From d5834de32e00f55378d3f0c7e5144d373a20bca2 Mon Sep 17 00:00:00 2001
From: almostm4 <petricdavid@protonmail.ch>
Date: Sat, 15 Nov 2025 09:07:04 +0100
Subject: [PATCH] Release

---
 LICENSE                         |  18 ++
 README.md                       | 169 +++++++++++++
 bin/snowpanel-collect.py        | 126 +++++++++
 bin/snowpanel-enforce.py        | 227 +++++++++++++++++
 bin/snowpanel-logdump           |  33 +++
 bin/snowpanel-shaper            | 143 +++++++++++
 install.sh                      | 192 ++++++++++++++
 screenshots/dashboard-dark.png  | Bin 0 -> 28998 bytes
 screenshots/dashboard-light.png | Bin 0 -> 31021 bytes
 screenshots/login.png           | Bin 0 -> 8020 bytes
 uninstall.sh                    | 104 ++++++++
 web/api/cap_reset.php           |  36 +++
 web/api/limits_get.php          |  54 ++++
 web/api/limits_set.php          |  28 ++
 web/api/snow_log.php            |  23 ++
 web/api/snow_status.php         |   5 +
 web/api/stats.php               |  33 +++
 web/assets/panel.css            | 133 ++++++++++
 web/favicon.svg                 |   9 +
 web/index.php                   | 436 ++++++++++++++++++++++++++++++++
 web/lib/app.php                 |  67 +++++
 web/lib/snowctl.php             |  28 ++
 web/login.php                   |  93 +++++++
 web/logout.php                  |   4 +
 web/robots.txt                  |   2 +
 web/setup.php                   | 207 +++++++++++++++
 26 files changed, 2170 insertions(+)
 create mode 100644 LICENSE
 create mode 100644 README.md
 create mode 100644 bin/snowpanel-collect.py
 create mode 100644 bin/snowpanel-enforce.py
 create mode 100644 bin/snowpanel-logdump
 create mode 100644 bin/snowpanel-shaper
 create mode 100644 install.sh
 create mode 100644 screenshots/dashboard-dark.png
 create mode 100644 screenshots/dashboard-light.png
 create mode 100644 screenshots/login.png
 create mode 100644 uninstall.sh
 create mode 100644 web/api/cap_reset.php
 create mode 100644 web/api/limits_get.php
 create mode 100644 web/api/limits_set.php
 create mode 100644 web/api/snow_log.php
 create mode 100644 web/api/snow_status.php
 create mode 100644 web/api/stats.php
 create mode 100644 web/assets/panel.css
 create mode 100644 web/favicon.svg
 create mode 100644 web/index.php
 create mode 100644 web/lib/app.php
 create mode 100644 web/lib/snowctl.php
 create mode 100644 web/login.php
 create mode 100644 web/logout.php
 create mode 100644 web/robots.txt
 create mode 100644 web/setup.php

diff --git a/LICENSE b/LICENSE
new file mode 100644
index 0000000..a046b42
--- /dev/null
+++ b/LICENSE
@@ -0,0 +1,18 @@
+MIT License
+
+Copyright (c) 2025 almostm4
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of this software and 
+associated documentation files (the "Software"), to deal in the Software without restriction, including 
+without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 
+copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the 
+following conditions:
+
+The above copyright notice and this permission notice shall be included in all copies or substantial 
+portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT 
+LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO 
+EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER 
+IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE 
+USE OR OTHER DEALINGS IN THE SOFTWARE.
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..bee2d92
--- /dev/null
+++ b/README.md
@@ -0,0 +1,169 @@
+Snowflake Proxy Panel for Raspberry Pi
+======================================
+
+_Run a Tor_ _**Snowflake proxy**_ _at home with a beautiful, simple web dashboard._
+
+Help people in censored regions reach the Tor network—right from your Raspberry Pi. **Snowflake Proxy Panel (“Snowpanel”)** makes it easy to run a **Snowflake proxy** with a clean, password-protected dashboard, live charts, totals, logs, and simple controls. No command-line expertise needed.
+
+Why run a Snowflake proxy?
+--------------------------
+
+*   **Unblock access to Tor** – Your proxy helps users in censored networks connect over WebRTC.
+    
+*   **Strengthen digital freedom** – Join a global volunteer network that defeats censorship.
+    
+*   **Zero port-forwarding** – Unlike relays, Snowflake works without inbound ports from your ISP.
+    
+
+Highlights
+----------
+
+*   **Friendly web interface** – Configure everything in minutes.
+    
+*   **Live traffic graph** – Visualize RX/TX over time.
+    
+*   **Totals at a glance** – See cumulative **RX total** and **TX total** for the window.
+    
+*   **Live logs** – Filter and view recent proxy logs right in the UI.
+    
+*   **Simple service controls** – Start/Stop/Restart the Snowflake service.
+    
+*   **Dark / Light theme** – One-click toggle; preference is remembered.
+    
+*   **First-time setup wizard** – Create admin user and set proxy basics in one flow:
+    
+    *   **Broker URL**
+        
+    *   **STUN server**
+        
+    *   **Ephemeral ports range (outbound)**
+        
+    *   Optional **unsafe verbose logging**
+        
+    *   Bandwith limiters
+        
+*   **Lightweight** – Built for Raspberry Pi OS (Debian) Lite 64-bit.
+    
+
+> 🔒 The web dashboard is meant for your **local network**. You don’t need to expose it to the internet.
+
+Who is it for?
+--------------
+
+*   **Home users** who want to help people bypass censorship.
+    
+*   **Makers & Raspberry Pi fans** looking for a meaningful always-on project.
+    
+*   **Community builders** who prefer a visual, low-maintenance setup.
+    
+
+What you need
+-------------
+
+*   A **Raspberry Pi** running Raspberry Pi OS (Debian) **Lite 64-bit**.
+    
+*   A stable **home internet connection**.
+    
+*   **Outbound UDP** allowed (WebRTC/STUN) and **ephemeral outbound range** you choose (default suggested 10000:65535).
+    
+*   **No port forwarding** required.
+    
+
+Setup in minutes
+----------------
+
+1.  **Get the files**Clone or download this repository to your Raspberry Pi.
+    
+2.  sudo bash install.sh
+    
+3.  **Open the dashboard**Visit the Pi’s IP in your browser (e.g. http://192.168.1.23/), follow the **first-time setup**, and you’re done.
+    
+
+You’ll then see:
+
+*   **Service status** (active/enabled, PID, version, flags)
+    
+*   **Traffic graph (48h)** and **RX/TX totals**
+    
+*   **Live logs** with quick filters (info/notice/warning/err/debug)
+    
+*   **Buttons** to Start/Restart/Stop the service
+    
+*   **Theme switcher** (Dark/Light)
+    
+
+Screenshots
+-----------
+
+* **Dashboard (Dark Mode)**
+  ![SnowPanel – Dashboard (Dark)](screenshots/dashboard-dark.png)
+
+* **Dashboard (Light Mode)**
+  ![SnowPanel – Dashboard (Light)](screenshots/dashboard-light.png)
+
+* **Login Panel**
+  ![SnowPanel – Login](screenshots/login.png)
+
+    
+
+Frequently asked questions
+--------------------------
+
+**Do I need to open ports on my router?**No. Snowflake uses WebRTC and works without inbound port forwarding. Ensure outbound UDP and your chosen ephemeral range are permitted by your firewall.
+
+**Will my IP be used to browse the web (like an exit)?**No. You are running a **Snowflake proxy**, not a Tor exit relay. You’re helping censored users reach Tor by relaying their WebRTC connection to the Tor network.
+
+**Why does my graph show zeros at first?**Clients are matched via the Snowflake broker. If no clients have been assigned recently, traffic may be low. Leave the proxy running—connections arrive intermittently based on global demand.
+
+**How do I verify it’s actually working?**
+
+*   The **Service** card shows active and a valid **PID**.
+    
+*   **Logs** show lines like Proxy starting and occasional connection/traffic info.
+    
+*   The **Traffic** chart and **RX/TX totals** update after clients connect.
+    
+*   On the host, systemctl status snowflake-proxy will show **IP accounting** (bytes in/out) if enabled.
+    
+
+**Is the dashboard safe to expose to the internet?**Keep it **local-only**. There’s no need to expose the panel externally. If you must, put it behind proper auth/VPN and understand the risk.
+
+**Can I change broker/STUN/range later?**Yes—re-run the setup or adjust configuration via the UI (where available) and restart the service.
+
+Troubleshooting
+---------------
+
+**I only see (no logs) in the panel.**
+
+*   Ensure the installer placed helper scripts and sudoers entries correctly.
+    
+*   Confirm journald is default (not forward-only) and that snowflake-proxy actually logs.
+    
+*   Try journalctl -u snowflake-proxy -n 200 on the host to verify log output exists.
+    
+
+**Graph shows zero traffic.**
+
+*   systemctl status snowpanel-collector.timer
+    
+*   Leave the proxy running; client assignments are intermittent.
+    
+*   Verify outbound UDP isn’t blocked by your router/ISP and your chosen ephemeral range is allowed.
+    
+
+**Service shows active but no connections.**
+
+*   This can be normal during quiet periods. Keep the device on.
+    
+*   Check **Broker URL** and **STUN** settings you used during setup.
+    
+
+Join the network
+----------------
+
+Power up your Raspberry Pi, run the installer, complete the setup, and let Snowpanel do the rest. Your small proxy can make a **real difference** for someone trying to reach a freer internet.
+
+Keywords (for discoverability)
+------------------------------
+
+Raspberry Pi Snowflake proxy, Tor Snowflake dashboard, easy Snowflake setup, bypass censorship WebRTC, run a Tor Snowflake node at home, open-source Snowflake panel, simple Snowflake web interface, live Snowflake traffic graphs, secure Snowflake management, Raspberry Pi privacy project, Snowflake proxy Raspberry Pi guide, local web dashboard for Snowflake, dark mode Snowflake panel, lightweight Snowflake admin UI
\ No newline at end of file
diff --git a/bin/snowpanel-collect.py b/bin/snowpanel-collect.py
new file mode 100644
index 0000000..532c67b
--- /dev/null
+++ b/bin/snowpanel-collect.py
@@ -0,0 +1,126 @@
+#!/usr/bin/env python3
+import json, subprocess, time, os, sys, math, shutil
+from datetime import datetime, timezone, timedelta
+
+STATE_DIR = "/var/lib/snowpanel"
+STATS = os.path.join(STATE_DIR, "stats.json")
+META  = os.path.join(STATE_DIR, "meta.json")
+CFG   = "/etc/snowpanel/app.json"
+
+def sh(cmd):
+    return subprocess.run(cmd, stdout=subprocess.PIPE, stderr=subprocess.DEVNULL, text=True).stdout.strip()
+
+def load_json(path, default):
+    try:
+        with open(path, "r") as f: return json.load(f)
+    except Exception:
+        return default
+
+def save_json(path, obj):
+    tmp = path + ".tmp"
+    with open(tmp, "w") as f:
+        json.dump(obj, f, separators=(",", ":"), ensure_ascii=False)
+    os.replace(tmp, path)
+
+def now():
+    return int(time.time())
+
+def service_bytes():
+    out = sh(["/bin/systemctl","show","-p","IPIngressBytes","-p","IPEgressBytes","snowflake-proxy"])
+    rx = tx = 0
+    for line in out.splitlines():
+        if line.startswith("IPIngressBytes="):
+            try: rx = int(line.split("=",1)[1] or "0")
+            except: pass
+        elif line.startswith("IPEgressBytes="):
+            try: tx = int(line.split("=",1)[1] or "0")
+            except: pass
+    return rx, tx
+
+def period_start_for_reset_day(reset_day: int) -> int:
+    reset_day = max(1, min(28, int(reset_day or 1)))
+    now_dt = datetime.now(timezone.utc).astimezone()
+    year = now_dt.year
+    month = now_dt.month
+    this_start = datetime(year, month, reset_day, 0, 0, 0, tzinfo=now_dt.tzinfo)
+    if now_dt >= this_start:
+        start = this_start
+    else:
+        if month == 1:
+            year -= 1; month = 12
+        else:
+            month -= 1
+        start = datetime(year, month, reset_day, 0, 0, 0, tzinfo=now_dt.tzinfo)
+    return int(start.timestamp())
+
+def main():
+    os.makedirs(STATE_DIR, exist_ok=True)
+
+    rx, tx = service_bytes()
+    t = now()
+
+    stats = load_json(STATS, {"data":[]})
+    arr = stats.get("data", [])
+    arr.append({"t": t, "read": int(rx), "written": int(tx)})
+    if len(arr) > 5000:
+        arr = arr[-5000:]
+    stats["data"] = arr
+    save_json(STATS, stats)
+
+    cfg = load_json(CFG, {})
+    cap_gb        = int(cfg.get("cap_gb", 0))
+    cap_reset_day = int(cfg.get("cap_reset_day", 1))
+    rate_mbps     = int(cfg.get("rate_mbps", 0))
+
+    start_ts = period_start_for_reset_day(cap_reset_day)
+
+    rx_sum = 0
+    tx_sum = 0
+    prev = None
+    for point in arr:
+        if point["t"] < start_ts:
+            continue
+        if prev is not None:
+            dt = point["t"] - prev["t"]
+            if dt <= 0 or dt > 3600:
+                prev = point; continue
+            dr = max(0, point["read"]    - prev["read"])
+            dw = max(0, point["written"] - prev["written"])
+            rx_sum += dr
+            tx_sum += dw
+        prev = point
+
+    total = rx_sum + tx_sum
+    cap_bytes = cap_gb * 1024 * 1024 * 1024 if cap_gb > 0 else 0
+
+    current_rate_mbps = 0.0
+    if len(arr) >= 2:
+        a = arr[-2]; b = arr[-1]
+        dt = max(1, b["t"] - a["t"])
+        dr = max(0, b["read"]    - a["read"])
+        dw = max(0, b["written"] - a["written"])
+        current_rate_mbps = ((dr + dw) * 8.0) / dt / 1_000_000.0
+
+    label = datetime.fromtimestamp(start_ts).strftime("%Y-%m-%d") + f" (reset day {cap_reset_day})"
+    meta = {
+        "start_ts": start_ts,
+        "period_label": label,
+        "rx": rx_sum,
+        "tx": tx_sum,
+        "total": total,
+        "cap_bytes": cap_bytes,
+        "cap_hit": False,
+        "current_rate_mbps": current_rate_mbps,
+        "rate_mbps": rate_mbps
+    }
+
+    if cap_bytes and total >= cap_bytes:
+        meta["cap_hit"] = True
+        active = sh(["/bin/systemctl","is-active","snowflake-proxy"]) == "active"
+        if active:
+            subprocess.run(["/usr/bin/sudo","/bin/systemctl","stop","snowflake-proxy"], stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL)
+
+    save_json(META, meta)
+
+if __name__ == "__main__":
+    main()
\ No newline at end of file
diff --git a/bin/snowpanel-enforce.py b/bin/snowpanel-enforce.py
new file mode 100644
index 0000000..70bc46d
--- /dev/null
+++ b/bin/snowpanel-enforce.py
@@ -0,0 +1,227 @@
+#!/usr/bin/env python3
+# -*- coding: utf-8 -*-
+import argparse
+import json
+import os
+import sys
+import time
+import subprocess
+from datetime import datetime, timedelta
+
+APP_JSON_CANDIDATES = ["/etc/snowpanel/app.json", "/var/lib/snowpanel/app.json"]
+LIMITS_JSON_CANDIDATES = ["/etc/snowpanel/limits.json", "/var/lib/snowpanel/limits.json"]
+
+STATE_DIR = "/var/lib/snowpanel"
+META_JSON = os.path.join(STATE_DIR, "meta.json")
+STATS_JSON = os.path.join(STATE_DIR, "stats.json")
+
+SYSTEMCTL = "/bin/systemctl"
+
+def pretty_bytes(n: int) -> str:
+    n = int(n)
+    units = ["B", "KB", "MB", "GB", "TB"]
+    i = 0
+    f = float(n)
+    while f >= 1024 and i < len(units) - 1:
+        f /= 1024.0
+        i += 1
+    if i == 0:
+        return f"{int(f)} {units[i]}"
+    return f"{f:.2f} {units[i]}"
+
+def load_first_json(paths):
+    for p in paths:
+        try:
+            with open(p, "r", encoding="utf-8") as f:
+                return json.load(f)
+        except Exception:
+            pass
+    return {}
+
+def save_json_atomic(path, obj):
+    tmp = f"{path}.tmp"
+    with open(tmp, "w", encoding="utf-8") as f:
+        json.dump(obj, f, ensure_ascii=False, indent=2)
+    os.replace(tmp, path)
+
+def period_bounds(reset_day: int):
+    reset_day = max(1, min(28, int(reset_day or 1)))
+    now = datetime.now()
+    year = now.year
+    month = now.month
+    if now.day < reset_day:
+        month -= 1
+        if month == 0:
+            month = 12
+            year -= 1
+    start = datetime(year, month, reset_day, 0, 0, 0)
+
+    end_guess = start + timedelta(days=32)
+    end_year, end_month = end_guess.year, end_guess.month
+    try:
+        end = datetime(end_year, end_month, reset_day, 0, 0, 0)
+    except ValueError:
+        end = datetime(end_year, end_month, 1, 0, 0, 0)
+    return start, end
+
+def period_label(start: datetime, end: datetime) -> str:
+    return f"{start.strftime('%b %-d')} → {end.strftime('%b %-d')}"
+
+def load_limits():
+    cfg = load_first_json(APP_JSON_CANDIDATES)
+
+    cap_gb = 0
+    cap_reset_day = 1
+    rate_mbps = 0
+
+    if cfg:
+        cap_gb        = int(cfg.get("cap_gb", 0) or 0)
+        cap_reset_day = int(cfg.get("cap_reset_day", 0) or 0)
+        rate_mbps     = int(cfg.get("rate_mbps", 0) or 0)
+        lim = cfg.get("limits") or {}
+        if cap_gb == 0:        cap_gb        = int(lim.get("cap_gb", 0) or 0)
+        if cap_reset_day == 0: cap_reset_day = int(lim.get("cap_reset_day", 0) or 0)
+        if rate_mbps == 0:     rate_mbps     = int(lim.get("rate_mbps", 0) or 0)
+
+    if cap_gb == 0 or cap_reset_day == 0 or rate_mbps == 0:
+        legacy = load_first_json(LIMITS_JSON_CANDIDATES)
+        if legacy:
+            if cap_gb == 0:        cap_gb        = int(legacy.get("cap_gb", 0) or 0)
+            if cap_reset_day == 0: cap_reset_day = int(legacy.get("cap_reset_day", 1) or 1)
+            if rate_mbps == 0:     rate_mbps     = int(legacy.get("rate_mbps", 0) or 0)
+
+    cap_gb        = max(0, cap_gb)
+    cap_reset_day = min(28, max(1, cap_reset_day or 1))
+    rate_mbps     = max(0, rate_mbps)
+    return cap_gb, cap_reset_day, rate_mbps
+
+def load_usage(period_start_ts: int, period_end_ts: int, verbose: bool = False):
+    usage = {
+        "start_ts": period_start_ts,
+        "period_label": "",
+        "rx": 0,
+        "tx": 0,
+        "total": 0,
+        "cap_bytes": 0,
+        "cap_hit": False,
+    }
+
+    try:
+        with open(META_JSON, "r", encoding="utf-8") as f:
+            meta = json.load(f) or {}
+    except Exception:
+        meta = {}
+
+    if meta:
+        meta_start = int(meta.get("start_ts") or 0)
+        if meta_start >= period_start_ts and meta_start < period_end_ts:
+            for k in ("start_ts", "period_label", "rx", "tx", "total", "cap_bytes", "cap_hit"):
+                if k in meta:
+                    usage[k] = meta[k]
+            if verbose:
+                print("Using usage from meta.json")
+            return usage
+
+    if verbose:
+        print("meta.json missing/out-of-period, estimating from stats.json")
+
+    try:
+        with open(STATS_JSON, "r", encoding="utf-8") as f:
+            s = json.load(f) or {}
+            rows = s.get("data") or []
+    except Exception:
+        rows = []
+
+    rows = sorted(rows, key=lambda r: int(r.get("t", 0)))
+    prev = None
+    total_rx = 0
+    total_tx = 0
+    for r in rows:
+        t = int(r.get("t", 0))
+        if t < period_start_ts or t >= period_end_ts:
+            continue
+        if prev is not None:
+            dr = max(0, int(r.get("read", 0)) - int(prev.get("read", 0)))
+            dw = max(0, int(r.get("written", 0)) - int(prev.get("written", 0)))
+            total_rx += dr
+            total_tx += dw
+        prev = r
+
+    usage["rx"] = total_rx
+    usage["tx"] = total_tx
+    usage["total"] = total_rx + total_tx
+    usage["start_ts"] = period_start_ts
+    usage["period_label"] = period_label(datetime.fromtimestamp(period_start_ts),
+                                         datetime.fromtimestamp(period_end_ts))
+    usage["cap_bytes"] = 0
+    usage["cap_hit"] = False
+    return usage
+
+def update_meta_cap_hit(cap_hit: bool, period_start_ts: int, period_end_ts: int, verbose: bool = False):
+    try:
+        meta = {}
+        if os.path.isfile(META_JSON):
+            with open(META_JSON, "r", encoding="utf-8") as f:
+                meta = json.load(f) or {}
+
+        meta_start = int(meta.get("start_ts") or 0)
+        if not (period_start_ts <= meta_start < period_end_ts):
+            meta["start_ts"] = period_start_ts
+            meta["period_label"] = period_label(datetime.fromtimestamp(period_start_ts),
+                                                datetime.fromtimestamp(period_end_ts))
+        meta["cap_hit"] = bool(cap_hit)
+
+        save_json_atomic(META_JSON, meta)
+        if verbose:
+            print(f"meta.json updated: cap_hit={cap_hit}")
+    except Exception as e:
+        if verbose:
+            print(f"meta.json update skipped: {e}")
+
+def stop_service(service: str, verbose: bool = False, dry_run: bool = False):
+    cmd = [SYSTEMCTL, "stop", service]
+    if verbose:
+        print("RUN:", " ".join(cmd) if not dry_run else "(dry-run) " + " ".join(cmd))
+    if not dry_run:
+        subprocess.run(cmd, check=False)
+
+def main():
+    ap = argparse.ArgumentParser(description="SnowPanel monthly cap enforcer")
+    ap.add_argument("-v", "--verbose", action="store_true", help="verbose output")
+    ap.add_argument("--dry-run", action="store_true", help="do not stop the service")
+    ap.add_argument("--service", default="snowflake-proxy", help="systemd service name")
+    args = ap.parse_args()
+
+    cap_gb, reset_day, rate_mbps = load_limits()
+    start_dt, end_dt = period_bounds(reset_day)
+    start_ts = int(start_dt.timestamp())
+    end_ts   = int(end_dt.timestamp())
+
+    usage = load_usage(start_ts, end_ts, verbose=args.verbose)
+    cap_bytes = usage.get("cap_bytes") or (cap_gb * (1024 ** 3))
+    total = int(usage.get("total") or 0)
+
+    if args.verbose:
+        print(f"Limits: cap_gb={cap_gb}, reset_day={reset_day}")
+        print(f"Usage : total={total}B cap={cap_bytes}B start_ts={start_ts}")
+        if cap_bytes > 0:
+            pct = min(100, round(total * 100 / cap_bytes)) if cap_bytes else 0
+            print(f"        {pretty_bytes(total)} / {pretty_bytes(cap_bytes)}  ({pct}%)")
+        else:
+            print("        Unlimited cap")
+
+    if cap_bytes > 0 and total >= cap_bytes:
+        update_meta_cap_hit(True, start_ts, end_ts, verbose=args.verbose)
+        if args.verbose:
+            print(f"Cap reached — stopping {args.service}.")
+        stop_service(args.service, verbose=args.verbose, dry_run=args.dry_run)
+    else:
+        update_meta_cap_hit(False, start_ts, end_ts, verbose=args.verbose)
+        if args.verbose:
+            print("Cap not reached — no action.")
+
+if __name__ == "__main__":
+    try:
+        main()
+    except KeyboardInterrupt:
+        sys.exit(130)
\ No newline at end of file
diff --git a/bin/snowpanel-logdump b/bin/snowpanel-logdump
new file mode 100644
index 0000000..52aea7b
--- /dev/null
+++ b/bin/snowpanel-logdump
@@ -0,0 +1,33 @@
+#!/usr/bin/env bash
+set -Eeuo pipefail
+LINES="${1:-500}"
+LEVEL="${2:-info}"
+case "$LINES" in ''|*[!0-9]* ) LINES=500 ;; esac
+case "$LEVEL" in debug|info|notice|warning|err) ;; * ) LEVEL=info ;; esac
+
+strip(){ sed -E 's/^.*\]:[[:space:]]*//'; }
+
+app_logs=""
+if out="$(journalctl -t snowflake-proxy -p "$LEVEL" -n $((LINES*3)) -o short-iso --no-pager 2>/dev/null)"; then
+  app_logs="$out"
+elif out="$(journalctl _COMM=snowflake-proxy -p "$LEVEL" -n $((LINES*3)) -o short-iso --no-pager 2>/dev/null)"; then
+  app_logs="$out"
+fi
+
+sys_lines=""
+if out="$(journalctl -u snowflake-proxy.service -p "$LEVEL" -n $((LINES*6)) -o short-iso --no-pager 2>/dev/null | grep -E ' (Started|Stopped|Stopping|Restarted|Reloaded|Failed) snowflake-proxy\.service|snowflake-proxy\.service: Consumed ')"; then
+  sys_lines="$out"
+fi
+
+combined="$(printf "%s\n%s\n" "${app_logs:-}" "${sys_lines:-}" | sed '/^[[:space:]]*$/d' | sort)"
+if [[ -n "$combined" ]]; then
+  echo "$combined" | tail -n "$LINES" | strip
+  exit 0
+fi
+
+if out="$(systemctl status snowflake-proxy --no-pager -l 2>/dev/null | grep -E ' snowflake-proxy\[[0-9]+\]:| (Started|Stopped|Stopping|Restarted|Reloaded|Failed) snowflake-proxy\.service|snowflake-proxy\.service: Consumed ')"; then
+  echo "$out" | tail -n "$LINES" | strip
+  exit 0
+fi
+
+exit 0
\ No newline at end of file
diff --git a/bin/snowpanel-shaper b/bin/snowpanel-shaper
new file mode 100644
index 0000000..b3ebe9d
--- /dev/null
+++ b/bin/snowpanel-shaper
@@ -0,0 +1,143 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+read_cfg() {
+  python3 - "$@" <<'PY'
+import json,sys
+cands=["/var/lib/snowpanel/app.json","/etc/snowpanel/app.json","/etc/snowpanel/limits.json","/var/lib/snowpanel/limits.json"]
+rate=0
+for p in cands:
+    try:
+        with open(p,"r",encoding="utf-8") as f:
+            j=json.load(f)
+        if isinstance(j,dict):
+            v=j.get("rate_mbps") or (j.get("limits",{}) if isinstance(j.get("limits"),dict) else {}).get("rate_mbps")
+            if v is not None:
+                rate=int(v)
+                break
+    except Exception:
+        pass
+print(rate)
+PY
+}
+
+get_iface() {
+  local ifs=() d4 d6
+  d4=$(ip -o -4 route show to default 2>/dev/null | awk '{print $5}' | head -n1 || true)
+  d6=$(ip -o -6 route show ::/0      2>/dev/null | awk '{print $5}' | head -n1 || true)
+  [[ -n "${d4:-}" ]] && ifs+=("$d4")
+  [[ -n "${d6:-}" && "${d6:-}" != "${d4:-}" ]] && ifs+=("$d6")
+  [[ ${#ifs[@]} -eq 0 ]] && { echo ""; return 1; }
+  echo "${ifs[0]}"
+}
+
+get_uid() {
+  local u pid
+  u=$(systemctl show -p User --value snowflake-proxy 2>/dev/null || true)
+  if [[ -n "${u:-}" ]]; then id -u "$u" 2>/dev/null || true; return 0; fi
+  if id -u snowflake &>/dev/null; then id -u snowflake; return 0; fi
+  pid=$(systemctl show -p MainPID --value snowflake-proxy 2>/dev/null || true)
+  if [[ -n "${pid:-}" && -r "/proc/$pid/status" ]]; then awk '/^Uid:/{print $2; exit}' "/proc/$pid/status"; return 0; fi
+  echo ""
+}
+
+ipt_add() {
+  local bin="$1" chain="$2" rule="$3"
+  "$bin" -t mangle -N "$chain" 2>/dev/null || true
+  "$bin" -t mangle -C OUTPUT -j "$chain" 2>/dev/null || "$bin" -t mangle -A OUTPUT -j "$chain"
+  eval "$bin -t mangle -C $chain $rule" 2>/dev/null || eval "$bin -t mangle -A $chain $rule"
+}
+ipt_in_add() {
+  local bin="$1" chain="$2"
+  "$bin" -t mangle -N "$chain" 2>/dev/null || true
+  "$bin" -t mangle -C PREROUTING -j "$chain" 2>/dev/null || "$bin" -t mangle -A PREROUTING -j "$chain"
+  "$bin" -t mangle -C "$chain" -j CONNMARK --restore-mark 2>/dev/null || "$bin" -t mangle -A "$chain" -j CONNMARK --restore-mark
+}
+ipt_clear() {
+  local bin="$1"
+  for c in SNOWPANEL SNOWPANEL_IN; do
+    while "$bin" -t mangle -D OUTPUT -j SNOWPANEL    2>/dev/null; do :; done
+    while "$bin" -t mangle -D PREROUTING -j SNOWPANEL_IN 2>/dev/null; do :; done
+    "$bin" -t mangle -F "$c" 2>/dev/null || true
+    "$bin" -t mangle -X "$c" 2>/dev/null || true
+  done
+}
+
+tc_clear() {
+  local ifc="$1"
+  tc qdisc del dev "$ifc" root    2>/dev/null || true
+  tc qdisc del dev "$ifc" ingress 2>/dev/null || true
+  tc qdisc del dev ifb0 root      2>/dev/null || true
+  tc qdisc del dev ifb0 ingress   2>/dev/null || true
+  ip link set ifb0 down           2>/dev/null || true
+  ip link delete ifb0 type ifb    2>/dev/null || true
+}
+
+tc_apply() {
+  local ifc="$1" rate_kbit="$2"
+  tc qdisc replace dev "$ifc" root handle 1: htb default 30
+  tc class add    dev "$ifc" parent 1: classid 1:1  htb rate 10000000kbit ceil 10000000kbit 2>/dev/null || \
+  tc class change dev "$ifc" parent 1: classid 1:1  htb rate 10000000kbit ceil 10000000kbit
+  tc class add    dev "$ifc" parent 1:1 classid 1:10 htb rate "${rate_kbit}kbit" ceil "${rate_kbit}kbit" 2>/dev/null || \
+  tc class change dev "$ifc" parent 1:1 classid 1:10 htb rate "${rate_kbit}kbit" ceil "${rate_kbit}kbit"
+  tc class add    dev "$ifc" parent 1:1 classid 1:30 htb rate 9000000kbit ceil 10000000kbit 2>/dev/null || \
+  tc class change dev "$ifc" parent 1:1 classid 1:30 htb rate 9000000kbit ceil 10000000kbit
+  tc filter replace dev "$ifc" parent 1: protocol all handle 0x1 fw flowid 1:10
+
+  modprobe ifb numifbs=1 2>/dev/null || true
+  ip link add ifb0 type ifb 2>/dev/null || true
+  ip link set dev ifb0 up
+  tc qdisc replace dev "$ifc" ingress
+  tc filter replace dev "$ifc" parent ffff: protocol all u32 match u32 0 0 action mirred egress redirect dev ifb0
+
+  tc qdisc replace dev ifb0 root handle 2: htb default 30
+  tc class add    dev ifb0 parent 2: classid 2:1  htb rate 10000000kbit ceil 10000000kbit 2>/dev/null || \
+  tc class change dev ifb0 parent 2: classid 2:1  htb rate 10000000kbit ceil 10000000kbit
+  tc class add    dev ifb0 parent 2:1 classid 2:10 htb rate "${rate_kbit}kbit" ceil "${rate_kbit}kbit" 2>/dev/null || \
+  tc class change dev ifb0 parent 2:1 classid 2:10 htb rate "${rate_kbit}kbit" ceil "${rate_kbit}kbit"
+  tc class add    dev ifb0 parent 2:1 classid 2:30 htb rate 9000000kbit ceil 10000000kbit 2>/dev/null || \
+  tc class change dev ifb0 parent 2:1 classid 2:30 htb rate 9000000kbit ceil 10000000kbit
+  tc filter replace dev ifb0 parent 2: protocol all handle 0x1 fw flowid 2:10
+}
+
+apply() {
+  local rate uid ifc per_kbit
+  rate=$(read_cfg)
+  uid=$(get_uid)
+  ifc=$(get_iface || true)
+  ipt_clear iptables || true
+  ipt_clear ip6tables || true
+  if [[ -z "${ifc:-}" || -z "${uid:-}" || "$rate" -le 0 ]]; then
+    tc_clear "${ifc:-eth0}" || true
+    exit 0
+  fi
+  per_kbit=$(( rate * 1000 / 2 ))
+  [[ $per_kbit -lt 64 ]] && per_kbit=64
+
+  ipt_add iptables  SNOWPANEL   "-m owner --uid-owner $uid -j MARK --set-xmark 0x1/0x1"
+  ipt_add iptables  SNOWPANEL   "-m owner --uid-owner $uid -j CONNMARK --save-mark"
+  ipt_in_add iptables SNOWPANEL_IN
+  if command -v ip6tables >/dev/null 2>&1; then
+    ipt_add ip6tables SNOWPANEL   "-m owner --uid-owner $uid -j MARK --set-xmark 0x1/0x1"
+    ipt_add ip6tables SNOWPANEL   "-m owner --uid-owner $uid -j CONNMARK --save-mark"
+    ipt_in_add ip6tables SNOWPANEL_IN
+  fi
+
+  tc_clear "$ifc" || true
+  tc_apply "$ifc" "$per_kbit"
+}
+
+clear_all() {
+  local ifc
+  ifc=$(get_iface || echo eth0)
+  ipt_clear iptables  || true
+  ipt_clear ip6tables || true
+  tc_clear "$ifc"     || true
+}
+
+cmd="${1:-apply}"
+case "$cmd" in
+  apply) apply ;;
+  clear) clear_all ;;
+  *) apply ;;
+esac
\ No newline at end of file
diff --git a/install.sh b/install.sh
new file mode 100644
index 0000000..5f1a1fd
--- /dev/null
+++ b/install.sh
@@ -0,0 +1,192 @@
+#!/usr/bin/env bash
+set -euo pipefail
+C_RESET="\033[0m"; C_DIM="\033[2m"; C_BOLD="\033[1m"
+C_RED="\033[31m"; C_GRN="\033[32m"; C_BLU="\033[34m"; C_YEL="\033[33m"
+info(){  echo -e "${C_BLU}➜${C_RESET} $*"; }
+ok(){    echo -e "${C_GRN}✓${C_RESET} $*"; }
+warn(){  echo -e "${C_YEL}!${C_RESET} $*"; }
+fail(){  echo -e "${C_RED}✗${C_RESET} $*"; }
+if [[ $EUID -ne 0 ]]; then fail "Run as root (sudo)."; exit 1; fi
+SCRIPT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+
+PANEL_ROOT="/var/www/snowpanel"
+PANEL_PUBLIC="$PANEL_ROOT/public"
+STATE_DIR="/var/lib/snowpanel"
+LOG_DIR="/var/log/snowpanel"
+ETC_APP="/etc/snowpanel"
+
+NGX_SITE_AVAIL="/etc/nginx/sites-available/snowpanel"
+NGX_SITE_ENABL="/etc/nginx/sites-enabled/snowpanel"
+SUDOERS_FILE="/etc/sudoers.d/snowpanel"
+
+COLLECTOR_SRC="$SCRIPT_DIR/bin/snowpanel-collect.py"
+COLLECTOR_BIN="/usr/local/bin/snowpanel-collect.py"
+LOGDUMP_SRC="$SCRIPT_DIR/bin/snowpanel-logdump"
+LOGDUMP_BIN="/usr/local/bin/snowpanel-logdump"
+
+SHAPER_SRC="$SCRIPT_DIR/bin/snowpanel-shaper"
+SHAPER_BIN="/usr/local/bin/snowpanel-shaper"
+SHAPER_SVC="/etc/systemd/system/snowpanel-shaper.service"
+SHAPER_PATH="/etc/systemd/system/snowpanel-shaper.path"
+
+SVC="/etc/systemd/system/snowpanel-collector.service"
+TIMER="/etc/systemd/system/snowpanel-collector.timer"
+SF_DROPIN_DIR="/etc/systemd/system/snowflake-proxy.service.d"
+SF_ACCOUNTING="$SF_DROPIN_DIR/10-accounting.conf"
+
+export DEBIAN_FRONTEND=noninteractive
+
+echo -e "${C_BOLD}Installing SnowPanel...${C_RESET}"
+
+info "Updating apt and installing packages"
+apt-get update -y >/dev/null
+apt-get install -y --no-install-recommends snowflake-proxy nginx rsync php-fpm php-cli php-json php-curl php-zip php-common php-opcache python3 iproute2 iptables >/dev/null
+ok "Packages installed"
+
+PHPV=$(php -r 'echo PHP_MAJOR_VERSION.".".PHP_MINOR_VERSION;' 2>/dev/null || echo "8.2")
+PHP_FPM_SVC="php${PHPV}-fpm"
+PHP_SOCK="/run/php/php${PHPV}-fpm.sock"
+ln -sf "$PHP_SOCK" /run/php/php-fpm.sock || true
+
+info "Preparing directories"
+install -d "$PANEL_PUBLIC" "$STATE_DIR" "$LOG_DIR" "$ETC_APP"
+install -d -m 0755 /usr/local/bin
+chown -R www-data:www-data "$PANEL_ROOT" || true
+chown -R www-data:www-data "$STATE_DIR" "$LOG_DIR" || true
+chmod 750 "$PANEL_ROOT" "$STATE_DIR" "$LOG_DIR"
+ok "Directories ready"
+
+info "Deploying web"
+rsync -a --delete "$SCRIPT_DIR/web/" "$PANEL_PUBLIC/"
+chown -R www-data:www-data "$PANEL_PUBLIC"
+ok "Web deployed"
+
+info "Seeding state"
+echo -n '{"data":[]}' > "$STATE_DIR/stats.json"
+chown www-data:www-data "$STATE_DIR/stats.json"
+chmod 640 "$STATE_DIR/stats.json"
+ok "State seeded"
+
+info "Writing Nginx site"
+cat > "$NGX_SITE_AVAIL" <<'NGINX'
+server {
+    listen 80 default_server;
+    server_name _;
+    root /var/www/snowpanel/public;
+    index index.php index.html;
+    location / {
+        try_files $uri $uri/ /index.php?$args;
+    }
+    location ~ \.php$ {
+        include snippets/fastcgi-php.conf;
+        fastcgi_pass unix:/run/php/php-fpm.sock;
+    }
+    location ~ /\. {
+        deny all;
+    }
+}
+NGINX
+rm -f /etc/nginx/sites-enabled/default || true
+ln -sf "$NGX_SITE_AVAIL" "$NGX_SITE_ENABL"
+ok "Nginx site enabled"
+
+info "Installing helpers"
+install -m 0755 "$COLLECTOR_SRC" "$COLLECTOR_BIN"
+install -m 0755 "$LOGDUMP_SRC" "$LOGDUMP_BIN"
+install -m 0755 "$SHAPER_SRC" "$SHAPER_BIN"
+install -d -m 0750 -o www-data -g www-data "$STATE_DIR"
+ok "Helpers installed"
+
+info "Granting sudoers"
+cat > "$SUDOERS_FILE" <<SUD
+www-data ALL=NOPASSWD:/usr/local/bin/snowpanel-logdump
+www-data ALL=NOPASSWD:/bin/systemctl start snowflake-proxy, /bin/systemctl stop snowflake-proxy, /bin/systemctl restart snowflake-proxy
+www-data ALL=NOPASSWD:/bin/systemctl restart snowpanel-shaper
+SUD
+chmod 440 "$SUDOERS_FILE"
+ok "Sudoers set"
+
+info "Enabling systemd IP accounting"
+mkdir -p "$SF_DROPIN_DIR"
+cat > "$SF_ACCOUNTING" <<EOF
+[Service]
+IPAccounting=yes
+EOF
+ok "Accounting drop-in written"
+
+info "Creating collector units"
+cat > "$SVC" <<'UNIT'
+[Unit]
+Description=SnowPanel minute collector
+After=snowflake-proxy.service
+
+[Service]
+Type=oneshot
+User=www-data
+Group=www-data
+ExecStart=/usr/bin/env python3 /usr/local/bin/snowpanel-collect.py
+UNIT
+cat > "$TIMER" <<'TIMER'
+[Unit]
+Description=Run SnowPanel collector every minute
+
+[Timer]
+OnCalendar=*-*-* *:*:00
+Persistent=true
+Unit=snowpanel-collector.service
+
+[Install]
+WantedBy=timers.target
+TIMER
+ok "Collector units created"
+
+info "Creating shaper units"
+cat > "$SHAPER_SVC" <<'UNIT'
+[Unit]
+Description=SnowPanel traffic shaper for snowflake-proxy
+After=network-online.target snowflake-proxy.service
+Wants=network-online.target
+
+[Service]
+Type=oneshot
+ExecStart=/usr/local/bin/snowpanel-shaper apply
+ExecStop=/usr/local/bin/snowpanel-shaper clear
+RemainAfterExit=yes
+
+[Install]
+WantedBy=multi-user.target
+UNIT
+
+cat > "$SHAPER_PATH" <<'PATHUNIT'
+[Unit]
+Description=Watch SnowPanel limits and reapply shaper
+
+[Path]
+PathChanged=/var/lib/snowpanel/app.json
+PathChanged=/etc/snowpanel/app.json
+PathChanged=/etc/snowpanel/limits.json
+PathChanged=/var/lib/snowpanel/limits.json
+
+[Install]
+WantedBy=multi-user.target
+PATHUNIT
+ok "Shaper units created"
+
+info "Restarting services"
+systemctl daemon-reload
+systemctl enable "$PHP_FPM_SVC" nginx >/dev/null 2>&1 || true
+systemctl restart "$PHP_FPM_SVC" || true
+systemctl restart nginx
+systemctl enable --now snowflake-proxy >/dev/null 2>&1 || true
+systemctl restart snowflake-proxy || true
+systemctl enable --now snowpanel-collector.timer
+systemctl start snowpanel-collector.service || true
+systemctl enable --now snowpanel-shaper.service snowpanel-shaper.path
+systemctl restart snowpanel-shaper.service || true
+ok "Services running"
+
+IP=$(hostname -I 2>/dev/null | awk '{print $1}')
+echo
+echo -e "${C_BOLD}All set!${C_RESET}"
+echo -e "URL: ${C_GRN}http://$IP/${C_RESET}"
+echo -e "  First run: you'll see a setup page to create the admin user."
\ No newline at end of file
diff --git a/screenshots/dashboard-dark.png b/screenshots/dashboard-dark.png
new file mode 100644
index 0000000000000000000000000000000000000000..3270ca556b12f2065c443e869226767b5c5280fa
GIT binary patch
literal 28998
zcmZU(WmsHI6D<k^2*D+|yAAH{3GOzy4Fn4Tf(LhZw?J@b2yVe;a1X8_xVzmU?|069
z?sI?4u%~x-b=6w6syDqmTvhoa8Zr?w3=9mKoUF7u3=BLN1_n+G=?%2yNdo|Zfq@07
zDr(B0VpHG{u~O19V&XF+W0H~4^5YP*;gYaZ&<kM`vJg-Tq2toyl5*pd^X(m;5L5B;
zc|K_7-txFTsAb(sgxzcB-w60T$R*x#e0kvd`bbE@jZexU<o6I65g`(IPe9K3^z;NQ
zypfaziUr?GN8c%>-F}F@`xt+xkaDMzaVr^luUC9SOu@9jzt7AmP0h@kn4Hno2QetU
zp#_K?o?dW;XbOmHZ0_tEm)~F$va<0jqv25L8h<vna@*M4PELrES1}5W&b0pQt)gR{
zoLS@(7?=H{QY=&Ni))bEx5%4cR7Dl_oF@5#HhB_4B1}33(}MDDKW}N23zK_qf%0-(
z?3{KX-}&U7iyC^#gaxP+MVngM7!0NLT~fzp=E+!q?2d{b8_kSN(n4K7JDZq%ORKDz
zxVEF0b2VYGtO{=~O7ph+<zLb)NGUM5@}QjX<Q3J_pTh7#?Hr3hbUQdY(}$MLY&KMX
z@DmIS1&o}ugr@uAVfKU0;sRNpX^F`<xOzNIo0_AAQa5RK6r68<<Fj*fz~)j6Rg*cb
zi$Dl*)ltUFOHLxZtUE*O1Wl7$H*?k^y1A&WFW>IBt#IAKPvpoq6(;<jDlNU{x(_7>
zJf}lfU5nCJuWB{g541bQ%67&sTim?=DxS1XldtT7_>iyibn<jWm{;?(1vSc0&MK3z
z1+){3-}2V49#UwFeX?o4La+GD{l(}?qQZY;|D72N8%BmMIpQ0@0CqXONniaaui2UX
z3_e&-1A-WedpvCl94J4IyXqh6-6znia@Hl4vW;uIPbPzQcG<1nO!2C49o*EiaBOb{
zSZM~E+J?`nXx&Ca2M7#;!-0@$Qf++n1l`V63$%VvA;1Y(_#?rE72*<XN^FUc>ut)<
zo(l3Z<;P6ru?yZ1H_*nP@EidhRrI0rdb$DWjL?))aHUgt_)~ZAEYOthSL+7A@WAY-
z8TKpqr83q?p_o3i0fQ4($R$$*00oE#2FzOl@mc_Co_bW(RD0oSTB-Gkw1axgz#Xt%
z#->Rn1Q{_NgjU1;RUw53;9@%XAytN-MwCTvD(tHFdl`gD?dmVMjILa{dSei58ETo(
zGcsWbtd0jYQ$Qjju|4Vpi>!6!m)ye_0BZ8qR}>D59wKx3fi`Od*StercGWf*((TPG
znaEPMRv?#9!21ve)NH|_E~-@A)ZV6dYWJiYNgcMdl(|&679zi<WDAd7Y~t^0ui7fe
zr41Fo@>%NXrQyEQW*P+ND5YFs4N9iWVu3ZK3eDxMQec6lg5X>2%oxBd$Wh3E6gWwq
zv9F6f6oKua1dvmEZ{4*GE)i8`ti!SZz8M9tHZ`;VB-I-P16+ajJvTa97KPf!Cpz4U
zvyO!ifR0HJ&(yFVU>_|1_IIE<8Zb#)j0(}ReOtG?P&N%SIDk>{xCdV4(nZxYnNgc=
zZ~{ZR9+td0Iwvj|aNwax>!Ofy1q)1ZVP$?eJ^kXQLP#6IoUa&-$9BQY*wF<FH%r!=
z1t>71Xt<>Ik@lI@Qjhro>PE4FAWD8>^{^k<)VP~Xy^Y{D3Z}dWDyHQTFW0~}YMoUk
zaE0tftc7?9pM^*#040$`l>l8X<*EQ8c)Od+W=wWm(w9)k&!&zVj%*qSNCyMXJ!$*q
zISS?QqJeX{`!u0qnQ>Ym?cgQ=$4FgP_h-%b+S<BmmU}qy(aZ+Hm`d+ul#6=!tEimw
zIdPqEz;Pf-2si-f%kSD1Lk+Gt>=DDTDCUi%P)L&5{331UOe6Crnl+LtG8F_&`b+9z
zoZxP+x&o?~(q^fpA~2(kPhMrn8XTUyd9OW%SUjk~g$$|9BA_SGV9MfTuEXY|#VWee
zB@k_V4I~aEk_cdyIp_{$!??+SP}L;32LRMkEO0gHQfY@6;ka|e74k2sLM=G1!XRZ5
z3M$jgC;3#ZlwdPe8SPtI=FZ(BUZkw;8cAJk%9_pQXk_|OMlgRsU#e6b$TXS~?~nol
zo&xO+$`i)-5yvHSQY%~mXH19M%%rsyQb93ma+Af{{@4=QvZG5fM6Clr?I@;Y)Jl@s
zjQGMqDjw>)0nJx1BvXO`kT_7EmL=(gU$(0J6tYx0>m(&VXEOkZ&11r7V_Jfqv>$9*
z2Z`XG500Q34|>nR!00f0D?&sY^I1ZhNzI7{n{r^t_)Ix|aAR0V(Bwl(Al40cZtW4V
z6nCz~1))_Y0Hu?ot#j0J7KrXy!#Z_pn7jG;u|IBs!QK#^kw^*an|^8`7ev@tQ$HOi
zdd^7t$Gs9M=3Jaq?t~n=+SQ*w%IFebX<Z~P(m{X)$7iCR3`j(=yLlj@&39B0qWuf7
zd%N`;MwGq~GVUV-?E;yt4s8^as~v&(64NW?PQzzACt%7wzydf34zap#O|DzpV$}FZ
zxOxgUz4jW7NS~bpxpa^SE>8IOCr2m6|HFi*i6;bJ`m5p3hI(Rp8`enQ3PU{a&TPnj
zlW(Ah(pT=y;Xhmw?e9vpvY`X=?xG&(1$5`xB2xw91$PX;fy=eUSRoT%`e*nc!J}4|
zfj!@XNugMz;DQ^Ot=~R@f653x;soA`LcL9f>^HKN+SjdRrt=)!@`N0-qORq!e-ky7
zJBUuw(L+^8Ct`G)fES%@gxDM^?~7WDLaUi+7kV5Id+IDI!;`g;td<Z+OaFoJ{t<Wr
zwrkbq23O=+7epZlv5tTR+dGs=)jVI)c~h4s*|lsHY-rM4fGM_Y$RPlfQ7e-1inz!+
zz=eymb{T2iB5b6?O3LLs3z^Ckdz>nwzuaH2p8|5c9o~+87j3$HNYp!aE&J40b})Mr
zMPo~7p+Gk)!!$d+^G>Kul5*|&JczVBrotB^^*P^b>w1A<tLihF&7<ikb=ek~$29G|
z-kQ(?(Q(Eq_d)gk>b?^GUgp_GW(UtnWkXT!%+FajE$H*W=);AEV_8H6K5N22h0<2h
z5$ThF&J!QT-^Ar*?&C#!SuuQ-hnJ^JHs03vPg3=viz?>?*Geu9v=?tz&x(&6*FLsc
zuM&@IjpLAmi?3D559AIt<3YCzBGI`qAB9jQFfGcB2;z1oCyj$m?W?J=11JUs1_LON
z;J_3}0e*o0J`@xv(5Bbs|L?5|t1`!zZ31}c;)>IuM1e9`X2T`!L;Hxit&2d{PdDHX
zpirQn+b&o`kr<onO~V+318bToDQ<rA%c}mhz#oTTfyH6YPfVe6TQT%HoC;(LL;q$Q
zIhsQpFK&l0bSPlitd7nPKmpm3NkC|(8(oA4`&GciAv8<-K)XYI<O>EuyMm<gde|km
z*uuv{aS-6Zet?fuwqL!yTh81p4uq87BSCwTgjIxBMp~R_+%xq<Zogf29T2yNVcisp
z7P?`=TfhR*CA5JZOY}K5W;}@|b2{O3PdMe}d#GE6qZMQ2p^jtXuO4Aq+;N_-+&4KK
z0@8&=8B<v2k57D<>BYzg9$)0>*i<4e(MO=5Q9vjM&sE+l3?1xUOeyKbWZN64;49D@
zD>O$QdN5`J7nux;6M-X%p|4#TgDJO+TUNqx-C|<p-K+|6j0HTry>vPTKPT>XY$A$0
zvcX!Ry?QwI1^A<UWT6k_XvLN)B*2`_nRt^rbdZbxyK>4cx3kGP8&bFdhEg@?B%k8q
z<MBmxxF~VJt5u;F^sd8!xDY3x;#}sOy&<=4d1=%%2JgS9Q)-M1^dG)5Wt~)!<{XpL
z!54jN;CrcS>MOvQ7p4De+IxZtrAdGuGWEx-^d?G0NPHxfS59Gq-bUizjW@u5@QLHW
z!@e?s0R5h;`#863AU<B6##@`bezj#L{I4f0(0nNuJ(aUKDiteD@e0y~_?7k#j)x+B
z@GA`OF2Lx|LM=XCb^Pt3M{NBcirze1vw4ULd|WliLYZi7F7Gv<!aPNUdv5mlj`GU!
zL)^|d$;yZoD|qin<@e>$%JZ?c2cPq;wU_S_{m2eVFii7KHS(RLC|jI<9y^+)#A~7$
zoBmZfu~ZrV9CXpXmFY0Q^CR(m@@{hK@2BpA>~Z`mY#r+7J4q@v+4moiTCou{!(Ltg
z9R@Hp;BOUu$T8Ayp&capF{n4ba?BxG9mhsfbsh|}#rBxOHiA>0OwWb`1p>-d17)O~
z1CBOsbz_VZKHsiw`qIHBNKhv#+u;sg9s60yPRl1lJ4o^QBtE|Un;DkXKMWfv6?9h?
zheuNzm7N}%XXBp|XDbb=+B!RP<hWM*gehkXL_5<4V`+k#+txA%cPHmyUtu6dk!neb
zYw(z#BjDUOw{Om)C`qh`zYh|{CrAqZ=Y2Q;s%9w0D6grBGWfsm*F<?0IrIxL3Q%7t
zRf)kESoI&<s6hX|zI%i65r(ZRt4qS;?oWutD6erTOX6`gJb18a)NA>#oQR%`zZ}^f
z54+{aWCC6dWd#B9zCHS0A0Ia=(W1S%r9?WtmFmC%103x)q)TK~F&7r#hZ&bpmYS~4
z9C3T@r6eL|w_nx>qo#}GHLUrnGDXHU0%2R-Hj3T)d!m>Wjx1$3iISZ;h~L?N(AHR&
zHEeQS+$EV$Y4+5ApCSDo9y7!b5a%+*WQ(=8vR}ZXNbEYH!9`E-r!hyAq$rvFG}~f`
z(A8!{L+EgCzUNES<O$SCAU#c_v7(edX%ybGZf&u3icfRBLnS~d-(#@djfp7}eu6~T
zN7x!v8WEb06^8&;)(72fEv6c^omTp17PhO|uXffyO&qJ-JG|^*=1|Yt@n2H4o}}mf
zFjbR+xA3n>)CR_vvk?G!Gkxfs6a1ZQl_U*SSd*3_X$p<gjbrcv<MX{DVv~RTvn@E7
zw+~Dy{aRl20YkG7{8dej`Epbipu=H!-IKS*qX_w7tZK0=_Rnq7RIL$S^Dkd@n2Ww|
zG@Bu3IE{KOvTM>?*DiZ=D4{`VjdM{4`{0@7H%N-(4SMoeY}AszdNePM_j(fn49zls
zKpa$VaaX=Ck(Bxg0Z+nVnQvf$6bF3t<yFir25Nhm`N>a*BdqEbtv!i7u;X?;qk*r6
z^}vHv;7~|!p2J*USgAD8a9UVVIYg;%)_qi~AmV^&H>A{@?CtAp8i_k@qg_`BUNh{?
zs<`3h*TvQ>gzg=Dz%kOR{PCQ4*W{udhci`fII#Gf_0T4Myw8d}0kCba)jPesERmL0
zVZ6=GS}5fQXsNgHvgLmDE$}t^;wo^Fsj*O8a@}#+qQwv!=Nh@bT9TgH!VS+#<mO^7
z1<Gp_+gd5r=iel>y*uo*7ijfB?KkzA?DC1}B9Sj&xAl04)WE0f=&uu(mRIC_xV2~^
zfH#e!&r=)|S#wO3__Cp_*HefWBI0ctszBKsUBRU&AMqOelmvPLg`<H~98(!xe26&P
zrwnZlCYxYx?r7wq$v5|eI(hSImXs7I7TGC)m_xUqxbvWzp3Sem;Uv5PwMGBjr$d33
zA7~s<B|`tc^7DVMp&Es@y?Q0~Ew1NB7s|`5EF!8ebio<C$F&GgkqJu`eRMgMzfU8l
z8rnf9UBOex9R_|vVr2W<pm>8QLT#qsE%HwYBw*B@#T*{+3_m`j9QZ41sUX%kh)RAJ
zOc_q17MRy(LKSH=u~zNipnUID$~3Q>`Xyn|OPQ58`L0H4gyL7k)T^rlWnk3NSS2y^
zZt=_@Bg_ILJ+uJRipzi$L2|78Qn@7OJ^)XV>Vj51S7<x&2hQBS$JAzZg?v*s<&dSe
zj6y@<*?$Sc4c@=ld6;Vhtrkqm#$HCOfTivhYZ1HcZCrm#50lYGVuA@mMD#$D+Ibvq
z{Av?S*c`=<hLA&Nwg`Gi26z;I+LW#DzpyHf-9*oxCM(TDk4+33Jxf=Rj~a)9N$0wE
z^m(_uuswos;5{|R)t}p_oF11q4vf}pF8+M2Se!<IINjczv(QEw$v!$STf7GMkqT0x
z*l2Y^s-gDQT&Xt82jaYWH$^l@r@%%hoy$5~lqQhfQuaXo?8%E)A6|{;eVA<V$F*Zw
z&klQfRkkMIJ>Fwp>L==}c4K%4B@{mtZ2YcT&$ezLJ)j<{uZ$@@jZhxqy!_Rm*;Ch4
z24cpZe30xpc>6ij+G^2Xgx4Uk_+@hE(#PbT<=WWfQ_O2}afA80Pw=^xtKmM3M<k=&
zIf10q+s<~}(2ZBCG3ch=1TIyR^ot!*{L2umA<6&J<$r?ympcEixGT)#g30e*dl<a~
zCY84=c6s~1svUU{yWG@-Igr4%j0&2j?Ql>vPXz~)6WfPlma;g708*z-ckZ6;lf@qQ
zDzq<2#<!rWgGF`(z-J@#s88t-p=SZLM<Of89~<my=3UQ86K-2kqNaW(o2NFebC|V7
zQ}bF>Tr!w!1%F;;F8q8nNw87NC@d?2R5a;T{!J0H^8m>(01umL@AW(=Uy11aIjr6s
zd~$s#cVO9TMeWT=GS9EASQ(*Ns{GKC6)&TktcCEO@b@9=cQO_-@^cx0E9<hqfinjr
zgToj1O!zvW?QgWx&gmW1U#S0y&m>N27F%|f$m{7@_F!pp@Ib$4Wn(`SF)z)nsmD>x
zaOV@jYxLQl4e&BQhFIYYoJMRKMg2D5I!us|a(j>{x~y4X|MUK}kn~!JNYAjKl>ft_
z9UD9>@bp?dD|96Of2H*Qmep6t`~m-!*#BKaO`%x4`u5Z_$T^tED7KxeAn<U`^+Nty
z4LsGrvNv1BD!HOQFZT<UWG<Um&U<(&^1J250i|UBSj+)P-9G*qdZeAi_;`{t`b5aX
z{BruW<`c$ixrj`p_4%e(!Iz5=h;x!le_%M`+`s?UqH=;)`qjEMc(9l}?kXg{{^1>v
z`oFTzJXH3iVv#reT7d3F$|}YUHUFX9X`Sp+-+XVHT;IC()HdAG`sTmplHo-~zRXM|
zYb}on;W!r+4ea`d<Mq7Z7G^l`tAjo=$@S^&&G$DuxQPc&7dMCdYRUDhlY$31$MZJ_
zX-B`iJa3>j)T^FX@$5#A8{Gb@(`nv7&9c1^JpEL@I=<=At&R$wt8k+FqWZa*_PN%p
z)`yd_3JkX;3`IaotHr?o#&i;VX0;CHS^7qMV4LisQeNRTmn&17k2`lv4DPt=tFa?m
zT^SwrVfh!S%g>GqxQgFj8}jPsI!tft*=%oO8sLFTr#ZaX^QcvBt=>JSnH?2JhT(H-
zpxpl|vfv_H$ivY-LO;kb|AF*14X&afE&m}ga181G>-L%g^Qxey)7rm9U5;YjfW=!5
zV6(p$+H2?Fq0NF$QH|UVk7P6Ng50yS3(%Zi(b`ZhuPyDCw$v*nj$l-|zf-=FjYCEO
z696itzR<_tX+^DTWJaM!imXMq2iwid@euo$go~IUp?^mEs6-VD0C*Q<7Y}=}edpwi
z`Ys_|^X?rBWKK;cBzit}A3)%>s7<Xb%0Y-UJk*O=vD^J0V#rj_q3v}~N=d-2FO0C3
z(mif+Qr){DHiJ{YA`m=EL!2MaoAy~*Rw`SD7LSXDo?nKz)~~e|uL^$Jjz6=`bpK^X
za=OYfh2ijBWl-pifoll%G=DoB0A8Ix)(wxiK|G`}$@~<iikDRHqf;XUi&ucqfV5X#
zg)a$gG}ZnQ(+=AfoC5g#I)cCnZ4A!gm+lmL5(20)Yqn%|as<7hMSbBGVh&(9@L7rD
zwSlqYa`AZWe5|K{XyWA&YxsT`4n`aZ-NgsN!h8oXp!~alNkV|}1Ahm=z$9J$aUY*2
zhOuLDQ40Zouh9Qgsa>rAW5;}j*wQHlY^2m~4~ZlVv=?J;QQOJ`FqDgznTEnFskGBc
z0afS5dYBpC)YOmJtYiDC;#Hl#T}AhGo5dWy500WhX-j4=M+Zp&g$&-b!nsq=-}NYU
zeXnS};ea=R#1ctDhu@>Q!Yr)zL%kaIGyo>;Hb3S}T(|#RTcwNIfrEiYVPpVINO5*v
zLS91sI*JT9>8UK_c5;hoJxeWfN}A@5`K<*0dR1Fv)FZ+H4GE-G0J!@ms8l?}euG&^
zLYoSF|8u%TWcOmvKp;^&Zq!{*v39;i6fk9N?|9kHo1<*i$~)g=a9pL%h@&gYmdWg-
zsz*FtI}Ho<r|bi;VT-jzZ9pw-j-p^l2`plo6&>dDYyQHTu68e{FR2hSUp+i6VmgOW
zX6%KmXzgV>yH@3*8H_GFUF1P_o$nMt@y;&CPEW)E!|}ly28zS1CaV1%H*t<qqJ^mP
zbc%~d8tre>#mpF+EmyDpGXKQuIK~5j;xwUv(scVN`_j_*^fcg!%;MrA8N4Xh>LRY2
zW5F*Mdes-7IDWyTv}++42>uuJ%;Q+D<&V1Rqxe0<;uV2Na8$Y7`>(sjzeg^luU%Vm
znalA3oHqwkQ<c?Ri3rA4)9o_%Pj(rgJqaU@!|VPPEC|le)ZKKWP6Iu=oa|#o^2Nx)
zh!u2kpsF^{Z~_YGXvjiX3ByX6*Gp_HB+-u7@OU>A*4K!|86*&C-MZ8~avfsnMOSA$
znSW&15V|#j!igt6%Q|gHpJ@yh-n#a%#2pq)AjK;oJ>A-IJ9K^JwJZv3=|rEY;xm$#
zy{!*&<Qpck`Z0YRcDblfEV6Y$!E9@_vctVX`$8he?cnoLSW%v&g-fhaR3S1fuyrUK
z@L%90pizrPVit6(x!7dzdBld%I15uqE5I@9s>raBTv1~;_bZK~OOK;&l1qlnmYp)N
zuO<vURwt5Te{L>t8_yis=$T!uU|-uC-24wnToA&>sU64es3RDEe7qZd&D#6RrrHs=
z+#i{Xhe4!WWr7FO8re;?6{Y;Ae8}G3s;DXXu#mva?<TAmB0Ek&lj_R85tECbn*}_=
zQWru{fmIAA^@W?A6=bEo07VuOrykkp=U8K}e``LoDuAdP+*kOLKxX8_US{D5?p*1<
zo36ZB-WfiA|Akjru_j*mS711=ej2794q73u^oGr}e(gT3GejXkrF?J&RWUT{C4f+Y
zLvL%b@UryyfQbwd_xqtg5kT$2j{~u}@?>uf9OXEMHLi8*FIQy4`9TCzY^jco0yUmc
zJwr1cZ*Rr%ov|{*F1)|hU*t&yh2f)}I4y=g6;^r5Hmn*z%O~BU#8w4o8hGP>X0;;R
zzkxejTYY^Od~ebhy^U|YeAxC6)F$2udeS2aqO&B)*wFYIh+Pb9OMbVc-*a~?#%%(G
z&es~Gg#LPU6e`rv>*K_>IaXTyVWPN_-GbV6^n~ZHm;<IHcY1k%V>-xH*daUU%<|Kq
zMC)4ABY(tOpM`UMks0*=JZ2qSG-g!j;5*F~(-1^@>is#j5Ed|je8v9miDINWjK4YV
zc(070F%4XTMbx$wlT~u!^@h!o@cxbTf77>rN$T5GoBM9n+nz!k+>yx4+@Y<F1>$hO
zV;y4y?KxtGc+X=XN{}=PzJUT10Oe8sM@8b3OB$FTvdO}ys-&YMoQURMOq`=94Xpog
zAsYPw3-m7M`vD+z>o4L%&8|SoD=n{_fRe5juzF@Ir?neZArCC?y~%O}&C>Xw+vZjI
zR`4vG-x>d#fT^b<Hg}lcT{u(;U~48~vAM23^*TNsTvCP{(Cx}3L~bpgmGYLLjOvrG
zcY82`<T=r!M*G^4aLWDNbO+yH1KQcEVr7OCgx4J3*7lWm{rd7_LiN$_Mz3luR`F;3
z<H<sUQt1;+1>P&^vcR_445FDU+|@`at;3H@a*~_HYHRN*KN9O7qD|*CUc8h_=4Af%
zVQ=%VZW|4Tnx1QCD7Wql!Soa^{>w6iM4Hp<NUxY*llnL7muis9V3D;&9k+j5pXBp8
z_Ooxb4jL3UG9A2=-VidJi~)VKb=#!gz}{Hu)K~-kY3|@pw%nsv+@p3?#aMYXl@=ip
zKyBF}R3%WIWY9bV^q)`Fr6x=;kdoLz_#)O`81_G7Jm01dG(PTT`ER!f<5E@6hM#l&
zMa^g&Vm`=gk(S?d1N%^u>P-cy;DSVya1Q4g3bwyfU@0K0DIi-<MRP7;NCtgOEn=M5
z{RZ;tsa9Ou?hk}gOCLiJp`<p=ue4D>H$QW3os4$)vbR59Dk23m7<#s4rsV?Eg=^X*
zf+aJw@bf=wB57z3O~s*gI@MWNYl2NF$MviA>(6|Qk)U~PKf`u#pK$~w?#hWc7P`b~
zYYn&DNxZIgk@muq96Wnnq)M;S<r~fi<mZ<+l@S1=r;WvEpp<ylM(bp)e-&-^-C%$H
z*>abSL(|8urOd6Q%mJ_bUQ-|Y{WQfV2y|6+-ICkY(ZN^L$4P!Q9Wp#6m^VrO6@KyT
ziGt`7m-6c!#qphpn3x$7Gz-}p&wN~2JH4MR6j{ekNEU;jF&8KG>HC-kt5KBtPsU2E
zY{+6~R&o>R%AB~BF;zQdwN;>W<udoKmL$H>0UL{2Ss$KX-7^Jiwi)p;2PJH=8OOxN
zis|Fyk10js2?~e<RXzX{aD@DEJ=^T+@8#C`<Vdc&`E8oRKW2^=NoLqG{PEPA)|8(L
zy5d&nl<N8x8T=S*+`K7Cx7P7ZfHHTLG&jpw@iR*E+T^Pi$gX|ny<*5!*=9u6!d$R1
zihM|}ng($%xR^!~>HtyyJ{oLM2_t_(xR#$Khs9)h^@%Qk3KvYlZMU90Y#pSzBuK+u
zLuaiQk?Z&N7sl6Pg^fzZC|i=$CPnzQp$ORICL`tX@!}MY#H{BX(WE+H<|lkLzNhE%
zd48p(_ligh3)bWV>Y4Eyu*&C<te&3q-DzIv7N4h)4?d3yXuq#Mvp@7@!RBbNDZ)aF
zFPj8CJnv<mCgd4D-kCn+PcpXDjw`m*=95lUW_RmJH3W2hbnr2x7juxv#EJir;&+Cn
zeuK63^_iE_B+t@}<G`u#jvMdCyX^L^^N0D+BMdCxT0oD3@ft_cntw$qGwb)o|8o`~
z9)X$hn81kIz2nx1HAgzEo!Kpxv>5to;C27;GrRlYMbGiP#&$=8eOezObhouV2vAfr
zF#DT)-k4w1a4-V_7rJeE;M8>?=JUIH$brgY`u)b65IwxOS!191;6l#;M(tlN8we?5
zN|w%8?j%s7toXuo&&)?wu`-EQ=f5h(GpyHRDC1nPfr?6z;=@5;2063zeqI(Pyvj0~
zkvDMAeNFsKkOzkTOEZ!_0P=Tfo?-&(-T@6*xEXnq9Y12XX-_^xkOld8Re_N2*sasC
z^QHL~PUvx_QODxD=R;uG3K^H6>!<P~4*Q5O4_B-@9@pFNb7vCeTS=p)AE&(y>o1Jv
ziQkc3{CLWEqU?@Z@dvJTdRs#Gqg^;Twh<ah=PC6lnCS;a^tQE(25Fc%``A&Fi7Hcv
zm&_4$mdx|b%_$enHQQw3eNU6d8K^{)ZS<vAl5;zJ@5^4d+Zio*j&BwrT-2jw`L5^d
zaRjRn$)XR~OfSExQ;;nTWqL2kT(hY%ojTX<UZ-?Qp;gD4Q(Jd;*^zN6A}mc6wAL;z
z9d03y6uq*j^qm`Ut7oM8!yPG-x$e{WA(ylDkNM>D2o=pzwOnY}xa)&cI1q}xgA@NZ
z>k)@G^jO5uqR!m@b)S!SPi9@y(_jz3GM3G1h*RKew?KfdoPWjdz}@MAQq52#AQGAz
z>ObmR3fF7bO%;?QzTct7&1MpS$sv2(9+Y=y82%5WgDobf8R{w3CTi>yw(wx2-Ow9<
zptcDn)~A$@=^JPK*WA$LX;D4BEa8S4vqc4ewMrH&k6@tbxKZS*{adCz)v9MX@L~8h
z-0*d8gX5407${I&7U`xrmNGJFvd3+Q$9@(0NasT7K?utyUpkE$+!d4bo%G<L>Ensr
zbHhpNBJ)$Ts$05+j>RAyUtQ3nMDcTh;=s+O*6ycUAzkS(E(c)<*4R{~haxqo=eI*t
zVwV&(h@!kPg;s-(Szr3<WuM9TonAroL;I#&33nuxfkQL0c|aI{BNAy#t)QLxy$YL-
zY3R=8Pb6s0Ur|Q(jctsQT83<TW7=901Q`(&t1TosRLwsazU+E-GQTLExLunz&pb|3
z$)fsKh$g<F40SVyzU*+KU>ErQ=rgp=@naeLReSM+0m<(NGl+q0%k2Lo=2yWN04O%N
zg@VCD1RS6_jYI8zLbn*j76vn;L3<Fz0@yC!(}AOKj;&os-bJ^wN7=u^D|>pmqv1se
zz4R0T6R>snQmbL3WVGTL%C)yRd;@;zd;?5<x7z9ify&bs4!lX_ncEVMQ<YG3)0(;_
z$EU|Lm;u>lkCes7452*Wp?eELPYm>3`V;Si)eqr0z=4In$y@DJjh)t#g(JcXAJNil
zl3Uf4TTvC-^C=GOM<kwZHC)ueCbX+1|Hl0|r{ZCW)xtRM4Lvjf2Yedj>}Gd!*ODWo
zjXl0;iJMa3Tx+loT&zrGTr_WB7wV6?COBHiqofN{trsa$#^wkKM-|)g|LA^wP!^Gi
znp1BmdZb@sn2PcQb>bPAg5$Z2V_MX)8)G&g{6|^C$KjlMEkhMTltFu^VZ$m_N3(Mn
zZo1pQtAaXUJYV{*kyCKv82>C)XpUHzCIq?>Ll^pEi}ctnX>AuN=dSKP=3FR_2O0S4
zDHmdFc=5gvl;T&V9#PvqZF|3kPI?x;G5O>(g1F)H7R*ZAb~L5_ieej^0@@EI3aW?z
zewX)Ls7M&u<fB%v)$g!N|5*=>2%4N9M!<Gtl}$$Tj%fwW@;c!xCm_;aP&y51-0!RZ
zO%yGW;y_E8CzF8KrmU#<Ub!Q|qh((rh4)@ZAw8Hbo9a@2P<@6lt`K!+b2f07ZMgm=
zV*S;*+(9adu5i5|E$q|fA0C^3f)!_JrWgt(C$1yiqQm{oNr_RO@nq=i0b@Qvk0H|c
zt|gy`U0w=b<?0Cw1m;IlR3`Q+87g1=ts1r^Y(<}TS<$?jgWze~j$pe!1kQYlEhQD=
z{)<ZWr&*>&?9-Uz@E<h8d7VhR)N2%~G!QKC$qm)xm$V6g3{h{^?;QSb2r3HIdRA2+
zjvreB2aNRqUYTv&;~Rfs43Uhy@C}5jgXF;77j5sGRv9Qn<>bI9l2uU;?q5AmG3O7o
zfxE;zbH359;_8xzRzWuR#m&?kQYeD2c=pHl@zNqdc_<C1^!WL!ZlL!xjf9E=9?Tk0
zv7)Z?$^|w!X!keKjqsRA7vM8{B6$cL8g%d&nXuQLKI7}s)lZ?2sAadW+?4P+o8V`O
z?$5GBc8ql&F%<9u$)K47Jkaj!XAmWH{%C1D+o%&duahQ!{OtfdnYcAMLVU7G?osXf
zIY_>zSDYTHxuw_0--SFm`mmBWGKXDM*X&sB7fG$Wyn@Qj7cJ<x9B(5gGEs6m8Jo`o
z{?&_duw7^?;Uq{}8k_OwV0l}doPkC0@`)L`dCP6&@=4>@;d#8@$(yuT$Tvc9vqF%~
zDMxdS_hc@%dF0qVUckW!I!Yk{;tBc@M7pQEhTSwY)GP+2OweSN$9JD>;GANYt@PoJ
z@;o~P4oo)+uBbqN^HG{R&RTkOP$8S4eERaXB-PvJ=AqdZXoYV*4}R=AzUgd9;Sq6v
z&i}e_ApJ_n%4W6oT@^Q;d(q>UPOd-Xof3DXZm1u_J{3zZ6m1{6P(ce4^wA*B<@frX
z%|vbQq?(0JhX!=yzvluZprYY%D$~UhRR{3+J+v(&qT<Ix_S4^onAH>UIcY5D0g)5P
zQMW^Q&DAsTA0ZzoBL})R*vt>p0GLV_ghgbT<A0%ZTzO($o9grSGC__mT(pQS>=j_4
zV$@JV=Posnn4)=C_YgOctU2|d*FWvm`S1pxq(i#1qOKZG<ja=7VbLSXCBzK>;~XZ`
zNaI=+ABtq-&hc;Q$o&pOpF4I6cjyFAcsbh{@M+`|00ult>nLoUiE_H`ij9Bv<Zbeq
z_m+<2?{{5Rj`>n%qku-hs@%wmo7!veD~;{zkbHk)W*4pEmL&>EvInIt8;0@xL-uMM
zhvD~|hXYr4UMv^=&%VbK4?ou;*4&!BkPr=sE}=E!9!DzP!h<eBb1sFLG%lI<_$Gs%
zP$*tsH#_p@NX_l&7c7^yK^~oj$^J-!T|C12?wD~%_Vq;z_Sw$Mq2Zdtj}~k^N!}4&
ztdmo}-U}?bAaPDOMlpr_4hNKtRh0O9%zBLEu@^Q&Vp+I_*3h5UH(4TNEi0CA7ihfC
zX0i0Hz$`eu_ZCyc_`{^GG@$nK)Zpx$Wwd4f>r-LPQ7ze6l_gKy4ys4ix-~JDlq+XU
zvs+P=<?P|)?>mzp(X965eZB>iOVEJihOs|?!I<qnaXNAnFu%pZOqln2p98_|AdT^<
z`vU$<vnJ9+B(0uO07#c-VmxqW!kDsTj!<ak9Fynl{`tWtY894>QQ`Hz957eIqv%9m
zWLVwgn>(xX8>HccUCh@RS`a`yzfUOY)@VWAFhS@j^uLmsqsZ3&u1_!wJCzO@r4&@?
zt3r=2_~BQg9tN3=8_wz@sQm=fz7B<hU%o&OUU8ZwTQkDx1V9v%lV}+apxd5{4qCQ#
zODtQ25FcaRRuKpUd3*6B0o;;nUv#&1=*D^Otsx5x3Sx6uiybhhfVwzmpFmQiKWhYV
zo4)f-e0r_{vXPg)J)|aH?$P;HyG?!;Ou9}iM%6ebwk|#x4Z-b?;R+#7X0}Kb(R!ee
z_WkDJ<+ULRJVy~q0I#NQ*DRIU5UB8JT|ao%>aIC7taA5<?NF`p`V)DOwOFU{Vh1$k
zVsJjD7@l0<OpB4iQ?5i0b2?#3Qeh_1^^K#pjBPlY><k^c$pL+Feb(&bg<^}C%kwL4
zts7TsuGYK20I5cP4w201-#J6MCB$v$?@)cv!mQq*q9aJaVHkFW=WraFao?sK-2^U!
z4P30!lkC*e`EQHfi7T#s6njHx-6B$R-a@J>2TTC-4^MSZpe)ZW_xhtWY)w(?R%Y3J
zqj?)L`m07L<_$%OEN3vxBMM>&OusN=Vm<>TUpB^v9j?kizo#2RCx?VUe)t|j6Uww@
z82|euu=@l?cif2=L3_JYV%-g+GjM~ZFqaU%7<xQYz<a~!xCKstKHf;*gY%J<@jxVr
zRzt4(J3#VoSOuHcHn-*_65aO6Cka7&eL8c-Z-&_yi@lC!$Yl!7bdBZbE8hu8SB*aa
z6qb6bEyHvTDY%Rutd)Vxx$D#NyPd=!Smmc)6^@_cNQ$2bEk?H~5h%6eziMA3zNQ2U
zqk_HDh87iLIf|tCk01HH4g?W@6=m%DO@EeaCC+_hP|&QBUZ<o``>BM<UZ?NuP=Ez#
z%|G{RLZAhpdAj9e%j@}+%tCNr$Cmt|xtsv*NCH#nerO=FORZH4UAtrF`0ysMJOm*S
zjKu;UaEySV2>;6r)0`lT3Vt$-;t?I@gOak|^bZ?Bad?=?cq&@X=p1S@oWM>H`vU86
z0gE_YI+_TjwWykxAP)=YPJYE^%ziIhoYQZ|boOku_lfcYmbZs`svB09D=08h{Z)Ny
z;LqjAts95x9W1=CS+hMd6NW$ja{SYo@kgLv(d1X3#^qq!(Cdbp%$O!i?jhAqLjQOr
z*-mSvh~>jvt6c#%4mqyCX(gvs6TNM`uk}pB&c|j#Tf~C4k699IDsrt?oY_X(t_bR#
zpTElJVIW~qKBh&xb}qogqvLalX}}vTiMJ%&``9cMnNkGNB^M+D7#ZbRe#<3rmc9(K
zCDb&DiP)T#``U#fb<)lXiIC!?l&H36?#@8p%`bSU6J)slQKpmM$0t0J1KFRS)P&n`
z<&UZ3jVpw|){D97Jiu(bn;WEc#}fixlUua;u=^(|$;UYL{-<?4(Nd}PU2(`PQl{0#
zxP7&CiXAc&gg?$mzfgxO(B5285K*NVOlqVDgC?7B6}->7%Z>jKg*k?v;{uwEr4mEt
z!V36=qB1<!*ETOIq&yO@+4Z0|%(N3eTq`=JzIX35*AD)HS0>yc+9{g5U109(>oCMM
zU3;Tk#B>|7#9Ej!Pm<<xGq}e>AWvY;f$^~9>-|Lz_?i<{d!Xi<4NDJvwrH6s7tM+O
zq{~9U+rOVs7}#>p!`HYc)W101=^#G!E6z&&btPJ)u-akA@crYWo-S}ea8Mw4fL-5r
z(7_#-sYRAkt>9^-lcgmmW$uW@hfSLQLIODn?I4LAH|&FK>>S-bsy}u4WY1KOvpv}w
z=NM-u>J2PiEZqft!mTV}cOX(e`a0m$yW)6~qO>x)m;JrtFWF|_^xOS^1(z-b<ls7e
z%4$?mg#Kx`G?mBt-H{q@_WY&&9HdM|GQ>13r3lFTgnBJ9%4_c|OcwpY{9>um!SXM?
z!~qI98E*DI^0;kg)^|Cz`^4e*bL>1i_OMcKnUQRf831w_`*xXok3S_Jwl2+Wb8;;*
zT+j~}W@0$<C<bqPK9kbrQ<Ec_<*I;;G_w26#O8p-N)g=}P2Sd*&qh4DkjG`4xKfp?
zhZ);IPo-9i!+IVvjkP^l4V~wovZU@*+bW7lXIotwryjz<C*3Z}nKC8o3M}THv#@7E
zGO~e1B(CiIS%MTV{+j&S59Y2>m9;$J%bpG23|^u}LlUtL_z|^eG#Ewz?qcegMzCuV
z`-OUWBxdVZ&De*VP|V_~sVEJb1`}IyrQOD}F2PWVe@kEs(_@uT9$d~Ae1$`Gb1A~M
za<GC0K1?ug9K<%cqmsy98Ab=|`<z`W#c_of{GtR7oo9&z3hXq_FVwq8p6u8t+ZK~D
z)H72Tb^}k2<1m|MI=B3?rS8**xEYT{R+%5<V^Wfen!#&?hLib^XHgr31x&S;L+}<Z
zR&c-BdOq)ExY_yiOW2Cb4iInrEMQ6F#ylMS^sY!Sq#qnM;**+mbw(39?Rukh{jgVB
zJrtaP{W)W9$7O}}tTmwg=rJ&(YT-;P{k<-d(^j7q%oFR9);GzJ2-Hr6;d^$_6GQS(
zs-%1WioLzZ7N1*qi~`C9o#FS~J{$Oi!6f|edkGK&f+^<MF#(tTM6QtTZ+zVEd!La8
zKMr5v`^iEJvI{PV@s?UpSn*~Y{tkcjyc#C{wca8R!?~0w#}zS7q4AWU@*?qFpDKuV
z^xIygdQ>h?e1Cl&=wU?33M1YXCvcW9oG?!{uH^hPKT7)f%Mda5mY;90jxz!LCaZ{#
z+(?=}oklHH=-c#a_7__Jg>QUFJPfyU5_Tx4`;AwgpLWs%hI;}b8E@~zcV3qWo-}Yx
zOO}9*F<)+9)>yW^r#~`ke~-w`cA36^*DN5QgEi}jKk%>VDB%pAmk#M>J(s?d+wL*G
zD|v65@A{{YD<g1YCfxdtEhY^+;%!e!yA7kFB%i)8vN!!zGFGpiZ=0{daTm#zIjIts
z(VVNTsW2x{_ZYsk{@?6T;29w+EWros2XnIH<-TQa_fL&{s*`kc^C}nDfkm4~+G|Hb
zDxX1LI&vFw4U&nzc85M(4+wJ+cpT7&ay9J{YW|4EKXJp`y_#-0sBhHuxWSMZu=Q$`
zj`R+t)#O>-gFJ!tQOko{_rdVX2+8xS6md%AL3}0ZffA?OzrHh`5;0Xb>aN#MR=24d
zcqo4?wr`X*n9KA5zBK?w=ESv}=ldt~B}3Q4;g%dQ%-cz)YfP1S$JPPzz6bBNw9kjy
zc+*VK$0WXKyheY4SiF}NyW*Qvdi>|{)!7Q(ac7CBaQjJ_>#^?dD40xe62b8IJlGxn
z;v3B`klUE7#e}K035VQDYfCz=j~~w+6Jm7B-cpnuYZSEk>TfZNQ{17s&nEaB`|T{E
zK~DEr49hJABFJYOo{<xhmWp|1k}z;Vv(H?#`*J@7AGyT4iD%E8wZ0}t+dOzQ&I~y5
z@1<)jS&h)_l3%APV(TR!^hE0aI;_9%C`ZH;(G1n&X=zhM^ZSzvODw-M<kxCrT<(KK
zX2#at+J?^dbWwIj)P5?MxGfIdg%%EdYcx=N>Pno$yuAWmWjSzQK{2evDF6LvsQm+B
zSEJ+F9#R44NF*HGsQ{t~2pf7i>vqu0i6l3~el*qPT30VJgh}Jodvi?l<tS%c;n&3?
zykGgv0i6pEyFdPPip7W@tZY70Xj;W$#pUOMPqHO9OL~7KKShX}`2kyMN1}b~RKdcl
z1FeSQR4UjsFtNupGCU}!$|J~S;}X;J$1V%)q7N&|3HCK*aPYG}7y2cdR=->joVNw=
zCFj$!KWoK0HRhpVyaXA9(xZN@!QX&2xh9(3uzxY6)X<>ZU~F5lZJFE1Q@Fk_m4pVj
z0)CzWtHu^-H79!!$5!%+Y0HOHkI{G??~3g23`c`MG;i@8-**fUD|dMm#*C}{=&;I6
zGIGb2gU#}uIX(a6p(NQnPgq0MMI0;PS=tXL%S+E_RM?(`Z`|I;j5v!sgjCk9yrKD2
zUyk>Iv23hsOv(jyk-2q-Mm>NG7YJ*hxL%GpThB9x!sIWlQ+CxaH9`~01H-^u`AY`G
zEPkrzrEG8Cqa48e>+xXj7=}a@?Njvilo6y}M0nZL+pC0iW2gF!zl}Qxy?P-|tGM_S
zjAj(LzsD&2Xh3O_g3`&{D~NQWibf;sHJW)EgUq<mu0Pibda4I;I3BI=?I5*oaa_*R
z&`CEatp*8qvT&lz8Lm@&G2JiO`AoCTTXZ6BsU;s9MmXfq6F>KsBBQr(z^%F!E{rvR
z5>Ef5dsxi`%c3dR%LI2_yf<K`5z9~j*>9f|Q>P5}%YNN{d`Yub`|kr8QtuzFSe%x#
zhjcPBP9^<l@7A>E9r?04z227nZYeFK0>XTGcf+qmV=@|W*ho1z>o;%Y>$QAQ=kRr%
z=V$&b+V&xFdO_wWIzMi(1tGxQuvE0?AYz|nwaT-kdr9j-X;jM{c!gT#>w(4_mRIuO
z5DBC8SU|WWt`PY|jS_d=h!RV)apTF|u-mJ#!VPk-4+#*NRbA@g730>>Bl@tw4r#}=
zE1PpqP!ad$(!ah9teExVA5UpNtmf7ZOwJ+92%$_znC-DKXGN3C3A4iHSD*DugIn+W
zI8zq0g0s#O8<3;vmeQfBRJWfJG%a<tP!`fNR1eoCBSp`jm4uG=5m83u1(Uc+PQ3oX
z4@cEo$)ehUG74Aj+H=qTDu_j;7Y%gx<=i6h*@T5+;k!{tsNS#R)cxv?)R{>7Ss^)M
zqZiJ$I~{iusj9fxxr5l363p3zwtqC%g3#b>ZTUi_8Ttm;mCvhEY?+9Uf;^n`O|n_I
zR@0p`AsudKSq{task~jB>!xKeE}CuvHL4*DIB`v0ZDYYSZ|E9{=7jVu<w#(p5EXZc
zNRZ}+RyVk{VCwcMU~9C!H%^s#dqU)|;L2tbZE7gX=SsAdY81ZT^9FPNF-?2hSh$Bb
z&M`ipe8C`+RkUtdB24g0I~ezdKY3gj6F}|062Hj<W20)ns~`hcCUs3z3Wroy$jyA>
zA~^24Rep*DpWIWfCDsioGsMZ!XWT0!-9HuQ2|XpM&h2?qedp{hMiY`Ze6SRW4Et;4
zpy+>codaX$b>Xl+1*L2laL~B}xHXTDD(W~8+0uE-$j5DEyX8VR-uG{ieDD6<O%RgY
z`BlYlxia6lA5rzw!W4>JE^IjTfTW-4+lu#=vo$R?zcgIX7P=a$IZX<QVsz>JZJZB~
z-xYUZQk2@8zzn+0B78ybvd!NR=53%s4b?37fzcE6)$-$hGn}l+d+66K;lNDOBgGS^
z=?A<Dsw9l8#z=tH&RH0wjd~*-rInLY$wS{@t2!PPBfgD1+lBVe-NZgj@NJ)asQKq`
z&tXQ4@Dto1o{be^^%aj7Xv=kRn%t?J@iHSQpn}33>7bV1{D;{*S4nM=ys^%Kl`!#K
zQB1f}SH|_6-$$h$oEmgPe*YDIC~AYrM{O#LfRE<-SxYW{SwQq2yuX;2p+kMGuez)N
z8mmJH`@oA?t;s)*cegvk1EPbI<C!_`lQ&aMMr&sCJS?fZBx(Jz#1A)wJXd0dFPWhX
zlQvbWuI6?WL_g^_ud#Cl@An%~O{q5(wS+0*k&Bp#-JQPl8wrXFLwSRiyN4wP4e!hb
z>=2I^+I*RiIJa;&*DlUG?q${M#en_Vw#1$TF5#dm>I)J@`}Su;%BN>jfXx!}Z&)b}
z%9E6<&p=-rV3@!FZnB3OIYLa8GBPf<zirz$s<-2u#}KL9OxjqzkGg?!!_Iw};myH3
zpA0-S#bgyV!%$m-_=!`L;k5M-w|B9(@f3EPQyFMzq$~Brdkb*p0&R3)*nm7)+2H**
zU%J#~Q6SWK;@o>OOSr41m5cHV7o<hFL)#=Ui*|tw#<lTvs5K>p-2=ZjL*6)=NJUJI
z78`0?iT}kuKUBuIWrsno*|4Ll(-2;QG2FcL>`gc+OPtz;{UCez{%g1@?CK>v?>4Ji
zcPj(LZFVeTA4hGQUih0Ul_kBETeZq8sT|Sn=_g8w!~|8!vg`W;Cg)C@_6}283(qRd
z@SD?5J3K+5zVb17|8n7_9F)geXaavjIU=@Z8XUcpE-k=O!}+k~aTzxC0UiaBcXmtf
z?b~ErE*Vn|5hGy(B|VPi34*0;zaDWuNix5`{NRmIK~V&A<n>>letrWBtxHg$q6L9|
zB^D5C=+atixzz-HD{pyO7xf&?=eYgB7JDhiW1i6cdvmw%OA!aw=bjo2M}C+a0q}dc
z<5pI056x;(4oZ_i1{$;I7%S|jv)f`DArml(9g?Fk?5?<uL=c-_$;-r->Kn1^s?S>L
zM&U7G4P$(PH%Gy7Z;{X?O+w+%RRY*1CQe?+il@99!W*26O!-59e;WdQ(y6S9fRv?4
zx5zR&i=Q$dP?@y1ui6!G+L$7ion!Et%bb)&R`lFXy6rV1{2FX|Xlknb6}I-an#lHE
zY9qJn;V<zo#)ox(ERcxjt>^7u+t8-#ln=&Rqp~Ps@n7FzpEn)JPzo227=I;eD?P(Q
z?nC0A?NqIx0?L4WD1kbNj8QGr{?hU$nn>VGLP<CWoRUS!2684Q%oVzisz`C{>&nz%
zTK4z%L75wFB||W!E(w49-q4_wr@xU5YZwZ1s{1KT!AVD*L-j5kOQMGtW3!!S>{orb
z%Rpe#{ab1(!e*Pk(M^#t82y5{h9X<PjgOztKD^hM*+*WUD6sFydbcOd4XzF84HgP5
z!6ZJ2R9)n^F2xJyfgyUs1YeQa2rv7~FqwkbWQ}8Nb6<rW3=3!bXQIVfY7K#t`t0-|
z1xpDzeq9#Ddrw%qpIfct16A$u23ur}6HI}%6VumT0dzk`cO?p+<PeLla?k#@I%iSI
zG9r%%v{Gl|Hx!(fTJJwdWdJX`-<f~G6CO-Y4}Fj6Pu%jH$`%x1fjcCaT#>Q*Cio*Q
zKIFRXAQ^26$r5Yj-o_@aClZTWMBGc2=i|i4PlD;gu;3uyJeY-oNG%xY8!76n`yfp&
z{NAw31z!SxZutEy(RSX*4`IOXDGI280a;-lnQtV2zr*mbeJAJrso|nxLJ`{}I@--W
zfCv|c&pMGTL8fH=YbxQp7#>Zz_&P+Kt|z2)Vi<OUz7na;gxYK6)xQ;eDQTK4G$Ab<
zC8OUAodq76lC&&3LJF+4VIr^(m_Gl}#vY%XcUYRE*iA`+uwoe5o>(Lx5C55Y8=m*6
zl%1xwYBR=h^E0ztMc1Gb)vR1f?Xj(wxm(`1&jprZ(g*@Je_oAPBCel!lKh{u0L`Qa
zJ9LBv%`_-RC_j`0;4m7hp6ktUhnNzs0Kl_}YgT1JHRi^=x87*fB%hrb@bB$I+^90r
zs_<IYhU@nO2zfPEb{a5S9Lj@DOI-j?oWE`tbQHHgR7oPe;|U_dF;O7kk(OU76qQvv
zRYYuFvBQ{)LPU4T9)x)top#jSX2p^eXkld)WOMWfq5Pm<P<dB^>DLJzi$`=t{8!bk
zzgawRzcN)eX9jR#iOy+M!IZGt1TZ>-ZC^5G5vgHHlJ}kG;1KwvD(C6v%(=}ZlAPyA
zIhbc+T!+4`nC@9FGh{uqpp5O!o>{jxkqds-F2VCihABoz(u=%oz<gq1wG0+z1&y^3
zw>dk7z*tngwbUM!OxEpGB83b2aL-6gNt&Z`OP^`GN@eR)_jwE^5}H2HGva2}{c@GN
z!RtSVMwu#$n=%otu5$6)K<a(5Cw7JDpfZUM!1neY+oT<2b&kRbZAnF#K`aXnCa<E1
z_2#NJtpK~kSsM5}B3@>R#v2zCX=cT!DfjZKUr04%mh1u3A(AN8GPeG^+Vve0vt@VE
z;nZK{D+0CAV%AdI3%FWf;#hS(8!B}>o&KM;t}-gBs9htHQU)N>B_Iq^(jwg@&CoG)
zC?E|Y-Q5nMbPP3s#848_ATe}^lynX$aL@SNANQ{HtyzmR=bT;V-FrX#u;1r-hd|am
zIQ6;VbEN$aKh+D@7dug(VodM7O^$WP(k8%gZ6SN}1jBW%V-)e6Mh3ghTCa@gtK~k<
zn@^8qDn$h&+>Ku>4%9Qi$ww9^#J#cN?V6T!=3*&=aZ?w48eWlQzG@DuC|AyW-~Q=Q
z<uppJ4^GAKrPedfrJf)Mvx5a0(($<`n&$b0bI2E5vsx;K2un7?^yOVo&Lkb?9X9aW
zfG?@Bd#P5>#69{h92!Kj+csRY>$64Kg#3IETEW^C1=jCb3q)iwzU+_r%lXea?<AZs
z;dHz(WW=!3=j%ugm{E#|))`n4SZMI~k1xZIIUQ4I=j(j=%9%>B0s5r2)x%|U^qb*2
zyEnJ;6YHF^DOxP+!Y8>C_LGg{im=~#Hc(^$mi|d%Uy6Uwqx*7Ucp2G|U;MDNF*5WC
zB6T(P?lJg&Xj!~3KqBF2lg(ag!h2^{p^1Fp&QI|@>dSL3+V4a}@@%4uE00<N?WD%{
z)9(f0rZN??Ap^u-%TgCbMb&*rSZl&;g?V^oJF?sfbIeHVZ{B!4I`qLa!P-4;ro`ar
z`?VFIUh@xdl0n-k$sxwaZt=~tRPv;Q=OuAdb2{(k<{Zz%1a5JFQS*jv>5qLX<A{Y7
z2OA;A1BGPXj(!90;5VNSID+SIM_#c$%Qg_=4$}5ul9~FL9XYOSU65#QGPczBT)`Lj
zbyl|JG~eoh5kZ#!MH!BwF{edczq%vO(lg8^y|bPQ$vN-PHtK4e4k{Zwn_e@q1v7r;
zu$vL05xlVU-5rBz&nZa1uI8D^92BQxSE4k$DwW*b1KN(OUj6sW@3!bRxxb$W?_sG+
z9j1x6sS<tmw~X1n3ORCkC?Ys6&%_s#Kz(?HNBizLdO5iFi1=;qFP;x(MBncVerSL4
zZ$TO<T29pA`++Fz6{{cUa9TPbclPGuZ`=2nQ=h|$Mi`q?-P?lue!9iljsH~p!}6oc
z@}U`WoF>)_0UDM2qBeW)_pjKF)ygWZdrGxmm)hy-1*rA)I(;w}-VHwQ_)NQS=)C5G
zIkS5uhmqoS5Qa-XTU*IU-#LN5vti2|VkJzlv|>Ea)u*40b-?``qwUQfIX^=O61nZ<
zN8@d{?>yfQ`5qqLLPgUlT7naEnF{V&|AC+T*^dN8W16_SP<WVn?;Cc1y>^<osbg^B
z2@m5c=E?1|_pdP@Z$T}WEozmvE$^*GCTdM7l&#E!Tj|GrQuV^zm4Dfj=w4;x(P=;f
zmhUKL+|0|_O#6BZ*~9<E=WspbBgAw3Ui!}9Fh@W4(noW&ZGY77hV{F{><Qir^bE4<
z|E$*5E9{Y8%z*S5&3#xIwkh3Oz9VdgdThqmV!alFDx}H<=lbtlE-1KL6!`b|z4(Pn
zK}COJU7o89Tj3XsF}^+%KS$BsBQ{1EaG;BHG}aAhroQcI6K}qd?YN6hY$rV2)4IA+
z{|~I`z?C@mxSV9+=poBqp`e=xQ%BA*f(!kVrpVFD!MgHY{lbGn|2U6J6XtS-sq}!h
zZ|f#(ds=k|>0Ib+{+GJ!UE^;QjW5&_fu83XZcagbts6~%_+M+HGgu0g+v?ioO4QsU
z`G6Odv(Kp3A)C~*boJJNo3jI5APZvdaDKXKS(#(6%8C2UUDwj$4NF;tIR=;UBYnS^
zbIR4o>9Dl-0z`PI;Hgsc9~`o0+`l4!F-vFBBm;s8aGu(H=C=t;J2mJVb!&S=U(}ED
zUIPOCpPnzt`<kJ|D_&UM6)S5ahy#s;P(WrY^$_bG7%iv&FK0f!-`&AhMz3Y|5nc*K
zC4`lOnBa9Bz4mnXSb;kSn@41YJ;($4^0i;IUB}KLS_ixF<15dxb-s&*(U&{cR3}T@
zY3%QAF`M1V?5<(Jm2%0XV4B0tNd1`t%4@4Y*m1D2;$W;yfEs}dHyi&<Dk;PX7o34e
zc|CO1bQ&kA+usG+y&;BkdwU1gbbPdqke5ko#foR${RDd5dx&ivcD)rHRU69X{t5$p
zAVl%t6RbhY01*EGiWW>japIIDi@(m+aM`QjvzaVa66)cN15Qa$#TV4MseqGW-v^S=
z!%2q)Nb^UYsm4X68nY&<b}5Qg;M5YcMhiL`T0SS`AlD=FOyxAW$T1E?OQvX~$g|HE
zJ7QSR*6|Z9CPd9EWC*L&yzQ|Fp6<B{ft5J+eQP*yEC-r$1PftB4}4dI-{>3BtlDA#
zs;GMq@X26uqs@6RZT(PrX6|gT<lvES(au~TjmnrlZnA8pP3dbAxtCOJaR%jqD}>Z;
z{ME+OGt|s@N;p7vhJ0A`uk8$ymvNlOFOsh;H>R!1x#pJU@IPX)Q0^SogLsvNkNa~q
zEld=@&rnfFa#1)ei4Y9Qh7AM(3b+}zLBgWiK{Kf}^%2y%P==D^4*ap`Jthtu@F;zB
zEd0;w#vuVn>Gv7bn%Co)r_LRH$41)ZfT}214xHXwtML|QH4NYB02?(03sVs__OLm`
z==`>cg{R0`V_90nm$?W~2{UneSbAp1?v7Ge0cu|NnP<|{Z=Db$4*W&alhv~%PRbL6
z6Xdb8e<*GMQ>A^#v*jOr_yS6<yW4D?^LETSwSvNpnh@wak<(_705yFNfjCv|K@=U^
z^N^&>$TlAwFtofT%EEQhSp(jR8AqC$eg2jk=xt)A9o>&jA3jW2^zrpI>kOE(zc4ev
z11xsZFJ%(-AKlx(G2xRA(a==U!fO)cVD33^W(l7!%ow(K`aR|-65_Nu1v6_XS|}(1
zwcZRavOkrzlLVA#eBiW|dapQzR+AguDm&uqLNk$^njHq^(;q1}RVeD-iJ$uF4AC=j
zs-@$uQB+^Qg{JzbRoT0I+dO6Wt=(9{A8RT7BiwNN7%jtE;tNwcWT-l+T@eQ&rBriq
zimy3+{7Ta0*SyETE4t&FJJK9hNrJ-L{FCeY<E@du?Zf9&{$k6DGKKE1CaIkGBmNfD
zh|1|7ft7+tGBYo_n8m-VY64?YOe$@COT#2RE!O<>q+~R4v^l3?(?`k4-*b%VCgsnn
z)j0B0JLh@h<70dX59~C|amVh)=6giCN*`mUzJV-wd)`op^SOensLD9G?}1wof&_SS
zpAe7;$wZ;)X3q|a2s}wVp|d2A90{vz-pjVo@S-$XgWa#!mp8r11o2MPRx<=l70(^R
z5LD$qu1LIZIhk6_4>$&o2Dx9OZsa)ncdbGU$Np2Odp2E_Tip0OL~*bMKG4*(#4jc=
zH^&d9%k{LB(|!E>dY18+8=Tf?KiMhAI)!Uq;OU7Q3{IMJNqX#3%DUxYVf$im|M<1B
zr{Ue7EAOZC<7gErH#np|p($!;I|ufA4Y|qe5ZVMrb^cVRM6?sSPULn!qOy9XmJ|dN
zPa<Pg<7lZ~b<?fUNq1JKD|4X;bNtK};ZdD?|3UeWAv!*Il1ensCJxYDJaF>F1J+1!
zmKYej14sWJz7h4Mc@kl90XTba8ooyVPPal9vTY|%grMJ1hZy6+qBa$$l{LL9i$m;#
zc{sQ$bjYtV9x_6G;VC-7<pw)`X(}RaXmFacd?MYZ>+tfX?6+}fe@SohEci5d%7Nb{
zmF}d7@4@*KvMEg`C8Nc^Q>dvw<*YEP7qBRE>4$oWh^QYa-FG89Mz!mws1z;V94a})
zRz0Nvp1c60a73xMUmqx*w)JIn?Ly+0?l;N<TE3azqLt|^&L~N^aITF9D`eTLy&=o{
z*Im)DNV%(%XVOKw36BQYJ?!B}NXHBp?OhT;iI#fRwX#lIyhCsK4#9M7A@n-?7ta!U
zoT-sF*gaO_w68fz=~)!+BM{UByraIp(OeXkVzDsJv-#rP_dUrm0@&8b)l|`QrGv5|
zf*vSZR2!cZ+QRlvxCxX4U<39)jpjd?M&JIg7f10(09#SvqyLUQO8ohNYf_J*BaK>8
z49HN<w9=NKnO`DA+45HV9spDMOxTuzuA8B2n`0P!T}i!Fyg<3~@^I!aR7%wNY}tm%
z&M{_#uPF}Yfy&5Yv1<pO?2J6%A*od&Ro()|P(7crtW9d|8&Ij|e3Z1E@@G=^17iTh
zZ17DI5_t2*P3M(#-=?}MDKGh^2f+}w{UMB_goy`KxF7J8u6G9>KNEWZL@_|GqkzH|
z9f0J&oW0}XEvD})kChMs+OQZ>l2n$*m7qtZlXO80G!}9ASU^$I<XSbXj6E2XpcB&N
zalel$g3+86H$i9U0R#E5+&4z_nuSNABe66R2S#f?nVwOlFi}_s!Wy1DfF}q(mh6%K
zE<v7S8PQVo)>Zw_EsP<@5)Xb@Ew-i;S=iJL#EKjKXKscnMUdrBctG^#6fiF_!F_kE
zQ_|)Ki8-F5aZ8=4X!MkZJaY9lzDE?6(i(DmKJ9x_Xio-NJkLZt<^-PZBdhX5p*X=_
z!CcaLn3lyN9?N9YUY=C8O#oQ_n&Hmvf-68Qp=t<r-JgekSot){0;hc+<l@`zHw-Cd
zgMY)P><y_o-*8Vk{t;CBWBuJ+h#^fdYh0>&4}rkej4G0$g_7m`-DH5@UP+xp5-nh+
zRf66zK(m4&8ZU<C$=`i8s@JV}Z(rCyTVVi;$1c<?eYa$~?wnLJ`nYCx&^;@r!oKha
z|15&sNw*BivOaSzLEtU4b|6(8zwD{ve|I4YuG<!FwJhs4;a<u^&q`^?*p9p98|teu
zWatvvs@CQ_IHe-rR>}jS3UN>-H-|KtPd=R99X$HWc$}{t*;V3;S(^~9j_=%mb;e~q
z)f?Y`u46tuRZ-;&e-&WSz;VXTw|UbaFpJ1vu1kDP{L2;egD`ZRhCt&eOGL8GZ7mUZ
zh~kN%<6nri{?{6H3Rk66ZH1e=LMmv1>NnMS<evL<+p?YvPr@6OVZV!EFGnVTYIwy0
zhMr&Ug*X>6<g%AL<`jM~xQKM^OVtBQ&R|#exq5<qu0QU2W_V^@^*VA@JxC;z)a}R;
zTSK;#0&jlS$vg9QX97?aIKmNX<=M`(6Ew8CmxG)9dkD=qJxJvD>#D6k-fYyl-&LRC
z2p&W(nE7TBA>IB0B>d5^$YDX~i}|6`vw~j}vwyn?%RqgeWw7f2zYOQ1X-~cKdBrr<
zD){aV0bC%ID|$)H@UL%T<6D3}yG*ZK)yHm<P$=39EBO(+i2y+}x0&2UCyY?60#HZq
zjhoM@kkWu3wHY;}SI^hxb*50^j&A%-1N(0vvmPfNh^B$c+)*oVIj%8zb`*>hptzc_
zI&|tEX2M9Gg9RrTzbx$y{cH}88JqX)3cMPW7J%CDK`+mrptf&B4>DwXUCo3}XDNa9
z?&wVQtQK4^qKq#a5p8YPHcgjVAm2x|N3Tt=j)Fr184^&jvcym%%ZBWA_4JlSHkX(%
zRpL6kNyW=2Fmqnh3X3L~010&X{o)&#uCJ?p=%C9-ePip;7sy;paKdyjP8FBy#h#rp
zIc1%}whbh%&UyJ0J3vzp1r2knPH?Mq$=GX2v#?L6rH!g;SF}qNMH)|dElj?@q}7Ff
zj*PJEcU4=0Erm&#43-nr-lC|2kN~5Uj%lY|--(HJ-qB-4Dn7)oYN#_fx~fRWKLMbm
z?i42!x>JXrn#<r_CW;L9n5xRANyl<=rCZ5!qG`dm+VBB_TFF@K%dvQZE8b#HIofO9
z#QW0#efAatr%w<MOM7r-WX|ySLtL5Nqa9C@@mp<xKM#;cu`eAq>JnVHtwK@S)dBuP
zcxa+Hd4V%Pj|Z5rXl)7*Q3!nqAOgplHh+RHQ~zBjXiTd>v&c6gse_~+{_a{X(%Bj`
zEN3nK-Hr1a^>Jty)(iR3y#KLKnCtwjy}<UlL9y^V?J5UeOn~QY1Ap6VXsH(ibRbgQ
z@Z_)HRmN8FNX5?j{ne|=_HCTW+FXNT5l^IH4NIg6Z9!Q;eW>WY!a$YN?GnRTwF<|y
z%FRTu^S0F!mxj=KwYBOt`}#^x$T&c(h8ZM<o(!8DEIgfIsmPIagcc_y1x7gKdj`Ib
z*Qc>~_D%N6oxi-dSI}3BKTmZIr^etlH~%!tg2w2)KO}zJS$BHFHyU^9i_<Kp#n*4M
zc1-mg+1#aP3ngOPbBrxNMY0mU$<B4}KMrS=&^7M6!tV2tOM}vd`MW^WR4i-0tXzEL
z+DwYnuk4{cXU^|jeGzZ<!DNC~Ob7=-Z#EuXTJ>>EdTjh8<0XycYIb_>PIJ|AFWvg>
zDo<JtVQ*sZjV)(Jgh%?V7*Te<eT~YoSAzm6nDN&A<tC^O@;>*ogsy6z4?+{-v<$4Y
zI=U2>uDy^e4fv(RR$Y<FNHE)BLH_1Slky+)(cbJP;|T`s1GY^Wlo8TX5gDjuoE|vX
z8)y{6^nF`AJ#?+DSL@M$woG%xYW-EGqR0t7_3rDoktRkC($EcdcqcSyXx?v#<`zRo
z*Qw8^!PqI_9z3TEgi=+(M$9%`z6A9vL1cAD^4+r1bG=OWy(KzpKkG92JMS^(7?3Bf
za~T%tFY{b~VISx+7)icTxAq4zD8UtGZc~p=<(xLc>0f!CX0Wwu@{q0w>q3Ufz~<$Q
z4nz=S7)<LEte1Vz!CP^EJ_ftV#z*F-*}_@Y7f;Xu7E4Akj@Ap3Os(n4#X=7#c8o~M
zb2S;x@3f~zaDB0O0}HQ8<Qp~x#FEH)kc`$|oh<YH=+ejIe4zm`c_A{}I>J*vDQ~}?
z9d|G-1#f=uc-U9=9IP+x>`u5)qQbjyyfJ1kO{Tw|$a23le2}K$TTeuJ-kiB@U&lI^
zqjm+7o3}2Gkn+9F7kFsjAI3FC;D4R+vrJhTucEnG-Bt1W@WFXMDgzXq#!HX){F4=0
z_t6TjYh^{m_lwKvMr2=MVTRWYi_vR&jZhPTp|5q+N59n$e||bcD<4R*s)KWxkUz^U
z7$zsfn&O{INyIj`GNYvf!eI~p@zLqghpXIVeyQTIM{-OB&zSP<CUo_shxf-CUqgPs
z*=uwyYb6si15(+ufN3bhi?M$($DED4CQi1_Tz}m5?$rH7^|19*HoUHh5K;AhMq?Hx
zqRjhGRyF8=7U(ATZ6_WVm9HNi_AJ%)*!x3#@_jyxLP?<hFK8GVcKk9AGr`$>BFV`g
z_@KojjMSCc<|!8Fy2d-+j_Q?4DLv)j!0Qg<oUl$@Z?2n#Fc>>dS*+0LmKpqj)OZEV
zRB6`WeZ#joPMSfl6sn8_4RKv=4M`51x=ZZqvR%!mR3ej5l{DQ%{ukZHUl|9_iF=ME
zLBW|E1fmAqCBV$aNd&wr$P3I=s@^<ihoNX|By-<Jx<meVi>5s@sKKB_+A@E0{x3~P
z={wqhEo#lAzD#@ow1^l7ty79h=JF<MC)LZrgB(P;Jj;&UV9KvUhN6=@dcHgq3_Qdo
zf{!`29h&4h(KWFU5iY7vKYMv_v(RxZo_}n;6`M22ZusYSuiS4}6Zk@Gb3kdT9y@Z!
z^c5OFLC>8&R*N|gyr%$Q_!I07x0X`N5P&%VS^pP8|1XmM*Ngw)^?y+oIH1b`;h_)q
zvQt|S+xnxPEt*_sf-s&_N;GNzMy${NiNzy2yX-G0O_ubF;tBgjo_n?QK$WO-`sm%4
zt;V*$<Ceu!wTsIhSPIfPyzI1>zH0UXJ29X-R}qw$KmH}1=$CS)&56c7aUA{XSg{$y
z3w>*^L3tr;^^w&K*Yp6(#sZ{oreXbvrF5@`RMIpEEnrj69c1rsu4~K~oDrTlk#+47
zS|4K|t2uR5V}f4$(B|w>oZogW&E5$_Wx2F~F!|z)o#!3u`IReH3vNlxtAuJOv22!b
zyw`|yNTHFW8q8Gh%5}!&;2#14Y{FV9ek1oypb$5oHUaaFt~FfRHz$YOuUCCsQm2&D
zV2UZW6faqTS&)G0>l??0_cabA(KB=KKQx>lI^u}eFxcjgCAJTQDNf?JH>)`qR8VS;
z(kur#-~)z)h_$85l02iC=IQS&(}psZWx0RGrUp~V<)`Q{wDV9;jagC3*=6f)`IxX0
z4_h>*NPGfGOs&QbQu_ETPlyel_~}VX{%-UU$5R>I_6_b3tl7b3`4L9vRatdpO32g~
zv3`Zqy)5}J6O-~ACeqRSiBSck&o@N>&_0SnAwzI~b3HaCvtckE7(h?t1k^=eGlzeP
z|Gp%>fDs8TIbhsRFxC_JzLJoZV2}DA3G6^xBXn^eAzLOV_`>u*ll$oyB*^I<mg#ZN
z2Fq`JZcYpz{wY0;@0La<^M~*^bc=lS_B*~AJg5@9yE;3k|2YvEl#bok91luee7N)O
z?#-K(TtHa#v*Anbhzd~D4lSJ6IRUk~noMUx+b({)YKj5=^6nn^-79oG@#*fWCFuvt
zxh+={{ryMr(={Lo@;@&U>nZNRF~H}E>&CtC+rz7i@af(=Vd2|-``-9>0hoa~D&pY}
zKjH%WzU}!N2km}R?<BskPB2nSU(h7fzcV6-hjlGV_=RQTxLOKQ+XIia<)KfGHVA?X
zT8SAfq0ZuEj+=l&_F)G8qLG%EYVfp-s5aU!aBpPq7bL1WFV{;=g`$Qf6?9w6Y_|m!
zX%kfNT;>n=0te)AKZ`Z8=jK0bMtqq+@pJollzsf?7Tm^9j9Ma*CP={Un~Mg)nkdJO
zw0`4~5YafeV&yvP`>(Rt1yc$wUPt7-dJSo`M1D}U%e_BcOXxXXzo9h|uVfe97Yl#-
z+1;vIZu+74!xPzkDzBvuH=?Zi_m|?*sMqQmjgs&4tGm5ZHtTHk6?mFYMAy<n5%8e<
zyiMs|hE%4kxRK&&E)Fr`ybsVuCkK}(ZcM<7zP&1uyfN<_F-&|u$d-mWO=4D_y|-Pz
zF#DDfgpZ9s+bBaDa>cKDlf@FGRnqR1sNn=Tt}sS6%fXZM3CfHLqU1kHX{9H{R{y-s
zDstgb*HvxP4#XH$ZShn}12Hg|HhiSzw9?b%8ZfVWxcLOdVUcb=mOXEdWG@?PD)NY&
zz3`D&MwLltnUpA~6qhP-5PIJ?X$zUoy9f472n~Lnm1dxY_q)XL$b6ldO0l>H#1&Oy
zzg`C$*3RpFHGBGyqj9O4&*Hjxfm%m^&v%${;ic96+Nb&zg7yhTl3w<`E6>1Z-2vdI
znBc#~ET(oaeRC5}pBVyjuu0ht(HeoD$N2SXK6soqJJoNGv@HYY2|rlltkx~?#mA2~
z6RHag1lO0?BjZh@MER$Awn!Pf{>H$*HV#-+G-x>M{X<ti83UubGM_p?NCiLh1@}AV
zRoZZQwNEo^w2736Le``0Odjs@<3lP0jh#4GXj7ufpNVlrT?U=RX!S8T@}y_yQO+%_
zZ4Y}Xb0GTphB?!YD+uaW`hMS(sQ&>Am&iE$>9b~joxQm(X?_1*PHrR9q{+xebZU)L
zY{CeOd9w^6Py2dPnYtLP|8q}nRta*{HZ*5Ew^GEIO0zLr0N=?(IPu#VrKoas+9s-I
zZz(l`Z3h#3tbur|5>q+)<WLt_wO#3HHvV9_AZMC{#^=l@PYGDz*zl|D6$YjnQ?uy<
z8vnzS4;l|fm8?P$#!m}B^d?mEwJv3BzB1aski2Pu?k7xtHX9Yzj&a;T@>R`~IohqT
z>`B@Nr=$Kl6E6Dkl{q?#8`>Z9nZjOmO@<<zv+f9>Vb8K&mV3-BF1w`f^z6fRhAU`(
z$fY@U`*=2`+|ZxTy4i?`BT61@P3%}MX_Ot{bptc~x&;(JKG|9~0ndDi(vZ*tCxJrK
zQ)!!19*!?^dx+6CC{x-EwH>nA4X4zl;lZa~MRF*~-bJ*ubb~U5pD7L+8!(D7x~O-<
zZI=ujza48D2nZ{3b@P4YSM3ZLVMRQ!0FOQd!!p7b96Y*36zo71FNQarQ=X)Y&Id<C
z@TN+tSt1rHEXjBPDTY$IUu!o*e+c$vh$E)d9>F*L{!g|UPxhmhDX{?vaku$q+bXC@
z>hKz#l5-gT!HSzU8bdlhS?(Z~b4>m>j3AT|60603zaImG#0&i!0YCoYVQ*PBeIP05
zC9j(4g4YkxM&cZrO|BaHr8}x@#r9e*W#z?#3Qq2d2IYVKm2fDql#}O<-r*y(cCnO5
z3-$3^q*9b#Ax`4ok1U-3nYzPkaTY@L6nD1oH;Si$d1p@OXUBLAzb@vu34dqo^Lc7C
z9M6fq+=+&rC@1ETEL7ztB9Xt^4jV{>JWrd<P4=^A{b~dQpL$?`+iAh3Pf~8&r5{VS
zU)tVm?)`Em3o$nW07N4J8}p_e8(7rt!O_bUfS&002cWBfRUI$`a0h+z3G@(nSLpN6
zhkU*BPPj*?iGjWv9|p=-c0a9|^p{1kdjo>o&ZmkTiQL`Qzu^CJ#Rq|g#@XO9K5r9i
z6#Qhr(zSOOkH1Ama3*GJ>m)oXI`*$&iQ3>`B_go`4`vl;*QiLAbs~b$HSaJahTgX~
zOKwu#C<c=Y|J{+-7$V<euqf@yyI5o-&f~`8e|6ZId033|(h$-#6jA^eT-jnF2~MQK
z3eWElT*17LZXiiGh+kO;ds<Dpvm4>a_xQQIhs56k?MV^jjL$&Qmj~sO&t60&_kGA?
z>@gLHR+Ie((j^TwR!RP|pf<-O%12*`jkX0XF*sr@r%VA-h!_ygt8tq=#sr&d_Y%bx
z#k`sa5z7dGIQsM&S;y}xW@a@ZeVWqH%Dp^7n;vo5fi`da{}_-Y0+b*38&rS-DSOth
zCeL_J@0XbNkjv{zbS_k7i3|j3OUqFwN(;39QX@YuDplC240B5zJ{Go%{x%TgI4|{z
z;NOb}<f8RJ)Oq>bcvQ<sm4tfw@WV7=&>h_KU3;XxFLei*noi4ZTLXhzCm$8JijWIF
zv>dBz7lrjFZj9x=8W6%-b>mKb#NdMuG}As?SPbFZzC5YBzR_in+xeT-D6UQ|SAQ)i
zA<n|RPqeh0%_gbTs4n8AVo~wYS1+yPX38U5)(X(KYWF~5bbL-!nJlsAx!B4kF0?`Y
z0>5KpPx&Klf;#!m_2am0j*vrx@G4J^7O`@+sKs9fj!{CE5$H^FkehcwJZS$4jEV7I
z6j7hnItg-DW;<Yq7ip_t`~iDSXq*;Eiu@A@T2tWtBM9vH+7n*=A?R}<w2B1w1^Fp0
z8bU`tnXv+%wNZ@MLsD_{H_5bqxM20+&Kic}sZnxboK_rQf6_Fb2zODEPIAc+XVKYr
z0T|OeFIP<n7BRgMcFL>C2L=B&T>)<<5d9AeaJHbgVE_M_yWg{O87yyvBp7gRVCt4f
z)4vnB{|IP1B4SaJ%G5%7=~R#Kn)NQ0CIO`Y^5dWs4l1`oxje^B=$Y8DcuFArpw<9r
zam}eq`-3$hVq%0CunS6QY4nRkIEfH_hhJu)5>q(o6c_lu@+PcrImcfXOd=oF_=2LZ
zb1^URom>nKZqc1vv>3?8&RbM^f0X3kPI$t*-bRwvA`fGxiK|j&7f<h1hj6t<zChf6
z@mO=HxVC9Bu0E~?2R~h15iCd^T5~;jS@CuST!KJwz>j{ql>v>S;`RD8YH8#VzHhX~
zp8=(!#K3tG#L<B1-9ZqdtnJ5Q<PhXpjKkX>tENm2Lwek8ri*Iuf~q^7=Psx3SzNGy
z{m)v6;^L(o%~4v{Jn<dp(dJ{3Bm5-y6+CLv-)p#u{NuSQ6m~KP?hzu^@vRU$@)aO2
z-`fHN`PLc}U<r@p=k95VkG|omF{=;6J$XiIolOsRil^dZXRl$Um6%E$B3~tlXib2p
zC#v#$8zd?6rk(+DQq);eC+#EY7Ed$`E#3(lW;+Qa0gp8&oA#;^e0juvT^%)jH!H;9
z`56dbyf8S<qG&O!%%RxwG?~B66`7NYRg@f3>MPb3#p@16F}3ejZoPr$Ic^wCls1?M
zeOy;9*5!8jwqM{J0Q8BNe44_W)ZfUT##~ruNkCwJuN~6<Z5gF9vRM%hI0sX}r3pFf
zU|e}0Uv!lB8mF@Olj*Tdu8#ss(o+IasZ_I`>BqTLkJES9h$@^=#e{&xUc!B*%68p1
z_dO=4hXiSC+RCca-9JN~RRjgr7nu_J^qEYh=gnC^sI9a=?GCWh&_EHj`;3|BYE&wZ
zUa<wR4c8sRW<_S;VqDY|K`<J~i!|P4eL6klFgu~R6UgDL9~)e(koNAf!b<n8?_=iS
z^aHCN4_ho3GSW<~2bLTeX=z#7X>=*Smug_U>`7Mgm-=B=0m3ew1$c}i$!K?58f?#A
zD8=Sv<);|aiFxy!P;?KbCAv&olkL_Kgqjxf+VLm8un=38v5^Rtv&cEBhi8M#PG>W|
zKdK9}8(wAWZ_?Zhr8K7@YhVO>c@BUh8D(UwyUZMtp*pp;q-ZQ<Eq!jp#By~QIb{{=
z%f&hDqn*xQIf3Bnr4)aC23-5xQfAFubErvWQrwgCD~18xrVXcOx{KOxhVoaqrNLAE
zNuk@G3GP@xT+<d;Ok6TBYv$d~be;oz=u7Lh!`M^BV*G!m{#@cKK3ms(b0*n@xEKnI
zMn)5Rts?5O7pDhZJJBu-M8A~U4D5TLpzPk=g2j2X(m@Jv&xef|2tEnKIt>Ug@nNt6
zMk;_%DgZ(_kbsjeRyW0|?Cvl!g_7Pcz6=30rq1Y+)ccyX+hgqr&PNs5O4=zO??YFI
zin?_lh19o220+&^0nnfW)CbG5wRAa#nTO>Xf9;n+J}Xy+pXgydt#@;>dNw5hPhvS4
z`SC`eWRojHac~Tr_!+hg^vRrLTGX4M7Gd~D(^lMn4U?Cey4E%UrfPjO2qn=pd9{f=
zseabyqXZ$cnl(mG=GS1QxA@Js!5b&(=Uuw8K`Qv$F5bxea6u)?w(29C%%_t()6!9G
ze(aE&vv7_<*Hc=cg`0iw@u-bRmC&pWlyo^=bAsrYyO@BQTXs8(BYEHrO!;$_vSjgT
z3meMlOM~U6u+;?rz>-b*qvNc*%J1e?s%;{lH+LJH(;E)#mW5<4@=(F?Gn+oz>&z9}
z0_ER^Um3SA58V_`(!ImEEKW%M;gWTWCMmc<Zpa2xx}%kNiYk+uD+O~Kb9fRtJzG~G
zU=79W55^*uxfGMfdtafY6Poo&CG1Ax%8>K}S9eCi2h(yXs<S(aTOu!cgp_DZM<Tce
z{g8@w&+6V|4|BH8PITh%$7Hq4bn7r)2P%urJ{vgoGcH|uHS!JapbAN^+GqF32cd}G
zi6yq$vWxDzb;1Is^rx-^EH7vvdm`ME*%>%+O6L%#>aTK5{gzDG+{D&6tkD$7p!YT|
zS;N2C1Q;pxfFBcp7P%hD+l{Q3z>@}IY71L#c7>1JHAcd$!twj!1xAZp*Fi-t8P;EI
zm<vVRs%Z4yM#q{O=3^_iBKY}=PK%71dEE2Z;*36riLef4g32!0Ysn{GofIK;RHAtc
z&3|vtJ2nj{ypmLW8buAnM@lU8HCNeF-RL29dmd3X85uOwzx&67OPS<`H^Ih*L49z`
zV*i0gVNyNx`Xv)b)T}m?CU4!^h!S~LTPB;TL8c;LlUUka*qr1zQ^xnau<Wg4Ns~&Z
zKbbq>^*6Otx|goc_8OZ@)8HCc>prz?sEh|n2KGEm4ufYmdAw`TrZRE!O1O@k`P!gQ
z%@=z%)BIY%@#xM7Sr@34ZrEFJ<Avjuz)MPg&1O0;f6l8>)Ge}V2q443Cj%Adb$=_B
zO^vx(_f^i;9>Izi)5;nmbc+vzW^qDy7z|@AY$$WBy>~fTS5GDn#GT7MGB_MVyNTUH
zeRi4Fnm1>fIt5nO8P+E*1I-QCn|l*ZsO^u4IE~vtS0ca+WYu1Kuc!GXiC3@Ucn5l3
zPqKXjIzO47pjEYjsFq&Ydgx?A;#tc{QXiCERYw)e5^b+0;plkPWnK?wPW)9|muAx<
z1$JG4=<twMwcGiTXLSm3LFN=8VdiJm?H$oJtVN~YLla_Hcr+OfvtOmMXww<oSIxM&
zn?@Eih}O?nZ<eC&4@QxR@4Q8snfP06-K8@!a4_slOX^0E;)Btj7mwlSk7j{FpHknI
zj(~7Vw*1sMRW>wtRubbbVd1VV#aOX<daoJNr@VVY{dI)kV-czDMU!Q=lkj~Vo263}
zSM1FuH`~@eKKSlF#6La}2)MmF^kdF|V(@vjenbeDPOsWmIhoH+@4UTC6B_p<4B}|%
z4YREDRKOSd_0+tIXLMPw@TB^g^*e<yetW#bJxy!I3(jJ1Xn5pZ>*lXa*PJUgXS=u(
zY(A?l&1VPy{_wiam(uccxLDz^)HpX`0nH&k_&gFuC-Ngc1l9#AH&OittI&?Mw}Jg#
za46CB&2(VUX_cce3d8wP@1ghl_d-HTd{OpOm42{qswG8@KtzpW=fEGG%NBgu2;C=S
z49Rvjjr-kJ<aysUzq`xIc(dumdg?k2M%Nj%>NK6Tmiw9;jERYuMSpeT>ti^$7~hiM
z{g5fD%JOyaFGwNI_?gKQz@Gb0z{|(BPwto)c1o=J?@|6W<j6DcEwi2B3H|1zHf24t
z$E|L>CvUnD&0wG!{3*98qD{!)cmLMr^aQEI4_}h|lO~yY#(RI}ZSH(&61yKdRC8^b
zgm`F{%uPhgaRrUL>@{b+5k>gF4Ci5U>!CDB$-(Un$7t#KLOZ&CYJ0J;K33-jR&Pdj
z$e-&#ck=tS>o|B%H8hzai^IVyCms~)Qd2JHzJ*_m#WY$Iq<<-y5j2gok;&*K&!{;E
zus?m85K8svXFYKSXH^7<gAQPvRjo(dY&^{}a(0zg_pa(BWh?N1m11jV#oFk)!3dIF
z#ZbSYo|(?j<$rgr>N#?#6uz(bw8-_NMl!)KKU>ybcZsxZx28sJl`Jb%2FI7DNO_04
zixUyUD@KrrWgQY2h5HI0b5|3?@xkG^T_s=!HIRZKVa4;>nwmW<LP}(JBr&{uX2`%S
z<O^Yxswg{iU`&W}TJISVIC$Br5ac0G&Hm_wkDR|;DlFuPMdI0PeMJRz=fI3uEh}aT
zhV$x;(POHx2bOM7#m9QsFWnSyp)%y^h?TSLZ?z6f%26ROQK_kOuj&s{Q^jF4Df|)S
z!`D&_>&BbQ>Bn&_v_AT>fAtZTHoh$d1@}+i1&juOF2~fj&&?ZruEWBs#?I_4QWM-a
dq13mSB$$cu$wAzvKxAbMMOihON-49T{{i$K!sh@0

literal 0
HcmV?d00001

diff --git a/screenshots/dashboard-light.png b/screenshots/dashboard-light.png
new file mode 100644
index 0000000000000000000000000000000000000000..31608c5725d0e2ccb5376b38d9ca790fb19a9c40
GIT binary patch
literal 31021
zcmaI6cQ{;c)HO_`sL@4<-Wk1@AbJ<V7^2Q7(OYyOIzjY0NJR8eMvorG=tS=$q7y{#
zyd%Hod9UmH<9q)}=A3iid#}CsTI-%`oak5DDg?OHxEL511Zt{^dKefF;TRYXUSngS
z?{vI)H;I9P+5SpXU+L`P`tI(Ik(KlM=H~qT;`HR?<m~+R?(X6T<Mq|`{=xC(_4VP&
zc}z@<PS%;wyDI_LtJ~Y#?cM$T!;^#K)8pfl%gamC(o>1|m!iH`!d_QK1*bCM7m^<?
zUw=M(8GWIfbEc7cu9A4JmV9npbSf5bDIas8m2oZ`d107;Djj@D%g7oQ5xugqdUSO3
zDL(P!;`&AC<@WZ@-OX7B^b0WWOfmMt;LDk2+PQN4xnkVKWf%M3zXvz_$jjl^qCQs(
zOUor?RXJY@{~n%IRn;eSp4Zj4tgmn67nXXBMh}mSk4?<<^$*R=E+nNu`6KjOn%jF2
zh}I6Ix~5(r?5cPEd}41wMo#VH_e-Tu=M$3Z0d?oXqS9|-Za_vBKKWOF&iC#5LKCO+
z{Q|<3TP%JZuQm2Bx_bEAzjfjU2y|`@86w>FmnO@8H?AGroc{T>@)Mcgdo{mydVR9l
zG<fqZC939YN^#3rU){Hbo%4q2zU=Bgx2l9}WR<Q>a7cV!XnOfaFNZ(yuE@{Lrar0e
zVbHggr<vhCq1K|wC2h;IR}Dp{iiuV#ItS~i`3|4TE*E3Yk8fcS&rr5rv&CGA%<R7~
zFc>h@6kqE5%>BuU)0tPLj@%_6z{N}=8xF2*KE|4JGBAGjHW-&2cgWMg!c#c6+W@;n
zpLXpV$FE<HN%&iFT?v5(&+P7g(MZv+##lU07XRyyB<&E;uM><%oed3!9T<o8FktF*
z2q&){YoAg>Iv8Fc&u2LZM^?AC7KD+N$St9c7ZB-6M2vb1pKVL5)W+|<i$>FMxceSW
ze$8WNs?}%tv1vz+$3|3ygRU$3mqRPE^vho9^SiFinMY+M?n0YoAL`nwfrc+4N@A*<
zjd@@)c<((&zEq;x#a7D>VrmRT%;Vxj5QYugzstBl`DMmoYiCgYw4E#}h`|()HrC*W
zQR}O;lm1dhq#(7WDXz8WoSIR-a;mjmn1POU_&n`iL;H}_AQHq@)2U1~;BITg4vQ4Q
zD-$qUKBBJfJUF1Pk>7FeoG0kRA&@GgfW#SF!SMQUwGg1TABigC3czmAi7Fm+6m<F#
zPW`&4S{m8(&>A+(_7OfvJ<!ojMMYI@)Od4H_UY57>2(O~@wf12Ipn9H&*XDl$n6?I
zZbjOGJx}kLZIDfkd^@FdOw}G!-DNm<7*wNE49}e)f@Jy?{X}`fFyBnVoz3PXf#pVd
zp8ZWu`;t?9UcI<l)G@eQ06|g7l}-zO2Uv6ib*%3j@(55dL?j$eokVW-0sg9|I*3*y
z_0nZ?Hw8O(J@A<NlISV0(!L}qtGq=jK<0C3NnWhMu~2tZ12qH|9Bc+@YFa>U@010t
z-N;vWN@>Y9=hbA|h-HWX;a}9DURH5yBRQq2!yw*<u4VDe#a|bDH@Ax!<^2QuRF+!G
zOqk8oWxAfQ&wNg_J7z}{@V(p-5F{hsT9{MV5tiNXF~z_FX1@vnoFSk+?8wX9Wkr>o
zB!CLHBsW8UHQ+P_G`P~5F1da1^^^6+EWt@-%Y5D^PZ8S|!*^4mO_Ojg%CcXF*|Edu
z0Dq2?m)0{)!j!BFl#G0>J&{yNBqsrUuZ^dhDb#)aaG+5&N%g;x8qKHSfdoGL-A)dG
zfh8VA+Op_v&}mtVd7LB=r9W?}rB})kQPZZ!TE~LKEh|ceA0o3Tw>CF3Y(6T$NFm{G
z;y2$?v%bt!Y#m{h4}&HxFehx{F(s_1vInt{FsbDBCn+L2DoGOa`5YZ!n1jy6J#WG@
z7F}^_<dfAbbz|#VE5=mRD6H+-hYT#4QV<};iCx9!tS!Hx7bcVt0{a>oN$psJq-USH
zO<A^yjcuc(h#7g4+;I-w!m8XeqV*sp*NF_+yY6AKY}amzS;VT~V@HVT_Y3rl^FB>}
zF_1jrPx}G;J83?j1rH(ACn-cFt$ukvkq?uHj4max%tf>G>+w?_Yy1e~EgO$DFz($>
z@lEHb?bqpZ%SdOJ@|E~Q^14UGol8Ez?G_Z(A13>;mj0xdS0K=oh4)9BC(LXDzOCC+
z%F6w`UGFtYs#1?uWAW1Awb&FvYSc@nftRTXu0d+ClYDA{+uR}?17FoQ2^Co;!LZnx
z7GKDT(u0sI)pyqta-WpUPG3P5<BLcRHPv%jc#UEef2+u6Q)@g`<>i!NepK-GXc}In
zUc_7W4$0TWMLPk<r_wl~cWw=!nu?pGPqBMmK*jA=2)8=Hhok~g;VGKN)_Dd(Qyd2R
zo#eZWe{@sMZm7N(<xTrX>h$g9W9!7Nk#0UpB7-{tqa-PSTVFm+Cd?A}_m#Jsw_O+2
zd%YSbKOrXgte9#Oxcn8CVDnL!Dy4J6NZ2+d#FA+gzgis#5^c7OWg&52HDa3MPVCLd
zR>e-H6JV5PVfmeB+ky(VkY{rbQ^gb@j{Avs`-j;*dBnNHS!l-Taq|!eO0La*hw@vS
zW*06lZI^vxV0bn8yT4g|#8#4^PH@s&<n>3{ArJ~|>DxL%NLLwo`T>P?$r<mhw|^NH
zsYZAcER$#cQ)=trEv*rw7xag-P%kdtHpqYU`g-)M3)fK3*S4g|*Xxi}>H&yXruJ=F
zPmE`HF~qWg>W`?$T=rQtk2TjIgMm)YOJjT3(Prt)8#F9Wzy!Q%Ub6&#&6<uXeizsF
zyvd4jgp)f@i)LVjXQrC5LGelRkVQjgQ~B8Um_?f`^v9}q>$jk!+X&05%kZSl1{UNY
zSr2H&X}z?3%oinHL-VS~9zpjl@MQ1?E~w!--1zEb`Yo*UMx_QbeR{8%jqn)UK&53!
zPz-4ey6c>39uh`?8n!I~186%ziG061b~wBmvO3c`y}BA%*jOBsOzS~;0?;)S7;Y^f
zorO+5#~ZW_Y2NnkiM(Ddew~vFU9oVZ9f*+x3Jp4Mb~y_f1~g<M11=5WRqiOsC#5I*
z<Yq~d6#qH~D)9L6`F2h0V#|Cz&R{9NRcyaijpqHw+He7*$&pqu%a)iC&Y`^uX=i)~
z5nE|rVH)USgP@Br?7PQ$+=kZz0fbV}xBvs-0^3|u=si`}(U&~r@y8A!D*qYwHMgLX
z^9`x!JF>dY{MF2l*sM3%QS9;HQ6qsfxi`eixI+;SJycRRw2cpH$c;yJPos@kZ%7yp
zj35F$+UuYlZRBjHcxIZT2hfh^xPj6vsFvQOUTCiq>E=AVY5o>|Ecj+2$#LcQO|q=E
zGw5K5+gWLP<BmwhU!xo8_I=ou_cCsZi*BLM?Lq#F75luPD2Q?OU4j?zZd#n}Xbxh0
z9#C^rzOlKZbH%sn=CRjlc97a<ZC*PUnl}yBs52}G9LL==Ivt+edFuXX<yA9PcV*om
zDZA_5pw{RcI@E426&?nLBVp_#j1TCqh8V~P7#$#fihmz4DAA7~m>3x7hZz6&-oUAN
zbMqWV6`#;9WdT3%X<PF^pF{x03|S;}%h{t7#1B*knQGJHeP~^7nzIB@YUB?@FJt_P
zZyvyb`~cyPFMj%gk;T++zk+@i<Kh7Ud?@@yzspY%yY>gEiZP_u9|E_4IqSpal7DUf
zwuEuJz^EQGV+ucM6Q#sMhQQHa&|&UDPK8s)Kso%ETzxF*upXgrq!Gl`RZ-(QrMD=H
z0?+tg-7lRT0XgI?eh;4odcFPGCqtJ-Np0_NLZCIs2J!;`ZPJk?__wMH)K=Gxm0K9x
zxArqon#%aadDBQG5B(UWgM&mZ^ef>NXDk&4I<IInJR(_R0Q%{qdl&SU?_#{(!$AOE
zCEk3^T<^m#-u~sYbN3fabTQV+l4&kCJ7boIMT<HbvNDms9Ua}S=5Hf^658{oEskmL
zOYy(`pVZS$Gs|~8?CDRJTA^dHBG;bYzWy214$-e5c10V+5KMI4)oQfd^_OdXV=n=<
zcYcz2R56Q}IvjPxm+<-)=@&OZDJ_1Rf6-WwbE<)twa;v)Wh-vQ+Wv;y&epj^ep()Z
zI>I2H@zdJ*hfgg4lmom-F4c>G%+JSrU2^~McJ)i4XN>L`=6#*~6d%x2;C2Fh5_(lD
zZ;JP?yJ%>YiA#M@(VMG0u~c&bg==H#<m&shA}G+#lSR_$WN2F&PVS=Qs>J7b$afrM
zx7}#^_>XFyVFFe+r`}x%t;}cA&$gIo0A<0*kM9@WRhH9fI>lYfoI80tv$TmG+E`gx
zTSBeH#?<Ft6mV?OT65*F{aMgA)|Ih%c;5$m6I$-mO%3Vqox^R$rn7UX^9*CDj4Sa;
z8Mho|!`J=8Uy|G<QuQ@6_1IEs4_#Q}h#%f3b3+~y1fjGm5OhN_W3eY3<X1EGKj9_p
zvHkQ?H6Nk0z~2IESaEez-eX%2m5J_4M_PyP+o%BRpFVqvs;GbkQEks??`aRUqM&aq
z-#kmX$dOGs)`up2;{5bIXCg~bq!;oZz6|)3S-aVVtiShsa_{65ixzeZTXJ7F&_EG}
zK!?=qV-Dg6@>Deb>{nmElO_c(WcK2Ov5$r*L^lbH1J66osD3W)O*LsXc?o~#HKemT
zA>T;9!|x(`OOF`B@|Y;6pAXOPvRY;U8@Akl?$F;Rb#%@?7WFlbmOob1U9x;c3}#G=
z?}0?i(mPpiw(NXxJ5yFzxn)<33I_$ooXir%5aGeiK7sD9qm;rx=>Pux^M9{T#JZE9
z(8HT#=I`ZvALqT#ypmgFRME>uQ~~+(Wot|AM{GZ3DVS2L_V%(~BbX5Kunl2I9Zik}
z1JR<W;=42M*#=Shk}B4a%RmP4?8l<vKbb)cETYGJjsZMIvgl-MWuV#V5;GYA)yeU3
zRhOjPTQSGky0E%Y9dpgeI>v~!TQQiHluh}&&PzswJV3VFe$qWL!g@rfG(2sRrpPZe
zY?7u}+0y1XXpx6nUW-YfMt66lGZdTsm>Io1$QDMLsQzv)&i(wa`_BeN^B7M79@DcP
z?<;sy^g^9|>KL$2%o>Tt4KVMvH=fl5#aIt>m%nr|j<)Us-Zf<z9Br>vPBJ@9{ViJY
z8Z2ewUZb?_xnEA-om3KP!f1wiO1GEwM1|I1#K6jT;su9QL8escOr$Yja)!cd*<xVO
z2y=>%kpg@n4)LwLEswWM7?V=zy6Ks#tN_|NzAbvP^CTKQgaC@2qi(|4C2e$X`IKN+
zRI%7_q8--%8One2_}?L|HGoPSzf;es7M8B{J5W49M}Of0pBpj(e<{2yO%OMu0mk`6
z3R}flT)1jjJuP$34*=mr`=m|d<G_gqY~j@Gr-*DH7d~P3zEVcLC*|-e(kJkhz&6>w
zV|Pmpk@$XHA<>OSfII+k_y#uYx*jbuCN?0UpcvEYkhgx|`dv)4Xx(bVy`p=&_csw7
zjdQ>SZk#+8Z5%`X<}<HR%%qd>I=fAc1f{5YxbHU;7q77Bds?ks#fp%0lI|!zt<0A~
zRg|JY_#4g7rl0wF{B)%C-^kuFd+q?AiC03G+4hmOIhvGl5;i}$QQ7|b;zQIFlt4q|
z5Uw7i2i-j$PhRojecxKtDNA??lDQAP5nK12hKQ+&Ir-r0l>Govu$43&apHMe6mo@;
zc)~jb1<CZ0?(4I;2WtqALN}Z!2K^cD9zEXw|Mkv5l(q5Belx!3ai722>WyW-AlZ3Y
z!`93b`cFIrYEzW=txp7X`Eq#LMHe%!+Q>b&hI1+YJYuH?y;rqt)~^A+sw3T6xK#KP
zgL*>g=QPn8UzZ;7>ZtX@43DP5*PH=cBM2J*i6Yn&LfcHdKaFfI2>AYrrub!5LPeau
zr0k16gD_PJ1CK|ki-XSo@A~vx#Z2!i`bAXa$v%bKPZct!y6hGBg<{+KFrc+pM51x}
zq-$qc7*)j!Xii+D9v+-Uxk_g5A3r`QPt|DuQ*H~Jd#996roc0$Y@^ce<v}*n`aGZ@
zD+dK?uA6o)Af<4KMK>f@9Uy}9rq#C%s1~btGGigWLm2j=(mdwY=cI9Q;^CwADY4h-
zSj3BI^7im=nRJ^@9qYxWmn8zPNFm~+rNq@x=GO3DCbR%y?0)4{^Os5^`Uj3u0{!|!
zeXfOUv$r$H2+2R2aX+SDjqLvI)X;AGKOp=d8RE=aX|Rvf_mJ%kb&koJT7%gt^5^xE
zi&Y}oZqz(zKKfPX(?q0UPiagcm%XG6`{%6f(w?6F`S{8}sH_3Up<qEZ11tXxhXH<`
zyFaH;j*RgxtXiXPA^K;9rv~f5tBX0Gd0z5!Rl567zgOTb>5p3Ra}vt9yAqH$jV$|g
zCP7Q)w+AnMgGTr>?y0e3*M0emfIAG`60?v050{MZPHK6UaK9=Hv=}J)Oy?b)e`hbD
zn9)CS7J+t^MaG@pAqtO&KNJL2`39A8r<%MlbyQhYnDk0XppvmkMen^PEvuQ0^VFAI
zwA&b8hNKP~YM}fxUk^*g!wJqzf4<h-HqziydAAr#7R)hDac?P%K!+p^q~w7gWP#p_
z7lvZUEV2KRveNeYQ?eVyaC7|%S<bieu-%6(SElbjhu@n>+aM^|88%0AHU@``*8EZQ
zo4<lz#pRpy7|=K?Dy&spkBK2Fpv3iMZ4k!$vx6QSr`X^&(`z<-32C<Ot`Qi(--?qR
zO4=#j7hNb%Iqi2l?x-utUJCW&7O<Ckx-ZLeZ;fW$FqfFOFZB4x`*-y!EHf|i&tIxy
zyTrWeI=(8rTx`ynXlO0(@{TYzWj9j2m+!~{$lHKBGI}&$hn918<=zBG6aZ3&n*n=$
zUH85Z+hC+%LIawLA^A_Y|4A6#wg1ua|NDA}Dw<s4ebuk+?}zI{F7W}LhCv-(bfrV;
z_Y~#hor<?zlAZDG#d5ftgxsW!1<CQCWF{U|-!mX4#`BUNw6vsn9J<uz*CKX#*XTk&
zY*}&-CY@sEnm(#7{@&eA9BlyqZ0@Af26l6Eqk>3^y0@~s!&pxbucLIKsl(ILBcUm9
z@W0jjgCN@tTgjmb+{&7GTUgn=RCOA4rBvCJ>;*sM`yP0i_utuk8&0+J=X!np_!=3y
zbF8^^{uX(NFg7#gajA5!yj?NnJ&B`FqaOlQTzTa!gqN+kFNm1_ORFOU@dd_>2%D^*
zT%2uu9tIhgaaX<>nk-wJB)mL4^}1WR0aetv3WKtEH+DOf?#<q>iE2j~Qm|2WR1@Fb
z1cj$Hpe*W42#inxp8j=rFJV{HxFQB9FGlcv>Eru7#=f3=roPZ9bozz?L%P>z^P#BI
z<=aF1i@rdBOR{U7LGcV1nh!Ac!1BLHn%b%KvYY+Sbn$g2e*UQGtEDA#86WAi8jBIB
zdoFuPPhHAI+_d{krwurS-;*K|^!(@_6Wq%FV#3XKiuzstl{TUVs~mBr`=h`8WGSHe
zPIakbSadw_+)-$cS0fJ1h_+e~Q_A&0&+pG|OztNZrB|RGS)y9Qy1TzR&#Vgm&CPzJ
zl_TO{CYhC$?&|AZjdzevbZOA@j<o^8$e(zCb9Qxm6W&$^j|oM}RJ-qP8IZc|w3`g|
zn(~tg(8?%p*6j*kaUHnZ?aYFGq;09mIUeh?W$;EF;g>KuK-38xPWVsKgbVCu$`7FS
zR?r|*e8q=Br3}`nNAL$U;-g`MO1(?hUx>gj2&zHv9$P&f28Rb8F;XBN81+gA*AagJ
z5jm(*bS+y^9OlJiW5sA-qBlkuy)gzIax*UXKyY4OM=|j53T_q=ISc|KEakBe1-keh
zHuH(_UJ^xxGhjb}6Fm$D{eQ2pLl}r0oU1A3KynF$&~Da%4`kq*-Z6RARn><VUzQbZ
zaOnLaK{{BlIHG923P$?tn4e_5A)qct{!PN(p7`_m<VWzwI6Qem3`Z|15Fw!8x<?DN
zc$x8la0Utl`0vg`V*F}`scRE<gb~2X%z3Aw@iF`_4G?P+r#IV#53$c3h6Z#G3e1R&
z-d;l%LzeS*q&ZUm)rFr~pY!z$L|oGQVEf|H25Ir1zghW(hc3G=jU3VFey*j1cm@Pv
zr+wonH$RBiCjxGWey(@Mimbs=faBe$GHK8@%1wW~npfg#1A00~b2VRtl#rx-0B1;(
z1sB9DR<_D(rikkq|BCV}=@K5|;cR|O*zh|z*fOWdSFP%xo8cw)K}X`G5#CeSoBBpz
z$ux(-V{rKIY$3%ObE9aMw-L`Cko0KaSq(JFRVtvXJ=~H84z!4u8#tsET1$U(7_gZ%
zsn@H+o#c<zu#K|Lo)|hBudqHwq*=df8Yp<O;aX)TG-vVyRy)X}0)X@cfTWy2$lY$Z
z=V8f}>*|CfC2(z`N%6nXDu6cY+~=8T)O@R11xG7-?2G)|Jq7CHErX>mLtN^opTqUO
zS7eIN3zs`fEB+Cf(%o%xa8pS$vX6WYSKo-MtT#)SSgA0WyL{*2Z$)jNH&GMM*xc~)
zozz3{OF%mkR1cyJu?LplnbOTZ`JlD(cSicoVO8@it+rbdcRE&Y4cXWxF5(xO42oFP
z%Tg}*mAzUWkNe$k>v}zng&K+e%C9iNQ}&FB+Ue=yQ}i?kdIW&+RcjKwt(?Gd^lwO#
zTGS2jV9@EW{`01QHx9`~NQJ*fuzH@fwWyP6Il%8?-KGf8{rqL(;eLu`6Fa<w-GYQU
z`JH2)rQm!Kajq7}j1p*NYCzu9CnF~w)r14pRiwCMR;%(>4`rFP8T-)A%9v@*yPeqi
z?UEL^XMa%3#YFcw=;6I9+ud735^i%<$M$Q*#*D^Nktf?}GqrQ6KQhmFu7)nP-c*#D
zmX(t5?D+X`cdXN@%#)f{%z{NK)%;6!%CjbC&nIg4fE6oVLw=J@Qa>`i?^||<1hLo=
zX8LSA+2FhCn`e-4!IxpQC;Uv;y9~8Tpx5q^9a59l5*COTTJxxxl=+`2s=?ZEjMDEC
z#lbZp+L8B`pbaLzmPM`n+#*728KnXEr_cYS@ISJ+$-OwdsJmVk=vh(wv%2PiwQ-2%
z8d@pZt~D(ef@@eCY0tVHP1fGVsSy@x#_vH#&i2i<I&zuK^~sqEv59TvMR5`TcC<yz
zF91_o`!))BfLw{=G46pc$hB-@X1@Y|;$CD3Y22B;z9c1F8>HY)TjDHThUE?wxOY3s
z7*Bjuy7s%r$B-7J0B}EgBT4H?H==VTK*Y^w{SiLL1s&LDDN{4mfmsQj0<7+2vgn46
zu2pTF;Mklmi6ywZ*{8cs5jdvlC(ow@(8%xEF{KLF@I0@j{{-qwO{JAI#>3+@&>0Z$
z6@gduUt7eI(`reb+A;u5D564AV_A-NX1}rRxQnKCaz)%*#f217J^q*PutjWY3~bfV
z1IPD8D|PC)pAQR#1ewF2*v2URM<oYKo@@?^sTxiLvq=xNd-!OHdc=AX8IZA-idS~c
z$Vz}Y?c~+gqkPmM)k*4QMg}p(T>@z&b@{P$UHZ@A9H~S0VM!kg>M}^+8&RCPFz|mp
zc)vF35PtQ<W#mVjZ}~mT@W4Zjl>sP!*4)oMbDQmHl+md;=w_LN6Iqz~y*_`X4EeUJ
zK;!(Ejwfo9r!p7SNq~!X^~-17U=n-1rD&3mybe2lxf`p1yshpk0N<Bp26V{x{BT^6
zRE}PzOb+E#*O!F|S|d&U<Q+R&+X!Mb4w($l*0&0HwfrmYYO{nBeAWt^352~nJ3Rld
zuofQ43p&f~DILwrr`Cbri)~Ri^d~Nr%9pgF0(fX(k)V=EW4%$%PGDJMeve`P*IaY0
z?LH>B83QOW6%0Fno)#Sg;jwSA)=`hw;lf_wF?LV4G!+v3Q<*~CEiPilwx^4n%*r@W
zipg=FRXl57D%(U<f49Ak7ECVF&8{v!n@Rx5ik9|N`#Q(z>Q13%A6vggLzYG)ja8Qx
zMr9QC`|;*i#(<T_CpBfV6P_&17BE-DbA0z=*K^%{gD-;mYQi%r!n}jxUc4(G`#o>X
zaprySa9T+`%fC6+f7T~Ds5!PntJ$&T7uSlxM5|-=-&6Zz6VWsK<2h>50nwW&S3c;5
z{W}+eN^2-6u5y<%xTdCeKoH&3)<z&l5=^y<j5r;e3%viCj58^PG9Ldd8wVb?)eR0b
z0Bjp}gM)Mdc7AZ_ejmLR-Xl`5+G=gtXw4wPKD!l^3<X`&z#liXGMEEs&|H?i@CBet
zLn#2hE^RHipe2pw*_27tiEmJY$K!j-g@8O5r%-!)w>QlHxUU0Oj1r-Nhiu>4d>@be
z$7T)+EVzvbvNWarkLh9!8YbG35x-|^YE+^`Na1wtF781o{&@fHFCjrU+8eQvAR*$N
z?GM;=CMReng@D?kPn^8Zq;TLi3=}~=bsHvp(zXXUdT21$Bs&(~-q3JR4JCwgZNw{j
z$n4&~T;SRBU;-&lwWy?4Ldo|rD-YGeK*>sHr)LB4L=KO^k0uZ4Pj^rT^ysxZ@UKl3
z-+<FfA>39o-%M7;CB&L!fzQEO*}iu`6n7896aWcY63v;sEeN>ny+4>4)3OG>9fv$;
zOiBIQsjke7NL{{xfAza0hu<<Ug;7Ym`o00U`(J4o`8MOr?pFJLTr*ggz0!JndgbL>
z72*FL7oD{-zq2-1M|_1-FS#H<J6?K`p1UT0=1F8W*$Ps=dy&Vhh4UwxnXYv#)3Fs4
z>;e@OySfu1%rr$v=w4cLaWnpov8yPrwqeBV0!4lMO@_fS$I5rdy-9H+BxIJ-ZmxWp
zcl*0Y%SS&K0?SK5I_M1N(fLh>k(v8`X-K|&)S3iRZz9#z1c-C>ia!mqT3fu)rE}Kv
z^^s)Kt*pQ8_<Zqj_W{#`D1K8p`g1aZ@>gkqBnlBXvschZJHK!|D&<i6smfwvMnk2$
zrAy}mL?j9^P^--aUkR!q&GM<c++UZ5SI>_kJ>PiH)>})l@`-j8yL?w}ja_Xl__Wt1
zSO}RO5PzQO-czbsUQ9~zta4st|1;nAlzAhTl}~yiyI;p!eW@l{tEjjHD;F_bdIAOt
zq8J5O?tZ-VU8xwk<om1scH(l&5&AP1oyv-~ar&K}4Y<r4JvT0v$Wy-fe#rYU*(s(_
z!T10BE`Uo)kKmY|CGeB!i-us39ALQOXYHdn=NHByZ*kJf3IdIe<JYJU>0fg%B!m2j
zl<kSA<zVa4p7hE}5~uSuxQGYfAHJ~1_Td8VlfH1u55|_si0yD_kDOPM)%yqNr<m}z
z&mhT{h1PkLQIq2E6xRNBx#;AFMsff&^0HtN3S@PG1wO()FfNt8N8KZwgGG`EFX|D(
z-XbnsZGZ%uA{eAas)1<47Q+?pZNY+n01*&rD26GM=4&tj#}Rr0v;7@7diSx2!F?Qs
zql!ufcu|wj;k?AYQljYFcu}4J_&Udz(Vs#8B0YutyE(}LKgL!Prgky}JOqm<!A|!E
zvH#0!6G#5VmwJeI?E%96BPetcNP|Z6n^Z&a(J1hU@L|p{Va#oDS?O;52hf@b@B@Gv
zDqnBS!vIu3jD`Nj;6w*Gc?vIVlRdc(j0ya?OSM??#f!c39PH)y=oUn-8-ft7H-!^L
zO-@k9aCSUE*JA>X^Yc~+ni4_m!8ZJY;`M@H6z7muH9&T>GDm6R=vmxu`bm%d`vh5v
zmvi%i=*9s(4L2|IEgN?9UR^Nn*t68S2f>a8={2-&;1j#tCl+9{HQ=@%qL!s*qIx#X
zWQ)V0PSB<`wzP={Sh(;zsx-}EvR_}RL692BluFD@78M?Ay#02U>djiGQ7VOsa{U=?
zTs6nOV4BiJsJ;4$APIZDcLb<=X09It4Obd0ahu~|e-44qLkYrDKrq=f{ezzB_&U8y
zq98!@#!G8gW44~eQZuq-&2{|57qR6mZL(>IgC4;<NDyGF_vMSgD6Lp;S|{`z(9DIl
zSFmNuPSx({JaXXzb(wiDe9kd5{l3(|of7ohbXmYzi0Pxp=x$E<WXfxyX8Gn!)8(M-
zp0THW5WD6}?o~9P0C1gS18Y;-TO76<UELbvywW#8`sJ>CV9pW;1&aB4&^hxp{5ERv
ziWL%t`5#}E?ZdY$&j9rpLwUd%4!BJCe{8e_7l?EUi(0?A=Y%2v;{AaPJ^Kgu{P3ll
zZ<*=BfPZ3{I?+%=f}bYbk4_F|6P23lJ_zAHM99HbqCD@e15BBKvFIo0DXkz##NgzG
zfpW0?sDdEVawIv}?!QF3VCyqd8#t%ZHf@wA8C<azl%VIx;?E%b9|c|GQt7(-A>1TJ
z_gg2QK8vwdi#Qm5f)*2+{=_k4a3xE#xF=v*1%UPQq$))KDe-@#2EYZ`+okJ$;Jq!6
zKY)6OG)y2k%<F!&!x>oL{>w}Zws!6_a`a08R6RyWCV}`E?Yft#m{<69${(S_qZreq
zfkmj4;i~yew;kU?8TW_YV@EAg<WUApKz#(;;|tNpQJ(nl$CeYgAY~&=kAEHdO*(LL
zM{S}RfwhdJ8J4{9FuIW@YiVy?p4e}B36q_s=jJA&_{y?Gep`JDI!r{^chGAXeI1x;
zsU@_EhXl)_iJ$}UcNh4pvca4;Pjynar(eZe@p$oQf_{KlkDIv&6<V^O=M?Rf$u^(l
zSkG!0Td=xf<%0y0XSzEC1;Lyg!Lh43_&IK1gLMquHaNLT;q@(H!fcRmW2n7{l@DA%
zke$+@K2BiVEjoi9<8RLc@PT*uaJa;&b`KTYuZ^`fpi=hu#mJ^M>Z~Uz@JSHBjt{~e
z@+T)&E8%Lc-`-{P<_6A^D@)-bJotHl-hmwwRx(71Y(BGw3Ct5;|Ks4r-k+&`%7(78
z(ZPI&cR|O#>;8+xrY<<Y;_Kpgq=ah8<Hnq{tT#?PE+Frt9ICHxnmdni>Z<!GoACsh
z9^CWT-xlR>yk9>~SG&hH*O4cC{=$FzRI;G~a--ANvabMOZO(M1fhO5hchK*k*_>o1
zK8u?H&KvR>x|gME(=q|Lj<AB<*r>wi*_)=`5aZ=##Fzk(1HP^a=Lc*2567wJ2fB`u
z{V3rn*UKlGjx3H?@Tcr)&&TRY9R(`#KToM){4?$CB4gV+(EImegvO9HZ&@Mu(5SHp
zIm1*iLU61*b%DftcyFNl!Mz>J!RAT|5iv?h(t*AbR&l8`U#sBV%QLz=RE%44uxUX*
zuhWnHzsikdF#pkap@f1RCwg>y=R^iES9{o_n*wI;v;Q_N@Y^pS=zWmO&vr?o7)A>1
z)^4lQ%u?MbhWL90x)sh*Kgx1dOA2aVXjg%y7fG)atdXDVIle2QsCS@btVlLERR>}*
zOld0*Rpe*OG?<}CxQYIg;jaD_S<<_K!UQXL+67{aKKC=dS=i9~pQ$q;R*BbFf8X65
zyWV{y{w&`#9SynUaX*q|0N&miMX+<#a1$Y8`=tJfvJ_c(+{qzjM)gx<EL#U~vOM3g
zu~C#Pq5ahm9{q5|^(3w>*PJW%m7iMDt|v!z)KkP<|7rt~Ugl8c2jTeeH~+~mu$1_l
z^|<dRcPRH$xY<<9!%F)0ikJdDPU<-Url^WSpxtt!HKIu5lMup=7>9rX$e3IN*UQ{J
zc#QX-#0_L8wTWgIUJ0@L(v_xxF30WRa^jj}LyKjD{@RZO3O@$~h;s^nsg!-oU+F5Q
ztp5oH(MWgGP_>Gqi1IMdZYCKE8o$*iilrGLmVEs(``ayOJn+u@q(?pejZ5K?bi3@g
zG!WkichmRrb=?ncZ+xJj5M_>Wp!t04{GgGl7u<SJM-B!kHp^{Qx9(l{!CGX$H^L{x
z14Gwvw#8_`XYWTbJMkwpL^0ZlyYG;oHR7FH;zz#5pviDaFy~wW-LlmSGn9*dH*1y)
zBtHi50MT!qrlv=vp+jGoM)>mn=to1mT@7GbIA7dC?5AJD12w?J0Oul)J=7a-_S#!k
z94l={8mjO%1O^X9_hPGZ)4TcT!r67g1LyO}r~>l%8+GfDYoD&?-TzL1BKUEMw<Njb
zRPR}HoBf4Z`@VlJ^b(R;D8QeYzEj21JRwMs-)67}a?bqpW_xpw+g{SEHTE?#1fq$x
z^e(ouK)=^SYFEAI2QK;q__KJ{FvMU4NUN|?*P~$$jn)z*O6(V$9C$lj&*hTnP383I
zt*7uOI_N$%n1(M2)GwuuiMtu8_gtA=_uh6|6#$-IE8fp5Wm{TX#nX9$jxUDKnv(bQ
ze+rMjQ*=7BpVd^TF{x+GA~`Dfs&C&XI?pu_<yFSQJUyVwMiaMg>{teXq+8X)qmR>@
zDw?*}NhxE#$NE&`Pa8dJNEl7G{N@23*I&Php}^5?^qM$*NA*~e2CDi~I-S_u3~|Q0
z!dpM>0uP{CO5`;C-TyY@Bwv>n`d%fJhK3d_&`k7FfO=N^r-Nn!kT_g~f@r68(0{*v
z<>|NPM2<$Rmwz%_Yfu)a^|Diy`<u`5qGkn&-&H4Ovd1haSTu7F?oF+A1Ko#Szca*h
zjT+C1*ZUNwt<CAQbqAZi6K>?bPJMo(mw89dPJKIqn!IKk7CKOlP_&y1wd^y;<dJ_a
zA@>Xu(-`v!eHntNPCZ5A#4N4h#fyg4-Jt84m9Uw-KCH#Pt32xHPnri-GJ>*5(jZq+
zFi&mQ?Y3l^GT=pXp7g|d()x39?9V)pCY>lJIir+Xs*LMb7Ht-KA&#oL^@x~&$0q(V
z#B@Q6{a4EmaV?U69-k>Nqc_Ka*7A^I1if8UPd%55Enf5G@jsGL06ejg%8dl2t+5E4
z#8hXRJy(q0fM4T1mAuZ1^2`W%<cM&l#HoqA-%brzS0G3e-dK(m|KO&-`7rE<Arm8z
z3_s3;IL5rgJKoA;)A^ad?zHU})iwZlO#>&GV95=?C68DGogOy!Dm3T8H`n#6Iw5_z
zgjcKqGfYI>-+s(@s}K!Tf3mJQb!+in{+!ZeP6mgCF=Y~%8)0L)+$R+Vlgkek2@m#z
z3Q2}r61rc#bo6}yQIrGZlJCaFGfXvC&vrdcB0ADwN_$tzRkd8;Ju|KIU%~dpKV;JP
zEXg<`h2rxmI{in&_jOem(sp*eMmHGK+`<nfsV}plQhh4=*>Dh)M*q7h6F*4trF2+o
zn4WlzCAIys%gZF~_Y4o<s@Ip(BRYzJtri(kqRWsd>wzcJc%s7ZpZ-@OfOUfC<gGl1
z0<-Kv1#VP#L^RLy0wv21zDTTjb1-|mjtao6ueyy1%zBtvN(E+(_^+wICR3(mB1NVf
z{UG^70`%%nH~1M&@YD&Zh)OI)^#g9E`K+!JpT`(N57Lbc-%7~iC#!M-``44k3h(#d
z1x2lCw!fDITax@-$4q8Q7((?l=M)>NNu(((J??TWa~n`=2@Auo;?<TLNB=>-nZZ*#
zGAsC|{R1da@o%Kb;9%dAK+E5{MLtCqSTy(Dz7Yj$sc1OjtK<_bl&x=-y|X8OwUSjJ
z@cZXXviD_0N!h!Uw5GxK>#%aX&Z2a@3RAP42+AKZ(~E5x5F_2|{a-}dK+65!zfRZ%
zZ^^(^6gXca+<#hPGOsGH>ef8Z=Q7-)T#I=9#y~Ut=6ze(tfZHH_ZWTS>*s9=9U4qY
zFM53L8no^Svm^&-Xx}1?8*=10?P<#XsPi7X#~3S`La}k4bYuyUt+wz%ALr@;M`y4P
z1-oRRgT*NErFl3f&9f`wHE+*V=2Zp9uT`8GmrRCC*fK1xN+h0-f`cN|I1=&Tsi~xw
z+KQncFyqtDIq>cL<mq%=0(sl$gEcaEI39`%NKBaKih^%`W&X@SzPfAB6Vd!RWRH7s
z(>mikyDw<KB>s!(-3`YBuRQ*IzQGLYZo-^w0x>S4v7s5)c}12Jf@4Ajz(pYrs!DTN
z-&}Q^Aly-Rlc+zP?orA+Hy_SspD$GxY{rYRaa$^89gZ5UA4u<cev1z#pd0L)13B&2
zzb@W+n7Dt%NI;?-@KT<7JfY#CT1bjdh+MoXQ4$H?uFoc4l*$Xf1Mul7hXXN6_Ng98
zxMc>yO&;4ajHENZFi)3^6*IIkmL>L~uA(YxY2^VcaSUZVQh;o7oKmgGn~o6}Xh8>_
z%Ru%J;iWPIHEfdqG$Otb;3)hS5OVLVwUqR0{_wunDfv|)PP|WB3%mAAq^`|;?W3@h
zC;5KA;wHp0V@Pbseo=&qkT3nc{RPdg+Q+t|Jdoe)EvMR@g}OV0xG+t2cQzzZhWNmk
z8T~_Y*5lt-?b{>9qD~@-%4E!Fpa;L4?Iw0`%*}ouj6VZoXJg?=-(odE5K>GB#5gGC
z*rDNhZ@-+IDzU|Jh$!ZrTbkM{mgZk4C#lJ`tdf3RW|d;r`%i7v{ad=B7iG+1#p%66
zd54qQN*dO$9aFs*dKg??iJrqaqa3xGKBH>9BMV~pXX_V=_a)ZImN?|CSDggN4+*!7
zcu}naV!|kq?b=e2pHT(GJI@jBHu<*`Gso$Uj!~`;`v`*HePG4FT*Z{8WsrN2Oa6)>
zY;Wuxwz02!3dap=XENTBm#M!+wJa|=tzDYQBi;N_i}n?N<p^9~U&!hc=1LbnKG_dd
zI=-LC<%2pinnEQZ_BFRH)=RbLwzFlT#cDin?7oKsO>fuZ7PzWP45|eRB7EE1uLFJi
zCVehOAtg`4r8&N|?Z_khN!SauqA~`t0*%Og0g#Ybq5kBuY^#zi2I;bpSW@hP8HPLS
zK3xvhityV7PPcV3dFr3^Ez2T81G8SyE~&Q?G~;QSCj9w44bH2;vI4X%PZ_124V?Vs
z_k$AriC_EMpJ@FnAtNF@?}L@)4wU12Kz!C$E8@eP(B|L1Nec2WzhH#pxYax$t0%JU
z;v>#%=`m=EZld({RN4t~>!O@*nF1RXPj?0IpP7=mKIV&(1z%2npldg?=%1)W@{JO2
zzx6`ur~FY^lBA2&Ps_$Fn)%!$n`T*Cx(yP1jaNEP8T8EF)xq^bNuu8_%3Z%yxgY5{
zR!Y}EpuY1e{WoUrh^C|E;H<^KFXiqQj7KaYrK4|g=UwOBMgI^&x=aw+V^MNtZ2E1k
z9=!!W)(MIFb46Ky@L{KPWyI*3L4@U91)loGjdsd3Qkr`<t=Yh+$(#K2i-~u<ZNz52
z7Kak2eE8WMpITK+G|5%}yJnoCo@*UqNkv|Dy(#s^EFdv0zxva@0>N!jv|?(FFgNi|
ze(D*pyN|5V3^TOU(aW@6e^Q|h>$S;poHsqjw6zYEO?UEqDSM>$&9R+n(<d~sNQujC
zN5sx%YiP1dslFBZb3q?~OZ*dn@E_rJ#0GCNfxSR055e)TR0k#1v+E@&jw%V?3bj$O
z^*%}iR%jmGU$@JgulG~Sj0%U(=^GdSE;A^903DYKB!Pzf+6>i{9W1P7mYhXAzP0EP
zO1X@`D(q0cchVywjrQZ6_RFz*dcQ+-9_1~xnD>^W^oEaV93&dVrVoYeYyb4pKEs7>
z>Cy2MOdWpdFg@!ppc*z1trkA13y4T*{lhuk&S&fKiTZ5&M7M;RM~S*NJFR95;8r4B
z=b3LpJt;=3lm)Fb5i8?KwZ?z+Y{cMMbAi1$y}^o&Dc_0KkM8@UB_|qmV|($GPPXEk
zTw_p6vUBV3N+{W4x{lLUAhKZuFMLS3>GMXs5NDIrh#-webLyVO^%vC|zid@d!>bwm
z+<85Q#(8!LBAXG1k~-h)nQH3yTbEc$1m8*p{7lO1C;BJeN}FqpiSM#YH0|f6>p5JA
zr^$iOXVT@qp49I4j!E~8X_74s(yJs1w{E<_`L_KgGj7zdqMfU$(V#HmMpvZpqp--N
z*fv4YKXIUcGTL(TPwf`!ED!Wg`SCy*S-d#1XYq$J`Lv6X=s9Gz&1|)N*wf!b{Ph5(
zbZt)^7LBmO8I1%qwbN#_Ef=Dcg+=3t{{3(&m;hK{)Znu3A$m4FJ&>)X&?M7Y*L?bi
z&G2K1Kq~qjeOHm6v-Z!`gj(9n@)gS5=5wt^;}YIax6!1i3CRj_^}jz#xO(hnx5r{9
zx;vj|Ke5pL;^K0lINuNDmThicr91Jq(!)W&Sl6mX@0;%X@nmQ5`x9kY0XDb08z4w!
zo#;JnR?(9Wu$s~-yKt;l-><tEw-R_`EuphvS5H}9jUhNs7}IAZIy6>)>MlfQ?R{(C
zoEgss1?c)wdx&oF%+H|QM7MIxn*%Mz1_kYu=TF>)hnZZk#;hD8beN~y9M>I@Wk%E;
z!(AsPO>Gv*1y4$-IbK6pN^}h;<k*XsImW*I@*3acLna&HR){9sh|pPMO3ylH2pc_a
zTpiOCv@3kWZ~t+WhfQl(`P`<Zcb4ByP&BB<L#er<R8u@|DrXOg_o756FNu=3^_6@A
z2gw?_-)P$%>9xWDMnzD0a?P11A2ju3=xnH?qvO{lIMhFPZ&yD(pBwvtt>yhiNG9Q_
z0D`+WL4}HDu0cD_0wp-nAee>)J=D&h(XYg0hw30Ntzhkaph<oioRX`vD6PU>qaFVh
zq)W-3w_lIifq$FqrfFk)fyUGJj4Q!0>ja9&&{VeD!ISs$88>c4gwN+2m<LNgH%+D1
zEcHeW+0D^)*zo+F*~B=i=368y0pjwrC}pJI4BtR(E$QgiEo40ewap@ib(P1WK*~kn
zs~Zy){*CTi>cpWA3^wobCrVhnpJrODEIQws^CH6%%P;dBwp-lZcQsCxgGnl9EKY2m
z^7CD_$hm-u^!D{>e)~tCn)8S5c<q><3g88CGkZ98lwgDk7T)N-Hm^?e0IZ1iIF9kb
z;f!r(-RzL}f>Y*JFx-AvPR3emF~u8gGUAvw&}ZmKyw1^1?|4|Ci?McjgVZO|El<q4
zJ?wkinv@I@1DNN3d*O1I5YQ4AhJIAk3;W(@jQe%!?73RKi3<Ye9BudtWY^ZXJB@LQ
z1x=cgt|k-&3{DR4TipGzcEm*XTR7&nrR%B)k|a8iTMe=pzI<FI@Pno`98<R<k#xqf
z1L@nf`cUza==af;-=fb+$#Q~+WHGwxs8Og!_Z@=$i5KktQA4<b4>WCCmvgdS)?xE+
z>L*xs1g={<VvuGx34GUlLgoDIkzhvZ0Se!o0m0QF7ey{!htK#_uwNmH2MTc%mHj0{
zwUZ3L<%hT#B{_F^Fe?S^)R8(ni&*_;A{Wo<tFF;+91TeQ%DDSUqXi?wuA9}1k@a=5
zE5yH_hIhDg=vcEX+y=^BOTx)E#<kGBTRYwLv8b~wobx;ME2~kQG&3}1uS|RB`9Q{t
z*u9gvU%@e{@RJr5svX`?{KtaM@Yt3kLHyl5ejKre$75<M)+tu}E03)8C-7GtUAunt
z@bW!dXc%lNim??+uv;+Rv$@n75gJMu3U|WDcYW3X&lQg0>%+9!YmCuSiHK`hfJ-=t
zjN5yh#w2=wJL7*GB8d+QYq#<#GR_bn*GkAE6jV*HoYgc#a*LWF6{&x4ryP8YBNV90
zRNaT<J32mgyUA_|5}aDHf`yRwb=8eNb%21bBmBNC&lL}{n!X?S6|QUZRSJeRh<_E~
z>NGKNI$GC`J02Sm^R;Y3Ahr*3r7>i89$}CkFT5a@v&65Iz}RwQZf^aT-ddjla<(7b
z=7Tj8yUgqODC3Zu2IkLU%~eHJN0zs#dqQd2K$kN|s+Qgn(Khp|-Pz)fM8Y$+;+X9N
z4*SbpOg7A``7ISH2w;WaXoq2Cx<QZuv2sELz3pHN6PF4T4<=G^`~<(Sf}v&G^#WK;
zyLY&;LE%lmX!kCEJo%C$J$YpFPc47s)%MAc7)oW8^k24q@fEFn*Hq^IWku1@Vmipf
z*HfMowuz%EXUVbVcU;V}{XW+K1zKvBtS8M#$HU?grquW?l_Fjp;;sd|hvVD+$Cf|T
zk&fC|dFj74Co0%R5$#+46Si*TBPS|UU7@UZx)D*<WGbRWQ0&6yo#UbzlZ)UX0nyK~
zCw-ux1o$QGdQYswn$gQWO4qfD_3m7U#+Sx0t``N&pX!iaRC|rUQz`tTH4GtLG1ba}
z>}=yO2?7ic^2Ycr$C}mQ>ZqX)4xaYA-q^{Y3`b$qEx|e|??uk8+=-yG3)MKGU}>e`
zV0$mfO)8~yl5S*>Zr#1#YOs)>gb#^woQu*5g?0@<hn~Yr8vm-y-eB5X+6T!~y4t%n
z^({(?gbv1Q=fGZ*JNFpR2VWXQ3@AjWx;+&HLLJ<sruaUHtpFvULU^GK?~iys4%y{s
z3qY62x(jQU9_u#tv<%q^BmR>V0K%HRwjI!4;qxjHI@LaJ7#lS#d*_mo*2Vc_p_9Xu
zG@#9YEw&>&+R~4(hQE{jF2D<%MR0quXC&BaLd3Rw*o}0G^h%2vYwt9rqGESxuRX;J
zNX}MQUf)h(^`S^rU{dGf=;}lWW~n~*?{hV@%$M#>04gJF@Ejws1{1X&@$>VwSGl1w
ze$f0V!K&jwzX(qY7OTMap!!i#(%{l@YglBKbMusIK2I)V{zpl;g~aMOL+JHq{IFo!
z#lRy$?IDjpm1am;?>PgMn4MOka7%(sya*ou{A(rtuH?J6%ShB(XzFCTjzWOo6g%W*
zI@Tcir9GW`rscP>{o_fdjMKGo3x?2(0{A>b==mXM9X}Hpkh>@^AS=}}@4}Z~Xy85h
z%*Wuw8-LMuuPUAQKdPTwn4P}=;f_V=bgPBD@TV$>vey3^Z4Js`fS60<x9u5ue>hkh
zujL_z4))IkS_qBMjPIWDw_4}7d2jbgrUEgMRX?4UKvxbQsF*UiXQuONQHC#rk}wC<
zXbp-pC)@;jj5v5=k}cfwq-r9chC6rdoxSq<jLDXA)93T2_3oc~_Nlma-F4=vipH6g
z<|_t=KH5Dm@(4AM8|h)>VKs}TDjB1bV!&h7nkpss2wA;xvUUc(!$|f7<>iE%U?8>j
z@H+I{#hzcpEI4-*{^e(#aS46@;m5rDhY~+W(^|o56m|fdZAhY*^4q2h0fiqcJ(OXE
zZPnP9YMNFt7{4VW85;hhe73h4YWupa<;P#JW3q>zMRL6q8;bl-gN7^D{xB)<El;|G
zMKZO7;R~;#Hfu%gM^sp8z+V$=&>1qTZ#Uv9f|pJ)kec2y+oKUDIjY6pB8L36m45fu
z%Nan+RI_dVY1X-!(f3`6Wf?@ks6;(V!O<q`ipeKksDpzZT!X23*at$ZRE(+&g1091
zX(pCOZ}0YP$UYQxvz1Kzkz;FrWA^K#p1|!So>-do>OLhdZLJRi%G?o^n(J<C%9qZV
zc+6GAmo~dDXmL_@2UIrC^bP-g^b^kpQU5m`e~AKx1=Y>F!DYjTw&KHg{Z0kRIym_9
zF)5d=Yt!N)IgzFx#1e)cJEkBE*<wtNMZx1gtY#fEwDd&d2l>O6G4eC~VR{@DwTU!d
zcp%D8Id{Mae13*du5JHCF)YWwb@{)AW>s>PP9-Gkz7f&T|9%FYUHUycGiZh!CJ&Zn
zMbTt^bRe18B*sIO=`-0n{r-ao!G^IaMG-_>a?FyP?cks82x!Up-&<)}tY@J^cPEzU
z_h-@z<C(->c!5RjRY!6++VrAQ@5QBuHuY}eTgzrs^(Q+Sx!Ap|36GUOgY%;;H!*Nt
zhRAh1*^Ca|J_`zoG2nG2)ZTkxYtp4&B-_@_g?{yJ$Rk+GXVs&FC@m7mnPK_P%)`31
zz^Zo_cXUFjD?wxHknb}$BntwidH8il%sOK)lJdYn*&*FuEI?76U-^WF&&5%d_vc8;
zven!C5~1#-u5?w_)&7k2HRS6S>i31BhNn;LHF7PotY!IFy2!*RHJ&7?MCLO~+GcPd
zS0Zb<Tx|dMT>#3UzJQXuc1l^#*8qPH2x*#enZ81uw4eETq;qeaR{61(*wAfg+_2@o
zhM2dg0q|glo8q=&XdMEVq1Xum!6wB^+%FYgC-NxUKFb9thnL5qFus)u;H?aMP^hS6
zSP9H+{$4fI&Efy6T$bzG(6##Km4Fc2XRfxHp=d|u^-b`qnDN|Z!%L+~u30)u-WU;!
zulr!lgYhIf!=kM?EqY5mPM9CRFC;YD&8(nD1S$pPl{6U*L(QBc3T+rWP3X*~l|*G~
z>>7LmFR3VDzXdawBVV}WYj}Hf${jD1%OWy@I)0^7+PU65!Xj_I<$X+N#--gvH9U_^
zwO&Xw0U|aq34X=W_>E?vj$N~Dg1#x5tF7ky&iW9W#6ef>Vmp{V<^&G9Lx6|CqaHga
z^Ko3q!j=E0t+#-RqY2tZ6P)1g?y$H!f#B|ohs9ljTY|g0yX!)5OK^AB1cF;|hr8tc
zzI*R~&VT0Y&dg3vPfb15JzLfN)U5lR@J4Ll=-HeYzmq^dHqKx45kUS~xke~c5M+F_
zI8(73#4x^5>|y0=npO<r4s6=LUrn^W##5k4wu0v)v-`7%2wf;Xk^l<49Ol^k9OBT5
zDjVge?H%NAr@X3*VSDp|Lp^Ga=zCSe5ZvZ+)#V@8_vs9fI6MMv=lPe24Zperpz<HH
zf(q5RM8)^%<!ry}j8Zo0W3C=hvFvuuuxaP(os$=TQIV#)=KOvV2<f#U5JNVXPw6Kg
z$zn^zueO#=?ki(3SS`x*;Puzw<)JxBv`?EU`kp?n(1z%uF2JoAuZUs`HQZ*5n<z-6
zXwRsH^%G<FA(JRcSshRO9t?!&!~u}9_M8a(%RuN}x1Up#5r6jq%LAX!OWY@TPtU1F
zB{8KRmLSJXK4u27p=24zQb_SGZKm@xV^|yCS8^0KskFU;1e<~!J(u+#O*w2<)xQGe
zB*R;6L7k2(g)Uu&SF@)0FW<|!d3n5%Kv`@)!Izu1m{AxH<%#&LJe)s}*QBWsR}qhR
zGYJG}Cbwv#_B)s3V5oB78p$<WdlcYaVnTIsN4_ay7&9ihVA-vLE%5IL^WNVy&5eAG
zoEKv&#r=&xc0(~~kZHU%Imk(k)4k+UhgKJ5+Xn;U(g!4c!;cn<%shA++HIv{pL(&F
zwDr0UIGFjB<ftV<R}MKe_VWC<e-PvgSlHC7f;-Vr;g+DALhmV)U%KrPkK!6@?8<ZK
z&ks(ky&<i4jmbA!>?L!f+jiKy20d&9P5(ODyPZBAQ~&yt3rH%JLn7k9Y04h!_R9<G
z8zn%Wy<wX{O0ezr?I09y%+=2zXpgivruo^+1w(2u?(~_==18a*hU21v-Gsgt=Y1dw
zhWYCx5ggW6nA%;NUl2FazO0vDH^%nYlbSToJM}E_a~C2H(H>Mb%OyFpZzvVlhz*9e
zyUs{TTHQ6P^i)xpi*{T?#4}S(@a&F32jq6rTdW}_Btcqwd6<)Vnb~)e25kLLAq*6h
z)gUqbk4vrn?M_ED8tX^+H#GTe2!$!FAuO}K7HK0}_;IwwE9^b!Ekvf!IP0+LslWSo
zQPhQ+BrJIiux|Kz?(jeR0Tu>9&qR@p6%1i>2IE<JCO**FFxGR8!N<}JQdU*pHvHKt
z4AngpGQT*>wx%V|B37%M5GF-V6Pd=^@WYv?-}Lgm)|KbW2!dG|@MhIF^W6M5cg+rn
zn*Ok_XssrFHrXZ|ZnkQgu$7l%s7@NU)YaYpz`;3T8{`m}Ot}+dk+lqL%dyQ{8Cc(-
z<^l3eW5_UYw{LUQ%Yq!m*OJtxV$AWWyL7oqNlbs@p~xaODSozdmkDTqrApx0MzL;`
zXEbiI*jyyfyP@myX$ZjY7hxHIQ#st-UlT}KisINDFDJS}TDo$ci{(Dr)ws(cq|ExE
zzM{+L<h3!L@kATN_}*`pN9vjm|DwNXT+AP;{ToMSZ2tqW>Z>JqXjYNAh&gU*qY&z)
zB|KhB6SIJ=L@OdNC?2iLS*^D#F%&e)Benu{pZ)a_?(=u-&;&uQ6Z$VI4Dey$O}*@b
zrMN*37N#+XX!Z`XKj66qe~^2(tpDiw_T{_M7_P|msh-YI7rE>_J=PdcM7*3#L6s56
z#V|nmAc%<fb70a|VJI_#Ok|2Ve#x%n32EEteVav^__Cd;tz0vBM)>Ea+=ZQ1E9zV*
zA~e)czl)zexNxSq(|_sGj0RJgZ<si7n6nL4;+H?I<MVazVA)jz8|=A2c_1q{Bk!e4
zLf>5zhW8<5j*e%E_E*2D>lkpKuZs!N%6zpqp)O40Cq7Dm0*BZ~-q}t)J<~*eyF_{z
zC!qST=bZqJkNt^m8mh^>I@oSgj2xB}TxS+YF87+1rJ9v8TMscPiPshfx_M0XAq)qf
zOeg{HP7dur?Q)X0cMc(Y1V)`tttd(jJLwianVtk+;9b=}Jglyjq|H0b|M_UlzSrb9
zMlzuYAAFbNkWKthr@I3kE9R_scW9fc&5S%J<V^FI;?s!(3Ps0^e3wSEQY%Ga<{>ky
zls&>dIK<y06+V;>*IC;SdBoQKvveOO2IP6kcm$UzxBq?mt~#>_MgCZ^pLKmnzeit(
z@WUt9xq+NM%PqR>!673?C5=p1{)@gZ>ddF^^;3$>_h+jr?K&@0P>@~)(n^pbHGeVq
zf$@D>D?S#UAkKT~A6knHASUqXt;TLn{nW>FJ0<Jt0?{dWh*P;}9(Wn#!4?2qd1b=F
zA7*M|=d^S`gH)}LZ2wkeGTUX9*O_nnU#pO94yAshR$AsPp>H9B3}w95$B_>NZlL;B
z_XzfryA6xmF~xHsnh~^u!)aHFE}be%A?Jp(Wo|QOck7H$d_VMVV&+1@NsW)*KCl<C
zBkoRt!+SM5(|224Xk;V)m@1aSS!a91K)I~KHz%fspqj@L2Xlo8#YX~T6^9%UBfwX9
zxez*n%D~9Spk#t)sr34F3Z-y8@=w9N=Xu+Vi~c+1A_o|3WcA$?r|R=v$K;U}>YmS3
zu~`DB?kKb-goE3vK2+?so+w{RyAXjUe|Q@?dL=hil-uI<#;cEs&SlRs^TGo^lBhKY
z5h!VF-pzZc_!W0x^rZ_y8N&+MH@H-HV9aD66RD>iux2_QW?q#j8K5KeJ-h>F1(^Ef
zT_DauW|^|D#!E}enhjjgIA|qMg#8Kpg-9cbeO0?@)J#RgS-Ggs@|uR&>a)Z_*GMqx
zTL4TW=>E>6BXV7Rcr7XSzCOWI@w)ABEs?{OrZ$R}PAG1)!^F-ja(MHKnTAW&lnv8`
z+C+<y3ZQghj<XQYp`O__2HLSG%Ct6#HD5by^l6~;Y>{gfPRDSH_G!N=Ry{<V1FNpm
z`UnrR@i1DdnU!Fh6MBvW#yO9QH)6>jiq%{YsnTXy+s)5QiJNF|oN&S?1ebUjv{1J0
z6Wt4W-GQX8qb)VCher8L>_CaizUnas$4BPhyAA?BbutNNq(7LuR6t6SA6uF)^yeIA
zf+MSeH_@C&nP7qfhq2sECs?ppm3!FypW_l!XIUzWDE*2Cq>md@t18(B^l&eY3p~%W
ztKz}tQGKb^BieZJacgx}%{gez(NFe7lG^JFD?Ebj!%69BeRy_&=H<kc#?-DgGTzII
z7R7n1_v~a3Bgq7YA<bMV;|P*=VFK;H;_9#)!%gifl;#GsdHphK0}V4*6|#%|BCZ<L
z9UP0PHy=_5|CL&CZqzeUmx625n{>wT2|66V7CH`du9(I%j}Ok*{e@}HsOg8hm!W={
zmcmE_O5nu6A89}`*9k9wa?#CmSh2p48jvZ?z=&xK-@!npQw~ijZ$L8ZcR%<O&0<^1
zQp1sgcSs%h7j9g_RmhABt0EEmJMK>9%9Z5O4F?zTC~GMTt`S)L5-toD^h^l$VILpX
z<l^Z1siTB=Z<%Q^r;$IxQhKlDC+F@dWvUDHlU{AtIb9Fg-q>6veHfmdiV+%z7=iOs
zNfq0cfgxu4ea}*i`CaBpnWnoj?WK8ReCjGP&qBzsvTEhxz}P3w597%B#Z02y+plF%
zsd$_fJQKh!n1zMIk-U@*$K#S~iHk!NUXWdejDtsb;%&*Ap#jZ%oT!9hLaOt#HlX1k
zIJ+b|oeS%etR8>8&m|e>;b7nJhs2St@G24amaCA)>ag717_RN+XhlOT%c=xBL+|3N
zkTR5OfdiD)gD;t>BMK|^K(AiCJ6$`ia7{OJt=!Rz$T1RH&Mayx`{9dTo~vR4&gF!a
zaUv^P`ayI2H?{cMk}#b{`snUA9@)1gTflTMm0r(i3aFec8}eZ9T;V#aRU+ZD9(85A
zwN6#GRi$Mjn(sWGr7cfbZ-3yN6>ibIY~s1UIyRrN;q^n7=PL9o<q0W^PAPUZ%#=xD
zr3(HXpjwbpl$rV6p7U@dn+*eG>g+$-g)YN5&up*uU{;e6@5lU9rJ4GZwRbvdY}!?)
z)UMpVQ6IaIAh|G-&Dgv`Q6GJt_dt;|BffSw+MI*G;dTX(Wo;5>lpa+k$a8JBq^Qh@
z#Mv=!nxgeskJT7&u0Yw-UH$|b3?fJtJ>fW(yf0~kS8cRLnQh%4xY#K%llL7*ezS)M
z!`~GdrQx+#fcH^HxAaYoIh(@2yreEQXRFN3&6iJYp6l|2N6YNBeov0=H-@+7(28Wt
z4{STsj~|(f*G!80)L3Y^x8$g<|8bb<tL%JiQk<2mE^ibhy_8W*bCawp(bB6gM4G2p
z{^a2|E5qp&pBi7hHSVU}@5B6Bv+f%1T#<cNZ+b|yg1J!k*`rFa40EdJq{iH*vS-&|
zuTrYjOm84D63Lj>PRP~LR$I|r+?ZCY;TBBLRWW`i)GnGV+TqbVpYbzEeb8KC!*Ph^
zQuE$^BW2hWt`7<<;@tNBfef2}KB;-dvB|hn^6RibZVwMDm{TCSv+uB^6elW~!14>_
zs?sXM26}@yvsEC&nC00DYn9>X2Qr<Na|BhQk{v$;%=IYx?zD|j4|Yy}zoY#fJyi&=
z`M$v%TbGkE(ngwXgG(Yw)Y6=|n!v#t8bX#OUpPx78%HmJj|jmzata*1>a4@bjGmr9
zo~88Mj2bl80fY8T8a>rt))Y9HzE%!qI%F7+jo+=_j`N9Hg$#=UAiaFROD)V>Rk;82
z{k9nf`&PG+5&((nJrty$n=FV9jDP2g>UqS8epE}B(qL#zFP1C5@OJML3-3dqt{7;8
zZQvn$pW@6wY+|`$6W0U~(6h6ddBt$A5O;%)gdw|~<Tkz`jevbLBUhuBYsif6@8Q3_
ztUgYWG12J)*p)s4qIE`5V4ho@Z}5vC@_c;zKuA|_AJ9j12xsFTck_)O206A+8sD&{
zFClH+u=dKkX#Z=aP&o1uBDJkb^&;woCfQdu@Ai!j65wb*T#c~54R0h$8bku?22{t|
zztkMr_kr|};{(CkO53_?OfX>TI?9f9M-Esd5}ielUpNlD-+-k#m|NiVL`r!g?M#{{
z|67P2u#g<$a<ufWhkp3^Zw9D;aEJ>4T6pX||8d5%o+qJL2;U1{glI2VU!a>AQ|!v?
zQ2RMf9==b!t0$2up-<Ptalq;;a$GHXpSaR~qD^5~u-O{|5Dovgf^eSRj0pogmc~5R
z$Avk`cD(HTq`3oaBaLp8%!Z59Y#*#0IBtu;!_FfDIp;{C&x;ZMVafMiDs?~;@1poF
z03YMFFIV}yNR~;5Pa060;n{tj%=Td&IIrm{>U9&b87Znb5-KbN2SJ>Se1W%(%u})(
zACBnMk9ey_p3G0fmXCU_^cJ60dh7#P4(tt*|8pseU2b95w(;Xwh_R}WTkKza2pYcB
z1C&>u4pU#lWq<enX7EOAp0Opn>?pW}9hk@H(_I(NC3;5t_}sqtO+<wFn6fxlR+BX1
z?D{<^G(?MN{XmM&Ztrj~DXR7y>nSvQ&5c2}lUJ<FuRHw62>c`amV(VkR;kUfSK>1A
z1!&0S{t0`p4*p8NzugiuPh1lrVQ>{1#?!B&)t})v=)oTV9RInGs@xO4nbY}#KGUY>
z4hhqsu7|NAKosgHJm8GS#CxMiwH)bqBoHAyAk=$XIMrOx4t3N!h(4-Y<1-nSBBdg<
zGIrHlY&@unFQ^)TBMt#W;6X_1lD0^Wok1u9m<SYjCFWfUetYnngu_0wfFK6?Pq=@p
z|8M85AxUG6o;DbpEE%MjeHSp|UUsam?w>X8z;KrqY;3;P5F*slhV@Nx6$zQ047;u#
zy=#FLY`d98IIK!*;;DMAbLZ`}qH@Cjkxp2L@Q2O+f`+jy*!#~rMHo$Jy&-@T>QK8H
zwFzU8CnsMARhT6;^_)Y834IWkSTp0g;>sSPDmiT^at_%mL98Or%SKmR3MWoC&_IPL
zogRxyweoUt3yKbs<{_+66Cl61+-ISG)Ml84CBGA^C7>$LT=t}za$x;+ewndf53H8;
ziGZn2WWnYHBa+9}fFP1)quv@!lbKmfudL}!#DJsW+oCHm<1-KLX7YTYTmu;+LbzC~
zeO?DtIyBN{<SA)VjC(}|RSPCW)}cwj(wd3>1P;US{<)PTC$Ip~<fo>2peif-JO>8M
zi<AndM_}>-3ay1rpQ)KA*K(P9<_I;1+9~7HP91g?0MhOuKE4*$-0`Yrvh58GC8qIu
zb(ya+>9{;V+X0u(XydBd&sc>o=hG6~oW^wZ&4h_0s8G*)NPBUwK<Kb^?8Q8gTPM9+
zHc0#^wI^%;tAf;a#7u-D-JK6)t}VDJoQ7A&&)!A@RK4R-Y-G3yY(Buw)CP*59X&S!
zwfyX_69JPKSXFBqbXvY6Nim%ob0GeWF1fCyWgwq*nM6F=J59HCYsoM6yMnWx#btF*
z_}Y;WcAJe&^p3#r#d{=**<jiF@)~8&LL7tnWQwzo(B1cv0Bgkr*l}DN;&DdzeP!>y
zf@zuArV$pfj4u~|F5_(}79rKCFl%WHqnrhIGk48CuRcIh&<gYe1;VkbnMbJ?FiZx1
zZ0O$CxE|XQ!aQUt&&Wp(w{>sZ0h&|7dgkM7j|?9YKU=*XhV-L*tAdsj{ago#R)ECp
zTvBdU{qSo=HGb)oMTP86=$8vQgNzK!TnrEZAvrrHvBDWxEAKu}<?ypd1~#-vg<p^4
zG*?h>RD6-;(eW8^J{raqF$B-yXHv%yeDD_r4KMelPlPVr#3LzTJFq2IN{(xrv>&T&
z<n-HISSIM;HFDrZI^<|v^!Ca08w39-e17iweQoLC;0j2g>@o^gt*xn4KjXnQvR89Y
zbW)p>ZGog)n}E8s%`dW&@eHfdZ!9yRSG~<JPNQ|9mb<H3ZR!|v)ZQ{0zxFIs%YKE`
zpPS{}E)ZWA8}zY?q);3(2U+gG`S$MO@+XUg<T+Ro+xK9#u%~t<zGg)c`yTo+bB*_;
z;^3Z#a;x(l<P-xC#cT9G3idyqAw<G|jNdnM;Ttde|N7%*{5LG&-*t$!{XP6+kP;*U
zBKq4GKh{Uir0yTSY+VbIFF3HKtSV3Apr-$7)4O*xtLz;hfuu1Q{XJOsw{8~Lr8z2x
zkNZ+|hy!}wki?}8L&M)280yCpdyc?_ROdsBWJ<yk1E1LIpGtnDg0b!g4-rMaevR#j
zO}$s-wYN~`eK)i@iRmYNWEg6Q$X&?D(9-XDFAC3LV|-=`*_&T!baw|c7tU_;bH%G3
zW$ei=dY1**0r>`gTC?JSw+HP1n-<|M5dtJn0t|$F{gx*I@{CQ4`h$9h@n?7!8wrxa
zK*~q@y#@Nm99v=$QKcDwU?mI`X;w>!&<TQlHxWdEut1Tlsz{+{nAkT-95Lwr@Edv|
zgPyz2;ivK9ES!R?-qn2k046?t*9LVVw8a+;L}&UoIrA}R^jJ_t9v<|Ysv^z;%g2xc
za*IQWa;@il{BL)Qj^r8fS<`06`F{833GHIuKOp`b(4=m&IOXy<^r<KR<CqS;Vz{@r
za|^%9RSnK+LkihpjoN&L0SeI8+$O1IhzMz5>Dw2Qz9{^pDtM&WByu?Gjd6j7l=F=R
zUbp}-Jzc!froXdFZpt4$muRSjmfi?UEFyqEm|cnf@s7PQm~acf&VNn@LgCOugc9uk
z;Fp0ANyv2U2rI*OxWk>&JZudWP3mbkEtMEGqdRAKk4mAq6Vg&(zZFh;E_(TCorR9#
zH@!#&&T{GvRH=^p`^94kcj&qeIe>Ca{I<7#;Q~GD2TzFN+#+a{_gtTKE!@@Jn9>ug
zF68DFN-i=YoWX!54<rDCJQ$E1on0~#lE4mvy^gssLiX8D9^&oGXgpd+Ygn#YKXIzR
zTZGUZa$m=i%L{!p+xa`&Feq^QR_GQ=WepBW=e7(uYZV{;)Q5HMl>|Vd`S;>h$s5Uw
zpyFlf6gM+9a}i!muA~0C0+;$5T9{=fE#8#V@fC2BOOADO`-vgo`N1Ek&An;W_@G^*
z`&fAh!SRR)1g2ouNpIjfLBj3sor~!lG@UmwTQa=`1(%HEY4IXeEvfAVz3Mc0_-5x8
zYEy2aSK@U7uH_m|X%-K+?*~U++S@5`pPwv}W08h6Pb+*h2g=YvC%E$Z5!_Av9Jb(&
zCKXxE?zF_*FdZ7vKbmcjZtfX7wf{j;a&*@YjLgGz>9BqN<x0-98`uzAzF~G)zuu`(
z>@BR_k!m|hx&Xwq;u1mv+e1ucg+WU+Ugm2CzC0M0J7tk^qf^;5sa0lQ;~)#HEm7;M
z!7j=-G1;4b9F~56w;#--d8**8!8eq%o~KPINHu_4DDFMdX|vhZknVfrN2ArKS_w%S
zj8g8eO3}B{+V)dJ^Lm1KQJNXFE+_TTW}<VTEO%<&e>~2(;<?>Czp0}#X7svTcPh&2
zRguC%VP4eZx7m3qXdJqp?yI{yvwfODjW(|bbtpX_3}e__WV(A;qXa-4_G4ZWrvF9z
zjWhnE3u4bLp>d~J$eF?@4M#xTU0^@foi+z<;{~%gJuWY~_ja^vbInl3_)5}eScbj_
zQm`L+%1Dxb&`X#P=hfNh)K1Fk7BvaP(q4$bS>Q|b5vD&z@r~C_fc5^BLk^TohSfx!
zx4ujT0K-3)2UfLPY92qcHgV;GhmexPf`zJ+$o4q@k^U)^U6<}Od7A!_zT@^x2>vzK
z{|^1vXa3u^Q)ZJ18@#V{hc3Ncd~heNjl^0rGWeCzCS0=<#N&zxxtOprIBS`M;^2{c
zkcHh<Nk;b3bt7LL5AP*<u!cr6-Dr2sZtrod|32mGV9V0y;q6`Ju^^U|(V;**vt|Uy
zvyc-zav_#`%WIaBjv{xD+7mNouU=P8u35?IuLku`)0y<BslT%O%Q;co;e+*ric)=!
z`x-J*Sr&wJN7UH0!4m$dnEYNhjVZ)RmcJV=i+G98+r{a)0DRC~2|^qb;&kF%30Ey0
z&Mh<iG!qSpVN3}==|TnZQ|%cD;GA%vtX|b3x=s2+dyGbeP4Op24DU?g$j)gF_jE0R
zc!pAL)tAuD$4A8^o$YronAQhco!?F#w8OZ67_6hTB>w!{i=623xJylI!is<%UO>U$
zW~I12e~{|~SLFR*?|qT8p7otcWHY5g(-wKsCoTU8fnHtMv><EB#BP~n6j47E1h1aE
zS!cX}XG@I#B^MN1+yb}fjY`{=Y@GUs_PkEHFz%iYKLbwkCJYm|%7l2Wx)n&PbYm(L
zACP?x(<gun7SYj%5Ir?b;IZ%g2Lr;zI`sQQVxUqedF8V{v-GtvEV&H*eM0sX)&++Z
zM{)Ea%mT(7b|ta!;tqZZCOW6Yk^-_7T)5CUIS@H1im12T7a5EuxuD@C*(opaGt)I9
zcIuW6O|Z)MJp{%}S+vyW!f=qqs_4L6eLlNjQnw3QJR3iBn{S@AjFLz1oe?EY*){Lb
zK>0(3LmF^|!*#VjlvpgdM97_M#C}zS<p`c+NVP~{kk8KfynGx6FKIGJ=Q2oC#+lOw
z7ev8=%h*@13IigE1S*1;ts=;^8Yx!pdvylQV=+bDK3SY_y5|T~R2FW18WJ&Pp`aD_
z@cX_B?$9D^30g_2vFiy{_)b%lgejQ!J@*ec-)+$8gezTyfjcu_P@}kle)LrQNmv(u
zPf#o(!_j$-+2Abkta5fqAs_Rkzv}PlFip6=2YFTOO*Ng~2ldTLeZ*1Bui_$xwIeb+
zo{A9?^CRUCKYR}3WbIz)7=<7814?Lgz`xmr0g~ljB^|7?%8|qnhvl$NbRl0(|8g1n
zRjtg-wzNcWrlLba$Bk{BFv}4GQs8s0JHkKD1O0zi{~X7hm-L(OC^x;W^ez*bjg=nY
zo4o?ol;!2n!&$k2v=~ZAp^8$V*GzQ`1@a&qO8fSChxs^v$A*04jrC_cU1vvMprci0
zu)4c|=$;Diow!JQ!bbpP8a`;4A$xbH^U6QG({WMv&$acWSKZQrUKPx`^lz8WCv7mE
zw3l~tn`@UHpT5rt7R~l=7>JD4bAt&x5oL}gaexjIMLJiT>B@{qnxI?NdPLmYeu@OA
zN3SpA=82#2#tI~x*2<0EE~T^zW&{^GHYu4;%o!}$A=Bgr0l%6L*DT#KuJKJ!9!U+e
zEFp{vktlw7yO&uv!1byYgYNgPC2w_$-32=hdYj0{R(*>)ub-mpEu$$A7JjcmZf#)6
z*id5mYEID0#eOFo#Cx+?1q+y(-tVXqGl2Ks>3la&EnXD1>9c;`?3p6`tp#Lm@yDz?
zz<Bo#5BBXH0dya_2!P+y*C@5aFhm|qIw6uCg+7B(r89;@w<n7-(DDz{@#GZ~5~5uc
zq|pK(F^E?HZc$7~zq#Uq@IT)$8`S)tn~(6O88N{BuKo`U|Nl^uqyIyc{6Ei9{@b_z
zf-?WD-oM2Q<oC;)>>d*wcb_~`(wC}H6)qR2tl!FC>xG%kQhec1-M{;ao$A3_t7oLt
z^CKx}t3&PLR=zXxwH3RATwFc?QrE(2><1G-u*8U0jG`5FQP7OMpE6<@Bsk|LNJ^j-
z6f=wFn_Kr$Y=MWOYEKnwq7W8x<*H^pB<|klclY!|ja}$yRI!v1_0wyUQ10J4s{Coi
zBOVcZ6%Japq;`LAj2?8M*&#wfyx}tnEm{yB18T$_75mSWqgDD3t%@8!6@C@=z}dqp
zP^3$<|5S~#G_PP|33?MtFOsIe1wHa^>H4p37)r$M`)e-Z;Hca7vIrp&#yP~sGzlv)
zj7zrV%%MP4iZ_jJbj8y6B@1YapT#N*U)S$Dl}F5h8_|TpvzT1%tjM;(-A%?!dl4&p
zlivw-6Cxv40!m=s?&Wr!Og_Tu(&12Aj-Dr<;Nx3N<+&fTuc4ddIGe%9SPbE<)aJ+k
z0Q0i}&rHUx(47$LWpF^C>!eJ1xgSL-y7APAVaYXxAm+uO^{}($;(U2`cUSz-)yh|l
z4YHD!THt>xjV}M{qlR)DAm87~_^XYN9sIrU$kbru4YGpRYY!0f?Wp4Npa6G$g~)=S
zU*MY=Nmfnr(k=A2wR-q;&=0lobAuUqH;(p{_o$*ie5}ISjOp)hqvrvgXB7a0Nmc}(
zpJ1B=-s&6KK(Si>Mscm=!LPy+SvzXM>)`&XMxc-C$3iAp=MEiqefR<l@Y9X2Jm?c~
z#ZgVTPrZ8{)LUbHt)PF^|BR-Fe$*Wf>;FUK?9BlE-!Q=lb6t4a(GgU%%)cH>zpG@0
ze``pf?DC5BX$3{xq(kjM+}ydXtf7m%<+~;IlM0XH-hNjR`cOM$l<O>I?a+ey`^>VD
z->&CnI58EKI(-PuUdiGaE4F17wAR+$UeJ=5gb^BDrAsYpcSJ#s9J?mr_Nxhb%alep
zTk!3Ct-9y(lGvujI>`&#zr8hs3sdPdycv-xu3tt7av6rG-;^&|g^yz4=Pfg--GE8J
zpKdM=$}6KUV$ico&14tsaM9U7O_?prax%uxU?;^x6JY9fF6~wHOlR|rM~pV}qi>ow
zl#lM6@7?;%r_F3)jymXVnCC1&>bCd*(oV7y$^_h^Z6C?9bN-=Ez_&}W9ni7VZ*a6u
zu56fVGjgwxlS>`&P^zey!8@k$9O!7nv(Kq5y#ked7k)D#ZRy})w<)uc^i^gXIbOV0
zzwGp4s@Z2yLrdjVcyyq~&yQ8VSUO1T=T|{Bj(AQk`}sp#JYW5iFB=anN!L#I4<}KW
zDq3fi-F%H*7Y{<)LB2%p=hp)JDg7f%U7gt=!-ZkEfnaHlu|zF*q^7pmKl41xt;`>>
zgO}24h-BR<hbWB_4((1w>*x|qK?I3uc>TtN86P$A8LT&Np{eB4Vvu?XcN8i+-$GZl
zVe>j{!gX#oozHX0BeTnXW9<UYLiT9UN8^;NHWscezhja?)oxnNqjWFg?8|p10z|Iz
zV7V_^tzAnjO?#15IPP?N^IkluGdKEEsb=gY+cqM4Dq%Fi+ow}^1KJB~?0h7b@znMW
zq1D{ccXo17C-WnYp3OeY`#$41_<(d>wALq;>$T>D7e~B59rULGBzDZ6PJeOCbnq*E
z>+j*g=BTWp&c8?Xt3ap_*dKVkZ)Y-_W<uX*9lT4i0pcSVK_TFJ4ELZzAq4jC0F5!s
z0!_nA{aXo@io}yN`2PSZ{I=a~6L_q?oMo!hPZsjM2MHz%TyCHJBo!r3=^x4~Y!LyC
zQ|lgJ2pAM6J{$)$;(aOCNc^~}tA>~6nm&<UrFt_u*QQ_@9K$iaj%md=-ngg!*wlxY
z4%8kEI3$*>hdYi@i=xGYuj1G)n5C&4Vhm_SFxc7piM8ju(5AvT+;pm8UIuQ0tzr@s
zXst^r|CLUycJyVk`3&Rngn|HUz21JtuCvY7v1twX=_wy25Z$AVwvs5BKbApo7Gc(a
z$(-{zmsvCFGre9GLkRinOpVKHGR{;>(52(eZ|WHD_4H*v;fs=|{mL4BF3QN!j1|Kg
zF>#Z2LL<T_3*Ep8u2tX08dxGMI~-uF2|-c)M)>I(f7BdT^Bu3CE>F@TfrD=OAmJT-
zr5RO6x&?QNB~O@6Tw*JKI*8ateuBTu-BgfbRHBj!FQQm~-i~<ohB4WJH9LOvN<r`v
zJb3zfp1v&d_%)|aN|pOdz5NJ(a$|;TZ`_wkklKW-)}Wmjl||td%r?Yl{7E=!#c6e8
zIH>NvAkEH<kc8kaqPM#k%XHYh2eoJ4zX@PbhkEQE&n!qsQn8@(xiV*kj3XrNWvi#J
z=N^&NIS}s&VXiwIo2iSugVPho-GQ|@9=Z2imEkMJS^rMm?DRLuNVLiM=%?!fec6`}
zNUnr~<65?KK_B`$p2O%AJ+(k@p2zddJ&?7FBpBc8k>JDQyCXEk{pG^vxplqI=G0lS
zuwXw$0L;B`Kk@(FwfUE_5fU}|7lQcD<$2p)Aq8`kL!T~YYQm*LL;iVzI=g|^h4xQe
z!loL}ZX;mj&PJK<_5Lo3ZndyfuB{&*byjuklCt%J{}3Cz<$^rw>}SNK?$MT@YFwgE
zCHn9v$3<xE`V+g72fI<V5!VZ>il|AgmgTm)Ab!$<Cp$RbL_tIl&o_I%oG7_g_MyCj
zvAEJq-!kyO1baFmUkG06jOw)fJB-baDj#$hbB6>PE(lbMyVUCQeW+~cq4J+^eB9#Q
zcmHBlOXjy*?#WGP=$LbqGf$+-Zd=EHulAq_QVMyiO$3zAvlro7vH~&&@>epZ#81#&
zycf6j>Q>RAncyg{KV;;JxHX?Bk`AKN(#{?^uM->uw~j3&pqe|ax6zN($NX<K_lME-
z);QLc70e4E=3U2Onld|@@pIRHU0rfJ$-0I5wlbz)7aGSu%cfMhIV1tBB>6L4T<W#5
z(rs)1T+9dCV%vNibA+Vw2)j0<Iy(ruh*!qu?5gAJm6k(%M3o7d#Fk7rPXtkZQm3d*
z_!~lhUT&sIpVDjE%^2^;|B1uQy@|&t?322jj%;o%c8!si6E87jgsBRJk4*mQ{Js;f
z#RVl7?+rP-C?F&p2EkPPzi=RAdx0z=j7<3ba?Dg6Jm{nY_=4aCRZntG3K3=pQF<CD
zu9}ZN>JAcdxqzXh6o9Trp;?F_!xpbvjjs}p3%2zWGDd`W(y3JlsL1h(WUjZN&!iA<
zd;vb>cbI4dIS~=7O+f<0*RDFt#Sg(SHNiss!SoiTgGc}w{6YwTT;~7Sdkf+<3dckF
zBLvu5L-}2)hFuH41pdt-`^dxN|99}+14Cb%EctPN<J6E;XrvVCTXb&Wv+5Os>Gn2+
zgdDa*j0puW6&#9qlm9%($>xJ86J-cHJVPId26vzi9a{$y#Fhd(vXYp}Q~oj(Kp(|A
zFQ6mWa|VVz;)ny*jB)P$VPkJyF*cgg6R&O8bMjwIcPami+~HRVzaGt<x4R>HT$|h9
zWI^S|3@S%*FF=$73GxMocX{b^w(ZTyIuN23Ph{_TL7yHp3PGd&cQU=<>(R33tU1fa
z7~tjk7aNo}$;olw5WtO0o>(Ck0K65nVd}#yeAVA_Ch04-NJ8U_t+qYW1bM38Zd}gH
zJ4ay8e`^<_({kW*5p{VI$k}{JS@eF3IOv*G_Y*3%lLX37w&eygomH()Plvjz0338E
zJJNFSiFb@BQd+T>1atQRt_zM2=K&z=RvbN+eNIsLD=M5xjGD7BIs#47Nzg_0wI|A3
zjf`3k73qSa9Oi?O!v|*19_gA>q3+56Ck>gQR{chA)nx8K?{Z*4D|#4Bs<=+I(@U%L
zSQEwgv8q~w^v`=v(0SnRYjQ49<kx3;hv?A2j}AU%&8TR5Z&lN1y;@32jkE6M23?6N
zR849k+ns=-=aqF&rux##>Zg@&3>k5q`Z$oXbvv@s34`t!XXoc+l((b=%0=}|p64^r
zQ1wE$f4Uyo*h~r79>6m{d%c6GaU0~+CsaSY|405d!32bO&Eg$#TmU=_P$B{EQrW$L
zz*RIPG&U#Q)p@_e`ZwO;se2a<-<SxtYMVq4R<#^P4=zG0%ah%NR6A9|L#o39`Kn>|
zpVFDRnJULbJ)E1Vvd4Dip`8@~oi%Yw1~h7IS~(v;;4!zR{N$DBD)X_F<FY#H)smDi
zc&Dv|HbSo}glGeuHng~dq{xHNzW*f5#VMJL%^XLn9PN^QK2<IC)Zw@C>lu1viRiZ|
zAZzvgDwT&Q>2W{g&84bnmNb`>@T&uo&_5Z5hM_5N4k9Ymg0??Q(T4tCnT}6)o|Cgj
z)3r&dkml@FG=Rz34`NsF=|`9DDA#Db4=#y#@ABIK`$+S?J2$qmX7JPbs_vWe$rsi`
zOkD-X6DitQ`yNO@&)?syS2<Gh#->;tq0=4ja?=p8lNI8CL@L+P{Fbu}yN&`XS;bru
zx^aMhHQr)&WZUhcEMK++o~GHsfu7rdLp2H4WE1<%BKbKWDN%@3$BCk=|F3cXPgk>{
z2{59-?@lzM!A~8%HS}^Cxp>~I^m-zxr&m7hR!QrR7p1FLHqB205x>cp!s|iUp1EB)
zyQKP8;uz%~U9|1?iQW&>J2Yz`_Don*md9i$H_<$#rk(yRU~2(p90a4?I(s#AP>9;P
zJq)bd4&{FIlh+6TJNyyc2Y5iJw*pOr`i&v!7^`w^s??CPVU_{lJ_QEgC1m*Ux(ql$
zJ~yej*IIIIm&}`g+Y`Oi4Y*<Y3b!l*E@=GBR{oZKkreBw=!^3qDtvzztMvM8BMw+l
zd>x>ak)3E>dLSaoAG5A^B60lQ=(PK#+ijv$(rpdlS6;Ia!p~HHpAU#W(@tn$_L$*S
zZsA%~R|Xf1z8UyBPPSj7-=n>io|DxREWEr@juX^L1!V?I^ca&zqMtJp^b<baZtiSk
zc#QIpq{WEm@V<Ptq%9T|1^bORC?umD=owQkoS`EzNo<_%Bg+0IjV-+Jx$=p2vdo<H
z<=e@AFYaeJ<j{`1NQ0gl&(|050b8UD<5S1u?NeS1U*MBvtPt*VT)=~#YYKhTAYPo0
zBJ4(nX9JfmPR4odc+nMN*!69I`g5F5)u*aW3fu$IgQq`vjm+3O4%Wp^Bpv0eBv(Q(
zGGep87rxt%(c$)VJ!;1~uhX~`PcsHG&!Yd(_^XOmY|JnV8I4|oqm6I+CNP?};5#U1
zbp&gDlk3vHCR$VI#&tAPRdK?>k^W#t!5+wEfEcaDXC?p)bS(i-t$eq(sB~{O$ql>K
zf#ep>?ecrh7yx5}Uq1iwwGBJqyxBU2%Sipn8x~Clk3V3%YQk!-=GYl^LXbDDIJ-UC
zKkAe!CCs|RyKSRM_#G7~gE%)j(Bj~$;it;_eQXA^fyDW3F}OxuYGlxHaaKlQR@>Ay
zRsw@`@p65Ll!4Yb6wakR+;n;3{Vmm&yB-t}8buxlVYMfvCRV13qw_eIu8pGKga-7C
z0q$U@;T#Yfu452@%xl~B2mpuvoUaa-VZWR}9$B!}tC_z%oeW{%`8C%K@S0&`k_hm&
z#1WJrq=wZ@JhbwG8D>f5)kBMh#_zyhjIgXG@KxYB`L(Y|%7U3OU<o|=u5h~MW0aN&
zm4oM_x~Z6W>u89~yOn?F1&}3Nzs|c{uT}1Qx>Dd7ILle9{saMQQW1dsRS3Ut1Y<5{
z2%r3F>Y%1T27nck#}-EM?gRM%(&(Vi4;4~KQpZRiF*I}!a<`_In%jJQaYOWgJk&cv
ziNxDjChcvxH5GcP&pe2@ziB<-$znx>=56!$%v++wIsMF}(fyIgN!8{0<oX`wrcoT6
zU=nay!QRmxzfh80o7n<a2RoXTLoc{rZ&0T7URef-=zU(t?rOF*pVvzVA1y;ReK>_a
ziE@1bdNhPQmbh#xc%5NEkQKS+(~@JL0lh87Notf@Z;M<w@NLPx7nY%y>3f*PJd&3Q
z2j2F15v}@Vi*KI<WPfOI>7jpGAM3hJ7a*gZ?bzwu^^PQy+Ls_qzP#xDlxw0`?SbOt
zNS0JQy^CkEEw0zB>Zw9vKT<!1-vuQ{$uRuj9T_|A5sd9tX*q_y20+67oqf#|CV1U7
zi~41rB>w*8IaI6(pPvku)s)hZasiEML0ME(Na!gm%vHJyU;Xp9*dabK4irTCj&~B<
z-|_)nlN8^-@v*{*qdULvpMu#sq#%CZ8uf~4N^gSw2_fSf5Qi`-9y#AjMSfr6b6-AT
ziAcrZ!PddCIWO~P;6h*96$stXal*UXKs@M0BY<~dRyEsxQa~{>?_Rux**KE#gO;Pb
ziJf={oD>sIAJG66sl?}CmCx_rtFb<wO9Z7MwR?kaHfkgB$V}MOAP9+;uy&_ps8cSG
zfX!hwETS2*&G)E}Rt6_bwmVlJzzg<s)@Yo?wY^O)jqA;}4JJAn!`1R-UDqMzni&l_
zZJ6fJIAP;ZNlg@ETgXSQshGfLt!2^=(nnBc_a1~=!Y3v?C+9lFaMZ|LTG8cX%FhDC
zU~L>(FCCX#Ie;klufc)XQgyRNuiWfyx$VIj8TR&S%YZWA@&dszM-H+<L#mnX3Q`K5
z6XcDdcD{d8qO023?xnXbQ9VYuFQO$h2`-=d7~#<bFd%6tLNSiW1V-yWRiWANDttil
zQSIcjkTm!<{dB`adU<d4#B*m?C&(YU7<tgXZh|;9dr2N;FOk*$&2~_CC*+w(_i_!%
zEr2k|v7VoVDI^3@40P-}yrC}3!>dpwh4z$N2)^+mpaMUQ`C&Xt6=z<U4}DSLClx_|
z)QJ&`lmQ%YoZ_S)m)6^T$edm+D9Vqo)00}|kZO)TSk5wz%)i_-B-&kLX^xz7bPXPP
zjs}Ld)9gj|`F9Rlc~RN~x12snAdCFvsdmi>yDl66`wchT=us~Cj<uhtZXa_AifL-a
z55rbBviEaEJvU`GMHY%L8n!ycJD<>5+z#LG89W?N<}o>`$Iw#IXyF+juGgmbE<5K|
z3D@Om!mpSsRHW#)r>Ui?=k66k(l$i$xjG5Eemg$0m2+>?j+hsB`F(+Ee$%k~?#EOw
zU|G7-V6o{K#Z4+m#FjiW6S-|H?F`A*mo#*sO~}H%+*yN#kC(u<0(SO_4;FMlGk1CV
zM~sYXOOSKP8_{RG>!|26Swa&X^oqa!ZBXK;Dl+k^TGyAm)K689P5^|+p1-&y8y?s>
z&$!>%-eEi6Bg7*vW_OZ^T;|gQ?s_`;Ftnol>Cd*;e$<hp<PO>(j1F|5a-8#vr(wzD
z%hVml1sqO|Q9wC`r{{^__Nek24qhy>Ga=*lKY$Ux6g1<;ko?u+2IxZ@#}oY+(03=R
zMo39u_;nnUDLS{wjWahWh!VL2ndFAsB+Dn;_rSjSfvoHKWc2Gh^PdcJPYmg)kT>4F
Ola*BZR3rX5;Qs-Zuw>8x

literal 0
HcmV?d00001

diff --git a/screenshots/login.png b/screenshots/login.png
new file mode 100644
index 0000000000000000000000000000000000000000..9b9ad0bcb6187d3dc2153e362ee53ed2ebe2124f
GIT binary patch
literal 8020
zcmbt(2{@E(|F$$Tw%nGGJma28wz7;$l<giPOW6h`Sw|sTNY;><!6=ckW_u7qDHVzk
z#*(dM%N`!2ERB8l-P5~$&-=d5_x+FKe;f|x`fb;Fo#*d&&D<l>$UvKmU6`GTiHS>B
z2Tx#PLV!$6%u>j`umwN+HV6J=Z*<;NYju5VcXxMXZF6a5P5%1k<-AqXjMbkD%hR)q
z2FYv6L7OV14Mo3Ay@%^jQBh}O)-@tFrlx;r-dP_TpE!PFvuk{7dwaWoaHPDv-225^
z#)tKc?80M;`nvjbCr`@28&a5?&Gc)dt4vI&r@DB^)USUgjU(`pp5WQYa2}(q65?L}
zjX!pGTgc5<-QUY|cH}wAH0AW<&gxb#SH4<J#|C74<$YAAcjd<mn|mh6c1WoRhoUUy
z0UIU4#oI;C&Ak(YcjYHm0wjcu>$aWMhvnqZPKoQ(7%um+faI7pHmD+sb*}f;p+Wa$
z1=O0dmPkp<t)@oShKX_Nl26OURa@W7MakkXHr{WTgN{xL@@=0iiC=)D(%GhSlaB=O
zhrnUM4cjzCZ1SGkpS7d$%#{4SbsU@V2+!9CAr9aX-xe-xlsah06L7mJ{>&;TvTca^
z{uT*9o8Sj4W5Tu!Ry6ZCew_4a4CSZ4AgMz5kR2s4YS?<s13~5^NL7uc)8+uUV!&2=
zj+^Wfb(O95hJNPs*c(04&&z}-=o(((gd<dg{k3R$bCl8CwKF>E30FHd(I`4O_YR8Z
zR)_J*^%#-j%AK9HHPvKrcoQ)?Pt8YoUP=e~?Vnnan^sT>9y)+w0q%s_&!t+Tw&dN2
z$qT^&eI%SdFgf-4rM&|5c({<`GD*nXLDIr$#MFjz4ygRC6+vI8(@PE=pjGbkWU~lG
z#)1125FLG^T6`4P5`g0xb20=P6Lo-c{$s&Ejl$)-e(x5gxJ9D31VoCrd2WRA7_LFv
zzyHB%s2bOK0!zHiN{xy6=+wpSb^8s44Y2dRf5{n$a1Y{nfwb#}1c>)Kp39{VH=3LJ
znt!8;V|8lKW*EG%G^CT9SxhksF*vVHz2p-0MG~*`Na*8!D_6kz9sx^^z%)09zSIRm
zs+`p%_$YB`>nHm>U);nlAv}?>;EEkDZ6}8hf9R0F5h@E0=C^1dl$T<hXBzaWnj;o$
zU9#<wF2UuvBenR3EbKuD=?f{TO<9w_^tk4_0Q1idiTsA`Zut2Ox{}~qAa@}jx>Cv%
z%Q9=P62d$7<(NE9o2pzGb)q*QrH&0_BLIpSQ|at@sxT#&?U@@|JV9u$R*O<kf0}#r
z6TK-3<r3vU2}!S{QyK@vp>GaNPfsFC?(&F36eOT;`KecElgTOyya9aF2d=4INP690
z!z&#(kZCIQ7{CJHXO@#x^Gi<OuIfoCMa4_zh-7N-doE0)fT)Rxf?HkS323Vl{bAH7
z#CJ95m5D5r`eVMP??g>i!ON2pQfAs$4s%4`<fE)&#;;jL(WR)jwUDA(k2fToNlkmj
zk#=3+V+5KcLG|;_#P-zy7Oa{dxb=KIY>098_Jjb^+VXl|nX-$rWO!478^2k=hXuOs
z&3jpoUG<XYhaya3XF{^}#r92s{b~&l5OyvWh<uIIV?j|t$Ay>KAIAM?g+v^=wNHBK
zG|Fvis=hrZsA<5ZNsfb@0k0Z@wMkUFUWpGZ+0!sR>={T!<x@&#iFS7@<a*t$eIzzj
zR7{iBi;J63Q_H1KZ$D@p^9IH|qJMDvABgWRX&NVp?8mf?k54>E#GE-$z4D_CI^n{8
zL?MX{b6FjtJc|ErLgVnpwxe^wTY?Ak%iDDpZ#j@YHOLH=3uRrmj=Fa#@CeoKsj1Xd
zc+EAb7A1->C?JQeQk#$QcDwuL80xbVA5HFU+xqG#b=4ZUdA7+}U#y}GbF|EO_O7$<
z(_v}j0lOP&v%zLsC4~kbWc`n}dlJOV+y(Jp5wXi<rF@55E=&_C96*os#9c9JwgL;i
z(~2|b8P<#}w5&DPQ}2{bUclOtK9yNMaWlMW>HJtn>N?G6FJ*W#Ns9V$zJjY@L-t2S
z@X_W19*Qz6y)4^?XnFT_JCA3v%tL%!Z^8ck^(9YAubGAHT==cU>*61}1a)(P4>A}0
zB#?sI-b5n|`B{XgUmH{Ab1W*rFH#u)0x{ZAuT!Exu`WJ8#EUOVLi<h=ANNm2WlR%=
z?%j=4*29{Teja-GU43__2t|^-JK%>mj@P<5?@`Kz<D(>ivJvkBjylVTI76-ltDQwa
z%2<0<z(BWure1;71Bv>a6)nQ9DWUub71W}hm(y%IQ$-f1YV64h?7S#ss0&PrO?diq
z)t-W!ZV&?Mj;BQfX@IzekONoNa~$W)+KN6vx8=h0ICINp$0Z=puX`E>g=tg1DIhA~
z$#FbE@+9&&)N~SQJaKgipylcUd0D}>75TDeVlV6bFL%ZCl9akgPmb^=Hb#Idli;K|
z`uIxV>S4lBF=XKFCenEe^=JD$PplFt%DlurjOK8cYWBWZmrS(pz#Vi~_}L~z=JjsE
zl(d9{WSg>!i~((<D=skI2|-_8Ufv#J&w7eljGvHU0Jzyz9ti|-5&5)I6skBda%IM*
zB67>+W2u%c=Sn_|jI7q5>=R!v5};kaq;9u3HFJsl(<JP)y8nyWdZnixBDAcb;myP+
zkjS$X<-KCadD-ytr#celLK`BKrLV0Hjy6F;PTsO}MA`$X4TrGp7fGQ*!(Jav3ZYi5
z*KA`I%XKnpajU-FZigB?xN4KgN{>BLZC2>(4;uPrS@T*Z%+uvC?d~yMyLIXf{?ZDu
z)(aa`3kqr@{UT~7sVz~$lpflr=sO=szF6-g#}+7xN0+79FkSpPIS8!Fe%$aUW%HLO
z`0#2MqJ%Dx{hynYg>-=IaQT?9`*(n$2>-gCA>QnEVB+hOl9Q0i>4TG>$S>zB`l^?O
zvR!juq_hdwX}3_$1Id<!akJn7S@PUum*|EdFU6Yd7fkxJ;+$W?+L(!KoR+e;)N2E3
zoPm{xL~#>xP!hrBEONOLc~bWvcQ5#q@bffwQr?X6b2!p2Ind|<jr}CGhACDi<1uF(
zh)dn)8SFqZI*c#sMH5!H<V!yTrOHSdh-%A*LER5i3sog#zZSv`Oy|ppzLSuOSRqDT
zU#)U-G`5)e`qtm&5*O|u`P<T`GsMwIg2U}59D-VOb{%8ISvj>%L&O%$$IXuHZ-jJ$
zxFSwdj0{pb7wd!{#ucmaXLe!4eQ&LvV{^IWHP?rY(W_H3t4O)=T?MJnGhdh{IblXt
z(vfJBs;G?5o=RY)whDj>yVg_Z;9Kw>6TKCY8P1yh5NkocpC_^SL9qc(LRyfi@ejxX
z2cr(#=Ze@3v`m{6cq;>0s>aR=kj@lzO!=5Y2_myZ^_9Ea*%#tx->_5MBpP;(I0I9Q
zF5cLvOlpT(xWb+e7V0e(9C850)9T~TMZEIK;<sE8^_0)%S2$C3q?j|*dsAI!?}M_l
zrE@t`J^P+O-vY4;ZePm>=49@UzEIIXoCEr!=kwa3q+Gu-5q!b?Xlg9jk8+$-a(VXK
zf$ZTuE`YP&r<klRAE&qclFPPsb4=X3<wBj>?O}A>H)X0jCoZ{ke;nA##PbAETvo;3
zu;>Dy`Di4p)T^DZuLTcxw{WkoJt+}VQgV0^$zyve@9q2h0)l+3BiyN8a{9*mqPVY$
zil*|?G)laRc$j;^m!UG3k9L8mXt?{5^DqX4k_DC(qDYP~ja{42K12K?+A1peWxtA;
zxae@R)W)mqB_ujE`f=*Wx7V`rxsPpU>VbsgQeoPB_G4FX#C1MP<D+zJFHwOD_DgJI
z3XW-+I=J8NeDksQ&PozJ{J81U)~5^4TPNoi)bcM^ozYEYepi(Mf3C!1Z{#0#c&hL^
z$RbG4{#H(=5N7oZ{;ZPQz=AGN9AqJlI_=}!%13CyNg3_4c6^=n4Z$;4g6$2s*?P<<
z&Er{OBj<*6vP-qM11hQBQ9ow&5MlZz{q@Bf=Y{Hk_ul2MEfarqJzPkdIPxMrW?eX7
z!ED$OJ-7NPb9J`j2@ihH&yPP_=5-?nE*iS~241UHN?w=Hf22-bIH_qlq`E-4@-t>Y
zeY77r7E-rN?-^Px%h;NIUOGbm?$NfkajrUPVQ?jFqN>^|XX=f0o1EqOE8Do(mc&yT
z{8~lT(<Pe`kGIF1CP$9m>3{AUzvHPml2N$sb5gWK_4(%h54-P5@|;3~w`00@+;`7F
z8cK>~Wo-?Mf@d<-`er$lgZvkD7k7sDhm=fLuWm=U1i2_i8xE?tPZM^knIWe4wn=z^
z={Eex0WmR=;D?VrOh{%X0Ko(znKb_C_|xJ)qyAgU{~h($h5s4#|J)vq`WKderu+%y
zpBDe^C|ePKb+~^P{NG}L{)(peAu~f9H&S{8H0*%4lU=$xhA)(KoVvDlZTvgxqK|~S
zzIC^%D@$FAZ}&bOf1#(()eb%miE(E52bKe3sDao6tMm^$Z2T)bBluVDUj_V?9cJyn
zZuB=J^p{9>xdb|Eca2C)XN(ZgZ6PWN)YyLv0)A(`!vuZWt92Xv7K+gTmNa-ks`8J_
zBwl_9@RL*JHwnWanL`Y@>$~ibr1t|`My-f&5IHy#@ygLyIloL$WVAyAc=J7iLs=yK
z5}z%ej}y+z5tXeQ-RfJ8toPWsht=}K0|@J-I$4ou!`w(?mBfbo7!`3O^TlnCtxX><
zcOe}Pxa7Nb?vLDpi2=xr9XIeux*0+fKoqf!iJ{sn0kvw;+H?*xCm2EDwvmW7_o#Al
z$Uybx;Pncd%@M=Y^y5epC@)TZ*r|oo>N%e=2K<7NCc1wcXco_4?YjmefNU*+#%WE-
zg}zUehY+K@wURAGA%n-BYqSFb5ZEs6t4@<*)ORY^kZcejv{a|EcT5V6Iz$3ttb4PP
z62V6v<v<O92+d@p(fxS^7kTk0F$DBA?6#jp1}8ct8EnqGC&kF+qHZ%`;;<=pkV<tN
zTsw61_7_z%2T5w4W;n+|L}(4q#5hHvl>kh95Mq??`-H%>8Ut5v5h!RF=m~H|E-ZTS
zD0PISbPgHAO9H7=eAMl`<&IL+8Yzl48>D2HY5<;P&vK6_Jxpj8M^pWLt|J{e;lNB6
zp^Do|2k;LIW=q=&+ZMc7iq}inIsyDvPy^g@@9Q5ecj`YLO9uPf95xG^zbmHPg2{j#
zP8u`mXu2g3B=%T^qiv3A{MyagB)$JjX?><FfzQ__%+Lm)d#5~ri-7IgKtzgR`T=~&
zbn|w^Rk};(tJ(PCA=iQ#+n9Qrisz+v3M`&Fa3GQ-Bm~XuDyZ_{hg>q%t(Qn^E}daM
za#Y!!(@|n8q$k9ZOCcL1B?EN(+@Wz#9Dty|h95VnuP)w5aJx=P0}J$<S}H-@@G@&m
zBguR!f0tEl`@WY4a+DG4DF93*DyLY<Es?%NqERgLUTYwNq?2I<V59e=RSb~CVUnaQ
zN0!<_LTSE1C2s)az0H$-h6jI~3!?aWrFCBABxxva;iCM|ROeI4gQD1t`(IooE(7TF
zcPKIpUetgC!^wt;aT~}LH=M=DZGKcV+r5_1JG;{mpYP_A5%0F0&yiJi{?|$Uw4fQx
z7(L)@;znIVz*j@H%`DUHr{JJ(G$`-GV?Q4eaOI4bZ_SNP{h#rcF)TcsXe6^e3r_?4
z*mS%gHb?2h#T#nu#Bb>UN*a*~t^`vX?+V$o#Lfo~&c0^Jgu7&lq+~^YVy{}U33bue
z4{E}VB^!LDef}g>NfYW~CxIT7AW9oJE`z)ax7-gFPk<K1QTrRb&0!Yf_IF?wtVfg}
zjqVP-5+U?79?W5^+rZ{^0leEjxNGI8<0zUP7crMab$|;ba$wpo0><zz4ICJ20eq+I
z;>)&4EZGS54LAV$@eAe${Coab-%%@Ro4YtHqCOJRBu)T2;4YN60AgH#y(FYncf#g~
z)%SAgSv9#0!;P}1bJgh$_g{J+ATwe%RjC`V!AE59bE)h=(QvMtbXoqh<}SC*=jGC-
z`OX7wqtg43L;)782klAW%V+%s^I@i8FUvG{wJP+teJgUEL(Hr$p10ST4u&Dcl9Y-p
zdZz*bE5U)HnZist>S+{9N5%>G*FaX$Vk8nH33s_Iq~dOo!9ncsnZ@`Fz5J#w)nA|0
z)?7N*uUL9F?vdhBNP-v39#Ya(C~8P$Qa&^3i#UU(!3%(*6a=u3^^lS#U9joft}?Kd
zWCS=Kr~VF0LncW&$|6}{68Z7#TdXeK>^PV=$P$HZu9I>3Xw&vq>5aW!T-z5E1<vDy
zMJVc-VlkG@(^2%JdBALVT-8zj>D=yhX|ip{4OcDDa`kvHjluLN>CLT^j^+lQ-;Gkm
zXni~k)%V#vJ!u5A=&}>BlGJgo9Deu`$^wHoM@<2{T|44M#g}^^#6>KUxlDjYr*_nT
z;K205?fkA7bO0G3{ffc%RWN~_8SXQFN`(a<q7^I>ps2$9aIo+=s{E2Tg`JoWY5?rD
zoR~KfN1*qdW8cj<;bbGAhzKBtO#%Brpaz9N;-Dygd`GMOKD&nxz@Om<X(HBh&tOXA
z1o0{rcCADbNvPZ|>L3hplGIe|rTjLKAe*S=&P@V;t~vt#$7@mu;jUkEOBAKpm`@4P
z_?1Q9NW(xba}f7^c`Sx}_Y#y1k!`R<Fv|Z979F4z3L*9!rygaogG<02KbGnUYs1F;
zi}6;l72cYCY@59ng@81msCJM+jx%IA15v!Kg!C^<BLSKvM^-`k+#|HWz=St@t@sh>
zYw1CJiEP1DJ@j)EC&Ha=iF%A;#XODwRa`CxnG%Nxy~t0S=E=_Qxf$PIq-Qn|;xtgO
zRx+pVV|AcV_NLXTOwun6FGDA~OV1TQD|PFZ?U#->tC%e>W%ut6IZ&9DWD0$OB^Xp7
zf8)ryRxazNX?62b0im}r>tkdkm{2U;qT2?#5_l2rDbQn;>xJ$E8RGprkBeQ)G7Ef0
zrg3Gi<pm}HNbM8AqXhiZb518noy69w-1R@WkZYiYdbyo(#Q}CF^V60$p{*)GlTOZ&
zv=6X6L<1JPhrF=R?*tgFV{Hs{s7kTHO^AaS^d>=X?m)oW6g%dqcw<&EE8HB3B=fk=
z%^11n1_m=+ES^=Y9dT_4?gMujJw2QWz9il;iO4;{=%_kQq8jN1BTEaStqV}}^+>nj
zsbC0nivMpbAsGgPdsyIEhQ7Kns$pOKN-+YmkN<KV|J9TB5T5Zi&KRl{SVM<@iTbP1
z`^Ez_l{r>peumcbMu7hXgL!2F|2?=HLVc5<B`$1bAi-fyR~PWJhgvtLh>X+0V|#;#
zF>!-x<RlX)3C7P)^ZTWQB(>up!(%B!T~tNFBX0z^I^)1H$EieR<=St*Ce>1o`s#4Q
z!rVYzVkG@$+FO__zX+1~U{EqR(!+o`FHbffHZ%roF8m!=OT=54S^(jm4z+3njC)j&
zBP;#puRY;vAy&Zd=FZIBi0<B)RETjSg%pCQp2DHci1CW~k&T#NL%DwjK@TdiP+gku
z2`LI*nZGFNbKuwDbBrYc%i74X;O*_;N{ijC;;rJHD(h{_kWJ(-Iim#dlH(Elv^grh
z<Wy}y<&IDFFx%MF_QuZPXd%Yj775ZCMX*&nZ>@vo+dO>Bwlp9_;IC^&GCCNUm=d@9
z2HY`!Ruy9PEI7DNU$km?XxDRhc5c+(0f66O;7i-kq&cRK?DuA~*kbqcZfVWov)%{B
zcV~xY-N()f-8L4!=u+5*x%U)TI=CC8Xd9?DgVi-H*|RC~S$4FS^uW<3hV?M;6hZ8F
z9ts&ao1dW`{BCDQH54h147EK1%x<Yn?f4M(ZGs5WGF#Tc82R$Fs+7fm992GwhKD05
zsht?dM;q-G*!;P1@hU0FfS3eF5=l<sYLxyXQ{^@xJM@u&->&yQ-);O@ZP)`l4fkcG
zRUWio=}R4&Jh6DUN45+?QZ$gXtz&1+QN)??f*#Mv&j)f4qzy!DDPc|l=tOkHodcNB
zfH-w1WNFxo3kM=_U^5#=fan|Av}&wqKtv*n0exZg*ru}0N_T{b;JaiK(3}ge2n{M;
zK6QozFIgmLavlgaK-6LzZjq9L6oz^#Da&pQ3l8jGxB~<!%`70ZOSx)4Mrt7OKKl9a
z*XeB@6rTQmT~2igc<;WmRQV|2j5MBaj+22UkelWzL3?u`E3i)+W8fw!ConD+t|8Bj
zSGk9+wEJ-yAGMp{ZXx)&(Q8tW3?M^|s1pWMS4vXq=AuB3gi!OIS~a~;TQ?reA#|;I
zgo~(RFLhLxE9e^+z+4k?7tmLU!3H&~Iyh2yPHUuguF1bMZsDb9ybz}Pp$=Osiqlli
zlWE}_05=vlYk`fHN090<wAX1b?{dUn3;%*Yyn*IiT#ndcvRBk#kc)rI9;=2re5PH9
zBX-}Nyv;j?Xq1&@M1<!p9af=NN06Z~!X`nqdj*^35grqfjj`34$f|~8e~j087jM3a
zSm<Y+g14wB1nA9JO>hCvU-B)_T4f{cQU3lqx|Y+TRUAx-=~?Ph^fTEa%|RF1Lw5RC
zqDs{pnKlc!_8fnfjH2ch4xW78lyCT^@ABy*oD<A2F2s*Qpao4_yH~zl9aAPz&R6|g
z`gsM*y&=uy8>!4S+h)`gIL=5NR$-3q&cP40MqPGFK^-L%0t~<xE}|c;b9(CI%XBm|
zcGpFG*@rx0H%(dhQZ#-Vqx)~2!bjmxoy|H|ZDse4(>vfRcAmCrb?e1B&m<P2nmWwN
zedgj+^vm(6TaTLDV}c!bdefq%!}(I^gIfJecDH|_ZWF-tyWhcAthu%rZPB0j;<m4=
zp5Jekk~aMG7=u_N1ZFOr>Uf-pu3a|$I@9Yq`%(Mt!;laOuKKm#xtVK*aGXB?e@r?3
zX@j?W_H4Mt`E0G7?ZZRUV<U2Eeu1*|gC(!JKV)&k?6vNV?LiaJpT%N*iBGjAido;*
zv-5LD@7`R$QNiL_8b%OBkV<f`>(i++$-LO-bzZ@+W?zRnjZscrxse;aQ>cxE=Q-Uf
z-^dz9a(F%3Y+~NfS1@+$zSWz{aH^a@*0oMI6FbQP`Hy5ZB*K@S{y-mib)GiRfAMnQ
zx6G=sKa2*p7?>NwB-<U2O-4Fn)5kA}sC6&?&Da!kqIsmqafkM7^BngE2;3?MUg^Xg
zO?27Csn@T)ux1SckX1(1cs-Ts_^I!C8sM52W~J8fwg$+v00KG`6(oWe&CMK&Zz3~H
zw>6$n6hS}_&51;Sz-<jC<~{#<LHYCYUjhFX_YcQ^6!^OX{qKeUKMDUr@Q*--<xkN5
z2aaDLw^B3^p-er@o_=Rga%qChPY`2WsUK%QaO~+~_8bpmLNEhJ4Uj4H&oBOc{r8Cf
z47Ak@ReC)yEQc^+qpdH@wQ=k*W$q9iVM7>k(5_!^9M4(CF~w`7*3v&`?B|7jo=U5E
llOAl=9JV}E-=PUn<DIqSBaT(h@W08KbhQldML1j1{{aEzKeYe=

literal 0
HcmV?d00001

diff --git a/uninstall.sh b/uninstall.sh
new file mode 100644
index 0000000..3081a3c
--- /dev/null
+++ b/uninstall.sh
@@ -0,0 +1,104 @@
+#!/usr/bin/env bash
+set -euo pipefail
+C_RESET="\033[0m"; C_DIM="\033[2m"; C_BOLD="\033[1m"
+C_RED="\033[31m"; C_GRN="\033[32m"; C_BLU="\033[34m"; C_YEL="\033[33m"
+info(){  echo -e "${C_BLU}➜${C_RESET} $*"; }
+ok(){    echo -e "${C_GRN}✓${C_RESET} $*"; }
+warn(){  echo -e "${C_YEL}!${C_RESET} $*"; }
+fail(){  echo -e "${C_RED}✗${C_RESET} $*"; }
+trap 'fail "An unexpected error occurred. Exiting."' ERR
+
+PANEL_ROOT="/var/www/snowpanel"
+PANEL_PUBLIC="$PANEL_ROOT/public"
+STATE_DIR="/var/lib/snowpanel"
+LOG_DIR="/var/log/snowpanel"
+ETC_APP="/etc/snowpanel"
+
+NGX_SITE_AVAIL="/etc/nginx/sites-available/snowpanel"
+NGX_SITE_ENABL="/etc/nginx/sites-enabled/snowpanel"
+SUDOERS_FILE="/etc/sudoers.d/snowpanel"
+
+COLLECTOR_BIN="/usr/local/bin/snowpanel-collect.py"
+LOGDUMP_BIN="/usr/local/bin/snowpanel-logdump"
+SVC="/etc/systemd/system/snowpanel-collector.service"
+TIMER="/etc/systemd/system/snowpanel-collector.timer"
+SF_DROPIN_DIR="/etc/systemd/system/snowflake-proxy.service.d"
+SF_ACCOUNTING="$SF_DROPIN_DIR/10-accounting.conf"
+
+PKGS=("snowflake-proxy" "nginx" "php-fpm" "php-cli" "php-json" "php-curl" "php-zip" "php-common" "php-opcache")
+
+YES=0
+PURGE=0
+for arg in "${@:-}"; do
+  case "$arg" in
+    -y|--yes) YES=1 ;;
+    -h|--help)
+      echo "Usage: sudo bash uninstall.sh [--yes]"
+      exit 0 ;;
+    *) ;;
+  esac
+done
+
+if [[ $EUID -ne 0 ]]; then fail "Run as root (sudo)."; exit 1; fi
+echo -e "${C_BOLD}Uninstalling SnowPanel...${C_RESET}"
+
+if [[ $YES -ne 1 ]]; then
+  read -r -p "This will remove SnowPanel files/configs. Continue? [y/N] " ans
+  case "${ans,,}" in y|yes) ;; *) warn "Aborted by user."; exit 0 ;; esac
+fi
+if [[ $YES -ne 1 ]]; then
+  echo
+  echo -e "${C_DIM}Optional:${C_RESET} Purge snowflake/nginx/php packages."
+  read -r -p "Also purge packages and autoremove? [y/N] " pans
+  case "${pans,,}" in y|yes) PURGE=1 ;; *) PURGE=0 ;; esac
+else
+  PURGE=0
+fi
+
+info "Stopping timers"
+systemctl disable --now snowpanel-collector.timer 2>/dev/null || true
+systemctl disable --now snowpanel-collector.service 2>/dev/null || true
+ok "Timers stopped"
+
+info "Removing systemd units"
+rm -f "$SVC" "$TIMER"
+systemctl daemon-reload
+ok "Units removed"
+
+info "Removing helper binaries"
+rm -f "$COLLECTOR_BIN" "$LOGDUMP_BIN"
+ok "Helpers removed"
+
+info "Removing Nginx site"
+rm -f "$NGX_SITE_ENABL" "$NGX_SITE_AVAIL"
+if nginx -t >/dev/null 2>&1; then systemctl reload nginx || true; fi
+ok "Nginx site removed"
+
+info "Removing app files"
+rm -rf "$PANEL_ROOT" "$STATE_DIR" "$LOG_DIR" "$ETC_APP"
+ok "Files removed"
+
+info "Removing accounting drop-in"
+rm -f "$SF_ACCOUNTING"
+systemctl daemon-reload
+systemctl restart snowflake-proxy 2>/dev/null || true
+ok "Drop-in removed"
+
+info "Removing sudoers"
+rm -f "$SUDOERS_FILE"
+ok "Sudoers removed"
+
+if [[ $PURGE -eq 1 ]]; then
+  info "Purging packages"
+  apt-get purge -y "${PKGS[@]}" || true
+  apt-get autoremove -y || true
+  ok "Packages purged"
+fi
+
+echo
+echo -e "${C_BOLD}All clean!${C_RESET}"
+if [[ $PURGE -eq 1 ]]; then
+  echo -e "SnowPanel removed and packages were purged."
+else
+  echo -e "SnowPanel files removed; packages remain."
+fi
\ No newline at end of file
diff --git a/web/api/cap_reset.php b/web/api/cap_reset.php
new file mode 100644
index 0000000..2c0238d
--- /dev/null
+++ b/web/api/cap_reset.php
@@ -0,0 +1,36 @@
+<?php
+require __DIR__ . '/../../lib/app.php';
+auth_require();
+header('Content-Type: application/json');
+
+$stateDir  = '/var/lib/snowpanel';
+$perFile   = $stateDir . '/period.json';
+$lockFile  = $stateDir . '/cap.lock';
+
+$cfg = app_load_config();
+$cap_day = (int)($cfg['cap_day'] ?? 1);
+$cap_day = max(1, min(28, $cap_day));
+
+$tz = new DateTimeZone(@date_default_timezone_get() ?: 'UTC');
+$now = new DateTime('now', $tz);
+$y = (int)$now->format('Y');
+$m = (int)$now->format('n');
+$d = (int)$now->format('j');
+
+if ($d < $cap_day) {
+  if ($m === 1) { $m = 12; $y -= 1; } else { $m -= 1; }
+}
+$anchor = (new DateTime(sprintf('%04d-%02d-%02d 00:00:00', $y, $m, $cap_day), $tz))->getTimestamp();
+
+$period = [
+  'period_start' => $anchor,
+  'rx' => 0,
+  'tx' => 0,
+  'last_ing' => 0,
+  'last_egr' => 0,
+];
+
+@file_put_contents($perFile, json_encode($period, JSON_UNESCAPED_SLASHES));
+@unlink($lockFile);
+
+echo json_encode(['ok' => true]);
\ No newline at end of file
diff --git a/web/api/limits_get.php b/web/api/limits_get.php
new file mode 100644
index 0000000..68914e6
--- /dev/null
+++ b/web/api/limits_get.php
@@ -0,0 +1,54 @@
+<?php
+require __DIR__ . '/../lib/app.php';
+auth_require();
+
+header('Content-Type: application/json');
+
+$cfg = app_load_config();
+$cap_gb        = (int)($cfg['cap_gb']        ?? 0);
+$cap_reset_day = (int)($cfg['cap_reset_day'] ?? 1);
+$rate_mbps     = (int)($cfg['rate_mbps']     ?? 0);
+
+$stateDir = '/var/lib/snowpanel';
+$statsFile = $stateDir . '/stats.json';
+$metaFile  = $stateDir . '/meta.json';
+
+$usage = [
+  'start_ts' => null,
+  'period_label' => null,
+  'rx' => 0, 'tx' => 0, 'total' => 0,
+  'cap_bytes' => $cap_gb > 0 ? $cap_gb * 1024*1024*1024 : 0,
+  'cap_hit' => false,
+];
+
+if (is_file($metaFile)) {
+  $m = json_decode((string)file_get_contents($metaFile), true);
+  if (is_array($m)) {
+    foreach (['start_ts','period_label','rx','tx','total','cap_bytes','cap_hit'] as $k) {
+      if (array_key_exists($k, $m)) $usage[$k] = $m[$k];
+    }
+  }
+}
+
+$current_rate_mbps = 0.0;
+if (is_file($statsFile)) {
+  $s = json_decode((string)file_get_contents($statsFile), true);
+  $arr = is_array($s) ? ($s['data'] ?? []) : [];
+  $n = count($arr);
+  if ($n >= 2) {
+    $a = $arr[$n-2]; $b = $arr[$n-1];
+    $dt = max(1, (int)$b['t'] - (int)$a['t']);
+    $dr = max(0, (int)$b['read']    - (int)$a['read']);
+    $dw = max(0, (int)$b['written'] - (int)$a['written']);
+    $current_rate_mbps = (($dr + $dw) * 8.0) / $dt / 1_000_000.0;
+  }
+}
+
+echo json_encode([
+  'ok' => true,
+  'cap_gb'        => $cap_gb,
+  'cap_reset_day' => $cap_reset_day,
+  'rate_mbps'     => $rate_mbps,
+  'usage'         => $usage,
+  'current_rate_mbps' => $current_rate_mbps
+]);
diff --git a/web/api/limits_set.php b/web/api/limits_set.php
new file mode 100644
index 0000000..099f166
--- /dev/null
+++ b/web/api/limits_set.php
@@ -0,0 +1,28 @@
+<?php
+require __DIR__ . '/../lib/app.php';
+auth_require();
+
+header('Content-Type: application/json; charset=utf-8');
+
+$raw = file_get_contents('php://input');
+$in  = json_decode((string)$raw, true);
+if (!is_array($in)) {
+  echo json_encode(['ok' => false, 'error' => 'bad json']);
+  exit;
+}
+
+$cap_gb        = max(0, (int)($in['cap_gb'] ?? 0));
+$cap_reset_day = min(28, max(1, (int)($in['cap_reset_day'] ?? 1)));
+$rate_mbps     = max(0, (int)($in['rate_mbps'] ?? 0));
+
+$cfg = app_load_config();
+$cfg['cap_gb']        = $cap_gb;
+$cfg['cap_reset_day'] = $cap_reset_day;
+$cfg['rate_mbps']     = $rate_mbps;
+
+if (!app_save_config($cfg)) {
+  echo json_encode(['ok' => false, 'error' => 'save failed']);
+  exit;
+}
+
+echo json_encode(['ok' => true]);
diff --git a/web/api/snow_log.php b/web/api/snow_log.php
new file mode 100644
index 0000000..7900aeb
--- /dev/null
+++ b/web/api/snow_log.php
@@ -0,0 +1,23 @@
+<?php
+require __DIR__ . '/../lib/app.php';
+header('Content-Type: application/json');
+@ini_set('display_errors','0');
+@error_reporting(0);
+
+$n = isset($_GET['n']) ? (int)$_GET['n'] : 500;
+if ($n < 1) $n = 200;
+if ($n > 5000) $n = 5000;
+
+$l = $_GET['level'] ?? 'info';
+$levels = ['debug','info','notice','warning','err'];
+$level = in_array($l,$levels,true) ? $l : 'info';
+
+$out = [];
+$rc  = 0;
+
+$cmd = '/usr/bin/sudo /usr/local/bin/snowpanel-logdump ' . escapeshellarg((string)$n) . ' ' . escapeshellarg($level) . ' 2>&1';
+@exec($cmd, $out, $rc);
+
+$lines = array_values(array_filter($out, static function($x){ return trim($x) !== ''; }));
+
+echo json_encode(['ok'=>!empty($lines), 'lines'=>$lines], JSON_UNESCAPED_SLASHES);
\ No newline at end of file
diff --git a/web/api/snow_status.php b/web/api/snow_status.php
new file mode 100644
index 0000000..180f5f5
--- /dev/null
+++ b/web/api/snow_status.php
@@ -0,0 +1,5 @@
+<?php
+require __DIR__ . '/../lib/app.php'; auth_require();
+require __DIR__ . '/../lib/snowctl.php';
+header('Content-Type: application/json');
+echo json_encode(snowctl_status());
diff --git a/web/api/stats.php b/web/api/stats.php
new file mode 100644
index 0000000..7574c28
--- /dev/null
+++ b/web/api/stats.php
@@ -0,0 +1,33 @@
+<?php
+require __DIR__ . '/../lib/app.php';
+header('Content-Type: application/json; charset=utf-8');
+
+$rows=[];
+$state='/var/lib/snowpanel/stats.json';
+if (is_file($state)) {
+  $j=json_decode((string)@file_get_contents($state),true);
+  if (is_array($j) && isset($j['data']) && is_array($j['data'])) $rows=$j['data'];
+}
+if (count($rows)<2) {
+  $lines=[];
+  $out=@shell_exec('sudo /usr/local/bin/snowpanel-logdump 20000 info 2>/dev/null');
+  if (is_string($out) && $out!=='') $lines=preg_split('/\r?\n/',trim($out));
+  else @exec('journalctl -u snowflake-proxy --since "48 hours ago" -o short-iso --no-pager 2>/dev/null',$lines);
+  $cum_rx=0; $cum_tx=0; $tmp=[];
+  foreach($lines as $line){
+    if(!preg_match('~^(\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}(?:[+\-]\d{2}:\d{2})?).*Traffic\s+Relayed.*?([0-9]+)\s*KB\s*,\s*([0-9]+)\s*KB~i',$line,$m)) continue;
+    $ts=strtotime($m[1]); if($ts===false) continue;
+    $tx_kb=(int)$m[2]; $rx_kb=(int)$m[3];
+    $cum_rx+=$rx_kb*1024; $cum_tx+=$tx_kb*1024;
+    $tmp[]=['t'=>$ts,'read'=>$cum_rx,'written'=>$cum_tx];
+  }
+  if(!empty($tmp)) $rows=$tmp;
+}
+usort($rows,function($a,$b){return $a['t']<=>$b['t'];});
+if(count($rows)===1){
+  $d0=$rows[0];
+  array_unshift($rows,['t'=>$d0['t']-60,'read'=>$d0['read'],'written'=>$d0['written']]);
+}
+$cut=time()-172800;
+$rows=array_values(array_filter($rows,function($r)use($cut){return (int)$r['t']>=$cut;}));
+echo json_encode(['ok'=>true,'data'=>$rows],JSON_UNESCAPED_SLASHES);
diff --git a/web/assets/panel.css b/web/assets/panel.css
new file mode 100644
index 0000000..c8bf4f6
--- /dev/null
+++ b/web/assets/panel.css
@@ -0,0 +1,133 @@
+:root{
+  --bg:#0b1220;
+  --card:#111a2e;
+  --text:#e7ecf4;
+  --muted:#c6d3ee;
+  --brand:#2b7bff;
+  --border:#223257;
+  --input:#0c1527;
+  --grid: rgba(231,236,244,.15);
+}
+
+:root[data-theme="light"]{
+  --bg:#f7f9fc;
+  --card:#ffffff;
+  --text:#0b1220;
+  --muted:#56617a;
+  --brand:#0d6efd;
+  --border:#dee2e6;
+  --input:#ffffff;
+  --grid: rgba(0,0,0,.1);
+}
+
+html,body{
+  height:100%;
+  background:var(--bg);
+  color:var(--text);
+}
+
+.card{
+  background:var(--card);
+  border:1px solid var(--border);
+  border-radius:16px;
+  color:var(--text);
+}
+
+h1,h2,h3,h4,h5,h6 { color:var(--text) !important; }
+.h1,.h2,.h3,.h4,.h5,.h6 { color:var(--text) !important; }
+.form-label,label{ color:var(--text) !important; }
+.small, .text-muted, .form-text{ color:var(--muted) !important; }
+
+.mono{
+  font-family: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", monospace;
+  color: var(--text) !important;
+}
+
+.form-control,.form-select{
+  background:var(--input);
+  color:var(--text);
+  border-color:var(--border);
+}
+.form-control::placeholder{ color:#9db1d6; opacity:.8; }
+:root[data-theme="light"] .form-control::placeholder{ color:#6c757d; }
+.form-control:focus,.form-select:focus{
+  background:var(--input);
+  color:var(--text);
+  border-color:var(--brand);
+  box-shadow:0 0 0 .2rem color-mix(in oklab, var(--brand) 25%, transparent);
+}
+
+input:-webkit-autofill,
+input:-webkit-autofill:hover,
+input:-webkit-autofill:focus,
+textarea:-webkit-autofill,
+select:-webkit-autofill{
+  -webkit-box-shadow:0 0 0 30px var(--input) inset !important;
+  -webkit-text-fill-color:var(--text) !important;
+  caret-color:var(--text);
+}
+
+.btn-primary{ background:var(--brand); border:0; }
+.btn-secondary{ background:#3a4663; border:0; color:#fff; }
+:root[data-theme="light"] .btn-secondary{ background:#6c7aa6; }
+
+.page-wrap{ min-height:100vh; display:flex; align-items:center; justify-content:center; padding:24px; }
+.maxw-960{ max-width:960px; }
+
+.equal-row > [class*="col-"]{ display:flex; }
+.equal-row .card{ width:100%; }
+
+#trafficWrap{ height:260px; }
+#trafficChart{ width:100%; height:100%; display:block; }
+
+.navbar-brand img{ width:20px; height:20px; margin-right:.5rem; vertical-align:-3px; }
+
+:root[data-theme="dark"] .alert-warning{
+  background-color:#3b2b00 !important;
+  border-color:#8a6d1a !important;
+  color:var(--text) !important;
+}
+:root[data-theme="dark"] .alert-warning .fw-semibold,
+:root[data-theme="dark"] .alert-warning .mono,
+:root[data-theme="dark"] .alert-warning .small,
+:root[data-theme="dark"] .alert-warning li,
+:root[data-theme="dark"] .alert-warning p{ color:var(--text) !important; }
+:root[data-theme="dark"] .alert-warning a{ color:#ffd267 !important; text-decoration:underline; }
+
+.input-group-text{
+  background: var(--input);
+  color: var(--text);
+  border-color: var(--border);
+  padding: .375rem .5rem;
+}
+
+.input-group .form-control{
+  background: var(--input);
+  color: var(--text);
+  border-color: var(--border);
+}
+.input-group .form-control:focus{
+  background: var(--input);
+  color: var(--text);
+  border-color: var(--brand);
+  box-shadow: 0 0 0 .2rem color-mix(in oklab, var(--brand) 25%, transparent);
+}
+
+.input-group > .form-control,
+.input-group > .form-select,
+.input-group > .input-group-text{
+  border-radius: .375rem;
+}
+
+:root[data-theme="light"] .card .btn-outline-light{
+  color: var(--brand) !important;
+  border-color: var(--brand) !important;
+}
+
+:root[data-theme="light"] .card .btn-outline-light:hover,
+:root[data-theme="light"] .card .btn-outline-light:focus{
+  background: var(--brand) !important;
+  color: #fff !important;
+  border-color: var(--brand) !important;
+  box-shadow: 0 0 0 .2rem color-mix(in oklab, var(--brand) 25%, transparent);
+}
\ No newline at end of file
diff --git a/web/favicon.svg b/web/favicon.svg
new file mode 100644
index 0000000..34fb5aa
--- /dev/null
+++ b/web/favicon.svg
@@ -0,0 +1,9 @@
+<?xml version="1.0"?>
+<svg height="60" xmlns="http://www.w3.org/2000/svg"
+xmlns:xlink="http://www.w3.org/1999/xlink" width="60">
+<g id="s"><path id="r" fill="none" stroke="#70D"
+stroke-width="2" stroke-linecap="round" 
+d="m39,4-9,9-9-9m9-2v56m9-1-9-9-9,9"/>
+<use xlink:href="#r" transform="rotate(45 30,30)"/></g>
+<use xlink:href="#s" transform="rotate(90 30,30)"/>
+</svg>
\ No newline at end of file
diff --git a/web/index.php b/web/index.php
new file mode 100644
index 0000000..05a720e
--- /dev/null
+++ b/web/index.php
@@ -0,0 +1,436 @@
+<?php
+require __DIR__ . '/lib/app.php';
+auth_require();
+
+$act = $_POST['act'] ?? '';
+if ($act === 'start')  @exec('sudo /usr/bin/systemctl start snowflake-proxy 2>/dev/null');
+if ($act === 'stop')   @exec('sudo /usr/bin/systemctl stop snowflake-proxy 2>/dev/null');
+if ($act === 'restart')@exec('sudo /usr/bin/systemctl restart snowflake-proxy 2>/dev/null');
+
+$active  = trim((string)@shell_exec('systemctl is-active snowflake-proxy 2>/dev/null')) === 'active';
+$enabled = trim((string)@shell_exec('systemctl is-enabled snowflake-proxy 2>/dev/null')) === 'enabled';
+$pid     = (int)trim((string)@shell_exec('systemctl show -p MainPID --value snowflake-proxy 2>/dev/null'));
+$ver     = trim((string)@shell_exec('snowflake-proxy -version 2>/dev/null'));
+if ($ver === '') $ver = trim((string)@shell_exec("dpkg-query -W -f='\${Version}\n' snowflake-proxy 2>/dev/null"));
+$flags = '';
+$drop = '/etc/systemd/system/snowflake-proxy.service.d/override.conf';
+if (is_file($drop)) {
+  $txt = (string)@file_get_contents($drop);
+  if (preg_match('/^ExecStart=.*snowflake-proxy\s+(.*)$/m', $txt, $m)) $flags = trim($m[1]);
+}
+$flags_display = $flags !== '' ? $flags : 'defaults';
+?>
+<!doctype html>
+<html lang="en">
+<head>
+  <meta charset="utf-8">
+  <title>SnowPanel</title>
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css" rel="stylesheet">
+  <link href="/assets/panel.css" rel="stylesheet">
+  <link rel="icon" type="image/svg+xml" href="/favicon.svg">
+  <link rel="alternate icon" href="/favicon.svg">
+  <script src="https://cdn.jsdelivr.net/npm/chart.js@4.4.1/dist/chart.umd.min.js"></script>
+</head>
+<body>
+<nav class="navbar navbar-dark" style="background:linear-gradient(90deg,#0d6efd,#4dabf7);">
+  <div class="container-fluid">
+    <span class="navbar-brand fw-bold">
+      <img src="/favicon.svg" alt="">
+      SnowPanel
+    </span>
+    <div class="ms-auto d-flex align-items-center gap-2">
+      <button id="btnTheme" class="btn btn-sm btn-outline-light">Theme</button>
+      <a class="btn btn-sm btn-outline-light" href="/logout.php">Logout</a>
+    </div>
+  </div>
+</nav>
+
+<div class="container py-4">
+  <div class="row g-3">
+
+    <div class="col-md-12">
+      <div class="card p-3">
+        <div class="h5 mb-0">Service</div>
+        <div class="mb-1">Status: <?= $active ? '<span class="text-success">active</span>' : '<span class="text-danger">inactive</span>' ?></div>
+        <div class="mb-1">Enabled: <?= $enabled ? 'yes' : 'no' ?></div>
+        <div class="mb-1">PID: <span class="mono"><?= $pid ?: '—' ?></span></div>
+        <div class="mb-1">Version: <span class="mono"><?= htmlspecialchars($ver ?: '—') ?></span></div>
+        <div class="mb-1">Flags: <code><?= htmlspecialchars($flags_display) ?></code></div>
+        <form method="post" class="d-flex gap-2 mt-3">
+          <button name="act" value="start" class="btn btn-success btn-sm" type="submit">Start</button>
+          <button name="act" value="restart" class="btn btn-warning btn-sm" type="submit">Restart</button>
+          <button name="act" value="stop" class="btn btn-danger btn-sm" type="submit">Stop</button>
+        </form>
+      </div>
+    </div>
+
+    <div class="col-12">
+      <div class="card p-3">
+        <div class="d-flex justify-content-between align-items-center">
+          <div class="h5 mb-0">Traffic (last 48 hours)</div>
+        </div>
+        <div id="trafficWrap"><canvas id="trafficChart"></canvas></div>
+      </div>
+    </div>
+
+    <div class="col-12">
+      <div class="row g-3 equal-row">
+        <div class="col-md-6">
+          <div class="card p-3">
+            <div class="small">RX (total)</div>
+            <div class="h4 mono" id="rxTotal">—</div>
+          </div>
+        </div>
+        <div class="col-md-6">
+          <div class="card p-3">
+            <div class="small">TX (total)</div>
+            <div class="h4 mono" id="txTotal">—</div>
+          </div>
+        </div>
+      </div>
+    </div>
+
+    <div class="col-12">
+      <div class="card p-3">
+        <div class="d-flex justify-content-between align-items-center">
+          <div class="h5 mb-0">Limits & Usage</div>
+          <div class="d-flex align-items-center gap-2">
+            <span id="capBadge" class="badge bg-secondary">—</span>
+            <button id="btnEditLimits" class="btn btn-sm btn-outline-light">Edit</button>
+          </div>
+        </div>
+
+        <div id="limitsView" class="mt-2">
+          <div class="row g-3">
+            <div class="col-md-4">
+              <div class="small">Monthly cap</div>
+              <div class="mono" id="v_cap">—</div>
+            </div>
+            <div class="col-md-4">
+              <div class="small">Reset day</div>
+              <div class="mono" id="v_reset">—</div>
+            </div>
+            <div class="col-md-4">
+              <div class="small">Throughput limit</div>
+              <div class="mono" id="v_rate">—</div>
+            </div>
+          </div>
+
+          <div class="mt-3">
+            <div class="small mb-1">This period usage</div>
+            <div class="progress" role="progressbar" aria-label="Monthly cap" style="height: 14px;">
+              <div id="capBar" class="progress-bar" style="width:0%"></div>
+            </div>
+            <div class="d-flex justify-content-between small mt-1">
+              <div class="mono" id="usageLeft">—</div>
+              <div class="mono text-muted" id="periodLbl">—</div>
+            </div>
+            <div class="small mt-2">Current rate: <span class="mono" id="curRate">—</span></div>
+          </div>
+        </div>
+
+        <form id="limitsForm" class="mt-3" style="display:none;">
+          <div class="row g-3">
+            <div class="col-md-4">
+              <label class="form-label" for="cap_gb">Monthly cap</label>
+              <div class="input-group">
+                <input id="cap_gb" class="form-control" type="number" min="0" step="1">
+                <span class="input-group-text">GB</span>
+              </div>
+            </div>
+            <div class="col-md-4">
+              <label class="form-label" for="cap_reset_day">Reset day</label>
+              <select id="cap_reset_day" class="form-select">
+                <?php for($d=1;$d<=28;$d++) echo "<option>$d</option>"; ?>
+              </select>
+            </div>
+            <div class="col-md-4">
+              <label class="form-label" for="rate_mbps">Throughput limit</label>
+              <div class="input-group">
+                <input id="rate_mbps" class="form-control" type="number" min="0" step="1">
+                <span class="input-group-text">Mbps</span>
+              </div>
+            </div>
+          </div>
+          <div class="d-flex gap-2 mt-3">
+            <button class="btn btn-primary" id="saveLimits" type="submit">Save</button>
+            <button class="btn btn-secondary" id="cancelLimits" type="button">Cancel</button>
+            <span id="saveLimitsMsg" class="small ms-2"></span>
+          </div>
+        </form>
+      </div>
+    </div>
+
+    <div class="col-12">
+      <div class="card p-3">
+        <div class="d-flex align-items-center justify-content-between">
+          <div class="h5 mb-0">Logs</div>
+          <div class="d-flex align-items-center gap-2">
+            <select id="torlogLevel" class="form-select form-select-sm" style="width:auto;">
+              <option value="info" selected>info</option>
+              <option value="notice">notice</option>
+              <option value="warning">warning</option>
+              <option value="err">err</option>
+              <option value="debug">debug</option>
+            </select>
+            <select id="torlogLines" class="form-select form-select-sm" style="width:auto;">
+              <option value="200">Last 200</option>
+              <option value="500" selected>Last 500</option>
+              <option value="1000">Last 1000</option>
+              <option value="2000">Last 2000</option>
+            </select>
+            <button id="btnRefresh" class="btn btn-sm btn-outline-light">Refresh</button>
+          </div>
+        </div>
+        <pre id="logpre" class="bg-dark text-light p-2 rounded mt-2" style="height:340px; overflow:auto; font-size:.85rem;">Loading…</pre>
+      </div>
+    </div>
+
+  </div>
+</div>
+
+<script>
+const $ = (id)=>document.getElementById(id);
+const el = {
+  btnTheme: $('btnTheme'),
+  logpre: $('logpre'),
+  lines: $('torlogLines'),
+  lvl: $('torlogLevel'),
+  btnRefresh: $('btnRefresh'),
+  trafficCanvas: $('trafficChart'),
+  rxTotal: $('rxTotal'),
+  txTotal: $('txTotal'),
+
+  limitsView: $('limitsView'),
+  limitsForm: $('limitsForm'),
+  btnEditLimits: $('btnEditLimits'),
+  saveLimits: $('saveLimits'),
+  cancelLimits: $('cancelLimits'),
+  saveLimitsMsg: $('saveLimitsMsg'),
+
+  v_cap: $('v_cap'),
+  v_reset: $('v_reset'),
+  v_rate: $('v_rate'),
+  capBadge: $('capBadge'),
+  capBar: $('capBar'),
+  usageLeft: $('usageLeft'),
+  periodLbl: $('periodLbl'),
+  curRate: $('curRate'),
+
+  cap_gb: $('cap_gb'),
+  cap_reset_day: $('cap_reset_day'),
+  rate_mbps: $('rate_mbps'),
+};
+
+let chart = null;
+
+const THEME_KEY='snowpanel:theme';
+const mql=window.matchMedia('(prefers-color-scheme: dark)');
+
+function preferredTheme(){
+  const s=localStorage.getItem(THEME_KEY);
+  return (s==='dark'||s==='light') ? s : (mql.matches ? 'dark' : 'light');
+}
+function getThemeColors(){
+  const cs=getComputedStyle(document.documentElement);
+  return {
+    text: cs.getPropertyValue('--text').trim() || '#e7ecf4',
+    grid: cs.getPropertyValue('--grid').trim() || 'rgba(231,236,244,.15)'
+  };
+}
+function setBtnLabel(t){
+  if(el.btnTheme) el.btnTheme.textContent = (t==='dark') ? '🌞 Light' : '🌙 Dark';
+}
+function applyTheme(t){
+  document.documentElement.setAttribute('data-theme', t);
+  localStorage.setItem(THEME_KEY, t);
+  setBtnLabel(t);
+  if(chart){
+    const c=getThemeColors();
+    chart.options.scales.x.ticks.color=c.text;
+    chart.options.scales.y.ticks.color=c.text;
+    chart.options.scales.x.grid.color=c.grid;
+    chart.options.scales.y.grid.color=c.grid;
+    if(chart.options.plugins?.legend?.labels) chart.options.plugins.legend.labels.color=c.text;
+    chart.update('none');
+  }
+}
+mql.addEventListener('change', e=>{
+  if(!localStorage.getItem(THEME_KEY)) applyTheme(e.matches?'dark':'light');
+});
+el.btnTheme?.addEventListener('click', ()=>{
+  const next=(document.documentElement.getAttribute('data-theme')==='dark')?'light':'dark';
+  applyTheme(next);
+});
+applyTheme(preferredTheme());
+
+async function fetchLog(n,l){
+  const r=await fetch('/api/snow_log.php?n='+encodeURIComponent(n)+'&level='+encodeURIComponent(l),{cache:'no-store'});
+  if(!r.ok) return {ok:false,lines:[]};
+  return r.json();
+}
+async function loadInlineLogs(){
+  const n=el.lines?.value||'500';
+  const l=el.lvl?.value||'info';
+  const j=await fetchLog(n,l);
+  if(j.ok&&j.lines){ el.logpre.textContent=j.lines.join('\n'); el.logpre.scrollTop=el.logpre.scrollHeight; }
+  else el.logpre.textContent='(no logs)';
+}
+el.btnRefresh?.addEventListener('click', loadInlineLogs);
+el.lines?.addEventListener('change', loadInlineLogs);
+el.lvl?.addEventListener('change', loadInlineLogs);
+loadInlineLogs();
+setInterval(loadInlineLogs,60000);
+
+function fmtBytes(n){
+  if(n<1024) return n+' B';
+  const u=['KB','MB','GB','TB']; let i=-1;
+  do{ n/=1024; i++; }while(n>=1024&&i<u.length-1);
+  return n.toFixed(2)+' '+u[i];
+}
+
+function setChartData(labels, rx, tx){
+  if(!el.trafficCanvas) return;
+  const ctx=el.trafficCanvas.getContext('2d');
+  const c=getThemeColors();
+  if(!chart){
+    chart=new Chart(ctx,{
+      type:'line',
+      data:{labels,datasets:[
+        {label:'RX/min',data:rx,tension:.3,pointRadius:2,borderWidth:2,borderColor:'#22c55e'},
+        {label:'TX/min',data:tx,tension:.3,pointRadius:2,borderWidth:2,borderColor:'#a78bfa'}
+      ]},
+      options:{
+        responsive:true,
+        maintainAspectRatio:false,
+        animation:false,
+        plugins:{legend:{labels:{color:c.text}}},
+        scales:{
+          x:{ticks:{color:c.text},grid:{color:c.grid}},
+          y:{ticks:{color:c.text,callback:(v)=>fmtBytes(v)},grid:{color:c.grid}}
+        }
+      }
+    });
+  }else{
+    chart.data.labels=labels;
+    chart.data.datasets[0].data=rx;
+    chart.data.datasets[1].data=tx;
+    chart.update('none');
+  }
+}
+
+async function refreshChartAndTotals(){
+  const r=await fetch('/api/stats.php',{cache:'no-store'});
+  if(!r.ok) return;
+  const s=await r.json();
+  const data=s.data||[];
+  let labels=[],rx=[],tx=[], sumR=0, sumW=0;
+  for(let i=1;i<data.length;i++){
+    const dt=data[i].t-data[i-1].t;
+    if(dt<=0||dt>3600) continue;
+    const dr=Math.max(0,data[i].read-data[i-1].read);
+    const dw=Math.max(0,data[i].written-data[i-1].written);
+    labels.push(new Date(data[i].t*1000).toLocaleTimeString());
+    rx.push(dr); tx.push(dw);
+    sumR+=dr; sumW+=dw;
+  }
+  setChartData(labels,rx,tx);
+  if(el.rxTotal) el.rxTotal.textContent = sumR ? fmtBytes(sumR) : '—';
+  if(el.txTotal) el.txTotal.textContent = sumW ? fmtBytes(sumW) : '—';
+}
+refreshChartAndTotals();
+setInterval(refreshChartAndTotals,60000);
+
+function setLimitEditMode(on){
+  if(!el.limitsForm || !el.limitsView) return;
+  el.limitsForm.style.display = on ? 'block' : 'none';
+  el.limitsView.style.display = on ? 'none' : 'block';
+  if (el.btnEditLimits) el.btnEditLimits.style.display = on ? 'none' : 'inline-block';
+}
+
+async function loadLimits(){
+  const r = await fetch('/api/limits_get.php',{cache:'no-store'});
+  if(!r.ok) return;
+  const j = await r.json();
+  if(!j.ok) return;
+
+  const cap = j.cap_gb>0 ? (j.cap_gb+' GB') : 'Unlimited';
+  const rate= j.rate_mbps>0 ? (j.rate_mbps+' Mbps') : 'Unlimited';
+  if(el.v_cap)   el.v_cap.textContent = cap;
+  if(el.v_reset) el.v_reset.textContent = j.cap_reset_day || '—';
+  if(el.v_rate)  el.v_rate.textContent = rate;
+
+const u = j.usage || {};
+const total = u.total || 0;
+let cap_bytes = (u.cap_bytes && u.cap_bytes > 0)
+  ? u.cap_bytes
+  : ((j.cap_gb && j.cap_gb > 0) ? (j.cap_gb * 1073741824) : 0);
+
+let pct = 0;
+if (cap_bytes > 0) {
+  pct = Math.round((total * 100) / cap_bytes);
+  if (pct === 0 && total > 0) pct = 1; 
+  if (pct > 100) pct = 100;
+}
+
+if (el.capBar) {
+  el.capBar.style.width = (cap_bytes > 0 ? pct : 0) + '%';
+  el.capBar.className = 'progress-bar ' + ((cap_bytes > 0 && pct >= 90) ? 'bg-danger' : (pct >= 70 ? 'bg-warning' : ''));
+  el.capBar.textContent = cap_bytes > 0 ? (pct + '%') : '—';
+}
+  if(el.usageLeft){
+    if(cap_bytes>0){
+      const left = Math.max(0, cap_bytes-total);
+      el.usageLeft.textContent = fmtBytes(total) + ' / ' + fmtBytes(cap_bytes) + '  (left ' + fmtBytes(left) + ')';
+    } else {
+      el.usageLeft.textContent = fmtBytes(total) + ' used';
+    }
+  }
+  if(el.periodLbl){
+    el.periodLbl.textContent = u.period_label || '—';
+  }
+  if(el.curRate){
+    const cr = j.current_rate_mbps || 0;
+    el.curRate.textContent = cr.toFixed(2) + ' Mbps';
+  }
+  if (el.capBadge) {
+    if (cap_bytes > 0 && total >= cap_bytes) {
+      el.capBadge.textContent = 'Cap reached';
+      el.capBadge.className = 'badge bg-danger';
+    } else {
+      el.capBadge.textContent = 'Active';
+      el.capBadge.className = 'badge bg-success';
+    }
+  }
+
+
+  if(el.cap_gb) el.cap_gb.value = j.cap_gb ?? 0;
+  if(el.cap_reset_day) el.cap_reset_day.value = j.cap_reset_day ?? 1;
+  if(el.rate_mbps) el.rate_mbps.value = j.rate_mbps ?? 0;
+}
+
+el.btnEditLimits?.addEventListener('click', ()=> setLimitEditMode(true));
+el.cancelLimits?.addEventListener('click', ()=> setLimitEditMode(false));
+el.limitsForm?.addEventListener('submit', async (e)=>{
+  e.preventDefault();
+  if (el.saveLimitsMsg) el.saveLimitsMsg.textContent = 'Saving...';
+  const body = {
+    cap_gb: parseInt(el.cap_gb?.value||'0'),
+    cap_reset_day: parseInt(el.cap_reset_day?.value||'1'),
+    rate_mbps: parseInt(el.rate_mbps?.value||'0')
+  };
+  const r = await fetch('/api/limits_set.php', {method:'POST', headers:{'Content-Type':'application/json'}, body: JSON.stringify(body)});
+  const j = await r.json();
+  if (el.saveLimitsMsg) el.saveLimitsMsg.textContent = j.ok ? 'Saved' : ('Error: '+(j.error||'unknown'));
+  if (j.ok){
+    await loadLimits();
+    setLimitEditMode(false);
+  }
+});
+
+loadLimits();
+setInterval(loadLimits, 15000);
+</script>
+</body>
+</html>
\ No newline at end of file
diff --git a/web/lib/app.php b/web/lib/app.php
new file mode 100644
index 0000000..cc902ec
--- /dev/null
+++ b/web/lib/app.php
@@ -0,0 +1,67 @@
+<?php
+if (session_status() !== PHP_SESSION_ACTIVE) {
+  session_set_cookie_params(['lifetime'=>0,'path'=>'/','httponly'=>true,'samesite'=>'Lax']);
+  session_start();
+}
+
+define('APP_ETC','/etc/snowpanel');
+define('APP_VAR','/var/lib/snowpanel');
+define('APP_CFG_ETC', APP_ETC.'/app.json');
+define('APP_CFG_VAR', APP_VAR.'/app.json');
+
+function app_cfg_path() {
+  if (is_file(APP_CFG_ETC)) return APP_CFG_ETC;
+  if (is_file(APP_CFG_VAR)) return APP_CFG_VAR;
+  return APP_CFG_ETC;
+}
+
+function app_is_installed() {
+  $p = app_cfg_path();
+  if (!is_file($p)) return false;
+  $j = json_decode((string)@file_get_contents($p), true);
+  return is_array($j) && !empty($j['admin_user']) && !empty($j['admin_pass']);
+}
+
+function app_load_config() {
+  $p = app_cfg_path();
+  $j = json_decode((string)@file_get_contents($p), true);
+  return is_array($j) ? $j : [];
+}
+
+function app_save_config(array $cfg) {
+  $target = APP_CFG_ETC;
+  $dir = dirname($target);
+  if (!is_dir($dir)) @mkdir($dir, 0770, true);
+  $ok = @file_put_contents($target, json_encode($cfg, JSON_PRETTY_PRINT|JSON_UNESCAPED_SLASHES), LOCK_EX) !== false;
+  if (!$ok) {
+    $target = APP_CFG_VAR;
+    $dir = dirname($target);
+    if (!is_dir($dir)) @mkdir($dir, 0770, true);
+    $ok = @file_put_contents($target, json_encode($cfg, JSON_PRETTY_PRINT|JSON_UNESCAPED_SLASHES), LOCK_EX) !== false;
+  }
+  if ($ok) {
+    @chgrp(dirname($target), 'www-data'); @chmod(dirname($target), 0770);
+    @chgrp($target, 'www-data'); @chmod($target, 0660);
+  }
+  return $ok;
+}
+
+function auth_login($u,$p) {
+  $cfg = app_load_config();
+  $ok = ($cfg['admin_user'] ?? '') === $u && password_verify($p, $cfg['admin_pass'] ?? '');
+  if ($ok) { $_SESSION['uid'] = $u; $_SESSION['ts'] = time(); }
+  return $ok;
+}
+
+function auth_require() {
+  if (empty($_SESSION['uid'])) { header('Location: /login.php'); exit; }
+}
+
+function auth_logout() {
+  $_SESSION = [];
+  if (ini_get('session.use_cookies')) {
+    $p = session_get_cookie_params();
+    setcookie(session_name(), '', time()-42000, $p['path'] ?? '/', $p['domain'] ?? '', !empty($p['secure']), !empty($p['httponly']));
+  }
+  @session_destroy();
+}
\ No newline at end of file
diff --git a/web/lib/snowctl.php b/web/lib/snowctl.php
new file mode 100644
index 0000000..0e1afe1
--- /dev/null
+++ b/web/lib/snowctl.php
@@ -0,0 +1,28 @@
+<?php
+function snowctl_ports_range_normalize($s){
+  $s=trim($s);
+  $s=str_replace('-' ,':',$s);
+  if(!preg_match('~^\d{1,5}:\d{1,5}$~',$s)) return '';
+  [$a,$b]=array_map('intval',explode(':',$s,2));
+  if($a<1||$b<1||$a>$b||$b>65535) return '';
+  return $a.':'.$b;
+}
+function snowctl_build_flags(array $o){
+  $f=[];
+  if(!empty($o['broker'])) $f[]='-broker '.escapeshellarg($o['broker']);
+  if(!empty($o['stun']))   $f[]='-stun '.escapeshellarg($o['stun']);
+  if(!empty($o['range'])){ $r=snowctl_ports_range_normalize($o['range']); if($r!=='') $f[]='-ephemeral-ports-range '.$r; }
+  if(!empty($o['unsafe'])) $f[]='-unsafe-logging';
+  return implode(' ',$f);
+}
+function snowctl_override_path(){ return '/etc/systemd/system/snowflake-proxy.service.d/override.conf'; }
+function snowctl_apply_override($flags){
+  $d=dirname(snowctl_override_path());
+  if(!is_dir($d)) @mkdir($d,0755,true);
+  $exec='/usr/bin/snowflake-proxy';
+  $out="[Service]\nIPAccounting=yes\nExecStart=\nExecStart=$exec $flags\n";
+  @file_put_contents(snowctl_override_path(),$out);
+  @exec('systemctl daemon-reload 2>/dev/null');
+  @exec('systemctl restart snowflake-proxy 2>/dev/null');
+  return true;
+}
\ No newline at end of file
diff --git a/web/login.php b/web/login.php
new file mode 100644
index 0000000..9f123cc
--- /dev/null
+++ b/web/login.php
@@ -0,0 +1,93 @@
+<?php
+require __DIR__ . '/lib/app.php';
+
+if (app_is_installed() && !empty($_SESSION['uid'])) {
+  header('Location: /'); exit;
+}
+
+$err = '';
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+  $u = trim($_POST['u'] ?? '');
+  $p = $_POST['p'] ?? '';
+  if ($u !== '' && auth_login($u, $p)) {
+    header('Location: /'); exit;
+  }
+  $err = 'Invalid credentials';
+}
+?>
+<!doctype html>
+<html lang="en">
+<head>
+  <meta charset="utf-8">
+  <title>Login · SnowPanel</title>
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css" rel="stylesheet">
+  <link href="/assets/panel.css" rel="stylesheet">
+  <link rel="icon" type="image/svg+xml" href="/favicon.svg">
+  <link rel="alternate icon" href="/favicon.svg">
+</head>
+<body>
+<nav class="navbar navbar-dark" style="background:linear-gradient(90deg,#0d6efd,#4dabf7);">
+  <div class="container-fluid">
+    <span class="navbar-brand fw-bold">
+      <img src="/favicon.svg" alt="" style="width:20px;height:20px;margin-right:.5rem;vertical-align:-3px;">
+      SnowPanel
+    </span>
+    <div class="ms-auto">
+      <button id="btnTheme" type="button" class="btn btn-sm btn-outline-light">Theme</button>
+    </div>
+  </div>
+</nav>
+
+<div class="page-wrap">
+  <div class="container maxw-960">
+    <div class="row justify-content-center">
+      <div class="col-md-8 col-lg-6">
+        <div class="card p-4 shadow-lg">
+          <h1 class="h4 mb-3">Sign in</h1>
+
+          <?php if (isset($_GET['ok'])): ?>
+            <div class="alert alert-success py-2 mb-3" role="alert">Admin created. Sign in below.</div>
+          <?php endif; ?>
+
+          <?php if ($err): ?>
+            <div class="alert alert-danger py-2 mb-3" role="alert"><?= htmlspecialchars($err) ?></div>
+          <?php endif; ?>
+
+          <?php if (!app_is_installed()): ?>
+            <div class="alert alert-info py-2 mb-3" role="alert">
+              First time here? <a href="/setup.php">Run setup</a>
+            </div>
+          <?php endif; ?>
+
+          <form method="post" autocomplete="on">
+            <div class="mb-3">
+              <label class="form-label" for="u">Username</label>
+              <input class="form-control" id="u" name="u" required autofocus>
+            </div>
+            <div class="mb-3">
+              <label class="form-label" for="p">Password</label>
+              <input class="form-control" id="p" name="p" type="password" required autocomplete="current-password">
+            </div>
+            <button class="btn btn-primary w-100" type="submit">Login</button>
+          </form>
+
+        </div>
+      </div>
+    </div>
+  </div>
+</div>
+
+<script>
+const THEME_KEY='snowpanel:theme';
+const mql=window.matchMedia('(prefers-color-scheme: dark)');
+const btn=document.getElementById('btnTheme');
+function preferredTheme(){const s=localStorage.getItem(THEME_KEY);return (s==='dark'||s==='light')?s:(mql.matches?'dark':'light');}
+function setBtnLabel(t){ if(btn) btn.textContent = (t==='dark') ? '🌞 Light' : '🌙 Dark'; }
+function applyTheme(t){ document.documentElement.setAttribute('data-theme', t); localStorage.setItem(THEME_KEY, t); setBtnLabel(t); }
+mql.addEventListener('change', e=>{ if(!localStorage.getItem(THEME_KEY)) applyTheme(e.matches?'dark':'light'); });
+btn?.addEventListener('click', ()=>{ const next=(document.documentElement.getAttribute('data-theme')==='dark')?'light':'dark'; applyTheme(next); });
+applyTheme(preferredTheme());
+</script>
+</body>
+</html>
\ No newline at end of file
diff --git a/web/logout.php b/web/logout.php
new file mode 100644
index 0000000..e81e153
--- /dev/null
+++ b/web/logout.php
@@ -0,0 +1,4 @@
+<?php
+require __DIR__ . '/lib/app.php';
+auth_logout();
+header('Location: /login.php');
diff --git a/web/robots.txt b/web/robots.txt
new file mode 100644
index 0000000..77470cb
--- /dev/null
+++ b/web/robots.txt
@@ -0,0 +1,2 @@
+User-agent: *
+Disallow: /
\ No newline at end of file
diff --git a/web/setup.php b/web/setup.php
new file mode 100644
index 0000000..83085af
--- /dev/null
+++ b/web/setup.php
@@ -0,0 +1,207 @@
+<?php
+require __DIR__ . '/lib/app.php';
+require __DIR__ . '/lib/snowctl.php';
+
+if (function_exists('app_is_installed') && app_is_installed()) {
+  header('Location: /'); exit;
+}
+
+$err = '';
+
+if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+  $u  = trim($_POST['u']  ?? '');
+  $p  = $_POST['p']  ?? '';
+  $p2 = $_POST['p2'] ?? '';
+
+  $broker = trim($_POST['broker'] ?? 'https://snowflake-broker.torproject.net/');
+  $stun   = trim($_POST['stun']   ?? 'stun:stun.l.google.com:19302');
+  $range  = trim($_POST['range']  ?? '10000:65535');
+  $unsafe = isset($_POST['unsafe']);
+
+  $cap_gb       = (int)($_POST['cap_gb']       ?? 100);
+  $cap_reset_day= (int)($_POST['cap_reset_day']?? 1);
+  $rate_mbps    = (int)($_POST['rate_mbps']    ?? 0);
+
+  if ($u === '' || $p === '') {
+    $err = 'Username and password are required.';
+  } elseif ($p !== $p2) {
+    $err = 'Passwords do not match.';
+  } elseif ($cap_reset_day < 1 || $cap_reset_day > 28) {
+    $err = 'Reset day must be between 1 and 28.';
+  } else {
+    $app_cfg = [
+      'admin_user'     => $u,
+      'admin_pass'     => password_hash($p, PASSWORD_DEFAULT),
+      'created_at'     => date('c'),
+      'cap_gb'         => max(0, $cap_gb),
+      'cap_reset_day'  => $cap_reset_day,
+      'rate_mbps'      => max(0, $rate_mbps),
+    ];
+    if (function_exists('app_save_config')) {
+      app_save_config($app_cfg);
+    } else {
+      $dir = '/etc/snowpanel';
+      @mkdir($dir, 0770, true);
+      @file_put_contents("$dir/app.json", json_encode($app_cfg, JSON_PRETTY_PRINT), LOCK_EX);
+      @chgrp($dir, 'www-data'); @chmod($dir, 0770);
+      @chgrp("$dir/app.json", 'www-data'); @chmod("$dir/app.json", 0660);
+    }
+
+    $flags = snowctl_build_flags([
+      'broker'=>$broker,
+      'stun'=>$stun,
+      'range'=>$range,
+      'unsafe'=>$unsafe?1:0
+    ]);
+    snowctl_apply_override($flags);
+
+    header('Location: /login.php?ok=1'); exit;
+  }
+}
+?>
+<!doctype html>
+<html lang="en">
+<head>
+  <meta charset="utf-8">
+  <title>First-time Setup · SnowPanel</title>
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css" rel="stylesheet">
+  <link href="/assets/panel.css" rel="stylesheet">
+  <link rel="icon" type="image/svg+xml" href="/favicon.svg">
+  <link rel="alternate icon" href="/favicon.svg">
+</head>
+<body>
+<nav class="navbar navbar-dark" style="background:linear-gradient(90deg,#0d6efd,#4dabf7);">
+  <div class="container-fluid">
+    <span class="navbar-brand fw-bold">
+      <img src="/favicon.svg" alt="" style="width:20px;height:20px;margin-right:.5rem;vertical-align:-3px;">
+      SnowPanel
+    </span>
+    <div class="ms-auto">
+      <button id="btnTheme" type="button" class="btn btn-sm btn-outline-light">Theme</button>
+    </div>
+  </div>
+</nav>
+
+<div class="page-wrap">
+  <div class="container maxw-960">
+    <div class="row justify-content-center">
+      <div class="col-lg-10">
+        <div class="card p-4 shadow-lg">
+          <h1 class="h4 mb-3">First-time Setup</h1>
+
+          <?php if ($err): ?>
+            <div class="alert alert-danger py-2 mb-3" role="alert"><?= htmlspecialchars($err) ?></div>
+          <?php endif; ?>
+
+          <form method="post" action="/setup.php" autocomplete="on">
+            <div class="mb-2"><div class="small text-muted">Step 1</div><div class="h5 mb-2">Admin account</div></div>
+            <div class="row g-3">
+              <div class="col-md-4">
+                <label class="form-label" for="u">Username</label>
+                <input class="form-control" id="u" name="u" required autofocus value="<?= htmlspecialchars($_POST['u'] ?? '') ?>">
+              </div>
+              <div class="col-md-4">
+                <label class="form-label" for="p">Password</label>
+                <input class="form-control" id="p" name="p" type="password" required autocomplete="new-password">
+              </div>
+              <div class="col-md-4">
+                <label class="form-label" for="p2">Confirm password</label>
+                <input class="form-control" id="p2" name="p2" type="password" required autocomplete="new-password">
+              </div>
+            </div>
+
+            <div class="mt-4 mb-2"><div class="small text-muted">Step 2</div><div class="h5 mb-2">Proxy basics</div></div>
+
+            <div class="row g-3">
+              <div class="col-md-6">
+                <label class="form-label" for="broker">Broker URL</label>
+                <input class="form-control" id="broker" name="broker" placeholder="https://snowflake-broker.torproject.net/"
+                       value="<?= htmlspecialchars($_POST['broker'] ?? '') ?>">
+              </div>
+              <div class="col-md-6">
+                <label class="form-label" for="stun">STUN server</label>
+                <input class="form-control" id="stun" name="stun" placeholder="stun:stun.l.google.com:19302"
+                       value="<?= htmlspecialchars($_POST['stun'] ?? '') ?>">
+              </div>
+            </div>
+
+            <div class="row g-3 mt-1">
+              <div class="col-md-4">
+                <label class="form-label" for="range">Ephemeral ports range</label>
+                <input class="form-control" id="range" name="range" placeholder="10000:65535"
+                       value="<?= htmlspecialchars($_POST['range'] ?? '10000:65535') ?>">
+              </div>
+              <div class="col-md-4 form-check mt-4">
+                <input class="form-check-input" type="checkbox" id="unsafe" name="unsafe" <?= isset($_POST['unsafe']) ? 'checked' : '' ?>>
+                <label class="form-check-label" for="unsafe">Unsafe verbose logging</label>
+              </div>
+            </div>
+
+            <div class="mt-4 mb-2"><div class="small text-muted">Step 3</div><div class="h5 mb-2">Limits</div></div>
+
+            <div class="row g-3">
+              <div class="col-md-4">
+                <label class="form-label" for="cap_gb">Monthly cap</label>
+                <div class="input-group">
+                  <input class="form-control" id="cap_gb" name="cap_gb" type="number" min="0" step="1" placeholder="100"
+                         value="<?= htmlspecialchars($_POST['cap_gb'] ?? '100') ?>">
+                  <span class="input-group-text">GB</span>
+                </div>
+                <div class="form-text">0 = unlimited</div>
+              </div>
+              <div class="col-md-4">
+                <label class="form-label" for="cap_reset_day">Reset day</label>
+                <select id="cap_reset_day" name="cap_reset_day" class="form-select">
+                  <?php
+                    $sel = (int)($_POST['cap_reset_day'] ?? 1);
+                    for($d=1;$d<=28;$d++){
+                      $s = ($sel===$d)?' selected':'';
+                      echo "<option$s>$d</option>";
+                    }
+                  ?>
+                </select>
+              </div>
+              <div class="col-md-4">
+                <label class="form-label" for="rate_mbps">Throughput limit</label>
+                <div class="input-group">
+                  <input class="form-control" id="rate_mbps" name="rate_mbps" type="number" min="0" step="1" placeholder="0"
+                         value="<?= htmlspecialchars($_POST['rate_mbps'] ?? '0') ?>">
+                  <span class="input-group-text">Mbps</span>
+                </div>
+                <div class="form-text">0 = unlimited (display only)</div>
+              </div>
+            </div>
+
+            <div class="d-flex gap-2 mt-4">
+              <button class="btn btn-primary" type="submit">Save & Finish</button>
+            </div>
+
+            <div class="alert alert-warning mt-3 py-2">
+              <div class="fw-semibold">Reminder</div>
+              <ul class="mb-0">
+                <li>No port forwarding is required for Snowflake.</li>
+                <li>Allow outbound UDP and the chosen ephemeral range.</li>
+              </ul>
+            </div>
+          </form>
+
+        </div>
+      </div>
+    </div>
+  </div>
+</div>
+
+<script>
+const THEME_KEY='snowpanel:theme';
+const mql=window.matchMedia('(prefers-color-scheme: dark)');
+const btn=document.getElementById('btnTheme');
+function preferredTheme(){const s=localStorage.getItem(THEME_KEY);return (s==='dark'||s==='light')?s:(mql.matches?'dark':'light');}
+function setBtnLabel(t){ if(btn) btn.textContent=(t==='dark')?'🌞 Light':'🌙 Dark'; }
+function applyTheme(t){ document.documentElement.setAttribute('data-theme', t); localStorage.setItem(THEME_KEY,t); setBtnLabel(t); }
+mql.addEventListener('change',e=>{ if(!localStorage.getItem(THEME_KEY)) applyTheme(e.matches?'dark':'light'); });
+btn?.addEventListener('click',()=>applyTheme(document.documentElement.getAttribute('data-theme')==='dark'?'light':'dark'));
+applyTheme(preferredTheme());
+</script>
+</body>
+</html>
\ No newline at end of file