From 549e95f02f08c4e073f2eeec82ff436b0fa1e756 Mon Sep 17 00:00:00 2001
From: mposolda <mposolda@gmail.com>
Date: Fri, 10 Aug 2018 17:34:19 +0200
Subject: [PATCH] KEYCLOAK-8029 Documentation for Kerberos cross-realm trust

---
 server_admin/images/kerberos-trust-basic.png  | Bin 0 -> 31433 bytes
 .../topics/authentication/kerberos.adoc       |  41 ++++++++++++++++++
 2 files changed, 41 insertions(+)
 create mode 100644 server_admin/images/kerberos-trust-basic.png

diff --git a/server_admin/images/kerberos-trust-basic.png b/server_admin/images/kerberos-trust-basic.png
new file mode 100644
index 0000000000000000000000000000000000000000..b78a1424fef9abe831410c3c41ecd3799b6b6818
GIT binary patch
literal 31433
zcmcG#byQr<(l1ODO9)O9f(Lh(AOV7V@L<86!F6Dszzi<IgM|>>LvRm+OMu`KAcF*l
z!3P+IyUBCTE9d>rz291QUH%yM^scV1s;=&;{&h`+rn<sIyr+0rSXd906kol@!n%jV
z!n%dVxdXHm+Xrz1|DJft8F*@gY&?C;-L0{ttw0vmv`WtAw$`t$&8__0`mM#Wu<o$f
z>lk<%sHuusf}FX`Z)muDon3+6SXkmxzOLq$j@F*E7S^`*E)w+n&F%EG_Er+~`hsda
zYOb=@cJ_+??$+A=>N=MGj+UZU^iq<v;=W=417~Ybb6Q_#Cl?PfUkUm@e8qt0n`Ul$
z+CL<ojuP~L3uU0DNh=F-x26^365_Pv5fY{q7Ukj<6c!c`=Ah-{;T7cO;pgV(;pF2N
z6W|dO;G_M=A3ZRdyOoXD>sRvs7z_9&L2u{j=_<y}?c?La<-^Yfa<}E?6%`fb=HcV!
z<KqM<I6eGaJk5PMT|5~6$>Ei?ho!r{tEWB4h4zM{xdq6}Q-U6l^lufMUH^lvi^o6A
z1Q?9l*W8txmy72{rGFBtsr~Osot^)K+Qaj;^?%Cy|H;@x$IsQ8`?a+P$jjXlm^d4T
zo1t9AWZkXJJwfg|Adu5Pt*B`S@&tL<fm~^2W&c=>mPO6n(%$8!k@Zh6H8n9M7Y|Q!
z7fWlUR}%C9A1-@)D=|S)K~Z5Dd0BoLQ5jxdIU#8wd0vrMGNQ7t<fP@~U-A93?<<g{
zm$S8t=Rf;e{b%1-|F-XqLpZwvBfqkCxA(TTl6MC=)BaIh%>LiYBK>dq{iCndzn4Yk
z-}dDOgyFuK-v2V)|7-$$=;rZ1oEP}=AMS7M0{FZ;;M@dnKcRs&gQcmeBe%A;c71*A
z*19SuCpWx#ib7-VM~tM8?mYi6+5h__c3=|=_Wk1IX#4c?<Pa&4J%bfEu)emoy1FVM
zAt5a-jTQQR33=YQbf{4LvvLj@`EA~@ab;_33oD?1b93|e@81uiMhp!N{rvn+PEOX>
z*TG<LKtO<|rsnqcHU@)PSy}P*_1)Om*xA{+y1Lrk-QC~cKRrDKoL)miLrY5w0)hDZ
z`}g(r9UL6Ie*N0p+dDBaF)}hTFfb77-5^%TknWeoqN)9hi;JM3p!)iH9UYy$y*+Jh
z?ep{VU%!6o>gpO880hQkcXV{<>FK4Wrq<Qf4G#}5EiKK@&(F-veE<Ia=;$aUB;?(@
zcfrBIgM)*|$H&vt(_>>}H8nMV{q<LRdU|YZECPY}`t@r{N=j5zR6|2UV`F1mTU&g5
zd_+XV^768}x_UxF!q1;So12?MLqqfO^2*E0=jP@nCnvqUywudx78VvtN=nkw(%ReG
zXJ==Ni;D*a28M=)%F4<X7Z=CJ$NT&Ho0^)CNaT+nKZ=TqR8>`@qoZLk*wob2moHyN
zM@O;3hpVfrKYsjZY-|jLLf^c3<LT*nc6K%~G4cNW``X&t?Ck8r!^5z!Fl%e;+}zxe
zk&(E#I5ZmF+uPgH(xRfG;^E<Od3jk{TAGoOQBhH0Vq((O)fE#HgF>OKtgH$O3VM2a
zy1TpKaCmELYkq!ya&q#gPoFX~Gu_<WK79D_`SWKB3yYkbobd2)cX#*B&d$QZ!f)Tc
zRaI5Fy1Hg%Wx2SxI5;@i+uPgP+E!LpIyyQgB_-L}*_oM{nVXxNnwnZ#TH4syI5|1J
zefw5fS=q?Q$l2K$1Oh23Dap&rD=I1~C@5h4HR#y1A}cE^BO`+qJcJcCj1@e1u=$%N
zdEEHxl1BML;naS`kL9j~Ey<jj+hN1Qzc$X$nAyGal;Q2mD~$e^rIpoH%Q}Q@!?JGq
zVpzwoUkB%Q4a+t22NdyR!Z|aZt*blhYmXDgL_W`GmM?7lURB#)D8j<>WLJ76t>Zhl
z)9Uw<WWN1Z+EAq#_x^X)5#)uMkA}X!T5PhilJ1iSO7^$?Kt1nY$wcF^MA?zvmA*?P
zO{hsOObDT;|HRU;9K2jn)UfT<c(!%ovKX+04%$E2xs;SJ8u4a(@%{_0`DGC1J$*4L
z^OR`z#YYn+Y#==SzRQQ=zKK(ao0vxnzIlW`0zUpi-U2=eC2tzwH<T|?H;*_pH=j4e
z|3`v<!|gvg{2PM*G2H(@dHx5te--$D5d4dFJmZF9kFa_M?*U2=J?Drg!s3ynU+*Ws
z{ms|#Hs;|AEh0Xw$23GoR`FOo>W62+5NXu6XktmM=ogn9_pgJIw}5_dY+zJCL&P1x
zl+Z_jjsB$(`1+?2p!q}jhX$bh(-G+YZ#(`sZa4FEL-}900aJoQ^Z$_B|4yktvPlE}
zaihh5k&Ti3Mj+tDA8r3w1ek<>vB-Z@?7!F!aJoN~e-y()g#0n(zi|7X_Wf6G|FA4z
z8mVWb2w36$_FjC4C^^pe7=62h=jXQye^G3F8$>KAIUt{WjC<e<+DPMjLiBBP6^ma5
zMXK?I1Gk<C`bd=$p?%&g@vJ0o;;!J!v;N&}OUuhCYaG*FZR>Kz^5k30TFEHb^J{z^
zD_kZiB;VMRdDi`a^7xOvcgU6^A(XBK92VA1!h)MwN_kinA5P)Slfe`z)E}zv@`+wu
zRD{(0f@F0U#=px>k)-fVwcmu@BD(j^j5auP2NKBB^(*Q&V70dTzR5Xf0t$sTnQfnV
z%yQpUnUwvcW3B&oXN*$WrQjfIckljEGD@9ZWijybU_(A?UsmRFE$mU84nD?0L)aMO
zn`g?ImFaef=pB3^k!r!-c8)rjAO6Ot(hI2(6Q2nJXQjv<X?`fEN5UNPJmTl-b`4|1
zegzQ`?G`VwmYq7Px)rRajHd;f_?^_F>oXg^(s5UEc3!i7t!C%0Tz^3HKCs09(0?GG
zVkUE^r6MZr_}6q8s;!l|(%J9HLmx6=Djw0Jb8+z~a0yEF;<GyZ1KTU*)?C|H!Z9`T
zSMC#oRNl=c{p%hl49N>^`RoH`5kAWlHBSeYTxHp7y>+WqP}p%|J3^QIwU-x0<=)NC
zlP?k3$7nfy_v5J@FiYLI5h?&*a=UeAv6aIr5Fr!sqr~TVgZt!)+};CO=AiJYeGwYz
zOZTYFzf4Q<`tEGCdH7#722EuL`mTvyiRLC*pK@L6RxTYX?)K|F2wKRaPNx^UUgz`=
zJQfrDsY@t{19^;S<|w^jTQITd->s}c-D{q8>XkY+n{HCJ*3qt!F~4+aW@cJ(l$<5S
z)6LL8bqx%nJew_u5EO0wC8NR(Fv#6&)}s+vg+{gQfx@mdbf0IQXND{ix)H;XRAA4E
zE{b7;>{Z!InVfaq-kGbcsd&J6m3#d=@)tQq5DfY5w&?q=_2XaJIH$>N;xDILI@90>
zNZL(`pc2y@jl{1S6aJZJ&r-MV`qa5EPiqGom=wJazVFO`D@F|PpCB9r^UN+m#v&8h
z@br_{_POB%#t9_HOAZ2$PG%5uI{GvvDk!`wRt;%w3L~;R(8{)Lw%>CxGKvUx9o~xj
zQ=0I4$Q7zPisG#O;zxAUS(xl|(n5P~^xb6TQel;|sf+Jk(+ue&9NkaoIvncek5OLR
z8CGM=VD^>bYb~cbQ{I;-nb>W%ITtS$1bZ20h59FR=u&R#?PSoD%<wH>eTU#Lc{h8n
zB{oD=mNhgK`{&`+A|Hg!oI+0+<B6WADO4SN54f9+be8IFc3AUV^*h2sjHjJ_$9q;g
zYdSqj2h08?;`l@!RZ_1*Z*!SLT72lL^w+Y$0t|FLqc=L~Btl<oa$O={(q62A09*Lv
z32+&umVZmoU#pS?48!(QIC&$fB;*~OIr6z7ds$|sl504U>>_mw0o7nK^AN;$(2&j`
z0QM0YW7O}=?z`*;d_K!qgF$yGUPf;85~ZI^m<AX0w=NiL`xlZfH^VBwn7Su3oly6m
z-GbYCIOF0jJ=1-TD&3WZRq|ZxC=xKBPg?~-<K6^xRg6mBMrZ^eGDfPSIIX${Za3?Y
z{R{;Onw{1@ltK*}3YOM6!OwnR%xN~sBu{Gsy2|}?b*LT?N;aNSzQCB6>rW8T!9Y^}
z@{i?FDGunNFDo1-Pj5N@nR8b}eRGR)iKVOk4{H4tk<FYt6stJ;jxWCR>uFHUGJuWK
z?erg&2Yo`qoXTaExSzCzKVSrN+?%{_9D&1%?j%<ZX1QFf&~(0o(10M8M)D2<Z8$ZY
zMc7-v)k>X+v7h?K%}t`do>e3j=P}nSpl~DQUbl?sH#Kbl{<Am9<`if4f^;rx>pfiG
zfX4Qa4yK{xC-|;0^Zk3|-3tg1E6@liH-mCpE&DOkM+<h>_j$V~59(`-;cL_B3@B(N
zPcPzg&&MieK-uhfG$d0J-Tr9b83ia|8)?@pvR4)l(v53BN2cQ9@%;IR>~~1pP-Ol*
zbKWnoMf>n;rwsCG(!ho5C4{kgmsYC+3NNs3!ojX_cW>$hH#^dfm%Zi@m&JDbkq|Bc
zc~G!U#0E)`Cfs)0_51Qhb*~UiC=NylL{vD9I*PQon$1Zn`5@)$jj?M*fW>nQGRa>5
zX?C#jMwxQ@XQ=;X9u}gsv=*<o7asW9Xvo>i6~Wwseyjh%Og|w9x=+}=#Y_1LY@d98
zYmHw4#dm_oPw=4Ro|uef&xveWAt=S}+w8Iz@xF7X{tUMdF`w8`vSB<S3-~mWYUwCh
z|Cva&GjTB9(!uzM5KID5AeMxjd{K*cWNE>GiCSXp;2^l!oJ0_V96qj|m_S_n%}&_%
zn^K?SeA3*_<_Q-BvpCpJU*schSI*!m^brjS7+z@iT<|wejopcG4gq<a7X??s>)cpE
z8I;2JHxzmtq54^OlM2!p!0x-&#?n8F3rIAS&%5XIh$o>dSC0}_OyE+Hmd9rfX%~%?
zUON<RPp9#bmh?x7YB~F~fSe`s&vk|NZHYTzBg}0*Raf1UWMi@n_)X5zz>J&2xW$v@
zXP?oBKWs3)5{o#EM70>^fKG9iqAl{j${S2Ml1<(Ju|p!+tk^UmR=ZY5O<}1)vPFo{
ze+B-^Mm!WY?evhBK<cfrj}udLd4@E6Ju&a}%pj`tNH^dIJNSgr9?Dt4)dU5BL_U9!
z;xM;<Hhh1WAqa6azw}FEsk+Fr2BVc60vjp5)Ww4Z<)%Mk1KS(h%D|t{nflvpycJ}+
zv869U-yAVtg$&3G)!9Gx6sw-t;W9};mJhHK$id@>hlFGAUUK$ugHPOz<1tOqZynwI
zrq^*hU`xKshQTK0l7<a~MD%d|Mp>}EohGZ!pzV9)rfM-!Tc3=#GW_hM9zP?`_cB5O
zbs>L8a&s@;Humnk2IvlxX))yi$*&C;y$0438o%_r*tkol)g0$BYUVzxdusUf;7F%Y
z_Oknt#20z$P+d)_yTG;?<~%mL;V?!wv9F8Q>x12@CI&M@1gGzkwY{4#Ae&2Ncb%1q
zf0~Uvf5lq1MbE%sHFFSKxlln(k6sVfc}h0-u@+Yv1~U2BthCG;7DGdIN0!q@2MY3#
zLtQ>cEFH<AKnGbh3rHNZWTTjnh-|BqH?UI_9}wLtFbvg7nnsG~86L`?5?CRy>yn-X
z%g)9PlH@`vHt^SzfM*UnW}KOdQjyxO6my<8%iSER5kE6rm+j~~C`3lEJT4)`G_73F
zw!T?Yo3dwOt2@)q)$I?meJF{*cWW?aZkej7v1_YlC!OM;gCfsSy&@^v0wx5K%FMPO
z-@p^%*dN8lVbgVG^TL@4u0GJJMSmWYT*jgsnGS_egw3bw`_CbDMJqzHn$6~SY53f)
z;LLi6pXMq7rY2X<ly)QaXFkC-@**Cx!DJ?nCBu=E_4#ga3d+)`GpVlHK8i1-BsY0u
zG;&t<wWTVabfW{}qJEK#^m%gg-92*2jC1(!^q+_H35WREb}3Vat{=Ydt@)Hyq`m2Y
za+3_BH#8MVYJ%fB&(M=a^(g<})`ZI=KmrlAPffnj_nKAyEVe9(=|Hrt<T!dvt9GPQ
zum#E>#a3g&e2RjB{8(egJQYj7H0pua2xV}xRWGdcW-41<9}r1W{h+s&=5K=@^LKdT
z-#-Zk5^Ory2>$FCG|fdY=p@9%e6mrv@)I<ul^&tc|J?<VxaEG9AgY_9n2qcYq}h2V
zQGu&qEbA1EOGDw3?0A3b3tV5t%ZD>*_6Y;{^;3mx*K<N?C6kw@kHW;Ws;n!i@Jbc6
zO%d5MXRRhrGmDFib|@sNt`j+VE=3j_re*-IOuI<=Uh(AxsVtP6qni1yscgo>AGdEp
z<tr5X1gVCB)pmX@o(7W&$&(m8xnKrcUPiTKaA;KFEG_4oH6qFEV?oLB)27g4e6v=y
z^zn-NruV@DS0+H7Fiw=|80(^msPq`ASvymfeHAw)-8&ymC@EL9qh4x@OK@TY4mk1Q
zs9-al2(mBOmDpD`(rtdT5x;!TnTQSr<No<oiMJ8kzN6OL3kRXS6QJM1tAo0S@@ifu
z9&0L{PRNlayxHN|(4AI6^8Rj7HRxpJHxJ|rB+F8#iobVse~=6yPL*@6EgfxyahHd1
zKcUiJY=!%9=KV(1?7r(NZe9{4{Y~-u7ljUruWm1#Aqlyl!rtdl5~Qj*)21G5GXo?@
zM_m?z(&cP?%x|sN@y1GUU-MtZxskskJzYfUi7l$3U>bSXEahp{s&50~g);`mQR0V*
zQTo|IU2u)$tyI957)T&>_lepZo5HUUBYTc5@hR@xp%-*FzWEA;OJfE(IrzF*du$!)
z2*DGB(>_@;5BD3Ht=cc=3b=%h*cy9?P}{r@LR43DcovFNRXAF>9(XD4?svertHsAc
z3EQs7LI{az%sggHR9I!*()Zv#U>~3PL9W#|ocv9LwFIrMT5p;$cBXqJ8QW5dr5|0q
z1?PRC8bnkx%kt@f^K<xZXl`6ukI58A9K@@amO8UQk=9$b-j|w)QcAZJLEA=hBekJ@
z^kT&qK7j|_*ubWRjc<ndru(+p5yWmA6VMZ-c_#hT({joopK-uh0n{|KP1dHmP&me=
zKZu4?<gICQ1=#j{6?Vg_+$EO5%Pxq1BNzTqv&^P?)*;3F<&U7$Tl|#;tw^%d4ZCE$
zt>Sux?L(6o7BGUj_??Dhd*-L)sVPhl=M!46J<+}9nrDe-s1!D(sQ`|es3Q4dw~cp<
zNk~@d^a=?@6e(zo-3c^+GtKB*cgwbqW;{pkkB88M&)D>ACWU($T0(1`u1vQB6#^#s
zqkEZw5E)N%Mihi-E*aNL^l@RJ@>?o%H7;G1#Wm}xK=<&XRgIcCFG|@7e~n-v0ze-Y
zf39Uc<(vpC^;u(`u49Q*!%$T|N35t;<?6^^!Zft|O1=b^90)WfzD|694t`E0gW{9C
zZt?npjL;o>s(x?rS*}a3tsOU96F5lYNNJ)Rb&WnV>ckFmb5-bGW(-YkDu)d?R2%Br
z?1dIS-d#9v-WZWmf~7leq&6Yw&8`TqRCY|$E;iRUHfTx$yHx@YrZ+asKq}ToN1_+{
zi8XsnhM$*+uNr4OVy&ex%`e8V@vi&c*>O+hRtht9vP5lip+9)oQ0TQPcl@LWXXVLU
z;3qr!auF~rW}fWXU&c&<)t|x`o#yCb&aFLkP$8(Ck;N{rraM01S%vTg^STmbFUw*>
zXG>?TkMqPK%}~j-3t|vTiR*tvVDf1g)^^9Hb+NvM&CFNLIu=v$;P0FPtAEOv&HLbV
zXF$>X<sCc~T_+vPu~LhN-fuE)Lw((!Sq#adpIs<e%k7$rn;X!$tSg`t3JNo}V+k%)
z$U=Ab+Mug_?yxt7k3O>E5L4ICaQVLQ?ikVTWOw(S3#;P3vMmelZI=n0(U1HKu*${L
zi?%NOiE$$ZY%awiro|w1N7+|uKd;KyNXgOe?EUtX`*W`&DDxs_y1we4nY9?G3_wl6
zY1t#FkC>hE?7bz(nc^pwwqFZZJ{2FIos3uRwJS%QSv{^hE4<ua#MZ$o4*#7Ew0%Ej
zd}naIhq=-h{-lO|b3Cpo>kfHIu=gt=bmN!B0A8CgJ<jGUpG~hQqi@`VC=C^m!R?*z
zD(xhT{07(AhjPYA{=b-wF<(%c)jX267x*;OzkVX2Ja+T0rs2k3>@M3CsvR^|Dz;4{
z%6Z`I)3#3RpRQuaha>UVR{A@<zl8TM-)-j~$PNQgl!qybA;~r}*o}Y|P2{c^t|}8B
z>_2Mx&4)>X1@f>h^xEf|@{Y!n3kB@<+i4Vltk{1=kltWff1^A9N7(8=@va*f?xz0@
zJO|INg%`GY-f!B!O)4F_&JExkH}7b$JzqWFG<?|G`(dj1dH>VO-m}`+9uz6fBmCU&
z<OuCC3sKS+fALC;*qe8e5&G%}JvTqmA(TYs!wdVls-Vo=`Q+zHfdg?tPl&%-c_aqN
z34R_3vKr~jPe`C@U&0%FJWPNXkDs49)cJkFtbdz@vXfrO>34nzgE%cT1Vm#01hPVW
zD{AF0<U4L+Nk#!V_KIq!dE4@An)H4x3eL}a2+*Jjd!lyy{xRE1-~519e2>{ks&upz
zB~+u@N0OiD)vk5&WY}Vp({Yu^^^R??q&o`rY3owsK%o7ql=F)cCk_pY4^dh@bYbz%
z;)q~|XDlexCc|0b#|Dghr%Ha`6C@{{F`P9>DMu=A1rGd#b4r<Y4_*j0b(SIMn5JF`
zUb)LZEP)DBzI1v3*Qai1@ist=TQmEJ#}=}F)^}{bXJqgWkeyIc%iUS!snTH4)VA&L
zgoK~1WLop~P};U*Yw1)d$7WkSw3?t2c^;TCpMc6Kd~iNVY^#?nJDYV5r>J20?1RVW
zA7BJ=a(ZN2zqB6_v+%6h{diJXQuoDY<Wlh$q_x10sx>QIod*C8+5pqQb^f8So#z{E
zYpBQBTnXfY!EwHe7Ie6`r3ihe>zG}lsuwv`3{n!b_Oi54FkvbqQ?44tW(IkjUUKF6
z98HI)m-yn6-P5l}@C7g=HE*?4Xg=FpANN0)334gG&yMAJ1xctQ@^p5o=IJeKZyv2B
zBapL{F3p{&C?9UQeDCWc)sfa=aj+95Lu5ZUSYCEUm0tVm-p&VlhJ(sH;K+448pb(0
z8VxvJ4=4EZQOMMisRnb~D8z&{S-7pbDPU<}M<e_2ji0-g&)FOO{?^$*R#~=|os;0B
z{k{5y&x+3`gcqxfvck9pnapzweJED=i-%74)Y7_#wtFdGNO%Q!Uov#+4|ow}G|ihd
zj}{B3>2d>^=_XuXYT7Y?v&~g%u&jOE#d;)q<T+lo|08DY3d=J9;iA!$8JoJ&SRrVt
z`!W>m>A+nX9X{gIo@h|jE?hYF!YR!5%w$V~l4z5tO_gPo$@pCkaIk;d0@oL|KiQQ$
zxPXCXuRCx3UL|Oqs*4PtL(PLmCdUZmAGW_zDX(_&30AJ0E*%<BH#I>=nYvAow{{vU
z{3^Y2C&=#Cmqdfh4fDs0a-|xY_h*hZjF8x6a?_HK{h&{zLHU8nIJpP5bx2mcV#y13
z2T1^IDF7)iwT-*X{`i&%J8PFdpZT>qFims8YRvz9>0^x?h!-+nN8Wo<0ODq5sR%q%
z%czm#3qU1OwI8{)2Q<q{USC=7k{fN7XG_3sE18S73~>$s-$6k&6zVqGrCt$`wKdI^
zx!T2vdp>q`zWS`!tUl+TKBUL$@|ExFX~^usN+-yPE%4qpd7G$z7#Y5qNd8v@|M@PE
zp|<YM?>l>6H9rN5w(TTO*+5XzmAWErb9=<l(Ht+GmtTacVHy*x$70v0IV{AIK9$5%
zDyqOez-|2>Ukx*&k7?>3S0QKB^fE-n-sDTUN@l0D&YA18lwEkRijaKODAx=0tXV8;
zWfuIY3BD$$#7JCZ?3cR$Hj#3yWRzu>#G!c%WY@K+<=phezu>|?J1S*HJ%ji0&HBdX
z9<Z<Q&#4F}lD1!JwJvZhwgs@IJtA#enQQvGdl@HE6N5?|+pctBoT9#ddxW>-K3yV3
z5VB)ahvclUookliLDYXBDN_YidJuImXHB%b<3i4`%L(waUAL$>TQ4o!<_>VMw}%}?
z;MaTGVfXT)4f4LsdT9ix5rpmH#@>V0zv=z)eeK0k5%CZZYA3GzJqT8x5=!y_XRJo=
z)_$7L4+-1O<?>#VH2iu<gfS{VU3(p@Z%e-XT9G<ndFJrYK!=nQpS11#9QUI!_-Dy3
zy_F6IfBT1Al)d|Ya+nPW8n-t3NX|zdKb!t*?FHG^FL=FB-{(9oOb5L1Xx~VxrXqs4
zPM;A`&tR>-yQa=2MU0KAdUGT}&lYL-)jq?mBL2y7ti_3`mvvbuI~dVmx@7f^@;-1C
z5~qRMes(cK2%qLYBVFr&GmnuB(JcKoQasy;`pY~m2w|k5EC@QiUvYTEXEBM*nUFG)
zV;?fb0QQbk13_o&_>E9}iIQ}0V|70v%W<dkU9xlFsqswZ%U|An@|(W>fHc0O)tEhI
zET<k)9w;qW<wWXddTGL_Q6csj6z~4f=%{vz9qr!gElc{7=LQr2!$CEh!cbxigHQv~
z8hvTkdfuI@m-2uWd^IBY`WUkD)pXSw&KFjq@YGLQA>{%J8MGlY-<ymkm!#_0jN`zY
z3tjqrWw7nyNJ9@sG)@(;3?vsXWVN=rp}Hz^{nvBEhUf|>+rr6CMRa&yljk`~7Pr75
zrPDq*?;URr&u$7Rxg6*<Z4%Ocb~ka(Zc>=iVfH;7qRWH}$u>gO50$)lZA{LBE*EMg
z5p%X}LB^TlQX?ESQji@mjUQ@w$phX&5V{vHQE<Le`VJe9k+ZtrU$@rh?56un_Pf~i
z|N1=b68fVB*j~VJ+tk?;dQm(?JvN@1JZ|y=Cqenv+!G5Oc;%PkrinWY;G7?2+<yt7
z(-!h%MNjIC;E!S4x#3M0AYHcIZDa4hknCTO->E;d8+fGz6(P^IPbhO90$^IS1`6C$
zKc#^|AnBmjuS>bTaoZOez-Z~(GPvFNQ~F{poNR;RTp_hLL5Z=*T7;45*2x+zI*k*Y
z^Rm>xl-dv_rIfhar%R0(w1R57ZzUT-{Dg^U!Kb0JOI3%_8QT#_{`V><zTSaVwiVUu
z$yVG#+*u)!l%uSb+M^GpXloiM*{@bKsd(B7-0n#KN^fM835nv^B*t8r!$wlUHEpb2
z5Ln)D002{{@5V2T+P}z!ackQe*6u4fj1~J8N~J}|8KP%=aI=~68A<q#oPH#X1j3om
z0xPX2f@?C{XgL=;B(*lwDtPF|r$aSFP9nwZaP9&!WZ4^4OsABFQAl16*<3aW4iMK4
zyQD%j*7jTa@l#k#C$3q(*NJUwl4XWl$l{yH7i^ZlnA9R~QZo0z&mKY*tyzs;0(;m9
z4O(x0*^Gp{2x*^I<g;U_dK4AsSe}49&kJ-&DNrxdvCE&;OF$YKeoQLZ-P(1F@_VMf
z+RS9BA0$Adw4`zn016syhK=Y46-v<H9#sR|uLx`e1j$`yaWFs}S%aR{`OJUadsfBR
z5Ne$Q(qf^pB6~qHw4^)6=WQ6gyHdBV#t2qK;P3i3=OX-S!yyeY5bN}IRL+@mD1NrZ
zwyuItRVSXA&1})v){4H$;x;G1RDsv#S0`P4Atyq+_gUc@<MYkMdFskc0uIhgrfktW
zU{IecXU+R^zH2b!=P&4heG%{pUiB%_pG|6SEuM4chtZ@YqWyK?I(bmN=^9lEE6GRs
z7fvM`c1PG5flpMlD0SXQV01zAW6zUkqQh*Ow|){Sp&r#4JW_#Qzd7mWMAPVI)}+wu
z)^u0I#V)#^8~H#-darBN+?b#a{KhvYcRSB_{=SH6FI<9*<z`2lRvBW+s==HwYKimT
zl+`8~44gwcpOi%|e!D+-=b=<GV1q&Z{)&0V@Ev30b8W}ZzGyt|NCrfMnxdwZTkPyW
z;^>B-J<PpuAd+~7x8!<ktADp5C}7pDQXfUSbS&L27jW#Gx;)R$!S#Xt0bUtsUbxq~
zLYm@|q|Qm}3B7CdsQ|+L8F|pyRc<~PqO#R{VzcDqw3A*@-Nwke<WzeK`B1%hxVO&B
z_4#Ouw&<8y_vZ^48WX8Os7XPixMB41V7%U<(ZdGk$@G&Sbpn^520o=}rx(TU<*l|R
zT(zUs!n<!WPJMb0*8BKK2pEs&Hufn^ywnlpCf1V*FXpH*r*DYc7<<b~g0X-#3+{;3
zhgX2SInFrW8>i^}ZX!%hOG?^=uzhhXH9Ot2;ZMY4$QPdcYO>b5-$O-e%qu3x)ihsI
zk>Cwce)^8$9rwyG9!yDa&xWq8;%rgOa8{v}bf#Ju^7D`wEQJr%NNE-Ol;l_9fF5uz
ztY~OjWvHh1oc28;m0R@&pJch47@miSL?-;$8dyxKY!CQRo$MMI`?J#|V0z_EM_ja%
z>g7dVPVrQtFqBeazd{tG1)>q}rIV_<TDZl0Z&C(07BFUfFcK2gY4c*Y|9C2Ya;J`$
z8CY7k+qeDVnK-mCF>EaK1Fe&=eeJeEWZO1T)H<imzJR0Uy(d(V>w1Hy%6lAylCczR
zO9zV?x_w0~Bj4CFO^W_12;!4UB==QGGFoj(9~p^$-okHV$i|=TDm?Kk@sQs-xN<U-
z5s7W6OqHLq^|^^glCkp}7a)xsJhixax>utukbz*)x70(VY|M%B!pW4$$w!bK%B`I(
zarp76eFK@?BV#$)3yELv2$6%I_*o-Q<5(15G~$I?1p}!)X<PJz&N?^JAGu%Uw@<cB
z$`zj9I=JE>YKs<sjz98!bw!1?4X7nB<3N9*71y3s|NM+vRca7`k~#&mf<xZ`*wF_%
zcp<$zh<eo=(lpEbcd<g)W3#t@qY{6v`aS+{3K@80VI%VLzMnMWT(_!@@&CU0=hs6m
z+a?cWzSS=F23JyJRJYc%DgM5}A2L9+zhWAHaio-}^d!In#ebH?e(%qj@<Ss$wFqOf
z$TB=v!S|B#ro!T{G){DhSyLWOT2$ZorT6+^WreYy>et^D(EvaUPdJ{NOxQ0im)cd2
z`@5Rr!#TYDC`{*fDkLvyT+f3EbJDZF$Nhd#|Egup2YXQ<>wP^MQM8gOwGRXfK-3%h
zqUn!2+rC`uamKM-?Ob!g<bAp7F1)9c?9_Y7w)r9zoN<0Yh60#~2OrwL=J@792^&XB
z^kNRTQM~%@wdv#XcS1KN#j2J?wV(E5<7Z2j>_>TK>y`#<iQUvV*hC=%!f?z!T3_z=
zUU>egbNFkP5k2pMxJGqwgU>r2E};wNz_<Stbi6&q%|>DD?qaHTuzzs+wq4GTv~nRv
z{-K>3-0aAH@FCg~2x;V-$(`*2gKLhuoTK*mfNkIE;X;BIAMJnaGW)t+g-mR39e-lx
zh<463HnqPh*!!jY_s~x`(DM*#_A3L-dfd-;g`ktpMyelXyLN`OQb)U$*xoxRgja#F
z<UXd6s(t?NvpY`+%*?zfC8);3R)QN@n0Y1apmz4#(&yuMm0if*8%6Du^_Jehi#CSd
zB1Xji;Z8scU>B$c3bL;u-S@{ahHfFQLm-DE*UW@`e_XHH6m@+F!8AjTrmyL6p4`~r
zogo)m>U{iqh5LH>>>nj0HqFTEO(}GS)aBJaaIth_?;&@@b=LLS2xjZ7{RU<Ps&9A(
zVb>tE+4bTQdiTGQ^+V2RuGh@ai=AfIj<l=&zn6e84WvG7Uq{-xu6wTwOAmloSBa1d
z8mz<t$f?;i<oy9qkwO@R*}Yzdpyt~z0%;)!`rlR$r?2-Qcb_~0Dsm9(W>=MvGwy33
z0lMDde%HUYbo&oihjdTO{Pk)(-h+edo&D=epjSJ3{Th#t8gS?W+Dnd<!Rv!-lF{%-
zS#{<cHCHrrE4Kh)9H89S`+(@zj{7`Rk5h0v`EE3dg6%&IzvjjO)ipOh_zk##GsgH}
zw9j;mfHd`{_^8?#<$ivRd34<kT#EidXg=J5r(O#~E+Bx;{{U@1T)|TZuh*n5o3GK?
z@817S_NT1_a^C*W27I7jfBPMo`+xLM|HJ-|t^ZB!4Z!BVmjPj3$pq4ALjTPF2V8ie
zq73<g+$hIGm>mH=%`#AI#Ul&VAOSmjE%mIKed|eWjQ@ldWe0!EZy!1nx1zoQIaOhT
zhyL1Z7Hto-obIfRs3ElP`h9U*Pjz$CVERJ=Ih=Q&foF>6+wnzgL}_k4uG)1HPnv6F
z0;ebMHf02NamP>y?I=Nq?f}OM4HqZ*O3wXnUxnOz0@lpn<4)?u+L0%sz_5(qk423q
zi!AA$L#aLZ%Di>0_xT>(;Or63qWWB7a=EdH^iq;`Wa*AXv*ByWl96{Wohxv%>HDUZ
z4dQ=1iFZG*<Nn;6>}R1r@kRWn;mx6ec+Ne1mwoPWkClwYBLB%<a9X$Rwn=`StqC0q
zga9Yo#yTptkS<rfKVQdL>dHFJR;~Mfm*Rj~JyjAgy9f=ik^1^LJ*&`)s#;iu`sj4p
zSr=8&iS4^X+h(NFXD5y5=KaE;N4&Sv)@M$H)L#evFwz8k04i107T3_Y2({$Ts&*t1
zjW@Fkx}Yi?&PVg{V0OqP<&ciemqeC)?mbbP_{=Ov#uDQ_5n>E%4yw1;LI95;nejIp
zj$q1Cx7`tI-XASFj<B@e{eCtEOExy5e+;R^%l=#;EE-STi+>VkP4b4;A!E$7;uY0G
z|Jxf>8uA&>Dd<tIhdJ>>l4u>!d#<vb=Q*0+Un3H?-?N+Y2vRIH1bNJM9aw3(WF$eN
z(`TOZ{E=B29=G(VOZlUCv{<4GBMxK=?>crPhC+bk8Mo`AFCEp_KXc&*7Z&VQr>0^e
z#5j>-+-+X3+{;%l1j~G*x(_UQW>r+WmkLvy6#-PL83uBw82QMtC2Wb{z5~1j6k|a*
zD4|VZv}i*v@ZK(5FtNKOU4Q|w*dus0aMARkYd`reJbMj3U87-fN_Vrb01DB3kc68F
zN6d!Zj3A8~*FoWPy}eI$v$k&D^ISr++gmufE4O*b1Ha2}+I8FCbh=rdHu*^IS}Px~
zw9H^*Oig}UsY+_y;~R)m5Ix)y99*{tb8jru5Nq<hDUSlC+YCVwb)ZrynE-94`JrE_
zmw$7;m&<(S_T#q!RVqvBdL}4*!O4RD&%hW@a!Kw~kO#gL-nEz-RO2A{Wx{hhLbC=5
zAvrt_>0jHUv}h&5pnLk>I|jM8@F8)CUsaaf%L2rhokc?`sFW})TW7IPS&D(nB=T7{
zlC=??WQ1~PZ1I1ClWnoNYQ%o3FVR|Kuf=q550@?iy<qf6SV(fIhUMdP7D7xHK8<a*
zmkVOLZ*8P70?C@Li!VU%wCz|_Be5)<)(t5gf_!IB3r^D>f9<NuRqw>bxf`C&2)AYU
z$f+UwRK3$Jleex3`gmQ&SiGuI+^E<7!Tp$?nnoWojbJ1;u2lPhGxRvIkBtiu?4b8i
zGc1mKRD=^6w*rIzTu+Ua^3BjqMado9&S>=3w)F9H3ox0jiJ}02Y%P?qfEX1#XOhlp
zEO}}e4>7)TA_RSZKVPWu@x#o%{1oQcL28-Tm5H+VtNf0B+w}Y;GJfzN<u(EvZ)r^H
zO_N`xv1Da=zCiMgu*K{Y<BwU5M`<m4F|sSM6f+^+C+b8B`1h^0M3N=H1KStIm^6s5
z_Y*0{mSQeTWIS-964&hxSA618$8Yv2k-}N!2a8r<A<yacbA-QCSXZ5zV}B9LS8vB#
zA)2z?0(=-xLJS??-j}O~GWUD&g>7I+R`0U_qKM2Mog{jP_u;CoN-N6v83tKB2>${P
z4<|eVDUtEkz;QNHEX0T$f?K4y(J|Z8RpN!W_&x7A-0ZlSe%8i-Wc(J~=To9`Olv(K
z2FqOaSU(33GcIl$+qHJ`4saygMqI*Za!BPE^n@}(A6K{w;bgB@BYlXE+#MVZ#2TyX
zaeDEoqM%hvUf$M^m_I+<b~rk#D0uX7q39Kh^SFS+05)Rehn85cxN@^tTb6TS8h}Xn
z$MQ-T5`O6Fi^&{ojHI&kYt7e*WRJaPy6zC0AkA(-81#}7lXmfue{5v<VO2f(&~3!g
zxlerje8Xw5@Vk`qhl<57Ui@wz))SGdu#E>@_TKBKAYuUS`)_u$eE9XUdD^%#N=CR>
z;1Pi!#p2qB@AJJ$)E3FH=Ak-%dQXyjwmER5-X;z6j_|u}rn|+CrRl*7QO-{pJRFtY
z5=W$F{y<rk9l*&LLL&9CP1oUkB%Qh%85K7n6Y?8ByGWZ&tzVY7@t9tww|DHZtU_JH
z#_v&3vx?Q%L0>}5U4p?(J-F?B{Er5A&8Mk4ZUZ%Qy!l}q_BNW`zqm8v2YBiYZa4ub
z*!w|HGYlfb)h+<sM-)Ad4<LV@oI=m&Ve>#P#U!lZs-w+?A*=+K5W_(x*{D}&rT0*2
zHP~6vSTe=lfV7sx%_uBrUXNisQ}t%)^XsD)j1LMj9~N`eNlt%AOiZow!Gmf1B<y}c
z5zKfb##~XTU}Ck2a+;v=)PrvsRGFvmR7$8oH3rt$f5PKZ2dfJVP-lb`J5k@~zkT}2
z3;pd>5uP6GWuLh=>I|fp@a#soS!kZ0(*E?XAr7i1DKr@}h?U#y6%W&g7%3mG&uJBg
zw?;Imb+m&j?mJrm8z>{%D6}Wic2LmT-7hnz>GN{z2T>TDS^sI;g=I%VBRQ`hQEn_n
zQMfoSstlTckEJ&GCKIzQLsE35PEL?2r>)m)Z$QCY&=Gxd-V?g}lv#qV?D7(ivs<EG
z_y3x%67YCoj|Y{KhVPR;%+F7MNM0Q9DkScZTq6e=QHW!L`*AqybCt^kEB)5vz1PU?
zJcf$+dw&lQ!Y2o39;U4jd6h5_y@9fmQ<HNUEqf%`hh&`2Rs=$Wg9JJ~dUZAAw&Vvh
zCMv^KZDufAwSp>cPKU|Uy|E%WH61!jFmih+O3t!~?IueiVM6!+>}qj}ghKEiQawdD
zkN3;Zp67DdgB>Fgu0{KGwF0$?cM&7-hnnHK@_Q5LUrO{DT0;P*URTPLP?XDBdeQ@G
zz{-!Bk<*-pVul?3ALtQ2Q9Y}gY8obXM|Qy7Kc!$}&fYBjog?TyfRWlz1SLI1$>NK4
z{1e+)zROYTs?bBtrQIfJKiG|$ot$881?fdAElp55F(R?`Gpke*@~DRv%}+P)zIN!T
z4!#ecwlXo`Gc*p*q(@|vb-%A~eMH6>^OZ5~XQ~6v>|1{vH(MZjpugao*;*te-m{!g
zi$R`6_2g;7L6jj#AJ#@|Kpw7G!~1aIlQZW`jueUwPi=a1C%p&D1W<e_Nb}5E`$6Ma
z-t5yYvH6&EwLg^}-UxP40Ylg22>`z%^7Jo@!ardVa!-OYzsL&B)I8g<DR!Z#L2O44
zt>yq?^+qh8Xx3lRI}|-DM?Ml2q^s6o@7%p90`24i7l1T|t*Y$X-5sEid-hLd(fYPq
zU0D+wl;(o-G7HsL>7l#gI7{J7kKBN1(O#7yu(p$>%60BsPkf=g6k0~>P@r;;2r5-C
z=Ip_A5WuLeR>*0XG2jV%Ozo!KDM8~Uy^@;ynWUrAgM)mn|LwE3!z)CYl4bk203&>f
z(Op9}d4j%*88VUU-z*SVC~Is7qdOtQ1!8lU398!lnWS7dkA>1GX;v&zOtbthp*IzC
zLD+^TN#pV+uV|3N3uk5zok||Tth(dVpaM%T<n!IBPgl9aqpNO71ECwrk<wLZJOqET
zjSqST>JKC>9mt61<)siX4kbCC;2yi9X^*B&qMQy9bi}nOg`5tBxRRRP15VyoE`8^;
zF!?>98&LpXelE|xqv_ruwD%_K`=_etP=-3U4W%!jIvh7O@q6&>WH|H32vyTjrjFeQ
zB$QHH=aXP_?2>GX<5K69B-;Wdz(T;<--M@Dv5Q!5jT-J2*1M@ncReP5MQfy;HZhcA
zraHwT_Ne2quUZG?8AOqbTW7bJ@PdBesY=UeOt8;2wbdxqlZSvTBL)Zs=a|8M`_!ky
zlL2|T(X3>WWL3|2uR_!Un?CTT>&5ibI=vtkeq@MzKSKV)W9Go24$lnlAf_ie2iJd?
zcQ(TEae6ms|82B%9g0jSYMk-gje@;$Q-Lw^<70%3srpO8b^_}!rd0Eh)>el$@~WH9
z42JgH<=sYR#MQKXL?@(*hElreJwbCj%3|zL$VvZHxzX8926rlVOGKQ|<Z!k!LL1GH
zr#dew5-*zR7QIdPg^YgOm>(q;B}~7!={dXdr^e&aq@BLuth&7>TzkS$&s*Ht;jAXP
zik<RRzVG}}Sv68#>NN1D!QhkZ_KzfLVP_ZZn-L;e;TL>`{rAJFU!kV=J#doQ7*-E$
z$F!nifiVYB=@02w#QA9>n43gN9G)4uvwV#t(Z28eoiHtIG^=kj0a8$l1epK_U=0l*
z@7p<^T^_YYPYDf&tNMWCxl99PTDjRNS>?t*R`u$FyPUOFg(}&NLPCbm9hc`VMdiUs
z8UrtHQd;8*ZTa2lUvGUAbJUrdIe%*uBduR;+h|3^rk<037f&&btJdB(sDJsX7(275
z<vFT-vnrC5XpK=V1I?cWqdB<(DFE>(4+rwSq_#rhRx0(IT2C-MTRr1L^MDh$k${zG
zET2rUkWDmHnwNdnZ6eoRvYv)+cm`5gvSr$i+nY@lfU+l98cF9Qa8q2`TU_RG8>kma
za@Sas=kQ(Wj#Q)@fHT$m&@twMhvOQl;tC>@=^cEH8VsH?wJ=#YQdo>$blH<~s{(2I
z_?&K-G%Aq}-Oc-KI^Ydg`&=Hc096JVJoTV!K;gThXGk<}WBf`Yb~m|@4L{Bk9-N4(
z7^U(2E3XS22x358zrye<=&a=c7b50tv3KDfpZeM@pYVxxRJvC*DYqx*(~-c!2=)`j
z)ugL4|Ffmt_+?m<_pE0mML`wv#c{?-&%Hl6bC$fV1>f2sF_1%2XHvm?VJSlmC%>*j
zKYnaE+1BfyadS+!T^aEN4Q<c9udlk0f5;mXxh+71sfxP)y|vW+eA6`M_tml?9oT7W
zYLWgKo8n+Y#AiNkE{{wlbCP*s7CH5~%`}p3%whB<8Mmq#;z*&b6l|$+jF#6Gbdube
z!;N9#+JbC5Y>BqA6r2yU`SkgV)D>;MpAf5JVs1t(?^)i|PPf0#<!1xpFe6|3gXC&C
z)axXT!?cJ4QYEk<Ywm#;J@E>IU&1GAK0*vFf@alIjG!0yK=~PW-UtC=WnaO`%)6wL
zvsv=@^87;lP6J5%yUiY(DUEh^*7Wpco@-M#{<uDBJBTG6KuD4=Qz=uWvR|B?uhQ?7
zgpK{EA6Y&0o5c<iITQ6~uDDyIGLrS;taH8M-r;1Ahg9YzV)}RfO}!^%M}(Q$^w-mp
zVO_Hi2k_Lp8t<uZ6XdT{B^gE1_-1{x{CFD?05j`PQ?+Y0=Hh>%mY;Q_NXxgwG?*aK
z-OK!g+tRO6lC2MSj-x0F%8?WsL4EO3FI*R`_s|S;0ZL(!-aGM$({(?UTo%5pB^YBi
z>U*Q`JSwO}*i)shPrBRS)%P>0JftAC&B!!^dqfylcq%um$39UlEq{=4jLo<rN~C0D
zr^PgWGH?s^a&ND_=0wS#SYp5~+eXQ-|8s`hWNS!;2ipE5(l$z&zCfWyiV6y8QYIaA
z%j9X#lJ2D#_C#otj(o+~HeY}EwoEf9LKWFVLmO-s7UqUxc)x*q*$<0*Gi@WV4cU!9
zoK<c_Z&un@2u0j;AFNl%tKAgyu}kR#U90<_2zXB;%m@J_$DR=L1%7=9B)qaH(vDQ8
zR)c-d@<Oi2@FV&wdh?%X%&yC9--$;;xu1J;`Ro;)3)Wuu9OaxpC`B#g;=E>~#)Ob&
zpSt7m6RD3E2v1_kkujoj4VP|{IWxiVE5i)7tpqE}aEgRs9jAekr|wxj4MxIz^hzoB
z5sx}CBXX#vhwT-q_aCKD7ajFnWsmr)&)8mF7y`f0owDA!dgD>!J9wfyK>9-2g9Er9
z6NYNMw%yBjQ?w*hD^^eBDsS(Ug;Wo(s;W)$K7F_xeJ@}+Y#*LKJ5>^dZs2j1M;CvN
zy+xW|AQpq-RR3ul=sJ*#Hss^*@V|jkR?F2+SU=xiCjnmznz|nU1wn{tYjxzy<=Ty`
z&vvn|naIh<Tod1NeOizcG+!-~a2F9~p)}Y?rjo+dSi818>3+T}tfw)uJegfzb{sn=
zka3OdmBJkOU=yqkuIaa3pwGV-v!D<6vWKtycNy{F*;WV=ZK;Dui?dxT!m!tS-C0T&
zFrkU}?Q@;WF%}N9re41X)aEbpO{fA~5<2g$JAu8}!bEJPSE?U4>@Sj(V!K-Gn;Ob@
z=L=CuGUoFp0!K1(MB?h60&4?-eu-9rAf;C^l^nHLx>`X^tWB0d<jOs3BjaV9gW&gQ
zA-xIL`*&8HSf0wrmW<JM<5Ouk7Pdr+IK!5<T*bxx4p$YLF`>q77qwH>bw3i0UbN)i
zcCj<lm*_s0O!j6?ub(WwE=$t$Y<%<MEe0$Jq|9mXO8LzQ!HRq`{~tN&>CM_zHMi9&
zT<NWxN}}9_xjB~KgUaE=`5=m1zw%3M(fG~p57PL&>jgZUI8&+X3L*AZ>O#z)TWUFQ
zt_NWn%FQnuq1h3WQj9=VYDjNP_)2<e?}A7l2}OMM&WF@y`oxy^ipIJJ0(!;LESKaG
z(ZvycWj4m&J-x}6#FIvbUkHW6ZtGq?FQp|jW3Fupy@$Zgw+Eo<M>LXX)b|wXM)13%
z>UtL2YrQ>DWxjSwRQ#|ows?S{E&AB+9u9;LMsqgP>^tYNxzXY{_z8)Zow^|Zz&~wO
z*quUoWg)D0?v-VpR4tM2gOEjvP{pSQs?6>uQ5CW1a(yZG<*wh9fEM`ulj5Qu4*n{Q
zAM|+8i2aD#w&1P(z4V6UP{L|V^e^f<&8P+!&;_5`M!szt%<{>?_e>U{WSDB&m%6_?
zpV(>t{<83-kio@^j_72^hLsSb85=m~c3RR!GI@5J;8qX{H|%b$a~XQ}U1Gy?3YYi&
z+@EOb5JtMiDe?zS$@dp2tA3xWjZL&;mP%ft5?RrH^>g}V2Gfyo>Q2eA#)<WCHgGzm
zE24P%4oNMZU+0B)Oo9JPe@9`42|W@4=N*2=&g8hS&j@=(<$VC_L7q(0q*_GtHG*gT
zz@y6#u9xiv{FJO3vYxc9d8k*eM}IVwD&(f;oy~qz_v88JhuE^u)n<~J+^+_wqS57*
zT#;*!ZTFJYyV5J*OJr9)t>0Ixe6Zb-?aLsu)@Utsj&e}Wd8*^KuqkFmq7nVxIc(Fq
z)zIU1?-c~?cRr}&Ec3Z#pQd#l^|jA|6G&JJkRil+i0V|4Di-^<gp*+(0xM2m=FhbI
zyq%kQ44uNBhX&7-TYmVd1?j~PBN`u74o0?zm)f#@lo(82hFMPMGw9ntEJd<@eazcq
z^e*?D@3H3(svRlmbnH9w?99%;x@HDG*<1REK5@zLPhxDRU`=l1z=7}_y}*d~c=+y*
z7`f^ynPek-m)e#>X>z0RV=)MyR5Rtxih!z>I4Q7htn5XgoD}9Xj59k0(VP-^J}vbO
z<xk={NATo)n;2t->3trmh1#KKNK6o6xh2Tt=8<HqPR_gB))6t^Ot-<s<Y^Pvw-&o*
zw2b}z66YyY3IWwc$q-n)cEna*zZFKVgngjSn@s(ouA4%%ik9D?Wi%ab_f=jhb*-!~
zuL3wIhZu~WLyw=~343$8Ex@*$#Z_$OGmDRY#+Eu(`uLw_6poKfG&$;am26+CfBP~N
zp3o8U?KvW<zTQ@qJh{<g2FmT1J}X?~C>@fnUdi>cgN^U2Ku;q`aVy-NAg25r)b9@^
zs0J!*-4YErpgefl;;UAwAx5`Q0!;TZ81cfeY(r~!L9dD&?3Ooh>?ym>Em0{(MB|Bl
zA;@)N1fe9ON))HocnGYLpD!`&HH8rHgNtzXM|=r3%*-FRWPgUdCE0gzx9d}1U42t%
z(C+V4AE!t}nQ$)33O+!!=_bnA%9XGh!waou#)ZRv&N65EuFt?F^ERpdr)LRzbcCOK
z?TA5R<GRld&+A1e)czc%GxJ#&8pG;W?m4_iGN-!YX2*_@Q$pWrSx8tU8Jmr6VpR5M
z#|Nb4Vm9QA7Yz27s0mEyf9D~+lm-04#Y`HYBU~gu4ruv;zU8D+Xd%(#tdaZHA<OrI
z0zziQdn8_*y4YkoD&2rE!La=ru^MingPl(}W}=kz;LkFv!NSZ6HOWs?_8(%dgA`X?
zNJ8*A1}Klj0+=tlXI}ZM<IyZ3`tix(Okg&8c~AMf&DFeP$|%1M<^ut`-#wpJt44@?
zyvt_SAM~CO1DG!cif@*~GymEf*Xl3ik6rj`KYcO1lQU{nA}{gY^@z#BBDI5PC8J4E
zuIpb#5fbzzk1roOO^0jOm90$RE#+mt0tWgVi#WyJS1@p~>&NF^wP_}9eKzx4k=Z6H
zLqAUNjAK{kVY2uQ_;mo+e{L7YvE-6-mFvmmk^1XP%orjuqm^N!XNo*TPU2H@asx|2
ztR=;FRgxx^VL3!pobr@9d94O~DpVtrI4zIxj{FEUfuIs3h$hwhMjn3pRKe4oqi9*t
zyEg;;ug<<YtgWWow_dcxtw?c~7KZ|Fi+gb=#hu_9NCkJ7V8x-hdnloJaWB?jDIPpP
zfE(WPp6`C&ea>_KxPR{b?3p!t&6+hczh&4kJ+|F%!W)G4N<taEaAG}*B=Kz4gzz1F
z6}p_M(P%`MYwo=s7ESl}s5*<JXC{f!<|$DUpM(W$M?YdBQlpc?EjpiNgrpo#O}!Mq
zj|r9cw@L(C*!^Mz1;dKCD?ZH6Gl9-ZOQNXdAEeIYSBBlwNGzk6lFSDB&3#Z|-ONMU
z^oW4mlHJ~X5)EX?_5VaDnVi!{8f8&jc){C}_fGH?a~y70r<o1D=!I~Kl~xC4xF?M<
zYJ#G<u+D1BfrP>@F)(IO1fVM1L?T-|)j`wnVFVXpAK%*ixE@qV#>Rl)29H$IU!SDU
zeSzF@-F)rg<;Q+Q;#rAoAf)WV@>^^cmC%oS@FG^cb3yT|=p|N=?B}zip?6*nf^#yP
z%(_D^dvV=-9Wp%X_dO_rN6CBbV`4eyNvU4BZ1JDncY8J)Bn8%6WD#~1ej;$6K+PlK
z5j-}h%wcobXpO2f@TWJ4Bz$E<v#%l0udS;-gJP_fjfZN~voV9#z8H^`z!~Ol@esr-
zxB<Lq<}!bfD$lcI3;-&Tt{*K=%w77KD2b%XvnYEQpEf6$<gGtw9V&pln{9`S*`%kC
zJ1Z$aRoO9VPWK<hT$xotvGppTgI6u>)x{6#bhz>Jkz4%~!@bOFif24ObRPBMPBSD*
z8MjySI>%;YM%<rw^z3fhWG4m+{5=Sa3Hz=8x|-a&jPpl^45^j6wPZeUppSPugC5oR
zYk;O)O~%I7N8P#Nn@1CePEWw9^kEM;l7}~(#RMi!xB&ipXqN5}5au9a>fBJj)S|`2
z9ZRkE%M+o-PdsvpyjZs$Zggc9p9trPe`t?`-|bXctj3?|oi8f&mBodAGq_g5SxH}`
z1`A8LNjGS1CcEh(0N5Z{u9-;Ox<<OUusTMx&;2YsBdQAj?A>{9ye@~a=DxU<>C@T1
zr%C81(LfO|ztP-W9bnC{dwsh{sxg$UZSwpYU-qdl!HrMpZ<jLz#PYqzMz_BD!hg{#
ztNf{!!lRRAEvq`N5Urj~$@8+`=c3#cld0R^7b2$#VST8^K5J>SucQ7LMkGq$9D|J!
zY3>vOKyihte<0_;Gm1hj|AV*foFNj++M<$hb$E8;u9)13ZsBzAu_7aWgq!49V;`4q
z6+800HNHaZ);3yRYULRNnn#^}i47aPFzVfL@WW1}Oo8AA6)Y8OM4iB?+W*3ZSA<$R
zdP=8_r&pZa+m4((F5nM@_6x7{lvfs|82WW#KR?Un@&%`xui^qe;Ote9@39R<sFY1F
zoOAbAV#mb<MC?9nRKPW4msme_m`W8#d@TqN<FUNqU_h)V^v+Q4+`-E?wuw>*)n^dr
z5dA0pJgX>WJ3i?4>`>xBTsXctEUgVz^(JufG%ec4!*wr;Sh7ZCtL$aAZD6}YQ2oe`
z4}8hm=7v!^R_Y3wj1MV>rd=1Gb_E@b@5m~mQUeY5ha?x1tmp`Cb}=!vH?}Gv{?kA2
z!2xg&F~ZqG@pwhOR$vh}V6KS$NNB<ml7=FjXm$AlPdP_b<aSGyWvK{X&I|)Cp#siK
zaN+Egt%~HP*S7PEq>}Nyc926FeG}mCqziskl;-1ClSWs{a5+D7lW6v(H3?^~y^?~5
zea}!FVOOJ46pE-lM5;gQ#Wcsb>fM&G8VqdQBJ(Am#3l$#4-?R|F36-V&bKiRy6vy-
z65lp!n-G{FDQ7-V&bfLrlU!7>ah*%s?Rc*H&>X)76N2@e;3gtPeA!8P&2x38g%cf+
zIWhp3-|)hiY;3GEk!A4%3kvx&b~y6ehb!|(GqWUG5WldKCM*b=^v6@gc`OrJg8S97
z=`9GM&0UEJdl-g!+X8wnQit#eZqPd~cw2w%&z_w|vwqLf#6VTb-EIfpGj!O3=}HOD
ztRky6J9I2gVhdP)QI22LhuP1RQ|Y2S-7XBIJG{-swq$^aN~9glJ2CVMv`OL14_G=2
zC|7Utw^MJ@Rx{xwc)J~_qF&kCJe2y*Em`s8Y?ar*^cRH+iuFMdc#>eJfjc82;?6l!
zss=V|-x)wqb@rT=ns0K(s3lVhAUTQg&hDjvv|}3-Z8b$D%`G28p$)7GCkN(TUW{2y
zLuzCAOQag6Y!GL<_Ln(;xjin`)FGgYq=rmk-hzAc<k?u3c;zcqMRAK>!DCyFVD*{>
zJg5ZFK58)D@X>}2H?%V2g+lv2?$<C@ytSomkZG)$76Dw?=VruD5w&Gp=l!Cy$4*Po
z^?8t#Lol!Xjsy3@l$*3Mvvdr259OLc_GiRprc@H@J!O{ykNf+Cy}c0}o_8{?oBdsY
zjZd@Ze#&#6)>h{!ajZYtB*z2T0wi9@5c-Lx%5QNYAK@LV57}fQFIc`*+3mkadLBMS
zo`G`CT`Cg%SBWKGAP#W#jSE^ZA%mqqmjaYGj)`AP8fN!zFh^CLx_Uls#k#ZDS~kYK
z$sT&fB~d4bN*=zM{#iG&Lg{Mhy0#_>3@++rT0Xk2!g`L*HO*6mJP{}mEIIWWyy!z@
zc|TVKGbs*OUW$Dd3~={J8cBVf3@c_lpy2V_Y0yJgh|_l&{9N(;f;JI$eD&Hdhb%?A
z-pzIgEbLcqw=iW1a<pYM_8o1j-<%d2mb(*i^N#*!5FD`@SRdrT6BkVT>@$o5jmL_}
z5OLoEt%U8ou(|LbVq-Owe{}NL@q}#Si%J-r<;Of!MBNyWe~f>>W30GES_9*3%Z7&d
zMOVqXIN0qj#}mCkRLLZi{t=}dBaeG`Y4}J(F)r4*%HGx&J?8^#^7w>BgP>t>@#|ob
zle@Er6H~4|_cePE45*yXNlvcl9v^p-_ST&Vnd*QOOB$4|fflqSoLWT8&E4^!nlu|S
zR~_sHjQbR(e$pMX^i5+&>Tyib=4IzT8M)lVK~jP6wJ`5sBNR&1UnCQTXcBhmfNB^a
z<V{z6%DQG%>qV+}<mQS7&bImawGma9)_|1a)W7)XS1k8UrS<+kJhiBQ#3l*!gACYC
z(R6a80#ak5o~Hz9pvqLBm&fR$lp;dnjGfpYWWxC@IY<XTbin;40Y;$QFeDDhq~1a=
z6#fJrn`l(%UG}ZD;8HUaZl$9W>wsVDg55bWa3MGKhE6u}H!08bLPKY3SQ}#DRg#pm
z&%w1zp=LSdmY6*&Vh7G6bOJ=&SzOW?KrJtwid?3>*KrbIOrX_pB42rVE?;1?gt_79
zO8{`b-O-tKi}M0M6WDHj#kPI6EifXids{(Yn2b45Bt~i5jb6Q>7MU&LID}vI-0^dD
z9YlOMXmly3vdf{dwbNRPNI8a5dE}UNG@UgW3B-upcLLV+3V-1oiqplt1M8{bPZ?EU
zsdDm6myaqbeQ_hCZ;n$J56@E$DNAqOR~>?urwNrE<9lblt3UI5en$4u@xB*OZ4vuv
zuw@(lCJJ^imFoc%qpdHeyVxp_S>A-;4hg<m_M^#arvKnk-AP7}K%60%3aW^rnw;V)
zx^uS~6@dfZu>eIp^WO3w(FQBZ0m8Fx73$`VQZa{`Kjr6{+bQv>3IHu2+j+w~Mr+~w
zupEUu=0qeMS2VP?pNxlXDNVT!ylr(x6)@a#3}xWaz!YXhQ*4krY(NHA^80s-uod~Y
zttUht1q+M@dhMAO7n%R?=-H83`OK~Z*(9n$>OBeaYciUN6?wd8ud>AsU=0zG9Rhqp
zc50(CC;(4)VEFmAgasZq^r=e_?SlzwkQ;~IZosvR@^zTM^J;M<@WF2-x%PjEB@eml
zs*t&M3|3<SOg88|rNvrI7;nJDEc;QNdmUYEaT2c5>@$9*k{!^K<*?awa8-|<c@t-P
zgeV(&p!_8coKSKh3{>YZ>tVYblg1Mn(*_6npL0hJ+x%&+fI52KT=%!7OWFHwRe3!5
z`Si{%#;S}GV;1%eYeiy#JI(6!Q0Zco?v{yZ&8nE~9w~?Nl*>WJHc-k{E)3BnUw*r<
zsI)o1NGv&-+U8j+vhYVBSQ_;%nPs@m^mn*`>S8}keFMbWV+Rt=+*R4wZm*JZGLSsV
zTw5rFiZZ^Y5yQLVDHIuvvDV?mB7=(|0>DJIaLvRwN4MTMh{(0G7qvsSz{D6ZW7Kqp
zU<cz$^YX+4;HYy}e`dNr%$q|n@#(}CW)cBU%i@Y!Bv(xU#_Mzxas2O5%fB|zsri4<
z$=<1rG{?fkcPb;17h}^@>9Qo8w7^j>c4}kuo9!@Qa$`K0YiR0k(&$NeQ2Cv;nh2w3
zgla^3yhZSIZcd*q2=*qstE0s7MSS_phyodpoN@_7A!J>G^EV^&h$jGY0`Pl8Bs#U1
zLe7~mi9Gd8-q+|+v^me+edi*pafgR1or{Ml)NWO$bzC^E^|OUsCX&H(*muDJi?vl5
zbt}~@sV@6wa3DHQ{3?N^hhN+wFwxo_zL?=-71hxkIMGa;%|c_Io^af_&de!T!MJ={
z_83~Rk64+WV)c{Xas+O+KmY7o19{45lhb_z*-F|=djiX`fW>C~IMAUe+K3;zY>B4T
zKv1YK9yHgVbmR_9o<XCeZ~7yAKDJL<S*i^uY9#58$oPs!j(4=Q7;d5m7#!D-MxOoR
zt=7W%0~CjqIm-sE%a~TJSdUfO4J+-A>ycTuzt3Vb16D;=%pKGP*(>-CF~{)>SkB`$
zj6sO^h(`umIn~sQ;uA>T_mFy-;+6a4mMruKX|K_VL(~l+BzHa{4Xf%>W8c`AyDosJ
z?m1mi&*V{CGi_`M&~5cBp7`wRRGaZ8$E&YfS=?kD^DeI6z@nXFizGcDVADN6^#M$n
z3g&KX8?;hNe9$c4W%3#Ykqzan326+@CVN?*gT;2~n>Q)pa6|A#uI9x#>5t~rp(vM#
zn(z~9k{d3HP+rwV>FkuNx+iP>+@Ft3rAMjM%VRwpu8pX@AaTW|aq82KG#6r?dEWBF
zHq?fFcMcLS(Ha4SN1wtLYc{oRzlWO59r$wn5Km8v`Uny5Pb9=OZd)^zzY{n*B1*l)
zgPLfpy>!R}T-dES>I-{b-*3^vQbI=7^5%MlJuwCOKh08C?@!bUJa{8AOV{LTj%VM>
zdGMx|?h|Bi`rd7_y;v&~0rm@x^1@{O8;;2y^|pbS$QMRVaSAyIUfqWda2L#sZMHxO
zU&^r~Z1q9(yF+h6G3IGfXIJxy{#iv`2D>M-pRcKZi3$#-V^%f8k1Dy6LH<8QpD0Al
zQU&(2_y(THkvD%N(y%c%H{oPWWgFkucqAjYzRhNc{3tzIeCPIqx#_)~u_zobQS5H%
zxU3<h6U@OXMq2ISCu;hd@Bkpi^CA&bLT+-DJXIzNAerZw#F<l!ZVM?24t1Qw@=&#C
zA~@tKK{+gZNeyE@T(dqr{<gn=J;d|7c1(YH>H1_~%LON=a*HtD0Y2y^eFllwYKw7q
ziXon6$y>d@#rRF6J}|qiM$X-3eWyRFU(kA$kLdXIoyQw^6RXqkO@A$~*5ej5JBQ`G
zlU-yt2Z*vQT;sL>CU5x0rCj_kFDAJ`Tnob1M9~rk)$+X$?<dWDQ@TVWS|ti)MmHSx
z-BbprqPlVfVV%A?Ya-G0jJxy4sQ#A{vE8g7%9__Y?9RzgX8pvyL#&<?t+|$R|5d`9
zKs$Hq|J0Qnq3Cq9*nfPxUN9~w_tm7kU^k=I=RU^JP4~2ifgR&02Xqaq8!MdR!-T4>
zMd9hmdbz0PE9`L>s2CO!_dp@^rHp5%k;Zz~hiqp;JxZ@#Q^Ve<?JC$<y+rfAOm(oD
zcUFzA|GCbQvP3t6|K9iz_BxTs$|SCHwjIFdW}ox2NQSoNer|i$MQC|BdCSIUP;3Z0
z^@W%t$1G>3;mE7j7oYL&d_nS&!B(>-S;>((Zw%gGZjMVVoBO=dT<)*g#PPGJWbLaW
zTPYYBCByI%L{>l061}MH*(J_rtFas09mYDHQp-B986pdP6XUUDM7;{Gg|+nLURCP-
zp%`YbRd%-_DODx!k$(DufP?J?6|dz<Sc#Nm--igg3$bl$)vD@53(YF5*O<AIih}9c
zq&6;^Fr@M>&P^NzE~}78#!Tp*y(|Pj8+Ms`EyiqN-1n4*;w=*`IVG`{i|6`|K9vfp
z#kD3RZrBxm&=I(F3d+>;mX-LgU&vl`FEWtH$QU2dC}`BQv!8tR$K1TyC)Y)kwP=b{
z>rZ@@J3~rotnBLM(toj`7&&U|!BYCTA!Tw)N!hvxqoIaf$A3gybG$FqVD050dKXm&
z-}1_eKOCu`jF~=F%4d&cuyQv>IV?BTa{<^=c{^s^pv$irgLy5Ca779g-$+JGrKGDU
zg_Nc|?l`cttYV{zmd*D;ayx24C_GrxlkYYgGtwLSFY&Kd4L#FKwB5q_F^M~}0XD00
zH4LBMESDIYQnaRNyz}cT5d&BChFwQKG8CE(?$phnRE!*Bdd*^DxAYSed(q!MoHjP8
zQII0EotBp&6LxiTTjyP*u4?H-w?B17SCAcRvLx%MK-{Xz^of8PiiKUqhJ7FJKFRDW
z%17Y?SS){GeO6#EiQ=qnez{+g{~NjrjUAmbI=y*yu%-6bB86oy{oujny)08_G5Cq+
zz9ix#{Cl|(*^4G~s;tfq<<$v`SUX!BSSa$=1a2e9l&rAQx75bSZfA9H&H;)z(^f%z
zA`d3WFs{sEcvk!-QzUxJiS)2fD|M1f5D|Q!te~uQQJ}WlTt8KNppE)5b**^NIpu@%
zr+#iFli_Lulv}7Om__!sM^fj|JTT=LV~lZ*nSe8V(G+o(1JWx6frTU*tf*{;3d$N)
zJn4o7E7h9?Xy6Ab*F8ONQ62t?9D{{$?rY|)PV0awSaI5~$|<;AW`%xUtEdk2J5HZg
z@#ICBNK)%N{)L{Wu$&CoZH7!J^1`#GbkgUyY%aI%v<fpQ_nU)Q9SsKw`7$_QFmt~?
ztDo4`J|y2G?=9+cF_Wt;m5sxEii_vBV{;SS;!||as`a*C#yz++3Ip{8=fsz9r;U&<
zBv%6m@m89+j>@kAE`l|!rWmh$A&msMcmfe_k!xe2Q+TJkr)j3A=jzf{`<_L($sU1Z
z(5(qh4(o-pKI+N_-c`nD?rVPe=@@+B(!S?o2-{@mN1vU{MMT2@jT_Fqips!HB$xy~
zDLg?`Jo&gDVY%vNJxJE|5PNd#fu;bHwg>-RkJs3p^evTzYv$NBH<Z)wm4}Y3a_0%4
zAKLOFv>Nt?v-A2?_-NIY)p%$j+wJ-r-E$(-wHc~fDh-*di<+4P<ZZIyY75|ZsCof#
zJQrFi?`ED*awR8jW}5o4EU}_JsmM@d+Su1vN7nH&z0+~A){>-{x#=$qE4<mzf^EWk
z%N<*+35y5JxNY7!nZhq%#g8`j%#)Q!uNH#cg{<t*p$MM{;O-pM*WkfCwB61=zWQXI
z^qXa}{q>Syw&RjK<56q~$3n*Wby8+rCdjRZZ%7p-)jx$3F8n5&(9S+su(X?Y6bkmY
z4?g?}D(2uZyY^Zjxp)9vNi9&Sq{u#68R1q{*G-P{P&rh9wZo#Pv0VrBOt^xc!@*z}
z;P(MP)u<wXHi1+`IYl7CfKamMa3s3SLI)cg`&$HQSqfmOHh`VpLcTk9B^7N<lNuM7
zMxfWu-+#SfFg`yVJDI4M8B~87D|{f%ub=&Pb(iK%-NE2m&O~7;RC}wlyrO^|2X=c!
z5o_EDx=^V3`W~;4mR@;!)e$R)Xs+<7_P3zsL`DQ830HEE+|N@-f>OCLK7q99o6WXO
zq5g6WUpfiw;m~ZOKoLklTpd(ew1qBgv`p|R2WDS`?%yp!cI&sO^}LM=n<gIPl<Z7}
zxF6IPS#fEQk_c7%w$|LZ^pQE=7`-z`Dbp-kR+=<E_V?!Y_V0}SP7gyRl(O?*qQRfJ
z)>e-ZI|UcLF=Ec~%oh&DHvt&S^nz|<q2jS8OH%!HyXE@aG92FOd40Xmv=0LL1VB!1
z^>n!C%x{m%ZLOA)agw!dC%~6Z(<9tXS64gRA)!NH8iOMvBW&!PuS!==K*mwcJ6Qzc
z+&)DS9jj}r9#>v|xJW50`}K?@Rc5a7CbdntDd(VZ0`1{%U?8{t%@Fd!UWg7lBS?t&
z1>X?t6Y`i7i8s6BrPt5T$U;!=#9Vc?hzaxTet2nyCb1$uug-;~tZ~m}7Uj~ShrsZW
z<9tlpQ;t=ZzW6`|S8YX;vL`f<l78}+=oV)5Q8_Tw-7AP!6!5`E<Go=(<1Z|oXr37I
zt*Z85>p~F$ovkuR*jibEZM;oTNwvf&BRE`C;sq@A__3-Jp9OMz4U^q^;ag-X_s%a}
zla9ci%?i%hWCKyx)>~h8K(*J&3e?xCN06vE@&|qAvwD+qO5?Q>%_BT=(mR!-1ykoW
zz1=HO%i)HHuFws+!bGV1hV{o2*Ra5hBeAULpitSBXDho{fJ%g7)`%TPT^+8(Yn}Od
zo(TF=^z8MqLCiWX-p1faC4OJ&=t!kDj-|;I2?G|G2OI3^sOh)c#K_GqF+B4AcPMF~
zrs83fg@NV-7dDsy@SCL&cQ<McE&b^w2<sNO+)n!|3F)MGZP!Rg6N>E2Lh|;;Q(Z5_
zXD5+hyhOnicj8447ha|^Jy+d2|9&o2iHv3b2Ia=?VUxO>%~8sn+upEdQ?M~6y;G0F
zOrVkB`#?<BbRXFWBzq=Ss66hyMPXvRH0VK?uplftOcW06DS;#=b_cWg9{&9blV|tt
z6((3M==ohs%qJMtarenb<p0nL6Z`Yu9o;sW^@O*G`|ic^4~zZX__m6mp3v6WImvOx
zu&Il&Q%~2o5|f^y-2v+sz#(Nggj&qX3l2qgc{77X5^LmG@~bp05wOQYC+pC8j=_Va
z(|xd#42CZoxG7kx)C1(ry&VhwK`v0fH$FFg0~pB>r3W2)l^OEFV|<&wWaIYQh-E`!
zWP>^fjPT*N+$+L@0**<x6ph32pj_qyFt6>#YJSTxcuPtp;yHYj5T1(o(Y}||ubmNd
z=njv#)<$KPOh((3a9NDoF*>2C``iq(Qj(!WKl37wfO`;9xWkaql4<x%W=+P=%zpAg
z(-)0Fk+Ce}3m8w_0~OS!Np}M#XZ%PPd5A_aGX5s)nhV{G<Ga*+qEFu*lL&VIyesPr
z%IUvJTvHe_q*n?aHM$zj+^S08*Z#CWukXIV&dXW%LUd&ha>S8RS>EQG+amNWgWFmb
zWiA)EzoQXO{lzZ`vp?EwDe8rP&0;%!(2Z@0>r1cDBh|VijRoGv_`927$vz(rDO@*A
zuG;PNvvaa)W;z$x6?a!-Oa($(J^yHisGC;SU#x36)f*^k9L}??{9cMarJgT#Ue^rK
zSq`mQ<f9GEtFUZom*5Dx2uEJjo&T(OxS1+APtB~&v+MD^M8425`LNwD(5K1&dj|{2
zT$c2iPfb<)7o-#sRCF_C2ytwXk&~94qS%oRD`+(_jS(Oj^bBlnOSDJ}BP_g5t0v!&
zw)Ct$h`m<HEFp%z%#^6V7>m>7*~)X;I9katnW(LuDdlSSwNjSoyGpr%qRl9IG1o|(
zAiAVJmI-dwMWgVW%gT(WPhKBn5woW(%$I`KhNULd-}E(=gq^%T;AOT-ryFQnBWA07
z&2wO5T5`*{`HSTs<I~<7z*mOtpP>3A<59GM=!iH`XdaDsf9=*5=?n4z7=r3x>sY;W
zQE<$lw;HBy+Fe)EWdCsfi=AJ#olq7n&7QSZp~Q0IrnoKEEiwEB_vi1}vXr9R$(qoy
zW{c^bw?@q)O%=wcKFXiC#FiVZ2i7e1CMt+`cDx3eJE|9YHI;0%tOABd_1Z)=S?A=*
zZX|ywPTxPc0%4dSi4aRi1g;G$8mp+O8z28bTE9G2_*ndCRNwTpZAQ34Su3ha<slF+
zt8)sMKr)OBZZy*S=V^mSSBdyRS0d=#7I(Nx&`J_~@)|K}A7Y+awYXXH)b}zIPm_I-
zhN3JX2psU6)szinhOy?FN^*{g(KQdN_tz9zXY=?75r$3^n8hrCmmzD#`RXY2DmpU&
z;&{8Q{DxV`29i3(NfW+3srJdvFNL^Hux*<fv69>}s6&Zzau<mGl_LnxN!Bvbl<?!V
zWe+^$d>Fqlgs&;F;++$wMpxHr^3|u$v$mX8Lhi^T@P|id3JIOw=ho<T+~=<om+{*#
z4!-uYSM6dZh4(P-8Yq#lcB1S$60%k=8q7ul^_g@EJluafa_hXw4&~8X@jcLp$!M3#
zz4BBmx){Iyvb0MWu%GWg+CH9z5fFDd6ip#nB(o*A(8k%}Pr-vBvqI|whXeI`RK|_f
zd)vkL?{GLe-{p9B6*@|m1ioiRiZ4C4gdcb%ayBAAsO?kgSz&T{dGtAsH(%0Gmy!oP
zTyxc(tY355BvqQP-S!b6LB$61E)NQ)j;{I2*~2(!OR$1}Oq`KlK8eSGehfI&!!Nwk
z1G!0kA?EaGUTlCj&+O9ILYmQ2ATMCK@ZjWleNCsYUEFOfi>@Gj|5d<p+YS)FD4Ge-
zyiS`K+*#@=L3pEFH;>+5>Usb%trX5&maz8Ap9s^;++iBQmKtvHl3$gPg(BmT2J`~~
zEm<{{62D0ltk*jB$&;RoFX_qT`U}|1O3zr4D;!GkxGZ%ZL~diwBRTx}9!kG-iD}c9
zn5mbJ7PSMFrn1GXeKyBwW~55+#~D}~Y+}EG8?lTBC#bu<4lUqi7Iq=|l%xEoYjNN0
zBxpnIM9qG2_FPQ!ZI6pBL+m4DAlCDk>3I(xL!LN`^VX8s1bhXoVn5oI$Y|%Rmq9HP
zX4U7MCSU$YV3BMMg^WUw4`uU88m3s&-J;v8hp&E9GcNjVag*8l7jKCSPtmo?90gBb
zrag%fJs))WHGtGRRkwr}`wifmU#E#$$61IQx4-Ju))>9=%4RDLt~?Ymc|e2JN7+I}
zdI4jF@wx)4re3xG<!myN;U0}EvzOhruNMtEFKN{$(GT(RfK(QR35?cYmJP<Qbfum0
z{fnRW$%%xsRBDbc6w#lKDBPEBI<_;VbcK{ApNBc{9~aK}bY1obB;4quDu%c<OB#yW
zCD|8<A1N6Vhu1L*BT^cVYA^RjAFFs^CEEGg+oQft3gu5$fExqDHq(m8FIp~qgDA9!
z)Pq+1<XD^NXFJZebDYa89%0>Dz!B>#JY^*%Y`%6gK*kFgwpK5D#o3hU<T07kD0a7N
zmV&mzt0gA#F<0#p9`)-oR1NafPT-KCtfNF~sj`rwNF}CDcaYpGExXYcmt|GP;sw;F
zH_P3oN@qKk4Ctpmo7Lvp?bC&xsobM=>R=+JoAH#Po7_a?y}`uzBBGGqeZAkjHs}^B
z&DdNWtW{z}S^F~S@|VqW$smhGS9)&>w1Lc&ol}3hSbP&DNpDO_KST;o=V$k8Ay$Xa
zT?b|T{$TR53)yj#lXf^~Pj2@o^2?x}7MP`<O^=@LqnWvu4!NXOlGw+oIB{=3bAcjw
z#nFZbLUg*d1UK@q(NWJtP}hgS(ei3+w4oMauV-h5n|3jIzDkGXk9!lohN0RZxmy9~
zllziuRdG)&hJUhW3=O5HA00JAR%a<-u0p+*&m5A&*Ie`7p+@mK1IO&jE(U%JNf_?0
zvj>K=%W=FZ%A`2P$0fX>Z$XXqvO0UKxQPa9h`prxg~WZAw*hJ8|BH*w^kv?&$yUwv
zpw0C+O;-l|yr%Cv<AQlfntB5{&?{E(*`V|I?irOIhx=oipsR0__DyyHRwTxCpQ9HG
z^kK>tm&_9l%8^#7*=f^8o+FbX!#6L85V*~Xuwn`)?_tKeKvv8(CIQ}OTDC71@9x4a
ze-sShw@`WV&bsm@H>Gi9vh7&NX^L-^tb3>EaJ3u6fZh<h=sX<kFn)pEwh@rI$23Cc
z3|!uSi%<NRuI@Lely*D@x6_a+Wq?~JzHI%(HydgjF@T%Mjtgc=;GLqS<8Q_{(T$q8
zKmJN7RJgaKX`G8$QaiTNoq~Bp*Oi3R4Wa8nmF*Su1i#JCR<l1jeA!6=EX)O(Ey9G|
zpKX2JFplObliz{4UMf&W)R54&S$F}$pP0Q?yp-1+plQ9K)@n(D<B~X)cJ8Vb&8t>)
zCPlmfVjtoOigvSBaYb{SZ?Nq*W;F<b{7acPswJ(%wDTtL%^#gQX^slh`Xz786zgm`
zQ)LgpY#JNBVWi610M&4QN(^Ha4r^m@)lCqA#>=x*iFI(`1hES&yI0Mst>Yf8aTq$6
zR7~>eRxKa`)(>iwAJwLxWA3TS(`QSf`;l*go?~Qy3#^*uAG4Trwy}}PyWuNYup!FK
zTFX_nK(Mx~Kb7iW|FTezOC)!NJwosjK?^YlS!^r95Cf85#J0MOLYQ5TfKh$)8Md06
zf_D4<5H^CMxvwLjpZZ)WFvbvawNE<Fydud=lw2J+Sob|TO^WMmvmOfwDxwzmo-LcR
zi_Kq#K7rlJplp02ctmp5h!vpK-AKRwNrrJVE9P-4UeytAI<<MTL41sQ<B@AGpsT}n
z3wfi6GTyKPW`Gc~tK|Z3#LqRTb)e@>wtpHn+D<GQ5?Z8(MW3((2xMZ`Je%BAy02y-
z%V)dAc9KjJ<$UaS40lYpie+;q3PK`gM9>NmnB-K~gc)jmnH9{6PU>Hjr}hpc;Y)dw
zyE7|5oZzIM5DG@_N<m9g{NQ&+!$pcP8$tOKu!z<>NRGp!%A=S-?_`obIU;fA{4b4v
zBAzu#y2-u`N7Q<k4Z9jSuLPKD0!Z1Ri`T2j-cVNWtp%B0-}kp5?D?b1-2%KEI-z#c
zrRwWcwbR#cd`=DETB~NBH)8R558HkY7Yayk`-V&%3#iNVIl8ad?6u(u(nn1E5-$Xq
zm0ddF@*;2(gVe*HE`lxj*Lgmg+sa4zcK5lqE}olcj4`q8^I28uZof;Z_1>Nge$caG
zJ7()CD}51St-PlkVCbb#T<$<pat=c@p1oqq7onu-p~Kva?Ch{EUyJt4Rtlu;n_M@D
zNi}MGP=2z{C93Pb<OuCa<XkxUu#)ma<s2uWViqc}cj>gY){Y*4760h4?(Tqahx<v>
zRCGA;Exw?4ohYZ4aQss)dAt*$7J$+82fiCA#ppqFuob)Yl{=8r7cRNf{eBhc;LB5u
z4wX@`YPoHpN`RpF<(7_U)uRb+5W(u?9^WP(AK9_A0^-|0zDN;s4}utFGLwky2K-)4
zI4!<zP1<GZu6)V+%*NVuyy(xfbX7VmscuV2o+8^>mN`4CZ&$I-CSl2IE`pJTBAo5d
z^KzeuO%`nN^B%NUBZCzK<O)P~+Gd8zc(}mk`@3d8aQ(VB0vKJ3?D2)^L4jWa^#%$d
zr@&JaA0*DtT4Y1hO377$8{6`0bo$TQ^6JH1Ou?hm<*g!4_08vTvQ5xv3xiAhm|5kN
zNzerG`WNd4|KFXXVz=d+k8Kd(l%RDZS3dxY=uDZZ*@nKEyR}G6sM#f;Rq<ujl>wia
z(i?#Po5T5?t7%HjONDXORPE7h=vATo4F%3G+BX4XECEc$(}j`Ja0AxN&{esdn;O_B
zR;SLFcV2oU^z6{)E=LNZ27Za-FxB5zr@pR3-p&h!yw*RAd_%}_y_aA4g5m6yhso^T
z3)9n^=$`{HMAFuN=Bl#OtJ`R+hT-%zSCPOk{tRjYpfQgtmX0>huhSWI1|JmJOGoG^
zC~Q45c*aTOuN{vPR4<w6SOt2}h)NF=zMcJ@0b0}Z$a|P%0Q02K_bzq?@3RpJznTx?
zqVq-koCdnc!v&-9dR|GB^LC1)O?`zI`0`yv0-y@cSkIHc&K6}!Hj6bMom+ouaK63<
z%>{8S0o;%tyH1~`u&FzWR)0qZ;W9mwU1&^dr|zg5qveK?)DM2+;3Q7(${N?y(MblO
z)@^?oS`}_A3(gSbC9nCTzSUloVD1J65Za6AKn1eEoQqLLs+dCF^}$|c=2P?-&6jf6
z<bBBM3-f-zDl;P?_7@<zsO9U;PK&DBT?XN>(c5DYlAAwS8J6+O2gLfVEb1|db0d7h
z%an$NB2V*W(mc*)B3LbEpU;lNTg-vR?Kel`4T2NyI@EPd>jU}&PKAHfMB_8|B6}u8
z^aE};_BpwICdhtb@;<&T#$92pGt81DddZ11ud9^(G<`!hTF@UIPG~0~E=ggyUOtak
zF@2cWK{3y|JFe&&_MyeGj0F-jfDJ2nN;j`qrLTti$rxY$(q&v?>541h{@^RS6z#41
z(HJc0SAnaEw9`4Q4qj`4AJh%F&~b(Bol(Fd4F&de$Pb;>y7~SF8vCDayUO3D^iXGX
zSUAw}J5TUqpL-var{a);Elv@uGV*Xj(NyID`Jz)xU(>A#KH|dV4Wf0<kcK~LNY5_2
z$I+2QlsK@bb=>ID?`{W6y{d-U?Kj=zIZ|i&R?cc5#)(BD=m}})8v93C&f71A_7aY7
z801Q=xENZImkN||);xKX8YATOt>K`zgWPld-aH_7H4kG3B04B~@wMQF5*9`cHGTJH
zM)S@g%ThYe^zRU844iTgqn$7a3kFfS!%8p-fBpr!{2P4o-#E-aum1mWn7=#1Ks9$A
zVaVTMJQ(u-U_AdKkI7wghtd2Cz4?F0|AP$u3kJdr`afZye}3&B@aTW<=>L-c2V%lN
zQ2&ts2V(l)8S?j_@5p0X{ewdNCuje6^8fv7|1ZLYY4x87*S{Eowt&sD-A|*Wy8G)D
zQuYTAzyBm4dtY+;Jqlz0xLsill)T5!oSk<+jb4Qvjr;xl5$W^qDqW`!zn?RMK#%^t
zBpQa1{}fWg4F8{kX&A2lQ$-CkB#c!2`x9oK{wc188Qwn?*D(M8Z=e0=6NaPz6kq!v
zDE+I8kLQ^j9Lf4jopb!W?QYPM)+T{>yaqhm*XBX8#0z93d+F`;oV8{*?GwJoq=^qk
zB3Y|qQc|)nRq7>VaaS3~8T?06^=vv;ES}$umj7$bD4WK6_JNj0My>@3Io;ejI=sP*
zOApJ7^8H9CFMr5-a9rOCf{n`$knHj3T)DN_5G@DBmG{EBE&VW7gMokNEd+i!oP$Wp
z>&M0s=l$Tarf!Ox;{u`xb!=M(u<HCCZxDtNAD*CaG%*Dh&um@<tOr*xGk~O6v2(Z+
zM3qva0YrhI4#t<b0K~a%<e!x9?T7ekp;=f`(7`{rqz3j^0_#F=Sqi^XR+ZqjMns7C
z8_a}4o4m(l4b|UYT0}mmMBW^eI;xMABzaeph<u~4#LN>PBiuU(-1hlck}QzPJrz}p
zG`XMq*DtU7KE{R)u5H`c`hIOPtjFv!<8nOhITml%v7!TFrxKX-h~#d*4CZ&Ra-t)r
zUg16<1}Bs@U0A^*-!Ay@V`7Q#-2-rgTB42PSDQc#pdkP*z+oyoVfg0@t#wimpRp=Z
zZs_wp11oMU;dNddm-zQ@tylkOJu`Ew&g(C_ehX>GDp2``L!E#;e?-MPb2rU=((s)E
zFA^gIpN+gNYgA#3qiiV`2%xUNYfuXzl?~L>pVx_Z{&aD+t3Y-To+Dz6MWz}fchP-u
zg-+oJX0YVVlIKs!KZ4}DX#;RYC229r=3_c`C-d&yJAbm8x~#<UM~~S@otYy2i->N<
zU)z9WP<wmv#_iJEc=}TsbX9X0fP>Ptbta9bRKK^3kQ>2?dfBBXAjd%$Jjp1yA}~)A
z2!1Y1kCuJ>uHWDTkbD!PhwdRy1%4%y^k}MTaz?<&@q%6{!Mx)hhgxyK7yQWBVX)Zq
zDft;+`+?X?veIHbqMOpsw1FBxvISzxjp5U!HSECL6~N0t{fi{oMjgRnJ+6{((=-yT
zoz?2p<bg_GJGzUfd@i^BF^caV%D((<+Y&9_uk|PHMnmJK;l6Mdns}~Wb$SrTd!@jU
zM7gaW{y2=B8IGEr<x|o|Byk~D`@Fbf)SsM3c=TxesTWb>$NtI{a_~A>RaOZp$?;GD
z%S!`PRE>%KQ8?lf6D4u)9+V2uH-2&45;p1tKcnfvWWZigzNv%Fiq6SmYK*qt%OR~Q
z0Y+f`a@NsDf3EK$8cV>BxS)SK#y<C;MbH!p<~xBlS{ywzNj~c@+lQTVnoNAEMT+_w
zcWM`tyt|v@hj5Gu&|w=N_trsfizM3<#rz=fHZZuCaNmXdbTZ=X5dUo-sst?&gG|(F
zP(4hPW_uXP(y_`Y2e9;3B?=sEMs6wOROXF6#At}`ctO0LpN;}fW^uutCCMKi^6Y8I
z+VPctaCqqe`tthgc*xUvHZl*7A;Cd(?KfmZ7^2LN#Rg^Im4nU@gwnMW17;+b3;1~{
zXd70He&1zn`w#-lS(%zBOFQZ+OX8K&C!pm!ICfB^?nN#CDEw62w02${Q{>_nI7qt;
z`d0iZ(sAqwrxaG<?ppu6K04uCi=!~`qwIVy#*&HhYm3PQq^PzM-s!&IoHeBV()8Rm
zg`f6MB?#f?H9wkri{4>BKMtHXII#<2=mfEj8PV<XaPbR4fwhW<LxN9c;aJ*oudjV=
zx?^>RZD_n~%nYi}x<%(#D|%~T`yX=aQ_jR&akC`gFGBO>N@f3Odsml^**#YXzcX{(
z17IT}pO-aiQ0-8Rd+JKKqCWrfGdSA&d1Ym@RZMs`6{6Q`^eq!Qwm#LV>)eHKJo!<d
zhMRfS7n_HJTal~&xllmN=@(KlGtX(nkAu3cNtgEfJg2Vcj)5rEUH9()B`vQC+bKc-
z$k9i}e1z2`cMFb<p>33Ib5W|m_{^B;Lk{WR@A8BlGM5eTvF_%K8slF0KkgWR?-3w}
e8^Fi=_sTM#WtnlzkzjU+dy2AZGL`Q>eEvVu_<{}q

literal 0
HcmV?d00001

diff --git a/server_admin/topics/authentication/kerberos.adoc b/server_admin/topics/authentication/kerberos.adoc
index 5d80d06727..9a4e49fdfe 100644
--- a/server_admin/topics/authentication/kerberos.adoc
+++ b/server_admin/topics/authentication/kerberos.adoc
@@ -188,6 +188,47 @@ WARNING: Credential delegation has some security implications so only use it if
          It's highly recommended to use it together with HTTPS.
          See for example http://www.microhowto.info/howto/configure_firefox_to_authenticate_using_spnego_and_kerberos.html[this article] for more details.
 
+==== Cross-realm trust
+
+In the Kerberos V5 protocol, the `realm` is a set of Kerberos principals defined in the Kerberos database (typically LDAP server).
+The Kerberos protocol has a concept of cross-realm trust. For example, if there are 2 kerberos realms A and B, the cross-realm trust
+will allow the users from realm A to access resources (services) of realm B. This means that realm B trusts the realm A.
+
+.Kerberos cross-realm trust
+image:images/kerberos-trust-basic.png[]
+
+
+The {project_name} server has support for cross-realm trust. There are few things which need to be done to achieve this:
+
+* Configure the Kerberos servers for the cross-realm trust. This step is dependent on the concrete Kerberos server implementations used.
+In general, it is needed to add the Kerberos principal `krbtgt/B@A` to both Kerberos databases of realm A and B. It is needed that
+this principal has same keys on both Kerberos realms. This is usually achieved when the principals have same password, key version number
+and there are same ciphers used in both realms. It is recommended to consult the Kerberos server documentation for more details.
+
+NOTE: The cross-realm trust is unidirectional by default. If you want bidirectional trust to have realm A also trust realm B,
+you must also add the principal `krbtgt/A@B` to both Kerberos databases. However, trust is transitive by default. If realm B
+trusts realm A and realm C trusts realm B, then realm C automatically trusts realm A without a need to have principal `krbtgt/C@A`
+available. Some additional configuration (for example `capaths`) may be needed to configure on Kerberos client side, so that
+the clients are able to find the trust path. Consult the Kerberos documentation for more details.
+
+
+* Configure {project_name} server
+
+** If you use an LDAP storage provider with Kerberos support, you need to configure the server principal for realm B as in this
+example: `HTTP/mydomain.com@B`. The LDAP server must be able to find the users from realm A if you want users from realm A to
+successfully authenticate to {project_name}, as {project_name} server must be able to do SPNEGO flow and then find the users.
+For example, kerberos principal user `john@A` must be available as a user in the LDAP under an LDAP DN
+such as `uid=john,ou=People,dc=example,dc=com`. If you want both users from realm A and B to authenticate, you need to ensure
+that LDAP is able to find users from both realms A and B. We want to improve this limitation in future versions, so you can
+potentially create more separate LDAP providers for separate realms and ensure that SPNEGO works for both of them.
+
+** If you use a Kerberos user storage provider (typically the Kerberos without LDAP integration), you need to configure the
+server principal as `HTTP/mydomain.com@B` and users from both Kerberos realms A and B should be able to authenticate.
+
+WARNING: For the Kerberos user storage provider, it is recommended that there are no conflicting users among kerberos realms. If
+conflicting users exist, they will be mapped to the same {project_name} user. This is also something, which we want to improve in
+future versions and provide some more flexible mappings from Kerberos principals to {project_name} usernames.
+
 ==== Troubleshooting
 
 If you have issues, we recommend that you enable additional logging to debug the problem: