IA~cmo6^=f%{`kr$Id5#0l{i@jr*9|6errKlLZ9TG+njTg+zuIWfyT}@#`-H>*1?l#t;@axH6{rt
z#U6QANizKLK16O0-|X3cRae5Td6MVL)u?u9C(PiJ3mLiFa9f^$AUltmh+fgG+`ErN
zNT_rkJU!Q5?Hgc|{ck$qr>~%Uro@RN_trLo5fY)#cS2ASYBkXa*003M`4q>cM*@bi
zc@dof5AOR_BIUCi7v^!}HoL_YIY!PRlJ7vgl2q=gFSm;bZ{s%`cc0t{1vq_u*rKmX
z&&9Gam*c#VqazVaBPE4%WG+1Bq-NaVw{yGVRLXg!5$Nk6`e(qZy!Z2MpO1A2PKQ&;
z?fu86;?|9N1T)U#$;pM4kIRruytbUWESNV(ZHQI)AYm<~wXuWQH=By}v$Uz4CS3j(
z`Lf`qF`$vz_k)40yDU<*_o>vtfd(U&S@=`e{P|K`yOFU_YikOhV*^H)FV$B+9oDp>
zorS!|tHh9J{SB`#J-;Tc9Np&*i0qh_Lg>
z+Lm$Ctb+&1v9^68wq}9Cl)byt$?S+wJ>z(wA;z490IoD`Sk}dkMyBG1!pwThlWU@&
z43D7fxbS-y?Iz@ZoBH!)b#-i8rQKa&JB1n0qNPcjw&^xG;ij;(k;=#X9A6f(bs$+%
zdxl9F#h50K1YloDxlzd6i)0Q>sh9{|_M}qI#B6V^g0xnSzYjgK`=b~4ms-XJVZuI-
z69x>|%V%^wfZ4{Vib^u$hn%vz2^#XOR3dJ-CpYcuuyf;iDo+{aK;dw^F#G4g#Pcd?
zbYUGxP*jF!ep2^-+4Dztlzg`N=kzCc@#M}xD-Tz8V!DpDPmfnoW*za(i^wz@teC}a
z*r9Ic6-a@?Evr94Ybyl7N*ad&tUaAJm#OYcfTy!ZtLIHY7nc(m4dahZ%L;_n5Wc1e
z*z+&F>v4-4Tz=I(C1x^=6rMl&#-N4@V&kv)*Vy=t&1E5ysYd49XH4r;TZ|!CHNoC{
z&mG>y=b?DY;>)Vxi?z~o-6V>4g)#tMrV4L}7+{7)88!+NCeWBMdE(2pSEvqafFs^2)XBUfhIDe7*x}B`4?uUW2z#Y
z4hOY#W%CWHEHlkAOwB}BOy0CH@PFZPeU0_(q4-Oi#&iK-7w(Rj{RhTdMqzSj!ZZ3~3{fGxnHu$J#rYSQOy5
z9}2fB61%cqFZXA+u^hyg8Mr-dY-&HZ!AVaO9G=YyFoarZyn4a4GDmApo9(x%;=W@1
zz{BFDevzfh46vJmK1;~2hy7&Eq@0iS*1m}&HIr@rsFQP2VPoDN@hoc{nt90yvk@_T
zp52rqz+yHo@C0{I)a=T0Gu22-nuQ-|sK?YKQ%_;i(ks6K^zG@utxCTbyA3*U=%rLl
z8ii?E>Axt#ObPj%+S^cWM`;&&n&hQk#&oz8`kE)gxE~jEm3D!6N&FV{pC=dx
z>P!=2v=DXoy4QiNvd{Ery>XBFQA#uXnWQ7?3t~;^v>k7@K_GpO$ZQgP2HLOYseLbM
zBV;IRPPwwUCD+lc8VHDhp140RK=cS{KNa$g+tvfRw%DAGGp|s_!5Xs?sbDM!D}a?A
z|2{Kbaot@28wrF~JfNH*o~w%&hf*5i#9Pdj!7>dpV%6nECd`*Q-J4sn`XZ~vUq|!ti^LZd;*R=Bvq^66tL7yB
zh6)R^#;p$)2L@S5Vyt_iBdzeSO-3eu2HaliBvRwOlKC5#%tU=tXe7aF-ohYf6W=RG
z;3%j>=6hM`#MEgKtjOO%g-1ZvS>5DXT~Em?$|O2FEg5*?fzhxpSaZyWeUL)#oG1bwdN<`$Zp
z2DI3dI!CQo$cp>I1(HvgjaPYZJ?GS?QNd$_AypHl!}xgE*E%!&T@Db*9zxUx0s+v1
z_XSPnBtc~(2uO8xBJ?TbYxhg`sv>KGwbA?l+quwo@W7lP)l^brj)c9WDW;2Y2Grm^
zpHTg7CA&>sManMw31^l-5roAutnj8NVYTkO>Fyp21Afr=1bplO@KPh*F7Zj&7=1^AdTUS(S?iLeFQ(9JPP)CIHT}kBmc>r8?Ye1n!S0j)A
z7Lqh5VrHu-EV+)(G)8@`vW#-aHlLM}=qG#^3`0H~
z$$gSW>3`_F-|}4Hx;H3zbBY6gSP6`K61-+D
ze2s7W=W#*yM9eJHrCg65*)BQ^K&(C$pL?5ET^srgDRoTQMGGs?V8NW%br;79V}Ig*
zH7_g@S<^8^j;hb>(?={RmuPMQOZiAzL+LB?CDdbuILP66^?JEOk$bykGTWjM+O$_N
zrf;qBOP^(DTee|1LAB`nSE_*Ikw@=0ORkT0*~jh%8{bHLu=GBV@s}uPS%&4_jXP4O
z$DEelbC*QlB}kcDM#M7hJG{`n
zIs;kq{pUE6=^>C5!zDkMW&GgKU4O^bLZ{Fwus!dPud0j*=2o`KsRC`pGK6
znxa!%D80Wf`Q*b&U@H_~`aQ08vrn3jkI(z1dF}a0Ave)^fn{!`01$R72-^T3dI#6=
zY4}@1GNbwPFI6J)F~02IA4v+0@?gv*;FpL>TMFj7)Br+As7pb1SLN2(jz`@Zd3Mi0QT
z5N@dYvL_`OYi|9MbFQ)Ooz#YG5~Y=oi=52d5Ex)elKUT0G+cCz`qOM_oN|8nyLG>Y
z4S;PS=sqN5{Ow_{#Z$krm_MRFpS7f#g
zl}lgF%g)O`w$411#iEP*62arxMK-?~f;g7E5gBz(k4Gc(_7ri&rg=a_mTV*E&-!nQ)umiUucK0x@TFe0woS36
z3fX+Bps6JEV4KDOivD)2qK@uXX^JGHu=ef30(wz2Bjl6W=*_2rhL5*VZU{ra$gR_o{m70iIl34lbv_Yx^>~r(G?#4LB+0NAYpDTh&BrLCvoya8D
zQ9g*Ua=y}-=PFcJmTshIEl$H*yrPS%q8mG-5*ILec|Sn(J7$9-;ZwF$;X6smrN=63WoJxATDHE@ODVQuQy}q$$U7ka0GL4sXKCDUg-B5vOYgGZ
z907fy_7ul-?)p9XWc$a;%K5~@PEconlhjcWJ;Jj_8~YlSmd5bNCWz_yHTmxlaK$vd
z6Xxiv&gG~ruhi<{Gh=fjxDPX{V-d#R9Q{MfMeS5YS^CMKFpT+ip?pw+y=SxcOIiGB
z#>7gj^wI!n@`8IsIpUhaaq&D`1>WSgKFC&sg}8hfggMEm5$YI;J|h`rEby`g&N&d56__nwoosP)$OLFhUtuu;f8^u2sZmg_QVlB-%I)
z4L!D)m;7$#jUS1c{0coZJxevMvz`t98ms2QaP$zw(4Ue
z=5z88s9KkK#}#XzuYu&r3P_MdI}@__B>pzxl6~WwriwptU%(yXUKLyA*g6g3Le(+y
z@?(#&<#^9iNtjd>y`JQs_lj{UB8gYzh7-lu^BE$QiI=R@Zo<{v+US5W8d3%K=9$~!
zawlz%f`%T187qg4(7Na=6c^&2Za>kYRrN|JeOfUS=U8<=>
zqU}p>!tApa<6~89_^Z|V~lfH=*FF_-TN1?-mOUX_bffdyr!7LdXGo(_?9w
zjSR~K#boH-3cklGm0yl`7?GSdwB@>Qw?t`rG#|pc)kaaP<+2qkLyv?>xs%U~Kb1#?
z`{zf4PxCu7NUFU&H7%B>EX9XU_5D1m0qkktt#Y6v``fV!lDJAF<&z}|W}_EhE|xOm
z@Q&Xky$K8LqZGn%So5Q@4&iNfH9GXm*%ibc&smh#{4IbM;u;Jl>DgLEggM&5{msV_
zWFI_sZAzTc{q$8Ch(Powuj8o5kv!Yb7uB9ir?3`jc%8dSawJf}m+YxJk!04@rY6rXazRd?z7h%Boe6QMq>W6JXyY`iA~a?ZOJi=D?|`l?
zCEn|LQ+0Xzlf0HSh2H@J#dz>i8b{Vm2oKKW4&d&mw-*iOz;dt3k^R1Z;r}6#NdV>W
z$b)vODz{Skw)^x{)E!{kb?8vH{gO2M4D<}$41QeYTp?19!mYu2xLy4%>&pbuvP1hd
z_ghDMV?-I-uOviW06!a}koP~NF|92wp`>hfb{Y@PM7jO#0II~M;_fvm><%yRw1~Nr
zlGdXCcoTE6OBJc4inTS2S^Qg*%Sjo@LcqqBLSg>f-*_Q!w@I?#
z%l`zCHR=^f5+#dVmQ(m#^42zSq5(5nQUC0xfNL!@`chucuIF0`^GO@c-r1XZfH4iF
z-Y?7fP`8)C%xi61i)^&u^_tYli5|ddZ?!*TR6z|Me92401ZCU}9DzNH#7
z=Z)0H_$oKR3BWx7ym0&+LUy#Gj2CcV_$>Xw+LYP{UF(qyiEi{Rkd4QU|G1{i$Gr&S
z8TEd;Ho&}Dglu=*=0OjGCUH$Ia^mx?zu$w%W-V0c-hwQgO9qWq!SPq52u`U7da|W<
z#~*08l}@MgLw#29#&!tddz2bQ`gzj2XZ?v%CyRDt1iDxWNnr~2Jvbn<{u(Q*dc&uL
zffPq{l5*ZiH}|_EiY8M$jh7RX63X=}`2+H8Zsmr{Ui_OW5<)ZPMKwg
zaaah$NSW6TG6S+(T04
zcXsfp6c%fnAf2K#+Y-a%gE5SZT|3+t76NU-OXB9Hm9+=6ORgcN<T17JA#5;6C=T
z2U^SChT_#=?EyruQ9M>jCar^0b?zf?SiB*aJr?>B0_~Vl1PwL#nH493
zzx@tH+DSi`(oMfW;x~lv5g_!LszeSv?F@0W;mO2ON3Z14k=c2Vx4`mKE+pF<(`fpY
zL<@sb$kglQmZG8KU|8SG!ZOCe$!vEugoX*YjESOABO$J3<@GbVv|1SE^HbTy+yqxz(r0A&OTp>1tQ1mr%L3|LO(j_H?D4L+sDO!v
zb$3LKRQL<8II_4}t>R8K3@5}fAubDL^IN
zx7ceV3dvcYjwAN_52;^c`o$!G=F6c#s;8v~>76VD$L5VUFp5#d
z(#5WYva%t!Ab;ldYimlV4Jm6kDAk^==Q&Bv(Vw}aF}960j*tsA3J$_o75b48WVN$x
zGYV2lNF~R$_Bpo?_HN@&C6-+_zMt>sQ)D8&q
zl8ftYsU(9iM8jMQVO7{axov1uP!H-G*PoLCWce{b3dXQ0o_!{n?@05R+tQ;dDPx%5
z5rJD8j1>?KJAz+c@QNb3gX1{w&h&Ma*a~6jL_~n>ftS$Ljzi_~Y0%>8k2#ag1N405
zWi@v{JxK=Ww+3yoqttuJL6L^>IY4!UDMey)NPeD?e_<^99)2ylQT&xF#^dW&ig21C
zY%~QM^B`MWal!%sgs!!kXPfco-&Utm#~nL<
z1uNtjoz9zb-+9$o&NEAXAkrB+^y9sQFCt@`b#k=7
zhWG35K%x;<89C)W%CY}O2ul|9b+KrcG8`)}<7kE=F5Et=lm$j#E)F4AP$24`cx9I+
zA6oT0!RfQMG1xy)qA|k44{-(XGv&<#4=u_n47mvT%Oi|0?N9Uy6&4m!*VthIw{ofy
z${C^DJYTjI+u_w>e|pD-_jGO3hk$>nzAy8x{G1y<(Xi+V6eRGAs3pM|#%}Ift~`6B
zpAg}Ny~;}3j38RcVw;lck9+OK
zWYBiW
z4~(yU0%HR0Dv_4?tdhW~k{82cbBShhvM&!`nhhyAH7d#l0B1)t!kN%-h
z-K1nT;^B_iw-E$_l=Lozx((z10Z-e=;XK#zUofY77%MTTW$x%hc*8JLO*cCR*I0`F
zwhK!J_wJnHZLb@Lf40%)9A{)4e&1p;+9^&Q##gV($&x)v0lMku{VV8`L;gqp0$
zkqqO%OY*z$!!fHXV(g>Us2^W%$v^O6j?-mE6B?Pmy@3LKGpqdFu!p5{mAG3*|3ebJ
ztt;c2wWu7JjD;w3MwRCi)#i&XhEZ%JyYM1^-n%!?EwF1Ocq6_bf*Zg*UcwYlI8e9*
zr6d#13BZP(3ahzrYc8}WB;l%dC~~7k&CuCqJZSeiMF>B7Yq6xss1#YKUY}0AQs0*!
z{9Z9p2NIhCvz5O$zaMHHlFP}GPPPcD)y7OeAW^hoP!ivFS_uXZKcDzGv?|{IiW)8|
z6D<%&*_Q~Q^z52fqw1>`A|4pkCzaYiv!l)b-Ra2OY~`YV>6nxA{m{!tZ*I37
zI-+gUsQr>h&pw;&&_MAWObx0K<8SwxAbUVIo#?pS7-LQ<4uc7OmG`b7ML{s(n0`Ha
zvv(xAtQUs`=FWwECT41;YM?uD(!>(&tNYZp3mu{j-K44OY=fBdwO{8J(8Wx<8X3U7
zgK==KwFbC*?R3*q7bEMQWG6HbD+f`1)wt3OI9KPP>Dh+*%;P-5pxAMasL`
znfbe-NsExw~m1mg=fr%u-z~OwQ)D
zKYX&%>BucT*2f!Sj#Z3E;{Emps)Tu~9$v9ZxDxfPWN`mM
zJ@e<{sUGc-Lp>ACbN$yMV{n*UbUH}cH(ucvO_E+4NV1Dgo8V4;`MRU(t(sn2gJ#;V
ze$M+`tewo29ZYGxWK>=xMfO9bu@nyG^VrkpW2W2<5#CRY9~NX$NmoB2-^8nx-R@bB
z*1IB)>l@;L!pjd5Zy4W6{VU?^JlR#Et?vu~`7@ZBw=&wCS0$yGlW1BSyJdn3s;Dr3
ze-~t=bM*cY&GO|*8hp7wCEQZChnW_q20uu}v{B}~M9@>ahd&dA|p?)s=Ar*aowu$YOZ*H!v
zYs`zbUo)YzTf5-A9rfuq4?fO<>Dm<*3n4()Njoiq_PW5JlCSY!>J99^{js{RTn_w0
z#I9}2efC}IThcL)u4=*PR^t*HG#ap-ZN;bJM0(eDe{9o7L
z=sz;nNoHBpohn6nn~btLI^*3OC#}P7l3m`HHfALH-%@_~OQ39b{f#fKx3+Uw2rngV
zFB*nHd(SZT(%DL!NJofIlp1GQl6InYN=lUVv;=?DXsB?;!;kxK4ch&dGq%028zxlS
zN{x?Al@iNFjnoK1g8X>3EU)+94=x!#^|dt;ljL1^##0I$H}gIjOLMlV?8lW*(@TP&
zU{t5#bG87~%T~kL?;aHjR*zcUuxONdh5BuA!RzOSiqxY=q75H=OFpm(uEl@#xwLgyUkDgY8MVTJX=wVQo#=>>?=8J
z%C0uTzZy&orR;6pa$)Ptoat49KYK-txrZ{#skqUr{gwaf^KPmvzcyM~>bXkw3{YI0
zp+5kSXKPdu?n*Xtp?$2%P}7|5mun|njk%`0?a&ZOH8n2!%)qlR?Q(MK%>X(H@%y9x
zM1M2qt8DiK95jMbfZkTXFBSKdHAG{v)dnspOuvsY>NrbDRjW9M5fk4^kR?ZBn#^WM
zjW8}9AbshLfNd3;X>XgF5}gW^b6;5CXECzrk(B@a#QfPensl*7uG?h@AynQbboTR_J)i*V12Zo_sBxZ`>MzLyG&gWd$YgTCTW=
z9B|a*lu#hT53}XKy+$P0jmlB2>anG8h*guX?&47
zP{FCpMGrkzjr@U;%lY`W9oY{=N1m^uF#Y|!xV7V0?
z-GQ@)?yYo}?Z~T_j%WUExY4;RJ!j-EuFjy%)u*=PVv950RZTK>icQjb_Inh;OE$p7
zeYj;oWgHona{to*|1ZFB>_B{XfWB8sr9Yhaq-Dx0l+oigVCWLnf~
zN+!2C^LU%ZlhGc-$LuVlu$8$dYVnGlU1u@`?(9|EFzrIJyj;%i!kE4#0hqPa_7agT
zUhGpe7-7KyS~JBQx@Rh;-a-uR$CLxBa!TMGOWZhPJ1`e0vpj38PCRocNmwe8+2|R`
zzp%KVPETcHPHz~9jfR*>ksx%~Wu|Ar$Cw-lVj_8ZnHD#(LL)M4_5mfA=WZdgR)YhE
z0Qm&8Ew!%Df0ku_^IM_htVOJO#jrLwyCjjM29|Mf8{)=(r}&+SsSRA%<--Rzi~TN^Ja
z6`g$)oGd+VPx;V3MwH|uL$T;jb(2&nu
z65|dQmi5(2F%8P7!hwNHO|4pyAUid!y1hi1Sp{$*;#rlSph4(STIyRH`PLBzDQm&o
z;%c`5YaEqco|cnL^g$tkElbxvCJ=$}$@t1g-lG4U*R(*DRk@Z$koe-y+tZ_ud_OmQ
zTce%iKp9C8onef-l$c$)W1ix5{*OYWlT{r6j%JwmjJKwn;ZT16tOkIs*Kip=avYEtM-m8cC0q
zDx?Xazk3h#im-a;RSij&L6>z%`t5+A=4YP7MN%3rwd;~EE#37ltbY7?uCClX=m??W
zoN)*Lxdnq#M9D&BN8bB~q(XWv^Cr8K%`fmc)4%xX=hV*!(?$#|xv1X?FC|-DoKl6i
zxwm(`$N2pk&dB|=oP?sPkO-DEEEzNr%SMj_n#Pl=zn4pOp4%BHXO~vPAT1yaBe|?M
zsnbnIczA4#bLU^zXrXp&@}{D=+MyRfq@?qp&+v2)H%kFFTXKPluJ_nhUE)ARmsTCJu#G>^IEEueX);BlITcc
zt4?Eo)|q_7MX2y6oBQ~wXMF{h#P0lcEAER-i9kfI)|&kLqCFTLj#b_@BmY7%&5<1}
zsS3vkA+Ng;kV0QLRAB@__I0E>gtxYJNM-g-e(yB63+tAoJyciE_L(cCF5SBIv%UB7
zJ$Fzqu;`a
z796x%7~{`nXX2UCY@*Q?*BThmz>P#v0?I$eH<&cc7n+2l<}QaiTo%`*0jU)Q;bgA
z)Z;&&QICA?=o$M<6-}6B8YK)|%yPjlHAC&NKv>cR{;rRQvoZV7x)$gT%j2~wBPNze
zzm*VATV?)TVEPrqZEv>2qc*$$tRwMA;HD=uKn4)%4HN)6&^QIs(*mEzmd@NT<IP&+w2cDf&-DNpg&Rvbt4{r3;~iJlX}iR2{-dME`#0eIr9EO=1I!JuRO4N`
zOtEhfm%v$AFW7~qn8U;=$(3U^QC^j$Q+)^@ES3#`yU-MjfWziDf~_b6p&q8u(`fCh
z>e-R%`ALv_jPg4-4AtCa8I|rgxASvpO;VO3(ST>su-ap!lCYlArXT1qOhUjy@lr33jW*lujR3=Cai5Lb&)=yaT3HK8t#UpsFBPIq=4N^8JKE&
zfrP873l}@yr$%@K?^{{4bJ%WTC9kH88UC7(c=F=$t9JC`klS?=m&13)3G~AwW9?GI
ztcN?uQlg>)>{~wxl(!?2-P{^58Tc52zpm|j;1sf%A87KLNU~7p^3ri`r4-pF$1VY0tFb@h;I_#Lv
z2)$2=OI+F}0FdM}g6}k42AKwP>Oi2<`30ah2P`&cma|(dT~L9lZDg~JF)G14x;oTq
zF*Q3kdKGxZNMTULr=A5|o?{&N+hcHeZ2dLAs658~pP_c@(aA-`Ky{aazdOo6fLgN}
z+EDyWFD_ReY91!`hj!wd(nrouWM71xon>=PXxmKaJ9A4rx?YX>Ye~1*^+%`615b`-
zf~Z3S!UV7V@13i;UD4ioqoAI17q$dx-Ve+)nrZV_Njt*uDyrV$l%Lzft>
z9l$zA1!h)sv>S=+SF4l0^hN|Oh*wAld!C%N6b==1ELj&9X=bRBUzusy1CJRfzLHXs
z;#AWsW}elq13l;*i;dA;?D(?oa>tgno~p(6m+9Gvx)N!oN4f9~)@hVcNm+Eo8~E`~
z3@d<7TG$^X(vmvO-Gx#`Q^=gp2C1ppYXhJ2<
zvoS4|H;dylCEwDF4FPiM3LEu@n^7d1SN2^zfodUMRrS@QrGZx(o|b!0XENrSImzgzZI
zP6T8`!@(6g-H`;|Do+A|p)6xVwa2V9tbE~a!4r^qzs7`bRMSLsq+mhPcKJ(iy3zN+u^3+CF>lM}uA&*Djk_R9HQyXFca@A!4V?
zQdHi7jg1MCk&MlN^~-_{G8(*X-ZcJ)VQ#_D7hbltlUFF}8z*iWgnby{j7~MRQ55_n
zf6qwuhT@rC&&=M_%WRX>2}4Gy;iMSax1j$pk{w;StYb~gK>#7+<-nO_Ma>q{=4DoH
zOC2CRv(a*<9XjJ#gV$kN5J~Hnb`F4t!_n-C(JOQNVA|E7oo$dl$>%!U
z+f>{YEU@+`pFNES$RpTZ`+@--UA9uZyWyeFDdcPC{$u{vq24s7x}tOh8OKMYrSPv?
z>OHBjvH(5>C2SFu_FnhMwfiQC-JQIklm%eINTgt|}yfYU-*BqY}u=Z$5F
z9PE*-C_p?6k|9qz*<^3{OLy*TEDJj{W&x2DIhg!_1`#36@UU7m8sXRE|6y<)qU_?$
zuTtqtdF~carJdMI?W-CiZI^+;qH4^BBfD<<8DA=r048J3F~iv{G<~yp&;F@0^b4Gp
z-E!n`BGvz-EA{~oW@ba;kyDHgYT>BMD@G@P^g&7dM?RUYO4viFWFr4>V>a|&To`}m
zJ-{746LYUK*InAYvOX~wm1<92Kl=OdJ|t5@Rir>kOLqGnzsV&IG5p;uv9`Fb`kbQ@
zodRcfX2u(50n_B|u}|;>PuHSie28CUsHGW#rlk_E4q@Au%ak@u{<<#kTHVKEZm!$w
z?D~Q9XMb{B939wrqjqfj!V9@A=omdTJf08W7-H$@_5CZKdX$#Mxgb}=onsw1)K*OF?|YkW7k{}6
zy_gBuB!pU;P9jYqb@(1cR}6}%$F=93W%2y!^#C|KBFB^GjoTL{4Qw3VPdb>>9Esly
zfyY+$2g{wH#Oa!29B1^#k^jgc_U1=_Ua`P%KK#t)iFo4b$g81Kpvk@Bt*GzMHz$hR
zin+RtC<8S-{#swG=j3~}579G{K7J*xksV8WT2l_~fu31Wz=9wI9X)Zud!}o>4tM+y
zO)P`#&F;;r?BULVJL5$I4|V7Zldk=(;Uzp#KWwLkr8Lmj#&8KtwBH$&Jn`R+^2BOWd5
zT3%ITG0S7pj@4LPm~t?S+0G`Tug4su-ogHM#AzDVs_t%~;juQVi)AP@ux~HqKc|U%
z6ju$|B=*^ZUD*Y_D&R60dQ|II{tqKq!R786x5TX@s#)OA{VPzfoqlhw(pR4332UF6
zcBv;G&ZwVu_80c=m#Sz|JoOXL4G5CB+qd)el8WA9rk?rRir+fd)RksN0rv$Y-Z5wA
zI55X&9us%p)cwEh(JoP;}zwqsZyq=-K<)zBC+N!@z>I9(G{&l
zd_^*3d|dELfd_6^!W<>Ajizvuo){Qr0y6@;w8ZE$6-e{5TFuJajbMc6JPi1>#+sgg
zkBQNDcE-Kpyd2REqiC*E5@o98zr9{sxY76j`H`W;c!`mLC^WF318SOt18yo-f)x94
z!z8Kzg;QE|(a0|%yJkzW{7|Wh=2cZsJ|K^3RZv^?SCfr(&evaz#K|)o$S;r1vSd@p?jMcrIAf+9`DLU}enwr^
zh5w9OwLGX;rKoQ4UYs9BE;tELpghJwv0azPmE|Qb0IczO#EZNoP}Qo(#S$CZv$7Db
z?KQSAC2l4#tXjRuX=3VU%ht?Ul29^D>6?zl46ZCw-3ab`Kbcx~6EW^Hh;u70BhD)#MCm`#?27FD=u99C>fh)
zmeg41J8*V)V^#DOlKZzxD@7$uFS|A+X#FCA)0Z?KI?LWP3N0pzWK8!-`@vQikezyc
zY|c28CiL`58Fvc4nb;hT1PAY*CqEbIBu4+e$GmyIRwiNUY{@*A7<
zBqO7^DH@VKS+kaZ2|sow$$4wxcl?Nv`|24X$VdKs!bE^r%wM&uV--X9_bv!43f_FY
z<{#v9uJ&pC68RJ_BNc-&8a=7d%wWQ0R)~N)$=WgTXmDsRy0w0OUGeNoQZVCf#N5D_
zt@k(n*_XRqh_VNhiEej8r4QS-w10z}j#Lz_=Vj5vc@6f#fTku*JTH#R3bF8T%OZMH
z4Yn2l9%gL##;xiVJv+Ax4`-4cg@PiT{vf3=@j<4c+;|zkCv%GE!R+w*318Oa%xIEH
z64*r(OSS|e%a25O5xQ;VBXneM!!VAuWE82>;N@kpng;KU20+v~H&V5_v=h6^4bkFM
z;hEkM_CChzO#rqe!kSnB1xyUMP+OS5Lo*_W`?LFv_vLKecA(MO)7mC{fixCxhRtgS
zePVJJGr^pDdVLGg2)KV;$UK`AS{1Q)%R_!2#r1rP$IC1663J3sX
zS08_3)`MGr!n4%zX1(6u2!}Kl9}?Y3yR-;Gq-YeFGt85lLS6&|`}^&}!XiF^EY@z>
z*f59A7fsYmI*z8+LuNpv)G7&gZZDoxOKpqI*UhM-U~d-h?}JU_lO&d52|}0z&H7s7
zm-0y2XJ+>yZ(n$VHNVF&+bH0cDEtYkY-uz3y=nc}2bJeZ!&yiYPS)!;hg(yP=
zsH2#>@;-Pqpy;IT#fwk$mET+LRj6$}jp%rExO^qoMa}J0!R^#3VFj<6sC?KaYN1iz
znb|HfD0h&<2Zvz|h3;O06NG(7r3~e}!LrTW>D~#0K=r>$jQKk{ZC~7^;|Dw*%L>$|
zDb*F9sg#dCwes-+6@+4hiW{(LF+Fh`9b$)uCSNuUt<&ByP#iKxv<=X{i;s?&4VDUH
zFN*QIk-6^EmGW`C$V>lLQP7&)_aBCr4o6i2t7|d@l);7S&*_eD5V>>a6Qw#Yka8Wx
z>6Lw(CbEdspiQvz{9SDKvm1xr*D7OqC5yP-pGTK1b1Wa~GY?0Qb@N%MceQ2OA@(9L
zW$B3BM4u&luc+TI0PehD(h}m!_WXHEO|KJVdb*ip)SY-r8h7C%wuqzKdF>2U1urHj
zIkIAjRppHHhvr^O31_8cvT@8x(&)
z-}b^FHEVS2_6DBy!`5YmQ7uZ5SFbRLMX=#br0MX}Q0rGn@isauEK$-nK~H938e>P=
zViNT)22BN^bF2b`tHANp=!wxQ7veHsbCjk&F1EUHrc&f1R8wh~ImWnk+NZ$ItA!mk
z@c54{ZvIq>!{eSEeFcoH=50zFV-rj6
zID?36nZoU}%aP?yo>cXr#rYO`R%4o(B^EhmhtfMB>)o~Q?JbWupyADl580GCExoh_
z>sM;7oyvLQG)$)JAN$xQTd|Q0J3Y2wiq+_mPmViRSBM8Oe?gz3*#%l9-wpmCk{<>o
zeJWJpcAN{iWsQXsAbZynhG%KT75Td*!yP92^8zvO9DkmPFo4V;WdchYnQ0vtvUb8p
zRL9rNQ4VC9r8)h3YN8_E@Las<@6E800|V~x9=8*;vZh#By??YJ$<^nroqx|4;>zRj
z%H=bpoULo!8`*blU$lQ_{)geY7wX}q;9Zr6%Mc-}EzR{O&DPxfjDnZs-;Wn6NB|&s
zf!_dQ2s%S;Y!FkCpZ?C~Nd{>=Mh3qK{p&}$uho54SKiT*_h@1Y!TC0N$+#)~CSX2T
zs*Wk*RW#ZKGNwmbRgnKBVcp>sL{*1pl$=4Fb2;Pz$1pB%IW}=5^ZN0qL>uBkyVRCn
zQ?K9p6AMx4vtN0Jv2!|lxU|{uWKkcz+EBTY7&XpkGNPSQ*vKypP}4uhDCBM5
z>ZJaHFAsuc8K!DKCU+K^)b1lE$+odRhxsaMM+ZQ#J-RY};sMRW!;39Myu#AjrFSw%
z&(i4~U%z{9@5m(__F1n1bvt3u5wmOe%&mb?*DA;6EG(see~wZfpdS@KHP$om#8?7g
z7-Mbk_|{fy>`mu_E-nFg=Cem&1vtUnh=ZymCT<(}u(YPZm4+~dA{P%K5^G59+M@kW
zyWxzZ_4t4#S5>4iKDjJJ)=63A{)uxm_0m_fAUKWU<|sYD?rV^H4)Cn2N!h5a%iHob
znEDxUfIPYKr+vsPKeA&iv;olZ_QO&Q;|@O=EyJ@ItDE2*=%3s_NHODlR#$I~*qEtA?N6)ms{^oYo_41nrV^}9iN
z8ua42rY3|1p|Z6~bolQ_$K_o9^W=A361^V=L9Pxk
znAP@-?Im7x7AJ4^?_(77wTH^!QM;!{=ST}=Bd{%j`xaV#sLd@_7aoRx_D9goo9;n+
z@>84d;JP1m>E_~{zkdY5lhWDwT{?SWJi~Q9x`g35$rmnOA!$f`LL(dp$TZR$oxqLD
zR$m9?+atelv50Qm1!zG>cmSY!JM0TP)ZQQ}@>pqa?MZqLnresK0{F9TJwAov)*H^u
zfWB$s{@L*uh#%Fr-e9h80{YxPT+E!F%f~8nSWmo~R$GnzqQZ(OgbYT~SIFa8?Gq
z{wiZgi%-%;OVd=<>gY7ton>32mQW+^3mpcd;EC1MO=m&vWbo{BtZve}!C#s}f$FIh
z05hSyQ`f|;2>y#9gUlSn`@czd>^=j@wC@_9_spN#el8^?Q{dX$jTo3aSbYV}aK&Nb
z#zO;uC{NN>3tC}K_{Xje7hrOLzkSu!$JQQV8;77h>>m%OG(
zO@!vjA@2faXhHh^`kB8IImr`rFKhg>>SDyKgsMxMrBv)Gj9>#z?04Af^bSqw`FXhawM=l3yl_~lLn)qs6iDjVf#DD$lJb$}u&kS^U
z$2YVPGvO-b6~Ws^R&W~gyENR(9TZG}aGiSI+)N5#5^Sk2%KsPR^RH`#3%JER{T_J)-*Q-Sp0vhm~&8g>G~>
z<=6ko0{_2tWsq|{u;3)kZU+#(vKEDbzrQ>;{FnoZkU#JNIaLPk5$McXj-aU63$
zUMUPMBj@fVX+{DXIPyD_@;r=lby79{pLoI*a&Xu4K~F-sXB5Zdlf5rUZtW^fizmkS
zx$H+gLmfHarNI$UMB(2s7V9Qm4FHoLyc|)=g{{NLu5Z8(X*rcH&2?{pbkstcS+Vk@
z!Y#NoPMW`vfn|cWrq9|0s+0N#+CNa!gsrtG>q7bGbhEPhcR3C1k&B}++gxJTl?>=Qqv!tNoCERw?Xd8*+cPRrE7Dp9A&xg^oVs#*&3j`HXT
zwl+&keWkwR0!8g3Asm~3$R$JS>apX)TDJ$F(e-`4`*Zg!qaTJ%$bXG?V(`jOqqRCL
z7rZ@aRS?kY=HD;7eWP{LA~t7)Bb*fmkO|c;?O~mi7eIqw}!;Fs$q(%`)4*yJzTf;S~HZpx7o7
z@XiPiBeU?R6|@+|fsk{a{tWLAW~N6h7>}=xm1S}}A8$iCK^6elKq5W3%WkF(cN07J
z2uxa()3A(qXEo90Bk#%0^D?F*W>6GC^Kjto=Pd2=+S^qRq$&wm*$(WiUFMq<1pJc5
z`<5l0I2(#cmd|ffBQa(fG))cJ)wnZ
zvlr*jZ@39z1Z`#_w=5+s)b2NqPAgqDW?zQp3SDQipgZl
zsKT65YrCjfY5dZ9recsO}uNkrR(x1
zU0o)**MH;nrzU;TRYGiKWL8R>h?b?e{Zg99jE6OKEz`-nh5T~D91Z9*C2+tJlqPp5
zLpXo}{4o9bDcf%`S8dvx!1LyTw(71jDS<|h|6a73lwRy7ZPNRdp%xz3yKzlw=B+Tb
zuQQX>UCIOiDTUvwK&sm?HK?8QjAy8`JVut6(}kIQz!)opX$vj6jM$TATlHLe%La)iuDXU~q>(FGI
zWu4aT%1kM;DGiO#aqUOEm1Z!p0{COgzj>Z!aQ8T(pJqJ0
zZoSY-NoG?u&@9)zw7FtXt$12roj$m=(<5lB5zaAC!CwmXk_Ww@1gACieH}ecrShLa
z7`T3u8CXf1b^oLGi@EB{Gh|Qu!yB21iHaBa|ENzLWXPsbsNGP+p4AG{OcHAkKJ`gM
zt7Oog4VqtBe#OEY`N=e>{Ou4ou<-qCE8X(?6fbpV47D3sMIf@*Ym%WwBDEjK&(W;?
z2NeUx9q{ZpU~a9&4Cu9hoIVH2xP8!51D@$eNaIDrfiM}9B6%QK)IknUx6S9RbZ1Cg
z@;tykDdDr*K5@w&8iIo|3$6BeKB>KH@qX?g(-gR?Q+a?4YZEzNd5DWScdaaZVVNqQ
zSD}wIEmP@O+MT1*kN2$y=tjs|IXp;-w7s%iw$@Co5^&iY4E>Iw-%X|Z;Wjs5oeRwZ
z1xNMF3_Oa{Q~d(#H{C3#|569ITv8pZ0d0Mv$!N#uGKT;fw^;(Ks`!U>2t5kg6m(RgReXm3^&OMab#8_8fWBISBhB1c_lxM|5lHShGept*r*}$
z`YEaB@-1=#9qC>lEcX9IzE4%)v65XWj#)5zjqgoeEX~Czm(;rPkToDFDvU{#&CG)e{$)LhEM!
z`$i!&FccQCcxdp`@8{0IG@YWJJ@+wFWdHPEOeKDc3V3mqxMRGMexcgW0l@t~zSADQ
zDf1eGNWlLj6umF>059_iaG^9wp0H>5sx<4CR`aDSmAgQeI?Dvx&L-%z8k+!OMu=Cw
zkh{X&Xlz=!d9Yvd(?zoh+~uT2EmKVQR9@qxQ*GDsyUxz?
zFHDA6Avv6*1kWWerPsp0fAY)^P&o&uK0QCZ$VA`4kEaUq`Tfrc@5oqsV_7npFt^Iy
z_8ZN5^77*Sd9JoVdL{j@wjUC!L;UVUNj*bEmy&qncKBJ;sIRYSaJ#SgC_)0hCqXQ2mh|2RW^D=xT_O
zhb!crl!hYpCUMCWtj&z;Bb7`Oqm}`aD?wPqsH{xU9}fIRDrppeJo`jTw;8!CFDeC-v_2mR;x
zm5fVIBg(Y68ky-0+u}(?fsaK*;oQ!1OV6%z-m5oha7403JMU&tT^B~TNj;E^ZJ96P
z3RE?_(=l?#m=gc?Qz>+5&R2~bqH08JyA76HzRX(7X%1h9MR$^Oa~%`CkM1?fr0KvA
zssOP`9c5RghF5p`+Ke<(Zb*@-GO^(h?W;t*O=_bxy8op6QsoVC?p^T5=-`l8FR@Etju
z1VL4cQjo2_0^?10jQCdvlP>Auu?a0&(j(3GtI|8~$`XZ_ma7~qpKgub2k;Zt>nZDF
zP*6|hT_1|9OQyy9(!uz4MnSqBkIl1rHtBLUb@la_Rn^DxG>OFy?5gaw*SGZG7vO=u
zRIV>HSqeO#!^+FodU!-y1;zw%G8YN>N?e#%P#yNmLG!=B{!A
zUlsRitw6w*^`MSbzSw|Qt{pBk&ijfab9@@fkumCp;J%f`;bk?EL%OnjdmDKx<}2J-
z>A-8bhp@U6pP3(2sXV|Wn)LUo^_4GkL;g6}iGI}fa-Eb>X`{`p95NIp@>DP>7k{jH
z?@|oO$tmNZH`rAuw^(f;+-D;ahv2n1q7_z
zLUlSgIP@Os`Y*ZN`$Xubx&E2oBqD2p4B9^4O0x{E%Ztso@cOO`il2U+*H
zl*P9e2=puSXwuvD6`iL_iF0G^xg^=;9Jkrk45y~SKYD|3;|5KB6@qPebNA)8
zZHit0(`kqhwbX=MESKt$6}06uF)+T3{akA2B|V7}=h&l!i(#MKW=M4`(r!=bZi%cP
z{qR!n?oItZJ3Ek^7Fv>23~`^Mf4&1vQc1N{|MeN$~1ov
z#0ia6=2uph9&4=B*u(+evP5TfV={SPQdH6e1zmsWH0t0&gKpBs&%QLstF}A4e&tAN
zO`<0knoqE&WE1>4M*j6#XPk=8-1kk$h6Ci5Gs)M)Qovb$=P-O)s!4*x*h|BP_tsrX
zbY6(m8J~*vo)g*Si^SdK^y#&|DW7Qb@m7jThNxUje
zB$R9YLR2<~lr!hYK{I(-
zK(OEUlujY>v9A!=KOx_6Eg%!;)@>_%5J?-BS9Wxt?He#3ZheA+|wXGC-7_mZh4I>1Qx2rEd?wueT)Ibq{v`BDR~Mv()wTeFP$
z1Ybl}u9{4KuI!>lY6Lhbp2~?
z7XJ-2!HGhtMX=dTGRjShdKIv1yk$gMW4nZf{VnS?D$}Id?h7OFyO-;&KUM!gNF`k`
z9z~5Z%A~Qb+K^^sMD|S=vtCL|c}*&dZ1n4&(|2bNPl-dC8eodA$rW%aW6Sub?OnRO
z7nq|R!=xHEb9x*6SM~F4RTDCBoWsH`%_U@4eia$oHofyDFbEDZ@ZOnG3j)j#o8%g7HX
zn&2xzK)g_ejDLNu<%;-W4RWOY?0e}41p#`ts6ldJ3YbckIUPfa_G^!UCYI5i#Ti5E
zHeNs3wT>!p<8l&kh4Bjmg%$+)1xEmY(BHC%_ulO0MP8?W)2jP2<2vO}u&V=Gk}J&R
z&>2?tX=kc@ZP5K;eZ%*g2e7pGxqja(?W7}SM3LM96G>lM^}$_&|G~vMe86it*!s@0
zY1LcROybK!OtYvROr}HJUf1ljF~0%^XSxSL9k&nG4MO<4pMLMb-R*M?Zfm9s3Np%j
z7?(f6(P3Jhw~g`WZN||b%5O?#YS>Tf3;$9uA5Z24L-K>uga5ChmjAu|gqo{oMf0r)
ze%+^_D>1cGzt%$F;s49`68|=>yt3G{ud0ev$e_@Sp|PxM23}J=IYdaoZD&JWU6E=v
z{FAEct7%_}v#2yj|L%Ko9-Wo+%j>$~UJyR8$bxPvHIJZsD`)&~F_(oukEGNGgE?M*
zVwRvC))A@9u~7;1+#CES@$;1*q`DeVnu!>}jw61>rRksfnCrTr9Nj`N%yT8>BeNls
z7N@$iugD6i_!7gy6fE?m_VaktOgHb%cPP$t{*G!sLWlfZ?TiI94Bfh@NkhLjuo~K}
zTC1?T@ULxU`dq8Wgi_9cUZ`{{>j>S^1)cueYCg0f=i>|inIqK#xb+#$A*HZ~xNys*
z&;Jqm`oeOa>EV^hx*-=|4%!6zRoV}
z?`{b(d4JInh#WCLaxbEhhQ=rXp+(on=m{;lRPzkWDgByD(I{qDQ;^(8tDUTAy66b_W@1r>l|2dmN0zhF?;atiFou{v0e7`gL_;
zTQ#|?`t<8^R3)vsI>%T)|HF_o{10R6^nS{BwT6vPA>zPlwd
zI^*s0_d1J2vbnhoG2CbAMs3I5OWbO2>>h$*p4TnT6EyXY>t5h;%F5n2A&~n%?FUzLx`wUPRsOp~
z_71EIctD{9xjDLq7~2|5H(Kwh79IA_jnMZ$<9$)uNVj5&8=?U^ZmIjVNm80|;a9}o
ztO*Qur<=i`00x4rKo3*%JsHC|^wnFre58h^`pwZ!V*U%QFHOo~Oe_`&xBCOV=EmmT
zpGNygpkOyWOUAQ^@0K+)FAh!dM_t59D~MDxA5@7CreCx`6J6Zi---3>dlKMX8V@sB
z(tTpiL|uYXGTX858QnyQR5qpFYPMeH$O>`vZZh3y^~huDvCL@U9f2AJ{mov>sum?w
z&)IEg&h9>~fyhUOq`d4-^k_+@rlZ1%o7U!+L^Vumi%aRO@8YO&AG`7LXaVyPGOUl~
zkL49@ZXW7>iN4KbBN-KA&&O2D7jCcpBh}!6O`kaC88sLyn`)Ep5-G1-O~?;9=W;7(
zV`0@cK_qkZ5!T{Ui=iDDJ>v)y**FDuN4^K|cjvs2eL>PSsFA!s-D>)=baIz5+;Cf+
zSl|2hv4ceyF#QHoDoldB^*ZlIWA^ae5L*s;P}M6~NA_QP9JvZS801plo`23;rrD8*
z`(5Rd$MRT^n~H+bkJQg~KlBXs
z_TJx(2O_Sr$&NoD7l49E9Z5k6^G-Ut5wljv^$9-f<~3e0-H0#az%6#pNa>Raz5d@k
z`?Oo^7%j!gpabZ>IFAZVk9ad^@G63$vRFCSyg|)RLdguY6U}@tjx<_c!ouGSjW&|s
ziWW0ElL_}f(K8oXXPNCF8JLnOangFw`1tlUAD^TkP=DclCVWo=RRG_(J*F5z8ZTnu
ziCX!s)-t%+`%5Ivh8`WE-k-noCGOESmVQg#X%K*B{@L>dWKuFOY$|#d-1`9Hqux$y5m<@M*Z&
zYVq5kTL4{k^SQ1?)k#{pu55q!#$?3XSflrKTW#wX{(IHuEfsF{PNrd#ZB?8gDi!u)
zVarf7&E+Kv5I}1W1*Ow#aYI0+>Vf66V-Y5zY_uVBL*r&SfnSVn=8g{TN-WbK%@F+q
zn7^+9E(qh+|u28E`zatFNxmpcOXye6+mmcLU
zAv0UoxAsQNinkcRRN+gsGh+&I!RKyMERKQ7Qr`^*GH%jiN|&TAu9X%KgSO!xB#np?
zDjwYZT7=80-x)n?$}gxE1!?~e#@;Hbtp@DY#i0}_?xe-Ncqzp_xVsg13Iumbk>J6h
zxC81cUiomK=&<-`vOEdhe9Z
zrWT&P90e*A%@Enbo4xP8nP0xe6q#dBBxN5qxrIQ7X`9C5YX@vAX9PxX$t2iA7Aagk
znVjyl-jU<|bn2yed=hHtN$ofLoGD>lthQ?FY}8!(7*kY+^02d1g>u~R-%^%KP@TN7
z2Z*VRWa5TTo9pM}uM90RS&kzUbm-;z$MxCX0Mm)mh{@r~&WsO)0LMm@;T?sh^6w!l
zmxopVP3Gxkta;~Vv=|p`rD>{}=#bV|YjMgA_W?-{Wb#qEdy!HRp;ZQ)-wUIK$QB)P
z+A04jK2_15Ylvw^Udi}HDrh=SG)`Vk!ypzy4F(>m8Pwo}a(^tds-eAq7a`Q>>%#(X3XilScG+A>xs~`j>7J-`{T`
zr$Pm%{`m>ompsjH`jkYmJcAvNbY?U*B-fQ|e(}1riM-!c1}k@e|}{(%T6#S=*lq{`#>0vv#%?(2`OH_t{j#oc_y1Wa@-(Zf^}Rv
zJL;P=#w^X0%AK{qmJh*s;(MR0>MuYXEXMXDR*v;Il`6zt_Ge}cUYuhC{1o3*_}9ZJ
z+UWa}8c1`t(oSY}b8@Hwnetx)7CgCG!sIzpN*4=L_KqbKr%TNxIW5x1wbfK0*)NOw
zS=vL|pYGxHa|9Lev0XHO41il#m8;tkgEqg&<+kH&`o@vklT+UUyHq{jNInIk)vXgOoZB5q>1&
zWa&^I69jr(GQFus#IWsMP=~d!@Iuq+7owb_E*9Tb%Lh9jJMY~Fc)Rx9K79hU8NF)0
z_x33BlEG5XC)=9)5$91|tJuz~>mBN-fm1Rf#o~`Iq(%jyY)I*{LsZwb)@s6&Ug&?W
zMv^E7f@;|CrnR(o`AT0VK%Z7J)`eH!BuC4~>t15DFI-`@pYWJ)DyEj?`K-)s@#~B+
zL5v`{Io@eHBMo8zAG)Iax<^HfC`k)vVZ#IP-Z@q7uU886%_5R#0UPIwwZzr9#oEr$
ziJ)P5A5)*LLER=jc&fB+4WHw>diJ)L-&zV%tk(NsH;`nS%jR!M$REf$|>)~2|v%YHKA_khq%by#P%DT@tfuu1Rh&s|6!M-ET
zaX=z#dy4{6L>r(TjTo*~peefbw0a_RaQj;+q_2?l-a_jx&z&??XU?Gdl3COMD8dj&
z#?38e{&u582XM?G8wl+9^RC&$3pav&!@)tpQJn=kUSoKsDciB~=XX0%eMQnlaO9@r
zi#46uP@vDe&S^!?S9={7@B_IrM|ipMn5ffSgs8DUC#$2Fw?v_IBrNVvdTX6oZ480}
z*roJpEBtmo`s&y{E@)Nao6*@z&M7`~*y+Nq6Ni3J+KZV%fz5dixIfL0#l|6bSc}Um
z3Y7Wf*}vOtauHAFCS|
z1fse=KBk>ID*qf_RSLHL1}Qn^@Jwk?h0By1MoeRI(_&Lcwa^+81b>BgG<~=et{0FG
z?bqXllIP;
zX(XF%idK{t!BdMg%z2%I0u09(Iw(6!XA;3uLH!*Yi|(Zz!9q;*=u;72!ShRJC(L#m
zuDNR8mrw2-HMC5xfJr$5X~54=jwT~Y*gLC>UABlf4Y9b&fMmgBUH920NP~Rqx7e9I
zKN8a%dTclzeah*i*qLqnM>=aYK48|Dk02dsual$dkwH)n=d*Aahwk#K>{L-VeJEZ$>dv
zW0_-;L?O_q+ANXUd_sMXy4D|(yWA|qW@Y)8HlA@hS*2waFr~}uSxOt@7|wUeSsMW#
z5{jfB+U&5CJP7_awJc74sn=hR!O$)Ra7%I;}?bKNN0Jj_jJUoY=!H;}35>`c_nA@xL4^P%`}bHMz~On_}12+K%q#
zH=$#Sf_D$C;ViiEfJ&QGWtw=obBpmCY$JrWCCnAepayO}Cudt>ql3ujc$qP*dVzDN
zWORo^{&n^BRFiYr4ir)(GfMu0T4ww&?nzXXA6~ptmkgD06O(pi&_yV(z^rOLDt0Up
zgKo0*MRL#(uQXXLAx~oH7r1w(i>qkx(!yL{i_=j(=&a30+)X{NeEBH?Nv6zXj~wo#
z9`&*FDQ1p^a^-Wz4N-c&I#6plJo8x7_z;t#jAw%;%ZbHAFG`8#pj0HnS~8{C4W19|
zYV-pcZOF+bn4-an3i5D@up(`)%>xO4Tt4O6>EcbI+xeJ3tShTtBY+yJyjk?HY+iQ1wW?vCaxOtgt?g-|l8PP}j@Z
zo-+ZG(p134uMoCRw0MB+xqwCY){e%HbL+8fq6gxV2EZBHt(En>yi9ktvbwCunz0y*eW+L>f81BQSN2Qk-O<();oie_%TGXMY~`}KIQ{$Z
z+yXbtKx#ik)=Kq2Y)nQAgc7!0s?p^~9pJwQ@%}PfBvAxK`lsHA_diBAC~Bj{dV#mQ
zZG0IgNqvz&I#WScRlRLLQS1x9`V{CBO1|Z?-FOQBtVlIM#AvU6V8OFOo5h$YzH$tQ>%Gi$2~z?H5dvTw_ib#ZmR`cLb^yC#M$n}rtG+15frpZh;hAbkUYhM>eFVgQh_uv
z`07S%bFKY!>Ig$kdse#MB;0x-FA}FVBE-yNg3gbAJt%z$9ejufW&X^mDKko4Z7^VYG|CuLOO1jJ`391k^
znjWJKz5H2ekDAP@b~9gAoqTntjVzDW1BX1|nW)ir?
zsYDPk*LNLxOf?~u3Mov_T)HoRRA5Af0|UgRB9al-+apYEEttyn7$iqX!CfXo{5_B%
zpETiQH7uwPff3*zDv`13>#1Q8S+$ytvj{ANGE#}XrWxlEV|`E%FRnAv7rd#eJxAjT
z=^1^`6_T_6DXac<-IB$x4OPPQpkd_Td~MQ=Il^J2)k8*P2M*90h9^c)XO|SF=S1kh
zSe9r#nai@Ux&joJa)aG)By*qMFm%DRwKP4neuA{bLP!&+4<!TXZ}sV+4TxO<>z7a2l{NIE>>zFo+sZxP>-3Yop7*_$?Rmp2wzEc
z6vwLQdr0)#fh06B16v#GV!xLnDTyO@PqYbUa3VqKOK9CCc3CYg1r9LvI`_8f@o)6>
z?G5WIZTM3X+3Vf4Vb2E(63PwbT(D)@0K0#9yyr6}dTyZhCFiPOIbRK?B+uLH2u#0o
z@DNh(WSlJS2WX-fr;5+GhUDkK;_%IoDn((TBD_dH2BM#8v4Mj+S}z#E!Qb{9z(9r^
z!&p~~rhwo)IyEoa41^4dHg@JicR*}?D<+FwMkXT!R#`SOjtBR5;OcSORa*9Fw<*U~
z_~kI9git
zMPc82Xq$MCGBONssJ;#7&P}lEF#Vt~
zBCkiUHT?vgo$tju`aw~S+^2YdPEP%>|KSo~FLk~>=%z|lT|Owwps%e$CvWY@&#T*2
zT-}ih1HO|j(>VHoy_}Bp8eo1P;82rv&os_QsMQo%u|-eEqO}i?kATEKx6*&|J5#3p
zYVfisoWkzh^EXGyV-Dwh&Tpz%UiOc2?Xes8a9#IV{4GsvDJk9p=@s_D!R-x)>!+8&
z;6}kwzwlX5vJ=jeyx1d;(OSNQYHyP3pi!}L6f`4;h>2TwOjht}t`fI?gs_kX3AJ)|
zGc{SXLyLP7#a`Qpi-;JEtAs=*y%i`>z8OlQNUNO~%X&0or#JSmJh9KFvkj+3DJG7O
zoRs#-?W|I9CAr*akC|3rs1=0b{UrRKsNI28W#AIjIU?oXX=wPbT_
z87b+-+okn29>*THpxlzRHr19dV5Q=+fvrR9#HbHm%qmJSV`bPAuWxmxR)*fAvn33L
ze$m``B*ia!hZXUJEe*6z{~#1oi7O>}P&+*h<#1hX_|oJbU+#?6e4~3Y(l$!1w_u=4
zcs9(SaBNhWe#4);vI%fCmj9F{pQ`>toC7>Y^|l?NDTE^LoO)#OKepdFNt#tky3w{T
zwHe?f`#D^gvX``4Tnvz$--v-s&#IW(m+T{MCVZ^7)YR$uNeD7z_&J%`#>sMN`t^%lSgf53klXct7)KyY73Z?mYigqQ0%5yX-OH_{;-6oq%tkP{OY@(dfox5A=5Sp~BB$S66f-
z2}|7qPxJmejhs5n-m0oMR{o4cm8r6n_o!VUczxXPFpBxcRP|?Fu(NMsMb1a?J7+^$ehNFqo`*6H>2
zTjQUBrS-w2{C=)R(q~Vc{kI@{ce6qA)0}$L+_B~ztt-Syb*T_yQC78{BI-TD$&WEu
z3R3t*exKSLW5)Wkqql8^S^(2V%at#PrwE*qQjjhZI(U84(l~Q=x=7wJqq|h2
zYX!^DznGg;qK$Pp2+{wLj+ML_fS=UsCd}(b?llNivMp1jkBKzM#|huHLe~RUaxC;A
zK{&KHhnnkxG+xZ)K!8Z^FR2&ymP*?!pq`*WRJtP!&v*e#)YaotA~5M_V2h4u8C-O$Y*hJnYtRT
z9R~bfP;T(Aob9t3)h_H^nhEV+OFr6JF8Y~lgZuCRejX-(oD;x+7rSq9ze4w9!IwwC
zh|<+8RRV=vk3JLG>tbh;6Z}h_#tL0C#OxRR;_p!Ha2C$EN;RgDrxy#uDaDtH$*C-8@W@r
zDUv9EF3<9Ar^sW^HACZVE^C4nk-G~86ZyftgfyRRA5^K@C;EcDqs5kD>eEy$W?C(I
z3#!EQuVy=P!Tjo*bP6)MzyG=gr%3N8x-|yNYEd^K#ElUMBRA`dUCRwQ+Uv@y%8_jc
zeX(L4Tee6AHu8?4a>`ROit+xgjK@&v;a-z-pyz&RG`8So=;Z7%&;&$5O4z>}I{88n
z9t0P;$^f!Ez&y5P#Nf@+O=xSG@gn*-OPiq@RwA~41|0fZ_tr8CPee0CvOc8@WU@=I{(KAZmeZyaL?
zszv6()sY6*C?WV#y|7NQDYX7%xXS1(aTMWQF5YtZbx9B?GN_FkFobB!+S?B=24yHe`psQD0PpZD4ZIy7FtiiqCcu7tdX^q
z;2UmvTbGaiPV9S8DCt^~2FzE6z%VCF6w&$9*G
zA3SkMut^d3cu%^YH@)iTp}NS|ILOG$L=-ym_(Zwlx>#LFqO8nTu@!YA`T6D$#**tE
zq1aj?D^huFN#MBq3NSuiHf$rkbIR9!DVU(6sDhVnGyx)^Dj(9R;g^nuftgd5*_}%*
z0HW6;ODunYDw)1v>VKNgiS5AkBcVi;GsE{$I3g9pS_S+r#g6n2dLRMK%C~Q7ekq6I
zR4ypb<)Nng$VF2M|fl@L`_tNnlexCYg5nobv$db~$IhP_3-Ffvd#h>a5z=ejELi
zo{HGgtuPQYL*V5OX8n5GrOw5mQH>NM~reet7PnMuaSh
zu5YLnMmjiXBy&iQ{zE}IiQ@Ei3rQN-!de-H5BR73<2Qs_OF$D8Mb{Q7#gXkYLngVOS{O0K3;NTwAQm)$*
z;6FC<)JoG4tYbQ&d;dpGotn(9ZoV=Tj@=fW{n5(AIjT*FkNqbt=dQ%qL1n0IuUel~
zSh|r6yg-;f?4nlTA4=z=H2XImXKY!Gv|;dE(fS)eg-Q`6+5%4*Pi
zfUUs5&EOWT_+ooQ1@f%nG6kN15h1QeS+%#eSpB~n$C1sj;gD_5#J3N|EC|464pvW3xZ*av_@lo8SGg`
zVq5rU?j8weP2x+*Lt?T~h2ty^5&;|zV&4?CS@sv7nqlTf>hwywPFiNlV#fqd(CG<~
zVUNwTW5~&hZhLSQhR3bXQ1m;N-w7)smg^#pYr1o@5w*wD4|}-t6>6y*GUb
zE%izc%EgX3jy7Wk11&2eiXr9sj*hU3ledtJhD2DtLR2}VA;Yp!M{iy=9-^?xFY@+j
zS9UfAc>Js{gCm2tEe5nnnUy{Q-ZM;7`bO=ikEr65FIpD|mjy^AS-+o<0UV
z1u3sIC(A62SK1tNtcJhwRhK4R(*IqGrmr^O*5z0B@m2qR4h
z(uMa_OzC{kPvE-Zwfn#d@r!==;|W>v(k|_SvB5m6j;}WjQzJZ4hP4$re)owtWGDLx
zRo+!+-;Kf4qAuC7SxUN;7=dLE02+4YOLX)WGl!-
z{kZw~NH0#fk%U^*w#
zh!;qq*!skZn(#|Vk6a?I`W9bZIGr`){Z^{3)}pv>n)wH;>|+=MLg~Z~B4ZSLmy%23
zyuwAZh$K8DCL%$0UZgz*^vG$>+oMien~l5=i*#N?Y?$n8_x>b=-TF9-@cr^?^th=e
z{F|q?p!hET_tVWEOuX~9$?`Fo9%evricIoTJkK}coQdDnH&-qEaaKPDohX^-vmJd<
z5ZrQ#A~HhyKUCACb`+yft@m!6|zUaa9DU)Ko(qBdfr
zn-%${{JvHNcTL|x&~I`fqH@qcE>2k3N5UApjCkERmzkzZNaW%BGE2gm;yaX;JHDa4
z(Yq(HNpW!fw;m?JN{PyQ!+$6Wg>_pxiQn{17P{dfH0hEpX*+8oNht_%F5z_bX=rVY
z+EBZ0`Gr^&ScvQ0sA@`=BduHS?x_{C(N}zhKLwV-eeYM;2D=;#gA2mg_=s%Z6u6JuN_Kmm_v*{GtrkphdC3yt5#X9gk
zNnJ7BB*5$oEKq*6D2T%fHGsa>oZq-clp(QwRW0YZA;q(!8(j0BL!;6-OhDs}hx_$P
z(Dlolh<+Zc+0;2Pc+W=qS0P@2!NFDSp85AGVSP#FxFjJ}WUpGM9+|;I=5L>VOKsfto4J+Y?SDg8$%w9@iXo32Yj#^)qKeN>F)KesHGEb
zdqOvPoU36X+2sC7^`OW1!3~Bs955re!5Muo-_?-^{Y9S+ht(Yq1E8lU07k`F0i7j1
zVG5vc;K*bC46(LC#hN^(B{@s0?_}RLRx|vKrA=6bL^Gj}yeQU+&&9~B8N+$7D{lUw
zSR)Gvo=bD0ib6&S#ls4*v?&84waQZ)AApuxJEZ3zVo4yQCgXB*bPV0BbLAu`_2)dJ
zM2Vy%5BOOQT?IURwWX1=P52mdC;{EjGca23ZTyDQtkrnLt4n$<
zfqWADIdQjFvtyar=Vj4Sy2rrI-n&C-e{AE(%eT7$xk|O~E^_fRJS_=&X
zj)y@nv$HEt#v&J>0#_y;8amROR6X9$Trs4)Qd}qRSVsO-r4F~{O=R5tlKJ#%>x$Ov
z1;FLaCB*=lsJ7%Q^E!DkMrN7C_3|A~qKb9M&VFS;wStvF&G0MBR|I0VWluqQWPbL%
z<23c|RC{K#YW=2xX>a5^&r(=lEqEPEjoAJ}VcV9N3e%bJQRx@7y!WIH;P(4^3wmd8
z8nl1=%kECSzc82Cf|d-GJn`K}CmCbq7?{K#?ciUg%UNhB^%S=h`8T&Gou32Pop$YK
z{zi`={~kQc1phU!5n;6!G2~m!SrpXDCzkR|4eTB@~PtZ@l%D=oo-TB#%}|-wkhOTtzJovF&jKp0^S3o`H4KVK`t!;OsI_Okt(BVf{nd
zIg_vH(i$XD>fUanw?CL`Bpd&T@-6J;{Z-Io@M?E%B4ze13!dn_jtUcENjLOoR~jT>
zgCjNvfdiv+FEoNwI?9?sZ*bt32Bc4wzuxRO$lt|0X&jd)U
z_BZPMY;L#ajc8?hDVXiTKp|mBxkuw`32T
zdT?+wTfW7e26Sbi(OxjTWZgT&ezuUpS{YfCPpKH%WoLmZHP5N0C=mlWnVjpL5>#R5
z23l`hOAS3vT?0kMVL()U(wd;k6ZNkxpCUa>N0uBb34pBI*XSjfEy8C!hsA4#+3cH%
z#SZkHZ)$ioT1SS7hZ;u9q$-}GJ!=BdT38-~!*@IKR~+2L^w|n1ipXj(k(Z~?OlabH
z?w7z8vanW9z?MV--$1~{A?%#i^mlxxb)1sKq7kN{o#;-wVRd~J%QgZ{r0%W7T9UJ8
zEBVov@}gn)Ww>*X+86hHrSt5fkS*CTLfimd_L`e@%^2rY0j9+W83)qJ$nwbv^rcR3e1>ii)FdaV7TxZ
zmtBV+*aL71LYRLQHR=o(=k;U94hJ0X%vg7qC+4z<={c%sd6EII<4EjS1~^02d4gkn
z!ndVV<0?RAK}=DHoJt&iGZzon87~j;k%G@ACS3H~8uEs-9%`DpuXL+@h>`7aVz&KT
zOCIrR6P($XVzy(#fu52x1S9fadXk)hf$dtf6TmoB4AeZNk=~ypR%bZ9Cbz*J_o~uq
z^E!6n9wWeb&=3o?yNibbGlN`2yg!`2;L^GXV-~BKSi2SqXq+wsr3XhSki8^mlL&^|RU3sJrP*!&NLetyu|ZP8drfE(ZIpdZj!
zsxujgxA{%#X4p+qA|p6fPqhi8m!2VTY9EtwX^2LrL4J4;4xUEk>+V)!1pxWF@*B(M!M{-RpO2#XZeYA5PN>`$U)?0g{bLs;lBV!*+~g2?C=^N7V}9
ztELSYQiMbm+=HVifu6_gOyO{1Qi4{?UX3qR3EtBRih=u$4X4!E#Q8n6f(v7#MnZDl
zIx|bC&`Auz6>=`!AHP1LVgpfM3L_}$G{|qXxA%g)DN!`v1Oq1>;c;GEv%j+o6%Auh
z8(!5`JQ31|(e<_=lJ!eH^>n#X#(HcKmztNNX_*m3X}=8<36~1&?^>KoZS)J04*?GP
z$ahP*IrO(kW$I9uDF1&w3?rKeNiUjt;{*zNtNeVJh$lC?Ec2nA5ks8G>rtf3B(#We
z89%!#!Zwml#T0I>7VP(89xT~?ddZMYhKeWFwlo_ye6TkY*wP@BhTWF~`M4Nm&85M{
zcVx6}aHR!D`#~nXSp107*8Deq$HChtm${GIdyEY8gC
zIy_f%ehBdJ=V!WT!R;(qjqt^^M}capM3oG|Y|RC`)k7lqD?m`(-{4$zqMEvzow`AM
zf!$#CtHU32dToZ7yTG@avQDHo7zQ!VZGZD{KKTmO-?i)xod@@+q;lE$i=_DHv`@`PM
z19N8xMTWN5Tg@B-sfnaz>;=oSclUc(*tUX{EtLJw`d(zN>U)T#LG5Nw!PNc~1(xhL
zpQr${?%cK4^gDTzWj*=8AA8AT;(Qtn1!MW9NP%se>uCvj#s!0HdG=(;T!{aZXMjvl
z(&{Gxo@IpV={PifI{sSQGz9FTkdj;#2YD7
z40R?#VRAa+$b*oJB^NvMJw-Wo8Og2V+(W8OyJ8*B31_|!DTUEm#
zAO1xA-t3Yb4&$^J2FpRWl@6yP4mR0en)1qx(XXkrwMHMYw1Z1knw#^FU5$%_zN%J~
z5$=n&q%e7uw#}9I+IhX0g3|w+j?3}UdA6~YYIFmcGCvQ~HAoY>7
z_S^O=n+m_DJU|UjDq>^S58>MCbGInarCl0cV!J~VA3+E$3vu$8@9L{p#PQm~s!JoY
z6~pwae2LwLj$CYt!jcLK=yF~;f4Xv*!P$+iJnD3(Pi@0kkT#4&J+ZhW(|9^%wi~mbVlOp#b`s~u-ec#|W+5|YeuR7YD4IQcx?%hEK
zK#Hs06l#+hS?}Wo6t(`6sT|t+e7@o5lQf|h|0VX=;k&?kDJQw`aKqx+&g%R&ghHI~
z9}3L}*46)vSDt+hWV<*Iea>uv9j#xS5(;9f;pxQsii!S?9t&hv?{;E2m^cK<-^HS@
z`F5_Hl{j4Tw2BkwhN&t$TvH-2axRB!wf`_H&!5jTtQ==sR@mJ;9%y7;UmtGlx7;3{
z(b8sf@2sveWMW1)heohf)ERbn8k;hq<%o(pDF@Vjb1@^fAwrWBzLh4}`|Q@|a|V_<
z6@-H`0DP$yQc9Dew5G;uszU2-uc&miR0&u2McM9M(~as7tI_oVs|_A{2?XZ(E|mj&
zggF|G)BvFtr-O86e`NpcO^G5PhUTL9Wf$kb4eq6tEwxlfH9;F{LuT{m2MR
zQ(CZ-OhM*by#z5
zS_ANLk4J%(f2GnSuOIExMN9}SNHvj4F^_`HsDO?3sIki_U{J{$oyH$#H0)&FDCcB4=uybYL?beDHt
zUXt$yNxh9g#dssV`$j&75rK1e-aVH|*x5=zKw45d0#}Js;Nm0m8kdmZU*ju{9Y2clM{94EZyWmdFY-MGA9zzMQ`4KJ
zAHfN)xS>3H$zY7n$l5((9k)iJbatKnH@z7aapFX57?UNvE)FGncIZ|!T1UK#mk--N
zD_5c;vEVMC55FB0QxJzL?!MOIOeWxpD_Utp#kR!8_v6ba74IFGev~06ggtjWKFaom
zUB0w{5lHF+Nug>d82j;lM0l54GRS4gp&=S9(|Z_JA^ENfkjw;NoE__;nAKV^i{4Q-
zxI&j4uja0|K$f=D>|>9eDt`5gD^y~srw-}8tFcQiHc*JOG$ivZjKCjmzI{5L7}~Is
zlZNS97X47(;k=@vx5_hJSzl4Wb2l7$(oM=jNbYSN&7r`7D$2=As`Cr|`{hF_3TP^c
z{FwS*mC--^Zde^fbtOVe5!FSwo6TUW<*sG_Hwo`qDRyal86$0Jp9y-pIKq
znv^x>1p*j|rnibN#rHOM7-8EFTac#YrmB!Ow&?R@x(fXnu7(Rxo16{lBD8;_=3F{S
zG_RBV$w8xVOXqpoBzR>@QvOV<=p*Nzg`R}$T$hM<9CJp6pX0lrAa9VT)a)a({F7px
zkz;m>WGib8&SPy^J3V}mtU8~u=@b$npu9BmVv2*<77ea#8I}hd8e-Ag6^3Rd9UROH
zxvdS}&+O9Kl~#sL%xTp*jWE58OI10*2S>ai$K!6H5)+mk5UCAR35FaLKS1kL^vLBg
z#I*%6F!VZ|?|YIcpb7a64E&v(7|%15&?yaxm!W3wVxfZVL>v>1(-5+KjHvdWU8PWUYWuAOR~!HCG*x}$TOxCX^st_Vw;IDtmk?H{b$h1CgWh`)T{ck&kp0{w~6}%8mvO5-F_vEhP
zj|ZVfk;0(n8z$LPPo!V>7tl?|CW=PZEYMV|_`8}e2H)Zqu^OJ~vlz6)-+aB^`Arxc
zv8KUJLTcrWqV6>ueK6B%wZ`H%BiGSn&GKC=<{!!jDR*~Et&_T@oBIl5EJwL3LZqi{
zV%E8cm>tyy94yEF_SiYe{WKF2%v1z@SF#ymu1Yxm;C*&RzAZFQiJ@Qkkd!IwJ9s`e
z@a(dF&AV$CMT=!EE-kE`WBb&R?O4Ew?@b$(Z|@-1_TU)N<FCn*C*|K4(Wn^R&x#G@_B4bu>K`gLkx(PixX;{LZN=IKC1pPJSXbm9WYxMdKWd=d7geeQ+z1~C
zrCVN;F&@y2rk4z<5d$?(Z5*;ALo&eZRH_!9p|}Ts-TZE!=TcDTsjU0|TJXgEL-FSx
zIAdzSv5`{48GSJLYB1I%)}P8n
zAAQeA3~Z}+aCXL_H^O>F-8IVk+`D#*Uzm%2PTWW#iZTugxP;h`?Y_TzAGfgVH&N43Uu*#*kRgbp-1-FS^-T
zeF6&awLH)_41H3>tsU_{+H^#S3lHu_|60&4o&WnD$$S5xw1$u8FAT}HkIQ0lu*}qT
z)nRz&p+OraXa#h&h0FXoR&35}qzp?g`bY*%zJU^p2dpRSWqacmZi^6$SeK)5ysHl2
zQ(;KA8e-RKRv@aLr6G9T3fMWD8JTrneDx1SvOu|{D|jEKzGp`-egt3{79*tz`T>$)<>?%{-WcH#nZ<
z4NN3v<6EqV(2HZ3RP14b*dac?L=;i_xOlOF*c}_YuY>(5ZaXF!5J8Vbx8*2{ZAcWj<7goslz&^5RpjVJ<)_E3>LP?9HFMYVpI<*+X9ARLI-Ty7
zUNNMz?qX*@fLhiDztk(N1nCP3Ar7sh-R-XY@c5JP((b>1b7KI`_C1Y_6zXXfV#;i=
zCC2?8=|Z9eZ9Pggk&)mcgrSZ;qIYwo7Ah+ud@Fq1!)9x0u=H0pdc1Uhb71l8IjEsi
zOeeO;!SVGw3tHPrm0X%iPUxlG!DAqQgj{yhC(E7N>xk`9ZtIjLa6bC8xWtXVpqpw+
zRb`Hok`uS0GV#Y!G9h2qA#%30-`&xhp%$)gN!)oQ#VqAita}T>G5SV$@!xqR?5mA}
zuQk|yYeY8S({ejI9{JfcF?($*C9CaBXlK!B
zO-RAroohaL)EI>5a-r+j87U)nO!vk~DZ{8a^*dO7&(_d^C5XlE_kezcEMKuIF|`s8
zZ7A{Ed@qY
zi9dT+H-`uAO}pdkmeJ<)
zE=BgWCl2<;KGAfg!4Bf+A*5x@#@o|cOza;DT$B&gaYtdW1fNYYh%R?hH8WO_OV66s
z@qv!$>b(8?2oUw#wWax=2t@Qiu_}Qo!!$}Ivzp1pl8<3NNEoX5fI#8cP>?N8H
zt8MG_C@1bRGRipQ-x^dW&;qxT73i!H6}na?31TVMq0q)BXtM*OJmg1zbm2|KVXpgE
zzYNEf{fW0)QI%v8*1#!oKTyqYqZO7Zc`Re$isF24)kua-%5k*kM1sy>Nr_ROnmpqA
z2R!;j;oR(;qnh&ssZHm-edsgeEy(V;;|evW8p34;I{KCh5KP0@JUSTW#hfHn^=4{1
z1YTA>hKT`eXWYEx3Mxtlu_Yx79*$;;pX?)UfU27Qpf~PZ+`+=l@&cYbZ3q%%{eFXxM<5(OEH{$4b)Q!15*2tz%}MUG?5SUf<&
zZ;3)3^!o>1bGcS367~O;-5V}*?odG7bD?Qi93UjRsR-i7UBB;PFS}7c5VI4@;&DY3
z2Sm@9j##RxQP=MV8zo)e%6E#zP+2NN*fa_c|N
zBg?DC4eSK86{VaRB9F_B{eC|%zP7fNs5A|~rl0R)cew60NF@?KARqgHA3y6E-+z@Vi
ze!qYQy^_2PW==eU_{hIa*%tv694ronl7`4Ex^?JeuC=q-S31R3TsB{5>of^o^7?JX
zkK5xo1L~)dmySUwH|!l(lv`}UAvzuK7KQ3Dazz40d+j11E%sJR6l>VM
z_)V>E`KQMIZvlcnZ%Q<_V1+WgC2tMTr>V;DMN6Ld7pKl@mQ$CF@>-2rPCP?IkEv@W
zF&b^;>SdBt@M)a1@JJf{c7cY+7(z)B10-F9POX|9BXM6#(Dy@TcNLds^jiJ2;`vP8
z(1Z(;K1nFvdNaDX;hMVi{%Z8QXY)dH@Dg#E6xv@;uBz(4!gCq-W=P(c-y<^x(
z`g~GRl1FWLQr=u}j=jX9;OGktMyRu=eVdn5013ipOui_X
zOhx7KwD4Ldy7PJX_cPOw-SI&nCZ1j{BW7axi0;y;Mp77jR0jenVyoCJtBHrEG`~u3
zE_(YE`FEh9ZQae)e)-2|{_xUNhIs$*RBfECL~*5Os0ZD5lEGjaSgNLAYC*xS-*ww)
z(2wQZuRiiv3nwo0GppBr@fpH#s40WhQw)MfiaX@rapkkZ@L08HFH>@r+UF_|vU5;`yKLIWI1qBDQzT@ukQ9BVFT-V+g
zbJl|(%0*v?!%C#4BtL-KagonQsb_nR`^FQ<`n%J$MMViI{M9}M8-G{P)aykW^jfLP
z*Re{nHF)VxS-#Q6N|(gax|FC;%7&AZrNWF3HUI8I=73n~3Z;$&LM
za_wLz%No`Cp%bPCU3NUdug%rnmBhHU1lWi9~>B1zNGb;ud{
z?Jv0TG>hWk$LU6L7dAu6^?@3FK=GB0VDz9_(
z=_yTFJuUFi;@@ua;o$#=uD5<_>kYepp|}?<9^9Qkad!*u?gV#-LR(yeLvau8ZpE#*
zTZ?;(wm{(f<~j5HaNe17{sJb<-uu3;b+7eVta>z6wRQYd%WPQT=+rLoLpplq$tSecHET_Wwgaz0qt^QKav|-h7%W;k{(82D
z5e2xF8QZ+E$Iv>LQv?x%-`y?Ca>wG>G18ALtz>H3hN@F|+QEX6u}mgUtO!dsc&fCq
z#=d6&SB309Bi!@wjuP>z(qmBO>iVfv9-}=?h_l}8OmguSZ>8C9(SzuP$^va(u%oY8
z@&5W`G`^PGtRq$%`F{NO!q|Tpk9FkS+HQDsS7C5Vvl5;!Vut$!#O1Vgbw1RfxU0ug
ziScLJs;dOYvViI8Q<`TrS>j~15GaXT#H^*p_Novc&~7fpnc3ai=Y9=^;B@{Z>jZQx
z-JU6JbJ*(Jx6{dvMZz}>H0`sS7vt`d)G^2TWmJ#2g*ITaIvs$1RP))2vpi0u#V7*4
zdsjqf9Wa^4&L8q4>FjsL}89)Vj7k}
zF3G>k_igm$D~I}aZUKmGJ~85&*WLZ|)|ObfJ&*roq(qKmnj
zQ^G;WBWGPFU0-70Rppe#Ja$H6i}1ealuVS}Slw`S;OuD|=J2`(?$#$#wM*Ys
zos>F|=q;3quWhRyOm-`
    #{MLIRbm&(41rT1?90n5)6k7@F?kSppnZBKMR3js>Jyxcr4c3A
zEFaPo6&|DAZ*l4Sp;_=}kXqP5G(F5fKs{xmTw7ZzWpP@}`eUVWEKYCp^7t8-o-F?8
zYu%PVGw@v#J>p}+jd5V$0ra}ZhuxX7QLq|eq5^NmH^5@*Z&Q20{dwrs(g3ZKdKiV(
z{7`?;uO{7nwSK-1ZarcN)elC7Q%iaZtlyAua#`u0TU|PME4x0@vYc4}
z1P^2A$sH;(bJ=`8m5im*{+*=g-J)3UK5-%RO@ERK=O#Y+8|Cg0}kfrPKYf{7Ea
zgTJ!l3@Mt6s3S`FK2%EgErHu(AqG;)2T9cV7$(dB#kf&B@(SB>C{M=Nit>I{L2hw8
zDT4z<=4Mf$R+cVOnEApP-%V%N!gPzuE*0dJgdF%2mwByRRJHDlSIqq>b1YB*Hivk&
zc;eu@ySw9)p?Ulf-(_ZVF%u(-|B5+IO6KhDoWF=UoddJ_pdd7B*Swb>lU^RgWBOjP
z5~d$ycCVk85=eeztP^J$DLD%#pTP_N!0Pyhv#UPxw{QKH&TRxbxocJOUe0?GygV!BkTQ&a#${B^}gB
zD`%{C(OC${x6Qz#6p9oaH}v59!RO^#@b#MEiI&aNBlO5I?F%W`pohM86vTk-BX}Wq6a3udnhIeXa*iD@UkoU52&j!mtWsat96nfQn
zQUH+KmJ-vmE&sdJ8!Hv@kmRagcSL8lTcHp2T@aC)%1nA@ZJuI)yD|`oA{2
za0ZMN1vT2EYM;XPMZjvkdW8Q}gFgKs!^Y4ezK2LeJ;H+d+w;vZ*)&57&l}*JwN*%Q
zPIUCqx8z5WpqjBI%>zjDmuVa-U1uXIPF-}c*0MzBK|#)}X!c~^k2Lqu*VD+k@)(-H
zCm*kySqFSOVio-Yo6FldX+Il!m_~q7?50o&FKv%1;}FNbE4{9^X;@|x((_9gqaEkB
zkpB=S&m}@p>tPfXxJ@02@DrWoRUlHb
zuUFUm$T2?@3Cn&(&*%V8joS7~M7J_lsQ3#2ycdfi?S;O_&TQ)HOd3!vv6S9K$^xGG
zE=7B5eOeINtF5Qa<>=@)&sh2l8NOwQHA#1a-lWrV9{_d%uwLBhZ2tHB26^2;3Z$Sx
z8YocUQyB{}iqw^-(Vl52;U&tnlpa`oo9+-WiAQ5uvE~bDdJC7RbKw1Srj3Opn{07=
zKh$@@ez}qxq
z2IL+RA&Sqv&-xFj=Z=D7cjLB%D+a0>#$>db=ADVcr@DN@gS8~S&a5m!0t
zxV7XrPtQKG4*a83BX0bUK12rvxnhax$S%+;9Zoh>Un#8F7v36P%nlSq2CSFRgkj~C
zxbU<(WAzF%t$uuod=NQ&jd$KYCxq)Fb_uq!yjq{^H8CweN3S)MQ;_4L5
zt??8Xv`GrcJPFE^ADZY>ul$!@&2yxFBSDRJ-p=Dp+z|i4-pp|SeM8;br3zQp`OB+$
zEfO^TUg=LDikW~;edn<*`Ee{~El*EP7`ns+7fC>Uc7!3E#?Y{_kf046G!0xFu!1*#
z*p1v@8J`@*Q!w~8mE?fIS`q46iiZKkpO^S&bTSgSN+e2m>-}kH7k@@du8fz>b)aN}
zNTIw3|06(6mkVB0K{rYN9omEK>eZbnlXONg-?p)l-s_bwst;7IZBht6cgaLR3(x1C
zo&|y@IZ7-DZ#>{G>9QRzQ7?lQ?ITZtGSR^d)P*NYK12agj1qrKBaL$Q;A9831qISk
zrZf#|3yC(0AwNgByCINTvZGXMiAvrgZ(@EjrED!Ww_fO$=W8OL-n~^ic5n+&YmCtj
zx!2DNXJ9buFU|@*S8AI>h2$52d9`o5GBVe>DCuJQHNfe<@?@!D(k!)=0Ia6RD7OAM
zqN%Q@#uRBBG|A=+%^<{$)NIxt1|*vo0i&4Df`hf1cBd;xAjX;Qbm&C@E~-
z-k&H{b<&a!4N4N(JGv&^-sJ-7zDHP5eiS9!t=`W^shYaeY(%}9>`$u|BmV3f`igaW0kc*+u}*#YKTg9313t$sj;v=
zgCb`0KizyQ{lQl*;YU?xXKyf;Qr{;}zJ)^b%!d
z6$NDQ2g4aRw3V;DejQ86jvp~v*@NzzkvS02kYIf#bECVP(~F0d>xM?gQCUbSV3$md
zlc9t%~K1mHDHO
z*)u;IX*9L4C78s#_sNwO&e`}3pXi{GCGEb8OA{@$UcX;UttKUgO4f8HwZUM#a$MGh
z*U|kmwwm=&?_8a^PcM?gOVNHlV@QX%8(CiS`(^c)nEW8qw0U%!g6>%Bgh?HcRD#Wl
zToIX?S0PSPvA4TzHO1BSe1b^`EV^*(MTD`lxy{65-%MK=QNTt*)nZ>l@BZPuq^Gdl
z-+XxL01D+<3Aafn_U#l)^ijEQ&U75rqtHk?VuYr2M8qKGtKbIxVEjnE2eQZ$vSwso&=y5mD2
zX4growvf$|mzyEtReWAd9c^%IBAu3YD8hb_AG-Oze4J#$pYy?+9f36}ofV?I)rP7w
z{~*1x_mf@z`fQ=o2I;A`xoo*-R)J}R5#?1i6&X%WtP6*RX}XEt*Jyiv+g3BOS?$5u
z+A`hgjWvx=v_$|Xffqb&`<+Sr`jwZ(H#ECCbV|gR@Cn`po4uEM*QM6mjkofxVEP6g
zP5nikYYy|hq&(-fV>Xu0>I%v4Q;(s=Wm&pW+)S~yzuqz*`{%xWWQG4~bJ%|f^)q3l
z4>%Hfj7j32=Gk4Fg4x9G9QtZW2%peqa`gvj=O0=nvnA#?2Pg*?VELl${I7Wlk!lha
z&CZYg0Or0N21!rpjLNB_qoCY6%WS4dp)VL3x;XkI7_$>5U&nb=yNvg~Y}s1s^BppZ
zjinP&7u_^y6AuWv+}zHX*sa7k7nPAfLncQF*A=SxaK|7Jp6~)4AP~h~7vGtQ77QM4=oV>#6Adxt9O>k72o<36Go^Y_MdFuuUkkZ&Jg440Jek=
zR|Oi|dz)vgL^tCBf!u1MPD*P7;L4pDs}udm0Z9XAE<`(2Ik7xXN)v-m=-s8%qXqR3
zfA$x4EKB5B?U6UqA!6X0R8Z=YX#1tBtC?AHB>!7ZOIc`v!{up>U*=
zk!hZGi3$=B8FI&_*4E{JuwdQy2rs#DDsu4MQB@d_9Ee0@&9cbjQIapyES#|^d+fZ3
z_5XUYd<5?$B*|YYnY+Ar;?i1pTf5Y3x!>oKdTn6t{krdpwYFTC`lmFKCY6Ahn?@#C
z7R<5h#@M#Sb^P^yvLa$2Y9Rjh%x?>GF4&!-zMMI_VfyZL+qEyR^KYoDogZdFWQod+
zeix+^Jjfpn_*@YOuB|!zi!5Jr^Mr8pa`$w($NO
z65?U{lEnO@&labB4j$^dH7WYYp-h9A>sb?sz{5T~m2vv%@uQ)`X)sAUd0!hY?q_BL
z=qH_3nPne)r(3?;q{#NS=HhEB0LfEX2~rA~=aj_)4~vTufiJvzN?yVByldQx6wITx>yHx@;71
zp{N1KCNJN#4*S}$vMB4n%8;F#qF@J_eK^=kY`z0_BdWRrDMR{w_k%z$7hui3YVJd{
ze`4LSdL8ZgWSQ{-+bs+sQOVBM!RXr3zaY%m#
z@RiPq!P~v+vHKv?g;|qDuixTWfQlhLq&sFU=IK9#!erU7or;Z|Y@5&SeuI@&_PGBz
zj)X=`lr-n?_NI`Xy`*R|;n1UN>RlsKLIx}3y%E$X*x6<{@4`xhpehxKlu8iwuP1~5
zq3heXbM2R^Ys;FXRHoO&(p44ILu#vE8=1Zy#}1T#YC?Ms#xnB~{AKGqvKbXnb@v8|
zWPe;Lo#;w-?ICAu*W4{ig(c$s3sSrm)35+`j%)+(*V!=nX(9{M)WzSi+Pzy`mWpDF
zx#TF{=G)sa>)Ye9a%rcbq2wLk^bAQseV|+o?~YXYz8g
zR>quPoYk(8Db=rI7s;tD`O9GP>h5UYeeBF^{Q^c(YcxN2N}#U)?3$fO&|H{i@Z?EF
z=bi5>t;kal*SciKdh`NS=@tyi9)jlvaY$)%Nu(=JeNFd14<+sOU;mIaaP@1aizb3y
zTr3%o_%&qomi6n+23ffFHtT81N^XO&J=9v;Zio!!hy@WeBCcl+RexNvM`*LT~FMAR_-8Z=QIQtn+cYINo7=E*vPy93`z+_zzRW{5?6{@SXEH;?E
zu7oLf3+~S$+fe9vUzrz-TgE#TVSC&-!Ml
zKz&ZUjIgitYy4@gG#_${B|f^d9hKr#TrRP+`opB9JjkFd~(>LayE7
zsxjSZtzO4wvLLpZvinvh40Uq@&V*t^)?+@Jin3fS`{!@61iyom?wD3Q2|0+ZSv7W7
zF`Z#7v(?e>1_K|sM+21(6xzJ8##YjGRQgbH!K#{7GzRoEx(~9iOKsIX{QVz0EZzHZ
zzFzbdcmB+xj~P12Ohe?dlx9&nYijj@ze8;}RGE5))&U3B?SBO>1u5E+Mjad+I(yeN
z{aQaYEm{1kV?irs$~YI_wlZOF@eL)BsJsM6&9Lk+>@MlzVw}(JMN@!qKL^qxD969e}afy02LPd_bEGNTv%C+VW@R%;p?q
z+D)gQK2$7zsKCn?ahUkY+jUu|r@>Zl$`Mrptw^eugIL@hOxy>mkjkD$DH}pTq#_b!
z?*sI?PTI_@CCTX!SXgi+33%_Q9Rr>;AI@B@Aby=&_LiSk3#@y={rPl!h7O;vX(#EW
z(@JnCQwhi%2s<;FRWhvGQiwHetj;VdA0F+Ty&$I$RMeeLYP4f?Ner|Y;nVJavC@na
zIf~U2Oaq6oZue1xS)w{w;ndT0ZMJ`5Oh|!v<^@~+
z7xC^l!Pzip_rekQz6{_#SxCLODqYLKH^`}hS1a98gjsZs55{UShT2iaa|wdkAmoPT
zfrla`mi67_BQ;ox!4Jn56vngf9?L3Y2eDbeLinKDzXGr1Wfj8y44_{5eF+s{VDJ!26mbK@M9^v?rLylx(A&8S*cuDc1
zz*}ga0L+{v*1?YEF9Q2f3dX2JNYF!9D)7fTdr^
zo0(f62`B@Sd*vR)wBg{%xMT>tr*r?eRBN(c&((N}A3cU4PD%WR{FSPv4IAoU-n_V#_-&V@~pweDZqEzBj6{%vpq!GznS#8g!
zv#dZcbQS^H_B=zrdw8t$HiVF_=}T8N+yUIxCvC}pm1AOx92d4yN2;H-u{C8Z9a%#8
z;x-N|!NQ;_F+Mv
z^_?wk>tlf;%4dO$N+YTav1Lx|_wJMK4b5h&BeD!$XwWp!|KJ?lRUXHE{rS1ixdA#F
z#HT+N_6-1Q0kt#dk7PtRn}OU*Xh6p=#SKD_b}FrQ6bS&Gi`Du*Qyvw3TrzPnmJ#pr9-N9y68x;#aS
zUL3=@Ut%Jn>%R&7-fz>e53Wta`Zz=zFkcEC+fSn^qM)T8cnX3-zWiA_bf(YMOTMZ~
zdz`t|QphC#WUt4xw}Sh_KGKsiR$ih&_u(bXOtRNh1{#lzuIs@JIIo;5`4zt{ylMK#
z7WtW$gYe*}xUObgX%~-QE6_p)Kz&f4p!hmKw&lKrWe_`aNiG@v3`gn(6_l-vL
zQyEEdJ*e_2sIe|>M?lX=O|7DYgVRr<0-ddC<=AB~
z=SJ_!9vWw<G!(n%M
zB|r0=`4hKWwL@QhNid+xqh?920;JEQDB@Z>lZg=73rhoKy79BiLpMx1ULGAr7U`eT
z52rC#3d$%mYI1ta$LMg8+M!gnsW=OL#U#wzKwec3a6`(D*|4pS%^|QXqa){xUG*z2
zN$DWjwqrFyX2z7KPGb1(^n6#>>KBxl2>B#=VrMDOY)h
zo{=w6cX`aQ#L^*Sa+#5S?LlJ5yRT4{6WM@1Jtt=I(qp{$yR$&YJTF~&p#NfUEH0CfllL%^k(tf@|S->>gdW!7hi|=;F@jm}AF$Z-Js#YTK
zZv1G`iCp>GAxUX2>T2WwREqcK02-0zu7B(&7YJ5zynPv_$Zx2f{T2}9FzGt=nxE8mi+OBXYiUcTqu`emo
z&!PTeL&e-qCC@1@9=4lVuEtJrkBP;OPOEz_-2Z_Lb)T6t25>$;2V+xCt9SDRJk`!H0y9U(*CvYYN937%kqLp+be&&wOuyeRDE2sD)1Ovl*GuLBOG6oMCz5
zrm$5mE3s{qqpfy*0uuc@bY%Q%vs0wCu>Wms>Vw;Cs?#M;3g3!uC0`n<;R%zq{}xu0
z?d;BZDUQ8SLRvA>)pp5?=)XjDv1_}dN;Edo=z#RdgTCgNazVJSst*W;Ib0C6%N#0c
zy(ybIfiw?Ie--{74-SW5mX}PA=DK8%dF?4qCv
z$IJVfd~isAP2%>>HR^cUwTWjEW#kq`^Vd6F9ZVc}KOp5_U5Bc$+w<>_2Wl7$41_AV
z4JQ`-7TjDZqIXnWOdR57$Zg&SX7&{&P#*}Sq5>u9V;Kjjl25WknPs?oD+R#eMSfcw
zW8ZOwtFv)bC}n*Vmml^l>+eo!&3qH=sDMbdYbq~cpHFk{5y*BL`vN{YE0I|!Rl4J-
zo0*|(>TcyyzYHI~xC-%aRCpGXUsVsA<33r!v0?uVKQW09;Ga9LZ#=@_T6KA`zz=oc
zj}VsglI&_86;gDz)(I>zcMTQZqqdSa@wPyBs?GB++;NETGVH=MhdXieb#)|!k$(Zq
zM|THj3n^0v9s$n^H3b!j$#9fWX1XrJ3Nd+Uchn6(om{Q7WuT-K=Ou-!`2AvS7~;(*
zx-u=rt5X9{UmGHt&zg=(sBKRMFv*sRIF5q7x~ftYR->}?z;nY)$Fu5@(n&35!TIVi
ziP}}9w5y;EH*a8*ANFE@_N1hPJjCsBp=5&K^W5?YLTDc;=Slxfk44?#R(3adiev0%
z=$nQpz<@Neg{tiWd{8rcolwiPsH5*@L~F=WN<)ark6-pqKBRiuwOyI>b@)7g5Q*AU
zd9J$hPz3Gw*4!G(R}>;!IJ7j(j2N#HY5kyR{QnYJam~m~hy~nWQA(Q%SxyV9jER}+
zGdrRawTkoID~Xcv$#xVE9jmS%RyV7w(c!HFx_h8b<5`t6OQ)4)7-(Jm^X9T>589HM
zbB|Zgaf|cuwzLd{A9fv>)Qk0+4v}+*a}QNv|mSNsp%@(li#mA0F|!fez55a
zA|_QJDvG7e2BRL$G~FJRpIgY&vU5a`A!Zn8N||((QnK-wtQ9G|I{A9Hw7(L>te{z9
zQ##d=HGNun{bU2Rn08aEziX)8?m8c`fXpbdT~OgWozdrwQYz%80p1%MlLzT0C^VMT
zf6A1oNlU|wC$DuZqKiWii`GICRZ{J$p_X)4FF?mwwuReldIQTPM
z8vc>_e<8t;vCjaw?$)9ZOkGpa$6q%qlf~E25Sf;7);Z6Ik+HHs>
zAX9Q^X*$%aBvN)UC@=gceXc%q-E&f-xn*HUzN;CSCQC>WPzeP#Fv@=IS_PWEab8D*
z8{yGF5{nJcu}H^ntbxBbuLCD%{_Qsu{JtmW?A?Ftt1l`?#Ptt1bBZbJQ^$dx>Uz?t
znO4*qvozt-w+e2CDDHOtF9fPc=*nDOno`1ms9whahw{g~8ivvls)~pzrSUo;n_|HR
z+ru-Ki3z#;MV&!57VweDxS1M<6$HbEgIsSP{=6%8vIn$M`2JgLZO=ZpkP0Vwg@*Lu
zX@~83tm!|jJm1U%o*tsN-l$Vd;@y5@x8c|asj!l$;2}?10QEdEKiMm(gVIrS1E^A(
zoH-N6+cNo#2F{{st5aAM|L3Ao_1MX+1foO5s6u}7n0!ZFpZAk{GU3Ph>5st;VVt$B
zx$AyN_1F6#@V&_tX3C4*-(cQLw#ID{{Zt#
z#!A|vEc4d)egS>?L`}LX%@~fV$lbrr;`MuW9QyO9uFOck0O$W9#Ea|rChh-n$lRA<
zzZg$`9+(iRqq_Q188R_`46dkAS!Ze}HT@Pu13$ce3Gnv1%zcOh>dE_xNFT2~inn)n
zwYRi6t8iG!t2`|u<=#{apGz{)i#3`b8Mihd1caHrOZhdws?Qz6qV9|rDK#e?vyp>b
z98v|M&ckyc*qvz_ua2M&7;KpF5GTlvoTmH46Yg$W-Q=xS5M&&4_HBj^Lo=~1`N(Do
zDsvc*3ru@@-0rE>B&2LS2UZoo7G@d50q~b=v_)?2PUW}6MY}rsLd`|d6#s6B1Svzo
zZ~Iid+M%^!My;!azd~8K);|1<@Dfko_73gewlQg2A_M#7dOnc7nTn08qHZtp3k-Ni
zoPZ94WRKbf{P;wmD@D+mC9NjoZv_%b6{QrEaXx1mGfXOeXfFh8og{)ykDg95Bp(x+
z;#*^5zjtAdANQ-_RRP7B3nm8%(Wea(`DO3!&-l{Yh>uvROX-Xz^on%@54{5Kp@~YH
zfe03_(QSJc?zq)dNg0y(gJ)5#1;xOHK6dj;Jy*(hI>yW(>_kk`-o{A-qI7TK_EJWQ
zQjAPN%1Ci$Sm?sXJdCnhgM}RDd^CfX^`GHlu;=-X0&2`@kZIWP_@m9yB8iyJ+I!o;
zN*(&|>1{Ypr3UxojKEWDH`TmT5yc0}LVNd+1zuK?G?gq$yk}cs*u@jvo7da|{Gl3T
zJ}pi@A=_|n!|A*i!vYtoaJJb>kAm`~MfWsR!SJ&Ud33Zoc~
zJZR(1*yHRsZ`W;4KTGv(o_%(%ZMLrM>1ipXo1Z^x>8}#!zKQvw`I_M03#!z*jNMHq
zLjsmcO^X?i>ZhxLwd3Wy$$EsHflb6#X42*dT5OqCWZFv5+9<)ZN-xW*gxum7)3uDJI-o#
zd5v)TV+m8mN|jzyRb`??WgG}FDF&KO^6DWqBbp7sr*
zI4jkg7b0*}oE8#z5I&t+`%Z(wR9j}L69dU5r8MGur
ze_p9S6FDrbV0NLN>%g`%20`pRJWG}HIxGh!tlty}06j{s3|HjuecQ@QefuLaf5=A=
zYx`YmNlZ&;g}z2-#X1%HGOZZ7Ia%4+)5hJo4zkZEkD>R_kTn;r)FGFk#1y56(uW6V
zIa#CbDavB(B>~adL+zN#539=Yb#*zYtJT#>txNRm9t@vj2B;UVE3{nnl#xA($FI)Y
z!FMxQcFE+P;@p1|E)pPcXz`2ztscE6tqJp|>=!#u~!lI1eJzbEZ(Fi;}JK*o;05CNScSWzYu8+$RTg
za=x3&zNf;<;}3#^5ynCxi;HUtDcS724_v8J%S%Z6)#a(9yEG#;RnIpMXq$%Y2a{E~
zYjEqeHN|~rtN`BfyXceC9ag`3wrEGY(~h{MWj)tTXy@=GsBWOAO`D>z0I6X%iF-6L
z>hlBgJDuyG!&=p`!j96!ZbN!+50HPubMJo$!wb>dWKi&67uk)ja0re{45}(X%{&fG
zSI;RspAX?{bgCf*;T-DQ6eq3Y5aNUzkXfAE)Kpru<*UNithILq;aS#Bp76BVlO1i(Jy(ED!bXl>HAt!yU^ytkRKL>D1A2Z^x#Xu+iHlHh
zq?t_w71h-m?a!Zll!0)ZmJWD~78S7F#In$Y(glCxrw$u=wbu0|C9*iD)Wjt4
z4n^2Qqi?x|m-SGhly@7LuGz)BsI)nbe-BE^q5h=Ccz&_K-J!a-B_=|eE8|yNP1IZ#
zHw28??*Klw+d9P*$GKE2mQ^I4m+>xzjv}VWeT{D}Ta>TAjK65=i|Kkq->tRUw6iXY
z0_Tf4Ux475ut1w&#;H;jg@{B`)-#I-gK}=q5dA%IVPXaOGd`kw2#qmxJHRiFPSgQuBVwb$n^viL10H6hYhS(DM!I!`_xP6vN}{H$JQG^cbF3qS*g@!q^UF?f=o+
zivDNKrrF0ucT8WP0E0lD!z!0>eC-q+Ubc4I-QHn4G|UPI8Sn^S42KbY3(AFFKzAp!}J0|lglA8=y4;rP0&rVLWu{-r1mz?~`~=c#{?thJ&EdpZ@m
zAtT%~k)=*K;MbeC=~0PFeK#uK3Ei+9akq^?NFsN6K~y!L9^Z{Q61?r`T{+}(X+N&Z
zr6|+PLO2V!u)vjKo3s$1@8>^``lkDku)WZ%+Oj7C)1r)eV-%yfYH8R3<^49$7`W&d*G*}JLMjOC|kZ3BvGvqM{MYRFKeZYH#BNw|Gp
z-f~CoW}cE+BddCC@;kFS`26;r8ca
zqH_lj8WQub-_lbu6R%LdMYPRd1I@*w+^(@ku+cauZ#qb9N(
zRZ$(Q1zavobG^Jo-QThpeeAQ-H!q|Bwr)5ckBlp(j_FdURC5VpKuH&M6*eJ7kcNo?
zWGr{nO3q$RiS-|MK_tNO26Ejn+QG$=Xy{eXv)aDsU=3ix;fhiyC@@(95}2RU0Uk+T
zvN{LbTf2?r(^>DY`SR}cm!7>*4|%HgZ7KiC@JXA0w>KAYs&v+&PG&i!`Lv98G+vfr
zp?!35kVL7XJ1&=HWDWMO%BFu`OAF6Bj!>|4EZ@0Xn{~RuOP$&$*~d+=L!wd(kJ08z
zg4-Koov8K;Pm?5D4`AYKp8w2Jm*DezFABv+CbFyz`KBS`YkYrsX^5fK~7OI#wr$tm-cotM!}
zewYKVkwBOZvks$~tLgQR+i7|NeAP@=WDMI_H1s%x$Iu0kruhFp*unoxe4cMv5}k9t
zOx)oNyB$-{*vi2qb@bA0y_sd7#ug@5`CFFHS{7G(aI36lS@oxoC9zNJMK#oI&Cg$O
zk~MJ$9h<+b0JXqJxDvEE)BgAU%w)A*1pRW5Z>#_9_*0%iQ%^LZ#bU5=!-wUKUfrjH
z*{#lR_2xAW%U4SKDb{RxWT`Lb&!+ucp+2nwy!Z^R0d_JN%-F9#k653a!7V+nczcbr
zP%;Gia~otb0+*H4JO;|@i3ut-*Z|kwY}Edk)c)iFz4+L!&Yy0NTLd1|qyZlEb>?n{
ze`|N)Wzdh~rnbBS-l{HKF8;Ocq67Vgg`P?Jcf
zvJ`gh39aLkZ}+<%1%2Jl3u-&{3V3>zHpKCH
zNKgAj&_R}3$u7VtV=i3mG59Jq<>QkVhS${@DLZ!X%aPFSooZk+hIlmx1*B6pS($1m5&>+@=;rJ4YMv{gv?G_^M~t
z*25+ywhZJyvfFkTYAvaO8lLgwoNgq#(Q~T&1+l4;X(O_Yrw-$Jc8J`bn{7^=7t`99
z$tHOH!Imt6QA{(#udlNF{Udd?RYjfvV+G(a=Mf*LGr=((KTEHd5BzOTX9v|~wWDha
z3`%n9#ih_pAd-HSUPz445lVmm&GDv_;MOZ2q=o*>>QowDZL*1{{aTwkq4gD~wMGS&
z7Xc6H17sAEKFjcw`Y`Tj{#Wk_Na}
zC^qPzj4csgr9(DXlH|pPxru3>-ok94lW$fQNPi_3c5<-$*>PJ9*UiB&Q;+>-p>vo1
z-D(LVyD_Mu7y-GUtgC%J4gfI0mL@1GoFK6HPHSV0Hv^pu^lZZK6
zRhgaRgcyFsNpeG%c$chiL|o~=7+gg79G7rVRJC`>fY6M>91FNSsr^S?za5}5Wtymf
z+uY}PM2vRLdX%c9(7Bk}9r^hWTB|{CX}_5?hYAVbeuiE#ARpc(UcBemxlN#omqW$Q
z|MIzot`d$hXRB%7Wot!0Ect$5UutB-he0BIPLK~}YFTeSXZ+N3uPfsZjd?8-8wG*%5v5o=8y4DvY|;FB$a?(l?X8^3Mdle^Y+_44F>xyEF}
z%#E9)($wV7G9366?LTZ!~jMp?$4c+J0BhJxQrBK%ffr%{A$`Wq-f{B;)9*Xe#Q`-b<&M~D_k
z)X|vX1BvfekHCE+ok?MZCQD-V*vIJLp3TR^=3}`2p=Uyxr9ylB7L4#T}0}_I?GcZYd+Po=MJ=@jHrz58;Ro{hUCD9dF^>6zKbVLPH
zNwAP_0qgXlZ)oq(CX!DUf>jj8@l6QLbE|ZvmJj7HX9qL%NS$!qE#c3fXpyCANuwJta4USJ#?VZGTz)WfPM)Z2*GwyCyHV%uF8^WT;T9xWj^P8
ziIc2cdW{~S$eo%(tvY3gkNIWhgf!N5ns@-o4%l0CRe*2{2b70dE)<>CzdzXP1o}S#xFisFnk1OEi(-%8crkt9HMYX3j*9
zwJ_1mBfWa7KYY=k`XyOOrTYn#1#gQJYl7_FvQR6MTaXnCR3hG;qU^jM=17s5NWUGN
zy3+|%Yg9yd;LvV$F(><;ms*v994y&n`CX=sm^vhU6;-
zCS`OwapJ=L7a2KIab!8(1s{`%7%a=&A
zK)xbDi$A;YC(?;$@$eVjqWzBiqWm&b4r^@2)`TK#>T+e1OX~>*IKiunO}r#)nsU&NSzs@?fkNi
zl4h1toU@3MV)I$IQW;OvPe$yndbExCxUn;^mXb%nN%W?OuIuZOd_m=QV5etmx0u?$6|&e>vzAtpM39p7}V(w!bVN?xTr0GA5!pUaWbLXIlJa3>4N<5Xu9
zi#NT$`xy6iz15|~Tv!1TR!8<~n(FR_QX6B5q|PRSJr!xD@Tpjs+VXxuY;iI@!|8k#
zuN@j-S5(!kjuBgXfg>d$JZLqPCTBp!$tqgkV|C14?SQ*1jG2QX
z$JnNd*<(1TPEYvK?Sk1~H318@WdQcCDc3`oH45warn#l4EfyDr1JjBN`voevElQ$9rJn=78Jg*%Obz
z-`8QI6&X=<8H{yFbT#6-xkSq&NM|d+(oX|A_tb-w%c+yfN5afh7=rSzf(c8*NCI#`
zL8iz+(&|=TbZ`5yti#gk&l^>IV1MhWri?{PVNd`jK6i!x)MS_sfl
zg?%wZ%m_8bI`#9(P3kHpoq;lBhLfztRO>dG2kMmQ@IE+;!c>zF9~vFOO#;Gkz4i}9
zlgpadYzn+{8f>Qw80sb}RM-j;zm}{?=E(ZG9=*YZx|=Yb`PAf=nb1<0IN7-8y+Ud~
zL>(+167z&V4qXh{wIJ-;;)CcY>q)2Nf;e%+8nyHnr;ZpCe@cLG7=4&karH3J;ys|j
z47}MfBBa*6;oRA$vr}%Fi}K9b#ZLhG$ImGt&-`7kmF@l&Q#HvRgI!dq{T{>ty|b*W
zRr|M%q-^vA0{bdc!g$47i)mwZzO(d
z^j4hMYMNt_bgZh652nKlqHo-ECjk+ab7M7va>Yggy~@J>M#Acp1<+}pke>K$FR%4e
z1QT-B+<&lGSvaUTT4PL}iYN+>b}($FSLOdetRlmE^hNoYiHZNZ=R(BA#A=g)Y`7L;CGgh@$f|PV@r=Nqvr7gDUW*ezN8ThUrJmz%QGj<-bMhpGMa4ytg%G
z|Gx$JuYK2lt_2o){()n-$iy+g=TzTZ_vEjI+>0C7Ohyl%XMfy=MmYNr@C}OT-l|HW
zn`TWB+lW!155<*o?E}aB26E4#pIv?rZVz(HRJl3_rzp#z1>^<`p~%B6Efu8ETqK-v
zV(E-&8MP9~R20?FsS3!`tKE|4`ssWf>i)CZ#r-l?4&^t9U&j_C@mF=1xIBJgl9u><
zr`N27-K6TKw2<+qaMW(2S92OM2F@e~p)SC)U_v*CnbpU|4fWof^x&-KgORjaD)pxw
zm?Y;rSZ7~FzoZ<(?LOHXTGBUZ#gmHi18WEgO!-;6*0YFF?p@hhK!!m~4snOz+=aG1
z=z`>Y-1aNZV^@`kqSI}1mJPQUl^be+Jy@2R$%G&DH52LRS1?byD1&Cbfg?`KR0s6@
zZ)=85-}))MVwfUwk*BQ?caBVohS+eJ*67)xoZn=cPD&XQoBK5NT5BxRr23qbE*WVM
zW_Aj7jo$|}?TnYJ2P}iM4aM!!-%2}>+_jS2q?+e%vzc9>RUKRn_H=KeTnRvRh@=Gx
zcj1BnQ^9_)X3UR%4*s0`Dw`y;rZtbmQQKl#@A)+dJa*B}Con7v86n>u?v}tMk79jY
z7nba9W{;;@ghF*R0Akb}d&~w4AOH05pI(24cRAoNzwTE(dz}g@*Y?e2DlZP@E2l20
zDyjI{%2ybNXQQ~sVR@+
zuKzqa|Kljl{Cqg;toqhba#voNn49Lr4IY>x0%I>v&cz0m7FQIzaZ1#dMhyMY#EkOd
zyc?YC)KDBnIMGa3ggIZ%5Gl&?GyWu)#+Lt?56HUSUKslW0cytcE77kKYJa-(__@
zsge#*B?0Vw0(xj(8X4OdgI?cE%s7%Wf&fLpZAyw!O5&PL`FGUe1vT0)@>WT^!+ulz
zw&~U$Az;o$rPa)quNWh=bvU(lEaM0=yM-B}IG^}1ozb5Wm+g7OmS8(_YZ-H
zt&jjWYM6<@{a|OkjR^JpmvIA5Q>(1~iDhYJ$vU2`SMr?kA%p=#x^a#?ViD|{5Q>R$
z!S_g*v3t-JHted|#}=7V14b>AO<0t&wt$g#hP6dv|sKk
zWTMD++$8?Exl?o=23_ANGe{bLF>iU3(a`{nZa+EM!5kWBCO|a#kXwN+T3Vlw#;Y-9
z;=jq+coQ}+!d9#w*#*TTkF8c_Mfs|9m!EGD^(#&gUh7xfwBP=E9~_`M94F?uIytPc
zs0v4}X0(d(mNn@{labj1LXzxwRgwW?cCiW)ke
z_8OosvG;jKRmDGWQPWE6%4S!tb0aBeB59>DnNmP8UKWW`j~{k!`VwuMqokXu^nq0b
zIOM_un21(N*IWW2{1Of0)LT2^10BK0B#3;%FAV~I?}<%_bZ(thXH=&jbTauPe}
z=5;IWxDM>Z-sqdg5uWjIS_0i8kd3;t@h^8#n0u&{i<~N%Xy4FEEnQ|xS6T@}$fXDK
z1%l&>y`SbDW8C_gqkbEjdb#x{N2R=1eSkPVpug$!SHOOzbkroNCFU}^IpW-UDJ$00sJtHy|L)&8uM5hHF9
zp}$BCJ|9?o>sQTsxu>;k^Q4Ll`H1ZN;S7Tv;ZJ4+@A>!bx(x{kGvAZ;*e)R^!=X45V=Dcvpg3V!uY^asEGc*ZxPCQKC$K>HvssVy
zK2Jfu)~Qv7=fgrUt<+;c@>5)xE$TrZTGP-uUS(xH^VhJ7cNTF`V8voBpt0Cel84wI
z9gt}>e7OTk$BFi1yl=Z2WP|eRm1?vq4skvpJAh?2+UidgU1M!Zu$War(ghor0j_c=
z!_49wOZ)FBoaiBl*;kJHj<)$97~Q{XKSV`FkcY4x?bdO~qd9M1tEo0~J=uoLXQo8H
zb7-i3XA2^~ym`do!1RNU^Q%}pFe;fRc$b$BD^@F%8^gk$!U8;W2QiqkE2?B7?^&LN
zex6N9PVgdYjqP#gDe2zQ`r&Z?}zPjopS7v{m&C
z%A(51T0>AtqPU8y52)Y;VEjy_9;+IK&O>998r!K#A=r>7knAH&@msBPTm(hWPgRyW
zWT;FB=fLS^?i)oe!`8|3!g?PzWf!`uk+rhBhEmBZ8rs_IShzn*Y&!Nl2JCE(Vo4!P
zs8f|A%JyM;Db+p;3f}?@OwX(#mDTXne5;F@Jq*zd)iW-Z8`*JY}+yJd3Ojz
zpK-NQaEs**FJuCC!3sKZYS<-!u?l>ogYME!rV@Kwm36-kyRdzIT%6DPKcD%JhmdML
z)XSnCqraa4pH9`qQ)>m9lfAm!Qp%=O;FD$ZGek3s%}Wi(OFUJZUjz47kTUWUBx8e!
z_+Ba=ZC^lZabpMNy{~2Q;w;fh_J6_
ze!WAIQ+N*qM!#}XZf#Z{g!PJkvBVCj?BThIgVLG12k`s@H>gqq?~9XFYr3YU7o;Nf
z6UUoc+e=#hRuW${K?)h3ykYa#=3w{(z;<09JUbR&L7mt5cXqPDR8}f|^#tq!`uzMQBCg91|ABL?YuNl_)733xA?r;5`nCH4b7U3HKn-@>;oWaj
z18hty>8d!)4-3j_3&xBG)Sz~!K}t#xNcXCi!%ofMD6Jh_5Ebv}SL8h;i&a6VJoB!Q
zG)}FEwTzp!#%y5ioidN8_Jcb*2IwaG2%+I6~v0FNOgI*V-jfVRRL!COVxm0co-rga_iE7YWM}IEb>Q6
zY2gymwbnn!{h)K1pVV#geB#8;^N$~YllU^n_d{!+Vw9peP~frTz9#X=Z*Yw&ciEGA
zBbWt`&G6H+1YipGHm0n;35Y@TN};YFj}sr{N;;Ac5hsGJ;jnQ=DXLvF5zeu%ETDW}O4@NO``Uzzd}grwm;zp5IH-&27$qb0Y-U?)v~*?!%VW
z>02-PL+7*7=-Zq=fB2zl=)pmQ_99elqlAu0*=SslCh8r-K(Os_!RvpbbH60T;8^iw
z#itx+$(~Q!kMr_n(B|O#$uv!FOVt{a&KlV|xRY=h!^E`Qo*=kOOu~D5ZUmHmqWF+E
zimj|m>{PVwhgyQ-^!D-X+NWHhI`_X>IsR|1(WTFv-u=!7Cwo|q5+{A^*lVW9PC!z&
zJjJyEigR>A7cD{FypYmH0{gP%IeU$1dr-8Gjgwt(lKkQE*}>dSm2Cavk>SdMRjWJL
ze+vUdF)H%8!la~G4*eLl^)|d^b$%U4>+A+g
zZwv`5`$-@_g-8Q*Z!NmAUi!SB_qu0~m=iYWdw?w(W8k#Fs@1N%M$4D^OEcPIQoyj2
zO5tG$)z9h?5rz|=YC*@*{=z&bkMB^Y1cnxW!_`c?1}Zw@)dY1hV?#%0(QZPV90l8O
z3L=z8W3>jo;lr9DjtlbkU%M*wDqWgHN?NKzyR8_yBym$i=Oz8VeaFD4xXF^f0Cx{H
zcGFgAK31N2<#SI=Z=~;Bnj>15Fln00sQS&!`1a^SI?mGZx1raTb=!{D^=Ayv(q=dr
zGG*iVhAK)#IpKt&D!5)ZV6r-MF-F|(L_$AAE4sYDY2{rkZRNZL!ruF>vTBV!cXdO>
z+~$BcvmR8B8q5yfa9O^Ln(-sqQUkz8`KTz#%4fnFx{ONtiYuptDk_yoEi5__%uR_n
z>4?Ok@e5YJ@W0P?uwDg|_BO>;Hz9WQKwrmT&qH=vt_SnH@bav@JFH6nkW3#Q3AXG^IA)SFd@$W3NKYy+6dMKWQfy;
zM#x8uZLAuwl>xIrI#VqS?fcg@A=<4o2EXT8c-c7cKX4@-Uq5$pWbW+b^2pjBracVd
zmO5iSkn9CAX!+_X^_;O&9^HIhA~eVXIpy)$()reCy32kG2v)-rOy7mpipcA%PqxWX
z9>?qjV3JTkp^tL~E*@%w%RYkKOKvCk$<17J^_Ob>XqowH^kwTJgy^olG|?J-?*pF$
z-S4w(*AXMwq#LZvZb;`I0soTGO$lRa@4%ho3QZ)4(8CT`ZXD|IdcYUK^e`-Ydlwa$
zxM-I>{={!Gx;E#Kd_vI-82UxcHA+%RD+26kt!z>(D%R}X1$tcly_LZ&t1l+r7HB;r
zIShXnb)z*d!(V#edU{}hVur2k%&v;V6Mz}~vEUb2_{8!en~?YCi`x^j`4V&BdoKt1L@RtjYAMu%V;T`#!6#Ja%*InpAsd
zURoZT5dKsm0G%Qd9#(Ys#K>*^7kO>|zpkF5g)1z`or1xvm{eAIQOTyJK>vXKWQk1T
zPXfkCtZIzKZ4{gIqY5OpJysb8vVMB&IztiNg+`g~Gfo{_Q8b)SwFOYY(-;s_+#O>d
zW5XSNo8V_yd9VpM+NW&aK*TqEbs16<45_^0;*XV)`+}o+D-Fzi;ipV-yHtx(pF>y>
zXbP4i_{`GPY|YhE|7
z6DYMd&lzp@ONZdCp`_<;)`Gwr#EpZeNR!K?o$YCflohY;Q1F^wv#^FrMEM4LY_J_z
zLrP69C%5^qGP8q5nBk^0u{#QfAXDP@D1AuSY(HA&M8IM-cW_2B>?ap_aM`;qL?{?7
zPuufgmD$(LL<6iECkX3MHVF+z*>1w}G|8YYP9kFxXep$;k`s$Jy(X~DAw*GyDiCj=
zeL5L|+ghQz>nlB7lmFsDn8$4nmN^SU~5-DZsgbu^aHyK5Z?o
zZs=^{nd#2jJSC#e{%MH%U}td$gBk@Ddn&9#mWr@yxxEwqp#NvN^U
zap>QYlR%JC>e#h@^^9BQ0#ZN|YJuF(u(Eq=x8H${ZNJ2fIhNVq4G#s86v3>kN)+%)CeEh;O~X&mzN5G~vbQdCM*8hSXGgtPp-qis
z9)ic?ngM}gyK6E|(t(ydjzeN-F!v1NglpsKS{g+##!h7kppPcX
zN+p8~$j3*^4S1;mRTtFY1Qk6AS$GiT(v#6q=7Fiv?
zEppckd4@HlhOWrr$lkBy$uvXA_S=aRix{i~^<*wZ&J=y8;^@%%yMl=R7|^LPPhX%M
zbFcj166=P1NzlN7sU00N`TF)mxeqg$iyxVvF5KaQPr1pC0TT%aCE`OAdiM1%niZxa
zM}ke!>#`pxam1!!#JqPkn7IU*qq2soLc^-cq=xo7>iH7WuY%=w!cFUPMCJK;UvjIu
zahpsH>G8p;mx2d^0!gnr9ap^G>M8k|sU13n^L_(hF)GS@dgUpsRE)q~Wv;I(w*muc
zi)Su)I0$|jwX&<@@O=$yOTsXbpho)5q1hH2S{FqYOJtl>XFQ|K=wJ%&*aW3c_#An>
z9ZVx_uws}0^aH2MTft50mi5NU-NJAWlBO~mJ|Y7%Q)P3l>vJEQ8etcj!2-a=ZQ^Gq
zvFq5F-ofcf-KC!6y%knmwgmjM|R4hQj%zfOrQ!Tj((zkj7A3VuVW)XpNxm#zBORwBXa9#`}YPVJ4pV!z9`x
z-O+qB4$Nft?$g!#IDvq?S`i1!J2gQsw;^~}l|36)!f1S;(kSL{qv75BSor?CFkG$U
zMb4n>BZmC@c`6*@!6FaI5`NtP|3P*(q9FwOtPWl7ovAl74It
z)+I+svGV+0L+#P%opgxcoO+FdX8#l+;C$^qm9nH`VQH`Up7~iECiKd!kXVOIqx}yn
z_QFCQ!=N=(z9fW7PNzVgh)0fsf=p0C9S(E_vuZD%8;rP=T3=_W)cI(5YBUjLS
z>HSE-6qZWgWYyFw
zNfYp7hKCvn?#*9Cn5!pKM_TLX?k9NZq
zWTWHzR~$JK6Hb!B4ITMlGSaNmKiWJoC2n|1?^R`fJ~i^?Uduv*Ouu+cXqN$8SxQ$EBwOg
zJ$TvMQh>8<`qLW3htqH_YvxSuBztHVR2E~JBIp+@guSAU3>=6-`=#K=7WpDsRS=nWIQyOT|DK5c1D!?Fx|!OmC0D`OIra_b4I{#!vAWA;$Nu@B<>w`v
zIdd9!y;_5aDKRlQVt(P@#68>aoH0dU6>Q!fEUEV=AeFhr*%L;5;FwVM+2~^Dc*`bv
z2~#dBkZbWLJ?My;z@IFR?NDxf?Iz1?K#C6B6_Bt~w&&*?=iTU=`f|jW_A<;Pv4=a~
zPh~N*x$mtv*}<`R*FQ5Y5mzzR6XLJ9sJN3~Qd|>)l~rvWL4u7jAEpC8av!Vi?mNj0
zdD$KJX>PN(Xi%R1Y3yr+@g*js98>&LenCEY;BEzvc{9jomD$c7m!3BisEc+wt_r`-
zRWU1P4NtehdWdoWPb!7*Q&uqR$v5d>Jlq}h2`ZC7B0lyyQ1d}Wvv
z@JlImg^iW49fHu7(A%%C9_A>qUNs}_EB5X-HtyK;!3!VpCF9X+*qRIj@uVr(-*<6O
zaG*J3{x%1wm{HfsNgP3Ji}1-b!`c4C9E61wX>A$cKqMyQyCyF-HXxRF)Ubt-#-h<3
zzbdwyrfvn-^BC`=;3cWP06GghiM|`+Wwy;
z!EifuHmy!kYimA@Cq_S%nxf+w-OazNHXWK5q=}ott9^M!P(e$6+LoNN5-r8O0G0zm
zmW8e}B1*hT&cg{R$}Y#NcLYd4wGNn*OvJdOx>n@&pJaC?Yla3AeQ&)On3u3L@i7W
zAB)EuPmttf(gueTHIJdPcskdx_M0?&eVfmd&AZi@Md$6Ac)BS&A$o}UQ
zRjOtN{KcAJT&#=nMtTXu_HNFC<3+pYzb_cV4Q#vTM*r@wJePLEhIgKHD7%XK^jWL6
zv@8c9K9wn00VJEGLObV}m^S|_5V19DquZ)yKPQ&ZHlFIVcy2yOdTw7OuOSE3i^3eT
zabfmUyny*Gq_1oVx;>x!>+s1w`SfXhDaZQTu7^3xvkQitK8+qEEZ++=4|70|{@4KU
zJSPc$3*=_z|7K~c)($`bhb6+lDd00>PSvb8F6Wu*
zg2!j=j@r&DfYWtm#waALZXXO;krRp^9VtN4_tE>UHae*>i$Br1!b*@xRQV)M`87GA
zt%v>vXMkuyW`oYVW;u_0jrSny!k95iXir}~6LFyd2fTL4*pL%=sS;1h0
z=tCdC>)xNdx*K52hV6mcm3Y`K@%Xd2)m>cTZ4-;KY~^$(EY3qSD#@XiL2$Dx6;vrS
z%EnN`7eP_75L!MnQr$z2rc1!}!=@#a2%b7u;o;q@UrWvD{1>E0H+MzcVsrsNDptov
zZjD)yx2)zt(2d&Dt6#e4E`pb9qHrcapiRYm4n=l;MVbqG6AfR2Io~M3PR7@yq+mQL
zJ0_PTr&i8
zA5EzAVgVl?rg?m|AS62~rbQA?Cif4Vdp1BfKqk6&&qu)t5RLzdcDKy^p4o{s{w}5L
znV9B2?5h>K_uorKc79at=6z@-77mpgL-hxRu!#g2qPH|?26~tty@%|77wl1@v0e1PHg+=Af9A;6Mc2I*kLMe
zE|PED#cDU$UmWfDxqjpgASCfvKmYU^qSA7m-0W7TpWZH}Nbr59JoF)9z%(FN=G7l;
z6Hs%ObK^oUu0s17JHj6crdKinaEp<9>s$ABB1wyd$QAsnb_=OZF8P_
zF~!e#=TV2#Di_0mvU;Ye4*ub28)q9#!gQ*f%z*GP{zg4=2~dhYhZWv?t0N^BlUD5|t4-TiqR+i6}IOe%^(ob2d!tA7pRFHz3U1r{#=y^HbD4_LF`))F4?
z&^nvun1g5rFW)3Ur$>IF)y6ti?8@$0tr^)whmPVoB)LTgh^oU-+#XAN@YxGbs;-`H
zR@zrSe7`dK>V#dI5tHLE7mL3iR!A%2-m$?(02r(B8O;P>cW?D*k`BAT8qTf(AJwU&
zlpffBj4
zI1I@d-~ttu0Dkf5soocnk2KUvxnb1a8a-4M=UxKWiJK~XbY!L7AG3j6b9m%WW+`=rzYDYSy>u^^=>C
zV5%EzH%%#N=@IZpL{`!rO?Xcs)%*ho@}`kw@O-!UYksU7Mj0AFrw;9Qn+2$B{nj8h
zv~|xW-o=U;pK?p?KtRYDW>xg|H
zQ6-OOFTKvXUVkNcFf={fMN$`zD65VW#S%4)TuOk+Md+g3%`9I@wZdEcq=Ik6tZ^2Cq$07M)SjLukH-4({6TiBb#q
z)54xsfu8_rduf1~0y6Sc7TnM#>?Z~%$>n6)HnW^(=EXymts`!YoL7-rS_k#H^$3HN
z)$ZqWRX4!*zjaqUbQDFgbcTMBkXHiHmKOj#8r8C!wtIE!7mQ|aGn9q_6mLo*k2gR3
zB6t}7=fL&9uFc04bhKhCN=J7~6SK%-%cHu33(3_bt&cQi;4Ab4l$SwgbflLGJ$~8V
z_Zp3$>LCy2-qSbnX#2k|dKp*4jB%&g0>=eaaYQHp`HNLsSNv>#oA(PSOsngMzzSde
zbQ30$Kf1z1TL@VIe!DdHiTV`-T4lN<;6feR70Qp?PM#zVsQ^#t#+ZzH?)bwRL)?K$nM-ph}e
zPq{!mAPQf!s|6W}(!u0XTHE5ala=f}{k8%_tk{)XB7WWbn!1T<+IMCs{S`nvi23@X
z^Xls0d%Ic0Pla7S32@jamC|TnNr&1lzJ(7Jo!uR*-_S)XW&25`GR>$>;
zk{68Bi<{UiY!zX@=Y&KZNATt}s=W*Cw2O#8?)%%UJoebhja#;UDMBqnjg_sU8xb&x
zpdd|HBeNl!tl$D}4+r46wG?TkXhu*G4ffPDmrC
z!Na_$%_vUr5JA-HO=o)ZCf9Ws70j~?%l@;ScE=UI6X&)5V|CnctLoNpaCe&Q)U;Ct
zpB@Q(QL>z$2#Tvh#eNQdyiXgPZ(OG>j()1T9;7sY-~f2MZ^@j8{%%uR4%fY9`8KLL
zK>c#4@0t3lH?ss?r}sQa7K(mr7*{y6a{(thRm{Ju-K5YyJZW2QYc(zG8e0hPOAiqG
ziFFNfboANnTd2CcUm`Vx9|k47=}Ea44QSbx!By>9OucN7)~6HSDg+m-w7t5_%neP?
zs;Gc}jA7T&|0zo3Wq3-)l%jVSZvNb*)zx>Nit;qJFiCg)MFL$+{QGn;N{edalhnKO
zHrm@U4`+fQ_YviZZhzhgH{DMSjF8x$sg|gSCM3~e%9EHxZ
zBY&F2RF-kX}}k
z0combP-dg^xbAbk+t>|k%sHZiKjY`IJ&AhCyO57t6B?5$Qb~i0gy0{dvv@QzkE9vM
zFi-7%SN8Oj-IqE^Fuu|c6yc#y6bKkUKJ_A2d$mVN+EYoXhR=KMPQ8%+0Z~lToGHlu
zM=rzvN(cW(kRFl%$J4LAAOjJA?pX0wE(QgYCvScv5)8ePE@?9rlHD$x8sc@{n
z+3<}jy=3Ii^4yZiZgJ$Sw)Seo&vt#|cj>X}Y6qD25^0=WcRC_Xnh)2alI)~#)z+w<
ze`9$P+rGQ5wLFwOt<@rP0-8XLVLW2@OfK+k9;sWaI_g@bxs7fPdV4VCLV4Bq2e~|4
zYF#^o$3`j2y4giDn+BNGss6o|;!$^!5e?ZXM7LrbnzNlOr=BWDUD--pG#{#+XJO6hrX7DyM3u@(gcdrj{}NhS1m0{ETn5d
zu4zeBUQlo2{Ayt27vh-bv2jk_6fKqml!D^tAMU!hL=BB?a&M^(THR%9RLMRRtmzQi
zydZD!QisK@_0)A3pruqg_I+#Z#9h}0y5~rJ_*IcIQir=>GTGIi{SRET{`&PPlV+3g
zhLRsW<r($p9`aVJipJsl4O}rzLtqRJv@`58(&)q07iOV}=bW
z%f2xt(u*d?1V~zfEYcr#%Oha3NrDzE4zC@4z%?rzHLTNOBxf5zN#*b5nv3gDnifq}
ziLIM$#mKwjVl>&`f(xFZuPs-Uf#Hf06Yy^&*;>TT#Uaq)2OhOq4}kjqSWSS%Uyhe*
zLFZb0R@0+}w=~WCM5G&kFWB#Z&#<%fvePexo{<25iGebYOEEuR+hE@R5;JPvTF$_^
zW=IWgWl4`XFD=FJ9>qU!%9-ZcQsV(5Xs1yZDGYxr6q_HT0HcX{6Rs8xJ-T8-nsa;B
zf+iY|B%NI>I&3kssxuRD0cJ|P=W|d*fD*^QK1F$y}bR7)?ba$-V`neXluY~!`b$nAD*gp
z84}fZf%;Z^0WAqJ^H|kJ>V=j!QPzjR-J5S_4rKz9@l{+@5>v1-6lV^CF3Bh|AC5?W
z$S*Mhixo}MQ6WpMT$j;eG{f;&$)H!Rv^=I;@8Z$tGFN4)Ou|8yPMP!PFYivIwd-VK
zXN)p|yArfK`nX}mmef=o-Z$$RP=$Sas4(Slyk4wYucooEBrN|&Hl>hS*7UrJGJd#}
zy&@5ZNc7y6ZR_N;8;@asz_hqqRq$&CU?0#}=3jZ-t{J8nV4=&hc7X%RR{v8qNg^(q
znsb<_NKs`)VWyzE{Om7f9wa?QQtszF3`P
zG^26hV&yrp8Y7gXp#5)h5)v2Rp3h?BS5fxQJE>eB7_?m(PG>3I;;<33=1dtUlY@TU
zz3*;pUo&4yU&hFM1SzCJ`2jV%Bs*dGI27TJZzlPvJ@m=Tys<#5=6Pj?aTyKq?P!U=
zDSG5t3PmCaq*x;~38yYC(wy`GA6;jh3iBU1z6&_vdXJNd_u}O8D>TqYQGN^*jP?aF~z`}(ph`jF?Xt<#Y+?Ai=r0aAz%Q$Io
zx1tYADaY!%s~%mEyVv|Ul-V93{=?gmvXr$#gx_h}~%1LsxQD
z?>OtM-D_9;`lD|WPm_|W3U={;O1?SJ%=_r8*zhqCn&aEH3EY+uq_xZ?v}`;Q_SkcL
zRepsZ2P7_CLk~+{bWX#TeGGa!DC#a-bNbtlt*-iw{z8Mb*GmL;Hs_={U6(S)nY5*?
z3Nbfy#mm_erkZtoA%pE(+FHxR9DN1D+p~FS``R~n8)ly5VQ)@aqqJzbK0TIGYD(8n
zx!Pyj^J|m4u5VYiUrK?-1F-rM2>kf_$~aXpwWFS>+Jlg
zLcncK>5ylb$%+6HUE#Dr5#!kVF%PIAC=dbu??5r;3DxbNrN#S-o&!52UCb{&)i@sq
zdxtdi5Xtx7a*rP+;Nz0sP;2rC{EBKzruux(k0)MGAJ$TX
zk!ge5!@Tz*m0*pG;*wy`5+{q*f
z#6QUKBtkUZA0hZjeeRt}wvj_lJ0B_@Kg^aPlHM@bpXzI88C~c$eObcykn${7b9~yQsj@^xADtGdD~}8wg4&8;JE7V@b#NU
zIoX%!o$pB6*-8dR%-8YoY6+RhA#N)-!5t6Mc1oUT2>xZ4i(4m-T)aF;y4?kvn*Pnd`oHI_|NMk@E%fY>uHHLW
zZV3W;RbzK!a;fqWG2vJq8%3f1%qW~$!0w4Vs=6fikw?>#-ZUOgPfs9_gnu}9*BN}l
zcBbxlW?RwP?-*Aj#}-OD4`2%QE$do4UGhNjQn8^FlPs}Ok|*&aYY*8sc^I!=G%+t}G~6KaC)ylF*LNv@Unjk{(C};-*azC179E&423o_UzN-B0p{i
zaZsYXR~pFYRs{Z0QKX<G#6~MWp(3P-=BgV@+aBM)p$EO
zn6Q*-Kg*%Jt(EgiVoV=%4DpXRo^i2iab~RaoNT4r7w`vKGat@M&aY;^p(g>UYZ_kX
zsDr%{Qh_CFPA~~l(b`&6Lnb%fce&-uB@wFKV6mT~^JMzo(VYy{4(GyqYdQDEc1d3Q
zZB2uenKVC;z7z_9F-S~_g{6up-iZw0!X%0Jfa-f3Me9#B^wKsG
z%boZ_%U76h>Sb?QBK>!1YGV!&9MN{Vccb2%l&A00UIW;7(
zB#|eqiMIY|D9w%N9X}=iMdj`PdScP^+%{(IbmdT&U=bV(={(e_1PliR?cQ>|q4|~Z
zoyomw!Fwz>6BFYE4U*`|1l5R55OwvXDBK->Ap(%1-@hUnL}|wJ(iX~rn_7U#9Y`Ry
zbgp~E2Q*!!HFd211R8El%W9KiR`<~}=H8Hx
zgv)p8i$hHRBRRr7!Y@hq@nzc6#fq6Acb~dMp)%=Nh>P!=_cCawc!O%I@znRiaffHl
z+CI0vdf3DUXtl`Ta9?Y|_(3*7?LZWC*L;hYS-$g}5=-i}ZD^V_q_at6PssV*`EBpn
zJ1gQYy4n0H@QQ7EPaLst;@v0BX-pKp_7NL@Sf(lmVO57`QI=q5-~BQ4
zWZ}4!xo(ZOSgP*gXiV(6w9u?^$RV|R>Kfe8mkoA2Whz{p`N)+Bh$sY5MOqnCBAM6=-Ec3p`<20ZNs#YOaoT+Diu)NY5+oSpq4GYl<=?
z0c~<>pUF7tn}-oM#e+W~5LDn0ix#6xlK*rI|G#X~|8-Bw6pfhHZyId3@uhN}<7+#`
zji^mWuDnCOM%F6CYzVg1-ZR*0y*k;@?)k;kF(fcoxy3rY@5~KeYj42jwmlZ3(xYbn
z+*C0s&ig?{jm$&)Y&bm|efHb?rGuTBp0jJvl|+ev_8rMmueDRUre
z21;WiP^%}rU!=}bJr@`m+^9aKL?J=JAneyi)H}f&PUrk2ux4(GH3)9X-JcT*1U(pm
zk=U>)+E181JB563a~
z9EA(pGAAxycQF~f#oZ`hm}D;=B9UDfdA_$)78Q_1FKcrv%|UO9T!8<
z9zd`+&QyyUq!3qF$%ugWqNax7Il}o-kf>^x6pFn1@A{LVCC&Rh8yjQio)Z1S7V|@l
zNU~!_rly+f&*Cxc0D+(<^#X%8RDK90%UB7e(1>qDIZSo8G8aidBtnnAnLmBQX4Ihb
zwGmTWt}3B?*c_LIZ_R`kFRW0E{NjbDKyOldU>ysK3!n`5ciF>n|HS8Ku~P-$*Q3E5
zcu)a)crfRYN=>i~%c$&q8U6?}y~<|z#Zn7MB+9ypamU(KidmN%9J3?EW9FUx14r`9
zCk?nxo>#^y0;NoO$yU!ZDnC@R=pGpGETDW0%9~Vpr1eHUsoUFh*dEGHt#@;r$@>4=
z`|6;$_H|1V0we^t5Q1BR2Y1)T-3jhAZb5GNvt
z8#(9RnR!}M_5R&eyY}wh-|y4)trf_MGWqm33YB?N8Na`@{PzTlQ=X}gBPB$?)T_X$
z+5R0!HKh!4qTAYdbE~tj{1Y|@)m8cOgH1WHSV@uCi-Woc0E?}_E|a`e^X9k5vUp35
z`^)K}PH4hBEx6=bN3(@a)Zw}kaWjC6MD
z4ZZ-#nVz4MQ#q7%d>|dU!VCWt5c8aB`1t<*R`NajPkJ|}xqSNZ*q1lws5)NVh3X(A
zJxn;SKr)TKxi1-DfhT;Ugk3(|%5hdM&(ST&Vu0U@Z#QvA_iXHxYX2NRt!vK4wI|dM
z>#UnWqNDo)9lx!>KF{n_z!hLw@-bX-#^FIc+F!W#t-=op^gtnw46D!f=NH@hGyXrK
zUo}n>>X0gM@s>FnjO>omtJir>YP4FFnOnJ+VGll;@n>Hwvuyf~8V#BHURo`><-=1gb9QIiWPQ6L+bU;?S^WoV%L?)l^{0ff)0M-|E>v?QmR!*tUkG
z2&`$hRFh1y9UQDbPtD}91Rd|_g!#%c6avmpZ#*H(uiCLHoLiX56%(~v_n3o0+n-0s
zc%FQWiklQKsxdOs)erS-KUBe8os6g#eTiMc?77
zrZyW&R2X{B`iutckevk4TSY}eZ)bENDnK}{=4Holg4u>~MnO0dalz8UP~1PT_e8Uf
zg%(`O+|P|+s#pZG9!`sn5=`M$bQseZqK
z#3OB({7vMhw(SjA%yakg(&6MO;=LtB_-y2zCBjUI(er<3;9OE~=T-h8!dyN`(N@<<
z@381jr;o_@EZ0LKHML{&L&ZKKH_gu|0$(AO0}-16YNuD*tPQ3N0>KP6cvff0cGZ(w
zNJtG`Ze9+TF&VRKCbQ=Yk@P^(Gykszw`#tXS4zpx%^lmb?V0VG%?vaitH(|mf*;ZU
z(ri=ua_7IyR?wC&dzfx(@R%8%k(A6^^cB6s47C)iU~t8UWGoj!91m#U)!~7=4wVZ3
zOnzS46MVxfx2-_gFLLnnKK)Q^xiz;J5YzjEr(B@`6ueTkSje(G&JGfsP
z$xBPJ0%pp_eJ71_hY*}pC&ykrScee^aFtmXYI?8Mtw!NN+uc&
zjRAGn&MU(f4M^UV0b2ywouwPJtnNnST+D8DK(7AcvA{UG4w$eMP<;gwyWFQzLqh75
z@b*iv-ohzahxv#w#=iKAH$5?4#0D`2;7*;;))5K}wz03_MyI*M)C
z$6cwvi+hC?Minz_)Qc)iUkZw0(Itc+K#0
zbmkwvc2v?Jyl$*Fj%nxCUQXlNAR`U7<{?d4=9kJY2_jPqDXP;*GsSoYll3)H5yif
z(iAA~pwPFlvDSTbND<5nrD}4dJu?3{3X&+|Z-fwk`qbNN=QhUHLc0M#ndXf-!C8Ct
zS2r}>n{>pka)KT6-7Jb2D?k^k^mAGzx;GRjRW8F}LChb1#&~~KG`{vaaFyTc@wD~+
zaQ0KHA6&01&A`gN#>B;wv|;WC!Gxq1mymHjcPOsuE1^ZhnvFnF#;D(}>r+c&2r_Fr+y1bPNQ4Xr=wzWIY
z16d_&D|mH#6Ki&BejmqZZ?I{2>^c`s2Vw
zRpDU-!{GhhHu~c0Pqu`bVFP}s@#56>Q^Ka%N+l>F_IJL7H_+UK10RL|18VV)ERsT~
zd!6KRcb|M-iL&lSB}*qm7?k&%SJnh;ILSc^Kz|O0)%eL2OA~vVm&iuFpqzLIoYGrC
zTWlU6se>_dhfS6`4yUV_sxfH>ikV<%7@Y1F**hDOx3DW&!B$8Mr-sZS%xCA0F#`)Nhju_Tt09>8JX{^4MszLlQU&=t&*nacCLIvnah{%@Zx1_fVs|??-KK7^
zBF7A8H(urx8TVtCKaXc&G0h%z{!p)p)h%#JDKU;kqpMX-7LZpIO9yHtr9L6Um|&>q
z{Y^0W?*;{A2w=$)@r?dwJqhMNjIAc(5X6CiGAa@4-xw`sax=?c|
z^0E3$3I*Xk@uNg>MB@V;g$gz?DGK>i5t_J2^k{ehu8+6s6WJFhbw4M1cpeH@3gW1h
zrFY1tIU?GHaZulrA{P=MIOWA_1xQ7gsJ#`Gafp=9we4Qvmh!=R|abf`I;M!sJj`3xF;u#cEO3IH84y}
z;q?g@7_(LjZPsl53RGXN?cb#o9=T>k1&JT)W=Ms7@S4cq!W}7XQ37_D
z1{(GpD`{S6*G=%24L_69`Vsd*^cSi2rvtw;M2S972`JPofS!?llNKle9E60m|OT*v%u-|doX?K1W=@O`LVDsnMg
z_{$jvvV*?I26r1(ueIgd&J@V_nrF$Qq*=I;>`o-5^G@YZ{ua?qczU?gn8KGR5I2Dw
z6>`DwFGD64jM`#ms5J1V9|#fB()VK$4L5T{*XZ+Z7M#hauDc0i?zUL!te!>qA(wvlw;7C5vF!~_E78Eu`)#~IGL=8m?|BWKn^{sn|f7Iuq%HcTX?Ni1MA=@0B;ZeN#AHcyw%G|Ki9oZJY
zJ39Td!Dw&?y_KAIN*t~RnlRgbAAhl1?`TJlzv$e12ZRD0m*bNliL7I2?j6D^#u~`L
z{XjGRTyKIG?w;HJf)z6PBB(Z7_Uq`yTSCQEQZM5(7t80sEcZ`c?-`t2nbc0tNz*;*
zUG1tv1CR`^886vttE#?JG^&XioCF5S$9_ujyPX@@8qo{J{L0Kcr=O>*;{x5(x%Crm
zdBL*4+cT-SOQ1>}+~XH4fIC*muw;HbA;FLs{#Fb+Zkcvu(ot>i`1V1TyvZ1DNa}d^
zoF|66{F6GTo9ZV9{m%sIXrLrcm`uJu$?QSOr5y=R&czu*A9Y=b`g>c7JHRQZ^zxyN
z_}Nx*X>oB`S#f4fO--&t^UzQUnFFM`Ig(3FON)DPBh#KV#S(F0zCRp^LqWSI`acgM
zkWFi(B4m2ymZ9^^+}U>th!>JX4cp2d
z_l0FaWq&*HEPDSgPWULUQ2!?8DvbYQPdG`mZN322^V&gU1ew-YSR^S8br
zANHSg1R--jtxzf|Y4az)*=JH1w$FC&FW_pKdFx$8Vm6JC^!IJ-LeklY-jk76XriU1
zG$;<)lj)~94EESLc^MP5|7trRK=raln=$DkFeqGQp|Q{wQS9S;@Gi0Z)8be-vb
z5jKU!=C}lKKmsuXCJ%7MpI{+mzt(cez-6BRnJ6ks?TR`1ZcRfsU|U}GsYbHkUdn}P
zq#`IQX+lw*h9_}3;3otJ(tT3}wRRVdtKoa6OFHUy9aCFs>E{YtqhDTRR&G7f7BPe#
zo?O(OvY@pW3aP>FMonAjqc60K!^fcjcT%mBXT-HA?(6
zQ(9U1fs2xTwRMmn2F(OH)n17t@;hFoW5lVO8bADBPb&TvMJ9HxGfoM@EUl{2^;|V3
z0>inrCTho6J%6M09pkTeM73d)NZIIhJ1
z9UyHTFZE}9Mf{C*cU&nP)1~~`!zl^a=LAzR%DnL##00z`;M2`=eU0D^ALBwSI9jyX
z)Wtf{<1kEzwps3OycG}1$pPvwFqg)$CMZqYYZ3$07AXkJuAz}1;KV1pi!>~o3zkEn(1GH-0HyDaQ8NtPO~`H-}8lXH8!6(D438$OU)dw*
z5vv>uh4jZ=`pnmbYW{mBfBPhViu4m<*J}wNirK8LvA41d!p^dx7%Xd>rEC{A_tPRqKST`Z0$>AW95E`;es`?_1}o=<33(awde
zTVBD7-Z*$)Wvs^8V4mPNivRjubS}vc#13(k_%oQB*1ezIvoS9rx%7?RgiY*R_eqm3
zR1xQ8`~$3^^Hn_^hc`IiLZ-*!)|ZSpz(;Ebj+_r=DjmhZ0R-3tF&R~sZmpM
zHK`l9P|@BHZmK}Edg%Fa(l6bP{SU_C?Ad$ZWevV|YG^j6i7~pIE*2`2CMmJF)KhxA
zzz!&d``=C9{&Gh1ckSR$hVjoAtU~Qem5qQQ2*
zOW%U<=(GiF3vJ2rB)Z6uQEZPNQ}CjJrEIbG$w6x%6YF?IrTUv7yCOw`UG2_IVXV76Z9rdC)L^e+whrp|IfDo&JSfdnyPWbsx1*`jin%gY$s0vC|?q
zI6+#}Y1d&@%fEFnt{}!BT7P~hs3&o(e)x&P<1z<~86jnxc(51QLs5Q%*18&S!^WNp
z=@N6qqU@@PLNuHtRJ_DJ=!)BJ_&XXOzxgGU<1H4*r+t-Wuid|jIF(i4vE#BlA)Par
z-`V3zWuR3R%f>CaI-sj`aCsN@x!sogJ2R4IDP>?2BG1CET47lJ#3(h_`&hyk@uRZE
z%yqXHs4L-{jV(#)NAaYX5qSq2A5fy6-wQvxpN2(6NnFi>DsmBPFVAAL31M%wlOPnwSw{<6nA2<=&fhAgx=gfYX8
z`xED91?&jvBK#uYo4G$=x*{yB4MG9oDH~4a#W}BZme%a#@~hiH+7-;7?Kscm3~h&V
zDvvf>W-S&+7~Z{kn({H(wXKHOOc<1G16}XbP2MvO+QeQ=FLkj+{Lrob^8R6=9Nh0`-mxVA(k+1YTjVSzLgj>??XE8H0}VY
z18Op-@dkbLTOY?|&#rW>%&V`7cIHFk=pc@B>R{O0BC#MW3vyJe3s9$cOOC<~jE$JB|m2ia6pbBm-k
zSZiyvI-BixCN_LLLork)TA@>49U1t*;$^4B2(+>FQigOteRTG(uM4UEQ8@dG~9n&0mK4jxG=Ck#&M;3#P>c9
zceXosdRnwTb(dn+*n3m6mJrRvkjyxl*y;LqJJ+F>)tpg9$VwVt4j}KhSw;GW)Q+8t(gWk-YRQIIr9K^oGo^yx2T~2914l2xtjObK2l#dAgaV
zMz37WM6I9Y@oxC&Gr|5uR}&D5eO|3zo#)H_c6E<>2zIZbnLQP$DuL^|@#@JUyNqzz
z<0S^Hm4#hW-Pxd^c9hw;wHw
ze!2wHtOr`@8?y<6oN#6k*o06eRg_SO8Dk8cNaC`i=+L5I-*c{4Vs_kgj0d37p_bbuOvwOVBzx&;
zJ?I3}J^Z@M5Q@9q`0r%0f9f6nCtcXJ{@?2{D7+Ghj(vf7bo&`ehF3m@eBr!L$6;+g
z9Ez8ROM?fCy+(~(GYg|)YjaJC%!6-snYgNIq`&oc32_;+b%nE+o5JpBHi6*f
zRBxpR$R<85;3W#>6KLdCcb;hGL&M%R`=bY;i4bBm$Fw-{cMa%B4X!mLLGXyJ->}Np
zqVxy)31=*sm*f#_8x`4|F62%Z7w^*?o-xxWQhed{fcC`D32Ly-!+=N6MW;5lW*_Pr
zXMfEvJvTDSw_uvnaK!_2WrO8M9`$$$I(?~fPM=zN@AW22Tc{H|KShduRUm*i4<%M$
zcYD3(kh1y4U@|pkLnFGl+}^f(y%t|vm$ZgxqMVI^v#(!|F?#~mlT1dBmRd{0r*TBa
z&!F_x$JapdSx%#2g2@wr32;*i1d5~CgGF9&I^SoB+^IZqmvkK}YG{rJ=VP((r;@As
zQq~tCJcQS`_=|=X+t^Cq&TF+aAfP{VA;|_@o`PVkLRonNl^1hA>EZc9ed`a8erC1s
zP2Rb%E3caE&{oK!Qx6tI4uU@hAd9E(cahWmb=8GgqI}4Y3w&q)~mn+>rcbAaOv63v3jWX
z_8UFw99t}^p?z99zfqJ$+6^OE_Eb}57M?PeBDI5LacB3=a>fp}?dIpDaliB*k|LR2
zTpZW;*1k|EB`&CI)$^&ne#sX1V=E`Mt{SQd3q8@63sqo#idI+M%GAnm33Z>(NUr>pnrecd+s~dvi1R{
zXx~Llf*;vV?0V0jT72J1VOjTC-0|x2fn%obDQ9p!e4R2=o-=%7|HXYTL;l-WL1b@F
zLZm2+#)vgV22Ka4J=yC){wDQ|3HP$PdE{{YAfX$*u{d4Slk}VZOUB;bDKiiM%v`o2
zS<&sw2UlL6>us&%UZ~#plp4^dFBicJkAar^!+w{it2|u5*psr*3j8Q?;n;+mc5T;4rCV>`FbHRTOm*
zh#$jd+v?P6-@M~|d2nMRTd;$)dMJ}2Oglxa%@L@!b}U2dMsLBZ?J9|dXV*a`?X~^^
zm+}2K%!QD-IeDm3+cg11>8o+#MK_reh+AH7y7u0lJqa93o(ndu_nJHhcgPb7uZ(*=*&S}(I`aABtHE*8V