From 673c563e20e21c9be0cfadb447bacc10675dd414 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alexis=20M=C3=A9taireau?= <alexis@notmyidea.org>
Date: Wed, 30 Jan 2013 18:18:30 +0100
Subject: [PATCH] updating the cors article with some feedback

---
 content/images/cors_flow.png    | Bin 0 -> 20718 bytes
 content/python/cornice-cors.rst | 254 ++++++++++++++++++++++++++++++++
 pelican.conf.py                 |   5 +-
 3 files changed, 257 insertions(+), 2 deletions(-)
 create mode 100644 content/images/cors_flow.png
 create mode 100644 content/python/cornice-cors.rst

diff --git a/content/images/cors_flow.png b/content/images/cors_flow.png
new file mode 100644
index 0000000000000000000000000000000000000000..63b8be8f5e8de793ffe2c9504a6f1bf6d1d8a985
GIT binary patch
literal 20718
zcmb4pWmFu|wk8Q4Jh;0AcXxMpf?MP6?k>U8xVtyOJ-E{Z0>RzgAuuHO&U!ZMzB_C6
zpIud_<eYu>C%dDR6{V0q;C+CAfIyOw7FUIUc&`ls@va>X=Iscv!I2#VgmRONxQM!^
z!ErXMtJ)3rP`3im!X3<d2MB6_`f85Q00nh1rECV@V7chy@M&1`o2_}Id<>adN#OA(
zAM7OykQMOxtesk7yG~pga3)n-JmSOTsd(zMwx%zHl0Fuu6+r?Q{PxQer4>bm5_$VU
zrTyaw9Q~gN6{;6KVSQsG$TF|vYx1#QLxq{wFrpb_kvJ4egLnhJ8TH6~(g|sM%<Fp{
zxQAp+3Oez$oN??=m>2C&X3Zmvi6_+UVirT0p+*!4lyp1(jCg9-jmo~4Sc`5AVrHeo
zCKrfFHopWeHd82UBsIqwYObY`;1)+jhn*8KNizqzo&(VHA#@n-Civ06Dn;K4^~z#N
zxhEXMElM`zj(ohJA}OM-RM7lF&!vO<l~V$N9!<O6jKwS<(ar;wfN_Jz5qrahOxtQC
zJc)zV>&X-Q6I%Rbstt)@zDM2yej-^rD)b8@_eXT6t3eI|Az##Pal4+c$wQy7m&_qd
zM@qU+@uPbRz6t3FFfmm-?Ar1u*8!Z06w=YCh>45jzn^WI5UsCvwsU)2;yf&$)n!aX
zLAZZGqI!aU#SBiXLek+%mCdH4vE#+~WPr!xycg7KCfhqDdNH!k=i&JK(42s$1*O^k
zvxI8W7EIt*GxQOYT!LQjt{z%xPOVZfcC~K1psw3t&~fYK^oXKonfiGktSb9^1i%il
zrRvA1s<;fU6FGvVc7#(VEr$kJPeQnxk&?$pXeh0U+joMGAj-ZESV5(w)J$cnbw}{W
zE*-XmJ289p#uLs}`WHww25oRAaEsim2rmkupUuGRcnYa~19JIJSKnw<N<RAf`srwY
zVU-+}^i}P(Xxdz_<*WBRWhYo}gyhV06AIKclX|J?`9Q9hO{zA(tpAiCoc-z-9C{B$
z!TV7{vsm>S26EHHl-c|kl|F+7{`&`yrJvziQPW>-DI_WpR~{3@4=&GobBv@+3JA*)
zL==K`YZo>)7aKEJ?U}m_TcN(cZ$LJ)c*cj57{Qt~p*DOXf}CD&)SN!Nj!bAS?kh_b
zZv^oY!V+jQ>4jd1`D}<>chW%s6MtV8yr)aF^)pgl`e<6pBpyb4M$S0-Asrkw7bi@|
zT{f4K!Re2Kz+l3zL)<|dnlPM}Qm+2P#&etAY&;7ZtC2EwZ5TS+Ai*;eiH$10Z#;^8
zLlJz}cO)q-^=+Psr0zb$YP7Kq=J*zhF;}`1j<yLeWpT?^u~{?Dace0R3}Ky=9iVPh
zer`rKXYCe66f&4+EAdgQ9t%q=I58swu9PimcA!(a(SRIvWu)(d7S%a94gsESpTo6J
zzDOY#ewVv3k}hZf^T$TMzIcG|TnkTR4*j4ZSD%r02G$uLS<-h6x9@rkWHnInMvGNg
z7!0`a`G%9By?_sHrKfIFnISjGI^esC1(E8<IOF=~8yF_ID0e<~13XXyPM|9;t5pl?
zlLiT>Fw^VS-<3@%os@jjPO}9KDn1Lq&$0j02Tt@76JjP^K4KwE8CWHeJjIu1u>w=4
zW9K;9sO(9B1ZdJ${-(+SI!1k0z^GHa2VX^t(J8yu;m5^~BqAM|AXUTfrBXdPL=v5x
zIv^x6EH+=p$zUCg!8CvZ9zqKZ4fT}8x0LKJsZLFb?}HHRJrV^J(~}&jd{;gx-`%Yl
zLKQdr!lP0ug1$Y8o<^Xfc*P!MPFAT}B#vt~h5LRF3=R(NQ9$81;s`A*rGgOVc}5TQ
z7@74yS26Xpa#M=KLkRw1A`#bygqFhC84WAcjSOYjuv9$S8NqK1?IrR61r?M@=)5}_
zlw?j9Oe3$kZS|fmkiJ9vpyB)mMcG1N-3m@rRrO=T7u2Z?4!+3ed+K45_R;*5+mR%4
zY=U@kerS>PFs2ESEnNB2VN0qG>rh9}o@U2-Rb?Cg9CTY$iiTtH`tuL69_1*3)=KEw
zR>Rj{8_XioHGgMmfJj>MF3*Ka#&tyQlfRxf3`6w4Uvvp0Qve!K@DO++2X9k(GUB1h
zry<wk<p%}`<GD>Hc1X)h_cfvwG4i1Ch+X!WUEV?@KIwcC1%Pxr%D#Op(&ymThd~Wu
zVyJ`S(5b5pAi0(VBVf#a2!@@7DwR_-f7sF>hq7tny?=ZnA9;`uqJ&%4Iol(KQ(|J`
zuY?(c7hDR%mPqWinZtM|I&j+nhk<wv@f)G#{4-RqTqShAh0hN-Z}Z_w#XFN<z3@rj
z?v&7>n6R|%1D^L##6?&!&5S<VGR3UF{~SQ=Odom1QVTwV!hWF&<}Nzofd40Wh(P}X
zME(b=plO%G|Kk*z_A=+uR%JwP_l2Qd{tp1?{DQ4lXd0>;0zGzBvP``q-I`OmTtgb&
zELgMBEB_TXRd<3M%>dyKYLP_t%;Lvpu)4EL-X1|#Yu-5^`fPq>!=B9fzCF`F-Dqcn
zc)SEZhCLoMVG&j;dBqh5q&{6~joZCB+E~c`Wy}oB`9#Ix`Wxzzpnc`VTl^o;M^@L-
zp&q%^f_0?DVD5C)c5!|EJ-$o<pxew!6-N+>iC}3ub6m@uCr1Z*x)xh*b=z`~Xi%r+
zpx@;duQrT}*;7pRyz&gsU|*lRC<G`A5MWQ`nB-Ic#aXzj0Hkb16vF_;jSHo?bS&Cb
z*k?$2W*pa%a_*OMu-AoCN`<MD89Qz&h`8J0lBFI_Hb*@N&}_P#XfS<nlTmL*h-?tu
zTZ7Iu-Fm0|R{din(iI)nO%HgVy<8cv#1u;ryhGAzD}UIeE_k7zjO)0p7c7RsDCm*y
zcHzFWl6OU70=V%C&M!=f_bH0imODMoQ-0Jc-Pp3sTM&4S1C{*+f3mt1j2vXCfL{p*
z=!3@Nf&Ta2&J;C<U6F5v(G=#k|F&94)PbG$Fgk$f*$pN9?lcN^W`@Eusm^P~+Ly-`
zZV(ACltZqYR3){ikIoD6<$;Y_g};N}+VA-t0*`}`knd_aY#RzrT(CrRzs!R2&+FgT
zA59^7!n|&`oj&TV-dllTVh<OvyNUS&htc{SpLUV78L$u!=W&Nnh=cp`PFEZqr--t+
zAMpo~33>uv_kEfV&MXH#Vz9-G2fs711Pp$DdFI0Yn_v7FxBVOna=Y>aMJkZS@i7vt
zdh^wN>+s-uiw80S0T3}|AKke{tV}!wy&*S(ki*M6V!zq<Tc3EFPJdAb$ZT-f{DRhh
zM21`tp5Y<pddP~`iG9fqR&JV<8pgyMEU2-0HK?O*LB+;S82$oTXCz6HTUcjy%I@1~
zf{uK=7}TmpZL~L~cRm!xMx)iryZ(+oivyQO^pb?Viey(QH`1k4QQ2;uA&cJ~=flwg
zy;wr8X}w!N9!-^g7pm3^w~|UNmb7%wk;GprCWB`G<RtI`n=Z;6-@_QZss>p7Mu+^|
z2H9L=D6uCf=5*gfL?GmiD%ho4W4`nN#sVF!<`!y2+@44tO?K9quUXNrb>KgIz$kft
ztK-N`;26||>WzpOq9k+{IU(d5!5MdyryHew{k*Am{Id<6h!%z5XD1;YwqG1;Y6aQh
zG&Eu+Hv-YQkxJ@kE{zIXN^wH|ghXFxREMTbC*;|+X8XdDpI)1Iytf3Q<gm9Uci(7Y
zv-n{@7}hR_>Wt0z6WH_~iU0i&G;R7&3&w|cO+qgia(ffP3sd;Uy;UQpcOO-{WRc=^
zPgYuyK6Ia~^-Js))2UOjV1`p3dGr`v5AFvE+%KC-A&XXPx=@VnsH;XBz$sz}Mv4^H
zTOawye&r;N(*+I0;cHE|sW2R`HDT{5=C0egpYRdjvRX*4gezQJZ3s!zxOw4dJl!{@
zo!?&U%xxtfmQ^g+1yWV>k}=aT=z1K)6;SroyKUVudp!yFE-WNWrQ`jrXNedabc@Bh
z)ic7?s^ly)$ew|PV)iY`j=SGg?ybj-%!X4iDMvMh^T`J4#tFk@(^+tC@VJJ;HO4N`
zet+(^#w~t0Bxg4iS?=&h5ctJue39CH-d-j{7V+}TtYFEE$71hj$RF7i;ZIK0@blB1
zftz}z20Fu%TfVd=&aOgcpy*jzsHm_bGl2|pOO|5GdN7+zjG6Cm$aQJg^PkY3>rRP`
zVpKTt*5Yd%F8Li%-{)>@v|3<dmHit!Md13-`Mk=hE|8vTJ_P3}=9HFYj7bPqXn#~?
z`Ph4Tdo{>kVO*h60&xrvPx3qX-V-16`S`@7zRB!V9fMZ)J$`^d&;{FGAp~X)`f`2g
zkN2q+3xkvuhPw3t<d{-gj>Dc`S_&L0mO9Eec)Z9q&1X{S{^aY#8R4PIWS<$S=d4ja
zcRRyZrj7Sc>CL;eDHW>p+QXU<e|HWYw`l4anj-#Ssq~EOKum~GWt0Beldb3U89dOU
zjVqYyQW~F}*ht1a94d!hd-<^F5)R=Qw2my+DME=xzY&M`=(BZbev8)Zq?^O*pySzz
z3m3dz48FKZ23GyFJX>yqmnz84EiA`+OSx|k;eH#-R`IG5@p!{mh0*DZQtwCMp@m+B
zKa-P!ycgdeQV@io`Lzp^?)tOSTjWV!%+lyKAZ81}Ejn*Y9$ab|H3dqM(i|_opm!P8
z6ZkE0^)m_CD~Er*Y=wt+2LXuR8FoV;9<Ra_K1wOiJb$FmVI#D|`>`36PdxV;$_F0;
zHt(r3$UZ;eS~C*wuEAIt4RP3&-=V>Q#LgK|%Iqq&@2_!vVZA<E0)pe?fXyPTHfaps
zYkzsTKphK7qIy!=HdE)hw~ChO@?Yn78qz~`^0D`y;4kFeUWbyvz1|#4GsLSZI4o!)
zsk8zV2c#CYe7-#)4j~h-hgYjd!_mj^<V1I8=5Ia`p9fA^ZH4C>&1?czyZGoFOUI%V
zJHs940FL5(@>FOVC90TE#R?H|Hkz9+odBYA<t}Fq8ubcYgsvC=H##`{g%4w5$+h>k
zEKWV(2WkZJ@u1HS8<%Yx@RCEmrVkl=6~y4g=TLs*usS0P3bL;IP$6on-FJ_OxskLS
zLgMkC^CNM%@uK3zuK{2vx=*T_A+vD`2TPnW&`f<##B==*Y^BrH8syL49I!DrP=w9f
z+|!O*6F<qhkLRLA)ra_qI{3O|iJ$^7J}?=;#AQYs^i$DvjS{wj2T}Iep?cjS%;-ne
zi7KQd@VZaGb$7r#evOTIS{|C*%1tobyD%jVc%8Yszl+!_OYB31!cx*=)bHuBH#AzS
zIRVVJp}UnPh=f>F*V~Q3T%Y`Wul1>Y%YN_?Oq{#n@(lJHH|6(UWvktL`7LxSfTo>Q
zBbP}^9<Bt8!_2%hdMH_m%xVmda8t!5={79)CZyMHPeqvTUTH|@J=--|t)Ou|=E%6a
zh>5FrMtdG*=-v!a(Can%=6I@8`6J(NDoFcb%Yc5d4)W?COGRzhcmtTLTqBEQkgukl
zN@kGCVs+~5D>pP_dA?@c3#`7ca+87}lCB%t3P~ty@pr>Wv;P_8(0tmTcmduhzSs=D
zcbNa(R|)qq=(7}77Gt5aU`%JrPaK+1Wrd%|srUzvzv^9oD}qi|6XF#p&@y0Mx_^x?
z;PCt7(OclJQb6TTx1SaGi1X=Uxc2|Fa#5~vMyk@Omo5)76ESVlHEPspWgIh!+PdaD
zN$lyeYSe8Np&%vAkt(40{%aqH?TI>je2@D3&{fk*Y}R6{*Y+26iU1hHAq%xobVI$~
z7^z0?djZ+K#>9eQj#93PUGA>%kZ}tR@?ugr-D>Jd<%3ZjS`l2um6LvQ@|k=oB}4)?
z+(N3U9r=+jVo!Nso1a?yUPE1?2-K84!X^GcnX#k<rR@9t&En&Newg^H6I|pnI5{03
zZI}9Xir?J~Pd(_mD%=LNVF`7gZ2!98M0k1(2*hZmR#LmWxDo5&8%V)US)#@gvgh7R
zA=e_(?58kEx#OvTLZRWZWNhQe==k!Q?Qx(R<?HJVTcBCF_ud1V`ghK@vvX*y{V2U7
z+>3KYhu;^j0Fr>NC$@+D^_nOXmNXU@PP550^lLJNPi+S-*HN=c&&A~Tp4FN$N#?Z9
zBG1{GT+4eyYI75T9?=nvsD(!tkWnQwbPGGunn@u-S8+?p%BcKF6Obf#rU3|Wh$d?{
zw=4zbzpdw#ouMUULrw3PRJ5PQjBylb#~-W-B*Lga#UL6;yPj|nq%#@xw2%t0_+99#
zSL)+)IV_8$W4)>kW}biME>ww7oY1A^_`;t?DVA0hNidVEdgOASkBUPOTT;ze=rrce
z?ESR9o|DZk-ok`@@@t@-kG%xM$6#>Z$?C=Ccs*gw(P%hnNH`#vriu#XEOCGT7_tuB
zs!X>hCsBZK<yD%qx`!X_G=#)cQlj|Ihbp0elq`j$4rAjo<egdLcRsR5*m7V^ncAi7
z9?m9sq{S4X=s*$B=sexa#EhiAeZ*DvsZz4scMf_j-Pa9{GoTw8eS}MiSV-32rf-kX
zCr=^*E<+|Xbu1UYsjOr7`;6G}FZ6DMQ8Ia``2g<tpku3nZ}j{`VQ=J{Rsl_?YLqx6
zOf~6*X~Az+Ax#2*kqyCL=URXf8U4gIfmm)c2J?5}Xg2Z|(@EhTINw)45zQg1<zp!1
z=p<bKAUUaEkml%+<L$MRY_8HeO=>U#W6hUwOdtxOH}WRl5RclR@n}mvT&*&6>(%Za
zyWib>+)VkDGELUwZ@A(`o2|Y@wG`I1kj#ae28edz?7*14DOD&wz7O4csOaHH{alTu
z>;2)mq}+Bex^ZU%>HRvwDsA1!ZN964e2GGZbHl%%?zE>{A!H8{Hu2snpT}mWb(3<v
zt{u@>(kv=Pm|>nY%Vi~L2Cq9!>O_?=ONHU2RvjFZr|4z46GX^iVk>``Z^}_TQx=~D
zLiXxss8@*vMHEPQ_FrFYLi~Io%Mgul{Fj~~Q8r5;>)iTvZ`&_5Dw3y&#P_g}XnGRk
zcu(6mE{kI_*u7C*VaVYt2T1_+H{_`=b498dZ3N?<sgXS&xkb&{zcO2`%GSWL4J}<@
zk-~LIQ6mkQ%TbAy&@<yGWR<v-K0MrYkyGdO@Oe4iZe!8|Z!kwSE27~WvB=fth1(W6
zC7-B>RU3zRQ}XstyH<Xo`Zd$to~=%1cVd_qq@JHWdwJL!NcHd9ZIr*OG3<OF=6b+Z
zpcqopA^URDL$qBK`7?<JY!nqY@Lu)-n@R0`l)Iz&S7@COD#z9&RN2Zs<1gTiqrDi|
zy9sG4xXaj!+uK3xY@Y(N#k)GwBgx|jbGkRrDFeR_Fw6;GVXrNXkP!Q|!DOkR2@YvY
zvdc*7%zdKl*5f05nP!Ky3gG840_b2K9t)xF%}TTG0xH!u?LrJ5?jTsrsC}U9lPj1g
zMOxoGODK<-C#h0~8+SrR+@F;!FWj};!-!6$jX+Db6s?{o;iO_5fJWh0vzj5^E7qVz
z&LtBR3?hbjEz;00T@ZCR7ajLQczyAh`~m1tZnXD%tEyiT6VK=UMxb;^7hXY>FtNbc
z4A_|#k2_?n$w=|^G^AFG^W-#z2dXn{)X1tuF&Xwn<Cx}|`a6}1XCHM#T<PkqH_PaP
zk#*Mk&i`7V%UB6#HbN@ZR<|*!W+sQ|gUbCyga!?kL6G1UC#`06REswD%Cp|)brg99
z--+CK2DfZ^*tWD5KpVOEDnsomcb;*|O)q6oS)BOksrqPvn>UL`5BdJ#X?73zB^VXT
z1BUVo7D0EC=cr`%-NxL7K`gmCmJ9u^JfRZWx<CK?{!3?ji~PXp54qiq*eJgC%^Jhl
zolE@SF)I_(q!eDMcyR?>woq(A8AaIBm98+&Y;Te3cbJogJ=ORND($wtL$wjwmwv&8
z<_5Y*XRSx19NG@A=?V_a>zl2OS$A=9UV)$kw!}?F8J+_p#-Bd8uDk+gZl0d6L^<m<
zKMr2L4M)dtbPpT|i4<tVK*8XrWHSGjkJ(7xGurz`e6h0Wl|lsgkfSxUDG8n4KOh>h
zt}vBMu%1~vkp|@>%I~U67>z+Up|7BVKfgYCf}b^;2Z!ZAxZ~P(KbS@8qInACU+Sq+
z^{We8kL!1&8;EwT`3c)zB$xkH@4jsh{AGW0g#ZFOmdb&9WN+4dylVM=ML$&f3mmKV
z^=Y;qK)Hz>Ws&IS$8yBL-iuB{-U~HDJz!U>#dm|Cvt-Bkr-qH+_c$^TGyzI`NuOK1
zAT<hw#zmbfqxr_9$46}p%wOLTa6(2xKcrm7G&`r0NDW)h+kE#&qFK1wAoFlA?3QW^
zF_#yUMb-L@(h#W%nfqFcw+Dok0u`r->w~P7(KF|3wxwss;0QuSlDmxxVO{r5KM>Ia
ztx=)6zB;!lZWX`#EIjx4qk~LQ%p_(3?|gkhKbl8pn?&hFRJ+qvuo&X*yufUyV3FJH
z7>=U=qwq1&qs89ra=$l4aJ*Nd4m3rLy~YR>z~wmP2yAX<LX?Emr2iZ_A9qL|DQL5~
za5dxe6RPG%k;1%;Z>mW?mO(yk$*j{CL#6_lw4`b818$Bf4lTyIVqqv5l*`y*JYvos
z54l}q?`@jZRB?q#@6&5sUk-0(gseQ*gT+1RL>1s~w(%0=b+lxQ#<MTdo2Lf1rXIp1
z57ZM8MO&GU`dgbkYBF_AfxSi)uW}}@#rFC{TI@ClWU*g)u@_x-R8}nmlz1Y0Oei}|
zW)^T(+tGdfezSbF&Y3^q4jw`1+F_ElJX9?Z$))dG4vw`EkYA-5xTpGkKiVU`!2XbN
z{!=eN(V+AV>RnRkpvmC)56u=kaEI{;Vpa34RHzKSSHZ~zQXS0}9Y_JBBVWIBXjJpv
z4QA_c(fDbh4Y(BdCK8=^wU?C`x(3hulEXzFuiQ=Kf7l>i4_UrW7Dq$DW>g1Jpe(yl
zeL_iuuuWJBZNprX_+o1{(`+h7v?8n@wOp*8=g2~v;}BYR9Ym8w3DNnBYas3@J@p4~
zb4;lb)SEN{EV&-VWaWFYIB6TkpQepu65Y^Z?Z7#i%64Nj>A#E91BJ}&$4yyl3DZ1S
zjwBkzp035=gAiemYU7DQ$dx&cIEzw#GdPM@&P$zIF!8zJyGtlLdLNS1L{I0j)1<K>
z2?X$6W?<<WjTnS}vWh+_errUSow{z9%=HlfKkaO74fWB!IU=H>SB3a1f#s0F&2t;5
z6`B#ra|5ow4=ItYc0WvvS?7?c%NE5*(GonnQJa{WmXS2SceR%|eGl2W+Vfzm>vSbX
zA{YO8SYe@V(N>xi?!A=FSeF)3)}fqp52UhYJHP6-m~8r9@f%d`_VEqKesZb2$8qM*
zX;N#_6u^>NW5}Lr!Y7@R`59?{snf8NXL?emUd@TJS}i)XXdBgGWOcrX-Qst|>m0r<
z5}a*At&%T`L|ddk!AH1E)tg2|lhF=KH*I9nBpW8<qGfdOjLYrp$RxEis_y%0Oq=WO
zy1t*W5|0r@qU<3MQ^`ZexfS7n?IM6R5wNv?>9cLhuAPa^`nAz~=y(Ue&UMu_i^nTA
z<fDeo!d^;#|2rs{VhQcu0_LwB#P0jlJRe)b>kqK?x#OfMxuO#q>*R7ju~{(c4^6Ek
z4<($lHONl1Wz}#E4bBSWv**e^o>WUhrD+xx5qZ{j8>3rZ`l39}Qcl%uGWBIxA@F!h
zaM>E*G66Yo8_A?xSnQlx45sq84lE3^V?3p<55|*Mt!zUYW_M9-SiM7X4n^iok9*+k
zS+t~cSrEuz;z}G3UR!9mp-F}XL$f|+wc6eo9?^Ub;7pi4O!u>0{~7fejP}&ihmf(Y
zVeh1yl~Q{t*g3f8sDMd0b(XwNwgC!$9;g{_*t+7qCF*h6cvBx|n-J&IDyOovTCE@U
z8F;a`*N_DxKKL%K@!b(2Dk1qXCWt!G3J#-0LECW6K14;v#L1Q4Bn0;$;Jx+;gAQk7
zeh1!pyT2SzLp`a4kLyeaxKhknyPN*pB8)7(8xb1T8Z-Hw1G(L=*_N|%(kPR)a=_*M
z{)zs9GKMZ#N(icWEKsn2NbKaG%iw*2?51wD#xM6?i~8=JF6#F&-Sj90XQHI+Rny74
zHWwwM{Bz03FK$mtqwAsuVF^H1>=|`AR*C{bD#R0ogJ@>k#}~cl^A*)Oo8>G7*k(JO
z1ZXxg;u2`4Paz*+Zvy*{&5w+)Z%cHOL~z)cgNgA{+Ki0v=E>n069KG3%`Y<qmOiTJ
zuxp_sIiAQ5l!i|;SM(M~g;D~0yoe6P=3b-j8Z38e3NBG32cq%pLXcSUyWCf5;eLE&
zHLQz<FAdWLF7!$d@@+Yb&))|YLwr8<-4(%%?GSA!orhji`+3dbVS;#(TzNU%pFvT2
z?d8J>5qUpsmNEP!6}PQGrAp6}AxnK9FiFi{C}mUWViZBVHJ2hQ5jQm5uip%1kS@<T
zUh|9;x#n$t#_G=0f)l?@bWrx{#r<`WKlYNLO_<`qNl;w4^Nf=pdM$P=(hmTeZNw^<
z05oQ$(#eY^8{aMxJD`Qn{ms=g#y<74i};TkiLOeL=uIw<FjQq3QgNHy;B=%0mQw$1
zPNN3he8YZNM8nezq~;7@v&5@VAxs$o1S6~iW|>q}qH#7i`BGt9EW|brixJ=^3?nUX
zpPgP1F+jYKF&wh^NdrAY3)mMIjM0iK(#ZYJLG7Xo{^Y2dEs?C+aeTR(c36shg9D2f
zSmb}r`Xabi!H_$K%3o!;lUdx+^GMbvdUKLld@k=1EEL7QW9K^Rs}C8788yA99P1nk
z^9dne+BokLh%7kmV}Wc_OQ8*IPZum(K>cIE_yHAF#BEovqkguy5A>Ue0?+!zPy<#k
zL&)Ym(GRzzkWKgr1Fjx5PDL^Pekqx@gMj+-5WYHa%cR8)v_kDh6t7mMU5({XjfR5(
z6|*>Qx6HsNZnQBz0?-y9_+SOL6pzS(<iV5{jnmUlXUZ733V2&MiKz4FpKVSIA2;pb
zM$&WR31gWeZg=6^PDNrrV;ItR5KJMU{quRB3W`7HizNi{ADNDWp!pj%j#BYiEDrhY
zmE01P)_I6d$YD$#H=A&Hov<YRIj|ec@aw1~YUrJu_>UdmI;ir%MuLzbrM)Y@TfA|J
zGw+Zu1E1dvS7x69m{p+BemWbo%K^$hAL~cn>>zOD-|mex6x{%*d{!Q1^<&<f+2CAh
zRj@LkLLJdR34LbIGI&)j8=5ZVIS{Q}H+1!k+|%h*qFE_*({_`u8B}usktd(d_{M;-
z1asqezMw+KU<JV@1h3-?b!@f#vx%XKVSgcZ`@B`9NoO>WyiSwOGaoA@6WJ_u+a8DL
zK=_Y$h*th<N&k-y)&Dqvru}yS-1|5$@0y-V$JaY(v~4*F7?c-sy=Y-nsMaR0bFr&8
zr#^x_YKTuj&WL9jl1IW6o{3+JzLyAv?8|six`>gJtT0PY*d8eyZNfrJ9olA!F_<&+
z#*0i2)sv1th6hUq8TM%#3^h-PI^$vAf8gs+BZrzbN%6V;88))r%*hiM3U+Y?_O8&l
z3Am_}8$q(1&;{8ydRu{ZN=5OVeD}q#Ov9QVLF8Py9QA2k@a$4lJBO-{C^4Jc{T_ml
z0J2Fptdv|DQ9mqWACSfCj`Q7%72g1+SJC}>_JJ+3%Lmq4Nr@jt#C~52`54kE?)akt
zN8iZP-6=0qmH;$UHQtmcY6rUkx638>xKllee*mzjP41i1-EH+7Fv84PE4?*>&o3|g
z;&ZwBt?PfjJN`aK#y#TCfAM7exz+Ps&eYo^Vt@w+28~{GPUxWwVtPJ)OI{K3HA4A_
zp52k*i}z;Usu`cf=b||@4no{-=;(*4L_4pwSnPmRF@t-^daRq)+Xt?Mv&er12L#vU
z(tD3RYSjHYQL27Ig$n77tbU{8^AkrT{)0!tksC(+-)N$ziNh3Y`;$?jsud#;ESZeX
z6yNrrSws$H-M7T*T%q4`SpseZyqzx>qn;wO=+j4T+O3Y9@kC3oCLeSVU*P*#8Zhaw
z{o}SGP?FYgbM`%gm&eak@E$U2OMAYixZ?GYbufk=aMc>R`8JyoJ#8izXb1Bna2Vuh
zH`<aG!|||j2OXa_LZv0!%G-{Iz=rsMB(6L8I!uBi>A8Yu06pKz6f)3wK73Cwb2+C)
zEm7T@O`U;k+h8o-cWV>E<_gZ!tbFHb^ccFqEpuRILZd@(fZb=`z$3S(_|{mUGh)VD
z7iA4z4>oY<`KEwhZ!}1ON;k~eJ)AeAZ>EoYvJ#hLC)9sasg=hC%p-$UYLZ@oErq^;
zf&6Cw{4S)ec_3up#}WcW-MFPes#4VzfpYAId^&^7@|IuBc$E4yG+jd+^=#DfeFck#
zK^YR?FlzCQX&Ahbk&af-etoNom;of=$pkee_5%94^nWqa6d-My5NE+m-(6Vd!&WEe
zazue37h9IS`dr`sA|f7jetCX-v%{kk|6QD0?eS1|9m_l}9Y(P<rjS;)#dp4lr7mM@
z^8I~^EwKTIC~?EafNZ+j4L)wvve#9=+Ex^l-ut8^0%?I^TSBJl_&xoVRyTCDL8RV>
z2R4x^Dw~(u;+?QyGdd)yv&2(K$@P91g^jHv$o7?>@8W!)6{%I>KboCi2B%9xX8wqt
zSPO_?2_bVln>?|Bz)Q9ZFcaL4fuk>BT%=L8&Bvr&5N_fnCb!J#fcv00Ro;)0-IqvO
zuw3nWGD`fmm5iKoc;I^^8yL;@F4|Ca6BVv6Zmz863J6y#HSu|zBS;i<13u~mj(r6l
z5-ekWsF`cz3tmEJ9$Gpddbql`dnHm7$>Q@{-l_38zN?+eLT_l7Bc)AaG{i;9Y!b<N
zhW^4Kg$!`B=2lA<qIw+~crC%pb>+@#@x5SGBo+$RzySPgGiLbQ^A3VxBtF;^K4`#<
z^l7})dh`pYpQPD15J@tm8LkTBSduXvodxAoCE~l4HiJc}Uj7u7o?=?)LY#6+73|{B
z%R4Le2L$Y5d~bUw7-%sE_RCQoj>zY?CNCZn6M!A>MWDE{vPc|uO03=c0i~v?&G~?T
z`O9X#+1f_8=((GaJfA9%S#NUM7cPI_*|80=+`8xsUvy5zORm1-#%<gYcfcc*Vp2~*
z)JgMlOtzKTjFEwX5v9$%kw**Yy^cXcpn5}%YpWJB?uy-8WBX9OPFaSmUD17b1=;__
z(2xfKufbzjkfc&9EhM%wTWuy-M{buyZhK8_$`;gqTCnJ5_G=Yq4ShCQgW@TXK5LvQ
z^~9kV77||-g_bqOXLalDbhoC`@v7kc(d)@FY@$Y3Z}Wx2BDB@4xNsHpF=m}{?MNld
zVEoEYd`;U(?ZBUO)&+yBHgi8EOy+)m<d`>*wyifVhC_G~@YoHooLtt?4lO>t%Jdo}
zx4g@8IqPCO6T)^JO<yqLCEL2>NU|9E36NVUCsZi$(qV9$7;cGVEQwbzQdZ2H+W*D#
zl5E0J2wffy46euheFer+mzw}izpj6kj)Z~HM4BL^_%V}kjm&|$;(QM8C++gliq%g<
zVI=gLg`?+2pqfG^sbU!gnO-J|0yga}fRsz3kom9SND$?JKKs9g99+p1GR{VCLwM@m
zZb+d0cEkU#@bA<AW9+{ORhf9BcE!a2tppy$$u7?UAijw&f8M?vl0nX;0JF?4-lH(r
z`PpG98mnMYG-<mhX$ibLSHOJBHQs`!Was=Mzr?U7mo{8`SEye;tND<FZpA^n6suTD
zSmvcjFRxe92*9o=Xt21}!xKH)@uJ@TjN(l@lnXAMix|Bv#sgCRd6<<v%+xJUy@(_@
zf#)s&SM@djHz2*QtTn66{20S7#rOt3u2^J_Z|}AM^581Aj=a2xZzZu7Kecx8>nL(@
z^`#%|UaKT{v~|cw{g&pYxWS<eK8fPT^fAegSw}qSLRJuCu?)LVr+kPNze0(5xtXAM
zI%5GZ?V;k@Y%z}qVcb})gES=TPy1rhRtwBd8Os@{3fg6xRQAZOya=|u3ac6ZqdWCm
zcNpD80d~1R>oH61%B7!Jf8(tP%0pqTq2(w|V9lcyknAo%Yn^wy{^*ux0ODyXst0kd
ze0_IoJg8Aj8C7fknbh#kI>-10v8tf9oP0tvi6S6I87TbYVGmSM_~<K9I>Rs*{UR*D
zngmpd05PwKzmBdyQc~^Z=~VD*DKy4WyycBse)fU*Qlj^4EI`I^I`;s=JM3{5;GI-c
zn$I3OI3vm)RkBTPow`SVAUmea@LPMT=TLra)|UJ&e@2|va$jV~_q(3?aG1O0*AVk}
z4)B)J-SeB+TKtE9wq-od@Zh?fsURtgR9;hMr;&Q{GNkW4g#y+1X!U|ti-&U;fD(Um
zL!eW-dFQ*dcVyd4#5Fdp&zG09t>%Mww7O|+(_^kGlGBo|JOZMWS~JzS0<Xo!Q1Mq0
zGh4aW9<=Q=cLoVWg?@m~;aWDj;iH_T0m_RnxQ+^O6y-HF@sTC6AqV)nJk&+#2XzEY
ziSL@3QwfD9tRBnpf6PDte^Ur3)N<axi)*)rStXI-QoSRn6(c`TqkRgbQv0p0#v@EQ
z@+u!vlwf5Pe^x4+08S}qIuUCIyRZX+Br-3!^gmR#5<w&<5*}c3SE`$QD)FRTqjJU&
z5PDOgCc7VnpVEm7Kk<!B#7w0t<cipY6%o})P;t~;4pGtk+&x88zT0e=EAd4C+pbhs
z*gC*_Tyo+SE4l#T*(u$4g`5_n0APU;ZxhW^H#nQS?*?Q^`le)Fcp%aiWl&UGMmMqb
zHgGPsqU=H%PsF2?sjMuz<jbEOeju?Fm{Y<F6#28gid3u)DMntA|5TE{8~?vnlK)m%
z{&n~->x{a@L|K_mw6X?rg$scf3hAG6Q3<|sHCJ4gMwmvPOTcR&CKO3cD>$*TZ-Blj
z__P?QICen{7$LYT3791=FJBB)%*Vp`Q<snnH$V=G^umM(?rmT3X2X|Mizxy4z)V}w
z%ITD2g}c3b&qwB=2ym+_2?vML3>ogBi@;l{v_j%djL-W8K&hB)MLM`+XE#)9pvhKP
z0H>)peEgkuTbf*Ei)bg?UDDw0O23k3llztm1UGr;2djO*<Huc=rL)Tcn7onkO6Fsh
z$NCaSsxybzQf*oO*_QW&H#ImhG0Hk9ZGkoUaphHX`l24wULbC_QvW%jGqqwO_Ndj-
zsF%4Q&64W<^$yrn<f4;()wX2Lf`T8HZ8gI-pO%33!&k0_4LPo8`q_6awxn&br^D-d
zCCtGQ(}vFeC()$7cq>VF)=|qx!_Tqd7M}L95>I=6RfP*>C=)ktD_6vLO|8ppYMdOK
zmPE<=*&t7=j3Zm=wb+KOjI(s%!2Ho>P;zk!Bs(a!Xmpt9Q>|pFjPS?;xtScBx&jbr
zi&-scyyTEr0g!a&TGH##7p}MZo<+@-GIxZ}7P7N$ZEDTY)i&9>9IE4}?161?QKa@-
z<-%3$B!?=!><nibueHPFiro%w`fL`1u|{tU^L?(CQ#mKJTiN>ejuCT`cJ}4Hvxvs0
zb!yJ7mi%4qR(}PBp}G0{+c%qE-%hl$0X`cn9EJ6IXxI378yE)YGK*Q`_{m!CxFMDh
zwVt9}qq>bh>3@?Skbcq|^hN+Cm;J~7{c3?Evr-lhGo587<(;Iv`@PTAba3vSD{d;G
ze1z)atgA+R?WFc69~$x<8s0S7`O+AdlccbH1znQ6NAgsCdA%7tSAidvnXz#NYFEI~
z`GO4|!A$pRPl09&W?LomI}4mN0x2I2Uu$=-c!xX@b^QyzPnNT*>bayKKIlSrNQ?zb
z)E|2_(U!gi%<rel?^7HbpLIttF&AueLeSYv$a9ZL#V$j=4Hnj)JM=W4MSi;>)HYLz
z-99`M5al;0;yTbNj|k!#nO7flAr9$m93XC4u$!M&9C(IM$S@p8;N_y{s^VLx_nz~l
zx|Qnhi?*?E6*4JQ4ge72CZeXSFgQx_9z*@3tRIu2(+WD-rWy0e%d{pL<Z6`{x76j-
z8o5tIuy;6!vuCuNB_+3#arNYs#dx=GUR5=`Y7ZOfPn7z>`5@H|wc+M6TNC88qRz`U
z#u3z0wR<yra7WG2l?z=f>(<_<w#@mWq=0EHS21H@_dMRmv{6Yg7w#@)%&e3;XWEj*
z&xs$;45Bisgc>R;3<``{Oqt?LU~*h)l<8jfYAUrG`Ijw1^aCDm_9;(%LN)G%EdMB7
z@BDM%tLSf+Qw83@@Yx|(#vOsog0`>cz#%X=Z0)fl4Ti(9JL=kZ!{>AqhruiRcI@ae
zcCru)_q){W1@2C%N-1Ka-@)$k6NNYVR_81^$XU{O=(A<cR!<T|T%kg_sbZCq;Y|7s
zVo<<L0(<aji3*58p>n|`SHjsuLzfaVzn)(Keg7pkpLoBS=MKkC%)C7XR?GO_tuUum
za-`9#E8-H^U9`6I8Rb!M55~fleVfi&D(;{hvA27dL#c$p<&<NIeW;qvUN$E`_aLaF
z#^FP4CADArg4=ty60ES?U($GzLaNxhz^?IyZn4UlidO&P1;9mY>n&!kkz0|&mF}+f
zTfv>3!u^0fi@KCx&k!450Lv=PSZd6kaav?`gV!l6cJ-TD`6xEzQ5{S@ml|%F#j!o#
zku$b0&l_n!+Imz5nXRw~R%{&-I+*5PV3{jFm-pCt2`CVno^h3%v`f6(WN(Z1r|Fo?
zW^1GE6p7jGirazF4Ph*CdE-1bU1X3hIQkh2pPgYDvKHK62o<^ZmL(s$)D8|~t8)R+
zZR`tpIU6?|0y0-%a~=<MNTG%9X@hGNT3yNzoA)C^+o#0Nxs@_6q<1U(2_Q~F;jy<3
z2O_|nkoq<K0-{a5DPUBePuDd&zAh?o132gkn3|*Mc5JRzD!+kgYW`eWblV;-ZPQrK
zBK2L3?+YOSWhs<sG-_?yxOElSDyfs{JLM1J$E;R@EeVS`Q_0C!rEV)^##;EaT*<{C
zeWMe@tG?VUG2rG=yaxWLcF(5!%ZwzwshH4e&D(zxe>SL`FSR<yhEVsyfc}fmnV10U
zJ=TN}9fP97{8d&d*glkJAEmXul0X}|>VSl&?l#W_ps6hsVm%RCLB2nS7`A8(@10`N
zgiub*A)#-Did40?P+PjQ7Z$X$MwUVmSD*#Z^b9{OF5D-xmfV|x0ul~RqqA4)OP-W}
zdTYIC#XlmRMjS8zRbpmn)y3Fk!8ek!Njb8OeH3jR6YyPcYgBb>ZyjwflWHIzXROAX
z{Gy056LJl$K>Yy!2FQ3y`T(i6V1v9PfEX}gSHwS<QU)LFX)P8fH%oD-Uyp=UC;-lM
z#TJlfuwtEnd;<Xxw4JEN8+XtEr&I~csp10@sAl<l-qZm0?8Dp_y!4_d5Mj2?RIQK<
z*Iw=!SZyw6_uX6mJq8OZ#VO5F^Wex4Pj}*Ko=uz4Ru)*1{LvSWNi}&s`%XY%HsL?i
z;F`-j7BA{~id{OXNcXSy_>1~)OyZwX<lhbd3XK1__}>qKGXImR{5R(EufzW$n5?+k
z;vQ#%cxHlNRK?;;+|_dh)fE&b(&o5^Y-VzJ4AM{Y70SvNQ_~8mdf(<zHygPG!HVB5
z72R~--Fn!e4D*L2&V-bL%pKx<t@9=!p3KC)ZCjW@Nr?qNp{xu0+YFXRYZgiXsF#Y)
z4+0b>8I-z<vD6#*Zwfi+U}m>{6*zvNB|2f)S=lUwV-;#R7sO+go&cnPxw4wYIUv|-
z=~T@^A`nB<NED@&rLItItu5LTN3Bb7dB=-2tuEQZuNKD|iPKKR6Gc7sWt*93AC34@
zLI7LE*HNS2(W~U!0z0^62nypz4Awc8hhLp;EBVm_vyP<v%FA^8bK2Frro0&VFbxA-
zCl=1Kp3>fSj&rVCdBtXvL-Ns0L4(GXphKpmjiPxqAeBH!c*XgQC+%(e)TKPY#h_0o
z5|9Ywo5)L@%pIJi#vo)uIUh9{l*6Pe2DWdqSa};^PHseYU%$AaWNY9U2jty2cVCs6
zSsi9PG03Od=Y_Cp>Z&pErq36P?Mu^INd=7VYsV;#3|AKN9W?YE2}Qjj@zvF5*lBp4
zneZ2&&vk*wz#10AvdzizQ8Q07fxbBYY>q4I4@*1m&{59(7hEkut1ANRru?UU=0gR@
znB3d#982>af-ja#M^cb%k>T5&G&*67!`dt9iu8!%W2{vR!=3IEt&MEFK6^xvAB4v8
zLB^+SG^Pm4AvW7?hVpVMi-Tczx0c?dQ(S!iNiY268?25n)5oe3xzq2$NS!I|(p(%Y
zF;ZMhY|2nl=_Lb72CPnEvy(6nYQq+|S%+Z3<?8OZ0%=<T(`TPdV*;f3Q!kWr7g#^Y
z>ds<%-6kpG^7;WtAGIV6M*2Xu@j{c0spGjewqIPDXK%ymJ<08|Sndoq@G_?-cur+r
z>G`k7K=ScSMT7`bK4`y*HQEH$w7!{kah^$a^6q@q9FDp<_}16cLEEi4`zKWp`!b!g
z_AC+KrDF^l|9XBJd{ced@3N0BT%=a_G!V`#Yx^RX;zl_qq!}K3jPp(mSY9T}anyf-
zaoO4U|EYi~g1DrU)RTkU^cA0lr=}lq0}Rc~Qt74TR1_p7wRG7bZOJ&y(A$znYw~2m
zl&FYCo$O9m^7zkO!rs+6*EF%*40~#a2u}61g~#W|Un?4nmAW#dK1(ZsVZun=wc@+;
zv7I|du5&*_cDxK5`F&d8=bbud)Bppo{c;?dmIFGyB^~xU?z+XVVh6Yo&P;V85O-u+
z?@Z>3nd>SJ+-SWL1cxJ!6@+$tG{<R<<+k>tVlTE>wb$~J_}*|b%zLMkhUb&1zYuS9
z{Dd-HIRoNQJKN7OZwpXr++<#+>4RQqQW0&%1kI<)iSsgbxfrk@i0h_Q<(joAFC0_=
zug=LRM$7%Oa|m#br#5FlPTk{+9mEhs;u9b@35jiYE9Z=>e7$iYVEGE<I<MOLaJR&K
zcbK_nqtw3hfILFu+maLXga6K+zG*J|R`K^iWh{8U)v#D*F6wspjsPgaO|};?8-p7c
zP{i;dS6v{3#b5A5j8bo=Cw9o=lIX|$l?y>;{e0%*w#|_G^SItL!Pr|R0?MBNaB1~I
zR|_m|5UZZb10=_DT$!3CX#m5&K<`s;CI#^12;=hJh3&P+>+U{Vy5iZ1rEmL=JcIaC
z8Gs9htUzz|tS1UFQ)@wn<)hiY&YY5<w`<FC>XoI0l!qi=c!cDoFi-vPoAOz3yBLme
zy#q?O5Z11wfJ}ScCB`7gY+W2xbb#k+KhH~4EJ(!F0_JD1ninx~p*}#%yV%6`TfT!;
z{LULL{FoJW#k$G&WBqno#HoIb7FVzV`amejH?siduB#a?`^k<396WpaBxWuH1fK1;
zA_5Is7f7$WJJM_pn&*-qExxC?7P46(E%BKi#b>?Ic$1sYHdbxah0e0Pdj@*gr#F6+
z0*Ow|oObE;HyQ$vM?$!raXSImx`V6Mpa6rT{bd`BY~jk;)`!;kQnZI04!~aQ0ux(o
z?P%bk3_ix{6vDo+ZagQGFYlwOB>3=w2QhQB$3LP?P00I8G*+R96{jka!dHrN-hL~n
zZ24O71-sy0PF{hWRd;Os-9E<Sr>$M+_x+UJ4CzPD0z+rB<*pbSmH^un7p2+zzMgyh
z)a<vv>3-+8QQ5g#NjxK#&jnjuul4otCARJITB?lDc(aF`O)T5kPU<H=<s^|h+YYLh
z^1Cc9ywTo!S>891k~lfi`cx(nK8k|tUaMLhU>+)%j-ESB2eq2{7+33A;&3T%9x$0F
zC{VjI*C9o@H#5VYLR8ePJd&-hK)vhTzkia|o`PKL=aMa=?yTZJs5kTdbF-QDYBzX)
z%lG$(u-sQ}TKr_=9}HWyRpF1@L@xBNSozOydm<pF4q8B=v9A{-m`W%X0Y0ANuMJRa
zBwG=mDEsurc+63;Z;F1wxty+%T|1!3CLID0CqBI97aqWS2U_ndDXiZpC3t{eRn%Ou
z;|j;h0n}~Tcwx_M+DUWaysD;|(t5L1=OiccdSFFYPKCV1a?ZEAvwaDl?VrOqkt|g%
zZalCDl3q?3$;>8Q(=El>7t58`D-`IMivpA73(i}2QB6y^`Ad_Zq2!WuXTG^22#BQ5
zc+Ulu1X29qPaLJzhZ4WQj3AmfMS^{(m|f;1T~RV~%`zeOhblp2ON#-lk(J)a)Cq{~
z@3CtReMyH|&1=3x@l^ZLqjEwHWEqBiKj08|9YuMXe_s26An(_2d7Wh_O~pxC2k#!k
z{&-{~^*6ZsnVNao0FTEgi$sctW;n_N1>V%h>61BWiV>wZ$EBSe`^z@<|L&{)HDCTM
zBlZ7!zW?pwzmD*~ra%As?0+Fg|4(!IfA@f9H$i9<kqQUgKs|c7qiK24KW{}hQ^QWq
zJ6*uuteyF-*oy4Wi?8e}^CrM3W7FzI#+R}I%xM>s=kwL97Na-n$?PP}PY&)}8IcN#
zt*m)fgdX*CileOomb|&&O08*aBz$(3sUF(Cfq1Kx%ro~EN0(-MT@?pPohA-Q@D!=l
zrn2^>@WG$vf=i_TP|LPytGS?@k#n3Rv>DnVy8|#{Jmo&&BQR&|?o8IaayE^}K3k;;
zQ9urzRe85GN<H_1Ee)%*wk$q=lEbjTjx}%;W)^r&dm^@A8Cd;A1j9D~h736K6<4Wt
zX5%_D>lf3VXLMH~DehO|>GW$dg^~lRAJZKQNg!_+@B_~UN}JFY0P>L$vMSBKz=5r*
zZKi*YI;2=o4m`zP#+-ASPt<DQr#nsUN*PzI!FCv*cji2mk1McpMKH9x?Bcb%%g&((
zzQgrty5>j9dvcjjapg<>oLlP`G`MS1B72GcrXb0$rx2@pUHRRnGPI)w$Kc*=eJCri
zy1-kJ-Ln|ak{>g7RgmHEOMOarEocHv@&Bp;slcq8c$J)$ZQFS#?-rKp&@b?_FFZ5Y
zWf;3F4F1}3Wnti+sO9<7V<<-<6myt?<7MnGqtqxqXu`=>%$=6TOWBxBEBRptOjO}y
zfjlO7Bnc^-Ewbv^ow72)%R2j=s91#0IyYIE)_TYO<t^!oR<8y1Wu~S#L9Ua2;s|O;
zsjekSyuhR%2&P3+Z)~O%;IGTjZ=vg_Fa;)b71S49na!LFYEvHh2$F}<QNd);^Q=MH
zH*|HY@e-&`?48efkz1GzYMoEQH3W<QS>v3MK<*&q5;Zmh>wQw|R71X`a5ay|46MR_
z0KHrByNA1K1js`>pnU1f%XI`|-UWO0YMzQK%ZXI_F3@oL=$bY=$;EP7Rb7sFcGne^
zP{|KKkjgJ_$5wMYb>uBH)k&(K>g1*lvkQ2P)hv3!HBtN9E~%YSww6Jdg$7~&uyD*$
zTvL5QES_TZW-JZcC+B4>v?V(cBQM)#!xKjbsI*0WD?Qt1ctp^6OnQ-*NS|Jr3(3ig
zDXVcj715<#<4S7V#bun#^GUzWyDPJ0?o4s=Qlo8UTF{{|y$p?QwLFm24Xgk>%DB0?
ziL-0q$*)b1vfD@>O1iNJjuv&#j?Q_iC*OhC6ehse)*-~xEtR`%Z?vt*13=F~^kWA8
znn+(BUya(D?2k{A1Tzgg=gA(`m4`f+D>>cI9?F@gd5usOK1v~Dt#GAA$Wg*;EkaoC
zP4&4udP!~U>-Di6t02`>sLjIkd$ujVsM|T~=!Hpvdd5_aLJrjc@8r`rX2<pq846o1
zd!=GpR*1~zBn>K1RF_~A+xyBwQNTEX=!Q$f2EP#BdhJ&ZoH&!KEJp;nl_4-lpZ!Cq
z>H{Py@&}bAwgB%rzR^B@>B@+L+^4R{hKH=tsrkJn-{Ov`P;_QBE8pU;U-SD)-uss2
z8j>SZ=4`B)&8g?N@K#wx(1qv66Df(@S@5-1Tb!gaH4yf#ejhmFi6V?sLfV+XOfQS$
zWrxUI<E+RjP5-*uwRe0&7^SzVC>o?Lj}|O;+2?%>90a@mmA5};2H2I(g}@{-f9&%A
zP2~RjGWP9O|F4Vx*7Ls)`g`{OKm1$X|6}aG5&i+4`2t!X8sw+H9YwKnpvCtzcBMc4
zfFfGmF!xe_5Ig2gNv9P9?Sb6b^g9rJwJgJj1>MYO@7=ccnbEn#Rj+XUGW^tPVV@b8
zR;7{mAlMU`BUK$@-B9-eyK)Xpw=p(5H79!oUD}1^C|$G?-`f2YA3LQhKI}iAYNs${
zPG2om3XbNv!~Z|MTv<?4X%^O|g;pZiGKvXCu~}4TL`WheY$}ii0)YS`0b9BiNrDSY
zP}V3iVv7Q@YX}4g5E2w@4cJ71ZWmUOY=B0Cg9s!j*x-$5FftdXrfO<>Y98ic9&h~*
zx9a}qeCJzET^KtKVSeygg+l5BHNRgEFP4j2K?}*hfB1b}A>wk~1O&6)^H>%8$=R$4
zi~+CUqAC;`cV0Rg9KT%YV<tPoIR4}Jn#xh=rSS2HKK7j~eMvl&>{)*_>0z68(#urj
z{8nk*`hyw0dg;y0HA<E666e0E1G>-3MFxdN;-q(gHErHFafjIk69aJ+)D9>6`S}UD
zfOfcX(J`@x$*_i(P3{MWyOiNmq1&BucPCI$n~BJ3?~k-WXIIp4<C%L$uUgA;803mJ
z(_-X+Y9l)p?qy-vG>gW#&cnP@15B(yP^G!T3%0}s=sz$*I#|>ubb9vi03+R69W4WL
z)r5MQ-ffwZ)r%3w%UMi6H(DSi8)QF@Yf>d<=Y|tk6f1qrCX%8=*JGOus7m%i#pfTK
zLwDuR?06p2e6MYY8wb**BEj5%H4(gA=`uwLT|EOS+y!0LPs6^!Es$?PN^kL3pbk40
z50ae}`7OLQwP(tf%*ibj_T#Dp^)<Pj!4X{1PPTP0L<FOEw*ueT<&QDZfrX>D(`P!6
zN}`M?s7gL>Nn<K5YspWy04u?!<Rj9{6GEW&K{xRa&nPmOxP#-Le);(M;7??%d=?1u
zKT3d8|8jt6)gTFD_+kg9fUwb^hS2y=2dBI(5{_GGe}*}h?C71HV(2S<nqF}hAGKQ1
z{J?txc~easbmRHJ%^3Fk{wv#(OZ@9bkVQt-1rEZX&f!zS)b>ToDST9u<aeR|ba{pb
zp<Bz5lrd<H3HxVs$(@5tXuu+<X$Xc|y<;UA^JXIJ$;N?%qePwKP$QSmul5*k3*#p>
zMZ5(fq75-yGldtxppH;LSN|$>aKjl$Z=+8`;jDbk;U8<*o;Zn<ob#C5tX{7*E-uG+
z@ouZvOkGaMBd2c~IAbe1%Y3YHuMSchik!KzwpxcK?kk>apF0r6)V;f>iE(_y?0urW
z@dq&xy@_NIAAy^k_#r$x0?tWj65ohuVtu}nO8k@80A?EjvbubE&JlYskt8Enj;97A
zX7xcc&dsl`^=xoZt7wWR5D1>0N+3vEkY#-JQT@fscPtZY_3AzRwl3ie8KF4y*^49{
z7oz+u2y-A=Cm%4{S7S%Br?`7ITtoNc;9yQj#~xCrvd%A|WvCF0kx_%ub}4S$2JnP*
zJK*#`PGV9nmefYoyK~intUOp=%@Cm9e+YyMU~Rdtsgxx&&}FZ$q1z;98r2@$y@Vlv
zg<Azi)&iI*E(xgmcu-XY6tvgb(p(fpJ1Vi}ge6<EP=#g%;lF(LFH`kjvdDj9xc~j}
z|HFR=#XiFI*Td>f6Kkw!CsmghoLbKDF<l`a=L;I;*{tgK$xRLQF8$!h(DUt+;xX)8
z-!9p===m5H{C%}&{Vz(q;j5$=45sUuIA1Oo)&=oN{_K)Cw?cdYojSs60luEbYLas&
zP=yIMEXp}!F{+bOUSOr}&&Nm)p=X_s;p`<ua{@^GuKV7Pzl&7jd6OI~U+FkN%<?g1
z6=+mDv@Y;clW;Jx|4Qq0fG}O}-X|Uej4`E{P}j+Rz*31bBR^fm@M}Lo?R-EIZcHaF
zRux<TFvoUl_@I6}!7x5nWMZe<2it8NIGLjVh7Sa{H-`E%YF*S`DHWTlqWDLbV_XK(
z*J-*hgs3SP+p$<%SjGG-!{%A>CW5a1jSVIXJ3+Axy`&oE!xO8n?gpnPIh?YsYfuPv
zBjP5XS3<a})iIb|2SaHe)23q;n6V=ymc8DnHN|Z#I$R)Jwz`T(8-vtjpocH|cRzVz
z-oYd`4sKawMt4S(x%PcXd(nkt^;Xn2^WD!!T|SDN6vsi+O{mI<7>;YWWTo6;zT=#K
z-3o+iSKn{p7qJsMTN<`Y_Tlab5Ai_2w;2}M4bw|sv#<UVKKBfAEmIY#DBorK>3fCj
zI5K<ak*05itAI?YEeUhCzd>1ZU%JwZO|GjRK=N;vK!XMXdM2P-Pe1zTAs&RnPXtO@
zKwJE*k3YD5a=3G#1EkdSJ;g&kv8|%mrZVd6C+*IZ!W8K$;ZN9mL#-2f!SN}bkv-o5
z7VFaY`Ua-ARO{5?T3lnR#p=F!WpV2I#O}yv8J&_gd0ES&***rM_-@f?m^4!)9zma4
zZRh)X{3@q!xK!AqO7D0nYcNz>eANZ9f$i~-<pAiAaks;-R!k!Pz<~T^X#s%k&RyWA
zj}EstY<Sx5_-i(kWE+*HWB-UKvPrCTs(%wSg&#zgz@(tOy}45EI<Q~^$9W=_z38E`
ziAtNsMZ0uTNb3X@q+%01t*|;U_<hGcbAewmeGZmvpRv&%pO_5STrG<G5IN(rg*)s1
zRnyAA;^A<4`-f}j8SLNMlkE-P-p|vtkEpFdAmXpkm41G2h&zc=?!iSD5i4s|h5{fc
zYj0Q?<R*r-ek`G*S_G+kA)XU@W_5Zgu2K%;8Fk%BUt15o(@vE2s-V8`RfqToW}Hxk
z+d1FFL4>_10qg^iWI0_pOYyxZJ}-o!UUgl%b~869X-IU}_}w_VPY^#4Ml1k*2dOR8
zAx2y(bS}qF^QCwN(xU3sPVK2qT;^P}l3LDw;*dEycIi$J)Xsz!N-6ZgidPBO7QgYg
zJ+eQoB0pFd+Ze_%oqKL|fYuOkn%>ScR-Iw*FVTvFpeRi*;!_^e?_ktrqnd|~%gpAs
zO_NZx#ZQ!45#*)!_6?c8QCSa{+=6uf+hPX*tZrX5LI5CjIgQ=JJ8+Xx8$tp-u@Vhq
ztsCA&wgNqGt}FWX)MicpHd^`HJ30PU=T*aCBAQk%imEKW?!Q>Ah48H2eF~KoLib;%
z`dE*now^e$NT*~C$?e;rzM)6(?pNlgH>KFl$8>7|J!RQjGr!@0^pS3rZTNQvn<Zb0
z18{_Uf$PS4f>)~*rP)~Va)#?Pr-@V0r&@z4G2%J^rZ8+&w5%W9p1q^)=0ZZ=Sp0x#
z!pj9nlV|+QUm;oc@t>Dt&gzS+<Yja<no=YpKNSJaTfQ59&3V0XUsB7g5boErkbF9?
z-{Zu#G@oX(VmAUV=xGBZU{o_wVKOj@?mhl^VIML>UmDmtVa~de;1YGF#Lc%1#3pF_
z;u2~EhlGZ9?ePo_2|+n8lF}?va$r(6ou7MTvxaAcw6vgEV5%?ZA~3R6q$^jmHpMyf
zr2lY^JMYjt*b#dIDaeJAquZIhZ{!K-Mw*8c?=|%W`lkprCB?mqBRS_63o!jmB^&72
z`KZW#iDgfRx2m2}aFRD&Z_r$qM|&^J1E{$iZrxPWs*yZ&5!g>c<aL~mdMl-q?nJ2&
z@UxjvLbDvz^-kvM1A={Fy-B&3UcH`Q&s&-?i&-Fuzp;G0BXCz!K8Swn{3=t`28w(w
z85N>+QIbN`rTNJ1T>8#7x3{^rpsj-9a#R`y)Q*%YE|F(a$UO*#yPpR^>3GAv(t7XG
z+$?ky=JJ|pU?}(*XSXy<Ej@mhZV-8t%YGdTS!#E{y*~`pC>`G0{<B>9A`JeQ)a{>g
z<xhen*!yENxIRc;hq5s!v6ecsh_|w8L>uMOH(P10I^t^aqCxg+@kmEB(jEMd;WC1^
LzgOel$g_V3vhcbA

literal 0
HcmV?d00001

diff --git a/content/python/cornice-cors.rst b/content/python/cornice-cors.rst
new file mode 100644
index 0000000..b9f4db9
--- /dev/null
+++ b/content/python/cornice-cors.rst
@@ -0,0 +1,254 @@
+Implementing CORS in Cornice
+############################
+
+:date: 22-01-2013
+:slug: cross-origin-in-cornice
+:status: draft
+
+For security reasons, it's not possible to do cross-domain requests. In other
+words, if you have a page served from the domain `lolnet.org`, it will not be
+possible for it to get data from `notmyidea.org`.
+
+Well, it's possible, using tricks and techniques like `JSONP
+<http://en.wikipedia.org/wiki/JSONP>`_, but that doesn't work all the time (see
+`the section below <#how-this-is-different-from-jsonp>`_). I remember myself
+doing some simple proxies on my domain server to be able to query other's API.
+
+Hopefuly, there is a nicer way to do this, namely, "Cross Origin
+Resource-Sharing", or `CORS <http://www.w3.org/TR/cors/>`_.
+
+You want an icecream? Go ask your dad first.
+============================================
+
+If you want to use CORS, you need the API you're querying to support it; on the
+server side.
+
+The HTTP server need to answer to the `OPTIONS` verb, and with the appropriate
+response headers.
+
+`OPTIONS` is sent as what the authors of the spec call a "preflight request";
+just before doing a request to the API, the *User-Agent* (the browser most of
+the time) asks the permission to the resource, with an `OPTIONS` call.
+
+The server answers, and tell what is available and what isn't:
+
+.. image:: |filename|/images/cors_flow.png
+    :alt: The CORS flow (from the HTML5 CORS tutorial)
+
+- 1a. The User-Agent, rather than doing the call directly, asks the server, the
+  API, the permission to do the request. It does so with the following headers:
+
+  - **Access-Control-Request-Headers**, contains the headers the User-Agent
+    want to access.
+  - **Access-Control-Request-Method** contains the method the User-Agent want
+    to access.
+
+- 1b. The API answers what is authorized:
+
+  - **Access-Control-Allow-Origin** the origin that's accepted. Can be `*` or
+    the domain name.
+  - **Access-Control-Allow-Methods** a *list* of allowed methods. This can be
+    cached. Note than the request asks permission for one method and the
+    server should return a list of accepted methods.
+  - **Access-Allow-Headers** a list of allowed headers, for all of the
+    methods, since this can be cached as well.
+
+- 2. The User-Agent can do the "normal" request.
+
+
+So, if you want to access the `/icecream` resource, and do a PUT there, you'll
+have the following flow::
+
+    > OPTIONS /icecream
+    > Access-Control-Request-Methods = PUT
+    > Origin: notmyidea.org 
+    < Access-Control-Allow-Origin = notmyidea.org 
+    < Access-Control-Allow-Methods = PUT,GET,DELETE
+    200 OK
+
+You can see that we have an `Origin` Header in the request, as well as
+a `Access-Control-Request-Methods`. We're here asking if we have the right, as
+`notmyidea.org`, to do a `PUT` request on `/icecream`.
+
+And the server tells us that we can do that, as well as `GET` and `DELETE`.
+
+I'll not cover all the details of the CORS specification here, but bear in mind
+than with CORS, you can control what are the authorized methods, headers,
+origins, and if the client is allowed to send authentication information or
+not.
+
+
+A word about security
+=====================
+
+CORS is not an answer for every cross-domain call you want to do, because you
+need to control the service you want to call. For instance, if you want to
+build a feed reader and access the feeds on different domains, you can be
+pretty much sure that the servers will not implement CORS, so you'll need to
+write a proxy yourself, to provide this.
+
+Secondly, CORS, if misunderstood, can be unsecure, and cause some security
+problems. Because the rules apply when a client want to do a request to
+a server, you need to be extra careful about who you're authorizing.
+
+A CORS uncorrectly-secured server can be accessed by a client very easily,
+bypassing the network security. For instance, if a service runs on an intranet,
+only available from behind a VPN, and accepts every cross-origin call, then
+anyone service javascript files to the browser of an user with access to this
+service could make calls there, which is probably not what you want.
+
+
+How this is different from JSONP?
+=================================
+
+You may know the `JSONP <http://en.wikipedia.org/wiki/JSONP>`_ protocol. JSONP
+Allows to do cross origin, but for a particular use case, and do have some
+drawbacks (for instance, it's not possible to do DELETEs or PUTs with JSONP.
+
+JSONP exploits the fact that's possible to get information from another domain
+when you are asking for javascript code, using the `<script>` element.
+
+    Exploiting the open policy for <script> elements, some pages use them to
+    retrieve JavaScript code that operates on dynamically generated
+    JSON-formatted data from other origins. This usage pattern is known as
+    JSONP. Requests for JSONP retrieve not JSON, but arbitrary JavaScript code.
+    They are evaluated by the JavaScript interpreter, not parsed by a JSON
+    parser.
+
+Using CORS in Cornice
+=====================
+
+Okay, things are hopefully clearer by now about CORS, so let's see how we
+implemented it on the server-side.
+
+Cornice is a toolkit that let you define resources in python, and takes care of
+the heavy lifting for you, so I wanted it to take care of the CORS support as
+well.
+
+In Cornice, you define a service like this:
+
+.. code-block:: python
+
+   from cornice import Service
+
+   foobar = Service(name="foobar", path="/foobar")
+
+   # and then you do something with it
+   @foobar.get()
+   def get_foobar(request):
+       # do something with the request.
+
+To add CORS support to this resource, you can go this way, with the
+`cors_origins` parameter:
+
+.. code-block:: python
+    
+    foobar = Service(name='foobar', path='/foobar', cors_origins=('*',))
+
+Tadam, you have enabled CORS for your service. **Be aware that here, you're
+authorizing anyone to query your server, that may not be what you want.**
+
+Of course, you can specify a list of origins you trust, and you don't need
+to stick with `*`, which means "authorize everyone".
+
+Headers
+-------
+
+You can define the headers you want to expose for the service:
+
+.. code-block:: python
+
+    foobar = Service(name='foobar', path='/foobar', cors_origins=('*',))
+
+    @foobar.get(cors_headers=('X-My-Header', 'Content-Type'))
+    def get_foobars_please(request):
+        return "some foobar for you"
+
+I've done some testing and it wasn't working on Chrome because I wasn't
+handling the headers the right way (The missing one was `Content-Type`, that
+chrome was asking for). With my first version of the implementation, I needed
+the service implementers to explicitely list all the headers that should be
+exposed. And of course this is not what we want.
+
+So I introduced an `expose_all_headers` flag, which is set to `True` by
+default, if the service supports CORS.
+
+Cookies / Credentials
+---------------------
+
+By default, the requests you do to your API endpoint don't include the
+credential information, ,for security reasons. If you really want to do that,
+you need to enable it using the `cors_credentials` parameter. You can activate
+this one on a per-service basis, or on a per-method basis.
+
+Caching
+-------
+
+When you do a preflight request, the information returned by the server can be
+cached by the User-Agent so that it's not redone before each actual call.
+
+The caching period is defined by the server, using the `Access-Control-Max-Age`
+header. You can configure this timing using the `cors_max_age` parameter.
+
+Simplifying the API
+-------------------
+
+We have cors_headers, cors_enabled, cors_origins, cors_credentials,
+cors_max_age, cors_expose_all_headers … It start to be a fair number of
+parameters. If you want to have a specific CORS-policy for your services, that
+can be a bit tedious to pass these to your services all the time.
+
+I introduced another way to pass the CORS policy, so you can do something like
+that:
+
+.. code-block:: python
+
+    policy = dict(enabled=False,
+                  headers=('X-My-Header', 'Content-Type'),
+                  origins=('*.notmyidea.org'),
+                  credentials=True,
+                  max_age=42)
+
+    foobar = Service(name='foobar', path='/foobar', cors_policy=policy)
+
+Comparison with other implementations
+=====================================
+
+I was curious enough to have a look at the other implementations of CORS for
+django, for instance, and I found `a gist about it
+<https://gist.github.com/426829.js>`_.
+
+Basically, this adds a middleware that adds the "rights" headers to the answer,
+depending on the request.
+
+While this approach works, It's not implementing the specification completely:
+you need to add support for all the resources at once.
+
+We can think about a nice way to implement this, with definition of what's
+supposed to be exposed via CORS and what shouldn't, directly in your settings,
+but CORS support should in my opinion be handled at the service definition level,
+and not anywhere else (for instance in the settings), appart for the list of
+authorized hosts, because you don't know exactly what's going on when you look
+at the definition of the service.
+
+Resources
+=========
+
+There is a number of good resources that can be useful to you if you want to
+either understand how CORS work, or if you want to implement it yourself.
+
+- http://enable-cors.org/ is useful to get started when you don't know anything
+  about CORS.
+- There is a W3C wiki page containing information that may be useful about
+  clients, common pitfalls etc: http://www.w3.org/wiki/CORS_Enabled
+- *HTML5 rocks* has a tutorial explaining how to implement CORS, with `a nice
+  section about the server-side
+  <http://www.html5rocks.com/en/tutorials/cors/#toc-adding-cors-support-to-the-server>`_.
+- Be sure to have a look at the `clients support-matrix for this feature
+  <http://caniuse.com/#search=cors>`_.
+- About security, `check out this page
+  <https://code.google.com/p/html5security/wiki/CrossOriginRequestSecurity>`_
+
+Of course, the W3C specification is the best resource to rely on. This
+specification isn't hard to read, so you may want to go through it. Especially
+the `"resource processing model" section <http://www.w3.org/TR/cors/#resource-processing-model>`_
diff --git a/pelican.conf.py b/pelican.conf.py
index 81b21b8..1e8ad8f 100644
--- a/pelican.conf.py
+++ b/pelican.conf.py
@@ -1,7 +1,8 @@
 # -*- coding: utf-8 -*-
+
 PATH = "content"
-AUTHOR = u'Alexis Métaireau'
-SITENAME = u"Alexis' log"
+AUTHOR = 'Alexis Métaireau'
+SITENAME = "Alexis' log"
 THEME = "theme"
 CSS_FILE = "wide.css"