From 9c45ce61b8d6733fbc160bc59666eb8fcc03f73e Mon Sep 17 00:00:00 2001
From: Adithya Krishna <adikrish@redhat.com>
Date: Sat, 26 Aug 2023 12:31:40 +0530
Subject: [PATCH 01/83] feat: added show password feature

Signed-off-by: Adithya Krishna <adikrish@redhat.com>
---
 apps/web/src/components/forms/password.tsx | 70 ++++++++++++++++++----
 apps/web/src/components/forms/signin.tsx   | 37 +++++++++---
 apps/web/src/components/forms/signup.tsx   | 37 +++++++++---
 3 files changed, 117 insertions(+), 27 deletions(-)

diff --git a/apps/web/src/components/forms/password.tsx b/apps/web/src/components/forms/password.tsx
index eba0c9a43..4689e0dbe 100644
--- a/apps/web/src/components/forms/password.tsx
+++ b/apps/web/src/components/forms/password.tsx
@@ -1,7 +1,9 @@
 'use client';
 
+import { useState } from 'react';
+
 import { zodResolver } from '@hookform/resolvers/zod';
-import { Loader } from 'lucide-react';
+import { Eye, EyeOff, Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
@@ -35,6 +37,8 @@ export type PasswordFormProps = {
 
 export const PasswordForm = ({ className }: PasswordFormProps) => {
   const { toast } = useToast();
+  const [showPassword, setShowPassword] = useState(false);
+  const [showConfirmPassword, setShowConfirmPassword] = useState(false);
 
   const {
     register,
@@ -79,6 +83,14 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
     }
   };
 
+  const onShowPassword = () => {
+    setShowPassword(!showPassword);
+  };
+
+  const onShowConfirmPassword = () => {
+    setShowConfirmPassword(!showConfirmPassword);
+  };
+
   return (
     <form
       className={cn('flex w-full flex-col gap-y-4', className)}
@@ -89,12 +101,28 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
           Password
         </Label>
 
-        <Input
-          id="password"
-          type="password"
-          className="bg-background mt-2"
-          {...register('password')}
-        />
+        <div className="relative">
+          <Input
+            id="password"
+            type={showPassword ? 'text' : 'password'}
+            className="bg-background mt-2"
+            {...register('password')}
+          />
+
+          <Button
+            variant="link"
+            type="button"
+            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            aria-label={showPassword ? 'Mask password' : 'Reveal password'}
+            onClick={onShowPassword}
+          >
+            {showPassword ? (
+              <EyeOff className="text-slate-500" />
+            ) : (
+              <Eye className="text-slate-500" />
+            )}
+          </Button>
+        </div>
 
         <FormErrorMessage className="mt-1.5" error={errors.password} />
       </div>
@@ -104,12 +132,28 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
           Repeat Password
         </Label>
 
-        <Input
-          id="repeated-password"
-          type="password"
-          className="bg-background mt-2"
-          {...register('repeatedPassword')}
-        />
+        <div className="relative">
+          <Input
+            id="repeated-password"
+            type={showConfirmPassword ? 'text' : 'password'}
+            className="bg-background mt-2"
+            {...register('repeatedPassword')}
+          />
+
+          <Button
+            variant="link"
+            type="button"
+            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            aria-label={showConfirmPassword ? 'Mask password' : 'Reveal password'}
+            onClick={onShowConfirmPassword}
+          >
+            {showConfirmPassword ? (
+              <EyeOff className="text-slate-500" />
+            ) : (
+              <Eye className="text-slate-500" />
+            )}
+          </Button>
+        </div>
 
         <FormErrorMessage className="mt-1.5" error={errors.repeatedPassword} />
       </div>
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index ae9540869..2f3c3a4d6 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -1,7 +1,9 @@
 'use client';
 
+import { useState } from 'react';
+
 import { zodResolver } from '@hookform/resolvers/zod';
-import { Loader } from 'lucide-react';
+import { Eye, EyeOff, Loader } from 'lucide-react';
 import { signIn } from 'next-auth/react';
 import { useForm } from 'react-hook-form';
 import { FcGoogle } from 'react-icons/fc';
@@ -26,6 +28,7 @@ export type SignInFormProps = {
 
 export const SignInForm = ({ className }: SignInFormProps) => {
   const { toast } = useToast();
+  const [showPassword, setShowPassword] = useState(false);
 
   const {
     register,
@@ -73,6 +76,10 @@ export const SignInForm = ({ className }: SignInFormProps) => {
     }
   };
 
+  const onShowPassword = () => {
+    setShowPassword(!showPassword);
+  };
+
   return (
     <form
       className={cn('flex w-full flex-col gap-y-4', className)}
@@ -96,12 +103,28 @@ export const SignInForm = ({ className }: SignInFormProps) => {
           Password
         </Label>
 
-        <Input
-          id="password"
-          type="password"
-          className="bg-background mt-2"
-          {...register('password')}
-        />
+        <div className="relative">
+          <Input
+            id="password"
+            type={showPassword ? 'text' : 'password'}
+            className="bg-background mt-2"
+            {...register('password')}
+          />
+
+          <Button
+            variant="link"
+            type="button"
+            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            aria-label={showPassword ? 'Mask password' : 'Reveal password'}
+            onClick={onShowPassword}
+          >
+            {showPassword ? (
+              <EyeOff className="text-slate-500" />
+            ) : (
+              <Eye className="text-slate-500" />
+            )}
+          </Button>
+        </div>
 
         {errors.password && (
           <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
diff --git a/apps/web/src/components/forms/signup.tsx b/apps/web/src/components/forms/signup.tsx
index ce449f850..a66e43caf 100644
--- a/apps/web/src/components/forms/signup.tsx
+++ b/apps/web/src/components/forms/signup.tsx
@@ -1,7 +1,9 @@
 'use client';
 
+import { useState } from 'react';
+
 import { zodResolver } from '@hookform/resolvers/zod';
-import { Loader } from 'lucide-react';
+import { Eye, EyeOff, Loader } from 'lucide-react';
 import { signIn } from 'next-auth/react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
@@ -29,6 +31,7 @@ export type SignUpFormProps = {
 
 export const SignUpForm = ({ className }: SignUpFormProps) => {
   const { toast } = useToast();
+  const [showPassword, setShowPassword] = useState(false);
 
   const {
     register,
@@ -72,6 +75,10 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
     }
   };
 
+  const onShowPassword = () => {
+    setShowPassword(!showPassword);
+  };
+
   return (
     <form
       className={cn('flex w-full flex-col gap-y-4', className)}
@@ -102,12 +109,28 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
           Password
         </Label>
 
-        <Input
-          id="password"
-          type="password"
-          className="bg-background mt-2"
-          {...register('password')}
-        />
+        <div className="relative">
+          <Input
+            id="password"
+            type={showPassword ? 'text' : 'password'}
+            className="bg-background mt-2"
+            {...register('password')}
+          />
+
+          <Button
+            variant="link"
+            type="button"
+            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            aria-label={showPassword ? 'Mask password' : 'Reveal password'}
+            onClick={onShowPassword}
+          >
+            {showPassword ? (
+              <EyeOff className="text-slate-500" />
+            ) : (
+              <Eye className="text-slate-500" />
+            )}
+          </Button>
+        </div>
       </div>
 
       <div>

From 7c6b5ac59d227a2020cbb7760f61751098b27c86 Mon Sep 17 00:00:00 2001
From: Adithya Krishna <adikrish@redhat.com>
Date: Sat, 26 Aug 2023 20:42:15 +0530
Subject: [PATCH 02/83] fix: updated padding and set patterns

Signed-off-by: Adithya Krishna <adikrish@redhat.com>
---
 apps/web/src/components/forms/password.tsx | 20 ++++++--------------
 apps/web/src/components/forms/signin.tsx   | 10 +++-------
 apps/web/src/components/forms/signup.tsx   | 10 +++-------
 3 files changed, 12 insertions(+), 28 deletions(-)

diff --git a/apps/web/src/components/forms/password.tsx b/apps/web/src/components/forms/password.tsx
index 4689e0dbe..d258b2693 100644
--- a/apps/web/src/components/forms/password.tsx
+++ b/apps/web/src/components/forms/password.tsx
@@ -83,14 +83,6 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
     }
   };
 
-  const onShowPassword = () => {
-    setShowPassword(!showPassword);
-  };
-
-  const onShowConfirmPassword = () => {
-    setShowConfirmPassword(!showConfirmPassword);
-  };
-
   return (
     <form
       className={cn('flex w-full flex-col gap-y-4', className)}
@@ -105,16 +97,16 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
           <Input
             id="password"
             type={showPassword ? 'text' : 'password'}
-            className="bg-background mt-2"
+            className="bg-background mt-2 pr-10"
             {...register('password')}
           />
 
           <Button
             variant="link"
             type="button"
-            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showPassword ? 'Mask password' : 'Reveal password'}
-            onClick={onShowPassword}
+            onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
               <EyeOff className="text-slate-500" />
@@ -136,16 +128,16 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
           <Input
             id="repeated-password"
             type={showConfirmPassword ? 'text' : 'password'}
-            className="bg-background mt-2"
+            className="bg-background mt-2 pr-10"
             {...register('repeatedPassword')}
           />
 
           <Button
             variant="link"
             type="button"
-            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showConfirmPassword ? 'Mask password' : 'Reveal password'}
-            onClick={onShowConfirmPassword}
+            onClick={() => setShowConfirmPassword((showConfirmPassword) => !showConfirmPassword)}
           >
             {showConfirmPassword ? (
               <EyeOff className="text-slate-500" />
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 2f3c3a4d6..d62e376ff 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -76,10 +76,6 @@ export const SignInForm = ({ className }: SignInFormProps) => {
     }
   };
 
-  const onShowPassword = () => {
-    setShowPassword(!showPassword);
-  };
-
   return (
     <form
       className={cn('flex w-full flex-col gap-y-4', className)}
@@ -107,16 +103,16 @@ export const SignInForm = ({ className }: SignInFormProps) => {
           <Input
             id="password"
             type={showPassword ? 'text' : 'password'}
-            className="bg-background mt-2"
+            className="bg-background mt-2 pr-10"
             {...register('password')}
           />
 
           <Button
             variant="link"
             type="button"
-            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showPassword ? 'Mask password' : 'Reveal password'}
-            onClick={onShowPassword}
+            onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
               <EyeOff className="text-slate-500" />
diff --git a/apps/web/src/components/forms/signup.tsx b/apps/web/src/components/forms/signup.tsx
index a66e43caf..795dad25d 100644
--- a/apps/web/src/components/forms/signup.tsx
+++ b/apps/web/src/components/forms/signup.tsx
@@ -75,10 +75,6 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
     }
   };
 
-  const onShowPassword = () => {
-    setShowPassword(!showPassword);
-  };
-
   return (
     <form
       className={cn('flex w-full flex-col gap-y-4', className)}
@@ -113,16 +109,16 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
           <Input
             id="password"
             type={showPassword ? 'text' : 'password'}
-            className="bg-background mt-2"
+            className="bg-background mt-2 pr-10"
             {...register('password')}
           />
 
           <Button
             variant="link"
             type="button"
-            className="absolute right-0 top-0 flex h-full items-center justify-center"
+            className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showPassword ? 'Mask password' : 'Reveal password'}
-            onClick={onShowPassword}
+            onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
               <EyeOff className="text-slate-500" />

From 7de7624477f8ebc5e3d7daa2d27ace9456f4d437 Mon Sep 17 00:00:00 2001
From: Adithya Krishna <adikrish@redhat.com>
Date: Sat, 26 Aug 2023 20:52:07 +0530
Subject: [PATCH 03/83] fix: update icon sizes

Signed-off-by: Adithya Krishna <adikrish@redhat.com>
---
 apps/web/src/components/forms/password.tsx | 8 ++++----
 apps/web/src/components/forms/signin.tsx   | 4 ++--
 apps/web/src/components/forms/signup.tsx   | 4 ++--
 3 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/apps/web/src/components/forms/password.tsx b/apps/web/src/components/forms/password.tsx
index d258b2693..9e9837ca5 100644
--- a/apps/web/src/components/forms/password.tsx
+++ b/apps/web/src/components/forms/password.tsx
@@ -109,9 +109,9 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
             onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
-              <EyeOff className="text-slate-500" />
+              <EyeOff className="h-5 w-5 text-slate-500" />
             ) : (
-              <Eye className="text-slate-500" />
+              <Eye className="h-5 w-5 text-slate-500" />
             )}
           </Button>
         </div>
@@ -140,9 +140,9 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
             onClick={() => setShowConfirmPassword((showConfirmPassword) => !showConfirmPassword)}
           >
             {showConfirmPassword ? (
-              <EyeOff className="text-slate-500" />
+              <EyeOff className="h-5 w-5 text-slate-500" />
             ) : (
-              <Eye className="text-slate-500" />
+              <Eye className="h-5 w-5 text-slate-500" />
             )}
           </Button>
         </div>
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index d62e376ff..f8add10c4 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -115,9 +115,9 @@ export const SignInForm = ({ className }: SignInFormProps) => {
             onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
-              <EyeOff className="text-slate-500" />
+              <EyeOff className="h-5 w-5 text-slate-500" />
             ) : (
-              <Eye className="text-slate-500" />
+              <Eye className="h-5 w-5 text-slate-500" />
             )}
           </Button>
         </div>
diff --git a/apps/web/src/components/forms/signup.tsx b/apps/web/src/components/forms/signup.tsx
index 795dad25d..fae5d6277 100644
--- a/apps/web/src/components/forms/signup.tsx
+++ b/apps/web/src/components/forms/signup.tsx
@@ -121,9 +121,9 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
             onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
-              <EyeOff className="text-slate-500" />
+              <EyeOff className="h-5 w-5 text-slate-500" />
             ) : (
-              <Eye className="text-slate-500" />
+              <Eye className="h-5 w-5 text-slate-500" />
             )}
           </Button>
         </div>

From 7218b950fe07e58295bd52f510a432d033886910 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Fri, 1 Sep 2023 18:43:53 +1000
Subject: [PATCH 04/83] feat: store profile signature

---
 apps/web/src/app/(signing)/sign/[token]/page.tsx         | 5 ++++-
 apps/web/src/app/(signing)/sign/[token]/provider.tsx     | 6 +++---
 apps/web/src/components/forms/profile.tsx                | 1 +
 packages/lib/server-only/user/update-profile.ts          | 9 ++-------
 .../migration.sql                                        | 2 ++
 packages/prisma/schema.prisma                            | 1 +
 6 files changed, 13 insertions(+), 11 deletions(-)
 create mode 100644 packages/prisma/migrations/20230901083000_add_user_signature_column/migration.sql

diff --git a/apps/web/src/app/(signing)/sign/[token]/page.tsx b/apps/web/src/app/(signing)/sign/[token]/page.tsx
index d3329ff79..9fd1c3a51 100644
--- a/apps/web/src/app/(signing)/sign/[token]/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/page.tsx
@@ -3,6 +3,7 @@ import { notFound } from 'next/navigation';
 import { match } from 'ts-pattern';
 
 import { PDF_VIEWER_PAGE_SELECTOR } from '@documenso/lib/constants/pdf-viewer';
+import { getServerComponentSession } from '@documenso/lib/next-auth/get-server-session';
 import { getDocumentAndSenderByToken } from '@documenso/lib/server-only/document/get-document-by-token';
 import { viewedDocument } from '@documenso/lib/server-only/document/viewed-document';
 import { getFieldsForToken } from '@documenso/lib/server-only/field/get-fields-for-token';
@@ -42,10 +43,12 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
     return notFound();
   }
 
+  const user = await getServerComponentSession();
+
   const documentUrl = `data:application/pdf;base64,${document.document}`;
 
   return (
-    <SigningProvider email={recipient.email} fullName={recipient.name}>
+    <SigningProvider email={recipient.email} fullName={recipient.name} signature={user?.signature}>
       <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
         <h1 className="mt-4 truncate text-2xl font-semibold md:text-3xl" title={document.title}>
           {document.title}
diff --git a/apps/web/src/app/(signing)/sign/[token]/provider.tsx b/apps/web/src/app/(signing)/sign/[token]/provider.tsx
index 40d2bd0bb..454007cb0 100644
--- a/apps/web/src/app/(signing)/sign/[token]/provider.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/provider.tsx
@@ -28,9 +28,9 @@ export const useRequiredSigningContext = () => {
 };
 
 export interface SigningProviderProps {
-  fullName?: string;
-  email?: string;
-  signature?: string;
+  fullName?: string | null;
+  email?: string | null;
+  signature?: string | null;
   children: React.ReactNode;
 }
 
diff --git a/apps/web/src/components/forms/profile.tsx b/apps/web/src/components/forms/profile.tsx
index 5b4045abb..aaab1e9ae 100644
--- a/apps/web/src/components/forms/profile.tsx
+++ b/apps/web/src/components/forms/profile.tsx
@@ -118,6 +118,7 @@ export const ProfileForm = ({ className, user }: ProfileFormProps) => {
             render={({ field: { onChange } }) => (
               <SignaturePad
                 className="h-44 w-full rounded-lg border bg-white backdrop-blur-sm dark:border-[#e2d7c5] dark:bg-[#fcf8ee]"
+                defaultValue={user.signature ?? undefined}
                 onChange={(v) => onChange(v ?? '')}
               />
             )}
diff --git a/packages/lib/server-only/user/update-profile.ts b/packages/lib/server-only/user/update-profile.ts
index 437f366fa..a28fd21c5 100644
--- a/packages/lib/server-only/user/update-profile.ts
+++ b/packages/lib/server-only/user/update-profile.ts
@@ -6,12 +6,7 @@ export type UpdateProfileOptions = {
   signature: string;
 };
 
-export const updateProfile = async ({
-  userId,
-  name,
-  // TODO: Actually use signature
-  signature: _signature,
-}: UpdateProfileOptions) => {
+export const updateProfile = async ({ userId, name, signature }: UpdateProfileOptions) => {
   // Existence check
   await prisma.user.findFirstOrThrow({
     where: {
@@ -25,7 +20,7 @@ export const updateProfile = async ({
     },
     data: {
       name,
-      // signature,
+      signature,
     },
   });
 
diff --git a/packages/prisma/migrations/20230901083000_add_user_signature_column/migration.sql b/packages/prisma/migrations/20230901083000_add_user_signature_column/migration.sql
new file mode 100644
index 000000000..4b660cd19
--- /dev/null
+++ b/packages/prisma/migrations/20230901083000_add_user_signature_column/migration.sql
@@ -0,0 +1,2 @@
+-- AlterTable
+ALTER TABLE "User" ADD COLUMN     "signature" TEXT;
diff --git a/packages/prisma/schema.prisma b/packages/prisma/schema.prisma
index 67c7ec48d..2e016f5ec 100644
--- a/packages/prisma/schema.prisma
+++ b/packages/prisma/schema.prisma
@@ -20,6 +20,7 @@ model User {
   emailVerified    DateTime?
   password         String?
   source           String?
+  signature        String?
   identityProvider IdentityProvider @default(DOCUMENSO)
   accounts         Account[]
   sessions         Session[]

From 7bcf5fbd86d734e3390a38df6919deec507c7e05 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Fri, 1 Sep 2023 19:46:44 +1000
Subject: [PATCH 05/83] feat: store signature on signup

---
 apps/web/src/components/forms/signup.tsx     | 23 ++++++++++++++++----
 packages/lib/server-only/user/create-user.ts |  4 +++-
 packages/trpc/server/auth-router/router.ts   |  4 ++--
 packages/trpc/server/auth-router/schema.ts   |  1 +
 4 files changed, 25 insertions(+), 7 deletions(-)

diff --git a/apps/web/src/components/forms/signup.tsx b/apps/web/src/components/forms/signup.tsx
index 917ae545b..e77d0ac00 100644
--- a/apps/web/src/components/forms/signup.tsx
+++ b/apps/web/src/components/forms/signup.tsx
@@ -3,13 +3,14 @@
 import { zodResolver } from '@hookform/resolvers/zod';
 import { Loader } from 'lucide-react';
 import { signIn } from 'next-auth/react';
-import { useForm } from 'react-hook-form';
+import { Controller, useForm } from 'react-hook-form';
 import { z } from 'zod';
 
 import { TRPCClientError } from '@documenso/trpc/client';
 import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
+import { FormErrorMessage } from '@documenso/ui/primitives/form/form-error-message';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
 import { SignaturePad } from '@documenso/ui/primitives/signature-pad';
@@ -19,6 +20,7 @@ export const ZSignUpFormSchema = z.object({
   name: z.string().min(1),
   email: z.string().email().min(1),
   password: z.string().min(6).max(72),
+  signature: z.string().min(1, { message: 'We need your signature to sign documents' }),
 });
 
 export type TSignUpFormSchema = z.infer<typeof ZSignUpFormSchema>;
@@ -31,6 +33,7 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
   const { toast } = useToast();
 
   const {
+    control,
     register,
     handleSubmit,
     formState: { errors, isSubmitting },
@@ -39,15 +42,16 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
       name: '',
       email: '',
       password: '',
+      signature: '',
     },
     resolver: zodResolver(ZSignUpFormSchema),
   });
 
   const { mutateAsync: signup } = trpc.auth.signup.useMutation();
 
-  const onFormSubmit = async ({ name, email, password }: TSignUpFormSchema) => {
+  const onFormSubmit = async ({ name, email, password, signature }: TSignUpFormSchema) => {
     try {
-      await signup({ name, email, password });
+      await signup({ name, email, password, signature });
 
       await signIn('credentials', {
         email,
@@ -119,8 +123,19 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
         </Label>
 
         <div>
-          <SignaturePad className="mt-2 h-36 w-full rounded-lg border bg-white dark:border-[#e2d7c5] dark:bg-[#fcf8ee]" />
+          <Controller
+            control={control}
+            name="signature"
+            render={({ field: { onChange } }) => (
+              <SignaturePad
+                className="mt-2 h-36 w-full rounded-lg border bg-white dark:border-[#e2d7c5] dark:bg-[#fcf8ee]"
+                onChange={(v) => onChange(v ?? '')}
+              />
+            )}
+          />
         </div>
+
+        <FormErrorMessage className="mt-1.5" error={errors.signature} />
       </div>
 
       <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
diff --git a/packages/lib/server-only/user/create-user.ts b/packages/lib/server-only/user/create-user.ts
index 5a971562b..46c43b93b 100644
--- a/packages/lib/server-only/user/create-user.ts
+++ b/packages/lib/server-only/user/create-user.ts
@@ -9,9 +9,10 @@ export interface CreateUserOptions {
   name: string;
   email: string;
   password: string;
+  signature?: string | null;
 }
 
-export const createUser = async ({ name, email, password }: CreateUserOptions) => {
+export const createUser = async ({ name, email, password, signature }: CreateUserOptions) => {
   const hashedPassword = await hash(password, SALT_ROUNDS);
 
   const userExists = await prisma.user.findFirst({
@@ -29,6 +30,7 @@ export const createUser = async ({ name, email, password }: CreateUserOptions) =
       name,
       email: email.toLowerCase(),
       password: hashedPassword,
+      signature,
       identityProvider: IdentityProvider.DOCUMENSO,
     },
   });
diff --git a/packages/trpc/server/auth-router/router.ts b/packages/trpc/server/auth-router/router.ts
index 0e127a508..ecb01cca3 100644
--- a/packages/trpc/server/auth-router/router.ts
+++ b/packages/trpc/server/auth-router/router.ts
@@ -8,9 +8,9 @@ import { ZSignUpMutationSchema } from './schema';
 export const authRouter = router({
   signup: procedure.input(ZSignUpMutationSchema).mutation(async ({ input }) => {
     try {
-      const { name, email, password } = input;
+      const { name, email, password, signature } = input;
 
-      return await createUser({ name, email, password });
+      return await createUser({ name, email, password, signature });
     } catch (err) {
       console.error(err);
 
diff --git a/packages/trpc/server/auth-router/schema.ts b/packages/trpc/server/auth-router/schema.ts
index 04714e0fe..bdc9cd742 100644
--- a/packages/trpc/server/auth-router/schema.ts
+++ b/packages/trpc/server/auth-router/schema.ts
@@ -4,6 +4,7 @@ export const ZSignUpMutationSchema = z.object({
   name: z.string().min(1),
   email: z.string().email(),
   password: z.string().min(6),
+  signature: z.string().min(1, { message: 'A signature is required.' }),
 });
 
 export type TSignUpMutationSchema = z.infer<typeof ZSignUpMutationSchema>;

From 0c680e0111e7ccfdf5228d589ad25aa91139e7da Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Fri, 1 Sep 2023 16:25:00 +0530
Subject: [PATCH 06/83] fix: component style

---
 packages/ui/primitives/alert.tsx | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/packages/ui/primitives/alert.tsx b/packages/ui/primitives/alert.tsx
index 190f7781d..a53d8fc33 100644
--- a/packages/ui/primitives/alert.tsx
+++ b/packages/ui/primitives/alert.tsx
@@ -5,13 +5,13 @@ import { VariantProps, cva } from 'class-variance-authority';
 import { cn } from '../lib/utils';
 
 const alertVariants = cva(
-  'relative w-full rounded-lg border p-4 [&>svg]:absolute [&>svg]:text-foreground [&>svg]:left-4 [&>svg]:top-4 [&>svg+div]:translate-y-[-3px] [&:has(svg)]:pl-11',
+  'relative w-full rounded-lg border p-4 [&>svg~*]:pl-7 [&>svg+div]:translate-y-[-3px] [&>svg]:absolute [&>svg]:left-4 [&>svg]:top-4 [&>svg]:text-foreground',
   {
     variants: {
       variant: {
         default: 'bg-background text-foreground',
         destructive:
-          'text-destructive border-destructive/50 dark:border-destructive [&>svg]:text-destructive text-destructive',
+          'border-destructive/50 text-destructive dark:border-destructive [&>svg]:text-destructive',
       },
     },
     defaultVariants: {
@@ -19,7 +19,6 @@ const alertVariants = cva(
     },
   },
 );
-
 const Alert = React.forwardRef<
   HTMLDivElement,
   React.HTMLAttributes<HTMLDivElement> & VariantProps<typeof alertVariants>

From fe90aa3b7b2437bf48582a243ebac5ffa5ea0e1d Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Fri, 1 Sep 2023 16:25:27 +0530
Subject: [PATCH 07/83] feat: add api error

---
 apps/web/src/components/forms/signin.tsx | 143 ++++++++++++++---------
 1 file changed, 88 insertions(+), 55 deletions(-)

diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 2ffb2798e..5322dcf78 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -1,18 +1,29 @@
 'use client';
 
+/* eslint-disable @typescript-eslint/consistent-type-assertions */
+import { useSearchParams } from 'next/navigation';
+
 import { zodResolver } from '@hookform/resolvers/zod';
-import { Loader } from 'lucide-react';
+import { AlertTriangle, Loader } from 'lucide-react';
 import { signIn } from 'next-auth/react';
 import { useForm } from 'react-hook-form';
 import { FcGoogle } from 'react-icons/fc';
 import { z } from 'zod';
 
+import { ErrorCodes } from '@documenso/lib/next-auth/error-codes';
 import { cn } from '@documenso/ui/lib/utils';
+import { Alert, AlertDescription } from '@documenso/ui/primitives/alert';
 import { Button } from '@documenso/ui/primitives/button';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
 import { useToast } from '@documenso/ui/primitives/use-toast';
 
+const ErrorMessages = {
+  [ErrorCodes.CredentialsNotFound]: 'Credentials not found',
+  [ErrorCodes.IncorrectEmailPassword]: 'Incorrect email or password',
+  [ErrorCodes.UserMissingPassword]: 'User is missing password',
+};
+
 export const ZSignInFormSchema = z.object({
   email: z.string().email().min(1),
   password: z.string().min(6).max(72),
@@ -25,6 +36,7 @@ export type SignInFormProps = {
 };
 
 export const SignInForm = ({ className }: SignInFormProps) => {
+  const searchParams = useSearchParams();
   const { toast } = useToast();
 
   const {
@@ -74,62 +86,83 @@ export const SignInForm = ({ className }: SignInFormProps) => {
   };
 
   return (
-    <form
-      className={cn('flex w-full flex-col gap-y-4', className)}
-      onSubmit={handleSubmit(onFormSubmit)}
-    >
-      <div>
-        <Label htmlFor="email" className="text-slate-500">
-          Email
-        </Label>
+    <>
+      {searchParams?.get('error') && (
+        <div className="pt-4">
+          <Alert variant="destructive">
+            <AlertTriangle className="h-4 w-4" />
 
-        <Input id="email" type="email" className="bg-background mt-2" {...register('email')} />
+            <AlertDescription>
+              {ErrorMessages[searchParams?.get('error') as keyof typeof ErrorMessages] ??
+                'an unknown error occured'}
+            </AlertDescription>
+          </Alert>
+        </div>
+      )}
 
-        {errors.email && <span className="mt-1 text-xs text-red-500">{errors.email.message}</span>}
-      </div>
-
-      <div>
-        <Label htmlFor="password" className="text-slate-500">
-          Password
-        </Label>
-
-        <Input
-          id="password"
-          type="password"
-          minLength={6}
-          maxLength={72}
-          autoComplete="current-password"
-          className="bg-background mt-2"
-          {...register('password')}
-        />
-
-        {errors.password && (
-          <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
-        )}
-      </div>
-
-      <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
-        {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
-        Sign In
-      </Button>
-
-      <div className="relative flex items-center justify-center gap-x-4 py-2 text-xs uppercase">
-        <div className="bg-border h-px flex-1" />
-        <span className="text-muted-foreground bg-transparent">Or continue with</span>
-        <div className="bg-border h-px flex-1" />
-      </div>
-
-      <Button
-        type="button"
-        size="lg"
-        variant={'outline'}
-        className="bg-background text-muted-foreground border"
-        disabled={isSubmitting}
-        onClick={onSignInWithGoogleClick}
+      <form
+        className={cn('flex w-full flex-col gap-y-4', className)}
+        onSubmit={handleSubmit(onFormSubmit)}
       >
-        <FcGoogle className="mr-2 h-5 w-5" />
-        Google
-      </Button>
-    </form>
+        <div>
+          <Label htmlFor="email" className="text-slate-500">
+            Email
+          </Label>
+
+          <Input id="email" type="email" className="bg-background mt-2" {...register('email')} />
+
+          {errors.email && (
+            <span className="mt-1 text-xs text-red-500">{errors.email.message}</span>
+          )}
+        </div>
+
+        <div>
+          <Label htmlFor="password" className="text-slate-500">
+            Password
+          </Label>
+
+          <Input
+            id="password"
+            type="password"
+            minLength={6}
+            maxLength={72}
+            autoComplete="current-password"
+            className="bg-background mt-2"
+            {...register('password')}
+          />
+
+          {errors.password && (
+            <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
+          )}
+        </div>
+
+        <Button
+          size="lg"
+          disabled={isSubmitting}
+          className="dark:bg-documenso dark:hover:opacity-90"
+        >
+          {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
+          Sign In
+        </Button>
+
+        <div className="relative flex items-center justify-center gap-x-4 py-2 text-xs uppercase">
+          <div className="bg-border h-px flex-1" />
+          <span className="text-muted-foreground bg-transparent">Or continue with</span>
+          <div className="bg-border h-px flex-1" />
+        </div>
+
+        <Button
+          type="button"
+          size="lg"
+          variant={'outline'}
+          className="bg-background text-muted-foreground border"
+          disabled={isSubmitting}
+          onClick={onSignInWithGoogleClick}
+        >
+          <FcGoogle className="mr-2 h-5 w-5" />
+          Google
+        </Button>
+      </form>
+    </>
   );
 };

From d9da09c1e7d7f24ef99ba0ad00dac2c81a53bcc5 Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Fri, 1 Sep 2023 16:25:49 +0530
Subject: [PATCH 08/83] fix: typo

---
 apps/web/src/components/forms/signin.tsx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 5322dcf78..2dcad75dc 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -94,7 +94,7 @@ export const SignInForm = ({ className }: SignInFormProps) => {
 
             <AlertDescription>
               {ErrorMessages[searchParams?.get('error') as keyof typeof ErrorMessages] ??
-                'an unknown error occured'}
+                'an unknown error occurred'}
             </AlertDescription>
           </Alert>
         </div>

From 5540fcf0d21ed62e5f05ae7dad61b4f531f082e3 Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Sat, 2 Sep 2023 11:46:12 +0530
Subject: [PATCH 09/83] fix: use toast

---
 apps/web/src/components/forms/signin.tsx | 159 ++++++++++++-----------
 1 file changed, 81 insertions(+), 78 deletions(-)

diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 2dcad75dc..4d5e2b444 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -1,10 +1,11 @@
 'use client';
 
-/* eslint-disable @typescript-eslint/consistent-type-assertions */
+import { useEffect, useRef } from 'react';
+
 import { useSearchParams } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
-import { AlertTriangle, Loader } from 'lucide-react';
+import { Loader } from 'lucide-react';
 import { signIn } from 'next-auth/react';
 import { useForm } from 'react-hook-form';
 import { FcGoogle } from 'react-icons/fc';
@@ -12,7 +13,6 @@ import { z } from 'zod';
 
 import { ErrorCodes } from '@documenso/lib/next-auth/error-codes';
 import { cn } from '@documenso/ui/lib/utils';
-import { Alert, AlertDescription } from '@documenso/ui/primitives/alert';
 import { Button } from '@documenso/ui/primitives/button';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
@@ -51,6 +51,30 @@ export const SignInForm = ({ className }: SignInFormProps) => {
     resolver: zodResolver(ZSignInFormSchema),
   });
 
+  const timer = useRef<NodeJS.Timeout | null>(null);
+
+  useEffect(() => {
+    const error = searchParams?.get('error');
+    if (error) {
+      timer.current = setTimeout(() => {
+        toast({
+          variant: 'destructive',
+          description:
+            // eslint-disable-next-line @typescript-eslint/consistent-type-assertions
+            ErrorMessages[searchParams?.get('error') as keyof typeof ErrorMessages] ??
+            'an unknown error occurred',
+        });
+      }, 100);
+    }
+    return () => {
+      if (timer.current) {
+        clearInterval(timer.current);
+      }
+      timer.current = null;
+    };
+    // eslint-disable-next-line react-hooks/exhaustive-deps
+  }, []);
+
   const onFormSubmit = async ({ email, password }: TSignInFormSchema) => {
     try {
       await signIn('credentials', {
@@ -86,83 +110,62 @@ export const SignInForm = ({ className }: SignInFormProps) => {
   };
 
   return (
-    <>
-      {searchParams?.get('error') && (
-        <div className="pt-4">
-          <Alert variant="destructive">
-            <AlertTriangle className="h-4 w-4" />
+    <form
+      className={cn('flex w-full flex-col gap-y-4', className)}
+      onSubmit={handleSubmit(onFormSubmit)}
+    >
+      <div>
+        <Label htmlFor="email" className="text-slate-500">
+          Email
+        </Label>
 
-            <AlertDescription>
-              {ErrorMessages[searchParams?.get('error') as keyof typeof ErrorMessages] ??
-                'an unknown error occurred'}
-            </AlertDescription>
-          </Alert>
-        </div>
-      )}
+        <Input id="email" type="email" className="bg-background mt-2" {...register('email')} />
 
-      <form
-        className={cn('flex w-full flex-col gap-y-4', className)}
-        onSubmit={handleSubmit(onFormSubmit)}
+        {errors.email && <span className="mt-1 text-xs text-red-500">{errors.email.message}</span>}
+      </div>
+
+      <div>
+        <Label htmlFor="password" className="text-slate-500">
+          Password
+        </Label>
+
+        <Input
+          id="password"
+          type="password"
+          minLength={6}
+          maxLength={72}
+          autoComplete="current-password"
+          className="bg-background mt-2"
+          {...register('password')}
+        />
+
+        {errors.password && (
+          <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
+        )}
+      </div>
+
+      <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
+        {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
+        Sign In
+      </Button>
+
+      <div className="relative flex items-center justify-center gap-x-4 py-2 text-xs uppercase">
+        <div className="bg-border h-px flex-1" />
+        <span className="text-muted-foreground bg-transparent">Or continue with</span>
+        <div className="bg-border h-px flex-1" />
+      </div>
+
+      <Button
+        type="button"
+        size="lg"
+        variant={'outline'}
+        className="bg-background text-muted-foreground border"
+        disabled={isSubmitting}
+        onClick={onSignInWithGoogleClick}
       >
-        <div>
-          <Label htmlFor="email" className="text-slate-500">
-            Email
-          </Label>
-
-          <Input id="email" type="email" className="bg-background mt-2" {...register('email')} />
-
-          {errors.email && (
-            <span className="mt-1 text-xs text-red-500">{errors.email.message}</span>
-          )}
-        </div>
-
-        <div>
-          <Label htmlFor="password" className="text-slate-500">
-            Password
-          </Label>
-
-          <Input
-            id="password"
-            type="password"
-            minLength={6}
-            maxLength={72}
-            autoComplete="current-password"
-            className="bg-background mt-2"
-            {...register('password')}
-          />
-
-          {errors.password && (
-            <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
-          )}
-        </div>
-
-        <Button
-          size="lg"
-          disabled={isSubmitting}
-          className="dark:bg-documenso dark:hover:opacity-90"
-        >
-          {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
-          Sign In
-        </Button>
-
-        <div className="relative flex items-center justify-center gap-x-4 py-2 text-xs uppercase">
-          <div className="bg-border h-px flex-1" />
-          <span className="text-muted-foreground bg-transparent">Or continue with</span>
-          <div className="bg-border h-px flex-1" />
-        </div>
-
-        <Button
-          type="button"
-          size="lg"
-          variant={'outline'}
-          className="bg-background text-muted-foreground border"
-          disabled={isSubmitting}
-          onClick={onSignInWithGoogleClick}
-        >
-          <FcGoogle className="mr-2 h-5 w-5" />
-          Google
-        </Button>
-      </form>
-    </>
+        <FcGoogle className="mr-2 h-5 w-5" />
+        Google
+      </Button>
+    </form>
   );
 };

From c7993807870425f7d6504b79447ae846c9edf610 Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Sat, 2 Sep 2023 11:51:21 +0530
Subject: [PATCH 10/83] chore: add comments

---
 apps/web/src/components/forms/signin.tsx | 1 +
 1 file changed, 1 insertion(+)

diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 4d5e2b444..837bc180c 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -57,6 +57,7 @@ export const SignInForm = ({ className }: SignInFormProps) => {
     const error = searchParams?.get('error');
     if (error) {
       timer.current = setTimeout(() => {
+        // FIXME: Toast not firing without the TimeOut
         toast({
           variant: 'destructive',
           description:

From 692722d32eb86a94f7a6f87d4e7d860a2af5ff87 Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Sat, 2 Sep 2023 11:55:44 +0530
Subject: [PATCH 11/83] revert: fix: component style

---
 packages/ui/primitives/alert.tsx | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/packages/ui/primitives/alert.tsx b/packages/ui/primitives/alert.tsx
index a53d8fc33..190f7781d 100644
--- a/packages/ui/primitives/alert.tsx
+++ b/packages/ui/primitives/alert.tsx
@@ -5,13 +5,13 @@ import { VariantProps, cva } from 'class-variance-authority';
 import { cn } from '../lib/utils';
 
 const alertVariants = cva(
-  'relative w-full rounded-lg border p-4 [&>svg~*]:pl-7 [&>svg+div]:translate-y-[-3px] [&>svg]:absolute [&>svg]:left-4 [&>svg]:top-4 [&>svg]:text-foreground',
+  'relative w-full rounded-lg border p-4 [&>svg]:absolute [&>svg]:text-foreground [&>svg]:left-4 [&>svg]:top-4 [&>svg+div]:translate-y-[-3px] [&:has(svg)]:pl-11',
   {
     variants: {
       variant: {
         default: 'bg-background text-foreground',
         destructive:
-          'border-destructive/50 text-destructive dark:border-destructive [&>svg]:text-destructive',
+          'text-destructive border-destructive/50 dark:border-destructive [&>svg]:text-destructive text-destructive',
       },
     },
     defaultVariants: {
@@ -19,6 +19,7 @@ const alertVariants = cva(
     },
   },
 );
+
 const Alert = React.forwardRef<
   HTMLDivElement,
   React.HTMLAttributes<HTMLDivElement> & VariantProps<typeof alertVariants>

From 7bcc26a987218abcf07f48a702dde8e0084c977f Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Sat, 2 Sep 2023 12:11:07 +0530
Subject: [PATCH 12/83] fix: user name not updatable

---
 apps/web/src/components/forms/profile.tsx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/components/forms/profile.tsx b/apps/web/src/components/forms/profile.tsx
index aaab1e9ae..e018ef60b 100644
--- a/apps/web/src/components/forms/profile.tsx
+++ b/apps/web/src/components/forms/profile.tsx
@@ -44,7 +44,7 @@ export const ProfileForm = ({ className, user }: ProfileFormProps) => {
   } = useForm<TProfileFormSchema>({
     values: {
       name: user.name ?? '',
-      signature: '',
+      signature: user.signature ? user.signature : '',
     },
     resolver: zodResolver(ZProfileFormSchema),
   });

From 4b849e286cc8dcc4661dd0054ad77c0dc3486d2a Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Sat, 2 Sep 2023 22:08:19 +0000
Subject: [PATCH 13/83] feat: add missing email field to document sign page

---
 .../(signing)/sign/[token]/email-field.tsx    | 96 +++++++++++++++++++
 .../src/app/(signing)/sign/[token]/page.tsx   |  6 ++
 2 files changed, 102 insertions(+)
 create mode 100644 apps/web/src/app/(signing)/sign/[token]/email-field.tsx

diff --git a/apps/web/src/app/(signing)/sign/[token]/email-field.tsx b/apps/web/src/app/(signing)/sign/[token]/email-field.tsx
new file mode 100644
index 000000000..05c1cb31c
--- /dev/null
+++ b/apps/web/src/app/(signing)/sign/[token]/email-field.tsx
@@ -0,0 +1,96 @@
+'use client';
+
+import { useTransition } from 'react';
+
+import { useRouter } from 'next/navigation';
+
+import { Loader } from 'lucide-react';
+
+import { Recipient } from '@documenso/prisma/client';
+import { FieldWithSignature } from '@documenso/prisma/types/field-with-signature';
+import { trpc } from '@documenso/trpc/react';
+import { useToast } from '@documenso/ui/primitives/use-toast';
+
+import { useRequiredSigningContext } from './provider';
+import { SigningFieldContainer } from './signing-field-container';
+
+export type EmailFieldProps = {
+  field: FieldWithSignature;
+  recipient: Recipient;
+};
+
+export const EmailField = ({ field, recipient }: EmailFieldProps) => {
+  const router = useRouter();
+
+  const { toast } = useToast();
+
+  const { email: providedEmail } = useRequiredSigningContext();
+
+  const [isPending, startTransition] = useTransition();
+
+  const { mutateAsync: signFieldWithToken, isLoading: isSignFieldWithTokenLoading } =
+    trpc.field.signFieldWithToken.useMutation();
+
+  const {
+    mutateAsync: removeSignedFieldWithToken,
+    isLoading: isRemoveSignedFieldWithTokenLoading,
+  } = trpc.field.removeSignedFieldWithToken.useMutation();
+
+  const isLoading = isSignFieldWithTokenLoading || isRemoveSignedFieldWithTokenLoading || isPending;
+
+  const onSign = async () => {
+    try {
+      await signFieldWithToken({
+        token: recipient.token,
+        fieldId: field.id,
+        value: providedEmail ?? '',
+        isBase64: false,
+      });
+
+      startTransition(() => router.refresh());
+    } catch (err) {
+      console.error(err);
+
+      toast({
+        title: 'Error',
+        description: 'An error occurred while signing the document.',
+        variant: 'destructive',
+      });
+    }
+  };
+
+  const onRemove = async () => {
+    try {
+      await removeSignedFieldWithToken({
+        token: recipient.token,
+        fieldId: field.id,
+      });
+
+      startTransition(() => router.refresh());
+    } catch (err) {
+      console.error(err);
+
+      toast({
+        title: 'Error',
+        description: 'An error occurred while removing the signature.',
+        variant: 'destructive',
+      });
+    }
+  };
+
+  return (
+    <SigningFieldContainer field={field} onSign={onSign} onRemove={onRemove}>
+      {isLoading && (
+        <div className="bg-background absolute inset-0 flex items-center justify-center">
+          <Loader className="text-primary h-5 w-5 animate-spin md:h-8 md:w-8" />
+        </div>
+      )}
+
+      {!field.inserted && (
+        <p className="group-hover:text-primary text-muted-foreground text-lg duration-200">Email</p>
+      )}
+
+      {field.inserted && <p className="text-muted-foreground duration-200">{field.customText}</p>}
+    </SigningFieldContainer>
+  );
+};
diff --git a/apps/web/src/app/(signing)/sign/[token]/page.tsx b/apps/web/src/app/(signing)/sign/[token]/page.tsx
index 9fd1c3a51..b08659e12 100644
--- a/apps/web/src/app/(signing)/sign/[token]/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/page.tsx
@@ -14,6 +14,7 @@ import { ElementVisible } from '@documenso/ui/primitives/element-visible';
 import { LazyPDFViewer } from '@documenso/ui/primitives/lazy-pdf-viewer';
 
 import { DateField } from './date-field';
+import { EmailField } from './email-field';
 import { SigningForm } from './form';
 import { NameField } from './name-field';
 import { SigningProvider } from './provider';
@@ -47,6 +48,8 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
 
   const documentUrl = `data:application/pdf;base64,${document.document}`;
 
+  console.log(fields);
+
   return (
     <SigningProvider email={recipient.email} fullName={recipient.name} signature={user?.signature}>
       <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
@@ -87,6 +90,9 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
               .with(FieldType.DATE, () => (
                 <DateField key={field.id} field={field} recipient={recipient} />
               ))
+              .with(FieldType.EMAIL, () => (
+                <EmailField key={field.id} field={field} recipient={recipient} />
+              ))
               .otherwise(() => null),
           )}
         </ElementVisible>

From b3291c65bc53191dbed4755c71bfe7b3f424344a Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Sat, 2 Sep 2023 22:20:57 +0000
Subject: [PATCH 14/83] chore: remove console.log

---
 apps/web/src/app/(signing)/sign/[token]/page.tsx | 2 --
 1 file changed, 2 deletions(-)

diff --git a/apps/web/src/app/(signing)/sign/[token]/page.tsx b/apps/web/src/app/(signing)/sign/[token]/page.tsx
index b08659e12..35621068a 100644
--- a/apps/web/src/app/(signing)/sign/[token]/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/page.tsx
@@ -48,8 +48,6 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
 
   const documentUrl = `data:application/pdf;base64,${document.document}`;
 
-  console.log(fields);
-
   return (
     <SigningProvider email={recipient.email} fullName={recipient.name} signature={user?.signature}>
       <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">

From b23967d777c48e0f44dc363126621e239aa79afa Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Mon, 4 Sep 2023 16:08:22 +0300
Subject: [PATCH 15/83] chore: removed console.logs and warn

---
 .../document/complete-document-with-token.ts  |  1 -
 .../lib/server-only/document/seal-document.ts |  4 ---
 .../server-only/pdf/insert-field-in-pdf.ts    | 29 -------------------
 3 files changed, 34 deletions(-)

diff --git a/packages/lib/server-only/document/complete-document-with-token.ts b/packages/lib/server-only/document/complete-document-with-token.ts
index 2c937cf93..55df75249 100644
--- a/packages/lib/server-only/document/complete-document-with-token.ts
+++ b/packages/lib/server-only/document/complete-document-with-token.ts
@@ -86,7 +86,6 @@ export const completeDocumentWithToken = async ({
   console.log('documents', documents);
 
   if (documents.count > 0) {
-    console.log('sealing document');
     await sealDocument({ documentId: document.id });
   }
 };
diff --git a/packages/lib/server-only/document/seal-document.ts b/packages/lib/server-only/document/seal-document.ts
index 89769d788..1a74cfaac 100644
--- a/packages/lib/server-only/document/seal-document.ts
+++ b/packages/lib/server-only/document/seal-document.ts
@@ -53,10 +53,6 @@ export const sealDocument = async ({ documentId }: SealDocumentOptions) => {
   const doc = await PDFDocument.load(pdfData);
 
   for (const field of fields) {
-    console.log('inserting field', {
-      ...field,
-      Signature: null,
-    });
     await insertFieldInPDF(doc, field);
   }
 
diff --git a/packages/lib/server-only/pdf/insert-field-in-pdf.ts b/packages/lib/server-only/pdf/insert-field-in-pdf.ts
index 1d58aafb2..61726f53c 100644
--- a/packages/lib/server-only/pdf/insert-field-in-pdf.ts
+++ b/packages/lib/server-only/pdf/insert-field-in-pdf.ts
@@ -35,15 +35,6 @@ export const insertFieldInPDF = async (pdf: PDFDocument, field: FieldWithSignatu
   const fieldX = pageWidth * (Number(field.positionX) / 100);
   const fieldY = pageHeight * (Number(field.positionY) / 100);
 
-  console.log({
-    fieldWidth,
-    fieldHeight,
-    fieldX,
-    fieldY,
-    pageWidth,
-    pageHeight,
-  });
-
   const font = await pdf.embedFont(isSignatureField ? fontCaveat : StandardFonts.Helvetica);
 
   if (field.type === FieldType.SIGNATURE || field.type === FieldType.FREE_SIGNATURE) {
@@ -75,15 +66,6 @@ export const insertFieldInPDF = async (pdf: PDFDocument, field: FieldWithSignatu
     // Invert the Y axis since PDFs use a bottom-left coordinate system
     imageY = pageHeight - imageY - imageHeight;
 
-    console.log({
-      initialDimensions,
-      scalingFactor,
-      imageWidth,
-      imageHeight,
-      imageX,
-      imageY,
-    });
-
     page.drawImage(image, {
       x: imageX,
       y: imageY,
@@ -107,17 +89,6 @@ export const insertFieldInPDF = async (pdf: PDFDocument, field: FieldWithSignatu
     const textX = fieldX + (fieldWidth - textWidth) / 2;
     let textY = fieldY + (fieldHeight - textHeight) / 2;
 
-    console.log({
-      initialDimensions,
-      scalingFactor,
-      textWidth,
-      textHeight,
-      textX,
-      textY,
-      pageWidth,
-      pageHeight,
-    });
-
     // Invert the Y axis since PDFs use a bottom-left coordinate system
     textY = pageHeight - textY - textHeight;
 

From aecf2f32b93245d32e7424340c0de6f778403d2a Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Mon, 4 Sep 2023 16:41:28 +0300
Subject: [PATCH 16/83] chore: removed one more console.log

---
 .../lib/server-only/document/complete-document-with-token.ts    | 2 --
 1 file changed, 2 deletions(-)

diff --git a/packages/lib/server-only/document/complete-document-with-token.ts b/packages/lib/server-only/document/complete-document-with-token.ts
index 55df75249..a013d5e69 100644
--- a/packages/lib/server-only/document/complete-document-with-token.ts
+++ b/packages/lib/server-only/document/complete-document-with-token.ts
@@ -83,8 +83,6 @@ export const completeDocumentWithToken = async ({
     },
   });
 
-  console.log('documents', documents);
-
   if (documents.count > 0) {
     await sealDocument({ documentId: document.id });
   }

From 150c42b246b29d1611d51978488af71a3f793a95 Mon Sep 17 00:00:00 2001
From: nafees nazik <nafeesnazik21@gmail.com>
Date: Mon, 4 Sep 2023 22:24:42 +0530
Subject: [PATCH 17/83] fix: value

---
 apps/web/src/components/forms/profile.tsx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/web/src/components/forms/profile.tsx b/apps/web/src/components/forms/profile.tsx
index e018ef60b..8255742c9 100644
--- a/apps/web/src/components/forms/profile.tsx
+++ b/apps/web/src/components/forms/profile.tsx
@@ -44,7 +44,7 @@ export const ProfileForm = ({ className, user }: ProfileFormProps) => {
   } = useForm<TProfileFormSchema>({
     values: {
       name: user.name ?? '',
-      signature: user.signature ? user.signature : '',
+      signature: user.signature || '',
     },
     resolver: zodResolver(ZProfileFormSchema),
   });

From 6e095921e6370119957523812ee7080ae1e6bff9 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 5 Sep 2023 11:29:23 +1000
Subject: [PATCH 18/83] fix: tidy up code

---
 apps/web/src/components/forms/signin.tsx | 39 +++++++++++-------------
 packages/lib/next-auth/auth-options.ts   | 10 +++---
 packages/lib/next-auth/error-codes.ts    | 14 ++++++---
 3 files changed, 33 insertions(+), 30 deletions(-)

diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 837bc180c..e88495730 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -1,6 +1,6 @@
 'use client';
 
-import { useEffect, useRef } from 'react';
+import { useEffect } from 'react';
 
 import { useSearchParams } from 'next/navigation';
 
@@ -11,7 +11,7 @@ import { useForm } from 'react-hook-form';
 import { FcGoogle } from 'react-icons/fc';
 import { z } from 'zod';
 
-import { ErrorCodes } from '@documenso/lib/next-auth/error-codes';
+import { ErrorCode, isErrorCode } from '@documenso/lib/next-auth/error-codes';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
 import { Input } from '@documenso/ui/primitives/input';
@@ -19,9 +19,10 @@ import { Label } from '@documenso/ui/primitives/label';
 import { useToast } from '@documenso/ui/primitives/use-toast';
 
 const ErrorMessages = {
-  [ErrorCodes.CredentialsNotFound]: 'Credentials not found',
-  [ErrorCodes.IncorrectEmailPassword]: 'Incorrect email or password',
-  [ErrorCodes.UserMissingPassword]: 'User is missing password',
+  [ErrorCode.CREDENTIALS_NOT_FOUND]: 'The email or password provided is incorrect',
+  [ErrorCode.INCORRECT_EMAIL_PASSWORD]: 'The email or password provided is incorrect',
+  [ErrorCode.USER_MISSING_PASSWORD]:
+    'This account appears to be using a social login method, please sign in using that method',
 };
 
 export const ZSignInFormSchema = z.object({
@@ -36,8 +37,8 @@ export type SignInFormProps = {
 };
 
 export const SignInForm = ({ className }: SignInFormProps) => {
-  const searchParams = useSearchParams();
   const { toast } = useToast();
+  const searchParams = useSearchParams();
 
   const {
     register,
@@ -51,30 +52,26 @@ export const SignInForm = ({ className }: SignInFormProps) => {
     resolver: zodResolver(ZSignInFormSchema),
   });
 
-  const timer = useRef<NodeJS.Timeout | null>(null);
+  const errorCode = searchParams?.get('error');
 
   useEffect(() => {
-    const error = searchParams?.get('error');
-    if (error) {
-      timer.current = setTimeout(() => {
-        // FIXME: Toast not firing without the TimeOut
+    const timeout: NodeJS.Timeout | null = null;
+
+    if (isErrorCode(errorCode)) {
+      setTimeout(() => {
         toast({
           variant: 'destructive',
-          description:
-            // eslint-disable-next-line @typescript-eslint/consistent-type-assertions
-            ErrorMessages[searchParams?.get('error') as keyof typeof ErrorMessages] ??
-            'an unknown error occurred',
+          description: ErrorMessages[errorCode] ?? 'An unknown error occurred',
         });
-      }, 100);
+      }, 0);
     }
+
     return () => {
-      if (timer.current) {
-        clearInterval(timer.current);
+      if (timeout) {
+        clearTimeout(timeout);
       }
-      timer.current = null;
     };
-    // eslint-disable-next-line react-hooks/exhaustive-deps
-  }, []);
+  }, [errorCode, toast]);
 
   const onFormSubmit = async ({ email, password }: TSignInFormSchema) => {
     try {
diff --git a/packages/lib/next-auth/auth-options.ts b/packages/lib/next-auth/auth-options.ts
index 7417fbfc8..cd31926c2 100644
--- a/packages/lib/next-auth/auth-options.ts
+++ b/packages/lib/next-auth/auth-options.ts
@@ -7,7 +7,7 @@ import GoogleProvider, { GoogleProfile } from 'next-auth/providers/google';
 import { prisma } from '@documenso/prisma';
 
 import { getUserByEmail } from '../server-only/user/get-user-by-email';
-import { ErrorCodes } from './error-codes';
+import { ErrorCode } from './error-codes';
 
 export const NEXT_AUTH_OPTIONS: AuthOptions = {
   adapter: PrismaAdapter(prisma),
@@ -24,23 +24,23 @@ export const NEXT_AUTH_OPTIONS: AuthOptions = {
       },
       authorize: async (credentials, _req) => {
         if (!credentials) {
-          throw new Error(ErrorCodes.CredentialsNotFound);
+          throw new Error(ErrorCode.CREDENTIALS_NOT_FOUND);
         }
 
         const { email, password } = credentials;
 
         const user = await getUserByEmail({ email }).catch(() => {
-          throw new Error(ErrorCodes.IncorrectEmailPassword);
+          throw new Error(ErrorCode.INCORRECT_EMAIL_PASSWORD);
         });
 
         if (!user.password) {
-          throw new Error(ErrorCodes.UserMissingPassword);
+          throw new Error(ErrorCode.USER_MISSING_PASSWORD);
         }
 
         const isPasswordsSame = await compare(password, user.password);
 
         if (!isPasswordsSame) {
-          throw new Error(ErrorCodes.IncorrectEmailPassword);
+          throw new Error(ErrorCode.INCORRECT_EMAIL_PASSWORD);
         }
 
         return {
diff --git a/packages/lib/next-auth/error-codes.ts b/packages/lib/next-auth/error-codes.ts
index f0a7caada..26e8f5b97 100644
--- a/packages/lib/next-auth/error-codes.ts
+++ b/packages/lib/next-auth/error-codes.ts
@@ -1,5 +1,11 @@
-export const ErrorCodes = {
-  IncorrectEmailPassword: 'incorrect-email-password',
-  UserMissingPassword: 'missing-password',
-  CredentialsNotFound: 'credentials-not-found',
+export const isErrorCode = (code: unknown): code is ErrorCode => {
+  return typeof code === 'string' && code in ErrorCode;
+};
+
+export type ErrorCode = (typeof ErrorCode)[keyof typeof ErrorCode];
+
+export const ErrorCode = {
+  INCORRECT_EMAIL_PASSWORD: 'INCORRECT_EMAIL_PASSWORD',
+  USER_MISSING_PASSWORD: 'USER_MISSING_PASSWORD',
+  CREDENTIALS_NOT_FOUND: 'CREDENTIALS_NOT_FOUND',
 } as const;

From 17af4d25bd4ea7d65fabf60956802918988b1255 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 5 Sep 2023 11:33:49 +1000
Subject: [PATCH 19/83] fix: actually make timeouts clear

---
 apps/web/src/components/forms/signin.tsx | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index e88495730..5e44146ea 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -55,10 +55,10 @@ export const SignInForm = ({ className }: SignInFormProps) => {
   const errorCode = searchParams?.get('error');
 
   useEffect(() => {
-    const timeout: NodeJS.Timeout | null = null;
+    let timeout: NodeJS.Timeout | null = null;
 
     if (isErrorCode(errorCode)) {
-      setTimeout(() => {
+      timeout = setTimeout(() => {
         toast({
           variant: 'destructive',
           description: ErrorMessages[errorCode] ?? 'An unknown error occurred',

From 84a2d3baf69d1e43e579cfa98e7b7138beadebf7 Mon Sep 17 00:00:00 2001
From: David Nguyen <davidngu28@gmail.com>
Date: Tue, 5 Sep 2023 18:08:29 +1000
Subject: [PATCH 20/83] feat: update marketing mobile menu

---
 .../src/components/(marketing)/mobile-navigation.tsx       | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/apps/marketing/src/components/(marketing)/mobile-navigation.tsx b/apps/marketing/src/components/(marketing)/mobile-navigation.tsx
index bc64e7f59..d32cd4af1 100644
--- a/apps/marketing/src/components/(marketing)/mobile-navigation.tsx
+++ b/apps/marketing/src/components/(marketing)/mobile-navigation.tsx
@@ -22,6 +22,10 @@ export const MENU_NAVIGATION_LINKS = [
     href: '/pricing',
     text: 'Pricing',
   },
+  {
+    href: '/open',
+    text: 'Open',
+  },
   {
     href: 'https://status.documenso.com',
     text: 'Status',
@@ -59,7 +63,7 @@ export const MobileNavigation = ({ isMenuOpen, onMenuOpenChange }: MobileNavigat
           initial="initial"
           animate="animate"
           transition={{
-            staggerChildren: 0.2,
+            staggerChildren: 0.03,
           }}
         >
           {MENU_NAVIGATION_LINKS.map(({ href, text }) => (
@@ -75,6 +79,7 @@ export const MobileNavigation = ({ isMenuOpen, onMenuOpenChange }: MobileNavigat
                   x: 0,
                   transition: {
                     duration: 0.5,
+                    ease: 'backInOut',
                   },
                 },
               }}

From 6640f0496a9e4057a14de5f329f61d89778a6b1a Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Wed, 6 Sep 2023 10:40:45 +0000
Subject: [PATCH 21/83] feat: disable signing and editing for completed
 documents

---
 .../app/(dashboard)/documents/data-table-action-dropdown.tsx  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx b/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
index b1d5832f8..8b69f95c4 100644
--- a/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
+++ b/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
@@ -82,14 +82,14 @@ export const DataTableActionDropdown = ({ row }: DataTableActionDropdownProps) =
       <DropdownMenuContent className="w-52" align="start" forceMount>
         <DropdownMenuLabel>Action</DropdownMenuLabel>
 
-        <DropdownMenuItem disabled={!recipient} asChild>
+        <DropdownMenuItem disabled={!recipient || isComplete} asChild>
           <Link href={`/sign/${recipient?.token}`}>
             <Pencil className="mr-2 h-4 w-4" />
             Sign
           </Link>
         </DropdownMenuItem>
 
-        <DropdownMenuItem disabled={!isOwner} asChild>
+        <DropdownMenuItem disabled={!isOwner || isComplete} asChild>
           <Link href={`/documents/${row.id}`}>
             <Edit className="mr-2 h-4 w-4" />
             Edit

From a2ef9468aeb221e054c5f63823fee4b1a99b38a3 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 7 Sep 2023 19:27:21 +1000
Subject: [PATCH 22/83] feat: separate document data from document

---
 .../src/pages/api/stripe/webhook/index.ts     | 34 +++++++++---
 .../documents/[id]/edit-document.tsx          |  9 ++--
 .../app/(dashboard)/documents/[id]/page.tsx   |  6 ++-
 .../documents/data-table-action-dropdown.tsx  | 52 +++++++++++++++----
 .../(signing)/sign/[token]/complete/page.tsx  |  6 ++-
 .../src/app/(signing)/sign/[token]/page.tsx   |  6 ++-
 apps/web/src/pages/api/document/create.ts     | 12 ++++-
 .../web/src/pages/api/stripe/webhook/index.ts | 34 +++++++++---
 packages/lib/package.json                     |  2 +
 .../server-only/document/create-document.ts   | 10 ++++
 .../document/get-document-by-id.ts            |  3 ++
 .../document/get-document-by-token.ts         |  1 +
 .../lib/server-only/document/seal-document.ts | 15 +++++-
 .../migration.sql                             | 19 +++++++
 .../migration.sql                             | 14 +++++
 .../migration.sql                             |  3 ++
 .../migration.sql                             |  8 +++
 packages/prisma/schema.prisma                 | 38 ++++++++++----
 packages/prisma/types/document-with-data.ts   |  5 ++
 .../trpc/server/document-router/router.ts     | 48 ++++++++++++++++-
 .../trpc/server/document-router/schema.ts     | 12 +++++
 packages/tsconfig/process-env.d.ts            |  7 +++
 22 files changed, 300 insertions(+), 44 deletions(-)
 create mode 100644 packages/lib/server-only/document/create-document.ts
 create mode 100644 packages/prisma/migrations/20230907041233_add_document_data_table/migration.sql
 create mode 100644 packages/prisma/migrations/20230907074451_insert_old_data_into_document_data_table/migration.sql
 create mode 100644 packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
 create mode 100644 packages/prisma/migrations/20230907082622_remove_old_document_data/migration.sql
 create mode 100644 packages/prisma/types/document-with-data.ts

diff --git a/apps/marketing/src/pages/api/stripe/webhook/index.ts b/apps/marketing/src/pages/api/stripe/webhook/index.ts
index 3f3810fd4..11c9476bd 100644
--- a/apps/marketing/src/pages/api/stripe/webhook/index.ts
+++ b/apps/marketing/src/pages/api/stripe/webhook/index.ts
@@ -10,6 +10,7 @@ import { redis } from '@documenso/lib/server-only/redis';
 import { Stripe, stripe } from '@documenso/lib/server-only/stripe';
 import { prisma } from '@documenso/prisma';
 import {
+  DocumentDataType,
   DocumentStatus,
   FieldType,
   ReadStatus,
@@ -85,16 +86,33 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
 
       const now = new Date();
 
+      const bytes64 = readFileSync('./public/documenso-supporter-pledge.pdf').toString('base64');
+
       const document = await prisma.document.create({
         data: {
           title: 'Documenso Supporter Pledge.pdf',
           status: DocumentStatus.COMPLETED,
           userId: user.id,
-          document: readFileSync('./public/documenso-supporter-pledge.pdf').toString('base64'),
           created: now,
+          documentData: {
+            create: {
+              type: DocumentDataType.BYTES_64,
+              data: bytes64,
+              initialData: bytes64,
+            },
+          },
+        },
+        include: {
+          documentData: true,
         },
       });
 
+      const { documentData } = document;
+
+      if (!documentData) {
+        throw new Error(`Document ${document.id} has no document data`);
+      }
+
       const recipient = await prisma.recipient.create({
         data: {
           name: user.name ?? '',
@@ -122,16 +140,16 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
       });
 
       if (signatureDataUrl) {
-        document.document = await insertImageInPDF(
-          document.document,
+        documentData.data = await insertImageInPDF(
+          documentData.data,
           signatureDataUrl,
           Number(field.positionX),
           Number(field.positionY),
           field.page,
         );
       } else {
-        document.document = await insertTextInPDF(
-          document.document,
+        documentData.data = await insertTextInPDF(
+          documentData.data,
           signatureText ?? '',
           Number(field.positionX),
           Number(field.positionY),
@@ -153,7 +171,11 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
             id: document.id,
           },
           data: {
-            document: document.document,
+            documentData: {
+              update: {
+                data: documentData.data,
+              },
+            },
           },
         }),
       ]);
diff --git a/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx b/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
index 7ed28feca..653936b9a 100644
--- a/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
@@ -4,7 +4,8 @@ import { useState } from 'react';
 
 import { useRouter } from 'next/navigation';
 
-import { Document, Field, Recipient, User } from '@documenso/prisma/client';
+import { Field, Recipient, User } from '@documenso/prisma/client';
+import { DocumentWithData } from '@documenso/prisma/types/document-with-data';
 import { cn } from '@documenso/ui/lib/utils';
 import { Card, CardContent } from '@documenso/ui/primitives/card';
 import { AddFieldsFormPartial } from '@documenso/ui/primitives/document-flow/add-fields';
@@ -28,7 +29,7 @@ import { completeDocument } from '~/components/forms/edit-document/add-subject.a
 export type EditDocumentFormProps = {
   className?: string;
   user: User;
-  document: Document;
+  document: DocumentWithData;
   recipients: Recipient[];
   fields: Field[];
 };
@@ -45,9 +46,11 @@ export const EditDocumentForm = ({
   const { toast } = useToast();
   const router = useRouter();
 
+  const { documentData } = document;
+
   const [step, setStep] = useState<EditDocumentStep>('signers');
 
-  const documentUrl = `data:application/pdf;base64,${document.document}`;
+  const documentUrl = `data:application/pdf;base64,${documentData?.data}`;
 
   const documentFlow: Record<EditDocumentStep, DocumentFlowStep> = {
     signers: {
diff --git a/apps/web/src/app/(dashboard)/documents/[id]/page.tsx b/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
index 7ab2c331c..f7c8f2525 100644
--- a/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
@@ -36,10 +36,12 @@ export default async function DocumentPage({ params }: DocumentPageProps) {
     userId: session.id,
   }).catch(() => null);
 
-  if (!document) {
+  if (!document || !document.documentData) {
     redirect('/documents');
   }
 
+  const { documentData } = document;
+
   const [recipients, fields] = await Promise.all([
     await getRecipientsForDocument({
       documentId,
@@ -91,7 +93,7 @@ export default async function DocumentPage({ params }: DocumentPageProps) {
 
       {document.status === InternalDocumentStatus.COMPLETED && (
         <div className="mx-auto mt-12 max-w-2xl">
-          <LazyPDFViewer document={`data:application/pdf;base64,${document.document}`} />
+          <LazyPDFViewer document={`data:application/pdf;base64,${documentData.data}`} />
         </div>
       )}
     </div>
diff --git a/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx b/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
index 8b69f95c4..02e3ad95c 100644
--- a/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
+++ b/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
@@ -14,8 +14,17 @@ import {
   XCircle,
 } from 'lucide-react';
 import { useSession } from 'next-auth/react';
+import { match } from 'ts-pattern';
 
-import { Document, DocumentStatus, Recipient, User } from '@documenso/prisma/client';
+import {
+  Document,
+  DocumentDataType,
+  DocumentStatus,
+  Recipient,
+  User,
+} from '@documenso/prisma/client';
+import { DocumentWithData } from '@documenso/prisma/types/document-with-data';
+import { trpc } from '@documenso/trpc/client';
 import {
   DropdownMenu,
   DropdownMenuContent,
@@ -47,17 +56,42 @@ export const DataTableActionDropdown = ({ row }: DataTableActionDropdownProps) =
   const isComplete = row.status === DocumentStatus.COMPLETED;
   // const isSigned = recipient?.signingStatus === SigningStatus.SIGNED;
 
-  const onDownloadClick = () => {
-    let decodedDocument = row.document;
+  const onDownloadClick = async () => {
+    let document: DocumentWithData | null = null;
 
-    try {
-      decodedDocument = atob(decodedDocument);
-    } catch (err) {
-      // We're just going to ignore this error and try to download the document
-      console.error(err);
+    if (!recipient) {
+      document = await trpc.document.getDocumentById.query({
+        id: row.id,
+      });
+    } else {
+      document = await trpc.document.getDocumentByToken.query({
+        token: recipient.token,
+      });
     }
 
-    const documentBytes = Uint8Array.from(decodedDocument.split('').map((c) => c.charCodeAt(0)));
+    const documentData = document?.documentData;
+
+    if (!documentData) {
+      return;
+    }
+
+    const documentBytes = await match(documentData.type)
+      .with(DocumentDataType.BYTES, () =>
+        Uint8Array.from(documentData.data, (c) => c.charCodeAt(0)),
+      )
+      .with(DocumentDataType.BYTES_64, () =>
+        Uint8Array.from(
+          atob(documentData.data)
+            .split('')
+            .map((c) => c.charCodeAt(0)),
+        ),
+      )
+      .with(DocumentDataType.S3_PATH, async () =>
+        fetch(documentData.data)
+          .then(async (res) => res.arrayBuffer())
+          .then((buffer) => new Uint8Array(buffer)),
+      )
+      .exhaustive();
 
     const blob = new Blob([documentBytes], {
       type: 'application/pdf',
diff --git a/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx b/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx
index b97b7f8d6..48d2b6435 100644
--- a/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx
@@ -30,10 +30,12 @@ export default async function CompletedSigningPage({
     token,
   }).catch(() => null);
 
-  if (!document) {
+  if (!document || !document.documentData) {
     return notFound();
   }
 
+  const { documentData } = document;
+
   const [fields, recipient] = await Promise.all([
     getFieldsForToken({ token }),
     getRecipientByToken({ token }),
@@ -91,7 +93,7 @@ export default async function CompletedSigningPage({
         <DownloadButton
           className="flex-1"
           fileName={document.title}
-          document={document.status === DocumentStatus.COMPLETED ? document.document : undefined}
+          document={document.status === DocumentStatus.COMPLETED ? documentData.data : undefined}
           disabled={document.status !== DocumentStatus.COMPLETED}
         />
       </div>
diff --git a/apps/web/src/app/(signing)/sign/[token]/page.tsx b/apps/web/src/app/(signing)/sign/[token]/page.tsx
index 35621068a..838e3ee32 100644
--- a/apps/web/src/app/(signing)/sign/[token]/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/page.tsx
@@ -40,13 +40,15 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
     viewedDocument({ token }),
   ]);
 
-  if (!document) {
+  if (!document || !document.documentData) {
     return notFound();
   }
 
+  const { documentData } = document;
+
   const user = await getServerComponentSession();
 
-  const documentUrl = `data:application/pdf;base64,${document.document}`;
+  const documentUrl = `data:application/pdf;base64,${documentData.data}`;
 
   return (
     <SigningProvider email={recipient.email} fullName={recipient.name} signature={user?.signature}>
diff --git a/apps/web/src/pages/api/document/create.ts b/apps/web/src/pages/api/document/create.ts
index b2042315f..897c16f76 100644
--- a/apps/web/src/pages/api/document/create.ts
+++ b/apps/web/src/pages/api/document/create.ts
@@ -5,7 +5,7 @@ import { readFileSync } from 'fs';
 
 import { getServerSession } from '@documenso/lib/next-auth/get-server-session';
 import { prisma } from '@documenso/prisma';
-import { DocumentStatus } from '@documenso/prisma/client';
+import { DocumentDataType, DocumentStatus } from '@documenso/prisma/client';
 
 import {
   TCreateDocumentRequestSchema,
@@ -55,12 +55,20 @@ export default async function handler(
 
     const fileBuffer = readFileSync(file.filepath);
 
+    const bytes64 = fileBuffer.toString('base64');
+
     const document = await prisma.document.create({
       data: {
         title: file.originalFilename ?? file.newFilename,
         status: DocumentStatus.DRAFT,
         userId: user.id,
-        document: fileBuffer.toString('base64'),
+        documentData: {
+          create: {
+            type: DocumentDataType.BYTES_64,
+            data: bytes64,
+            initialData: bytes64,
+          },
+        },
         created: new Date(),
       },
     });
diff --git a/apps/web/src/pages/api/stripe/webhook/index.ts b/apps/web/src/pages/api/stripe/webhook/index.ts
index 6c678a33c..818b3759a 100644
--- a/apps/web/src/pages/api/stripe/webhook/index.ts
+++ b/apps/web/src/pages/api/stripe/webhook/index.ts
@@ -10,6 +10,7 @@ import { redis } from '@documenso/lib/server-only/redis';
 import { Stripe, stripe } from '@documenso/lib/server-only/stripe';
 import { prisma } from '@documenso/prisma';
 import {
+  DocumentDataType,
   DocumentStatus,
   FieldType,
   ReadStatus,
@@ -85,16 +86,33 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
 
       const now = new Date();
 
+      const bytes64 = readFileSync('./public/documenso-supporter-pledge.pdf').toString('base64');
+
       const document = await prisma.document.create({
         data: {
           title: 'Documenso Supporter Pledge.pdf',
           status: DocumentStatus.COMPLETED,
           userId: user.id,
-          document: readFileSync('./public/documenso-supporter-pledge.pdf').toString('base64'),
           created: now,
+          documentData: {
+            create: {
+              type: DocumentDataType.BYTES_64,
+              data: bytes64,
+              initialData: bytes64,
+            },
+          },
+        },
+        include: {
+          documentData: true,
         },
       });
 
+      const { documentData } = document;
+
+      if (!documentData) {
+        throw new Error(`Document ${document.id} has no document data`);
+      }
+
       const recipient = await prisma.recipient.create({
         data: {
           name: user.name ?? '',
@@ -122,16 +140,16 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
       });
 
       if (signatureDataUrl) {
-        document.document = await insertImageInPDF(
-          document.document,
+        documentData.data = await insertImageInPDF(
+          documentData.data,
           signatureDataUrl,
           field.positionX.toNumber(),
           field.positionY.toNumber(),
           field.page,
         );
       } else {
-        document.document = await insertTextInPDF(
-          document.document,
+        documentData.data = await insertTextInPDF(
+          documentData.data,
           signatureText ?? '',
           field.positionX.toNumber(),
           field.positionY.toNumber(),
@@ -153,7 +171,11 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
             id: document.id,
           },
           data: {
-            document: document.document,
+            documentData: {
+              update: {
+                data: documentData.data,
+              },
+            },
           },
         }),
       ]);
diff --git a/packages/lib/package.json b/packages/lib/package.json
index 0d04f6c93..e36297834 100644
--- a/packages/lib/package.json
+++ b/packages/lib/package.json
@@ -12,6 +12,8 @@
   ],
   "scripts": {},
   "dependencies": {
+    "@aws-sdk/s3-request-presigner": "^3.405.0",
+    "@aws-sdk/client-s3": "^3.405.0",
     "@documenso/email": "*",
     "@documenso/prisma": "*",
     "@next-auth/prisma-adapter": "1.0.7",
diff --git a/packages/lib/server-only/document/create-document.ts b/packages/lib/server-only/document/create-document.ts
new file mode 100644
index 000000000..24a5d6283
--- /dev/null
+++ b/packages/lib/server-only/document/create-document.ts
@@ -0,0 +1,10 @@
+'use server';
+
+export type CreateDocumentOptions = {
+  userId: number;
+  fileName: string;
+};
+
+export const createDocument = () => {
+  //
+};
diff --git a/packages/lib/server-only/document/get-document-by-id.ts b/packages/lib/server-only/document/get-document-by-id.ts
index 12b0d03f9..0fce1af4d 100644
--- a/packages/lib/server-only/document/get-document-by-id.ts
+++ b/packages/lib/server-only/document/get-document-by-id.ts
@@ -11,5 +11,8 @@ export const getDocumentById = async ({ id, userId }: GetDocumentByIdOptions) =>
       id,
       userId,
     },
+    include: {
+      documentData: true,
+    },
   });
 };
diff --git a/packages/lib/server-only/document/get-document-by-token.ts b/packages/lib/server-only/document/get-document-by-token.ts
index 74bc30c79..62b3ddd48 100644
--- a/packages/lib/server-only/document/get-document-by-token.ts
+++ b/packages/lib/server-only/document/get-document-by-token.ts
@@ -17,6 +17,7 @@ export const getDocumentAndSenderByToken = async ({
     },
     include: {
       User: true,
+      documentData: true,
     },
   });
 
diff --git a/packages/lib/server-only/document/seal-document.ts b/packages/lib/server-only/document/seal-document.ts
index 1a74cfaac..876da9d0a 100644
--- a/packages/lib/server-only/document/seal-document.ts
+++ b/packages/lib/server-only/document/seal-document.ts
@@ -18,8 +18,15 @@ export const sealDocument = async ({ documentId }: SealDocumentOptions) => {
     where: {
       id: documentId,
     },
+    include: {
+      documentData: true,
+    },
   });
 
+  if (!document.documentData) {
+    throw new Error(`Document ${document.id} has no document data`);
+  }
+
   if (document.status !== DocumentStatus.COMPLETED) {
     throw new Error(`Document ${document.id} has not been completed`);
   }
@@ -48,7 +55,7 @@ export const sealDocument = async ({ documentId }: SealDocumentOptions) => {
   }
 
   // !: Need to write the fields onto the document as a hard copy
-  const { document: pdfData } = document;
+  const { data: pdfData } = document.documentData;
 
   const doc = await PDFDocument.load(pdfData);
 
@@ -64,7 +71,11 @@ export const sealDocument = async ({ documentId }: SealDocumentOptions) => {
       status: DocumentStatus.COMPLETED,
     },
     data: {
-      document: Buffer.from(pdfBytes).toString('base64'),
+      documentData: {
+        update: {
+          data: Buffer.from(pdfBytes).toString('base64'),
+        },
+      },
     },
   });
 };
diff --git a/packages/prisma/migrations/20230907041233_add_document_data_table/migration.sql b/packages/prisma/migrations/20230907041233_add_document_data_table/migration.sql
new file mode 100644
index 000000000..f2c69c4ed
--- /dev/null
+++ b/packages/prisma/migrations/20230907041233_add_document_data_table/migration.sql
@@ -0,0 +1,19 @@
+-- CreateEnum
+CREATE TYPE "DocumentDataType" AS ENUM ('S3_PATH', 'BYTES', 'BYTES_64');
+
+-- CreateTable
+CREATE TABLE "DocumentData" (
+    "id" TEXT NOT NULL,
+    "type" "DocumentDataType" NOT NULL,
+    "data" TEXT NOT NULL,
+    "initialData" TEXT NOT NULL,
+    "documentId" INTEGER NOT NULL,
+
+    CONSTRAINT "DocumentData_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateIndex
+CREATE UNIQUE INDEX "DocumentData_documentId_key" ON "DocumentData"("documentId");
+
+-- AddForeignKey
+ALTER TABLE "DocumentData" ADD CONSTRAINT "DocumentData_documentId_fkey" FOREIGN KEY ("documentId") REFERENCES "Document"("id") ON DELETE CASCADE ON UPDATE CASCADE;
diff --git a/packages/prisma/migrations/20230907074451_insert_old_data_into_document_data_table/migration.sql b/packages/prisma/migrations/20230907074451_insert_old_data_into_document_data_table/migration.sql
new file mode 100644
index 000000000..899c6e2d2
--- /dev/null
+++ b/packages/prisma/migrations/20230907074451_insert_old_data_into_document_data_table/migration.sql
@@ -0,0 +1,14 @@
+INSERT INTO
+  "DocumentData" ("id", "type", "data", "initialData", "documentId") (
+    SELECT
+      CAST(gen_random_uuid() AS TEXT),
+      'BYTES_64',
+      d."document",
+      d."document",
+      d."id"
+    FROM
+      "Document" d
+    WHERE
+      d."id" IS NOT NULL
+      AND d."document" IS NOT NULL
+  );
diff --git a/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql b/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
new file mode 100644
index 000000000..333386230
--- /dev/null
+++ b/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
@@ -0,0 +1,3 @@
+-- AlterTable
+ALTER TABLE "Document" ADD COLUMN     "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+ADD COLUMN     "updatedAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP;
diff --git a/packages/prisma/migrations/20230907082622_remove_old_document_data/migration.sql b/packages/prisma/migrations/20230907082622_remove_old_document_data/migration.sql
new file mode 100644
index 000000000..25c794f65
--- /dev/null
+++ b/packages/prisma/migrations/20230907082622_remove_old_document_data/migration.sql
@@ -0,0 +1,8 @@
+/*
+  Warnings:
+
+  - You are about to drop the column `document` on the `Document` table. All the data in the column will be lost.
+
+*/
+-- AlterTable
+ALTER TABLE "Document" DROP COLUMN "document";
diff --git a/packages/prisma/schema.prisma b/packages/prisma/schema.prisma
index 2e016f5ec..5171813c3 100644
--- a/packages/prisma/schema.prisma
+++ b/packages/prisma/schema.prisma
@@ -85,15 +85,35 @@ enum DocumentStatus {
 }
 
 model Document {
-  id        Int            @id @default(autoincrement())
-  created   DateTime       @default(now())
-  userId    Int
-  User      User           @relation(fields: [userId], references: [id], onDelete: Cascade)
-  title     String
-  status    DocumentStatus @default(DRAFT)
-  document  String
-  Recipient Recipient[]
-  Field     Field[]
+  id           Int            @id @default(autoincrement())
+  created      DateTime       @default(now())
+  userId       Int
+  User         User           @relation(fields: [userId], references: [id], onDelete: Cascade)
+  title        String
+  status       DocumentStatus @default(DRAFT)
+  Recipient    Recipient[]
+  Field        Field[]
+  documentData DocumentData?
+  createdAt    DateTime       @default(now())
+  updatedAt    DateTime       @updatedAt @default(now())
+}
+
+enum DocumentDataType {
+  S3_PATH
+  BYTES
+  BYTES_64
+}
+
+model DocumentData {
+  id          String           @id @default(cuid())
+  type        DocumentDataType
+  data        String
+  initialData String
+  documentId  Int
+
+  Document Document @relation(fields: [documentId], references: [id], onDelete: Cascade)
+
+  @@unique([documentId])
 }
 
 enum ReadStatus {
diff --git a/packages/prisma/types/document-with-data.ts b/packages/prisma/types/document-with-data.ts
new file mode 100644
index 000000000..d52987552
--- /dev/null
+++ b/packages/prisma/types/document-with-data.ts
@@ -0,0 +1,5 @@
+import { Document, DocumentData } from '@documenso/prisma/client';
+
+export type DocumentWithData = Document & {
+  documentData?: DocumentData | null;
+};
diff --git a/packages/trpc/server/document-router/router.ts b/packages/trpc/server/document-router/router.ts
index f20643327..5628bb41d 100644
--- a/packages/trpc/server/document-router/router.ts
+++ b/packages/trpc/server/document-router/router.ts
@@ -1,17 +1,63 @@
 import { TRPCError } from '@trpc/server';
 
+import { getDocumentById } from '@documenso/lib/server-only/document/get-document-by-id';
+import { getDocumentAndSenderByToken } from '@documenso/lib/server-only/document/get-document-by-token';
 import { sendDocument } from '@documenso/lib/server-only/document/send-document';
 import { setFieldsForDocument } from '@documenso/lib/server-only/field/set-fields-for-document';
 import { setRecipientsForDocument } from '@documenso/lib/server-only/recipient/set-recipients-for-document';
 
-import { authenticatedProcedure, router } from '../trpc';
+import { authenticatedProcedure, procedure, router } from '../trpc';
 import {
+  ZGetDocumentByIdQuerySchema,
+  ZGetDocumentByTokenQuerySchema,
   ZSendDocumentMutationSchema,
   ZSetFieldsForDocumentMutationSchema,
   ZSetRecipientsForDocumentMutationSchema,
 } from './schema';
 
 export const documentRouter = router({
+  getDocumentById: authenticatedProcedure
+    .input(ZGetDocumentByIdQuerySchema)
+    .query(async ({ input, ctx }) => {
+      try {
+        const { id } = input;
+
+        console.log({
+          id,
+          userId: ctx.user.id,
+        });
+
+        return await getDocumentById({
+          id,
+          userId: ctx.user.id,
+        });
+      } catch (err) {
+        console.error(err);
+
+        throw new TRPCError({
+          code: 'BAD_REQUEST',
+          message: 'We were unable to find this document. Please try again later.',
+        });
+      }
+    }),
+
+  getDocumentByToken: procedure.input(ZGetDocumentByTokenQuerySchema).query(async ({ input }) => {
+    try {
+      const { token } = input;
+
+      return await getDocumentAndSenderByToken({
+        token,
+      });
+    } catch (err) {
+      console.error(err);
+
+      throw new TRPCError({
+        code: 'BAD_REQUEST',
+        message: 'We were unable to find this document. Please try again later.',
+      });
+    }
+  }),
+
   setRecipientsForDocument: authenticatedProcedure
     .input(ZSetRecipientsForDocumentMutationSchema)
     .mutation(async ({ input, ctx }) => {
diff --git a/packages/trpc/server/document-router/schema.ts b/packages/trpc/server/document-router/schema.ts
index 18c3a93ae..9060ef1db 100644
--- a/packages/trpc/server/document-router/schema.ts
+++ b/packages/trpc/server/document-router/schema.ts
@@ -2,6 +2,18 @@ import { z } from 'zod';
 
 import { FieldType } from '@documenso/prisma/client';
 
+export const ZGetDocumentByIdQuerySchema = z.object({
+  id: z.number().min(1),
+});
+
+export type TGetDocumentByIdQuerySchema = z.infer<typeof ZGetDocumentByIdQuerySchema>;
+
+export const ZGetDocumentByTokenQuerySchema = z.object({
+  token: z.string().min(1),
+});
+
+export type TGetDocumentByTokenQuerySchema = z.infer<typeof ZGetDocumentByTokenQuerySchema>;
+
 export const ZSetRecipientsForDocumentMutationSchema = z.object({
   documentId: z.number(),
   recipients: z.array(
diff --git a/packages/tsconfig/process-env.d.ts b/packages/tsconfig/process-env.d.ts
index 6c031858d..b65a2bb20 100644
--- a/packages/tsconfig/process-env.d.ts
+++ b/packages/tsconfig/process-env.d.ts
@@ -13,6 +13,13 @@ declare namespace NodeJS {
     NEXT_PRIVATE_STRIPE_API_KEY: string;
     NEXT_PRIVATE_STRIPE_WEBHOOK_SECRET: string;
 
+    NEXT_PRIVATE_UPLOAD_TRANSPORT?: 'database' | 's3';
+    NEXT_PRIVATE_UPLOAD_ENDPOINT?: string;
+    NEXT_PRIVATE_UPLOAD_REGION?: string;
+    NEXT_PRIVATE_UPLOAD_BUCKET?: string;
+    NEXT_PRIVATE_UPLOAD_ACCESS_KEY_ID?: string;
+    NEXT_PRIVATE_UPLOAD_SECRET_ACCESS_KEY?: string;
+
     NEXT_PRIVATE_SMTP_TRANSPORT?: 'mailchannels' | 'smtp-auth' | 'smtp-api';
 
     NEXT_PRIVATE_MAILCHANNELS_API_KEY?: string;

From 171a5ba4ee5a167d5fb225b29d12908c808003c9 Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Fri, 8 Sep 2023 09:16:31 +0300
Subject: [PATCH 23/83] feat: creating the admin ui for metrics

---
 .../(dashboard)/layout/profile-dropdown.tsx         | 13 ++++++++++++-
 packages/lib/index.ts                               |  6 +++++-
 .../20230907075057_user_roles/migration.sql         |  5 +++++
 packages/prisma/schema.prisma                       |  6 ++++++
 4 files changed, 28 insertions(+), 2 deletions(-)
 create mode 100644 packages/prisma/migrations/20230907075057_user_roles/migration.sql

diff --git a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
index 02af86d70..19a15564b 100644
--- a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
+++ b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
@@ -11,10 +11,12 @@ import {
   Monitor,
   Moon,
   Sun,
+  UserCog,
 } from 'lucide-react';
 import { signOut } from 'next-auth/react';
 import { useTheme } from 'next-themes';
 
+import { isAdmin } from '@documenso/lib/';
 import { User } from '@documenso/prisma/client';
 import { Avatar, AvatarFallback } from '@documenso/ui/primitives/avatar';
 import { Button } from '@documenso/ui/primitives/button';
@@ -35,8 +37,8 @@ export type ProfileDropdownProps = {
 
 export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
   const { theme, setTheme } = useTheme();
-
   const { getFlag } = useFeatureFlags();
+  const userIsAdmin = isAdmin(user);
 
   const isBillingEnabled = getFlag('app_billing');
 
@@ -67,6 +69,15 @@ export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
           </Link>
         </DropdownMenuItem>
 
+        {userIsAdmin && (
+          <DropdownMenuItem asChild>
+            <Link href="/admin" className="cursor-pointer">
+              <UserCog className="mr-2 h-4 w-4" />
+              Admin
+            </Link>
+          </DropdownMenuItem>
+        )}
+
         <DropdownMenuItem asChild>
           <Link href="/settings/password" className="cursor-pointer">
             <Key className="mr-2 h-4 w-4" />
diff --git a/packages/lib/index.ts b/packages/lib/index.ts
index cb0ff5c3b..2801305dd 100644
--- a/packages/lib/index.ts
+++ b/packages/lib/index.ts
@@ -1 +1,5 @@
-export {};
+import { Role, User } from '@documenso/prisma/client';
+
+const isAdmin = (user: User) => user.roles.includes(Role.ADMIN);
+
+export { isAdmin };
diff --git a/packages/prisma/migrations/20230907075057_user_roles/migration.sql b/packages/prisma/migrations/20230907075057_user_roles/migration.sql
new file mode 100644
index 000000000..f47e48361
--- /dev/null
+++ b/packages/prisma/migrations/20230907075057_user_roles/migration.sql
@@ -0,0 +1,5 @@
+-- CreateEnum
+CREATE TYPE "Role" AS ENUM ('ADMIN', 'USER');
+
+-- AlterTable
+ALTER TABLE "User" ADD COLUMN     "roles" "Role"[] DEFAULT ARRAY['USER']::"Role"[];
diff --git a/packages/prisma/schema.prisma b/packages/prisma/schema.prisma
index 2e016f5ec..22955310b 100644
--- a/packages/prisma/schema.prisma
+++ b/packages/prisma/schema.prisma
@@ -13,6 +13,11 @@ enum IdentityProvider {
   GOOGLE
 }
 
+enum Role {
+  ADMIN
+  USER
+}
+
 model User {
   id               Int              @id @default(autoincrement())
   name             String?
@@ -21,6 +26,7 @@ model User {
   password         String?
   source           String?
   signature        String?
+  roles            Role[]           @default([USER])
   identityProvider IdentityProvider @default(DOCUMENSO)
   accounts         Account[]
   sessions         Session[]

From 67571158e88912620e2aa33c537a91ea7da6443f Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Fri, 8 Sep 2023 11:28:50 +0300
Subject: [PATCH 24/83] feat: add the admin page

---
 apps/web/src/app/(dashboard)/admin/layout.tsx |  23 ++++
 apps/web/src/app/(dashboard)/admin/page.tsx   | 107 ++++++++++++++++++
 .../(dashboard)/layout/profile-dropdown.tsx   |   4 +-
 .../lib/server-only/admin/get-documents.ts    |   5 +
 .../lib/server-only/admin/get-recipients.ts   |  20 ++++
 packages/lib/server-only/admin/get-users.ts   |  18 +++
 6 files changed, 175 insertions(+), 2 deletions(-)
 create mode 100644 apps/web/src/app/(dashboard)/admin/layout.tsx
 create mode 100644 apps/web/src/app/(dashboard)/admin/page.tsx
 create mode 100644 packages/lib/server-only/admin/get-documents.ts
 create mode 100644 packages/lib/server-only/admin/get-recipients.ts
 create mode 100644 packages/lib/server-only/admin/get-users.ts

diff --git a/apps/web/src/app/(dashboard)/admin/layout.tsx b/apps/web/src/app/(dashboard)/admin/layout.tsx
new file mode 100644
index 000000000..340605bc7
--- /dev/null
+++ b/apps/web/src/app/(dashboard)/admin/layout.tsx
@@ -0,0 +1,23 @@
+import { redirect } from 'next/navigation';
+
+import { isAdmin } from '@documenso/lib/';
+import { getRequiredServerComponentSession } from '@documenso/lib/next-auth/get-server-session';
+
+export type AdminLayoutProps = {
+  children: React.ReactNode;
+};
+
+export default async function AdminLayout({ children }: AdminLayoutProps) {
+  const user = await getRequiredServerComponentSession();
+  const isUserAdmin = isAdmin(user);
+
+  if (!user) {
+    redirect('/signin');
+  }
+
+  if (!isUserAdmin) {
+    redirect('/dashboard');
+  }
+
+  return <main className="mt-8 pb-8 md:mt-12 md:pb-12">{children}</main>;
+}
diff --git a/apps/web/src/app/(dashboard)/admin/page.tsx b/apps/web/src/app/(dashboard)/admin/page.tsx
new file mode 100644
index 000000000..e4a62f725
--- /dev/null
+++ b/apps/web/src/app/(dashboard)/admin/page.tsx
@@ -0,0 +1,107 @@
+import {
+  Archive,
+  File,
+  FileX2,
+  LucideIcon,
+  User as LucideUser,
+  Mail,
+  MailOpen,
+  PenTool,
+  Send,
+  UserPlus2,
+  UserSquare2,
+} from 'lucide-react';
+
+import { getDocsCount } from '@documenso/lib/server-only/admin/get-documents';
+import { getRecipientsStats } from '@documenso/lib/server-only/admin/get-recipients';
+import {
+  getUsersCount,
+  getUsersWithSubscriptionsCount,
+} from '@documenso/lib/server-only/admin/get-users';
+import {
+  ReadStatus as InternalReadStatus,
+  SendStatus as InternalSendStatus,
+  SigningStatus as InternalSigningStatus,
+} from '@documenso/prisma/client';
+
+import { CardMetric } from '~/components/(dashboard)/metric-card/metric-card';
+
+type TCardData = {
+  icon: LucideIcon;
+  title: string;
+  status:
+    | 'TOTAL_RECIPIENTS'
+    | 'OPENED'
+    | 'NOT_OPENED'
+    | 'SIGNED'
+    | 'NOT_SIGNED'
+    | 'SENT'
+    | 'NOT_SENT';
+}[];
+
+const CARD_DATA: TCardData = [
+  {
+    icon: UserSquare2,
+    title: 'Total recipients in the database',
+    status: 'TOTAL_RECIPIENTS',
+  },
+  {
+    icon: MailOpen,
+    title: 'Total recipients with opened count',
+    status: InternalReadStatus.OPENED,
+  },
+  {
+    icon: Mail,
+    title: 'Total recipients with unopened count',
+    status: InternalReadStatus.NOT_OPENED,
+  },
+  {
+    icon: Send,
+    title: 'Total recipients with sent count',
+    status: InternalSendStatus.SENT,
+  },
+  {
+    icon: Archive,
+    title: 'Total recipients with unsent count',
+    status: InternalSendStatus.NOT_SENT,
+  },
+  {
+    icon: PenTool,
+    title: 'Total recipients with signed count',
+    status: InternalSigningStatus.SIGNED,
+  },
+  {
+    icon: FileX2,
+    title: 'Total recipients with unsigned count',
+    status: InternalSigningStatus.NOT_SIGNED,
+  },
+];
+
+export default async function Admin() {
+  const [usersCount, usersWithSubscriptionsCount, docsCount, recipientsStats] = await Promise.all([
+    getUsersCount(),
+    getUsersWithSubscriptionsCount(),
+    getDocsCount(),
+    getRecipientsStats(),
+  ]);
+
+  return (
+    <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
+      <h1 className="text-4xl font-semibold">Documenso instance metrics</h1>
+      <div className="mt-8 grid grid-cols-1 gap-4 md:grid-cols-3">
+        <CardMetric icon={LucideUser} title={'Total users in the database'} value={usersCount} />
+        <CardMetric
+          icon={UserPlus2}
+          title={'Users with an active subscription'}
+          value={usersWithSubscriptionsCount}
+        />
+        <CardMetric icon={File} title={'Total documents in the database'} value={docsCount} />
+        {CARD_DATA.map((card) => (
+          <div key={card.status}>
+            <CardMetric icon={card.icon} title={card.title} value={recipientsStats[card.status]} />
+          </div>
+        ))}
+      </div>
+    </div>
+  );
+}
diff --git a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
index 19a15564b..0bea64565 100644
--- a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
+++ b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
@@ -38,7 +38,7 @@ export type ProfileDropdownProps = {
 export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
   const { theme, setTheme } = useTheme();
   const { getFlag } = useFeatureFlags();
-  const userIsAdmin = isAdmin(user);
+  const isUserAdmin = isAdmin(user);
 
   const isBillingEnabled = getFlag('app_billing');
 
@@ -69,7 +69,7 @@ export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
           </Link>
         </DropdownMenuItem>
 
-        {userIsAdmin && (
+        {isUserAdmin && (
           <DropdownMenuItem asChild>
             <Link href="/admin" className="cursor-pointer">
               <UserCog className="mr-2 h-4 w-4" />
diff --git a/packages/lib/server-only/admin/get-documents.ts b/packages/lib/server-only/admin/get-documents.ts
new file mode 100644
index 000000000..9100a886c
--- /dev/null
+++ b/packages/lib/server-only/admin/get-documents.ts
@@ -0,0 +1,5 @@
+import { prisma } from '@documenso/prisma';
+
+export const getDocsCount = async () => {
+  return await prisma.document.count();
+};
diff --git a/packages/lib/server-only/admin/get-recipients.ts b/packages/lib/server-only/admin/get-recipients.ts
new file mode 100644
index 000000000..0be612e55
--- /dev/null
+++ b/packages/lib/server-only/admin/get-recipients.ts
@@ -0,0 +1,20 @@
+import { prisma } from '@documenso/prisma';
+import { ReadStatus, SendStatus, SigningStatus } from '@documenso/prisma/client';
+
+export const getRecipientsStats = async () => {
+  const results = await prisma.recipient.groupBy({
+    by: ['readStatus', 'signingStatus', 'sendStatus'],
+    _count: true,
+  });
+
+  return {
+    TOTAL_RECIPIENTS: results.length,
+    [ReadStatus.OPENED]: results.filter((r) => r.readStatus === 'OPENED')?.[0]?._count ?? 0,
+    [ReadStatus.NOT_OPENED]: results.filter((r) => r.readStatus === 'NOT_OPENED')?.[0]?._count ?? 0,
+    [SigningStatus.SIGNED]: results.filter((r) => r.signingStatus === 'SIGNED')?.[0]?._count ?? 0,
+    [SigningStatus.NOT_SIGNED]:
+      results.filter((r) => r.signingStatus === 'NOT_SIGNED')?.[0]?._count ?? 0,
+    [SendStatus.SENT]: results.filter((r) => r.sendStatus === 'SENT')?.[0]?._count ?? 0,
+    [SendStatus.NOT_SENT]: results.filter((r) => r.sendStatus === 'NOT_SENT')?.[0]?._count ?? 0,
+  };
+};
diff --git a/packages/lib/server-only/admin/get-users.ts b/packages/lib/server-only/admin/get-users.ts
new file mode 100644
index 000000000..09892171a
--- /dev/null
+++ b/packages/lib/server-only/admin/get-users.ts
@@ -0,0 +1,18 @@
+import { prisma } from '@documenso/prisma';
+import { SubscriptionStatus } from '@documenso/prisma/client';
+
+export const getUsersCount = async () => {
+  return await prisma.user.count();
+};
+
+export const getUsersWithSubscriptionsCount = async () => {
+  return await prisma.user.count({
+    where: {
+      Subscription: {
+        some: {
+          status: SubscriptionStatus.ACTIVE,
+        },
+      },
+    },
+  });
+};

From 6cdba45396299cc1e06a7d185280acaddda0fb59 Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Fri, 8 Sep 2023 12:39:13 +0300
Subject: [PATCH 25/83] chore: implemented feedback

---
 apps/web/src/app/(dashboard)/admin/page.tsx   |  4 +--
 .../lib/server-only/admin/get-recipients.ts   | 25 ++++++++++++-------
 2 files changed, 18 insertions(+), 11 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/admin/page.tsx b/apps/web/src/app/(dashboard)/admin/page.tsx
index e4a62f725..e72d35dc3 100644
--- a/apps/web/src/app/(dashboard)/admin/page.tsx
+++ b/apps/web/src/app/(dashboard)/admin/page.tsx
@@ -37,9 +37,9 @@ type TCardData = {
     | 'NOT_SIGNED'
     | 'SENT'
     | 'NOT_SENT';
-}[];
+};
 
-const CARD_DATA: TCardData = [
+const CARD_DATA: TCardData[] = [
   {
     icon: UserSquare2,
     title: 'Total recipients in the database',
diff --git a/packages/lib/server-only/admin/get-recipients.ts b/packages/lib/server-only/admin/get-recipients.ts
index 0be612e55..92c0c3527 100644
--- a/packages/lib/server-only/admin/get-recipients.ts
+++ b/packages/lib/server-only/admin/get-recipients.ts
@@ -7,14 +7,21 @@ export const getRecipientsStats = async () => {
     _count: true,
   });
 
-  return {
-    TOTAL_RECIPIENTS: results.length,
-    [ReadStatus.OPENED]: results.filter((r) => r.readStatus === 'OPENED')?.[0]?._count ?? 0,
-    [ReadStatus.NOT_OPENED]: results.filter((r) => r.readStatus === 'NOT_OPENED')?.[0]?._count ?? 0,
-    [SigningStatus.SIGNED]: results.filter((r) => r.signingStatus === 'SIGNED')?.[0]?._count ?? 0,
-    [SigningStatus.NOT_SIGNED]:
-      results.filter((r) => r.signingStatus === 'NOT_SIGNED')?.[0]?._count ?? 0,
-    [SendStatus.SENT]: results.filter((r) => r.sendStatus === 'SENT')?.[0]?._count ?? 0,
-    [SendStatus.NOT_SENT]: results.filter((r) => r.sendStatus === 'NOT_SENT')?.[0]?._count ?? 0,
+  const stats = {
+    TOTAL_RECIPIENTS: 0,
+    [ReadStatus.OPENED]: 0,
+    [ReadStatus.NOT_OPENED]: 0,
+    [SigningStatus.SIGNED]: 0,
+    [SigningStatus.NOT_SIGNED]: 0,
+    [SendStatus.SENT]: 0,
+    [SendStatus.NOT_SENT]: 0,
   };
+  results.forEach((result) => {
+    const { readStatus, signingStatus, sendStatus, _count } = result;
+    stats[readStatus] += _count;
+    stats[signingStatus] += _count;
+    stats[sendStatus] += _count;
+    stats.TOTAL_RECIPIENTS += _count;
+  });
+  return stats;
 };

From 77058220a8975f01d4b9fda48c29bc6089a3bef0 Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Fri, 8 Sep 2023 12:42:14 +0300
Subject: [PATCH 26/83] chore: rename files

---
 apps/web/src/app/(dashboard)/admin/page.tsx                 | 6 +++---
 .../admin/{get-documents.ts => get-documents-stats.ts}      | 0
 .../admin/{get-recipients.ts => get-recipients-stats.ts}    | 0
 .../server-only/admin/{get-users.ts => get-users-stats.ts}  | 0
 4 files changed, 3 insertions(+), 3 deletions(-)
 rename packages/lib/server-only/admin/{get-documents.ts => get-documents-stats.ts} (100%)
 rename packages/lib/server-only/admin/{get-recipients.ts => get-recipients-stats.ts} (100%)
 rename packages/lib/server-only/admin/{get-users.ts => get-users-stats.ts} (100%)

diff --git a/apps/web/src/app/(dashboard)/admin/page.tsx b/apps/web/src/app/(dashboard)/admin/page.tsx
index e72d35dc3..aabdbfa35 100644
--- a/apps/web/src/app/(dashboard)/admin/page.tsx
+++ b/apps/web/src/app/(dashboard)/admin/page.tsx
@@ -12,12 +12,12 @@ import {
   UserSquare2,
 } from 'lucide-react';
 
-import { getDocsCount } from '@documenso/lib/server-only/admin/get-documents';
-import { getRecipientsStats } from '@documenso/lib/server-only/admin/get-recipients';
+import { getDocsCount } from '@documenso/lib/server-only/admin/get-documents-stats';
+import { getRecipientsStats } from '@documenso/lib/server-only/admin/get-recipients-stats';
 import {
   getUsersCount,
   getUsersWithSubscriptionsCount,
-} from '@documenso/lib/server-only/admin/get-users';
+} from '@documenso/lib/server-only/admin/get-users-stats';
 import {
   ReadStatus as InternalReadStatus,
   SendStatus as InternalSendStatus,
diff --git a/packages/lib/server-only/admin/get-documents.ts b/packages/lib/server-only/admin/get-documents-stats.ts
similarity index 100%
rename from packages/lib/server-only/admin/get-documents.ts
rename to packages/lib/server-only/admin/get-documents-stats.ts
diff --git a/packages/lib/server-only/admin/get-recipients.ts b/packages/lib/server-only/admin/get-recipients-stats.ts
similarity index 100%
rename from packages/lib/server-only/admin/get-recipients.ts
rename to packages/lib/server-only/admin/get-recipients-stats.ts
diff --git a/packages/lib/server-only/admin/get-users.ts b/packages/lib/server-only/admin/get-users-stats.ts
similarity index 100%
rename from packages/lib/server-only/admin/get-users.ts
rename to packages/lib/server-only/admin/get-users-stats.ts

From 660f5894a6f66baa5fd9394efec21306e640dc7b Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Fri, 8 Sep 2023 12:56:44 +0300
Subject: [PATCH 27/83] chore: feedback improvements

---
 apps/web/src/app/(dashboard)/admin/layout.tsx               | 2 +-
 .../src/components/(dashboard)/layout/profile-dropdown.tsx  | 2 +-
 packages/lib/index.ts                                       | 6 +-----
 packages/lib/next-auth/guards/is-admin.ts                   | 5 +++++
 4 files changed, 8 insertions(+), 7 deletions(-)
 create mode 100644 packages/lib/next-auth/guards/is-admin.ts

diff --git a/apps/web/src/app/(dashboard)/admin/layout.tsx b/apps/web/src/app/(dashboard)/admin/layout.tsx
index 340605bc7..a221d92ba 100644
--- a/apps/web/src/app/(dashboard)/admin/layout.tsx
+++ b/apps/web/src/app/(dashboard)/admin/layout.tsx
@@ -1,7 +1,7 @@
 import { redirect } from 'next/navigation';
 
-import { isAdmin } from '@documenso/lib/';
 import { getRequiredServerComponentSession } from '@documenso/lib/next-auth/get-server-session';
+import { isAdmin } from '@documenso/lib/next-auth/guards/is-admin';
 
 export type AdminLayoutProps = {
   children: React.ReactNode;
diff --git a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
index 0bea64565..e3fd4c6d6 100644
--- a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
+++ b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
@@ -16,7 +16,7 @@ import {
 import { signOut } from 'next-auth/react';
 import { useTheme } from 'next-themes';
 
-import { isAdmin } from '@documenso/lib/';
+import { isAdmin } from '@documenso/lib/next-auth/guards/is-admin';
 import { User } from '@documenso/prisma/client';
 import { Avatar, AvatarFallback } from '@documenso/ui/primitives/avatar';
 import { Button } from '@documenso/ui/primitives/button';
diff --git a/packages/lib/index.ts b/packages/lib/index.ts
index 2801305dd..cb0ff5c3b 100644
--- a/packages/lib/index.ts
+++ b/packages/lib/index.ts
@@ -1,5 +1 @@
-import { Role, User } from '@documenso/prisma/client';
-
-const isAdmin = (user: User) => user.roles.includes(Role.ADMIN);
-
-export { isAdmin };
+export {};
diff --git a/packages/lib/next-auth/guards/is-admin.ts b/packages/lib/next-auth/guards/is-admin.ts
new file mode 100644
index 000000000..2801305dd
--- /dev/null
+++ b/packages/lib/next-auth/guards/is-admin.ts
@@ -0,0 +1,5 @@
+import { Role, User } from '@documenso/prisma/client';
+
+const isAdmin = (user: User) => user.roles.includes(Role.ADMIN);
+
+export { isAdmin };

From 5969f148c861bbc1d3e05a68cf359542bdff481c Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Fri, 8 Sep 2023 14:51:55 +0300
Subject: [PATCH 28/83] chore: changed the cards titles

---
 apps/web/src/app/(dashboard)/admin/page.tsx | 25 +++++++++++++--------
 1 file changed, 16 insertions(+), 9 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/admin/page.tsx b/apps/web/src/app/(dashboard)/admin/page.tsx
index aabdbfa35..fdb54dc07 100644
--- a/apps/web/src/app/(dashboard)/admin/page.tsx
+++ b/apps/web/src/app/(dashboard)/admin/page.tsx
@@ -42,37 +42,37 @@ type TCardData = {
 const CARD_DATA: TCardData[] = [
   {
     icon: UserSquare2,
-    title: 'Total recipients in the database',
+    title: 'Recipients in the database',
     status: 'TOTAL_RECIPIENTS',
   },
   {
     icon: MailOpen,
-    title: 'Total recipients with opened count',
+    title: 'Opened documents',
     status: InternalReadStatus.OPENED,
   },
   {
     icon: Mail,
-    title: 'Total recipients with unopened count',
+    title: 'Unopened documents',
     status: InternalReadStatus.NOT_OPENED,
   },
   {
     icon: Send,
-    title: 'Total recipients with sent count',
+    title: 'Sent documents',
     status: InternalSendStatus.SENT,
   },
   {
     icon: Archive,
-    title: 'Total recipients with unsent count',
+    title: 'Unsent documents',
     status: InternalSendStatus.NOT_SENT,
   },
   {
     icon: PenTool,
-    title: 'Total recipients with signed count',
+    title: 'Signed documents',
     status: InternalSigningStatus.SIGNED,
   },
   {
     icon: FileX2,
-    title: 'Total recipients with unsigned count',
+    title: 'Unsigned documents',
     status: InternalSigningStatus.NOT_SIGNED,
   },
 ];
@@ -87,15 +87,22 @@ export default async function Admin() {
 
   return (
     <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
-      <h1 className="text-4xl font-semibold">Documenso instance metrics</h1>
-      <div className="mt-8 grid grid-cols-1 gap-4 md:grid-cols-3">
+      <h2 className="text-4xl font-semibold">Instance metrics</h2>
+      <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-2">
         <CardMetric icon={LucideUser} title={'Total users in the database'} value={usersCount} />
         <CardMetric
           icon={UserPlus2}
           title={'Users with an active subscription'}
           value={usersWithSubscriptionsCount}
         />
+      </div>
+      <h2 className="my-8 text-4xl font-semibold">Document metrics</h2>
+      <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-2">
         <CardMetric icon={File} title={'Total documents in the database'} value={docsCount} />
+      </div>
+
+      <h2 className="my-8 text-4xl font-semibold">Recipients metrics</h2>
+      <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-3">
         {CARD_DATA.map((card) => (
           <div key={card.status}>
             <CardMetric icon={card.icon} title={card.title} value={recipientsStats[card.status]} />

From 35acf059975e40449d6d12649bd4b18206d56d84 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Sat, 9 Sep 2023 04:38:37 +0000
Subject: [PATCH 29/83] feat: add devcontainer

---
 .devcontainer/devcontainer.json | 20 ++++++++++++++++++++
 .devcontainer/on-create.sh      | 21 +++++++++++++++++++++
 package.json                    |  2 +-
 3 files changed, 42 insertions(+), 1 deletion(-)
 create mode 100644 .devcontainer/devcontainer.json
 create mode 100755 .devcontainer/on-create.sh

diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
new file mode 100644
index 000000000..59a318b7f
--- /dev/null
+++ b/.devcontainer/devcontainer.json
@@ -0,0 +1,20 @@
+{
+	"name": "Documenso",
+	"image": "mcr.microsoft.com/devcontainers/base:bullseye",
+	"features": {
+		"ghcr.io/devcontainers/features/docker-in-docker:2": {
+			"version": "latest",
+			"enableNonRootDocker": "true",
+			"moby": "true"
+		},
+		"ghcr.io/devcontainers/features/node:1": {}
+	},
+  "onCreateCommand": "./.devcontainer/on-create.sh",
+	"forwardPorts": [
+    3000,
+    54320,
+    9000,
+    2500,
+    1100
+  ]
+}
diff --git a/.devcontainer/on-create.sh b/.devcontainer/on-create.sh
new file mode 100755
index 000000000..2d823e864
--- /dev/null
+++ b/.devcontainer/on-create.sh
@@ -0,0 +1,21 @@
+#!/usr/bin/env bash
+
+# Start the database and mailserver
+docker compose -f ./docker/compose-without-app.yml up -d
+
+# Install dependencies
+npm install
+
+# Copy the env file
+cp .env.example .env
+
+# Source the env file, export the variables
+set -a
+source .env
+set +a
+
+# Run the migrations
+npm run -w @documenso/prisma prisma:migrate-dev
+
+# Start the app
+npm run dev
diff --git a/package.json b/package.json
index b66c194a2..3b2fbf6ca 100644
--- a/package.json
+++ b/package.json
@@ -2,7 +2,7 @@
   "private": true,
   "scripts": {
     "build": "turbo run build",
-    "dev": "turbo run dev --filter=@documenso/{web,marketing}",
+    "dev": "turbo run dev --filter=@documenso/web --filter=@documenso/marketing",
     "start": "cd apps && cd web && next start",
     "lint": "turbo run lint",
     "format": "prettier --write \"**/*.{js,jsx,cjs,mjs,ts,tsx,cts,mts,mdx}\"",

From abc91f7eaccfe7459518d7c2c9f118e1fb55dacf Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Sat, 9 Sep 2023 15:44:10 +1000
Subject: [PATCH 30/83] fix: update devcontainer

---
 .devcontainer/devcontainer.json | 1 +
 .devcontainer/on-create.sh      | 3 ---
 .devcontainer/post-start.sh     | 3 +++
 3 files changed, 4 insertions(+), 3 deletions(-)
 create mode 100755 .devcontainer/post-start.sh

diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
index 59a318b7f..82c6d1e2b 100644
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -10,6 +10,7 @@
 		"ghcr.io/devcontainers/features/node:1": {}
 	},
   "onCreateCommand": "./.devcontainer/on-create.sh",
+  "postStartCommand": "./.devcontainer/post-start.sh",
 	"forwardPorts": [
     3000,
     54320,
diff --git a/.devcontainer/on-create.sh b/.devcontainer/on-create.sh
index 2d823e864..a66491ef7 100755
--- a/.devcontainer/on-create.sh
+++ b/.devcontainer/on-create.sh
@@ -16,6 +16,3 @@ set +a
 
 # Run the migrations
 npm run -w @documenso/prisma prisma:migrate-dev
-
-# Start the app
-npm run dev
diff --git a/.devcontainer/post-start.sh b/.devcontainer/post-start.sh
new file mode 100755
index 000000000..80d19dc7c
--- /dev/null
+++ b/.devcontainer/post-start.sh
@@ -0,0 +1,3 @@
+#!/usr/bin/env bash
+
+npm run dev

From 933076fa3f32641e2a75969dcd6f1ea7f020a1c4 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Sat, 9 Sep 2023 15:49:40 +1000
Subject: [PATCH 31/83] fix: update devcontainer

---
 .devcontainer/devcontainer.json | 1 -
 1 file changed, 1 deletion(-)

diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
index 82c6d1e2b..59a318b7f 100644
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -10,7 +10,6 @@
 		"ghcr.io/devcontainers/features/node:1": {}
 	},
   "onCreateCommand": "./.devcontainer/on-create.sh",
-  "postStartCommand": "./.devcontainer/post-start.sh",
 	"forwardPorts": [
     3000,
     54320,

From 9186cb4d7b220eb9e65c307fe0f7709286d0b182 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Sat, 9 Sep 2023 10:42:03 +0000
Subject: [PATCH 32/83] fix: hide popover when user selects a recipients

---
 .../primitives/document-flow/add-fields.tsx   | 83 ++++++++++---------
 packages/ui/primitives/popover.tsx            |  4 +-
 2 files changed, 49 insertions(+), 38 deletions(-)

diff --git a/packages/ui/primitives/document-flow/add-fields.tsx b/packages/ui/primitives/document-flow/add-fields.tsx
index c56e91b49..62daf803b 100644
--- a/packages/ui/primitives/document-flow/add-fields.tsx
+++ b/packages/ui/primitives/document-flow/add-fields.tsx
@@ -22,7 +22,12 @@ import {
   CommandInput,
   CommandItem,
 } from '@documenso/ui/primitives/command';
-import { Popover, PopoverContent, PopoverTrigger } from '@documenso/ui/primitives/popover';
+import {
+  Popover,
+  PopoverClose,
+  PopoverContent,
+  PopoverTrigger,
+} from '@documenso/ui/primitives/popover';
 import { Tooltip, TooltipContent, TooltipTrigger } from '@documenso/ui/primitives/tooltip';
 
 import { TAddFieldsFormSchema } from './add-fields.types';
@@ -324,7 +329,7 @@ export const AddFieldsFormPartial = ({
                 >
                   {selectedSigner?.email && (
                     <span className="flex-1 truncate text-left">
-                      {selectedSigner?.email} ({selectedSigner?.email})
+                      {selectedSigner?.name} ({selectedSigner?.email})
                     </span>
                   )}
 
@@ -345,45 +350,49 @@ export const AddFieldsFormPartial = ({
                     {recipients.map((recipient, index) => (
                       <CommandItem
                         key={index}
-                        className={cn({
-                          'text-muted-foreground': recipient.sendStatus === SendStatus.SENT,
-                        })}
+                        className="p-0"
                         onSelect={() => setSelectedSigner(recipient)}
                       >
-                        {recipient.sendStatus !== SendStatus.SENT ? (
-                          <Check
-                            aria-hidden={recipient !== selectedSigner}
-                            className={cn('mr-2 h-4 w-4 flex-shrink-0', {
-                              'opacity-0': recipient !== selectedSigner,
-                              'opacity-100': recipient === selectedSigner,
-                            })}
-                          />
-                        ) : (
-                          <Tooltip>
-                            <TooltipTrigger>
-                              <Info className="mr-2 h-4 w-4" />
-                            </TooltipTrigger>
-                            <TooltipContent className="max-w-xs">
-                              This document has already been sent to this recipient. You can no
-                              longer edit this recipient.
-                            </TooltipContent>
-                          </Tooltip>
-                        )}
+                        <PopoverClose
+                          className={cn('flex w-full px-1 py-2', {
+                            'text-muted-foreground': recipient.sendStatus === SendStatus.SENT,
+                          })}
+                        >
+                          {recipient.sendStatus !== SendStatus.SENT ? (
+                            <Check
+                              aria-hidden={recipient !== selectedSigner}
+                              className={cn('mr-2 h-4 w-4 flex-shrink-0', {
+                                'opacity-0': recipient !== selectedSigner,
+                                'opacity-100': recipient === selectedSigner,
+                              })}
+                            />
+                          ) : (
+                            <Tooltip>
+                              <TooltipTrigger>
+                                <Info className="mr-2 h-4 w-4" />
+                              </TooltipTrigger>
+                              <TooltipContent className="max-w-xs">
+                                This document has already been sent to this recipient. You can no
+                                longer edit this recipient.
+                              </TooltipContent>
+                            </Tooltip>
+                          )}
 
-                        {recipient.name && (
-                          <span
-                            className="truncate"
-                            title={`${recipient.name} (${recipient.email})`}
-                          >
-                            {recipient.name} ({recipient.email})
-                          </span>
-                        )}
+                          {recipient.name && (
+                            <span
+                              className="truncate"
+                              title={`${recipient.name} (${recipient.email})`}
+                            >
+                              {recipient.name} ({recipient.email})
+                            </span>
+                          )}
 
-                        {!recipient.name && (
-                          <span className="truncate" title={recipient.email}>
-                            {recipient.email}
-                          </span>
-                        )}
+                          {!recipient.name && (
+                            <span className="truncate" title={recipient.email}>
+                              {recipient.email}
+                            </span>
+                          )}
+                        </PopoverClose>
                       </CommandItem>
                     ))}
                   </CommandGroup>
diff --git a/packages/ui/primitives/popover.tsx b/packages/ui/primitives/popover.tsx
index e84f6cc6d..640b3087e 100644
--- a/packages/ui/primitives/popover.tsx
+++ b/packages/ui/primitives/popover.tsx
@@ -10,6 +10,8 @@ const Popover = PopoverPrimitive.Root;
 
 const PopoverTrigger = PopoverPrimitive.Trigger;
 
+const PopoverClose = PopoverPrimitive.Close;
+
 const PopoverContent = React.forwardRef<
   React.ElementRef<typeof PopoverPrimitive.Content>,
   React.ComponentPropsWithoutRef<typeof PopoverPrimitive.Content>
@@ -30,4 +32,4 @@ const PopoverContent = React.forwardRef<
 
 PopoverContent.displayName = PopoverPrimitive.Content.displayName;
 
-export { Popover, PopoverTrigger, PopoverContent };
+export { Popover, PopoverTrigger, PopoverContent, PopoverClose };

From f8a193c0f8906cf9c042ed24b06c6a15bc9bf717 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Sat, 9 Sep 2023 10:56:45 +0000
Subject: [PATCH 33/83] refactor: replace whole implementation with a state

---
 .../primitives/document-flow/add-fields.tsx   | 89 +++++++++----------
 packages/ui/primitives/popover.tsx            |  4 +-
 2 files changed, 43 insertions(+), 50 deletions(-)

diff --git a/packages/ui/primitives/document-flow/add-fields.tsx b/packages/ui/primitives/document-flow/add-fields.tsx
index 62daf803b..5de43c411 100644
--- a/packages/ui/primitives/document-flow/add-fields.tsx
+++ b/packages/ui/primitives/document-flow/add-fields.tsx
@@ -22,12 +22,7 @@ import {
   CommandInput,
   CommandItem,
 } from '@documenso/ui/primitives/command';
-import {
-  Popover,
-  PopoverClose,
-  PopoverContent,
-  PopoverTrigger,
-} from '@documenso/ui/primitives/popover';
+import { Popover, PopoverContent, PopoverTrigger } from '@documenso/ui/primitives/popover';
 import { Tooltip, TooltipContent, TooltipTrigger } from '@documenso/ui/primitives/tooltip';
 
 import { TAddFieldsFormSchema } from './add-fields.types';
@@ -107,6 +102,7 @@ export const AddFieldsFormPartial = ({
 
   const [selectedField, setSelectedField] = useState<FieldType | null>(null);
   const [selectedSigner, setSelectedSigner] = useState<Recipient | null>(null);
+  const [showRecipientsSelector, setShowRecipientsSelector] = useState(false);
 
   const hasSelectedSignerBeenSent = selectedSigner?.sendStatus === SendStatus.SENT;
 
@@ -319,7 +315,7 @@ export const AddFieldsFormPartial = ({
           ))}
 
           {!hideRecipients && (
-            <Popover>
+            <Popover open={showRecipientsSelector} onOpenChange={setShowRecipientsSelector}>
               <PopoverTrigger asChild>
                 <Button
                   type="button"
@@ -350,49 +346,48 @@ export const AddFieldsFormPartial = ({
                     {recipients.map((recipient, index) => (
                       <CommandItem
                         key={index}
-                        className="p-0"
-                        onSelect={() => setSelectedSigner(recipient)}
+                        className={cn({
+                          'text-muted-foreground': recipient.sendStatus === SendStatus.SENT,
+                        })}
+                        onSelect={() => {
+                          setSelectedSigner(recipient);
+                          setShowRecipientsSelector(false);
+                        }}
                       >
-                        <PopoverClose
-                          className={cn('flex w-full px-1 py-2', {
-                            'text-muted-foreground': recipient.sendStatus === SendStatus.SENT,
-                          })}
-                        >
-                          {recipient.sendStatus !== SendStatus.SENT ? (
-                            <Check
-                              aria-hidden={recipient !== selectedSigner}
-                              className={cn('mr-2 h-4 w-4 flex-shrink-0', {
-                                'opacity-0': recipient !== selectedSigner,
-                                'opacity-100': recipient === selectedSigner,
-                              })}
-                            />
-                          ) : (
-                            <Tooltip>
-                              <TooltipTrigger>
-                                <Info className="mr-2 h-4 w-4" />
-                              </TooltipTrigger>
-                              <TooltipContent className="max-w-xs">
-                                This document has already been sent to this recipient. You can no
-                                longer edit this recipient.
-                              </TooltipContent>
-                            </Tooltip>
-                          )}
+                        {recipient.sendStatus !== SendStatus.SENT ? (
+                          <Check
+                            aria-hidden={recipient !== selectedSigner}
+                            className={cn('mr-2 h-4 w-4 flex-shrink-0', {
+                              'opacity-0': recipient !== selectedSigner,
+                              'opacity-100': recipient === selectedSigner,
+                            })}
+                          />
+                        ) : (
+                          <Tooltip>
+                            <TooltipTrigger>
+                              <Info className="mr-2 h-4 w-4" />
+                            </TooltipTrigger>
+                            <TooltipContent className="max-w-xs">
+                              This document has already been sent to this recipient. You can no
+                              longer edit this recipient.
+                            </TooltipContent>
+                          </Tooltip>
+                        )}
 
-                          {recipient.name && (
-                            <span
-                              className="truncate"
-                              title={`${recipient.name} (${recipient.email})`}
-                            >
-                              {recipient.name} ({recipient.email})
-                            </span>
-                          )}
+                        {recipient.name && (
+                          <span
+                            className="truncate"
+                            title={`${recipient.name} (${recipient.email})`}
+                          >
+                            {recipient.name} ({recipient.email})
+                          </span>
+                        )}
 
-                          {!recipient.name && (
-                            <span className="truncate" title={recipient.email}>
-                              {recipient.email}
-                            </span>
-                          )}
-                        </PopoverClose>
+                        {!recipient.name && (
+                          <span className="truncate" title={recipient.email}>
+                            {recipient.email}
+                          </span>
+                        )}
                       </CommandItem>
                     ))}
                   </CommandGroup>
diff --git a/packages/ui/primitives/popover.tsx b/packages/ui/primitives/popover.tsx
index 640b3087e..e84f6cc6d 100644
--- a/packages/ui/primitives/popover.tsx
+++ b/packages/ui/primitives/popover.tsx
@@ -10,8 +10,6 @@ const Popover = PopoverPrimitive.Root;
 
 const PopoverTrigger = PopoverPrimitive.Trigger;
 
-const PopoverClose = PopoverPrimitive.Close;
-
 const PopoverContent = React.forwardRef<
   React.ElementRef<typeof PopoverPrimitive.Content>,
   React.ComponentPropsWithoutRef<typeof PopoverPrimitive.Content>
@@ -32,4 +30,4 @@ const PopoverContent = React.forwardRef<
 
 PopoverContent.displayName = PopoverPrimitive.Content.displayName;
 
-export { Popover, PopoverTrigger, PopoverContent, PopoverClose };
+export { Popover, PopoverTrigger, PopoverContent };

From fbf32404a6b859355e5a189d98756fc9da2a466f Mon Sep 17 00:00:00 2001
From: David Nguyen <davidngu28@gmail.com>
Date: Mon, 11 Sep 2023 16:58:41 +1000
Subject: [PATCH 34/83] feat: add avatar email fallback

---
 .../src/components/(dashboard)/avatar/stack-avatar.tsx |  4 ++--
 .../(dashboard)/avatar/stack-avatars-with-tooltip.tsx  | 10 +++++-----
 .../components/(dashboard)/avatar/stack-avatars.tsx    |  4 ++--
 .../components/(dashboard)/layout/profile-dropdown.tsx | 10 +++-------
 packages/lib/client-only/recipient-avatar-fallback.ts  |  7 +++++++
 packages/lib/client-only/recipient-initials.ts         |  2 +-
 6 files changed, 20 insertions(+), 17 deletions(-)
 create mode 100644 packages/lib/client-only/recipient-avatar-fallback.ts

diff --git a/apps/web/src/components/(dashboard)/avatar/stack-avatar.tsx b/apps/web/src/components/(dashboard)/avatar/stack-avatar.tsx
index 78814cd45..a2a81bb2a 100644
--- a/apps/web/src/components/(dashboard)/avatar/stack-avatar.tsx
+++ b/apps/web/src/components/(dashboard)/avatar/stack-avatar.tsx
@@ -15,7 +15,7 @@ export type StackAvatarProps = {
   type: 'unsigned' | 'waiting' | 'opened' | 'completed';
 };
 
-export const StackAvatar = ({ first, zIndex, fallbackText, type }: StackAvatarProps) => {
+export const StackAvatar = ({ first, zIndex, fallbackText = '', type }: StackAvatarProps) => {
   let classes = '';
   let zIndexClass = '';
   const firstClass = first ? '' : '-ml-3';
@@ -48,7 +48,7 @@ export const StackAvatar = ({ first, zIndex, fallbackText, type }: StackAvatarPr
         ${firstClass}
         dark:border-border h-10 w-10 border-2 border-solid border-white`}
     >
-      <AvatarFallback className={classes}>{fallbackText ?? 'UK'}</AvatarFallback>
+      <AvatarFallback className={classes}>{fallbackText}</AvatarFallback>
     </Avatar>
   );
 };
diff --git a/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx b/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx
index 2a053a35a..3f6407029 100644
--- a/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx
+++ b/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx
@@ -1,4 +1,4 @@
-import { initials } from '@documenso/lib/client-only/recipient-initials';
+import { recipientAvatarFallback } from '@documenso/lib/client-only/recipient-avatar-fallback';
 import { getRecipientType } from '@documenso/lib/client-only/recipient-type';
 import { Recipient } from '@documenso/prisma/client';
 import {
@@ -56,7 +56,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={initials(recipient.name)}
+                      fallbackText={recipientAvatarFallback(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
@@ -73,7 +73,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={initials(recipient.name)}
+                      fallbackText={recipientAvatarFallback(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
@@ -90,7 +90,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={initials(recipient.name)}
+                      fallbackText={recipientAvatarFallback(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
@@ -107,7 +107,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={initials(recipient.name)}
+                      fallbackText={recipientAvatarFallback(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
diff --git a/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx b/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx
index 97af9dc9e..678836ffd 100644
--- a/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx
+++ b/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx
@@ -1,6 +1,6 @@
 import React from 'react';
 
-import { initials } from '@documenso/lib/client-only/recipient-initials';
+import { recipientAvatarFallback } from '@documenso/lib/client-only/recipient-avatar-fallback';
 import { getRecipientType } from '@documenso/lib/client-only/recipient-type';
 import { Recipient } from '@documenso/prisma/client';
 
@@ -26,7 +26,7 @@ export function StackAvatars({ recipients }: { recipients: Recipient[] }) {
           first={first}
           zIndex={String(zIndex - index * 10)}
           type={lastItemText && index === 4 ? 'unsigned' : getRecipientType(recipient)}
-          fallbackText={lastItemText ? lastItemText : initials(recipient.name)}
+          fallbackText={lastItemText ? lastItemText : recipientAvatarFallback(recipient)}
         />
       );
     });
diff --git a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
index 02af86d70..e52d9b42f 100644
--- a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
+++ b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
@@ -15,6 +15,7 @@ import {
 import { signOut } from 'next-auth/react';
 import { useTheme } from 'next-themes';
 
+import { initials } from '@documenso/lib/client-only/recipient-initials';
 import { User } from '@documenso/prisma/client';
 import { Avatar, AvatarFallback } from '@documenso/ui/primitives/avatar';
 import { Button } from '@documenso/ui/primitives/button';
@@ -40,19 +41,14 @@ export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
 
   const isBillingEnabled = getFlag('app_billing');
 
-  const initials =
-    user.name
-      ?.split(' ')
-      .map((name: string) => name.slice(0, 1).toUpperCase())
-      .slice(0, 2)
-      .join('') ?? 'UK';
+  const avatarFallback = user.name ? initials(user.name) : user.email.slice(0, 1).toUpperCase();
 
   return (
     <DropdownMenu>
       <DropdownMenuTrigger asChild>
         <Button variant="ghost" className="relative h-10 w-10 rounded-full">
           <Avatar className="h-10 w-10">
-            <AvatarFallback>{initials}</AvatarFallback>
+            <AvatarFallback>{avatarFallback}</AvatarFallback>
           </Avatar>
         </Button>
       </DropdownMenuTrigger>
diff --git a/packages/lib/client-only/recipient-avatar-fallback.ts b/packages/lib/client-only/recipient-avatar-fallback.ts
new file mode 100644
index 000000000..7a296a5fa
--- /dev/null
+++ b/packages/lib/client-only/recipient-avatar-fallback.ts
@@ -0,0 +1,7 @@
+import { Recipient } from '@documenso/prisma/client';
+
+import { initials } from './recipient-initials';
+
+export const recipientAvatarFallback = (recipient: Recipient) => {
+  return initials(recipient.name) || recipient.email.slice(0, 1).toUpperCase();
+};
diff --git a/packages/lib/client-only/recipient-initials.ts b/packages/lib/client-only/recipient-initials.ts
index 0712ccd7d..403ed26e4 100644
--- a/packages/lib/client-only/recipient-initials.ts
+++ b/packages/lib/client-only/recipient-initials.ts
@@ -3,4 +3,4 @@ export const initials = (text: string) =>
     ?.split(' ')
     .map((name: string) => name.slice(0, 1).toUpperCase())
     .slice(0, 2)
-    .join('') ?? 'UK';
+    .join('');

From 24036b0f24afecdb56c659753c1a3fee7fb8040f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?fl=C5=8D?= <florent.merian@gmail.com>
Date: Tue, 22 Aug 2023 08:53:21 +0200
Subject: [PATCH 35/83] fix typo

---
 apps/marketing/content/blog/next.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/marketing/content/blog/next.mdx b/apps/marketing/content/blog/next.mdx
index 4f846a0a7..c241cf3eb 100644
--- a/apps/marketing/content/blog/next.mdx
+++ b/apps/marketing/content/blog/next.mdx
@@ -12,7 +12,7 @@ tags:
 
 Since we launched [Documenso 0.9 on Product Hunt](https://producthunt.com/products/documenso#documenso) last May, the team's been hard at work behind the scenes to ramp up development and design to deliver an excellent next version.
 
-Last week, Lucas shared the reasoning how [why we're doing a rewrite](https://documenso.com/blog/why-were-doing-a-rewrite).
+Last week, Lucas shared the reasoning on [why we're doing a rewrite](https://documenso.com/blog/why-were-doing-a-rewrite).
 
 Today, I'm pleased to share with you a preview of the next Documenso.
 

From 326743d8a1f3a2f363f5df4ebe30947cea2a476b Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Mon, 11 Sep 2023 10:59:50 +0300
Subject: [PATCH 36/83] chore: added app version

---
 apps/web/next.config.js                     |  4 +++-
 apps/web/src/app/(dashboard)/admin/page.tsx |  2 +-
 turbo.json                                  | 16 +++++-----------
 3 files changed, 9 insertions(+), 13 deletions(-)

diff --git a/apps/web/next.config.js b/apps/web/next.config.js
index 09760f806..1e98b98fc 100644
--- a/apps/web/next.config.js
+++ b/apps/web/next.config.js
@@ -18,7 +18,9 @@ const config = {
     '@documenso/ui',
     '@documenso/email',
   ],
-  env,
+  env: {
+    APP_VERSION: process.env.npm_package_version,
+  },
   modularizeImports: {
     'lucide-react': {
       transform: 'lucide-react/dist/esm/icons/{{ kebabCase member }}',
diff --git a/apps/web/src/app/(dashboard)/admin/page.tsx b/apps/web/src/app/(dashboard)/admin/page.tsx
index fdb54dc07..78358c95a 100644
--- a/apps/web/src/app/(dashboard)/admin/page.tsx
+++ b/apps/web/src/app/(dashboard)/admin/page.tsx
@@ -87,7 +87,7 @@ export default async function Admin() {
 
   return (
     <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
-      <h2 className="text-4xl font-semibold">Instance metrics</h2>
+      <h2 className="text-4xl font-semibold">Instance version: {process.env.APP_VERSION}</h2>
       <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-2">
         <CardMetric icon={LucideUser} title={'Total users in the database'} value={usersCount} />
         <CardMetric
diff --git a/turbo.json b/turbo.json
index f7d3d342c..847d4cb13 100644
--- a/turbo.json
+++ b/turbo.json
@@ -2,13 +2,8 @@
   "$schema": "https://turbo.build/schema.json",
   "pipeline": {
     "build": {
-      "dependsOn": [
-        "^build"
-      ],
-      "outputs": [
-        ".next/**",
-        "!.next/cache/**"
-      ]
+      "dependsOn": ["^build"],
+      "outputs": [".next/**", "!.next/cache/**"]
     },
     "lint": {},
     "dev": {
@@ -16,9 +11,7 @@
       "persistent": true
     }
   },
-  "globalDependencies": [
-    "**/.env.*local"
-  ],
+  "globalDependencies": ["**/.env.*local"],
   "globalEnv": [
     "NEXTAUTH_URL",
     "NEXTAUTH_SECRET",
@@ -48,6 +41,7 @@
     "NEXT_PRIVATE_SMTP_SECURE",
     "NEXT_PRIVATE_SMTP_FROM_NAME",
     "NEXT_PRIVATE_SMTP_FROM_ADDRESS",
-    "NEXT_PRIVATE_STRIPE_API_KEY"
+    "NEXT_PRIVATE_STRIPE_API_KEY",
+    "APP_VERSION"
   ]
 }

From 99706e0ed69d6384b46ee27692e844b2b932fd68 Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Mon, 11 Sep 2023 11:34:10 +0300
Subject: [PATCH 37/83] chore: fix version in nextjs config

---
 apps/web/next.config.js | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/apps/web/next.config.js b/apps/web/next.config.js
index 1e98b98fc..fa6c0d1ac 100644
--- a/apps/web/next.config.js
+++ b/apps/web/next.config.js
@@ -1,5 +1,6 @@
 /* eslint-disable @typescript-eslint/no-var-requires */
 const path = require('path');
+const { version } = require('./package.json');
 
 const { parsed: env } = require('dotenv').config({
   path: path.join(__dirname, '../../.env.local'),
@@ -19,7 +20,8 @@ const config = {
     '@documenso/email',
   ],
   env: {
-    APP_VERSION: process.env.npm_package_version,
+    ...env,
+    APP_VERSION: version,
   },
   modularizeImports: {
     'lucide-react': {

From 00574325b90e11d64f552cbd6b809acc98897ea2 Mon Sep 17 00:00:00 2001
From: Catalin Pit <catalinpit@gmail.com>
Date: Mon, 11 Sep 2023 13:43:17 +0300
Subject: [PATCH 38/83] chore: implemented feedback

---
 apps/web/src/app/(dashboard)/admin/page.tsx | 8 ++++----
 turbo.json                                  | 4 ++--
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/admin/page.tsx b/apps/web/src/app/(dashboard)/admin/page.tsx
index 78358c95a..073056478 100644
--- a/apps/web/src/app/(dashboard)/admin/page.tsx
+++ b/apps/web/src/app/(dashboard)/admin/page.tsx
@@ -3,11 +3,11 @@ import {
   File,
   FileX2,
   LucideIcon,
-  User as LucideUser,
   Mail,
   MailOpen,
   PenTool,
   Send,
+  User as UserIcon,
   UserPlus2,
   UserSquare2,
 } from 'lucide-react';
@@ -26,7 +26,7 @@ import {
 
 import { CardMetric } from '~/components/(dashboard)/metric-card/metric-card';
 
-type TCardData = {
+type CardData = {
   icon: LucideIcon;
   title: string;
   status:
@@ -39,7 +39,7 @@ type TCardData = {
     | 'NOT_SENT';
 };
 
-const CARD_DATA: TCardData[] = [
+const CARD_DATA: CardData[] = [
   {
     icon: UserSquare2,
     title: 'Recipients in the database',
@@ -89,7 +89,7 @@ export default async function Admin() {
     <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
       <h2 className="text-4xl font-semibold">Instance version: {process.env.APP_VERSION}</h2>
       <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-2">
-        <CardMetric icon={LucideUser} title={'Total users in the database'} value={usersCount} />
+        <CardMetric icon={UserIcon} title={'Total users in the database'} value={usersCount} />
         <CardMetric
           icon={UserPlus2}
           title={'Users with an active subscription'}
diff --git a/turbo.json b/turbo.json
index 847d4cb13..6dc2735e1 100644
--- a/turbo.json
+++ b/turbo.json
@@ -13,6 +13,7 @@
   },
   "globalDependencies": ["**/.env.*local"],
   "globalEnv": [
+    "APP_VERSION",
     "NEXTAUTH_URL",
     "NEXTAUTH_SECRET",
     "NEXT_PUBLIC_APP_URL",
@@ -41,7 +42,6 @@
     "NEXT_PRIVATE_SMTP_SECURE",
     "NEXT_PRIVATE_SMTP_FROM_NAME",
     "NEXT_PRIVATE_SMTP_FROM_ADDRESS",
-    "NEXT_PRIVATE_STRIPE_API_KEY",
-    "APP_VERSION"
+    "NEXT_PRIVATE_STRIPE_API_KEY"
   ]
 }

From e8b5b3b24ace0c85de5fec36fb8a7f7931e8a8de Mon Sep 17 00:00:00 2001
From: Timur Ercan <timur.ercan31@gmail.com>
Date: Mon, 11 Sep 2023 15:22:09 +0200
Subject: [PATCH 39/83] fix: update building documenso article description

---
 .../content/blog/building-documenso-pt1.mdx   | 196 +++++++++---------
 1 file changed, 98 insertions(+), 98 deletions(-)

diff --git a/apps/marketing/content/blog/building-documenso-pt1.mdx b/apps/marketing/content/blog/building-documenso-pt1.mdx
index 92c6f61ed..36e28c7dc 100644
--- a/apps/marketing/content/blog/building-documenso-pt1.mdx
+++ b/apps/marketing/content/blog/building-documenso-pt1.mdx
@@ -1,98 +1,98 @@
----
-title: 'Building Documenso — Part 1: Certificates'
-description: In today's fast-paced world, productivity and efficiency are crucial for success, both in personal and professional endeavors. We all strive to make the most of our time and energy to achieve our goals effectively. However, it's not always easy to stay on track and maintain peak performance. In this blog post, we'll explore 10 valuable tips to help you boost productivity and efficiency in your daily life.
-authorName: 'Timur Ercan'
-authorImage: '/blog/blog-author-timur.jpeg'
-authorRole: 'Co-Founder'
-date: 2023-06-23
-tags:
-  - Open Source
-  - Document Signature
-  - Certificates
-  - Signing
----
-
-<figure>
-  <MdxNextImage
-    src="/blog/blog-banner-building-documenso.webp"
-    width="1200"
-    height="675"
-    alt="Building Documenso blog banner"
-  />
-
-  <figcaption className="text-center">
-    What actually is a signature?
-  </figcaption>
-</figure>
-
-> Disclaimer: I’m not a lawyer and this isn’t legal advice. We plan to publish a much more specific framework on the topic of signature validity.
-
-This is the first installment of the new Building Documenso series, where I describe the challenges and design choices that we make while building the world’s most open signing platform.
-
-As you may have heard, we launched the community-reviewed <a href="https://github.com/documenso/documenso" target="_blank">version 0.9 of Documenso on GitHub</a> recently and it’s now available through the early adopter’s plan. One of the most fundamental choices we had to make on this first release, was the choice of certificate. While it’s interesting to know what we opted for, this shall also serve as a guide for everyone facing the same choice for self-hosting Documenso.
-
-> Question: Why do I need a document signing certificate to self-host?
->
-> Short Answer: Inserting the images of a signature into the document is only part of the signing process.
-
-To have an actual digitally signed document you need a document signing certificate that is used to create the digital signature that is inserted into the document, alongside the visible one¹.
-
-When hosting a signature service yourself, as we do, there are four main choices for handling the certificate: Not using a certificate, creating your own, buying a trusted certificate, and becoming and trusted service provider to issue your own trusted certificate.
-
-## 1\. No Certificate
-
-A lot of signing services actually don’t employ actual digital signatures besides the inserted image. The only insert and image of the signatures into the document you sign. This can be done and is legally acceptable in many cases. This option isn’t directly supported by Documenso without changing the code.
-
-## 2\. Create your own
-
-Since the cryptography behind certificates is freely available as open source you could generate your own using OpenSSL for example. Since it’s hardly more work than option 1 (using Documenso at least), this would be my minimum effort recommendation. Having a self-created (“self-signed”) certificate doesn’t add much in terms of regulation but it guarantees the document’s integrity, meaning no changes have been made after signing². What this doesn’t give you, is the famous green checkmark in Adobe Acrobat. Why? Because you aren’t on the list of providers Adobe “trusts”.³
-
-## 3\. Buy a “trusted” certificate.
-
-There are Certificate Authorities (CAs) that can sell you a certificate⁴. The service they provide is, that they validate your name (personal certificates) or your organization’s name (corporate certificate) before creating your certificate for you, just like you did in option 2. The difference is, that they are listed on the previously mentioned trust lists (e.g. Adobe’s) and thus the resulting signatures get a nice, green checkmark in Adobe Reader⁵
-
-## 4\. Becoming a Trusted Certificate Authority (CA) yourself and create your own certificate
-
-This option is an incredibly complex endeavour, requiring a lot of effort and skill. It can be done, as there are multiple CAs around the world. Is it worth the effort? That depends a lot on what you’re trying to accomplish.
-
-<center>.&nbsp;&nbsp;.&nbsp;&nbsp;.</center>
-
-## What we did
-
-Having briefly introduced the options, here is what we did: Since we aim to raise the bar on digital signature proliferation and trust, we opted to buy an “Advanced Personal Certificates for Companies/Organisations” from WiseKey. Thus, documents signed with Documenso’s hosted version look like this:
-
-<figure>
-  <MdxNextImage
-    src="/blog/blog-fig-building-documenso.webp"
-    width="1262"
-    height="481"
-    alt="Figure 1"
-  />
-
-  <figcaption className="text-center">The famous green checkmark: Signed by hosted Documenso</figcaption>
-</figure>
-
-There weren’t any deeper reasons we choose WiseKey, other than they offered what we needed and there wasn’t any reason to look much further. While I didn’t map the entire certificate market offering (yet), I’m pretty sure something similar could be found elsewhere. While we opted for option 3, choosing option 2 might be perfectly reasonable considering your use case.⁶
-
-> While this is our setup, for now, we have a bigger plan for this topic. While globally trusted SSL Certificates have been available for free, courtesy of Let’s Encrypt, for a while now, there is no such thing as document signing. And there should be. Not having free and trusted infrastructure for signing is blocking a completely new generation of signing products from being created. This is why we’ll start working on option 4 when the time is right.
-
-Do you have questions or thoughts about this? As always, let me know in the comments, on <a href="http://twitter.com/eltimuro" target="_blank">twitter.com/eltimuro</a>
-or directly: <a href="https://documen.so/timur" target="_blank">documen.so/timur</a>
-
-Join the self-hoster community here: <a href="https://documenso.slack.com/" target="_blank">https://documenso.slack.com/</a>
-
-Best from Hamburg
-
-Timur
-
-\[1\] There are different approaches to signing a document. For the sake of simplicity, here we talk about a document with X inserted signature images, that is afterward signed once the by signing service, i.e. Documenso. If each visual signature should have its own digital one (e.g. QES — eIDAS Level 3), the case is a bit more complex.
-
-\[2\] Of course, the signing service provider technically can change and resign the document, especially in the case mentioned in \[1\]. This can be countered by requiring actual digital signatures from each signer, that are bound to their identity/ account. Creating a completely trustless system in the context however is extremely hard to do and not the most pressing business need for the industry at this point, in my opinion. Though, this would be nice.
-
-\[3\] Adobe, like the EU, has a list of organizations they trust. The Adobe green checkmark is powered by the Adobe trust list, if you want to be trusted by EU standards here: <a href="https://ec.europa.eu/digital-building-blocks/DSS/webapp-demo/validation" target="_blank">https://ec.europa.eu/digital-building-blocks/DSS/webapp-demo/validation</a>, you need to be on the EU trust list. Getting on each list is possible, though the latter is much more work.
-
-\[4\] Technically, they sign your certificate creation request (created by you), containing your info with their certificate (which is trusted), making your certificate trusted. This way, everything you sign with your certificate is seen as trusted. They created their certificate just like you, the difference is they are on the lists, mentioned in \[3\]
-
-\[5\] Why does Adobe get to say, what is trusted? They simply happen to have the most used pdf viewer. And since everyone checks there, whom they consider trusted carries weight. If it should be like this, is a different matter.
-
-\[6\] Self-Signed signatures, even purely visual signatures, are fully legally binding. Why you use changes mainly your confidence in the signature and the burden of proof. Also, some industries require a certain level of signatures e.g. retail loans (QES/ eIDAS Level 3 in the EU).
+---
+title: 'Building Documenso — Part 1: Certificates'
+description: This is the first installment of the new Building Documenso series, where I describe the challenges and design choices that we make while building the world’s most open signing platform.
+authorName: 'Timur Ercan'
+authorImage: '/blog/blog-author-timur.jpeg'
+authorRole: 'Co-Founder'
+date: 2023-06-23
+tags:
+  - Open Source
+  - Document Signature
+  - Certificates
+  - Signing
+---
+
+<figure>
+  <MdxNextImage
+    src="/blog/blog-banner-building-documenso.webp"
+    width="1200"
+    height="675"
+    alt="Building Documenso blog banner"
+  />
+
+  <figcaption className="text-center">
+    What actually is a signature?
+  </figcaption>
+</figure>
+
+> Disclaimer: I’m not a lawyer and this isn’t legal advice. We plan to publish a much more specific framework on the topic of signature validity.
+
+This is the first installment of the new Building Documenso series, where I describe the challenges and design choices that we make while building the world’s most open signing platform.
+
+As you may have heard, we launched the community-reviewed <a href="https://github.com/documenso/documenso" target="_blank">version 0.9 of Documenso on GitHub</a> recently and it’s now available through the early adopter’s plan. One of the most fundamental choices we had to make on this first release, was the choice of certificate. While it’s interesting to know what we opted for, this shall also serve as a guide for everyone facing the same choice for self-hosting Documenso.
+
+> Question: Why do I need a document signing certificate to self-host?
+>
+> Short Answer: Inserting the images of a signature into the document is only part of the signing process.
+
+To have an actual digitally signed document you need a document signing certificate that is used to create the digital signature that is inserted into the document, alongside the visible one¹.
+
+When hosting a signature service yourself, as we do, there are four main choices for handling the certificate: Not using a certificate, creating your own, buying a trusted certificate, and becoming and trusted service provider to issue your own trusted certificate.
+
+## 1\. No Certificate
+
+A lot of signing services actually don’t employ actual digital signatures besides the inserted image. The only insert and image of the signatures into the document you sign. This can be done and is legally acceptable in many cases. This option isn’t directly supported by Documenso without changing the code.
+
+## 2\. Create your own
+
+Since the cryptography behind certificates is freely available as open source you could generate your own using OpenSSL for example. Since it’s hardly more work than option 1 (using Documenso at least), this would be my minimum effort recommendation. Having a self-created (“self-signed”) certificate doesn’t add much in terms of regulation but it guarantees the document’s integrity, meaning no changes have been made after signing². What this doesn’t give you, is the famous green checkmark in Adobe Acrobat. Why? Because you aren’t on the list of providers Adobe “trusts”.³
+
+## 3\. Buy a “trusted” certificate.
+
+There are Certificate Authorities (CAs) that can sell you a certificate⁴. The service they provide is, that they validate your name (personal certificates) or your organization’s name (corporate certificate) before creating your certificate for you, just like you did in option 2. The difference is, that they are listed on the previously mentioned trust lists (e.g. Adobe’s) and thus the resulting signatures get a nice, green checkmark in Adobe Reader⁵
+
+## 4\. Becoming a Trusted Certificate Authority (CA) yourself and create your own certificate
+
+This option is an incredibly complex endeavour, requiring a lot of effort and skill. It can be done, as there are multiple CAs around the world. Is it worth the effort? That depends a lot on what you’re trying to accomplish.
+
+<center>.&nbsp;&nbsp;.&nbsp;&nbsp;.</center>
+
+## What we did
+
+Having briefly introduced the options, here is what we did: Since we aim to raise the bar on digital signature proliferation and trust, we opted to buy an “Advanced Personal Certificates for Companies/Organisations” from WiseKey. Thus, documents signed with Documenso’s hosted version look like this:
+
+<figure>
+  <MdxNextImage
+    src="/blog/blog-fig-building-documenso.webp"
+    width="1262"
+    height="481"
+    alt="Figure 1"
+  />
+
+  <figcaption className="text-center">The famous green checkmark: Signed by hosted Documenso</figcaption>
+</figure>
+
+There weren’t any deeper reasons we choose WiseKey, other than they offered what we needed and there wasn’t any reason to look much further. While I didn’t map the entire certificate market offering (yet), I’m pretty sure something similar could be found elsewhere. While we opted for option 3, choosing option 2 might be perfectly reasonable considering your use case.⁶
+
+> While this is our setup, for now, we have a bigger plan for this topic. While globally trusted SSL Certificates have been available for free, courtesy of Let’s Encrypt, for a while now, there is no such thing as document signing. And there should be. Not having free and trusted infrastructure for signing is blocking a completely new generation of signing products from being created. This is why we’ll start working on option 4 when the time is right.
+
+Do you have questions or thoughts about this? As always, let me know in the comments, on <a href="http://twitter.com/eltimuro" target="_blank">twitter.com/eltimuro</a>
+or directly: <a href="https://documen.so/timur" target="_blank">documen.so/timur</a>
+
+Join the self-hoster community here: <a href="https://documenso.slack.com/" target="_blank">https://documenso.slack.com/</a>
+
+Best from Hamburg
+
+Timur
+
+\[1\] There are different approaches to signing a document. For the sake of simplicity, here we talk about a document with X inserted signature images, that is afterward signed once the by signing service, i.e. Documenso. If each visual signature should have its own digital one (e.g. QES — eIDAS Level 3), the case is a bit more complex.
+
+\[2\] Of course, the signing service provider technically can change and resign the document, especially in the case mentioned in \[1\]. This can be countered by requiring actual digital signatures from each signer, that are bound to their identity/ account. Creating a completely trustless system in the context however is extremely hard to do and not the most pressing business need for the industry at this point, in my opinion. Though, this would be nice.
+
+\[3\] Adobe, like the EU, has a list of organizations they trust. The Adobe green checkmark is powered by the Adobe trust list, if you want to be trusted by EU standards here: <a href="https://ec.europa.eu/digital-building-blocks/DSS/webapp-demo/validation" target="_blank">https://ec.europa.eu/digital-building-blocks/DSS/webapp-demo/validation</a>, you need to be on the EU trust list. Getting on each list is possible, though the latter is much more work.
+
+\[4\] Technically, they sign your certificate creation request (created by you), containing your info with their certificate (which is trusted), making your certificate trusted. This way, everything you sign with your certificate is seen as trusted. They created their certificate just like you, the difference is they are on the lists, mentioned in \[3\]
+
+\[5\] Why does Adobe get to say, what is trusted? They simply happen to have the most used pdf viewer. And since everyone checks there, whom they consider trusted carries weight. If it should be like this, is a different matter.
+
+\[6\] Self-Signed signatures, even purely visual signatures, are fully legally binding. Why you use changes mainly your confidence in the signature and the burden of proof. Also, some industries require a certain level of signatures e.g. retail loans (QES/ eIDAS Level 3 in the EU).

From db3f75c42f244734786a87b0721abba70f3f2d9f Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 12 Sep 2023 10:37:47 +1000
Subject: [PATCH 40/83] fix: data table links for recipients

---
 .../documents/data-table-title.tsx            | 56 +++++++++++++++++++
 .../app/(dashboard)/documents/data-table.tsx  | 19 +++----
 2 files changed, 64 insertions(+), 11 deletions(-)
 create mode 100644 apps/web/src/app/(dashboard)/documents/data-table-title.tsx

diff --git a/apps/web/src/app/(dashboard)/documents/data-table-title.tsx b/apps/web/src/app/(dashboard)/documents/data-table-title.tsx
new file mode 100644
index 000000000..c04f9f13d
--- /dev/null
+++ b/apps/web/src/app/(dashboard)/documents/data-table-title.tsx
@@ -0,0 +1,56 @@
+'use client';
+
+import Link from 'next/link';
+
+import { useSession } from 'next-auth/react';
+import { match } from 'ts-pattern';
+
+import { Document, Recipient, User } from '@documenso/prisma/client';
+
+export type DataTableTitleProps = {
+  row: Document & {
+    User: Pick<User, 'id' | 'name' | 'email'>;
+    Recipient: Recipient[];
+  };
+};
+
+export const DataTableTitle = ({ row }: DataTableTitleProps) => {
+  const { data: session } = useSession();
+
+  if (!session) {
+    return null;
+  }
+
+  const recipient = row.Recipient.find((recipient) => recipient.email === session.user.email);
+
+  const isOwner = row.User.id === session.user.id;
+  const isRecipient = !!recipient;
+
+  return match({
+    isOwner,
+    isRecipient,
+  })
+    .with({ isOwner: true }, () => (
+      <Link
+        href={`/documents/${row.id}`}
+        title={row.title}
+        className="block max-w-[10rem] truncate font-medium hover:underline md:max-w-[20rem]"
+      >
+        {row.title}
+      </Link>
+    ))
+    .with({ isRecipient: true }, () => (
+      <Link
+        href={`/sign/${recipient?.token}`}
+        title={row.title}
+        className="block max-w-[10rem] truncate font-medium hover:underline md:max-w-[20rem]"
+      >
+        {row.title}
+      </Link>
+    ))
+    .otherwise(() => (
+      <span className="block max-w-[10rem] truncate font-medium hover:underline md:max-w-[20rem]">
+        {row.title}
+      </span>
+    ));
+};
diff --git a/apps/web/src/app/(dashboard)/documents/data-table.tsx b/apps/web/src/app/(dashboard)/documents/data-table.tsx
index 1d6c08e73..245734a8e 100644
--- a/apps/web/src/app/(dashboard)/documents/data-table.tsx
+++ b/apps/web/src/app/(dashboard)/documents/data-table.tsx
@@ -2,9 +2,8 @@
 
 import { useTransition } from 'react';
 
-import Link from 'next/link';
-
 import { Loader } from 'lucide-react';
+import { useSession } from 'next-auth/react';
 
 import { useUpdateSearchParams } from '@documenso/lib/client-only/hooks/use-update-search-params';
 import { FindResultSet } from '@documenso/lib/types/find-result-set';
@@ -18,6 +17,7 @@ import { LocaleDate } from '~/components/formatter/locale-date';
 
 import { DataTableActionButton } from './data-table-action-button';
 import { DataTableActionDropdown } from './data-table-action-dropdown';
+import { DataTableTitle } from './data-table-title';
 
 export type DocumentsDataTableProps = {
   results: FindResultSet<
@@ -29,6 +29,7 @@ export type DocumentsDataTableProps = {
 };
 
 export const DocumentsDataTable = ({ results }: DocumentsDataTableProps) => {
+  const { data: session } = useSession();
   const [isPending, startTransition] = useTransition();
 
   const updateSearchParams = useUpdateSearchParams();
@@ -42,6 +43,10 @@ export const DocumentsDataTable = ({ results }: DocumentsDataTableProps) => {
     });
   };
 
+  if (!session) {
+    return null;
+  }
+
   return (
     <div className="relative">
       <DataTable
@@ -52,15 +57,7 @@ export const DocumentsDataTable = ({ results }: DocumentsDataTableProps) => {
           },
           {
             header: 'Title',
-            cell: ({ row }) => (
-              <Link
-                href={`/documents/${row.original.id}`}
-                title={row.original.title}
-                className="block max-w-[10rem] truncate font-medium hover:underline md:max-w-[20rem]"
-              >
-                {row.original.title}
-              </Link>
-            ),
+            cell: ({ row }) => <DataTableTitle row={row.original} />,
           },
           {
             header: 'Recipient',

From e8796a7d86cdf9be56da6fc8b88cb12360b506ab Mon Sep 17 00:00:00 2001
From: David Nguyen <davidngu28@gmail.com>
Date: Tue, 12 Sep 2023 12:33:04 +1000
Subject: [PATCH 41/83] refactor: organise recipient utils

---
 .../avatar/stack-avatars-with-tooltip.tsx            | 10 +++++-----
 .../components/(dashboard)/avatar/stack-avatars.tsx  |  4 ++--
 .../(dashboard)/layout/profile-dropdown.tsx          |  6 ++++--
 .../lib/client-only/recipient-avatar-fallback.ts     |  7 -------
 packages/lib/client-only/recipient-initials.ts       |  6 ------
 packages/lib/utils/recipient-formatter.ts            | 12 ++++++++++++
 6 files changed, 23 insertions(+), 22 deletions(-)
 delete mode 100644 packages/lib/client-only/recipient-avatar-fallback.ts
 delete mode 100644 packages/lib/client-only/recipient-initials.ts
 create mode 100644 packages/lib/utils/recipient-formatter.ts

diff --git a/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx b/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx
index 3f6407029..e36415813 100644
--- a/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx
+++ b/apps/web/src/components/(dashboard)/avatar/stack-avatars-with-tooltip.tsx
@@ -1,5 +1,5 @@
-import { recipientAvatarFallback } from '@documenso/lib/client-only/recipient-avatar-fallback';
 import { getRecipientType } from '@documenso/lib/client-only/recipient-type';
+import { recipientAbbreviation } from '@documenso/lib/utils/recipient-formatter';
 import { Recipient } from '@documenso/prisma/client';
 import {
   Tooltip,
@@ -56,7 +56,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={recipientAvatarFallback(recipient)}
+                      fallbackText={recipientAbbreviation(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
@@ -73,7 +73,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={recipientAvatarFallback(recipient)}
+                      fallbackText={recipientAbbreviation(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
@@ -90,7 +90,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={recipientAvatarFallback(recipient)}
+                      fallbackText={recipientAbbreviation(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
@@ -107,7 +107,7 @@ export const StackAvatarsWithTooltip = ({
                       first={true}
                       key={recipient.id}
                       type={getRecipientType(recipient)}
-                      fallbackText={recipientAvatarFallback(recipient)}
+                      fallbackText={recipientAbbreviation(recipient)}
                     />
                     <span className="text-sm text-gray-500">{recipient.email}</span>
                   </div>
diff --git a/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx b/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx
index 678836ffd..91f470f74 100644
--- a/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx
+++ b/apps/web/src/components/(dashboard)/avatar/stack-avatars.tsx
@@ -1,7 +1,7 @@
 import React from 'react';
 
-import { recipientAvatarFallback } from '@documenso/lib/client-only/recipient-avatar-fallback';
 import { getRecipientType } from '@documenso/lib/client-only/recipient-type';
+import { recipientAbbreviation } from '@documenso/lib/utils/recipient-formatter';
 import { Recipient } from '@documenso/prisma/client';
 
 import { StackAvatar } from './stack-avatar';
@@ -26,7 +26,7 @@ export function StackAvatars({ recipients }: { recipients: Recipient[] }) {
           first={first}
           zIndex={String(zIndex - index * 10)}
           type={lastItemText && index === 4 ? 'unsigned' : getRecipientType(recipient)}
-          fallbackText={lastItemText ? lastItemText : recipientAvatarFallback(recipient)}
+          fallbackText={lastItemText ? lastItemText : recipientAbbreviation(recipient)}
         />
       );
     });
diff --git a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
index e52d9b42f..3b361e885 100644
--- a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
+++ b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
@@ -15,7 +15,7 @@ import {
 import { signOut } from 'next-auth/react';
 import { useTheme } from 'next-themes';
 
-import { initials } from '@documenso/lib/client-only/recipient-initials';
+import { recipientInitials } from '@documenso/lib/utils/recipient-formatter';
 import { User } from '@documenso/prisma/client';
 import { Avatar, AvatarFallback } from '@documenso/ui/primitives/avatar';
 import { Button } from '@documenso/ui/primitives/button';
@@ -41,7 +41,9 @@ export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
 
   const isBillingEnabled = getFlag('app_billing');
 
-  const avatarFallback = user.name ? initials(user.name) : user.email.slice(0, 1).toUpperCase();
+  const avatarFallback = user.name
+    ? recipientInitials(user.name)
+    : user.email.slice(0, 1).toUpperCase();
 
   return (
     <DropdownMenu>
diff --git a/packages/lib/client-only/recipient-avatar-fallback.ts b/packages/lib/client-only/recipient-avatar-fallback.ts
deleted file mode 100644
index 7a296a5fa..000000000
--- a/packages/lib/client-only/recipient-avatar-fallback.ts
+++ /dev/null
@@ -1,7 +0,0 @@
-import { Recipient } from '@documenso/prisma/client';
-
-import { initials } from './recipient-initials';
-
-export const recipientAvatarFallback = (recipient: Recipient) => {
-  return initials(recipient.name) || recipient.email.slice(0, 1).toUpperCase();
-};
diff --git a/packages/lib/client-only/recipient-initials.ts b/packages/lib/client-only/recipient-initials.ts
deleted file mode 100644
index 403ed26e4..000000000
--- a/packages/lib/client-only/recipient-initials.ts
+++ /dev/null
@@ -1,6 +0,0 @@
-export const initials = (text: string) =>
-  text
-    ?.split(' ')
-    .map((name: string) => name.slice(0, 1).toUpperCase())
-    .slice(0, 2)
-    .join('');
diff --git a/packages/lib/utils/recipient-formatter.ts b/packages/lib/utils/recipient-formatter.ts
new file mode 100644
index 000000000..da404830b
--- /dev/null
+++ b/packages/lib/utils/recipient-formatter.ts
@@ -0,0 +1,12 @@
+import { Recipient } from '@documenso/prisma/client';
+
+export const recipientInitials = (text: string) =>
+  text
+    .split(' ')
+    .map((name: string) => name.slice(0, 1).toUpperCase())
+    .slice(0, 2)
+    .join('');
+
+export const recipientAbbreviation = (recipient: Recipient) => {
+  return recipientInitials(recipient.name) || recipient.email.slice(0, 1).toUpperCase();
+};

From 24a2e9e6d4fb254a03a6f300996b3518678e68ee Mon Sep 17 00:00:00 2001
From: David Nguyen <davidngu28@gmail.com>
Date: Tue, 12 Sep 2023 14:29:27 +1000
Subject: [PATCH 42/83] feat: update document table layout (#371)

* feat: update document table layout

- Removed dashboard page
- Removed redundant ID column
- Moved date to first column
- Added estimated locales for SSR dates
---
 .../src/app/(dashboard)/dashboard/page.tsx    | 124 ------------------
 .../documents/[id]/edit-document.tsx          |   2 +-
 .../app/(dashboard)/documents/data-table.tsx  |  12 +-
 .../src/app/(dashboard)/documents/page.tsx    |   3 +-
 .../upload-document.tsx                       |   0
 apps/web/src/app/layout.tsx                   |  26 ++--
 .../src/components/formatter/locale-date.tsx  |  23 +++-
 apps/web/src/components/forms/signin.tsx      |  16 +--
 packages/lib/client-only/providers/locale.tsx |  37 ++++++
 .../ui/primitives/data-table-pagination.tsx   |  33 ++++-
 10 files changed, 117 insertions(+), 159 deletions(-)
 delete mode 100644 apps/web/src/app/(dashboard)/dashboard/page.tsx
 rename apps/web/src/app/(dashboard)/{dashboard => documents}/upload-document.tsx (100%)
 create mode 100644 packages/lib/client-only/providers/locale.tsx

diff --git a/apps/web/src/app/(dashboard)/dashboard/page.tsx b/apps/web/src/app/(dashboard)/dashboard/page.tsx
deleted file mode 100644
index 77b18b98c..000000000
--- a/apps/web/src/app/(dashboard)/dashboard/page.tsx
+++ /dev/null
@@ -1,124 +0,0 @@
-import Link from 'next/link';
-
-import { Clock, File, FileCheck } from 'lucide-react';
-
-import { getRequiredServerComponentSession } from '@documenso/lib/next-auth/get-server-session';
-import { findDocuments } from '@documenso/lib/server-only/document/find-documents';
-import { getStats } from '@documenso/lib/server-only/document/get-stats';
-import { DocumentStatus as InternalDocumentStatus } from '@documenso/prisma/client';
-import {
-  Table,
-  TableBody,
-  TableCell,
-  TableHead,
-  TableHeader,
-  TableRow,
-} from '@documenso/ui/primitives/table';
-
-import { StackAvatarsWithTooltip } from '~/components/(dashboard)/avatar/stack-avatars-with-tooltip';
-import { CardMetric } from '~/components/(dashboard)/metric-card/metric-card';
-import { DocumentStatus } from '~/components/formatter/document-status';
-import { LocaleDate } from '~/components/formatter/locale-date';
-
-import { UploadDocument } from './upload-document';
-
-const CARD_DATA = [
-  {
-    icon: FileCheck,
-    title: 'Completed',
-    status: InternalDocumentStatus.COMPLETED,
-  },
-  {
-    icon: File,
-    title: 'Drafts',
-    status: InternalDocumentStatus.DRAFT,
-  },
-  {
-    icon: Clock,
-    title: 'Pending',
-    status: InternalDocumentStatus.PENDING,
-  },
-];
-
-export default async function DashboardPage() {
-  const user = await getRequiredServerComponentSession();
-
-  const [stats, results] = await Promise.all([
-    getStats({
-      user,
-    }),
-    findDocuments({
-      userId: user.id,
-      perPage: 10,
-    }),
-  ]);
-
-  return (
-    <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
-      <h1 className="text-4xl font-semibold">Dashboard</h1>
-
-      <div className="mt-8 grid grid-cols-1 gap-4 md:grid-cols-3">
-        {CARD_DATA.map((card) => (
-          <Link key={card.status} href={`/documents?status=${card.status}`}>
-            <CardMetric icon={card.icon} title={card.title} value={stats[card.status]} />
-          </Link>
-        ))}
-      </div>
-
-      <div className="mt-12">
-        <UploadDocument />
-
-        <h2 className="mt-8 text-2xl font-semibold">Recent Documents</h2>
-
-        <div className="border-border mt-8 overflow-x-auto rounded-lg border">
-          <Table>
-            <TableHeader>
-              <TableRow>
-                <TableHead className="w-[100px]">ID</TableHead>
-                <TableHead>Title</TableHead>
-                <TableHead>Reciepient</TableHead>
-                <TableHead>Status</TableHead>
-                <TableHead className="text-right">Created</TableHead>
-              </TableRow>
-            </TableHeader>
-            <TableBody>
-              {results.data.map((document) => {
-                return (
-                  <TableRow key={document.id}>
-                    <TableCell className="font-medium">{document.id}</TableCell>
-                    <TableCell>
-                      <Link
-                        href={`/documents/${document.id}`}
-                        className="focus-visible:ring-ring ring-offset-background rounded-md font-medium hover:underline focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-offset-2"
-                      >
-                        {document.title}
-                      </Link>
-                    </TableCell>
-
-                    <TableCell>
-                      <StackAvatarsWithTooltip recipients={document.Recipient} />
-                    </TableCell>
-
-                    <TableCell>
-                      <DocumentStatus status={document.status} />
-                    </TableCell>
-                    <TableCell className="text-right">
-                      <LocaleDate date={document.created} />
-                    </TableCell>
-                  </TableRow>
-                );
-              })}
-              {results.data.length === 0 && (
-                <TableRow>
-                  <TableCell colSpan={4} className="h-24 text-center">
-                    No results.
-                  </TableCell>
-                </TableRow>
-              )}
-            </TableBody>
-          </Table>
-        </div>
-      </div>
-    </div>
-  );
-}
diff --git a/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx b/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
index 7ed28feca..ba134ac58 100644
--- a/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
@@ -136,7 +136,7 @@ export const EditDocumentForm = ({
         duration: 5000,
       });
 
-      router.push('/dashboard');
+      router.push('/documents');
     } catch (err) {
       console.error(err);
 
diff --git a/apps/web/src/app/(dashboard)/documents/data-table.tsx b/apps/web/src/app/(dashboard)/documents/data-table.tsx
index 245734a8e..b8c735b59 100644
--- a/apps/web/src/app/(dashboard)/documents/data-table.tsx
+++ b/apps/web/src/app/(dashboard)/documents/data-table.tsx
@@ -52,8 +52,9 @@ export const DocumentsDataTable = ({ results }: DocumentsDataTableProps) => {
       <DataTable
         columns={[
           {
-            header: 'ID',
-            accessorKey: 'id',
+            header: 'Created',
+            accessorKey: 'created',
+            cell: ({ row }) => <LocaleDate date={row.getValue('created')} />,
           },
           {
             header: 'Title',
@@ -71,11 +72,6 @@ export const DocumentsDataTable = ({ results }: DocumentsDataTableProps) => {
             accessorKey: 'status',
             cell: ({ row }) => <DocumentStatus status={row.getValue('status')} />,
           },
-          {
-            header: 'Created',
-            accessorKey: 'created',
-            cell: ({ row }) => <LocaleDate date={row.getValue('created')} />,
-          },
           {
             header: 'Actions',
             cell: ({ row }) => (
@@ -92,7 +88,7 @@ export const DocumentsDataTable = ({ results }: DocumentsDataTableProps) => {
         totalPages={results.totalPages}
         onPaginationChange={onPaginationChange}
       >
-        {(table) => <DataTablePagination table={table} />}
+        {(table) => <DataTablePagination additionalInformation="VisibleCount" table={table} />}
       </DataTable>
 
       {isPending && (
diff --git a/apps/web/src/app/(dashboard)/documents/page.tsx b/apps/web/src/app/(dashboard)/documents/page.tsx
index 4ea55936b..d1f558806 100644
--- a/apps/web/src/app/(dashboard)/documents/page.tsx
+++ b/apps/web/src/app/(dashboard)/documents/page.tsx
@@ -11,8 +11,8 @@ import { PeriodSelector } from '~/components/(dashboard)/period-selector/period-
 import { PeriodSelectorValue } from '~/components/(dashboard)/period-selector/types';
 import { DocumentStatus } from '~/components/formatter/document-status';
 
-import { UploadDocument } from '../dashboard/upload-document';
 import { DocumentsDataTable } from './data-table';
+import { UploadDocument } from './upload-document';
 
 export type DocumentsPageProps = {
   searchParams?: {
@@ -81,6 +81,7 @@ export default async function DocumentsPage({ searchParams = {} }: DocumentsPage
                   {value !== ExtendedDocumentStatus.ALL && (
                     <span className="ml-1 hidden opacity-50 md:inline-block">
                       {Math.min(stats[value], 99)}
+                      {stats[value] > 99 && '+'}
                     </span>
                   )}
                 </Link>
diff --git a/apps/web/src/app/(dashboard)/dashboard/upload-document.tsx b/apps/web/src/app/(dashboard)/documents/upload-document.tsx
similarity index 100%
rename from apps/web/src/app/(dashboard)/dashboard/upload-document.tsx
rename to apps/web/src/app/(dashboard)/documents/upload-document.tsx
diff --git a/apps/web/src/app/layout.tsx b/apps/web/src/app/layout.tsx
index 1d1e056ae..2ce8744d4 100644
--- a/apps/web/src/app/layout.tsx
+++ b/apps/web/src/app/layout.tsx
@@ -2,6 +2,8 @@ import { Suspense } from 'react';
 
 import { Caveat, Inter } from 'next/font/google';
 
+import { LocaleProvider } from '@documenso/lib/client-only/providers/locale';
+import { getLocale } from '@documenso/lib/server-only/headers/get-locale';
 import { TrpcProvider } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Toaster } from '@documenso/ui/primitives/toaster';
@@ -45,6 +47,8 @@ export const metadata = {
 export default async function RootLayout({ children }: { children: React.ReactNode }) {
   const flags = await getServerComponentAllFlags();
 
+  const locale = getLocale();
+
   return (
     <html
       lang="en"
@@ -63,16 +67,18 @@ export default async function RootLayout({ children }: { children: React.ReactNo
       </Suspense>
 
       <body>
-        <FeatureFlagProvider initialFlags={flags}>
-          <PlausibleProvider>
-            <ThemeProvider attribute="class" defaultTheme="system" enableSystem>
-              <TooltipProvider>
-                <TrpcProvider>{children}</TrpcProvider>
-              </TooltipProvider>
-            </ThemeProvider>
-          </PlausibleProvider>
-          <Toaster />
-        </FeatureFlagProvider>
+        <LocaleProvider locale={locale}>
+          <FeatureFlagProvider initialFlags={flags}>
+            <PlausibleProvider>
+              <ThemeProvider attribute="class" defaultTheme="system" enableSystem>
+                <TooltipProvider>
+                  <TrpcProvider>{children}</TrpcProvider>
+                </TooltipProvider>
+              </ThemeProvider>
+            </PlausibleProvider>
+            <Toaster />
+          </FeatureFlagProvider>
+        </LocaleProvider>
       </body>
     </html>
   );
diff --git a/apps/web/src/components/formatter/locale-date.tsx b/apps/web/src/components/formatter/locale-date.tsx
index 837c6aa38..ecefb1e3b 100644
--- a/apps/web/src/components/formatter/locale-date.tsx
+++ b/apps/web/src/components/formatter/locale-date.tsx
@@ -2,16 +2,31 @@
 
 import { HTMLAttributes, useEffect, useState } from 'react';
 
+import { DateTime, DateTimeFormatOptions } from 'luxon';
+
+import { useLocale } from '@documenso/lib/client-only/providers/locale';
+
 export type LocaleDateProps = HTMLAttributes<HTMLSpanElement> & {
   date: string | number | Date;
+  format?: DateTimeFormatOptions;
 };
 
-export const LocaleDate = ({ className, date, ...props }: LocaleDateProps) => {
-  const [localeDate, setLocaleDate] = useState(() => new Date(date).toISOString());
+/**
+ * Formats the date based on the user locale.
+ *
+ * Will use the estimated locale from the user headers on SSR, then will use
+ * the client browser locale once mounted.
+ */
+export const LocaleDate = ({ className, date, format, ...props }: LocaleDateProps) => {
+  const { locale } = useLocale();
+
+  const [localeDate, setLocaleDate] = useState(() =>
+    DateTime.fromJSDate(new Date(date)).setLocale(locale).toLocaleString(format),
+  );
 
   useEffect(() => {
-    setLocaleDate(new Date(date).toLocaleString());
-  }, [date]);
+    setLocaleDate(DateTime.fromJSDate(new Date(date)).toLocaleString(format));
+  }, [date, format]);
 
   return (
     <span className={className} {...props}>
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 5e44146ea..d9d727afc 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -18,13 +18,15 @@ import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
 import { useToast } from '@documenso/ui/primitives/use-toast';
 
-const ErrorMessages = {
+const ERROR_MESSAGES = {
   [ErrorCode.CREDENTIALS_NOT_FOUND]: 'The email or password provided is incorrect',
   [ErrorCode.INCORRECT_EMAIL_PASSWORD]: 'The email or password provided is incorrect',
   [ErrorCode.USER_MISSING_PASSWORD]:
     'This account appears to be using a social login method, please sign in using that method',
 };
 
+const LOGIN_REDIRECT_PATH = '/documents';
+
 export const ZSignInFormSchema = z.object({
   email: z.string().email().min(1),
   password: z.string().min(6).max(72),
@@ -37,9 +39,10 @@ export type SignInFormProps = {
 };
 
 export const SignInForm = ({ className }: SignInFormProps) => {
-  const { toast } = useToast();
   const searchParams = useSearchParams();
 
+  const { toast } = useToast();
+
   const {
     register,
     handleSubmit,
@@ -61,7 +64,7 @@ export const SignInForm = ({ className }: SignInFormProps) => {
       timeout = setTimeout(() => {
         toast({
           variant: 'destructive',
-          description: ErrorMessages[errorCode] ?? 'An unknown error occurred',
+          description: ERROR_MESSAGES[errorCode] ?? 'An unknown error occurred',
         });
       }, 0);
     }
@@ -78,12 +81,10 @@ export const SignInForm = ({ className }: SignInFormProps) => {
       await signIn('credentials', {
         email,
         password,
-        callbackUrl: '/documents',
+        callbackUrl: LOGIN_REDIRECT_PATH,
       }).catch((err) => {
         console.error(err);
       });
-
-      // throw new Error('Not implemented');
     } catch (err) {
       toast({
         title: 'An unknown error occurred',
@@ -95,8 +96,7 @@ export const SignInForm = ({ className }: SignInFormProps) => {
 
   const onSignInWithGoogleClick = async () => {
     try {
-      await signIn('google', { callbackUrl: '/dashboard' });
-      // throw new Error('Not implemented');
+      await signIn('google', { callbackUrl: LOGIN_REDIRECT_PATH });
     } catch (err) {
       toast({
         title: 'An unknown error occurred',
diff --git a/packages/lib/client-only/providers/locale.tsx b/packages/lib/client-only/providers/locale.tsx
new file mode 100644
index 000000000..ff8b03e5a
--- /dev/null
+++ b/packages/lib/client-only/providers/locale.tsx
@@ -0,0 +1,37 @@
+'use client';
+
+import { createContext, useContext } from 'react';
+
+export type LocaleContextValue = {
+  locale: string;
+};
+
+export const LocaleContext = createContext<LocaleContextValue | null>(null);
+
+export const useLocale = () => {
+  const context = useContext(LocaleContext);
+
+  if (!context) {
+    throw new Error('useLocale must be used within a LocaleProvider');
+  }
+
+  return context;
+};
+
+export function LocaleProvider({
+  children,
+  locale,
+}: {
+  children: React.ReactNode;
+  locale: string;
+}) {
+  return (
+    <LocaleContext.Provider
+      value={{
+        locale: locale,
+      }}
+    >
+      {children}
+    </LocaleContext.Provider>
+  );
+}
diff --git a/packages/ui/primitives/data-table-pagination.tsx b/packages/ui/primitives/data-table-pagination.tsx
index 0ff27ae11..8147c92fb 100644
--- a/packages/ui/primitives/data-table-pagination.tsx
+++ b/packages/ui/primitives/data-table-pagination.tsx
@@ -1,19 +1,46 @@
 import { Table } from '@tanstack/react-table';
 import { ChevronLeft, ChevronRight, ChevronsLeft, ChevronsRight } from 'lucide-react';
+import { match } from 'ts-pattern';
 
 import { Button } from './button';
 import { Select, SelectContent, SelectItem, SelectTrigger, SelectValue } from './select';
 
 interface DataTablePaginationProps<TData> {
   table: Table<TData>;
+
+  /**
+   * The type of information to show on the left hand side of the pagination.
+   *
+   * Defaults to 'VisibleCount'.
+   */
+  additionalInformation?: 'SelectedCount' | 'VisibleCount' | 'None';
 }
 
-export function DataTablePagination<TData>({ table }: DataTablePaginationProps<TData>) {
+export function DataTablePagination<TData>({
+  table,
+  additionalInformation = 'VisibleCount',
+}: DataTablePaginationProps<TData>) {
   return (
     <div className="flex flex-wrap items-center justify-between gap-x-4 gap-y-4 px-2">
       <div className="text-muted-foreground flex-1 text-sm">
-        {table.getFilteredSelectedRowModel().rows.length} of{' '}
-        {table.getFilteredRowModel().rows.length} row(s) selected.
+        {match(additionalInformation)
+          .with('SelectedCount', () => (
+            <span>
+              {table.getFilteredSelectedRowModel().rows.length} of{' '}
+              {table.getFilteredRowModel().rows.length} row(s) selected.
+            </span>
+          ))
+          .with('VisibleCount', () => {
+            const visibleRows = table.getFilteredRowModel().rows.length;
+
+            return (
+              <span>
+                Showing {visibleRows} result{visibleRows > 1 && 's'}.
+              </span>
+            );
+          })
+          .with('None', () => null)
+          .exhaustive()}
       </div>
 
       <div className="flex items-center gap-x-2">

From 581f08c59bf1d39bffb499f746b7942b7a9674c3 Mon Sep 17 00:00:00 2001
From: Lucas Smith <me@lucasjamessmith.me>
Date: Tue, 12 Sep 2023 07:25:44 +0000
Subject: [PATCH 43/83] fix: update layout and wording

---
 apps/web/src/app/(dashboard)/admin/layout.tsx |  28 ++---
 apps/web/src/app/(dashboard)/admin/nav.tsx    |  47 +++++++
 apps/web/src/app/(dashboard)/admin/page.tsx   | 115 +-----------------
 .../src/app/(dashboard)/admin/stats/page.tsx  |  75 ++++++++++++
 .../(dashboard)/layout/profile-dropdown.tsx   |  22 ++--
 .../(dashboard)/metric-card/metric-card.tsx   |   6 +-
 .../server-only/admin/get-documents-stats.ts  |  25 +++-
 7 files changed, 176 insertions(+), 142 deletions(-)
 create mode 100644 apps/web/src/app/(dashboard)/admin/nav.tsx
 create mode 100644 apps/web/src/app/(dashboard)/admin/stats/page.tsx

diff --git a/apps/web/src/app/(dashboard)/admin/layout.tsx b/apps/web/src/app/(dashboard)/admin/layout.tsx
index a221d92ba..a04c7b693 100644
--- a/apps/web/src/app/(dashboard)/admin/layout.tsx
+++ b/apps/web/src/app/(dashboard)/admin/layout.tsx
@@ -1,23 +1,19 @@
-import { redirect } from 'next/navigation';
+import React from 'react';
 
-import { getRequiredServerComponentSession } from '@documenso/lib/next-auth/get-server-session';
-import { isAdmin } from '@documenso/lib/next-auth/guards/is-admin';
+import { AdminNav } from './nav';
 
-export type AdminLayoutProps = {
+export type AdminSectionLayoutProps = {
   children: React.ReactNode;
 };
 
-export default async function AdminLayout({ children }: AdminLayoutProps) {
-  const user = await getRequiredServerComponentSession();
-  const isUserAdmin = isAdmin(user);
+export default function AdminSectionLayout({ children }: AdminSectionLayoutProps) {
+  return (
+    <div className="mx-auto mt-16 w-full max-w-screen-xl px-4 md:px-8">
+      <div className="grid grid-cols-12 gap-x-8 md:mt-8">
+        <AdminNav className="col-span-12 md:col-span-3 md:flex" />
 
-  if (!user) {
-    redirect('/signin');
-  }
-
-  if (!isUserAdmin) {
-    redirect('/dashboard');
-  }
-
-  return <main className="mt-8 pb-8 md:mt-12 md:pb-12">{children}</main>;
+        <div className="col-span-12 mt-12 md:col-span-9 md:mt-0">{children}</div>
+      </div>
+    </div>
+  );
 }
diff --git a/apps/web/src/app/(dashboard)/admin/nav.tsx b/apps/web/src/app/(dashboard)/admin/nav.tsx
new file mode 100644
index 000000000..3b87a9b13
--- /dev/null
+++ b/apps/web/src/app/(dashboard)/admin/nav.tsx
@@ -0,0 +1,47 @@
+'use client';
+
+import { HTMLAttributes } from 'react';
+
+import Link from 'next/link';
+import { usePathname } from 'next/navigation';
+
+import { BarChart3, User2 } from 'lucide-react';
+
+import { cn } from '@documenso/ui/lib/utils';
+import { Button } from '@documenso/ui/primitives/button';
+
+export type AdminNavProps = HTMLAttributes<HTMLDivElement>;
+
+export const AdminNav = ({ className, ...props }: AdminNavProps) => {
+  const pathname = usePathname();
+
+  return (
+    <div className={cn('flex gap-x-2.5 gap-y-2 md:flex-col', className)} {...props}>
+      <Button
+        variant="ghost"
+        className={cn(
+          'justify-start md:w-full',
+          pathname?.startsWith('/admin/stats') && 'bg-secondary',
+        )}
+        asChild
+      >
+        <Link href="/admin/stats">
+          <BarChart3 className="mr-2 h-5 w-5" />
+          Stats
+        </Link>
+      </Button>
+
+      <Button
+        variant="ghost"
+        className={cn(
+          'justify-start md:w-full',
+          pathname?.startsWith('/admin/users') && 'bg-secondary',
+        )}
+        disabled
+      >
+        <User2 className="mr-2 h-5 w-5" />
+        Users (Coming Soon)
+      </Button>
+    </div>
+  );
+};
diff --git a/apps/web/src/app/(dashboard)/admin/page.tsx b/apps/web/src/app/(dashboard)/admin/page.tsx
index 073056478..5fe030685 100644
--- a/apps/web/src/app/(dashboard)/admin/page.tsx
+++ b/apps/web/src/app/(dashboard)/admin/page.tsx
@@ -1,114 +1,5 @@
-import {
-  Archive,
-  File,
-  FileX2,
-  LucideIcon,
-  Mail,
-  MailOpen,
-  PenTool,
-  Send,
-  User as UserIcon,
-  UserPlus2,
-  UserSquare2,
-} from 'lucide-react';
+import { redirect } from 'next/navigation';
 
-import { getDocsCount } from '@documenso/lib/server-only/admin/get-documents-stats';
-import { getRecipientsStats } from '@documenso/lib/server-only/admin/get-recipients-stats';
-import {
-  getUsersCount,
-  getUsersWithSubscriptionsCount,
-} from '@documenso/lib/server-only/admin/get-users-stats';
-import {
-  ReadStatus as InternalReadStatus,
-  SendStatus as InternalSendStatus,
-  SigningStatus as InternalSigningStatus,
-} from '@documenso/prisma/client';
-
-import { CardMetric } from '~/components/(dashboard)/metric-card/metric-card';
-
-type CardData = {
-  icon: LucideIcon;
-  title: string;
-  status:
-    | 'TOTAL_RECIPIENTS'
-    | 'OPENED'
-    | 'NOT_OPENED'
-    | 'SIGNED'
-    | 'NOT_SIGNED'
-    | 'SENT'
-    | 'NOT_SENT';
-};
-
-const CARD_DATA: CardData[] = [
-  {
-    icon: UserSquare2,
-    title: 'Recipients in the database',
-    status: 'TOTAL_RECIPIENTS',
-  },
-  {
-    icon: MailOpen,
-    title: 'Opened documents',
-    status: InternalReadStatus.OPENED,
-  },
-  {
-    icon: Mail,
-    title: 'Unopened documents',
-    status: InternalReadStatus.NOT_OPENED,
-  },
-  {
-    icon: Send,
-    title: 'Sent documents',
-    status: InternalSendStatus.SENT,
-  },
-  {
-    icon: Archive,
-    title: 'Unsent documents',
-    status: InternalSendStatus.NOT_SENT,
-  },
-  {
-    icon: PenTool,
-    title: 'Signed documents',
-    status: InternalSigningStatus.SIGNED,
-  },
-  {
-    icon: FileX2,
-    title: 'Unsigned documents',
-    status: InternalSigningStatus.NOT_SIGNED,
-  },
-];
-
-export default async function Admin() {
-  const [usersCount, usersWithSubscriptionsCount, docsCount, recipientsStats] = await Promise.all([
-    getUsersCount(),
-    getUsersWithSubscriptionsCount(),
-    getDocsCount(),
-    getRecipientsStats(),
-  ]);
-
-  return (
-    <div className="mx-auto w-full max-w-screen-xl px-4 md:px-8">
-      <h2 className="text-4xl font-semibold">Instance version: {process.env.APP_VERSION}</h2>
-      <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-2">
-        <CardMetric icon={UserIcon} title={'Total users in the database'} value={usersCount} />
-        <CardMetric
-          icon={UserPlus2}
-          title={'Users with an active subscription'}
-          value={usersWithSubscriptionsCount}
-        />
-      </div>
-      <h2 className="my-8 text-4xl font-semibold">Document metrics</h2>
-      <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-2">
-        <CardMetric icon={File} title={'Total documents in the database'} value={docsCount} />
-      </div>
-
-      <h2 className="my-8 text-4xl font-semibold">Recipients metrics</h2>
-      <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-3">
-        {CARD_DATA.map((card) => (
-          <div key={card.status}>
-            <CardMetric icon={card.icon} title={card.title} value={recipientsStats[card.status]} />
-          </div>
-        ))}
-      </div>
-    </div>
-  );
+export default function Admin() {
+  redirect('/admin/stats');
 }
diff --git a/apps/web/src/app/(dashboard)/admin/stats/page.tsx b/apps/web/src/app/(dashboard)/admin/stats/page.tsx
new file mode 100644
index 000000000..b93af5a03
--- /dev/null
+++ b/apps/web/src/app/(dashboard)/admin/stats/page.tsx
@@ -0,0 +1,75 @@
+import {
+  File,
+  FileCheck,
+  FileClock,
+  FileEdit,
+  Mail,
+  MailOpen,
+  PenTool,
+  User as UserIcon,
+  UserPlus2,
+  UserSquare2,
+} from 'lucide-react';
+
+import { getDocumentStats } from '@documenso/lib/server-only/admin/get-documents-stats';
+import { getRecipientsStats } from '@documenso/lib/server-only/admin/get-recipients-stats';
+import {
+  getUsersCount,
+  getUsersWithSubscriptionsCount,
+} from '@documenso/lib/server-only/admin/get-users-stats';
+
+import { CardMetric } from '~/components/(dashboard)/metric-card/metric-card';
+
+export default async function AdminStatsPage() {
+  const [usersCount, usersWithSubscriptionsCount, docStats, recipientStats] = await Promise.all([
+    getUsersCount(),
+    getUsersWithSubscriptionsCount(),
+    getDocumentStats(),
+    getRecipientsStats(),
+  ]);
+
+  return (
+    <div>
+      <h2 className="text-4xl font-semibold">Instance Stats</h2>
+
+      <div className="mt-8 grid flex-1 grid-cols-1 gap-4 md:grid-cols-4">
+        <CardMetric icon={UserIcon} title="Total Users" value={usersCount} />
+        <CardMetric icon={File} title="Total Documents" value={docStats.ALL} />
+        <CardMetric
+          icon={UserPlus2}
+          title="Active Subscriptions"
+          value={usersWithSubscriptionsCount}
+        />
+        <CardMetric icon={UserPlus2} title="App Version" value={`v${process.env.APP_VERSION}`} />
+      </div>
+
+      <div className="mt-16 grid grid-cols-1 gap-8 md:grid-cols-2">
+        <div>
+          <h3 className="text-3xl font-semibold">Document metrics</h3>
+
+          <div className="mt-8 grid flex-1 grid-cols-2 gap-4">
+            <CardMetric icon={File} title="Total Documents" value={docStats.ALL} />
+            <CardMetric icon={FileEdit} title="Drafted Documents" value={docStats.DRAFT} />
+            <CardMetric icon={FileClock} title="Pending Documents" value={docStats.PENDING} />
+            <CardMetric icon={FileCheck} title="Completed Documents" value={docStats.COMPLETED} />
+          </div>
+        </div>
+
+        <div>
+          <h3 className="text-3xl font-semibold">Recipients metrics</h3>
+
+          <div className="mt-8 grid flex-1 grid-cols-2 gap-4">
+            <CardMetric
+              icon={UserSquare2}
+              title="Total Recipients"
+              value={recipientStats.TOTAL_RECIPIENTS}
+            />
+            <CardMetric icon={Mail} title="Documents Received" value={recipientStats.SENT} />
+            <CardMetric icon={MailOpen} title="Documents Viewed" value={recipientStats.OPENED} />
+            <CardMetric icon={PenTool} title="Signatures Collected" value={recipientStats.SIGNED} />
+          </div>
+        </div>
+      </div>
+    </div>
+  );
+}
diff --git a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
index e3fd4c6d6..3f7a02e60 100644
--- a/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
+++ b/apps/web/src/components/(dashboard)/layout/profile-dropdown.tsx
@@ -62,6 +62,19 @@ export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
       <DropdownMenuContent className="w-56" align="end" forceMount>
         <DropdownMenuLabel>Account</DropdownMenuLabel>
 
+        {isUserAdmin && (
+          <>
+            <DropdownMenuItem asChild>
+              <Link href="/admin" className="cursor-pointer">
+                <UserCog className="mr-2 h-4 w-4" />
+                Admin
+              </Link>
+            </DropdownMenuItem>
+
+            <DropdownMenuSeparator />
+          </>
+        )}
+
         <DropdownMenuItem asChild>
           <Link href="/settings/profile" className="cursor-pointer">
             <LucideUser className="mr-2 h-4 w-4" />
@@ -69,15 +82,6 @@ export const ProfileDropdown = ({ user }: ProfileDropdownProps) => {
           </Link>
         </DropdownMenuItem>
 
-        {isUserAdmin && (
-          <DropdownMenuItem asChild>
-            <Link href="/admin" className="cursor-pointer">
-              <UserCog className="mr-2 h-4 w-4" />
-              Admin
-            </Link>
-          </DropdownMenuItem>
-        )}
-
         <DropdownMenuItem asChild>
           <Link href="/settings/password" className="cursor-pointer">
             <Key className="mr-2 h-4 w-4" />
diff --git a/apps/web/src/components/(dashboard)/metric-card/metric-card.tsx b/apps/web/src/components/(dashboard)/metric-card/metric-card.tsx
index f59d42096..a2248ccdc 100644
--- a/apps/web/src/components/(dashboard)/metric-card/metric-card.tsx
+++ b/apps/web/src/components/(dashboard)/metric-card/metric-card.tsx
@@ -18,10 +18,10 @@ export const CardMetric = ({ icon: Icon, title, value, className }: CardMetricPr
       )}
     >
       <div className="px-4 pb-6 pt-4 sm:px-4 sm:pb-8 sm:pt-4">
-        <div className="flex items-start">
-          {Icon && <Icon className="mr-2 h-4 w-4 text-slate-500" />}
+        <div className="flex items-center">
+          {Icon && <Icon className="text-muted-foreground mr-2 h-4 w-4" />}
 
-          <h3 className="flex items-end text-sm font-medium text-slate-500">{title}</h3>
+          <h3 className="text-primary-forground flex items-end text-sm font-medium">{title}</h3>
         </div>
 
         <p className="text-foreground mt-6 text-4xl font-semibold leading-8 md:mt-8">
diff --git a/packages/lib/server-only/admin/get-documents-stats.ts b/packages/lib/server-only/admin/get-documents-stats.ts
index 9100a886c..e0d53373f 100644
--- a/packages/lib/server-only/admin/get-documents-stats.ts
+++ b/packages/lib/server-only/admin/get-documents-stats.ts
@@ -1,5 +1,26 @@
 import { prisma } from '@documenso/prisma';
+import { ExtendedDocumentStatus } from '@documenso/prisma/types/extended-document-status';
 
-export const getDocsCount = async () => {
-  return await prisma.document.count();
+export const getDocumentStats = async () => {
+  const counts = await prisma.document.groupBy({
+    by: ['status'],
+    _count: {
+      _all: true,
+    },
+  });
+
+  const stats: Record<Exclude<ExtendedDocumentStatus, 'INBOX'>, number> = {
+    [ExtendedDocumentStatus.DRAFT]: 0,
+    [ExtendedDocumentStatus.PENDING]: 0,
+    [ExtendedDocumentStatus.COMPLETED]: 0,
+    [ExtendedDocumentStatus.ALL]: 0,
+  };
+
+  counts.forEach((stat) => {
+    stats[stat.status] = stat._count._all;
+
+    stats.ALL += stat._count._all;
+  });
+
+  return stats;
 };

From 599e857a1e282141fba6add03b5cf7c6e3c110d0 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 12 Sep 2023 17:53:38 +1000
Subject: [PATCH 44/83] fix: add removed layout guard

---
 apps/web/src/app/(dashboard)/admin/layout.tsx       | 13 ++++++++++++-
 .../lib/server-only/admin/get-recipients-stats.ts   |  2 ++
 2 files changed, 14 insertions(+), 1 deletion(-)

diff --git a/apps/web/src/app/(dashboard)/admin/layout.tsx b/apps/web/src/app/(dashboard)/admin/layout.tsx
index a04c7b693..3aa47d1a9 100644
--- a/apps/web/src/app/(dashboard)/admin/layout.tsx
+++ b/apps/web/src/app/(dashboard)/admin/layout.tsx
@@ -1,12 +1,23 @@
 import React from 'react';
 
+import { redirect } from 'next/navigation';
+
+import { getRequiredServerComponentSession } from '@documenso/lib/next-auth/get-server-session';
+import { isAdmin } from '@documenso/lib/next-auth/guards/is-admin';
+
 import { AdminNav } from './nav';
 
 export type AdminSectionLayoutProps = {
   children: React.ReactNode;
 };
 
-export default function AdminSectionLayout({ children }: AdminSectionLayoutProps) {
+export default async function AdminSectionLayout({ children }: AdminSectionLayoutProps) {
+  const user = await getRequiredServerComponentSession();
+
+  if (!isAdmin(user)) {
+    redirect('/documents');
+  }
+
   return (
     <div className="mx-auto mt-16 w-full max-w-screen-xl px-4 md:px-8">
       <div className="grid grid-cols-12 gap-x-8 md:mt-8">
diff --git a/packages/lib/server-only/admin/get-recipients-stats.ts b/packages/lib/server-only/admin/get-recipients-stats.ts
index 92c0c3527..f24d0b5a2 100644
--- a/packages/lib/server-only/admin/get-recipients-stats.ts
+++ b/packages/lib/server-only/admin/get-recipients-stats.ts
@@ -16,6 +16,7 @@ export const getRecipientsStats = async () => {
     [SendStatus.SENT]: 0,
     [SendStatus.NOT_SENT]: 0,
   };
+
   results.forEach((result) => {
     const { readStatus, signingStatus, sendStatus, _count } = result;
     stats[readStatus] += _count;
@@ -23,5 +24,6 @@ export const getRecipientsStats = async () => {
     stats[sendStatus] += _count;
     stats.TOTAL_RECIPIENTS += _count;
   });
+
   return stats;
 };

From 46dfaa70a3de4eec85a8df094e5973aab88bc298 Mon Sep 17 00:00:00 2001
From: Timur Ercan <timur.ercan31@gmail.com>
Date: Wed, 13 Sep 2023 14:39:01 +0200
Subject: [PATCH 45/83] Update
 apps/marketing/content/blog/building-documenso-pt1.mdx

Co-authored-by: Adithya Krishna  <aadithya794@gmail.com>
---
 apps/marketing/content/blog/building-documenso-pt1.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/marketing/content/blog/building-documenso-pt1.mdx b/apps/marketing/content/blog/building-documenso-pt1.mdx
index 36e28c7dc..592f4e1f7 100644
--- a/apps/marketing/content/blog/building-documenso-pt1.mdx
+++ b/apps/marketing/content/blog/building-documenso-pt1.mdx
@@ -79,7 +79,7 @@ There weren’t any deeper reasons we choose WiseKey, other than they offered wh
 Do you have questions or thoughts about this? As always, let me know in the comments, on <a href="http://twitter.com/eltimuro" target="_blank">twitter.com/eltimuro</a>
 or directly: <a href="https://documen.so/timur" target="_blank">documen.so/timur</a>
 
-Join the self-hoster community here: <a href="https://documenso.slack.com/" target="_blank">https://documenso.slack.com/</a>
+Join the self-hoster community here: <a href="https://documen.so/discord" target="_blank">https://documen.so/discord</a>
 
 Best from Hamburg
 

From 3c36eedfba35605af1ef3326404a9530484deef2 Mon Sep 17 00:00:00 2001
From: Timur Ercan <timur.ercan31@gmail.com>
Date: Wed, 13 Sep 2023 14:42:27 +0200
Subject: [PATCH 46/83] chore: phrasing

---
 apps/marketing/content/blog/building-documenso-pt1.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/marketing/content/blog/building-documenso-pt1.mdx b/apps/marketing/content/blog/building-documenso-pt1.mdx
index 592f4e1f7..b8507be03 100644
--- a/apps/marketing/content/blog/building-documenso-pt1.mdx
+++ b/apps/marketing/content/blog/building-documenso-pt1.mdx
@@ -1,6 +1,6 @@
 ---
 title: 'Building Documenso — Part 1: Certificates'
-description: This is the first installment of the new Building Documenso series, where I describe the challenges and design choices that we make while building the world’s most open signing platform.
+description: This is the first part of the new Building Documenso series, where I describe the challenges and design choices that we make while building the world’s most open signing platform.
 authorName: 'Timur Ercan'
 authorImage: '/blog/blog-author-timur.jpeg'
 authorRole: 'Co-Founder'

From 974dc740732fb3fc3f1f13fdb46540db9e74c4d6 Mon Sep 17 00:00:00 2001
From: Timur Ercan <timur.ercan31@gmail.com>
Date: Wed, 13 Sep 2023 14:53:27 +0200
Subject: [PATCH 47/83] chore: moved rewrite article from next repo

---
 .../content/blog/why-were-doing-a-rewrite.mdx | 113 ++++++++++++++++++
 1 file changed, 113 insertions(+)
 create mode 100644 apps/marketing/content/blog/why-were-doing-a-rewrite.mdx

diff --git a/apps/marketing/content/blog/why-were-doing-a-rewrite.mdx b/apps/marketing/content/blog/why-were-doing-a-rewrite.mdx
new file mode 100644
index 000000000..f2195a019
--- /dev/null
+++ b/apps/marketing/content/blog/why-were-doing-a-rewrite.mdx
@@ -0,0 +1,113 @@
+---
+title: Why we're doing a rewrite
+description: As we move beyond MVP and onto creating the open signing infrastructure we all deserve we need to take a quick pit-stop.
+authorName: 'Lucas Smith'
+authorImage: '/blog/blog-author-lucas.png'
+authorRole: 'Co-Founder'
+date: 2023-08-05
+tags:
+  - Community
+  - Development
+---
+
+<figure>
+  <MdxNextImage
+    src="/blog/blog-banner-rewrite.png"
+    width="1260"
+    height="630"
+    alt="Next generation documenso"
+  />
+
+  <figcaption className="text-center">
+    The next generation of Documenso and signing infrastructure.
+  </figcaption>
+</figure>
+
+> TLDR; We're rewriting Documenso to move on from our MVP foundations and create an even better base for the project. This rewrite will provide us the opportunity to fix a few things within the project while enabling a faster development process moving forward.
+
+# Introduction
+
+At Documenso, we're building the next generation of signing infrastructure with a focus on making it inclusive and accessible for all. To do this we need to ensure that the software we write is also inclusive and accessible and for this reason we’ve decided to take a step back and perform a _quick_ rewrite.
+
+Although we've achieved validated MVP status and gained paying customers, we're still quite far from our goal of creating a trusted, open signing experience. To move closer to that future, we need to step back and focus on the project's foundations to ensure we can solve all the items we set out to on our current homepage.
+
+Fortunately, this wasn't a case of someone joining the team and proposing a rewrite due to a lack of understanding of the codebase and context surrounding it. Prior to joining Documenso as a co-founder, I had spent an extensive amount of time within the Documenso codebase and had a fairly intimate understanding of what was happening for the most part. This knowledge allowed me to make the fair and simultaneously hard call to take a quick pause so we can rebuild our current foundations to enable accessibility and a faster delivery time in the future.
+
+# The Reasoning: TypeScript
+
+Our primary reason for the rewrite is to better leverage the tools and technologies we've already chosen, namely TypeScript. While Documenso currently uses TypeScript, it's not fully taking advantage of its safety features, such as generics and type guards.
+
+The codebase currently has several instances of `any` types, which is expected when working in an unknown domain where object models aren't fully understood before exploration and experimentation. These `any`s initially sped up development, but have since become a hindrance due to the lack of type information, combined with prop drilling. As a result, it's necessary to go through a lot of context to understand the root of any given issue.
+
+The rewrite is using TypeScript to its full potential, ensuring that every interaction is strongly typed, both through general TypeScript tooling and the introduction of [Zod](https://github.com/colinhacks/zod), a validation library with excellent TypeScript support. With these choices, we can ensure that the codebase is robust to various inputs and states, as most issues will be caught during compile time and flagged within a developer's IDE.
+
+# The Reasoning: Stronger API contracts
+
+In line with our pattern of creating strongly typed contracts, we've decided to use [tRPC](https://github.com/trpc/trpc) for our internal API. This enables us to share types between our frontend and backend and establish a solid contract for interactions between the two. This is in contrast to the currently untyped API endpoints in Documenso, which are accessed using the `fetch` API that is itself untyped.
+
+Using tRPC drastically reduces the chance of failures resulting from mundane things like argument or response shape changes during updates and upgrades. We made this decision easily because tRPC is a mature technology with no signs of losing momentum any time soon.
+
+Additionally, many of our open-source friends have made the same choice for similar reasons.
+
+# The Reasoning: Choosing exciting technologies
+
+Although we already work with what I consider to be a fun stack that includes Next.js, Prisma, Tailwind, and more, it's no secret that contributors enjoy working with new technologies that benefit them in their own careers and projects.
+
+To take advantage of this, we have decided to use Next.js 13 and React's new server component and actions architecture. Server components are currently popular among developers, with many loving and hating them at the same time.
+
+I have personally worked with server components and actions since they were first released in October 2022 and have dealt with most of the hiccups and limitations along the way. Now, in July 2023, I believe they are in a much more stable place and are ready to be adopted, with their benefits being recognised by many.
+
+By choosing to use server components and actions, we hope to encourage the community to participate more than they otherwise might. However, we are only choosing this because it has become more mature and stable. We will not choose things that are less likely to become the de-facto solution in the future, as we do not wish to inherit a pile of tech debt later on.
+
+# The Reasoning: Allowing concurrent work
+
+Another compelling reason for the rewrite was to effectively modularise code so we can work on features concurrently and without issue. This means extracting as much as possible out of components, API handlers and more and into a set of methods and functions that attempt to focus on just one thing.
+
+In performing this work we should be able to easily make refactors and other changes to various parts of the code without stepping on each others feet, this also grants us the ability to upgrade or deprecate items as required by sticking to the contract of the previous method.
+
+Additionally, this makes testing a much easier task as we can focus more on units of work rather than extensive end to end testing although we aim to have both, just not straight away.
+
+# The Reasoning: Licensing of work
+
+Another major reasoning for the rewrite is to ensure that all work performed on the project by both our internal team and external contributors is licensed in a way that benefits the project long-term. Prior to the rewrite contributors would create pull requests that would be merged in without any further process outside of the common code-review and testing cycles.
+
+This was fine for the most part since we were simply working on the MVP but now as we move towards an infrastructure focus we intend on taking on enterprise clients who will have a need for a non-GPLv3 license since interpretations of it can be quite harmful to private hosting, to facilitate this we will require contributors to sign a contributor license agreement (CLA) prior to their changes being merged which will assign a perpetual license for us to use their code and relicense it as required such as for the use-case above.
+
+While some might cringe at the idea of signing a CLA, we want to offer a compelling enterprise offering through means of dual-licensing. Great enterprise adoption is one of the cornerstones of our strategy and will be key to funding community and product development long-term.
+
+_Do note that the above does not mean that we will ever go closed-source, it’s a point in our investor agreements that [https://github.com/documenso/documenso](https://github.com/documenso/documenso) will always remain available and open-source._
+
+# Goals and Non-Goals
+
+Rewriting an application is a monumental task that I have taken on and rejected many times in my career. As I get older, I become more hesitant to perform these rewrites because I understand that systems carry a lot of context and history. This makes them better suited for piecemeal refactoring instead, which avoids learning the lessons of the past all over again during the launch of the rewrite.
+
+To ensure that we aren't just jumping off the deep end, I have set out a list of goals and non-goals to keep this rewrite lean and affordable.
+
+### Goals
+
+- Provide a clean design and interface for the newly rewritten application that creates a sense of trust and security at first glance.
+- Create a stable foundation and architecture that will allow for growth into our future roadmap items (teams, automation, workflows, etc.).
+- Create a robust system that requires minimal context through strong contracts and typing.
+
+### Non-Goals
+
+- Change the database schema (we don't want to make migration harder than it needs to be, thus all changes must be additive).
+- Add too many features that weren't in the system prior to the rewrite.
+- Remove any features that were in the older version of Documenso, such as free signatures (signatures that have no corresponding field).
+
+# Rollout Plan
+
+Thanks to the constraints listed above our rollout will hopefully be fairly painless, still to be safe we plan on doing the following.
+
+1.  In the current [testing environment](https://test.documenso.com), create and sign a number of documents leaving many in varying states of completion.
+2.  Deploy the rewrite to the testing environment and verify that all existing documents and information is retrievable and modifiable without any issue.
+3.  Create another set of documents using the new rewrite and verify that all interactions between authoring and signing work as expected.
+4.  Repeat this until we reach a general confidence level (expectation of two weeks).
+
+Once we’ve reached the desired confidence level with our testing environment we will look to deploy the rewrite to the production environment ensuring that we’ve performed all the required backups in the event of a catastrophic failure.
+
+# Want to help out?
+
+We’re currently working on the **[feat/refresh](https://github.com/documenso/documenso/tree/feat/refresh)** branch on GitHub, we aim to have a CLA available to sign in the coming days so we can start accepting external contributions asap. While we’re nearing the end-stage of the rewrite we will be throwing up a couple of bounties shortly for things like [Husky](https://github.com/typicode/husky) and [Changesets](https://github.com/changesets/changesets).
+
+Keep an eye on our [GitHub issues](https://github.com/documenso/documenso/issues) to stay up to date!

From 71818c0f1f36f1d5256691ec427e26d70e00e439 Mon Sep 17 00:00:00 2001
From: Timur Ercan <timur.ercan31@gmail.com>
Date: Wed, 13 Sep 2023 14:57:22 +0200
Subject: [PATCH 48/83] chore: update readme to main version

---
 README.md | 118 ++++++++++++++++++++++++++++++++++++++----------------
 1 file changed, 84 insertions(+), 34 deletions(-)

diff --git a/README.md b/README.md
index ebab1c3f5..29ffb0d65 100644
--- a/README.md
+++ b/README.md
@@ -1,13 +1,11 @@
 <p align="center" style="margin-top: 120px">
-  <a href="https://github.com/documenso/documenso.com">
+  <a href="https://github.com/documenso/documenso">
    <img width="250px" src="https://github.com/documenso/documenso/assets/1309312/cd7823ec-4baa-40b9-be78-4acb3b1c73cb" alt="Documenso Logo">
   </a>
 
-  <h3 align="center">Open Source Signing Infrastructure</h3>
-
   <p align="center">
-    The DocuSign Open Source Alternative.
-    <br />
+  The Open Source DocuSign Alternative.
+  <br>
     <a href="https://documenso.com"><strong>Learn more »</strong></a>
     <br />
     <br />
@@ -22,12 +20,16 @@
 </p>
 
 <p align="center">
-   <a href="https://documen.so/discord"><img src="https://img.shields.io/badge/Discord-documen.so/discord-%235865F2" alt="Join Documenso on Discord"></a>
+   <a href="https://documen.so/discord"><img src="https://img.shields.io/badge/Discord-documen.so/discord-%235865F2" alt="Join Documenso on Discord"></a> 
    <a href="https://github.com/documenso/documenso/stargazers"><img src="https://img.shields.io/github/stars/documenso/documenso" alt="Github Stars"></a>
    <a href="https://github.com/documenso/documenso/blob/main/LICENSE"><img src="https://img.shields.io/badge/license-AGPLv3-purple" alt="License"></a>
    <a href="https://github.com/documenso/documenso/pulse"><img src="https://img.shields.io/github/commit-activity/m/documenso/documenso" alt="Commits-per-month"></a>
 </p>
 
+> **🚧 We're currently working on a large scale refactor which can be found on the [feat/refresh](https://github.com/documenso/documenso/tree/feat/refresh) branch.**
+>
+> **[Read more on why 👀](https://documenso.com/blog/why-were-doing-a-rewrite)**
+
 # Documenso 0.9 - Developer Preview
 
 <div>
@@ -63,18 +65,28 @@ Signing documents digitally is fast, easy and should be best practice for every
 
 ## Community and Next Steps 🎯
 
-The current project goal is to <b>[release a production ready version](https://github.com/documenso/documenso/milestone/1)</b> for self-hosting as soon as possible. If you want to help making that happen you can:
+We're currently working on a redesign of the application including a revamp of the codebase so Documenso can be more intuitive to use and robust to develop upon.
 
 - Check out the first source code release in this repository and test it
 - Tell us what you think in the current [Discussions](https://github.com/documenso/documenso/discussions)
-- Join the [Slack Channel](https://documen.so/slack) for any questions and getting to know to other community members
+- Join the [Discord server](https://documen.so/discord) for any questions and getting to know to other community members
 - ⭐ the repository to help us raise awareness
 - Spread the word on Twitter, that Documenso is working towards a more open signing tool
 - Fix or create [issues](https://github.com/documenso/documenso/issues), that are needed for the first production release
 
 ## Contributing
 
-- To contribute please see our [contribution guide](https://github.com/documenso/documenso/blob/main/CONTRIBUTING.md).
+- To contribute, please see our [contribution guide](https://github.com/documenso/documenso/blob/main/CONTRIBUTING.md).
+
+## Contact us
+
+Contact us if you are interested in our Enterprise plan for large organizations that need extra flexibility and control.
+
+<a href="https://cal.com/timurercan/enterprise-customers?utm_source=banner&utm_campaign=oss"><img alt="Book us with Cal.com" src="https://cal.com/book-with-cal-dark.svg" /></a>
+
+## Activity
+
+![Repository Activity](https://repobeats.axiom.co/api/embed/622a2e9aa709696f7226304b5b7178a5741b3868.svg)
 
 # Tech
 
@@ -89,10 +101,6 @@ Documenso is built using awesome open source tech including:
 - [Node SignPDF (Digital Signature)](https://github.com/vbuch/node-signpdf)
 - [React-PDF for viewing PDFs](https://github.com/wojtekmaj/react-pdf)
 - [PDF-Lib for PDF manipulation](https://github.com/Hopding/pdf-lib)
-- [Zod for schema declaration and validation](https://zod.dev/)
-- [Lucide React for icons in React app](https://lucide.dev/)
-- [Framer Motion for motion library](https://www.framer.com/motion/)
-- [Radix UI for component library](https://www.radix-ui.com/)
 - Check out `/package.json` and `/apps/web/package.json` for more
 - Support for [opensignpdf (requires Java on server)](https://github.com/open-pdf-sign) is currently planned.
 
@@ -135,37 +143,47 @@ Your database will also be available on port `54320`. You can connect to it usin
 
 ## Developer Setup
 
+### Manual Setup
+
 Follow these steps to setup documenso on you local machine:
 
 - [Clone the repository](https://help.github.com/articles/cloning-a-repository/) it to your local device.
   ```sh
   git clone https://github.com/documenso/documenso
   ```
-- Run <code>npm i</code> in root directory
-- Rename <code>.env.example</code> to <code>.env</code>
+- Run `npm i` in root directory
+- Rename `.env.example` to `.env`
 - Set DATABASE_URL value in .env file
   - You can use the provided test database url (may be wiped at any point)
   - Or setup a local postgres sql instance (recommended)
-- Create the database scheme by running <code>db-migrate:dev</code>
+- Create the database scheme by running `db-migrate:dev`
 - Setup your mail provider
-  - Set <code>SENDGRID_API_KEY</code> value in .env file
+  - Set `SENDGRID_API_KEY` value in .env file
   - You need a SendGrid account, which you can create [here](https://signup.sendgrid.com/).
-  - Documenso uses [Nodemailer](https://nodemailer.com/about/) so you can easily use your own SMTP server by setting the <code>SMTP\_\* variables</code> in your .env
-- Run <code>npm run dev</code> root directory to start
+  - Documenso uses [Nodemailer](https://nodemailer.com/about/) so you can easily use your own SMTP server by setting the `SMTP
+    \_
+  * variables` in your .env
+- Run `npm run dev` root directory to start
 - Register a new user at http://localhost:3000/signup
 
 ---
 
-- Optional: Seed the database using <code>npm run db-seed</code> to create a test user and document
-- Optional: Upload and sign <code>apps/web/resources/example.pdf</code> manually to test your setup
+- Optional: Seed the database using `npm run db-seed` to create a test user and document
+- Optional: Upload and sign `apps/web/resources/example.pdf` manually to test your setup
 
 - Optional: Create your own signing certificate
   - A demo certificate is provided in `/app/web/resources/certificate.p12`
   - To generate your own using these steps and a Linux Terminal or Windows Subsystem for Linux (WSL) see **[Create your own signing certificate](#creating-your-own-signing-certificate)**.
 
+### Run in Gitpod
+
+- Click below to launch a ready-to-use Gitpod workspace in your browser.
+
+[![Open in Gitpod](https://gitpod.io/button/open-in-gitpod.svg)](https://gitpod.io/#https://github.com/documenso/documenso)
+
 ## Updating
 
-- If you pull the newest version from main, using <code>git pull</code>, it may be necessary to regenerate your database client
+- If you pull the newest version from main, using `git pull`, it may be necessary to regenerate your database client
 - You can do this by running the generate command in `/packages/prisma`:
   ```sh
   npx prisma generate
@@ -176,16 +194,22 @@ Follow these steps to setup documenso on you local machine:
 
 For the digital signature of your documents you need a signing certificate in .p12 format (public and private key). You can buy one (not recommended for dev) or use the steps to create a self-signed one:
 
-1. Generate a private key using the OpenSSL command. You can run the following command to generate a 2048-bit RSA key:\
-   <code>openssl genrsa -out private.key 2048</code>
+1. Generate a private key using the OpenSSL command. You can run the following command to generate a 2048-bit RSA key:
+
+   `openssl genrsa -out private.key 2048`
+
+2. Generate a self-signed certificate using the private key. You can run the following command to generate a self-signed certificate:
+
+   `openssl req -new -x509 -key private.key -out certificate.crt -days 365`
 
-2. Generate a self-signed certificate using the private key. You can run the following command to generate a self-signed certificate:\
-   <code>openssl req -new -x509 -key private.key -out certificate.crt -days 365</code> \
    This will prompt you to enter some information, such as the Common Name (CN) for the certificate. Make sure you enter the correct information. The -days parameter sets the number of days for which the certificate is valid.
-3. Combine the private key and the self-signed certificate to create the p12 certificate. You can run the following command to do this: \
-   <code>openssl pkcs12 -export -out certificate.p12 -inkey private.key -in certificate.crt</code>
+
+3. Combine the private key and the self-signed certificate to create the p12 certificate. You can run the following command to do this:
+
+   `openssl pkcs12 -export -out certificate.p12 -inkey private.key -in certificate.crt`
+
 4. You will be prompted to enter a password for the p12 file. Choose a strong password and remember it, as you will need it to use the certificate (**can be empty for dev certificates**)
-5. Place the certificate <code>/apps/web/resources/certificate.p12</code>
+5. Place the certificate `/apps/web/resources/certificate.p12`
 
 # Docker
 
@@ -193,16 +217,42 @@ For the digital signature of your documents you need a signing certificate in .p
 
 Want to create a production ready docker image? Follow these steps:
 
-- Run `./docker/build.sh` in the root directory.
-- Publish the image to your docker registry of choice.
+- cd into `docker` directory
+- Make `build.sh` executable by running `chmod +x build.sh`
+- Run `./build.sh` to start building the docker image.
+- Publish the image to your docker registry of choice (or) If you prefer running the image from local, run the below command
 
-# Deploying - Coming Soon™
+```
+docker run -d --restart=unless-stopped -p 3000:3000 -v documenso:/app/data --name documenso documenso:latest
+```
 
-- Docker support
-- One-Click-Deploy on Render.com Deploy
+Command Breakdown:
+- `-d` - Let's you run the container in background
+- `-p` - Passes down which ports to use. First half is the host port, Second half is the app port. You can change the first half anything you want and reverse proxy to that port.
+- `-v` - Volume let's you persist the data
+- `--name` - Name of the container
+- `documenso:latest` -  Image you have built
+
+# Deployment
+
+We support a variety of deployment methods, and are actively working on adding more. Stay tuned for updates!
+
+## Railway
+
+[![Deploy on Railway](https://railway.app/button.svg)](https://railway.app/template/DjrRRX)
+
+## Render
+
+[![Deploy to Render](https://render.com/images/deploy-to-render-button.svg)](https://render.com/deploy?repo=https://github.com/documenso/documenso)
 
 # Troubleshooting
 
+## I'm not receiving any emails when using the developer quickstart
+
+When using the developer quickstart an [Inbucket](https://inbucket.org/) server will be spun up in a docker container that will store all outgoing email locally for you to view.
+
+The Web UI can be found at http://localhost:9000 while the SMTP port will be on localhost:2500.
+
 ## Support IPv6
 
 In case you are deploying to a cluster that uses only IPv6. You can use a custom command to pass a parameter to the NextJS start command

From 9014f012766cef710e4febe88896f381839b7722 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 14 Sep 2023 12:46:36 +1000
Subject: [PATCH 49/83] feat: universal upload

Implementation of a universal upload allowing for multiple storage backends
starting with `database` and `s3`.

Allows clients to put and retrieve files from either client or server using
a blend of client and server actions.
---
 .env.example                                  |   14 +
 apps/marketing/next.config.js                 |    9 +-
 .../src/pages/api/stripe/webhook/index.ts     |   46 +-
 apps/web/next.config.js                       |    2 +-
 apps/web/package.json                         |    1 -
 apps/web/src/api/document/create/fetcher.ts   |   34 -
 apps/web/src/api/document/create/types.ts     |   19 -
 .../documents/[id]/edit-document.tsx          |   10 +-
 .../documents/[id]/loadable-pdf-card.tsx      |   20 -
 .../app/(dashboard)/documents/[id]/page.tsx   |   10 +-
 .../(dashboard)/documents/upload-document.tsx |   28 +-
 .../sign/[token]/complete/download-button.tsx |   61 +-
 .../(signing)/sign/[token]/complete/page.tsx  |    8 +-
 .../src/app/(signing)/sign/[token]/page.tsx   |   13 +-
 apps/web/src/pages/api/document/create.ts     |   96 -
 apps/web/src/pages/api/feature-flag/get.ts    |    2 +-
 .../web/src/pages/api/stripe/webhook/index.ts |   16 +-
 package-lock.json                             | 1808 ++++++++++++++++-
 packages/email/package.json                   |    5 +-
 packages/email/tailwind.config.js             |    5 +-
 packages/lib/constants/time.ts                |    5 +
 packages/lib/package.json                     |    7 +-
 .../document-data/create-document-data.ts     |   19 +
 .../server-only/document/create-document.ts   |   15 +-
 .../lib/server-only/document/seal-document.ts |   28 +-
 .../recipient/set-recipients-for-document.ts  |    4 +-
 packages/lib/tsconfig.json                    |    3 +
 packages/lib/universal/id.ts                  |    5 +
 packages/lib/universal/upload/delete-file.ts  |   22 +
 packages/lib/universal/upload/get-file.ts     |   45 +
 packages/lib/universal/upload/put-file.ts     |   53 +
 .../lib/universal/upload/server-actions.ts    |  104 +
 packages/lib/universal/upload/update-file.ts  |   54 +
 .../migration.sql                             |   23 +
 packages/prisma/schema.prisma                 |   31 +-
 .../trpc/server/document-router/router.ts     |   28 +-
 .../trpc/server/document-router/schema.ts     |    7 +
 packages/tsconfig/process-env.d.ts            |    2 +-
 packages/ui/package.json                      |    5 +-
 .../primitives/document-flow/add-fields.tsx   |    2 +-
 .../primitives/document-flow/add-signers.tsx  |    2 +-
 turbo.json                                    |    6 +
 42 files changed, 2372 insertions(+), 305 deletions(-)
 delete mode 100644 apps/web/src/api/document/create/fetcher.ts
 delete mode 100644 apps/web/src/api/document/create/types.ts
 delete mode 100644 apps/web/src/app/(dashboard)/documents/[id]/loadable-pdf-card.tsx
 delete mode 100644 apps/web/src/pages/api/document/create.ts
 create mode 100644 packages/lib/constants/time.ts
 create mode 100644 packages/lib/server-only/document-data/create-document-data.ts
 create mode 100644 packages/lib/universal/id.ts
 create mode 100644 packages/lib/universal/upload/delete-file.ts
 create mode 100644 packages/lib/universal/upload/get-file.ts
 create mode 100644 packages/lib/universal/upload/put-file.ts
 create mode 100644 packages/lib/universal/upload/server-actions.ts
 create mode 100644 packages/lib/universal/upload/update-file.ts
 create mode 100644 packages/prisma/migrations/20230912011344_reverse_document_data_relation/migration.sql

diff --git a/.env.example b/.env.example
index cfa96f59b..6f32b5a63 100644
--- a/.env.example
+++ b/.env.example
@@ -15,6 +15,20 @@ NEXT_PRIVATE_DATABASE_URL="postgres://documenso:password@127.0.0.1:54320/documen
 # Defines the URL to use for the database when running migrations and other commands that won't work with a connection pool.
 NEXT_PRIVATE_DIRECT_DATABASE_URL="postgres://documenso:password@127.0.0.1:54320/documenso"
 
+# [[STORAGE]]
+# OPTIONAL: Defines the storage transport to use. Available options: database (default) | s3
+NEXT_PUBLIC_UPLOAD_TRANSPORT="database"
+# OPTIONAL: Defines the endpoint to use for the S3 storage transport. Relevant when using third-party S3-compatible providers.
+NEXT_PRIVATE_UPLOAD_ENDPOINT=
+# OPTIONAL: Defines the region to use for the S3 storage transport. Defaults to us-east-1.
+NEXT_PRIVATE_UPLOAD_REGION=
+# REQUIRED: Defines the bucket to use for the S3 storage transport.
+NEXT_PRIVATE_UPLOAD_BUCKET=
+# OPTIONAL: Defines the access key ID to use for the S3 storage transport.
+NEXT_PRIVATE_UPLOAD_ACCESS_KEY_ID=
+# OPTIONAL: Defines the secret access key to use for the S3 storage transport.
+NEXT_PRIVATE_UPLOAD_SECRET_ACCESS_KEY=
+
 # [[SMTP]]
 # OPTIONAL: Defines the transport to use for sending emails. Available options: smtp-auth (default) | smtp-api | mailchannels
 NEXT_PRIVATE_SMTP_TRANSPORT="smtp-auth"
diff --git a/apps/marketing/next.config.js b/apps/marketing/next.config.js
index ee7d10899..97f904cf0 100644
--- a/apps/marketing/next.config.js
+++ b/apps/marketing/next.config.js
@@ -8,9 +8,16 @@ const { parsed: env } = require('dotenv').config({
 
 /** @type {import('next').NextConfig} */
 const config = {
+  experimental: {
+    serverActions: true,
+  },
   reactStrictMode: true,
   transpilePackages: ['@documenso/lib', '@documenso/prisma', '@documenso/trpc', '@documenso/ui'],
-  env,
+  modularizeImports: {
+    'lucide-react': {
+      transform: 'lucide-react/dist/esm/icons/{{ kebabCase member }}',
+    },
+  },
 };
 
 module.exports = withContentlayer(config);
diff --git a/apps/marketing/src/pages/api/stripe/webhook/index.ts b/apps/marketing/src/pages/api/stripe/webhook/index.ts
index 11c9476bd..b5feeb870 100644
--- a/apps/marketing/src/pages/api/stripe/webhook/index.ts
+++ b/apps/marketing/src/pages/api/stripe/webhook/index.ts
@@ -8,6 +8,8 @@ import { insertImageInPDF } from '@documenso/lib/server-only/pdf/insert-image-in
 import { insertTextInPDF } from '@documenso/lib/server-only/pdf/insert-text-in-pdf';
 import { redis } from '@documenso/lib/server-only/redis';
 import { Stripe, stripe } from '@documenso/lib/server-only/stripe';
+import { getFile } from '@documenso/lib/universal/upload/get-file';
+import { updateFile } from '@documenso/lib/universal/upload/update-file';
 import { prisma } from '@documenso/prisma';
 import {
   DocumentDataType,
@@ -88,19 +90,21 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
 
       const bytes64 = readFileSync('./public/documenso-supporter-pledge.pdf').toString('base64');
 
+      const { id: documentDataId } = await prisma.documentData.create({
+        data: {
+          type: DocumentDataType.BYTES_64,
+          data: bytes64,
+          initialData: bytes64,
+        },
+      });
+
       const document = await prisma.document.create({
         data: {
           title: 'Documenso Supporter Pledge.pdf',
           status: DocumentStatus.COMPLETED,
           userId: user.id,
           created: now,
-          documentData: {
-            create: {
-              type: DocumentDataType.BYTES_64,
-              data: bytes64,
-              initialData: bytes64,
-            },
-          },
+          documentDataId,
         },
         include: {
           documentData: true,
@@ -139,17 +143,21 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
         },
       });
 
+      let pdfData = await getFile(documentData).then((data) =>
+        Buffer.from(data).toString('base64'),
+      );
+
       if (signatureDataUrl) {
-        documentData.data = await insertImageInPDF(
-          documentData.data,
+        pdfData = await insertImageInPDF(
+          pdfData,
           signatureDataUrl,
           Number(field.positionX),
           Number(field.positionY),
           field.page,
         );
       } else {
-        documentData.data = await insertTextInPDF(
-          documentData.data,
+        pdfData = await insertTextInPDF(
+          pdfData,
           signatureText ?? '',
           Number(field.positionX),
           Number(field.positionY),
@@ -157,6 +165,12 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
         );
       }
 
+      const { data: newData } = await updateFile({
+        type: documentData.type,
+        oldData: documentData.initialData,
+        newData: Buffer.from(pdfData, 'base64').toString('binary'),
+      });
+
       await Promise.all([
         prisma.signature.create({
           data: {
@@ -166,16 +180,12 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
             typedSignature: signatureDataUrl ? '' : signatureText,
           },
         }),
-        prisma.document.update({
+        prisma.documentData.update({
           where: {
-            id: document.id,
+            id: documentData.id,
           },
           data: {
-            documentData: {
-              update: {
-                data: documentData.data,
-              },
-            },
+            data: newData,
           },
         }),
       ]);
diff --git a/apps/web/next.config.js b/apps/web/next.config.js
index 09760f806..7ec6c49ee 100644
--- a/apps/web/next.config.js
+++ b/apps/web/next.config.js
@@ -9,6 +9,7 @@ const { parsed: env } = require('dotenv').config({
 const config = {
   experimental: {
     serverActions: true,
+    serverActionsBodySizeLimit: '50mb',
   },
   reactStrictMode: true,
   transpilePackages: [
@@ -18,7 +19,6 @@ const config = {
     '@documenso/ui',
     '@documenso/email',
   ],
-  env,
   modularizeImports: {
     'lucide-react': {
       transform: 'lucide-react/dist/esm/icons/{{ kebabCase member }}',
diff --git a/apps/web/package.json b/apps/web/package.json
index 8e7dd2be7..d3ab34f96 100644
--- a/apps/web/package.json
+++ b/apps/web/package.json
@@ -24,7 +24,6 @@
     "lucide-react": "^0.214.0",
     "luxon": "^3.4.0",
     "micro": "^10.0.1",
-    "nanoid": "^4.0.2",
     "next": "13.4.12",
     "next-auth": "4.22.3",
     "next-plausible": "^3.10.1",
diff --git a/apps/web/src/api/document/create/fetcher.ts b/apps/web/src/api/document/create/fetcher.ts
deleted file mode 100644
index fdc23456c..000000000
--- a/apps/web/src/api/document/create/fetcher.ts
+++ /dev/null
@@ -1,34 +0,0 @@
-import { useMutation } from '@tanstack/react-query';
-
-import { TCreateDocumentRequestSchema, ZCreateDocumentResponseSchema } from './types';
-
-export const useCreateDocument = () => {
-  return useMutation(async ({ file }: TCreateDocumentRequestSchema) => {
-    const formData = new FormData();
-
-    formData.set('file', file);
-
-    const response = await fetch('/api/document/create', {
-      method: 'POST',
-      body: formData,
-    });
-
-    const body = await response.json();
-
-    if (response.status !== 200) {
-      throw new Error('Failed to create document');
-    }
-
-    const safeBody = ZCreateDocumentResponseSchema.safeParse(body);
-
-    if (!safeBody.success) {
-      throw new Error('Failed to create document');
-    }
-
-    if ('error' in safeBody.data) {
-      throw new Error(safeBody.data.error);
-    }
-
-    return safeBody.data;
-  });
-};
diff --git a/apps/web/src/api/document/create/types.ts b/apps/web/src/api/document/create/types.ts
deleted file mode 100644
index 07541a5dd..000000000
--- a/apps/web/src/api/document/create/types.ts
+++ /dev/null
@@ -1,19 +0,0 @@
-import { z } from 'zod';
-
-export const ZCreateDocumentRequestSchema = z.object({
-  file: z.instanceof(File),
-});
-
-export type TCreateDocumentRequestSchema = z.infer<typeof ZCreateDocumentRequestSchema>;
-
-export const ZCreateDocumentResponseSchema = z
-  .object({
-    id: z.number(),
-  })
-  .or(
-    z.object({
-      error: z.string(),
-    }),
-  );
-
-export type TCreateDocumentResponseSchema = z.infer<typeof ZCreateDocumentResponseSchema>;
diff --git a/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx b/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
index 0ea19cfc4..b4837ab23 100644
--- a/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/edit-document.tsx
@@ -32,6 +32,7 @@ export type EditDocumentFormProps = {
   document: DocumentWithData;
   recipients: Recipient[];
   fields: Field[];
+  dataUrl: string;
 };
 
 type EditDocumentStep = 'signers' | 'fields' | 'subject';
@@ -42,16 +43,13 @@ export const EditDocumentForm = ({
   recipients,
   fields,
   user: _user,
+  dataUrl,
 }: EditDocumentFormProps) => {
   const { toast } = useToast();
   const router = useRouter();
 
-  const { documentData } = document;
-
   const [step, setStep] = useState<EditDocumentStep>('signers');
 
-  const documentUrl = `data:application/pdf;base64,${documentData?.data}`;
-
   const documentFlow: Record<EditDocumentStep, DocumentFlowStep> = {
     signers: {
       title: 'Add Signers',
@@ -154,11 +152,11 @@ export const EditDocumentForm = ({
   return (
     <div className={cn('grid w-full grid-cols-12 gap-8', className)}>
       <Card
-        className="col-span-12 rounded-xl before:rounded-xl lg:col-span-6 xl:col-span-7"
+        className="relative col-span-12 rounded-xl before:rounded-xl lg:col-span-6 xl:col-span-7"
         gradient
       >
         <CardContent className="p-2">
-          <LazyPDFViewer document={documentUrl} />
+          <LazyPDFViewer document={dataUrl} />
         </CardContent>
       </Card>
 
diff --git a/apps/web/src/app/(dashboard)/documents/[id]/loadable-pdf-card.tsx b/apps/web/src/app/(dashboard)/documents/[id]/loadable-pdf-card.tsx
deleted file mode 100644
index 5f01ec107..000000000
--- a/apps/web/src/app/(dashboard)/documents/[id]/loadable-pdf-card.tsx
+++ /dev/null
@@ -1,20 +0,0 @@
-'use client';
-
-import { Card, CardContent } from '@documenso/ui/primitives/card';
-import { LazyPDFViewer } from '@documenso/ui/primitives/lazy-pdf-viewer';
-import { PDFViewerProps } from '@documenso/ui/primitives/pdf-viewer';
-
-export type LoadablePDFCard = PDFViewerProps & {
-  className?: string;
-  pdfClassName?: string;
-};
-
-export const LoadablePDFCard = ({ className, pdfClassName, ...props }: LoadablePDFCard) => {
-  return (
-    <Card className={className} gradient {...props}>
-      <CardContent className="p-2">
-        <LazyPDFViewer className={pdfClassName} {...props} />
-      </CardContent>
-    </Card>
-  );
-};
diff --git a/apps/web/src/app/(dashboard)/documents/[id]/page.tsx b/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
index f7c8f2525..915547607 100644
--- a/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
@@ -7,6 +7,7 @@ import { getRequiredServerComponentSession } from '@documenso/lib/next-auth/get-
 import { getDocumentById } from '@documenso/lib/server-only/document/get-document-by-id';
 import { getFieldsForDocument } from '@documenso/lib/server-only/field/get-fields-for-document';
 import { getRecipientsForDocument } from '@documenso/lib/server-only/recipient/get-recipients-for-document';
+import { getFile } from '@documenso/lib/universal/upload/get-file';
 import { DocumentStatus as InternalDocumentStatus } from '@documenso/prisma/client';
 import { LazyPDFViewer } from '@documenso/ui/primitives/lazy-pdf-viewer';
 
@@ -42,6 +43,12 @@ export default async function DocumentPage({ params }: DocumentPageProps) {
 
   const { documentData } = document;
 
+  const documentDataUrl = await getFile(documentData)
+    .then((buffer) => Buffer.from(buffer).toString('base64'))
+    .then((data) => `data:application/pdf;base64,${data}`);
+
+  console.log({ documentDataUrl: documentDataUrl.slice(0, 40) });
+
   const [recipients, fields] = await Promise.all([
     await getRecipientsForDocument({
       documentId,
@@ -88,12 +95,13 @@ export default async function DocumentPage({ params }: DocumentPageProps) {
           user={session}
           recipients={recipients}
           fields={fields}
+          dataUrl={documentDataUrl}
         />
       )}
 
       {document.status === InternalDocumentStatus.COMPLETED && (
         <div className="mx-auto mt-12 max-w-2xl">
-          <LazyPDFViewer document={`data:application/pdf;base64,${documentData.data}`} />
+          <LazyPDFViewer document={documentDataUrl} />
         </div>
       )}
     </div>
diff --git a/apps/web/src/app/(dashboard)/documents/upload-document.tsx b/apps/web/src/app/(dashboard)/documents/upload-document.tsx
index ee8a69ae6..b472c606b 100644
--- a/apps/web/src/app/(dashboard)/documents/upload-document.tsx
+++ b/apps/web/src/app/(dashboard)/documents/upload-document.tsx
@@ -1,29 +1,45 @@
 'use client';
 
+import { useState } from 'react';
+
 import { useRouter } from 'next/navigation';
 
 import { Loader } from 'lucide-react';
 
+import { createDocumentData } from '@documenso/lib/server-only/document-data/create-document-data';
+import { putFile } from '@documenso/lib/universal/upload/put-file';
+import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { DocumentDropzone } from '@documenso/ui/primitives/document-dropzone';
 import { useToast } from '@documenso/ui/primitives/use-toast';
 
-import { useCreateDocument } from '~/api/document/create/fetcher';
-
 export type UploadDocumentProps = {
   className?: string;
 };
 
 export const UploadDocument = ({ className }: UploadDocumentProps) => {
-  const { toast } = useToast();
   const router = useRouter();
 
-  const { isLoading, mutateAsync: createDocument } = useCreateDocument();
+  const { toast } = useToast();
+
+  const [isLoading, setIsLoading] = useState(false);
+
+  const { mutateAsync: createDocument } = trpc.document.createDocument.useMutation();
 
   const onFileDrop = async (file: File) => {
     try {
+      setIsLoading(true);
+
+      const { type, data } = await putFile(file);
+
+      const { id: documentDataId } = await createDocumentData({
+        type,
+        data,
+      });
+
       const { id } = await createDocument({
-        file: file,
+        title: file.name,
+        documentDataId,
       });
 
       toast({
@@ -41,6 +57,8 @@ export const UploadDocument = ({ className }: UploadDocumentProps) => {
         description: 'An error occurred while uploading your document.',
         variant: 'destructive',
       });
+    } finally {
+      setIsLoading(false);
     }
   };
 
diff --git a/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx b/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx
index 2195e2e70..088afad33 100644
--- a/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx
@@ -1,55 +1,55 @@
 'use client';
 
-import { HTMLAttributes } from 'react';
+import { HTMLAttributes, useState } from 'react';
 
 import { Download } from 'lucide-react';
 
+import { getFile } from '@documenso/lib/universal/upload/get-file';
+import { DocumentData } from '@documenso/prisma/client';
 import { Button } from '@documenso/ui/primitives/button';
 
 export type DownloadButtonProps = HTMLAttributes<HTMLButtonElement> & {
   disabled?: boolean;
   fileName?: string;
-  document?: string;
+  documentData?: DocumentData;
 };
 
 export const DownloadButton = ({
   className,
   fileName,
-  document,
+  documentData,
   disabled,
   ...props
 }: DownloadButtonProps) => {
-  /**
-   * Convert the document from base64 to a blob and download it.
-   */
-  const onDownloadClick = () => {
-    if (!document) {
-      return;
-    }
-
-    let decodedDocument = document;
+  const [isLoading, setIsLoading] = useState(false);
 
+  const onDownloadClick = async () => {
     try {
-      decodedDocument = atob(document);
+      setIsLoading(true);
+
+      if (!documentData) {
+        return;
+      }
+
+      const bytes = await getFile(documentData);
+
+      const blob = new Blob([bytes], {
+        type: 'application/pdf',
+      });
+
+      const link = window.document.createElement('a');
+
+      link.href = window.URL.createObjectURL(blob);
+      link.download = fileName || 'document.pdf';
+
+      link.click();
+
+      window.URL.revokeObjectURL(link.href);
     } catch (err) {
-      // We're just going to ignore this error and try to download the document
       console.error(err);
+    } finally {
+      setIsLoading(false);
     }
-
-    const documentBytes = Uint8Array.from(decodedDocument.split('').map((c) => c.charCodeAt(0)));
-
-    const blob = new Blob([documentBytes], {
-      type: 'application/pdf',
-    });
-
-    const link = window.document.createElement('a');
-
-    link.href = window.URL.createObjectURL(blob);
-    link.download = fileName || 'document.pdf';
-
-    link.click();
-
-    window.URL.revokeObjectURL(link.href);
   };
 
   return (
@@ -57,8 +57,9 @@ export const DownloadButton = ({
       type="button"
       variant="outline"
       className={className}
-      disabled={disabled || !document}
+      disabled={disabled || !documentData}
       onClick={onDownloadClick}
+      loading={isLoading}
       {...props}
     >
       <Download className="mr-2 h-5 w-5" />
diff --git a/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx b/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx
index 48d2b6435..71a368da5 100644
--- a/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/complete/page.tsx
@@ -38,9 +38,13 @@ export default async function CompletedSigningPage({
 
   const [fields, recipient] = await Promise.all([
     getFieldsForToken({ token }),
-    getRecipientByToken({ token }),
+    getRecipientByToken({ token }).catch(() => null),
   ]);
 
+  if (!recipient) {
+    return notFound();
+  }
+
   const recipientName =
     recipient.name ||
     fields.find((field) => field.type === FieldType.NAME)?.customText ||
@@ -93,7 +97,7 @@ export default async function CompletedSigningPage({
         <DownloadButton
           className="flex-1"
           fileName={document.title}
-          document={document.status === DocumentStatus.COMPLETED ? documentData.data : undefined}
+          documentData={documentData}
           disabled={document.status !== DocumentStatus.COMPLETED}
         />
       </div>
diff --git a/apps/web/src/app/(signing)/sign/[token]/page.tsx b/apps/web/src/app/(signing)/sign/[token]/page.tsx
index 838e3ee32..d2c14a524 100644
--- a/apps/web/src/app/(signing)/sign/[token]/page.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/page.tsx
@@ -8,6 +8,7 @@ import { getDocumentAndSenderByToken } from '@documenso/lib/server-only/document
 import { viewedDocument } from '@documenso/lib/server-only/document/viewed-document';
 import { getFieldsForToken } from '@documenso/lib/server-only/field/get-fields-for-token';
 import { getRecipientByToken } from '@documenso/lib/server-only/recipient/get-recipient-by-token';
+import { getFile } from '@documenso/lib/universal/upload/get-file';
 import { FieldType } from '@documenso/prisma/client';
 import { Card, CardContent } from '@documenso/ui/primitives/card';
 import { ElementVisible } from '@documenso/ui/primitives/element-visible';
@@ -36,19 +37,21 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
       token,
     }).catch(() => null),
     getFieldsForToken({ token }),
-    getRecipientByToken({ token }),
+    getRecipientByToken({ token }).catch(() => null),
     viewedDocument({ token }),
   ]);
 
-  if (!document || !document.documentData) {
+  if (!document || !document.documentData || !recipient) {
     return notFound();
   }
 
   const { documentData } = document;
 
-  const user = await getServerComponentSession();
+  const documentDataUrl = await getFile(documentData)
+    .then((buffer) => Buffer.from(buffer).toString('base64'))
+    .then((data) => `data:application/pdf;base64,${data}`);
 
-  const documentUrl = `data:application/pdf;base64,${documentData.data}`;
+  const user = await getServerComponentSession();
 
   return (
     <SigningProvider email={recipient.email} fullName={recipient.name} signature={user?.signature}>
@@ -69,7 +72,7 @@ export default async function SigningPage({ params: { token } }: SigningPageProp
             gradient
           >
             <CardContent className="p-2">
-              <LazyPDFViewer document={documentUrl} />
+              <LazyPDFViewer document={documentDataUrl} />
             </CardContent>
           </Card>
 
diff --git a/apps/web/src/pages/api/document/create.ts b/apps/web/src/pages/api/document/create.ts
deleted file mode 100644
index 897c16f76..000000000
--- a/apps/web/src/pages/api/document/create.ts
+++ /dev/null
@@ -1,96 +0,0 @@
-import { NextApiRequest, NextApiResponse } from 'next';
-
-import formidable, { type File } from 'formidable';
-import { readFileSync } from 'fs';
-
-import { getServerSession } from '@documenso/lib/next-auth/get-server-session';
-import { prisma } from '@documenso/prisma';
-import { DocumentDataType, DocumentStatus } from '@documenso/prisma/client';
-
-import {
-  TCreateDocumentRequestSchema,
-  TCreateDocumentResponseSchema,
-} from '~/api/document/create/types';
-
-export const config = {
-  api: {
-    bodyParser: false,
-  },
-};
-
-export type TFormidableCreateDocumentRequestSchema = {
-  file: File;
-};
-
-export default async function handler(
-  req: NextApiRequest,
-  res: NextApiResponse<TCreateDocumentResponseSchema>,
-) {
-  const user = await getServerSession({ req, res });
-
-  if (!user) {
-    return res.status(401).json({
-      error: 'Unauthorized',
-    });
-  }
-
-  try {
-    const form = formidable();
-
-    const { file } = await new Promise<TFormidableCreateDocumentRequestSchema>(
-      (resolve, reject) => {
-        form.parse(req, (err, fields, files) => {
-          if (err) {
-            reject(err);
-          }
-
-          // We had intended to do this with Zod but we can only validate it
-          // as a persistent file which does not include the properties that we
-          // need.
-          // eslint-disable-next-line @typescript-eslint/consistent-type-assertions, @typescript-eslint/no-explicit-any
-          resolve({ ...fields, ...files } as any);
-        });
-      },
-    );
-
-    const fileBuffer = readFileSync(file.filepath);
-
-    const bytes64 = fileBuffer.toString('base64');
-
-    const document = await prisma.document.create({
-      data: {
-        title: file.originalFilename ?? file.newFilename,
-        status: DocumentStatus.DRAFT,
-        userId: user.id,
-        documentData: {
-          create: {
-            type: DocumentDataType.BYTES_64,
-            data: bytes64,
-            initialData: bytes64,
-          },
-        },
-        created: new Date(),
-      },
-    });
-
-    return res.status(200).json({
-      id: document.id,
-    });
-  } catch (err) {
-    console.error(err);
-
-    return res.status(500).json({
-      error: 'Internal server error',
-    });
-  }
-}
-
-/**
- * This is a hack to ensure that the types are correct.
- */
-type FormidableSatisfiesCreateDocument =
-  keyof TCreateDocumentRequestSchema extends keyof TFormidableCreateDocumentRequestSchema
-    ? true
-    : never;
-
-true satisfies FormidableSatisfiesCreateDocument;
diff --git a/apps/web/src/pages/api/feature-flag/get.ts b/apps/web/src/pages/api/feature-flag/get.ts
index 6d5204596..6e45b5a18 100644
--- a/apps/web/src/pages/api/feature-flag/get.ts
+++ b/apps/web/src/pages/api/feature-flag/get.ts
@@ -1,9 +1,9 @@
 import { NextRequest, NextResponse } from 'next/server';
 
-import { nanoid } from 'nanoid';
 import { JWT, getToken } from 'next-auth/jwt';
 
 import { LOCAL_FEATURE_FLAGS, extractPostHogConfig } from '@documenso/lib/constants/feature-flags';
+import { nanoid } from '@documenso/lib/universal/id';
 
 import PostHogServerClient from '~/helpers/get-post-hog-server-client';
 
diff --git a/apps/web/src/pages/api/stripe/webhook/index.ts b/apps/web/src/pages/api/stripe/webhook/index.ts
index 818b3759a..fb7877259 100644
--- a/apps/web/src/pages/api/stripe/webhook/index.ts
+++ b/apps/web/src/pages/api/stripe/webhook/index.ts
@@ -88,19 +88,21 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
 
       const bytes64 = readFileSync('./public/documenso-supporter-pledge.pdf').toString('base64');
 
+      const { id: documentDataId } = await prisma.documentData.create({
+        data: {
+          type: DocumentDataType.BYTES_64,
+          data: bytes64,
+          initialData: bytes64,
+        },
+      });
+
       const document = await prisma.document.create({
         data: {
           title: 'Documenso Supporter Pledge.pdf',
           status: DocumentStatus.COMPLETED,
           userId: user.id,
           created: now,
-          documentData: {
-            create: {
-              type: DocumentDataType.BYTES_64,
-              data: bytes64,
-              initialData: bytes64,
-            },
-          },
+          documentDataId,
         },
         include: {
           documentData: true,
diff --git a/package-lock.json b/package-lock.json
index 1fa10b764..348a046de 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -81,7 +81,6 @@
         "lucide-react": "^0.214.0",
         "luxon": "^3.4.0",
         "micro": "^10.0.1",
-        "nanoid": "^4.0.2",
         "next": "13.4.12",
         "next-auth": "4.22.3",
         "next-plausible": "^3.10.1",
@@ -132,6 +131,776 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
+    "node_modules/@aws-crypto/crc32": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/crc32/-/crc32-3.0.0.tgz",
+      "integrity": "sha512-IzSgsrxUcsrejQbPVilIKy16kAT52EwB6zSaI+M3xxIhKh5+aldEyvI+z6erM7TCLB2BJsFrtHjp6/4/sr+3dA==",
+      "dependencies": {
+        "@aws-crypto/util": "^3.0.0",
+        "@aws-sdk/types": "^3.222.0",
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/crc32/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-crypto/crc32c": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/crc32c/-/crc32c-3.0.0.tgz",
+      "integrity": "sha512-ENNPPManmnVJ4BTXlOjAgD7URidbAznURqD0KvfREyc4o20DPYdEldU1f5cQ7Jbj0CJJSPaMIk/9ZshdB3210w==",
+      "dependencies": {
+        "@aws-crypto/util": "^3.0.0",
+        "@aws-sdk/types": "^3.222.0",
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/crc32c/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-crypto/ie11-detection": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/ie11-detection/-/ie11-detection-3.0.0.tgz",
+      "integrity": "sha512-341lBBkiY1DfDNKai/wXM3aujNBkXR7tq1URPQDL9wi3AUbI80NR74uF1TXHMm7po1AcnFk8iu2S2IeU/+/A+Q==",
+      "dependencies": {
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/ie11-detection/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-crypto/sha1-browser": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/sha1-browser/-/sha1-browser-3.0.0.tgz",
+      "integrity": "sha512-NJth5c997GLHs6nOYTzFKTbYdMNA6/1XlKVgnZoaZcQ7z7UJlOgj2JdbHE8tiYLS3fzXNCguct77SPGat2raSw==",
+      "dependencies": {
+        "@aws-crypto/ie11-detection": "^3.0.0",
+        "@aws-crypto/supports-web-crypto": "^3.0.0",
+        "@aws-crypto/util": "^3.0.0",
+        "@aws-sdk/types": "^3.222.0",
+        "@aws-sdk/util-locate-window": "^3.0.0",
+        "@aws-sdk/util-utf8-browser": "^3.0.0",
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/sha1-browser/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-crypto/sha256-browser": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/sha256-browser/-/sha256-browser-3.0.0.tgz",
+      "integrity": "sha512-8VLmW2B+gjFbU5uMeqtQM6Nj0/F1bro80xQXCW6CQBWgosFWXTx77aeOF5CAIAmbOK64SdMBJdNr6J41yP5mvQ==",
+      "dependencies": {
+        "@aws-crypto/ie11-detection": "^3.0.0",
+        "@aws-crypto/sha256-js": "^3.0.0",
+        "@aws-crypto/supports-web-crypto": "^3.0.0",
+        "@aws-crypto/util": "^3.0.0",
+        "@aws-sdk/types": "^3.222.0",
+        "@aws-sdk/util-locate-window": "^3.0.0",
+        "@aws-sdk/util-utf8-browser": "^3.0.0",
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/sha256-browser/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-crypto/sha256-js": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/sha256-js/-/sha256-js-3.0.0.tgz",
+      "integrity": "sha512-PnNN7os0+yd1XvXAy23CFOmTbMaDxgxXtTKHybrJ39Y8kGzBATgBFibWJKH6BhytLI/Zyszs87xCOBNyBig6vQ==",
+      "dependencies": {
+        "@aws-crypto/util": "^3.0.0",
+        "@aws-sdk/types": "^3.222.0",
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/sha256-js/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-crypto/supports-web-crypto": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/supports-web-crypto/-/supports-web-crypto-3.0.0.tgz",
+      "integrity": "sha512-06hBdMwUAb2WFTuGG73LSC0wfPu93xWwo5vL2et9eymgmu3Id5vFAHBbajVWiGhPO37qcsdCap/FqXvJGJWPIg==",
+      "dependencies": {
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/supports-web-crypto/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-crypto/util": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/@aws-crypto/util/-/util-3.0.0.tgz",
+      "integrity": "sha512-2OJlpeJpCR48CC8r+uKVChzs9Iungj9wkZrl8Z041DWEWvyIHILYKCPNzJghKsivj+S3mLo6BVc7mBNzdxA46w==",
+      "dependencies": {
+        "@aws-sdk/types": "^3.222.0",
+        "@aws-sdk/util-utf8-browser": "^3.0.0",
+        "tslib": "^1.11.1"
+      }
+    },
+    "node_modules/@aws-crypto/util/node_modules/tslib": {
+      "version": "1.14.1",
+      "resolved": "https://registry.npmjs.org/tslib/-/tslib-1.14.1.tgz",
+      "integrity": "sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg=="
+    },
+    "node_modules/@aws-sdk/client-s3": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/client-s3/-/client-s3-3.410.0.tgz",
+      "integrity": "sha512-9pInvFl3xgk+CnbHFZVk0wAicZUiokIGQ05e/ZDBHjiWK5ph/XeQ4CCTuh7JxT0yABNhua8/6txsyq/uNXOzoA==",
+      "dependencies": {
+        "@aws-crypto/sha1-browser": "3.0.0",
+        "@aws-crypto/sha256-browser": "3.0.0",
+        "@aws-crypto/sha256-js": "3.0.0",
+        "@aws-sdk/client-sts": "3.410.0",
+        "@aws-sdk/credential-provider-node": "3.410.0",
+        "@aws-sdk/middleware-bucket-endpoint": "3.410.0",
+        "@aws-sdk/middleware-expect-continue": "3.410.0",
+        "@aws-sdk/middleware-flexible-checksums": "3.410.0",
+        "@aws-sdk/middleware-host-header": "3.410.0",
+        "@aws-sdk/middleware-location-constraint": "3.410.0",
+        "@aws-sdk/middleware-logger": "3.410.0",
+        "@aws-sdk/middleware-recursion-detection": "3.410.0",
+        "@aws-sdk/middleware-sdk-s3": "3.410.0",
+        "@aws-sdk/middleware-signing": "3.410.0",
+        "@aws-sdk/middleware-ssec": "3.410.0",
+        "@aws-sdk/middleware-user-agent": "3.410.0",
+        "@aws-sdk/signature-v4-multi-region": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-endpoints": "3.410.0",
+        "@aws-sdk/util-user-agent-browser": "3.410.0",
+        "@aws-sdk/util-user-agent-node": "3.410.0",
+        "@aws-sdk/xml-builder": "3.310.0",
+        "@smithy/config-resolver": "^2.0.7",
+        "@smithy/eventstream-serde-browser": "^2.0.6",
+        "@smithy/eventstream-serde-config-resolver": "^2.0.6",
+        "@smithy/eventstream-serde-node": "^2.0.6",
+        "@smithy/fetch-http-handler": "^2.1.2",
+        "@smithy/hash-blob-browser": "^2.0.6",
+        "@smithy/hash-node": "^2.0.6",
+        "@smithy/hash-stream-node": "^2.0.6",
+        "@smithy/invalid-dependency": "^2.0.6",
+        "@smithy/md5-js": "^2.0.6",
+        "@smithy/middleware-content-length": "^2.0.8",
+        "@smithy/middleware-endpoint": "^2.0.6",
+        "@smithy/middleware-retry": "^2.0.9",
+        "@smithy/middleware-serde": "^2.0.6",
+        "@smithy/middleware-stack": "^2.0.0",
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/node-http-handler": "^2.1.2",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/smithy-client": "^2.1.3",
+        "@smithy/types": "^2.3.0",
+        "@smithy/url-parser": "^2.0.6",
+        "@smithy/util-base64": "^2.0.0",
+        "@smithy/util-body-length-browser": "^2.0.0",
+        "@smithy/util-body-length-node": "^2.1.0",
+        "@smithy/util-defaults-mode-browser": "^2.0.7",
+        "@smithy/util-defaults-mode-node": "^2.0.9",
+        "@smithy/util-retry": "^2.0.0",
+        "@smithy/util-stream": "^2.0.9",
+        "@smithy/util-utf8": "^2.0.0",
+        "@smithy/util-waiter": "^2.0.6",
+        "fast-xml-parser": "4.2.5",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/client-sso": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/client-sso/-/client-sso-3.410.0.tgz",
+      "integrity": "sha512-MC9GrgwtlOuSL2WS3DRM3dQ/5y+49KSMMJRH6JiEcU5vE0dX/OtEcX+VfEwpi73x5pSfIjm7xnzjzOFx+sQBIg==",
+      "dependencies": {
+        "@aws-crypto/sha256-browser": "3.0.0",
+        "@aws-crypto/sha256-js": "3.0.0",
+        "@aws-sdk/middleware-host-header": "3.410.0",
+        "@aws-sdk/middleware-logger": "3.410.0",
+        "@aws-sdk/middleware-recursion-detection": "3.410.0",
+        "@aws-sdk/middleware-user-agent": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-endpoints": "3.410.0",
+        "@aws-sdk/util-user-agent-browser": "3.410.0",
+        "@aws-sdk/util-user-agent-node": "3.410.0",
+        "@smithy/config-resolver": "^2.0.7",
+        "@smithy/fetch-http-handler": "^2.1.2",
+        "@smithy/hash-node": "^2.0.6",
+        "@smithy/invalid-dependency": "^2.0.6",
+        "@smithy/middleware-content-length": "^2.0.8",
+        "@smithy/middleware-endpoint": "^2.0.6",
+        "@smithy/middleware-retry": "^2.0.9",
+        "@smithy/middleware-serde": "^2.0.6",
+        "@smithy/middleware-stack": "^2.0.0",
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/node-http-handler": "^2.1.2",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/smithy-client": "^2.1.3",
+        "@smithy/types": "^2.3.0",
+        "@smithy/url-parser": "^2.0.6",
+        "@smithy/util-base64": "^2.0.0",
+        "@smithy/util-body-length-browser": "^2.0.0",
+        "@smithy/util-body-length-node": "^2.1.0",
+        "@smithy/util-defaults-mode-browser": "^2.0.7",
+        "@smithy/util-defaults-mode-node": "^2.0.9",
+        "@smithy/util-retry": "^2.0.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/client-sts": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/client-sts/-/client-sts-3.410.0.tgz",
+      "integrity": "sha512-e6VMrBJtnTxxUXwDmkADGIvyppmDMFf4+cGGA68tVCUm1cFNlCI6M/67bVSIPN/WVKAAfhEL5O2vVXCM7aatYg==",
+      "dependencies": {
+        "@aws-crypto/sha256-browser": "3.0.0",
+        "@aws-crypto/sha256-js": "3.0.0",
+        "@aws-sdk/credential-provider-node": "3.410.0",
+        "@aws-sdk/middleware-host-header": "3.410.0",
+        "@aws-sdk/middleware-logger": "3.410.0",
+        "@aws-sdk/middleware-recursion-detection": "3.410.0",
+        "@aws-sdk/middleware-sdk-sts": "3.410.0",
+        "@aws-sdk/middleware-signing": "3.410.0",
+        "@aws-sdk/middleware-user-agent": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-endpoints": "3.410.0",
+        "@aws-sdk/util-user-agent-browser": "3.410.0",
+        "@aws-sdk/util-user-agent-node": "3.410.0",
+        "@smithy/config-resolver": "^2.0.7",
+        "@smithy/fetch-http-handler": "^2.1.2",
+        "@smithy/hash-node": "^2.0.6",
+        "@smithy/invalid-dependency": "^2.0.6",
+        "@smithy/middleware-content-length": "^2.0.8",
+        "@smithy/middleware-endpoint": "^2.0.6",
+        "@smithy/middleware-retry": "^2.0.9",
+        "@smithy/middleware-serde": "^2.0.6",
+        "@smithy/middleware-stack": "^2.0.0",
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/node-http-handler": "^2.1.2",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/smithy-client": "^2.1.3",
+        "@smithy/types": "^2.3.0",
+        "@smithy/url-parser": "^2.0.6",
+        "@smithy/util-base64": "^2.0.0",
+        "@smithy/util-body-length-browser": "^2.0.0",
+        "@smithy/util-body-length-node": "^2.1.0",
+        "@smithy/util-defaults-mode-browser": "^2.0.7",
+        "@smithy/util-defaults-mode-node": "^2.0.9",
+        "@smithy/util-retry": "^2.0.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "fast-xml-parser": "4.2.5",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/credential-provider-env": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-env/-/credential-provider-env-3.410.0.tgz",
+      "integrity": "sha512-c7TB9LbN0PkFOsXI0lcRJnqPNOmc4VBvrHf8jP/BkTDg4YUoKQKOFd4d0SqzODmlZiAyoMQVZTR4ISZo95Zj4Q==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/credential-provider-ini": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-ini/-/credential-provider-ini-3.410.0.tgz",
+      "integrity": "sha512-D8rcr5bRCFD0f42MPQ7K6TWZq5d3pfqrKINL1/bpfkK5BJbvq1BGYmR88UC6CLpTRtZ1LHY2HgYG0fp/2zjjww==",
+      "dependencies": {
+        "@aws-sdk/credential-provider-env": "3.410.0",
+        "@aws-sdk/credential-provider-process": "3.410.0",
+        "@aws-sdk/credential-provider-sso": "3.410.0",
+        "@aws-sdk/credential-provider-web-identity": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/credential-provider-imds": "^2.0.0",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/shared-ini-file-loader": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/credential-provider-node": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-node/-/credential-provider-node-3.410.0.tgz",
+      "integrity": "sha512-0wmVm33T/j1FS7MZ/j+WsPlgSc0YnCXnpbWSov1Mn6R86SHI2b2JhdIPRRE4XbGfyW2QGNUl2CwoZVaqhXeF5g==",
+      "dependencies": {
+        "@aws-sdk/credential-provider-env": "3.410.0",
+        "@aws-sdk/credential-provider-ini": "3.410.0",
+        "@aws-sdk/credential-provider-process": "3.410.0",
+        "@aws-sdk/credential-provider-sso": "3.410.0",
+        "@aws-sdk/credential-provider-web-identity": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/credential-provider-imds": "^2.0.0",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/shared-ini-file-loader": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/credential-provider-process": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-process/-/credential-provider-process-3.410.0.tgz",
+      "integrity": "sha512-BMju1hlDCDNkkSZpKF5SQ8G0WCLRj6/Jvw9QmudLHJuVwYJXEW1r2AsVMg98OZ3hB9G+MAvHruHZIbMiNmUMXQ==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/shared-ini-file-loader": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/credential-provider-sso": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-sso/-/credential-provider-sso-3.410.0.tgz",
+      "integrity": "sha512-zEaoY/sY+KYTlQUkp9dvveAHf175b8RIt0DsQkDrRPtrg/RBHR00r5rFvz9+nrwsR8546RaBU7h/zzTaQGhmcA==",
+      "dependencies": {
+        "@aws-sdk/client-sso": "3.410.0",
+        "@aws-sdk/token-providers": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/shared-ini-file-loader": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/credential-provider-web-identity": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-web-identity/-/credential-provider-web-identity-3.410.0.tgz",
+      "integrity": "sha512-cE0l8LmEHdWbDkdPNgrfdYSgp4/cIVXrjUKI1QCATA729CrHZ/OQjB/maOBOrMHO9YTiggko887NkslVvwVB7w==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-bucket-endpoint": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-bucket-endpoint/-/middleware-bucket-endpoint-3.410.0.tgz",
+      "integrity": "sha512-pUGrpFgCKf9fDHu01JJhhw+MUImheS0HFlZwNG37OMubkxUAbCdmYGewGxfTCUvWyZJtx9bVjrSu6gG7w+RARg==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-arn-parser": "3.310.0",
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-config-provider": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-expect-continue": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-expect-continue/-/middleware-expect-continue-3.410.0.tgz",
+      "integrity": "sha512-e5YqGCNmW99GZjEPPujJ02RlEZql19U40oORysBhVF7mKz8BBvF3s8l37tvu37oxebDEkh1u/2cm2+ggOXxLjQ==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-flexible-checksums": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-flexible-checksums/-/middleware-flexible-checksums-3.410.0.tgz",
+      "integrity": "sha512-IK7KlvEKtrQVBfmAp/MmGd0wbWLuN2GZwwfAmsU0qFb0f5vOVUbKDsu6tudtDKCBG9uXyTEsx3/QGvoK2zDy+g==",
+      "dependencies": {
+        "@aws-crypto/crc32": "3.0.0",
+        "@aws-crypto/crc32c": "3.0.0",
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/is-array-buffer": "^2.0.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-host-header": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-host-header/-/middleware-host-header-3.410.0.tgz",
+      "integrity": "sha512-ED/OVcyITln5rrxnajZP+V0PN1nug+gSDHJDqdDo/oLy7eiDr/ZWn3nlWW7WcMplQ1/Jnb+hK0UetBp/25XooA==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-location-constraint": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-location-constraint/-/middleware-location-constraint-3.410.0.tgz",
+      "integrity": "sha512-jAftSpOpw/5AdpOJ/cGiXCb+Vv22KXR5QZmxmllUDsnlm18672tpRaI2plmu/1d98CVvqhY61eSklFMrIf2c4w==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-logger": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-logger/-/middleware-logger-3.410.0.tgz",
+      "integrity": "sha512-YtmKYCVtBfScq3/UFJk+aSZOktKJBNZL9DaSc2aPcy/goCVsYDOkGwtHk0jIkC1JRSNCkVTqL7ya60sSr8zaQQ==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-recursion-detection": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-recursion-detection/-/middleware-recursion-detection-3.410.0.tgz",
+      "integrity": "sha512-KWaes5FLzRqj28vaIEE4Bimpga2E596WdPF2HaH6zsVMJddoRDsc3ZX9ZhLOGrXzIO1RqBd0QxbLrM0S/B2aOQ==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-sdk-s3": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-sdk-s3/-/middleware-sdk-s3-3.410.0.tgz",
+      "integrity": "sha512-K2sG2V1ZkezYMCIy3uMt0MwtflcfIwLptwm0iFLaYitiINZQ1tcslk9ggAjyTHg0rslDSI4/zjkhy8VHFOV7HA==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-arn-parser": "3.310.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-sdk-sts": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-sdk-sts/-/middleware-sdk-sts-3.410.0.tgz",
+      "integrity": "sha512-YfBpctDocRR4CcROoDueJA7D+aMLBV8nTFfmVNdLLLgyuLZ/AUR11VQSu1lf9gQZKl8IpKE/BLf2fRE/qV1ZuA==",
+      "dependencies": {
+        "@aws-sdk/middleware-signing": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-signing": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-signing/-/middleware-signing-3.410.0.tgz",
+      "integrity": "sha512-KBAZ/eoAJUSJv5us2HsKwK2OszG2s9FEyKpEhgnHLcbbKzW873zHBH5GcOGEQu4AWArTy2ndzJu3FF+9/J9hJQ==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/signature-v4": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-middleware": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-ssec": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-ssec/-/middleware-ssec-3.410.0.tgz",
+      "integrity": "sha512-DNsjVTXoxIh+PuW9o45CFaMiconbuZRm19MC3NA1yNCaCj3ZxD5OdXAutq6UjQdrx8UG4EjUlCJEEvBKmboITw==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/middleware-user-agent": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-user-agent/-/middleware-user-agent-3.410.0.tgz",
+      "integrity": "sha512-ZayDtLfvCZUohSxQc/49BfoU/y6bDHLfLdyyUJbJ54Sv8zQcrmdyKvCBFUZwE6tHQgAmv9/ZT18xECMl+xiONA==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-endpoints": "3.410.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/s3-request-presigner": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/s3-request-presigner/-/s3-request-presigner-3.410.0.tgz",
+      "integrity": "sha512-In2/XPdPA874XH0MdhLJ7tG74Yay/ATCMpMQcy+summlPhmO1G3BiKMoaDPRks+zJNhgiy6++PlcP93fwDSxcA==",
+      "dependencies": {
+        "@aws-sdk/signature-v4-multi-region": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-format-url": "3.410.0",
+        "@smithy/middleware-endpoint": "^2.0.6",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/smithy-client": "^2.1.3",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/signature-v4-crt": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/signature-v4-crt/-/signature-v4-crt-3.410.0.tgz",
+      "integrity": "sha512-8lt0YG/LzdCNCXM+GNhsYjHdCkH83oM/Di1HOOgZy/u50u0KOb5REiEYBq2TXMzED4BPVgblDhiJviCGqwcWiQ==",
+      "dependencies": {
+        "@smithy/querystring-parser": "^2.0.0",
+        "@smithy/signature-v4": "^2.0.0",
+        "@smithy/util-middleware": "^2.0.0",
+        "aws-crt": "^1.15.9",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/signature-v4-multi-region": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/signature-v4-multi-region/-/signature-v4-multi-region-3.410.0.tgz",
+      "integrity": "sha512-abgcl9/i9frxGUVAfHHWj49UMCFEmzkYwKmV/4kw9MYn6BZ3HKb5M00tBLn9/PcAKfANS7O+qJRiEQT66rmfhg==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/signature-v4": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      },
+      "peerDependencies": {
+        "@aws-sdk/signature-v4-crt": "^3.118.0"
+      },
+      "peerDependenciesMeta": {
+        "@aws-sdk/signature-v4-crt": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@aws-sdk/token-providers": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/token-providers/-/token-providers-3.410.0.tgz",
+      "integrity": "sha512-d5Nc0xydkH/X0LA1HDyhGY5sEv4LuADFk+QpDtT8ogLilcre+b1jpdY8Sih/gd1KoGS1H+d1tz2hSGwUHAbUbw==",
+      "dependencies": {
+        "@aws-crypto/sha256-browser": "3.0.0",
+        "@aws-crypto/sha256-js": "3.0.0",
+        "@aws-sdk/middleware-host-header": "3.410.0",
+        "@aws-sdk/middleware-logger": "3.410.0",
+        "@aws-sdk/middleware-recursion-detection": "3.410.0",
+        "@aws-sdk/middleware-user-agent": "3.410.0",
+        "@aws-sdk/types": "3.410.0",
+        "@aws-sdk/util-endpoints": "3.410.0",
+        "@aws-sdk/util-user-agent-browser": "3.410.0",
+        "@aws-sdk/util-user-agent-node": "3.410.0",
+        "@smithy/config-resolver": "^2.0.7",
+        "@smithy/fetch-http-handler": "^2.1.2",
+        "@smithy/hash-node": "^2.0.6",
+        "@smithy/invalid-dependency": "^2.0.6",
+        "@smithy/middleware-content-length": "^2.0.8",
+        "@smithy/middleware-endpoint": "^2.0.6",
+        "@smithy/middleware-retry": "^2.0.9",
+        "@smithy/middleware-serde": "^2.0.6",
+        "@smithy/middleware-stack": "^2.0.0",
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/node-http-handler": "^2.1.2",
+        "@smithy/property-provider": "^2.0.0",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/shared-ini-file-loader": "^2.0.6",
+        "@smithy/smithy-client": "^2.1.3",
+        "@smithy/types": "^2.3.0",
+        "@smithy/url-parser": "^2.0.6",
+        "@smithy/util-base64": "^2.0.0",
+        "@smithy/util-body-length-browser": "^2.0.0",
+        "@smithy/util-body-length-node": "^2.1.0",
+        "@smithy/util-defaults-mode-browser": "^2.0.7",
+        "@smithy/util-defaults-mode-node": "^2.0.9",
+        "@smithy/util-retry": "^2.0.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/types": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/types/-/types-3.410.0.tgz",
+      "integrity": "sha512-D7iaUCszv/v04NDaZUmCmekamy6VD/lKozm/3gS9+dkfU6cC2CsNoUfPV8BlV6dPdw0oWgF91am3I1stdvfVrQ==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/util-arn-parser": {
+      "version": "3.310.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/util-arn-parser/-/util-arn-parser-3.310.0.tgz",
+      "integrity": "sha512-jL8509owp/xB9+Or0pvn3Fe+b94qfklc2yPowZZIFAkFcCSIdkIglz18cPDWnYAcy9JGewpMS1COXKIUhZkJsA==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/util-endpoints": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/util-endpoints/-/util-endpoints-3.410.0.tgz",
+      "integrity": "sha512-iNiqJyC7N3+8zFwnXUqcWSxrZecVZLToo1iTQQdeYL2af1IcOtRgb7n8jpAI/hmXhBSx2+3RI+Y7pxyFo1vu+w==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/util-format-url": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/util-format-url/-/util-format-url-3.410.0.tgz",
+      "integrity": "sha512-ftxPYq7RBxJMQrOCJARx8+sQccmG+6y7mm9JzfXOHOfS1aWnYQizTitJ7PMA8p90xrUAFQ2CmjT0jaEGWg5VGQ==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/querystring-builder": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/util-locate-window": {
+      "version": "3.310.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/util-locate-window/-/util-locate-window-3.310.0.tgz",
+      "integrity": "sha512-qo2t/vBTnoXpjKxlsC2e1gBrRm80M3bId27r0BRB2VniSSe7bL1mmzM+/HFtujm0iAxtPM+aLEflLJlJeDPg0w==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@aws-sdk/util-user-agent-browser": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/util-user-agent-browser/-/util-user-agent-browser-3.410.0.tgz",
+      "integrity": "sha512-i1G/XGpXGMRT2zEiAhi1xucJsfCWk8nNYjk/LbC0sA+7B9Huri96YAzVib12wkHPsJQvZxZC6CpQDIHWm4lXMA==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/types": "^2.3.0",
+        "bowser": "^2.11.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@aws-sdk/util-user-agent-node": {
+      "version": "3.410.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/util-user-agent-node/-/util-user-agent-node-3.410.0.tgz",
+      "integrity": "sha512-bK70t1jHRl8HrJXd4hEIwc5PBZ7U0w+81AKFnanIVKZwZedd6nLibUXDTK14z/Jp2GFcBqd4zkt2YLGkRt/U4A==",
+      "dependencies": {
+        "@aws-sdk/types": "3.410.0",
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      },
+      "peerDependencies": {
+        "aws-crt": ">=1.0.0"
+      },
+      "peerDependenciesMeta": {
+        "aws-crt": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/@aws-sdk/util-utf8-browser": {
+      "version": "3.259.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/util-utf8-browser/-/util-utf8-browser-3.259.0.tgz",
+      "integrity": "sha512-UvFa/vR+e19XookZF8RzFZBrw2EUkQWxiBW0yYQAhvk3C+QVGl0H3ouca8LDBlBfQKXwmW3huo/59H8rwb1wJw==",
+      "dependencies": {
+        "tslib": "^2.3.1"
+      }
+    },
+    "node_modules/@aws-sdk/xml-builder": {
+      "version": "3.310.0",
+      "resolved": "https://registry.npmjs.org/@aws-sdk/xml-builder/-/xml-builder-3.310.0.tgz",
+      "integrity": "sha512-TqELu4mOuSIKQCqj63fGVs86Yh+vBx5nHRpWKNUNhB2nPTpfbziTs5c1X358be3peVWA4wPxW7Nt53KIg1tnNw==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
     "node_modules/@babel/code-frame": {
       "version": "7.12.11",
       "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.12.11.tgz",
@@ -1683,6 +2452,53 @@
         "react-hook-form": "^7.0.0"
       }
     },
+    "node_modules/@httptoolkit/websocket-stream": {
+      "version": "6.0.1",
+      "resolved": "https://registry.npmjs.org/@httptoolkit/websocket-stream/-/websocket-stream-6.0.1.tgz",
+      "integrity": "sha512-A0NOZI+Glp3Xgcz6Na7i7o09+/+xm2m0UCU8gdtM2nIv6/cjLmhMZMqehSpTlgbx9omtLmV8LVqOskPEyWnmZQ==",
+      "dependencies": {
+        "@types/ws": "*",
+        "duplexify": "^3.5.1",
+        "inherits": "^2.0.1",
+        "isomorphic-ws": "^4.0.1",
+        "readable-stream": "^2.3.3",
+        "safe-buffer": "^5.1.2",
+        "ws": "*",
+        "xtend": "^4.0.0"
+      }
+    },
+    "node_modules/@httptoolkit/websocket-stream/node_modules/isarray": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/isarray/-/isarray-1.0.0.tgz",
+      "integrity": "sha512-VLghIWNM6ELQzo7zwmcg0NmTVyWKYjvIeM83yjp0wRDTmUnrM678fQbcKBo6n2CJEF0szoG//ytg+TKla89ALQ=="
+    },
+    "node_modules/@httptoolkit/websocket-stream/node_modules/readable-stream": {
+      "version": "2.3.8",
+      "resolved": "https://registry.npmjs.org/readable-stream/-/readable-stream-2.3.8.tgz",
+      "integrity": "sha512-8p0AUk4XODgIewSi0l8Epjs+EVnWiK7NoDIEGU0HhE7+ZyY8D1IMY7odu5lRrFXGg71L15KG8QrPmum45RTtdA==",
+      "dependencies": {
+        "core-util-is": "~1.0.0",
+        "inherits": "~2.0.3",
+        "isarray": "~1.0.0",
+        "process-nextick-args": "~2.0.0",
+        "safe-buffer": "~5.1.1",
+        "string_decoder": "~1.1.1",
+        "util-deprecate": "~1.0.1"
+      }
+    },
+    "node_modules/@httptoolkit/websocket-stream/node_modules/safe-buffer": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz",
+      "integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g=="
+    },
+    "node_modules/@httptoolkit/websocket-stream/node_modules/string_decoder": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz",
+      "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==",
+      "dependencies": {
+        "safe-buffer": "~5.1.0"
+      }
+    },
     "node_modules/@humanwhocodes/config-array": {
       "version": "0.11.11",
       "resolved": "https://registry.npmjs.org/@humanwhocodes/config-array/-/config-array-0.11.11.tgz",
@@ -4183,6 +4999,14 @@
       "resolved": "https://registry.npmjs.org/@rushstack/eslint-patch/-/eslint-patch-1.3.2.tgz",
       "integrity": "sha512-V+MvGwaHH03hYhY+k6Ef/xKd6RYlc4q8WBx+2ANmipHJcKuktNcI/NgEsJgdSUF6Lw32njT6OnrRsKYCdgHjYw=="
     },
+    "node_modules/@scure/base": {
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/@scure/base/-/base-1.1.3.tgz",
+      "integrity": "sha512-/+SgoRjLq7Xlf0CWuLHq2LUZeL/w65kfzAPG5NH9pcmBhs+nunQTn4gvdwgMTIXnt9b2C/1SeL2XiysZEyIC9Q==",
+      "funding": {
+        "url": "https://paulmillr.com/funding/"
+      }
+    },
     "node_modules/@selderee/plugin-htmlparser2": {
       "version": "0.10.0",
       "resolved": "https://registry.npmjs.org/@selderee/plugin-htmlparser2/-/plugin-htmlparser2-0.10.0.tgz",
@@ -4195,6 +5019,650 @@
         "url": "https://ko-fi.com/killymxi"
       }
     },
+    "node_modules/@sindresorhus/slugify": {
+      "version": "2.2.1",
+      "resolved": "https://registry.npmjs.org/@sindresorhus/slugify/-/slugify-2.2.1.tgz",
+      "integrity": "sha512-MkngSCRZ8JdSOCHRaYd+D01XhvU3Hjy6MGl06zhOk614hp9EOAp5gIkBeQg7wtmxpitU6eAL4kdiRMcJa2dlrw==",
+      "dependencies": {
+        "@sindresorhus/transliterate": "^1.0.0",
+        "escape-string-regexp": "^5.0.0"
+      },
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/@sindresorhus/slugify/node_modules/escape-string-regexp": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-5.0.0.tgz",
+      "integrity": "sha512-/veY75JbMK4j1yjvuUxuVsiS/hr/4iHs9FTT6cgTexxdE0Ly/glccBAkloH/DofkjRbZU3bnoj38mOmhkZ0lHw==",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/@sindresorhus/transliterate": {
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/@sindresorhus/transliterate/-/transliterate-1.6.0.tgz",
+      "integrity": "sha512-doH1gimEu3A46VX6aVxpHTeHrytJAG6HgdxntYnCFiIFHEM/ZGpG8KiZGBChchjQmG0XFIBL552kBTjVcMZXwQ==",
+      "dependencies": {
+        "escape-string-regexp": "^5.0.0"
+      },
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/@sindresorhus/transliterate/node_modules/escape-string-regexp": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/escape-string-regexp/-/escape-string-regexp-5.0.0.tgz",
+      "integrity": "sha512-/veY75JbMK4j1yjvuUxuVsiS/hr/4iHs9FTT6cgTexxdE0Ly/glccBAkloH/DofkjRbZU3bnoj38mOmhkZ0lHw==",
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/@smithy/abort-controller": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/abort-controller/-/abort-controller-2.0.6.tgz",
+      "integrity": "sha512-4I7g0lyGUlW2onf8mD76IzU37oRWSHsQ5zlW5MjDzgg4I4J9bOK4500Gx6qOuoN7+GulAnGLe1YwyrIluzhakg==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/chunked-blob-reader": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/chunked-blob-reader/-/chunked-blob-reader-2.0.0.tgz",
+      "integrity": "sha512-k+J4GHJsMSAIQPChGBrjEmGS+WbPonCXesoqP9fynIqjn7rdOThdH8FAeCmokP9mxTYKQAKoHCLPzNlm6gh7Wg==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/chunked-blob-reader-native": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/chunked-blob-reader-native/-/chunked-blob-reader-native-2.0.0.tgz",
+      "integrity": "sha512-HM8V2Rp1y8+1343tkZUKZllFhEQPNmpNdgFAncbTsxkZ18/gqjk23XXv3qGyXWp412f3o43ZZ1UZHVcHrpRnCQ==",
+      "dependencies": {
+        "@smithy/util-base64": "^2.0.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/config-resolver": {
+      "version": "2.0.7",
+      "resolved": "https://registry.npmjs.org/@smithy/config-resolver/-/config-resolver-2.0.7.tgz",
+      "integrity": "sha512-J4J1AWiqaApC+3I9U++SuxAQ3BOoM5VoYnpFzCZcb63aLF80Zpc/nq2pFR1OsEIYyg2UYNdcBKKfHABmwo4WgQ==",
+      "dependencies": {
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-config-provider": "^2.0.0",
+        "@smithy/util-middleware": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/credential-provider-imds": {
+      "version": "2.0.9",
+      "resolved": "https://registry.npmjs.org/@smithy/credential-provider-imds/-/credential-provider-imds-2.0.9.tgz",
+      "integrity": "sha512-K7WZRkHS5HZofRgK+O8W4YXXyaVexU1K6hp9vlUL/8CsnrFbZS9quyH/6hTROrYh2PuJr24yii1kc83NJdxMGQ==",
+      "dependencies": {
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/property-provider": "^2.0.7",
+        "@smithy/types": "^2.3.0",
+        "@smithy/url-parser": "^2.0.6",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/eventstream-codec": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/eventstream-codec/-/eventstream-codec-2.0.6.tgz",
+      "integrity": "sha512-J9xL82mlYRUMXFnB9VaThXkD7z2JLr52FIVZMoQQ1dxZG5ub+NOGmzaTTZC/cMmKXI/nwCoFuwDWCTjwQhYhQA==",
+      "dependencies": {
+        "@aws-crypto/crc32": "3.0.0",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-hex-encoding": "^2.0.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/eventstream-serde-browser": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/eventstream-serde-browser/-/eventstream-serde-browser-2.0.6.tgz",
+      "integrity": "sha512-cNJqAkmArHytV0CjBka3CKnU/J6zNlOZynvo2Txj98a0cxKeug8gL6SQTpoTyGk+M4LicjcrzQtDs06mU8U0Ag==",
+      "dependencies": {
+        "@smithy/eventstream-serde-universal": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/eventstream-serde-config-resolver": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/eventstream-serde-config-resolver/-/eventstream-serde-config-resolver-2.0.6.tgz",
+      "integrity": "sha512-jODu0MWaP06kzBMUtSd4Ga3S2DnTp3tfjPgdjaw9K/Z4yI7J9rUB73aNGo6ZxxH/vl/k66b5NZJ/3O1AzZ4ggw==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/eventstream-serde-node": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/eventstream-serde-node/-/eventstream-serde-node-2.0.6.tgz",
+      "integrity": "sha512-ua7ok1g16p7OGAVZntn1l3wegN8RtsyPBl9ebqEDeSxdm+iuEfkAS1E/JFs6S6UBfr8Z0tbql5jTT9iVwIFGGA==",
+      "dependencies": {
+        "@smithy/eventstream-serde-universal": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/eventstream-serde-universal": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/eventstream-serde-universal/-/eventstream-serde-universal-2.0.6.tgz",
+      "integrity": "sha512-bH1TElelS8tlqll6cJAWKM11Es+pE9htRzjiiFG1+xcyKaM90UFNRX5oKZIrJugZlmP37pvfRwSJ/3ZaaqSBIA==",
+      "dependencies": {
+        "@smithy/eventstream-codec": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/fetch-http-handler": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/@smithy/fetch-http-handler/-/fetch-http-handler-2.1.2.tgz",
+      "integrity": "sha512-3Gm3pQm4viUPU+e7KkRScS9t5phBxSNRS8rQSZ+HeCwK/busrX0/2HJZiwLvGblqPqi1laJB0lD18AdiOioJww==",
+      "dependencies": {
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/querystring-builder": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-base64": "^2.0.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/hash-blob-browser": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/hash-blob-browser/-/hash-blob-browser-2.0.6.tgz",
+      "integrity": "sha512-zmJCRb80WDthCZqQ9LiKeFUEmyPM9WUcd0jYa7tlU3p0LsDnaFKuUS+MT0uJehPGyUEicbi1KBdUmtoqEAQr1A==",
+      "dependencies": {
+        "@smithy/chunked-blob-reader": "^2.0.0",
+        "@smithy/chunked-blob-reader-native": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/hash-node": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/hash-node/-/hash-node-2.0.6.tgz",
+      "integrity": "sha512-xz7fzFxSzxohKGGyKPbLReRrY01JOZgRDHIXSks3PxQxG9c8PJMa5nUw0stH8UOySUgkofmMy0n7vTUsF5Mdqg==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-buffer-from": "^2.0.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/hash-stream-node": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/hash-stream-node/-/hash-stream-node-2.0.6.tgz",
+      "integrity": "sha512-BWtWJ8Ppc8z+Rz9XBu4Hcl+pC+9BKV5GvbQpXZf4IsQX6oTwqo0qJK7Lwe5mYM0hRnqgwjn2mhQ303fIRN7AMw==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/invalid-dependency": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/invalid-dependency/-/invalid-dependency-2.0.6.tgz",
+      "integrity": "sha512-L5MUyl9mzawIvBxr0Hg3J/Q5qZFXKcBgMk0PacfK3Mthp4WAR6h7iMxdSQ23Q7X/kxOrpZuoYEdh1BWLKbDc8Q==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/is-array-buffer": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/is-array-buffer/-/is-array-buffer-2.0.0.tgz",
+      "integrity": "sha512-z3PjFjMyZNI98JFRJi/U0nGoLWMSJlDjAW4QUX2WNZLas5C0CmVV6LJ01JI0k90l7FvpmixjWxPFmENSClQ7ug==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/md5-js": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/md5-js/-/md5-js-2.0.6.tgz",
+      "integrity": "sha512-Ek2qSFFICJa2E0RRVsIkQ6c1jeJTESwF24SMh3liKFNbr2Ax4uJiWsLhDBDQFOhJwjp1mbC4lN85isfGS+KhQg==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/middleware-content-length": {
+      "version": "2.0.8",
+      "resolved": "https://registry.npmjs.org/@smithy/middleware-content-length/-/middleware-content-length-2.0.8.tgz",
+      "integrity": "sha512-fHJFsscHXrYhUSWMFJNXfsZW8KsyhWQfBgU3b0nvDfpm+NAeQLqKYNhywGrDwZQc1k+lt7Fw9faAquhNPxTZRA==",
+      "dependencies": {
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/middleware-endpoint": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/middleware-endpoint/-/middleware-endpoint-2.0.6.tgz",
+      "integrity": "sha512-MuSPPtEHFal/M77tR3ffLsdOfX29IZpA990nGuoPj5zQnAYrA4PYBGoqqrASQKm8Xb3C0NwuYzOATT7WX4f5Pg==",
+      "dependencies": {
+        "@smithy/middleware-serde": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "@smithy/url-parser": "^2.0.6",
+        "@smithy/util-middleware": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/middleware-retry": {
+      "version": "2.0.9",
+      "resolved": "https://registry.npmjs.org/@smithy/middleware-retry/-/middleware-retry-2.0.9.tgz",
+      "integrity": "sha512-gneEqWj4l/ZjHdZPk0BFMXoTalRArdQ8i579/KqJgBAc6Ux5vnR/SSppkMCkj2kOQYwdypvzSPeqEW3ZrvIg6g==",
+      "dependencies": {
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/service-error-classification": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-middleware": "^2.0.0",
+        "@smithy/util-retry": "^2.0.0",
+        "tslib": "^2.5.0",
+        "uuid": "^8.3.2"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/middleware-serde": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/middleware-serde/-/middleware-serde-2.0.6.tgz",
+      "integrity": "sha512-8/GODBngYbrS28CMZtaHIL4R9rLNSQ/zgb+N1OAZ02NwBUawlnLDcatve9YRzhJC/IWz0/pt+WimJZaO1sGcig==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/middleware-stack": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/middleware-stack/-/middleware-stack-2.0.0.tgz",
+      "integrity": "sha512-31XC1xNF65nlbc16yuh3wwTudmqs6qy4EseQUGF8A/p2m/5wdd/cnXJqpniy/XvXVwkHPz/GwV36HqzHtIKATQ==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/node-config-provider": {
+      "version": "2.0.9",
+      "resolved": "https://registry.npmjs.org/@smithy/node-config-provider/-/node-config-provider-2.0.9.tgz",
+      "integrity": "sha512-TlSPbCwtT/jgNnmPQqKuCR5CFN8UIrCCHRrgUfs3NqRMuaLLeP8TPe1fSKq2J8h1M/jd4BF853gneles0gWevg==",
+      "dependencies": {
+        "@smithy/property-provider": "^2.0.7",
+        "@smithy/shared-ini-file-loader": "^2.0.8",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/node-http-handler": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/@smithy/node-http-handler/-/node-http-handler-2.1.2.tgz",
+      "integrity": "sha512-PdEEDCShuM8zxGoaRxmGB/1ikB8oeqz+ZAF9VIA8FCP3E59j8zDTF+wCELoWd1Y6gtxr+RcTAg5sA8nvn5qH/w==",
+      "dependencies": {
+        "@smithy/abort-controller": "^2.0.6",
+        "@smithy/protocol-http": "^3.0.2",
+        "@smithy/querystring-builder": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/property-provider": {
+      "version": "2.0.7",
+      "resolved": "https://registry.npmjs.org/@smithy/property-provider/-/property-provider-2.0.7.tgz",
+      "integrity": "sha512-XT8Tl7YNxM8tCtGqy7v7DSf6PxyXaPE9cdA/Yj4dEw2b05V3RrPqsP+t5XJiZu0yIsQ7pdeYZWv2sSEWVjNeAg==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/protocol-http": {
+      "version": "3.0.2",
+      "resolved": "https://registry.npmjs.org/@smithy/protocol-http/-/protocol-http-3.0.2.tgz",
+      "integrity": "sha512-LUOWCPRihvJBkdSs+ivK9m1f/rMfF3n9Zpzg8qdry2eIG4HQqqLBMWQyF9bgk7JhsrrOa3//jJKhXzvL7wL5Xw==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/querystring-builder": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/querystring-builder/-/querystring-builder-2.0.6.tgz",
+      "integrity": "sha512-HnU00shCGoV8vKJZTiNBkNvR9NogU3NIUaVMAGJPSqNGJj3psWo+TUrC0BVCDcwiCljXwXCFGJqIcsWtClrktQ==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-uri-escape": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/querystring-parser": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/querystring-parser/-/querystring-parser-2.0.6.tgz",
+      "integrity": "sha512-i4LKoXHP7pTFAPjLIJyQXYOhWokbcFha3WWsX74sAKmuluv0XM2cxONZoFxwEzmWhsNyM6buSwJSZXyPiec0AQ==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/service-error-classification": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/service-error-classification/-/service-error-classification-2.0.0.tgz",
+      "integrity": "sha512-2z5Nafy1O0cTf69wKyNjGW/sNVMiqDnb4jgwfMG8ye8KnFJ5qmJpDccwIbJNhXIfbsxTg9SEec2oe1cexhMJvw==",
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/shared-ini-file-loader": {
+      "version": "2.0.8",
+      "resolved": "https://registry.npmjs.org/@smithy/shared-ini-file-loader/-/shared-ini-file-loader-2.0.8.tgz",
+      "integrity": "sha512-4u+V+Dv7JGpJ0tppB5rxCem7WhdFux950z4cGPhV0kHTPkKe8DDgINzOlVa2RBu5dI33D02OBJcxFjhW4FPORg==",
+      "dependencies": {
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/signature-v4": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/signature-v4/-/signature-v4-2.0.6.tgz",
+      "integrity": "sha512-4zNTi8w4sky07YKq7oYucZt4ogY00IEaS1NFDXxmCN5V/ywE0WiK+WMim+8wtYQmB0qy3oExZR4LoCAml6j/rA==",
+      "dependencies": {
+        "@smithy/eventstream-codec": "^2.0.6",
+        "@smithy/is-array-buffer": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-hex-encoding": "^2.0.0",
+        "@smithy/util-middleware": "^2.0.0",
+        "@smithy/util-uri-escape": "^2.0.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/smithy-client": {
+      "version": "2.1.3",
+      "resolved": "https://registry.npmjs.org/@smithy/smithy-client/-/smithy-client-2.1.3.tgz",
+      "integrity": "sha512-nSMMp2AKqcG/ruzCY01ogrMdbq/WS1cvGStTsw7yd6bTpp/bGtlOgXvy3h7e0zP7w2DH1AtvIwzYBD6ejZePsQ==",
+      "dependencies": {
+        "@smithy/middleware-stack": "^2.0.0",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-stream": "^2.0.9",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/types": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/@smithy/types/-/types-2.3.0.tgz",
+      "integrity": "sha512-pJce3rd39MElkV57UTPAoSYAApjQLELUxjU5adHNLYk9gnPvyIGbJNJTZVVFu00BrgZH3W/cQe8QuFcknDyodQ==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/url-parser": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/url-parser/-/url-parser-2.0.6.tgz",
+      "integrity": "sha512-9i6j5QW6bapHZ4rtkXOAm0hOUG1+5IVdVJXNSUTcNskwJchZH5IQuDNPCbgUi/u2P8EZazKt4wXT51QxOXCz1A==",
+      "dependencies": {
+        "@smithy/querystring-parser": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/util-base64": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-base64/-/util-base64-2.0.0.tgz",
+      "integrity": "sha512-Zb1E4xx+m5Lud8bbeYi5FkcMJMnn+1WUnJF3qD7rAdXpaL7UjkFQLdmW5fHadoKbdHpwH9vSR8EyTJFHJs++tA==",
+      "dependencies": {
+        "@smithy/util-buffer-from": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-body-length-browser": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-body-length-browser/-/util-body-length-browser-2.0.0.tgz",
+      "integrity": "sha512-JdDuS4ircJt+FDnaQj88TzZY3+njZ6O+D3uakS32f2VNnDo3vyEuNdBOh/oFd8Df1zSZOuH1HEChk2AOYDezZg==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      }
+    },
+    "node_modules/@smithy/util-body-length-node": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-body-length-node/-/util-body-length-node-2.1.0.tgz",
+      "integrity": "sha512-/li0/kj/y3fQ3vyzn36NTLGmUwAICb7Jbe/CsWCktW363gh1MOcpEcSO3mJ344Gv2dqz8YJCLQpb6hju/0qOWw==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-buffer-from": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-buffer-from/-/util-buffer-from-2.0.0.tgz",
+      "integrity": "sha512-/YNnLoHsR+4W4Vf2wL5lGv0ksg8Bmk3GEGxn2vEQt52AQaPSCuaO5PM5VM7lP1K9qHRKHwrPGktqVoAHKWHxzw==",
+      "dependencies": {
+        "@smithy/is-array-buffer": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-config-provider": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-config-provider/-/util-config-provider-2.0.0.tgz",
+      "integrity": "sha512-xCQ6UapcIWKxXHEU4Mcs2s7LcFQRiU3XEluM2WcCjjBtQkUN71Tb+ydGmJFPxMUrW/GWMgQEEGipLym4XG0jZg==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-defaults-mode-browser": {
+      "version": "2.0.7",
+      "resolved": "https://registry.npmjs.org/@smithy/util-defaults-mode-browser/-/util-defaults-mode-browser-2.0.7.tgz",
+      "integrity": "sha512-s1caKxC7Y87Q72Goll//clZs2WNBfG9WtFDWVRS+Qgk147YPCOUYtkpuD0XZAh/vbayObFz5tQ1fiX4G19HSCA==",
+      "dependencies": {
+        "@smithy/property-provider": "^2.0.7",
+        "@smithy/types": "^2.3.0",
+        "bowser": "^2.11.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">= 10.0.0"
+      }
+    },
+    "node_modules/@smithy/util-defaults-mode-node": {
+      "version": "2.0.9",
+      "resolved": "https://registry.npmjs.org/@smithy/util-defaults-mode-node/-/util-defaults-mode-node-2.0.9.tgz",
+      "integrity": "sha512-HlV4iNL3/PgPpmDGs0+XrAKtwFQ8rOs5P2y5Dye8dUYaJauadlzHRrNKk7wH2aBYswvT2HM+PIgXamvrE7xbcw==",
+      "dependencies": {
+        "@smithy/config-resolver": "^2.0.7",
+        "@smithy/credential-provider-imds": "^2.0.9",
+        "@smithy/node-config-provider": "^2.0.9",
+        "@smithy/property-provider": "^2.0.7",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">= 10.0.0"
+      }
+    },
+    "node_modules/@smithy/util-hex-encoding": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-hex-encoding/-/util-hex-encoding-2.0.0.tgz",
+      "integrity": "sha512-c5xY+NUnFqG6d7HFh1IFfrm3mGl29lC+vF+geHv4ToiuJCBmIfzx6IeHLg+OgRdPFKDXIw6pvi+p3CsscaMcMA==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-middleware": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-middleware/-/util-middleware-2.0.0.tgz",
+      "integrity": "sha512-eCWX4ECuDHn1wuyyDdGdUWnT4OGyIzV0LN1xRttBFMPI9Ff/4heSHVxneyiMtOB//zpXWCha1/SWHJOZstG7kA==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-retry": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-retry/-/util-retry-2.0.0.tgz",
+      "integrity": "sha512-/dvJ8afrElasuiiIttRJeoS2sy8YXpksQwiM/TcepqdRVp7u4ejd9C4IQURHNjlfPUT7Y6lCDSa2zQJbdHhVTg==",
+      "dependencies": {
+        "@smithy/service-error-classification": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">= 14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-stream": {
+      "version": "2.0.9",
+      "resolved": "https://registry.npmjs.org/@smithy/util-stream/-/util-stream-2.0.9.tgz",
+      "integrity": "sha512-Fn2/3IMwqu0l2hOC7K3bbtSqFEJ6nOzMLoPVIhuH84yw/95itNkFBwVbIIiAfDaout0ZfZ26+5ch86E2q3avww==",
+      "dependencies": {
+        "@smithy/fetch-http-handler": "^2.1.2",
+        "@smithy/node-http-handler": "^2.1.2",
+        "@smithy/types": "^2.3.0",
+        "@smithy/util-base64": "^2.0.0",
+        "@smithy/util-buffer-from": "^2.0.0",
+        "@smithy/util-hex-encoding": "^2.0.0",
+        "@smithy/util-utf8": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-uri-escape": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-uri-escape/-/util-uri-escape-2.0.0.tgz",
+      "integrity": "sha512-ebkxsqinSdEooQduuk9CbKcI+wheijxEb3utGXkCoYQkJnwTnLbH1JXGimJtUkQwNQbsbuYwG2+aFVyZf5TLaw==",
+      "dependencies": {
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-utf8": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@smithy/util-utf8/-/util-utf8-2.0.0.tgz",
+      "integrity": "sha512-rctU1VkziY84n5OXe3bPNpKR001ZCME2JCaBBFgtiM2hfKbHFudc/BkMuPab8hRbLd0j3vbnBTTZ1igBf0wgiQ==",
+      "dependencies": {
+        "@smithy/util-buffer-from": "^2.0.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
+    "node_modules/@smithy/util-waiter": {
+      "version": "2.0.6",
+      "resolved": "https://registry.npmjs.org/@smithy/util-waiter/-/util-waiter-2.0.6.tgz",
+      "integrity": "sha512-wjxvKB4XSfgpOg3lr4RulnVhd21fMMC4CPARBwrSN7+3U28fwOifv8f7T+Ibay9DAQTj9qXxmd8ag6WXBRgNhg==",
+      "dependencies": {
+        "@smithy/abort-controller": "^2.0.6",
+        "@smithy/types": "^2.3.0",
+        "tslib": "^2.5.0"
+      },
+      "engines": {
+        "node": ">=14.0.0"
+      }
+    },
     "node_modules/@swc/helpers": {
       "version": "0.5.1",
       "resolved": "https://registry.npmjs.org/@swc/helpers/-/helpers-0.5.1.tgz",
@@ -4607,6 +6075,14 @@
       "resolved": "https://registry.npmjs.org/@types/unist/-/unist-2.0.7.tgz",
       "integrity": "sha512-cputDpIbFgLUaGQn6Vqg3/YsJwxUwHLO13v3i5ouxT4lat0khip9AEWxtERujXV9wxIB1EyF97BSJFt6vpdI8g=="
     },
+    "node_modules/@types/ws": {
+      "version": "8.5.5",
+      "resolved": "https://registry.npmjs.org/@types/ws/-/ws-8.5.5.tgz",
+      "integrity": "sha512-lwhs8hktwxSjf9UaZ9tG5M03PGogvFaH8gUgLNbN9HKIg0dvv6q+gkSuJ8HN4/VbyxkuLzCjlN7GquQ0gUJfIg==",
+      "dependencies": {
+        "@types/node": "*"
+      }
+    },
     "node_modules/@typescript-eslint/eslint-plugin": {
       "version": "5.62.0",
       "resolved": "https://registry.npmjs.org/@typescript-eslint/eslint-plugin/-/eslint-plugin-5.62.0.tgz",
@@ -5204,6 +6680,52 @@
         "url": "https://github.com/sponsors/ljharb"
       }
     },
+    "node_modules/aws-crt": {
+      "version": "1.18.0",
+      "resolved": "https://registry.npmjs.org/aws-crt/-/aws-crt-1.18.0.tgz",
+      "integrity": "sha512-H5Vrb/GMzq72+Of2zrW69i/BTQ4gQd3MQvdZ3X3okfppzHdEjSPkdJN6ia8V2/1J1FmFvEtoxaY4nwraHUGQvg==",
+      "hasInstallScript": true,
+      "dependencies": {
+        "@aws-sdk/util-utf8-browser": "^3.109.0",
+        "@httptoolkit/websocket-stream": "^6.0.0",
+        "axios": "^0.24.0",
+        "buffer": "^6.0.3",
+        "crypto-js": "^4.0.0",
+        "mqtt": "^4.3.7",
+        "process": "^0.11.10"
+      }
+    },
+    "node_modules/aws-crt/node_modules/axios": {
+      "version": "0.24.0",
+      "resolved": "https://registry.npmjs.org/axios/-/axios-0.24.0.tgz",
+      "integrity": "sha512-Q6cWsys88HoPgAaFAVUb0WpPk0O8iTeisR9IMqy9G8AbO4NlpVknrnQS03zzF9PGAWgO3cgletO3VjV/P7VztA==",
+      "dependencies": {
+        "follow-redirects": "^1.14.4"
+      }
+    },
+    "node_modules/aws-crt/node_modules/buffer": {
+      "version": "6.0.3",
+      "resolved": "https://registry.npmjs.org/buffer/-/buffer-6.0.3.tgz",
+      "integrity": "sha512-FTiCpNxtwiZZHEZbcbTIcZjERVICn9yq/pDFkTl95/AxzD1naBctN7YO68riM/gLSDY7sdrMby8hofADYuuqOA==",
+      "funding": [
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/feross"
+        },
+        {
+          "type": "patreon",
+          "url": "https://www.patreon.com/feross"
+        },
+        {
+          "type": "consulting",
+          "url": "https://feross.org/support"
+        }
+      ],
+      "dependencies": {
+        "base64-js": "^1.3.1",
+        "ieee754": "^1.2.1"
+      }
+    },
     "node_modules/axe-core": {
       "version": "4.7.2",
       "resolved": "https://registry.npmjs.org/axe-core/-/axe-core-4.7.2.tgz",
@@ -5306,6 +6828,11 @@
         "readable-stream": "^3.4.0"
       }
     },
+    "node_modules/bowser": {
+      "version": "2.11.0",
+      "resolved": "https://registry.npmjs.org/bowser/-/bowser-2.11.0.tgz",
+      "integrity": "sha512-AlcaJBi/pqqJBIQ8U9Mcpc9i8Aqxn88Skv5d+xBX006BY5u8N3mGLHa5Lgppa7L/HfwgwLgZ6NYs+Ag6uUmJRA=="
+    },
     "node_modules/bplist-parser": {
       "version": "0.2.0",
       "resolved": "https://registry.npmjs.org/bplist-parser/-/bplist-parser-0.2.0.tgz",
@@ -6166,6 +7693,15 @@
         "node": ">= 6"
       }
     },
+    "node_modules/commist": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/commist/-/commist-1.1.0.tgz",
+      "integrity": "sha512-rraC8NXWOEjhADbZe9QBNzLAN5Q3fsTPQtBV+fEVj6xKIgDgNiEVE6ZNfHpZOqfQ21YUzfVNUXLOEZquYvQPPg==",
+      "dependencies": {
+        "leven": "^2.1.0",
+        "minimist": "^1.1.0"
+      }
+    },
     "node_modules/compare-func": {
       "version": "2.0.0",
       "resolved": "https://registry.npmjs.org/compare-func/-/compare-func-2.0.0.tgz",
@@ -6181,6 +7717,20 @@
       "resolved": "https://registry.npmjs.org/concat-map/-/concat-map-0.0.1.tgz",
       "integrity": "sha512-/Srv4dswyQNBfohGpz9o6Yb3Gz3SrUDqBH5rTuhGR7ahtlbYKnVxw2bCFMRljaA7EXHaXZ8wsHdodFvbkhKmqg=="
     },
+    "node_modules/concat-stream": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/concat-stream/-/concat-stream-2.0.0.tgz",
+      "integrity": "sha512-MWufYdFw53ccGjCA+Ol7XJYpAlW6/prSMzuPOTRnJGcGzuhLn4Scrz7qf6o8bROZ514ltazcIFJZevcfbo0x7A==",
+      "engines": [
+        "node >= 6.0"
+      ],
+      "dependencies": {
+        "buffer-from": "^1.0.0",
+        "inherits": "^2.0.3",
+        "readable-stream": "^3.0.2",
+        "typedarray": "^0.0.6"
+      }
+    },
     "node_modules/condense-newlines": {
       "version": "0.2.1",
       "resolved": "https://registry.npmjs.org/condense-newlines/-/condense-newlines-0.2.1.tgz",
@@ -6391,6 +7941,11 @@
         "node": ">= 8"
       }
     },
+    "node_modules/crypto-js": {
+      "version": "4.1.1",
+      "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.1.1.tgz",
+      "integrity": "sha512-o2JlM7ydqd3Qk9CA0L4NL6mTzU2sdx96a+oOfPu8Mkl/PK51vSyoi8/rQ8NknZtk44vq15lmhAj9CIAGwgeWKw=="
+    },
     "node_modules/css-unit-converter": {
       "version": "1.1.2",
       "resolved": "https://registry.npmjs.org/css-unit-converter/-/css-unit-converter-1.1.2.tgz",
@@ -6548,6 +8103,7 @@
       "version": "2.30.0",
       "resolved": "https://registry.npmjs.org/date-fns/-/date-fns-2.30.0.tgz",
       "integrity": "sha512-fnULvOpxnC5/Vg3NCiWelDsLiUc9bRwAPs/+LfTLNvetFCtCTN+yQz15C/fs4AwX1R9K5GLtLfn8QW+dWisaAw==",
+      "peer": true,
       "dependencies": {
         "@babel/runtime": "^7.21.0"
       },
@@ -6967,6 +8523,49 @@
         "node": ">=12"
       }
     },
+    "node_modules/duplexify": {
+      "version": "3.7.1",
+      "resolved": "https://registry.npmjs.org/duplexify/-/duplexify-3.7.1.tgz",
+      "integrity": "sha512-07z8uv2wMyS51kKhD1KsdXJg5WQ6t93RneqRxUHnskXVtlYYkLqM0gqStQZ3pj073g687jPCHrqNfCzawLYh5g==",
+      "dependencies": {
+        "end-of-stream": "^1.0.0",
+        "inherits": "^2.0.1",
+        "readable-stream": "^2.0.0",
+        "stream-shift": "^1.0.0"
+      }
+    },
+    "node_modules/duplexify/node_modules/isarray": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/isarray/-/isarray-1.0.0.tgz",
+      "integrity": "sha512-VLghIWNM6ELQzo7zwmcg0NmTVyWKYjvIeM83yjp0wRDTmUnrM678fQbcKBo6n2CJEF0szoG//ytg+TKla89ALQ=="
+    },
+    "node_modules/duplexify/node_modules/readable-stream": {
+      "version": "2.3.8",
+      "resolved": "https://registry.npmjs.org/readable-stream/-/readable-stream-2.3.8.tgz",
+      "integrity": "sha512-8p0AUk4XODgIewSi0l8Epjs+EVnWiK7NoDIEGU0HhE7+ZyY8D1IMY7odu5lRrFXGg71L15KG8QrPmum45RTtdA==",
+      "dependencies": {
+        "core-util-is": "~1.0.0",
+        "inherits": "~2.0.3",
+        "isarray": "~1.0.0",
+        "process-nextick-args": "~2.0.0",
+        "safe-buffer": "~5.1.1",
+        "string_decoder": "~1.1.1",
+        "util-deprecate": "~1.0.1"
+      }
+    },
+    "node_modules/duplexify/node_modules/safe-buffer": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz",
+      "integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g=="
+    },
+    "node_modules/duplexify/node_modules/string_decoder": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz",
+      "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==",
+      "dependencies": {
+        "safe-buffer": "~5.1.0"
+      }
+    },
     "node_modules/eastasianwidth": {
       "version": "0.2.0",
       "resolved": "https://registry.npmjs.org/eastasianwidth/-/eastasianwidth-0.2.0.tgz",
@@ -8193,6 +9792,27 @@
       "resolved": "https://registry.npmjs.org/fast-memoize/-/fast-memoize-2.5.2.tgz",
       "integrity": "sha512-Ue0LwpDYErFbmNnZSF0UH6eImUwDmogUO1jyE+JbN2gsQz/jICm1Ve7t9QT0rNSsfJt+Hs4/S3GnsDVjL4HVrw=="
     },
+    "node_modules/fast-xml-parser": {
+      "version": "4.2.5",
+      "resolved": "https://registry.npmjs.org/fast-xml-parser/-/fast-xml-parser-4.2.5.tgz",
+      "integrity": "sha512-B9/wizE4WngqQftFPmdaMYlXoJlJOYxGQOanC77fq9k8+Z0v5dDSVh+3glErdIROP//s/jgb7ZuxKfB8nVyo0g==",
+      "funding": [
+        {
+          "type": "paypal",
+          "url": "https://paypal.me/naturalintelligence"
+        },
+        {
+          "type": "github",
+          "url": "https://github.com/sponsors/NaturalIntelligence"
+        }
+      ],
+      "dependencies": {
+        "strnum": "^1.0.5"
+      },
+      "bin": {
+        "fxparser": "src/cli/cli.js"
+      }
+    },
     "node_modules/fastq": {
       "version": "1.15.0",
       "resolved": "https://registry.npmjs.org/fastq/-/fastq-1.15.0.tgz",
@@ -9000,6 +10620,15 @@
         "url": "https://opencollective.com/unified"
       }
     },
+    "node_modules/help-me": {
+      "version": "3.0.0",
+      "resolved": "https://registry.npmjs.org/help-me/-/help-me-3.0.0.tgz",
+      "integrity": "sha512-hx73jClhyk910sidBB7ERlnhMlFsJJIBqSVMFDwPN8o2v9nmp5KgLq1Xz1Bf1fCMMZ6mPrX159iG0VLy/fPMtQ==",
+      "dependencies": {
+        "glob": "^7.1.6",
+        "readable-stream": "^3.6.0"
+      }
+    },
     "node_modules/hexoid": {
       "version": "1.0.0",
       "resolved": "https://registry.npmjs.org/hexoid/-/hexoid-1.0.0.tgz",
@@ -9728,6 +11357,14 @@
         "whatwg-fetch": "^3.4.1"
       }
     },
+    "node_modules/isomorphic-ws": {
+      "version": "4.0.1",
+      "resolved": "https://registry.npmjs.org/isomorphic-ws/-/isomorphic-ws-4.0.1.tgz",
+      "integrity": "sha512-BhBvN2MBpWTaSHdWRb/bwdZJ1WaehQ2L1KngkCkfLUGF0mAWAT1sQUQacEmQ0jXkFw/czDXPNQSL5u2/Krsz1w==",
+      "peerDependencies": {
+        "ws": "*"
+      }
+    },
     "node_modules/javascript-natural-sort": {
       "version": "0.7.1",
       "resolved": "https://registry.npmjs.org/javascript-natural-sort/-/javascript-natural-sort-0.7.1.tgz",
@@ -9828,6 +11465,15 @@
         "node": "^12.13.0 || ^14.15.0 || >=16.0.0"
       }
     },
+    "node_modules/js-sdsl": {
+      "version": "4.3.0",
+      "resolved": "https://registry.npmjs.org/js-sdsl/-/js-sdsl-4.3.0.tgz",
+      "integrity": "sha512-mifzlm2+5nZ+lEcLJMoBK0/IH/bDg8XnJfd/Wq6IP+xoCjLZsTOnV2QpxlVbX9bMnkl5PdEjNtBJ9Cj1NjifhQ==",
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/js-sdsl"
+      }
+    },
     "node_modules/js-tokens": {
       "version": "4.0.0",
       "resolved": "https://registry.npmjs.org/js-tokens/-/js-tokens-4.0.0.tgz",
@@ -9976,6 +11622,14 @@
         "url": "https://ko-fi.com/killymxi"
       }
     },
+    "node_modules/leven": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/leven/-/leven-2.1.0.tgz",
+      "integrity": "sha512-nvVPLpIHUxCUoRLrFqTgSxXJ614d8AgQoWl7zPe/2VadE8+1dpU3LBhowRuBAcuwruWtOdD8oYC9jDNJjXDPyA==",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
     "node_modules/levn": {
       "version": "0.4.1",
       "resolved": "https://registry.npmjs.org/levn/-/levn-0.4.1.tgz",
@@ -11551,6 +13205,79 @@
       "resolved": "https://registry.npmjs.org/moo/-/moo-0.5.2.tgz",
       "integrity": "sha512-iSAJLHYKnX41mKcJKjqvnAN9sf0LMDTXDEvFv+ffuRR9a1MIuXLjMNL6EsnDHSkKLTWNqQQ5uo61P4EbU4NU+Q=="
     },
+    "node_modules/mqtt": {
+      "version": "4.3.7",
+      "resolved": "https://registry.npmjs.org/mqtt/-/mqtt-4.3.7.tgz",
+      "integrity": "sha512-ew3qwG/TJRorTz47eW46vZ5oBw5MEYbQZVaEji44j5lAUSQSqIEoul7Kua/BatBW0H0kKQcC9kwUHa1qzaWHSw==",
+      "dependencies": {
+        "commist": "^1.0.0",
+        "concat-stream": "^2.0.0",
+        "debug": "^4.1.1",
+        "duplexify": "^4.1.1",
+        "help-me": "^3.0.0",
+        "inherits": "^2.0.3",
+        "lru-cache": "^6.0.0",
+        "minimist": "^1.2.5",
+        "mqtt-packet": "^6.8.0",
+        "number-allocator": "^1.0.9",
+        "pump": "^3.0.0",
+        "readable-stream": "^3.6.0",
+        "reinterval": "^1.1.0",
+        "rfdc": "^1.3.0",
+        "split2": "^3.1.0",
+        "ws": "^7.5.5",
+        "xtend": "^4.0.2"
+      },
+      "bin": {
+        "mqtt": "bin/mqtt.js",
+        "mqtt_pub": "bin/pub.js",
+        "mqtt_sub": "bin/sub.js"
+      },
+      "engines": {
+        "node": ">=10.0.0"
+      }
+    },
+    "node_modules/mqtt-packet": {
+      "version": "6.10.0",
+      "resolved": "https://registry.npmjs.org/mqtt-packet/-/mqtt-packet-6.10.0.tgz",
+      "integrity": "sha512-ja8+mFKIHdB1Tpl6vac+sktqy3gA8t9Mduom1BA75cI+R9AHnZOiaBQwpGiWnaVJLDGRdNhQmFaAqd7tkKSMGA==",
+      "dependencies": {
+        "bl": "^4.0.2",
+        "debug": "^4.1.1",
+        "process-nextick-args": "^2.0.1"
+      }
+    },
+    "node_modules/mqtt/node_modules/duplexify": {
+      "version": "4.1.2",
+      "resolved": "https://registry.npmjs.org/duplexify/-/duplexify-4.1.2.tgz",
+      "integrity": "sha512-fz3OjcNCHmRP12MJoZMPglx8m4rrFP8rovnk4vT8Fs+aonZoCwGg10dSsQsfP/E62eZcPTMSMP6686fu9Qlqtw==",
+      "dependencies": {
+        "end-of-stream": "^1.4.1",
+        "inherits": "^2.0.3",
+        "readable-stream": "^3.1.1",
+        "stream-shift": "^1.0.0"
+      }
+    },
+    "node_modules/mqtt/node_modules/ws": {
+      "version": "7.5.9",
+      "resolved": "https://registry.npmjs.org/ws/-/ws-7.5.9.tgz",
+      "integrity": "sha512-F+P9Jil7UiSKSkppIiD94dN07AwvFixvLIj1Og1Rl9GGMuNipJnV9JzjD6XuqmAeiswGvUmNLjr5cFuXwNS77Q==",
+      "engines": {
+        "node": ">=8.3.0"
+      },
+      "peerDependencies": {
+        "bufferutil": "^4.0.1",
+        "utf-8-validate": "^5.0.2"
+      },
+      "peerDependenciesMeta": {
+        "bufferutil": {
+          "optional": true
+        },
+        "utf-8-validate": {
+          "optional": true
+        }
+      }
+    },
     "node_modules/mri": {
       "version": "1.2.0",
       "resolved": "https://registry.npmjs.org/mri/-/mri-1.2.0.tgz",
@@ -11960,6 +13687,15 @@
         "set-blocking": "^2.0.0"
       }
     },
+    "node_modules/number-allocator": {
+      "version": "1.0.14",
+      "resolved": "https://registry.npmjs.org/number-allocator/-/number-allocator-1.0.14.tgz",
+      "integrity": "sha512-OrL44UTVAvkKdOdRQZIJpLkAdjXGTRda052sN4sO77bKEzYYqWKMBjQvrJFzqygI99gL6Z4u2xctPW1tB8ErvA==",
+      "dependencies": {
+        "debug": "^4.3.1",
+        "js-sdsl": "4.3.0"
+      }
+    },
     "node_modules/oauth": {
       "version": "0.9.15",
       "resolved": "https://registry.npmjs.org/oauth/-/oauth-0.9.15.tgz",
@@ -12925,6 +14661,19 @@
         "node": ">=16.13"
       }
     },
+    "node_modules/process": {
+      "version": "0.11.10",
+      "resolved": "https://registry.npmjs.org/process/-/process-0.11.10.tgz",
+      "integrity": "sha512-cdGef/drWFoydD1JsMzuFf8100nZl+GT+yacc2bEced5f9Rjk4z+WtFUTBu9PhOi9j/jfmBPu0mMEY4wIdAF8A==",
+      "engines": {
+        "node": ">= 0.6.0"
+      }
+    },
+    "node_modules/process-nextick-args": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/process-nextick-args/-/process-nextick-args-2.0.1.tgz",
+      "integrity": "sha512-3ouUOpQhtgrbOa17J7+uxOTpITYWaGP7/AhoR3+A+/1e9skrzelGi/dXzEYyvbxubEF6Wn2ypscTKiKJFFn1ag=="
+    },
     "node_modules/prop-types": {
       "version": "15.8.1",
       "resolved": "https://registry.npmjs.org/prop-types/-/prop-types-15.8.1.tgz",
@@ -13637,6 +15386,11 @@
         "url": "https://opencollective.com/unified"
       }
     },
+    "node_modules/reinterval": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/reinterval/-/reinterval-1.1.0.tgz",
+      "integrity": "sha512-QIRet3SYrGp0HUHO88jVskiG6seqUGC5iAG7AwI/BV4ypGcuqk9Du6YQBUOUqm9c8pw1eyLoIaONifRua1lsEQ=="
+    },
     "node_modules/remark-frontmatter": {
       "version": "4.0.1",
       "resolved": "https://registry.npmjs.org/remark-frontmatter/-/remark-frontmatter-4.0.1.tgz",
@@ -13870,8 +15624,7 @@
     "node_modules/rfdc": {
       "version": "1.3.0",
       "resolved": "https://registry.npmjs.org/rfdc/-/rfdc-1.3.0.tgz",
-      "integrity": "sha512-V2hovdzFbOi77/WajaSMXk2OLm+xNIeQdMMuB7icj7bk6zi2F8GGAxigcnDFpJHbNyNcgyJDiP+8nOrY5cZGrA==",
-      "dev": true
+      "integrity": "sha512-V2hovdzFbOi77/WajaSMXk2OLm+xNIeQdMMuB7icj7bk6zi2F8GGAxigcnDFpJHbNyNcgyJDiP+8nOrY5cZGrA=="
     },
     "node_modules/rimraf": {
       "version": "3.0.2",
@@ -14388,7 +16141,6 @@
       "version": "3.2.2",
       "resolved": "https://registry.npmjs.org/split2/-/split2-3.2.2.tgz",
       "integrity": "sha512-9NThjpgZnifTkJpzTZ7Eue85S49QwpNhZTq6GRJwObb6jnLFNGB7Qm73V5HewTROPyxD0C29xqmaI68bQtV+hg==",
-      "dev": true,
       "dependencies": {
         "readable-stream": "^3.0.0"
       }
@@ -14424,6 +16176,11 @@
         "node": ">= 0.6"
       }
     },
+    "node_modules/stream-shift": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/stream-shift/-/stream-shift-1.0.1.tgz",
+      "integrity": "sha512-AiisoFqQ0vbGcZgQPY1cdP2I76glaVA/RauYR4G4thNFgkTqr90yXTo4LYX60Jl+sIlPNHHdGSwo01AvbKUSVQ=="
+    },
     "node_modules/streamsearch": {
       "version": "1.1.0",
       "resolved": "https://registry.npmjs.org/streamsearch/-/streamsearch-1.1.0.tgz",
@@ -14622,6 +16379,11 @@
         "node": ">=12.*"
       }
     },
+    "node_modules/strnum": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/strnum/-/strnum-1.0.5.tgz",
+      "integrity": "sha512-J8bbNyKKXl5qYcR36TIO8W3mVGVHrmmxsd5PAItGkmyzwJvybiw2IVq5nqd0i4LSNSkB/sx9VHllbfFdr9k1JA=="
+    },
     "node_modules/style-to-js": {
       "version": "1.1.3",
       "resolved": "https://registry.npmjs.org/style-to-js/-/style-to-js-1.1.3.tgz",
@@ -15724,6 +17486,11 @@
         "url": "https://github.com/sponsors/ljharb"
       }
     },
+    "node_modules/typedarray": {
+      "version": "0.0.6",
+      "resolved": "https://registry.npmjs.org/typedarray/-/typedarray-0.0.6.tgz",
+      "integrity": "sha512-/aCDEGatGvZ2BIk+HmLf4ifCJFwvKFNb9/JeZPMulfgFracn9QFcAf5GO8B/mweUjSoblS5In0cWhqpfs/5PQA=="
+    },
     "node_modules/typescript": {
       "version": "5.1.6",
       "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.1.6.tgz",
@@ -16227,6 +17994,26 @@
       "resolved": "https://registry.npmjs.org/wrappy/-/wrappy-1.0.2.tgz",
       "integrity": "sha512-l4Sp/DRseor9wL6EvV2+TuQn63dMkPjZ/sp9XkghTEbV9KlPS1xUsZ3u7/IQO4wxtcFB4bgpQPRcR3QCvezPcQ=="
     },
+    "node_modules/ws": {
+      "version": "8.14.1",
+      "resolved": "https://registry.npmjs.org/ws/-/ws-8.14.1.tgz",
+      "integrity": "sha512-4OOseMUq8AzRBI/7SLMUwO+FEDnguetSk7KMb1sHwvF2w2Wv5Hoj0nlifx8vtGsftE/jWHojPy8sMMzYLJ2G/A==",
+      "engines": {
+        "node": ">=10.0.0"
+      },
+      "peerDependencies": {
+        "bufferutil": "^4.0.1",
+        "utf-8-validate": ">=5.0.2"
+      },
+      "peerDependenciesMeta": {
+        "bufferutil": {
+          "optional": true
+        },
+        "utf-8-validate": {
+          "optional": true
+        }
+      }
+    },
     "node_modules/xtend": {
       "version": "4.0.2",
       "resolved": "https://registry.npmjs.org/xtend/-/xtend-4.0.2.tgz",
@@ -16332,13 +18119,12 @@
       "version": "1.0.0",
       "license": "MIT",
       "dependencies": {
-        "@documenso/tailwind-config": "*",
-        "@documenso/tsconfig": "*",
-        "@documenso/ui": "*",
         "@react-email/components": "^0.0.7",
         "nodemailer": "^6.9.3"
       },
       "devDependencies": {
+        "@documenso/tailwind-config": "*",
+        "@documenso/tsconfig": "*",
         "@types/nodemailer": "^6.4.8",
         "tsup": "^7.1.0"
       }
@@ -16365,10 +18151,15 @@
       "version": "1.0.0",
       "license": "MIT",
       "dependencies": {
+        "@aws-sdk/client-s3": "^3.410.0",
+        "@aws-sdk/s3-request-presigner": "^3.410.0",
+        "@aws-sdk/signature-v4-crt": "^3.410.0",
         "@documenso/email": "*",
         "@documenso/prisma": "*",
         "@next-auth/prisma-adapter": "1.0.7",
         "@pdf-lib/fontkit": "^1.1.1",
+        "@scure/base": "^1.1.3",
+        "@sindresorhus/slugify": "^2.2.1",
         "@upstash/redis": "^1.20.6",
         "bcrypt": "^5.1.0",
         "luxon": "^3.4.0",
@@ -16451,6 +18242,7 @@
       "version": "0.0.0",
       "license": "MIT",
       "dependencies": {
+        "@documenso/lib": "*",
         "@radix-ui/react-accordion": "^1.1.1",
         "@radix-ui/react-alert-dialog": "^1.0.3",
         "@radix-ui/react-aspect-ratio": "^1.0.2",
@@ -16480,7 +18272,6 @@
         "class-variance-authority": "^0.6.0",
         "clsx": "^1.2.1",
         "cmdk": "^0.2.0",
-        "date-fns": "^2.30.0",
         "framer-motion": "^10.12.8",
         "lucide-react": "^0.214.0",
         "next": "13.4.12",
@@ -16491,6 +18282,7 @@
         "tailwindcss-animate": "^1.0.5"
       },
       "devDependencies": {
+        "@documenso/tailwind-config": "*",
         "@documenso/tsconfig": "*",
         "@types/react": "18.2.18",
         "@types/react-dom": "18.2.7",
diff --git a/packages/email/package.json b/packages/email/package.json
index 39e2ca67a..c1751dce6 100644
--- a/packages/email/package.json
+++ b/packages/email/package.json
@@ -16,13 +16,12 @@
     "worker:test": "tsup worker/index.ts --format esm"
   },
   "dependencies": {
-    "@documenso/tsconfig": "*",
-    "@documenso/tailwind-config": "*",
-    "@documenso/ui": "*",
     "@react-email/components": "^0.0.7",
     "nodemailer": "^6.9.3"
   },
   "devDependencies": {
+    "@documenso/tsconfig": "*",
+    "@documenso/tailwind-config": "*",
     "@types/nodemailer": "^6.4.8",
     "tsup": "^7.1.0"
   }
diff --git a/packages/email/tailwind.config.js b/packages/email/tailwind.config.js
index 81816bdfb..2e138b912 100644
--- a/packages/email/tailwind.config.js
+++ b/packages/email/tailwind.config.js
@@ -4,8 +4,5 @@ const path = require('path');
 
 module.exports = {
   ...baseConfig,
-  content: [
-    `templates/**/*.{ts,tsx}`,
-    `${path.join(require.resolve('@documenso/ui'), '..')}/**/*.{ts,tsx}`,
-  ],
+  content: [`templates/**/*.{ts,tsx}`],
 };
diff --git a/packages/lib/constants/time.ts b/packages/lib/constants/time.ts
new file mode 100644
index 000000000..e2581e14c
--- /dev/null
+++ b/packages/lib/constants/time.ts
@@ -0,0 +1,5 @@
+export const ONE_SECOND = 1000;
+export const ONE_MINUTE = ONE_SECOND * 60;
+export const ONE_HOUR = ONE_MINUTE * 60;
+export const ONE_DAY = ONE_HOUR * 24;
+export const ONE_WEEK = ONE_DAY * 7;
diff --git a/packages/lib/package.json b/packages/lib/package.json
index e36297834..757ab7932 100644
--- a/packages/lib/package.json
+++ b/packages/lib/package.json
@@ -12,12 +12,15 @@
   ],
   "scripts": {},
   "dependencies": {
-    "@aws-sdk/s3-request-presigner": "^3.405.0",
-    "@aws-sdk/client-s3": "^3.405.0",
+    "@aws-sdk/client-s3": "^3.410.0",
+    "@aws-sdk/s3-request-presigner": "^3.410.0",
+    "@aws-sdk/signature-v4-crt": "^3.410.0",
     "@documenso/email": "*",
     "@documenso/prisma": "*",
     "@next-auth/prisma-adapter": "1.0.7",
     "@pdf-lib/fontkit": "^1.1.1",
+    "@scure/base": "^1.1.3",
+    "@sindresorhus/slugify": "^2.2.1",
     "@upstash/redis": "^1.20.6",
     "bcrypt": "^5.1.0",
     "luxon": "^3.4.0",
diff --git a/packages/lib/server-only/document-data/create-document-data.ts b/packages/lib/server-only/document-data/create-document-data.ts
new file mode 100644
index 000000000..e41f00fe7
--- /dev/null
+++ b/packages/lib/server-only/document-data/create-document-data.ts
@@ -0,0 +1,19 @@
+'use server';
+
+import { prisma } from '@documenso/prisma';
+import { DocumentDataType } from '@documenso/prisma/client';
+
+export type CreateDocumentDataOptions = {
+  type: DocumentDataType;
+  data: string;
+};
+
+export const createDocumentData = async ({ type, data }: CreateDocumentDataOptions) => {
+  return await prisma.documentData.create({
+    data: {
+      type,
+      data,
+      initialData: data,
+    },
+  });
+};
diff --git a/packages/lib/server-only/document/create-document.ts b/packages/lib/server-only/document/create-document.ts
index 24a5d6283..b84f8e46e 100644
--- a/packages/lib/server-only/document/create-document.ts
+++ b/packages/lib/server-only/document/create-document.ts
@@ -1,10 +1,19 @@
 'use server';
 
+import { prisma } from '@documenso/prisma';
+
 export type CreateDocumentOptions = {
+  title: string;
   userId: number;
-  fileName: string;
+  documentDataId: string;
 };
 
-export const createDocument = () => {
-  //
+export const createDocument = async ({ userId, title, documentDataId }: CreateDocumentOptions) => {
+  return await prisma.document.create({
+    data: {
+      title,
+      documentDataId,
+      userId,
+    },
+  });
 };
diff --git a/packages/lib/server-only/document/seal-document.ts b/packages/lib/server-only/document/seal-document.ts
index 876da9d0a..883d13e6f 100644
--- a/packages/lib/server-only/document/seal-document.ts
+++ b/packages/lib/server-only/document/seal-document.ts
@@ -1,10 +1,13 @@
 'use server';
 
+import path from 'node:path';
 import { PDFDocument } from 'pdf-lib';
 
 import { prisma } from '@documenso/prisma';
 import { DocumentStatus, SigningStatus } from '@documenso/prisma/client';
 
+import { getFile } from '../../universal/upload/get-file';
+import { putFile } from '../../universal/upload/put-file';
 import { insertFieldInPDF } from '../pdf/insert-field-in-pdf';
 
 export type SealDocumentOptions = {
@@ -23,7 +26,9 @@ export const sealDocument = async ({ documentId }: SealDocumentOptions) => {
     },
   });
 
-  if (!document.documentData) {
+  const { documentData } = document;
+
+  if (!documentData) {
     throw new Error(`Document ${document.id} has no document data`);
   }
 
@@ -55,7 +60,7 @@ export const sealDocument = async ({ documentId }: SealDocumentOptions) => {
   }
 
   // !: Need to write the fields onto the document as a hard copy
-  const { data: pdfData } = document.documentData;
+  const pdfData = await getFile(documentData);
 
   const doc = await PDFDocument.load(pdfData);
 
@@ -65,17 +70,20 @@ export const sealDocument = async ({ documentId }: SealDocumentOptions) => {
 
   const pdfBytes = await doc.save();
 
-  await prisma.document.update({
+  const { name, ext } = path.parse(document.title);
+
+  const { data: newData } = await putFile({
+    name: `${name}_signed${ext}`,
+    type: 'application/pdf',
+    arrayBuffer: async () => Promise.resolve(Buffer.from(pdfBytes)),
+  });
+
+  await prisma.documentData.update({
     where: {
-      id: document.id,
-      status: DocumentStatus.COMPLETED,
+      id: documentData.id,
     },
     data: {
-      documentData: {
-        update: {
-          data: Buffer.from(pdfBytes).toString('base64'),
-        },
-      },
+      data: newData,
     },
   });
 };
diff --git a/packages/lib/server-only/recipient/set-recipients-for-document.ts b/packages/lib/server-only/recipient/set-recipients-for-document.ts
index 15db42084..c34885143 100644
--- a/packages/lib/server-only/recipient/set-recipients-for-document.ts
+++ b/packages/lib/server-only/recipient/set-recipients-for-document.ts
@@ -1,8 +1,8 @@
-import { nanoid } from 'nanoid';
-
 import { prisma } from '@documenso/prisma';
 import { SendStatus, SigningStatus } from '@documenso/prisma/client';
 
+import { nanoid } from '../../universal/id';
+
 export interface SetRecipientsForDocumentOptions {
   userId: number;
   documentId: number;
diff --git a/packages/lib/tsconfig.json b/packages/lib/tsconfig.json
index 0f63d1612..fdefbd544 100644
--- a/packages/lib/tsconfig.json
+++ b/packages/lib/tsconfig.json
@@ -1,5 +1,8 @@
 {
   "extends": "@documenso/tsconfig/react-library.json",
+  "compilerOptions": {
+    "types": ["@documenso/tsconfig/process-env.d.ts"]
+  },
   "include": ["**/*.ts", "**/*.tsx", "**/*.d.ts"],
   "exclude": ["dist", "build", "node_modules"]
 }
diff --git a/packages/lib/universal/id.ts b/packages/lib/universal/id.ts
new file mode 100644
index 000000000..13738233e
--- /dev/null
+++ b/packages/lib/universal/id.ts
@@ -0,0 +1,5 @@
+import { customAlphabet } from 'nanoid';
+
+export const alphaid = customAlphabet('0123456789abcdefghijklmnopqrstuvwxyz', 10);
+
+export { nanoid } from 'nanoid';
diff --git a/packages/lib/universal/upload/delete-file.ts b/packages/lib/universal/upload/delete-file.ts
new file mode 100644
index 000000000..69f93d7a0
--- /dev/null
+++ b/packages/lib/universal/upload/delete-file.ts
@@ -0,0 +1,22 @@
+import { match } from 'ts-pattern';
+
+import { DocumentDataType } from '@documenso/prisma/client';
+
+import { deleteS3File } from './server-actions';
+
+export type DeleteFileOptions = {
+  type: DocumentDataType;
+  data: string;
+};
+
+export const deleteFile = async ({ type, data }: DeleteFileOptions) => {
+  return await match(type)
+    .with(DocumentDataType.S3_PATH, async () => deleteFileFromS3(data))
+    .otherwise(() => {
+      return;
+    });
+};
+
+const deleteFileFromS3 = async (key: string) => {
+  await deleteS3File(key);
+};
diff --git a/packages/lib/universal/upload/get-file.ts b/packages/lib/universal/upload/get-file.ts
new file mode 100644
index 000000000..2c71c3774
--- /dev/null
+++ b/packages/lib/universal/upload/get-file.ts
@@ -0,0 +1,45 @@
+import { base64 } from '@scure/base';
+import { match } from 'ts-pattern';
+
+import { DocumentDataType } from '@documenso/prisma/client';
+
+import { getPresignGetUrl } from './server-actions';
+
+export type GetFileOptions = {
+  type: DocumentDataType;
+  data: string;
+};
+
+export const getFile = async ({ type, data }: GetFileOptions) => {
+  return await match(type)
+    .with(DocumentDataType.BYTES, () => getFileFromBytes(data))
+    .with(DocumentDataType.BYTES_64, () => getFileFromBytes64(data))
+    .with(DocumentDataType.S3_PATH, async () => getFileFromS3(data))
+    .exhaustive();
+};
+
+const getFileFromBytes = (data: string) => {
+  const encoder = new TextEncoder();
+
+  const binaryData = encoder.encode(data);
+
+  return binaryData;
+};
+
+const getFileFromBytes64 = (data: string) => {
+  const binaryData = base64.decode(data);
+
+  return binaryData;
+};
+
+const getFileFromS3 = async (key: string) => {
+  const { url } = await getPresignGetUrl(key);
+
+  const buffer = await fetch(url, {
+    method: 'GET',
+  }).then(async (res) => res.arrayBuffer());
+
+  const binaryData = new Uint8Array(buffer);
+
+  return binaryData;
+};
diff --git a/packages/lib/universal/upload/put-file.ts b/packages/lib/universal/upload/put-file.ts
new file mode 100644
index 000000000..ccfa96e7b
--- /dev/null
+++ b/packages/lib/universal/upload/put-file.ts
@@ -0,0 +1,53 @@
+import { base64 } from '@scure/base';
+import { match } from 'ts-pattern';
+
+import { DocumentDataType } from '@documenso/prisma/client';
+
+import { createDocumentData } from '../../server-only/document-data/create-document-data';
+import { getPresignPostUrl } from './server-actions';
+
+type File = {
+  name: string;
+  type: string;
+  arrayBuffer: () => Promise<ArrayBuffer>;
+};
+
+export const putFile = async (file: File) => {
+  const { type, data } = await match(process.env.NEXT_PUBLIC_UPLOAD_TRANSPORT)
+    .with('s3', async () => putFileInS3(file))
+    .otherwise(async () => putFileInDatabase(file));
+
+  return await createDocumentData({ type, data });
+};
+
+const putFileInDatabase = async (file: File) => {
+  const contents = await file.arrayBuffer();
+
+  const binaryData = new Uint8Array(contents);
+
+  const asciiData = base64.encode(binaryData);
+
+  return {
+    type: DocumentDataType.BYTES_64,
+    data: asciiData,
+  };
+};
+
+const putFileInS3 = async (file: File) => {
+  const { url, key } = await getPresignPostUrl(file.name, file.type);
+
+  const body = await file.arrayBuffer();
+
+  await fetch(url, {
+    method: 'PUT',
+    headers: {
+      'Content-Type': 'application/octet-stream',
+    },
+    body,
+  });
+
+  return {
+    type: DocumentDataType.S3_PATH,
+    data: key,
+  };
+};
diff --git a/packages/lib/universal/upload/server-actions.ts b/packages/lib/universal/upload/server-actions.ts
new file mode 100644
index 000000000..629d62a2a
--- /dev/null
+++ b/packages/lib/universal/upload/server-actions.ts
@@ -0,0 +1,104 @@
+'use server';
+
+import {
+  DeleteObjectCommand,
+  GetObjectCommand,
+  PutObjectCommand,
+  S3Client,
+} from '@aws-sdk/client-s3';
+import { getSignedUrl } from '@aws-sdk/s3-request-presigner';
+import slugify from '@sindresorhus/slugify';
+import path from 'node:path';
+
+import { ONE_HOUR, ONE_SECOND } from '../../constants/time';
+import { getServerComponentSession } from '../../next-auth/get-server-session';
+import { alphaid } from '../id';
+
+export const getPresignPostUrl = async (fileName: string, contentType: string) => {
+  const client = getS3Client();
+
+  const user = await getServerComponentSession();
+
+  // Get the basename and extension for the file
+  const { name, ext } = path.parse(fileName);
+
+  let key = `${alphaid(12)}/${slugify(name)}${ext}`;
+
+  if (user) {
+    key = `${user.id}/${key}`;
+  }
+
+  const putObjectCommand = new PutObjectCommand({
+    Bucket: process.env.NEXT_PRIVATE_UPLOAD_BUCKET,
+    Key: key,
+    ContentType: contentType,
+  });
+
+  const url = await getSignedUrl(client, putObjectCommand, {
+    expiresIn: ONE_HOUR / ONE_SECOND,
+  });
+
+  return { key, url };
+};
+
+export const getAbsolutePresignPostUrl = async (key: string) => {
+  const client = getS3Client();
+
+  const putObjectCommand = new PutObjectCommand({
+    Bucket: process.env.NEXT_PRIVATE_UPLOAD_BUCKET,
+    Key: key,
+  });
+
+  const url = await getSignedUrl(client, putObjectCommand, {
+    expiresIn: ONE_HOUR / ONE_SECOND,
+  });
+
+  return { key, url };
+};
+
+export const getPresignGetUrl = async (key: string) => {
+  const client = getS3Client();
+
+  const getObjectCommand = new GetObjectCommand({
+    Bucket: process.env.NEXT_PRIVATE_UPLOAD_BUCKET,
+    Key: key,
+  });
+
+  const url = await getSignedUrl(client, getObjectCommand, {
+    expiresIn: ONE_HOUR / ONE_SECOND,
+  });
+
+  return { key, url };
+};
+
+export const deleteS3File = async (key: string) => {
+  const client = getS3Client();
+
+  await client.send(
+    new DeleteObjectCommand({
+      Bucket: process.env.NEXT_PRIVATE_UPLOAD_BUCKET,
+      Key: key,
+    }),
+  );
+};
+
+const getS3Client = () => {
+  if (process.env.NEXT_PUBLIC_UPLOAD_TRANSPORT !== 's3') {
+    throw new Error('Invalid upload transport');
+  }
+
+  const hasCredentials =
+    process.env.NEXT_PRIVATE_UPLOAD_ACCESS_KEY_ID &&
+    process.env.NEXT_PRIVATE_UPLOAD_SECRET_ACCESS_KEY;
+
+  return new S3Client({
+    endpoint: process.env.NEXT_PRIVATE_UPLOAD_ENDPOINT || undefined,
+    region: process.env.NEXT_PRIVATE_UPLOAD_REGION || 'us-east-1',
+    credentials: hasCredentials
+      ? {
+          accessKeyId: String(process.env.NEXT_PRIVATE_UPLOAD_ACCESS_KEY_ID),
+          secretAccessKey: String(process.env.NEXT_PRIVATE_UPLOAD_SECRET_ACCESS_KEY),
+        }
+      : undefined,
+  });
+};
diff --git a/packages/lib/universal/upload/update-file.ts b/packages/lib/universal/upload/update-file.ts
new file mode 100644
index 000000000..a7a227bab
--- /dev/null
+++ b/packages/lib/universal/upload/update-file.ts
@@ -0,0 +1,54 @@
+import { base64 } from '@scure/base';
+import { match } from 'ts-pattern';
+
+import { DocumentDataType } from '@documenso/prisma/client';
+
+import { getAbsolutePresignPostUrl } from './server-actions';
+
+export type UpdateFileOptions = {
+  type: DocumentDataType;
+  oldData: string;
+  newData: string;
+};
+
+export const updateFile = async ({ type, oldData, newData }: UpdateFileOptions) => {
+  return await match(type)
+    .with(DocumentDataType.BYTES, () => updateFileWithBytes(newData))
+    .with(DocumentDataType.BYTES_64, () => updateFileWithBytes64(newData))
+    .with(DocumentDataType.S3_PATH, async () => updateFileWithS3(oldData, newData))
+    .exhaustive();
+};
+
+const updateFileWithBytes = (data: string) => {
+  return {
+    type: DocumentDataType.BYTES,
+    data,
+  };
+};
+
+const updateFileWithBytes64 = (data: string) => {
+  const encoder = new TextEncoder();
+
+  const binaryData = encoder.encode(data);
+
+  const asciiData = base64.encode(binaryData);
+
+  return {
+    type: DocumentDataType.BYTES_64,
+    data: asciiData,
+  };
+};
+
+const updateFileWithS3 = async (key: string, data: string) => {
+  const { url } = await getAbsolutePresignPostUrl(key);
+
+  await fetch(url, {
+    method: 'PUT',
+    body: data,
+  });
+
+  return {
+    type: DocumentDataType.S3_PATH,
+    data: key,
+  };
+};
diff --git a/packages/prisma/migrations/20230912011344_reverse_document_data_relation/migration.sql b/packages/prisma/migrations/20230912011344_reverse_document_data_relation/migration.sql
new file mode 100644
index 000000000..7a02d4cfe
--- /dev/null
+++ b/packages/prisma/migrations/20230912011344_reverse_document_data_relation/migration.sql
@@ -0,0 +1,23 @@
+-- DropForeignKey
+ALTER TABLE "DocumentData" DROP CONSTRAINT "DocumentData_documentId_fkey";
+
+-- DropIndex
+DROP INDEX "DocumentData_documentId_key";
+
+-- AlterTable
+ALTER TABLE "Document" ADD COLUMN "documentDataId" TEXT;
+
+-- Reverse relation foreign key ids
+UPDATE "Document" SET "documentDataId" = "DocumentData"."id" FROM "DocumentData" WHERE "Document"."id" = "DocumentData"."documentId";
+
+-- AlterColumn
+ALTER TABLE "Document" ALTER COLUMN "documentDataId" SET NOT NULL;
+
+-- AlterTable
+ALTER TABLE "DocumentData" DROP COLUMN "documentId";
+
+-- CreateIndex
+CREATE UNIQUE INDEX "Document_documentDataId_key" ON "Document"("documentDataId");
+
+-- AddForeignKey
+ALTER TABLE "Document" ADD CONSTRAINT "Document_documentDataId_fkey" FOREIGN KEY ("documentDataId") REFERENCES "DocumentData"("id") ON DELETE CASCADE ON UPDATE CASCADE;
diff --git a/packages/prisma/schema.prisma b/packages/prisma/schema.prisma
index 5171813c3..41f1b32fb 100644
--- a/packages/prisma/schema.prisma
+++ b/packages/prisma/schema.prisma
@@ -85,17 +85,20 @@ enum DocumentStatus {
 }
 
 model Document {
-  id           Int            @id @default(autoincrement())
-  created      DateTime       @default(now())
-  userId       Int
-  User         User           @relation(fields: [userId], references: [id], onDelete: Cascade)
-  title        String
-  status       DocumentStatus @default(DRAFT)
-  Recipient    Recipient[]
-  Field        Field[]
-  documentData DocumentData?
-  createdAt    DateTime       @default(now())
-  updatedAt    DateTime       @updatedAt @default(now())
+  id             Int            @id @default(autoincrement())
+  created        DateTime       @default(now())
+  userId         Int
+  User           User           @relation(fields: [userId], references: [id], onDelete: Cascade)
+  title          String
+  status         DocumentStatus @default(DRAFT)
+  Recipient      Recipient[]
+  Field          Field[]
+  documentDataId String
+  documentData   DocumentData   @relation(fields: [documentDataId], references: [id], onDelete: Cascade)
+  createdAt      DateTime       @default(now())
+  updatedAt      DateTime       @default(now()) @updatedAt
+
+  @@unique([documentDataId])
 }
 
 enum DocumentDataType {
@@ -109,11 +112,7 @@ model DocumentData {
   type        DocumentDataType
   data        String
   initialData String
-  documentId  Int
-
-  Document Document @relation(fields: [documentId], references: [id], onDelete: Cascade)
-
-  @@unique([documentId])
+  Document    Document?
 }
 
 enum ReadStatus {
diff --git a/packages/trpc/server/document-router/router.ts b/packages/trpc/server/document-router/router.ts
index 5628bb41d..e436bb391 100644
--- a/packages/trpc/server/document-router/router.ts
+++ b/packages/trpc/server/document-router/router.ts
@@ -1,5 +1,6 @@
 import { TRPCError } from '@trpc/server';
 
+import { createDocument } from '@documenso/lib/server-only/document/create-document';
 import { getDocumentById } from '@documenso/lib/server-only/document/get-document-by-id';
 import { getDocumentAndSenderByToken } from '@documenso/lib/server-only/document/get-document-by-token';
 import { sendDocument } from '@documenso/lib/server-only/document/send-document';
@@ -8,6 +9,7 @@ import { setRecipientsForDocument } from '@documenso/lib/server-only/recipient/s
 
 import { authenticatedProcedure, procedure, router } from '../trpc';
 import {
+  ZCreateDocumentMutationSchema,
   ZGetDocumentByIdQuerySchema,
   ZGetDocumentByTokenQuerySchema,
   ZSendDocumentMutationSchema,
@@ -22,11 +24,6 @@ export const documentRouter = router({
       try {
         const { id } = input;
 
-        console.log({
-          id,
-          userId: ctx.user.id,
-        });
-
         return await getDocumentById({
           id,
           userId: ctx.user.id,
@@ -58,6 +55,27 @@ export const documentRouter = router({
     }
   }),
 
+  createDocument: authenticatedProcedure
+    .input(ZCreateDocumentMutationSchema)
+    .mutation(async ({ input, ctx }) => {
+      try {
+        const { title, documentDataId } = input;
+
+        return await createDocument({
+          userId: ctx.user.id,
+          title,
+          documentDataId,
+        });
+      } catch (err) {
+        console.error(err);
+
+        throw new TRPCError({
+          code: 'BAD_REQUEST',
+          message: 'We were unable to create this document. Please try again later.',
+        });
+      }
+    }),
+
   setRecipientsForDocument: authenticatedProcedure
     .input(ZSetRecipientsForDocumentMutationSchema)
     .mutation(async ({ input, ctx }) => {
diff --git a/packages/trpc/server/document-router/schema.ts b/packages/trpc/server/document-router/schema.ts
index 9060ef1db..c95417306 100644
--- a/packages/trpc/server/document-router/schema.ts
+++ b/packages/trpc/server/document-router/schema.ts
@@ -14,6 +14,13 @@ export const ZGetDocumentByTokenQuerySchema = z.object({
 
 export type TGetDocumentByTokenQuerySchema = z.infer<typeof ZGetDocumentByTokenQuerySchema>;
 
+export const ZCreateDocumentMutationSchema = z.object({
+  title: z.string().min(1),
+  documentDataId: z.string().min(1),
+});
+
+export type TCreateDocumentMutationSchema = z.infer<typeof ZCreateDocumentMutationSchema>;
+
 export const ZSetRecipientsForDocumentMutationSchema = z.object({
   documentId: z.number(),
   recipients: z.array(
diff --git a/packages/tsconfig/process-env.d.ts b/packages/tsconfig/process-env.d.ts
index b65a2bb20..b0852b4f4 100644
--- a/packages/tsconfig/process-env.d.ts
+++ b/packages/tsconfig/process-env.d.ts
@@ -13,7 +13,7 @@ declare namespace NodeJS {
     NEXT_PRIVATE_STRIPE_API_KEY: string;
     NEXT_PRIVATE_STRIPE_WEBHOOK_SECRET: string;
 
-    NEXT_PRIVATE_UPLOAD_TRANSPORT?: 'database' | 's3';
+    NEXT_PUBLIC_UPLOAD_TRANSPORT?: 'database' | 's3';
     NEXT_PRIVATE_UPLOAD_ENDPOINT?: string;
     NEXT_PRIVATE_UPLOAD_REGION?: string;
     NEXT_PRIVATE_UPLOAD_BUCKET?: string;
diff --git a/packages/ui/package.json b/packages/ui/package.json
index 039687491..5a60f6c07 100644
--- a/packages/ui/package.json
+++ b/packages/ui/package.json
@@ -15,6 +15,7 @@
     "lint": "eslint \"**/*.ts*\""
   },
   "devDependencies": {
+    "@documenso/tailwind-config": "*",
     "@documenso/tsconfig": "*",
     "@types/react": "18.2.18",
     "@types/react-dom": "18.2.7",
@@ -22,6 +23,7 @@
     "typescript": "^5.1.6"
   },
   "dependencies": {
+    "@documenso/lib": "*",
     "@radix-ui/react-accordion": "^1.1.1",
     "@radix-ui/react-alert-dialog": "^1.0.3",
     "@radix-ui/react-aspect-ratio": "^1.0.2",
@@ -51,7 +53,6 @@
     "class-variance-authority": "^0.6.0",
     "clsx": "^1.2.1",
     "cmdk": "^0.2.0",
-    "date-fns": "^2.30.0",
     "framer-motion": "^10.12.8",
     "lucide-react": "^0.214.0",
     "next": "13.4.12",
@@ -61,4 +62,4 @@
     "tailwind-merge": "^1.12.0",
     "tailwindcss-animate": "^1.0.5"
   }
-}
\ No newline at end of file
+}
diff --git a/packages/ui/primitives/document-flow/add-fields.tsx b/packages/ui/primitives/document-flow/add-fields.tsx
index 5de43c411..ac938b41a 100644
--- a/packages/ui/primitives/document-flow/add-fields.tsx
+++ b/packages/ui/primitives/document-flow/add-fields.tsx
@@ -5,12 +5,12 @@ import { useCallback, useEffect, useRef, useState } from 'react';
 import { Caveat } from 'next/font/google';
 
 import { Check, ChevronsUpDown, Info } from 'lucide-react';
-import { nanoid } from 'nanoid';
 import { useFieldArray, useForm } from 'react-hook-form';
 
 import { getBoundingClientRect } from '@documenso/lib/client-only/get-bounding-client-rect';
 import { useDocumentElement } from '@documenso/lib/client-only/hooks/use-document-element';
 import { PDF_VIEWER_PAGE_SELECTOR } from '@documenso/lib/constants/pdf-viewer';
+import { nanoid } from '@documenso/lib/universal/id';
 import { Field, FieldType, Recipient, SendStatus } from '@documenso/prisma/client';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
diff --git a/packages/ui/primitives/document-flow/add-signers.tsx b/packages/ui/primitives/document-flow/add-signers.tsx
index fe52627fd..412fbfc19 100644
--- a/packages/ui/primitives/document-flow/add-signers.tsx
+++ b/packages/ui/primitives/document-flow/add-signers.tsx
@@ -5,9 +5,9 @@ import React, { useId } from 'react';
 import { zodResolver } from '@hookform/resolvers/zod';
 import { AnimatePresence, motion } from 'framer-motion';
 import { Plus, Trash } from 'lucide-react';
-import { nanoid } from 'nanoid';
 import { Controller, useFieldArray, useForm } from 'react-hook-form';
 
+import { nanoid } from '@documenso/lib/universal/id';
 import { Field, Recipient, SendStatus } from '@documenso/prisma/client';
 import { Button } from '@documenso/ui/primitives/button';
 import { FormErrorMessage } from '@documenso/ui/primitives/form/form-error-message';
diff --git a/turbo.json b/turbo.json
index f7d3d342c..10a39ddf1 100644
--- a/turbo.json
+++ b/turbo.json
@@ -33,6 +33,12 @@
     "NEXT_PRIVATE_NEXT_AUTH_SECRET",
     "NEXT_PRIVATE_GOOGLE_CLIENT_ID",
     "NEXT_PRIVATE_GOOGLE_CLIENT_SECRET",
+    "NEXT_PUBLIC_UPLOAD_TRANSPORT",
+    "NEXT_PRIVATE_UPLOAD_ENDPOINT",
+    "NEXT_PRIVATE_UPLOAD_REGION",
+    "NEXT_PRIVATE_UPLOAD_BUCKET",
+    "NEXT_PRIVATE_UPLOAD_ACCESS_KEY_ID",
+    "NEXT_PRIVATE_UPLOAD_SECRET_ACCESS_KEY",
     "NEXT_PRIVATE_SMTP_TRANSPORT",
     "NEXT_PRIVATE_MAILCHANNELS_API_KEY",
     "NEXT_PRIVATE_MAILCHANNELS_ENDPOINT",

From f8534b2c3d04b19bdff698b8a2d8b1fcda5bf4bf Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 14 Sep 2023 12:51:59 +1000
Subject: [PATCH 50/83] fix: add dashboard header border on scroll

---
 .../app/(dashboard)/settings/billing/page.tsx   | 14 ++++++++------
 .../components/(dashboard)/layout/header.tsx    | 17 +++++++++++++++--
 2 files changed, 23 insertions(+), 8 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/settings/billing/page.tsx b/apps/web/src/app/(dashboard)/settings/billing/page.tsx
index e9966b9ac..555c645ce 100644
--- a/apps/web/src/app/(dashboard)/settings/billing/page.tsx
+++ b/apps/web/src/app/(dashboard)/settings/billing/page.tsx
@@ -21,16 +21,18 @@ export default async function BillingSettingsPage() {
     redirect('/settings/profile');
   }
 
-  let subscription = await getSubscriptionByUserId({ userId: user.id });
+  const subscription = await getSubscriptionByUserId({ userId: user.id }).then(async (sub) => {
+    if (sub) {
+      return sub;
+    }
 
-  // If we don't have a customer record, create one as well as an empty subscription.
-  if (!subscription?.customerId) {
-    subscription = await createCustomer({ user });
-  }
+    // If we don't have a customer record, create one as well as an empty subscription.
+    return createCustomer({ user });
+  });
 
   let billingPortalUrl = '';
 
-  if (subscription?.customerId) {
+  if (subscription.customerId) {
     billingPortalUrl = await getPortalSession({
       customerId: subscription.customerId,
       returnUrl: `${process.env.NEXT_PUBLIC_SITE_URL}/settings/billing`,
diff --git a/apps/web/src/components/(dashboard)/layout/header.tsx b/apps/web/src/components/(dashboard)/layout/header.tsx
index 88dc5d7a4..bea7f4aee 100644
--- a/apps/web/src/components/(dashboard)/layout/header.tsx
+++ b/apps/web/src/components/(dashboard)/layout/header.tsx
@@ -1,6 +1,6 @@
 'use client';
 
-import { HTMLAttributes } from 'react';
+import { HTMLAttributes, useEffect, useState } from 'react';
 
 import Link from 'next/link';
 
@@ -17,10 +17,23 @@ export type HeaderProps = HTMLAttributes<HTMLDivElement> & {
 };
 
 export const Header = ({ className, user, ...props }: HeaderProps) => {
+  const [scrollY, setScrollY] = useState(0);
+
+  useEffect(() => {
+    const onScroll = () => {
+      setScrollY(window.scrollY);
+    };
+
+    window.addEventListener('scroll', onScroll);
+
+    return () => window.removeEventListener('scroll', onScroll);
+  }, []);
+
   return (
     <header
       className={cn(
-        'supports-backdrop-blur:bg-background/60 bg-background/95 sticky top-0 z-50 flex h-16 w-full items-center border-b backdrop-blur',
+        'supports-backdrop-blur:bg-background/60 bg-background/95 sticky top-0 z-50 flex h-16 w-full items-center border-b border-b-transparent backdrop-blur duration-200',
+        scrollY > 5 && 'border-b-border',
         className,
       )}
       {...props}

From 6c12ed4afc34ccb61756a75756c9f3315617626a Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 14 Sep 2023 13:07:55 +1000
Subject: [PATCH 51/83] fix: update migration for timestamp columns

---
 .../migration.sql                                  | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql b/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
index 333386230..371181e80 100644
--- a/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
+++ b/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
@@ -1,3 +1,13 @@
 -- AlterTable
-ALTER TABLE "Document" ADD COLUMN     "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
-ADD COLUMN     "updatedAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP;
+ALTER TABLE "Document" ADD COLUMN "createdAt" TIMESTAMP(3);
+ALTER TABLE "Document" ADD COLUMN "updatedAt" TIMESTAMP(3);
+
+-- DefaultValues
+UPDATE "Document"
+SET
+  "createdAt" = COALESCE("created"::TIMESTAMP, NOW()),
+  "updatedAt" = COALESCE("created"::TIMESTAMP, NOW());
+
+-- AlterColumn
+ALTER TABLE "Document" ALTER COLUMN "createdAt" SET NOT NULL DEFAULT NOW();
+ALTER TABLE "Document" ALTER COLUMN "updatedAt" SET NOT NULL DEFAULT NOW();

From 2356f58e7b5c471432eb6e4d221d0f0f0de67b9a Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 14 Sep 2023 13:21:03 +1000
Subject: [PATCH 52/83] fix: implement feedback

---
 .../app/(dashboard)/documents/[id]/page.tsx   |  2 --
 .../documents/data-table-action-dropdown.tsx  | 28 ++-----------------
 .../sign/[token]/complete/download-button.tsx |  9 ++++++
 packages/lib/universal/upload/get-file.ts     | 10 +++++--
 packages/lib/universal/upload/put-file.ts     |  8 +++++-
 packages/lib/universal/upload/update-file.ts  |  6 +++-
 .../migration.sql                             | 10 +++++--
 .../migration.sql                             |  8 ++++++
 packages/prisma/schema.prisma                 |  1 -
 9 files changed, 48 insertions(+), 34 deletions(-)
 create mode 100644 packages/prisma/migrations/20230914031347_remove_redundant_created_column/migration.sql

diff --git a/apps/web/src/app/(dashboard)/documents/[id]/page.tsx b/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
index 915547607..3d6dbb954 100644
--- a/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
+++ b/apps/web/src/app/(dashboard)/documents/[id]/page.tsx
@@ -47,8 +47,6 @@ export default async function DocumentPage({ params }: DocumentPageProps) {
     .then((buffer) => Buffer.from(buffer).toString('base64'))
     .then((data) => `data:application/pdf;base64,${data}`);
 
-  console.log({ documentDataUrl: documentDataUrl.slice(0, 40) });
-
   const [recipients, fields] = await Promise.all([
     await getRecipientsForDocument({
       documentId,
diff --git a/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx b/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
index 02e3ad95c..dd028e0b2 100644
--- a/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
+++ b/apps/web/src/app/(dashboard)/documents/data-table-action-dropdown.tsx
@@ -14,15 +14,9 @@ import {
   XCircle,
 } from 'lucide-react';
 import { useSession } from 'next-auth/react';
-import { match } from 'ts-pattern';
 
-import {
-  Document,
-  DocumentDataType,
-  DocumentStatus,
-  Recipient,
-  User,
-} from '@documenso/prisma/client';
+import { getFile } from '@documenso/lib/universal/upload/get-file';
+import { Document, DocumentStatus, Recipient, User } from '@documenso/prisma/client';
 import { DocumentWithData } from '@documenso/prisma/types/document-with-data';
 import { trpc } from '@documenso/trpc/client';
 import {
@@ -75,23 +69,7 @@ export const DataTableActionDropdown = ({ row }: DataTableActionDropdownProps) =
       return;
     }
 
-    const documentBytes = await match(documentData.type)
-      .with(DocumentDataType.BYTES, () =>
-        Uint8Array.from(documentData.data, (c) => c.charCodeAt(0)),
-      )
-      .with(DocumentDataType.BYTES_64, () =>
-        Uint8Array.from(
-          atob(documentData.data)
-            .split('')
-            .map((c) => c.charCodeAt(0)),
-        ),
-      )
-      .with(DocumentDataType.S3_PATH, async () =>
-        fetch(documentData.data)
-          .then(async (res) => res.arrayBuffer())
-          .then((buffer) => new Uint8Array(buffer)),
-      )
-      .exhaustive();
+    const documentBytes = await getFile(documentData);
 
     const blob = new Blob([documentBytes], {
       type: 'application/pdf',
diff --git a/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx b/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx
index 088afad33..49b7a8f15 100644
--- a/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx
+++ b/apps/web/src/app/(signing)/sign/[token]/complete/download-button.tsx
@@ -7,6 +7,7 @@ import { Download } from 'lucide-react';
 import { getFile } from '@documenso/lib/universal/upload/get-file';
 import { DocumentData } from '@documenso/prisma/client';
 import { Button } from '@documenso/ui/primitives/button';
+import { useToast } from '@documenso/ui/primitives/use-toast';
 
 export type DownloadButtonProps = HTMLAttributes<HTMLButtonElement> & {
   disabled?: boolean;
@@ -21,6 +22,8 @@ export const DownloadButton = ({
   disabled,
   ...props
 }: DownloadButtonProps) => {
+  const { toast } = useToast();
+
   const [isLoading, setIsLoading] = useState(false);
 
   const onDownloadClick = async () => {
@@ -47,6 +50,12 @@ export const DownloadButton = ({
       window.URL.revokeObjectURL(link.href);
     } catch (err) {
       console.error(err);
+
+      toast({
+        title: 'Error',
+        description: 'An error occurred while downloading your document.',
+        variant: 'destructive',
+      });
     } finally {
       setIsLoading(false);
     }
diff --git a/packages/lib/universal/upload/get-file.ts b/packages/lib/universal/upload/get-file.ts
index 2c71c3774..10e624aaf 100644
--- a/packages/lib/universal/upload/get-file.ts
+++ b/packages/lib/universal/upload/get-file.ts
@@ -35,9 +35,15 @@ const getFileFromBytes64 = (data: string) => {
 const getFileFromS3 = async (key: string) => {
   const { url } = await getPresignGetUrl(key);
 
-  const buffer = await fetch(url, {
+  const response = await fetch(url, {
     method: 'GET',
-  }).then(async (res) => res.arrayBuffer());
+  });
+
+  if (!response.ok) {
+    throw new Error(`Failed to get file "${key}", failed with status code ${response.status}`);
+  }
+
+  const buffer = await response.arrayBuffer();
 
   const binaryData = new Uint8Array(buffer);
 
diff --git a/packages/lib/universal/upload/put-file.ts b/packages/lib/universal/upload/put-file.ts
index ccfa96e7b..56ed8eb07 100644
--- a/packages/lib/universal/upload/put-file.ts
+++ b/packages/lib/universal/upload/put-file.ts
@@ -38,7 +38,7 @@ const putFileInS3 = async (file: File) => {
 
   const body = await file.arrayBuffer();
 
-  await fetch(url, {
+  const reponse = await fetch(url, {
     method: 'PUT',
     headers: {
       'Content-Type': 'application/octet-stream',
@@ -46,6 +46,12 @@ const putFileInS3 = async (file: File) => {
     body,
   });
 
+  if (!reponse.ok) {
+    throw new Error(
+      `Failed to upload file "${file.name}", failed with status code ${reponse.status}`,
+    );
+  }
+
   return {
     type: DocumentDataType.S3_PATH,
     data: key,
diff --git a/packages/lib/universal/upload/update-file.ts b/packages/lib/universal/upload/update-file.ts
index a7a227bab..e06a8fa5f 100644
--- a/packages/lib/universal/upload/update-file.ts
+++ b/packages/lib/universal/upload/update-file.ts
@@ -42,11 +42,15 @@ const updateFileWithBytes64 = (data: string) => {
 const updateFileWithS3 = async (key: string, data: string) => {
   const { url } = await getAbsolutePresignPostUrl(key);
 
-  await fetch(url, {
+  const response = await fetch(url, {
     method: 'PUT',
     body: data,
   });
 
+  if (!response.ok) {
+    throw new Error(`Failed to update file "${key}", failed with status code ${response.status}`);
+  }
+
   return {
     type: DocumentDataType.S3_PATH,
     data: key,
diff --git a/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql b/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
index 371181e80..3d30cb4e1 100644
--- a/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
+++ b/packages/prisma/migrations/20230907080056_add_created_at_and_updated_at_columns/migration.sql
@@ -1,5 +1,7 @@
 -- AlterTable
 ALTER TABLE "Document" ADD COLUMN "createdAt" TIMESTAMP(3);
+
+-- AlterTable
 ALTER TABLE "Document" ADD COLUMN "updatedAt" TIMESTAMP(3);
 
 -- DefaultValues
@@ -9,5 +11,9 @@ SET
   "updatedAt" = COALESCE("created"::TIMESTAMP, NOW());
 
 -- AlterColumn
-ALTER TABLE "Document" ALTER COLUMN "createdAt" SET NOT NULL DEFAULT NOW();
-ALTER TABLE "Document" ALTER COLUMN "updatedAt" SET NOT NULL DEFAULT NOW();
+ALTER TABLE "Document" ALTER COLUMN "createdAt" SET DEFAULT NOW();
+ALTER TABLE "Document" ALTER COLUMN "createdAt" SET NOT NULL;
+
+-- AlterColumn
+ALTER TABLE "Document" ALTER COLUMN "updatedAt" SET DEFAULT NOW();
+ALTER TABLE "Document" ALTER COLUMN "updatedAt" SET NOT NULL;
diff --git a/packages/prisma/migrations/20230914031347_remove_redundant_created_column/migration.sql b/packages/prisma/migrations/20230914031347_remove_redundant_created_column/migration.sql
new file mode 100644
index 000000000..79902a8e7
--- /dev/null
+++ b/packages/prisma/migrations/20230914031347_remove_redundant_created_column/migration.sql
@@ -0,0 +1,8 @@
+/*
+  Warnings:
+
+  - You are about to drop the column `created` on the `Document` table. All the data in the column will be lost.
+
+*/
+-- AlterTable
+ALTER TABLE "Document" DROP COLUMN "created";
diff --git a/packages/prisma/schema.prisma b/packages/prisma/schema.prisma
index 6cdf90661..1ff3d7a75 100644
--- a/packages/prisma/schema.prisma
+++ b/packages/prisma/schema.prisma
@@ -92,7 +92,6 @@ enum DocumentStatus {
 
 model Document {
   id             Int            @id @default(autoincrement())
-  created        DateTime       @default(now())
   userId         Int
   User           User           @relation(fields: [userId], references: [id], onDelete: Cascade)
   title          String

From 425db8fc1fa146e87a8ab239234829dcb6817356 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 14 Sep 2023 13:32:16 +1000
Subject: [PATCH 53/83] fix: remove references to created column

---
 apps/marketing/src/pages/api/stripe/webhook/index.ts | 1 -
 apps/web/src/pages/api/stripe/webhook/index.ts       | 1 -
 2 files changed, 2 deletions(-)

diff --git a/apps/marketing/src/pages/api/stripe/webhook/index.ts b/apps/marketing/src/pages/api/stripe/webhook/index.ts
index b5feeb870..ad9bfe808 100644
--- a/apps/marketing/src/pages/api/stripe/webhook/index.ts
+++ b/apps/marketing/src/pages/api/stripe/webhook/index.ts
@@ -103,7 +103,6 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
           title: 'Documenso Supporter Pledge.pdf',
           status: DocumentStatus.COMPLETED,
           userId: user.id,
-          created: now,
           documentDataId,
         },
         include: {
diff --git a/apps/web/src/pages/api/stripe/webhook/index.ts b/apps/web/src/pages/api/stripe/webhook/index.ts
index fb7877259..9efab2a78 100644
--- a/apps/web/src/pages/api/stripe/webhook/index.ts
+++ b/apps/web/src/pages/api/stripe/webhook/index.ts
@@ -101,7 +101,6 @@ export default async function handler(req: NextApiRequest, res: NextApiResponse)
           title: 'Documenso Supporter Pledge.pdf',
           status: DocumentStatus.COMPLETED,
           userId: user.id,
-          created: now,
           documentDataId,
         },
         include: {

From 0d702e918947eb8357b242fb5569f0dea647abc9 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 14 Sep 2023 13:37:38 +1000
Subject: [PATCH 54/83] fix: remove further references to created column

---
 apps/web/src/app/(dashboard)/documents/page.tsx     | 2 +-
 packages/lib/server-only/document/find-documents.ts | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/documents/page.tsx b/apps/web/src/app/(dashboard)/documents/page.tsx
index d1f558806..32ec4f814 100644
--- a/apps/web/src/app/(dashboard)/documents/page.tsx
+++ b/apps/web/src/app/(dashboard)/documents/page.tsx
@@ -39,7 +39,7 @@ export default async function DocumentsPage({ searchParams = {} }: DocumentsPage
     userId: user.id,
     status,
     orderBy: {
-      column: 'created',
+      column: 'createdAt',
       direction: 'desc',
     },
     page,
diff --git a/packages/lib/server-only/document/find-documents.ts b/packages/lib/server-only/document/find-documents.ts
index c9c8eaf6c..aa5410c17 100644
--- a/packages/lib/server-only/document/find-documents.ts
+++ b/packages/lib/server-only/document/find-documents.ts
@@ -32,7 +32,7 @@ export const findDocuments = async ({
     },
   });
 
-  const orderByColumn = orderBy?.column ?? 'created';
+  const orderByColumn = orderBy?.column ?? 'createdAt';
   const orderByDirection = orderBy?.direction ?? 'desc';
 
   const termFilters = !term

From 8be52e2fa3bddff4d052310c6541ac53a1e32554 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Thu, 14 Sep 2023 14:50:17 +1000
Subject: [PATCH 55/83] fix: final reference to created column

---
 apps/web/src/app/(dashboard)/documents/data-table.tsx | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/documents/data-table.tsx b/apps/web/src/app/(dashboard)/documents/data-table.tsx
index b8c735b59..7d2f18a27 100644
--- a/apps/web/src/app/(dashboard)/documents/data-table.tsx
+++ b/apps/web/src/app/(dashboard)/documents/data-table.tsx
@@ -53,8 +53,8 @@ export const DocumentsDataTable = ({ results }: DocumentsDataTableProps) => {
         columns={[
           {
             header: 'Created',
-            accessorKey: 'created',
-            cell: ({ row }) => <LocaleDate date={row.getValue('created')} />,
+            accessorKey: 'createdAt',
+            cell: ({ row }) => <LocaleDate date={row.original.createdAt} />,
           },
           {
             header: 'Title',

From 9dcab76cd553f1f26ee8dd8839e4345cb874a336 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <55143799+dephraiim@users.noreply.github.com>
Date: Mon, 18 Sep 2023 01:37:17 +0000
Subject: [PATCH 56/83] feat: use description of each blog post in og image
 (#380)

---
 apps/marketing/src/app/(marketing)/blog/[post]/page.tsx | 1 +
 1 file changed, 1 insertion(+)

diff --git a/apps/marketing/src/app/(marketing)/blog/[post]/page.tsx b/apps/marketing/src/app/(marketing)/blog/[post]/page.tsx
index 7edf29ec2..757eb8882 100644
--- a/apps/marketing/src/app/(marketing)/blog/[post]/page.tsx
+++ b/apps/marketing/src/app/(marketing)/blog/[post]/page.tsx
@@ -19,6 +19,7 @@ export const generateMetadata = ({ params }: { params: { post: string } }) => {
 
   return {
     title: `Documenso - ${blogPost.title}`,
+    description: blogPost.description,
   };
 };
 

From 47d55a5eaba6675eb1472bf6950721a028150bc9 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 06:47:03 +0000
Subject: [PATCH 57/83] feat: add password reset token to schema

---
 .../migration.sql                             | 16 +++++++++
 packages/prisma/schema.prisma                 | 36 ++++++++++++-------
 2 files changed, 39 insertions(+), 13 deletions(-)
 create mode 100644 packages/prisma/migrations/20230917190854_password_reset_token/migration.sql

diff --git a/packages/prisma/migrations/20230917190854_password_reset_token/migration.sql b/packages/prisma/migrations/20230917190854_password_reset_token/migration.sql
new file mode 100644
index 000000000..d22107691
--- /dev/null
+++ b/packages/prisma/migrations/20230917190854_password_reset_token/migration.sql
@@ -0,0 +1,16 @@
+-- CreateTable
+CREATE TABLE "PasswordResetToken" (
+    "id" SERIAL NOT NULL,
+    "token" TEXT NOT NULL,
+    "createdAt" TIMESTAMP(3) NOT NULL DEFAULT CURRENT_TIMESTAMP,
+    "expiry" TIMESTAMP(3) NOT NULL,
+    "userId" INTEGER NOT NULL,
+
+    CONSTRAINT "PasswordResetToken_pkey" PRIMARY KEY ("id")
+);
+
+-- CreateIndex
+CREATE UNIQUE INDEX "PasswordResetToken_token_key" ON "PasswordResetToken"("token");
+
+-- AddForeignKey
+ALTER TABLE "PasswordResetToken" ADD CONSTRAINT "PasswordResetToken_userId_fkey" FOREIGN KEY ("userId") REFERENCES "User"("id") ON DELETE RESTRICT ON UPDATE CASCADE;
diff --git a/packages/prisma/schema.prisma b/packages/prisma/schema.prisma
index 1ff3d7a75..96b7db0a3 100644
--- a/packages/prisma/schema.prisma
+++ b/packages/prisma/schema.prisma
@@ -19,19 +19,29 @@ enum Role {
 }
 
 model User {
-  id               Int              @id @default(autoincrement())
-  name             String?
-  email            String           @unique
-  emailVerified    DateTime?
-  password         String?
-  source           String?
-  signature        String?
-  roles            Role[]           @default([USER])
-  identityProvider IdentityProvider @default(DOCUMENSO)
-  accounts         Account[]
-  sessions         Session[]
-  Document         Document[]
-  Subscription     Subscription[]
+  id                 Int                  @id @default(autoincrement())
+  name               String?
+  email              String               @unique
+  emailVerified      DateTime?
+  password           String?
+  source             String?
+  signature          String?
+  roles              Role[]               @default([USER])
+  identityProvider   IdentityProvider     @default(DOCUMENSO)
+  accounts           Account[]
+  sessions           Session[]
+  Document           Document[]
+  Subscription       Subscription[]
+  PasswordResetToken PasswordResetToken[]
+}
+
+model PasswordResetToken {
+  id        Int      @id @default(autoincrement())
+  token     String   @unique
+  createdAt DateTime @default(now())
+  expiry    DateTime
+  userId    Int
+  User      User     @relation(fields: [userId], references: [id])
 }
 
 enum SubscriptionStatus {

From f88e529111716be88bdce7d1211dc94bf58266ef Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 10:18:33 +0000
Subject: [PATCH 58/83] feat: add forgot passoword page

---
 .../(unauthenticated)/check-email/page.tsx    |  34 ++++++
 .../forgot-password/page.tsx                  |  38 +++++++
 .../src/components/forms/forgot-password.tsx  | 104 ++++++++++++++++++
 apps/web/src/components/forms/signin.tsx      |   8 +-
 4 files changed, 182 insertions(+), 2 deletions(-)
 create mode 100644 apps/web/src/app/(unauthenticated)/check-email/page.tsx
 create mode 100644 apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
 create mode 100644 apps/web/src/components/forms/forgot-password.tsx

diff --git a/apps/web/src/app/(unauthenticated)/check-email/page.tsx b/apps/web/src/app/(unauthenticated)/check-email/page.tsx
new file mode 100644
index 000000000..26039f4ae
--- /dev/null
+++ b/apps/web/src/app/(unauthenticated)/check-email/page.tsx
@@ -0,0 +1,34 @@
+import Image from 'next/image';
+import Link from 'next/link';
+
+import backgroundPattern from '~/assets/background-pattern.png';
+
+export default function ForgotPasswordPage() {
+  return (
+    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
+      <div className="relative flex w-1/5 items-center gap-x-24">
+        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
+          <Image
+            src={backgroundPattern}
+            alt="background pattern"
+            className="dark:brightness-95 dark:invert dark:sepia"
+          />
+        </div>
+
+        <div className="w-full text-center">
+          <h1 className="text-4xl font-semibold">Reset Pasword</h1>
+
+          <p className="text-muted-foreground/60 mb-4 mt-2 text-sm">
+            Please check your email for reset instructions
+          </p>
+
+          <p className="text-muted-foreground mt-6 text-center text-sm">
+            <Link href="/signin" className="text-primary duration-200 hover:opacity-70">
+              Sign in
+            </Link>
+          </p>
+        </div>
+      </div>
+    </main>
+  );
+}
diff --git a/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
new file mode 100644
index 000000000..73cfd01ca
--- /dev/null
+++ b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
@@ -0,0 +1,38 @@
+import Image from 'next/image';
+import Link from 'next/link';
+
+import backgroundPattern from '~/assets/background-pattern.png';
+import { ForgotPasswordForm } from '~/components/forms/forgot-password';
+
+export default function ForgotPasswordPage() {
+  return (
+    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
+      <div className="relative flex w-1/5 items-center gap-x-24">
+        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
+          <Image
+            src={backgroundPattern}
+            alt="background pattern"
+            className="dark:brightness-95 dark:invert dark:sepia"
+          />
+        </div>
+
+        <div className="w-full">
+          <h1 className="text-4xl font-semibold">Forgot Password?</h1>
+
+          <p className="text-muted-foreground/60 mt-2 text-sm">
+            No worries, we'll send you reset instructions.
+          </p>
+
+          <ForgotPasswordForm className="mt-4" />
+
+          <p className="text-muted-foreground mt-6 text-center text-sm">
+            Don't have an account?{' '}
+            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
+              Sign up
+            </Link>
+          </p>
+        </div>
+      </div>
+    </main>
+  );
+}
diff --git a/apps/web/src/components/forms/forgot-password.tsx b/apps/web/src/components/forms/forgot-password.tsx
new file mode 100644
index 000000000..94b5ea0cd
--- /dev/null
+++ b/apps/web/src/components/forms/forgot-password.tsx
@@ -0,0 +1,104 @@
+'use client';
+
+import { useEffect } from 'react';
+
+import { useRouter, useSearchParams } from 'next/navigation';
+
+import { zodResolver } from '@hookform/resolvers/zod';
+import { Loader } from 'lucide-react';
+import { useForm } from 'react-hook-form';
+import { z } from 'zod';
+
+import { ErrorCode, isErrorCode } from '@documenso/lib/next-auth/error-codes';
+import { cn } from '@documenso/ui/lib/utils';
+import { Button } from '@documenso/ui/primitives/button';
+import { Input } from '@documenso/ui/primitives/input';
+import { Label } from '@documenso/ui/primitives/label';
+import { useToast } from '@documenso/ui/primitives/use-toast';
+
+const ERROR_MESSAGES = {
+  [ErrorCode.CREDENTIALS_NOT_FOUND]: 'No account found with that email address.',
+  [ErrorCode.INCORRECT_EMAIL_PASSWORD]: 'No account found with that email address.',
+  [ErrorCode.USER_MISSING_PASSWORD]:
+    'This account appears to be using a social login method, please sign in using that method',
+};
+
+export const ZForgotPasswordFormSchema = z.object({
+  email: z.string().email().min(1),
+});
+
+export type TForgotPasswordFormSchema = z.infer<typeof ZForgotPasswordFormSchema>;
+
+export type ForgotPasswordFormProps = {
+  className?: string;
+};
+
+export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
+  const searchParams = useSearchParams();
+  const router = useRouter();
+
+  const { toast } = useToast();
+
+  const {
+    register,
+    handleSubmit,
+    formState: { errors, isSubmitting },
+  } = useForm<TForgotPasswordFormSchema>({
+    values: {
+      email: '',
+    },
+    resolver: zodResolver(ZForgotPasswordFormSchema),
+  });
+
+  const errorCode = searchParams?.get('error');
+
+  useEffect(() => {
+    let timeout: NodeJS.Timeout | null = null;
+
+    if (isErrorCode(errorCode)) {
+      timeout = setTimeout(() => {
+        toast({
+          variant: 'destructive',
+          description: ERROR_MESSAGES[errorCode] ?? 'An unknown error occurred',
+        });
+      }, 0);
+    }
+
+    return () => {
+      if (timeout) {
+        clearTimeout(timeout);
+      }
+    };
+  }, [errorCode, toast]);
+
+  const onFormSubmit = ({ email }: TForgotPasswordFormSchema) => {
+    // check if the email is available
+    // if not, throw an error
+    // if the email is available, create a password reset token and send an email
+
+    console.log(email);
+    router.push('/check-email');
+  };
+
+  return (
+    <form
+      className={cn('flex w-full flex-col gap-y-4', className)}
+      onSubmit={handleSubmit(onFormSubmit)}
+    >
+      <div>
+        <Label htmlFor="email" className="text-slate-500">
+          Email
+        </Label>
+
+        <Input id="email" type="email" className="bg-background mt-2" {...register('email')} />
+
+        {errors.email && <span className="mt-1 text-xs text-red-500">{errors.email.message}</span>}
+      </div>
+
+      <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
+        {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
+        Reset Password
+      </Button>
+    </form>
+  );
+};
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index d9d727afc..a06c04c72 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -2,6 +2,7 @@
 
 import { useEffect } from 'react';
 
+import Link from 'next/link';
 import { useSearchParams } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
@@ -123,8 +124,11 @@ export const SignInForm = ({ className }: SignInFormProps) => {
       </div>
 
       <div>
-        <Label htmlFor="password" className="text-slate-500">
-          Password
+        <Label htmlFor="password" className="flex justify-between text-slate-500">
+          <span>Password</span>
+          <Link className="text-xs text-slate-500" href="/forgot-password">
+            Forgot?
+          </Link>
         </Label>
 
         <Input

From 7a489f241aac986dec5a07943dda1f6c69ebc4c6 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 10:31:33 +0000
Subject: [PATCH 59/83] feat: add reset password page

---
 .../(unauthenticated)/reset-password/page.tsx |  36 +++++
 .../src/components/forms/reset-password.tsx   | 138 ++++++++++++++++++
 2 files changed, 174 insertions(+)
 create mode 100644 apps/web/src/app/(unauthenticated)/reset-password/page.tsx
 create mode 100644 apps/web/src/components/forms/reset-password.tsx

diff --git a/apps/web/src/app/(unauthenticated)/reset-password/page.tsx b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
new file mode 100644
index 000000000..d782e5039
--- /dev/null
+++ b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
@@ -0,0 +1,36 @@
+import Image from 'next/image';
+import Link from 'next/link';
+
+import backgroundPattern from '~/assets/background-pattern.png';
+import { ResetPasswordForm } from '~/components/forms/reset-password';
+
+export default function ResetPasswordPage() {
+  return (
+    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
+      <div className="relative flex w-1/5 items-center gap-x-24">
+        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
+          <Image
+            src={backgroundPattern}
+            alt="background pattern"
+            className="dark:brightness-95 dark:invert dark:sepia"
+          />
+        </div>
+
+        <div className="w-full">
+          <h1 className="text-4xl font-semibold">Reset Password</h1>
+
+          <p className="text-muted-foreground/60 mt-2 text-sm">Please choose your new password </p>
+
+          <ResetPasswordForm className="mt-4" />
+
+          <p className="text-muted-foreground mt-6 text-center text-sm">
+            Don't have an account?{' '}
+            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
+              Sign up
+            </Link>
+          </p>
+        </div>
+      </div>
+    </main>
+  );
+}
diff --git a/apps/web/src/components/forms/reset-password.tsx b/apps/web/src/components/forms/reset-password.tsx
new file mode 100644
index 000000000..db8631571
--- /dev/null
+++ b/apps/web/src/components/forms/reset-password.tsx
@@ -0,0 +1,138 @@
+'use client';
+
+import { useEffect } from 'react';
+
+import { useRouter, useSearchParams } from 'next/navigation';
+
+import { zodResolver } from '@hookform/resolvers/zod';
+import { Loader } from 'lucide-react';
+import { useForm } from 'react-hook-form';
+import { z } from 'zod';
+
+import { ErrorCode, isErrorCode } from '@documenso/lib/next-auth/error-codes';
+import { cn } from '@documenso/ui/lib/utils';
+import { Button } from '@documenso/ui/primitives/button';
+import { Input } from '@documenso/ui/primitives/input';
+import { Label } from '@documenso/ui/primitives/label';
+import { useToast } from '@documenso/ui/primitives/use-toast';
+
+const ERROR_MESSAGES = {
+  [ErrorCode.CREDENTIALS_NOT_FOUND]: 'No account found with that email address.',
+  [ErrorCode.INCORRECT_EMAIL_PASSWORD]: 'No account found with that email address.',
+  [ErrorCode.USER_MISSING_PASSWORD]:
+    'This account appears to be using a social login method, please sign in using that method',
+};
+
+export const ZResetPasswordFormSchema = z
+  .object({
+    password: z.string().min(6).max(72),
+    repeatedPassword: z.string().min(6).max(72),
+  })
+  .refine((data) => data.password === data.repeatedPassword, {
+    path: ['repeatedPassword'],
+    message: "Password don't match",
+  });
+
+export type TResetPasswordFormSchema = z.infer<typeof ZResetPasswordFormSchema>;
+
+export type ResetPasswordFormProps = {
+  className?: string;
+};
+
+export const ResetPasswordForm = ({ className }: ResetPasswordFormProps) => {
+  const searchParams = useSearchParams();
+  const router = useRouter();
+
+  const { toast } = useToast();
+
+  const {
+    register,
+    handleSubmit,
+    formState: { errors, isSubmitting },
+  } = useForm<TResetPasswordFormSchema>({
+    values: {
+      password: '',
+      repeatedPassword: '',
+    },
+    resolver: zodResolver(ZResetPasswordFormSchema),
+  });
+
+  const errorCode = searchParams?.get('error');
+
+  useEffect(() => {
+    let timeout: NodeJS.Timeout | null = null;
+
+    if (isErrorCode(errorCode)) {
+      timeout = setTimeout(() => {
+        toast({
+          variant: 'destructive',
+          description: ERROR_MESSAGES[errorCode] ?? 'An unknown error occurred',
+        });
+      }, 0);
+    }
+
+    return () => {
+      if (timeout) {
+        clearTimeout(timeout);
+      }
+    };
+  }, [errorCode, toast]);
+
+  const onFormSubmit = ({ password, repeatedPassword }: TResetPasswordFormSchema) => {
+    console.log(password, repeatedPassword);
+
+    router.push('/signin');
+  };
+
+  return (
+    <form
+      className={cn('flex w-full flex-col gap-y-4', className)}
+      onSubmit={handleSubmit(onFormSubmit)}
+    >
+      <div>
+        <Label htmlFor="password" className="flex justify-between text-slate-500">
+          <span>Password</span>
+        </Label>
+
+        <Input
+          id="password"
+          type="password"
+          minLength={6}
+          maxLength={72}
+          autoComplete="current-password"
+          className="bg-background mt-2"
+          {...register('password')}
+        />
+
+        {errors.password && (
+          <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
+        )}
+      </div>
+
+      <div>
+        <Label htmlFor="repeatedPassword" className="flex justify-between text-slate-500">
+          <span>Confirm Password</span>
+        </Label>
+
+        <Input
+          id="repeatedPassword"
+          type="password"
+          minLength={6}
+          maxLength={72}
+          autoComplete="current-password"
+          className="bg-background mt-2"
+          {...register('repeatedPassword')}
+        />
+
+        {errors.repeatedPassword && (
+          <span className="mt-1 text-xs text-red-500">{errors.repeatedPassword.message}</span>
+        )}
+      </div>
+
+      <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
+        {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
+        Reset Password
+      </Button>
+    </form>
+  );
+};

From 0f92534f00cbe696382f60775fb19280d70047ca Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 10:33:03 +0000
Subject: [PATCH 60/83] chore: remove unused error toast

---
 .../src/components/forms/forgot-password.tsx  | 37 +-----------------
 .../src/components/forms/reset-password.tsx   | 39 +------------------
 2 files changed, 3 insertions(+), 73 deletions(-)

diff --git a/apps/web/src/components/forms/forgot-password.tsx b/apps/web/src/components/forms/forgot-password.tsx
index 94b5ea0cd..b97d150d0 100644
--- a/apps/web/src/components/forms/forgot-password.tsx
+++ b/apps/web/src/components/forms/forgot-password.tsx
@@ -1,27 +1,16 @@
 'use client';
 
-import { useEffect } from 'react';
-
-import { useRouter, useSearchParams } from 'next/navigation';
+import { useRouter } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
 import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
-import { ErrorCode, isErrorCode } from '@documenso/lib/next-auth/error-codes';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
-import { useToast } from '@documenso/ui/primitives/use-toast';
-
-const ERROR_MESSAGES = {
-  [ErrorCode.CREDENTIALS_NOT_FOUND]: 'No account found with that email address.',
-  [ErrorCode.INCORRECT_EMAIL_PASSWORD]: 'No account found with that email address.',
-  [ErrorCode.USER_MISSING_PASSWORD]:
-    'This account appears to be using a social login method, please sign in using that method',
-};
 
 export const ZForgotPasswordFormSchema = z.object({
   email: z.string().email().min(1),
@@ -34,11 +23,8 @@ export type ForgotPasswordFormProps = {
 };
 
 export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
-  const searchParams = useSearchParams();
   const router = useRouter();
 
-  const { toast } = useToast();
-
   const {
     register,
     handleSubmit,
@@ -50,27 +36,6 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
     resolver: zodResolver(ZForgotPasswordFormSchema),
   });
 
-  const errorCode = searchParams?.get('error');
-
-  useEffect(() => {
-    let timeout: NodeJS.Timeout | null = null;
-
-    if (isErrorCode(errorCode)) {
-      timeout = setTimeout(() => {
-        toast({
-          variant: 'destructive',
-          description: ERROR_MESSAGES[errorCode] ?? 'An unknown error occurred',
-        });
-      }, 0);
-    }
-
-    return () => {
-      if (timeout) {
-        clearTimeout(timeout);
-      }
-    };
-  }, [errorCode, toast]);
-
   const onFormSubmit = ({ email }: TForgotPasswordFormSchema) => {
     // check if the email is available
     // if not, throw an error
diff --git a/apps/web/src/components/forms/reset-password.tsx b/apps/web/src/components/forms/reset-password.tsx
index db8631571..c07b45d2b 100644
--- a/apps/web/src/components/forms/reset-password.tsx
+++ b/apps/web/src/components/forms/reset-password.tsx
@@ -1,27 +1,16 @@
 'use client';
 
-import { useEffect } from 'react';
-
-import { useRouter, useSearchParams } from 'next/navigation';
+import { useRouter } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
 import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
-import { ErrorCode, isErrorCode } from '@documenso/lib/next-auth/error-codes';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
-import { useToast } from '@documenso/ui/primitives/use-toast';
-
-const ERROR_MESSAGES = {
-  [ErrorCode.CREDENTIALS_NOT_FOUND]: 'No account found with that email address.',
-  [ErrorCode.INCORRECT_EMAIL_PASSWORD]: 'No account found with that email address.',
-  [ErrorCode.USER_MISSING_PASSWORD]:
-    'This account appears to be using a social login method, please sign in using that method',
-};
 
 export const ZResetPasswordFormSchema = z
   .object({
@@ -40,11 +29,8 @@ export type ResetPasswordFormProps = {
 };
 
 export const ResetPasswordForm = ({ className }: ResetPasswordFormProps) => {
-  const searchParams = useSearchParams();
   const router = useRouter();
 
-  const { toast } = useToast();
-
   const {
     register,
     handleSubmit,
@@ -57,27 +43,6 @@ export const ResetPasswordForm = ({ className }: ResetPasswordFormProps) => {
     resolver: zodResolver(ZResetPasswordFormSchema),
   });
 
-  const errorCode = searchParams?.get('error');
-
-  useEffect(() => {
-    let timeout: NodeJS.Timeout | null = null;
-
-    if (isErrorCode(errorCode)) {
-      timeout = setTimeout(() => {
-        toast({
-          variant: 'destructive',
-          description: ERROR_MESSAGES[errorCode] ?? 'An unknown error occurred',
-        });
-      }, 0);
-    }
-
-    return () => {
-      if (timeout) {
-        clearTimeout(timeout);
-      }
-    };
-  }, [errorCode, toast]);
-
   const onFormSubmit = ({ password, repeatedPassword }: TResetPasswordFormSchema) => {
     console.log(password, repeatedPassword);
 
@@ -111,7 +76,7 @@ export const ResetPasswordForm = ({ className }: ResetPasswordFormProps) => {
 
       <div>
         <Label htmlFor="repeatedPassword" className="flex justify-between text-slate-500">
-          <span>Confirm Password</span>
+          <span>Repeat Password</span>
         </Label>
 
         <Input

From b84f0548d283fdeb42e9515d1340564e7db4bfd1 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 11:15:29 +0000
Subject: [PATCH 61/83] feat: create a password reset token

---
 a.md                                          | 65 +++++++++++++++++++
 .../src/components/forms/forgot-password.tsx  | 25 ++++++-
 .../lib/server-only/user/forgot-password.ts   | 52 +++++++++++++++
 packages/trpc/server/profile-router/router.ts | 27 +++++++-
 packages/trpc/server/profile-router/schema.ts |  8 ++-
 5 files changed, 171 insertions(+), 6 deletions(-)
 create mode 100644 a.md
 create mode 100644 packages/lib/server-only/user/forgot-password.ts

diff --git a/a.md b/a.md
new file mode 100644
index 000000000..71580a3ef
--- /dev/null
+++ b/a.md
@@ -0,0 +1,65 @@
+// import { NextApiRequest, NextApiResponse } from 'next';
+
+// import crypto from 'crypto';
+
+// import { sendResetPassword } from '@documenso/lib/mail';
+// import { defaultHandler, defaultResponder } from '@documenso/lib/server';
+// import prisma from '@documenso/prisma';
+
+// async function postHandler(req: NextApiRequest, res: NextApiResponse) {
+// const { email } = req.body;
+// const cleanEmail = email.toLowerCase();
+
+// if (!cleanEmail || !/.+@.+/.test(cleanEmail)) {
+// res.status(400).json({ message: 'Invalid email' });
+// return;
+// }
+
+// const user = await prisma.user.findFirst({
+// where: {
+// email: cleanEmail,
+// },
+// });
+
+// if (!user) {
+// return res.status(200).json({ message: 'A password reset email has been sent.' });
+// }
+
+// const existingToken = await prisma.passwordResetToken.findFirst({
+// where: {
+// userId: user.id,
+// createdAt: {
+// gte: new Date(Date.now() - 1000 _ 60 _ 60),
+// },
+// },
+// });
+
+// if (existingToken) {
+// return res.status(200).json({ message: 'A password reset email has been sent.' });
+// }
+
+// const token = crypto.randomBytes(64).toString('hex');
+// const expiry = new Date();
+// expiry.setHours(expiry.getHours() + 24); // Set expiry to one hour from now
+
+// let passwordResetToken;
+// try {
+// passwordResetToken = await prisma.passwordResetToken.create({
+// data: {
+// token,
+// expiry,
+// userId: user.id,
+// },
+// });
+// } catch (error) {
+// return res.status(500).json({ message: 'Something went wrong' });
+// }
+
+// await sendResetPassword(user, passwordResetToken.token);
+
+// return res.status(200).json({ message: 'A password reset email has been sent.' });
+// }
+
+// export default defaultHandler({
+// POST: Promise.resolve({ default: defaultResponder(postHandler) }),
+// });
diff --git a/apps/web/src/components/forms/forgot-password.tsx b/apps/web/src/components/forms/forgot-password.tsx
index b97d150d0..852ff0301 100644
--- a/apps/web/src/components/forms/forgot-password.tsx
+++ b/apps/web/src/components/forms/forgot-password.tsx
@@ -7,10 +7,12 @@ import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
+import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
+import { useToast } from '@documenso/ui/primitives/use-toast';
 
 export const ZForgotPasswordFormSchema = z.object({
   email: z.string().email().min(1),
@@ -24,10 +26,12 @@ export type ForgotPasswordFormProps = {
 
 export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
   const router = useRouter();
+  const { toast } = useToast();
 
   const {
     register,
     handleSubmit,
+    reset,
     formState: { errors, isSubmitting },
   } = useForm<TForgotPasswordFormSchema>({
     values: {
@@ -36,12 +40,29 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
     resolver: zodResolver(ZForgotPasswordFormSchema),
   });
 
-  const onFormSubmit = ({ email }: TForgotPasswordFormSchema) => {
+  const { mutateAsync: forgotPassword } = trpc.profile.forgotPassword.useMutation();
+
+  const onFormSubmit = async ({ email }: TForgotPasswordFormSchema) => {
     // check if the email is available
     // if not, throw an error
     // if the email is available, create a password reset token and send an email
 
-    console.log(email);
+    await forgotPassword({
+      email,
+    });
+
+    reset();
+
+    toast({
+      title: 'Password updated',
+      description: 'Your password has been updated successfully.',
+      duration: 5000,
+    });
+
+    await new Promise((resolve) => {
+      setTimeout(resolve, 2000);
+    });
+
     router.push('/check-email');
   };
 
diff --git a/packages/lib/server-only/user/forgot-password.ts b/packages/lib/server-only/user/forgot-password.ts
new file mode 100644
index 000000000..8cbb13b82
--- /dev/null
+++ b/packages/lib/server-only/user/forgot-password.ts
@@ -0,0 +1,52 @@
+import crypto from 'crypto';
+
+import { prisma } from '@documenso/prisma';
+import { TForgotPasswordFormSchema } from '@documenso/trpc/server/profile-router/schema';
+
+export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
+  const user = await prisma.user.findFirstOrThrow({
+    where: {
+      email: email.toLowerCase(),
+    },
+  });
+
+  if (!user) {
+    throw new Error('A password reset email has been sent.');
+  }
+
+  const existingToken = await prisma.passwordResetToken.findFirst({
+    where: {
+      userId: user.id,
+      createdAt: {
+        gte: new Date(Date.now() - 1000 * 60 * 60),
+      },
+    },
+  });
+
+  if (existingToken) {
+    throw new Error('A password reset email has been sent.');
+  }
+
+  const token = crypto.randomBytes(64).toString('hex');
+  const expiry = new Date();
+  expiry.setHours(expiry.getHours() + 24); // Set expiry to one hour from now
+
+  let passwordResetToken;
+
+  try {
+    passwordResetToken = await prisma.passwordResetToken.create({
+      data: {
+        token,
+        expiry,
+        userId: user.id,
+      },
+    });
+  } catch (error) {
+    throw new Error('Something went wrong');
+  }
+
+  console.log('Password reset token: ', passwordResetToken);
+  // send an email to user with password token
+
+  return passwordResetToken;
+};
diff --git a/packages/trpc/server/profile-router/router.ts b/packages/trpc/server/profile-router/router.ts
index 1ca8a0cf2..d5f60658f 100644
--- a/packages/trpc/server/profile-router/router.ts
+++ b/packages/trpc/server/profile-router/router.ts
@@ -1,10 +1,15 @@
 import { TRPCError } from '@trpc/server';
 
+import { forgotPassword } from '@documenso/lib/server-only/user/forgot-password';
 import { updatePassword } from '@documenso/lib/server-only/user/update-password';
 import { updateProfile } from '@documenso/lib/server-only/user/update-profile';
 
-import { authenticatedProcedure, router } from '../trpc';
-import { ZUpdatePasswordMutationSchema, ZUpdateProfileMutationSchema } from './schema';
+import { authenticatedProcedure, procedure, router } from '../trpc';
+import {
+  ZForgotPasswordFormSchema,
+  ZUpdatePasswordMutationSchema,
+  ZUpdateProfileMutationSchema,
+} from './schema';
 
 export const profileRouter = router({
   updateProfile: authenticatedProcedure
@@ -53,4 +58,22 @@ export const profileRouter = router({
         });
       }
     }),
+
+  forgotPassword: procedure.input(ZForgotPasswordFormSchema).mutation(async ({ input }) => {
+    try {
+      const { email } = input;
+
+      return await forgotPassword({
+        email,
+      });
+    } catch (err) {
+      console.error(err);
+
+      throw new TRPCError({
+        code: 'BAD_REQUEST',
+        message:
+          'We were unable to update your profile. Please review the information you provided and try again.',
+      });
+    }
+  }),
 });
diff --git a/packages/trpc/server/profile-router/schema.ts b/packages/trpc/server/profile-router/schema.ts
index 0533d40e5..65a296bce 100644
--- a/packages/trpc/server/profile-router/schema.ts
+++ b/packages/trpc/server/profile-router/schema.ts
@@ -5,10 +5,14 @@ export const ZUpdateProfileMutationSchema = z.object({
   signature: z.string(),
 });
 
-export type TUpdateProfileMutationSchema = z.infer<typeof ZUpdateProfileMutationSchema>;
-
 export const ZUpdatePasswordMutationSchema = z.object({
   password: z.string().min(6),
 });
 
+export const ZForgotPasswordFormSchema = z.object({
+  email: z.string().email().min(1),
+});
+
+export type TUpdateProfileMutationSchema = z.infer<typeof ZUpdateProfileMutationSchema>;
 export type TUpdatePasswordMutationSchema = z.infer<typeof ZUpdatePasswordMutationSchema>;
+export type TForgotPasswordFormSchema = z.infer<typeof ZForgotPasswordFormSchema>;

From 7f641e3e73598b12ee29fc7fba3c912ca3f0fa1d Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 11:36:28 +0000
Subject: [PATCH 62/83] feat: add forgot password template

---
 packages/email/package.json                   |  5 +-
 .../template-forgot-password.tsx              | 54 ++++++++++++++
 packages/email/templates/forgot-password.tsx  | 74 +++++++++++++++++++
 3 files changed, 131 insertions(+), 2 deletions(-)
 create mode 100644 packages/email/template-components/template-forgot-password.tsx
 create mode 100644 packages/email/templates/forgot-password.tsx

diff --git a/packages/email/package.json b/packages/email/package.json
index c1751dce6..20e214fee 100644
--- a/packages/email/package.json
+++ b/packages/email/package.json
@@ -17,11 +17,12 @@
   },
   "dependencies": {
     "@react-email/components": "^0.0.7",
-    "nodemailer": "^6.9.3"
+    "nodemailer": "^6.9.3",
+    "react-email": "^1.9.4"
   },
   "devDependencies": {
-    "@documenso/tsconfig": "*",
     "@documenso/tailwind-config": "*",
+    "@documenso/tsconfig": "*",
     "@types/nodemailer": "^6.4.8",
     "tsup": "^7.1.0"
   }
diff --git a/packages/email/template-components/template-forgot-password.tsx b/packages/email/template-components/template-forgot-password.tsx
new file mode 100644
index 000000000..45560a026
--- /dev/null
+++ b/packages/email/template-components/template-forgot-password.tsx
@@ -0,0 +1,54 @@
+import { Button, Img, Section, Tailwind, Text } from '@react-email/components';
+
+import * as config from '@documenso/tailwind-config';
+
+export type TemplateForgotPasswordProps = {
+  resetPasswordLink: string;
+  assetBaseUrl: string;
+};
+
+export const TemplateForgotPassword = ({
+  resetPasswordLink,
+  assetBaseUrl,
+}: TemplateForgotPasswordProps) => {
+  const getAssetUrl = (path: string) => {
+    return new URL(path, assetBaseUrl).toString();
+  };
+
+  return (
+    <Tailwind
+      config={{
+        theme: {
+          extend: {
+            colors: config.theme.extend.colors,
+          },
+        },
+      }}
+    >
+      <Section className="mt-4 flex-row items-center justify-center">
+        <div className="flex items-center justify-center p-4">
+          <Img className="h-42" src={getAssetUrl('/static/document.png')} alt="Documenso" />
+        </div>
+
+        <Text className="text-primary mx-auto mb-0 max-w-[80%] text-center text-lg font-semibold">
+          Forgot your password?
+        </Text>
+
+        <Text className="my-1 text-center text-base text-slate-400">
+          That's okay, it happens! Click the button below to reset your password.
+        </Text>
+
+        <Section className="mb-6 mt-8 text-center">
+          <Button
+            className="bg-documenso-500 inline-flex items-center justify-center rounded-lg px-6 py-3 text-center text-sm font-medium text-black no-underline"
+            href={resetPasswordLink}
+          >
+            Reset Password
+          </Button>
+        </Section>
+      </Section>
+    </Tailwind>
+  );
+};
+
+export default TemplateForgotPassword;
diff --git a/packages/email/templates/forgot-password.tsx b/packages/email/templates/forgot-password.tsx
new file mode 100644
index 000000000..7043a88f6
--- /dev/null
+++ b/packages/email/templates/forgot-password.tsx
@@ -0,0 +1,74 @@
+import {
+  Body,
+  Container,
+  Head,
+  Html,
+  Img,
+  Preview,
+  Section,
+  Tailwind,
+} from '@react-email/components';
+
+import config from '@documenso/tailwind-config';
+
+import TemplateFooter from '../template-components/template-footer';
+import {
+  TemplateForgotPassword,
+  TemplateForgotPasswordProps,
+} from '../template-components/template-forgot-password';
+
+export type DocumentForgotPasswordTemplateProps = Partial<TemplateForgotPasswordProps>;
+
+export const DocumentForgotPasswordTemplate = ({
+  resetPasswordLink = 'https://documenso.com',
+  assetBaseUrl = 'http://localhost:3002',
+}: DocumentForgotPasswordTemplateProps) => {
+  const previewText = `Completed Document`;
+
+  const getAssetUrl = (path: string) => {
+    return new URL(path, assetBaseUrl).toString();
+  };
+
+  return (
+    <Html>
+      <Head />
+      <Preview>{previewText}</Preview>
+      <Tailwind
+        config={{
+          theme: {
+            extend: {
+              colors: config.theme.extend.colors,
+            },
+          },
+        }}
+      >
+        <Body className="mx-auto my-auto bg-white font-sans">
+          <Section>
+            <Container className="mx-auto mb-2 mt-8 max-w-xl rounded-lg border border-solid border-slate-200 p-4 backdrop-blur-sm">
+              <Section>
+                <Img
+                  src={getAssetUrl('/static/logo.png')}
+                  alt="Documenso Logo"
+                  className="mb-4 h-6"
+                />
+
+                <TemplateForgotPassword
+                  resetPasswordLink={resetPasswordLink}
+                  assetBaseUrl={assetBaseUrl}
+                />
+              </Section>
+            </Container>
+
+            <div className="mx-auto mt-12 max-w-xl" />
+
+            <Container className="mx-auto max-w-xl">
+              <TemplateFooter />
+            </Container>
+          </Section>
+        </Body>
+      </Tailwind>
+    </Html>
+  );
+};
+
+export default DocumentForgotPasswordTemplate;

From b331e3c7808fc99cca01867aae08c830a59d29aa Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 11:49:37 +0000
Subject: [PATCH 63/83] feat: add reset password email template

---
 package-lock.json                             | 1354 ++++++++++++++++-
 .../template-reset-password.tsx               |   43 +
 packages/email/templates/reset-password.tsx   |  103 ++
 3 files changed, 1474 insertions(+), 26 deletions(-)
 create mode 100644 packages/email/template-components/template-reset-password.tsx
 create mode 100644 packages/email/templates/reset-password.tsx

diff --git a/package-lock.json b/package-lock.json
index 348a046de..d7eecf1a1 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -905,7 +905,6 @@
       "version": "7.12.11",
       "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.12.11.tgz",
       "integrity": "sha512-Zt1yodBx1UcyiePMSkWnU4hPqhwq7hGi2nFL1LeA3EUl+q2LQx16MISgJ0+z7dnmgvP9QtIleuETGOiOH1RcIw==",
-      "dev": true,
       "dependencies": {
         "@babel/highlight": "^7.10.4"
       }
@@ -2589,6 +2588,145 @@
         "node": ">=12"
       }
     },
+    "node_modules/@manypkg/find-root": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/@manypkg/find-root/-/find-root-2.1.0.tgz",
+      "integrity": "sha512-NEYRVlZCJYhRTqQURhv+WBpDcvmsp/M423Wcdvggv8lYJYD4GtqnTMLrQaTjA10fYt/PIc3tSdwV+wxJnWqPfQ==",
+      "dependencies": {
+        "@manypkg/tools": "^1.0.0",
+        "@types/node": "^12.7.1",
+        "find-up": "^4.1.0",
+        "fs-extra": "^8.1.0"
+      },
+      "engines": {
+        "node": ">=14.18.0"
+      }
+    },
+    "node_modules/@manypkg/find-root/node_modules/@types/node": {
+      "version": "12.20.55",
+      "resolved": "https://registry.npmjs.org/@types/node/-/node-12.20.55.tgz",
+      "integrity": "sha512-J8xLz7q2OFulZ2cyGTLE1TbbZcjpno7FaN6zdJNrgAdrJ+DZzh/uFR6YrTb4C+nXakvud8Q4+rbhoIWlYQbUFQ=="
+    },
+    "node_modules/@manypkg/find-root/node_modules/find-up": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/find-up/-/find-up-4.1.0.tgz",
+      "integrity": "sha512-PpOwAdQ/YlXQ2vj8a3h8IipDuYRi3wceVQQGYWxNINccq40Anw7BlsEXCMbt1Zt+OLA6Fq9suIpIWD0OsnISlw==",
+      "dependencies": {
+        "locate-path": "^5.0.0",
+        "path-exists": "^4.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/@manypkg/find-root/node_modules/fs-extra": {
+      "version": "8.1.0",
+      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-8.1.0.tgz",
+      "integrity": "sha512-yhlQgA6mnOJUKOsRUFsgJdQCvkKhcz8tlZG5HBQfReYZy46OwLcY+Zia0mtdHsOo9y/hP+CxMN0TU9QxoOtG4g==",
+      "dependencies": {
+        "graceful-fs": "^4.2.0",
+        "jsonfile": "^4.0.0",
+        "universalify": "^0.1.0"
+      },
+      "engines": {
+        "node": ">=6 <7 || >=8"
+      }
+    },
+    "node_modules/@manypkg/find-root/node_modules/jsonfile": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/jsonfile/-/jsonfile-4.0.0.tgz",
+      "integrity": "sha512-m6F1R3z8jjlf2imQHS2Qez5sjKWQzbuuhuJ/FKYFRZvPE3PuHcSMVZzfsLhGVOkfd20obL5SWEBew5ShlquNxg==",
+      "optionalDependencies": {
+        "graceful-fs": "^4.1.6"
+      }
+    },
+    "node_modules/@manypkg/find-root/node_modules/locate-path": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/locate-path/-/locate-path-5.0.0.tgz",
+      "integrity": "sha512-t7hw9pI+WvuwNJXwk5zVHpyhIqzg2qTlklJOf0mVxGSbe3Fp2VieZcduNYjaLDoy6p9uGpQEGWG87WpMKlNq8g==",
+      "dependencies": {
+        "p-locate": "^4.1.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/@manypkg/find-root/node_modules/p-limit": {
+      "version": "2.3.0",
+      "resolved": "https://registry.npmjs.org/p-limit/-/p-limit-2.3.0.tgz",
+      "integrity": "sha512-//88mFWSJx8lxCzwdAABTJL2MyWB12+eIY7MDL2SqLmAkeKU9qxRvWuSyTjm3FUmpBEMuFfckAIqEaVGUDxb6w==",
+      "dependencies": {
+        "p-try": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/@manypkg/find-root/node_modules/p-locate": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/p-locate/-/p-locate-4.1.0.tgz",
+      "integrity": "sha512-R79ZZ/0wAxKGu3oYMlz8jy/kbhsNrS7SKZ7PxEHBgJ5+F2mtFW2fK2cOtBh1cHYkQsbzFV7I+EoRKe6Yt0oK7A==",
+      "dependencies": {
+        "p-limit": "^2.2.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/@manypkg/find-root/node_modules/universalify": {
+      "version": "0.1.2",
+      "resolved": "https://registry.npmjs.org/universalify/-/universalify-0.1.2.tgz",
+      "integrity": "sha512-rBJeI5CXAlmy1pV+617WB9J63U6XcazHHF2f2dbJix4XzpUF0RS3Zbj0FGIOCAva5P/d/GBOYaACQ1w+0azUkg==",
+      "engines": {
+        "node": ">= 4.0.0"
+      }
+    },
+    "node_modules/@manypkg/tools": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/@manypkg/tools/-/tools-1.1.0.tgz",
+      "integrity": "sha512-SkAyKAByB9l93Slyg8AUHGuM2kjvWioUTCckT/03J09jYnfEzMO/wSXmEhnKGYs6qx9De8TH4yJCl0Y9lRgnyQ==",
+      "dependencies": {
+        "fs-extra": "^8.1.0",
+        "globby": "^11.0.0",
+        "jju": "^1.4.0",
+        "read-yaml-file": "^1.1.0"
+      },
+      "engines": {
+        "node": ">=14.18.0"
+      }
+    },
+    "node_modules/@manypkg/tools/node_modules/fs-extra": {
+      "version": "8.1.0",
+      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-8.1.0.tgz",
+      "integrity": "sha512-yhlQgA6mnOJUKOsRUFsgJdQCvkKhcz8tlZG5HBQfReYZy46OwLcY+Zia0mtdHsOo9y/hP+CxMN0TU9QxoOtG4g==",
+      "dependencies": {
+        "graceful-fs": "^4.2.0",
+        "jsonfile": "^4.0.0",
+        "universalify": "^0.1.0"
+      },
+      "engines": {
+        "node": ">=6 <7 || >=8"
+      }
+    },
+    "node_modules/@manypkg/tools/node_modules/jsonfile": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/jsonfile/-/jsonfile-4.0.0.tgz",
+      "integrity": "sha512-m6F1R3z8jjlf2imQHS2Qez5sjKWQzbuuhuJ/FKYFRZvPE3PuHcSMVZzfsLhGVOkfd20obL5SWEBew5ShlquNxg==",
+      "optionalDependencies": {
+        "graceful-fs": "^4.1.6"
+      }
+    },
+    "node_modules/@manypkg/tools/node_modules/universalify": {
+      "version": "0.1.2",
+      "resolved": "https://registry.npmjs.org/universalify/-/universalify-0.1.2.tgz",
+      "integrity": "sha512-rBJeI5CXAlmy1pV+617WB9J63U6XcazHHF2f2dbJix4XzpUF0RS3Zbj0FGIOCAva5P/d/GBOYaACQ1w+0azUkg==",
+      "engines": {
+        "node": ">= 4.0.0"
+      }
+    },
     "node_modules/@mapbox/node-pre-gyp": {
       "version": "1.0.11",
       "resolved": "https://registry.npmjs.org/@mapbox/node-pre-gyp/-/node-pre-gyp-1.0.11.tgz",
@@ -2859,6 +2997,163 @@
         "node": ">= 8"
       }
     },
+    "node_modules/@octokit/auth-token": {
+      "version": "3.0.4",
+      "resolved": "https://registry.npmjs.org/@octokit/auth-token/-/auth-token-3.0.4.tgz",
+      "integrity": "sha512-TWFX7cZF2LXoCvdmJWY7XVPi74aSY0+FfBZNSXEXFkMpjcqsQwDSYVv5FhRFaI0V1ECnwbz4j59T/G+rXNWaIQ==",
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/@octokit/core": {
+      "version": "4.2.4",
+      "resolved": "https://registry.npmjs.org/@octokit/core/-/core-4.2.4.tgz",
+      "integrity": "sha512-rYKilwgzQ7/imScn3M9/pFfUf4I1AZEH3KhyJmtPdE2zfaXAn2mFfUy4FbKewzc2We5y/LlKLj36fWJLKC2SIQ==",
+      "dependencies": {
+        "@octokit/auth-token": "^3.0.0",
+        "@octokit/graphql": "^5.0.0",
+        "@octokit/request": "^6.0.0",
+        "@octokit/request-error": "^3.0.0",
+        "@octokit/types": "^9.0.0",
+        "before-after-hook": "^2.2.0",
+        "universal-user-agent": "^6.0.0"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/@octokit/endpoint": {
+      "version": "7.0.6",
+      "resolved": "https://registry.npmjs.org/@octokit/endpoint/-/endpoint-7.0.6.tgz",
+      "integrity": "sha512-5L4fseVRUsDFGR00tMWD/Trdeeihn999rTMGRMC1G/Ldi1uWlWJzI98H4Iak5DB/RVvQuyMYKqSK/R6mbSOQyg==",
+      "dependencies": {
+        "@octokit/types": "^9.0.0",
+        "is-plain-object": "^5.0.0",
+        "universal-user-agent": "^6.0.0"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/@octokit/graphql": {
+      "version": "5.0.6",
+      "resolved": "https://registry.npmjs.org/@octokit/graphql/-/graphql-5.0.6.tgz",
+      "integrity": "sha512-Fxyxdy/JH0MnIB5h+UQ3yCoh1FG4kWXfFKkpWqjZHw/p+Kc8Y44Hu/kCgNBT6nU1shNumEchmW/sUO1JuQnPcw==",
+      "dependencies": {
+        "@octokit/request": "^6.0.0",
+        "@octokit/types": "^9.0.0",
+        "universal-user-agent": "^6.0.0"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/@octokit/openapi-types": {
+      "version": "18.0.0",
+      "resolved": "https://registry.npmjs.org/@octokit/openapi-types/-/openapi-types-18.0.0.tgz",
+      "integrity": "sha512-V8GImKs3TeQRxRtXFpG2wl19V7444NIOTDF24AWuIbmNaNYOQMWRbjcGDXV5B+0n887fgDcuMNOmlul+k+oJtw=="
+    },
+    "node_modules/@octokit/plugin-paginate-rest": {
+      "version": "6.1.2",
+      "resolved": "https://registry.npmjs.org/@octokit/plugin-paginate-rest/-/plugin-paginate-rest-6.1.2.tgz",
+      "integrity": "sha512-qhrmtQeHU/IivxucOV1bbI/xZyC/iOBhclokv7Sut5vnejAIAEXVcGQeRpQlU39E0WwK9lNvJHphHri/DB6lbQ==",
+      "dependencies": {
+        "@octokit/tsconfig": "^1.0.2",
+        "@octokit/types": "^9.2.3"
+      },
+      "engines": {
+        "node": ">= 14"
+      },
+      "peerDependencies": {
+        "@octokit/core": ">=4"
+      }
+    },
+    "node_modules/@octokit/plugin-request-log": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/@octokit/plugin-request-log/-/plugin-request-log-1.0.4.tgz",
+      "integrity": "sha512-mLUsMkgP7K/cnFEw07kWqXGF5LKrOkD+lhCrKvPHXWDywAwuDUeDwWBpc69XK3pNX0uKiVt8g5z96PJ6z9xCFA==",
+      "peerDependencies": {
+        "@octokit/core": ">=3"
+      }
+    },
+    "node_modules/@octokit/plugin-rest-endpoint-methods": {
+      "version": "7.2.3",
+      "resolved": "https://registry.npmjs.org/@octokit/plugin-rest-endpoint-methods/-/plugin-rest-endpoint-methods-7.2.3.tgz",
+      "integrity": "sha512-I5Gml6kTAkzVlN7KCtjOM+Ruwe/rQppp0QU372K1GP7kNOYEKe8Xn5BW4sE62JAHdwpq95OQK/qGNyKQMUzVgA==",
+      "dependencies": {
+        "@octokit/types": "^10.0.0"
+      },
+      "engines": {
+        "node": ">= 14"
+      },
+      "peerDependencies": {
+        "@octokit/core": ">=3"
+      }
+    },
+    "node_modules/@octokit/plugin-rest-endpoint-methods/node_modules/@octokit/types": {
+      "version": "10.0.0",
+      "resolved": "https://registry.npmjs.org/@octokit/types/-/types-10.0.0.tgz",
+      "integrity": "sha512-Vm8IddVmhCgU1fxC1eyinpwqzXPEYu0NrYzD3YZjlGjyftdLBTeqNblRC0jmJmgxbJIsQlyogVeGnrNaaMVzIg==",
+      "dependencies": {
+        "@octokit/openapi-types": "^18.0.0"
+      }
+    },
+    "node_modules/@octokit/request": {
+      "version": "6.2.8",
+      "resolved": "https://registry.npmjs.org/@octokit/request/-/request-6.2.8.tgz",
+      "integrity": "sha512-ow4+pkVQ+6XVVsekSYBzJC0VTVvh/FCTUUgTsboGq+DTeWdyIFV8WSCdo0RIxk6wSkBTHqIK1mYuY7nOBXOchw==",
+      "dependencies": {
+        "@octokit/endpoint": "^7.0.0",
+        "@octokit/request-error": "^3.0.0",
+        "@octokit/types": "^9.0.0",
+        "is-plain-object": "^5.0.0",
+        "node-fetch": "^2.6.7",
+        "universal-user-agent": "^6.0.0"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/@octokit/request-error": {
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/@octokit/request-error/-/request-error-3.0.3.tgz",
+      "integrity": "sha512-crqw3V5Iy2uOU5Np+8M/YexTlT8zxCfI+qu+LxUB7SZpje4Qmx3mub5DfEKSO8Ylyk0aogi6TYdf6kxzh2BguQ==",
+      "dependencies": {
+        "@octokit/types": "^9.0.0",
+        "deprecation": "^2.0.0",
+        "once": "^1.4.0"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/@octokit/rest": {
+      "version": "19.0.7",
+      "resolved": "https://registry.npmjs.org/@octokit/rest/-/rest-19.0.7.tgz",
+      "integrity": "sha512-HRtSfjrWmWVNp2uAkEpQnuGMJsu/+dBr47dRc5QVgsCbnIc1+GFEaoKBWkYG+zjrsHpSqcAElMio+n10c0b5JA==",
+      "dependencies": {
+        "@octokit/core": "^4.1.0",
+        "@octokit/plugin-paginate-rest": "^6.0.0",
+        "@octokit/plugin-request-log": "^1.0.4",
+        "@octokit/plugin-rest-endpoint-methods": "^7.0.0"
+      },
+      "engines": {
+        "node": ">= 14"
+      }
+    },
+    "node_modules/@octokit/tsconfig": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/@octokit/tsconfig/-/tsconfig-1.0.2.tgz",
+      "integrity": "sha512-I0vDR0rdtP8p2lGMzvsJzbhdOWy405HcGovrspJ8RRibHnyRgggUSNO5AIox5LmqiwmatHKYsvj6VGFHkqS7lA=="
+    },
+    "node_modules/@octokit/types": {
+      "version": "9.3.2",
+      "resolved": "https://registry.npmjs.org/@octokit/types/-/types-9.3.2.tgz",
+      "integrity": "sha512-D4iHGTdAnEEVsB8fl95m1hiz7D5YiRdQ9b/OEb3BYRVwbLsGHcRVPz+u+BgRLNk0Q0/4iZCBqDN96j2XNxfXrA==",
+      "dependencies": {
+        "@octokit/openapi-types": "^18.0.0"
+      }
+    },
     "node_modules/@one-ini/wasm": {
       "version": "0.1.1",
       "resolved": "https://registry.npmjs.org/@one-ini/wasm/-/wasm-0.1.1.tgz",
@@ -6023,8 +6318,7 @@
     "node_modules/@types/normalize-package-data": {
       "version": "2.4.1",
       "resolved": "https://registry.npmjs.org/@types/normalize-package-data/-/normalize-package-data-2.4.1.tgz",
-      "integrity": "sha512-Gj7cI7z+98M282Tqmp2K5EIsoouUEzbBJhQQzDE3jSIRk6r9gsz0oUokqIUR4u1R3dMHo0pDHM7sNOHyhulypw==",
-      "dev": true
+      "integrity": "sha512-Gj7cI7z+98M282Tqmp2K5EIsoouUEzbBJhQQzDE3jSIRk6r9gsz0oUokqIUR4u1R3dMHo0pDHM7sNOHyhulypw=="
     },
     "node_modules/@types/parse5": {
       "version": "6.0.3",
@@ -6802,6 +7096,11 @@
         "node": ">= 10.0.0"
       }
     },
+    "node_modules/before-after-hook": {
+      "version": "2.2.3",
+      "resolved": "https://registry.npmjs.org/before-after-hook/-/before-after-hook-2.2.3.tgz",
+      "integrity": "sha512-NzUnlZexiaH/46WDhANlyR2bXRopNg4F/zuSA3OpZnllCUgRaOF2znDioDWrmbNVsuZk6l9pMquQB38cfBZwkQ=="
+    },
     "node_modules/big-integer": {
       "version": "1.6.51",
       "resolved": "https://registry.npmjs.org/big-integer/-/big-integer-1.6.51.tgz",
@@ -6810,6 +7109,18 @@
         "node": ">=0.6"
       }
     },
+    "node_modules/binary": {
+      "version": "0.3.0",
+      "resolved": "https://registry.npmjs.org/binary/-/binary-0.3.0.tgz",
+      "integrity": "sha512-D4H1y5KYwpJgK8wk1Cue5LLPgmwHKYSChkbspQg5JtVuR5ulGckxfR62H3AE9UDkdMC8yyXlqYihuz3Aqg2XZg==",
+      "dependencies": {
+        "buffers": "~0.1.1",
+        "chainsaw": "~0.1.0"
+      },
+      "engines": {
+        "node": "*"
+      }
+    },
     "node_modules/binary-extensions": {
       "version": "2.2.0",
       "resolved": "https://registry.npmjs.org/binary-extensions/-/binary-extensions-2.2.0.tgz",
@@ -6828,6 +7139,11 @@
         "readable-stream": "^3.4.0"
       }
     },
+    "node_modules/bluebird": {
+      "version": "3.4.7",
+      "resolved": "https://registry.npmjs.org/bluebird/-/bluebird-3.4.7.tgz",
+      "integrity": "sha512-iD3898SR7sWVRHbiQv+sHUtHnMvC1o3nW5rAcqnq3uOn07DSAppZYUkIGslDz6gXC7HfunPe7YVBgoEJASPcHA=="
+    },
     "node_modules/bowser": {
       "version": "2.11.0",
       "resolved": "https://registry.npmjs.org/bowser/-/bowser-2.11.0.tgz",
@@ -6923,6 +7239,22 @@
       "resolved": "https://registry.npmjs.org/buffer-from/-/buffer-from-1.1.2.tgz",
       "integrity": "sha512-E+XQCRwSbaaiChtv6k6Dwgc+bx+Bs6vuKJHHl5kox/BaKbhiXzqQOwK4cO22yElGp2OCmjwVhT3HmxgyPGnJfQ=="
     },
+    "node_modules/buffer-indexof-polyfill": {
+      "version": "1.0.2",
+      "resolved": "https://registry.npmjs.org/buffer-indexof-polyfill/-/buffer-indexof-polyfill-1.0.2.tgz",
+      "integrity": "sha512-I7wzHwA3t1/lwXQh+A5PbNvJxgfo5r3xulgpYDB5zckTu/Z9oUK9biouBKQUjEqzaz3HnAT6TYoovmE+GqSf7A==",
+      "engines": {
+        "node": ">=0.10"
+      }
+    },
+    "node_modules/buffers": {
+      "version": "0.1.1",
+      "resolved": "https://registry.npmjs.org/buffers/-/buffers-0.1.1.tgz",
+      "integrity": "sha512-9q/rDEGSb/Qsvv2qvzIzdluL5k7AaJOTrw23z9reQthrbF7is4CtlT0DXyO1oei2DCp4uojjzQ7igaSHp1kAEQ==",
+      "engines": {
+        "node": ">=0.2.0"
+      }
+    },
     "node_modules/bundle-name": {
       "version": "3.0.0",
       "resolved": "https://registry.npmjs.org/bundle-name/-/bundle-name-3.0.0.tgz",
@@ -7095,6 +7427,17 @@
         "url": "https://github.com/sponsors/wooorm"
       }
     },
+    "node_modules/chainsaw": {
+      "version": "0.1.0",
+      "resolved": "https://registry.npmjs.org/chainsaw/-/chainsaw-0.1.0.tgz",
+      "integrity": "sha512-75kWfWt6MEKNC8xYXIdRpDehRYY/tNSgwKaJq+dbbDcxORuVrrQ+SEHoWsniVn9XPYfP4gmdWIeDk/4YNp1rNQ==",
+      "dependencies": {
+        "traverse": ">=0.3.0 <0.4"
+      },
+      "engines": {
+        "node": "*"
+      }
+    },
     "node_modules/chalk": {
       "version": "4.1.2",
       "resolved": "https://registry.npmjs.org/chalk/-/chalk-4.1.2.tgz",
@@ -7211,6 +7554,17 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
+    "node_modules/cli-spinners": {
+      "version": "2.9.1",
+      "resolved": "https://registry.npmjs.org/cli-spinners/-/cli-spinners-2.9.1.tgz",
+      "integrity": "sha512-jHgecW0pxkonBJdrKsqxgRX9AcG+u/5k0Q7WPDfi8AogLAdwxEkyYYNWwZ5GvVFoFx2uiY1eNcSK00fh+1+FyQ==",
+      "engines": {
+        "node": ">=6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
     "node_modules/cli-truncate": {
       "version": "3.1.0",
       "resolved": "https://registry.npmjs.org/cli-truncate/-/cli-truncate-3.1.0.tgz",
@@ -7340,6 +7694,14 @@
         "node": ">=12"
       }
     },
+    "node_modules/clone": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/clone/-/clone-1.0.4.tgz",
+      "integrity": "sha512-JQHZ2QMW6l3aH/j6xCqQThY/9OH4D/9ls34cgkUBiEeocRTU04tHfKPBsUK1PqZCUQM7GiA0IIXJSuXHI64Kbg==",
+      "engines": {
+        "node": ">=0.8"
+      }
+    },
     "node_modules/clsx": {
       "version": "1.2.1",
       "resolved": "https://registry.npmjs.org/clsx/-/clsx-1.2.1.tgz",
@@ -8247,6 +8609,17 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
+    "node_modules/defaults": {
+      "version": "1.0.4",
+      "resolved": "https://registry.npmjs.org/defaults/-/defaults-1.0.4.tgz",
+      "integrity": "sha512-eFuaLoy/Rxalv2kr+lqMlUnrDWV+3j4pljOIJgLIhI058IQfWJ7vXhyEIHu+HtC738klGALYxOKDO0bQP3tg8A==",
+      "dependencies": {
+        "clone": "^1.0.2"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
     "node_modules/define-lazy-prop": {
       "version": "3.0.0",
       "resolved": "https://registry.npmjs.org/define-lazy-prop/-/define-lazy-prop-3.0.0.tgz",
@@ -8302,6 +8675,11 @@
         "node": ">= 0.6"
       }
     },
+    "node_modules/deprecation": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/deprecation/-/deprecation-2.3.1.tgz",
+      "integrity": "sha512-xmHIy4F3scKVwMsQ4WnVaS8bHOx0DmVwRywosKhaILI0ywMDWPtBSku2HNxRvF7jtwDRsoEwYQSfbxj8b7RlJQ=="
+    },
     "node_modules/dequal": {
       "version": "2.0.3",
       "resolved": "https://registry.npmjs.org/dequal/-/dequal-2.0.3.tgz",
@@ -8323,6 +8701,99 @@
       "resolved": "https://registry.npmjs.org/detect-node-es/-/detect-node-es-1.1.0.tgz",
       "integrity": "sha512-ypdmJU/TbBby2Dxibuv7ZLW3Bs1QEmM7nHjEANfohJLvE0XVujisn1qPJcZxg+qDucsr+bP6fLD1rPS3AhJ7EQ=="
     },
+    "node_modules/detect-package-manager": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/detect-package-manager/-/detect-package-manager-2.0.1.tgz",
+      "integrity": "sha512-j/lJHyoLlWi6G1LDdLgvUtz60Zo5GEj+sVYtTVXnYLDPuzgC3llMxonXym9zIwhhUII8vjdw0LXxavpLqTbl1A==",
+      "dependencies": {
+        "execa": "^5.1.1"
+      },
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/detect-package-manager/node_modules/execa": {
+      "version": "5.1.1",
+      "resolved": "https://registry.npmjs.org/execa/-/execa-5.1.1.tgz",
+      "integrity": "sha512-8uSpZZocAZRBAPIEINJj3Lo9HyGitllczc27Eh5YYojjMFMn8yHMDMaUHE2Jqfq05D/wucwI4JGURyXt1vchyg==",
+      "dependencies": {
+        "cross-spawn": "^7.0.3",
+        "get-stream": "^6.0.0",
+        "human-signals": "^2.1.0",
+        "is-stream": "^2.0.0",
+        "merge-stream": "^2.0.0",
+        "npm-run-path": "^4.0.1",
+        "onetime": "^5.1.2",
+        "signal-exit": "^3.0.3",
+        "strip-final-newline": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sindresorhus/execa?sponsor=1"
+      }
+    },
+    "node_modules/detect-package-manager/node_modules/human-signals": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/human-signals/-/human-signals-2.1.0.tgz",
+      "integrity": "sha512-B4FFZ6q/T2jhhksgkbEW3HBvWIfDW85snkQgawt07S7J5QXTk6BkNV+0yAeZrM5QpMAdYlocGoljn0sJ/WQkFw==",
+      "engines": {
+        "node": ">=10.17.0"
+      }
+    },
+    "node_modules/detect-package-manager/node_modules/is-stream": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/is-stream/-/is-stream-2.0.1.tgz",
+      "integrity": "sha512-hFoiJiTl63nn+kstHGBtewWSKnQLpyb155KHheA1l39uvtO9nWIop1p3udqPcUd/xbF1VLMO4n7OI6p7RbngDg==",
+      "engines": {
+        "node": ">=8"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/detect-package-manager/node_modules/mimic-fn": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/mimic-fn/-/mimic-fn-2.1.0.tgz",
+      "integrity": "sha512-OqbOk5oEQeAZ8WXWydlu9HJjz9WVdEIvamMCcXmuqUYjTknH/sqsWvhQ3vgwKFRR1HpjvNBKQ37nbJgYzGqGcg==",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/detect-package-manager/node_modules/npm-run-path": {
+      "version": "4.0.1",
+      "resolved": "https://registry.npmjs.org/npm-run-path/-/npm-run-path-4.0.1.tgz",
+      "integrity": "sha512-S48WzZW777zhNIrn7gxOlISNAqi9ZC/uQFnRdbeIHhZhCA6UqpkOT8T1G7BvfdgP4Er8gF4sUbaS0i7QvIfCWw==",
+      "dependencies": {
+        "path-key": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/detect-package-manager/node_modules/onetime": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/onetime/-/onetime-5.1.2.tgz",
+      "integrity": "sha512-kbpaSSGJTWdAY5KPVeMOKXSrPtr8C8C7wodJbcsd51jRnmD+GZu8Y0VoU6Dm5Z4vWr0Ig/1NKuWRKf7j5aaYSg==",
+      "dependencies": {
+        "mimic-fn": "^2.1.0"
+      },
+      "engines": {
+        "node": ">=6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/detect-package-manager/node_modules/strip-final-newline": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/strip-final-newline/-/strip-final-newline-2.0.0.tgz",
+      "integrity": "sha512-BrpvfNAE3dcvq7ll3xVumzjKjZQ5tI1sEUIKr3Uoks0XUl45St3FlatVqef9prk4jRDzhW6WZg+3bk93y6pLjA==",
+      "engines": {
+        "node": ">=6"
+      }
+    },
     "node_modules/detective": {
       "version": "5.2.1",
       "resolved": "https://registry.npmjs.org/detective/-/detective-5.2.1.tgz",
@@ -8523,6 +8994,46 @@
         "node": ">=12"
       }
     },
+    "node_modules/duplexer2": {
+      "version": "0.1.4",
+      "resolved": "https://registry.npmjs.org/duplexer2/-/duplexer2-0.1.4.tgz",
+      "integrity": "sha512-asLFVfWWtJ90ZyOUHMqk7/S2w2guQKxUI2itj3d92ADHhxUSbCMGi1f1cBcJ7xM1To+pE/Khbwo1yuNbMEPKeA==",
+      "dependencies": {
+        "readable-stream": "^2.0.2"
+      }
+    },
+    "node_modules/duplexer2/node_modules/isarray": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/isarray/-/isarray-1.0.0.tgz",
+      "integrity": "sha512-VLghIWNM6ELQzo7zwmcg0NmTVyWKYjvIeM83yjp0wRDTmUnrM678fQbcKBo6n2CJEF0szoG//ytg+TKla89ALQ=="
+    },
+    "node_modules/duplexer2/node_modules/readable-stream": {
+      "version": "2.3.8",
+      "resolved": "https://registry.npmjs.org/readable-stream/-/readable-stream-2.3.8.tgz",
+      "integrity": "sha512-8p0AUk4XODgIewSi0l8Epjs+EVnWiK7NoDIEGU0HhE7+ZyY8D1IMY7odu5lRrFXGg71L15KG8QrPmum45RTtdA==",
+      "dependencies": {
+        "core-util-is": "~1.0.0",
+        "inherits": "~2.0.3",
+        "isarray": "~1.0.0",
+        "process-nextick-args": "~2.0.0",
+        "safe-buffer": "~5.1.1",
+        "string_decoder": "~1.1.1",
+        "util-deprecate": "~1.0.1"
+      }
+    },
+    "node_modules/duplexer2/node_modules/safe-buffer": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz",
+      "integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g=="
+    },
+    "node_modules/duplexer2/node_modules/string_decoder": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz",
+      "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==",
+      "dependencies": {
+        "safe-buffer": "~5.1.0"
+      }
+    },
     "node_modules/duplexify": {
       "version": "3.7.1",
       "resolved": "https://registry.npmjs.org/duplexify/-/duplexify-3.7.1.tgz",
@@ -8671,7 +9182,6 @@
       "version": "1.3.2",
       "resolved": "https://registry.npmjs.org/error-ex/-/error-ex-1.3.2.tgz",
       "integrity": "sha512-7dFHNmqeFSEt2ZBsCriorKnn3Z2pj+fd9kmI6QoWw4//DL+icEBfc0U7qJCisqrTsKTjw4fNFy2pW9OqStD84g==",
-      "dev": true,
       "dependencies": {
         "is-arrayish": "^0.2.1"
       }
@@ -9762,6 +10272,18 @@
       "resolved": "https://registry.npmjs.org/fast-fifo/-/fast-fifo-1.3.2.tgz",
       "integrity": "sha512-/d9sfos4yxzpwkDkuN7k2SqFKtYNmCTzgfEpz82x34IM9/zc8KGxQoXg1liNC/izpRM/MBdt44Nmx41ZWqk+FQ=="
     },
+    "node_modules/fast-folder-size": {
+      "version": "1.6.1",
+      "resolved": "https://registry.npmjs.org/fast-folder-size/-/fast-folder-size-1.6.1.tgz",
+      "integrity": "sha512-F3tRpfkAzb7TT2JNKaJUglyuRjRa+jelQD94s9OSqkfEeytLmupCqQiD+H2KoIXGtp4pB5m4zNmv5m2Ktcr+LA==",
+      "hasInstallScript": true,
+      "dependencies": {
+        "unzipper": "^0.10.11"
+      },
+      "bin": {
+        "fast-folder-size": "cli.js"
+      }
+    },
     "node_modules/fast-glob": {
       "version": "3.3.1",
       "resolved": "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.1.tgz",
@@ -10097,6 +10619,42 @@
         "node": "^8.16.0 || ^10.6.0 || >=11.0.0"
       }
     },
+    "node_modules/fstream": {
+      "version": "1.0.12",
+      "resolved": "https://registry.npmjs.org/fstream/-/fstream-1.0.12.tgz",
+      "integrity": "sha512-WvJ193OHa0GHPEL+AycEJgxvBEwyfRkN1vhjca23OaPVMCaLCXTd5qAu82AjTcgP1UJmytkOKb63Ypde7raDIg==",
+      "dependencies": {
+        "graceful-fs": "^4.1.2",
+        "inherits": "~2.0.0",
+        "mkdirp": ">=0.5 0",
+        "rimraf": "2"
+      },
+      "engines": {
+        "node": ">=0.6"
+      }
+    },
+    "node_modules/fstream/node_modules/mkdirp": {
+      "version": "0.5.6",
+      "resolved": "https://registry.npmjs.org/mkdirp/-/mkdirp-0.5.6.tgz",
+      "integrity": "sha512-FP+p8RB8OWpF3YZBCrP5gtADmtXApB5AMLn+vdyA+PyxCjrCs00mjyUozssO33cwDeT3wNGdLxJ5M//YqtHAJw==",
+      "dependencies": {
+        "minimist": "^1.2.6"
+      },
+      "bin": {
+        "mkdirp": "bin/cmd.js"
+      }
+    },
+    "node_modules/fstream/node_modules/rimraf": {
+      "version": "2.7.1",
+      "resolved": "https://registry.npmjs.org/rimraf/-/rimraf-2.7.1.tgz",
+      "integrity": "sha512-uWjbaKIK3T1OSVptzX7Nl6PvQ3qAGtKEtVRjRuazjfL3Bx5eI409VZSqgND+4UNnmzLVdPj9FqFJNPqBZFve4w==",
+      "dependencies": {
+        "glob": "^7.1.3"
+      },
+      "bin": {
+        "rimraf": "bin.js"
+      }
+    },
     "node_modules/function-bind": {
       "version": "1.1.1",
       "resolved": "https://registry.npmjs.org/function-bind/-/function-bind-1.1.1.tgz",
@@ -10895,6 +11453,14 @@
         "node": ">=12"
       }
     },
+    "node_modules/interpret": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/interpret/-/interpret-1.4.0.tgz",
+      "integrity": "sha512-agE4QfB2Lkp9uICn7BAqoscw4SZP9kTE2hxiFI3jBPmXJfdqiahTbUuKGsMoN2GtqL9AxhYioAcVvgsb1HvRbA==",
+      "engines": {
+        "node": ">= 0.10"
+      }
+    },
     "node_modules/invariant": {
       "version": "2.2.4",
       "resolved": "https://registry.npmjs.org/invariant/-/invariant-2.2.4.tgz",
@@ -10941,8 +11507,7 @@
     "node_modules/is-arrayish": {
       "version": "0.2.1",
       "resolved": "https://registry.npmjs.org/is-arrayish/-/is-arrayish-0.2.1.tgz",
-      "integrity": "sha512-zz06S8t0ozoDXMG+ube26zeCTNXcKIPJZJi8hBrF4idCLms4CG9QtK7qBl1boi5ODzFpjswb5JPmHCbMpjaYzg==",
-      "dev": true
+      "integrity": "sha512-zz06S8t0ozoDXMG+ube26zeCTNXcKIPJZJi8hBrF4idCLms4CG9QtK7qBl1boi5ODzFpjswb5JPmHCbMpjaYzg=="
     },
     "node_modules/is-bigint": {
       "version": "1.0.4",
@@ -11123,6 +11688,14 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
+    "node_modules/is-interactive": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/is-interactive/-/is-interactive-1.0.0.tgz",
+      "integrity": "sha512-2HvIEKRoqS62guEC+qBjpvRubdX910WCMuJTZ+I9yvqKU2/12eSL549HMwtabb4oupdj2sMP50k+XJfB/8JE6w==",
+      "engines": {
+        "node": ">=8"
+      }
+    },
     "node_modules/is-negative-zero": {
       "version": "2.0.2",
       "resolved": "https://registry.npmjs.org/is-negative-zero/-/is-negative-zero-2.0.2.tgz",
@@ -11184,6 +11757,14 @@
         "url": "https://github.com/sponsors/sindresorhus"
       }
     },
+    "node_modules/is-plain-object": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/is-plain-object/-/is-plain-object-5.0.0.tgz",
+      "integrity": "sha512-VRSzKkbMm5jMDoKLbltAkFQ5Qr7VDiTFGXxYFXXowVj387GeGNOCsOH6Msy00SGZ3Fp84b1Naa1psqgcCIEP5Q==",
+      "engines": {
+        "node": ">=0.10.0"
+      }
+    },
     "node_modules/is-reference": {
       "version": "3.0.1",
       "resolved": "https://registry.npmjs.org/is-reference/-/is-reference-3.0.1.tgz",
@@ -11283,6 +11864,17 @@
         "url": "https://github.com/sponsors/ljharb"
       }
     },
+    "node_modules/is-unicode-supported": {
+      "version": "0.1.0",
+      "resolved": "https://registry.npmjs.org/is-unicode-supported/-/is-unicode-supported-0.1.0.tgz",
+      "integrity": "sha512-knxG2q4UC3u8stRGyAVJCOdxFmv5DZiRcdlIaAQXAbSfJya+OhopNotLQrstBhququ4ZpuKbDc/8S6mgXgPFPw==",
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
     "node_modules/is-weakref": {
       "version": "1.0.2",
       "resolved": "https://registry.npmjs.org/is-weakref/-/is-weakref-1.0.2.tgz",
@@ -11378,6 +11970,11 @@
         "jiti": "bin/jiti.js"
       }
     },
+    "node_modules/jju": {
+      "version": "1.4.0",
+      "resolved": "https://registry.npmjs.org/jju/-/jju-1.4.0.tgz",
+      "integrity": "sha512-8wb9Yw966OSxApiCt0K3yNJL8pnNeIv+OEq2YMidz4FKP6nonSRoOXc80iXY4JaN2FC11B9qsNmDsm+ZOfMROA=="
+    },
     "node_modules/jose": {
       "version": "4.14.4",
       "resolved": "https://registry.npmjs.org/jose/-/jose-4.14.4.tgz",
@@ -11510,8 +12107,7 @@
     "node_modules/json-parse-even-better-errors": {
       "version": "2.3.1",
       "resolved": "https://registry.npmjs.org/json-parse-even-better-errors/-/json-parse-even-better-errors-2.3.1.tgz",
-      "integrity": "sha512-xyFwyhro/JEof6Ghe2iz2NcXoj2sloNsWr/XsERDK/oiPCfaNhl5ONfp+jQdAZRQQ0IJWNzH9zIZF7li91kh2w==",
-      "dev": true
+      "integrity": "sha512-xyFwyhro/JEof6Ghe2iz2NcXoj2sloNsWr/XsERDK/oiPCfaNhl5ONfp+jQdAZRQQ0IJWNzH9zIZF7li91kh2w=="
     },
     "node_modules/json-schema-traverse": {
       "version": "0.4.1",
@@ -11538,7 +12134,6 @@
       "version": "6.1.0",
       "resolved": "https://registry.npmjs.org/jsonfile/-/jsonfile-6.1.0.tgz",
       "integrity": "sha512-5dgndWOriYSm5cnYaJNhalLNDKOqFwyDB/rr1E9ZsGciGvKPs8R2xYGCacuf3z6K1YKDz182fd+fY3cn3pMqXQ==",
-      "dev": true,
       "dependencies": {
         "universalify": "^2.0.0"
       },
@@ -11703,6 +12298,11 @@
         "node": ">=16"
       }
     },
+    "node_modules/listenercount": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/listenercount/-/listenercount-1.0.1.tgz",
+      "integrity": "sha512-3mk/Zag0+IJxeDrxSgaDPy4zZ3w05PRZeJNnlWhzFz5OkX49J4krc+A8X2d2M69vGMBEX0uyl8M+W+8gH+kBqQ=="
+    },
     "node_modules/listr2": {
       "version": "6.6.1",
       "resolved": "https://registry.npmjs.org/listr2/-/listr2-6.6.1.tgz",
@@ -11905,6 +12505,21 @@
       "integrity": "sha512-sReKOYJIJf74dhJONhU4e0/shzi1trVbSWDOhKYE5XV2O+H7Sb2Dihwuc7xWxVl+DgFPyTqIN3zMfT9cq5iWDg==",
       "dev": true
     },
+    "node_modules/log-symbols": {
+      "version": "4.1.0",
+      "resolved": "https://registry.npmjs.org/log-symbols/-/log-symbols-4.1.0.tgz",
+      "integrity": "sha512-8XPvpAA8uyhfteu8pIvQxpJZ7SYYdpUivZpGy6sFsBuKRY/7rQGavedeB8aK+Zkyq6upMFVL/9AW6vOYzfRyLg==",
+      "dependencies": {
+        "chalk": "^4.1.0",
+        "is-unicode-supported": "^0.1.0"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
     "node_modules/log-update": {
       "version": "5.0.1",
       "resolved": "https://registry.npmjs.org/log-update/-/log-update-5.0.1.tgz",
@@ -13917,6 +14532,73 @@
         "node": ">= 0.8.0"
       }
     },
+    "node_modules/ora": {
+      "version": "5.4.1",
+      "resolved": "https://registry.npmjs.org/ora/-/ora-5.4.1.tgz",
+      "integrity": "sha512-5b6Y85tPxZZ7QytO+BQzysW31HJku27cRIlkbAXaNx+BdcVi+LlRFmVXzeF6a7JCwJpyw5c4b+YSVImQIrBpuQ==",
+      "dependencies": {
+        "bl": "^4.1.0",
+        "chalk": "^4.1.0",
+        "cli-cursor": "^3.1.0",
+        "cli-spinners": "^2.5.0",
+        "is-interactive": "^1.0.0",
+        "is-unicode-supported": "^0.1.0",
+        "log-symbols": "^4.1.0",
+        "strip-ansi": "^6.0.0",
+        "wcwidth": "^1.0.1"
+      },
+      "engines": {
+        "node": ">=10"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/ora/node_modules/cli-cursor": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/cli-cursor/-/cli-cursor-3.1.0.tgz",
+      "integrity": "sha512-I/zHAwsKf9FqGoXM4WWRACob9+SNukZTd94DWF57E4toouRulbCxcUh6RKUEOQlYTHJnzkPMySvPNaaSLNfLZw==",
+      "dependencies": {
+        "restore-cursor": "^3.1.0"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
+    "node_modules/ora/node_modules/mimic-fn": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/mimic-fn/-/mimic-fn-2.1.0.tgz",
+      "integrity": "sha512-OqbOk5oEQeAZ8WXWydlu9HJjz9WVdEIvamMCcXmuqUYjTknH/sqsWvhQ3vgwKFRR1HpjvNBKQ37nbJgYzGqGcg==",
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/ora/node_modules/onetime": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/onetime/-/onetime-5.1.2.tgz",
+      "integrity": "sha512-kbpaSSGJTWdAY5KPVeMOKXSrPtr8C8C7wodJbcsd51jRnmD+GZu8Y0VoU6Dm5Z4vWr0Ig/1NKuWRKf7j5aaYSg==",
+      "dependencies": {
+        "mimic-fn": "^2.1.0"
+      },
+      "engines": {
+        "node": ">=6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
+    "node_modules/ora/node_modules/restore-cursor": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/restore-cursor/-/restore-cursor-3.1.0.tgz",
+      "integrity": "sha512-l+sSefzHpj5qimhFSE5a8nufZYAM3sBSVMAPtYkmC+4EH2anSGaEMXSD0izRQbu9nfyQ9y5JrVmp7E8oZrUjvA==",
+      "dependencies": {
+        "onetime": "^5.1.0",
+        "signal-exit": "^3.0.2"
+      },
+      "engines": {
+        "node": ">=8"
+      }
+    },
     "node_modules/p-limit": {
       "version": "3.1.0",
       "resolved": "https://registry.npmjs.org/p-limit/-/p-limit-3.1.0.tgz",
@@ -13949,7 +14631,6 @@
       "version": "2.2.0",
       "resolved": "https://registry.npmjs.org/p-try/-/p-try-2.2.0.tgz",
       "integrity": "sha512-R4nPAVTAU0B9D35/Gk3uJf/7XYbQcyohSKdvAxIRSNghFl4e71hVoGnBNQz9cWaXxO2I10KTC+3jMdvvoKw6dQ==",
-      "dev": true,
       "engines": {
         "node": ">=6"
       }
@@ -14004,7 +14685,6 @@
       "version": "5.2.0",
       "resolved": "https://registry.npmjs.org/parse-json/-/parse-json-5.2.0.tgz",
       "integrity": "sha512-ayCKvm/phCGxOkYRSCM82iDwct8/EonSEgCSxWxD7ve6jHggsFl4fZVQBPRNgQoKiuV/odhFrGzQXZwbifC8Rg==",
-      "dev": true,
       "dependencies": {
         "@babel/code-frame": "^7.0.0",
         "error-ex": "^1.3.1",
@@ -14641,6 +15321,17 @@
         "node": ">=0.10.0"
       }
     },
+    "node_modules/pretty-bytes": {
+      "version": "5.6.0",
+      "resolved": "https://registry.npmjs.org/pretty-bytes/-/pretty-bytes-5.6.0.tgz",
+      "integrity": "sha512-FFw039TmrBqFK8ma/7OL3sDz/VytdtJr044/QUJtH0wK9lb9jLq9tJyIxUwtQJHwar2BqtiA4iCWSwo9JLkzFg==",
+      "engines": {
+        "node": ">=6"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/sindresorhus"
+      }
+    },
     "node_modules/pretty-format": {
       "version": "3.8.0",
       "resolved": "https://registry.npmjs.org/pretty-format/-/pretty-format-3.8.0.tgz",
@@ -14922,6 +15613,481 @@
         "react": ">= 16.8 || 18.0.0"
       }
     },
+    "node_modules/react-email": {
+      "version": "1.9.4",
+      "resolved": "https://registry.npmjs.org/react-email/-/react-email-1.9.4.tgz",
+      "integrity": "sha512-DNUQb7xzAlMga2ZppG57bnWhJnqOEcTYzxNvLA4IVCiYJkgPNVukFMOZVG2OuQ0W8ddiF6bLZBKDZHnnIenbpw==",
+      "dependencies": {
+        "@commander-js/extra-typings": "9.4.1",
+        "@manypkg/find-root": "2.1.0",
+        "@octokit/rest": "19.0.7",
+        "@react-email/render": "0.0.6",
+        "chokidar": "3.5.3",
+        "commander": "9.4.1",
+        "detect-package-manager": "2.0.1",
+        "esbuild": "0.16.4",
+        "fs-extra": "11.1.0",
+        "glob": "8.0.3",
+        "log-symbols": "4.1.0",
+        "normalize-path": "3.0.0",
+        "ora": "5.4.1",
+        "read-pkg": "5.2.0",
+        "shelljs": "0.8.5",
+        "tree-node-cli": "1.6.0"
+      },
+      "bin": {
+        "email": "dist/source/index.js"
+      },
+      "engines": {
+        "node": ">=16.0.0"
+      }
+    },
+    "node_modules/react-email/node_modules/@commander-js/extra-typings": {
+      "version": "9.4.1",
+      "resolved": "https://registry.npmjs.org/@commander-js/extra-typings/-/extra-typings-9.4.1.tgz",
+      "integrity": "sha512-v0BqORYamk1koxDon6femDGLWSL7P78vYTyOU5nFaALnmNALL+ktgdHvWbxzzBBJIKS7kv3XvM/DqNwiLcgFTA==",
+      "peerDependencies": {
+        "commander": "9.4.x"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/android-arm": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm/-/android-arm-0.16.4.tgz",
+      "integrity": "sha512-rZzb7r22m20S1S7ufIc6DC6W659yxoOrl7sKP1nCYhuvUlnCFHVSbATG4keGUtV8rDz11sRRDbWkvQZpzPaHiw==",
+      "cpu": [
+        "arm"
+      ],
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/android-arm64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-arm64/-/android-arm64-0.16.4.tgz",
+      "integrity": "sha512-VPuTzXFm/m2fcGfN6CiwZTlLzxrKsWbPkG7ArRFpuxyaHUm/XFHQPD4xNwZT6uUmpIHhnSjcaCmcla8COzmZ5Q==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/android-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/android-x64/-/android-x64-0.16.4.tgz",
+      "integrity": "sha512-MW+B2O++BkcOfMWmuHXB15/l1i7wXhJFqbJhp82IBOais8RBEQv2vQz/jHrDEHaY2X0QY7Wfw86SBL2PbVOr0g==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "android"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/darwin-arm64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-arm64/-/darwin-arm64-0.16.4.tgz",
+      "integrity": "sha512-a28X1O//aOfxwJVZVs7ZfM8Tyih2Za4nKJrBwW5Wm4yKsnwBy9aiS/xwpxiiTRttw3EaTg4Srerhcm6z0bu9Wg==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/darwin-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/darwin-x64/-/darwin-x64-0.16.4.tgz",
+      "integrity": "sha512-e3doCr6Ecfwd7VzlaQqEPrnbvvPjE9uoTpxG5pyLzr2rI2NMjDHmvY1E5EO81O/e9TUOLLkXA5m6T8lfjK9yAA==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "darwin"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/freebsd-arm64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-arm64/-/freebsd-arm64-0.16.4.tgz",
+      "integrity": "sha512-Oup3G/QxBgvvqnXWrBed7xxkFNwAwJVHZcklWyQt7YCAL5bfUkaa6FVWnR78rNQiM8MqqLiT6ZTZSdUFuVIg1w==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/freebsd-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/freebsd-x64/-/freebsd-x64-0.16.4.tgz",
+      "integrity": "sha512-vAP+eYOxlN/Bpo/TZmzEQapNS8W1njECrqkTpNgvXskkkJC2AwOXwZWai/Kc2vEFZUXQttx6UJbj9grqjD/+9Q==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "freebsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-arm": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm/-/linux-arm-0.16.4.tgz",
+      "integrity": "sha512-A47ZmtpIPyERxkSvIv+zLd6kNIOtJH03XA0Hy7jaceRDdQaQVGSDt4mZqpWqJYgDk9rg96aglbF6kCRvPGDSUA==",
+      "cpu": [
+        "arm"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-arm64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-arm64/-/linux-arm64-0.16.4.tgz",
+      "integrity": "sha512-2zXoBhv4r5pZiyjBKrOdFP4CXOChxXiYD50LRUU+65DkdS5niPFHbboKZd/c81l0ezpw7AQnHeoCy5hFrzzs4g==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-ia32": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ia32/-/linux-ia32-0.16.4.tgz",
+      "integrity": "sha512-uxdSrpe9wFhz4yBwt2kl2TxS/NWEINYBUFIxQtaEVtglm1eECvsj1vEKI0KX2k2wCe17zDdQ3v+jVxfwVfvvjw==",
+      "cpu": [
+        "ia32"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-loong64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-loong64/-/linux-loong64-0.16.4.tgz",
+      "integrity": "sha512-peDrrUuxbZ9Jw+DwLCh/9xmZAk0p0K1iY5d2IcwmnN+B87xw7kujOkig6ZRcZqgrXgeRGurRHn0ENMAjjD5DEg==",
+      "cpu": [
+        "loong64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-mips64el": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-mips64el/-/linux-mips64el-0.16.4.tgz",
+      "integrity": "sha512-sD9EEUoGtVhFjjsauWjflZklTNr57KdQ6xfloO4yH1u7vNQlOfAlhEzbyBKfgbJlW7rwXYBdl5/NcZ+Mg2XhQA==",
+      "cpu": [
+        "mips64el"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-ppc64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-ppc64/-/linux-ppc64-0.16.4.tgz",
+      "integrity": "sha512-X1HSqHUX9D+d0l6/nIh4ZZJ94eQky8d8z6yxAptpZE3FxCWYWvTDd9X9ST84MGZEJx04VYUD/AGgciddwO0b8g==",
+      "cpu": [
+        "ppc64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-riscv64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-riscv64/-/linux-riscv64-0.16.4.tgz",
+      "integrity": "sha512-97ANpzyNp0GTXCt6SRdIx1ngwncpkV/z453ZuxbnBROCJ5p/55UjhbaG23UdHj88fGWLKPFtMoU4CBacz4j9FA==",
+      "cpu": [
+        "riscv64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-s390x": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-s390x/-/linux-s390x-0.16.4.tgz",
+      "integrity": "sha512-pUvPQLPmbEeJRPjP0DYTC1vjHyhrnCklQmCGYbipkep+oyfTn7GTBJXoPodR7ZS5upmEyc8lzAkn2o29wD786A==",
+      "cpu": [
+        "s390x"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/linux-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/linux-x64/-/linux-x64-0.16.4.tgz",
+      "integrity": "sha512-N55Q0mJs3Sl8+utPRPBrL6NLYZKBCLLx0bme/+RbjvMforTGGzFvsRl4xLTZMUBFC1poDzBEPTEu5nxizQ9Nlw==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "linux"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/netbsd-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/netbsd-x64/-/netbsd-x64-0.16.4.tgz",
+      "integrity": "sha512-LHSJLit8jCObEQNYkgsDYBh2JrJT53oJO2HVdkSYLa6+zuLJh0lAr06brXIkljrlI+N7NNW1IAXGn/6IZPi3YQ==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "netbsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/openbsd-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/openbsd-x64/-/openbsd-x64-0.16.4.tgz",
+      "integrity": "sha512-nLgdc6tWEhcCFg/WVFaUxHcPK3AP/bh+KEwKtl69Ay5IBqUwKDaq/6Xk0E+fh/FGjnLwqFSsarsbPHeKM8t8Sw==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "openbsd"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/sunos-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/sunos-x64/-/sunos-x64-0.16.4.tgz",
+      "integrity": "sha512-08SluG24GjPO3tXKk95/85n9kpyZtXCVwURR2i4myhrOfi3jspClV0xQQ0W0PYWHioJj+LejFMt41q+PG3mlAQ==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "sunos"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/win32-arm64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-arm64/-/win32-arm64-0.16.4.tgz",
+      "integrity": "sha512-yYiRDQcqLYQSvNQcBKN7XogbrSvBE45FEQdH8fuXPl7cngzkCvpsG2H9Uey39IjQ6gqqc+Q4VXYHsQcKW0OMjQ==",
+      "cpu": [
+        "arm64"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/win32-ia32": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-ia32/-/win32-ia32-0.16.4.tgz",
+      "integrity": "sha512-5rabnGIqexekYkh9zXG5waotq8mrdlRoBqAktjx2W3kb0zsI83mdCwrcAeKYirnUaTGztR5TxXcXmQrEzny83w==",
+      "cpu": [
+        "ia32"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@esbuild/win32-x64": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/@esbuild/win32-x64/-/win32-x64-0.16.4.tgz",
+      "integrity": "sha512-sN/I8FMPtmtT2Yw+Dly8Ur5vQ5a/RmC8hW7jO9PtPSQUPkowxWpcUZnqOggU7VwyT3Xkj6vcXWd3V/qTXwultQ==",
+      "cpu": [
+        "x64"
+      ],
+      "optional": true,
+      "os": [
+        "win32"
+      ],
+      "engines": {
+        "node": ">=12"
+      }
+    },
+    "node_modules/react-email/node_modules/@react-email/render": {
+      "version": "0.0.6",
+      "resolved": "https://registry.npmjs.org/@react-email/render/-/render-0.0.6.tgz",
+      "integrity": "sha512-6zs7WZbd37TcPT1OmMPH/kcBpv0QSi+k3om7LyDnbdIcrbwOO/OstVwUaa/6zgvDvnq9Y2wOosbru7j5kUrW9A==",
+      "dependencies": {
+        "html-to-text": "9.0.3",
+        "pretty": "2.0.0",
+        "react": "18.2.0",
+        "react-dom": "18.2.0"
+      },
+      "engines": {
+        "node": ">=16.0.0"
+      }
+    },
+    "node_modules/react-email/node_modules/brace-expansion": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.1.tgz",
+      "integrity": "sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==",
+      "dependencies": {
+        "balanced-match": "^1.0.0"
+      }
+    },
+    "node_modules/react-email/node_modules/commander": {
+      "version": "9.4.1",
+      "resolved": "https://registry.npmjs.org/commander/-/commander-9.4.1.tgz",
+      "integrity": "sha512-5EEkTNyHNGFPD2H+c/dXXfQZYa/scCKasxWcXJaWnNJ99pnQN9Vnmqow+p+PlFPE63Q6mThaZws1T+HxfpgtPw==",
+      "engines": {
+        "node": "^12.20.0 || >=14"
+      }
+    },
+    "node_modules/react-email/node_modules/esbuild": {
+      "version": "0.16.4",
+      "resolved": "https://registry.npmjs.org/esbuild/-/esbuild-0.16.4.tgz",
+      "integrity": "sha512-qQrPMQpPTWf8jHugLWHoGqZjApyx3OEm76dlTXobHwh/EBbavbRdjXdYi/GWr43GyN0sfpap14GPkb05NH3ROA==",
+      "hasInstallScript": true,
+      "bin": {
+        "esbuild": "bin/esbuild"
+      },
+      "engines": {
+        "node": ">=12"
+      },
+      "optionalDependencies": {
+        "@esbuild/android-arm": "0.16.4",
+        "@esbuild/android-arm64": "0.16.4",
+        "@esbuild/android-x64": "0.16.4",
+        "@esbuild/darwin-arm64": "0.16.4",
+        "@esbuild/darwin-x64": "0.16.4",
+        "@esbuild/freebsd-arm64": "0.16.4",
+        "@esbuild/freebsd-x64": "0.16.4",
+        "@esbuild/linux-arm": "0.16.4",
+        "@esbuild/linux-arm64": "0.16.4",
+        "@esbuild/linux-ia32": "0.16.4",
+        "@esbuild/linux-loong64": "0.16.4",
+        "@esbuild/linux-mips64el": "0.16.4",
+        "@esbuild/linux-ppc64": "0.16.4",
+        "@esbuild/linux-riscv64": "0.16.4",
+        "@esbuild/linux-s390x": "0.16.4",
+        "@esbuild/linux-x64": "0.16.4",
+        "@esbuild/netbsd-x64": "0.16.4",
+        "@esbuild/openbsd-x64": "0.16.4",
+        "@esbuild/sunos-x64": "0.16.4",
+        "@esbuild/win32-arm64": "0.16.4",
+        "@esbuild/win32-ia32": "0.16.4",
+        "@esbuild/win32-x64": "0.16.4"
+      }
+    },
+    "node_modules/react-email/node_modules/fs-extra": {
+      "version": "11.1.0",
+      "resolved": "https://registry.npmjs.org/fs-extra/-/fs-extra-11.1.0.tgz",
+      "integrity": "sha512-0rcTq621PD5jM/e0a3EJoGC/1TC5ZBCERW82LQuwfGnCa1V8w7dpYH1yNu+SLb6E5dkeCBzKEyLGlFrnr+dUyw==",
+      "dependencies": {
+        "graceful-fs": "^4.2.0",
+        "jsonfile": "^6.0.1",
+        "universalify": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=14.14"
+      }
+    },
+    "node_modules/react-email/node_modules/glob": {
+      "version": "8.0.3",
+      "resolved": "https://registry.npmjs.org/glob/-/glob-8.0.3.tgz",
+      "integrity": "sha512-ull455NHSHI/Y1FqGaaYFaLGkNMMJbavMrEGFXG/PGrg6y7sutWHUHrz6gy6WEBH6akM1M414dWKCNs+IhKdiQ==",
+      "dependencies": {
+        "fs.realpath": "^1.0.0",
+        "inflight": "^1.0.4",
+        "inherits": "2",
+        "minimatch": "^5.0.1",
+        "once": "^1.3.0"
+      },
+      "engines": {
+        "node": ">=12"
+      },
+      "funding": {
+        "url": "https://github.com/sponsors/isaacs"
+      }
+    },
+    "node_modules/react-email/node_modules/minimatch": {
+      "version": "5.1.6",
+      "resolved": "https://registry.npmjs.org/minimatch/-/minimatch-5.1.6.tgz",
+      "integrity": "sha512-lKwV/1brpG6mBUFHtb7NUmtABCb2WZZmm2wNiOA5hAb8VdCS4B3dtMWyvcoViccwAW/COERjXLt0zP1zXUN26g==",
+      "dependencies": {
+        "brace-expansion": "^2.0.1"
+      },
+      "engines": {
+        "node": ">=10"
+      }
+    },
     "node_modules/react-hook-form": {
       "version": "7.45.2",
       "resolved": "https://registry.npmjs.org/react-hook-form/-/react-hook-form-7.45.2.tgz",
@@ -15143,7 +16309,6 @@
       "version": "5.2.0",
       "resolved": "https://registry.npmjs.org/read-pkg/-/read-pkg-5.2.0.tgz",
       "integrity": "sha512-Ug69mNOpfvKDAc2Q8DRpMjjzdtrnv9HcSMX+4VsZxD1aZ6ZzrIE7rlzXBtWTyhULSMKg076AW6WR5iZpD0JiOg==",
-      "dev": true,
       "dependencies": {
         "@types/normalize-package-data": "^2.4.0",
         "normalize-package-data": "^2.5.0",
@@ -15235,14 +16400,12 @@
     "node_modules/read-pkg/node_modules/hosted-git-info": {
       "version": "2.8.9",
       "resolved": "https://registry.npmjs.org/hosted-git-info/-/hosted-git-info-2.8.9.tgz",
-      "integrity": "sha512-mxIDAb9Lsm6DoOJ7xH+5+X4y1LU/4Hi50L9C5sIswK3JzULS4bwk1FvjdBgvYR4bzT4tuUQiC15FE2f5HbLvYw==",
-      "dev": true
+      "integrity": "sha512-mxIDAb9Lsm6DoOJ7xH+5+X4y1LU/4Hi50L9C5sIswK3JzULS4bwk1FvjdBgvYR4bzT4tuUQiC15FE2f5HbLvYw=="
     },
     "node_modules/read-pkg/node_modules/normalize-package-data": {
       "version": "2.5.0",
       "resolved": "https://registry.npmjs.org/normalize-package-data/-/normalize-package-data-2.5.0.tgz",
       "integrity": "sha512-/5CMN3T0R4XTj4DcGaexo+roZSdSFW/0AOOTROrjxzCG1wrWXEsGbRKevjlIL+ZDE4sZlJr5ED4YW0yqmkK+eA==",
-      "dev": true,
       "dependencies": {
         "hosted-git-info": "^2.1.4",
         "resolve": "^1.10.0",
@@ -15254,7 +16417,6 @@
       "version": "5.7.2",
       "resolved": "https://registry.npmjs.org/semver/-/semver-5.7.2.tgz",
       "integrity": "sha512-cBznnQ9KjJqU67B52RMC65CMarK2600WFnbkcaiwWq3xy/5haFJlshgnpjovMVJ+Hff49d8GEn0b87C5pDQ10g==",
-      "dev": true,
       "bin": {
         "semver": "bin/semver"
       }
@@ -15263,11 +16425,32 @@
       "version": "0.6.0",
       "resolved": "https://registry.npmjs.org/type-fest/-/type-fest-0.6.0.tgz",
       "integrity": "sha512-q+MB8nYR1KDLrgr4G5yemftpMC7/QLqVndBmEEdqzmNj5dcFOO4Oo8qlwZE3ULT3+Zim1F8Kq4cBnikNhlCMlg==",
-      "dev": true,
       "engines": {
         "node": ">=8"
       }
     },
+    "node_modules/read-yaml-file": {
+      "version": "1.1.0",
+      "resolved": "https://registry.npmjs.org/read-yaml-file/-/read-yaml-file-1.1.0.tgz",
+      "integrity": "sha512-VIMnQi/Z4HT2Fxuwg5KrY174U1VdUIASQVWXXyqtNRtxSr9IYkn1rsI6Tb6HsrHCmB7gVpNwX6JxPTHcH6IoTA==",
+      "dependencies": {
+        "graceful-fs": "^4.1.5",
+        "js-yaml": "^3.6.1",
+        "pify": "^4.0.1",
+        "strip-bom": "^3.0.0"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/read-yaml-file/node_modules/pify": {
+      "version": "4.0.1",
+      "resolved": "https://registry.npmjs.org/pify/-/pify-4.0.1.tgz",
+      "integrity": "sha512-uB80kBFb/tfd68bVleG9T5GGsGPjJrLAUpR5PZIrhBnIaRTQRjqdJSsIKkOP6OAIFbj7GOrcudc5pNjZ+geV2g==",
+      "engines": {
+        "node": ">=6"
+      }
+    },
     "node_modules/readable-stream": {
       "version": "3.6.2",
       "resolved": "https://registry.npmjs.org/readable-stream/-/readable-stream-3.6.2.tgz",
@@ -15324,6 +16507,17 @@
         "decimal.js-light": "^2.4.1"
       }
     },
+    "node_modules/rechoir": {
+      "version": "0.6.2",
+      "resolved": "https://registry.npmjs.org/rechoir/-/rechoir-0.6.2.tgz",
+      "integrity": "sha512-HFM8rkZ+i3zrV+4LQjwQ0W+ez98pApMGM3HUrN04j3CqzPOzl9nmP15Y8YXNm8QHGv/eacOVEjqhmWpkRV0NAw==",
+      "dependencies": {
+        "resolve": "^1.1.6"
+      },
+      "engines": {
+        "node": ">= 0.10"
+      }
+    },
     "node_modules/redent": {
       "version": "3.0.0",
       "resolved": "https://registry.npmjs.org/redent/-/redent-3.0.0.tgz",
@@ -15894,6 +17088,11 @@
       "resolved": "https://registry.npmjs.org/set-blocking/-/set-blocking-2.0.0.tgz",
       "integrity": "sha512-KiKBS8AnWGEyLzofFfmvKwpdPzqiy16LvQfK3yv/fVH7Bj13/wl3JSR1J+rfgRE9q7xUJK4qvgS8raSOeLUehw=="
     },
+    "node_modules/setimmediate": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/setimmediate/-/setimmediate-1.0.5.tgz",
+      "integrity": "sha512-MATJdZp8sLqDl/68LfQmbP8zKPLQNV6BIZoIgrscFDQ+RsvK/BxeDQOgyxKKoh0y/8h3BqVFnCqQ/gd+reiIXA=="
+    },
     "node_modules/setprototypeof": {
       "version": "1.1.1",
       "resolved": "https://registry.npmjs.org/setprototypeof/-/setprototypeof-1.1.1.tgz",
@@ -15994,6 +17193,22 @@
         "node": ">=8"
       }
     },
+    "node_modules/shelljs": {
+      "version": "0.8.5",
+      "resolved": "https://registry.npmjs.org/shelljs/-/shelljs-0.8.5.tgz",
+      "integrity": "sha512-TiwcRcrkhHvbrZbnRcFYMLl30Dfov3HKqzp5tO5b4pt6G/SezKcYhmDg15zXVBswHmctSAQKznqNW2LO5tTDow==",
+      "dependencies": {
+        "glob": "^7.0.0",
+        "interpret": "^1.0.0",
+        "rechoir": "^0.6.2"
+      },
+      "bin": {
+        "shjs": "bin/shjs"
+      },
+      "engines": {
+        "node": ">=4"
+      }
+    },
     "node_modules/side-channel": {
       "version": "1.0.4",
       "resolved": "https://registry.npmjs.org/side-channel/-/side-channel-1.0.4.tgz",
@@ -16109,7 +17324,6 @@
       "version": "3.2.0",
       "resolved": "https://registry.npmjs.org/spdx-correct/-/spdx-correct-3.2.0.tgz",
       "integrity": "sha512-kN9dJbvnySHULIluDHy32WHRUu3Og7B9sbY7tsFLctQkIqnMh3hErYgdMjTYuqmcXX+lK5T1lnUt3G7zNswmZA==",
-      "dev": true,
       "dependencies": {
         "spdx-expression-parse": "^3.0.0",
         "spdx-license-ids": "^3.0.0"
@@ -16118,14 +17332,12 @@
     "node_modules/spdx-exceptions": {
       "version": "2.3.0",
       "resolved": "https://registry.npmjs.org/spdx-exceptions/-/spdx-exceptions-2.3.0.tgz",
-      "integrity": "sha512-/tTrYOC7PPI1nUAgx34hUpqXuyJG+DTHJTnIULG4rDygi4xu/tfgmq1e1cIRwRzwZgo4NLySi+ricLkZkw4i5A==",
-      "dev": true
+      "integrity": "sha512-/tTrYOC7PPI1nUAgx34hUpqXuyJG+DTHJTnIULG4rDygi4xu/tfgmq1e1cIRwRzwZgo4NLySi+ricLkZkw4i5A=="
     },
     "node_modules/spdx-expression-parse": {
       "version": "3.0.1",
       "resolved": "https://registry.npmjs.org/spdx-expression-parse/-/spdx-expression-parse-3.0.1.tgz",
       "integrity": "sha512-cbqHunsQWnJNE6KhVSMsMeH5H/L9EpymbzqTQ3uLwNCLZ1Q481oWaofqH7nO6V07xlXwY6PhQdQ2IedWx/ZK4Q==",
-      "dev": true,
       "dependencies": {
         "spdx-exceptions": "^2.1.0",
         "spdx-license-ids": "^3.0.0"
@@ -16134,8 +17346,7 @@
     "node_modules/spdx-license-ids": {
       "version": "3.0.13",
       "resolved": "https://registry.npmjs.org/spdx-license-ids/-/spdx-license-ids-3.0.13.tgz",
-      "integrity": "sha512-XkD+zwiqXHikFZm4AX/7JSCXA98U5Db4AFd5XUg/+9UNtnH75+Z9KxtpYiJZx36mUDVOwH83pl7yvCer6ewM3w==",
-      "dev": true
+      "integrity": "sha512-XkD+zwiqXHikFZm4AX/7JSCXA98U5Db4AFd5XUg/+9UNtnH75+Z9KxtpYiJZx36mUDVOwH83pl7yvCer6ewM3w=="
     },
     "node_modules/split2": {
       "version": "3.2.2",
@@ -16757,6 +17968,14 @@
       "resolved": "https://registry.npmjs.org/tr46/-/tr46-0.0.3.tgz",
       "integrity": "sha512-N3WMsuqV66lT30CrXNbEjx4GEwlow3v6rr4mCcv6prnfwhS01rkgyFdjPNBYd9br7LpXV1+Emh01fHnq2Gdgrw=="
     },
+    "node_modules/traverse": {
+      "version": "0.3.9",
+      "resolved": "https://registry.npmjs.org/traverse/-/traverse-0.3.9.tgz",
+      "integrity": "sha512-iawgk0hLP3SxGKDfnDJf8wTz4p2qImnyihM5Hh/sGvQ3K37dPi/w8sRhdNIxYA1TwFwc5mDhIJq+O0RsvXBKdQ==",
+      "engines": {
+        "node": "*"
+      }
+    },
     "node_modules/tree-kill": {
       "version": "1.2.2",
       "resolved": "https://registry.npmjs.org/tree-kill/-/tree-kill-1.2.2.tgz",
@@ -16766,6 +17985,28 @@
         "tree-kill": "cli.js"
       }
     },
+    "node_modules/tree-node-cli": {
+      "version": "1.6.0",
+      "resolved": "https://registry.npmjs.org/tree-node-cli/-/tree-node-cli-1.6.0.tgz",
+      "integrity": "sha512-M8um5Lbl76rWU5aC8oOeEhruiCM29lFCKnwpxrwMjpRicHXJx+bb9Cak11G3zYLrMb6Glsrhnn90rHIzDJrjvg==",
+      "dependencies": {
+        "commander": "^5.0.0",
+        "fast-folder-size": "1.6.1",
+        "pretty-bytes": "^5.6.0"
+      },
+      "bin": {
+        "tree": "bin/tree.js",
+        "treee": "bin/tree.js"
+      }
+    },
+    "node_modules/tree-node-cli/node_modules/commander": {
+      "version": "5.1.0",
+      "resolved": "https://registry.npmjs.org/commander/-/commander-5.1.0.tgz",
+      "integrity": "sha512-P0CysNDQ7rtVw4QIQtm+MRxV66vKFSvlsQvGYXZWR3qFU0jlMKHZZZgw8e+8DSah4UDKMqnknRDQz+xuQXQ/Zg==",
+      "engines": {
+        "node": ">= 6"
+      }
+    },
     "node_modules/trim-lines": {
       "version": "3.0.1",
       "resolved": "https://registry.npmjs.org/trim-lines/-/trim-lines-3.0.1.tgz",
@@ -17643,11 +18884,15 @@
         "url": "https://opencollective.com/unified"
       }
     },
+    "node_modules/universal-user-agent": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/universal-user-agent/-/universal-user-agent-6.0.0.tgz",
+      "integrity": "sha512-isyNax3wXoKaulPDZWHQqbmIx1k2tb9fb3GGDBRxCscfYV2Ch7WxPArBsFEG8s/safwXTT7H4QGhaIkTp9447w=="
+    },
     "node_modules/universalify": {
       "version": "2.0.0",
       "resolved": "https://registry.npmjs.org/universalify/-/universalify-2.0.0.tgz",
       "integrity": "sha512-hAZsKq7Yy11Zu1DE0OzWjw7nnLZmJZYTDZZyEFHZdUhV8FkH5MCfoU1XMaxXovpyW5nq5scPqq0ZDP9Zyl04oQ==",
-      "dev": true,
       "engines": {
         "node": ">= 10.0.0"
       }
@@ -17668,6 +18913,55 @@
         "node": ">=8"
       }
     },
+    "node_modules/unzipper": {
+      "version": "0.10.14",
+      "resolved": "https://registry.npmjs.org/unzipper/-/unzipper-0.10.14.tgz",
+      "integrity": "sha512-ti4wZj+0bQTiX2KmKWuwj7lhV+2n//uXEotUmGuQqrbVZSEGFMbI68+c6JCQ8aAmUWYvtHEz2A8K6wXvueR/6g==",
+      "dependencies": {
+        "big-integer": "^1.6.17",
+        "binary": "~0.3.0",
+        "bluebird": "~3.4.1",
+        "buffer-indexof-polyfill": "~1.0.0",
+        "duplexer2": "~0.1.4",
+        "fstream": "^1.0.12",
+        "graceful-fs": "^4.2.2",
+        "listenercount": "~1.0.1",
+        "readable-stream": "~2.3.6",
+        "setimmediate": "~1.0.4"
+      }
+    },
+    "node_modules/unzipper/node_modules/isarray": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/isarray/-/isarray-1.0.0.tgz",
+      "integrity": "sha512-VLghIWNM6ELQzo7zwmcg0NmTVyWKYjvIeM83yjp0wRDTmUnrM678fQbcKBo6n2CJEF0szoG//ytg+TKla89ALQ=="
+    },
+    "node_modules/unzipper/node_modules/readable-stream": {
+      "version": "2.3.8",
+      "resolved": "https://registry.npmjs.org/readable-stream/-/readable-stream-2.3.8.tgz",
+      "integrity": "sha512-8p0AUk4XODgIewSi0l8Epjs+EVnWiK7NoDIEGU0HhE7+ZyY8D1IMY7odu5lRrFXGg71L15KG8QrPmum45RTtdA==",
+      "dependencies": {
+        "core-util-is": "~1.0.0",
+        "inherits": "~2.0.3",
+        "isarray": "~1.0.0",
+        "process-nextick-args": "~2.0.0",
+        "safe-buffer": "~5.1.1",
+        "string_decoder": "~1.1.1",
+        "util-deprecate": "~1.0.1"
+      }
+    },
+    "node_modules/unzipper/node_modules/safe-buffer": {
+      "version": "5.1.2",
+      "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz",
+      "integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g=="
+    },
+    "node_modules/unzipper/node_modules/string_decoder": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/string_decoder/-/string_decoder-1.1.1.tgz",
+      "integrity": "sha512-n/ShnvDi6FHbbVfviro+WojiFzv+s8MPMHBczVePfUpDJLwoLT0ht1l4YwBCbi8pJAveEEdnkHyPyTP/mzRfwg==",
+      "dependencies": {
+        "safe-buffer": "~5.1.0"
+      }
+    },
     "node_modules/update-browserslist-db": {
       "version": "1.0.11",
       "resolved": "https://registry.npmjs.org/update-browserslist-db/-/update-browserslist-db-1.0.11.tgz",
@@ -17794,7 +19088,6 @@
       "version": "3.0.4",
       "resolved": "https://registry.npmjs.org/validate-npm-package-license/-/validate-npm-package-license-3.0.4.tgz",
       "integrity": "sha512-DpKm2Ui/xN7/HQKCtpZxoRWBhZ9Z0kqtygG8XCgNQ8ZlDnxuQmWhj566j8fN4Cu3/JmbhsDo7fcAJq4s9h27Ew==",
-      "dev": true,
       "dependencies": {
         "spdx-correct": "^3.0.0",
         "spdx-expression-parse": "^3.0.0"
@@ -17874,6 +19167,14 @@
         "node": ">=10.13.0"
       }
     },
+    "node_modules/wcwidth": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/wcwidth/-/wcwidth-1.0.1.tgz",
+      "integrity": "sha512-XHPEwS0q6TaxcvG85+8EYkbiCux2XtWG2mkc47Ng2A77BQu9+DqIOJldST4HgPkuea7dvKSj5VgX3P1d4rW8Tg==",
+      "dependencies": {
+        "defaults": "^1.0.3"
+      }
+    },
     "node_modules/web-namespaces": {
       "version": "2.0.1",
       "resolved": "https://registry.npmjs.org/web-namespaces/-/web-namespaces-2.0.1.tgz",
@@ -18120,7 +19421,8 @@
       "license": "MIT",
       "dependencies": {
         "@react-email/components": "^0.0.7",
-        "nodemailer": "^6.9.3"
+        "nodemailer": "^6.9.3",
+        "react-email": "^1.9.4"
       },
       "devDependencies": {
         "@documenso/tailwind-config": "*",
diff --git a/packages/email/template-components/template-reset-password.tsx b/packages/email/template-components/template-reset-password.tsx
new file mode 100644
index 000000000..7dfc0ba78
--- /dev/null
+++ b/packages/email/template-components/template-reset-password.tsx
@@ -0,0 +1,43 @@
+import { Img, Section, Tailwind, Text } from '@react-email/components';
+
+import * as config from '@documenso/tailwind-config';
+
+export interface TemplateResetPasswordProps {
+  inviterName: string;
+  inviterEmail: string;
+  assetBaseUrl: string;
+}
+
+export const TemplateResetPassword = ({ assetBaseUrl }: TemplateResetPasswordProps) => {
+  const getAssetUrl = (path: string) => {
+    return new URL(path, assetBaseUrl).toString();
+  };
+
+  return (
+    <Tailwind
+      config={{
+        theme: {
+          extend: {
+            colors: config.theme.extend.colors,
+          },
+        },
+      }}
+    >
+      <Section className="mt-4 flex-row items-center justify-center">
+        <div className="flex items-center justify-center p-4">
+          <Img className="h-42" src={getAssetUrl('/static/document.png')} alt="Documenso" />
+        </div>
+
+        <Text className="text-primary mx-auto mb-0 max-w-[80%] text-center text-lg font-semibold">
+          Password updated!
+        </Text>
+
+        <Text className="my-1 text-center text-base text-slate-400">
+          Your password has been updated.
+        </Text>
+      </Section>
+    </Tailwind>
+  );
+};
+
+export default TemplateResetPassword;
diff --git a/packages/email/templates/reset-password.tsx b/packages/email/templates/reset-password.tsx
new file mode 100644
index 000000000..d69428934
--- /dev/null
+++ b/packages/email/templates/reset-password.tsx
@@ -0,0 +1,103 @@
+import {
+  Body,
+  Container,
+  Head,
+  Hr,
+  Html,
+  Img,
+  Link,
+  Preview,
+  Section,
+  Tailwind,
+  Text,
+} from '@react-email/components';
+
+import config from '@documenso/tailwind-config';
+
+import TemplateFooter from '../template-components/template-footer';
+import {
+  TemplateResetPassword,
+  TemplateResetPasswordProps,
+} from '../template-components/template-reset-password';
+
+export type DocumentResetPasswordTemplateProps = Partial<TemplateResetPasswordProps>;
+
+export const DocumentResetPasswordTemplate = ({
+  inviterName = 'Lucas Smith',
+  inviterEmail = 'lucas@documenso.com',
+
+  assetBaseUrl = 'http://localhost:3002',
+}: DocumentResetPasswordTemplateProps) => {
+  const previewText = `Completed Document`;
+
+  const getAssetUrl = (path: string) => {
+    return new URL(path, assetBaseUrl).toString();
+  };
+
+  return (
+    <Html>
+      <Head />
+      <Preview>{previewText}</Preview>
+      <Tailwind
+        config={{
+          theme: {
+            extend: {
+              colors: config.theme.extend.colors,
+            },
+          },
+        }}
+      >
+        <Body className="mx-auto my-auto bg-white font-sans">
+          <Section>
+            <Container className="mx-auto mb-2 mt-8 max-w-xl rounded-lg border border-solid border-slate-200 p-4 backdrop-blur-sm">
+              <Section>
+                <Img
+                  src={getAssetUrl('/static/logo.png')}
+                  alt="Documenso Logo"
+                  className="mb-4 h-6"
+                />
+
+                <TemplateResetPassword
+                  inviterName={inviterName}
+                  inviterEmail={inviterEmail}
+                  assetBaseUrl={assetBaseUrl}
+                />
+              </Section>
+            </Container>
+
+            <Container className="mx-auto mt-12 max-w-xl">
+              <Section>
+                <Text className="my-4 text-base font-semibold">
+                  Hi, {inviterName}{' '}
+                  <Link className="font-normal text-slate-400" href="mailto:{inviterEmail}">
+                    ({inviterEmail})
+                  </Link>
+                </Text>
+
+                <Text className="mt-2 text-base text-slate-400">
+                  We've changed your password as you asked. You can now sign in with your new
+                  password.
+                </Text>
+                <Text className="mt-2 text-base text-slate-400">
+                  Didn't request a password change? We are here to help you secure your account,
+                  just{' '}
+                  <Link className="text-documenso-700 font-normal" href="mailto:hi@documenso.com">
+                    contact us.
+                  </Link>
+                </Text>
+              </Section>
+            </Container>
+
+            <Hr className="mx-auto mt-12 max-w-xl" />
+
+            <Container className="mx-auto max-w-xl">
+              <TemplateFooter />
+            </Container>
+          </Section>
+        </Body>
+      </Tailwind>
+    </Html>
+  );
+};
+
+export default DocumentResetPasswordTemplate;

From 1237944b715110e0ed30da9e259530eb37d53710 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 11:51:43 +0000
Subject: [PATCH 64/83] chore: rename email templates export

---
 packages/email/templates/forgot-password.tsx | 10 +++++-----
 packages/email/templates/reset-password.tsx  | 10 +++++-----
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/packages/email/templates/forgot-password.tsx b/packages/email/templates/forgot-password.tsx
index 7043a88f6..5f1db1afc 100644
--- a/packages/email/templates/forgot-password.tsx
+++ b/packages/email/templates/forgot-password.tsx
@@ -17,13 +17,13 @@ import {
   TemplateForgotPasswordProps,
 } from '../template-components/template-forgot-password';
 
-export type DocumentForgotPasswordTemplateProps = Partial<TemplateForgotPasswordProps>;
+export type ForgotPasswordTemplateProps = Partial<TemplateForgotPasswordProps>;
 
-export const DocumentForgotPasswordTemplate = ({
+export const ForgotPasswordTemplate = ({
   resetPasswordLink = 'https://documenso.com',
   assetBaseUrl = 'http://localhost:3002',
-}: DocumentForgotPasswordTemplateProps) => {
-  const previewText = `Completed Document`;
+}: ForgotPasswordTemplateProps) => {
+  const previewText = `Password Reset Requested`;
 
   const getAssetUrl = (path: string) => {
     return new URL(path, assetBaseUrl).toString();
@@ -71,4 +71,4 @@ export const DocumentForgotPasswordTemplate = ({
   );
 };
 
-export default DocumentForgotPasswordTemplate;
+export default ForgotPasswordTemplate;
diff --git a/packages/email/templates/reset-password.tsx b/packages/email/templates/reset-password.tsx
index d69428934..6443661b9 100644
--- a/packages/email/templates/reset-password.tsx
+++ b/packages/email/templates/reset-password.tsx
@@ -20,15 +20,15 @@ import {
   TemplateResetPasswordProps,
 } from '../template-components/template-reset-password';
 
-export type DocumentResetPasswordTemplateProps = Partial<TemplateResetPasswordProps>;
+export type ResetPasswordTemplateProps = Partial<TemplateResetPasswordProps>;
 
-export const DocumentResetPasswordTemplate = ({
+export const ResetPasswordTemplate = ({
   inviterName = 'Lucas Smith',
   inviterEmail = 'lucas@documenso.com',
 
   assetBaseUrl = 'http://localhost:3002',
-}: DocumentResetPasswordTemplateProps) => {
-  const previewText = `Completed Document`;
+}: ResetPasswordTemplateProps) => {
+  const previewText = `Password Reset Successful`;
 
   const getAssetUrl = (path: string) => {
     return new URL(path, assetBaseUrl).toString();
@@ -100,4 +100,4 @@ export const DocumentResetPasswordTemplate = ({
   );
 };
 
-export default DocumentResetPasswordTemplate;
+export default ResetPasswordTemplate;

From 29bd4cb9c3ca4b08afab36329231f281f137a076 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 12:14:55 +0000
Subject: [PATCH 65/83] feat: send forgot password email

---
 a.md                                          | 65 -------------------
 .../src/components/forms/forgot-password.tsx  |  3 +-
 .../server-only/auth/send-forgot-password.ts  | 53 +++++++++++++++
 .../lib/server-only/user/forgot-password.ts   | 13 ++--
 4 files changed, 60 insertions(+), 74 deletions(-)
 delete mode 100644 a.md
 create mode 100644 packages/lib/server-only/auth/send-forgot-password.ts

diff --git a/a.md b/a.md
deleted file mode 100644
index 71580a3ef..000000000
--- a/a.md
+++ /dev/null
@@ -1,65 +0,0 @@
-// import { NextApiRequest, NextApiResponse } from 'next';
-
-// import crypto from 'crypto';
-
-// import { sendResetPassword } from '@documenso/lib/mail';
-// import { defaultHandler, defaultResponder } from '@documenso/lib/server';
-// import prisma from '@documenso/prisma';
-
-// async function postHandler(req: NextApiRequest, res: NextApiResponse) {
-// const { email } = req.body;
-// const cleanEmail = email.toLowerCase();
-
-// if (!cleanEmail || !/.+@.+/.test(cleanEmail)) {
-// res.status(400).json({ message: 'Invalid email' });
-// return;
-// }
-
-// const user = await prisma.user.findFirst({
-// where: {
-// email: cleanEmail,
-// },
-// });
-
-// if (!user) {
-// return res.status(200).json({ message: 'A password reset email has been sent.' });
-// }
-
-// const existingToken = await prisma.passwordResetToken.findFirst({
-// where: {
-// userId: user.id,
-// createdAt: {
-// gte: new Date(Date.now() - 1000 _ 60 _ 60),
-// },
-// },
-// });
-
-// if (existingToken) {
-// return res.status(200).json({ message: 'A password reset email has been sent.' });
-// }
-
-// const token = crypto.randomBytes(64).toString('hex');
-// const expiry = new Date();
-// expiry.setHours(expiry.getHours() + 24); // Set expiry to one hour from now
-
-// let passwordResetToken;
-// try {
-// passwordResetToken = await prisma.passwordResetToken.create({
-// data: {
-// token,
-// expiry,
-// userId: user.id,
-// },
-// });
-// } catch (error) {
-// return res.status(500).json({ message: 'Something went wrong' });
-// }
-
-// await sendResetPassword(user, passwordResetToken.token);
-
-// return res.status(200).json({ message: 'A password reset email has been sent.' });
-// }
-
-// export default defaultHandler({
-// POST: Promise.resolve({ default: defaultResponder(postHandler) }),
-// });
diff --git a/apps/web/src/components/forms/forgot-password.tsx b/apps/web/src/components/forms/forgot-password.tsx
index 852ff0301..61089b629 100644
--- a/apps/web/src/components/forms/forgot-password.tsx
+++ b/apps/web/src/components/forms/forgot-password.tsx
@@ -51,8 +51,6 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
       email,
     });
 
-    reset();
-
     toast({
       title: 'Password updated',
       description: 'Your password has been updated successfully.',
@@ -63,6 +61,7 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
       setTimeout(resolve, 2000);
     });
 
+    reset();
     router.push('/check-email');
   };
 
diff --git a/packages/lib/server-only/auth/send-forgot-password.ts b/packages/lib/server-only/auth/send-forgot-password.ts
new file mode 100644
index 000000000..88de43270
--- /dev/null
+++ b/packages/lib/server-only/auth/send-forgot-password.ts
@@ -0,0 +1,53 @@
+import { createElement } from 'react';
+
+import { mailer } from '@documenso/email/mailer';
+import { render } from '@documenso/email/render';
+import { ForgotPasswordTemplate } from '@documenso/email/templates/forgot-password';
+import { prisma } from '@documenso/prisma';
+
+export interface SendForgotPasswordOptions {
+  userId: number;
+}
+
+export const sendForgotPassword = async ({ userId }: SendForgotPasswordOptions) => {
+  const user = await prisma.user.findFirstOrThrow({
+    where: {
+      id: userId,
+    },
+    include: {
+      PasswordResetToken: {
+        orderBy: {
+          createdAt: 'desc',
+        },
+        take: 1,
+      },
+    },
+  });
+
+  if (!user) {
+    throw new Error('User not found');
+  }
+
+  const token = user.PasswordResetToken[0].token;
+  const assetBaseUrl = process.env.NEXT_PUBLIC_SITE_URL || 'http://localhost:3000';
+  const resetPasswordLink = `${process.env.NEXT_PUBLIC_SITE_URL}/reset/${token}`;
+
+  const template = createElement(ForgotPasswordTemplate, {
+    assetBaseUrl,
+    resetPasswordLink,
+  });
+
+  return await mailer.sendMail({
+    to: {
+      address: user.email,
+      name: user.name || '',
+    },
+    from: {
+      name: process.env.NEXT_PRIVATE_SMTP_FROM_NAME || 'Documenso',
+      address: process.env.NEXT_PRIVATE_SMTP_FROM_ADDRESS || 'noreply@documenso.com',
+    },
+    subject: 'Forgot Password?',
+    html: render(template),
+    text: render(template, { plainText: true }),
+  });
+};
diff --git a/packages/lib/server-only/user/forgot-password.ts b/packages/lib/server-only/user/forgot-password.ts
index 8cbb13b82..e309c9006 100644
--- a/packages/lib/server-only/user/forgot-password.ts
+++ b/packages/lib/server-only/user/forgot-password.ts
@@ -3,6 +3,8 @@ import crypto from 'crypto';
 import { prisma } from '@documenso/prisma';
 import { TForgotPasswordFormSchema } from '@documenso/trpc/server/profile-router/schema';
 
+import { sendForgotPassword } from '../auth/send-forgot-password';
+
 export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
   const user = await prisma.user.findFirstOrThrow({
     where: {
@@ -31,10 +33,8 @@ export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
   const expiry = new Date();
   expiry.setHours(expiry.getHours() + 24); // Set expiry to one hour from now
 
-  let passwordResetToken;
-
   try {
-    passwordResetToken = await prisma.passwordResetToken.create({
+    await prisma.passwordResetToken.create({
       data: {
         token,
         expiry,
@@ -45,8 +45,7 @@ export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
     throw new Error('Something went wrong');
   }
 
-  console.log('Password reset token: ', passwordResetToken);
-  // send an email to user with password token
-
-  return passwordResetToken;
+  return await sendForgotPassword({
+    userId: user.id,
+  });
 };

From f561ef3cda95251e076248b9360fb108dce2fa34 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 14:03:33 +0000
Subject: [PATCH 66/83] feat: add reset functionality

---
 .../reset-password/[token]/page.tsx           | 36 ++++++++++
 .../(unauthenticated)/reset-password/page.tsx | 37 +----------
 .../src/components/forms/reset-password.tsx   | 28 +++++++-
 .../server-only/auth/send-forgot-password.ts  |  2 +-
 .../lib/server-only/user/reset-password.ts    | 66 +++++++++++++++++++
 packages/trpc/server/profile-router/router.ts | 26 ++++++++
 packages/trpc/server/profile-router/schema.ts |  6 ++
 7 files changed, 163 insertions(+), 38 deletions(-)
 create mode 100644 apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
 create mode 100644 packages/lib/server-only/user/reset-password.ts

diff --git a/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx b/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
new file mode 100644
index 000000000..15b7ebb17
--- /dev/null
+++ b/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
@@ -0,0 +1,36 @@
+import Image from 'next/image';
+import Link from 'next/link';
+
+import backgroundPattern from '~/assets/background-pattern.png';
+import { ResetPasswordForm } from '~/components/forms/reset-password';
+
+export default function ResetPasswordPage({ params }: { params: { token: string } }) {
+  return (
+    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
+      <div className="relative flex w-1/5 items-center gap-x-24">
+        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
+          <Image
+            src={backgroundPattern}
+            alt="background pattern"
+            className="dark:brightness-95 dark:invert dark:sepia"
+          />
+        </div>
+
+        <div className="w-full">
+          <h1 className="text-4xl font-semibold">Reset Password</h1>
+
+          <p className="text-muted-foreground/60 mt-2 text-sm">Please choose your new password </p>
+
+          <ResetPasswordForm token={params.token} className="mt-4" />
+
+          <p className="text-muted-foreground mt-6 text-center text-sm">
+            Don't have an account?{' '}
+            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
+              Sign up
+            </Link>
+          </p>
+        </div>
+      </div>
+    </main>
+  );
+}
diff --git a/apps/web/src/app/(unauthenticated)/reset-password/page.tsx b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
index d782e5039..49071b581 100644
--- a/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
@@ -1,36 +1,5 @@
-import Image from 'next/image';
-import Link from 'next/link';
+import React from 'react';
 
-import backgroundPattern from '~/assets/background-pattern.png';
-import { ResetPasswordForm } from '~/components/forms/reset-password';
-
-export default function ResetPasswordPage() {
-  return (
-    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex w-1/5 items-center gap-x-24">
-        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
-          <Image
-            src={backgroundPattern}
-            alt="background pattern"
-            className="dark:brightness-95 dark:invert dark:sepia"
-          />
-        </div>
-
-        <div className="w-full">
-          <h1 className="text-4xl font-semibold">Reset Password</h1>
-
-          <p className="text-muted-foreground/60 mt-2 text-sm">Please choose your new password </p>
-
-          <ResetPasswordForm className="mt-4" />
-
-          <p className="text-muted-foreground mt-6 text-center text-sm">
-            Don't have an account?{' '}
-            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
-              Sign up
-            </Link>
-          </p>
-        </div>
-      </div>
-    </main>
-  );
+export default function ResetPassword() {
+  return <div>ResetPassword</div>;
 }
diff --git a/apps/web/src/components/forms/reset-password.tsx b/apps/web/src/components/forms/reset-password.tsx
index c07b45d2b..f4e83d203 100644
--- a/apps/web/src/components/forms/reset-password.tsx
+++ b/apps/web/src/components/forms/reset-password.tsx
@@ -7,10 +7,12 @@ import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
+import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
+import { useToast } from '@documenso/ui/primitives/use-toast';
 
 export const ZResetPasswordFormSchema = z
   .object({
@@ -26,13 +28,17 @@ export type TResetPasswordFormSchema = z.infer<typeof ZResetPasswordFormSchema>;
 
 export type ResetPasswordFormProps = {
   className?: string;
+  token: string;
 };
 
-export const ResetPasswordForm = ({ className }: ResetPasswordFormProps) => {
+export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps) => {
   const router = useRouter();
 
+  const { toast } = useToast();
+
   const {
     register,
+    reset,
     handleSubmit,
     formState: { errors, isSubmitting },
   } = useForm<TResetPasswordFormSchema>({
@@ -43,8 +49,24 @@ export const ResetPasswordForm = ({ className }: ResetPasswordFormProps) => {
     resolver: zodResolver(ZResetPasswordFormSchema),
   });
 
-  const onFormSubmit = ({ password, repeatedPassword }: TResetPasswordFormSchema) => {
-    console.log(password, repeatedPassword);
+  const { mutateAsync: resetPassword } = trpc.profile.resetPassword.useMutation();
+
+  const onFormSubmit = async ({ password, repeatedPassword }: TResetPasswordFormSchema) => {
+    // TODO: Handle error with try/catch
+    console.log(password, repeatedPassword, token);
+
+    await resetPassword({
+      password,
+      token,
+    });
+
+    reset();
+
+    toast({
+      title: 'Password updated',
+      description: 'Your password has been updated successfully.',
+      duration: 5000,
+    });
 
     router.push('/signin');
   };
diff --git a/packages/lib/server-only/auth/send-forgot-password.ts b/packages/lib/server-only/auth/send-forgot-password.ts
index 88de43270..e0f74d4ff 100644
--- a/packages/lib/server-only/auth/send-forgot-password.ts
+++ b/packages/lib/server-only/auth/send-forgot-password.ts
@@ -30,7 +30,7 @@ export const sendForgotPassword = async ({ userId }: SendForgotPasswordOptions)
 
   const token = user.PasswordResetToken[0].token;
   const assetBaseUrl = process.env.NEXT_PUBLIC_SITE_URL || 'http://localhost:3000';
-  const resetPasswordLink = `${process.env.NEXT_PUBLIC_SITE_URL}/reset/${token}`;
+  const resetPasswordLink = `${process.env.NEXT_PUBLIC_SITE_URL}/reset-password/${token}`;
 
   const template = createElement(ForgotPasswordTemplate, {
     assetBaseUrl,
diff --git a/packages/lib/server-only/user/reset-password.ts b/packages/lib/server-only/user/reset-password.ts
new file mode 100644
index 000000000..7ce1bcb20
--- /dev/null
+++ b/packages/lib/server-only/user/reset-password.ts
@@ -0,0 +1,66 @@
+import { compare, hash } from 'bcrypt';
+
+import { prisma } from '@documenso/prisma';
+
+import { SALT_ROUNDS } from '../../constants/auth';
+
+export type ResetPasswordOptions = {
+  token: string;
+  password: string;
+};
+
+export const resetPassword = async ({ token, password }: ResetPasswordOptions) => {
+  if (!token) {
+    throw new Error('Invalid Token');
+  }
+
+  const foundToken = await prisma.passwordResetToken.findFirstOrThrow({
+    where: {
+      token,
+    },
+    include: {
+      User: true,
+    },
+  });
+
+  if (!foundToken) {
+    throw new Error('Invalid Token');
+  }
+
+  const now = new Date();
+
+  if (now > foundToken.expiry) {
+    throw new Error('Token has expired');
+  }
+
+  const isSamePassword = await compare(password, foundToken.User.password!);
+
+  if (isSamePassword) {
+    throw new Error('Your new password cannot be the same as your old password.');
+  }
+
+  const hashedPassword = await hash(password, SALT_ROUNDS);
+
+  const transactions = await prisma.$transaction([
+    prisma.user.update({
+      where: {
+        id: foundToken.userId,
+      },
+      data: {
+        password: hashedPassword,
+      },
+    }),
+    prisma.passwordResetToken.deleteMany({
+      where: {
+        userId: foundToken.userId,
+      },
+    }),
+  ]);
+
+  if (!transactions) {
+    throw new Error('Unable to update password');
+  }
+
+  // await sendResetPasswordSuccessMail(foundToken.User);
+  return transactions;
+};
diff --git a/packages/trpc/server/profile-router/router.ts b/packages/trpc/server/profile-router/router.ts
index d5f60658f..de61f64f4 100644
--- a/packages/trpc/server/profile-router/router.ts
+++ b/packages/trpc/server/profile-router/router.ts
@@ -1,12 +1,14 @@
 import { TRPCError } from '@trpc/server';
 
 import { forgotPassword } from '@documenso/lib/server-only/user/forgot-password';
+import { resetPassword } from '@documenso/lib/server-only/user/reset-password';
 import { updatePassword } from '@documenso/lib/server-only/user/update-password';
 import { updateProfile } from '@documenso/lib/server-only/user/update-profile';
 
 import { authenticatedProcedure, procedure, router } from '../trpc';
 import {
   ZForgotPasswordFormSchema,
+  ZResetPasswordFormSchema,
   ZUpdatePasswordMutationSchema,
   ZUpdateProfileMutationSchema,
 } from './schema';
@@ -69,6 +71,7 @@ export const profileRouter = router({
     } catch (err) {
       console.error(err);
 
+      // TODO: Handle this error better
       throw new TRPCError({
         code: 'BAD_REQUEST',
         message:
@@ -76,4 +79,27 @@ export const profileRouter = router({
       });
     }
   }),
+
+  resetPassword: procedure.input(ZResetPasswordFormSchema).mutation(async ({ input }) => {
+    try {
+      const { password, token } = input;
+
+      return await resetPassword({
+        token,
+        password,
+      });
+    } catch (err) {
+      let message =
+        'We were unable to update your profile. Please review the information you provided and try again.';
+
+      if (err instanceof Error) {
+        message = err.message;
+      }
+
+      throw new TRPCError({
+        code: 'BAD_REQUEST',
+        message,
+      });
+    }
+  }),
 });
diff --git a/packages/trpc/server/profile-router/schema.ts b/packages/trpc/server/profile-router/schema.ts
index 65a296bce..641227684 100644
--- a/packages/trpc/server/profile-router/schema.ts
+++ b/packages/trpc/server/profile-router/schema.ts
@@ -13,6 +13,12 @@ export const ZForgotPasswordFormSchema = z.object({
   email: z.string().email().min(1),
 });
 
+export const ZResetPasswordFormSchema = z.object({
+  password: z.string().min(6),
+  token: z.string().min(1),
+});
+
 export type TUpdateProfileMutationSchema = z.infer<typeof ZUpdateProfileMutationSchema>;
 export type TUpdatePasswordMutationSchema = z.infer<typeof ZUpdatePasswordMutationSchema>;
 export type TForgotPasswordFormSchema = z.infer<typeof ZForgotPasswordFormSchema>;
+export type TResetPasswordFormSchema = z.infer<typeof ZResetPasswordFormSchema>;

From 166cbc150fe8bf9c542b5243805f098dd0b3f02b Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 14:31:04 +0000
Subject: [PATCH 67/83] feat: send email to user on successful password reset

---
 .../forgot-password/page.tsx                  |  1 +
 .../src/components/forms/forgot-password.tsx  |  5 +--
 .../template-reset-password.tsx               |  4 +-
 packages/email/templates/reset-password.tsx   | 15 +++----
 .../server-only/auth/send-reset-password.ts   | 44 +++++++++++++++++++
 .../lib/server-only/user/reset-password.ts    |  3 +-
 6 files changed, 57 insertions(+), 15 deletions(-)
 create mode 100644 packages/lib/server-only/auth/send-reset-password.ts

diff --git a/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
index 73cfd01ca..d72719066 100644
--- a/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
@@ -5,6 +5,7 @@ import backgroundPattern from '~/assets/background-pattern.png';
 import { ForgotPasswordForm } from '~/components/forms/forgot-password';
 
 export default function ForgotPasswordPage() {
+  // TODO: Fix width reducing with screen size
   return (
     <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
       <div className="relative flex w-1/5 items-center gap-x-24">
diff --git a/apps/web/src/components/forms/forgot-password.tsx b/apps/web/src/components/forms/forgot-password.tsx
index 61089b629..240f1ece1 100644
--- a/apps/web/src/components/forms/forgot-password.tsx
+++ b/apps/web/src/components/forms/forgot-password.tsx
@@ -43,10 +43,7 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
   const { mutateAsync: forgotPassword } = trpc.profile.forgotPassword.useMutation();
 
   const onFormSubmit = async ({ email }: TForgotPasswordFormSchema) => {
-    // check if the email is available
-    // if not, throw an error
-    // if the email is available, create a password reset token and send an email
-
+    //  TODO: Handle error with try/catch
     await forgotPassword({
       email,
     });
diff --git a/packages/email/template-components/template-reset-password.tsx b/packages/email/template-components/template-reset-password.tsx
index 7dfc0ba78..ee2e8e7b1 100644
--- a/packages/email/template-components/template-reset-password.tsx
+++ b/packages/email/template-components/template-reset-password.tsx
@@ -3,8 +3,8 @@ import { Img, Section, Tailwind, Text } from '@react-email/components';
 import * as config from '@documenso/tailwind-config';
 
 export interface TemplateResetPasswordProps {
-  inviterName: string;
-  inviterEmail: string;
+  userName: string;
+  userEmail: string;
   assetBaseUrl: string;
 }
 
diff --git a/packages/email/templates/reset-password.tsx b/packages/email/templates/reset-password.tsx
index 6443661b9..0168b82e8 100644
--- a/packages/email/templates/reset-password.tsx
+++ b/packages/email/templates/reset-password.tsx
@@ -23,9 +23,8 @@ import {
 export type ResetPasswordTemplateProps = Partial<TemplateResetPasswordProps>;
 
 export const ResetPasswordTemplate = ({
-  inviterName = 'Lucas Smith',
-  inviterEmail = 'lucas@documenso.com',
-
+  userName = 'Lucas Smith',
+  userEmail = 'lucas@documenso.com',
   assetBaseUrl = 'http://localhost:3002',
 }: ResetPasswordTemplateProps) => {
   const previewText = `Password Reset Successful`;
@@ -58,8 +57,8 @@ export const ResetPasswordTemplate = ({
                 />
 
                 <TemplateResetPassword
-                  inviterName={inviterName}
-                  inviterEmail={inviterEmail}
+                  userName={userName}
+                  userEmail={userEmail}
                   assetBaseUrl={assetBaseUrl}
                 />
               </Section>
@@ -68,9 +67,9 @@ export const ResetPasswordTemplate = ({
             <Container className="mx-auto mt-12 max-w-xl">
               <Section>
                 <Text className="my-4 text-base font-semibold">
-                  Hi, {inviterName}{' '}
-                  <Link className="font-normal text-slate-400" href="mailto:{inviterEmail}">
-                    ({inviterEmail})
+                  Hi, {userName}{' '}
+                  <Link className="font-normal text-slate-400" href="mailto:{userEmail}">
+                    ({userEmail})
                   </Link>
                 </Text>
 
diff --git a/packages/lib/server-only/auth/send-reset-password.ts b/packages/lib/server-only/auth/send-reset-password.ts
new file mode 100644
index 000000000..9cd09fe5a
--- /dev/null
+++ b/packages/lib/server-only/auth/send-reset-password.ts
@@ -0,0 +1,44 @@
+import { createElement } from 'react';
+
+import { mailer } from '@documenso/email/mailer';
+import { render } from '@documenso/email/render';
+import { ResetPasswordTemplate } from '@documenso/email/templates/reset-password';
+import { prisma } from '@documenso/prisma';
+
+export interface SendResetPasswordOptions {
+  userId: number;
+}
+
+export const sendResetPassword = async ({ userId }: SendResetPasswordOptions) => {
+  const user = await prisma.user.findFirstOrThrow({
+    where: {
+      id: userId,
+    },
+  });
+
+  if (!user) {
+    throw new Error('User not found');
+  }
+
+  const assetBaseUrl = process.env.NEXT_PUBLIC_SITE_URL || 'http://localhost:3000';
+
+  const template = createElement(ResetPasswordTemplate, {
+    assetBaseUrl,
+    userEmail: user.email,
+    userName: user.name || '',
+  });
+
+  return await mailer.sendMail({
+    to: {
+      address: user.email,
+      name: user.name || '',
+    },
+    from: {
+      name: process.env.NEXT_PRIVATE_SMTP_FROM_NAME || 'Documenso',
+      address: process.env.NEXT_PRIVATE_SMTP_FROM_ADDRESS || 'noreply@documenso.com',
+    },
+    subject: 'Password Reset Success!',
+    html: render(template),
+    text: render(template, { plainText: true }),
+  });
+};
diff --git a/packages/lib/server-only/user/reset-password.ts b/packages/lib/server-only/user/reset-password.ts
index 7ce1bcb20..58a93749c 100644
--- a/packages/lib/server-only/user/reset-password.ts
+++ b/packages/lib/server-only/user/reset-password.ts
@@ -3,6 +3,7 @@ import { compare, hash } from 'bcrypt';
 import { prisma } from '@documenso/prisma';
 
 import { SALT_ROUNDS } from '../../constants/auth';
+import { sendResetPassword } from '../auth/send-reset-password';
 
 export type ResetPasswordOptions = {
   token: string;
@@ -61,6 +62,6 @@ export const resetPassword = async ({ token, password }: ResetPasswordOptions) =
     throw new Error('Unable to update password');
   }
 
-  // await sendResetPasswordSuccessMail(foundToken.User);
+  await sendResetPassword({ userId: foundToken.userId });
   return transactions;
 };

From 2327b15e0dc4d5c5f0ee60f70464f5a37f88d900 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 14:39:42 +0000
Subject: [PATCH 68/83] fix: width reducing with screen size

---
 apps/web/src/app/(unauthenticated)/forgot-password/page.tsx    | 3 +--
 .../src/app/(unauthenticated)/reset-password/[token]/page.tsx  | 2 +-
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
index d72719066..af1c96e6f 100644
--- a/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
@@ -5,10 +5,9 @@ import backgroundPattern from '~/assets/background-pattern.png';
 import { ForgotPasswordForm } from '~/components/forms/forgot-password';
 
 export default function ForgotPasswordPage() {
-  // TODO: Fix width reducing with screen size
   return (
     <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex w-1/5 items-center gap-x-24">
+      <div className="relative flex items-center gap-x-24 md:w-[500px]">
         <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
           <Image
             src={backgroundPattern}
diff --git a/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx b/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
index 15b7ebb17..0e8492030 100644
--- a/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
@@ -7,7 +7,7 @@ import { ResetPasswordForm } from '~/components/forms/reset-password';
 export default function ResetPasswordPage({ params }: { params: { token: string } }) {
   return (
     <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex w-1/5 items-center gap-x-24">
+      <div className="relative flex items-center gap-x-24 md:w-[500px]">
         <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
           <Image
             src={backgroundPattern}

From 45f447c796190cc16ebd9eb51547e3ce119d6cde Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 14:41:24 +0000
Subject: [PATCH 69/83] feat: better error handling in forgotPassword trpc
 router

---
 packages/trpc/server/profile-router/router.ts | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/packages/trpc/server/profile-router/router.ts b/packages/trpc/server/profile-router/router.ts
index de61f64f4..adbb93a80 100644
--- a/packages/trpc/server/profile-router/router.ts
+++ b/packages/trpc/server/profile-router/router.ts
@@ -69,13 +69,16 @@ export const profileRouter = router({
         email,
       });
     } catch (err) {
-      console.error(err);
+      let message =
+        'We were unable to update your profile. Please review the information you provided and try again.';
+
+      if (err instanceof Error) {
+        message = err.message;
+      }
 
-      // TODO: Handle this error better
       throw new TRPCError({
         code: 'BAD_REQUEST',
-        message:
-          'We were unable to update your profile. Please review the information you provided and try again.',
+        message,
       });
     }
   }),

From 079963cde83282a9055a577d5f368f607bf20844 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 15:09:41 +0000
Subject: [PATCH 70/83] feat: better error handling and better toast messages

---
 .../src/components/forms/forgot-password.tsx  | 41 ++++++++++-------
 .../src/components/forms/reset-password.tsx   | 45 ++++++++++++-------
 .../server-only/auth/send-reset-password.ts   |  2 +
 .../lib/server-only/user/forgot-password.ts   | 19 +++++---
 .../lib/server-only/user/reset-password.ts    |  8 ++--
 packages/trpc/server/profile-router/router.ts |  6 +--
 6 files changed, 76 insertions(+), 45 deletions(-)

diff --git a/apps/web/src/components/forms/forgot-password.tsx b/apps/web/src/components/forms/forgot-password.tsx
index 240f1ece1..1dcd0f2b1 100644
--- a/apps/web/src/components/forms/forgot-password.tsx
+++ b/apps/web/src/components/forms/forgot-password.tsx
@@ -7,6 +7,7 @@ import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
+import { TRPCClientError } from '@documenso/trpc/client';
 import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
@@ -43,23 +44,33 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
   const { mutateAsync: forgotPassword } = trpc.profile.forgotPassword.useMutation();
 
   const onFormSubmit = async ({ email }: TForgotPasswordFormSchema) => {
-    //  TODO: Handle error with try/catch
-    await forgotPassword({
-      email,
-    });
+    try {
+      await forgotPassword({ email });
 
-    toast({
-      title: 'Password updated',
-      description: 'Your password has been updated successfully.',
-      duration: 5000,
-    });
+      toast({
+        title: 'Reset email sent',
+        description: 'Your password reset mail has been sent successfully.',
+        duration: 5000,
+      });
 
-    await new Promise((resolve) => {
-      setTimeout(resolve, 2000);
-    });
-
-    reset();
-    router.push('/check-email');
+      reset();
+      router.push('/check-email');
+    } catch (err) {
+      if (err instanceof TRPCClientError && err.data?.code === 'BAD_REQUEST') {
+        toast({
+          title: 'An error occurred',
+          description: err.message,
+          variant: 'destructive',
+        });
+      } else {
+        toast({
+          title: 'An unknown error occurred',
+          variant: 'destructive',
+          description:
+            'We encountered an unknown error while attempting to send your email. Please try again later.',
+        });
+      }
+    }
   };
 
   return (
diff --git a/apps/web/src/components/forms/reset-password.tsx b/apps/web/src/components/forms/reset-password.tsx
index f4e83d203..af6944ef4 100644
--- a/apps/web/src/components/forms/reset-password.tsx
+++ b/apps/web/src/components/forms/reset-password.tsx
@@ -7,6 +7,7 @@ import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
+import { TRPCClientError } from '@documenso/trpc/client';
 import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
@@ -51,24 +52,38 @@ export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps)
 
   const { mutateAsync: resetPassword } = trpc.profile.resetPassword.useMutation();
 
-  const onFormSubmit = async ({ password, repeatedPassword }: TResetPasswordFormSchema) => {
-    // TODO: Handle error with try/catch
-    console.log(password, repeatedPassword, token);
+  const onFormSubmit = async ({ password }: Omit<TResetPasswordFormSchema, 'repeatedPassword'>) => {
+    try {
+      await resetPassword({
+        password,
+        token,
+      });
 
-    await resetPassword({
-      password,
-      token,
-    });
+      reset();
 
-    reset();
+      toast({
+        title: 'Password updated',
+        description: 'Your password has been updated successfully.',
+        duration: 5000,
+      });
 
-    toast({
-      title: 'Password updated',
-      description: 'Your password has been updated successfully.',
-      duration: 5000,
-    });
-
-    router.push('/signin');
+      router.push('/signin');
+    } catch (err) {
+      if (err instanceof TRPCClientError && err.data?.code === 'BAD_REQUEST') {
+        toast({
+          title: 'An error occurred',
+          description: err.message,
+          variant: 'destructive',
+        });
+      } else {
+        toast({
+          title: 'An unknown error occurred',
+          variant: 'destructive',
+          description:
+            'We encountered an unknown error while attempting to reset your password. Please try again later.',
+        });
+      }
+    }
   };
 
   return (
diff --git a/packages/lib/server-only/auth/send-reset-password.ts b/packages/lib/server-only/auth/send-reset-password.ts
index 9cd09fe5a..95e49914d 100644
--- a/packages/lib/server-only/auth/send-reset-password.ts
+++ b/packages/lib/server-only/auth/send-reset-password.ts
@@ -10,6 +10,8 @@ export interface SendResetPasswordOptions {
 }
 
 export const sendResetPassword = async ({ userId }: SendResetPasswordOptions) => {
+  // TODO: Better Error Handling
+
   const user = await prisma.user.findFirstOrThrow({
     where: {
       id: userId,
diff --git a/packages/lib/server-only/user/forgot-password.ts b/packages/lib/server-only/user/forgot-password.ts
index e309c9006..fcf6b7766 100644
--- a/packages/lib/server-only/user/forgot-password.ts
+++ b/packages/lib/server-only/user/forgot-password.ts
@@ -6,14 +6,19 @@ import { TForgotPasswordFormSchema } from '@documenso/trpc/server/profile-router
 import { sendForgotPassword } from '../auth/send-forgot-password';
 
 export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
-  const user = await prisma.user.findFirstOrThrow({
-    where: {
-      email: email.toLowerCase(),
-    },
-  });
+  let user;
+  try {
+    user = await prisma.user.findFirstOrThrow({
+      where: {
+        email: email.toLowerCase(),
+      },
+    });
+  } catch (error) {
+    throw new Error('No account found with that email address.');
+  }
 
   if (!user) {
-    throw new Error('A password reset email has been sent.');
+    throw new Error('No account found with that email address.');
   }
 
   const existingToken = await prisma.passwordResetToken.findFirst({
@@ -42,7 +47,7 @@ export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
       },
     });
   } catch (error) {
-    throw new Error('Something went wrong');
+    throw new Error('We were unable to send your email. Please try again.');
   }
 
   return await sendForgotPassword({
diff --git a/packages/lib/server-only/user/reset-password.ts b/packages/lib/server-only/user/reset-password.ts
index 58a93749c..f539115e9 100644
--- a/packages/lib/server-only/user/reset-password.ts
+++ b/packages/lib/server-only/user/reset-password.ts
@@ -12,7 +12,7 @@ export type ResetPasswordOptions = {
 
 export const resetPassword = async ({ token, password }: ResetPasswordOptions) => {
   if (!token) {
-    throw new Error('Invalid Token');
+    throw new Error('Invalid token provided. Please try again.');
   }
 
   const foundToken = await prisma.passwordResetToken.findFirstOrThrow({
@@ -25,13 +25,13 @@ export const resetPassword = async ({ token, password }: ResetPasswordOptions) =
   });
 
   if (!foundToken) {
-    throw new Error('Invalid Token');
+    throw new Error('Invalid token provided. Please try again.');
   }
 
   const now = new Date();
 
   if (now > foundToken.expiry) {
-    throw new Error('Token has expired');
+    throw new Error('Token has expired. Please try again.');
   }
 
   const isSamePassword = await compare(password, foundToken.User.password!);
@@ -59,7 +59,7 @@ export const resetPassword = async ({ token, password }: ResetPasswordOptions) =
   ]);
 
   if (!transactions) {
-    throw new Error('Unable to update password');
+    throw new Error('We were unable to reset your password. Please try again.');
   }
 
   await sendResetPassword({ userId: foundToken.userId });
diff --git a/packages/trpc/server/profile-router/router.ts b/packages/trpc/server/profile-router/router.ts
index adbb93a80..74920c0e6 100644
--- a/packages/trpc/server/profile-router/router.ts
+++ b/packages/trpc/server/profile-router/router.ts
@@ -69,8 +69,7 @@ export const profileRouter = router({
         email,
       });
     } catch (err) {
-      let message =
-        'We were unable to update your profile. Please review the information you provided and try again.';
+      let message = 'We were unable to send your email. Please try again.';
 
       if (err instanceof Error) {
         message = err.message;
@@ -92,8 +91,7 @@ export const profileRouter = router({
         password,
       });
     } catch (err) {
-      let message =
-        'We were unable to update your profile. Please review the information you provided and try again.';
+      let message = 'We were unable to reset your password. Please try again.';
 
       if (err instanceof Error) {
         message = err.message;

From b93e3c0b52f82b69162b6796f9b1e97b0a389473 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 15:13:19 +0000
Subject: [PATCH 71/83] feat: add invalid reset token page

---
 .../(unauthenticated)/reset-password/page.tsx | 35 +++++++++++++++++--
 1 file changed, 32 insertions(+), 3 deletions(-)

diff --git a/apps/web/src/app/(unauthenticated)/reset-password/page.tsx b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
index 49071b581..982fe54c4 100644
--- a/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
@@ -1,5 +1,34 @@
-import React from 'react';
+import Image from 'next/image';
+import Link from 'next/link';
 
-export default function ResetPassword() {
-  return <div>ResetPassword</div>;
+import backgroundPattern from '~/assets/background-pattern.png';
+
+export default function ResetPasswordPage() {
+  return (
+    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
+      <div className="relative flex items-center md:w-[500px]">
+        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
+          <Image
+            src={backgroundPattern}
+            alt="background pattern"
+            className="dark:brightness-95 dark:invert dark:sepia"
+          />
+        </div>
+
+        <div className="w-full text-center">
+          <h1 className="text-4xl font-semibold">Reset Password</h1>
+
+          <p className="text-muted-foreground/60 mt-2 text-sm">
+            The token you provided is invalid. Please try again.
+          </p>
+
+          <p className="text-muted-foreground mt-6 text-center text-sm">
+            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
+              Sign in
+            </Link>
+          </p>
+        </div>
+      </div>
+    </main>
+  );
 }

From d4659eee07a3f1b5699ecc630011d5bbb3c4f997 Mon Sep 17 00:00:00 2001
From: Ephraim Atta-Duncan <ephraimduncan68@gmail.com>
Date: Mon, 18 Sep 2023 17:58:01 +0000
Subject: [PATCH 72/83] feat: add deploying documenso with vercel, supabase and
 resend

---
 .../deploy-with-vercel-supabase-resend.mdx    | 198 ++++++++++++++++++
 .../public/blog/blog-author-duncan.jpeg       | Bin 0 -> 21395 bytes
 2 files changed, 198 insertions(+)
 create mode 100644 apps/marketing/content/blog/deploy-with-vercel-supabase-resend.mdx
 create mode 100644 apps/marketing/public/blog/blog-author-duncan.jpeg

diff --git a/apps/marketing/content/blog/deploy-with-vercel-supabase-resend.mdx b/apps/marketing/content/blog/deploy-with-vercel-supabase-resend.mdx
new file mode 100644
index 000000000..fb00f40bf
--- /dev/null
+++ b/apps/marketing/content/blog/deploy-with-vercel-supabase-resend.mdx
@@ -0,0 +1,198 @@
+---
+title: 'Deploying Documenso with Vercel, Supabase and Resend'
+description: This is the first part of the new Building Documenso series, where I describe the challenges and design choices that we make while building the world’s most open signing platform.
+authorName: 'Ephraim Atta-Duncan'
+authorImage: '/blog/blog-author-duncan.jpeg'
+authorRole: 'Software Engineer Intern'
+date: 2023-09-08
+tags:
+  - Open Source
+  - Self Hosting
+  - Tutorial
+---
+
+In this article, we'll walk you through how to deploy and self-host Documenso using Vercel, Supabase, and Resend.
+
+You'll learn:
+
+- How to set up a Postgres database using Supabase,
+- How to install SMTP with Resend,
+- How to deploy your project with Vercel.
+
+If you don't know what [Documenso](https://documenso.com/) is, it's an open-source alternative to DocuSign, with the mission to create an open signing infrastructure while embracing openness, cooperation, and transparency.
+
+## Prerequisites
+
+Before we start, make sure you have a [GitHub](https://github.com/signup) account. You also need [Node.js](https://nodejs.org/en) and [npm](https://www.npmjs.com/) installed on your local machine (note: you also have the option to host it on a cloud environment using Gitpod for example; that would be another post). If you need accounts on Vercel, Supabase, and Resend, create them by visiting the [Vercel](https://vercel.com/), [Supabase](https://supabase.com/), and [Resend](https://resend.com/) websites.
+
+Checklist:
+
+- [ ] Have a GitHub account
+- [ ] Install Node.js
+- [ ] Install npm
+- [ ] Have a Vercel account
+- [ ] Have a Supabase account
+- [ ] Have a Resend account
+
+## Step-by-Step guide to deploying Documenso with Vercel, Supabase, and Resend
+
+To deploy Documenso, we'll take the following steps:
+
+1. Fork the Documenso repository
+2. Clone the forked repository and install dependencies
+3. Create a new project on Supabase
+4. Copy the Supabase Postgres database connection URL
+5. Create a `.env` file
+6. Run the migration on the Supabase Postgres Database
+7. Get your SMTP Keys on Resend
+8. Create a new project on Vercel
+9. Add Environment Variables to your Vercel project
+
+So, you're ready? Let’s dive in!
+
+### Step 1: Fork the Documenso repository
+
+Start by creating a fork of Documenso on GitHub. You can do this by visiting the [Documenso repository](https://github.com/documenso/documenso) and clicking on the 'Fork' button. (Also, star the repo!)
+
+![Documenso](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/wkcujctpf86p56bju3mq.png)
+
+Choose your GitHub profile as the owner and click on 'Create fork' to create a fork of the repo.
+
+![Fork the Documenso repository on GitHub](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/xf49r2byu9nnd1465niy.png)
+
+### Step 2: Clone the forked repository and install dependencies
+
+Clone the forked repository to your local machine in any directory of your choice. Open your terminal and enter the following commands:
+
+```bash
+# Clone the repo using Github CLI
+gh repo clone [your_github_username]/documenso
+
+# Clone the repo using Git
+git clone <https://github.com/[your_github_username]/documenso.git>
+```
+
+You can now navigate into the directory and install the project’s dependencies:
+
+```bash
+cd documenso
+npm install
+```
+
+### Step 3: Create a new project on Supabase
+
+Now, let's set up the database.
+
+If you haven't already, create a new project on Supabase. This will automatically create a new Postgres database for you.
+
+On your Supabase dashboard, click the '**New project**' button and choose your organization.
+
+On the '**Create a new project**' page, set a database name of **documenso** and a secure password for your database. Choose a region closer to you, a pricing plan, and click on '**Create new project**' to create your project.
+
+![Create a new project on Supabase](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/w5lqz771iupjyi1ekfdz.png)
+
+### Step 4: Copy the Supabase Postgres database connection URL
+
+In your project, click the '**Settings**' icon at the bottom left.
+
+Under the '**Project Settings**' section, click '**Database**' and scroll down to the '**Connection string**' section. Copy the '**URI**' and update it with the password you chose in the previous step.
+
+![Copy the Supabase Postgres database connection URL](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/y1ldu3qrg9moednbzjij.png)
+
+### Step 5: Create a `.env` file
+
+Create a `.env` file in the root of your project by copying the contents of the `.env.example` file.
+
+Add the connection string you copied from your Supabase dashboard to the `DATABASE_URL` variable in the `.env` file.
+
+The `.env` should look like this:
+
+```bash
+DATABASE_URL="postgres://postgres:[YOUR-PASSWORD]@db.[YOUR-PROJECT-REF].supabase.co:5432/postgres"
+```
+
+### Step 6: Run the migration on the Supabase Postgres Database
+
+Run the migration on the Supabase Postgres Database using the following command:
+
+```bash
+npx prisma migrate deploy
+```
+
+### Step 7: Get your SMTP Keys on Resend
+
+So, you've just cloned Documenso, installed dependencies on your local machine, and set your database using Supabase. Now, SMTP is missing. Emails won't go out! Let's fix it with Resend.
+
+In the **[Resend](https://resend.com/)** dashboard, click 'Add API Key' to create a key for Resend SMTP.
+
+![Create a key for Resend SMTP](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/uh2rztgn09mlvecl34i5.png)
+
+Next, add and verify your domain in the '**Domains**' section on the sidebar. This will allow you to send emails from any address associated with your domain.
+
+![Verify your domain on Resend](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/nxgie0esz530vq5a494o.png)
+
+You can update your `.env` file with the following:
+
+```jsx
+SMTP_MAIL_HOST = 'smtp.resend.com';
+SMTP_MAIL_PORT = '25';
+SMTP_MAIL_USER = 'resend';
+SMTP_MAIL_PASSWORD = 'YOUR_RESEND_API_KEY';
+MAIL_FROM = 'noreply@[YOUR_DOMAIN]';
+```
+
+### Step 8: Create a new project on Vercel
+
+You set the database with Supabase and are SMTP-ready with Resend. Almost there! The next step is to deploy the project — we'll use Vercel for that.
+
+On your Vercel dashboard, create a new project using the forked project from your GitHub repositories. Select the project among the options and click '**Import**' to start running Documenso.
+
+![Create a new project on Vercel](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/gdy97tltpnu7vf4fc11f.png)
+
+### Step 9: Add Environment Variables to your Vercel project
+
+In the '**Configure Project**' page, adding the required Environmental Variables is essential to ensure the application deploys without any errors.
+
+Specifically, for the `NEXT_PUBLIC_WEBAPP_URL` and `NEXTAUTH_URL` variables, you must add `.vercel.app` to your Project Name. This will form the deployment URL, which will be in the format: `https://[project_name].vercel.app`.
+
+For example, in my case, the deployment URL is `https://documenso-supabase-web.vercel.app`.
+
+![Add Environment Variables to your Vercel project](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/aru33fk1i19h0valffow.png)
+
+This is a sample `.env` to deploy. Copy and paste it to auto-populate the fields and click ‘**Deploy.’** Now, you only need to wait for your project to deploy. You’re going live — enjoy!
+
+```bash
+DATABASE_URL='postgresql://postgres:typeinastrongpassword@db.njuigobjlbteahssqbtw.supabase.co:5432/postgres'
+
+NEXT_PUBLIC_WEBAPP_URL='https://documenso-supabase-web.vercel.app'
+NEXTAUTH_SECRET='something gibrish to encrypt your jwt tokens'
+NEXTAUTH_URL='https://documenso-supabase-web.vercel.app'
+
+# Get a Sendgrid Api key here: <https://signup.sendgrid.com>
+SENDGRID_API_KEY=''
+
+# Set SMTP credentials to use SMTP instead of the Sendgrid API.
+SMTP_MAIL_HOST='smtp.resend.com'
+SMTP_MAIL_PORT='25'
+SMTP_MAIL_USER='resend'
+SMTP_MAIL_PASSWORD='YOUR_RESEND_API_KEY'
+MAIL_FROM='noreply@[YOUR_DOMAIN]'
+
+NEXT_PUBLIC_ALLOW_SIGNUP=true
+```
+
+## Wrapping up
+
+![Deploying Documenso](https://dev-to-uploads.s3.amazonaws.com/uploads/articles/secg29j9j40o4u2oa8o8.png)
+
+Congratulations! 🎉 You've successfully deployed Documenso using Vercel, Supabase, and Resend. You're now ready to create and sign your own documents with your self-hosted Documenso!
+
+In this step-by-step guide, you learned how to:
+
+- set up a Postgres database using Supabase,
+- install SMTP with Resend,
+- deploy your project with Vercel.
+
+Over to you! How was the tutorial? If you enjoyed it, [please do share](https://twitter.com/documenso/status/1700141802693480482)! And if you have any questions or comments, please reach out to me on [Twitter / X](https://twitter.com/EphraimDuncan_) (DM open) or [Discord](https://documen.so/discord).
+
+We're building an open-source alternative to DocuSign and welcome every contribution. Head over to the GitHub repository and [leave us a Star](https://github.com/documenso/documenso)!
diff --git a/apps/marketing/public/blog/blog-author-duncan.jpeg b/apps/marketing/public/blog/blog-author-duncan.jpeg
new file mode 100644
index 0000000000000000000000000000000000000000..a4a52711c7f3f60c07e41b7e1c29cf7d22a94b75
GIT binary patch
literal 21395
zcmbTdXEdB&^fo+tCm6kVLx?g&ClS4mUZXQa??ew`^v*=o8H^T04HBYDw87{}^e(z+
z$>aBbp7pHv<NLm6tuyoCo|&_+dtYbo>)vP2zxjVlfHwd_e0&0YJVF8j0wN+pVp1R(
zDG3QF0~Iv|kcE+rm4%U+nVnmhkDc=|7c(>eQ_y1(Q7{<H#wRT=B_<~<4i>{AA|fIs
zA*ClHqZi{~<`Db;JpT0nC<(E?V|~ZL;sjt*V&PC?{p-gn0|2n_u>NNN{?EX|#=*tI
zCm<vuCV2$F#=^nD#>K(I!^M60Wcb5104^mS6^H0Ed};$b0!|;GSae1yA=mT9UK+^M
zF}JwAZwwJJEgd}rBM&bhKS%&9A^B8FT1NSWimIBrhNhvBv5BdfxrKwHle3E})XmR7
zATTI6BsBI-TztaYL|A54c1~_yegV9!9D%H;tU^^ceQa)NZENrN^tG>lU~p)7WE4F;
zGmDv<UszmSTi@8++TPjSJ2^c&zqq{mbA5va!1>>B9$x=9p#KLR$_G5yxVSjD1pnc|
z!VY?vIFz_}9HRJC&kP9ce5g6aq6vY|GfEqKiMYfe$29i7Q^d5~;8mWJ{~-MjqW^b*
zV*Y<2`oDnwFP?vk08$*R2Z!NM0u%w~1@1CCuUk;;Yac!5HtTVGbCboZ<oy}rsybTy
z6>?$`pwx@^?f9P*TT}{ZnQt+}<CaBs0nV3apG1Zvn8ijs`^zcM>wlY|OS?>hhgYlu
z#&di;H$1qFS128L_tbKq9}Oh_hU|(m1Q5=u$;N5jzY7pwwf7qR^qV}`d$AqvbiG$k
zVE8J|Bb~J!6&iq|Q34qGq7KywaK<z#Xt1|oIXX^4W3>HI=&j6DC;)O%4#ZL-(8R-s
z0W37F7^O>afz45nNvvljXniadmMS11+ptkXi3kRAEx|3BQUQQ35S1Bl=&qq%j%U1s
z7t;2HXs~-p`)$g3E$%-++O)YghPVB;d{;yBi+?yj3zSNRW6T1(W&l%Hwbq>4-`ELN
zv+xFbRInqK#$<u|xQ_N&3@FL1^g1kGIbzU~>ypxuILpp&-2q;H`t0ljh<y|n7Z@!H
zfjDsHL?r>=7|z>HhoPxC1r0LB%$EjKP2oDErW?jg$kFo}9e$iFqs<~oTzrN~pTgPu
znbsydqLFiCTqW0dk%{sCNTp5ot?u@YARHs{Q^BP9O?o%cWkr4ec-fM<DWBst&X2nL
z4(`nc_fflCYq9+;hs`$WF|Xe0t;e;?_H`9;?(Z)?mwF}~)vG{NY6m7C3HI0D=>*|T
z<87)~HlLKT3!?B*s!*#0=YueNw@GG}wOXD72su3)GDIjB>GOL1n>|*2)1V+yg(*d^
z#r@eS%UjzaPNZ(j^I@sCUUIXWm1E(mIT<3z3gQ5|N6pPsnq&ZB{#~uYDJ6VYL^&7$
zdAR=^2qbtBU}2$YphN=q;75P~**GddKyw0;p)876cgA)~iN;fJcs8o|<d1vA`Vkw_
z_Q_oYhK8)PvHpv{!H*oZQU0>8Y!nvlGREqmv%RKN^afg5CU2es4N;;hZ+L+Au*U!>
z$Q2<P2YtBf9wmgk?Z8t}9nL6aZ+`F|6rulBT%!#h4kUF3#f6}BR724X$r^+?KA#((
zyxKMuB59kJ_;?BFCeuzw;c&qz1Jxui&vfWb4UgQhfA{%G^kzy7gmNTCegajnhY?HH
zHTYJ9B!A+WN=Cf(Ij@g2KzlZyi*YH)3oee;zLGXDsz4uZg@2&u+I{|Ec;MhVjW}Mq
z-uZM^OL~96KkzT3Ybp6?5Ocr>4OXV6RGnSo_=^E8-rQOMPBgkc;NARNbn8}R0yv<x
zP1Wu!T(BWp2?sXTri_g@g#AHHgeJjIH3cX|BO;+9OxLabF?FyR(nu>5Ul|LpZb~*v
z;!&_|6qTyP(f6tpG}L}a4cW?PjF~y2WrJHJi&T1!iLk)6(FRHhjGFvo0RFOc$RxHt
z)U^bEN)yTtKs?YpK8pCkLs%Bu*%C3a_h8KZ#InSLV{Y6T%FW&hUP1X^w)2;0zqWQ;
zJg;uN-)ojJE;CzI<p;Jn#)BR<9R8FpVgSGcY}Uty7<L-EVi9lUyJ^}nfZ_Dt^;Hx-
zIM#Av)<II0jL8=zcwDgLIxSUxmhbTv#=vz9EbAG<&<Ao+VY`J8X7Uzb`O;OR<YRz$
zzv&|X?JdT_b86R6Y+7^n?VCC&A&u5#L#z_WMr<!~fWG80f5uQ~hKtXSvH@X!5^9oM
z6y9975jdN8c+#@=s`9>s(mcCEq4`LVF-c}7N$P?or8^<iyC9DFtB)kcdgj+fYM!>h
zvyk6L2w`Q*AYk-9*d{rkvTiX8Q!GZESVku7R<?}#4Ivt;lZEwPmz7g}s1rU8HT*=A
zFr~Ai1P0tFYrw^oVq#T*ST@`D=CxP@n_gDM>2nH|Pg}Cb>|cFY2I_zD)`ymgPF>U_
zp;1G<HEzL`RAwhyI{0}KrJPf$t_Unu{<0`482<o(V^<ZVzLo_97^-i*R}Y=UHe@U|
zXdEDQpr3K-Km-jaO$&$4L_3O%DWJIbEE&ekD26NmC9a6!3*?xyo0NU}!={t+uS)xg
zk~Ipq`B=1B`rSvT60U9h)`JB)V~8apsvbIxYA?a*W~v%^2$%17eKb;C0VQa(KDL3D
z#*e5+j6`KHfCsQSKA&Vu?A*<}!{<)5obz2O6fa3DaJ>Ts`IFkBnHz03Mc0QxTK0rt
zboqB=W_g8;JcZDq(*s|NE+(#%Wv6okS;k}&dw!l_3c2wc;=Wz+7PY+zD$lp7NSS_}
zuxoYa^<J4K)V;!AA`e@ti#*gw%b@B#CuvDZGDL;*fcdi06ZfL}IgJ4NygDxC*EHH-
z-zd?kRLkITY)2)*m~p=XOy_GJxE}~HP`5`v&^qe8EOjOuz^IJLO}{9?&w|A$V=5#_
zyFsD_ZH5Pi<AOK_Gmfc}j(pJ;jGdGW1HK>CZC1{94Os?VgM$p=e_hTfl&!hvzDi5}
z#%`Y=JU(@}ovo{)ed@Anaau0vcI{ioRKZg7YAJRR?xBYCJr$4eV;WBn0G4f}mbH+T
z70oi4Ke=+<Oux?1IxL!*?XX^`(Xp>=0q?Fi&<Kk$!Wo5W5|B^epUd(wxc=Zi=k;#c
z#ue%W!ykFx7u6L%jCXZFVmDLcbi%2w)z2zy2J<G;1MrJwus6Z8cD^gUcc=)oJjJG(
z81@i2hrS&@TeGP72xnJRW9vzs@an!c4qThjx(|~at3(I|`8+GZhl5-zuo*Q$t_?&g
zLOis9G8iZdEnSXX_^?rnvKReGAr2Dk4B%fN?CGd#tls<}@Txe>iNEBr`g9}xn27Fr
zH!mogsI2Exgn-j$t~y9rQd0J`<z(2*elQ}SR`>kku?%Anbz-ZqDW;GYB7@<7@b{BN
z<{<Di9jKKXc)!+2yBUR|Jx<+vKQR2t6KG=AeTBk1z9?JU1QS&)d^C>x#Z|`!HB{-#
z{<v70m!a<R(gLOt&Eop%vHjj|{+O>J>XaF4oGef#k&JS?(3HpLG#7WRRF=H&j*Cff
zq{~6*$0w~C{j)6C2Kx-UH<6*HW^H)hF#|pa-|~EXz6?1md%u`Onp|>@m>00pSE0qG
zrk~K%<7b_f1Suiya^M`h+NXYtbr~8k=I5Kr_-dLdbqUCqOFDv(UkSc%TiI3+l5Zp9
zKfEcoMGiB6A9Lq9XklnjzLThiq&<dQx=I(M`d^$YzE}1Ctqof~9pK9ag^8Z!;}7)y
zg1am@T}VuZaG}$C_%9u{q<?eTX*Ah}nksn=h}Pw?fWjmd{0RKZ8_UNd_AOOs_1x^5
z3>UMKlp$hrXS-V4uxUx6T?5IY?zktx(lC1`@MpJ~ZC#dX$>|h2hpp%M51fHP8`J&4
z@fZWWd|`zw8U~p00rX2Z+gI0ZmJvM*0c!5pD#Y2a9PITl(J%sshOLO7`a`I6Iu#n0
zHlBtlY~qj;0UzOXqS1$ZjmRZ!VLmq}g@>TCXa!k=0iJ`D*7AV%QFa<ID|;B84?hrL
zpd^V4!O{%X=YQm<i@RROgM$R%y~Ct`WIb=Tj}p*hQWrJL`()MR;;HIh&YAxWu7lO1
zx4M*IubpC4+$ZiS2S1N}#D#p}F;f%+&r(_o1ec&8#Pj_TP%>WV0s_ZxjDP<bq680t
zM3i91YJxyfB|a*^2Tk`dVcL+Q?1wicam^3}5YP!lLLZDw^5EAD2bwt$<LI15qpAi3
z**Q+*_%bOhih-0WQL)1>HK9?V#)Sqjt5V<6R>N^n{FL7D>;c3Uvhgg?g$aC4Lt+M!
z7c{E_mmm)&{lr<CH_xlsbPT2?IzNIjZyk_NoMBroPvv6;n5m6w%QHML8`nM+lrfPx
zAi_NNpE8M+^NzWeLSn&Zud;Ur9~qum@{}asR>`&SxQl48^TBplo}L&mf#s{Yi=Uy)
z2B}33HF+=V9PATXMCSRBDu{&dE<_IjAzxr0IvQr=qC2D+lx{8d`QiwwOd5dFiN30M
z$IHUsNrvyp8lRiKs4io$p()E~)mwt_QL4E1B_GVXdf!|5U6w))lA6Q1O;CzFqd+qE
z+6}_I^5yw|fL4h6P=qB?$YuU^vL$W7F>S(&iuE6v{5v0&5M`gpeV~3CDga?u{7e|Y
z>LCS{V8i%J01&i)Sri?ZSX19e2@A2S1y@!gQ3pZ!v3gEap=G&Iq*HMI61;M7wmuH(
zA!89+Xrni#A3}@lL&}FtLjlci3{hl&X99Qejf4X$o?2IA_D}D^F^0?Sj3ZZgLJ|tU
zDve7V(j901&<`lnSv2bQXB;vh1>`~ZJ7qm;ty#7bLXt`B3=I(aXjGVingB`qwbrh>
z-Am0Pn6$oCt;ZZ1?vXcXT#89HYUel;D`+vCH*y}47gYA(cxhqvR=OY`qh;_83yxU?
z5pQKxB#b*Uu_<dy3d=CgFQ`NEKC+3zUTv`K7CYy*kvh;YBs=G^Uw`Aw&CG2RBmNH$
zNL)(^4`}c|6M#ejn*j!z{3W<$Fn&N;vVL$04zM{U_dz9<=mT6IvZMunIj{!=71dIT
zNlrG<`K>hB99t*E0}vuWV#g{y(z(*HSA2lK{KX&hxcKDi4@O)7ztClahF3u9^DmT|
zX0xP>aEpD-5T>%?E%`abIX9p1zn|qVOP<80hFNIh0eEDx9*lsnHa92KJxHqu%Q%oF
zlQ?09gj<M;qUNXoAs+sU|8@zs!GE&aKm`CS%lyy6vIk$OU`Nryl$9PF)(zAL$e_`X
zt^c_~43b4pVrhc-E3l_DH2G;_9@co!ewr5A`XbB_IEWt`6tP;X_V9dEYUz95XO<Z`
zG+gU!M8^MMG}c;K(h+ekiY!w#1hv-{?l$O_@vy#gK9R<c+|2(L<#ok!MIcLX!5w2f
zLI5G22iqV)NN_fwIs3tU@CCAhc`Ka?f;P~`D|;ZH?1NeVLH^&<3jF{<2>bs)poIzM
zojgtUXcogvscl;yju0HF4V_T_T!bfu;RMPs)qHd3*Pas}B6X;d#j<Ld>$m145G2+S
zVYt3LG)(i`&sgm0GoA||({+L$IdFG;74&Ildlm)w2av;<xw!Ug$*4+ZKHbLsb;DM5
z!{+t_oM-q{VW|2`|80P8x!z+ex$C|=f!VhHZUGY#A1^uSBazv)@pe04Ccy;0YI+<&
zI^p`<F8V$0{6B!nFDl8nl|L>e6A=O{QdtvRJBPBSjk69EF20!oqeb)%_0Kkpr(Vig
z>`^aVi^Xuh_M~9oA{*jTT(`+uRb)wOO&v1IXE0j>jRU-#hayi{1VIpY`*qo)pmT#C
zu;B(IqAZ<6LrX*Zzio>BpU6{rx-60K<nA?WIq!(EFYm8HB;%-)()5FK(v1wlN7MD=
zN4QXXgr8<ET%&-D{NNr6&Htzj)_46MzF=u-sIb$4ogX})tQN{I?+QSG4V17dSeq;0
zp=fOFsSLBQ7WIFCI2|^(nFO<EH^#nM-#w?S#(pN6>JWQ9>Zf4ft+)IGTl6Qzu{~#Z
zPE}<doE38Z2Y9uJH)5|)_V%JiLyC%G{LMR-F-D7M;WcmK2I(tQG%mJ`{%jjbk_r$)
z{~u+EE%10A!caL-pFn6ml1eh6;%(i0-OAvLR{&YSUdRU~_}<z{a^s6rMa3>Y*|hp_
z_sT!9a%~Y{S9~8YM$V|<4aefU(E8n0OzUN12IDrvhQCCU8=<D$P?1C`O3+@=oEz{f
za4^i}q$V(e<^=CsBW(>OPRs$3#E$(Xp)SC{gxWk+jBsL8xpwG)a)7VzKIkA>qb)tk
zOm#)$Z};sCRWM(_XOlA_tYKJRX@5RKq01CG@Bv%(plz<uXsjLtV2Qdt(OYb|<UeKm
zqb6~vxTPbhrbID1<oy!!rf8Q19?X-*Vmx_xw?DHr%a#7?a6BxiLbGA{t8!UWLoaSX
z<)K*^x5n}90RD|Qaz%536BW$RF-q#_vUD>SW<%$;-S>mDr9IJdG}U%VmE2TO<Sr$w
zL>gxoK8pNM!sCIRdTyXkYBQ5<p#2D9pu$cpuEO&_+(>-j21T96w}%)s@eja;vu|!B
zfS>%*7eT}P(zlR|@D*IRMZxW11BXsMVkie2JTOZW6lL)6ZDChLSrl#ZgQms<LLgW=
zysqGBOcV?JIkYSW3SiVE<6&p!HXIMG7?JZK`yN~$5YYL`N9?cvKfs}T&^~7|s@i~N
z>fO5Q8m772gDU+RS5n6Q<2h4-|9)`UC#73_BAlxF=&iQ=WEsP*&R0%>)F$sV`{(UW
z$P;-TG6J*axM=iu;I!pW3h?@BT>kKIT{C7{%b=aMz!PZHdnt=d%wEY&tPaOVg>Cb!
zuQxa5*6Pz{qY4^frMt1#o9`!sXLDjzmtzFu+KbR9W38o+eoj)4L7}EE7Xr7)23Fbp
z7F&EiiRl@(5paQ9iYxX+ZInd%f{-ukJ(?wT*U%6&Ycr|EL;R#o&CU)0Vy(0C!8GLj
zP@mTERTyqKXVd>$@DEGVvu49D^<Wa>sjsKaKSYv!7=4Q#mF|%vuDFnZO@4m$W3{Q0
z#!ZMZyhB(-5ZjC9rN#X>8qtekxxYq9>yibH@z29i;49UPmIME_fwlDsz|53u5Zz0$
zl_%R~8Z}@T`N6DvF_rbAlO1lxZ+#@HCM9E<1$2nyc=vs24nM<jvB$S^a*l~0F`y=|
zPhpneqr<gHzeNrP5F!@#n}O!lkdK_Qn+-vMct;46P8ds;XG0sGw5V_-hmD>%Qxb?i
z8E3|{W_Mf0sq`X_Vyi4^g?`LD3yo&9cuuUW0_+DGXuuyLGoytjz_Iutd9B}bn|y!B
zV&I{B&ZerQ#8Qgo%C+*hciA`U^nX5Im`T`($Jfx5vEu>X=#z=ifgjlT5U3DXD)^cI
zWy?vdLIXHd`a$3EW<I3Sk|}i^01rb&-b(`=G2u`&&bP6Wr6>d&(!^cbudm_G&1a3N
z@E>5PEAqXJyhVs^#P=`ny-G98J&vBOIb6@2+}Bauy;j^d46nD3oFRVMBD(K2ChRDR
zo9FP?29BV%q3P+62Ngwx_GxULrSVUHqI@*HXdW~s?ND@4HbrR9svXxjLv1WKamkqB
z44R+bCZSfT(r_2vS*{_UorALSwtXUD{@tWoG}xYSij)pupUJp}rWDZshO8kQX5jJ$
zj;0I{LS+4u7blder!HQ3Qe@W2zK^RI)Y)%LJiy;{H)3D}79diA`tqtJsHE7BADUb-
za-I%H-in4MHJN`hNrHKIunI?LBY(G)K&=af?t8j05+uzNdEmI|qQQ=&{nc02qxF8v
zzf5KuL<OJwE-8I0UX#}aHSHb>P%_&k9;wiE&iq*Z#8vDOIJ-9QO!{ZzG53cpz4L0K
zh!n|3Acbi4dos6W*Q-)kty}s1@@$eK*@~6OH`cHsyqBGJ79M$Eci9vTw&9fg!H!pf
zG&waI+}gcH$KJsb`wC=J18>CC+DJ{a_RTDQ#z!oKa1Fu`MbD&G%vFZ`pnmd{TbGRa
z(f<J9Uf$Q^BF}^F_9HO+hslh<uKm%`=!E-oeCX*PvA@zmJwqq9KQXQ6Ux;jKBb;V-
zfPsU0yB3-l(KLw*p10CyB<`agANcPsi4W#(`p7q8N9`?bY2R7f0c@D|rD5*)QKv*@
zDdh(0<l?%gJ;Z7$!Z1NxNxX(Is{OzCAN9(ZOA4(D_WTXhLdy&PlMl+OuHft*{;`KL
z76Zq%JMFKvUnbw%NzCYc;|d+GYPYO(%px}BW=xJ4*;O=|B=`wbuBvB^-$t#t4PLPI
z3%*d=bHJ7chM?|Ob)f4*j|HN98#vz^%bk<;8O84c_En<bun(8b7r^j3`G<$e0h*VG
z&^?gCd{MI*3I03%@H)jV{#!_7XcCq@4d7GS?bozszB*d$P=P1%^3WH<VK60yvciT$
z*!11(MRjOguU6o~$dKk^0?OLp>V54_*Lkw;j#||}(F#W;#_|z;MxVPw;Mj(8_8oK6
z!m|w?hzWFCvY{%(gAw{TZkQn2wCq#x07Qjka%MKUjlthdjQHiDv}jK?__$zKod_}O
zIH8$zYhfQ;<(SwMT&+9!l*Xi;@pzwn$eo$7*^>v<#XKh~X;ho^qosK%gOh%KM#A=q
zO5l;I5A3k(iBQ~zqDy<CT<`vmuDdOU{J=vClOQ1=?4-klWx&Wkh<fJWwZ`g9n_kNT
zR`gXy7_6>zKYj%RDi&pZb6HgvpjFcjXW-?ggbl$L4(fFe@(ceO*UjW21{R7+nUgs2
zA%yavi&0m`js%a|!_(sS*_rrpc{0b@l<D@po)hFpt3SHeKq_P9lO1|$%kz<P^U~n=
z%3LTDf_8Z*nJg>+M@kV>eE_pV`-H`3`1@u7BY{kTiVu#9;r*8<eV|8~46sKv^Q7zD
zeqW#}8ErVlZh0)^?ITb9$~!UCo)8fo;k-3j7Fltdp)K|PbhG2~hI((U%RI_dfq{WC
zLNPI)J*ZbX_|s0HWQ6qD7W8p}2!$*&qv@YS54>rW;B+lsY5fknBX6k>GOe(u`CSo?
z3Qg?$7Z)|V6q)}3kHus}x0DcB7X!jNL2P2~9y<H?;jGu5uRb#SQWS&&+%{M_vZLGo
zw!D)^csQrbh^(g7IrO9Z#9xF6s=QfLbK$vKTw`a>lp+3k%nG;foC&~R)WVIToEFex
zyC*c|D>1j;Gkq>-P9>f5df-VWxoGdu2h9t4&P7WdY0meY8ouUl)C9AB8)ZzGSeP>c
zA<oIO%xhB`aAkB9Z5H^=i4Jp-Ydbk_78fu@XG{>*=X6`qes6C=XZF%!_vmOnUQ)Qn
zzTMi?IAx2+XMnc-=+%-N%8QUnWUZwAB%qmvUi7k_&S2KM3CDzUOnxTXfmGwXj)uF9
zV|=JYXT6ZQWN2nqS}s6ZPJ}JRcHxij);9igr8>uB|6sgC-uJ(nIlf2U@%puy6Kt!$
zekr}ru9%`-L>bGBE+$k`174R2`+`p#5%>Q9m`XjMW+;53^LTBc{#fG%{=JZJjgJP(
z*Kj?Ke61PQqFcmevUf3HG5^zsY^t7aU!|We@U=R*ylWGMYtYGl#+Q?{@ml0g*3p-J
z8z+`CoVklSCTsJ_w0CFa*={Z+*R_$bSn<fvhQ|`w>2ZFr9s3t>`5iy4?ALuS#_spz
zE-$K|wv|n$@2IUBrM6a<iI%5Jr)2r?2J;qWjq4d+V+bzG8@V|U9yU%pu_xebyzl-=
z0V1y$-%SL)d`C0<-gz~RxcsEzy~X|<&^LA4$b?VI7DS%sxgDsexsh5Ps2lXR#ZxHM
zb)9%Mk@Y<1&D3yphTfu{TYKw90P<9R|9w-f;k=s>J?ihoghhtXv+V%EIG6`+7B&IW
zX^b4hUi7R!og?9~yg;l)V&W@b9V0WdQnF8DSkFU%J6yB}2uVUYOiD|G8W%8+c8QyS
z84?zkSZVMW#J-KGx<2$0;X1;!z-#)a;5G79>?z#>iH)erm3R`)BKMN}mHS4M+xdF2
zo)Cx!0c_`xJ2?N5+uCrp>R<)v^8^RS%$8*RhZnQ2XK%rWiKeMxw-~a+_Kr7NY*ggW
zsxMEQOP$j;+Y_oTYO+Hzj5b0U3(=Usj4GasvIa$wUumIJwKDJMfAF`se<Ay+it2b1
z*2AJ<2tO{M7GqUpypf9Pi4mi~HH{6f)W}kqI})<YKig9MQ5_nYu=)(aP)zhl_`<3+
z%;>Yn=BVAP#D4(01>Z<)H^M?%-1S|P;=qH!A+81qP<_S8oIT>>o@CRL0;mtwO%x%{
zF}HCQeq#uS>tTUC3wHsG;#-}WHAH=FaXR^&{Su{$xKegLNIn~QDYpFirRY>WvRQSG
z@;c-jY2NN`p`VT@j-VvII(BVs8MtSCSN{XC<qRgM9p1QfC*Sh@D(HnbjEi9TG!hxq
zlJM*HMa%I@hryXn0rO2}WFJi@>|>@yBR_HgNX5%94}zv}R&6}g*+K?{)V3<Csw%r-
zz{lV5L3kq@P6nCYf&@k<xU?`O@1aQ(;g4$$9HL7_6rmei?~(T3`?L0q%6<G88B<&2
z*O?oMb_CydeKw*e;7!_ZB-NJ1L=?E*q)a*AMqx&HP}vAAcekq#xx4$;I@zH%#a?;y
z^yC*g^3AP;+MtZ&6Eh0&@BNKZrMH7Z?>kOZl6B(j((FtQx>P(uga_>4XTGE4fHCvN
zGsa!)MysL@lz$dU5n}GLTGff|J%Ld(&b`|l9?DFM)ZVLEbiKlzX(GE7=jk>C#Y-oT
zW89s(N!-6wQ_%T$r$(}v2c9(p%M_&j<n3oUC|6aNVL|4pBmW`{Yb|%*@Ydf&^sYaU
z#yOnj^`s?!{WCjk{$CNs0^E|mV|H?tf(*bN@VDR64#uk~fk~uF-gr80T$V^~@)k=n
z_5Qy-U)tViJ}P#bLQ8}^Mp9Z~<A>mPzM<5>jv>(83ee%<ZWp4*kr2(f0;%t$v{Zb6
z=Jaw0)-p85eQd{?-n^)`@I*@H`E7pIJm>5TE+W&Nkpg52>Ll=dhvmX`3XcJlzA6rT
zMT{BNaJ+SNn?3%hHsvWMs!M~8o~C@Jmydev;5>w<`*Z^$IwyhVOJJWDD{EP#PyTDG
zPiAI9KcFWdSWvi8#Pl{T$1UrR`_``v>u9O{0oA}Py&M8@xmt0W<!3|al!d>viqC8^
zKUtTwu|JPp0`^ueJyFj)t&g-%O$`jeOs7)*1N?@+_8INTNgS6su}QiV^g;97p?2M|
zYa$L+!%<<l%m-($Tl?~VDjv-`LTMVfBEGDA(2>mj^H82p6!4la+24G!X@ufdekYY=
zTV3EfpLJ+pGq5GRneq>SC-Ea3{wQ)bZM1N5ppDh+4i(1YspvYP&;+w%ALuH+8nbF|
z=n!-A_(`zX`2r>($NAS-w#4-;df;W#3+dL7?A)M6t@g!{s4(J%=I~?eXSf0QpYrt8
z*d2Ctw4``>Gyyu~d3Ir{S7L`wIGcR2izVIBb<T9&^=c>lM*`<Ja_Q2psitT|k`M#T
ziG2;p3)8N13A+TL_qg)8Z+`_!EIgCZqxZLcwhLRuPLj=SOOIHyDcB)%cb%(q2)LAf
z#~-n(kVBnXIE<nCylo6S{S7;g>uhWv`tIN)b*XqCdO`E5{@I78f2vQuT)qyu?(tP?
z9B@uq@7U5GW{Yy$%T*a(Yhuxqc9g0~x4~}D%+BcIwp^xnOc!uvp@|auWB(EEzbttQ
zV%!n9Yv-GsnQsGo5)iOE$BN|{85UcNwsqvJ%RVDmf`5b-gQ-W3pa^ZG-?ALI=a1*m
zqFh8pi=WwN8t=ahP3-3;1ji1R;BlAsJy6G5lq)qyXQAcN$E;*ilCTfougDr3ItDz0
zn-2QydnAe0x(>I$QNw*^b7VYJ)OQry>P4@{^gCzy+J6oE9GVvehM~P^0!7>F`)32C
z7$i8{u;cg9&D7HS{q61f2M{CU_X;5g>6?Uig0^am8&UiY3|2HWmgTZEYjZTEu1JIS
zV=~*(RA*VgX83X#QwWnB&Uu-RwB{-q5!IS~HNs&A9rC@dLzi&Zly{nk09M~BPPb@M
zAlb0%RbOxT?Xfztt>xW!yzF&}I)}<yHxm9a%X9%&K(#(!u_fs^jp<?wxOKBT&e8Lm
zNo#hb{{i%y-ALTZpfl&2LXUmp%9oO+Lsqj69l=}h)cDtfm4&hrQaUk&@`7C7y+fxl
ztI?(Xz;PIh$qW6?>VTPV3NMj<HhvF{6<)0uRhLeF@VWXd$<^eU8`TfI#Zr*|K^;4$
z3qD{m6u)`^RP+(p;3nCd6U}W*WN?V+y=@tBwOCphEotP}3934AlPt}{UCSLz@#B1(
z=e=)`2vf8$ecQ*2`DNtSuX$wAf{N9lwOIEx_EVGq`g&Tig1lQyc()ogoqJ7)r!_I^
zdz?!H92R*VSmH{LXa;!6EC^$(#yI9>I7)Jj1mVf4v))mW2{fb`RKENj-1J)&&vH1+
z*il<?zTKd=DT747KOET&ww1u0!CfqgN?^5u4IW6Nbnq$1X%L?rBaEL*jFJ;JB~UB=
zqk0VI{+Eo2o2k&?5-`A;Saz5w1=he!xo<|bH12WN_E4qGCsz)gbMf4aF!{Z2cC*21
zRU?+n=6MlF*sZn`n%><u-=9bqLt*jjFJDNkSyaRQLX?NXwe;VdFMdI^@98e{?U;R1
zCW^!aQ%}+oBUjnmnzJoJ2uor3?2QD>h5ozKt?oqzA7xOZ2kR^v;{w>-)gv2z2JLIe
zck{KA)Wd;n%DVCRXZUMl6QKpb(AhTtNc)UIAc%%*9#4<_DYjI#dT<S;0u$VnVOIfo
zqWd1|MV=KPs3J@2Z~q0vaB*loZ?_LWw!HmgJ6&oX5-IB+Q659F<6b)1Wmsiqj%VK1
z&xFOp)F2`gL{r)1n=&;anOz$?Z>PEn+w}KhG~c623d^CLW{pc59h#rh7g4im$x3?O
zG4SVywh}>&DfWbQW$FgDdNwNpzG~f310&LCPCw%qvariey<l)K5S1v!t@AZHg_@j`
zSHi{%8V8h)UN~39yIWfoaA8Z{`I*?0w)PgBx)YN$Og@~OrZ!)|RjiRCtU1qBhqGDZ
z3wiA(F=ES<hRB~%VDiC|!lJHewDH6W%`@IHP3C|xI-YWfbXGU_DmR0bNocMdEW(i`
z#o|?wkrY1eiN&JN!m9<jEOU;x8#B9pL%8}YBiX`w3<~a!L5Oy35ze>U28$J9h*)Oh
z3dh~1Tu^15%_*1N&`SsXmM`3(>W+7B(w73LG$}jbyN7om4<Ewx4%{14imC~oR5oVf
zrD?h6r%U`)8HeyJGae7!*uRf%pWQj5egxY~mGgoKIZOXyvi||TIb2VFY2J``eCPo|
zOP?M>{T<SO&DpKqJ1#YqE9lR0)hNwnrSV5CjJqZr(muxRXTAc0!4viwTwh{CGYSK1
zn^-xgq;5>;67H1j0#emRi!SCzn1eEi46{;anZyts88PeM91OfzTS`2>b*Q57(=v+O
zt~1gEB_0}eDme4?;R7t(!AKIlB`uhpU7QM^W(Wg<Glr3ivz!Z_zurN^B<DVxu>G8p
zM3t$k%7)n=1wX<YH#5S&V3G}~5G2FOJ_hY`5M=2~Y?o9ycG`9f&@$>UHv9lAna$3&
zzZKTP7R-7|)i{j*{u1^4tf$IbNYZO8fbq+>F}pu`{W9Tk@RpepbybMyx2Kb)Tx)Ff
zkuC%LZQ<X`x4eT{`!HP}jb}Yu1mla=Ok5P|;O+f-%9i~<gxWFAnKXVZC9mJk97lX^
zo{GGz5%jyC|N58Rc1}>-vyWUMhbQNE1~2_xLRA^UGX<oJmSOoLH+@R)Up>6D+hNA2
zEcs)tedQ>~D&HZ}q7Z9HBL55}J+hW=&CeEjjI^t8zaEvMACu<3jvlj5ngyH+;LkE|
zsLeIXSC`|DWTT(BncA;i7>R-id(XKq?iv(jRz8wr-V$*sO88z<G90bFWwq|$JE^a;
z8WPbLE6471U^R9~`BtzD*C46l`~Bp(pr7W6Fw!xavxEEB>rCHTL8<_vGly8Ee*pc|
z{9y@U&=H+v3)5MhRY;b`re5+Zc|1oQs2??z!w-TJA;sVh?ba7bch-BBVFjGB3|;-K
z-EQG<mQkkY_0p@V$_z@McIURGgDdqHFtM;Jn(=)ZytSpSOJNs)V?~6me7Bpl1xfZw
zUr{s0`WtMkbhZNKC2SW%PSN7g>)*utY}~C@L(bq0P<*wTHaoU=Ed#*^SLXW(_x<u+
zpv0a`YGeqARh3m`(_&+}rTVo<5VV=2s|qcKMy>%T-$|CvvdElSkW|OxaCZ23clV&y
zI+gB<1nM=WM*_3@-pHY$BAvQHBSYOzOF#OWYaUUYAyQY@vzsC56mG&~ER_r8yBU8B
zE>#ZPGs5kIBb<FB8R0(%n4<<!Ze;JpEoJVf4br6b>I`E0Mb+`mjQ_Oob2E%iPV?^6
zgnM09UCJ<yYB2~!&eF2Z&eTq}?<f+xD^s7B8|?Uw$?y4K;9gIj)3TpfGcBNY@ErGS
z97RNo5A_Vh3nQtmdIK`%&m~F%uAj7a{&HxjH|v?B`%X9{(dkttlHi+3W+5K*YQOd<
zqb^s)GtAU(b%Lr2o56D4x$D!oY(D)94FMfD)l&;~hG#5$j`a|i=HVLeqE~9gZqY3a
zwhHFT8HZNRiE9O%9NfO9%X2Tu>!4t}5vyX0RLE>W`8^8S#_6b-!ZBmVB{+QfA&;x+
zM8xA{(M?+ZYYTMAjrD00&bOFboR9r_=jG{ELsJyhs+Cez?@V<EB4tjJUNQzZ0r0jG
z!8JcAMR;2rP7FGGI*$);Tu^4?{0&E;?rycAVt)guUuyn5os7Wmy86rW6x4Be!Q^w;
z?PGwj5NoA2?@Yb{C)~gu^NwF{<$M};qkSCuF(P2}8B6})Sjg~|x7&uF@`Dmi@3A{l
zQ82Jt@a$rBQ+M=UGIE4}W2}owD>|gV*(xUQuI%G*>VQDalb25&1+PM?5HYr$#ZiJ%
ze{!cr6rmI7j{y`^8y+n@BY$~!{}?!n+icw|4ho%0PdKsYty;y`t&zM#2CtjI6g~d|
z3?I5QHOz}l9}l5;n~ofV!fUh<$@e;omKw@bN-Vdg;#^cZ0YMz-MeRd2(4JtHZD^r!
z8D9q$w{xiz`vzN`_QI2B9lO*Ss{9745u$6eb#z@gLhH^<LMa)|=JRJ}6a-f-SIy;i
zosgRa;r2E>jW8NM;z{15hvn}*<&iux_}$=gR{I|8ap+H0+j!R>6Am?wvMxWXURoI8
z&Wvc`bo36zWTYe`W#7S7sSa5_T~4f9i$G2?W!5nrf=~-0<HQl1SWDWQTy>=ozIwMe
z1ud6v$38U|taH{ZEQ4-e*d+pvtWsy+VTpr}pUVBVy14r5|4ri!-71sRYt&W}`PSkx
zw(|KM=tr>O2=`VKqjmC0;az2mpf%Qrd{x7dXP;jldy%NAP<>mBajKs7jj2H1&(2rL
zMFprV{cVzIDIlCA@8S!Y#lFsERjW!+TK+l3#nn~)vpVN#=hF>b+c`spvPX~2akn#y
z`aWD=A-l|4v`n-qM2WO-G7JPuTE63Q4EpJD3z?+(i_=dym|}BPjcg$(iPH7C30gEU
zT~2N|)ToEDr&#xZXbkI2vEr4EXwJ<cc)&+nUFEsQ^)GnjxGbag=TJs~od#|6<Hnnr
z&iMeK7uk$4Hz$KI%OL#>UW1>>g8pSST4e%w$y32zkXKImXZCFiQTZ;%-Ck)jOsC73
zS0`m&;(C2>J;NgKFFy<Y97ppF+E-?}-7S>ahCOlU2XN%~S_g!L+&zk1?YWA&@TP7u
zG;U#5rGg`WxP1e2*i4*(H|E`X(=`=Eu3qQv5r&hclsd}9{|$ewPNGn^3$|GoFgtu*
z<Gf^&s-)m%;?SXZ>2124K;yxvV&ynZwaM)5rYG`nVA7S?{PmrOXPM!=gqVh~#~k;f
zrb7M)2CC)o%I_;2Y`+=dTetq)THgCb1r7$^p$=2^ue}h9qsJ>22N{u{I`C^$)>o)(
zgL>?@|73Pm@fB*Mz+YN1&pZ@Uy7(mr18=C6T^~>A<_$73F$>nXG+31SRqxUfo7du`
zS-12JIf>D5N=$THKC&Lh&ch0?_LQ~yBL5>=uqj2HU>?i(%g6I~IinV0+xJ~Yk1P;g
zw|yOnHG9!&+D07;ar|W&li*)kAztTaWYYfM=zBPqna{r&uQSqobNNxFBW=o|r#Sld
zOr23ZS4!wXE)awM0UQlkA^piwvc`e$L#f2|zpn?9ILO7qS9m$ve21}!`$Z1-jWNF`
z5?e*6D~;uMo?<Qc@xF-7u?@upEQL@dMFln$7pVE@aC(|`bWtsIQgi`h<OOrZMAuq=
z^HD11$6guM>y=2reBh26iJk6SId8$3Jy1DPlyGMGL{kSCAD=OyDVe5e0Rr;>^3hGp
z!};+J{`%!U0VbMui$~W@orhy)yIbYS_my2~5+x?p)!GZ1chwEOV=C2cIX=ug!OMga
z%m_Uf<^tKzyH!rv-yAl-7%?+CJh9dslgfTXt3q~BeX1FVO|ki-rt7muPG{EDGv&K~
zfI3cXxy<fceLA*nmU`e>RHT97qBhA!8=<1bIJrg^+e#@?WWnd^NAxnr9HWyNloj+#
z6ozgp6fTuvetl9Cy%RifQ6C}RIHjtfGD!CFV|Jw1!tdL(H+BcXe^o0q_j=wZ<xLI>
zW0U}7koy94JRS3yy02z}%w9Hr#wE_KMzL1Aa7&2so786dXDleDVBpwy=rW+cW-)6+
zu}{zHs-z+m(r)IJ!$claE?V&q(5Yu@id1FV+N%Bqf{8EYd*~MlXs0&+e20lPOI{#l
zHa7QQ&{c6wq$f4#&@<3oYmDFf)@$)LnKkG0l<G>H34BU@2UMX4%9@0Tte9-HupfhB
z78-w`M9r#AfrB(oWwxO{&-?3UrnTSEgc|0cPT6tS^63^)qF_DdxKPGUyz|C$#X4ty
z3C^dSaL12`R?MchBYZx|(j=MsZa+oY)Lu%r#pK0GZa^B%Gsk#AE4lVNJRdrXl$DLR
z&7ASD!1`O=W1DxctI&C*E9wrG8ppm&`J}mvv0MRIbDWJWDMukc6Mk>EWVBL+rMpjp
z@6Cnn7gd?bReazT1wN}Q&N>R4hTorMep?QdaQ+dPM1>jvspTViQ)fPT-1dRv9hDS(
z;9CpzPPS9{0%5QzOSN1)Sq7`1i`r%4t&ZxC{qsGz>-C^tUgLT;IcYTA=(bU$3RKNY
zjQ1)VAdMVl9+d2;)vyc9JrUtC^-KHUg)YCfw|dbenB1mpb$Gwp-C4Br`SA2n<$bz{
zp!^e_He8S_(MF`j4}szM@fgc{Wb~fYHYSrr?NDUIbNdQ4dK+!_!EgIm&*s8tS<5T1
ziS~LZ(xTLA34WmW$W|#w+VD3dWbN;aCONs}!+AxDA74&Dhg8aOPbkh}l5A_tuX^2~
zUoiVuZA4<0%L|{0v_DZrYL2T8_e$8CzphjB%@h+r#5!#FgQ*4_#@OW`qT^&hz_cca
zj2#RV0zzz4%hK^Qi0*f8W&(u1+)OFaTKzqSg^W)bwBlsC*}YHL1oyzFuAZN;RaMa!
zKTi9aOZIis82GUbOKC(g&QoobEF!$}R?HQm{Kh?#gH+GfQLy-Hbm5)O=dZ3;zO~Ge
z0`Uxl!+!%lf2PYMld~Q}?e6ilWxCp_xj<>2diLs@rqqoe&5of+I9Si$Xs6r`-Y_N>
zkH4pG%D90XT_>{UkhKQM{$(g}x(J`9#?-2bGQJU(LD5S*7a!?G*>aB+`4#cEr=C7^
zynJ#*uo{WM2c|cKJkm73Y+YmKl;sY7-uPMF7nQVbX56^MxD%;<$84RBWW+*J%08}l
z!fcWSY&VJ+EBZQ|U^CC&g1?%PH^cl?qOx08^?}#b5OM*Lc~5AvyDAjGS=*Hed;4fG
zz4nC}%=2JoO9K3rMh7fNnXrXirZ*(-)9EFE1z|1WLzhfS#YDiJ-8)!g*b>H>6MTXu
zLB$rK?Ui9f3;F1!Pq))ll6<%(tAs0YFF2L%@xUWKqK?n&V75{c<w5vnIW#KewxPx<
z>C@aAvc_@w(HIn--3an5=2%YxIqc)o`Nyj-;~MZ?iD9j^OD_nzsz+k|QuP*Le2t|z
zu-Nr+^+#v5LOD-Sx%WZ5h<(OVs;sHQdR%MwalnSJ-XmF2dgl?L1A!p0oaVOvr#T6&
z6xGAFG4YKXtR49pl}GtegMjK*lQNM<!i>!Zx`7S9&MWY0LRL75m~2yLTPi2GDz<iH
zwyG?40RZd2o@*_cqExl6N;ut)8!*@R6((Nk4*TX2>|J3jtU-LFeQw1cX#5VgeO%IS
zi8t>&{F1`LycbBdDDO}KGzH(vDL&RqRpoE$2rz#oK&lnZR=pur8V1+@u%|FU!(}qG
z$LV3V7J+Av9XxB_pl$-HVqf=6*Ui%-l_z0upN^rU9$QPAGksos9>o7!Lzqz{Tu^sH
zy`OT$%`ZH4ti!rbY*cYxx9cAucr|=CI(LPiMbKVrh1lgqIBPJM4QcL`<FHx{fe9qy
zor+~_U%FdUZK(XlN7^0X#~TD^$?A&KFg%BMhpK`u{Wf&7a!-PDKh<J`xUKgSND0Tq
zdoO>(21}gh;+nr%zkC@pc<Ag@U~RzRoqX!SL+67_+Df2|=_I_vf%^RlOVRwwQ15vp
z9J2)euo<2K{Clje3$%@Y`0vxFu(gh`L(QwctCtHmj)P-$vnCpc%e9#!v-u6ugBk$;
z9%jc(x4j||=Hi`H?FGrTON^KqXx)z$*_bl4yn$vYc`aBWOJXKxSgBXl-tVo<jAXgN
zqw-kF3})%xe-{N<FP!~Jq3U?TT8N!%)UIJgam2AabZpF9{la|1+3t)w>p;%}dq}Nh
zhon|5%=e5<cucvwOA5M)d)63E;I}k+UY}}qc<>rj=_bRQ<$2X+3VC6?daD%$;4o81
zcrl+Q#mGw$OhBOQg&M%*Owj6Ny4ob{^Wxve#}Sr$H?e9H!*k@%?ubfUe{|{5aeuon
z50fnT@`tybR*B-}6Rxzf=@K12?HLaVlHXJ$3x}H;U7dm<y!OV?gS*(|KFJ#xz*IoU
zq0I$&X(-Cq>5(X#&3pNMac-P@GQqg<>f4vcf2Qplr<?DUMsWR<ndeLivAIiPBn8fr
z3tz8jjJv1#lEx*3zFb4dyFT|^PmsPblu8Vwuz~J*6J1tu@hrh@&B$7aP>18hY_Dex
zM+VHbV?btVYVM$?^gF4N#Y3=dFVoS2$qR^zJNIhf`yS$n6H*mV&H`zTNy+dVMu-ZR
zyl|0tZ;g-JscHxxO-@Vq&f-I7I}4a`O_9|7x!^ovkjw{{`It<L89g+W!uP1-M@VS`
z4Xf`mY}0nOA}waHxdembJ%}7g-TG$xOP`JgBG`^N5*W5sRfaSSj9gT-alx&J_O%_x
zuzcDjIMedr_V6qz3tVssIPN)2d`#}qiYxXb>9tf9bF<!(!SXsf?54sZsLz;uhTnh)
zPA3eIZJW#p(+Zxa5*?6Ab?ZL(VMIUxw2n)Dw{X`g@Hr>-v{PETCOOkus|D+^j$7|)
zd~mFSpV9j^nxx#%Y@bsG51+p<SQH;~lW1Oz&Ox?wMWIExO}HaOjpdd^ZWzs9yA6mk
z<FXlAP&?SYDtapZdFlXqj3*Y)b>$Xebu;$_zbz;-6eSm>s<*;SyhEkj#(>H$>Qi5!
zz8V9ybGu07H>G#M4MdntOoX>87ejEFZ%t{|YSNnb5RnsL9GWSj9&XtB1>KqFmaoDY
zGh@3N#BtQ1jUMq^M>$qkq9wT}6`Dzr2flN3hKK57tIeG0;%rr@^xB3R!K6z_ZmjP=
z7yD1ISTLmn-}a;n4;{=4^sG;&w%07?zL)<lx-T-~7s9g0V2zaBN<MN@aPb?xKX732
zK{ph`=NgJ`EVZ1bw{yH+y<Ze1vSU{sH}z5kk?P&{{lo!LyM9?r-ud)8aHsnEDb>;o
z69w53b`GWe5t?qlHQB0j=?!c9b%V}S*L1p-OV_6a(l6v_SzkihnNsn+)#Q2R-oDn6
zGilPQ+VdUws%pL|x?NA#q88BFr{j(z(A|IfIE!$>+<~YIZ<tT$%yB(B`X@X4{5wdI
z<rwkk(VA(l%cl<0Ap7q_k6Jb4b*(UxA$9#}-;cS+)yBL~gZPTO2)*Kapdjfq_42|@
zIqX)WdFIy-rxcUL3q1~NRj$Z#f#|=dPpfJn;;=S5lwKt`9v_d#`s0f`1S&l+;{veV
z2uOZJ<~p>-6!yZ;u6&{Q@i4?BKfL5oXq@RV;AGC{3W#IMF~uDwB_aPzX@#XmDLK?L
z@5(Ve5S;KA$H*h`$;7(h&;6%CmnTayeKbvq`5ZAcDO&4HZ}r7|hNOF{gd#4(SkJNi
z^ny8OS+-kKH>rpU)j+n0TBmsLXM<{W?z?k~!{$$F>znU|6+1sk#?!7(vvn)RyR)K2
zB~iFiiru`ADK4X5?i)fyzdk<V&C{PQnV(<s@pKMkJE$Lg*`ITRc2Mb-HR_1f|McZc
z(T(etA@xto;lH-FqkFyiI9D0LQhQK2W%-Iy50|PXWp2o@WBhs;zL?A_1-l*q6*mL@
z9^$NU=8Dy<(elvbr`ZgLw?lKL-(_(2uXV4V!>qBcYZYk!KO1N+x(p>iP=|)6`5O_{
zTk5bw*;ETTfz)=s44CrrM&kqvh{4CYQ}WH6XfJn$z^GW$%C3SDu3uWwQ>w#X$?Gjn
z!D%mI`tCVrS#im!+%?$3o(}{G;^UApB{#KM;S}{Z>!b#UPoG!W(KDcCyd!cRRdDQx
zt=0Mz8c||fQ5qI0G-EkS5->=#c)75mu%Z)0Pjli3SElPccW!^Rr@)`r6d7Fswe0GK
z9gnB}K5}dR%oaST{=qn0D3>PvxjJX#(c#m=R|9@w%DRSQj?;mc)hTYKEuo}078zIW
zwCh?}X`^m4M|{*-u6gKECqeWlqH}a*oP^53+r5?`?g_2LM;A2>ZkZeacy!%pQ4YzV
zA3969;|qR$GXCDDJW)+4dG`#;Hhbv4&ttw=$eQf?D4Z%Vt!I9{CyR{{JGDjnUezz0
zXw5z_0oZoNXM#C4o`zRm27>jg5OM_mstYO|bj8|iRHr9ajuCj0&&rRz*#Et=hRujO
zJvP%lbUDjYqjq@p?6+3N*K?E}q*f0xujWqoPWWlqY=?w|>DM9w<VBwkl|N0yP@gGX
zV2wB}Q>VdJZ=f1{odvr3)PLY9gA`yA%W%-onpXT395*1}W0(uRC**k*#Z>14ovMB7
z<aC{FU)SdmBR+)Ao-F6R0>3^uM;XP4sgD^O8_^?ix}9Znc`~RN=(mqfU>k_^PG-#g
z{+o|kMP0<(mQoT3N}=V1ZmDxbrAxB$TdZ~9;4erje?+zjm1yBiY-$TB-&H<p499^?
zM$&azMqCgly(j${g16;dhoJ@7(GDlcZH@u4Al}+~8a+vwXZPl}SJ4R2dA_D75O&+)
zFes@dD{_}uUAt1F44KZI%Cv-%VhkO7g#kjbqYb#L2|mTjlQFM$8A<aluT0Naasz#?
zn_l<G#d=$@%ZE6P?3A2M;4-9hr>i=UF41q)2Xng=M(~}1W8uI3nU*}1U*zIX3(-pC
z)UJJXDi?nyJe_rw-=!YJ`W~Nvrl$>}&<(PB?9sP6`RVo3#dsvt4!GkO=O}!t9u3<N
z01XMKeK$o)GQ5^|Cpl{SJmca?9VXP}aLlyuMWT*rGf98yHEX8Aq=}^lGwC`V>B1du
z3uN0cO?g)M@BrNT=y>#msJ{GG`L2?I<FEF~f(lLx>|}q}b3RrLZSPsq#cRcO>ox{?
zs65UhGwEkvWDIzJV+7QE21mq3DR?2(_+TynE9(&y?%A6sQko!6cEO00eH8!$@UEC&
z->--?Lvwv|G&lA!AxD*poycH3XB|Ux?@SIsE)A{ZS1K~l$RzxZf2C+FvT42{zqOA2
zY-3qug{LT3fQ&`~P*@YRV2aDR`Q&C8A@hUNgIyN6p_`pzOW3b8`0Z|^j^sR-ae@n=
zW*c+6A&D5qc%;K)CV#VB&mJ!B?k9G`$vj|iefKdZ>x$p;V!fmW(jsEDmilrd2lyc(
z7{T@06^Hx^v7&=Twzp@V`g^(ZLd9trL_X$821otyYoxiJ+g7$qolrmaee0W%d1!`4
zv$`M&Ro6VLFx`$03Xz^cK!$6Ub`W@XNYt-oSCU;T%Cxm!8K2FQGBNCn#~;K<9RaGL
z)=vt^XFIW_V6%3`<|D!N$Cy5Xi$4t8>K8~?T7yzV1PCnr(Iy5+8=f$+u6nUJQImtv
z)bUoY1;)z@Zz05GeCc6Q5R_eu8hWA(;lGHpH*rj7G^c~~sMKUr*MQ$jYG(inWELQa
z%9a3g+?td`qwh#F=sBlExx(P{+Pbd^_#*4X*Dj!oXk!4pk_?ldLEoh=c&)~w+04h3
za1<4;gG14^4OZwSowSn>c_;3Vsjpkoz7}|YPGpvUHu_cR=MWeE`5)Ic*THE8tX^Hb
zF~ozSqJTe2##PqH(Nld)tvgPVJvJC_wzSHDSc;{2pd^H{sOGwGGI^%RfOCrGZsxW;
z_Uk~AGk_1_Sa(`p);o}o!o5}ER_e7*<4B5i<!Px{n;u7Tr=bS`R!q8YC*`kNxbUhl
zC3rQ3dEw&$JC~28T9~;{Gq}@7_iHk19A^T(8tX~OI3J~A&!n=Rm1<<ToI~0&=ZdUg
zCHbz#T`h<_RS7hr8zfcpB5ZSyZO2N7V<$sf)7k;XIjrd*An+-zL{>|wV?TJ+_%)UX
z3~Gx+M^R9`bnH8wEP9-Bfu1TsIyXaHklv?^ijgj*L)SE#8)sFxj&oASAOPnExyZFf
z9Z9PTsRAij4x$->fPq!*aE$HmOw-%WwcHO;NUeoF`K-E{UrU!Xi$SPr$c!?e<kzp+
z>1dXypa1~$uQc#nVeXxet$LJKCOE><lhjE0!C*vCf+4-Q1l6f@CyLS=g6K?xJ3-`q
zYR%2!UL;`JA{1P1Q-Ww$jzSfqa^QD0+;R=Evmmi2BCmM_9uGA=q;b4VA{cSWTA0K@
z&w9ddQ&{X#HtcCc4eM6Ql5<av+DRjM5M&_BRE)sY^Au=@zcq;5<kqIQDSN${`=cL9
z%O?W1j>Nsl&sr&I4KNBr%F_0vG%zBJ;$c<|S0fUs_p1l3A+j<~Yq#*6j=mqc*vu3?
z(l{T*=2^|b_WjtdAddCgcsax9+Kd45CymF@!E&en07Dem(Sd2IUTNtxF*>v|urfn3
zERnex!7AKmlh09}qPtCLUf%xz5k|4WJ%*udh>8>iiRGCF2Yh*a^{+o-1f-M3>h=jv
zlQ^)t)o<3)+S20P%NWa-7gmsxFhA>@q@H^Bsbe^g2wWmtTt-edU)bCnb_pRyKlu|M
zjdF6t@W|0P!=c*4(2fmnczV`%hf*=Cm3USN*bWS)Xx&%xMn1}<_NtyIp3>{ZI;{2%
zB(#$9SB1d9C|r<#S_E5$+V=CpmTzYS(>101<oRe@Zsdfna6MJ3--+}{VDVn4*V?U>
zs>yphDl0V4w7ER2VBp}62^Gq3Z!D%x)6`c<uT7xpT8PwFQ@B>Sh8C76Z8v#x2-G+w
zopbX7axy3j=q{Pzn@vLTjlQOCY$1wSZX}A_`LP6z-<aDR9he7pGt`bVG}_Iz)~lh#
zXAG%trm8}(F$Ltr%_c}34qpHQdUd6rL5o5}yPs6Lj?V4{Yj%PlCAe3N7X^3VD9+Q#
z8RH#sN*T0RBuNt9_I6W{T4juWAS)bw2&N37sX%RSCblEyhDMJc?wo&0f-7n6&e)-n
zQh$XMx9BSVr8L^Mr*U>;0$Z8dO^6ORF((7BbM9-s)hs+;7O@VEq+Us;TT2{5(#kub
zY-P-2c?t+-JAux5&#pK?k3TvVtcYZjOuh;`wYz{n5-BwOTT{`lT5US^=F(y|v4%pK
z9)}%kdh1T{o}CNoUuwRR7?00&YkTH|KkXD^SMjK=wN&vmi>GUhzigSngHzf(#bdx(
zf4-!jymD7L$pZutm3`t}Z&87*uC+UvE!cwb2ilH(Sw{r>n#v&JrMQAyYndRLHjY@>
zqoWKJU~os^YCQVY0VTX%V{JTVis<b8KWZZk<)l8H1z_47Out&}?Ob^)^sZ{sYh$kq
z2+20W3kV@2%ZxA3SET$ogb1%2q00XNTHsXIqx?IFwYB4J$IPQ2g>&7#&Wfoeq1ge=
zNW^2MJtM_PQAp;C9Hnj#YGd+!s>wwiDkqHRtpG7`=}K24r7Eu8wJt_DqQF&QwyMtr
zcLNLo&0lEqob;%64cG>Y0ngp&F|Z{?W4?lS9m$cOO6_EgvBxzBmdC17y@b)h-f3~h
zr}to14aT0VTM8@GXVYVx9l&SlSeJSL1o?l;nvkq{oyLe*k_Bc>qP7nhuSB@hCxr5u
zA4;V9W6Q?eX0%fyl=C}{HIU#6&zjMfwky=Gd_IbVo=tPNdNFc#r|DWLiNxVrEOw|K
zD(a`v9dbwlvu4xwcB<wTj6Im9kU`?Kp4%DXpfGdNs8=_1X^Pr_PZ+CEy2z&nvg~D8
z;MjPnZ6pgj4crr&#m8HkC!yN-EtWgSO!u!smA1Y;tIKo={>`a_o*KPADOPBe&!uHO
z#*ZI1mOphF@#;-RY=D#$l}etcJl8`Hgl{^s1^)nfs@nKL&I>qSr#0K}9Qqg$SzcOO
zM|eI+S&D}1pTe}Qnk%KqAUF4GW*-fRv73h=bQt6Et0Tj<ttR4McefNcx46`jIrC_D
ze5yYaO18dGZ1l!R2D*6kJ5>JwmS^#5ea@beS<M7nV`&tqY;>jU!<_MJw@L1$knZJ=
zO0K~%!8O`k{6ExHiMNsoLGD{`^sM>(53QmT_C46{j;H$7*qfZV0+5Qkd8OWI@_Bbw
z(!}Iv47kXug>nA?*Q7E!2;!a6kn>98A!Eq(%}#q%FZ8KTK}-hL{{V$=Qrh-pmUy8_
z5D;cNQHVcuwhrCPxCZD68NlYSaZdz}nEXWpy^f0i0KyuicM_$gwD(G}iAp4Yy+l0a
z&}4!B(8`{~*3`N_rQ#TDlq9iQrHl=7;du=b$cg|YeA`2HAaRmF1dd}%@jkbr$s1T|
zcM%Bw;+Ed3eL}WIe+sp(_~XQWBez&JO-e~&U-@Q=v8#KqP&Xg0YDaQ?dsMZvL8oag
z89=O!Bn-t-Sb|V7#`ZY*-xzEKTp+>a^G9qG(wvCWFjP`loB#(}0ga%ZwWSw_wTVjX
z(=P(IM|fEm>$vgxnzr5*x>*DtZPQxiv$hDY5?5>t<K!$e$3jIkD;UOCeWBf$Alkc*
za6JdLSb!E_pc2QR0;^yH-n!2V=~DfM>su1p#r9LOBXuxE5^c$R9!|l66asR|@}87j
zEMBsm{3~s7e`cyR8)C6E?gROAxFjMBk@AFmo~5|^r0!(48s4Yjy(d^xGqh9OA-a-X
zg>X^B861Jtn+HF_YB_JL^zRNS)0A9Jmt0)jMj1)+&Pv99U#9KHza1+!?^C?gye?zB
zo?C~4`B`38EPr_!<0sk?NTaL0o-0dRUlyHj{w9t7k8+w~E33`{AjnAyLoVIJ3>fal
zbH^>>C~fCUJ!;7o2(N>Akj6Hw6QLW`eF4g_^bd~JZ$;4W@4P#yMJlbdB3LIAUATfV
zx6EI>*a!V!;AEV4qf)l8wD2@bZK$p6tEl|V988F$#zO@x0b%l|I1~Y&;~5Rdi6^{m
zyRPAa<+1(gAxCfgd5vJ!*NPO!t3w+cvRGNGeSXaqVw$2^ZqFOR_pY|hzjisUPT6tu
zXMk&>vy`?gmbyD|k4A0B$*)5AeC(-q0siU7=U#mZHUT4w^e>0$mc05W^{#$~)pk3y
zkde}y<-1jXH(|yp{{UzQj8nPFG?&dPm(MjKvK~pPlp*Gx;6T9b%~oj~bgS*K3{`Wt
z(w4wRjP5z7`Aj*dr?9C9UTJ{}=lH0VfE)^$*NTEefzp60xFm5<a2pL%F)hHRv>XCW
zCIxw6ib2YX$+@voPQWu-(;)-pG{u3o<nu{37CD)0q~sBiRUXPP2x#zYt(W(GQ;NyI
zo)%sZ1N5s*Ryj-U9bPg<KMLih(#GZ(&JA`~6G-_~2k;e1^vPc(Q1eYlmW~#EI}AV-
zn>~{$`?cRsrLqE92sMp&X@(<hXr@bv$ThnTfQn)VieSe$t@-T0&KH`_p4@}dw7O`W
zi}te+Qbjze&3Br9s?TPG5NpouWC3=bqO~pV<%TVY+-EhLS1mKuNama)&m{3qW0TNR
zAA!YnoWht?u0iij5S-);;-$4aq{DJC-l8mbu+Mq`8E|>1U1~>TnqfJGxEaq{1Thrm
zrUx0Q6Rk=GFgWiULz!&m^;T2->y$7@Ck~27xXpI{GC*vt&N&hv<y><8>f)^5K8K-)
zvw|WTb)$8GKLLt((kw{JLO%j(b*VG*)(%qcbt-XdV*^&OwTc!oL==IZrm(kU3h8x^
z^%8w6nH>dnP;KsU;vk~*LzbO`NVVJO`hJ^d;fVE1jXDeYrguV@O#2irIRP1YIqpqw
zbC}|LQXaL|__IZ^var)N3rLJ6@G~?j#KxG%3%e{jo}||%Y1j_4!2T0&5Zv6{&2IBq
z+QjV2r|-xkc2vN@Ios+!yo%0__gJ~qB)8KdOIZmZ$76&51KvT&9_5Ixui+*8!+ES(
z`Ek56S_feJyD(f}91ui}kaL_5O5)AZ+Ug5?Ev>!Nylm|p$%Nc;GlVPk$4)w9ijk9E
z_<rKm1lPKboFzPvFA`@bul%zu&(|M?R?#oNv$gvR*FPjTG0MZ#2L%3=Bz_^(V3BSu
zo(pLP2xu*%je-9FcrNeE)?|*)=19jZ*(W{C09n0*?AndQ7{`?>M~`rE{VSrpu$EsA
z_;oDdl4g<_=5>h+9p+|S@&3$f`BpBvG2$&#{=X;x0MN~Ath3yB5;)%CUn<{Gc+xQ6
zDGw5{$mnoak4?wcfi264ZDnEME3<MI>T7%Zeb7TD6?Y`OGk`(+yoEinkaJPlYnqq*
zBf7EE{F@bmXeY&_VOdu$pMUS3T{$dITFSE|+1|yt?08Z_zwHT71Nl3Cb?8uNT6Tls
z9b)1;f3-Z?cbdZGiBX9oAOO2~&JV90Xc@ujQQzv&>jf6(?&??+F~d8z@1yI~)r~_%
zmeKTo56L1Mx#lxUit55MAyth@Qb*lD-$?~eq~BcM={FWKI>&2qcWVp91W6Do%;bZ#
z4DtsjHChYjI<~o~tZ^jJ+sWjjugM-=Apu8isN^rE0qsm?e~L8-HBS@jH@1KA=_JHK
z+xJWIr~Wz?r||WKyUF(bMO*Aq$g!$<Mf~YW7(f9T80D}>7#tP`u)g`{9M?_ai5kya
zgGqzrv$0sjNz`t24(@ZoW<7my2S6#4)UV<jF{SIeg}NbFguCMeV+h|e{{Z8pRh<<1
zuDtP9{vungwzV25&-x9yCum%dioFy7I0K-nUK?$zy8x5NHO*UNs|~%5*42JaN9kRE
zf*irB%Lx0kNBLm?0QKvTvSwj|dsk86HX~hxf3m~>039{Tj@pYu(Hb>143Xe*RvVV7
zHYpt{tZ<o|TRrLfomYZt>!Oa-(4*3j(<mE;Q}a@-z$8@HF(+JAWr=<2HB7AwVqgap
z;XW#^FgT=R^40SaUN<U7tuV+KbgHq^yO0kwTtwMIbI{T`2fbECB=TxbqL>B&H1I$m
zVw!`T)7Ve~Op(Z##Zi+_g~m3I%C6ELv;mIVOd#Ya{He)h5a5AY`#~Ivts*FHDO^@E
z?sTYSLy#+-zVPxAb|rTaqPJQe-aP%<cLT|<JU=2aB@W-EVczLme(Kk=UfaZCIYC^d
v{fq<?x0<yfG@0dB77|2vs5FZyQG#o+yta#xw~FWIw1`S@4QidpwU7VVlTLw{

literal 0
HcmV?d00001


From d41ca8e0e6d7519e919e7dd33251fe934ee011a9 Mon Sep 17 00:00:00 2001
From: nsylke <nicksylke@outlook.com>
Date: Mon, 18 Sep 2023 20:13:46 -0500
Subject: [PATCH 73/83] feat: security headers

---
 apps/marketing/next.config.js | 34 ++++++++++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)

diff --git a/apps/marketing/next.config.js b/apps/marketing/next.config.js
index 97f904cf0..2783e4063 100644
--- a/apps/marketing/next.config.js
+++ b/apps/marketing/next.config.js
@@ -18,6 +18,40 @@ const config = {
       transform: 'lucide-react/dist/esm/icons/{{ kebabCase member }}',
     },
   },
+  async headers() {
+    return [
+      {
+        source: '/:path*',
+        headers: [
+          {
+            key: 'x-dns-prefetch-control',
+            value: 'on',
+          },
+          {
+            key: 'strict-transport-security',
+            value: 'max-age=31536000; includeSubDomains; preload',
+          },
+          {
+            key: 'x-frame-options',
+            value: 'SAMEORIGIN',
+          },
+          {
+            key: 'x-content-type-options',
+            value: 'nosniff',
+          },
+          {
+            key: 'referrer-policy',
+            value: 'strict-origin-when-cross-origin',
+          },
+          {
+            key: 'permissions-policy',
+            value:
+              'accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()',
+          },
+        ],
+      },
+    ];
+  },
 };
 
 module.exports = withContentlayer(config);

From 1be0b9e01fc1e0703228bc1431488aa409afedec Mon Sep 17 00:00:00 2001
From: David Nguyen <davidngu28@gmail.com>
Date: Thu, 14 Sep 2023 15:00:14 +1000
Subject: [PATCH 74/83] feat: add vercel build script

---
 .env.example                                  |   4 +-
 .eslintignore                                 |   1 +
 apps/marketing/next.config.js                 |   1 +
 apps/marketing/process-env.d.ts               |   3 +-
 .../src/app/(marketing)/claimed/page.tsx      |   2 +-
 apps/marketing/src/app/layout.tsx             |   4 +-
 .../src/pages/api/claim-plan/index.ts         |   6 +-
 apps/web/next.config.js                       |   1 +
 apps/web/process-env.d.ts                     |   3 +-
 .../app/(dashboard)/settings/billing/page.tsx |   2 +-
 apps/web/src/app/layout.tsx                   |   4 +-
 apps/web/src/helpers/get-feature-flag.ts      |   4 +-
 apps/web/src/pages/api/claim-plan/index.ts    |   6 +-
 assets/example.pdf                            | Bin 0 -> 39842 bytes
 package-lock.json                             |  36 +++---
 .../server-only/document/send-document.tsx    |   4 +-
 packages/lib/universal/get-base-url.ts        |   4 +-
 packages/prisma/helper.ts                     |  52 +++++++++
 packages/prisma/index.ts                      |  10 +-
 packages/prisma/package.json                  |  14 ++-
 packages/prisma/seed-database.ts              |  82 ++++++++++++++
 packages/tsconfig/process-env.d.ts            |  17 ++-
 scripts/remap-vercel-env.cjs                  |  45 ++++++++
 scripts/vercel.sh                             | 107 ++++++++++++++++++
 turbo.json                                    |  30 +++--
 25 files changed, 391 insertions(+), 51 deletions(-)
 create mode 100644 assets/example.pdf
 create mode 100644 packages/prisma/helper.ts
 create mode 100644 packages/prisma/seed-database.ts
 create mode 100644 scripts/remap-vercel-env.cjs
 create mode 100755 scripts/vercel.sh

diff --git a/.env.example b/.env.example
index 6f32b5a63..fb22bbedf 100644
--- a/.env.example
+++ b/.env.example
@@ -7,8 +7,8 @@ NEXT_PRIVATE_GOOGLE_CLIENT_ID=""
 NEXT_PRIVATE_GOOGLE_CLIENT_SECRET=""
 
 # [[APP]]
-NEXT_PUBLIC_SITE_URL="http://localhost:3000"
-NEXT_PUBLIC_APP_URL="http://localhost:3000"
+NEXT_PUBLIC_WEBAPP_URL="http://localhost:3000"
+NEXT_PUBLIC_MARKETING_URL="http://localhost:3001"
 
 # [[DATABASE]]
 NEXT_PRIVATE_DATABASE_URL="postgres://documenso:password@127.0.0.1:54320/documenso"
diff --git a/.eslintignore b/.eslintignore
index f80dc7f80..b7f7e638f 100644
--- a/.eslintignore
+++ b/.eslintignore
@@ -5,3 +5,4 @@
 # Statically hosted javascript files
 apps/*/public/*.js
 apps/*/public/*.cjs
+scripts/
diff --git a/apps/marketing/next.config.js b/apps/marketing/next.config.js
index 97f904cf0..ce479838f 100644
--- a/apps/marketing/next.config.js
+++ b/apps/marketing/next.config.js
@@ -1,6 +1,7 @@
 /* eslint-disable @typescript-eslint/no-var-requires */
 const path = require('path');
 const { withContentlayer } = require('next-contentlayer');
+const { remapVercelEnv } = require('../../scripts/remap-vercel-env.cjs');
 
 const { parsed: env } = require('dotenv').config({
   path: path.join(__dirname, '../../.env.local'),
diff --git a/apps/marketing/process-env.d.ts b/apps/marketing/process-env.d.ts
index ac170a616..3dfdcb30f 100644
--- a/apps/marketing/process-env.d.ts
+++ b/apps/marketing/process-env.d.ts
@@ -1,6 +1,7 @@
 declare namespace NodeJS {
   export interface ProcessEnv {
-    NEXT_PUBLIC_SITE_URL?: string;
+    NEXT_PUBLIC_WEBAPP_URL?: string;
+    NEXT_PUBLIC_MARKETING_URL?: string;
 
     NEXT_PRIVATE_DATABASE_URL: string;
 
diff --git a/apps/marketing/src/app/(marketing)/claimed/page.tsx b/apps/marketing/src/app/(marketing)/claimed/page.tsx
index f56ae2b26..b1636e2be 100644
--- a/apps/marketing/src/app/(marketing)/claimed/page.tsx
+++ b/apps/marketing/src/app/(marketing)/claimed/page.tsx
@@ -161,7 +161,7 @@ export default async function ClaimedPlanPage({ searchParams = {} }: ClaimedPlan
         </p>
 
         <Link
-          href={`${process.env.NEXT_PUBLIC_APP_URL}/login`}
+          href={`${process.env.NEXT_PUBLIC_WEBAPP_URL}/login`}
           target="_blank"
           className="mt-4 block"
         >
diff --git a/apps/marketing/src/app/layout.tsx b/apps/marketing/src/app/layout.tsx
index ea21ed3c3..46d9a3d32 100644
--- a/apps/marketing/src/app/layout.tsx
+++ b/apps/marketing/src/app/layout.tsx
@@ -21,12 +21,12 @@ export const metadata = {
     description:
       'Join Documenso, the open signing infrastructure, and get a 10x better signing experience. Pricing starts at $30/mo. forever! Sign in now and enjoy a faster, smarter, and more beautiful document signing process. Integrates with your favorite tools, customizable, and expandable. Support our mission and become a part of our open-source community.',
     type: 'website',
-    images: [`${process.env.NEXT_PUBLIC_SITE_URL}/opengraph-image.jpg`],
+    images: [`${process.env.NEXT_PUBLIC_MARKETING_URL}/opengraph-image.jpg`],
   },
   twitter: {
     site: '@documenso',
     card: 'summary_large_image',
-    images: [`${process.env.NEXT_PUBLIC_SITE_URL}/opengraph-image.jpg`],
+    images: [`${process.env.NEXT_PUBLIC_MARKETING_URL}/opengraph-image.jpg`],
     description:
       'Join Documenso, the open signing infrastructure, and get a 10x better signing experience. Pricing starts at $30/mo. forever! Sign in now and enjoy a faster, smarter, and more beautiful document signing process. Integrates with your favorite tools, customizable, and expandable. Support our mission and become a part of our open-source community.',
   },
diff --git a/apps/marketing/src/pages/api/claim-plan/index.ts b/apps/marketing/src/pages/api/claim-plan/index.ts
index abad354a8..3d2d8679b 100644
--- a/apps/marketing/src/pages/api/claim-plan/index.ts
+++ b/apps/marketing/src/pages/api/claim-plan/index.ts
@@ -43,7 +43,7 @@ export default async function handler(
 
     if (user && user.Subscription.length > 0) {
       return res.status(200).json({
-        redirectUrl: `${process.env.NEXT_PUBLIC_APP_URL}/login`,
+        redirectUrl: `${process.env.NEXT_PUBLIC_WEBAPP_URL}/login`,
       });
     }
 
@@ -103,8 +103,8 @@ export default async function handler(
       mode: 'subscription',
       metadata,
       allow_promotion_codes: true,
-      success_url: `${process.env.NEXT_PUBLIC_SITE_URL}/claimed?sessionId={CHECKOUT_SESSION_ID}`,
-      cancel_url: `${process.env.NEXT_PUBLIC_SITE_URL}/pricing?email=${encodeURIComponent(
+      success_url: `${process.env.NEXT_PUBLIC_MARKETING_URL}/claimed?sessionId={CHECKOUT_SESSION_ID}`,
+      cancel_url: `${process.env.NEXT_PUBLIC_MARKETING_URL}/pricing?email=${encodeURIComponent(
         email,
       )}&name=${encodeURIComponent(name)}&planId=${planId}&cancelled=true`,
     });
diff --git a/apps/web/next.config.js b/apps/web/next.config.js
index be51b51fc..a2657854a 100644
--- a/apps/web/next.config.js
+++ b/apps/web/next.config.js
@@ -1,6 +1,7 @@
 /* eslint-disable @typescript-eslint/no-var-requires */
 const path = require('path');
 const { version } = require('./package.json');
+const { remapVercelEnv } = require('../../scripts/remap-vercel-env.cjs');
 
 const { parsed: env } = require('dotenv').config({
   path: path.join(__dirname, '../../.env.local'),
diff --git a/apps/web/process-env.d.ts b/apps/web/process-env.d.ts
index 1cb0018ac..4149423dd 100644
--- a/apps/web/process-env.d.ts
+++ b/apps/web/process-env.d.ts
@@ -1,6 +1,7 @@
 declare namespace NodeJS {
   export interface ProcessEnv {
-    NEXT_PUBLIC_SITE_URL?: string;
+    NEXT_PUBLIC_WEBAPP_URL?: string;
+    NEXT_PUBLIC_MARKETING_URL?: string;
 
     NEXT_PRIVATE_DATABASE_URL: string;
 
diff --git a/apps/web/src/app/(dashboard)/settings/billing/page.tsx b/apps/web/src/app/(dashboard)/settings/billing/page.tsx
index 555c645ce..bd2659e62 100644
--- a/apps/web/src/app/(dashboard)/settings/billing/page.tsx
+++ b/apps/web/src/app/(dashboard)/settings/billing/page.tsx
@@ -35,7 +35,7 @@ export default async function BillingSettingsPage() {
   if (subscription.customerId) {
     billingPortalUrl = await getPortalSession({
       customerId: subscription.customerId,
-      returnUrl: `${process.env.NEXT_PUBLIC_SITE_URL}/settings/billing`,
+      returnUrl: `${process.env.NEXT_PUBLIC_WEBAPP_URL}/settings/billing`,
     });
   }
 
diff --git a/apps/web/src/app/layout.tsx b/apps/web/src/app/layout.tsx
index 2ce8744d4..2a1d082f9 100644
--- a/apps/web/src/app/layout.tsx
+++ b/apps/web/src/app/layout.tsx
@@ -33,12 +33,12 @@ export const metadata = {
     description:
       'Join Documenso, the open signing infrastructure, and get a 10x better signing experience. Pricing starts at $30/mo. forever! Sign in now and enjoy a faster, smarter, and more beautiful document signing process. Integrates with your favorite tools, customizable, and expandable. Support our mission and become a part of our open-source community.',
     type: 'website',
-    images: [`${process.env.NEXT_PUBLIC_SITE_URL}/opengraph-image.jpg`],
+    images: [`${process.env.NEXT_PUBLIC_WEBAPP_URL}/opengraph-image.jpg`],
   },
   twitter: {
     site: '@documenso',
     card: 'summary_large_image',
-    images: [`${process.env.NEXT_PUBLIC_SITE_URL}/opengraph-image.jpg`],
+    images: [`${process.env.NEXT_PUBLIC_WEBAPP_URL}/opengraph-image.jpg`],
     description:
       'Join Documenso, the open signing infrastructure, and get a 10x better signing experience. Pricing starts at $30/mo. forever! Sign in now and enjoy a faster, smarter, and more beautiful document signing process. Integrates with your favorite tools, customizable, and expandable. Support our mission and become a part of our open-source community.',
   },
diff --git a/apps/web/src/helpers/get-feature-flag.ts b/apps/web/src/helpers/get-feature-flag.ts
index 3b6c66528..d5cd26c33 100644
--- a/apps/web/src/helpers/get-feature-flag.ts
+++ b/apps/web/src/helpers/get-feature-flag.ts
@@ -21,7 +21,7 @@ export const getFlag = async (
     return LOCAL_FEATURE_FLAGS[flag] ?? true;
   }
 
-  const url = new URL(`${process.env.NEXT_PUBLIC_SITE_URL}/api/feature-flag/get`);
+  const url = new URL(`${process.env.NEXT_PUBLIC_WEBAPP_URL}/api/feature-flag/get`);
   url.searchParams.set('flag', flag);
 
   const response = await fetch(url, {
@@ -54,7 +54,7 @@ export const getAllFlags = async (
     return LOCAL_FEATURE_FLAGS;
   }
 
-  const url = new URL(`${process.env.NEXT_PUBLIC_SITE_URL}/api/feature-flag/all`);
+  const url = new URL(`${process.env.NEXT_PUBLIC_WEBAPP_URL}/api/feature-flag/all`);
 
   return fetch(url, {
     headers: {
diff --git a/apps/web/src/pages/api/claim-plan/index.ts b/apps/web/src/pages/api/claim-plan/index.ts
index abad354a8..3d2d8679b 100644
--- a/apps/web/src/pages/api/claim-plan/index.ts
+++ b/apps/web/src/pages/api/claim-plan/index.ts
@@ -43,7 +43,7 @@ export default async function handler(
 
     if (user && user.Subscription.length > 0) {
       return res.status(200).json({
-        redirectUrl: `${process.env.NEXT_PUBLIC_APP_URL}/login`,
+        redirectUrl: `${process.env.NEXT_PUBLIC_WEBAPP_URL}/login`,
       });
     }
 
@@ -103,8 +103,8 @@ export default async function handler(
       mode: 'subscription',
       metadata,
       allow_promotion_codes: true,
-      success_url: `${process.env.NEXT_PUBLIC_SITE_URL}/claimed?sessionId={CHECKOUT_SESSION_ID}`,
-      cancel_url: `${process.env.NEXT_PUBLIC_SITE_URL}/pricing?email=${encodeURIComponent(
+      success_url: `${process.env.NEXT_PUBLIC_MARKETING_URL}/claimed?sessionId={CHECKOUT_SESSION_ID}`,
+      cancel_url: `${process.env.NEXT_PUBLIC_MARKETING_URL}/pricing?email=${encodeURIComponent(
         email,
       )}&name=${encodeURIComponent(name)}&planId=${planId}&cancelled=true`,
     });
diff --git a/assets/example.pdf b/assets/example.pdf
new file mode 100644
index 0000000000000000000000000000000000000000..f908d84e124bc485ffe198f9d5949caa12ed2d17
GIT binary patch
literal 39842
zcmeFXRa6{Nw=ImjOK>N+1qf~l!QFyefZ#Ol&{%K@9^5U#-5r7l3j_%e+#xs(-E}+P
zfBtdCeY|7br#ntPb@iyd)?9O~J!|h>>!s#9dG1#{f><vXPLBRyy`tx%2YqnBl91rl
zwfA(gp=Z<3lvAhI(a_VDm7~|xR#KN$(o~hxq1S(-^j=Pz9gA1f9c1lgW#dlIrsHUD
z$qP3}@BHeOAiV+zWD6hv4rJv)uWjREZR2j^&MqZ|1^@Zafxv$|va+Oqg~j_;jh<H>
z<nC<g^xqE&{r5w<ey%q3yapN{9BiySv3Pa7K6w7;A0=l?TN^B1eS2$9J9>UTK@luo
zMH_otJ5TtHC>F0Q$O+`G<7#OIAN<b7+uq7XTj4EyxSFMhBfT)(yf)mky{Ct!jk_$!
z*%jns<KjsVw;^xu<Oz?7SKi6e)8?Ix704RyMAgQ{7VhO0zmTw$6upP1yN#tYmT&Ia
zKqvzI8Y+C$+1x_WL;QF1KiB^-@IMUv4+H;?F>r~KMT3C&Ps9I9{r*eM|0(JJ|JwM!
zCDaP;mVW=|;><6||61gKQ|CM%3z8AC?-x9hp%DbiZ_$%C0zleniHv)!+NioRh;RCl
zFe>R8+0;I7ydgoXnoq`?54d<qpr}y`n+Hu!o#*^sam@NrFg}yB;(ncXwJ(`B^LkvT
zcdv5uZX=M=QH9}gBb%q}28)}5(c$JxFLYwz%b4-g3p_`?l6TSCDlQ=!io=fS$AST%
zo9aGwNs8msB|dT-wD32>Ibf3@m&U)ojja(xDv*!hjo7^}4Wm-+%>jW-(yQFwLK`EL
z_s<Tn8J$cQ$ynw3(#?|v>KPZ(@Bs@xa?R(j8vfR@f1gWCN?Wgdq(cR5;x?trJf<=3
z%`h%!^eR=S%g>&IBz+df6<#cwCc0lxS;PIx3l;y#*S8yQU71238gpvt`!KrFxWe@c
zKQW$tClTvNuhO#4E$-g5=bDdSjFA1AB6s}kw4DDRV8s5e8SRpY{FU0DOnmP@6s1++
z(AGkm4H>4-qbSWfV&6N>mOp*p0sr<rbs^g7omX@@JM|X$H<CePYg>duF0K|^Xz8Yd
zlsRQ-xRO|wNwAw!?~v*EKD+*EY-lX=6{dVuhg1sjjEmHNB6Rol>gA}jOQIZ%f4uWk
zXH47Y#C}@BS-gW49(s^|TRqJSE>JVOx&JGUS(@^rqNWKH`HvVJd!!5%r=_(R9;C)4
zb9Xw#Pd~|@0yselAnoiB<%@X3XOQ(<?Z$B&<L=K^-|BQg(f{A5n*<G{muCe1n6oEV
zpRV`E&Qir*{DiqQ%|?;b%^mkJ?AX?<ctP?fI;3JN=kdBJ(EfqMm=jJ)Cu_plAAdS+
z(|lRB{GH@Z$j-OUKRmO|$Dqe7bty0T+DCIb@a+6QG2x^?sH#S)WbXxaAoe>7>wPWX
zTiR~`?N<b4iYhO<tQ}leT`ymV`dz=wyA3jo-?Q69{m-~Gj8)}Qdwm;k1SI^qxtS(&
zeXKhjGW!0l9Xb+fqk64P&~pCZ=<C@uigWTmA^!qe3H|JBo$@h{!x=<B@F7ev1O15%
z$A#qURz6bP@|lS1Y3@&BeA7UJlR`M>Ck(M0nE!D^sdGcyP^p*McyA<OgV~Z>FxTt5
zkt@Z2|7Wj2fUDcJY9E=UPLfus1CxVX{jc7u|5S2Z^v-T}>o7Km_kj*V>CiN?Db{MU
z@#XwB7A4vdhs&t#dJ9AbTKCwV7$V;$moy?i8@tAV*TsNEKbx0%Xu0HcxbQD35_y?d
zOJoQ4P6jvENyIu2misAvcV>xm%~H34JMEd{|8k2KAKeryh<kykDHPin*eSWZC&cp)
z!hkE^2ruVCv$e@b@jhJ7kp*J%qgnlle?uavI}$m)62RzI4PK0TM>iPTh6FPIe76%l
z0(#Z<9<wj7C5kI^Xor3z2G#rrm7?XZ%5_5+#_G0H?AIgFVG`HN9GidMkyR4QIGE2!
z`E|_wic9-eqM*?_aW3D*vDx`f4#tW5DChcAaz<ZIMmFt6!!7;6VfiXnxr|^r_aw+Y
zaKpz15`R9MKM>ExAO1q{bhYxkM*yPhdFKpgQC?{1NykgeEh<LsSh}<nFaLWVE#J?w
zDu8-ho$I;z_Jjzr>_1$m3hT-rnbHd#`J^W@`qD4OB!Y*U=M({*f<*Q|u$u`kEh2bq
zA|YrFKF9bms+7UyjA;2vPHL>()}3}0fW3iB4Wv?n3i%&1t-HOYtzErrjVoWmFnoEy
zqJOv-<gB0?JIeaDn=j#Jd<8pNzn)i(Kmg%SuuYGKz{7}pRZ@k+zUezBd;N@8S@22|
z3>#I3_Ps5kSzNoZV^k5{(bE}z1t}O@AS^<&-Q@abh515LF^lyE2sr!XpF^AARg(j9
z5myDAmje3Ud*A(rt4k!hcBp*h1|m|4v}XO$9~_?x!<wBNY1ES|A}(h}xQ*G7!r*J^
zGBD4eu+jNT)Dl{CYrTVRS7i}hz`50yb3*JXkpc&8sDuxvXij`{n+jJ#WvH^kgKt)}
zE*B4P37j)6!9F<MrV8h9DBbR}Y6-|}T6i^XG$ZWb8k^rSEN9CV+Gbdb?{$Da3a=WT
zPs>6arXJ?`bGiDJ<hQ=ttD;9W3;loLaWzmnVg8$8m3-L~s*()xjtli6k<+I#)?T(f
zKDQ!rfb)+EG|{Kge{hH^?Mvs_jTNrqmr7jo`Epz(>Qc?R{c}qIp|wBRT%rW<$SOZ#
zr}I4e*Q3cdp=Nlw1Ypb>LO=np2Upr=;6Tn3gZc7k{fK;Y-fu=F&N&T|`{YfFslmCk
zk=xDr{;$9#^bT|9llHhjkoCxpR8q+{R}gKk8iLGU&Mbg)ZjJnGHznb2+65xLbp5S#
zH1dDizvp=W8+&qc&GydO1hP<xzxtDFTR3%>kh#@!{zN~9_;&MS-0}YDnl0SA@W<#+
z%I1Mw=*x#xEHNrIw8BF58!N9t))mTr9(y=9*E8#A;{kcY!+Dyl-2t~EdVuqI$*(v6
zW|*epqpfG>_I-!^koq6qW|yk=DD`ypk>}^thO=)UH7J*^YbfQOH8tK#$B%7&TBg1p
zJlZyaw!I9xSehgLM_){J*#aTmuG(;<;?!k@{|VY$)q<!2?Rnn4VHbb!hM5`K(MrX#
zALG!|>!2T$f2`pd1Y{C>{>>AHgkbu-pFn0efza)T1~RGBlq=wc?y)Cz2AMv-vx(sC
zb#NYKIzH=cPN#K#x;PVCpDFs56SOVs#qMX&ztZPJNefi0AlvB29nasvxa%ag&+{S^
zOLvGJaZ*)RZSM*=uTSgf9jrKMNvodmI`_evJ%WImYX17%$^J`9+faRWB4>UT+VZh$
z?zQ>+&2trSZ>C<Roe<sW?h0MUl-+PNt)m_{p;LNzUHrA?+xiUVEb7f>^Ji4#k9_3u
zBue;Ig28K9LrvL{V_otm=$gl2neH|3N1WM*@s&Z^6#8*EPRg-y!GCWiS`CL*Gb_Zi
zobul-rF=SX%{fDYLz(`7i3lgLWHcpS$2No0%0^f|ZnJCwkk{KIpKc)Y_&E}JMAq#c
zr(Sd1(A(JvnvS0f5_|nki$g*tZkg~>+%gU}Rw5_RJoNHL+OoZg4jE30NY?X0N6d5U
zgk22&%T4g4>df;bAGL>`ZdJUI@O+gX#d|B0#ndO^AJ4CM7VgsB9qw89$M3(?hdR>C
zvc<MXz}B2h4XF{(!jtpn+PcOzXEs?y5oYnrn;t=V-}A)UhO2#9dve?ce01G$Q;7q-
zE+(o9yn~v8%ZMJSeeIslPzJrvF?>vR7IzpSKxIl39m+pY__Cnn#nZ``Zb1!eo{)`j
zOX?C)JgeH(l%kHGhq_pU<kzPgEgn(J>NNAcjZG3KfiXjzbe<L6LOjJlt1W6Cl=+`3
z82To}kom-22VE}fD9;8|AuJ!O#$RvlsA@gMsMpLho2>QRbm6ZFR=zJ+Gzdw}jPxjA
za)!PX&YtRwg{@_XJ}Lc^)TYA_tWIKMQlE}|ZGv9?g!cDqR<+83tUF-{$~;kQj6Y~$
zwnuGrE#FeUmwAU9GmhHKOE`aU^)4xrxdk4>L=9flt=FH7tr+v_eJXCeam%s&Cr7&M
zk%>Ef#6Cg20S^Ag;?VY2jySfj^ljwq^JFUCGjB$T1=J=DKN)X}`~B_hHe5#d3fP9f
zoF+$li=9z*zmoWFTOnQUE%EpDSO1jYMK8E8K+X~I<~9_}d12qNf8db-;T|;c=3XFd
zQ07l}m<ufXEAT!R2Ku0&a?<8Pv=EsBv)x|aZ%bAFj_|b3?TsYs@$3<~H<>B^t6;mk
zpMW6ug8&HQX?4~YeQzS?E|6N7>>6(>i&LXF@Nw|%bJGc<1%*lF<LKdubkWWe@P(|g
zSA5j&?a379dz~uM@NdU`wSrP~NO%hye12U#2sTg+hV~mS8`gJRn_7Kcvsm2zc;tT{
zBQQ4ur2_k(rYFT;OO$|P<bOl(Y5q<}faGzYTY3H?Ul5cCO~9Ay+y^cjy*>c!x45td
z=%LD%{pTvd^XOQ|8gJQ3H~3)m6Sp*2b2>D+qI=NM^HA7sxE-^KPUb?$E4I^Uk+Xo`
zw9h!;aJ5GKej)!yM_<MLx36yRt_Pi^vsz)hx5jN3<-Mr^J}zdGu!HzN&MIQ=<e!^7
zQ_qp5)Pi_R6mU+j-=_!87(~EmmpO&rn3;W6$H^ya>5#uR88m4f6NVyPXnD%hkej>*
zyqrnjNl2JYuGB=zm;*Xv0_W8!3^H$>{T2vribyvpFVAAb@8gR(QZCNTg^J9-T`_n%
zAhobmJ46jgJBvJNKdd$Mirjv09&qO1q+)|C)}R-$#7uM0r`}pqnvi@fBdG1ZKRFw%
z?h18f@$=j2^5I}3Rx99lRseM;)MvRmdH*n4jXcF*``P^?f;5UYrub_PEpY#R5r6Id
z^taB~uzH2Wv*epc%9{cYl-H9=VnS{D&bawW=2c5fFJMnd%cSIWPWelHHlp0-s+vdp
zJ)=CUL9&6pYtIjd+2eF=-?G2Em3$_sPBN5R+}rr>nn`R44YT#c-*0Tn5=g(}X!SvC
zuZ5kAvbX28BhI+IMo_ykulTW2z~|~tX>7Ny)q%;%WL4T$m14!16!^DOHu7;~lr|}T
zWN$%ng#78bZ*F89_aG@I$~AL%AM^A0!`=M*-cN=UpLl5ak0&_)wsRAEOr^is9grT3
z%#RygYaafcQ@fJ<`}4i9bc}jRwoq9hLPZ}(#kmzVTEH&;T-g3^2S;n9-k6LBg{HVF
zhy3X5CYRonO(pe2zfNcRkAU$@xybV%7O0W-=41z5Oymy^@)*YvPHTg;fyN(r!-i&o
zMZI4{jo*H|0Z!JW%5=E#$d-Uy<uF>7AKa&>-jl@%unNsBg~r|SDg$X<9|2LycmsUz
zxR!O3TYDPr<*lBHJ7ZteUm1=nPZ><c4!D_=y1)G7KU_;xx8#-9JR>xPJ+z#}-2=w3
zdbOMFR%Z4R?7LM0R!0H10CULO)V`rKaHwrmwND0K<<~&zEe`{3UIGZ+qWeDgqn_zP
zep0LsCGWun9~5hVzwvPpgzPZ;oaL_vwHvp&yxLt*Gw)^~jflegRVm(@UO9<;h~b6<
z`oqo&K?s|^^B9c-m3ytyku8DqmhE5qc#0M@t#L<vgw!o$_B*rw@rySlLDM{pQY2o1
zrTx4)%~|JgNE<xJ+ZkuBX<#uwe8Y%9TM1akZCh$g1@^txjmOz!9Y`!QDvnB);P9KM
ziDz0xX`<xqOG>(9OmK&Se5igYI!?6-YJdAQ9nZQ!*-Xg<E+wVqx@?M)A5?Q%n0&Nh
z`<Ylm=@Q{k9oH^)fH=<@{ZV4s?viIp?`d8bz|C{pL3U_wgq=`+enKcGkenas>26*C
z(lm~#<_SyoJU+D*@xJzKOQAu};r3fAB*Nkx+4;SDu!gnj?xRk1*+7`I0DNu25F_82
zQU5%k9W%~+B+e70*jP*dsdq7YNLj*yb|y$ii&Eedgl?Tq{NkOPttv{VKidX~C+_{F
zu66@;&icH*>6w`6y8`KGtBz7ji7OjYZb=5RZ4Rj@cU_3V2L$5VA4-SKJEV0g7fBQ>
ztip-_Sm#kru%*2j4x2+9;yc=cyyj2^u!ooHM`&;wC4W!qy+nJh#6ER`rFDzSx7hWy
zoqIV4;fVr&0SqYBKQ%PH@ittVjq+6Vtzt{Se^X%l@@V>(sJUF|auy?WnGCfTB#!^}
ztFIJ<Q9<!!hgf`FU+uO?dM8K*fm#;~Ls1}fO3W%C@Osgc<XmE})ti=YiB%~OU-RR&
z(H~3*$H|wQ7lQsM4OMu{OW+|k8y_!~(4mx_S-6nxB@s#0l<npeZkz?{Hwz8@*~=DM
zlt)06^!_&S*~?SpP$op-s82)KWa|~COAxapgHv<TbMt&$on8f@@S>^W`QxCChR^mV
z@0XAQ+g2n|!D;=#h}Ih<8xIhVmSZRTNt9=2=e43hN9=i!0&l_$lSTT7_M1RAgkaWH
zL2+l~Doy5H?+jPz$Xr`KeVbuAF6D#nBEi}kK<qaN3wa$z{HIfkTM%BnKZF|9MH;Cs
zQO(lTKlc%$0D7hF)N5VyazE8Nexuae?<zs)MD$lWwnvDV9D%tBC*=c^bh!fCWXN;n
zQ!F8mQ0hrvZ|LBgiEos#`EhhEL0M@EL9$~}$C1&SRl337vW_J&P+(7Pw>7fs$MmQ7
z>CbWy+mfh<uOn&ulr*77YExeGFq(E63$53+wLqvc9%AX$gG#0;(yS5S<@YL-`;|c-
zi-5Uv`aF#s!yM-~wr)ARvdq--IC)E0McHZeT=-3&*b$=^%TnsEYr_%P`%V<Fy4rf;
zY~49qb%w%?XJaA3Fg%180XJre3bG_PX`C0DEq5~`{z0QB5iL;~`r`LLnEezSA;Ac8
zZb9-$#R{?gz3sao0eNiy5O84!*|MF@)Y>b2ji<Iu*%VkuH|)gST$2(wbkZxU?V&8`
zfSuf&#L%u{r@U_ctR={#{iRRKZ=Us1M>&-`=jcf@%P{f#VV}N$HY*_>K4&4iGN}t&
zo4r$&C+}F-mCfGIE5F5%ceaYR(gz<%L)W>?Q|@e})CxH3@IvkV3BxLO?rEph2OF8C
z&-xh_T)k+Bo=PI0<GOxH@LZqu;*qbN?VZ2c8{sZ;Q3Fr4{B*W^<K_olCe^7|%Tk}>
zUyesD?17zJ5sOl+^&(O&_4(yK%PCq){nVOPS8M56WD#Xwm`$8d_lt+!Ycs&NV3R(C
z+_QZ(6UIkbQ@Gogk1@qbH<R`#eIjq6yb<Cjs6!7_hVH~rlGwgDPudyO0+QNJ*_8o$
zt~Rte+;!^s+qegVz`ru<$9;ZsOO;O5&s#I=8CE*LOP+HuMB9LmFE+-=#2oM<P4nUU
zOK0!3Xo8D33pS;nt32Wtq;{yiu%B){Bd=iJfZ-le%C)dB!8aZx0nxAka3z1Kud2@6
z=jmCKzuVqo@3R`nvX7U4{^YP0f7Zpyf+<we2pN|r=Q_-&*<P5+Y%6Lyr5EOZjm)%b
zWs6>psSvNte%d|)+gCeoeyzp~La}JDq40t3a!<j+y<}F=?Lr(PjMilUFRwIw1l0pb
zyP3Zgd{bYG7o(!<PW)wVLg8o<jP?C9V%y$d!@`Y=xTK@PG~UvvLoj}eg0Pbo2$O2o
z)GHGx6&trw8RGlAMC<V)bKsFL`lhc?+Xq{Gf5lZ=1blT`RWD>h%hqQ=)~%kZzU{5=
zFWF%!T23^n`S*-^u;tKy>6Hg4R}wF&<8STtcDZfWf`Z?tzX!NS+jx*V#~K!#`2iNA
zhor9q43N5jf?-Y<is52&)>#HJROUPF#%}%W8FmyYAF8b`ilkYvtim4pUQ;`-EBZI(
zKb7v(+gs_(qJ0Z8b|2Od+B%eOq@8#_Wl%)Ppz{5Y!unZc$ng!pJ$KOcnkRR76AE>u
zEx|V@Hhp3^KX6~`rO~G0gFus?c7q24JC@?dq_ep;3th3H%PqQ1Q&dkNWZSlaB&!>9
z;esuSmv4*X)n<7}^#<#9!<&y+bCVJVHQXfL0+Uh^rkvA$8)mM0s?5avcqyV`yT9cE
zZdnsDB`tmuAA$*1{HUqjOf9$<>XxjL@*~%k-a*klf8+T%mF}U;(&`V1Y2og<&AT)Q
z43NK{XoE`G#_4U+Hc43Je-3_Q<rk3ViVt1x`F8w`ANV<&zJx$s3cOV0e{aD*<TlnL
zGhTw;lq)!<#Mx;KcoU)hk$Ryq3m^?69?o)Y-K2#E9Q`s;C5ouHd@q(BTYra`AiD**
zxP4s~Iw7lBh}T!;=^*<`zuaZ>PZ|yIkXw{WA_GR$4?Vmz=esl6BzO|jqIwJ-7=|Jq
zj6%^g%IaKwYcjwjX|BX@j`R=qsXQus18EWm-@x;zx`h;|InyKZomTCmv7y0CDys8&
z?e9nO1%r45-w@bSb(kr8oW17zJxF@meonc|<-r|gE55!O&LJ0)2@s&|F(QqSh2S&q
zl6BrY#a{#v*&wbBtdrFJ;4BoId1jd_qx%zl)wi}My{z;YNw*J|z8`}oX`+g3>YTl?
z66eK0Cl7~d5SOtS2VRL11^hL1kM^+R$C#QR+1I(FLg0PC+TP}EM4O~WnRwT7hX4gf
zWs68mWyjqX+01+6`s2yzo7k8HD5*N{Q6Ve?L>$|U7+Lfextb=j%MC~KoJ@!d&3R0v
zmpG>d>;q)vJLB9D`tL`fCdDFE-!{=av1>%+1GXY3n*?a<=D+x0xl%!wU+YlqaX-$m
zE&oDwO@o~r578yUS9oQGOsgU!*V(Sf`N!2&4rJa+{2yE~-M~<=X^_MN7k`j^P-VoX
ziY@W%BTrxP;+6$1V(+_3Sb!DuJL#o~H{v=7edHL0SxNdu-`?sYjrHG<K~b69fL*^o
z_J4B&`1E_7?E2V*Edtvjtps^p_Kwx%+q1u}-nSUGC&5m#zg^g#t5=uVC@az9Er5T6
zE)|;8C)CG;<dSmIXf)9`jdTNlG5fC2>eZ~B0PQd9Ph<>MOZCn)zISlvJ$x*T%1}7D
z_}kh&fp81#X@13B<03<^=N=)<M;QJi!XqWEDPq9*13FQt@h*(IT`hKCkQ03iO|Z}P
z#oORC&~=<Lb;*gFeo($!?@oYU_@XNlbXl*Y-aE_loVx-Y#Wfd37Sg3g`SPm%L|@$Q
zoj<}p!i(~j=QXEtmT3RqW`Mrd?TlD*YsI6`Po+(vF@ftc(OsFQ_pO97P+_UURi1BC
zM<|jlc4Hq(OCpZGi(A|kOrWO7D6)-O;%t)a7gdLQh>4FYk!qdh2c~w+H1@cW*?0$|
z;hGm=z~5yX(mwgr$F>`L>RRnqlPgNN(Wyb&BW@7<7?os9Gs|vPcK=x{J^+Ct7gd~5
zV9EZS5P91&xO1qzR9MGB2!W`8z`~vz7`rKOJhjOP^NU|+Kq!PQpb-}2PkyI-FKKl3
z{jnD94KRC3ud>KIOm<)@tm<lsz@uQHi#em$Hzxc*`n_Y7tSy!%hXOcu?q@2Dyn|f)
zcD*WUe$Bp<wZg6E(jTQGYMaYHe^Mc~*N#P90WhO0Raho;mv!hT<uQchAaS*8ZMFNB
z{XDxZ;0MYU*OMBjJ+AtuT++V1`{2N}fW>;$S5~E464rtdlRh9jK7`&v({7(|@s(b%
zzgnl80P-GZ2)f?4t7>yHnIxx{8}uop&rP3uW_Hvf_FVAF?i&!PTmt+ViH}=(QuBI!
za$(v09>yq)TX)E%kAQyMxBTjocqNu9=cm`YJxR`)4NZsfywz{pqYp3>-Pa3XL=b#E
zi}C!ONnOZ5pD-47L-fokpzoFfTT@qQ`9_<d`^zpx%dnsk12s3aB(kc25|<*Oq0`LO
zRL$h}Nu=coQ9{eb?J5VS-;^XPE4(ER8C`qzxKE$Zn)%RqL>Hs(-rXTp>jeB;HYo28
z&Xx>Zp-{nUWUpp?f`6T6X1mI}#IO}ub%Jxa8@|*#lmkdY0rw?R<T<?8{oSx4Q>Ms^
zvL`g#qdv7`*KO^yuaYnKa!*>`cEu7(uybA~D>hI$3z!iY^^^H*KN1RK=^#J03-06H
zO<r$~npmIaxqbRWzl*3TD+}dqB5z_MX;YLVK`)pi(JwJSeX5c~O@29?4533bQ;U_e
zy}!vmnEhKh-TH2|=lc)0C@T%Ddx|U=wy$n<qyk=n-4V4%q}HP2FoCg7BZK+^u=jAJ
z6O42K_P7au`hiK!-l-yi4W++Y(;VrQ8TVn5V`HIQz#8BV3aeTb3-w6<LGjoMbLm^B
z%R#*|kq@LtcJX@4B)9<XYkRrfMA=mpy}O?15@CNGS^G)$@MC7iKr-Y4IVmMp;;Q_l
z@U)6UVIPCs8!<sD10Tgp07}+qh@7(>M8<=vxD#Udp+LG9e6inyu3^sd8P{f6nFm2c
z4Y=51-R`k?!NseQ@HOXrV_T;fy4+{(_ky)6zDfVsFv33l8hujOx`R<9UV%#WMQO8B
zh&V@65*0fs0feKr7JBuj{kzlDjZjq#juVlO3s5VtSghzirwn*-W#pE#a=nN&3bCqG
zVUO^8(QqIX`17q_xT0Gr>_iGl8nskEA#=5RZ#VZxjDsRtC>hNX-u2h3u!$^~c-W9O
zZODc-D^Nogd}#92vgj;z5%O$9b)Tm|M9te#w#ej@4KrTb%8pQToIH5c-+Sz>F+)A^
zE(la@97;^3On-7Ja<^iZ;CXrL!i>?M`@MU>T<dZ$@0I_^bO?#7L2sGLS;-iN39a!7
zh(iA%R<@PJ<Uxp=Gqktt#j78J^T6B26GmfQW{;^ZV`MVE$(1A12{O#&I@8y9KLN(A
zvlQg$`N(msf^y1_TVx`*c*J7Y(`|As0#F|m4YSPlIa=n7d{8ZG?%<P`7{-M>uX4h>
zymFxRce__iE<I?|YGk$y8%O#M<0<qalQQkL*xS(+mVzA-QG_=tt9^+~6&pY#?U5PV
zHQ|G?d?rQ~79?56zl}^$9v$JVzrckoV9m*-Kn2A|_6^Tx`??-{=<7VMN>RY&9wJ*P
zduxuqQIsG%=0bC(VHD>VNw>DVY)yz0YVX<J?p+Qf_A?U3uIBVlOSs9SF3Rv13O(Rx
zxud^(RL!jbJ~mgVPuyd!P^}~;ZCkP3EopnkzfMi#jev3eenPekGB1`R!jZo~%-c8D
z!)?>?45bodQHAgD_-BJ3S=+0=cqxyPg0Olpnb1A%L?g$R<P%vS<_|2T$7=J*T+FX-
z=GjozrD-dGo&NhoMZ{)<0j6fDu3(3Qua5%zH5<XlMx`m~*_-veZyLZ&<93X{p4B#D
zsdM?EJ{W!57frmsqW7Gv*7dD@@sCNmRJKb~u5UJ%P!~$wLt1(>^~(B6``;)KBpSyt
zD<4YhxMD9==Gfj<oAO!BTyeA3O1vi$d8l06#-VL~s@EfUI^b0;!|d)M3#p^E6=*ue
zUYDy7c%grVktFoHYSPQ&3%fbZtL#H*C-E^zMYc>LDX_3*?^_HLM&+#cjjI!TblYYX
zFiIaU_$zsWe3fZ`js1w}X2mqsLz2kQY9j!&S=c>AdYvpf&hK4+I(XB?pl?*%!~m}l
zjQfT*Lk!y359PY`tJ(pU@>4`}7<rX|^oQ(4V$C~{p}uV&mer@H#k$gRz-CN5Mqi~<
zm+do??Ar5Hnv-DYvt}J!#Zs6tpr|h|)k}{8cJ{Hr9xpjBQ=FL0S2Ou#8?YPpfim-C
z*+UQ48o@Tb>|xX;86c<^b;%i`sP-D>(LCmH<_9rH6F()H*EbNvaP9o0FeNQHY}HBK
z<CA(v04`C8><z#?GoXV)-&p3y%+5^COrA1G<b|q`Oy6w2N*n&YpQ(xcm#M5EbCdE*
zUe5!2Eb%QEd-Rd!iu73nGEkc8G5cmi`Q}2K(72qSRqAn!Z}?aBw0ZKCoS%et$`2ai
zAb`xQ%^Z_#;(>x!?s55wGdA^1KdE0`a>lluHkk3yjFI!wNY5xP{1@dR*!VL4uLmg)
z0=vU(*bN&2!jA>udAaajO4*>9bmhFyM#an1he8uKQ-N4ka22(hFpJc9yK+0)?ycp|
zWu>$R7p`zgqupc(@L_o!ga#IZEkn25in*4az|#*`JIR|o;zdr;8`wTM`XOklzxTR_
z+<8za{Iv)j-z30{3uxDR?4OFLuw=7LzEAyWXs{6-V<AvyRX9uV?(j=D-&Up@G<$gK
z;o0_)tu4)!3W12zB!o=t7Q|eq1WEsbHC^D&%lYym&a+Qu>F4Wumx=}oOxzQUFyUb=
zJnJ1KqROydSn6=xT9TRVCv9&kuX{mwbO^2(TUCR_C@bOGkY+06zj?J6nvKMReGE0v
zs@6>2QZpLL`d+X1m+eHC72b+Ur~`G?N9Gca%{w|azr1fBU#DpNxcHEX4WRAZCr2g0
zP(3n%@YX+8j|cfy=wpj^)rg-Upzh|626<Ci-^^E}u+@{h_*t#QA{Rm$F<9wvy!34Y
zahH^|Gu4<KAlH}=;V2OGgXr>h^s)P-xFU@$?k&?r?0bQ}Y4IkOzVl>j4ZU0{z-7P8
zoRDRm?#npc-s4+&pW)eMaQ|1u7vsN5s`;L!N}&=G8o=$=PzN^Zy;;1Sr<Y8pEj!*(
zZX;iDA_95zM@sx-l~Yg1`|c19t9<$_qp6`A;MuqXRfVQkE?AR7CKyygFrZJO>4aH@
ze~5RJgB^&)B~3~+!->?q5lFR0$2Jc>sqHKZYq{Cd1{38Bps<8IOIa^){`$)!#CaB;
zlp*G5e)v*ps4gQt9!lF9Km4VkF^!wqdDhg(<NS4*YsJluuZxo39yI&onlx?T;_7aE
z7eTp(6r-ZHF%IOG_>C!my^~LyA{jd*Vxx&mJZ;FHUjcL$6yEdv+7qZ|^mQrkaQ9ma
ziw<5(CA<h7{_(5P^kXrxnCY&{mu@Yw?Qgb6z^6B3BW(^~c4;F=(M8-A|6-6Lc_V-V
z83LhGD?Fo~=o*FQDs2vv>K6i-RC7wGCoU}13_;;8DS=%6InHQ@E7sc1D;^sxt>nch
z1Z%rOfkCV(C><+m)wDXv-ZNLHT>W~&Ikw6$k|XRV>tej%I*UMm4Ski_wqYR>!Mw$3
zBs4E5oy-lpv2j(+4?yRuO9=eTH@xV+H+9pGjKL5GW)?iLr*ef#M;51pFh1s9a(YBB
zi$1`6ZsXXoD4Smjd~;2%4NRjxP_|_`e^<9@Q2gn);~{jvqkcZ7pW6kbNgX2XN`uq^
zV{IKh<9_sJ!dNdD+_V!Q@CifzrS^(Bk|@VT5u*M1U5MEqUK{ovDOXT>m>zkd&Jsi~
zEo--P-LZ2kc(-A_Te`EeG3ZU2WV$`M6!&$<O`?G2;ght&Y*EJC;F>8ilvUNd+0>Gp
zRUG1P%!c;quMG48r{^9y5PE_Gu70r|!%U0V7mB+|G%S5KdU=L1sr;BPU-9j`q$de9
zJS|m6EWZT!EBi9o2gGS?AGje~92%tbo;06CHtRC9<MS8Dxb%(ZgzO81+O2s)!V};{
zOtmc}qwq6(mV}IP=(7cPAHhfSpG-)WE9~#;&71Yansm^HFeBeGCfQIp(AQA!DmxRZ
z23q7KfQ{5Pz&8qAX@Q}A$3r)qUonE|GEr5i{I|9;Nme1|k@c`jExO8m*;saBNlk$2
z?FAHLv*085bCq-WExW6J1Xmq7p7{_qfF6gdJ=}{LD1vjjEh!IJ<tQ8Jq+PSOW|vNv
zqs%ZjjNu;mSbXwPlxF8S{AnSD*{=3c8*0wbV_=%XR!HH06Di(0IwYnq2k|0Y_~R^v
zWLzUm;QM&axQ-x`v!BQGCDgcT_4^4u$K-j-X{$JPYd?PQ51X66VfF8n2Cbbw35uL#
zU^zq4K|)<@@QSf1x(`kfw#N%UWhwVS@Q*K{m+;W(W}_nx##I}8M5>%1Tx`$OD&#%H
zlaK>;y2fvE=u&xwdYu@Y=lRfFCQUFc`=8jV>!(t;wMn<TB6F;WjscSn-s)H5k3KiK
z)It$_P^~;8Rx*G5^<A?09a(Y2t%s>rgGOflH)A1^F(ypEm`0zgRW=&u4$fCIi9P=C
zs?S7U>Zo7dPlpMY0;aW6pEQ@i=8vBhYZK6q!CHqs1%Hmf(w72Fy6A0XLeIlZd{}`f
zzSyEwqKz&jx7xO4qoVG;aTLDMFe)3X{)fVnQe_K5TNR>0R*^nke63!TQ|do7VeFRl
z%sKt9R4o~yZMCT&wSX{EBF{h^yRS*51@2Y1T{DGvz9|-w02{XKkieP~@?MP_TT=Y;
z4_s&t*%OBT-wczDl(m^g&nE2gd*94<JqpKHI}hMqW{Jqfw{gFut2CDYB1&!@5ghzQ
z;CVKnZ!G;yUEb`63=Is*>zBVIJ-=?LA%r>G^5t2CUWYR;nBx{+tjpd2!hQ$Q+YxVa
zxHl&@?Gb(B^%oyoz3F{O;%;Ul5fn?cbx=CFl3{e?Oq*X2!f@L-6tORrwiiaYt4@&u
zah6_szQY&%J&-pnT72Fq@U`W>-4f;1N~lvSdUuc3(EBWJ!}4Fe!NlM!b}O~vOwf<3
z{K7wG)`oSMh1Ea{DT<vByM!j-@#X@`A&lz%#<f4chdE)~htR<re-m-Z70>9Bah&tU
zYz<qA^a=+mjqTQPrsB<b#=#5{67jFYZTW%_CvZ(SchQD4%>1z>;vG=((gZk-peMSp
zsEiYoNvnQRzu^1XyZpsT45KiLe|`XUi&!UYnClAVN@7N)Qfw*wgUAm})()Ggp}RM7
z>M?TVF%-+Y+q^j!IE#P%6q*F9({2Iomsz<cm~d9t;j9kl0n4aef4rF;rUNvalAjG7
zFztMe9O;VhKC6bq4+Tr+Y-dqP+ELrSd}u-%{z(371UG%{mY{N1P*JuKK`t#jfk&kf
z81J#1ra+|i#Ke!PK)(4r)$b49A@CKHVeX|*8q$p%r`pk^q1KIN#{A4X@imM1n#qE!
zHv3yQ%^*R?=i^s*w-mfF1^YjzwBCw<thPJ&8s3Pk9BC4<ok%kyr>pFQ!uOj!_e~}v
zsJ2FuD(#<rsU5yt@GjyUr@X+-iscw$x-sX^jH4+wn3NtkC++IwKuIQ_!oP!I?!;_e
zb-S-5;0eGneh;m3Fh^Ecw+rJk&wZe8wpV$2J2=jQh+BAT!qDXS3+1&$e!qipTBx+h
zB>1;m7ewp%?-^j7??GhyysA|E<AF=Z>Fd=JaqkNu>TFF7#I#%RXK!vV9Jm6E6y48U
z1LjCvY0Rk_Cc|s9E!8pIAD~663@6d$)bL|W#YaAL`!srkaRJ1gdXi7aRD&g@qLmg%
zJV=C*m<TzUvjO+6P~l~y)=}*4P+s+)dCF#u%vAOU1=P7l=2gO5%y!&X7`T}sGrr)c
zwMAa}w4?*-3$BRY;H;4V8JMjN<%nTlrV&(QN`i=JYHb6|IF)D+ZT69e5Dqf!zd#nM
z&FHot0JpQg%u$M|uJ2@e0v>xMXCKIx*(6?3(-s0t7lpV?iYx6%cJp+U)lWKZhGT|7
zInLZS=lqAr^%QzIh9tEB!X|)o{1&~#4vJ5&+LSdiWRDy7nRQ`~0uTAjcp@b`67tq8
zEC)x<kAS9Lr3GI|=1~CV_n||W&gTAZmN(6}B+FEf9`q}d>*fq2gf5UJsu2eMYN<mL
z23ID5!ydZbVSp3oEM_!SiVs>RGx=hJf&4JZg5?uy<Ph?WG-bDm0FlG|3v5>x4Rpv}
z-0dcPz?N9T(rkwHCCiq?*D|z5HUoh8PXLiwTd2?+q)wkUXvEX!M`cO`zD6d#SlXs~
zcYjF2AZI^@L}$)hzr~y0Iw)}KR)vl-;ET1M;gS-Q8q}D&`02=stYB%`4{XYQsu_@4
z{(~{J5f<)~U`h&~Hs@Ob2M@??p)cNka!4-65kx~+M(oGVCVNLN6v6`M@jFA+-+4Q<
z#9v*gflX?mFGe7A-gMeLW{09L*XYMSl0ZI-8UUaeM#DdbD9tfTU{fZ&@59qTut~xp
zVg~BR-Fg{enNyO`{7*8UVr3Sn{<^ySYLoD=L>I_;P+=+<JNygwMrRJ+t$UKoBWYl7
z%k2AUS;J=6df}z&#sL@2M57UQR}y$t$`;+jSicM4bS8TwJd-!TaAv*H)r*Mw`QKlf
z=pw>_UW8Fa;$?&(H5er^p!|}I=I+IdP4vlH%&cKx4wQr(iWvZ`1kLE#P_z<YW2}0~
zwR$e|W14J^ycS)%3K%;jAw21ixkYN!<k|#+TjYk5G^cexZGPa)y~{XnDh<<2aAChs
z!%f*Jt|SYFy5<*YvgXw&diz);wi7V&nL39E8k|hS*#PsYj(gI6enxXW1kHx+(Y*{4
z#T^-v_z;r&Wx)3G59N9m4lPW}hvK7FHQ*(4B8^`TD2{SOe}87!t&zFiRCFJ$#hneO
zD*-xtFCVf+xX{txBSDZnQEF8|ngouA$QB+0Go+T$3IR<POMP)$xu;XV{XX7!SW^xw
zeOfZSdyF0(`W|6foa2~!&r3W3F;8TUZsFYagVb#z_V~=K*wbxYuBnnNF(Fqmy)p^j
zN~1vUjxuwg%Op9k15W<nUiTn1Q^*p?qq%R)M9u?3>Ns3PpSnpaVFe-5G<mf`eEB@;
zz|fw0xorJAnhR7)L>bd}X{to-2<8u_l>=tcgMA+#U!u_T>(%FhOW*NmEHup<X6_?J
zaWyUI%{qXcx(;Ow0gnNzz)lwU3Om%|es1pW?LdX494*$5uQHXG>yzfg>`j#KhqVpP
zc2Wk<Za0;QB2hb$x<dN*alR-uz{GzxV047y{{)Uuk`(kQ$u-d{0DmKe5s+FnXP+H_
zJxl&ZnMJ(6tQe&bnVus&vCMa=4}JTT6|<WWoU$?qkx-Gj=^x<9oE}V1VW$LDF3bRJ
z>TCNBi3dkulwaV8R1rx!*DIgg%Wf}9)DRb0DiNCy_I$eJ3qhi-I|#^$$vG1Jrb3m-
z74ggPn`!`M1^Fl(2ZXQ)ZgfpU4N)f(fi6ETWQQ0M&rIYSheUF+aob{`@?l#rijfva
z^9|!WD=mRNwgyvJvEORxWf&$(f4r|ddrO@#e)sOnGA1pC7DMwb9fg%r*zj*--KJZ_
zo`XN|?K~c}UT*3@3x?~p57V!_+;CyO)_y5<LW|XqonzT-6*#g2dQYAVq{BFu2?Yz{
z!%dbY@YZ0c5WNQ$;;nQH8-teF7K|O<Dgb(eKY<{!s3X?L<Eoioc&LDBGOmb*$D<r0
zxv+g=4fR2sdDemjci;OTEq&>-F+Ki9Prl$(1R>a+(nWKIE^o4Y0|N1QTYQsH3UpJx
zU*Gh-@<pxs(ldL)uU?zQrMp-P4!H;M65^N)|B`?CjRLQ286Z#DF%_^BqJvE2Odz$#
z^DY5;^<k?aIQ;M#BT_so+!4|z-VLLA!O^Edn8BF>lkBJ4Lrr1*jLMf*-B8|LrAtsz
zsBZnqW;9aKk68p)ON)hM^HX&b7?Ga|l?4C6Ez%RhkWE)nQUi2?#<NvZ#9zep5^Abh
z_~yfguFA^@hO#Cz(a&X5a-ACms6IYt^t=nUC{0dJyUH$c3xI-EuY5yv&aau9y3F`;
zK0qrVOssoW!+A2d(%FYH4)qSu<-PUVXZevY2PDJ#sPQUK=;Op=NMBHXp_rJz8BUsr
zg_eAm<WJpduQvNA<<bzv<(Ct9yUF;RoQZZ2u8HFXt&>kfd<b2ItvYi3{+CUBNoSCF
zKf5kwdu%jb0wX#f<3LbAOjzM1uh1Ho*AHbhIA>rbBeX>T%4{stV<9vG!JmXx5S9@7
zApHc`ib>hAAa$H52@~i{4TP;K5hxmpmi%x`#V=34e{{fXyzBHe@_#w0j}hSDp0Fio
z=9o2J1NBvVWB2Td7li`tL8L@6L|weyq&jR%jx;>G>6_u17$B5X2e8BGW_8u8zV;V*
z3p@2_--J+r9eA}!zKD5q^lD?Z_rQ2r?I|<?Ii5-Fo3Is<6M)^|jq{g?PSQeHAAR<p
zS@_p=(!vvo&-%oCN7%RhwKgdKP%*$!MRqjDA}<&>HCM2?01qh^_LCa>Y%Q-HxwgMq
z5RP(Pwk_VXw!MLKwY<kT_TH21usdd;4PUc-%QqJW#_9EPY416f$&5{mU0o#nnCo%g
ziNdVag}b1mGX(#rV&{ia37jaQ)RIk=8vuG}tvcU-R2sXP!oOmn($<GIVg-%P;2S*4
z!b?id`4>_r#UkqCGdl-))}Dw6slc}+XRi8rMR^xI>yANBeS#L-P#OQ&4MsSeAn0-s
zTE1I02@TG4@vJ{2i%>!h2ojRLkcbTM>}BDDjON5rqE7BP#I<Dl(zFwoGtXmCbKlVU
z)`up-h--$CZow_GHwE%0R3lRgzhkja`f58(B8}d9lga)hLgM-zzKdzCMVi67K2Pz1
zOZOT2oV>C?HZ)xQ8dLT!#5CPS`NR9t@2;qpm-%V%_D|Gl)FLe08)?>?ohI1Va>}}o
zTj9<qzS*#-aP(xdcH1BagdY8DP6u79FMsU<Vzm2%=b&&bW;t*ylC*^|UZ%&9|D>%i
z>`d36>+O1s3LMa`UT6MJg{E7tI|4RSlE#=eW;yUt^C8Be7{+z7Zjo4GH?;IPD7>su
z&Td!~9WE4_J!AXTg07|wqB(;g2+#PNEeohW18MqhE}Ewn>(IhYAI$^j>frCwuV^NH
z4&N%ZYAi<!)>OLp8%}_G3t@Q$ASU=s25Npx0IldMQyb%7tohe+b;a{OuuU<Mp^@Ad
zdGd~w3>6_a?919@&iqk%+=NZXvDf!S52m*kL-*01D%FN@MWz<AWVCIlRo}42xP&y{
z{_74vlWPdpG}$1+3mQmRrB1lvg9`T#DQNu3_=XcNi)R!_Jcs)6Il1TEtE5{1*?-d7
z2Z~<sVJ?ic(%2KOY<>wy2OyNc_>3e3uBook?aU$mGEgwK#iYg!SNw%F47&;OUXwgl
zV_A0J``-E-mZ`lJZ24SJ*lLqFUivKtc4CaQzppg0l(^uBoShp%g1-QWx#Guoue+0m
zR)_>}IHa$?HA2f>r2Q1iKx_Ne-^ksr5D4xkOZ$BbkXIK9wU@vuR11AL`>aq-Mv8hv
zqaym4{g4a=5%YoYF-0q_hA0XxPF$VYkKD!YK0FqeQ4wW!6cN;;F1kupJPdI{0g_*u
zVJz^LK(F+?rS&={5NZ@af3<~mHT+w&$AeNS#IsC99q4%xej$}{f6aq^Q={qKY>PDY
zpcfE>vBm%Bt{)8$D_Jyho%S~Nz%HUl7bEvvssORNA1>OSpM}62{#Y^<CZ$iMTr?Kq
zndOlP#@pm}I|48r+MOz4HIkp&JYFLOS#Es(YzELajC00aq7Ga+yHWsh%rAv-kC_sQ
zjcFkNY6~Q`6eqA*V<KXpb2~QZ1}V5Fe8A+|BjrLg0kJB(WT5h8ZN3VK(JTa(H){!i
zd(zPH^ZKWWJ4hXUCZ%Ks<M}Wyyib)^Fq@4sM-Y?ImaeemUh3b>ru&8D>u%$xBUSA2
zl$_N>qslga#z=+8&pER+6%_4`Mcd)kP&jZs?#w0&|Gs?`>zwQgKe4A}1R*Mnn|jg>
z?3AeZGj$s`4_QL$qL$M5J3#}Sh6t5y-$<P^b0a7=EqVXouV09sVm*RWFjZk#U3E@%
z0Nx3KR(k;eeqp&;P}ch1|Lre(<nVQge~F8apwQr80dYhfR?Un*XdvI1NEW4yjo$MQ
zC7V(#fWa@n0dqee(h;rbbYukJiw2)ju|f$aeAU(XVi<CEK4HV85y{L^h$NT?-Vv}x
zxT<@8Jro#)xKnegodOa@cXhK&=!vEkv2Nd~IFC_6UIbGO$cE-S{y2w7W4_m<`h1Y~
zTNd!@Tvzka)Fy74O$K3B=e`ymXBxA{oAPDs_eHlXnkpO^h)NbRZz0HH<Gfx-nl_0%
zEU|8X9S2Zh6;b!TK{|s|Jt_W(bv)ViswO1RklKtUWE*j7FVwz9aGES>KnrrwLIUH0
z{gI9?B(DFESxOvH%#P~G^JS8~iSYd}dHHe7IKoeG@(EuC#+GOtoUrYO8oXTv_>_->
zop?qXNdpxY8b(u`Z@xn%>rEt6mOeI;eH5qs9Q@W3<M@p{XqlFKNoTk~a8!*ij++98
zq(_1RYx+%4Ijj8r0aj6525*P!09eJ^Jeq7PV~<*40uIK&vNSjK;Z_V7EpZ-*MVU)R
zWuLj}4|J@Hh_Yr7M1;wYx=%#oUl!Zf?1zpc{scdaXY9|ey!BoNcoI*DM&f0E$37i`
zCot%3Thawv5m~OLgAusy5Dgs{5T#;vt}<e=`e+>GSBc^?f78148OxNv&awr9(yC!O
zPuH9Q3Zb}Vc3%N@-(~9FtIM-yL-lPav14DgN(#5?yO|izU1@Ki?N;zNd&ck^NC7^%
z5l=eVpk8x9D5^2Tw~TV>dftm6_64e6`J^1QU$``(ba<^INF0tUra;c%X#BE*{TpXE
zd8x1p?ZY82pGCZ4*iHeW6C$<FbFoFf9^tQ2^If%DqKuC0zv{hmM&0S=PH%Z)A+7P^
z)P>gH_G;-T>G@t_kTx#?BsjgHqT%M8S**5&1x6RAsJb5!-4@~?Vz&DQiQzYNono02
z8iRwgMNnl_T;xt*ZDT8~3X3bXv<w+R7g!$4nLr49C*E}e-pecu8xM_EZW;Iuua;{p
zr@u*^g^l}I65&5X84U0_zBsBO3srS>SA81f->d+7`1rLNtKuHQYgq*#@wHjOrp_-H
z7DQl|^H0L4LL@r~&<c5&7YUpvS$thCM}=*2C`g%rPP8?n-qYDmN!3LYGcYuW8bl?D
z&>31~S4W7U3uvH^uPK*^wD*mjL(DPA5sVDqa=dIWfK?Rou3DYjlZqogr+yv@{T^qY
zTyTdK!V<{F08$|l7b|IdLbJcbjzASv_zs@8rSV5K1k3#)Tow1Mm`u1a*I+=4encl_
z#kc!I0OghEpO<F(I*!lgC8YV_Oq&;yk<e|3EJ)qjXko=y2m#2C5!kY`EXL0vbgoqI
zwGCykUbdIPDzq-U$dq4?jv1RxB1-n~hqNdB3`uOzx+>?u2pF_F3Ybm*toI!LWp**e
zt+cUR{P|FU!_f5A`|Y2kzRIDvd+_d{%m@9m9!j6v9|xyhiX()O3tlWg22@5_;TwBi
z#)PchE;2hmrn+Cs7F9v9bXgLbP+>%LxjN)<VC@U+M5tfc%=6c1{?jpd0#v{Bd6N{S
zN}~w#$Be&4Rlx8XKT{}ETKH9YL`7lsQNvv~SYaiOGt$=x7#IBD0rB#(P<zoF*|%X~
zP(2*&zAg`VAZV0YDoGVG?$YZ~7XrQSf-Bny@>o`d<)_r#3|#G935Dfu_DQL*xNNlD
z+I8_NVQa9k6)LQPNSgpCfbo8QDSG$C&#f6qf&7~6-`x#|z~v>_?1xg9K{V0vY3uyz
zs`bI~r$<lTW)8Nbl!#gkY|!`_Y+0=f$NyvO54T>~XJcJFhe0<oC>Yw_`4peCU_dgr
zVrW+fK+F|`S3WL2=HB(UaGlT(wg#a(WhaB1>tEkQHK=qE^gkA@-HzKZ>|+g<2nayI
zxbNq^e{0c(xYPk+rsDuNlUgy1^TIh!ed&)uydzR1&nyi4ZyAQKj)Aq&YC+FuhaOr6
zqC-wmYGv_W&;!;lYpILt<13HT<G!^+@R!c#f;mpp4}YYQr*Aj$iGNZKN$TG0#Ll)H
zF*hnuVV$|v{*`>3l%32Pmq4KE!@kEDM_2XDV2lkh+l*o^4{BWo)9@jeuBR49q91~>
zf=kW`<*HXk=}cv55Vo%fS~$oZ$S&#MB{Q8=Ks#_94&4deZZwwlT)0w#(Y`XgX(km9
z@ast;GyJZGcs~m;ew_!iXw-e>I7V=8UIO=hn)N#NWGVE&v`Aj&!edMl=e01<fFFhR
z?cDU?akod5N<Q*1U)ba6)k|zaA*|a7+l*q#p5&@P5gxs`(zzCDei59b8Q~Yh$aKzF
ztPcv0A)C?Dt>K3lTV1mwz3(1*w8^*c->%*tKM4;SNpQI8S2`*9GJ1`VgYfIeCCsjd
zYK221k;@{D55f8Wi?DBwkEH9?O(x02wrzWoOl(hV+qNgRZQGvMHYfJP#)N%4?|05U
z-?`^^@9jUjYp<%URcm)WYwz0Y38cAXIzohZ3qsGY{}4yI6xI<1u;r&)SR+dId#Mdj
z1S7G?{J0f27i5(*J&C6d^jfIuuZtY;hn83REA84EZv2pY(j&(S@@sh`{eU8QpZX<N
zsGNPr#vk`hrCn||J>&sDp%f%Wn}X1{C{CZsKsFXhlb|`N6&(G0QRcbB*yucWwn0V#
zDSFR!H$pC{lyzA@{yqPdE;?she#^x9t64$y2Pe1qBRS5t@On97OC2GB(+Dn~R1FQ4
zCV}?tSMS~xI$n)G**AGiU)!$&*Y)3JO15YGpsZ=pO8_o;6XY`>R*WR~=m)jC`wcJK
ziQmaW-I}X=<@UMwm3=JqX%I6n*u0^ay^t5n;IY%=Lz!UKn%VqJuCk$w)PB@V24Eg)
zG0R|b2*q#fqS^gfg3YN(#<9%<5RV4p5YbVtb9FpGH7x>m5DTDl=eT5G2;b@J!sYX-
z?{c78Jd_sggh)YFtN4XqH}*6X#N^n&w1Ecsw~{MSK+IPnwdV;UvFg9%!eW7rnraDn
zlBtx!Vr6|xVsb31JoQ7r`@MF6NHpTOD#MooV7&=>t)z!2)wF`uh3FyWDT6}sWxt!x
zk)<89r$qL!bc4&o=G^8lq^bcT(b@{jojx>P;LFxvDYV_~rCsc@kfmtw4?Xt;4b{NC
zzZ)QCR(Pvo%Ch=*86*BSkI3j>Ewy1J3Hve<je5FpB{sAbKRi*cHbxXF=NyIqXr(i~
zue^VuwQ3|ExMMWFO&l`C6ILA*ec*R7dL43}7jEay2Gr&;vPd$?T*6q{!I+A~A(I{M
zbXZFp_jGyodw6L6aHw^GGV&|@>W>UAsT}ruf~OKi0IeYyg`pPkftqAm8>6eR_&Zv>
zF#Q7)Up~uco*UAtnqUK)ya8ny2GU3Nc+M~LBHaC88HS*h4WsECwIy7Q%GX&i{mX|4
zA73lZ-Y;KaQ3WwYF5q8m#LqzT5mYfygxp-saqbW*j<U#8zZbGwWuv|CSatf{rhPY3
zwO(~!ORp=qjup@-u#5}k&hD@ou$HtXw3w-)j@NQX2Ko^dD)^ALc2wA>v8fq!bO7-C
z$);7`wAMYaKZ=0+%ik$^i2&+)=mTr8Bv>!Hg7{g;ieI`5_1EcqJ&3_4jAk-NIVqiM
zcN{cqI~jHQVR5eLveRZ}=gY1Tb9asVflubZ*lq&YY;iK`cx3D0Z>k@fJPZ|p$OXnQ
zKsMV^H^Cx3^dG>^;6{1u9=!38w_|S5g#J%&Nb1!;ttIdMU9I6Z>5zpH;=N{cgX(5?
z6*S@ph%&HhD*%LRbRz=!9<|i(^3qMSfL_i0B=3rFMcZ~^C^(%;iWMOrUgKZ%a9t|j
zTa^otG&=t-3P2=n%>Q8VoR#^BQKY}At+(;|$GV104r{^hMqBP@=rs}2*427P8Z>xc
zptcgA(nL1ZFhqQZK}ZSj*4-%h1@KjnBY&jY<moK(DloG#I<>1*`{yAb)MBOxdQa{u
zk6Vj(7cnOc_w7(@F+k+P!QtIb&YmrKqTca<fe9h7`y&*d3$@Vv!8~61&jsvMU-CHX
z;%^Ox>Rw8KqPxE%1`Jt!+;#RrJK_N4aZp1&Z4m+YSQypjM&FA!EGQTwRRrp%I%#Ez
z*crFJv`}qtXYsNwv|ejDNWMRPEcix08}KJoxOk2d_fqx~mRymmM=pfnQ!Rv?B0~SF
zAGs9_7K4tkmO4Yjh_oSR7e!};+1?~F`}P!C2pOta5@~hjr;rc}d?%+?=W>z|Gvmc>
zRO$J`0YHUE{+l2<g^e%7SO)nid2xpMoF}0RI&$@uG1-Ic$@I52E>9{a+j`KZ>aSPk
zkNO_Ld4K0BOyA4jRfh4`oucE5er}7V#SGmt0Hv4F=DK+c5yW6J1B7P*BvqIk!bS22
zy*TZCcgBQOyf~fmGm@U4rep*oDIP<`mmk8{*s;nf<6<w5$ONmBxX6b>&Z(7ghkeZA
zX!icC7$`Nxx%uD>)c|5L+F{pebeG++9)ub|Dh=AeooDh_`d4{fKOSz~@<5SsJPisN
z9}WA?b!9pfFOcY5<aP>e@ewpzL3ghSrY^ncLd6>6BQJP|*7(>eP;B*teWQXxqdk=5
z9_kW6`N3B&kP`i^Sm)!t0y`I-zZw~(f_6i|hNt~ldn@Dr`|wvFMJ*=c&GBBOyK1?t
zW)%{}H*V6eJp7zq1p_a{H~CcMyjj5-#s{VXrJjd9i%R$S%RAkLWx`<b17Qw9_CRI%
z?zC+yoE+4h{}F6@$Z4N=%{+6B7c90=;rrMAW327`SE!ysV^ixHjBff3aCn>BA>Z~G
z244g8NmMTRRS-+2cX<=|D)+DQJ#ld0$*=F(Wr(|GJ23vVr+zMj+HY$sDhAl~+yXRP
zWGzdm%Lg)(UR$uDi<fGC1O}8hsc(rF<m$aLJm<=g%y8mBUtKkxJuJ+mbGg+i<jRkx
zrV5Zt<3WYd?qmLEpXS9+y+w~{gPhI6gGHw8{1o89cH-q7uJsF^GN!?VJr_@#{H_#3
z-EOhZcovV;0`KK|)Oh~IqVJv`z5gAv@&>kQKqKY~WiGeah2dOP`v;(FcAxa_Bg5bA
z0A8w{N6mT+Gb5cE)#{dQcNcv7az$c>q3cW5B}UeYq|_ZuHf@UwBsSQE3yL49knIgc
zIhTrQt4a*)89y5see6^%SI6($wy=*}5O8r4`}S$FkH2<CTULsV-eWNA8IM?Z>(ICC
zY)W?4UaCmA(nEibkJ?!=?Rv;g4CT6GZy{=>adg8mfQEWQ;hNwJ+-icIkM1LK2Hio{
z$@J&v^mGSszVQ*xsr~sr>Bx~dz%!6T?T1|njmI+1#Pi|)OH-9fx$$pH`0aP=Bi|<0
z8Zzm_ShrVL-P`0v8&PGHD~Gaq&p|#=dYMiqHP8Iaf_;0PcSI6=)e`-T^EDp8Nn6MV
zWeOx4JEw)OJx<mT4?X)L3tp)IJMvyEb(XVW5U^znqs0f`t_Pm4FktSVq=)$H-2bGj
z9l+294pzAFzOP7Mri#h>Y$9%B2wSbrYZ@sV(65X+r0J&mWq^U3sCt|@cXtf7=n{eX
zH80xBeh|%!v~`F0er0K^`UriO_GO*v=m>o42>IY2=5D_+-?@%T;&9UPc7oINJb>|F
z7e-qeoxx`2Rx)_W4ap(efQxN|Tw%!K_j^Y^chUv=KW#Z5g|2{hEXEqVIV9{|0lgEo
zRpbH@W83@)sTo4*5jKer15fCM6Bmi+ecZj1o<kjFi>sa{D<2d_-HI6u;D{J7c>vJf
z&aEt=Oxv=-sm=Ns>FFCGcbKe^Kt+=G62`?u;xO-d^g%(Y&IF(Maqq(H2Ou}-Zb8o;
z-fx3QWty$=|5EMN7VOrTV)^^0q8a>Dtr27Me2Ye|g=(LQsMA2QFJPFmoDsdg%nyWX
zt+ISGZ<r-sO-W6(9qeSM;$=JM_*jExd3#g;j2|9z7O)yHYg-=lvzkj~gPvju&xe1c
zdGNNq?W14rrJCh^CJ%oMTi}o`_1&i}>q8u5qU7zx4sWx?bL)Un9D#t#_a(!Jv+vZV
z@1W^c5PWed$@qXT$p7)@L!2nJ-x*npiRiGvLr0#@*%ijovhtuuC2()r4YW^2616Ik
zd|i(;eRhu=-sEx<RF>ZS?{9hlRPp|8SK$$cOLDhV+Zf-*ftc|PF>-eMVcpW`6F-b@
zV=gSTMh%9)DU~NZz5%zH!H)2pXEl3iCh0Phg~W(TZ3GGPjc5Wvzn{TQBvyqxmbG~9
zEHkQgWSL}Y3AFj@-R>I3gtuyRR@s%E*)1q@za>z4q$)Z5`WW#6;X%#{@r@wOG<}wn
zlOw@v28#>ZFt#b9@~*W^`!G}dNhOwLSaoLX4WcazICKSA)FFAXUf^>}ufj^&qFw*g
z8&%dT#U+0v^o@W+$)_9>7J%|YEpFQ9ttw*L+UoIE1gI{JCsW1o%t``%pjZj5cgr+s
zdOeAK>-X6AtYZTR?pym)i|4d09jN}^%3f{=4X>I+gmN9I1pplmiXA+SQK<8|Hs*p~
z7g$L=M(0djE9rX>K>$jJ8+sDU@(Ozx25x4Aw_tV?uI!N7A5}D=1mhuxv;xA-Z*I;j
z<70t5%HohlOK}l9*;Q}_Yw^xP)5BvgfLr|jdd2t&1grJzgxjf`mww_<kXpn35d=q(
zLlR)OcX{DWMd(wa6EsA$WdMN=W&r926~o_5XgS#$^z}AGvGZ1mbsM$Owvo}iLKRx8
zus6v`b-p8&C#+L61>*D3@3cLHi}eoC4Wf5nEo+-Vi~bN3v@CYYvN_azYzvtFN+@cd
zuVOC}3Dh;7&Am-gzJqe>UJX4pABDN6G=8xgaZ3y=5O||+E<M(Kv9s^J^m7(1FA>jL
z=!UQ$^FesogV{pCXd?QVjx`q=4QaLVHqd#j*caPW8O|}BX7*H@%irR=Mu}f}v}}*X
zlw*GfAZPIiJlj)#?;(Q;{kkJNLf4+L75q$oz*X&|^~=!eO5_fz*K^1G=Lvu48-hD<
z6^1_<hWU@?i{21u2jHxT^isuflCF;hbXk%O6d&z(OjPJj<)-@Ze7shCu6caFjzp)A
z`DRr7<~n=1!Y=`)rKzXeAOt?n)7h#`&~FL=Su2HhPUD-GNn|tS$*?<D^KtFe){=;W
zdUq9AE}7b#4ujq(AsIlsvZF|ga-y>*-O4;5H))$PNuoW>OO_ZqXvt6`7*3Gv>%9n_
zO1w!pN^W9(JZISHah3aC6BDJFINvWP*E>dG9_24Zm7#UXRS<K>YRCQG<N>I!G~da0
zmy}+OR+i<-p0wJJC#=#kNR!hQyIfT~`PYy=O8`&@_j+oguO>=oR3|fY#rOO__P2#$
zh8Y~AIoakvko;W;uKhFk4`AzwzyN1bL>u7LeKTwaKUOR+B->p6&Ttt)cCI(LruR!h
zf_VyU1GJV7ZGK?^w{tX(JCS<&l{~a_o~4pqSd<-7Gc7ota1D!S?oPKr2(ZGizW-VH
zi!hmBm=HSA)SG<2eVuuW8{B}<t~gy9yet=nas6_rh2)f~fXs(BloQ+!sPJ`EUDK0g
zrW_gRjOy(6IjVa+1SN#e{n;9R+F(ec*v>LN4-j>v?k!?+UT_7`KZlU~l@Q#W5#j)?
zHcI9X+aXq(lex=X0-!p0&{LD<LA+2#*-lzFaV398T&?^omapwk*Kt;9^{Q&knlBv`
zQVe3XoHN?sfo7Zo<`~2IUVE}yCOO@U<8s(b=+uKfU+FUd0|6Qc+HX`9s|C^nsn*Z+
z;`gXS5`b=STy>a4d&;XAI=`mIZYg!^{ri|?iD15rsys61gdfHK<E+90J8XAatKp#|
z;o}T0*Q(Vxdw6ra4!6uzY(Q+#7i_D05-c301>yZfC<I|#f~voA6!}k@HhATbv5Z{j
z(@YjHR)^%t57-8DWaDE~wGr$WyJt}!@4?$a!SufG-qCO0B^iEyuNnVKz$AAn)(6qM
z#{ZC${z2-0%+HcSOD+dKrgo(WT;0H2JYI>D`*|?O&+q}+Y&G<HEniKc-+Ze9VLUg!
z248G?!xxf+AY*zdrJke5+hj4f$jIl}s!{y&4I(?Qi!5aCr9){omkzHMFic-<jyFg3
zODyxdUJ3sMjaAH7{=Csx;*m&i%5pyxrv))%833~Xy<VzUHwV7?hVy+36XD9dUpB)w
z_=Pt}E)reiQF?`fz`7CHNGCCKK}licmmV(&ERXyUSgY2l9l7sZbvt)4OO7w@UfB1)
z5JVOLgqw;V_%(p#GK3_8qz_p7uOJwsQMhC3r(cjXAk>>r?JLg~E|}iMK^FY7YkDw#
zV<m2XUAnLYc00MNBA(~BQ^T%@IQ<uAEzSfw{jZ=o`;tvO${tf3htZqv=(5u#3w~rJ
zqgLXr)fuvT{FXXU>cvi?cvXN_vC)x5$b~(shsSK|LU-rAcaBZE?BylV16o;1=lWmM
zkFj;mz=&YT0uOpC=U9_OcxN#B{&Xt~emVkvvK*jtU!Fc1%Ov>4_p=d;0uiB)sqC1`
z(Hn}M7*1_wj45ZT+h`K~T+WI4w020oDFWyjhZTKgl#WBbL;&K6F!R%9@zE%8XSONJ
zJ>w%l{Y_j-ELnhk1jYmK<zAYZdnp5JGR0g3Bq8_4);FzyOj@DA&3MgkMl#usk?T=H
z4j6i5`sJ^no?39cx3cXnqe?MHsJ9#(SsmmSTkU*%Z_Oc4k8?fi!m%z{5xCoq2EK1L
z>(M1ni;-tx;Zcyo;9jt|WOj$BAr6-YG^ewk=}PP&nd&)IX@6Q*N#IJ*xLm#$_>~~P
zXlcmAOd%HRv9nn^Si6wWVJbv!A*LvN&w>>P;aO~F#Ma7iGR-;?#AcZbFL1Z-a+=ar
z0O=|6+zC#0GwsAw4cZ3E`_ZiZD!U%Vb_iAh6TQ$qq$@5^tw_gyQmMSxeA!%fZ*pxf
z9aX@!k7tbUr7d6Myc^IY@7fo6q(`_0Ufj_fC>3N|Ebow<$5b;Q4!TgLt4qU34avP&
zgq7)WdC*6W0Rs-ri-gYuNPKa_MX$FY-08*e&8lStvD#PFy^{U25_1-R3gN$PGc5Rl
zi+m23*M$Bt<%RLDB8@VsOF*kyL>fJD18Ma_lIv^-ci|H;$hbDNmb`rrZErATEHLs0
z$5+@kWLp;8@bq3WSCN10ZIJlQd4d9*VI6+$=oo7ihW8a_tXy~J)WMN)a96Zx&9LFQ
zYo6;ZA`x<|CFeW8x8$;8Og!QL!UBvUbYALJan!jyD$5R4>1^;WKbLwLs#m51UiUq#
z!tr_bbyMl|XGq4CjB3Lx5=jRGrWS!tL$RsHbjzKXB0PTLk0m26xw+!aUGr){yptwc
zaYj6{<Q9Tf65>@gu4b@;O|&2HA#O}4x6rg#;f;kyL{&o|{NLITVC{zQE7%e6o#2hp
zdnaj*BA18dpNq`Spy;9HJa9<Q!9UZqg&f&5tF#rWLp{+H7lRlYQhJ0j?-#6J2!~+v
z(5iHNcdZ4L*~xQ*EA#R{D7Sg<jac_;WT+2)I||6?_1}v1BCKXJe)8***hQZ#!z7;+
zf(>hfb=;C=Ur^Fb-xGqi1D7A{8ZQEVa@9WUGKlI@G1LIc5sUilFwqzy$+O-Q6gkv%
z{th-u;TUwbx776G9CiWp&;(M?Yc=?C^xAEwJt<B7pTMJh(0s9L0#xk)eOI~5G+$(5
zCBwbhDHFLHHVE`cW5paYZx^#3Bg*J&F<R)#e2d9C5v@y1Hn(-Xqr!oD5Cz(R2c}&|
zj=e06htB%mxLjUa_eUv|toorK<S6f2j(n}C>z3Rv<a`yexR4Wf=0-u#p=^=3tS4b1
zY3IJ#g~3>uQJXDGGf9kRd33EsvIZx<q=#)BpQp+0hiw;{y)5&vml7q{?I77s)S8Pd
zW%>1N=v;)m*zW=6{?EJdqS+P@akp39Cpj|3l9(y%BAeVm%Y=F0PuBKP&36BqF|0vA
zs52|ev4o1@HVa^bc~tlQ%eSa8g5zRpq4feA7GkMq(*f?3%)I%VzpxpmRXDpQV#9L-
zMW(MtGkc8nR!Hi!)k;~GW7k)gT`%-5KOb;(T>8YAv--{M&A&xO3JvPP&63Qx=Q`p&
zbvyaextbH>fhJcz^DfNW5zWJB9{EJiabvpn6up2u?4EkolHK>B&(lP4iKz(*_(z;4
z1W@|5vQt1$fuDpOKYW3wQE4y7-h<OR2S9T~tNL!gY2?x9_NRrKph7`yFS}H^l?&5E
z%rtfxz6K|MnbAFcQfF8{3m|mWPr%3J)qXkjlB21T$SZMNcKfPt9?&fi3A$ao;rn+Z
zdW1QA%%bP+VDNZ^bDChQ<!v1?V~*<-lA_GE7J8zEkjw2%!`g98y*CRF)8pxOtjli_
zXRbYp!wM+?UYu^*=Yx4=cMQ+v{dm~oDs_GfKe2D5)^cU;?qkjGbi51G;Y81$oa^!T
z<^<)32LEd#2RZ%`>Ap}9CoY@K6hCDxZ_IvW9r?@0p^?@RqTOA_W3EL_NY@DC*6r1a
z6`~$_ksHcz(Q0YyG~s6Z(TJd(f`isHZR>IX4-Wg!3=wFiI~4e@%zyY*td+5uWAgDm
zxAS&pJ9m*GV9*)#s(u87U3cd933khAX3f4rK>V4;)Xme+pErR)r$dToq*IFlu^A9M
zeiy#QC|m7(4HXuL|G4(6uEdxo#7V+09u~bu7)__8^Aj1z{L$h(j)|1>0`a%qZU+el
z>&>y`jSp7E_EByd5i<Iv$*&c`ZkY}*hccD4N3ly@-`+eYX+^P2;u$3v1`TQ^lZR|H
zc5SsVHOkj|Xc4VWjkK@fqqoEB=&dwDYaG$)Gob1~;9PAIGSWu<&ueiU>SZO}q8Bl`
zt5}>#5iZTo*oN^o*By-Igei9R5EJI;FK*zi7z3)&mSYs>r7jG~z|e(QIl(g5xv1(_
z{TRUf$h!0w>=ophNU2(Pi2nq;y$k~e!jyOu%vfHdQdQKlB`-EVpqc1aAF=!Z{igx+
z<<#^<(%0m)R;X`RL^IpY5fm=QxO*gQAKsr0*e!`lT#P+S>+LB=i<%dzzeGP;MlMT^
zHF)eTa8Tv>C%7v8Nb&suw@86;O(VFJv5)7~oV5Qy-h+`Yejs#(e%NaDMeD#nff9?2
z8<KpjQ^sQq(_k@47Lwk!h!3|n8NGI)b^R@BwXSKf4A-pQ9)Q91z7FVU(2*0$>!s3Z
zp=R+d{`Gk&>5gg)n0ibjtmrOFa4wIMd8}uu0JgAC0Oej$il1UU$TvvrNcw|}G**(h
zoff!2Zl0$S7GNzX!z|nVPYB;O{^X(*z|8oe*vu25MCc^Hu~=R$nNPk;B9ZcYrY1R-
z@=tc=m*;&*x66$-hqLKy;1=gW0Vfge$R+ESna>`uO_5Wq&P5wXruIO_5uYVhISl?d
zp#`80S6E%)yx4WO8$Fuo;4W1uw;0z81@{lYqS0t~D!0=#XFg%^n%!}Yk)xRjrQIid
z-niePZe-xD*hE7L>4mo}P4pAR@_s_M{cR~icT?Gwz$d;I<;O?9nM*qOgkW*z(~IGw
zo>#11Cu;i6;@7*?%SF7W&(7PMaPL7p@=-Zjt7u^VvUWS6rAr?l`P(8<SHa~F{=OTc
zFeQZ!^|dzt%*W}7TD`!!nt{~Jt{rK=)71<`31!Xk^9~yGT%Q5Pcm=*%PK?b)az93H
zr*t|ttgbWBDFj@X5566oPX`ZZmBD6}&Zt~Q6OfkHZaMBuPMOKIg`<7wdn^KDPX-1Q
z;w=NNM36=Wc)74~rqc!ds9knt`0HKXLCMEU@$TB&uTr5A1)D^$J#%~GzV8Opy5aCS
zouNY_g00Q{g8poVJHZDc)9FnE&7=Ue1#&~pPR+?oLYt!t(YQB{jU!x`L}$I<Qc`!b
z&<~qDG5him;Qe{Kc=D6e_M*Xd4gX5nb%;9%RBV*>#J46-^&XHEMBwCq>*g*);aTbq
zqjqGD6K)NangG>J#|X!C_P~rn=;6I?H>hA=zR5a#cJqFT=?6T<^8oIrUPp()c}2!Y
zOs*eWjiLP4RoYTdF%1~CDZW3ah99H^a91&YtY6=mU5x*&@bo`rI-pVMF#<69Y1BWA
zE}5|f;%5)?{`l+@lj8H&VuIm@om(Sv5vpziz#1X*ibknnY{lWS`O4eaxbILW9D|dP
zTrDRS9A9nM^H|oVTe-DIl<On@KjX6*THN@iF)ARnHU!bnsVjJA&Gz_gPh0{V$6AWB
zGv?&+a$C%;I$3_M(GiaCd4m0T*6rW`!tdSdu>JlKCWX=?%LnrxLvi?d8L_xuroE$w
z@WPG--N1)|FEE1~{p;GqY7Az0-T{;i7d7|l?N_}F6=CW?t8!+3quW-5yaY=I)bN*q
ztWDd`?zDYx4&rltb&5wrT#r;HI-Bg=v(oBB(Q9pvxTom^tXL+3;MiTJ@pd|G_S<?B
zZ83JrWG`RA<M5lk2hb|qf)xN?z2DUTrzE}rE%(y797(fxbcOq$?uHrOUp;((02Hcr
z`d7;vtl(dW`-PY$!<iX#vi?2<RxHNcbwC9iuES@xAKoU8rq+j>=k}q~-64J|`2hN~
zZMz14Jt7Wc<~><ohu^?NYf{qFXR3IkKE%QXUIL=ok8&MMqTB5tHka?>RxFuhH17+6
zkif@^Rp(s!QyI3^qfYb@FOiXlS!?v?=(H88R%s>OPn-%zq@dwKz<e888ex{Ch~(m;
zxSh@kNHCkZ_47TLUPyHa4|j-tT1xyCCmkLARG6snx{c8|mX?KuiI4t#(3gE?*7E)+
z+fyPs7!bspqn*qR_wKR(8}}(kWC%NzyMz6od!zAzID}DX^FM>_fBQd!?F-u4+Wk8x
zij0M=6_CP&hz%G%-_8-pyh5bK1kA&v1H-5YWKSW|;$$J>WM^Vv`^L%jjfjPXorsh3
z^Q0irC+*8W@%sghoGt8ZfkY`pj4FzfFrQyUROZgk_D<Z4jAj<j<}QW|Ms_xg#&$+7
zHYT=CcK>w*BzgHS1{bdXYU}@tQiX+!o$J2^?bp_bC2NKE&DEQWbpWvvRivy_*O%iz
z>>C4_uH1Ex1`kjCh7gxa*zhZ6>ykpH_>!Os-pIg<H$ze3J3j%<s>jD2`E`#}@1`4|
z?e!^p!r|}9z1|1$`N0ff&)Nmxb^+1ts=Htl5zwCapgn*9V)3-_<VJYa&9_FpkC5Qj
z9HLoxei%x=Wd%qzsSRD}aAPzGHF$ctL7?boX%9PaIt2J6m-dJ_O0;>sPh56ALGYdH
z0$fA445E?~-j?g^2}2-8W8$a>JwS6GVaEbWabPEDx!`GMYGJ66#uVTocE8g<F}`LO
zlKSKL<hZGpd*hYU)!dRoDsTM>e-oK(V`A*RYeJ&sSBRY{R*a?Q`lv3Ot*MtLCmS{(
z?nuZ#QjGZxm7ETd?3n57LYrLS+@lA@u&8bXLp#V5A#U<RKg8IOWya~)qKBDc`B3v+
zs3=r2MEN*w^jV#2M02k{taKzDIUqO8Dr^Sz#taUQmy6IRsKrOLWmsPB;?F|ER!G93
z{XWk?*-U3UBf)|Ud{jae!^=)UN^t2dbgcXqMz4Y#U&4#3`)VU=y>VjbcUH*$QL`%;
zFEqHrq^zX0EH+l0(}6b3anR#Q(3qUOYjeUp3{0n=T}(5LHfSBcAee+vtz;2i2pHMs
zF@L@tITkGHGl?*U4uKK6^c#$_l7clt7-h!qga+?P83gOeVD9OP|0JCY5*58irDKWj
zveZ1toUwyQtj~qXshEN<I<7!0lCBiqyf2LQIyo?Y3?~k9SGiDoc9rMgA~T>2U!PSm
zQ4I6%<ecn=&$%r_Qg$a^;cyb0GTB!B4YniXN1wrMInEwmoEtTTMkC%yKsxH6c@soX
zN1!E$|3>`RWH(<f_8^SF$~;$-on2>L>lB@4R4al(UYPq-i+J5GItYO^rQ*(0StRDF
zpR<BiUDm662z4kEK8R|pmL4ZusVSjVf2c*Or9TkG2K#qX)bp>oWhSuX$#|co!-%L3
zjB2l+bKFW8EsE=E_k%$ph6hyj1VZv@TEy7oAJ0V05y%Q7TJMp=K?v}w*{PRwrkkeQ
zL$O6IaEqx;{#bRj*Tv@-rF|3!-{2v~o3U`#DPCqN8UuYY@y$?w8OSjt8wPbySFeWh
z$Ux4iHD>;`&ynO#hVP5ZN+bTsfR&v|Yk#ddSqv+trk7lklHyp0@mTyIQvsL%>@Vis
zLl(W7wS+_&(ad=5>h&uw4*Oz4rQYVXdeVc>f*s}CX5?wUv8I4-@6amsmCsaMXye|p
zkq+w*XruM4F3@JP1$aX=$gSmGp((Jc2XDx&Q@p{j0}^AgG&R}d_4M+)FRcy4n+R!3
zvF3$~awzTt*cHsIoCsQ--&rCK-nKO1=402OAi4iQYa@X6)tN4-wYEX!x5+@0o@Uy~
zT`w)xot(nSkUXfAxA_qK=AI}*!ntlXk;ifmP5T+If94T`W2zGF94M%&8t#$eTUM`A
zx*%b`h>q_%>A)hI!dSK93$p}DUWj2IS(OIU6GSGt@uA9#*&zt69D7eJ{f)s&s#(j&
zP9iI#fkLMhX_;H$9!$K_b}r?koO`|E;P{>?G>|h(SbWVmt*`>B@eK3j1bmSSiQG&4
zyt)=vK~+VNp%%AtPHwZZN21(N2tU1US5(dp?(A3rWT{{g_1?avRTDh?09%L@s`+@1
z(=3H0s4(*&(o=nChbSm7cQlsri*r)ZP|H13DZ{Dcoy{pWt_wn3MJMvqpA_=8xVeP{
z55gT}gvRbH>d_iHXST`|&tnm2grTq%nibEA(`vB6eF(7k9yU4E$f9!%&hz$tcwyCu
zy5YKqAg>OS*c^q}jjV*?jHn7>apY?BfR?aE6}*K)W(q;;rBU`j4W4n9B5OapW7dqh
z)A7;UDW=Pgy(98?z<pEEPk(!{kkgj9afo<ExHwWxvgW3yrwwr-*A+0jmhwytS+07x
zQ&9$z1a5k0QrIDAl9Biq^YJ(q5U2`0-f!iWrV5cZNIIfdPj2zgB)f9)?!lz<vvF_t
zGLESuRb!ORPg@@eAKil{`G>%lw`_q~ywFN_#yTTKe~dtU4aMuDq9ncMT*rOcQdles
zVmH~Ywn(3(B!gQP5NK?xgybh2<Ss;h)6D>b^}teRn(p@46Mq`yRf&jcE8>2OsoR=7
zG0|tx^hwlO6cQ>kY!~w~9>R*>3Ni+doPfiR)~bJWy7y-f7Ra8%zqrMfVHQ0i9AVg2
z>b60To;l!IL!J57y>Cocq65MeNHdyP84T8|at1jSj#Bt?o-lfA<22ajH#q9L)k2|?
z=uayl7Jc4WE@gog<Re6FZmcm3H4yRT-r-&HX*eUXF4IpW%doz+^Oo)ETi~=A-}HoL
zN<iPuSmzRT2TjF#4x5X-RuWkuB+^46d**j*W}@qE%94tTg$Cxr_^=w5%T|9I#GK1C
z#B~O-sh+JbNfK_gs-2f~m*j<gx)m_3*ioEJT;o)~@;`cpxil)MxYMJf-Y}@J?q=^!
zEgF13oEkhw=vAwDyXyhPgVq&C$1{xX%a3^aVF^q1rrNCnsRqi`8AU=VYo7C+_Pu;D
zzb%(AHB+(WAj=)CLZ~8sM>iVTnO?9^q@t>GB2fq%JCiHf-4qnb!h>Qu!$j-qAgzkb
zvToL0-@7Li@-}LRrXQkzzi_k_Z}as6lwv1v7_V<`8qo=FMEfWqL?hE<v>T7jA@x1N
zXoqrc=}w)EAmi>FyE5xFCaq4o8W&N%{HVJ1zUx;z5GE~ZP1beVQ0t`9vQy*gDZY<K
zq3uE!jH=j1x9hTbLKlPR2S>v`kWy>A{d?mM+QGuSWyBrOO1WB5KC6ybxu<@$L6xq$
zL>d<b|I&FBGI@kW`Sh*<eU|}M|GsDDSDqe@vlenRdK!hBrr1-V^&5W@+`_&>Y#F>Q
zrchJgH*sYtW>Zx$Dkj^uF65N5`Wpe=u^otXF4G{IDwC}=y7FPHuS#Kh%qz`Xz3q3K
zE9En_lSMhn$jNU&egh;QH>FgpMhDX*IR52@=yQ9db>vA+v%6A1pV$4@r>o1J*XN$?
zkN1aHz<cNG=17lk{p+>C)AfCsj{RQK0uG8Vf$SAxEXsFv$h@ld;X=>4OU)8y6*5eo
zHQuWW^Z}|=SQg#1m5LjSE=tRoWon{Av_DpDjsW?q!^hGN$G+^YVCD%w{bw-5J!<~n
zE_FC_^?TM5%F5bpQKl7%l4gGiMOe#U&S3oIJO6;^i0s3HBZbhW4?`+(m(;P#ulW68
znkZFEOCq?i77fEW5T?+F2s3SIekoA3ib2P63$>n3>6#kx)PyLELQz%2h-#WRue>U9
zRjWddDB{yGC~(1@?93Xj*_d5M$n%S|`>UKZv1B#O(lXtF>{SkDuG6GGcgm9^V+jY1
z3zB#T&S%cEy9kV$HqU9qCzpJJzA1jk!!DE@*DO?YW?;_vm=f;F*WeNB`$~yu%l!4I
zP#J!!EuNSO)u;KF1vhHT)0o|zOP$koC{`l*^Z0<u&7Vx)9;?4lArO&#cXn-Q3uigS
zMoUh9!GX}X_~O%y@STpCl4-j?n^ba7uTpc7h3FEy5nXoBTYXIH`&dFvjs7mT`Ws{6
zW7}hgN%xSt^;O%umN3VpKEDi4QN85DnMhQ=>W-*XdM4xHMkTYku~~KW1oY|4;D}T*
zjU26?$1lLu@c}~`>|r{(`Y)?IQ_#S<*jr)rb1~V^y$RVUIQzvBk6&O(`E>nKT@kxn
zTtWHe=|bB%hE0Ur$QB`Wk>0)g)N$T5XOo{a?A#xzzvoDJ(Hgvs!JzlU`IquEBKhz2
zngxaKjOZ=%KgZGfT^g0e)s_dRSo6p2#n+O-THPxA-gUYRLbv?4qHlJ-J+JYp2asN0
zhXm1l0Vc0HyL5xbw;lYYn+yCNueDbnh(B^SWdElJ!t!6J{$K9GkAFxQ6@l@ZT^x-}
zoId>sATOkmk_ph+_=ggbQQ5@ZnTYWpwnm}<_!a(-UrC_rA?ofduH+2lTKvo^&Pw!2
z52*-rBmR@|@l&kMLG(!o`Hxu44#?98l!>tsv3<&b?hZQ<`@hb9W|K8BwlEN~bN`p;
z!_LJ)^o@<>)5ZC8m7IvQK7A-fU|JYh4v_NEiRjZ&0hXfV?C4_T{KLTUA0ZQv-twPA
zBIZvA>a*tmAUyjg{ofeRK2_lKS)dEBWk5blX$xauJ)fFV)cLo3|4y*^kEbPU;A~)R
zXZBeWuz>$r(ZA{XU;LBIL~Kl)9RDARN=`1efA^=R)cj<UOz;4FGhS}~x~oGD-%OnU
z5QjliLgIZfbBvG*^LHakGTj2*G=U_^Ge}__I{MMtGS2a8QZ?C*Zd&~SS=pj_3#rAQ
z^{${%eK^0YnZj>A{`%;V<Atoi;?(ru{nWjkJM;AX;hytni&RXcb>D<YQ?tcAynfi6
zY|o3xMpIJ>-+j*a+Lwe}YEV}br%da3BdHtzp5xf50*t}!VueSjE*H$#CU05I>vW_K
z?pQvM(aIXS1$*o-#eGkJA06JgIclY#9YhSGI43_AHn*OPF~a~3B<WONNqI{lzn~wu
zr#$%2Ad5G(>&m`TaZT<H7QJ0cCKsefow<kTzL1Vnd=W8L>n%HI*XFsadxm4>)pe~v
z`l-gJ<$I)b{h4wbAMw&hmiGK77#}S!C#}IIGfMZ#(zd6xmb)+mMs>psF(rw`BduSl
zd)H(Vw$4;22eZ0Jd?VOt`EcfCrPQ)o9?zKjxhsE>wt|gOra-Aoq-m@yEccHdsWb}v
zrd1oHa09i4aUUdaM65#I?f997ymHV)7c;uEsu+;}9>CfVTG1{U?B|X%S<6az850bA
z@6$Ns$^J{aD^Y6y^uvs4JRy%WkCR0RW8~E&ChA+GuEt95Ix*&JVJN4+9>#z*e0%zz
zmkn`oo#NPIkmoW!RYYNY=_XV!x#Kp48k5*+F^iWZkud|SQE~TuHVxB0{lpMA4u1uF
z|2b}uLRk<oc@V5F1pP%w{d;ErIZ1&@#Ib3O!-y}qRA0Oy8`Sb1=14SUo_>%o{qR3E
zITSZhIVk0pUEo{nUX~+mXmYrX4*iboj!NQz?r?ALZg;;#IcJ?w`n1MfvO?;Ep?bc1
z^r$-b2MZD(67y`wz#zN^E|0*W9-<lc*5~Ln!z$H9Ho_I-Zzc0DSZ+SA<nyY>4p)s{
z_H48aR>P05X4e?FHBoh6&usEH%aLaO>kss~EefyXXoTvH8VqgM<ovyY%(sxugS6+<
zv>Y50dHDInlkw@D`Ba4$#hP36+E)}^3Q0!j`N$I*#(F7Di%WXpefZsa=nx%F_?dV3
z`)F7*iZ81dC>Yvc>$W($FR9lEJPfa#>7Ik-9Ay4{Lb=Cm!g{f%P2a>rT{Qc;Hj5X&
zo@c!}uSqPFDVNH|&4kU#Y>04V$KXB$b}U5spchu>LAecjTILfq?@b?r$IJ__f;}w4
z;SJj?NKP2c!EAtP@DM?9XJQE96jNwY7vtAqsJd=oalJ6$+U2~DcPezCoPS7dXpsZz
z=Aj5?ERl_Eny@z{7G0IC84kakE5k~%UjId2^4E-QT#4$0xGIe9MIIH=b<H4ucj@<o
zL{Ef88m8$tBn^%eEv(9mr0I=3WuM?)4nPp%-pbJM#-7@%aJ^a6I_V*JBQx2$-AKK`
zz2hgS^4{CuuLNYvn=DVQ(<ZlWMTQf+WzMxdyKznj*cC5^>+03-Wxa(40;+V_&WEE%
z9WugsZtzRPw&xHc2Ur#i93~A@7r9%ce4?KaQ|Wh|!Xq2Y2L~7sIN8}7z8?)HY8*>Q
z>fa&M6%61cSF9Cvs2j(m4XnUlt+$%MUS7#u-~qxAk-8r+XGV7+p55-gx6+d{kPdK>
z##3r7^m@W5$xtkJ7(NAxitZ8sDoQuw??c|SdscR@U!3l6=SeS1f%}s$Pfss@^!<Fc
zYHT>y?ODHgT5B||&DM*cn<efRGz~cZ5@Re5LjaqzU>&?>W*UnK=%qhZs&ccsa^32|
zcL>kPNo9?5$swPm?T;DrusPS#7{wn8(0v4P2HPyMk{967uuMnAC<`RNCi9we(=Wxj
zz42wwfrn46Csy&kA@(w%Xpl$o@?rz9k>!lCZn_1|?2-oS*FrvqL`IN!y#;LU?(JP)
z`d8wRQ<XcMte!)=sHwPwe$SbWIjzVRl%J8n2cL#_zbIPSqcZG_E*X#cWz%9@Id<TT
zp$WsHaQ^cRZWi=Nv$3+ka3urv@Gx+Kh9(6*<?iG8VoBxV?n;3Xj-HX8hCwIh6v~cJ
z!VaT;X5_`m_^5aiZ-p{*>uFf4!mR2HeyjKtLIuC#Uh+?w8I7wr)WaCY(%2|n)9)R)
zEypN`XM&mJXhW8KKCyZl+KSC9n#rvOeOt-XtlO8DTkGwZ;ox=0&359{2_AY1&9;H8
z?2j^DT8j|+rT8rH0gtWW1fHvn1n$ivne@v#O#^jxlv|RYhhaNdw~eDvFta}@!vs+%
zmhaB<b^Szx0lma`eec$(znaVQ^TTb_IvxoJ`DL@9edThXVNNN3PAT^s8{HU~`ij2e
ztsh|%47K!gbG*5&L9J7l<tL;b$Rxz>Dc>eZmm=U-zFTkiM)duW?|N39?s#G2N?s4`
zp?ra*A*smupAd%m-w3Gxg<(D+g@}ohk)wsZvz;UG`3g+S8Q1`cqXqx@(8>Y@P9~0y
z2F~<CcGkwgE36I7oIYn+1)YpOd84^FfXvaKMSLdcS=fOnK*`y}MwN(}lLd$j4DA1d
znVORc2rMLlk9`XxLEBG~Y+&-UHlcq23q3O@(`RljB4&0L;1?4MGZ3hJo(ImLny>)r
zr~eNq@(F<c8x;Ax_Fp;vt3O2lbQp+mgbbWaJ}>ycck6$1YYR(?d|vsfp3nA6iYVKO
zONz)E*aLx^F|dyo&Om}zpjgSn3D`|ZTT{DFNTz6FW&vb}^&p}W1TuY_P{T0Ff6hT$
z*qRYh{bx3yP|3yK-r58>ckE2W^oiKiKB1Zx`!`M^P7V$oB3596la*D6h>e{{i-VI{
zhv*ydfR*K&4p1W;KoJug@QC>v5Xv!q%7B{E`o{Jt<6!&D`Kcr(B2HFzpoH_Y2-eT5
zfH+W#^BeGph2^t+HV$AB9IQG({feml(~SRwcb`!5KXm&4p0{TGcbKIUKVdn*ge3a(
z5}{ENxg)+`1Yrc_`bGC%aMRbHK3YkT9#%u+?-lI~7A8&H4%3sA8moeaTJs!1fg9)e
zSKj+Is?Y^@H<bK=Ob!xBL5mZ$0wsiMbOk2Py90+ZS^kLckYRj6F1NNJn;Oyhd|}5^
z)Xr-g`cEnx0ht}m{NM6!kRl5}f_>UfikoXM{E^~q^eTU>_-;YY<nB4OKv6sNTO5?x
zH&lzPWZ*`8N2v6F!%-!kE%SRYZg%N<v&A1vB#PY^R-{YPP9q4PkDw+UXDKl&*iSDf
z<Hk>C5RpI2Rx7v*po&bFlc8Qn4&SC#GZC9xiPGA;2vw16h*&TgQJH!;oSCq02^sHj
z%1>nzu-u#Hv$4;t$G_Oqd}OTGObh*=Bk})YzW>__Kg|y~K>q)BD{2d*Y5z2{|81T0
z68||KjSYaq2WZPcNDkzt{}=XGwo|dS_+)km4zy3vzoGPhBcA_H(9O)o_Bo3GU)I3R
z!u;Qf;k7)JwN)|zmtM_vLB)9(%LNfIXh<mn3TQ$26=ii82JiuNL1ak%6mbHJmmIE9
zIe6<P(|FBG3bE^i)iK=r+{5VvBPUI3My(TMEmksFgVvkGnR7u;M;)!Yf`Tw)uD`sF
zoG;zBe6DP_Z(lFFuDWYMpg@8QDZuR4@X^EFC`!KApVd7gPJ5~uO<mY98iqoGzHPg5
zaHLjiccV`<9D*3fRx*=T-qiRNzt{6rSy|KAaI<{ivbJ>nJUrBS&lZ-%oa_Mk>q(b;
zb%}>vFkhz=?bdVIeUUl+ntKiwb_xpRTW)6bCj@GWAHVN0vyQhElJ>3efTw;V;Bbid
zy>Oqjzd#%`0Um@n^W|#?H&`yhhnq2a;EL>f_P%g~m^<{V5jGrH_B-x^3;Y!b)hsuI
zp}D=WvNu*kU6+3gBD@{msltXYYzn4<#xo4Eorl~bE8Q1lQ7BLtY38N?6h=SITdD7)
zDT9#I@`TXh*F6}ARC<gp+T6qdR}91*agAug-h4MN87pC!Y0w!zS*=Il>mc_ZzXOHs
zBIx^z-n4vCB4Iceqd5B<nu<)H4R?lrd5KYXOciGPkO6PSs+h|`Sky*vE3b^*Pm^YG
z{y2w$)evsSj`n2r8rSVHoKX_4#tZ5j8n%_BFK;MOnBnVU8m!P9AnmCw4vrKPJ1Jj1
zEhLy|LFo)Jlcxp0HwFpNp@34NfMTKqn38?zk^pZZMqUjN+0h{TVn>4fEl6Ys4uv?M
z49y9D&Y*_UbMj7t;HbC=&52TQdQdcuRYOwMa7%8DSx<V|a7);e>57~x(wbb0xhHlb
z^cm~`bdr!X*5Kp22f>}%SY=v|_}0i9=`HdR<e1=O4~01Sl_Q*q{wk_#YM)?8NI(rs
z(>Lt-zAq*}pxJ*QMw^@ARs|EceUN0kfrv2)(>zj%vRUTYR)|x=N%NMaJ*`F?u7d{F
zWva~=>_LsQ<wc3mkqN>al`Anwf8i+oi}S(ln`XDKb~EwZ+?kkvB{G?be29PjEsK~q
ztOP+}QWQ=axg$AjSyQAObFLjx!2@p2J-I;OkrW29xE&27Hi2p90-as94)`vyJ>mK3
z86Lg>cuPR1bMgSl*#vF|-0TmXU*jMqZ8}&)mF4*vr?BR!SvR}(UC&cgw5G|2jpGd(
zCIk~KEi9t0r7pfZJqG%9gr1!6ZmxYV-BX*{vjIF3giUpwIfp8At&N@L`c?p@gN7S|
z=}Q;Lgi`1`)_7xZrft^E`XYaUHnRxZ5QWauJaCetEnjz0Nh^0`D*H$Ku<MmHB|oGD
z+Ohn1xIK@9KMZqR=mBbJMG%{*P`Tr`?zPO8S=bBY5HC58aZ_b?MhRK!s8Ai$X6gKV
z{E)fQGf5Nc^Q@tjZn5{1q%=ImX4seC&x*{rG?j^YY3um5-erz0SEObdEcn{Q>4g?I
zW-LSWz@`s;v;Kg!afsb)L1yN|Y8sGkb>u^yS=Nt$Y>C&|VwI!jF4%8~S#L+YJ46e>
zTH*FFH`RhR%Z3(5c}H_h;_z<r5UPp5*Yv+ZNM>u?vKQc;h3NC7d|%#q6X!~o_-fvt
z5$*m|ZN$q5zo*-Ve3N&mn8X%A`Zc}y>pkNkXT+PhKDIHDOCj2t5p9)t<S(oS>>opH
z8&Td=-BU8_aJejrzqgw2Ar)7013nBey7olv7}EIC0%KlD66{sVhAH2z`|cNWMZEq{
z$~}UWC*fuQF>c;~nw&S$HcO=KeZl(Qo?O9LZ87;fulN`VXH$+bmbeU``D(S`E#vzk
znS_yP;h{$J0rdH_w;XCug^yswUre$v=_L0!I)$_)3H$+HeP;h67Vx0SOWvPxo#gEm
zgeI{nwaG^)mAp^IzXKqerMJ<j-ASDMl*)c{25Y{QTxVVX4tJdx-UU55xZsOlK;{3l
z?Z3}8bY-sB!)=0)lUUFvjzT$@c>WPnyFB5U`$RL#7#p~!5f@2$9re|gFHLCBX|FHX
zzQZsa_5@J<ZLEqL22Bu&ztl4v)!j$fseEN+Pwm_{UP=Jlx5_!~Arpx);&ljY6=TMd
zKg*E7|IbAFJVgmxQNz}QgaCqg$x9YePbRNvN$?&-$)>1Y3M({bnr$hW4`Z0w(A8iq
z(mqm?Z9gvY4ay7HMz;X|bVqw$D#a}2$d7~rOog;ys{%x_nOEPOTH6Yas9lL%jZPC!
zzPv}u)py)lX3V%UlkEltzg|YFW+0Q?`?qBuzddg?(h<&~ZPKr~`Dy_8iC5%M=o{%9
zm!o>rz0y1k#5Q)(CX;Wun+Yds>A53%Xlkt(-)^zMf8<7#b`@pC8D|S>A?z=V?0Jn+
zihQTZ5jlrQl9K*ocI*=K;>ee1I+I-f5?mGG&ow;%+j%XJfkc>{FHoM5nemtr_s8T*
zc2?hhXDde7z+r<-)gkT`jm6@L2VI!4%}9Do&hJ<Ls>?KY7$28@n^bq(knG~B5pXRl
z)Hch_vk%-c>0BwN@a679b{hZcE>`POkQ=Zksk<s6>t{T({(Ni#o=`p>rhx*)KJkR2
zB3YFn*_p%2w8cAiIno(As5H;p#bSwA=Oq#018r6tRm-&2<m%p&O$6reXXQ5u7h>x2
zZu;8EdVMTMhmC1UkzbH1MedzIe9O<e><b-izNG6Scj!`^KGFI9Cb&gzck<CYkHI@M
z=}gp{Ua1S)(ey=)Mkqi(p<6D#j+h)jik=+*5jj%)*P7^c9zp-+w?0O$N`Wcy&PYKM
zUgW$Zozz5rNqe42y=Kgi<-2;-a_o?$2Sz2lQN1QVM&$$WC+8o*p?Xz{**}Ru^(u~}
zA<IKL)w9@^%TOeY`Uf-Qb$g6@c+qteB*_a%bdn!nI3oG*&S8TzVFGN+{UjpBs3OeD
z=2g7uyCi09WmpUbaF{W>{mk0^*bG@{^(Ad0?z;u|{lR8!qgV`)SPX)2m=FWxA;kTx
zug#Mmc@yWU%&#VsA3sd}KpOR?=$?#HURfvJ(++VQ(dZEkQ_j*4xlKLT8o#G#5Dd{F
z8l;RcPms>V{BS+m3&<%f0Ft;PjSUfidsHHyAZ2B>!On$|oWhpT&;BJ@Fa0LbKRGzJ
znv0?@Vxmlrr7}$Bs9;WU(T}>3Bk2XviuStuvb)viD<uLe78aa#-S9h#J0?jvA%T0>
zsO#FHBxR$r*r=_85>k(rs#js)+a)_*X+a0W?aaL8B24gDN^vnFMI$-wNJh3fiv};^
z0GZDjf|XZHMJMZ@QXWR{g?e9~Q1>E>htm?qHeM^u+tUP+1U0m#YDPNO)ks+B2<Zp~
zsg}R^Pq3HpOhRA$N%^uHO)(u(=&I$?)663fkJv1EF`TTqgZoPw%0^KiT3vrz<Jwl&
z_K=hEHn-L_`H5<-MSLXuq_?2f=%{g`sXDW*sqXT~W}iri&uANLZf`4FX*Rw|*jQ|O
z2tu7!=;Tegv6Ydcr%9YEYCtMn8iiL=g;7yaIdCD)eWL_3j<u(C`GODOwMr#2P=HfY
zP<`o%;5C=VQO#)?QaNg~+R`Y3Gh__Wp!(BLIjqOBEe?-G83V=>?9n?&E7WmWmTzx3
z5K;Vlf8Tj@C_w<!(WHi`y4;`dy>TNtXwfw~4>daHmo!^@QnD^K)C`wS#l`I}Xv@?1
z&CNXA)db4pR3t;0I?~@q{SQvOevA-ltJunS=-4!rS1H-Hz@v(;%OZ@(+T>zK=UQK0
zZNG)buP3$^msn1)BtmTiqqbY0GUX3pAJ1tw5k;TonzvXqkACqenyCKG#idlELN)t^
zD_NM%#Vx}K)%SqPip^}%*?G})HDvu(T#00X!xW7(jn$H8&5G4g94)1&b0~dy<L^P0
zx{YxJDQCx$Wz^Kl$lxD(x#@^GG4ger6jfTw*-)JCL#7N%y%BMh<p}43g0|Z(eoM0@
zm-&bMY8!rx?OIsf4(lzrWBC0$T~8f;(K|J6ua!#0cU2hZ;mXjjIwCnj2P*x(=<&sg
z18uW8C<XJu(rCh&?(tcB{Xa}uVwy6jO>ba|(>1CTsP|D()1NWmRjtzaoaGWrpHFF|
zL;K>`l$$KB*WZ?%owObz0osXr3fi+32r6#TAw3G+-}#1da_j1~{$jTOj!)6fv7VBY
zny5E1GsWDsK1X46+}|*O`d`JJc{o)28^F0mAxX5@Cs`uP%$ePqt*e`qY!ep|vS%xX
z<hD?#iLs2zlA=T?+fdY%lr;=0YZ-<njF3UL-*?<!-CKUo{oOx)&+|L;%=3J|?|Hx9
z_x+wT=bh(yKkqq*TUFanQ;RI8u5h#Cm(&+8PQT~2&y}wxoh8$_L#LB_briIi8xAcg
z2f3VL*Z1^bVzLg{YxVU&Ru($;<6S<KfQu2`p`kK1u1D+$?T!xvMYrUawv?xm$ZJ}M
z-ijT*+nbwOSonYy867S0v3{O@zja!yJh!mOn&I01v+cl_LDJaCe813BY<i~Q;N=C8
zrWjSL;uwGR<ELuo3LCT<z?;=w??@P8in6;}9c*Y0^_S~P%&HX<xlPN%9_OB^sBpWV
zMXV@$+nwSfG|eWr*6pgx2`v8Te@(mxmLMJ1H<XC(A(%ZWDfGy^ydE=2Fma7nz3X!C
zq<24UZy4DfS@O`Q$LvY3ypRO}P4qr;BsYm?Yq2f;08?pn_)N+@=gXR;AVIsco%T2n
zl*X15Xb)ZqkLmJ$;T`)P6=(H`Jg+KOw$ZnIee>r1#*o{wd-|H2*G1Y$TSs(V?2ke>
zg!0%3%j~w}8XD&&C#b)>R)NcS>RWxCD{C=HGxwzwY2ssaMqyzF-K9OCVX{j#iCw8Q
zBzc=S{Utr$X8OU=@-fBq1d^5Y)dUp@AGhslyIy%UHF(xFdet>}X5GzIL(!t1w9|d|
z*W{Swcv1Ik=@s@%jIAP@-Y9ygK}9q%H;^RXKZCIC>z~RiU1@S};(5lGa(-s-aALG9
zimtOD9z=*UP8x_mY$aD(WG-3%n}e@j+G2S_9nXQZs---_GDK}|OV>4>kGVCQnY`|)
z^XV=*osnHKR?8}re7tTh9}aj+i5oo8pv5MVhXThe@A=;<g33qh-dU6$?ztDSyG0*A
zJD|gV4C7>`O#Gtr-g}UngtNUWSILl@PR|tS^d6IA6b1LAf`XywY_Dg#&AVjSv?chB
zD}?58qwwotJBA}NUR1Vy`1B%G>4@jaM@hqFNw^V;?Fa=oc2?L{*>hh1SfK6k0S!Ul
z7O6O5R!PZOd9~z8!dpq{w#Lb1?Usu#&$09`wssz{PFO>1O<brPNgnL*D#+emkk`%f
z{ng<HmF85X9i?{E{qBRSk00C%9<nzKs*>&DsUGU$VPqE_zWeC(wql`#qz$-CyO#V7
zvsc9)zb6Rv@-Xi>hNsSt8Qchs_*p$;@EK`zl%(&zZS+<@q;M^SG^Z!hY?YtWkl)U3
zuU~M!;#qc6bEiPGl=FZ`zlzkBi18SzZ~NwEm1AwAg_O);DPm4wyBpl=fh9#=)WUMB
zoQj>DPp9)`WQQWYL4<$zZUGUM)X59UJ?qUQ@vpOOM8zrbrO$mxuZN7>Ad%^b{uqmg
zujQExJ};_X=RnWKlzvBKU#ypUbzbDGb%!SMFp@5do_l6Sk9}iJjz6cSy}N6(^j`MB
zUW228Uy3(bM_E1Vnj*XGuW`;w;jhQG%sJZXDIOhkCBBaIAS;cY@G$jMg7wEAXGPms
zDOdU(ixbhVnN0FEFN@GURqT<@oZ0fS47P(Tc}=VOjN`f|5}^?$(@xq4Dk8#Xtl6NR
zPW3dN#h_I(n%&cauKHh<J0XC_X-K+!qJ8j{Khb*4du!iTA7~_@KRsUPV|uHu`OLe)
z-=itV>|wkje2ZksO{NO`>rCrRxfG?Vv=cpQt*VQu(dE7Zd_!K@ra}6|3udXpo`oOi
zi#j=*o^;s6U{dqDs94!&;`xZ<uX%4l>I8mShkmEE+S9scl;Xo`<I@E443B3%xN+sW
zXrY4PES^XRRsluZumYpOy8`S>r^P8XL2I`)N>SuDf5D3WvXJAs_FkGvNJl}|^sXwI
zgL+zN&YzKeKaD<@el<AZ8Z&Qla1c#ZxIqV{Sh?MAj)#fDem&SXTPwOaAj7b~TWj(P
zne`?ip`EbL*d)p*xkWIq(ZK+5MMOOgF$rh9(};O`Wx_gS_Nn*Cr55H#h@ZmPlG(#l
zG>NUy4Aii`U2e5iA}*6;?_`rg{`8wh)90hc*U&o6#(B{@<7W5v+&(lp;kIGXsg#ag
zs%|k5HXvHDNrtS-t}>jez5jVN{er74V%cMOI@gFqbeOkBK_7n>gzY$Z(ID_)ihkN;
zP=Q+O&xRiaZJr)F`N`*3iIQCm`BU{T%c01k{Y-R-xv#l#agrb@EL~EhczyuY^_GyQ
zu+fEm$>{lSnmE={p4ZgFBX1RM&$n9<+=_;~z2;67FZ<1~qDomiAD@z9-U(5NGWwK-
zdhxtep(w(e5XS!LM&9pf)`vbtJ`U=B&gu<+F3jT_oe&rJC2hOGWr0g{3o~Im1NwOF
z5jL8yDNrrd?opspO{<<gOsq%xh^%g7-<j%9qBo=nLYln}$SZCxi4_Er_TmMBx2Hf(
zM58Qhw7a$;gq%Z)G8?GzjxqDRbsPP0dp+|f>iPQy5^5uP9U~<+VJcLEg4X9R+=@}_
zYb^~n&o~4aSuSfuX*NCSU20ae-`F_?Uh!DE=6JOw^=fV<lor4oDk=y#qq$6u3JvNH
z3FwXWD`89tw*-|C)lh!e#-;hr-I5OLN^`Rs&JAkw*`@H%hTYR2=N)5}=3e{Mn@dl-
z=CE}Jr#a@JgIO;=G1;k5LOoNk0H4?wg1~ztiA^uN<DL0fIswcNyZv^Ci+OD$e~_He
zihn#zJ$qWvOxKXN{9;=9P;0+1Vai|@m<)j}+?;>I5SzAHKm57vsc<vp5^mbI$wWF8
z7p^%>9k+Rul%M6v^pI1NSXdVKuhXRw+B-&qENK^y)_A@M=Mxrdw^x!l%%>eJZ)df9
zY*%tXV?{Uu${n}z{k=PQaV%?pxHr$%1U0S&^#%n~o7JgQ1oqFg^?!pJ`m3M@NZg<F
za`Xo|&VR}^@PK{%&#=bV+K#U&_*G@@{~2p=mi!&o_?v}&%PIfA$OZxn&;uY9STrCN
zSOjQb0ph@N*aZSKRuBgq0-%C}IM6seXssX)&dxs&2a+ROK^zDU&{#nm2oB^}K^u55
z7J{%G+yP_|3JGSx!$FH<3xmbM(13P;9xw=cpoRO2Qjh>E*&>m67zPJMBB2$14u|2)
z24R3zBnp5P2+PTy!(kXWr;vs7`C}gj;1u9AM~K04hGBte3<Q>of&)gwG0jm%!2!rY
zA%J-lhr*zcKnn#2`Y6<jLEt_L185Bz1;N10382Su9F0W5fCTh#z)3WMGY5_{D;#KG
z!OaY|Xbd=>IN&`F1v~;v0Vs&$Hds0ijRjvESP0mQ0rrqMFcS_iHd{2DvmXa6aNLE!
zfnN=R{^1P_;9))AfuQ&XpWATJ$Qi8&N~%$W`cV-jeY&y>!W+%h;^I~`^5DWd$5CYh
z&QKG1`7)bzD9czKzmwTQZDobCO-+lf`J-B<=ZmOwtdIs%He?zX>$QCzy(w(olWO?z
zppK4DZl&~{Dao;!%QfK(Ebo&-Y>N$3bxYB7Yb*h4x{dvrsu7~oM`5(tj}=4G47|i>
zr}dX!RrTJE!em;S(D`>VZ(bHP&qW1?t0e7n;zloOz3rw=zdqSkvp1BLo-$^;JQ$Z6
zxy-hVEN&}b{va74AoGeSJ9))WkZc&mEp|wt{t`{Jcqfe~TNV;;-{g{Eu-`(?P-$I;
zYtE&d2b9fd{tFvbjpI#s+%!?V$!kcI)zeKqt1o9M?9QvaM?QP4UW|f}{>57Hwc*z#
z`PPhImyD8<6<n8bCqqP($3kLK@t0l5Lw2k^hkA`SC7^AaN(Tq6{8D0WDJ$d1g6n%-
zcyjjC3XtT8hs49><vZ&4#3aB1DUoUi%A}ZY?B*WXo-^0mfm^7)Ez6@{MH(+ueQjai
zUS&x@5jLz#(vxG{6IE0xy2+(Ym8dw-H52?fXn4W71xGXXs)n1gL!BtZ&cf0enXJaC
zh}9AHFI@1?0Ly`yPJt`cT&rN!-$bK-%B#NCs{MsmtyHW1$*aI~r(OBM4<F7C|F*#}
zXfzTHbA^4AaVQsOgZcbh2H_zj2%q1{;BW*$qu<Mr5E8_RA7prF)qG$qxY)kegCj5?
zmVGY+*Cp`mM;QeFaV&&K;aBP5(P$85INM*=fdRemWk>`Hw_1h)0ptfgaM`bxp+R8!
zK@W>tb*zv$I0#!m=;1H`VSkea`a1$>@6QjoxVd|X3+EK6A3kvcR0wiHCHUW3q2?=X
Za5@759sL7WP9_qM#Gv`*<&6&R{TJLMdWZl3

literal 0
HcmV?d00001

diff --git a/package-lock.json b/package-lock.json
index 348a046de..f727ea74e 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -3371,12 +3371,12 @@
       }
     },
     "node_modules/@prisma/client": {
-      "version": "5.0.0",
-      "resolved": "https://registry.npmjs.org/@prisma/client/-/client-5.0.0.tgz",
-      "integrity": "sha512-XlO5ELNAQ7rV4cXIDJUNBEgdLwX3pjtt9Q/RHqDpGf43szpNJx2hJnggfFs7TKNx0cOFsl6KJCSfqr5duEU/bQ==",
+      "version": "5.3.1",
+      "resolved": "https://registry.npmjs.org/@prisma/client/-/client-5.3.1.tgz",
+      "integrity": "sha512-ArOKjHwdFZIe1cGU56oIfy7wRuTn0FfZjGuU/AjgEBOQh+4rDkB6nF+AGHP8KaVpkBIiHGPQh3IpwQ3xDMdO0Q==",
       "hasInstallScript": true,
       "dependencies": {
-        "@prisma/engines-version": "4.17.0-26.6b0aef69b7cdfc787f822ecd7cdc76d5f1991584"
+        "@prisma/engines-version": "5.3.1-2.61e140623197a131c2a6189271ffee05a7aa9a59"
       },
       "engines": {
         "node": ">=16.13"
@@ -3391,15 +3391,15 @@
       }
     },
     "node_modules/@prisma/engines": {
-      "version": "5.0.0",
-      "resolved": "https://registry.npmjs.org/@prisma/engines/-/engines-5.0.0.tgz",
-      "integrity": "sha512-kyT/8fd0OpWmhAU5YnY7eP31brW1q1YrTGoblWrhQJDiN/1K+Z8S1kylcmtjqx5wsUGcP1HBWutayA/jtyt+sg==",
+      "version": "5.3.1",
+      "resolved": "https://registry.npmjs.org/@prisma/engines/-/engines-5.3.1.tgz",
+      "integrity": "sha512-6QkILNyfeeN67BNEPEtkgh3Xo2tm6D7V+UhrkBbRHqKw9CTaz/vvTP/ROwYSP/3JT2MtIutZm/EnhxUiuOPVDA==",
       "hasInstallScript": true
     },
     "node_modules/@prisma/engines-version": {
-      "version": "4.17.0-26.6b0aef69b7cdfc787f822ecd7cdc76d5f1991584",
-      "resolved": "https://registry.npmjs.org/@prisma/engines-version/-/engines-version-4.17.0-26.6b0aef69b7cdfc787f822ecd7cdc76d5f1991584.tgz",
-      "integrity": "sha512-HHiUF6NixsldsP3JROq07TYBLEjXFKr6PdH8H4gK/XAoTmIplOJBCgrIUMrsRAnEuGyRoRLXKXWUb943+PFoKQ=="
+      "version": "5.3.1-2.61e140623197a131c2a6189271ffee05a7aa9a59",
+      "resolved": "https://registry.npmjs.org/@prisma/engines-version/-/engines-version-5.3.1-2.61e140623197a131c2a6189271ffee05a7aa9a59.tgz",
+      "integrity": "sha512-y5qbUi3ql2Xg7XraqcXEdMHh0MocBfnBzDn5GbV1xk23S3Mq8MGs+VjacTNiBh3dtEdUERCrUUG7Z3QaJ+h79w=="
     },
     "node_modules/@protobufjs/aspromise": {
       "version": "1.1.2",
@@ -14647,12 +14647,12 @@
       "integrity": "sha512-WuxUnVtlWL1OfZFQFuqvnvs6MiAGk9UNsBostyBOB0Is9wb5uRESevA6rnl/rkksXaGX3GzZhPup5d6Vp1nFew=="
     },
     "node_modules/prisma": {
-      "version": "5.0.0",
-      "resolved": "https://registry.npmjs.org/prisma/-/prisma-5.0.0.tgz",
-      "integrity": "sha512-KYWk83Fhi1FH59jSpavAYTt2eoMVW9YKgu8ci0kuUnt6Dup5Qy47pcB4/TLmiPAbhGrxxSz7gsSnJcCmkyPANA==",
+      "version": "5.3.1",
+      "resolved": "https://registry.npmjs.org/prisma/-/prisma-5.3.1.tgz",
+      "integrity": "sha512-Wp2msQIlMPHe+5k5Od6xnsI/WNG7UJGgFUJgqv/ygc7kOECZapcSz/iU4NIEzISs3H1W9sFLjAPbg/gOqqtB7A==",
       "hasInstallScript": true,
       "dependencies": {
-        "@prisma/engines": "5.0.0"
+        "@prisma/engines": "5.3.1"
       },
       "bin": {
         "prisma": "build/index.js"
@@ -18198,8 +18198,12 @@
       "version": "1.0.0",
       "license": "MIT",
       "dependencies": {
-        "@prisma/client": "5.0.0",
-        "prisma": "5.0.0"
+        "@prisma/client": "5.3.1",
+        "prisma": "5.3.1"
+      },
+      "devDependencies": {
+        "ts-node": "^10.9.1",
+        "typescript": "^5.1.6"
       }
     },
     "packages/tailwind-config": {
diff --git a/packages/lib/server-only/document/send-document.tsx b/packages/lib/server-only/document/send-document.tsx
index 37ecc66b7..83a88f24a 100644
--- a/packages/lib/server-only/document/send-document.tsx
+++ b/packages/lib/server-only/document/send-document.tsx
@@ -48,8 +48,8 @@ export const sendDocument = async ({ documentId, userId }: SendDocumentOptions)
         return;
       }
 
-      const assetBaseUrl = process.env.NEXT_PUBLIC_SITE_URL || 'http://localhost:3000';
-      const signDocumentLink = `${process.env.NEXT_PUBLIC_SITE_URL}/sign/${recipient.token}`;
+      const assetBaseUrl = process.env.NEXT_PUBLIC_WEBAPP_URL || 'http://localhost:3000';
+      const signDocumentLink = `${process.env.NEXT_PUBLIC_WEBAPP_URL}/sign/${recipient.token}`;
 
       const template = createElement(DocumentInviteEmailTemplate, {
         documentName: document.title,
diff --git a/packages/lib/universal/get-base-url.ts b/packages/lib/universal/get-base-url.ts
index aa8884088..2120c9f54 100644
--- a/packages/lib/universal/get-base-url.ts
+++ b/packages/lib/universal/get-base-url.ts
@@ -8,8 +8,8 @@ export const getBaseUrl = () => {
     return `https://${process.env.VERCEL_URL}`;
   }
 
-  if (process.env.NEXT_PUBLIC_SITE_URL) {
-    return `https://${process.env.NEXT_PUBLIC_SITE_URL}`;
+  if (process.env.NEXT_PUBLIC_WEBAPP_URL) {
+    return process.env.NEXT_PUBLIC_WEBAPP_URL;
   }
 
   return `http://localhost:${process.env.PORT ?? 3000}`;
diff --git a/packages/prisma/helper.ts b/packages/prisma/helper.ts
new file mode 100644
index 000000000..d436771d1
--- /dev/null
+++ b/packages/prisma/helper.ts
@@ -0,0 +1,52 @@
+/// <reference types="@documenso/tsconfig/process-env.d.ts" />
+
+export const getDatabaseUrl = () => {
+  if (process.env.NEXT_PRIVATE_DATABASE_URL) {
+    return process.env.NEXT_PRIVATE_DATABASE_URL;
+  }
+
+  if (process.env.POSTGRES_URL) {
+    process.env.NEXT_PRIVATE_DATABASE_URL = process.env.POSTGRES_URL;
+    process.env.NEXT_PRIVATE_DIRECT_DATABASE_URL = process.env.POSTGRES_URL;
+  }
+
+  if (process.env.DATABASE_URL) {
+    process.env.NEXT_PRIVATE_DATABASE_URL = process.env.DATABASE_URL;
+    process.env.NEXT_PRIVATE_DIRECT_DATABASE_URL = process.env.DATABASE_URL;
+  }
+
+  if (process.env.POSTGRES_PRISMA_URL) {
+    process.env.NEXT_PRIVATE_DATABASE_URL = process.env.POSTGRES_PRISMA_URL;
+  }
+
+  if (process.env.POSTGRES_URL_NON_POOLING) {
+    process.env.NEXT_PRIVATE_DIRECT_DATABASE_URL = process.env.POSTGRES_URL_NON_POOLING;
+  }
+
+  // We change the protocol from `postgres:` to `https:` so we can construct a easily
+  // mofifiable URL.
+  const url = new URL(process.env.NEXT_PRIVATE_DATABASE_URL.replace('postgres://', 'https://'));
+
+  // If we're using a connection pool, we need to let Prisma know that
+  // we're using PgBouncer.
+  if (process.env.NEXT_PRIVATE_DATABASE_URL !== process.env.NEXT_PRIVATE_DIRECT_DATABASE_URL) {
+    url.searchParams.set('pgbouncer', 'true');
+
+    process.env.NEXT_PRIVATE_DATABASE_URL = url.toString().replace('https://', 'postgres://');
+  }
+
+  // Support for neon.tech (Neon Database)
+  if (url.hostname.endsWith('neon.tech')) {
+    const [projectId, ...rest] = url.hostname.split('.');
+
+    if (!projectId.endsWith('-bouncer')) {
+      url.hostname = `${projectId}-pooler.${rest.join('.')}`;
+    }
+
+    url.searchParams.set('pgbouncer', 'true');
+
+    process.env.NEXT_PRIVATE_DATABASE_URL = url.toString().replace('https://', 'postgres://');
+  }
+
+  return process.env.NEXT_PRIVATE_DATABASE_URL;
+};
diff --git a/packages/prisma/index.ts b/packages/prisma/index.ts
index 93a334caa..b9e290add 100644
--- a/packages/prisma/index.ts
+++ b/packages/prisma/index.ts
@@ -1,5 +1,7 @@
 import { PrismaClient } from '@prisma/client';
 
+import { getDatabaseUrl } from './helper';
+
 declare global {
   // We need `var` to declare a global variable in TypeScript
   // eslint-disable-next-line no-var
@@ -7,9 +9,13 @@ declare global {
 }
 
 if (!globalThis.prisma) {
-  globalThis.prisma = new PrismaClient();
+  globalThis.prisma = new PrismaClient({ datasourceUrl: getDatabaseUrl() });
 }
 
-export const prisma = globalThis.prisma || new PrismaClient();
+export const prisma =
+  globalThis.prisma ||
+  new PrismaClient({
+    datasourceUrl: getDatabaseUrl(),
+  });
 
 export const getPrismaClient = () => prisma;
diff --git a/packages/prisma/package.json b/packages/prisma/package.json
index 3ef12787a..958bcde17 100644
--- a/packages/prisma/package.json
+++ b/packages/prisma/package.json
@@ -9,10 +9,18 @@
     "format": "prisma format",
     "prisma:generate": "prisma generate",
     "prisma:migrate-dev": "prisma migrate dev",
-    "prisma:migrate-deploy": "prisma migrate deploy"
+    "prisma:migrate-deploy": "prisma migrate deploy",
+    "prisma:seed": "prisma db seed"
+  },
+  "prisma": {
+    "seed": "ts-node --transpileOnly --skipProject ./seed-database.ts"
   },
   "dependencies": {
-    "@prisma/client": "5.0.0",
-    "prisma": "5.0.0"
+    "@prisma/client": "5.3.1",
+    "prisma": "5.3.1"
+  },
+  "devDependencies": {
+    "ts-node": "^10.9.1",
+    "typescript": "^5.1.6"
   }
 }
diff --git a/packages/prisma/seed-database.ts b/packages/prisma/seed-database.ts
new file mode 100644
index 000000000..65daa357e
--- /dev/null
+++ b/packages/prisma/seed-database.ts
@@ -0,0 +1,82 @@
+import { DocumentDataType, Role } from '@prisma/client';
+import fs from 'node:fs';
+import path from 'node:path';
+
+import { hashSync } from '@documenso/lib/server-only/auth/hash';
+
+import { prisma } from './index';
+
+const seedDatabase = async () => {
+  const examplePdf = fs
+    .readFileSync(path.join(__dirname, '../../assets/example.pdf'))
+    .toString('base64');
+
+  const exampleUser = await prisma.user.upsert({
+    where: {
+      email: 'example@documenso.com',
+    },
+    create: {
+      name: 'Example User',
+      email: 'example@documenso.com',
+      password: hashSync('password'),
+      roles: [Role.USER],
+    },
+    update: {},
+  });
+
+  const adminUser = await prisma.user.upsert({
+    where: {
+      email: 'admin@documenso.com',
+    },
+    create: {
+      name: 'Admin User',
+      email: 'admin@documenso.com',
+      password: hashSync('password'),
+      roles: [Role.USER, Role.ADMIN],
+    },
+    update: {},
+  });
+
+  const examplePdfData = await prisma.documentData.upsert({
+    where: {
+      id: 'clmn0kv5k0000pe04vcqg5zla',
+    },
+    create: {
+      id: 'clmn0kv5k0000pe04vcqg5zla',
+      type: DocumentDataType.BYTES_64,
+      data: examplePdf,
+      initialData: examplePdf,
+    },
+    update: {},
+  });
+
+  await prisma.document.upsert({
+    where: {
+      id: 1,
+    },
+    create: {
+      id: 1,
+      title: 'Example Document',
+      documentDataId: examplePdfData.id,
+      userId: exampleUser.id,
+      Recipient: {
+        create: {
+          name: String(adminUser.name),
+          email: adminUser.email,
+          token: Math.random().toString(36).slice(2, 9),
+        },
+      },
+    },
+    update: {},
+  });
+};
+
+seedDatabase()
+  .then(() => {
+    console.log('Database seeded');
+    process.exit(0);
+  })
+  .catch((error) => {
+    console.error(error);
+    process.exit(1);
+  });
diff --git a/packages/tsconfig/process-env.d.ts b/packages/tsconfig/process-env.d.ts
index b0852b4f4..d32b9984a 100644
--- a/packages/tsconfig/process-env.d.ts
+++ b/packages/tsconfig/process-env.d.ts
@@ -1,6 +1,7 @@
 declare namespace NodeJS {
   export interface ProcessEnv {
-    NEXT_PUBLIC_SITE_URL?: string;
+    NEXT_PUBLIC_WEBAPP_URL?: string;
+    NEXT_PUBLIC_MARKETING_URL?: string;
 
     NEXT_PRIVATE_GOOGLE_CLIENT_ID?: string;
     NEXT_PRIVATE_GOOGLE_CLIENT_SECRET?: string;
@@ -40,5 +41,19 @@ declare namespace NodeJS {
 
     NEXT_PRIVATE_SMTP_FROM_NAME?: string;
     NEXT_PRIVATE_SMTP_FROM_ADDRESS?: string;
+
+    /**
+     * Vercel environment variables
+     */
+    VERCEL?: string;
+    VERCEL_ENV?: 'production' | 'development' | 'preview';
+    VERCEL_URL?: string;
+
+    DEPLOYMENT_TARGET?: 'webapp' | 'marketing';
+
+    POSTGRES_URL?: string;
+    DATABASE_URL?: string;
+    POSTGRES_PRISMA_URL?: string;
+    POSTGRES_URL_NON_POOLING?: string;
   }
 }
diff --git a/scripts/remap-vercel-env.cjs b/scripts/remap-vercel-env.cjs
new file mode 100644
index 000000000..95e60cde8
--- /dev/null
+++ b/scripts/remap-vercel-env.cjs
@@ -0,0 +1,45 @@
+/** @typedef {import('@documenso/tsconfig/process-env')} */
+
+/**
+ * Remap Vercel environment variables to our defined Next.js environment variables.
+ *
+ * @deprecated This is no longer needed because we can't inject runtime environment variables via next.config.js
+ *
+ * @returns {void}
+ */
+const remapVercelEnv = () => {
+  if (!process.env.VERCEL || !process.env.DEPLOYMENT_TARGET) {
+    return;
+  }
+
+  if (process.env.POSTGRES_URL) {
+    process.env.NEXT_PRIVATE_DATABASE_URL = process.env.POSTGRES_URL;
+  }
+
+  if (process.env.POSTGRES_URL_NON_POOLING) {
+    process.env.NEXT_PRIVATE_DIRECT_DATABASE_URL = process.env.POSTGRES_URL_NON_POOLING;
+  }
+
+  // If we're using a connection pool, we need to let Prisma know that
+  // we're using PgBouncer.
+  if (process.env.NEXT_PRIVATE_DATABASE_URL !== process.env.NEXT_PRIVATE_DIRECT_DATABASE_URL) {
+    const url = new URL(process.env.NEXT_PRIVATE_DATABASE_URL);
+
+    url.searchParams.set('pgbouncer', 'true');
+
+    process.env.NEXT_PRIVATE_DATABASE_URL = url.toString();
+  }
+
+  if (process.env.VERCEL_ENV !== 'production' && process.env.DEPLOYMENT_TARGET === 'webapp') {
+    process.env.NEXTAUTH_URL = `https://${process.env.VERCEL_URL}`;
+    process.env.NEXT_PUBLIC_WEBAPP_URL = `https://${process.env.VERCEL_URL}`;
+  }
+
+  if (process.env.VERCEL_ENV !== 'production' && process.env.DEPLOYMENT_TARGET === 'marketing') {
+    process.env.NEXT_PUBLIC_MARKETING_URL = `https://${process.env.VERCEL_URL}`;
+  }
+};
+
+module.exports = {
+  remapVercelEnv,
+};
diff --git a/scripts/vercel.sh b/scripts/vercel.sh
new file mode 100755
index 000000000..e4ab23622
--- /dev/null
+++ b/scripts/vercel.sh
@@ -0,0 +1,107 @@
+#!/usr/bin/env bash
+
+# Exit on error.
+set -eo pipefail
+
+# Get the directory of this script, regardless of where it is called from.
+SCRIPT_DIR="$(readlink -f "$(dirname "$0")")"
+
+
+function log() {
+  echo "[VercelBuild]: $1"
+}
+
+function build_webapp() {
+  log "Building webapp for $VERCEL_ENV"
+  
+  remap_database_integration
+
+  npm run prisma:generate --workspace=@documenso/prisma
+  npm run prisma:migrate-deploy --workspace=@documenso/prisma
+
+  if [[ "$VERCEL_ENV" != "production" ]]; then
+    log "Seeding database for $VERCEL_ENV"
+
+    npm run prisma:seed --workspace=@documenso/prisma
+  fi
+
+  npm run build -- --filter @documenso/web
+}
+
+function remap_webapp_env() {
+  if [[ "$VERCEL_ENV" != "production" ]]; then
+    log "Remapping webapp environment variables for $VERCEL_ENV"
+
+    export NEXTAUTH_URL="https://$VERCEL_URL"
+    export NEXT_PUBLIC_WEBAPP_URL="https://$VERCEL_URL"
+  fi
+}
+
+function build_marketing() {
+  log "Building marketing for $VERCEL_ENV"
+  
+  remap_database_integration
+
+  npm run prisma:generate --workspace=@documenso/prisma
+  npm run build -- --filter @documenso/marketing
+}
+
+function remap_marketing_env() {
+  if [[ "$VERCEL_ENV" != "production" ]]; then
+    log "Remapping marketing environment variables for $VERCEL_ENV"
+
+    export NEXT_PUBLIC_MARKETING_URL="https://$VERCEL_URL"
+  fi
+}
+
+function remap_database_integration() {
+  log "Remapping Supabase integration for $VERCEL_ENV"
+
+  if [[ ! -z "$POSTGRES_URL" ]]; then
+    export NEXT_PRIVATE_DATABASE_URL="$POSTGRES_URL"
+    export NEXT_PRIVATE_DIRECT_DATABASE_URL="$POSTGRES_URL"
+  fi
+
+  if [[ ! -z "$DATABASE_URL" ]]; then
+    export NEXT_PRIVATE_DATABASE_URL="$DATABASE_URL"
+    export NEXT_PRIVATE_DIRECT_DATABASE_URL="$DATABASE_URL"
+  fi
+
+  if [[ ! -z "$POSTGRES_URL_NON_POOLING" ]]; then
+    export NEXT_PRIVATE_DATABASE_URL="$POSTGRES_URL?pgbouncer=true"
+    export NEXT_PRIVATE_DIRECT_DATABASE_URL="$POSTGRES_URL_NON_POOLING"
+  fi
+
+  
+  if [[ "$NEXT_PRIVATE_DATABASE_URL" == *"neon.tech"* ]]; then
+    log "Remapping for Neon integration"
+
+    PROJECT_ID="$(echo "$PGHOST" | cut -d'.' -f1)"
+    PGBOUNCER_HOST="$(echo "$PGHOST" | sed "s/${PROJECT_ID}/${PROJECT_ID}-pooler/")"
+
+    export NEXT_PRIVATE_DATABASE_URL="postgres://${PGUSER}:${PGPASSWORD}@${PGBOUNCER_HOST}/${PGDATABASE}?pgbouncer=true"
+  fi
+}
+
+# Navigate to the root of the project.
+cd "$SCRIPT_DIR/.."
+
+# Check if the script is running on Vercel.
+if [[ -z "$VERCEL" ]]; then
+  log "ERROR - This script must be run as part of the Vercel build process."
+  exit 1
+fi
+
+case "$DEPLOYMENT_TARGET" in
+  "webapp")
+    build_webapp
+    ;;
+  "marketing")
+    build_marketing
+    ;;
+  *)
+    log "ERROR - Missing or invalid DEPLOYMENT_TARGET environment variable."
+    log "ERROR - DEPLOYMENT_TARGET must be either 'webapp' or 'marketing'."
+    exit 1
+    ;;
+esac
diff --git a/turbo.json b/turbo.json
index a5b333c66..01b8bd487 100644
--- a/turbo.json
+++ b/turbo.json
@@ -2,8 +2,13 @@
   "$schema": "https://turbo.build/schema.json",
   "pipeline": {
     "build": {
-      "dependsOn": ["^build"],
-      "outputs": [".next/**", "!.next/cache/**"]
+      "dependsOn": [
+        "^build"
+      ],
+      "outputs": [
+        ".next/**",
+        "!.next/cache/**"
+      ]
     },
     "lint": {},
     "dev": {
@@ -11,20 +16,22 @@
       "persistent": true
     }
   },
-  "globalDependencies": ["**/.env.*local"],
+  "globalDependencies": [
+    "**/.env.*local"
+  ],
   "globalEnv": [
     "APP_VERSION",
     "NEXTAUTH_URL",
     "NEXTAUTH_SECRET",
-    "NEXT_PUBLIC_APP_URL",
-    "NEXT_PUBLIC_SITE_URL",
+    "NEXT_PUBLIC_WEBAPP_URL",
+    "NEXT_PUBLIC_MARKETING_URL",
     "NEXT_PUBLIC_POSTHOG_KEY",
     "NEXT_PUBLIC_POSTHOG_HOST",
     "NEXT_PUBLIC_FEATURE_BILLING_ENABLED",
     "NEXT_PUBLIC_STRIPE_COMMUNITY_PLAN_YEARLY_PRICE_ID",
     "NEXT_PUBLIC_STRIPE_COMMUNITY_PLAN_MONTHLY_PRICE_ID",
     "NEXT_PRIVATE_DATABASE_URL",
-    "NEXT_PRIVATE_NEXT_AUTH_SECRET",
+    "NEXT_PRIVATE_DIRECT_DATABASE_URL",
     "NEXT_PRIVATE_GOOGLE_CLIENT_ID",
     "NEXT_PRIVATE_GOOGLE_CLIENT_SECRET",
     "NEXT_PUBLIC_UPLOAD_TRANSPORT",
@@ -48,6 +55,15 @@
     "NEXT_PRIVATE_SMTP_SECURE",
     "NEXT_PRIVATE_SMTP_FROM_NAME",
     "NEXT_PRIVATE_SMTP_FROM_ADDRESS",
-    "NEXT_PRIVATE_STRIPE_API_KEY"
+    "NEXT_PRIVATE_STRIPE_API_KEY",
+
+    "VERCEL",
+    "VERCEL_ENV",
+    "VERCEL_URL",
+    "DEPLOYMENT_TARGET",
+    "POSTGRES_URL",
+    "DATABASE_URL",
+    "POSTGRES_PRISMA_URL",
+    "POSTGRES_URL_NON_POOLING"
   ]
 }

From b411db40dac3311958f741f5cbd0a2c2b435c468 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 19 Sep 2023 02:40:58 +0000
Subject: [PATCH 75/83] chore: tidy unused code

---
 apps/marketing/next.config.js | 1 -
 apps/web/next.config.js       | 1 -
 packages/prisma/helper.ts     | 2 +-
 3 files changed, 1 insertion(+), 3 deletions(-)

diff --git a/apps/marketing/next.config.js b/apps/marketing/next.config.js
index ce479838f..97f904cf0 100644
--- a/apps/marketing/next.config.js
+++ b/apps/marketing/next.config.js
@@ -1,7 +1,6 @@
 /* eslint-disable @typescript-eslint/no-var-requires */
 const path = require('path');
 const { withContentlayer } = require('next-contentlayer');
-const { remapVercelEnv } = require('../../scripts/remap-vercel-env.cjs');
 
 const { parsed: env } = require('dotenv').config({
   path: path.join(__dirname, '../../.env.local'),
diff --git a/apps/web/next.config.js b/apps/web/next.config.js
index a2657854a..be51b51fc 100644
--- a/apps/web/next.config.js
+++ b/apps/web/next.config.js
@@ -1,7 +1,6 @@
 /* eslint-disable @typescript-eslint/no-var-requires */
 const path = require('path');
 const { version } = require('./package.json');
-const { remapVercelEnv } = require('../../scripts/remap-vercel-env.cjs');
 
 const { parsed: env } = require('dotenv').config({
   path: path.join(__dirname, '../../.env.local'),
diff --git a/packages/prisma/helper.ts b/packages/prisma/helper.ts
index d436771d1..865e16239 100644
--- a/packages/prisma/helper.ts
+++ b/packages/prisma/helper.ts
@@ -39,7 +39,7 @@ export const getDatabaseUrl = () => {
   if (url.hostname.endsWith('neon.tech')) {
     const [projectId, ...rest] = url.hostname.split('.');
 
-    if (!projectId.endsWith('-bouncer')) {
+    if (!projectId.endsWith('-pooler')) {
       url.hostname = `${projectId}-pooler.${rest.join('.')}`;
     }
 

From 60ef9df721cd5e5ce63bff43a38fed9f5d2d97a8 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 19 Sep 2023 13:34:38 +1000
Subject: [PATCH 76/83] chore: update ci

---
 .github/workflows/ci.yml              | 6 ++++++
 .github/workflows/codeql-analysis.yml | 7 +++++--
 2 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index c15689123..1a5d4bbcf 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -22,12 +22,18 @@ jobs:
         uses: actions/checkout@v3
         with:
           fetch-depth: 2
+
       - name: Install Node.js
         uses: actions/setup-node@v3
         with:
           node-version: 18
           cache: npm
+
       - name: Install dependencies
         run: npm ci
+
+      - name: Copy env
+        run: cp .env.example .env
+
       - name: Build
         run: npm run build
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 92a0936a5..c934272a4 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -32,7 +32,10 @@ jobs:
 
     - name: Install Dependencies
       run: npm ci
-      
+
+    - name: Copy env
+      run: cp .env.example .env
+
     - name: Build Documenso
       run: npm run build
 
@@ -42,4 +45,4 @@ jobs:
         languages: ${{ matrix.language }}
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v2
\ No newline at end of file
+      uses: github/codeql-action/analyze@v2

From 09c7f9dde83730600fb2ad049522450ad6999d1b Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 19 Sep 2023 15:07:43 +1000
Subject: [PATCH 77/83] chore: update devcontainer

---
 .devcontainer/devcontainer.json | 46 +++++++++++++++++++++------------
 1 file changed, 29 insertions(+), 17 deletions(-)

diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
index 59a318b7f..60b385403 100644
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -1,20 +1,32 @@
 {
-	"name": "Documenso",
-	"image": "mcr.microsoft.com/devcontainers/base:bullseye",
-	"features": {
-		"ghcr.io/devcontainers/features/docker-in-docker:2": {
-			"version": "latest",
-			"enableNonRootDocker": "true",
-			"moby": "true"
-		},
-		"ghcr.io/devcontainers/features/node:1": {}
-	},
+  "name": "Documenso",
+  "image": "mcr.microsoft.com/devcontainers/base:bullseye",
+  "features": {
+    "ghcr.io/devcontainers/features/docker-in-docker:2": {
+      "version": "latest",
+      "enableNonRootDocker": "true",
+      "moby": "true"
+    },
+    "ghcr.io/devcontainers/features/node:1": {}
+  },
   "onCreateCommand": "./.devcontainer/on-create.sh",
-	"forwardPorts": [
-    3000,
-    54320,
-    9000,
-    2500,
-    1100
-  ]
+  "forwardPorts": [3000, 54320, 9000, 2500, 1100],
+  "customizations": {
+    "vscode": {
+      "extensions": [
+        "aaron-bond.better-comments",
+        "bradlc.vscode-tailwindcss",
+        "dbaeumer.vscode-eslint",
+        "esbenp.prettier-vscode",
+        "mikestead.dotenv",
+        "unifiedjs.vscode-mdx",
+        "GitHub.copilot-chat",
+        "GitHub.copilot-labs",
+        "GitHub.copilot",
+        "GitHub.vscode-pull-request-github",
+        "Prisma.prisma",
+        "VisualStudioExptTeam.vscodeintellicode",
+      ]
+    }
+  }
 }

From ca325cc90ba83fc3584613bfc6a97d5b4f359a7e Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 19 Sep 2023 13:34:54 +0000
Subject: [PATCH 78/83] fix: add layout and minor updates

---
 .devcontainer/devcontainer.json               | 46 ++++++++++------
 .../(unauthenticated)/check-email/page.tsx    | 36 ++++--------
 .../forgot-password/page.tsx                  | 41 +++++---------
 apps/web/src/app/(unauthenticated)/layout.tsx | 27 +++++++++
 .../reset-password/[token]/page.tsx           | 53 +++++++++---------
 .../(unauthenticated)/reset-password/page.tsx | 36 ++++--------
 .../src/app/(unauthenticated)/signin/page.tsx | 52 +++++++-----------
 .../src/app/(unauthenticated)/signup/page.tsx | 47 +++++-----------
 .../src/components/forms/forgot-password.tsx  | 45 +++++----------
 apps/web/src/components/forms/password.tsx    |  4 +-
 apps/web/src/components/forms/profile.tsx     |  6 +-
 .../src/components/forms/reset-password.tsx   | 19 +++----
 apps/web/src/components/forms/signin.tsx      | 15 ++---
 packages/email/templates/reset-password.tsx   |  2 +-
 .../server-only/auth/send-forgot-password.ts  |  4 +-
 .../server-only/auth/send-reset-password.ts   |  8 +--
 .../lib/server-only/user/forgot-password.ts   | 55 +++++++++----------
 .../user/get-reset-token-validity.ts          | 18 ++++++
 .../lib/server-only/user/reset-password.ts    | 11 +---
 packages/trpc/server/profile-router/router.ts | 11 +---
 20 files changed, 238 insertions(+), 298 deletions(-)
 create mode 100644 apps/web/src/app/(unauthenticated)/layout.tsx
 create mode 100644 packages/lib/server-only/user/get-reset-token-validity.ts

diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json
index 59a318b7f..a2ba921f5 100644
--- a/.devcontainer/devcontainer.json
+++ b/.devcontainer/devcontainer.json
@@ -1,20 +1,32 @@
 {
-	"name": "Documenso",
-	"image": "mcr.microsoft.com/devcontainers/base:bullseye",
-	"features": {
-		"ghcr.io/devcontainers/features/docker-in-docker:2": {
-			"version": "latest",
-			"enableNonRootDocker": "true",
-			"moby": "true"
-		},
-		"ghcr.io/devcontainers/features/node:1": {}
-	},
+  "name": "Documenso",
+  "image": "mcr.microsoft.com/devcontainers/base:bullseye",
+  "features": {
+    "ghcr.io/devcontainers/features/docker-in-docker:2": {
+      "version": "latest",
+      "enableNonRootDocker": "true",
+      "moby": "true"
+    },
+    "ghcr.io/devcontainers/features/node:1": {}
+  },
   "onCreateCommand": "./.devcontainer/on-create.sh",
-	"forwardPorts": [
-    3000,
-    54320,
-    9000,
-    2500,
-    1100
-  ]
+  "forwardPorts": [3000, 54320, 9000, 2500, 1100],
+  "customizations": {
+    "vscode": {
+      "extensions": [
+        "GitHub.vscode-pull-request-github",
+        "GitHub.copilot-labs",
+        "GitHub.copilot-chat",
+        "GitHub.copilot",
+        "aaron-bond.better-comments",
+        "mikestead.dotenv",
+        "VisualStudioExptTeam.vscodeintellicode",
+        "Prisma.prisma",
+        "bradlc.vscode-tailwindcss",
+        "dbaeumer.vscode-eslint",
+        "unifiedjs.vscode-mdx",
+        "esbenp.prettier-vscode"
+      ]
+    }
+  }
 }
diff --git a/apps/web/src/app/(unauthenticated)/check-email/page.tsx b/apps/web/src/app/(unauthenticated)/check-email/page.tsx
index 26039f4ae..fffbc44c1 100644
--- a/apps/web/src/app/(unauthenticated)/check-email/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/check-email/page.tsx
@@ -1,34 +1,20 @@
-import Image from 'next/image';
 import Link from 'next/link';
 
-import backgroundPattern from '~/assets/background-pattern.png';
+import { Button } from '@documenso/ui/primitives/button';
 
 export default function ForgotPasswordPage() {
   return (
-    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex w-1/5 items-center gap-x-24">
-        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
-          <Image
-            src={backgroundPattern}
-            alt="background pattern"
-            className="dark:brightness-95 dark:invert dark:sepia"
-          />
-        </div>
+    <div>
+      <h1 className="text-4xl font-semibold">Email sent!</h1>
 
-        <div className="w-full text-center">
-          <h1 className="text-4xl font-semibold">Reset Pasword</h1>
+      <p className="text-muted-foreground mb-4 mt-2 text-sm">
+        A password reset email has been sent, if you have an account you should see it in your inbox
+        shortly.
+      </p>
 
-          <p className="text-muted-foreground/60 mb-4 mt-2 text-sm">
-            Please check your email for reset instructions
-          </p>
-
-          <p className="text-muted-foreground mt-6 text-center text-sm">
-            <Link href="/signin" className="text-primary duration-200 hover:opacity-70">
-              Sign in
-            </Link>
-          </p>
-        </div>
-      </div>
-    </main>
+      <Button asChild>
+        <Link href="/signin">Return to sign in</Link>
+      </Button>
+    </div>
   );
 }
diff --git a/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
index af1c96e6f..4f0617f7c 100644
--- a/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/forgot-password/page.tsx
@@ -1,38 +1,25 @@
-import Image from 'next/image';
 import Link from 'next/link';
 
-import backgroundPattern from '~/assets/background-pattern.png';
 import { ForgotPasswordForm } from '~/components/forms/forgot-password';
 
 export default function ForgotPasswordPage() {
   return (
-    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex items-center gap-x-24 md:w-[500px]">
-        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
-          <Image
-            src={backgroundPattern}
-            alt="background pattern"
-            className="dark:brightness-95 dark:invert dark:sepia"
-          />
-        </div>
+    <div>
+      <h1 className="text-4xl font-semibold">Forgotten your password?</h1>
 
-        <div className="w-full">
-          <h1 className="text-4xl font-semibold">Forgot Password?</h1>
+      <p className="text-muted-foreground mt-2 text-sm">
+        No worries, it happens! Enter your email and we'll email you a special link to reset your
+        password.
+      </p>
 
-          <p className="text-muted-foreground/60 mt-2 text-sm">
-            No worries, we'll send you reset instructions.
-          </p>
+      <ForgotPasswordForm className="mt-4" />
 
-          <ForgotPasswordForm className="mt-4" />
-
-          <p className="text-muted-foreground mt-6 text-center text-sm">
-            Don't have an account?{' '}
-            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
-              Sign up
-            </Link>
-          </p>
-        </div>
-      </div>
-    </main>
+      <p className="text-muted-foreground mt-6 text-center text-sm">
+        Remembered your password?{' '}
+        <Link href="/signin" className="text-primary duration-200 hover:opacity-70">
+          Sign In
+        </Link>
+      </p>
+    </div>
   );
 }
diff --git a/apps/web/src/app/(unauthenticated)/layout.tsx b/apps/web/src/app/(unauthenticated)/layout.tsx
new file mode 100644
index 000000000..c88b9fb2e
--- /dev/null
+++ b/apps/web/src/app/(unauthenticated)/layout.tsx
@@ -0,0 +1,27 @@
+import React from 'react';
+
+import Image from 'next/image';
+
+import backgroundPattern from '~/assets/background-pattern.png';
+
+type UnauthenticatedLayoutProps = {
+  children: React.ReactNode;
+};
+
+export default function UnauthenticatedLayout({ children }: UnauthenticatedLayoutProps) {
+  return (
+    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
+      <div className="relative flex w-full max-w-md items-center gap-x-24">
+        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
+          <Image
+            src={backgroundPattern}
+            alt="background pattern"
+            className="dark:brightness-95 dark:invert dark:sepia"
+          />
+        </div>
+
+        <div className="w-full">{children}</div>
+      </div>
+    </main>
+  );
+}
diff --git a/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx b/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
index 0e8492030..04afd2c4d 100644
--- a/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/reset-password/[token]/page.tsx
@@ -1,36 +1,37 @@
-import Image from 'next/image';
 import Link from 'next/link';
+import { redirect } from 'next/navigation';
+
+import { getResetTokenValidity } from '@documenso/lib/server-only/user/get-reset-token-validity';
 
-import backgroundPattern from '~/assets/background-pattern.png';
 import { ResetPasswordForm } from '~/components/forms/reset-password';
 
-export default function ResetPasswordPage({ params }: { params: { token: string } }) {
+type ResetPasswordPageProps = {
+  params: {
+    token: string;
+  };
+};
+
+export default async function ResetPasswordPage({ params: { token } }: ResetPasswordPageProps) {
+  const isValid = await getResetTokenValidity({ token });
+
+  if (!isValid) {
+    redirect('/reset-password');
+  }
+
   return (
-    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex items-center gap-x-24 md:w-[500px]">
-        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
-          <Image
-            src={backgroundPattern}
-            alt="background pattern"
-            className="dark:brightness-95 dark:invert dark:sepia"
-          />
-        </div>
+    <div className="w-full">
+      <h1 className="text-4xl font-semibold">Reset Password</h1>
 
-        <div className="w-full">
-          <h1 className="text-4xl font-semibold">Reset Password</h1>
+      <p className="text-muted-foreground mt-2 text-sm">Please choose your new password </p>
 
-          <p className="text-muted-foreground/60 mt-2 text-sm">Please choose your new password </p>
+      <ResetPasswordForm token={token} className="mt-4" />
 
-          <ResetPasswordForm token={params.token} className="mt-4" />
-
-          <p className="text-muted-foreground mt-6 text-center text-sm">
-            Don't have an account?{' '}
-            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
-              Sign up
-            </Link>
-          </p>
-        </div>
-      </div>
-    </main>
+      <p className="text-muted-foreground mt-6 text-center text-sm">
+        Don't have an account?{' '}
+        <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
+          Sign up
+        </Link>
+      </p>
+    </div>
   );
 }
diff --git a/apps/web/src/app/(unauthenticated)/reset-password/page.tsx b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
index 982fe54c4..c4f521363 100644
--- a/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/reset-password/page.tsx
@@ -1,34 +1,20 @@
-import Image from 'next/image';
 import Link from 'next/link';
 
-import backgroundPattern from '~/assets/background-pattern.png';
+import { Button } from '@documenso/ui/primitives/button';
 
 export default function ResetPasswordPage() {
   return (
-    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden  px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex items-center md:w-[500px]">
-        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
-          <Image
-            src={backgroundPattern}
-            alt="background pattern"
-            className="dark:brightness-95 dark:invert dark:sepia"
-          />
-        </div>
+    <div>
+      <h1 className="text-4xl font-semibold">Unable to reset password</h1>
 
-        <div className="w-full text-center">
-          <h1 className="text-4xl font-semibold">Reset Password</h1>
+      <p className="text-muted-foreground mt-2 text-sm">
+        The token you have used to reset your password is either expired or it never existed. If you
+        have still forgotten your password, please request a new reset link.
+      </p>
 
-          <p className="text-muted-foreground/60 mt-2 text-sm">
-            The token you provided is invalid. Please try again.
-          </p>
-
-          <p className="text-muted-foreground mt-6 text-center text-sm">
-            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
-              Sign in
-            </Link>
-          </p>
-        </div>
-      </div>
-    </main>
+      <Button className="mt-4" asChild>
+        <Link href="/signin">Return to sign in</Link>
+      </Button>
+    </div>
   );
 }
diff --git a/apps/web/src/app/(unauthenticated)/signin/page.tsx b/apps/web/src/app/(unauthenticated)/signin/page.tsx
index 800ff9b9a..868b0471d 100644
--- a/apps/web/src/app/(unauthenticated)/signin/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/signin/page.tsx
@@ -1,43 +1,33 @@
-import Image from 'next/image';
 import Link from 'next/link';
 
-import backgroundPattern from '~/assets/background-pattern.png';
-import connections from '~/assets/card-sharing-figure.png';
 import { SignInForm } from '~/components/forms/signin';
 
 export default function SignInPage() {
   return (
-    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex max-w-4xl items-center gap-x-24">
-        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
-          <Image
-            src={backgroundPattern}
-            alt="background pattern"
-            className="dark:brightness-95 dark:invert dark:sepia"
-          />
-        </div>
+    <div>
+      <h1 className="text-4xl font-semibold">Sign in to your account</h1>
 
-        <div className="max-w-md">
-          <h1 className="text-4xl font-semibold">Sign in to your account</h1>
+      <p className="text-muted-foreground/60 mt-2 text-sm">
+        Welcome back, we are lucky to have you.
+      </p>
 
-          <p className="text-muted-foreground/60 mt-2 text-sm">
-            Welcome back, we are lucky to have you.
-          </p>
+      <SignInForm className="mt-4" />
 
-          <SignInForm className="mt-4" />
+      <p className="text-muted-foreground mt-6 text-center text-sm">
+        Don't have an account?{' '}
+        <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
+          Sign up
+        </Link>
+      </p>
 
-          <p className="text-muted-foreground mt-6 text-center text-sm">
-            Don't have an account?{' '}
-            <Link href="/signup" className="text-primary duration-200 hover:opacity-70">
-              Sign up
-            </Link>
-          </p>
-        </div>
-
-        <div className="hidden flex-1 lg:block">
-          <Image src={connections} alt="documenso connections" />
-        </div>
-      </div>
-    </main>
+      <p className="mt-2.5 text-center">
+        <Link
+          href="/forgot-password"
+          className="text-muted-foreground text-sm duration-200 hover:opacity-70"
+        >
+          Forgotten your password?
+        </Link>
+      </p>
+    </div>
   );
 }
diff --git a/apps/web/src/app/(unauthenticated)/signup/page.tsx b/apps/web/src/app/(unauthenticated)/signup/page.tsx
index b398e6990..0d82e5c4f 100644
--- a/apps/web/src/app/(unauthenticated)/signup/page.tsx
+++ b/apps/web/src/app/(unauthenticated)/signup/page.tsx
@@ -1,44 +1,25 @@
-import Image from 'next/image';
 import Link from 'next/link';
 
-import backgroundPattern from '~/assets/background-pattern.png';
-import connections from '~/assets/connections.png';
 import { SignUpForm } from '~/components/forms/signup';
 
 export default function SignUpPage() {
   return (
-    <main className="bg-sand-100 relative flex min-h-screen flex-col items-center justify-center overflow-hidden px-4 py-12 md:p-12 lg:p-24">
-      <div className="relative flex max-w-4xl items-center gap-x-24">
-        <div className="absolute -inset-96 -z-[1] flex items-center justify-center opacity-50">
-          <Image
-            src={backgroundPattern}
-            alt="background pattern"
-            className="dark:brightness-95 dark:invert dark:sepia"
-          />
-        </div>
+    <div>
+      <h1 className="text-4xl font-semibold">Create a new account</h1>
 
-        <div className="max-w-md">
-          <h1 className="text-4xl font-semibold">Create a shiny, new Documenso Account ✨</h1>
+      <p className="text-muted-foreground/60 mt-2 text-sm">
+        Create your account and start using state-of-the-art document signing. Open and beautiful
+        signing is within your grasp.
+      </p>
 
-          <p className="text-muted-foreground/60 mt-2 text-sm">
-            Create your account and start using state-of-the-art document signing. Open and
-            beautiful signing is within your grasp.
-          </p>
+      <SignUpForm className="mt-4" />
 
-          <SignUpForm className="mt-4" />
-
-          <p className="text-muted-foreground mt-6 text-center text-sm">
-            Already have an account?{' '}
-            <Link href="/signin" className="text-primary duration-200 hover:opacity-70">
-              Sign in instead
-            </Link>
-          </p>
-        </div>
-
-        <div className="hidden flex-1 lg:block">
-          <Image src={connections} alt="documenso connections" />
-        </div>
-      </div>
-    </main>
+      <p className="text-muted-foreground mt-6 text-center text-sm">
+        Already have an account?{' '}
+        <Link href="/signin" className="text-primary duration-200 hover:opacity-70">
+          Sign in instead
+        </Link>
+      </p>
+    </div>
   );
 }
diff --git a/apps/web/src/components/forms/forgot-password.tsx b/apps/web/src/components/forms/forgot-password.tsx
index 1dcd0f2b1..449d346e4 100644
--- a/apps/web/src/components/forms/forgot-password.tsx
+++ b/apps/web/src/components/forms/forgot-password.tsx
@@ -3,14 +3,13 @@
 import { useRouter } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
-import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
-import { TRPCClientError } from '@documenso/trpc/client';
 import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
+import { FormErrorMessage } from '@documenso/ui/primitives/form/form-error-message';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
 import { useToast } from '@documenso/ui/primitives/use-toast';
@@ -44,33 +43,18 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
   const { mutateAsync: forgotPassword } = trpc.profile.forgotPassword.useMutation();
 
   const onFormSubmit = async ({ email }: TForgotPasswordFormSchema) => {
-    try {
-      await forgotPassword({ email });
+    await forgotPassword({ email }).catch(() => null);
 
-      toast({
-        title: 'Reset email sent',
-        description: 'Your password reset mail has been sent successfully.',
-        duration: 5000,
-      });
+    toast({
+      title: 'Reset email sent',
+      description:
+        'A password reset email has been sent, if you have an account you should see it in your inbox shortly.',
+      duration: 5000,
+    });
 
-      reset();
-      router.push('/check-email');
-    } catch (err) {
-      if (err instanceof TRPCClientError && err.data?.code === 'BAD_REQUEST') {
-        toast({
-          title: 'An error occurred',
-          description: err.message,
-          variant: 'destructive',
-        });
-      } else {
-        toast({
-          title: 'An unknown error occurred',
-          variant: 'destructive',
-          description:
-            'We encountered an unknown error while attempting to send your email. Please try again later.',
-        });
-      }
-    }
+    reset();
+
+    router.push('/check-email');
   };
 
   return (
@@ -79,17 +63,16 @@ export const ForgotPasswordForm = ({ className }: ForgotPasswordFormProps) => {
       onSubmit={handleSubmit(onFormSubmit)}
     >
       <div>
-        <Label htmlFor="email" className="text-slate-500">
+        <Label htmlFor="email" className="text-muted-foreground">
           Email
         </Label>
 
         <Input id="email" type="email" className="bg-background mt-2" {...register('email')} />
 
-        {errors.email && <span className="mt-1 text-xs text-red-500">{errors.email.message}</span>}
+        <FormErrorMessage className="mt-1.5" error={errors.email} />
       </div>
 
-      <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
-        {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
+      <Button size="lg" loading={isSubmitting}>
         Reset Password
       </Button>
     </form>
diff --git a/apps/web/src/components/forms/password.tsx b/apps/web/src/components/forms/password.tsx
index 508579b78..dfbe77b4c 100644
--- a/apps/web/src/components/forms/password.tsx
+++ b/apps/web/src/components/forms/password.tsx
@@ -88,7 +88,7 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
       onSubmit={handleSubmit(onFormSubmit)}
     >
       <div>
-        <Label htmlFor="password" className="text-slate-500">
+        <Label htmlFor="password" className="text-muted-foreground">
           Password
         </Label>
 
@@ -106,7 +106,7 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
       </div>
 
       <div>
-        <Label htmlFor="repeated-password" className="text-slate-500">
+        <Label htmlFor="repeated-password" className="text-muted-foreground">
           Repeat Password
         </Label>
 
diff --git a/apps/web/src/components/forms/profile.tsx b/apps/web/src/components/forms/profile.tsx
index 8255742c9..0082147b4 100644
--- a/apps/web/src/components/forms/profile.tsx
+++ b/apps/web/src/components/forms/profile.tsx
@@ -89,7 +89,7 @@ export const ProfileForm = ({ className, user }: ProfileFormProps) => {
       onSubmit={handleSubmit(onFormSubmit)}
     >
       <div>
-        <Label htmlFor="full-name" className="text-slate-500">
+        <Label htmlFor="full-name" className="text-muted-foreground">
           Full Name
         </Label>
 
@@ -99,7 +99,7 @@ export const ProfileForm = ({ className, user }: ProfileFormProps) => {
       </div>
 
       <div>
-        <Label htmlFor="email" className="text-slate-500">
+        <Label htmlFor="email" className="text-muted-foreground">
           Email
         </Label>
 
@@ -107,7 +107,7 @@ export const ProfileForm = ({ className, user }: ProfileFormProps) => {
       </div>
 
       <div>
-        <Label htmlFor="signature" className="text-slate-500">
+        <Label htmlFor="signature" className="text-muted-foreground">
           Signature
         </Label>
 
diff --git a/apps/web/src/components/forms/reset-password.tsx b/apps/web/src/components/forms/reset-password.tsx
index af6944ef4..7b1ebc47f 100644
--- a/apps/web/src/components/forms/reset-password.tsx
+++ b/apps/web/src/components/forms/reset-password.tsx
@@ -3,7 +3,6 @@
 import { useRouter } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
-import { Loader } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
@@ -11,6 +10,7 @@ import { TRPCClientError } from '@documenso/trpc/client';
 import { trpc } from '@documenso/trpc/react';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
+import { FormErrorMessage } from '@documenso/ui/primitives/form/form-error-message';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
 import { useToast } from '@documenso/ui/primitives/use-toast';
@@ -22,7 +22,7 @@ export const ZResetPasswordFormSchema = z
   })
   .refine((data) => data.password === data.repeatedPassword, {
     path: ['repeatedPassword'],
-    message: "Password don't match",
+    message: "Passwords don't match",
   });
 
 export type TResetPasswordFormSchema = z.infer<typeof ZResetPasswordFormSchema>;
@@ -92,7 +92,7 @@ export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps)
       onSubmit={handleSubmit(onFormSubmit)}
     >
       <div>
-        <Label htmlFor="password" className="flex justify-between text-slate-500">
+        <Label htmlFor="password" className="text-muted-foreground">
           <span>Password</span>
         </Label>
 
@@ -106,13 +106,11 @@ export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps)
           {...register('password')}
         />
 
-        {errors.password && (
-          <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
-        )}
+        <FormErrorMessage className="mt-1.5" error={errors.password} />
       </div>
 
       <div>
-        <Label htmlFor="repeatedPassword" className="flex justify-between text-slate-500">
+        <Label htmlFor="repeatedPassword" className="text-muted-foreground">
           <span>Repeat Password</span>
         </Label>
 
@@ -126,13 +124,10 @@ export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps)
           {...register('repeatedPassword')}
         />
 
-        {errors.repeatedPassword && (
-          <span className="mt-1 text-xs text-red-500">{errors.repeatedPassword.message}</span>
-        )}
+        <FormErrorMessage className="mt-1.5" error={errors.repeatedPassword} />
       </div>
 
-      <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
-        {isSubmitting && <Loader className="mr-2 h-5 w-5 animate-spin" />}
+      <Button size="lg" loading={isSubmitting}>
         Reset Password
       </Button>
     </form>
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index a06c04c72..96569eb70 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -2,7 +2,6 @@
 
 import { useEffect } from 'react';
 
-import Link from 'next/link';
 import { useSearchParams } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
@@ -15,6 +14,7 @@ import { z } from 'zod';
 import { ErrorCode, isErrorCode } from '@documenso/lib/next-auth/error-codes';
 import { cn } from '@documenso/ui/lib/utils';
 import { Button } from '@documenso/ui/primitives/button';
+import { FormErrorMessage } from '@documenso/ui/primitives/form/form-error-message';
 import { Input } from '@documenso/ui/primitives/input';
 import { Label } from '@documenso/ui/primitives/label';
 import { useToast } from '@documenso/ui/primitives/use-toast';
@@ -114,21 +114,18 @@ export const SignInForm = ({ className }: SignInFormProps) => {
       onSubmit={handleSubmit(onFormSubmit)}
     >
       <div>
-        <Label htmlFor="email" className="text-slate-500">
+        <Label htmlFor="email" className="text-muted-forground">
           Email
         </Label>
 
         <Input id="email" type="email" className="bg-background mt-2" {...register('email')} />
 
-        {errors.email && <span className="mt-1 text-xs text-red-500">{errors.email.message}</span>}
+        <FormErrorMessage className="mt-1.5" error={errors.email} />
       </div>
 
       <div>
-        <Label htmlFor="password" className="flex justify-between text-slate-500">
+        <Label htmlFor="password" className="text-muted-forground">
           <span>Password</span>
-          <Link className="text-xs text-slate-500" href="/forgot-password">
-            Forgot?
-          </Link>
         </Label>
 
         <Input
@@ -141,9 +138,7 @@ export const SignInForm = ({ className }: SignInFormProps) => {
           {...register('password')}
         />
 
-        {errors.password && (
-          <span className="mt-1 text-xs text-red-500">{errors.password.message}</span>
-        )}
+        <FormErrorMessage className="mt-1.5" error={errors.password} />
       </div>
 
       <Button size="lg" disabled={isSubmitting} className="dark:bg-documenso dark:hover:opacity-90">
diff --git a/packages/email/templates/reset-password.tsx b/packages/email/templates/reset-password.tsx
index 0168b82e8..ce06acbd1 100644
--- a/packages/email/templates/reset-password.tsx
+++ b/packages/email/templates/reset-password.tsx
@@ -68,7 +68,7 @@ export const ResetPasswordTemplate = ({
               <Section>
                 <Text className="my-4 text-base font-semibold">
                   Hi, {userName}{' '}
-                  <Link className="font-normal text-slate-400" href="mailto:{userEmail}">
+                  <Link className="font-normal text-slate-400" href={`mailto:${userEmail}`}>
                     ({userEmail})
                   </Link>
                 </Text>
diff --git a/packages/lib/server-only/auth/send-forgot-password.ts b/packages/lib/server-only/auth/send-forgot-password.ts
index e0f74d4ff..e62d5e176 100644
--- a/packages/lib/server-only/auth/send-forgot-password.ts
+++ b/packages/lib/server-only/auth/send-forgot-password.ts
@@ -29,8 +29,8 @@ export const sendForgotPassword = async ({ userId }: SendForgotPasswordOptions)
   }
 
   const token = user.PasswordResetToken[0].token;
-  const assetBaseUrl = process.env.NEXT_PUBLIC_SITE_URL || 'http://localhost:3000';
-  const resetPasswordLink = `${process.env.NEXT_PUBLIC_SITE_URL}/reset-password/${token}`;
+  const assetBaseUrl = process.env.NEXT_PUBLIC_WEBAPP_URL || 'http://localhost:3000';
+  const resetPasswordLink = `${process.env.NEXT_PUBLIC_WEBAPP_URL}/reset-password/${token}`;
 
   const template = createElement(ForgotPasswordTemplate, {
     assetBaseUrl,
diff --git a/packages/lib/server-only/auth/send-reset-password.ts b/packages/lib/server-only/auth/send-reset-password.ts
index 95e49914d..303ceb821 100644
--- a/packages/lib/server-only/auth/send-reset-password.ts
+++ b/packages/lib/server-only/auth/send-reset-password.ts
@@ -10,19 +10,15 @@ export interface SendResetPasswordOptions {
 }
 
 export const sendResetPassword = async ({ userId }: SendResetPasswordOptions) => {
-  // TODO: Better Error Handling
-
   const user = await prisma.user.findFirstOrThrow({
     where: {
       id: userId,
     },
   });
 
-  if (!user) {
-    throw new Error('User not found');
-  }
+  const assetBaseUrl = process.env.NEXT_PUBLIC_WEBAPP_URL || 'http://localhost:3000';
 
-  const assetBaseUrl = process.env.NEXT_PUBLIC_SITE_URL || 'http://localhost:3000';
+  console.log({ assetBaseUrl });
 
   const template = createElement(ResetPasswordTemplate, {
     assetBaseUrl,
diff --git a/packages/lib/server-only/user/forgot-password.ts b/packages/lib/server-only/user/forgot-password.ts
index fcf6b7766..da194f0f7 100644
--- a/packages/lib/server-only/user/forgot-password.ts
+++ b/packages/lib/server-only/user/forgot-password.ts
@@ -3,54 +3,51 @@ import crypto from 'crypto';
 import { prisma } from '@documenso/prisma';
 import { TForgotPasswordFormSchema } from '@documenso/trpc/server/profile-router/schema';
 
+import { ONE_DAY, ONE_HOUR } from '../../constants/time';
 import { sendForgotPassword } from '../auth/send-forgot-password';
 
 export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
-  let user;
-  try {
-    user = await prisma.user.findFirstOrThrow({
-      where: {
-        email: email.toLowerCase(),
+  const user = await prisma.user.findFirst({
+    where: {
+      email: {
+        equals: email,
+        mode: 'insensitive',
       },
-    });
-  } catch (error) {
-    throw new Error('No account found with that email address.');
-  }
+    },
+  });
 
   if (!user) {
-    throw new Error('No account found with that email address.');
+    return;
   }
 
+  // Find a token that was created in the last day and hasn't expired
   const existingToken = await prisma.passwordResetToken.findFirst({
     where: {
       userId: user.id,
+      expiry: {
+        lt: new Date(),
+      },
       createdAt: {
-        gte: new Date(Date.now() - 1000 * 60 * 60),
+        gt: new Date(Date.now() - ONE_HOUR),
       },
     },
   });
 
   if (existingToken) {
-    throw new Error('A password reset email has been sent.');
+    return;
   }
 
-  const token = crypto.randomBytes(64).toString('hex');
-  const expiry = new Date();
-  expiry.setHours(expiry.getHours() + 24); // Set expiry to one hour from now
+  const token = crypto.randomBytes(18).toString('hex');
 
-  try {
-    await prisma.passwordResetToken.create({
-      data: {
-        token,
-        expiry,
-        userId: user.id,
-      },
-    });
-  } catch (error) {
-    throw new Error('We were unable to send your email. Please try again.');
-  }
-
-  return await sendForgotPassword({
-    userId: user.id,
+  await prisma.passwordResetToken.create({
+    data: {
+      token,
+      expiry: new Date(Date.now() + ONE_DAY),
+      userId: user.id,
+    },
   });
+
+  await sendForgotPassword({
+    userId: user.id,
+  }).catch((err) => console.error(err));
 };
diff --git a/packages/lib/server-only/user/get-reset-token-validity.ts b/packages/lib/server-only/user/get-reset-token-validity.ts
new file mode 100644
index 000000000..87f623eb6
--- /dev/null
+++ b/packages/lib/server-only/user/get-reset-token-validity.ts
@@ -0,0 +1,18 @@
+import { prisma } from '@documenso/prisma';
+
+type GetResetTokenValidityOptions = {
+  token: string;
+};
+
+export const getResetTokenValidity = async ({ token }: GetResetTokenValidityOptions) => {
+  const found = await prisma.passwordResetToken.findFirst({
+    select: {
+      id: true,
+    },
+    where: {
+      token,
+    },
+  });
+
+  return !!found;
+};
diff --git a/packages/lib/server-only/user/reset-password.ts b/packages/lib/server-only/user/reset-password.ts
index f539115e9..2233894d8 100644
--- a/packages/lib/server-only/user/reset-password.ts
+++ b/packages/lib/server-only/user/reset-password.ts
@@ -15,7 +15,7 @@ export const resetPassword = async ({ token, password }: ResetPasswordOptions) =
     throw new Error('Invalid token provided. Please try again.');
   }
 
-  const foundToken = await prisma.passwordResetToken.findFirstOrThrow({
+  const foundToken = await prisma.passwordResetToken.findFirst({
     where: {
       token,
     },
@@ -34,7 +34,7 @@ export const resetPassword = async ({ token, password }: ResetPasswordOptions) =
     throw new Error('Token has expired. Please try again.');
   }
 
-  const isSamePassword = await compare(password, foundToken.User.password!);
+  const isSamePassword = await compare(password, foundToken.User.password || '');
 
   if (isSamePassword) {
     throw new Error('Your new password cannot be the same as your old password.');
@@ -42,7 +42,7 @@ export const resetPassword = async ({ token, password }: ResetPasswordOptions) =
 
   const hashedPassword = await hash(password, SALT_ROUNDS);
 
-  const transactions = await prisma.$transaction([
+  await prisma.$transaction([
     prisma.user.update({
       where: {
         id: foundToken.userId,
@@ -58,10 +58,5 @@ export const resetPassword = async ({ token, password }: ResetPasswordOptions) =
     }),
   ]);
 
-  if (!transactions) {
-    throw new Error('We were unable to reset your password. Please try again.');
-  }
-
   await sendResetPassword({ userId: foundToken.userId });
-  return transactions;
 };
diff --git a/packages/trpc/server/profile-router/router.ts b/packages/trpc/server/profile-router/router.ts
index 74920c0e6..bbeff675b 100644
--- a/packages/trpc/server/profile-router/router.ts
+++ b/packages/trpc/server/profile-router/router.ts
@@ -69,16 +69,7 @@ export const profileRouter = router({
         email,
       });
     } catch (err) {
-      let message = 'We were unable to send your email. Please try again.';
-
-      if (err instanceof Error) {
-        message = err.message;
-      }
-
-      throw new TRPCError({
-        code: 'BAD_REQUEST',
-        message,
-      });
+      console.error(err);
     }
   }),
 

From def8f45f8b7ab1dc2b3738a813bf77a58a31c059 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 19 Sep 2023 13:49:01 +0000
Subject: [PATCH 79/83] fix: update email template

---
 .../template-components/template-footer.tsx   | 20 ++++++++++++-------
 packages/email/templates/forgot-password.tsx  |  2 +-
 packages/email/templates/reset-password.tsx   |  2 +-
 3 files changed, 15 insertions(+), 9 deletions(-)

diff --git a/packages/email/template-components/template-footer.tsx b/packages/email/template-components/template-footer.tsx
index ee395a1e9..7f93f0063 100644
--- a/packages/email/template-components/template-footer.tsx
+++ b/packages/email/template-components/template-footer.tsx
@@ -1,14 +1,20 @@
 import { Link, Section, Text } from '@react-email/components';
 
-export const TemplateFooter = () => {
+export type TemplateFooterProps = {
+  isDocument?: boolean;
+};
+
+export const TemplateFooter = ({ isDocument = true }: TemplateFooterProps) => {
   return (
     <Section>
-      <Text className="my-4 text-base text-slate-400">
-        This document was sent using{' '}
-        <Link className="text-[#7AC455]" href="https://documenso.com">
-          Documenso.
-        </Link>
-      </Text>
+      {isDocument && (
+        <Text className="my-4 text-base text-slate-400">
+          This document was sent using{' '}
+          <Link className="text-[#7AC455]" href="https://documenso.com">
+            Documenso.
+          </Link>
+        </Text>
+      )}
 
       <Text className="my-8 text-sm text-slate-400">
         Documenso
diff --git a/packages/email/templates/forgot-password.tsx b/packages/email/templates/forgot-password.tsx
index 5f1db1afc..ab3db58f5 100644
--- a/packages/email/templates/forgot-password.tsx
+++ b/packages/email/templates/forgot-password.tsx
@@ -62,7 +62,7 @@ export const ForgotPasswordTemplate = ({
             <div className="mx-auto mt-12 max-w-xl" />
 
             <Container className="mx-auto max-w-xl">
-              <TemplateFooter />
+              <TemplateFooter isDocument={false} />
             </Container>
           </Section>
         </Body>
diff --git a/packages/email/templates/reset-password.tsx b/packages/email/templates/reset-password.tsx
index ce06acbd1..35881fe72 100644
--- a/packages/email/templates/reset-password.tsx
+++ b/packages/email/templates/reset-password.tsx
@@ -90,7 +90,7 @@ export const ResetPasswordTemplate = ({
             <Hr className="mx-auto mt-12 max-w-xl" />
 
             <Container className="mx-auto max-w-xl">
-              <TemplateFooter />
+              <TemplateFooter isDocument={false} />
             </Container>
           </Section>
         </Body>

From cef8cad14cc9e30a4ec4eb07d66bc01178b033b6 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 19 Sep 2023 13:57:11 +0000
Subject: [PATCH 80/83] fix: update reset token query

---
 packages/lib/server-only/user/forgot-password.ts | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/packages/lib/server-only/user/forgot-password.ts b/packages/lib/server-only/user/forgot-password.ts
index da194f0f7..14ae48453 100644
--- a/packages/lib/server-only/user/forgot-password.ts
+++ b/packages/lib/server-only/user/forgot-password.ts
@@ -20,12 +20,12 @@ export const forgotPassword = async ({ email }: TForgotPasswordFormSchema) => {
     return;
   }
 
-  // Find a token that was created in the last day and hasn't expired
+  // Find a token that was created in the last hour and hasn't expired
   const existingToken = await prisma.passwordResetToken.findFirst({
     where: {
       userId: user.id,
       expiry: {
-        lt: new Date(),
+        gt: new Date(),
       },
       createdAt: {
         gt: new Date(Date.now() - ONE_HOUR),

From 70cb65d266eea8e3cf6a46124f668cf5f7a15f77 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Tue, 19 Sep 2023 13:59:19 +0000
Subject: [PATCH 81/83] fix: update token validity check

---
 packages/lib/server-only/user/get-reset-token-validity.ts | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/packages/lib/server-only/user/get-reset-token-validity.ts b/packages/lib/server-only/user/get-reset-token-validity.ts
index 87f623eb6..8abd9e37a 100644
--- a/packages/lib/server-only/user/get-reset-token-validity.ts
+++ b/packages/lib/server-only/user/get-reset-token-validity.ts
@@ -8,11 +8,12 @@ export const getResetTokenValidity = async ({ token }: GetResetTokenValidityOpti
   const found = await prisma.passwordResetToken.findFirst({
     select: {
       id: true,
+      expiry: true,
     },
     where: {
       token,
     },
   });
 
-  return !!found;
+  return !!found && found.expiry > new Date();
 };

From ecc8e59c8c045b37e829393e2e66a12243958d86 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Wed, 20 Sep 2023 02:18:35 +0000
Subject: [PATCH 82/83] fix: update colors

---
 .../web/src/app/(dashboard)/documents/upload-document.tsx | 2 +-
 apps/web/src/app/(dashboard)/settings/billing/page.tsx    | 4 ++--
 apps/web/src/app/(dashboard)/settings/password/page.tsx   | 2 +-
 apps/web/src/app/(dashboard)/settings/profile/page.tsx    | 2 +-
 .../(dashboard)/period-selector/period-selector.tsx       | 2 +-
 apps/web/src/components/forms/password.tsx                | 8 ++++----
 apps/web/src/components/forms/signin.tsx                  | 6 +++---
 apps/web/src/components/forms/signup.tsx                  | 4 ++--
 8 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/apps/web/src/app/(dashboard)/documents/upload-document.tsx b/apps/web/src/app/(dashboard)/documents/upload-document.tsx
index b472c606b..12df84475 100644
--- a/apps/web/src/app/(dashboard)/documents/upload-document.tsx
+++ b/apps/web/src/app/(dashboard)/documents/upload-document.tsx
@@ -68,7 +68,7 @@ export const UploadDocument = ({ className }: UploadDocumentProps) => {
 
       {isLoading && (
         <div className="absolute inset-0 flex items-center justify-center bg-white/50">
-          <Loader className="h-12 w-12 animate-spin text-slate-500" />
+          <Loader className="text-muted-foreground h-12 w-12 animate-spin" />
         </div>
       )}
     </div>
diff --git a/apps/web/src/app/(dashboard)/settings/billing/page.tsx b/apps/web/src/app/(dashboard)/settings/billing/page.tsx
index bd2659e62..7e6694491 100644
--- a/apps/web/src/app/(dashboard)/settings/billing/page.tsx
+++ b/apps/web/src/app/(dashboard)/settings/billing/page.tsx
@@ -43,7 +43,7 @@ export default async function BillingSettingsPage() {
     <div>
       <h3 className="text-lg font-medium">Billing</h3>
 
-      <p className="mt-2 text-sm text-slate-500">
+      <p className="text-muted-foreground mt-2 text-sm">
         Your subscription is{' '}
         {subscription.status !== SubscriptionStatus.INACTIVE ? 'active' : 'inactive'}.
         {subscription?.periodEnd && (
@@ -67,7 +67,7 @@ export default async function BillingSettingsPage() {
       )}
 
       {!billingPortalUrl && (
-        <p className="max-w-[60ch] text-base text-slate-500">
+        <p className="text-muted-foreground max-w-[60ch] text-base">
           You do not currently have a customer record, this should not happen. Please contact
           support for assistance.
         </p>
diff --git a/apps/web/src/app/(dashboard)/settings/password/page.tsx b/apps/web/src/app/(dashboard)/settings/password/page.tsx
index 305cc3d0c..b89e74f3c 100644
--- a/apps/web/src/app/(dashboard)/settings/password/page.tsx
+++ b/apps/web/src/app/(dashboard)/settings/password/page.tsx
@@ -9,7 +9,7 @@ export default async function PasswordSettingsPage() {
     <div>
       <h3 className="text-lg font-medium">Password</h3>
 
-      <p className="mt-2 text-sm text-slate-500">Here you can update your password.</p>
+      <p className="text-muted-foreground mt-2 text-sm">Here you can update your password.</p>
 
       <hr className="my-4" />
 
diff --git a/apps/web/src/app/(dashboard)/settings/profile/page.tsx b/apps/web/src/app/(dashboard)/settings/profile/page.tsx
index ba461e871..ee0087a9a 100644
--- a/apps/web/src/app/(dashboard)/settings/profile/page.tsx
+++ b/apps/web/src/app/(dashboard)/settings/profile/page.tsx
@@ -9,7 +9,7 @@ export default async function ProfileSettingsPage() {
     <div>
       <h3 className="text-lg font-medium">Profile</h3>
 
-      <p className="mt-2 text-sm text-slate-500">Here you can edit your personal details.</p>
+      <p className="text-muted-foreground mt-2 text-sm">Here you can edit your personal details.</p>
 
       <hr className="my-4" />
 
diff --git a/apps/web/src/components/(dashboard)/period-selector/period-selector.tsx b/apps/web/src/components/(dashboard)/period-selector/period-selector.tsx
index afabefc3f..caeb780d0 100644
--- a/apps/web/src/components/(dashboard)/period-selector/period-selector.tsx
+++ b/apps/web/src/components/(dashboard)/period-selector/period-selector.tsx
@@ -44,7 +44,7 @@ export const PeriodSelector = () => {
 
   return (
     <Select defaultValue={period} onValueChange={onPeriodChange}>
-      <SelectTrigger className="max-w-[200px] text-slate-500">
+      <SelectTrigger className="text-muted-foreground max-w-[200px]">
         <SelectValue />
       </SelectTrigger>
 
diff --git a/apps/web/src/components/forms/password.tsx b/apps/web/src/components/forms/password.tsx
index c190803cd..0884baad1 100644
--- a/apps/web/src/components/forms/password.tsx
+++ b/apps/web/src/components/forms/password.tsx
@@ -115,9 +115,9 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
             onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
-              <EyeOff className="h-5 w-5 text-slate-500" />
+              <EyeOff className="text-muted-foreground h-5 w-5" />
             ) : (
-              <Eye className="h-5 w-5 text-slate-500" />
+              <Eye className="text-muted-foreground h-5 w-5" />
             )}
           </Button>
         </div>
@@ -149,9 +149,9 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
             onClick={() => setShowConfirmPassword((showConfirmPassword) => !showConfirmPassword)}
           >
             {showConfirmPassword ? (
-              <EyeOff className="h-5 w-5 text-slate-500" />
+              <EyeOff className="text-muted-foreground h-5 w-5" />
             ) : (
-              <Eye className="h-5 w-5 text-slate-500" />
+              <Eye className="text-muted-foreground h-5 w-5" />
             )}
           </Button>
         </div>
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 4542a5124..63e4bb88d 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -1,6 +1,6 @@
 'use client';
 
-import { useEffect } from 'react';
+import { useEffect, useState } from 'react';
 
 import { useSearchParams } from 'next/navigation';
 
@@ -148,9 +148,9 @@ export const SignInForm = ({ className }: SignInFormProps) => {
             onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
-              <EyeOff className="h-5 w-5 text-slate-500" />
+              <EyeOff className="text-muted-foreground h-5 w-5" />
             ) : (
-              <Eye className="h-5 w-5 text-slate-500" />
+              <Eye className="text-muted-foreground h-5 w-5" />
             )}
           </Button>
         </div>
diff --git a/apps/web/src/components/forms/signup.tsx b/apps/web/src/components/forms/signup.tsx
index ae8bfbc46..890f8d7dd 100644
--- a/apps/web/src/components/forms/signup.tsx
+++ b/apps/web/src/components/forms/signup.tsx
@@ -128,9 +128,9 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
             onClick={() => setShowPassword((showPassword) => !showPassword)}
           >
             {showPassword ? (
-              <EyeOff className="h-5 w-5 text-slate-500" />
+              <EyeOff className="text-muted-foreground h-5 w-5" />
             ) : (
-              <Eye className="h-5 w-5 text-slate-500" />
+              <Eye className="text-muted-foreground h-5 w-5" />
             )}
           </Button>
         </div>

From 71c7a6ee8ca0680f4a8f8d80b15548b940e43d27 Mon Sep 17 00:00:00 2001
From: Mythie <me@lucasjamessmith.me>
Date: Wed, 20 Sep 2023 02:32:06 +0000
Subject: [PATCH 83/83] chore: add visibility toggle to reset password

---
 apps/web/src/components/forms/password.tsx    |  5 +-
 .../src/components/forms/reset-password.tsx   | 74 ++++++++++++++-----
 apps/web/src/components/forms/signin.tsx      |  2 +-
 apps/web/src/components/forms/signup.tsx      |  2 +-
 4 files changed, 61 insertions(+), 22 deletions(-)

diff --git a/apps/web/src/components/forms/password.tsx b/apps/web/src/components/forms/password.tsx
index 0884baad1..8b6a58a06 100644
--- a/apps/web/src/components/forms/password.tsx
+++ b/apps/web/src/components/forms/password.tsx
@@ -37,6 +37,7 @@ export type PasswordFormProps = {
 
 export const PasswordForm = ({ className }: PasswordFormProps) => {
   const { toast } = useToast();
+
   const [showPassword, setShowPassword] = useState(false);
   const [showConfirmPassword, setShowConfirmPassword] = useState(false);
 
@@ -112,7 +113,7 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
             type="button"
             className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showPassword ? 'Mask password' : 'Reveal password'}
-            onClick={() => setShowPassword((showPassword) => !showPassword)}
+            onClick={() => setShowPassword((show) => !show)}
           >
             {showPassword ? (
               <EyeOff className="text-muted-foreground h-5 w-5" />
@@ -146,7 +147,7 @@ export const PasswordForm = ({ className }: PasswordFormProps) => {
             type="button"
             className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showConfirmPassword ? 'Mask password' : 'Reveal password'}
-            onClick={() => setShowConfirmPassword((showConfirmPassword) => !showConfirmPassword)}
+            onClick={() => setShowConfirmPassword((show) => !show)}
           >
             {showConfirmPassword ? (
               <EyeOff className="text-muted-foreground h-5 w-5" />
diff --git a/apps/web/src/components/forms/reset-password.tsx b/apps/web/src/components/forms/reset-password.tsx
index 7b1ebc47f..f97f703b2 100644
--- a/apps/web/src/components/forms/reset-password.tsx
+++ b/apps/web/src/components/forms/reset-password.tsx
@@ -1,8 +1,11 @@
 'use client';
 
+import { useState } from 'react';
+
 import { useRouter } from 'next/navigation';
 
 import { zodResolver } from '@hookform/resolvers/zod';
+import { Eye, EyeOff } from 'lucide-react';
 import { useForm } from 'react-hook-form';
 import { z } from 'zod';
 
@@ -37,6 +40,9 @@ export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps)
 
   const { toast } = useToast();
 
+  const [showPassword, setShowPassword] = useState(false);
+  const [showConfirmPassword, setShowConfirmPassword] = useState(false);
+
   const {
     register,
     reset,
@@ -96,15 +102,31 @@ export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps)
           <span>Password</span>
         </Label>
 
-        <Input
-          id="password"
-          type="password"
-          minLength={6}
-          maxLength={72}
-          autoComplete="current-password"
-          className="bg-background mt-2"
-          {...register('password')}
-        />
+        <div className="relative">
+          <Input
+            id="password"
+            type={showPassword ? 'text' : 'password'}
+            minLength={6}
+            maxLength={72}
+            autoComplete="new-password"
+            className="bg-background mt-2 pr-10"
+            {...register('password')}
+          />
+
+          <Button
+            variant="link"
+            type="button"
+            className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
+            aria-label={showPassword ? 'Mask password' : 'Reveal password'}
+            onClick={() => setShowPassword((show) => !show)}
+          >
+            {showPassword ? (
+              <EyeOff className="text-muted-foreground h-5 w-5" />
+            ) : (
+              <Eye className="text-muted-foreground h-5 w-5" />
+            )}
+          </Button>
+        </div>
 
         <FormErrorMessage className="mt-1.5" error={errors.password} />
       </div>
@@ -114,15 +136,31 @@ export const ResetPasswordForm = ({ className, token }: ResetPasswordFormProps)
           <span>Repeat Password</span>
         </Label>
 
-        <Input
-          id="repeatedPassword"
-          type="password"
-          minLength={6}
-          maxLength={72}
-          autoComplete="current-password"
-          className="bg-background mt-2"
-          {...register('repeatedPassword')}
-        />
+        <div className="relative">
+          <Input
+            id="repeated-password"
+            type={showConfirmPassword ? 'text' : 'password'}
+            minLength={6}
+            maxLength={72}
+            autoComplete="new-password"
+            className="bg-background mt-2 pr-10"
+            {...register('repeatedPassword')}
+          />
+
+          <Button
+            variant="link"
+            type="button"
+            className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
+            aria-label={showConfirmPassword ? 'Mask password' : 'Reveal password'}
+            onClick={() => setShowConfirmPassword((show) => !show)}
+          >
+            {showConfirmPassword ? (
+              <EyeOff className="text-muted-foreground h-5 w-5" />
+            ) : (
+              <Eye className="text-muted-foreground h-5 w-5" />
+            )}
+          </Button>
+        </div>
 
         <FormErrorMessage className="mt-1.5" error={errors.repeatedPassword} />
       </div>
diff --git a/apps/web/src/components/forms/signin.tsx b/apps/web/src/components/forms/signin.tsx
index 63e4bb88d..2a209ddbe 100644
--- a/apps/web/src/components/forms/signin.tsx
+++ b/apps/web/src/components/forms/signin.tsx
@@ -145,7 +145,7 @@ export const SignInForm = ({ className }: SignInFormProps) => {
             type="button"
             className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showPassword ? 'Mask password' : 'Reveal password'}
-            onClick={() => setShowPassword((showPassword) => !showPassword)}
+            onClick={() => setShowPassword((show) => !show)}
           >
             {showPassword ? (
               <EyeOff className="text-muted-foreground h-5 w-5" />
diff --git a/apps/web/src/components/forms/signup.tsx b/apps/web/src/components/forms/signup.tsx
index 890f8d7dd..a3c3bd92f 100644
--- a/apps/web/src/components/forms/signup.tsx
+++ b/apps/web/src/components/forms/signup.tsx
@@ -125,7 +125,7 @@ export const SignUpForm = ({ className }: SignUpFormProps) => {
             type="button"
             className="absolute right-0 top-0 flex h-full items-center justify-center pr-3"
             aria-label={showPassword ? 'Mask password' : 'Reveal password'}
-            onClick={() => setShowPassword((showPassword) => !showPassword)}
+            onClick={() => setShowPassword((show) => !show)}
           >
             {showPassword ? (
               <EyeOff className="text-muted-foreground h-5 w-5" />