śĪ!y¦oŖµ      !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuvwxyz{|}~€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ   ” ¢ £ ¤ „ ¦ § Ø © Ŗ « ¬ ­ ® Æ °±²³“ None&',-.2345678=>?@ACHPSUVX £servant-auth-serverfor servant >=0.11servant-auth-serverfor  servant <0.11  None&',.2345678=>?@ACHSUVX) servant-auth-server>The policies to use when generating and verifying XSRF cookies"servant-auth-server9What name to use for the cookie used for XSRF protection.#servant-auth-serverBWhat path to use for the cookie used for XSRF protection. Default Just "/".$servant-auth-server9What name to use for the header used for XSRF protection.%servant-auth-server0Exclude GET request method from XSRF protection.&servant-auth-server,The policies to use when generating cookies. If *both* ) and * are Nothingk, browsers will treat the cookie as a *session cookie*. These will be deleted when the browser is closed.Note that having the setting Secure? may cause testing failures if you are not testing over HTTPS.(servant-auth-server= means browsers will only send cookies over HTTPS. Default: Secure.)servant-auth-server5How long from now until the cookie expires. Default: Nothing.*servant-auth-server*At what time the cookie expires. Default: Nothing.+servant-auth-serverCThe URL path and sub-paths for which this cookie is used. Default: Just "/".,servant-auth-server<Domain name, if set cookie also allows subdomains. Default: Nothing.-servant-auth-server6 settings. Default:  SameSiteLax..servant-auth-server5What name to use for the cookie used for the session./servant-auth-server;The optional settings to use for XSRF protection. Default: Just def.0servant-auth-server JWTSettings2 are used to generate cookies, and to verify JWTs.2servant-auth-serverKey used to sign JWT.3servant-auth-serverAlgorithm used to sign JWT.4servant-auth-serverKeys used to validate JWT.5servant-auth-serverAn aud predicate. The audG is a string or URI that identifies the intended recipient of the JWT.@servant-auth-serverA  JWTSettings# where the audience always matches.' !"#$%&'()*+,-./0123456789:;<=>?@ABC' !"#$%&'()*+,-./0123456789:;<=>?@ABC Safe&',.2345678=>?@ACHSUVX+LNone&',.2345678=>?@ACHSUVX0ę]servant-auth-server]D is a convenience function to throw errors across an entire sub-API uthrowAll err400 :: Handler a :<|> Handler b :<|> Handler c == throwError err400 :<|> throwError err400 :<|> err400^servant-auth-serverfor servant >=0.11_servant-auth-serverfor  servant <0.11\]\]None&',.2345678=>?@ACHSUVX?@ACHSUVXHR„servant-auth-serverHow to encode data from a JWT.;The default implementation stores data in the unregistered dat claim, and uses the type's ToJSON instance to encode the data.†servant-auth-serverHow to decode data from a JWT.KThe default implementation assumes the data is stored in the unregistered dat claim, and uses the FromJSON% instance to decode value from there.ˆservant-auth-serverA JWT  AuthCheckJ. You likely won't need to use this directly unless you are protecting a Raw endpoint.‰servant-auth-serverHCreates a JWT containing the specified data. The data is stored in the datT claim. The 'Maybe UTCTime' argument indicates the time at which the token expires.„…†‡ˆ‰†‡„…ˆ‰None&',.2345678=>?@ACHSUVXSŪservant-auth-server#Makes a cookie to be used for XSRF.Žservant-auth-server Alias for .servant-auth-server(Makes a cookie with session information.”servant-auth-serverŹFor a JWT-serializable session, returns a function that decorates a provided response object with XSRF and session cookies. This should be used when a user successfully authenticates with credentials.•servant-auth-serverBArbitrary cookie expiry time set back in history after unix time 0–servant-auth-serverjAdds headers to a response that clears all session cookies | using max-age and expires cookie attributes.˜servant-auth-server Alias for .™servant-auth-server Alias for —.Š‹ŒŽ‘’“”•–—˜™Š‹ŒŽ‘’“”•–—˜™None&',.2345678=>?@ACHSUVX\Ø›servant-auth-server[Whether the username exists and the password is correct. Note that, rather than passing a Pass5 to the function, we pass a function that checks an  EncryptedPassf. This is to make sure you don't accidentally do something untoward with the password, like store it.servant-auth-serverA µ– that asks the client to authenticate via Basic Authentication, should be invoked by an application whenever appropriate. The argument is the realm.š›œžœš›ž None&',.2345678=>?@ACHSUVXbŁŸservant-auth-serverAppCtx applies the function res to the arguments in ls1 by taking the values from the Context provided.„servant-auth-serverIsAuth a ctx v indicates that a/ is an auth type that expects all elements of ctxE to be the in the Context and whose authentication check returns an  AuthCheck v. Ÿ ”¢£¤„§¦ „§¦£¤¢”Ÿ  None&',.2345678=>?@ACHSUVXd7None&',.2345678=>?@ACHSUVXl°servant-auth-server%Generate a key suitable for use with  defaultConfig.±servant-auth-server,Generate a bytestring suitable for use with ².²servant-auth-server!Restores a key from a bytestring.³servant-auth-server§Writes a secret to a file. Can for instance be used from the REPL to persist a key to a file, which can then be included with the application. Restore the key using “.“servant-auth-serverReads a key from a file.S  !"#$%&'()*+,-./0123456789:;<=>?@AB\]cdefghij„…†‡ˆ‰Ž”–—˜™š›œ£°±²³“S fghijcde †‡„…=>?012345@ˆ &'()*+,-./ !"#$%AB—Ž˜™”–6789£ š›œ :;<\]°±²³“‰ Safe&',.2345678=>?@ACHSUVXo¦¶  !"#$%&'()*+,-./01234556789::;<=>?@ABCCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefghijklmnopqrstuuvwxyz{|}~€‚ƒ„…†‡ˆ‰Š‹ŒŽ‘’“”•–—˜™š›œžŸ ”¢£¤„¦§Ø©Ŗ«¬­®Æ ° ± ² ³ “ µ ¶ · ø ¹ ŗ » ¼ ½ ¾ æ ĄĮĀĆÄÅĘĒČÉ2servant-auth-server-0.4.4.0-CCVO2PDua7iEn6DCldIpZcServant.Auth.Server(Servant.Auth.Server.Internal.ConfigTypes)Servant.Auth.Server.Internal.AddSetCookie%Servant.Auth.Server.Internal.ThrowAll"Servant.Auth.Server.Internal.Types Servant.Auth.Server.Internal.JWT#Servant.Auth.Server.Internal.Cookie&Servant.Auth.Server.Internal.BasicAuth"Servant.Auth.Server.Internal.ClassServant.Auth.Server.Internal&Servant.Auth.Server.Internal.FormLogin#Servant.Auth.Server.SetCookieOrphan#cookie-0.4.4-KpjAlIew5oQDgqXiPeQJ63 Web.Cookie SetCookie1data-default-class-0.1.2.0-FeIQ5tLoVZBHMSgrT9zptQData.Default.ClassdefDefault#servant-0.16-HRWC90SYBxm43z7ELQbirCServant.API.IsSecure NotSecureSecureIsSecureServant.API.BasicAuthbasicAuthPasswordbasicAuthUsername BasicAuthData+servant-auth-0.3.2.0-1LHTuxUDlW3Fu5LiTAar4I Servant.AuthAuthJWTCookie BasicAuth AddSetCookies addSetCookies SetCookieList SetCookieNil SetCookieConsAddSetCookieApiAddSetCookieApiVerbAddSetCookiesApiNatZS mkHeaders$fAddSetCookiesSTaggedTagged$fAddSetCookiesS->->$fAddSetCookiesS:<|>:<|>$fAddSetCookiesSmm$fAddSetCookiesZorigorig$fAddSetCookiesS->->0XsrfCookieSettingsxsrfCookieNamexsrfCookiePathxsrfHeaderNamexsrfExcludeGetCookieSettingscookieIsSecure cookieMaxAge cookieExpires cookiePath cookieDomaincookieSameSitesessionCookieNamecookieXsrfSetting JWTSettings signingKeyjwtAlgvalidationKeysaudienceMatchesSameSiteAnySiteSameSiteStrict SameSiteLaxIsPasswordCorrectPasswordCorrectPasswordIncorrectIsMatchMatches DoesNotMatchdefaultJWTSettingsdefaultCookieSettingsdefaultXsrfCookieSettings"jwtSettingsToJwtValidationSettings$fDefaultXsrfCookieSettings$fDefaultCookieSettings $fEqIsMatch $fShowIsMatch $fReadIsMatch$fGenericIsMatch $fOrdIsMatch$fEqIsPasswordCorrect$fShowIsPasswordCorrect$fReadIsPasswordCorrect$fGenericIsPasswordCorrect$fOrdIsPasswordCorrect $fEqSameSite$fShowSameSite$fReadSameSite$fGenericSameSite $fOrdSameSite$fGenericJWTSettings$fEqXsrfCookieSettings$fShowXsrfCookieSettings$fGenericXsrfCookieSettings$fEqCookieSettings$fShowCookieSettings$fGenericCookieSettingsThrowAllthrowAll$fThrowAllTagged $fThrowAll-> $fThrowAllm $fThrowAll->0$fThrowAll:<|> AuthCheck runAuthCheck AuthResult BadPassword NoSuchUser Authenticated Indefinite$fMonadPlusAuthResult$fAlternativeAuthResult$fMonadAuthResult$fApplicativeAuthResult$fMonoidAuthResult$fSemigroupAuthResult$fMonadPlusAuthCheck$fAlternativeAuthCheck$fMonadTimeAuthCheck$fMonadIOAuthCheck$fMonadReaderRequestAuthCheck$fMonadAuthCheck$fApplicativeAuthCheck$fMonoidAuthCheck$fSemigroupAuthCheck$fEqAuthResult$fShowAuthResult$fReadAuthResult$fGenericAuthResult$fOrdAuthResult$fFunctorAuthResult$fTraversableAuthResult$fFoldableAuthResult$fGenericAuthCheck$fFunctorAuthCheckToJWT encodeJWTFromJWT decodeJWT jwtAuthCheckmakeJWTcookieAuthCheckxsrfCheckRequiredxsrfCookieAuthCheckmakeXsrfCookiemakeCsrfCookiemakeSessionCookienoXsrfTokenCookieapplyCookieSettingsapplyXsrfCookieSettingsapplySessionCookieSettings acceptLogin expireTime clearSessionmakeSessionCookieBS makeCookie makeCookieBSFromBasicAuthDatafromBasicAuthData BasicAuthCfgwwwAuthenticatedErrbasicAuthCheckAppCtxappCtxAppUnappAreAuthsrunAuthsIsAuthAuthArgsrunAuth$fAreAuths[]ctxsv$fIsAuthBasicAuthusr$fIsAuthJWTusr$fIsAuthCookieusr$fAppCtxctx[]res$fAppCtxctxs:->$fAreAuths:ctxsv$fHasServerTYPE:>ctxs generateKeygenerateSecret fromSecretwriteKeyreadKey*servant-server-0.16-5x9xQYsRG5v3lzURcZ9nz4#Servant.Server.Internal.ServerError ServerError