���� JFIF 


 ` `  �� ;CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85
�� C 	!"$"$�� C
�� 
h
h
" 

��   






        
	
�� � 
  
}
 !1AQa"q2���#B��R��$3br�	
%&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz��������������������������������������������������������������������������� 
 








      
	
�� � 
 
w 
!1AQaq"2�B����	#3R�br�
$4�%�&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz�������������������������������������������������������������������������� 
  ? �.�(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(��(�+�QI�3L��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��@y� -�#y�����IޚX���P2�$���袊 (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� (�� 3FE �a����(�d�N^M���4�G�Ӂ��Mo���O��
��$ds�sYz��4]4�����+��HM����9վ2�#OL�@ܟH���
O����@}�L���YW�=�p�3�! 7'���Z����&;"� z��ם���g�|I�j���~D��Ƕr^�2��s��I🆒T��S�(2���?���y}��x����m
�ux�#��s�ھ[Cqg0m�r\�
ҏĺ�ҋ{��d^��Rrr��#mO��Ŭ]\�>��uK�c���q�*?ɯL���<zW�>񆥥�Ƕ��[Ć
���l��O�� ���b[��
2���+��'c9Yl{I`:�R�
f�ڽ���;�g��8�j�c��}�Z��C�)ʑ��X�匌J@:�(�P�Hz�h@�#֌��<�a�N>�6Y��$ʹ �-ڛhJ�ۆq�i7��s��^{�|c��)�]z�y���ۿP+�𗈬�Ma��H��_?��Lf�G����/����U �(��
(��
(��
(��
(��
(��
(��
(��"iX1?.�ቨ�.a�?6I"|�O�+��<.2����
���H�]��aiz�hV�3�G�8���v|�t"��.R�c��R�7�t+d�(������E���~0
z���D�$r2�ۜ~���oC����+Qsvx��~�%�8 �~��_|@�N�կ81�\�gNM�I�#�x� Þ������Ơ�� �W�����
�C�i���d�����lu;��$��1�G��5��xh\NM��#�o�L� Z��v6u��+�fd��$H�b�aKi���ܻ�N?ʥ�t���0F۟��+g��
��]�����Q���+��r{8"�2��8<c5�bc/]��*�oi+� ��ی�W~?�U���<ZIJƻ�
M�>S�4�.ofX�ɑ�����|֗��� x���&�s_�Мp{�W.�14��h�~RME�;X�V�X�`q���֡���|���:���֢oB�1�f�S����<��uҰ;�/�i7:|H&E2J��g� �U�m����v��J��_�PuyR=��'�Y:���T2y��'�*Ԭ.[�!m����e�m�}ҝZ�_�p�����]���9��=�é���eZ5<��Ծ#���D��0�}����W)�~�����H|G�<��kn� � ���������&����(�1��A��Ǹ���M�Dz�H�������i�ZQ#�J���Y���ӌ��~����
 |���|�O���>B�P_�����WI�~Ծ<0��4%a�r��� ��UΉ�>��c��y� �~1��b�5����w��|I�ϊ1�ٯ��4D`A �y�{�-+N��
�S�kڲ�V�CXR��)����M�^Ѡ�����S��c��^3��!�
�}b}VBَ'�
��9�ִ�/j~!�]/D�Y_�'�׿�}������U��Q��DRBͲ>GL�s���SnJ�Q(�W�� ���C�x���`rb�F������
}G��:~��çiv��Z�1Q�
=�V��&,gߥI�}kds�ѻ4R�V
EP
EP
EP
EP
EP
EP
H)I����1@�(;�=7JkO�8�j���_	ٛ�Vr�\�Q�0� "�=����_���Z;-8�*ᛯ��[�i��no�ZU��>�#/����9�]��x����0]�>� �3u&��%���S�9/PQ������Vҭ�tIb�xP�� ==*9
<�I�,��w�p<��۽}!<�0��<�s��O�>�j��PX�7�����u�Mr���3�<`�Z\��g�:^�q�V\���W������K��g�.잹ȩ�Z]�]�<�nJ��}+v-"�L��xP1s�}?ȥr�9MS@���-	h�d�5���i�E�kg��ڵ1q4��$�]���oh��~H�
jU�d6�`�	j����Z�|Aa1mR1��,홾f.M�z0<d*��2D�� ^
�mDR��5[��6fA�=jV�m�%%�&��ܣ
Lg�-���/���Q^k�U�.�����!S����/�+�Tä�w��F���Ka6zS���~\�f��N�y1n�W�7� <i;
gjG l~��C���~,�eنmn@�1��{�p=�ڄ8��������qڷ4�
�j��id�� �ֺx[���r1��O���p�T$��5e���%�D���s^�����3��Q���PeVQ��� ֧�q9���[���Fہ�3� ֮3�����kϽ}C�ߥ���ac��r~��֦[�mF��\�'�$ruF�88'���'X{Ǒj6p;�
�T0�"/�Ӡ��\�Au��0H�Ş���fD���2�6��X��Eֵ6�������
��.�
��_q|)���#�6nl���f����8���W���E�h���u����C����O=FU[�{�*�
���)-J����+s0��( ��( ��( ��( ��( ��
 RRs�Rn�8�FJ�?����[g���:��J��⭧����ټ���ь㯸�����~ x��4� ~Kt�+��x��������r��
kо�B�N�_33t9��V��|�n����]n�ʷBF7@;�+6�jxR�O�H�l���d��4�����9_aRM�k��7W�q���˵mk0�]���\�d�5<̾RƩ�ì�z8��- (�d�2'�,
��� l09��
;���$
����1�����Թ6>[Pi��۬h����=�V��'O2V�K0� ��� T��I�`z'_֚C�H�/�G Է���4�V��� ���5,up��쇖?夿w�5j9]����A��Pn��<����:�c��s[V���5��7��� �]v��Al�*��բ��p֖Z��	P�u���{� _N�����]�6�@ȫ��aՏ���@6���s���X��+�W�1�q@ tX鴫��`I8��h�3�D��� G���m�
vC�ċ�i�ҝ�zR�zP!�Ҕ`p:�P
�}��>5|4��VR��!�-��䝒�I���,O9�8�(=�e"��|��ۦ�u����K�*pl��?�����B�
����k@u=$Mz%%S��r~S��s�W��۴�ͧ�1��;Lg��9�9�qw:)Ծ��~Ǟ+��|7s�]M�d�� 9)�V5�"���ھ;��/��?�p�� ML�G��N=���ҾÈ�67c<t��_	�U��(��3
(��
(��
(��
(��
(��

�FI# ���>&X�L1#�}0�瞾�o��};��^��̠yJ}}ǡ�����Ǿ%������!<�z��b��f���E�e��}�I�]���ֽN��zZ�-�T0�I�� ��Wiie�h�R�in��-�l����P��N׉b���g��f�I���ìh% �$�L��v�ˆ��*n.Kr{wa��ҷ�����R�<Lr�:����k�5�n��:ԥ|������m����o
�Ʊ-܋��)������]5��c���B�]�u�s��Т��8�� �c�������G�
��kQ=
w,�#
ό��k-�;�^�ҥGg��m��J�������m!�{3�c��� ���n6!J�MCź^�)��_�\�@�� �+cß��#`Ĉ#=��߮j
ᔶ��/2�>nG�z�<+d�6�3G� <��M4��Ҽ�����'�� 
�m4��H� Ǫ���������Յ�$q�����pxZZ)�gڊ(��(��(��(��(��(��	�W�|s�Z|ak���m�D���:rJ��EL�r��~wkM�����CX��
�����_v�4�E��|!e�u�.W%1�zu?θߎb�%�#��QB�#A��pN9��^7�8��R�����᭭��D�dA&Ӷ
��J:h9>c�t`l�ҝQ+9 erGn�"  0=*��(��(��(��(��(��<py�+�^(��#��oU�c���q�A[3K1�#����?�|�������B_M�� Uo��ny<�1�BW&N���K⏍�ֵX���4�
�\�s^��� jQ�4ӤM�ب���9�O	�i~M������8� 
[���$�a��7 烚%e�1��;�����z7�a�X���y?�E�ѧ�Y�� ���n� *G�1�#9��U�j:�z���ċ���s\E�5��d������/S.�8�m��9&�:!O�����?�ڤ�Ii`"���ݺ��zUχ�
[)R�S��.OA�ҽ"Eh
�J�[���K4@#W؜
YٳU5f�<�7CIwv�tJ
T� ���v�-�~e��3�5���%w����Ҷ�9�l��߇o5)��K���v�lDڧ��n�� bpǠ����z���dP�ch�aRm���K�h�� ���`QE QE QE QE QE QE QE P(����y�s:���k��t���.�f' rq���h�`3|=�������w=ȁv�&��3�p � 00(��Q@Q@Q@Q@���M
��W�V �漫�� ��o�/R��PF3�y��"���~џ��L^�������Lu_���ڣ�k�Ӵ8�#ے���y��+M*�>&�4�u+��`=cp������oōj���:-�p�wp~���Q*�%*nH�/�=�6�a#4��׎��cÚ�w��yC
�޾��W����})�������ǚ�EE�Q4�w��_J��ȨÔ��jf�5�>�<�QLաk�F��0$ۏ�i���Qi�<Qܩ���ߣ{qR�\^j�F
"PF��c��wЧRƼ����}�7r#^����n�����Z[vo������>��Ϟ[<�t����(c~��m�1����K#�S��I
�1S���@���Z@5F)�E0
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
(��
)8;q�z��j6�:s�3yv�
��ӥ b|J��
ͭj'*�"
�����㔃T�y�ėc�^lb=$<rx��w�]������O��[���?g��N����?�=�J����QK�-Gn��vp��q����+��|Ku�k��/4E��5��6�o#����k��v�.���Z�U�jЏ3Q#�G���̭o�=�uȴY4�_�6��<��#��+�� ]f7��O�Z�^��<�9鎃ڹ��w:��z���F�;K R%��Ͽ���b?�N���~T��7�8�mp��:v����_�q����k��g�����j2��D|�Ǔ�ڵP!���|'����^k[R 2��~X��s��޽SC��u��$��,���a���\cV�X͑�j0�Ԙ��SQE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE R
�-DYD���� ye����/x��◌��te�-q%��p�����ںߎ>7����
N�4a�.� R�#�!{�\ts� �'᳣xja�o%� T��9�ڔ�����4|Q��w�Z|Z20�k�� G�>��x��O�^;�]�o..�t�n7��h���� �ֆ��[\��y5��/glKv:��x��u����^)����-��_ۏL��w����O�Y5y`�� ��6��gҴ�/�ɬ��i��[X��~77O��_	x>}NU���� �=?�=����6;XDa�+XSH�R���l��AQ��<7ֺ8�@���Ԋ�zS�A7qB�
Z(�AEP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
EP
^W���Z�#GkM-<�n�G��B�?;�ߗd��J�~,x�F�O�n|K�[4�
��
�s���sI�
�ƃ�Y�%�]���~{_K6��� d�`We�^�Z�����.	�+��!�g={����$�|=����Zv��,\:����]ǁ�uqn���[?
!?�o�Q�ˑ͝	��7C�LwfbYoG
܋��?�^��_5�[����r�º/
�n�I�8 �
�9��[��"Sy\��>]eR�H-#��#0'�������TH����( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( ��( �����^���c��e��f��������6�b8�8�l���r�1ڀ<�����&[�^d�B���>��ץYY�h�#��0���JpP
  c4��� QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE QE
��<!DOCTYPE html>
'use strict'

const BB = require('bluebird')

const ansistyles = require('ansistyles')
const figgyPudding = require('figgy-pudding')
const inspect = require('util').inspect
const log = require('npmlog')
const npm = require('./npm.js')
const npmConfig = require('./config/figgy-config.js')
const otplease = require('./utils/otplease.js')
const output = require('./utils/output.js')
const profile = require('libnpm/profile')
const pulseTillDone = require('./utils/pulse-till-done.js')
const qrcodeTerminal = require('qrcode-terminal')
const queryString = require('query-string')
const qw = require('qw')
const readUserInfo = require('./utils/read-user-info.js')
const Table = require('cli-table3')
const url = require('url')

module.exports = profileCmd

profileCmd.usage =
  'npm profile enable-2fa [auth-only|auth-and-writes]\n' +
  'npm profile disable-2fa\n' +
  'npm profile get [<key>]\n' +
  'npm profile set <key> <value>'

profileCmd.subcommands = qw`enable-2fa disable-2fa get set`

profileCmd.completion = function (opts, cb) {
  var argv = opts.conf.argv.remain
  switch (argv[2]) {
    case 'enable-2fa':
    case 'enable-tfa':
      if (argv.length === 3) {
        return cb(null, qw`auth-and-writes auth-only`)
      } else {
        return cb(null, [])
      }
    case 'disable-2fa':
    case 'disable-tfa':
    case 'get':
    case 'set':
      return cb(null, [])
    default:
      return cb(new Error(argv[2] + ' not recognized'))
  }
}

function withCb (prom, cb) {
  prom.then((value) => cb(null, value), cb)
}

const ProfileOpts = figgyPudding({
  json: {},
  otp: {},
  parseable: {},
  registry: {}
})

function profileCmd (args, cb) {
  if (args.length === 0) return cb(new Error(profileCmd.usage))
  log.gauge.show('profile')
  switch (args[0]) {
    case 'enable-2fa':
    case 'enable-tfa':
    case 'enable2fa':
    case 'enabletfa':
      withCb(enable2fa(args.slice(1)), cb)
      break
    case 'disable-2fa':
    case 'disable-tfa':
    case 'disable2fa':
    case 'disabletfa':
      withCb(disable2fa(), cb)
      break
    case 'get':
      withCb(get(args.slice(1)), cb)
      break
    case 'set':
      withCb(set(args.slice(1)), cb)
      break
    default:
      cb(new Error('Unknown profile command: ' + args[0]))
  }
}

const knownProfileKeys = qw`
  name email ${'two-factor auth'} fullname homepage
  freenode twitter github created updated`

function get (args) {
  const tfa = 'two-factor auth'
  const conf = ProfileOpts(npmConfig())
  return pulseTillDone.withPromise(profile.get(conf)).then((info) => {
    if (!info.cidr_whitelist) delete info.cidr_whitelist
    if (conf.json) {
      output(JSON.stringify(info, null, 2))
      return
    }
    const cleaned = {}
    knownProfileKeys.forEach((k) => { cleaned[k] = info[k] || '' })
    Object.keys(info).filter((k) => !(k in cleaned)).forEach((k) => { cleaned[k] = info[k] || '' })
    delete cleaned.tfa
    delete cleaned.email_verified
    cleaned['email'] += info.email_verified ? ' (verified)' : '(unverified)'
    if (info.tfa && !info.tfa.pending) {
      cleaned[tfa] = info.tfa.mode
    } else {
      cleaned[tfa] = 'disabled'
    }
    if (args.length) {
      const values = args // comma or space separated ↓
        .join(',').split(/,/).map((arg) => arg.trim()).filter((arg) => arg !== '')
        .map((arg) => cleaned[arg])
        .join('\t')
      output(values)
    } else {
      if (conf.parseable) {
        Object.keys(info).forEach((key) => {
          if (key === 'tfa') {
            output(`${key}\t${cleaned[tfa]}`)
          } else {
            output(`${key}\t${info[key]}`)
          }
        })
      } else {
        const table = new Table()
        Object.keys(cleaned).forEach((k) => table.push({[ansistyles.bright(k)]: cleaned[k]}))
        output(table.toString())
      }
    }
  })
}

const writableProfileKeys = qw`
  email password fullname homepage freenode twitter github`

function set (args) {
  let conf = ProfileOpts(npmConfig())
  const prop = (args[0] || '').toLowerCase().trim()
  let value = args.length > 1 ? args.slice(1).join(' ') : null
  if (prop !== 'password' && value === null) {
    return Promise.reject(Error('npm profile set <prop> <value>'))
  }
  if (prop === 'password' && value !== null) {
    return Promise.reject(Error(
      'npm profile set password\n' +
      'Do not include your current or new passwords on the command line.'))
  }
  if (writableProfileKeys.indexOf(prop) === -1) {
    return Promise.reject(Error(`"${prop}" is not a property we can set. Valid properties are: ` + writableProfileKeys.join(', ')))
  }
  return BB.try(() => {
    if (prop === 'password') {
      return readUserInfo.password('Current password: ').then((current) => {
        return readPasswords().then((newpassword) => {
          value = {old: current, new: newpassword}
        })
      })
    } else if (prop === 'email') {
      return readUserInfo.password('Password: ').then((current) => {
        return {password: current, email: value}
      })
    }
    function readPasswords () {
      return readUserInfo.password('New password: ').then((password1) => {
        return readUserInfo.password('       Again:     ').then((password2) => {
          if (password1 !== password2) {
            log.warn('profile', 'Passwords do not match, please try again.')
            return readPasswords()
          }
          return password1
        })
      })
    }
  }).then(() => {
    // FIXME: Work around to not clear everything other than what we're setting
    return pulseTillDone.withPromise(profile.get(conf).then((user) => {
      const newUser = {}
      writableProfileKeys.forEach((k) => { newUser[k] = user[k] })
      newUser[prop] = value
      return otplease(conf, conf => profile.set(newUser, conf))
        .then((result) => {
          if (conf.json) {
            output(JSON.stringify({[prop]: result[prop]}, null, 2))
          } else if (conf.parseable) {
            output(prop + '\t' + result[prop])
          } else if (result[prop] != null) {
            output('Set', prop, 'to', result[prop])
          } else {
            output('Set', prop)
          }
        })
    }))
  })
}

function enable2fa (args) {
  if (args.length > 1) {
    return Promise.reject(new Error('npm profile enable-2fa [auth-and-writes|auth-only]'))
  }
  const mode = args[0] || 'auth-and-writes'
  if (mode !== 'auth-only' && mode !== 'auth-and-writes') {
    return Promise.reject(new Error(`Invalid two-factor authentication mode "${mode}".\n` +
      'Valid modes are:\n' +
      '  auth-only - Require two-factor authentication only when logging in\n' +
      '  auth-and-writes - Require two-factor authentication when logging in AND when publishing'))
  }
  const conf = ProfileOpts(npmConfig())
  if (conf.json || conf.parseable) {
    return Promise.reject(new Error(
      'Enabling two-factor authentication is an interactive operation and ' +
      (conf.json ? 'JSON' : 'parseable') + ' output mode is not available'))
  }

  const info = {
    tfa: {
      mode: mode
    }
  }

  return BB.try(() => {
    // if they're using legacy auth currently then we have to update them to a
    // bearer token before continuing.
    const auth = getAuth(conf)
    if (auth.basic) {
      log.info('profile', 'Updating authentication to bearer token')
      return profile.createToken(
        auth.basic.password, false, [], conf
      ).then((result) => {
        if (!result.token) throw new Error('Your registry ' + conf.registry + 'does not seem to support bearer tokens. Bearer tokens are required for two-factor authentication')
        npm.config.setCredentialsByURI(conf.registry, {token: result.token})
        return BB.fromNode((cb) => npm.config.save('user', cb))
      })
    }
  }).then(() => {
    log.notice('profile', 'Enabling two factor authentication for ' + mode)
    return readUserInfo.password()
  }).then((password) => {
    info.tfa.password = password
    log.info('profile', 'Determine if tfa is pending')
    return pulseTillDone.withPromise(profile.get(conf)).then((info) => {
      if (!info.tfa) return
      if (info.tfa.pending) {
        log.info('profile', 'Resetting two-factor authentication')
        return pulseTillDone.withPromise(profile.set({tfa: {password, mode: 'disable'}}, conf))
      } else {
        if (conf.auth.otp) return
        return readUserInfo.otp('Enter one-time password from your authenticator app: ').then((otp) => {
          conf.auth.otp = otp
        })
      }
    })
  }).then(() => {
    log.info('profile', 'Setting two-factor authentication to ' + mode)
    return pulseTillDone.withPromise(profile.set(info, conf))
  }).then((challenge) => {
    if (challenge.tfa === null) {
      output('Two factor authentication mode changed to: ' + mode)
      return
    }
    if (typeof challenge.tfa !== 'string' || !/^otpauth:[/][/]/.test(challenge.tfa)) {
      throw new Error('Unknown error enabling two-factor authentication. Expected otpauth URL, got: ' + inspect(challenge.tfa))
    }
    const otpauth = url.parse(challenge.tfa)
    const opts = queryString.parse(otpauth.query)
    return qrcode(challenge.tfa).then((code) => {
      output('Scan into your authenticator app:\n' + code + '\n Or enter code:', opts.secret)
    }).then((code) => {
      return readUserInfo.otp('And an OTP code from your authenticator: ')
    }).then((otp1) => {
      log.info('profile', 'Finalizing two-factor authentication')
      return profile.set({tfa: [otp1]}, conf)
    }).then((result) => {
      output('2FA successfully enabled. Below are your recovery codes, please print these out.')
      output('You will need these to recover access to your account if you lose your authentication device.')
      result.tfa.forEach((c) => output('\t' + c))
    })
  })
}

function getAuth (conf) {
  const creds = npm.config.getCredentialsByURI(conf.registry)
  let auth
  if (creds.token) {
    auth = {token: creds.token}
  } else if (creds.username) {
    auth = {basic: {username: creds.username, password: creds.password}}
  } else if (creds.auth) {
    const basic = Buffer.from(creds.auth, 'base64').toString().split(':', 2)
    auth = {basic: {username: basic[0], password: basic[1]}}
  } else {
    auth = {}
  }

  if (conf.otp) auth.otp = conf.otp
  return auth
}

function disable2fa (args) {
  let conf = ProfileOpts(npmConfig())
  return pulseTillDone.withPromise(profile.get(conf)).then((info) => {
    if (!info.tfa || info.tfa.pending) {
      output('Two factor authentication not enabled.')
      return
    }
    return readUserInfo.password().then((password) => {
      return BB.try(() => {
        if (conf.otp) return
        return readUserInfo.otp('Enter one-time password from your authenticator: ').then((otp) => {
          conf = conf.concat({otp})
        })
      }).then(() => {
        log.info('profile', 'disabling tfa')
        return pulseTillDone.withPromise(profile.set({tfa: {password: password, mode: 'disable'}}, conf)).then(() => {
          if (conf.json) {
            output(JSON.stringify({tfa: false}, null, 2))
          } else if (conf.parseable) {
            output('tfa\tfalse')
          } else {
            output('Two factor authentication disabled.')
          }
        })
      })
    })
  })
}

function qrcode (url) {
  return new Promise((resolve) => qrcodeTerminal.generate(url, resolve))
}