From b6fe6c2db885f5535fdb9260f14f1b99cbaeaaa9 Mon Sep 17 00:00:00 2001
From: rmartinc <rmartinc@redhat.com>
Date: Wed, 25 Mar 2026 11:44:59 +0100
Subject: [PATCH] Documentation for brokering API V2 and make it preview Closes
 #46590 Closes #47259

Signed-off-by: rmartinc <rmartinc@redhat.com>
---
 .../java/org/keycloak/common/Profile.java     |   2 +-
 .../release_notes/topics/26_6_0.adoc          |   5 ++
 .../images/retrieve-external-token-client.png | Bin 0 -> 16239 bytes
 ...rieve-external-token-identity-provider.png | Bin 0 -> 21577 bytes
 .../topics/identity-brokering.adoc            |   1 +
 .../topics/identity-brokering/tokens.adoc     |  49 +++++++++++++++++-
 docs/guides/securing-apps/token-exchange.adoc |   4 +-
 7 files changed, 57 insertions(+), 4 deletions(-)
 create mode 100644 docs/documentation/server_development/images/retrieve-external-token-client.png
 create mode 100644 docs/documentation/server_development/images/retrieve-external-token-identity-provider.png

diff --git a/common/src/main/java/org/keycloak/common/Profile.java b/common/src/main/java/org/keycloak/common/Profile.java
index c7f5226a645..d42a6145fcc 100755
--- a/common/src/main/java/org/keycloak/common/Profile.java
+++ b/common/src/main/java/org/keycloak/common/Profile.java
@@ -174,7 +174,7 @@ public class Profile {
         RESOURCE_INDICATORS("Resource Indicators for OAuth 2.0", Type.EXPERIMENTAL),
 
         IDENTITY_BROKERING_API_V1("Identity Brokering API V1", Type.DEFAULT, 1),
-        IDENTITY_BROKERING_API_V2("Identity Brokering API V2", Type.EXPERIMENTAL, 2);
+        IDENTITY_BROKERING_API_V2("Identity Brokering API V2", Type.PREVIEW, 2);
 
         private final Type type;
         private final String label;
diff --git a/docs/documentation/release_notes/topics/26_6_0.adoc b/docs/documentation/release_notes/topics/26_6_0.adoc
index 32295dd68ce..c49c8f528ed 100644
--- a/docs/documentation/release_notes/topics/26_6_0.adoc
+++ b/docs/documentation/release_notes/topics/26_6_0.adoc
@@ -223,3 +223,8 @@ Tests simply declare what they want, including specific configuration, and the f
 
 For more information, see https://github.com/keycloak/keycloak/tree/main/test-framework#readme[Keycloak Test Framework].
 
+== Identity Brokering APIs V2 (preview)
+
+A new preview version 2 for the Identity Brokering APIs is introduced in this release. When brokering is used during the authentication process, {project_name} allows you to store tokens and responses issued by the external Identity Provider. Applications can call an administration endpoint to retrieve those tokens, that, in turn, can be used to get extra user information or invoke endpoints in the external trust domain. The new version improves the token retrieval endpoint to accommodate its functionality to substitute the internal to external Token Exchange (use-case for the link:{securing_apps_token_exchange_link}#_legacy-token-exchange[legacy Token Exchange V1]).
+
+For more information, see the chapter link:{developerguide_link}#_identity-brokering-apis[Identity Brokering APIs] in the {developerguide_name}.
diff --git a/docs/documentation/server_development/images/retrieve-external-token-client.png b/docs/documentation/server_development/images/retrieve-external-token-client.png
new file mode 100644
index 0000000000000000000000000000000000000000..63a7f6214de45b0be0d8fb40f90718e6c75b414a
GIT binary patch
literal 16239
zcmd73Wmwc**e^Q511KRXr68fwDag<*Aw6`5;?Ug<f=Ef1G)PDz-5?mmh;(<yz|bK>
z>^0B(?)q@{`{i8woG<+0Vg}Z%x_@<t!&Kym@G0>j5D1a{D`|BI1e+9mzjYfId~LIE
zLVyQ{tBkJeOK13NS1Sj5I!!A(I7A2jmW~HXr~KNPj^{ZKAKi07A*g^5FCU$xGTloV
z%_&jd2jGp5FmKdwFn9HM?F@%l*gM$4Ib6(~;c$BwO9$6I><%#qL~K%CT2j+9V|NbE
zGhvLP`#?iNMna-+M^rkoV40lsp5%Q;y0D`dpGB$1i{xYtPf<|@(y-*GPZ7QMV%y@{
zzSv%088vbfS*5qvDjT$CZ}cYcdezM5?~0yfxGaeHJa`1g0r@Ak8}p!}!@_(}$h-S6
z%;WaQKrHZ(F#QMfks(;maxjm34{zasN8q>H%$Ohlk(Iaw9(2$Dzj`ZO=obI$OrrGm
z&R-mpZ(OwPYoO^K(<ss83TK8-WWCwlC8XlNDK&d6l&#5Y`A+buAP|9b`W^YVkm@=j
z0}q3NT*cj}xKi7(!c21FpZKd)$N^^avkZ+s{Plh~1hTj&A#v-i%U-k|+^EAiqx0R5
zEWa<74^A^r)lCmvXL#KEi+>VAAgjLrkV^2mAAKPxKMPAr=2pjl8h>Qs=%kUid}@t8
z1iQt#zHx#<DO+q#_T$6X9hZlSqca|;S*uJTx9Vm$<cA8M(<zH`|EmkW*IoYze-b%g
z3?9#s#5QR4ta{S^*^ldmL1@DU9QM4b`;>r@ckio@$FWAdVE7HHbfR$L_P>ALocVYZ
zYCZZ@ug1J7d!s+yf{aaDsk(o>++cVAJ8?r-2*J#Boz0w^MV41#)MLTn>+=<2Veo}R
zm{P>^Yk!vLjD72YEFyuae*XLcgTiEA65DRgfLM+D?zEl?ul=k5mAHRvrrWrlc7XyJ
zq69N2jbCpWPo*<v<^!L&y6^<BKDcJ{s5V@3Ar;e53sM66L{Qi81*!PeaRLG3;d(#P
z-+!;|Y{%5;Cz;NqUBleEd9&Hcj6;XsLc5=f?eiz9q9=()9&>J-lTxnRsXhCqT^6*n
zT0Ui3nNp`}Us(AzdYkK4`ahuZ5zQ(MAwg05=v|+(`DfaV6B$#yuem)?hUq-;h~3Gm
z?_k^h3bT<|!VUwU_E%=WekWeIS=`)*O;)Xvw{|o2(8sN{X$h2HM|2X03;j~462)g_
zT?MBv7Su<CvNUH|DF$r3oEaJuIFUkgg?6=e@!y`Z=M9}817>Xo2w6i~SK}4Stj9{+
zhvk`?Y<1T9l6GfZ2I`)?{O}M0d1c~6z&u`Q;$Y%;l0?R3Jezct;eWAJZ`z5agHJm8
ziQBBq4LR<<8YkCm9GoTUGkv-{^Ri*VWk7Vi)=I;m+0|;Z88z3^f?OZSrfo*W$<a7X
z$RM@Oug(_c?B<%?YO({ar`k{?sv_LI=<VscQmsnkxxPdevk8*`zxWNG&D_x0tGdh#
zk9jZDhN}40=v7%+h`+W&FGs`da?tI7nSTC-9s9_Pwwr@)+BsACHU2M|?rDApKPhr&
z+R-Rsk8Dn(=AAR+EYIaT9_b4kX+wTT{rtPD399u^Wg;eVC=5*luK#{1V5~!LxeOkO
zTx{maqc+522E=b>;l{3B$D2c_dORA>Z&$txerG>h9W-VFuInGYFrQ3N6|<_d9;@~~
z*`69v70;xPHL5X>5<Q(Xa|gS>WrIb#?9)t#Uap0l;`hQmYn7!=>EXjdZ8!XxO5(>h
z7URr`+j*8$cBN=~mZ<5oPu~5aq3l&3Pj?#@^byG%M%tgvx}#60Z7QciY5gr5=DkbN
z*UT@9_MU+?5eI8BA8_NR6FQ&!5)Y9n+#pN=X9@B=oAcQH_~Osk>nrq(njG~SE-9ri
zpUwDhKD+7FdKOqtAQ2VcZ|FNjg;C4ST8fGL1Q8`K^Rez;>ru3FI$u8#<FjI8;~CWq
zfg$_GC0q*E$KIQ{sCqaex#{{YkuIP8tmWUsH5csN4@6YW!;!k1PABJ;9oNlm2fwJa
zbER+$8tgM$l(F^a))!)05Bu20^W{m<*XX@D2?IX{)^PP4ddk((h1H)FCbe3n*KER5
ztzI<<!YFFtaTU=M%?2*cmK`4cR}<|cA5np~uxIU-(2VNrXXu5S>kZs<{KCuj2|n-Z
zfSaoc&enY?MddOyU%}OeL(59E@T?sx|A^b!ypKbCAQJ2xH=_MK*{EvgwZ5i_qEtK4
zo8PG~II>(b!jDN9K21^(@-k-+T+ADOhd+H&VCP0V$A4LMY1YAQodkc2NN(S_$kf!9
zde^~-dpu`7-`YfAOjc&>Hl}5-hKEB5%7fnzjvP<)Zo`}x`gC{hZ$XOjwl~Yg2{PsF
zA{7Djz}RQE&OTPqaZ!ST&@!j;-TUg>nZh3KGgiO!5_|6vJ><8YT+GtJb{^Wf`79G@
zNEiPAj>CI<?9^Y|sO~1<>Lf+<=JE*jcZ~Kk`$w9+KDJ8N8OzwC@5JJ|xl%qBeo2yp
z1ODQkl$)$JpKmqt2n<;+mg=45#fVLdhT^KRX_q<P`n3`xZvQg$ZXNjh&E4aRQ+qCI
z+7d77@p19V**A@A%n!*Xt@bMjgUt_<P6jP%z!om5e3Fdbf)>RY_HR%Q_NTt+_A~BN
z*>c<TCc3PpO?-VHu6kU<bEgV5qkEQ3`PVHyDA>5oy9vn~xywS8dzP;ha#}^XG*fG}
zf|Uw3D`Htj?%SVOGv%GBj@7Lucd}tpCC}y<RLjD)YIw@Y^a%}5SH0cL?A~AQ?#E`?
zzK7xIB4LSaI-C@-C65&rxHzytA--#9h=t!DVZ+yA-k)awL5~+=H&&8FbzTTnJOJCb
zIX<Zc)r`=uwOp#uNR0@1Ok@syQL-^CVf^mB<+pOW)$P(s_gf)-dAtagC@OxH13|46
zzkcXMqhtj0bG4?BYRa@*XA?F#W!>t7_w}+8;%P*^rTb&wqc4z^b4@`J!v%^h2=9P2
zCkps2>0l2v^6r6qY%l34i$cYd6`~F|2KG4FR&pPi5amM~Rkxt|?&5HE($%6e<uyxu
z-(yO3pO^=47Yb`{jzy1Zk4tG(CChLN;$veMgPw>pk9kPzk%vP^67PRdUNGHaQYbWC
z@W|7e>*7ulWRN=>GkY&ycxJZj(-X!X5~PTe#;SD`DMByT`TjlL<b{vxkPJoBouC-;
z>q(qg*6@+D@2cRc4%}RR06RCgP3pAVUsr8ET_AQhTf<9OY9ss%*M^!k!4c&Ah_Y12
z{(03j-rjz((vLE!VMhbv3rTg%$VEKjjSLr+h=DCch6qutOmN!%S$=|c&0)h&*29Cm
zgMs2l=ldHYK8Xy9r{iTd&nt~@^=~8VEX|E2lN4TFR<|HhxI8wdO_pNT&@`83G75;R
z#341oG@fUDSm%pe<7cVKepHC-gztBS*?A!+*hX+&O`CvOr|u>R9Z7^7t>3DB<i_V)
zE9ACSt_@5(o+Qn!77a$ezG}iS6!+<S3zpMH#G^x+2P}?SkS!)=_0Ks5*~J425$y?S
zO0ciF;U5rO9ka?XrA(nQ9Ll~REHE2ygdtKw!?rc%5a^<YnG5|`yG=a|E>C&8yDNqG
zZ)f=z+fb}Kg3DpgW}A2jtRdqzFujlFds_GfX84wLxs*QrIcyK*36hAyd2mwQ76orI
zw(<5;KdcsYOX^|c*swwmCuGEu`+g=0Dj;pb*8EG1bo3I7?i(`UkXMPxneQ6-F_Aj5
zP%Tq!)^xF-WF*b7`_ZRlPWlKHSW61Sd}z%U%(kn}s7v4cDX~Lm*~bvv9*M-#IobQ6
zFvEH~+?V>|Zs}Ry$mcuwtz(sW9m)`hX+UaLF6?hy^(|ImwH3!z`2xoHWUxK{8QS@5
zA}X&Lu;+tM`aEneZy!$FC(Yb=z{XL`xZsdLjxWJ0T=GtNm6b=V=*|Yhee^MP;@*)b
zs%azs9}R1%XhRPZ(YyF1nv|a@UD}L0D!<bzN*bT{=?)qD)K0`sUyUy04m4;Mt8;!D
zLF?=V6F+aYL^G75PbFA#v<3_OiEu=wRnrQh8=&bUO#yE@hV$BjZw_UMYp~a7%v662
z)svJ@CDujb-S>L@spt3G-gpM17yjq0j^HLORw8EhZPIYYvp5Pi#G$FWTThn3YzeEW
zG$+-PE1!aA+60z(d#lQ=Yg@g?T}&%DmNV0qSW>j{4UE^OoQyOV&{EIUiW+@bv7xs9
zEF-`ePNYebPxG#J*k>$Ihe4^E#;44HQ421U1|Ne=p8XRRbSKG)`O^rUF@xw*-MV)_
zC~a<2=>W1eXOHpcAbt1Al-bWTxI!EV_eQ?N5ZI$SZu}_-i&#WjKlaeF7~wUJY;2?#
zj#N7kC!Q7<ryJkwFMZzy_rJ5^>AG$l_RX=S(<I5kOWX<+eV=hbL5IxDwy<~4lhFL;
z@*u^ldCVE*f#!S?@v1g}%DHU`X-o1lWjF>=-LtXM47dy&Eqc3@?$BNZD*ogN+_G1d
zBcWtUw*MoN`}^N%zY`Tt%8ZC=vM5SuHJ#??0=NNmaAI2upHx$}Kn!Prch{=WsOF^a
zp`~Nl^#?lMSRF>$t0$H17bR?L>H|G2Uow`HSBN}Dl=(wALsNvqwciZKHP%I$o1I*Y
z{wSB!Q7BNVnpKS|r~GEMr9xY_C2AwXL^N4<nDj*g#$YiWbMbg=;;GeC1D=B7!8ST)
zL#JM0AaCX24}-YNEw$WFUEll%=HK0PK@D~#nz|=z0_g5v(+t-L8j#?#hK_h}L;K!r
z3n%Jl1Ns%F+?6HzNW|?^ujY1Mp-sQ5%~vWeeNL@{7v4m5HWSg!QRX`*`gN@8wQ$Z6
zsqWyx>Jt1Pi7fkmc#_O?Y60O`@u1jt^G5p6okhy_f8CA>uUFS#NArmmIhlxxi`hJI
zU=oGS`KME~O50a{#oZay>bti)-!f{myp@M6G3ZWEoPM`?gm7-T>`yIuJ>xSxD<j2e
zqs!6}wX6SPv?12mk5s5Iit%oVR_S`sP9lvC39<gQPHF#^0K?}jj`E#+S-Y$2_Zs7>
zBqaJl01)hOjigt<NW-m4TZ-l<a@X?7d;llo-B%&@zn4u@t5m}CIMuDgvi7Zo^P8!L
zElIhnah6g`*b@_>e@KVu>6^~i_SlF8at6(GyRHY+I;6x9w^<iPs()A)=|FOv1sC|&
zifdJ(#@c+&>H)nFB~=332s>c~3!m<bwR%m?2~FI!@@8&Xi1`T#*WFKFr~R|q$N!Xh
z<>Ta{x48|?pC+;ly3p$;P~x=*X*z4l7Oxq(k=iB|v#h|rs8D<OlESgjXM1}J1X}JM
z06+pt`HB|9|Aq>UU$be`ss4J*A#C`D&~d_|W_JSBZICr<#U?-9WE0a;Dbtj0?1S_U
z;doX|D+hPfXW(>BodC1eJmV(OryHXI7`J-LiZ^p$Mw!9Q&(j|{aB{<18hoSqwmk{g
z?YzmgKL%qQZ~PoYIoETfI)8*zDplVinP~LCgGln(^Xi(Xi9j1XhQ}De#_iJQMM;M&
zPhNDCeXS<#(|)^pbPMA6^=S^IIu1j8lkga6C6b>O1il$)&v`R3j|hJ!6O50u({xvB
z_jel0S^TAlU)0=5uPs%B=}5c8Q>VqOMeK<8KX!iP@*N$Rl@BiY=+Gek)d=3+1v8uO
z<?)*py%0*k{;5Zz>st73$N=n|EZa9H&a+9Y?X&wqIKytDbx67IP+R{W0-YNhGmG*X
zt^kv3lY#fU$n@I=Q}SOLI4ezcvh`<i?k!3FgV7nLXm8=f63tz1bzxf$M)#<{ziZpD
z*Lc4Vc8+NAkoo8F{QyowMybx1UF{NYOx(MCKRoTU7pQsP=4|yB_FU2()U=F{K&+lZ
zp;plWu`9Ev0wZg<s#stcA!8ScD*kK3En$%&7+uw#bIVGkezr<d9_|B-+ObNASx$0x
zjX0?(4Q9pr<3-e7J`cpGs<;GRomcM2r-r9I;~_~Dz6FUrx(9<yWq7kT`?m>1MNRj@
zS)K+*e9eBj@%lj*c0}8k&p3y=F?{fZW2M+kaD8up`FDntUyr(Ms{5F&mOR9cWY&uq
zTzeZ7(PPIz`j9zR;D=DA_HUHfms*2<7M@r-@J}TENK4#WeSXDQR`Ys<f3gwB!1hm{
zUA_5{$_({MgGdv5NQa%OwESqmS#Q!q;>W4tF<PANpT^j-2mVy(^>7v$2w2Mo?fe7i
zIMpp2$5{NEv9px#16M55yT-MqPwMD`fY9^rL<xiykZVc{$0Qo=OFX{?`PTU^5KEv(
zhJdw;OYS;+UtA6suNddvKO|s=l)ya26H$JiOU_6P!V9_sB!~*bWM$E#-!Cx21r@)2
z#u}-x`%W#ONmD?Bh!P-9WzmP+E9ZJzps{)t?_&#r#MZ1<2@K|V4dzJJyKJZ+2XljQ
z4gi~*K0jEgx%%dFn$a|VGb34VJ!U=g)yZu0Vz$Y};NZ>Aok=qrJ>-!AW$e)9H}Ojk
zR*{FV%0r)yBQaC;ASLk4>CV)6g^{rE)$s^69;skwWyg&bt>2~I=7vbPr1aKsf$hpK
z<$CuyA%l9~CgJ|<jzJ+Kza}zf*tfus<Q!jbcZiLnu_1xMF9DkVbmG54jrQ5*^=R_0
zD;eKzbt(64s^)z0q;#UJ>JAB$UdQ#qRN0hE84{a#=Goj{&6}SQl(CQA^r}eDkV7Dk
z4SCu^KZ8kd2W6xQp;4$*Rj8caJTh9W@p9(lqZhyQ8|>}mXuR@~37b<jU+fmzMaR1R
z!L2f9=C(D=zzazebSX3fii!4T={u!HE%iQSK)(n<<#mtw>DO7WDO6!p8#aUbGN{$?
z4-BPRJz!GJvQ05^PfcRe`4d6PvdqH{aBt)8bRA;&&F@K*mz~l`ZI1FI4u0K&2r{Y8
z_oT|cmy8zBY9^Xpd-#JI^26!$J<5B;RmZB}-VD}AM!=Yv8v(JlJ44NB*O)6)xEAS1
ziBbS|Z&VEz$54@$1)wE3%(ZxU1ZSw_$xi*<$aX+ZR5qAJ3;s%G*L!2s;$HXq`-dq&
zQrR8mTTx!eH8eVsA@y1s$6#oiDp%+;j|ncL=21$1d)rc-%KAvo=AH<0j&1u17ochN
zs0i=Yewtq>>`%AbB>q0P7RhC67xib-r^9N*VsbH8eDaWtjYBm{M7w2t$X$EoMfuzC
zW%q!ImYwxK9xaDoo-7d8toNq@#1Dxjd+Yr{s^%Kh2KSUC?(?Nk+Sy|5a(zxm7%Y~{
zM2t$nF$cr!$+?Ve`_uUwFk*|42kNnR#=aK(;&j(W$JnbN)Az6!RRx%#r9r)Il_F=;
z5BRgh1DI*Gh?9i>faqDH9gW}d5PhYh<PV_Q>}f}-FAi0i$$9u?i}}s|{Si)L^!#A(
zCGk{>iN6&_4)FQi8I0HcSgB{Uc*ICBp)cL{d2Y5(+i7xts<1e>Vm0OfIpmSlJk0jL
z*4p&noiSSd)2(`rQJ(|Lo+@%smA-4{!3D}$N}c6Umyu4HE;o8Hn0R(=Kn!i$p>K~v
zvpdt!05pi{*e5RypFjB?O56Z|oZd{m-EN|WiqizObI+4g@Q!A}K<#k+6!8Fmopt(9
z8t)<kn6zYAhUap)JD91NjqCt>Rk6SM7y-iWizyQaIhWq{A4DPxb+i4+cAa*)HJQh@
z_t`Fremir2Mn|=^e<8qZ(i$TtONhXW1Et_HpF4d7PQ;7e%Ik%K?b(d<HO>9l8BHy0
zxcAaia5RF9ZMI1vx67ujE-JaysMb;~qVlJBasW+|0E<Cxpj_%l4OP)G>(QbmZ)QG+
zdE2Tq{(yF2F0Jafo6Xx}C6l`i^P4I_RH>=zxFl~bU%ZcVx*NP4UdhtYayhWffKlz=
z;^?vFFl!dY3ZLoSQoR*OOdl<<eA@%1n8n*Tki?cU=lGrI6us9Gidt#V*oqGd>KOrO
zm%Ti37nYjfEtpuqY~0$2%=JW;H@xvDOoGZcIm6Fd?AFT!Pt_|YY)3zt%nn#jp6<O=
zpms|X&K7oP#|Y$llHe-Afjkhb2^iP2XgXrb^6Y}j`B1j9t>nbhCsBut&~@lk8rz2y
z9{mv>F#r8&sX_<4&YOGGB$ozX_0b2dQf<9^HsfVZa19QF`dXj8wh7Vt%i|GMZgJT<
zzXHW03iio8J~*pBuY>h2r#-SSD=lkIpm$g7g<72g88#R}bx>p3p=P_U7lmfg9rPdJ
zJ=anWBaB1?WxyfQca!gwtTFGOrMn)}F>#wY+Z=kfy;3}DwbT`II;x@Cl=Z<R;A%`E
zncWH~kS>paWG3*Pv;F){gLPsM1TOO7F7>vtTv_7PptVYhv3IeN=Tb<$`>y_3voxFh
z&k}{T2zl>kU0~$=FY;)@5AQ!B#38x4Mpw2Nwi`bB&(Zxu8bUzfu7`s|!qvJT)S{A#
zo5YP#9#3~_2AXH&V!-93;dlU~>=rY1&-RASY_`Z;#+|c;fCZ>)%tP)j_<bPmu3`~E
zHGC$FJTh&%R3h=oSQ{ml+s@`)m{>FlKN?h(XnaxO7FTJi_Q4J*9x<N;M?y+@wfgl6
zBNgvzD2)8stVsf6%TZqvD=MV`vu?`_uT`x>zx7M7dZ~vGJ9SfUXdB~ykwwZUFzWq`
zATxS-{4VW<MYPS23jMkgVMila--F+o!V^g<)IK{^<Ud@vPM!VkF+Da}sAz6|x#@iZ
zBcwcRYbnFEQ+?O%H+RPA;^P(S?ymlw1eger9{goW*yA#A^}G@F7Te?0DOc~U*mJEz
zo`sqJ=ovbNFF4Gur9n%k%K42P!0RQnB_-}NVdD|IttqS11^C;Hud+8BCU`R?#_2Y0
z(t@JpioP0fvQG!v{}f4#D?fM-9ov(fu)Kh4J=?vrzoW^VM#;<W8x0~8Y5c-7;Maj=
z9|E8Lsdrd-o$%$-u2j3SYOGXeredyT?nI81*;FQyysElD(EvCA{|-3fKV2a56u22?
zx-h^AJpTV`7GZ|=f5F`fw0(1Rae^^@vZO-r_1u9+_V(G-74cm_6j+&*9zOUl{IytY
zjE4clKJym$T^@QaU=+Dez7Cyw68boPhi?b*n*y<c1?dsG%^dhx7JCt+@7@)^bOhE-
z3<Ev=!_x+f0h*a6moGCq5A62)+JF02`Er7l#USC=yy+FUo?}-fvIy*>U!mEjuiu!M
zx9f^gKqSWF5s+18*8U+|p*MMcNrr+XXdZv{3qx>u5!|r6dmJ{LF<DSwIhk_M>5mt<
z6AVBj*n<BL?%;BJ-^lUSh~1B{`=>x>l5R6X#(8Xy_HK`tQ#GTeEVAnWRGE2yhlIU!
z1le)1U0SY^Db#CU<NMbc4ZwrlaK3zU+Fm>Q&mU01kYlAOKfebPi&+Bo{p-(23c$D^
z_a*|R@SXz`CJAakJE<bLMw%`jaP2>1DRB)hx5*$J0;vf<AUSh>>ba|kzkSjH?i+dI
zfc)H-q544S-kJB=s~ctBrxf#T1fXk<XLzwQcsEJM*r`%{7FpS0ztSDkFq9`3S~22-
z2A7VJX;=pQPllj7f}>#)Ah`Isbzo;y0i(u1_Wby$(spq%SIuGM#1BpMd}lA!BFm|x
z^ijwF4&)wZ1p{zljuZORpa@`s*?{s?2XyxV8n4y+FE26B4gg%%7J#o3%D&$KzS?A3
z0U%y3^5SgI0m$I>pcpOS$o2^G*-n}QpF@$`)1=9{0DYzGK$#d#gSOe+NZ!aIX)cpQ
z<~$K^MBrD<G_>^WXBQ}@G-Dsa|G}(nej_d^KAm)p6~-0u18&$UfFF7lhL0V%N=r10
z<As+NVU@<BXrTYH(;Tjgvb#<Zt3y4BXloTZgXA9a5N8tvW-J1z=14MAC2%sTF?Xjo
z(m<lh|H_*m#sUiBoaai^DX=Lfi`4QAi<QAJIl{Qjel;#iU)=_E9@K*ADS+(lF_@y|
zD$57uRD)z4V9_c`Y*8to?6|%tZ95q^(5`wT<B?fS&$^{nte(mPpLG+zKF>qW!FtsI
zdfly`v9AGO>utwGPIdNP$IblpHQGTK_)l|$0Wg3X-O)0Y44A|6M{t9_WfwRYy8xCp
z09#Hs`~idE2T8r)?{{a=112>g)0Js;n&Ap5oJNLQx?p8?*V7&9f$7t@OFD=_H-2Ky
z^IjWG*h)q&{m}7tKc9y3EM(n;u}cH8=IDwPpu(mr;M3R#Agj2VH=oWlI_0%p9wO{b
zJXsHh+sm{{liQAm6+fI0d%Rq*@v8tXQY|oDI9=0uh)I}KY7<n1SbE(qjKK0%WCC+g
zjn)O!Rg_QZ-iLNGrfgs5&9mp){_8Wu>dyuWWR42u&3kHsfQ8n0r2(*=@Y$@3QFzWp
z^d(xS_{-@Q7|qsc)afqfepuxO%m+#H^3hZHRbMhk`uawAeVcy+^hwTxky?KmWA`gV
z2;J<rci80~d-L3Or8hDEkg`M?uu25G5h)3|ZZ6^?g#K4&%yErh4geYDRGy#B?z`4t
zstCpcC;(FerIWnmMCVZ`ZcDR0U~swJ>I1)OtwsQ!@V=AAYqg9OvOQMXQl#Cf@OG{d
zw|5)Q>#&z;?ugA)2xB^jF(@WCc1|nv&#eaG`=yR$(Ci{AC4Yu9Wm(et9mf$cx|+0|
z0jXVFGosq(%>GP_EUMH&20LJ`P(pr95gYf1_EA}&QcQxnavL)u|6O!F;CiYFv!}nP
z92$`}qeZX7xcmlG1(yEt0l?J`5JLB@f|O<n$L?rqlzY-2*PTi3+P3xy%33k7e^5S!
z5X}ykrCP^8@+X6P`B?bSLlc0F$lv1@P-b}R`3;sx7zMEXilVZ3CKp{Ryw^ISEK=kP
ztGAt64mxJ5Y#qjV3n*JQ0dp6+8;}I#X*N~>4g~*~_vub*;YRprGsb_LAjzXMezyXO
zF-OtPX%j?({%T>wlNma_4o(JNKD+&`kQ+x{BnM?rQOakN4*%Y34W(%F^~5_pDO}l+
z0?=2(5`|tz>zoF;soq1|uRbe%IDaG|S{Z~hlw&>gS%&l8eK=QQ)F5F?#e{?}04J#I
zCLXLbJBq87330pri<7O9?voFjRmQ#tG6Yh4a(gca@;1hhgH2dzj+8l;bX9gUd}r;v
ziz6j!eZMZjm1n<5p(6R-o0|9DP~adj`AM40)T6mdSgsVxg6Qr^%}qv^R=NJzocnho
z{>E&ww_6r|xXypqQd(SyK8lRZu=%KcHSMIw*80&6tm-B61~N-Autq51{NK87?`@uJ
z4t>9}x4c)n*9TZoD!otcUM@L>=T24k4!C{Y7sNT9I)W)RfW-yt^hN}0EAwvdrBuJ~
zTm0ARyFxE2k-lYlnfo!8k*1cm?#B1qKDZE?!||0}eSw#3k0sfmir)n-zK1+|Ke8Zq
z<u|fdcx}Gbelhd#*dZas2waM<qJMp6!6EyHq$*NTBDb>vw_V}Prceo=f^$bqpqw>v
zoIL~=n)a>(S<zAka1TnTKN{UVByN61GT~yCQzjurO2~YBsJh}Jv~-yGDwqOJDINS&
z4W<SRd=I^tC7rj2FVG9VM^VBP-?pj|oCGKDEMqgZ@tqU7hio+5r5;h-WRaS_A2C%{
zuIb|``Y5R>maF#~s$sKF!x?aWncEH9&r4NTyB9y7_*xB;uct;7B>gT@%xw1=4p|s&
z(iroi|KdA5sR?SY)i_Q_OmfvBTmYY56L%wtU603A?_GGGi>C7i3wAL)D>$O8pW-TG
zmi6Vq=LP5$hv51rGpPwO4*k)#09CXW3Gsy}=~d?7UP*<{^TM5CtP?;tLs5ATY9qPY
z1&&jH9EvO*H*EcWG2r^>KF&v>Ef0;DypD89cnT<Q>hXp!$>(u=PIs7nU(`oS=DrIT
zx7ufC4OJjWf`|3_cNJgC-MB&{D^s0_zCu5ZAJB}K>8+Tb^UjnE)AbXUTy}GXZllQ(
zqwbyHzwgi%XP#gWICtMtGuxn5?4BQla3$L%;oJ`JW8EA6W~3LDXeq4rE$O~*ab%F#
zL3X(}_dSyf6!R<5<*@wznl(fU@s*0qj97sL>|ODmi~@07@OTeTdKs_h*uulzmPF=r
zE}aU)cqD18)dPuCz1<bds|VhObNu5Q;l4&``LN`X?8GZgbG3l8pdOWM0!Th1PZ8ax
zS1n2oedFTw81t|{+5<Um*D+J)-ds(QCKKuAh(fqLwU~nDjEid=1Q*u)5kibHBcVmy
z>IE{aA?h{NJme+2I#G>5_YZ=Zk{%lZlHS{nEB^fK=9pOe+{_A>yFjb*60QC>)|<JS
z5-xEpSo&UeiW0|V+wD%ak&Lfq5v&ucdIN4kdE6@2IJMK~O}lQh_l=@u{kSns1yWVP
z{+Eb0_@K!fe2R}7Q5-TKZU6a$59b>z(Q+wx-#*Gkxl4QUgoR+q>K0y-5i3b?_aN5&
zxQ??6C0{=N<c&LD*mD_SiJi*CQ@bv=0(F@KVU;BvA8UJ$2}Al~c-aa!RqMLqm`>DR
z=~t8DKaf6I^mluz7FE6Hv2Rn27Q?q=!#HPF)3wD^$JVk74$s<CmYX)R6d!!GG$k{x
z@twB%(&R#vH730Dw|S#>@S7AHU9q%e|5#S_?WGtF)_!%X#31?ws;88(`E?Ww8MMD`
z=UWBW?UL?9<nwSR<ysATcT;;bA}_hvmlcC`lm2Xea}(Pi->I`c%=43-HV)Q>BYn+P
zL<RNBdq#3}*ounfC;3sO+42O``D5edGg2u~Y!qI3TpgN<&$hNqqD^VrW02LkJ@Hin
z=~4g_FH7!qJb)jFt1`blzXIELSkF&1iY_$*2(+*Yx`!5|cFmw#-4`NDqc{1xC;VNs
zMd}P;VlAoK|1nuCv2>qqGmg9<ZJ%Xnn#aN+r5t45hmDxB*JR+Ukn%FO<dA8S{$nYt
z@}huprzCE4gfLgzVOZRmg9AgMJle4EP4afINrzU7t+WtRG=MXLOFM`Jj?L?-o|>F&
zJ|^yy#LR-stwYzTM=Qkm)_CX_SLmaq*yM^;r7GobeP8WONU;6#fE0(@x_10`hjlr$
zWe1O#(lWn5q-(@~DDWjVb(=#QQ_=^Sl^Dg`YBr(|ys@K)ZCMu#qqF4~K4ac;2KE#O
zxqDGq_<rqa(1|x#*7wHyq=q(qiWl`4{QMS<=hW+^f=z}zj5~w1?MBXI+en%@dRSE{
z>aEr;(p*J?ds6LhYH%B-IoV*zavdJ{8Ff4v<j#ZY{Y#2n+j}3i?MI|P*z0V?`HQ<g
zrWsmb+ZDfxF7l9i^h){Lrbp?kxToCWsshR|W@K(VInE3GLo$i&y|RHHg);7FKs_FD
zy;hYa8<5NG{CX{KJy_gn?R*0{Ay&U4yI?9(ry*K&qlJb<P!f)bl<V<zu$P(-L(frw
zvI3XAGcXxP<Bo<v|AXzSG2d++p`qU$3U?CAVS35p{=u8H&B^+seQfRZhBupIze{+q
z0_d&a&v_dsK7PhMqJ&u`kwYa)*cJ7nEO|$YhUsuPmk<-Ix<e2ZWVa2irDLVu8@MrV
z(a7(@&1a+BbXnfp#e=`U1Z3kE@`g<)Rnt5>bhDJz50-0_U5Mq}W*Ex()nRhuYkfJ6
z4`rQ!LDsTw0&dVI%(@?a?}|3yLi=cntwcp8C3b3We7#J(Z7Eb3pch%C?c%Q>l=2G!
zSN^O9aap2dj~JT#$lscL81XRKGl6H|U$+53(8M02z<T2GG`^Z>I^beX-7Dw%8pkWk
z5oB__lDzqNQ{$=c(s}2gX(83Y8T$>K8rTuPa{_*pj7*5@5ao{~Y<EFTCkR_{NA#SM
zo|YHoS9A39$=RTk2#E0OxU_<I(L(B<^;B^p;;!zqh78kbA>yoYMOytIS0Q==mrYZQ
zZ-w~dCCcxoY9&z?+p1w-9VhAykU03J+<Hvt+_li$NX;Ug$Bew68uy9|ulW*g4l9o5
zS`mWvwdSu~Z5M3_g=n;v@DSjTuqr?MB%xAR_F3gZ6jrENAj#VHyJ7$vBEjx#_yJ2V
zG#Y!^W+Q0{=0#R2j3f8q=}NvuZ-Te1rc@zeP#^P)l3M1PET*h;PHcgPvAGcSoc23V
zL@AdH9v1zlZ=DiXI=#?3i|&nE5IX2Tq&?5|dw<c=-2+5YkmP?)v?d=lpF<wnaQxt`
z^ZVKUk@!>?@)l$7-OXEzawEL|Ll)gfJMiSe|0Kr@s^E8H0j{GqLsilb9y}mKj}SKE
zmQU*lMfmdm54NuVFI&g+Af^5yA;%(j$ctSeS-M~m2l#Z{G=|Rq`+`^4+_+|2!G3oj
z5`F(g!uDyX?pM=yK%*X@<h3-Fd+hZ7$%fZa<{1%?VML5jJGN7LU0F(EkGB9vwOj3p
zLmO3|%mYz=@6XEXUmqX2gG7wp7nRI1myJa6Q4G~K_FTfT87YjKb4GBGt12e5J5{a#
zdCfyy96;ppHXjefZI_KdbwH&nY*cRZJ}CoGFquRYy;F1A%alC{Q1Qw<6PVED*xbo>
zzZO8t1-9+L{;UI8zd1np1cgD;kK@G^fR=plK2m;NC61hPkV>*W-(MQ9hAT!ke988o
z#v$ob%J4xoX}7rBA(*H6MZJ$-Ii+Jv1*<Qa=2hzEYe0prKU_l?02a^AhCZEfu<Lq%
zr`~3Q69|dljGZ{VngP`}y7vU+YcSle@txn%djBqfhxGt@8<;o!T~9B!9Qv&152LcW
zJU>8Pf;d7oMpxzu4r&L~Ubap7ouvNp-ogTo;|1s220vn;iwWS78a2DhKj7T~(oFx?
zfegVBBHqf@Lj?r;ojZ3h3=v@u6zQEmVBV}!*WQz;^n9&m1+(#%tBIXpXvh+Z<~Z6I
z@YrzZxT;Slx>=6o+5th#T1u$(<ebL>b#sh@c}2&yHyh9?wMsO5;gq8~i^bA%XE&R9
zF{eK57?WYH-gQe|=T|<0So9bcZ>L>pY**QKnr7ra1$W0pYP)FzGIo%dSf|lcTo8TI
z)h0Al!zw;24@eFbzvcE$evqiTHWYu9)%ySlXfMcPIY4d3F(_~H`toR?Xuu6vI!)ae
zK@<HK69p5;1ZTPTsG0!vp1mqm%|=~F*3N-dvc`L}Ihc#$Cd=8KZF=GQudi`JEV3Vn
zi4hz5U!6?M*<m;`TCnw_(yr*mZ{QldWmC@&Gji<2LGQ*Sw$m;(ut;d(N<T_8aA+F?
zoR!L(5U0A?p;WuP4ES0V#YWlR-=Xj@29#tnJ~QuE4Wf3<GTos}o3+otNoqnu?~R%|
z0G$EFN5ly=sOZeGov!WmK11!|ZUK?kZGzfk)(Lej>T{}eX!uO_<5#YZ%VCV9R-lkn
z4L)__?&XzqumjPBL-Q6RKeN`lwDOF1^eeEU5f~$_{pQ-I)VQtr3QQ&#Tnqh+zmz|=
z1sPQ`Ecs_0gE@>_C+~tq@JJ8(2o#&SWDbLM`w=tWlQErlFK$)sPz~7(*$jWXj^dyH
z3Pk8h;2`Ws@Pb?^$XCL%{Z3Ow4||@WgrF{Lrhft5nY~tu!eYm9!VeprQ3rkk)pOH8
zHY7OKFv}J&RoC?xy{Mw?RKJ0koJ0RDID5`;H-FKf6XZk-owVo!{B?XF&URd#rn_wp
zcH&5aZTHI95IX`Be#U@`L3wO7qG{;230qfz{^vH@CfIPIj}7*7)<9>f1M<u?NI#-@
zC@FJn){QrsJ8%m)^lQIjqM(vnlT~IfW6pro0cag>Lf#BGAM02+MA9I2spC=6=`UbZ
znR<<hQqEN<{lM5aSI5)5X0$4)gh@VD$^Muyun<ugF_0%Ggg+O$0w4(4vDkkm`gb*<
zVj*7v2<;X`X(u&(Ki<soFOlk63ghVW&wJ(-tO6C#gW=5*(=N8ExD7PF8jhF-XLL>M
zMH?s4Y!Zw5uY92Wp-xymAK;i=crAW=m%9P`AQ9}1qvuUn{-a=L024Chkz0D&LAz92
z{izz-Y&YBJ#2GeX!D}^4@8MJR=I5*n%jS^(px9ym20rMufW)=}nT)bl6ol_{M?g+{
zmd+4+zvqK(zjZ0$PxRK8?Ab*lHre9$vTN#;%-h^`mu0xfH2Anu6D=K@P6~Ub-4ET&
zXqzM|Q}g;eE<Z^YuoF`<1-6UwW=|-6x1k^Yx0s~9&<T(r-BQRNzZXW9)$F9%R5(@k
zYlM#iq0$Cp<+Y(vEu3cR4faMU+^<S?&y)q`3g7v&YmyiE-ScM!cYnNHtpoJcgsE`@
z8w?<BpPdYsKjB+~mttc`opA}$9u~+HkfjL3x@7#tyS4<$%EISwFqtM!n<o&}0&RQ|
zne51F>dz1g@X>oCZ8YkmHx}_CDfg|vZs_<$tSSbJoQQ_)N#36L`ub(VMVxusS~Ieu
z=HH~1_~!Y2A)UXG-uUsts1P2)&yrUlr*6e^FvIE?&euXa)o|~xvGlw5xQz~NC&_H0
z>cy(a@p7X_n)*5p3W#?3EhvLrcN>hH0g4}=s0^!@x)sV55D`MVL+kRJTg@Q`p3Nx7
zpuDV@r3nHm+Ir-0j?vKED|-B}|FKHUct(`t17YY+UxB2a_YQee&QJli*uk=<zF=O0
zOm&V9TG#C=-Xg*QM*1^-(%a0QcRqU_ETi14WR2HU`^K4Ta$Qca^49_btfu%M$-`yZ
zxs4vt;*heAMT7vdDX0<bE$h7;&SV&vUuX-hD}AfT0GfXwuZ)td`&0;^ilvEi$~8-D
zH$}CDK&hz^)G5XGvMwY~I<-Ut1CQ&c8Dr58jIE5?90cAskx`|dT@qo4#$Ko;jM7*(
zZ`~Z4)-8o?Umlh}k5xXIPZpsWU0@qbnL6^c9L@M_v&|-n3C9e7b(A8{AD{Z(^9<rq
z-)D6jXT@n_ZqKDv{hn+ovl)g*^Hl6a^1Ljjp2gr8pP$f|PIRubIOT!)>SWMk_npZh
zBIB#-;xr=S?2w80T>N{N_;O<3UWL;bFbD%@xQyy{>6zrC;NAo#rYV)q@Z?Bp&<G;j
z)qr(tY^U^=UcrmB0#%OhIa&Bbwr<8C`E;h+r_1~eHl-ztO0QLiEmNgEvzjtW62jPs
zoDVf5a(-FkSXyNJ)%$R;HXVwxY<J&Fl3_6@Q0Ijr*}^pV<l8vCZ$R~KFW0Z@!;$wk
z>08aGfR04+kg@6kMFcSk90fYJDZZS0MA~DoN*P{5TiAu3&ja{CeM0B9tvL9*21VlE
z8oX-xyyB38$P{{8`)^cQ5Lt$FG73bxS6;OO3HB5eu4ZK79T>JFYPLzkj}wPezge@5
zG@eP7h9ciGDYy0*&(ms--zxV3d*<h%;ji8|!2Ns|B3=<1#0@QGQ_Nj69n&n|d9S^s
zE-TxaaA7$5y8<}Z*4B?F=u8^^!UO7jZM{<@tU5}WULuaISze#mZ61xq%>e%^w)(wj
z`wJ-5h{2$#30zF*xt@rXpmq{7h#9^>TJ`?3=~twu&ji;XjeT5HR_mbtS)K93SK6ja
zTQD)%Ma#7CmtR}T#~icx-@q!sF$QZIrX2krDDa0|J*OAOaJgslf5~BkTT4`dP!5%-
zx2w|3c&W|+sAGxS?f@ZVw(WNjj29|XwX7u@u(!-KyQOm&9>;Jfh>)>r4)&$6*)S-O
z{)gAtHyZe6q)>Uh(P`yVJvG!iG1Gn8s@VPvSVEH^2wDz82+5hsnS9@IiT=)$vm3r`
z@z_&wHi&yFr{5;jtp{Q%96+%7*S051rG%~ar%(KwteC(wjntcU-)#Y>t=w^`D;EjS
zo&#QF`xWlw{{3e!#W#90XMns92SKFjI^_6N8q{XDJKMir{Q9xOgo#g`R+;1e4#r1%
zYnMs`bKRR4?RCTS9}zIyx1DI0>Q;TGwnZUN!|Wy-hm0y*4DD>Z-OY5?6NR~pV#jR8
zCruIx>CL(P9cM(3E)nkiTGZu|ZOxd0{xC?c$kqeM+z6CN?LwtTrNCdA^F8XX2RUBN
zy)&@?^?}pA6R*fw<re<pvKn|O$p7r(5zV6U0O=%ol*f!+gC3YTI{?&ALFbJ=I5CD?
z-I%7Cd_pUr>~Q9No*@983H42=W~41>KuRVz2{^K2{?yojpmv|Tsi;;UW19q>MZ4KQ
z6>X=g*R*S2-4`w$dUU#@5u+Emt~^(t?R%Ppl>67@=0H>&=I7)9mD4`f80eQ10Yfbw
z4#<U$4!@hLGyCVX{Xl2Hv^cr7;cl119*u!&Tn3Q+DQFy-0&O#J9DLHR{0qJ#xWqKJ
z7_bF;$6C-TpeyFY9t75@`P{ZOg^vec+D+G5p)NpQ+9c?9+NiggYp#m|5hxXr18I!^
zWklNzz~EX?7N~q&g=Y<$*+2Q-tj^<}*i`ITuJt85rF5%aBIdpJ@&?`ICdyt@)LA8+
zH!JERTn4JRJ1&zSKDPT>c|r75k;~o&tOSUh^b-CAT4p(bIh>z7FAuuyt}p-Admg;u
z*PZx_X=DQas`CsZJ^lMXUjVq}Aq;)&97ezxEx7*BBfT0ApD`=o+RNhxbkt4hnE1gX
z$vLWl*zer20c@$2ITv6Dj(|pxwF-<uIQJKTK*Q&`>xT>e=zg3>pckp`9X6gmu$b7j
zK|I5CPjXF}XnT*tBu&sph4~ZAT<QxZy)?5I@D}87Tqd$p9%}Z~TD`y+>tPM-k6@U1
zhyB+|Ni;UG$RgH1a02h+&DQ|(HB8l5v~>D5Ho0s}11EKthorfKm=WU+g8y93=Aypd
zSsCxT6hhJ5J;75SSD*?u555s<v^b$9rZ0oHXaLv=m;@8(P7;_P<}v*S@o1}N@jCpG
zwXY_haQ^%KmukjL8oy0{k9goAP6dVBG$O`IwcIv99H2g_RQq4|RaLKgwU>BbOP#bB
zz;QnROV1RmSb(-0U9#n24$>fTEj3fBDPP+*U@kpu2S9g(_sr{1>h-kVq}2U^f?>83
z7_-k)*3xYd`a{5eOzVnyphP^3`Pg%cjLRd0?Pl8NWTXE6B<D0FZ7z2$&YSfD-XKYK
zWo)@YgV=!^SJiU3I3_r95YK>(4;6|e#_cMmed<d^OFs*&$cm3!80anJw%wThy+MQa
z1F_UyP2jK@$tP7)ZCAo%S5GEPJSxi_7TUQ*e@*-KFXP{R%AxzUM-2UDZ>5O7#46#J
zc8<jL;4X$&gLb|$qyN66;=f?%Y?2_xPJvqZSm&T7Dzm9zr8~@qpto&St!B)z{Fymh
zV=U;QY%Ker9l8ycD;}Nird8O3-umX_&53iLwMxClvy4@zWcAO+fJx(mU7xyZ`<g7$
z--H4Q;#1lk_L+lr`g2yj@okSDM`O-tpeG{!mJFs5ARs7ObqItT|LyY|&@prhX~AHx
zJ8+t=VrhkU@1vI-r{F0~ghA(HskOFc7mUZA`X}<G!k9+3VJXBQMyaa!iw20_UGigJ
zW^J=(I-lJe{|x*!MDr0Gk+SEJo>pVgpJlhgs5HA*9};=()IaMT16N4l0n<&FRlQSP
z1!l4aLl4S=#DOU|T{p-5WV*qDcKXj5^!&)>k6<@IwxY<%syv$t8bRlL0th%R#1vu7
z5Ln?$KzLUba)+0}k?~-ASu8n=_YB`2B<yygjqaCL!%t6DHgnvB=HDlW5PiX((kj)5
zcc7!FI{15vVC@;mJun8yGRx~2+HeasZ!aP8_X;_h<E}XvE{w@mV%oPL49sv<*F{k{
z`)Ez>M2hx6+azNBPr5_*cm<r_&_{XGJ3AK^@G5e>UuvS#sO3+yXluj$%fq|7JNX}&
zFd4yns(NBMJ-xLG8ZlV|EeJRwv7V12!vbof8PjaH;E!#49u|jk?x!5v8BeeHx6sYs
zW?sf504iF0OLaB`JZvL)!f$<u&dpuX`kgAw<vJVjfFWY$C9x|MGly(+IXzglmo_)I
zf_DZENaE*Y8MJmet%33D`WbT{>*3szA?JC$OmEO=8ONd9*h3vD)m=2`#LSw=<p7dk
z?r=5mDhX{V3CyeMzOuL2vV(5|%VPeInT-EJPx?Q_IsRXN>lJO`IfN@J+#(AM93n5H
LB3&V68uZ@)$7K}Q

literal 0
HcmV?d00001

diff --git a/docs/documentation/server_development/images/retrieve-external-token-identity-provider.png b/docs/documentation/server_development/images/retrieve-external-token-identity-provider.png
new file mode 100644
index 0000000000000000000000000000000000000000..914129b051135d0aa897e7d0de9df538ecccc860
GIT binary patch
literal 21577
zcmdqJXIN9+*Z+wH6)=EQ4N}Dh0xDIIUZwX)7m*seG(!`VE+7IbARxU2LT`b9f>J~}
zp#?&h-h>c3vvc3SdFFZMnrp6k_n#SGm`ih#le5p-Yp?HTefNpb)>MX2LMh3}$RJNt
z6m-eR&e4&PozcE@0sIedr%DKT;qy>@>LKrLZRug};>@9M?_^B|vwp$xP?$r*(w*bs
z{f8nP_aBK1KN5fNh(lI`Ltaro>U_fk@WE@O59+ztcz9d7Ta(#3yEs|%y|i+-wswAL
z=i;$(u1SiFOt1Wjf~>yJm$iwDehk>LwyoP4MDuKK?KmzT4qfsyvghxG&qszoCmQJV
zMPa^<Fk-xP^h-Iy8OgIRF^TgiimPnM(sI8SJ&pfeKI-^^^~3w-jl=!biLUk4)m3iO
zp1|%`-5o68kL}jqxehDvqsV9@8b}vMCUu3I^s=Y)p7b)sB6}9RymmQHLHcLo|B5#i
zO+*Mdm!{Dhv5#k*wWRj5t>5OTeHxqpWZ`@}%_p-fNwCdzC(VD?NaAp{Vl9#vRXV<y
z2s1CkV|;NeE)AC8cdPL8h=_=2(vU88Gy;0W?zbsBwZI;*_kFAiZo9OFg;^L8*C!@s
zjVf$L?ekJ?#KdjWUgaL|3}_8i*lMvzcokVQOL(oiHsSpC{~Co+v&JAKB-u}0TK+Ed
zxLl;Zejl8KJCV<qyV_;aIo<E?lMf4czio|k{r#DWR4e^CQU1H5wo79u_%Ley<Y>D`
zlyv+jzBfNsN}8NcPYz2M`AtU-2rCO|dZpUm$YMgaX4`NdZmO-$#!8F)bL?91kLi}M
zwZPNEbYH)voKItGHIwUXyif0&v$p9T9}pnmsA=nZjx8`QV`$HnaVvt-7x!OxogX(g
z5Qa>cn3+E<AD-?nu=}ppEsXoBe!OST$ZJ?RRBTf3n)zVk`=729+f;E+_nIlhJ6Hbt
z)rU2y%#M`;SkpVJLQZ3Yzdi}L{ETF*h}V)DW#lL^s}~uSa;}?as)+^P*Y^DR^VPC8
zwwKb(0_NkI(#Ib4;F<<jJ&h{u;><j;218$E&++PJhYP#l$B(azGyKkaCgL!7hxkaG
z*}C(iXRK$AWbw;_?W_&68fP=25s&V$_u+PrbXP3Kmx!Kxk|N?%q?@C<ezp72!u9$U
zRK4jLKh=|i6#?&VsEFfLv6>n@0_ikf`=G;10JEbzMXU`tMi9T8#562;q&$A*{sZ@9
zbK}=G80!nw0~@lQ5~uq;fkoyR#5%ELW|e~eRyKlvhq&KNC2;;kDn-bCrZK+z4Sr?K
zLiqZUWFQ#Wq`Npq6XaE6h=(vV@buW5_~q=6*JsX+TL~Y5p=R2}RM_@-K_(NRXzO1I
z6hearcD~C6d1$4-zY=-PZWu+kxaMl4*f`;;A=lMTPmYU0n2C6=o2o^GT5Eg}>ocx)
zyyl|``MxxeX9DhlBRB+=alKF}8oJvhI$8UbcC|M{es}5(%~)2fRPv0ix$Adwep<#m
z+TV^F><4bG;A%=Vk{;e%-4!1mGnc*fS?&Y0z@Z^DOKwgsgtG2_f?-(|^t)}U=f|#e
zY3bFKzP>*GcMx`|an*!7SA0%DAbCMnn@&$8Mtv(&V{nHOdrhZ@(!*j}U5kBLW^O**
zIKtAv?aliBM+Y-e0^@LpMI=g&L6d+G^Txl*gRqF)8{M`)_BSjspBO4Knq}j?cXy9<
zZT}n@S-az?11p8uPuLA(6lQnq+x90@_lOC%Hr8riqBG2cm0#s(tBu`RTvyl``?cSf
zfk8EqXCCUuQ%FF``3_#HU&>7}6=<3H8RgWU{lu9)L%)KPkw@PZB3t+O7q3}XiE=F4
zP_3I4vr4rS&Suh|m<pd;$JO+p>i$5z4J;rV&pJN|c+1L9tH3^DpB|kYZmhM?NLON!
zu=*bDEI}R~o=rB^1!PI%G8^xp$NKna2wzB&+idG-Fgca!8{#L60JrF8!r#EeU+j+R
z4vK;G@P51VZmGg!5(yI+mg!C*wx<VoA4_aB%(5Zx7=^Tne-c+lKR*Q{I`;j|MLs$$
z>ElZH`IT|WonHC%TEbx;QJ=LL1onoMMD3L#PDlKPMOzW?F?zXVBh%g%+irNyqOEv4
z&!30;SCl~GVgL=LtNHiJMbo?Y70b=IcSLiHnmkUR!VWK}nE5>dQ;>$m<#}m{Uj&A`
zBd>x_r3i=Gvlf<>&%OscTUfQeqj(#>lO_$aw-u)eL1o;ZII*sZg2K?rY~x~RFn!GA
zjiUpFhYAglOg<X&9)tOMS;q3}gWm?<$364iU3H7zBI12}j#o8K3q#GYg$5JHip*vS
zMYV=)8N5FW`)a|v6RzAk+O*`s+77Ecd*=gVd|-7|(&V=Y!RLMVro+~PF0#4CzR9aM
zc+;06sRD6K4V!wOF|CH?DsHXz{(1B##l@>9kr&n-aI$ZUG(Z}D=%HMn*Rj%vohk-(
z!pT-Dgt*lg9)E6riyA|6rWwY*m75&42wdw<>9)vEmGCz1%TzpPsb;C0p}t_Upbc4i
zwydKoqdRNd;y0KwNB9=r{k`0}bG4Pl#bZ+XroGcA!`L5RW#5b+-1@$t)aKRy<o4)C
zK9lhWJl9n>Cl@Ggf0=5|4TX~rOeQs_nbVgjH*b)FSj@0oBl_*1W!S9Y;8z+<bD=ny
zPS&H!MPrDG%jY;~V+N<3Q0obp8JfEdC|%^4+YYoyS!VV09HnB^0ncwA29D;COFAy$
zZ7gYw>YnTwoLqYnkqGX`P@DkeV~3rKVV88Q46P0@N+`L3`i;gFwn;CXQ-|DJQ-1>1
zc_jY4R`H5(A$AkO%%!lxpI^pKQ9><Gb-7UaZUU<NqG&Kd^y_x<WE1mPaDnplF>%s6
zR@8Ciy*2#l9mkL~7S@#D#C+R!`Xgci?Nun3LI!8;#g<v((HSzb>%5~jcJYX_4F}{9
z0SZx+1;n25IsB-BG9GgwVOT|Pb^zYKpYdSVp$I7=!wW^)%Is7y8xOW4K`Q=0EQk~J
zT-NtCFoiAf!ceQwh${FnwPTi&TlUWJPO6Zj3M^UDJWD@nr$B_0uaKbq`8`-}YO&v2
zwqi6al@-5@)gZJLB&nz6-da$KF8k}O1%*B<Xnz_qj~=Ei?){dZ@hmef$JO%!TM1rK
z9v%F~#859fYVinuH3>1?U@%B9>yg-ayxsC&cj*1*GVP1asqY2OD`pY9h^rzl_|<h`
z$2mJ_6Z&}xCpXVuLsxAT9h$eH`#ypy<V2<L<-0=qs&L5LztDK)7AiV6NZnsK+1j)a
zSE0(*S;F6J#RdI}Gp~Mjq2<!9pz7DfMTL}Gf(J{7u&-QfxKpiCy|D~FlGpKN@R7Ix
z8heU0*<TLRp_dSW>Ed}Am?!pIz9(Sih)Hz3!mS^E0M_vXL@e~k{QV~CmxE~?g5pSI
zXfBk+*;Q5!qDP3yzdA%E%9Fcm<3uOyj+M{IxCK3%eL&850|}G+E+-7Rrr46l5F?b`
zNyT8_cb`9&vJpFQrNdX~ClZ>s9MO?~0daD)Z{}9*AT{XwHK~xnSjedW@j>eJ=q0g!
z*b0mBX+sHLZ)n~feB14u$Xej7=%IOh;(zeZ>ei-OeTmK-@)}yUd`4x>p|+I({~VTU
zh+S1qRy7Ez$PD#&wJc{(u2YT%rDq5O)+m2iRzHw-6)Z;X={e6Wgg5n9q3Vid-=p_;
zdLQX%gh1n<N;%14mFGoK!oO7&SL1ZoLR)8f)eF9gWmURN;wOTaUV5YnD?E|Bot&tW
zUNTvXxaBeKpt9gWnVH#itt(;P+b3QD@$dNE6Q~~QO^v&ujBZQ*BUsESj8~V>L|o7@
zdz;(FAROSmHpaM%S$?7tfue)wf5?}T_oUA}Mksc$xg={sgef6cl4Ms5!@UWQu4_my
zYq%g^`b>u~gYP1!3{)$rQWZrw+!RuD5EF00yQZq-=iRza&dul?C7RvAD+Y@W4<+o)
zL!9)wl$9JmU8(%`W!Y9?<>h$+5oY!8V%Mb?Xh4blwBs*F#%M@GfxhtN+k6gU1<Z0n
ziAWpY{+)EZoRz~n`!W5J@5OHOQ1Kjlg8_7MiBeIGSc<4;9&{^%yc^GG<KLQ>9*{gI
z43YhNR#WMknCsUn2kbA&A*^G_xl}<u-Mr@xUFhs#;raZU_EgG5#yf+Tu*S3pMlF^*
zY-ZPBB{6tGknOqCb2!cM9#zS7h9C)JLg((}=YLZA*~oK0_D82c(<<WHU?)BLLp7?~
zH)IZv^(v-AwN~5lQ59ppCX)$VceoVWoM|{hZB}5~U}-9@S#k!|WAIEedF^5F@~sAY
zN9=6QcE;UcPin>&gB4$278{3Y2lTL$k$o%sFfZF|@<L;pWBj>m#^B2-Mk%;T7?UA=
z*TZb3PmzhjmsNOa;3gqtUD?@5pBsL*>t-U(YeX&gm2wFe$=iSAa2c=9Ei`yz3QP4I
z(59D`kKoGqn%(RYaz{A7%Do)c^L0CyESGC(%3cOORJ0W7Vel5&S{Cy}K5ZurRLE%a
zk4b{I=mHlE$3p5k#&Wo<aG%52m^o}y7@pW1$s|u@29dbVSDDvZ23<Cem#eyG+@P_r
z^iHtbHABUdy-;}zq5Wd9H)CBQQts^uzfe~}K)UgdwItg#H@$Bcv`kjEPC^Ia*}_6Q
zY^=VEJcDu0pLBLav)I^D0|{()(U&0-1N%dd`rsLX>B|4k_>g-LItOltLR}rP@XAXD
z(H1VNey&!!(E(-|5Y{&+w(|r!A2@HeQcFsMr2y1{QG6b0=XFC^jFD@w-SCa+?187A
z)7wZZ!Q|j5CSJWw$~1FBp$1iuB>2y>m!Q_+l9X7-^P;+hV+Nl=wXAJMG+XHI1E(>e
z;b+9qx$wr6#tPI|U(CY-osm8dlyR*FRl^byNnCzxznBoyK}G((!fB}tp{*ZC2j$09
zK?kiEoEPH}sSIBIbW2{>o<yAwJ@GH>R+6+chDdr$yvzDGMaWefkBZ+|qQuBWqJFPL
zzO?CcrH5SWr)BI)jyEh(R`Sn{?DrHllP?frcoN+`Xr~g7p!4uFfmPiwij}Jj#Ar!!
zQqnB#OZ2(H=N(E~6)<eyk-B*b@<@*ug74slARVOvUI;Dz2du|v{OhcV^{1E2ub5%3
zWSrTsBZZlaO?#E>*>-!O$66KE_O-?i^k8KsdvWny7+K5}tdiYcYN#VQvnEpc#op#L
zzk*6r!0}}=GLHHz<+EZ+&P~T&|HvLIY?a-?Gsu&HIWqI_^-MDZJ(rDuz8y8Ie)^tT
zjLi;e(O3C1*-afD=%fEBV`hs}K9rUVoIFM*_Ppym`(rAN^It=jgbqhYwSrCCF9_1-
z9NFvHi~kYHmz_vr`Tq@?`G18@zry|6)OoeROvLTUyDp=O9z#dTXA--uW7A@t+I>1U
zIZ<;}WAl_xE0#lwt=`NGA?=@lTUZCvcXTX*>&|t=w~@_JKRBepl~S;*RoUYlag${q
z8GkW#!O!6ms_MnlpZ%m#VgZ`M>=K;}|Mu=XCoiJyir@nog|XBt^Cz&NnGSqnaUilB
zU<`Mf;PdaJ#>E_pF%PYg)-hsgbX+sKml$+(zDs{*zT<2M>o#9E=>m6lUFJQRdxYAg
zsdbjkTIoAx1`fHFmg$x!ficwAni(!JQUqmgEaj}VoDl{Bd(Q8&=>_*Q1cmGIv>7SQ
zZ|Yf9{nlJ(`1q$EZFssIem!2i>RAM$ZUIDH`?Nm28^ITT&x)M<^^^>4phbgrf*CG1
z*waP-7Zk?#{3g|H^^<D2MG@cAn&C#%+5z+Q>e1&X5fc43G7j@^w0yxIXhmC@3tnLk
zTqPCy{)f9pK<D#WH2Q%nj9~+_;k%H8-rDKO$L}FnOF0Eox!7jm;?B|1D2MaS@~R9x
z>jy8YFb~WKP#xu9h3B8O&+JCFL0RKRzmT-Pd>D1rqnCe1(j<MyUy@TYl!iiB#)@n3
z4rXW%K&hrI(hfJ8PGu#-V{8)W-w!<gi@lJtsr=6RO9Fz68g~OzIHt!uTp7IIe{xFc
z^wK=O|D$NY06Wu0Ob@l}Mnn(Y;YoDGV;#4l3|Y5Mbql|(5W*U67;u8|V*p#6{10}@
zfQ}gfLTeSA)LoLX*tqH;I4zANoeZ_%dJK8e0LvBcJ(X}VzY&zZUblHuc?@ebeA3L>
zMIDF8ro|D|73$3+ihG30em?}skC`o5)WvxNLri1jGZyMt37c&ip8EdA=|}jL-ClW`
zQNpl=3%E1x=P5YC`XjLz3p2}Ww|#7KZ-ihABc2MbRtkj)<|wp$DV!9R$gq*KY(^%A
zH?a$rRuiPE609rFU8H^*#l%-+TIVhjaOA`LwDegd4(~CbA>uqPmLlbk#ujzF1DH@D
za!Xx?TG;K0&1HK^#Fwjg^q=}ya?0(Puic>443@IeJ@O8Zit-4mZ}&e~%Bu#L!gnrC
zSr>BU?}$}w-J$5DpWx;=7<Xr8bDs=wtH-7Grp~Qkk)KjM`k#nA`$l#M^fHJ<TJG1^
z;oZspAE#&J5I0v#JzY%4`gtwcBlLb;@K?(93-g%_JjEEGOh+MbRkaAZn?)deb|<_i
z$<uHc-x?NZ&ie<J&FAZ9B6(M1B-Tq6qnPSmKLAML9NCnQGMEzij3zWsb18&&yEL|v
z&7IlZI1giLo}2vf3j=!pDY#i&cyk=eq=w&UL*>l{h^fEg1|DOUu{%;`Rji#Mw|lTs
z0_JL4y(2xhQ0}YNch^Mx_FP#Wxo02m;#|BIdpRZ29uo%j051>})vz|~-S`U7nAfQF
zr#iX8aju$x5>{Wq!glc&*ku_Pg=Rj<mgL72hnMg!!K{Jo>PPMG*zq1h&#mIq2D(!v
zZtvFt&M{Q&WMYCrRGlGnZRli@m4gvU%!))kCj7R$cGFLf+DOV7i2s^lb6>uWz;VE+
zTn_hUWB-8ytK2tY)btD-+7%3i3qSIkIZOr|7Duy5j+ym!@wu-Me|ba<G!;G-$BawK
zF;#b}C-NAS1L>;NfT=D9f=D51u;BG!df*9|J2BoyY}`WBucp2QF)=b)*Gzb&u!!FW
zyh~KXNRn>Y%sUmcHxm`KW^k1MYRbZ&V9=>qzT&o@u_<Exi{TJNs#z9KO?&Yq(j#t%
z$dJ9NqO%iR6=(wP^9}oqsux4viz8)OywxXw^!1M$5@-(&FRl55g{PqN_eT{4se{EE
z-qMaE_v?4Z;PDN)uQL{eC2zz)Ah`Bu_gP}08A|3t3FmZ#+UHCx0je<iiK^NNci|?V
zWTR>6#9C)WB<16hjrZ5|X^-dPwa~cF53I&RA`>1H$6q?Pn=GE50-i8v{VMhc%B+6e
zzc%A6AYN{eprifm`gCFPS%~QP6dN4Ts+lTYmtv#4mEWCd+mmKksDBsc@|EK+2<=;=
z8+<k6Gx(Yp9dyjPLf#Ds*~js>G~BJ0)jr-^3N^8B*L8TfT-*HWaII#dalK)?``i0G
z>C>YD$Z5YTDNCXK3#h+k9WP5tB6eKmQI)+PQ9o9AiV=RgnUg{Iyp7qugwF`gg(<*U
zYP{CQj6g9xPFo3ZL2j)8;TC4InaY{}luI$PHWM4gk8Zc=NlSfEU)dOyZ>~gu00>dl
zpQC27GE}_Qr_2r+>~+LdcaaJRQAyjanV-e>1Gy-jTF;dshNe#oU_w=iIE|gRS>FmS
zR>oXKY`o``AK%ywrs6M+WaLHTZx_G&l9+5D;Fu)PZJu7vY1WcL$_3*L6?r!O-n|JW
z2P}R1#RoO?>!%hBZ04`#8NKVbT3IHvRlyvuySEW11{k!NS<s1<G*H{aBiMv!jbx!M
zj7l1GV%YR$G@K)Ux-c}|fx7YJ0DkzlQ{Wsgt~*_Nl20nfQl;>_9iTQGy$w74YW#Kz
z%F6W@PK%5xOtW;Njk=x$3UNuIw8aGwlO*6xobXPsFD#su+GyAwcYQ~~ywUqjhwJrD
zGe07NLTYv%9T*)NeD1A2ByM=0c_K=FR+3#6@)A?xI9eXGU|4KCpVpZoTEcr47T&um
z!V?L*ak!8kNbOq%gKPjw-z?lM^w?>%+}hbWkUYhualh4xzQcR8)-4M@<uchgVP<Vu
zJLuiJubr>ct0$wUEiwB}aC{%6$n@1{QM~J!tu)_tibD*;ugY7m14R1)^Al}Q6!pJt
zmctZs69Xd}YsvhqMif2ES(0PC<)K+F*LLCOTH;+3zF9?9qfzk_Z<g&I%lefp>)iu`
z+hcvbzE&rX5=yU{eHG!FcFDCmp806hEq&@o+*l<6_LOD=S=}aEa$E=%Gdl3%K|SEF
zZy->ib`bm0M)(^UO7#vmsM#JbqCT$t`U>slv0EK3N#{)<EP9$rGMHh8Ot;WWs+G{o
z4hl?w>o*=O^O`jHl(F2H$Wdcv)^^4ahF+u>%Vdng27Lw%e1$nYACo#6@O#LN2J22H
zW@isiz34bsFbf(k)U69&pZ&#KQc0?e{g+e^8~qPg0c@iF?V2M~{%YHX#KXr$Xrzx^
zKg{a-kf59ynf8ri5DVTt0O}t8`PAHzEDSe|4c^T&=SpQ4Zg196=@m)}JlYDA-2N@d
zfAx2YsDQRS-I90Th6?8lV0NXT%kl$bf#Z31N5M`S(bOE;+Okq%)BR<syQ<k<mEkP|
z7sKixZ)T6q(;}U$P|4GyZIS0c!ntuPR|EE@FA_yFUlvSdZ5FiJ87^TfvlID}pA4VP
z%#67#8`%_iqfvRfujht<`R<}5!sVGopYn--avQ$F{vcF6XFem0tsHRI(GbbwwZ+Lg
z#J9A71AFFM1T-S2!CdQ~NkK!0{(HJw(K8mqDq(s~S8)ja;m!d~1LD@;Yqcn7lEbP)
zU;fJ;$zjPn-rlh=yVkVc(f4eDM{YHCi3=4yQZI>=^vMK8p*d?ni`L7aEdi`uZUtAy
zYg{ab1+zv&8Mt16Hc>U;>Y{naKn5<Q4crqXP6jruJm@Xb`tC7rz^O8*t$Y89@W`<)
zXJK&A7sPTwP>+_qg~J?NETXXnx_WTD?7akGkJzct|0J7^<WvU5mM5p|q@t`kLoY)$
zgY%$T#$;S`M0eG0Je|v>cxV#HC!Vp4XBia~nrfbjdxc!qDG85}sM-iDy6mVo^icWv
z`|wEWBfrVdiC$~Cz!8-H#R0#X>b`13Puy7ejl=%6u_5c#r@imRk5l^Z-wp|w7);3~
zD}1K&RpzfagrK|36&$dUA*4~k4+IKW9z|AE^1WoD&CO)lMV-H}5K*VkRtnM3aQi;m
zt2!-$pIh-O%Vj82U#mZo88A+)E3Gj9An(*fL+f6jI_vU6ZG%h(a$`B8&+R;o@81|L
z`Ly6zEu3AXDIqhv6$evN7f2auWZ)Rg%H~uuZda2J9{j2|+tuT(lVv7(htlc*r+uy@
z;P?O)W(SG}XBNT*`>V-mdY23!ZxGeGDJzqQW}zs*qGW2F5*<Y2X_-50f&O6zjEiRu
zPbVkiw-{*kO9^=rII!BSqvp6gv-U(Tgl**!CfBL5cqJ%2QnT8Hb^Gf}%~GoZQj2Fp
zS(N<kAZ6(pGMTaR$13?ji`d)e^|V4LO%(Nzxr&k(=@21LqjgI%%!{6u=@X~T_F)rm
zq2U=dgOrJaGqnw&(a_%qCxv{yo1C#VsiAj5BpO{89w6=P#z@>hG`B!m4#SC#MBdL}
zJ10G<2s;)2@`S*>oY>pQ$j_*&5G_Y=wG&HpFctb^*7B6WM)yPi#!spM{G^;0tl?Ru
z<Y;}l_2ZJbR9X(YQ0|*M+CNsM9kl{6Lt~OsI8`%=j!gd3p^2TRJxf)ekKH29aPcf2
zD<il=cMIoYSb-ujH9E0yH&YzCCjoV!LwLek0)DU@aP>u46=9HlY{G1c@>%)~D>^L$
z$d{X;f3oMkyzF)(Lh*Ft-}JK#CC?Xhw9o3c7+LKZd>#kAHks7$Wip`zWdc1u(O>7P
z9*w3K9X<VQvo7dLtrj9t?iJDnx8xw6jCT(A`JqfXmRb{N&zCK~ci6T<8(syew-g9b
zeKLo+#D<n+|2V|FWg11aj5L_%fB6b@nU{RM`^V|Co^%nXqE}LHZ`D1Hh^60n;}SHS
zNnahkdrLi>dUXR`J-=FLIKOxW6zgG~e~nUvG|lC;`RnHBU>?N<V%SUi0zZ5=Fbkn%
zcO8B7g$k7FBR>nz=h^J`(L%fAvRl(_Ms#LPGGrjy(Luwzg<&dD_&j?HgLdCvck^mP
zOQ8EVlw&;Pp9$${)ou+YxtT(TD!tZ>MYrRY&*;w~r)85NPb8Vdwb1C2=a#}>uy(Kq
zK89T!426NGC(a1733%@HR6T<Bou~O1Wm|r6?ej0k^{uKO9BR`f+Nk%}(Rb}-zt79y
zDa7>d8*04?RV#2k01auCtv!aTLN8P?>SLNM=K5Drlkqmbl&~-9shIJa<h60%cBQT{
z%aa0G_DZj}^+a>Er)tgQZ)@c#zRL)TFYULuee_Tr{^75voHXnkx2eyzjSxHdV%Tbq
zo@<}9+dL0sG>0t-LT;@Y-;fyySpHQBJCD530PRITw5a!5`?hP0lkF)eTi56-;N5cw
z&##uNC|mSoG>n99&`9llWszs65Png05@a~A3oU|%W|_wg=4N$;&;CWcXz(Q%-?6j5
zz{yAh_qr?m8ry5|?UMPn%*w6&TJd`A77N%RW?GTQ&roIH(WZkQ7!k@#l(dwb=m^R=
zf_K)EiLknAOD;n@!&!xv4-Dr$PINP;b&`Wro6eCd62z8j8K#6Bf3X}S#QTYT%}wO_
zaN8>HEdjd6uf-jDX+ugpgd>hy!ACxGkX{FG{*LB~xg?-E?W379B`4^QuP23B9=>66
z9dKo5G>2bE9RyG?Txc#&CrhcrW<e)Qd*Fk^M^?raHb}ALS57ggc{cB2Tuf5W>MUjT
z^PiNkgd*gTG3a&caOn1xJ10|$RzVX%9cc5~xXwL?<sciMsV!cUoMtG=uzaRZJ6~nV
zyU6|(mOgjd@X-WLuzGYNy_i_H?5WMM8G5z#l`JR!wA*4&L4@jMhOL^1KmU%-O7dO|
z6(paGanvjYw<xc}Q1+}$tG4XUe+Y-)`N%0UOW9cYW_eRrErnXPh_{Ci6}QJoBA#{O
z%d?x5^G}#Kt`40ilj#O_4EMUSZLiTEHy?=Dc1f9(5niv2u%u|?X$>7LxwZ(ka~Nix
zs5=JSC0HKVH_c+h5%EC*XUUY0s&q`3z-*f12NsSq-v#qRhE{#_wnKfp==twtGqGI)
z#uku8%pD;dhuST8s*Cv9sl(p2X7ZrkHC;;Tx0e7-5eYv3np>_#!J#B)@J8I&tgAGj
zUSGmE&Tw2S$zX@xX$E4vJYA*cA{p5uz`|rA<$PJe7bGAAn%Ahn*Rz3B7f@1@xmgay
zs_=2pvVnVu0Vn2CBKaoRg3p7$$tFp^gpADZh6?FrGnxamsK~yF{?9i%b!2BiFT5H~
zbdHJ`wIct!P(yc9^=TYe2oS}9MJL_}{*n1pZEeM+sX`b&JPIrm@ePJ(kGt@(+Bm{$
zUsq;U7U@WtKT(m<(VlA9KY%-xXFafL!_D0tI4ivnE#0k}s97rMds3ZR??s*_U|#eY
z((s1|se?%-{h)T!QE`=V!8y*T(TX-n=kfduPw{$;0n+%UYZ1<SwUnGHFm|JO4}Suj
z7DUt2fKMhBxf&p5!5KTMWoIhfEJm`~bJ1;YHX6DL4GUJ;c<(z-mJJZp^^2ZzmL9_<
z)m?)!K?8Sp&Wgqu-!K?Q!kkGrO{%MhkE`&x>W6)j>w)w0L9`FNPtN+Tq{aoUX*z08
z@~>iB$RnN2ByjK21Ii}qtyTxhX4gJMA%F-cd;L3(4;c?DF<P;)>%X6ClXvT~-oeY!
zNSW|Edg#h}KJ)TH{PhR@)YrwP(l*%GZ@t)>$su`xIJRGOvPCovxwsO|wcaj_^QVsc
z*ZlbAI$Qk4akf>X+Gfqdu*7+7&xDnDRK14#cU(I@%08d}Ww73;s{LN&5@prex2Dsv
zoomvgV^u3>OAN#_GV29Qs^2BvGinCn%n6)^?4efmWjcH%ijq77@BrH^X|`E5_@Z83
z%v!NsA6L+D6eI7yZls4s;J_+}p-O2czG^IT*f=Zn_U%_17`hs~2Zm9=P^hCwgN}s-
z&LZL{MEc?+UK1u0Sc&1!374^kN272aw0X5(U00H*^e7xYd^{gnS+O#M00+uA$ML;U
zNc=@nb;a1xc_4SrQf@`@o=M}w(e0OiZoQ3K#uh@sVXuG3^Sya%ScWpF2=#ru9#!%I
zgBnc{`f+!pJGK5ST&vPybeweF7io_5<%9zQ%j%Y854z2O2Uc#r;9YZpuo5!i^?PJX
z<kc@BVy)~k+G`tf?mxp;Ei2b}U=z&JI%f|;)x;#z-LEt}BEoG&qv&ZJPwBeC{@?l4
zpi}(6BL=IcrYpBv&^+`z8W!<gZ(ykD_#}`{s4M+c<>(grPoVmZN~!q#>9Vkc4;Pc>
zLR}SiW$W9axP0^CWNd+6CnS&rt6d%EKL0b*I1bxCQuY7yN&NqlnfQM@P5;08=A66L
z!diKR+H*(1)~cVcoWYfe4pFxmg+|6a<TV4Sl^^zvq~=*!7;4Nl)IdzMV=|vxS((Li
zX{9~Bz~LP}8aNWFF=AJufwRG##8ee&SKFDhjN}$gVE51Sn%^HIA!j*|%adws9V_ak
zP0~BgaPe<3Y3k4L1)cpFkKr{rHM9mHLCTpN%yn*q#=h3S3_GtEgoGtrr(hJV<h2zb
z7TbWy>CK@+R`(;v1y!z7;q|mNimGn7rS`3fn2rub%?+*d>xXIPV^Y_(2f!J-+rC+I
zFl%cmw1$P(zBg%T38Qy5f3LFi$BDT-U8kbD-ijP#ZgvuS%}WkPPMTO<<IQH~qNV&z
z9>S)fI;NPHSSAQ(u5hrXtj!yCmVPD(TP@SFajDtb_P)867`}@#;(kmV3Us)>og7iS
zH)~$ykhlhXILpH&E+A|LL743TXiuFxn&fawthvlzM9tRhvDZ$UyXUL1cJTWrw%F;I
zu3+7Axqrf|tqne&P!S|E9s2m@c}m7-B|b%c50bj<@eQv;JQlT61Z`v1NVymGRptzQ
zq%>m!u~Iw)bTvqnC!hs!-LZXPWv#44)Tot$;>x;|Wvy;(>rJQM(F8sh4}AsSNXhHA
z%nc2LtpX#7mCjrb)Q@W5ioTV$jQ>(<$aS$^)sOEsWa}2W;Dh;bjCXZ^01a<9+ZtUl
z-}wm#>?5nd4Db)CCK32w6J;Fdd~fJpy0VpQ!1qF$=F!a=+G(B7c3X=sBDNFK6k6v)
zC<v;Kuh4EsdMCTr3IIPcnr!qhezpB)7w@}a1S~A^4FP+bmMo8bN~5nnXl6q!a@GTP
z4hRB;nCI|+aCK6-p@M1qs`?gW-S$AA$jYU#(dT=Pd`$KbTec$cA{5~1T1&Ot>3-$@
zz;*+?BLMc`N-bMRprE>q&G$DJNaxq>q~URx`Ea#U%re(q!*LH;Dqfr%KDdY(Q{I%4
zjGt+eH~lhMb+>;PaF;RQMqG<iW-9}TJ{Mgq_qJjGPfE~20C2z61B5own+HnAZwSJ&
z_3c!T50I<(zXcp^DTA8;;<n8_<o7i`e!D^#jKyuFt2+Sz<nJN4kJ{dGcPBaVKuo&;
zbn4ZT+^?IdKmng@!~k!SchG{@27WD6>Fx{l&-cHhYG)|xXJaHB!2t0;`<*H=44gRl
zf3D!?(7BHfbeE%5YEzB!YI9)CQgp;?gXhYg<AQ#~c8-`w{GSl@sGE>o?>8)LXMF;P
zYCLct**SrYtld2D*ptM&KRE@zZ58VI{GcV2hTRzmgi64EyQo>kU$n)O>{WoC{K+l&
z4cR%wHClxg8)I%YTGsUKu6KPw_Ou}ZsIHabGP07&=-Vi!k7EOuieZiLI`Z!=j~^My
zUZ{Mz(ETI;rJWI6<%AmoCOMG7uW$S{7Ws<wCHd!m{@`ZaF3zC%hrrQ&7IkUPH~}`E
zUBH3sPp2#pOF19SUi@&gFI0sjwZD5X+t&Zz3Y@wmx8Ov6vtP*~&Mzc=JzoAqwTH^F
z99`R5xXS$ZO+a_{XmU27)77A&2(PgKWvxMh?#)caW#CIxwgkq~j}QbP)kfP5aLRU^
zbA1<t^{TK#0!vB}@7RCm)FXLX?7jpnj8CEi)#h0geN6&y9zcK$Q)SS`iE6O{W*V8u
zlceofZ`G!mveTk}xN#givMdaTD3^G|y{n~uud1qID*b#d=J+G2m*CcckPL2;SGuqW
z5DxnJibcTw%`PVcng@U-zrX-b1&1e~Y+Hc8*7<6*_^ee8-+HBSM!shfG+aVgH_|w1
zjMQg-eUD}luGF-x@#btc$pWn#rh7+{jWsjAH4}P0jdsU}X3ky7A`kXp^`=4ZQci@&
zOLG+jKeatAb`QBHSs9yssJR&3>#hB|eX)xBzrk+ZiBkZN7UW$12kNHSZa)P)xx<`S
zFZUh%(p*pa<Z;p6t1h+E7l=;>1ih9AJ0^tUBb7awBz<=)!HCx(&XLCftEgy4fD5q6
z5*u%-eXM=2TVbOyOf{1vWdFf)Z46r+>N{j)JKDw`=vdH^KTEklvSJ?g_X=!8u7Os9
z{XaHUU^pHswUn<Bz<&0rw7}#6&!cmDBGXuZDa0(tAXe)>Hq#U|P7JFY40z4Zl~v9Y
zV{HCAI+KLE>CuN=v|JY^U!|D&dP*aWvd|JAK{Z#Zks@M}w0G=nH{6;QFmpwsM(uXZ
zT3D8}h6q1voV_8Y)H)`gn?`!y6Pfb~r>y_CM@%@r@lCEDcCswj0o#=7dU~3<xe1tL
zEe^n0JJ3-9cIN-0)f2%w2eHS41$t&yFg+0w`~Dw92b_b4#mg>XRM6K^!@+!5SC9j9
z<I&&FZ<+er3q3W!_F8YLQi9n{2B@Bg*3KNUbdy;~D8K@80*tbCoN5lPaLt3PD@$%6
z{jd5CH6_-BV7!^gLh<$OZiya9Tkms|<kUaw^&8a@^tZ?Mwr0)FsitS8S6PHmIMoN9
z1~9+(I0T;SiES29XO97MXA*DzZs0nwa!>?H&^lVi2+zRcn!5vZe}*<dZEaYkYEAT6
zKO)~9lDKgWmpbyb(QE`6W>EC>JKA&2Q83`(=E=zO|0=MLmPWqTVjkW+jy{^B^S$B0
zD19=$_X_8<{2_IyTK2946j8EkSr|dFbD4Wb)uSl=<XVQVJCFzUfwrfIlc(bhD9WQ~
z7SU?Zkr-(Xp_*uV11!-bi@9U(S6NVoA9eg?qYxf5U~$`=lJ%}Kg<Zh98p>J$gM;Hz
ze@>7S0gYmdME!uHd?qTj699AeVE(^g&XvEM?vPV<HD+%0p&dw}TtEA0>j(XW{`;nr
z10*2xKSNl|CiJbizq}LYci9X1AJmx<xVm@Oa0`ah1e;o2j?so!6%(GrX3i;L>;YmO
zZg(G#10>_jbcZ|!7>&jy0d(HD*w`fZ;~dT7XTS^}L1j3$09u>$ZsD|8@%)SOEuWK9
zlkcl9^;q+s<&=}Wg8q*LdD!dQkAXLT-uW5z33{~h4?0F%Mv?zGHNrnY)cs`pYtizR
zxQJo0c@Y<bu^ssEF^RNV`tHwv0v$<*^$nBLZfpt>xc2MWq%bESA}$~#0r#5&+;8#M
zDS*Fll8HaslF?{IHFHsVb2$ktm+bxHvCw8TU5R2=w<OV&XbRdC6H+gB7W+CPAF%^)
zEGn4r-@tL@Q!HpKPgt345m)SD)Pk}={{m(E2kcPr<dnOmmF5WC>h3Sc(qH{aT7T5_
z@a5?-vEHayXhrY7*(-xfbixS?>I&2H-D0zsMQ=AQ>xWXaItbc!d*JTQ?PX-B%@7oP
zg#4b=gt6BSPrUe#%362BpgqTrtM~4|$r3EpFzWQtVY1u59g2H|JgufOH(umbw==;g
zZ$R*$YEI!Md4U=ADyANNitCdJp^xtFtmOV&U}$B$N6DZfg(*hd^}Hf`dP=W4Ahf~-
z6aeVa3ZCXVTpV1)GVYMf&%jGP9$4yWU?%U>pJ^$c+3I#5d&Tb3d(<D7iDZwfDvJgx
z!q*j|sR)!lq9qSd$b*3WNBjcX`C&4WLgFz~mRk5N`*yv}EqfO1wS4BA!uZC9o<8kc
z1kF2(iw(#v{iXo_;lpz84fCkMUx^fYmWC9RbcE$0ua-~ZX%qO|p1lsKtDf22+5HrZ
z6aL^{6oE!zXqGn#0++$K9%$boQ&6m*e!|C=Y_0ccRb@MMObLhP)X>4d&%JR*vF-8V
z7y8wwg|L#eLzZEUGn`pe4QD{*@Z!~b?HfZ#txLISkyQM(-z0|y3+;7!f_z{&Nrz{?
z5W@4HkvV9ZjbBa6w+2V3F(FJm%FR7)uOKYK%Y<WLLUAbURl}N)!rk$$5Q$iOosG~?
z!2&~h3>{QAcWM_{j1?MUQzOz@_!&Tpty?MZajVVA5t8M=gJ1yraWR>zqme#Fb1S%S
z_r=DqkIo%XtWJkT6wUdULnlsaZ0Ya?Y0(~hdf9hF=g|cOo5z5aWZrOPbhRfZ*XT)>
zqg{#W`Ut&wrYsGajAp_-Xl^%wC|eF4eoMX8SIWK>x)oj%ZnVhwl2JV}RH>kLB&)Ry
zw(!;Ralxa7FE7WB1$!RHXHS=0KqD^c#>chgv|<eRhTf@7)O*tmM&#c&u3{=o?=8I?
z+x!{f8WS3tVDF<}<2*4=%fDvAbxre6fk8!Xy#+>mA5FWQR7=QRS!?uNudKg#oSr(C
z?KUMGa<|wgdS_{}uxO$e^@TN6AG#GGdBvIK*kAd!l;OsYBUZ1U@W7{Q5&@Nd$Bo{i
zl0z>Md^tq>^x-N#+vDzgEPrM%F#yfOZ6pPcZ#_az?SD|?cT*g88mn}Z4;ZA{0)=uN
zrwk<v8>2>HABu}K*(SPlvojq5@>Qy{;ngJ}-{=>N#tyz%`E13Ffyxpd5vlnEJyXky
ze~~YNGWmkYxX<!$F@6Z#xZbN+5@bJ=jcmvis02%a&#RV=D)n~s@z6bOha;p8>bWbc
za`qrDV>HQQ9eY^uazWGEG&3oK%K&4{cxcu49LLbV!UcH3$C0eTVt7A!(-7*glhOV#
zHI=I4|A4xxz9TxxbhdEu@{bB0Gqds$mNHbG_CNnVrihJieB^ds@43&V2I*<Hbeo*D
z9JNC7(D^d}tnqffd21ulFMc7pSsylvAzvPR4LfHH`vV*jtRv=diN#04Lsjn+7AYH{
zHw%k<9q%E`LJ~7u58u#8E#|sMzlF{VG;9W&XyD-b@V#h+qAq;X=7-xW$%l9hf{&q6
z>D|?7$|~Xd1O%jVJ>+btH%cMOzMyuDrYog{Y^z&hqc$af&$KE2%()8+4e2})<SWLG
znk$NSh~a0(uTjpaV;y)=+x4Tjv-yVD_W|tG`Sv-HbB_-0TAIDSM14U=x%_oXu|d#O
zDQiJ$c*PvA)kUnqXI2UZ)a}d$jL(y*_p#jSWMuF46n|QDc<}|Tx*9yCs<p3;r7RJS
zc5rCR=2U?G9mv<YA!?;_A0prXcuUw}(3SkBvOMe;^S!52q09yM2axG1YBub!Qj(?o
z?25SOaxM8n%txk`f50tQPTJ?Jt>4=%PV<FWFV&X#RW$tIVj2;_J^1W#P3NPa1@HB7
zYk4;HMSJv2ztm9X{!-|>t^fGR{85P1tCxb`D12dNn4x0}JGov<L&tcXo6gxf@=sNp
zuR$5oI8p846Pe~ePd32P(j8YEeBK>JSP>nWZAtTtMe3toV7fP)A<M&5^=qHYW}W^f
z*sr_2Iq+Qj!*T)o(D3(3i-=>hlCRTP^`&!)cCRl5e3AQnX~Hl#*N0C}C><h(EP^bX
zcBnG^ioYjwKI|fie?Fp-J$vmB(&bjIrFvR!G)rC8O`f)kQJ+6wt-=3@Ohlet(M%Aq
z=w{p7m<atX?1kq~spW3{Q#5MJTg_I=>T9*;Ix^3pyPUXbPPH7Q^0&dr!;ku3Qf%@q
z*^t-KR`ibLg6Q3A)fa>DB;E^7`fxBNRbp*>%L2Drx2-#_RH5*{!zIqcOKHM<mFBm7
zlBZoue49hwRyLml2FTZ6A~=H7%iIQRa2SbJuQmMIIu+BMsiCAhI+?YJcg@CtA;O_O
zpr4X{dR;z;0s3E1`pH`=`tPyw=iU-u+TBs%6(cz=+egd&4q#-XQP91NX&LFf!OhsY
z{RBBs4z<?-I`x5qnjYWt!T76+y>#4TfSug|M1EZw+#<jDGNUKV*CM-zM5rS;&Ttq^
zpH<x4j%x%S(ti;6m56LnuJLLTK;cpWnE5MM0{?%-yJYxl9QP?rDr}0K#>#(^7%Q-B
z)YR6Bb*kv-=opqhljSuke`|2h0uR<m8_$(NAOqj~D*kM3MKdX;J$`jrW_=UbbjAcK
zY;eILO*mk^u`<d4p01%<9eFtD#($I!3;;U6jtcM(>wv>!niO$=rH|y{+LR1VCN<@H
z&@@Ldx<nG5YX9*>dZdAzD*iF^(*0WytzYUIETZKxwlzR7yq5qbHq)8TlBTMkY9B8I
z7{1;#p~|=)mlQPf;{u`hu+9u%^Ep2TlXG>i5nK(lSNLVJ8SgY~PGLkV&W6O4JqtR!
zLrNr6;A^gH3SYsy=JwKFSugY6ASa&)lVU!2snlO)n6G{Ed02f>!f6!U1pxQ6MBY?d
z9f4KSR?4;{Y23_DHIkvy>*Upfani$_b0seLhM(9h$5Av^Q))>8K3V;bpA1~fqt7<B
zy7D4I+&;0Mo$1o)!uI1M%R?w@0EKD*BB>oFZb&~fsdg;0<~1BUBBz=mdiF}PLvIDA
zcis{Ib3j;T1IA0kVsoq6)<Aps(24a$np=L#A>m+FjMSw{w5F#h-EH(<U9cDfjfk1p
zD$S!hUfaW2`EXlr^>>n6JKO6LLh!K>02?8|aZK@#`}5}tFoTTGPK7q1vR7<{KS)%<
zSuW9h-!TPRaH80tlW7a`r(i4Sc?J~(?D-4wM@TYVyLL+`D<KBsi4^1$>`D{tQF?dO
zTkO_XzQ5$`A9Z#Ma!P8Oe0jCK7F{!00n~L(nj|{J|Fme2SQ8#N$@ppa$u79OraBJd
zxA*nMFCyqJkbT<<<v26<%;C3cEp1;l!DwjtH`A3h<&2qe{)MLzGe2j2sRBF>+gI;r
z2=hM_R5>cMi@+S7+(BMpXLClMK$&kn)<_X@Z%M$j6UzLhmoADbIxT3jerT{*c-E69
zY1n8wT6#D<698RT2nXn-BoiVNlg)^fACA<Xg(V9~0pNB;9q_O>#6%;H)dT7zS^3XO
z0b*l32?8!P<345|0FS$)tJPAV!BT&%q}p*bxf$OamiP9VHTbrg#W-Mg1ib|A{n3@g
z_D=#Oo_53CF(2{uc3U6zT74YL&BNcVCq4z!30tg(dpM@m^gD7xV-JT~_YOf`d7?2H
zCEy_`L4RATOiiG!ojfuwODgiToT8-X^M1u~qg|Zu_(C(@xppwp0O{Bkle&Iga=Y1;
zXk5i(u$oDQ00g;>3V4;z705Q(cYgdfJ7qF(E4pP!K|yr`D;2Qs>GfgZO;o8MkGjt!
zXV&rVAs4S<k(~l(j_b7CKfRaI(vf3RKthow_0@-Iys%=g3L$Kf&IATTzARF|Ad_X6
zurNK(Uu0);7gqfam?Ix^f?!T)T~ynAr-8;6q@M5|jkWb`!3Z}6ne(?B<&|)CFFz&n
z(Z6bG^s95P-szcNKT5o#Gmh}sSPu2_7j-Ka&bJVFa;%WlPchIG!*ZHfJX!kPi3)^4
zI25>R$C?5I%NGV|QQD1Paz5?G^&=Rr-5vLCS4}cwJ_|Z69{_D*ib#H76-wHIsuXkG
zzUg>3g;m_6-JP!MMj+MzW&~g>pCBu;M|PJ1rNe$?THE}*DVP{Hv|z2AqncRhgsV|*
zz%V870>=jMU4oM7{OEJL0n%3Le}UQ$?pKZO^S`{nj?ht(+xXS?t?SFc5bI<Scw7Zn
z|A(oiE`A1ukmb$(&(!YSUmlUR<E{Xg7gj3L@=ja;wY#YBE=HL92g_JC@@NS{KNeQg
z^gBO#^M%49Mc#DBZFI0(7iFSh>W@bMWJ!mdDzRB1kQ3uN|FT5@!aMpc=$zTP`D&bV
zMVVFGSiVlyKii}KyZQ5zfQ2*31r4+C$GR7iEOKCntTEB-b(TT-i&~Crwke`{O|KtW
zvL{Wh(4I(STXg=hCG|PiwgnnBD~JkuO%5rVtT@o$3pf2pRPo#CQ(g}kDYZnov8w+E
zm0jQ{h@9`l0n22(Py%E7scH3i@zfW#z}B$we5+EG;6`~H;6P+1tS=c>1#G<O8zRn7
z&7^mxzhFrfWz^G3m1^mBo*ep>$Oi}c+#L|PGWamRH#@rYW5Qj%)-=Dr9Wv*>!b;4&
zS|FmeZNO_*?@8idOgFo?_zNo*M=SDxN%kLl8r%-vO?lB&GwvScI|+8}n5q;QRphRa
zZ>c8>b)dc0pn+AD*{PmGM!Ue@945JYS1)%2L&U>@hp-XC_IPBd#KNWEnxM_Q!*QU<
z`;Lz$Pfv!A{dy#c+@tINabebGsDY*f&D-L^e3c#GGWI^yi+++lIS+P>dTv~M_##{)
zkJ;2U2ymP}!oj_#r5vTHh%j@XX>vF~%twiMF48Xb`o+vB$KBP@&?22;V=TAy?II~B
z5nKF`2jhbk%*#LB-iMTILkZXVS$uR~9@ys@r&M%TTG)1#aneXRfX1bj^r<)wG~E_$
zOc7Jl86qd0F5|s<+vo?|pt&7Dvdsdt?hGD0kb#W*Ebdw8xjNEEGOm+Moo0J`;8){>
zhfQapSck<z%Od0RSbaYLHw-K7bZRDm#n$OyXUW-T5MF|@0l<UueDWuAL<c#fi@t>8
zA$;iGaK7Od5j-Y=Zm$UJC>vv~7%VjCJlUJ2sVUjfwsQLR`pmj-cw_;ip~vC=Li$?W
zLYmr^|M4Nw`-}n+nC@Qvn6zH#P8D&RQSd(fev$oY2qojV6?x1?<6(D5gafv)?rR38
z5x{-kEnUEkXp<grP=GW7Z2_0dZE4VN;AnSGx`PxV^pLW9QY-oTq?pujOeh}d&wW1r
zEjs-7Vrp-hZR>N7?+2!XxI%;C83Zdy?N2-gk8>zzo9L;cUNf#&JR+Gab;`=hP=q*x
zip2ag0N#In5&eR22N0PSv*HqqrhuteA+N!XdSl?yHS-Tq4wB8tcAaisr#u0d1jki7
zRq&!}n;VaJO@_Y(tQ6ObSEI*DIQoD=eAvfOrzXD)Uv8}?0R*7gESf~e!DjS-dKx`r
zTHyMf{`^kj_sh>yh&}<!E4md8{R{S8yp*IczfYkI`-{Cq++Em$o>0opw#C+f?f>Ze
z9{5)aqsv(2TB<kR?Qr-qj7Qf%;0^Q`dNwzh0MZhG<@?sdi%~oEq|OG~W9d22G^M1+
zPfU=^uc<5{H?Vo*z@?57m0$1y7ll%8J~Ue-X1fMi-S(LXUlOz#(~>@2X7ja_BciKZ
zaIIt2k2-r$vn=D%V>EiXbxpP#f5;<xW#aIzeL&6(p|MF`MUEr29nYWd*0vdYlpy?K
zyUVUNl7sx4I4_?vsQn5&kHV=fhIJRT8tS>=5Jo!T-&nzn3(m$;`*ZZeK4{Q-F%5qY
zwojw|+reW1;vqdgV6Xl;PC2Q=RYC8P)&?lB$9%O^%WTEGV-fA1;3YEy6nb4E9JQMl
zCi?b?r3|MWcsPSy&*N?NDT&bjG6d%gcq#{l&^xYUezsKGkV}2<%fTZ$>f2I8UA%~t
zbkKm@ZRBS5<R`p*c)PLfm!aQgqtgAoHQ#1C^m4}*Ec_Vz?%#IGa=LwbABzzcceD6#
zO_EOh&!0SYoY4oKRP8?KV9AQJa3So50;mc#M{U4^2S$fVZ(*<JXQ1$JNsSy~S0Qpo
zW3XjoalJ=u_8oT*NWyqcsr?tCNAj?NHz7<G&Z8gh<D#MS-(k-@P0KA?Lb-7TFs>V~
z4u^YD&kEIOOD?ofDJ&DT1ws+G2fs-tZ+xJ0x%!!CG}eTW$NK>HJ8Ma(Oo6SU@ZEOt
z0~TkT`1Hp8-p!gD(WiCWe{cgm7`w>;BBnTU14~KGh$vdvNd_j)4qw)LdW)asPmf9J
z|7PdK3rJ?!6=l26n)l7-Vbdkcv|LHIuqJxn>x0+(lBvvJ-!UwDT6lQJyrH%pRxH1G
zS@(N`(k_?}_im5}Uc{RDG`yc<O&{(Zc%&x~9s_Gh7cy1DPy{rpWrMcQLa1SZjA?on
zS%x`eqQtoB7bU};XYEjkmek!77q^NolhXSqE;q(zGO6qDX9UV05Ir}innbqqEF4>Z
zr{Alz5zn|d+rD|z<xYHEx@RiqY`nriYxHVD=xx&0tkLoY<r&bn@f4<k4$+J6sI<h*
z{T7UUm$e&uWo@Efw4>U1Tti4mwTdh)Lp}_R+y>Njn&Dqag$bo2zes1cFYUAWY|0k0
zeT9+ZV%Qgw@t-Sh$h-G_!85!ocZn$H=TO1Bu6*VVBcvy9jM!#R-qfY^rL+c1j~mjV
z31lO$t)I;G@97`c)5q`$=%-C&q>>Om)dlCLx-;<ap48txX)=Uq`}&mS-coVOwq(mm
z^GbTWW9_lQ0D0;D2AJ-94g4ADEZjS8I?IYP%E9k^fG(1D7O^B}mrnOxmUGz5--HdM
zIy{XH9nZgS0&!xb^WMNu2xkk&SP(9ZnG<O3`woQ+3T-&WNeD{bXj*=tz@awI=3#%L
zxA3?D`xIjU^0iU)y)JhKiV`N-3XX!WMlEO|Nb%Vgu<2@pX<jeR2ZJDtuN-J5XYLM}
zxM)-h_=|QSa%O=(E0?G)X*}SW*`T}2h=ij}C*UG?*I<$iluY8xVqU?vdX(l)Xp`Y?
zLyo|JVZmvF68Ad|-Dlb=u~fJl8RlW%HbvDgqt`?7zb%AFTxc4kmjy*N2eBPA8O(Hs
z(UgUvy;vuL`Z(xap-P`tP}qlN$7_n;EyaXxUk3FW`K7L%Y_^MLe6SX!Dn^of5WeZa
z-Xne5kdmYVziFqGr(#!paZM2DDE_y0$uKM||9>myyrP=gvoM~EAc6}U2v-!ONs)_)
z;tj<hpa_ZuL|P(UAe7LgNx5>l(!`N6$VCts5HXU3B7|ZH8Bhoost`g)Q8ADNL<lNv
z_F-JJ=3!oDtyyc{@{n_qbN<Qy?7hF=_t`(s8$1Y2Rsc)+e1BQ+N9EJEgJv`$G3q|n
zuJffH{lUHz(VjU)p7~$GW{<01CU%;fOl~Z?*jz10Zp)pa6#`xzAgwBAzp>I$xzo1P
zUE=;&n|FYKhci1JmbfP|lKF=DgamP!3!j3w$d*eTzsYIWBGxH=9y=15s4BufG!?3X
zYznWgep{$$uBp7As0dD0FU_;O9NnAVprWu~-ZWsft+dDx3D&S*1J;XCgUU<f5<inQ
z`OY0Cr+b%d^|ln~zkJZuA9P@`6MuGip`AEeJW(7UI4Z^OEz>voC?>y|$Sgvi-?{RN
zJXkwdcVd@xbl(>Zu4a*q(sX;QRq_`4_C~dM*CJF8bkb-;NjFJU+=v=ZL=2U&m3L2E
zMm-c)8<RkBqILetOj>ZFMKG6&<+e1c?GP1uLzj0-?!G4GmzPxuH63j?>1cG7K3ozN
z;VQDRIToBL*Jd}x8a1WN0*Gn~T6sC|?uX*YU?X{}`@ZW@72b|Y0(NJtg1le)(BYej
zx4H*fc*<Xc&ziA>A?RwyZRp{Girkc_1DB>VEO^27g#ZH~R?CTF3nw?3)fc2#2qZZI
z@aTOt1Arx?+c_!7MB(9BYS1!(L>5R#>KVVu_>)y>_rNNWCAD!zcZ5z&cl@s=EE%at
zHvkhPf{so!*?4Wm4k!VL4+4Z6h2n&bh^DaF4z!QCe*XNC29UOeTxJmyg#W8-EdfYR
zkDhLbrxD|^bwHW*!n0ZKm4B+VHnoDW+Q}k2c_(e(e_<XA%TD&0Jk6>$N2lJo149th
z1pZVjI(f9W?)v=us>z<U)n&xW#`j$XtJ9GWv68CiDi1k5b*ONr!%xqs`n9eXH!|<I
zCw5}0@iSxKU)Z1t)3MP(XK!SOt=)sDV{rMX6?eSNp^&chq+h(c<d?wolE~t41$GqQ
zyT%qHfD~vse2tC?Y=tW1Q9*3a_a)j$?lFQp92mD>IOPfg4GNn+pD+xpF0(yIV}je_
zVoV&H6Qz34j_fKoL=CR1Xu3Bc)Cv+Vwe68^P2=@%HgGV=UNPw_6^u1sptqmEh?@<f
zECrkf;ca`og`LO22T0N;f=+_i1UGNnhX;A|+><mUTWfuFeBBXl=cv^KfFH1sM?`?C
z<b_e-%Pfs>*b0ZBd<^_UbbIaM%z)akm-))wWpnxK&pVBl{g>{6d`X2nHq?0iOUrMF
zU62jXjL>r5Qt~O4ajji5YuG@W($!D$ON{w><K!H}8^24)#uQ4(3CNfu3mSXZ7-;`D
zr5$`K(2UGN(z}3U)*}xl!ZA*mXN#tQk89|8iX;KzF2X^CY)FiSSEGI)hdcq{Y6zeg
z|BEaA0#H(ik%q7%4_ybW$!0;3&`0o8HcM+^uY!}O63GCXk`nH-5*!DI6{{&Wdapq!
zaTR_(8}JKQqO!R;NGuJKWQCO7h`t_SyN<|w%;FY~D};Vkg6(M#>Sj)S8~CMsctcdn
zYNA2!taM7hAM5F!T;1D`2Oo<)%UZiq+cFmAT@rnzG}I>o*Ld|YUEjUL(2MhLtmW4X
zLMad70!FV-<=4i13jw3&P0|cF6)AaVID_7WVLy3*7FPb55in{%gY=_Kv*04a@xV(J
zj1gn3%%{#M5}oN!5qsrEO-DfNI)aMyV#n+n?N}BlzJ*+ezGcLQSa%{pe9@n1g_T%C
zk3}lKsLiGOfNQ=MbT%B2TU$33%kS#=l$B}0z^SZZ8O@{7n4JaJXrUqhS(W@J`8lUN
zESv(&O#NGnv8)mu9UVcdj7z=Z32;B+CcYtx+u}iW|Hx-?7xdl=qct<_FOv(G7dVsh
z6%JJ`qiIM9>9?iV^G_#fc43`UC6TC3d!K1Z#`hHSy%(jCEF69?KF}mX$&8Gv3*c87
zx!AlosPgIS2`E>$GP@#DpTE3I8i~F8HwEj800KJZ@#G+n@cnin_Ydp+qRymHQ?m#c
zh}lABpU5`yn`fRlE>Q2UOj>RQY0;OR^k6_rR+npm`AJru3fiQ-N0nOD92;leJY1Nl
z_|WW_Od3XzGdvD?afk)buE;b&W!dsPc!EbhM=Gjj70ybF1!4z+id;K#!+!lfsl%^I
zGzyz$8yP9=7Hfn-h0ZY5uWsX$uMR(sx+SB{=WE)QN!2P0J&6AxkBM?<ju+t}?kB{0
zCqa<KM1^MZ8plNXRZGn1;$>-8fxnA4FYXx&B3VQhzK!)F!s?Xx_LF^X{DSo-*;i0c
zOI*A#pBtqbK<7lkWQ3SU)yPToB(NtK^~j&6z1DIsQts}S*OVeE=sV2$pL;re1CRoA
z%^8XHYn}Q`0KWbtPrW5qcZMwG%AKX|Ea-mcW33q85c1*5YW(y8-PasQNUI6DT;B*u
zW`FO3M`aD9<h5b!dcvZba3y8-q<4HYVeCHl*ls87)b*xoA3H7zhK9m!G$`>V!*opH
zTkNCz(<9?#-;1Mim26x45P`3?@2J=7N*I%1p&g;XygDGkhayiAg8kW&HURe6ewF1*
zt0rI(9SJ%hVSDLtcV#hjq=yEl3LxGN+?TrO#xpiA%kaaR#oHb_7S%8i2mt^(ZTrKN
zDT4?;ciO1;%czp=!w^%#P3gQh3*|+a?O5&NA4*n$X+0pZWj~fiUd+0p1r%Iz^b$W{
zH3<L*w#er5gJo_e#bL@Ytm3fT>%mSr$~{|VVr3Fm33N^a_7+HG^@(fAJC%{q!HY!W
z7na)e_fdMfBIMHaes4$u>~Kq~0)e@_{(FjAK~S}cj~kkDpa}Z4S!oT5yA#PvVkvS&
z#^pe?(^0ffvP~uIaw4n(eE*Y%jqh~|rt@talkojx5Cag7eos7i?+8Fa&nk!U?U}cV
zZH@2m)LkWcIh27L&$HB`35R7>jJu|7k7i-YFEwN?8Zc<c(2iT{(RQZ}+NlO6=u_0Z
zz@PE3CUN`qRV@?<F0n_OB|PSJ2_x+kEo*%v2lX93^pxG2_9Co&b(g05n7MHpFo~$S
zRE3OJTz117qy6jDjsipNR)X$pQda_<?3sELM)oK@S$Jsqj;$orhL0NHs>AbfmZpB^
z@Ny|YQ9I@vP)Fv};9V2=9~l+dlt(uJKSiZu{y(7=@X`N+w9Dc3O(V}*-pu?QV~(8g
NjM;@#<)*Ij{{YAe+n)dc

literal 0
HcmV?d00001

diff --git a/docs/documentation/server_development/topics/identity-brokering.adoc b/docs/documentation/server_development/topics/identity-brokering.adoc
index cf5ca925192..cce77497105 100644
--- a/docs/documentation/server_development/topics/identity-brokering.adoc
+++ b/docs/documentation/server_development/topics/identity-brokering.adoc
@@ -1,4 +1,5 @@
 
+[[_identity-brokering-apis]]
 == Identity Brokering APIs
 
 {project_name} can delegate authentication to a parent IDP for login.  A typical example of this is the case
diff --git a/docs/documentation/server_development/topics/identity-brokering/tokens.adoc b/docs/documentation/server_development/topics/identity-brokering/tokens.adoc
index 40c02c6154d..69231487b74 100644
--- a/docs/documentation/server_development/topics/identity-brokering/tokens.adoc
+++ b/docs/documentation/server_development/topics/identity-brokering/tokens.adoc
@@ -1,8 +1,13 @@
 
 === Retrieving external IDP tokens
 
-{project_name} allows you to store tokens and responses from the authentication process with the external IDP.
-For that, you can use the `Store Token` configuration option on the IDP's settings page.
+{project_name} allows you to store tokens and responses from the authentication process with the external IDP. There are two versions of this feature that are slightly different in their behavior.
+
+==== Identity brokering API V1
+
+Version 1 or V1 is the old feature and enabled by default. In a future {project_name} release V1 will be deprecated and substituted by V2.
+
+You can use the `Store Tokens` configuration option in the `Advanced settings` section of the IDP's settings page. Once this option is enabled, when a user authenticates using a external Identity provider, the returned token will be stored inside the database for each user and IDP.
 
 Application code can retrieve these tokens and responses to pull in extra user information, or to securely invoke requests on the external IDP.
 For example, an application might want to use the Google token to invoke on other Google services and REST APIs.
@@ -23,4 +28,44 @@ In the broker configuration page you can automatically assign this role to newly
 
 These external tokens can be re-established by either logging in again through the provider, or using the client initiated account linking API.
 
+==== Identity brokering API V2
 
+:tech_feature_name: Identity Brokering API V2
+:tech_feature_id: identity-brokering-api:v2
+include::../templates/techpreview.adoc[]
+
+Version 2 or V2 is the new feature that is now in preview status. The new feature manages two different configuration options in the same Identity Provider page.
+
+* **Store token in session**: New option that stores the returned token in the user session associated to the login.
+* **Store tokens**: Same option used in V1 and with the same meaning. The store token returned by the external provider is stored in the database after a successful login.
+
+.Configuration options for store tokens at Identity Provider
+image::images/retrieve-external-token-identity-provider.png[Configuration options for store tokens at Identity Provider]
+
+The application continues accessing the same endpoint inside the REST API to retrieve the brokering token, but in V2 the call uses `POST` and requires client authentication. It is then restricted to confidential clients only. Besides, instead of using the `read-token` role for the user, the client should be enabled to retrieve tokens for the specified IDP alias. In the client configuration, **Settings**, section **Capability config**, there are two new configuration options.
+
+* **Allow retrieve external tokens**: Flag that allows the client to retrieve tokens via the brokering API.
+* **Allowed Identity Providers for External Tokens**: List of identity provider aliases from which the client can retrieve external tokens.
+
+.Configuration options to retrieve external tokens in the client
+image::images/retrieve-external-token-client.png[Configuration options to retrieve external tokens in the client]
+
+This behavior is more aligned with other features and supported OAuth grants. The access token is passed using the `token` parameter.
+
+[source,subs="attributes+"]
+----
+POST {kc_realms_path}/{realm-name}/broker/{provider_alias}/token HTTP/1.1
+Host: localhost:8080
+Content-Type: application/x-www-form-urlencoded
+Accept: application/json
+
+client_id=test-client&
+client_secret=XXXXX&
+token=ey...
+----
+
+The endpoint tries to obtain the external token from the user session associated to the access token. The database is only used as a fallback in case the token is not present or expired in the session.
+
+The response in V2 is always a JSON access token response, in which the parameter `access_token` is present for a successful request, and parameter `error` is added in case of a problem. Version V2 follows OAuth 2.0 specification in this regard.
+
+V2 also applies client policies when calling the external token endpoint. This way, administrators can configure them to enforce extra security to the client and the Identity provider involved in the call.
diff --git a/docs/guides/securing-apps/token-exchange.adoc b/docs/guides/securing-apps/token-exchange.adoc
index c6a86624507..4fa6c1cc67b 100644
--- a/docs/guides/securing-apps/token-exchange.adoc
+++ b/docs/guides/securing-apps/token-exchange.adoc
@@ -326,7 +326,7 @@ s|Authorization  | Verification that the requester client must be in the audienc
 s|Revocation chain | Not available for access tokens. Available for refresh tokens   | Not available for access nor refresh tokens
 s|Delegation per RFC 8693|Not supported yet|Not supported
 s|Resource parameter per RFC 8693|Not supported yet|Not supported
-s|Internal to external Token Exchange | Not implemented yet | Implemented as a preview
+s|Internal to external Token Exchange | Identity brokering APIs can be used instead. See link:{developerguide_link}#_identity-brokering-apis[Identity Brokering APIs] for more information. | Implemented as a preview
 s|External to internal Token Exchange | Use-case implemented by Standard Token Exchange V2 and JWT Authorization Grant. See <@links.securingapps id="oauth-identity-authorization-chaining-across-domains" /> for more information. | Implemented as a preview
 s|Subject impersonation (including direct naked impersonation)   | Not implemented yet | Implemented as a preview
 |===
@@ -552,6 +552,8 @@ the client making the request to successfully complete the exchange.
 
 === Internal token to external token exchange
 
+NOTE: For internal token to external token exchange, it is recommended to use link:{developerguide_link}#_identity-brokering-apis[Identity Brokering APIs] instead. The legacy Token Exchange V1 is deprecated and will be removed in future versions.
+
 You can exchange a realm token for an external token minted by an external identity provider.  This external identity provider
 must be configured within the `Identity Provider` section of the Admin Console.  Currently only OAuth/OpenID Connect based external
 identity providers are supported, this includes all social providers.  {project_name} does not perform a backchannel exchange to the external provider.  So if the account