From 57ce3755f0f9bc580fd21e1034a870100b9ccf8c Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Thu, 16 Sep 2021 12:16:56 +0200
Subject: [PATCH 01/22] Added Dataverse-Azure IaC Required Services

---
 .../solutions/dataverseIntegration/main.bicep | 103 +++
 .../solutions/dataverseIntegration/main.json  | 709 ++++++++++++++++++
 .../synapseRoleAssignmentStorage.bicep        |  37 +
 .../modules/services/keyvault.bicep           |  86 +++
 .../modules/services/synapse.bicep            | 255 +++++++
 .../dataverseIntegration/params.json          |  42 ++
 6 files changed, 1232 insertions(+)
 create mode 100644 healthcare/solutions/dataverseIntegration/main.bicep
 create mode 100644 healthcare/solutions/dataverseIntegration/main.json
 create mode 100644 healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorage.bicep
 create mode 100644 healthcare/solutions/dataverseIntegration/modules/services/keyvault.bicep
 create mode 100644 healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
 create mode 100644 healthcare/solutions/dataverseIntegration/params.json

diff --git a/healthcare/solutions/dataverseIntegration/main.bicep b/healthcare/solutions/dataverseIntegration/main.bicep
new file mode 100644
index 00000000..ca04d151
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/main.bicep
@@ -0,0 +1,103 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT license.
+
+targetScope = 'resourceGroup'
+
+// General parameters
+@description('Specifies the location for all resources.')
+param location string
+@allowed([
+  'dev'
+  'tst'
+  'prd'
+])
+@description('Specifies the environment of the deployment.')
+param environment string = 'dev'
+@minLength(2)
+@maxLength(10)
+@description('Specifies the prefix for all resources created in this deployment.')
+param prefix string
+@description('Specifies the tags that you want to apply to all resources.')
+param tags object = {}
+
+// Resource parameters
+@secure()
+@description('Specifies the administrator password of the sql servers in Synapse. If you selected dataFactory as processingService, leave this value empty as is.')
+param administratorPassword string = ''
+@description('Specifies the resource ID of the default storage account file system for Synapse. If you selected dataFactory as processingService, leave this value empty as is.')
+param synapseDefaultStorageAccountFileSystemId string = ''
+@description('Specifies the resource ID of the central purview instance to connect Purviw with Data Factory or Synapse. If you do not want to setup a connection to Purview, leave this value empty as is.')
+param purviewId string = ''
+@description('Specifies whether role assignments should be enabled for Synapse (Blob Storage Contributor to default storage account).')
+param enableRoleAssignments bool = false
+
+// Network parameters
+@description('Specifies the resource ID of the subnet to which all services will connect.')
+param subnetId string
+
+// Private DNS Zone parameters
+@description('Specifies the resource ID of the private DNS zone for KeyVault.')
+param privateDnsZoneIdKeyVault string = ''
+@description('Specifies the resource ID of the private DNS zone for Synapse Dev.')
+param privateDnsZoneIdSynapseDev string = ''
+@description('Specifies the resource ID of the private DNS zone for Synapse Sql.')
+param privateDnsZoneIdSynapseSql string = ''
+
+// Variables
+var name = toLower('${prefix}-${environment}')
+var tagsDefault = {
+  Project: 'Dataverse - Data Integration'
+  Environment: environment
+  Toolkit: 'bicep'
+  Name: name
+}
+var tagsJoined = union(tagsDefault, tags)
+var administratorUsername = 'SqlServerMainUser'
+var synapseDefaultStorageAccountSubscriptionId = length(split(synapseDefaultStorageAccountFileSystemId, '/')) >= 13 ? split(synapseDefaultStorageAccountFileSystemId, '/')[2] : subscription().subscriptionId
+var synapseDefaultStorageAccountResourceGroupName = length(split(synapseDefaultStorageAccountFileSystemId, '/')) >= 13 ? split(synapseDefaultStorageAccountFileSystemId, '/')[4] : resourceGroup().name
+var keyvault001Name = '${name}-vault001'
+var synapse001Name = '${name}-synapse001'
+
+// Resources
+module keyVault001 'modules/services/keyvault.bicep' = {
+  name: 'keyVault001'
+  scope: resourceGroup()
+  params: {
+    location: location
+    tags: tagsJoined
+    subnetId: subnetId
+    keyvaultName: keyvault001Name
+    privateDnsZoneIdKeyVault: privateDnsZoneIdKeyVault
+  }
+}
+
+module synapse001 'modules/services/synapse.bicep' = {
+  name: 'synapse001'
+  scope: resourceGroup()
+  params: {
+    location: location
+    tags: tagsJoined
+    subnetId: subnetId
+    synapseName: synapse001Name
+    administratorUsername: administratorUsername
+    administratorPassword: administratorPassword
+    synapseSqlAdminGroupName: ''
+    synapseSqlAdminGroupObjectID: ''
+    privateDnsZoneIdSynapseDev: privateDnsZoneIdSynapseDev
+    privateDnsZoneIdSynapseSql: privateDnsZoneIdSynapseSql
+    purviewId: purviewId
+    synapseComputeSubnetId: ''
+    synapseDefaultStorageAccountFileSystemId: synapseDefaultStorageAccountFileSystemId
+  }
+}
+
+module synapse001RoleAssignmentStorage 'modules/auxiliary/synapseRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+  name: 'synapse001RoleAssignmentStorage'
+  scope: resourceGroup(synapseDefaultStorageAccountSubscriptionId, synapseDefaultStorageAccountResourceGroupName)
+  params: {
+    storageAccountFileSystemId: synapseDefaultStorageAccountFileSystemId
+    synapseId: synapse001.outputs.synapseId
+  }
+}
+
+// Outputs
diff --git a/healthcare/solutions/dataverseIntegration/main.json b/healthcare/solutions/dataverseIntegration/main.json
new file mode 100644
index 00000000..a8181e29
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/main.json
@@ -0,0 +1,709 @@
+{
+  "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+  "contentVersion": "1.0.0.0",
+  "metadata": {
+    "_generator": {
+      "name": "bicep",
+      "version": "0.4.613.9944",
+      "templateHash": "7708067349362611098"
+    }
+  },
+  "parameters": {
+    "location": {
+      "type": "string",
+      "metadata": {
+        "description": "Specifies the location for all resources."
+      }
+    },
+    "environment": {
+      "type": "string",
+      "defaultValue": "dev",
+      "metadata": {
+        "description": "Specifies the environment of the deployment."
+      },
+      "allowedValues": [
+        "dev",
+        "tst",
+        "prd"
+      ]
+    },
+    "prefix": {
+      "type": "string",
+      "metadata": {
+        "description": "Specifies the prefix for all resources created in this deployment."
+      },
+      "maxLength": 10,
+      "minLength": 2
+    },
+    "tags": {
+      "type": "object",
+      "defaultValue": {},
+      "metadata": {
+        "description": "Specifies the tags that you want to apply to all resources."
+      }
+    },
+    "administratorPassword": {
+      "type": "secureString",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the administrator password of the sql servers in Synapse. If you selected dataFactory as processingService, leave this value empty as is."
+      }
+    },
+    "synapseDefaultStorageAccountFileSystemId": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the resource ID of the default storage account file system for Synapse. If you selected dataFactory as processingService, leave this value empty as is."
+      }
+    },
+    "purviewId": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the resource ID of the central purview instance to connect Purviw with Data Factory or Synapse. If you do not want to setup a connection to Purview, leave this value empty as is."
+      }
+    },
+    "enableRoleAssignments": {
+      "type": "bool",
+      "defaultValue": false,
+      "metadata": {
+        "description": "Specifies whether role assignments should be enabled for Synapse (Blob Storage Contributor to default storage account)."
+      }
+    },
+    "subnetId": {
+      "type": "string",
+      "metadata": {
+        "description": "Specifies the resource ID of the subnet to which all services will connect."
+      }
+    },
+    "privateDnsZoneIdKeyVault": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the resource ID of the private DNS zone for KeyVault."
+      }
+    },
+    "privateDnsZoneIdSynapseDev": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the resource ID of the private DNS zone for Synapse Dev."
+      }
+    },
+    "privateDnsZoneIdSynapseSql": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the resource ID of the private DNS zone for Synapse Sql."
+      }
+    }
+  },
+  "functions": [],
+  "variables": {
+    "name": "[toLower(format('{0}-{1}', parameters('prefix'), parameters('environment')))]",
+    "tagsDefault": {
+      "Project": "Dataverse - Data Integration",
+      "Environment": "[parameters('environment')]",
+      "Toolkit": "bicep",
+      "Name": "[variables('name')]"
+    },
+    "tagsJoined": "[union(variables('tagsDefault'), parameters('tags'))]",
+    "administratorUsername": "SqlServerMainUser",
+    "synapseDefaultStorageAccountSubscriptionId": "[if(greaterOrEquals(length(split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')), 13), split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')[2], subscription().subscriptionId)]",
+    "synapseDefaultStorageAccountResourceGroupName": "[if(greaterOrEquals(length(split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')), 13), split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')[4], resourceGroup().name)]",
+    "keyvault001Name": "[format('{0}-vault001', variables('name'))]",
+    "synapse001Name": "[format('{0}-synapse001', variables('name'))]"
+  },
+  "resources": [
+    {
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "keyVault001",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "location": {
+            "value": "[parameters('location')]"
+          },
+          "tags": {
+            "value": "[variables('tagsJoined')]"
+          },
+          "subnetId": {
+            "value": "[parameters('subnetId')]"
+          },
+          "keyvaultName": {
+            "value": "[variables('keyvault001Name')]"
+          },
+          "privateDnsZoneIdKeyVault": {
+            "value": "[parameters('privateDnsZoneIdKeyVault')]"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "11855677596500727104"
+            }
+          },
+          "parameters": {
+            "location": {
+              "type": "string"
+            },
+            "tags": {
+              "type": "object"
+            },
+            "subnetId": {
+              "type": "string"
+            },
+            "keyvaultName": {
+              "type": "string"
+            },
+            "privateDnsZoneIdKeyVault": {
+              "type": "string",
+              "defaultValue": ""
+            }
+          },
+          "functions": [],
+          "variables": {
+            "keyVaultPrivateEndpointName": "[format('{0}-private-endpoint', parameters('keyvaultName'))]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.KeyVault/vaults",
+              "apiVersion": "2021-04-01-preview",
+              "name": "[parameters('keyvaultName')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "accessPolicies": [],
+                "createMode": "default",
+                "enabledForDeployment": false,
+                "enabledForDiskEncryption": false,
+                "enabledForTemplateDeployment": false,
+                "enablePurgeProtection": true,
+                "enableRbacAuthorization": true,
+                "enableSoftDelete": true,
+                "networkAcls": {
+                  "bypass": "AzureServices",
+                  "defaultAction": "Deny",
+                  "ipRules": [],
+                  "virtualNetworkRules": []
+                },
+                "sku": {
+                  "family": "A",
+                  "name": "standard"
+                },
+                "softDeleteRetentionInDays": 7,
+                "tenantId": "[subscription().tenantId]"
+              }
+            },
+            {
+              "type": "Microsoft.Network/privateEndpoints",
+              "apiVersion": "2020-11-01",
+              "name": "[variables('keyVaultPrivateEndpointName')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "manualPrivateLinkServiceConnections": [],
+                "privateLinkServiceConnections": [
+                  {
+                    "name": "[variables('keyVaultPrivateEndpointName')]",
+                    "properties": {
+                      "groupIds": [
+                        "vault"
+                      ],
+                      "privateLinkServiceId": "[resourceId('Microsoft.KeyVault/vaults', parameters('keyvaultName'))]",
+                      "requestMessage": ""
+                    }
+                  }
+                ],
+                "subnet": {
+                  "id": "[parameters('subnetId')]"
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.KeyVault/vaults', parameters('keyvaultName'))]"
+              ]
+            },
+            {
+              "condition": "[not(empty(parameters('privateDnsZoneIdKeyVault')))]",
+              "type": "Microsoft.Network/privateEndpoints/privateDnsZoneGroups",
+              "apiVersion": "2020-11-01",
+              "name": "[format('{0}/{1}', variables('keyVaultPrivateEndpointName'), 'default')]",
+              "properties": {
+                "privateDnsZoneConfigs": [
+                  {
+                    "name": "[format('{0}-arecord', variables('keyVaultPrivateEndpointName'))]",
+                    "properties": {
+                      "privateDnsZoneId": "[parameters('privateDnsZoneIdKeyVault')]"
+                    }
+                  }
+                ]
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Network/privateEndpoints', variables('keyVaultPrivateEndpointName'))]"
+              ]
+            }
+          ],
+          "outputs": {
+            "keyvaultId": {
+              "type": "string",
+              "value": "[resourceId('Microsoft.KeyVault/vaults', parameters('keyvaultName'))]"
+            }
+          }
+        }
+      }
+    },
+    {
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "synapse001",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "location": {
+            "value": "[parameters('location')]"
+          },
+          "tags": {
+            "value": "[variables('tagsJoined')]"
+          },
+          "subnetId": {
+            "value": "[parameters('subnetId')]"
+          },
+          "synapseName": {
+            "value": "[variables('synapse001Name')]"
+          },
+          "administratorUsername": {
+            "value": "[variables('administratorUsername')]"
+          },
+          "administratorPassword": {
+            "value": "[parameters('administratorPassword')]"
+          },
+          "synapseSqlAdminGroupName": {
+            "value": ""
+          },
+          "synapseSqlAdminGroupObjectID": {
+            "value": ""
+          },
+          "privateDnsZoneIdSynapseDev": {
+            "value": "[parameters('privateDnsZoneIdSynapseDev')]"
+          },
+          "privateDnsZoneIdSynapseSql": {
+            "value": "[parameters('privateDnsZoneIdSynapseSql')]"
+          },
+          "purviewId": {
+            "value": "[parameters('purviewId')]"
+          },
+          "synapseComputeSubnetId": {
+            "value": ""
+          },
+          "synapseDefaultStorageAccountFileSystemId": {
+            "value": "[parameters('synapseDefaultStorageAccountFileSystemId')]"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "18364487249710460520"
+            }
+          },
+          "parameters": {
+            "location": {
+              "type": "string"
+            },
+            "tags": {
+              "type": "object"
+            },
+            "subnetId": {
+              "type": "string"
+            },
+            "synapseName": {
+              "type": "string"
+            },
+            "administratorUsername": {
+              "type": "string",
+              "defaultValue": "SqlServerMainUser"
+            },
+            "administratorPassword": {
+              "type": "secureString"
+            },
+            "synapseSqlAdminGroupName": {
+              "type": "string",
+              "defaultValue": ""
+            },
+            "synapseSqlAdminGroupObjectID": {
+              "type": "string",
+              "defaultValue": ""
+            },
+            "synapseDefaultStorageAccountFileSystemId": {
+              "type": "string"
+            },
+            "synapseComputeSubnetId": {
+              "type": "string",
+              "defaultValue": ""
+            },
+            "privateDnsZoneIdSynapseSql": {
+              "type": "string",
+              "defaultValue": ""
+            },
+            "privateDnsZoneIdSynapseDev": {
+              "type": "string",
+              "defaultValue": ""
+            },
+            "purviewId": {
+              "type": "string",
+              "defaultValue": ""
+            }
+          },
+          "functions": [],
+          "variables": {
+            "synapseDefaultStorageAccountFileSystemName": "[if(greaterOrEquals(length(split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')), 13), last(split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')), 'incorrectSegmentLength')]",
+            "synapseDefaultStorageAccountName": "[if(greaterOrEquals(length(split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')), 13), split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')[8], 'incorrectSegmentLength')]",
+            "synapsePrivateEndpointNameSql": "[format('{0}-sql-private-endpoint', parameters('synapseName'))]",
+            "synapsePrivateEndpointNameSqlOnDemand": "[format('{0}-sqlondemand-private-endpoint', parameters('synapseName'))]",
+            "synapsePrivateEndpointNameDev": "[format('{0}-dev-private-endpoint', parameters('synapseName'))]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Synapse/workspaces",
+              "apiVersion": "2021-03-01",
+              "name": "[parameters('synapseName')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "identity": {
+                "type": "SystemAssigned"
+              },
+              "properties": {
+                "defaultDataLakeStorage": {
+                  "accountUrl": "[format('https://{0}.dfs.{1}', variables('synapseDefaultStorageAccountName'), environment().suffixes.storage)]",
+                  "filesystem": "[variables('synapseDefaultStorageAccountFileSystemName')]"
+                },
+                "managedResourceGroupName": "[parameters('synapseName')]",
+                "managedVirtualNetwork": "default",
+                "managedVirtualNetworkSettings": {
+                  "allowedAadTenantIdsForLinking": [],
+                  "linkedAccessCheckOnTargetResource": true,
+                  "preventDataExfiltration": true
+                },
+                "publicNetworkAccess": "Enabled",
+                "purviewConfiguration": {
+                  "purviewResourceId": "[parameters('purviewId')]"
+                },
+                "sqlAdministratorLogin": "[parameters('administratorUsername')]",
+                "sqlAdministratorLoginPassword": "[parameters('administratorPassword')]",
+                "virtualNetworkProfile": {
+                  "computeSubnetId": "[parameters('synapseComputeSubnetId')]"
+                }
+              }
+            },
+            {
+              "type": "Microsoft.Synapse/workspaces/sqlPools",
+              "apiVersion": "2021-03-01",
+              "name": "[format('{0}/{1}', parameters('synapseName'), 'sqlPool001')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "sku": {
+                "name": "DW100c"
+              },
+              "properties": {
+                "collation": "SQL_Latin1_General_CP1_CI_AS",
+                "createMode": "Default",
+                "storageAccountType": "GRS"
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
+            {
+              "type": "Microsoft.Synapse/workspaces/bigDataPools",
+              "apiVersion": "2021-03-01",
+              "name": "[format('{0}/{1}', parameters('synapseName'), 'bigDataPool001')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "autoPause": {
+                  "enabled": true,
+                  "delayInMinutes": 15
+                },
+                "autoScale": {
+                  "enabled": true,
+                  "maxNodeCount": 10,
+                  "minNodeCount": 3
+                },
+                "customLibraries": [],
+                "defaultSparkLogFolder": "logs/",
+                "dynamicExecutorAllocation": {
+                  "enabled": true
+                },
+                "nodeSize": "Small",
+                "nodeSizeFamily": "MemoryOptimized",
+                "sessionLevelPackagesEnabled": true,
+                "sparkEventsFolder": "events/",
+                "sparkVersion": "3.1"
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
+            {
+              "type": "Microsoft.Synapse/workspaces/managedIdentitySqlControlSettings",
+              "apiVersion": "2021-03-01",
+              "name": "[format('{0}/{1}', parameters('synapseName'), 'default')]",
+              "properties": {
+                "grantSqlControlToManagedIdentity": {
+                  "desiredState": "Enabled"
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
+            {
+              "condition": "[and(not(empty(parameters('synapseSqlAdminGroupName'))), not(empty(parameters('synapseSqlAdminGroupObjectID'))))]",
+              "type": "Microsoft.Synapse/workspaces/administrators",
+              "apiVersion": "2021-03-01",
+              "name": "[format('{0}/{1}', parameters('synapseName'), 'activeDirectory')]",
+              "properties": {
+                "administratorType": "ActiveDirectory",
+                "login": "[parameters('synapseSqlAdminGroupName')]",
+                "sid": "[parameters('synapseSqlAdminGroupObjectID')]",
+                "tenantId": "[subscription().tenantId]"
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
+            {
+              "type": "Microsoft.Network/privateEndpoints",
+              "apiVersion": "2020-11-01",
+              "name": "[variables('synapsePrivateEndpointNameSql')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "manualPrivateLinkServiceConnections": [],
+                "privateLinkServiceConnections": [
+                  {
+                    "name": "[variables('synapsePrivateEndpointNameSql')]",
+                    "properties": {
+                      "groupIds": [
+                        "Sql"
+                      ],
+                      "privateLinkServiceId": "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]",
+                      "requestMessage": ""
+                    }
+                  }
+                ],
+                "subnet": {
+                  "id": "[parameters('subnetId')]"
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
+            {
+              "condition": "[not(empty(parameters('privateDnsZoneIdSynapseSql')))]",
+              "type": "Microsoft.Network/privateEndpoints/privateDnsZoneGroups",
+              "apiVersion": "2020-11-01",
+              "name": "[format('{0}/{1}', variables('synapsePrivateEndpointNameSql'), 'default')]",
+              "properties": {
+                "privateDnsZoneConfigs": [
+                  {
+                    "name": "[format('{0}-arecord', variables('synapsePrivateEndpointNameSql'))]",
+                    "properties": {
+                      "privateDnsZoneId": "[parameters('privateDnsZoneIdSynapseSql')]"
+                    }
+                  }
+                ]
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Network/privateEndpoints', variables('synapsePrivateEndpointNameSql'))]"
+              ]
+            },
+            {
+              "type": "Microsoft.Network/privateEndpoints",
+              "apiVersion": "2020-11-01",
+              "name": "[variables('synapsePrivateEndpointNameSqlOnDemand')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "manualPrivateLinkServiceConnections": [],
+                "privateLinkServiceConnections": [
+                  {
+                    "name": "[variables('synapsePrivateEndpointNameSqlOnDemand')]",
+                    "properties": {
+                      "groupIds": [
+                        "SqlOnDemand"
+                      ],
+                      "privateLinkServiceId": "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]",
+                      "requestMessage": ""
+                    }
+                  }
+                ],
+                "subnet": {
+                  "id": "[parameters('subnetId')]"
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
+            {
+              "condition": "[not(empty(parameters('privateDnsZoneIdSynapseSql')))]",
+              "type": "Microsoft.Network/privateEndpoints/privateDnsZoneGroups",
+              "apiVersion": "2020-11-01",
+              "name": "[format('{0}/{1}', variables('synapsePrivateEndpointNameSqlOnDemand'), 'default')]",
+              "properties": {
+                "privateDnsZoneConfigs": [
+                  {
+                    "name": "[format('{0}-arecord', variables('synapsePrivateEndpointNameSqlOnDemand'))]",
+                    "properties": {
+                      "privateDnsZoneId": "[parameters('privateDnsZoneIdSynapseSql')]"
+                    }
+                  }
+                ]
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Network/privateEndpoints', variables('synapsePrivateEndpointNameSqlOnDemand'))]"
+              ]
+            },
+            {
+              "type": "Microsoft.Network/privateEndpoints",
+              "apiVersion": "2020-11-01",
+              "name": "[variables('synapsePrivateEndpointNameDev')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "manualPrivateLinkServiceConnections": [],
+                "privateLinkServiceConnections": [
+                  {
+                    "name": "[variables('synapsePrivateEndpointNameDev')]",
+                    "properties": {
+                      "groupIds": [
+                        "Dev"
+                      ],
+                      "privateLinkServiceId": "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]",
+                      "requestMessage": ""
+                    }
+                  }
+                ],
+                "subnet": {
+                  "id": "[parameters('subnetId')]"
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
+            {
+              "condition": "[not(empty(parameters('privateDnsZoneIdSynapseDev')))]",
+              "type": "Microsoft.Network/privateEndpoints/privateDnsZoneGroups",
+              "apiVersion": "2020-11-01",
+              "name": "[format('{0}/{1}', variables('synapsePrivateEndpointNameDev'), 'default')]",
+              "properties": {
+                "privateDnsZoneConfigs": [
+                  {
+                    "name": "[format('{0}-arecord', variables('synapsePrivateEndpointNameDev'))]",
+                    "properties": {
+                      "privateDnsZoneId": "[parameters('privateDnsZoneIdSynapseDev')]"
+                    }
+                  }
+                ]
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Network/privateEndpoints', variables('synapsePrivateEndpointNameDev'))]"
+              ]
+            }
+          ],
+          "outputs": {
+            "synapseId": {
+              "type": "string",
+              "value": "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+            },
+            "synapseBigDataPool001Id": {
+              "type": "string",
+              "value": "[resourceId('Microsoft.Synapse/workspaces/bigDataPools', parameters('synapseName'), 'bigDataPool001')]"
+            }
+          }
+        }
+      }
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "synapse001RoleAssignmentStorage",
+      "subscriptionId": "[variables('synapseDefaultStorageAccountSubscriptionId')]",
+      "resourceGroup": "[variables('synapseDefaultStorageAccountResourceGroupName')]",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "storageAccountFileSystemId": {
+            "value": "[parameters('synapseDefaultStorageAccountFileSystemId')]"
+          },
+          "synapseId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'synapse001'), '2019-10-01').outputs.synapseId.value]"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "16578949331457096017"
+            }
+          },
+          "parameters": {
+            "storageAccountFileSystemId": {
+              "type": "string"
+            },
+            "synapseId": {
+              "type": "string"
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountFileSystemName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), last(split(parameters('storageAccountFileSystemId'), '/')), 'incorrectSegmentLength')]",
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), split(parameters('storageAccountFileSystemId'), '/')[8], 'incorrectSegmentLength')]",
+            "synapseSubscriptionId": "[if(greaterOrEquals(length(split(parameters('synapseId'), '/')), 9), split(parameters('synapseId'), '/')[2], subscription().subscriptionId)]",
+            "synapseResourceGroupName": "[if(greaterOrEquals(length(split(parameters('synapseId'), '/')), 9), split(parameters('synapseId'), '/')[4], resourceGroup().name)]",
+            "synapseName": "[if(greaterOrEquals(length(split(parameters('synapseId'), '/')), 9), last(split(parameters('synapseId'), '/')), 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[0], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[1], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[2])]",
+              "name": "[guid(uniqueString(resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[0], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[1], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[2]), extensionResourceId(format('/subscriptions/{0}/resourceGroups/{1}', variables('synapseSubscriptionId'), variables('synapseResourceGroupName')), 'Microsoft.Synapse/workspaces', variables('synapseName'))))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', 'ba92f5b4-2d11-453d-a403-e96b0029c9fe')]",
+                "principalId": "[reference(extensionResourceId(format('/subscriptions/{0}/resourceGroups/{1}', variables('synapseSubscriptionId'), variables('synapseResourceGroupName')), 'Microsoft.Synapse/workspaces', variables('synapseName')), '2021-03-01', 'full').identity.principalId]"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'synapse001')]"
+      ]
+    }
+  ]
+}
\ No newline at end of file
diff --git a/healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorage.bicep b/healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorage.bicep
new file mode 100644
index 00000000..09f73473
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorage.bicep
@@ -0,0 +1,37 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT license.
+
+// The module contains a template to create a role assignment of the Synase MSI to a storage file system.
+targetScope = 'resourceGroup'
+
+// Parameters
+param storageAccountFileSystemId string
+param synapseId string
+
+// Variables
+var storageAccountFileSystemName = length(split(storageAccountFileSystemId, '/')) >= 13 ? last(split(storageAccountFileSystemId, '/')) : 'incorrectSegmentLength'
+var storageAccountName = length(split(storageAccountFileSystemId, '/')) >= 13 ? split(storageAccountFileSystemId, '/')[8] : 'incorrectSegmentLength'
+var synapseSubscriptionId = length(split(synapseId, '/')) >= 9 ? split(synapseId, '/')[2] : subscription().subscriptionId
+var synapseResourceGroupName = length(split(synapseId, '/')) >= 9 ? split(synapseId, '/')[4] : resourceGroup().name
+var synapseName = length(split(synapseId, '/')) >= 9 ? last(split(synapseId, '/')) : 'incorrectSegmentLength'
+
+// Resources
+resource storageAccountFileSystem 'Microsoft.Storage/storageAccounts/blobServices/containers@2021-02-01' existing = {
+  name: '${storageAccountName}/default/${storageAccountFileSystemName}'
+}
+
+resource synapse 'Microsoft.Synapse/workspaces@2021-03-01' existing = {
+  name: synapseName
+  scope: resourceGroup(synapseSubscriptionId, synapseResourceGroupName)
+}
+
+resource synapseRoleAssignment 'Microsoft.Authorization/roleAssignments@2020-04-01-preview' = {
+  name: guid(uniqueString(storageAccountFileSystem.id, synapse.id))
+  scope: storageAccountFileSystem
+  properties: {
+    roleDefinitionId: resourceId('Microsoft.Authorization/roleDefinitions', 'ba92f5b4-2d11-453d-a403-e96b0029c9fe')
+    principalId: synapse.identity.principalId
+  }
+}
+
+// Outputs
diff --git a/healthcare/solutions/dataverseIntegration/modules/services/keyvault.bicep b/healthcare/solutions/dataverseIntegration/modules/services/keyvault.bicep
new file mode 100644
index 00000000..daeaa10c
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/modules/services/keyvault.bicep
@@ -0,0 +1,86 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT license.
+
+// This template is used to create a KeyVault.
+targetScope = 'resourceGroup'
+
+// Parameters
+param location string
+param tags object
+param subnetId string
+param keyvaultName string
+param privateDnsZoneIdKeyVault string = ''
+
+// Variables
+var keyVaultPrivateEndpointName = '${keyVault.name}-private-endpoint'
+
+// Resources
+resource keyVault 'Microsoft.KeyVault/vaults@2021-04-01-preview' = {
+  name: keyvaultName
+  location: location
+  tags: tags
+  properties: {
+    accessPolicies: []
+    createMode: 'default'
+    enabledForDeployment: false
+    enabledForDiskEncryption: false
+    enabledForTemplateDeployment: false
+    enablePurgeProtection: true
+    enableRbacAuthorization: true
+    enableSoftDelete: true
+    networkAcls: {
+      bypass: 'AzureServices'
+      defaultAction: 'Deny'
+      ipRules: []
+      virtualNetworkRules: []
+    }
+    sku: {
+      family: 'A'
+      name: 'standard'
+    }
+    softDeleteRetentionInDays: 7
+    tenantId: subscription().tenantId
+  }
+}
+
+resource keyVaultPrivateEndpoint 'Microsoft.Network/privateEndpoints@2020-11-01' = {
+  name: keyVaultPrivateEndpointName
+  location: location
+  tags: tags
+  properties: {
+    manualPrivateLinkServiceConnections: []
+    privateLinkServiceConnections: [
+      {
+        name: keyVaultPrivateEndpointName
+        properties: {
+          groupIds: [
+            'vault'
+          ]
+          privateLinkServiceId: keyVault.id
+          requestMessage: ''
+        }
+      }
+    ]
+    subnet: {
+      id: subnetId
+    }
+  }
+}
+
+resource keyVaultPrivateEndpointARecord 'Microsoft.Network/privateEndpoints/privateDnsZoneGroups@2020-11-01' = if (!empty(privateDnsZoneIdKeyVault)) {
+  parent: keyVaultPrivateEndpoint
+  name: 'default'
+  properties: {
+    privateDnsZoneConfigs: [
+      {
+        name: '${keyVaultPrivateEndpoint.name}-arecord'
+        properties: {
+          privateDnsZoneId: privateDnsZoneIdKeyVault
+        }
+      }
+    ]
+  }
+}
+
+// Outputs
+output keyvaultId string = keyVault.id
diff --git a/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
new file mode 100644
index 00000000..d07b5f6a
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
@@ -0,0 +1,255 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT license.
+
+// This template is used to create a Synapse workspace.
+targetScope = 'resourceGroup'
+
+// Parameters
+param location string
+param tags object
+param subnetId string
+param synapseName string
+param administratorUsername string = 'SqlServerMainUser'
+@secure()
+param administratorPassword string
+param synapseSqlAdminGroupName string = ''
+param synapseSqlAdminGroupObjectID string = ''
+param synapseDefaultStorageAccountFileSystemId string
+param synapseComputeSubnetId string = ''
+param privateDnsZoneIdSynapseSql string = ''
+param privateDnsZoneIdSynapseDev string = ''
+param purviewId string = ''
+
+// Variables
+var synapseDefaultStorageAccountFileSystemName = length(split(synapseDefaultStorageAccountFileSystemId, '/')) >= 13 ? last(split(synapseDefaultStorageAccountFileSystemId, '/')) : 'incorrectSegmentLength'
+var synapseDefaultStorageAccountName = length(split(synapseDefaultStorageAccountFileSystemId, '/')) >= 13 ? split(synapseDefaultStorageAccountFileSystemId, '/')[8] : 'incorrectSegmentLength'
+var synapsePrivateEndpointNameSql = '${synapse.name}-sql-private-endpoint'
+var synapsePrivateEndpointNameSqlOnDemand = '${synapse.name}-sqlondemand-private-endpoint'
+var synapsePrivateEndpointNameDev = '${synapse.name}-dev-private-endpoint'
+
+// Resources
+resource synapse 'Microsoft.Synapse/workspaces@2021-03-01' = {
+  name: synapseName
+  location: location
+  tags: tags
+  identity: {
+    type: 'SystemAssigned'
+  }
+  properties: {
+    defaultDataLakeStorage: {
+      accountUrl: 'https://${synapseDefaultStorageAccountName}.dfs.${environment().suffixes.storage}'
+      filesystem: synapseDefaultStorageAccountFileSystemName
+    }
+    managedResourceGroupName: synapseName
+    managedVirtualNetwork: 'default'
+    managedVirtualNetworkSettings: {
+      allowedAadTenantIdsForLinking: []
+      linkedAccessCheckOnTargetResource: true
+      preventDataExfiltration: true
+    }
+    publicNetworkAccess: 'Enabled'
+    purviewConfiguration: {
+      purviewResourceId: purviewId
+    }
+    sqlAdministratorLogin: administratorUsername
+    sqlAdministratorLoginPassword: administratorPassword
+    virtualNetworkProfile: {
+      computeSubnetId: synapseComputeSubnetId
+    }
+  }
+}
+
+resource synapseSqlPool001 'Microsoft.Synapse/workspaces/sqlPools@2021-03-01' = {
+  parent: synapse
+  name: 'sqlPool001'
+  location: location
+  tags: tags
+  sku: {
+    name: 'DW100c'
+  }
+  properties: {
+    collation: 'SQL_Latin1_General_CP1_CI_AS'
+    createMode: 'Default'
+    storageAccountType: 'GRS'
+  }
+}
+
+resource synapseBigDataPool001 'Microsoft.Synapse/workspaces/bigDataPools@2021-03-01' = {
+  parent: synapse
+  name: 'bigDataPool001'
+  location: location
+  tags: tags
+  properties: {
+    autoPause: {
+      enabled: true
+      delayInMinutes: 15
+    }
+    autoScale: {
+      enabled: true
+      maxNodeCount: 10
+      minNodeCount: 3
+    }
+    // cacheSize: 100  // Uncomment to set a specific cache size
+    customLibraries: []
+    defaultSparkLogFolder: 'logs/'
+    dynamicExecutorAllocation: {
+      enabled: true
+    }
+    // isComputeIsolationEnabled: true  // Uncomment to enable compute isolation (only available in selective regions)
+    // libraryRequirements: {  // Uncomment to install pip dependencies on the Spark cluster
+    //   content: ''
+    //   filename: 'requirements.txt'
+    // }
+    nodeSize: 'Small'
+    nodeSizeFamily: 'MemoryOptimized'
+    sessionLevelPackagesEnabled: true
+    // sparkConfigProperties: {  // Uncomment to set spark conf on the Spark cluster
+    //   content: ''
+    //   filename: 'spark.conf'
+    // }
+    sparkEventsFolder: 'events/'
+    sparkVersion: '3.1'
+  }
+}
+
+resource synapseManagedIdentitySqlControlSettings 'Microsoft.Synapse/workspaces/managedIdentitySqlControlSettings@2021-03-01' = {
+  parent: synapse
+  name: 'default'
+  properties: {
+    grantSqlControlToManagedIdentity: {
+      desiredState: 'Enabled'
+    }
+  }
+}
+
+resource synapseAadAdministrators 'Microsoft.Synapse/workspaces/administrators@2021-03-01' = if (!empty(synapseSqlAdminGroupName) && !empty(synapseSqlAdminGroupObjectID)) {
+  parent: synapse
+  name: 'activeDirectory'
+  properties: {
+    administratorType: 'ActiveDirectory'
+    login: synapseSqlAdminGroupName
+    sid: synapseSqlAdminGroupObjectID
+    tenantId: subscription().tenantId
+  }
+}
+
+resource synapsePrivateEndpointSql 'Microsoft.Network/privateEndpoints@2020-11-01' = {
+  name: synapsePrivateEndpointNameSql
+  location: location
+  tags: tags
+  properties: {
+    manualPrivateLinkServiceConnections: []
+    privateLinkServiceConnections: [
+      {
+        name: synapsePrivateEndpointNameSql
+        properties: {
+          groupIds: [
+            'Sql'
+          ]
+          privateLinkServiceId: synapse.id
+          requestMessage: ''
+        }
+      }
+    ]
+    subnet: {
+      id: subnetId
+    }
+  }
+}
+
+resource synapsePrivateEndpointSqlARecord 'Microsoft.Network/privateEndpoints/privateDnsZoneGroups@2020-11-01' = if (!empty(privateDnsZoneIdSynapseSql)) {
+  parent: synapsePrivateEndpointSql
+  name: 'default'
+  properties: {
+    privateDnsZoneConfigs: [
+      {
+        name: '${synapsePrivateEndpointSql.name}-arecord'
+        properties: {
+          privateDnsZoneId: privateDnsZoneIdSynapseSql
+        }
+      }
+    ]
+  }
+}
+
+resource synapsePrivateEndpointSqlOnDemand 'Microsoft.Network/privateEndpoints@2020-11-01' = {
+  name: synapsePrivateEndpointNameSqlOnDemand
+  location: location
+  tags: tags
+  properties: {
+    manualPrivateLinkServiceConnections: []
+    privateLinkServiceConnections: [
+      {
+        name: synapsePrivateEndpointNameSqlOnDemand
+        properties: {
+          groupIds: [
+            'SqlOnDemand'
+          ]
+          privateLinkServiceId: synapse.id
+          requestMessage: ''
+        }
+      }
+    ]
+    subnet: {
+      id: subnetId
+    }
+  }
+}
+
+resource synapsePrivateEndpointSqlOnDemandARecord 'Microsoft.Network/privateEndpoints/privateDnsZoneGroups@2020-11-01' = if (!empty(privateDnsZoneIdSynapseSql)) {
+  parent: synapsePrivateEndpointSqlOnDemand
+  name: 'default'
+  properties: {
+    privateDnsZoneConfigs: [
+      {
+        name: '${synapsePrivateEndpointSqlOnDemand.name}-arecord'
+        properties: {
+          privateDnsZoneId: privateDnsZoneIdSynapseSql
+        }
+      }
+    ]
+  }
+}
+
+resource synapsePrivateEndpointDev 'Microsoft.Network/privateEndpoints@2020-11-01' = {
+  name: synapsePrivateEndpointNameDev
+  location: location
+  tags: tags
+  properties: {
+    manualPrivateLinkServiceConnections: []
+    privateLinkServiceConnections: [
+      {
+        name: synapsePrivateEndpointNameDev
+        properties: {
+          groupIds: [
+            'Dev'
+          ]
+          privateLinkServiceId: synapse.id
+          requestMessage: ''
+        }
+      }
+    ]
+    subnet: {
+      id: subnetId
+    }
+  }
+}
+
+resource synapsePrivateEndpointDevARecord 'Microsoft.Network/privateEndpoints/privateDnsZoneGroups@2020-11-01' = if (!empty(privateDnsZoneIdSynapseDev)) {
+  parent: synapsePrivateEndpointDev
+  name: 'default'
+  properties: {
+    privateDnsZoneConfigs: [
+      {
+        name: '${synapsePrivateEndpointDev.name}-arecord'
+        properties: {
+          privateDnsZoneId: privateDnsZoneIdSynapseDev
+        }
+      }
+    ]
+  }
+}
+
+// Outputs
+output synapseId string = synapse.id
+output synapseBigDataPool001Id string = synapseBigDataPool001.id
diff --git a/healthcare/solutions/dataverseIntegration/params.json b/healthcare/solutions/dataverseIntegration/params.json
new file mode 100644
index 00000000..b2c62516
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/params.json
@@ -0,0 +1,42 @@
+{
+    "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentParameters.json#",
+    "contentVersion": "1.0.0.0",
+    "parameters": {
+        "location": {
+            "value": "eastus"
+        },
+        "environment": {
+            "value": "dev"
+        },
+        "prefix": {
+            "value": "dataverse"
+        },
+        "tags": {
+            "value": {}
+        },
+        "administratorPassword": {
+            "value": "<your-secure-password>"
+        },
+        "synapseDefaultStorageAccountFileSystemId": {
+            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Storage/storageAccounts/dataversedl/blobServices/default/containers/synapse"
+        },
+        "purviewId": {
+            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/synapse-rg/providers/Microsoft.Purview/accounts/marvtest"
+        },
+        "enableRoleAssignments": {
+            "value": true
+        },
+        "subnetId": {
+            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/virtualNetworks/dataverse-vnet/subnets/default"
+        },
+        "privateDnsZoneIdKeyVault": {
+            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/privateDnsZones/privatelink.vaultcore.azure.net"
+        },
+        "privateDnsZoneIdSynapseDev": {
+            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/privateDnsZones/privatelink.dev.azuresynapse.net"
+        },
+        "privateDnsZoneIdSynapseSql": {
+            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/privateDnsZones/privatelink.sql.azuresynapse.net"
+        }
+    }
+}
\ No newline at end of file

From 01dcb1bf87b5720e1ddbe0090b1f0fcaccef2753 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Thu, 16 Sep 2021 16:12:11 +0200
Subject: [PATCH 02/22] removed synpase pool

---
 .../solutions/dataverseIntegration/main.json  | 22 ++-----------------
 .../modules/services/synapse.bicep            | 15 -------------
 2 files changed, 2 insertions(+), 35 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/main.json b/healthcare/solutions/dataverseIntegration/main.json
index a8181e29..2883bf79 100644
--- a/healthcare/solutions/dataverseIntegration/main.json
+++ b/healthcare/solutions/dataverseIntegration/main.json
@@ -5,7 +5,7 @@
     "_generator": {
       "name": "bicep",
       "version": "0.4.613.9944",
-      "templateHash": "7708067349362611098"
+      "templateHash": "15609941857550792068"
     }
   },
   "parameters": {
@@ -317,7 +317,7 @@
             "_generator": {
               "name": "bicep",
               "version": "0.4.613.9944",
-              "templateHash": "18364487249710460520"
+              "templateHash": "13804182594025419947"
             }
           },
           "parameters": {
@@ -409,24 +409,6 @@
                 }
               }
             },
-            {
-              "type": "Microsoft.Synapse/workspaces/sqlPools",
-              "apiVersion": "2021-03-01",
-              "name": "[format('{0}/{1}', parameters('synapseName'), 'sqlPool001')]",
-              "location": "[parameters('location')]",
-              "tags": "[parameters('tags')]",
-              "sku": {
-                "name": "DW100c"
-              },
-              "properties": {
-                "collation": "SQL_Latin1_General_CP1_CI_AS",
-                "createMode": "Default",
-                "storageAccountType": "GRS"
-              },
-              "dependsOn": [
-                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
-              ]
-            },
             {
               "type": "Microsoft.Synapse/workspaces/bigDataPools",
               "apiVersion": "2021-03-01",
diff --git a/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
index d07b5f6a..5f806691 100644
--- a/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
+++ b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
@@ -59,21 +59,6 @@ resource synapse 'Microsoft.Synapse/workspaces@2021-03-01' = {
   }
 }
 
-resource synapseSqlPool001 'Microsoft.Synapse/workspaces/sqlPools@2021-03-01' = {
-  parent: synapse
-  name: 'sqlPool001'
-  location: location
-  tags: tags
-  sku: {
-    name: 'DW100c'
-  }
-  properties: {
-    collation: 'SQL_Latin1_General_CP1_CI_AS'
-    createMode: 'Default'
-    storageAccountType: 'GRS'
-  }
-}
-
 resource synapseBigDataPool001 'Microsoft.Synapse/workspaces/bigDataPools@2021-03-01' = {
   parent: synapse
   name: 'bigDataPool001'

From 82c7633cf6404c3d6f791bbccb4fc868a73b0c0b Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Fri, 17 Sep 2021 00:40:58 +0200
Subject: [PATCH 03/22] updated params

---
 .../solutions/dataverseIntegration/params.json     | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/params.json b/healthcare/solutions/dataverseIntegration/params.json
index b2c62516..e7c00940 100644
--- a/healthcare/solutions/dataverseIntegration/params.json
+++ b/healthcare/solutions/dataverseIntegration/params.json
@@ -9,7 +9,7 @@
             "value": "dev"
         },
         "prefix": {
-            "value": "dataverse"
+            "value": "mydverse"
         },
         "tags": {
             "value": {}
@@ -18,25 +18,25 @@
             "value": "<your-secure-password>"
         },
         "synapseDefaultStorageAccountFileSystemId": {
-            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Storage/storageAccounts/dataversedl/blobServices/default/containers/synapse"
+            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Storage/storageAccounts/mydversedevstorage/blobServices/default/containers/synapse"
         },
         "purviewId": {
-            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/synapse-rg/providers/Microsoft.Purview/accounts/marvtest"
+            "value": ""
         },
         "enableRoleAssignments": {
             "value": true
         },
         "subnetId": {
-            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/virtualNetworks/dataverse-vnet/subnets/default"
+            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Network/virtualNetworks/mydverse-dev-vnet/subnets/default"
         },
         "privateDnsZoneIdKeyVault": {
-            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/privateDnsZones/privatelink.vaultcore.azure.net"
+            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Network/privateDnsZones/privatelink.vaultcore.azure.net"
         },
         "privateDnsZoneIdSynapseDev": {
-            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/privateDnsZones/privatelink.dev.azuresynapse.net"
+            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Network/privateDnsZones/privatelink.dev.azuresynapse.net"
         },
         "privateDnsZoneIdSynapseSql": {
-            "value": "/subscriptions/558bd446-4212-46a2-908c-9ab0a628705e/resourceGroups/dataverse-rg/providers/Microsoft.Network/privateDnsZones/privatelink.sql.azuresynapse.net"
+            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Network/privateDnsZones/privatelink.sql.azuresynapse.net"
         }
     }
 }
\ No newline at end of file

From f1d1f4029d8a5110664b6659bea153d4461a903d Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Tue, 21 Sep 2021 19:07:18 +0200
Subject: [PATCH 04/22] * Added Role Assignments to ARM/Bicep for PP * Added
 pwsh scripts for automating the setup of synch * Added role assignment
 templates * Updated ARM

---
 .../solutions/dataverseIntegration/Helper.ps1 |  344 ++++++
 .../dataverseIntegration/SetupSynapseLink.ps1 |  164 +++
 .../solutions/dataverseIntegration/main.bicep |  137 ++-
 .../solutions/dataverseIntegration/main.json  | 1093 ++++++++++++++++-
 ...ervicePrincipalRoleAssignmentStorage.bicep |   37 +
 ...cipalRoleAssignmentStorageFileSystem.bicep |   48 +
 ...apseRoleAssignmentStorageFileSystem.bicep} |   18 +-
 .../modules/services/storage.bicep            |  270 ++++
 .../modules/services/synapse.bicep            |    9 +
 9 files changed, 2090 insertions(+), 30 deletions(-)
 create mode 100644 healthcare/solutions/dataverseIntegration/Helper.ps1
 create mode 100644 healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
 create mode 100644 healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep
 create mode 100644 healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep
 rename healthcare/solutions/dataverseIntegration/modules/auxiliary/{synapseRoleAssignmentStorage.bicep => synapseRoleAssignmentStorageFileSystem.bicep} (73%)
 create mode 100644 healthcare/solutions/dataverseIntegration/modules/services/storage.bicep

diff --git a/healthcare/solutions/dataverseIntegration/Helper.ps1 b/healthcare/solutions/dataverseIntegration/Helper.ps1
new file mode 100644
index 00000000..33ff5079
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/Helper.ps1
@@ -0,0 +1,344 @@
+function Update-OrganizationDetails {
+    <#
+    .SYNOPSIS
+        Updates Organization details for the Power Platform environment.
+    .DESCRIPTION
+        Update-OrganizationDetails creates a new Data Lake configuration in the Power Platform environment.
+    .PARAMETER PowerPlatformEnvironmentId
+        Function expects the power platform environment id in which the Data Lake configuration
+        will be created.
+    .PARAMETER OrganizationUrl
+        Function expects the organization url (e.g. 'https://org111aa111.crm.dynamics.com/').
+    .PARAMETER OrganizationId
+        Function expects the organization Id (e.g. 'aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa').
+    .EXAMPLE
+        Update-OrganizationDetails -PowerPlatformEnvironmentId "<your-power-platform-environment-id>" -OrganizationUrl "<your-organization-url>" -OrganizationId "<your-organization-id>"
+    .NOTES
+        Author:  Marvin Buss
+        GitHub:  @marvinbuss
+    #>
+    [CmdletBinding()]
+    param (
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $PowerPlatformEnvironmentId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $OrganizationUrl,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $OrganizationId
+    )
+    # Set Graph API URI
+    Write-Verbose "Setting Power Platform URI"
+    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/updateorganizationdetails?organizationUrl=${OrganizationUrl}&organizationId=${OrganizationId}"
+
+    # Define parameters based on input parameters
+    Write-Verbose "Defining parameters based on input parameters"
+    $azureAccessToken = (Get-AzAccessToken).Token
+
+    # Set header for REST call
+    Write-Verbose "Setting header for REST call"
+    $headers = @{
+        "Content-Type"  = "application/json"
+        "Authorization" = "Bearer ${azureAccessToken}"
+    }
+
+    # Define parameters for REST method
+    Write-Verbose "Defining parameters for pscore method"
+    $parameters = @{
+        "Uri"         = $powerPlatformUri
+        "Method"      = "Post"
+        "Headers"     = $headers
+        "ContentType" = "application/json"
+    }
+
+    # Invoke REST API
+    Write-Verbose "Invoking REST API"
+    try {
+        $response = Invoke-RestMethod @parameters
+        Write-Verbose "Response: ${response}"
+    }
+    catch {
+        Write-Error "REST API call failed"
+        throw "REST API call failed"
+    }
+    return $response
+}
+
+
+function New-LakeDetails {
+    <#
+    .SYNOPSIS
+        Creates New Lake Configuration in the Power Platform environment.
+    .DESCRIPTION
+        New-LakeDetails creates a new Data Lake configuration in the Power Platform environment.
+    .PARAMETER PowerPlatformEnvironmentId
+        Function expects the power platform environment id in which the Data Lake configuration
+        will be created.
+    .PARAMETER DataLakeFileSystemId
+        Function expects the data lake file system resource id which should be
+        connected to the power platform.
+    .EXAMPLE
+        New-LakeDetails -PowerPlatformEnvironmentId "<your-power-platform-environment-id>" -DataLakeFileSystemId "<your-datalake-filesystem-id>"
+    .NOTES
+        Author:  Marvin Buss
+        GitHub:  @marvinbuss
+    #>
+    [CmdletBinding()]
+    param (
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $PowerPlatformEnvironmentId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $DataLakeFileSystemId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $SynapseId
+    )
+    # Set Graph API URI
+    Write-Verbose "Setting Power Platform URI"
+    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakedetails"
+
+    # Define parameters based on input parameters
+    Write-Verbose "Defining parameters based on input parameters"
+    $azureAccessToken = (Get-AzAccessToken).Token
+    $tenantId = (Get-AzTenant).Id
+    $dataLakeSubscriptionId = $DataLakeId.Split("/")[2]
+    $dataLakeResourceGroupName = $DataLakeId.Split("/")[4]
+    $dataLakeName = $DataLakeId.Split("/")[8]
+    $dataLakeFileSystemName = $DataLakeId.Split("/")[-1]
+
+    $synapseSubscriptionId = $SynapseId.Split("/")[2]
+    $synapseResourceGroupName = $SynapseId.Split("/")[4]
+    $synapseName = $SynapseId.Split("/")[-1]
+
+    if (($synapseSubscriptionId -ne $dataLakeSubscriptionId) -or ($synapseResourceGroupName -ne $dataLakeResourceGroupName)) {
+        Write-Error "Synapse workspace and Data Lake are not in the same Subscription and/or Resource Group"
+        throw "Synapse workspace and Data Lake are not in the same Subscription and/or Resource Group"
+    }
+
+    # Set header for REST call
+    Write-Verbose "Setting header for REST call"
+    $headers = @{
+        "Content-Type"  = "application/json"
+        "Authorization" = "Bearer ${azureAccessToken}"
+    }
+
+    # Set body for REST call
+    Write-Verbose "Setting body for REST call"
+    $body = @{
+        "TenantId"             = $tenantId
+        "SubscriptionId"       = $dataLakeSubscriptionId
+        "ResourceGroupName"    = $dataLakeResourceGroupName
+        "StorageAccountName"   = $dataLakeName
+        "BlobEndpoint"         = "https://${dataLakeName}.blob.core.windows.net/"
+        "FileEndpoint"         = "https://${dataLakeName}.file.core.windows.net/"
+        "QueueEndpoint"        = "https://${dataLakeName}.queue.core.windows.net/"
+        "TableEndpoint"        = "https://${dataLakeName}.table.core.windows.net/"
+        "FileSystemEndpoint"   = "https://${dataLakeName}.dfs.core.windows.net/"
+        "FileSystemName"       = $dataLakeFileSystemName
+        "SqlODEndpoint"        = "${synapseName}-ondemand.sql.azuresynapse.net"
+        "WorkspaceDevEndpoint" = "https://${synapseName}.dev.azuresynapse.net"
+        "IsDefault"            = $true
+    } | ConvertTo-Json
+
+    # Define parameters for REST method
+    Write-Verbose "Defining parameters for pscore method"
+    $parameters = @{
+        "Uri"         = $powerPlatformUri
+        "Method"      = "Post"
+        "Headers"     = $headers
+        "Body"        = $body
+        "ContentType" = "application/json"
+    }
+
+    # Invoke REST API
+    Write-Verbose "Invoking REST API"
+    try {
+        $response = Invoke-RestMethod @parameters
+        Write-Verbose "Response: ${response}"
+    }
+    catch {
+        Write-Error "REST API call failed"
+        throw "REST API call failed"
+    }
+    return $response
+}
+
+
+function New-LakeProfile {
+    <#
+    .SYNOPSIS
+        Creates New Lake Profile based on the Data Lake Configuration in the Power Platform environment.
+    .DESCRIPTION
+        New-LakeProfile creates a new Data Lake profile in the Power Platform environment.
+    .PARAMETER PowerPlatformEnvironmentId
+        Function expects the power platform environment id in which the Data Lake configuration
+        will be created.
+    .PARAMETER DataLakeFileSystemId
+        Function expects the data lake file system resource id which should be
+        connected to the power platform.
+    .PARAMETER LakeDetailsId
+        Function expects the ID of the Lake Details/Lake configuration object.
+    .PARAMETER Entities
+        Function expects a definition of the entities that should be synched to the Data Lake.
+    .EXAMPLE
+        New-LakeProfile -PowerPlatformEnvironmentId "<your-power-platform-environment-id>" -DataLakeFileSystemId "<your-datalake-filesystem-id>" -LakeDetailsId "<your-lake-details-id>" -Entities @[@{"Type": "msdyn_actual", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false, "Settings": @{}}]
+    .NOTES
+        Author:  Marvin Buss
+        GitHub:  @marvinbuss
+    #>
+    [CmdletBinding()]
+    param (
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $PowerPlatformEnvironmentId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $DataLakeFileSystemId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $LakeDetailsId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [Array]
+        $Entities  # Sample Input: [{"Type": "msdyn_actual", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false, "Settings": {}}, {"Type": "adx_ad", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false, "Settings": {}}]
+    )
+    # Set Graph API URI
+    Write-Verbose "Setting Power Platform URI"
+    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakedetails/${LakeDetailsId}"
+
+    # Define parameters based on input parameters
+    Write-Verbose "Defining parameters based on input parameters"
+    $azureAccessToken = (Get-AzAccessToken).Token
+    $dataLakeName = $DataLakeId.Split("/")[8]
+
+    # Set header for REST call
+    Write-Verbose "Setting header for REST call"
+    $headers = @{
+        "Content-Type"  = "application/json"
+        "Authorization" = "Bearer ${azureAccessToken}"
+    }
+
+    # Set body for REST call
+    Write-Verbose "Setting body for REST call"
+    $body = @{
+        "DestinationType"            = 4
+        "Entities"                   = $Entities
+        "IsOdiEnabled"               = $false
+        "Name"                       = $dataLakeName
+        "RetryPolicy"                = @{
+            "IntervalInSeconds" = 5
+            "MaxRetryCount"     = 12
+        }
+        "SchedulerIntervalInMinutes" = 60
+        "WriteDeleteLog"             = $true
+    } | ConvertTo-Json
+
+    # Define parameters for REST method
+    Write-Verbose "Defining parameters for pscore method"
+    $parameters = @{
+        "Uri"         = $powerPlatformUri
+        "Method"      = "Post"
+        "Headers"     = $headers
+        "Body"        = $body
+        "ContentType" = "application/json"
+    }
+
+    # Invoke REST API
+    Write-Verbose "Invoking REST API"
+    try {
+        $response = Invoke-RestMethod @parameters
+        Write-Verbose "Response: ${response}"
+    }
+    catch {
+        Write-Error "REST API call failed"
+        throw "REST API call failed"
+    }
+    return $response
+}
+
+
+function New-LakeProfileActivation {
+    <#
+    .SYNOPSIS
+        Activates previously created Lake Profile in the Power Platform environment.
+    .DESCRIPTION
+        New-LakeProfileActivation activates a Data Lake profile in the Power Platform environment.
+    .PARAMETER PowerPlatformEnvironmentId
+        Function expects the power platform environment id in which the Data Lake configuration
+        will be created.
+    .PARAMETER LakeDetailsId
+        Function expects the ID of the Lake Details/Lake configuration object.
+    .EXAMPLE
+        New-LakeProfileActivation -PowerPlatformEnvironmentId "<your-power-platform-environment-id>" -LakeDetailsId "<your-lake-details-id>"
+    .NOTES
+        Author:  Marvin Buss
+        GitHub:  @marvinbuss
+    #>
+    [CmdletBinding()]
+    param (
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $PowerPlatformEnvironmentId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $LakeDetailsId
+    )
+    # Set Graph API URI
+    Write-Verbose "Setting Power Platform URI"
+    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakedetails/${LakeDetailsId}/activate"
+
+    # Define parameters based on input parameters
+    Write-Verbose "Defining parameters based on input parameters"
+    $azureAccessToken = (Get-AzAccessToken).Token
+
+    # Set header for REST call
+    Write-Verbose "Setting header for REST call"
+    $headers = @{
+        "Content-Type"  = "application/json"
+        "Authorization" = "Bearer ${azureAccessToken}"
+    }
+
+    # Define parameters for REST method
+    Write-Verbose "Defining parameters for pscore method"
+    $parameters = @{
+        "Uri"         = $powerPlatformUri
+        "Method"      = "Post"
+        "Headers"     = $headers
+        "ContentType" = "application/json"
+    }
+
+    # Invoke REST API
+    Write-Verbose "Invoking REST API"
+    try {
+        $response = Invoke-RestMethod @parameters
+        Write-Verbose "Response: ${response}"
+    }
+    catch {
+        Write-Error "REST API call failed"
+        throw "REST API call failed"
+    }
+    return $response
+}
diff --git a/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1 b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
new file mode 100644
index 00000000..4fe9a50f
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
@@ -0,0 +1,164 @@
+# Copyright (c) Microsoft Corporation.
+# Licensed under the MIT license.
+
+# Define script arguments
+[CmdletBinding()]
+param (
+    [Parameter(Mandatory = $true)]
+    [String]
+    $PowerPlatformEnvironmentId,
+
+    [Parameter(Mandatory = $true)]
+    [String]
+    $SynapseId,
+
+    [Parameter(Mandatory = $true)]
+    [String]
+    $DataverseDataLakeFileSystemId,
+
+    [Parameter(Mandatory = $true)]
+    [ValidateNotNullOrEmpty()]
+    [Array]
+    $Entities,
+
+    [Parameter(DontShow)]
+    [String]
+    $ExportDataLakeApplicationId = "7f15f9d9-cad0-44f1-bbba-d36650e07765",
+
+    [Parameter(DontShow)]
+    [String]
+    $PowerPlatformApplicationId = "f3b07414-6bf4-46e6-b63f-56941f3f4128"
+)
+
+# Import Helper Functions
+Write-Output "Importing Helper Functions"
+. "$PSScriptRoot\Helper.ps1"
+
+# Check existence of Enterprise Applications: 'Export to data lake' and 'Microsoft Power Query'
+Write-Output "Checking existence of Enterprise Applications: 'Export to data lake' and 'Microsoft Power Query'"
+$exportDataLakeServicePrincipal = Get-AzADServicePrincipal `
+    -ApplicationId $ExportDataLakeApplicationId
+Write-Output "'Expor Data Lake' Service Principle Details: '${exportDataLakeServicePrincipal}'"
+
+$powerPlatformServicePrincipal = Get-AzADServicePrincipal `
+    -ApplicationId $PowerPlatformApplicationId
+Write-Output "'Microsoft Power Query' Service Principle Details: '${powerPlatformServicePrincipal}'"
+
+# Add Synapse Role Assignment
+Write-Output "Adding Synapse Role Assignment"
+$synapseSubscriptionId = $SynapseId.Split("/")[2]
+$synapseName = $SynapseId.Split("/")[-1]
+
+Set-AzContext `
+    -Subscription $synapseSubscriptionId
+
+New-AzSynapseRoleAssignment `
+    -WorkspaceName $synapseName `
+    -RoleDefinitionName "Workspace Admin" `  # More role details: "{"id": "6e4bf58a-b8e1-4cc3-bbf9-d73143322b78", "isBuiltIn": true, "name": "Workspace Admin"},"
+    -ObjectId $exportDataLakeServicePrincipal.Id
+
+# Create File Systems on Data Lake
+Write-Output "Creating File Systems on Data Lake"
+$dataLakeSubscriptionId = $DataLakeId.Split("/")[2]
+$dataLakeName = $DataLakeId.Split("/")[-1]
+$powerPlatformContainerName = "power-platform-dataflows"
+$dataverseContainerName = "dataverse"
+
+Set-AzContext `
+    -Subscription $dataLakeSubscriptionId
+
+$context = New-AzStorageContext `
+    -StorageAccountName $dataLakeName
+
+New-AzureStorageContainer `
+    -Context $context `
+    -Name $powerPlatformContainerName
+
+New-AzureStorageContainer `
+    -Context $context `
+    -Name $dataverseContainerName
+
+#Add Role Assignments for 'Export to data lake' Enterprise Application
+Write-Output "Adding Role Assignments for 'Export to data lake' Enterprise Application"
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Owner" `
+    -Scope $DataLakeId
+
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Storage Blob Data Owner" `
+    -Scope $DataLakeId
+
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Storage Blob Data Contributor" `
+    -Scope $DataLakeId
+
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Storage Account Contributor" `
+    -Scope $DataLakeId
+
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Storage Account Contributor" `
+    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
+
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Owner" `
+    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
+
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Storage Blob Data Owner" `
+    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
+
+New-AzRoleAssignment `
+    -ObjectId $exportDataLakeServicePrincipal.Id `
+    -RoleDefinitionId "Storage Blob Data Contributor" `
+    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
+
+# Add Role Assignments for 'Microsoft Power Query' Enterprise Application
+Write-Output "Adding Role Assignments for 'Microsoft Power Query' Enterprise Application"
+New-AzRoleAssignment `
+    -ObjectId $powerPlatformServicePrincipal.Id `
+    -RoleDefinitionId "Reader and Data Access" `
+    -Scope $DataLakeId
+
+New-AzRoleAssignment `
+    -ObjectId $powerPlatformServicePrincipal.Id `
+    -RoleDefinitionId "Storage Blob Data Owner" `
+    -Scope "${DataLakeId}/blobServices/default/containers/${powerPlatformContainerName}"
+
+# Update Organization Details
+Write-Output "Creating New Data Lake Details"
+Update-OrganizationDetails `
+    -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
+    -OrganizationUrl $OrganizationUrl `
+    -OrganizationId $OrganizationId
+
+# Create New Data Lake Details
+Write-Output "Creating New Data Lake Details"
+$datalakeDetails = New-LakeDetails `
+    -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
+    -DataLakeFileSystemId $DataverseDataLakeFileSystemId `
+    -SynapseId $SynapseId
+Write-Output "New Data Lake Details: '${datalakeDetails}'"
+
+# Create New Data Lake Profile
+Write-Output "Creating New Data Lake Profile"
+$datalakeProfile = New-LakeProfile `
+    -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
+    -DataLakeFileSystemId $DataverseDataLakeFileSystemId `
+    -LakeDetailsId $datalakeDetails.Id `
+    -Entities $Entities
+Write-Output "New Data Lake Profile: '${datalakeProfile}'"
+
+# Activate Lake Profile
+Write-Output "Activating Lake Profile"
+$datalakeProfileActivation = New-LakeProfileActivation `
+    -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
+    -LakeDetailsId $datalakeDetails.Id
+Write-Output "New Data Lake Profile Activation: '${datalakeProfileActivation}'"
diff --git a/healthcare/solutions/dataverseIntegration/main.bicep b/healthcare/solutions/dataverseIntegration/main.bicep
index ca04d151..4bab4947 100644
--- a/healthcare/solutions/dataverseIntegration/main.bicep
+++ b/healthcare/solutions/dataverseIntegration/main.bicep
@@ -22,10 +22,12 @@ param tags object = {}
 
 // Resource parameters
 @secure()
-@description('Specifies the administrator password of the sql servers in Synapse. If you selected dataFactory as processingService, leave this value empty as is.')
+@description('Specifies the administrator password of the sql servers in Synapse.')
 param administratorPassword string = ''
-@description('Specifies the resource ID of the default storage account file system for Synapse. If you selected dataFactory as processingService, leave this value empty as is.')
-param synapseDefaultStorageAccountFileSystemId string = ''
+@description('Specifies the object ID of the Enterprise Application "Microsoft Power Query".')
+param powerPlatformServicePrincipalObjectId string = ''
+@description('Specifies the object ID of the Enterprise Application "Export to data lake".')
+param dataverseServicePrincipalObjectId string = ''
 @description('Specifies the resource ID of the central purview instance to connect Purviw with Data Factory or Synapse. If you do not want to setup a connection to Purview, leave this value empty as is.')
 param purviewId string = ''
 @description('Specifies whether role assignments should be enabled for Synapse (Blob Storage Contributor to default storage account).')
@@ -53,9 +55,8 @@ var tagsDefault = {
 }
 var tagsJoined = union(tagsDefault, tags)
 var administratorUsername = 'SqlServerMainUser'
-var synapseDefaultStorageAccountSubscriptionId = length(split(synapseDefaultStorageAccountFileSystemId, '/')) >= 13 ? split(synapseDefaultStorageAccountFileSystemId, '/')[2] : subscription().subscriptionId
-var synapseDefaultStorageAccountResourceGroupName = length(split(synapseDefaultStorageAccountFileSystemId, '/')) >= 13 ? split(synapseDefaultStorageAccountFileSystemId, '/')[4] : resourceGroup().name
 var keyvault001Name = '${name}-vault001'
+var storage001Name = '${name}-storage001'
 var synapse001Name = '${name}-synapse001'
 
 // Resources
@@ -71,6 +72,22 @@ module keyVault001 'modules/services/keyvault.bicep' = {
   }
 }
 
+module storage001 'modules/services/storage.bicep' = {
+  name: 'storage001'
+  scope: resourceGroup()
+  params: {
+    location: location
+    tags: tagsJoined
+    fileSystemNames: [
+      'Synapse'
+      'PowerPlatformDataFlows'
+      'Dataverse'
+    ]
+    storageName: storage001Name
+    subnetId: subnetId
+  }
+}
+
 module synapse001 'modules/services/synapse.bicep' = {
   name: 'synapse001'
   scope: resourceGroup()
@@ -87,17 +104,117 @@ module synapse001 'modules/services/synapse.bicep' = {
     privateDnsZoneIdSynapseSql: privateDnsZoneIdSynapseSql
     purviewId: purviewId
     synapseComputeSubnetId: ''
-    synapseDefaultStorageAccountFileSystemId: synapseDefaultStorageAccountFileSystemId
+    synapseDefaultStorageAccountFileSystemId: storage001.outputs.storageFileSystemIds[0]
   }
 }
 
-module synapse001RoleAssignmentStorage 'modules/auxiliary/synapseRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
-  name: 'synapse001RoleAssignmentStorage'
-  scope: resourceGroup(synapseDefaultStorageAccountSubscriptionId, synapseDefaultStorageAccountResourceGroupName)
+module synapse001RoleAssignmentStorageFileSystem 'modules/auxiliary/synapseRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+  name: 'synapse001RoleAssignmentStorageFileSystem'
+  scope: resourceGroup()
   params: {
-    storageAccountFileSystemId: synapseDefaultStorageAccountFileSystemId
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[0]
     synapseId: synapse001.outputs.synapseId
   }
 }
 
+module powerPlatformRoleAssignmentStorage001 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+  name: 'powerPlatformRoleAssignmentStorage001'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: powerPlatformServicePrincipalObjectId
+    storageAccountId: storage001.outputs.storageId
+    roleId: 'c12c1c16-33a1-487b-954d-41c89c60f349'  // Reader and Data Access
+  }
+}
+
+module powerPlatformRoleAssignmentStorageFileSystem001 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+  name: 'powerPlatformRoleAssignmentStorageFileSystem001'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: powerPlatformServicePrincipalObjectId
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[1]
+    roleId: 'b7e6dc6d-f1e8-4753-8033-0f276bb0955b'  // Storage Blob Data Owner
+  }
+}
+
+module dataverseRoleAssignmentStorage001 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorage001'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountId: storage001.outputs.storageId
+    roleId: '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'  // Owner
+  }
+}
+
+module dataverseRoleAssignmentStorage002 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorage002'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountId: storage001.outputs.storageId
+    roleId: 'b7e6dc6d-f1e8-4753-8033-0f276bb0955b'  // Storage Blob Data Owner
+  }
+}
+
+module dataverseRoleAssignmentStorage003 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorage003'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountId: storage001.outputs.storageId
+    roleId: 'ba92f5b4-2d11-453d-a403-e96b0029c9fe'  // Storage Blob Data Contributor
+  }
+}
+
+module dataverseRoleAssignmentStorage004 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorage004'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountId: storage001.outputs.storageId
+    roleId: '17d1049b-9a84-46fb-8f53-869881c3d3ab'  // Storage Account Contributor
+  }
+}
+
+module dataverseRoleAssignmentStorageFileSystem001 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorageFileSystem001'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    roleId: '17d1049b-9a84-46fb-8f53-869881c3d3ab'  // Storage Account Contributor
+  }
+}
+
+module dataverseRoleAssignmentStorageFileSystem002 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorageFileSystem002'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    roleId: '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'  // Owner
+  }
+}
+
+module dataverseRoleAssignmentStorageFileSystem003 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorageFileSystem003'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    roleId: 'b7e6dc6d-f1e8-4753-8033-0f276bb0955b'  // Storage Blob Data Owner
+  }
+}
+
+module dataverseRoleAssignmentStorageFileSystem004 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+  name: 'dataverseRoleAssignmentStorageFileSystem004'
+  scope: resourceGroup()
+  params: {
+    servicePrincipalObjectId: dataverseServicePrincipalObjectId
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    roleId: 'ba92f5b4-2d11-453d-a403-e96b0029c9fe'  // Storage Blob Data Contributor
+  }
+}
+
 // Outputs
diff --git a/healthcare/solutions/dataverseIntegration/main.json b/healthcare/solutions/dataverseIntegration/main.json
index 2883bf79..4846f41c 100644
--- a/healthcare/solutions/dataverseIntegration/main.json
+++ b/healthcare/solutions/dataverseIntegration/main.json
@@ -5,7 +5,7 @@
     "_generator": {
       "name": "bicep",
       "version": "0.4.613.9944",
-      "templateHash": "15609941857550792068"
+      "templateHash": "18109601729406099985"
     }
   },
   "parameters": {
@@ -46,14 +46,21 @@
       "type": "secureString",
       "defaultValue": "",
       "metadata": {
-        "description": "Specifies the administrator password of the sql servers in Synapse. If you selected dataFactory as processingService, leave this value empty as is."
+        "description": "Specifies the administrator password of the sql servers in Synapse."
       }
     },
-    "synapseDefaultStorageAccountFileSystemId": {
+    "powerPlatformServicePrincipalObjectId": {
       "type": "string",
       "defaultValue": "",
       "metadata": {
-        "description": "Specifies the resource ID of the default storage account file system for Synapse. If you selected dataFactory as processingService, leave this value empty as is."
+        "description": "Specifies the object ID of the Enterprise Application \"Microsoft Power Query\"."
+      }
+    },
+    "dataverseServicePrincipalObjectId": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the object ID of the Enterprise Application \"Export to data lake\"."
       }
     },
     "purviewId": {
@@ -109,9 +116,8 @@
     },
     "tagsJoined": "[union(variables('tagsDefault'), parameters('tags'))]",
     "administratorUsername": "SqlServerMainUser",
-    "synapseDefaultStorageAccountSubscriptionId": "[if(greaterOrEquals(length(split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')), 13), split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')[2], subscription().subscriptionId)]",
-    "synapseDefaultStorageAccountResourceGroupName": "[if(greaterOrEquals(length(split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')), 13), split(parameters('synapseDefaultStorageAccountFileSystemId'), '/')[4], resourceGroup().name)]",
     "keyvault001Name": "[format('{0}-vault001', variables('name'))]",
+    "storage001Name": "[format('{0}-storage001', variables('name'))]",
     "synapse001Name": "[format('{0}-synapse001', variables('name'))]"
   },
   "resources": [
@@ -260,6 +266,322 @@
         }
       }
     },
+    {
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "storage001",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "location": {
+            "value": "[parameters('location')]"
+          },
+          "tags": {
+            "value": "[variables('tagsJoined')]"
+          },
+          "fileSystemNames": {
+            "value": [
+              "Synapse",
+              "PowerPlatformDataFlows",
+              "Dataverse"
+            ]
+          },
+          "storageName": {
+            "value": "[variables('storage001Name')]"
+          },
+          "subnetId": {
+            "value": "[parameters('subnetId')]"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "11213770733626231232"
+            }
+          },
+          "parameters": {
+            "location": {
+              "type": "string"
+            },
+            "tags": {
+              "type": "object"
+            },
+            "subnetId": {
+              "type": "string"
+            },
+            "storageName": {
+              "type": "string"
+            },
+            "privateDnsZoneIdDfs": {
+              "type": "string",
+              "defaultValue": ""
+            },
+            "privateDnsZoneIdBlob": {
+              "type": "string",
+              "defaultValue": ""
+            },
+            "fileSystemNames": {
+              "type": "array"
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageNameCleaned": "[replace(parameters('storageName'), '-', '')]",
+            "storagePrivateEndpointNameBlob": "[format('{0}-blob-private-endpoint', variables('storageNameCleaned'))]",
+            "storagePrivateEndpointNameDfs": "[format('{0}-dfs-private-endpoint', variables('storageNameCleaned'))]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Storage/storageAccounts",
+              "apiVersion": "2021-02-01",
+              "name": "[variables('storageNameCleaned')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "identity": {
+                "type": "SystemAssigned"
+              },
+              "sku": {
+                "name": "Standard_ZRS"
+              },
+              "kind": "StorageV2",
+              "properties": {
+                "accessTier": "Hot",
+                "allowBlobPublicAccess": false,
+                "allowSharedKeyAccess": true,
+                "encryption": {
+                  "keySource": "Microsoft.Storage",
+                  "requireInfrastructureEncryption": false,
+                  "services": {
+                    "blob": {
+                      "enabled": true,
+                      "keyType": "Account"
+                    },
+                    "file": {
+                      "enabled": true,
+                      "keyType": "Account"
+                    },
+                    "queue": {
+                      "enabled": true,
+                      "keyType": "Service"
+                    },
+                    "table": {
+                      "enabled": true,
+                      "keyType": "Service"
+                    }
+                  }
+                },
+                "isHnsEnabled": true,
+                "isNfsV3Enabled": false,
+                "largeFileSharesState": "Disabled",
+                "minimumTlsVersion": "TLS1_2",
+                "networkAcls": {
+                  "bypass": "AzureServices",
+                  "defaultAction": "Allow",
+                  "ipRules": [],
+                  "virtualNetworkRules": [],
+                  "resourceAccessRules": []
+                },
+                "supportsHttpsTrafficOnly": true
+              }
+            },
+            {
+              "type": "Microsoft.Storage/storageAccounts/managementPolicies",
+              "apiVersion": "2021-02-01",
+              "name": "[format('{0}/{1}', variables('storageNameCleaned'), 'default')]",
+              "properties": {
+                "policy": {
+                  "rules": [
+                    {
+                      "enabled": true,
+                      "name": "default",
+                      "type": "Lifecycle",
+                      "definition": {
+                        "actions": {
+                          "baseBlob": {
+                            "tierToCool": {
+                              "daysAfterModificationGreaterThan": 90
+                            }
+                          },
+                          "snapshot": {
+                            "tierToCool": {
+                              "daysAfterCreationGreaterThan": 90
+                            }
+                          },
+                          "version": {
+                            "tierToCool": {
+                              "daysAfterCreationGreaterThan": 90
+                            }
+                          }
+                        },
+                        "filters": {
+                          "blobTypes": [
+                            "blockBlob"
+                          ],
+                          "prefixMatch": []
+                        }
+                      }
+                    }
+                  ]
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]"
+              ]
+            },
+            {
+              "type": "Microsoft.Storage/storageAccounts/blobServices",
+              "apiVersion": "2021-02-01",
+              "name": "[format('{0}/{1}', variables('storageNameCleaned'), 'default')]",
+              "properties": {
+                "containerDeleteRetentionPolicy": {
+                  "enabled": true,
+                  "days": 7
+                },
+                "cors": {
+                  "corsRules": []
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]"
+              ]
+            },
+            {
+              "copy": {
+                "name": "storageFileSystems",
+                "count": "[length(parameters('fileSystemNames'))]"
+              },
+              "type": "Microsoft.Storage/storageAccounts/blobServices/containers",
+              "apiVersion": "2021-02-01",
+              "name": "[format('{0}/{1}/{2}', variables('storageNameCleaned'), 'default', parameters('fileSystemNames')[copyIndex()])]",
+              "properties": {
+                "publicAccess": "None",
+                "metadata": {}
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]",
+                "[resourceId('Microsoft.Storage/storageAccounts/blobServices', variables('storageNameCleaned'), 'default')]"
+              ]
+            },
+            {
+              "type": "Microsoft.Network/privateEndpoints",
+              "apiVersion": "2020-11-01",
+              "name": "[variables('storagePrivateEndpointNameBlob')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "manualPrivateLinkServiceConnections": [],
+                "privateLinkServiceConnections": [
+                  {
+                    "name": "[variables('storagePrivateEndpointNameBlob')]",
+                    "properties": {
+                      "groupIds": [
+                        "blob"
+                      ],
+                      "privateLinkServiceId": "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]",
+                      "requestMessage": ""
+                    }
+                  }
+                ],
+                "subnet": {
+                  "id": "[parameters('subnetId')]"
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]"
+              ]
+            },
+            {
+              "condition": "[not(empty(parameters('privateDnsZoneIdBlob')))]",
+              "type": "Microsoft.Network/privateEndpoints/privateDnsZoneGroups",
+              "apiVersion": "2020-11-01",
+              "name": "[format('{0}/{1}', variables('storagePrivateEndpointNameBlob'), 'default')]",
+              "properties": {
+                "privateDnsZoneConfigs": [
+                  {
+                    "name": "[format('{0}-arecord', variables('storagePrivateEndpointNameBlob'))]",
+                    "properties": {
+                      "privateDnsZoneId": "[parameters('privateDnsZoneIdBlob')]"
+                    }
+                  }
+                ]
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Network/privateEndpoints', variables('storagePrivateEndpointNameBlob'))]"
+              ]
+            },
+            {
+              "type": "Microsoft.Network/privateEndpoints",
+              "apiVersion": "2020-11-01",
+              "name": "[variables('storagePrivateEndpointNameDfs')]",
+              "location": "[parameters('location')]",
+              "tags": "[parameters('tags')]",
+              "properties": {
+                "manualPrivateLinkServiceConnections": [],
+                "privateLinkServiceConnections": [
+                  {
+                    "name": "[variables('storagePrivateEndpointNameDfs')]",
+                    "properties": {
+                      "groupIds": [
+                        "dfs"
+                      ],
+                      "privateLinkServiceId": "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]",
+                      "requestMessage": ""
+                    }
+                  }
+                ],
+                "subnet": {
+                  "id": "[parameters('subnetId')]"
+                }
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]"
+              ]
+            },
+            {
+              "condition": "[not(empty(parameters('privateDnsZoneIdDfs')))]",
+              "type": "Microsoft.Network/privateEndpoints/privateDnsZoneGroups",
+              "apiVersion": "2020-11-01",
+              "name": "[format('{0}/{1}', variables('storagePrivateEndpointNameDfs'), 'default')]",
+              "properties": {
+                "privateDnsZoneConfigs": [
+                  {
+                    "name": "[format('{0}-arecord', variables('storagePrivateEndpointNameDfs'))]",
+                    "properties": {
+                      "privateDnsZoneId": "[parameters('privateDnsZoneIdDfs')]"
+                    }
+                  }
+                ]
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Network/privateEndpoints', variables('storagePrivateEndpointNameDfs'))]"
+              ]
+            }
+          ],
+          "outputs": {
+            "storageId": {
+              "type": "string",
+              "value": "[resourceId('Microsoft.Storage/storageAccounts', variables('storageNameCleaned'))]"
+            },
+            "storageFileSystemIds": {
+              "type": "array",
+              "copy": {
+                "count": "[length(parameters('fileSystemNames'))]",
+                "input": {
+                  "storageFileSystemId": "[resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', variables('storageNameCleaned'), 'default', parameters('fileSystemNames')[copyIndex()])]"
+                }
+              }
+            }
+          }
+        }
+      }
+    },
     {
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
@@ -307,7 +629,7 @@
             "value": ""
           },
           "synapseDefaultStorageAccountFileSystemId": {
-            "value": "[parameters('synapseDefaultStorageAccountFileSystemId')]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[0]]"
           }
         },
         "template": {
@@ -317,7 +639,7 @@
             "_generator": {
               "name": "bicep",
               "version": "0.4.613.9944",
-              "templateHash": "13804182594025419947"
+              "templateHash": "7918254326984888691"
             }
           },
           "parameters": {
@@ -468,6 +790,18 @@
                 "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
               ]
             },
+            {
+              "type": "Microsoft.Synapse/workspaces/firewallRules",
+              "apiVersion": "2021-06-01-preview",
+              "name": "[format('{0}/{1}', parameters('synapseName'), 'allowAll')]",
+              "properties": {
+                "startIpAddress": "0.0.0.0",
+                "endIpAddress": "255.255.255.255"
+              },
+              "dependsOn": [
+                "[resourceId('Microsoft.Synapse/workspaces', parameters('synapseName'))]"
+              ]
+            },
             {
               "type": "Microsoft.Network/privateEndpoints",
               "apiVersion": "2020-11-01",
@@ -621,15 +955,16 @@
             }
           }
         }
-      }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
     },
     {
       "condition": "[parameters('enableRoleAssignments')]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
-      "name": "synapse001RoleAssignmentStorage",
-      "subscriptionId": "[variables('synapseDefaultStorageAccountSubscriptionId')]",
-      "resourceGroup": "[variables('synapseDefaultStorageAccountResourceGroupName')]",
+      "name": "synapse001RoleAssignmentStorageFileSystem",
       "properties": {
         "expressionEvaluationOptions": {
           "scope": "inner"
@@ -637,7 +972,7 @@
         "mode": "Incremental",
         "parameters": {
           "storageAccountFileSystemId": {
-            "value": "[parameters('synapseDefaultStorageAccountFileSystemId')]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[0]]"
           },
           "synapseId": {
             "value": "[reference(resourceId('Microsoft.Resources/deployments', 'synapse001'), '2019-10-01').outputs.synapseId.value]"
@@ -650,7 +985,7 @@
             "_generator": {
               "name": "bicep",
               "version": "0.4.613.9944",
-              "templateHash": "16578949331457096017"
+              "templateHash": "11818523926389760461"
             }
           },
           "parameters": {
@@ -673,8 +1008,8 @@
             {
               "type": "Microsoft.Authorization/roleAssignments",
               "apiVersion": "2020-04-01-preview",
-              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[0], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[1], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[2])]",
-              "name": "[guid(uniqueString(resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[0], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[1], split(format('{0}/default/{1}', variables('storageAccountName'), variables('storageAccountFileSystemName')), '/')[2]), extensionResourceId(format('/subscriptions/{0}/resourceGroups/{1}', variables('synapseSubscriptionId'), variables('synapseResourceGroupName')), 'Microsoft.Synapse/workspaces', variables('synapseName'))))]",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName'))]",
+              "name": "[guid(uniqueString(resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName')), extensionResourceId(format('/subscriptions/{0}/resourceGroups/{1}', variables('synapseSubscriptionId'), variables('synapseResourceGroupName')), 'Microsoft.Synapse/workspaces', variables('synapseName'))))]",
               "properties": {
                 "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', 'ba92f5b4-2d11-453d-a403-e96b0029c9fe')]",
                 "principalId": "[reference(extensionResourceId(format('/subscriptions/{0}/resourceGroups/{1}', variables('synapseSubscriptionId'), variables('synapseResourceGroupName')), 'Microsoft.Synapse/workspaces', variables('synapseName')), '2021-03-01', 'full').identity.principalId]"
@@ -684,8 +1019,734 @@
         }
       },
       "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]",
         "[resourceId('Microsoft.Resources/deployments', 'synapse001')]"
       ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "powerPlatformRoleAssignmentStorage001",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('powerPlatformServicePrincipalObjectId')]"
+          },
+          "storageAccountId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageId.value]"
+          },
+          "roleId": {
+            "value": "c12c1c16-33a1-487b-954d-41c89c60f349"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "907671850504535586"
+            }
+          },
+          "parameters": {
+            "storageAccountId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountId'), '/')), 9), last(split(parameters('storageAccountId'), '/')), 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}', variables('storageAccountName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "powerPlatformRoleAssignmentStorageFileSystem001",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('powerPlatformServicePrincipalObjectId')]"
+          },
+          "storageAccountFileSystemId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[1]]"
+          },
+          "roleId": {
+            "value": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "13299270416843528420"
+            }
+          },
+          "parameters": {
+            "storageAccountFileSystemId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountFileSystemName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), last(split(parameters('storageAccountFileSystemId'), '/')), 'incorrectSegmentLength')]",
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), split(parameters('storageAccountFileSystemId'), '/')[8], 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorage001",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageId.value]"
+          },
+          "roleId": {
+            "value": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "907671850504535586"
+            }
+          },
+          "parameters": {
+            "storageAccountId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountId'), '/')), 9), last(split(parameters('storageAccountId'), '/')), 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}', variables('storageAccountName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorage002",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageId.value]"
+          },
+          "roleId": {
+            "value": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "907671850504535586"
+            }
+          },
+          "parameters": {
+            "storageAccountId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountId'), '/')), 9), last(split(parameters('storageAccountId'), '/')), 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}', variables('storageAccountName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorage003",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageId.value]"
+          },
+          "roleId": {
+            "value": "ba92f5b4-2d11-453d-a403-e96b0029c9fe"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "907671850504535586"
+            }
+          },
+          "parameters": {
+            "storageAccountId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountId'), '/')), 9), last(split(parameters('storageAccountId'), '/')), 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}', variables('storageAccountName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorage004",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageId.value]"
+          },
+          "roleId": {
+            "value": "17d1049b-9a84-46fb-8f53-869881c3d3ab"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "907671850504535586"
+            }
+          },
+          "parameters": {
+            "storageAccountId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountId'), '/')), 9), last(split(parameters('storageAccountId'), '/')), 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}', variables('storageAccountName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts', variables('storageAccountName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorageFileSystem001",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountFileSystemId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+          },
+          "roleId": {
+            "value": "17d1049b-9a84-46fb-8f53-869881c3d3ab"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "13299270416843528420"
+            }
+          },
+          "parameters": {
+            "storageAccountFileSystemId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountFileSystemName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), last(split(parameters('storageAccountFileSystemId'), '/')), 'incorrectSegmentLength')]",
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), split(parameters('storageAccountFileSystemId'), '/')[8], 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorageFileSystem002",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountFileSystemId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+          },
+          "roleId": {
+            "value": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "13299270416843528420"
+            }
+          },
+          "parameters": {
+            "storageAccountFileSystemId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountFileSystemName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), last(split(parameters('storageAccountFileSystemId'), '/')), 'incorrectSegmentLength')]",
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), split(parameters('storageAccountFileSystemId'), '/')[8], 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorageFileSystem003",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountFileSystemId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+          },
+          "roleId": {
+            "value": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "13299270416843528420"
+            }
+          },
+          "parameters": {
+            "storageAccountFileSystemId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountFileSystemName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), last(split(parameters('storageAccountFileSystemId'), '/')), 'incorrectSegmentLength')]",
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), split(parameters('storageAccountFileSystemId'), '/')[8], 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
+    },
+    {
+      "condition": "[parameters('enableRoleAssignments')]",
+      "type": "Microsoft.Resources/deployments",
+      "apiVersion": "2019-10-01",
+      "name": "dataverseRoleAssignmentStorageFileSystem004",
+      "properties": {
+        "expressionEvaluationOptions": {
+          "scope": "inner"
+        },
+        "mode": "Incremental",
+        "parameters": {
+          "servicePrincipalObjectId": {
+            "value": "[parameters('dataverseServicePrincipalObjectId')]"
+          },
+          "storageAccountFileSystemId": {
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+          },
+          "roleId": {
+            "value": "ba92f5b4-2d11-453d-a403-e96b0029c9fe"
+          }
+        },
+        "template": {
+          "$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
+          "contentVersion": "1.0.0.0",
+          "metadata": {
+            "_generator": {
+              "name": "bicep",
+              "version": "0.4.613.9944",
+              "templateHash": "13299270416843528420"
+            }
+          },
+          "parameters": {
+            "storageAccountFileSystemId": {
+              "type": "string"
+            },
+            "servicePrincipalObjectId": {
+              "type": "string"
+            },
+            "roleId": {
+              "type": "string",
+              "metadata": {
+                "Owner": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635",
+                "Storage Blob Data Owner": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b",
+                "Storage Blob Data Contributor": "ba92f5b4-2d11-453d-a403-e96b0029c9fe",
+                "Storage Account Contributor": "17d1049b-9a84-46fb-8f53-869881c3d3ab",
+                "Reader and Data Access": "c12c1c16-33a1-487b-954d-41c89c60f349"
+              }
+            }
+          },
+          "functions": [],
+          "variables": {
+            "storageAccountFileSystemName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), last(split(parameters('storageAccountFileSystemId'), '/')), 'incorrectSegmentLength')]",
+            "storageAccountName": "[if(greaterOrEquals(length(split(parameters('storageAccountFileSystemId'), '/')), 13), split(parameters('storageAccountFileSystemId'), '/')[8], 'incorrectSegmentLength')]"
+          },
+          "resources": [
+            {
+              "type": "Microsoft.Authorization/roleAssignments",
+              "apiVersion": "2020-04-01-preview",
+              "scope": "[format('Microsoft.Storage/storageAccounts/{0}/blobServices/{1}/containers/{2}', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName'))]",
+              "name": "[guid(uniqueString(parameters('roleId'), resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', variables('storageAccountName'), 'default', variables('storageAccountFileSystemName')), parameters('servicePrincipalObjectId')))]",
+              "properties": {
+                "roleDefinitionId": "[resourceId('Microsoft.Authorization/roleDefinitions', parameters('roleId'))]",
+                "principalId": "[parameters('servicePrincipalObjectId')]",
+                "principalType": "ServicePrincipal"
+              }
+            }
+          ]
+        }
+      },
+      "dependsOn": [
+        "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
+      ]
     }
   ]
 }
\ No newline at end of file
diff --git a/healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep b/healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep
new file mode 100644
index 00000000..2c7094a6
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep
@@ -0,0 +1,37 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT license.
+
+// The module contains a template to create a role assignment of a Service Principle to a storage file system.
+targetScope = 'resourceGroup'
+
+// Parameters
+param storageAccountId string
+param servicePrincipalObjectId string
+@metadata({
+  'Owner': '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'
+  'Storage Blob Data Owner': 'b7e6dc6d-f1e8-4753-8033-0f276bb0955b'
+  'Storage Blob Data Contributor': 'ba92f5b4-2d11-453d-a403-e96b0029c9fe'
+  'Storage Account Contributor': '17d1049b-9a84-46fb-8f53-869881c3d3ab'
+  'Reader and Data Access': 'c12c1c16-33a1-487b-954d-41c89c60f349'
+})
+param roleId string
+
+// Variables
+var storageAccountName = length(split(storageAccountId, '/')) >= 9 ? last(split(storageAccountId, '/')) : 'incorrectSegmentLength'
+
+// Resources
+resource storage 'Microsoft.Storage/storageAccounts@2021-04-01' existing = {
+  name: storageAccountName
+}
+
+resource synapseRoleAssignment 'Microsoft.Authorization/roleAssignments@2020-04-01-preview' = {
+  name: guid(uniqueString(roleId, storage.id, servicePrincipalObjectId))
+  scope: storage
+  properties: {
+    roleDefinitionId: resourceId('Microsoft.Authorization/roleDefinitions', roleId)
+    principalId: servicePrincipalObjectId
+    principalType: 'ServicePrincipal'
+  }
+}
+
+// Outputs
diff --git a/healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep b/healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep
new file mode 100644
index 00000000..169e420c
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep
@@ -0,0 +1,48 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT license.
+
+// The module contains a template to create a role assignment of a Service Principle to a storage file system.
+targetScope = 'resourceGroup'
+
+// Parameters
+param storageAccountFileSystemId string
+param servicePrincipalObjectId string
+@metadata({
+  'Owner': '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'
+  'Storage Blob Data Owner': 'b7e6dc6d-f1e8-4753-8033-0f276bb0955b'
+  'Storage Blob Data Contributor': 'ba92f5b4-2d11-453d-a403-e96b0029c9fe'
+  'Storage Account Contributor': '17d1049b-9a84-46fb-8f53-869881c3d3ab'
+  'Reader and Data Access': 'c12c1c16-33a1-487b-954d-41c89c60f349'
+})
+param roleId string
+
+// Variables
+var storageAccountFileSystemName = length(split(storageAccountFileSystemId, '/')) >= 13 ? last(split(storageAccountFileSystemId, '/')) : 'incorrectSegmentLength'
+var storageAccountName = length(split(storageAccountFileSystemId, '/')) >= 13 ? split(storageAccountFileSystemId, '/')[8] : 'incorrectSegmentLength'
+
+// Resources
+resource storage 'Microsoft.Storage/storageAccounts@2021-04-01' existing = {
+  name: storageAccountName
+}
+
+resource storageBlobServices 'Microsoft.Storage/storageAccounts/blobServices@2021-04-01' existing = {
+  name: 'default'
+  parent: storage
+}
+
+resource storageFileSystem 'Microsoft.Storage/storageAccounts/blobServices/containers@2021-02-01' existing = {
+  name: storageAccountFileSystemName
+  parent: storageBlobServices
+}
+
+resource synapseRoleAssignment 'Microsoft.Authorization/roleAssignments@2020-04-01-preview' = {
+  name: guid(uniqueString(roleId, storageFileSystem.id, servicePrincipalObjectId))
+  scope: storageFileSystem
+  properties: {
+    roleDefinitionId: resourceId('Microsoft.Authorization/roleDefinitions', roleId)
+    principalId: servicePrincipalObjectId
+    principalType: 'ServicePrincipal'
+  }
+}
+
+// Outputs
diff --git a/healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorage.bicep b/healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorageFileSystem.bicep
similarity index 73%
rename from healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorage.bicep
rename to healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorageFileSystem.bicep
index 09f73473..2447cd95 100644
--- a/healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorage.bicep
+++ b/healthcare/solutions/dataverseIntegration/modules/auxiliary/synapseRoleAssignmentStorageFileSystem.bicep
@@ -16,8 +16,18 @@ var synapseResourceGroupName = length(split(synapseId, '/')) >= 9 ? split(synaps
 var synapseName = length(split(synapseId, '/')) >= 9 ? last(split(synapseId, '/')) : 'incorrectSegmentLength'
 
 // Resources
-resource storageAccountFileSystem 'Microsoft.Storage/storageAccounts/blobServices/containers@2021-02-01' existing = {
-  name: '${storageAccountName}/default/${storageAccountFileSystemName}'
+resource storage 'Microsoft.Storage/storageAccounts@2021-04-01' existing = {
+  name: storageAccountName
+}
+
+resource storageBlobServices 'Microsoft.Storage/storageAccounts/blobServices@2021-04-01' existing = {
+  name: 'default'
+  parent: storage
+}
+
+resource storageFileSystem 'Microsoft.Storage/storageAccounts/blobServices/containers@2021-02-01' existing = {
+  name: storageAccountFileSystemName
+  parent: storageBlobServices
 }
 
 resource synapse 'Microsoft.Synapse/workspaces@2021-03-01' existing = {
@@ -26,8 +36,8 @@ resource synapse 'Microsoft.Synapse/workspaces@2021-03-01' existing = {
 }
 
 resource synapseRoleAssignment 'Microsoft.Authorization/roleAssignments@2020-04-01-preview' = {
-  name: guid(uniqueString(storageAccountFileSystem.id, synapse.id))
-  scope: storageAccountFileSystem
+  name: guid(uniqueString(storageFileSystem.id, synapse.id))
+  scope: storageFileSystem
   properties: {
     roleDefinitionId: resourceId('Microsoft.Authorization/roleDefinitions', 'ba92f5b4-2d11-453d-a403-e96b0029c9fe')
     principalId: synapse.identity.principalId
diff --git a/healthcare/solutions/dataverseIntegration/modules/services/storage.bicep b/healthcare/solutions/dataverseIntegration/modules/services/storage.bicep
new file mode 100644
index 00000000..4bf83fb5
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/modules/services/storage.bicep
@@ -0,0 +1,270 @@
+// Copyright (c) Microsoft Corporation.
+// Licensed under the MIT license.
+
+// This template is used to create a datalake.
+targetScope = 'resourceGroup'
+
+// Parameters
+param location string
+param tags object
+param subnetId string
+param storageName string
+param privateDnsZoneIdDfs string = ''
+param privateDnsZoneIdBlob string = ''
+param fileSystemNames array
+
+// Variables
+var storageNameCleaned = replace(storageName, '-', '')
+var storagePrivateEndpointNameBlob = '${storage.name}-blob-private-endpoint'
+var storagePrivateEndpointNameDfs = '${storage.name}-dfs-private-endpoint'
+
+// Resources
+resource storage 'Microsoft.Storage/storageAccounts@2021-02-01' = {
+  name: storageNameCleaned
+  location: location
+  tags: tags
+  identity: {
+    type: 'SystemAssigned'
+  }
+  sku: {
+    name: 'Standard_ZRS'
+  }
+  kind: 'StorageV2'
+  properties: {
+    accessTier: 'Hot'
+    allowBlobPublicAccess: false
+    allowSharedKeyAccess: true
+    encryption: {
+      keySource: 'Microsoft.Storage'
+      requireInfrastructureEncryption: false
+      services: {
+        blob: {
+          enabled: true
+          keyType: 'Account'
+        }
+        file: {
+          enabled: true
+          keyType: 'Account'
+        }
+        queue: {
+          enabled: true
+          keyType: 'Service'
+        }
+        table: {
+          enabled: true
+          keyType: 'Service'
+        }
+      }
+    }
+    isHnsEnabled: true
+    isNfsV3Enabled: false
+    largeFileSharesState: 'Disabled'
+    minimumTlsVersion: 'TLS1_2'
+    networkAcls: {
+      bypass: 'AzureServices'
+      defaultAction: 'Allow'
+      ipRules: []
+      virtualNetworkRules: []
+      resourceAccessRules: []
+    }
+    // routingPreference: {  // Not supported for thsi account
+    //   routingChoice: 'MicrosoftRouting'
+    //   publishInternetEndpoints: false
+    //   publishMicrosoftEndpoints: false
+    // }
+    supportsHttpsTrafficOnly: true
+  }
+}
+
+resource storageManagementPolicies 'Microsoft.Storage/storageAccounts/managementPolicies@2021-02-01' = {
+  parent: storage
+  name: 'default'
+  properties: {
+    policy: {
+      rules: [
+        {
+          enabled: true
+          name: 'default'
+          type: 'Lifecycle'
+          definition: {
+            actions: {
+              baseBlob: {
+                // enableAutoTierToHotFromCool: true  // Not available for HNS storage yet
+                tierToCool: {
+                  // daysAfterLastAccessTimeGreaterThan: 90  // Not available for HNS storage yet
+                  daysAfterModificationGreaterThan: 90
+                }
+                // tierToArchive: {  // Not available for HNS storage yet
+                //   // daysAfterLastAccessTimeGreaterThan: 365  // Not available for HNS storage yet
+                //   daysAfterModificationGreaterThan: 365
+                // }
+                // delete: {  // Uncomment, if you also want to delete assets after a certain timeframe
+                //   // daysAfterLastAccessTimeGreaterThan: 730  // Not available for HNS storage yet
+                //   daysAfterModificationGreaterThan: 730
+                // }
+              }
+              snapshot: {
+                tierToCool: {
+                  daysAfterCreationGreaterThan: 90
+                }
+                // tierToArchive: {  // Not available for HNS storage yet
+                //   daysAfterCreationGreaterThan: 365
+                // }
+                // delete: {  // Uncomment, if you also want to delete assets after a certain timeframe
+                //   daysAfterCreationGreaterThan: 730
+                // }
+              }
+              version: {
+                tierToCool: {
+                  daysAfterCreationGreaterThan: 90
+                }
+                // tierToArchive: {  // Not available for HNS storage yet
+                //   daysAfterCreationGreaterThan: 365
+                // }
+                // delete: {  // Uncomment, if you also want to delete assets after a certain timeframe
+                //   daysAfterCreationGreaterThan: 730
+                // }
+              }
+            }
+            filters: {
+              blobTypes: [
+                'blockBlob'
+              ]
+              prefixMatch: []
+            }
+          }
+        }
+      ]
+    }
+  }
+}
+
+resource storageBlobServices 'Microsoft.Storage/storageAccounts/blobServices@2021-02-01' = {
+  parent: storage
+  name: 'default'
+  properties: {
+    containerDeleteRetentionPolicy: {
+      enabled: true
+      days: 7
+    }
+    cors: {
+      corsRules: []
+    }
+    // automaticSnapshotPolicyEnabled: true  // Not available for HNS storage yet
+    // changeFeed: {
+    //   enabled: true
+    //   retentionInDays: 7
+    // }
+    // defaultServiceVersion: ''
+    // deleteRetentionPolicy: {
+    //   enabled: true
+    //   days: 7
+    // }
+    // isVersioningEnabled: true
+    // lastAccessTimeTrackingPolicy: {
+    //   name: 'AccessTimeTracking'
+    //   enable: true
+    //   blobType: [
+    //     'blockBlob'
+    //   ]
+    //   trackingGranularityInDays: 1
+    // }
+    // restorePolicy: {
+    //   enabled: true
+    //   days: 7
+    // }
+  }
+}
+
+resource storageFileSystems 'Microsoft.Storage/storageAccounts/blobServices/containers@2021-02-01' = [for fileSystemName in fileSystemNames: {
+  parent: storageBlobServices
+  name: fileSystemName
+  properties: {
+    publicAccess: 'None'
+    metadata: {}
+  }
+}]
+
+resource storagePrivateEndpointBlob 'Microsoft.Network/privateEndpoints@2020-11-01' = {
+  name: storagePrivateEndpointNameBlob
+  location: location
+  tags: tags
+  properties: {
+    manualPrivateLinkServiceConnections: []
+    privateLinkServiceConnections: [
+      {
+        name: storagePrivateEndpointNameBlob
+        properties: {
+          groupIds: [
+            'blob'
+          ]
+          privateLinkServiceId: storage.id
+          requestMessage: ''
+        }
+      }
+    ]
+    subnet: {
+      id: subnetId
+    }
+  }
+}
+
+resource storagePrivateEndpointBlobARecord 'Microsoft.Network/privateEndpoints/privateDnsZoneGroups@2020-11-01' = if (!empty(privateDnsZoneIdBlob)) {
+  parent: storagePrivateEndpointBlob
+  name: 'default'
+  properties: {
+    privateDnsZoneConfigs: [
+      {
+        name: '${storagePrivateEndpointBlob.name}-arecord'
+        properties: {
+          privateDnsZoneId: privateDnsZoneIdBlob
+        }
+      }
+    ]
+  }
+}
+
+resource storagePrivateEndpointDfs 'Microsoft.Network/privateEndpoints@2020-11-01' = {
+  name: storagePrivateEndpointNameDfs
+  location: location
+  tags: tags
+  properties: {
+    manualPrivateLinkServiceConnections: []
+    privateLinkServiceConnections: [
+      {
+        name: storagePrivateEndpointNameDfs
+        properties: {
+          groupIds: [
+            'dfs'
+          ]
+          privateLinkServiceId: storage.id
+          requestMessage: ''
+        }
+      }
+    ]
+    subnet: {
+      id: subnetId
+    }
+  }
+}
+
+resource storagePrivateEndpointDfsARecord 'Microsoft.Network/privateEndpoints/privateDnsZoneGroups@2020-11-01' = if (!empty(privateDnsZoneIdDfs)) {
+  parent: storagePrivateEndpointDfs
+  name: 'default'
+  properties: {
+    privateDnsZoneConfigs: [
+      {
+        name: '${storagePrivateEndpointDfs.name}-arecord'
+        properties: {
+          privateDnsZoneId: privateDnsZoneIdDfs
+        }
+      }
+    ]
+  }
+}
+
+// Outputs
+output storageId string = storage.id
+output storageFileSystemIds array = [for fileSystemName in fileSystemNames: {
+  storageFileSystemId: resourceId('Microsoft.Storage/storageAccounts/blobServices/containers', storageNameCleaned, 'default', fileSystemName)
+}]
diff --git a/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
index 5f806691..064e5f27 100644
--- a/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
+++ b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
@@ -118,6 +118,15 @@ resource synapseAadAdministrators 'Microsoft.Synapse/workspaces/administrators@2
   }
 }
 
+resource synapseFirewallRule001 'Microsoft.Synapse/workspaces/firewallRules@2021-06-01-preview' = {
+  parent: synapse
+  name: 'allowAll'
+  properties: {
+    startIpAddress: '0.0.0.0'
+    endIpAddress: '255.255.255.255'
+  }
+}
+
 resource synapsePrivateEndpointSql 'Microsoft.Network/privateEndpoints@2020-11-01' = {
   name: synapsePrivateEndpointNameSql
   location: location

From 019d25aa7af7aac3b98bbb53cc278b60f70df705 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Tue, 21 Sep 2021 19:09:55 +0200
Subject: [PATCH 05/22] * Added missing parameters * Removed old role
 assignments * Removed Container Creation in Script

---
 .../dataverseIntegration/SetupSynapseLink.ps1 | 83 ++-----------------
 1 file changed, 8 insertions(+), 75 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1 b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
index 4fe9a50f..8e7f5059 100644
--- a/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
+++ b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
@@ -8,6 +8,14 @@ param (
     [String]
     $PowerPlatformEnvironmentId,
 
+    [Parameter(Mandatory = $true)]
+    [String]
+    $OrganizationUrl,
+
+    [Parameter(Mandatory = $true)]
+    [String]
+    $OrganizationId,
+
     [Parameter(Mandatory = $true)]
     [String]
     $SynapseId,
@@ -57,81 +65,6 @@ New-AzSynapseRoleAssignment `
     -RoleDefinitionName "Workspace Admin" `  # More role details: "{"id": "6e4bf58a-b8e1-4cc3-bbf9-d73143322b78", "isBuiltIn": true, "name": "Workspace Admin"},"
     -ObjectId $exportDataLakeServicePrincipal.Id
 
-# Create File Systems on Data Lake
-Write-Output "Creating File Systems on Data Lake"
-$dataLakeSubscriptionId = $DataLakeId.Split("/")[2]
-$dataLakeName = $DataLakeId.Split("/")[-1]
-$powerPlatformContainerName = "power-platform-dataflows"
-$dataverseContainerName = "dataverse"
-
-Set-AzContext `
-    -Subscription $dataLakeSubscriptionId
-
-$context = New-AzStorageContext `
-    -StorageAccountName $dataLakeName
-
-New-AzureStorageContainer `
-    -Context $context `
-    -Name $powerPlatformContainerName
-
-New-AzureStorageContainer `
-    -Context $context `
-    -Name $dataverseContainerName
-
-#Add Role Assignments for 'Export to data lake' Enterprise Application
-Write-Output "Adding Role Assignments for 'Export to data lake' Enterprise Application"
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Owner" `
-    -Scope $DataLakeId
-
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Storage Blob Data Owner" `
-    -Scope $DataLakeId
-
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Storage Blob Data Contributor" `
-    -Scope $DataLakeId
-
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Storage Account Contributor" `
-    -Scope $DataLakeId
-
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Storage Account Contributor" `
-    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
-
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Owner" `
-    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
-
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Storage Blob Data Owner" `
-    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
-
-New-AzRoleAssignment `
-    -ObjectId $exportDataLakeServicePrincipal.Id `
-    -RoleDefinitionId "Storage Blob Data Contributor" `
-    -Scope "${DataLakeId}/blobServices/default/containers/${dataverseContainerName}"
-
-# Add Role Assignments for 'Microsoft Power Query' Enterprise Application
-Write-Output "Adding Role Assignments for 'Microsoft Power Query' Enterprise Application"
-New-AzRoleAssignment `
-    -ObjectId $powerPlatformServicePrincipal.Id `
-    -RoleDefinitionId "Reader and Data Access" `
-    -Scope $DataLakeId
-
-New-AzRoleAssignment `
-    -ObjectId $powerPlatformServicePrincipal.Id `
-    -RoleDefinitionId "Storage Blob Data Owner" `
-    -Scope "${DataLakeId}/blobServices/default/containers/${powerPlatformContainerName}"
-
 # Update Organization Details
 Write-Output "Creating New Data Lake Details"
 Update-OrganizationDetails `

From 2e41c7f5b63db7ccb906a124369369c97b0234e0 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Tue, 21 Sep 2021 21:05:17 +0200
Subject: [PATCH 06/22] update linting

---
 .github/linters/.powershell-psscriptanalyzer.psd1 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/linters/.powershell-psscriptanalyzer.psd1 b/.github/linters/.powershell-psscriptanalyzer.psd1
index 7edeaab6..8535acbd 100644
--- a/.github/linters/.powershell-psscriptanalyzer.psd1
+++ b/.github/linters/.powershell-psscriptanalyzer.psd1
@@ -14,6 +14,7 @@
        'PSAvoidUsingPlainTextForPassword'
        'PSAvoidUsingConvertToSecureStringWithPlainText'
        'PSPossibleIncorrectUsageOfAssignmentOperator'
+       'PSUseSingularNouns'
     )
     #IncludeRules = @( )
 }

From e8686f9c282251d2dbc909255bf3e9592c7535ba Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Tue, 21 Sep 2021 21:26:36 +0200
Subject: [PATCH 07/22] removing unnecessary parameter

---
 healthcare/solutions/dataverseIntegration/params.json | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/params.json b/healthcare/solutions/dataverseIntegration/params.json
index e7c00940..d9334d0a 100644
--- a/healthcare/solutions/dataverseIntegration/params.json
+++ b/healthcare/solutions/dataverseIntegration/params.json
@@ -17,9 +17,6 @@
         "administratorPassword": {
             "value": "<your-secure-password>"
         },
-        "synapseDefaultStorageAccountFileSystemId": {
-            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Storage/storageAccounts/mydversedevstorage/blobServices/default/containers/synapse"
-        },
         "purviewId": {
             "value": ""
         },

From 219f04bfbc1165a539003c61acf0e7eb20d39575 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Tue, 21 Sep 2021 23:59:15 +0200
Subject: [PATCH 08/22] Fixed bugs

---
 .../solutions/dataverseIntegration/main.bicep | 40 +++++++++---------
 .../solutions/dataverseIntegration/main.json  | 42 +++++++++----------
 .../dataverseIntegration/params.json          |  6 +++
 3 files changed, 47 insertions(+), 41 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/main.bicep b/healthcare/solutions/dataverseIntegration/main.bicep
index 4bab4947..3a178d40 100644
--- a/healthcare/solutions/dataverseIntegration/main.bicep
+++ b/healthcare/solutions/dataverseIntegration/main.bicep
@@ -79,9 +79,9 @@ module storage001 'modules/services/storage.bicep' = {
     location: location
     tags: tagsJoined
     fileSystemNames: [
-      'Synapse'
-      'PowerPlatformDataFlows'
-      'Dataverse'
+      'synapse'
+      'power-platform-dataflows'
+      'dataverse'
     ]
     storageName: storage001Name
     subnetId: subnetId
@@ -104,7 +104,7 @@ module synapse001 'modules/services/synapse.bicep' = {
     privateDnsZoneIdSynapseSql: privateDnsZoneIdSynapseSql
     purviewId: purviewId
     synapseComputeSubnetId: ''
-    synapseDefaultStorageAccountFileSystemId: storage001.outputs.storageFileSystemIds[0]
+    synapseDefaultStorageAccountFileSystemId: storage001.outputs.storageFileSystemIds[0].storageFileSystemId
   }
 }
 
@@ -112,12 +112,12 @@ module synapse001RoleAssignmentStorageFileSystem 'modules/auxiliary/synapseRoleA
   name: 'synapse001RoleAssignmentStorageFileSystem'
   scope: resourceGroup()
   params: {
-    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[0]
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[0].storageFileSystemId
     synapseId: synapse001.outputs.synapseId
   }
 }
 
-module powerPlatformRoleAssignmentStorage001 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+module powerPlatformRoleAssignmentStorage001 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments && !empty(powerPlatformServicePrincipalObjectId)) {
   name: 'powerPlatformRoleAssignmentStorage001'
   scope: resourceGroup()
   params: {
@@ -127,17 +127,17 @@ module powerPlatformRoleAssignmentStorage001 'modules/auxiliary/servicePrincipal
   }
 }
 
-module powerPlatformRoleAssignmentStorageFileSystem001 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+module powerPlatformRoleAssignmentStorageFileSystem001 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments && !empty(powerPlatformServicePrincipalObjectId)) {
   name: 'powerPlatformRoleAssignmentStorageFileSystem001'
   scope: resourceGroup()
   params: {
     servicePrincipalObjectId: powerPlatformServicePrincipalObjectId
-    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[1]
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[1].storageFileSystemId
     roleId: 'b7e6dc6d-f1e8-4753-8033-0f276bb0955b'  // Storage Blob Data Owner
   }
 }
 
-module dataverseRoleAssignmentStorage001 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorage001 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorage001'
   scope: resourceGroup()
   params: {
@@ -147,7 +147,7 @@ module dataverseRoleAssignmentStorage001 'modules/auxiliary/servicePrincipalRole
   }
 }
 
-module dataverseRoleAssignmentStorage002 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorage002 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorage002'
   scope: resourceGroup()
   params: {
@@ -157,7 +157,7 @@ module dataverseRoleAssignmentStorage002 'modules/auxiliary/servicePrincipalRole
   }
 }
 
-module dataverseRoleAssignmentStorage003 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorage003 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorage003'
   scope: resourceGroup()
   params: {
@@ -167,7 +167,7 @@ module dataverseRoleAssignmentStorage003 'modules/auxiliary/servicePrincipalRole
   }
 }
 
-module dataverseRoleAssignmentStorage004 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorage004 'modules/auxiliary/servicePrincipalRoleAssignmentStorage.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorage004'
   scope: resourceGroup()
   params: {
@@ -177,42 +177,42 @@ module dataverseRoleAssignmentStorage004 'modules/auxiliary/servicePrincipalRole
   }
 }
 
-module dataverseRoleAssignmentStorageFileSystem001 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorageFileSystem001 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorageFileSystem001'
   scope: resourceGroup()
   params: {
     servicePrincipalObjectId: dataverseServicePrincipalObjectId
-    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2].storageFileSystemId
     roleId: '17d1049b-9a84-46fb-8f53-869881c3d3ab'  // Storage Account Contributor
   }
 }
 
-module dataverseRoleAssignmentStorageFileSystem002 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorageFileSystem002 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorageFileSystem002'
   scope: resourceGroup()
   params: {
     servicePrincipalObjectId: dataverseServicePrincipalObjectId
-    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2].storageFileSystemId
     roleId: '8e3af657-a8ff-443c-a75c-2fe8c4bcb635'  // Owner
   }
 }
 
-module dataverseRoleAssignmentStorageFileSystem003 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorageFileSystem003 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorageFileSystem003'
   scope: resourceGroup()
   params: {
     servicePrincipalObjectId: dataverseServicePrincipalObjectId
-    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2].storageFileSystemId
     roleId: 'b7e6dc6d-f1e8-4753-8033-0f276bb0955b'  // Storage Blob Data Owner
   }
 }
 
-module dataverseRoleAssignmentStorageFileSystem004 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments) {
+module dataverseRoleAssignmentStorageFileSystem004 'modules/auxiliary/servicePrincipalRoleAssignmentStorageFileSystem.bicep' = if(enableRoleAssignments && !empty(dataverseServicePrincipalObjectId)) {
   name: 'dataverseRoleAssignmentStorageFileSystem004'
   scope: resourceGroup()
   params: {
     servicePrincipalObjectId: dataverseServicePrincipalObjectId
-    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2]
+    storageAccountFileSystemId: storage001.outputs.storageFileSystemIds[2].storageFileSystemId
     roleId: 'ba92f5b4-2d11-453d-a403-e96b0029c9fe'  // Storage Blob Data Contributor
   }
 }
diff --git a/healthcare/solutions/dataverseIntegration/main.json b/healthcare/solutions/dataverseIntegration/main.json
index 4846f41c..6b111de1 100644
--- a/healthcare/solutions/dataverseIntegration/main.json
+++ b/healthcare/solutions/dataverseIntegration/main.json
@@ -5,7 +5,7 @@
     "_generator": {
       "name": "bicep",
       "version": "0.4.613.9944",
-      "templateHash": "18109601729406099985"
+      "templateHash": "4494666277324552804"
     }
   },
   "parameters": {
@@ -284,9 +284,9 @@
           },
           "fileSystemNames": {
             "value": [
-              "Synapse",
-              "PowerPlatformDataFlows",
-              "Dataverse"
+              "synapse",
+              "power-platform-dataflows",
+              "dataverse"
             ]
           },
           "storageName": {
@@ -629,7 +629,7 @@
             "value": ""
           },
           "synapseDefaultStorageAccountFileSystemId": {
-            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[0]]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[0].storageFileSystemId]"
           }
         },
         "template": {
@@ -972,7 +972,7 @@
         "mode": "Incremental",
         "parameters": {
           "storageAccountFileSystemId": {
-            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[0]]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[0].storageFileSystemId]"
           },
           "synapseId": {
             "value": "[reference(resourceId('Microsoft.Resources/deployments', 'synapse001'), '2019-10-01').outputs.synapseId.value]"
@@ -1024,7 +1024,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('powerPlatformServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "powerPlatformRoleAssignmentStorage001",
@@ -1096,7 +1096,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('powerPlatformServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "powerPlatformRoleAssignmentStorageFileSystem001",
@@ -1110,7 +1110,7 @@
             "value": "[parameters('powerPlatformServicePrincipalObjectId')]"
           },
           "storageAccountFileSystemId": {
-            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[1]]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[1].storageFileSystemId]"
           },
           "roleId": {
             "value": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b"
@@ -1169,7 +1169,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorage001",
@@ -1241,7 +1241,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorage002",
@@ -1313,7 +1313,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorage003",
@@ -1385,7 +1385,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorage004",
@@ -1457,7 +1457,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorageFileSystem001",
@@ -1471,7 +1471,7 @@
             "value": "[parameters('dataverseServicePrincipalObjectId')]"
           },
           "storageAccountFileSystemId": {
-            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2].storageFileSystemId]"
           },
           "roleId": {
             "value": "17d1049b-9a84-46fb-8f53-869881c3d3ab"
@@ -1530,7 +1530,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorageFileSystem002",
@@ -1544,7 +1544,7 @@
             "value": "[parameters('dataverseServicePrincipalObjectId')]"
           },
           "storageAccountFileSystemId": {
-            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2].storageFileSystemId]"
           },
           "roleId": {
             "value": "8e3af657-a8ff-443c-a75c-2fe8c4bcb635"
@@ -1603,7 +1603,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorageFileSystem003",
@@ -1617,7 +1617,7 @@
             "value": "[parameters('dataverseServicePrincipalObjectId')]"
           },
           "storageAccountFileSystemId": {
-            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2].storageFileSystemId]"
           },
           "roleId": {
             "value": "b7e6dc6d-f1e8-4753-8033-0f276bb0955b"
@@ -1676,7 +1676,7 @@
       ]
     },
     {
-      "condition": "[parameters('enableRoleAssignments')]",
+      "condition": "[and(parameters('enableRoleAssignments'), not(empty(parameters('dataverseServicePrincipalObjectId'))))]",
       "type": "Microsoft.Resources/deployments",
       "apiVersion": "2019-10-01",
       "name": "dataverseRoleAssignmentStorageFileSystem004",
@@ -1690,7 +1690,7 @@
             "value": "[parameters('dataverseServicePrincipalObjectId')]"
           },
           "storageAccountFileSystemId": {
-            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2]]"
+            "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2].storageFileSystemId]"
           },
           "roleId": {
             "value": "ba92f5b4-2d11-453d-a403-e96b0029c9fe"
diff --git a/healthcare/solutions/dataverseIntegration/params.json b/healthcare/solutions/dataverseIntegration/params.json
index d9334d0a..b2051fa2 100644
--- a/healthcare/solutions/dataverseIntegration/params.json
+++ b/healthcare/solutions/dataverseIntegration/params.json
@@ -17,6 +17,12 @@
         "administratorPassword": {
             "value": "<your-secure-password>"
         },
+        "powerPlatformServicePrincipalObjectId": {
+            "value": ""
+        },
+        "dataverseServicePrincipalObjectId": {
+            "value": ""
+        },
         "purviewId": {
             "value": ""
         },

From 2b3bb858ba8384cb919b010964c38bbe6471ed95 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Wed, 22 Sep 2021 14:11:58 +0200
Subject: [PATCH 09/22] fix spark pool bug

---
 .../solutions/dataverseIntegration/main.json       | 14 ++++++++------
 .../modules/services/synapse.bicep                 |  6 ++++--
 2 files changed, 12 insertions(+), 8 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/main.json b/healthcare/solutions/dataverseIntegration/main.json
index 6b111de1..702e90b5 100644
--- a/healthcare/solutions/dataverseIntegration/main.json
+++ b/healthcare/solutions/dataverseIntegration/main.json
@@ -5,7 +5,7 @@
     "_generator": {
       "name": "bicep",
       "version": "0.4.613.9944",
-      "templateHash": "4494666277324552804"
+      "templateHash": "8829416978934135310"
     }
   },
   "parameters": {
@@ -639,7 +639,7 @@
             "_generator": {
               "name": "bicep",
               "version": "0.4.613.9944",
-              "templateHash": "7918254326984888691"
+              "templateHash": "13182141804118079952"
             }
           },
           "parameters": {
@@ -733,7 +733,7 @@
             },
             {
               "type": "Microsoft.Synapse/workspaces/bigDataPools",
-              "apiVersion": "2021-03-01",
+              "apiVersion": "2021-05-01",
               "name": "[format('{0}/{1}', parameters('synapseName'), 'bigDataPool001')]",
               "location": "[parameters('location')]",
               "tags": "[parameters('tags')]",
@@ -744,13 +744,15 @@
                 },
                 "autoScale": {
                   "enabled": true,
-                  "maxNodeCount": 10,
-                  "minNodeCount": 3
+                  "minNodeCount": 3,
+                  "maxNodeCount": 10
                 },
                 "customLibraries": [],
                 "defaultSparkLogFolder": "logs/",
                 "dynamicExecutorAllocation": {
-                  "enabled": true
+                  "enabled": true,
+                  "minExecutors": 1,
+                  "maxExecutors": 9
                 },
                 "nodeSize": "Small",
                 "nodeSizeFamily": "MemoryOptimized",
diff --git a/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
index 064e5f27..cf64fd83 100644
--- a/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
+++ b/healthcare/solutions/dataverseIntegration/modules/services/synapse.bicep
@@ -59,7 +59,7 @@ resource synapse 'Microsoft.Synapse/workspaces@2021-03-01' = {
   }
 }
 
-resource synapseBigDataPool001 'Microsoft.Synapse/workspaces/bigDataPools@2021-03-01' = {
+resource synapseBigDataPool001 'Microsoft.Synapse/workspaces/bigDataPools@2021-05-01' = {
   parent: synapse
   name: 'bigDataPool001'
   location: location
@@ -71,14 +71,16 @@ resource synapseBigDataPool001 'Microsoft.Synapse/workspaces/bigDataPools@2021-0
     }
     autoScale: {
       enabled: true
-      maxNodeCount: 10
       minNodeCount: 3
+      maxNodeCount: 10
     }
     // cacheSize: 100  // Uncomment to set a specific cache size
     customLibraries: []
     defaultSparkLogFolder: 'logs/'
     dynamicExecutorAllocation: {
       enabled: true
+      minExecutors: 1
+      maxExecutors: 9
     }
     // isComputeIsolationEnabled: true  // Uncomment to enable compute isolation (only available in selective regions)
     // libraryRequirements: {  // Uncomment to install pip dependencies on the Spark cluster

From 13e2c5c57f062f725dff5219bf325d49e4b69b54 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Wed, 22 Sep 2021 14:46:02 +0200
Subject: [PATCH 10/22] add outputs for seamless deployment across clouds

---
 .../solutions/dataverseIntegration/main.bicep      |  2 ++
 .../solutions/dataverseIntegration/main.json       | 14 ++++++++++++--
 2 files changed, 14 insertions(+), 2 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/main.bicep b/healthcare/solutions/dataverseIntegration/main.bicep
index 3a178d40..e80cc8d2 100644
--- a/healthcare/solutions/dataverseIntegration/main.bicep
+++ b/healthcare/solutions/dataverseIntegration/main.bicep
@@ -218,3 +218,5 @@ module dataverseRoleAssignmentStorageFileSystem004 'modules/auxiliary/servicePri
 }
 
 // Outputs
+output synapseId string = synapse001.outputs.synapseId
+output dataverseDataLakeFileSystemId string = storage001.outputs.storageFileSystemIds[2].storageFileSystemId
diff --git a/healthcare/solutions/dataverseIntegration/main.json b/healthcare/solutions/dataverseIntegration/main.json
index 702e90b5..319250d6 100644
--- a/healthcare/solutions/dataverseIntegration/main.json
+++ b/healthcare/solutions/dataverseIntegration/main.json
@@ -5,7 +5,7 @@
     "_generator": {
       "name": "bicep",
       "version": "0.4.613.9944",
-      "templateHash": "8829416978934135310"
+      "templateHash": "15370992525510895090"
     }
   },
   "parameters": {
@@ -1750,5 +1750,15 @@
         "[resourceId('Microsoft.Resources/deployments', 'storage001')]"
       ]
     }
-  ]
+  ],
+  "outputs": {
+    "synapseId": {
+      "type": "string",
+      "value": "[reference(resourceId('Microsoft.Resources/deployments', 'synapse001'), '2019-10-01').outputs.synapseId.value]"
+    },
+    "dataverseDataLakeFileSystemId": {
+      "type": "string",
+      "value": "[reference(resourceId('Microsoft.Resources/deployments', 'storage001'), '2019-10-01').outputs.storageFileSystemIds.value[2].storageFileSystemId]"
+    }
+  }
 }
\ No newline at end of file

From 9de0afa6678291dce7188d8ccbc498094bab8a58 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Thu, 23 Sep 2021 14:19:57 +0200
Subject: [PATCH 11/22] * Added additional logging for troubleshooting * Added
 function for creating file systems * fixed bugs in workflow * Generate Access
 Token with correct scope * Added some sleep in between actions because of
 backend processes

---
 .../solutions/dataverseIntegration/Helper.ps1 | 179 +++++++++++++++---
 .../dataverseIntegration/SetupSynapseLink.ps1 |  31 ++-
 2 files changed, 178 insertions(+), 32 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/Helper.ps1 b/healthcare/solutions/dataverseIntegration/Helper.ps1
index 33ff5079..3bb77495 100644
--- a/healthcare/solutions/dataverseIntegration/Helper.ps1
+++ b/healthcare/solutions/dataverseIntegration/Helper.ps1
@@ -32,29 +32,126 @@ function Update-OrganizationDetails {
         [Parameter(Mandatory = $true)]
         [ValidateNotNullOrEmpty()]
         [String]
-        $OrganizationId
+        $OrganizationId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $AccessToken
     )
     # Set Graph API URI
     Write-Verbose "Setting Power Platform URI"
     $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/updateorganizationdetails?organizationUrl=${OrganizationUrl}&organizationId=${OrganizationId}"
+    Write-Verbose "Uri: '${powerPlatformUri}'"
+
+    # Set header for REST call
+    Write-Verbose "Setting header for REST call"
+    $headers = @{
+        "Content-Type"  = "application/json"
+        "Authorization" = "Bearer ${AccessToken}"
+    }
+
+    # Define parameters for REST method
+    Write-Verbose "Defining parameters for pscore method"
+    $parameters = @{
+        "Uri"         = $powerPlatformUri
+        "Method"      = "Post"
+        "Headers"     = $headers
+        "ContentType" = "application/json"
+    }
+
+    # Invoke REST API
+    Write-Verbose "Invoking REST API"
+    try {
+        $response = Invoke-RestMethod @parameters
+        Write-Verbose "Response: ${response}"
+    }
+    catch {
+        if($_.ErrorDetails.Message) {
+            Write-Error $_.ErrorDetails.Message;
+        } else {
+            Write-Error "REST API call failed"
+        }
+        throw "REST API call failed"
+    }
+    return $response
+}
+
+
+function New-FileSystem {
+    <#
+    .SYNOPSIS
+        Creates a FileSystem for the Power Platform environment.
+    .DESCRIPTION
+        New-FileSystem creates a Data Lake file system for the Power Platform environment.
+    .PARAMETER PowerPlatformEnvironmentId
+        Function expects the power platform environment id in which the Data Lake configuration
+        will be created.
+    .PARAMETER DataLakeFileSystemId
+        Function expects the data lake file system resource id which should be
+        connected to the power platform.
+    .EXAMPLE
+        New-FileSystem -PowerPlatformEnvironmentId "<your-power-platform-environment-id>" -DataLakeFileSystemId "<your-datalake-filesystem-id>"
+    .NOTES
+        Author:  Marvin Buss
+        GitHub:  @marvinbuss
+    #>
+    [CmdletBinding()]
+    param (
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $PowerPlatformEnvironmentId,
 
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $DataLakeFileSystemId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $AccessToken
+    )
+    # Set Graph API URI
+    Write-Verbose "Setting Power Platform URI"
+    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/createfilesystem"
+    Write-Verbose "Uri: '${powerPlatformUri}'"
+    
     # Define parameters based on input parameters
     Write-Verbose "Defining parameters based on input parameters"
-    $azureAccessToken = (Get-AzAccessToken).Token
+    $tenantId = (Get-AzTenant).Id
+    $dataLakeSubscriptionId = $DataLakeFileSystemId.Split("/")[2]
+    $dataLakeResourceGroupName = $DataLakeFileSystemId.Split("/")[4]
+    $dataLakeName = $DataLakeFileSystemId.Split("/")[8]
+    $dataLakeFileSystemName = $DataLakeFileSystemId.Split("/")[-1]
 
     # Set header for REST call
     Write-Verbose "Setting header for REST call"
     $headers = @{
         "Content-Type"  = "application/json"
-        "Authorization" = "Bearer ${azureAccessToken}"
+        "Authorization" = "Bearer ${AccessToken}"
     }
 
+    # Set body for REST call
+    Write-Verbose "Setting body for REST call"
+    $body = @{
+        "TenantId"             = $tenantId
+        "SubscriptionId"       = $dataLakeSubscriptionId
+        "ResourceGroupName"    = $dataLakeResourceGroupName
+        "StorageAccountName"   = $dataLakeName
+        "FileSystemEndpoint"   = "https://${dataLakeName}.dfs.core.windows.net/"
+        "FileSystemName"       = $dataLakeFileSystemName
+    } | ConvertTo-Json
+    Write-Verbose "Body: '${body}'"
+
     # Define parameters for REST method
     Write-Verbose "Defining parameters for pscore method"
     $parameters = @{
         "Uri"         = $powerPlatformUri
         "Method"      = "Post"
         "Headers"     = $headers
+        "Body"        = $body
         "ContentType" = "application/json"
     }
 
@@ -65,7 +162,11 @@ function Update-OrganizationDetails {
         Write-Verbose "Response: ${response}"
     }
     catch {
-        Write-Error "REST API call failed"
+        if($_.ErrorDetails.Message) {
+            Write-Error $_.ErrorDetails.Message;
+        } else {
+            Write-Error "REST API call failed"
+        }
         throw "REST API call failed"
     }
     return $response
@@ -105,20 +206,25 @@ function New-LakeDetails {
         [Parameter(Mandatory = $true)]
         [ValidateNotNullOrEmpty()]
         [String]
-        $SynapseId
+        $SynapseId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $AccessToken
     )
     # Set Graph API URI
     Write-Verbose "Setting Power Platform URI"
     $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakedetails"
+    Write-Verbose "Uri: '${powerPlatformUri}'"
 
     # Define parameters based on input parameters
     Write-Verbose "Defining parameters based on input parameters"
-    $azureAccessToken = (Get-AzAccessToken).Token
     $tenantId = (Get-AzTenant).Id
-    $dataLakeSubscriptionId = $DataLakeId.Split("/")[2]
-    $dataLakeResourceGroupName = $DataLakeId.Split("/")[4]
-    $dataLakeName = $DataLakeId.Split("/")[8]
-    $dataLakeFileSystemName = $DataLakeId.Split("/")[-1]
+    $dataLakeSubscriptionId = $DataLakeFileSystemId.Split("/")[2]
+    $dataLakeResourceGroupName = $DataLakeFileSystemId.Split("/")[4]
+    $dataLakeName = $DataLakeFileSystemId.Split("/")[8]
+    $dataLakeFileSystemName = $DataLakeFileSystemId.Split("/")[-1]
 
     $synapseSubscriptionId = $SynapseId.Split("/")[2]
     $synapseResourceGroupName = $SynapseId.Split("/")[4]
@@ -133,7 +239,7 @@ function New-LakeDetails {
     Write-Verbose "Setting header for REST call"
     $headers = @{
         "Content-Type"  = "application/json"
-        "Authorization" = "Bearer ${azureAccessToken}"
+        "Authorization" = "Bearer ${AccessToken}"
     }
 
     # Set body for REST call
@@ -153,6 +259,7 @@ function New-LakeDetails {
         "WorkspaceDevEndpoint" = "https://${synapseName}.dev.azuresynapse.net"
         "IsDefault"            = $true
     } | ConvertTo-Json
+    Write-Verbose "Body: '${body}'"
 
     # Define parameters for REST method
     Write-Verbose "Defining parameters for pscore method"
@@ -171,7 +278,11 @@ function New-LakeDetails {
         Write-Verbose "Response: ${response}"
     }
     catch {
-        Write-Error "REST API call failed"
+        if($_.ErrorDetails.Message) {
+            Write-Error $_.ErrorDetails.Message;
+        } else {
+            Write-Error "REST API call failed"
+        }
         throw "REST API call failed"
     }
     return $response
@@ -220,22 +331,27 @@ function New-LakeProfile {
         [Parameter(Mandatory = $true)]
         [ValidateNotNullOrEmpty()]
         [Array]
-        $Entities  # Sample Input: [{"Type": "msdyn_actual", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false, "Settings": {}}, {"Type": "adx_ad", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false, "Settings": {}}]
+        $Entities,  # Sample Input: [{"Type": "msdyn_actual", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false}, {"Type": "adx_ad", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false}]
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $AccessToken
     )
     # Set Graph API URI
     Write-Verbose "Setting Power Platform URI"
-    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakedetails/${LakeDetailsId}"
+    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakeprofile/${LakeDetailsId}"
+    Write-Verbose "Uri: '${powerPlatformUri}'"
 
     # Define parameters based on input parameters
     Write-Verbose "Defining parameters based on input parameters"
-    $azureAccessToken = (Get-AzAccessToken).Token
-    $dataLakeName = $DataLakeId.Split("/")[8]
+    $dataLakeName = $DataLakeFileSystemId.Split("/")[8]
 
     # Set header for REST call
     Write-Verbose "Setting header for REST call"
     $headers = @{
         "Content-Type"  = "application/json"
-        "Authorization" = "Bearer ${azureAccessToken}"
+        "Authorization" = "Bearer ${AccessToken}"
     }
 
     # Set body for REST call
@@ -252,6 +368,7 @@ function New-LakeProfile {
         "SchedulerIntervalInMinutes" = 60
         "WriteDeleteLog"             = $true
     } | ConvertTo-Json
+    Write-Verbose "Body: '${body}'"
 
     # Define parameters for REST method
     Write-Verbose "Defining parameters for pscore method"
@@ -270,7 +387,11 @@ function New-LakeProfile {
         Write-Verbose "Response: ${response}"
     }
     catch {
-        Write-Error "REST API call failed"
+        if($_.ErrorDetails.Message) {
+            Write-Error $_.ErrorDetails.Message;
+        } else {
+            Write-Error "REST API call failed"
+        }
         throw "REST API call failed"
     }
     return $response
@@ -304,21 +425,23 @@ function New-LakeProfileActivation {
         [Parameter(Mandatory = $true)]
         [ValidateNotNullOrEmpty()]
         [String]
-        $LakeDetailsId
+        $LakeDetailsId,
+
+        [Parameter(Mandatory = $true)]
+        [ValidateNotNullOrEmpty()]
+        [String]
+        $AccessToken
     )
     # Set Graph API URI
     Write-Verbose "Setting Power Platform URI"
-    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakedetails/${LakeDetailsId}/activate"
-
-    # Define parameters based on input parameters
-    Write-Verbose "Defining parameters based on input parameters"
-    $azureAccessToken = (Get-AzAccessToken).Token
+    $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/lakeprofile/${LakeDetailsId}/activate"
+    Write-Verbose "Uri: '${powerPlatformUri}'"
 
     # Set header for REST call
     Write-Verbose "Setting header for REST call"
     $headers = @{
         "Content-Type"  = "application/json"
-        "Authorization" = "Bearer ${azureAccessToken}"
+        "Authorization" = "Bearer ${AccessToken}"
     }
 
     # Define parameters for REST method
@@ -337,7 +460,11 @@ function New-LakeProfileActivation {
         Write-Verbose "Response: ${response}"
     }
     catch {
-        Write-Error "REST API call failed"
+        if($_.ErrorDetails.Message) {
+            Write-Error $_.ErrorDetails.Message;
+        } else {
+            Write-Error "REST API call failed"
+        }
         throw "REST API call failed"
     }
     return $response
diff --git a/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1 b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
index 8e7f5059..364f9b09 100644
--- a/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
+++ b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
@@ -60,38 +60,57 @@ $synapseName = $SynapseId.Split("/")[-1]
 Set-AzContext `
     -Subscription $synapseSubscriptionId
 
+# More role details: "{"id": "6e4bf58a-b8e1-4cc3-bbf9-d73143322b78", "isBuiltIn": true, "name": "Synapse Administrator"},"
 New-AzSynapseRoleAssignment `
     -WorkspaceName $synapseName `
-    -RoleDefinitionName "Workspace Admin" `  # More role details: "{"id": "6e4bf58a-b8e1-4cc3-bbf9-d73143322b78", "isBuiltIn": true, "name": "Workspace Admin"},"
+    -RoleDefinitionName "Synapse Administrator" `
     -ObjectId $exportDataLakeServicePrincipal.Id
 
+# Get Power App Access Token
+Write-Output "Getting Power App Access Token"
+$powerAppAccessToken = (Get-AzAccessToken -ResourceUrl "${ExportDataLakeApplicationId}").Token
+
 # Update Organization Details
-Write-Output "Creating New Data Lake Details"
+Write-Output "Updating Organization Details"
 Update-OrganizationDetails `
     -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
     -OrganizationUrl $OrganizationUrl `
-    -OrganizationId $OrganizationId
+    -OrganizationId $OrganizationId `
+    -AccessToken $powerAppAccessToken
 
 # Create New Data Lake Details
 Write-Output "Creating New Data Lake Details"
 $datalakeDetails = New-LakeDetails `
     -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
     -DataLakeFileSystemId $DataverseDataLakeFileSystemId `
-    -SynapseId $SynapseId
+    -SynapseId $SynapseId `
+    -AccessToken $powerAppAccessToken
 Write-Output "New Data Lake Details: '${datalakeDetails}'"
 
+# Sleep for X Seconds to give the Backend Process some time to Finish
+$seconds = 10
+Write-Host "Sleeping for ${seconds} Seconds to give the Backend Process some time to Finish"
+Start-Sleep -Seconds $seconds
+
 # Create New Data Lake Profile
 Write-Output "Creating New Data Lake Profile"
 $datalakeProfile = New-LakeProfile `
     -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
     -DataLakeFileSystemId $DataverseDataLakeFileSystemId `
     -LakeDetailsId $datalakeDetails.Id `
-    -Entities $Entities
+    -Entities $Entities `
+    -AccessToken $powerAppAccessToken
 Write-Output "New Data Lake Profile: '${datalakeProfile}'"
 
+# Sleep for X Seconds to give the Backend Process some time to Finish
+$seconds = 10
+Write-Host "Sleeping for ${seconds} Seconds to give the Backend Process some time to Finish"
+Start-Sleep -Seconds $seconds
+
 # Activate Lake Profile
 Write-Output "Activating Lake Profile"
 $datalakeProfileActivation = New-LakeProfileActivation `
     -PowerPlatformEnvironmentId $PowerPlatformEnvironmentId `
-    -LakeDetailsId $datalakeDetails.Id
+    -LakeDetailsId $datalakeDetails.Id `
+    -AccessToken $powerAppAccessToken
 Write-Output "New Data Lake Profile Activation: '${datalakeProfileActivation}'"

From 455a42b340f03df7d346bb87ba2ca011f4dddae4 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Thu, 23 Sep 2021 18:48:01 +0200
Subject: [PATCH 12/22] Update docs

---
 .../solutions/dataverseIntegration/README.md  | 129 ++++++++++++++++++
 .../docs/media/AzureResources.png             | Bin 0 -> 60046 bytes
 .../docs/media/AzureStorage.png               | Bin 0 -> 40696 bytes
 .../docs/media/AzureSynapse.png               | Bin 0 -> 32461 bytes
 .../docs/media/AzureSynapseLinkConnection.png | Bin 0 -> 13024 bytes
 5 files changed, 129 insertions(+)
 create mode 100644 healthcare/solutions/dataverseIntegration/README.md
 create mode 100644 healthcare/solutions/dataverseIntegration/docs/media/AzureResources.png
 create mode 100644 healthcare/solutions/dataverseIntegration/docs/media/AzureStorage.png
 create mode 100644 healthcare/solutions/dataverseIntegration/docs/media/AzureSynapse.png
 create mode 100644 healthcare/solutions/dataverseIntegration/docs/media/AzureSynapseLinkConnection.png

diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
new file mode 100644
index 00000000..7e53ca9b
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -0,0 +1,129 @@
+# Link Dataverse with Azure Data Lake Gen2 and Azure Synapse
+
+In a data platform, disparate data sources and datasets are integrated onto a Data Lake in order to allow the development of new data products as well as the generation of new insights by using machine learning and other techniques. One of such data sources can be Dataverse, which is the standard storage option for all business applications running inside a Power Platform enviornment. Dataverse stores datasets in a tabular format and allows them to be extracted to a Data Lake Gen2 via a feature called "Azure Synapse Link for Dataverse".
+
+Simply put, this feature sets up a connection between Dataverse and a Storage Account in Azure with Hierarchical Namespaces (HNS) enabled. In addition, it allows to automatically generate a the metadata for the extracted tables in a Synapse workspace. If this option is enabled, a Spark metastore with table definitions for the extracted datasets is generated and can be used for loading the datasets and further data processing. The "Azure Synapse Link" feature in Power Apps also allows users to configure how specific tables are extracted. Options include the specification of the partitioning mode and in-place vs. append-only writes. More details about these options can be found [here](https://docs.microsoft.com/en-us/powerapps/maker/data-platform/azure-synapse-link-advanced-configuration).
+
+## Service Requirements
+
+When setting this feature up, the Storage Account as well as the Synapse workspace must be configured correctly. Otherwise, the setup of the feature or the actual dataset extraction will fail. Therefore, the below sections will describe how the two services must be configured in order for the automatic data extraction to work.
+
+### Storage Account
+
+The storage Account must have hierarchical namespaces (HNS) enabled. This is a strict requirement, since the Power Platform uses the dfs endpoint of the storage account for data extraction. In addition, the firewall of the storage account needs to be opened so that the power platform cann access the storage account and update datasets within the data lake file systems. Today, it is not possible to rely on private endpoints or service endpoints for the export feature to work. Hence, the `defaultAction` in the `networkAcls` property bag needs to be set to `Allow`. Enabling `AzureServices` to bypass the firewall was not sufficient when testing the setup of the feature.
+
+The storage account requires two containers/file systems. One is used for the actual export of data and the second one is used for power platform dataflows. In addition to that, multiple role assignments are required as outlined below:
+
+| Service Principle                                  | Role Name                     | Scope                     |
+|:---------------------------------------------------|:------------------------------|---------------------------|
+| 'Microsoft Power Query' (Power Platform Dataflows) | Reader and Data Access        | Storage Account           |
+| 'Microsoft Power Query' (Power Platform Dataflows) | Storage Blob Data Owner       | Storage Account Container |
+| 'Export to data lake' (Dataverse)                  | Owner                         | Storage Account           |
+| 'Export to data lake' (Dataverse)                  | Storage Blob Data Owner       | Storage Account           |
+| 'Export to data lake' (Dataverse)                  | Storage Blob Data Contributor | Storage Account           |
+| 'Export to data lake' (Dataverse)                  | Storage Account Contributor   | Storage Account           |
+| 'Export to data lake' (Dataverse)                  | Storage Account Contributor   | Storage Account Container |
+| 'Export to data lake' (Dataverse)                  | Owner                         | Storage Account Container |
+| 'Export to data lake' (Dataverse)                  | Storage Blob Data Owner       | Storage Account Container |
+| 'Export to data lake' (Dataverse)                  | Storage Blob Data Contributor | Storage Account Container |
+
+### Synapse workspace
+
+Our tests have shown that similar requirements are existing for the Synapse workspace. Disabling traffic on the public endpoint of Synase is not possible and private endpoints can also not be used today. The Synapse workspace firewall needs to be opened up to allow traffic from the Power Platform environment. The following role assignment is required to enable the creation of the metadata tables in Synapse:
+
+| Service Principle                                  | Role Name                     | Scope                     |
+|:---------------------------------------------------|:------------------------------|---------------------------|
+| 'Export to data lake' (Dataverse)                  | Synapse Administrator         | Synapse Workspace         |
+
+### Other comments
+
+The Storage Account, the Synapse Workspace and the Power Platform Environment must be in the same region. Otherwise, the "Azure Synapse Link" feature in Power Apps will not work. Also, all services need to be in the same tenant, subscription and resource group.
+
+The user creating the connection requires Owner or User Access Administrator rights on the two Azure resources in order to be able to assign RBAC roles to the Service Principles of the two Enterprise Applications. In addition, the user needs to have the Dataverse system administrator role in the environment to connect Azure and Dataverse successfully.
+
+## Accelerator
+
+To accelerate the integration of datasets between Dataverse and a data platform, an accelerator has been developed to set this up much more quickly. The accelerator consists of Infrastructure as Code (IaC) templates and a "Deploy To Azure" Button to setup everything related to Azure including the following:
+
+- Azure Services: Storage Account, Synapse workspace (including Spark pool), Key Vault
+- All Role assigments ([see role assignments above](#service-requirements))
+
+Also, the accelerator includes a set of powershell scripts to automate the first setup of "Azure Synapse Link". Afterwards, modifications can be made with respect to the tables that get synchronized as well as the settings for each table.
+
+### Deploy To Azure
+
+First, use the "Deploy To Azure" Button to setup all Azure related services. Go through the portal experience and specify the details of your environment to successfully deploy the setup:
+
+[![Deploy To Azure](https://aka.ms/deploytoazurebutton)](#)
+
+Please look at the outputs of the Azure deployment and take note of the Synapse Workspace Id as well as the Dataverse data lake file system Id, as they are required in the next step.
+
+### Connect Azure Services and Dataverse
+
+For the next step, you will need the following PowerShell scripts included in this folder: "SetupSynapseLink.ps1" and "Helper.ps1". This step cannot be automated, because the Power Platform APIs do not support the on-behalf workflow. Therefore, this script needs to be executed by a user. Before executing "SetupSynapseLink.ps1", please follow the steps below:
+
+1. [Install the Azure Az PowerShell module](https://docs.microsoft.com/en-us/powershell/azure/install-az-ps?view=azps-6.4.0) including the Az.Synapse module. If the Az.Synapse module did not get installed, please execute the following command in your PowerShell environment:
+
+```powershell
+Install-Module -Name Az.Synapse -Scope CurrentUser -Repository PSGallery -Force
+```
+
+2. Connect to your Azure environment using the following command:
+
+```powershell
+Connect-AzAccount
+```
+
+3. Collect all inputs required for the "SetupSynapseLink.ps1":
+
+| Input                         | Description                   | Sample                    |
+|:------------------------------|:------------------------------|---------------------------|
+| PowerPlatformEnvironmentId    | Specifies the ID of the Power Platform environment. | `0000aa0a-aaa0-0a00-aa00000a0000` |
+| OrganizationUrl               | Specifies the Organization URL. | `https://org111aa111.crm.dynamics.com/` |
+| OrganizationId                | Specifies the Organization ID. | `aaaaaaaa-aaaa-aaaa-aaaa-aaaaaaaaaaaa` |
+| SynapseId                     | Specifies the Synapse Workspace resource ID. This is specified as output in the Azure deployment. | `/subscriptions/{subscription-id}/resourceGroups/{rg-name}/providers/Microsoft.Synapse/workspaces/{synapse-workspace-name}` |
+| DataverseDataLakeFileSystemId | Specifies the resource ID of the Storage Account Container. This is specified as output in the Azure deployment. | `/subscriptions/{subscription-id}/resourceGroups/{rg-name}/providers/Microsoft.Storage/storageAccounts/{storage-name}/blobServices/default/containers/{container-name}` |
+| Entities                      | Specifies the tables that will be synched to the data lake. | `[{"Type": "msdyn_actual", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false}, {"Type": "adx_ad", "RecordCountPerBlock": 0, "PartitionStrategy": "Month", "AppendOnlyMode": false}]` |
+
+4. Run "SetupSynapseLink.ps1" in PowerShell by running the following command (please update the parameters):
+
+```powershell
+./SetupSynapseLink.ps1 `
+    -PowerPlatformEnvironmentId "<your-power-platform-enviornment-id>" `
+    -OrganizationUrl "<your-organization-url>" `
+    -OrganizationId "<your-organization-id>" `
+    -SynapseId "<your-synapse-workspace-resource-id>"
+    -DataverseDataLakeFileSystemId "<your-dataverse-datalake-filesystem-id>" `
+    -Entities "<your-entities>"
+```
+
+The following can be used as an example for the "Entities" parameter:
+
+```powershell
+$entities = @(
+    @{
+        "Type"                = "account"
+        "RecordCountPerBlock" = 0
+        "PartitionStrategy"   = "Month"
+        "AppendOnlyMode"      = $false
+    }
+)
+```
+
+### Review Deployment
+
+After running the PowerShell script, you should be able to see the "Azure Synapse Link" in Power Platform:
+
+![Azure Synapse Link Connection](./docs/media/AzureSynapseLinkConnection.png)
+
+In Azure, you will find the following resources inside teh specified resource group:
+
+![Azure Resources](./docs/media/AzureResources.png)
+
+In the Synapse workspace, you should see a database with the tables that you selected for the synch to the data lake:
+
+![Azure Synapse](./docs/media/AzureSynapse.png)
+
+Lastly, in the Storage Account users will find the synched tables inside the "dataverse" container:
+
+![Azure Storage](./docs/media/AzureStorage.png)
diff --git a/healthcare/solutions/dataverseIntegration/docs/media/AzureResources.png b/healthcare/solutions/dataverseIntegration/docs/media/AzureResources.png
new file mode 100644
index 0000000000000000000000000000000000000000..9339595afa1af57b2c12e39067653168287e4815
GIT binary patch
literal 60046
zcmb@tWpv%l!lh|uW{eqPj5%gz$IKWrLk!0;vmG-tGsR3X$IQ&k%*@Ag{NC?QPk(Fr
z_VilwL+h-PR8mPgD%G?1u24mJNn`{91TZi#WN9feWiT)Z1<*nc2LW26KhfF_`T=)R
zmJ|W2949&g6`;(8zX^kZ)kGt{8bX80@D5U1PGDffAs-8P^xl;z7}zm|w3x8!PyN$3
zRNdKy%!}x3c%Yw9pou?HXed6rWeb*=4X0ZD5K7Jh@T&H5%`QpMaPA%m;38A!Y}Kjy
z*@s<q){bNS`^?xrk7;Y-+e^FV@fuK<jYp?ks7?z#cP2$WCB_1;S6Y}X=QZ`><@M<`
zotq8m5taJlz?d~_;>Ahez-jy`W5O--;pGP3=-Ry<N*E2QnLdNx1F%$UY6RIFzDffW
zM}rcMxrClW0d0f#Q9S#n2>Tz4=Feqo2Jd$U3v+X!$e?5Ha$YTE=)KL2&nVV9Yq?)3
z2%@d{9#{<3-VSrtxC|U!T)d}uKBeE^-;=x@O49y>^ABXP>9~7Z?HanT<7<VvK3nc+
zdZVdisrkX>7k<@H<z>4!oOt=RcH#YSdo&}EY~t*E+aF121SyPWLVc6?4lFm|@xB{*
zf6Fw7d+JBkT)uKFTXaiLbpQk*k$6AmF2eCbl&rPniA=aY0AFhtXa76_-(L(Cs@^ad
zgp#TlOP|iZS)Ew^r1Cmir=aQ7c-=ESGSGi_U%88RdzO8|reSs(B5GY%SF3g3n>MAd
z(|3E@;P-Q37ZfCEvw7T47X)5KZ^gZC<92SQ|J~gDuAmUTD1-);IyCCG=?A;L$>xeu
za8Tnsk$y7WS>L2)l9Ss|)qVxkTv@*@teVZTEO`vyJCe<223GDE$NK5omp=h;@C@Yz
z9xEmBOy$0|`cL5YqZoiSczii2JQF8T^=uM8Q|!94e(>4re7mVin;=?hdmLTw^ttge
zq!E0Zo6C5=s%z=go4((9uYI=P(9^mK&)=B9|61FyuUGc#LIb<%{V9LN=ULwAElJV`
z`0jD{t1}8Ar)n;|%TE>}9KFVm6b@tE)6Uj#I5InHdrNM@@+EZw+svEE->%K0ddut_
zbwl93^L@W7xO3$ilP5At@2jTn>ZR1v`_moo`}M<@<|N=PMViX6xhDYmF=;r%Tpt)B
z=;3;B4zra3KRV&*QpjOAp7BzVx<o%TurM35&4mDbb%NiYFf}!cA)I*aYhwN6u{p)O
z0t{UJ<GIH}W=n(G%nH2L!H*tIjgM*OOt0sFiI5%W?+;5rDMc4Xqa<=;-?1*`I(wJ*
z3hnT*w~-qgs=g+c)n9*&6l4{QxxD2<=n!6>Xj>5-v{&f3>Kg9ePK+K;H3r64y~11a
z&frY8zeG$_g3qDcG8xZg*=M|*KY0Ie)6}HRGI-zh@Oi;~@`=4`xMu6_O=Sc^|Bg;S
z5=4)+36IGdN6e1vzh(d;0lct(OI~&n`jh_3kgPMP_VT=bh24E_EhheKF!WPy@nBS$
zTFtcM?hn%{r8%H-uc`@a!S_hN&7Oq<E)Nj6+Ua=n;JE%qvhmg|i)ROXZZ&vGXN$Ib
z-4ayGd`!NMdD{r2)J$CjzEq7jW?*K&aT{q2MnpyZ*Bvl1!)#(@dlBiWT3LT<GH&dA
z9M12Sv5P`j*x4ub62amQPaz2z;&4h9P1V*JZ*Pp^CXCPR>@+BFmWpIc%dwJtYn|pd
z@Ot>3=&)1i!6ZsDk;)eGy45W`(7K8Tp<s?9c>HLPh}?Ond(rCM-0*C$(ib)9SNZ;S
z;ls>{r%|cf?6Bqk@xO;B`BYu;a`O=F)%k3|#@2c3TaA8g_swNTa-qt{+3e!MhxI^k
z&&0R#O-X%=f@b4UxaWm`q3S`;uAGN6$bdP6+iAb*{kf_Srso~r0Pl<6vQqoYiQfB>
zca0%1KAF?!sl9#U@p{3vjrSteJkZ5xzo6q)p*8F1b;@VReLbli*f8R>A5JXn+aWJ4
zjZWxbRmaWAsgBJT(-JKRd^{@7-cN_~C*A7JFt^z_w6K0rux8s1gdQC9cotdG$bO%w
z%JOWx%^qPbMH-i0d);{lj)n-njx-o}1Fic!1heva{Dm)5^*W#Dsw%Y`WIm2t{mQY9
z^x~836dNE0>YU;g1co9(r(g?GeBapPdVlk1)ELY%c<V{tuRd#RKkBQz##Dh*4Ti(z
zjvu-WV)on`5Cqm#2cu&?17^aXZVm*m2PtS>J~~FODg(RME>|C(_jK+FhtgI;-<}69
zpBt_%I+wplD!gD&sD&uPG1Y~|TXP2;jdM=}?>8YEyMlGC*1nrT<+I>y3~`~PaIE?8
z9C4wmc4k@jA*7&&#s435@c*s*AJ{!QLzn*O=uvi#p9fnMpEl~qUD01h3_(YhdJKq_
z18t*x6>bm(eLT8JRC)hHG5fofhKkBgd`U&c9{imDN84tyhn@hBJA9y8Ce-BbE>8+R
z&ok*<_Gxm<`j+nF8QdF>{ak-QuRN4+5u@V<N&yoqD=Q}_r+k+nGCpbgSFnG!uyj~y
z^nhI;zjA)}^dwsS`hKxgXFie1t1&ha{qc<}g62oAD$r;Qjr0%!^}}(&yf5Y{G_D8+
z4fH0yS>U3gq6?LJCl?p6R{{1}`x`wyJ)|C1-rm2F9x54ekKOx%CG0h_W(6WGE1mYa
zpZogR{Q$<2b&DxPb^}2k%Nf9yVSG-obA+Fro`5SNMlC?}9sDJG0)t-CxZpz@Yg4MP
zeW?Qp3dUwXqh1RZRP+kCRJlj7)NA+in!>?AI3xTx$_!5Ned(!VI5D{ItMJX=-Aa0g
zFofK^MD^lK6)UI|{!LZrcz*?NlOk}8zJWv_oopmnoowaTMM%_<iPJY$NK@~!`gScl
zMutj(CA!87Xi^ugs8dXHo$;xO+=B7TXOi7Piqse|mYsDS85tQHo8S5?q!s6CHyhr{
zqw8x!uQQpP2|q^y1h_o>Xc;|B`T}Q!(K3ibE0osiOQ0L<qBZ}@MA}$+go>$EBg41r
zd91RmJ>k@Zj`IDLzKapzR75n#RdqCsA$Z~wuo#Q_t|O5VVETD#q^~~#ZsY~p<P*=N
zz+L<Vp0>g)mbtBWWyyZRzM_)7y@Ae(z?RLKT40QuAMjjbMc;7NF>YQa)+swpX^c7&
zyt1C(8fU0JBLnK0S#>ip-!^Qbn0U_sS$zv8X=W3*miqB$7z5nW@+AUuZb28tDId&8
zc+icNSp!MYsWVK3NmNvne-{7cUq~e-rSI><8XXw;_(S3-9g>Usz6S>bFuMp0lZ)i?
z?dG>+U(;|r(jfyE7#fRP>q1!%=hW)p5+|h#%u;SqDD8fnJIb&=ey{0MyNznGP#*bg
z;4)kkv47KpZH>d~7dB>q=~mEy8kIn>rK;mfv#@dqDgSxw9y|_bAj&^Yx5VieHjiyk
zt+qL%5qG^d{=)Kci@qhqWB9R>bJa4to<`k%U3*KY9KRxOvLi#otjnBQSltL49wV^C
z?V3omTTH16;=(otLGLYhe7aQK7O^6FgKT!NWwz90#%fQHFM>Og*l6^~{OGKlhJ`SG
zsbe?9dMAWf5xF!L+4$mIoYRbR+Q8MbfKx~77OK;r{@IoNgt-!B=Phq86<4atf6M!7
zY_liuA^coh>imyRyFpw&{qjrqdb>5Rn%<)>o%9IZZ}&A)5w$*=Y~!r?nzKq|T}!@V
zy;OU)hZBb%ckX1yq@VhBV+JivsYS{bvWK^mkdzpH+FLcs4QP`reW@Cz=Jkq9=)Yc&
z#&>=EEdyi8k<(41H9oCc^Nq^kt?$hKgaN@E@QHH84L;oUw>n`hAS7|2dM|J+t1nUK
zbKnwc?47#{622Q{JUu>~zJb9;mG>Qe^~Ye=!NI|1)#Evq`Sjb%%=^_-)$7B=8;z98
zyB$P7LR37YP3)oxzSM0y_gX7m$hFLozCHSqF$t!bAj4;+=Cgp?U{{ndH784?8rL3M
zA)453DGU-w*}jS|eUGMaV0ykyw1|t;c{(o3=3FfKP3&d*S}F9mt*hwsPeuWw*@?0=
z5T!pvR-^8JwIyiQKojpp711z8FqHpD8!xxi_wx=(uL_D!R}R*&So_-Mf584bws5e8
zpeSygEaZ^9M4=!OkkfKL?}9ifAQtxbk3}<6Kr(NUAIenzh?DOv_OJNkRnn=In#THH
zwKsWwc3(?1(GI5?ppSQar0#o06_f|En)B8ub`=HqDD$yY4WZFdRN5o;sWVN5^-rj@
zHxs8QlA2}ij4E)Zr)QYCVEoFA6TU&w1#B?4oG%lfflVR!0y>2%5_uNl{E~^@Iv&Ce
zVBBK@!5$FXaUhTKWMrBwR-fODY6>HoD}O~^78GwqmgSAIOBI^oWdCT(Pag^|=TzY(
zgXiABY8~ZHcl`67_^gZmlH3}sJx-KGDjvec5-P1}I`VbrIM_ywcjz8hobyYIr%~d*
z%S&m}<C6mZ-rnj2g=OCg>(4)G>c}~dI^;A5nZt8?^F1%(@)Yz<iJz(3z}!6{#t*rl
zTjtTe_DP(dHnwZY&yLok?Cx3`kBN3^oB^M*-=8kGddlo!g`OWe-{1B|l7)|f3d;Sh
zs9IfhF9!2ckHNPsGsGb%?{!}_<;85#4SHkumRN>~X&rc<hn2T`AwwU7U<-sl$-k~T
zXG!Vz+9_4{?n!5x$R*@9kBjC@jF&@G?t`WGft3*EBFbr+qH17uLk<5jc(e-BOrb|=
zzP<izMa2=^ZBwq^16R`m3(Z;}skv42^d!T@6l(JBNS-c6s@f@$gqBn8q7n*MRPzb#
z#Lm5v!mbZh1@$2_Yd6H=6J%yBvKvEVueLr`D?&GN-a<HM()jE-;cv3HDD`d}s5Ff(
z>KR(=Hba;MVu%uB)U;BmD9@i#5~Wmzoam;GtFUKcSAR=7MEuUP&>KHjYg<&wL<)o9
z3hEuDZa#$Pw*JM0m_i8Tgk#i6M2B!OgD0ULM7#Cg+8JhONkA5HS?c<O{DA1Z2{jUg
zA9au!AK9n1dgtesy{I5doGe*EFD?_QU{|saGZ9jWbdt}<*ppGOSs=9&HAns_rJ*iX
zItSIVu-hjtgvUkvNv$WEjd!FR5%tN##ha4yGmw^ros#AAjuFiXvUMDFo+7N)7)>|m
z$z3zQJH9>N=^hAO{yeO0Xu$56==HH<=Q%IcTCXAGO70u=x0ebioVb7g6+k1#`P+$+
zU73faolAS$yyjD`AwB1np7JXs$u54>BJ<Tz9Mi<pSq0-?t+igHN*x!ObM_Q-@i2&n
zymzTcOmrhoYz`xQ3vpC(N@d3aJ>>1)A{x;zkvz%A%}8tl0RrF1=q+HzuI>a)+yo3R
z=z-Za#vGbbk;I4#;g)!ZXojC?Myqj{YS{bxWQ{ScZM;iUtJx3~MEH9*X)F&Z&GWAE
zqo#MoPr*|JI=IwHqg<$$2ZUxz$&VeHO9vP@U?hH&zQqpvdQZX#w;F6hk^3UKn86qn
z;EQw^MC>5I<Qo26?RcTGxyoqFCR6JZ;hsOYuvxt-I@L=YsbrfU7*jPyq5jOmKUQkx
ztcO#&iKQ_GnHaq-{uHbJ4B%$@nF^tB(3dzbM(t8-g{Reg7DM2RETd3NPZ3(4kxRCg
z85tg*B3tY#n#d!E;YK+#(6qDh{;7S_?<$srkK=-*Vk*YGn1f)NWrre!=lySV8r~Xl
zNnSIG@B#E5I<A~rvaa=GZ<Ej?EDVI1Vs;CCJoD;a%ZhS&dY7dyT_Me{yWjpyJ)r&u
zC~4WBBXv+K<U328P30frr+ym@mImdfF>^p3Fa{I*s{~tE<o>hT8Vd1HxaPNC*FX`t
z5Ii3Brj~_veQ**cvqpC1jdg|Wa|ZZX(n_Bkw^vJ&pV)O<F<`L@iSPr_h6%Mawx@-t
z=t>b-WOl$UNNGaxHzqFhd~vG;jNLb^rMEnidI9-@Pj|6jXtnZqqcr~L;PApHknO(o
zeW^4Fxa3@8-a-gxLRk8q-87<Mbx~FleWgvmP-j8&=Z6>^nAh?EkZRwYjjb%KZ{#yS
zGBRsT!Q_Fz3@5y;M?<n!3Jg7alExKrR{kEZ^nMwX8wVxjewzfzoiy~t=y;P@DKa*%
z)IA;T*d$stiAgk@manUM(Dm=Ad%TJslPk5>1^kb{`d<hh*bP$G9WJ}qB3IIr4S~lU
z&1bx)@ERx5vr}R)kI4=4h|dZmFDGSl$*fSPNB-AvElt)6yt0o|x(B*j`$||TRM@!S
z)D}a_p4~_Yx3P)$2_mV)i<qQWB@r4!=4)d{90N~SRT2jU{fe7P!=br1X{@2XFx5WX
zJsz_IG#ny?f1{Q1q-O^)gj<%4Wbpxul8LgSiA6cu*Ny&A=+j7hX!A9B;opPL=#Alv
z8ip}Bh!u6F-RHJYHg7EsMbd_*jw&=z8^^uXLK}zR*!ldUl+mXPhzmW8hNZm!Bq0&)
z-f8qiDCZLe$d19OV+vS^53$$s^s5LQp5wOsR`RU!mMo`y55$MMehG@EzeA|)ve(R6
z4So@C+(sf1qGMeYtLirM6yFVFlZKAQX=x<RClkJDxwgd(qWBp{E3YOpZhgyvb55K^
z3I3KfJ7&fC_}Fn0`<!>@QbV5!#M)|b$<xQ*lcq`4^Ma$P3dY)}KG!YxP*JUROuvH?
zTo~_D+tz&!E--KAM7Usc!Ssj^%8YtWxQ6w^{Jw3p-xKZgYFvHO8B*$f@lEs2#`D%S
zng97hL-1{8V8{F3aDzmU=xw^H)q92OwRM&G7lqf4i{)wau`Ips=1xq%x1V@oJ1n@K
z>AX69-55P3qM|Kj2$w}MjtIfaV!=n`fN5ajBP3eF62HY?U8S7I^e1KM5aOFKq+vAw
zcJ#_}g3aArT59+pv@B!a!2RCqW8+H^zSk7{#FPG|VUmQ3gH@9zLB^XII^=88FD__j
zw*t#4p&W9m+6b|kER(gAWPatpR^_}^%aw!F4xQt5qrUa!L0$#w8lnx1U}w`NeUO)*
zLt31-Y2QU(r(9yWs~Vy&ttE9>90E;qs^sB1V;UCnknjv<VV?CMI8MzDCDy=VB1n>E
z>=TBA{Q%hYjn;P>b<kf}k@(@4%7(zlu#*-74J>|i9?GgSR|3Ro`_W78)x^XRENd>q
zD_afXsPOC0S#$Q;vqZ|{07qNet3@w;<~MACAdS#!p=tb@>)Sc8?MqUJ;atK6=Tsxt
zo6AYfTd;=q`4`6qUWd)Uk%U~m!6GUV4X(gEHz#uMm!V?fpb3UDw}<FYE$_=?H4V{%
zkD0dvVnsTTc3`IW?>3vfOJq&Gssj`J=?eBg{=!ZcTtWou>Q#F63pKR14`#2l-%iUG
z78Zgq?-Cga8M*60p)=8GX9snKNspM2;Mv7h&{LF$to!9b7WY?=9lH5Im{9adPvT=x
zmCQP;WD(R$srP2e7CYtT%jew5mAg1SuNQVXzrF8~3I({rMZZ>?c5GG}Z4bsXpT(9M
z-*K8-HV4cFH+>{dtCIMy3^W8>vd^Q#z7gmliIL!l#ti-4aa8#v$VRJP)Q90Ggl-Ha
z{0d(L5cUnQ6W;;BE84Cdd9;Z<oD4CDm{|i-@|MX!;5>)~@&B&V$}Lm{-H_l)e$@OP
z)+q$iXoO?%p(I$*KeXQeM)&`VqKI-U8wrxYpEoX4JA1*KuHx>%4_Idlf%mpwxC<fl
zaX)lD5IAL<dOra-`DF0?b9I7~ui>(*nH=_m>g7EAOV_eHu2!<M-v(vdCcM^_)o$IY
zu`~=Uj!*SosZM6DrX*Rfd}t#;JC7pmT0I2#yc}Mv^KiM}nCYHEzBld4(&P3ywi^F>
ztrGlcpCU)n=-mE(Z%^;oad{@_7I7i+aZ#4xVrSEUEW4LASoAux_la(1FWwt?yVtRA
z*YPK}ylyB<U!z}NHAr6d&Uo{=?D<}T#5;lVFcSeE*OHJGtT7Mpt}A3$v)S;Vv@h+Y
z;=6A+$inA-?e+m)W4^o$qP`5S3&z-fnr4&exFIe5f_Y*CLHE`1aH13VN+Kz6Tk`dk
zb9yDQsW4y5Mh>NEM<i?K6EO1xqy`|mwEv@58wue}Co}D2d)apXTD9A~FewteLh~d6
z_$)g#cW&)?573DEd=dpNcwXC3ZZK~y#W)l;k6SK_2tGpx&cc0p!CIh&yIu-<7NW5o
z7|*oL&F-0(k6!d!HS>Ri$h|pk@DtQ+1xmmF{X3}u1NZ2r(cjBNc?!<#2F>E(O5@?0
zK691~;D#hfWj=S-G;&<R0ck-L6i#aXQbm;`EGimR$}U%YlCmW|1CbSptI(c%C3&Gd
zoeuWpR#T408GViI<mS?%3Z&r>M3qER^orAeCtxjqSgpCu4cDIqI72e33{8M!4qBWu
z+WEhs<z?2NnFqcj>H6Sz%~n#f&`o<$_1}ajkE~XS#~Yx=PnY*{klzOfdn_a&x<sLz
zBTo)ZmC8CT>K<7`C1e!waB<<~B{-;>CNJhDDK70zGo)qb5|?Dko(Aa^wN$pq80Mz)
z1)LWM;P}k)xkZr~8a@6It}eX^$uTd;LR)-NVkbX#{bl7`$I~OpC<X%Q-V_zYnrBrx
zvm@8~xMdsQa)qfeKy1m)qGML-AL(UCM<oScI7T|QdRPMRdmi>nSDcbpoGdPA1Qu`0
zd>LXeccNgbgnPLNP}UzmaGl`I>}KXuRjm`AlcF*o3AM!yPv!Jg#fleQ4Oq<<?Nc-7
zPCC*oKcc5%EU!L>YSIP7B2BxcQd^qZOr({L{$4Z0F3hZ6stcUNnATiRh3|jkjtQM<
zWVSxorZe-)S7lcB$~rJmn_R|}>6=Xwv8^LoqR||uBOJr32eN|Rr@Ev?mG_C-_;<IV
z1<X9IaSD%}A-;ImnE|f%>-_Yw?5J=#Og8n+sG@ZtLldpY8E5@(^zJhPX&ML}{#{ao
zmk3!-5B}Osl3Y74JL_uPlrpsB9;c&k5z!;zBmlUx0w-sEncrmQWLmjlrY~rpA$Ici
z#-n=YOYGdIP3#5IXIzq~F>(l6_+X_B{PJi?{lW<ANvjfDgh!IaK3Se&(zu``6^bz*
zSVjU{WKchwU@yKod$+xl{rC<QwfLf$`40s<-~&*?AZ3kzwd-JWauhc?0E7z_oePbI
z?l_+tD}2=8@g48R8*81wlLD7|y?PkA$l)C6Q=IOzdF8@NqsiGP+UPtAPeeH{9x?!E
zb2s!nZK0M>i9KwUc4_QY^rq8&x1nz%ijE>%gy95d#r(Y)^(nttxhwub&l$}$oWo=G
zKa$bfLEDX)Z7G&IqcfzQ^{iR>RSQ@ew)+FMDzh0F+VM*IzkL`BZ!CtM!&f$N68%`k
z8(bbWu$PtT5Q?#l;g?ZYnyPjP($XM9;g6ZgQkI{-2>Oo_5*^;$wpQwU?DUXc?}!Fo
z!hj?cq$70P^jOA5aZea?iNrzbN-j!HpGdp@hn}-T6%MeB2*@RL25f8DaEl|u#8Z%V
zqty7*SpKWVMTrBH+Rm$1b6M<%Z1cxxOhg}*j?eD6rPL1X<{s%EN+g3h4*<*|E7Rrk
zTHZWug;6<I)zoX22mP{gG6?}|UJ7j+SEMK79tv-yRzXy8Px@ZMEq&e7U<18btXx}m
zziwf;0&$4{m_&dM)oiNFr9={B^(p)@HG7QGX8obfDbA!y`Hd2qP7lF~z3PvIW&|bm
zk9MgwvCJ=ecxXg5#N~Z8TD*i_&QeON^O%*VYTOgpSI%SGl=`Vi<>zl=U;D(5cKVMq
z_e^wBj}QDRHDZx(Bg&X9gi7gdR%XLkL|x7E9jzk2-zB4!Eh9(8XCuYDA9i+S?cVjR
zw~+x>VP?@XisdvT<k-viwe!SeLa3<1zC_wIq889wi7oSsXdgBQu3Ggn|Ax(uKA$s+
zm?hZ@nMHDn)y$gErFw+pkE$Lwe}86GCl&cMF7|?_A`{LS<d*S|a7mc@^(mo|FWX(i
z;n%h#U5Kw{ljQQBtfMI&*jEwn7TGc%%RrgWRBlSH%ZlW?s_i=OW&IQ1a9i;-B%=Q|
z&Hf@Cw1t4OB;<A@@JtBIuxAPmB;ZDZl3F`aM<@I}{RH4)&&-i8AiLDm?L)yL>C?b;
z=(Bx^Q6psuEz}E|fS;(C>Jv#PD#cO?Lm{a>XYa*R;i@Z(Lk4k89uYykv+ZsJPtCVC
zzx2)=n2Jt8$A*(*Hoi<Jq$wJJy&jGAr_hlsj_2%yh(rPO6)rwNhll2F3J<A^m-;8Y
zRoi*c>A$NtjAA=d1+?lCC40yf{OuzXjnWU0+BIWFn-&pdS3Q)yCU21qcaoS5YpGEv
z%}ayn*VPaUg9Z~1YbieVyWBErq^vz{TUiqjo8E?~r{&DfQi`OF1L-A<2W#Nu*>t2X
zA2isELklcKePe1uGYdbn9F*oz;EPC5O*~YG1nCdtOnx6XO4YJrmMAl82IYL%mx0gR
zrA=*5^OX_3Bw>2yh<u(h3!I4go;m*+`Hnvdd9F;1B_W2|i&cZ+q2?>R^n8E3{USW0
zpkZR9&~n-k7IfejQQr9(hsgsho@tp4CfACEcITeS5caon_ocZ%(`kb?Rv|*Rgs!KG
zj+{b9-On#%O0D&h<nK>5*>^s#=gFA?oz2odmQ9_}y^=ARX4kGa=3W=g6Sf9-&F_EM
zTW%Yof;aSiw!4<Lt4oCgjED0{Qzn->BewXvn}1xCp`-K3cH2-DEE#C<|0PDe+;Uub
z={2UiOkLLU$FP>AxV!Jd5vMF^D)z|1MgqYQ6_#o_N(>gkGd(ZU_2l=@vJTmDd`dI%
zM0!&KKPShsDPV+gr=gYrsOLO_c~FFfzQc4(X7&c{m64LC8htlPlCI$4hh?;6-z?P_
z3G1Z&^w?$LU1UH$(<+2z-+TZcQIj*iS7<<|h{%DfwORv5Oqc_PW1|YA;XoGo^8tWU
zd3=}wkeK~lKAM0~w<SxpU4q27&`zLnt#3Q**7#?5Tzs0AXVH%zIOTqBYMhpo(&V10
zF*j)dhPxjBM>UW@hl;CFRb2J0OjzT&Bh>MikD3aXN_5QL@56e84U~*-I&1F8-sz0!
z5M>_&x#><K7@h}%C_T5$8&m<{(;wJx>)o31-{5f?0jTysTrLw$Jg%4Q_tU9^_`E(8
z?p2o^{RF-<fUeYTRZ@YNdOhaKx%kM@OH#hu5(V@q3JShYs=vn<202_M9XvIk45H2P
zq`H7$e80z(qWWBZN~PW6J){C$>Tp<X-!x1qmH<rAiSsDT^@v7XU7oEcjs<QFS_JJ}
zW|@#Q8m^U$g=NXG#~LeJaAUvo6uaj165c?y=t52028q%TA$Si4nQS4#axFoNOtcRw
z`;Ee2F4yAaYx(7?L%7gm1BwO%cv%^~3vx06{%Kh|9fBCzE)KZu*I4eLPVs5BGvF_2
zp>sR6J*$By`IWy{s3Do}Kkf>d`)w!kZb%M^{&>~IqVH*4ZH&WVe3P)F$x&b~#Sp+p
zY5~0;qg_t*Ca|B)<rgW18xV!6n^Zf}32yAQP=RB(JKmFrHQpBwm*Ax<35LK;k}R>(
z*6=^5%jTV7VL_zX=!f=|$(4=fbj+(1O(EYqGKXP(@SaBAlRNxwCVcJ>D+EeJsUf3d
zVZw6c;hq7YA#X;^>_^Z;*o-~?(S`eCpgyYjpEDmImN)`#3w-PvNb!gW^^dpLB}ENd
zfdS0<heNhd%Rac|e^(szv3Je8`Suu0Ox;2JH8b%xPwF3vaTc!xZ1Ae=;vaLS9_q)3
z*1wgHKyioSibY9hS{gpTy4_r4b3JTTl&@n9d<@$Moy9*5?PC0yWF>m|t7&t)*g&7{
zF3@s6B)Py(qG!IbV3GCXaYAgJBX(r(loZrnsMI1TcRTYuBMB*+TiUf8X-FGp;2aAG
zA5tSfVk%y?Mm?x4O(65A(GK>*C1lo1(x0BBKypPkXgE1Px3jg~W9@G^MO`4zdNkUO
z$47iLm)@ti9J{a0+0V>rqPLg*w-d-W!2im-@aB^EVHv_;fIU=}>TgW?#eOdX8G98+
zfptBqt}7?dddI7KScGi8I!A#y1JftoFRcr(%PU1I^IKWLafJe55Ck{FQ-3i;q4QaD
zgx1tYPwunVvW;<cFqZEbk=4}%m)DnthZQnxm$KtY89rLc3piaIVeULF^d_`XVhIqt
zj$>wceKk%h{^UOqw}+~k#X7*}DY!V*glM03a>$5G@&+LS@)X~qtThicZ4^9YakYEZ
z;a0l|tO>p^weY%G*Dk_AsX+kFZZ%}goeAb)N$L7W<9ZtSwnZg_X7QjpF@s=!Gc>5k
z0WW>4&0y$<&kpHjSv*7!FJrV)g#o825oV(nzoTK5CU~WM4*<sc7hj*8fAzBs3`os)
z<96N@rZJ~zh)YIEuEOF}xkfCv?@(VyB=dz$oOPr9InY3Jm;D#IJhG}=nec4=3td?C
zevmj1)L194X7bmH(AYFDA^y?RA@PME&Yl~KY{g|Pre4|_3h(v1{2T<1_Eg5GZin>C
zLt{+Jwp96)a<z8R6M*&3UMNKW$?UF893++-ljEo8$|gvyQQMfR&0jmZIVc1IH+x>2
z=Z8(LUD@M~?~Z0mAr`Fc=_e$;#QMhk>*26PU;w`zzt)|7W48RN4KER((=WffQ)2l;
z{#>zpNz0OfkbmcyZdx;|5J&#zX6Eyh(*7&QDYUHgH^vczI^oA!?X}y=3db-~Q~5|R
zD=ztdiFVPR2PIg$j8WDx=$*%}p?@Yka*a{qh3G;q$8KO@bb*L2C^dlm`25<a8GkUF
z%3BVI<1mG0@b6`FIH3*+?yY51s(@zp@J5~)l-Y5r`)L<lJzO11WyG~zd}o@wn#cV8
zAtxkw%$@;c|8HyLT#D=pP||Xf_U*us5{ahTYBfY9)L9gk{aKOU0@(3d&%_l4oaqW)
zNs&wFrU$uC$`oW*h$n`b>D{A#N(zR5hWqcYp<4}Y2J>RUm;0VWkU1@&TWimSD1<8_
zF3rAItDz8)_0Z3Lx+J8-*zFmrz^ZilQ<)k(e8@`JB3_>LzT_63&??%jZ)D>z3vL;)
zr`@=Z$XHh(ws#+Oo!+<iNmk)fDIeIfQ!uo^mPArHZ9^i(yxUS@$S%X<ce`#88eQ8r
zL&-Sr)${JiW-?HA3po2RKs0GtR<8l+9PYQzgE}-{wK97XRv8?Jd1fqmn!L-A%2S$-
zs^zNwC`e|#(t2NTw%A<9crgBn{6rXgT4v(YN|taKN>hf1Z6^0!b6%Q?E+kXypv-oQ
zTs(g<F{P6l#9ZhdZc``nKv_uL@4$?uqhSb&1X841G2Y)Hw>Ul^volXp7#eQQ%xN6x
z6cR2C6DgNe)D4^;p1YUxZs{q|#2)Xz9+&%a&dl)r2@zG8XFzUQK8{XX8$^(0)`-eY
zenK;UfdDs*CaIAO2*-vUZ^FCFHq~jOOu?ru-VK2bue2vm>gtF(d$cyR^&uj92g#W`
zjeiqfc+IvQ$=HrHduHt4wjQT*eZ`Y|+NOG}hst3xB@y(co(0pZA8uDYC@hmlM48DD
zuKrBsWK;8vXQBmg5#dR^ycjz9z3xdHi#)QJ@QTQKS&#))LR>qvc9Z^X>c=pQ1{fe)
zTOnhXTQdpctO+Zqd0iAi3mPDpNpj&MMTF-^aW9~5t~reozE|y}NTf+1db)PpTfBdZ
zGtN{}uvT8K>Byf>`dThC7*p=rn3#!JO*u;KOb|yPD&nKO;---L<z!ihKuw_>*IHIZ
z3@gfCHXg@3!wDLAX7sD8e?=Vr3kH#lhxO23SqH5yVncnY_^+IQ6<N?MzPb^~mela3
zW2rjj18XICt%9`#g5&VV*Oe)D!|oG#B_c$hmJ(ZgepYZh{Nc2i37kr%&zE%WiC#}}
z7SU*_X{yQ^b^Pp4hJWAR^I6WG^I7a3sUIv8O^~bIb+C(YUBJ1QRRhor=}H=4bxe@S
z341sf+S<1So<Cb{chg#tbkLI+`F*{*s(ypcvM>bqrJs#o(xB=yFzIJ+Vv^e8;?S&|
zq>-}396X(C1&!`fs(RM>IptEhko-CW&B|~>u^q_s92}bI_R?)WgQinJ$V8_4hzX@b
z-bLgbUQz>8yXkcL@in;WEPoQ9sN>pU6+`0N?M}-Ip@iSjs7S4i%2MpBEzxWF*JqY7
z@%0AA3$Tt#BkS&C!5ywBvD~Byv~%)o;sf+;p59<DevGs&q3Yztr_B0ohQ11iqOA)#
zItP*QZyV)L8tL?!JD914+F&3KExvNJ;BTPfh~g4}$@lx6!X@R!o5`ZK${tn7;zkE&
zI54^VC?hzSV6D_N4C2+zT@_dTxjO4IGry*4_J7Evy(&;Vopn&6W72UXm8Lfx*)l_A
z2=sQ1jJ{cZ_N6Rf{eU9{@S7klU5kS`h`iC@`ekRSL!8GJQv_z2Ce;UfTv7b*1aYxo
zxH3Of4)v41kP_2<(F?<2d4lK57=0D7K#A!{bvW*p%F3fnH9YJ{V^!Zkxij%nD;Qmy
z<RR}B3UPFulqYo3Gvoxn=}hcNUU4SKfmk;j`*rT<fIZbmBRuL3tE>CPVsM$Zq`!wd
zhYNUu5y0}DMzire%87-Ge~Oq!JvD7+w4P2179ywgES9q-ne0eSx(P3Y)*e@>h&TwW
zX^xoOC7vNmOYOJVeVFyH@)>hx>`zuUynD6$>G4{lGjqdrEY@-NtiQM|YdXbP$^fU7
zD^0LB$DY1<V#BZmg}V)Fir<(3Fs{9`XnV)kY^#%QKMFZwsa)jBMoFPA&-%4;99L!A
zdM!J@a`LQCy`neyHa%$gyy}sKoN6F6Mern-%6d}>o2v;Ch=w!=e~D!O{j$t&<T>L6
z-#qurKoeEgvPI(#d)BmS28v#W6S2H5;18R0po_rELUIiRx|MM*YFPq~4nlgei?x3C
zbkc#!1p<l^&g?MRm)7UiX`%|J?{6atuF`kRk&2%SDVdMu31tE^(q=X_)HHvD>mj88
zH+8I#d<~c_<#YYk!L>1!Y&n1Q)OR1artC22${*6>wXw6@;VCX-gB?jJ79uW>AbCF`
zV?Qq=Rs|Dmr+@!?)FOLci&w3!x;FQKT|X{4ar@Y`w(0XCN~r%0rFzg0)w!aG&bqCL
ziIWU30W4&u>*&E@e1i52iXe`-{whk3mDY|QhtRyeB7@ceb{b4*lLjDDCDYRPRSe{;
zb*VhKE>QoenB~G~IMAs`Y`Pro_+@_lhKoaEk}LIm<&%g`M6vy|xFSA?iKL<Swl7a^
ztMF(}sgf#To6dn=V`Eu`rGMC#?{HX9*kC{Klg`;Q&cqX-`SJ|zYGFq@0iVdAL8ldP
z27G%N7?3ljxK&Fyd@0R|oFQ3@tx>w3Y^w>1j<{sU8<4Pn%an_05uitfJyTD575Mv`
zz`1sl33p&motl}&l0ZzvgFrzrjxbB2{(CZxK-lKQM4u!uD%+dYKV7Ea5JHz9O+a@v
zNh~ST6&8N7>$NYdy&PS<mXEh+uZ>q|R|WcfNVbyWRTmNKeLBQDSqF|S`%mfqm0HE`
zGBGZ%Ru74UBMB=c=uEsrFR^>O^k+jO7$A<{k=n%wjJS0&QD>}Bfc7#XF2)8*%FmL(
zB*`47BFoO9Nq)f@!~?O4_|4*0gvrZfDI?HhPn;tB?uCEpaI|^LHOvEES$hu%?fS-r
zQ4Ki<=9>Z5ehkY{;hxBm{nH=O&Xl%k?ku>EZ2{3BBqe*yL}BnTiRfl$UgG5hB@T*J
z=tk822M!`k5h!Xhl?C0Xer6IzOXV{2A-me2aiEp8)=EY@GPRDIXp)#pPgwHWGb3Bh
z+b9~yTUw->q;`S4*52OULfK^h2)|8!JYM%Ro-r^1A}?PqnRO2z`4DT)uby(paD!VF
zA~XV~W6({oFUc%zl3%&b^*D^?>nKOnMbfI#0??&%uk!8%&@FRWkdtz%rDp^d^Hv?5
zBQG9eL{V1H*kQzF6+g8@`3H9oM}_mTxAbACD$deaxqsxRU{PBF*0PcGq%f(iA2us*
zI%+5=z9@WlGWs{=H)kIMoN<4B%@TsQlqt7bO8JIxnx`d0qzrl-$0W3{$|SO1gX+2X
zo*&@8juN&WJB)a01(BXz_qbC2MJnlq{9c)Ww5=FCOc{(B>4ZXrH5TYSlc_}9G9HC3
z5}{>KnjZyorFnAb!QK@@KH%`P4iaOQH#c*2<xbf;0jP!&?2+tvbac4K95HzZ?vVjM
z=|Sg@qVcqab=1<kfR}@bq)>D;nJDcMgEE^p!$W<nHqR*Wx=vx6H<IkzlqhpdeWeZi
zrbpm|kf`oX4}^_rDJ@f^gqI$4LvCwtkfDt(R}vZL3h(1hb&eO9;5GJ&%H#)WIT>Uk
z;ud!$GyT#0DYt;?uvDje4QzF6g?W~5UWU9%>qCL^lk&-x9Sn3KLAF~$gIed>44%BS
zTW5~A?8v9(XHaP@rK|zQaX>S>k@wGs?d!JWMd@4;>+gFn^MZ}~z_Gnzb$<AyKQAP}
zDr@gsSHTyyEMT^@AXT&t>MI4*dCQe)72h}9WzWZ=f9nn&t=DvtH?@)oDa7iN!?Li>
zrG4A*=nX+icLPJ<9ixGvzJh=LZQ_c1YmW=L=Q6z(?nC`8A8h(%D)3-d-@Z8=TIlYS
z=@gWggZ-T6T;k?fH|AF1Rq%_Xd>-cu&SBJ1QdN~pNcC|I)=Azx?HwAeVYK)WriC%b
z32X%>IsM?T#5upc2<ax&FUY}!DKJ*`|4nruxSVPS3bB>q7vK_bE^=UO<5mF>M{K6t
z|H4|fMnFbzsJs&me!(E6K~0xbEr`Jh$NTci6Lz)Fr7EVaaJeNmvAr=mSR^8{!GfNe
zZ?y*bTc;i!;xbKfR>04RI9q(C-#a)XifWQcbfuxkvLY{stxI@G#<{_?n!W@O)bS2p
z5iZtu8)-@l`Pab;I#p>NzB-pMCRqLp+OB3r&u6kbs~p7PsfX&*Mt>FG=yExk!3g0>
zfX};n*W3xaJCD2Z?X^epPWG?PWtY1vs_1~d+`~t~mu-XhnNpv?+kmO74WIKHll7Zj
zzk?&g!A!$pSKQV0G^SwmttqDWR081`-Voh00$@JEC^aVXcbIqJjCoie%U~u%(ok6V
z7iq<_BDN9$oFi9kIWg<E&6;E(^jUb}hV*feMlrYs^<PHmZfDa+NIAygf8m_|mliVM
z{Fe6UQ3Vnk;4msTnbAI~T*6YMf>wa?&Q>3h>Oeuz+5ST@w@mNhj<E9qDePm43{<L8
z;H?L5Ow0CjqhESHVKU?5pHmjYe<t7Hi%4}4|8yaBiLrQkBxw3a;y@y&Y>@Ra(LWAA
zXDN!culgyH0%`-A$v#@#a^Gm`orc2rQ1;qW0k`(Y`j}Qxg&z7NDr9~m>$FX7?dxHs
z=ta0pkj-ZKByVP~v7QuVR>Q)*8inW<<?-lR`Eo+XJbM?0ObK?br_$b$3rW$Xy0nL*
zGXrlPQfha7m&XN-Qc>Oe&vc%a>!k(iQFjbSed`akp;5#)skuqbMvj@<M%H?-HZFLm
z{IFL}wn4NAcFaY72IqN-nY2K{cj@9!a8Oj=eSMR2uDDImU&h}x=P)3UbOmt(b0eki
zFL?zQNoupbM&pC=#=i%>jp2PNKT=}Q;EDi@BnB_SGq6UY162Z#CI)rAQGuA7gcYP_
z7w0Ayc1|sC(@f?<6f^L}Js9yLji6ggx1SLy9$7gOW3|$Bo0yO6(X|3886xpc*L7qp
zp@z6}&q@)FjIa>%<n(=Fc}dEOv)b5g-itgyRfb<u_ECSX&V<HFB|{#76XjkR2cs<;
z%u**H1JAJ~kvUOTFHZS4-WdO9pT##$)%bqma&a9y8t}Pu+|CoPCxZ+H0R}h4WZ+<1
z9f`rp-AK3*FW$MH4$~|*&mS%!8c9vRGE0<ndap>|I2GiV4|6l2B~DGY<kZm;$2PO_
zA8)hps`5X1n-JnRf5)Tq4Cy;XRrAy5@CB^Mj{TO&`ZKhNMvIMDWjpf|XU&`z25VV(
z^G^BL4Xk$UB(LYO%upiS5qi`(8<T_lBaKD(tDr1!Pe?cybFfc`TOcE$8d$qY@}j2x
zqO-P%oPl@dk_!uDtjcU@hn%EYmP9bs<?7TQmp(NFSDW!9s?-@uhnL|~w?l?@tc8z$
zCm7*n>)KiY2~sd|&$>$aZ}pSq^OzicTBSK?7tYIntbdl2m_foxADdmGvq^1{{a}z9
zbXV^4l1%3x(Gb_B*H~fODDs#frcN_o(ggB+Htyd(z7r{5zOUr}Jgz3OPAk|GfyHsN
zBs!mI-OS@oAQPsyN3-aLOm$MC??V@E_O&rHAvr)UZQ(3LJtpEzF?-CCeCAA~5<u!g
zYNnHI@H$sanH!(NUFUs!C+NO$V`<^f_1|1kOtBXW{m+jGFcf}nAqT7NIrC>qG^Y6H
zdWoWWf#kIV0ur|Wg61D9Gu%APRP!-)F~1dyr|!v=q58!~GXIIi-xdt5dvX?^FnpsF
z;&65Y0SAPse*nDHj{uzA24yabr?^3i3a{;g@vhp0!#%zVaHsYVtXhQX>ckDQAACtJ
zz3T(V8LJ7bZT=(w1D*NG|DWjGj@%-ytR@ny+g?{O+}8v`=W{~4W){j@nug4W1o*nj
z_Clq*diR<}c5$&S+CS`;Kc+1Td|L60s;>Y_5D`!z)9c!-ml(S9yW*4f&6Ks$M1<c<
z@Zi`p_@bz07c;*hlr<~)Xyp@=%F@Z0ef5xyRFquSILBi_*)u1h|0<6%iL@UEK-Fa?
zXk?6_yt*x^7$V1Hg|u90&272lj`<=Z;Z`G6T40LJ32-bfJ4+a})YqW<6wsxAUlrTP
zH8RwQ`&0S@QuRoV)dpr9s#_fL(NxQdM(dzhhezCMzEk4zZsAQ#Em((jQjI6Z)U|t3
z$tul`Qda!bk+_pao1HJqG<msq5h+zMSd>@IoTml3y=n}GiHtiD<>^c3co+@wGHWX&
z7eJTZN|cFKPbXG?T(UO5-9rRX_ujs9+i=_1p9I2@bg|!b?WJsh1Zxo&AuChGR$yQ8
zVQVQg!{pN#`8{LTH5Bq}uKF_^D%X{^;L7@+>KxT53Ommq9r_5aPD2o)(_8G8ThfOk
z$fEm_H0hs5y(TMLgk?;fX>0`qb!!68Ig)U!8_<+&qfXICxp-q2@U5sQY20E{_77jj
zF_1WDq(OnWu@`STs&cD~NSyzPaD|f&())q{`i!J3gbh|RWQNkA!`O2(j4D5scn119
z^^i<`Eu|zNbW19R5B=L2425`9g#yLGQ(mDy$(wnTS&05o+K~IoF&GyXhaY@i{@M8M
zOi^K8Lwp!h(t;S@(L#WnMr7!FO(7mE5-SCFofBi^KBFu%b%_59dueK)oUA*+`ky~<
z;;|~ocsL6V0nAoUvKq<RN_TQW{d{ilgk{au_)>DiXrJQ@y;KVzjO4W$ludrb9Vf;G
zQkLh<usTbwv3Sm%Ymj(uGrKe}zE55cDZI$xx@L~z6iIvh6jnT7bs4g!Jp7HY`(fe2
zj&cNAn$&rb>M2oZ%7nv*XUPs$NW6BtYs$>DmsJUs2o9tAQE{gSB_G^~w`{-1!ku{D
zS1}tylh5wU)km`w1~!L|jeJ<RM$b2&ZQTU!DmT&kqE%7+mKyk{sm<hwwGSroNO{+&
z<~rF$3KQbmN_cH)(H*Vi0}Rx54vNC{B0w6@|6o#Z98Z-p{{5D2ljw;HQVbj>nxu+0
z+UA|SdU~+w*c=($`egi9kdis;vpuJ1;GOybq$8|c7Q~;`!^>KqJN)Ns?BIRRX-)R?
zItp2TJfiSbq^a0uxyr|#s>#U;9qTuR^^}`*5Gy*TU^5A<W=>Cz%L}&rEfsVxY&)GM
zPvzmu#MRKo)KX^7;Log#D1a}#j>0%)#7@jrx}s6Fi$aO^K&}f2jR}3f*8C!L{QR4b
zs9s0w`UR}cYI4Z`!`;;>%}QZMCXY>T7n0MwrSRxsbVFY&42mYV5?@>V7b6l(e{*AJ
zC?X!|vynDga&wIVBObMTx{a_Bi)EOIvgE!%L3>gKFKyk`?wM#1x?=V^bZrj$aub?v
z^(oqaxJ<@*rm59jEVZhzUvV<jZ(ULjed`<WA4CLami)gF5llJxFlxvA6sHT!fcg_%
z?jHJKhUKz7>-WPVnoF?X`d?|Rh_AIMK7uj5=}bl*Nu?Mia5dCdv_>cJsrHg<!h2om
zf}p;_#9Um;{xv;&Y_!B(uPqQ_+!R~(3&BYFBRrqvh-=)anj#5-^IDCloBG22Jc@YM
z1%8Ls!ye5ihyj$<27_1m)-8Qq^`}u|Zq&8TP5bQf&IwAh5YUi|`E6rEz_O$B^hw7-
z_^7w|w~3*M`8#Xy1KdG>d%47@J1B1=BURT~>F&#m!>&KOPV-5{Z(?>F1B=sg8CC}?
zHpkj?4YK0<uNZ1ZVYgchI0A%!Y~4c~Sw&%`?2;qts7ebGzQcX+7E(|=_KQ|4tZOF8
zRru5qc%s^V?|O&39%1xiRoFp()HwwD0OtQ>>xPQTMCO7O<Efw&2qZZmSlUkx$P0Y2
zKP~HFyfMZ0uOC6(hy`oO>xBfV^B5aU3AwDHTVgvIkg(!xxf{;rsv(ti#zAPt^BTt`
z`AU<U6`}&xig#trgILfx6BD{8Zba8uN}jyWcE!)~X2;aeJuv9yw=bqmZfn4v@FU(B
zKGA9}GE7JPeCFKh4D8+X-~)g(&C*u+NJU7HYf4LV;jngAU$|F~`!>fO{yJ0vwmpUG
zZl+xPZI#H4q^sbow&OF!P2iB!pz?qoSI22$@sUXS#{1`3?6clRk15Az>U9hKdnxd`
z9t3T-BVYIbt*Lw5ZD1u2))wX&uDS1IFR_Bil&M+9_5Yuv`@Lm>N4Ey5q|9uVL)Xfr
zy8OP3c9P`H&rF$3ikaP}+M2SLS^o?tX({i{7j+td4~u7A<ZkLE39-9tc=Ia^YuX4M
zGT1<pW&JfcOzH$)AmdQ$H64FRRqBvXliW$Q!o$}koKpl$A2V#3M*HEJ^M;CLQydkf
z=fOFKSgdg2v$VPn&Y^&Htt{;FT;7?ycj5p%+IT2UoY|IlzZ@Fjp?^AKm7(w-RW%D+
zhW503m@D4qs;KVxaUZuhe--}Vp>%vsejaeYR27_Q1hP<9zxlTpLij(l&t+p0@&Ng$
z&<oGc!Q>+>!$YuO5KzfMdl)NoWu^n8h|#`$%ntP@H58TlcPte7Kbp7EN6#FukjEdS
zlM?W+D%~UzCZJ=I{(rQ6|H~teetiJY@N5LyFB)#I_|0fZGlyY;@XB9K1C;%2XA{rL
zwTllu=SY=W>1>gUiT^3Qn=+e<Q#6sy^$v7%B3W-aX8eKlUln5InEVhKdw!rs^hreP
zwO*GV<XdNZI<MVKx!ik2?&F8N%kAo6HtUX~{3|3XlXC!|rZWrdm5823PGkRjzimJa
z!obv}pHWE+D+|<|uQ?vF1bjv(fXSIlndfQK50vV5Sh!ScJwHF6pI2ux)*S&lFm8u3
zQwyZl`1&N72taJuFe6&6!@IX$H#)P2M-FWPbO)VQdpe!g3^d$wD>ZCDlWv)^OUD^G
zsUtlWa1NM?7gOX{Q<a46<I%zjmokbJ9fL>tJ4Wmby;G8Y638Sy(;`@m(n~_hB4I}i
z`$D+ruvD%10DPjfY@{t#n%Fhf-Yh(<VLuE0Xf*Ya_pe^%0DX8DYmAvYUu%<}ZL7um
zkT8a1JE|{lqP4Qz;RIxp1i!lt6Wv_CeV5!|YO|~i(2DcERZ0H{m9}RFFo5PL+JD0#
z%ms7lD7Mbmq3||*J1@T3=~E|7JA<V3@N<2bX}m{#?Jgy8F%`naU)5aVSZWC7`Q$u;
z)pEKiq4!`V@fg@f8;gSt#prXXQcZ2$GgpOOEu_S-O~E>{>~ZpYl#~}BC&6aMK0gpp
zazIS^*Qu4I$~D82M{Fl`$C%Q3D}3Wgc?@^7Jda|4;v6!3fmh;e{RgI7zwD>J1Arl%
z94!5>rB>dh)|Cvq&fWu*(pV2v6j?c@6_FysBlwz2+Zz5cCZZQCiMYp<NE=hI1$K}o
ze_DvhIEzE)%=gE*<){YHYV8xtrwp#&g>ChCMi=u>39;W^8OWGrR-=TK61>}>p$aM$
zhDctqK(7-^Y(f(`r@?1ffp4EFxn8#Rz5@VK%O1SdiE3ISBYR!^=+6PDHwW7E$rWo;
zQe_LpD#Zx8<?R)GBzNf8T!_=;s&M#=HN#t@ja=;oTNYG!$aeU=vHur)Zyi=;qjvk!
zEh$~n4bsxx-3=1bAxJk!2uQbtbazXqba$6@gEYc<Ccf{x;yY{YwfDErb@p|x^Cu`%
zLgu{hdyMfLk=c1YT;D|C&CGHut$%(#D3&yKOVEBZJgSf{Dv^9KTY*ha!Cp)6GYqpn
zXz4WBR5w85AIHTG@GIWn;$I@aSd}1buxA-$!~VRvNxs2<5*WcH3sFeW$vH}lgX4p}
zPeAC&E(#m0lDPdzGHe`<nroW<C6cs_7pz3#fnsgI0Ar%*IF{{#-@><U{keBV2Sx{P
zEdSX?TQDf-?VL>o&X+x{7~J?KH<JpqZ0cxv6a^N*S_b2Mu&kv28rn|}gwT{zhV%Ic
zzaIi=#4*ppXdYaUg_aA|o3Fh1y#%Z70lfM^$&vh#@Ws;iL8`mp2!gao2sz`;fqb9c
z4KFbsE~B;_bqnQL?O}{Hhdv3h47#jxKoj1|e~sjD^nO{6d_hxvbF=1hmXNrRVWV@K
ze-3Xt?WEk^8~SebohR=n2cwHw(a^J~W<}RjU_mQ7nD@x0@J>*(h7xZ%(3+&L6AQht
ztjvu{AiC6#8bR^Od2eKfZC-W}W$k2-m4Qk7?EZtbcI;U@#_g92+vKvbKnuECqW%A#
zKun=*NZxV)L{Q&_S^)C!Aaz=F)H)_Fm5#`ssi)5pkc1V57c)UIs2X3io+GjK;Qn%<
z{I+7>0V@V`|JUjtS=4GWv|~@e{L9q#^!MIh7M~82{01S!bM3t<$G_il%^S7Zz$Rm#
zx7=5tE%(8c-{{2HDM)SS6v4Zm2e!xWJ9O=rNu4)M88Ob~Wq|AVf#|B3mPDj%WnTT=
z21pxzUT|MJ@}c~aWw=Xt)^+RFK4TJ4!D`l~&_jk4kryN?Sa(_D>y7jLK;>I=u8~-H
zn|!h;;CMDNbBNeo8QVN_$6GZ>LX7GAgt^`_E^LK<dKjZ(?#n`xriGWS@^bt;!d$M)
zLaGKLz0s?2p?4(6nb}3kci7ZTgPutObhBo>Kd+`^sZ(eLfQ!c=J-D42Y6V{BueReu
ztxjrSI3}CZ8#?<+ylZ27q(nZJaV*|0K(_50#@eRNwg@{h`)TDPbNN!_`$pztwpES^
zX%wcba5MLaR(+KRhO<v}zyw?wTbLZto%6W}L-kl&p`nVkly`Yqs!GEzwOLEPE}lkV
zc_OqvIyOJ>zQJJ;Q8oP~H~#Ytgd;!X2<#={N_T|x??|mF#|wq7j{VN?4aZkq;kxed
zeTJ2fCJ2QoZWi5uPntp|s!nA(FgWS`ghUWmp&#Hb0QcgdHPxTYpB0DY?HUPVXnR`Y
zvrXo_H<WQikL5<?jTWFr>%{lv>Wd<>ucQ&wX;sRWHi^}=o0v}E*t`cv<W_@h?|&0T
z*rD7QpXe}%>o5UtuS&0^Muy}#E$K&b`aY0ltnjp9k5td;<6PE6RIiat3FdX(eFpG$
z+`z8<f~R+b5&W_hJ;RJ8GvnKL|6o%V-4$=knAsxlN13g{^!+Ue+yC9VET*;DtE<t?
zh#=b_Dmsy|ScfHk9v8HYScI$?Pz6RcXlS^?PmLwMzcmRaAjp;0SOhmFfDqd{V@cG0
z;sAw*`SOXb)8nHD3Rq3V%?sClOpQz%Ho8)sBqn!u)DqhPK?pN3Ek;E{tMx&-HVDY&
zcj|+hetJ{Ts_SqH9W)J|>ambT165#PlT;#absd>7sJJ^3dy0CDbP5;@b^{x7XxMsu
zynS<%sw#rm{obun<Q0CW>-&xgSJaXCVhRD~jk9NMx0L=5J=OuX`xvX?A4KTE!uyn3
zywydTA%~c=s2cgB`n0@LbIt?rJUFPTlk$t>&5UQrkKUnvm@x7QF;YF6ld7{r*`B@y
z6AOt$VUzB+YRdegdx&)WsgMLnOq(@iUTjEPk;?2RsU{1-tu2OE3vM+ex`s@8+gm#}
zXWx?9g4>;xKi)J6BhQz=w8dpN-Jrq10_nrAX3;5>xq&>q=fD`#uw;`2l9xLpNj=_s
z5&uz%>mo+VFo-je_NTYiL+75}leCY-A%B>wGw726n~k+;fL7A5Ej>r)j{9FS@l4wQ
zNm1m+#~H4Hm(^P_E3soje{AHRRw@_nX3LAtK1}v7even;hL#Kme_e-|io|NjSLli|
zR`qQoOLCl2Ld$v}pVHfx{B(@&#XLO8*9sruZ!<BxFg1f{=Bm3&WpEiMFU->nr{8s-
zIA^T0&ojIVW_+A-f)R;jMnj9nqUM7}(s*C$8oW!iM2pfA+9$&wNk#2w-<2J>kS$6Z
zI^_}TgqKE4AX6i=7FISIZ#6tadU(aD-|^UJd8+7S2qx~UuDDe3a!uh7N0lc~A=#RT
z>7}Yi)wDKEx`5oTG%2*vse2}R`99(3pPNs#WN*Z~&*XKe5cT*i-|dBoC3nh97H8|q
zQ1_^<sh73Z<{N#EUvwRd_wjEXg8x;waLJH<apbVRh_+GQ8%xdlrq#0E`Do$S{dHty
z@^|swV(Rg06(Rh5fkrap>>rtK#)!nY>lUvg!dLEil3&M7!w#CJ+2uo;PG_)YH+IA5
z9y3S#>m(v^xxXOo=u{urO_a~BaQ>*LoywY}J{9iuWAyY=ACdmGnDmoux_3iTrB>34
zFzMY1%2%4HPo#Q#_3cv`chnAVY4gM6oXeoy6@-I1QckskEQt(GL05oc@O|)4GOyT!
zAiNCG8JP=}JlWG!$FeAU0#N+gsbF>#!g2y91Tu9G6wlv7gd^}Z-s&->lJIX#WVS*3
zZ?aw$WHWWO3Et}EAuJyM2=BI2Wn~(BT325iv_S$>eCv%<bA-Gv7II4>9bO3w<!OHU
zbd!~j?%A-8N$P-FfVnS%iY!aXEi?^_V@pP#{!RaeyZgbK(nI)r{f{K#dX5DHmniZm
z@Gry@Vbz+iU$a-=e7>TusI{b05v3_ik+*Kr^t3AXQ(TVcbC3Hl??l;kM=j$nzv$*+
zAz5wu@y<b7WRZLjDWZIVf|8OEAhehuL7jBWja$uHz?`n{LN+U%uiSs&)~)VXH&&Jq
zM7G1kBTylN?g$upe1~*`HWKck5f0b9`*GW8nsg0}U)R>-Ym%VFoF4@>aGF)NBeqr&
z^>_CO;_QZiEEa2Q$OEk5u-;&TnVD@>o1`c&ZYrQsUwE>#?a&!v@$b&83M)I3$VJ(J
zB;%q;Qs`}!cPjxj`m^83u8JRm9C;cMf1)Ve$VyOYJv+lg&{vd1(v&xI6otRA3G=*H
zEV+BZ)CVp8f^)o>*!5exA%CTpYCl$m&r9Lv8I0|9&@*8_reRA5nH|`#VX$HjS9EY<
z`@OgIzUSU=?KB9<KcDRFo+h{6`l_zxLNRB^h&(|+uD(NP(PNr7Ya8&d97evJ`Z;hO
ztYa$?>~NrzjVC?b!7b;Nda~;e<&`EHVuJ^~JpR-O7PpF@m2y0-EzvCWMS%_D-Hg$g
zMX0mzJeGu=*7Ry>Ag!={(}_j#6Wik9Rz<t;lowE$HtlR=L#E`^0!jNrA?)l*(FZmy
z<DxExjn3pLmvcrhMl`<~Qvvt|GP6&LXw>@zP761cu(2!1+c<y9$XE403Yn~_26&Rk
zFc<bFrW3`sDk>NV;J60$!UFAJDVp_;{qy|1YSRQ+Db-Bh%TBBg+1v_1x6C%lbvs^s
z@4IjFT)pd^8EpIZFjYj=f$s9u_2e`h`FL#R^L_G(bua%%^pT%WK)W6%f6fmJAoEB1
z^-!6VZXv|xI%}&%&n^D%9qh;((nLX_1q`2y1j=|ZGf?X1t&q={<t#)zB(wSy25}{s
zrWlZ>Qw2kDQ*qp#T~bd0CAlI1yB>V#4PBf^ldwS?GP{Cp9Vnvv^2~U80pdHvGV`)S
zy`T$RF_BCqqh+`<iXZxwW*omC$9X=PHkGJ)6dGMI<REUWE%DoGhNVTvjj?||c0Agk
zy=Yh>l`Ykib9S1Gp{RmS-MbiXP3!{0e?4D~cvuoHy@PXc0E^T1h0L=4048KcK$=ig
zKz3gnk~i|f0SX6mg03^lF<QIo;pH9jEO)G4D;;6pX7!D)pE03KT-`2;(s;!5bZ@@k
zE?p_4lS{Jmpn2~;Owvraa<+hWooj={2EjswiDI^SgSGeA^*7VF>=OhnI<R^3sb!jG
z7W$AOIN&I7ZHKAbBA=a~%_+{*=EC(Da#O6QL2PjTMw2Ks;;EYH@lqh|PC`-uhw$mw
z4!^=Sp8}C<I#JLP?pm3LRQzfG+a!v7*4N9gYcW#LKTC5MCo^jRcq-&?3+xXPm`QS!
zc<o4!zw$?4h8aikK+FF8IJJeD5(_qM+vo=fyw?cd7Dy(ch?3#aZ{d-PmK`Ah1^F2B
z56zeCsRiVC_Yc7M_aboK!7SzDq$qGK0f<~32CqP;mvxl?xg0KVgE-*yKEZv7|NCL!
z_O1b;tLM@Nl2d|{QK!Ow-ncUq^uVkEQJy@f`-1zg#?Q~#Z9z8wC|prVOOQM{1xscm
zOSY<i7V!Gnb3a5vUK^IodQhI88Y|FrA@!l=`TZ`zKqPiT2G6~Fh7HIi{D{vcszl=k
z2w0QnX+tYz%?yOYM#c^egxKc<*QY1C*RyK+1qYb;eI|Z`W<?*u!lgD>YJ0v7(s1Nq
zs1RV*aMCvAEfMx1b^N!K<opKlZ*qX^PJZPJJ%=#(zNf;hIL6ybz9R-bb2J_FJhxxb
zQ2^}%Wa>TTsys3}Qzf7zhw?Af8|<C+9{cGxH+EKx!aqMtUrDwO^#<$jZwg+Nh0(Vg
z^1&38i8dr~ENVksKx$Agkz~5gZjVj^|H{7}HUc^PQO$p{_j3_e-O)R7Ec};cBo{mF
z=>YF!%KB~ZdC9#fOktdRM8auHky*d|RNkAkLwbTsU5Xbq2}s7KUUBG_o#EVH)hxm!
zeW`j`PD97PSQk)+^Qec_Ey+U^Ei-w~-k-O<`Rb{8p27Gl+RaR$weBDhyT|$UQd1p3
zjdFZ%=PMr}ulJ>ETiSpu<A<t<P7pN(K`xBj6gq8_?iaBO)*8s#4<RjVnyRyE8Z`8d
zv1VgwQ@tCJU#Lcz$z_p<Ir|#WgVUqkh1m#tBeE)){)>?OdiZZba$DzLLNYnIw;|sf
zHJTv;xVH3JwT5imvP&p%*%{}2=S(--%`J>yA`%gdU~s?J`@8i5%%dNle#L0#O6gg#
zEBJyIFu$@-t?rinB~J9iz10p9P(=dhrfdl=rv6>^0=@J|<bd5;{N5r{qm;@rv|3q+
zWM!|$e)d#RX&44IW@>ni%rvS~WJ5D5>M|$vK7zv|p**xk9mu=1%3Y`P$g+)ARX#W=
zfB)PweGsT#d!*-~oLc<3S;;#Hm&S6tI=F;q*1_o~Tina00fmYSJn0#wmPb{r;rG@&
zG)%C`Y~_n6rLS-oGl5*IXx?I=?vdcW;7}cZ+fA`T4`OV@zm<<wWdD?p0k6C3$TH~6
z<fNRi{#U5hcnXU+5nJF8bwO%p7vMsPj0jf=r=czeOQPXmGq^aD*NHn##!`A*%%_%B
zvqghVk8N=Y-XX-@BIeQdywHxCm0r%+k|B+(xeAHph8<MSO1!9nku@Yz?xU@^-+OR<
z64_{nBdENt<fh`xMJivz$ok8B%~tdu2+03#zkXE+?AI7EKuYbe{W|8?JrzgWOZP}n
zg0NTqT>Idnk1^O&73@(X;94B9R4S^P&P6oij%;0UaplEy;HY1K63alCm^3H|T^Y-x
zW|J=}f6=IXhJ$of<r5BI>g4NM+GSYE2lV&u6wA5OgFa3N;s<6Zv%gEHh*HuY34<p4
zHV5D9`g?1(FAGRL+M?46%`&9~k)nze{4)SMAmEiP$B<6D>vYcAuMr<#mn$)XFSf=t
z(_J2N?u{x)Q{7*AbiFPob9QoF*-D8;Yld5Y(N16@8QC!R@@*x<2J0KvB2f<e7Lv+a
zD@WE=Vq1x?Mc`{D1bq>23pI7LMP*P@SlsXTrQ#S?l49jQWp|>fhF_R%6^TpxET651
zvTt<2V-j)d<rLeZ>bT&aYg&iYW{m=|k|O*ZRdJUI5E)KpSKrv8QXLU(db<x9+@Tu7
zEiF@B*dYcxL_%G4Ps=}Z`|p<B1&{1N8^jE=XMM6#Pif|cc^0!WY@=CQ(1;_{%sQbo
zFq$_v^VYuz@}-haj&9gt($bYs<!fc8uR%QtS*h}RYEZkxfl>xm>?mt4T)+?>3Oaz;
z`<C*8nG;4Mxo$;dTyi>7vTXjpAOst~NoO%+Mt4+)c3@B<&FzXo@5%pcdN0_>auVen
znbiCbVP0VoP?*>EsYBGrjbA6JOJdjlFH>@b13*=p8-lBTowDrSbk)$Kd!n*%?zykm
zK{Bwf&n0@P<T=J298@>A$GFD_PpB$Q(;wD28H7%fk9B-eYzff4D#PsG{e<(BdEPk*
z&_FvUbTPw+9<k`otn3n~{mr`#6$}AEC)eHD<C{;UKQOKosAsifdVQTi-&4K;Oz@vA
z;H9i3jh<tKfdTOQI<y$UC+(9(T+`cbJLLWPJvC4{$4<p>nx(fF!Nr2L);GGAX<i&1
z{>(;9z01}Z7-VFKDeRj3ZRNh~oS)nqko=-ZdqUl@qO63Ahv_4{wY_`V;PN@2i&B{K
zanQH}tni>Z6em$@XK~M0i+y*ffUy!Bkba5i{raP_XJ4VyA7&33OjxjiwBH^svftXT
zf2wyTUyjOHALXUs&3k6!>WU_>PdPo%=4j!Hd!(U`xvLNu^}OeW5GuD6vv}UmE1yK$
zAVc2UyQ<Y=lOi|XL&{>>@lu#2KC%Hv`v0={LAxfORhJlvz}$4NJ<!;Cng7BVs70ng
zp&Ba~%hp5t_+EaF`$x5`wz}bT2&Z266}<|DBASuhhEn$o2Fq$h<Hv!IoIXRvRsAEO
zQ7bo`0x8K#myNFQ(5Zv832#A&B@95GIU!Fj&fsU;Z8Q!(FDW}JB@E?VWd($fK?Po@
z2*L)dwwpBPkF5<Q=gGYeM2$WjtNa>1UqgZs`rC)c6CY3PzOt<vTs<%}WU#%-<3;d?
zPy029vqF}Ne_e)$*74ip`^#w>a;XxGn6bV^K{jKJwYD0HVkSX+|L7w_sHCEu!nGhB
zPK9uOn3cA$Q0-OgN2I?6dI9B^czxHf`c#P1Cjtiw@cEi7@--YZ?`KQ;-Kr*Y8ivl+
zo_+d7d#$nzsJ_gXh;dPQHAO(QDyN<COKt#n?suuo05*#N=e3N}iwx>6bXqXufx^9M
zlxE$v*I(!Oi%byb1Q1B{58y9AJ9X%f(25mTDM0$R{#xPGXNFs(&yJm(1@`kc*@`bx
zB%L(WPGa>)b+uo1S=49ll~KHR+aU)aBDpeq!N!=uT~V5Vs7Vwr6RQ0^Cr_6c_sDrX
zoxWXGoFc1m)~jj_R=ZZ(X(}}5@ph&7)@<1Ph-i+rh<Q{qf80F|Hjt6`F-d=o3$L}`
zaPYl_+HK*eA*zq6DXuTn*=VuF+|5oyf9to*`%&b(LEajjBi0{_k38~ePc4w$jraY>
z?C!qzN5Dd>Jhaw5R^7B2z?pp%NYQ-y00b0M>{1cDl(?sOzs+wq&+sdEN2*yN;vhQq
zIu0&FER&SD)AuwMuuJnnNzWN8-9asA4&MnK1oR=W7`=0P%Vj)q1ZiCd4I9xqlHmkg
z8x_@t3#=NZ`rc|BsommZy#FSaq}}x8aKC~=#suTd<W9C1Q!qHk+bT2cIW7G75$5e#
zl-J(u5>vLbFVIVU;<!I~Cr#DDxDwrN!M&!<(Fh>fBQ16M-Wn)OAftKt`BEYZAj-D(
zf0}O*DRTycTWO`7^(&{kf2yrm+?*yMfvjGUDGE@4=@R8l1E(>vq~f5!iMRgFVq6C7
z4@0s_O}?W?t#_&qd6+YtBl_rz+}>y2Ow!AG-Ckq-_iCxc0JF!|@2y>-@0yq0<xY1{
zgn)t+5Ci7%rF*-uK@y0QFN|vPC8lw2>8Hz~ukSO97YZI<_zoHZw4n@{|Nrsc|EJ=;
zELv;l$@@!2#zjln%xf#`(?W=Bvs`v9>$ElabWOH8_I+tRz~(b0p(JRm&xNOHRPa_6
z=4HWRDB!!OzW*>}Bm?}v$?YiGmsr%{k-QD5X1M==9<WumUhLc(LFjS2mDn<6_mP3t
zG)hwcJTUO9&(Qgl$f;J<1NflIc2e*OEYF?u`inIG`msoTUXbTDpMTlsyH@(w!{Pc*
z;X2=qJQj2sUz^)k&|}Oh-F~vl*EeXnQ@;Jl>M&OZU(Q1hEn3->+W8~W8S6$?yL6r=
z$0>cIA_p1|=3DjV3<6T;08*84uL+y6xUm=SC-)U02;O@93-{jsd=a*EE`ISUtk#<}
zrfJWPW?F6s-VOc=*B0ZcV?xeov*sU4p0?OQ?IxA}Ni9vWEltCFS2CV4F@K{Fv0!`}
zW(o|W{yV9)<bAKB$|eX;qibL$VPq9&$yNp;S^^<m)TnU&Vu!}k{!Us7fKFU64P|NL
z3%{7b&LeECvIM(q-&}Bf7>yZw?YJD#$`Wk?0uT0ZgY$=(8!W5;pBwFkxeMeD*2EZ3
zk<cQxkm2RfxWfZ?qR1_oeJg9_f=7@W@%9h>cE;ehe(U~q%Bj+c5qM(xe*MoBq!b!}
zf<z};Cz?x)hjz&$%H9}X`%U|kdxrBT=6o!p%fh6gi4${*+Ii2;O6#ErY95r~L_GKq
zAOlvdiNFfmS-#_hd2AkJb+p>DK;oyJb0GM{+<t0>eb6O^BIz8bQh88RlwgO`DE`?=
zy$pg+MuHHZ>plJ8<Y>5M_LO~bde7))w8rOfONwlF;=Lvr1-n@ymmzQ+dh%sHvTqjl
zhY-CB6QtVibMvDp8YSxs7%6R(=aN=mwSz&CU5*k56Bk8d8c%M4bUTY1J-iKv$Xu#1
zODGWsrzEB(k7zk-dwLyAgZUWr_(h(g&j?Oa&|Vt=cTL$!wUi_0{vaYYuOII8ht#rX
zUt@LW6TH^qO6_l87MIHvsuoI7l)C%X+!d0tW5d>x)xl8VDCTtP2HyL5F?ICWcV7;<
zj$S1fqZi1Rv^D&)d85vk`i|nqkh}&KP9~IL2GxQgUrzmvO3UL*J_K690*(|Aj!0LQ
z#oVNd4fCoVw341r5>oaQz2^WexAs1U;DZLPa1&gn6V5TJ;}hEQ)+%~BQH?L4zQA17
z55_i#X>Y%bDki*MEC}AojR9<;{V1!qSGUKLLp!W~?^3-!t_7aTZ)^JTd|~{AKsIQZ
zns;HTz2tFxHO||5Jc$dBtKacKIw6+7!9@)@1U<BmsCD8u#OYIt-^jQd&3o)U2P|}(
zZ?k}oJLfK^(?x4Yk(L_*RS?8D3O=Ecu_XL{k?ya6Z&nJ;GpgI0uKQ1LlN=RXo5;pZ
zi9N`pj8uHSj_Ijw|0lPpC3ZS>rE?xSzQ)4|Q>JX^L#n|a*d|)mIDkZJzxsYKJTv3K
zt&(x3o^3&ib*O63PXuN{45n87rPN}svET~hTT4iXlC?Knf?+HgHHi5VtFd(#L?7wi
zc0bX+4myw`#bI}$YHx6&E-j#dWV%Hbmg->>+_#j(C^mGtqBmp%#lo?T#LEj=R@M%6
zJ?`|50jFpkev*KU3i5lXkok&%=q08a%o!pv`}h>b_FR&mp<}6**th6w`%qg0yJ+_1
zd*XT)sx8hWp1bA6L<4l%=9nq3yuB_>5(X90?O6Y}CVD5koxwtp?TjQSN~+$a+B>nP
z1m&;4by^p<=Z;zzXKaD`QK9L>5;!&7%x0t?-x5P1xmdX0DI)u3kE|<os{Nh3pKmK6
zCTscLq*XR#y5UYw!m7_HQT<TLuL=t85Gg{q^giM^V7Dcg(7>4>W8@&yu@38QjKotT
zP3fK(a^c#8eDQ`Fl;;IU8y-{7v(6Ep-w5Yg*WH&Z#=CT3fyQ#&FG_%ab~y{D$kzt(
zV(A!_qC#E^HSNRD#E+-Nl_e&QwS1odAkw5o!_kBgKTN64xkX9?evmVv$5N&-|Fy>^
zPbuV@s2#P8ch*6Vv7R!p!?e$pQCmGE9fZz_**}|{d+6=vwQ>4YXb+8&F>y1D1#hCO
z>R@potDKecI9`!ihTW*u%_-loPb4Y;*68@5qU#JU;ztcXv|Cyoo873-Itu~=Enps6
z!jV2bY`aM`FAX`vY%<9oVIuTAa^&I{e~7KHXNT0B1AL+eq%QQ}6XWhtxgGe^N<oPi
zqj<U3hy-QyOo9*$x}{r*LHx}o^Ny7gt0PG7oghRGxJXBGiJg9O7;5N#zzVFN)paT4
zm;0tqFgCaXK8vo;_o302-OWR4nLNx)9g{A)Wdm<x|L43+U@+dI{5R{-Z4;~u$J%r2
zp)WZtNPt!PkV)xt5h1|5KI&-ZCeEOaKKB!+akJr6jSWldAY^72{nq$^#ObK7YawSM
zMHoxV3J31lWRF!qaE;DnzrYj`9^t~~)6KAU^lO^fN28DAKE9J78+jM3cr&A#Hp(gl
zorW+Wj=Gagxy_N{h{$`V;zP*19N^>PyYX}^uiI6@N|DF7A-1+vJCWL|g;*Y#ZP)aJ
z)8_*8+QX6H+fT!e^v>NU+#tPnGMAActAsdS<gN7Vs5GtiPQeMGuJSJ#vOl-y-OqXM
z^^a<5RO~?H@sFSD+=DV`b><>Y0MuHj_V-$u$&cPSwr?eSeGkzCI-wvZER`rEE*zaS
z>&}A?(l}mh(LxDw+jd|m>vSMFIAU(%EVJMqUy*cvonzj`6YExO*HP1;HDVGgaZS2b
zp>^}z@@X?4M8v_=E+L)E%`6sY`H|5z*Tzcqh0$@$yBMZd16$&V@U1p7af93(!snj#
zc^XZQ?TYiHU_VzIds7+QV!PnQSiWCb3nIh@XTfH%UP9w2{|&`fx&FVW*g8*B&F$~c
z!3`A&nTh`@-Eg3r1TR_MePN6We}vn>-QeY0%Wycck&0HEWqU}5vUJdb^-K6oj6_s-
zaM(Qhe)brRI4|K@a2tO{pi6>TZ;h`GS)^x?@6>qD8=hH+p0=MtDfe?9B7nu66rH;8
zkHtOojZ}DMdp^S$@0MGLe2ck~H;!q0VK}&3lRrkM@6;GWk|)8cuWXK>_a;`}q3BT{
zqR%Sh8}Y;iY<A57zu5ga8Xn4euPBCl$H4Z$Pha0bQ^E6cFlxj@N&q;)b)4H(Ch^KC
zIB$#3$hqIi%aDIA%8-v=r^}&5n?0WCL?~XX>S2_dQvn!`f*%SsYprP&uG{YG2dEd-
z$%pW`t1-sjOAF>c%R(`NFy`KpOe01e?NdV=tP9ocK=eZvEjP!O8+6exZGjPX(zx1H
z8hJOH44}v9_qc3!j&ezczr5HVq<LWzOAk`d6O)n}9QTx?m{FTyjU~$U@^RaPvr$gP
z`#nxZ_udb~1V>5{f^#*i?Gj|tNBx8QTlDlN3g&*%I#KqR#MqIS5k#&bZbC-)!h~dt
zSA`fFe4`~YGZgs8l<z1O@X*smkmP~i4F@8M709Np8wwQic-1DNe?z@WzZ&I$+~2>x
z0q$>&EM|wd&WhV(f11A?1g4L68BwE|{m>`k)TgVMQ(n%ARmU~NPQ9T4xMx2_PTGam
zcZ8H$$wKthFKJ#PM$;(i`apd41514M1{^j=z%ji1CyY~%ziXpVnLlysCRVr3neJXS
zTRND4{zVLACrthw@5DGX{OL+fue^3eT(&#IOU+m%!%agI=FWIc3WJyD3Kp`A@r;^0
z(kIw0(L^IF{?Yn)*Ni>FC)uuAOo84`b5@iO)A%pkuW$Jl*w&tk_92S89pSThnR6lO
z{g>McQv&nF3})68nw2@BeFn+Ml{wWgL&<>xfO5b3dUg0Mdv@u*ThmHcs#x2J9XGR*
zQ5uD*K3r1OfSF)!n}@lNQg*N(K4)O61*-ML{$g<3M_dd!m(O!s_C9jl+aJtw(450U
z4oKZ9>*=ijh`z$;A~f0Fx*(r{3p_o(IftEnW&FzZq=oZ(`^9#Dr4AB3rP0P?YE0gh
zjz9mqZ&3|_FWLc|j}Ze)q+?2*uK!D<2KQDd8SjRx8;S(3th(2f*Kb%SPK|>LC$t17
zndRouJd$wVo^wR$H%M9^e1NDJxX@CXkhptrg4fLAm)pTxoRqW8FCZep42+q3c_U?+
zzGVHu#*?_7Y1BYb$F096Fp@y~)dz}oewQ*}eHq;0+0P1jL$0c@RQ%e&aWeSnT;vUK
zwf!g!$g;Z*+oq!q?X>ZfhSFIFy8Co+PH0$RB}Hssa&R)&mrxS$M8Fb$kRIpg$_>s;
z;Jd96DC(G~7?N`-sNlV?lx~VcI!~X4dkq7j>z@Hd5QYA8OXKAiL&C13#~XvdS2v#*
zw{Ew8G9=16H(-;}DpT$(cB~yzN`KfeZnP1-*8H-UOi`w9tz`a+P+N4g=lnx2wVTqU
zn^OQCXExHW7O>M|(`F&8(^r`f6N>qvT2m_bsCU!g#5FEApOi6t)x-t%A-;-16s$$b
zd_y34ks}4hQf)vEosqpGiY`gVx2Q}zf$+-Mj5DN$Ss;FeAUY4{gF}IQ7<p`LHL29#
zJpBZO4byHJqbGPzD7Hd@9#7`eUi<kMN#z>IclnUJxU(T_5;FmXZ(|;XA5K<j8{E^x
z6(sCF>wBL#JYbw@G?nqU{;;p$eM$IaX7F&}!+jYU<^7ub@qW}ReaIu7_mr0p=^N{5
z(&ryqouci+-jQNMOp|z;W~q_L3=?lIl9)BXg*x&6?}gtt;veg1eq~@z+j9E?y6+_T
zv+kQjtx==!vKJ8vP=3Jx<u?!Ve_r{G6Cis=CL1C=LVyEmEWFQe^ZoxQIsC`Jgi*BM
zWYBizq0s)s&iZV8Hxs^VA(Yg!_gVywo8g04*1A_o6(A>m9})@qDsnS-6t`rJr)Rj%
zb5s}xEoLECfQ9L@;}gzgU%dt|iR`n0`~gnt$Y^`$u9#})$LO)=1OWr+{e8=s`RnmO
zEfP^ByWA-OgWFbtgmu73i`8I_Csp;oMx6c28;FZPjWcCS;F&lanu16_V5uK4Ge~)T
z0I&f{LH6}I1aR%`74=HymZS=X()dAXJj(Jc3|59|<Yb~T8dt<$yE{CEXm76y6|TS9
zC+tvpTre1sy-X#{8z|eOj!eA?ylnb95{dmR|DJHr)f4i#)Isx8)#=fvhjs-72)?eh
zy1iLI`NEHi4^#zqP~Cr_a3)Xn75jx?bagC$b<B~!$aLfY!&Vj8JZTux|4s);B4B<P
z`JN>{`%bd<Nat=~Jg8;u$S+$Y+b4eQCv$dDpp8dzbPr6RRo??wh1rocIXnJbCGP=$
zv=D7>dNze;`My>aMlFpz6%V2WpN14<DMeS37IALCm-pEtW@-zh=xhCzNX<qyl=wwb
zKxIZ2Lw&5T<#pKVW$Ode2o-SxZvhbaUYU<9Kf2ozt0es0J4Haagr5;hR<bw67Cao^
zDlXVxDDH|Rg!x8V5C0GD*S48CtmO{6hhbu2S#g=N<}T%E22WvR4>7w!y0K&u4!<p`
z_5MSqpdVAkMYj2?z7y2xT~nu^$iHp_TIYY=29_2p{<;m^3iG>J{qML81m24{HcunP
zuK0;wHfyKlehght3{FtlQAe1CCYnxd9APu%sL?1+cXuu&i7AVnB90yh!I6<y9|@{o
zM@{X70vz8!{o3>bnh|N}K-c`q?|NM#V(j>WlFFPPBa?&>P(qA_glA%Dk9igjwOVN>
zw7)H+-*PN_9KRmt9egevV#U%Z$JU;%b2*Z-FJn0uzr{7pDM%hAsyfykoF1Q4R6e8?
z=oqo0){?lqQ_*7UsyxbRCNP<3wiT%HH?a=BvzEt5w#C=SeL8=P-+G#YS~Xfc;Bz@%
zTJH+(37Ylz^<8rOiOb;3t_^z;e6Q?g#7@$NQ|@t_lsSiqV?3_@{zs3tH_^1~)<<1{
zcwByU-`3AJ4_kN~dvXQ^eeU@LnE)w&mQL+Q*mpjbP3ztDnQfSL*P-*<+`1y=8LQ<k
zy<BY;UhD4pu1vOt9)|h5pIai@htt{R93sweQ=)u`a&&sM$T?{li^X<?2l{$FP%%Xl
zt?1aFNQ+3=X~!=1ukgk$n*~>u=jgOEi{aU6achRo>kbBIzYAtK@4;sBGte^OMm<oE
zYnB?_rJG>JavHc}{=9^GrBGpCY!&#Xd+fGx8~@Oq+|B&grOh}VP6q2VT^7D^Bczkr
zEX>E|1BlrR*1qYlEf43TOT1pK4i?&5TnTqV+Wn*DEZMUMk6Qf`Ctvev`r0wrAV&*D
zmJ#0-d2|#coV46sB-R?y+@-!A_YwF7TLacL-*Iz3`W7-`%Y(~ODQL*jZ$Jsc9AZ^<
zF^e5xOs#9DeKEMZ9<m(yp{{h4>2Y60d+FCvq{|bxkw);2UMnuE*-T{Xqr`~^|BH^U
zu)jgBtfYV>@TU_MkeAu@Guj`wr_}+2HRqr4x!oZEOM~cds;|z-HOT+1)67hjTI`})
zqVvxn=17n<-%xmvS8B2+JpJ3_?6u8ruCe?om!&b5<12BQrtmeMOjxb<rveTMXSk@8
zw7vtRTGC_unh!D9Hgb7b=){Rs`+`azVt&_j$s0)}F(9M$75!Tc_#6Raa0Vb+DH~!B
z(rb5r_dO+hXM^$@#^fkV)<#f#3hS)cx-$3FDu?MS{U|40GCP%ylkP(~1lhTo4!r`6
z<adT6;w^pO=NNHC;Zt`p$x?^lM+3(yfUJ!22$t5bSPo#(HB`RuFUHHG@^xuT1Q8TP
zQlFl1cL%fb%$|QTVCH(clrJ?5RLsGTXeo5z16Vw2ha&K<4LsXZF$SMKfKkP(Ton8}
zJKWzRZ-7nDOe2yb8FZ->jR2xtNk;cb6=_JL$CQMpwNlND5jyn(DJui7(~!2Q>ADAz
zK`MbGR=p)B7M&zYD%TDrGgyV>3LJRuVu)`E)X@{*E=-1a^T6>(W9n0lNB2v?Q3_Me
zaNyM-&;)w9IPl|urK>kpcuU2%_*O+hV%@@WOi|69Y9B9LI@At2vn;RAG!#om)_Dg<
z3!7LUS`;h>FR*{q>idht^`$t#4G9AfFXsD$G46bWka#`X(=^*Re=fj)e2j;1RsPTN
zF&#(Sl&q$LWi;KOuDue(+lG=c*^k1kj*ueUFeZtwUQ*&jsfW>mRhKU4Wf{#6;J5N<
zDOvFisKNO<E)`8cm%fD&cz~$`Fd4f~6R5Cl&i0Uwd46DNV5O{#R-bnxgnt&;70ME{
z%6I{Fd8#QuB@?*^<|KMl<80~1X_0V3Z)8?i$@{bUINBkI|3F_RX^G`xqkRk*7#?4@
zFJJd&MPoTLAVP#0qW79n=I1FWHYR&r43ma?S)DXks*0jZ&^W~QN!0cVf*E=&@-VIP
zhnOR_dAg$iCv7FpD<vvq$h$=kNzM>ajzZYZ-#cmp;Be8_^~LggE$Ch3ri=4?Pu(P-
zmkH4yap(j4FDc`~D9dzLC<<U*mHPxhqs3A|bv1ZkU-Eg0Ckn9{22eh}k+VVSTf|I7
zg~<t$X9aDm<{Cl~s}0bFGLF4xl#T~{41^dchhu>2*f9^hBA@DguPRe2MlJF;r->?r
zV)^Dh(mJzbTE9?KD|DaCw#$H_`t0M3^R;2(iz4f)YSJ9e$Kg>^Q`HtmePQsOs!$4?
z@GZ3msNeNIv;`<r)%Lx}TUvU6M)T6G)$FEdIq|D290AY!S?@C*8@RTA(w?Q3>;Pk)
z!ChOM*Mz6f{6+nm{{)w?7Jlb%tFV#*UBN$br1AVLPE@`=oLHE_OP4T&Pc1&Djf+h^
z>aVEz;nvv33XmBxGqjz2bH>(`=k23|#r-t>5u^uB5i%*b|Da4s>4z%74Z;Efbe;gn
zHB4qXCJR$g!ZHXXSq>IlyS>%iC^DM_MZZHyOR8wA4Su&)ev3V<EbRP;YdDGHz2c3V
zV%$mG0AsO)J(O01X2`}J##<z)2B;4BH?MyAo%hDAWRz*5Dsc9xop!k_`Ik|TsJCUS
zW$|Sq9ge~J_>PzqIGgn%kbEz}nDPjKDfn0q`~(Wzr*%z2A;^DNGr5%R*!QW3o*nHr
zrS0=17pCl@;ER?_oFp!TNYhMtCxYil9V-E{eQx2c0i6!&QFaOCFP(*124dx_x-=4X
zP!LaEJAIIeujLKHz7M+WwmJ~TX!=v7J|B3bW%F^o?kcCq7hq9H`W!&-<e58!9dpj6
z*LdE~NKuuQHs{Qwy|Ngu!Sw~yk8@Z-S&ALWSpeJB>G&t;>DZc!$2<w`(;sa;e}bMe
zazH9|#T+)GS?m7nmA?!XR@<=C2<E^Gga0O9dU#=Nm);*<_27LEdPdO~rP=p|(H&(A
z#aV*HYYt%r8P4qU(}oCW^H3u{Z_QT+GvAGkP}uS0Y#Fz=>8apF1*Nie$#?^Mp#LIw
zAIm*y3j+W0)*@q9gPI3Z7HMFOCQ?2Y-zH~;7{Gt(P#DdcGMGuGf6gb@YT%E8sp>D0
zoei|lXmbk9LO13EX3>8mV`rz3Q3e|#r;W7#9GH@~4#H;LriJRE4u{KPR+(a4`_NR*
zkJ)Asco|-u*j*Q4(7YO^?1F7iTr+y*;f4YNAVC4{7VwVymHp9>7lc0PF`txOT)^tv
zYkEWwD9%7I<~_mvybqJBm5>n623b^cYq&jZxaXZE``>rVGV8Sk`NR-_cB~Jl&mZzX
z+e#bd?RPpj(s8lO33ryqhklzneeHAn?5dqieQSB$K`buqee6BT_oeNos}#kSd^1na
z3-*AU=)U=#`Xypyx0v`R&*#sy1-`)fMO({Nq}|gxu|}`YR;7IGg+R)X0m){-&&LDJ
zfziiHhl#q)mM5EG5iXyfzJ1{!@9rcHXgj^SvufKHP=1h1y{`Z9%gLnqYmU<d;Zy4;
z*G)-jk<}7`yUC(RPA@Jj=;!a~qvVS6?HUT%+BAIO{jXUmQQ~Ai`Nq&s#Zg0-G52?p
z9`Z}Oc0TG4eG!{qf4+ze=>j=|lcfO7xt!qgQ}}DKEN3Rp27pxFWv_G{Jp$oiAb?9m
z!YLlIv)V_MZ|-gqmvq->_lVA-S`rdGv{A7r`7cpY;Y~<2%c?H0j6nI13#x*Ml$1zh
zm3@tgR%4wTig~H7`UGl1Bb8DUA|H^{ZvC1^y2dIG)7xLmeD{rC8m6~z4X$>T6Z!sW
za`O7=?qdoY6-x`)xYMyi=!=X$+Hi7xLBZvh8h{I0HVr`Q0{xKBayj_7aNsGKi3e7L
z-`)p`Q{ZlO?~xh<Tp-ft*vuj}k-p6LSCq{jS@e6j!EjlX_8lD|P}%Lu^0wnWMVY@c
z*+o&>?@Tf3kK^&l(*YQV22dZ+<nBh5;~g5ac=qfTh6kH%-H}|m^+%sfS#=1{tGX(_
zx8n%R4e?-?^uRSAph8VQ7zUIt)H<UG+`Hz?C0(n<+>oJj0yx01B(pHPxthnQq_)m#
z6UJ6z<aG-GGxQq~g(8%%n$I|F$XZg4rsz;K&Lt9u9#M3N&hw|WSN^xPm;P=RIvurs
zOfFr>MVUBEz%re;H|jOBXDZd)l$+8RtM{XduVwL;Afy{bd)6hUV_c@K;(4yWzOs7P
z#Wjz%lucdWQPuCoE;(0RcmsRp1Ta%~4gp{Q_C|btEsqIjSs?tEewnjxJqXySsjRQ)
zi})<G0>h~k5bZ5_wA6kMJDIkE=kRMxnF}zOlw69+*<-!ja?77|Mv{Kxas_hi=J^N#
zfpruvsqa_yIwLmn7~d;|(EHg?Qxu?4*2--o(9Y)~`?`FDCO?Pxe3Ac-urxjuO#M0M
z;>3-;bXN}Kr**}FA^V%3Hcj&8ZzVN{rO7u9%{PX@W02g{JGtF>pqy%vW*tg2>1#&q
z<3ma7@cle0xvOnfiZQJ(lD?L^=LE03Ua=C4(e}83?6hh5|7@p~_O;}RbFc)!!X1tN
z#`6eVn^IziRRFFm5b2w{na*as7kqWdeUOeV!1_;rZ@LpinA5C_-EQqsooemjXZ6)h
z?Miw!_>~EO(E&M5^LCSAraMOl>F1q`05($NWOJEn9K6ST+t+uV(~Jzv=c@v2cb2bQ
zm2kVQNR263n7;DnND-deVF$0FR+3N&-=Ox7V+Q^F6bApXr;hroLeo?M`h52#jC`9o
z6}oo=q1QVa`>X(<qO|JPZp9dgEi>@R;{54O#Tc39p(PNSe&eHFW|{L7NKcn(Li!73
zYH#J0rEFU$MGk<L6sTlFpgTZqN2>7ianA5gFkJ#j)gzzI+s}1`K71F_Kjx7wmV+}U
z{<{%|vt-G+WB{mfeG?80|Dmsb0K<JaBdy6=`*dm+(U&4KZb8Ii1z~u;7k0W!k6EWf
z3s<3%ruHv5J%a%BCeZSr;B&f%;{_|$yX*Bs0H*I#h^|}M(v2cchZQ~*12IYmiIGQW
zgUi{Tci8Wm7wnz?am`C-$R9N?u;y<3A0F4pM5#Nuzy3NH)C7MKHK72S@N;_-I(6$;
z%J`0x!u#1`6)Yw!i=&mPgK;TE0P|<GkuEMD#Huox|EufIQ^UP=O&q&l6EF$$3}v^f
zLo9T(&+5Xc7Bq2KCz&StYR4`{q+(h^1K$V%ET3~pQyI)V=NQTD9duK|w$sA7wa=(5
zJpN0sqx;lMjyF3c`zjH?@~6F)v6e*x;anpbk2wxJc?e%)>ue)@i|No~j2JB474p<2
z!gcuBNC<2jd31uncum6a^P=Yc-cNF-tfrbbW}>A9`1fP&83M*-bfjYD0g5>V9z{fO
z#FVCMuK>hr6KKXxZ5H#MhIt-=g&PBRxV6~yT&_Q(jwe5VVV?q0XA9QOX2lD#>%6}{
zedGW}-PwLGD&4If{&d3UcB<bHo)A5S{4mW}SMuu1fYT#jD;ww%7#%-P3m>|f7tC_5
z^*QUC*=+F=;eI;a_Ud*d#*KLO@t27zFQ-4!V#M{#Ll2qfhtRR8FXv$WTm=_LLD!#P
zRRMe|>8_bnQfUAi0NI6Y;DH!X1oCh<A^114NAyA=wYkym_iw|_T|YO<T^&bxBT)%|
zsR{76+&W7qz|*7uvnz$uHt;Eo0r;gj`Ut!H;FtPx)$*e^-G~)1bDDpf&T7`^ybGp)
zFnmU)l2)S|#DiLl@_p9`fuoKLU-Oh4=oq*iE&Ge<bZFGHu}D{V)H4%L>jU!#OpOMR
zpS<j{IRG?|DjU#K@rpNo^t93ms<8CEm+ZVq8}jwxvR*B}171DheuZ<9thjuTO`~eD
zzfLhy?jxR!ov(c5<YwobSmOR_Cvy8t1OiBd9gFo(PPwduH~wjf<nmf|U}N&g@tyA=
zDXzD-0h|UocKFJP#jlGV-*C03F_^)=V1@X{G??s4(T%gV{Hq?M$Ar^VS6O8c{08KS
zOr?7XT{?!HD>59LVl!fOL?-s2SzG5@Dd-|wza(dJqmF+U+UrV2t1KB7STD~m&f!Pp
z&ab_a;Ob3UO4&#$8ICmbRNfhgx(K{};=AMN7rt7&-jUowhWFP!0z+*k>=l@=rSu-2
zyq0*lYI9?HNE%9)!}2ut+(UW1?96}H>ruaH5Galc^{uJqNXPyB+v^9ncD+{_3*cT|
z#?Vjqo7W!Vz$@@mLXuCw=cgl-MQwf}cWy)VVS}}&GgzR&ka0p=%I8i`mtsXzh*Iix
zt;+4YomWrrZrVma7~1@vp)@Wjf3=guxPZC}QOSn{YXMM;P$#h}59rN@f0_e<!H;A8
zNeBj%bu#7nUuq{&D6pLM`t|*U?<1(L4|tfDB)?XWbIKZ8ZPvDTzrRD|VDymH1bs3l
zL8viyu=<3Ogyh=%t=}1*=e>`>HGP6OIq~kT=x2)`i*)Izl)ztwO6Cg4ac2Ht`fED&
z!?~FYzeNNV=>0#AL4X-|U^trlLJ7E=n;oXeID~grYTs$M#?JrC9>GmUNE^=SZ$01n
z0%vlnth7~oV9k2t8v9zT!agLbSOaZTAfKV5)_=_Ew8cc#>pEQ0-C?uIB>tr=2vmW1
zg%-c~2VSS$F+xIVQ*1qD*bDf{md8Fev;Pd%DXY*vsr^qwR!Z&PhAg9zdCjTaMx??z
zFBt=_g$nFuzW0viKg-cm`At=8D{PoptL8G^zepB<y(&oy&oPDMNibWcVv)?9`cM;a
zqQ)oVoW;?zXJWQqutRH+QEP(3dXOEbh+#W*TOzF^3c<^j;HU9<#zchOVyRNQX3H5}
z@yPqEX(jQg=k`Ze46M^$<PgvOS*>1MGj-j^^_AK!;k4|J_o$B2PWuxC99@71k0Kw>
zokf&potj-e?{^R3g0>EiB2VI+jIphg-Wt69f9=+A^OsA*hUVMcc>z^WryYSu1Qj-;
z(K^mWeXA_QL{q$ed;i?4!K3}VSA(Sbxq;CAy^(Sf7g$N}l4X3Hr8zd<{?NruW6}V{
zWMdpB*1iGP`v9c!v1VC3E)!h;fWTkprz<K!;g!X1@_NDetOq=b8hn?BpmY^uR>}*U
zTtTT{Xg@f{{*Sz#V>{GB7D6&F-aTvpn<A4eH%NmTpMBc(8qLpyUjcdD?ob1x9UuA1
z^LnN>fl3QHXq2wE<gZ;$Q=71-8u^5%(EhBnFec8f`#laOne7dwC!$;RX-TRV7|s8M
zEvaNLN=av%PZ^C9G_xQDFUlPJ;QP~W=>6LX)zo}wx6&y$?N)M-|L{%WhYETMcP@ou
z;O8bnlb?Xp%y#B!`NufOf=Go78V2JB&83p$mN=IjjQeUl0NXcH{P&uvf|yr~jx8_t
zhk%zf8g6N(pQut{)q+h+(usLU<zUHD`cPXxV)`iU>CJP31-C42l`iACLnh$jByc%$
znY&kpY4ZlZ@qp}c7tAKcNM(6m98=_d^O1A+bH4DZK2XUlHXfX+*!-~Q;{DW2STyl9
zC7s{pk5y~a(7A>Wq<f5C&ka7ZPh6RD&0j$<_5bcgY}x;#Ey7=VI?gRYP~44+3G4F@
zBPxPTt~+<Rv-<9DKu1_&xd~0^mt+9sHdw$9@4uj38*9DVDo^bMlH-de@x+2TD?|Tu
zt1S|WWH~Drdfaa=w?)iNue&AM$%~(o2A}|*2SZSpir%7<VPIz`^Kboz^5hTidF}?3
zH$>sj5K&AdDqg0U>A255OfUXB)aFBoWjuh|{F2|ZjIBo$#(-uLv<@8A)2RO8s2;1D
zQj|D>S&>LVDFV<mqm2ad*Fhx%l|i3hR=a+}Y&)HftGsh&Y#->Eex_-17lpc5d$-Qy
z9vYC16ho7nW>XXY_!^EeOk=h|J1n9U^nyL&TN%y=VFj%H(OrS>bJO&?<mx0fPWu}o
zWB|?+1xNcysuUenbR;>=DzVB}|IZ`1srJO=>Gz%^rqEQ&_KJoed{3o8gT}^(&qZdm
zY}@@ZbBe=(!-7W2L6XscXN43Kgz<<b4U1JRk0U47!c0rZ<k^n^%-(HxYZyL-#WuIW
z2@2i|W{nL8CUvjn7P=7q@yyTT;KQObJ~02bd%Ye-&x;<u@^cgmZ>K@S;N(l>7Nh;M
z0a5+ub7)GZJ+E%-c1cO`K>*z_4LCQvD-rB&N)5SU&Wpps|H|h9%1pgHRQXb~U}^ng
zz%ZyEs65fj`J>tp2dwQ1uR_}&;dKEruETq;D(Yecc5n038pof=<mX6i<b$GNftp(E
z=~#g`JItt7YIIh~bcOXO3plL0a^`88o|4JtCZv+)zwg$N3dR5BY)zYN2m6xHG%yUs
zC7-RPdNPvn{eGlA4O3H%WFGSG0{et1L^Duty@haLb2gNRjMzJK)d%?al<cle{jLBj
zQj?7~UM!@4oUmcjDjEiR?7zkDhq%ognMc-y<nomaV1EkH5wP2r(ie5HupfE8TSvE<
z6@0Y}c0`aC(OIaJrESNj<~dO}a%XucdhyJ#40J>sb*eINJU+%%GW996pAZbrr-FiC
z^%Ib8zg6+lqIK#u3wdAJF*y<4Nmjo>=7Y-;$4iiQFQ!8)hHnhBo?74p=P)ZZNL#{v
zmKQdc{;mj$R=7lp7jWVVZ!apjD7u|)M*@X=^IB*V_)pJ8^ZM9KnZ6&ideA?AKd1GE
z08QZJA26qaVf271!}RIemRgbM9gm>$1+UwX;Py&Lmm}=9$-E=%L^b{k%@L7nrkll`
z{S(#@co$%1k$JkVSNL+m<nf55tB9wpLiCCY)~R**l<3TN03cn;#{G?S*+j;sJ_C?0
z3I8Bnjsm31xL)Ha8}v~JN{E?5wjYu*)CKB9C;ge@J<p_ygerhkvGnFnu{Zd~Zs=9V
zM_Z!F*bN<<r1zLRwX5T_H3Xi>TW&Z<#0hW#?~FNUD#C`OJ=H9caBI8L2<aTd;Aw_*
zTK3=5ZIr60M+sh)qb-OLb=^xp2E+u5WcLC<OL_CcUBRFy9Aga?FIU;%NvKkhs3v5!
z@-JbsN?>;nL$&F>BnoIf_1P!RML?OdZI*yFYNd3Wfpg02kw9}&D`Y<_lm`Y2$qxG+
zI>MlqP^*QjZK7igVQb@(yQXV!VTw*s$(C009A^oYzDoMKoS^m@hl9jQf85i*$T@wv
zWAsFp4k<CGs#^|Am`uDD|J@Tnz_PXO<D*C6wHVc?`@1OM*xIkD-R$9?QchTp0L(J=
zqh}Z}&wrNx59WE7sIS?#|M5HzGpCgW(EK-qB^k>$B18MAc%lQZ>gxJOQ_!`<&4)>b
z?-g~eW*|u$Xuqrl`w$t|W(xMA&oDCN&uBD<S25?|M@{kU<XV(|G`iM|8&Z_4#R&+y
zBkMB@sq>0OtM&k(`@nkOC07P%pm6nMWmw-^EMiJ2PLWcHlZz%4MZ@~9uD>8i{?IE3
zpmvZH+6$Q8O-cVWwoE(&^-)d4|2;|HxY3*8l(^-YkzWDk<L3)JV1NKlzv#bN2>xk5
z`18%%lcU2lyDy?K?Z>b7N^-D!IGznP&*;hTq@(%Elo)<#l(B_J20TJ@NzKX4-H3aE
zd+-<A5~C@`D|cJ<-OSI^zFxEhOUtGz1h%$qH{WY4d_MQ1f&BEyGN1Etr%{R7xoani
z$dG0$(!{}eq2~{fgU@hY>k98`qm1IdLt))F^ys*Vy$J;VtWOqH{5aprQMnGgtTVBO
zrc?hB1YbyGlwq>iMGI;Ie%qZ~T<YuUCgAc&O??`$&bqNNz7A=&3&^k#``OiDw>~(X
zI*<LYE)7d~^_2xu;5#o~v+Nyhvq3L-EPf-)M_g*;K_NUE%PK^11#COY#A4v#Zd>MW
zLo)r9a1}Fb=>V-}^mvpxi~-)}J^`k<h}g#N=+ze0NZsM66lwzKlO_bZ2)7aq@><jO
z>)hmi6Dbkt75L(A;@tYrVPBzvh?G0v3MO~pSyoBPDF<)8|Dzoww%|!r%tBFbss`8b
ziyr+YS=kp<lpFKOmL#7&vkh(b#s7=Fw+xE2UDP#^;O_434#C~s-QC?S1Pku&?(Ux8
zZowUbyL(`o<Xda+ePqt5nW>ujF+bm;tE;Pl?)QFfxgaF&K`uTfERTxaPECsKU1^_i
z_w>`>ToTGC&Z4MjO+Zy?KOM>fx`dNs)!(ia&lw&Bxy$Hev)8^nn3{qw*BLXXGZobF
z;fwHI5CRjY8E;%MT^~*R=6V_%Z&U^|_#H?$=`+@}^E=V*@PTx6{+c_#OCM&@yQbu8
z$yoTFS^uBPPOtPy*iUmuwf(#Gbh~;#Obn*e@rarOc12H(>g1_(a);Gz>s;Qda3vT_
z1_4cqc^@Hn0NU^>bA6eFMksafCrU0QbS8%)ryKLnmQ_<=;J^a(x%hw-R9R@1bf<Pd
z2qf<er4aQ`cWr+PPnoFK;lV%>>wp@s+RggNU1J4joNOm&2-%nojW*>PbaOqmwPzbo
zD}|8%rQw?n0Nc>SjV*ci>~gFUVBOS`bWp&Tzhfq-6$DKL%B{wkxqM%o!irn<so)2l
zF~zmxT;pd7cgpS4O4j74Y)4--OWG+Vn3AWbqr^i>=Qr&8uSJE$$$K@+gg%;8c3z8W
zoT9PJC1SZPDgv{e0Jxzb2w#JY^N-Jba>VC1dWWgPMRs#zH<zyghDhL{8p*R%s(=r$
z?9k@VY+@dB1C>rV-zN&_&bKJ<*wy|aB{Y@(B_;fn0+0>+75|6oYkddRYtWt-CwJxT
zM7h?&cMm5kFrESJHohJ^yJvGo%BtZ>#dtXtPtgsZSvo2RaMKjJ`Z+ia^t;!1m6~K(
zh+AIXBu`9DM41kAm9(dE-rL`Z^9V7QgvTfY!UeDC5@tvG!JKO=Q$shX>%8*Rq}I^v
zDRFy}s(<b?%kJGwcs|Z?TV%RO*01#l8>2A{hnQIy47$)nfWR1_EnWu%Jw{>!lWmsM
z84?Hn^q8paptr)A-v*8j!L(+o;n5y`08s0D8gMI!y53|O*TMLJ0J2K(J;TI-OWhND
zo%>U~M0V`YzojQbjc0DXw<^#=w3`8U0g%axJ4+ZJ-OCLex{pqFprH4l^1lC3iO}&r
zfTDo*CO`Z^SFq%EJO4P~4;}VW2yUEh7-}|;&F`Z-(9<@T`$!m|E`AxKua9q~|7kL1
z2{EFRB;acFd*IBzukLu8mWIgOt-by`BpD<q?+pA2QP)7u@m<NGq5`l`({g6R``Wfq
zydX(JQCV$IlT#CKLe4oOm0EB^T_+1l<O>Xp##^s&>?Bh{b3$Qw@`965#_`J6Ia|VM
z*4iH3?0&jg=8`WuXQ>ZnAP5LP+_9|U2l9T8lPy#3ImOA2C>n|O$i3WY#$e|b?by_j
zg$1vj>FA(i>j1R<XtFdHNdR!ab8r6m85CE%fhYH0uKm9!IBsaOmI2$A(<dL5sEO5o
zYeb}T`9IT^(*H4SNiYlxVMp|jV?fbb^k;u#){{D2PQwdCWi>AmW#xIU9?fYm0b1kw
zC)izVg}S!47P1-216<1*Ci59S;G0#th>4Evc#V#}(T+%_1T(MTRtO=k@iR>0Sd|Nv
z{!HLvZzh@sTZ6G7@eSg6O`_O5fUvqG;F)Ns{DDraG-}W6D8OUu;~@}cAKbE9F^{<O
z{?b4InEC)lDSh*LJt+Vt5y8>5?ETF27iCUXH?2`&I_@fJ16du3KNGU7@x#&SOU@*7
ztOOVzV6;Ok4;BqG0ewe7MMQf@;sTrVIM<Y9t%dd1kp;QnA8NcGHO)UIsL}+i*5VX_
zD2pVwjGLgD9#=0Hz~7g>K>c%J0$<qR13W2n0VbV`t3`FJ{_{wJnirrj&hyjx_AY(L
zK1^Ka!!gQ|nQ$Q`H&w~Xbz1c5P0F&|J35z(?}Falop7qJlJPuFR_lz)<e^&|N?O&+
zy)K+y{*%6|^Ze?l;o^b9P5m#r11k?4L<I~-_|E`X4yPkB!q9=|1gb*2{UW5B^3x<*
z!4)}G41A+rNdm0>LU4L#XaEi`b=b43SiU9--XkOnL)-8DhxZz@{e55ZA*tx4$Xl)m
zBmpsJd+*1xWyU6edPsoD_-EV_ZE(M4CM<}6wLcD-Lh75ohrlQQL!Q;yJ~0z}ecrJ8
znb1$|ALPS{iVyN3ZP0cx7oSd@*jlnm#RvP4htA6w^JD#kkOdZf0%I~k32R+)esxtN
zy>LaPE3q1~o(~R^Rzfr!*f!`7*btjp#h=)3`wy%^=SxyVMc^~Kkof!&IXl1pi4x$R
z_z&=KU*&E2^UN9ydG#z0s_BvfNyhUXXC4L2o%t<+@u`(l3si2EG6n&5+j5xC_vvT(
zTB*y581S>$72+Zqn~-IG$lEpyT~@}e-lhjABrr4^b11aK#&o20(J%m93ol`n?~r5{
zkhn436W?nKrsFMgkLr;w*JziFyMC2dOJ@lG1rtFr5T}IaNYpanN@$bc2X?#gjgxRr
z^loFf>ZT_3LL(k_*e@j`u?hODaK?b|T5~s$U7X;xr>f8{et@MSJZV_Z5zf)|`Lw84
zILfv}r`g<@Il{AD%ah$qc2*CZiGuDvg;H!j`UCM{pqGW9kSOsaP>|T!j8i@`Fu4_-
zik+{c>lcE<#ZcWyUSAk3nS>Q2(2WP9673z9^7#y7NNk8Zoqq=%vA5^>*Tpp>`Q4cv
z=<(zIu<(uGfzjVZOM`4O84}ASaYYgbsmG}P$s)NpXvTEIJE;dNck(;&C!#I%+A;t~
zg5WCrU7Wb`X1S+35{(jORpbRzSt=rGD!YBJ?T>+!0F&4Un?U4e*Dk?iP=~OoWDNAW
zV*T9;iuyYv;L8lVG+H!`b^b9ApbGOUb7entvQUP_9OoEA46uWXNVvwn6kt$-eGpb1
zMT-KRK#3eXjmzZ@33Kfv){%SV356RRudZQ$u_9z3h!NCfT&2&a$|VJX4^%)@`}1)x
zte-m^Ok@36UaLhoS)9s=x@i6EEhPep?Sblcq5YKu$vi(GdSi6&nqkli-c#JZAW6N?
zpKJoEq}|&aKH+XEkRod}EhOx%8qbSaP%n~WLp3!oB-qb#_XZPzQm;Vz`>|&fG8)OT
z^XI~dP)dxJ=ChGv@#XC8G36q%lp|VeQic6l8K&_bJHE?aPA-G<*SRV;--rXB4xLB0
zpvRLd($SCU#46nmxA(W-zl@9PkaqA${=Hsl;Aye3)GIFLfgNdF(DEinE}@%~G$d&u
zBQPiunDK{VF$2mpHM{(SJUObC`d|j(m&RhBJwKfhir{9m5&~0*KI*M9os1!|=;GaR
zz@?!QaD;fPWMXPIY>!o6V-er+#X?UrBNVG{35^}V0sB=L0I$C37z_MH349<Aqxxgq
z$p;+)*Ap%~IT{te4UJ%Ph$0iPQt5JzVOxf38;KR<oWHP6>~~THb%pSy!oDVP()DO?
zT$+^WyMyT?|JScnJci8@SZR;dGl155`1XcR?rb3-U};^44tH!-q1BO}g<GeO9FDeD
zl-wv+k;)JceAL5wMYbi-?yAA#+;!>t?P*!&J}A<Dgo)qIwz21&P?8XomA??fyw1SD
z%Ipg3Ow+)6Uat6?5@4o($*t~jK@T*qoyPl?@}T}i29TXhzRhgDxu1<Sn*hJtOAKk2
zO#Wa?O3TRTw7XCZFFj&<GP<3vxTXX9d`4d-z3AdE>0`se<&%hs`ii@8eQ{<XA*;FF
zn>GGttP-Jgt;4Ec1nMCMdG-`ge%(5U)b^AN<h03dLTILJ0CmlH&CVJQVB_w3uz(u%
zwhPGp(Ee6D;=az2?T+z_<NsvNKzW6Ld@A5js&_i?xwV3m1E=z6=`7!CMF?qe8YBaB
zP1JTOl#GW<@!+NH*NudrZ`5kI)<#7t|1JEpp?XE~cDJXuR=*3zp=eP9+OQv|Zz{%i
zE}vzmxu94T$Rk#sKuAnv@N_5OC8jwTzH(3x-&E~$$xGk&xs2Dkb0rGoWHarB|6CQX
z-<W-%e%$G5JR@3Xo1|wGZtxYT#4#ztIy@^^#+J6n<-ZFai>uMLW-nq~4^}1VC>{m1
zanF(%)}p9NMLPOYSfON!ISslzap>kkSu_(s+J*?|G+m{zeHTTM!}N_Y&JQ*0F0?DB
zMwL_}_wcq(QovU)2+Fiak8o!`BKOU9AAH8;cJ8Id;S>%E7f?L-7v7L@2(nyDRYR3$
zc{9GGyEcpR!UO=WT9ixS3s4^GZFV5srFEx6@5W2KbZdhF)Whf9Kqdh5y+6{(-q=9&
z)|b9LbUo~^bqe0W21WUL%YO3V0|cmUt6to0C0B#{>1^goM2>S-_u}k+CQHYDCDNO^
zNC4bv#^@WRkyybPJH@b&!0o%FQfGm&;{8m-s|!s7b}N`|S?q7-qX3!=khg$W^AzIz
zUgVuFhud6|u_mX;E0k0H@`8x2`#<bDX`}Yx9_VaGAHjDD+?TP_djD+EVP4Lo0aT8H
z?9J;2RBZy-7*O$-Kf%o2tW_ds^z4_H4Qiqj{Dgz?(azUGu>jG}kdDd&VXJgYKg_Ce
zQ9&$i@hbanv~N7%uz?CV){!61q-p+q)YPomoV+ny;S!#NY7ZiB4LBbvm^%8Y9?t}>
z-jG2F8t-*5%F?-YctUU+rN%pUlaO(oI0IG?hZP8d?;pgbZNqr@g8e!`x!@|Z{ayYH
zk1roqO8~0{sVP~|A-)t!jv`LjSpTY7-eVEyMzV`Eu#%Pc%2}64SI{2-Mo7@zDbB4T
zF_GBd@*IF2hA_F#x3kq#Lcpa`kV=pPQwB3J>ydyKpq&aM1?&nm7pWAY2@Fo!AzK>z
zmDg|*%QEfnDlnl-l2e$A#wRyu7J{wlmGAM01{ghckd9YpO~1Psc*>GetpwEn1O^}h
zMAAvDdsP@`ARPT(e`|xO*SPmZ*WnbTY<A$ji@eTPSHv)ALUKJSxV+~0Ue&xG&B^`O
z(Mvttupn;Ydg_eNX2@Fss?pup`Kf?4!<)DY-9CSn0L>?V!cQ;%;1bP2Kb%xEVy7nI
zSb+~T2Q$ilIwS#{tRRwR{x3aO^v9TukKU1l#+Uy)NDzd7$Rm$$?XMWT1U~?Uqd|2P
z{J@wc0l*81JqoQ^>6*EF!y)KqU>Ew80Z4RZ!0=PBf4oSO=YT&;H>9sucW0-(DU*J)
z03+3SSr}>=3Z{S1Hm`-I#_4t*a9|g4Cb{LN;}J%>uxd1Lk2eHpH09b#sRB-w@@`o>
z>)pgj<T2E<))Pl*vo>w0WcLQAAl+N%ySvvL6mOu7_A&Tk5uZ75iQ&bHfh1l&IEs!b
z7S+z_&C~MP!Y}*=5>Y@6n`hX>!{%UI138T!HKbracx`T8BM7GqKn$j?u5M;#CN(v6
z2;bZ0$5*f)Jp>+G0T~?jy+k_(Cgecp7ynHmiJ8oei<YU)1_l7U6cXDn{}d;qn__HN
zr6Z=>b$oXOuuMmrYHaNRkdoJinkdb02NomszHo4429=*s)=@nVi-8Igaip<VqLV3$
z;+lPVO0>FxT^VqT&KE}2Bj3=^1ghW_oU8a^4ecu=I-MG$RP{z^E$_|-t#^;-D=_GF
z4$sf=adBU7f652?3pYP(`V+t-K}a70N-f?^6b$hfui${3=arX#fwXhAPwW_NdYl$L
zI~Av-Ek}b_hkSR6cYREWW%h+Xp<5}L&wC(wc4*4?hhv1fNwWK1dZib^vxnedyKC6?
zglCN}#aeohDwx=%*^skqZ+d5FOQ(TGa1$nI?5L&9SKK{{>BZ<qm4S`%?d(!q0eNbw
zbpll$ca)VTpCjf<4NheM!$>sh{`XE=&j^4e`{);QGU=Y0REv=KoCwSNR|Jvg<0*YP
z{bxWaWzFZ#oc|GP3K%PKc2d0@%Oap1R1{px2~bm+`>bEKT7h?6uk<!$N!&W%ef}ba
zeVof4v=Eg8z+IGOs2K`Z*z-GWp7)|X^t`>b4EY@dUA(`)+-j%$^|Y9qn3xc6+EsqX
zlg$e09j?bNIRZ%2A588afworE{~Tz`SxWy82h%($EM_c%z|8?7_!f}R)03(sGAGhh
zT;AJ%`R_*}>0DAKXGKKVT<jF;&pJyY_d%aesCf%x@wBm3^`YPZ_M>QG76yf5pXTfi
zEnkU*-Yy;36ji;YJG1wK1dQc~-gg-FDG5ays0l|JRVgez#i6kj*ROfy0Dwc=5c}?N
zmTlC*OW41bI{>LbuyM{80H1MSZcOo&9kfdIW5eKN+=u2a_^jVg>yd9@a}-G~kJDTk
zek$%+2k8aFr)JT54i<`YbxgfpWi?~ZWEJLhCiQPbjxSo}cwcr!50GbRPOvqVdfM`p
zqOH^z5c&%_2<!%q2P{6Gh|&05+4bA|&fEF;yzWnAn1?*S4>iR+9r){EK)v7A@cjlY
z#RL2!CZi~3OeB*06>@j8g&%3TsfNF4xsd+-nlPT(6%31O*Z=B2s-`F7lcRO{-jR-?
z+mAyX9OJpxkt+U|IY$^z-eiU_o*n$JDEN&iGti9t8KPNP>M#=HgC@zvTGHC)A8fw*
zJj&_|s>oU)c*>e306&e$s&8IOD0J6a)#x4k_>-?{68zDh{R;(xzcD)PLOUabGl3hI
zAHq=sl0u?if=I264@~Rw3YwHekT_IeU?{@@?HFc2#84}l#rLB^6Ggw-JBLViY8o<D
zEoL2$Y;F3e4b(M|+4vY)p=~4c$5LF^-0jxQf9M`~m`J<4`Npy1#?#__VZ<Pw+Fa@v
z9~VZxsUw{zaRgMftu*t|mqCqa^nQ%MJk=4hV*><00|B%CRt%;J{)q%iER`NS={P32
z?u3e{er37t<F3IYfP~t2O@TpLnJAMIMuRk(a%jMeMv7EHgK$Os*G805W8IO8T>z3#
zu_=W4W5a)j1h5K04C&-9x$Yu#j(nt>lP#w%7GLu%U=B~lE2Hbc=|1-I45%w!*Uj+=
zBpm)G^Ob~$6If#1YO&?9x+Rz!vX#r%8f|UosIzr8oszv6%4u_Q_o<Jh`dpmv5dKZJ
z`VF|ykr=Q|K<MhLhW~Z7>QR#K`)<V|5P#|znL``e5t`Jm4-`o27+8GnC#dBE%K`1#
zxXy3q|5{W~9#vJQNbstm6b<5dGN<9C@=z)4?&^7Z1!V7wz`9Eq^AU)Iw*M>|0vDb?
z(jvjop?2dDUVK6)QLP~DZD@Z6fYMQY|HRDt8r7~bI4F5b@ODBWxd1g29Dq-!&**6l
zF``%0<^?+yN<aT@%}wUR4H!DWQmx@|06VtyC<rH$urhPJ^RgUH1kNw@2+IEHMjz`i
zoR)<)T0tpJ#1s%Ls{d5M5u?RYE`JT)tX7TT+R8EP%Y86U16Tck!?lU<_Ip*nItVb`
zN2x-Gs{XIcowynxb0<Vi3)PSmYv!+e2lT*i(OBD66FoHtI3rro{Mws1$hQ=aJmC*3
z-o@+PGK__bWM2r_pntK5A4q0aGr(YXzzxPp1Z)_bBh@e;8_@5ohH5M81h5uL{;B|F
zpqe_)b$Bj~v8OyNf)q*ojZ=z}TYenKiw5YC07?aLu2NBe4-L=R@G1yV9Y?I+RK0%B
ztTaRi8M%@>XZ>>%bgB#2wAlx6Ct-_;<{s4hu7Hw4J%#^~v^?@ai}bMPS*+?OI+|e)
zH1Q~}SgCygeoF`*O^KuIfZCl-4T00$<0^XoH1>|3y5a}j+|1fk&UTtJJNmqh!Jx8c
zXoRL?0Au6xz40}+zwXBJ^772g)ys)*&&hlLC+{$h;fI8qo$PSmVXG#3twssl3mEtH
zRtz%v4m=FxCvCJ3NL|pIQpWFgo_~^h%6@bk0D@Q9m&v35=!FDy^cj2oP3q0*r~GsR
zpM`157*KEq*$Us&K3raRJm#hv)pIxsI#|>>(8;5;2&R;(0@oNX6nk>z<jz9uc}%t2
zhO8e)_o8n{dqkCD$uk!bQMYZ)i+^q?5lN1-*o=qE$~9fcQq=cvaxN4D@4!`lspAI}
z1A+iCDS1A3JLmMJSJ<5jw-ihx5>|A^esE?upeGkvCTjGrggK@FD3vW?D8IFT=D@d_
z6(Sb=<J~xNmjT3GmgqNx_&5M|BJ!36wp>>u7a{-HsPMy^g7^oC?X&sEQH#C&SUCS^
zssE1$13!@1*YAlR5xH1Ku>aqU``>Zn?B24hAF9jL*mwZ9jH6t*?R!GHHA}G$FeytI
zS}N1d>nz2e*>k03UG3_SFfoq--S({~i)_U3^o_M^y8Y8s5sJ0JI4tVykoY3La1iX9
z(V6ea!e9l=xdQ8I<0tny>i`6^HuB0n9h{mf|H{US;HZ42?FXfs)*Vj23E;ymjWP7d
z_;SzN-lWH;_!w><U}$7}QC?Bq#P1;p5btll{FnsI9;S0dIHzaNvCAXqQjq+6KP&h3
z-wk`BX?^vhwLMgvpRs#S0N`=N5@h5buJ?BTlTe5h2@X)6t{ozgZRw}a$@_+4ww%l(
z4Vb{|@%YmA#7E^ctV`P{@K9CzE&jlD%z>v%Ojr}CGa3X4`Pl#vY1}x|#UtjE%OT%%
zXC0IMLN7+oP0<QNs`@$sC%Pj+fbNE))q|JpE*66)YR>8e=~l7se@YhmB}hm4pgU+7
zIW40jFSH`G|5^f)IG@DVWU5<SQYViW=n4F0{Na;9GJR1E4n<WeXmM~8BwH*Q$r=EP
z988Z}QQFfGbvm@FOy4cKtSXzfA^1!jAK>_RojaYO)YZGVx)S*R9sV1D=or6`huw{U
ze3@pN4l{V=i0qj2AT)$a?OLFh9eRKO8)3oOA09cGH+n3iEm=o3zX(}+^4V0QFR~Jj
z`Lk4)>OUnC?cbJv_5qH(s;XhoU)F>;Ji*r`eQCcOgJV&jcEqziBT5CsfeGQzY|G*3
z<yFbd3q`udswwsK&btaVR2RJRH2aCuluhi@2bdbWi7a~p?!JfDi+8I~rbvV<?JncQ
zQRlfH=|_Ik*CAAH+r4jqOJ^5ExS_g~IaQ@8V&OO9EVnh%Od>$M{B5K}n`-`Um-woW
z&t97)wT%)9XKc2PTGNrJwTOiyWQg7}JCcv!c~DE53y1S7wQ#t6cawNbZ6L3)P-O2u
zI$S#p&e&LPrGlYJY~Bi#gng4dTDO}to<ic|q<$H&aR^{X4I*$KE`w$bV7zmEWaZt6
z-FN7kTf^@KHxTB~=yfejE%5+QyU<Mj$!Ijv;spx!Ee__4KeL3{E;euJAJFa<vL4<-
zJ3f<j&F%M~O52N-gg>DAOm6RQl@O|c#S?EEZ*VHEHK+3?*L}c5ft8#iT<a+@P1p&u
z?0u$N?6@kF3dMr{+8aA=1^#3`vXfZ}4NRoMSH@|Svs(OF?bk9r|8RUTG(we(iH}=t
zdU7mQX3ccy7wr!^`qL47f|2THoDa@=YftT$JqDgnN4PAO+>+%MmUI-&Wz}>N>);@=
zpf9U?l550t&d|g2(Vq6?mzUpLKqZ}B-gZMTd|rGWEUmCO0z{w4i8>QF0RVKflMV^4
zflT$Eqq3`f=|c<FUL?T4TbvYnl5PLm5q!aH8W`FO>ww8s_WY|!W)_khFwg=VXPj)G
zii6@^lF5n7fg2)sz{yr8y%W)@?Z^NkL|(oA13}Ji!SYc}7&t&3iRdia;uK{+ldEnK
zgtH`~TZZx2J_hXaljU*R6-ljdX)Qp7l+zDe@8Pe;R=78-wzbgxQ@4RlBDv>N<M@rN
z7r5{Pk0ibF;vSK~v16z%2q1TUDiuifBE6JGVK*t@k2kE~?*6G3%XO@qyJ$A|9_>hi
z=}@^<Rz~<h#hU-w7mWG<m~((*;(STxY#U*Y9j?KK1%I(=y=CpeWC2#>)^wjyH84{j
z(u=(4WH|W_rR59Q20!6tCuEo}xdOJFH0Ca=^P;R7);FM3K})W+1_{>Kr&gy}up*-4
z9h9!j8c6xRUW#lQMc_D+tOmP2(fX0-q#Z{FoUuwM`(-X6KgNvvrEvFh>7SC{n1jt6
zmHj_zn{mq8K;#}?lDnz&Qfm)lsdF?~{u2N#0mZW0os|}VkGP{ymRKK`Cix(-YkqCa
zDyQe^4@%%;9+!mE*+&I%!kFT2ykv9qaPTf+xfz;Y-vS?6O*c+M>1HIux58cp!w}_!
zom_&6=)fxmnk9H#K7yXb?=@XF0a3@J7r)ckNI&0$Wc;}LY?u;Bq^Pwxm|E;<V38j{
zB)S@<qfI0F)_`71W1B?A%4(}0jwFUTQ=+6Sq**2f<Y`-ZR$h#LMjZninGCljMi*VT
zXIIabJss@vEsY1%%=Rlp&*qc&RG0I)2P}CVMNf>_{u;|c_WOg+)P;L>)Doy%Z9+bN
zQtuOSXr?GcAQr7ik{FM!OH3Npa9v4I{hW_#+@z#W*Im%cblm_e7YG<WG!+ZveUhHy
z!G^V}6@_$Da&z>#Ua*bCfb3gltqi=<azQ1e8Opqas^np;RE5;3ev9061vR(Hr5i;D
zx`6Li3DYcC(~;WhhEv<Gh2~3WwNUIb$=ENEK?B65m_{1=BKuOPFkP!6HS}Ixj2jCi
zYU9^iAO}KaQDs`rx@IZ8bD}CdA~<QVm_LEA>UFyXi1bHw_rXQUiu<(W&XCzV$_-z7
zbE}+Pvf$=NT&D57k*Lqq7*wyn^iBuZ(HVVVTXPck89Qa+B=Sw7ot}YyrV!U5iXu`_
z)6=;<#=8&xe(}p00E>vP?5na1l3l8sW~(FmLNTCve2PGFYF|EYypyV{gSv;PK{_e3
z1YZv+H`zx<%sPN-%k;#OVO3;a(;O`FjJK(@ofo%WLK1K=x-fU`(7=OpbD+%-=y8)m
zDur5Lc|c!pEY4gp32XwmPcKc0Uvx8OIXaQI`$mPa*Z$1Hliy>X#2*93MxJDjyk^6_
zU)sqnHz;Xe%E0ILU^Ha!0Smc}@V;f=ij%P7ru-%SWKeePQv`#;`4}n@oB}pI8eZNu
za+yZ$6xz?M<fK}Tam_jKL5SZAE2hfciJKtYB6Xu0X0cH}wt3>7_R4>F>?#jC_<`xK
zZC~9mu`#0=_N~A-gpN{1jZWm-YDHxU$U+~5jKU0*X>sGLEa~^j8yCXNIrg)!7jsY@
zqVoZFbr1rdU_m&2JIcV|asK&&F^TpQsuUh2@`to{fmL0Gg&Ub0Qq#K#POu#2?9w##
zJ~M|)<;KD|SaO)G>zafIu7J9Z*k+iTymLe;K5HNx_2zTkvN`PW!woZkP}bLh&LI$t
zpkxJv05MW*jJ$p&SUkJq!LI|it<f?2!J2ZL1)$<hSkcR9a0p+Psij>6Z`o7hPvc44
zLl@H2)C)d)wr{qO1@kMn=%?nywh<puT&apNMoK*XKKI*i_vxML^<}dTN-C}>(3GZZ
zk~L7P?&wiw8Z19sI~wJe)ZY)<(8hQImVdJAsy&00ockrYn}%DmQl;PX_B{a9{a5xQ
z9y30LW{iShhqV7uw7__Q^REc}5^Z)!VH2Ozx6P5D0gK@&Us><lu3E7j5_55V-^x%a
zN?F!5779WNmo^vV`j{h8zPD*D_!d|{YI;5+s09<HmT>6ci(vmH<xe=~ARU%tU7(*M
zY76XFiEc7A<@}K(*26SsnJA|u*0=(mBvg|M`84lJa2#e@28TzC+#extb%U9H^b3y%
zxFzk9S2kc9Jk05SgDzo;k}z~j>lhZKw){-*EIfp*mT@V+)J{qYU5iu&DI6gXq(|gA
z=^HW;U3g!*!d!hyG$fRA$0GeD-N-7!Y#rv8oX5<*Qf6w$One35Haw1cqZN0h43tK!
zqn7^)x?`fXLy0zvG7jxG86U<H=>4fRLL0mtUpqK%qF?G}otxJ=a9wERPXObNHz=jj
zbn<&XTa$TZ!}sc9T^Xb(R9nuruA2L|597|7%Zt^S%&B<p{S(aK2F%sHQi|D_*qxJ<
z_XFvTOtkXZ_4Rc!oi;eL8;4vs6NBF`a#<jD+#B0?ec#*ZfngiQM?zczP|nVa&6WaX
z&GTPg_LdzNGhIgeqV6pcH7e&eN3)$9E3|qA`5V32M2?xD8PE9Wxr{|n>&J=apmQrQ
zaHWAcCf`G%`RZ6h%gsW`1Avigpu;|&*j9g~b@eFdlNq<(E-h*WQ4GR6j==E~<#UQ{
z(`lk}p#niNeQ$RKX>vuL^zg~}Dzc#878w~=mj5bUt6A+-Em+y1LZF0^AZ37Q1X`|Z
zplX4G!Qz5yhZlZryh7R_ZFouyQC7I!It~{eUZR`=N8?JQ1u^e3msw@ZP$FY<RyUL4
zY=5al^T|NE@Lnkdp0(*)mq&i*A;@Y_WOImQQS%eG`fzhhZepiGHYJbBP|_E#s!)V0
zk3B8c<Q-B;4krr&E%*!(jV93<nR$=lXj6sR8&0=G8ry~bG)dibR|=05EePCO_nF5L
z<tsHq=iTJ4k<G<cgz#oo)d<2d#LBL_*`%R)%9hiYrkyMqFG&DS?lH%FV80qZmPMo#
z(&P@9ZRN2m^m<d)4AXNAo>i4&Uhdv~BtmaPa2J4+BT{oDJ2nLrHf&)yghro-kquV`
z;V%}%b1e~j=tTe<g`+H-_{ZroTT%Yi*quyUR~~#lz6S;RKD+)4{zVU?KPz&s5vN|q
z!Tf)V^S?#-KheYS*KgV1_>19hZof%G`Z!NiQ95JZdwKeBp-);K5(V%^sKe@&Ti{ke
zZj>2aU5booN=%KX_3-_&a5Y<na*Dk`++N=2>&iTJ9w70S%$AV9!J;oyJ4d1;11i=i
zib=-LVsJZIXfc?D8beUSUFvh%@-)yavl56*X<W;94S`Y1^k8<bhv+{~BD<fdKTPsQ
zs!y9{={+dMwyP-A^V-hjir*VwUVu_FsuJmXD|e2JgJs99xnU;<O4>XbqlbcP;0hf0
zo^WJbb(eRHzDU&k13TN3m1~^Z?4+)X&oiRStFf~5*yrczSH=q(MJ!_sP6-)fYr;g3
z`|yIkrnVo*5a#N^OF(sD;-Fr4mDLSeDVVwX!rmE2;}p-8wfp!L8ztkwgtM4j)6>MQ
zqP*C!oN$#;N2!=vRh6tO<BQg0+9mv7U=K`CT3rj;$iGxY0CgQ&32k!4`PzL&$MB5X
z8!1k3G!sJd!S0Y%H%T{E>*#s4oNvkiy%c@DUrN%~9r0v7SShmJ)M|$u?-Xxv>VA3g
ze~u|}7ktFg<n(`dy@+jNh^^@%JQpbjzSJmB0W)KDOUr3nDg<Po8NeD=n%>P(M8@7h
ziI%7MJ)70m0%cGR@6#xS4gZ9jhgA&KxJ^O~pKO6R+}FlGPFP~gK>nPwNcxZW*necC
z36DPg@xkKXKI}Na<zHLu-<L55`%z)<tVkb;<#CHk4#bZWm|F<mG{9pep8rOu3;F+M
ztN&-0W##MNCsyC_I>_k%xMyN<vlpuYfWakK1b@C}%cox1u^uX;za_`mcv}cHK*{kF
z7k}Fi<3A4vkBeVP;^AvK#KBt5=Js#CmP88vc;zgiiF5QXd7At_$9bd6zvVp}L{I@Q
z^LoIc>Gyp6#F_fQJS&l#&rQXU@eZ+TcW1NAm^(8BgKDQ^ov@Bfw8djz_$9`Zdv!s_
zMN|2aptyBSSzn$upA8-=2Kc%0x2);P_~g4H#~5eO_PL+fXc!XDDAt>uHlAUxrx)lm
zTy3WIZupdAXzEk~H*1Sz^u-t`%|#WCPy6>H6^H#Y(oHW?Ou;99qtkb{aL+TrqnJ>&
zkCv5(oDnPcJj!V#)k<4l*2Wj-dX7wRnu?l?dPgW2;Kkm*<3<{+UbqP|FM_5<&U~95
zj2MZiVr9+%Z^zZc0UtUBcF*f$!*9G04-+w<{R^obyiH}s?jddD_VGnoV^Zavjar6|
zOkE<#>n~Tyw&k2SZ6JB)zsK}=H@Xojc^O?wA8L>y`OwQ6YrP2~Ou7XPv6;Q$cNWjN
zq_x=Vy*+1t69*_t84q#X*e98eKp!WIQP2bzjION7S&!6GEOY^?j`(HEmGyMQK*_k$
z-)Y3G>+8}o*W2V8O{pDKJ96H=F2&y$Ugkjh1a(J#IZydJ89y*Q_q#HuiqrVS;lR1T
zoz3^+HWzY{0H-N=y4vVTwN_lkKML(ldr%n-XzYJ;El^E<MDM<C)cZQY9Fv#A6QEW~
z0<K^dTh-fG$CJ&yaO&-#X{a4CJvg{+Y~oU6s#qp->dL65#L?C$cR0;O{llmO|D0Gn
zaLwh?7TRo1_lr_w+?oyblG<>70#olXI6;HB;`|Rw5^~r&(1lA2BYR;P(MRMn%0ng2
z1zIIJggwzlvCK{QtCR|GNnMzZ6f)UEVo)f{CBTPNnmi-NY1n+{9^7u6)?!)6QpOYt
z=5b6RjrqyT;+G%px#Kj%5;He!=E4_HUB_I@N*&FRs5`&kfH>d~78`9o5m9-;+4L(Z
z`D(1eAlC=5I<7JyYMrRWRS&x6v0cpC^M4ki9lN&qtz8%`y1;Ias5ReZ|C>rt4bQXV
z4K|{%wEqC%1+ZgujA^~8gHy&oGTO9PIn%j)tChZ$g;&^(Z!-Hb3v2;KwGMpeS*1am
zPCae~p#)*n3;^3~`mJmcjrv(E#Pr;B5DfTbq;CyW<ZI4Zlx7PP%)n67qIX+NX$+__
zQrX0P`t+q_t>MywHQ59!f6D*Yx8b~yQ@8<3oyphm%$ZsZyF(>C#m`g8_34!=5u#I&
zWdXwjG+qq*uBPzQLPa!^5uD;8YzA=gW(tB^LY2|QpaQE#h3V@ZYz<XN*vt$Hw5EaV
z&OxYC51iqY8a&--v?ZJe_o$6vxgo3xlUqXBZPao3)KC*)qts~8)u<<xWhgePx*9VB
zbj@+YTQ)tos`}?P$X$4B;>DwN(})!~x5uZ{D-Jk~@G~|uCS9w_xI5Vz9#kFf)^6qz
zWKcsw#=zKZ5^b+)v{}xT))FQg-WAo1)?jCDL#NlafjdqTppmE@i*urKI<x&1a<PG|
zv#Zl6zvAefK^4MaCZ9rX9!r0iKu(0@l^hLZN(!+16H1h)=bdEUiO)uy`{HC&<Ul|b
zBrYt5$L4$3-Yxstskr8#Q*|-eq74~b(!DIoJ;)!A+^2ZTZOs2rjeDO_rC9JQZSzV%
zR4FeWum2=<a^l&HDEa)noxOC`qGjbzI66wVs@M}AOi9f|RlTma;sgDuslpOtx$YNP
z-kd1I1))?4omI4rA=;QO9wjddmVqMzY~Tu3(fPXk{j2xjc|_g&RtkVO2W!ZRYQnbE
z>rQO5cMXOfA&h}tmg+2rt2<udqo_TA{4FH(82TUr*9jdD)~ps$HGQ(e1{e?5iX<%n
z*ISCx+Cc{MEA@4q<{ovtQ`cR;MPG!GY+i(=%O_|aR3$S+O~oTL*Yhql(RvQFTE=;;
z6)t^4v$j~cverrB)BjyDYuZ5>Sj>}3;qCfE(K_LWp=)W}2{S1niD8~b2oZP_Vj7Ji
z?X4Y3SNq{zuZMOF;s8L;BC_DDq`K)~+G<F#xTontD`P0WNH)e<rZU0B60PpRpd$Mf
zc-kqb7;#nZ@wRY1o|cE4!2~u>&bY!Z`*5YikK>w{Ih!qd9ZzWMDM`aqv{;5O%rVoo
zt-QHyMqh*_jv8vL_L5|lzNS=F@E6?52>NF8ghoy1EZOYtrGz6=-SHC%RRh%MH$=_&
zno6bkjEfX5TcM7VfNhlyeZN=D{5ia{*NVw0Kla_DRbOh#d~(}uGC?}}XFUy)qaB#U
z7iLijP&J5uD@|qe2r4@1;VRL|e0D~@!<Gg5jFp1d<YYz5tN%u6l6(6&LSX%)GaqV8
zsbg;(!W;vX;RQ<L`<I~R3K97RH#!wE%h`6Rx{Z9e++h8%Npy2B6dauUFUbdZ{EafJ
z{-rm41I$JC$@>N_eo>!;|4VQ>9WZU5N}Up0@rSWP=dl&m<*AOF+8t_iWo`S*1OW|;
z9G5~3VG>yedr6xbJ>Y3*(Uo)<U*r(~n3s_jINrF9Sj~`W##3+(GNtER%dD@JDj}F~
zO#fD$s7{<rp-i%{*)p0l^tIhV?<^*9U!F1vA<@LXj8bf{KS$xo$L99jBQul}{||I-
z<ja3ZKXBUac5u?%8os#F%4~&ni&k?vfl5sSL`VvvmsGu78V#AAdR#j!anbc9aoQj0
zGRJC)c@BnG2-=iCPzep9DU}0vXnUj2g@VSN&7KB=0eHNA+9OQVW;}!QPx~aQs`1Yz
z^ZZ_S(R1p?yC!Y;VJm75A>9>><f$ItIH#-QbqpV|fsI?vg;YLAS&Be6jID{nD@pb_
zrr~fc)UE{i_bw1Y7J1mZ{v62>k=WuamdYjW&zb7_rb{8)jK>DC_d}a_V_vYnf~bh&
zt!t`^%GOJ|GYDkR6a|KHa)ILt#AxWmJ&vs+k8kd%-MNIP;^gf}j%rFDTdwJ)kAeWK
z4}QEU=Y2&hzq_ULYS})S_j$ON-@p6J8ow?I@6G2l$^UmvNoUMlmjeMgr7qI0TkAt|
z^9%ku4ZKr+hjyVlwR^LRrJlVl{{B70-Q_K8*e~3rxrbVyU@F-|H45$?;L;`xY{qV}
zZIMSDOZd}T5eV3C9;y=k0o#=0x&LFumTe%o?=;^${l|_yS%8{bh=cHk-Yh1JyHn5R
zFg7X2h0*=xX2r^*FpxQj{YSQ`SN$W~x-itO{#Uv!{Eu!Ux5E3XQ0mom%OnbX_@rq9
z`XHQ5KHL0Jy>w@eXr9)$LF^t4+C07QcG((6eugKNk3E$gUaRLglBT3J1%2v1TcdwR
z?eNv@djD1nAE9?*bG=xzx7>Zk|MZ73x3hA#8_=0>!~|f>`MEqG`0FTKKk6WvQka(g
z%CNQ*P3xPv4E21i3h(8F<0Y*%zk+^#-q8@fltYVv2#oCd0jy(hTgXtTm{7shaQ2CF
zIEs$Zy;Yup;zj3bSTCMp_NPyXba@iLlr+>ADz&46BJqQW_4YfuRF~fC6N@ulDzrvH
zlcI89CcRmwhy^Tq4M(GZu@QX45JKtG0@E3q2VxU|Pa8BP%eJN_*>&5?=}J15)=-5~
z*{>Dm^;`7-lLX7=v)+NN3=nnCVu~&@wwWt9&NqsmLs}=o^K{k1Hi2wBHx@3bs^bgB
z-oDr9-gg$7it|s!%V35Z>iNur^iHv<g9`$bdr3j?i~HcxxS6_WMxg!V_;82w4egUw
zS-xvTD4aiS0E9V)wDaG9HYNi?!wN8=$IFx`yk807RZXyLlxipsqd^-iLle!ycz^fW
zl#b2pH$uxn8Aa|z=MH=RtOnDf_p_Unfu_MJer%DljPAmnE5M}6Q~0*kDiI6Rdf4%C
zbcScHZ7AWe$_Mxw@@pYK)o<|s0*|}>>lI7>V-5fNl83{-^_@uTWAH>0=Kq>9`A4@H
zzxj43yvy?tOKhExZZ|z`qAUXR1thaBQ^oo_r#8yV*_R>VE$Nt{pTGTIJ}R1?gCn1V
zFp_pBeQB-Fg*R;dAC(;uJ|vQi`gr#ERR^G>`D8cs?&YJmuoNZlkMlAyG3DpXa-V^7
zdLWxNDE!tZTs_y2@kidI@8r7~^sNW`^Aft=5}=p$b%Tvf8DM-Q99e>wt|rDF+#@1B
z9kyhw8t+(9x30WdjnwavWvteOe`A0xS%HIvb#Zl7L?}jWcy}lHHL^M7UG75kPOE$K
z`PF2zH%0_66B_(~CVIYY;2@sgb<T8jsOxMJu(nW*T3NMitUMZ?<hDxSrIuz7N-H|D
zX`YvG6uaqkr?36W?LY)*pz%D)T&5a)_Y_QO%&2M*wjvLGE{8XPG<6-U!;KzVO;wab
zz-O3}|FzFSK)nvqO)%h_(S5`7K%D;>sp%|nnf;tf<JmjH&phwqNc<-Io?iFL71D&k
z<I_%CA4(g;x$w$GTC`gG#t-pLEKCw$bp9i3u|8qf;EgL@uvKW0@!#94>?4)AEBdG1
z=1z|wQ<3(%yC~`jWCI(Bz5AYhTIpxMKq{Jzr|0ReNk}=Fim=!s&K1Xwelg}D<4_wX
zt#T>WJ!tg@ny6AOw>f{*F0cG)!o2tdba>LPt~wmASL12|_6L6bvc~Ye@PDr<=sD2+
zJ)G$=xCrUP=9e-U6XQMH@M{-}rzJ!3i)vl`^qrkgObe+?8vp&EL^pkq@ABTMRsF~J
zJmeGdmpd-8azg=_!3uMAHmw&lHhR3OlnNiKX^2!}B|KB6OHB{fP}WWfvgO3t{;i@~
zd!nA-nf9OUg|;PgNmzYkKCORo(~a(=q+Ui(760YMP#tN8aLFZZJd$*ZAK~%+({cLi
z-JRJ%w!`lqq07#?QDci2JkseLi3$bKG8MkMJa|n=MQLD$+tfjyPW3#wBUaVx+kShH
zh^&k=tHt&yG`wc6<p#}a+R<XsISQk2YWJv_%Kg0ADRfW7@;`eaG;<zPOzt)<s5Px>
zKPs-GC6>&72wBypCbaxTQlK9Q<YVTEA2QtGE;+b3$lv*hnABe9m>p8$4$&M=&>X^W
zt&5x$+@+P;m#kt=N~l~ukv<^}<z6;XFq(Iz)E{1lZ+{|IL3>5#O4+1m^zs>7n86dI
zN<kbpmp%UeV6-l&cvV=NMKjnIO9%&Ndl^tXThlrDPijv}RdrAY!9A`(&`#x%9gO9e
zUVv&)LdXfdDF8`fIDcL86z<yy%s@;qeaBrn9G^z<_JY;~`7GhYaylq${M{F}%1-#k
z1ND1ERbawA0$9>w!vRrEye;FqW-CQe4-pYg6zgpIDlcmD1+En({8&+n$Dz|K5_^oU
zA9d~O93|kPD-!qQcJFAkpVL{e&x_dR2Fb9`)10f7;J7SL>K<e+*c3jSfwUL8xN&DO
zt`@RaYH)>$*hf5TP*w4<0_BU=3mVZO+n;tVsC7;oE{fG`P%&gr9dj@!WX^cbZy;s`
z5zpmncbQXzFv362Dc-IazE_9zqtu`Kp2&l3JZ<?LKpY?>z~w>@XixPt6eP~!9=&c&
zq;!f-EjDKEV>^%usl^SWVRt_3rB-TYNxK>eZ$`Us>$!4EOAV*##x(&t2HzmHrsduZ
zdCBAU;YyBl|I{h9-L?WrnhF!W$Xn2VJm^N92w8hLic3@>Pd42BwkEt50C3mzeKC7Y
z^=5s;S!dR`<n7dp0iLiJh-~1a`^k-GB-51l_e!^MubVHy5Y2cJTCMLnZ`;55I~XtV
zquNdaFrN|%FXhZSsnbQ>CFh-wwY+#SR5WBZ|47j0s99ntNFezUc56vB%3%Zd|13bE
z?>$&P<R>IT-XHy$&|w}lC$PJN)`fA?&b$m?XOPLisx{6DaETN2(gnc+VCuNi;isEt
zwOLjV)zbMqga9tFI3!POG%+-Kj6K+x<s@faaABGY_};ljvV>w%(7uRi612EFv@N6S
z*Q#<Dn)cQKc4Vx~vlRIb26uMt_{caa!_z3VBrwn)kxna!$~D*ySaucjAR59ku5cr&
zM{2r;=srn|!TYLq!IMP!Ap3p}JIVVR7T@LtPi(71Ax0FEish;6%;bJd!=_w@ZL4|7
z({?73V?xH4o5|LFs&{TSOZe0QU2ZEoV}vC6<Z_yNVYs}0^U4Q;ZGeMul>`L-TSG;^
zzosR-m4ripT}3K|LOqu%cFg&Jw7nxZvm%qBnlc23n?5o*mMHYoEOnSBFoJg{>EZ-7
z3o24_pkE?vPcM0P-8a%eK2ubC-unKdsYpEkilTdnoo^L?1Z=Sxw&zokEJfLxYgXi^
z#Yaz%+?-G9ftjy`*)}x^C3XW%t0QF(K~Jq#FJmg%q`%KHtV!-D^naGb2Bec{FX^^b
zfEJk(gVIhC{}sBF@FtJ6DS9AI8WkAiR9;aBVx1L%6&hb$a_p-4#)A^@v69i+4m=TB
zm)vA_2Zwljx|rB;an8<8UM~QYHRJtBy{)m)l&=)C6lB6YEMS^&&6in_8BE>Zcci)}
zXC;DHq$fWF?H01Z0pg7)JZA(vIE#kF>duU;of+X!Hu5MoE=ovlxQ~rmTX^AjQ2tR~
zP9R<LBVl~r4;f2)qNixS1X)qV`rk{~@^weXjM9(_K*Cl<3y`pFcm1lTx=a+<!oA!C
zbPUQL6-Te(ZP<R>aT_8hlwcTu&Zz;DGv=UOm23eDQK8hQ<drgps+9Unq$zB3FX+h_
zV@@B1wpw`!cI_f8NT#-r%1@CH0%DuB0;D<o$)y*wIP?^kt7a!oUNiFx)*hP^-zO0u
zpgJU?kj<fzAh}|GbC;SWjcKvEFF|sm&vT69R0*!!7Qz<yCpP3bIUPZq-#H@K;n>$b
zc#+9mb$1DsvjVp8>fXQT{)#a6WEDOR*v(3lLYn?&>$LMDx8X}2WQ$-657QvsoC(#6
z(X~1IywsGQElk)gcQ>FjNzx%N4l<QgRkpWn=E=T4)uIP}wa*}#NGbMnQrBcC+C(i2
zbXY0~SAl`7=4{Yxb}?rSQJH?!_0HTw#DA08A0Ng_hI)#$b=hrP(bGLMGGRkO-{<sv
zAbRr>6S0@z?Z>7A2YJ(3F%X+^VwMR7Kp10Ag&J&cDa{~Z)5rZpWuMsr&NYQ<YZ?X^
zu-X#ORZWUT_mn+FrYc%I$yg@F4ynBMmu)(1!)jz2*~1c;Qh9Pj_iO3lwT5RyL|1)e
zAx$y#WNJyI^r0qK)Y}@y^t1}r!^%DbKrlcbq8RAq%UN(z-u^63co6wd3|0^L!9`Yb
zOgsJDSk1G*lzXwgd!t^e#3h7~5P<JmOP%~7fY<W&QHR)BV<nM0mYERcDtXA*3v@!U
z53%Dcbb@HVgA|)LR*rxcYMf?%cA?12#$HU^w<}qNw2HK9kH1{w+!tWwF>t}hCeV;}
zHE^DGh9OU)jWfe+CCuEWLeCRH0@oEu3wOYBIY~`8sMJ$vjP7X1rnmv`ximk%hq*yv
zRww;U+C2&xf&|sGxjv<nBLAq_T4NSfJL}@gY7JG?3^hLL`ruAIsL_<gt@}iAG?qCn
zdP2;<MYUOl(TqnF=EW1nlkiKW<L+dU;IqS)-5N@d@Zc}f6C`R2_alaNq;H-sc0Mz|
zT&5rmzeUEZzjLQueusT(YcPr#VFt3{!vcNoHQ}8XvOJ6v7Laq???Y;E_L*WaS}g_5
z5P2NEZZW|{b2TQY<FaNh(-u8d<+w9!AYhNYjTP1;LN!NnyDdUwo=V%pzyJ^gP#S`a
zYge@L#<RZr6qZXlX|^28(*b>WuqqBma9O*uZj3Vyfl*-lahI?^zo8b#wh`bK#)lN(
zXykGbn?T5Xs^eSv=uOJvSH0tDIESs!kiTbZRpwlYH&H<&=kl^e_5<E~i0wSUyzqtW
z?OK50gglC%t3ioGOX^ximV<Hr2B?De5$o3@r19kELSy=`&jAHDo^PPDbSBgw5~kB7
zApak+U{4CxGVeEL-M)=FBd@O$<Ef>)cQ<KvY7DUJ3-2(3-oNnD3K&YEw9k)3y8&69
zk$Gmxh=1O+fQLGuG|=v^5F(!R>Zu^C$Q!z3#$;it2`-3k5=Ju&ZMW{<1_nwS16vnL
zAx2cZuhFJZV3EK-r8?9GuYVi$HII}5OW9yFvZ?>hxK=$~-R(*_I%Sj~Llj*1=Qkm&
ztLIA5UzxkXj=uGw_D^Uvkk?R#L&RiZ_YtKxxZwRcMRiC6?s_uw@eCoSIb19p!C<1}
zw}m@()+g+Ox_(-a#X{tRt4JBQ{B##cTvdzhbxye?wqWBOWZ#f@;JS{Co#fDxUx7MC
z!&w5ylU^ffM+JTnvh@53%8$;79%nP{8s7Y^h3BxQ>`J(7rz(L>{IAbS1n_0PHnr%r
zU$<iKCHwZMbtXtM9C>bFz28)}uFV5Gg+QX^-Q|hl^gJlMb&Oc;&~Z<ztgCP@Z;~;1
zc|ycpm<Ux=?MTgy<(s9hqT2-}-o=siHV5KvRK*DVB=pn$CcpwnmN@auv88>-dDmg{
zF#i7Q%E#|zQoQGJ_`UL7>LRH`oqvxg`za0P?K#Hp732L{7u(O|$L9WfBu{tW?-ayG
z@Ysv}al`hm9loG{pDlRI;S5oKbuZW8Ilb7G{(edN(-(`at(;{Qa3sC91mYa}a_dw-
zg%)#4=1I&u5!y{?!0Si-$7hwdIe%1}dq$Vxssjz~I+iNSy$q_YRAD0=l-9DF;pzjU
zk)wU!Tn6n$Gzs%<r1jd<3$h`<jl6^@3t6QuOVRsW5^cii-0b=_NrOhQrso*fm^2V>
z=mhG5P2v`(YU2x6Pw$C=RXtqFc5{nX4o~G!etD>@GGwpO=kG>=(#HIs84Clx-aqf&
z2Et|xBq}%L^Bh(kViU7bJGx0)q{0y}q~yuM&bO4iLQR<9l|Ji$EiEd1(vVw)M)nGn
zSL7;U$wS*Y9i?6@k7T3w>e2j}WMs|OmpU7sxPGqA1hPC2HI)U4lUtBGxe>`>wO3x*
zSl7@p5TqC6wZ@DMEm^{lXWqDi4S|;?m^y#X;IHL+wh!ck)Whqxr>^dlJ>KSaw9=AH
z55jUWQ<-`3_LlSZ>qr;zO-yZallPt5<Q!)Agy9=^oaGlClz}~$q3+x%9b{1uK>sgL
z^K9k40V;p*Js|e<Acser=3KBC%7t5ow$JE~(>WYCROvPh+jp%AY?s}B1pVQoBH;g>
ziv7*>-VL|}9A}{XpL?U(865rkYkzX>E@1wkAEY)(|LKH}McV(Bt@_UsCzP+it#$t1
ztkd2B`FI{PRI1<I08pE)_QU0YaYi!3TH|X5G5Vh$K~gQd8O#UF3Fh7;;PCt%u0^CO
z`>^UFy5r)`+HTBga!?ij9DX=UNS@Ubq~G<G;Fo8vzbA4?i+mWw`mpM&`gF@{eyTdM
zC`LmZJzhNI^hyU~e^71Cmr4UT7~K5>yWc|iD<S>k{13R=U-T-{qYt})xAmrQx;nfE
z?tTk8XXIBFC!bVB5j4YxN6ZC;9b0yyqNxw7r)j+Gn~q8En)|o>AFZ8dR1=9BhJ*A7
zNMMNwEKRBq5J9SRkh=65B*Y*D1VmVxfUp!%dQ41c0)mE4kQ!VmOOqx@N2ww`(gXpK
z;tuS(d+)jT+<SlA`9Je#=A8MSd7t^-2P2)ZkjgC$ds3|-Rr+Fsl+Q_98$h@UWK)E$
zs4Ki^(l%}%vlEi{6i;Cd{hS#g!-o8XBVCufVr9Do<f6|@HCiY58oY3?!9|B{Yat@{
zfo05JMs(GDT#)Ibd}$UoUg3*TTbUat@(hAWM2Hq!=(s4VaC9`${y}Rtg)h9Ov4u7H
zHN$U3b_NA3iR+&T(NaH0b#it-s#RF&mO|U&h!ZK|TEM-ECVN`;yzAg#@LzY@p?uo8
zi(HM!(XJ0qM1C&UC*GUfw-ef81`lH1{mj}JFls+g@o=&mw|15>!GcSrAuYUE(#Xb)
zET?QQ&SO2Y5CAudQ7vBs+S@ktdtC8e5US^McBc?Ba9m=~+)A&1F3d8vc<k_CG)ny|
zc`6^u$wD#Y%?>%jalZ`j7bW2!lZUVFm(IjbxIOW3D}ydP7al&x*zqXKW@f$oj`)n!
zJcEUj93sw6hM<I+bi)fb5Lt*LMx}{@F^EkXcuo?hMw(^~*l0SFKHb>SVN}53F9yG#
z{IDNS&?R0fA8oQTn4B9>&e8r@Koh?jTpQ2B?EAEtES_o}NM$H<l?_{2z${s$1zj~k
zd21LW#KI)~-j&*VZ8TkCCXd{de@OQu^o&jg@ADY^XvEGz7jNzbkkIF-h*r6hTCrm4
z(2^+|SP?_=12HtJr@qkIbpAD5&!LOD!p&nrk&+xrtK=}<NXOJb?Sg=4#$}Z$aR-|&
zS&w!S#;SFnu&(dY*SZJQ=DD0_FzEL{o+n@_EgujV4D++t@uY}8cz&GUWzy-=J1JrN
zO%Rkl0sV1W&|k8m=1x>!(J@@dR!};|x6yV&y25JVZyP;SZQFqdb4>rxz=i}vCjzKE
zIzY3&!oR)EkDE$i(U8zzW+`~%(I(h`tXyD}Su4GyCHHm)l>`mX9~%lsz3X8=?0eme
zJX;p$YW_4Q*u>GOY%vlX->x_&Yg5i)40aF#WN7hS$tzrm!uB~!*il76-vWUUZ6B@_
z*+xOMoFvrg*GINL^i~o}L?rNbI|&%B2iNLycTou21rV$XS%-xk{=vQ7IJqeBsk115
zxgS9iRtZ*>A!OH@%UaqCv~fhwKG!77hdnht2yJ{jIdWcZaUv_S1~i0m9XNNbL)KQ<
z!U|BN&FzWJ{dg^I<4j~Rr8!ROR(YZh9eRJh;Hxhhx3pTIbV)d&zC5=A$)9R&!i}O>
zQ%kjYRl}d7mLEGiYUkdnCsV+c?~9|w<;r{|{8%6y7k8uB$#U&l+9fP-Zx5KVeoRr7
zwhBI|E;xWAlN!X-bDJ@n^A>Tpwb{r$GJ?PGW{mrCiTWl!CuI870%cLNS&X<{E%;0f
z;c&Mmo7;LaU)ONm$e~S!Gqn4tdhiezTyf}<g$wk*Z9Nz6Hym5dcat<FM1wC9uat}!
z_!^uA)4?``)rtljloH1H9#r^t2Mm>=1mX;h<2=YI^4X^}S8tB#2CM`bi23(-t2`KR
zj|V{3uFcn$-tdhMo!ta=%aeesg(15*)o)ql`=}N5FY`BOq_sJj|AbKok<f@Xd>zk8
zzFLy7b-`%}T1)eGuP^kWc5iM}6B9JoaPSTumL8?;B_xY+Hf3~SPGZzH(^Zo%zNTwI
zB4=@W1)1}Z`uyd=+<Qwom`hPe``tL@T|}|qyNoYQZ2yX;|C1{00+JbQB`Wx_r8E61
z=xfH!LY}FC!}{q+v(0Y*2&Yw@+8Vx_K?_ynWw$Zcd(xOdtKu9(V=$D*Wgiw6CT_~(
z{&9$|LrdfdyGZ9}jRAt}%MnZOsZA{0SMkM9mQ{HK_s-!R@_s<5=`$;qmN6*rjLv+c
zr{m!{A{tEDnp5)hTxfPZFWqPrtzY<!5#rmH(Wn#Mfem%RV<$ozhuqo69M1sXvJW?B
z->?za+!meu!*(hKOsCf@H6fSXPfIg)1?H~^sTiDf`YlL}<}`guTvFfd*lQU`b{JF<
zPQW<CKi2g^ZuNWPV+{&ayS&}c;i1XEQaw(dUiLI65?6wrnoEV=)n+qrM`|)`B2Uos
z3oq1~)|XdGhIF@Uncf;(%Y$tzj&@Fb0o5!OF#W_aJ6P_#G03@m>aEvnWAm7FBX2Rb
zbYrK!_ez{jgQ>{cyAfKh)n^c6-1zZ$#(XoBIwu!O-?^p8F6NsI#220ARMYbpD0bM=
zZWFp%*HoTY!A%0&r_^;Li_-|d4Asw{B`c(Psyta>=)M+OtK@PWZ=#+)D+h5DFVm4U
z&AVFihsx|fQ#ZyZ-ji*1flsV+%ECM$Ayz$SbMNia<R`^5KVOM9K1gZDQhgl4WWUVW
zNtL7qL7g0_+4|1r>08;D{%Olj&pVR@Uc6ep^U7TTL>s?sOURa;EdZJx9t_*#3??t2
z%J_@UjF(2?HO7KT5)#qJiD|<RS_?{*2OqRfSp=d8x0!5CkF#71Jhk<(=t8H<WKlTa
zd>5Ae7h-FvxfBUm%rdyG%EpoF#@-tXzt7KZR#)@u@|>xl&<2mCuo>jTn?*z`2`4h1
zlpeMD9tK&b@V^_z0NZJ&7Dpb**9!y9XtNcuw4CUV89`L#v)eB_(ud9XD1MVKEVG9F
zzxm}qT9jr6o}L+8a^!XTg|Ro`UaGCr4pU!N6uNou-k8Z&pWeBAW*7T#=1n_dZ}eMm
z*S`Mb>D}v*1KZ|Y^!4Pb#JweiPZ0YFUcIO!CVvd}*t$qoFWAaQ>(@a*`-k5J*Bg2&
zpz0kh>XDb!2CTgb>C`HE{Z!+E2o5$Mq#{_h0N^Z9LXgluDXw{d;+h2q0#i-$-+?I;
z_OHNnO~v`fh1$<C5N8~1%uK+&fbCLk^Dt<}4X}8^;d_3(91mr&L`A@r*59fEv}m`)
zMRs~R69H^kLTf)2q1%cS@%}N=7-U^WP|FhosjA0&z7Ojd)ENu-JZZ9R;@S`W8qeHp
zo3@cL3B0Iy?6syN<`}W{jA;%#B6k_@5k2{*$(iHx*(h>Z@h%@^<a)nH=1)gotFMfc
z4@IYe|7F?DuD#5>f(g8&`l=D!le~5`lYAN&HY9Rao&hCi)5prFBG=Ky<VI_A#r&N6
zG&_<AO(&;6l~E+7TtV>{V9rZ<XGC>QulPUE%wZP6@b92BvF>|NO7w2`;nJ}w;$oc@
zhLPPeXCgU73Hy&%sID_qw5q|O^}f<t^6bG^YiF%myzoOt(vL0mDjqA1D>oUI;0s2b
z{F7v`O)<0nqoczAZ<_Hl28v{8(g=R**$Jt4@1zd1fSSg`rF=J3Xk)`+o;ORB=OU=O
zZv_=PmgmVDuTBj6y+Y!y((H9zv>fW)o>&_<UG%hH4&Og;@hSbZl}u+&$&)^g$Mx{X
z1Ni%sgtW(YVXZKObdr!peGft{zB1Ds$DV2Z|6bbs?r;X(nqm#l2Op3A0~`k@=Lj8Y
hnu-8d$F8w%exnLQJE#b-%cDWSVW4ZGL()P<{th2;!Y%*+

literal 0
HcmV?d00001

diff --git a/healthcare/solutions/dataverseIntegration/docs/media/AzureStorage.png b/healthcare/solutions/dataverseIntegration/docs/media/AzureStorage.png
new file mode 100644
index 0000000000000000000000000000000000000000..8e0aef51ad4d0c68691b87d54ae0cb69f0ea39ce
GIT binary patch
literal 40696
zcmd43bx>Q)8$U`*DJ>LQiWh64xVuB~qQxahTHGlbJcSl0Uc9)w71xAP+}#2R4#8c5
z-n{L1e*fK>J9FpG+%uEOIh)-*&$IjNKK9v!s;epB;k?4Zz`(#$d@rksf$``T1LHyT
zlZWV%B0?TL^w$GdO$BL;iebtv^ur@7DOD*9jH+ndn@?Ei=ck|F8@OU%P=);Wc@VvR
zWPyQ^5veFErR{052Y>2IXmN#oSgauRNEVZ%i1yPQv4(B5oVlU;{2ze39jQ}2e_&Rr
z=8uvVmTFZwF^`$V4zq-T**jv+h%+YT=fVJ~U$yd53tf-frCDXinkm<j_g>M-DzS<w
zi4PsFu46xVZVrjgq$-Mxv>voRwX?NFGw}D4o@71-|GWL7{;iSpf2HIrCjai9SbX<+
z@b~t0{G0v%7{S2!q8|MJsv;HlzWZ8Ncjp-0#D1*s-!3sQx<?Td%~6e%K~2viDTXQt
zI-{UR0SoIu!QP|=qjMF1g7!`Bx)*xHf2+SHa;t7^s5;+ScM?1K-6%K3LubA>Uu}I{
zM_7ikn3pY^U%C+jcRQFBkW3#d{%!JQILEaMQnCIa8hpAXDCu#>#w)F3*0msNQY2Bt
zB>u8+4rf5OlBrjX;yntRwJaLiq#93Pn@)Ul&uwt;y-a^=Htyte_`mTH5jb_lmlH)8
zUy@)!!o2zi?tjV3oo|17l_J1<vCMRyLU$mJeZ4qwND$h=*`{*;eVc{@i20Weq2=-M
z@siTp^U3_AqAzLI_$!DPYh}MqMg_JvxMe&a3v!{ZJkP<ahIR`9m8H{t_s=EES?_87
zw#_pB1t`Ch1`?cVJ`jeddC*);S91RJx`+(5&&!WtPPD>l;G>MG^mNvl2cnBF;|IEa
zspv(u_yjvZl-YM#2J;51rd_xVxHKXV@ivvD<h8URw_OVNzJ|x|xqoS`G)j&PE@t8H
zO*Zb^#7O!Ve<y^eDLbu(H#?45Cd(M@99u1j?kh=z&m?k9HTjZAc*NV?=3LJyDcse)
zuPARf_~dgs;v&Y9a$6sg!E)BjD!6n^kru_idw-Y9A)aaVz98I`cJBVVe$v{<?<YTQ
z+<QWA{=cL0PV^-el|#e4pA4F}ab@jymi&xm#l?yYnAM5CG$bSpj8O(2nl#BcMO9ZQ
z(E_#`@60r!!Ndq<2b70WmsRD@Ov{zzis!sN!|~kZCYQ+FhD_CPv4k!NV6-%jtH#<N
z@Ms9g=RTObBCq!x{?ZaEELq-`LpfKCyqY(eEoPFT@o!losqsw~T2!IAcqZ4{LCsMM
z|MRDxuFj%{hlb@8Ke~f6?Q}fnI;Z*QX_yb=#>D;6b1_QP%7jxG)mqEM>dsBe!Jxb6
zeszvH+uYACA7<>D8}{&u)zp$w8mZE6r(HS|T?Ey8kw>c;cPWfb90j<9nrv|lk>um6
z+R6Wx)#qwYxu)_b-iqqZPG=RE+$Yc&LWgYI?aG{M{+TKdr>%$`YNKJ=cdjtH=}@yl
z@r2CuE?gRLKZluw--6*!uMU@!TM#^!kFQ!mXsD%2Vsp%ZO=ve3>PZ!T^oruuIkRYz
zq|n{LPVvo<tM1~!YA=Vl_cyICdQO?%hB2tSYe%T<lhph79Wyi=!@sJDgADEM3afH}
zoQ;k*;dNmz&t@*{1?~2VY!`lBu5E*j;9qrDJ&&fJ;#y0%rkwR%S5l43*p!v`rhD8|
z#1q?8LB!d^;QXcCkY#u?Q(O97*jXa3&rv>eofDwKX9JhS>Hf^Z4i>}!tM8`5Z`nI}
z6K!$0hi8e3YSmYMkWe?vf=X<0=#6YiEuW#fC^1~2_dV^XyuBsi-9P+0USHx=!`+$T
zVOdF!rbfID{3ZRu4OxF;O_Q|se?@TUNt&g45mKZTD^&ItrB(w|!QoCq({zaDm7ua(
zYwFWj6PfY-W<Mcis)b)c($ZmT*5}lamOg_HpK3+#Us*|M;w;x+lL`vu`%oYDoIh>n
zxk-RmgDWp@`h#*OJUKrpcqLqiIHd3FwpQ^mZ@C~oc=oh-u`%i7+#T-@Y9q|OZ9UhJ
zAy$hWmgRMRwb?NV<9sYO_r99A-l3(5fhI5G;`!pSAa8GOic&2`=U3K!M2+tb1P-H>
z6BEkV3{|6v2kdJK^No59^C<KrZ`B_hu)(M69p*izbo9n*e%89s?w!5-yC-0biHJ3D
zAnEtc?@VS$iG5G=@8TRkoHm~E-5htOT8y(VnBz!}>$iB_9yerwmy5A`3Ks>=H`4HK
z@+)_`p3gp(JppOG0@=^~x``w;@x97Eo$oGO;8GrJYtkJCe^R>QItR-gz2ZM~cf9<9
z6|&rbNb5DzOUg}iI<=UIo^}r^FvulD-Jg%R8;2!JGIWP$jKrdHxNq*m7RYh?(|x=E
zg<S(qx}2_)@8TLCeSAgcUbo&igBT=9T{F6g$&KU$y?@Y5_GoU0`Y$`LJ@*9m%WrM@
z?-v(Z8mwcd(ribinw?$mGJ7K4tG4-cYvGbYbgs@U3tcLTu^?_24$O_9)7~AY>yz9M
zoPb05xea!;d`Y=K8MLdFt3wsU`F5R+>Y~%6RaIrp3u5OyRTZ%E6_S;+nhG;IwI-TY
zP*o147?NDE`~FIghyJY58x|+_&2je7bR#m9TMv-oUju`;E>y429Gr(;8qdp3xSNmg
zUfu^^6~e6uI)K7<=Z9$m{GXS8C$Q>`*ZiDpxbTKN`pe3@TL0mksU(JVTq#_Z{XNHR
zmzpl$iM@?_@BOisa3i<WB2MqaiUmBMghQla4X%WK)AmGv<c@BuP|$@Iey|-X7qnJx
zr`{|FN3HDyS(MH=76A-vmk?yAY6h3V@>b)z)|@c8__`el)AGt&M&pk8fO+}*crZ~C
zTa{&}!Y>xv%auqg28Kmz_HqZQiPAo{bKh&~%0~AQYJv;-<m;3BTO`%;*w1Hwsr_7y
z#I7Dk%M#xy9?L$S=w5ueLcCKHi^Ex28f<rTbXi=^{(QAP6Ls&1*8=&|1jF&cY9aLO
zJ#B-7&PIEwSE%81N=rV*aF2?rN=wO2*JYv|h~D$ic)?q0uAgms(k~A}jOxApFw4&|
zNzUaBG&!^l^Hev1-S;1U8ffb@jV--Vh{M^{*3!0}Zq0GGTlCo)wkEk1!KLxdj*x@3
zvrD>+s{0#!Iti{6_f~3wmaIsI@SSS9{-$9saSx+LD9ucC-v3(>i~$lzV&QUJzpr6F
zsYsf_+xRj5x`PUqX7lyJhO*nMk=-Lyxl^TD6e<8Oq3phi4s4SWdw<Q(WLx_LalDuD
zm4Aw4K4~Ct4c0zg$|T<5E}m*PlhBVWH&~qc9!q_4u%K?q1&;2VG@QL3P!{ynFzM{h
zQfl<)J0KpE!zUkR>|earuPvjFJ3QfRxd;uBo8LPgvJa5rklYSSMP<Z8tBmyQ4f}j<
zl2URiK8(U#DJXm${Sh|6OOkty#ZON=P9+2XiO}bVsK*d#R_Vnhn9mfK4uwb2qW`pu
z=i21{C-JKZnYGr-RXZ%zQlOCgYIvbeXvq6$;VX7x>*XJE%N>=OogFo>z^yo-{+`>O
zgLM%|m#y*oLlcGDGBcr#+R}X`Clga8T%kQ}py_7I<^$Pn+5vfW_Q`6_I1GYUv7Hm<
z4Lg-O5_6T2^6!e0Uw@x#XE?^I<?_sbILSeGWoQ?=n3EHTS5^la<X0rP!TN-xVLY}F
zzH>yK1iD!H$*dAk8|}|lFPtNJ2jHOXt7RrnzBbd;@FBTZ#=uIB+cd^X>V8(b-gO1T
zJC<;9uF}uAI_Y*be!9~Wt$H5akeO!8GxqSF2rwTQwE=r<0--?klY?FHoy4M5GLIEN
z{|v`3gafv9SC1iqPyFh#15=1eRD`bP?xSwJ<{y-Q)c@%+(tykBkCIh${j`ZMe%o&^
zylm4kLkyO9+mNu4zus!U{|Zzv^H~S_ii#7kZ}O|Frlm^Q&pDBYJMLDZ{QMen-JeOG
zied<#=G$=Fp-G=MB5BzMcTeA@{+9kTn1iw*h$Q|HnZfc(SjSS?12&x|CIIe^jWoE*
zY<C}o_y(#H?Yo@dmfm|eS&>0&+@|BP_vG8U2%XrIlloKDr+`E5oA0+j9C+i<q~D&`
z*u>=g2{e$HGdNYh%C#_|lLjeY?y!y^#AYGwQBB;0_B`bibk5T|_oG2Q|3sZi@5dfQ
zX(A@KU*pbNL}{x?stvCVg?HNl934>qU6z_eANZ2mePoBG^@qEAEm?9?2&yDvu5!LW
z;bN_FTV3b^p*&F;xkASU;+9+Fi3^M5Y7VK>(>!OL6CA+O?0XYqpLlrL=6hLb!>r-U
zRDAfoD7CzjGnuDEl-2CD?ciH-0uN>7h%;Ls-S|62-bEJF3|+%plOlX3_<-;7Ix`61
zFgGJG?=+hx%Zsn$)V61tLtZ#yP%n+^t@vZ$AoDo-!X(o{ktdu6d*4E>RtyCg^Yt55
z9@G=_J<*XdCofqEka@{IryQnBhy17Xe-Ie?9B_sl+*xLhPZE)I4}=8WmWG>Mz8Gt1
z^rEPbzeoM%axei54}2Yo*ol&g`!`HWjkxs?Jz?)}@a%z%=;K;XdLivuGX%-dzr7D*
z)Vn=$b77K5zP;p$K{U0+R^nsml^4O)f6g5S#_!OVH@6Tm{q+$xIBhFrMw~P7f8LRh
zMxet1aR94bIdOp9fT`Yy*IbS7KX(aZsS)Sy4w1`tvpypAytgbjGpTFv$^U*_l6`V_
zXTtrK_?nnD(Xz^JRKKw_HEH}Gu^5c9hZh&e`bpw7i%Skd3xSPE#M46q<Lo%8|LYpS
z8Ub&aPaE+U`P{JT6LfpY!AVo#CV4YJ)4WG);|Kk8^%c|V-bD%IcQ=qE-<duo$3gY4
z@1@4&Dr;BhUB0vLx|;A9iAnel_|wH_;s15~dEpW9MeGdpx_Eh1V+`OEF(R%eZgGRM
z>RbOe6d05r+Pfi)3h)qcs?B0oT-60fBV%wO>`%q>yYmKEEf%P!-{#+|o@nd|?ptJU
z`P}Xse2)IED(HXsscolXuV+H4*xUK|ir~Bbzqg7sWp%qskPE=vr8q+!G)8g%wf|i=
zb8d29UPl2;xmmFin-bhRGGHS^oV72SXphVLUgbd4hVtfsv%R=y%Bg3byH?=qd7tW*
z+VA-&whJ+TV@Uw4FbSU9dPvK9JMXjh3VvI9wytpMGXm9M{pX5dP)Uh89Kdy2N`ZM&
z*BrRs2|gsBqoXfRoj606bmz`8jGLm@^O-$-5^_2hYL*cCBt0CSH!!GD+YWV7jZxdc
zUBHtsZ~^Gy)|2xU@v6)@$-Lg=K*Z*h`$B0e(xl5n_n8#uUuNEgjH|7h;CM5iCJ;Kd
zc=(a}M8EPnZ{c7+ulZn6x_@?|?yG#?6UCM0yc!;t+y-eFxR{#tk#pLfC1``!rJLjx
zid-*xdQDs3z&W^O+IA*h9RHgSH=(_=JA^;xRWbJ-cW%~<#K%PIHareD3%o8CM8d0o
zBPmjJ{_5f!BCyv$0Zc<>!-QIPI+B>+m5W{!aH?p@UrslB-#0MlnvLz{r(c!X8_~!z
z4M{s9mdXFu9O@yOQS;JAu<fhfsbI!Uj*GY*C=zmgRC^$sx!wo9cI#YyuwNfZPH;`0
za5Eo*^E?~HmdPSji+<<%k<ay<)iJrXf97?-zv<4xv}tQw{NE&h-i0~&{2L>T-&HaT
z|0~XZ=KR0HZ#<ole`LJqe{u1T>32;3zo^Le*F(L%KF00oPoOziZ1|vtN%_IbZO3Ch
zLC=_nO-b#am{ESsT0v}Xj6jaMQ?Ji=7z-an6*e2UApEa~n3E^g`2Mo@oBK&g=E<Gk
z^^4O#Pi3$vL`X5d6cle+`x#S-57=N3M@14oBgV&|BHcg05{fFLUknki?mLv??2~@u
zU@>%$e8ZR(iG2PxxeI<T1+S-h-WNK0?03tNY?}b|N9DJ+-t09j`lIQ>!Np}(6<(q5
zCkXw~;CJl-Gr&{rClzTl6BF<)2e$d|OqaVn^sV&@+R+%A=+RPpXPCRq&dM4`h>`w$
z#pKIsZ;G$ugcd1<1d`r>Deuj`I5qMznZ!w?bf?$_!03$-oRBPvBmAxLrNI|<ybo^y
z`khUI7MvAKO-(&Lh2+{KZw|k*jR}w5$tx&m;k{6DtA{^FEVX|nxXK`+MefZvRHg-+
z$?IIf>?%W*jfsvl&+w^4w4skjQIFig2a*|H+u3arw2T;0l9VoQWcchrv9IqtXML7>
zbvT_`YJoGtV5E=7FiBXzIxZ!|yT`EZQ`oU%H%9W*5kEiG?f4OjULz?usO}Q5$Jurx
z{f0xXbu-O1YH($HdmBmg!}Ozf!pgg33YQXL;boejc3CwyrXCmjM~5BHCE0+`o9Y3M
zTrz#j2Q$IMh}qdj|Jy4x#acN&7yFoxpUt*<xk^hv+-@x&)uW{9JKZCtrdC`0Ms%Sm
zK9Q8+OP+ONliEf&)q;P+4Zcp`bjt1d)?l~QsSL%yU<s2)PP}2n0PNgd>~IKOpXxb=
z?OIGCl#|aR9$2}HpZV8bxe%S<QHe~lBI*6E&+|{(ejFS#J_OLFc=`1uiCT{O+>Abu
z8G8uui>3*4PvQisJ-s5+)Ctc@ijsK*aR`E5p*fTtRgTN)Q0`rTV~mP8ytse~3hFCE
zM_MWt`&%B5n*myx_ok>AH>qpH>3P}em4uxsDG%0VkU3dN63hpVwnB*P%2F;~#|jy>
zS~d6mDvssO!<uw$Of6hvmmIIC*4dw}8}l77+$-CB%+Np+?yafW(&Up6Xr=akIl}#&
z8V#?95jyN=0sC5Mph`g**Yjog#CIf5uCndVAL%^~ptX!BXy11;9rWtet2MV4**5_~
z&u+3izM9s!z{{7~bNvcmWqJRYV8kr<+ZxYj1X0`&NO5*GKYjYtuW5jzB_hzoTgyC@
zu)=*xZhd|)Tfz;g9_Bey3FIs!4q{-w66a2!yrdhYmUulXTqm`lEXA4r4NvUajhh@^
zS<2rua!YebbN)pxnw+q+qu#(WL#SmDEM_Ku<S3lK__Ig(QsD=&=f3jYc2yR=q$60h
zjYH@TX>M_VfW&86DTNQl*&PJXp@TNrowrAuqq)V3O}6dzS=X}a+KD!mNrWm8Kig8%
zX#DSTdF-JdF+YZzeoFO4mh#zNb(d_FJMQE(&<R|~2D`bk7@cC-&5oBUU?D%IYEc)R
zn={#|GeRjV0SU=+IteEeDm;Z9FN~SizbVzbmzY=3xP_f}Q#c)}e`n_4NaS?mYaOV;
zMoGKkQ;WTq%31*LOWvcReaqK7$D=HsIs}@sqt35mQc{$hA7WWTd!k8i38X{g$gs9L
ze%;+(FM98kpR$?QN+RhLnU>w90#<65WO!f`fq{VnVqq``_d5J3E-Hu~dRaf0yiu=+
zB9tdqL%FSmD+0AMSGX7$FWx^EQj6l>H#RtFW5rJ2a(^i=>~nEVzM7HKj?KaW766Av
ziWi(pF6;R~Z>;CAq6eubLSjY3T^W!9mVJ#d3wAt^4d~|EzGx{+e9Y16{rUU0!01s~
zU(-=Re({U#sqjF=^+B5?JG<&yrtFHY${4H8ntEUmloOlg%0si_50;v8ux4vPWZ+E%
zJw+)?S1waATYfq1HetE<=7X!i1i}aT#tSub1YIlT^wnx4saE0ym)>Ds>fcn{+1!p9
z)vBYr$gR?xJMaY6+1%zG8uk|3?(=%=84)&x=>i_R`UEdDb+mPK+!rn-$=Vkem9a5{
zQn<Ofb6n&jUj<c+Js1s%VW}@GW8>!5pot|QDCrB`u!q$$)6%ZYJGCWDWXTX;pU*pK
z#g{(!EA}piZT(0Ly7?XvL8MSUXK&Krm_CU0gxFyeF<)wjOL|;-*@)mF7i2Ji)Yqeg
z=k`-h?x>S>Y)))LErfZ)l=T&pbBFTnvTw&3HhI3k2eq}8z2%6CwrD6^Lj?wC+0TL1
z1?8JMdDdS7K2BFV#rK1IbuP=e-=`)KKcno)*~z9OR8Gw9ySOBj;`B2J&jJmn2@_$2
zC#mIJFIL*ER8^#Hpd+atl22pP9O)56Mh=-Qu$^ZV0S0z?_M@&LUd<}T_a^0XwP)o?
zL>BAu`{&+eF8jG5dJN(zxP3-;VF{gv?4e3qucAHPOU@VXX%|3H{%Zs_Ct=mZrIDNg
zdUU`bGmfd)batS2K}(L?PRa1PuvpwUvoNvJ-J^2vNS3sV<GOj?IktgWmRiBEasb2E
z`hHX!(%*Pp_MP_bJVa{I>1BGFi3VNiuwBnwUj93{>g|3JF%wRUVFaALuX%q+8$x^X
z=z`^7zQKv2`;Bq4TQ*jh8vQp@Nd(_<7*b{Sx9EX}ioUw~yJUbl6Rbd1k$^WmmYA3r
zz%Vv$%E3YhAh1DrOuhM~5KTQ}<T^AWdCykQa_Hd=QHt|uNmuKXM6JdB`Sa&1_H#}0
zN?WmZ<l&)+bl`Ju8xZtzCA`Y4=Wau=jX?PJ`l66bKW}Ger|Y_6uUMA?Hmn)7%q>&&
zg-NlePl3j7(%xYrrpB}jr|Mlwl1cs})p2F0Yp9-Hg^^;i?>?c_Bgp1wXf~(A$(ILG
zk=+U{HQ@WZa8BsYj4pf}nB&VM;T-rR;$exr#-?^3tT5tb&T!rK_)G*7$=XqId3e3l
zJd1<L9@!zgrI6W<ww_-2^3E2L_?D=4G>P_8$@!8~W&tl#i3!XS_O|53kp;c&my9_M
ztedcjT+;y1P(yH?jy3N%Z$5K~u52mq-~;RFs&2^GZA(Sj93!K4faCt2-`0BAP+_Fo
z#dWk~zE~%Pab_g&;!9(Q#|dDa0P!+aRIN(9GB`>U*H%GuW0C1&0hvzffJ=a<0kc<y
zOJnaA@H~-3TG>Yec%gdStE}&0rPDRsx$G=vXoVyKz$@d00BnX>xrSz=&;|8k4lxc6
zuT8a1NDrys(U_|bu6JLW<f*aO%)3f_0zSpR@(MXN2#>c%m^7Gw9@alFWTNt77T)N}
ziK%&8C1lV^QSrg<Ww<OMP`+K3pt*53nM5v8g(Lmv$T1+l55wZs+5q`YF;J`EZDbf%
z<g464K*?TG+g_eHdxGfM&+5@volcVS5lRswoM%sevy|~G*1nid)oU2+>VHJ=R4YqV
zgJ7?lwd`v=vaCO6*Ao#d#yPcC`G?%F_?XPXGO~p>SK6+<f`j>&3Q1qwuufyv?^w#N
zSP4<;7y+kTb~q$;A09g1Mps6hPNO!}WELK$dk82=>n2sSPaJ2}AI7nhZqFfvX=D!H
z3pgQE3jJKJW=E5!qo_oOMGwT3!nOFWU`>1V^JtCVIfq#82r2%pDhPK&Z)u}SatvLP
zZebtj!51xy8sF&DR*Tl4e%G=LSOJUv*X2-*bVvW2qn;e%m<{6=kMf_T=~<%<RwEgU
zeiz0|d#8R0JQL&N$eYx2K7Rf><s^>aDbGLZoyrvN=IIKBy;lRDdiPZrx2Q?py2bTn
zUANu6&$^VVRnhd)pdezInVkF{=iXr!oKY-Lq*laLE=~D6z%JF)3BU&7uch>>$!Ke`
zE^T(-kx$N<efmyE^^^X?P2#Iqv;iyEHupfCKf}43{J({?SqZ&TG9Op-I~`L1oQ;Pu
zg?J?DN(r~!?m4Ba6*A4Sm0K1meHD{9+sSdr!YQ;ZRH>p&N$U5#Lv3D}HY~W{LJWd=
z!z}8FrruDEXqU=_;7>)Flusq`6vN~!xsczfc+8*pNi&!G8H`cnN%CybYe)tIogWfs
zUFCfc-zytDUNh{_#tgxydRdyaY7TF9zcLdN7f(lcgBAGSee8L4F;0Gy@U?k8zInA7
zf*qxD|1pU_+5N4+_~vu)KxU5E`WW@~y21d_fDm<5_3ul)d5>yOcO+5xWlWWXGaVf4
ze^m&i`>I1?D8VB)oN$93qaM3%WG`&kcIKdQtz#~kta){D(GWwuU^f}#F!p@bBk{;@
zOi-vscimyNLI?b&+{ygj$(g<+F6a4oy;0W70jKP5$<ck+?75CZQ4I-5OdxgN?4+ok
zstw4JsLZr7RkLPXHe?F9=62Vn>5!UlzR000uL?|iqsi{Rp2b_<x9Kg8ybho?Nj`nD
zU@%j~r$Ejd<}t)a+Xn&q*T)@fnKx+>*vw6TysJ%pOrAc`ZOBfmexhFhBiYtZ$b|k3
z6z`5tDF}9pZNsthC6SvQuQ&wApHy&VlCN3oXzz}10D@V|`f~6D6sp3=rat#TY_Lub
zp0va-l@;s7`+r^W+tjoRhGYj1h&eWc4ydW9AigLU0^wTx^ajYuuxMrLF;2Sv1T%lS
z`<O6E7YiwHu$y>7@L{G0%*HKPRoE?7!OEUCPHni;@9XW=SuU@;(hC-5%R&{FvV7)D
z5{^H4xEvq#+?dO9nqcz=a09D!xsiZ|nmNd!UL<4i6L03XhhaX<mQNUv#MXtf_Dfxd
z@3Vx$)B|mE(F>zBOG;6saIxAVoW$M8dn?}**AS$AnHv6*)Yy%H)j7w05o$~!yuf-&
ze=4v3jll%(op#hLm3P7WP!}fEb}n{xZBD<1$M}@*-*D?xUn0k9JekP=Lyy3|+cR>R
zrrwVB_IZMQ5)v8XrY1_G_!<6JTUQjRcvfqbwa=&qwL^-Fi?yp@2@?HmYaKOX-d`ze
z(3V0X6#2w&D^!UAmXt6PqlkrW#Hd8(-$lR(LZ^>HkD<@(e!kRpg0XZe*XsMNH{3hD
zx6VY{Z24NHdMp<L{QPnw*TFf9TQrl#sAB=;g}HzawySJqF^O_*fX!tm`|V3jg8^vF
z5lhQ`qSY`H7c#%zb*BDHfL-R@F=nZjUTL&sbUwN6?n65rHKNFI6wgCO^u}J;c<s{h
z^fPwb{`<vAi1%3vuhsDF#p1z1v{r8znRy~}gJ(?zm|u?0(9Tmdb((uh^EdF*<L5lq
zzl3Zk^XtEL68MJGjx!jz;nn!pPndo9x>7Qi@^QK%fV|p3R;8CUjJA2h>PTzZTSL(W
zWKF{x8z}Pp=mos3)Nf+Mh4wYe^ltj^<2ytbIdS!j;3j01XI@`!Sl>X%OINPRmDFco
zgI$;57p3w2=g6@D?^caxu5%ViRLV$YMjgS0&m9g8aQUZbzvFPZgH^Ze#pZXn9OmKs
zQ(5!($ZsmAJ-JKC!whnkHP&`O@U44Fct+d(ozHEPi_g1j*5;{4h+)f%oH<)DwHqu5
zyPQ+e_m+pFQIA*@oxd01b>wQWD#ipadjiTuSzvutYs6z)GK;Ujnyk1qp?%-C(y}-{
zMLA3%<EIM1Qt?P9HDxTYuPp(c-yrx7WknD?#?8QEW0I1085#Jyq=cn^EF}uh%AOfO
zFvU2PeeSMjY|I{Y_?lIBbpHUoL4vQ_v1!O02N^ScX$5}1T)7my3Ck_HJ^<e<zv1q>
zr|tRi2~TVNJ0&29Nx=IQDI)P0oeAo-VN~FEW9vb?vZJZz+aA|@m}PyN6|Htl#2b!@
zjV4oC-~<7_(Ki*LHEU5?EG%+*=KS81rtfjQt#(@#Rfg3Bp~tY5-*rxJTd2FvqC*dW
z^~;_SLR|{A&Dw?pX=HC+UCF1cda-5C>1cf-yPld6TE+Il0u!qlx1^-S1R}63$HEib
zO?0+s`DV^PihiZyoTA54LX{B_sCKFRV&2cF@~_uwE36xSeI;BI+@GhBGdBMG;^&85
z?#zbI-cVAB2$luI$?~~j9ehNe!6~a_^7X2!D~rFihdLh%SHlW63tJ&(_%Oh<4_Jio
zw69&gGq7*|v)wy8W?-+mLxaGl^g${k(-MZUK)bVVhOy+h*oF!EesY`1a&v0`9NtEo
z{&E&YVng&m>nM+hERPle?hkhtn&Q+(<#q|s!VC|8U0UTZ_S8+7W=laf`#~@HP1dU{
zGL=r_p`62|#rwO9A8%x=1)W;<>VF>zU}3_%#2gAqlxz2ktQmX8zdXP!+F1XFk7e23
zV~JM8RDK1r_qYUyXtzSKb&Vo^+Z6y(q`zEsMUG}y|A3Ju(eeR`d$aZAxN#mjHLa5X
zHb{ZKZ$z4}hnbY>pHRJp5zs^Tnf6sxRP4_zsKAj$g<HXmbm*O=*0!Tkh{bCwKgn^S
zk^69{0m`o;b&$wzC@Z<Sc)JhEA@jQ(Z?1)o#!qCly~&2#`Yn`VK}>%TBbHHv8`wsu
z@s0iGgZuUCp~}HM3F7N#6H+Z6jykEXAiWBH>x1=xQjwXA*b8y1i=9+}*9uJ3%gD6P
z^=ff-%E@rYh7M4?Z3{9PEve+Tesi^wYlQ=nL)taW%lRu<zT%e$OXkrz<v?BSo4gN7
z2kyS@l9erse`DWfFW|VQm7ojif&Fe}YhBX^O{eKuDE5@LFVOf<9;qgP`ocokA%W43
z>sF$u42~aPS*GSmVV<-Y9;p>tJG7496N~lBGbHyq7ID24YFAilefTY3=`~h<*9bLK
zKGqesLcqd)>5+S$Z-F|`QVw-_#e)t!OQ&DXC|`RuS<0!_B%|(L?KOf=qZ&bTA)i7v
z;|f)!fg<$c_ctdq<%SB3m2S->gPw&eof@^CyRbUe-g6V2B5Tn)l5CHlVbg*B{$M-`
zc~RoOVzPu5le4{fJ-(>W#BPkWXa1w-6G!jrveW0Za!N{+@*wJ-@1&}&yYkgho0+#B
z3t3veFlmu9QuaQyL!KaH4*+S`W}1bXa-E+TOidAuPcUde#&~sH(1Aj~6p!86?C2II
zcG&w7(Sz2jEAOh*Qx5z2`bd|ej4nf&ky94nW4lKr5OW(2uv6lTn<K@YamU$d^-<PW
zX<L4$IF~j_av@e7<c1;mT*)g*WXSitt^F_FmWYUKcakOrM-3t%KH&2?tCe1&hrV5M
zva+4s-P@9{P0-qAc!eo$TF&N3&4ww?B<JBCisB`#Mz<ScBISf@<T8XcAPe4jc1Iy?
zDzu)hl~K2Q6_PR{D%oQ|y`}e~%hlxa{9*1n0?}7f*F;^U9!UPS*YAXj(5f#p9jZz}
z;4QuW8KKuSLeouew<;|7wO$JGt!zBfnqFHs@sSrDH>KzmD^oLKj5lA-GQ?6TeWbfA
z)>x5U%`SAm$CA)8McJHmqFq3E<415bU^k7)QpE$&H@`BwSE+`;=4WtB$f>`OR|O@p
zDcbJcLL74aRSkmlu$PM7hJQc2wP)PXw@cjX_`nnwad2SKL2yEDwnBmj7_;Xs@J~Kn
zG7BE_sgf>-RCVFl8E?XWb-nB9CU*R?VrA7nZ3#%l{KatLeCLUbM$O|H`Z33uz|L3S
z+<#>w3u}g#3@Y`xlc6Q+3M5N~ZAfvP5*bbJ6ynGTdwU8&=7d|HpY6;<Q;VkzAIg?~
z{PI9fu81wAkSR7hP5>qS&P_zfc9IDYt`8L;+pYS3{s#CY5X!ld!f#j6cIQ3T{L)ht
z517w8^F}7vdQ}+PAksn2jxhIQM4$@T+~(f;jch3;&ePgNaZYWDj$k}O`k4yj`Eo-+
zR3HI>fr=%Ef>CZDXR2Z@HxR!*L)>S)UEacc`bant@ChA2)}D8p9P8OcN1O|y-*ox2
z<9I&}(lNmd)ktwchap*E7oDB5RjEYQW2Vd@fgBpkr_i56$JDq-1O<c95?4iY@_&{j
zH(<@*$&i=F1Dqg{bUxIyp;J2AoQs!vlY@M&a==DqT<d|B#DIs!C7J|RnnJ2J0RM1_
z)xhbkl<m)Jy)kZwy`<V#baCoyiY+geSfkEkM)9x0HT>)@$CWv!Tx7{bOt%`RT&yWz
zeHwUFYWgRbr7ZpbC%W7iFmhAKFNMbY<wvf})0?#0rq12ot#UG5Z2MD$;)y^$<qfTf
z@{l}Q^63r2u<N_n6-F6xdkxA)uWzh0#Fdv{h!8d6@VXL}Ubu%PW-Uzvs;?9JArpiu
zGtc+lK*LHwRGv<*9ceB}^cAF75C`th0H3i*w^QYw%_LdlS0o-~W|}|ho2zPavp#;!
zxJ`e6?O%5*+HLj~KX@orFq}fwLibvxeY}ST?29(&P><g*n(VNoZ8x>HrfqwD9>ol<
z6Lx0*BF(@}u2k=|sP>5^2pW$>Kt$!*YEv1jN*=(<bu(n_uXmh8%tw_unk*L@J`4$|
zNfzyh=MZ1}6&TBRNMX9Y)Wa94nHx(GA@3>GJ;^hB;{CL%*0o~CQ2b0!a$nNrzu0=T
zeGWFgbu}8JhRj#T@t#k!M&=Sa3sY?)?SD#(j<KwSqgQ*i^`;DV$7r_9JgWVdBfOb+
zSSVNg5u{vKPY>ks6)`H0{h1boeXo&uwAzzf^59urHH37j@y{F5Z&70iT<@qR`=1r3
zU3bmzzE%|!<Sx#D!H%6x4&w;i?6=y{k?2JbPVl8qcr)$fdhy<5Vc&DyeF5kB^0^7d
zlb0(d*3qAP|K^?E8MfD<@wfk7Pb{RmAm}`eZUgJmi0;E$Dv?>_4|Im(@72Rl<Ub7b
zU)FCrUcJ3O@3Z-`8XAaTt!&+n{j|4@t^T)CRxS?9|G=;q$gI!c|EI~SRltK<1Uh(1
zul2W^(P1OEF*(|R|AVGA_-O}%s62F2+B}ueEBIUIHPQ0j|A$!IPZjVpo~^|X*s0J3
zKYg`FZi<-`!`m+z7%@ZwUA;3|{}K8kEHKO`6SW2g16w|*JvvQ_f!|%V@UB04r|{(;
z@vm!x(4ZfhJ8{>+h;_+c=D)OKAY0Mx&^a&fGbf)%Ct0yB8NbijGP%z$%+|~-$EcIx
zy2Gg3vXwc#Ou9mhD8VFgUIvat>L&bT!dmZZ?G$b_K6t_*TO`S0u!`+uHfc0CsyK|&
ztK0{u_O|{jqdP7L?9)MKXfn@U_)z~ERzT73ANzM2sT9x{O8rb;D9v~(^=76aZ&ObQ
z;dPnP-toB&CWRb>xCd}j;cZb~8sisEAT=+PcDW8rTDcTGvog?gf0xg>9*#lv;Wnij
zC#IjXoFw#}QBX3G&IXnSk7ra95!?cn+Gf{YX$F+05HX<WSWG#mdW(HLVb^49)V!7Y
zOF<x1;Uva36BprS+j}X&=2aHMUM_esFCt992C!k>u%#zib4r0IsyVyYOf|1OUsc9%
zw=n!;axyCqvmaTfj3Wd*^)8c!8VtnQQ;1y<U|_s9uPw_wDY`YR5I@y{K_fxbm%ES$
zkqM+A!ss?uood+=s5i5n!n9qDruTqN{>4;{tCQ#T*}5c?B+1Yy)^DH0ksp2uZQgyQ
z7C-q(+l)>RlH*b1*PJ^od`>366MtU`b6zT0Hq9pj5o`=~$3y|)DlyZR53HZg6y_71
z7Z~y|8UHFlWfe~waA-Mn>(uBJ{6t5#BL5~MTtvuvpx*@6nz$LGR&`2+;V&n<!q2TI
zG9=IVA#t80xDvSWA2OO7L&b+%q~<trYd^HK-C7yXFvj0nNbw2LwA6LAb>i<_&2E~E
z8SB+Gb2#>ktWxbAw?B0?Wo^%lSsl4<YlgJf-k_7IZbI!{5LJbaC`t`{8fu=8`bl=1
z>Hh8}mywm}<5oq!IvU<-<Fb|2JgN#7iITtyFCWjFC+tXK4s!R^;II!DY2v1*7EYB3
z?VHaNi2IQQo4-C@`qS&#k?VG7ucy1vhw~iVef_Ct?q9c2P9bkhJN`$H)5c+-sh=;*
z(<l19x;cu*Hen$6;4-mLu+nd{JBGB1=-oi$G?5l%>PINQaC(6~z3mdK_iVqsGU5w)
zoZgVP?1x`fX@Q~K)P5kj8PjNwk5!NEehws+oL!zVsdU9!RXyH3Hehbe^VAuXp6^Lb
z5+5iHPe`2!q*q~&Pc2)dJCAjeG(RX`-#Lb>YD7q0{_zu#C;V*E(Vqs;r*o}^jB<`D
zyDJ9JdtDKen~-uYv{Y975mcCbEM9x%oD^d>St9;URG?C&N#)?U7RO=vMyGQ9<`mZU
zT+G=9D9pb*7{lW}ec1^uQ~hA4Y_8f~?H8R7EY&i+(RV#MfT|}FgA0j2MyBNuPr`|s
zGQ-I0!>j*bVaLPUPA6Vzd##q}2e!Sh-VeW3ayt;sO#ngFagiIQ&!M)_-8xls)p+NI
zP;t|*b%};xc>PX46qzD)H^>OR%q)8V^yBbkEN#(j?Qwbl+{e>podzj;(zkW*Of)3S
zX1x?zyt)|r6j@8FU?^HXaO*!d&(aW}gizNlg!;8|*=62aB)cquj`2iTxdAAxDiKx;
zjCW6-a_ozH*KQqt3JR)I<>|p)rxE_sPwBw1PmjrY*mP2V@MU?o&2?pkbN-y&DdP5M
zVoFJRVXi;PX`N-l>18%sP?_z|5+=c$tqZG@PPtr1K%4PRazWNrfyVylG`!DeuzA7A
zB!>aE=7K;gAlGL<uk~mb;#}gGJC9Vo-_Kr9j`ayk*l5dY#|9M`&H(gNc)5XjI1FL_
z^+dD!IG*@sHAqwH#XtTUr~K2~bFD_e)p%y<DvN<c^-rqP4xuYX=Ih)nkRNfm12bdw
z^}f@D$y#;nz|LGz93w54&WBIfjY!XZj^^w}ylgPL!@kEHPsI{XQ-Y`jda76?Z^M}A
zMTFt??{Jyt_DLDbXZ3ZOs%-nn+Jp&-DD2)W>c{F2g0e;QSha-N!@_2H+51f;nw-(N
z_|$<UGsokyb^*j-1uHOKyL&OWh?R#WY^ImR^39cb^!hI1dU(Ggl=S4Zi)f}vY-Laa
z;;26Va%Vfi*$-b>?)7OChjzge;hmKa!OW}OX)~vjl}z>pFG_)D<Sm}8NXD`1(dre5
z(&G_wk51Ni+o?i%%#hOYLeU|fuMUdv-36fOgq-NMm!LM-YLfM`u-bM#_><Kcl}E7X
zr1@<{mr(&@yw*ME>O%)YJoV1r`VfJi55<ybb$ej;buYB7Chn=t^d4O?;ENuPV6Zo9
z8~fqMW6g&od$``?8JK=GfE=k$d{)M9%{|RkF%kBbPxz>PA1vHfYDPRfoltQzOtt@N
z0^*15e*s8$IjT&lZjN3Zf|nIyKtel)$@D-k0??}cTgJy#ll3QEkPznI3Bm}b{dKIs
zP#+8PQoRPh4iu@nTM2)+W}~Qjq@Lg!oK}=&F{MQc&)GdVsx_eD<-PvtRaBYeRqY(q
zT{1I?`l7A;*RSOMn*3c<t?yD%e50paUc!R_wQ`J`7wKuMJrO+2N_oNoE)PB21@ea~
z0e}9O(WmFUDyMS}iq)5uii)fwV;xTM#>pr7^=0T!ZZSH)z>?D?h6u_naAHeVq>ulW
z96yr77P+cJU0v;dL}o9N&Z>|%v}%JhereRs7O*+N7H$A^yhv2{J~ZzKezFiXSuP_^
zrtX|RHa=9DQMc*QBx&q6RIUvoEz^t;>@Exw+aN}vVbqhpep62iCQ)oXW(RKDd$<nd
zifoDBm8#>D{8&83>I(FeQ9pfCb2JTPx8r1V@&;RV*rxexRRUdGl(z(#G7hr(`K*8a
zIle8;Uh=X#$Eos~sy9$N-=m$3AWI+{IZwh`+vc(OzMns0W0|}y`n4zd)4uL>&7fcO
zVZAK1X`e?|W}3Tgk^Ps1Nz>t&P#$ha6-j5t!(QbUmIs)5&DD@-Jl<k%guyEKV7}$&
z!!dEN=J5MGtXDxPc0gALZN1HzUnbQUhT0dRUE8zc=Ju7VjxP%%fx3{H`))1wKJ6F7
zTo=MCHzsOa{tbCMU&ZQAEsdT+&kj<x8j5DqbBz|R?^AY|;WzU$h04489nH#SXcOlR
zZLj|@ZJ9#>Bq`xY?;TwW-vD!{yFbaN%{e+x%rb?_)zpn%f?t=bj*GemfDJ=CftuN=
zLhQO6qx0XI@ZB4zsRq>X8UrAAfcyB6??4N0R5K@z*RCicJThi4XTM@t%513X6qsia
zKK>{*=*(@Z!S*FM==SAun$jL7C1VRAc8Az|K6Xu{+(`3xHCbT61KZ#0%JvSOuT26u
z6$;?8dtJqmwcR(nbzWa0-g%k%pd+1`nu3EM<GWuwq>1JPO7ifO^4?kKv_bZM%UY_8
zXOg{1soS$(my)y&2vduP12IEe8WZ|jT*RXdi92f}IZFn3g~?%QRr?K!yQF)$NYy2#
zgg4E@7a>V~@xNa=$+4CqUk=hjns3Vt8V{0JL(;Rq*X9KEL(fG)nU44`Tr+%NLdnN=
zMnL%c5N!nGDBv0u;5-JoOlte^v2`nTk@?1Bed&l}x|Q$%1cvRAhrf(wIQso&<->5Z
z)=>N1FF~C;Mdpt??t<3Xh?gJyS=t-!@D>UD@LQS*JdGWtTK&+olKpn}+{77t5QV7#
zM%49PNTJYi-;H@6&gQKL^q|)LhH$8_m&$Zh+19aD$Z%-5o^D&6{Eqve>Ev}P#U3h0
zLl9E4Vf=MAfqiez=%P6fiiuYFZ8M-l_0$aun`tx(C4YfVcqep8R@R!<)MoFUYR;IZ
z7(lW=9=cOE0R8?)dCZ>`ruMaco<h<6sa;SM4N+eqEDUBjKywE(yH%&qU?$4jeB>%A
zk-zTawvGP<*!Dt?92pa<r4e&dQpV@L2={g6Nwl7?+zTY5h{yqYwQ<;OgFxTT6RXUt
z=5j}x?#fB=&ct4WDqOx_|A3VC2}OK*liZq=;O>972s?P*V**R6+d8VH?O+G{rm7eQ
z%fViS4PJX385tWVx2FFL`Ht4%oV8L3+m@tEnGw$$-J!wB`XJ!h@>F^wTAQ!P>#|dx
z`OuY4W0Xz^uDFdn*7UPq06jLOlWW_Cw?1g-)cT@ySbqOom>p*Z?Oll^ee9`wd2uo9
zNai^OZU&xZ@<KA0fr!QV-A3J&9(UJ~5h~6r>U)2cL>@i94xF;m6H%w<la3P*<o-;7
z(}*VSPO#&&nQ{6ePnhxC$FXMjK7v$((qr#BXHR7B$xOJ(GzR-y5#b#fqOp)<Y~wOJ
z)=#T?<aK4<(RS;7e6*o*Lx8shG=qJdnE_exMe|<I&7pXvZ%j*Nuk-frKJ_iWoIF=S
zyiN7DDy94Eq@i~hHIV~J5<fNLM>$4d<2)=5oAg3K4-HMk6N~LwKv-lmVHd244XejJ
zICc*YDu=JcM!cn=s!`HPWE*QA4ja<jL7q{=fKTpfFZMcism;RMMX9-2ob415EQPRg
zSR72eu40#h|8vfZeQ<Q&B>9F!$Q|lHMvMck{UY+6$VjsI6Z$DpT2K*BO#@!Rs4G)Y
znE$e7>O1ie_=>E8wV&^0AJ-Up>e*-A@h(VpY|}xptqfC8C${Gw!nV>mBndhx|1=S_
ze5{~*;T)W6ST*+RIr)ON%E0370IfU9-J-?U)U2+<mDg~k9ZY{Y4dxYYz8g0-1r1Ew
z*QX=0UEZ}kcXR{&#76tVRA^s#by#>W6SL*U^`mFah_>c1;VeC9>xz0YpC&Xca6EqQ
zo+G2IMK#G(ul&#+!8Yh3wrPs%hCRYoJDr#XOiJm)`7TGG``eBJBk+x=a8D|HD3b@d
z0x_5S*sX6*OHHzXdLWxOGyzYAQEI``?IBQ=;*+kShF1=IN4gYkk-AT6AKi8rawa-N
zJJ5+JFHG<B9dvts^b2+GViPFO)|p>A?UJgq5!GD}7p>*rZN{X5v)BTrV%w_+jvj5k
zW-*J`;&CnY2>N3-yWJQ+-kDRz#I0WQQ?6=AnIG!-yHo`H&`^5vG{?TsyG|P9*U4ua
zQS-4BdAz3xqOn=*<V|-OM5x|iN6KRK1#cS{1l!Vaiu)yN2yVofHM4Ge4%77jZxn%Z
zzzdMOiE5qyue%O(q3_4F$X3kHvviBX;Df1Ml$OC6LFN0O?%f=S8jlIVwrgoGmElIk
zXGRNxRis#PVw>R5E#viP)K|lwE7gYA<&VHLBU}lKDy315`E{61IM)|8Et5dr^R=oQ
z|E@xCEWN3j19Ia45h@XVVD_8+XsPXG#J1#T{CSrqMZW{e+?!Au%nN47-N;9v+m+Gb
z5|@LR6@q0S&h{Jw;|0ziqZWwI?gKZL%~ScdcStU@|0*0dCFFuQRh`|m5~!<n;`%cG
zp>lm+ljm87Kl(&(6nmrpFb2lwV_}oJ6h@Q{howWgdxj+N(dbJ%;Pw6ozp0}t^g@@$
zh52OH$oO!&J^6bc!2v!(iQaItT;DC=rc?bpGyG*V_`k0HyZ&z>yT7YGuT=r{hunMn
zR<jTiXP%XTx6N$#QwIOF`g;yJ3+_Ca|E}ToQ4SGt&zjCaD4}ZbEp?1!CCwT4g{R4j
zzZHMHn4X+`8;3D!`ro0!fY>T?Gu`+>VGklJhLMu@KMnXK*`+P1tZL;;kAJpJRqZ(=
zyfpnKLP|gZ$unO|xm@j?$HP!I4Ad8iCIOiz|AmRZe9T4%pM*X)X#R&&H0DXdastTE
zJ4q44^SWgC4mI(yAn{C@34bVfyK*LjkV#y1>KyvD;0>LcV1x5mHa5mv{wdq=6o5W!
z&3DIvDR%RDEiMh?GSGv1k_#53PLqej%w({gfLTR)WqbmNQ^BG4Y^eAz5M->8+1<rk
zZtGP&lituYS~(;>{g1~N&(Qd1hsc$NcuJCH9AaTJFQ#4qTlqSVR#ByMKT-C(hU8RF
z$X^#i8u*_J@qpLREQ(`M-<`uw0{)*9z+!0d+A2@S7Z9i4$-_!&MWm9q7n%aCGPi7v
zg*KMNHq>1ap)oFT>c5m68+Rr&Ee4qgaf8`$hNQc~V*3}a6MzN!%&y+Gbe#Fx90~#n
zJ1!)wgtCzipzc&URK(kHO5pwi{rF7|hFmXC_v8O)e)7nf^BsjNn}w89Yuz_&_j<Q}
zQ@n&IJ+I#Whwl?dTDIiT_UM)pwV@^wpvAeWBB%IMQEG|L@4%+&QN~DM$Fu$tCX-w&
zf8wu<T6gFjSXtDLxGP=&XdEM$<fq|(mChDLU!ctj%zbawhZr8~vmfxgB;ksDAGQeS
z5bQu(qKcHCG)o+6;&<n}yy@iWyC?jQYGb*Xb;`78I(g6#LBIrup^F^e-n()waPn`o
zS*r5=Hm4`HUD(X|Unq|c+nMvX^C#-p4_k}g;)>gGo5;sX;FJ%q!@alOTnYSVb<ubn
zU#g?AiCBFF4=lOoD8a@-b$5M<50h8B3NhsBaSj4hmiIsMdzAN*vxbjVcztW6?5Ys3
zpk-a!r*o(|JT~oP(~jb+Av0MonPbsPDYB_|Gkp3G_;>u!==a~w%L^Q@OsVn(yr%;P
zZ#3BlS0gKIui2eQ@WWsp0OLP@hA*W6l1n7xJvnu1<nCH3Ex*}XXeb<GKRuWz;#Qg~
z<mf5!CGg=TNwtn8ex56^S+wQ*reD?z^A}8-gWBZ>JK{6@sQgvuHZ@h(-vDU@`gp&P
z2a3>KhMvNXWqW$p6KA%p&vt?yD<E!yHpg*O{Kp)IMyt6=9kP+tQRmFTNT;XHg-}`D
z$szqccTLWjj=;;0My&o?`?OxJY&&Lygklle^Ko)UdtDzMOniTvKdalU<1iGZrq*B(
zF}<Vg;c2P-3jpzN4vn<1FnrAer^?>h^MZXbQFdiv>vIr{75Hx~zA^kK|Ln95)NLr;
z>e)_*X0!{kvSAqc{fA=fQ~~^xGS<ZY<WPl-vi=`$RpqU4!+S#sdyTIadTW#x)kZ$D
zfchzBvrC<@=``hex*k^nj@Qj1o21XCrALdl<mS}){|LVFQ`%umHxek2MQpduvdMUR
z_kNMIZBFTvU)DVE@aVV0;U*+9X!wsBj0Z~>|L5-zsI+`4;f@~^6+<H;cDvxtJygg4
z4sv6BInO?GKA89*sT!~k2QA)C=>d(ww`ViPAUHaZ960*Fe-VHs=$^Y)l$KKPn1AnB
zCgb|}rOVXD+FHNfo*WC}(c*`O7FYk>=+H-y`lkEO5!Kbzc9oDsGy-<Nr4o(v2t+uq
zb_WFo^(7gG;<*zpkp0@D+<WiH3f8JcNYqW8P-FHO3B0IE8%@iL{5!`O)-vT0J`GNb
z685uPN-7y*sG1Q8Wi>U4owAyZ;q?D9JQ}|xQS&S?8B%2R;)(s)W$j<SF)*M2!VAZ_
z>MqBIOc$I~K@kz}_5K7>6VK&XdgcE9evW1&tp-EZxBno@6kQz!DyLU5n*W-95tvwM
zObSGZ?l-P}0AEc2?~X}hWU>!VMkG0pd3hqhpvktPEeeONdaQGACDCJ3UN7m>UuO<4
zru|QNXEf4Tb1d{eG0;=G%0Wd$bBU*WrT_)H<AMq!kQa3nT<hkr(y5^dx!rAn%bgOc
zk5kYXNjqW?XNaxL-9y`~^0P7=2M=g_P*XgeM*uOe$@_8`5lth@q@EY2b&Juf0qvyS
z3^;_t2=<rQFLC+B^ynm2DFK~4o6-M8-CKr5)xYh(=q)OsqEgbgL6>xc1xQPGNOyM)
zim0^I&>=|25JL?m9YYTtLk=;(3=Ko>h5nxB|Lhn0c=oa1ZC-gGGpoL9tt&p~dDVVU
z66Ehs7e6b=ONXJrdIKVx#h&y2TC2A!*5+8$kR`Dst!u7Xyz?_}uhu%d6OI~=i`mr<
z?d<w0Gxi%i^WLp#?kZ^Vh<H4JBlnSUlTVTcN7Rrx_#v%+N#QWRi^sPNl;-M_T%<%a
z2GNFOGo4x-6Rjf{js5MXP!abO{?4MKsW-<K>lE*;vD<>vy8aqoj%6@r1Aia(FOHR`
zO;+Z!_~DxUj{#wE;heRKB$P%+<?lIXQUu=AQel`c1SFV-eWhq#*VR4%vX}dno9lpV
z5Wc3TYt(-Uzs^<99W935O%GL4TDxNVo00Ef=JPkg-0#E5Q)<~J`JS;fW#xiZ8=O1}
zLr|(4dX@1@{G1)YLvv}il)6#2xew@+?+#EwJO<X;y_>mx<Czix+AL>RN`^tF{U+@-
zwq7H>s}-MbEl}6*@aK>OtGNKkC(>52JVvN>^nCnr6>Hpgs4RG|Lb>A^$*8^S6a^}e
zYaoWYw|6C>u%vfavq*OhoV1Ja>%<oFGVU4}>lG=7dH$ULH|g);3VDBy@U6o10~e>J
z+k5@zx6rUKBX3mvH~Ijt^OIcw8l=FLeAr|cB>wRzQ*KkkmgR?VD38|<t*4HUg8Fz+
zI*EJUc;x&g02`V_zDZYK`^>UfUuCa2)Mbq`sboZYF-yxFoX%+?Nc{M9HvR1)f$2Ab
zgk13>{G^7eeZpQ9;qOzXbcvg^NNRx>chWQU&gWDK+Hsf?h9dB@kw0LO&P(RMLZ4JV
zAmDzs-nfyQ!o$leHSiCySeZpX6`{|!dz8;ybRo#5A#n7I>BkI&J`{<lNiA5l+SFxF
zZMCR*FTKIXoTg4nN#>Xw1?zq5B=%eJHO;zq=(~Dbi^9o#_>DaSq8;)KymQ-)U)@R|
zP?4mOeVwXZavO#0PG<8A7){Y00`lWN^hV8i%JA5&rAHN~EX##c=tp$C96D8cZscsr
z!;l8azp}4|cYtU;jo)_saKcEryfo2oC0d4+m35kRJuNxLble9?$nKz?qFf|z=IiJN
z1TF(bXl+G^E?lbj30G=%b+HI|mDyB!qgAwOf}5;T=ltGVDZov|=0vMGw=cg@i!9!Z
zC8J7Rz-9z}o-kG-GDOak`$$%<yu_`@M<p|<1hsPaqq<`qNdtuOVQ3BsA!A_)BwdS!
zwOAk;%L*M(jgj6+fduKe<E`)f)o?N?e{jYE*ZX~W>3d5{OAtV@c99=|2jw1#TbM4X
z+A!h-=%jy{>!me->=b5MrR=d0$%b*;K);_|c4U6uHt;@)eRV}Z$APvLXHu7gxcimc
z&aIA4*8_NX$i72tcyiMuyWn96mFw>#WWF^6Z;fudiyUO9v3bI3?6%%|h`aj$*OSy@
zL(;nqRjCZJ-k+OAhJ`D;_ib)k%B3~GDbmx#VR&}OU+0K{ipLtvnrc7kkhB;2YgE4e
zg$tD<i4gb`I^iwcx(m4T#K>Mb)S<wMiHX-M_-Jbi+k6!;13jRl*7|4>X~O@VOq9DY
zwtS!`9`VrluPCk-e++pB=s?uf)eq2Pw)?C7+fUau(A&bA67Af7?~+%qURNDg6Gw{8
zO%7~?1<~miAYT1Pd>06LK>8nb9Uk-vAoLplzscHw&*u-Uk8k&~L11Q2PM2<^`T@2;
zy4X6Lt7F6NYSTqSz}6Gsk6snbRBZx%|I`>^MWug!_mGU%YT_ANT{ZdN^#NW$zaOT(
z$W(jsO7#D9JpXs2q0E1#)p*)WisDG5&q*hBQh8gdb(EeIK!G?F$-(rw0w*j#aOS(x
zPVh=ks3qpLZ_5#CHztio)UAw`&nqfFoj3hVRq6T!ybAjlh;SUVcY1>O=<<3Lgvfp6
z!0`;q<tVQ5d)tzXzCH6XXK;#}yCkyJYR=@<p6n>+T@&W*!#Mesca<XJoY!(b8b{#3
zBZ&!h>GEsOr_LEjf2p*OfGpRm6w+y$L+z%xWK{CcOU$dkzYvWOlE>6K&Wl8E?_6(w
z8#vU!<yEa+=SFiLhwyQp9+BcbX=Bf0<0;PsI-4$o-Xs<MR=Mkjg@NS+m%R%oh{N{=
zQCUFik_I-i7Z4-OiW<$lSvDMUw}Dqr>JA!?H>DLxMOG`gM|mY|m{j+ha9}t{D-jqm
z;~88;#JE&te%P2hp2g-N#?1itQ<2iUKo>V%iYtCo)6yh5(}yAPoN0p5WY7#Y9_iKa
z^*lDQB=fkp<7X)BJF3Od8%K0J)e7*)@#gfW!Y{9nKqQ3`&#I(Z^5T~Q<w?^^ri(}|
zfgY9+^MR|+Or8{yK4)wh<)gW{iYLB@!({Vn=t`{-><>tc;=ZHjpvHRw0SL?qTuqKy
zh1eY6yM>h)e2h;rYFILC@|AD*8Otd!pLL})p7D@Ta^}b|uB?oK&6!za`%Q^Px1(Vf
zek#+UR@<<S&~3}$F@-4q#UzZ01609&8{?CC{sw%~v_l5r5S-L8hzw{xIIw->CX8O)
zI8M%~QWzZb-YV|m{!NizL=HYeTFjB7(SVJY5;!oA5YK5T^E%(#*#FjyQdUVfDRI)Z
zT}z<nP-9<iH%M;eYCONDv!$DVs+n=k0w?3n{w;*$MY2%zsmojQrRRId0b~#8hoCnj
zyl&E^IzX>$Uo0QrO1_f;tAAEkntg~lPKa+8H;aa2)5JK-%}S=jXC*I?lHV=R@}-nO
zjcLAl{uOEl?*e)!s$Q$wqRYT`!>Iaa47R(}pkdK@aBY*+v%V(9A*z$X!9a^amj(DU
zO*`KCR%f)ya*QWtluFoN-z3T9lf4f2=Ahqvq681Z-WXKwQO%(H=_klIL;_S+tJQLK
zJU7)3CnR+*f?n*|1Yli1t?89jo|N>qr;OUr&>bsobEc0T!9WUrp!6yIxzizzl8OpI
zNhHwcL{wmMc8nOm*5wY>U1tc9lTV}s=q_xY6Yo2~#LRkik0S1Yp~z}p!s@*@bRL-L
z@#bbnp}Y;m)y<^6BFA6T!&<y2pPP83P7k$$7>Lm^T;+XqIxPbAQ@gP&<4ad+`guF=
zeJwSDOH<0Zb?X(p3(voWb1<D}zi@JTzk5{rITSv&Gh;uf<hh`wRlooF5{VBjU4Rm{
z7+cnG`o3}?XnZYp(=uD3N3=$VW(FYaecvtWZDN8AJGs2ey42!BYk&XD)>J1#Yf_1*
z>i=3e=78HW-`2Z(y`UYg?`2Ve?jNcuEYC99W!^RXl2Rl+7?|{qO-xO5pt(V3`@;0$
zo;Oq(GhJ6@Bso9ib3EW^?$vi&Ik!LiZvVRGN5N3uj#{<G*e-)t^$qndB`)3yfthK$
zl}9bhqbe<v&liUJ<LReQ86M~#eO6x24^H^3wF5wv72Q)NIO3io!==hfzgyPZAI08*
zzkgvljTgimDG$02n!v&K&C;Js^fdJKUCdDygG7Wac29v_ezitsH(T#HKkV%4kruN%
z{~A%#Sg~rEM1*(gXYDF@v5oVa6BKjq*{Q9_o5j&c`P;a1N`>6sZY)+V7WfZ+2{B8e
zS+d%9y?RJ%!e1<ChmxFq{*r@Do{mNDL3|oMeZlg}#<IT3u!;<&I=!*oSdZqb&%O@}
zYHL4jN}OBG;oEo`ahap7+SFBGRYg`rWI;mX4>=a~;6iZzWzrd*pk9?3T^-_&Gy67a
z4Mq*VYo+#~KEjz5s`glo0#W$1Rt6F0vz&f%+H@UP&lV!X=XUtxpC1fvF;AD-<$1hr
z86>xv`1ktqh%_26BPCb28{A%<44)e%^ndTuS=Ggj1>kPtJ%Ozx6M=h5^GGI%sY1ws
z8x+6>M_|~!(h_H|%qf}KZYo7n<L~^&8qYmD`_enCqy|?jfiYZKh6`c-Hd;QV4N00~
zAcdo?1N%M3u{$<hQ=`8A8#xEvRbn9NmftK5@nhoayON~Q%ho%!m(*ULip?p+c=YPq
zj$#%sdgV^N+h;^Vc6*6Tl4d%^Hx28*Ry+0L>t;9^Tz%y7m9rRntWCTo0jf=~>9G~F
z3?--nZ~s)Y)76kXv~QNU=mKoi^roo2OP<a6`g?+}7=MggPx&@jDb>#j+RnW<96JDu
z^L^O#-D+x?k;#Oijtz>Ig*VGz)$HlbSuINI)m9d^W*P}zFNZwRKP9jmz*;aO^pQ$l
zGV~dsvwR$jmp1<2INNV(sUT`;^fQ}?t!aM~*s`ke`DYiS-wq=`tpK@JbLK2{K8PO=
zFBMNn1J8;{*9nA0`pZ<c>&z*US>OF?>d-g(#-kiBbAM9je4Nw%Jv#RLoV6X%-uToH
z6>GTeD&(8+^`5Me*v+O~bh(y#E!E4+&&KYW%(2-9G?}_7M>p>kU5w4sk#3MXlUa0j
ztct9RhG;luP*IaG(Ip*$yRtcbEffr^QiaG#iM#r9L^AO$rZ>$Q*Sf<F3FCDhaBYQP
ziDsUFcXaRmmaWJ$`^sS2Iqj8gL?%KonGY0{^YfHy;nxf11~jv=29wt&uX&|^nQ^g}
z;W}MC_l<dpU)gh&-Br=6PGYwQ3msor5CW>42o7A1{Uh<}yJ0nIawK7etb%)8Y5b7%
z9s3_ZceBO<l1R?L<gOn~lnTC=;}v14kp8gQ{gam2rgpO0Q&m942xvz+#D%pU<B1(8
zSp>Z}!|L`)zm!)06UQ;h0nunG%D1S7{`{2wA5U???j*~Ab7{o(Rbgd=`Z4C>LNeXi
zaBS;FO%xi})sT7nS$v^9A$t!3(#@=mqRi7+>$T7>VVPw5CP=zZQ?iSg3t)qnd8nr^
z&(+r=(@pugri8Amo6N&Hh-~jS6L*XIJI47ZesU^8b4B({Vl6e8@kz|}xUp?^mJ#Jy
z8<SSTUzyD`I>UKjveVZkvWBsk{J7HH?=Jlzrg0U@?(mi9eTA@8p#O-lM}GPnF}`A=
zP@lEc+ux6=KRrS-66JNcW5-c(@^{=qnli(>>rB;^3B#pCo<wTkHniS(cUhAzDXD{Z
zEGEguUthX(k~5Vo2+NZa5wp{JV~%Eundyp^KG^wH*ccYd=x>}tp{+4?L%(~;V@wU%
z$yH;tQ@1dkc9n64Eqhwp@jA*M%&7VOO?&#h7}5v_l}Y3wW#cb~!|g_{TpEPs><L1i
zhqoe6`OW1<^6vr_uTZVC?aa|0iy}q%<7i$8#Z%TERiH4*v~Wu(TdxLYknapEke9ER
z2;2()Wx`wdMQ9_omTJxk8BWRY!hQ?A+T!wIR#jr_o$>_jFUvQ_kbD}O$;%y8SmG`O
z?tnM0A>Wl)6d&c<`J?<?^pE<?*3xVqNOcs&u;oelm_6<_;<E~-ibJcsPtDeD{QU6^
z&NMBSt%|eDrALJhhv`3>ym!HQq8Hf|-WyG!7t_x637eqdtx)}@o@kR*jtx>vff^XL
z>6w4f>b!@dh>T~GL^eBSq+YM34=O{xe+(rQ#CdN8#(rNyYM$(ZWNssk)T*`v6Z_as
zxj7)3zf!8!8d=I+B@#&7u@*|+p2YIo-k!a2o||5|W{D)U)Y-n>-jai;*gB1dIPKsw
z4Z$dl%?|;qzOV|krZ+gRN(|04X<@Z_>Zb%1fHb4l;qMP(^r?oiEF~R{6MWgQXYSiD
zdlL9){O;8Ctp=3Jl_2=bx*LaRkKTQ-D@n$A=~Z0vWzs+bJV4h)%Lu2-3n+l$WGPa!
zH>eY?TbtRD?5G);2|=chxdJcZw{#V<aw}z1cvK!(*#S_t4`UPy?WQnZh4nkthLZN@
z@*0c9@hlZZxh6ZA<5fww>r=nKwn*AjH&D%t8<dOoysKQsf*&R(lN$Lxg)h-2{Qf-w
zf^FE}UF)|tpB1&lA<yjQ^`sB|)?uy{sy-1<W)GvhMT1UXXWPuMGw97`veB^>6ZpBY
z0jq}qpQNg#XzRf;jdN_t&-bnkGO2b{#+udRUUwqE=LDzo%7p{{MdZ6>QjHW7=0<@0
z)1i)>vrA`L{5DyJ6q1geuKIuwGF%b|urq{=x`g2l>ZR`Blso@E`J2``*(%Q3Le9-G
z&7gCyPH*oG|6HTF%@*4MLl>=fXpt}QYzlC6ZMIm^2Ao8MzjH^CO|5GJl}@(e0fL4!
zSG)4ZvRsrXcFI&<O(<E|e2IBYU1-lr1vdjCdrG`?Nkf1UJZR9Qf?ys2!_A^JdbS28
zzeByHrUpV>gy}qqs9)yH$wuc5J6=^A3rm}R7=y4Bb-&+B3?|#ZbkDMa_nmx6syY4I
zXjjbcD*0b#Kriy0OBxdML=$Gmj(fufejo}{%}Xm`X+BqDjVpY&G#xWezr@({U23uw
zv|081by>x;lJbSD_ia%h#B46Znze9Yseu-|qVA2DR}SK#Sxh1kRR6Jo5vdx7{#VB7
zMp{BMac!*&{A9ibdP#r(`Tq+SnEy9UHMDW?bV?GziPr_4_Br^~d(+Rw&feQkse#!{
zr{w8y{Z3r>r&GS71r3>JN0{^e&Gb1N1-vwDgw5NdDX4j?h8Xe|-q|`e95(p#KClcV
zxev5gWLlJaO*tGLViD~ciIfy6Vf$|DR_!e`yo)8eNiF=PzCJJTi;|8sQ={nJz><z^
zbJbBf2Jno4^^)}CraB*#xXP)YRWO7?Uj{oGzI0pIe~C|sT+(a#Cho9$ZC`NDXnw)D
zHt<w<DQcJ`y+U+mN668M-N$$~>s1TytsG}t734q5ljgOPiELe{{eOI-mJiPbi=2dN
zNSKa8^SUU~%4wx|86{v1hDt5vzy%#D7fSC5XrokLCVS<(Rz~K(Es;pwi}cS{zIrb_
z_C~z4*H8~kJ0GN6W}f`*9%lIYEHAxop>yNh_%hly8=MfAvGcp8JhxDtXr&KqZfi97
z63#MI=YH8+F~&w%ajLZv4s!5Msd|bj!kwG04Z7UawRN-}ppDWzs5M9W7HKsdpSH0q
zrF5q@+0EI4S{LuNFNX~zZWf`&?%!FtMMDBK8EEBfq+y#I4aa^E62X9r@oW-R&Zw{m
z%A^>be?>loARXXx8Rg*?B{zs@?u$yD?(Hha6^g&1rm5~LC*XD_=ux96_I#T4m1H$n
z&jDGtlg+gfSFxNe7#hpjpzUcVD1=Pysb^z)u{l#gCAg++{_S*~K)G>KU3tH%i5O_6
znwFqKV<bNvuN<tC3@<R(N_xMz3TL1GmpcA_!tFQ9Un>Mb@g7)%iFagN9MeyEDJM>)
zvIy9o;*!S1o*nh?mTW(-B6G#nC~mD&Uk&`Tk%sbaP|#lz5>8mDxbB92AWaEwLhKbz
z&7d)N%d)?NqB``gy{DVTE)0(Qmd+)aJetzc20lmYV{LqV+hA_FWu=5;6v64&Jjwg&
z9OVg7Y5AH7PCF?m<yq-?<uUDQwN+X53>IPa3w#pm&b$P%!lLu%kquuGzkvn2o4Mc<
zT(E=-MM_`L<pi1u>VZS}McB{XntNn_=7(#7k6>X8=yN*p0eY9i6(}>f=#bZv0IAPK
zm(cvXnONl$Q^s(C%JPI`Ut)JNgc-r;P`{98xVL}!H5T>6|Mdo+LxAaRkh@tZs=owj
z<R<4|H!T{7^bbhaOrsX$Hd5)e%*m&33xt3B4Om9GF<UatC#02chvaP==CR1N4bGL~
zX4r}*z+5R3wPIK<NC3xvyr33V_Ux=4BJNbM+)>{tQTB8(gqSEp@yvWG{PX>-%{|)`
z^H$&JDaQcVQJT!N`TDaK^L1~0Cb^m~?RvncyUAHCgZ<$pf_aB)BrDxuDROzkHhwO$
z5<?u!z58n_uv#iyPaAWDJyDnjbVjf_y~LyDJd+^iZE}9^Lt9Xtf{H_uR<+O37-N$B
z$<6Hxz@YN%AgFn$CH;^Q-=&|U#MPFW&F?uH_N99tQfD5XZIyP4DjSRz#9@MEN<S)U
zL-hJ(sP4Oj+sqs;BGl&5(TAsbws8B{XAcBaozB!(Q^e`K>dz5XT*{HZ>Sh%t#BirZ
z-{75nXJ32tEdX=j85bKhL&G|ULwQqM%eiQHbI+6d?5@70!d`2!igi1*d{}6`zQ6rv
z%y-L4!SmU#acgp#;Ko>Svx{QUVsl@VJhh?U{+jb(3A4`yvT~bPu_qyK>kZb{qWSWr
z#uZ>W3}J_#s-Za+0haKcAe>7MIqNB}o3-_NH@C#E`#F87A2vgF#ud9z(tp1r3VHI*
zzSp&AqSQy&+A>ApwdcFHu~?eg%cMIlTPcl@_f9Iu@hbNrhB{)BbHCnQS|fjb%>V7t
zvNM{$*p)tUz8#@~%4ibb&I+v~UPV}I9=dvpX{7wntEfJ212Hl$am6)rF|U4K#?_}I
zlXhl9_mm~QY~m{B*TPB{jm<jGkKvLA+>-r=<3U_;{LF2+#i_1g0JJwTp#|~Vqf%Qy
zy>(Txnw^Q+mBRb2eX_#>YP4=E&f7|-XF%-OlJq@VT%7BZHGLeHCP^QM>+J`@P_1_n
z!9B9Oy)BD1ijk7dGArxtMR7q@^9U_ywp%&xWn|CpMO)kR7}ZYZNWyOo`NU4Mhcp3m
zza-@6&6t*Cs^iG`6kr%0PtZz#4pGhhqyS0UMsc6i3@5BOO9bFT%Ew$vc(&(XqtGn*
zw1R@RhjPQMb0J4B3OU!h5j2ubvAMR@NuKz_LH7GSVnGA<evQ!V*+rWG>ogtz4Vezv
zn(z?yIJ#XehH|A1vHG7T)-Bagkc4oE;75j8zxW=(uCi)kn)9U9%euvX{S^%W&qkIz
zRNkFj5sQmKY9rR1X*+cOtsC3R5lM@Ay$Y>J9@MI=;Qft9$RPic?MlZFTzfflZi>H3
z%`98=LYGwOW_c`-jW$AsCi6QKN<A>|{A;7;6JJcdkI|zuQs>orj4AHXTZc<Te{c0+
z#wM0dEM7vwU@|Y?GK#LTwat_S0gHEZDx+*he#o6o7Sg{kn@f$C0;#PlDl0b^J6q$(
zeLxcIst(D1`yYHjUw?(mTCvZTNrAWHTC*`#jh7Q)HDa+6r*d!v{4kBN*6B1EJ!ZP*
zTZeA|?3k;L5NnyiO9_4+gY?IeL!?NKS+QiLd>arF!bfME;B$2D_iDo=G}%jD{Wq|T
z?q)1@We}&5JA|gY?Z3?6g0;vB%E%n81HVvi3YEh+n$dTrZ&h|bh^JfZXQxjF5@lOA
zqo(p{RFskz^u4(IQLO>>au^;oc<03Ws-X_OVJT5OHjiD@J?`Wso)x&PUfI-UQcgpl
zuG+-{Gj!6Y<CTZK?fb$0a>4vbX#yRc3T49y735t1(16~mjeLs_fKHFqwlsZ^m4Cuo
z83M1%QK58@Fj6{NN2Ex-KZ~2*rjA>Dd%G8bDGl|xoMUf#h13YA-3H(66&X3ralc(v
zG+**T&a#Ztk6TMZw{Q!Z;AnvxC^7Hdk-y`y94s_X(>5JRbG#y1dVvc*7)Ccfi58SR
z9E8$m&}Xa<%L|lEm!Nu^&I#IZF*-)GL3hU30v9bkdXJ-ONK5<%!3(L$K8QDS_xJax
z15O~LXYV`mz7PDWL(chxez|n~QoaKpVULDOo;9dUsa_(}p~J(NP|dY%pXBbM3!ADD
z<~O_A0bMOkN>_q8T|b~*hDL`i@|2bVe9P4`RYx9*%M^oyUZvdPzP(OI1aI)G|G89(
zKu<K|MuV0Sj?}*Y)Ds1MF-kw|g?5j~K&XW~_Y}BoNgnLrcYHAtxIh(O(n}`#)J;cB
z$+v+~ToR{i2Qv-|D@G|2$vP5zOtrNWCry5)rI0Y1`_p-&%O3XOTsMaVU<?W%M*Ft;
zi~!~B<nda}#wLa%s$st_!H$7mo5aka^4aZS0+prMA~r$Ip00B~h=U7Wmzr6xy(}4)
z-9Y=K^PzliFi$LZ(zh>c)TuW6@7plq>a~MYp)5<P=5PCza0!=zkKHJ^5O^Y!u@(sh
z-vHAv?}A)St`ZW!VR!XCG~l-h>(PnvYT|S-eHmv$baY$%eZA@pbno?z8?W}9guc8)
z|F~sqc%Y&FglzXx7F1PYc-FG@tEA3z@-vJ}a3nSJpcz|rAH$#=1?F;BZOF;*!l`&7
zohvK0_aW;+Ss_pOex+0_QXgW!oRB81$Z9Wt^j?JSg0|8&eUcM-JU;sAuIQnt3*qx>
zj5*dNjVnLSuh#s1;~Weo&qyHeko&MBjJiV~I__eiG5EN7YXBsXR1N7iT%5|Y$ymm1
z1&5+~&df@(ZqD3jQ_Jo=9GrFX#0ARk8$nCFm_!ZZ)LXfreMaRrhqj(ae)|w*E>Hd|
zd@>0>Q^R3cJbtWi!{GuiU(mN{!Mxd{R^+dw!6_tXWe!|{_~fRTG$0%5JVqfr^N;h%
zBJ0j!?*Zor5BMdh(P6?Piff5`HZtHlEiOCkxf)#+m%j+70AfHC>4n4}kiY5Xu(+#p
z)!@<gEX8ix-f3(kN#4t=c5fLxQnBEuN)uxi!tN_P(KIzyR`au31XL%`{qQ%z@N)?i
znv0xMm-7^XzNeVX=Om9z6>KVXw3<}8Yz>oI?U@)#`e>&9S*HiISa(?EYhc9HpHeAH
z?uZ;(Ik?OrTAQ4@c|0y+Cw0)3e<)AnodTbqNqQ*xET%(!>ya?4#Lx1wt$pbZzNO?7
z2geoh9-EP>lJ)*5gC^mxRof@cv!S#R5pr6({~CSEUYOdO_K%RG(3Ke6d5Daavp+xI
zY=n6wKSMu~-4&&fxZr6tzkmO500r-D9H0?R3z9_Cc(y(0%F;rr-!}A7aZKu$Vo>A*
zUFc&{wy2w`mpaxGh*RUTq)Vs?_t-qjh_#TFj$e$@$g%D{m3qX50bRKq_p>%ktW-}w
zoV7NnqE5dMxu^BapGzJQxZ4Lj$JTMIhRCXfT8}1v(VbD_DlW<?$qH&|g1I(J8m$aw
z27yw-BF6}4K1Y%6n^U0KV8i9Vb%%a<U=>$`4j3`^R$`wC#bn#p-Zv3R=SjOIOJxM_
za4yPFHC@)Kr&`p3xqcCAEk|?C`MNJs_WQpcqu}td4J#@ymybfa+>YV`EC?JYSz)Yq
zY_&iylH-zieWY2bn{p#Q8Z`qeg%MaOUyo7L5xS3nu&hCk%>1McQhq}!VB1rlFp{|D
z`PWJBGGp4awxcSJ{h!3XNWBjgOYt+*6H`*$8TG%-1zxR@(}4!JipC;?bBi!35~oEC
zDKb}2E#D3<w#@%}LdTEFnQF5&tYyRXwsVuLj(yEwGr|*k?Gr9nUnPH1BFN+;C6V`_
z&b388R>^-E6F01dv?x&oJQ?Z%Po%Sj@Vdd-tOid{w0lj1kInS2Cn_R$7gZ2Oel90R
zYnV)YL(85S%7LXVO)id6`xE1j+e2UEpRc^&mSWJa#YPCisp7uJftq5(XOl!F%n#g;
z{YITUYF|gH*r)hx^;L#H@%G+(yV(cw_vYz%Kj*o6$?~zio156-rQ~^NN0CmEOl$wK
z)OI&*hLG+(7dEM1{nc|5^(QT(??hhGG0)BG2^e|k%JV{g71jpG4Hv{-RvE`gFf&l-
zlApszQ2i_i_d#z525c{@79=iNOqLv<RG`XjAq|%;BR6y)V&D~n2yy8-7v;G9shLum
zGcm{Sf?Y<SpUYuiH)V(yx#R_-FgP@=X=kqFywkSin(m~0u5E@sPo45q_QbH}+z*XY
z`FCppAfH1`34@pJ`g`##HK<|???w*(Mi7dvZ(NYBMwl$&;^(Gxr69NS!M;)EO=ZA2
z%_K@ja@y3*#!L?8sM`vzTP~$JUjJ&C5P~S)F}xE-SL?BYdhXzdF+NTGHuWm>Q*$OP
z=>fT79cJ&*b4TB!O!G^lse7kfu>8$RM{fT_;Uic*IXz9501INiAkG(paRB{`>un~j
z+rjs;YfVm0HsdM#%5hXDJjgyXVm`@1EV;Wgw#L>=F&G84!`Tj>^Bs8(M^o5353nYA
zmV^L^dcWaQU-`X9usbvDC!wXSedU__fW^3q-*>-#c@4zWr?%CL({kcV{(-|cpL6_r
zD<&LJ$60p3=!_ZRSTN}5)bcSF`9lPRxgdy!4FH9Hfb+dM+GH+!v5@>`hNHstt5CFF
zxC0n(=;JNX(s-;t?rXLtG~9tX_`axqXwkSS-tFx%3+zpR7RL)*UIcvL_o)Z_E>6)0
zwqjUmJiPVypCf&RFZ^+x*_t$AhK#yP6QV0zw?aRWe+l&bblo%uU`8*8_Q`s3=2)X1
zx*&;oyrEC{6vtG^1V=s_{Ed<4ss+<~-u`c&+a~hUCA3Z!P#7dno3|~kB{;_a!_n;*
zRR8-LUt6dROV-rTG2|KKX<yc?1PWYF<jL_w;ue+++s^jxcimNqBZ4$x(R4@ORHY@m
zsVpwS<v$k7EEyRlNqG4W^k-k~OrCzJ=P|2pF<1b;@A~I8fscL>N$E#ikd_41Wt4_8
zW0v0izyAf*gk!McNSdpJeGC4xo{DL-;A(?DRe-JT&HwiQzP(-4SmS}qj_T)d9i><I
zNg{y^!a#Cweywp0|0VA5pzqJN*Z$)(4%i)QNm~B>`oQYo|JHr~4+^5TnIiKrU~<1v
z;m_w^iMlFbU8QdRA3x*+*S{sj|2c(8=fg!R8ylNBVWt5<KE?h=eXR_9*WYcup*$77
zz7Rm0=6`x8U!>lc*8cc$v7yctaD9^jMhXEqpf4JFrlzKb`im<;S+4m@c3~E0WCQLk
zSCh7qpyht9qFSB>I1b!n{pUNa)PO$fw6?yT0;-c$_))5{#nf4FyhNGHXVLAxPjh#4
zR{l;iIQewudqd=FqtOb@lo54+N4VGd`QfbiCMKV)5xsL&-Sha**BRg11~$1RRCVm&
z%fY@i%DZxlB6kaGtJzu~%rc!P6rR^c8qD)`G5gPT`VBPjGfjn#Z!(zt4!Fp^GG<7<
zxtJ~1ME1J$Jw0l}qmx_E!se&^9|8pLiLl@LkILNDdTdiHLSM08@ZbkY$>&<&3)aWq
zZcHm~_*gsvS!^Jbh-05}hIvGc{MjMeJNS+A2~C$?N=M)58@MV-%{M_;XM4?tzwR)Y
zfwRN}L6~+?2axN=rVC6MI29syhqKsVe7?Ywp2_}Cd5*e`9uT$XF^|<DlO%*;l)T%A
zVqt=ds~T{=6mw2CxZHsIkUXpvXoL0LN>Tl&n2W#nchg9~v_(Z%RUyRPRuTu8G(G2G
zV;vuLje96O?=Yi@o3d0?RD>r`grr*FQy*h+C@b8!^x4`Ss0>apB96uAcHr{1Riewg
zV+DGN-Px73sX*HZUh9s|LO{GN&yFMUO6*-43+a8FUe_wpZ8V@=q_d(<&JdroZesCP
zKz@VF#KU}?#3R8(E=Ac^9WYFdr>->ni-#%aefwr4vF90gvc0otnL4a!X6V%Ndw-Dr
z6|r1*>ZgC64~j-TE_Zf*mZt;oZhGhkgMQ5)Uw1S?JZLWqF=bwy+RYh&v!2d+qR^gO
z#C!Wt@a(LxkMFbT-j!Q{$YDmhp~6A-b=06tczQwj4Yg?~ABnP*L3GQN)-}aOVJWo>
zW#Nx_EFlcI|9D0|juz;NF)HNWr>dCDm8rZ^d>*sJW@F<`cfI08-$s94|CzhldYfs?
z8*mps&cJ#flqXH(MPx&}8}<s@?}Y`^0cUh2WJ+1b)k3i+l`$`cM18h?A=c>jkpwDu
zX253!jfpyMs`t8_u(!OwMO*E(eP#A@0q77F%4n~J?oLK}{`!|@8n6)1q(AV%Z;Q+I
zd#ihAH3a83tx?I}G8@IjFi*1-4UFAzav*m2Qh43UxW=}u9J6x6Fm}{M?F_zFOaT|0
z^H#4RuY`eBSx9udcXi$vu;bUniu~9qLJZ#XtoirC%h)nxzoR7@n?6-i*pB0pLj>`l
z;5R;OC8#EAzlbVhSf#qRL-;W6In1F?SIaWG?WQrmjQm+vrswd#!-I7$<#t$&xNE3U
zl|NSPnumPY-}!fqzXBST$e?d9^k<}EJv?21|LlGh*1vMCa=Y|U&mhCW-Cnzj<Emh<
zsQJ7}ft>JPK<WHNK{}_`FrkmLidG208T8QrUN(Ikc>JBy444lhs50BOy`CI7#_fK7
zsO{uwJ#<k<NbS?bix8Aa88)?|kK)1DAK6Xk{CLig_ogSq_=9RQCF^D3{9%QbE3M5;
znn3+W`&ZwsmVR<cRkP!b=TuqZtV|%Pt>0|x)hNZ@`z_HFz4L`!N0FaHrWZ6kWL$;a
zwm6{XFLrISqF29s)_67(%|!j<&r@_dBlq8MpMbNs^nP4S$;s*3{73V88F}sPS~Ukr
zr_tRnARzAN$FbC?FGjw|w8ylfYp%i!{^`^tw4$gvaT}4E&>Vp6-KuwIA6EZ^_xjNp
zs-~pvq4X6q215q?q8N@F1f|$sC85Isls6P5IM$d#$r}v$Y#*PPX5o{-5bo;6ThW1@
z=onrN!KYGLTbiveFsgvPTGpDAHzuf}1BCozw^QGha}V>7K{G9MNXFIaR(EMmJ_gdt
zLpgm`2D~*z-KJE!c&nC~K16oi2?fzfG13P3eM+Y%WX%Lq+_CSgH2Kp(S@=T0in&-Q
z`s!M2MC^xdE`V&Ew8d=q5D6I7PYR1+Q-~}y#cOQx*hfcKCN+Gn&M4p^fnGv|Q32wu
zQXHShh6mCQ8QgC?jn12+3mfUT`VRh0grKa`YF|%Texy;z>+>x+J!K_0?HC@h8-5=e
zL4m`LyqV=Ut~H#?nq@oe{u28&(msh$_d{i|NRG8eV%I)8aPZF(`;9*~h?{;o$Cj6j
zrFZw(@-|o+z)}r2uEqq&l+uoyO05o^N!Nd?|Jgw+zH<ES?O|5#Zi+8iSiO9u(lx3)
zd*RE0&(o#X@=hf%3Q?&s%V9_N>nQu^?dI=Pv7*nGTZIK5&OmZa!oL7|ca|<WdVcpw
zT9t_c3p`E~c!D{qoiOr?GV3=8tLDCMe!c6mOx6MBmG2o)8Y`LgY@|~Ny1jq({4cF*
z@<g2N7VSFE>8k`bvGlfx^!i>)Ve0Fnc$EjV#N}_N`=3I+)PRw6K8b^U*<D7`o)?N4
zPB@<6n5!a#;|Tu+ofaTt4@uVKQDZS!K3)rBUN<lXKR2ElG0#o-l7xP!v&C&R%du5F
z4A!~!0l5Dc-eqUtT{bVJ;@v!1)waX97qm4csjjIdOEvF-b-6idq?-HBdDMc{j`ulF
zU(T55@d(KnP+39^O^0=g?@2XFQ;;sS3!QCM3OY`|VEX(j*qU5;(P-ik{hh;F1qt}y
zzU?(sW7v4GsO&IZj)6EbT)N`6ue8&jrqc(o?ZO==kWVhYv#%(-m)1Xp1}G+3Iq<i?
z(X2vM!`kzKKCn$V&n5u`j|*t7OV}3NqoS2}^&9`NS^NPMCp8nezH$(nO5^^JMU>&5
zs~tJ0q!!S|3<?R4&|qg?ZgvJtj5hLJp5<$GXUH&Yh5ptIqe)?1@QFC2{z9)P9+In6
z4??TE2bTX!r=DmL&HE={d8KD6c%#=$e#`pA0X}e854uz$Sbhut%F<XbV@T@ljirM%
z)pu&U7Ht{y0q9;{dABCtb|@cpoRCcUfIPp7NpV%Gxem{Wz1&D=G4o(dI}i?hR?J0E
zgjIhyW*woJi3?%ylTJhH<Cb%FDK|n9=ZV$#D+H?mE;1Fcpb=o?rO0SB2}sVe{~1&M
z&LKUO0jc|@{&%c{i7iSVmQ!GBb|x_{T<1b%&t*hv6xL(eD3)gt12ck7j<6NxvY`X&
z*vS8^{>(~S^Z#mW4n2kDX7K*`HQp<k{{@EqsLvKSUQ}Eh_cyAuvRqnPdiTG?ga0F*
z1mclD8~T43-x<(#H#35aoO~cfbPe#6ibM1Z0}Cimsa}$wU*qopi&rUcfCgS?Ozh*e
z{uIfBr7)D6tAOJ)pSz8PtaZ{KMgcES00?F?BRV=d)g6jsNLmOiz>P-Q8~?B|)glIH
zCjEa%{SCkZ>96Bk)5$Zbf#{2>Ma!=5U4ur0bCsA#*htZXE5{V}zk4fv-MD$uEJWm?
zHOoq;DDxoIrO-twDn3v64vW#3p00$v9m{lwwChHxf^TE0NIH#oIk$5;xA&L}%$>#+
znEMG^X%CSqicH!3L6Q#0A0@bkFVnw==4jNo2bX!GpUg7?XC*L}2xz5tIbrbS+5<06
zWv*J}PAEfN;^qtg#b`a;$QHBzZ9W(t0*9WxlVUH6Zc%+V-4L;lc;<DqyTYpf!MI$*
zp*WeY1PJS-^%&Nx6-|7d&)Z%aYKieo&>8NUjY5ImiHggTws+}(qdoLqSRaZfieV)(
znG^YE>&w`kpKk|}ld(-_N=mN${PRP=U<J7{;63aw)73xaF4qaVqd0%mo19_JiI>Ve
z=fiAJ&tfomZ+Vd2e|qC1PrLbWsmk=LHw`iSg_c9zZ$2c6{aosg=0VZhryyc}l0vLw
zg~}KJsX!4kJA}PAQi})t!Nhc|K|R)Qw-%5`wokl|!dZ7UF%tSPF>m$WoDX|pp3rxl
z=2_JM&nwu$VV7%#<oSYsQVz4;)!BT))!{R7=BJgUD1iHBLOP$N$Qvaf`UwOu7pBMo
z`8!|e`>))m!n*-XAl_&@feRR%^i<ca<CUAC_0f*(S+o#iwsCwDQ7K>(<ekg^TB$r>
zpbibMVB-<jK4S&-7$&kXi6@g(>3C5XMHhG+xUc1xMDi_b+j;|4ZVUal5T!mXR+mmH
zw_NuU7R|?wRWDd`Y|UI5>{a)Q33H6InpB{g_U!I8Hm44^OWbUJzUA0J8Xp_-&Ge#m
z{_*>SrWvbqc?x6TwIj!VHEE*Aa^meTo37pf8}o4)5yAVQ6TR$=7lc*9BF{J!?aL0;
zcs;5o`#xVGYH|=JI%z{xRqk~&Ib({19)Co7$yKIZks~oCa>aUQJwQ4@AFZQOo|~Ti
zr5oolQ{6i#0bu;PO%3l?_}C_EJ;%ToQ_I>!?Z1(E^W24Ng^;5VKcMUr`ISY+ZBS-x
zjZt#&GQ6yB7WRsQo|C!kMO2KM59y$GTt`Jef}M9CPRfQ-h_YBjd?}e?d*`}jV*dFq
zRgr5KIa80q@SQ}LVvAuzU7a{}FknTWZ><4fExY3}y%9Rus%u)D10R;AvKmAY;}90L
z7-^|Q=?E1I4zky}qX!Yd>n7f9`el_0v=#QsJDdX)lA}+Ku<v}_k%b=tivh%dqif9Z
z5m^kp@u@Ueys?D(+q2B;Y5Cv%^*_?S;H8u?l#BE(*Luqx9I4yUOUT`BqdiyMzGOxh
zNi`sE%c4kX-x0+^RDxoUvO$N2e-4o-&!0~&kj?4?c(EwiA<nQ`2@Zfs8?hHD5wEkm
z*J#UE&!Mt<tLl%RT8ogl*!f;`b9TGqH)6@<aEE96pNVd#gD&xWKD=4INAtuR=^ghy
zB8)`1-=^iF(f7DV%~~#XY+F70b|A^hdlF)+jihHtM!JI$-a*TjvgBNzXWI!9;b!*>
zc^&y-vQ@BOzfEF?)9R~Un#SB){4-x8s$kAJn}b&>)(!{|$oOH5GJgc8OYC)@uk}gi
zs#s}*W*T|dceCbH(WH)SyA*02dL>I=%|Z|2O87a;M?_K8Di*<N4$;c8;8afRaE^@%
zb>lz7HoyDJdmE#2NBOD*Y?&F|bmbd@aMu*lnTJk!_T%L=ejYxKjQD3Ms^0SKkdL_W
zGJ97CPs#x}L|*}1V<z*<+*a{;SVxR}tfu{TK4q9biAGg1C2~^YO-<z%&pVIm*^7KW
zxsy2{-4A^5db4U}X5*exB;bvW#YoQYubc8hl&NK`qrFiYA(Z4qz&-5JO;VXrvD%k>
zEz}TXnyeK(i(1p)ZTAG`9y2X>z_iBC{kqoEpMg+XXGP88%p)y}b1U~wNh;a~@&p$M
zy6TBe>5gHM$!KZKwbSqkLMO4FKuz02ly#`1IbI(kOJU*2kUT|EiQ?mn4vwI)A3d?Q
z^_6vJj{QNiyveukb9!P-oF^IpyZj^B;pEH5eHUh-?~=XG$w_4jI9_)eyuRH>>JBHx
z-sO;}B-tN(s3oJNdgd0Tp(m%;tx-8<O3$G8pyP{8+<J&7dX-HvU87|)Vt8(z?X9!t
zi#}Lz*po3U!)7cgb&dkG9o9UaTtG=^)WL9X-qch}v18#i^31g1dWq5Aq^?&v-#u(n
zy3aHQ0bNi7USZ7N=v>~ox4fD<rw%8F9*<wRdG(+(;8&Gb=dMaK)n^Z-8df(3fJYnw
z*94OUZqBfZU+C_(l^HEpWR9>!*u-2E`v*_Yxmj)g9_zOaL`*k=>)DGBxB9jo_)EPk
z_I>aI?NQ|V@n>68xAp8K+&bb@z&iD@Te*=N`PnZk@eHyk?fh{a2RdU?!qY-dmLdEA
z5<9t;tW`|2JEG&q!H%Q?DSjis7D|<q>B?J&QFi!}&s+<a??WPYKNVMfyOM;uh;iT^
zwv-JwoO*`ZXy@{6nS42_8n^2&!{7lTFzx5n9=>Irf=UnmKF5@Df$3Dj@MBF!$&*9L
z+ZZ2*AH0L-ClR?bR~nYy1(><BGmzMFL*djv4)kOD06=HH@h=~5#RJ8&aK1JfLjn&4
zDh^)Abo3hM?A8feq^h3u2-Iwfw6l(|r1JL6f#o+9#HdmV9+PV9U4N-Ai*$=YF%Ehg
zUAHd}y7`{Tmg`!S*ISxLQXs1)pHUNRZhK&>$Mavv<BFL^iD@^n=sM=9#U%G3j>P<c
z+nd`&8_&sK@-1b!=@zd4yZs=aRd9NQ4LV$MbD6fT%AV+Z*1M|mQGjlJ7rv#cB`+fC
zy_H=wRO;{hPLVCCZft3e`$clo$I;OHUu=Yo8VPjF`M5xNqtw+p_xEpYcj(V)EfxA*
zf<ExKMMjwDZD?kAhK?KloV&SQruJ;o|2i-c>H+)=?QH`9YH!|f&TJ7{i<yI^x@-h;
z4pX>267~#7%YG_<e<vp?+C5w*nZQMXYR>qjhHMeL4X?|?Wk?w{Rc!Xj#_F3oRS#CX
zq4gV1OFfwhH3y-5M9xz35U+e|^2c`^uw>%j$hI|=|M@d1B`r(YPOe}H5hZA&OJ+Mr
zIuQfd%RVi=Z{0>!84aE!d!~jyC(~rY;uMnjV+E)T1VXEa)+S8F)&Mk?%+Q%43OZ%q
zlM5B)73*?6l4f&v)cY;!k(E2uXQyq=YT^FC!Q2-TK;K2q29xN@h2jK4?}-cY+rTu-
z4|bX<c<jhKR>nlKy>(nmbp*mCe=5XKJXEyS8nxp8-SpVo)fqTff8^A;TyMEl5P~*i
z=FSx!XU50ZLg<ARLR-R<Sf)1vJPA+wboSeQCDqR@LBnq`Bn_3=%hj%g00yR;KTi;a
zz|hRmyawN=qGYaXE6kb@qwZh-YMP0xcCzy&bZc$Q>WU6(7BJZEn@}W%trpef2=AH5
z$E>T*n3C5?56)1r@J@L%Ve{5F?X+XEd5U7jW_Ivqnep;xwHcT`lZ>(#DVs}vAeFws
z;ctNhOn@U7_pL$$|HPU9)*cx`G7}Ui5w`FFY5R9Yz>Q$&JxuwG_Sf&{n|!<@3cRKx
z>)&RE3B)c#oBTtnB&@|*xmAgvM0a4}5<`cCN3&A?4+MR3dCqkP{*+~hHmU#-e52u<
zk~h-DVJUY0Fhdm~iNLu`Da&KfY(_-j`Dl0Mxce@@C?y%(+qOq1gv<+*cD3{~z?#gs
z3PDEVaH%LckG1r!l5V{I|2>%lOq5;0*v7%5MsxMSZ>6G4Y&jF(TMVueYbt{!tyVnE
zXtSd&!YSiN9d4QdFD}-1*Bd)gHb;LG=IAAFrs$o?5tq(&?&F6EK6%COK7FB<2LqiH
zPTe8P)miBSt|FlO8UGAxo(OB)OW44#2dH%<5X8XQ(~~N<?(~j+ZQg5Jj@0RzO&nn}
zLlpT0m4?j6v2|w4y{}<bsvNv%JUl8;W}e!*)C-F7BkQU3YDj6C%vD%9J`Sx@9epVz
zF|&MR97O$f>P>IwcYYYf`w@zwV?1Tjx4(FHHQi_a>;PV-xHW*!repL0u6Ul>#}!;R
zfc8LNXdTBOwm*r!`E%m&0tfOtE>fi|E!tFyOQSX~4N+V!Sq4s18Qm(K;cxykRdUF>
zDz~vF&9yHg$vD<p08AEO^G6AUmq|j@@?YinSBT!-)W3NMp2#hLQiU3to9FyjJ)VSu
zg6Z-9$*O+-S0eZSX;R^is5G8^aaoxYa#mRK@+3ReVPMKKLmapcfFHZd-}#Nxq=0Zx
z0Gt{p<cK`~NnymEms07C$SqLgm6wCBKtWeXzq0d`PKU*hg#I>dW~)s>if3&P&i9G^
z|1(?A>rei+WMaw+&<7z4w}j#KV|O^wzSBRN@_MWt<mVQtjb<eLUL`OHO82t=z2-nb
zh4*s-FfArQmd5|_RK?2-0#dv-z*bs3$R&9a5kll|5S(;9`>pkxsYCb#AkY+?c*=x_
zcQeZ|5dcGL73$|5lg3?FI#$1)Cp;?pO&)+c4RGAVdB?NzA`H2h?v2jmd3>IBm|qtU
z?I{A2IQdxt1KLPFp4+fVlsK{f$pB@Nwb$90)Z-9qeF!O-fAy)fVo_l#Ak4tK<)K8=
z)=C|uc0)wcI1kQq`H}c|s`6v5+(5owZI>{8{jE0MIi}qJxyOdJQ<WYG;t0zm5kFgT
zj}J4qgIsBYB0gHGS2TEe$pq2ikJ>NjnLiY)XuZ)&tqgq#sgW)*Y@YPFNHwcWI4Mjq
z_zq+&JeB!{E&<81t5ESH&M&QXxo10w#<QUZyMqN2PqosDnmhv}9-R}t_RDme_uX5(
zc%7Y7mjEf@{4?KeI4<aIj(0;$%EiEOjs_1jr|sJVVOyJ~GmNNk|JbPCTVmm1){;<w
zmaMQ=tf*LeW3Cn5cOwu;5Qnp6{HgrzBrD0&d5wROAEX62JNlfDI-zajuVNuLplXo~
zaWwk?qzAaMhV@sb?}QKi(UGW-UI{T(-lQ(l)J`KYBVE(Y?(Sm%NOt5}w25>_In?4Y
zmzvJC{5eQaBrhp*@}xnal3yp4p9)Nxmy)x(<t2flPm^O5#jaF37AGg5$#Top25A^r
z43u2P>PV_BAjT+p3x_JNv^pyLd!pHo;g*%{Y#W}Z(m|B+W;c!lSmgesrE7Zz!9;{+
zdtZvG`>E{q3!Z`cf}WY7g+h|051W7U7Gg6WPx9ZyVf5abM7_Bml`GdbeoL6+Ln6%T
z;T3D940tj4W7kM3VUjvv88wEzaXQfVVX4ybnA&RiIHtpzW4CTL{4K*vz@XX{#?U;v
z`T1t*J<<bCgVWPx;VJrnou)q3xRR?2Ed0tRnlA2#PUzn3c^wJ1_M$%r0^eALiec<e
zR0}RmwddjSVHI&)*bhy<Z&&~M?d(xo&{NZR+_zKK6#yDv(mOjh^0_5m(UtBxDJTS9
ze<y}8WQK58?wcO^R9>FX%+cjE?-W$MGoL=Z--`(wx};XN`h*@c4|tR;4)u7!(bagX
zy07kmJ8y$->c20_@WvRqe#q!q0Qu`IwgTSNExfNOVj7lQnqHG6{h~u_bmyPJI4~=3
zc4_xRf_Q=FQv7Idv-bS<6QFW0S2s?|wxr>6;Q>s6V)baCjQ`~ZR3$VJGCOW~W7U8p
zz%T*lE+a~$vzGH<$-1X%j#AQsl=u?x0C*u(QyDYO-btOk_|x>aCVsV%Nzw~vg|Cw`
zWTHhW8}57l_xzfe*DHZ)>Km5C^_fuxN5z0sGM6<zzb;xEUQ(mGXX)jn%s7%!MwWTU
zCzlt-Yp%oW7%U$M6;fRQ;}R(ZnUAabU%0tNTg;nE8$C^*&%yXX1jDXWc3{ui#tN}<
zi=GuNf_1;DY)-GJA5D98C-ciG5gdek0N=t4e@GL3-IH$Zv>gE&7GL!=?3y(@HB^Og
z?-GAMJ~Q{rck?)}*f?NwGfHt=M@!Hi@V81(bT+#9u})<^se${mqHqj7b!#?Km9Fon
z%1vdgWw{x~OD<NLuP&mxi}SVB236jy_|@C%p)51_`T04F=<MFw5iKK)n(U_C8eL8e
z8J<ZAUtw}NW#X?CG;9)jwQekUiMT*F^0V0I{dT5et|)<_r>suxMw9TkK^Mj_qRy=Y
zw|FqvsKSlsSG9~vQ<gx5@Sdt1Nk`67S6uM8iy`<z<B4AC3qmdxcJxM*<kmCjv*Z(j
z0cF!|VYIpRJi{b=j#gP8nPx{l_ro_4)<ec~vf3BPJPg)xTCVe@$%M!sMQeZ<OpbCO
ze^i8xCq}#YJ%J}%mUW=cl<u;(zBNOT6t%JDICPyacwA4V;VUFzX~$(B542X=M7<n|
z4&rakavU*>Xat)L#$v~LPqQ+GGHTu<EN3^rq$8;$-Ss{iWQui4US=Jp8#tHc?33Gh
zEMc(JotnLCj}r)1Jd>OE?9|LfK^h~hgoO+q+#P36*1IQnv54F6$xQg+7(6Lia~2HN
z+fyoHQRilwhqBuMJI^|_pi!+j=qrpS{>ssX0rdHVtxZ&j?^rMkVeB}bNp<KFu2Lnm
z$H*$5OX+VobqMJ>C(geS+P`k)m}?rm_;X~VN0NECXG7r7Hg<$;nqNnzAi_VSPNF1w
z?G22C$tWN+eo*(9Sy)uhLTWiu>$4k^E~XNqgg)5Wfy-P*K5nL!I1lHAh4c||KJmK5
z{j>g>Ac@z>c*T27<(UAd(h6S@gEMw9BaUO@o66A4;r9xTw>Tb=VqjyayF~t=lXqYO
z7L2^mmW{JzqdLKM*CONB$IT%^W55gzl}~LlEGLIduhT^k6fl`-owf(=0hVbVPla^_
z+IM*^4vGJ-=FT&$iM3n9xGg9M2-2&fG^I$9CS3v;n)E72lMW{I5{kfP0|F`_C6rJj
zLg+<GK&ndbB|wng3C+;q8#cJV{pXzP{5<nBnQPvec{3~XKI>Wcas+ro4g%ATqIQMt
zXBge&Kxdwu4TWC%OxlA(l%;i^e>%{FOV?5f!D(lKC`c!hJ4;1isz7L1dL)PFw?4*F
zJv|c$Z$XH!-L}RO6|?oiHNm!i2r<00u9a)+3Wgw&!j&xuU`BnWq->9&9l8xajr=QV
zer(EsLp*P*E2-Gw(16gk_*klx*74?H(VoJu)H4PI8zi`b6Bd(GSM|hmu2ge2SIpl=
zHgl5(bZ0Z@rvED*tR0mpuuR21A^LSnk_lttU*1iCc-7@DM=7diA`GeczcUg|@+|wr
zn!6rpg>VmvlV_=ZfQjxmAnITmxfo;ny$QnUj4YA06mw^fT5HoDg2`EME5)dNQ>?r7
zpWeO5{xKb(1Z-w@*gevlsnnSO<TE3&u{(fV3AQX%DYB(nfA|%c`C{p((->pz581V=
zT9D+DvRd{$th@!dQ&al7>-21Vn)!|O?g`ZBW(5VzcnXryBDbyvn|Hx_EleCQ_%Op9
z=6~7FaPkNg);{2GGEXODlPC2u$7>BG8)yk2e*p3R{`$mrHFVh|d#PxvN!H3EMYB?8
z)JI0l_sh}_`&>=DWg=ozN?7*A9cQvfkI2dhL!*VmcsqP{A74EB&e97n7jgM6BF!!E
zNPotJ$Mg{{(_#BkNE9|BC+<EqhnCsy+*(7>xIc_U{VA7L&YfU@d}x7EIQs4-_pI!@
zL%3%1V>gmR<;^QCAFEv;L`+_v63f7oIvqX=)I8q|<Gu~N>syh@*j7v2;u@tejBVlV
z@l0)|HIIL8wM{eWH`$)+C;VqQXirkd3jJn($-&nAy<(3!I3=04;=xOX_x>1?!0B{i
zdH|O|+do_(jn!k#qJ}ly%G~;P>@*eAcFf#MKGzRTc)8A@b-$0hy1{1$)}yWOGVZ~0
zrLo|pw>=)7yyq41glm_i`amWELS+bZM!fq&WYEx|I{lXKRVi)p#{d)FFrM`|1kO3S
zHk!TSl<BtQ;la$`XUyN^!T<;P!HTQo?d6g971L7%V(+VM>7mKbUp#s)e0nVtc<`32
zxsXgcjkY=L!jrj*2GavMMg2*!sWj~Z4UKCv1U&BY==#b{rI@K8pmRhhiQgKh=Ru*N
zUZ<`XCd;`U<@WhF8LbupXYn756;1<}Eb3u5Go;_63Lyu!ly7cj{aF~dO(<6WP6wUC
z`@9F9sejC*m%pa=1dUIA4~jPF6_}B#crli;r84ow^3mI_6S!<c)sU#|YxLx4>z@2C
z<}wJ%*ZOVs#Imveq78&)X`aqsgVrAQwZG4qwrQ(c^_Lx<j7K5GNuofpN3Rl7j{O-c
zj<q8$cv#Xq#?&FQ4+L$P=Xm1P1NojMh*wD5i#t(T&I!X<N}_H`F_{2<t!3Y#z=|r~
z5`|E(b?dq~<XbY(?UZU65zzZ%weN1t_?_yp=RyF=t=@8H_!9bxM#rKBMIn~^D+_8b
z?@FirvvK?CNXf>gSih;&-ueg%uj;-T?d-#rHZPBM0og4y%($mjx+m!k4C?umzq_{}
zwv>35*{V#IySBc;;D>Q&FDLPO3w`9M46&;}Zc#C4qiTgIzUSwj*%~^WB8PL~m$=U9
zm-%U4kCOrh$pU6f$i(E>0p7%YY7{1o!jylgwA#mm=g^$TlfEmbGYEj;Cg}x*4hR6+
zSKw*JQzdA};K9yvVQ%R?9;E2A6$!4vv9;wv&7p@XsUn_TN-^rO?B3Cba^#4iCB2nH
zJADEDd@dO@BqFl5?J_RF|EdJNyFT&dNk2F0Q-&F;!OANzPpZ7^eW^Ykiz5)ZlKsKz
z<86|erXq<+ZMUNb#{^aB9_gLM4<<`3NOhFn9Af3VQ<DurVnpTi5i0QRKd*>L1U$?a
zE@sqAA3R(m-BC@ge?I?Yi~RtH7#o#;3)UW>x4<d?Q6njvj5r{js?%RNZV>;p;$-=V
z`f=w5R)b6`6ui*-WVyYUXwM=<eB<tE(QG^~>V2qC&FdU|9HP+br2bNUOBs&!pkh~Q
zYHD(j*81=ZFiXk@^@!xhCOPn=ksEt-G!JR09w1ZL1cNMIABv{aLNizkj0%gk_#Z_=
zeHBnW6W6;Gs}Ntb8JZhEO&ZoUa1#5q`fY%ScWFu9z$Sdge@W%eNzM_xxsUPT`ZV!n
z=H1C%)A^`kwBE@NN<H^8J&0aK!Y5lzGc-6Z{v*h2=B~^yV+@Y)^JV8A7EkviHUXNX
z^1GaOXRFAr?H;bz<#cTt{VdCjU|uDNpq<rzQc_ZA4)OKw{9X<5#wN6>UsBE0J?L5x
zqXuD{ZH)V_I~H}b^)7M`<-P0vezFMA9p4TOrZKOt#UD9!@TX*z)QFS#A1@}*`fG5m
zGOG>skK|Q_k*GWNd>zTB_G_YzUywGqZv@biURR=vR!Gx(juxd}`4S3c5cQJweu+(b
zwv3xwoUFT{24j;~<!jSjd@{Nabjz7ZyRE%6hAn#L<CQ)3ZYAw}i8K;lDtV4&wZ{9r
z{6$HdRgw*S2N{CPh;?P=Z7ixTkTkCAEv(@n7=bDGbBFcM$Hp^^?6EHs+Qm&*qKBP}
zgA?Z|PN?rQ92LM%<Rh3b6&lN|Yz9IN7i%_EO;cK!C!0l>unz@;^md(Iogv(2&*5%O
zG2AIeY#%<TccpqD7one1BU7G6Y<Ap_m7aT1^_;I-N3bMomtx?TUn+y(+=O^yQ)LW*
z@rm@gH;0$8reV0vqa{lW{fLytYORlRa2)B+9I;Tv++GX9DKdNonkB~Eh6cb=S8&}#
zS28D#VM2TMqyWPj6|#nwi#G!|k%#<3TF!i{h)o;&2E)<v*I9kH9w2fbRhdfMGJowl
z6waT$D)-98Lv+!pctiiaI6jCksQ1o54R%n$Az((Kre1`=`*>s>=jgJU+A6bqa_Lc^
zvl$6uP_RPYE$nv6Ml`65?Te41`mJx{v$`ZZfO5yApEr%Y7hbaa3A#s_or{FpwR?+d
z39annA>Ef~&&oeE9yYJtqC9T%vth?SoYLVwAQ@NxD%tj?zL>>#-*w2`ze|~sV}6`i
z{LPu65bz5^S+Aev^lx8sBO`;Kn7!z0bo@bFuR7mdXZxThQ#ns+*irqhwGG5hI^fbz
z8dxO5iIZZfp`?Yfymh+K&tfwROnI7kvoqjHbd@txMcL3}_TNq?WG7T}wi$p`blRQP
zQC))*#LY!dUZun=@!e7`f;+TGR^u@PWlBwqIG+q5UZ0#p8gjZcw_>x)no!ETFZ;o2
zZ9o?UU6Xn{6NT|>_pVu5?7k44Z!^;6Z1BrZ<LlS3iJq1ARV=Mv7JAZ2olJX)i<>)H
z#G@-(`h*h+e=3U`u-!%G<h1=ZK?3Xd%2RZ%o$iR3wU8V7zJq6C$IU2enKs+TX%#Oc
z>1gSF^{nRhkv@@7P%2c^K)7RK$A-Etyti-KOJ*fC<hVM>`Uyd_?QK+-L2Uphp9z0b
z`<->GD$F(gfj|}4nsY6TU=6%7jg6=Jc29K*8Is}^1|1c^*VHkE)bLcQ_L`?XFNrit
zKNqilTG|c50xqxHg{zPev*Z}#ofL_@qZxpgOc$e5@VO_Gpe#%`%KtXCpk7spycimp
zyk7R%WoC~reM)cXd_W8msGd8Q*a#NyV1D3IE>47z#s+uQ2Hn;M{@cq&5a7<v%d2)D
z&~5(S0dSiBwz^)o`mbIFFogd8`rr1||GQn`95H;>!s&lMq5+Ua?@A*Jl`P3^w}7|I
zqVX?;#PS?Ovf)XT;Qpp^++Utl=a+#<`OQEh__u;5ZaQuR5K7>-h4EVFJKn;m`HruY
zShqH}e2xa(oG{~JeG$C^E&!C@x^GKvety*ia>l^W=|S}l?Lx;3SQmPFddrXD&_y<H
z#u41{2bLRxXQYw7Ov`!Q_5r#0j*A;>W8ct<K5VR!zBMG0$CaTN%`Biih*pdyR9{jq
zWL{rB)^t$;y7g*{+H=h%oRx&90&ykY)*AB2K0VH{(eUN!gO0cG6~qTt=|V%x+l27<
zk^`h2wSmKGbGai%Rgm+R>cyO}u|nKiU*+a4@^|Nc;NSqnp_m9)q+*m1v+zlFMw4n=
z@oBI|NIAQ$h0ffO(Cv`Sv%c9Ss-nfBqfFBnV8yy|l;N--Po7`B3Utk;<OM%a?ls38
z3ABI{`<>e|8aKhMA0l<OHC4AjtuGabP#m1XbtZ+4=QpwEF5puY)_6VUxww(u1g&-i
z7J~CgQ*t);X%zK)C>4<V1`M3rH?Zu+MPQOw<wqA-$QR&p$B!RiH64s`v^b!jQYBr?
zAA|)8KrS&M4)xe(;russovxu0IC_uIr_FcC670Z2N8Z$YX#8_)CG(jt0(3wUE)ov9
z*Lg!g=e?k=yPjIAjt0O8DTOaQvG_ZXa%;I(UZ}~W1y*Zl#iO#_KSO@VzXsk5-v*hm
zIvvEh4{G0Jo*i>FI&)9{9Hkx=6x$FWq3yH*r>NUfAEzc1=UhB}o^}R4xT&Z4=-tKM
z%=jHiD_>WUZ87dn(^)IbUuTqy&J1k-N(moyH$>Ngc$PpL5Y`;%o>As1a3E`lE9Jk^
z0qqul!x)%!dmx1w&&Pe_nT8*1jrTjz!lIV)KbCJ_dkC;`87jbd8Fy^1ePj83F7=J0
zu&zXqfdqY2(mL-d(qEv4PM@iJwDYBcuw_|7@+a=ZG<M>PhcuLGh|<_-Exw@jnNgjz
zcbV<+r)}FU^)%d=hg0QA%_&eJlBfueWmwiv6qAfLem$Sd?dJRZx%ipqDG7tWAT{(P
z{~Ysyld?$p?)-J&0#aQ~HQ_OLngTTB^NmBPXbrt~33K5^LS&0;{^Nzx<e~kC{m>-)
z`{Vx~?1z$~oE-MVn_Z`*k70-X<O}MGcqYwjscvl>e#rI<Z#@Af?PCl2VZEd8T*PI{
zgEm``*!E7*L%!?vwn{YM@8^0t5F9hFLU6U+c#U!8xu(X(q}ZHCQiV!n%WjyN%$j>=
zf4jgIfM*{$^x2j=wrUX}q$gt$bIn@%IdyON<}%cIm5vp*__}}Chn{7B&)T32NNorL
zK62<q+!03sd0b~d3FDp4OGFR`5W*+RR(^Kr$2>2(nv-=W`>4=eq~Md-9qa4CtbJ$V
zyt10znQ2Ok7*_HaNYWHnk%~dyjtB#+^&97tb{+6*qgfm$x|=34G1~)k(#ADAhd4i}
ztZq}|UlGaabT>A^U3sZy$h_CGfhrfLQI-gtMoAJZlyv*&$5gW7h1z0kf6tXFR@9vH
z>C(I8bg?iC0V3U{F(-fw+bM{;0Szx2nn)1E|8%S!{2iytRY!CZewgYIzc!p7Xf#X&
zjYm*8)<)Hi%o<RE8|2GJM}Pkr21fzIxpYfpZ*IJAQcNOc67$}(xt-l&qtA-!rkR6_
zGzz$^{IPaoG&ExWjF}Dj7eFx=Dh8B%Ah-eTO+d(AgE-LWKOsx#8@+WOk++-0AcgWt
zaFxUss*A~pTd*|lD&;6qfx7(w$O^!x-w^{u{SS$o-~&K+-?w!zz@E<@!5vq?udQjR
zY_@h6o0yo&#d9r?+7>3o$9xk&%(Ufav$nbd&ZSpa`j-BiWI-HA&_>vqWs?5I3hE^o
z-YTa{;Rd>PI%#DZo92h?5Xv^>Dxp%zHCP92o}z_}&S!-{ya2dlCuAs-c!!~D`2str
zVt0Ale{e-eLy9(M;Kx!01vYe4*uIE<&d!0lcT<#iNE0Dy@2mK#peybw`+PeiTf?||
zjzlqe=>Uk%uHxdTuG+w4FKI}UvPeF7Gp2y|)h=5NFZ-A#KC5CPp`=l1ltN6*ga@g?
zEDCQq^O!M3&so%YXagj>4A~52mpSuZta4jQjU`yaE~O+*u%(Q+BZFaE0j}ZVRC;l9
z5SIa<EEB|JcwjQwOW*a?t8PV+VV0wvnqyX;Eq_?ol7H=|n&i8p00uUEP(b+^{T$uU
zmalz)>7<*Z$AcikFy786os2UNs)}3#>;AUVdT;uQeR8<hJAFU5Fxh_%bPpJaO|WqJ
z7>-4<IBG^QI%X`amP}OE7HegZu{eqg9>w|})v0&$Ht?#3E5R)_%HYt6GfuBCK#PS%
zTTC|>>EstNb|+5M)#$hf^Xgdo6mq$poY^eAUPTEQU?&;ge{^)~GtS=tII>-jvnLYo
zo{_~bZslE86;cf<M*GoqP@K<P@bcDn_jlzmQCxoiMNJKXOigdem-r*!jm53gqpcr!
z7+8N~UsAp1KxBeXsxrd&q5uhzVhi~l4|@X3HlmErM+hLj`rmROpgiaA?SJgGaQ^kb
k-);W&hW7jL>B<@>EG-;27O?@ee`g(^fz;#+<X*n{4}^Kc<NyEw

literal 0
HcmV?d00001

diff --git a/healthcare/solutions/dataverseIntegration/docs/media/AzureSynapse.png b/healthcare/solutions/dataverseIntegration/docs/media/AzureSynapse.png
new file mode 100644
index 0000000000000000000000000000000000000000..73b9b2bcccb6fa3e58a8edb8b573cbe41c9da039
GIT binary patch
literal 32461
zcma&NbyypH5H3o~S11KaDFs^eqZBA!yhxxFFIwDbai_Q@sp9VLZo!=Z#hqXwSX!Lm
zAy^3H@|}C`ALpL?oag?L$+N%g%x-pPXWo5hCQM61iTn}WBLV^fausEHZ32S(N(2P=
z{yw~ax3U)*HF5WK&r@6JJwf#Z!|vV2KX$U}vIGRRF{HT95AL=}z9<`c5)d$k{P(#R
zvw31eKmf8-k(br=Ge1}%d8a$~oA_AhYv}9ne4aJYpPTcqQ;WXa<UYq{$0cvR-_Y*N
z&Tqx&@dMX%>igO1%{P;Osv;Ei<4HSor$(N=qUN<(jvc3brr-muUorY*_~6%H{GMoL
z;9=`1&lq^3HRYp%xunM3Y4Chc!jTXVOkJ|f5fF5H{QJMjKXl3j1VX|7O+gdwF7%Q?
z7&q(VpZ5q-zbQKv9%qW&FB%OPeM+#*8QP%uNRys`!0>S)-TxxH4>;T6Dm$^)7Dgq4
zZo_mffw7JR1daOfAQT!65S!U|4s0`~H61d3mgHXhj_*f%{y<q1NaJYQ#tQ{4YOjpT
zT#n|miKxr=wX9!}%r;%Vo*!krx%@4u2B?`CzQVoT_RZki<FdQ%QCkI>m$Z9ydvB>|
z-tHeeXeb#W2x`~&DG#`}9jn)eQINwW-o2)C8^zSFdY%;$k=FXn+V-PX^ND3W@@-|5
zMo&>>)b6<up&3zoqvP(B@l4nHZ`pD;E6D1&>FBM?_!_`&Lrq6_51M|Edym&9PDf^O
zdeqOVs`6;nrq)IJ*lDKT#(jF%32FKXQZ2^rJ!u?dVRJ;Pq4C2^KCd4m=&<59281d(
z9Oe5%a<ony<f0EuTMP5t!w+2&5>+|^(G>5_z5<?MwPFD9^D~{>T90ZC9)|h96GZgF
zYW`sys!CUH7e|aHV7qQU{vp-Ft&iA_{9WCDrp_}!xw!NAX8HWX>rX@5Os>m3k{w$M
zO+4du64~uY!n$@&2Eu5L%%bB?edD9dgs=glOEtUG3zK|cWhyvg9;V1fo6h=D{MM97
zeXr-o;?Uwiamf$w^UX|Zk7zX$UkwXa!yv{EmDOM*I#g+C;Ch&`hv?@sTf~A_Q=HJF
zil(X$)7+XObPgs%xCcEM3&M^BvgLC{bYQD_taxXM&rpm?)5+=Um8-ekk4k<n`06sv
zrZ#WBW*4!*_{@2qtZ0gihJ&=UB4htFkuQ$Tn`w_(B^TdLKj-C?eirEX<(XS<d+W>y
z$l642I*zInT9@^vd_A7nxcp#&4gvRQmM<E6J0M|#g1VaAUm|m~QXlmfbK^7eaOLFn
zzO$yXEx_nkQWJVU=0zoDH*oDUN;fwh=kj$}V?ulp))V6vJKQer_VMZhn{2Y>oiQcq
z)=w{XlPuxC(jjm%erjUWse^fM(A%cwK6X*!bADL6{G$)|TIP1f^&3b(ab1(PynRWW
zrUuwgcG&RCn_;(;Z+xOdT4rrJ1XEj<H*M4DfK;8(jXdbI${uF4jtL%zLvqq=QyV3*
z>t$JhKpx)~=(mQf#cz6cqa~4RnveKjFja5>jA)O4j-zkK)lr)f-%=v!BWy9X+D!R^
zJMI%4X)bU|>~ULG?qqvual30)z^lpjE<Y?<>~+XEv)=iv4$k{M7(L*1U5#77_@*6X
z;nEN|b9ddk&goR<$iJzZd}O|e9rx1vKt=h_u+_1e9kP$r_rcG_Oq()B4oSgZc6uTP
zKj57#(eX1f_t!2V?NLt$%fO%14^x8DH{?FI=%@^ftw=36eI45chz@=s-d)cfOZWe0
z!Rj!Uc71AkGWsC8^V5b-t_)X!oCpKh-!{4rhq5)VP^?!}v+x#YRX0~~u3t@=S+s2w
z322ClnffB72mRdzZX(U7QakKf5wGqwlTworD#2&RFU$d3&@Y956fbg~6~|?J=<{DU
zi#TbVUg*NFNP|!N?VuJxJ5Kul-Z0ZsOXM;_t_pgss-$l@$4eEPUPuaD9v$o`RzJ{q
zrP_3Cu85bl^|6LIihn2t1aL<!Tmt^hX)e21YK_OG7HSKaXjGiBR8vVHo~(?!twDgE
zd8rMtq@g;a*(oy}7Iyp}x&+KbFPn4|a9JntrtAq0m;DkMgugg_0jkDEtzDKk!s@Z@
z*yUB*{G#GGJQ6hF@;yQi^=r>$9m3q^FjwDvI$^gIkICdc5sSBfMpJX(EDrRv``suf
z-T-vC3mhg?9&3oU;<jc+`HTGaGnUqX#9Kwl1@(P?nhltD^Yo9rnbw!0IsU+Y+1k>l
z^X6v5!3W^79sXdq=G3m{kF=Yv3rTH>ObMzPn^b03J@5$XJq?#3hgMUtV?y}2cse}j
zIKji!Ra0_sY!9toBe&E;dug~C7o-&P*u(E!CD22j?2|1UqA|0)QhDE)?<l^4%(=;w
zkLV&BlZpDGL*_Rj*)z#{tcB=y(p3t_;o8&a?|aiB;uzHPDH>e2H`lVwA~kP~uFu$2
z7f=oY{^KPhEb=9BkNrLPhx-A68Lp=l%daHc<3<+HSibT4g!)61VdFY6!P_>$fz>A@
z7276Ole<`PmzDS#KlMepQNAAeY~`RW+=FL$qn#a85Reicf*H&}FdB~zBH=v;byCl<
z4<qMfVlZ(pY{0S1qJf{3^gur0o$lO|R>qD>S1fLezk&v%AERNX2ck`Kx9|^zyEz!$
z8}4tYPfGa?o1EZj7pPJkx?u}#BPg|zC(!^X1DB<~0l(TZ5Cc|KgKOASCb*a#HqE_@
zAulb6-6Y++$YMmnKa*H1VcZ>#=fL)7gIVJ#p6_Mn4;yULKfH`W-$iea(&g^;v?F*S
z*~3l7x9KYMV5^%>Yu>aWr}sy!G6&aeCJh}Y?#1c)C{}f(BEn_yX?l7`F+NTvu`xY-
zG5cD=gH2IsU!p1C$GBH&c@s;SSW5D-!e*35+M;ZdFUw5eW^3&df7Hzeqz5^~hOvT$
zWI)h`4wB7Ep6&4+6f$px9IuPQGA7h;1z#5yqF%_hi;pj~oQ-!-Bke#fdzKIizNzSR
z>`^p`S7mWmH%60BV;SUr+{PX9D0B}Ht$I5>z5rrPVp380ICicobiSt_<hyIlv;tB=
zrKwVN%_K2Xp3zTzXIG#8#cixzgSij<w&;gMCiAzdz_XMo*xTN%z=EG`x?SC(HK4g3
zDja+hR%U8T6dfiK$r~<)C0XaEb5|Ms`-L&7s-q~gPHoj0{krC`0!FhWCjqZp4s_D1
zTzAVXFWD=#tTZ;{N!LjDaJ`Qw^`_7VGE?bPmE}dQqjJnl1^RQ)q8kSA+Z<Z4hzO18
z<c7AX$t;Cy#U06e)%V4U5otD^6)@BK)m1Bx2swvyMu*Xuk^3z4$!5~dUO^Jg1m?{V
z1#4)c^d}VI7rD_tB%hsjR1$!>k-5up)O!<Qa^7A~vQ$?ZAYA6n8XGI7zmZ=MjCsE2
zVxU+1E2jQ9tI4ycM?<)AWAQiPKB<Z3q=8Vfqgz`k2c*!^7SWXy3RmDZav@xxNq{?5
z=Ud8Eu{!@mr{RN=ArKICJkbStr&ZZ7Fs+H$qIcy#!s1dbR^H}t0lCyIyt(JiG_|E^
zo*&W{NiAYN-WcO8t9Q9OxOgQOOeGRe+}F-B`n{?zZMWtQWHwjVm&`MZA*tI)+DN+N
z!I%M#xoXDS^}X8*if6-`R{WdB?A&Ddc4CM-hT+cysage?Oux-ycoA|<p}i>eR_mF)
zfhJ~h!B|W%V}ZcVMJH-``AgZ?g~gbgcHS4OBcn|iE$woBJ}xKML0im~wBO5KwI7-H
zPl6ScNgD})pONW#9r3>AuM4{fT}&2XCD)$<I2~rNgGB%hX{38V#QnA`fokUrj>*?K
z)!r{Sc8TdtoKCj1s9d&u3et>X`$8ld2hqC&X6;P^s3!}2ISZgz7YFSiR701wUQxKt
zjNjm|x0u4e_BLX`?3UNH*Z*MYt&65(qUY(e@GlEAG1v=1A5m32jSeN2#n}9P8QDw{
zl}RkuBa5t$j4V1vR&lu+m=|7{+;3b>e^7QM9Y*wd!-LYa5u(nO3oT08_ZA-rH}H=>
ziNXM8H=<e?4Cn_t@?VLw!Y1$0E1NW({IU&9)+_CKSSWD*oW^0Ck?TM`T(W}Mi&v?{
z#)^VEeQADR2R@Q2-C*czWX<JN36{9jh|1Tc46Htg@n3E5Y^`kGKbcaB7v9zc<Y2{U
znPoA={N_)onN%KBoCa}S>n0;?TMZZ$PKVpZZpsbS&Hw7PrC;6hmvd4{NFStj1x^-;
zK~?cv-yJWNn|t=<Rg)IUGk<HA!<?7OOl$o%Vm(NP^B}`f-1|D+a~7iE>C7@3lu>G?
zGb=mDZ|4hK)78LnBo%$TaS2@*!jl#H)2}Q`ddI=d;LF}1pbq+;`fQ`z$8#}oc;@k{
z@?DmiDL5eJ52%Lpjy}7V444sSYqBanhGP@woqtYEfGRz{bs<yvW>$3lcM(F+R?Z5?
zSNy&Y4h~)vH&AST4^Zq?13{C!PBB(I0&U5C45EA+KJOzZGZ(t0U#G7-?Xj!kc!Q&k
zr<$d(G`*`X2^+`JnImKb;gf#^Wat{jEroe(lizN$(BVsi7Q~7pO<^6v82RxJ++6TE
zD?j3kzK&6!QK#q5jgbxEFyG@^aZA%^iv09JX@IV!f_~ie_@?1cWegQTUW{m$v64@U
zgO#+dQ)(h#1c?tLr&+oJ_ViOh%&UXt=a7C)`7ot;&3$K!UrO3NC|slQc^OZ=`oM<X
z;8JLhUct5AxAd;x+_J0(PyDg9kNM{3UE00;)@n6WnU9_?ce$8k&~=tgJJSoFhwAqk
z;|CRMKg)>&1g7E?7h}@o`u9u0&#{i|(ZY>TLp{eFNBI=G1dUMDr82%(>KWsF$kJ{x
zOuu?xNZE&tk}a5lSp-F*K5M&hK^LKs_<oywqt0sZ(d0$I=|(A)LSOOKAE-x0r&PZd
ziy5rdfPQhEtGcwykP@UAYh7ZVvOT%u_0832b1n-UySI8m2-)&c@Ml&`Y)zdh|0N}|
z;8>%hkW=QlVCN{gl&wFKjPU9m3+t4q14YAjX|N6kyX0!u2kg5GpYKwk;FeC@ma9)g
z0q2M?NdB8p=C?25=P4XgThd3IGCbTlF1s13lebCP=+AQ6#Yd9G90Malw;huMDSkbP
z&utC_=JU$4Ur)+xdNBfSUH5iZ(pVEBJ0HO1vy{?9D`t647;67onm?&b`luhUz=*TX
z$+#Wa0ar<6KQoZf;^~OWhO8<A`LPe5w3kuP0ik&@UALJ!3fUN4x?>CNaF>!z9G4`5
zno*^{qCQ27cCv>NO`(6Rn+%>42x<w0f=6emJZjqRiv<2M7<l4Pm#<jOxN7wlo>WOq
z8_=+O=<2nl){>q!{o%Z?ZjwP1ZcyNKCgZVlZ7rQ}v&5f2)v%&iPAPcg=bD`~GEu&>
z!<>|52fyX#-ePyhd{N0-^&V}}u;^O2`SZMWDAct-3@63izAGdJW`H}4dS;s(HnWMj
zfm%Y&V;Awt-1ybczqOiMt1$|F<|&pL)fcU7T?_uBEfd5!+dqDSt<%Zjg$&qQ_+q=;
zHYDf3KEQa?;k^O<`|!t1E%rMa2c0SfuxhIcw!%4Vm*jZ^3&P>b^)_oK&h5pvXtSh|
zd)b?qQX+EO!K?MrEJgjxp4LyhyB$)NLV~5&JtVHoxXu~)WMFnsb-CF0rPxF(E8%iE
z4EzaNjMAz1D)`Zfr*2SgnO7P>;PzF9uTWz|sqfk7@Y9sxs-bBySJmj_Nti`eT8gt5
znN7R&K5+cfjpFTm(rlMa%Aiuw<-@;qtEY_NW0<+uG*R=xzK#WrYDkFpZNx$&iKWx1
zWc;iAnWr|mC~3>OL9NDsP~q@FPw>f(_ZKUE<Ic5IhCu%XCWR6AIw3vz$5)HYQu(I!
z-9%(=ZJbLi9FdYOZCNQQlaB{--1sg8g^LqFhLg(1anoPT)_Sgyn7FYIB9Wpg{+ZNw
zA@t4<5?v1U-Ahyb=LGga;){Bzzrxcye{*{U#wj+w$el1{9iV2tWV^+AC=C+JaWr8K
zEhdB60QhRi)t0eXJy4`ge+RhTbS&zmt<3f#PF;}~vM<)!b}{db_vNdrCToA50vZ!&
zGc^Rux@f|g2^p1q{y@HW<Yy6U#DojDbT4Qy!~H>Sk_ILq#tuHatMdp|ei-&K>{Rly
zaf5bpi<<F+a>nI~$UKM8N^zb!1GRwZSB-!+M#iOy3bq63mDH0h|K8`hIoSCxf$cn-
zmu#TCE~>DuM0kBd*6^<zbUsRd)WR!gwSQnD+`7bK$)kSGYlizei4?-QL=w{u*|9qs
zX^u}Z_;UQm2An)2A_qq3&b8EaS$g~_TK4;NmTD@v`UVD%hlw0cVUA@KT3kVw4IijG
zesj0g$#9Egyp?RKaw(JrR=Ah<Wcg;44S@cR;uuY$gfDfiavGG`z=98wHLm2wj6s!U
zpUY(leN9+nr>0;?p9BH!2sva-@|i8T`=_!~e&&KmRDp3Zog!;qnVdxxWy=AjGC`>T
zW{!>%^S`i4boa<)?l1ep(T@0W$}hD45l>?aUc#h3^Uwb}QW6l<Fzi&^Blx=cuKfQb
zwb(2=w6#Crxj8v`i<&V5&s{zTRTzxm2?+@7wRDG5s%tLe%h>TLJ06?KEB_7?5afQ=
zanSL4ITrae3ZF}Q6?r*K&z)C1cE{HVzb^MofzWA>E2k+}yqbLCe#eKsE1f8@t-TaP
zmAMBs#N7x-i^zdk{<CsV+e~?MOQ85?`c6Suj#q1k2-afqjg>Yz0l}B%Qodq~bxzxN
zav!WSUf1YL!MH+&AC(c^afIJd+KP`S1u3o3#F|3ph3X^n>1hwSO{lN8t5OqMyEwL~
zpCz3iOylCR&sndV5=ZZ-IaCxE+o|G})C{d*f?%0q8i}aG1+$p+at07*3C%R{a&|iX
zT@c*^b=i<2Ab1DRDl%{7w2XW}t0|QI=|lMmL4wTBaMlB)g^gmLS&Gn4%#OXPo2D7x
zllnvpw`=m5<qfhsH8Y)}T@MHQUDm2Ga3Zcp)iw-e7A9uC96J#)Mi8^rZm}m%de6;F
zBGY-NZJcqAPdK+K^Bw^~sZKejqS-p1vs1VLO2_|NOi_lj;N?ZLug+8ct>G8%6$6{G
z`^<a|$NPi3lF_SAl783PpqhAjFRwW?of&Rl8c|CY#biP{$C!KB?Q;-91tFObLZfzb
z66o<V#pFfusoDzTaaJEwW)86%P%QUH<&zyoQ+0C+dYHxp{3%dP)SIjMM6vRF2&rTK
z@rVVd9l4vw&$m813WA!pr*&pdki&z8<7dk*<&l+AG+F~;id3V*)0Y%IrS==$yC&;0
zEj)J55`q|Z4z^kt1S-Vv?j>L{&qSeOjjA)m{N}Yn%y4sIWzLrRqL|ldUDxo$$_a&{
z%dTyz%UeOP;oIBg%TDhXGHL+lWI!Qp_VvlHHkBH|NdvieM}Go0ESiDJgJNV$vkpsW
z%DG{JgpyrUH5?Ceuw0%UIHSy4HNCn@=`S2a<!ynH^cnlitnn__jZVCF<Yhj)a8*)|
zrK21~L8mE!Z$i?CCo)xin&)yfhGF?)mV#V#>VYxH{Ch^Wi#|I<StGjB4i_gTHu`YQ
z&Y%H26tC4JnBji%M7-nZm|8p|%LCM{Wx-+NAeXMYADvXyaZ`3EHY#dVT{lm)WY{{=
zE?Jx6(mG<Swx69;QTa*GKb`K6l?QD}TYv=JP@&`Mh{?KuvW&O8{Y;U`c17CY;a<~n
z(ki0vKwu>+>;|ok4)LSb_M*)AxTO%M>CBt(NaE&w`zBW#XYa;xG2-lOWp`tKzG*BU
z8Gkxj>6$8hYXz1}VX@Qf0}6cJpCRVA2}M-)UO)EPRg+UMYD4#S-4H*ha~S7D7|LWB
zy6O5m9^{^J__gA=l3aeOdznES#<-j`vJ6@G;Mt#&yw20aC=y&eal|))1~f8XTidHc
zqo(TWC}AzjikDoK(t&VOgm#zYm8+4DU_;PNh_kuXmKMU=_6W0L?3#eQ@gR0yNK7M~
zK|T<*IS2qwW%3XG^;O#Sb@ZYoyQ5oenE}v2@DcVKV|j~Y@V0_DQEmRhLnLX1SoJIf
zjiq>j6PRh{spnrGKF;N&C^+e3Dkkf-B_}5f8N6^s?=zbo$vB?5ZR{D@X47q+Y{Z=N
zo&UST{Mlw&#sUqq8g%Pm^x?lmaf~q-UP(HkyVIqDZG2xbk9j~;BwmP``~{Rd=Zj%W
z<YacwZ>HCg#0w2K`IWO-*_@8Iz&{B(`G|ha+ndpt>u6Yd+I4lUUXz7XlUc*nrc%~&
zA}Bw?_E7RB>~p=BH_)g_U>|Nz8cYq(oQKi%#xY11SK6oUM5(Adj6jhxwNT&PDbY=u
z&uvarodPzcvG<BK1z7WczoC9sfAKUSY~G_m%je@&O6zBjBlJ{L%X&u;4vdsq$A3TS
zb9;<7ZSy$(^EXUR*b5eRHi_H6-gIjR-MYZ(<}%@+T%cqD@56z5%)EV4j>Vx~@xYj3
zWgR$Oa(fv!X%tvM<Q3+)l=<T}Nb+O-BmjSuQ>UAr;tLeV%g*&(+*uhOIuDBRB5ZJ&
zuZCxLT{=E<!z~4Jt+tFQLNg%&zPr`jl_zerxW2>HK-;BE%}X;|UPMzQN5Chlb534n
z8`W`UM}@$YofUBXUb-Ohm{`$bw?P<sMa&TZd>IXa9l63)>7Wk;8YzN8n95PIO{BN6
z)5%BWyFa>(LA$=kX(A<LQCISABQgOU=NG<{<atR)QmY!`ZxXD&oSe;daqSQ`YHmvA
z0xV+kWg@dj40M-P0k8I=qL+6L_e!YTM*vw>0iJq@qS?GT6J5`K6qB3AlS$>Pl&Il)
znT-c+jUl?4)9ZE@{mbi|O+nuP4{<&4qd0&Cm-}Fn5@coQ0cHVO>|}QJdFedtsCF<1
zVt(5_hBPW5*57aa&Un(aX^}wPu`se)z{OE(Ve>&^D`VmC&vYJ`kFm|n8?-eEw=X)B
zzrB0LwkE?|R+oJCpS!8(Dx3-~&Wupt7Hg?BGx0_IPM%*<=Q^rNys_jXDvccM;3rF!
zgZot5fjmRgDKZ*s<U1g%{pQn~Tk-al!;4LGGH&Q{#Shf<;E{z+wEWo^N-&U;`IcPd
z!3jxDopQmX)m|QJo7WrTpSye-7%+__4j~vJ_9tqSZp6B>tL=d*e}PI&f9mc_yFpuz
zv=;}&(x}t3p7jPV)Sr0{pa_>(3~|>b^9`o>gN*Ox3%og(-nnKD=w@v8o!zSGI)1}#
zd)goN^|1Hdm=_8?)uXC-P`)^H0zrNp2mOKyxTo9MRe)}zK;=cDx8p^?Psj3$z_BeM
zc1h~Zb(2+{@tlf2MF_`s1zA*5)LV*^B;tALW46|Ib0`%#y-+Lvv%ouqX9$UF(CW$4
z@9@o+Xx?jdptZQ!ec&$hx|J4M#<AI1pxM`-$a8*~0{%(9lfKp%+vqep&jFwEThC<9
zxg48+doG+Vh~J4LwgBo^4&|hfk9?~Y#r5YhkSWM4m*R-RIii`HhIMvvm&*pgOO}&$
z5>ctb5dK1Re)iUbP34_|(a!wc0U%k-X~JoLM9uG%sJ{;ROR&k*Kq<~P8zYCGG8UR)
zj_2iX!QVPp7m1;Q__gFCUtoPh#ci#K=O^kFqh7+%&~?Es*0u(mQ{8u3ldC}87g(ZC
zxCQg;&zckal)^I4Ay5~e5@hbL$Dq{$1-+y5`m-43S~G!;3Z9t*%*myln?5Snf&L4d
z%r7|I6TR*?6#V)qiIy0ZD{CTh4Ja~fwIkj&AKoA>-u3FF?z2MD;dbH$)=Q8<1<@Jm
z?m*anOGtC)46cVuz%U<tF3TVI%MroA&BReLo7J6?)JXEZmG~k9#Om{2x(q%#nbJl>
zYyI|nAPUDxn~G}lDXf=!L6;TA6Dy95@a1wH{jsv_PxW3pN5XRFM^HMJ`m<_O+A^{D
z`m@Uk#it|sMjS}Tie=?y*R}BocT{n7`w+5QO;iJUk|e$!P^1>RDA&RIW`fBKG#4%=
zTQJ}?Ix==LhxU8lypxi#AKe;sVz5qV#r1YJ{9NPcGG5QRXE{zI=w1Pml*PRw`)SPZ
zkI4?ki>0ekVUFaWcjmSt6$rZs!G&~7Gi-v4#iM3dX<F^-kr%&)S70&$!BJZB{>kEt
z!JW?+D!$_wlt@dU=F<xP*ZNJiZI7z9_$9EX+_#aVA&G8-hUc2~XBV?O1g{e0iej?s
z`0M%U3kICKg4573c4@ryPtbeub{omeCTA5vowbw1j@TfVS@1sszMrU<jpk>k42@v8
z=t$8DuzEVMHmy}DNeJkS$g5s#J6gR8S`5f4+(y4?xr{4KgP8Txg%z`t)iWByyttcZ
zzu1i@?MAuS(S98C@~H>J^)SCG7<eY0mozvK{c2LUY-E4NkS*em#tb+zAL4kTEjqxx
z6E&<U#02i{=`<69y%U`gOM-CrV!VpV1}r1{Z~;<$$)PbD7*>|Bo107jDhhhv{D=O>
zjb?%8_-eI^O*=b48wKG_<d(wxrOsSr3ON5rUe9e~*<WtLtSE5X4N)BPvF%)pB95W>
zY=i;kNPbjk&_K(C{^NFS!(=b*8RY%$=b(@K8)gmd<P850Y7~(|;8N=SELRU)$x$E=
z2y0c4od}Y#p1uwq+_(VTg^8kc1g=!K{?<(??b93MgycjqOTL>RQ}{$(N$HzT$-CtK
z9wg~DTQ=QH2?^&Ow35le)C7SI<^|1u9U9D1tqE;A6<njM$KJC@qBct=HK`(+y0)x5
zK7Bvwp#ubLnTxVtjCu_$uRBct{wmEMoO}%ie_S5tmTa=;02F2A2hj<cnTgjtI;?cp
zkwYv;k1!-a9j<6IS_5@S+Sn3!b;b?G{V`)1Bf=r)OMD=V;s;tI|49a5;5v0wLI_v8
z`b0zLHy&E^k!KIKv;#gf8*EbNxvA;02A>HrEM-X7A&H{GZ;u8xqz0v-p&vv~I99A%
z#f6ko&D|iCdC27B<zAOVZx=oqz1+@4R@Y5TKUWvangZPQYZt0&m|O4Gaye|0?{;|S
zf#XQ$X!kgApGo)0g{`Ylr=2rr;Axd3YkJ7wU{#QB2!pve6U)T}Q|P!!zC7*5<>GEe
z4&BSuk{#;>3hrqYq5U!oT1ae^UI|qDFwVj1{J2!tC}n~&Ca~`YK;3S{$3GJ<AYP;M
z@qa|r8sFMsbNn*EK+^wG2@B%3=oW4CFV;3nt{9a2U@_DE#qWR^dj%4|0U&Zlmuqb@
zq(RS|`S0%4jpD-T9rze_+GH`k;e7AV+XM-}=EDBI{5<k5(=-lJCo7%g+-2!h+4=V~
zXGkzot}ev)44$*@*YgkgZjwdVdJA@@9Ssx0*L{qZ&&v_O`_=Uij6c8zy*O-PTJna+
zBKU*Vu!8SbX+4Scd$L5NxtesOoqUwAMfbt#=yiU)CAV*kpzj#i(0_IGGkvl`-bya0
z96_nVZsfnYMUn)xi(^(XFhJ+5eZ>&>k79XWFju_CN6V#g&fJJvw6d{$gO^pms**W;
zn;K(BCw7?Ypqj4<v|t~Ks%d^>#8VNk@FgS+N*AaY`Mi_8+-0%Ag;2O^p)Dvs<29#E
z0yJ0y^|<M?RmJV`jFWQBhfVH4+r$VZgCta*QpgaCP)e>CzQX)!gRqx*Yeoqi>ZouX
zH%SB*$>I-ZY_h#C`7{X?)0ltK%WBEIa!P@fHtJW@?JQ<Clamy-+_ht};G<XzEb)E0
zkb(<=h+O^N3(`qcohl?Tv6aSk(@XA}h_;{N?#<#@eRSZ>ilJuChfUk#AJ>>_i#qQ0
zK9b)Qc4Ucov5Nj0z6z{eE-d;K^hszkaH^pEj~4er`?B?Q+^AU8brAa406J<}zxH*v
z_<V=L>aw>!e`o1}`DhryVHMPsX7yI3_bdQ~{CTj}`HH%e^ay-)7ybV|9#~YVwV^-l
zO!dc*wU_LiqQ|@VLraeSQqtxCxR^h;-P{9hobsC441FB=VTIF$s<L+;ayKc)3?A1=
z;ku1y>{{SnH$P5uBA7g=S-n<$U7PLQpK}95hm|JxM+Y_#2IipsZz30d>8oa}>EP#w
zEvA57)+VR(hxS`F*S~%2?hx0i(F}l-BBhn_1+R_ax4S(2U#uP2OI8@F?i@V4f=^mv
zk5rQCyCw}>Ul2w)>P~dxh4$wY^0%I+jjn#%XbT>vODPkq-zOl`vmN#7>Ox)AapA9Q
zR#%J3pKq@+t2+t=CP_5~HkrkqJ<?7M6#f`EG?wUItkv|boqx}k1gNjRi+|KUkbKn9
zwlA5LDIjtcCrUcl;9KJ~hUAJrS?L;JCuUAv(V37_{{yQa49g)iLT>I|5N2&kEz3Sg
zE8)-LydFOY-*V|V@^s|0`{OE@an}=pidy3(hA6Qu<2J{5CHAHVY;k|)C&@fo;EgBX
z3^m1#J*)U14*c@}k5%UD>OJ&$dYrPz*GIF!$ucwUy{WHFl6c6>T;s}aBBmOP)O>67
zzR=yd<-Q|njJa8N!9%SVdOohZ2V~;^aV!k^5dAG{erfXi1n&x7VeeXi2$FLJEaDy#
z5PbR{6iG7Se?-aulyYaIJ%&dA+;KS@y5QTZlFMxXr~l_Jl!oboMfqz14<ztnxc|<C
zNQp$?InTI|lhdAH8N2Hqp}L?u_tYD1K0cb}m3CiRm%Du&WsBw<9SXyAXYLA5UzD_?
zE~X5#NiLQ>W9;w9A}!K#Qd+)5O_2|L)icgi{_KywyO&c_Q<u#-!tRuFX>?Qg%$}Ah
zt|aMF#VNvc_ZAx~?C*ZK(@RWzMo&)<ED!r+MT!!hjD)?RYPOMZ{7*stt`q93@f)v+
z*FXz(i&BcDeFdgxcXUgYZk)NWA1Zd)zJEjZjz^gd$GK7hOB4BLS#Cr}Y47a1=IqOa
zy{P}S*zSLj&NEyG%Ge~u3jU|6cMgbcP7@|^Vg}>JEzpr8SD}1&OpK<D(!UBu;6O?2
zI0+bVI!7tBfU%);9=LA1VbmLpE@Y4xe({xkOHyNkz_20UX5!X0rs`1+@UVXnnb%`$
z3N7HX;666?MxQhe{+MUHF!o<VH@<Hr$aM&filR<&f_<;NUt@Z9!w>T!HNIXE>WT@(
zCg@<%LQW1>kNs_R;;$=U@H)uNNjSTEHhanOJd(mTGU7vA1bqn=JqOQnk_u^BJB`NW
zg{%Jk_Y*dAE89t!p|n+QDkDz!q-J>eKjscRpKb7SLH@w0qm?hu8#&@DNlS97#K4L!
zSadhFxYd`<sg#WT+fQtZpR8tcI;M3OAr_#frRDD<&wVZi52Gw@%h!{pX6Jm%<Mvx7
z#folD&%yv?n<SN{NNI^!OZ-}MT!==eP?H@xU)B+x%wgQjaJfuK;q4O|F5!reQC@r}
zS|z`A_>1Zpz2?veQ9*C0f(f2#N_IlTfuzh|4(`ZJ(bP9*F65gEJ%N3B6jh1o)DpV3
z$L)hWirdOp_ZdBIu-*ZCdwblr3bMNM-8mm~Toy~!w%%6|9g+vRe)!YrL6j>!>sG#b
zgPmW8BsBYWh}I<K;k3A08_aDs!~$_FlO3AbJ8x^27Wb?tsL@K&Mu==&v*upr1^)K(
z$Hf#;or8jX;duC|QKz0?FW^CEesGwg@su6y%bbJhDi@o{vaPs3Edb)kUUqkjzQQtD
z4UY*AhIRWq@4b1fGSv=GRpA3*hU4ze^}eUhf^bXHIWcVSzI`rAV9q`=%5QT%-_4wU
z$6gz172xHL0I|7so};$6>)VzR$Gl!m%m*vf>56MI^A~Z?2Fkx9p7&lVJgTd`_iphU
zRT9|wDL_I%bcmK7>z~oL^wmMNU;;@}<d`RzZ3rD8OCXH(uGD7w@t1&1)y?9w<>j<l
z3O9->3)zTE=#vcC(q?wJS>CtSQ^1mEJfj8vYc>&w89Mvhb9)o&s$>s#<CjiiK2$Z`
zWTfLX_*@XTnE~U=HO;!1T$nGGk8M%7hs{$JjkUK`$eZpIle&;Db@gV=@PSt|V9^zF
z4t4szf4B>zm*?ax!lSeDzGZ(NizOEiw^byJ0q-Ygz4t6gbjE1&^nYU2&6n0W2p-*|
zj0kSxH-RQ#m*T%~MDW4uT&gO~$Nm*)wgxtO9iv$?Y+q1FP18-Tgluxmja|M)FCzm_
z(T7DL#5IpsP}|Cv#4kexW6YCpI^cvp{4?9()A6E!=EOnGtwS(B8|1XDD&o>F|Kqr0
zPK%MAjdp7R`lQ%IyjBGX3(DfDYM*f%7iLKaz4|2C<%B5l*L>hqj`{~4j)3*k$<q~_
zP=rN&Tz%r*r8xMDY-Y;Wx(a_-aH14F0H%8?(E7XHrfq2INnM<Xq=%QG@Hj80K>E+q
zkxtT~d<97_jRH6W;<;K7&9n<TZ?sSE8w~U@s6Wcu0}(guc-Tof3}cUH>9E?KlW_1=
zC>gnpTm;tYeBHr6c+DE0V#V)mC2|kIC`dKRww7Zz{Au;p4WObuc0m5~J6pw|t|ul3
zmx`vw4Qxv8X3zV$%L1FP${mzkYy#0AMM+dRQo=W;%e@|6PR@%BY0odkAruJ<+t2Hi
zd1;tGX!8Au;*?r7?8bSg;U#>YpJYmHdgH$m+$QK4Pe;j69~+nkvG4v_jT&-!1je<5
zNr|CA=C<^+`XU&Itx`c>7bL(r^Dn`K>BOIY37B`^UV=jn&{x_(|Bci%I}W*Sc3`7m
zmLDhTRh4X;nz`-x+#zx+?U(%H_o&DFVOf~a;3p-yMjlVJPnF-`9W>rwTGkyK`F~dz
z%GgRSOanx?{`8;|T(+*%oH{UU7T>t~S3tO1B4W6>#IvILf{671{+xGrwzDp#<S{Dm
zhpGQA=qQ_)FGobi6fsfTAGKcx*^7p*C1&gavc`Bi#k8_xoxqSiM)8PyQM#QLywhJY
z$GM?ihts?DDd%>xe<<Jqnx8uvlU+L6XL^=GYF_7?2^44veWEOyih0Sm!t12g>hlbb
z_C4aPR8m}ep~ye!Y<W6XscvVjrvDzS%K=3ef<Cl@tobLcf|=eW!3>3X7WSK<1^<|I
zD$>nWxd^433-@Ar^dpq5OoK1u6mr;}#Do4-%+V&{-h7^$M{FBi5`qx=f@SIZTJwmH
zpNt}I>Eba$tzj6;qLr5(*wxNA7@j9H-xHu6tUtFXsh28!KnxH`?W=c5msGU_DXe^h
z^gZ10U8Jvjl-t1`=eYR3?wwK-vJNy*i+HZL`ZM~mhioJ4kH5x-V#rtb6?<8kDFaG6
zhb74oZuQkSsEQXV?KlH5Unt2uXJSFrnnBP4y`}nJahO}hKL=H{y^`*JZrub$?iWus
z-_t5ay3DgtI;(cQO>1yMEbf<}_^1C#H^+XeuqhO%RBH6M$UlVJ3kE$@<)q`Hm+E`|
zFTHqWUz+vJpS;8G`ZPX2iR^Q>Sz}Myd;cq9=G1iN-^-aF0%d63bRx~L6$<6d4ztuN
zQTox;(8EJ=Yx+Wj?H0zwUw9hYp7(d~czN9sGnZ>gli~QIZ4vA#SOQP4C!M67fXA&i
zS?dJ~R+Ok(aKNwiaSF7s|HAj}!YiTRd`=%lnm`JzK_K4BRLmx5vU2Ph@5hLtmtY1_
zRK>w6pQJU1DDM*En|G0lk4CgMZV2z6^NH-Y8T(ZN!G@A*u5o9pi9$hVAw)~0(MXpG
z5Gtw!uqQJ853uHiQab94%7z`*@=}B1>iQ?dq#@)I(Dy!SGhv!Ub=kn(EsUHAt-+LV
znKsR<3LC(duK351JD|Ulv`IdtDK>S}*7v?xC4e2yMyY~__oOW&B{ans3)W2254$H-
z3Qs%r3Ud*8%0gaZu5TM02O|t_)#NP5xom68Xr?;nYSS*H4rl&`)QhQtROk_vg)O<(
zzqeDEt}(b%il(9ndqPCR%ZnJ)Wf8;gjPB|Vtv1OE3az7+Dp8U`4~c)q9>PW_yL<aC
zJJKnxzQXzDf-ASOYQ|RZThtBV9kurVtSB9A>&ujwv2#~k`OfnUM8=fMb?3w9u<m2n
zYb!}QXVoL+LXwvYk%10({pcxa^1xqr4t~`)K#6DRnA{MSaPD~_{{Fc-*DkMvtrG97
z1|?xw;7t-J$yUEb!udIbY$kvU*a%`F4fP-|RGqq}pNk;u4>z~D^=V%W>@ow2i|dFT
zo}pA4WNKJ?2n!(}w})j{wkjDooDZ&_;ded--@5$)wQOLUySa#24JV^-KHjs~+}_vU
zsgUj0b#QPH&Ae=`(ZeBi?||aL-i!XOUuN3cFK@-2Z)AR&85%B>>2Sb`AFuGdPOD}0
zo{4id232>h6Bn!)FRt1q=PU^SJ^orXsdsj6q;ZE+>iJ?S`opzq(OLE7KgOrSWaKNP
z2FhoMas}#ex>S!XENRauc4ps?twxWTk;?ol<X2K29P9W+X{zsoS|v8-A7MIjZE_w>
z9hJtm9!rNAi|om&>Xi#!mO0eDJ6QgS?0>-Ub<xQ;clcEJUuBX1Dzg87B>5hsh7)#&
z;d5z@S6&i)%AIqZb8O7KXaDof{ksu^{{`O{Jl1wO%O*WKX#Lmj4)h*oFR3>^KxSWc
zxe!~d_{7p!Q{PP^n0c6#oe!CWtX|#vek}e4tFU=NK=7x!6j%;G&-Yl|N+HLJ5xM3!
zL}%#yUuJ_7WWc>#)4QVPm%%x~IeY$t6dC@hSM*zeg#s(uMw61iH^egtIk0)I0|))x
zUt2a3(P*6A|9)+b<PLDSUH!qxXk6b_%wDKII`5UNKi#l*eFSVsGrimOk4BkMIjl0^
zSO&H|4QXg_Iw^(cidHd%tA21OuQkzLY%BVabMbFrJ532+(X{PDQ38UNUdLERo@p8d
zJ8KK4nes+Fp`7uIGPliV{XSOpL=%K08S|T;qPgQtrVX?`ch}5U+gpbh)#BQn-}wS=
zSV+Em9owibL}%My^z&jm)ZNI&MyL?^j>Z{YJ)^faVVaV0chySm=04o@+^?_V#ZMQ{
z=Btb;=B4ayW-416ei9kFtEdQc@)|VN)iEt!uq>t(R7jmqFtxQUKe>CC0G3P4`7pr&
zXSb6N6n<ryE(1G>OpIpCjaA%94sw#FZjBUdl9JAz@LRM!GK;I$5PK;`JoUPW7kIPJ
zVnp;cxB{h1e{qX{6!Az>!gqfYQPNVFsAS;4(p6Qryi`x|pGtdx$K7}f!C5g%*W~Ti
zw-Y%m56JNyzX3g+u0oM;^+F@d9OuQCT600yZXqa;Ci;M1%m6;!6s7mVb8l0|bs*d&
zWEyS#Uo~H%T%*x|X|Kt_BS+=N1mn}l$Hn%mpN*$2T(v^yaNSl2)~;}wC=H3+VHY#d
zlp?+&zp&EL^gxeNY^y)tFFv=R%ivAXXW@654EEO{f?O(05YD#l@1t|->+0Qxw8uAX
z=*?FKY`zv(8yiGCWGgBR?N1`BLM0-KSbYcTx$}LM>N&TpQB|`$VoGhr{bS66-h1M$
z9oh(iz2d4%%##3LEsJSrn%E~)u+9L#z=4<!k>*OWZiRuFIj+2R6@NiKDY!03F#Brm
zvaD|U`&v8-nH;O#iq5j$MqOaxNS@=D8yT%mR<U|tE?T3Fy6kkvkb~9Ae;|V|59aM|
zx|lF$$=iX8Cz~R1DGjcuh08FQ)8O0m#Cu=MK3Y@>ceNCL9nd3bFWQW|D9=WzXQQeD
z%4ypf5m})Dz>JrRUG0+lL;%T^7?8X<4HZ9ET>{kKcVI!53Ad3k_=l7GvDx3VE*`zI
zWp>bT_$hI%ja73|ZCXPrIbLiW4-(VgoOhbVyQr7ne4->^Sz&iZ2#Ij|%}$rf(HCFh
z-);<&H--u4N2N-jx=VMWsAh|82%h}kA+NEqF)4`}NKw-4{Otpq@eUB9I>FI3)qJkq
zriSUs|KW1=lo0>$#O7t)xC~JfcJLjsxm9<UXnbN~%~4EYbANxog6ZeapG!2d<TFsJ
zOQQ2Gzr{9Wh*fFH;`OHUuF88<hf{fJyRxUk#IAi;F()8L;`lT81o@ujG!dUnfPFPQ
zEsGlp@blW6t|GDCP#wLQ?Q<WREhA*4;MI>pNPk|dUv>Ri$aMRqKgAfH0#d^sDF?lD
zy+54{t<K;d)vJ?i+0Pb)NZq-~DFfrdP-~XZfaW-MyN9<&IPA`K-bysZlb5p|EIF7{
znhWHpA0b8xO+y-ttBj)(e=1fIm7V|1%cOX0R?;Y(BwyVhoOn|y{z@ules2lq8QU8v
zTeT_J&#2m1RNix%q&q5|kO;3TsfaQxT#*>CT5C2RU5}YKP_mn8indy5WDEI#eEym)
zwn0b52N1yZg8jY+HpYng-}!VdI&ZO?a@tR}g+L*fA@~m{@=aq1Bj?MXosS!lYA+g#
zihsn4tr@625A+JcB%e4Yc&x~l%UT)ypd5O6%VEEtX~fwj;>#IY3U6+8B8=5tt>QWF
zRS%-^!R)I<gX{mUTnP<aT_a`u)|wmmq#<jbuGN6$y4&WnUf*qX(qrc3EJeDc0D6N;
z*%{j)^C(5*s>zB*bb7nDD#ZJ41tP*p_%)y1AR;k&i#ll|C2{N2#5kEW@;~3qm-MBy
z7AFa5np*m6-qD-nYk%@d3{tDwrBYA-#ug>X3>C<1E_(u;+1>pscF{}dU){?wW^&!5
zYeb=C;_YP~)j)?Ch-P!GC>}>9xM&j*RNDeY7H>wlxwi83)J8qNQGSHDS@B&Sk{!$^
zoz6UbA>{vzUQN8-=C+F>?k_XW&;AB&P^|foVYy=ZTVDr&StC-JHIF{}@bc3zx6Ysx
zDvI(&DdEaMB_8C80uS_&#Z=GD#XMrN?Q}ivdHCNW-2xeaxIN2L_@Bqp8H4uWquZZq
z%8+W};#-K^jHFkS;D!BDOZqOG*F&wT%oL&VVI~T7vA|yxyKhI%{k!^bL!<=F6-z@D
zj|<VN3a*+JvQ*hxqL!va_Grg1jmkde!|8H}eXJr#{9z~KAIsMfOTD}7B6&X+B^Hy&
zCjwfH`#fWF+8$&~!Uk}^1yun4H!(+=Nhu*VN0~6s*${_n(4;0K0&w)lj#$U#G2@3f
zrc568wM&1%C6to_o)%ioXPFm@7Z75k%=(j$G5$8#Pwj<SwH$6YM^h}Dzp3owU5^~&
z1_%uz-W4e69E>D!BM=C2ad9!X)v@vM@pbfG)PnR1<qG2p=ZXk`AmBMIzj>j!flisp
z;85W2*7Fnk(`hthy?(>8zv_~r__1|Y1**H%BwoYSKU}1^jD3^g=2MX7e3j>cI8ceJ
zN_kbl*P7Y*@1iFT{UePyrDjWbPTtA>yLL*4&sHvvN!`YVwb6b1OvfpM3T`h5rm6Z4
zvS@`&8T=TiCfdI1BqN}E`~R9h{NE=M|36of_=L=8=)d|LWZ94q91;at(Fpte|LH^f
zKX<8>s+T7v$H!}Hn`#^Dni?CLrt7Hf$dmquFBBSNS(9r#Vw>UgfgT$?oS`OLbI3s4
zxu-|=vp(p-fyiIas>~|wfDJV_NSdUV2MsEPPjJ>r?|UZYQ-i=Wi>%jnWB-F0G0K3*
zSDl3uXz@EHI||p@2W0U$ocp_1*z_ORCcecN^lffFwUdCow+}lt=|6zJc1_Zqjub73
zqAxP1AfkNgsZCO~rqgw!49*N!*R|Zm)GALeH;X~<HNmFF!es<iS?vhA^XLAZvzLj~
zut=7u<Z+-kbA+&sKMMQ6xBe)UD@}OG#IY;C@W7zxaek-ieCWbC<MDIOx0$c34#wQ@
zqjUC$9PS+PkNkd}%RApAK?O4B+%@(E7ZR1}v*)4RHq15QMOo9uuWmWnB{DL+&3LF?
zBIs>=$McTfS$GJZ3m;`TtQY76L<LFI5MP}%>-0CgRLbxRmlAzvr8@dxF-IRNxb^pT
z)%@mWprh_kjL|8VOx!hW5vSQ^Uvx5LAp3iSqmy`IIqtVDpJFG#X5rtq>Z6+BAgKiM
zM1P2s+Me7_I3c0AIoJ?GQBNht|B&RkNVPLKxP#g=%|Khc<Yh`2_S?Nt%l_1|!{Y#V
zWx2tzr6BEp+;vKpD9a<?q3`wnbN)}Q-8cpj_w??rjyz{~;Wws>VX2qZC=xW9zxS?J
z>xb^OAKpLUI+1Jp*Y7dgFph}>$;^iBsVk(W=?9#SnwRLo#d?)SR(91${`e&q?PYmX
zWWvCO^wYroXHowoe?9~OnNQKalYk)9OLA19l?-Lhw;P6sDhL7J-(8j_F&4LavlKbd
zS%Yg>1b?;q?4a_plB7u|6h8zL4~~P3#+};A$Hq2}Dz#I2IQFXI7gq(Xb!Kl@ob3EI
z_B7Y~J33kV-C#|STgj@yBj#IHp7_orbE)FFu^UXtO}kiEvG{dA_o$zZ>>5~ZfM0rF
zz~xG;y~{+hiu8cHem3Z&|Lkgg{xJIL^KSQs9{<mN>(i?5viob~)_-A_tV$Pr$6=|a
zTS4?u4V;S)KAzNH!(PxiuvoLYsFZy1HheAvR%CTC96Rpp5Co<Bz-*yR1j0{5lpAY~
zCL?ifzr$uT(rx>lu#I>mGO$lZ^3P5^p=Ay*RHNaYoo`Hwoj?Cz;D=MZ@;Kwk-&zHk
z%s6f_zO2B<H5~3G2`W9cy)q);*>>WSpyQ8$Ajbo>HM}x~MHCfq^!hN%5IyDukv_{^
z>^D1|{awW0>I6TKs_aX@PTZBvvPt8Vpl@}C{UxTU&hBaV4-g&C3V6VqS~v-1nlaB7
z&CO^J_|t$83W#m7pEqll@$1o{^Hm})G1t@#3@5S`JlNaZzYgkcWvWLSy>-o9EUUL&
zmbc)@k3c-jV}yR$6#`^3tN_i^Zw*~_tuvt^_r4!}zmmmV737$IFD6P58V)9YE#ko*
z(I6tr7bN=m$TsKKWSw7u@MQ4aoRIgcn|Era#|^L`!u?3I%U2)oe+|yN%d(|Iun2g_
z&4piy!U-rR(;sLs0OxRHdYc1Y6U=yQ`uY-OeYh9swaWa;*F3=EQb}cy59wTKAZL8x
z_vM*Nn0PVZ%H$PEKut<z*frZ<%&ryZITX+ai`nNa@fiNfbg{!)-Wid8jufolaBe<l
zv<_>>ZI(B$&(2sp@@S@^27E`FygkIWk@Pat(V^!xv9b!&wFLz{jZJQvZl~c3%Ilhc
z-8uywa6h}hCG_^c&j(P+4G~0@WNvE5pHtOsTgdh2B3MsB`QDaV&&p}q{YGA%DY8xP
z2nETiuF>3)k+Jta*Sar0i%)0RUYEUIB$#?L_iD~izU(pzWv#ecqExMpm-bvvF;E0o
z(|6u1wm_;U7ShgkVVR@w2*boO-AX{GOQN#~#Xs>0gH1~P&xUmDn*hR4Yy96Ks#<GZ
zBvZrh;m#0%co3=*G<5QzEqS2=VE8l*c2b6bNC)}P?L}bh`ketk%*m19oe+_4;uakO
zcv4V#6xYzlrXf*f2IHj?=Ny6CDC80`zsdFR`3-Z(P|=|o(G!nI@^HGAi=folk8X#d
z2z<RDFHr5AE0+sOD#|yjA%N5SszWP6LPE<L<&j>*;>sl50pTg);HDkD|L(_K1ktGt
z&6n+8Q||}Y9Mbbf5Lk%}a27+{5*dUku(7E_%sPiNes7QIN>-s4o1oeoRrCTO&>ye1
zE~8*}d}ZPWzRC~<Y+|CDS1(^H0Bi~sefmdgTRC>d8xxc_xP|oDx2CW9#<}wwcEzve
z4_4HruarQS8XLP_Sw8p>w_ha-(o`FJx$Pdw^I~qUs?|9+JZq}3$hTMj0BmzwP<R>_
zyh25LY70=cGWsp~^FycW^|q+MhW-331{X|lmT|&gjnYJusq2r5J@al0g~zdiV6394
z)a)zEPLECHwe5&Cc@hG;V7fv&&DRJ*?j%}qw4kamrN;oL;vT)5MHJNk?Cc=PB6jca
zs0e3f+zh>C+@(O?qoefPfW{tIeWqY{%e=DwgUr5u?eK1)NmI^{zxw@oI)a%8GaTx7
zViCvLuTjMZ$zZrVp6aH3=~4pjKs&H44gjw0(I)F5|5t5q9o1I5ZjYv=Eu}yyr9cTq
ziWYAnxVuB~60EpGafh}PC&k@egS)o4dywGnP@JN7(eK;)?0xq+<9F{F<Ci}&l8j`n
zH*3A`Gv}Jme4fSo`w+ik;sh~+Y8kM0;3ID?SD5&W!|bMsm^>wP*FWQS#L~ROf#-DI
z>pR*@ernp@=(U*9T->Wr?U%b}zlK6fI0#4EESTBk!&-gqX$hsH?9g1j^xtYEX^E!C
z^$W{QMV_0R_ggrwcD+>~xPClPa1TOHt7YWSjQ`VgPg`$R#&EP@ET5p%l(CoA97?LH
znjaoM5>BS5C=vKXx!otr$0d^^<;Bbh{1w$ivF{y6$&-}Q+-2qDIagZlrMkCA4_7Tv
zT_${#ie0ek!aBz?de-5remr-~u6JH~a0>9ERO}X)KS~Zq@%ZPGV!F0p<e(pxx!sQ`
zq;r{hSv;&|j^{)wO}fbY->d>GYKssUBjCaR@sA(<NzL97tRJ=u4SyOuB&q=y=e-Kv
z)_vgX#eJJ~yQwq%gW_JY@hW#Su|f;~C{|sa7!{d7bV-|g^$b1KKGp7ZRg(vUH@4Si
zxdqmJijAH^(F>=MjN1&-Ly!f+^3>7-!F;WHm17%=o=!jJBK!|3zj;HSj{7WMayD@l
z+9lwz-Tl-wKZ$?v#%1rY&cj_8*g)c?IGy^}jy&^;qB3P(309LGKzVWHjwrj8VDhgI
z^@0y=okuB-D`d=8hNtuG!jTZV&1H+->Gpvfjb1iK-0KW_T(hNlD~wMQuMxl)Wb+Xu
zncyF@KFR>6q?!=8OI}<2Px=?^65O@yMR9X=bZfP`*5d+tUr|y`!gV~%cQ&z;lGe@|
zIyA|;r+oRbe~UWh)%w;N)%rbwu;};;gxa+6w}J2@g!kQUY(fM^w83PUKj<$CzUX3@
zeEp;i)DzI7-c=R+{p_crYh#+%gRE1x)8KaFzEov^a#h%y2<NE6iMCCjPv>x_*Jp5N
z)n}s$V3D&I3;dOChJ0y)4#P4td%3Z4I<BIk)X27hQ%I)noWGhhE_X%B(3D#1gjHX)
zsg}dYj}xInAEPpOz);*&x5~j_AX5CyC)<1O40o8o_7N!cUCD-WZv%&ZF(N!J8Rvql
zmaF3Au+g};Pt~tVdrWmwzt>;=CjaN*%Zu-G#!J)I@;l@)(uL|Gqfa<MpF4hrD>2*%
z?4`cbLUcF{4>-8ax4<Q%>?ab%``k3**ZsV9F+r&|rOE8p$x%XCspxH%*E9?axYf!5
z=|C1!&y<xYIOybnh|IW$R)WhtBg49Wz*e=aw_7{O>Zk%KH;_=1#~UkgfvH*@c{B$6
z1u=tDqMhNx?9-t%!sJ#~0_<W>_ct*H6nnF7eRWLcZahl}T#YlufN{OqzF6Gbfc|pi
z<pK44RxRefd6yWHS;*MobXmTN3R-GuBvO1nNIhSw!ZPD)?#x}a*V!PYj(A_LRw%l?
z5lCXrD;mdo?mv*L5j|b3dwKZ&cj{7fSpuyaMqn`iX|m;N+*$vVCO4aX6aEwaQg{@1
z`&n*^z6eZX>B&uK>{O6#^N0R4p6ywZa#(q*`R{F8PyQ%jl`5kP69HM}3v@kgM@Pr$
zD$7+20dj+%9<0+<j+A*5E5X{@+5vU2DT#t?zMs~EM8jXM7m_$H7)b<8;!buOmSVP1
zsX{uBkPFP-F%<f0@%ZqR?R^;*E767t%_g(A0Sm?@-^J-e&cc&KOKIU#tMpa3r<%p*
zxGFGr@Ts(ZYl#O_Rq*(m&U}lWjh8)`70d+nPGQfQAd@cm^-cpG4T&Kn5vXBdFXiux
zMQZFix4m;DnNMc_y7S$?JCl{5b2O5C_*KYIN^)jFIc$(f&=Ky;Dx~v0l=>)`81n*j
za8DQXxkvr*ab`?R|G<Z&L~N<DrT`^aLvw8+E4hBm%^1|72$QqP9G~Fz`~>&$!B%M4
z&$+fdK5`SQxJ4c^fr<hD-<!@UohziqDNP>CBO3`-<!*k#FEW_c`uyh{G;s<=GRo)m
zJ&pqu?_GPcm^8s2D^%^vqjx&(QuWNKa~NhCKf`xg?~9ZgY2hTDEJk5EA$XVGdf*H;
z2Q#gYVKhCN_K7h)`@W4se?Od`^lFdeQWi3!bQ3Weyg+D-s;{|*<x{ht9$vJD$QfCF
z0D4A$VTL`iR@9sWn@x^aeJ>+nqwR|Hl_h}Qe)p`ht>qM3NA#U&^>t-lW9YUQ$wbKH
zj~qO%rK&&wChAi@&x523!~I%bpkOidEIdFlD>zcd*ccn_k#C=NDYv(eIBIjPq0<L!
zW8(u@0;E9V$_6|aM?ZEEIqUPz5Le1etzagkRAd=d;x^zOC{-vr!HhFcdSVvLy55B8
zE$ubq+HnhKIr5@8CUzSnY}_^Uu1gPF_7<vr-6{2w@(m@EoUU+!dz<A$l6vy=WwNXs
zgBs45{Z}ff?il_sIuVO)rw{GVbi~B+%j?k@h8Q#K-1Qz2dLC~n!M)SMP9y4HtrrfX
zydYIuTI=y71PQd$Ll7S_S1)+yEknIw`Z?c~QtFv5Dlen?=cWo^FpKwU7tSY=!MO@&
z!izHXJoPPfPo8tW==QzDm|pjec7HH9)y_$N!=b}YPURj`3p+j-G1#c~;)%yIfemxQ
znQ31J_DwcQ7lvXJl}gXEY%j0AYBpDEuzQ$MXjqyiM;TlI7GzC5)8b@61-;jbjy3a@
zD34}!2u_&~eC9PYPVGGBk8#bRE?Z>s=`@9KC!3`41-adY4VNP(>NdjuSAzNEO<-ha
zWRYA7_SF+~+OIrpEf!VBapzT@m)NHC$`>+;++-?Vg$+!(^RMd}TV>dLIDhaaGwGC0
zb58!sdFs(H^PR-$DBq~McZ&Z*^SrZSf7H2$aZIlNNxoA&4k(^S1qzMFG`6&4VB7<=
zQNdceOLTN}Q+<VO>GrJOD$zv1<JBt>7%4b1GIHpCBLgEN<I=_{x5E|%QhBuAn#pYy
zF|iu_en0F{9}ws|&fvo)WHS$qJO%T=da=F$*MpA{CilC;!)1h44VNqTJ~z;Bzw@uS
zh$bkfQ>i_~0j0jqQ_W|XikWrSwcTb{;+epAoPRH3-A>VSqZ5@pP=?)DbXaYR;}occ
zzn<)0;o8=$Y~j)nbI1+=KBiQqqGifyG=1DQENPHYs>^nGwk*3G($O<Bx7Y+8V=?A;
zoTXwEfAINHJ~Xdmuq3KXgTU0VmoiKBl9@}pzZ_ea%GLDZ<8uEU%h0M+gi%KTMyfJ*
z77eP*k~TB1Y;H_8u<2KS_B$D8<{e_EAWwpZL?TnYqoq(YF5@R&!FFWSybOuy$*h{W
zu60UuJT0J4JibPxHj@HAo9^84sOwh##)gz6s6H=Cd3De=kD-!Kd|n_bSF*Wfgm|w#
zIT1&x#4}FnIvcXzlMdIFb!E5bBmw-lSIru=wYJ2d7myL(rydo9*I-T^-kLHJaJ^X;
z^hZw28Rhy27*B$yw<mJ`cwbZ5?A%clY=KoJXEjQnQe^`?*sj0laLKTOay9N~NdAP{
zbZpt}3`3TFhd6O>6ym#M$4P%-w>X~~QGBVgor6OZ;S$gb3lmQf6I{QQq_!-GKn`>a
zKoRM2tc{iCMk?9vjNI~WtZE4!L31OADQZ?p17s&2chum=2i8lom{W7RYu-fP{3H=s
zIZy0H2NT9-`g19(pIhGRZJ#r5PEk@4w0DEJZPVjEH-QDbeVV`!M+A3q)#6gqN<x33
z3Xnz7iw&E7(;9*sHGkH9Vy3e)(2Z#Wc>Err=RJaHRf>_CUJSjotthv#GTgS9@2gcQ
zf6A~4myGLpVcDt?z12%rx1xG?BGpd@3Jy|7YO0<R*~@P%xNYpl&Jk@ws^rC0SvHan
z;^opYF$G-ddeTXJl~F*SxwBo@5#yBm@=Y}IF)Eji?ZWIAT(}OKBUu28vlV_NMtToS
zA1olGuh!TE-u{B?WU9YEH83}tN7=Z$H<m9G=g}=8S!zPlLz#7_(fuG&X*@Ec&kfwS
zDI@Vrna;c+#&WQ6EwSTvy?k#>?Rr_Qy@%y!v!tu42~`xaj$#gi{5`ws9~~|$T@GmC
z2nW&rcIZ%vnRne7zqSnG;i!ErxAJEkq<_Y-+XR&?%}6@QnB{)DyC-H%vRZAqQ>b1Y
zd^%_%QmPTb+)szCWlIMfi<83mb;P7gnInURN>&AlYJRijbUFciU3&FLhE1Gf+aGGT
zm$`L@2n-)BZcF4Lv|B2?QB5eyILT`Fq3;efz3t1CA@4^bkw1S5T0I1~d$LM#amUyE
zP(u})w7_}Q93GPe;d}S)0de8)Jwo%wvugvXRqr)2tX8W;PftFFxzW|~0rP}N0d7vZ
zJ)YF?sBB>+uTPs-rpb4NN6TQNq}|50V?4`mUtb=TA1AZ++SAB&rSFF*g~k45#wxxr
z${5M)?OgnsoPnNeQ|q<-t=p8jC)GTiHbc#$=fILUL4fnVvgq`=0STG`72)EAtlR6A
z<y+6PPg3)V`*^a%+&9f=4{gKLIRgmSzI!cqf_LtvYHLyRYEPf`hD};)TM_>5K^^8S
z1E->uPAcn%oz7_3)Y?`-k**jo&q<Sr-L@)2ydI~lxSO?l@o{U><Hv_3xbJx7*wUJU
zJ{jkcVAc(WJ##yG)_jkGI%fpS5ER|btOREZQ}t~$LP~#G(L62<vd<Q%H(sUFC*IrN
zMa(-*_We@Y=_dp1hCf7YzP0&aZtoL;<K!e9m)0J>zSpE(F*Ougt;cw@`&cwCU@^@i
zOs8v_yW*;`V}>m+NWog3fX!b`?nbk>;7JAdT>LAJlIF7?pJ{rGg6y8RuJdkop0TdM
zIozpG^&cWp-gQ3WnZeJP8+xGrF&`nAY4el_iDOGknSf^}mtsLwaX6i#@9FGizg>eE
z^oSMcx@Pg5J4J$o9$n2>rRdMSlAQie1&-`QIAWcx_+sGZw|w)B(WXA<bgK}*0ZPJJ
zm86`d^QO+UhOb2+ve|7HBg7p~m4<sw?(rqOb6e;3Ri!C(yGzZeFlV+iG1f3bEd^Y%
zfLeD^-)d=Rbvf`gOF~nW|2gKX^2Y0yhx(sfG2+Rjr7P<KAxd%~{qbv~{oOx@XQ@}z
zNy3X8Q_07xo__DQL@TY_Us%}qXfA8V_;2Eu<5IZN%GS3B14cobV<C+^#z0+==SJjj
z%dIJh(-v;U$8g^!Nslu*3%{5-_Y++w)EMGr?f5lME01HzsX(*61-^wW&X8f5haVy3
zShrIA+cMSHpN=D$Fp32}Q?;fm!mY?<odl)*i;=JxuituzulUq5V3x=buJ{<ct(;%g
z+Hnw1p@kpai)C^fYa@cu78;|Z^a~lVwW=xd^G2WLqT+<NS7~Xlt*`ClLXTIJYAIGT
z4lGi`<(BznUjP2x-uBaauahY+1OLi$h`iOvms$_>9Ak2w!71fH-u%X&H<5806#ukW
zvXW~rYxU}M3i)9=Cz*It=!vJxw)JiBn_n)L{iut8K)OM$5gAtI(Q(f1X-(2#u}eLD
z=Jkrq+=s4q!jOjBM=Yw|+fsD8;snE$)%`Y&Wc<OJ`$5MQlcFY%>m<%e@UIm8)9swi
zvr#9;oO^@CQ;pWQ;{?1|#h#1Jeyi%7CddjuuaT_{^VjT@R@3+av&1_=z!A#sv{mdM
zKiWLgUk-W2z|ue5wTcLhazBrm-#At}Z>D<CR5PoKq%L<iouCzuX%Wh(g<IZ4#agBi
zT$r)-Z}!*XG@HubMCXobaZ0bpvsY7240_@nP+F%B6?tqoUsl!y1ti2U1ig-zY;{vE
z>HineXq9B@<X2MexRoY$n6pn6Qy1UqY}LGNVZdI_Ndk_dt*rzdzEc+A<Btht#(R@r
zw68rni={|@AJlzJ{NPR1b-x%duQ3AK`s%3N>&kAeC*{ebzWFM*BYPNcfupPa#g5+*
z+4>E`LaoCDDxdB~0q1Y|l#_)MrrVR1;4V6mqw|&=R%%tb$FEqubV9=9yQo?|6DaX|
zy53la__@bUo~5J|zM7~_x8$m<Yp}9iXcb1$@vlg_Iq1om4S=utIFR_+`=b%!ES&wC
z*M`Q7&CPyka^qYRZ{~B%oo|(Iidey^vOE<4H-Yv9>6(7WdBjfNA_7fOK0Ty>NaEc9
zj+gi3=T_JzJ41hjkuLzwfqMVHKM&V5Ylsx!-WE}TV%0{Op8RwQ643Xv2Kp1AWCF1L
z@(W;w|37R_0j^BPz|iP<?RsdKbadRcrqqPtyuQ9OBUIa$I5VR;i`ZG*2kNPIr!Tdq
zJ$9B@YXP`Q<x`<Um`LH`<5yeiR+{GHC(Sz19yMy^pa)9z$xT?V%yl&yX3=Wl&-g*i
zZT6tubUI0R(|{=^S54&>*HJ-1K~8SKw;;bL>o*@9&Z~W^enr44I<2gnd|)!cF6QFv
z>9$$$t)SwjdV+XkdrpcTw;w#Aqf5f${40p5iDMujo^NJUo}btG*GC1EkN1A5O%6?}
z%&KL$L};a7EP<z@<0sPNPEfR_yB<pMp&9m=>kSyry>YH<w#$Ptn2x)59?;kBFiLQG
zlnLOO8{S;~PD@K`bUV{-aJH%Y8f}UR&yhCd2K+eF`Esnt7%s(+vgF&vGfOMmE{)t}
zj4@5r;ws8FzblH|+`y)eZP_k*P{Z}btvIW7bi3-5JdYB%Ml~Zd^PvyE_S?PaVP<&R
ziG5z-ebDE6IMkz3$w!q|XgMFUxy2Cj^t7TZTsxi~+jixOH3yGYum9`rm4ooLR;ZgZ
zV)x-Rjy#Xx==Q=-Z`<S$$q_J=Y2BRS&iEcsHq%B?bQ)hPObu9}wxEbSG4Cy*ce@3{
z9~4cC*Yl>!m2qhIORwV`%j0kr)Y&s`NqXPl1?`2~?E77IHoav(OiwJ%vu?gVz50E$
z-*jnpwl}M#sky<xFbeEMW9)UjOIjG_0!#;=AfMtHFNHPJJA?xj!R|xQLKSf8nFB=)
zqO#ZUs?4nV3*vg*EMm$IP144Ce1|?}R6D604G2Oe^@N1X@hy_LowUmg(E3Z7Z!YL~
zd6VWw?v6&8&#L5OogIRk8xv|gQ>CsP@#T;b(_#|IFigM?GZYVGc${%|>+TC^6>uTm
zu$^~#(fZK3ntr8^c@Ys#rm{J^TVPX-Z&A%)6ScEf2=PRf*JQX9NcYN~#zuNcJqXZv
zv9Mc7`%}i7nU}Lp8KO@YXw)-FMY0`az`eSAGCk}R+%xfVSk%ft_Sj!+zz0J~N=`6C
zJ#5#?A>9*w>18ZXY|zm0zS~Sy?68#ulHq(CGGTHhOg5fT{|Mxewxyi0xMHD2Hc;ST
zVd}<`vZ}P&2uV|#UZbCsdSY4<g@@k_4HB-mDpMxVGB9~O^`?%yHQm%oGGLfO^Y{y1
zsA!PmMxt0TXW6^hbNU$%h^Hez3#LS~Zp2bLR+k5rm>=rps1X_+%IW#2ib=1$q(5KQ
zQcL)?>1sS_8M%Ggj2zFl=fMX>v(t-R0;6zt<%=(|98HFSd+%mSWW9fdZir7l3K0SP
zifFJEzsyV4DW*U*D~vfF(Uf`YcND>@hi+}dxe4i7&nV3yArCrDx2w<}gJhK}72yS#
zm~>#Zd@FbYwN7^wdf#auhr-?>GLR}Ya7|s|OUKk(E0+n);6#GwyZB91xj-{xV9pri
zJx5y%>TWS!b*nRC>t~Q;af{w~$cag?*Nbi#X)WN!R*F>CmYJ-NJ4ttLHZyyMPB;4P
z7aDpPos$BPuoA0{JXe3I{wr9w7m2<q)Z5vr6%8qOIUFvElC1Li)*ESy7LWIw@Q6-h
z1>!0f>da$;cbKC23qqU~h*EGLKaagAjDdz7izK2I1(chWuhiesk?kk@E~Ic|Zg*$U
z=%ph3kT}6<f^DY{s=!CXxPe55x;Tk?YKbES<pv@XSX)P1&pou{`E6f5!=o#ZiLw^3
zGe6=(qNnR-tAqzwB$IVsPlAkof7@U;KKr!+svCRjN>I=7zDTHAv#KC6{uQ<KSEV8F
zQ~`_INp?Myr2FE_cxZoFc41A4Xu?UrW6=AY{3tW5Nxae6EkwS$n%^2V<N8ofkDKXN
z9jqMv7(3I<u=Fc&9%v7;UY{EVnXjbVDv5F2MOF?C4XKwK4Kp`p8A8eN;*299b?8v_
zNo;VcM=};l$Np26Q8kwN&zNX?vNHV7gs=R%_P+1mf44`S&002Z6b!Q*fel$il)fm`
z1hr64kt+`kM9>rHt2vfv^{RWnuq>=YpQVOXIGDLmEQ)!s;_&G%q7TFpjywR>SON|~
z)Pj+Z;>>fEE^^w#VMjZS38x(<p6Yr2l~I9n$PXH<<yB>sY1OnEs;d2%zf8>Mck1=I
zz^0iszZTt~LGW3kQxv0Ot#<>XssrPizuTT*U<3n?Abl;ct8{OL7(KIh5{AZc9FJ2J
zU@hKG*ImfKTXwHQaRY4Cv?f0oi~VnS;xI^BMte=WK9xBKEItpHdLtZWfgVA3n^0S0
zFzhk9`+;U4?j4#NCU40vhcZ6hRRbGWCSG;vF=8?km`3#KK(X5^z*LE3Elg!X2T)ce
zCm!&Y!Qs2*meM4q#+Tw|MH{ewuLh?%-yADTXIiK02>ZHPs~wnwzTJ2kja`3k(EfQd
za|=0liu<)&VE&t1-Aa#nxkG8v{YN=r)%d1^{I?Cw&0cZME#CtJU6%r=+p1wh)2XSX
zcV{ajuAedQnXnz;7d|qJSKsMRQu8(CJ<%!+eJG-hV%qfO<u{Cp3tkHE&!???Ck6$-
zqO)VbwimiGjxfIcZd0S(EFvoPO@`u=x1R`>)-z<+qU19COruJrJOgfDO~KI*sHH`+
z90gw#+oM5WW+%}@_sDTi5FDqUpSeyrmr?Bny>B4|LbdYsZpVw=xY-&T@@v;GgJqLD
zGhhAow|^PthGclK)Yc?w(iVR@-)f~+vaREo+V?P&P|IkZ#WS7-&sGxxC3NeZAtd}Z
zOAnHg0EImSi!eRIWo>CGJUN;1{@^)XCAjfh)b$xA9XE4csBi`@Jv^;V1+safi{^ye
zH2d<81Tt$DoTrKwW@g)wzCkAJ*N!nyck?_oxK6sV=k&f4@tuf~FHV|fiw8D+QNLGu
z)4DdW^AHsOBojRLs6M^S%9rFGXzTgEq%{6Dz45<$EsnTtLdLNei!8FaxVi>@^|`(@
z14Tc$y%Rdl)r9Z;00A-vkr-*gDuBD?M*W9pXHE)3e_#u^u7-eQUn3OdQs_h5p>h0P
zo+c(H`*V$efhn;l)etJYy{S0$6!0cjWxu^2SJUH^beWC2%wuUNiaDG-wcmU@S8Hd?
zX}z-49)!j73xvtZi8a)v`vAB$&VF}44#51s2t>$k0Cn<*YOACJXYxOY{7=}&z?A?}
zcy@k3VID|X9*47-ZSVTi?Iix1n0Dk5>&b5Qd@{e+&8*Y>?p!1HZr!j3G@G?TyDC>0
zawJ5)KR(UbAAU1uK^yU=!PD@eLSYbw3UbtYy&z`3#gYYy4ib16--96Q=SCg=7=(rf
z*D7(?n{nw5r-ZcLTx=H~AKTw8-;SLUgXOGgY_7O(B%ENc6%)V?KMB<2B@lCtPSZgf
zhx`WP0M&nz<?4D^j(#LNRDNp99=R>9Xy9G9_@cs>ScQYD7W6(KJKU@f;5e4jnv~q{
zsCbDz<|U2?O^S|Fo(lqbduO+R_cWuaGV<RUar-9&)8m+{B=P%au)7_5rnjpz_V*$S
zhKVMH@pv*84g1S=n-b0rWNRNZdO<u-g&U9<S}VT(k|F+;kI@LSBNM-hm6LIoAObEt
zx-&DKKg27S#Ycr*eSaCR&~V#n4!L=ay*;dj@;Q(-OSymqQLik5PXHET3zX|CF^Shu
z)T`Jb+|?4mV?d_afg9JlIzBFye`3cB_cQ{BdbU!vi;{$1$^<{fI?d^SuKH-_Ag5p`
zIwky>hgG`|<>hD(t6<v@T99!PEis!^zjiZkx<+(5Ov$b07pv(ThdT^ZL6x|}a8HaE
zyj7oC=P+A@(@Ave`JPw4=ca^&lQis27&O1pu6^fx^ul9Aye;%Cw0oahJi{u`Q82P_
znCJPc9QZUNDd<CFcBC0Txv{UvrB5+h{-}a5K0YNXEpRGg>D^VEl+2ArXTl-n#sN*R
z(a^=FhWBE>A5}CzFOXer|JInGKJR}Po&Bh^gxO>M><*q|V7YCBEyuIWRff9{i6rI6
z4_&(ZGg@AEGQ0E47)r7v7*p&*;|w$;YGi0)QcYi%zH2TMmCIOv5Fq~D==E*)L;2;j
z0*(^ePhqah;HmI*ah0UPho7_a^D?3T4!^U|e}mtk5X_OcqqN;3KxRC{#R61*b?Mp6
zS??!~I+W!*+&kI+#TK{D5bql!F%`aj4pnEjVpb2E-4iJJrI%6hk-ge>s|G&>VVU}P
zBrblHNjV?(Jy3pHKqk@=Y}#b5Hm1u2fU7w`_<^OJZumDG4Zbn8$2Z9Fr&9fV>cWTd
zvYES2MyKB$g>9&s{oS<y#sLW#_q!(aHk0JoyLz8@Y*mu%Lgli)vL&|as3`^^?-L4x
zbIQC6NdshK_eV<UxF-dB{(-Wze^9pX|An%-0t`wFO#J*ufqPdzL0-w6Ziizj_UR9~
z5?ofFXi*TdzPf`@__dC%(kc$!+qZ9-nVA{CJ1GC5=%rm4j?5Or#)nV*+Xf@G@jZgh
z6oQ7iXTR_oU6|oQKH|%YcqPmDVlCz^Lku|78`?ghNm53pNmTiC8(u2L8@F~X4T@$R
zJTp{T3UBw%vFenv83>k~G~f8*Qyg)EMn@fl^Tnb<iPO(`ri|Xnb9VWyaLI6yu0t6f
zC_W#Y1IC0O;WH(17RX8ucGcRj@HY#%^GgT{E}kS3ZW5^7a7DN;>Pcy9w|2Ar_fYu=
zi&&=jnC;CQ|8alOH4~$9bjr5R)7oCE4e>^JZoO+!x=?u!HF|@4VG{!J)})VKw^n*$
zbyqtfu`b6V;4K>Q+5%mhe($ED&Kjt5;wobty$!Oe8@{%h+Q%vq0F7gfR9X!EQ$ltY
zIbp=vDq^g^DR1lyXnoHkDAN_|NdwjD9xz~x%Hc7bg#})iy>i=l?D5R`5jB9Cdc>d~
z!SNpY(R*g&S&_ZAzS7O=W$c_Gc)l)^wH1)=F1bA`xm{#80Xgh|`_eSo<3BOd`M)qy
z{+nh*L`m6glWxyTBcNcg@@p1rWKEza)sP?M7|I{FD60f3lCwTBp33+!+U4(ypLXoF
zR%;`y&hMkD%Bo2U9X~+E1gl6hGZG34g31#WARWpD-y~Q$M@2UOfu=_PKvRc@ck(+>
z5duu9ncwK?S4K1aT9WGRl$0WdqJ@Q`l$dlE{4_M#8U$&ZzdD2+$r|e%c4yK&+=fL;
zN|e2O5T-hqTSRw=Y?g(DH#D^IPj(UZryb}RYc;ugPeRCPw~MapXW5Un-8%8?hokJ&
zicN|WdF`WL;9tnO)htL2ltsswxYZHKrpz%wCl46j{Z~#vad)tJKzq0}XlU++az6)$
zOHW_A(9++5<<b!zKQ*P@TO)~IxxX|ix}3hZxT6iVO{?9l9J8qRK)aoo_hm5Kw=Z7j
zwGe)#h?)9R2ymhs+j{t^S6j{YboFIU3FDZY<ynkNmscs2el(9xP;%duYU+uPD$bla
zCx=dxHJjvSSjJp^ojkd8BAE!N92sS?n$=T_1cZ#Sg8aMVg^`nG<5J-!syq&9m4cg8
zv68D6cB=MVTJ}RLekD!r`+Co^6S&aO(m{nMT#nv1ePBQ8!L8*4%Jp599P$kf4TEf2
z<{4+nXzAor_RcVram>xZ*0kG3Np9R&m`%6C#;l%$rbv$JhG?6kpcC;MshXMAV${;I
zo0ArXQY%%*s+m_nflXr`7s6_$Mlgbgy!u#dj{&Tl)X1e(`w0d&F`UhFy1XIheWkTC
z%~5SKj67A96Wm#s^m#}bb30bKzb4|pwFcMNWS{z7o|s7ZcNGoSI^s}DO6p99Rw3`h
zG8-e@)Gs(j<;=N$B%Y|)G8>2C#SASY?VGd{HAaJK8%wyJT2k&)O}&_Jkj!E*pw<Mb
zIOGo(;lU_9SIO!f6+W)o&hrW-#8&81FK%odLdDh5ftCi=fJUM*Z3KyaRD1Y?mZ87V
zu>fW#oot@fEk5OB7VK&MJjrBnCkz6Wq!y2fuAQo$?8(aV){?ZbL7RP?05Gatd6gV!
zZ#09cd~cqMWG|j0Bug=3q|QVWZM!i_lOxQALMkCCSvrSYp&MV`C_G#bI{({qqP*F}
zwAL^PPp&`6^i5SobxZ;vo#nCvo6_iHbAM2p*_^;YL&N3v%Oa+Uh$u-Tbcrlp13x5Z
zKZxVz$k<DhCt1*3Ijh~0t0EOsQ9d(QO1fdzgg*p6U8JS)&of(FSN8(H+)kf`)kjrz
zytdBVOC)JyrqhS&6%8W=rB7D-!{g|fAgQ3Bx|x03<An2>!dFpJtkOyp;|?@uM4i9{
zb12$UHb<0YxrwtQ=hGLDKTWLVho__a4c?R<VJSuyr%S3T|2QnHc`xb>i$cGdjEi+#
zdQL;@o~eOehc_!E&aPI6T?%-xK3@P6P2p^ATasHFg1DK=>8h<H+K$6r9i^aS=+l=}
zjg>c6k8?zRs4c0;{gDNmm2O1eth0w-?w!2&OLzk=>iksUkh8PwhhPPBVj7}+D^oa`
zNXLide2$bT^@d^FFSs-WuJXNSBu0%8WK(gre1R(b+z9v+TWUbcb!)s*dXV^R<US@X
z5^Wl6vN~Ov<-tNXC7q#F-O><U#m1+#Qw^)|%!}E{I@xj|(F(J^Qwrx03-c}673%{e
z(mZm@QWz2=({$C!%?8M!2ZSq%Ges@|P04evCkXp(BdU=NGFLjevEk{Zj$cf}ul^^s
zk7-yyU#(m@qey2^lFQ-3)+|1eJtrf<92i}t)h_9}ENh)|0zl1`mB#?JP(oiOMHjMe
z(&BO0P5tG|7wKqv>?jcIPoM+m#DCgFo<#QMaV71!4#2*Cy&o^{=-97OX@+QOjHpl0
zNMM5-a@&Em@@s2qu5K>(0X-}FNQ_at;rs^*R%TB5{)c-dpg;bxIJ4@E*O}0t-AZwd
zt~I^2v_r}nVPcnNfUd~4SCGVE^Ys*AQi9+>JXbxPXW!|fhb2C=15EjFwS5n-iiku%
z?)!h@cQIZm#Y5w!*s~V7q{M>gf7j?tyZ)Wgo7+1(_!~)jS+n)eq`eXXeE-_5IYSaG
zXhnZ9do?g&)qD2f)BB+JU#Mb$+QMWvI!3htRh-=d2KBOUMw2>T*P?Dl$I;QIuqoZ{
z4(V!gduB9#TgXk<@F$1K5*4(vWI&_pr`@ce>Jl9%p!mjgiUBZL@SSK^wyMn^PDVI}
znUl(ToZEu4N)P%>AWMfZ!#8!H0F=2lK$+7SKZA+f2Cqro(qL0qDSWPuc^t)z*>k+I
zp*S22e-jUnPRIcoPx{{pbG=S2J&28`JFn4`v6s^Umg3I7znmZ?`~B!R*ZI|Z{My%g
zBji0MW?gTyR$f5jai_k(<;M1VLnFns1l0eCb=-O;Vh1-Q#lz=*B8B2km>}BmZ;J3_
zGPo->!agkRwL!*48%9ueEhVK`Z`1JHLxbUTBCeca^Y0cIcpe#3*L@JuYhT&GAU@Kw
zxR*r4JMsyXg&32|Om#~CLFe&}^MmUQ-L6mlt<(eA<aX2S+Y{?@yW<RM(|$dRIDZ%I
zNlNvd1VuE2VW!0CFIBGSk17|YA6usrah>kG+Og2DbSz1NE!<*4*}VS>R(I!gFB3bG
z_>@>>RsR|EQ6XL`AECq4-=1|9s>%7c%En#!m&&H0&9VeBs9|D?RA{=lTij-*<nj(M
ze2=p)HD=`rrgIx!HSOczk*TqLe?xUp{??;9*izk1P<$k!(p}s3=ohw+r=9b8oIyAm
z3D#;IVZTLk801!_jDbQk8|dUz5jq*GGewp&Y`5}}s$b|P0zKKt)}`x<%9o%qLYOb_
zrb65d&~+I{mJG2)KJwJoHhZR!02gCvQ~W7Pi=JUr-XW%m)j_Es*a%7)*R@7t3kkve
z80|H`{~sz^-`An`)|HX!u@w$=#TtN@k&{JW{DaS5l)l&BGxKoX_A?M>>y0m4YQeJ{
zrzQgluzv8&M=1Rtnfx#glE^5#*r@3q;l^}AtS71OIaXNG%lU_T5P2DMgXaF1gwvUX
zX;W0KR3B;!z2(cqb7fWQ^ma&lDQyC)G>^CH?WrcCh;~R<3-8T-1r)RYfy;kh&54Jv
zkM4JZ8$EhWzwaz7%m0h$MTGnBq8H6yqL=jnpV>Rt9PW}%86Ei7M?2{O8-o$uzh3h=
zB>G}d2gST(e4Y1=`9*it+gb}9sUwS*>Q}Y75DW#XB2_upEb$_&vlF*mO}!4vAZ+>B
z?@_)7-QOC0i9eiksi&0KmT_QriE&5SId?Gh+OALVK4p2Jfg4i<5>T4>R)m*Vxt`)R
zH$U$+Tj$WB9}MJU<arLhoo86M625pLV%|n(2PvPDq<ObcHKD^<oE_IbSLR|EJFYa3
zi>@xP!Wz0p=r7py3C{P?gnvg#zUqm!>012L>$g<(hskFvkn+<JtI$H_n<xE$@o@~}
zax$tQqr3JYt3^9bfS^V0=KM#`QjqlwXg(Z%-IfBxWMJ|)gku_+ts4FJw4CZ<mW);O
zXy<5<pWpN9JOGD!W2eF8$lZPN2Vp-8K7I@!PhdM=SQDE<pVMCEzu@$Tvg>4q-|_8S
zU4BBd2lEW~fv~^p7@!=%A{)ubZ2zI})6u+@ic_BIly+(nDPZJneY~=3b{HmBx=p;z
zZ?V^>4cJSC^98T<CbY-<0r#^2;_g0lA36Vb&t^xv9VmQtp|R0S#(kUH$gAp@x~@1|
z`kiUmJ$kf1k{J@PVPz7C6El^irdJngLR||-`tFDgb>(IOtIj!oW53RrR$uhbnCLa8
zI<<iq?|*u9PHePcz>Pa(ME)WRI{n6$J^M7(-0A0^-HvMTSNQuv{`p;%GlUiYNG{hD
z&`3*Q)r{r-?;rXD_Ten6%1ssBL)XWLKY-FG!|b$Tv8)%pcmT;;H;XV!+Org==2Vhf
zl}-qb%)DOa;{|)Q*<ZBT%@)FP3~+!!nj<7CrNw(>@Z~5+^JKC-^FQTfz2R`76~!|z
zTn2efhjhej{unkL>Q&&H%5;3L=He%o-Alkb`+ex90B02gB!KfCrd(e3dc5Di5*9dj
zXlvGD$Q4zLZ&+KQ**F6wSNpUU<ifO5sC{2lhA~F_p7pwX2<`M2Zd-`^%uQxsI5Ts_
zj+oJ2P2+<Hpb|}l1S@5tl&FaMR3`DD#5H+_d*ho?Q9aW**V@XCU{R!<b^B`1RQ`h)
zk}o_Jmfu5yG&N-f&Clx;&^;nCoA{BEjKG0cLP)YAN6Qu$+p>`{gtcHXsE1TYV&3tz
zDrFZJl}a8K3^JO)Qdp@-5GkWcY2FvCeIEo7LjZ=iWO==OkJ@+U0%2nQfPlmQF8D72
zN2Hx`P5|$4U?wLy=zdSKoU|tHOL(CuRr%zosIPA*tYK{<J{5dQdJhE7HcL?}Pj6)8
zO#C3pSrRi^T<)r)y-|4(=Z37PU@;vvVa=7uNE90kdp%}7NpTZ#r1h3x0z=j;S$zYi
zX@X<io_pN#smol6s;2D|o5NoeNOTTSR1jX4(K>?a#QZ4ap5@I!>T=LkmCWxbaV`tz
zd}(9xX<XEz#J)E#$KaI*b++a(S>Ygv9FQFW^psfJgSSVk&lX?1<CaFVaVD7<0l74m
z;PC~(9$4}cINVW{Jw5Sr&*`?+9#y+;eu>7F#kr`&H7^YAg%T&6jK*m$JG7^FWTlBA
zxhfk%nP+l~jVO54x0hcxr^+niRK*nQ@vLmLF^TF<8QFS11*Hz>%jxvjMRtU<V&zC}
zHm}YPH6gdzWU7+on@I}f?_Wd2$z$d*A*DdK)?iAi9oDUacE%e`46ZG*7<#f+zn401
zHjhL3(a;MP!k=M?-v7Lsdoc}5Xm(V7Vbb2FUG=o8A$iW<OA)5n1K+V&!`OTeh1QYn
zL1}1Y>l9y}<m{{s!B-iMp08#f>~_?pXcM1w+-!MXX6?3G-~7`4Xo$a)BR+s3liY!#
zQcVsarH@weeIWmY`lc}4X`y8-sFlpw<2+2A-bGz{_b6QkpnWMVF^Yv>-2V8eE~e_^
z#)dvEOvBPj3&irTw`1QZcj_lI+#KcV=Zufn53KbE*17UFi!hQ>-1ax6f8O6gH7N--
z8=6GyG(e+PQ^L`SHB%OwXdMon)F;qYs4VY@x;m?3e^0)$p{TX`@-z)Ff5*zVzG3d#
z4jWmR9G><7UpXlN>$d6#%tg~;tMuNrh~v%3Q}S^<?Ke@A{)W@o2)q02I{yOP#pP#y
z=cv;}L4y(1z5m}wz5k4rzml#oBZGp1=v8QWd9|WJTlbsFNx<BhP!v%mcu!lt9N}m1
zUA?)Va(%`Vx#XT5M61?-$|Dcf8oIj!u-Jf1Qu-?tjCI%M54Sz1rC~P+C}=d=%e|R>
z2+Bo~sO0|k_X1Z3;u03{KFu*~Ej>3=lkzUw%xSwr<KApPmi(YzRi+6W4onM^st$E*
z1{O85h9RqYFSJN5Gbk9mO(xt(<rh&?qDyrNY}Z(#(p7C+JN}h%0~}jo_TInt(u(tY
zCY?dEqNH8R-ItLb|M_iYF6Z-A5}Xez%szf1{A8*CqKj<#1G&OF@g<z9GoZ>6420j*
zIiQ8g#4NG1{gZgyl{V>k@vpz-!)uuIM#SPEav9zxX__!bTkkaAng_Dz0siAo!+lTC
zQf5Q0?OnU(sTnzaChmb|T!3-eCxlUT5?EV57<pU4LHTuXJACjwf7V%nR!2B)tfs)D
z5<lN*)-MRPC<Wzn{o_1U9joS;yB`=o2p2;>!g_b##UNv+02@$)qbNmjS!s|T9Po!%
zQ9vd`p=KxTf2=_+iLo+H#}pBJU!$E}{W+v&s4vXqgnciqlGB?hD40w0!QsTUd_0pW
zSZ_z<rq?{uxqyp+t9y6-U@Cp3zq8DBJkA{5D0yfs)b`i_66V1QFmFdcQ|hCh&%AAo
z`SCYjx<@15I)bmSGC!66Y`pOuNO6fb#(NITK#&t&lg0xO2GApBXfmz%Phru&bbkET
zE|C9sUXQ=cO5{@~4Pwo>++6)~-PqUzv@(K8(L^%<#Wp~aS$AaDU3c%4rSfsre~XR1
zKFa2~wphjah9z;sHlLe!#g}{S7d9Xpt8bDlY^O)aja`dnB3Xc*E~tv|pWrjk8m}F6
zJ94I;-)2Fvnv9M2=LS-URjN>&R!q)ot|e(~;eixI%oeC=4?&njitt6VIZppa8Zr_l
znBELESC3cHEbZJiSC+sMAExHHzgZ|(;jCgeW(?Fh0ukU|-gpUud2&l+DgW=<+HRMn
z=Mc9F93}#X1=X1C<}4tt!IVejfh-6(Zb0hK((;d_E31rzz0p{}d`>Rh9*ub|1Z6s9
z#ff_YQUMn0!{?_~rw1f@*?!{Qv?7F6YW53!l&=w32{k1KURA2+K>6OyoZHE&3fje^
z?JoDGsZjrJo?UxxA?k=vrNw84+4n)pkAZ<{{nK7hURaaC!`s&;ao1q&Q`+;lz+4FD
zMa?HL=hJ-+K2=&K(Ni4P4kZM<1n5hg`7RW(iIUlsa#~~Q0AV2lrX1bvo)}m~A@OBS
zQji}PV{N{)oY_EstN4qH{wZD_t{>9{&AQ5fvt3A{@{##px%WM2<_RGi4dVrfpHem2
z2AM@|?!hy&D%1GsF7Gq!9BsKexCq?HSSX)W`M*-!a}WPW>H;os)Cl5QGr#XSv+1He
zwH0lH_+g8}GLLB0_hmcMti&gmIJ8}+-@ZTtA-(`N7)ulzXC9ex<7;TVnlDg!>to?n
zV@x?qKQ4*P)qa&*p(B)Rm@^6~5AiK%^$qAb*=k&6TzY2H70pOC$P`K*P?<T6O?$@Y
z<6cLV+m{Ri^}Nr@%9{E#K0dChs!9vw>B}C{MwuwAOG!&_T1rZyF$_&FEiI81m6Vhy
z<pADl&<rjVt_oM}CHO4%*yB%~-~Uvx_J8H`N?)4Q<L>+Fg#@$mOjtYnyDCQD3o~V@
zQj2?_k3U1rFeCo<Q;C*jQS6eOZ31=S*`w6S+eVf=lt3$^4~&^m;V3s}6$bDA;O{6`
zmi%CyY!vYvK_>A{g9u-0UfXOZ6N9=$z!&oLAJr3<hK5;+c^eEGsfq!34n-9ek#o`i
zRWI=b9sN(i1jHqvpyBMoa~&J|FQ-d+A^cIDUYC(NTS+66^KZAiwN?0axBYhG6)cfK
z7@vU4!X`2C_3K4(BbA|&r^6KJGRdlouLT=N%__|*p#va@&_)5PCXiQcB-tauc@B0_
z7+046^c%ZNc)CX%>Tu5J|6F6TenF<Ij|j6`2Ngt0iU3zZA891nJ&6au%8^aW`qNBQ
zr0DQ;iv--Q_#KARb0Fifv+4NlR3}M7Bk)26Ej>QHQCJ}lgP{zeCN^?fF%?61iOLvA
zjvdjSeV#5d*V7kxCDC?@T@6b0Q}zZ2p-Z3U5Y?~>%0Vpdd^9~biSx<2z94k00MBm|
zfBKy%WCmeizD~D^^pZ*CD<#vDcnMFu9(#qH^gCmnC)uUIXEsvJ{K*;j?dUq%6ayp+
z2I64-OV09+obfGTAh=*h5QiDpySE65NLK65u7&=Zx<1F)AGDmy5s7M=qcnj^So9Th
zh5wbGRDF7IG)&d2t@f*;N56X}5Ln17GRzkyp!bh}_}0^W8HNY=Zh{X>i^9XTsocl*
z%0y~i&SRy)PL;*<?F>&sQ36`=I@`^Z3>^?X#go<pdyB(`iWuMSgFgMs`Zi;d^{Vv$
zEs@dI%|^q@IWU^xUQH)TSg_YpAiNT*yE+YN1$Lb=F~r<kg^)tU1}blWS!T%p@f3NN
z$6vMZUO5hJmUs5IWt7FQ{rOf(vSp&Xm+QHz++F&Y^NxoLFURNFi{A0gcbU-E6-Zfh
z*xKCD;%>z1N3AHOu2VlZFed4EBG55zNAFo_r7jZa6I}evtL)o^{4g*Nyu7mGEKM|j
zcD?3C%h5zJ{b(fW7?%~BB*bSp0SAHJp3_<6x<PF3R}9VvG$VcMe4AT*JD&dg`ptFQ
u*%AS6nDt}!^Z!pr>3?`nr3JfgQL4eft*n$0r2u~fNs7ve6bXI&`u_l1js(B}

literal 0
HcmV?d00001

diff --git a/healthcare/solutions/dataverseIntegration/docs/media/AzureSynapseLinkConnection.png b/healthcare/solutions/dataverseIntegration/docs/media/AzureSynapseLinkConnection.png
new file mode 100644
index 0000000000000000000000000000000000000000..fc0149a60b602ee4f6c594ececf4ec72277a8c38
GIT binary patch
literal 13024
zcmch7cRXC(*Y9A$5M>0>8A(JULPGR5B6=4hx+H3ZAsA(}K?tHm^d1sKl!)Gmgy`Mq
zB|4+`{+{9aJ-_>w`<8n@_x@q*ea=36uf6Jb?X?5dRprP?7)U@M5SfDfBTWzp{~HK|
z*AKx5p7`$>M*;uv95m$~g7P|;7J&}fLP|vn1S$x-eEjSZ&?mN&*L47am;-Qscww^}
zW*`u+lfok@Ef=Gev6C3;{^~XRHRC@Nf}Of|to;k~?5<HTe4wI=D0|y<-5~F0BBQH%
zc&0{u>a~q~??n7upc>u2`{8IBdb#UV8uxF4W7*zL_bSie6M-)=`-TSkJxV$n+sPd-
zwszie*wflu_sm`Uu{2hh{WZJN+N+|%O)PUZ_%5}K2DSE1#cD9d_3oFL98JSqZNpqr
zw0GLAptM`~c)(j34KO~?4odq30pmu?P(pC;g04Z;ab0#9m}S-Bj-lb%S_t}j0EH%X
zlwvcZ`ndl%<A*faqME+%n`u$Zf{xhbVL=zu^<FP`PIju-j~QmU7biP4vmjuyC$H%?
zLsh6{K5Lrdb4KZH7PIrtw632m?dp_{SM21qu2z_h-o<zvh}@0~Pw2VjtU$DQGpTxL
ziyEE!{^bTOEvrlVgea#5Zrucp@rdz+$h4Pw6dj)H+j5zeUgLLP)H=uL^hi}GSj7FR
zyrV-2VaS;2DqOf6TqS))M&ovL6?-$d?{}p8zyzi^e^00SQo6T(kFNQ9`e0#gILtB@
z*r--D4ceO_PH$JOl`xFdw%X|{#>lk!9d9MqPwTxPc-K7{SZbEr9eg}~e0J7VGa)b2
z?(0S<1@^+$hnp!JFz5s2W_yb%+N*9&*MrhDxm=a5K(h2OHF+LpDU5bXSFZ(cGK^gV
zMggqN9uI=U`zu%yPfXVG-KrbED_xD6XK2tQs6U*jIo?=bUvJ_$LwXS3)uI6gYV14#
z<7a0S&sZy|dO22n`U=^K;ZnRByBzGRNg&m!K))37L7crvT|0}D&?kA!D^}ckK&SSw
z-=R}n=QPU7YU5CyTKgLWT%4B|W!N+!ly^Ny*>SXM%871_ePrZh%QnB@N5rMM;gCc&
z%h>EEu%}*~V=p>I5eIh#ts&uFW_o&`##UrCwCb-x`|@lLjRh6(g~ky*b&b{nigC(a
zUIu`i^S2gqc#7Q*!_>aIxWSdK-U?PZ7WFrf?z*QP1&1}9>C|jS%_n;_TE|>%1}Ac)
zW<><S)hi<kYOT#;`o=q|hp$mFD~Xhx%_Ez^B_p@;qG)s7osPa5z0g*?YJFN_|3nm>
z`Yf9hZ8DG(*NP|~vhIsOmSe2jv=QW0_pRr&Q_e=uA{o3+F<xhXE*k~3ERUlG#<qJI
zt7U_-zXEh;-5_GZir=Ej7vCEO=zf{5{97e1yz&OU<@Bw*P)3pL&1oNO#IKv4);Mj*
zR)p=h=+s0kKkzOJ6JHa{zh7YFdhnUm9kKb?Fv;z4PhDZB;|S`jHXxVNV7PjE4}xS<
zh*9+lU;xe-GiTQjTk+!g>8YtOilW06aiV|#NwIaUs_whGul}r2l>47=WpdP^b4PEq
z#Vh}=0_besOYOtc$zq*S2w3Zc7M&`~e*LZB)Y$g0oEaGleVZ2^8tfA$dF--pqLx#=
z<4y0qMToDP!!>Fh$;l60zvJ7NZQBVgV-Fdcxc<8<FGN!$#&i0cxl^U%2jcQYPoj@^
z86cmEG;Ei8Ze@D{tWS^FXh>MMbz9-j-I3JuT3UIm$*bY6G`q7XDN()JiUD>I2mdx-
z*SxPj;$XKwlT5%mPX_+})WPuC6HyDmy0Wi8vYp7#q`SP)N?dlGRKHCS`liF7+q~<o
zwLQ0dD@2c%i;9+2L}w6g3$>qQUicA04oYQpIMuZPXOgAC3<$$lp2h7={co-N4PHp4
zS#1NDi{cp>WBVfdgZSp!TQELnF(8MoUQqvG6#88+ulWeo5$`i1C;D#My9SeFQ@fRf
zDj<<TrJ-#TlwxxlHlq5JTAKqmxf9o-%Z{!C`eevm<C%sry*zanbh7x}ZyiFdmw-B^
z64dr>=G02BKboJm?YyQG@RGjD>7m-%NDrHVgKu>5!*xOzXKX28?n|{0uy+30exsKk
z2cCbxo-KbZ-?k_6)|tOE1x47Zq`Z2Y%o{h`I(L=zvZ8H2V^(SsaDPQsxMD6R1vs8?
z#+Vqd(7Ziz@xl@pH9N`5%;anj1W|3#SLs{L9>rL7K-JT8aEpXsUiIY@w6WeKIVF8h
zdfao1o$4?%=mC*@DJrk5sYB>6d$N-}o#(O-xQnVbjsvQ-Y!P4}9j>QM2YJP?KHPeX
z9wR8eZ7h;2T}(R8dzYZZSsNWGn%C<1haTVRJ<{-PWVOFH;B;ImA=ySFXAYH-)mEpD
z_H!I>d8a%dPwp^zXs=UH3F}aZIZaCQE%{4IaZy9EcLD<UqoiJHE5NdzGlchSjCfu)
zA$ol~u4Lu#<HSmp<&@7)KCq^(U_0Jlmar4id9s^^J~rdIO;@bFphgSW?dREz58Z1N
zIE76uPy5E;RT0Yv{-QmEPOY#4Vvs)ACmXZ)v3G9T)c({R+c}O+&k<QV^0IyO`N`}h
z{2q`@e;!~IDqlO!_L=|z8o|mI7$;z4>RKWH&Wo~N-e$1DIscZ+Kpew;*9YkXT(I^*
zEmQNuD_%C1!T-vU<9sUM>?OW0Q07;EiWo9uE3e_|`d__ti1OW|Of%lZ7>{JQc_c8v
zs8R>)<9{0noBjHfkSxkO2X?jj*2aJzSE^`K7is0<eR1kQpoben1|}L`*dtfKg}qJl
z8&LJ@2LB9MhWD<@<AU6lfy@F8;M^2LMT2X;Wi8X{SEmCZ>q}%6{p?)@SgLH<Ord8J
z8FR|%bgxcnZN<(&uCpOB=H1D^j+Rf_0`UM&;ughtp6Usc+9!MCq7XsLi2C?DoG~3n
z9E>#b&a9osXmx+D^GIuX%4^><ajnhx;?pfjNn>(p2T8%b_)bG<4J}S~1l*OeCE-0B
z9+CmDMYH*%MLq3R%bVfxdk3!6G9h-0m1^Vuz~;!*)4$;2yjwEd8VG`#)cilpCcHo4
zy^I7lx1mTb4KTq72NxKs|09UOpS@h;l7xwHYv%0l*X!?Zf#Lv2mY%jpXpPhNCr-r<
zpE?dK7a9(~=oon}@_;}lKPe#q-a-R^P@v%rg90slJP_!-Aq4|^U;wniaSb0h@B;w@
zqi_xI#W(l?tk%{jtep!%U6!Mre!_`l_32T`0@+!|DTm<cYMtoR-N_so*gXiiPIqeT
z)J7?qC$8)U3xxdGcDlNigS+;q;I#f5u_X+}`c0uU%gqEKlpY2*fkM2y*T$+TPD~Vz
z8c*weM}|k?spBgXZtW4X&RBM;)NZU-R=JImu}1!Aea&5)c8V1W#DO9ixN<l?p)pcD
z7j?`&^R<x#EMD45*fGSEfKW@A&@8dkm_yr6P(7IYX5Akv%q-WySgihQ<%*nOr`5|5
znsIsct@eXfV+qnTeF0a^ym8GDC$531(68;N+#ogeArkRI30K3YzS=7s$Ts7iJjB*d
zI7~vUY9*V!*5%J57rwY5*?DMbHpi>Z+d}HpZkOlp<0FV3lu;a}ykZ@xDOSHphaKS@
zOU9nTs*>LDfn|r#lS{%5f7Z6*!9G7oSa{oFHTHi;>DNcywrc1l2X88D7>|@z(~q}2
zTO%k}%L$|;2g{YZ<Ujb@cfTwn=xLmyagf>J<N+$CZQ{LGmSE`0{;xrl^O<l})Qyr5
z^KYGJdb!8Hlwoj65_2CPD>xMLZj+!sI&@!-318~ICK=dmyllNfKoOSpM=9^M6C*?w
z8(WJl7+;t5Ji>6bq9R~5A#VgY_Na6o;Nt~-;Gm-ZKnO<HWx=3K{0Pj#Td1T+LgjW<
znt-`S$#16H5ups-X=x~5Y3Z=hzF)(-iPHYMInI7TPZ~O&58UXDwH69I1eZ4<KhU(c
zeWiFA8n_XSmAJp^X@|K{I9x8!G?DW8jsV%)Gy*BC0`Zf!Jd5qbr9vy`;L6j$PML4P
zC16pcYEz+Ghj7-Q-SXPOpus5>Wi_YcnZ+va9V-l*Yg4>VYHhff5_!gRo<-%#GtGC0
zjHlI{gHDy$=;0>LUjdb~L!*W>dyi^8Qq6v?+KEWHCyl|wcMeI7s-HD;)k`cwkWPba
zXQ3)?=yDX{I=i{gwO((bkvuk`Z_}XxEG^lne7zEEHmbTY70Cp#P&NqwZ<SC?e6Fuo
zqWChmFv)b=hoHzIvai%*P%0YA{QM!nj&h&tsxGk*LSMVQw$1i<Q~#dW!TH$91q8*N
zRX17Xly&rvX}u!DIBoufNo5O>w=)va4)Wro-B%@ow%!INOy^l-NC%Q5QmSt(`;7dI
zxTUTL`z>~RYQu0ZcW54&@-x}iLjScmtyE=UNXMO~=~Y(*_g3nz!UHA98cD?)icfd0
za@S+mv2uYSt|+WQd2~+aEB80)yV#iLgSI8&C2VoCMAi#=uA82}?_gvI0!bW^14D+L
z3+0zH_&R+mS=)-X1nhV9`|i3Kp3GWya#zkMryu1JMYzPJ?mvKal<<N1iNPIGL#kza
zB*J#!l}*n9X>aA&P7)+H>TOY)j7$^tJpB6e7ZINRcB>)wVLuA4f48HsqxVd)G&4{@
z)zMB+a4u373iOU7&Yb9GJMT#%T~#`ue%9u@35NHb`KnJol;4?mm|9D-oZla1Z<-IP
z)k{n+u>H=~9dV+IUl2k<T`;pxA{s_FGLtptmGp>$a>6Ol`l)&`fz-Mc2Z`o2%yRD-
zh45Y=TY?o*3A?Dip|a~t9WKKwHJ1sVBZA0e;MMC8%E}nigWL4Ss;pkfHMVJ7&zWpz
zMTVcgetgQW6fRih47ry!ZQ{t(>|_~^+=8xlU72TjQ%L@WIDoD;45c1wqh~H#>MM_Z
z@r(S;93*y;-X^1bF)UJ}G&RxJ>UK~&*z6L1A?p>{%AAuI=7P?%?%dBS<$pF^i8<>V
zEdOp^uy;6?#&OHq<Kf&6)ymfMXr{GkvFER0Z*wCkor2dY46I{~ZEAS$jnL)2vvM>}
z3_RkjQ8TTq(*4m+Izfr#n@(V=UiVJKPJOMjZ<B`I15lIOBfDB_im-iMpYq*T$y7|(
znJij&YE`!Yxu*IBp@`)!Xc5r_Z-sAGgE&c3=x^B{*=`<fDu!``=#e1;;Q;o`Fd8Sj
zwH=&X{GzxLOnvD4kD>s(e1Bqs85*P5&}biz+A4p$B2CGvWFWj(wfB;ERmJ6sS#vkl
zOy{5XO(f=A&zm=BkSzC0nl&oVMBdv@N&j><MDw?OmZhbMw=!HY$X9cgG+m+EW1r$n
za#EU3z^>hb)k7}fpOQ=6n1Y%M2yfktDYZX-%F2sa6V?f6y5yi<CUQ^)WhP3Wmd}%x
z&KTQPcJInbw{tX6G*WX|DAnhnh#cbHTfpva3{xFF-3@=q@xuzi_afm#Rq~hS@dLb}
z@j=gyS4l$@1!%TJc8tSRhxMa;yp+n)>hkBJ6Dai&mEm-bTP1htyJ^^vjn|^FV#XQ1
z;^`l*L%}C67$bCRD$&9N-yr;lL(jem*Dnc=EWb_>a@G?%Y8R<E*i{Z5>)F3a1yKig
zK($gu(C~?=j(Vjq-)AxiD~Ef<MAUo(H(4kDp+|PZ?f6Nv`oqb>EOEYi=3`evpW_uK
z4|9}V8`F(zduP+Z0vYk`|J~2gz(`m$pI9<NCD1#T$aKWV94IO|Xr+*zB$1$xZLByF
z+bDk<CL+7<XewUV{rH0g_v3EG#)@X6kmS_;%Uskq4Ig(r)^%x~QtD_c=J+@!hS{JA
zH6k4+kXidO!_O786%hFP_8|pTxu~#<ZafF~#*P&OA6s406C`aM$?9u8ULODbn{qs2
zFb;gFO8^{%cmGLe(A>y7UHqe?cEd=yE`_^sK?;@yKnQ+WSQf>hq~IY2RVp!YHc;ud
zxI^SibmY7xDflDnnsD6-rBeX}On5Q!I)~BG*g#4NPYNB&{g~s_6Qk3;rgI<y`5S-W
z8qmM-2d)A88-L&$KtuzO$ORDj3%qzAUIsV(AL5$SAoS!(b(r&R^*n#H9&R~JjnD9|
zv%!AacPTFQSd}O<d>lz%vSeZRtW1z{UP2lQH*rWQJSd0&twPYz{+$mGAjexv>nfz`
z!Q_MJ7-AfqpVEBb;jx58E$!foS#4qAY-h`bg6tW1xu+q3hmXTyDmZ5g3Ha<}-{*1%
zBWARs$vUh*uVikk(a_Fj-V3#I5Ogs{RC;|}6j9rC^%6e)Q9`5NtU!sx(XPEk-VYfV
zz#$qlV`-B{lrxqhgNjiJIG6$mhCx$R$!f+W_Z5T;>jFDm+f`o7A<6wqFCUm@AzFLx
z@VsK^6)X8%IT!~ral8(_;d*kqMl|7_Gwgcv)fXZTHx?rShv8o@eDlp4J*}7ikR1j5
zsASNdcv*PYK~&AJH233*QoDJ_#FIWd!{;zM7n2|^_t9StI=R+{hDq>L#w-1wZa>z4
zg2alAE~r7h3n6Hj)C2>wV?raBN1kfvg2irr60%13vpua^l7Poj(HGhfYuk8C|3Zqb
z1ECLJ{;1^2aY66u@*U3iQCA^{s{$zADXBZDjMr}8bwOsRRre)&-s4|9?06xQJTKHg
zQEs~!r4-x>2dUdcfqmA)X(P$NLm}*1hF~8)@vo+Ju{C986|a8$S$+J>Av@G2`5AJt
z>Tc5yLi;~^3C{0^;p*{MfasCB;xW~pEk79k5hJRje7|#eZw-5!a{!AFT#NrxyASft
z<`jkYeOh9JCJv2pvesmtY<7J#R*fQXRB{$iyxz58Za%-UzH50uo&aqx_OxJ*J|WDX
z>;O>NPeJfW;X;ScO!b+z5@KTRWiR5Ly$7UAjO)81JRV@8`KQWyOB)@Hs?XX!-c_n~
zsu3UYnp1a1wMG(W%)fbTo{MFY4`uaDa%jiK<So(%rFaeOUtyK$*e(fS?iF)wSnig0
zeU-H~CG+^^rLdmw1(Jt#B7GCpwu@Yb=sDsT?uuFr_wUf}UgCY_ul?ipj)U_IhFll&
zr%oDDNXZ7H1h<f~nLLCjK<Lr}d{qO_N(+(q%L$}5#~CFC#@s%a2R+A@dX64eg~%Df
z!k;~5IXwR2ytXG9M}cf78yI*p_mSvGAU}~ld44YiGIrn~8b+~d@M70DM>g7kF^wlP
zLpO}*s1aLGEZ9Mu3~@-R|3fylN}ghz=|ijCaeBgdQ>k@^jG#WZE-opz$HGA0Mc_{x
z+UDyHeN3jgs&$cg95ZST-W2kk!zr`5)ujD-<-uLUZoW7NVUR2{zSQU!o4c>E3FG#^
zM}>-p+^r|wt3(e+$Cd}ovz-P6XU7Y+wik2_U{8xP40&`&@$2Ji_#c}R_ePf_T*^zd
zBCmYB$|`@@BD}9U)+V(2r<~D9jQSV;iBAJ_P{*-n6qm*8Z%oX$Gdq(6&3@!W#RXWh
zpr&`%zu6N0zHBk-k~x&tuap`8>X{CFK53}pW#b^C9Z`LxTFq5!HF~_Rw6We(^+idi
zwIu<?ms0K|R%18ESr{{nNPO9dIC^XU`I3+8*1Re&MP_T8p7z***NVQ4YM<JBEX^n_
zUs3J!s*_Uw0}7F8*+MsFkMBkmKd$ha@|jKXJxIChC2?GGixm77<M%8r5`NDeyAfy3
zJq9gIrphz8DmLcKO_tnsyFOK-uheX1tkpa=`NKTn(Tea^cFU00{@~T#gCmOV1V;ax
zVX#XrAtx&_!<n*1S#yDxEl8cQExY|UHNm1QA5O{4!`|dK^tYNTw_tbOTk-BKK_Som
zD`;CaUJvv5iopV5`va4TdkIJH>Ww?2rW_KhNo&gB_f~)WO5jT=n6bPwWs>ZPBqbdc
z)IFRzwrU7WCUe-HE@MiMab|&3E*k9OOP_qA%PS0xZ2zFM=bz+6u<|QHI$$himw7qS
zN+dw;*lxVwt5Ms#*{P?Z0(6v4v5qyr=om;?u3M&zj$5nU_{kfcSp<hw3Rc0@8t?60
z|4s%@VOmZ^Y|6#<L@fFa=aX(9k~&`{d#N%}s}`U?)>AN@QL@@*)T!P<M%<~e;7`iT
zU?*bv<SpS2Hby=9R8CYmrvTNT0p}aDAVgK>`<=ctpIvLG`V{v1)Gyk2H=sasZ@g^*
zthTQ_XH4#`5dfd;k@i~mK=&ZXz7z4CC<}kC?j%S3y5!SF_hLKuvc#OZ_UQyU>FV0k
z&#cc@0!)}0^Cqso8<FnhiK^tqJX|UmH$0n8D*W_Ix3eBoY7-sy%OS(uvn%!hoU^q=
z_u(V4f*JyBto%SFzIVL*Y>-~moYeO6^G8T_PYYu`m|eQ&T2cmkNw$M%1tt!C+{1t1
zl>nsxSNzy$C*9K=%*qcs*7-0q3LSgVo#mBQiwbrpN%>Ms^}Z4-aI?zqQOBwD7^by-
zy_i7>ou5O7a{H__AlFSL&nedY;MqWYN6mCca%(LUD4iT#_wl;*!(TNyQEIBr7AcY3
z+|ZoWetrLvBC(#{O3^0;zOTRY1+WlHICm^SWI@b~KG1vHqai&k{sf|$BGxq4#F8Xx
z@!wtgD^!wrZ1rtwu5HK;4R#w#uKB<JWuy;tntG=_R$sAT&^uB&&DdXgq~2qv2W+sj
zze#UfDpQ$EHM^6`@shC^^oEUjmD)ggIJjKk1}PPT**0m_L4@b*a6qN!ghysGi7UR;
z>1oFh*GUcR1HO|m1`)J&mOQQ#8W+`tTEh}o_;)ZZw0&yJP~g+6bRzmoiqP&gvj*0~
z5fTYO(G+Y0&*{mBo*}udNooChw%j)3`wRD?>HD{P9_nhX@3}YT4JQddw+KVpD!H7#
z=>53f@Lb64m#pr*^7pRVu6t{kjs@4bLHOSAopyP#p&K`nT2DanYT5+#qa8JqsKmjz
z1h4`cwm~Z8VlLyX)T1aHAvmLquxtK3vpX62#wdb!XNthh;&=o+RqIExgUKhpLA~Us
zf}VmWmoEmcJ;lULpNuV=$1-Q#N%T5*g6Pjp6Z_4ekLl*-eys)~lkNrCju7Emr%ZC0
zshFVy|DyG<jq-F1hqT8CDzScGX{0Kz>BIn;bBFE#doRPnBL?}(h#@z7iu|m_ru%vg
z^Jatf@}Kk^)U_MfR2^M%76*y9*3l#Y-%5`*>Kq+Mw&FDI=Cz<r?m2W^pCS(WNg%aq
z4dEv1+=`)rNC-P%e<7<$?-ddhtIa7(58V0bB|@@GQCl2Wc@T3&Jc&BXBJhvJH-95n
z?ql>rBuvP@ZAhm{;7q8H?I4E0q>l}1N(!b`c1@usBO|Gga-4eW^1l4}gn@G|jR7?I
zU_`2(^`}j(eWT3QT$4nn8HH6hn?zMdtyA&|eXLrOe;ezM*5jVe6VYQgtB;YWxQA#s
zpok=e!fvjv%Q?ZB1`GzSER1HEon@Opg6Eod%{|TR7DZ0{jh-}Df;?sSJxY=n$a#h-
z^7Qru#I8)_eG`Z?d}0oJyZdtW4)L~>4eVR(<lB=LlhMB7xYQ@^u(tv?_M1N+EKV;a
zAtxxry@GY`S6h1ZCkAsTT@f=wz8c7dB!~7ZnQ>4r@mRAY(jT7AG|xFLgH!MEm?x)d
zZ}Bi#U?fGM^1*vbALyCgdTvd;2E7vj`-GEcb*z<Lo6;e+>6GA?6lyt&qSqrt3B+DE
zU;n(;=t)o8UhRsH-Z%ZWSMzJC-+kWrfsF>rd2_8QfUsg<T!@3O%|OU(;Cr!W=Q{q|
z{fW9}R*2~%SC0>;Y-m9BMJbpR_ghSC=L^zDwlB}w({?`Xk1BuQ;bJ!*zaMYmxdZbj
z6w#5XO-^y0ZcJu6OSr}?S52~OF@%PjdXl}LE+zDY-BTTuOf(VTtNHPZ2w$IyJE_K{
zKYCDsc{=|ju9lDuwb{kCb_eA8*#^<y$8V(=9z?R!c|3eA8K1znat%S8Fa5xa<hhgc
zTwp6Xn8UNyO=G`@!Fi)EntvoslK;KMxoX#2+7F)OO7WWp5QFL#WMFj69aw|gtOHGX
zgBsO$>HxHDC%^`MP)0TKB)`pl#c<|~t4tmM-9iaa2ty+I2(7ABIS*!Ud-fU>R5#=Y
zAnJd2qzOF2r4;|YG=vj!apdU7e;UNNin3q3%xD`casTD3vFT3DvJ3G44sMbTH~%fU
zGoB!-mv5OoUh-n{<gxG}wa!I0fJ0G6XFCkl2}Uob0J=coB>$}xi1RY|uoUvS(b&GB
zSm%M7v0cM9!gEaE3Xl|8(wPzAXZ|`~{Ih$9JN9%7C?QzmPI@g#fm#5HA=Tu(12O~q
zFkC%PSpIz`^*=fW{?B-3X;=9qajT(eoEQNfcf|(G8|+%<H1Bn!$0Rw7tgg!{d}rm>
zzwZ%bAz<+<Z(Y{Murz6_L2iNs0Rpwi!Yp5zh1A?8@`)ITgM&cVec@e$5L_0OMS?H&
zLW$16c_R9t1y1Bi&l|-olmuTNNSBNh{lPw%TwoT@rfaynkS^S~$>h;SU^aU7-I8r^
zp4xV5;Dlot8s<i=Yd~k22!}DUSW~d)-2>H01FKykkTSm^AU-X{rcAI3i5G8)zdsn-
zTmLpeyk-u&HIQB^++5c|r$0Yd%AO1VNeo^StGMP)Jx|H^^(71DX7Y>;9%x1im`5g&
z4Z`q-{xm&o(QOV^AsF8pPAT~Gl{;}Dg^m`hvw_+wjHH7uu!Nm%&AC;@qEBu7DhMtC
z_Gx^Agsn>~C)i_N_&+<FcIt^u$`4bPiy)9H<K?uT+JKv=5<C@vf&~*FMZC}lfes=m
zA;@BW!I0Y}dVBkY^LOy2zO;~o-TYzkI&+G2{L@MhTl0`1;iIzUxzJ@*)T?nn8+!{!
z$vuulHoE~f*Yhc8A>RWI{xEI<MFuSzFn*jJA36@%xD(DL$>49+tibxmVcVW{Oqt`7
zkBN|T&3>m*85!926Ql!A2n~-mDd~_f*en5oHi7EB03V%bo44LW7^JEDTdit98UimZ
z;AufCed~*eBk&Y#y<y~uki}^O5ibQL>B>^c$Yu%~#NTzNfu{6V2XrBOsljTVX#^ki
z`wbxNe`A`F^pL8Ft8+ln2)I|0nqdJ^<o+wW1&01@F;Xy~hchg7TiCj%eikk%PSuE_
zguHxuZf<|ShvNqNz=0nKn0~F+IRdz;!C*$i@&~xZA+=x#s>`A}Zv(6ST^9KdPb1U|
zIwg*<T_1fZUX^)u`&fG&r{DQx`p{M}eUt`?4@#|}gmAvzoM|42D!p5VT%}6VpYS}|
z4`6kN0oOYU%{CsED~b3S;(@YWfPFT}NViM5^uDbu8lRo4c~K-VU0mb1Du4%4&xe4`
z+?I3GF{NCdRuimS?mV!ID;^CuL7=58=v1c7MX#|j>r%<B1RovZ^THTa=e17@@8wu@
z3!clkq&xEFbFo$3_aP)C%uq=X5E7yrw}p#3uO73agL!HOZGShhdWoTSU)gky7xYB5
zj1$^DVS`3ahX@*-4du25`1}7Daa9mp<SO(lUG^otXW;<LvfFCCxqP;Q@X`lvN$3(0
z<6XIAs`o?|BPXEZ<KsuzE9$^^pB)5uqJ${kWIYrVFWOi%mZTZy_Hm5XB}rDLQvmxY
z3e>(@oo;#ZyX5!PA!3_Sk5@wS)(8TjuTY5MZfS3(S4~CrC#6fD3)`;o`Imlu)X68g
z@ssM1P1BzYHCO)SOEdYsU8dr1(?OvkoB1Up8ZDu+4`a+FbB8;6Tuyc{ttto?Bx1N@
z_h%WGoJFK;+(5VLk^H;~UUzoI^4f0I-Z*MSx-4_ZDQSmoo39krt53g}Blu?fee$aG
zAkDyR>-ClvmsU!V^p%W|O#>I{%93T?;>;wCg~yY*C8auVke3l48c~nK?akRz`Q}F(
zcj<N@VD_VRUkcl!p<KBzCSnAw)OktMrBcz+ySrZYw;!{d8H93prRHe0w_ApgMRa)a
z>F0)b+;W+-#-iz>-U^k>MW1BmokSsV-P}KsC71ikzl$oBo*eD9`i+|DsAV`2R~U-K
zNF?rdTUCM$$*fAJ3v3*lFp?*WY9h}tiVM;UX@1HJ(#uyI^@eASiHSs3b_%vycvl{q
z94!=$eok`Ik6Z;;77WY7;JGw>#}=g~eb=FpIpg?fW)ssvsK`pl{T5~(r?)-GXGfJQ
z$b)eL;>C37$Q1<bs#7$w{PvmK*BcIt@1jSG8j>9=PY;*Pti}zH-?n8{7BiFzFWaMr
z^H=Ty=l22Ox>p2$&T@|$h8S!qR*s4xv9YCaLw&@hDl-!2P7pi<knt0QG5sK(Y$K`Y
ztFjmGNbhYH^e2`hRevd|iC!bIio|<*h$8`+*o%A?aEp0q#&|J<ucgR+av<RGVe0rd
zj!(6tUqcR`4o^hre#bl}QYycLjr`bZFZc+fKHnn_bFd1oeCn*X5HGJLN;yu6)%M`}
z$iewZhE+#YK6o|jXVUs+D-Y^&WK&ea_(SZ?1r@e2Y{_4gNz&4|U5};*6#|Tr`rJ*f
z!+TeJOrvYpd1Pg?ny4pXx4==W*K5b<#4dkNZ<p=I2>o{^n^Gk^SBGX5=D<QZmCs={
zUT3FRr!FZy)*oZaYiy3hy!p!Vm4@u438U5yfq7xO?~&q+&uG(DqQ$bt5W9=eUEwRM
z6}O$aL0OdeQo>6!76IdL*<biG3t$&!$zSlUB(r_%U6sFmHcY8{_*+ijCgy&#VQ3L5
zjD3`?9a&P8Akb2~d*m|0O|?3iZAxY)KFb{!Ez$EB5WFE#%!3vaF6`#mkdxlwpp=f_
z1b0hb)rj%P3Kwtg*Qxe9%%kEtt=*N8quM>4<WZw$toWdppI)LTf6oo+ASAHBxoF50
z$kGf2m08$R<Y2h0v({x*y@U@-tMvHvyeo!CS+<5SftJ`6?un9wf;*=Q7-s6I6)saf
zJuIgyv!iLhtnOO@k`Y}#bkXlxH~QLLOjCcykG#y?J=>S8h@=&R)imt%QeI)J{n78d
z!mm@@6F}KvR~7mlZezdaFA-fbB3EQ;gxJG}_ftYzex`8C3IyV>HhY0AVL0EpE-C0E
zEjc^FhX?9<3IWqhd3m`<JE-kk?g4o>0(V;aEK)p>3tja@0;9E-^~I8>-87oKY=WN)
zCTR#kpg!V%1QGA=`1N(Y*27-O+LD!Xq95|h`>jcrz6hSM&v5-S<kav2u>%)VU^twI
zJHb5<SpPhg*18YX`h1Q7eg5(Cd=wafT%f-Z*MAB$I}Sz`!z7Qeh3ikUP5IB~`jaT4
zKyYyu+(CS%&-!04APL=;7)P~APF!QBde#fMfS8g{d1}jp=fRQ6ek#}B0`$Q-kKw6S
z@H?*<r2d0InU)4$H`T$U$y{!FAZVqM;CAp>P2%>-GG>C$>W|-=%IWH5QKV((H5{;%
zmx)80SX#=b)%CTWsqjh-J`m$-s4bEw5BDM>Bs?v1Ui(QrJv*_!dJV^f^U>WuE(uP!
zKXz$glalJGJKWh@XqRL4xKW_beNKypD$M2kS0!1Gq=CnmfQwAZq@<)wlAi8={5E>H
z_gdPUCr(0lxd;KidTT{eK}_G38iVC|zhR*AD)B;6`1RV72el=>50)O?Kj&6j8$6Xt
z4e8W8C~5!0MUZOLeM<$m4ug^~8s3OXdRk<MHpLetlUGQ8<Tu?ErbL93bt;<{HN^DK
z8)nfNV?iizi_O_4U}t%4D(xW<eT`*+FONi5%RDSCf474l^PCA*r>UPNJ+S{#SLco7
z{+qU&s&x5OhramCo3j%fl@+74BHt{h@B=STh5Y%88x{~2k8R30ItGTr@tHN%c%k~E
zW$C#9LY<SJ$(*-X{;^3Qh68i)NY{KqCm?DT0kUp-?TPkg7<tY!JC9a+Ru{Ea?;@z8
za7hkOS|A2LlsG)IUo+Y}1eM=rgDY-Iec>RyQ0H5G&_2ldynkz@DUpx<>A_VM0$xgi
z5ZJlWuM<eEO;=yJ^vU$vKXhb@$j9+q;+Ot2m7aIs9kQ4*WxgntIGiF6r$w5<-x<zD
zYu_O!%{rj=U(bRY4Tk}igKPZnOs?-H6#LTJmVrupnWa{`<6PB)7%t&6;*T!=RUhdm
z12>7%x>;Ppslo&AY(k%EYYrawW9AMZ_3E<Brh|k!b02q9RP(a2)fvGjlkeU#IHy#j
z8V*fn`TdgT!lu*o&~?cyS-`zqT!rTyJbXI@&aX-#e_;Wx=(<YtZz7pQz+GV6`%O4B
zkt3^d5$_zne#vT~$4BXWmI3wyqtUMLPgT5V{(s5H{tF)Bbig}H6DB0Q{s&>?vSs=N
z6?j2iKQUO&lOLt*(A%Ftfm-=|kvnQFlh*SI@}F(%o^vo3xY1Y-6s`uuJzq5cwJRc@
zJ)`0EHL8S!#v7RZlvn%HN2gqGg5l?yNe-TitP9SpYE({g`&dOqc)@H9*l+Qfm;*BW
z3w@`Bm{uVesK^gi2N9WL<m}YvkF{7JSI%d-{$>A;?}ti((bGXC#HA3#Nx}5)(QYg&
z>+s`CpJ^_}dXm+n@|{Y!%S?}B=Q09g3`PbH6xXNEYkDD{(%^OZq#zI-Gmt%vPq2kg
zomFF4Y6N<JOt1l_|2~o#GCJHp;J(tS$8$9IBP3sY7ZXej#)(!BJz3R?sajXfLqLNr
zQWBs-C{+B_Vat2s>5~h6&<3i)x#z0j1MK=dP<Z1S|ASb7`}+JFT;rcn=3HEVXDH_l
zDHv|%f7pu;9O%8IhK!FFPsJnNSxc-XU`9*lS8`AewC9}Zy9Q<Qs+f&P5%+kS5hmub
z92uQCz9ITotOGKr!Ty2K3XW$Lb{Biu!LR=^&0|xu6XYd~0F)tiZY%FJU$Vv_h!3Fb
zfj{RZpT`8un0K|$+b<)MNo{L(6fKs`+{o&chBXZ?rqD&hmgDOMS(7DZcMaE?DymE8
zca`#7T<WZD|7C2lu-`T2>rpC?Eu5LQD?IkQ>zneDD>nG^?;|dzphv@w;_D4`$fJ=m
zA1~Cw&L7yR)*^$?^#qF%Ye;BS8M2;z8VFb_RVK%R7;MlSXWF?8(sJP8hEw^Z$*zln
zxsSQacZLKfJ~Zx4xM!?<Zyi20$q2r1jDQt{^LhnLW<HM3M7XtEx!X+B6tapwM_lDR
zcZpd>uzOJ+G|#LsG`M3Ic^M~y`l-;NM4ZZOXaPZD|CCjar#2_b8hC5TrA-dj?9M0U
zE=P_9&tU?8U9ewE5~`(nuJlqcfc}3ix4(t{|4vb8F8LVR043o~z-M|z<I4a<z-VX)
zeZ-_aPf;KKHqrw%3VCXrdUf67BnFo^qN>kdHQ*k3^AZ4;m^)~}#wpcb)~ffbahqUJ
z7(&<4V~<!X5Ag-5aB6CKuO9-|EKr66OQhCo-G&0OAE(i9-!H%+7ztlJ-}!e++63rG
zQ=fcM3}bZcUlsIWH0%j`$_?CN|MqwcIO^JKsTaf1or)Jp3wa4#C<kiyQb7Ozj+qS&
aXRHq@EZvoF5BmXgffQs^ALTtX@%a}qU#^M(

literal 0
HcmV?d00001


From 13a424438c814910f7aa878747e827cbe16c33be Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Thu, 23 Sep 2021 18:53:19 +0200
Subject: [PATCH 13/22] linting

---
 healthcare/solutions/dataverseIntegration/Helper.ps1          | 2 +-
 healthcare/solutions/dataverseIntegration/README.md           | 2 +-
 .../solutions/dataverseIntegration/SetupSynapseLink.ps1       | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/Helper.ps1 b/healthcare/solutions/dataverseIntegration/Helper.ps1
index 3bb77495..a0f7011d 100644
--- a/healthcare/solutions/dataverseIntegration/Helper.ps1
+++ b/healthcare/solutions/dataverseIntegration/Helper.ps1
@@ -117,7 +117,7 @@ function New-FileSystem {
     Write-Verbose "Setting Power Platform URI"
     $powerPlatformUri = "https://athenawebservice.eus-il105.gateway.prod.island.powerapps.com/environment/${PowerPlatformEnvironmentId}/createfilesystem"
     Write-Verbose "Uri: '${powerPlatformUri}'"
-    
+
     # Define parameters based on input parameters
     Write-Verbose "Defining parameters based on input parameters"
     $tenantId = (Get-AzTenant).Id
diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
index 7e53ca9b..444273c6 100644
--- a/healthcare/solutions/dataverseIntegration/README.md
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -54,7 +54,7 @@ Also, the accelerator includes a set of powershell scripts to automate the first
 
 First, use the "Deploy To Azure" Button to setup all Azure related services. Go through the portal experience and specify the details of your environment to successfully deploy the setup:
 
-[![Deploy To Azure](https://aka.ms/deploytoazurebutton)](#)
+[![Deploy To Azure](https://aka.ms/deploytoazurebutton)](#TODO)
 
 Please look at the outputs of the Azure deployment and take note of the Synapse Workspace Id as well as the Dataverse data lake file system Id, as they are required in the next step.
 
diff --git a/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1 b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
index 364f9b09..43becf6c 100644
--- a/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
+++ b/healthcare/solutions/dataverseIntegration/SetupSynapseLink.ps1
@@ -89,7 +89,7 @@ Write-Output "New Data Lake Details: '${datalakeDetails}'"
 
 # Sleep for X Seconds to give the Backend Process some time to Finish
 $seconds = 10
-Write-Host "Sleeping for ${seconds} Seconds to give the Backend Process some time to Finish"
+Write-Output "Sleeping for ${seconds} Seconds to give the Backend Process some time to Finish"
 Start-Sleep -Seconds $seconds
 
 # Create New Data Lake Profile
@@ -104,7 +104,7 @@ Write-Output "New Data Lake Profile: '${datalakeProfile}'"
 
 # Sleep for X Seconds to give the Backend Process some time to Finish
 $seconds = 10
-Write-Host "Sleeping for ${seconds} Seconds to give the Backend Process some time to Finish"
+Write-Output "Sleeping for ${seconds} Seconds to give the Backend Process some time to Finish"
 Start-Sleep -Seconds $seconds
 
 # Activate Lake Profile

From 4261f1a0d1000395155978b601a474ba64859fc7 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Mon, 27 Sep 2021 20:45:33 +0200
Subject: [PATCH 14/22] Updated to reference implementation

---
 healthcare/solutions/dataverseIntegration/README.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
index 444273c6..3a1ae1f1 100644
--- a/healthcare/solutions/dataverseIntegration/README.md
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -41,14 +41,14 @@ The Storage Account, the Synapse Workspace and the Power Platform Environment mu
 
 The user creating the connection requires Owner or User Access Administrator rights on the two Azure resources in order to be able to assign RBAC roles to the Service Principles of the two Enterprise Applications. In addition, the user needs to have the Dataverse system administrator role in the environment to connect Azure and Dataverse successfully.
 
-## Accelerator
+## Reference Implementations
 
-To accelerate the integration of datasets between Dataverse and a data platform, an accelerator has been developed to set this up much more quickly. The accelerator consists of Infrastructure as Code (IaC) templates and a "Deploy To Azure" Button to setup everything related to Azure including the following:
+To accelerate the integration of datasets between Dataverse and a data platform, a reference implementation has been developed to set this up much more quickly. The code consists of Infrastructure as Code (IaC) templates and a "Deploy To Azure" Button to setup everything related to Azure including the following:
 
 - Azure Services: Storage Account, Synapse workspace (including Spark pool), Key Vault
 - All Role assigments ([see role assignments above](#service-requirements))
 
-Also, the accelerator includes a set of powershell scripts to automate the first setup of "Azure Synapse Link". Afterwards, modifications can be made with respect to the tables that get synchronized as well as the settings for each table.
+Also, the reference implementation includes a set of powershell scripts to automate the first setup of "Azure Synapse Link". Afterwards, modifications can be made with respect to the tables that get synchronized as well as the settings for each table.
 
 ### Deploy To Azure
 

From b2347640fac91f331fb9689bdf8d1ff343bf9e36 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Wed, 29 Sep 2021 09:17:27 +0200
Subject: [PATCH 15/22] Updated private dns

---
 .../solutions/dataverseIntegration/main.bicep |  6 +++++
 .../solutions/dataverseIntegration/main.json  | 22 ++++++++++++++++++-
 2 files changed, 27 insertions(+), 1 deletion(-)

diff --git a/healthcare/solutions/dataverseIntegration/main.bicep b/healthcare/solutions/dataverseIntegration/main.bicep
index e80cc8d2..ccfd70b4 100644
--- a/healthcare/solutions/dataverseIntegration/main.bicep
+++ b/healthcare/solutions/dataverseIntegration/main.bicep
@@ -38,6 +38,10 @@ param enableRoleAssignments bool = false
 param subnetId string
 
 // Private DNS Zone parameters
+@description('Specifies the resource ID of the private DNS zone for Blob Storage.')
+param privateDnsZoneIdBlob string = ''
+@description('Specifies the resource ID of the private DNS zone for Datalake Storage.')
+param privateDnsZoneIdDfs string = ''
 @description('Specifies the resource ID of the private DNS zone for KeyVault.')
 param privateDnsZoneIdKeyVault string = ''
 @description('Specifies the resource ID of the private DNS zone for Synapse Dev.')
@@ -85,6 +89,8 @@ module storage001 'modules/services/storage.bicep' = {
     ]
     storageName: storage001Name
     subnetId: subnetId
+    privateDnsZoneIdBlob: privateDnsZoneIdBlob
+    privateDnsZoneIdDfs: privateDnsZoneIdDfs
   }
 }
 
diff --git a/healthcare/solutions/dataverseIntegration/main.json b/healthcare/solutions/dataverseIntegration/main.json
index 319250d6..33490576 100644
--- a/healthcare/solutions/dataverseIntegration/main.json
+++ b/healthcare/solutions/dataverseIntegration/main.json
@@ -5,7 +5,7 @@
     "_generator": {
       "name": "bicep",
       "version": "0.4.613.9944",
-      "templateHash": "15370992525510895090"
+      "templateHash": "7729186315494720054"
     }
   },
   "parameters": {
@@ -83,6 +83,20 @@
         "description": "Specifies the resource ID of the subnet to which all services will connect."
       }
     },
+    "privateDnsZoneIdBlob": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the resource ID of the private DNS zone for Blob Storage."
+      }
+    },
+    "privateDnsZoneIdDfs": {
+      "type": "string",
+      "defaultValue": "",
+      "metadata": {
+        "description": "Specifies the resource ID of the private DNS zone for Datalake Storage."
+      }
+    },
     "privateDnsZoneIdKeyVault": {
       "type": "string",
       "defaultValue": "",
@@ -294,6 +308,12 @@
           },
           "subnetId": {
             "value": "[parameters('subnetId')]"
+          },
+          "privateDnsZoneIdBlob": {
+            "value": "[parameters('privateDnsZoneIdBlob')]"
+          },
+          "privateDnsZoneIdDfs": {
+            "value": "[parameters('privateDnsZoneIdDfs')]"
           }
         },
         "template": {

From 0fde0203c358fc4b9b8469bea4dac17e9cece7b3 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Wed, 29 Sep 2021 09:18:26 +0200
Subject: [PATCH 16/22] added portal exp

---
 .../dataverseIntegration/portal.json          | 721 ++++++++++++++++++
 1 file changed, 721 insertions(+)
 create mode 100644 healthcare/solutions/dataverseIntegration/portal.json

diff --git a/healthcare/solutions/dataverseIntegration/portal.json b/healthcare/solutions/dataverseIntegration/portal.json
new file mode 100644
index 00000000..d15745b6
--- /dev/null
+++ b/healthcare/solutions/dataverseIntegration/portal.json
@@ -0,0 +1,721 @@
+{
+    "$schema": "<relative path to createFormUI.schema.json>",
+    "view": {
+        "kind": "Form",
+        "properties": {
+            "title": "Dataverse ",
+            "steps": [
+                {
+                    "name": "basics",
+                    "label": "Data Product",
+                    "elements": [
+                        {
+                            "name": "deploymentDetails",
+                            "label": "Deployment Details",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "deploymentDetailsText",
+                                    "type": "Microsoft.Common.TextBlock",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Select the subscription and resource group as well as the location to specify the scope of your deployment.",
+                                        "link": {
+                                            "label": "",
+                                            "uri": ""
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "subscriptionApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "GET",
+                                        "path": "subscriptions?api-version=2020-01-01"
+                                    }
+                                },
+                                {
+                                    "name": "subscriptionId",
+                                    "label": "Subscription",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": "Select the Subscription for your deployment.",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(steps('basics').deploymentDetails.subscriptionApi.value, (item) => parse(concat('{\"label\":\"', item.displayName, '\",\"value\":\"', item.id, '\",\"description\":\"', 'ID: ', item.subscriptionId, '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "resourceGroupApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "GET",
+                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/resourcegroups?api-version=2020-01-01')]"
+                                    }
+                                },
+                                {
+                                    "name": "resourceGroupId",
+                                    "label": "Resource Group",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": "Select the Resource Group for your deployment.",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(steps('basics').deploymentDetails.resourceGroupApi.value, (item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Subscription ID: ', last(take(split(item.id, '/'), 3)), '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "infoBoxLocation",
+                                    "type": "Microsoft.Common.InfoBox",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Since not all service features are available in all regions, Enterprise Scale Analytics is available in a subset of regions.",
+                                        "style": "Info"
+                                    }
+                                },
+                                {
+                                    "name": "locationsApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "GET",
+                                        "path": "locations?api-version=2019-11-01"
+                                    }
+                                },
+                                {
+                                    "name": "locationName",
+                                    "label": "Location",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": "Select the Location for your Data Product.",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('basics').deploymentDetails.locationsApi.value,(item) => contains(split('southafricanorth,southeastasia,japaneast,canadacentral,northeurope,westeurope,francecentral,germanywestcentral,uksouth,centralus,eastus,eastus2,southcentralus,westus2', ','), item.name)),(item) => parse(concat('{\"label\":\"', item.regionalDisplayName, '\",\"value\":\"', item.name, '\"}')))]",
+                                        "required": true
+                                    }
+                                }
+                            ]
+                        },
+                        {
+                            "name": "deploymentName",
+                            "label": "Deployment Name",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "deploymentNameText",
+                                    "type": "Microsoft.Common.TextBlock",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Specify a prefix and select an environment (Development, Test, Production) which will both be used as a prefix for all resource names. Independent of the environment, the same resources get deployed.",
+                                        "link": {
+                                            "label": "",
+                                            "uri": ""
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "environment",
+                                    "label": "Environment",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": true,
+                                    "defaultValue": "Development",
+                                    "toolTip": "Select the environment for the deployment. This is currently only used for the naming of resources.",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": [
+                                            {
+                                                "label": "Development",
+                                                "description": "Select if you want to deploy a development environment.",
+                                                "value": "dev"
+                                            },
+                                            {
+                                                "label": "Test",
+                                                "description": "Select if you want to deploy a test environment.",
+                                                "value": "tst"
+                                            },
+                                            {
+                                                "label": "Production",
+                                                "description": "Select if you want to deploy a production environment.",
+                                                "value": "prd"
+                                            }
+                                        ],
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "dataProductPrefix",
+                                    "label": "Data Product Prefix",
+                                    "type": "Microsoft.Common.TextBox",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": "Specify a prefix (min 1 and max 10 lowercase characters and numbers).",
+                                    "constraints": {
+                                        "required": true,
+                                        "validations": [
+                                            {
+                                                "regex": "^[a-z0-9]{1,10}$",
+                                                "message": "The prefix must be between 1-10 lowercase characters and numbers."
+                                            },
+                                            {
+                                                "isValid": "[not(equals(steps('basics').dataProductName.keyVaultNameApi.nameAvailable, false))]",
+                                                "message": "Prefix currently unavailable. Please choose a different one."
+                                            },
+                                            {
+                                                "isValid": "[not(equals(steps('basics').dataProductName.storageAccountNameApi.nameAvailable, false))]",
+                                                "message": "Prefix currently unavailable. Please choose a different one."
+                                            },
+                                            {
+                                                "isValid": "[not(equals(steps('basics').dataProductName.containerRegistryNameApi.nameAvailable, false))]",
+                                                "message": "Prefix currently unavailable. Please choose a different one."
+                                            },
+                                            {
+                                                "isValid": "[not(equals(steps('basics').dataProductName.synapseNameApi.available, false))]",
+                                                "message": "Prefix currently unavailable. Please choose a different one."
+                                            },
+                                            {
+                                                "isValid": "[not(equals(steps('basics').dataProductName.searchNameApi.nameAvailable, false))]",
+                                                "message": "Prefix currently unavailable. Please choose a different one."
+                                            }
+                                        ]
+                                    }
+                                },
+                                {
+                                    "name": "keyVaultNameApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "POST",
+                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.KeyVault/checkNameAvailability?api-version=2019-09-01')]",
+                                        "body": {
+                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, '-', steps('basics').dataProductName.environment, '-vault001')]",
+                                            "type": "Microsoft.KeyVault/vaults"
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "storageAccountNameApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "POST",
+                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.Storage/checkNameAvailability?api-version=2021-04-01')]",
+                                        "body": {
+                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, steps('basics').dataProductName.environment, 'storage001')]",
+                                            "type": "Microsoft.Storage/storageAccounts"
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "containerRegistryNameApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "POST",
+                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.ContainerRegistry/checkNameAvailability?api-version=2019-05-01')]",
+                                        "body": {
+                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, steps('basics').dataProductName.environment, 'containerregistry001')]",
+                                            "type": "Microsoft.ContainerRegistry/registries"
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "synapseNameApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "POST",
+                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.Synapse/checkNameAvailability?api-version=2021-03-01')]",
+                                        "body": {
+                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, '-', steps('basics').dataProductName.environment, '-synapse001')]",
+                                            "type": "Microsoft.Synapse/workspaces"
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "searchNameApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "POST",
+                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.Search/checkNameAvailability?api-version=2021-04-01-preview')]",
+                                        "body": {
+                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, '-', steps('basics').dataProductName.environment, '-search001')]",
+                                            "type": "searchServices"
+                                        }
+                                    }
+                                }
+                            ]
+                        }
+                    ]
+                },
+                {
+                    "name": "generalSettings",
+                    "label": "General Settings",
+                    "subLabel": {
+                        "preValidation": "Provide settings for your data product deployment.",
+                        "postValidation": "Done"
+                    },
+                    "bladeTitle": "General Settings",
+                    "bladeSubtitle": "General Settings",
+                    "elements": [
+                        {
+                            "name": "servicePrincipleSettings",
+                            "label": "Service Principle Settings",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "servicePrincipleSettingsText",
+                                    "type": "Microsoft.Common.TextBlock",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Specify the Object IDs of the required Enterprise Applications.",
+                                        "link": {
+                                            "label": "Learn more",
+                                            "uri": ""
+                                        }
+                                    }
+                                }
+                            ]
+                        },
+                        {
+                            "name": "synapseDeploymentSettings",
+                            "label": "Synapse Deployment Settings",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "infoBoxProcessingService",
+                                    "type": "Microsoft.Common.InfoBox",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Specify the settings for your Synapse workspace.",
+                                        "style": "Info"
+                                    }
+                                },
+                                {
+                                    "name": "administratorPassword",
+                                    "label": {
+                                        "password": "Password",
+                                        "confirmPassword": "Confirm password"
+                                    },
+                                    "type": "Microsoft.Compute.CredentialsCombo",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": {
+                                        "password": "Specify an administrator password for the Synapse workspace."
+                                    },
+                                    "constraints": {
+                                        "required": true,
+                                        "customPasswordRegex": "^(?=.*?[A-Z])(?=.*?[a-z])(?=.*?[0-9])(?=.*?[#?!@$%^&*-]).{8,128}$",
+                                        "customValidationMessage": "The password must be alphanumeric, contain at least 8 characters, and have at least 1 letter, 1 number and one special character."
+                                    },
+                                    "options": {
+                                        "hideConfirmation": false
+                                    },
+                                    "osPlatform": "Windows"
+                                }
+                            ]
+                        },
+                        {
+                            "name": "dataGovernanceSettings",
+                            "label": "Data Governance Settings",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "dataGovernanceSettingsText",
+                                    "type": "Microsoft.Common.TextBlock",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Select the Purview account to which you want to connect the Synapse workspace or Data Factory.",
+                                        "link": {
+                                            "label": "Learn more",
+                                            "uri": "https://docs.microsoft.com/en-us/azure/purview/overview"
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "purviewId",
+                                    "label": "Connect to Purview Account",
+                                    "type": "Microsoft.Solutions.ResourceSelector",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": "Select the Purview account to which you want to connect Synapse or Data Factory.",
+                                    "resourceType": "Microsoft.Purview/accounts",
+                                    "required": true,
+                                    "options": {
+                                        "filter": {
+                                            "subscription": "all",
+                                            "location": "all"
+                                        }
+                                    }
+                                }
+                            ]
+                        },
+                        {
+                            "name": "generalSettings",
+                            "label": "General Settings",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "generalSettingsText",
+                                    "type": "Microsoft.Common.TextBlock",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Specify general settings for this deployment.",
+                                        "link": {
+                                            "label": "",
+                                            "uri": ""
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "infoBoxRoleAssignment",
+                                    "type": "Microsoft.Common.InfoBox",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "The role assignment is optional and will assign the Service Principle of the Power Platform Enterprise Application and the Service Principle of the Dataverse Enterprise Application multiple roles on the Data Lake. Please visit the link to learn more about the required role assignments.",
+                                        "style": "Info"
+                                    }
+                                },
+                                {
+                                    "name": "enableRoleAssignments",
+                                    "label": "Enable role assignments",
+                                    "type": "Microsoft.Common.CheckBox",
+                                    "visible": true,
+                                    "defaultValue": false,
+                                    "toolTip": "Enable role assignments.",
+                                    "constraints": {
+                                        "required": false,
+                                        "validationMessage": "Enable role assignments of Machine Learning MSI and Synapse MSI. Please read infobox above for more details."
+                                    }
+                                }
+                            ]
+                        }
+                    ]
+                },
+                {
+                    "name": "connectivitySettings",
+                    "label": "Connectivity Settings",
+                    "subLabel": {
+                        "preValidation": "Provide the connectivity settings that should be used for the Data Product.",
+                        "postValidation": "Done"
+                    },
+                    "bladeTitle": "Connectivity Settings",
+                    "bladeSubtitle": "Connectivity Settings",
+                    "elements": [
+                        {
+                            "name": "virtualNetwork",
+                            "label": "Virtual Network",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "virtualNetworkText",
+                                    "type": "Microsoft.Common.TextBlock",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Select the Virtual Network and Subnet for your deployment.",
+                                        "link": {
+                                            "label": "",
+                                            "uri": ""
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "infoBoxVirtualNetwork",
+                                    "type": "Microsoft.Common.InfoBox",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Please select the Virtual Network of your Data Landing Zone and select a free Subnet within the Virtual Network to make sure that you have proper outbound connectivity as well as DNS name resolution in place. The subnet must have 'privateEndpointNetworkPolicies' and 'privateLinkServiceNetworkPolicies' set to disabled. This is already pre-configured for you in the DataProduct and DataIntegration subnets in the Data Landing Zone Vnet. In addition, Azure Machine Learning requires a subnet with the 'Microsoft.Storage' service endpoint enabled in the region of the Data Product deployment. This is not enabled by default and therefore must be setup manually.",
+                                        "style": "Info"
+                                    }
+                                },
+                                {
+                                    "name": "virtualNetworkApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "GET",
+                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.Network/virtualNetworks?api-version=2020-11-01')]"
+                                    }
+                                },
+                                {
+                                    "name": "virtualNetworkId",
+                                    "label": "Virtual Network",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": "Select the Virtual Network for your Data Product.",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('connectivitySettings').virtualNetwork.virtualNetworkApi.value,(item) => equals(item.location, steps('basics').deploymentDetails.locationName)),(item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Resource Group: ', last(take(split(item.id, '/'), 5)), '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "subnetApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "GET",
+                                        "path": "[concat(steps('connectivitySettings').virtualNetwork.virtualNetworkId, '/subnets?api-version=2020-11-01')]"
+                                    }
+                                },
+                                {
+                                    "name": "subnetId",
+                                    "label": "Subnet",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": true,
+                                    "defaultValue": "",
+                                    "toolTip": "Select the Subnet for your Data Product. The subnet must have 'privateEndpointNetworkPolicies' and 'privateLinkServiceNetworkPolicies' set to disabled.",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('connectivitySettings').virtualNetwork.subnetApi.value,(item) => and(equals(item.properties.privateEndpointNetworkPolicies, 'Disabled'), equals(item.properties.privateLinkServiceNetworkPolicies, 'Disabled'), lessOrEquals(int(last(split(item.properties.addressPrefix, '/'))), 27))),(item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Resource Group: ', last(take(split(item.id, '/'), 5)), '\"}')))]",
+                                        "required": true
+                                    }
+                                }
+                            ]
+                        },
+                        {
+                            "name": "privateDnsZones",
+                            "label": "Private DNS Zones",
+                            "type": "Microsoft.Common.Section",
+                            "visible": true,
+                            "elements": [
+                                {
+                                    "name": "privateDnsZonesText",
+                                    "type": "Microsoft.Common.TextBlock",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "Select the Private DNS Zone settings for your deployment.",
+                                        "link": {
+                                            "label": "",
+                                            "uri": ""
+                                        }
+                                    }
+                                },
+                                {
+                                    "name": "infoBoxPrivateDnsZone",
+                                    "type": "Microsoft.Common.InfoBox",
+                                    "visible": true,
+                                    "options": {
+                                        "text": "We are deploying all services with private endpoints and disabled public network access where possible to reduce the data exfiltration risk. For each private endpoint, DNS A-records need to be created in a Private DNS Zones. Therefore, these either need to deployed through Azure Policies or you have to provide the Private DNS Zones that should be used for this deployment. We are assuming that all Private DNS Zones are created in the same subscription. Deploying DNS A-Records through Private Endpoints is the recommended solution.",
+                                        "style": "Info",
+                                        "uri": "https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/azure-best-practices/private-link-and-dns-integration-at-scale"
+                                    }
+                                },
+                                {
+                                    "name": "automatedPrivateDnsZoneGroups",
+                                    "label": "DNS A-Records are deployed through Azure Policy",
+                                    "type": "Microsoft.Common.OptionsGroup",
+                                    "visible": true,
+                                    "toolTip": "If 'No' is selected, you will have to choose private DNS Zones that will be used for the A-Record deployment of the private DNS Zones.",
+                                    "defaultValue": "Yes",
+                                    "constraints": {
+                                        "allowedValues": [
+                                            {
+                                                "label": "Yes",
+                                                "value": "yes"
+                                            },
+                                            {
+                                                "label": "No",
+                                                "value": "no"
+                                            }
+                                        ]
+                                    }
+                                },
+                                {
+                                    "name": "subscriptionApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "GET",
+                                        "path": "subscriptions?api-version=2020-01-01"
+                                    }
+                                },
+                                {
+                                    "name": "privateDnsZonesSub",
+                                    "label": "Private DNS Zone Subscription",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": "[equals(steps('connectivitySettings').privateDnsZones.automatedPrivateDnsZoneGroups, 'no')]",
+                                    "defaultValue": "",
+                                    "toolTip": "Select the Subscription of your Private DNS Zones.",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(steps('connectivitySettings').privateDnsZones.subscriptionApi.value, (item) => parse(concat('{\"label\":\"', item.displayName, '\",\"value\":\"', item.id, '\",\"description\":\"', 'ID: ', item.subscriptionId, '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "privateDnsZonesApi",
+                                    "type": "Microsoft.Solutions.ArmApiControl",
+                                    "request": {
+                                        "method": "GET",
+                                        "path": "[concat(steps('connectivitySettings').privateDnsZones.privateDnsZonesSub, '/providers/Microsoft.Network/privateDnsZones?api-version=2018-09-01')]"
+                                    }
+                                },
+                                {
+                                    "name": "privateDnsZoneIdKeyVault",
+                                    "label": "Private DNS Zone Key Vault (privatelink.vaultcore.azure.net)",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": "[equals(steps('connectivitySettings').privateDnsZones.automatedPrivateDnsZoneGroups, 'no')]",
+                                    "defaultValue": "",
+                                    "toolTip": "Private DNS Zone for Key Vault (privatelink.vaultcore.azure.net).",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('connectivitySettings').privateDnsZones.privateDnsZonesApi.value,(item) => contains(item.name, 'privatelink.vaultcore.azure.net')),(item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Resource Group: ', last(take(split(item.id, '/'), 5)), '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "privateDnsZoneIdSynapseDev",
+                                    "label": "Private DNS Zone Synapse Dev (privatelink.dev.azuresynapse.net)",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": "[equals(steps('connectivitySettings').privateDnsZones.automatedPrivateDnsZoneGroups, 'no')]",
+                                    "defaultValue": "",
+                                    "toolTip": "Private DNS Zone for Synapse Dev (privatelink.dev.azuresynapse.net).",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('connectivitySettings').privateDnsZones.privateDnsZonesApi.value,(item) => contains(item.name, 'privatelink.dev.azuresynapse.net')),(item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Resource Group: ', last(take(split(item.id, '/'), 5)), '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "privateDnsZoneIdSynapseSql",
+                                    "label": "Private DNS Zone Synapse Sql (privatelink.sql.azuresynapse.net)",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": "[equals(steps('connectivitySettings').privateDnsZones.automatedPrivateDnsZoneGroups, 'no')]",
+                                    "defaultValue": "",
+                                    "toolTip": "Private DNS Zone for Synapse Sql (privatelink.sql.azuresynapse.net).",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('connectivitySettings').privateDnsZones.privateDnsZonesApi.value,(item) => contains(item.name, 'privatelink.sql.azuresynapse.net')),(item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Resource Group: ', last(take(split(item.id, '/'), 5)), '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "privateDnsZoneIdBlob",
+                                    "label": "Private DNS Zone Blob Storage (privatelink.blob.core.windows.net)",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": "[equals(steps('connectivitySettings').privateDnsZones.automatedPrivateDnsZoneGroups, 'no')]",
+                                    "defaultValue": "",
+                                    "toolTip": "Private DNS Zone for Blob Storage (privatelink.blob.core.windows.net).",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('connectivitySettings').privateDnsZones.privateDnsZonesApi.value,(item) => contains(item.name, 'privatelink.blob.core.windows.net')),(item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Resource Group: ', last(take(split(item.id, '/'), 5)), '\"}')))]",
+                                        "required": true
+                                    }
+                                },
+                                {
+                                    "name": "privateDnsZoneIdDfs",
+                                    "label": "Private DNS Zone DFS Storage (privatelink.dfs.core.windows.net)",
+                                    "type": "Microsoft.Common.DropDown",
+                                    "visible": "[equals(steps('connectivitySettings').privateDnsZones.automatedPrivateDnsZoneGroups, 'no')]",
+                                    "defaultValue": "",
+                                    "toolTip": "Private DNS Zone for DFS Storage (privatelink.dfs.core.windows.net).",
+                                    "multiselect": false,
+                                    "selectAll": false,
+                                    "filter": true,
+                                    "filterPlaceholder": "Filter items ...",
+                                    "multiLine": true,
+                                    "constraints": {
+                                        "allowedValues": "[map(filter(steps('connectivitySettings').privateDnsZones.privateDnsZonesApi.value,(item) => contains(item.name, 'privatelink.dfs.core.windows.net')),(item) => parse(concat('{\"label\":\"', item.name, '\",\"value\":\"', item.id, '\",\"description\":\"', 'Resource Group: ', last(take(split(item.id, '/'), 5)), '\"}')))]",
+                                        "required": true
+                                    }
+                                }
+                            ]
+                        }
+                    ]
+                },
+                {
+                    "name": "tags",
+                    "label": "Tags",
+                    "subLabel": {
+                        "preValidation": "Provide tags that will be used for all resources.",
+                        "postValidation": "Done"
+                    },
+                    "bladeTitle": "Tags",
+                    "bladeSubtitle": "Tags",
+                    "elements": [
+                        {
+                            "name": "tagsByResource",
+                            "label": "Tags by Resource",
+                            "type": "Microsoft.Common.TagsByResource",
+                            "visible": true,
+                            "resources": [
+                                "EnterpriseScaleAnalytics"
+                            ]
+                        }
+                    ]
+                }
+            ]
+        },
+        "outputs": {
+            "kind": "ResourceGroup",
+            "location": "[steps('basics').deploymentDetails.locationName]",
+            "resourceGroupId": "[steps('basics').deploymentDetails.resourceGroupId]",
+            "parameters": {
+                "location": "[if(empty(steps('basics').deploymentDetails.locationName), '', steps('basics').deploymentDetails.locationName)]",
+                "environment": "[if(empty(steps('basics').dataProductName.environment), '', steps('basics').dataProductName.environment)]",
+                "prefix": "[if(empty(steps('basics').dataProductName.dataProductPrefix), '', steps('basics').dataProductName.dataProductPrefix)]",
+                "administratorPassword": "[if(empty(steps('generalSettings').synapseDeploymentSettings.administratorPassword.password), '', steps('generalSettings').synapseDeploymentSettings.administratorPassword.password)]",
+                "powerPlatformServicePrincipalObjectId": "[if(empty(steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId), '', steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId)]",
+                "dataverseServicePrincipalObjectId": "[if(empty(steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId), '', steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId)]",
+                "purviewId": "[if(empty(steps('generalSettings').dataGovernanceSettings.purviewId.id), '', steps('generalSettings').dataGovernanceSettings.purviewId.id)]",
+                "enableRoleAssignments": "[steps('generalSettings').generalSettings.enableRoleAssignments]",
+                "subnetId": "[if(empty(steps('connectivitySettings').virtualNetwork.subnetId), '', steps('connectivitySettings').virtualNetwork.subnetId)]",
+                "privateDnsZoneIdBlob": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdBlob), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdBlob)]",
+                "privateDnsZoneIdDfs": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdDfs), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdDfs)]",
+                "privateDnsZoneIdKeyVault": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdKeyVault), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdKeyVault)]",
+                "privateDnsZoneIdSynapseDev": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseDev), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseDev)]",
+                "privateDnsZoneIdSynapseSql": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseSql), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseSql)]",
+                "tags": "[if(not(contains(steps('tags').tagsByResource, 'EnterpriseScaleAnalytics')), parse('{}'), first(map(parse(concat('[', string(steps('tags').tagsByResource), ']')), (item) => item.EnterpriseScaleAnalytics)))]"
+            }
+        }
+    }
+}
\ No newline at end of file

From dae400d8beebd2688961dcc5fee2ee3227a38e95 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Thu, 30 Sep 2021 17:49:41 +0200
Subject: [PATCH 17/22] updated header

---
 healthcare/solutions/dataverseIntegration/README.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
index 3a1ae1f1..6bca59c6 100644
--- a/healthcare/solutions/dataverseIntegration/README.md
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -1,4 +1,4 @@
-# Link Dataverse with Azure Data Lake Gen2 and Azure Synapse
+# Linking Dataverse with Azure Data Lake Gen2 and Azure Synapse
 
 In a data platform, disparate data sources and datasets are integrated onto a Data Lake in order to allow the development of new data products as well as the generation of new insights by using machine learning and other techniques. One of such data sources can be Dataverse, which is the standard storage option for all business applications running inside a Power Platform enviornment. Dataverse stores datasets in a tabular format and allows them to be extracted to a Data Lake Gen2 via a feature called "Azure Synapse Link for Dataverse".
 
@@ -35,13 +35,13 @@ Our tests have shown that similar requirements are existing for the Synapse work
 |:---------------------------------------------------|:------------------------------|---------------------------|
 | 'Export to data lake' (Dataverse)                  | Synapse Administrator         | Synapse Workspace         |
 
-### Other comments
+### Other
 
 The Storage Account, the Synapse Workspace and the Power Platform Environment must be in the same region. Otherwise, the "Azure Synapse Link" feature in Power Apps will not work. Also, all services need to be in the same tenant, subscription and resource group.
 
 The user creating the connection requires Owner or User Access Administrator rights on the two Azure resources in order to be able to assign RBAC roles to the Service Principles of the two Enterprise Applications. In addition, the user needs to have the Dataverse system administrator role in the environment to connect Azure and Dataverse successfully.
 
-## Reference Implementations
+## Reference Implementation
 
 To accelerate the integration of datasets between Dataverse and a data platform, a reference implementation has been developed to set this up much more quickly. The code consists of Infrastructure as Code (IaC) templates and a "Deploy To Azure" Button to setup everything related to Azure including the following:
 
@@ -50,7 +50,7 @@ To accelerate the integration of datasets between Dataverse and a data platform,
 
 Also, the reference implementation includes a set of powershell scripts to automate the first setup of "Azure Synapse Link". Afterwards, modifications can be made with respect to the tables that get synchronized as well as the settings for each table.
 
-### Deploy To Azure
+### Azure Deployment
 
 First, use the "Deploy To Azure" Button to setup all Azure related services. Go through the portal experience and specify the details of your environment to successfully deploy the setup:
 
@@ -58,7 +58,7 @@ First, use the "Deploy To Azure" Button to setup all Azure related services. Go
 
 Please look at the outputs of the Azure deployment and take note of the Synapse Workspace Id as well as the Dataverse data lake file system Id, as they are required in the next step.
 
-### Connect Azure Services and Dataverse
+### Connecting Dataverse and Azure Services
 
 For the next step, you will need the following PowerShell scripts included in this folder: "SetupSynapseLink.ps1" and "Helper.ps1". This step cannot be automated, because the Power Platform APIs do not support the on-behalf workflow. Therefore, this script needs to be executed by a user. Before executing "SetupSynapseLink.ps1", please follow the steps below:
 

From d33e45bcaa76f6b31eba30889024c198c29a8248 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Thu, 30 Sep 2021 19:59:18 +0200
Subject: [PATCH 18/22] Added Portal UI

---
 .../dataverseIntegration/portal.json          | 150 ++++++++++--------
 1 file changed, 85 insertions(+), 65 deletions(-)

diff --git a/healthcare/solutions/dataverseIntegration/portal.json b/healthcare/solutions/dataverseIntegration/portal.json
index d15745b6..80b0daa6 100644
--- a/healthcare/solutions/dataverseIntegration/portal.json
+++ b/healthcare/solutions/dataverseIntegration/portal.json
@@ -3,11 +3,11 @@
     "view": {
         "kind": "Form",
         "properties": {
-            "title": "Dataverse ",
+            "title": "Dataverse-Azure - Data Integration",
             "steps": [
                 {
                     "name": "basics",
-                    "label": "Data Product",
+                    "label": "Deployment Location",
                     "elements": [
                         {
                             "name": "deploymentDetails",
@@ -82,7 +82,7 @@
                                     "type": "Microsoft.Common.InfoBox",
                                     "visible": true,
                                     "options": {
-                                        "text": "Since not all service features are available in all regions, Enterprise Scale Analytics is available in a subset of regions.",
+                                        "text": "Your Power Platform environment and Azure services must be in the same region.",
                                         "style": "Info"
                                     }
                                 },
@@ -100,14 +100,14 @@
                                     "type": "Microsoft.Common.DropDown",
                                     "visible": true,
                                     "defaultValue": "",
-                                    "toolTip": "Select the Location for your Data Product.",
+                                    "toolTip": "Select the Location for your Deployment.",
                                     "multiselect": false,
                                     "selectAll": false,
                                     "filter": true,
                                     "filterPlaceholder": "Filter items ...",
                                     "multiLine": true,
                                     "constraints": {
-                                        "allowedValues": "[map(filter(steps('basics').deploymentDetails.locationsApi.value,(item) => contains(split('southafricanorth,southeastasia,japaneast,canadacentral,northeurope,westeurope,francecentral,germanywestcentral,uksouth,centralus,eastus,eastus2,southcentralus,westus2', ','), item.name)),(item) => parse(concat('{\"label\":\"', item.regionalDisplayName, '\",\"value\":\"', item.name, '\"}')))]",
+                                        "allowedValues": "[map(steps('basics').deploymentDetails.locationsApi.value,(item) => parse(concat('{\"label\":\"', item.regionalDisplayName, '\",\"value\":\"', item.name, '\"}')))]",
                                         "required": true
                                     }
                                 }
@@ -165,8 +165,8 @@
                                     }
                                 },
                                 {
-                                    "name": "dataProductPrefix",
-                                    "label": "Data Product Prefix",
+                                    "name": "deploymentPrefix",
+                                    "label": "Deployment Prefix",
                                     "type": "Microsoft.Common.TextBox",
                                     "visible": true,
                                     "defaultValue": "",
@@ -179,23 +179,15 @@
                                                 "message": "The prefix must be between 1-10 lowercase characters and numbers."
                                             },
                                             {
-                                                "isValid": "[not(equals(steps('basics').dataProductName.keyVaultNameApi.nameAvailable, false))]",
+                                                "isValid": "[not(equals(steps('basics').deploymentName.keyVaultNameApi.nameAvailable, false))]",
                                                 "message": "Prefix currently unavailable. Please choose a different one."
                                             },
                                             {
-                                                "isValid": "[not(equals(steps('basics').dataProductName.storageAccountNameApi.nameAvailable, false))]",
+                                                "isValid": "[not(equals(steps('basics').deploymentName.storageAccountNameApi.nameAvailable, false))]",
                                                 "message": "Prefix currently unavailable. Please choose a different one."
                                             },
                                             {
-                                                "isValid": "[not(equals(steps('basics').dataProductName.containerRegistryNameApi.nameAvailable, false))]",
-                                                "message": "Prefix currently unavailable. Please choose a different one."
-                                            },
-                                            {
-                                                "isValid": "[not(equals(steps('basics').dataProductName.synapseNameApi.available, false))]",
-                                                "message": "Prefix currently unavailable. Please choose a different one."
-                                            },
-                                            {
-                                                "isValid": "[not(equals(steps('basics').dataProductName.searchNameApi.nameAvailable, false))]",
+                                                "isValid": "[not(equals(steps('basics').deploymentName.synapseNameApi.available, false))]",
                                                 "message": "Prefix currently unavailable. Please choose a different one."
                                             }
                                         ]
@@ -208,7 +200,7 @@
                                         "method": "POST",
                                         "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.KeyVault/checkNameAvailability?api-version=2019-09-01')]",
                                         "body": {
-                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, '-', steps('basics').dataProductName.environment, '-vault001')]",
+                                            "name": "[concat(steps('basics').deploymentName.deploymentPrefix, '-', steps('basics').deploymentName.environment, '-vault001')]",
                                             "type": "Microsoft.KeyVault/vaults"
                                         }
                                     }
@@ -220,23 +212,11 @@
                                         "method": "POST",
                                         "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.Storage/checkNameAvailability?api-version=2021-04-01')]",
                                         "body": {
-                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, steps('basics').dataProductName.environment, 'storage001')]",
+                                            "name": "[concat(steps('basics').deploymentName.deploymentPrefix, steps('basics').deploymentName.environment, 'storage001')]",
                                             "type": "Microsoft.Storage/storageAccounts"
                                         }
                                     }
                                 },
-                                {
-                                    "name": "containerRegistryNameApi",
-                                    "type": "Microsoft.Solutions.ArmApiControl",
-                                    "request": {
-                                        "method": "POST",
-                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.ContainerRegistry/checkNameAvailability?api-version=2019-05-01')]",
-                                        "body": {
-                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, steps('basics').dataProductName.environment, 'containerregistry001')]",
-                                            "type": "Microsoft.ContainerRegistry/registries"
-                                        }
-                                    }
-                                },
                                 {
                                     "name": "synapseNameApi",
                                     "type": "Microsoft.Solutions.ArmApiControl",
@@ -244,22 +224,10 @@
                                         "method": "POST",
                                         "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.Synapse/checkNameAvailability?api-version=2021-03-01')]",
                                         "body": {
-                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, '-', steps('basics').dataProductName.environment, '-synapse001')]",
+                                            "name": "[concat(steps('basics').deploymentName.deploymentPrefix, '-', steps('basics').deploymentName.environment, '-synapse001')]",
                                             "type": "Microsoft.Synapse/workspaces"
                                         }
                                     }
-                                },
-                                {
-                                    "name": "searchNameApi",
-                                    "type": "Microsoft.Solutions.ArmApiControl",
-                                    "request": {
-                                        "method": "POST",
-                                        "path": "[concat(steps('basics').deploymentDetails.subscriptionId, '/providers/Microsoft.Search/checkNameAvailability?api-version=2021-04-01-preview')]",
-                                        "body": {
-                                            "name": "[concat(steps('basics').dataProductName.dataProductPrefix, '-', steps('basics').dataProductName.environment, '-search001')]",
-                                            "type": "searchServices"
-                                        }
-                                    }
                                 }
                             ]
                         }
@@ -269,7 +237,7 @@
                     "name": "generalSettings",
                     "label": "General Settings",
                     "subLabel": {
-                        "preValidation": "Provide settings for your data product deployment.",
+                        "preValidation": "Provide settings for your deployment.",
                         "postValidation": "Done"
                     },
                     "bladeTitle": "General Settings",
@@ -288,10 +256,58 @@
                                     "options": {
                                         "text": "Specify the Object IDs of the required Enterprise Applications.",
                                         "link": {
-                                            "label": "Learn more",
+                                            "label": "",
                                             "uri": ""
                                         }
                                     }
+                                },
+                                {
+                                    "name": "powerPlatformServicePrincipalObjectId",
+                                    "label": {
+                                        "password": "Password",
+                                        "certificateThumbprint": "Certificate thumbprint",
+                                        "authenticationType": "Authentication Type",
+                                        "sectionHeader": "Power Platform Service Principal"
+                                    },
+                                    "type": "Microsoft.Common.ServicePrincipalSelector",
+                                    "toolTip": {
+                                        "password": "Password",
+                                        "certificateThumbprint": "Certificate thumbprint",
+                                        "authenticationType": "Authentication Type"
+                                    },
+                                    "defaultValue": {
+                                        "principalId": "f3b07414-6bf4-46e6-b63f-56941f3f4128",
+                                        "name": "Microsoft Power Query"
+                                    },
+                                    "constraints": {},
+                                    "options": {
+                                        "hideCertificate": true
+                                    },
+                                    "visible": true
+                                },
+                                {
+                                    "name": "dataverseServicePrincipalObjectId",
+                                    "label": {
+                                        "password": "Password",
+                                        "certificateThumbprint": "Certificate thumbprint",
+                                        "authenticationType": "Authentication Type",
+                                        "sectionHeader": "Dataverse Service Principal"
+                                    },
+                                    "type": "Microsoft.Common.ServicePrincipalSelector",
+                                    "toolTip": {
+                                        "password": "Password",
+                                        "certificateThumbprint": "Certificate thumbprint",
+                                        "authenticationType": "Authentication Type"
+                                    },
+                                    "defaultValue": {
+                                        "principalId": "7f15f9d9-cad0-44f1-bbba-d36650e07765",
+                                        "name": "Export to data lake"
+                                    },
+                                    "constraints": {},
+                                    "options": {
+                                        "hideCertificate": true
+                                    },
+                                    "visible": true
                                 }
                             ]
                         },
@@ -302,12 +318,15 @@
                             "visible": true,
                             "elements": [
                                 {
-                                    "name": "infoBoxProcessingService",
-                                    "type": "Microsoft.Common.InfoBox",
+                                    "name": "infoBoxsynapseDeploymentSettings",
+                                    "type": "Microsoft.Common.TextBlock",
                                     "visible": true,
                                     "options": {
                                         "text": "Specify the settings for your Synapse workspace.",
-                                        "style": "Info"
+                                        "link": {
+                                            "label": "",
+                                            "uri": ""
+                                        }
                                     }
                                 },
                                 {
@@ -345,7 +364,7 @@
                                     "type": "Microsoft.Common.TextBlock",
                                     "visible": true,
                                     "options": {
-                                        "text": "Select the Purview account to which you want to connect the Synapse workspace or Data Factory.",
+                                        "text": "Select the Purview account to which you want to connect the Synapse workspace.",
                                         "link": {
                                             "label": "Learn more",
                                             "uri": "https://docs.microsoft.com/en-us/azure/purview/overview"
@@ -358,7 +377,7 @@
                                     "type": "Microsoft.Solutions.ResourceSelector",
                                     "visible": true,
                                     "defaultValue": "",
-                                    "toolTip": "Select the Purview account to which you want to connect Synapse or Data Factory.",
+                                    "toolTip": "Select the Purview account to which you want to connect the Synapse workspace.",
                                     "resourceType": "Microsoft.Purview/accounts",
                                     "required": true,
                                     "options": {
@@ -393,8 +412,9 @@
                                     "type": "Microsoft.Common.InfoBox",
                                     "visible": true,
                                     "options": {
-                                        "text": "The role assignment is optional and will assign the Service Principle of the Power Platform Enterprise Application and the Service Principle of the Dataverse Enterprise Application multiple roles on the Data Lake. Please visit the link to learn more about the required role assignments.",
-                                        "style": "Info"
+                                        "text": "The role assignment is required for setting up a connection between Dataverse and Azure (Storage Account and Synapse). Multiple role assignment will be added to the storage account at account and container level. Please visit the link to learn more about the required role assignments.",
+                                        "style": "Info",
+                                        "uri": "https://github.com/microsoft/industry/blob/marvinbuss/dataverse-integration-template/healthcare/solutions/dataverseIntegration/README.md"
                                     }
                                 },
                                 {
@@ -406,7 +426,7 @@
                                     "toolTip": "Enable role assignments.",
                                     "constraints": {
                                         "required": false,
-                                        "validationMessage": "Enable role assignments of Machine Learning MSI and Synapse MSI. Please read infobox above for more details."
+                                        "validationMessage": "Enable role assignments of Power Platform and Dataverse Enterprise Applications. Please read infobox above for more details."
                                     }
                                 }
                             ]
@@ -417,7 +437,7 @@
                     "name": "connectivitySettings",
                     "label": "Connectivity Settings",
                     "subLabel": {
-                        "preValidation": "Provide the connectivity settings that should be used for the Data Product.",
+                        "preValidation": "Provide the connectivity settings that should be used for your deployment.",
                         "postValidation": "Done"
                     },
                     "bladeTitle": "Connectivity Settings",
@@ -446,7 +466,7 @@
                                     "type": "Microsoft.Common.InfoBox",
                                     "visible": true,
                                     "options": {
-                                        "text": "Please select the Virtual Network of your Data Landing Zone and select a free Subnet within the Virtual Network to make sure that you have proper outbound connectivity as well as DNS name resolution in place. The subnet must have 'privateEndpointNetworkPolicies' and 'privateLinkServiceNetworkPolicies' set to disabled. This is already pre-configured for you in the DataProduct and DataIntegration subnets in the Data Landing Zone Vnet. In addition, Azure Machine Learning requires a subnet with the 'Microsoft.Storage' service endpoint enabled in the region of the Data Product deployment. This is not enabled by default and therefore must be setup manually.",
+                                        "text": "Please select a free Subnet within the Virtual Network with 'privateEndpointNetworkPolicies' and 'privateLinkServiceNetworkPolicies' set to disabled.",
                                         "style": "Info"
                                     }
                                 },
@@ -464,7 +484,7 @@
                                     "type": "Microsoft.Common.DropDown",
                                     "visible": true,
                                     "defaultValue": "",
-                                    "toolTip": "Select the Virtual Network for your Data Product.",
+                                    "toolTip": "Select the Virtual Network for your Deployment.",
                                     "multiselect": false,
                                     "selectAll": false,
                                     "filter": true,
@@ -489,7 +509,7 @@
                                     "type": "Microsoft.Common.DropDown",
                                     "visible": true,
                                     "defaultValue": "",
-                                    "toolTip": "Select the Subnet for your Data Product. The subnet must have 'privateEndpointNetworkPolicies' and 'privateLinkServiceNetworkPolicies' set to disabled.",
+                                    "toolTip": "Select the Subnet for your Deployment. The subnet must have 'privateEndpointNetworkPolicies' and 'privateLinkServiceNetworkPolicies' set to disabled.",
                                     "multiselect": false,
                                     "selectAll": false,
                                     "filter": true,
@@ -688,7 +708,7 @@
                             "type": "Microsoft.Common.TagsByResource",
                             "visible": true,
                             "resources": [
-                                "EnterpriseScaleAnalytics"
+                                "DeploymentTags"
                             ]
                         }
                     ]
@@ -701,11 +721,11 @@
             "resourceGroupId": "[steps('basics').deploymentDetails.resourceGroupId]",
             "parameters": {
                 "location": "[if(empty(steps('basics').deploymentDetails.locationName), '', steps('basics').deploymentDetails.locationName)]",
-                "environment": "[if(empty(steps('basics').dataProductName.environment), '', steps('basics').dataProductName.environment)]",
-                "prefix": "[if(empty(steps('basics').dataProductName.dataProductPrefix), '', steps('basics').dataProductName.dataProductPrefix)]",
+                "environment": "[if(empty(steps('basics').deploymentName.environment), '', steps('basics').deploymentName.environment)]",
+                "prefix": "[if(empty(steps('basics').deploymentName.deploymentPrefix), '', steps('basics').deploymentName.deploymentPrefix)]",
                 "administratorPassword": "[if(empty(steps('generalSettings').synapseDeploymentSettings.administratorPassword.password), '', steps('generalSettings').synapseDeploymentSettings.administratorPassword.password)]",
-                "powerPlatformServicePrincipalObjectId": "[if(empty(steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId), '', steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId)]",
-                "dataverseServicePrincipalObjectId": "[if(empty(steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId), '', steps('generalSettings').synapseDeploymentSettings.synapseDefaultStorageAccountFileSystemId)]",
+                "powerPlatformServicePrincipalObjectId": "[if(empty(steps('generalSettings').servicePrincipleSettings.powerPlatformServicePrincipalObjectId.objectId), '', first(steps('generalSettings').servicePrincipleSettings.powerPlatformServicePrincipalObjectId.objectId))]",
+                "dataverseServicePrincipalObjectId": "[if(empty(steps('generalSettings').servicePrincipleSettings.dataverseServicePrincipalObjectId.objectId), '', first(steps('generalSettings').servicePrincipleSettings.dataverseServicePrincipalObjectId.objectId))]",
                 "purviewId": "[if(empty(steps('generalSettings').dataGovernanceSettings.purviewId.id), '', steps('generalSettings').dataGovernanceSettings.purviewId.id)]",
                 "enableRoleAssignments": "[steps('generalSettings').generalSettings.enableRoleAssignments]",
                 "subnetId": "[if(empty(steps('connectivitySettings').virtualNetwork.subnetId), '', steps('connectivitySettings').virtualNetwork.subnetId)]",
@@ -714,7 +734,7 @@
                 "privateDnsZoneIdKeyVault": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdKeyVault), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdKeyVault)]",
                 "privateDnsZoneIdSynapseDev": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseDev), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseDev)]",
                 "privateDnsZoneIdSynapseSql": "[if(empty(steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseSql), '', steps('connectivitySettings').privateDnsZones.privateDnsZoneIdSynapseSql)]",
-                "tags": "[if(not(contains(steps('tags').tagsByResource, 'EnterpriseScaleAnalytics')), parse('{}'), first(map(parse(concat('[', string(steps('tags').tagsByResource), ']')), (item) => item.EnterpriseScaleAnalytics)))]"
+                "tags": "[if(not(contains(steps('tags').tagsByResource, 'DeploymentTags')), parse('{}'), first(map(parse(concat('[', string(steps('tags').tagsByResource), ']')), (item) => item.DeploymentTags)))]"
             }
         }
     }

From aa1a29a2290ee73eabae7501bfaeeddd95f4901c Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Sun, 3 Oct 2021 23:30:51 +0200
Subject: [PATCH 19/22] update deploy to msft button

---
 healthcare/solutions/dataverseIntegration/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
index 6bca59c6..9c7d1117 100644
--- a/healthcare/solutions/dataverseIntegration/README.md
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -54,7 +54,7 @@ Also, the reference implementation includes a set of powershell scripts to autom
 
 First, use the "Deploy To Azure" Button to setup all Azure related services. Go through the portal experience and specify the details of your environment to successfully deploy the setup:
 
-[![Deploy To Azure](https://aka.ms/deploytoazurebutton)](#TODO)
+[![Deploy To Azure](/docs/deploytomicrosoftcloud.svg)](#TODO)
 
 Please look at the outputs of the Azure deployment and take note of the Synapse Workspace Id as well as the Dataverse data lake file system Id, as they are required in the next step.
 

From 607f681bbfa2cedb0464b0d4dedd6bceebacd8e0 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Mon, 4 Oct 2021 11:20:09 +0200
Subject: [PATCH 20/22] Updated URI for deploy to MSFT button

---
 healthcare/solutions/dataverseIntegration/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
index 9c7d1117..0fb3506a 100644
--- a/healthcare/solutions/dataverseIntegration/README.md
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -54,7 +54,7 @@ Also, the reference implementation includes a set of powershell scripts to autom
 
 First, use the "Deploy To Azure" Button to setup all Azure related services. Go through the portal experience and specify the details of your environment to successfully deploy the setup:
 
-[![Deploy To Azure](/docs/deploytomicrosoftcloud.svg)](#TODO)
+[![Deploy To Microsoft Cloud](/docs/deploytomicrosoftcloud.svg)](https://portal.azure.com/#blade/Microsoft_Azure_CreateUIDef/CustomDeploymentBlade/uri/https%3A%2F%2Fraw.githubusercontent.com%2Fmicrosoft%2Findustry%2Fmain%2Fhealthcare%2Fsolutions%2FdataverseIntegration%2Fmain.json/uiFormDefinitionUri/https%3A%2F%2Fraw.githubusercontent.com%2Fmicrosoft%2Findustry%2Fmain%2Fhealthcare%2Fsolutions%2FdataverseIntegration%2Fportal.json)
 
 Please look at the outputs of the Azure deployment and take note of the Synapse Workspace Id as well as the Dataverse data lake file system Id, as they are required in the next step.
 

From f1d86fd75bff53cfbe706677230c6f65b5bbc502 Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Wed, 13 Oct 2021 16:13:45 +0200
Subject: [PATCH 21/22] updated parameters and readme

---
 healthcare/solutions/dataverseIntegration/README.md   | 2 +-
 healthcare/solutions/dataverseIntegration/params.json | 6 ++++++
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
index 0fb3506a..90d25740 100644
--- a/healthcare/solutions/dataverseIntegration/README.md
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -39,7 +39,7 @@ Our tests have shown that similar requirements are existing for the Synapse work
 
 The Storage Account, the Synapse Workspace and the Power Platform Environment must be in the same region. Otherwise, the "Azure Synapse Link" feature in Power Apps will not work. Also, all services need to be in the same tenant, subscription and resource group.
 
-The user creating the connection requires Owner or User Access Administrator rights on the two Azure resources in order to be able to assign RBAC roles to the Service Principles of the two Enterprise Applications. In addition, the user needs to have the Dataverse system administrator role in the environment to connect Azure and Dataverse successfully.
+The user creating the connection requires Owner or User Access Administrator rights on the two Azure resources and Synapse Administrator rights in the Synapse workspace in order to be able to assign RBAC roles to the Service Principles of the two Enterprise Applications. In addition, the user needs to have the Dataverse system administrator role in the environment to connect Azure and Dataverse successfully.
 
 ## Reference Implementation
 
diff --git a/healthcare/solutions/dataverseIntegration/params.json b/healthcare/solutions/dataverseIntegration/params.json
index b2051fa2..30fde1fb 100644
--- a/healthcare/solutions/dataverseIntegration/params.json
+++ b/healthcare/solutions/dataverseIntegration/params.json
@@ -40,6 +40,12 @@
         },
         "privateDnsZoneIdSynapseSql": {
             "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Network/privateDnsZones/privatelink.sql.azuresynapse.net"
+        },
+        "privateDnsZoneIdBlob": {
+            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Network/privateDnsZones/privatelink.blob.core.windows.net"
+        },
+        "privateDnsZoneIdDfs": {
+            "value": "/subscriptions/1f6c9a98-a387-420d-853c-9d27cfda0f33/resourceGroups/mabuss-dataverse/providers/Microsoft.Network/privateDnsZones/privatelink.dfs.core.windows.net"
         }
     }
 }
\ No newline at end of file

From 0e49a214e86d6b4340c2ccce67d92443b3d5a0af Mon Sep 17 00:00:00 2001
From: Marvin Buss <marvin.buss@gmail.com>
Date: Fri, 14 Oct 2022 15:57:14 +0200
Subject: [PATCH 22/22] Lint

---
 healthcare/solutions/dataverseIntegration/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/healthcare/solutions/dataverseIntegration/README.md b/healthcare/solutions/dataverseIntegration/README.md
index 90d25740..851ceaea 100644
--- a/healthcare/solutions/dataverseIntegration/README.md
+++ b/healthcare/solutions/dataverseIntegration/README.md
@@ -56,7 +56,7 @@ First, use the "Deploy To Azure" Button to setup all Azure related services. Go
 
 [![Deploy To Microsoft Cloud](/docs/deploytomicrosoftcloud.svg)](https://portal.azure.com/#blade/Microsoft_Azure_CreateUIDef/CustomDeploymentBlade/uri/https%3A%2F%2Fraw.githubusercontent.com%2Fmicrosoft%2Findustry%2Fmain%2Fhealthcare%2Fsolutions%2FdataverseIntegration%2Fmain.json/uiFormDefinitionUri/https%3A%2F%2Fraw.githubusercontent.com%2Fmicrosoft%2Findustry%2Fmain%2Fhealthcare%2Fsolutions%2FdataverseIntegration%2Fportal.json)
 
-Please look at the outputs of the Azure deployment and take note of the Synapse Workspace Id as well as the Dataverse data lake file system Id, as they are required in the next step.
+Please look at the outputs of the Azure deployment and take note of the Synapse Workspace ID as well as the Dataverse data lake file system ID, as they are required in the next step.
 
 ### Connecting Dataverse and Azure Services