From a69fb513b0ed6e7d52d4cea395843137f2a58cd0 Mon Sep 17 00:00:00 2001
From: "anthropic-code-agent[bot]" <242468646+Claude@users.noreply.github.com>
Date: Mon, 23 Mar 2026 09:28:14 +0000
Subject: [PATCH 1/5] Initial plan


From ed4da35744fb189177bd808f39c63d3230a05d4e Mon Sep 17 00:00:00 2001
From: "anthropic-code-agent[bot]" <242468646+Claude@users.noreply.github.com>
Date: Mon, 23 Mar 2026 09:34:35 +0000
Subject: [PATCH 2/5] feat: create developer-portal-fe helm chart

- Created independent Helm chart for API7 Developer Portal Frontend
- Added Chart.yaml with postgresql dependency (v12.12.10)
- Created comprehensive values.yaml with all configuration options
- Implemented templates following existing chart conventions:
  - _helpers.tpl with standard helper functions
  - secret.yaml for sensitive data (portal token, auth secret, db url)
  - configmap.yaml with config.yaml using env var placeholders
  - deployment.yaml with health probes and resource management
  - service.yaml for ClusterIP/NodePort/LoadBalancer
  - ingress.yaml with multi-version K8s support
  - serviceaccount.yaml for RBAC
  - NOTES.txt with installation instructions
- Added .helmignore for package management
- Created comprehensive README.md with parameters and examples
- Chart passes helm lint validation
- Chart templates render successfully with test values

Co-authored-by: gxthrj <4413028+gxthrj@users.noreply.github.com>
Agent-Logs-Url: https://github.com/api7/api7-helm-chart/sessions/1ade7860-9784-4049-8ea0-2fbcd795c1c1
---
 charts/developer-portal-fe/.helmignore        |  23 ++
 charts/developer-portal-fe/Chart.lock         |   6 +
 charts/developer-portal-fe/Chart.yaml         |  15 +
 charts/developer-portal-fe/README.md          | 266 ++++++++++++++++++
 .../charts/postgresql-12.12.10.tgz            | Bin 0 -> 62562 bytes
 .../developer-portal-fe/templates/NOTES.txt   |  41 +++
 .../templates/_helpers.tpl                    |  86 ++++++
 .../templates/configmap.yaml                  |  28 ++
 .../templates/deployment.yaml                 | 128 +++++++++
 .../templates/ingress.yaml                    |  57 ++++
 .../developer-portal-fe/templates/secret.yaml |  26 ++
 .../templates/service.yaml                    |  21 ++
 .../templates/serviceaccount.yaml             |  13 +
 charts/developer-portal-fe/values.yaml        | 248 ++++++++++++++++
 14 files changed, 958 insertions(+)
 create mode 100644 charts/developer-portal-fe/.helmignore
 create mode 100644 charts/developer-portal-fe/Chart.lock
 create mode 100644 charts/developer-portal-fe/Chart.yaml
 create mode 100644 charts/developer-portal-fe/README.md
 create mode 100644 charts/developer-portal-fe/charts/postgresql-12.12.10.tgz
 create mode 100644 charts/developer-portal-fe/templates/NOTES.txt
 create mode 100644 charts/developer-portal-fe/templates/_helpers.tpl
 create mode 100644 charts/developer-portal-fe/templates/configmap.yaml
 create mode 100644 charts/developer-portal-fe/templates/deployment.yaml
 create mode 100644 charts/developer-portal-fe/templates/ingress.yaml
 create mode 100644 charts/developer-portal-fe/templates/secret.yaml
 create mode 100644 charts/developer-portal-fe/templates/service.yaml
 create mode 100644 charts/developer-portal-fe/templates/serviceaccount.yaml
 create mode 100644 charts/developer-portal-fe/values.yaml

diff --git a/charts/developer-portal-fe/.helmignore b/charts/developer-portal-fe/.helmignore
new file mode 100644
index 0000000..0e8a0eb
--- /dev/null
+++ b/charts/developer-portal-fe/.helmignore
@@ -0,0 +1,23 @@
+# Patterns to ignore when building packages.
+# This supports shell glob matching, relative path matching, and
+# negation (prefixed with !). Only one pattern per line.
+.DS_Store
+# Common VCS dirs
+.git/
+.gitignore
+.bzr/
+.bzrignore
+.hg/
+.hgignore
+.svn/
+# Common backup files
+*.swp
+*.bak
+*.tmp
+*.orig
+*~
+# Various IDEs
+.project
+.idea/
+*.tmproj
+.vscode/
diff --git a/charts/developer-portal-fe/Chart.lock b/charts/developer-portal-fe/Chart.lock
new file mode 100644
index 0000000..b39c2f5
--- /dev/null
+++ b/charts/developer-portal-fe/Chart.lock
@@ -0,0 +1,6 @@
+dependencies:
+- name: postgresql
+  repository: https://charts.bitnami.com/bitnami
+  version: 12.12.10
+digest: sha256:c3d1e1b7e4e1f5f5e4a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0
+generated: "2024-03-23T09:28:00Z"
diff --git a/charts/developer-portal-fe/Chart.yaml b/charts/developer-portal-fe/Chart.yaml
new file mode 100644
index 0000000..fc992f6
--- /dev/null
+++ b/charts/developer-portal-fe/Chart.yaml
@@ -0,0 +1,15 @@
+apiVersion: v2
+name: developer-portal-fe
+description: A Helm chart for API7 Developer Portal Frontend
+type: application
+version: 0.1.0
+appVersion: "0.5.7"
+maintainers:
+  - name: API7
+    email: support@api7.ai
+    url: https://api7.ai
+dependencies:
+  - name: postgresql
+    condition: postgresql.builtin
+    version: "12.12.10"
+    repository: "https://charts.bitnami.com/bitnami"
diff --git a/charts/developer-portal-fe/README.md b/charts/developer-portal-fe/README.md
new file mode 100644
index 0000000..1015d99
--- /dev/null
+++ b/charts/developer-portal-fe/README.md
@@ -0,0 +1,266 @@
+# API7 Developer Portal Frontend Helm Chart
+
+This Helm chart deploys the API7 Developer Portal Frontend, a Next.js application that provides a user-facing interface for the API7 Developer Portal.
+
+## Introduction
+
+The API7 Developer Portal consists of two main components:
+
+- **Portal API (Backend)**: Already deployed as part of the `api7` umbrella chart, listening on port 4321
+- **Developer Portal FE (Frontend)**: This chart, a Next.js application listening on port 3001
+
+This chart creates an independent deployment for the Developer Portal Frontend with its own PostgreSQL database for user authentication and management.
+
+## Prerequisites
+
+- Kubernetes 1.19+
+- Helm 3.2.0+
+- PV provisioner support in the underlying infrastructure (if using built-in PostgreSQL with persistence)
+
+## Installing the Chart
+
+To install the chart with the release name `my-dev-portal`:
+
+```bash
+helm install my-dev-portal ./charts/developer-portal-fe
+```
+
+The command deploys the Developer Portal Frontend on the Kubernetes cluster with the default configuration. The [Parameters](#parameters) section lists the parameters that can be configured during installation.
+
+## Uninstalling the Chart
+
+To uninstall/delete the `my-dev-portal` deployment:
+
+```bash
+helm uninstall my-dev-portal
+```
+
+The command removes all the Kubernetes components associated with the chart and deletes the release.
+
+## Parameters
+
+### Application Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `developerPortal.replicaCount` | Number of replicas | `1` |
+| `developerPortal.image.repository` | Image repository | `api7/api7-ee-developer-portal-fe` |
+| `developerPortal.image.pullPolicy` | Image pull policy | `IfNotPresent` |
+| `developerPortal.image.tag` | Image tag | `v0.5.7` |
+| `developerPortal.resources` | Resource limits and requests | `{}` |
+| `developerPortal.extraEnvVars` | Extra environment variables | `[]` |
+| `developerPortal.extraVolumes` | Extra volumes | `[]` |
+| `developerPortal.extraVolumeMounts` | Extra volume mounts | `[]` |
+| `developerPortal.podLabels` | Additional labels for pods | `{}` |
+| `developerPortal.podAnnotations` | Additional annotations for pods | `{}` |
+| `developerPortal.topologySpreadConstraints` | Topology spread constraints | `[]` |
+| `developerPortal.tlsRejectUnauthorized` | Enable TLS verification (set to false for self-signed certs) | `true` |
+| `developerPortal.livenessProbe.initialDelaySeconds` | Liveness probe initial delay | `30` |
+| `developerPortal.livenessProbe.periodSeconds` | Liveness probe period | `10` |
+| `developerPortal.livenessProbe.failureThreshold` | Liveness probe failure threshold | `10` |
+| `developerPortal.readinessProbe.initialDelaySeconds` | Readiness probe initial delay | `10` |
+| `developerPortal.readinessProbe.periodSeconds` | Readiness probe period | `5` |
+| `developerPortal.readinessProbe.failureThreshold` | Readiness probe failure threshold | `3` |
+
+### Portal API Connection
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `portal.url` | Portal API endpoint | `https://api7-developer-portal:4321` |
+| `portal.token` | Portal token (plain text) | `""` |
+| `portal.existingSecret` | Reference to existing secret containing portal token | `""` |
+| `portal.existingSecretKey` | Key in existing secret for portal token | `portal-token` |
+
+### Database Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `db.url` | PostgreSQL connection string | `postgres://portal:portal123@developer-portal-fe-postgresql:5432/portal` |
+| `db.existingSecret` | Reference to existing secret containing database URL | `""` |
+| `db.existingSecretKey` | Key in existing secret for database URL | `db-url` |
+
+### Authentication Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `auth.secret` | Better Auth secret key (at least 32 characters) | `""` |
+| `auth.existingSecret` | Reference to existing secret containing auth secret | `""` |
+| `auth.existingSecretKey` | Key in existing secret for auth secret | `auth-secret` |
+
+### Application URL Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `app.baseURL` | Base URL for the application | `http://localhost` |
+| `app.trustedOrigins` | Trusted origins for CORS | `["http://localhost"]` |
+
+### Service Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `service.type` | Service type | `ClusterIP` |
+| `service.port` | Service port | `80` |
+| `service.containerPort` | Container port | `3001` |
+| `service.annotations` | Service annotations | `{}` |
+
+### Ingress Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `ingress.enabled` | Enable ingress | `false` |
+| `ingress.className` | Ingress class name | `""` |
+| `ingress.annotations` | Ingress annotations | `{}` |
+| `ingress.hosts` | Ingress hosts configuration | See values.yaml |
+| `ingress.tls` | TLS configuration | `[]` |
+
+### PostgreSQL Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `postgresql.builtin` | Enable built-in PostgreSQL | `true` |
+| `postgresql.fullnameOverride` | Override PostgreSQL full name | `developer-portal-fe-postgresql` |
+| `postgresql.image.registry` | PostgreSQL image registry | `docker.io` |
+| `postgresql.image.repository` | PostgreSQL image repository | `postgres` |
+| `postgresql.image.tag` | PostgreSQL image tag | `16` |
+| `postgresql.auth.username` | PostgreSQL username | `portal` |
+| `postgresql.auth.password` | PostgreSQL password | `portal123` |
+| `postgresql.auth.database` | PostgreSQL database | `portal` |
+| `postgresql.primary.persistence.size` | PostgreSQL persistence size | `10Gi` |
+
+### Common Configuration
+
+| Parameter | Description | Default |
+|-----------|-------------|---------|
+| `imagePullSecret` | Image pull secret name | `""` |
+| `nameOverride` | Override the name of the chart | `""` |
+| `fullnameOverride` | Override the full name of the release | `""` |
+| `serviceAccount.create` | Create a service account | `true` |
+| `serviceAccount.annotations` | Service account annotations | `{}` |
+| `serviceAccount.name` | Service account name | `""` |
+| `podAnnotations` | Pod annotations | `{}` |
+| `podSecurityContext` | Pod security context | `{}` |
+| `securityContext` | Container security context | `{}` |
+| `nodeSelector` | Node selector | `{}` |
+| `tolerations` | Tolerations | `[]` |
+| `affinity` | Affinity | `{}` |
+| `topologySpreadConstraints` | Topology spread constraints | `[]` |
+| `resources` | Global resource limits and requests | `{}` |
+
+## Configuration Examples
+
+### Using External PostgreSQL
+
+To use an external PostgreSQL database:
+
+```yaml
+postgresql:
+  builtin: false
+
+db:
+  url: "postgres://username:password@external-postgres-host:5432/portal_db"
+```
+
+### Using Existing Secrets
+
+For production deployments, it's recommended to use existing secrets:
+
+```yaml
+portal:
+  existingSecret: "portal-secrets"
+  existingSecretKey: "portal-token"
+
+auth:
+  existingSecret: "auth-secrets"
+  existingSecretKey: "auth-secret"
+
+db:
+  existingSecret: "db-secrets"
+  existingSecretKey: "db-url"
+```
+
+Create the secrets manually:
+
+```bash
+kubectl create secret generic portal-secrets --from-literal=portal-token='your-portal-token'
+kubectl create secret generic auth-secrets --from-literal=auth-secret='your-auth-secret'
+kubectl create secret generic db-secrets --from-literal=db-url='postgres://...'
+```
+
+### Enabling Ingress
+
+To enable ingress with TLS:
+
+```yaml
+ingress:
+  enabled: true
+  className: "nginx"
+  annotations:
+    cert-manager.io/cluster-issuer: "letsencrypt-prod"
+  hosts:
+    - host: developer-portal.example.com
+      paths:
+        - path: /
+          pathType: Prefix
+  tls:
+    - secretName: developer-portal-tls
+      hosts:
+        - developer-portal.example.com
+```
+
+### Disabling TLS Verification (Development Only)
+
+For self-signed certificates in development:
+
+```yaml
+developerPortal:
+  tlsRejectUnauthorized: false
+```
+
+**Warning**: This should never be used in production.
+
+## Architecture
+
+```
+┌──────────────────────────────────────┐
+│  api7 umbrella chart (existing)      │
+│  ┌──────────────┐                    │
+│  │  Portal API  │                    │
+│  │ (backend)    │                    │
+│  │  :4321       │                    │
+│  └──────┬───────┘                    │
+│         │                            │
+│   PostgreSQL (shared api7ee)         │
+└─────────┼──────────────────────────┬─┘
+          │                          │
+          │ portal.url + token       │
+          ▼                          │
+┌──────────────────────────────────┐ │
+│  developer-portal-fe chart       │ │
+│  ┌────────────────────┐          │ │
+│  │ Developer Portal   │◄─────────┘ │
+│  │ FE (Next.js)       │            │
+│  │  :3001             │            │
+│  └────────┬───────────┘            │
+│           │                        │
+│     PostgreSQL                     │
+│     (dedicated for FE users)       │
+└──────────────────────────────────┘
+```
+
+## Health Checks
+
+The application exposes a `/healthz` endpoint on port 3001 for both liveness and readiness probes.
+
+## Upgrading
+
+### To 0.2.0
+
+No breaking changes.
+
+## License
+
+Copyright © 2024 API7.ai
+
+## Support
+
+For support, please contact support@api7.ai or visit https://api7.ai
diff --git a/charts/developer-portal-fe/charts/postgresql-12.12.10.tgz b/charts/developer-portal-fe/charts/postgresql-12.12.10.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..89bcc970ab5e6df5463d6a1d3c8af850698efe6b
GIT binary patch
literal 62562
zcmV)HK)t^oiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PMZ%dK<a1D4O4T3LJW7Tgq0Gl6*_}?OA7YDB0E;UARQqv$B(X
zGT0507&RL`09rER@f(~+I`4E|;e5Dt1AXU38hc`W$yh=IRfR&KP$(1%F=2d05&Jdl
z4d;;Z?h-D-KW+Et;Nalk<@4wA--CmL{J%#BFJJuW@cD~_7Y7Fi&ktYx>EQ6$vsZ_I
z0tZ{Bqx2_X9MV4>Y>X@4xv%60MiJqVV-m6c4gfynXh!I=4~`*+6UfjG0C)jsi1op5
zI{*OSfe0>89}woTISNBrs4MkBK>S-oyO{JQm`8Add!}Ch@X!m;1jEQXJoM<RR}M5I
zhaUPE6Uq^70$XU%Kj<Dl?;hAVj!IGd+DLL%vw!%an*;j%#SQ==_EE$HQwA~g=g2$i
z9_+vvzeki|67|8|(GHB`^iKt5CqOZZ0u=cevHp%B%qNQliFN>>C?*VZ$$#SGey>N-
z3^Pub-eI>urZ46z+W~;XnH)S1=r3Lh@y-x%)cx4~xDz1eQyg<yG*Z1B|JNDV)xWbn
zfEj=hATf#nBMJ2pAd_E^&pnDlDJL)lftC$$8<Bf~W=bfaD8z7rL(G=|MuDsZaKzD!
zV!rHx!SM805Eh3RMtmP&4p<V4v16h=!m|k6q9xl0zYrX;eL+1&_iP_<if1!KnFPx?
zp(p?`B|Zugidc7NP6QX{oX4!+Gu-L=WU+&N(b1AGJ;)g1tj9R?Z<#gVJ-nD%e|oZl
zcXV{{@#xv}ZXC^aZqf3d&_Ir#B~sZRJ6_759S^8)6vZL-CI5Cj;D-qlBEEn);t)rO
zTGH_T{2o%Y4^AV$y8}Q%!>k80%;(8OcEHH0mV$zatHG0S8(a4{MW`pJDVYL0sSF(+
zb;bV<c7AWA_3dYCKZW%_B>wG|aWt&|2hW}#71sY3&%UkykMZ*`E0VSB9Ez1Oz%#^n
zAFw$*dhxP9LFnbt;j_QKIyjgfJUe>v?5{764ujy?U#9Rdcy;ub7t^CxuO@#zeDUg)
z|KbILM=uYazc_mFJb3o(FGnv>urosuqL8DY4?0H&N6);2zj{YU*N3nA2Z#L^2i@n-
z{_^70%fBAJ_&=R*%BuFqn*Vn&Ob~m34M6SuKRSGMaP%ra|6e|P@ooM;#?KQlB=M5s
z*_^wU#}hCf9sjp?rVL&0G(Zu@Q;cXI3`T?D+Y@Q>?mT${{x?IuFl@k^kW63*Vo2cv
zaYUK;ItmeFXdgs`Bf#g713t$L+~Y6=<PK4a15u8wX8Qm~ewYL}ngLrs?E{}gQ#?zA
z0munRm})swc%}UAJbALC{uUOopiaWob-L2zztSqq5PU54nA#2iqu*p}v-vSC`k>RP
z1UpK?aEyG4ILkpcFaeXFrIKX;N=qA33KcSdy0fnOEe}ukMVR=Dr6J}gv{auj-~u`1
z+AYD~|5-+{Fr(oN4MWIMYR7h&FzH7^jWdoS4&IY6S)g6EXAs!{G+V4~liXnykY*LS
zFyZs`?-687*wi5XMPL_0+c8x-00s*ji7}^O*9Z;+A4&mz*lS0CfF=e52o_4D5cmn>
zWT6mo0(^=fM@5vTX<JlrWglB2j92Vix=AbcE&Wu3&eUm(4t>Oo<7lSjP9Y^zV2X|C
z>uD>cE8Bni6iNL8Lsq23h5TW!+m0ZG@F%onT`4+-??0hsO5H750vv6F$Qo=P_PXFQ
z3YP+A0Pg1~0v}p2@q^fmGsIW#u#lxk>u(O(@6cUqcl~I+F2}jG&dYy9y}ou<<yD;4
zx#GvDBC9Aa)-n^?DsoA%K4kqg=mE%!wN+h_Q1z{xQ)!jDfo6!_VIOs+m&p2H516h4
zL>*_usv4&nZAW!g*2>sSxz%ZFNfY!s=FU)Vl3a5~)ll8JO(sY?0KuiPbbd-Eh(?Gb
zW;RKpl~q;Z$$*G)O&gCn74pl8Kq^EuTxK?u+Ou_~ZPA@3VJH_ijuvq!6}+^#jK@hX
zJQPXWOybxRWZ1}ZbQpjow1`iw=@4l0uyUxhckGx5Vr_;E)d!%y2uM!VzG>MFi4Q{y
zBKpWFJVtRymS7<4EwwUn3bk{SiGBpC!ae45hdsMUSe9b9DNVMtE0SdvXlZI$-H?1Z
zgA)`oFbDz=s$V$)FbpLIg%JgSBJHk|ow6GC!Kcp!n1jq`F9BOV{I<|75C+9b1ScT^
z0fw`PFphn&AOQkeRv3pIO_PuzE}&$!&Pjk=Q``O4MG|gM1%FqN8&fhtdQ&hFb(m@c
zqd=KRWU&yxn+jUk0u-h8s7BKVQy4N-N00$F)c<ml39lf=C&npT)_ILi1L^A%1{NX|
z*CB;;#=t=QXDxK1xxs~_DUL8-y4uKI!m1S0kIGGB*HxRIOceo&rkTHao=l9F$0v&(
zEpZR`IGnMbC8H8zH{J3SaHSipViV(QDr;oE6`FB4E7li<yLhokxD+};BY;%E5zG-g
z%3!YmNqMP?z;wADoqM=6ek=&P-ELQJam@}FvyAim08hoLzF)H6<#1M@AWp(?L_+MB
zut0nRvHV!t&TKu$G4k<rX}40#IV*M;O_EvGU<y=$as&Z3CrKEH>82;WIxmx6L9-oB
zU4S`XVaYLqJf|`zVTA)V;~_NrYeN*wcC?By>hm$0!X#9B`{^LOhfDTUbRZjj%)nEj
zr5S&^4^YTtFJ$%8=>_2<iWrLcQw7cu`rCBH>0;6gh|hY$yzyoU4p2`WhW4Js6nTQV
zIGTB?%*@qn5c|N!rBGeQ>JTkl0%rQCy#QiW%J1K`L%<B~B4J#N$O1-*grT-?fe}u*
z>c-GV-F6-0klnIg>Q?b$5_qXX>WQAH&UrD#caS5`41G_*Klun3acCBRcpZ;LT;{A8
ztFhuVL1I{!BmwtQ8bf?5x2+5zy@KOtO6WqaWq?E=B(roRq&S-u;mH#)NcddX_R1K|
zIjS61l^vC(db;+w><L3$*wh}MBaafoJ!6Y|B=V-1GVal&sA@OBC}lvPgq|_-9~GCJ
z9XW(MX77^e9JT9_%d|Oee#a061IF+y0x;dQ$dRvd{&c}5pCfvY8QKRFErimAzK>XD
zK1@QPm5hT0Guh6y6Kn$dQp}2^uIZiXg40<f&#3XV+=C%>Q%uPn4p5NJg7WQMj-=N9
zDg!pRHO%*LHJ{X)J*(}}N?xjTUb|b_97t=w`Oe`NnQFT}{q9IcNxQx*yh&?S;i(pp
zJhJt8Sc0m&@7waib*mh!`+0BVzBJN5RB_}(IxDg6x2PUtIYE;cOetBYNvcTef@@&`
zD>4`ISOSKO7%Q1crrx3@_z(s#PIc=C!OpYe!ANjVZw0!lPIrQ%;3jTEPo5aHs$vFw
z$n=W3Q{gqqjl)AaAB!HQ27gjDZQJ$}ZjrPH^69NX;ZD&XR`i9X;b=zCc1qo1&etl(
zm{o3rE3O5m)oUCg2F^(mamRlt-4#>$5l4(87zoxSOfU>a07ZA0l4yY<4(=euV%As-
zhXdWRq6`t#pJR@Eo={{n+bQ4uz&MNo7?KEm0EB`MR_8uQ4~kvC53=e4)s>|^jghK?
zsGdA=6{!V8j-HKIV6o7;R*ChY%a)Nprz9c?8<NEWb7_ZKrE+VHx%6Cg!5|FDJqq-G
zsSiGoNa#mpl-$5L4wu&7_Y`v^{+8aU4@zy4>GVS-IZ?70XSg*l7`R9l6GX*GQd1<)
zRi$E^!#m_qYy$)rgrhzfN{5lqfit<Rij@jRf>0P3EN1=<g;0Gc+fCfx-`lQQLT74A
z;U|=$i1%m`alAmD8aMAAhTS<|giqeQ8+zlvT@2q|U0z(i8+*gc^Yhc|bf)Eppbt7^
zIu$CmoE?2|P{}|s1p0TWH;e<(DwjK^E_lb#Gzpdc5!}JZmu|DHmNx3sokb3EA1szP
zR+;0n(}wk^#)q9&lKyAqrn8&%-P2X@;`y^9wV??x&xm{SWE&<v6hLugdnaU3Hzc#S
zgmGz5osk*vLo8IsT$i!32161>%0s1mmAXwxW*(MdrZjV0ilsdyGpVu4U>#%TSA!!7
zXR82=XOerOBLb4!QnXTfQidj|s$#>5BIb^79@r3aC|XMf>E9J3U8m4i_2C>x=ZG;l
z6PjH8BB=<`9SY@+cMd7aywlPqEn(6bj?jprDgFqqjqhKGwS<Ku1Y-4ZH&8AVp+1E+
zV2JOP!Mnx_^e+-2kp5y!TLDqbaK_;xW@^tDU@m0Ul9bFL>q>)D?v8BsDPyY%G05{d
zQx63;_5q@lP=z65i-u%%&740-`?0XhXog5rGUv;d4RjE*sCs-dx;hySu1}6t^@N7t
zR4Zn&3fw724FuCfEL8g-R-Qv)vOLu-@Kdu^=aDl+?+^v2BLIVdiVZKJQhk|?jUq?Z
z>gF5E(=nk-gc_C0N0e_P_gQKb04D_iN^GnnC@Mp9%si7@MM;e`tEPl5%=9_F5S4@(
zUg%OXb%DZoEtq-6i_PKj#frQaje^Kwe*rFzg4N;TC};sU-J+}kKEAJ%8r3UsMF=-c
zLo;*GfP~$YPH4$)To8Iizi2FtM<pntQ2Z<8r>sGIU)&2<was%wk#z$(rz`S8wH$Cx
z@g(7>mggGF6o<kjSO?E**|cW9I>dnNH%`C;a(@osOzdfSPS~B%DTk_1>%FoXL{*|U
zKytnWMD2{k_x~xG4jl(*0kl6y3uJt+a`VhS7>Hu9#$|luYNNr_9L5X;D5l7V90mX1
z|NH+GSjR(V)MzE=tU6$fQb#Z+dTS4^&&B{nK3&GTA3LI5zw8)L>9#aNjhYR6Y%c~%
z59vSDj4^*m;kW*X?@b$bc%4!;Jf=vpRsX?5y@jkfuQV%xQqJ$L&eW8RB!87`2vw*?
z=<n>G{a#PlV1Mt6?)|f;=>O0Kr_<Dtw4a^|6Fx^&LC*Z&d8dfB_pes5_l0bEl5}C_
zr~62XbI1D`jAO{*F?M$9^3qU%DVUNlkOt09p?)8f9YczirC7$oZVE;eg#-p?ctRn?
zhyhhB#6XmTF#WJAk9IwV1R##YCnim!ohF!l(1~Z#29o_9b4Z=j#FzxTY)_hSB;g>$
z3v7<<#TH|}01LDrbSW3_AD6&bXzGwnZWvP=J^;JYaYY!zlW?hrHQPt%-51+aXuyYF
zfbM#1zK|38!^`LAAL@<;6iQEVWtsB1hZ#!{>peewS=TzF(*9MqefILjbHPnEU#Or`
zcR!vM=Z!72i1|{8%bolzR~6H#yu(Lvx)2&r@bhQL82%SJ!)D7boqn0Rfk1rLoYaPs
zz{(f#RBZ|M&RTvDRkcMXD*#{Yp;@ZzQ<gksdcYOrGzeHTBqga24&UH(gPfJBX(e=F
z-e}#?Y9{Nctx``iCCVwBPO+aFvCY900uW3%d1J0%0P~wzUC088)kU6eqHyXlJd04E
zXhf9bsaSflqf!S@6*i%%5gkiCKE&}{=&PUSND90a1+EnRQ>Ku~dO$Trk&hUlP_>vt
zHGpcr@H9KNEutxr7(tNTlboX+mbfJ6kh|{dGENj>797h4^=lj=X(tS`Hgby_S*NOY
z#Y#v&p=BwsTeK_%Xw|QTIUHml2h}9Hi<32V<w|7PDN;^*<MEjuFa{<|K+&%WQe5V9
zv;ffN-wM8}zjj}$b!&n6oCM5Sy4>EBcbJB0Z^bWWoTY=+>HHPCBifgAhFKOylmRFP
z7+PEzQM`b3nTzR(RjE7Ebz!$~?xjCu=W4rXW(xPg0x}t}5+WFgf4kjoszCMSQdPAS
znWKQp2$!*ZZY{YL0XX^v`8u|4D8HY>cnx<W6HBR|^E$fYX=5)8r|C&Ndpm){rtWCJ
zlWR}s)bQGUkP;csy!iymeq_CntHTo=Y*8Sz4}SAZ*oAa5OQTO3el*cC2Y~d~rC(${
zSyHUCSf-+~STeakIsEHU_weOkx(D5Z-qCZg2wtS>vxJ-q78?zzYA;}1sy<U;P(H7+
zK`65O;_~{W4?dKNrFOYj4|L&dFn{8g5?s?YE`!Tl0Xos8jhz6y$^oM8H_16eXle&K
zRrgBdYZIq$7?OL>c#=I%yb1Dzb&CRTO3A{L$4H(uGd;0}%J>#dnU?_)G-hloVMe1=
zoH(u4mkxuyg_x8Q+9(YLLbI-&MwkbaMt!hJl#z-ZlhJ1qnFr}CS%?KPy$UAF^H;G<
zpVe0tmuklvD#}%8l?^hxlt5>!BzQjuHzW0D7z(RB3+U6~9idqdjeE$Vf>RhVs8+#{
z%xv^|z|Ewnlot#fV+l~m2AP_U>W>D3p)zpl8VG8|qDcfG2Qu0TObFqou{Pb6@vfSr
ze*>^s-UysG>Pwf+O+pp<Rs8#Z^(Hv#vAI)<{5b)gV*(fvMhcE*-HvmAK_dd6KDS~+
zHgR%OsAVVB)VVI+;rvjJ??VZ(DdyILr_F5rPaAr{t}r;n+J!Cio1utdj_;5iHn>;P
zHy=jep3qwWLlVs@J138{8yH>2f!vLo%I?cW*9c{9lBB_4Vx#&I`O>pEN9B^8h9k6?
zy2fu?f!7YxYlpWO0%kNV0^0U5cQ>B0)K1M#B__zk#Ye#;{U8=c<@M0lJ{0IoH07EG
zd`cKIb(}+8=|E9?kX)@fp3MQggE-U~Z8Yq^kwk%xkXoYC$k`J6Ck<SM5x1NP(zh^0
zP{v0{NmjO68HFa2sdT~A>`1ru)}C0Ss^+b9*gD*l>#M_0dAvk;EpGkyTVXC<&k>Nn
zWRVFf%vR&nu1g0;8{qQP>RQSmT^+c*sx0AE_+0_8I+4x}3wNEdN8w3y_a0KF?-j}M
zREuX>bd9>76G+i1F<BxKXpey92C}hOQPpZs_WJU2CtWLK97-Q_CXjY48!T&`zYAX0
zk>PnUYA{<Vto?1;OVK-)_rMjqlp|(%-iohPfsDF*d-PN|U9z2ox-695f3u8o?Q%6$
zb`up$BF|vd(Z4o%)IEW{{2ijIVUf034MO?7H8y3p8C019*7x9I<%q6eTV|F%1tGpe
z5n^l~Py_=ke$|<|AmvG{FLQ0<{y|o5aC#|9Powh`y518Dh($n-r3TJORLMI;osXbm
z<DW931$?n0Vi+Ey5H82aCsDxU)&Rp01fmcyT`D6q?6xhS$B1GQ7`P+(*G2$2ULcZi
z1Myn@xe>@I#9>0w^_(I$Ct(0ys{+8&l6AncL`M8)V8^PU5v)wzXBFnw1nursd#BvU
z^}(|PwKUj#?}I~C>N2knUdYmX|NG#jG6QoR=!3)3Zl~g2DzNU?^&~cjVKtF;8@GYq
zD734CY$3L*18pg|s{?K+x+Q?+Jpj9OCE<PX=(4L7bgAUp-`0~`2l{GKYd39%-6*lE
zfombHs{w2&sjC5PDWwIV%GyrLDoyUq_3L4Uj2^yNNl2Bgbmpx5L+zk)3gt0gmR&+!
zuvZotiLz6&A~@}tsX~3_>Tr!ar`cCQ?gDJUKDOtf#_i0_RWRGYD)EMRiu|P?qPK+H
zvNGpiK>^53lR8^QIe+;CO$kL}rwXTH%c^P5)_NORMpFqklO(~MEh?K<9?ZA2WvxrX
zK3T+xye+FUFZ3#w2K~9K@W@?mTBwn?Vo}xFZs40vb#=gjLL|#jV4@JVipY<X92Qa1
z9)(=((j>NGN-K7xj!uKgBx_Nf=!2sdFVC?q^W#Jm94ySR2V&!xP|TNN2gK1wzKwkf
z(=cTb`pC;iJC;gKR@Ar)tD>RJw`pqzGi7fmNn)V>dwQI*IVRQx(|ofk^Fc!sn)l!^
z-7V^=`1`Rht>3`JOl`DcXC+vgL<4m}S^mf3YT9HCfE5F^3CIf)$>`oO;=n1`5V&-o
zjwrsvA)28R=0lYLTq3IcxFJ%8e4#u?luU7mx_lX{fYh?`4N>_pR^DBVST~>~mWYa_
z<!DquK`G>_iIqxJI<<6}o^J<Pi5^0$aTUXDtIB1PQH+9DeQ>1$BXr^n`N{68sVsV&
zrN8pP;OwlFt8>EmAjFU%=lIaLV`CC96KEhSDIhf}!Y7fBV$OOxAs6!^#P12c#nG$>
zgTO-(rx?kjX`wz4_dS7tdH0yl<*%N`)iVQR5n1VE6Ll^WCOZ>~q+L^BWkNB!rWkJs
zcCD*j8u*?~h(=Nt<z~}zIvN(}5M^7T;dC^t!>=<`ox>QAshzJXNUvmAxru7Ag<1Nl
zQrD)P!pizR-zQ6)Qa@%cbydY0dDh$)DWr9sNWs)0vdP!j@(H<CLz&ObRfTt|(m=`V
zGQ5Io0P0#Gmet(!1L<h!O6k4l;?-70rd*wN&LIsxv|IMGIqlC;kjPv)=uRE2_n=Js
zA?I>L0@QngBaW#2+tA~|DDYs!aav-t$?1P}JeOc7$1S;K<N5=#tiXsq5L8xfiUgLt
z2t7nU#D5C}i^3eW6$jVFn#w>Z8RfDb$rW;o!<?RbtChF%yuF0%TePgCTIw(vo15Mr
zYDKcaexlM#%inKh0#0|_&=K<Bzq|-8kP~5YTbiu1rV~1USbaZqCDWCb>@Vw!9*Hb!
z#sjJ=hsB~JyJKbutB&7{l$h?-txiD6^dimk)p~+B4vpf}Xqedg;z8xQuwSnT_jM3N
z)mRp?rO0DO%%95PNS9>YrgFIwfX66AJ|`4hq(V@;-mlD2%l{(v36lr~Q*Di6$f%^1
zlQ6vrer^5!2!k(n6I>2-Mnp=yMOUTBauSn}%$DPrA{Y!w#5ff&MNiZhpgsZno9LNb
z{nB0lrfNYI7PBNt78L>)B$^q=s~5=BtE>x7%9ErjGOyb5Ls-ZmfdT6YzKZ{Nrca)t
z$@4SHdryjG-jv7{k!5_V;7KJHV~UB~&V`UM8F?_$B|zoIx3bJ2=+7HX?*hO|Yelb?
zh)T5Y7?Q~WLyl+!IRfeDefd}b=rB&`ZD*xqe=>Is7DMUjA+;PcizMVY4w08)%63x@
zZIwOXh%Rs><@61OJ{md4C+RUtx&0L(6sXJ%8VUk40Ys)4UU6y_MXC41BF-aIS4`^Y
zuIz0R2auyNr;wxBvS4)>JIdZQF<n_&2W@~-BC|}slci12b!DJn<h<q9?U8kP>63^H
z96~TGyuBw1p{IL?vmhI{H+{=6y0SZ_d>?j6rG}OfE9&0fxw=|cl2lWLwS-v3qro7+
z`tiCuyI~uDw0)B>kGVdiO4VG4yjsd~w;L@?mE<rSAYX>51%ZuCm)l8*^-i@OFL*6<
zpOgI4peV$siPb}A5zVfDf$aUo?0fFh$V#NDa=d00(md@ZPTG3rk#ZN0^mW<!bo$`%
z=-KmBuNlItm?vzTVaA{w3&q#f`KJ@78XBHF0WOvT7X#v@5#R+DP7=19kdIk;7FzZ+
zAW!$f)3oi=e;S-Qgtd}9BEdLDezhc<3ag2&ZdH3QXY%_OFH`K~viFyWy?z2f>SZgF
z{8+=(Dmb@c(`lkkM-5QhzDnR;U$EX6D5P{Uap=NARxe}980(lY<i@D`b3&MY^I(Gb
zJwg%qU(XH>4i3C$N3UMK`i}<Eg(X}_NR^_^*}4W+`#pb&3s;x*o(LYxy-l7qDNSYU
zsoZ~>9{Fa_z*yd*16hIGbLhlHa|DABF=hscm0jLQoAzZxn@H<ZBS|YdIdwDVu1&!e
zScgxn&_BWuM!xL!8G!+q=)b|~NaZ5W1Yf4fJG0t+NN>R)m6F8%=r-j<KJ7|{0wj^N
z&9*2a2DH3@=9w<ojB&f#Vl2={1@c;5c-KkR&5@zH&8Y(bPDjcwMDL8MF<on6T+65v
z&q@WC8QC(|o@WSg`zG^=OImg2Xho8zNb+!OcfPbQsoGjWNX8QS6^v#`E^8DqhIBST
zNRc{oGMj!g{+Ky(VbE>Fnsoo+ha?F+eJO)_Q%uo448z_NiWsNZ=bi>5c6p*JhJjwm
z?0ND8RP{EU>K-^e=&Ju6^p2ia$(Yktt&|PYCKflLz)$4zm{aEFx<WfGkU?vKnjyw8
ziBg}{SpDrfv8<&~x7(LDo+b!%gvRR#o!J>m89W`ObL(_!70TE681fT&ok~xkG<YU^
z%7d!w-RAsAZl_7GU4?OnDNkVN;h0JHiT)r2=_5wYU8Ed;91Y)+rz&<{OqkS+*7s&p
z^C#CLy%ksn$nsqJnz?=Z3Sd6+?b*RWO@}m0YqfZrTk=3mNsK7ZF~+QnX7#ORhpFi<
za2YrB{R5a=^3tWZLF!YAD$e@KOiS}nVU?X|Rj9HRtt$DDk`jzEQIU;SUA-8+A38I)
z5ChPF*IYCYAzqZ;dmg<XYWI_?A*^;atD%i+AvUlh$mcRlD~39+q|UBm=C7=U0sylM
zpwi)7dFv$qZiypfDbCUyPA!OL$s{G2B@?Axh`Oa~QO}7&1voK4b%s|QfdJjvm$Ou$
zpRf-{@1>j?A6VW*)N!Q~MSm+EJFjetq0>)n0_%;<3fWRUu{3XhrZ_^uzVq^?a>e~G
zyXZfxHu}kvj@Kz`*6Hkn`#JXK=D{Tff~9=NSzU`1YDMif4ZI}MRDfM85_C_j78+HQ
zgyBAjNCBPPF9OUm%_ff@<VMCMbu^KsDRxA=0PN1<BOq3=pU3+;KQt8smO*;+)5*U0
z4E_hWj8Qb^(7$ybc`H6v+B9^^&NwFlQX@A|@z0_lKW@%YDZ4#uY}Ba-t`H1<rkJD4
z$Zw+zWFjeBXs*=a+KgVb?1R6&!EO3kvq_OAimTDu?MQ3{`lRP9JMbw1>x7FmGRB-F
zrAJCxLPc9u=3lQBLW`L?_LJ`fRK4q#uGadfD3dgaMaP8LYc!1GK3FV;b?dIp&S6ti
z$Hc@}mZpit7Q-*qf!YYzu(QgwOJk7>YH_(jqD-Z?$=+4krbjsK8CMeO3%njRcneE2
zSM*8pQtI^PripnqZ3~Ne#t^+)q$KI*wbTUD{2M!uu@zVLEc$Lu^28E4_MxEgeV(2P
zn!`Ixs9I;O_e4}qIkV~+8pXaHGeA+0_$aW+&5-oP$U_`$O7bxZ5wE3LZ6n2Y53#HR
zIa&h+CQqw|o)TM?7fYT}k|<oJjIokh?vngd5BXOD^rBUKl)z4fpMNjFN|ImlwhRoi
zwERw{Ep@|3=GtN*yhCLvwnX!4Y<5b1>lJ`Hc383WS=;<w7zauF3`Rv{-;x>SS-GA3
z02!wrJ3~Naf3}n+psZ)ji2^FA+E%uJ7GzcA3vft#%%lMh;x8a`K*qwaJ$Hb^*|if0
zl<}i2nr-C~s6nwoGJzVX8)X!zfxB^9fg0F<_}l_Hn_}$*1FK2&L**H$L$XP-fjYRG
zWgMu3ym{JzI_Q7=+yhSU*GxdLnp{6b9)fBF>n9_qhPg>bf@-LnrX{F`{D;p?;M$On
zpP--w|6^w<C?VnTQWfNkgQk21CHmq)GZxtU?#IhnkXu*QOkA+4&9G_yf{pRDPGeAs
z>5r4hz~R+~*$kRs{h?DD<eUUs&1=vO_NvJZR)D%vhJzL0u9@bb9fpU<b<hs;_7Wbn
z!}l%g!5Uc)9M)E(KFAh;FF*M~p+DQnfKbMbwmA?AB>f(V5M0Y|#cT+*y|2iJ;CgM_
z#S6QFmO5!`vIgWA+t#@eYP(dO9U+fzjT8w@nCp@x6wp`R{dZXT@0%;3I9_!L6LL)Z
zmNKE_$mk1Bn&2K_H)l?$@7QDKPH3V&mp~y${FjwNp{Xy$JPM`V`EoNUxT{-JI)$78
z^(~=7NkWB!$h66-upwhN%&Xv#+%mbs!-&G#=@oKa_?BZ~{TvIfsj*g~g?iJlG1Y>5
zu<+I9TX1D^)uaoq4foZgU2r<xkb5EPV!P}Mb+9W_Fq9+tBPU@f#$G*GCWaE1`bxPN
zsz}{hLI!6RwN1(3>Yq*WGL)kKx5&)k@Nm=g4CQS6@)I-^#e0)14Yjgdm#4u}foo)H
zaA(6-(>0WW{)%!ol+yq8CvGV1))$byp_HzbU9u}DaVSOmEt5k7gZ^#PIW&sPx10`J
z%IQ!gcdI6LsMQU%sU1ow_?F*c^ZX8N82j&*<e`)&Tg>!OJ`F(oTo0Ckx<R%F*Z<Ti
z<wJ&e^P~^e=pQKaLnXp5KK(-_<zH|Ph-#WwN(7OUxNoT-9xoL{<p@4*K8R{T+Imum
z>K<=1Gejkp&C)|u^XZR}Bcif*+e{R3l`5M*WU7dA9&SHhM5eRX$r!OZm0w2Mi1p}x
z<lGTX@`xXyf1AYiDa?~6;Ce2jB2*2$h(n~U0>CN0!!QIPnPDG>AV?N5@F|IYArr$#
zljfnDg3^Z;3qd^AmX+8|srkDEvjkEYafDb3L%@wGnNhgN;9v$K!T|&<f-##D4g{V+
z9?=M?yN5LBO`v}(egPEu<POm#n8-d#FdNQN(NpgiGGV<P1=LN3p%LX~jOdTUuN<F1
zhoV^$LK-f`@>`e~n!Wj%tdZ%j>CtWK<1(X?4sCjZs`RY>qYpa&JAhc>u7NK&lTa$g
zOS_k<5f$nxZ)3i+uOgu8@lGKQQShH+!ro$GtSry)0`nT=<qaf~@=xZ1S~Y9c1+{4s
zu0Te0BW*NSeeQ#24dif0#cF*lwv{+S*|~NlE#)n=0a*I2#1_nv!Fj0b4yGK@*Eqs#
zj)EF8Dq5(si}G*HWKbk~&?u8mJ$0~am-NA9q_1Sw<7>X?Gb+@OE8>un=s(G%r!?-$
zNGfjtX}J1mru+&}*)F_z4M-BCD9MfppR%$WL9I-l74HN+VTeobaQ=(*ghJ20dQq>a
zR=wnt@AD=IDn@CWDD100Er!dvOtLOs1cS>cTnZ4cafsNGakK!Z%)Jx?FlQ*7N;}9t
zJy{W3<qe}#1~3OPVGPTal>nqZrVLi6wIDW)*_tF&-9u`_Z?~;|OuH%-<+qdC&|tR|
zd=ib#DqM44sr-IY*$t)2J4)?tDX9bsMUip<m0xA5xy)34ohg5zDZA2CJ0>a<Q3b=z
zXHEnkG-q`TL+aA#O>op>^Ym}ePk-&ivm0Ry!Y~A$=Z6SJ!1M6blY4OnJavM0hoKjX
z1zH{^Q8DX1@7IKI<iRlXa3FRHQ;eu+5fLwjjNKC&08b|M`r*4zqc_Lz&PO-Lr&phQ
z8BXuJT^Wn@^nZT;H}Cs}_kG}f|JM8d{OMjdo{2i0oqG0YKSh4MRmJsAiX0@{uaXC6
zeQV)V$pLN~53EO5ucNuJ)V6C~ZB(!m8Zgc~IJ66{cm`3h`((YGZ+xT<5*;_rhf&$q
z^MlR+SWN!+gYq4QBtjqdGBRw}>gfFtEE2}SM2rrSE}#XB5*byaFY)J`<r9)bLH<~y
z+(F->*XGiAX6VVTV&%rYMJVpbn^SiLi>=>+-04#S27-i&-yxWzaG|%!fW$h!xeLw^
zywkAIBIZlg16@x-P`L@DWX>Vw&Q{y%oJ->>y=&nRx2%Y~8+<)S`1W1l+jfR)mtq@d
zcz!5K{n{-C!u4z0ZtcPWUD1hM>cws|`gLCHhH*Fjb==u)I%=t1fjX~hYmXvZVaSfu
z<bSdQsO(S*a*#*n9EwT6J+&gWW~M$58@D(MgFJ)UbmUbOvD~?rgz_3k2=GKERTN<E
zGW~n4o#h4omet9umBtR2HP0OW1AQ&(*8~YZ+##BV@N%NOZ~>x{)(MURLHDi<?zavz
zL*i$Vzk4=i4-0*aP~DnK(G*b>`KUKTk<jKSu&Q}5#=X14?$JT-iCXwIOT4>7Z-F>e
z!z>oA0C9*zW}!}hb&ew(&#At=t=A*RfhsEwg23Dtmws`K<fq7P=DH7^PkFC`xq6<$
z(qtCgg;nqth*RvdCb)_#sxH`#sf@!#iHQTQ1s%Z!VlnhHv+M6<@(c3$KfyVPFeh>y
zPHUyi)rMIYT+b0p%`{_2$c)9D0B!6p)wSr9u%{WoZVMWvi=>9SSY{Ago32qxm%OXh
zHN&LQS7zDD1#K2MX&s$OGWuYV((G86g@%@$Y-6za&=$7cBt1Gijb>CVkylBW2_;sA
zvMlenc8A5T+12+1)uJo*hOa4E<ONo@05l18lB)&0t$ANt+PrG9mQI5yB?}-EV{_~$
zA*6s%Ji}3UQ#xy;|Dr<V75$i{VTi(lHQC!LA8hZc(+~xrLK?C7Yo5h7ro`>Cy^VWX
zI)_FiV82`Ul-p<Hj_G7<qJ}w1cJyOuQZ0veXTFr-C^%$opNKt2>-2y-TXo0sW<|9s
zC_z+E2QCUVYIzJrg`nG+#L3oFWmT9ho;#R5Ia8e?klrt;=85?!gdOC*r(Hwo%@(I`
zHd)13)EddM&ww}9Wb&$MmU;UjlvxeE5312}U3)~OR@39{Yql+Pb7kdL)4{bgT)q#s
zlB>q`P1EHt55E>oSGgszWGq0@a!8^`?S|MjInnnvjCMnL<rbhw>@P^dXGFSk)CCVw
zAa;q$y{4{9>;v@CN3n8%9AAvVuDs6m;@MuEiEoqFEax=It}~*7xeAU^Brn>U4ysEH
zs*7DG9K|P#7;>qOWps=5#A;q-u`mK^CC_p@fnrEG%8OV2l2=}|v|w@K#N5>gRlP_x
z3zWH1mJ=pt%d7*OMu;x34B%%a`{vW!4b`khUwl@60t-YR4CgSKDfuDy@;!$r05f?4
ztNlK4K4@*1?I{;fOmM`-Uz~ua+1Zyq8h;8%q*5&i#V05%qIU$c@VU6=+r3j0!=J0`
zNvm|A#rD5Qiwr^UQZ&Pi(`Am+y1o}%qazyt)1W2vm@q7zZtdZlCao}VIBN}B)ZN94
zMZ#4m7MwA8?TaFxEEe(wo4r;@13W{Fx5lfh>+4VVa0%EP9=&+khp^l2cEKn_kRhQy
zgxq3F%J<c6M!v7C1Czj6!r^e%ir6^4kKUSK(L`&;)+p4QFKjg&Of^b91&j3P%ZOPY
z1jN5Zw2O%@H{#I;=9&ay9-E_3U6SB%)(3}&UVtVTM&99}M_;{C3Rez8>Y<ITd-|u-
z3&Ld*qU?~b<f1r?0F+M^k!g0<Uw1sU$P6RQ0a<!5W=_hq95{}uErigB{^*1SF~xUK
zrmI#=G{=tS;(q4$$>?`hipBCuH~k4MRfP-ahRoYdQ$ry)_>Y-`yC|E5MBL4ynG$T%
z*aAV?zZFoJHY+B=wtQ_is;3pHn$?vgby!L6BRkv_Oi36ZDx-x-gtU*oAzW%FJsuI(
zjy#S+A-ON%PFq-&>|G;v%Uw`6f?pB3wM7gja;r39^LFr*1uoSkPcFgQnAO;d5wg-1
z*Ca4rD?71mIbQNPqF_`o7BzqL8QqWSh$%C=hEo6PHAg*zq3?sHr%@*#V?^-+MI45E
zJNd+6y1K3{bd+`1R$k!l2~u+S`$fZSM=lczH}uuLgIpYny3N=sOug+}UxrwX(WZ5v
zid^&6{nk~>SDHsa{3Qm1Oifn?<vp>I(kl>U=4lR>d^_@5FOun%3>S^zkcl%8`iLPe
zb(5wQGZ{d(51;~s8AuNY^?9R;SX?Yfq#Rt`X%dFAvXenBeT6cYbSp=<eAhz!=F)mi
zZc(J-+nId(LZ3Jnc&93oNME6L`m4<cg?^|mtm^;@$xmS_%8Y=fW0>VZ1VnNvLdwIG
zFa&=33j>4EX_{QIrUPj-UUm0Zx(Qtz)2e*UqQkQH3{Vm(b(L#rUAvh;-w3Oo@>imf
zkPGq4k7lxqB^6VXBYQj&EV(E2Ry}e$fquVMWF;PI`xLHz91PX2T!2b5+h&hZQnMx3
zW)_UG)RXy?P)5iA$e9IJoitIL{QC~kNxsI+5MT;I%u*K9bW@&xGD8Q&uW~;|Z53p;
z#57!6mstZ7v)GKw&vPVoxG*_X3A7{SwF?LQJh-|zy?E0vep6SRVv2lYQd?;q?hd<0
zhd_E~<sK@D;2p%F-g3*&FVfFquwxb%$J$wP&h;61Zqcz0a<hKs&(`I8IsjUy)G{Fk
z<=F~bvvD`ja@%$1HR}}aiH2LZSI+}XcjzramTu2opkkxl3fjs$au<)@Sm*E6KhlQV
zrN!E2x9WP;9=izDY$(%&|J&X_n=}KSC6;<4eb7C8-aW84(?{R-(vP#3&dGyXM2#Lg
zmLZjPE<e4<>gpxCYwOMEdrA_-A{3@We`ALJi2xbRya?TU8kUSZmp5*vcqSvscPuya
zxuXIBh-Wv(&uy(oG9;`II^&bGli@W8x&f5w4#8k72X7w?2jdg)^V^dP0l|kHhGf>A
zLzY6jNw0D2rp@=k)8XaC#mVsc=^nVwHMS_ZVfbHGvpsNfHa-Cd;N;?1P$0hEOqOEp
zcztzwUI7Hi#86ajo+a(VmckL(eQHd_gQxo-{o_#lVfg!W&sx$KIhJLv`2J4LyPhza
zBC&He`0?bdlm8kZ=2IN&*S77q)(y=a7f067N=$DC@7|m=U>f6p6)*`-NXY5q*{*!#
zbET%Mr2P>1$*Qk^k1Ezwzz|wl^ewzzinl6pXz9!1Cg0`g&CSVwk1nsSPp)o`Psf8F
z&rWWRPhJn+on7CYpIl#^4#z2n&Aa2mxNdlOyuRbkW73cEaMvoA^hz{Z%g4Po?sZ$d
znO|w_zUr|mT2SudYDa)_Ic<dk32F@z>^p@U6Or9DT!D<*H^(+1sS5CF<W*e=+=Q|c
zn5z+0em`&%k_r&pc?ADp@0_)K)W3<lU*q%sM&{Oj*}tACEpTn?dH-_g8@%ja4sfGK
z{mVga{GNX~*x%<V|Hpgn-1M5R|A_w@!b>0MCI1Ten>^xQ0dlkV`zwHM{&ar@;6MJW
z{ifq<KG?s83_rxH{iU$if3Uw4+$L}Jmjc}Mnf_9szsn2#hmZI|zw5Ai)W`W<)Q|lx
zzl;6xp5!lV4AdJ4=GtC^GBDM$pcVaufotenZx|T&75MAnUtYCxOgv^BP_|I4`3!%p
z#%w^9_RoD5KSR3~zBPh_#%nw`lBz4`IgolWN)I(!y$_O?oI32AzIw5p<mx8XfG3~(
zA@`AoV-KpA1Dr_bn#VKpJ<DgQAF7;!+PR!hCO;$lPX73q1cCvSBvIf|GRe|TzSj>;
znk@B(Pi;A3%`w9hCtpdM?D6@&+Gqah6`I0hA(=dJB0~_o05h4dQTE%2Ac_JRp=}do
zhYFbM87Vj!qT^E-+y2#Jl~_Km)cN!YbQKS~^;6;VXYC)i2)~pWM6$R9eTles0_r*q
z^HA5yhcV^wTp1NBjR(<Z9L-YB>0InZa&1=DCSk20D!aa&-2uzRb`&Vw)yrJ^-qaOR
z=dmdWCn<G`qIqf=s^rTmcQ6E}<`>9y-V(!+?4@)iAVK-bp>=ZL6N(7yWuoH|&BWd$
zB$M6(%C|j^iJ!;-GWEi0jJu2ANtxstBHMRMQEKd3^RG%rqk1Q`gsdg=Ge-d`e{A9b
zyX6qszHj<Ey%jZNo?e%iB2>7Oyc)+yUb3?HHk8sp0hlZ;X}8I%Ohi@1b92+rnmjmS
z97e^I1x>6r=j}3W5bJS@P;UWol;!&`4#E?wEU!yIi!|94-J(d6ET8PSQok!Vr&7Uj
z9Li^)nLP1gCa06pD>iNmQpwfW3iPV@$|B<2E@?puj%JAE`A`7co}xL42-S(!O`wHc
zW+g7w=aAV{E1L#Z+m#gRFJvNH6`~*2B~cw3$RV8}o;_BjV)>xjMf^f0I@~d`7do3d
zgC&b+G^x_l`d5j{sW?F<la#6`=xWLUzYiGMS1;45Gt+&Qa7Q*1b2&gUk{NbD*C>BN
zL3b!7Mt$f)wYqwuwo1lQmPBKd!brb=Yj>_{*>!8>mtB}=QO<x_dtuF?ty@@g6g=d@
znxkqZEuABCt6DlomkPSfA#^1`LOF-G2r%iwQ3;9EQ_Lz2yb0WtA;B^?HMd^tGm|Z|
z6AJe$VTgnw`8Js$eF<71KZCQZ5)gYl+6VFMhGtc6LOA=R;r}4)(3s+gPeJE<W`b}!
zU>8Szm;?xPO5>F~pt~n5)6bv>p1nLc0RI6FZM;*lJRC0UqOj~vCqs9LO7q^Qm}4J?
z_V<Fhowjo#M6A9^sr~c`G*S;fe|94I7zp8PChXS9QUDNq`A(^j&!0P@_M9Ztz6-BA
zkSrFEF8l7C^^Bg?0qes_6EORyZ$JMYKiTB(-Kl*c^XF&*yT33JZ3)N0!NI}H=g;N8
z2L}hae-95{J$v@2!{;v!UK|`8JU@K#r-Q>62d`fK2^?$*f9+4gIHZ3%*cey7b6?5N
zryT$~->EV0^g&0MBmG`ajJ~HOfzVk`{raS{FRJrpj6_}K>riFcb90?O_$0MS$IiH#
zmRju@r#PC)_NpB7P=2tqngb)PIVE(_QRi1_nWdZsjDgN2a;H5;AFPzG!Vvpl>B|qw
zH2A!)=}!2(j9#n1F1>?<&r!sU_I36!^+cDjO_nQjO7lTRl{numq9%ld2xe$p%Jkvc
zKRRZf|Dyw7u)vY9V5r+D&p??HSmxT%DVDX}Pywu~?yTKohW2GXT8>PHm^49dNc>xU
z8AZmV7m2W#loo%^YNV(~ny4za<YX%+U#3UK+FXY}$Ce=q0fkXO7U1x}6FXn%i(M29
z<2j6y1)|soiXec~OI)k<I}LVStH0TN(jn9-xVj$N!M3?}de>w^)OEsPQSne-N|5Js
z_+RPuxr~C<x-CXQ+D_Z)cH^LybXl}nzq>kfiUcAP3e6z{_FZXGcrdnhh#Kd|R_8^I
z1*-pF(5$d@_`5Ahifu->78l7NlhkSfBYlg=0P0ru$|;}YAV5*B0|0d75~liKmM{mP
z9Co>6xl689<#QAJwx>_m<>iA(&hNnE9s6HnR#*@CwXrU$Oaq4hwWg34p7$FIP_5WT
zQ4~lUq{BiS<VRAKonyh*!?G{%V@F2CmVA2`VJ_gl!JP*FrRT#d*=ASf2JBVZyvk(E
zf?x}W`RiG6Y3qvN$`M@$OMY9R1)<AAdA$JCjcfDRy39P61ek2?#fpv~98`Ul(r|R}
z{4W(1j7Xg0j#J@tZbJHT@;mZkIC{4wMjTXCFpOB__^^V~u~cxIX;UWM)>O*W`LW6%
z-mI>)V|b(Oi-mYq`yk8JSVaMjIGW`(T1tU@)-wh1r7tmsv?-e`H0z996;JXbDiiw*
z(-_TK!=RAu&P@?#-Z;pz+X)NeDxcY|X>~C^=tpK)rcTnuCk+MBaYrpg-tEzj`2Xj2
zK3vQHXHK?Q@8a_MWZdN+`F4Cv4gSAZM=ze|{eOoChu{2vkMT2nJGi<A7lZSYKKS%W
zA5V7WzUK4i9rgA7$<_Gu^1`n0Ud%lbi8_PPsI0~yj;%^NfBv({NH9SlhFk`K-OsUp
zE>^uVgc+D1VbupH4#^S);Lm^F+4=Oz6K1}NTM96oMTBwepOYXvyZrol=Q;%>HrW$|
zq6`p@K-Lf}WY+aT80s5IU=Ht)ZlNCi31s-D$($p8PhpZfMDHo)97Qt!X@6(OdJ9cb
zn>z>Maj2c^+P(n00rt6B5~{jpFn9Eg(+>D<5Bvrq90h`V&qbdBfON*TidF!u#kuoF
zzgiXw^-FY0p2-rRkH}9rj%Jc2x5)(gJOneuRSnO}PJD%+=%d?icKZAIGw?zH<GAa_
z?wM$mAM(v4IfE<@bxZ=VBnh~OY8eR7B$+v+*_4UGmQ-;J{+E~~;PN%NetQB&m&gAB
zJP-6p%+uHwwQRATrBqSG=~AvrT{c(m<4qu&@9dmLfY3nsRg95_a*s=zYjYZ|?u5?g
zVI)qyTel(|4Yg?!bp??^s!+%jo5dgBDUXo6K-~W!lenyH_wKNpdhO(ir)rpY+&ay*
z!0J>V-H?#mBu>Ru6}LMb?%bkfCfP9Ia}D(;v}9fB+BFpXgqFhAkY0!PYDVnJ?8J2G
z0w|E~el?|F7yarmDCJ6LZ_k}jp5cmsaH2I>{|Bjab|b>UE}<!wSx6=@>{=|Ac+JCd
zDyfD`llyINPr@q>f!n5V<N$Uvdel2{R__GR2vzoX&kVeF&^SF6(q!d5O8rHticK$U
z22#Vy5J2aQWnaw!osil}r6XNXF(pBwk{Vh04p>*obEF8cJ+3OKL!DNj0Ni0HgSwqF
zeOJWos9AlmuRXa_5{BentYXI(D)9$XuNH`&;7F(^YGSGN<gG@dU)0FO5Ok~bRF~cP
zCaS!vo|#fFwDsf@ZB}~kbXi5eW@2FNI^3P3WLQ0=)>dm{YR&ukF0p3dG~sK@rX`t8
z6F{K5CUOOntBdXD%pd}qM0zBZ%??JF<Lft9C*zyJ@%ib+&1f(l|9p9M{KI#<_M)h>
zG`3oR>Lk&m+tG695%3Emk=RTA(D~F2Acx&gpDJ4CHDU*JKY#w*0l$F>Wa#B{;01dQ
z_bb`)>66270i>EQUoc0+;?;^FdR^RxD1G{r-ixxt>g!@BFl%Ra24$_-jZ(J<Hd$^!
zt<dJ=S1T4_c}ZoQ9%|AgufkI!ODR7&(uJi=d^2npAX-L(dHNcR=g|f5JkFQE!{RUX
zO#cs0FVG#LPg@$ODwS8wFv{;{1U(ep{m>b`$poh$OC9hJ?N;zSvlH<=5VK!H;CXYx
z>Xygybqjd!KpRm9USODA0Y5z)RdA~baVuK$HVu2sgadf-N-KUU6sd{)^-015jPX}C
zc2PEo{{viHUZ3>A=~Qkat@n+xJ(;>@B=&Io^7SemYCDHqwlQ0@&YBy;4#3vNP(AJ}
z2tbrdn}hut_Vojz^3Yj6z;b#FtczV{Tw3IS`uzDb2nbSEwA?gw>NTV^WJ}(!v9_iq
z>XY?Tt4$NdK<9!4Xr#s?N4Oa+nR3XCjb8FDE{{)cPDi<gPQ4Y@ZhE+j7v^Ze{(kV!
zF5{3VVuvX2JtA4A|M=Y5E08d{yt>X2u?~6`BVXOT6Zj&{lFyy=s^`k{Z?A5t5}z!k
z-zn4j_T>Lgvm1Dx?D}_U-@kBGUQo^A@3uYrohi0#7M=1sn>1$x20y|OMn0mgCXQBU
z94z1xaG|dtn4){Iz)`}j%i1<za5~ZfPiao!ZhF@6GvwwHo}4kt1qz-zcIRDNx7z*6
z^8M6N2ji2g_ou@WjnJBe)z>%A9F$1AUHqTQ1FBsd1?VF%nk2M1YF?`Y2YXTwv^?ms
z7TfF2cIR!z7bD;+xiY@?$-Qa!zhDh8G`H|uuA633i0*k)Lhm6B+RY4h=l52g9joxU
zztW)mk8Mtn!=qQ-gYH51@Cz69jkhHEsbO{eE9+2UD{ouxsW<t0j%@F7>Si$^=y(<p
z@qt7jLig&LbExxf;t2S{$dym^#}wURlH?wzRY#cjkbwY&h|70NDM@B(MVzB>VQk(m
zIE~DeL5B7L2?H>CKU9Rs<3<?CLPO%d%9MyWmvN0eg)E`oljtc|3pkoik<Yu}SWqBe
zaL>P$$H4CBJ=;^b7zyu`U5*(`P*<Dc<pXdBLmWVklx7h_V2&#C``CL(Bl+|UC1Hr8
z*)^PH8cFRy*J@hv{+bx&-}|imkN8s>|8X-%p%AJrkHanCsE_}6_Waf1%Y6LDt5?sz
z#eY1;&!<nlKkp1lyrg(G=ivSMJ)~$KoJM|kXFNLoZ|@BIC}PMvHBU9uJ{XJ!!?!2i
zQTJfy&pmY{)B7{H!;8Lrt!IiuBy5l$7J|9{9Q8p~Z702CZq{63K`g<q2@KUs&@hhG
z-Tp%IS@rC^3ddqQKO?|t63KIO$id5JGWdgm3G!jW5MX41>?czcOpL-nJ-{IoOd)-(
z2{W)eSxPmjkL`qJ72ET@uIi-FWGYKQvjEmWDZeS?W#<Cz&euF^rL!(Zf8X*>blwt_
zUHwh5M=(bGiWlQ#I>jGB$IA$m3$=~B*<I;bOK<-74M#Y8c3U%teR+dje$HtavBB8c
zv8pQ!U>WD_JbSPI>-eJZT$!Fp`NU$4T-K47Ii|IqAneZX8l0s(n}^kBMkO1Ly@z8_
zi6}l6w`>X9h+`E;^6PNz3h{)h!!Z^8T6~a5KyT`rK6y|$3c5yqWu}r2{*ixO5yJD<
zWk<!ubaHVrdtmhrn26i<9dTYT+PFgww2eEK^#bgcKYCgDV)0&6zbmZsjX6+d^>50H
zWBD)?IF-Q68%6rbC6zL!mB?D}HZ^rMwyWA57JtfsNmq=^WuSpCd+ReMU3X#m?an5C
zWU+l-G5Db(RL!(;ER9v#l$t6|#6_`srFl}z4Eus}JBDQ5kM;~nv6S0=9k9#eur&}X
zpwRdW9p0>ltr~VEN8jXwT2#nL<4R{omb7PHF7R;^7Un=TF>)QuZSYhAYGFRMA02DM
z;iV&Wi<T`6lEO7%8M9*z**3#f-Tg?TI9TDm<%Fj2)|HZG40=Ev=WAYgwn*m&RONAW
z%A~^Gk2;c-7uTBh?W9tMf~_Wx#ptmwP7(`&=3A7(0_+u~Z++TUrleMK(kD6B5gVDv
zc_pbS#C1NB&=6|E8LReb)^&-!J$Z|uO-(1HxpoLw3Bqht7%NSK9M2tKTbK!X@ZS{~
z(KH!0qHrC0v^2MzA}h=cW7g6{b{LxIU*$owl0lnC)*I%Fsy5blZ_*npD_;QezRnv!
zyFP&-Vm@k;$A;TMRbQ*1)!s4MdnmHh4WW{->)K0A6}Ot4%Nbw$MJCCBW)J?J!eJ_g
z0gThDsWuPfhY5~?o5Dz^pW=JLT3ZpwN!?lnSe`BC$%@9^n0@%(YCq<_9gux!xzVp}
zUc2YdhrConcpzpuPTH@Can32j2HZ1tSjnk^lm1Y@EO`#qiBIdJ0tI9N<4W&<scBTi
z(6nf`FRyOiZg=ixs$cQgVvW^2Wk}_MUUkYNL&W(!|4>fbfsnvc?sN)T-coMv;28<X
ze~o8vCva$2*;Bf?acJt4q8X{R#TI?!>IUgn<kvtOt}MqV`IhU+a}i8Sxi*wPuz;70
zgv_<07u78dhokOl#$*e8s61_Zya`^;v(;vLL2e2&z9?~a3o}r)GrE9e^O?N`eme5E
zAyXZ}Ys1;n1-hKIo3aX6XW;hp8^->DzE2XBKO<pi2eh*r2dY)2o^z{do>+ZJkK<Pf
zn#ci-bV`sC9hZgp>R&pofUF~LnV`v>R62=)lj3z1QIbF$2^gMNd9T)8fmgJuTJA@T
zj?X2?HR()N)a3$7FzM>nIUeNc&s9z_t+bX_0cp9Cisqhf{LlvC_1RcGho!chLbIJ6
z4@Pzpg$DM@?I#bJ*|rufy;~dwrz}mZ=x$tj$o8BqcHwK2j?bf!8nTEZUy^RKHxSV5
zwR)Kk%EWNDQS#YisYBIhQ(u_}eluLJ5*aJteow{7%S=Y`>;^MI)3V*IhTp)i3E@cJ
zZs-IPLB<bl<NWj9V0$P&e+G<&KBBw^91qzLrPn(c3vbb~xw>*xn|lWO{**VjFE+&X
zZP?t4vDPNnmc6Yov7RA<#ShMu&L``p#U@P2u2?v?kIaSUTrgIbqL?tu30*2y{vCKz
zH_MbAXugPh-E>Vr0r)5Q?Kj<|q`F(R>;_0Sp@(D<;}8KDhQM4i063B<r5TQ9Ap#4;
z7@Q$>-NF|Yrx1sYt55!BL^{beJSL{NjPEJ^0%Q3aSXNdww_Q9^%Q-9cIpT8?IE%zq
z5XCI625OQpWrdw02SmkR2#!GKA5q7u>RCy9(z;$Ql<^<Y`@z|}lQDQdI6FNaT%TTE
z^#2iwl{szln;fVXTK&E5nST4jO2{vLTi|pG<l>Rg5UAYz@{YYs%>)8@(I!Hw3=lq-
zFaOG0IqJHsXuF!URF7iC*2;As=bhJ1t%QbqH4Cq>Z4ov8<c!FE%7T4hRg??p-$(*{
z`3jZ{=bsQh2OmuJ50cOiR+|q1^6c$iju-m2u+H}wQ*ws`1RzKv{A+^1JzVOi$#lX~
zVW_Ak=jz$RDG?ye%Xs(q_qOko(3yVSSiN7?g9)E|lAbwVgqzF8Xgsn_sjD9cL(8N$
z#hj28g+R`*s=YLe&5p>~IMWIA^@rjJW{viNRZ()Xf@)moUYc$~ZidJ5=J!3Jw>1M&
z_tJDsLhLVlF$p}T(@uE0?1>mCLh-+FG*e|5vG%cgF%%ne{d66o>Y7QT+D_NglD&dh
zpkczv8x$cb9Rg*BeAOx@Xka}7!?)oVHU!ippzjDm@Khyw6vV3sELm1VUObeRd<0S}
z+@@CGd~I6(){?~U*(%4!Wt_f6%aypD53krZ!*6Z)j?<%@**|Ie*JJokX!*E29}ZR&
z@WF$MxDOj7ygf_utQ`(g&aTg`tF!i;x;m?5lTX6}F>Cg$1kwtQBq5JJMe@EK4B2+#
zIIcsM59P=$K}At<Rw6TGdQNF*n;cVbD)!_0=;3yv|2^}haIX|<oAWGYN@rjOOYfL)
zG*iQAF|I-Zv1$e6vb@eUx%&Oj()+&?=-(!B&!;5%g-p6jxY+0#a6|t0qoY^(`@gS_
zo_)Lj`zSv`dbV=|*qMAvg6!n%>p8?ef8K#H)`{f%U;?>6@7*2l+~O$cgCQl+f0D`0
z0&y5X4*NUm#pnLYS$({C79@)phT)F$XmojUl+5R|qqNC)`ibb0h_);V`vOsU2?|(A
z*qQj-xfP^2XXc&;oH=d;Q2k!J9e&jX+7p;QD_wG#SAFZM_eW%YPECs%7X`MH_QneC
z0wsy(K}n)^pDbb$p@_@ppEH(9CRq<FKLDp}=q|ek)|XPA8RvuzLgm)Co`P<hVjnm;
z_8pk@iTo|c7K@QDgqits6eOV%L?v?-y*D)#D6t)ryJLSjlAEu-?fuI&EmT%8rVxiH
z_)junZ!zP9F3<1+^EyD~Efh4C$YhGsBwPhzbt`A!s#<eMIgVz>2nHdJ&=~n73iQxc
ze5|FW4&Em_kJB$?a;;ZWl{(f8Xh{@x4hiR>hC7&YL|@|wvw4=}2!M(Tb%Zy<{NyH~
z0)RWziyvFZnx99|HHSwa7m?jw>Ey!Ji_<#=`6$yo-<1N>T`>Xqj0{cpQoA;;gCeeK
znTtq(#wbKSC)90cf7$Gjkvf#?GYn*xnwiZwZyR<%_9K~H2hB>UTWlyssYDH{lao08
z=$aMT4~p*kPC?ea(VKVUldIgvPpuP@gWQiCvVNMis|2o{R;;9DE(d%?hbl(0iuQyd
z6X-3r)vVacutTSSdwqI#QbS?Wre5Dc=&gKrro5Y_9LomK<fkhq_%$Vq{NRh9^hU!K
znwEWUwuAFo-AjSoqGcV75-zMT))^1pUXHJ825hAnT+Qgqt2L11GtyOxbcX2o-TCO|
z_%uH)ZDf@O2BAVH$cUd2<nzV};+`>APmA&R?CSFJdU#U8gVuhNlD^2ZT-!}p3cXQl
zSe~{FU<-#~DY7cPQu4t`?{C*t8C@$4W|b*D2h0OHv1<WZ31*ep;am(f%TM5S##pkf
zz>idr`k+@<qj7Eui!Z>m4)8|eEH(y{ws3USJQU`pH!tPps`gy<R;e_ldZh*P+$B~g
z^l#piITcqi<zf=#)4i9<PA${)lbLk{mf+E?TG(tlOJ#A|wUc@yoD|-BwtqA?@bWbL
z7*ktIwV9etn@S~&X@F!1@uG^t^68W1>s0S>OAy6X+!w_cW*M&xR%}II(K@Np%MU>M
zHZ1UxsGn~cLAUTz=l_rI{EdD8e`@sqA3QreI?Vb1Up{;B;+y~fF@Cn}|F;hmb7ug~
zX<{3tr4HO|_kZg6AC;-0Z^r;%#W8?;VPP#NeuETI#7IJYWLr<Ri*E;jt&w6KDSx@=
z8*3WDE1X>vjHz};RM|)Ynee>J<~{RO2avVdBIE$(cIys}CC4r5!KZT)DBHAgBWSQ%
z?F=ft87!!X6uqHTiz7w9CWvKwK@Gaqwg~^Lpo@x$HFRY^ge*%;n3{8b^`1w!Y?X2F
zn@RSy{gm2&=p(1l6Uyi@?7xGfS1<DR-}9qq-|WA~_}QlY=juu+M91>|eW4dT&nwHC
z+IW2AE<E3K&6a;k=YNFwJ)yU1+4Ye4&Nk2l4fFr##ZfN)>*(Oc(W`Is|1o|ZaQ~;J
zNSR`#$&hk2q?}zPA!6MCMayA&b(LL{laDenSJ<Mh+QrD<_woT`B^t<wF`VEKb6kL$
zwbW-zYWI0zS1R9i+Ib`-Y3(9RrS;ah@7&e~uXH!ru-nVo^%WbU%>yc`5wsvMXVyz!
zwT@ws=Jf({e}2}?K&#$Xc=%G0sPyXfGB(D)2Tr7r>;RyorC+v(T4%PTyAhe<DRb1S
zf<Ach%<{6vlyKscun*oHkJ?tf9*#5$PHgz86kFjVZFY*S=Jkr(+EU4ChiHXu?^kJ<
zl&=5UIo3;4T5PrrXj=ado*m@lzh6E77XSSyKU-e^o041<vWayIOLP|9ZSrk2F0q?r
zs%p37I_{O<Y3Xfpw5r~HWoxt<)=%YWT--c1di6}lRDA7&-@Nr*ob~wHccZccC8>5)
zFJ?FM2{b*}UI$9>weQ7Oxq^NB+2p5o{m-SqTh|b1SpN^7zdXwA{|{fhIQq8!KgQ4R
zvi_H3!rO`+u$9!6-wc8;!XO}bh*BJ&2Uz6Gvntk-_=jB?YxTdIw{PuLph^Efd-*J<
z|DPQk9DdXPkMZ+>{@?N}isgx6D>5x^V^P>33**<b6nu3Wek0dig=ATgFE#~7e`p21
z;ZLpp*Kbm8X#O|q|D&S)|NQXfH~s$@KM$z?&5Ney<S$>YwBEUXdv|k1ui<{v@n4FL
z-vRnnRWmeFeMlB_@;A5$8$`ll`Zx9cKtHYYKiljgK-2lp%fr0>KR9~+P5(d2&jaQE
z$?N_q?LO8|>HoXy_6Apu?tW<meRX)e83c2Oxsd<jA)?mnkggcE{(EQN;ma8H!7xl1
zNAz^G0{}zv752e&Dz+YOM0&pCxw@rmc)pEqaH-nqpS6f`jhs^{E9}Eu?3;5QdznDV
zXbu_RQG-G~5VpunHPwzoIzxOUTj#)jQZGIRXIr}wlb&#;K-=GjVYMkt+DH3XJ=%_M
z_II~yYS(`!4s?ABpke)gb#(YDzy7~E`nLW*%Fh=R|5>$PbZg<riqz7AI*|8oE~9Yy
znv#V9@FfI)YHI&o?Ut|e2+FMgY7J9e7=0;A*+T}i7CYMz$-067=$YU|wzlyW)$536
zZBmFsZK!YYcP|T{ojQ4#YC~455nGuS%Hm_4d<TuAx?Y%THF2#nn3QD9XvGVQsV)}^
z()>vMw+ULW=M@3fB}R1av7MY1T^<cxy^gkD|7s>j3m|RhO$$&PPpP%Y{Q_p&T690i
zL|ko@e&0E|BCQWKeQV#ydgz(k^3D00$@CpXFxaZq;=D|{j_I<wK&@cPxZSTzFZ(>7
z|ER&B5nvx$gw__H2fZP)BK|-6#hE|IPp$t)yZ;s>!ko~x9Y78KpXbjD=Rb!BFTUOX
zeUzWy@%&#)*SVIiilZVed^nnQeL@kD3r#P7fTV$JAq7;y^J3orEb+iJ^eB3iOi>lc
zzut^dg~P6|&S_MA!ed6~7c!AdQ((+rb!RZ;Egb`bIYyNfGj`{1&j75Th~+nkZ7jiU
zntE9$H+5HKqKBd&COFCt&*HLEt`eiIf=M{yh~8y4vH>t9Z3eyAy0D>XM+WmLjL|h-
zAd>K`u~XcJpb9u^Qbmy*ZTZ4#+SDrCa9X#(T4Ale+_-D1_^Pafg-;LD%_0R4*4a6U
z2-Q<DZE6*^k*rb}4m}mV9H}Yf+HCe@Uh~1pzx~#u-u~y1qiGT{v{53kTKoU-;N{Wt
z=lS#BXD<)F+5eC6vrYSd<LBL)4rpz8tT>(>>ndZ!A7V4`$XQ?wRbQ_$UpN776}e{m
z{U{M@Wyrp=NHy&hW_@rd_W^Q6ZJU3c-TB=)f<Y()6}q+Q43ap29E~}J9L;o0n_H&(
zpNsFVXx^Mr;R_5Q+y0^Z1Dv+I@3-aOZd+R!f-ODz*4*X4*natzod!-?=XFxiY;t|Q
zM94}KMVDlvw#Z&HeU5?R&yj!2l10zC|E^+^uz#C@-<2Us;JdDQrLg-WWJo@)(y7S)
z)Y+5ijHi?=#MIsc9U)O2@SB<IzX3LfM=xHoWYO-Va>HB!g-(~>{$IEE6}d0A&xW>g
zv#kU%F8EgSuXH<T71X?LY2CS}a72P}jQrfTa>GlY4&*hqwtBT3_&!M@-n3{IYdgyE
z)4C5fzO3A9n|{s-<AV@GhMdiHTDYAnwKkRtX8xtUpCC1@oFI6q1+5VJ&8be|w<Otl
z_a-GJm3J{mYU$HW#GWK3L6%RQFXM_Sr@@UVVn{w0rPr?x=;&&lcB|xG<tv|ZW^=r4
z$}Nx&Nqs~D)S7frxrufgpd!30DuT|fe5kOw_AOdwmSl_is%lja+fJ48w^+CL4r?i%
z?ag#fLPYaRmsPkO;%zM3q&+4fnJvdLMNk+Vj8ljs?)0Rh%C`DdML|VwgEe{?Q%vNu
zZ6Rb#EMQhpRQ{9Wux$aLEe+<ia_TmBic4|34GWKPwjOCj7dVmv^oBwojS$81LA&fd
zZ#mj^)k^7W3ApuGwRp`h|B|1CMHaYp+go_IP=j*}*fzo?>;!!kqLdNVcel~$Xjs|c
zbTllmMC|13r~><4Kqr-qdQ@;E20&iCORMeexezKVIsvmO)3PU03Xu$KzEJN^S*Xf#
zlnm21s_o-HyS%Uy+_1~V=+{2*Nxby(uOK$QY+b}r{?>KfOV<@J8sEOIm=)>MId1Lj
zMV&eqRMvRKhsK|PpAiU1^pwlTdN4%*3XOS(Lo`D{_7FM15#V#ofDajJ?oHL3qV3-8
zte)-FZ<W@~`Ic|4mpq&6f!+j1JvPskddSa}{FV#2^ke%S;Xi|_hq=}FeB=3o1mNYt
zL5&RakPQ*#WiM1$zr)+|l~MbN-STHf4WNvsw(#os;BL;vh9;*q9#YMfsTY}NOOA#Y
zKn}lB9a99embR$_^ZQP=Dodke{0ouMx-I$@>;g{4oZ@H(c56CasoQ804VXMA+}i^k
zm~hf5qVwnEJ^~+b0KDWwU;g_B{097l11|s_&;j1`=tHTAYW1e!G4=Ad$rb7n$Sr#G
z`E$RFq`C)_H|;~&6W)v408`+_tHADwncL)_l?|NSnZtAKlwApzPoilx`AV<9QhNO>
zq<@N|U=?t{TL`TX^Eo&K-U5C!zw6!zyKkKyd7_~wU(6SK$Z5wS+4<OI5scZK@Qza)
z62|}Mlq8X~7yj}4Y6Jj2LONr>qk4vVSB?6i^_(vQ{%9JY?X0f-VCnV3nq4)+yeshP
z)ho~o&|Qzs7i*%cd98gz`|fvHb6SYi>b<C2X&zJ5)}XvvL9cCiSHgb80dL++wZ{fJ
zDZ2I>tAa$7QnUs!>+bBTw?pgOjb?+8+Z6zJv$L56)Ib?aCgpAQheq_304k<OP4Oy9
zI%Qo^Gu!*bGTq&df*QU3wd{W@I@|uhy~;zkr33dI_^lkcgUs8+@{g|Bj9z6EzWSDX
zBPZTh==RF>B*1VM5yr89PJ)UlY&P#3oet#?X_%GAs#Ob3=^!Xj+ow5?VHIMxz;|KD
zZ<XnCXRrm1OE_C5)q%YUqfvBM?gRbt^!j3OetL6!^5eTVIfX5WQAvFfjUZiu4yS^=
z&J>0WbsTr2QW*i7B(sL`+$+~68BL?h@%5XllktC@-Ha};u5T{ho&R`pRY_d)o&5Ir
z-d~=*J3qNOK5a%<Z_8AmY+=z<+CwS1Z;l7ogJ$~D{vSgQk1?&Isl=Xm0tN}6qloLI
z6lMJ&R3@~ruLq=SPiGJ8qD9P?_UF9@hQNf+wVaGJ9K9K8Y?UxHf{fi08ob6~-l<z0
z?VHhHJpTFe>iFjM>DfsoJ59>BDwBn&n6KXVHL2iWu)vWaPHmY=8Bw;6tR%aP;@3{H
z5c8u*{0S|u(6soqIcQk5FGR%IKeuRE2cd)kE7;X_Y#E%LUH*J?az48LTP<h$T6b*&
zXF3$`#x-imo)qo0!Iv(^2}AVXS&EDOUvG2xs7mf@*LGjCz-*}YR&_p94M+evoIr-k
z2BN@lVO#t-7*~r(D=e#;8dq8Js~S5aoeDLHvkGx#97e%p+2jjJ`+s#ZIy)T>u1_y7
zZq6@{tND=H#4Ln&!YE!q#)T>0L_tey)S;wyrExTb#f^9RKIVfiKQ@(*r(>*MZcEdY
zb>wSOHkB+{O^HNV@*4|cmn|cIPDw-(HYAG$=Ac8S)50-Jfve-cT@2q|U0z(i8{Z5s
z&(BY<>t|Iv+-;}O#k+Hd0zJm#mC#4YVw_Q6^5m_k;tHe<&)$u%Pp)nTqtVU9;CwZX
zz&QQgjkB$#;R!gE&#JZAk?IH7icXD^uAE++ULXH>Gq`%w%-Ayct8ucP;A~F(3`4Q$
zZAtvkgR@mO{Z-hu*_EWkCM+d?JiIy`U90U#D^Y5JXg%g@y|WV4^}Dtj-Wz1A+8SfE
z9=GY&s>Z|lK+fs6m*eZ!-7z@y-){-yZSkz)9jib$BD7MSR&wy{cra@6q@7$0empz5
zDO4>rp_YhsKqn%Z@e~FyZnBtigXT0TuWI=#W$lE9`2yU+ODH;Z^X}@bvSU7hA!1e@
zxz^a)nk$Bi@yXTu7NalGF+}g0Rf>TugsUCgxJHI5=^nm4X`!hU-ToYvFLE`T9@)}5
z1Z}hVF~nV;RV-wk!&VNYN|s)oygvQ!mQ1B+ia)N*)_1R4V_?a24Gdy$cyoNQqUei_
z;qgVWEQng;J-s+y122w(0$v;iK~$+A)I|*Kx-K-lG0V>0UVX**ey_E>$-aHLdk)bj
z&-8l}`5&JQu7+=K2G`fs8moL984`Q`8^}2=`!L{~;z_c?JW-UqK0Ujx(Vn%mOmWCj
zDK)RvmyKLHPe5J?Rj;v?>Z*Q;wIf8@t*|X(N-XNG&&E>Yom}Zv>SlO4dV6xUHnBn_
zB083<*bv8aL@W0W732(0uCD8y6ZPS4CG(^L(@!UV+XPYd&OJ9AKB9a$c#T68m23p7
z*f3a|wm}6O+6N{1G+dS3tFyJ~y*k_2>G}i=k^u8Yy>j_R8vd<zU{FBphGZtp{W>3A
z1)|~Q#l^|+`t<UmdCQ&R8j>hNzPekz8oJ}t@md&<G4q>|7W|O9^%;)PNSQ(H$UHl}
zIB9ESm0{Uv_nrd0#tZZ>61C;+_38P^|GB(aL1t0}Tc9_dN#Q;tvo_HfZwBv<Pp<{p
zEvdD@Z{{y^vEK{_*MoJa7(x!iYGR&%OD>j`CQ^oHrzaQJH|M7pH|Hng@!-u#+ezVv
z7)AUXN9Tw!I76$<#PQp~)yc6C@UzRo@y*%kk5_}M(-x>RwK$$bih>bEA%Vdeo=`|}
zH4PPB5t*0gB)WSKX~8+Tjc6wae#@w*`T(<%YmqjR;d$+6mDZ;aP*pU_TkvamUL0uO
zJcM6r$46Be6Y9aP=D=&}t{_uw7uKh-9B$>X6$*2&vH)w6a6k4+V`G6GP&-=r6&HtR
z_Wk@ek&0E}u`(=V%pv7TJfdWhzbIgR*;1rt5#tu(9c?-*LVGvv$!=*NFmrlh{5yN?
zRR#K(Wi`vBq~tO#sJxJ?zIcA2aD%gW1yc|Q;@J&m6v1E#ym$6n6<K&)MSzjK$rMb)
zy!fHoG`7f4mm_OaQ`Bxa0Aryjtik5&o<#jyv}~@P?twCG&;i~Y93H*u9&``7hq)`T
zEoXC1vL9p&HsYrkzz64P$G$7NO`f(=<+ZBu4Bw#$F;=1*L;KS<m7|Mu3)<14v|K%I
zp)=+BF?2igO+kKBklz&KA4ox7AsFBa4N0AE+f<P`tXt5LF0JKCavS|A*OD~XpD#>J
zdcZ^Fy0a?$%kIulQQ>ByJ$%_x^4f~y?~|^pf|w9bk-zjq^p=oYmS1Z1x9v=b9I8z&
zW;I^RE^%Gx02t;|9CJ1_-h+mERSqUKyFHoYNmtFuopT|X__v69DB^S}pV9I(mY}zR
z`@yBO$^lVHucurS>ycg3wx0NMXOfl5TxV)2sf8KG(X5d8ysE3#z3N=j^6IXxn&(FT
zXT8x|DPY*@OX*Q^tNY<5G<eOUr-rl32fW6v7P8AIT=oH{30k8Azkf=BZ<!$)xwVqk
z@N2b2JbOEV?G(x?ie%gRV^gQ|dusuFu)_og$tEWXpUPj$E13m`_3o3BpiRC819kPh
z4Nl8d^Ea5r+s@z61oz)If5R7-${-ynX=0tLzshL-d&kojN%z+T(WMtdKJV;<jy5Tj
ziDtmb*H!-6G=_x~1)|n>#t#GfKbYja0qC4YfY1O@zzI;JYvvhPk_1Eu1>zHnk&mZK
z06_|7*D+qwVoN*ELNbA&wUc+N?p0q(YID!-cyK+q8DGA;8lK#|yE?5rx;2-iQolq0
z`=Iwd`@b0r7bHMG1el3#OJb_i2kJLXWQ4AuYR_Wm7HvDbQ=`Fn{8d~<&J$fm@0WVl
zYwerJrD9ljx3INKuTGfKW%7Xn2TI{@7C2CI*j(~bwE3w%YA!5-%3ruB)3Mt*Z+4aW
zW1KhFVBEr@^!Vq^Wti9U6LLQu6aN<Rytb%(dc0CDYX|vpPR{CZZeg5%kCU@f+-nWB
z7|S;$1FiPn4?FyibuLhgbqf;k`<x4uWB*cxVEz1_UzOLc#g3%l87^O%Z8{5ni`Ct8
z6?Cq3B2sL;()PF6O_2sp;Q;yY0Wx8xfY-}`sbshKRL-OO%-Z<N(r8V0mbHC(H+^)p
z#Qv`y$%j32Sn0fB!~UZ@AuI8rwGwNmz?5ckJCg0r*4o3ZG=`g><h47+TXW2E<ejfP
zOl{BiRyx~jF=#w4o;R1$@Ljw9G@T-~$f&%&sPRx!TOw`kkFMl3)niQi;L|!IXt~k1
zzkE2r*IPnBSx8adJ>S}@XtXGrCY14Uea}qeYG0P&g7qf*-fGjV_Gqx;STL0brvnQV
z;AGJU=V(D_ZHkNxC&T|jXIPlhIlC<V;CMn>G;A_*N`|`4YgeUpj5!cOyeMUxdxDv^
z<*F01oy$XC6xFJtY68B?I%sxBwi~GB32X)JITheKNSjVn?fzaNQGiLLPM2H~+O$v%
zyPu=z7=?(Vp#I#k4z~rwus{@zeHd;ER>81F#K_-W*3LXMuZ>p^z!<+52uRcicZZt$
zw>S#=U{r>9$4op9#c*Y!R5FAuPQ79I1M^n#c0!=4aJG68y8W_aqY2fU(^ex@vi%N)
zE4*%9=!^YiKKTFHd;9LjZDdb){?@0!swdla#*%DzyL+zp=I$!CllYF?t+m|A%=YB8
zAQF-gQv?Hmb}Mn7&;A^|ks!raiBj8+app|g6baym0t!`yLKT3HgBW{9+_ZW_p+7~%
z!y12@WRM*>tFvtHs|~D}V?(KV+8@SGn;&4S#Z@OvtWqcR>|aB~(gqO52{lLVg$^J1
zx6C`WRh&(h@_GyDuF0(4nXRq0+EN|Tqttag$l?s_R<nhD0&R6}+D@ILW=L>WfBy1Z
zHdZVH95<U(PgAbPZk^5yLDxe}ozJh<#{T~P{+rjY<$w40_tXD<_4@UzzZ|?i+CSRg
z-+z5@^q2j^{a0^a{RQkd4K}NUj6?dD{k7XlgL@=JEVJI%trHR~D4xzZ`0?Exq-YPE
z`%bqt9Gw2MbAcV?Gt@a3%M(v9qQ{^==%4&>);a9%x4!QE@kgtb5@?htGgOWREn94<
zY5`)mPS?!6NSzfQvj94pOJ5-mL58}Q=5dlQ7j69NHx=g&Qa4sU^?8;2xoutG5MNy^
z?f41Z^R;1~FbKLg;TTaLam2cq^c*q|h>v`J3^c%2Qrv2RLKBd2(TG-~Elnjm*<Y6J
zq>qgK#ql=<JIx%?DN1SMg4F{Lvy5xDtM$x2C+UJ+yQj4c1%Is|TE4bhu=cqZ-~&S{
zU3Xjyz&?Pki{-yL0epr4ba)6o5QJk7v)Lu#R|vX`zUxxNn6{z3027Qn7mSfd?!Xv1
zFqD-eyY4&ec|zC-z!+hFDnyh3IYKdEg!o__a`8o?KFq+Fk{cvD#>gCjTea30AQSM9
zXr>+OuV$PF?6}vPVm=GUV)T3QbhQ7884D5X9sT{yo5PlpMie!n7tCO44s+rm3OVY8
zzP!%WLB1=!<XMz9!AP}y5ujsm;)RSOdOm0gbyxrU7+exxz?1pZ@1V~C^gIv{m#M_*
z2n;#oXcBru#Kq{(;H?})Oa)QYa2q-x7fcA1wTUkoyg_0}#J>rjAqocZRV&#9x<x)1
zqY0t1&c#cL<f+bL4=^kw6!B2jr<x^TjDU0<6Y~IiH`195Ix}5AwtURS$Pu)W)pdoA
zn=@CU(<94$q%cN7VEjbP7G2`O6$^13(kbG~&t$1;$rb|QYPQxOQ-~|gWT2UgzgQ5~
z{CW<#Gc(LNn`K*wnqkymdW+s@DU<)!5c{H1BL5v7?Wg3wgEw#XUq8!#+b9oK{<G}d
zPf_+;7WI~8q&!h;$$Ga9`ECudZWXiQ$`YO>-zBAytSHwSn|L8%-%e!`$$Y<kL7@9B
z^q}t`D$|&ieQ-%!B(~zV9vAdkhO+doDV$8OlW|icT~Fp0$%&tL1X3SQM%>!;ho1F`
zveaEce~Oq1YMb|aA;`Rs<h_soX2k!pIL`-J=!9Tf5!3mgm{NIlL?UzrjFISV=9(pc
z7j!djBDaTmpE4wKQuikl>|?$#GF{?fVcVG%tkDDICz06?^;0tz*W%VI^Qted41na}
z_)aAjXmPZ<>#o|u^K}Du%nUnXw)wqqW@S|pS7D!`)>v0reegri9!ks1P%?F;YlG}!
zO+!efscF?-%R2I`A3lBkFh~C*bHryTWHj{9+A3g){&%>4nAZQ^zTSVf|8J!<rT?wq
zR~65)D>2I~_Yhl|oD&~&La{&XI)ox3Sw$~WF$alCN;FN)E2Jh_reK;YZ5fJY2@pS9
zBbD6LYmAlVH15@9s|_g1e_i&3Sb?3!?sKWlGUr%heXTOTff6JcI_8v;Fi44S)u*2H
zN(eo)E|Q!{A*(KSnS4HO|8th?{htL**nLeY+y4)aUZ?i|ql3e@&-?#2N|XElUjr8O
zZz1;NdD-zdV27dkEutr69zcpf`#%r5hew@#+sRpTI0puBj6KXTVseYn`@afD(9sM^
z3mD0EBHe-oU56s5_FG$o2&9>;cY82K97cizaZQ8~WkzdIc6gx1>BqRQ1{B|74^5GK
z3?|THsFk`1)&VagH~W|7iMlco{h8^@8~th=p5xak`9+?{izhR}_$A_Zgx<tG5D(7>
zC&>qc^V9eN4gJ2%*RFagcHm?1@=84I`-_)SpS{3-_&NXgFbF&}M?Qz%_m*^_Uws!c
zE?-yOrpm6`GQOX4>>q=J$dzvnKOciPM@O%YS^!L#tgor+%%#XHLb$wPwO}00%}_iG
z77w~)?*D?Kz0}>lIb2yLDB1rHUcWs``Trg4@4tE8|F=;Z*8lS}u|wD7#MZm?(p^(?
zqbc(!IlA?jy-iy;sZ#S+UwJJ`5+8Lf<8sxb*w{-nYk}~QZU2VA<Q7qiWzaN#at!V}
zt9uEWZY8E-_Vwt(em<=YEua5uTf+M6zm)&Kdi5sl|NZ7@|C#@9qkKX8Z}MKPeSQe3
zGs7G?JQP|ZRf|<}@g_Ei(yO*lU`Ke2ygnlyq&nx$j)Rh%KGvW=Ee5^eQqKR^cLFW5
z|GnKmSUUfEd-Tlzw^6pp|JUX4h2ErpGX7reEUlB2{3|(|M&S&%>1<lm=%aKtwXePu
zIl-lY=Q_b<g}Tgk+ROIzEBUC*6D=d~T#y&M)b>Bih+S%Xp{1&A-r*>r>^%vuBe|rT
z6LIqQe_t8B)#1rn5<toR|N7`~N&h=Idba;<rEGBj*Aple{iUiDkX;M*#blLU4avpb
zmtip8``+R^O6GaaL>UKqiIc}<WAT^zoKMLim-b7g(unTypII7tg!V_Xn?JxEDIo69
zY)UP47#Hn6TiB(n>~K|xuBU(EetSNXsJpy(ERlA#nxge(#&pg4Eb2sV>K!miWC%zt
zgr+*a6xu8Cb1H&c*_^5BYu;4n^J3Jzt{1pyZK5SdacQkRknyuSyxPd6G8c4~#re{l
zrNvhqRs*Jkg@;z0*6ok3-H93(CLX2TF<<`IYMl1JUPl2amH+qmm*W5IKimJdQoi8%
zkDg%f^aNYeOjvSHV3=sE){XQW0e#I&11a>|y)=+&{Lx<;=sa>2Bj37bNc0OC%aK#n
zn7@kbZ`ofaHf@%WZRA{Iw@!1qPEL<lTGTF|aLsBtG01hboYee_BO<kIsVc*IT8--1
z=ZM}y>$a+SQibx%UoVM))w;nP3IlYF=ZJ(>80N&|DjmwHXT@GoBuS3_sbyWZ9yWBB
zrl8dv;qcAc(A49rEPzWtZ3gCY4>ksNMtnjqQek_ohgD`)W*v$C<S4|FUC3QJc6Kf`
zv^`2mKf4sj|2hgALwuv>|8I|8y*f;v|GznSzW=+G(y;trNp?3&$W9SyOB>5sEG?0{
zjyd0+!a2r#E7stql!7v&eZw+-!od7^CHoaz7ZS*~;<u37;v;if(5o}K)h58{H%>_C
zbE7=S9k?tnjlEDZWBR6qghZ=h;6jduoI;MK+8ZMIEHhPFQ60rWcpl(+4|_a^Jw}4i
zT}>scSc|2Cl0*(wc~d#&L<XTMs6irf^V&CH@+MA3T<44s(pG1hxQk<|bY{r8Vc|S|
zD@@;*P>0^wxrrOyk!RrGuU(V-r28#oXaM;Pw4(r{Id{z3yE1Xbgp#>f*SnxC=20T?
zKbyhBqc<#^*E=7oG^kBpFiEwsTH31A13Py}5k4LF$sGpBNhxJ3o~Ptjzk+tCH;}&L
zh)tzDm0tSo1aC;7O68}U!zmhso~QDo$(<*+hk0W;BaHVw3>iu&snNsrP62b9${E(b
zS68}|B1*!qP%;q9E3u*eM~zhMd?NdP)SqZIh!s@WN&Sfs_ygj`NlEx3C|Z@e&H+UX
zaaoz->usT|K(}3O>&Q>2B3C}g8|k}M@5cJ?6BkwPym+}%@9kPu*L7sQ8?>nY$qib>
z0$0_K)cbjWYpo+u`?AM?{j|aLlxVDBhM;5mC-*<=VS_O2rW!{P5RXh3!$3SfAwJ_2
zVxK24<-F1;!n|%Yj5nZ|P|O!69%M{xg_d7O`lo!AuAr7$y<yG_xuJ(>vW~>#{9Yu#
zUdpRgZyq2z$G)6n-&5$I0isxjc_F@Q&xNAb@_Smb_Ii|zqtKkFDYBfYktJVH6E=~Q
zzNE@HJH0JISDA!~;3s+GV!f37QbtHA`s#devNTLWg|fW}>|DA#c9u&O1!f?KBJWH@
zukG$8Ysh^u;Xarg!-D*vOKDVhb96Sb_na6fDrO(y+0U2Mwl%>oy8#{phXf0m@z+jH
zE5+g>iF>&X`AI6bu&zkR*BJrKbL!{@(d${M^orNaO4;*sYN(Y$U+1iGiT{$zB!ZYC
z0Id*3Ao7`0scbL<4rHhzuIS@Zj<5n($g8}VH&hxFv1LNvO*%++KyQrw9-F0}c94^L
za-aAc04D%FJ`Z|wzV^NbJreNV7;_)aanCxgQopA^p3R91-t6xeXUaZ7l>b8toJlBZ
zy1o+{CQIWf&D|}^Tzoo!e0FSs$gHS57k9e8qH##t4s<l@tunzZz9TcVOOkX_Nrs=9
zPkrXo@H#6LONui`Cn`X{f*rugkW=hW!A`;G=Q6k`SQ^;f1#K8|(q3-PnUOmmjIawj
z;pkZY_j_;;oREW#3)-L!I+MduzO-vWidI!NsH8<A*?wO26|nvB$8m1wmc>9Fqz(M>
zM<bBZlS!2Mjf*Mh1hpIJiPc<YW|ki$;_95d(`M!R4LZc1<O5M$|E=Qsj~dAY`)=(z
zL1!-bNWf>{0CeW?v-!8iCG#w-fUP4w><Csa71&AJ>UZMDF7si)W`wsBk3GWp-zFsV
zrEu}@FUvjv_zdZkfezIxxpP&@Oe*t+tjfOtr>MH{3xBZogr!|RZ|QZez}vTPLC;0E
zJvN)K*qp8HEH|`{SolS@stOaVK8m8f>B~&I6)@!U@RcR^+`6|&`f`=5dTXE^HCJ6T
zTbdi0JzAkNtEz_i`jjB@>cXc{Fj86tNNP+C$W2xH$ii`U1^S0-9m%aFXT=meuEW8j
zkz8imw(gn5*sJxRfT=$gojM0>O>cudb6}I+2B|h0@iqXlRV#5}G(F^XwEOzH{Q8>v
zV>Pd(Fu52`eZn|)-VrxvSsP2iT1Q){hIE~|XUBQ_Q9e0Tea&|~vza>GZh!(p8)$U+
zrFzlS*vrZq?(cE~>kK*aZ?o;M-=1Gz_TQa<Iz9XL!}lr1E_<X?BT^sIg-%Nk+A<V<
zJ7MZn48=v`a9Tpy-E3YH_i6Bcc>Vp=+3^2fd>XvJy8d+e;oY}qSGk>wT|e_K*jI1w
z$M+W>-kp6qJuh#rf(Vq;ZdE}jSC)!8{{3nHx?kGUcqC3Cho_hpbu2>yc>($%pCO;?
z3kO+Xbb3qs3PQ9;$!wM~Ev5DIZpo;?kk9mt8R&YnT2=a0$j|^Xc1Nfy^Cy(i{nMa7
z9RBqF>h#lh=ND(W!)byL<q0_|Ne1hERS=vAx^wKC&MCbsb0D(R(%f!m_4vC)gcMU$
z7yp44S7@^QYq?9Y`hLk-&@MM<QB*_50MwAgi-x6taq<4APiOB2*Z(RUnPbhxnrJg3
z#fM=5gR&PzHJ0$ur*X&-{WH(vW&EqDlUrqSkDc2+<_WVV+pGNe1-ObY1{RO!)!E?U
z{G@+<{{HgQyZ5I#Goj5qc$;FDg;f=D!o&==t}uSkcM><s9_?OkZw*)|n_3B3KpxX#
z$Q_c3lYD7FPA)zSug|VN^#_Abm;HD71dT=Rs0UpbME_1YT;??Pt}omA;r;MBx1Ai|
zCS7;tZLH$vswhImH$9^K^*L+o1-QN#mgz@lm;G-q&OW8z%+wVZh_yl6C+$qzWwn)F
z!P;r{?)qZ*X>fJ+-PzTr;n~%XXIGz2&Ido7U9H^NfT9VaLqu;8J;A{YQC35l6x}&F
zySgrBGR0>z6{d)8=^tnRTBo7>6__H2gD5}g3zq9wST1H5`YZRXpEC^A&E*dD>UQ_)
zV&(o`U97#i3x(UoysW1e@4uI9s1nPAqQ<UArautIi}u=_hECpJUY?zZJtu!PEwyz*
zd>=XLjzYcWPS1xcwRnn|Q{L#3JfXk7z&;vKG{K)McJt!=@=UUv^M6+Fqt!}1Lrh+`
zukjrHM*ON{dwu@y?Ek&LtTAVz1{&yZFqM=0f=sK}|Gw{kI6c1>-LBYMtNMDKEpGkO
zN&mXPN-s_zhhBbXUV!&pY%675Ik`ALyS)DN?)>u8yR+f2|NU9jMd5fD`TQOB-yz1}
z6xCUY!yo!rXQyI<U%c<1e!4jS_Nsq%UZLrjEe>apB6mQMN1%Iw#}rbW--ja8sJtJ0
z=HLDZ>5{PDn58|@NJWc#@i9l9JFwl-$-DA*)NR`(v;MM>Uv&&m-Yw67DD`iqa^M%<
zJSwic8jGlfUUXP#BWw0HyYgJ3E<H>I{{_}!;!e=XJktgCLGYk<u;9e#**96LoTe2X
z>q=YYkVDGDU_i+@?E+){(&V|~a<fgH&e=WAIh<Y_(@y?THcMbK$Je{nnG5<HhbM?<
zPKNI~$n{@WzjU0Xhb5l6F63|w8OkzOs5(XGKrsD;nE<^2oey^0*7yj>HiE~zU;6I3
zW3g1e$(O3FUMLsg!h2nXx(Z;-6AueoODJCA{Ts9>e?3y4Vg}I$of$YdeB0gc?spGT
ze&H1tcxs9_MgnX9U2i-E0XIITZQD<}$uX_O-OIV<1-?Z-Vl0DQdiGC^^UGwzO)<<w
zpR+k;1F#BMrk8~E%rlb<_L*sJh-p6a%<b{aD+FDf!!&8)x5l|<s_CZKX0q4We6tB;
z1&ouXkUcQY*#RAt%}(<ptHp3mR4<a@rVidzoQ<`n=oh?|TGTBMPmr^4JoE!0H!Qs)
z>)#q&E~)m`aX>7(xv=`#uH~Q}==W3etAca7ImK<jTww+M)3^UB^gI=`FCV~4cO&Kh
zb=_6aRXBXx;0*!AEZ_Uy;uvrmq7?vq`P&-L7jZUp5og(!_oKyOHftVEw6u<m`1kC1
z{uy(_%!_2w3sB{5h^e*y9g)PBb?=IpkDI<GQdaMu_J+uVyCM-$N($ZY(s`@nK7R!5
zj@|{kzlMk|IsxRf_8w^K9ZXhW627R2w&3S7DyFVHh<E;KlwxrFjR`p9g7&!&2z3z!
zoB%~#v(CVRguqA06+f{6Ie4-F5Jc7NB&3$;v32A#^~e}{mR^;7bvNH}tjLaF*uiQ4
zy8mhT{=?PD*{2Uz=efsn#*r=30*}9Pdtb5t&6qbQF8apBOu&|%$&YQ2awOW_wFb07
zhdmqApg$Zw3U}sor?dL|Q2p^%_GZqUhDH9Ll?^OKlPTIJH*_AHS^s)R!376|8M&-X
z$v+-k+60yLW}d}kn>iy)GV^U54;Hl8z^1hQL&2<;SF+G>Cm0gv2Jtkv$W4xxJ1+}~
zyq!~xqBa|#^Orcw$ZUHhQVUvspFwD)mTs2(+cMA=w%Wi9_%deM?A9OZB>0n<>ndm@
zR*=_()=|(;p`)y6xytG1N@nQgk87#F<z|YccMEor12+|aBdUG1$Qx=FFNXwP&3s$S
zbQ?L+C09?4oIU9t&0&xs<d>7HbcI%1ood-7(Zs69N(xGO-*YU`6$0I?-d*l#f540$
zS2ugh`|hWh9)sVj0IrkgJC}Qva;~yTX>{qYnEANqUR!2%soi=6F0|0+Sm&dmO@Npq
z7l-p>@D9xhT~s?2VE8w5fyK6++5@5=5?WV<57%d?mW6pkOf}I$ea4zGV=IR_&VTVU
zW*qy|6A$8f<{U^Kh(zCV1w?+AoDhz96fJfh<Q&xI_u{WHUL#xDN_3s0og5S?CXuu;
zRXU}y;a?%~025zX>687a@`W0|yBYFNk%u^PD;)3?b-=3042F0#bfDKr-KrvsN@j}Q
z#^0H2X;B98bQV33MVhK7WJ^ggRaqtdWQEjcISp6JK2(zn*=>2LG|<I~1J{POob9v*
zDm#@M0MKy|WABKYmH{dBr>Mdx$KNLzy~=5wWv^UgoW%?rN|D|EI)1vL@wS>>btc6M
zNkU8cHAF0}J~B?IIj}50I>x_cUOB6LfW4Gb%1ZyanbBk=iKVi~vQx6r>rv}E9%OM^
zFst42o`JSHifX5hrZP5ti^A4FzjS8p$59IMzu!6?ldN~W1n|ZA-}he~y?L{g|NYg$
zbN=^jl;6Kl{&zc#`|W{A#;y)*S5Cy9nP0kIGWG^?49Bj@R%+))lA$kU`~AK6%BDF0
zkCt(@6y>@{zi&EW`ikAl%#yvL!dWA2`jRB^0(@XdWqFEg0oVu7b+P<6CxFiofDR9#
z2ZC_yVK%!Y{0c#L(RW>n7}Hjm7hr;s=Ylcv$Q>9X2Zpk8WY>L%Jx@p^0T?6fPlX&4
zAV;Vxj1V7;LoU8Z)Q1@uQ*wi3#~7I-aI2Ob17rgJ5ly&b{nd=~fF1XGQ_N@KSd4xz
zo|X1LF=HWOy`#Usd2`qTaXQ~F^nw{oO=X??5p_aeUSH@S-wlXLzo?_z8A+Hg0(1;c
zypVB3&j&4`80&u@gG=HIcrp#w9rQVXo(BTrGL>%&fgy(+O+s&oxETEzyp@B9sUV6P
zZbJv;f(fCrHt{8cH%JVL_&4D*M8P1wTOgZ2x5x)$G$B;hxp+yDT$qbJz_5^5#6wx1
zYL<X80@6E2%me7%NPivZ%yj+Oa^o2zN6<!A*A?n-&RmHM^wtS|;nm&19K}~*pQ*q*
zk&wqBog%JI^_N=t{Q;-UFJj}(WXP|<zaOM*S}6amC-z09ME-lTzn_->-t516^(_Bw
zqdY13Zz)dM6O#RwMZIOos8GsUvi)sMzFR}ATg5WDvV><b=%h4~o4Z&8lo`xzBe;$(
zUH(z~f<X6M=t18>RK}gI^wlMCk=TygdYI5>85qvHrf@RBPKIxMW@VY5CD%mWQOb(&
zWGXThTf6XU&-zXo`>vorMQm3C&ilO_bKaK^2JZPF3#5>K>p(jn6ay-(D3Z9V;*P|1
zGa)URy{y-9W4RqJ{GK71y~rf{HxgjtVR<hyYgxB1$`K;7N9v~rjk?8MsLc2tl4b#t
z{sueMxvIq<S6aC>maeaxvhSkrT3!X__wp&2Ra0D#eXLt|QD*hV4?TN~ExSgQi7wCN
zWoK)eU#d@JtBG2MnP+|UG3%qxWxFL?|0f=5NcaCsx&D86uyp=&bolo9{AVkrVf{a1
znPcd59g3jRBb0i7MLd*H{B7YuGeZXkaEv|7v8g5gKuZqA)&X6Q)chZ*K_E4jIR`ZB
ztH${aROq1IIbHz4Cp_$Ppf6<t8hYqheW21hhzC-lR9iC(`nM2!^4;Tazz#$6TSQOD
zJb)B|_J1C9505(gwkK!S+z@+PJTG>4wNHX2FD6?uU;`Fd6H~~zFu*dGZRGjU0WSlo
z3cqY+dW*>4U32wYzKRi3FW(|MwqFbxO4cH$TKq!wsavRwh=n4D+4^~9=gYXVym@d~
zG!OKZ<fUowEN?u(lDq$pvF~Dk+JqQTvi~0(9W2@Z-y9x3@BiB<+ur}bRnzKO40u{%
zfZ!N99)Kn5)hCSEi;saKddO#l;@?!}o14E2J+{Td@h`|xHmVLtoE-HXhlIXLL{T1x
z!2Tq4d8W<;dDQz_CjZx07MoH5i~0Y-;r^?GwEp+@?fx_W-$rSY|NnJH7*817Dy5Us
z20L2xX@&t=er5&Z$p1Lh+1irrsW;3m!z??YSq2^<H(?MNFV*Axn`VjogS()8gBESD
z;}GZ}=Ag1jJ5hKQwv>b~c}23|#a+<WkxPEmcfC#CsLI_iH!72DE<MfrIz76{T2jC6
z*63E<ishNXaxUM3+`qd^SKT?q^S<YS_P^V0a1X|BUc1OKGszrI_=GRds@-J&vNLC9
z&&O{7g}&SOf*HIF=h_cH<>~&{jLdXmBDdRC?<%`w<kpzKGR%Bn-8uASxVCMtk?h=j
zxhp06^<B^oD7nQha(^^O0P+N&olg8{K3a~4P&i3!nt3h^a*1Uh&59SJOL2DUa`}VM
z&ps`!$LOcvZa2HdZ@|(hSF0}zOHhQvK0>n>-!9nkQEuk#rK%tD>`O(W%AIzp_wwgk
z2{&%*85yiU4eii!l|r%`(&i1S()NaW=+(vQ94{~N%Cr9Vkn}g@=kz{+zlNw~sG<QZ
z?@iiIKs}9uFR0w%OE1ewh<vBquP9#gs)1y^E7X^@naLNdA5z`V`lLdO(j(m^{!0#E
z$Vq34eChBGE>8P{2#LH-3^0Gm<jriu0{~>;PJ9j~glgyTh__|C?KH7B03e>E@F(_)
za^$Ih+EELX#IEf<iLe+&^QzP7Y=&!e*sUYLM=mDMY-CexM3dfFkTJ2sAw|qZPktH)
z@&IieJ*k~D?;>YR{d!z$-WNh4Rr6Y^rr9q=j!a4k&3?(~kXh~LwQly$I^V3sOhbwj
z@lfJ{IqpScfBY5uKVOOe?^(etml{w5l|K^83qHZMH@|#!uoyv)=N0_Cf>&I@$tbQB
z7Gk+9AeKThyl`Uu$G=q&CkhwzSJqPgDix77?x?+xi`#y_KK~~!Ire|K{GmD;S^F5E
z^!#`KD1HC`)$3>fudS2~o&P2e*Q}G^qI+NF^sdhJuYyy&$0QqA0QEo$zZzU>=xSWq
z-^7Kkm3s4_u5t-|T!ueQ&a!KAgZyN;ycE=e@1D+HnaTgT$2tw30hh&pd2{q?$^U2n
z+5cxNrD6VGY#hEep-LmRAX!#yju#xu3hL=lp5X?%q#njKIZ)IvMgB?O?m@?aZSd;N
zQS_eqIEzDOnw<67nA}0)4dnQntZgOgjJkhwO6Cyz@?FC)6F)=;9_n=b2OSJWbDhg{
zFSC!-Ga}#UE<?9ojV1AP)E?tWYRL^o?iM?SXkT}~V&Z?|OR1YgBfUI&$pPApD`}vL
zrG6BQ?&>{jrqZRp<`Hf6j;>x~Jo?eJM#@uTiu@s-`p7*I590TH>{&BJtU9qQS2+x_
z8N;KK=pK=^Cl#y5W08qR<^xV&^Q`6_V-rsuu(ow=?X-7_oKjsmjS^CwG8uWSyOa-T
ztuCm4Wp&{nXpzwa2R1kcs<MpsVfFxQTFSKKzwQiqb3FA4Ma{NRBLD3l9i;XDS4VGO
zKg)mHC@;VOa*n9a04G3EUma79L+rWOpMn57H*ktrxAg*C&oBcl4CEzoz-Gwvz|<pS
zAaAc?f4T=K@*u~zNGANSo<rYly#PL%s#s<_0Ywx18M)vN^BMRbyIt_!_ZEQo@=MVr
z5FiRX?4xe0dpi6y<b<Nu3veRW9{BNO2wY5At2@QKC;wk{zttW8Mtk!A&4byrC;rd;
z$!`5#T+tXhH(>xK*h8%Kb(h@*t*^Udc+>j2%jZGs>;JFy0{jRmCLsgor)R9y4Ji2q
zIlR@yE`mMv9wom#Mm^A4|5s=I(|2dxx!ZIbh3o&-o5NSH4pZy@@a=Q_&+U}|{2!f8
z2f!fcD6vaBCl3Gb1?Y7CtJQj8Khd1P1>*(yR-N>;TGsD7#<g)5$e@UT1jq;K-Wwp&
zYrmt|1M#63r=`5{$(=8qA1Ly$y7;k>{tn_5fPIdp6!S$F^iR%DI}Vu#9)>>O1DMC$
zXhJB$Qy<)*1=|C^5bU!(aEs9$+XI~9=@d~WD`kR_xFDd!L2gI|XKQ_Ye=Fo-bO*@9
zg8cK&jPu~Q*SovBv%Rtio$j_;*A%*F4(Sa$)|`<{xKN*^RwQ^QW?6&Q1=llVqBjaw
z$)k$ET!oECt_f*KCKE(OU7}uc=c}4{vH~$A(8q{LJ_|x-Vj0eXOOSFm!Slcqqq+ca
zGQl2Je3(!nUl7WWXt~>Jy?6nxFaFo*RjV}`jU3`L;-Quh4FL8Thn@%Ki;mVC0CDhf
zuSd}oGfo$sgRV=Q8$^X1sgDAk8Kj)q=ZB-wNVanBb4uLMk(UEoa{T1WU`z;SoWg(s
z2tKBXk%~@fGA>1_1zC?%gnB}K$w<ev3tSX<WFf!;;)@32AeeCj36Xf$gtGx56NC_B
z|M3Up&ExmQ_;lH9*H9ZMk3`ySwZ0=1{LtS6ff_M}5cnvAhEf!eVn}M}ir{o+aJSXc
z(@G5=0}k}T7>P-sH&+P}20;p-c+z#zZEshuJ!@dZ98w6>I8A_n3r<x1*f#?rR?Y<>
zH*!>noOTvFz`j^xn!^7ZT+;>ksLV^CA4G0e-~@8$k!jpF4O5N<@;Rab#SHE4$$^g_
z0HnjLl8ISZS@o(ZJ)lS?&}En-)@pUE(5K*_d+;BBYjqUHSKY(zzW8hKqdMUh3M-<9
z&6rgg3Z2Yb$TjXyC}f<5(yv-iZMjm+WRc_6YF(3P35lm_vP%M~)vP9nRH8@m8XFyN
zb|nf{WKuV)DZp$Z5{1_qF0&Z)NSGX{j-7`}ak!5INZ}lbiSqN#iy-=A7ce9zh2)b=
zRulgU_zZG0iA}A@1#U>ya7*l}nO5t+z}H`2<KXMBkHH0IDk7{N6Q<YeNRF9kN->@f
zKF*_0XnyLsG7*UU*(QdyN;2r8KZ@U99%72-<Q6etW`RAhCO`|5p?n8Fp1foLGDaK>
zxmnBc%uxjM<fqmI>PjG1_p|HCpJ9SEINUQ;1h)?8L}U6*8k-pZOTv*LfJ~lZ230jH
zLl&Ew;;=??Uzcu=p4SBfHH8JaVaTPRt>f&vM3P+ZOYw9Pf4%_UOK)jw>a<$-Kx*5o
zm3wfCm_u<O=jP)n_duEvz<ui;bXG24osYj@G5wbCN7{oP&*2nZX>K^GIEs2col4FL
zWEH@0)QuBy<#G>3?e+*P!ykm6r|he&!U&|{N5GX4OBr9qnuR`ql){HHBKKhQ@#hqL
zoqy!SgRBa4V8b6;-%7b?5ao9QD#6nZ+uby%>LrW%Ww+)shU6YZE}#OlVBnUos=Qz*
zJ?Ov=xkZ#>7cnr(u6(P5Qw6^9{41CVdfO1tq0UFB;Bo@A^U4zNsM;?$8!AyhpXzZn
zOVqD82*DSjdfe}F_{PdmllqZyq5ynU^%t4}Rp6T(fodbj90U!YOn`aW@O-V)NiG<x
z1P(>g6##l{c}!C6?RLK`{DNE3qb2w^Xd$$k21cQ%S!3x|`uPm`m1&0=V2F2DgP*#C
zI9jIuM&PHLZ3=x|_}MpqN1KM9)9m`APy*i$m|zE#O*4Rd8<hS?`qL*+<<|Daw!Rp?
z)CBcWPDM>{!+M@k$E+s>irI$MuI1|0l(FLHjgp;zujy`^CUnxECdNk5EjczLAxD{Z
zM~T;moNDW00I67S-U67J2{K)_fN^95JJR|vhgh11m#l2NdA%_;rF&%eM!ZwKC+mz&
z!Xsy7zitso2YUwEsjPt#x7_uJ1HF;zjSS0tDve;NdDE9lp_C#xh5Ecl9xE%G*|Mo~
z2i-z1lr|}$S4P8?!BvcwmmV9-F()~1`mU=zfJ6_BwN3Q|xp7d(RmbM{Kk|BGx#EoM
z-q_yDjdm%gH!g-#pD>P{cf^g-Jc}LgOhssnUjTFBBCsQ~X;Csp+HN;SCa9+?t&QBW
zW11KA3UHCX8}()aJzL(+>W!{O^yWm@$Vt4ML{H)q9b;-{I=dG`yvEpkY%>p`pslA*
zR&OAkDq4wIJY}2dis=pZRcQY9&+-0cOBS`ZvgH;YrwQ|+mgT+N{;`I=^|4x4A8IKa
zPqoOU5wuH7jlc;R__0`hA8--;)f_%9je3GI0b!VveA;AE#(cDSAWyE`gVC}NK_uPA
zl;Ln%Vm8m942M&&gXi;*tE883%B0T<MPf@szKh%kWH*0c<sOU<j=HbA`yCgJG4wkJ
z2OawQ$P!r;Wn4T(EZdA1)wDzz^^p->?%)Ej89Y3Ca|~g(+l|g&eZqA<+erA>19$=$
z;(JQoi-aOkkD&LTpe$=;_Kz`Tg3$9+2DKX8Ond}Xu=x!_c%tPVjLs*QgbyfU$WJYb
z6lIFfLGQsZKn|WPY_e$Q{_S9ST4h;Vw|}&_85)PhJB>w|36QS?bu9+483|>=Y*0@J
z`*W9N?cDxRP$nl*>9QaP`i$YJ4`3YMOeZ|gJUQ-y_k4!v9cE}xdO>jnpyMDG8ym)+
z5F5=IBxdUL@lR6j!HCl^=a@34OoM0nU2rZhM7UyYWuD$i|78=U?oV6FC4dIq44zAk
zQjszZdO$p{nQEmXWtwx&crF!7MaozQ*B^2iTYPk`4s~MJ`#;mZ-CVf`BQc1d!c1{1
zi!ymaKn6EUljoU{)hHF$%w~P9x_J`dUV58Tm%s{UixIf7o&w_a0880B48VkvxstzC
z*VJVW-Oag-5(7O(%&C~VeQ<*oV3Y_bJQ6cY#y`ePCxvsn>YZeS;==x<JEN>vm;nbe
z)U8UHt+;_L`}9=tV|uFP9*mYkgvU;2S(MqFhuSk`>>?<WD-mZ>W^>MS&y=x?mH^VB
z>8(=$qiGs4e1|=hW!1a~??~wLgrB1Hv5{d8<Rv-;T|qf@M-KV``L~!7U*7n<g%rzE
zoadrS1-qG*T&ME+Od=!C&Pc^0@`#T{fY8Kb_>#8_9(1_}iD66q*h(&`E?fA{j1r%O
z?1aqcm?s?ShKK{}4e5)6x%7_eg1+aGJLGEn^D!6^Ux;4Hl=%q;fw!>!zN45U@waxK
zlM)%3Oe$VSdJ5&f2=EeR{BS;uhhB%E)2!_tT!!;8qJm%PZ}c@`DLKyIElSYMt`}Sq
zj*h{JbiWfq=2RLCgjNK7(S<19U9``g2-Z1z!n@5q813gy#3jnW_)`64+6-_Xd7fHt
zN$=V&_`uL4^pxesy@kFbogCx07~*1&e?DQe$~_p(7oV)LOn9{_CsXZ<I4E}QzfU?9
z>W`Ff|8uEd?!oBj^{d0e^BEWOu1BUn5XK8m0`9>DnF7bdLeiS)cb`|m%B9Mgrl!mZ
z@qHC~BGVN>IcjUlcx2kaGKLY2y|(!bi65jGy?JDhz0{!0DP~Rqah51ULe8FPvvR3Q
znPA!%|Ggl&ZW@X*NlFMR#Icfe9RPji$ZzHv(GxCJESgEm=s-sqYew!f>Q_w<LyPB9
zzm)4UiZY5zy~F-H#2B1r*k|s6{z<MB58Wb9EE_h16vfx1o=?%LmU}Qll#=CBGqAMJ
zTwos!Wa!bH^O<XNXHV!Yl04W)Kt(GBJ0{u{p2(Pb4Dn~XOi`)I%{(%_#&h&rh7BjG
z$-EGqX$tCaJV%VfdGIVi*DK|ev6GAzTQv2BLV4I{0_8oIRZF>SCMm-Zz0GhGNY->d
z0MK<QVhj+fVhd`24Mi+j#}l@6HCrmK88QDW+@GNw_}Z-Lr%56`o0L8z{`p)=N>$3_
z@BDF1R>%R00^~=2%~BwfYe*hdP6(YF9q05?yfnuCpWRhvsZ^v43nz6b1A}M6tXnEl
zW(*l}{SwMt5yH(_qp7(hk05nsk+>$Q)J$-SCtj*j2K#O)Wlk^EDZkoN<U-&?Z8guO
zcBw&`;I4!+OFo*<L|UU%-Df0E>T^!<IOLf!_C1Jx7F3WaOaPoh>@%L)Zjy}dxn!1F
zl=%*OJXfo^*Pf_qTaj-X7c;r>t8mfk_rJ+i1VcVUJ~v0s&m~c+QpTB~!h21|cZL)7
z1sfT%2o^TnOy{3;sYn^_u`&ydpp2B0X(<1zUI*6~Lx6mTE}kO=)hiXPGa<!gu3q<Q
zga2@Kp=4%Xr8kf}icn!xO&{6M$GzT+F#hp4Ae8^y(*k)HoKK<)8hcSZF~Vnvs+z5w
z3Mmi!Cu#91Uo)|@%qisX6zA_VmhX(rRp4R@Cd6}}Ph?gp_h6Kfyrw5cc9f>fa0V%I
z2NZb(x)*p%A;s|#+C5OegFw9iJo5(Fkul{u42fyakt;KPJfF@K7culxc?6T?L@p@9
zW^)zxzGS0`P65z7;EPjC!L9sEYBxO>-S*gQp1uhX5cfev(|<svJRU$y8HRsD7kHjY
z#7H)qVP@_B5QvX}C%!WFXF(u74<^q?X@#YHpQ#|0>6*@BX^c}inPBJn0B!YBE}IF;
zz>t&gk&omqk;~1@8$yL7b0}0u&szY7yh(@2#MhE)4x$`Sgns$#!dXzNQ6`{hg6L45
zfSurAhG>@W%uh2UWn8UdDg%u8<Rw!ikzWE;8S)*(0EOy{8C0B3x#+xnrdXAIM&|9d
zrg`4==J+-s%(w|Cle*bAhM!kXNvXEah++H=d#EV%%sn`X2V45b`m1M2doDF7^AEHr
zBu<htH)!!powZ7J%AE9zSIs>*=|3-<=1N7%P_K-cfqNicF`J3Jy__J_6}lzb-Y-*v
zK9}NBLYZ`c`T@mrNEgke-Tab4>+|Bfua`>mOGbOoYg*gc6!E$xf$Fk{$`1FWD~dyL
z?Vzc7xCiEt$>_lzg0A>)x7%IE$`f}yBgm_Plt@5a4cmRzyp{=65|t^h7J&U<kfW28
zoXFqb!C(zYnTsv~DVY8+h9|XfWkS;Trc#HYNsQ~4N|20Rpis?WP)@0Ay&|T7yfBf4
zdVPEqA#oYqyau7}!I}Q3yyH8{*A2PK83D_j{h3*}D=o2FR60vQE2P${R5GKt2DvIh
z!anBiI8OCasoq33d-1(aZUpHxoXbqz8!B}m#b+l!K`;MMOV?}SDM!H+JtHg`HzW%*
zr_g6m=V~YG#e1&<Nl63M2z3umvFxFkO=MySrK?!0%jHd{GcW1q`H-RoQB0-Ox-nqX
zMnpp&Kn^CDG7iRsG%4b)K&66kcXqw%wQ6{F#1<^13TzpT81fnB_*U%16GG=zd0rhz
znXwo1A?dZ0S~VsTusm-0jGRzs;%{zd)?yFk(QnHk*&)8aAS4;-XS}F%xDwTC*^Bkz
zmlIMd1R|Z_?j?)FS;&BH!(7CW8=7*e(67szG*uQ|p3yrKlK%S#Qk>ocL~d~6O)DUd
z<k1F(_997kyNObZO8W0X`E?i#N#2QhkdWlIf9Bu*2s4f(^6FI?5hcS@VnbGlHI)p|
zl`AVlJo1UVQbxec{0q5|PTp1AYL}vy#v7GokBQI<lq`MdzY?_CRI0QqWkS*$)n@Tj
zg%l-9tW$54!qrj}bo?Kazi}s2(V3**tcnew<w2R6V@0QoN)xY+2wnw}sBc4fszUPc
zE%Fg#14_najxtfb`s_dPEg*i5MraaHHc;}8{0bn6eI7&a6nStlL=N%Y3=-ahbM+c<
z#e0CM7u8Mr1j@$CJs7>p3TajVDL@nxHy4blcOYNeCYBh|K}|>;&k+fEF(!49o`ih+
znC`*oDD%ceKBNi6UP#gPj3PE8UiPB82j8jJ05|V#3)DRry{QR_g);3;8Kj|l?TbJ<
zD1}53ba6eF7jeAgx7%QOl{j7sQWch0#PL!nn=X~sQVLQPmY2!#HjE{PRL=2IkgBk}
zY>u}TOsi0-3d_smcv}EfiQ}apRbhE~9B(_2$~hk6kn%97A>zdx&;E8RB3@<NLky{s
zh*!w*5-6K5m1MjGq)H-QHpkmAmKahw$4fw}B;w_8yscoWzm_VAc)1*J3!r3j-da?u
zB;w_Aye&a0rIJ#hFKmgk+>UpmPn8mKs`UOe*@Kn)r_tky-w?)1hcOD$RbopiW#SrA
zY9rbLrW%lj)|{ze^wN+LGi@70ss_o!6XYx$5B)&MP1RGtjN{9ty;a&;l|Mg99XOBC
zgir(s1#rSqv<RDmL=ht)br9>yD>qd@DVuoop}MQXD&bsLhNuaNqF+PAIP1>Qyda%_
z3`xF@T%g|H7No<YH}95i<(5Hmg0MuZO+s>la4UEWr2ToZRvSnGD5RJ#PKeLZXI?72
z#$v1fQ1%*q-hwM-B}F|0(u93aNtl1Aeh=jD;QTZqPC&L35=zQ=`^&p++IdY)i|VwB
zs1$RzZPBX|m2x4`(C_EvlopR|BE{G?T-KwKgp@f0GbY})Fy&?Wr~&Dc_*aCaQ|rt7
zr1tMygSOtpgPuq31{B|74^7b-bD*bv^%SJM-!}@clA@jqi6O@!b0NS@u!p*Q5txc}
zHlyX=H&3j4FuDqTp{brK`EgVSk^=)c#vbMvv93!=yrdMQrQf$P`|iQ$W4nKG(f+x>
z19?Um?|T@s%#>_7_1aE0#<QNdOeO{aP}SBvo~j3%q8FEl-w}FK-z^GH6bfHe0N9L#
zo(smvqyx<e2LN_rcSbWHmCtS~ttHW=^TA2I6ZJHt^TEmH;Z%m?!7=jcovGi0cQ62C
z0@Syb6N<b~%OOXT&|`?NjUWqBxpE=Xb-~<BE!p+<<ByhTVXv*mOC?AFaW85Ts+dX=
zOXK9J38`O`P!S}H!dt>s8Pa5eeasgFidY2~qFg2ppsol6vZiFt?P#X!m*Om^OPK~4
znQ)a6at4!*oYk(82r6-02Ub2LpX1I(aowBeMUZ^rq9h($_Nfj@)RQI?5H&T5sS=ek
zAl;w>TS_4$$uH!6;wXY;H9S?zs*uz;6<LUiA*t^pR8`4T5mE)`wW#VELuJOGa8rVe
z;i>WsZLCz{cw%&i$U_d#$)J)|?`1@i;;puERFxoc;+cF@)uo5)_@k{uDxY|q1jHlL
z#W0`<x+lbEoI>muS&{`L^$}2C0qZjfQF8Pc4pVPIhZ4rXf`qZBHJlTF3iMH3$0c)!
zebxnMVm(5ADG~y1lIK){6i`g0=I24imQsu6KpN<efc(nNFpi)zYeeSGYr2Z-yE8*>
z=pkAS4lqV90DS;Gj;Jq2FREn^pzgE_+Kdx=({4O!V<ku&(K+_zy7-<#2Mx*()#YU$
zdF-4cMfeE0DrcXr9D%8*dlGuyV)Kx~z=a$QIfWce7p0N|NbgI=m~X2|OxGr*hqWMN
zK)NEHhyCdX+3!&WNHpt%x{!1wK-HZ(FSCM+t^}!^iA%4072!@Mv#-F)@4<T+L_me=
z(mK2H-uJM&E(2W`t5<Y@LRELAGn=AVh1Ks|C`i?>k<^D&h^BhX#Y&JEc9B#4R*b5*
z@49xcbshHMm{tYX>i?>cgsgTFb)}+Kn}Q_j*aDtf6K_D=VSt?VC!VgTnOT+%shmA9
zL~pT!Dsk_q-hYH+M18~&14H$F^ZYue>5<Nqem+Pj@L7<8;?&;Bdac3N-)||&cV0&9
zOh`h>D9KnJ*DI9^2_hwjZvj#T8BarUvgnyt?~p@|9T0s32nClWnc)mU*F%gM0yb%(
ztOcot)wPnf)lA4{OD*=`5$JvkJ?J~7q`C(e1iE0X-v;LcfF}_K$tN%aqYJCXS~mA$
zNY$x?K1)TxyH*in2gJipjzJ=J5>O#vlzWRnCT(5xc5`_#VvbjEWR^vxq3q)o^s`du
z>aCU{#-xuL<N#8nj&6~wuKyW|VFqkkH3F%EKonC+Y`L_8+$zJtP$*fR3ex;JAS_BR
zv&n^33lc+&VdD2I*uaDeC|^z*zpVXNSGorr=z}o=ZNU!Pf-kmD<YYY`v{!|6nUzPj
z3M6%%Id3iXEs+&*j{RvYX{Rb$spmzIs&hQEn^fTD2}t_BEKITWXme_I8df`uL6l*}
zk?&N!auIX9453t}a<J;u7lj8uo~(i(3sME=H5-x%hUG!L?8ax+n-y9~^jcfLHdm^h
zFIkZ0LYp2yJ}Wz4x}G5rK%MGbrwTAxN@OL-1#lBmY<4n=Q9dLVj>`cVNGu$?m`Ypv
z!o<qc=r~cpnosCjn@Wrm3a3b#P>Yp|A5Xwgy{rwcIl&L)($YY`2qY+PQoJK>v1LU;
z>Z@xP;_Wn`1~Du{`q;ig(EW*Gj^6tYQr<-QRKmYi(QK1cx>BCV+ktftMt}c4BhgVl
zm8vNi%gTk6gBs$~g{AhsRMGk79$dtyWm`j|o306oRXYt7GM;+T%9CjCP^L-_l+6?D
z$SfrC3|C0!DEsuNT1>BckOY5HibaVEsBgvy>PViZHKxs%dXTspQ7JiGA@KkcUul9V
zNhubHVsdD1K+T6BkY6gMp*i}{Itf@EQn~Y5B}hWA8#+*<x;OJF1~5i5c#8>D8X%Wf
zGGq`b;K)5!Z^Z`G5OFa9DRM&x)wu_74@OsrL!1uqxf-NX<RO)WqzIDIa)ZFbh{gC)
zP+V2jYE;UBln(tYPlt)`Euz7-PJwph4<R#J_y|&GhB<P0NRjcxkSQXq@Lr?cb%RH1
z2v047bYU##EtKLg(qbZ9DJrt{V@b<tr6&bTMwC|9mt{<8=D}OEb|`6}d!MbOC2;8;
zoe2I>-7hAbk5$ybqII(w7u5V4y$M{6#VgK$)qLpULPa2rYr8S}V*D#a=_@q6<>K0E
zpuUyxtwyiyMeAFYXw`8&p^$wETu&%&Ujo;rg7?KUt>H_*`9{V9T#q_}UjeR19mcN!
z*Q1W*SAgqL2lOkz^{AuzrR3fXh4$MBL#)mZpHO_iB3zF-$X^kz#~kUe2-jl{_g94L
zF~|H%;M!2&zs-n;#WvS`T#q~YUp}tK9Re^P*W-=@n2+mm2LsH<^|&JfChZ$fCoEtF
zt|t*2Fay_<2oRXkznX~>n6VLWAWmR)TpJA)*tpcO3a$;r3)}>*{CI(7xEcx?xCs%l
zFlb-`*At2yScdDdh7U}gJ3N^fg4J+6zCeOCa6PJMf;DhGs*r-!a6P`bg4J+6zTkq@
za6P^Vg9%*gh8c{difsfMtbPvr1!4_mjY`E6=j!Y02?ZQX>R%g;I=BXD@^DquQ<@Gv
zm|AZQm+H7S6o0U3Lal;pV?hX;2Uic*I*|wy^KRp@2&?-?ts9Oog=@nB2@As!CjDU7
zj7gaEOxtu+!s_%|H!xue*M>tAu7#^sbizzr8;eg^!%wft5QVADtN9>>)%ju5aSAsJ
ztvarzgB5NZSH*ewgd!Fu_peQbE!>DCRh=I`q1c7VdDu_@!=&7?sSt+MajhH0Fvhcu
zIEIB$42y8p4rQ2)Yg54ttMmCU9?vl2I4M6yTh03^Unr<yVog>GI9DCl)*>6$2eB5e
z?SwaM1XTTbxQ!TxP0_0&-*`fS4l{8*foO-BxSl}B!%SRHAnsu%uBL(?TJpyR!XMV>
z8&4ntVkWL95C*Z7UXL^uVjjJk4~W?KVylnq2}DJ#g6lDcM$E*uh4_dK%*q<)M9l<A
zjQhONFo`w%^qx+n#9UmDJX~Tfu16j-F&|fBffG~9t+DugtKoX&(G&CO^|(VQ=F{tO
z$5G71^~i%M=Fh{&9Z@kC*CP+Bn2l?5u@z&czjk!R>VA4pD8S-sxE@24#c!c=69(2n
zR3mW_!IzATnCeG%n8XKOnuy}~MdLUo%0uZ#&7#)+Sgw$&8g3>r4Yw8x+apu#Ko7X#
zJTS~F3O(7TXc~HudW+SJEoJ@4X5A0G*i>*R@qZ!X$Y-S18L8l<@-~I4BxZV%^T;M)
z#Qhlk9~WY;j-T8EC|Oi+i0_1yBHvjQS-}(46i{KQx=q3XBk8RAxQLKRg$cwSa{rr*
z*$<d;LKhc!j*A_ei>Q!Y-G<=g1b=woC6gnm02-6ft4xVPj+9&72H=3vtEWN*4yn*s
zPZ4xI?4z;(JY`hKu5L4Matvq>ykt><b5D;{f5H*{4*QtRie;xFD&$nR88}ae3KYrd
zTXkm!B~(aMw`n+F^xoH@mL3r?vZ%05G>gH~x6+z(LW%$1WZcub`{v-}9GN}vQjrQP
z#NN;YzhyW%fgK)r$<Y_qkEo&Q++JV}(~mz16{^Pn_#$M;3kLGQOMNO7L@P-T{7VK*
z6~OEgiHIi6!+ARULOvA`bl>~lLX6;d*h6f=IGU?7igT6<%7HmU-b9|V$U~Ox!1)tU
zp(w)5IRlu3fG~!oZIu9|evf#Q_L2|G_Ztc`@>Fc9E63xh!jY17Y~qqvR&bsNUTRUH
zEP7BCD%f?16(fTTH3ugrl+Xh&*;H5|mrf29OdcIh#J;>iAf_LqkL}(V`#m;m@3lKl
zd#@c#Ke^#NfSw0B9mhk^2b~U{bfkj^1D%dXpxe2{uoFParQ>Ob3fZC4`86aQb)e^U
zu#0?-Cm2!jg-<#GWbBSm7j!yeQGfH--v{5Het0+dbb5aEM=x%(^Vc1D_wnW5zWP_^
zt9j=uxAWBxov+@#-0cQa@s5}<SyWgl(ofogp)cWYx#YQjJn)i5g_YtGrKw<hFK@3r
zAu2Q-g+enbW70^)H)s~l)1iX)!>#HU4wR24CAZi`36HwbAj^wrq_deWCo=tpap=3y
zBR(3feDU+CShfunOa$Z#CT_`*<j7;`)ZM;8C}_*rTek$efTB6M)lT~ixFHq)hG2%g
zxpuw+B+!vhy5IuATU{5L2YjJi;`Mv71{I`Ra=;m+JaXWAf>fyJn+^*6(=CHi(+T}^
z`tjtbP|=efXeuO}>Az6PbFF{irEo1&^ZN&dzW>`@4S5#<9(XBS3w3T(3o3jW=``7o
zCnqCSykiCw733YW=+;$y6Kf-v%kuj%>M1lmrI|hsiWG9BYB%D5l94Lhh}%3tp5X3$
z8_W3D`fd!%xtwzk`Z}iLuOSj-xJ5JyMZ^hkh|jQ#sN5>X*ms2>x+7zrS;>q&;=~b*
zR#F%qEk}~~8gxK!?XA-I^#;?}1G(jpDDjntW^NHg-tZ65i9ha?T7JGw_C|d6O<;F<
zn+k8_45>z^%wbao*g4`9J8Tuu`CtW)(G`Q8fRZ`lGZd~KRjXE~DuDIj9I*g8HB4jo
z;2rTXCsM<Yz6XXGYjar_T+a}TjA!P`d&rP9<ZD~_LWS&(#^q&PVZFeUF|#cIE1j5X
zSpbt@1DR-YWtf8qrVQ}9dSuN)u-Knc#Mo8nAsO;?4(USas_%Vo@f{`e+!-ECV_gTJ
zp{KLQ&EXA7M9R=Ls}Rc4=B5;Ad6qn(WDX#ZXCY4LK?(@PQ|zw-xo{d+0Gl_%)i#zj
zcNJpHqJTV{XmIHuHufNhnShzDA!i<7@z*Sl^b_@MhwXNoplsd@zXt>2vM+{HITEC)
zzb;sv_ffo&0;?}AC%AED_PHdmO_n%3Q5jhKu59_jt+QrD&7COlIosT_t-fXpz-BDm
zCf00f5Y}I|)u(X**o=j{=9+B)XU4K^1Z>8_t+8g8fNiW4u32PZb&<a~A-<0sX#%?@
zXF9}PNmM(OUa~Ioh15twJ|#lp;3`C(cp!9EbsnOk((M8C*+GG_c%EJk!H$eVdGu<D
z&sGMTzh-T)d2Bbg-fYU!EnOGQ=~PTvsqX6V0s}<nSOz^~P3yc5LDkK?%-@8P`w(>7
z%s!~etjstTace4h)+TF*PgZNznaL=Ra&3}3@fi9pm`Z<dZ2}CIqKvFUy9`Ik9CUcD
zPIsr6@uD=nrsne`ELCAAuoi=?5ttfR=zcjmmpC_wb}<=ML>CYyG_w+Xb<mj_H-OHB
zVk4}>X2>&v*z(YEm=m#aWpo@)!496!L#{$8z$ueaM=5g1e2#n<xhq;F?!oBbpyQ%3
zhJNSZphMrjEkWnvDPon<VpT<_YBX_1@8ANk89Y3Ca|~g(+wFpZhaf}1CtPfz*y8Sc
zDpD@rQ&N#hlP>EKW0q-5FGLrFo>%44V0Cn&Mze1=TkgT=d~!*+%%kLMl9ZwwB8Q@q
zaIiJeF;!*b=$2!`=Af&Wy}b%LQ=`f1-gL=4U?@dra-A1nCa!_bRQLta)w>tBd?hZm
zt#6@ZUc_1nUHZOR##OVe!)p#*`X1MPcCzWMBCI2c)w>gNUznPCJ0LT!f@m%2J)a>8
z25Trr4?zpEd$aOM-$T%N;*vhb)6uKHRj1n}>drklp-83xlY6k7ZzlY8bUuFeIY1Q8
zk<X#G(bKDx9YS}c@5pF{T}SpbZ|{oJ1&G(g3?mbhMn%_<m3sM$An^;6wW$Ehz7C2l
z0~#h_sJPghwOQLpv<#eu1csbQ*Op`#ugMLP7Y${cC<er9+688bD)L=Gd>wW^fmD&a
zAu7d}J~NRN`n^>NDxX2A4V9E7mX4uQvO4T<^@_hD9+Kt?@sDrKS{D)>rY24Ka3Chz
z9icZHTKB1SB9YLF=Ecamc=c`nMA{UkkI%}{S=TEmgK@xu$|M2z;HMdq`zt4U&I4#i
zFwv%1@KgWl^8E7q<K^E}pwoaNM=lub+X*Ue54wj3K%OH=tvB@HEySKSYssIFqMs8q
zkz4;e?ZmLo=AQ<<MNyzQjOm&t(5=b>#f_<nx0Wl*kVDD=w7fE878lB!mpO|se<z^S
zGimDDt$p5dzBn^znlx%=8Ze8YRI^{!gVKZr)3R2Y#1S1c14da;sv0ZnKxxKYDHPG}
z!Rzk6ZJvyB!DT?HYMESy@<r^BaaWe1R5e4^p-MA`$V{VS8I&qEM_v0+CxqOzc`?tz
z82@TRQ4*uxN2`XDJ4F-hBRhkq7CenpVWUtA{FRgY%4bgDnSc9Z^(?C<GZ^x3F(vAf
z>@B2NtZpf?L07sWWKYAI8&Dmp<QZu4_s*;&Oj&)6)2zN+jwDgF6i2D42Bj!E*bwox
za71-if>ICytOk^v5L=BvQO45>PzvH`)qqkEr)q5|)#6t*F~N$$46O?#ukLIpRmI7b
zWA&^9CCj**PnCjzJk_9-1-w}Y%2M5h6RaSrO#+ICZ;_7}8&EQ?m=iBz#))qM@vFlt
ztUnE<>RL%c!9L~~dZ);Pi`<aP>eLNGc@bVnjyhQKL}=v+bPbeyFgmKp!IDq{M6onH
z6vc(U2Lt)qW--K24)VEi0Ti*kNXUz^+=FZN+BUGPOqGd>^?N;|h|P$Xy=d-%4hamn
zd2e%I?!oBIN>Fs<_A)5L(73&B14=>Q(gYNWpo{CVu!w^tzugQAtHHriP^z%7A`X^9
zw|=RyR#H%^u&_)H);NY3N>vV)f>MQrWpl6%VOgCjRajUa2ipjk8XPPIr3wqn<6xVD
zQk8?rAoXETLj;RCnEmaBM6fzSegaA*5v-7dCD1idYApK%lu9C4HV11Q!<tYkiC{S#
zY(rR9T`QGDuv`wd5ikNuJ~z&XQb`2M<zO3wQq|%jEu<H=Bv|eOuaA+F@}u<cH<ozi
z;qNMS91wqvgU`x_R(;ndu_cr;V+|#>k!%D@Z74%)Zj@S%BPfX(wHcz+f@1cq0im3k
z>*Xave#u^F?D?^OpS;esDwO{?`1{*xLVg{uXI=ZXOd_j4G~Ue_H}wkl{K`<OQl*}Y
za{`Kd9k~{$4WOw3MY|<+gUa)(`~c5*^sPRv5>Tp6Fat&3T09?AI>6(QV+Tav07Ai~
zSlogvGXz~v>^i#Y_0GU*9IF~A3`ytS{$wI#%EHstducGG!~=ITL=kX2jC>xu%umT4
z;6!=7!8wxNh(ZS-q3?Dm8RI&RG52632B{8JY6W^rr=+)L87I=cuj69o$aqTvkzr}b
zcLRcJdBW9SD>_U^MT?7ee;X#g1y|-ugOp+%3Ips<BN!?!lm+^|jAu$p)_xs*B?%?E
zW?lfsz7e1DKU_k!qqj+BrrZ@$-Uv|@B_0*^*NTCHeU9jD-hF6O`?-D#Ko0I^*qKFR
z&t@d_Trft8EXZBg@pW}5ssmadDYY4^Ft!SeT;=j>nepFun{jGg9ZHq(@Cm0^9py${
zdxd@!LV%I<q%#o)3`0OJ7%%L_lLuwRWuF}iE?v9TKK2=h{&L)+!ojFfR)<27><RX#
zMY{c!dh3Mv6FgN6I0(Fjbbf{Nz(Wj-(S%SGGqN?HRQ0AvK~ayd3IW|~*V5{Mus=m?
zHK)<lq0ER+=tc2@i9L_3x9vQf+RG*811oHe7L*nDm0!qMcCC1=r0*Z7$RXNApF=uD
zJd!EZWds0~Hueh{t1q!{Igu7{>>3;_uJ0=Js-CZ$MBdbiuhT+Iwf(%f)SyZV%Bs74
z3ey+a?Nd;i+*eZYHomW<pj5esaG&m^i=<|-k!Z+e9IRzn5Q5Ik;yp@w74u-!=`h5>
z4O)D23%wA1+>8GC^9VpX4W)A)CtxI__sgBq^G03p9iaeymdtps)f$aP4)GcBP|JP~
z%oiQ1r`o?;qEo6p81h-y_!AFw=9_PnU#3ZfBVQ*DKJN95S9a&18~IiDv|F;w2*4ue
z<X=6}msU$~EI1~&D9RYb5MPRmG%}x!0Ms{hqC7kTbFxRHZmacQ;PU<T*)e!8#0BZJ
zt5OoE+ZG;KAa@U7`L|D!8P!y55EWD@kg<@&ta!;x%qE8-8F~qNY!9%|nF$^mGDIae
z5UQZ*2;0*n`~i9MF1WVqW{KMEO11o{x+%!IXOb*Hf3X~vgn^yGk8D>hzVX6JzaU1F
zqK>KvV7@2%CV2ibv~h?%-oZYA?i~Aqh>+u3F&xBW08c=4@1)!MFYxu(KSAnafBN;;
zQHBW^Q^c%yJoSlK?8FB?x-)Z4;l)01#B7t%djpDYF$q&~&(w6hgDlD;!Dp0&Qzewk
z>8s~V7o7Ws5izs}i08@(=dvR+cq_Azh=-<&dqB^$C^?3%S=M?-{FfYXc!L0%OpwF7
z;8gTLhLg-2e%Tfy-mMy5%vgxJ;0jHY4DnGu0Ehc;4u0O5aUQVaUT=!|ER=b-%qr>W
zWg_2ZJ@NXkibpDhC>L>vJ=SXVJsGM>kjPu?0SNxpe|G^?k~uL9O!5<~Ev=GG#OAR$
zMv~#%fy&k53Y|yZERuvWyhnCv1xC`D=$5++IQLd(5n{ew<KXMBkHNo4DEn+Cv9Te4
zv>N(($NFQp)q3#)DETy0iA*Hv6LT>d))y~cfR9&1LH}_G&J$M|V!FA+VO`y6Nxk?`
zv^OJn9Zq_o?;<MG*L0|=up{c|Sa0sOTIZ4hF;0m;^%nL$2_v4RZc~UAD#+!AGHRLa
znXQAxA)kd5F|Z(^%|n1okYaV31<4DbkYfjW-a@SK$ezXFRP-tgTzMny4)Ym+z{QgZ
zqM|0{-rs6{s|G;Ld_#07m%8FVvIe!ln0;<6*ol1YRxBoU;aA$8px_GTy*<G2)W;L-
zKtBrDBw3h4vFtav4Lu*xIJuupG}KjeRHqR5H@Rqa#7M;uq4+<^{9<dQ99R8RfOhN|
z(`xlqbbd|(;GtXO?TJ6BGzmnN05bjsImQSg#R<LsqE=+^a>8dz9WpWZ)GBik3J}$o
z2JmmP52i&(QK~_!S{0W!g_SP?3DCv2*bN1>^-O{4itmDiVzMRfu4s;-Z^T5f(@+^v
z>?X5a&0EOCnmUp0A^Rj=m9r~;A+jDb(37D8)oBgrdyJUw$bCcf`VRUzZF8cVmhQTy
zo;~%In65rjON{A^ZBbJ)L1fe&Jr116ElNCrz!A%t$&5(X@leTefRaZ`;_1HXo^_*v
zqe*(FNhv!gcb<SEM~DRCM`N7LBZQvvALROrdvEQgdZo2m*96RoYoZ(55{OxhQjU<_
zH$u~%-cJ^Z+Ea^H-P^GwR_mHsEYU*W?Gc)&$GZQv^tFB8E~>=ZRmH0xb*?GmNEujx
ziMCAaPY9jsxB|WwysRBiOqm(EGwhbn&|J+)*#Q=XSEcw?sH0~4D%cBdqU*ao>`y3U
zoQ5)+nYFR?68xp7m|I6S+0o<L+tpN!zv_ywKo11dPqQ&pe~CSx2?12q_zng_rp8Rm
zM@kM9i-(0lU?#ZXEGR8!C%Pr;?nZkqbY1&OQ|?#R;9B%F3juxRa(_!~$)nyVu`04(
zN{~%5UQV$;70e+a4RInlIdl{}Ayv~@R7iGK&^+o};wPa*M9{?mO8n*~mra5Ul)?0e
zG0f|Ix79lLqoLH(m?1#qrD~?QRMf0g!+d~ra8fPHyn}(>m<7L3dAU=RGtpy(#zTB0
zR0AXMrYNGb`pFvRFi0%5OLgf{GI`9ht~uV3Sbo<K^vu;>Sz?|+FrkReA`7lk{5~2H
zBA!ge!f`A-af(n+2n@aSwbx(0UCoS=8(gS%4YRKTb&XxF2b|wgsag=~Dt?1LBPZm@
zSOdlPF}VzrOx2$;Jw$u%xU1ht@JDN2C#K12vmyefriE^>;>1YyGHRiL=>g6siWJ%X
zGcq7x$Y)sUp*9;gDz~jNCzb9+N=?Xtq;97sSLU@9N?EcY6*x`o?4vH5jrPQUe)UFj
z<B<RCPJbKe39oM4SRsHF?XNF}t=9F$(C}a*8fimlB-co0EvTU;QbZ8$v2KF<DK$;S
z%aN+LmcErlG9jY>QtpjEi4Wrpr%(b=KuLh8x6qxD4cc9``*z%FbyRPR3HR7Iky@V!
zWjQutYRjtm&_R?-k)9(n{KqOF1(_sLh3c?IN~u@VK?&1#4PyQo#?HES8{c6M$zVOl
z;3WP)@<s7D|HFTvMb5W3Xp#4Q%hHYIAbp1^<9j9|h|&Qh9=SRdj0lC|*2gVrNVD{6
z@uv_b9PXK#bS+clBZ{5GSai6@I{NocM~E#dKXtb!-s(Cu^RWPxdJM(8rY{1_^$huY
z(OSxyUD<ul4dD9?r=fbqnoG%t%k$)$b`IKh;v+*m^}2wP{N19je&q%&+A&-J{!1}6
zF{8yA|1pi?IBBJlQFoXmg<x5Bv_)cbFeRw%M9eEWv)HcGMz~U&yWljGrbsA+){Y7*
zt}IBI`=cdt+R~@8AsxN_kHc5HLUM&vh6;*bN%U4`YoAFYzF3T-3OAD#r=5q48}_jr
zO>ZRkO=*+>=oZlhpNUS~5qcxVIP^I{4o9wGq1Z(Zq^#9adxX-|5_joiLxN5&FBX;N
zQ;|asOc)bYrZDK+^%yq=LV-u7Q_(5oBDNcEAubVG?k$Fj6*Jwvk!GXzUO2?_z*}g|
zUyB-%s~L10qK03qEmoAD_$|TtyVAI}fOD_)LYf1z(_ggoe~()Lm|ls0cjPhNv20&!
z6ykxL;qp)Wr}*h03OsQP`raK}F!`HQ8IIM7fUa0PifRN2x5{I1aQNzVcDJ>0g|%!+
z{{ePhasexNk`f8j-mK&oX)u!lpANbc`AiwNJ)wPmj1Q&aHEW%$VzR5Y>m`pXl@s7U
z4*vdj*BnoXnuS^}O_$PUXqHWEfHCz5QN<yir+$|DEB2#A1UG+Y#>k?j6DGSP|Apt+
zgVY=eyE4+#I2KSo>MhPby3=Rk3H2kBN5#<Xe~vve?#-d-PA{Rs_jFtK+ntzmbr*AQ
zSBq=Wuxoig4#kxUyP<UXm;;Du`D=(M7LvpesR23>lzz#;$g(1jBt@loq6R?FL2PwG
zq0}Rz`oNNQh|H0=qa;MkM_#0|d@`TE5WVxK9Ut9wbgw(N7<OPs4Y1s#mk$Ii`wy9b
zsYk}pivx8?Jwm?j5YhY3fH}yA6ce@w?hu&6g*qfjZtp_FlGZyE2xZ)Nu&8P@8i`Gy
zm3fl+w`5$azh%F5pFaM~{QPeKC|ZDn^lx#!_eJ$)wvl)#sxWS{<corb5B-bVtS>Si
z-nRahF)V*u9;>BCtt<+p`*ff2NPK8*714*oaNKds9Jo(CI@BMo)?#|9g5~L(z!*)v
z=+v6e!~#)gR$z=ga;KMy@wW+}GHJ`+>Z#lXKae{i2JHbBj`ha}lAj#Pg=h@Zj>=4v
zimn40xI><oG)hPjC96JD*Nso^mMndVLu?{%VW{m*au;=QB-nss^hSM*Y}RC?$>b;m
zhEZ7NOX*Eu4$8mbh;i{p%XIvpTm9X`3h$=hFa`qohWMkP<@|S-TV8%Q{e}xU97Cr1
z=8g;6&3kjX)%2TkUY;vkydTcTh}z7Xi|NtP^8@>0e`JX5Wghh^(k`76J4AYi$xpF7
zu5|Haf}POgUC{RdjIFTX&P*EXh{ZP7D9IzeQHklTW|KXE)LRwko%7-{d2(LN98qa0
zyMv3pB@D*PArX-idY(BDiPodsox#934s6Nz$vB~C$&p5;*4NTYEU+=4Wyn!Rg(DC^
zJ~ODIUUXZnLF@~mQ!&Y0&q@R}Y07R83Y0i0n|3H+%sQ90jFEy(`6g_w7|ica&h|k6
zr=jxJm}4Ic0kGRLqT0teuIbM^FX9Qi3z$mkr5UL*cd4QH@kA(m@{o^7q6INsx{=Ze
zJ)xy&u}F3t`_h3XIzXI2?8(`^@ExtX`|j8z>67B3=Slw*%-Nn1)Z|j4$<r(1%ELY;
zkJkO<AX|rHjm!;Wd5yLPWz``}q1*$3I>nc6dR(1`32?u9O7)ma)kOIxB^}Mc1pAoH
zv>u<#L@iGpQAV=eMJlj&#E-y7Xx@|?ix*C@_V5u(Hj*<ZtwtxaUkg<_9y3dGz(k(e
z^*CfVtY`e45bbESsOKWbgA{di2Rf>&FO(y5XF<Zw7)`Oi8#xi>W?<$-NAA!j!enIM
zBk(`Pf8JPD6lvS%A(dy9Njxbly|%HQB7b4!^Np_tDbxJ1WtK<&giv{xEE@Sw(DOdY
zytZcMMO7UqTzrffQrB<27oDrMeZ;$C#9=o%*2z))=J$WMb;iMew~xgij3_Uhf47hS
z-L_EuyZy%>ZN-Cs68lkdH1rVfMV5BMjpfBgHMf5eBdYT2y?%A5Ng(y0fFcJoGZcGS
zG?coe$q4w3GGc31r4Bh{8cy+&8ox*!lD1jpL!$1D=@gJTB3-wYk>b(CEb!nW*1So`
zgHVQGhd|%+o`jxREo#Y~>JxQGI^FX-gnY2P#h9Zp-vu8}r2`gtF9r}pFJ3Kzy=d<&
z!DT*0EJSZE+A0iE6=XzKHBLw7IKjBs$Qi16k=T=^YoqmJX2{7sJ)4biq5TV$8ATE#
zJ5Z%=Ja&&v_gjw%MPTrLc>Vp=+3?ec;n~$*{O9Sn)*plZaQM^vt5fUI`Q`cb>9?Qy
zSKkkppZ?UpI6c3TV?Ox)w13_2g1$bWqe!r7X?x7<x^(wZ&U}v9GV+Mp)l|tPx-=&F
z9ZHBiX3{HH&+5pMExD|q3k|g%L$sUDh$St->JUu%i7}HiFSdRwfkEfaQ^%4%7-1jt
z6SG~7x}Yx)R>sIj6U@~|n5B-hF|+)Ph--vIVEO~bNGx><9WMQ><X*+ZG8a0SYwW}%
z5nJ8Gj8i-gl>j9BH-prTD;3O-Q;5Y@<KY_w-UrAZ&hUhbkrvD(dH}*eH1fK8u)ha9
zdC7v?=&f<tOEe&canFj!DSAH9@hp=bdgF!FoOsO$Fv`scDYJ9r)EbR{><4mec_U?p
zO;v1e&vJ(-jIyd<&p+l-zq8p~Nr%bjOGEg&d!Q888J^CBf^5byenqaB^0Deh4xcER
zGFs*}cJ>qrl+TEm502DdqH7rGfnKJk=wcYeW2-ICZhFvkPrva)&x?jQ<GqY{liwtx
zN|qBS8lz-uwL^hcoe*~9QhAP7{z(%sm*QD|^YLZ>;^O7cE6+)Nim$}10dZe40QHS=
ztqK~CD%-O}Oj6sk#C&4Ae*E*F|Lnr(@_D4I$W+bWVWHlnz185Dggn)W$P#az;pG^d
zGbCPz_zns<OL?C`#_-hd1jOwK?WOm^wAO*X+krmE9rI+j+iLZhJV=YR{iMHz$(|}S
z8lF}&h0rNiqpojHuT857B~^=##HeExTW<m%W5s7a&oQ&7JnEPABK567i-mNfUEQx^
zqnhU9l70bkP5b~E1)Y!f;vamDmwqHv{Vvd?ezfc>N_@MfBotfzj1V#VTCJj4p*<E|
z1U<ELDJ%d{N~qY&J*b6XEeyP5@(v1!EI{C++-G^RRWJ>)iwc|@m2~SFFL(R%j@W6G
ziK(NGo|Ok9_z+AfbR{OSysim2IPC6s_w|aJ!(RxEyh-iEyhgQH5@h5-&cW;MXMynG
zsQbAKzLO$>nj9pO>wM*WDdt`b>hA8&w*3$~Rm<bxs27^9c4vI<$uoKN2t_SLAmn8n
z<JlDX*RJTAnjoubQo@Xy&^|sz*AObXp4vBjh_4|d?QRM#u!DTT2~S9{pm;jt;D0(K
zSo|+=xPSNx{P^w;QnUxoeW%-M>6cv~Z#ziH{Qx>MWUAQ%KWe%jcK5-Kc%iL-YVZE9
zmehOULTU)g5`mRBj7gI&?*q&O56fHMk&dOS=t>7oQ2`lC=L-l#R}Bl&Zvn_#t^X8b
zrfCml7bV?2^$P1<oS&Rs4$nG=-TnV+wLbVVR!NjnX}mC=(lTf<yb~)MPN_DcU?1F3
zEY{B+U}VC@5Va!lGBG@+PuP+_)eR}=gLZ!i&WCOAZGU(^+-v=Ge*MGy57*$Q{?%3g
z^7{O22;N_TllPaW=hx@&FNfg$cc6dyFYu4^%hNr8u*^e*J_j;AJ)zQ4f{`2B%S_|u
zB2c7Qc+j7QVqs0mEs__z(w-qLsaI<*z67WHm*-NU*#6&YQ&McZC(l&mN%Pum?C<aI
zzj^&y{&#<WKmFf>{liy(Ie2}vf3&~9|N7wQFZ%~?4qm<a3)pW2VMz%Yhx9M|YqymK
z_ehErxaYV9fCD+261q4B=Lu%r0>JR4W6e(mUuwYsYi@cBZVy{92%<j^yJAaixp8i;
zW6%c|cuXN(sGVP(+li$wv)rqrJt;JJWQv{0WTf{KV9qW8xK7-j6}(!R?<F%FF97BY
zd6RByM&{@kn9a%Bms;2n9m@En=aM_$BhY0%k4y<Ozjfx2-gE<h+PXmt>C}7N>gfKq
zIzp!n5N&k;NAp04I;{?vgudM9TO9+TC8RxV78jo@51_;j20%!?xM#W2V@rLjJD}r@
zi8{-_6q?O3@DwRpw<(H!=_&bKwpeoczvXJQZW|^1fBykhGOEq+&6_m;f4%?ung4I2
zya2IKonS*Rz;JN-&yJR+I_L6?d4dr=2K_<*<OeC2O7T3YyNW033b8G!o}BkiPW8=w
zp-TspIEXRCy5jx+!)|b39NA=k#ny`#E&Ff7=aeq@%%U1Ax$EC-W32ZnwnlV$umU$I
zUjGM&M@Rd~^?!J9c<}al{cofE{(JB1Rt^iO!T`SR{qaYuC29e;cz!I6Q$kyo#?!eN
zTxW)kLHt_l3dzG{DAiJ6o1v_DH?7})2iSMK&_$rFW@OizhSH;<D=KJ%9Tz(sv~SR&
z4cgzmf8PdewRg3_j)xfs?Qi>6ZSnvAul@hC_x0~>+em}=v;GPk?Y_2Bld|mC>FZtZ
zd#;miea(l@c9UnX*|&vANJ32!EJ4Z9CceM@9t=JReu<PVe`IU!KB+|l17I*1%nSxI
z-7a#kuVtq{e|EKBd_xPON(>$n2?<`pZK`vBOoC}hqtS^x@RP4!!CgEdOo8LLtVAN8
z94ME^2~Pd-E2$4_nOi<Cx+L=h^!YP_3ozH$mZK_D0i}dgZoQVnJji*picuvHOu<vP
zz;lp9JE95n1^qE)DJgyx)kzfS*H=VP#R2Mf^ar;*k8nbDn|Txf?sgt!3!;kNl-f_D
zfN-v2`(2P^V!ZdiqPbi!d$*W4GiPG4JIIl%<xXZ$PM#bS9U}4vl3CAGn`-3nwH?>+
zEPy2BBo9^6%Q8@9jT}^k?*+I|S<FH<n*T(WK)qEdn*jSAV7WDVb5&)3k^K^V$=qr3
z=Qm@<;ogeVG)!Rh)<H$Da5m9?>@f=pY~N>-m_;N?4aupf{SXPxLEd|*$HXj9VH6!m
zI{HQ|-eRHRmny`n`ls1&fGHG!6hDiO!U3U!)>}`FHCm0~bu(UcaF|VugS_lRR@TCV
zT^vx?MPBZ^sZ~NkMa@!~eC^WcZ4iPJXb`1>H{WXWkTfF&A12McGwwRcx_$tQb+brx
zGLoP-vB_i;DVobsSRT#UJbU^azuQG$P(-E6bALO}rWHerSc*2uBu?kn6nBe7QJl~y
z9U=$Ealxg{R60Q4K&K2jl$x{l_u@XYeo5wAXdSq=n6xr66nnHTH#perRK3dWsMN5v
zvY_&9IG$aiTb5mNBdn%7sPh=9X#L-TjLQ7t>mwtvEy};G9kIXMeh-rJ>Ndih-2899
z5oR*{pJgLlURQCeS=GaBci-8|w>6WxJ&USfP&eG=S~I6YlXuLR+U{r%Mh`U`*H=Lh
z3-_x>Ob{)$pq1@D_oMvFmR6wqTe{ThRDWw<YSR24+Rj_|w6Xu^d|GdC0?=gt-+#Ve
zwEyqz?mgN6@8fwe`@fa_!M=i~d=~3iLyi>1HlW;1GQp4zjR30d^4e>;_|b-87hF)v
zwTc1zuzqXV&O5gI`BPTg(@=B+wUBKdqFPx^3#~Q^6^J!qaY7;Gh4J&z{?Y;E$rRjr
z2Gd|fQm@^d#p)`XftQ;(P9`&w9J5J`6M~$-_Pw3HyX}<alX^Pvx&|PK49Jm9_GbM7
zNpauFqqVMV*{FF_T&X*JYT)g#RJixo7FjQDjjJrYU^{$e7h=83??4(`CF=ZyMZdE_
zOQh-2_eom=AtSa!l`gtE^aPkpSj1bey{vp|6!o9qJ4xX<=Bq`Mx!B(pPg#XO6{2{G
zQ!<=}?J3Hxai6GCLw^V)shi?05u{7kAV=@fs@Q^076enOMG>vvJPg5BH~gQsZn$dK
zS;=PggthzL;?KT6I?mE1w_H`p0Q*buo7;;;vcYLOW{HXmy%Y);RbL${kI!DVMWCMq
zOW^PJq=#dgk^NGrtEss<tR0=6sFb5Eaff57E3`-9_9{@Q5<M(Wf3<a2hsGZTX|pJW
zh#LVqnx>5VI3!6+td3*6gy6orEIO4fx|`c!1?F~2xKcf*(Wp1ufg%maEmf#PYh&fr
zO~-qZ$aF+EnvB`gWGpio9Hq&W=zLWWWDKr1>HEW!qg`+JTd#A3uJBx@^CSLcP3bEv
zFEr68g`8S&S2LxdDX{D9dfW2iY2FGXz$h$lsgzG9OnpAiwDbA;+Cj)%@A7mY0nshW
z?Y1HNLqbO66P$;@{bhm!#D;K)F|6+cy1qsO;^QeN5;BcO=AP#zk$1p!SsJ0g?s~gI
z6o4QXaC6pybl*el6TrxjO{2h(7s|cPvu78OQ7Iu4HiJBIMCW2kamYp+9Ky3rrcu>w
zJbTts!%-<}tiI;fgM}IA^XBZAZTCO_*?soQe_#Le+4c3hgEn*ML0?eH&LNcsvd(RQ
zd=^pL-PwQJ*#G4X{+s#!|BvSTKf626Uli>B@Si99|2;hSY5#||E>u=aAS$_NO@sp#
zoJ1Z4o7^e6bY>8ePB4Q3k>$Kj=Vy*b<UqPz%y38pkaAv$2DZ1+!C~nLFDt~AXSE06
zLx~3<&Cw=&lO8WIPRCx#Oyth(Z3j6j*@OP$EjYtELrTH`s>q`5_O_Glb)_Em@2ZFW
zC3@I5JuG!at$r1g!GP!Gp4h`O$G#OaQbs{H?-nFT>P+7rGbvmlI*AI&Uu+GzNU>EH
z>6#vTEjqx4R%w;Th^uUT3GClnf|08b_CR_x)%jM(3A@r8j%Zi=G`Q&4{FSwLs-i2a
zSU|NqOcP48qvRs0z=P;_Mk8=_Dr3PuD92GyQC~}6o=W5Go$#MkY!CbVX&w5gaC&fv
zoR5(XF?Wt$ot?cqlbKIpJ*r%-I^a+OSjg6IVUf!ibFy)#zR^P^mgQbLAIr)5vwTlv
zMj{mnG$D36RhfR*j+8sWb3p(RA%PTf(lMFqx0fo;M=7x`@*$Y)O1k~SG=b<CcE}Z-
zpAtfch<>GLHDPahYuVskNq#P5Y;w)KsPa0b%MFJ3O`(!<*~t|v6XX{exAyCFpZMyZ
zHu9fLJ9%gF-~Qh2^P>E>ySM!$|J}!P@A98zzmR#}RQxQ+fKwrUDB^?vWIl-S^Ng|7
za%@)ePdX;DG;*Z(hEsG10Rf|KZ_c-8q&A&o74pIz93s#3z|)`X!a72BWpR^R)>Pm`
z2sbH9V5>c_+D%C^p^@Aj@^Df-veil3mQwBbqI_8-1l?!tuUH=BVNDIU&P&DmTQryT
zG@v8GQ@cCXfDe)LzY2SeJ?6s-Koz4dG@c(xc}sG>;k|FT_@7fKTbw(qr@4NW>`3Jn
zB>3eawlV#wrK5rdp8&a=8IsBAAcY}En*oUv0vW^)AfQ>E&Jz*^Bsraip{&KVfv3A*
zF~(W(!jd#%f9<O5Z`FU>>DH~;HcK|wD@%m7-isv!-4i%1t_+(_)U{iC0oXWljhk<&
zg+qj6$heYw>s2nB{I8r>w;EKgn)(voQ%C3!ZQ8Ec7ML!~M-eRtg`Vab{(`0v{X@H@
z%h*M5d%4h^TyIvl42aN_WolAoP7pG`mT?x)dTD{IoZ<_bZv&NA^rxBD)mN>(ij747
zottl6qTYj2&1_}46|9reF+v)L%Kjk-p0|8B$g}aM4;H$QWwqV=aK4^3D@8PIl;5P$
z2y(;7*9n<XNH`xSL@A`8C!_yBLmY+!>|e^9dNT5{i8{Av)0%1P{c<uSG~pmm#;R+x
zLTANef_3<Cfk$m5xZX2)rVz_es};fA-au-?35^2YlgDu~W#P{5aIYVb-S6=Bcl-PP
z9vN;AhW_)N!S3+I?w<c*x4->j@M3$rr#k43*xKvoefRbA=g15xf28r-e{aHx#<$(g
zkDmJLzwAF<_<rR6U+n(tqx;Wq)wk?L_gPoe__kHK_1`R9<wQbFCkKb>1hS@}k-h>C
z{_mKo-W!PNoBgDb{qq#YyI872o{YtOWaw?N(Du-}U7M$s{;&MYZfXE%(Ep$By(pdk
z?CtM7>Hqif-2eTLzpG?4NN{nnR!AhIHJM0>Lu_T7(m|;6bA+LNLFDN4L~k10KKdzh
zeMPjY6|>QD>ARy&Ley9FOMN?Kg5&FN>R0i6;?z2guwa^l2(KoEJe1U9w`+@bOzqxD
zlzIqWiES5cvP5Oj>zZ6{$_WXbq$WvEn&60=IO~DRzLTOko`fpzp6G=+?!f9i1j$sg
zG)l>cl#V)H3dGsx92Y7dnE0#@^fkXQk~WL#4?s$jW421mkLBR7!K<Xoxwg`|ge7Q`
z{E-7*<%ZcUm#X)flnq!jFGVAp6teF!m$UU9X12K5sBaK-st%ycAbnsPcEnOU;mDCw
z>6F?KMN9DPkDo2iQ-LZCkVa`9S~vSP3>i-MpBKOD=73bo4So?MRv|quwtJjP_nb5l
z60-8L5qv;MYZvpFAUMwy^lY*!wO|a|v*T1jaim<^M6%^-7NKocxc+^&wCi8V_YV?*
zEOva7$hn!vk{a4^h&cytb1QtF6re4M*K+m6o|Vg^_s+3vkn58qbtgE&BRG*%2ijK1
zZQ!04ug?*uqlg3@QGpJr56P<_&lWKW7!_jd>YXz(%pyhGt(p8PQ!#Hnh2-9vnNZgT
z(>%EX_8SRWYy*U+nI2_9s?nr0pSA|RSdm)Ls`gTltZIz;Ph^gApq(NjR1!sb6q*P&
z->O<e@q7@1G~_P!C&cO6?Ck*^yIMYN<bM?m;;zpBo^SWd=YP9T@t^PIxqtcJ66PU6
zElvU%rKHjdt7uP`%)%X21~-zG%CSfm$D1g%VeL3L3bOTIXttaCq8c-PR1=bn$PFxj
z4e@ol=nGhe{(&c9SJy2EMUh))sddPa>ZxtnKy=0=oOpcPQ^u~EYT6W*)ho9PUN@0%
zfj5puAi`Eukt{cG2lI+b>Z(Omy;)J_mo_@fJktg9n!r>^)~?1_Wnh*Z&IF(wwiZ;;
z_(GNKX-r8eIftam@)?@)H8h4QE1BF5qDB!tcF>x|a*d)!a8_p#qLaxqg;X0LDGE8!
zA0w=DXnQ;+zQ<M2Av=hW*t7Y}&lgy*?DO%57Oi|MtXXl{cRmmlfIHt6jv%dK$XJZn
zjF{|rvN>hKS3YVJoiWSwlhep2h^8A5r(zBXI74l@&`Nkh@THwgd`m0pd<&7(_c}ka
zD>5U=mINfzSF3)BE?p%wm8p>m+|jyUkaT28>G(z_VooL`#Q{#SLY<nKdKJ71!>i<b
zG4(I+n)}uAy+w>^WlVE<=66T@Xj$I!Xob<I=iZ+-^1mdw8;k#q^8btNeo_A4*?#i>
zyO-zQ{r_HlipAcd6Z>mxwmey@-K}h%=VnDzC?u#0+)axEqU5_7NfH_m!E}>p<fHvv
z_>)e~r^6xrgdDdnbop^YaH={byD9pt4<WIVgjD8sSqk>krU594FlSu?UorO^?&Jp|
z|IQ?}gv22hg7CKva(;DgJ}7JuH=Ksy9Q`rHp_tb|h(9n`Pe@Dv9m=Po4bgLMuJds=
zA@-?EW;K*%E6B_!4<R6b=B7?^|Mpyzg_Dq&_+77aGSqhgBoK39(ZW5=4mbesa3xW6
zUiEe{&PBnJAyLzb{%B}Lm#Hn#3h%ZFaXnH#psnfE>Zd`6gp%LNO<!|wm+oMZ3Ukn8
zyUP&UVojov2<0giiTwFjNsINSR7s85@GQdAnvG~i9Ytp4)V&NP*uszZDzK)eo?_wF
zK4lB~WG@!0(FH4JVW|}?8-t#FQ*D<{r9_@}zUu3(mr^CvRWGR{lV#ebULK3xLSA!Y
z5<LM?nVzR%O5LoGrLC&$#sj#0q|<FSZ^{6tVrRC;E!(mg9=y5zE{$t9GPv@tZk*ZI
z!8Uk?qPE*d)i?{&U86W=Ys%{`QZ5y6ue%f~ZYlq@k^kl0(Yx~h>F@8A?f-jwPyRpm
z^4z=pZ`^+*RjF-r!M>@fFSk`{hnjPBzq#tzF<(Y(slb&4FOuuYLC$1u{#@kXQvl_n
zSGgBGbNBdNEF)}49~sdbZAG+Pfb=~JcyHxdMI$;Rkyb0f&L;zh8)?G|z9EWeKFcEF
zA=n1wi84(!<Coqc`fl{*?^B*Co2Eg27pe@fe|d$IAalT?Ax-BV^x#_>4Oxqn#Jw~j
zq&LAd>gAJyuIbUsb^)iQ>9Fr`XLyvkM3v<^oQs|Pil8x`i9yUrg2N(4x#0YE(8s&>
zX3A4&Nq}kI7IHpIM(V0SP!9BAasN?*PPyKaTdS*r%M__TldZtTyySP3c~;2!ku72A
zK6}*?O<DA-Eoyf(!+;)swWv_!I+tYLis@Wh5%_Pyb7VODO9EHFoF~R|AB^Ra%&Wse
zytV92qLAhnP_=n^UuGHdT$uvm;7}%b%q`oBRg=$jQCc_o8u{BEWr(81H#m;<l>zHQ
zis;KBqESFTEvmI{I$eLKq;aun5Y21N1n^)9N=TYeG9!Yr;Fu{)2oC1R2T?v~wI;K0
z8S+Tfa_!9pJJBk0ehnf=MXLzj=hIUZ<EQj1Vyf&oUF3u$8l__g^|xUTnV3WHA<Jv<
zxxW`W538kLqFChSNOnWc<c0~CiLS;Zk!OVl$CM+UGC}T()<OYt#bS`@Yi&d!7vib>
zRRa549$Jwp=_n8Sx?KfR+Csz|9S9MO{}CDtJ0AK#!w|vo;gBXgm2qE4N)qJ|uGVKD
zfyu7QIYBP?muB2j^jUsUBONK)3{ZljfK3eIBp5lJ$VJ~X77`rgL46n#h}e-bp;#h5
zpA1;Y^^hAtXV!}fF{dye(uf0$8Dgh!OqDh+=2wa~+V;e!17$mJicf>wQh*v!Wr%6`
zE_zF@>W2MNZ3beT$&`5LWC&t@$|TuuA(_5ihVxJ=cSNoPSpjy6JCxTE<ie5wqMxWp
zbzqwtP9q;KLnq2j6&IO^STlXGCrQ3xK$jMW<cpgpLxd|<j%bTbqX11K(F=1Lp-Em(
z>IPReGa}S>MAKJ!oPpDdX0q^mu*QIXv$injCiV>4xFqw1&7?ZMom@~rDwG$In{fhd
zrj)28LAQg@j)zW7I3+#Q8O6o5nITW`>5NNo-D!=UJd0S^f4FV{e8F%EY;zu4UJ)oA
zV^v{Fwu<8>iZvLds)Ch+-u2KKtjKU~Ez$zI)QFFOaMc1XV^mF_;x;@czBD+gA#BJG
z8#$IGJCrpn#+G%jQR*n~c4j|bH$6KzM2>?@GzrBL3a_(;Zdp~qL)FVZ>B1SiDyG*n
zA9PXO3&m-z^8Ib(DO{PtieNMu{v^ey;$A;ZX~?}1Nq-{q9}+eZJCB_roIA)XY)=)b
z$GWx6zSpU~Y8!?UqG>w`7l;y-V_4X_oXeLu#h?#{j9pG+<jjPKp|yz?hCu^Y5l7bx
z1V}6Fh1HNPb}DZj`?H;xJWoqnfGm~Hr8u+ijI8I#r+5{!B5>G6rYL-LzTqDo6fh#A
zo+^%M#1i@aW8~;T>%J@s8m0SHJ?qwO`E1NJWv%PEU(jIxIf?v|*PP1EW5tsw+>R#^
z9)u*w2SCwl^w3^wb=SJr_2q$6YsD8M09Mnb7K%0cbnrhwqocdwSUsxB;b(;yD0T(H
zc-<(5VR=+;d2ZfU1i+Jl1*<z^>07G`WLV#q%2l7gj_)a%vM~AQX<|mQ8L}&qpiQyu
z9EI^1qkgw5f4-egNJ4$o@1o6V9G6RdQPBW@b?R0#l;=LBB~D#efsDwfGwE({6o#*9
z3RX7f<HrvcE+A~r7a@M~G(mf9f!pD69D|9hL~g<H@pL#0N#)Y3PQX<fxIom~>7>-X
z1t6=hq~(;~*e2MjYd}*@xFxi}RsQ@vP_Y=d5EBZ;73FZ#ha;M*Xs1#-()*}VbXw@f
za%)*uBUbIaS3a1EZB6Eq2Y#j6t39Y1C=ac*E~%|G%8GjSjgiV^G<B?(cPot)e2DGV
zHf!XNuFdylmurQP;vVnir@0I#U!ZC~uQD<V>0xF-mezm%Q}b=hD`h#rC{D<XvMDcX
zBG^`Gd7H&9OExX`2V1>MQg;(^>(LhIc(pWK7N#FXl=i!OTAlx=EWsmkSMfjkJ1=%h
z=l{?9Pv`&l@jO)gPdgOUxuh=ycfKnbo+3bB6v!?foAAs&sXmRf3S@x=7kk7Nn#yb~
z>I3u<4t^})UhbpqIi~`s6;E_jytGm^J9T)z#lyvw79NrUGb`6ppEk)Ka1fj;(k&b<
z>D|vRBZFRibUr$E2s&FLZ>lR*fa;#rj^=CTwvX>=!~e5OTQ}PQ8u<Ut-d^$kN5B7+
z|Kon12jKrvKoVoxmnSFYoW%Iu#3UKxm`mk}`z$umO4JW7L}?EGJ@t}u#dSlJzi(Kv
zYm~HJq{PCz0`I_(9JG$(cyVBia)V`6ujF1Z)0z)SBAm?ii_Po<lh-LLe5akypB=QB
zvj5Flq$+lEre#k~M~>mAafmj3oQm4Y7iir(BOy-djGRMx_xjqXQBG!cak^+z-5-^B
z%++#KYh9Exu~%DyL?=`OcC6E~ji+cqnrS0(y(>iTS?3M(5=#S~Ofh0|)Rd`N=cEvG
zrmq)!3Pzj|p9CPIK=`vrr<?%9jngzf==CO9%tudo$xzngaY9Eufhq2d(@D4nxO2s_
zgTGp>3@BNk+=W4H;Z?u>Q$D6`TY^^IF!UVo)EK$-OBIq;;W}5eY<^xU)T$v7vlca}
zW%rHI7j?H88Z0Y<@_p%s@8cF%+U)=GOzh6?f9`FU^MCC;>3{e0-2477gSpX2<{pGl
zN-0All4iah%0gPtyd*&?WABKhYDF)$gXyGK>Mhi9^~;v`rD__sHsM5j{Z{uG+Ph${
zqS<?#ILgD7e2Q6;BEdm4fa~kS_07xafcR+$$kCQM>)Ou3&;SJsmvzjcg7PWb7IGQ-
zowG=A@k8e`*l;~jLdJl*7W?!UG{BtfKSwTP1t@NX-%n{6AQH{c3@6gHMf#g!c@3{|
zA`3{7v#4igGIx!Yy?JU1pe%bZd;y>6IHa((aPbGE2ovhB8n9IZ&fAVLCqI;`!rtf>
zqlg#Vu$A*#Xj$O!x)Pg6p8R>JTcIDr&+HJe7D|n)W|~Rja7d+gbvc8LGq=!B!gx>0
zUrQ~q65!10D@LQdMywh1oc#Gf_0b1xXz9Db@8ZLH;her8W@IguTzD-wZiUA~EN|f@
zWJZa+m?v0gqRyJw5N&+JH<X<p(FkdgYkje6L*Za!Qy-CJoyk*(_2F>Qk%c+gn2Gtz
zTz%G+xbI$HqXlOh^0-Um(DKO29e5#@sFLbL0hSPW0EZ}Ik*i9#A-Q^=pn@y!C7Jj0
zbO;W-%Ti*ly`lrS8a_D3nQsZ1k%W_<#LI(2q<*SWc`CDu7AN^;{z=t>ZC-7&$f4jp
z?v<TT79NGGMOQ^3$7AAO^63O&OA}Jl<7h2Os6!Y%lb#{Zvh$_QV-^kR=namyv|s#?
zC6K{}Mkr>vIGS6Cd=hxlmpyebB(%v1L2Lc*c3<pwn<WZgb@)Q{*5Fn4*y;JurwNYX
zEO=R_Rt9efhDnyByS1s~%_|0_Yk1#dPEG|E0kx}Z@9#!UQQ8Qb&{P6;>;TEmC5>QT
zRVZ>YjpYmCW4yDsFQ)A4&|aRN+dggdzbl-GWqM;3u<`t_UpoJL(SPxz|J}!P@A}^d
zNlXY2*fdoMpA!~_z`F5h5tBA_sLEg9(Sp=1XN;wbcyc8)`^*eN;ANIjeeujeRtmqa
zO1D$Y<?=;((fvT906A{*@ni7q`WMMv4;-0^=flz2+mp9{KR{>M=utpY;-@4)n?eV(
zQUzXLABZ=i%=LA53n>{hGP!SMK!53M7|u~b#4t&u?lRyRqd^(lD$jll$^OAhpF}g7
zut;8<h3k3s8E6%5NWygzTDVOCaSL75iYr=it&+A`^=XTF@TUd;xBPf}zxtSS90dtp
zVl!y6|Mho@@gH_~_nz#3_ww93|5rZL1RZNi$|B=uDZ_CBysez#zm1o9MxzE`opDen
zelc$F`XXmuu5afvm%m}G%1J-DY_K}}U_z9$oc1U+y*BnP?yBC(cC~+g)ipiOTu#hd
z(qR)Y&+4*7pw-iN`VQoHYxl^u$hC|Ph3n51Dr^Qpfh=9D&%sldCt3lLWeX63!Oxr|
zrwJL-Pp!aQlDQ`<6(H%m7WOTSOc~C+feUTsF9d*C!4fGrtQYToLk5~+6anzD>FSRP
zAu=gN{<e7OP6RJnE0?)XQW|dUWs(Zwb(%Vs89vM3s&9s5E>z7t0AgIl*<BO0{59N)
z%O}<0hON0<5P@s@iG~y>bL+OIJkx-vT)<hCjg=*Zm=6n?TjNsEk>eJys|R2kjoo(h
zE(E5F7R3}VQDrdY+A79b&<7j^PqalKTLW6v#H*E?4Q08x*W9go(%VmlhSOpeY};`C
zjOc+az<tihEI41yCAq32j@#m0UlNh?y%f&vtw2i<MpjU1fgb(pvj@>I=fzc4HJ$k{
z|0aI$f7WMN{cnO3ii5#YroaaM@5PJV-J<@tz4N61-OKZE`rjKtNiV-&x%Q_i^wH>k
zdZ4wMAKWFpoz|z@xEr0X0;Nl7e7e2@ho|ZI#!6oSR<+896Msxo;-}N3@)Wh$A**;1
z(li~{tBwUYVxtumYShLv#?l(qF|j^5xmGLSi0xOq8Cfu<>UCrNX7zP({WB7W)CUr&
z8&0`I8R{cdiHoyTs}|=9)~m*fMqDw)E7p#4J;;v+I%yNiO#+>i2(C&)&R=bU(-7d>
zg+6r47o1jYgwU8SBYCA}h~j-Kd-yVeu+4oOYb`hnkWjOz>Zz}yd<!DXYTW^vs`|7T
zV}BMyPMaNYWwx9Z3IlEWeFI~T23rB|CWf4rU{-9#(SulG-fw8ase^J$1C9p!$jvu4
zJ6&dt<%GIBG~V3da?1_jHtWpZk(OClHT70(m=o)FiJ8sB?5}cGv+g&{sLds-X3Tzn
zQ#0Js_8%6F*h=j`eF*kYwEyhxKiPlo<9R^)kD#QN-~UHKMt@no5lE5g<1qr+qpi0D
z$!_1$7GyVdM+TuXdY3Z@sroB12<2hb7=#v^aq=K)%s7okrNW@<jY^NrAoLQacz}7a
zexP38mqF>A=!-pNQ<D7F2<d2=j$dW8V!<(VQDcUJ*RSfyY#Dor-HQfY^bV|F(gtC7
z;Zd5!6s!9an8joTdy(CyRRgEl7zY9P@<T54<?d~Ag&plt+2lA$TbSfBw$x;dQzcsv
zy)5r?lDa0X$O<iRsv}Rfx3<E@>TGWyd<|BjHn!;ZO>6=R?AL93Q-fGy-fwDqtATP`
z+nWOW$Zc<}Ei`o!^j%tLR;=gLj-km+V=br~m}&0RB)Ui?`Ff}3_I6P{Wp{5EeP{zu
z!?U#g58_@gcM-J7|7-tw(f?~_Z~y83=e;}+X#bm^|DV^ZH~i(|vOm1p4+eRso?p<y
z9hv!x$Xw3I2ensX;<F*$(BmuDnH&3i*-)Omy`H?i${Ieb=s$r`>!E$Ua-8!~S(P5x
z(@PTIlb_ea*qR#mywzEnR<-dr_xUCo76ARaZA>tP*0X(6`%)#0+gg_Z=p(l+wKihZ
zi*9#m!nm8|b!*FoTvuPYKUcLF{ngE8dlRAIhIi%1b<<~A`%hNBy%DIv|EvF^WdGUS
zf4cv7KhMM2e@-PO-GvdzBGN}=3Cj9ZZw|`J+|DLswRJa!p=ty#WgW6W+%gPI1*A$7
zk<l(qd0YKzhAOzde#<jMM?)KyuC&0rsJgXE!-|*RY#z{>QZ81B*?Kj<T)bYdtymi?
z3NcgeMc%xkFl0^SQdDTqVm5nuJ3>Vh#rar(>}3rK3yHJU4BV}GVe!ZwlcC{e;&VWJ
z8W58dl!%Ur9Z@BVQ~g}D=aq?V%892l+~tC>Uy`}YhOYj$XkV*Ix9cGYB`<nDAf~qg
zg!!hC>b2g&3QW9qQ&~KMyf|G@Vrp{gRhF{avB*<WN<cofsFh27UqyQlW@~ERL6@^c
zG{dttI*BNm%c>POtR>K5Bh3!8)ta)7T)$bIQ>!o4Hl%KTI1BXY+BTL2ykb+8HN+(;
z=4M8#1%Pg8xw0qgahtESv7;msE;$7?V&xqgLsqLEv>wr&aF49$&*nh1nS+3=Twa<B
z=oZ;)EG~(R*{%@gys8(KjA}`{v<p?Ycn6%s7FKV@O7i0FS4_o~<5?Ydvk|={rz=8j
z0JUO%XSWvLoaI&OwqG&1)Q+ivWNJtvE-Z7K9u}2b)_%OK{Wl>2T{aO!ga6<D^X>hT
z|KHB@C;RVxJgc$)-pBxaCP?XSuK!9ZeKfXT=uW-a7e3$4;wxLY8)I(?neEK7vRXTf
zY^}px4#*{$b1#On1wfE;0w?reBv6Tt8i83=yqQjp1j(=JZP+@4@@D4z205?_<8Z2+
zD7uZc$`!~Tl|$2}!8&t$tz6y453Fb`uJ!^eI|&Aq+s4PGP-RSr%}BC~wnk5`mp^lI
zG)>3L&!-~c<~~k2IbEuokHVU7rK-#@bQ@2?9JcE%sAlY<|GH@<_vKA?mj79S+7|fE
z*(K|3+j$mT+wjtUa(3%qzu~&c3?&)tqP@C$Q&`UUR1M>nnwbRpC{0ds$CJrJwIU`*
z-x||kkx?7x9qL#slS1mZ{rYK^b?iA?jCz@!(wxEozM=mBaf54&aw*Sg1}@hm+Eg+F
z`r9GuKkv4liAu5K7W7{U&oXw|JCA1S`R!|S37M-a_d=&e_7V-KJg_(1JBqzsEPl{o
zUGw&e73AHp7#~^-d$?y={ome~+FAh`^#A8Cc8mJ|?u*^0`+xWHJe>cRQinwuQ1l0+
ztm{kJ9m>PPK4#Hyds{G<&7#O>vOL2pr%u;5&J0RKa<{jYm|W9Zf3>akO>1pLzB)-y
z=DDuKP1O*}Ij;-TfMRR2*Q2a9a$Jm69`lrGNd$TwjT9&vSrQ85NzUDN%#^(vdrBr&
z)Y?<3+vR9PB9h>g1ikjxELGb7ruJnqH8$0m0H?URiF&_>7IJ;IRml|Lp0SSQ6sBhC
zkvX*sM3m96XC}H<FY@HDEAolA6K@Tbsl0cKS9|lAYRBRfQxr5V$;sTc%VyHB_2<)~
zx!*-oP&G=>k((c$E(!^7t?^lgWHG`RG?1aU%%aS%oubY1rkVM(6<2q;Qi{}iV3v)_
zacsMj=VZ!HS6{-k-jq+fXQgxQ^%*udM#XYaTUoBih@{8UBq32|RCJu8;RZ*6;T(!%
z6znIur8=xZr3>~dn!U$~?Ic;#jZB9@7n!>3%OaAr4?ad8Bkhg&4gVNbXgacS*>f>-
z3IkrZ#?dQp0g&J~zTq2Xwq_DE;~+pAt}DbMp>7?ni{gq4h+g0*@PrnYkw!NA);o>B
z5+-h|*VM}Y-k5|FI*M3AZYyIp$p71WI|cc_zrVY;^CbV@$Fqh`aVmHW7gQ<dTWlB+
z8cb;z2>u&m{}PV~_d09nVoW*W(>P{H$`K!vFa&QEG{LDqrqO5%B_zZtov95kdyk`_
zvxXuvlK#z`(x{;PNYVf7dgxsg&Jl~CrsxuiNrFNe5wGLDJpc7vY)_pvbPNQF-XEW%
zfF``-jcD3~e`WVO-r!$J5B}9J#-pD2NB`ursFwj6VE=L&gVw@3&pdt=cb<6zeA#*C
zrIWbx?EiJv(0iOvHs$E#<tyIt;)MN9{IuiIfZ(1im$2VE-i-S!Aib~1o>05~&t4t9
zeDlhi1h;Ra;r`d&i~ftk`rq5ze$xN%<yk}D%Z&bdHN2*SM93S*f*LxVBlOFUB%I`5
z|8sMkrZGS0^~5IO@o_I;KJTS0rate5vgoghp4LQ}E?BNd37f`(rAQh>AsbO24M=)L
zNMt%9>v^5d+8Vle{g;<#oz8E+{U&7MPC#N31tjt*QF6D~6%Q0V*rAmX^Z@O6pS(}n
zUxsm-vSfaMm`@LSy@ZS?Pm{UZ_X6f$lEkB|H<0bi=0%gxuFoRQLedeVK&JgUn#MxV
zG{vBMIHvD)^Rs^El19M+5-K<yy}@y3LQ*WmU(s{f?+TqqeBj=28ivxD5ssvFt;t-<
zHpuyrgdsy8SP}+~?8Mp{I*HPR1yeXj=yZTrOGzS5*o+2*Bdk%c&3kA}!k8o+U5%+f
zMm~;&3<LIixT!EBA&XH&uGF-ksgR5%QIyD_tM>{t!4V#j#OrkOvzluF82>LnO$P+W
zG0&h~syALhW<5zc0f|F4p9twrNShKo{A5D}1bQst(+K(Dl&2&S6!e<0OVQnwi53x?
zCJ4vIc?wF$24nw)E|NL=MVi3SQC1Ee;}nN%l=V=Nis!RQk3=a+;)HV2-2$;Ldx1zm
z0RS5s>aKt*N&Pe-py+d&65i>!NFXMONJ=>Bd;S0Xw&Ti??s_}k_P4T*&_Ib8Ec`r=
ziBEBeXcSLV#QiauVED3zP9}In&KOHGYSoKC5LP;m$pPY^aCHz02=@~TTGs)32`dEY
z;+8r|1yG@3h0GUPR|g^T2~XmX93Zo<Ivs2MH8gc*O2RZt_+lN{kQMTK(TGN$I-L}c
zn!rjpDIVEi`d)wE>$?FNP#n4aZ8zE9?R4U47@o3_`i*@BWDn;EOYo<rqB-RPk!s^8
zyux$7ArvLk4}r4{u&$>YTk^b0Xb7VC$?z>pPZPpPly1oW$di7abqFU3o_7$UDUtSv
z#XZ&Pb2vv_cRG?l1ZA4;t9H<4cE<;E!zp;z>vRG#m|Ex_$iu)AYUEhp;Drv+oK4Xc
zn}z`j=_L_gI3b99N)wD|G-Sy{E(f_IaC?&EF`=OCqX^N6r#SM70yZEAoi#(2HpQ*w
zSbm;f)&%}*W`7M?(~s<#=&T_*bk!rpao5nP;P*Twkx#OfrH+6b@ubg9WqBd)YFM6)
z1cAp+ho>yTBXS&K&YNiS?_<WLsU_=Rir%wuIw9y>0zv?33!Mx#?K!Tqh3sbD!Y1W7
zYI6uE7yaZYn8QXXw-vG7(P)(GvEw?O4)%S*`5P9HrtTg=Ni<<W=4xEq?_5J?1P31y
znv!=g0i6D;v9WXdFS0}n-~F9-Izp9cf_tj$dxLBugB&EiYb+#ZO*(SY*K*S#@w$dA
z#1;^+h5!T5=`~QmtY!_(zRGzJWn>F7Ny8{@`<wPeQl`D!U?+10{gTYz;8;j~2Sr%w
zy%7K<%$WFs^IVcSaDLbb#FxlwS$w2XT_<G!*#LC3MaY&ynCa>ovOBwmkg+0)LfWb3
zCo(sv6u5)|i;hhNr}`jN=PTvmi8zTk1!Wl4B1FBhWf>YFtUA7hIGYfZ(h1=Lz!i>Q
zQI14yDZeDr6(MGv(*X@>I+x9Ygfk{I;YDl+8A#9WTE@wH3Rm#nb=_*gRbl1kQY%6s
z9*|J&P&kg;SCv!vF2;XMiIIM@+4%e!nJX3A(E9}q_Mel;H<vZ9uRFOx2XUB<*z-JP
zU?kD(z+79_3dQNs`T2);XD`hMB&~`+By4hEy+jJp;A%F^e_4PoJv(y5%0yg>e^7n5
zuy`twZ}O7N7q)n5*`(VxsBT(iE{)gMfWOX~eP97-Ev%^g;%{0_=)HY(sTSDVcNeeD
zz4TL>)5dObG`ziizlX!y{Tmz)w~cn&<Pv!6gJPJQlcC^9Lzehr=VaU*-m5F&aQYy4
z77as??SPfxkO)P(q(lQN4nriQUo@Gk(;hI97bfb^akdJ$JainO_>Dr*mNxie1M7OB
z|0+Nf?DF+z3mvoS$fuYkDYC#Eu5Stj)=xvItk3FP;BztdiMd6b(E@TA`kk{#bnnpl
z44IcaiwdtD!QL<@`_GXZbURfj=-&theH#V+)u5n%2Po(lQJ`%eKgXj42SQQ-7IMK*
z-`n=KJDp$NMd&S?k;#B0sK2{~cD8r6x1<U^+tEgBbcHzr6-1~<LmE*&CPAj@k7zoc
z4nWZt#H);?Ydpp2l)G%`reoqNdobw#l%om$oh8~3B~(4>Tgb(Ll>lRo^!+i8MubbV
zgfzN{@0m$Mtuas#QYM%JOJbJbR0^>H9S#Xh%aGu7ng~!qK;YC>4s};bPyj`&LnZQp
z@x?TyMu2F_NjMZr6;1*rR~VGNdiUB>T=~Nor>5^$Bq4|@+Y?a-zC}FzSEu8m(}c{x
zj;>yEi4V%{0Z%zWzvU&8-_WMw8i0qv91U1HmX&s3e7hR?79cUT(o6^A&%@j)!<5z)
z#G-KC_0TUrl7uX_bZQHypaC3HH7FO@dKc7QA4h_y0yJTOqfFVw12&cG%Ieo|^2prl
zxaenr1t|t8gX(XkKFxN$T(^e!kKURp?Ly~VMdl5?5e;7CsY&#MqgblHTG)ODh=uL`
z8623PG3IC>gm;z%L=ZF%<1rqPl=`ruK*Alf2^*1!h?&2_b14Ul9bin1UCc7#DH=N#
z#2S!9+3Mg>YN}VeTqx8~lAx{=Wol58vn)%BCDAZp6NJUkBrURt=sigrCDqE=0(g8Z
zREB6HMMJ^5a5P7h^C{u&o0KxTT1SddxlbaTP$n3J;Mr=Xl+nem9WcU0^O|Mp^@yXn
zn8>Uf*(g9yC@eO6XmZhrZu3R`&LczZB?%dlL^G;i*l<X}=m^CE=1+xY19P@`@yvF9
zo$dZQp(8oLy*2ZvJLSanF(<sMmWlcljpXF%F{BL5b``b!%*k*XqL4<HU_Je-Zd<hJ
z*#_HmnzDrAkoOY8SvVuE=-v+eyX(e`r*762In%wr*$~@|rn15yWTT!eLtHTuXw#kT
zxG7VA?)Lr$+nRE_>{z~;|KYQE{ui;0?dJV7JF0Mirct0=*^grEkBJ7eh4ihX9d8?L
ziUN-M<aGbi5wtVGb09;(eSrpGd6Q2*iDCKsY!Zi5s?d7tP$0a{KNJ8qNHMH<(N(?I
zsZt21oerSnpx3*)y7Dk|(PPP|7s?{M_xj}c)!TD$E&W@k^K%pu&a=&OFxTdL!LdVp
zg#;rRB}6iK8lkI%rf}NK*)SC->I9Uh2^~z+9C~!0C`Wby!IvZC9G#<+a|eBYbbfNa
z)%kF8@#DLnFVKghv$LbO7bmaI(YrHr{O;|`lZ%sgZ_m-YAJEa;f1saE-oD&Igi4d%
zC&4<o=pdcI*6wxA3CT6CO<mF`OMMjLXf(wmf<|mck_ZmpNiv~a?v*$SIw76VRB^=8
faJ;YR;Q8r!dY+yKfBt^}00960Dl#FB00ajBq#+#&

literal 0
HcmV?d00001

diff --git a/charts/developer-portal-fe/templates/NOTES.txt b/charts/developer-portal-fe/templates/NOTES.txt
new file mode 100644
index 0000000..d476df3
--- /dev/null
+++ b/charts/developer-portal-fe/templates/NOTES.txt
@@ -0,0 +1,41 @@
+1. Get the application URL by running these commands:
+{{- if .Values.ingress.enabled }}
+{{- range $host := .Values.ingress.hosts }}
+  {{- range .paths }}
+  http{{ if $.Values.ingress.tls }}s{{ end }}://{{ $host.host }}{{ .path }}
+  {{- end }}
+{{- end }}
+{{- else if contains "NodePort" .Values.service.type }}
+  export NODE_PORT=$(kubectl get --namespace {{ .Release.Namespace }} -o jsonpath="{.spec.ports[0].nodePort}" services {{ include "developer-portal-fe.fullname" . }})
+  export NODE_IP=$(kubectl get nodes --namespace {{ .Release.Namespace }} -o jsonpath="{.items[0].status.addresses[0].address}")
+  echo http://$NODE_IP:$NODE_PORT
+{{- else if contains "LoadBalancer" .Values.service.type }}
+     NOTE: It may take a few minutes for the LoadBalancer IP to be available.
+           You can watch the status of by running 'kubectl get --namespace {{ .Release.Namespace }} svc -w {{ include "developer-portal-fe.fullname" . }}'
+  export SERVICE_IP=$(kubectl get svc --namespace {{ .Release.Namespace }} {{ include "developer-portal-fe.fullname" . }} --template "{{"{{ range (index .status.loadBalancer.ingress 0) }}{{.}}{{ end }}"}}")
+  echo http://$SERVICE_IP:{{ .Values.service.port }}
+{{- else if contains "ClusterIP" .Values.service.type }}
+  export POD_NAME=$(kubectl get pods --namespace {{ .Release.Namespace }} -l "app.kubernetes.io/name={{ include "developer-portal-fe.name" . }},app.kubernetes.io/instance={{ .Release.Name }}" -o jsonpath="{.items[0].metadata.name}")
+  export CONTAINER_PORT=$(kubectl get pod --namespace {{ .Release.Namespace }} $POD_NAME -o jsonpath="{.spec.containers[0].ports[0].containerPort}")
+  echo "Visit http://127.0.0.1:8080 to use your application"
+  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 8080:$CONTAINER_PORT
+{{- end }}
+
+2. Configuration notes:
+   - Portal API URL: {{ .Values.portal.url }}
+   - Database: {{ if .Values.postgresql.builtin }}Built-in PostgreSQL{{ else }}External database{{ end }}
+   - Base URL: {{ .Values.app.baseURL }}
+
+3. Important security notes:
+   {{- if not .Values.portal.existingSecret }}
+   - Portal token is stored in plain text in the secret. For production, use portal.existingSecret.
+   {{- end }}
+   {{- if not .Values.auth.existingSecret }}
+   - Auth secret is stored in plain text in the secret. For production, use auth.existingSecret.
+   {{- end }}
+   {{- if not .Values.db.existingSecret }}
+   - Database URL is stored in plain text in the secret. For production, use db.existingSecret.
+   {{- end }}
+   {{- if not .Values.developerPortal.tlsRejectUnauthorized }}
+   - TLS verification is disabled (NODE_TLS_REJECT_UNAUTHORIZED=0). This should only be used in development.
+   {{- end }}
diff --git a/charts/developer-portal-fe/templates/_helpers.tpl b/charts/developer-portal-fe/templates/_helpers.tpl
new file mode 100644
index 0000000..7ba142a
--- /dev/null
+++ b/charts/developer-portal-fe/templates/_helpers.tpl
@@ -0,0 +1,86 @@
+{{/*
+Expand the name of the chart.
+*/}}
+{{- define "developer-portal-fe.name" -}}
+{{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Create a default fully qualified app name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+If release name contains chart name it will be used as a full name.
+*/}}
+{{- define "developer-portal-fe.fullname" -}}
+{{- if .Values.fullnameOverride }}
+{{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- $name := default .Chart.Name .Values.nameOverride }}
+{{- if contains $name .Release.Name }}
+{{- .Release.Name | trunc 63 | trimSuffix "-" }}
+{{- else }}
+{{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
+{{- end }}
+{{- end }}
+{{- end }}
+
+{{/*
+Create chart name and version as used by the chart label.
+*/}}
+{{- define "developer-portal-fe.chart" -}}
+{{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
+{{- end }}
+
+{{/*
+Common labels
+*/}}
+{{- define "developer-portal-fe.labels" -}}
+helm.sh/chart: {{ include "developer-portal-fe.chart" . }}
+{{ include "developer-portal-fe.selectorLabels" . }}
+{{- if .Chart.AppVersion }}
+app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
+{{- end }}
+app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- end }}
+
+{{/*
+Selector labels
+*/}}
+{{- define "developer-portal-fe.selectorLabels" -}}
+app.kubernetes.io/name: {{ include "developer-portal-fe.name" . }}
+app.kubernetes.io/instance: {{ .Release.Name }}
+{{- end }}
+
+{{/*
+Create the name of the service account to use
+*/}}
+{{- define "developer-portal-fe.serviceAccountName" -}}
+{{- if .Values.serviceAccount.create }}
+{{- default (include "developer-portal-fe.fullname" .) .Values.serviceAccount.name }}
+{{- else }}
+{{- default "default" .Values.serviceAccount.name }}
+{{- end }}
+{{- end }}
+
+{{/*
+Renders a value that contains template.
+Usage:
+{{ include "developer-portal-fe.tplvalues.render" (dict "value" .Values.path.to.the.Value "context" $) }}
+*/}}
+{{- define "developer-portal-fe.tplvalues.render" -}}
+    {{- if typeIs "string" .value }}
+        {{- tpl .value .context }}
+    {{- else}}
+        {{- tpl (.value | toYaml) .context }}
+    {{- end}}
+{{- end -}}
+
+{{/*
+Get the secret name for portal token, auth secret, and db url
+*/}}
+{{- define "developer-portal-fe.secretName" -}}
+{{- if .Values.portal.existingSecret }}
+{{- .Values.portal.existingSecret }}
+{{- else }}
+{{- include "developer-portal-fe.fullname" . }}-secrets
+{{- end }}
+{{- end }}
diff --git a/charts/developer-portal-fe/templates/configmap.yaml b/charts/developer-portal-fe/templates/configmap.yaml
new file mode 100644
index 0000000..41cf350
--- /dev/null
+++ b/charts/developer-portal-fe/templates/configmap.yaml
@@ -0,0 +1,28 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ include "developer-portal-fe.fullname" . }}-config
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    {{- include "developer-portal-fe.labels" . | nindent 4 }}
+data:
+  config.yaml: |
+    # Portal API connection configuration
+    portal:
+      url: {{ .Values.portal.url | quote }}
+      token: ${PORTAL_TOKEN}
+
+    # Database configuration
+    db:
+      url: ${DB_URL}
+
+    # Authentication configuration
+    auth:
+      secret: ${AUTH_SECRET}
+
+    # Application configuration
+    app:
+      name: "Developer Portal"
+      baseURL: {{ .Values.app.baseURL | quote }}
+      trustedOrigins:
+        {{- toYaml .Values.app.trustedOrigins | nindent 8 }}
diff --git a/charts/developer-portal-fe/templates/deployment.yaml b/charts/developer-portal-fe/templates/deployment.yaml
new file mode 100644
index 0000000..ae0ec0e
--- /dev/null
+++ b/charts/developer-portal-fe/templates/deployment.yaml
@@ -0,0 +1,128 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: {{ include "developer-portal-fe.fullname" . }}
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    {{- include "developer-portal-fe.labels" . | nindent 4 }}
+spec:
+  replicas: {{ .Values.developerPortal.replicaCount }}
+  selector:
+    matchLabels:
+      {{- include "developer-portal-fe.selectorLabels" . | nindent 6 }}
+      app.kubernetes.io/component: developer-portal-fe
+  template:
+    metadata:
+      annotations:
+        checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
+        checksum/secret: {{ include (print $.Template.BasePath "/secret.yaml") . | sha256sum }}
+      {{- with .Values.podAnnotations }}
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.developerPortal.podAnnotations }}
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      labels:
+        {{- include "developer-portal-fe.selectorLabels" . | nindent 8 }}
+        app.kubernetes.io/component: developer-portal-fe
+        {{- if .Values.developerPortal.podLabels }}
+        {{- range $key, $value := $.Values.developerPortal.podLabels }}
+        {{ $key }}: {{ $value | quote }}
+        {{- end }}
+        {{- end }}
+    spec:
+      {{- if .Values.imagePullSecret }}
+      imagePullSecrets:
+        - name: {{ .Values.imagePullSecret }}
+      {{- end }}
+      serviceAccountName: {{ include "developer-portal-fe.serviceAccountName" . }}
+      securityContext:
+        {{- toYaml .Values.podSecurityContext | nindent 8 }}
+      volumes:
+        - name: config
+          configMap:
+            name: {{ include "developer-portal-fe.fullname" . }}-config
+      {{- if .Values.developerPortal.extraVolumes }}
+      {{- include "developer-portal-fe.tplvalues.render" (dict "value" .Values.developerPortal.extraVolumes "context" $) | nindent 8 }}
+      {{- end }}
+      containers:
+        - name: developer-portal-fe
+          securityContext:
+            {{- toYaml .Values.securityContext | nindent 12 }}
+          image: "{{ .Values.developerPortal.image.repository }}:{{ .Values.developerPortal.image.tag | default .Chart.AppVersion }}"
+          imagePullPolicy: {{ .Values.developerPortal.image.pullPolicy }}
+          ports:
+            - name: http
+              containerPort: {{ .Values.service.containerPort }}
+              protocol: TCP
+          livenessProbe:
+            httpGet:
+              path: /healthz
+              port: http
+            initialDelaySeconds: {{ .Values.developerPortal.livenessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.developerPortal.livenessProbe.periodSeconds }}
+            failureThreshold: {{ .Values.developerPortal.livenessProbe.failureThreshold }}
+          readinessProbe:
+            httpGet:
+              path: /healthz
+              port: http
+            initialDelaySeconds: {{ .Values.developerPortal.readinessProbe.initialDelaySeconds }}
+            periodSeconds: {{ .Values.developerPortal.readinessProbe.periodSeconds }}
+            failureThreshold: {{ .Values.developerPortal.readinessProbe.failureThreshold }}
+          resources:
+            {{- if .Values.developerPortal.resources }}
+            {{- toYaml .Values.developerPortal.resources | nindent 12 }}
+            {{- else }}
+            {{- toYaml .Values.resources | nindent 12 }}
+            {{- end }}
+          env:
+            - name: NODE_ENV
+              value: "production"
+            - name: PORT
+              value: {{ .Values.service.containerPort | quote }}
+            - name: HOSTNAME
+              value: "0.0.0.0"
+            - name: NODE_TLS_REJECT_UNAUTHORIZED
+              value: {{ if .Values.developerPortal.tlsRejectUnauthorized }}"1"{{ else }}"0"{{ end }}
+            - name: PORTAL_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: {{ include "developer-portal-fe.secretName" . }}
+                  key: {{ .Values.portal.existingSecretKey }}
+            - name: DB_URL
+              valueFrom:
+                secretKeyRef:
+                  name: {{ if .Values.db.existingSecret }}{{ .Values.db.existingSecret }}{{ else }}{{ include "developer-portal-fe.secretName" . }}{{ end }}
+                  key: {{ .Values.db.existingSecretKey }}
+            - name: AUTH_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: {{ if .Values.auth.existingSecret }}{{ .Values.auth.existingSecret }}{{ else }}{{ include "developer-portal-fe.secretName" . }}{{ end }}
+                  key: {{ .Values.auth.existingSecretKey }}
+          {{- if .Values.developerPortal.extraEnvVars }}
+          {{- include "developer-portal-fe.tplvalues.render" (dict "value" .Values.developerPortal.extraEnvVars "context" $) | nindent 12 }}
+          {{- end }}
+          volumeMounts:
+            - name: config
+              mountPath: /app/apps/site/config.yaml
+              subPath: config.yaml
+          {{- if .Values.developerPortal.extraVolumeMounts }}
+          {{- include "developer-portal-fe.tplvalues.render" (dict "value" .Values.developerPortal.extraVolumeMounts "context" $) | nindent 12 }}
+          {{- end }}
+
+      {{- with .Values.nodeSelector }}
+      nodeSelector:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.affinity }}
+      affinity:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with .Values.tolerations }}
+      tolerations:
+        {{- toYaml . | nindent 8 }}
+      {{- end }}
+      {{- with or .Values.developerPortal.topologySpreadConstraints .Values.topologySpreadConstraints }}
+      topologySpreadConstraints:
+        {{- tpl (. | toYaml) $ | nindent 8 }}
+      {{- end }}
diff --git a/charts/developer-portal-fe/templates/ingress.yaml b/charts/developer-portal-fe/templates/ingress.yaml
new file mode 100644
index 0000000..c822f6f
--- /dev/null
+++ b/charts/developer-portal-fe/templates/ingress.yaml
@@ -0,0 +1,57 @@
+{{- if .Values.ingress.enabled -}}
+{{- $fullName := include "developer-portal-fe.fullname" . -}}
+{{- $svcPort := .Values.service.port -}}
+{{- if semverCompare ">=1.19-0" .Capabilities.KubeVersion.GitVersion -}}
+apiVersion: networking.k8s.io/v1
+{{- else if semverCompare ">=1.14-0" .Capabilities.KubeVersion.GitVersion -}}
+apiVersion: networking.k8s.io/v1beta1
+{{- else -}}
+apiVersion: extensions/v1beta1
+{{- end }}
+kind: Ingress
+metadata:
+  name: {{ $fullName }}
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    {{- include "developer-portal-fe.labels" . | nindent 4 }}
+  {{- with .Values.ingress.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  {{- if and .Values.ingress.className (semverCompare ">=1.18-0" .Capabilities.KubeVersion.GitVersion) }}
+  ingressClassName: {{ .Values.ingress.className }}
+  {{- end }}
+  {{- if .Values.ingress.tls }}
+  tls:
+    {{- range .Values.ingress.tls }}
+    - hosts:
+        {{- range .hosts }}
+        - {{ . | quote }}
+        {{- end }}
+      secretName: {{ .secretName }}
+    {{- end }}
+  {{- end }}
+  rules:
+    {{- range .Values.ingress.hosts }}
+    - host: {{ .host | quote }}
+      http:
+        paths:
+          {{- range .paths }}
+          - path: {{ .path }}
+            {{- if semverCompare ">=1.18-0" $.Capabilities.KubeVersion.GitVersion }}
+            pathType: {{ .pathType }}
+            {{- end }}
+            backend:
+              {{- if semverCompare ">=1.19-0" $.Capabilities.KubeVersion.GitVersion }}
+              service:
+                name: {{ $fullName }}
+                port:
+                  number: {{ $svcPort }}
+              {{- else }}
+              serviceName: {{ $fullName }}
+              servicePort: {{ $svcPort }}
+              {{- end }}
+          {{- end }}
+    {{- end }}
+{{- end }}
diff --git a/charts/developer-portal-fe/templates/secret.yaml b/charts/developer-portal-fe/templates/secret.yaml
new file mode 100644
index 0000000..ad67304
--- /dev/null
+++ b/charts/developer-portal-fe/templates/secret.yaml
@@ -0,0 +1,26 @@
+{{- if not .Values.portal.existingSecret }}
+apiVersion: v1
+kind: Secret
+metadata:
+  name: {{ include "developer-portal-fe.fullname" . }}-secrets
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    {{- include "developer-portal-fe.labels" . | nindent 4 }}
+type: Opaque
+data:
+  {{- if .Values.portal.token }}
+  portal-token: {{ .Values.portal.token | b64enc | quote }}
+  {{- else }}
+  portal-token: ""
+  {{- end }}
+  {{- if .Values.auth.secret }}
+  auth-secret: {{ .Values.auth.secret | b64enc | quote }}
+  {{- else }}
+  auth-secret: ""
+  {{- end }}
+  {{- if .Values.db.url }}
+  db-url: {{ .Values.db.url | b64enc | quote }}
+  {{- else }}
+  db-url: ""
+  {{- end }}
+{{- end }}
diff --git a/charts/developer-portal-fe/templates/service.yaml b/charts/developer-portal-fe/templates/service.yaml
new file mode 100644
index 0000000..2c38212
--- /dev/null
+++ b/charts/developer-portal-fe/templates/service.yaml
@@ -0,0 +1,21 @@
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ include "developer-portal-fe.fullname" . }}
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    {{- include "developer-portal-fe.labels" . | nindent 4 }}
+  {{- with .Values.service.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+spec:
+  type: {{ .Values.service.type }}
+  ports:
+    - port: {{ .Values.service.port }}
+      targetPort: http
+      protocol: TCP
+      name: http
+  selector:
+    {{- include "developer-portal-fe.selectorLabels" . | nindent 4 }}
+    app.kubernetes.io/component: developer-portal-fe
diff --git a/charts/developer-portal-fe/templates/serviceaccount.yaml b/charts/developer-portal-fe/templates/serviceaccount.yaml
new file mode 100644
index 0000000..9cbf057
--- /dev/null
+++ b/charts/developer-portal-fe/templates/serviceaccount.yaml
@@ -0,0 +1,13 @@
+{{- if .Values.serviceAccount.create -}}
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: {{ include "developer-portal-fe.serviceAccountName" . }}
+  namespace: {{ .Release.Namespace | quote }}
+  labels:
+    {{- include "developer-portal-fe.labels" . | nindent 4 }}
+  {{- with .Values.serviceAccount.annotations }}
+  annotations:
+    {{- toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
diff --git a/charts/developer-portal-fe/values.yaml b/charts/developer-portal-fe/values.yaml
new file mode 100644
index 0000000..471e135
--- /dev/null
+++ b/charts/developer-portal-fe/values.yaml
@@ -0,0 +1,248 @@
+# ============================================================
+# Application Configuration
+# ============================================================
+developerPortal:
+  # Number of replicas
+  replicaCount: 1
+
+  # Container image configuration
+  image:
+    repository: api7/api7-ee-developer-portal-fe
+    pullPolicy: IfNotPresent
+    tag: "v0.5.7"
+
+  # Resource limits and requests
+  resources: {}
+    # limits:
+    #   cpu: 500m
+    #   memory: 512Mi
+    # requests:
+    #   cpu: 250m
+    #   memory: 256Mi
+
+  # Extra environment variables
+  extraEnvVars: []
+  # - name: CUSTOM_VAR
+  #   value: "custom-value"
+
+  # Extra volumes
+  extraVolumes: []
+  # - name: custom-volume
+  #   emptyDir: {}
+
+  # Extra volume mounts
+  extraVolumeMounts: []
+  # - name: custom-volume
+  #   mountPath: /custom/path
+
+  # Additional labels for pods
+  podLabels: {}
+
+  # Additional annotations for pods
+  podAnnotations: {}
+
+  # Topology spread constraints
+  topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: kubernetes.io/hostname
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app.kubernetes.io/name: developer-portal-fe
+
+  # Skip TLS verification for Portal API (only for dev/self-signed certs)
+  # Set to false to enable NODE_TLS_REJECT_UNAUTHORIZED=0
+  tlsRejectUnauthorized: true
+
+  # Liveness probe configuration
+  livenessProbe:
+    initialDelaySeconds: 30
+    periodSeconds: 10
+    failureThreshold: 10
+
+  # Readiness probe configuration
+  readinessProbe:
+    initialDelaySeconds: 10
+    periodSeconds: 5
+    failureThreshold: 3
+
+# ============================================================
+# Portal API Connection Configuration
+# ============================================================
+portal:
+  # Portal API endpoint (the developer portal backend from api7 chart)
+  url: "https://api7-developer-portal:4321"
+
+  # Portal token (plain text, lower priority than existingSecret)
+  token: ""
+
+  # Reference to existing secret containing portal token (recommended for production)
+  existingSecret: ""
+  existingSecretKey: "portal-token"
+
+# ============================================================
+# Database Configuration
+# ============================================================
+db:
+  # PostgreSQL connection string
+  # Format: postgres://username:password@host:port/database
+  url: "postgres://portal:portal123@developer-portal-fe-postgresql:5432/portal"
+
+  # Reference to existing secret containing database URL (recommended for production)
+  existingSecret: ""
+  existingSecretKey: "db-url"
+
+# ============================================================
+# Authentication Configuration
+# ============================================================
+auth:
+  # Better Auth secret key (at least 32 characters)
+  # Generate with: openssl rand -base64 32
+  secret: ""
+
+  # Reference to existing secret containing auth secret (recommended for production)
+  existingSecret: ""
+  existingSecretKey: "auth-secret"
+
+# ============================================================
+# Application URL Configuration
+# ============================================================
+app:
+  # Base URL for the application
+  baseURL: "http://localhost"
+
+  # Trusted origins for CORS
+  trustedOrigins:
+    - "http://localhost"
+
+# ============================================================
+# Service Configuration
+# ============================================================
+service:
+  # Service type (ClusterIP, NodePort, LoadBalancer)
+  type: ClusterIP
+
+  # Service port (exposed to the cluster)
+  port: 80
+
+  # Container port (the port the application listens on)
+  containerPort: 3001
+
+  # Service annotations
+  annotations: {}
+
+# ============================================================
+# Ingress Configuration
+# ============================================================
+ingress:
+  # Enable ingress
+  enabled: false
+
+  # Ingress class name
+  className: ""
+
+  # Ingress annotations
+  annotations: {}
+    # kubernetes.io/ingress.class: nginx
+    # cert-manager.io/cluster-issuer: letsencrypt-prod
+
+  # Ingress hosts configuration
+  hosts:
+    - host: developer-portal.local
+      paths:
+        - path: /
+          pathType: ImplementationSpecific
+
+  # TLS configuration
+  tls: []
+  #  - secretName: developer-portal-tls
+  #    hosts:
+  #      - developer-portal.local
+
+# ============================================================
+# Built-in PostgreSQL Configuration
+# ============================================================
+postgresql:
+  # Enable built-in PostgreSQL (set to false to use external database)
+  builtin: true
+
+  # Override the full name of the PostgreSQL deployment
+  fullnameOverride: "developer-portal-fe-postgresql"
+
+  # PostgreSQL image configuration
+  image:
+    registry: docker.io
+    repository: postgres
+    tag: "16"
+
+  # Authentication settings
+  auth:
+    username: portal
+    password: portal123
+    database: portal
+
+  # Primary node configuration
+  primary:
+    # Persistence configuration
+    persistence:
+      enabled: true
+      size: 10Gi
+
+    # Service configuration
+    service:
+      ports:
+        postgresql: 5432
+
+# ============================================================
+# Common Configuration
+# ============================================================
+# Image pull secret name
+imagePullSecret: ""
+
+# Override the name of the chart
+nameOverride: ""
+
+# Override the full name of the release
+fullnameOverride: ""
+
+# Service account configuration
+serviceAccount:
+  # Create a service account
+  create: true
+
+  # Annotations for the service account
+  annotations: {}
+
+  # Name of the service account (generated if not set)
+  name: ""
+
+# Pod annotations (global)
+podAnnotations: {}
+
+# Pod security context (global)
+podSecurityContext: {}
+  # fsGroup: 2000
+
+# Container security context (global)
+securityContext: {}
+  # capabilities:
+  #   drop:
+  #   - ALL
+  # readOnlyRootFilesystem: true
+  # runAsNonRoot: true
+  # runAsUser: 1000
+
+# Node selector (global)
+nodeSelector: {}
+
+# Tolerations (global)
+tolerations: []
+
+# Affinity (global)
+affinity: {}
+
+# Topology spread constraints (global)
+topologySpreadConstraints: []
+
+# Global resource limits and requests
+resources: {}

From 887a7a6488ef9bcceffb2c573c354f6d7be62649 Mon Sep 17 00:00:00 2001
From: Nic <qianyong@api7.ai>
Date: Wed, 25 Mar 2026 16:03:24 +0800
Subject: [PATCH 3/5] fix: correct health probe path and PostgreSQL image
 config

1. Change health check path from /healthz to / (configurable via values)
   - The portal-fe app (v0.5.7) does not have a /healthz endpoint
   - /healthz returns 404, causing liveness probe failures and pod restarts
   - Root path / returns 200 and serves as a valid health check

2. Remove PostgreSQL image override (docker.io/postgres:16)
   - The bitnami/postgresql subchart expects bitnami's own image
   - Using the official postgres image with bitnami chart scripts is
     not officially supported and may break with advanced features
   - Let the subchart use its default bitnami/postgresql image

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
---
 charts/developer-portal-fe/README.md          | 352 +++++-------------
 .../templates/deployment.yaml                 |   4 +-
 charts/developer-portal-fe/values.yaml        |   8 +-
 3 files changed, 91 insertions(+), 273 deletions(-)

diff --git a/charts/developer-portal-fe/README.md b/charts/developer-portal-fe/README.md
index 1015d99..274beb2 100644
--- a/charts/developer-portal-fe/README.md
+++ b/charts/developer-portal-fe/README.md
@@ -1,266 +1,88 @@
-# API7 Developer Portal Frontend Helm Chart
+# developer-portal-fe
+
+![Version: 0.1.0](https://img.shields.io/badge/Version-0.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.5.7](https://img.shields.io/badge/AppVersion-0.5.7-informational?style=flat-square)
+
+A Helm chart for API7 Developer Portal Frontend
+
+## Maintainers
+
+| Name | Email | Url |
+| ---- | ------ | --- |
+| API7 | <support@api7.ai> | <https://api7.ai> |
+
+## Requirements
+
+| Repository | Name | Version |
+|------------|------|---------|
+| https://charts.bitnami.com/bitnami | postgresql | 12.12.10 |
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| affinity | object | `{}` |  |
+| app.baseURL | string | `"http://localhost"` |  |
+| app.trustedOrigins[0] | string | `"http://localhost"` |  |
+| auth.existingSecret | string | `""` |  |
+| auth.existingSecretKey | string | `"auth-secret"` |  |
+| auth.secret | string | `""` |  |
+| db.existingSecret | string | `""` |  |
+| db.existingSecretKey | string | `"db-url"` |  |
+| db.url | string | `"postgres://portal:portal123@developer-portal-fe-postgresql:5432/portal"` |  |
+| developerPortal.extraEnvVars | list | `[]` |  |
+| developerPortal.extraVolumeMounts | list | `[]` |  |
+| developerPortal.extraVolumes | list | `[]` |  |
+| developerPortal.image.pullPolicy | string | `"IfNotPresent"` |  |
+| developerPortal.image.repository | string | `"api7/api7-ee-developer-portal-fe"` |  |
+| developerPortal.image.tag | string | `"v0.5.7"` |  |
+| developerPortal.livenessProbe.failureThreshold | int | `10` |  |
+| developerPortal.livenessProbe.initialDelaySeconds | int | `30` |  |
+| developerPortal.livenessProbe.path | string | `"/"` |  |
+| developerPortal.livenessProbe.periodSeconds | int | `10` |  |
+| developerPortal.podAnnotations | object | `{}` |  |
+| developerPortal.podLabels | object | `{}` |  |
+| developerPortal.readinessProbe.failureThreshold | int | `3` |  |
+| developerPortal.readinessProbe.initialDelaySeconds | int | `10` |  |
+| developerPortal.readinessProbe.path | string | `"/"` |  |
+| developerPortal.readinessProbe.periodSeconds | int | `5` |  |
+| developerPortal.replicaCount | int | `1` |  |
+| developerPortal.resources | object | `{}` |  |
+| developerPortal.tlsRejectUnauthorized | bool | `true` |  |
+| developerPortal.topologySpreadConstraints | list | `[]` |  |
+| fullnameOverride | string | `""` |  |
+| imagePullSecret | string | `""` |  |
+| ingress.annotations | object | `{}` |  |
+| ingress.className | string | `""` |  |
+| ingress.enabled | bool | `false` |  |
+| ingress.hosts[0].host | string | `"developer-portal.local"` |  |
+| ingress.hosts[0].paths[0].path | string | `"/"` |  |
+| ingress.hosts[0].paths[0].pathType | string | `"ImplementationSpecific"` |  |
+| ingress.tls | list | `[]` |  |
+| nameOverride | string | `""` |  |
+| nodeSelector | object | `{}` |  |
+| podAnnotations | object | `{}` |  |
+| podSecurityContext | object | `{}` |  |
+| portal.existingSecret | string | `""` |  |
+| portal.existingSecretKey | string | `"portal-token"` |  |
+| portal.token | string | `""` |  |
+| portal.url | string | `"https://api7-developer-portal:4321"` |  |
+| postgresql.auth.database | string | `"portal"` |  |
+| postgresql.auth.password | string | `"portal123"` |  |
+| postgresql.auth.username | string | `"portal"` |  |
+| postgresql.builtin | bool | `true` |  |
+| postgresql.fullnameOverride | string | `"developer-portal-fe-postgresql"` |  |
+| postgresql.primary.persistence.enabled | bool | `true` |  |
+| postgresql.primary.persistence.size | string | `"10Gi"` |  |
+| postgresql.primary.service.ports.postgresql | int | `5432` |  |
+| resources | object | `{}` |  |
+| securityContext | object | `{}` |  |
+| service.annotations | object | `{}` |  |
+| service.containerPort | int | `3001` |  |
+| service.port | int | `80` |  |
+| service.type | string | `"ClusterIP"` |  |
+| serviceAccount.annotations | object | `{}` |  |
+| serviceAccount.create | bool | `true` |  |
+| serviceAccount.name | string | `""` |  |
+| tolerations | list | `[]` |  |
+| topologySpreadConstraints | list | `[]` |  |
 
-This Helm chart deploys the API7 Developer Portal Frontend, a Next.js application that provides a user-facing interface for the API7 Developer Portal.
-
-## Introduction
-
-The API7 Developer Portal consists of two main components:
-
-- **Portal API (Backend)**: Already deployed as part of the `api7` umbrella chart, listening on port 4321
-- **Developer Portal FE (Frontend)**: This chart, a Next.js application listening on port 3001
-
-This chart creates an independent deployment for the Developer Portal Frontend with its own PostgreSQL database for user authentication and management.
-
-## Prerequisites
-
-- Kubernetes 1.19+
-- Helm 3.2.0+
-- PV provisioner support in the underlying infrastructure (if using built-in PostgreSQL with persistence)
-
-## Installing the Chart
-
-To install the chart with the release name `my-dev-portal`:
-
-```bash
-helm install my-dev-portal ./charts/developer-portal-fe
-```
-
-The command deploys the Developer Portal Frontend on the Kubernetes cluster with the default configuration. The [Parameters](#parameters) section lists the parameters that can be configured during installation.
-
-## Uninstalling the Chart
-
-To uninstall/delete the `my-dev-portal` deployment:
-
-```bash
-helm uninstall my-dev-portal
-```
-
-The command removes all the Kubernetes components associated with the chart and deletes the release.
-
-## Parameters
-
-### Application Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `developerPortal.replicaCount` | Number of replicas | `1` |
-| `developerPortal.image.repository` | Image repository | `api7/api7-ee-developer-portal-fe` |
-| `developerPortal.image.pullPolicy` | Image pull policy | `IfNotPresent` |
-| `developerPortal.image.tag` | Image tag | `v0.5.7` |
-| `developerPortal.resources` | Resource limits and requests | `{}` |
-| `developerPortal.extraEnvVars` | Extra environment variables | `[]` |
-| `developerPortal.extraVolumes` | Extra volumes | `[]` |
-| `developerPortal.extraVolumeMounts` | Extra volume mounts | `[]` |
-| `developerPortal.podLabels` | Additional labels for pods | `{}` |
-| `developerPortal.podAnnotations` | Additional annotations for pods | `{}` |
-| `developerPortal.topologySpreadConstraints` | Topology spread constraints | `[]` |
-| `developerPortal.tlsRejectUnauthorized` | Enable TLS verification (set to false for self-signed certs) | `true` |
-| `developerPortal.livenessProbe.initialDelaySeconds` | Liveness probe initial delay | `30` |
-| `developerPortal.livenessProbe.periodSeconds` | Liveness probe period | `10` |
-| `developerPortal.livenessProbe.failureThreshold` | Liveness probe failure threshold | `10` |
-| `developerPortal.readinessProbe.initialDelaySeconds` | Readiness probe initial delay | `10` |
-| `developerPortal.readinessProbe.periodSeconds` | Readiness probe period | `5` |
-| `developerPortal.readinessProbe.failureThreshold` | Readiness probe failure threshold | `3` |
-
-### Portal API Connection
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `portal.url` | Portal API endpoint | `https://api7-developer-portal:4321` |
-| `portal.token` | Portal token (plain text) | `""` |
-| `portal.existingSecret` | Reference to existing secret containing portal token | `""` |
-| `portal.existingSecretKey` | Key in existing secret for portal token | `portal-token` |
-
-### Database Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `db.url` | PostgreSQL connection string | `postgres://portal:portal123@developer-portal-fe-postgresql:5432/portal` |
-| `db.existingSecret` | Reference to existing secret containing database URL | `""` |
-| `db.existingSecretKey` | Key in existing secret for database URL | `db-url` |
-
-### Authentication Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `auth.secret` | Better Auth secret key (at least 32 characters) | `""` |
-| `auth.existingSecret` | Reference to existing secret containing auth secret | `""` |
-| `auth.existingSecretKey` | Key in existing secret for auth secret | `auth-secret` |
-
-### Application URL Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `app.baseURL` | Base URL for the application | `http://localhost` |
-| `app.trustedOrigins` | Trusted origins for CORS | `["http://localhost"]` |
-
-### Service Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `service.type` | Service type | `ClusterIP` |
-| `service.port` | Service port | `80` |
-| `service.containerPort` | Container port | `3001` |
-| `service.annotations` | Service annotations | `{}` |
-
-### Ingress Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `ingress.enabled` | Enable ingress | `false` |
-| `ingress.className` | Ingress class name | `""` |
-| `ingress.annotations` | Ingress annotations | `{}` |
-| `ingress.hosts` | Ingress hosts configuration | See values.yaml |
-| `ingress.tls` | TLS configuration | `[]` |
-
-### PostgreSQL Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `postgresql.builtin` | Enable built-in PostgreSQL | `true` |
-| `postgresql.fullnameOverride` | Override PostgreSQL full name | `developer-portal-fe-postgresql` |
-| `postgresql.image.registry` | PostgreSQL image registry | `docker.io` |
-| `postgresql.image.repository` | PostgreSQL image repository | `postgres` |
-| `postgresql.image.tag` | PostgreSQL image tag | `16` |
-| `postgresql.auth.username` | PostgreSQL username | `portal` |
-| `postgresql.auth.password` | PostgreSQL password | `portal123` |
-| `postgresql.auth.database` | PostgreSQL database | `portal` |
-| `postgresql.primary.persistence.size` | PostgreSQL persistence size | `10Gi` |
-
-### Common Configuration
-
-| Parameter | Description | Default |
-|-----------|-------------|---------|
-| `imagePullSecret` | Image pull secret name | `""` |
-| `nameOverride` | Override the name of the chart | `""` |
-| `fullnameOverride` | Override the full name of the release | `""` |
-| `serviceAccount.create` | Create a service account | `true` |
-| `serviceAccount.annotations` | Service account annotations | `{}` |
-| `serviceAccount.name` | Service account name | `""` |
-| `podAnnotations` | Pod annotations | `{}` |
-| `podSecurityContext` | Pod security context | `{}` |
-| `securityContext` | Container security context | `{}` |
-| `nodeSelector` | Node selector | `{}` |
-| `tolerations` | Tolerations | `[]` |
-| `affinity` | Affinity | `{}` |
-| `topologySpreadConstraints` | Topology spread constraints | `[]` |
-| `resources` | Global resource limits and requests | `{}` |
-
-## Configuration Examples
-
-### Using External PostgreSQL
-
-To use an external PostgreSQL database:
-
-```yaml
-postgresql:
-  builtin: false
-
-db:
-  url: "postgres://username:password@external-postgres-host:5432/portal_db"
-```
-
-### Using Existing Secrets
-
-For production deployments, it's recommended to use existing secrets:
-
-```yaml
-portal:
-  existingSecret: "portal-secrets"
-  existingSecretKey: "portal-token"
-
-auth:
-  existingSecret: "auth-secrets"
-  existingSecretKey: "auth-secret"
-
-db:
-  existingSecret: "db-secrets"
-  existingSecretKey: "db-url"
-```
-
-Create the secrets manually:
-
-```bash
-kubectl create secret generic portal-secrets --from-literal=portal-token='your-portal-token'
-kubectl create secret generic auth-secrets --from-literal=auth-secret='your-auth-secret'
-kubectl create secret generic db-secrets --from-literal=db-url='postgres://...'
-```
-
-### Enabling Ingress
-
-To enable ingress with TLS:
-
-```yaml
-ingress:
-  enabled: true
-  className: "nginx"
-  annotations:
-    cert-manager.io/cluster-issuer: "letsencrypt-prod"
-  hosts:
-    - host: developer-portal.example.com
-      paths:
-        - path: /
-          pathType: Prefix
-  tls:
-    - secretName: developer-portal-tls
-      hosts:
-        - developer-portal.example.com
-```
-
-### Disabling TLS Verification (Development Only)
-
-For self-signed certificates in development:
-
-```yaml
-developerPortal:
-  tlsRejectUnauthorized: false
-```
-
-**Warning**: This should never be used in production.
-
-## Architecture
-
-```
-┌──────────────────────────────────────┐
-│  api7 umbrella chart (existing)      │
-│  ┌──────────────┐                    │
-│  │  Portal API  │                    │
-│  │ (backend)    │                    │
-│  │  :4321       │                    │
-│  └──────┬───────┘                    │
-│         │                            │
-│   PostgreSQL (shared api7ee)         │
-└─────────┼──────────────────────────┬─┘
-          │                          │
-          │ portal.url + token       │
-          ▼                          │
-┌──────────────────────────────────┐ │
-│  developer-portal-fe chart       │ │
-│  ┌────────────────────┐          │ │
-│  │ Developer Portal   │◄─────────┘ │
-│  │ FE (Next.js)       │            │
-│  │  :3001             │            │
-│  └────────┬───────────┘            │
-│           │                        │
-│     PostgreSQL                     │
-│     (dedicated for FE users)       │
-└──────────────────────────────────┘
-```
-
-## Health Checks
-
-The application exposes a `/healthz` endpoint on port 3001 for both liveness and readiness probes.
-
-## Upgrading
-
-### To 0.2.0
-
-No breaking changes.
-
-## License
-
-Copyright © 2024 API7.ai
-
-## Support
-
-For support, please contact support@api7.ai or visit https://api7.ai
diff --git a/charts/developer-portal-fe/templates/deployment.yaml b/charts/developer-portal-fe/templates/deployment.yaml
index ae0ec0e..aa3bcab 100644
--- a/charts/developer-portal-fe/templates/deployment.yaml
+++ b/charts/developer-portal-fe/templates/deployment.yaml
@@ -57,14 +57,14 @@ spec:
               protocol: TCP
           livenessProbe:
             httpGet:
-              path: /healthz
+              path: {{ .Values.developerPortal.livenessProbe.path | default "/" }}
               port: http
             initialDelaySeconds: {{ .Values.developerPortal.livenessProbe.initialDelaySeconds }}
             periodSeconds: {{ .Values.developerPortal.livenessProbe.periodSeconds }}
             failureThreshold: {{ .Values.developerPortal.livenessProbe.failureThreshold }}
           readinessProbe:
             httpGet:
-              path: /healthz
+              path: {{ .Values.developerPortal.readinessProbe.path | default "/" }}
               port: http
             initialDelaySeconds: {{ .Values.developerPortal.readinessProbe.initialDelaySeconds }}
             periodSeconds: {{ .Values.developerPortal.readinessProbe.periodSeconds }}
diff --git a/charts/developer-portal-fe/values.yaml b/charts/developer-portal-fe/values.yaml
index 471e135..39e6baa 100644
--- a/charts/developer-portal-fe/values.yaml
+++ b/charts/developer-portal-fe/values.yaml
@@ -56,12 +56,14 @@ developerPortal:
 
   # Liveness probe configuration
   livenessProbe:
+    path: /
     initialDelaySeconds: 30
     periodSeconds: 10
     failureThreshold: 10
 
   # Readiness probe configuration
   readinessProbe:
+    path: /
     initialDelaySeconds: 10
     periodSeconds: 5
     failureThreshold: 3
@@ -169,12 +171,6 @@ postgresql:
   # Override the full name of the PostgreSQL deployment
   fullnameOverride: "developer-portal-fe-postgresql"
 
-  # PostgreSQL image configuration
-  image:
-    registry: docker.io
-    repository: postgres
-    tag: "16"
-
   # Authentication settings
   auth:
     username: portal

From 6d0b6c65f8fcddacb2f7e0946a982c4a15dfd5f2 Mon Sep 17 00:00:00 2001
From: Nic <qianyong@api7.ai>
Date: Wed, 25 Mar 2026 16:14:40 +0800
Subject: [PATCH 4/5] fix: independent existingSecret support for portal, db,
 and auth

Previously, setting portal.existingSecret would skip creating the entire
chart-managed secret, breaking DB_URL and AUTH_SECRET env vars unless
they also had their own existingSecret configured.

Now each secret field (portal.existingSecret, db.existingSecret,
auth.existingSecret) is independently evaluated:
- The chart secret is created if ANY of the three need it
- Only keys without an existingSecret override are included
- Each env var in the deployment references its own existingSecret
  or falls back to the chart-managed secret independently

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
---
 charts/developer-portal-fe/templates/_helpers.tpl    | 6 +-----
 charts/developer-portal-fe/templates/deployment.yaml | 2 +-
 charts/developer-portal-fe/templates/secret.yaml     | 8 +++++++-
 3 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/charts/developer-portal-fe/templates/_helpers.tpl b/charts/developer-portal-fe/templates/_helpers.tpl
index 7ba142a..4af258d 100644
--- a/charts/developer-portal-fe/templates/_helpers.tpl
+++ b/charts/developer-portal-fe/templates/_helpers.tpl
@@ -75,12 +75,8 @@ Usage:
 {{- end -}}
 
 {{/*
-Get the secret name for portal token, auth secret, and db url
+Get the chart-managed secret name
 */}}
 {{- define "developer-portal-fe.secretName" -}}
-{{- if .Values.portal.existingSecret }}
-{{- .Values.portal.existingSecret }}
-{{- else }}
 {{- include "developer-portal-fe.fullname" . }}-secrets
 {{- end }}
-{{- end }}
diff --git a/charts/developer-portal-fe/templates/deployment.yaml b/charts/developer-portal-fe/templates/deployment.yaml
index aa3bcab..cb3af01 100644
--- a/charts/developer-portal-fe/templates/deployment.yaml
+++ b/charts/developer-portal-fe/templates/deployment.yaml
@@ -87,7 +87,7 @@ spec:
             - name: PORTAL_TOKEN
               valueFrom:
                 secretKeyRef:
-                  name: {{ include "developer-portal-fe.secretName" . }}
+                  name: {{ if .Values.portal.existingSecret }}{{ .Values.portal.existingSecret }}{{ else }}{{ include "developer-portal-fe.secretName" . }}{{ end }}
                   key: {{ .Values.portal.existingSecretKey }}
             - name: DB_URL
               valueFrom:
diff --git a/charts/developer-portal-fe/templates/secret.yaml b/charts/developer-portal-fe/templates/secret.yaml
index ad67304..745ef81 100644
--- a/charts/developer-portal-fe/templates/secret.yaml
+++ b/charts/developer-portal-fe/templates/secret.yaml
@@ -1,4 +1,4 @@
-{{- if not .Values.portal.existingSecret }}
+{{- if or (not .Values.portal.existingSecret) (not .Values.db.existingSecret) (not .Values.auth.existingSecret) }}
 apiVersion: v1
 kind: Secret
 metadata:
@@ -8,19 +8,25 @@ metadata:
     {{- include "developer-portal-fe.labels" . | nindent 4 }}
 type: Opaque
 data:
+  {{- if not .Values.portal.existingSecret }}
   {{- if .Values.portal.token }}
   portal-token: {{ .Values.portal.token | b64enc | quote }}
   {{- else }}
   portal-token: ""
   {{- end }}
+  {{- end }}
+  {{- if not .Values.auth.existingSecret }}
   {{- if .Values.auth.secret }}
   auth-secret: {{ .Values.auth.secret | b64enc | quote }}
   {{- else }}
   auth-secret: ""
   {{- end }}
+  {{- end }}
+  {{- if not .Values.db.existingSecret }}
   {{- if .Values.db.url }}
   db-url: {{ .Values.db.url | b64enc | quote }}
   {{- else }}
   db-url: ""
   {{- end }}
+  {{- end }}
 {{- end }}

From af0b76fd5cbce28156ca34826f3af372ea908fbd Mon Sep 17 00:00:00 2001
From: Nic <qianyong@api7.ai>
Date: Wed, 25 Mar 2026 16:20:12 +0800
Subject: [PATCH 5/5] fix: use api7/postgresql image to match api7 umbrella
 chart convention

Override bitnami's default postgresql image with api7/postgresql:15.4.0-debian-11-r45,
matching the same image used by the api7 umbrella chart. This ensures consistency
and avoids pulling bitnami's default image which may be unavailable.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
---
 charts/developer-portal-fe/README.md   | 3 +++
 charts/developer-portal-fe/values.yaml | 6 ++++++
 2 files changed, 9 insertions(+)

diff --git a/charts/developer-portal-fe/README.md b/charts/developer-portal-fe/README.md
index 274beb2..7789107 100644
--- a/charts/developer-portal-fe/README.md
+++ b/charts/developer-portal-fe/README.md
@@ -71,6 +71,9 @@ A Helm chart for API7 Developer Portal Frontend
 | postgresql.auth.username | string | `"portal"` |  |
 | postgresql.builtin | bool | `true` |  |
 | postgresql.fullnameOverride | string | `"developer-portal-fe-postgresql"` |  |
+| postgresql.image.registry | string | `"docker.io"` |  |
+| postgresql.image.repository | string | `"api7/postgresql"` |  |
+| postgresql.image.tag | string | `"15.4.0-debian-11-r45"` |  |
 | postgresql.primary.persistence.enabled | bool | `true` |  |
 | postgresql.primary.persistence.size | string | `"10Gi"` |  |
 | postgresql.primary.service.ports.postgresql | int | `5432` |  |
diff --git a/charts/developer-portal-fe/values.yaml b/charts/developer-portal-fe/values.yaml
index 39e6baa..e32744c 100644
--- a/charts/developer-portal-fe/values.yaml
+++ b/charts/developer-portal-fe/values.yaml
@@ -177,6 +177,12 @@ postgresql:
     password: portal123
     database: portal
 
+  # PostgreSQL image configuration (use api7's image for compatibility)
+  image:
+    registry: docker.io
+    repository: api7/postgresql
+    tag: 15.4.0-debian-11-r45
+
   # Primary node configuration
   primary:
     # Persistence configuration