From c55f8f8b3a5bb82d8ffe43c8596af538361c1e41 Mon Sep 17 00:00:00 2001
From: Thomas Ruoff <ThomasRuoff@gmail.com>
Date: Thu, 22 Oct 2020 00:40:09 +0200
Subject: [PATCH] Admin page for bill wit iron-session (#13)

---
 lib/authenticate.ts                 |  28 +++
 lib/session.ts                      |  17 ++
 package-lock.json                   |  71 ++++++
 package.json                        |   1 +
 pages/admin/booking/[uuid]/bill.tsx | 320 ++++++++++++++++++++++++++++
 pages/api/booking/[uuid]/bill.ts    |  16 +-
 pages/booking/[uuid]/bill.tsx       | 304 --------------------------
 public/favicon.ico                  | Bin 15086 -> 9662 bytes
 8 files changed, 446 insertions(+), 311 deletions(-)
 create mode 100644 lib/authenticate.ts
 create mode 100644 lib/session.ts
 create mode 100644 pages/admin/booking/[uuid]/bill.tsx
 delete mode 100644 pages/booking/[uuid]/bill.tsx

diff --git a/lib/authenticate.ts b/lib/authenticate.ts
new file mode 100644
index 0000000..0880755
--- /dev/null
+++ b/lib/authenticate.ts
@@ -0,0 +1,28 @@
+import { IncomingMessage, ServerResponse } from 'http'
+
+export default function authenticate(
+  req: IncomingMessage,
+  res: ServerResponse
+) {
+  const authHeader = req.headers.authorization
+
+  if (!authHeader) {
+    res.setHeader('WWW-Authenticate', 'Basic')
+    res.statusCode = 401
+    return null
+  }
+
+  const [username, password] = Buffer.from(authHeader.split(' ')[1], 'base64')
+    .toString()
+    .split(':')
+
+  // FIXME: pull admin password from env
+  if (username === 'admin' || password === 'secret') {
+    return { username: 'admin', role: 'admin' }
+  }
+
+  res.setHeader('WWW-Authenticate', 'Basic')
+  res.statusCode = 401
+  res.end()
+  return null
+}
diff --git a/lib/session.ts b/lib/session.ts
new file mode 100644
index 0000000..202b228
--- /dev/null
+++ b/lib/session.ts
@@ -0,0 +1,17 @@
+import { withIronSession } from 'next-iron-session'
+
+const SESSION_SECRET =
+  process.env.SESSION_SECRET || 'dev-env-default-secret-991823723'
+
+export default function withSession(handler) {
+  return withIronSession(handler, {
+    password: SESSION_SECRET,
+    cookieName: 'pfadi-bussle-cookie',
+    cookieOptions: {
+      // the next line allows to use the session in non-https environements like
+      // Next.js dev mode (http://localhost:3000)
+      secure: process.env.NODE_ENV === 'production',
+      path: '/admin',
+    },
+  })
+}
diff --git a/package-lock.json b/package-lock.json
index fc5b14f..84b82e7 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1345,6 +1345,35 @@
         "@hapi/hoek": "^9.0.0"
       }
     },
+    "@hapi/b64": {
+      "version": "5.0.0",
+      "resolved": "https://registry.npmjs.org/@hapi/b64/-/b64-5.0.0.tgz",
+      "integrity": "sha512-ngu0tSEmrezoiIaNGG6rRvKOUkUuDdf4XTPnONHGYfSGRmDqPZX5oJL6HAdKTo1UQHECbdB4OzhWrfgVppjHUw==",
+      "requires": {
+        "@hapi/hoek": "9.x.x"
+      }
+    },
+    "@hapi/boom": {
+      "version": "9.1.0",
+      "resolved": "https://registry.npmjs.org/@hapi/boom/-/boom-9.1.0.tgz",
+      "integrity": "sha512-4nZmpp4tXbm162LaZT45P7F7sgiem8dwAh2vHWT6XX24dozNjGMg6BvKCRvtCUcmcXqeMIUqWN8Rc5X8yKuROQ==",
+      "requires": {
+        "@hapi/hoek": "9.x.x"
+      }
+    },
+    "@hapi/bourne": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/@hapi/bourne/-/bourne-2.0.0.tgz",
+      "integrity": "sha512-WEezM1FWztfbzqIUbsDzFRVMxSoLy3HugVcux6KDDtTqzPsLE8NDRHfXvev66aH1i2oOKKar3/XDjbvh/OUBdg=="
+    },
+    "@hapi/cryptiles": {
+      "version": "5.1.0",
+      "resolved": "https://registry.npmjs.org/@hapi/cryptiles/-/cryptiles-5.1.0.tgz",
+      "integrity": "sha512-fo9+d1Ba5/FIoMySfMqPBR/7Pa29J2RsiPrl7bkwo5W5o+AN1dAYQRi4SPrPwwVxVGKjgLOEWrsvt1BonJSfLA==",
+      "requires": {
+        "@hapi/boom": "9.x.x"
+      }
+    },
     "@hapi/formula": {
       "version": "2.0.0",
       "resolved": "https://registry.npmjs.org/@hapi/formula/-/formula-2.0.0.tgz",
@@ -1355,6 +1384,18 @@
       "resolved": "https://registry.npmjs.org/@hapi/hoek/-/hoek-9.1.0.tgz",
       "integrity": "sha512-i9YbZPN3QgfighY/1X1Pu118VUz2Fmmhd6b2n0/O8YVgGGfw0FbUYoA97k7FkpGJ+pLCFEDLUmAPPV4D1kpeFw=="
     },
+    "@hapi/iron": {
+      "version": "6.0.0",
+      "resolved": "https://registry.npmjs.org/@hapi/iron/-/iron-6.0.0.tgz",
+      "integrity": "sha512-zvGvWDufiTGpTJPG1Y/McN8UqWBu0k/xs/7l++HVU535NLHXsHhy54cfEMdW7EjwKfbBfM9Xy25FmTiobb7Hvw==",
+      "requires": {
+        "@hapi/b64": "5.x.x",
+        "@hapi/boom": "9.x.x",
+        "@hapi/bourne": "2.x.x",
+        "@hapi/cryptiles": "5.x.x",
+        "@hapi/hoek": "9.x.x"
+      }
+    },
     "@hapi/joi": {
       "version": "17.1.1",
       "resolved": "https://registry.npmjs.org/@hapi/joi/-/joi-17.1.1.tgz",
@@ -3422,6 +3463,11 @@
         "wrap-ansi": "^6.2.0"
       }
     },
+    "clone": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/clone/-/clone-2.1.2.tgz",
+      "integrity": "sha1-G39Ln1kfHo+DZwQBYANFoCiHQ18="
+    },
     "co": {
       "version": "4.6.0",
       "resolved": "https://registry.npmjs.org/co/-/co-4.6.0.tgz",
@@ -3548,6 +3594,11 @@
         "safe-buffer": "~5.1.1"
       }
     },
+    "cookie": {
+      "version": "0.4.1",
+      "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.4.1.tgz",
+      "integrity": "sha512-ZwrFkGJxUR3EIoXtO+yVE69Eb7KlixbaeAWfBQB9vVsNn/o+Yw69gBWSSDK825hQNdN+wF8zELf3dFNl/kxkUA=="
+    },
     "copy-concurrently": {
       "version": "1.0.5",
       "resolved": "https://registry.npmjs.org/copy-concurrently/-/copy-concurrently-1.0.5.tgz",
@@ -5169,6 +5220,15 @@
       "integrity": "sha1-+ni/XS5pE8kRzp+BnuUUa7bYROk=",
       "dev": true
     },
+    "iron-store": {
+      "version": "1.3.0",
+      "resolved": "https://registry.npmjs.org/iron-store/-/iron-store-1.3.0.tgz",
+      "integrity": "sha512-Ics0Xy/1TTjOhZFLkarOpWfXp4TJ7foiKBFC/aXJH1bKwafNKrEhrHNeHyA/Jqx57tlhpIbGoNC3RUB+rRIz8Q==",
+      "requires": {
+        "@hapi/iron": "^6.0.0",
+        "clone": "^2.1.2"
+      }
+    },
     "is-accessor-descriptor": {
       "version": "0.1.6",
       "resolved": "https://registry.npmjs.org/is-accessor-descriptor/-/is-accessor-descriptor-0.1.6.tgz",
@@ -7647,6 +7707,17 @@
         }
       }
     },
+    "next-iron-session": {
+      "version": "4.1.9",
+      "resolved": "https://registry.npmjs.org/next-iron-session/-/next-iron-session-4.1.9.tgz",
+      "integrity": "sha512-8AmKWSDXEHc35364zY4y4H0xWLA3f7pqFGBubiuDunxvh159am7sonMoFDPJ7y38UQ8Qa1AHrKMM8qgTGeuhjg==",
+      "requires": {
+        "clone": "^2.1.2",
+        "cookie": "^0.4.1",
+        "debug": "^4.1.1",
+        "iron-store": "^1.3.0"
+      }
+    },
     "next-tick": {
       "version": "1.0.0",
       "resolved": "https://registry.npmjs.org/next-tick/-/next-tick-1.0.0.tgz",
diff --git a/package.json b/package.json
index 5583dbb..71056e2 100644
--- a/package.json
+++ b/package.json
@@ -14,6 +14,7 @@
     "ics": "^2.25.0",
     "mongoose": "^5.10.8",
     "next": "^9.5.4",
+    "next-iron-session": "^4.1.9",
     "react": "16.13.1",
     "react-calendar": "^3.1.0",
     "react-dom": "16.13.1",
diff --git a/pages/admin/booking/[uuid]/bill.tsx b/pages/admin/booking/[uuid]/bill.tsx
new file mode 100644
index 0000000..f10062d
--- /dev/null
+++ b/pages/admin/booking/[uuid]/bill.tsx
@@ -0,0 +1,320 @@
+import { GetServerSideProps, NextApiHandler, NextApiRequest } from 'next'
+import React, { useEffect, useState } from 'react'
+import Footer from '../../../../components/footer'
+import Header from '../../../../components/header'
+import Input from '../../../../components/input'
+import Select from '../../../../components/select'
+import { AdditionalCost, BillDocument } from '../../../../db/bill'
+import { BookingDocument } from '../../../../db/booking'
+import { BILL_STATUS, MILAGE_TARIFS } from '../../../../db/enums'
+import { getBookingByUUID, getMilageMax } from '../../../../db/index'
+import { dateFormatFrontend } from '../../../../helpers/date'
+import { getBillTotal } from '../../../../helpers/bill'
+import { getBookingStatus } from '../../../../helpers/booking'
+import authenticate from '../../../../lib/authenticate'
+import withSession from '../../../../lib/session'
+
+export const getServerSideProps: GetServerSideProps = withSession(
+  async ({ req, res, params }) => {
+    const { uuid: uuids } = params
+
+    const authenticatedUser = authenticate(req, res)
+    if (!authenticatedUser) {
+      // TODO: not sure if needed
+      req?.session.destroy()
+      return { props: {} }
+    }
+
+    req.session.set('user', authenticatedUser)
+    await req.session.save()
+
+    const uuid = Array.isArray(uuids) ? uuids[0] : uuids
+    const booking = await getBookingByUUID(uuid)
+
+    if (!booking) {
+      res.statusCode = 404
+      res.end()
+      return { props: {} }
+    }
+
+    const milageMax = await getMilageMax()
+    await booking.populate('booker').populate('bill').execPopulate()
+
+    // TODO: hack, not sure why _id is not serilizable
+    const bookingJSON = JSON.parse(JSON.stringify(booking.toJSON()))
+    return {
+      props: { booking: bookingJSON, milageMax },
+    }
+  }
+)
+
+const milageTarifOptions = Object.values(MILAGE_TARIFS).map((tarif) => {
+  return (
+    <option value={tarif} key={tarif}>
+      {getTarifLabel(tarif)}
+    </option>
+  )
+})
+
+const bookingStatusOptions = Object.values(BILL_STATUS).map((status) => {
+  return (
+    <option value={status} key={status}>
+      {getBillStatusLabel(status)}
+    </option>
+  )
+})
+
+function getTarifLabel(tarif: MILAGE_TARIFS) {
+  switch (tarif) {
+    case MILAGE_TARIFS.EXTERN:
+      return 'Extern'
+    case MILAGE_TARIFS.INTERN:
+      return 'Intern'
+    case MILAGE_TARIFS.NOCHARGE:
+      return 'Frei von Kosten'
+    default:
+      return 'Keine'
+  }
+}
+
+function getBillStatusLabel(status: BILL_STATUS) {
+  switch (status) {
+    case BILL_STATUS.UNINVOICED:
+      return 'Nicht gestellt'
+    case BILL_STATUS.INVOICED:
+      return 'Gestellt'
+    case BILL_STATUS.PAID:
+      return 'Bezahlt'
+    default:
+      return 'Unbekannt!!!'
+  }
+}
+
+async function saveBill(
+  booking: BookingDocument,
+  bill: {
+    milageStart: number
+    milageEnd: number
+    milage?: number
+    tarif: MILAGE_TARIFS
+    additionalCosts: AdditionalCost[]
+    status: BILL_STATUS
+  }
+): Promise<BillDocument> {
+  const response = await fetch(`/api/booking/${booking.uuid}/bill`, {
+    method: booking.bill?._id ? 'PATCH' : 'POST',
+    mode: 'cors',
+    cache: 'no-cache',
+    credentials: 'same-origin',
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    referrerPolicy: 'no-referrer',
+    body: JSON.stringify(bill),
+  })
+  return response.json()
+}
+
+export default function BillPage({
+  booking: bookingProp,
+  milageMax,
+}: {
+  booking: BookingDocument
+  milageMax: number
+}) {
+  const [booking, setBooking] = useState(bookingProp)
+  const [milageStart, setMilageStart] = useState(
+    booking?.bill?.milageStart || milageMax
+  )
+  const [milageEnd, setMilageEnd] = useState(booking?.bill?.milageEnd)
+  const [tarif, setTarif] = useState(
+    booking?.bill?.tarif || MILAGE_TARIFS.EXTERN
+  )
+  const [status, setStatus] = useState(booking?.bill?.status)
+  const [additionalCosts, setAdditionalCosts] = useState([])
+  const [storingInProgress, setStoringInProgress] = useState(false)
+  const [storingError, setStoringError] = useState(null)
+  const milage =
+    (0 < milageStart && milageStart < milageEnd && milageEnd - milageStart) || 0
+  const total = getBillTotal({ tarif, milage, additionalCosts })
+
+  // in case the props change, update the internal state
+  useEffect(() => setBooking(bookingProp), [bookingProp])
+
+  const onSubmit = async (event: React.FormEvent<HTMLFormElement>) => {
+    event.preventDefault()
+    setStoringInProgress(true)
+    setStoringError(null)
+
+    try {
+      const bill = await saveBill(booking, {
+        milageStart,
+        milageEnd,
+        milage,
+        tarif,
+        status,
+        additionalCosts,
+      })
+
+      booking.bill = bill
+      setBooking(booking)
+    } catch (error) {
+      setStoringError('Buchung konnte nicht gespeichert werden!')
+      console.error('Failed to store booking', error)
+    }
+    setStoringInProgress(false)
+  }
+
+  const onAddAdditionalCost = function (
+    event: React.MouseEvent<HTMLButtonElement>
+  ) {
+    event.preventDefault()
+    setAdditionalCosts([...additionalCosts, { name: '', value: 0 }])
+  }
+
+  const onRemoveAdditionalCost = function (
+    event: React.MouseEvent<HTMLButtonElement>,
+    index: number
+  ) {
+    event.preventDefault()
+    setAdditionalCosts([
+      ...additionalCosts.slice(0, index),
+      ...additionalCosts.slice(index + 1),
+    ])
+  }
+
+  return (
+    <div className="mx-3 flex flex-col min-h-screen">
+      <Header />
+      <main className="flex-grow">
+        <h2 className="text-3xl">Abrechnung</h2>
+        {booking && (
+          <form className="form" onSubmit={onSubmit}>
+            <div>
+              <strong>Buchungszeitraum:</strong>{' '}
+              {dateFormatFrontend(new Date(booking.startDate))} -{' '}
+              {dateFormatFrontend(new Date(booking.endDate))}
+            </div>
+            <div>
+              <strong>Bucher:</strong> {booking.booker.name}
+            </div>
+            <div>
+              <strong>Buchungsstatus:</strong> {getBookingStatus(booking)}
+            </div>
+            <div>
+              <Input
+                label="Anfangskilometer"
+                name="milageStart"
+                required
+                value={milageStart}
+                type="number"
+                onChange={(e: React.ChangeEvent<React.ElementRef<'input'>>) =>
+                  setMilageStart(Number(e.target.value))
+                }
+              />
+              <Input
+                label="Endkilometer"
+                name="milageEnd"
+                required
+                value={milageEnd}
+                type="number"
+                onChange={(e: React.ChangeEvent<React.ElementRef<'input'>>) =>
+                  setMilageEnd(Number(e.target.value))
+                }
+              />
+              <Input label="Gefahren" name="milage" readOnly value={milage} />
+              <Select
+                label="Rate"
+                value={tarif}
+                onChange={(e) => setTarif(e.target.value as MILAGE_TARIFS)}
+              >
+                {milageTarifOptions}
+              </Select>
+              <div className="mb-3">
+                <button
+                  className="ibtn btn-gray mr-3"
+                  onClick={onAddAdditionalCost}
+                  title="Zusätzliche Kosten hinzufügen"
+                >
+                  +
+                </button>
+                <label className="flabel inline">Zusätzliche Kosten</label>
+              </div>
+              {additionalCosts.map((_, index) => {
+                return (
+                  <>
+                    <div className="mb-3" key={`label${index}`}>
+                      <button
+                        className="ibtn btn-gray mr-3"
+                        onClick={(event) =>
+                          onRemoveAdditionalCost(event, index)
+                        }
+                        title="Entfernen"
+                      >
+                        -
+                      </button>
+                      <label className="flabel inline">{`Kostenpunkt ${
+                        index + 1
+                      }`}</label>
+                    </div>
+                    <div className="ml-10 mb-3" key={`input{index}`}>
+                      <Input
+                        label={`Name`}
+                        name={`additionalCostName${index}`}
+                        key={`additionalCostName${index}`}
+                        value={additionalCosts[index].name}
+                        onChange={(event) => {
+                          const newAdditonalCosts = [...additionalCosts]
+                          newAdditonalCosts[index] = {
+                            value: newAdditonalCosts[index].value,
+                            name: event.target.value,
+                          }
+                          setAdditionalCosts(newAdditonalCosts)
+                        }}
+                      />
+                      <Input
+                        label={`Betrag`}
+                        name={`additionalCostValue${index}`}
+                        key={`additionalCostValue${index}`}
+                        value={additionalCosts[index].value}
+                        type="number"
+                        onChange={(event) => {
+                          const newAdditonalCosts = [...additionalCosts]
+                          newAdditonalCosts[index] = {
+                            name: newAdditonalCosts[index].name,
+                            value: Number(event.target.value),
+                          }
+                          setAdditionalCosts(newAdditonalCosts)
+                        }}
+                      />
+                    </div>
+                  </>
+                )
+              })}
+              <Input label="Summe" name="total" readOnly value={total} />
+            </div>
+            <Select
+              label="Status"
+              value={status}
+              onChange={(e) => setStatus(e.target.value as BILL_STATUS)}
+            >
+              {bookingStatusOptions}
+            </Select>
+            {storingError && (
+              <div className="error-message flex-grow mt-6">{storingError}</div>
+            )}
+            <button
+              type="submit"
+              className="btn btn-blue mt-3"
+              disabled={storingInProgress}
+            >
+              Rechnung {booking.bill?._id ? 'Updaten' : 'Erstellen'}
+            </button>
+          </form>
+        )}
+      </main>
+
+      <Footer />
+    </div>
+  )
+}
diff --git a/pages/api/booking/[uuid]/bill.ts b/pages/api/booking/[uuid]/bill.ts
index 3a151dd..bef58f8 100644
--- a/pages/api/booking/[uuid]/bill.ts
+++ b/pages/api/booking/[uuid]/bill.ts
@@ -1,18 +1,20 @@
-import { NextApiRequest, NextApiResponse } from 'next'
 import { BillDocument } from '../../../../db/bill'
 import { createBill, patchBill } from '../../../../db/index'
+import withSession from '../../../../lib/session'
 
-export default async function userHandler(
-  req: NextApiRequest,
-  res: NextApiResponse
-) {
+export default withSession(async function billHandler(req, res) {
   const {
     method,
     query: { uuid: uuids },
   } = req
-
   const bookingUUID = Array.isArray(uuids) ? uuids[0] : uuids
 
+  const user = req?.session.get('user')
+  if (!user || user.role !== 'admin') {
+    res.status(401).end('Your are unauthorized. Best to move along...')
+    return
+  }
+
   let bill: BillDocument
 
   switch (method) {
@@ -40,4 +42,4 @@ export default async function userHandler(
       res.setHeader('Allow', ['POST'])
       res.status(405).end(`Method ${method} Not Allowed`)
   }
-}
+})
diff --git a/pages/booking/[uuid]/bill.tsx b/pages/booking/[uuid]/bill.tsx
deleted file mode 100644
index 3066d43..0000000
--- a/pages/booking/[uuid]/bill.tsx
+++ /dev/null
@@ -1,304 +0,0 @@
-import { GetServerSideProps } from 'next'
-import React, { useEffect, useState } from 'react'
-import Footer from '../../../components/footer'
-import Header from '../../../components/header'
-import Input from '../../../components/input'
-import Select from '../../../components/select'
-import { AdditionalCost, BillDocument } from '../../../db/bill'
-import { BookingDocument } from '../../../db/booking'
-import { BILL_STATUS, MILAGE_TARIFS } from '../../../db/enums'
-import { getBookingByUUID, getMilageMax } from '../../../db/index'
-import { dateFormatFrontend } from '../../../helpers/date'
-import { getBillTotal } from '../../../helpers/bill'
-import { getBookingStatus } from '../../../helpers/booking'
-
-const milageTarifOptions = Object.values(MILAGE_TARIFS).map((tarif) => {
-  return (
-    <option value={tarif} key={tarif}>
-      {getTarifLabel(tarif)}
-    </option>
-  )
-})
-
-const bookingStatusOptions = Object.values(BILL_STATUS).map((status) => {
-  return (
-    <option value={status} key={status}>
-      {getBillStatusLabel(status)}
-    </option>
-  )
-})
-
-export const getServerSideProps: GetServerSideProps = async (context) => {
-  const {
-    res,
-    params: { uuid: uuids },
-  } = context
-  const uuid = Array.isArray(uuids) ? uuids[0] : uuids
-  const booking = await getBookingByUUID(uuid)
-  await booking.populate('booker').populate('bill').execPopulate()
-
-  if (!booking) {
-    res.statusCode = 404
-    res.end()
-    return { props: {} }
-  }
-
-  const milageMax = await getMilageMax()
-
-  // TODO: hack, not sure why _id is not serilizable
-  const bookingJSON = JSON.parse(JSON.stringify(booking.toJSON()))
-  return {
-    props: { booking: bookingJSON, milageMax },
-  }
-}
-
-function getTarifLabel(tarif: MILAGE_TARIFS) {
-  switch (tarif) {
-    case MILAGE_TARIFS.EXTERN:
-      return 'Extern'
-    case MILAGE_TARIFS.INTERN:
-      return 'Intern'
-    case MILAGE_TARIFS.NOCHARGE:
-      return 'Frei von Kosten'
-    default:
-      return 'Keine'
-  }
-}
-
-function getBillStatusLabel(status: BILL_STATUS) {
-  switch (status) {
-    case BILL_STATUS.UNINVOICED:
-      return 'Nicht gestellt'
-    case BILL_STATUS.INVOICED:
-      return 'Gestellt'
-    case BILL_STATUS.PAID:
-      return 'Bezahlt'
-    default:
-      return 'Unbekannt!!!'
-  }
-}
-
-async function saveBill(
-  booking: BookingDocument,
-  bill: {
-    milageStart: number
-    milageEnd: number
-    milage?: number
-    tarif: MILAGE_TARIFS
-    additionalCosts: AdditionalCost[]
-    status: BILL_STATUS
-  }
-): Promise<BillDocument> {
-  const response = await fetch(`/api/booking/${booking.uuid}/bill/`, {
-    method: booking.bill?._id ? 'PATCH' : 'POST',
-    mode: 'cors',
-    cache: 'no-cache',
-    credentials: 'same-origin',
-    headers: {
-      'Content-Type': 'application/json',
-    },
-    referrerPolicy: 'no-referrer',
-    body: JSON.stringify(bill),
-  })
-  return response.json()
-}
-
-export default function BillPage({
-  booking: bookingProp,
-  milageMax,
-}: {
-  booking: BookingDocument
-  milageMax: number
-}) {
-  const [booking, setBooking] = useState(bookingProp)
-  const [milageStart, setMilageStart] = useState(
-    booking.bill?.milageStart || milageMax
-  )
-  const [milageEnd, setMilageEnd] = useState(booking.bill?.milageEnd)
-  const [tarif, setTarif] = useState(
-    booking.bill?.tarif || MILAGE_TARIFS.EXTERN
-  )
-  const [status, setStatus] = useState(booking.bill?.status)
-  const [additionalCosts, setAdditionalCosts] = useState([])
-  const [storingInProgress, setStoringInProgress] = useState(false)
-  const [storingError, setStoringError] = useState(null)
-  const milage =
-    (0 < milageStart && milageStart < milageEnd && milageEnd - milageStart) || 0
-  const total = getBillTotal({ tarif, milage, additionalCosts })
-
-  // in case the props change, update the internal state
-  useEffect(() => setBooking(bookingProp), [bookingProp])
-
-  const onSubmit = async (event: React.FormEvent<HTMLFormElement>) => {
-    event.preventDefault()
-    setStoringInProgress(true)
-    setStoringError(null)
-
-    try {
-      const bill = await saveBill(booking, {
-        milageStart,
-        milageEnd,
-        milage,
-        tarif,
-        status,
-        additionalCosts,
-      })
-
-      booking.bill = bill
-      setBooking(booking)
-    } catch (error) {
-      setStoringError('Buchung konnte nicht gespeichert werden!')
-      console.error('Failed to store booking', error)
-    }
-    setStoringInProgress(false)
-  }
-
-  const onAddAdditionalCost = function (
-    event: React.MouseEvent<HTMLButtonElement>
-  ) {
-    event.preventDefault()
-    setAdditionalCosts([...additionalCosts, { name: '', value: 0 }])
-  }
-
-  const onRemoveAdditionalCost = function (
-    event: React.MouseEvent<HTMLButtonElement>,
-    index: number
-  ) {
-    event.preventDefault()
-    setAdditionalCosts([
-      ...additionalCosts.slice(0, index),
-      ...additionalCosts.slice(index + 1),
-    ])
-  }
-
-  return (
-    <div className="mx-3 flex flex-col min-h-screen">
-      <Header />
-      <main className="flex-grow">
-        <h2 className="text-3xl">Abrechnung</h2>
-        <form className="form" onSubmit={onSubmit}>
-          <div>
-            <strong>Buchungszeitraum:</strong>{' '}
-            {dateFormatFrontend(new Date(booking.startDate))} -{' '}
-            {dateFormatFrontend(new Date(booking.endDate))}
-          </div>
-          <div>
-            <strong>Bucher:</strong> {booking.booker.name}
-          </div>
-          <div>
-            <strong>Buchungsstatus:</strong> {getBookingStatus(booking)}
-          </div>
-          <div>
-            <Input
-              label="Anfangskilometer"
-              name="milageStart"
-              required
-              value={milageStart}
-              type="number"
-              onChange={(e: React.ChangeEvent<React.ElementRef<'input'>>) =>
-                setMilageStart(Number(e.target.value))
-              }
-            />
-            <Input
-              label="Endkilometer"
-              name="milageEnd"
-              required
-              value={milageEnd}
-              type="number"
-              onChange={(e: React.ChangeEvent<React.ElementRef<'input'>>) =>
-                setMilageEnd(Number(e.target.value))
-              }
-            />
-            <Input label="Gefahren" name="milage" readOnly value={milage} />
-            <Select
-              label="Rate"
-              value={tarif}
-              onChange={(e) => setTarif(e.target.value as MILAGE_TARIFS)}
-            >
-              {milageTarifOptions}
-            </Select>
-            <div className="mb-3">
-              <button
-                className="ibtn btn-gray mr-3"
-                onClick={onAddAdditionalCost}
-                title="Zusätzliche Kosten hinzufügen"
-              >
-                +
-              </button>
-              <label className="flabel inline">Zusätzliche Kosten</label>
-            </div>
-            {additionalCosts.map((_, index) => {
-              return (
-                <>
-                  <div className="mb-3" key={`label${index}`}>
-                    <button
-                      className="ibtn btn-gray mr-3"
-                      onClick={(event) => onRemoveAdditionalCost(event, index)}
-                      title="Entfernen"
-                    >
-                      -
-                    </button>
-                    <label className="flabel inline">{`Kostenpunkt ${
-                      index + 1
-                    }`}</label>
-                  </div>
-                  <div className="ml-10 mb-3" key={`input{index}`}>
-                    <Input
-                      label={`Name`}
-                      name={`additionalCostName${index}`}
-                      key={`additionalCostName${index}`}
-                      value={additionalCosts[index].name}
-                      onChange={(event) => {
-                        const newAdditonalCosts = [...additionalCosts]
-                        newAdditonalCosts[index] = {
-                          value: newAdditonalCosts[index].value,
-                          name: event.target.value,
-                        }
-                        setAdditionalCosts(newAdditonalCosts)
-                      }}
-                    />
-                    <Input
-                      label={`Betrag`}
-                      name={`additionalCostValue${index}`}
-                      key={`additionalCostValue${index}`}
-                      value={additionalCosts[index].value}
-                      type="number"
-                      onChange={(event) => {
-                        const newAdditonalCosts = [...additionalCosts]
-                        newAdditonalCosts[index] = {
-                          name: newAdditonalCosts[index].name,
-                          value: Number(event.target.value),
-                        }
-                        setAdditionalCosts(newAdditonalCosts)
-                      }}
-                    />
-                  </div>
-                </>
-              )
-            })}
-            <Input label="Summe" name="total" readOnly value={total} />
-          </div>
-          <Select
-            label="Status"
-            value={status}
-            onChange={(e) => setStatus(e.target.value as BILL_STATUS)}
-          >
-            {bookingStatusOptions}
-          </Select>
-          {storingError && (
-            <div className="error-message flex-grow mt-6">{storingError}</div>
-          )}
-          <button
-            type="submit"
-            className="btn btn-blue mt-3"
-            disabled={storingInProgress}
-          >
-            Rechnung {booking.bill?._id ? 'Updaten' : 'Erstellen'}
-          </button>
-        </form>
-      </main>
-
-      <Footer />
-    </div>
-  )
-}
diff --git a/public/favicon.ico b/public/favicon.ico
index 4965832f2c9b0605eaa189b7c7fb11124d24e48a..1e826292d077b73b751179a6d5da9e4f2c7a8109 100644
GIT binary patch
literal 9662
zcmd^_cUV-{y2d&8#Ms3WV(hWS#59wri80Z16FnwsjIkqFupy!#g22#}0j4)#7<!Qw
zV>Dt%5b0Gt#u7DP1p<P=%rG;%-1j5w`|$Y0oOAE_^OEP6wfCOA*LuIU*4jI<v-=zV
znKsQ1|9;UfeX^b1^LBQ2F9Te%TL<X+)BYHqwR;MG!}Xs07tV>lck>L|Ufn#4wh!nF
z`hosn02tVVK{&SWW^i{)ztg?+EcHQsQvWoLF!s~*{nd5hS!$oAo5t%6Xly|<=^>3n
zz)&!(o9ECvfak&RZs?ePCtJu?vR$y@|Ej;IZbAE#{uVUTc;q`lGwCIbFMyF?G#Jy(
zShVB7crc-x7tzu^bU!^y{ro33^wi$d=M+=H*F80p-vrGga7<cA-(>I#con<`UI%Z0
zY2a<}PB(N;_e=uxEX9a&Ot9g9lSfZ#r)LG-LVl2cNHfKpa)5kHekFfS0i=_(%>r}4
z$KX@&8TcH`1M|UxZs>e2m;t5&iVww4uz_mp-?2f^F8G{u)3cN(l-H!2@|p5=6ri}1
zk7-Qu;Y{!WAf5jJOTkL87B~TCupVp#n;DMX%5v;xK-X3PvWK20`vn_lO!C{mV*}|Y
z?PROqbBZC=l%SjPcp{*9zis1~_tBDnzXFTEazI+4jq`xEeINh?<2(e{_k&P|Wy13E
z^TKz!yNkEGZVxQ0DEG9nwhj1gG58Qr|1=imWq&|EBu%7`bPDvGdj#!dtKf5*Lnt4~
z-;)6O=3PLV$zR_AN8kc>!l&LXZLL8UFJF>mXJ>1}!^2}eJUkNRa(T*$6DLw{-oBM)
zu~`ll6cl6(95^teckkY5{rdHb8$4u)A~QS756@FS<Oj;VDS+yUG>{+vECytUU<3J`
z?xA=IKBqZ>@`U_B`SB^B{?~x5z>{U!fX2qgaOhLHxw*xRA3r|1PoF;7;AiMNh4viC
z2j>S27;t{YiWLRx*RQ{T^8%1JdD4XAJ2tJ)_<F&7ZEanxANr&``w~!%j|b#G(nCId
znhj)!pq+A#YLk3E8N3CkzP<*O%R7({e(mk;;RP2i=zM&95=V|4nc25*-y_g-5}Na#
zefHU6P}!?juS+<;0<Pk>tGMSH{C%x||NhsyuU&rWrI*S+ob~P*FE`hW`1p7Q$8ozc
z#xg*8^a`N)VKAT?6xIdu^^>_oF(U0`FXbLROFsVsd=IuDZ};8$?Upn)F3vD()~pQZ
z`5ELwTOst6gNxu7@GGwU2JV9U-~o7udmlpoL&SlO@8iC@H{X2o`a9F7SA6lw+>_3Z
zYZJ_7b1=rDTKEbGG3YrTJ!ykr2WhAKsP-ves5WUHq5R%eclXW#u~-~6bm-6wXgH4X
z3qS?<C$!xFw{d(2+z0jGckl?;TR^J-o^6HyThTs({>Is}XWyMWckb08_JazSEd0lz
zt5>foX*@u+MKPfHjn)Oq3DQV@?rDP%3-UY7<F5gFj`DoNqt;e$gTWx1FkwRClqpk=
z?%K8Myt})56~?~`9k;<f9Ft!gK{I^YGGxe*$HRsVYa8z1(DA&3gAvE3!Gi~zaIXpX
zbb<Ri$fl3x%xPS+YSnLp2H987nKS3qnKNhNFm3>i4dw&NftLW~kzfPm64gUbJIF?|
zmF8fY$6RjL{^q}I`Et$l=`+${!>QWZ+ESk9ucV};+{XC#L8HTS&pjG7azra=8#`un
z`-@}8bf7hk89mZ8cH}7Y=n*42$Bh|n89i#GW#otvmN6qoT87x$TkxzIwsZ^}(7(ms
zXU~JBixyvdf7YzRAMl5<DF&Wk75E&y1IPx_NI63FKs8OV5bU7e-veLMJa+Z^HPH^Y
z9g+F@=dwFG+H;}1vZ0~j#^J+<?|wONUgNm2V_U|J8`m~!<j4+(VZ)3=hYU7;^4Vvm
zRjb#Sw!7{yd3pPoMS($`q2e%0U~q^vBrMz}+JC^d({qn)@pnsY6DLftIt&?V9?-vk
z`|_oWnzlGQ*G`^1xn|R*O=oW0zM0JMOc=E61hlr14Ku(ifaXJ*S1Dh5+A$61UjV24
z^XGkM&YY>capT4hot@^qva-?|e?Pxl6JH$vVB)y3%_D~oZyP#zuyOF9L6i&RNAu{>
zqs?-q(xg(WOlq~-q*AHOXw53M+7d32SY--@O(K&q5mG55mP#0JQJ`)0y7iXlhmSB}
zEqIK1sNTWB;nyjzPA%K*<(qS%xFp`nGNI5zHc%WWmu3UfIR%g%lv9EoRIf{09zS+>
zbaa#<XES!WyPx~~laFhrPMmyu?5I)o&kY^=XyAYW?Oi$Cw{K_P-hC`DPkq(0Xvw#o
z?z?uIRT_;67&SVbQ5zX))ai64jaJ(U-BzVqW0NVA3~Xc-Y85M2DH)ksZQJ0o*<x>R
zZv>BE$NfR}_Sd$%yO((S_#Mms=}3afVh)Ec%BA(-TR=W0tu(K{41{=mV#EBdi;VPt
zVfgUaSEo!lK5gpM3gqw2K?7;N>(_$$q+`;gN#@n7*I0bK_gSTKg*7_HV2Lrrb|xex
zo6|EhjG5UP#*B>gj`+j`qaiNV6m5v<3=NZ80z;x~`^9QTsnN5s@$sxut!7~hql<~L
zO`q{@=b(WDJ5b-vefsvjw{GL6tKR;i5-(r><2plZN^@(A3OcE#-M~6PcFY45k2e9W
zQ}e7Gv+3KVOGDqEJ|pez*I&<f7&_!izrOwMzWK(q=FKi!+r{E=b8Kv!H90ximYJ1q
z!!lr#$s|^9A1{le<7)G^?Jg!?|Gh>JFAt-CfWJ``C^GNy^6XsY=xgmWJDqv<tw`2>
z;$}7^Le3fD<GHwm1XiupGSPa2b>@4sI-lv)tG#!h-py;AobUOF0<Q1%^RIv%XT#-+
zA8y~d8*AfO8FY#O?Nyx6E&-o_>0rK%Wwy9(-!A#~n?>1J=ZlsvUw%U@4ttmopV*q2
zk#35O(OW|I2irDnbY@<EZ7PF!Gl+?;Z=XJv{>Y~V3;$tu-MP~wj)*WNCncCulj1v7
zN||-#S})r(F9$JwKS*VJk9FmOrD{&1RB{r9f{TfdW0O-;ndH<otFOPvy!hK??VdjS
znnfY|ANU0Y--7;2u%l2Ebl^ng#Y<UDO-%+*Pfuxle7tX`)w&hBX>FzYrux|WsHH`!
z*Xs{ywc3)jw6vRsn5YJCpFM3~e))y@l~-P|_V3q^L97|n0E_vX88XP;hB~$)_Lk4T
zoY%S6*SFKhKcF)(IM^aSu;03N%}UhiZl>2LXZG(eEaUo4*vy5>b(})2=Hx0hCsio9
z2)TlCib+dPx2jMt0s9Yh1dGF30uO{X_y>p7Ar{y6`iZL0Z-GLk&cWU!?ZXddYpX9_
z420%wfNb~*Y_T$o<j|oXeo$*v#S0e9{}uC0!;ry)+h)#~VV*H#h81%qGko|9?1F_0
z*{wTV+0gJXCdLrMq#&m-_gTZk!mNq$$g#u(Tl&E?n?5FriHwe6ML{Yq0Bmy&;-pF~
zuhasKhDTj<GT4E5u;Fq!gL<+V5)wK?B~l~i+{Zzo;wFE@0(RW?_7AwSS0pO^dePF;
zFHN45nVFTPg=T-?0;sMxnypr`Ix;e2^OnsQh7BHa-C@{s52sF@+Un%wY!Ziwtx3tr
z%!w1n*@E-=Y-w>ZTUuJomXs8+B}IiyaZxc-R8+(i71D7bQ&@C?B?>N_=deHJa&vRJ
zoa4v&#N-rSrPK0=0qN&e8ZAe505&W_!bB()HbY{fB|0|Fv_CweJxCn(C@>_nK@<{N
zw@(yu%|{emzF^^^QzDTl4VvX(FZdWZnyr>VFCS6T9<M#Q`}XboCu;TH*|TRJ6%}3R
zC@n6sl$Vy+D#}Wk%JMRnz;PG2&X$&yblHOY$R5~N#1$78a<GBR%Rk4RK68rCJ$IJJ
z8ptDG_~@7z9`hZqK^zn+6{ptfIEhS-xmC>|r)*NC$`Y55Xx8fW9f6^tt;ngyzysnt
z{z2laTV35t9M?J?d)(d@58X7!(p<FMWa-@N?H3ZAk&%@HA6AwW7v3%{DQbY0$Ixhk
zW=nNtg{`WhoE5+|jwmlH<#10IWhKQNK{k{W7xA!xKXvj1e?C8tKYQjhpPru1$Hd0+
z(Rw`}9UaYMt$-a`E<z&ZkmFb*G>lBCqBX;Uxz-#Nqwi2@buGbSX+uzGM6F-Ify?8@
zPCS43$WK3FE{cJ6nuET!vbOE%nTI9k&YjD^*yo|=3bfq?P0-s8%r#Y&R@lJ&p}!1v
zlyNxcaQ;6C=ZFuFK6vCAUtD;BKXd9Nf8l&Sj~wI^lahG7!NA8L4v~lhY~W-v8K;IF
za;1t@C{+yBLo4j*q_rLEV!PfD_ei2pJ`6e_y}4w`_f^=R<yskAHnh{e^Hbp1)ZFZM
z`t)giQBmPh=q?4<q3u3s23<Blv$d+K#8y*X#@5tSuotVVxQjLA-BfUwYN|P0<6#Gn
z=Xt@7b7#-+1&BfZ`8@u}k)Qa4gajUYLmqP;<q>?Z;;02IV6X?V!T%Q6fc=TeD3K~2
zM@Gdo#TXLqiURgub8^~T)@JND4c+v9`z~07cx-!E|1cCbBvzCapRB1WuYk{QK+7LC
zRF<_vyBS!>hU%(P2C&uDrCfD&33urd?6_FYUA|PqU%ptyU%FVqS67$uu(`_)iUD$y
z&pVgPXJuvaadB~7`W09c;BQWjbpiV(7V%)BqM~f55o>6e7%@<pU`K~sscyyE-=H_d
z{w9%VFPl2eMbJ%qQ;NYyU^#5qRd?r(<ZNzUYE5<JsY^9g6_+kn-KeQ4zX#1tRaM1p
zRh6Ztg7dkSvu97(e*7_$Nk5pxMn%GhGAS1v6v#;;!Z|#{U%Xh!*HoADxSy{mFXqci
z3sD0n_=18w<WUZP@ZiBN8`RK_y<QjC|FKwu7}N$s`aL{7EDDXb6LS>V&<0zYaeQB`
zi~6;#qrDoMX<t1a(7uS)vo*l;?!9_hetuDERaMo=%#4&WnJoOOhsVx4t5+@m{k@qp
z9>4M0tH!scy>6NR)n~R1PHUK*JGZeSkvH;K%th<fTye<-t_X7w<;?lKTs}YVEc|{3
zwVcDB$T`Lz2iWrS$w^6^6uCd+-FLZ#3m0;G_UvKt{eo2}6b$mn=IiTgg?(MMj9Tb`
z_Ey-@AXBJn8=IScfmVA!-y0~8Xs=D*0M>#%*ptc%i%OFV^K)|y(Yj(ol<taFEw9xm
z<qc|uq%~TnFv`M1JNJ3-wR-MyXEv{2&wl>tr|d@`&gR~q@ea3o*&=R(<8p56hSi*l
z(@M^9#ZqqBq6OSH^FQOh{9+Eb0>1|b2Xb1Smc#y#8$WIwhxZ~DYdVW{p0T$d#Avh{
z8|HE=_6>-E+88F4JU$?iG=@v0cYc4=d>uOb0eT;xJ@rd~-rHzRh7F7d=GE|<w{FEB
zK6>QHm!HiqSif%7B}u6NZM8J8KFEJ}i|cl$jt$PM%*&Q8w60qIt<BSID--Cmi&aMi
zb4gJOPJ>pu-=7N)_T_^7Jh?q?F5I?_Yd9C@m7J&hR?cPPdM+g;nS1~JS=^M#lgS1a
z??&wN&ppTB-H3^Z2(zKat(d1eQSaEBN4A2-Fo~q@(c{Ngp|dyW4~BqIfNY>R&^~n)
zz@CrWZ(*$Zy!`w_DwR6#aCTzNq0EGvDT$E}VxknyDuuW`QWIg0)=4b#@F1Ha)SuBx
zf|+PV7^{s4VS{{jv%Y)W*c~qGShp?Ctm`I6cHN34tmCpJ>?Y@RY(hdjyL`p>?8p(r
z*;gh{Vkf=$A~Sy680Lf7@7wgzkzKw=t(%~~9ktzz+<Kr^Yi=3Mrc2QG3=nJ>ien)T
zv@U!GXpcmDrGWZ|dfnosPFa};Q*wVglva7{Nal@rgXUheR?(Cg7ugo8R~f@YMV;Y+
zK2}v&piQrl*<y8aMiCmo1nhBRymoG3cDZg~wryO?AfK2GYrki9Y+299Wl}~I;Lj}n
zW}$8RTkqIDnlsn7c+o=ZPIos8Z0k%+Of(^X+A-(0#Ky+fW8J959{dXS&1KL<-ywS1
zKyje=OsWT}Y1&`VdxJ}-#o~uOo;oEp`{0SAS*K3r{7{yik$6?36yH(G_BTfBq%G2j
zfcCIJFOyChV%96eJCh7rOPoe(5&L^t{JeHrkwaE*k8Rd%E^DmLtG~0lZQW?`+vjD8
zHN;rblM^f{F`CXmKaqLn%-N>BKAy(7_}F&%{xP&SCnY7-qpgjPjr}Dj=Xg28F}cu1
z-+{=6UO<Qg*+4Zt0lWd|yUI6U1KuUPjb@`PD?2Oc+?k(`oj&<v;i1gr%ZYKi+XlVz
zfld?F<iBTot1QH~&7g{CPmR@eq{e8Bk+K8E{eGUt5TD&fk(Zm%eVdcfY4vwT=T+Ys
zT{buxv+?e>bm6>?z`Z-#BV}Q2>4|ZzDwXunu_He<Wu|A;BX{m02DhO9pGk>{B_*Y$
zr&*q*_4jW;u%TxhsHTSlde0QTYc0UBBiP+$Y!_!`q!{wg=KOf_Xm(!K!T74^NZECL
zl(aTr?~Vuic5P{hl7;>ruah;U$3-=xmYZW#Va*48J(~l)+?w~gZEW7+w6b~q%5R%D
zu3Oohnv~e&?XmOst?O4c?%v{Dzjx=>2dT+%ck@r5sJ(vq;;&_eMOV^NQYvA``NV|8
zpX=`4O@$6EApL)41I<f=fCCr<=o<#D(^S_hfNN7rQ&4<tlrHzg(Trn<51u-h6j`K}
zh13M^bN|K9W9zSCk>{-xz52K0I9)CBqBcD)vMyR4Ru}BOtIl`VwmNs0b#<=mSJ%33
zTwAM@OMg=<<hMfu{BMeUJg%=>wd|K;M-N{*^5db(bEi&~oH=zm|76aw<L6GF&ML^y
zH(>3RK*K&@2mZ{4XK}qRpl^4>fG{_`jbnQE?5c@-5AW~O>(ugOy(S@EBRM1s_B|=`
zbj|nQy}c;Z$D>p)4J%KI)>Ou86_o~+q)IOjukzo$qsrBJRh85CODex#_*Lbic^_9u
z!VZ+DrKXnZqoRsY&jpF`vAHLY=bXg8>F4s|qC=JC<!N_nYYmT@o8=apH2~w&_Z25V
z`k%Cc@`-YZY!JSy)7(UL-LobZ;(T3)*|h7|TQ`DBiVBn`a*o7i986A4h>glhFlY}&
zYh;I`G?F7aW!MpQ#DSyYVBe$RA$~_Cp#eu#(y*gCwd}~jl=z<t3-b<RpLM9Jsyy@R
z)yrvhb#)1i4Gnte)wE(A#W$e?$ah~ry6KzBcYxMfL4QvhdgfElx~7_V9*hH10p-&d
zfcn~iy_36*WqmPEg&2*-u$I<VDfYB-yn8F^>mMrX>mMi|JiM=b`0#<Up}t<(-2A(;
zp`lUvu)aZodu45H?GmHWB*uSR2u5Fi=+g_h1Dd}#fYo3Lpd9`HP%iY;|1=wfx)y4J
zzI{<XO$O5d^+kOy1}g!@braYEXzcCXxT5WeaGmbi3S0o`TnA|FB)=>IG;fff=7RSC
zjY;3I#)BvI|CJ3r^NHqInx7~ZQ^1>m;z4sQ)d!77@tqH7{J(<kp*;)v;B)XXpnhh7
z8Q?AOI-ogZ5*Q08m&uQRreC;5c|=e>5IxrkAr@5Iv{q1`69L&W70`HO6ZwiD4S$C4
zJKalb&1-;kQa_}Xd`x|h2Bewtmuk@-3;=@Gr?r9&f*oW7<&zML{y3(2milx6WDD&<
zD8Fb-ntKV-@Mj3WQ%m>LbEK1EOZ}05sPDmm#u*4`%)X#Ec$)5>*PpbZXDkFeC?4bw
z8iRa8;}Mi+|1NYtJuB#>{zxnJO?qiAB+WD?%`4=`o;v^4@soB?EQFk*KB;dSgP`#Q
zX#BrIxKC&Wor2b$dP%b|F8T3aX@2teo;C<MCB%dJCdfDc2|_<TwUTBUN8k?~^gjmi
zc6OcJZ7sDTJG(q;=i1o?P&<zPg+Kd08oS=z?cclG|3^(gx2<{IZEbhk+TC{f5yxEj
SIb7TI#|Lz`wcTy^1OE-V1IIi7

literal 15086
zcmeHOOH5Q(7(R0cc?bh2AT>N@1PWL!LLfZKyG5c!MTHoP7_p!sBz0k$?pjS;^lmgJ
zU6^i~bWuZYHL)9$wuvEKm~qo~(<Zhq=%PtAwXvy2(jcebH**geX1LCs2h7miFZps_
z|2gOX|8wS^%YQCHxP)6277C<3F`Xeqs}REH3zlb5{~78U8_n{oLJXD&Q4bk3p+~SD
zi4c%WV`M?Me9)tqo15z?FE97(-o4w?-QDduc<`X-<jIryXU?3VY&e=xaR<By`pHe3
zHu;N+iu~2p)&Az@X8*vzz`c=?kvpeOouX_wHlyMOC_|Z*l_j@r+a_ykYh_zoo7}s1
z?~SpsG0LunPE<YuBgQB#E#(-GT3T8tV+A)Fu7WH2vz(osElWyDuJ-o!Qs!mg(mw!K
zjNx**9>5=Lvx5&Hv;?X#m}i|`yaGY4gX+&b>tew;gcnRQA1k<zZkuF29=w50WV~>p
zBbm04SRuuE{Hn+&1wk%&g;?wja_Is#1gK<H$_?cM`#?UQ0^ozkf#ZSn_W+-zniVx5
zKR;i?vs?3ey;^;Jy|!o19<9B-UF+-X)AsG#ryV|gSUZ0FxHd5{p-oRuYcn%5(VoxB
zD?E+QgEv9LiWwOh2F^hP=a_-B(5R`YF>oFlI7f`Gt}X*-nsMO30b_J@)EFNhzd1QM
zdH&qFb9PVqQOx@clvc#KAu}^GrN`q5oP(8>m4UOcp`k&xwzkTio*p?kI4BPtIwX%B
zJN69cGsm=x90<;Wmh-bs>43F}ro$}Of@8)4KHndLiR$nW?*{Rl72JPUqRr3ta6e#A
z%DTEbi9N}+xPtd1juj8;(CJt3r9NOgb>KTuK|z7!JB_KsFW3(pBN4oh&M&}Nb$Ee2
z$-arA6a)CdsPj`M#1DS>fqj#KF%0q?w50<cPtWn&WS?Xq4+DJ#+M3^#WuIi?Ee!S-
z7)=MtyqV02&9V6G{1l8fKV|GbXU(B)Ck>GN4YbmMZIoF{e1yTR=4ablqXHBB2!`wM
z1M1ke9+<);|AI;f=2^F1;G6Wfpql?1<k$P{dI)p=W0Lvx2L2)uUzlV*6?hGkk`5dX
zI39?@1JVMELi8#k$aI0k!%oVJt{~^!Qj+soK|U#va={zqVy~3s(uE+UH5jL81Si1d
zI7JN#4jd0S9&kM1c);<%|K9^V@h*XSEOfiwdQMJ`j`*8iTwJVg-@aW(%tc2mQs23A
zr;hlOj(DWr(b1vfeo9A7Qs2LSzdk%XtRpU|<GxJCotr*2HFXIw(nL<(BIrE_s=tS9
zrHs|!?n@$$Dhmq>d5<Q`%F3kA=L^I#ckS9G8ygz~@yyQ7PTAkzABbrV4Gqa7M~*PA
zDG^(hr%#`rJA3vlbw~um==>D4rMr?#f(=hkoH)U`6Gb)#xDLjoKjp)1;Js@2Iy5yk
zMXUqj+gyk1i0yLjWS|3sM2-1ECc;MAz<4<K(v~e-0`X|tuw%!L<-MeAKzv^9r9ZHj
zIA^lJIPYaJLO(lotJ#3Ng=HIXzaVJ?@4HPKE+0L5G~U><mCdzixNk?_)npL+46H+5
zUf%LLC>t0P53%7se$$+5Ex`L5TQO_MMXXi04UDIU+3*7Ez&X|mj9cFYBXqM{M;mw_
zpw>azP*qjMyNSD4hh)XZt$gqf8f?eRSF<bBhOJw-2JSVm4$twM=Gbcu#?NnoajyaU
zu42Qjii(QdwN~C7zaQyi>X8VQ4Y+H3jAtvyTrXr`qHAD6`m;aYmH2zOhJC~_*AuT}
zvUxC38|JYN94i(05R)dVKgUQF$}#cxV7xZ4FULqFCNX*Forhgp*yr6;DsIk=ub0Hv
zpk2L{9Q&|uI^b<6@i(Y+i<VNBebNQIr}-R=rnhRRY^v^dtbEpjhTm=2KpD!W8(dK6
zV^I0nDy0l%(-Bor>SxeO_n**4nRLc`P!3ld5jL=nZRw6;DEJ*1z6Pvg+eW|$lnnjO
zjd|8>6l{i~UxI244CGn2k<bNY|1`<`MuQs)e`1pPjfiq6O*(Kq;CR6Cfa3wj1C9qm
zJP`bX2rpUzB#?4UyshztEs$QsA6YD`bWR92%PO76AHXa>K@cJ|#ecwgSyt&HKA2)z
zrOO{op^o*-<OftNtCSy6v8+;lP{p!J`C%2y3*MC}Kd@rGO8K!B%PN%s%gIUq1Ls!7
A761SM