From 6c44067e2ba50f9b67fabe0763ce7fb6eda3b27e Mon Sep 17 00:00:00 2001
From: Owen <owen@txv.io>
Date: Thu, 22 Jan 2026 18:19:16 -0800
Subject: [PATCH] Continuing to update docs for 1.15.0

---
 docs.json                                     |   1 +
 images/cf_websocket_box.png                   | Bin 0 -> 28802 bytes
 manage/identity-providers/add-an-idp.mdx      |  24 +-
 .../identity-providers/auto-provisioning.mdx  |   4 +-
 manage/identity-providers/azure.mdx           |   8 +-
 manage/identity-providers/google.mdx          |   4 +
 self-host/advanced/cloudflare-proxy.mdx       |   8 +
 self-host/advanced/config-file.mdx            |  12 +
 self-host/advanced/container-cli-tool.mdx     |  37 ++++
 self-host/advanced/private-config-file.mdx    | 206 ++++++++++++++++++
 10 files changed, 296 insertions(+), 8 deletions(-)
 create mode 100644 images/cf_websocket_box.png
 create mode 100644 self-host/advanced/private-config-file.mdx

diff --git a/docs.json b/docs.json
index fa97afd..142bea3 100644
--- a/docs.json
+++ b/docs.json
@@ -151,6 +151,7 @@
                                 "group": "Advanced Configuration",
                                 "pages": [
                                     "self-host/advanced/config-file",
+                                    "self-host/advanced/private-config-file",
                                     "self-host/advanced/wild-card-domains",
                                     "self-host/advanced/cloudflare-proxy",
                                     "self-host/advanced/without-tunneling",
diff --git a/images/cf_websocket_box.png b/images/cf_websocket_box.png
new file mode 100644
index 0000000000000000000000000000000000000000..8d8653b63c277e5272a7e32290dd5abc0c1d04d1
GIT binary patch
literal 28802
zcmeEuRal(K)-Di8u;3D$;E=|h;KAM9-66O;!QGwU?(XgqtZ@q#TpO3uGqd-<XaAY!
zIk)HHTy*!>T~({9R;{Wf@2U=!lM#Inj|&e00r6g3Oh^F&0$K|Ed<**){QmAs4-xnS
z(m_E~5TbGt{{Z|&$XHF>L|Phx2K)>Q0U2x#0sTi6@Cz6Gf`E9F0}1g4{0aHTZ#hu^
zE`^rLdGqgQh}%CZy1%8~hJfIQ5El|qa)mrzd+(_<-$DPRD~uzZ3PIsZ7J{QAk&qQi
z6+lI5A)@i79$F)k3Q{KBPA1Z=lJddT(7oMnXm)s45Qzu!B;Kx_criueqdVLMeh4As
zVnPm!8$8mkF-aV8%<vdh3hcwv!g?JgbG*0-6dcoD(_?7rlE(??Qrn~O*axWb=pipJ
zzu}7qL&XmXFXsz|kpuCcM_<)VnzK)xfB)$}r9YrQFl+_=Ln{avC~y%R#Fpl71i`Jl
zec`Hp?+ILhLfq{u4gtHN@V^G}XOC~CT;Koi(fv{22Lbt33X1<O>Awg5XB&71y<W?I
zA_fl)%b<q_(cAQ2ll`lWoG&E0&YOQKAm;aljE6w!EckcDzjuk4a*q3tY=VSBOo8@2
zr~MC8|I=KrJ8<DY-~QGd7Dca{3?k5$`X9L4J+F$^v)L2CXf%xC`TDpqq^!!A<UkI3
ze<b)DTYp7$FX;M2(s$lLQOaa=kHk~9IUHif-h{!WM0{X`GO5E6jV2sOWj4*xYmxsi
zPIaF&ZA2mS-uYtu$qG9hn92}+d<&yc_@v{NCgdWSOoQqjCLIVs*x$MES6xo%xegyP
zYgM6cA?ZGOQb~?dvN$>dVB&8zQ96BFZ=>^1!eCR1StaLK@NNEq@1E>1|3i-Ud~}*T
z)^Vx2^0$h9r*J~cecF{FzT&qbscFCU1?J>+CBz$wj-#>Fe_(3}KUj`Ps%O=V|3PNm
zRlzI24l+Ldtyf5Rp&T$#)J5}hrhi!Bj!$5bK6_wt`3IsTU`dOIJ!Vl!{e7%{>zI1o
z`7U0mpZ|d<DtHTtLp$S^N&U9oIs9i}p`U5%9MAj*qOcfXse<|(sa*KG(B-(md|)`x
z*4>l&2cpnmqG*1ZgEWf&B_n@w<3}4<z^^Om9g2P@N(==i8rm&mnD`GI|D_G)xcfqK
z%RdlB@dFbT(krSN{RfW!|7HAtYZ?8@JlG#$N4$*QCh?u|x0jv{X;xF&@~nC*H<9iS
z02XuSWw1wyCcdO@eC>WQVyv}c9$QzLvsMc!NQ8vr^0NFgS&F~-RuW2;bMM7LZ!$9r
z)<KYlDO)V)q!6_lk-)c6QJSOPhmwZ9Tx5yv70WSetbnlP?m^dLggg5;DgU7fmK>_3
zzDR}va+0qx?J{<xm`A%lyenq!;wUK(Au-i9Q{E+5pK~JN6;iImd?>o%l-E4*0L&e!
zsSSFJo)!gJ31$)xP1td_A$6r1`i)RFP>=fObKJL3Vjd()GO|~36Q6I#HxKFPNImxf
zJT18FDL<jJXH->*-1jg{88ZF0)4R#x?Ifb!s)e@pRd5;4QISbssj?Q~_MkOv1j?i1
zL&BYY6GliHKJAmSI^69c*mL_7V+$=w*F4?agu7d?TfDvkdkfPMbwS-iHL66aL*iN|
zExNqQaxxVAq31+z{(tW*;-6sMd*P_A-Z6GX^ENb|)|(*J1mr`+JV>`K<=Gfqv3?ur
z(Kwu+xxU7vXvH)rWF1-TZt~WIH!YHUEQ$DWIyL1X+<vKy4LuG&HOp}s=_U9#CiD9-
zz;KWcz1gL6$^Dwe8%M_bwegtt8ed#sM$GG{q+tNU1soa;PAY5{#<r+i;b8ODviwm2
zyR6igNy7uXh;U(_hNcRfNtXpfP#DvkGZXv(H{+Z87UVu&Pv4Al&a}g(??x92N`%a{
z(&j`H_M<_E6_7ad*tz9QsI#_l*OZW~41JoUb??n(O-Lqegjb#1y|am`h8lmG8cif(
z<w2a;R=jjc^{oLpikHnmC2Rh1`v_i#+tP&Ry%BSm1xy7LDmP8v%`FM{0Kk2kf&3l4
z3;LqI!UlPyY)iqDJv4xhI$Q^qx>_44LFjV?oT$m-m4#e9C3==lW<-#%ebkcw+_5PG
zUrPtAbx}rf97q#h(vrSUDc^VR@;5#2Sp?0|+y84aKvQmG$1Of4#L@88DAgtp$QC=G
zm0n6-oO{wlEDvOyW=Eh<=T_96<f^F?+^~E(u(x{9rc<Eo@549t7k@?!6P+p7!my<g
zEZxT-#Xh-pV#BB!^*3~k$l|4Wn>1ohwWt<`Ulv=7MwgcrV3pFv0mC@>@uUgw=xWd4
zH1G1t^}B2}8RnSoCy`SC9)L0HK`he%jVwe#&Tj&y#5+&E9h5xH#whZv>~$(G+Jn~#
zy7;tuC8BFc&d#Z0IkexVN;-=UsNq!)3-fne?66K~?N`&&mGcc#b;x0#RpcYp$+c%a
z%n{B~kUO`az9hP~4d<kTE0M)EoUKjJOZ>_E+rHpm1n*SW5{rv<?<up$VvbdAbw0f;
zi*ntc{&lXDT19i-=xCJgHlq`Du^cn;Ba|`;WyyPp7`vP(v$8sEnN%J&vCs@yAFJ|J
zhy+j#MNdl+yC8y+0wT1;xr>T)6I4SkJ4C$DE`G$H97v9q@{lr0RgcqjH)^j`Ulfq+
zn2w@5p!o|Mj1Q|NA`CH9VALP$M3Z-E1PV_j_LN}i3${l*P^Ek)x-EMR!kVkl^cRlv
z9<h}1+W969B{7BFeJW0PH%23i$b^+|z1Bp?8J&Cp%GB_M!Wqc>Nn9a4ua*bnOt!(U
zg%*W2{}nBQTCSyX_K5NkG!eN>Qc_hKpkc+%{C?!C2Ax^Cnm?x^rC#rwC90L8sxRow
zwCF8)JVlq-zp4IBl0UY#K-uc<oXzUTslFPSSygIryfgI)WzF%1)i#duB_?s*CL@*H
zsR#1(dS8EX53acSY1Bw6A5Xd@oAMwBTUr`jwZM$XEKHH|*;q_h#f`)M2Sgq(>jG$2
zLNEN?U=Vy-InoEq=GKjIk;zdDmMoA`XLiI>ik|49;XRYP@#jX>a$%cV*-axytU^uD
z7A}o%>^%b9;M`oUa~`+&{#U~ZbY?4LV{?Iwn};#dINh|!pig7+pAN<l_I_Tl=f7ZU
zOmk78M#1sAW+ek*2B=v4N#5_?IhlMs<QbaTTLw|S&#dS>46dtbohfNapx5!8&l(~g
zTG=O+?)@aA%-3Z4QHQe&l+vE;C6k)ABZj|~3I%GB`brZl3F8%|Y<N(WY#@DL0oTYK
zUAvtncpv`T*=2_crPbGuZQUosLDXd46Sc^AD9$ml4w77@!_g-3nEP3+uA+|9Ul%35
z25tBpCo*R{FDf)nc&3haV}&=4yhCyenJqYO{a^;)|B+Gs=8>1?R*x3mYeTYlYgao`
zjG%<D0uOo2>+(pNr|Q9JDWydQt2mPx4`;TJR6ffbpHB=qthj{Q{1e+pULUsFjRdn^
z*|>HA0#)hnuetTLd*YxTrF`-8K{9KF3PR&KT?Js*CeCgycKE{pGoyaZzVv35{;d3+
zPz0}Vu`tw!tK^(fkJdMhHCe<_ZSOC-(6GC%R<2$4ILJnRW!2(#1$f(*S|Igg;*<7d
ze&E2e{c;d-E7xX8xn5S;duY54^*p(S_xsLt`9scT<EUvwYh&{L-(8?_r>yR2clEcF
zDM&7La+GTf^+&w05B%aBhAKb9VZVRoP8Ct#OgVzfx=YMkALb&Me)+sc$$Po+@l4A!
z62cd!#_$dDm{>%l<$1!B*$Ttw+N=@b2cBBz5NPz{S0!HzoJa-pInlu`mNVq>zR1R_
zEUy3qMu`rVnQRM@AzYZOvn%fyO0`^P5Ic+%=OJ=@>=}bPyK&{jzR*VUG=qnj*X=`x
z_lY=$Obm>%;v6nD8cQps@}szqf<i;HT!S}bmWFAB<;CZC+uxmBeK-capF=w$^BcIv
z^+6H8LU3SKtW9&WE}&9r>J%$7zc&V05X384vxu(JrgqzTxg7ar{`f-k;BnGry1Vxr
znaLzWeh2*J<r(SS{;J0smtR+bX_Fe|KV35Xpq`5rVfT5g`a#+-6Pc4@RzZc25#3b6
zB8FLBBwY+*$7E?uhaOG?@f6^*w6Pq<d^v_U6q^$ae4&$p<DQ%O5dsN^HXK8FX_UB=
zbGmgy&ADFB)KPeR@@2j0g?`nJ>-pBvb6>=5T}lb_b4*&Af7?mz&6r(7b7g)4j1htC
zum*Ky>hQ|?h1BWy-;DD>Qm_}{t8jvZy~<=SFz7&RZc*Q<GKi`kGM`?F_8EDnj}9_)
zG2Pft!6}|D-YVnsf`_8#bx8y~4&|)uL#E%+K!KVyBAPt)&e!Hp#!J_&w;P!cB^2t|
z<nJv#N14X1i3|fJnA4EOTDO@ljcwA{1_~S2Ba=6@D(L%5O~1qQ*WZxgoFTbk+14cu
z0xEEf6S?wQpK~|~fOtH%nrU*B^oEfSqLFBC^g3iWdot7mo%o`JkKh>9JE3<w6+@7c
z^lzq`h_B`i@}uKXS+)s#nPqMIRxvH=MOn4b&TA}X@woyHjU~M-Ara$q-Wf@wV`9J?
zhPMn*<mtcogFcn*i1PJ3T#I0gg%GOuVgcV7L66<|hA4fwXM+3f;N^$Y68;9^2d_RP
zq$xEY(f^fkxo5CT`5uNGcs7R}%u23yEi5&!K~&Yauh{an=tb#6d^tHuG+d+Gf^GxJ
zbJLL=4MN@NI(hUSYgVOU22CCllWKt*Avz$u`o#do!~@GxSdpi(n40gD>DcOrEQ9*2
ze5(TCmyAtne(4c)^)SaXP9|wF@(QXi4g2!_jI&sIzXUq8V}kDrvFZ5Zu&!ed_&!V2
z522{qB)}LqkQhbAyvhgG>$|&spor#>sq16X@W<OW#t5~o79!`|ppXGkjcd^&G?o%v
zvV3<7Qmf?g8j6fNaeByYRhU}E6!}b^y5#rtvw_OXlHIvWF%ZM4bOT7Vm);&Stfm@Z
zU4@Z%SAe$TPSk|R!d7;{n02CMy6qkT{UrUH>-bA+^Uv^-qxan<e#`UC%0<sRBCV|6
zUMk_W7*ia9cW{tOuUAS&s&^S?lL7}fjyR}WOGwFvljY>R;U#IYt@h}bXBW^EbBf0G
z`+K9s2vb~yv}bfZ$CRVww-^{5q|v_;W3elwBhA7U^E7urFmUW2EWO3<3YOKnl`+i|
zFT)Ewy&_d*$)SAivkhO&QQ2r~Jp38sZp!CI=5&Za*BQd=2h5P5<eiGRbqr$+aJY?a
zI4`atmh=P^yu&DPDVMJ6Rts?)x3om%q8Yo5<CRN}hA}VWdbE{Zb)4ObzvBHV+7yU(
z^!l|j-M8h@__fRRCcNTN4SjMrFDFvicA7?ZE42~DvOXtrYQ$6ge;7ofv?=j;Yahr|
zyNr?3-2^}}-!R74N89n2m+if<F*SZh+t3T;+Vn=In+kb<Qn3%mweCQMsPNKn#jSiO
z6b=u29p4=YjaLsb45MBQYT(W{?}@u%o-1p7wyYMK{QCG-a*{3A-8kx{9*?wzd&y*a
zyG-7xdSG$;c4dv&GS$dED`uNBmr$7dQCxiv$T6Tv#IAK#DbhH#?Ni|Q0!rp???G#l
zJT!!sd<p}3<c(@xG!|8V_-yZ;PUnY=<8^sXg3<YDHY<WZR316eR-O&ZT;PMO%1ZL4
zTi=hmF@R#4+y%xAJk6HEQg{WYjL3s)7E1oIPIE{PTG!;}ZyM)UBZO#*V|sZTWr}`k
zN{Cv6#<-h$n^7_}f}rt70mv0sbsN_5>&t|ck-U0&YMLKki$(ldK3=j@F2=Y9NMOjg
zXFp_f1}=Aew?~$5zO9z+p#QjW(>VMk=XS0a6Kz2g@^2ALR8kakpTx)yYAOj(7|rES
zu{YX-z9YsR+-e{GzVBP<QOwzK)@(mcfx~hS{`~n~$zLU8ben0GM1Iqk5HPLe;KQ`3
zIVI&cbA#Wn^N+Bm?l0rU*ncRr0c)QbS~`k<ipbD|gOoGa?y1)Kza8FkIe)mhj^W{<
z|J(fo2WWmFfXl9fbWHI6sW1r~u3GzPVDJyKc<=|8d3{g*|5N-e>h#wtR_m}8<!vS^
zBy=W3ClC)=%VK=LPK3%gAF>)&CpUi;_Q57|qdyK49b}?*P)4%yYmuE0sG0LRsUxto
z8PTEx=|n}u`ccBT@ip<!V0|>Tk1-^09v~J@Rk9MDh{Bz-S_%0%U|ya2nXLVqV6Aka
z0DB0Z8!G;)#%;l7F2N{f2Oevfs-)*sJ3W>NxUXUxVtrw9ysjPaQ&+3!z2W@dZJTr2
zKO)@FYZ<5fm$ac`88QA#S6mb!(qe)?X|eh(gAMd?=*@?IopBYOM)E|O9TP?OQ?soS
zpd?iD#2}{6@ld<D^H&c=EFrx^+m<rp#uv%_378oqQ!@}OXdv02hsOX^8;WU?YQ3jx
zUY)L<7!|&-9D8$!LQ};M6|7xVc{S=T4)vMd*eSCZndoHGp*PaR<x`q0n+_z6y4okd
zmWCx&e&xz)8kQ_8k+L?NQ}iv>^818*zLf~(p<cdV>c0!_4{YelQ-sK49lVL*j5O%k
zP6?${MZN4Kn5%E|b}sbsI<nd=W1&wT<<-0Z;lvLE>I`0<+#0gt*6-9A%vt2zesCm(
z_2c;gJ3h;sA0PT{>``V5JT$Y-Rb==D9ci?44g%D|rDZu{QcVSn{l?l}CEWDGm;|1q
zHSPS6c;6w^oOkwahSERk9B>}+U3VSB=w866@bc8HWZN!`2BoxKhS}nN68oQn9gIkf
z(RHIz`0eD?=@GqaK9rPGS%978z}tHl@e`K2VA~@#H%>Joa>WRvFY08mys$^gYKn~9
z);jor_kktbmzsh3vgRhSVfcij?d@VU`lJfj3odBFw#|wZO0}7NvcXI<dXhA-@JLNz
zgbS6gushW{6Soy!{yBN{Yob2;O$)vCp!1Ycdal(wPy3)}5!Tv5R1j|unv=~~D=QT>
z?U#Ao4o*mubhbpZtIwmxcx;_1;R*V@Lk-E=D=>vBXA^w$nPFLut|HHl^NlRlt;+Tp
z86T1Xvr!WA*MYn>Bj7;InC?YAD04zBJ=tIGjn&hnyke|>20Be7@Rq4#v~u)yo6TBd
zwo!UuSo$UwSV%I$Qms$D{<5eeAGV87P9Ro}yqD)1pB0_7ht1Z-t4P_OKMb3bW6pIo
zeT%2!{{8!d1YeO}r9=~!MpwAyL9OH6!ZLd{uGM4S>;6EMU)q;i;MBzk6YYe{vYOh0
zs)tQfQTXl?RQ@A_r6}coj#y>*ZWn_{<UO!zdmo31Q&xKGswp-jf_Ii_zUUN_M?ZMm
ze9geYFRz0MvZ}Y!B+j8mMLNhM4}ymM^}ye~u+ytzWx2sTaQ)#y+QG7_=mdL=XG8zN
zbRPBBoO0&p`zJ>)>&E00OAKeeRDxj*^-^8ao=)9}m+C?fUQ^2+Mia=);lIO5-r%$N
z?khx+=yA0eL{8;+&~j6T86$a5tTmk2{JiEAM&i4Q5MHgw%L*s6@OYo$WGlgGS<vSw
z2^>1x)XnZ|91&h7rXAikDZd(0Hw_PU>REiTIC+u@f#AS|@12kg18b|DQ6uF-B_0SF
zpBuZE$c)ui7L;qGYlfvA&@-w^nUo23zj>OFRBseTb$t@<QOc7!bn#hz@_Bw+@^xbI
zUWD~<t)_ZRdaf|BWF7B(lqdK{n2?li;@j|z_sXn5dd;wTTX&J<6h(P50pIc+*ZO(o
zT+bm?A<1X>bt>Vg+f&Z^Oxu$=%PZONYIAWKk<2RLkuaKr7P}R!n0Qv~BX7!{+7I(U
zdnI6l{#*bI)s?wrH;(%fxw>8d2yA-AZZR+Z`?3th3yUar;+%PUAzbUQg*&62mny_n
z_dWXJa?HB#Z26cNq@oYHEA=H}D*4#hdhYcI%AXIX@e^T((97g@I->GTvjK@Ykr5QV
zAC<b~Lt7m#?4Kp{Hg%8J56f6EVa%&_T>9xFZM)pjJ#_o~atqzb``vE>XH_3Kfx!#k
z^)y(t&PG`sX>dbl?W-*cP+?d|p9iF=T;(bUx<;KoE-b}DIvZ8QHF{Jb*phSkpaMa=
zKJLmBIEXF6g=;XLohJ^3ecs{XP|+3-@^>dzO&1Aypw!nno|W-|yNPmCGt0OV%b}?|
z)!{3;V@s1>M}RjSCh6peQnRd)L}bPppSBz?(N$QD_`@>WFGPzbm7jS)&De_-EwV8d
zL0hlq!j=O?#Q4*(fiT_mFlHi^+(rR|@c7yD^f>%`?*k)*?JM+$<+(8=7WlI4`j=$>
zbZgkv&JB9J1(Loyotb5GQ4@V63ee||v+vS>tcp7{r~lm!k?>Wtf2w?g$3!`%n}|1h
zUYj;*Uyb-V9bc?QoB={|s|9rXne;sJz6PJ0j8rKD4@>_v%>B9gY1iStY;4OFKy<^N
zEeI+D+3`>u1q|bo6&EMA;j%LI)4uv96A#@jp+!(7Q1jRFj;Jwf+|K6$s!>il@X~Ks
zNW7vjXLk!*RSwgc7*PxBWLn&+gs%{r<~-15YTh1^54DMkx1|}S#f}4~j~2fjKH&^|
zD>@fTui3SyM(^m3V&tC;VvwP~WvLvjhq2^Vj2jozR{p5yw?}H}$eBcw7bjTWS%Jc-
zXkT-Y=_5Es3A!6gqE)*x;mqK*Bw5V%((*^8RoJt#O_dBD(ZH}Z+WbygCs(V-iZYJm
z45*^=e>P1G@u`!8A~{LFFG6d-CvrwyY$FWc@hl*aS-B*njrX0lsd2+|AflaPs^?Be
zmgK`8CDaNjAdHia#@xC<HG$&|vGu6QQgz<pGZB@NWK9~M6lrmuRG{{uZJd-He8LHG
zEhTYH`yj3udyisI_^GECn>*-zn8<9HxmtbCmG_~&)ni3@!Bq%M&=ihp*7a5;Ov*#X
zSMAUZAmXBeaf1ASySXQpJ=yt>MngCgZk^MEI>C;q(<y%7Yx$tXeR``zfS19I-FK6>
z06(uK6AWo_;l1G?*u6KaCzL2ar&CT+oolSsrhdgF9QC8d(a004i>d@mW=t2&2|LNm
zeQx>6><a^$%VbUnR`-(irlDOsbHcr(y&T7;`umfXOPpER8hQjTFE=BehB)1o0I$vy
zv4+8rDXel{GcDPVyi+Hf-#m>EePDx-0lg1MiHtHQgRJQDM8Td_I3vBVUk+Ntb*_vY
zr?>0@DaLn_u)oZ4;8?NEn8Oe+SGb!;s<Lj3SL9fvE03mw)JW+3(v6d#)7l=M0v)W~
zrTlT6o(ONwC@Wsy4ez^5;{!mR+({BBriNc}3B7?)tg@;erB;K<XLQ}qgQir~A3bIN
zrk){*Afp&Adb;OWq~c0&E0>vM?Sw>V=Z4>F`fJ-@c%nPMaGfB*X=KC^2crVy#n+V8
zE-P2Bk>X=N93EhvqRpMY`8g!J@M`c_jhO`evRErDVo5gah~_l;>!7-{b*^jm;DNfb
z0))mNQ^L+CPw5H;c;`GSU0kkBVwq7dGO%TGVvfU<Ml2Av_L}9qT{T}*f=iDF*3YeN
z_{tuu%NY4LU#TmKH!Pqf>xHN`<Y<jGViHQ%%PI(ue4O}BecDls=jl8-hf86;No<t%
z>=~P9QPZ-iYYN*4BHMh)vP~UQ$@5h8NEJAdi!3sc>fV8Q=|PJ~F1p*{WZ+-Bll;-=
z5FL2FQn;{wS9PSQ4nY4}%|}Tpf_BX(zR(pDDeQI>04=#wJ~A82A@#7&cg5X<#zT3F
zfWYW>DFv70m{qtNWIvY`ccA1_FIi?TEkml7Tf3|i87%`j%}AqVXoaTq_`|H^*r5w?
z9~H;gh%lGZb@7{!B55i62QcEb5_$Pr9<Y)Co33#tBDpPca<(#|RBECAXwaJwM1^Q7
zpeIgLUj<d=kXU17vmj&pTKv%7F8Ym6IQ9F&a;S-Uk-7-p?xgr!6?O|&@)HeS5GEve
zd~L+9@6R3%U2{D<U558(Zm)R0biVo4kZa=+ded?w^ZD~0k&$eCUASIo{@G3|{81Vl
zz(#|{Ced=PWv#2~D0u|79@yOvdG_W|UHduKRfrULYk$p2zOzr6VL3ZYpJRntdEA<P
z{bHL)oQw*Xt}WG#%)Go0i9J(Kk8P^&J!9Tko5KFP%kYZ|Yyt98+@v;*zE58jUz{U#
z;(3=_naIP~{77UZ5pY|Tz)K0!9>F$ZkT9fm{#3E*F-Myxuqx)S{`2i&p*#^mT*#8W
zt+zoOv^wsKZ>{Rbo^Qbn;#uR06g`Qqa4QK1U$EQn?>dUzkSi6bt0R-U8lwpd-l?tM
zM2N~;W^iZ0l%@S-W`WC-s`VbJlsIv$i26!RwSMw?YsO<6zlw#U$&CAI)PD0+8B1v~
zJob@k0=D>)&}ylMP;yt)dJh_><eZOC^r2oWVdtbj!(S~WFMs}VcW}+)+e_~1e8>}Z
z7Srb%1P<Xuh)1oCQ(8)-`^YD_E^Ek^(pV<6z>!u_AZjd;+Z-(J?I=}%X;SW`8ovgJ
zZ4e-1GbbKXGFvgrvTH{WKP^(|d=TXp*qWzo+C1&NzCUi(5Mj-&ptDNAFvBmKhg~!?
zj1k4|HQ5%DyrsS0!|bekZmmh1r7Qn-tj=7_qfyB_uyY{jaDy+JoPOT9S;v3>!yX88
z$4FJ4H3PY@??$qvV6sejS?WHb^+^5z=iY((1W`fjmv*w_1hmn{23h>!&Vk5ex1~~N
z_#{mJd(e$w2=sSeK7H-<%w*L1>`7pr#1Uo3t27Yc#%-@MBqfuoFGY6b8sqVIPwPhu
z*lE^DXBp4Ne=|I>>iZoF@%%Iy+rAFPP&#qs<NRe81Diwn4YqWbIsR9Zu3-0OZ{6@g
zPU_19ymx7|_6U!s6wSMxgKiuIE@KZA<~3-)IJ81*1GE!WLo?s)46cwIm6HvPN(+!$
zbU-FC;dsRa)%Pz|Yf~O2*K^f41jy=0D-U~A0*3Luo65cQt+KkP9)bGx>b;mTqA{ll
zuW9<R=KM9L$lsl9!@r`fzTc&K3X-CC7d<q|q<!R@i2@M;6ai3d>8r%0cs^%X<C7jg
zT&KeZD_+Au&&;tNvPdf9Wfs|^xp9H>Y^3ztO%Vxh1{A<_+Uk*I#@Qm7;J!+%s|3x8
z$LzzM5z=RUmGB|w78psxFIN0@ZR5F`@9^Y7Q<8GPb%OP}H4Bqy=xwF0fznt})<Y1v
zRnG&>CKocL%k7FJqpG)o5f3<yY2SU}3y4V54!ko<wXd5=iNfG2s;;c+wlb<$b$b3X
z+)OLYyOFo~fqpjNM(JKQ;OM*aTdcMF$E<df{Hme1Nf^jiPJWMcATN&WY?K8PRb^P9
zEJ%6TjBC3d_y8LAzTnxmemuLHuxsqv{`6N2q}xSBuUne2`J)@Y!C8XOqvp5GG{1!{
zkBvv2s>a)N+s+=<qN$OPpXg>U@d(+S9mv@}_&Y?o9U2HGGJfmmdfoliUO)VVT0)&{
zQYel{?pC|UzSaTaTD;cD#(m@p>Do;)P@Zl*f{nCeG1OIsu*%CplUXrAw3Lzl;)QE-
z%C3{2n_)oGXo0B--xfc(jgG54588!C2#F`6k~-gqTWx1I-bH4?s{DM&lrfUV52{}=
z(2p}`(`@f~&tCch3}JD*wlm>_Q(|d9>42L%;(!;Yv;aAYapP$2(x2pMU1Gb~3Ye^V
zMn{yFm?5L9&%_xa2H?#v55qH?@F_=J;~g1w1O&Y(z8^<Ziyi80Y|M&XHM*GYqp2pf
zEKM<%#-y*}7%_~QU#3~MmN9jP5l)#?_*U?VhMX+FkxiYy9?=++sONIXAfJa0ArLqv
z{M|KpgN>H-%*Vh+eBgM*CZR(qXgSidK3h=zNdIxwbrn!@UBkJ)W1tZHrIxLi%1t7+
z#mLKJ*wiAb92qsd)MqOG!6|OARJO^Y9MRrkUs0$@cl0`L(2e>-;#`ErhA8KlWAZg)
zE$lJj$aMT5mo(iE+%p)O@BpkFGXv&Pcm#Qz!TOBqsw=t37>Go}q&GDnOF0#K%e3P}
zB6YJSF@I}uIExoi4#;?hs;V5PuZ9g$){;J#D*3#$;Wuf<nFMaF@ijpUlg##+V`w8A
zw?soRS;a|W?~7hU%rDz0t8ip>LT|LxROvu6;Y_BZP_s-Zm1V3_o)#Fuv6$>^yUGbV
z$vE$2t?2r8y=S9q9}<!I;W>U=UK5VJ!d#!Vq?@Ut+Yeym{7);q^D`8U++~2SbRu6!
zWbfD1DzD>ndHkpD(5g<eAb7Luy+SCa1y5Zd4?Yvho3mzA7usg@3D)5AChR6=yP5R!
z@yA*?yZ7kGP7l%LOz?R~^8@Q`Znl)o;g;kf#Nj>^MQ*oFH@P<(8%ZF@pRpRnS+Jzj
z+Nm1xt*)8Stm9@&@)VNQxSF($$L4<bXXPP0yS*M+T{jD(kwKc1;`n3&3GB~<#UCgi
zUcKk3r#eFelxZ^#)bskqa(2mO737bSSx#e70a<U{324Qhn@BpM4humw1{iz0#HxgN
ztDPfe>D1x!PbqJb^l7AHxer7mJxc^bvF^U+<(J9;CBy}jxSc3Xquw`;Tr!LLzpXO)
zNL>okP<7NqZ}}n@iRE@|2^_l@>mU~?JQ<D;&`E$17adjlUQt^Zj<H;#9R`TOBULn7
z{<P<&99{4_MU-!g7OSHM4Z_&9TX7ay+Zt4lEjUak_WK?bP5S8(r(6!9MdFlEv9|iB
z=!^=^&1{X9a{KD$S<Fj%N|00dZV5}DQN6T%68CqJLKmr!05@H1^P~b29g(N@=QI85
zs!@v7ib81HGwUGXEPSQ>2PuCQjZAol*sJ>TiQLPJ{LpO0;@h%uRLP9^Xs0d-ftf|M
zW}con{_JiV$7NN5%BybXHyg5|tx^P!MdbF{Vtm8dUv{pTbh8dgWP`cZ30trDB$4I%
zqo-yn*+Gtlc9rz6+@9;!#c`DU1A1}XtfO=F=*BB6(O}tRQjagjEDS}cz6n*TkSTF1
zP_vWt;N9vv+-YqswlsMUuZ!L{ZLS6yBH7`~41Y?*laJ+v%Fce@C9;)|cz+MKzl^B-
z!&2GKc}8~q#fMz=(OdpVxa4eYgF7>z+>K@j$CKH#Qh4HYZSnXDqhyo1CHXI((asn?
zLaGB(QCBmt@yIvR^5sqC?Mv8{*3gfe`{WKZ!2RJ5>I|<lboG~WTaM?)4i3;LVZBxH
zP;9cxmhDk#16OftF;_|J*F64w1iQe{LjgDcfbBD>Wpr~Lwp{p59!tb`O@+g-p?b4w
zo@hjXgdoAkJT;)vuv!f&&hp1p!AqNums!_DMRL!TfP4;V5xY4nbD|!(kCxFpOZr!E
zxpzD37X^U&1FN{AyZ#ZViY!)%_Rxs-+-1>fv!SO$v)eg&gEt;y=SM?c*lvjpYA;0y
zH?N)ec+4Oz&0YDCps7Z_uYKBak;j(d=TA_0Gueqmd3LF<@*Vayx1k)xuJD{S!c=Nx
zvixqs-b$?qHXM>Zk-~%Z2wm<li@Occ_Kaaaycfb<{DcW<twbxiZ?0pw?+eztt{N-U
zFWzzJNQn-HGYN`d1!p|nT~UQkiE5ajHo7gtH=*x_XJ6lkH|UNOdosPN`DDBnuYOOJ
zNM!waS4drl4d_~#H#rLs{O-aM<I{=#IvLdK^Thh_D$`)dc`Wkz>2N1|uuJ!<U2&4@
z4gg!Mtm=hnm-#N^;1$?`8$?fWxG+F5<@AwS!zjPoU_+kC+q8t=_szf+lN`WH?Y7ql
z0D#+mxE$-djpW8GqfpF(LVvTM>3%-x!BXx#`YRZ-EVdr-t`X**3ad;7j^?Ed8q<O3
zdJp3!9ISK?RRMxGBc9x((UP*M#&0G^Ox-VN`o|Q%$Msgq{|cO+3VL|D({<^onvmOd
zoR(cbOJ=$EjwPb~G<9oZx<L>}q4Gjf*l1Z5UyR58mpbMTgp0U;Y-9Lo+LU`b?{aZp
zGuxrzfk|~=`@+%r^0N$Sx7h1&zpT%+o+TJ5tA8XqTHk6=`xhSv{JWRiM}o;MBzU2)
z?%Ukl+|K*PPacmaP1^zBMCQh_>FwR2Rf9e%^@Tb&Sz4_gC`KL~gIi{n!(YxLRB48p
zne=%mMj_evij)?3T(%*x*pqiv=0CH`OxNPej4KjwDK(yu-8XRDw8JuEMHj5Euu8gO
zx};X-VuI*aQ0$^KZjIWdhJGDp*v&v2d5GKgnFq&G2z7lc4c_vk_9_4>PXqg6QEaAm
zW<em#MGDOx6AVgr!-@JJwY3p)LY2=0Eb@cgPA}^4fR^yv4(EydJXcX9G|MXn5Zo)V
z4R!<ES<F{yCy+WUrL=1SjQG6bf_zMQ%O43YVEpi0`}y{=X&kp^pllj1kBqox|Mf{7
zPkJW({k{D{(Pi-N<jXu^yU}d(2ceC0-wVE$H^IR6=)PSaxU3kD$BaMVEk?bWeL8tI
zFoboE{vj!<p-LR0rvY~s>n^JLQWDe8_NOtlGIi}BQ2!uriE0)q*JLq^PGnjOA%lFj
z`o|SZ4y+aapBc$HQ{Y5wX_4%soUui{29waVOM6a{BrU1x{v0`h_(h!UnCo+%#TPxs
z1r|oVhr2VeN4o8V3|{Y^+Ix&&ZBSS{T{ZH+X;i;DnR49=ZTO^O9cv+VV^#%Y8vRqv
zwhLKP<FzdBOEvS<pr7lsvuPgy2W`o`nt!D&qtfPJx$-<w?i;6mn_Y_~@2oytjbHGI
z=ws(>5H{x<U)%9WsiH<f1qWq?gxG81Fmm{(5LmW%H?V&GAf_yB(rKC9qbpcDWxry$
z%0zQRi{;kgmLb$6M@Dn8Sr4?&9`e<dc;WunVF-@&f65U_E-u<ChSBlxP_#_aIxM{8
zU~=c9Fn;<_dg{4zUJ!QqG)CL)JF<&q>IPmYOp?uSM<<{)uk$lZg<Bh?FIak&%W@&5
zHW|J7|8^j?QlZ$%qGt&SJWHYxcyF6bu8C|!`06?#-1RKyNve9VT;EG!A9jr9Nn`mb
zM}Jmv+J~zC-tYP(fxc-NR8>!?@AY^01f2E`jT+K1>pv?h1I>x{LWc?91XUvJ-?((f
z9H~ZTmirTVGp;Al&?}oNyVziau>6q*UooVn`(OBAjx2l%?U(cW&~Tr?YE(eW>ARW_
zcA8p6->@|%o!raY-YMynPL`goQlXgt!CH;zn$CYu=TAe2KO3XjWYg*H5J7#oBmBg_
zO&L!BEv27bjp<ibrKpFe*Nx}q0rs=bZoy&s;bbIKECm=d%?EurlKgw*23{@)!LKpT
z2H&S)Jw5kx589cyrvN1U9~U;D|EoI)7!v-?ve|vRiQ54BISVCS+8tbG!;Bjh7-^+*
zp$hff!mU7Db%UL+%1To_ctZb|Ua!R=n~tF0BI10gJrVgKBt2!mbbPE*Eo8h-U$|d5
zRot$Wsl3)APdo$8nhLEaH1wk8_anq&=wq6G8{QIJXYBkxW6KGKNqgPt?MB_A%_{Y$
z_(Ig^{8=rx)Kl7X>bXzszlIS^7%ni1E=*Oi7?noATD;VVIuJgqchqtgfkbXU<RaPK
z=*sMTRw-~nPg1P?KM<j#_CX5_l~)0TxpvVdrv*5(S|Q;jd_Tf&>|*3QyKb6~hVR7Z
zMngk!Mz&532u)ioECIKbITyXAhn8U6B5hsa;ndYH_l*An=(}B{HfNh|_04|5dY*Y~
zAe0%?n4z7r;BO#S;jqH0dcERqXk&vkcBg%=^(y|e{C77goR~0}m{e+d!2@%MssRXe
zE-Y4c_VQ0E)b{0_q4yft!@U}CfQpIJGD3ot4bM`X)4B-`2Y|nnO!GA03tPG@o3r)-
z2LhUH4RPm@60fMCK2CN>KVueiFYORz@VbY2AM<OB|6L<j`G{tq@arx7+>MStYNCUc
zpaT12OK=)^CgRoo*K*$D-~O^&&I!=(p0=@A7VvvvR~B__ml}ZIleNB$ewkOESD(+s
zgCUX5*;ly=txs|(uEN17vyVl)<+M;8otSOCQ7)K3C)cZ`d4Dj4t+yY+t>nVdM1RK6
zgF%iU3py)%OR#dL(So9=Dv~nPBM4}(s=oc?)iMfKMqa}pD&A`dQqvxh6IU~m68e`Y
zcQ?`fVZIw4T87(QZX4b`EgtBUMdKP9JRD2bpSCsg2b*glzTI#`7g<jYIYGv{)!<2G
zgmG8&C6z*4E4g=Fv=AHv4tRq@hKn7R)L0!_!9b4BdwgaY5Gj-<diS5wYt~X)<CCE_
z_#!O&mQ{DVD`%d+rn3#0t`r*VP`sNw0|x}$n8@|gr6A)DAk%f#qas3i&AD(2vu@~l
z6$y;ugnB*|P^DN3Kh#Dp?h$~dm%Pn`m;A~T3l^WEXk5UEAr)kv{>ce~x=)49$g)|$
zol(iyCvD_{Xz|$YS&B7%4`J%0*WS0;Di$y<nIhTiVBnCTQ5SIQdH{01Gs37{U#HNB
zZEQwx=@7}hl{P&=2I`vNF(o<Kyg$KDJ!AsFw9p?cB$(6_UsqG;)>-=~EktRjzg4^r
zH1!v+eh^#n*XCPyP+IXidYUvT_gbF*-c@fjqE2=A(;;W3-u40Xi<a`(Ie1#N6QrD-
zm;6+<f5QdwkPt7mS`K6mmrSy3!dU0J-<`d1_-LQ$3G|c<NuJu$Na&=>_SslFYyj>x
z3`<|&!z$~rKY$@bzG}O?QxlFXot2j*-Bg&3DY;Gc7+bcDlCVP$fKTPw{=%@TSF+n>
zqGh3@I+vhs4}s*>%53747>EF{L7s}0t$5w)TI6Rg3K&-VxFJ8r)XK;;N-5d-ubd7o
z0Vs?7L0tqIMz(vEYa%=AD&X;QC_6t4Z);nLL++XMkHg|a@SUeMOrwWS!r+rmR(6q4
zEJ4#>r2Y2wEfL>OZ~c!HvMFK0RR@$QJ{p12<o5BX3*TD*0@jWKV2WK?hdcsu-dhr7
zN36ak`e{x*!6Y`+{+O1-n}H9DWnONEE+2MNE`;PU6TaTENU*K=qL~5BB*FImS5X!f
zKV{$C_RyV_Q_Kp)7;R|vYb^?=eYU4yAv!B-857qM{cLm?+sH%%7;$n+q}uojJ+0C*
zz1WO}lV#9X)-@ef>7$tq5Ed4|EngrI0O2JTf5t`@b!KF%kOHj-2Fv8ho{6>6V}J5?
z`!wmP7P|blWg|1=+eX4pce62k)%vKmzbZ4j-!t!NSA5Q_QXZ}Tb!6<^t&5(IIdEWD
zB1$y93WUcy+g|TLwy3P-doWF>bW$wpphSW%TP`?_xH0~$o4z0Vy?Oa<roahM!gJ33
z6O(s(xKZlc_ym+PN~H2=%5c4f=v(}jFb9dS7}g1YOYNVED}lcfHgX&fQM%yGvI8)2
zst1~%`QFhRyFSjJK~Mc5UFFWf3#u*j;WcwrEsa{Q_>uDLlfq&kxWfAd^5HhShtj&K
z1YPGyDq9FZyyCNeIa-h)@Xd%=d(Hbw3C@ohm#x!21bnaFiE-=?w>|m6z%BMV5i^x}
zkSU5~a(7?hWVzAxnxsW(?)xt?^WPPCyNI;KgbrtgsYY4sK%N!IRbP7Q&6?LMM4n5`
z$YjQPN)y+IV|Ek+*4o$}JqMwVu+MoDru6SS@yW8$hmLQKth3&XTxzGdX1_TQao$_9
zBctr~?3C%;{r8PO65UO^dtJL7P?z45>}j{J{`c%O2Wnasf%xLj+kG0de<;kE!BN9V
z<uxS&Wo@vgQ~2Zd$E-t*{B*ZEB@zK*(WjGPpYf=aBnv=lW~6-+mnpRYp=Nm4cyP>>
z8XQ(<&I$Be;XLyJ7QphR8=n(r<Fm?(!0R8#R*RlD;2rXa;Y{Wq$RfNUZVbWLr!c)&
zb&8)GfMX!v`GjtJFic%i_wb0B^rrV??T|jvrr=U8r`n--`&?Rh<bb*Bo%&}W_X!-n
zllm+7IPHYMflUjon@8o`1{LjQ6DI;EvV@+&hC9H$`G;Z?c{Tk?L@ss7Fur<JZ+y=T
zM(@WwrX*Pp{CmZ*i#cZ=-K$Ls4Bl$kBcA*}0VrCWD^YBN&}koS;EJ8?7pE6QqppJy
zv9*kjKTt@Mo^~%*lu}zP$C(%Emy;&GPe4Xm1)!C!Iv7=4ru+}8c#S*EMbw6+cj%CX
zgxb`gN&X?0rW5n%nR$MF#EC=pWz?s6wQ8zDc1&=<!LO0nG_Xywi*7}(%|PU_!BR%_
zt8mn+efGIgo)6Mnd_Z4rHa+P2Na5EmAHb_|aK%(RdBv$Mvej{3^>n&UUlu~EpsvO)
zwTO>>bU0aeppRQeqUxeb;AGTlTo^uVo!a+#aV6!kn3rIr^Z1_OQNn-#d<;g!t<o#?
zaq0r0#FJobbwACzr0@5!O+vd&P!#iQ>Eel0YQG{WQ*IxpY?)TOFXNXp(s{u_r~+b9
z9ha~Yz$rR<+0e5%*cR;E(ZcIz#WVn)GT0~&W<RtwnOy?<vTi{0)ZI($=8x72w1iAr
zzi^3iQ9!Qo4dH`!_=`x!K(QQUSKo!3Z5JMOyfJj#PK}7S0tH2HJ}_HCte*^yt+Fa6
z6IqiyhbFtH$zu2Yzg)#`moJ;$uiiw~lv5<)A}vHO@#vx!x7*;5?Lp#T$pI(WP5e@H
zuAGMlHdD8b>h>FIE5lkfJP>Q#aicUgmH#vZi(|<VlddIP7-q-*Ky5k~t!sZ3oIOtJ
z$Yw?L>)SirWV>bQg=SU%iF+}9yg&lUx)@p}=!NW83Z48L`2wSTv?oaSL(e4|32wGR
zbL$q|tcFk&^uKhfg)$GEPmWOl2hAJb4z>-Acz<Gn({Kv}o-K~KNdnG>WN+Ox#1=pc
zlL(;fU~4g!7WqdHFsPO-_k1lSl~Rim6uj&8gT+RPNA-Pj#Iv|3|F?+`n(?!E0Qt7k
zGQK$9FDwR53bLh@M-?sX%G<`^rjz!`c^1){-v~yjh}~A0z4A1-H`#XXlbozrM_n3{
z3sjfiF9h>`r@I}qlkiCyf63#zuD{$cFKJe;{Ic)tv+!W7xoHI|Y%RuiUpcBCxLtOt
z8Y)Egsx&@v_yND~1IF<>iXX6Da;dAQTFZqOPLPVK?5a^GX7-vr;El+lg^8?*7aVS?
zE~|No)n?q3TW3`>eSphXx&fnWHYpV+qy*#P$6`zkdi#SC;=qo}<*Sn?Wz+1}Zf1?w
zE*daz2pqcZnM%`*gd&`r^%UH6Bj;tuL2o6;;n)@x;!w(9_@3e)lg|dnJjiCLn6E!A
z2K9<k8ukW0UL?R91g`d8l_bc!*~CMO?v)@~H+z)hL=q+TERjWrXXX0X=F2K<)De9j
zMR$C!&Vv50AS{UxKMdL21M%||WIU5M;@BErKPX9mSt-*lJAXE_urx<}ZjF7Ec!@}F
zle9_iN8UCn^Hdn>73I%&mz#*n@078XDc?%Al8)7@mV)zGUEK>${GWKd<p4HGw}&c)
zW3+>SrhO(D0h`L_Ci~{7-9DSRX_`!%7nj;;ik2ge>Tg|05D@g6fBYA~o}gRNfycIQ
z=VHM~8hLcr#GzU@b=?zfbKOMOOJ>343cZgC+Xx5FLb|ud^M+&6Anli5vIXF%=@ssl
zzmH1K#{Gh(L$sv8g^gjW@0mKqf$oxfzOAF>t#?bw6|JC7avN?e-+-b@H{){!p0)cX
z?=Sgl_7RP?OGi9Yy~#+su~&KRQQ(r3`n@<Qd_+XUlpowh^vU4qP(<cQ*P1p+-J_Pc
z>S={QMR#P;zZW}Rju<jD0`t=0JLajOjFmcwEJ>vinwoU6Qu3fo?;g@P{V0ZY>1{A#
zznZRrK$3Q@`+H-xinZojPq!Y+>94kRQm<DV7Q58qwUlf~NUv{}KOY6$53B!*;jh6d
z^sbfkY>=I+ArAF&ZXsVAu+@K1Iu2x>is}!&RDYQzQ`;tkxD~`%4<8i_gZ81lv}QAp
zh&cSJ68vJ*bvJq`^)GOzi6RI1?w-K~{p~770AAdX{$eIpM9WZ^<y#%>o9$rw#!CyK
zu|EJFB5T>4ds#YsS8u$9Pc3RvSuVohYtKIql4$M~z01bGHt|vz4n!WXbZWDa5?LDK
zMmqEfrh4WzzAy~kQ^-|WhbVuUcyp%vCLX4feP}eb`8b-zx<WVl7<&Vu{JmW#j?9wf
znd=VPjTnkaZN~bp?qfhfEH&nWwqT8R=CV>y`~IkZ1daW6Ohyxb=E@hZS)c0tnpR#=
zjd=I>N9=Ifx66`@N9Rf{giHuCH&ISD!fUNo<w(G)?3+zxjNB>=;f^`OJuVz&hH1zl
zsdt4NhRGoRQ4|m5W>Q?o6~dFUFs9@2#y*>5a~<1sMrr|(!jWtI4RLxNjjZ*+nAdsH
z=6j%^$ZqjeDmR)((bMJQu`C_GA0jByx^#dDUgCT`SVsNxFs&uTiH$BPnNcWqHgWxw
zdwUZ*LSv0f-wnFkPJ>hhARZNv7?3&KMTuHRnXZRJM*7`3LEDqumEy0|YGNp8rA;B}
zS$V!yaGqoq>Sh9dUroMLx=cJ7LX)!=*-Y4Km#n~ySxbkqPfA5`-***s5orlqT{F2|
z!%RA#HE3L97&yTXyU<VGXE6YQ52gc-WoMAgGYG)kUn3am==_b$hgB`l`nbpG6xvu(
z*IpZ$3$?!vw^UL9p&yhL!!^#L(Wh(aZ;n%KhCEvVUcr)s$^Cs?6IHPcQ=ht*6FJ3j
zs7+ncOwdG9HNKk34u9p-R{40IbIJ>b)I3*o!-06{s6L&_ny;kgop9sLeI9-8Xfw*5
z{cYme(aG!9_8*_h20UtC1ly2|af5gk+J01X=}jhdHI^Nq4LYMP$euT9ZZ<Dbo*Q~1
z4MtwJeCv0RWf6%CO_Zlwi^Rvpym=*%(bZ1@2&Scely#4thG`qEG5N~2_oM_vVSqv(
zz}36ro>yhWH5Mgeou;bNN{|HPQo_XX3u72-3wc49*Kx@0<D+8I5cxW?|HCVPTZ~F7
zmN?Lpbgr`+HVCi4hg>aJkmhTEV4{7=P~UZ|0r1RmRB;?IT(9xNU9YG-nPlZHj@yid
zpHr-7p=Rb{%a+1X-__qzaUasaQ1?1vmC$;ZN}h2Hz~~-mg0WvPCg{(WKOP@TZi`83
zU0;rQq4810^48Z<t}#!T@KXjDT2XA!Kg4pYx45WPIw9J#ef79QKmfixu3SbxxaMP(
z78MWcy3I#!{B#<QV}$}-?x4aIK~w=HaM7(07D!B^%87_&*N44~A<LiJ6VGnKS$$#}
zN4L4^bVh^^X&Hama1^Zm1zfPZkajVfCCcAkZ12*y|1`cpfOoAeq3&7n&_v}cLK%qW
zB#SH;XQCuJ@+KE3uCX`tQk!u~6TxCl9B>+wXq7Kuh&w#R%701ch7)N?C;xD+#t469
zACrFa!ydNG7NzxB=P3D#)zZPA8|Gj@Fh44x%iWf?B`{W)>HRJ%&cH|Zwz3zsz^5XI
z*e-igni<i}t2$m-?61$zjXWarZpNsE$hVmWTle@<lY-`15BS3m>`nP3ue%$>s#tZI
ze3L~;$>&TNoxRP7+%IZaS=8hH+J}Dn&PJH)^s|hs4<JmF`;KYV%8fBD?%KgYM>h$D
zBVM?iyZ+c-nlq9IdLxHm&T2KD-A^Ci9=4VJ+E5rMMOCJUfs?Z6kz%%ynYV5@YBFNP
zA8pZ0cVCvd&5A=$iY^T>A?u0Nl(L)0BNZQ&+aR`-SVJpnshU1qe&%v43zhoYe@vWb
zqJcMT_Nil6YUEP({^&50`t@}W{{02MW1C!uJ!9=c1O2f2y%Cau>L^rv-K9JY-?FpB
zH~;++U47&SBV6$9c0s`CQS?vKS)-Gn$l)I|O}Q6qf;+n<TY%aYRm&r043m|Z7poe?
zfaGn>SIpgK`-TB=kkHzb?SSHNC~X`o(M-&1*ppe&y97Lyq{G5Bzn^Y6RNjmPPV`cP
zy+}Rp)sHWTd?H`E#zZyt?5)P<m~9fBFyON%;>pS9fy!w`?%pSmd@kx&f>mg%f1*GO
zzeuf~W*leOElwi3Z#*t9UoJHy8MZL*<=@dYZvmcJu__$h;<d-aA27pXyqJilxD7-{
z0jY~lGQd9dcKC~_J<^fkbAw8v`5S+=gqPcdo1;rL%p|J_(HAXJ!_*r+Pb8zraE1Hn
z#=6K$w~;SdjWVJh%i-R;3&@$*^Ec$Kol1u{a&N=dFRu%k)|;VaJAsjL9(h$rl_JVs
zG)(185{7l&E2kCm9J|_5uWksiFTJ$0iq7jPbkS%xYHkl!;*Y9YkD;tnhSCKQwUXvd
z)@yBqyN@%m%ULuLs%t(HNWB;G<YQ1Hp!YapxRkR&VUZyTf2Ch)ac8U(j|$Iyj7Vbq
z+l{ww7sbD>Y<aFoxBctFmgma+IlZn3{^H=6U|ua!059~~YxQkr?CJQ&xl`+l)6NuZ
z#->FE2^Bo+bwz~a3)>gp2m_ngdl-+*OW*OV<+(KE|I^-g#x=DqeM?u0fJ$#7O(_B@
zRU{x?n$*xik={EJsz{Tjbfk$Wy-H|OLX(IBp#(zj5L!SwA%wi~+;i_$&-4BL@H}7k
zFMF@O%B;O+=D%iUP3}-3H!8oQN`~R8^jXZ2!>LY^4guv49ra&sZ~OMD=2~~$6(9B<
zmFR#S%s3f+XTBx&U?Qr`rWmnzGRG#RTHfCU=Q~rO^v0d;!i^0BJhna8!#=bx!a+-3
z@5UhO{N~kO%{8#Kr~%9)WnoQr9=(;@qm6bLert28Pmu;(n6M%lg3fm3D4@kLM!1?4
zD>}csvw?_QWumjqV+xucwUelBWCwBNYA4b`<9^!D&B6$Q%aHUcIX=S}{5hddBsWma
zaRkW%n1H9Kn}ZQ@GIuNlmBz-U1%vLf*qBs9DW^uh+<YrQaV=e=tJ8{t(eDix^<his
z^Y?LWx8Bq+rhd9vA?jF;jJ<SM1sAH8!6(Y}mr67vAbjJS>_PInhWw{{0B=8^v$<3G
zGaD04CSm-|vU258F_I=XR1Y90^-$@wmn++*19<G3$=_|&+b~^ms>)%SqOYK77tnTU
zT1g%Idk&V*KaY6&fiuzwff=EgewjXeE`kK(+9$D_!ga~(bXgMlXIF}%%%Akf4Q@Eg
zFOWYUKWQ>?F4^k8Wi+#39K{0(ptj94?27-F4HZ8rKk@RK2|jI2WsrXgA+Rk}@R3<v
zK8*n|SQBGJW%_Jr;;`}4!>hVQZ*xrvN)ml;X8mHnAA}O07%j+-EjZu)^`O<?&We0|
zrkG1E-T%rq^mkW(Cqz0B#rq^qjiPFs{$oi0SMbEosxRsB$xy(wdVfRtUtJ&g4)G~%
ztl0)u|A&lHG(X80RMx=z5B{tw$AORO`H<)%`RnNaJtR4M{9qokh?4vdGz4kj+x$NQ
zf5~I@|MLrWk1POHlsFyb_y9V<&63ma9!oye6gGqY<F0Ikdezo*t8HbZPtUr!DVvU_
z$`xVhL5Fq29EgC^LS!v90QwlAbRuOwmh#pTcl%Y#h9maw5NH3W2o-ynXc}kqhI@JJ
zS*PSP<~PJsYhh15JiGG8GHMlYCz*CRawY2e9wfs1K$4?gKIen1L2Nprm3o}L^Gq~k
z#3GL}$@?YBbvpIrlGgc0Lb4aEI~C?cDsj-)V?>hf?+t`I?-5%oXSqM!q0Ke~DUZ7!
zr|h0Ad$aK$9UBVW4rwbWvRNc(iI_Xj3raWie+QKCVqsnUyk_g0F4VNwykDDM<EsKK
zLvM7bW$X^Ns=mHHwQer!P{|es3X!EyBNCq9LI+<FX$md4Zvo|yl^G&BOz1pm-u_~a
z7+Y-bI3B7ooDu4L$yoqx_kK#9kiEX$r14uMHTi)Lo*BRb^W3wR$EK>Pic>w<We7<t
zEytGB>_iopDZ=XTKGLJDmbev+i@bFFJ>E?Z)c&m9XuOE3BQGwrcfrM|_7viN?g=bU
zpPX8nAPqS5C!kGR_=<TW>O?7v*%yb;1Ol!Emgc#`G`P*{SRf(0LD?tFBJo)fkPs`<
z?NfiDS+`v^e;r}iVi%xNxi#=bz^ZP1rx6CrsM{6VtK>tb{r;EJlX4skYkvJ=2*LAu
zs>Q`c_k*<|w`S(qJ!`0D4<i%T9uk6{Be0OzGvqd(dl3{>AnKt^UN|F5I)uy`oM)P#
z74s$EhBN_~sY4>G^j&qj-gqMtcb7P3!geJtcOsyP^WEv5=}gWPZ^ZdKB0;RjU7R)+
zAt<T9fP-sor@Z9W+vl{raV_lOq&-&lfr4#KG_m)0RJ#Ymh@K=cB@pi;$9LKY^pf0^
zaRpJk##8Ro;#hV{+<V%>tdN)MfVVFovCX7>0EbSdyk>YASt1n9q21N$hh<yD<aIAp
zLFdCR&AGW{4Mm=FSz&fvL^zz}V(mh||Cq9!&lQ~m7m4xAS8`}8dhc^OK(dSLMhR5*
z^fefR9-QW3u4xwC6P5B8BaMYvza=`Jm7XlBP!2;uh%mPt{jU^CF1M6i6_G9k3<OOQ
zyVd8cfVx~VM0wgb*N~_Pe@nI2U`aZFRvUxg`43*o&!?0L95}Pn3m1LN?Tx*MZ2O%~
zkoNax;y51s;L<=pk*SpOVbrv{?XRw)Pw0Fs?GEXR6kXl7mzJVQX1#Rch|^)LqY92^
zG(H)#gh6~x6sP?wFNdHNeO|%D-D%p65s#c_5Rr|h$u#?!eDMx4tN>;L;1`zhO{N-;
z{FSSLE=?3_I#Ig|P-V@ymN+MrWM$sj-9C4Xc1_8Ia23eI=?|HzIk&O6@Xg&(T6|ng
z5mnyn7tL<3oeWQ}J8sRK44s_Y`%*)f-{nbQ8;|#SkxoeNKpte)igezqZq6Y_Mz+`m
ziOk(5XsLQp8JYET&gHX{b5OWhmU6QUqz>#m4N4^PoA%@)Rhvp+#a)@zJ~7Zyt)3x*
z23;QSQC>P5N@lcAz5oYeo|rui_7M$<Nb7+O@*}SOJO1Ted+O27O8e>V1H6t2b0_|Z
zJe)FKj+C`Iyf4o{Cld$m4v~$c)d1XDSy9GI2L|dI3M$rp#rdbqyg;7$Ff{d(B(#X^
zxK8YYqR7SV=hO@J_H%tQRSF;20+E5w1{kSFpd9m9YU-{7zdax}Z!R*dF?2+e>ST*`
z(Dzh?nK@zcAalvyUM5~VFbu}bJm`K_PD#Z0YRFo}y4bMaep=F(k{7#-%<!I}g=3#n
zYf(ce0P4*Yv$XdVwmZ4@pGikfkB^==U4}-@CW0Ntj_T3k`6vpryWE!=5@YtZ*b+Rh
zz?rxtCarzwugi~pY+QE?%wHulzkj*5du8BBQ4JEdvlO1F*?7pezbp45__TfM+2lwN
z*N=$Wv8gfihz!{ww>+*)S-LM|O^fnD9a-Id+4d(R6}kgNsz1yYa#k@)G*y>*GDK_x
zNLQz#7QyhcvFFSRJFf!<7!hq2nhXe~VsRB{EaHRlNfQbqsVj{5hV*FMwDa-+#ueRo
zJ0UnNTTJ3JTu;Q9I8oxq>9G|ra=U1tiuOSwryhI98R&}pc_<umE*U93><&F-V=mp1
zJmYjsJXM6nJrh-M#~MIAz`f)7!FgZ!RJ6GG$Gm1R>`9aBh)GKB>~aMclm}(@9SSdY
zjV`Q0*0NX4RjMn|&A0`OXs1`MEp1i9Ba968NAQ_UHY^Jnh+;*Z)k@B~GZuYhvIKuc
zzFTO7Ut61WxbBKU2Tn8Klm?wfsvLk+9p;H&eX{I37pUhDRhKY<GTvD==dUg;+4e!p
zFChw6syuTzh<jjfdGwBY=9RUJsB-Udgy51*rvM1+;JAqW?M|9t0gTQ*)vvgwO^86N
zcfCH4sNU6I-Sq$-1NvbD)|f-f6IKgbvBh_IG<JAjyWh}DReeNuMr40#dT*e(xxT%k
z3=E9#g2(W}TP<GT_NI%srQnfyHj^H9ol*Xq^X!41vD5Csz86488)dTDC$`+qeuQ~j
zGei}JJ@F0NO?JMJFu)evP_iS}8u2xLl5tw*B&a21_~ouIOCOcnlm4`zLDKlG2ch+O
zSgvih`Q)(U6}3j@flgZ{ijgQE`}mr#*Dg27KX?=RlK7n#|LfP+8@g2L*KLt3Kh8s1
z62#N(g6KpQ&qBIdm$*F?h+LyNUW{R@mLTVziULnyZ%E@B`41fF8DxVw+*)TNNt>P{
z#QA8_gM_cBI8ONHR#BEsc!{*D!}75Z(S|PBBlW-&3}F5NOqUHLD;0(bxf%QZNFvF{
z!~CUvZCY0*^^YE>y3@CJL0RtoFVKwp;T`@sZ9dVngc4OrzRk53+w#pCGU(3tZUyC+
z0&p=;ePxOnTjj2hO8GCc6)O3b3dfz!`he`Y)v#zsr_riQc?ZbR=xBnuDDuqpCJbvz
zdL9<-qkpEv_9lSZC|afG^AC_inewf$ml+}1p>I6n*>^bxS9-al%ZOi9?}UbMvd!l7
z&^EcMOl~K|9a|-uMbQ))n+K&aySB%7nRv_};vVMsqI>mowU;NU0?;|#xeb=k^Q(6p
z`$pE5h_3wjO0CSb(M9dydy<nOy`c_wJqh<K9nM`kzOgT_T~s35+!e=VFw6%!q&$+;
zo(~Jjh$v|Y3`O8Jdcg|Kjp4s-B^u4}!9w1^(=Dd#u@^k2F;GA<%Yju$31H%-wy8^X
z5tcIi7{1URM#?I+(KK~gu(k~B(It9ND*PitCd{tIPiOL661OtSC~fB2#{6QopCoN?
z0n1SIakgh{_{Q-|z-yLAbxQ%1F{z+FHoOlft&na2tKz;xyhMzfQ#sy&8kZ5PR+e`0
zN$|{LqUNA1dDK0ykK6oDlSTF%@eaZ8;9<03_Q{E!B9(f(KU0keH|J$8o{7=;Q}+~Y
z7VY+XHoWYjqt-AL%tA_gH!TwnjpKdX$|WYvs}Y=OyNvv3-tNS1_smEyeHcAMRux{t
z16YY*tS_fw^=?9-YLq#);@|}(cy00X#UWcEhKB4aJ3iclm^4@@hduU5=ivCwY}v-S
zoi^;6tc~nrz)~a)LN$w-$&+|z=eX$-&J$q9w;eHRYMUWkxy@HPGi3s+OD`h<wzUnm
zDXVR!qpHGfSm1S*)hYSM5uT1G*Ya5JE^IR;wjTg5ePVTA{941+v3Y#>JX?0J<Q)8N
z$WeOwVjSZwtjD=YvHEuBYevOhvD!I_iwC#{zlIJU{bM$02r!Mu%f|F3JAo%1W>N0h
z>zZmh=S3@;FP9zRJr1b1r1qhi0bli#2Z4R}-0lQrG30ROtaB^aT^W9P4JP>xe)-Ab
zJyKc)4<6I*Z${(#41(Noq7TLB(*&I`bC~NhMXhCg-+_LR`&`?zGhPGR=<L*}eT0-9
z2ITG8*r6ObLEp^alzcT=oH=m=?oh(>lpud8n1B<vkwi#9Oe1&U?~5&;$V?k-tCIf1
z^cWg_2*E1)WU<t_qQpl-hCb`y5EVqQ3Dwv*9<J$xB)duSW8q`E(>N-G>H*gJmGw@J
z?oQOLoC>MhipLR{(}nNrBniu=qV<5%5o@8(9tKTm<7Kv(1QjuVS$-FYjsd-<5nX)=
zpm*T(Rs3YDQ&}lgh-Pn=OnPdr!UFR>P;kvEopmG7P@DRm{YYVeOJhj*TY7Djkf4Eh
zDl$yiVDl693j~*)iiKJjC?<UzXfXqFI=j4sYqf#grL(ki_8Dv{+|tvNX~jN!OSNew
zWKHZa#pE=!1wMKQ%XxJ7sa{iIT@J@^b?f`j(^ShJQtCc9*BtCVHj%S4Ss4I61@PTn
zpT>Ym$J~Ys>sa7{pyY2*Quujn>$iYQkDqrJUa2dV4YUZ_$sTE<796i>G!Yx!{k9xz
z+v6=Y5hpd(T}W+S&1tW0$4K*5Sfw)j0^!B$p?_WE<cKe3m<>hBR^`rd#9@oUhEwbl
zCCw7vHyuX=KS?Bl`A93cOiE^f)N86w^ZSiv<FuT7pWl5jEbMn(qX0`{_JHVWgrec-
zWbg(}Y>Zz0)zKJS>RU&bmQJ6b?LOwLtS9m*Kj>#XH=|1j4)~dbOH7(A#KNNv!du0I
z_;eJp8{Jx41^NYc&ECZo0!KoD7%kMqXEh0*Rgi&Ks%uk)GDjUw4rHwd5Oh*&y-{-|
z374tXwA&I+#9_ZhF)BU`?Fr^4BB_68x3Z^06_mY2z*m)wUAIJT$t0_gj)vH3_?a~f
z6WWGfwM~@>9?N}2vHOhUREEo78x3=cxG(1Pv|Ay*w5oQ8L(8JqZwE^dBw|qoGXeP=
z^XdUh>wA>jTSoF^MBMVakTBExMT!0;;1c=Vti0r`nrHfUiEO%4qJDt#NXT?SVZTI)
z7p~;ssf&5;=_hs+W<matCpX41>sz5>JNJ1X-2S7I6j?I$>7J@HHp!@rigMg-<TOtF
zQrYThbtIW?$k2%JcZpwCKTQT8Z2TP#-E8JwsUP4KYjWHe5~c-jD%Yi}pZ)UX&9fbc
z;Tvv~9hXhD^G)K9#ftf9XUXyEamdYBW#B1uugh*yU&8zNBX^Zo8Xy)!Kj<wX6G+z>
zsMuh1n13|*NzvOIObS|ezQrqJ^q)`h2DyqbvBs1(R6W{sYnHd0lcqIwAL+ldw_XhH
zD_rE>&^4(wh%ZZuFmU)TVRHB*eY*GFwqfbFZ#KgpX>BflQ(KJ=nS5?t0WOj34HPqF
z)+6NAyCso`Xg1$qPgsjRR=(yNV*TimL9I<Xd)=2u$+6!G=d@27&V01Avo=i+LJ}OS
z>wD>EEA$R^vwZat&ap9*rof~aZ0?&5S2loN36&<xRoLqpocWXiU<PU3qT<HNVK9Te
zuMe62U>?=%%sE0ABt7{?;9^Eghrqs+=TUZKI>PDu=Wj;M>6O!^&2EomjBce1LVDiQ
zZ?7Wt>y+l~gN*z}xxZBp-7~0ng+*(!e4E@l_IFnMXvj^~wTsD6Wx%?zv6UK(Si0%u
zkjQr;5GClc_)m<cftc>XvxAQfYAc^nllno1Y${~Dubz<oD!D3i<$QM*H)hmz%%5*9
z%d<rXnhSw)2kVXco%@OIADxM^c;?lhKcb|owdq23kz<)ouaK-PhL#u#>6A6#VN0-L
zmfsHi>Sm<#lVOgj&JSz>DAZwn=m()f<_E<^7X6LyV2C%#WC#0Srr@8@FtAg&598eZ
za-=2GNWl@AHw?9WNeSYt=cIM4MXd6^-cSww)-y*&%ow>~4H<f4>gQzV6jWX;3M%WL
z5|`wZeQx_W%F-E#vP2nfqGANhSqI->Q5*X$)u7Ho-Ls?Uu}t|*>EmW&j*zK6?xN+B
z6wvLivWh98XPzt^gZV*Zqn`?tKy9ffsWlkKIR?u!iRY=kl<Oe$W_GSPvcW6raC$!-
zKJDGmcH|Sw5%g@ch}B<j%9l6t?s#MJ87%q%gD`mgE;V@kE?CSr=1oIL1+bw1(`wF`
z_>VmcHj~e$nu&Eid7DGE8v((P&z{}a3Jrc}T%m3$WJs)lCxAE%HiO1C>=M=<BVN~Q
z-uwDa+5+(L(DJ-6w~?<j95=kW<ZUEek8ng*8j5j0#2;={0Ye@@M;Nd<mycu%Z82C^
z&z+gvC|A(^(d7W;qdwG3k@^%)-!J5lv$-h|j?Kab?6>8_$lok+p?A9)Kl$(zCQpx#
zNW*sT-s@k!dYBZ$#fYva$7~EhA17yLeH9g`L2HzNuLnjTaNOdfC;EK_lc*?n`;ud@
z!}l%WQJZwJ(-^GJR6%r;w3(wv7~Dqv8)648Awjvu2jiZD-)R;|y?v>yuMj{<jjW8B
zLr(*R4ba1PgqYdJ-1mghOqc8ox1Vv=oE;6XF2pwNfbQ5F%{o__J5t?Ao4hVCBT=cp
zky<pl==SiD#Q>5iW~QsLLHiTq9Bg=RymoCgxD8$9`=Ukb95&RALJB}9%i)vGduk;*
zBe^rBfh)J_4mDD)H`$~F;BJ5T@QmT->b~AisD#CRCvXLpCddsE(@#QdVju;i6`89w
zZAaqq3)+P=f*x+Y!WAqRGoq~2R(i+|Pv%hi3QuP>9DG{e?i7!@gZ&2Rk63Fj=(Y{i
z<0%r7ETpYHB2R04Zfm%`Jo*%EM<bZoU#IRiT?l0ld8{eHTbMg;!f3iv2|St6d!;pN
z5(xWA3PeTZR&8<19I79Ho)mVQeJGiU=*3CBEq(!%vZ=qhWu3U$0pcq4CgVvp<o86h
zic^(pA9a==^b2)yxo70QcKf&b`>6v(@(5$lB>T_RDh<{M6`&S_>fhT6L4FOTy+IGl
zy=2Bgk3mycy+X-b36=0NtThUZtD|>ut1scJzpN!#Jr<&mvDnHrBCh{h+VZ39F7s$U
zwyMMi6wB@skGp&SD5m1@=}7u#msU3MUxoY4KmtPEh&ko`kSKARCHQyPB<#%ct-$IP
z#t}KYtl;6yO;#wmftB++J(qhX`Qp^a5&zZMp;Z_3JOg7?|E0nI`}_i-{MGALSHSc|
zZNJj@*K6|va_!ye(Zv5Kpt*-1h`f`>M(nQ*{q<TKA+g5)b@P9d_P=4J-4se8mk<}H
z|5oA7@e7Y!%f5hvn7M0qQgMdLy`i|K(f*;Jpx|ps3HyH#^xtgLL1$ziW?8sQd~E!2
z^_Ld@g|p{5@$5$w+4YYC8oc9>x5EYGnD7twW5=_fjFn{EKMFeN@LWD!U-ZAUn-RL`
zuf}t?kZoO_rJl<bC&2s2Ty1O(I1g8u4WD(mGvg!m&7E4v)a5z*k)&~G6n3L_71FnC
zEH%<}n7Q057?Lk#JBy<`$7fErSWwrI`Ta}E=}@Eunob(=@eN-`j_ue2>jZC9)a<M4
zX$jR{|31dIBJ)f>g(qey#@i$}>9!4`3C$^WeCEDDtQojbK<BhlZk(mtb!%&YTU)t?
zVnB51yy^f*$O|;d*rWZ=#umTD4SRR7+##v9SS5ep?r{HcQ6jUN=tUnl{k4XeJO;zk
z<q7eKZ-TEs?e?bVpEpzR+b>$?l%)|urw@oVJe%FG{R%c|<g82xkH@1Er5)a>=QkwW
z0yoN+#%ol()P@ucg3`eC4vy=3x^ymfkYx`kzwzQMh*Z&T6lTR4{RVvV<Dx@z^UAb?
z17h5+UwC=z(Q*^C5Y4TE`tT8Ut_x0>Fv!`X#bf!x8=Sw-Q)rRg#L{q{YW`Z{M+%o=
zsb1rBYZI*j!uOs%Ubz{=9q%`{rr^AG2*7t^P{qNKI=_^wY~EDGE*Z7D6lhmMwaoct
zf@ZkqHbgG~$rBMUn_lY}l}#r2`r+WSM=%}R_rrZefhzyD1pI9iu$m-v+5x{)(a+Zt
zHXTbxjY#kKIVb7a%BSe$4X2H-#iXY3POc;mV!$l-JQ@Z~0f$=NsW8dIoZ*eFEO$fw
z$&O<_?R#h8+3xy0I2~d0IF8#=yId?TPvw&%RrEa%GJC-#AcSSX;A|>+P9g^-mNOTc
zvvE!OtQDS;i=pTk+FwPUC=QInSuMjC|7)lC>(?ujd0Ht6bGH$X*$m2rY=86oq-gJv
z2gYK4L}bZs-`3Oi-)ZuAIHQsgI8gzV_vLQow{Yhitu(YI2;~R@J#K=D^*^mMRt}M(
z6^yZIJkcg^5=|Yw-?E=4y02Kxor@G@*|i3ZWN+yINSGz`3W%iT_4=mv<TrsLcY!2r
z0-i``xWmb!^R$XG!EMF!_QdQY-?h_%`y1RgUPNTyugnRzRSk0F>Zl>-)YJ8buPwN)
z9Sb-wYx;h9=y%|BcC_q~Wno?5>Al||<_a*LdYp?E3x8nT>+|HRMOUE0R_d4hty<Pz
zF1dDY>dQrcOu`vS_LTFrm}XM7OrJg{-Qi|}*K`fg7hEM=94&-ox1{XAER%EPgL0U-
zJ$kc3J$l7}rN>7u@l!0(E%oFqnMpNLHsbGB9)9!Ai`#E%qffQ2B-h$y)blL7sC4I7
z^n~XhGr}YO`RMonNf)-Wyh>FZdg3m5yrnR*e!ca!B*Ne<fliwbhanHLs;e*-Kz3SC
z_;QELzUFtWN%aOC6&g8olz=VTnyTvS(O<{Xb_Y^@3;kI~O2rC<9a8S{hiUvauNMeA
z=o<5lwIYP-0~SFOq)WbAV73IKw_CMdz8}`4(dOb2>u>u#>!;pVsBazi#crqTg~%=4
z&jkY|wEJdyk4)j$izb3nt5=Mlb|j(d{hhxkMa=dMiBB{ccqd40NaiSL^kyc|JNzag
z2#9rwZ+N;+2%3Ltm^x6>OW^Z!dDazk8#G$sGw*a`JvM_kxo@xb=6!UyrOp}<l2kuI
zSRLX7s2pk}kxdA)4A^IKs~K@2kH2TkZmQR#>GNDQKOJHn`$f5RpL^ii#{##CeZK2f
zNpn%Pe-N8XNKb<{S2|y3-*MIH9qA<$q!FpflSx||p<>kFoO!Xnj2T6KeU!?o=68`Q
zQ0eqI`XRzO>5=jW?Wx7hZtmojuUtXS1Xn;6KNi^PbK_bQPde3m;m-jKan`dYeONU@
zUN5&tF@JOle0<$|&+dqP>1fe-esqN2G3*K^6CYCaLLmL@E(vsK?go&Ykhe)+GV*tQ
z__&b}Ij8eAc-;0@sI`S0A@B3&k}<!(5-OKZai*J(3$)}cDjIb2mY?AuNG2IIn-=_C
zq+KA)Bpk}roaq&e+;JdmF_erC7ye_E_}kEmIts!+E8?HaeZD}D>`mRq`A=9LC$hlw
ztMLC@dfy>oe3Epl)9?3{jW4{|A}3F*(F27V=<3omTsa}b{{!70oVIGxj@oYy!bO1T
z6jK&EBPdMT0?`jWmn{BRLwM!ziqJK04uui^P;s4**AA9zps7h!pg}*J+|_#HkFko7
z5cqk=Od<U+=M)YC(V@Nb^X~@o09BtqOPhmGb;Mfq!&kfiQR}rrJ5@?!P+&vV&JlX1
z4fk;J;ez}4trV8Z(o$U?pE`bi{)=y~Ju3JOS^b5J`sCWpYrAtIml6bx?eU4KKa<dj
zWQGBZ{~#8Bi{D+}jJ_r1Wg$SW_=i@&-`e8g)iZkkXG(t-g)LsYZl#-zdQ|a`Cavi4
z_{ug+#qiImrManv$7Ek7D&ge6tJ%Lg`hk-Uyh;PMst5f1|35V)Eyc=*Rxkb^t^o0k

literal 0
HcmV?d00001

diff --git a/manage/identity-providers/add-an-idp.mdx b/manage/identity-providers/add-an-idp.mdx
index 7ca6a99..932fd5f 100644
--- a/manage/identity-providers/add-an-idp.mdx
+++ b/manage/identity-providers/add-an-idp.mdx
@@ -26,6 +26,24 @@ Here is an example using Microsoft Azure Entra ID as SSO for Pangolin:
   <img src="/images/create-idp.png" />
 </Frame>
 
+## Identity Provider Types
+
+### Organization Identity Providers
+
+Organization identity providers are configured per organization and only apply to that specific organization. Each org can have its own identity providers, allowing for authentication methods based on the organization's needs.
+
+<Note>
+	In Pangolin Enterprise you must enable `use_org_only_idp` in the [private config file](/self-host/advanced/private-config-file#param-use-org-only-idp) `privateConfig.yml`.
+</Note>
+
+### Global Identity Providers
+
+Global identity providers are managed at the server level and not the individual organization. They can apply to all or some organizations on the server. This means you must define policies per organization to map users to specific organizations and roles within those organizations. 
+
+<Tip>
+	Global identity providers are the only supported method in Pangolin Community.
+</Tip>
+
 ## Supported Identity Providers
 
 ### OAuth2/OIDC
@@ -40,7 +58,7 @@ This can be used to connect to any external identity provider that supports the
 ### Google
 
 <Note>
-Google IdP is only available in Pangolin Cloud.
+Google IdP is only available in Pangolin Cloud or Pangolin Enterprise with org identity providers. See above to enable.
 </Note>
 
 Easily set up Google Workspace authentication for your organization. Users can sign in with their Google accounts and access Pangolin resources using their existing Google credentials. Perfect for organizations already using Google Workspace for email, calendar, and other services.
@@ -48,7 +66,7 @@ Easily set up Google Workspace authentication for your organization. Users can s
 ### Azure Entra ID
 
 <Note>
-Azure Entra ID IdP is only available in Pangolin Cloud.
+Azure Entra ID IdP is only available in Pangolin Cloud or Pangolin Enterprise with org identity providers. See above to enable.
 </Note>
 
 Integrate with Microsoft's enterprise identity platform to allow users to authenticate using their Azure Active Directory accounts. Ideal for organizations using Microsoft 365 or other Azure services, providing seamless single sign-on across your Microsoft ecosystem.
@@ -56,7 +74,7 @@ Integrate with Microsoft's enterprise identity platform to allow users to authen
 ## How to Add an Identity Provider
 
 <Note>
-In the CE and EE, identity providers are created and managed via the Server Admin UI rather than the organization settings.
+When using global IDPs, identity providers are created and managed via the Server Admin UI rather than the organization settings.
 </Note>
 
 <Steps>
diff --git a/manage/identity-providers/auto-provisioning.mdx b/manage/identity-providers/auto-provisioning.mdx
index 5261a8a..46b0d6e 100644
--- a/manage/identity-providers/auto-provisioning.mdx
+++ b/manage/identity-providers/auto-provisioning.mdx
@@ -71,9 +71,7 @@ contains(groups, 'admin') && 'Admin' || 'Member'
 
 This example will return the string "Admin". If the user is not a member of the "admin" group, it will return "Member".
 
-## Community Edition
-
-In the Community Edition, identity providers are managed at the server level and not the individual organization. This means you must define policies per organization to map users to specific organizations and roles within those organizations. 
+## Global Identity Providers
 
 After you create an IdP, on the edit page, you can manage organization policies via the "Organization Policies" tab. You can set default (fallback) policies, or define them on a per org basis.
 
diff --git a/manage/identity-providers/azure.mdx b/manage/identity-providers/azure.mdx
index b6aa497..58d770c 100644
--- a/manage/identity-providers/azure.mdx
+++ b/manage/identity-providers/azure.mdx
@@ -3,6 +3,10 @@ title: "Azure Entra ID"
 description: "Configure Azure Entra ID Single Sign-On"
 ---
 
+<Note>
+Azure SSO is only available on Pangolin Cloud and Enterprise deployments. In enterprise, you must enable `use_org_only_idp` in your [private config file](/self-host/advanced/private-config-file) `privateConfig.yml`.
+</Note>
+
 The following steps will integrate Microsoft SSO using the built in Azure Entra ID identity provider in Pangolin.
 
 <iframe
@@ -58,6 +62,6 @@ In the OAuth2/OIDC Configuration, you'll need the following fields:
 
 When you're done, click "Create Identity Provider". Then, copy the Redirect URL in the "General" tab as you will now need this for your app registration.
 
-## Returning to Google Developers Console
+## Returning to Azure
 
-Lastly, you'll need to return to your app registration in order to add the redirect URI created by Pangolin. On the "Overview" tab, click "Add a Redirect URI". The click "Add a platform", and select "Web". Here, you can add the redirect URL from Pangolin and click "Configure". Your configuration should now be complete. You'll now need to add an external user to Pangolin, or if you have "Auto Provision Users" enabled, you can now log in using Google SSO.
+Lastly, you'll need to return to your app registration in order to add the redirect URI created by Pangolin. On the "Overview" tab, click "Add a Redirect URI". The click "Add a platform", and select "Web". Here, you can add the redirect URL from Pangolin and click "Configure". Your configuration should now be complete. You'll now need to add an external user to Pangolin, or if you have "Auto Provision Users" enabled, you can now log in using Azure SSO.
diff --git a/manage/identity-providers/google.mdx b/manage/identity-providers/google.mdx
index b9bf022..70ba03a 100644
--- a/manage/identity-providers/google.mdx
+++ b/manage/identity-providers/google.mdx
@@ -3,6 +3,10 @@ title: "Google"
 description: "Configure Google Single Sign-On"
 ---
 
+<Note>
+Google SSO is only available on Pangolin Cloud and Enterprise deployments. In enterprise, you must enable `use_org_only_idp` in your [private config file](/self-host/advanced/private-config-file#param-use-org-only-idp) `privateConfig.yml`.
+</Note>
+
 The following steps will integrate Google SSO using the built in Google identity provider in Pangolin.
 
 <iframe
diff --git a/self-host/advanced/cloudflare-proxy.mdx b/self-host/advanced/cloudflare-proxy.mdx
index 96ef504..22ffc73 100644
--- a/self-host/advanced/cloudflare-proxy.mdx
+++ b/self-host/advanced/cloudflare-proxy.mdx
@@ -131,3 +131,11 @@ server:
 </Warning>
 
 After making these changes, restart both Traefik and Pangolin for the configuration to take effect.
+
+### Troubleshooting
+
+If websockets are not connecting like from newt or clients, ensure that websockets are enabled in Cloudflare:
+
+<Frame>
+  <img src="/images/cf_websocket_box.png" width="600" centered/>
+</Frame>
\ No newline at end of file
diff --git a/self-host/advanced/config-file.mdx b/self-host/advanced/config-file.mdx
index 7af91be..9a94222 100644
--- a/self-host/advanced/config-file.mdx
+++ b/self-host/advanced/config-file.mdx
@@ -34,6 +34,9 @@ flags:
 <Warning>
 
 Generate a strong secret for `server.secret`. Use at least 32 characters with a mix of letters, numbers, and special characters.
+
+If you need to CHANGE the server secret after the server has been started you must use the `pangctl rotate-server-secret` command to re-encrypt sensitive data. [Follow docs here](/self-host/advanced/container-cli-tool#rotate-server-secret).
+
 </Warning>
 
 ## Reference
@@ -262,6 +265,9 @@ This section contains the complete reference for all configuration options in `c
 
       <Warning>
         Generate a strong, random secret. This is used for encrypting sensitive data and should be kept secure.
+        
+        If you need to CHANGE the server secret after the server has been started you must use the `pangctl rotate-server-secret` command to re-encrypt sensitive data. [Follow docs here](/self-host/advanced/container-cli-tool#rotate-server-secret).
+       
       </Warning>
     </ResponseField>
 
@@ -710,6 +716,12 @@ This section contains the complete reference for all configuration options in `c
         When enabled, only advanced WireGuard configurations are allowed.
       </Note>
     </ResponseField>
+    
+    <ResponseField name="disable_product_help_banners" type="boolean">
+	  Whether to disable product help banners in the UI at the top of screens.
+
+      **Default**: `false`
+    </ResponseField>
 
     <ResponseField name="disable_config_managed_domains" type="boolean">
       Whether to disable domains managed through the configuration file.
diff --git a/self-host/advanced/container-cli-tool.mdx b/self-host/advanced/container-cli-tool.mdx
index 8cd8d10..0065ea8 100644
--- a/self-host/advanced/container-cli-tool.mdx
+++ b/self-host/advanced/container-cli-tool.mdx
@@ -81,3 +81,40 @@ This command performs a critical operation that affects all encrypted data in yo
 - After rotation, you must restart the server for the new secret to take effect
 - Using `--force` with an incorrect old secret will cause the rotation to fail or corrupt encrypted data
 </Warning>
+
+## Clear License Keys
+
+Clear all license keys from the database:
+
+```bash
+docker exec -it pangolin pangctl clear-license-keys
+```
+
+<Warning>
+This command permanently deletes all license keys from the database. This action cannot be undone.
+</Warning>
+
+## Delete Client
+
+Delete a client and all associated data (OLMs, current fingerprint, userClients, approvals). Snapshots are preserved.
+
+```bash
+docker exec -it pangolin pangctl delete-client --orgId "org-123" --niceId "client-identifier"
+```
+
+### Options
+
+- `--orgId` (required): The organization ID
+- `--niceId` (required): The client niceId (identifier)
+
+<Warning>
+This command permanently deletes the client and its associated data:
+- All OLMs (One-time Login Mechanisms) associated with the client
+- Current fingerprint entries
+- Approval records
+- UserClient associations
+
+**Note:** Snapshots are preserved and will not be deleted.
+
+This action cannot be undone. Ensure you have backups if needed.
+</Warning>
diff --git a/self-host/advanced/private-config-file.mdx b/self-host/advanced/private-config-file.mdx
new file mode 100644
index 0000000..4093e83
--- /dev/null
+++ b/self-host/advanced/private-config-file.mdx
@@ -0,0 +1,206 @@
+---
+title: "Private Configuration File"
+description: "Configure advanced Pangolin settings using the privateConfig.yml file for enterprise features"
+---
+
+The `privateConfig.yml` file provides advanced configuration options for enterprise deployments. This file is mounted at `config/privateConfig.yml` in your Docker container.
+
+<Note>
+The private configuration file is only used on enterprise deployments. If you're using Pangolin Community, refer to the [main configuration file documentation](/self-host/advanced/config-file) instead. The private config file is not required.
+</Note>
+
+## Setting up your `privateConfig.yml`
+
+Here's a basic example with common settings:
+
+```yaml title="private-config.yml"
+flags:
+  use_org_only_idp: false
+
+branding:
+  app_name: "My Company Portal"
+  hide_auth_layout_footer: false
+```
+
+## Reference
+
+This section contains the complete reference for all configuration options in `private-config.yml`.
+
+### Application Settings
+
+<ResponseField name="app" type="object">
+  Regional and base domain configuration for multi-region deployments.
+
+  <Expandable title="properties">
+    <ResponseField name="region" type="string" default="default">
+      The region identifier for this Pangolin instance. Used for multi-region deployments.
+      
+      ```yaml
+      app:
+        region: "us-east-1"
+      ```
+    </ResponseField>
+  </Expandable>
+</ResponseField>
+
+### Server Configuration
+
+<ResponseField name="server" type="object">
+  Advanced server configuration including encryption keys and API integrations.
+
+  <Expandable title="properties">
+    <ResponseField name="encryption_key_path" type="string" default="./config/encryption.pem" required>
+      Path to the RSA private key used for encrypting sensitive data. Must be at least 8 characters long. THIS IS ONLY USED WITH pangolin_dns FEATURE FLAG ENABLED AND REQUIRES EXTERNAL COMPONENTS.
+      
+      ```yaml
+      server:
+        encryption_key_path: "./config/encryption.pem"
+      ```
+      
+		<Warning>
+		The `encryption_key_path` must point to a valid RSA key file. Generate one using:
+		```bash
+		openssl genrsa -out encryption.pem 4096
+		```
+		Keep this key secure and backed up - it encrypts sensitive data in your database.
+		</Warning>
+    </ResponseField>
+  </Expandable>
+</ResponseField>
+
+### Redis Configuration
+
+<ResponseField name="redis" type="object">
+  Redis connection settings for caching, sessions, and rate limiting. Useful for clustering Pangolin nodes.
+
+  <Expandable title="properties">
+    <ResponseField name="host" type="string" required>
+      Redis server hostname or IP address.
+      
+      ```yaml
+      redis:
+        host: "redis.example.com"
+      ```
+    </ResponseField>
+
+    <ResponseField name="port" type="number" required>
+      Redis server port (1-65535).
+      
+      ```yaml
+      redis:
+        port: 6379
+      ```
+    </ResponseField>
+
+    <ResponseField name="password" type="string">
+      Redis authentication password.
+      
+      ```yaml
+      redis:
+        password: "your-secure-password"
+      ```
+    </ResponseField>
+
+    <ResponseField name="db" type="number" default="0">
+      Redis database number (0-15 typically).
+      
+      ```yaml
+      redis:
+        db: 0
+      ```
+    </ResponseField>
+
+    <ResponseField name="replicas" type="array">
+      Array of read replica configurations for high-availability deployments.
+      
+      ```yaml
+      redis:
+        host: "redis-primary"
+        port: 6379
+        replicas:
+          - host: "redis-replica-1"
+            port: 6379
+            password: "replica-password"
+            db: 0
+          - host: "redis-replica-2"
+            port: 6379
+            password: "replica-password"
+            db: 0
+      ```
+      
+      <Expandable title="replica properties">
+        <ResponseField name="host" type="string" required>
+          Replica server hostname.
+        </ResponseField>
+        
+        <ResponseField name="port" type="number" required>
+          Replica server port.
+        </ResponseField>
+        
+        <ResponseField name="password" type="string">
+          Replica authentication password.
+        </ResponseField>
+        
+        <ResponseField name="db" type="number" default="0">
+          Database number on replica.
+        </ResponseField>
+      </Expandable>
+    </ResponseField>
+  </Expandable>
+</ResponseField>
+
+### Gerbil Tunnel Configuration
+
+<ResponseField name="gerbil" type="object">
+  Configuration for the Gerbil tunnel exit node integration.
+
+  <Expandable title="properties">
+    <ResponseField name="local_exit_node_reachable_at" type="string" default="http://gerbil:3004">
+      URL where the local Gerbil exit node can be reached by Pangolin. Useful when clustering multiple pangolin nodes. Overrides the value stored in the database. Useful when using Docker and address the local gerbil container using the host's address.
+      
+      ```yaml
+      gerbil:
+        local_exit_node_reachable_at: "http://gerbil:3004"
+      ```
+    </ResponseField>
+  </Expandable>
+</ResponseField>
+
+### Feature Flags
+
+<ResponseField name="flags" type="object">
+  Feature toggles for advanced functionality.
+
+  <Expandable title="properties">
+    <ResponseField name="use_org_only_idp" type="boolean" default="false">
+      Restrict identity provider (IdP) authentication to organization-level only.
+      
+      ```yaml
+      flags:
+        use_org_only_idp: true
+      ```
+    </ResponseField>
+    
+    <ResponseField name="enable_redis" type="boolean" default="false">
+      Enable Redis for caching and session management. Requires `redis` configuration.
+      
+      ```yaml
+      flags:
+        enable_redis: true
+      ```
+    </ResponseField>
+
+    <ResponseField name="use_pangolin_dns" type="boolean" default="false">
+      Use Pangolin DNS servers for client connections instead of external DNS servers for DNS delegation and CNAME setups. Used for clustering Pangolin nodes. REQUIRES EXTERNAL COMPONENTS. PLEASE CONTACT SUPPORT TO OBTAIN ACCESS BEFORE ENABLING.
+      
+      ```yaml
+      flags:
+        use_pangolin_dns: true
+      ```
+    </ResponseField>
+  </Expandable>
+</ResponseField>
+
+### Branding Configuration
+
+Please refer to the [branding configuration documentation](/manage/branding).
\ No newline at end of file