From 6035d1f130efaa3ba845c6620876c64343bba615 Mon Sep 17 00:00:00 2001
From: chnliyong <chnliyong@users.noreply.github.com>
Date: Sat, 10 Mar 2018 10:46:28 +0800
Subject: [PATCH 001/112] python-gssapi libkrb5-dev for gssapi/gssapi.h

---
 requirements/deb_requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements/deb_requirements.txt b/requirements/deb_requirements.txt
index a0ddb7642..f4131a3ea 100644
--- a/requirements/deb_requirements.txt
+++ b/requirements/deb_requirements.txt
@@ -1 +1 @@
-libtiff5-dev libjpeg8-dev zlib1g-dev libfreetype6-dev liblcms2-dev libwebp-dev tcl8.5-dev tk8.5-dev python-tk python-dev openssl libssl-dev libldap2-dev libsasl2-dev sqlite gcc automake 
+libtiff5-dev libjpeg8-dev zlib1g-dev libfreetype6-dev liblcms2-dev libwebp-dev tcl8.5-dev tk8.5-dev python-tk python-dev openssl libssl-dev libldap2-dev libsasl2-dev sqlite gcc automake libkrb5-dev

From 4fd83bd5be712dbe4b152137f052d50245062323 Mon Sep 17 00:00:00 2001
From: Nidhoggur1993 <Nidhoggur1993@users.noreply.github.com>
Date: Tue, 3 Apr 2018 16:02:51 +0800
Subject: [PATCH 002/112] Update make_migrations.sh
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

增加自动合并而不是在弹出warning结束
---
 utils/make_migrations.sh | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/utils/make_migrations.sh b/utils/make_migrations.sh
index fdf1f6efb..b6068a1ca 100755
--- a/utils/make_migrations.sh
+++ b/utils/make_migrations.sh
@@ -4,3 +4,5 @@
 python3 ../apps/manage.py makemigrations
 
 python3 ../apps/manage.py migrate
+
+python3 ../apps/manage.py makemigrations –merge

From 0962a16b2247d027d175dacecca4652c00426411 Mon Sep 17 00:00:00 2001
From: BaiJiangjie <baijiangjie@BaiJiangjie-Mac.local>
Date: Thu, 26 Apr 2018 19:49:09 +0800
Subject: [PATCH 003/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E9=A6=96?=
 =?UTF-8?q?=E6=AC=A1=E7=99=BB=E5=BD=95=E6=9D=A1=E6=AC=BE=E9=97=AE=E9=A2=98?=
 =?UTF-8?q?=E5=8F=8A=E5=BC=95=E5=AF=BC=E9=A1=B5=E9=9D=A2MFA=E9=85=8D?=
 =?UTF-8?q?=E7=BD=AE=E9=97=AE=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/i18n/zh/LC_MESSAGES/django.mo          | Bin 32826 -> 32913 bytes
 apps/i18n/zh/LC_MESSAGES/django.po          | 269 ++++++++++++--------
 apps/users/templates/users/first_login.html |  20 +-
 apps/users/views/login.py                   |  10 +
 4 files changed, 181 insertions(+), 118 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index ebfffbfe748496f4dfd19f8c4ebf42f48a27d9ce..4da36e76e728971c74b595652700d37f1d8eae61 100644
GIT binary patch
delta 10727
zcmY+~37k*${>Sk%m@&)@!x%d=#;h2Ou?+@8$ewIhC?nf28D{L{SSy+?`lTXbbR$vr
zEmSH}){?!8y4I*HH!Z09djHPH|9|g!Jia}@pU?T8@ArGY-*bMypLz7bv_cD}7jn;)
zF0#<!2rJ|`m2p<M<Lst>BU)L<xlq$_=Hhoa4YO-G&anW;`4N}mp4!CZpQ`IPk(ip|
zI8oRhn_(8F<4R1#i)L6o#|d&A*J(&a1E*tAe8M~73^cQ_B>7QT7^k6sqF9=^0E2Ne
zR>IvFf~PHi31f(VLS0uX)p3eoZ7j<8PAU~{+G&bquoD)?Ofwrx5sybrWDbVmB22<n
z7>HjXi{YF^O(3Yg<3wO-RQq_;!1Yn>(=e3rofcF|U?(h#eNi3cT7D{q62FA%XtAAt
z2Q|^nsOvw%Vt5$U{uJuQE}>TDE^3QPH*lPan20WW;IyVv4m+R*9*F9AB<lP`)Xb-$
zR$?}4px3Y}79iX2e2i*;%g+CXy3;}py@>~-&X+}Pb(My!zdDK|p^ocddCWlV^%JP`
zPnyHbTyqL)@1MgooQE3V3)BEdQCoHj)$S_R!CR;ss@910*9_wuc^A|&>tkE;%}`4@
z6V=gtR7cBE1FS}E$p(u*LT$z8sHH!FW$+4WW$&Y|3vTT76Yf&c-c&%XKm*i(?XVp7
zK&?PFYM^nb0cN4v`LHxDM_s?k;=QN=Pg(vVYD@2;CJ?}KX@YJsDjJ|7YDr>I9Vemg
zw4uc<P#tzcUHCUthgs$rRC^aSkrz+{Ek>=}3e?-M5w%78kp5ifkTp1MC$6C`you`Y
zH`IjzO}q(4qJP4u3B+2y4yxn&sFiApx~@HH;{8$mWnm4>^~dc0QYv}|R-*Q5Ehga}
zR7clQ9siEHbEl~{!BVIWE1=HDSe%6FuO8|~8l(DYiP6{vbzP3m>;0cVMKhd+>L}l0
zpScXRC2LR}ZAUHfKJ-7`sDZAc+TBEL<pb0wUZG~*ibbIYPC~6rJ#_VuwWXqm=t=B{
zqfxKPVbnl>q9z#52e~?~jOwTwYQP$(J8p#9nskiEcF0$WGtwN5`Y0Y_zLw7Z*Cp`*
z2@QB1+he8X-bxHc4UmnRz(m}Evr!Xi(ZU<}5!Ce^P!pSE&P1(PKI)DaqbB%1s=w_m
zT<;<J%o0aX57k-J0GCmFe%;RBM@=ZWr8jUSs(mHY*2P<#jG9PejKmBqiM_Eb4n@7j
zQ(Y?R@Fmm|E=F~@9M!=ZRKv}v{HNw&)PSc^=PzJ2{2BGhSt`TZx=2(%38)*Xi&}{c
z)E2otsc7$~U>wdvHQa(4U>|C!4xuJ^8uhT9N8QmCRENK!mNul7w{nrF>nfsdFy8X1
zsCJE!iMdWIJJAt!hmWBK>Wg~#GEo!C!-_Zy3*j=<L{^}#dlxm(7Ss)Wf?Ap5sCE}o
zD{%w0LcjR)F7GuJT@cXP8@LSW&MTrWsD|pO2G+qe)I*hpdV9vBCO8i@;pG^E8_naW
zmHG`UVeliKu^7nsPD@p=Eo#6{s5|Y6n%F2zz?m3}Yp@6&MYTU}o<mLS3To+pLEU*k
z8*c)|Q0*(Awjc&wEnO{Z&<N`hw?o~@BrJmYs87ZPs3l%$Zo)v~k5L`&!}53(HSjgm
z%G^TTP@%To%2q+GXlz^dUo%Z5q1U7ZD(;Din2A9+7oWfds0(kH_b`yScsp-`;h0Js
zhicac^|}qiTIgaGT#LG~FWa&Hg{d4N5roH3cX$Rhkt?VzxP!XGphrE!QA=IX;zYBa
z<(pwJ=R26)QO`g>)Wot;<4ty{XsKtQ27U$gIu)P>*kbulEq@d>v5TmQ-L&(C+k1Bu
zj@p7qWc!`ksD~~O^{~!E^}7m-qPvBPX0+Qph??nH)Sh3rywky(SV;^fUmbI>7LLXx
zs18eX^v;(>ZA}zv!f}{@DOeo)AS>WHgQ)1j5vYmeVIs~z?a><4fa_69wga_7AETa`
zZ%}*s1BPI5CvQc|nDMBUYK(dqJ7OsI!w|-IvZ&~x8H+V>H5S9;=6TeG*Dw_SKrLa>
z&fXnHq9$0$j76<rGKOI~`Ugh!+YdFNAy`W9|3oU$_#*0#*P@=<4XBRxo2O9E%2m_{
z%pa&Ns?vq+z<M|adtp2tz}k2lwW8I!dUil<MIO41sJuaiUs=vE)K-K&=1n9LwO18!
zE5@N7u5Ymf{(_otk#62caxv7~6pA_@j@pta)YjERZCyRo*0t@%`s;(CABj>p9<{`C
zP)qbG>Zx6gVYmm?@ex$Jb666uV=266aoFSDmR3QnP&ZV6Ls0D}q9!)yan@fKE+nBl
zUuCXC?bSBa9qvJ0un#qnuTgh!0X3n!sOtl}d!KY+sFh1ZwNJ&tm|^)<sQxy(RMf$T
zn2Lum0t0$@9YkU{aWrb8DX1-Ijk=S5sE)Ex6P|z?a0aU1`IcXXrHNOgR(uz#KldaR
z4R{Up6hA<{w?RF<I}Am26obmAp!Tv6>W-V+`L?KjdZPNtLTyp5>7uU7$7<-q_Im%f
zP|*N?S%VV2_@*O{MCBJ@=K#lf2PYEW?akfcsJ}VRUh;Qv5$@m%VjKDH{DRe;hV=LT
z5K$Ft5I4tmn1z*bgJ1UlFcr=0I_kpP76(4*<wH?R8-co`DweNdaSBF~Z*Fl9GZVE%
zBQ2h4@rxF}fkArz-%$nEnOn`>r~yASzd}v$oOug1u_8}-?{x|EZw*!@-yC&)f7I3t
zM?D);(Z3bw|M$Po5{pq66qxUuJ5hJC-{MmiUqVgb7t8-;h7R!hsbI#Nsi=pyCF(}{
z3}FA2$R?qIXQNKMZ1LNunQpXrhsFC)?G9P~0_vgq5q0M!Grj9-n+?onsBv0b{8*;z
zJ*~a%!~j&s&!8qY4fTn(2z94R%~j?Gb0=z|d$B$qv^Zd(cU>@Q1xusa#b85BaxF2y
z9BPg<$KpsDPC-rVI_eJoG((>DIxKHSnenK0$z~JO1lpl)q_^p2Qqhb?pa#e_XQMiJ
z-Qu@V7jC!wC*~3JTh#T}%=>1^L0&&Gs0q|T_0t0R{BWK2cA}e|$VC5yP!q^CT{GWY
zgc@+A#XHP>sOyhee8%D{sHguY)I{$4^Xz}<U~ixZGaA)FvRU73in_3s#gC&V*vA}V
z`8;!y<)@>r`@6+&+W9q@!1&HaOPn#kLwz=1#cKEmYM{zPyon{Dz7y(NoPj$3sKq_a
zeyDz)MlJbRR67^7a{1`$#4;*DxY}HAZbM!0p?SbOWnMzv*=>sp4fXmdiMp<=#nn+C
z!8K6diajkqU?}^qU#CM!=)IkZx^M;R2gy3r3S2|YIAoZ2zA9?sHO&U7iL}5V?1~zw
z7wR?6#6md9d=_gHPaDSitFn$nOFU;rW$|NycmS%y&ruUQZ1GuKMEt$QQ-*u(W?}~U
zxfUNZkD(@b26ZDpSpI=aMI9Fz;aLhbU{#CbEUt&TFb#`iC$qPmABgHF%N%FUH0PsM
zVkxTstrokxt-%S@0ROTEcP;+_gUJ`q_6CSBqs?Tq3F`WGSOcHH!Z;g?;T+WK=R>tC
zKptY(*-Ryl#9lAqT*pM>`>1cNxM#c>r(q~@ON%?3J<PtSui=5Hb`vZ=+v0rGL>8HE
z`Sa}md)D9s^zXIBht0F78DB-ccK0j}<#SmBMVYnCG_x)0y6&jGAA;(C9BLxZqW|yz
z&)bPtP;bK<7H=~@H20!9Jc!ltJZb`kbG!k<QF|P1ahk>L(Z4e2Um4Umv(Z(hz)tK&
z&G1W$zd~Jj&f<TgUekb4-fJ0+YTpWVNA1n-W`A=iYT(hR8<>i^Zow$_Uk}&o*08`D
zu0aj7-Qts|3ofEMxNiAB&5+UF`SPfVM4?t9$?~mG*R@CW+t2coN9*&S#0(O09+t!<
z=2}!oyHFE2jx+IFRQmzBp3k7pPeNTk9rgXbz|QZ-(!|G6Z^u<szY%VpcVR6v)og+q
zAj9l}>Y%U1BT=6Nlg;PM1?CdeL{_0zWShCiJYc%Vsc7csQ3GB!@1O?MzbKWDFr!iV
zWQ$v(2I_2ae^h_NQFk~R`A~J{T71V09qXT%>%>vf1$9sZH8fkBkD2|=;pTXA7N&FE
z0`mx}zp!y$e`PR`xEgB360jE5^Pgw`pQ54*vdujI3HA~r$v=-paH-{2pxUoPt;AN#
ze}TH=6Bhq$@qJXg$nl<uW>fUP|6Np}L0?S3VW@{>zU6nC`_1E6g7e>_mi`uMLID#z
zgHipJG%K4)W<yl_*66BX2RqRl^>sVQ8a#*PiC;psTZy`pO&E^*FbYqiUaMa*2FvpA
zv}8;}|JOT~C!UGAehF&g>n8I4m!<L%iAV7Sw!x@L-cvgmHPal_1jga(I1|fY<;h+?
z1=X%OYOmX%zI-}j2zEui1$|NN2BRjBJ(>MiWr`*8(LY1ffa@&3%kl>;f8M-d{%!_M
z@ve(7qcMqok}d9y>VJ^M<6W!FLQP}=YNiF|8q|!pn7hnRQ4{<U)!|9h^*^9KQU5^o
zQ}|hLMZ!>97J*YS7InS*mQ~iHI@pa(@DQrwU|OrAN~rU3W&_mQ(Z=GwsCFYz9gj6<
z*!g)DFSB?pa=q*9vc%Ws_o$9;qdK~enn*F*s>-Ont%Yh=7qvo7Q0+6!E|%|W4n(!j
zvN#WG>JNUCsOV{3iR$1R^E=eT_7m#D=Y6N6D}{X>K$Sy3S!VkJsztc}wv0b*|9Owx
zH0s0g66I6MI^vTUKv_xA8&L#x{Dyqs`u{XDnEHN75&dH2I7_)e+yd`YzM~#V(ZTOx
z*V$pg7BA;qz*Cev<Rd8R=TFQ*9iLO5MA4B(`O;tGZ6Vi?dVhQq^R10mS1W#$_)n~D
z`H2`Fz?ogX$e5_)GlY4Rzf&sEtR3Y(bsd2?-Rg=z@MXqCR2xf159M8)t2D=}l#;}6
zP#X9a#zeUXskJ5h4Zeg=V?9bRrH*oxzT_VsN2&B8SAefkw6{9Ok^2VkQS=9+`IK$c
zk5RT$_E3H$H-(~)VLOUDhp26$ob{zwkBa;Ur~mtCOdRMNUA>(9D7A%@&75v&t=^}u
z&+_+)zo&d=`KtI&%Fh;$!cS=TrNv)i3UMywN9s2yPuMw9|95=&|G9W)A?c4P14)*`
zo7feLQXU@te95up()V%ZI^`|OVv3HQSj?We*3?^h>Hqofi{y*?rpK0xe3BafG;oGt
zZ)<bP_g-xEjJjl6P;?}jFQ7h_bkwB&8f5_W$FMhLl}>P6ro7@S6<58+P_hY>ePkX%
z9k1d|uj>D=-pb4X-;;4=dp70Nd26O~GpLuh_!kW2#&%-}<r7LA<!65<{I3ku?@@I8
zMbS6N3`&mgi@2!HS)BQfNXNUB&Xhv7Ox={^xJsKpDCa2Wi62n-^Mdm(aVD-peGk3t
zYY?B{ZX<eltfl@U!B3XEL%kFAViZ1ioHeNLdL7p&A5prID??dCJqlY<iZi1F#D}Oa
zLmh8<IL*kdrp^bclO5pr&c;{h+=Sc}ijFa;55Ac=gz_BqviJj~A|;v9fZXqxN|{E9
zrfem5o6^UZkr0u5jf{>3=5Q}`UMJQU%I_Bc1AV^f3FQL6<;)4+(u8tp1E|#{pMeJ`
zZ&Q{MzfI{%eKchqr7uOt9`iZhj|p|$O%`1=Q*gf5&?#&?RfqTlWxchr(@r_!$&{TW
zw%{5&vEKX%+mK(0VaV62^963D=(waWr$H8UNBvR^_Pv*w5U0=G(`3>p&r>c_bd)fc
zVY=`4#Oh(UsCD#CIy-$yNtLP`vo_;VUw+Lf-%>gdKjX_xDwo!oT9RF}7(XUXx3~xO
zhsOpg1;me28d5g<HY7y^ZlKoO_eD~IyPVn*Yutspj)9aB)K~Z;@6YV2K1;5<<!)PB
z3!U$&jHS#YAH<zEvh&;V9ZGeJ=io%zCE^X9gq#|I>Bp(-|35rOzB#2m@kOjnX-Qc@
z{P1{zN?FP~lw9&7eH&^-WwxUh`(Le=TK$Mwj@G5APo+drA5ED+{a<$eDGXo+50D=|
z&W{v_x=V?ny4sggvu2+qL=TTMR5lWSWVsNoj<l19$^AuHYjIm^(}%bXWfpOL${gx*
z@y$(JYVIu`{q(S$oV>x&V}?-%=RT7cojGz)^wT*b2W5@P${CqgdsFTsy-F8t7@d;V
yB&EToBfajGud;62wP|xMzqtC+{QS$a=3QP|aCz;AmtM}Na&hO@P5X0l!~X-A=JNFb

delta 10648
zcmY+~34Bi1y2tUIGzl?FBr!)Mkwg#?V~D9@Y$&CqRTVQ;q$q0G)S>86^sSjz%^e&f
zsuNmmwNkAbVydCl);ye2imKE5`@j3?z31-FXZ5?DXRW=~+G`JQ+H)363;bwmpnE1P
zXraSVBG7Rv<D@c<vy=L%YRWp!fn>*-g9mXc_O9hPhXWkvG_J(FI>h9=)ODN)j7@c%
zXl#PbFdH*)5hh}x`2a&4$8~Dd^Cqs1Md;8GX>huk*;tymFFu5$PzxP{VYmQ`;##bP
zo3J<*SpEoBCq9EZFCfivg0LzUVSXo;3K#7pV>xVw#jvZ{8_N<8MlEClmc-eZgo`m4
zcO#qOe1%%T?--7O^}YU)sEOlH{gbc+^E)Y2N?|jM#7?LI`dNMimLQ&tns|=2FF`GI
zE$aNu7>c`4{r93S><DUS&ZBNoU<1dgh~?4MR;N*k!gSQc-B1JfLA4J>t$Y+}C&r>C
zdI_uI0_65PTTuPaTKh%RmEJ@x{I0c!H1uwD$%gE|28tk|fupfJrlRh3M^t-fvzOV=
z9FDs8&tnsGQ49DG^(=jgx@CJ&{f=V_o<&_y*+%TYRv6jHJE5`}hi%E%LT%+})Id{F
z1I<TGuoQJ=Z(6(=bt~RSZT**64v(RB_A2VUyQpy-x3PC`LQy*qkD9O%MqwM&4)jJ%
zGzc}p7*xOM7>4sv=dZE&J=BDIEnkSbrRPx#xPe-rdyk4HD8~M2OUj`Ju7Fx$4U1Dy
z12#jQ*d8@twmAURe<W%l<53gMLG9eDsJCG?>K1KB#&eyW)}g=}PM}Ww5jEgN)QLAx
z3k*)T1)~;F4wa8a4IGEssbti7O;8KZLXDS=HL;&R=Kjy6qGw<c>RzqDB+Nq%bP_f2
zCDfJwidtYmQ*XdfRC}1k6;R_<NA*iYjZ+t^VRO_%o>sfw{~=Vg!cnM!CRse)oQJw4
z%TWVuL~ZeQ^grFGiH@WC{fOF;Yp5^YP1G$e&G%RnS3vDdb#(QRHKd}4s5AD)9Mo&F
z3pLSo)B^P(*T5xE1C>QhSP^x_38;x`V-0MC{FFF-%pBCGc!2p*2KT=%iML5;!jsqm
zi#PXnq6cb%-lzo(#Sd{TY9T2tyou|h&QC`zY?wJ3wPTY|S3C!`z}HdZZEWFs579PD
ze1dwY_Ms*?in`|~t^F!$L3dGC9Ng0DUmSJoA}y|hT1X;BU@GcXwZlm4iF%DkxKuRY
zWYmCjPz#uk8elo9<62Zc-`s_oumIJ50Auh6)R!}$m3QlcQR76RE~FZ2CsI+j$jzjp
zdp{iGl|Xe|hniqJYO8jl7Fd9K*uFzu(J|D37f@S!AGLGAt-bS#p)N2Im5)XBOGFmt
zI`yofDe4Maq9*Eudic7c7Star;us9Xd8mcFiaKu@YNB<h3)+g>nLVg}g{Yl4h1#KW
z{=Cb3O+_c%KusL<uy^IfP$!f{4O9{JkR_oWs%+HTGZ?i%7q#H|SRGfJdr&)d5i8+c
zvs@eIV}7TuD%cP;VKdZ~W}+6>7vpd=2H_G^zm?{C)Pgpn|5l-{xBxZrK~(><sI9+@
z+Ob>cs>5GY>S5_j?+RLD5OH_Z7cm>PwIj@l7)(41HQ*~)9+#jd&O`0Uho}qr8ucul
zL+#{M)I#rPa{u*u6lv=vs$e2<66%C*_ylI7PTXdGj={u-PzyYcX?V@rW7>JISzW9}
zz8zM<F{lfB6(7RI?b!biD$7ae3Rk06wi&hcAET~tzj++B)jwJMtNDlJgW7vr9cETS
z?Qk6G0_vmYdl>bsbabg`;@+s&Xeere$(DcF@=H()dl$8^53GG3>WYq|Zoz5fZaTlC
z9=4_(yoa<WYTS`n1Sg{w<j%0lYp9j3L2YTi<@cf%b_|Q+6&#7TFc$}O^aebNYCnUz
zH5X6|zJ>{S4~t<;CvOL8Aq#PxG%8w2Q%uB;s4E(c8gM*n%ch|gG7I(0tU%q<tymln
zptkgsc^$P=&LiH#7>?TMI8^^sOk;j0gGw@qTnxpP<_6SLoQEawGt?G-hq}Vks0IFP
zUPbNTZB)PDESnfLZX9Ysbx;d!h1K-_KSo7YJO=gSFab5td~+4*ge|BK%V(%tbPi+j
z4;+J4JA2=BAJ!rM2(_b^%&;!rt!Rq;{ps{am%pl<<y7=g96>GQH0oacgxm2N>fu`Z
zsCTP&qWXP<fp`%0Iu%;`anu%HK;63EP`B<6)U7Mk)%z~Qb!Go`Wi3dQz^<q*>Vx{U
z=3+^ljiqogs^5Anjrmv>KezY@rV*b*?NEhow&ke)txyZ=iaPJ9ZtTCVd?X1u4t1|w
z)D_M~o$v~3A<Ix#uo1POU8wWEMSbaxpmy$8RR8-p5JMmH@*`2>y?{D@rb{J_%0djs
z0@MJfu?${Bt@Ix178LL9T}d2jp!%o<w?s|Y5jAix%MZpd;#|}M|A89s4Gc#&kBXk+
zJ*cO8Kk5n#Q3GAJ{5{mY{0nu(Aw9hIQmBEdpvFl>-J*1}9qPR97=uq@2b_$I?>b*u
zhod;1hSOeylk+%#vj^~3F-{=AtEc0<h>d%(Sn?m^Qk=#Q#QWqc_4cmxFh&!f$C?=O
z6yJYL#mYFrT!bNd|MRJ6i$3xvxR+)jYHLrTuIQZQZ(4j0BglvJ@!Bh!NvMadp~Y=2
ze$3+js2v$4_5P2u#1wM|YQle-OHm74Z+?hc*f*&6`zZQv4OS%%dD=Ta9(8N#p`MMl
z=)V=_lj#5V|9(_7;ZXB=b2{ou=3BhV;!UUp?6mw>W}$i3yl&n{J-kKxdKVIditG1f
z|21)zH9UcepGB?o1&gOy{0eF(7FvEI>Y;iMb>+uU=lyOzFoSZuaf_qc%cCCF=p5H;
zNF<?w8=zL!9`!}bL0#!UbEG-JoQ@iBF4o7_EH1G21E?MR-tw2RA@L216WxB^04Zie
zGXqD^u?=cr`KX=w(mafs_($`CdEMG?n}Pkk1(ZfzNVJ)RI^RvBq6yN?EYw7OEq)et
z;#AAeF&CR_QRnBGUzo?N{W59??x4mgGQj(OltuEcQ-O*al29v3LoFcPY-e^ib5IkG
zuy~sJ3hMmj7O%E=GwSKzj#|hUmM_E-djC)QD|~9L;kNmw`4As)omdPtK}FO8W6V01
zZ)&!-d<WEdk6S#*+DBso`4<#3zq8sJ-a>tww_pr@hMMRXYrlc|O}J}u=pe7X3~FIj
z%sA9I$*7&pK#kK5wR7DqKN$V*e=d~}8pfM0>V%o5&s=40LS5NM7JrQ)#K$Z?WAPQ#
zC-^4nN3F_WuU{hSkJFUF?7!aIP9!wpFw`F;<4`-0hg$JrYd?>=qTkF1sD%_6;td>y
zny4!3HBQ1nY;9&@9pd)pxFPI+OA_lz$P36~oy4Kufb&obTV(MXTuS`5#chUp{W@VQ
z^4%<c&0LOJ;A+%`Y_<Fz)VSZcRykn}=PkZw@gJxY1D^4&tehE*A>?bK21+%Xo1M&F
zsGS&y>OaNe8P@K;PDK;EV;y!`!yYV3{*c8d&5P!3GjO<ferc>p|LXV<W??9HMZJDc
zqUITjdWa`syx#x0mdM9M8oogNYF$IEIN(|D3X7uR2(z*oi~1R^i6yY5<+CjAj#@~L
z`Hbbq`sMz=NJRtBvxY_H8q|unpjQ03#f8>>!MtS#@V(XoN}<lHgu3^2P~$g8EhH1w
zuZ!|}|9ex>>(E~bbj_LOT-1QCVJvPy4X_V2!Ew|*zG!j4NG~pn{+&Vp&Y<SWGKZq8
zh8a{e@vEqKDeA=a7Vkj4js>WGS5Q}S)BMv68Rg~6pvI|)T6hBLymZtv)e3cf$5GsW
zb?i<;-+>%dJQa1qT=ZYL<u{nytbI3XpuMOaIAr-NsPk^3#tqK(#*0IZpKLbHW&cZ)
z$Rr_qp#OD2Eno^x#~G*-L!a}EM777F&Z~*~T~D|6Tnr<gf_f_!pvK*SI`4>i%C*YR
zs0l8ccQA}NXtbA)!eYd6W{R0^W}+7IC~8Ogn#0U7<`mQdW})VD=UHV1YQncH-eDG4
z{;0*5P!s)bamW~Nz;M(RRzyCcPMXCl%=b_W+mBknaby9m^MhA$uA2AEkg?th!_8`D
zZOmYRbaOmv!0pz)6N8DrM(x-Etc547z3B5^{|LX_|H@Rf6|oqBbukFrTD}u%f?lW{
zdfM{Op|04qc!|a9Q2ln92hCql^V~6m#_?w8{Vz*J4@nbLhXH1;IR#6Re;Kv)%TNn?
z+ss3q_kp>`JY@cW>VMVZ-%Mvbi`RQyl8QQ{psuJPYQQe2E9s48a3n_KRMcy=3ajHM
zSQ~#rePGH=@W!cyIzJP&@Lm{+L$E!%6S)7GRQ8h4!%^x5Zz1JT3y8)gSPRSH9?O4^
zTJQzby}pk6(Yb}i@h)n-pow0;Qm6$)nDJ(ViR{0Bg(Ng#FKZZx%8#}DEOVi`+T3jJ
zFbgn=^Nw2VO!CGli5kC}SsS&WbeD=&+R^Ney0SjzKyx^1fYGRhO+^jhLw!=$pvHL@
zwIkb6w`>Pa!EaILKQh@f8+E=rh)Oz@=TQUap$7WGI_x*kpx%z_76&n^`jtZsT-8iQ
z4cyq`_7?X*oj=gxiJq?WG8GN995v87)Izp;9h^O=dwT@c?*wXxen$1bY~Hba5VutA
z#ZmpkEUt{n#IdM{wF{Qe<2u=2;eUETJ#33nC)V{{s#dAw!2qfp@sxk~%EpAdzgfng
zwtu`!ZYuSm_zUGT%4XuD7(iJ^DNh`PI_@AJQ2&3D89@Cj%0v1~mE$Dk2jUj^C*?=#
z5fmN#z3Vz3Sn!^gbAH6*l$+$kDH`Vijzk?_QlCK4(S-7~zs561t|9f__&UC9eYAVp
z@$ZQLgLN!F9?JyK^06<zdUWj*gwIjtQYz4`9pyfC9l<!&>WV+~<yH@m8AC=7<!zj!
zG{+)JY2sy+`o4A5quqVf+LAqtbFm+$Qi@ViDF389N&fHS0F@r(-o(We-CP}G$ra*#
z$`b1HDDP80O!<JaoANukiIfEDb`*2IrIt_m-j@{{9kGVy|2`TK2l=MOM!D^%y++wa
za|`SBFY5Z1Zz4WR`P}kV@f78{#Ut@E`W0Aw08@#dqg<tag_3P;r2hBV`G2_@&O*|k
zQgTR^#eZWLEJFGFc+!^<7nPy^V0M|ZnzEFlqdOM0XRbB%)?WJm{c{fa5Z{8hsEDVi
z@h87C7<*cuW4@hnv90=&X-?6RWWI#@Ea^z5zKGJ7dKY}0vOx_T=P5p4Onhw3L1Yss
zUy^wkbu7eRy{iA8dMoKaB0jQ5I!$M+o08M0m$&#97U#ltNXl+XJmuf&$kCJf9~2#b
zQS`lhkut(}B0f562rXxcbi7T;q6FABbybq%0)6gLPE&p$en8>B7C3Ja=iqwO@6ZBY
zW{m`QJJH|AJJeq$xMsQEsCS|sO5wZXyp8&;*KvvR3FT38<tR(3M`J5WC@b1W{0;Rt
zP{$e%rzyF&sPjQ|o(XV#S87zqYC`TjMaO8=m-9s&NSR4J5-(9IQfgBgkh_cZC@!TM
zWjnc>lwQ8B3E{OblF>2W9Oi}2Vq*QE+_QKszUo_$5EXoqmLtAR2~ka+rdF4HOZ=L$
zma>v~9i=n%QIvmCo}lRX)STgakdWeTwdiNFF3$HlI)QelQizXIHd`NScA|)1pnObX
z8@^)=Tg>a&hWvUgiTrFjd+|Mrj&u5P>Tf|e)L)84d^-~p;{PH#PH9Y;NjXQ+QObNB
zoB2YMVoUx?t&`X2eB^7ARH@1#>+?M7$FCXX6r}_4a9?gxRFg-jCD}R4@Dt(;iyx!@
z_mM|s6>(Qe14_PccT#xp7HS#36G;i~8`M@<=Pc?v`cZ~aU+s_h?YI0Se9Uq;EN7wf
z6P2-)SI7sm=?$&@ecV8awRjdzpkE?h<>hs224@sf*Z<$}4Eg4i_Qbzn9ZE~eo5X(~
zv#3N;Hd1oQKkM6FGdia&wYdN4wZiKA%_w?@QJ+kS)|r%X)PJ(}K9UvuiTpw1T%$PD
zr%<X>-RNtToSeN}z3liN^N4p@t{7)WSlhSc{zG}!;!Nw4O`J)YPMk)WO?@`5%-@r|
fr+og_Hl4$Yq*Y68lHMRSzevyf<?~}kjVkj$T5jE}

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 627e44ed6..d586f00af 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-04-23 19:51+0800\n"
+"POT-Creation-Date: 2018-04-26 19:15+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -128,9 +128,9 @@ msgstr "资产"
 #: assets/templates/assets/domain_list.html:14
 #: assets/templates/assets/label_list.html:14
 #: assets/templates/assets/system_user_detail.html:58
-#: assets/templates/assets/system_user_list.html:26 common/models.py:26
-#: common/templates/common/terminal_setting.html:67
-#: common/templates/common/terminal_setting.html:85 ops/models/adhoc.py:36
+#: assets/templates/assets/system_user_list.html:26 common/forms.py:179
+#: common/models.py:26 common/templates/common/terminal_setting.html:70
+#: common/templates/common/terminal_setting.html:88 ops/models/adhoc.py:36
 #: ops/templates/ops/task_detail.html:59 ops/templates/ops/task_list.html:35
 #: perms/models.py:19 perms/templates/perms/asset_permission_detail.html:62
 #: perms/templates/perms/asset_permission_list.html:53
@@ -154,8 +154,8 @@ msgstr "名称"
 #: assets/templates/assets/system_user_detail.html:62
 #: assets/templates/assets/system_user_list.html:27
 #: perms/templates/perms/asset_permission_user.html:55 users/forms.py:13
-#: users/forms.py:22 users/models/authentication.py:45 users/models/user.py:40
-#: users/templates/users/_select_user_modal.html:14
+#: users/forms.py:21 users/forms.py:30 users/models/authentication.py:45
+#: users/models/user.py:40 users/templates/users/_select_user_modal.html:14
 #: users/templates/users/login.html:56
 #: users/templates/users/login_log_list.html:49
 #: users/templates/users/user_detail.html:67
@@ -168,8 +168,8 @@ msgstr "用户名"
 msgid "Password or private key passphrase"
 msgstr "密码或密钥密码"
 
-#: assets/forms/user.py:25 assets/models/base.py:22 common/forms.py:113
-#: users/forms.py:15 users/forms.py:24 users/forms.py:36
+#: assets/forms/user.py:25 assets/models/base.py:22 common/forms.py:114
+#: users/forms.py:15 users/forms.py:23 users/forms.py:32 users/forms.py:44
 #: users/templates/users/login.html:59
 #: users/templates/users/reset_password.html:52
 #: users/templates/users/user_create.html:10
@@ -209,7 +209,7 @@ msgstr "高优先级的系统用户将会作为默认登录用户"
 #: assets/templates/assets/asset_list.html:87
 #: assets/templates/assets/domain_gateway_list.html:57
 #: assets/templates/assets/system_user_asset.html:50
-#: assets/templates/assets/user_asset_list.html:46 common/forms.py:144
+#: assets/templates/assets/user_asset_list.html:46 common/forms.py:145
 #: perms/templates/perms/asset_permission_asset.html:55
 #: users/templates/users/login_log_list.html:52
 #: users/templates/users/user_granted_asset.html:45
@@ -222,7 +222,7 @@ msgstr "IP"
 #: assets/templates/assets/asset_detail.html:57
 #: assets/templates/assets/asset_list.html:86
 #: assets/templates/assets/system_user_asset.html:49
-#: assets/templates/assets/user_asset_list.html:45 common/forms.py:143
+#: assets/templates/assets/user_asset_list.html:45 common/forms.py:144
 #: perms/templates/perms/asset_permission_asset.html:54
 #: users/templates/users/user_granted_asset.html:44
 #: users/templates/users/user_group_granted_asset.html:44
@@ -430,7 +430,7 @@ msgstr "默认资产组"
 #: terminal/templates/terminal/command_list.html:32
 #: terminal/templates/terminal/command_list.html:72
 #: terminal/templates/terminal/session_list.html:33
-#: terminal/templates/terminal/session_list.html:71 users/forms.py:273
+#: terminal/templates/terminal/session_list.html:71 users/forms.py:281
 #: users/models/user.py:30 users/models/user.py:318
 #: users/templates/users/user_group_detail.html:78
 #: users/templates/users/user_group_list.html:13 users/views/user.py:339
@@ -630,10 +630,11 @@ msgstr "其它"
 #: assets/templates/assets/domain_create_update.html:16
 #: assets/templates/assets/gateway_create_update.html:58
 #: assets/templates/assets/label_create_update.html:18
-#: common/templates/common/basic_setting.html:58
-#: common/templates/common/email_setting.html:59
-#: common/templates/common/ldap_setting.html:59
-#: common/templates/common/terminal_setting.html:101
+#: common/templates/common/basic_setting.html:61
+#: common/templates/common/cloud_setting.html:74
+#: common/templates/common/email_setting.html:62
+#: common/templates/common/ldap_setting.html:62
+#: common/templates/common/terminal_setting.html:104
 #: perms/templates/perms/asset_permission_create_update.html:69
 #: terminal/templates/terminal/terminal_update.html:47
 #: users/templates/users/_user.html:46
@@ -655,10 +656,11 @@ msgstr "重置"
 #: assets/templates/assets/domain_create_update.html:17
 #: assets/templates/assets/gateway_create_update.html:59
 #: assets/templates/assets/label_create_update.html:19
-#: common/templates/common/basic_setting.html:59
-#: common/templates/common/email_setting.html:60
-#: common/templates/common/ldap_setting.html:60
-#: common/templates/common/terminal_setting.html:103
+#: common/templates/common/basic_setting.html:62
+#: common/templates/common/cloud_setting.html:76
+#: common/templates/common/email_setting.html:63
+#: common/templates/common/ldap_setting.html:63
+#: common/templates/common/terminal_setting.html:106
 #: perms/templates/perms/asset_permission_create_update.html:70
 #: terminal/templates/terminal/session_list.html:120
 #: terminal/templates/terminal/terminal_update.html:48
@@ -792,7 +794,7 @@ msgstr "选择节点"
 #: users/templates/users/user_detail.html:410
 #: users/templates/users/user_group_create_update.html:32
 #: users/templates/users/user_group_list.html:86
-#: users/templates/users/user_list.html:196
+#: users/templates/users/user_list.html:199
 #: users/templates/users/user_profile.html:215
 msgid "Confirm"
 msgstr "确认"
@@ -973,7 +975,7 @@ msgstr "存在资产，不能删除"
 #: users/templates/users/user_detail.html:357
 #: users/templates/users/user_detail.html:382
 #: users/templates/users/user_group_list.html:81
-#: users/templates/users/user_list.html:191
+#: users/templates/users/user_list.html:194
 msgid "Are you sure?"
 msgstr "你确认吗?"
 
@@ -1025,8 +1027,8 @@ msgid "Create gateway"
 msgstr "创建网关"
 
 #: assets/templates/assets/domain_gateway_list.html:87
-#: common/templates/common/email_setting.html:58
-#: common/templates/common/ldap_setting.html:58
+#: common/templates/common/email_setting.html:61
+#: common/templates/common/ldap_setting.html:61
 msgid "Test connection"
 msgstr "测试连接"
 
@@ -1123,7 +1125,7 @@ msgstr "批量更新资产"
 msgid "Update asset"
 msgstr "更新资产"
 
-#: assets/views/asset.py:311
+#: assets/views/asset.py:314
 msgid "already exists"
 msgstr "已经存在"
 
@@ -1246,84 +1248,84 @@ msgstr "不是字符类型"
 msgid "Encrypt field using Secret Key"
 msgstr ""
 
-#: common/forms.py:70
+#: common/forms.py:71
 msgid "Current SITE URL"
 msgstr "当前站点URL"
 
-#: common/forms.py:74
+#: common/forms.py:75
 msgid "User Guide URL"
 msgstr "用户向导URL"
 
-#: common/forms.py:75
+#: common/forms.py:76
 msgid "User first login update profile done redirect to it"
 msgstr "用户第一次登录，修改profile后重定向到地址"
 
-#: common/forms.py:78
+#: common/forms.py:79
 msgid "Email Subject Prefix"
 msgstr "Email主题前缀"
 
-#: common/forms.py:85
+#: common/forms.py:86
 msgid "SMTP host"
 msgstr "SMTP主机"
 
-#: common/forms.py:87
+#: common/forms.py:88
 msgid "SMTP port"
 msgstr "SMTP端口"
 
-#: common/forms.py:89
+#: common/forms.py:90
 msgid "SMTP user"
 msgstr "SMTP账号"
 
-#: common/forms.py:92
+#: common/forms.py:93
 msgid "SMTP password"
 msgstr "SMTP密码"
 
-#: common/forms.py:93
+#: common/forms.py:94
 msgid "Some provider use token except password"
 msgstr "一些邮件提供商需要输入的是Token"
 
-#: common/forms.py:96 common/forms.py:136
+#: common/forms.py:97 common/forms.py:137
 msgid "Use SSL"
 msgstr "使用SSL"
 
-#: common/forms.py:97
+#: common/forms.py:98
 msgid "If SMTP port is 465, may be select"
 msgstr "如果SMTP端口是465，通常需要启用SSL"
 
-#: common/forms.py:100
+#: common/forms.py:101
 msgid "Use TLS"
 msgstr "使用TLS"
 
-#: common/forms.py:101
+#: common/forms.py:102
 msgid "If SMTP port is 587, may be select"
 msgstr "如果SMTP端口是587，通常需要启用TLS"
 
-#: common/forms.py:107
+#: common/forms.py:108
 msgid "LDAP server"
 msgstr "LDAP地址"
 
-#: common/forms.py:110
+#: common/forms.py:111
 msgid "Bind DN"
 msgstr "绑定DN"
 
-#: common/forms.py:117
+#: common/forms.py:118
 msgid "User OU"
 msgstr "用户OU"
 
-#: common/forms.py:120
+#: common/forms.py:121
 msgid "User search filter"
 msgstr "用户过滤器"
 
-#: common/forms.py:121
+#: common/forms.py:122
 #, python-format
 msgid "Choice may be (cn|uid|sAMAccountName)=%(user)s)"
 msgstr "可能的选项是(cn或uid或sAMAccountName=%(user)s)"
 
-#: common/forms.py:124
+#: common/forms.py:125
 msgid "User attr map"
 msgstr "LDAP属性映射"
 
-#: common/forms.py:131
+#: common/forms.py:132
 msgid ""
 "User attr map present how to map LDAP user attr to jumpserver, username,name,"
 "email is jumpserver attr"
@@ -1331,52 +1333,80 @@ msgstr ""
 "用户属性映射代表怎样将LDAP中用户属性映射到jumpserver用户上，username, name,"
 "email 是jumpserver的属性"
 
-#: common/forms.py:138
+#: common/forms.py:139
 msgid "Enable LDAP auth"
 msgstr "启用LDAP认证"
 
-#: common/forms.py:147
+#: common/forms.py:148
 msgid "List sort by"
 msgstr "资产列表排序"
 
-#: common/forms.py:150
+#: common/forms.py:151
 msgid "Heartbeat interval"
 msgstr "心跳间隔"
 
-#: common/forms.py:150 ops/models/adhoc.py:37
+#: common/forms.py:151 ops/models/adhoc.py:37
 msgid "Units: seconds"
 msgstr "单位: 秒"
 
-#: common/forms.py:153
+#: common/forms.py:154
 msgid "Password auth"
 msgstr "密码认证"
 
-#: common/forms.py:156
+#: common/forms.py:157
 msgid "Public key auth"
 msgstr "密钥认证"
 
-#: common/forms.py:159 common/templates/common/terminal_setting.html:63
+#: common/forms.py:160 common/templates/common/terminal_setting.html:66
 #: terminal/forms.py:30 terminal/models.py:20
 msgid "Command storage"
 msgstr "命令存储"
 
-#: common/forms.py:160
+#: common/forms.py:161
 msgid ""
 "Set terminal storage setting, `default` is the using as default,You can set "
 "other storage and some terminal using"
 msgstr "设置终端命令存储，default是默认用的存储方式"
 
-#: common/forms.py:165 common/templates/common/terminal_setting.html:81
+#: common/forms.py:166 common/templates/common/terminal_setting.html:84
 #: terminal/forms.py:35 terminal/models.py:21
 msgid "Replay storage"
 msgstr "录像存储"
 
-#: common/forms.py:166
+#: common/forms.py:167
 msgid ""
 "Set replay storage setting, `default` is the using as default,You can set "
 "other storage and some terminal using"
 msgstr "设置终端录像存储，default是默认用的存储方式"
 
+#: common/forms.py:175
+msgid "Aliyun"
+msgstr ""
+
+#: common/forms.py:176
+msgid "AWS"
+msgstr ""
+
+#: common/forms.py:183
+msgid "Cloud provider"
+msgstr ""
+
+#: common/forms.py:186
+msgid "Access key id"
+msgstr ""
+
+#: common/forms.py:187
+msgid "Enter the access key id for the cloud service"
+msgstr ""
+
+#: common/forms.py:190
+msgid "Access key secret"
+msgstr ""
+
+#: common/forms.py:191
+msgid "Enter the access key secret for the cloud service"
+msgstr ""
+
 #: common/mixins.py:29
 msgid "is discard"
 msgstr ""
@@ -1390,46 +1420,62 @@ msgid "Enabled"
 msgstr "启用"
 
 #: common/templates/common/basic_setting.html:15
+#: common/templates/common/cloud_setting.html:16
+#: common/templates/common/cloud_setting.html:49
 #: common/templates/common/email_setting.html:15
 #: common/templates/common/ldap_setting.html:15
 #: common/templates/common/terminal_setting.html:16
-#: common/templates/common/terminal_setting.html:42 common/views.py:22
+#: common/templates/common/terminal_setting.html:45 common/views.py:34
 msgid "Basic setting"
 msgstr "基本设置"
 
 #: common/templates/common/basic_setting.html:18
+#: common/templates/common/cloud_setting.html:20
 #: common/templates/common/email_setting.html:18
 #: common/templates/common/ldap_setting.html:18
-#: common/templates/common/terminal_setting.html:20 common/views.py:48
+#: common/templates/common/terminal_setting.html:20 common/views.py:60
 msgid "Email setting"
 msgstr "邮件设置"
 
 #: common/templates/common/basic_setting.html:21
+#: common/templates/common/cloud_setting.html:24
 #: common/templates/common/email_setting.html:21
 #: common/templates/common/ldap_setting.html:21
-#: common/templates/common/terminal_setting.html:24 common/views.py:74
+#: common/templates/common/terminal_setting.html:24 common/views.py:86
 msgid "LDAP setting"
 msgstr "LDAP设置"
 
 #: common/templates/common/basic_setting.html:24
+#: common/templates/common/cloud_setting.html:28
 #: common/templates/common/email_setting.html:24
 #: common/templates/common/ldap_setting.html:24
-#: common/templates/common/terminal_setting.html:28 common/views.py:104
+#: common/templates/common/terminal_setting.html:28 common/views.py:116
 msgid "Terminal setting"
 msgstr "终端设置"
 
-#: common/templates/common/terminal_setting.html:68
-#: common/templates/common/terminal_setting.html:86
+#: common/templates/common/basic_setting.html:27
+#: common/templates/common/cloud_setting.html:32
+#: common/templates/common/email_setting.html:27
+#: common/templates/common/ldap_setting.html:27
+#: common/templates/common/terminal_setting.html:31 common/views.py:144
+#, fuzzy
+#| msgid "Email setting"
+msgid "Cloud setting"
+msgstr "邮件设置"
+
+#: common/templates/common/terminal_setting.html:71
+#: common/templates/common/terminal_setting.html:89
 #: users/templates/users/login_log_list.html:50
 msgid "Type"
 msgstr "类型"
 
-#: common/views.py:21 common/views.py:47 common/views.py:73 common/views.py:103
-#: templates/_nav.html:81
+#: common/views.py:33 common/views.py:59 common/views.py:85 common/views.py:115
+#: common/views.py:143 templates/_nav.html:81
 msgid "Settings"
 msgstr "系统设置"
 
-#: common/views.py:32 common/views.py:58 common/views.py:86 common/views.py:116
+#: common/views.py:44 common/views.py:70 common/views.py:98 common/views.py:128
+#: common/views.py:155
 msgid "Update setting successfully, please restart program"
 msgstr "更新设置成功, 请手动重启程序"
 
@@ -1703,8 +1749,8 @@ msgstr "任务列表"
 msgid "Task run history"
 msgstr "执行历史"
 
-#: perms/forms.py:18 users/forms.py:230 users/forms.py:235 users/forms.py:247
-#: users/forms.py:277
+#: perms/forms.py:18 users/forms.py:238 users/forms.py:243 users/forms.py:255
+#: users/forms.py:285
 msgid "Select users"
 msgstr "选择用户"
 
@@ -1852,7 +1898,7 @@ msgstr "商业支持"
 msgid "Docs"
 msgstr "文档"
 
-#: templates/_header_bar.html:37 templates/_nav_user.html:9 users/forms.py:113
+#: templates/_header_bar.html:37 templates/_nav_user.html:9 users/forms.py:121
 #: users/templates/users/_user.html:39
 #: users/templates/users/first_login.html:39
 #: users/templates/users/user_password_update.html:37
@@ -1916,7 +1962,7 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:241 users/views/login.py:289 users/views/user.py:64
+#: users/views/login.py:264 users/views/login.py:325 users/views/user.py:64
 #: users/views/user.py:79 users/views/user.py:99 users/views/user.py:155
 #: users/views/user.py:310 users/views/user.py:357 users/views/user.py:379
 msgid "Users"
@@ -2228,11 +2274,11 @@ msgstr ""
 msgid "Invalid token or cache refreshed."
 msgstr ""
 
-#: users/forms.py:30
+#: users/forms.py:38
 msgid "MFA code"
 msgstr "MFA 验证码"
 
-#: users/forms.py:41 users/models/user.py:52
+#: users/forms.py:49 users/models/user.py:52
 #: users/templates/users/_select_user_modal.html:15
 #: users/templates/users/user_detail.html:87
 #: users/templates/users/user_list.html:25
@@ -2240,31 +2286,31 @@ msgstr "MFA 验证码"
 msgid "Role"
 msgstr "角色"
 
-#: users/forms.py:44 users/forms.py:193
+#: users/forms.py:52 users/forms.py:201
 msgid "ssh public key"
 msgstr "ssh公钥"
 
-#: users/forms.py:45 users/forms.py:194
+#: users/forms.py:53 users/forms.py:202
 msgid "ssh-rsa AAAA..."
 msgstr ""
 
-#: users/forms.py:46
+#: users/forms.py:54
 msgid "Paste user id_rsa.pub here."
 msgstr "复制用户公钥到这里"
 
-#: users/forms.py:64 users/templates/users/user_detail.html:196
+#: users/forms.py:72 users/templates/users/user_detail.html:196
 msgid "Join user groups"
 msgstr "添加到用户组"
 
-#: users/forms.py:75 users/forms.py:208
+#: users/forms.py:83 users/forms.py:216
 msgid "Public key should not be the same as your old one."
 msgstr "不能和原来的密钥相同"
 
-#: users/forms.py:79 users/forms.py:212 users/serializers.py:45
+#: users/forms.py:87 users/forms.py:220 users/serializers.py:45
 msgid "Not a valid ssh public key"
 msgstr "ssh密钥不合法"
 
-#: users/forms.py:119
+#: users/forms.py:127
 msgid ""
 "Tip: when enabled, you will enter the MFA binding process the next time you "
 "log in. you can also directly bind in \"personal information -> quick "
@@ -2273,16 +2319,16 @@ msgstr ""
 "提示：启用之后您将会在下次登录时进入MFA绑定流程；您也可以在（个人信息->快速修"
 "改->更改MFA设置）中直接绑定!"
 
-#: users/forms.py:129
+#: users/forms.py:137
 msgid "* Enable MFA authentication to make the account more secure."
 msgstr "* 启用MFA认证，使账号更加安全."
 
-#: users/forms.py:134 users/models/user.py:64
+#: users/forms.py:142 users/models/user.py:64
 #: users/templates/users/first_login.html:45
 msgid "MFA"
 msgstr "MFA"
 
-#: users/forms.py:139
+#: users/forms.py:147
 msgid ""
 "In order to protect you and your company, please keep your account, password "
 "and key sensitive information properly. (for example: setting complex "
@@ -2291,40 +2337,41 @@ msgstr ""
 "为了保护您和公司的安全，请妥善保管您的账户、密码和密钥等重要敏感信息；（如："
 "设置复杂密码，启用MFA认证）"
 
-#: users/forms.py:146 users/templates/users/first_login.html:48
-#: users/templates/users/first_login.html:110
+#: users/forms.py:154 users/templates/users/first_login.html:48
+#: users/templates/users/first_login.html:107
+#: users/templates/users/first_login.html:130
 msgid "Finish"
 msgstr "完成"
 
-#: users/forms.py:152
+#: users/forms.py:160
 msgid "Old password"
 msgstr "原来密码"
 
-#: users/forms.py:157
+#: users/forms.py:165
 msgid "New password"
 msgstr "新密码"
 
-#: users/forms.py:162
+#: users/forms.py:170
 msgid "Confirm password"
 msgstr "确认密码"
 
-#: users/forms.py:172
+#: users/forms.py:180
 msgid "Old password error"
 msgstr "原来密码错误"
 
-#: users/forms.py:180
+#: users/forms.py:188
 msgid "Password does not match"
 msgstr "密码不一致"
 
-#: users/forms.py:191
+#: users/forms.py:199
 msgid "Automatically configure and download the SSH key"
 msgstr "自动配置并下载SSH密钥"
 
-#: users/forms.py:195
+#: users/forms.py:203
 msgid "Paste your id_rsa.pub here."
 msgstr "复制你的公钥到这里"
 
-#: users/forms.py:223 users/models/user.py:72
+#: users/forms.py:231 users/models/user.py:72
 #: users/templates/users/first_login.html:42
 #: users/templates/users/user_password_update.html:43
 #: users/templates/users/user_profile.html:68
@@ -2443,11 +2490,15 @@ msgstr "首次登陆"
 msgid "I agree with the terms and conditions."
 msgstr "我同意条款和条件"
 
-#: users/templates/users/first_login.html:100
+#: users/templates/users/first_login.html:73
+msgid "Please choose the terms and conditions."
+msgstr "请选择同意条款和条件"
+
+#: users/templates/users/first_login.html:101
 msgid "Previous"
 msgstr "上一步"
 
-#: users/templates/users/first_login.html:108
+#: users/templates/users/first_login.html:105
 #: users/templates/users/login_otp.html:66
 #: users/templates/users/user_otp_authentication.html:22
 #: users/templates/users/user_otp_enable_bind.html:19
@@ -2643,20 +2694,20 @@ msgstr "用户组删除"
 msgid "UserGroup Deleting failed."
 msgstr "用户组删除失败"
 
-#: users/templates/users/user_list.html:192
+#: users/templates/users/user_list.html:195
 msgid "This will delete the selected users !!!"
 msgstr "删除选中用户 !!!"
 
-#: users/templates/users/user_list.html:200
+#: users/templates/users/user_list.html:203
 msgid "User Deleted."
 msgstr "已被删除"
 
-#: users/templates/users/user_list.html:201
-#: users/templates/users/user_list.html:206
+#: users/templates/users/user_list.html:204
+#: users/templates/users/user_list.html:209
 msgid "User Delete"
 msgstr "删除"
 
-#: users/templates/users/user_list.html:205
+#: users/templates/users/user_list.html:208
 msgid "User Deleting failed."
 msgstr "用户删除失败"
 
@@ -2847,56 +2898,56 @@ msgstr "更新用户组"
 msgid "User group granted asset"
 msgstr "用户组授权资产"
 
-#: users/views/login.py:56
+#: users/views/login.py:60
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:107 users/views/user.py:464 users/views/user.py:489
+#: users/views/login.py:126 users/views/user.py:464 users/views/user.py:489
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
-#: users/views/login.py:133
+#: users/views/login.py:152
 msgid "Logout success"
 msgstr "退出登录成功"
 
-#: users/views/login.py:134
+#: users/views/login.py:153
 msgid "Logout success, return login page"
 msgstr "退出登录成功，返回到登录页面"
 
-#: users/views/login.py:150
+#: users/views/login.py:169
 msgid "Email address invalid, please input again"
 msgstr "邮箱地址错误，重新输入"
 
-#: users/views/login.py:163
+#: users/views/login.py:182
 msgid "Send reset password message"
 msgstr "发送重置密码邮件"
 
-#: users/views/login.py:164
+#: users/views/login.py:183
 msgid "Send reset password mail success, login your mail box and follow it "
 msgstr ""
 "发送重置邮件成功, 请登录邮箱查看, 按照提示操作 (如果没收到,请等待3-5分钟)"
 
-#: users/views/login.py:177
+#: users/views/login.py:196
 msgid "Reset password success"
 msgstr "重置密码成功"
 
-#: users/views/login.py:178
+#: users/views/login.py:197
 msgid "Reset password success, return to login page"
 msgstr "重置密码成功，返回到登录页面"
 
-#: users/views/login.py:195 users/views/login.py:208
+#: users/views/login.py:214 users/views/login.py:227
 msgid "Token invalid or expired"
 msgstr "Token错误或失效"
 
-#: users/views/login.py:204
+#: users/views/login.py:223
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:241
+#: users/views/login.py:264
 msgid "First login"
 msgstr "首次登陆"
 
-#: users/views/login.py:290
+#: users/views/login.py:326
 msgid "Login log list"
 msgstr "登录日志"
 
diff --git a/apps/users/templates/users/first_login.html b/apps/users/templates/users/first_login.html
index 7138199a3..170bfdd32 100644
--- a/apps/users/templates/users/first_login.html
+++ b/apps/users/templates/users/first_login.html
@@ -70,6 +70,7 @@
                                   <br>
                                   <input type="checkbox" id="acceptTerms">
                                   <label for="acceptTerms" style="margin-top:20px">{% trans "I agree with the terms and conditions." %}</label>
+                                  <p id="noTerms" class="red-fonts" style="visibility: hidden; font-size: 10px; margin-top: 10px;">* {% trans 'Please choose the terms and conditions.' %}</p>
                               {% endif %}
 
                               {% bootstrap_form wizard.form %}
@@ -99,11 +100,7 @@
                         {% if wizard.steps.prev %}
                             <li><a class="fl_goto" name="wizard_goto_step" data-goto="{{ wizard.steps.prev }}">{% trans "Previous" %}</a></li>
                         {% endif %}
-                        {#{% if wizard.steps.next %}#}
-                        {#<li><a class="fl_goto" name="wizard_goto_step" data-goto="{{ wizard.steps.next }}">{% trans "Next" %}</a></li>#}
-                        {#{% endif %}#}
-                        {#<li><a id="fl_submit">{% trans "Submit" %}</a></li>#}
-                        {#将原来的下一页-替换为提交；修复 每页都提交，最后才能成功问题#}
+
                         {% if wizard.steps.next %}
                             <li><a id="fl_submit" >{% trans "Next" %}</a></li>
                         {% else %}
@@ -124,16 +121,21 @@
 
 {% block custom_foot_js %}
 <script>
-    $('#id_2-otp_level div').eq(2).css('display', 'none');
-
     $(document).on('click', ".fl_goto", function(){
       var $form = $('#fl_form');
       $('<input />', {'name': 'wizard_goto_step', 'value': $(this).data('goto'), 'type': 'hidden'}).appendTo($form);
       $form.submit();
       return false;
     }).on('click', '#fl_submit', function(){
-      $('#fl_form').submit();
-      return false;
+        var isFinish = $('#fl_submit').html() === "{% trans 'Finish' %}";
+        var noChecked = !$('#acceptTerms').prop('checked');
+        if ( isFinish && noChecked){
+            $('#noTerms').css('visibility', 'visible');
+        }
+        else{
+            $('#fl_form').submit();
+            return false;
+        }
     }).on('click', '#btn-reset-pubkey', function () {
     var the_url = '{% url "users:user-pubkey-generate" %}';
     window.open(the_url, "_blank")
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index 7e3d50c8a..6ef948238 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -278,6 +278,16 @@ class UserFirstLoginView(LoginRequiredMixin, SessionWizardView):
     def get_form(self, step=None, data=None, files=None):
         form = super().get_form(step, data, files)
         form.instance = self.request.user
+
+        if isinstance(form, forms.UserMFAForm):
+            choices = form.fields["otp_level"].choices
+            if self.request.user.otp_force_enabled:
+                choices = [(k, v) for k, v in choices if k == 2]
+            else:
+                choices = [(k, v) for k, v in choices if k in [0, 1]]
+            form.fields["otp_level"].choices = choices
+            form.fields["otp_level"].initial = self.request.user.otp_level
+
         return form
 
 

From 16aa42a86125615509606dabe5224905eb289f8b Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 26 Apr 2018 19:51:32 +0800
Subject: [PATCH 004/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E6=8E=88?=
 =?UTF-8?q?=E6=9D=83=E6=A0=91=E5=88=97=E8=A1=A8=E5=92=8C=E8=B5=84=E4=BA=A7?=
 =?UTF-8?q?=E6=A0=91=E5=88=97=E8=A1=A8=E4=B8=8D=E5=90=8C=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py                       | 11 ++++----
 apps/assets/models/node.py                    |  2 +-
 apps/assets/serializers/node.py               |  2 +-
 .../perms/asset_permission_list.html          | 27 ++++++++++---------
 4 files changed, 22 insertions(+), 20 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index f123e4649..39390447c 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -108,18 +108,18 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
         return node
 
     def get_queryset(self):
-        queryset = []
+        queryset = set()
         query_all = self.request.query_params.get("all")
         query_assets = self.request.query_params.get('assets')
         node = self.get_object()
         if node == Node.root():
-            queryset.append(node)
+            queryset.add(node)
         if query_all:
             children = node.get_all_children()
         else:
             children = node.get_children()
 
-        queryset.extend(list(children))
+        queryset.update(set(children))
         if query_assets:
             assets = node.get_assets()
             for asset in assets:
@@ -127,8 +127,9 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
                 node_fake.id = asset.id
                 node_fake.parent = node
                 node_fake.value = asset.hostname
-                node_fake.is_asset = True
-                queryset.append(node_fake)
+                node_fake.is_node = False
+                queryset.add(node_fake)
+        queryset = sorted(queryset, key=lambda x: x.is_node, reverse=True)
         return queryset
 
     def get(self, request, *args, **kwargs):
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index ad806342b..1b765aefb 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -16,7 +16,7 @@ class Node(models.Model):
     child_mark = models.IntegerField(default=0)
     date_create = models.DateTimeField(auto_now_add=True)
 
-    is_asset = False
+    is_node = True
 
     def __str__(self):
         return self.full_value
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index 1c9c385e9..5b58ff241 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -48,7 +48,7 @@ class NodeSerializer(serializers.ModelSerializer):
 
     class Meta:
         model = Node
-        fields = ['id', 'key', 'value', 'parent', 'assets_amount', 'is_asset']
+        fields = ['id', 'key', 'value', 'parent', 'assets_amount', 'is_node']
         list_serializer_class = BulkListSerializer
 
     @staticmethod
diff --git a/apps/perms/templates/perms/asset_permission_list.html b/apps/perms/templates/perms/asset_permission_list.html
index eccef77a2..afec34269 100644
--- a/apps/perms/templates/perms/asset_permission_list.html
+++ b/apps/perms/templates/perms/asset_permission_list.html
@@ -78,12 +78,12 @@ var zTree, table, show = 0;
 function onSelected(event, treeNode) {
     setCookie('node_selected', treeNode.id);
     var url = table.ajax.url();
-    if (treeNode.is_asset) {
-        url = setUrlParam(url, 'node', "");
-        url = setUrlParam(url, 'asset', treeNode.id)
-    } else {
+    if (treeNode.is_node) {
         url = setUrlParam(url, 'asset', "");
         url = setUrlParam(url, 'node', treeNode.id)
+    } else {
+        url = setUrlParam(url, 'node', "");
+        url = setUrlParam(url, 'asset', treeNode.id)
     }
     setCookie('node_selected', treeNode.id);
     table.ajax.url(url);
@@ -113,14 +113,14 @@ function filter(treeId, parentNode, childNodes) {
     $.each(childNodes, function (index, value) {
         value["pId"] = value["parent"];
         value["name"] = value["value"];
-        value["isParent"] = value["assets_amount"] !== 0;
-        value["iconSkin"] = value["is_asset"] ? "file" : null;
+        value["isParent"] = value["is_node"];
+        value["iconSkin"] = value["is_node"] ? null : 'file';
     });
     return childNodes;
 }
 
 function beforeAsync(treeId, treeNode) {
-	return true;
+    return treeNode.is_node
 }
 
 function makeLabel(data) {
@@ -226,7 +226,7 @@ function initTree() {
         },
         async: {
 			enable: true,
-			url: "{% url 'api-assets:node-children-2' %}?assets=1",
+			url: "{% url 'api-assets:node-children-2' %}?assets=1&all=1",
 			autoParam:["id", "name=n", "level=lv"],
 			dataFilter: filter,
             type: 'get'
@@ -238,12 +238,13 @@ function initTree() {
     };
 
     var zNodes = [];
-    $.get("{% url 'api-assets:node-children-2' %}", function(data, status){
+    $.get("{% url 'api-assets:node-children-2' %}?assets=1&all=1", function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
-            value["isParent"] = value["assets_amount"] !== 0;
             value["name"] = value["value"];
             value["open"] = value["key"] === "0";
+            value["isParent"] = value["is_node"];
+            value["iconSkin"] = value["is_node"] ? null : 'file';
         });
         zNodes = data;
         {#$.fn.zTree.init($("#assetTree"), setting);#}
@@ -286,10 +287,10 @@ $(document).ready(function(){
     var _nodes = [];
     var _assets = [];
     $.each(nodes, function (id, node) {
-        if (node.is_asset) {
-            _assets.push(node.id)
-        } else {
+        if (node.is_node) {
             _nodes.push(node.id)
+        } else {
+            _assets.push(node.id)
         }
     });
     url += "?assets=" + _assets.join(",") + "&nodes=" + _nodes.join(",");

From 5103dab72e5351ce7e607522ae7859fe7d653f50 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 26 Apr 2018 20:48:32 +0800
Subject: [PATCH 005/112] =?UTF-8?q?[Bugfix]=20=E8=A7=A3=E5=86=B3=E4=B8=8A?=
 =?UTF-8?q?=E6=AC=A1=E5=BC=95=E5=85=A5=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py          | 8 ++++----
 apps/assets/serializers/asset.py | 3 +--
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index 39390447c..cc940757f 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -108,18 +108,18 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
         return node
 
     def get_queryset(self):
-        queryset = set()
+        queryset = []
         query_all = self.request.query_params.get("all")
         query_assets = self.request.query_params.get('assets')
         node = self.get_object()
         if node == Node.root():
-            queryset.add(node)
+            queryset.append(node)
         if query_all:
             children = node.get_all_children()
         else:
             children = node.get_children()
 
-        queryset.update(set(children))
+        queryset.extend(list(children))
         if query_assets:
             assets = node.get_assets()
             for asset in assets:
@@ -128,7 +128,7 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
                 node_fake.parent = node
                 node_fake.value = asset.hostname
                 node_fake.is_node = False
-                queryset.add(node_fake)
+                queryset.append(node_fake)
         queryset = sorted(queryset, key=lambda x: x.is_node, reverse=True)
         return queryset
 
diff --git a/apps/assets/serializers/asset.py b/apps/assets/serializers/asset.py
index 8556be3bf..cf844b5c7 100644
--- a/apps/assets/serializers/asset.py
+++ b/apps/assets/serializers/asset.py
@@ -18,8 +18,7 @@ class NodeTMPSerializer(serializers.ModelSerializer):
 
     class Meta:
         model = Node
-        fields = ['id', 'key', 'value', 'parent', 'assets_amount',
-                  'is_asset']
+        fields = ['id', 'key', 'value', 'parent', 'assets_amount', 'is_node']
         list_serializer_class = BulkListSerializer
 
     @staticmethod

From e476cab2a14cf77db1eb83d8b0e53e85d7367309 Mon Sep 17 00:00:00 2001
From: wojiushixiaobai <296015668@qq.com>
Date: Fri, 27 Apr 2018 11:01:52 +0800
Subject: [PATCH 006/112] =?UTF-8?q?=E6=9B=B4=E6=96=B0=E8=87=AA=E5=8A=A8?=
 =?UTF-8?q?=E5=8D=87=E7=BA=A7=E8=84=9A=E6=9C=AC=20(#1250)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 utils/upgrade.sh | 49 +++++++++++++++++++-----------------------------
 1 file changed, 19 insertions(+), 30 deletions(-)

diff --git a/utils/upgrade.sh b/utils/upgrade.sh
index 878bf770a..e1cdabb76 100644
--- a/utils/upgrade.sh
+++ b/utils/upgrade.sh
@@ -1,24 +1,14 @@
 #!/bin/bash
 
-if [ ! -d "/opt/py3" ]; then
-echo -e "\033[31m python3虚拟环境不是默认路径 \033[0m"
-ps -ef | grep jumpserver/tmp/beat.pid | grep -v grep
-if [ $? -ne 0 ]
-then
-echo -e "\033[31m jumpserver未运行，请到jumpserver目录使用 ./jms start all -d 启动 \033[0m"
-exit 0
-else 
-echo -e "\033[31m 正在计算python3虚拟环境路径 \033[0m"
-fi
-py3pid=`ps -ef | grep jumpserver/tmp/beat.pid | grep -v grep | awk '{print $2}'`
-py3file=`cat /proc/$py3pid/cmdline`
-py3even=`echo ${py3file%/bin/python3*}`
-echo -e "\033[31m python3虚拟环境路径为$py3even \033[0m"
-source $py3even/bin/activate
+if grep -q 'source ~/.autoenv/activate.sh' ~/.bashrc; then
+    echo -e "\033[31m 正在自动载入 python 环境 \033[0m"
 else
-source /opt/py3/bin/activate
+    echo -e "\033[31m 不支持自动升级，请参考 http://docs.jumpserver.org/zh/docs/upgrade.html 手动升级 \033[0m"
+    exit 0
 fi
 
+source ~/.bashrc
+
 cd `dirname $0`/ && cd .. && ./jms stop
 
 jumpserver_backup=/tmp/jumpserver_backup$(date -d "today" +"%Y%m%d_%H%M%S")
@@ -29,21 +19,20 @@ echo -e "\033[31m 是否需要备份Jumpserver数据库 \033[0m"
 stty erase ^H
 read -p "确认备份请按Y，否则按其他键跳过备份 " a
 if [ "$a" == y -o "$a" == Y ];then
-echo -e "\033[31m 正在备份数据库 \033[0m"
-echo -e "\033[31m 请手动输入数据库信息 \033[0m"
-read -p '请输入Jumpserver数据库ip:' DB_HOST
-read -p '请输入Jumpserver数据库端口:' DB_PORT
-read -p '请输入Jumpserver数据库名称:' DB_NAME
-read -p '请输入有权限导出数据库的用户:' DB_USER
-read -p '请输入该用户的密码:' DB_PASSWORD
-mysqldump -h$DB_HOST -P$DB_PORT -u$DB_USER -p$DB_PASSWORD $DB_NAME > /$jumpserver_backup/$DB_NAME$(date -d "today" +"%Y%m%d_%H%M%S").sql || {
-echo -e "\033[31m 备份数据库失败，请检查输入是否有误 \033[0m"
-exit 1
-}
-echo -e "\033[31m 备份数据库完成 \033[0m"
-
+    echo -e "\033[31m 正在备份数据库 \033[0m"
+    echo -e "\033[31m 请手动输入数据库信息 \033[0m"
+    read -p '请输入Jumpserver数据库ip:' DB_HOST
+    read -p '请输入Jumpserver数据库端口:' DB_PORT
+    read -p '请输入Jumpserver数据库名称:' DB_NAME
+    read -p '请输入有权限导出数据库的用户:' DB_USER
+    read -p '请输入该用户的密码:' DB_PASSWORD
+    mysqldump -h$DB_HOST -P$DB_PORT -u$DB_USER -p$DB_PASSWORD $DB_NAME > /$jumpserver_backup/$DB_NAME$(date -d "today" +"%Y%m%d_%H%M%S").sql || {
+        echo -e "\033[31m 备份数据库失败，请检查输入是否有误 \033[0m"
+        exit 1
+    }
+    echo -e "\033[31m 备份数据库完成 \033[0m"
 else
-echo -e "\033[31m 已取消备份数据库操作 \033[0m"
+    echo -e "\033[31m 已取消备份数据库操作 \033[0m"
 fi
 
 git pull && pip install -r requirements/requirements.txt && cd utils && sh make_migrations.sh

From 6f494ef09c060ec4ed5c71f85b48faa85b9056d5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Fri, 27 Apr 2018 11:27:16 +0800
Subject: [PATCH 007/112] =?UTF-8?q?=E6=A0=A1=E9=AA=8C=E7=94=A8=E6=88=B7?=
 =?UTF-8?q?=E5=90=8D=E9=95=BF=E5=BA=A6=E5=92=8C=E7=89=B9=E6=AE=8A=E5=AD=97?=
 =?UTF-8?q?=E7=AC=A6=20(#1271)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [Bugfix] 修复系统用户用户名校验问题

* [Update] 增加长度限制
---
 apps/assets/models/base.py         |   3 +-
 apps/common/validators.py          |   7 +
 apps/i18n/zh/LC_MESSAGES/django.mo | Bin 32913 -> 33048 bytes
 apps/i18n/zh/LC_MESSAGES/django.po | 243 ++++++++++++-----------------
 4 files changed, 107 insertions(+), 146 deletions(-)
 create mode 100644 apps/common/validators.py

diff --git a/apps/assets/models/base.py b/apps/assets/models/base.py
index 2997b1b61..eda00a79a 100644
--- a/apps/assets/models/base.py
+++ b/apps/assets/models/base.py
@@ -10,6 +10,7 @@ from django.utils.translation import ugettext_lazy as _
 from django.conf import settings
 
 from common.utils import get_signer, ssh_key_string_to_obj, ssh_key_gen
+from common.validators import alphanumeric
 from .utils import private_key_validator
 
 signer = get_signer()
@@ -18,7 +19,7 @@ signer = get_signer()
 class AssetUser(models.Model):
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
-    username = models.CharField(max_length=128, verbose_name=_('Username'))
+    username = models.CharField(max_length=32, verbose_name=_('Username'), validators=[alphanumeric])
     _password = models.CharField(max_length=256, blank=True, null=True, verbose_name=_('Password'))
     _private_key = models.TextField(max_length=4096, blank=True, null=True, verbose_name=_('SSH private key'), validators=[private_key_validator, ])
     _public_key = models.TextField(max_length=4096, blank=True, verbose_name=_('SSH public key'))
diff --git a/apps/common/validators.py b/apps/common/validators.py
new file mode 100644
index 000000000..9a4c1e501
--- /dev/null
+++ b/apps/common/validators.py
@@ -0,0 +1,7 @@
+# -*- coding: utf-8 -*-
+#
+from django.core.validators import RegexValidator
+from django.utils.translation import ugettext_lazy as _
+
+
+alphanumeric = RegexValidator(r'^[0-9a-zA-Z_-]*$', _('Special char not allowed'))
\ No newline at end of file
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 4da36e76e728971c74b595652700d37f1d8eae61..315bd8b8f3252fa5931e60cd25716924049e6a69 100644
GIT binary patch
delta 11467
zcmaLd2XqzH_Q&xFp(dnI0-=WzIzk8}^cFfqI!Gr{q(qWHD3NjrL6jIkq=P5|f=Cq*
zqzXcmB2@uJL`ABAGzH}edEZ}V=fC*B_12rU_WPW@=gc{0&fK{-vfiBJY>TF5^IXcG
zeZIpHkj-(5<Get}NvEB+w5pC1Qq^%%u{2J>_4tjK<5a8WILpwhIyv?CYdB62jt+C2
zQaA$};96{m*RUd%tLYkzIUUF2jHRK8Ct)sJ;+}9;m}@bB`eyXT{iyzjFhBl+x$zGy
zhELHKi-f!NP%K0K0_wU>m>oxAF6MVe)8M9^30M%*&<8&-*JD2N9jJvIK|lN+E8%s_
zf%$4N2^K~zpd}W-&Zz!FP!lJj`X^yt=65_a{4os+;ZoE9Tdckh^O7G&4RpcI-#{(&
z57hM;m<Ro9yZwVvHx`Q8nFtKR&R7(OqK9YTq|hjgsi=uppa$NEI=>UO^8KitNJmX{
z9!ugc$m3@Qw|^Mwd>z!CHbX7EwVm&ddenU**nf2#OhE(3VK646p7j#c`S;9^%q`{~
z)U*E*>*7h&g7ZYW69l3jSum<!Mdb79grROICX)Tv3Wre8iek+~Y)L*5we<&41D!$*
z^fRjeP1K#;w>$&&D00<tx4sY-B(H$l*#@ZVTBFA4=%Jx!(-XA=V^9;mfrW7%Y6sS%
zCfbgg;1H_cH>kJZXVmo%EziMrXu@Dry&US1MxYkZ6!qEgw4tF1dZD&t5NhCIs1=U2
z+=Ci04Rzrn)PQTvZK(dAqb59zn&<**=Psk(h6kuel(Syucpk@(hB_2Mov4Jmum)<t
zI;abqq88W<GZ&0nz#yx~p{`Fv?bHO+bu&;4UxpfQEmp=YnK{q@M;iJJTthvp+gJ&`
z>bnC~K@D6Nb>~e`6L&%_v=3_FL8yMOTAqj+cM_^!3Tk0*VF)h9+<O0aS%-tDl^#P4
zbl&ny=5MG+^9VJNH{Y+?>U^jjEQ^{b9M!KrYR6h*ag0Xo+;G%_6VanBnnXh%wmGN|
z(^~9<d$2kd;R{?7wLvYgH)`NlPy@xHCLDvh<Ef~L-o*0w4)T-Y>@@eFzLGz0$osFx
zWeWNN$<fH2Faq0<4?*q3X4C{bPzyMOJMk21A*qesiD#o0JRh~Nbn^si$Ihc}_$q3F
ze>e8H19~@cpJ@PUf})m}M@<lhdiD{h^Q}+|>VmrC0jST!5Y&PbEFX_rND2mF8tPH4
zz(TmiLqqTL5!8U+p$5E)8t@isfJdl)8K}B{Q`aJ>3Cp3*SHaR)5A_Y&2leO%pvD=6
zx{(Q}o$#d5&@)<&diGyoC|*Eybeg#n<U`$gFlvG2P#?C+s5`2O8n78^YrCU%ZUE}K
z!KfQdu=-@ApT|j|p_R?F6AMsxxD++fYSbO9M=fX{7R8g84Sz!|<PPe(KT#7oQSJ@-
zp>`$&)vr2gzDV@e?|&0J(Hyk{?NJl=M{Vt3)CIAqfySUdWYbU|s%@yZ=L^&VFQ68D
z3(MeBGo-n@Q&CuqdKbz3P8<zQ_?9^bHQ_?koi0Z$Y&TZG6Ic!(VRkIm!tEboRzfYT
zCTi=Opzgdq>QQw?jXwxIdRDK}(AJH!4pXrv`8%jPNk>g|9`y}*5w*ql&1aZ{+_$Cs
z?DJtTc`?+)wNN|L0Chvrm=lM#WdF6LaTK)D$*9*P)$-+7k$gSo#Ix87FQTrCY~|V#
zwSaD@1@^{pjJNZvP_Nrotcpjm1U_!X{_D<yTDz}HQPe~wQFj=MT3AigBWQ%$u})@h
z)K(9+e6%^q>Th6f&d)dBLp_2us2kYfp`i)CL~ZqP)WkobUZ>lr3G{WSx<9I347IT8
zsD;(H^Dm-qs5j~n48Z1?g!<6!Lw#5;pvLt)pplD))7D*4ZnH3IrR7mu8e#Qzs0H-G
z+&B{Ba2zJ!b<}u0+qvgsP>*IfYQgbX0Vg60^f;?%_)yr3+KI!c0ZyW}=sZ@$Yp6R5
zXzvbO5Y@i~YC+{tpPf3WXZs@hVk~NB$D66B9eWo8_5N?7k(a`L)CI>e9KXjZ=ojri
z^SWjf>eC#Jx~?Dk;Rw{7CZTr5W4?*n$vNnUAE2(^gn9J-@28;^9YwA5M-0Kcs5=gP
z(f#xWp$4jIHbC`nkNTqNhk8`WSQZyxBJRTSSiOV$A1K{XJNi0$)YwQv&*VHtVg~YO
zniJX4eH00(g(RUK)nwd`Gf*G0CY{_z)f3fkC}zV~(HrCKd?IRxQ&5j?b|>~<&u#$)
zJ-d%lUl98-AO3*a;yb7vdV>1&`gL}<G8FyE!%_X3VE}eOUEkmG1k@u<M(xn2m>-XJ
zX8(1;j})}BJE#l)Mtul<ySNs>JmketcNmK5Um5){0(Aq;Q48vYx_%hyh7wRamxk)U
z5C`Lj9y{UN)g7=9YJf5rj$v2;2crf^!a$scTIhV#BUppFk^QKJokA`6B5J~GsB!<W
zx_38s2Rwc>w89Y7fb~%mMx#E(F_`)OVi0*eYM|*>pO1Q$OHp^c!p?t;8fPbJoa3lR
zbk6)0xz6L<qfwd@kCE>pr$~2qf`O=kM_~#kS^X(SdofrKYSeqZ#2=jaEv8fN(UU)|
zu|#jaUa9ZkFIhe7xW4W`Oiabf<SVe1-v8q?ic<*c=UNjraR=0e-7Ozx#-p}&9O{me
ztv<{0`4~ifh2@`_>8M9^#`4R`_5R<rLI!H$y!~AZm_^Ofs0k~YwNVRfW_Cj@Y$)or
z9)%ijDVD?)sOt})9?c2#=)-ZDhC1FeADhom7vvb=n%^vix|6DwH?X`7Y5_g1KG2Le
zCz+|{!U62RKE10b=uY;c@>8gZZ=&jtEYB0;F0>Hpd<n}dqxywey*ZX9?}WPZ(Wo1I
z$6RbKkMXzzt+B#3)TebfYJx+kfls3rb_Ml~_7rueUN5`)nn7kM)P$9=7S^zQu$_-Z
z?ci9CotTah6lPj}$UJ7AF~7%=^!pjLunq&=g}!XYp(dVarkJUAevbJbY5|^gG;}As
z&2-cNCs7leGjF1H<R8oP405k4j;fb8!_6kB>!Zy9=4d-V9a(_KnM*?pSc&=q+2EdV
zKDBx}W-bUd(K+*1^Pc$>HK7mRtLj(6tc<!o((*=@w?jYXcRJJ1Rt&Hc@u&gDnbWL3
z$6RE-kGgKP<=au$?KO{D{k(a}>Q_<MJy6d4PPQTL3InhLc_GUinJrLX&F!%?_CrlH
z#m>(}{U*#q?c|46--PP7-SUIxQPg;+G4t>LUumf09n=;+K@H^hio3AFW=S&?)xWA)
z*KBEa!OR`CJRWn>f0E_XET8iV`>*ffMHGDSpq)5@`fK$p>ixZsnlNyv`-e#h)K2t3
zEjS5vJ`J_-#pX)XLN=fluopGYA=K-9awz+sjm8ZM@)o{;zndk7@z)J`dvhkTInD{x
zfVGFa6E{HRZE!JmwEQ>oJ~pNPm*w?Fxc!@YXlRA4QFro^ofv_-qfw^%X@WG%=UToT
zb=?~D!Chv$oj-*d=e&8vyl;A*(a=`-#<~-fL*-Ra7dA&t&<VAGK~^7uxyi>{o@~xC
zmzp1;uKyG(<6-p1hnPq2|6>~Z5%PM~?HGXiG?&3p47a=|RwN&e`t_QNTF@HIiyJN9
zZGK@MLH!(`LiM|5^@o``&;JPxR^sI1dsXH`bu4C9L`_uN@&;xb)SY!lEqIvaui5#T
z<`Q#_xeayQ0nGgU|CWX(xPn^1Ez|=3w0gEU_if07>KAHOHN#N@*2A(Gjk-Po18_3x
zk<PMwjpaMgleslCGPefx+C4M_;@x@`)WmfxZ;ZOGz2z^XUeh?#YdH(me>3Wac9;ju
zW9Hd-p1&skiGuFnHtNC*)Q2l)f;&I}s$UV*MCC1Sf$HBGb$w5($C^oYemZI)Gf_LS
z(CV8Lc>cO@2L%m$)K1()O?c0IiUH(4qg;!k2C9r&Koq86Thw(Y%pdIh4b=5_Q9tt;
zc0R&0+Fd{t>h<W38aNp>@DlR_^CQ#*o6J3!pZtjB7g65>H_boH4AUpkT}TjWM?9g{
zsBYFZqfiToMork&j6qE}((+_;merS9z7ciDyDdM48t*&Q4gQ3D$$Ff>tPnHCJ@Fc9
zWphy%EJH0|mHCOe&pc*+XI?cQU_-9UFdL3_$D4o}Zz|?serGlfZP|RRipx<eJdWyk
z4YiPm<`b)XjdR}uf6UJLa;W~5Q2irNJJrzY9Z}=<wS25{=66zPsN=ilCi4r_fM?Ci
zSb_X5>a$XKynDWx*}?3C{+u6%dIaN93wqO>jT(0Wdem5Hh0W$()CET^KW$z@z2CR&
zydVGl6--_bHBL3ujnu<HjK)&f5A}9U#xl4JtKt46_FrE(zf;gaKCih0ltryP0t;bF
zY>j=f1+GSYMsA}P`Utgvr??1xCb<8dzY<md4An0kbKuvgAE7f7*neLd=O}2v%hvHW
zY5@;T?}=_+0Ck6DQ3FR<J<94`tUkmXZB8*~noG<z9vYPxXqy!-p(eOx`7_gZlDmLl
z)IuwoHBoogz>G56q88W*HC{i|4JDwyS(8!Y#H7;Dmdryvvn4ng*P#ZeOd=yu12o5a
z*cCPKY}7z2?EHFj4+c^HdTyJLVws;Z{acqtD1;iZyyfAjo>7+fG>4%^PD1rhLCyHK
zonMK1h+9$pcA&Q60IL6C^Q?zYnND1`4mVL3+_U@%Rw4JA;(jcvp$6z}4n=*c#-OhA
zPo^*GSV-{qgTpK7d`i(n%pz70FH+Ot>%|1^DAXtB5pPh;jyjqW?K4|^`%wFgb{cVx
z_>g#=+G|8{+7*d+iBg1)C>Q4r<{~x_vx%nk*U{3&S;zd&LW<RioccSLLk}?zZQW@s
zp>LL~L;sGVqpSH5?L^wIV;f>P?F`g$&-(b`X<{!?g{V#Fc#N9g{R2C*!9PP${F(L&
z%ZuRG)Oz9qtNm$;FycebZzFW<S6I7}3LHhrdH<bG#Ae$1J$``cS@V-Se%$f<6w`>U
zL=!?sH$tC*!9;&*qlijGUm}pup)ZP)#4Yk|7>QxTE!wAvtm8b5k#@~6tf=Sz{E>qs
znG?-%iFLe<?+`sKSO0M03ZW10d(YKLosQ(Etd<*>QLBqPum$p8!<l~!f-^^-N*%9Y
zE^F_?FH|E2(avV|B)mwiGOi~US)G#8ftW_#fVf7x7S<q^)6P0RBG=KG2%?>f9rwJT
z0?7?xs?Kt(b;<mH4?Up$Gv@~2POO9aiOV|H(1;-Z=A4cniJr9eTE-EhY3tRTPgJA*
z1a;h@ea?%|pZ>*AM`7$n%%a_hct(6hz8SNQjWqNJ!6my!^_H|}64jObk3)Y5%%@+&
z|JR4-{{h8A6qn<F9=)l3`Csb#=?ftC5`PdUtj`b(CngeCsh7ZfgpN@2U5p`LjSckq
zi=q*Vqlj^|SD}uav~}d>ISr&e!SZBk$E-a7w~&{{E5w^tZ-_N@u^lgxZ?$$w>(drJ
z<E>bSWLj2lTt@yFgROJcsRZ)tL>J;siZ_Xk|Iw!fwH`z->K9N)M`9>>Gvb}h3a_-D
ze-o0GL=Nt<11I$xSc@n|`x8PxeO{dFg3X9eh<NJHANs$@Ev5F)bM?#5weMOxo{RR_
zg+5%<T<`yRPOg7$v?JuLiF(97;zvS94(vy)v0SyP`X7!3)K+6JB0B^B3-eR^8w+B4
zyN18@o$<6A6Z$)Agr5H-J9!gNkslzwC*}}85Ce%Z#CFb4LLIGWe}_L2ztRrD_lOdN
zjw00fop;t@YmCE#I>F(~0uPaYP201Z|2a#NLFlOA;_M)wO%x@+MBFFFkk24~qrCy6
zF&~k2w6ex^$$1?saV+tcn>rV0KeF}-egDrSNul^FrV`qbu0#N}MC^ozQOEDJM-T^z
z$%Kw2#CNp!;dB)^yosZB{-SxDS`zUA@iB3jdcVxsNWLKHPE02b5WA@9IO5_wr8bpl
zNB#uAC2rffGFY1MrpC@XwTZWh`ov$<N)i2O_aPq9-ibQA)me9YhT?ElIPMbu#7j!-
zxPdPd{#-B?Kc~Nr%Y>J;gJ}OkTqA##C`Nl2p`(rUd7pL&?W0(i$jf+||No9Nv^EiW
z=`_Kr4{85p?UAOaK>ah~%jara$aO3>`_g_$+_(HK{1*{R6ep(W{Vza=?u3qeL>^9L
z9gS%J@Lc|}wZEc6c_M;*ZdPYJOZX8#QSU<(Aj%P&h{e{gEq+UsB)-x6{{kodiBw`J
z#a}QRTeAvv#F&j~@3Ho7EKfWmhERVA-ypJ%GPLuPOeDUy`aIf8iKm2)veXM||9xl_
zA`)mH$F~U`FXKP>DbbsVBy<E5YdKewIF?!A$A<Rjw6_z#(JqI7;uO>|gZP~|Nv$x>
zMaL&3Wb2hG;Q`sJMYn9aHL!l$z(VnZ2M&vg4H-BzW>m<?xWtf{*x0yngSYl*x7IgT
zWJp+8y|9R_xq37S@YWSghLj2nzVg}38!3CQroDdk?RD2@?7X%y_3DO&*VnJ!+HY*Q
G&%XgcuN{H_

delta 11308
zcmZA72Y65C`^WK<hzLm}L~N3%gb*vSVnrw#tJJDhqBTNl)>a2GO0}pCvqpb4N~<<4
zN|kDBwQBcgw02aDQdQdj`|~|_{#UQxxvtymx$pCw=RD_m&i9+p&YR>vXQID*u3*4B
z4o9fJ<CMh7;f}MD_RVNj9p^$t$C-f_aRO#0IL<LY$N3c(<DSao)O%EQoJdTn<~UK9
zhV?K5>*ES6kC)8QM8^qq9M`EyLpQFEd9aIj!s%sZU>Nnmm<uPMZ=zU`d>IDeCM<zF
zF&Ix<{W6vzzlFN4K$7DGU}en1{hcHlJhW363t>ylhv{Y}79byqn#gnv#rYVID={~I
zk1U3B5;cLq>W&kE1yTLuP&clQ>Yt1u+}}x|ksn)PVeE<;V5rr{V+i>hsDT#P`BkWi
zZbDuE1?I)WsQ#x=4|W-~G7nH&RIrBQ6vy)DvIkCM8bz=<>c+iL0}n)<AB~#%1k_4Q
zLEY#*ERD;M?RR#g`ronh4^dC*U(=g-5bAtk)K-_O$@*)cSPB}r3Kqpw)LwT%oqxgX
zXAU*Tq4s_%CgUvB4ZcC$;3#U#PNDi;!zy?O^*}MTSbxnhu9kN}f>|A#Qm=<v$}H4C
zvrz*rMcrUEYD?Bz{sn3)zD6zm2`q$HQ7iixbzM+xZ=7(KhW4fyY6WVbZrBWqV0+XG
zWTI{~0(FDQsD5*?ATC8+ztQr2s2iTL`X$tsK0r;tkLA(?-Mln(gW{+qDT^979`&R(
zEl)uW*b;T&^QZwc%vVtTUDQNgL)~ZrYUP%rJ`EdCTeKe;&vg!2htqcAI_kpPr~x0M
zF7&J8O)wID6Gly-tktWa2Cj};sk*4^(ohrcjv6lmE8tLH&i*f^p?6>fYOmH}Jnlga
zl#LqrPt=n;b-f7|Kn++7b-s+{@u=|<Q4dlZHBLi}#@49o2I;&$|D$MVh7(W&&9r>3
zxdgQ(YfuAiLoM-s^u67v8(l;7yN%k)C#Y{c|9akvMWJpSk6M{TboG)orJ<MT1?+}H
zP#=@Ss2lx_nqW9z<QljnYM>a@4J)9YxE5+_>SG)>Lw=Mv1I;0*ui{tC_v*9%RVjQ%
zK{w3CG%V4;TZ!JN8)Tv;FdDbx6x2jgQoI{Kjk>-$YGPx|EYyn4L_P5W)C504jkhhu
z^<JW{tZ)SNQk_NJ;0kKbv+ew2)P#Z>dN+<l^)G?ix;V=#p(aurBQX`juoD)>zNnA!
zc$bC-d;_(F3s3_tMGde9)o~N5zSlgAy5VWm`3o3>zoEW43#58m7l|6D9O^-;qE;dm
zwMA|R8ru7D7>lz|9XF$HuphNlhfotdje6P6qn_w0YQR5GOB>wCTe(Qob;VH+7-#h)
zRKMED#9XJ5ooIo2!ZxTIbw#~=>8J?}!{Rs@{c#CuBFj<NeT2HvX4C_HiCUTCsD77F
zD{&LGLic@jm(Mi~UEtT)yKy1ZlNU!_5Q7@10#?Cf)Jv6t`t*!MO>h=!!b`CXZZMCd
zR_Y;^z@Vo+%VKWs?=(~co1$*m67{4VP!k)B<uD7&;u;LVqp1GJ&2y-UT}3VZebkft
zHSs2p7uCNQY75GstEEe@4z)0mycz0A#$W)>M13>PK`rqLb0g*^-;Ek@KNiKKs2g8L
zt;`+N1Nk@gR<;ysMawp2|25Mj3i_C&pz;n_9@8-pXJ8kcgSzmh`4{FU&)3YGU^pg`
z$D;amMt$7+VFJ2X3fH0@?AvCne=ZtFC<Nj$)DxaTP2?(S3+|zwFz^}AaMV&4x4gWW
zX!Uv+#QElCJJdVS4K=Y$)cwY~G_=%{P&a-X^>JE;y1{0v@3s0-)Wj~KCU)D-=SuUQ
zC>*r~k;wKtl~FI<Fx1OB3pMUa%!BS`8k*5g^B`)bXHk2eZFQ%)H?c4bqW%;P!UP<G
zi%<jRZ{eLUjM|zg)P!TP99F}8*cn*?*LjJCE*yZG$S^FAlTdrK26e+vQA@TRwL-g5
z@63;=J-va!7}U~R(L!b%YNcwUUd9#}g55Bf`#Tvl^wJE+into{;&Jml>cZ<7f{##3
zn5UKZgpsHTmN3hrR<II=Vtw@87&UG;)P(wA0e${Q(}>2`QBS-U_13OO4RpXfg?d-6
zp}t@qp|+@0YqkRu@fGZdarhlp#=EE$jd|9yIch70p<9c_LK^&*<s3t8MQ9suB9W-Q
zDvnz)7WH!dg!%D4YQh0+y|3iFs83S}>U=nAOQKL)R}r;!iKwk>+Lra#7ehA+1#l#4
ziKnBM=v~xXyBb4r4{G2esD9@#470HS{$+XSbKaJgLak6+)OdYR{YRrFHvKu)Ul+bZ
zK~KKYT!-4Lt*9s5gSucpY9c?Np5Ov%LJv^a=WgeH(}ki|t~{!L686SatFJ_jx51^M
z0d`>$9>NIpYwryZiQ(kYsEJlXZ9!wylXOE3l!=<~DAWxnp~jtU^(9!4d^Kvtcc8{|
zPtwp0ucO}LC#cVDU<dCBLr?>iLDj3F_Ocf0i5uAYrl@f`pvK8SZP8HEMO`-&V{k5}
z>GQvthHmhWb;#e5pLFDrsQP?t<>xr7a5VXYPCOkBe%^8RQNM@taXUXCwo-4$Z?JmO
z;O^c(M3lw~<PESHW?)HN@00yMOhYrvMqPN<^4u?Y^$^t3MxdUkl+`O(UJWCuH?X|D
znU30`ftHWA{B_G0VxT_%tJJ`C<`#1&>V{vL-=ijY&b)(~SU?Z&bDbZ3TZ5&kH$YwA
z9kn(6QSZih^lb(D{{BDL3JXvdEHghbKSw>u0n1NWei=1^`&R$Q4C(2OQ_PGrlTa^j
zL)3$G?#ceEkV!!|o`O2@mgOI!X1c-h?UwIH^*dzs3#gasSJab-rF+*^HfxymQ1@wU
zd7E_Cds{o%iJqu|Uq(%A0_q!WKI%yqn=8%r=I5x1?!)SM&~m?C-gQB!6)cGAR|ach
zylaJ?W?yrlIUEPlaU5!5*{CP@+YElu8?dMuWyYcURWj?KCeRG^Ae~G%orY#K0Cj_*
z<`mQb^DO@mb>TLve`y{ue?nb<-F$3@z2uEk1~q{ysBuz|?+@2WvlDIYL^}E=gqpxm
z(=}(B^HDckVfl7*KkE8pmY=cwD(daOg__7?U!DCA>FwPp!i+`@P|2)r)<s>|$nxh<
z6YOmEvHCD`jMXQiu6xt+_wD=|EXVzw4OTc~UPOI2U&9!Dgt}45KHkLQQ9l!^TAqqJ
z|BU4w%x<W0UPLYVa8y4RwQ@7j)rloE0&%tZsks$(!7lSV^OSiR^<;M~_wVbC6Nb93
zu;ovozJe>Dekyjbde6S>zkWOIOF^I8EYyX|QNNI^L#@Dd)Qp4sdFM-`CSK93ftpAP
z2I8}*8+Al|jMLE{$C$5TW%3FASbsIvQD}(g%%}{0Ss?F;8t`k>#13127Uz@yZ27qU
zUcW3%r9Q**gXS^R1ka!z<c8IsxHL3yzyQwzs2i5HJl66=)P>2I4_lg@?0hfOI2q;$
zGs~QfT8YJ|@wZs+?z9dkP&fF+Iy|uY6AYrBFVnk0gc)sCGV7qOZ-y1H3+BQpm=~v`
zK7Mmi{gxpwvFmK25ldm8S8%eiJo#hPPp#OOy%{HC2zf)xTbb?6uBacwy-@u|S$&G-
zGf@+nZ+_sbv;QAkhtJTr*OnhP&!T304fV16%kmJumvy5kGr>$Yo1(63huZr-sPRXj
zCh{u!{{4TNop>AdX;^6aR&$rR4>jOHd<xH_CXj28cY|=$9!FcAY<U{`Rt9}5gSyWY
zbk$g9Cw8J{_^svNqb@vW`R}NYso!AlV;PO=-w5?YX=XdKyV)0Y;~}UA7>~Mc&S3Um
zFV{TlxXe1PLEUJZ<tI@WTtW?yZS}v+;33}mqNs^Pp;jW^>Wxs>rJ=^{X7#Z{^!-m^
z5(PO6!*G$g7B$cg)C7)W7XF0l-*c$v%c%2XP}fgH{d}Ke=MP{(^5dva$2HWr5$-VW
z!UQwPtb@8is@WPfKv&BLqP_>lnp4d=<|5QYR-#s9tGUPg&UBB{(9F-HZg|DKhq|Hu
zMyYy)8I7t}vb-VcMy)LGjvB8&>IsJ+U#iXw%kP;X!+jHTomd*WpbF|nHO<Cm8?(FF
z-yCU9#`;`0$2@`>FLZ=AULnj)9)nu3a+rXLzVqyV4;s24(;VhI!Cqn{^=TM@i><yK
z)qfpoCAL`o8`Kk@u>3d6AEWw3j`S>V)<xgvzqJ~4=!)gAAL=EUZS~L11Lkqe&-tHG
zOMeG7A-_?cL8$S<%#vojSrgU2F}mv5+)i{t{kVO}I!wi)<Zqz*tw24=MhwUO7=<TM
zAFDsG3>N0^X_YV;eLvo@D0vp@`bDUTuN%$hzc7t2C_IBFun9(u@!s0rsF@BzO<)Ah
z!z?U>CC7U8YN&n<P<!13^~0wH2II4+PeE5yzuu?`WR7M3)fi`mndqA#>W1sAzQgJV
zt$yCTY5r*jj`OaIFrzV^aVlBf2{rypmXCC;F&Q<HIjET~GuNPIyxH7g?nO=TThxFj
zQP<x<eWN}?jg#wDZ$&~;TNZ)iu`KF(_XBHuiW*=i*1<!lfrIF+fl8px$C@=zpN=M$
zcSZFZfEswXImyn?vV4i<Ymw{oIXkTI!`ztY60UBU*EXdjY8MkwLsvzuMIF>FQq9&@
z?`rl!_0O<;7*-@7gL*AjpsxSXyoh?MZn?aUx^UVAK1>+HA73MHo9{n6UBw@Cf<wQu
zOrbps6R;RjhWMTM-{WIy6Dan_%fwz{9r;Q0BUTXld<6J06CDpJ@crximzv(R4-f(R
z1(xG1ae+Jq9}^d8M-n>tHQCv2?ajUleeo1=k9q{5VgANJsN-weV+b9|y8pMnCLbP(
zHEDOp_i?6m(iUi2j*|b4m90J+!-*Y4CiOYQ$3%HTM@!;G;tc195pNR3$eR(5Y3p!v
z)0k+93ZKzFh~1TN@GFlqoSNR{2RK7Tj(3SL@`XeVqJyu>-+yRFSeu_b-e1nCHKqL{
zzJV`dA`#@r{#Q|v=xP^<qeMq)%kVuyFOiNB)PBUj2>lb(Y+@_zW5hOM5Ag@JaYQ-V
zImaOy8;P^j@8=YKvi=n)>PR5|V{Ko7KWdZbW&>ZKecFmoo6m6W9byxCL%Z%1+WJZI
z3Hi^&S5_~L|0RC2d@z1Vzi(YDe2>*A3?+W0eUs>7=P3REvFl&8cc|_rdQmHYxA9rb
zL*yLYs0}9RVucJ`NbIMcO_ch8KNb)=I$&OV>l@Q<G}kXSqW<f&@>n$=?WOd5ndn2j
zK+fM+oPO8|b)2I8J?<r*XM`edRVpcjj(GDm)c2;2inQM&deUx#orsk>!EuFnn>^H)
z(Kh4E9Qx9y9I>Cm)2QQJyv;lAW&Ek{nshs<VjJRjA`i8?#QA@nn?$>)<@Yg!CD@6<
z#Fs=Y@tX$Wc%JrOgpPj*{Yacd4D!{u|63%x2z~42BeIBGoXj9D($?`2(Tec5wQj2-
z$2IyqBF+)#$)6DXQ;PEuc{;8{{mgv}f5Dt%nl;+%`CAj$tgw}iImcSsuan%e+CADW
zY3C($-5S)dK02-wUl47n6(Z)-j>1MnJ|_Jg`61d%P{#)zj$4o7YLf9pChZMai+Gdp
zC!d1P5Oru@C3L)kA((}Ih^e#-;|-!XQHiKQ?N3Z1CJ@oY7HW5i&a`!;>N!56@f>m8
zigV2V>cKIOTt9>V^ksYv;9P2HmgjJs#!u8w*!8OKvy-K<C-thBir*0*5{tEtA5wgl
zWC*d2=t}6=V@|~z<adZL;t|n}&@sxxiNV^$WMZRTcgd`Vv#nn)dw;5spCCTX`Hr#k
zP7ykfB|fLH8Q0i}Pt9A{g!&2$MSin!zQHYoj?2VL)^3LZ<Uw{*ozFR*qVbS$L+Dh3
z#z~!_<7x6_Vj6LU(2?I<g7t~RUfK8GXlBxGZ23;}4t-i!`*XWC+wucg(%Q%LGe*Zq
zIu*ov#7{(X@|W$xZ^%0m6A2xysK<LvX94aeuWxyKyGH4HVj1~!L``DTzs^0d{_FKS
zMgvX++R3jt@dq)&I^@us#!~t$vO;U?--~<z?d4YAXZ2UHoz?DI%~I!Q8pDZM)B|0X
zyq0y?hO3CDET4{}=~y0b;t}FFZT;V==V&(|(#S7iWuhUmoIK}vjYeT&6)}|hKw>2A
zQdkysxFt!VY4jtS=>(B;EVlL$vj`^&(jHGl(H=sKqWz1V?}2_y?g_rixnBu~wqEiw
zG*{zTEP)lVls^A+Y3L|KBoc9)Y>taC=Qu-S1Nj$L3+5(~cJeT_e~7h~H?=;U$(s<9
z$*U97Y0tp-i5;|mApWbbvAQ&R5PWh=CnSe$>{YjM_{Lo=Rs`p%8C@;8PPG~v2Xtx}
QwsCWxqTw5_j7ZG)fA$RKH2?qr

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index d586f00af..624b555b4 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-04-26 19:15+0800\n"
+"POT-Creation-Date: 2018-04-27 11:16+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -21,11 +21,11 @@ msgstr ""
 msgid "New node {}"
 msgstr "新节点 {}"
 
-#: assets/api/node.py:216
+#: assets/api/node.py:217
 msgid "更新节点资产硬件信息: {}"
 msgstr ""
 
-#: assets/api/node.py:229
+#: assets/api/node.py:230
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
@@ -110,7 +110,7 @@ msgstr "端口"
 #: perms/templates/perms/asset_permission_create_update.html:40
 #: perms/templates/perms/asset_permission_list.html:56
 #: perms/templates/perms/asset_permission_list.html:139
-#: terminal/backends/command/models.py:11 terminal/models.py:123
+#: terminal/backends/command/models.py:11 terminal/models.py:127
 #: terminal/templates/terminal/command_list.html:40
 #: terminal/templates/terminal/command_list.html:73
 #: terminal/templates/terminal/session_list.html:41
@@ -119,7 +119,7 @@ msgid "Asset"
 msgstr "资产"
 
 #: assets/forms/domain.py:54 assets/forms/user.py:79 assets/forms/user.py:120
-#: assets/models/base.py:20 assets/models/cluster.py:18
+#: assets/models/base.py:21 assets/models/cluster.py:18
 #: assets/models/domain.py:17 assets/models/group.py:20
 #: assets/models/label.py:17 assets/templates/assets/admin_user_detail.html:56
 #: assets/templates/assets/admin_user_list.html:23
@@ -128,14 +128,14 @@ msgstr "资产"
 #: assets/templates/assets/domain_list.html:14
 #: assets/templates/assets/label_list.html:14
 #: assets/templates/assets/system_user_detail.html:58
-#: assets/templates/assets/system_user_list.html:26 common/forms.py:179
-#: common/models.py:26 common/templates/common/terminal_setting.html:70
-#: common/templates/common/terminal_setting.html:88 ops/models/adhoc.py:36
+#: assets/templates/assets/system_user_list.html:26 common/models.py:26
+#: common/templates/common/terminal_setting.html:67
+#: common/templates/common/terminal_setting.html:85 ops/models/adhoc.py:36
 #: ops/templates/ops/task_detail.html:59 ops/templates/ops/task_list.html:35
 #: perms/models.py:19 perms/templates/perms/asset_permission_detail.html:62
 #: perms/templates/perms/asset_permission_list.html:53
 #: perms/templates/perms/asset_permission_user.html:54 terminal/models.py:16
-#: terminal/models.py:149 terminal/templates/terminal/terminal_detail.html:43
+#: terminal/models.py:154 terminal/templates/terminal/terminal_detail.html:43
 #: terminal/templates/terminal/terminal_list.html:29 users/models/group.py:14
 #: users/models/user.py:42 users/templates/users/_select_user_modal.html:13
 #: users/templates/users/user_detail.html:63
@@ -148,7 +148,7 @@ msgid "Name"
 msgstr "名称"
 
 #: assets/forms/domain.py:55 assets/forms/user.py:80 assets/forms/user.py:121
-#: assets/models/base.py:21 assets/templates/assets/admin_user_detail.html:60
+#: assets/models/base.py:22 assets/templates/assets/admin_user_detail.html:60
 #: assets/templates/assets/admin_user_list.html:24
 #: assets/templates/assets/domain_gateway_list.html:60
 #: assets/templates/assets/system_user_detail.html:62
@@ -168,7 +168,7 @@ msgstr "用户名"
 msgid "Password or private key passphrase"
 msgstr "密码或密钥密码"
 
-#: assets/forms/user.py:25 assets/models/base.py:22 common/forms.py:114
+#: assets/forms/user.py:25 assets/models/base.py:23 common/forms.py:113
 #: users/forms.py:15 users/forms.py:23 users/forms.py:32 users/forms.py:44
 #: users/templates/users/login.html:59
 #: users/templates/users/reset_password.html:52
@@ -209,7 +209,7 @@ msgstr "高优先级的系统用户将会作为默认登录用户"
 #: assets/templates/assets/asset_list.html:87
 #: assets/templates/assets/domain_gateway_list.html:57
 #: assets/templates/assets/system_user_asset.html:50
-#: assets/templates/assets/user_asset_list.html:46 common/forms.py:145
+#: assets/templates/assets/user_asset_list.html:46 common/forms.py:144
 #: perms/templates/perms/asset_permission_asset.html:55
 #: users/templates/users/login_log_list.html:52
 #: users/templates/users/user_granted_asset.html:45
@@ -222,7 +222,7 @@ msgstr "IP"
 #: assets/templates/assets/asset_detail.html:57
 #: assets/templates/assets/asset_list.html:86
 #: assets/templates/assets/system_user_asset.html:49
-#: assets/templates/assets/user_asset_list.html:45 common/forms.py:144
+#: assets/templates/assets/user_asset_list.html:45 common/forms.py:143
 #: perms/templates/perms/asset_permission_asset.html:54
 #: users/templates/users/user_granted_asset.html:44
 #: users/templates/users/user_group_granted_asset.html:44
@@ -304,7 +304,7 @@ msgstr "主机名原始"
 msgid "Labels"
 msgstr "标签管理"
 
-#: assets/models/asset.py:82 assets/models/base.py:28
+#: assets/models/asset.py:82 assets/models/base.py:29
 #: assets/models/cluster.py:28 assets/models/group.py:21
 #: assets/templates/assets/admin_user_detail.html:68
 #: assets/templates/assets/asset_detail.html:117
@@ -329,7 +329,7 @@ msgstr "创建者"
 msgid "Date created"
 msgstr "创建日期"
 
-#: assets/models/asset.py:84 assets/models/base.py:25
+#: assets/models/asset.py:84 assets/models/base.py:26
 #: assets/models/cluster.py:29 assets/models/domain.py:18
 #: assets/models/domain.py:47 assets/models/group.py:23
 #: assets/models/label.py:21 assets/templates/assets/admin_user_detail.html:72
@@ -350,11 +350,11 @@ msgstr "创建日期"
 msgid "Comment"
 msgstr "备注"
 
-#: assets/models/base.py:23
+#: assets/models/base.py:24
 msgid "SSH private key"
 msgstr "ssh密钥"
 
-#: assets/models/base.py:24
+#: assets/models/base.py:25
 msgid "SSH public key"
 msgstr "ssh公钥"
 
@@ -408,6 +408,7 @@ msgstr "集群"
 #: assets/templates/assets/domain_gateway_list.html:59
 #: assets/templates/assets/system_user_detail.html:66
 #: assets/templates/assets/system_user_list.html:28
+#: terminal/templates/terminal/session_list.html:75
 msgid "Protocol"
 msgstr "协议"
 
@@ -426,7 +427,7 @@ msgstr "默认资产组"
 #: perms/templates/perms/asset_permission_create_update.html:36
 #: perms/templates/perms/asset_permission_list.html:54
 #: perms/templates/perms/asset_permission_list.html:133
-#: terminal/backends/command/models.py:10 terminal/models.py:122
+#: terminal/backends/command/models.py:10 terminal/models.py:126
 #: terminal/templates/terminal/command_list.html:32
 #: terminal/templates/terminal/command_list.html:72
 #: terminal/templates/terminal/session_list.html:33
@@ -493,7 +494,7 @@ msgstr "Shell"
 #: perms/templates/perms/asset_permission_detail.html:140
 #: perms/templates/perms/asset_permission_list.html:58
 #: perms/templates/perms/asset_permission_list.html:145 templates/_nav.html:26
-#: terminal/backends/command/models.py:12 terminal/models.py:124
+#: terminal/backends/command/models.py:12 terminal/models.py:128
 #: terminal/templates/terminal/command_list.html:48
 #: terminal/templates/terminal/command_list.html:74
 #: terminal/templates/terminal/session_list.html:49
@@ -561,7 +562,6 @@ msgid "Select System Users"
 msgstr "选择系统用户"
 
 #: assets/templates/assets/_asset_group_bulk_update_modal.html:34
-#, fuzzy
 msgid "Enable-MFA"
 msgstr "启用MFA"
 
@@ -630,11 +630,10 @@ msgstr "其它"
 #: assets/templates/assets/domain_create_update.html:16
 #: assets/templates/assets/gateway_create_update.html:58
 #: assets/templates/assets/label_create_update.html:18
-#: common/templates/common/basic_setting.html:61
-#: common/templates/common/cloud_setting.html:74
-#: common/templates/common/email_setting.html:62
-#: common/templates/common/ldap_setting.html:62
-#: common/templates/common/terminal_setting.html:104
+#: common/templates/common/basic_setting.html:58
+#: common/templates/common/email_setting.html:59
+#: common/templates/common/ldap_setting.html:59
+#: common/templates/common/terminal_setting.html:101
 #: perms/templates/perms/asset_permission_create_update.html:69
 #: terminal/templates/terminal/terminal_update.html:47
 #: users/templates/users/_user.html:46
@@ -656,11 +655,10 @@ msgstr "重置"
 #: assets/templates/assets/domain_create_update.html:17
 #: assets/templates/assets/gateway_create_update.html:59
 #: assets/templates/assets/label_create_update.html:19
-#: common/templates/common/basic_setting.html:62
-#: common/templates/common/cloud_setting.html:76
-#: common/templates/common/email_setting.html:63
-#: common/templates/common/ldap_setting.html:63
-#: common/templates/common/terminal_setting.html:106
+#: common/templates/common/basic_setting.html:59
+#: common/templates/common/email_setting.html:60
+#: common/templates/common/ldap_setting.html:60
+#: common/templates/common/terminal_setting.html:103
 #: perms/templates/perms/asset_permission_create_update.html:70
 #: terminal/templates/terminal/session_list.html:120
 #: terminal/templates/terminal/terminal_update.html:48
@@ -1027,8 +1025,8 @@ msgid "Create gateway"
 msgstr "创建网关"
 
 #: assets/templates/assets/domain_gateway_list.html:87
-#: common/templates/common/email_setting.html:61
-#: common/templates/common/ldap_setting.html:61
+#: common/templates/common/email_setting.html:58
+#: common/templates/common/ldap_setting.html:58
 msgid "Test connection"
 msgstr "测试连接"
 
@@ -1178,7 +1176,7 @@ msgid "System user asset"
 msgstr "系统用户集群资产"
 
 #: audits/models.py:10 audits/templates/audits/ftp_log_list.html:74
-#: terminal/models.py:126 terminal/templates/terminal/session_list.html:74
+#: terminal/models.py:130 terminal/templates/terminal/session_list.html:74
 #: terminal/templates/terminal/terminal_detail.html:47
 msgid "Remote addr"
 msgstr "远端地址"
@@ -1201,7 +1199,7 @@ msgstr "成功"
 #: ops/templates/ops/adhoc_history.html:52
 #: ops/templates/ops/adhoc_history_detail.html:61
 #: ops/templates/ops/task_history.html:58 perms/models.py:26
-#: perms/templates/perms/asset_permission_detail.html:86 terminal/models.py:132
+#: perms/templates/perms/asset_permission_detail.html:86 terminal/models.py:137
 #: terminal/templates/terminal/session_list.html:77
 msgid "Date start"
 msgstr "开始日期"
@@ -1248,84 +1246,84 @@ msgstr "不是字符类型"
 msgid "Encrypt field using Secret Key"
 msgstr ""
 
-#: common/forms.py:71
+#: common/forms.py:70
 msgid "Current SITE URL"
 msgstr "当前站点URL"
 
-#: common/forms.py:75
+#: common/forms.py:74
 msgid "User Guide URL"
 msgstr "用户向导URL"
 
-#: common/forms.py:76
+#: common/forms.py:75
 msgid "User first login update profile done redirect to it"
 msgstr "用户第一次登录，修改profile后重定向到地址"
 
-#: common/forms.py:79
+#: common/forms.py:78
 msgid "Email Subject Prefix"
 msgstr "Email主题前缀"
 
-#: common/forms.py:86
+#: common/forms.py:85
 msgid "SMTP host"
 msgstr "SMTP主机"
 
-#: common/forms.py:88
+#: common/forms.py:87
 msgid "SMTP port"
 msgstr "SMTP端口"
 
-#: common/forms.py:90
+#: common/forms.py:89
 msgid "SMTP user"
 msgstr "SMTP账号"
 
-#: common/forms.py:93
+#: common/forms.py:92
 msgid "SMTP password"
 msgstr "SMTP密码"
 
-#: common/forms.py:94
+#: common/forms.py:93
 msgid "Some provider use token except password"
 msgstr "一些邮件提供商需要输入的是Token"
 
-#: common/forms.py:97 common/forms.py:137
+#: common/forms.py:96 common/forms.py:136
 msgid "Use SSL"
 msgstr "使用SSL"
 
-#: common/forms.py:98
+#: common/forms.py:97
 msgid "If SMTP port is 465, may be select"
 msgstr "如果SMTP端口是465，通常需要启用SSL"
 
-#: common/forms.py:101
+#: common/forms.py:100
 msgid "Use TLS"
 msgstr "使用TLS"
 
-#: common/forms.py:102
+#: common/forms.py:101
 msgid "If SMTP port is 587, may be select"
 msgstr "如果SMTP端口是587，通常需要启用TLS"
 
-#: common/forms.py:108
+#: common/forms.py:107
 msgid "LDAP server"
 msgstr "LDAP地址"
 
-#: common/forms.py:111
+#: common/forms.py:110
 msgid "Bind DN"
 msgstr "绑定DN"
 
-#: common/forms.py:118
+#: common/forms.py:117
 msgid "User OU"
 msgstr "用户OU"
 
-#: common/forms.py:121
+#: common/forms.py:120
 msgid "User search filter"
 msgstr "用户过滤器"
 
-#: common/forms.py:122
+#: common/forms.py:121
 #, python-format
 msgid "Choice may be (cn|uid|sAMAccountName)=%(user)s)"
 msgstr "可能的选项是(cn或uid或sAMAccountName=%(user)s)"
 
-#: common/forms.py:125
+#: common/forms.py:124
 msgid "User attr map"
 msgstr "LDAP属性映射"
 
-#: common/forms.py:132
+#: common/forms.py:131
 msgid ""
 "User attr map present how to map LDAP user attr to jumpserver, username,name,"
 "email is jumpserver attr"
@@ -1333,80 +1331,52 @@ msgstr ""
 "用户属性映射代表怎样将LDAP中用户属性映射到jumpserver用户上，username, name,"
 "email 是jumpserver的属性"
 
-#: common/forms.py:139
+#: common/forms.py:138
 msgid "Enable LDAP auth"
 msgstr "启用LDAP认证"
 
-#: common/forms.py:148
+#: common/forms.py:147
 msgid "List sort by"
 msgstr "资产列表排序"
 
-#: common/forms.py:151
+#: common/forms.py:150
 msgid "Heartbeat interval"
 msgstr "心跳间隔"
 
-#: common/forms.py:151 ops/models/adhoc.py:37
+#: common/forms.py:150 ops/models/adhoc.py:37
 msgid "Units: seconds"
 msgstr "单位: 秒"
 
-#: common/forms.py:154
+#: common/forms.py:153
 msgid "Password auth"
 msgstr "密码认证"
 
-#: common/forms.py:157
+#: common/forms.py:156
 msgid "Public key auth"
 msgstr "密钥认证"
 
-#: common/forms.py:160 common/templates/common/terminal_setting.html:66
+#: common/forms.py:159 common/templates/common/terminal_setting.html:63
 #: terminal/forms.py:30 terminal/models.py:20
 msgid "Command storage"
 msgstr "命令存储"
 
-#: common/forms.py:161
+#: common/forms.py:160
 msgid ""
 "Set terminal storage setting, `default` is the using as default,You can set "
 "other storage and some terminal using"
 msgstr "设置终端命令存储，default是默认用的存储方式"
 
-#: common/forms.py:166 common/templates/common/terminal_setting.html:84
+#: common/forms.py:165 common/templates/common/terminal_setting.html:81
 #: terminal/forms.py:35 terminal/models.py:21
 msgid "Replay storage"
 msgstr "录像存储"
 
-#: common/forms.py:167
+#: common/forms.py:166
 msgid ""
 "Set replay storage setting, `default` is the using as default,You can set "
 "other storage and some terminal using"
 msgstr "设置终端录像存储，default是默认用的存储方式"
 
-#: common/forms.py:175
-msgid "Aliyun"
-msgstr ""
-
-#: common/forms.py:176
-msgid "AWS"
-msgstr ""
-
-#: common/forms.py:183
-msgid "Cloud provider"
-msgstr ""
-
-#: common/forms.py:186
-msgid "Access key id"
-msgstr ""
-
-#: common/forms.py:187
-msgid "Enter the access key id for the cloud service"
-msgstr ""
-
-#: common/forms.py:190
-msgid "Access key secret"
-msgstr ""
-
-#: common/forms.py:191
-msgid "Enter the access key secret for the cloud service"
-msgstr ""
-
 #: common/mixins.py:29
 msgid "is discard"
 msgstr ""
@@ -1420,62 +1390,50 @@ msgid "Enabled"
 msgstr "启用"
 
 #: common/templates/common/basic_setting.html:15
-#: common/templates/common/cloud_setting.html:16
-#: common/templates/common/cloud_setting.html:49
 #: common/templates/common/email_setting.html:15
 #: common/templates/common/ldap_setting.html:15
 #: common/templates/common/terminal_setting.html:16
-#: common/templates/common/terminal_setting.html:45 common/views.py:34
+#: common/templates/common/terminal_setting.html:42 common/views.py:22
 msgid "Basic setting"
 msgstr "基本设置"
 
 #: common/templates/common/basic_setting.html:18
-#: common/templates/common/cloud_setting.html:20
 #: common/templates/common/email_setting.html:18
 #: common/templates/common/ldap_setting.html:18
-#: common/templates/common/terminal_setting.html:20 common/views.py:60
+#: common/templates/common/terminal_setting.html:20 common/views.py:48
 msgid "Email setting"
 msgstr "邮件设置"
 
 #: common/templates/common/basic_setting.html:21
-#: common/templates/common/cloud_setting.html:24
 #: common/templates/common/email_setting.html:21
 #: common/templates/common/ldap_setting.html:21
-#: common/templates/common/terminal_setting.html:24 common/views.py:86
+#: common/templates/common/terminal_setting.html:24 common/views.py:74
 msgid "LDAP setting"
 msgstr "LDAP设置"
 
 #: common/templates/common/basic_setting.html:24
-#: common/templates/common/cloud_setting.html:28
 #: common/templates/common/email_setting.html:24
 #: common/templates/common/ldap_setting.html:24
-#: common/templates/common/terminal_setting.html:28 common/views.py:116
+#: common/templates/common/terminal_setting.html:28 common/views.py:104
 msgid "Terminal setting"
 msgstr "终端设置"
 
-#: common/templates/common/basic_setting.html:27
-#: common/templates/common/cloud_setting.html:32
-#: common/templates/common/email_setting.html:27
-#: common/templates/common/ldap_setting.html:27
-#: common/templates/common/terminal_setting.html:31 common/views.py:144
-#, fuzzy
-#| msgid "Email setting"
-msgid "Cloud setting"
-msgstr "邮件设置"
-
-#: common/templates/common/terminal_setting.html:71
-#: common/templates/common/terminal_setting.html:89
+#: common/templates/common/terminal_setting.html:68
+#: common/templates/common/terminal_setting.html:86
 #: users/templates/users/login_log_list.html:50
 msgid "Type"
 msgstr "类型"
 
-#: common/views.py:33 common/views.py:59 common/views.py:85 common/views.py:115
-#: common/views.py:143 templates/_nav.html:81
+#: common/validators.py:7
+msgid "Special char not allowed"
+msgstr "不能包含特殊字符"
+
+#: common/views.py:21 common/views.py:47 common/views.py:73 common/views.py:103
+#: templates/_nav.html:81
 msgid "Settings"
 msgstr "系统设置"
 
-#: common/views.py:44 common/views.py:70 common/views.py:98 common/views.py:128
-#: common/views.py:155
+#: common/views.py:32 common/views.py:58 common/views.py:86 common/views.py:116
 msgid "Update setting successfully, please restart program"
 msgstr "更新设置成功, 请手动重启程序"
 
@@ -1962,7 +1920,7 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:264 users/views/login.py:325 users/views/user.py:64
+#: users/views/login.py:263 users/views/login.py:321 users/views/user.py:64
 #: users/views/user.py:79 users/views/user.py:99 users/views/user.py:155
 #: users/views/user.py:310 users/views/user.py:357 users/views/user.py:379
 msgid "Users"
@@ -1996,11 +1954,10 @@ msgstr "命令记录"
 msgid "Web terminal"
 msgstr "Web终端"
 
-#: templates/_nav.html:51 terminal/templates/terminal/session_list.html:75
-#: terminal/views/command.py:47 terminal/views/session.py:75
-#: terminal/views/session.py:93 terminal/views/session.py:115
-#: terminal/views/terminal.py:31 terminal/views/terminal.py:46
-#: terminal/views/terminal.py:58
+#: templates/_nav.html:51 terminal/views/command.py:47
+#: terminal/views/session.py:75 terminal/views/session.py:93
+#: terminal/views/session.py:115 terminal/views/terminal.py:31
+#: terminal/views/terminal.py:46 terminal/views/terminal.py:58
 msgid "Terminal"
 msgstr "终端管理"
 
@@ -2079,26 +2036,26 @@ msgstr "线程数"
 msgid "Boot Time"
 msgstr "运行时间"
 
-#: terminal/models.py:128 terminal/templates/terminal/session_list.html:102
+#: terminal/models.py:132 terminal/templates/terminal/session_list.html:102
 msgid "Replay"
 msgstr "回放"
 
-#: terminal/models.py:129 terminal/templates/terminal/command_list.html:55
+#: terminal/models.py:133 terminal/templates/terminal/command_list.html:55
 #: terminal/templates/terminal/command_list.html:71
 #: terminal/templates/terminal/session_detail.html:48
 #: terminal/templates/terminal/session_list.html:76
 msgid "Command"
 msgstr "命令"
 
-#: terminal/models.py:131
+#: terminal/models.py:136
 msgid "Date last active"
 msgstr "最后活跃日期"
 
-#: terminal/models.py:133
+#: terminal/models.py:138
 msgid "Date end"
 msgstr "结束日期"
 
-#: terminal/models.py:150
+#: terminal/models.py:155
 msgid "Args"
 msgstr "参数"
 
@@ -2898,56 +2855,56 @@ msgstr "更新用户组"
 msgid "User group granted asset"
 msgstr "用户组授权资产"
 
-#: users/views/login.py:60
+#: users/views/login.py:59
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:126 users/views/user.py:464 users/views/user.py:489
+#: users/views/login.py:125 users/views/user.py:464 users/views/user.py:489
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
-#: users/views/login.py:152
+#: users/views/login.py:151
 msgid "Logout success"
 msgstr "退出登录成功"
 
-#: users/views/login.py:153
+#: users/views/login.py:152
 msgid "Logout success, return login page"
 msgstr "退出登录成功，返回到登录页面"
 
-#: users/views/login.py:169
+#: users/views/login.py:168
 msgid "Email address invalid, please input again"
 msgstr "邮箱地址错误，重新输入"
 
-#: users/views/login.py:182
+#: users/views/login.py:181
 msgid "Send reset password message"
 msgstr "发送重置密码邮件"
 
-#: users/views/login.py:183
+#: users/views/login.py:182
 msgid "Send reset password mail success, login your mail box and follow it "
 msgstr ""
 "发送重置邮件成功, 请登录邮箱查看, 按照提示操作 (如果没收到,请等待3-5分钟)"
 
-#: users/views/login.py:196
+#: users/views/login.py:195
 msgid "Reset password success"
 msgstr "重置密码成功"
 
-#: users/views/login.py:197
+#: users/views/login.py:196
 msgid "Reset password success, return to login page"
 msgstr "重置密码成功，返回到登录页面"
 
-#: users/views/login.py:214 users/views/login.py:227
+#: users/views/login.py:213 users/views/login.py:226
 msgid "Token invalid or expired"
 msgstr "Token错误或失效"
 
-#: users/views/login.py:223
+#: users/views/login.py:222
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:264
+#: users/views/login.py:263
 msgid "First login"
 msgstr "首次登陆"
 
-#: users/views/login.py:326
+#: users/views/login.py:322
 msgid "Login log list"
 msgstr "登录日志"
 
@@ -2995,8 +2952,4 @@ msgstr "MFA 解绑成功"
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"
 
-#~ msgid "Step"
-#~ msgstr "Step"
 
-#~ msgid "Add asset"
-#~ msgstr "添加资产到节点"

From 494cd760d78c40b58754fc5366e53118125bb14c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Fri, 27 Apr 2018 11:33:28 +0800
Subject: [PATCH 008/112] Trans change (#1272)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [Update] 更新授权规则生效日期文案
---
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 33048 -> 33090 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            |   5 ++++-
 .../perms/asset_permission_create_update.html |   2 +-
 3 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 315bd8b8f3252fa5931e60cd25716924049e6a69..c512eb54f39361c5e2009dbe27a91ff3997ea5a9 100644
GIT binary patch
delta 8690
zcmXZgdwh@OAII_gyUiGzjWzr*GshjAiaEAK%p59*oN@?5&7p0Y!wUDDs-<%HRt~MC
zqJ9doN<*cgbws~NC7mRhvq$LM@AcmG>7VEIxsIRfy6*e_POBG&lr0SLzpWkiq{n|T
zA)eO|i(@=*zsiZK^}KeiJns>_9t&|dejf0=^wysD4AyE(O#Rk&o)?FUuJ^nIT!S}a
zDW>C9Ou`N~ILBbP=lR})6twVTSQR(925-AriqX{X!B9Me>VFt(<0Y(yVeLJy0Y+gB
zOh(nGVH3OwHEukH;e4#h`raZ6Y}#9j*I_YM$8F|rtVLXoO5`hy!qb?H*RTpEcJRD5
z*b<e%FpR|ssQ$B13ol0XFTzOH_m)wpiN#n4UqMY!X7vX!lK41kq6%yO4V7qEnj0UD
z5yXv9{gY4|OGBMZ2FBq8tdDch=MKCeg}S&FweWV-#P6WmKSX7I2z3%iPz#;HMtBLi
zelMn@>)!*_o{8G&U{vBGtbH=-s;774{MB(L6`I(`dbk30*PBr7Tg<o2GV>GE9e;sc
z@H<q(|LNowXpFkDBvil7$n)y;Ky4_m6X&lCXHlVy=9-H!gZNR@QGSk^=zG*e7g7Cx
zN9`=o*~QVQtE`JU`WAQ{c0!%(0Mxh<sCmZu6m&P)s1sO%T5uKC#TQX0up70|`=|vD
zqxzjdy#*Ih<3l+H#c`+wlTh^?P*<9PN?;HwL4PC#EieUjB>AX`3s4z8Xz?=CgvF?V
zFQX<bHTR+VA4DzqC2FAx)X7~&y$vB<-4)eA=JUOH3hIz-4P8(JZ$?d+i5fTvmEa_-
zOc<3wzSaAvyI+htsimlKYfy=AM$K1>DOgq+bN}Zk=oz?*x~so18EbWO6LmvP+!wX;
zfvAPYqY|Blnm8ZTZ=S`AQS&~A>K8;M_B1xe|6(=0{~uY0&rz8kLrrwb;`8PosH+L*
zyQ+y|QAeGKI>Gj+g>FIh>yJ9I5!evNpib_7RKknV*AYENK@Zz{)WcJXqwy1Li^+Vz
zwa`dZf>Tiw&qhr&7q#FL)Q(r87Fvxh@Ok7X#rx3w1ocTin9lvHaG8pB7<ZFfFa!G%
z&qAHV9@GNms00pUDSnSiWNml1@H$k&8&HWIF~3Ef*eTS8ub>i)xY>6T#@_7iGy%0h
zip3pK3-mzUeFmz1I4Yqm)Q)pe&%`WL!V4^Z7?ns6<FFWYRok%+miZL)K7WOp@E6pC
zS5OoFiJBn1hkfHw^^MGA)PfzXy&EPH_d|U_r=hMc7d6j9)JB$~PQovypgVdEb@xZH
zIaZ)L#`JUxB%*engi5dj>S61O+EGu`go9B>I~jFyxu|h7Q5#%f^^YU{d@o2rnLT3-
z8&Nxa1+~zds2%J^C3FDm<98T>f1nci8#S)VEpDM0)P~|wC)^IzuRChJJ{ZdS-au=(
z12teYYT+Ez(auB-n2VZd3F;wx0`*YsL%lu!LnT;&O88G~f>FJk?NBE*1RG$MWPQ)4
zpaq{c*P|AE3ANMLP>FqvE%94yhT*;45vQX1w==t-66=XN`hlpOk47ah5!F8*ecjbO
z3Oc%ntiwvYf%tjUPL5z0o<e;g&!X-!km0O}Rfrp)=1atSn2K7s7wTjNpf)rH!*Naq
z=dUC6sZgemqh6D>7Qco`#Je#ZPvV_;7B#L<ALlSs0+Ub)PQ~_EXzj0~Ubns23ctp9
zteVOBYiG?f-RqKqTBr?bhiRz9dZMo2Hq;Ksn^RFoJ=5Yv=3`dB3ain+!Q6tnf*q(0
zl=~F4;1{T)K8{-W0_t`83$;K@UsvA<RiBDVtUD^P{?<MgwV|n~E6BxOScH1$4xk>^
z3e>!QNI!Q+F{q5{nJrP7c0?U%hSiTkB`^i6;e5=&hcFMXVO7lT@7nWFS93oq;X-VQ
zk0J^B-s=>qQ}HS4B)&vV@Et0lQ<#KTQ9DZ*;3jT{>faibPzThrlZm?9u~-A=qE7Z<
zb1mw`Ud0%_|L;<Wq~Z{2z;SGkr!f`dZ*_Ox*BpX+n#Z8V-HTE90BWa2sFPV{u11~Y
zdW^ztsPXS&gx>!{6qM1|s7%jcWBeDj<HonSr?)w3q8rTtsQ#l-ADVknSG5A0;zrEJ
zkFW)Hzuo-<WiskSpG04UcPQviPGKjE9_ap@?t{9D1*k-dP*?RhzKLs4581#$?y9m;
z{pMf@&cjeFwD!fQ6Aq%TZrvcxUw5~W3f<jK)Cb}a*1|KWBmNt8Le&Smr#Bv>h|{np
z-h%2k7^Cqn)c72W7oe_m1?q(MV{QC;Fz2rU=crI-f1?IQ3~@VeU^c}F>QhlWOhfhW
zib^B{wShZO2~9zrTmfoB3s5IljOzaqPQo{QYiMwXo3I6Hf*Y_s_P|)2iJG7YWAF)7
zq8m_GumiP`L#V{QM<sj~wcu6MykSFKeJtt({CEn=upMf`{-_1Vpq}D9tbBhlj<^st
z(Nm}eH=x?zK;7vs)XvLL{XRm?_Z4csbEvDj>h!(PVQydyCelzB`8au9P!lY&_LaDZ
zc#YM^5BI!V1ANc1fcpDK@YfCgiu<XbJ(9kdK8n+!{wROZYRAjQxc@=%Jf`UVFQd?h
zhI7~u)5banqjr>o8aT`1B6B(Fh*zO@wBG8sSo{XYQD0{9m*z>-$z4{g_dnz=R}qbx
zC;_!_E3>`X)$D=lmuU_~B{;#HiAwBY)a$(xE3XC{5tpIH|A3W$|DUIzha_a2U4>cK
zY=j!n+`Pf;j@ropi$`0WjY^=v>KB>I&1cL_<2Zj!yn_lo#rse@Id1VqRC~mDS6>Ge
zC!==M(c*NA`=Q1UvigabNSue-c@Q;jyIDHkcNKf6(8T4|a2WNp9<%zNP!nH5B^oxt
zec9qsJ54lG%`~$+YQetP0S8*V#M&SADd-5FvWAV=k$AJkKbdFD%jWNRFa5kMmsk#J
z0}IV%sD+Eo7tBr8zRmRCp`ZjlM(yO7c@j0j1=P;3nh_J-LJd*%$*6HRT78B&#2km}
zH{C2WgRb58Hd0UmC8&w^qCOy>TKy5LKZ%tIp>}%J4COnjIL3@eEtq0)y4epkez?VB
zD`W0|Dg{0LGf;^XRyKIva@54D%onYGoB5XcE^6HS7Jq>ncigP7`fKJtR$pZ@<5=IT
zO+f>ipfYTWEwQ7;W6epZPxLfQ#QCUk&sqCs)NjM<sFU1p^#@V?zOeX&S%JPLyhK3*
zLhp7Rqfkd!A64HP!?BZjli3?J@c?tAIoZ4qD^Jwo<*0d{vG~QidH+?hjfxa}3-v2^
z!aANu{ndH}_5Rkn$1T_nyAY?NPGUAH;WgI&Dk||(b1y29Pf_a~N3HYIJ)FPZ=L=MX
zV6|*#4QxYP(@e*kiKm&HaWe6F)PzH)xWq=I;%r=lxfWNS>gsD@59;e#e5Y@P@u&>%
zLG5IY)h|UI@k(=@)xT<SiN$+R<I1r*er=w#_KT=_u9;!eT<q7fLL<~kq@s4v%i{jl
zJ`uG*p0zKw`lVQn`qdV%H@BF(%nwlGk6;S^f}uQrUhH&tS9MXZVIrzyTh!Cs6Px1@
ziwiJ`_z~0}7A2^J%P|rUSbWU<(L9a%IlhSM7tZH1ob|m}3aY4&5!lka-s-!VnOJ$(
z7LPWwQ3=mNC0u0jT5I2I?ljBI!&qDI{|^*&_rIbR2+MJa)IcQ`hpKOadK;20?rjb*
zhoBO<6Px06)c6$`jnAU4c#Fm5=&Rx=h03GB%A?733&omkQT6>%iHxxLF4VYb7B57-
zrpr*T<rY-`L#UHIYW`rJ$>sdjaD@sj@Goiyk$G-l0_x#vf$G;5)vpU`p$v;Bp%$8f
z8ed@bkD6<&eIsg~&8Us<$m9GgGo(TTkD?~7K-EXga0|wm@fb~girE!4Q9o4wEL?<B
zP>G&5|FrgM_qp-WsGs=+pMp9L!`hgIdOc>LCSH%4c&GWE`2lL&LGv5b_|q2uh58Oe
z<U6l36U-FUM*K7iI+EVz?dC``3zfih)Pniu0@Q+!TfE-fV)eT$K7d;2n8jyM^ZkZw
z(D(kOz}MHSH`DESfw>lySP5#t+o%NgnV*^8nrF=4%qp{7|Js<&xCC<yYQCo{+qwVe
zDO90iE9%JJz*e{ibp_{83y05k17pqlsQN^V!!{U(y{x`3YN27MlNw|7xu|*PDc1Y{
zlvTWd>bToHX#R*==!zLK$NhZ}je1r(q1q>yIp$ofNqrIO3Ra^MdfD8Hz6QQYLGCpV
zna5EBDlEQa{)2kIYw+(bwYSE4*a0=qt*DLMi7_}G6L3E2?RplQ;M)b<e`^ZgQ=u<g
z&HLR%DX0l<L1jJ+>)>R}#Cg~o-$y+okq@{;>Yx&c$JLmE*Wq5P{}Pq(Nz|2}eSq`l
zSIE0eMGd@)nlNOp>llejAl7VZw#Ui@Q40>U`Yfxz&*~pEgXVMQW^<=+g>p=0qQe&d
zgIb`*Jhwn2GZmFkXH=q@=3vy$Mw?mY6jXwFsQKoj#;-tqS^f1CG|?v1k-Uz&vz<5}
zKSoW^k3bGbO)wF=Vm@l(t*Cj*to;-78`Rrz*5VLOT>bRR$9%rm&=tI7)WjVv&aik0
zYJx0_3(O+aL~Brqy?{#OHEZ8%?VqEr__)PCpib%xMtY;T`^o}8KGqOf=sLur7N~D=
zGfX8;MLo2`Q423ISE3%eb*OQjgAs|lqN?i8O8(PXRS$lacp*@;<h>?2fk3sA>zln0
z2t)*rG(Qmt50<uQ5C{n#X^{|!30`T@K2Rf=+;VuJN^n8Tb%Dr|#H2-mKv-}?a@#<3
z@JRCQfv8~fl%*kz*q-u8AhaYsbyP}Z_QdS`g2uU%W@P6~EO}yRLQ2HX#YI0q`S8!h
L>q@r!lLP+;YP}cc

delta 8651
zcmXZhdwkDjAII_UZ!>JO&7nEXX>79%iDk~h9Ah~}IYyZ%Y;#@?U(Bsq4!7nkC6tun
zc4!q!ShqtC9i)UxQKB59JZ^Ts-n%~i^SnOS@pE0*_xt_Leeazew0w4uf3|#yB_97p
z1$kaITwK=k3MrR~RjudMs_%Ju7>hG;6Mhx&yao+CZ#4!Q5>x-$1D+R+;~RNiO?(ks
z;YMtY7cddy8avamr04nGBnn!1I+ntfuEAStZp0|+w_q^tLG|B{<?$yhjW;m{?_xMs
zNpbb@Sey8M)VN+)0>@%0*7wF!VAI}IybtGL7`|?9!g9m~s6-B81b&A}_$!8Bxd&MU
zE1?qTgcYzis{aVo!V^&abFd8Sdp?CooQD;06>5U5R{t@UAwGhd=#;hphD!7%YJ3rf
zVq_E7zcOlL@u-tY#c1q}RdFQx+<})%p%Uhy7G8^*_&rqnhp5c=piZI?wa`hdfj=SF
z&kC-8BUF1c)K1%@67OQ|{ZLmuIF<8P#|$boaVA#AS*W{SiE4k<e9PQw?n2%DXV@H%
zp%M;l>J})Ay0Xfseu>EQ>NP@bXjoIuUm1>|LK%%VCtxSyX{e*$hnna(YN8)e{V$?+
zcFp1<)K!#f=8nE1-bY*)b+WBc<GP^c>FHC@-SkJDz(mx7&toNAj5>i$sD<7~EwCTe
z?<>?>@FQyc4U0oK4lP(2RUe1C(o|Fe?NHB#-<5(E7=SvG;i!p6p)#Cgv5%T?9%|rn
z)Px(&?Wq2rpcXuUTIdw&<j$eqhU=&+D%qlVKHrO=pbk|~4N0hh51=M&h8oxom0({i
zP8gNIaI4Qmjh}!zsi~-OFQO7(jhb&GCgaxPnEO9NLC?Si)LmW1Bn-546V*da+#I#@
zwy1@Bp%NX0ns_*>-x!N0pyr*9>X(a3>?N#)E3mZQ|BtN0K2)ZMQ4^iC_^kOm>S}JG
zCJN^Js-rH4I>9=qg;G%cTB1&@3s%E))X6=AN_YbLI-=<m^sp^LJxm*M5bnZ;ScMO`
z7V3&ha3E^pr%@A)MlCoIwd2{Sg<ik}d>Q#k@jf(np+3o<wC4R+;T#qEfP}Ph3#MXM
z;t{Bm*n(Q10F}Ug{1A_$63KhWExZtw@DfyFh2~MziJe4k_&h4Xe;)GPgu!jyokpP+
zsA_QnYJo<myH7>6cSa@D2esp&sApmXD&cI4r=Swa#b}&|x~jEU5x4pj^gbU%P53Qp
z!t<yJFQF#5h3Z#?s*h~vtb$rF4%J={W3dJ53pxmObwg3}j6-c?D(WQsc@%U<YfyLp
zUyR37sE%HHw?H}6&MTu5j6*$a$*3JQMorirb+r9ZCpQ!|E(5i}Y^$Gv^z*%33d(H0
zH7rH#a20ByH&Hv-gi7dRtcu4l2!BT<@&{_%U#Nw=G`FD$)XCIB^=pV)uPFxW_rI+*
zbU>Xzchtg9ppG^JHDEMqqKT-7Y!2$7+KzgA_M#Fzg-ZAm*2cSLtq$&_(lCblK9cpl
zObS}?C36vK!DXnOu0bWX6YJtpjKf=40%JP5{<X{`RAP-$N8c8;^X{mtdK5MPaP)Oo
zV<_n8CR>Nu*qHcb)J_Uf3!OxLAy1=@_?meSLx{sWxw|iim5F0e3qOcDnO3L`rDI7P
z*@^Slk!Dh%OlP28lRS&pU?TA*EQu#@0G>vTYuee_36(%!RDuIB1+%PuJ?eGahV}6f
zR>#|&Ie+aex{G^Vs-hOEf!bj_DzV0>D`<l{v0mmt)KO<xJl>pc_0MBz+LxHGqOM>A
zY6As61ugg)>Zp&P7XAVCI$cIBpwFS|BT@A+sKgqg5^HJgkDxX*5OoDZu><Cy9=eZF
z59=w^y#93xr6_n0yNpVkl~9=`ppG=v>bs#57=Wd5EN0?l%*J0)^Y!oM+J~X8<{4DN
zSy&gRAqo24dJ17w>_(l$0n`M?P)BqU6Y&CSXHnhV#P^~4S4SljhkACJq3-q(49C%^
zlbvGbp-$`-EUWi_Gleo#>_H7Uf+_eN*29Q&cjwK`G}P0ajv6-vBk)<&PIFKv<C`y_
zPI3`O;OnUIn=w@H{~ij;=nyK?Ggu3+pmtpL5%=^)qb90vwnFvqj{49HL0#1>tb<E&
z0)B)E*szED2TDKGiT(?H72czuJ2{C>u?YDy&1>4zT}3u3ksQ=j&A|8ZMbtyqwwJrA
z{-}N<F$l+CFlJf%1k?%VqONXXFV0_gx0DLq-P@=S#2ze%-=mKB57Y_WK|Q?@z1>m9
zV<d43s$YAI!XBvcPgtCdy3$#w6WW30@lbEhUjxoiq0Ih34g3f75Qg`0R=`l=7}O5q
zQT>xK0#i{N=zvOS0BZaw)P}NACpQn(e;H=r8@@G!Kk6o|h?<}_reGtifElO>a<DAU
zK_$8bbp;zx8`*<O>^Lgn)2Ib6pys`4^}&7J3HT8dlwmE@ge_4ErlX$XVOaeBVl;6U
zYNEMTzXWxct57>$Ywd5N=J^mc&k@uWePjNNjPt##6k=((jeLu|D*fC7PoX9rhq;(z
z^>;Bnz+{h6NBw}u`GXU`#zN{J>(8IoSbZR$SLzG+OICNCIoSOV6SFaycrA9;`+tN&
zH7cTqI2)rD?tvQE&*D*L7V2mxqjogQ>K9nN1f!{6Yw-tWA?k|0wD_E2z5iFNq6oEc
znJ1hT%&KNAYQaRa2`a(%W?xidBT=vQIMjTrum-M0jsFyNHAm6c!*Py+I$kwzoA*!y
zLWVlan>A58sc&&Bi@Tx{=x_B;nOWv^GtXQ$l=IiqyPgW|WH%~4j#~I4s{WS6p~GCF
z6;bWgElx)DYh?8uFqXI%YUkro8+_SZVXhhGyNNbf#dg%wx)Zg)e$>QYpc4B9^+mgj
z+G*fPXSf+{)<i9sgb(5a7H3%dXw(T#@~vSmrcyEA;{E1f^GowP9813+QHk|<$|d@w
znTc9>nwe|nS^FaMRa650I~25&on|3wf@7!!zA-PNPUL?UhYok+s-fx=%oMXNYJ9pm
z)EsZ^bCCpmFQ0-EScm$6yz3gg9adk6#R;Jn`o{d(ylUP>Ef~gkRsE`)$*A#7EpB6R
zH;iC?uQvr9#ZYU=LQOE)oMZKi%;n~5sBv#v{61>jZu5}UpES=}{dv^5>xx<53mV}v
zjKaFa6)kRKc0_%eyJIX4K`k`X+UKKw6BeUR@(rusjOzEk#rw=dsQJFY;=liYrl5|0
zppNhkYNCjzU1F8Y8fHAIe|@vL*~#pK#V2ZU7M7&{bc^R$yy$7pU*F>8RD|I^YdDJf
zYxM-`{k?`-u<S_phe>tRNj!#1I0w}}50&@|a~&#?cToxKMy<0S^*SFL$@vFS_>BsA
z3Gc^0&FZ80>xQ_yIUhM3?<i`*CeOHqTcP5vxB`1x{JVJ#+fo0w#Vww7{oDBzlwlXt
zP9C?0XHh#EXR4nTm}ham#cNRGHeeWjWENWcanw8~&0oxGrhkuujv{=tTObY<*Fz2L
zfLfpzDuLlv|16d!o?`JVbAh?ad<!*x2PWeI48|K6s`vjk1^oyG#<-4AsHeF$#$$@b
z{V|dF8Pu;=J}RLNSO(v-c&EA7Jc#-^K91^l!Rl`m$K3xN3S{Dy;=3x#p*qHxiKvB|
zSlr6&irQH}RKlYye$LwGn=8!?=62M$PqFy-|7!|b;1^T^mrx1(W%WUs?rjJ~^@}&_
zn<=OXTVNebM~%<MD4c=1(ghZ8u($yI;-jHZd^D)n?uHqa<?8F97H($oL#T1xEq)U9
znr5P2%LS<ZTTmM+Fh4a9n<uike=Yn2723gN)W9Ot!&NfdO%R3ZR|U0Dg2f$C{d=Rv
z_qY1dW{$PbMI|yHbrQ?0eoHp@uYm<rXyQZGa1piORr4-J5r>U)Rz*#ej7lI4bMax+
zxTEIx*8Ur6{1w#Ce37-M`r};!X{gtuA8O)RsEJpaubXe77T9d=!t%riEk2F<4qP;E
znnh;V1eZuO>O}l_D>O8ln`x*7(oqXOY7Rp!IM(7><^ro<W$}Bc9q+XGFlxSUQ5*aL
z`N;a--&QefqHA~#m03P&z-m+i>&^d|ADf5GZ_V@Ob!^SJBD3`*H{Vp$e6ulx^}U4@
zbYx4gKCVG!cm&n)0xFRk<{hgKOm=TUB$l8(4%I&i)jt(=Qmw7NCu-io7Ee;l`d%&t
zb$rF#Z0<!(c)~n~b&0Q_o|Q^dTzh-7hdBr%X&;5Uf+?tkUN9G;=3R=u3hS(5i@6&$
z;E=^%m}gP%_a$qO;NM@BiSI+r(*U)R7FZV3u_g{dy<Ib~Hm=47xF?76*9YfMDl}2p
zb8dn<sLWHbB6h+qI2b$Po2X~xGAhwqs08lfatxd5{++)LRsR91Um=Fz=cpf{FQ;<;
z;S|21LKB{|j+aph+%SWuxwryqhjmaBr&@iQ)%UUb5$1Svra9kSX>RZ-Br(x;t2m2V
z;F87n%<$<hfy$^v6V1k`owYL4%!g44_Cn1!1ht`T)R%P@Y92q2f{tV{>dsc;415PQ
zK{A1CikhGUw!lYG6E8$fwAR`;nY%EW`p+#shw677HQ)c7{QtjPfhMkqYDlm+1vNpM
z#r@4usEKk={c}-?{M*{sq3(7Ys$T)>gg!;}KVY6HuJ6X3TZfCN0aq=)gY}35Gu_kL
z05!otb0q3vn}`}0nO`M#XGBT;8OeV-qtN`HVy^@uwtZ1MGY}}XtzF!@K%jK~`S_m$
zA^8UrVgiBu^9eNrQTZWtQvzZ6&FelED3QOY?rVYYZH*Fh1A*ZD9Z3xXk@@G7dIZYk
gH%Wepsq^<H=LLecrPmvnyzPU&G0EG`_!)u!1J9uk$N&HU

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 624b555b4..48986cee6 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -1774,6 +1774,10 @@ msgstr "添加节点"
 msgid "Join"
 msgstr "加入"
 
+#: perms/templates/perms/asset_permission_create_update.html:53
+msgid "Validity period"
+msgstr "有效期"
+
 #: perms/templates/perms/asset_permission_detail.html:66
 msgid "User count"
 msgstr "用户数量"
@@ -2295,7 +2299,6 @@ msgstr ""
 "设置复杂密码，启用MFA认证）"
 
 #: users/forms.py:154 users/templates/users/first_login.html:48
-#: users/templates/users/first_login.html:107
 #: users/templates/users/first_login.html:130
 msgid "Finish"
 msgstr "完成"
diff --git a/apps/perms/templates/perms/asset_permission_create_update.html b/apps/perms/templates/perms/asset_permission_create_update.html
index 551aab142..2f9ebeeaf 100644
--- a/apps/perms/templates/perms/asset_permission_create_update.html
+++ b/apps/perms/templates/perms/asset_permission_create_update.html
@@ -50,7 +50,7 @@
                                 </div>
                             </div>
                             <div class="form-group {% if form.date_expired.errors or form.date_start.errors %} has-error {% endif %}" id="date_5">
-                                <label for="{{ form.date_expired.id_for_label }}" class="col-sm-2 control-label">{{ form.date_expired.label }}</label>
+                                <label for="{{ form.date_expired.id_for_label }}" class="col-sm-2 control-label">{% trans 'Validity period' %}</label>
                                 <div class="col-sm-9">
                                     <div class="input-daterange input-group" id="datepicker">
                                         <span class="input-group-addon"><i class="fa fa-calendar"></i></span>

From 55096f9ad55694fb3aac32ccbc71a5bf3b49be5a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Fri, 27 Apr 2018 11:41:47 +0800
Subject: [PATCH 009/112] Bugfix perm asset not active (#1273)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [Bugfix] 修复资产禁用了还可以登录的bug
---
 apps/assets/models/asset.py        |  16 ++++-
 apps/assets/models/node.py         |   8 +--
 apps/i18n/zh/LC_MESSAGES/django.mo | Bin 33090 -> 33090 bytes
 apps/i18n/zh/LC_MESSAGES/django.po |  91 ++++++++++++++---------------
 apps/perms/models.py               |  21 +++++--
 apps/perms/utils.py                |  26 ++++-----
 6 files changed, 92 insertions(+), 70 deletions(-)

diff --git a/apps/assets/models/asset.py b/apps/assets/models/asset.py
index 5b3009305..4a2942291 100644
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -4,7 +4,6 @@
 
 import uuid
 import logging
-import random
 
 from django.db import models
 from django.utils.translation import ugettext_lazy as _
@@ -35,6 +34,19 @@ def default_node():
         return None
 
 
+class AssetQuerySet(models.QuerySet):
+    def active(self):
+        return self.filter(is_active=True)
+
+    def valid(self):
+        return self.active()
+
+
+class AssetManager(models.Manager):
+    def get_queryset(self):
+        return AssetQuerySet(self.model, using=self._db)
+
+
 class Asset(models.Model):
     # Important
     PLATFORM_CHOICES = (
@@ -83,6 +95,8 @@ class Asset(models.Model):
     date_created = models.DateTimeField(auto_now_add=True, null=True, blank=True, verbose_name=_('Date created'))
     comment = models.TextField(max_length=128, default='', blank=True, verbose_name=_('Comment'))
 
+    objects = AssetManager()
+
     def __str__(self):
         return '{0.hostname}({0.ip})'.format(self)
 
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 1b765aefb..7939ad1e9 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -63,8 +63,8 @@ class Node(models.Model):
         assets = Asset.objects.filter(nodes__id=self.id)
         return assets
 
-    def get_active_assets(self):
-        return self.get_assets().filter(is_active=True)
+    def get_valid_assets(self):
+        return self.get_assets().valid()
 
     def get_all_assets(self):
         from .asset import Asset
@@ -78,8 +78,8 @@ class Node(models.Model):
     def has_assets(self):
         return self.get_all_assets()
 
-    def get_all_active_assets(self):
-        return self.get_all_assets().filter(is_active=True)
+    def get_all_valid_assets(self):
+        return self.get_all_assets().valid()
 
     def is_root(self):
         return self.key == '0'
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index c512eb54f39361c5e2009dbe27a91ff3997ea5a9..038e65f4355f956a2eb1f56ba8ab8fae46912d00 100644
GIT binary patch
delta 17
YcmX@q#B`{MX+vi?ld<LI?(prJ06~fe00000

delta 17
YcmX@q#B`{MX+vi?lcCw>?(prJ06}U7`v3p{

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 48986cee6..2dc77a3fd 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-04-27 11:16+0800\n"
+"POT-Creation-Date: 2018-04-27 11:39+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -29,15 +29,15 @@ msgstr ""
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
-#: assets/forms/asset.py:24 assets/models/asset.py:54 assets/models/user.py:103
+#: assets/forms/asset.py:24 assets/models/asset.py:66 assets/models/user.py:103
 #: assets/templates/assets/asset_detail.html:183
 #: assets/templates/assets/asset_detail.html:191
-#: assets/templates/assets/system_user_detail.html:166 perms/models.py:23
+#: assets/templates/assets/system_user_detail.html:166 perms/models.py:33
 msgid "Nodes"
 msgstr "节点管理"
 
 #: assets/forms/asset.py:27 assets/forms/asset.py:66 assets/forms/asset.py:109
-#: assets/forms/asset.py:113 assets/models/asset.py:58
+#: assets/forms/asset.py:113 assets/models/asset.py:70
 #: assets/models/cluster.py:19 assets/models/user.py:72
 #: assets/templates/assets/asset_detail.html:73 templates/_nav.html:25
 msgid "Admin user"
@@ -53,7 +53,7 @@ msgstr "管理用户"
 msgid "Label"
 msgstr "标签"
 
-#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:53
+#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:65
 #: assets/models/domain.py:46
 msgid "Domain"
 msgstr "网域"
@@ -61,7 +61,7 @@ msgstr "网域"
 #: assets/forms/asset.py:38 assets/forms/asset.py:63 assets/forms/asset.py:77
 #: assets/forms/asset.py:128 assets/templates/assets/asset_create.html:29
 #: assets/templates/assets/asset_update.html:34 perms/forms.py:40
-#: perms/forms.py:47 perms/models.py:67
+#: perms/forms.py:47 perms/models.py:76
 #: perms/templates/perms/asset_permission_list.html:57
 #: perms/templates/perms/asset_permission_list.html:142
 msgid "Node"
@@ -90,7 +90,7 @@ msgstr "如果有多个的互相隔离的网络，设置资产属于的网域，
 msgid "Select assets"
 msgstr "选择资产"
 
-#: assets/forms/asset.py:105 assets/models/asset.py:51
+#: assets/forms/asset.py:105 assets/models/asset.py:63
 #: assets/models/domain.py:44 assets/templates/assets/admin_user_assets.html:53
 #: assets/templates/assets/asset_detail.html:69
 #: assets/templates/assets/domain_gateway_list.html:58
@@ -99,14 +99,14 @@ msgid "Port"
 msgstr "端口"
 
 #: assets/forms/domain.py:14 assets/forms/label.py:13
-#: assets/models/asset.py:169 assets/templates/assets/admin_user_list.html:25
+#: assets/models/asset.py:183 assets/templates/assets/admin_user_list.html:25
 #: assets/templates/assets/domain_detail.html:60
 #: assets/templates/assets/domain_list.html:15
 #: assets/templates/assets/label_list.html:16
 #: assets/templates/assets/system_user_list.html:29 audits/models.py:11
 #: audits/templates/audits/ftp_log_list.html:41
 #: audits/templates/audits/ftp_log_list.html:72 perms/forms.py:37
-#: perms/models.py:22
+#: perms/models.py:32
 #: perms/templates/perms/asset_permission_create_update.html:40
 #: perms/templates/perms/asset_permission_list.html:56
 #: perms/templates/perms/asset_permission_list.html:139
@@ -132,7 +132,7 @@ msgstr "资产"
 #: common/templates/common/terminal_setting.html:67
 #: common/templates/common/terminal_setting.html:85 ops/models/adhoc.py:36
 #: ops/templates/ops/task_detail.html:59 ops/templates/ops/task_list.html:35
-#: perms/models.py:19 perms/templates/perms/asset_permission_detail.html:62
+#: perms/models.py:29 perms/templates/perms/asset_permission_detail.html:62
 #: perms/templates/perms/asset_permission_list.html:53
 #: perms/templates/perms/asset_permission_user.html:54 terminal/models.py:16
 #: terminal/models.py:154 terminal/templates/terminal/terminal_detail.html:43
@@ -202,7 +202,7 @@ msgid ""
 "than 2 system user"
 msgstr "高优先级的系统用户将会作为默认登录用户"
 
-#: assets/models/asset.py:49 assets/models/domain.py:43
+#: assets/models/asset.py:61 assets/models/domain.py:43
 #: assets/templates/assets/_asset_list_modal.html:46
 #: assets/templates/assets/admin_user_assets.html:52
 #: assets/templates/assets/asset_detail.html:61
@@ -217,7 +217,7 @@ msgstr "高优先级的系统用户将会作为默认登录用户"
 msgid "IP"
 msgstr "IP"
 
-#: assets/models/asset.py:50 assets/templates/assets/_asset_list_modal.html:45
+#: assets/models/asset.py:62 assets/templates/assets/_asset_list_modal.html:45
 #: assets/templates/assets/admin_user_assets.html:51
 #: assets/templates/assets/asset_detail.html:57
 #: assets/templates/assets/asset_list.html:86
@@ -229,107 +229,107 @@ msgstr "IP"
 msgid "Hostname"
 msgstr "主机名"
 
-#: assets/models/asset.py:52 assets/templates/assets/asset_detail.html:97
+#: assets/models/asset.py:64 assets/templates/assets/asset_detail.html:97
 msgid "Platform"
 msgstr "系统平台"
 
-#: assets/models/asset.py:55 assets/models/domain.py:48
+#: assets/models/asset.py:67 assets/models/domain.py:48
 #: assets/models/label.py:20 assets/templates/assets/asset_detail.html:105
 msgid "Is active"
 msgstr "激活"
 
-#: assets/models/asset.py:61 assets/templates/assets/asset_detail.html:65
+#: assets/models/asset.py:73 assets/templates/assets/asset_detail.html:65
 msgid "Public IP"
 msgstr "公网IP"
 
-#: assets/models/asset.py:62 assets/templates/assets/asset_detail.html:113
+#: assets/models/asset.py:74 assets/templates/assets/asset_detail.html:113
 msgid "Asset number"
 msgstr "资产编号"
 
-#: assets/models/asset.py:65 assets/templates/assets/asset_detail.html:77
+#: assets/models/asset.py:77 assets/templates/assets/asset_detail.html:77
 msgid "Vendor"
 msgstr "制造商"
 
-#: assets/models/asset.py:66 assets/templates/assets/asset_detail.html:81
+#: assets/models/asset.py:78 assets/templates/assets/asset_detail.html:81
 msgid "Model"
 msgstr "型号"
 
-#: assets/models/asset.py:67 assets/templates/assets/asset_detail.html:109
+#: assets/models/asset.py:79 assets/templates/assets/asset_detail.html:109
 msgid "Serial number"
 msgstr "序列号"
 
-#: assets/models/asset.py:69
+#: assets/models/asset.py:81
 msgid "CPU model"
 msgstr "CPU型号"
 
-#: assets/models/asset.py:70
+#: assets/models/asset.py:82
 msgid "CPU count"
 msgstr "CPU数量"
 
-#: assets/models/asset.py:71
+#: assets/models/asset.py:83
 msgid "CPU cores"
 msgstr "CPU核数"
 
-#: assets/models/asset.py:72 assets/templates/assets/asset_detail.html:89
+#: assets/models/asset.py:84 assets/templates/assets/asset_detail.html:89
 msgid "Memory"
 msgstr "内存"
 
-#: assets/models/asset.py:73
+#: assets/models/asset.py:85
 msgid "Disk total"
 msgstr "硬盘大小"
 
-#: assets/models/asset.py:74
+#: assets/models/asset.py:86
 msgid "Disk info"
 msgstr "硬盘信息"
 
-#: assets/models/asset.py:76 assets/templates/assets/asset_detail.html:101
+#: assets/models/asset.py:88 assets/templates/assets/asset_detail.html:101
 msgid "OS"
 msgstr "操作系统"
 
-#: assets/models/asset.py:77
+#: assets/models/asset.py:89
 msgid "OS version"
 msgstr "系统版本"
 
-#: assets/models/asset.py:78
+#: assets/models/asset.py:90
 msgid "OS arch"
 msgstr "系统架构"
 
-#: assets/models/asset.py:79
+#: assets/models/asset.py:91
 msgid "Hostname raw"
 msgstr "主机名原始"
 
-#: assets/models/asset.py:81 assets/templates/assets/asset_create.html:33
+#: assets/models/asset.py:93 assets/templates/assets/asset_create.html:33
 #: assets/templates/assets/asset_detail.html:220
 #: assets/templates/assets/asset_update.html:38 templates/_nav.html:27
 msgid "Labels"
 msgstr "标签管理"
 
-#: assets/models/asset.py:82 assets/models/base.py:29
+#: assets/models/asset.py:94 assets/models/base.py:29
 #: assets/models/cluster.py:28 assets/models/group.py:21
 #: assets/templates/assets/admin_user_detail.html:68
 #: assets/templates/assets/asset_detail.html:117
 #: assets/templates/assets/domain_detail.html:72
 #: assets/templates/assets/system_user_detail.html:96
-#: ops/templates/ops/adhoc_detail.html:86 perms/models.py:28 perms/models.py:72
+#: ops/templates/ops/adhoc_detail.html:86 perms/models.py:38 perms/models.py:81
 #: perms/templates/perms/asset_permission_detail.html:98
 #: users/models/user.py:83 users/templates/users/user_detail.html:107
 msgid "Created by"
 msgstr "创建者"
 
-#: assets/models/asset.py:83 assets/models/cluster.py:26
+#: assets/models/asset.py:95 assets/models/cluster.py:26
 #: assets/models/domain.py:20 assets/models/group.py:22
 #: assets/models/label.py:23 assets/templates/assets/admin_user_detail.html:64
 #: assets/templates/assets/domain_detail.html:68
 #: assets/templates/assets/system_user_detail.html:92
 #: ops/templates/ops/adhoc_detail.html:90 ops/templates/ops/task_detail.html:63
-#: perms/models.py:29 perms/models.py:73
+#: perms/models.py:39 perms/models.py:82
 #: perms/templates/perms/asset_permission_detail.html:94
 #: terminal/templates/terminal/terminal_detail.html:59 users/models/group.py:17
 #: users/templates/users/user_group_detail.html:63
 msgid "Date created"
 msgstr "创建日期"
 
-#: assets/models/asset.py:84 assets/models/base.py:26
+#: assets/models/asset.py:96 assets/models/base.py:26
 #: assets/models/cluster.py:29 assets/models/domain.py:18
 #: assets/models/domain.py:47 assets/models/group.py:23
 #: assets/models/label.py:21 assets/templates/assets/admin_user_detail.html:72
@@ -340,7 +340,7 @@ msgstr "创建日期"
 #: assets/templates/assets/domain_list.html:17
 #: assets/templates/assets/system_user_detail.html:100
 #: assets/templates/assets/system_user_list.html:33 common/models.py:30
-#: ops/models/adhoc.py:42 perms/models.py:30 perms/models.py:74
+#: ops/models/adhoc.py:42 perms/models.py:40 perms/models.py:83
 #: perms/templates/perms/asset_permission_detail.html:102 terminal/models.py:26
 #: terminal/templates/terminal/terminal_detail.html:63 users/models/group.py:15
 #: users/models/user.py:75 users/templates/users/user_detail.html:119
@@ -423,7 +423,7 @@ msgstr "默认资产组"
 #: assets/models/label.py:14 audits/models.py:9
 #: audits/templates/audits/ftp_log_list.html:33
 #: audits/templates/audits/ftp_log_list.html:71 perms/forms.py:14
-#: perms/forms.py:31 perms/models.py:20
+#: perms/forms.py:31 perms/models.py:30
 #: perms/templates/perms/asset_permission_create_update.html:36
 #: perms/templates/perms/asset_permission_list.html:54
 #: perms/templates/perms/asset_permission_list.html:133
@@ -490,7 +490,7 @@ msgstr "Shell"
 #: assets/models/user.py:149 audits/models.py:12
 #: audits/templates/audits/ftp_log_list.html:49
 #: audits/templates/audits/ftp_log_list.html:73 perms/forms.py:43
-#: perms/models.py:24 perms/models.py:69
+#: perms/models.py:34 perms/models.py:78
 #: perms/templates/perms/asset_permission_detail.html:140
 #: perms/templates/perms/asset_permission_list.html:58
 #: perms/templates/perms/asset_permission_list.html:145 templates/_nav.html:26
@@ -857,8 +857,8 @@ msgstr "快速修改"
 
 #: assets/templates/assets/asset_detail.html:143
 #: assets/templates/assets/asset_list.html:89
-#: assets/templates/assets/user_asset_list.html:47 perms/models.py:25
-#: perms/models.py:70
+#: assets/templates/assets/user_asset_list.html:47 perms/models.py:35
+#: perms/models.py:79
 #: perms/templates/perms/asset_permission_create_update.html:47
 #: perms/templates/perms/asset_permission_detail.html:120
 #: perms/templates/perms/asset_permission_list.html:59
@@ -1198,7 +1198,7 @@ msgstr "成功"
 #: audits/templates/audits/ftp_log_list.html:78
 #: ops/templates/ops/adhoc_history.html:52
 #: ops/templates/ops/adhoc_history_detail.html:61
-#: ops/templates/ops/task_history.html:58 perms/models.py:26
+#: ops/templates/ops/task_history.html:58 perms/models.py:36
 #: perms/templates/perms/asset_permission_detail.html:86 terminal/models.py:137
 #: terminal/templates/terminal/session_list.html:77
 msgid "Date start"
@@ -1712,7 +1712,7 @@ msgstr "执行历史"
 msgid "Select users"
 msgstr "选择用户"
 
-#: perms/forms.py:34 perms/models.py:21 perms/models.py:68
+#: perms/forms.py:34 perms/models.py:31 perms/models.py:77
 #: perms/templates/perms/asset_permission_list.html:55
 #: perms/templates/perms/asset_permission_list.html:136 templates/_nav.html:14
 #: users/models/group.py:25 users/models/user.py:48
@@ -1730,14 +1730,14 @@ msgstr ""
 msgid "Asset or group at least one required"
 msgstr ""
 
-#: perms/models.py:27 perms/models.py:71
+#: perms/models.py:37 perms/models.py:80
 #: perms/templates/perms/asset_permission_detail.html:90
 #: users/models/user.py:80 users/templates/users/user_detail.html:103
 #: users/templates/users/user_profile.html:105
 msgid "Date expired"
 msgstr "失效日期"
 
-#: perms/models.py:81 templates/_nav.html:34
+#: perms/models.py:90 templates/_nav.html:34
 msgid "Asset permission"
 msgstr "资产授权"
 
@@ -2299,6 +2299,7 @@ msgstr ""
 "设置复杂密码，启用MFA认证）"
 
 #: users/forms.py:154 users/templates/users/first_login.html:48
+#: users/templates/users/first_login.html:107
 #: users/templates/users/first_login.html:130
 msgid "Finish"
 msgstr "完成"
@@ -2954,5 +2955,3 @@ msgstr "MFA 解绑成功"
 #: users/views/user.py:519
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"
-
-
diff --git a/apps/perms/models.py b/apps/perms/models.py
index 954cbe5f6..f7792ee6d 100644
--- a/apps/perms/models.py
+++ b/apps/perms/models.py
@@ -7,13 +7,23 @@ from django.utils import timezone
 from common.utils import date_expired_default, set_or_append_attr_bulk
 
 
-class ValidManager(models.Manager):
-    def get_queryset(self):
-        return super().get_queryset().filter(is_active=True) \
-            .filter(date_start__lt=timezone.now())\
+class AssetPermissionQuerySet(models.QuerySet):
+    def active(self):
+        return self.filter(is_active=True)
+
+    def valid(self):
+        return self.active().filter(date_start__lt=timezone.now())\
             .filter(date_expired__gt=timezone.now())
 
 
+class AssetPermissionManager(models.Manager):
+    def get_queryset(self):
+        return AssetPermissionQuerySet(self.model, using=self._db)
+
+    def valid(self):
+        return self.get_queryset().valid()
+
+
 class AssetPermission(models.Model):
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
@@ -29,8 +39,7 @@ class AssetPermission(models.Model):
     date_created = models.DateTimeField(auto_now_add=True, verbose_name=_('Date created'))
     comment = models.TextField(verbose_name=_('Comment'), blank=True)
 
-    objects = models.Manager()
-    valid = ValidManager()
+    objects = AssetPermissionManager()
 
     def __str__(self):
         return self.name
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index 81ac4bf05..b23b1cb7c 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -16,23 +16,23 @@ class AssetPermissionUtil:
 
     @staticmethod
     def get_user_permissions(user):
-        return AssetPermission.valid.all().filter(users=user)
+        return AssetPermission.objects.all().valid().filter(users=user)
 
     @staticmethod
     def get_user_group_permissions(user_group):
-        return AssetPermission.valid.all().filter(user_groups=user_group)
+        return AssetPermission.objects.all().valid().filter(user_groups=user_group)
 
     @staticmethod
     def get_asset_permissions(asset):
-        return AssetPermission.valid.all().filter(assets=asset)
+        return AssetPermission.objects.all().valid().filter(assets=asset)
 
     @staticmethod
     def get_node_permissions(node):
-        return AssetPermission.valid.all().filter(nodes=node)
+        return AssetPermission.objects.all().valid().filter(nodes=node)
 
     @staticmethod
     def get_system_user_permissions(system_user):
-        return AssetPermission.objects.all().filter(system_users=system_user)
+        return AssetPermission.objects.valid().all().filter(system_users=system_user)
 
     @classmethod
     def get_user_group_nodes(cls, group):
@@ -51,7 +51,7 @@ class AssetPermissionUtil:
         assets = defaultdict(set)
         permissions = cls.get_user_group_permissions(group)
         for perm in permissions:
-            _assets = perm.assets.all()
+            _assets = perm.assets.all().valid()
             _system_users = perm.system_users.all()
             set_or_append_attr_bulk(_assets, 'permission', perm.id)
             for asset in _assets:
@@ -63,7 +63,7 @@ class AssetPermissionUtil:
         assets = defaultdict(set)
         nodes = cls.get_user_group_nodes(group)
         for node, _system_users in nodes.items():
-            _assets = node.get_all_assets()
+            _assets = node.get_all_valid_assets()
             set_or_append_attr_bulk(_assets, 'inherit_node', node.id)
             set_or_append_attr_bulk(_assets, 'permission', getattr(node, 'permission', None))
             for asset in _assets:
@@ -103,7 +103,7 @@ class AssetPermissionUtil:
         assets = defaultdict(set)
         permissions = list(cls.get_user_permissions(user))
         for perm in permissions:
-            _assets = perm.assets.all()
+            _assets = perm.assets.all().valid()
             _system_users = perm.system_users.all()
             set_or_append_attr_bulk(_assets, 'permission', perm.id)
             for asset in _assets:
@@ -127,7 +127,7 @@ class AssetPermissionUtil:
         assets = defaultdict(set)
         nodes = cls.get_user_nodes_direct(user)
         for node, _system_users in nodes.items():
-            _assets = node.get_all_assets()
+            _assets = node.get_all_valid_assets()
             set_or_append_attr_bulk(_assets, 'inherit_node', node.id)
             set_or_append_attr_bulk(_assets, 'permission', getattr(node, 'permission', None))
             for asset in _assets:
@@ -180,10 +180,10 @@ class AssetPermissionUtil:
         assets = set()
         permissions = cls.get_system_user_permissions(system_user)
         for perm in permissions:
-            assets.update(set(perm.assets.all()))
+            assets.update(set(perm.assets.all().valid()))
             nodes = perm.nodes.all()
             for node in nodes:
-                assets.update(set(node.get_all_assets()))
+                assets.update(set(node.get_all_valid_assets()))
         return assets
 
     @classmethod
@@ -243,7 +243,7 @@ class NodePermissionUtil:
         nodes_with_assets = dict()
         for node, system_users in nodes.items():
             nodes_with_assets[node] = {
-                'assets': node.get_active_assets(),
+                'assets': node.get_valid_assets(),
                 'system_users': system_users
             }
         return nodes_with_assets
@@ -274,7 +274,7 @@ class NodePermissionUtil:
         nodes_with_assets = dict()
         for node, system_users in nodes.items():
             nodes_with_assets[node] = {
-                'assets': node.get_active_assets(),
+                'assets': node.get_valid_assets(),
                 'system_users': system_users
             }
         return nodes_with_assets

From c0bbda97699099f697c37ba2d9405d4bef702289 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Fri, 27 Apr 2018 15:38:13 +0800
Subject: [PATCH 010/112] =?UTF-8?q?[Update]=20=E6=9A=82=E6=97=B6=E9=9A=90?=
 =?UTF-8?q?=E8=97=8Frdp=E7=9A=84session=EF=BC=8C=E7=AD=89=E5=BE=85windows?=
 =?UTF-8?q?=E5=BD=95=E5=83=8F=E6=92=AD=E6=94=BE=20(#1276)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/views/session.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/terminal/views/session.py b/apps/terminal/views/session.py
index 3b66baff7..24e323647 100644
--- a/apps/terminal/views/session.py
+++ b/apps/terminal/views/session.py
@@ -47,7 +47,8 @@ class SessionListView(AdminUserRequiredMixin, DatetimeSearchMixin, ListView):
             filter_kwargs['system_user'] = self.system_user
         if filter_kwargs:
             self.queryset = self.queryset.filter(**filter_kwargs)
-        return self.queryset
+        # Todo: 暂时隐藏rdp
+        return self.queryset.filter(protocol='ssh')
 
     def get_context_data(self, **kwargs):
         context = {

From 9fa6b3e38736b15abcafaf81a4333d0f95218fc4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Fri, 27 Apr 2018 21:23:18 +0800
Subject: [PATCH 011/112] =?UTF-8?q?[Update]=20=E6=9A=82=E6=97=B6=E9=9A=90?=
 =?UTF-8?q?=E8=97=8Frdp=E7=9A=84session=EF=BC=8C=E7=AD=89=E5=BE=85windows?=
 =?UTF-8?q?=E5=BD=95=E5=83=8F=E6=92=AD=E6=94=BE=20(#1276)=20(#1278)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/views/session.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/terminal/views/session.py b/apps/terminal/views/session.py
index 3b66baff7..24e323647 100644
--- a/apps/terminal/views/session.py
+++ b/apps/terminal/views/session.py
@@ -47,7 +47,8 @@ class SessionListView(AdminUserRequiredMixin, DatetimeSearchMixin, ListView):
             filter_kwargs['system_user'] = self.system_user
         if filter_kwargs:
             self.queryset = self.queryset.filter(**filter_kwargs)
-        return self.queryset
+        # Todo: 暂时隐藏rdp
+        return self.queryset.filter(protocol='ssh')
 
     def get_context_data(self, **kwargs):
         context = {

From 0b89ff17fdc981a177eb9e87114d97c4f568abba Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 2 May 2018 10:48:39 +0800
Subject: [PATCH 012/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E7=89=88?=
 =?UTF-8?q?=E6=9C=AC=E5=8F=B7?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/__init__.py            | 2 +-
 apps/templates/_footer.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/__init__.py b/apps/__init__.py
index def994bcd..90767858b 100644
--- a/apps/__init__.py
+++ b/apps/__init__.py
@@ -2,4 +2,4 @@
 # -*- coding: utf-8 -*-
 #
 
-__version__ = "1.2.1"
+__version__ = "1.3.0"
diff --git a/apps/templates/_footer.html b/apps/templates/_footer.html
index f23c89399..8a723646d 100644
--- a/apps/templates/_footer.html
+++ b/apps/templates/_footer.html
@@ -1,6 +1,6 @@
 <div class="footer fixed">
     <div class="pull-right">
-        Version <strong>1.2.1-{% include '_build.html' %}</strong> GPLv2.
+        Version <strong>1.3.0-{% include '_build.html' %}</strong> GPLv2.
         <img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg">
     </div>
     <div>

From 1edfb1cec431293ef3cf1e706f41a6b43264f41a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Wed, 2 May 2018 10:52:57 +0800
Subject: [PATCH 013/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E7=89=88?=
 =?UTF-8?q?=E6=9C=AC=E5=8F=B7=20(#1282)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/__init__.py            | 2 +-
 apps/templates/_footer.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/__init__.py b/apps/__init__.py
index def994bcd..90767858b 100644
--- a/apps/__init__.py
+++ b/apps/__init__.py
@@ -2,4 +2,4 @@
 # -*- coding: utf-8 -*-
 #
 
-__version__ = "1.2.1"
+__version__ = "1.3.0"
diff --git a/apps/templates/_footer.html b/apps/templates/_footer.html
index f23c89399..8a723646d 100644
--- a/apps/templates/_footer.html
+++ b/apps/templates/_footer.html
@@ -1,6 +1,6 @@
 <div class="footer fixed">
     <div class="pull-right">
-        Version <strong>1.2.1-{% include '_build.html' %}</strong> GPLv2.
+        Version <strong>1.3.0-{% include '_build.html' %}</strong> GPLv2.
         <img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg">
     </div>
     <div>

From e291ca90573da4806822e1095f686a72c8d1ebf2 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 2 May 2018 18:15:48 +0800
Subject: [PATCH 014/112] =?UTF-8?q?[Update]=20=E9=BB=98=E8=AE=A4=E5=85=B3?=
 =?UTF-8?q?=E9=97=AD=E5=AE=9A=E6=97=B6=E4=BB=BB=E5=8A=A1?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/tasks.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/assets/tasks.py b/apps/assets/tasks.py
index dd660bc42..f1773df11 100644
--- a/apps/assets/tasks.py
+++ b/apps/assets/tasks.py
@@ -22,7 +22,7 @@ TIMEOUT = 60
 logger = get_logger(__file__)
 CACHE_MAX_TIME = 60*60*60
 disk_pattern = re.compile(r'^hd|sd|xvd|vd')
-PERIOD_TASK = os.environ.get("PERIOD_TASK", "on")
+PERIOD_TASK = os.environ.get("PERIOD_TASK", "off")
 
 
 @shared_task

From 966123e4c63cb3ad044a7e6feb204f6e0287d31d Mon Sep 17 00:00:00 2001
From: zhangbohan <zbhlove100@gmail.com>
Date: Thu, 3 May 2018 22:48:24 +0800
Subject: [PATCH 015/112] =?UTF-8?q?README=E5=8A=9F=E8=83=BD=E8=AF=B4?=
 =?UTF-8?q?=E6=98=8E=E4=BF=AE=E6=94=B9?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 README.md | 10 ++--------
 1 file changed, 2 insertions(+), 8 deletions(-)

diff --git a/README.md b/README.md
index e44a23f9c..a0cce780d 100644
--- a/README.md
+++ b/README.md
@@ -19,14 +19,8 @@ Jumpserver采纳分布式架构，支持多机房跨区域部署，中心节点
 ----
 
 ### 功能
-  - 统一认证
-  - 资产管理
-  - 统一授权
-  - 审计
-  - 支持LDAP认证
-  - Web terminal
-  - SSH Server
-  - 支持Windows RDP
+  
+ ![Jumpserver功能](https://jumpserver-release.oss-cn-hangzhou.aliyuncs.com/Jumpserver%201.3%20%E5%8A%9F%E8%83%BD%E8%A1%A8%E6%A0%BC.001.jpeg "Jumpserver功能")
 
 ### 开始使用
 

From 7a27021d3d9fa294c8a6bc486d144c4d5b7fa27b Mon Sep 17 00:00:00 2001
From: zhangbohan <zbhlove100@gmail.com>
Date: Thu, 3 May 2018 23:02:12 +0800
Subject: [PATCH 016/112] =?UTF-8?q?=E5=9B=BE=E7=89=87=E8=B0=83=E5=B0=8F?=
 =?UTF-8?q?=E4=B8=80=E4=BA=9B?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index a0cce780d..df8324761 100644
--- a/README.md
+++ b/README.md
@@ -20,7 +20,7 @@ Jumpserver采纳分布式架构，支持多机房跨区域部署，中心节点
 
 ### 功能
   
- ![Jumpserver功能](https://jumpserver-release.oss-cn-hangzhou.aliyuncs.com/Jumpserver%201.3%20%E5%8A%9F%E8%83%BD%E8%A1%A8%E6%A0%BC.001.jpeg "Jumpserver功能")
+ ![Jumpserver功能](https://jumpserver-release.oss-cn-hangzhou.aliyuncs.com/Jumpserver13.jpg "Jumpserver功能")
 
 ### 开始使用
 

From cde2e7adb06698d40957a2ade78be6151c5068d0 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 4 May 2018 14:54:58 +0800
Subject: [PATCH 017/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E6=8E=88?=
 =?UTF-8?q?=E6=9D=83=E5=88=97=E8=A1=A8=E5=88=9B=E5=BB=BAapi=EF=BC=8C?=
 =?UTF-8?q?=E8=BF=94=E5=9B=9Eid?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/serializers.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/perms/serializers.py b/apps/perms/serializers.py
index baa823a6f..0f0419eff 100644
--- a/apps/perms/serializers.py
+++ b/apps/perms/serializers.py
@@ -9,7 +9,7 @@ from common.fields import StringManyToManyField
 class AssetPermissionCreateUpdateSerializer(serializers.ModelSerializer):
     class Meta:
         model = AssetPermission
-        exclude = ('id', 'created_by', 'date_created')
+        exclude = ('created_by', 'date_created')
 
 
 class AssetPermissionListSerializer(serializers.ModelSerializer):

From 4ed9e110909c1ec07f0f3b2d0a6f2dba6300d0b3 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 4 May 2018 14:58:52 +0800
Subject: [PATCH 018/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E5=90=8D=E6=A0=A1=E9=AA=8C=E8=A7=84=E5=88=99?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/common/validators.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/common/validators.py b/apps/common/validators.py
index 9a4c1e501..b273bd1de 100644
--- a/apps/common/validators.py
+++ b/apps/common/validators.py
@@ -4,4 +4,4 @@ from django.core.validators import RegexValidator
 from django.utils.translation import ugettext_lazy as _
 
 
-alphanumeric = RegexValidator(r'^[0-9a-zA-Z_-]*$', _('Special char not allowed'))
\ No newline at end of file
+alphanumeric = RegexValidator(r'^[0-9a-zA-Z_@\-\.]*$', _('Special char not allowed'))
\ No newline at end of file

From 01d136cf1ec69bb8577c1acfbea1ca8b9a40f97f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Fri, 4 May 2018 15:01:49 +0800
Subject: [PATCH 019/112] Perms return (#1293)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [Update] 修改版本号

* [Update] 默认关闭定时任务

* [Update] 修改授权列表创建api，返回id

* [Update] 修改用户名校验规则
---
 apps/assets/tasks.py      | 2 +-
 apps/common/validators.py | 2 +-
 apps/perms/serializers.py | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/apps/assets/tasks.py b/apps/assets/tasks.py
index dd660bc42..f1773df11 100644
--- a/apps/assets/tasks.py
+++ b/apps/assets/tasks.py
@@ -22,7 +22,7 @@ TIMEOUT = 60
 logger = get_logger(__file__)
 CACHE_MAX_TIME = 60*60*60
 disk_pattern = re.compile(r'^hd|sd|xvd|vd')
-PERIOD_TASK = os.environ.get("PERIOD_TASK", "on")
+PERIOD_TASK = os.environ.get("PERIOD_TASK", "off")
 
 
 @shared_task
diff --git a/apps/common/validators.py b/apps/common/validators.py
index 9a4c1e501..b273bd1de 100644
--- a/apps/common/validators.py
+++ b/apps/common/validators.py
@@ -4,4 +4,4 @@ from django.core.validators import RegexValidator
 from django.utils.translation import ugettext_lazy as _
 
 
-alphanumeric = RegexValidator(r'^[0-9a-zA-Z_-]*$', _('Special char not allowed'))
\ No newline at end of file
+alphanumeric = RegexValidator(r'^[0-9a-zA-Z_@\-\.]*$', _('Special char not allowed'))
\ No newline at end of file
diff --git a/apps/perms/serializers.py b/apps/perms/serializers.py
index baa823a6f..0f0419eff 100644
--- a/apps/perms/serializers.py
+++ b/apps/perms/serializers.py
@@ -9,7 +9,7 @@ from common.fields import StringManyToManyField
 class AssetPermissionCreateUpdateSerializer(serializers.ModelSerializer):
     class Meta:
         model = AssetPermission
-        exclude = ('id', 'created_by', 'date_created')
+        exclude = ('created_by', 'date_created')
 
 
 class AssetPermissionListSerializer(serializers.ModelSerializer):

From e630321e55bd1f8b165f8b5e5651d4995f1232de Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Fri, 4 May 2018 15:04:39 +0800
Subject: [PATCH 020/112] Perms return (#1293) (#1294)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [Update] 修改版本号

* [Update] 默认关闭定时任务

* [Update] 修改授权列表创建api，返回id

* [Update] 修改用户名校验规则
---
 apps/assets/tasks.py      | 2 +-
 apps/common/validators.py | 2 +-
 apps/perms/serializers.py | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/apps/assets/tasks.py b/apps/assets/tasks.py
index dd660bc42..f1773df11 100644
--- a/apps/assets/tasks.py
+++ b/apps/assets/tasks.py
@@ -22,7 +22,7 @@ TIMEOUT = 60
 logger = get_logger(__file__)
 CACHE_MAX_TIME = 60*60*60
 disk_pattern = re.compile(r'^hd|sd|xvd|vd')
-PERIOD_TASK = os.environ.get("PERIOD_TASK", "on")
+PERIOD_TASK = os.environ.get("PERIOD_TASK", "off")
 
 
 @shared_task
diff --git a/apps/common/validators.py b/apps/common/validators.py
index 9a4c1e501..b273bd1de 100644
--- a/apps/common/validators.py
+++ b/apps/common/validators.py
@@ -4,4 +4,4 @@ from django.core.validators import RegexValidator
 from django.utils.translation import ugettext_lazy as _
 
 
-alphanumeric = RegexValidator(r'^[0-9a-zA-Z_-]*$', _('Special char not allowed'))
\ No newline at end of file
+alphanumeric = RegexValidator(r'^[0-9a-zA-Z_@\-\.]*$', _('Special char not allowed'))
\ No newline at end of file
diff --git a/apps/perms/serializers.py b/apps/perms/serializers.py
index baa823a6f..0f0419eff 100644
--- a/apps/perms/serializers.py
+++ b/apps/perms/serializers.py
@@ -9,7 +9,7 @@ from common.fields import StringManyToManyField
 class AssetPermissionCreateUpdateSerializer(serializers.ModelSerializer):
     class Meta:
         model = AssetPermission
-        exclude = ('id', 'created_by', 'date_created')
+        exclude = ('created_by', 'date_created')
 
 
 class AssetPermissionListSerializer(serializers.ModelSerializer):

From 941e55bdec074fec71242c9d53b7d9b4da404ef6 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 7 May 2018 13:11:02 +0800
Subject: [PATCH 021/112] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0ldap=20aut?=
 =?UTF-8?q?h=20timeout=E6=97=B6=E9=97=B4?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/jumpserver/settings.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index 0afcd4e72..b75b73ec9 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -329,6 +329,9 @@ AUTH_LDAP_GROUP_SEARCH_FILTER = CONFIG.AUTH_LDAP_GROUP_SEARCH_FILTER
 AUTH_LDAP_GROUP_SEARCH = LDAPSearch(
     AUTH_LDAP_GROUP_SEARCH_OU, ldap.SCOPE_SUBTREE, AUTH_LDAP_GROUP_SEARCH_FILTER
 )
+AUTH_LDAP_CONNECTION_OPTIONS = {
+    ldap.TIMEOUT: 5
+}
 AUTH_LDAP_ALWAYS_UPDATE_USER = True
 AUTH_LDAP_BACKEND = 'django_auth_ldap.backend.LDAPBackend'
 

From d2b0aba620d480db3b5ba2b53b48f42c4651de36 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 7 May 2018 19:28:01 +0800
Subject: [PATCH 022/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9replay=20a?=
 =?UTF-8?q?pi?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/api.py           | 50 ++++++++++++----------------------
 apps/terminal/views/session.py |  3 +-
 2 files changed, 19 insertions(+), 34 deletions(-)

diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index a964e9729..eb4b6400a 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -304,40 +304,24 @@ class SessionReplayViewSet(viewsets.ViewSet):
         return HttpResponseNotFound()
 
 
-class SessionReplayV2ViewSet(viewsets.ViewSet):
+class SessionReplayV2ViewSet(SessionReplayViewSet):
     serializer_class = ReplaySerializer
     permission_classes = (IsSuperUserOrAppUser,)
     session = None
 
-    def gen_session_path(self):
-        date = self.session.date_start.strftime('%Y-%m-%d')
-        replay = {
-            "id": self.session.id,
-            # "width": 100,
-            # "heith": 100
-        }
-        if self.session.protocol == "ssh":
-            replay['type'] = "json"
-            replay['path'] = os.path.join(date, str(self.session.id) + '.gz')
-            return replay
-        elif self.session.protocol == "rdp":
-            replay['type'] = "mp4"
-            replay['path'] = os.path.join(date, str(self.session.id) + '.mp4')
-            return replay
-        else:
-            return replay
-
     def retrieve(self, request, *args, **kwargs):
         session_id = kwargs.get('pk')
         self.session = get_object_or_404(Session, id=session_id)
-        replay = self.gen_session_path()
+        path = self.gen_session_path()
+        data = {
+            'type': 'guacamole' if self.session.protocol == 'rdp' else 'json',
+            'src': '',
+        }
 
-        if replay.get("path", "") == "":
-            return HttpResponseNotFound()
-
-        if default_storage.exists(replay["path"]):
-            replay["src"] = default_storage.url(replay["path"])
-            return Response(replay)
+        if default_storage.exists(path):
+            url = default_storage.url(path)
+            data['src'] = url
+            return Response(data)
         else:
             configs = settings.TERMINAL_REPLAY_STORAGE.items()
             if not configs:
@@ -345,13 +329,15 @@ class SessionReplayV2ViewSet(viewsets.ViewSet):
 
             for name, config in configs:
                 client = jms_storage.init(config)
+                date = self.session.date_start.strftime('%Y-%m-%d')
+                file_path = os.path.join(date, str(self.session.id) + '.replay.gz')
+                target_path = default_storage.base_location + '/' + path
 
-                target_path = default_storage.base_location + '/' + replay["path"]
-
-                if client and client.has_file(replay["path"]) and \
-                        client.download_file(replay["path"], target_path):
-                    replay["src"] = default_storage.url(replay["path"])
-                    return Response(replay)
+                if client and client.has_file(file_path) and \
+                        client.download_file(file_path, target_path):
+                    url = default_storage.url(path)
+                    data['src'] = url
+                    return Response(data)
         return HttpResponseNotFound()
 
 
diff --git a/apps/terminal/views/session.py b/apps/terminal/views/session.py
index 24e323647..3b66baff7 100644
--- a/apps/terminal/views/session.py
+++ b/apps/terminal/views/session.py
@@ -47,8 +47,7 @@ class SessionListView(AdminUserRequiredMixin, DatetimeSearchMixin, ListView):
             filter_kwargs['system_user'] = self.system_user
         if filter_kwargs:
             self.queryset = self.queryset.filter(**filter_kwargs)
-        # Todo: 暂时隐藏rdp
-        return self.queryset.filter(protocol='ssh')
+        return self.queryset
 
     def get_context_data(self, **kwargs):
         context = {

From e9b86ca668b71124d7b8af4123dad246d673d62e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Tue, 8 May 2018 09:05:10 +0800
Subject: [PATCH 023/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9replay=20a?=
 =?UTF-8?q?pi=20(#1298)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/api.py           | 50 ++++++++++++----------------------
 apps/terminal/views/session.py |  3 +-
 2 files changed, 19 insertions(+), 34 deletions(-)

diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index a964e9729..eb4b6400a 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -304,40 +304,24 @@ class SessionReplayViewSet(viewsets.ViewSet):
         return HttpResponseNotFound()
 
 
-class SessionReplayV2ViewSet(viewsets.ViewSet):
+class SessionReplayV2ViewSet(SessionReplayViewSet):
     serializer_class = ReplaySerializer
     permission_classes = (IsSuperUserOrAppUser,)
     session = None
 
-    def gen_session_path(self):
-        date = self.session.date_start.strftime('%Y-%m-%d')
-        replay = {
-            "id": self.session.id,
-            # "width": 100,
-            # "heith": 100
-        }
-        if self.session.protocol == "ssh":
-            replay['type'] = "json"
-            replay['path'] = os.path.join(date, str(self.session.id) + '.gz')
-            return replay
-        elif self.session.protocol == "rdp":
-            replay['type'] = "mp4"
-            replay['path'] = os.path.join(date, str(self.session.id) + '.mp4')
-            return replay
-        else:
-            return replay
-
     def retrieve(self, request, *args, **kwargs):
         session_id = kwargs.get('pk')
         self.session = get_object_or_404(Session, id=session_id)
-        replay = self.gen_session_path()
+        path = self.gen_session_path()
+        data = {
+            'type': 'guacamole' if self.session.protocol == 'rdp' else 'json',
+            'src': '',
+        }
 
-        if replay.get("path", "") == "":
-            return HttpResponseNotFound()
-
-        if default_storage.exists(replay["path"]):
-            replay["src"] = default_storage.url(replay["path"])
-            return Response(replay)
+        if default_storage.exists(path):
+            url = default_storage.url(path)
+            data['src'] = url
+            return Response(data)
         else:
             configs = settings.TERMINAL_REPLAY_STORAGE.items()
             if not configs:
@@ -345,13 +329,15 @@ class SessionReplayV2ViewSet(viewsets.ViewSet):
 
             for name, config in configs:
                 client = jms_storage.init(config)
+                date = self.session.date_start.strftime('%Y-%m-%d')
+                file_path = os.path.join(date, str(self.session.id) + '.replay.gz')
+                target_path = default_storage.base_location + '/' + path
 
-                target_path = default_storage.base_location + '/' + replay["path"]
-
-                if client and client.has_file(replay["path"]) and \
-                        client.download_file(replay["path"], target_path):
-                    replay["src"] = default_storage.url(replay["path"])
-                    return Response(replay)
+                if client and client.has_file(file_path) and \
+                        client.download_file(file_path, target_path):
+                    url = default_storage.url(path)
+                    data['src'] = url
+                    return Response(data)
         return HttpResponseNotFound()
 
 
diff --git a/apps/terminal/views/session.py b/apps/terminal/views/session.py
index 24e323647..3b66baff7 100644
--- a/apps/terminal/views/session.py
+++ b/apps/terminal/views/session.py
@@ -47,8 +47,7 @@ class SessionListView(AdminUserRequiredMixin, DatetimeSearchMixin, ListView):
             filter_kwargs['system_user'] = self.system_user
         if filter_kwargs:
             self.queryset = self.queryset.filter(**filter_kwargs)
-        # Todo: 暂时隐藏rdp
-        return self.queryset.filter(protocol='ssh')
+        return self.queryset
 
     def get_context_data(self, **kwargs):
         context = {

From dfd98f8aea9b01b92a9cd297a1b239f489dfb4f5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Tue, 8 May 2018 09:06:33 +0800
Subject: [PATCH 024/112] Dev (#1299)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [Update] 修改版本号

* [Update] 默认关闭定时任务

* [Update] 修改授权列表创建api，返回id

* [Update] 修改用户名校验规则

* Perms return (#1293)

* [Update] 修改版本号

* [Update] 默认关闭定时任务

* [Update] 修改授权列表创建api，返回id

* [Update] 修改用户名校验规则

* [Update] 添加ldap auth timeout时间

* [Update] 修改replay api (#1298)
---
 apps/jumpserver/settings.py    |  3 ++
 apps/terminal/api.py           | 50 ++++++++++++----------------------
 apps/terminal/views/session.py |  3 +-
 3 files changed, 22 insertions(+), 34 deletions(-)

diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index 0afcd4e72..b75b73ec9 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -329,6 +329,9 @@ AUTH_LDAP_GROUP_SEARCH_FILTER = CONFIG.AUTH_LDAP_GROUP_SEARCH_FILTER
 AUTH_LDAP_GROUP_SEARCH = LDAPSearch(
     AUTH_LDAP_GROUP_SEARCH_OU, ldap.SCOPE_SUBTREE, AUTH_LDAP_GROUP_SEARCH_FILTER
 )
+AUTH_LDAP_CONNECTION_OPTIONS = {
+    ldap.TIMEOUT: 5
+}
 AUTH_LDAP_ALWAYS_UPDATE_USER = True
 AUTH_LDAP_BACKEND = 'django_auth_ldap.backend.LDAPBackend'
 
diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index a964e9729..eb4b6400a 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -304,40 +304,24 @@ class SessionReplayViewSet(viewsets.ViewSet):
         return HttpResponseNotFound()
 
 
-class SessionReplayV2ViewSet(viewsets.ViewSet):
+class SessionReplayV2ViewSet(SessionReplayViewSet):
     serializer_class = ReplaySerializer
     permission_classes = (IsSuperUserOrAppUser,)
     session = None
 
-    def gen_session_path(self):
-        date = self.session.date_start.strftime('%Y-%m-%d')
-        replay = {
-            "id": self.session.id,
-            # "width": 100,
-            # "heith": 100
-        }
-        if self.session.protocol == "ssh":
-            replay['type'] = "json"
-            replay['path'] = os.path.join(date, str(self.session.id) + '.gz')
-            return replay
-        elif self.session.protocol == "rdp":
-            replay['type'] = "mp4"
-            replay['path'] = os.path.join(date, str(self.session.id) + '.mp4')
-            return replay
-        else:
-            return replay
-
     def retrieve(self, request, *args, **kwargs):
         session_id = kwargs.get('pk')
         self.session = get_object_or_404(Session, id=session_id)
-        replay = self.gen_session_path()
+        path = self.gen_session_path()
+        data = {
+            'type': 'guacamole' if self.session.protocol == 'rdp' else 'json',
+            'src': '',
+        }
 
-        if replay.get("path", "") == "":
-            return HttpResponseNotFound()
-
-        if default_storage.exists(replay["path"]):
-            replay["src"] = default_storage.url(replay["path"])
-            return Response(replay)
+        if default_storage.exists(path):
+            url = default_storage.url(path)
+            data['src'] = url
+            return Response(data)
         else:
             configs = settings.TERMINAL_REPLAY_STORAGE.items()
             if not configs:
@@ -345,13 +329,15 @@ class SessionReplayV2ViewSet(viewsets.ViewSet):
 
             for name, config in configs:
                 client = jms_storage.init(config)
+                date = self.session.date_start.strftime('%Y-%m-%d')
+                file_path = os.path.join(date, str(self.session.id) + '.replay.gz')
+                target_path = default_storage.base_location + '/' + path
 
-                target_path = default_storage.base_location + '/' + replay["path"]
-
-                if client and client.has_file(replay["path"]) and \
-                        client.download_file(replay["path"], target_path):
-                    replay["src"] = default_storage.url(replay["path"])
-                    return Response(replay)
+                if client and client.has_file(file_path) and \
+                        client.download_file(file_path, target_path):
+                    url = default_storage.url(path)
+                    data['src'] = url
+                    return Response(data)
         return HttpResponseNotFound()
 
 
diff --git a/apps/terminal/views/session.py b/apps/terminal/views/session.py
index 24e323647..3b66baff7 100644
--- a/apps/terminal/views/session.py
+++ b/apps/terminal/views/session.py
@@ -47,8 +47,7 @@ class SessionListView(AdminUserRequiredMixin, DatetimeSearchMixin, ListView):
             filter_kwargs['system_user'] = self.system_user
         if filter_kwargs:
             self.queryset = self.queryset.filter(**filter_kwargs)
-        # Todo: 暂时隐藏rdp
-        return self.queryset.filter(protocol='ssh')
+        return self.queryset
 
     def get_context_data(self, **kwargs):
         context = {

From 0a9af9872996eb565b3448331f11ed194a406c11 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 8 May 2018 10:13:33 +0800
Subject: [PATCH 025/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8Dldap?=
 =?UTF-8?q?=E5=8F=82=E6=95=B0=E6=94=B9=E9=94=99=E5=BC=95=E8=B5=B7=E7=9A=84?=
 =?UTF-8?q?bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/jumpserver/settings.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index b75b73ec9..af72292f7 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -330,7 +330,7 @@ AUTH_LDAP_GROUP_SEARCH = LDAPSearch(
     AUTH_LDAP_GROUP_SEARCH_OU, ldap.SCOPE_SUBTREE, AUTH_LDAP_GROUP_SEARCH_FILTER
 )
 AUTH_LDAP_CONNECTION_OPTIONS = {
-    ldap.TIMEOUT: 5
+    ldap.OPT_TIMEOUT: 5
 }
 AUTH_LDAP_ALWAYS_UPDATE_USER = True
 AUTH_LDAP_BACKEND = 'django_auth_ldap.backend.LDAPBackend'

From 2a8358b1aa0ebb899ccb7a77d670c82c62e7c579 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=80=81=E5=B9=BF?= <ibuler@qq.com>
Date: Tue, 8 May 2018 10:48:52 +0800
Subject: [PATCH 026/112] Bugfix ldap option (#1300)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* [Update] 修改replay api

* [Bugfix] 修复ldap参数改错引起的bug
---
 apps/jumpserver/settings.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index b75b73ec9..af72292f7 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -330,7 +330,7 @@ AUTH_LDAP_GROUP_SEARCH = LDAPSearch(
     AUTH_LDAP_GROUP_SEARCH_OU, ldap.SCOPE_SUBTREE, AUTH_LDAP_GROUP_SEARCH_FILTER
 )
 AUTH_LDAP_CONNECTION_OPTIONS = {
-    ldap.TIMEOUT: 5
+    ldap.OPT_TIMEOUT: 5
 }
 AUTH_LDAP_ALWAYS_UPDATE_USER = True
 AUTH_LDAP_BACKEND = 'django_auth_ldap.backend.LDAPBackend'

From 3af01d6a31656c0f74106ab67319083c0eda549b Mon Sep 17 00:00:00 2001
From: BaiJiangjie <baijiangjie@Bai-Mac.local>
Date: Tue, 8 May 2018 18:02:19 +0800
Subject: [PATCH 027/112] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0=E5=8A=9F?=
 =?UTF-8?q?=E8=83=BD=EF=BC=9A=E8=B5=84=E4=BA=A7=E6=A0=91=E6=98=BE=E7=A4=BA?=
 =?UTF-8?q?=E5=85=A8=E9=83=A8/=E5=8F=AA=E6=98=BE=E7=A4=BA=E5=BD=93?=
 =?UTF-8?q?=E5=89=8D=E8=8A=82=E7=82=B9=E4=B8=8B=E7=9A=84=E8=B5=84=E4=BA=A7?=
 =?UTF-8?q?=EF=BC=9B=E4=BF=AE=E5=A4=8D=E8=B5=84=E4=BA=A7=E6=A0=91=E8=8A=82?=
 =?UTF-8?q?=E7=82=B9=E4=B8=BB=E6=9C=BA=E6=95=B0=E4=B8=8E=E5=88=97=E8=A1=A8?=
 =?UTF-8?q?=E6=98=BE=E7=A4=BA=E4=B8=8D=E4=B8=80=E8=87=B4?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/asset.py                     |   6 +-
 apps/assets/api/node.py                      |  10 ++-
 apps/assets/models/node.py                   |   5 ++
 apps/assets/serializers/node.py              |   8 +-
 apps/assets/templates/assets/asset_list.html |  62 +++++++++++---
 apps/i18n/zh/LC_MESSAGES/django.mo           | Bin 33090 -> 33242 bytes
 apps/i18n/zh/LC_MESSAGES/django.po           |  85 ++++++++++---------
 7 files changed, 120 insertions(+), 56 deletions(-)

diff --git a/apps/assets/api/asset.py b/apps/assets/api/asset.py
index 50c037df9..b3855eba1 100644
--- a/apps/assets/api/asset.py
+++ b/apps/assets/api/asset.py
@@ -43,6 +43,7 @@ class AssetViewSet(IDInFilterMixin, LabelFilter, BulkModelViewSet):
         queryset = super().get_queryset()
         admin_user_id = self.request.query_params.get('admin_user_id')
         node_id = self.request.query_params.get("node_id")
+        show_current_asset = self.request.query_params.get("show_current_asset")
 
         if admin_user_id:
             admin_user = get_object_or_404(AdminUser, id=admin_user_id)
@@ -51,8 +52,11 @@ class AssetViewSet(IDInFilterMixin, LabelFilter, BulkModelViewSet):
             node = get_object_or_404(Node, id=node_id)
             if not node.is_root():
                 queryset = queryset.filter(
-                    nodes__key__regex='{}(:[0-9]+)*$'.format(node.key),
+                    nodes__key__regex='^{}(:[0-9]+)*$'.format(node.key),
                 ).distinct()
+        if show_current_asset and node_id:
+            queryset = queryset.filter(nodes=node_id).distinct()
+
         return queryset
 
 
diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index cc940757f..939444ccc 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -41,7 +41,15 @@ __all__ = [
 class NodeViewSet(BulkModelViewSet):
     queryset = Node.objects.all()
     permission_classes = (IsSuperUser,)
-    serializer_class = serializers.NodeSerializer
+    # serializer_class = serializers.NodeSerializer
+
+    def get_serializer_class(self):
+        show_current_asset = self.request.query_params.get('show_current_asset')
+        print(show_current_asset)
+        if show_current_asset:
+            return serializers.NodeCurrentSerializer
+        else:
+            return serializers.NodeSerializer
 
     def perform_create(self, serializer):
         child_key = Node.root().get_next_child_key()
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 7939ad1e9..89e4a6b70 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -75,6 +75,11 @@ class Node(models.Model):
             assets = Asset.objects.filter(nodes__in=nodes).distinct()
         return assets
 
+    def get_current_assets(self):
+        from .asset import Asset
+        assets = Asset.objects.filter(nodes=self).distinct()
+        return assets
+
     def has_assets(self):
         return self.get_all_assets()
 
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index 5b58ff241..225d5655a 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -9,7 +9,7 @@ from .asset import AssetGrantedSerializer
 
 __all__ = [
     'NodeSerializer', "NodeGrantedSerializer", "NodeAddChildrenSerializer",
-    "NodeAssetsSerializer",
+    "NodeAssetsSerializer", "NodeCurrentSerializer",
 ]
 
 
@@ -66,6 +66,12 @@ class NodeSerializer(serializers.ModelSerializer):
         return fields
 
 
+class NodeCurrentSerializer(NodeSerializer):
+    @staticmethod
+    def get_assets_amount(obj):
+        return obj.get_current_assets().count()
+
+
 class NodeAssetsSerializer(serializers.ModelSerializer):
     assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
 
diff --git a/apps/assets/templates/assets/asset_list.html b/apps/assets/templates/assets/asset_list.html
index 04ba11e57..98679694f 100644
--- a/apps/assets/templates/assets/asset_list.html
+++ b/apps/assets/templates/assets/asset_list.html
@@ -47,7 +47,6 @@
                    <div class="file-manager ">
                        <div id="assetTree" class="ztree">
                        </div>
-
                        <div class="clearfix"></div>
                    </div>
                </div>
@@ -87,7 +86,7 @@
                            <th class="text-center">{% trans 'IP' %}</th>
                            <th class="text-center">{% trans 'Hardware' %}</th>
                            <th class="text-center">{% trans 'Active' %}</th>
-                           <th class="text-center">{% trans 'Reachable' %}</th>
+{#                           <th class="text-center">{% trans 'Reachable' %}</th>#}
                            <th class="text-center">{% trans 'Action' %}</th>
                        </tr>
                    </thead>
@@ -127,6 +126,9 @@
         <li class="divider"></li>
         <li id="menu_refresh_hardware_info" class="btn-refresh-hardware" tabindex="-1"><a><i class="fa fa-refresh"></i> {% trans 'Refresh node hardware info' %}</a></li>
         <li id="menu_test_connective" class="btn-test-connective" tabindex="-1"><a><i class="fa fa-chain"></i> {% trans 'Test node connective' %}</a></li>
+        <li class="divider"></li>
+        <li id="show_current_asset" class="btn-show-current-asset" style="display: none;" tabindex="-1"><a><i class="fa fa-hand-o-up"></i> {% trans 'Display only current node assets' %}</a></li>
+        <li id="show_all_asset" class="btn-show-all-asset" style="display: none;" tabindex="-1"><a><i class="fa fa-th"></i> {% trans 'Displays all child node assets' %}</a></li>
     </ul>
 </div>
 
@@ -157,26 +159,35 @@ function initTable() {
                     $(td).html('<i class="fa fa-check text-navy"></i>')
                 }
             }},
-            {targets: 5, createdCell: function (td, cellData) {
-                if (cellData === 'Unknown'){
-                    $(td).html('<i class="fa fa-circle text-warning"></i>')
-                } else if (!cellData) {
-                    $(td).html('<i class="fa fa-circle text-danger"></i>')
-                } else {
-                    $(td).html('<i class="fa fa-circle text-navy"></i>')
-                }
-            }},
-            {targets: 6, createdCell: function (td, cellData, rowData) {
+
+            {#{targets: 5, createdCell: function (td, cellData) {#}
+            {#    if (cellData === 'Unknown'){#}
+            {#        $(td).html('<i class="fa fa-circle text-warning"></i>')#}
+            {#    } else if (!cellData) {#}
+            {#        $(td).html('<i class="fa fa-circle text-danger"></i>')#}
+            {#    } else {#}
+            {#        $(td).html('<i class="fa fa-circle text-navy"></i>')#}
+            {#    }#}
+            {# }},#}
+
+            {targets: 5, createdCell: function (td, cellData, rowData) {
                 var update_btn = '<a href="{% url "assets:asset-update" pk=DEFAULT_PK %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace("{{ DEFAULT_PK }}", cellData);
                 var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_asset_delete" data-uid="{{ DEFAULT_PK }}">{% trans "Delete" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
                 $(td).html(update_btn + del_btn)
             }}
         ],
         ajax_url: '{% url "api-assets:asset-list" %}',
+
+        {#columns: [#}
+        {#    {data: "id"}, {data: "hostname" }, {data: "ip" },#}
+        {#    {data: "cpu_cores"}, {data: "is_active", orderable: false },#}
+        {#    {data: "is_connective", orderable: false}, {data: "id", orderable: false }#}
+        {#],#}
+
         columns: [
             {data: "id"}, {data: "hostname" }, {data: "ip" },
             {data: "cpu_cores"}, {data: "is_active", orderable: false },
-            {data: "is_connective", orderable: false}, {data: "id", orderable: false }
+            {data: "id", orderable: false }
         ],
         op_html: $('#actions').html()
     };
@@ -290,6 +301,7 @@ function onRename(event, treeId, treeNode, isCancel){
 function onSelected(event, treeNode) {
     var url = asset_table.ajax.url();
     url = setUrlParam(url, "node_id", treeNode.id);
+    url = setUrlParam(url, "show_current_asset", getCookie('show_current_asset'));
     setCookie('node_selected', treeNode.id);
     asset_table.ajax.url(url);
     asset_table.ajax.reload();
@@ -382,7 +394,8 @@ function initTree() {
     };
 
     var zNodes = [];
-    $.get("{% url 'api-assets:node-list' %}", function(data, status){
+    var query_params = {'show_current_asset': getCookie('show_current_asset')};
+    $.get("{% url 'api-assets:node-list' %}", query_params, function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
             {#if (value["key"] === "0") {#}
@@ -417,6 +430,13 @@ function toggle() {
 $(document).ready(function(){
     initTable();
     initTree();
+
+    if(getCookie('show_current_asset') === 'yes'){
+        $('#show_all_asset').css('display', 'inline-block');
+    }
+    else{
+        $('#show_current_asset').css('display', 'inline-block');
+    }
 })
 .on('click', '.labels li', function () {
     var val = $(this).text();
@@ -535,6 +555,20 @@ $(document).ready(function(){
         flash_message: false
     });
 })
+.on('click', '.btn-show-current-asset', function(){
+    hideRMenu();
+    $(this).css('display', 'none');
+    $('#show_all_asset').css('display', 'inline-block');
+    setCookie('show_current_asset', 'yes');
+    location.reload();
+})
+.on('click', '.btn-show-all-asset', function(){
+    hideRMenu();
+    $(this).css('display', 'none');
+    $('#show_current_asset').css('display', 'inline-block');
+    setCookie('show_current_asset', '');
+    location.reload();
+})
 .on('click', '.btn_asset_delete', function () {
     var $this = $(this);
     var $data_table = $("#asset_list_table").DataTable();
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 038e65f4355f956a2eb1f56ba8ab8fae46912d00..36220e3219e13e2f33a24be9281b1ef120ef808e 100644
GIT binary patch
delta 11480
zcmZwN37k*W|Htt=V`eZIGh<(3X6&+zbu1BOjD6pi?8DS#hCwEcYp)@t29-#bMvO{?
z2!$k+ttdj4u_a5^Z27<5-}~|Sd;A~&`{?6&&gYza&bjB_`~80T{kBc=KRVgpJrN!-
z$KeR~cbt;AGSqQ)P<|#-S;y&6#c`%%N1TAi@E1SF>08xt7GRC))XDFQcAP@Eq=w^^
z#trxk9>GRfxTfP&#4ctU204!FWKz(?pJ7hi?KL<D%_Eqf{7KA#*HHa$VmOA?a-3XP
z7E54N%!4g0-xZ^%zkoV#A_m|`n3MUPB^0=5CkqSWCJe>{<}nPTejc@uyO<Ai*LIvr
zSOf#HDOSTc)B?s}0i1;DKNmIeQdIxtn3wsTFDQiICM=A5Py?K{{1wbg{UK_g;5uG=
zQPe`qqRy|5xv?>-e+$%wbw%w=JQl)9SRCI+mwVu>p-==jq9#6w8u$dN{UU1R*HAlg
z3pG*Bx{gx{!;stWM5Fo-K(!A;UFk^F!pB<sG}Nu0S(p7+$2lZ4@Iow#U!v~yZdChT
z^LO*K`8Vp`-^Tj*2(^IvG2R4CP`9iFs$UP}d36S$F6f;Y_FpTUOF}D}Z!X2=)K{Xm
z@&;-kr=B-ZD5`%k)RjeAy*lbv#GtmmITpn3sGUtjoi`S>pb0Jo-J5jO4t#=|a6J~m
z?@>E&3^ma?)C4zC{c>>GdJ95P=a;d19n^#^EZ+rnOXE=s7=c=#n@T|wOh;|WY}CLX
zpjMb^^)FBZZbF^-BWl1SW;Uw-Rn$WMMNJgkz}vZS)Y}k+x<z%7@m!~ob!ce~Jy9q2
zM-4a(b>axr0;i&H!Keky#t2-9dKkY$_4^YwQ8sGlE}_P`i@K0}4K+UZzZiweB%*u?
z$7zdtCc2^ST_3E3BTxf<h#Gh~YA05q7P1w!@Sji%{}t8mxYe^!<6cJfyMg)i{@<q%
zfw}p-)QOc*9crOg+7LBRoYmWzy->F*9<{I()YeZ#J**k1ah9O^WubQFYb=SI(bZNS
zrJ#wkQCoBw_3-)e!L5g@81}&`sMjYQHPHst0{5T>{tY$GG1P=-QCEB&HP63T9{n2=
zSgA4luR;|P`i!n_cEV`tqfrxPVoN-X+KGr~y$LFy7El{EU=!3r?x7}rggQU4iMOyi
zW@FTj#WiugEAC1{D@;HQn1Z^euGOboeJ*N(MW}n9iR!-|b;a9J6Yocze;BpkQ&zu#
z+Myd*2p?zy-K+4X-e-Rl>iw>d8n6Xwz^<qPd!q)3NA*jx{CG1RHQ{V){}3aouRwjG
z{)D=9`%&Y#rzz-4E}`!I1JpeVea^f0F<6dzD^$N^)C3bzSN;ZSfwNH$+dR|-Ek=#E
z8nv@OpmuIQ>byh91-i~DYq)~ycmuVvhn5d|-n;TVsEG=ruAn4pLDjH0K8ya?3$>8G
zs2v-E+R0?p!<>fNxmoD@{$EHz6E4FXxXRbyIA5Vo*o2yRAL_~vq52;~4RjXukljQ*
zRArlaZ%<9s0$ZUL+#93tWpfth=lOHiP$+@h%|B5S-Z%YXy$N%ot~3<2u&1#CHpa3T
zj{!IXwZK{C2dITDMs58n)DCSzSNH0B3OeCe)GauU+Pd?o_Ul*^{hNDNQU^6r9O@IY
z4Qh)An8PuU`Z&~h6R{}HKux?9wKFT5bN_Wkn@I%W@2D;P6SdMSsMqA4)kEXFACV<7
zh<q&e!ZxV$mYM5N3)q2L;2x}nC#}6;3-4_!(}Ml4LPG-*PvKD1l}*JQI2|?7Tc|6X
zgId^P)GhcNb%k5aJ*cfdWc4%VWy{~eT(k$a^bBz+Xp4)WuAl;H!n&x3rV(o5_NdpX
z4{CyB%a6DG4AjCFq865A?ORY6v<Gzy_G2@=h<fJSYOTDdwH0dMftVAMQ41PtzK&Yx
zT-26kTK*f<!giys>;xv^c^rY=TYKZ}LbV@2-I}AANALeh3KdBFjap&BHr~Tm6}1!f
zPz!n%wV*hxh}}?E=As6kg6cmLwV>IkXXjJYt=)o5=o~}s>;<3P|9cd)WqI3rPi1M$
zOFbHOLL=0}(-NP?G|Y|5%{8c}c{A#~y_gUGKwarY)B>-X|Dtx%uO0pL{)bV}0Hsj_
zN23<h0JYM#7=iszS3Cg=<5bi@^Uam0{+m!AG<#9E>K`nFLG2x96jsLaxDefH6n>zf
zExl!y>fqgyIE*2mg#4UymZ5INDbzwPVlZC8b$Azb3s-gYZq+VSzu!?G&Bsx1)k$m5
z?#TVu7T+MDd-n)+?}9pc_pUhV^C23;ur+Fn`(il0i29+DhWT&~hTsxZztxx@zeSzD
z&+4a8xAdP*?7z0CTxZ*I)Cp}-3+szIF#&bu<IKsZTQvi9g>z8-=b;voiF)|HLM>=F
z>ii?93p$0`xd$!<oshE&-&9x#)i4e<;55_#?_w=ngaz;rs^3Kn#ha*w26pvsK@rr2
zM5D%Of?9AJ)O_7g<GO>bAqB%pq@h+g3pHRCYQoK^r}zN+-d`+4{UmCj+o%ZxyLs(}
zP`9)M>dK=~{VJoztB;K5I&CTFUUf4Ep-xQ3NPGob;s>Y!&RF|(oJ{?$<<q)z+x#5o
zO-v<!v<H9F#V$Sh9w7f4et-*l^K*@SOkZ6v_x~z|(j@#}u)haj9QC$X66ct!Q48CL
z+Nr}<zi3`VZSft{1^M;!`iG$Eg-|;dW%YW}B@s(OTi3}N23kGI>Mm;HH_Z%lp1BA$
z!Kdb0)B?AehfoW<fO^fZqwm)AXa7r)h@zkYnxgJaJJdrm5Pi48e8n7(>Oa+d*IbCY
zkd;>7Wc6LB1st*b8S`3y_Fn@%v_$X#Z{Q-R50bK|D`{l)4%VJv`7u^cM=f-&)fZTO
z1?v1SE&n}6Qa^yY@EZeM@5Jzdp2f@v)WRxQy*BFUZ)o{usDV487CIR9$(Dw?(uw8_
zbB?(Xwb12Q8&|oOIBOmLMs4A3%LfhOw*d8gs1uu+t<6qmPaIBrf7HVEp)TOGc@=g3
z12e~9ukHp@P{%N{6lwuaqpqZ(8H*aAJ!*n(W&-N`*Q}n7I&Z$^GtD*Tcc}A!_T>BD
z5;v?v5FdkDKmpW1Wl$d=RV`n~^0DY!5NZM4%t2<dnTDEhy44q$D=<j!|9VSo@g?}F
zgnIf9q84(}^4Cxk-7y2=y#<7sMa|Nv^U7PjF6z8SW-HWBukMohofHZ|__jG0b;1JF
zKr5`i(b{)n1@e2Xe%pMA`p6C#>OJL!QRCFZAdE$QSF}OxY+v;K``=Is>Np(Lahy2`
zHDEgGgbz{uK0$5iYRm6Howv_CY#vAT&o=)t|1<LpWB+x9MTdDEE20LfWA$gO-V!U5
z?|{B<N6Sw`ZRJeV`@9@A;g6^vEQe6<d;SD(!8K6r%}^KAF@gP8p*IOFWC&^jqfryR
zhI+qWM}Pd-T!Pi8XPSqw3H5*%J!3JR`ZUydmr)bnw7TC*d>K*C<x)_G#pZHsN_~~p
zubX#K3v?2_D+xuNR|Yk3Wi!U|&8*(q>OD}mtRDvBNYhQT4sT#y8s0YNo6F60sGZo3
zn)sO2&sh5d)C9R-_S#EgUg~8q7e-sXzS-Q<bvj$3KWc!Nu`*7;9GHc<@e9m{8&Lgr
zqMqiXSPm~)J&cdRiqxY}UuLaQ3+{(nP`uSsd~*L^wZuf!_wyU5jvrY*%j&C93;EXE
zW%*yslc<R<Tm7c#m*g!t1hwEutJg&D`(FhbI+^{<MAVh0Vt#xRHNkw;LYAP;`^@qi
zQE$Ums~<PB%}c29u45StOy>R90F@}@$GWI{+}!H@te%9vok8EupeD*PcUt}oYJu0R
zeg}14zzFZW;;7fO0_wGFK7#jOCk!K@D@rm`&B^9W)Wq+hu3#zZy!EJuYYXc9ov3~X
zP!pZ7`a@Lz;E~?>VW@s(M{@sFs6j#<8lwh^MeRg;%MZhF>Pe`9Cs}?G>ikd5wWyuk
zW*$V1a~d`NeVmN`Dc*V0Tq|UtI(&>8U>WLrf4#L|!EoyLQEx}cC~x5UsPj6RJ<a~8
zg$*@Fq0XOZ_1UP;0e6uVR+{V0ZK#F(jM|ao=6UlU^FC?;fup?%^P0s_6PCAneY3gc
zJ9~B4iKn26Qmn&d)PS>4TlXIFG48Cgda*HHz9wp6tx^5EqOQ1)nP84FC!4d(1wOg|
zD=0ML#P#Ma)PS{K@dj*wfz;zrTh<n<U=P#+r=lkQ2z6eTx!Up@un_qlFaVEP{uBl=
zzjK9xw(6EO<QnS@TnIIAHLEv7_3L5|HD5*bn`zF&3e=aOo|S!;zh~x5_4*e?H-rw6
z6m$!sQCHB!j6)6F&g^XtGe@KPPqKQtIT!VQFR}I=Sd{ut)_xXsA=guR|3fJRzUuuI
ztT5{Js*6$B6|3S{)CW!`YM^bX0scTO{0bJv|F8uX8pkV)FQA^0rKp8|j=G?=_&#nM
z$Nm?j(EBy7AsN*%4Rz0_puU8rV;+19HQ+o{zon=JWSQTXd(gK))Pz?of8X+X(!6}B
zjD*s8e4oMfEE8*XGW%gAMo6^!T-3-*tiI0Nj#|ln)Cy0Uf1y@-)4Xr`kM~xPdp!3*
z0~RKs0V<(BQ|qG!dJeS}ZBX~B6Y`%kh(B~`r_HOV^B-UX)K{CvjYEyo3)Mc@9EEx<
zrnr`vhw8WjHSkyFR%_pD^%GXVgc{(!)x#!u6GWoMseu}&A!;ElPz&gdYJUlJZ%4b9
zNJVYcWYme%&G*oEv&}5j0IRLO37@9E9rd(cMV<fDM9<2or!59`-hT8$9Ul-bzg!&N
zeP=z{iNq{oDbbFcj(n8$PaBPhxy0+_f>1|OqK&V_2L-u}l;0$NCzcVflY5OQNx35N
z5mB1Z@w`U^=PHGq#23Wd#Pgh>qq&Fk8S39oY7n{gJD9_Fk26k17IAl4?{4M_TE|eH
ziY<vm%6`^%-OP{rzma@PR3%~v9d}KCn?<?X<WA#KRXB<fd&%`g_Vq>OoIAchy+3Ne
zGCHiY!M0J~X5~uOuOxLoEu4<TYRdXnzKJ`nU4*iTMdaQh))LQUoQf*o4xluOc$(-(
zgcCaS`EY=^Onn{J$6CZ?%D)hE2^~j>WIN|2tZZdpBY)^+n@p}5&bPKJIGgC{$J_e&
zs72u%p=a}B>-e~>6ZM0Z3&w>sG{g-Uhx}#R_Zv|CGpt_%=C<-C{GPU<L_FmH%a8M8
z{u3mtkocUKXAPvB_QW*mjfo4C>tan}u^R1IL0v~Dq6p<+_P845E|mWwCaIAl%fmT@
zH;L1<^~Y~AMwBh!E~iwNxKCEcpG0rU^Dv1RO<Awndqj204^YQd%D)rs2_40-JMk9f
z#!67$MXXlYj#a4d{gdSF2zFXfd7G%75mv55Mnt)QzyR9b%cxPVfV+hJ57ZX_?+K4j
zbo!F}@&Cyerbm9_TjDmc-}(&0I>dP5Jo(aCfY4FF{0Ik7{}i9$<HU)jP>#e%B9(F`
z>c~Y|M;`Wk2<0@ZPbBxVl?UQi)XU&GV!Gv@#hN<Vjt<n<S~<e{w862DAJ7I=rabPA
zbBMb{aqIlJDTVq)qAT$R$xFnl|I;UyTz8@m`D3V~1MwpDX2iR`3{NZNCOn|dCqyo;
zvLgw7nbjtqqP&LCmskL8o$)zh4Kb4ZlSer13&{QVL_Yh8@;_Ei=A<olVm{7kPQJzw
z{`mZf(e_YpMLa`%NBl|X$cg=l<ryO?6mZ|C^eNe1YGJ5{SdiR(ER5|49Vx`Cl$#Rz
zwt0zgt?d#Xq`sZ_gLsEHP7ESO6JOKL_rLFGN%<(HQ^Z+)tVB@wn0SiNQGyQR@iT0J
zBXEZrI6_$957hTk-c0;P*^iu#Xb)!txp#=-)K3yOh*zl3ApWNO1-8X7LQk#li1TnR
zqCXvUe1c<%8D7;nM)_YW@5h<MRB~r=I-#Mu5Mks-VQ1WpI<8TEnb<*0Aau+pj%o|P
zqcDxok%RcjI-D@~kxM0(5G#q@<X=D?-&5{Eyg_UyHhF1hkNJq)6rwft2Y8scVr^0A
zM)F4>N$p}CViwVmxJNFM=tsE^@h|0XP)Cq$`LE=>uR;DdE%G5m4|TBPFC0jO(SHnX
zrN54BB8OLYeZQs7khnl1i6}uifzZ*~PFO@ait<lbpU7_upy)e(<<BpP5c-VsQqC>P
z_pChJ6qU$tB!2Ye?EZg6LdS<@U&^<L8&;o*4~gMKDPj^)fc9=g4i<AA^N@RdG@*Rl
z>I-qDm3PshJW-E&hC18)&To|S5vOQ)fha_jC%z;;R7Z|h#9^Woafp005lXyC3?p|2
z16fQa>KJ4`OL>cxH)BPW=@$=fFDmKQNZlz*IUHXj{;>RP$_t1`gpP9L3u0a@N{pbq
z58owp495R(J<*$pA#@ZavS_PK{Orr{*?ykNRw`c;e^V}tcW?sgNGGll2gnt{Icus`
z=^WBHAtgC+Kx#zN@Wj-JL8C{G95Q@V#PFoSLm~#GqzoCA!oRipI;2DlNKA|vG%O);
z@RQAJ#y80ERB)ZD(e)x~#5AZ`d(DjQi6JrB-%LIC{+9DgH=f;`aW;MCh3S*dPug%{
e?Ud||%N(!aT>6A_^V83MHtWf@HMfVfDe*r~jAMcT

delta 11327
zcmZwN2Y65C-^cMIi4Y?Rv5JV;iA_RLn~2fYs#QCxwWUU>aqLQMX>C=CwrcOyR%4`9
zMQc;5_^a6dMO*86e}3ni>v28TbFS;_b>H86p8NdHFX3`_ykE*VKleh;fKMH+P(Q~h
zh>JoUXTQpk$~sPkGLG{xR>U#58;@mhoSJ1FXEEj|Po4a_3XYQ-$5(Wm2%L|v;SQ{c
zkFXTRRPyYEfsW%klPGB6X_yIDc@54+a|ecy--G^m6xIJY=EVD$83QUiP65o0SuqNg
zkHsQb3pK7A2H<GS#QM&73f#0a1#{sd%z_)t-I#-VDrzHVFgxDBD13|=F*3$+%3(>=
z2HId4c1QIeiduLAs(%t@V|`}^g<xESdGH(51Syt3jM=E4M@^Jw?SG>-8W8J^55XYn
zg;4!Vp>8Y|buw|78@pqE9EL8>z)7Z%7Z;!w-iVs`J5>8msGT20ox};$Lf5en-bWt4
z6I#XVUl-LLkGj*AsExO?_MWIm-LDGguZ}}VXkr)h;Vjg%UWIC3Yi>7F%tNSWd=jhS
zMbw60sp>6I81=|Xq58dwd|sWps2fVG%K2-DLrG{yBh3jIM|~>lD375gx`dkO9;*L8
zs5{H>s#gy|J<7bOqc4HEuqx_go1w<FL(S9GrJ!fi3v~h$Q47w+yto{70=rQQ9Y8H`
z9M$g%>Mgj38t>0BsGb|OU@25S2K7keP#b80+MwH>f)?nFI+DStiHD<hILYcWP!ldf
z4g3l<;SO^js{awxf~QdnrJ+vl0qSk=tL{CbJji^m6HY-LqO74BYG57Igz>0>El?YL
z2YnkxZD6qFUDUImfI6uusB!aA8()K(ZwE$Wim%S|zfD1(fk&uk^%SEpM-6YH8mNgI
zqwc&pYT<6EjrK)NJQ&q)l+`Do=ADM>myFujLM)75V`jbo2d%>~)K1T#Cc19*JLbQr
zM-#~RswN6U9d#t?1S_K!s*mc|6m??lupo9qo!p104NpK<M>LIsK5R=-AD$i95f5Q`
zjN%Ji3$;gWun%hD4^R`0L@hWGb;q+&3(dn4xD5G`;{0SDLVYD4smb$K;Q@&Xn7fv@
zU>r84J`{Bldr%9cqBd|Gci<(|Mi$ie7G8qd@Cww%PM8-^Cw3im!w*p#465UL6Nc6C
zo@oSXfoQ8&K`l@h_3YzN?QKyTN<iK5K-6bqC~CuFtv(sGkz~w`i%^ehBj&*rmxA8s
zGpGswL{0b*HQ^J~1c7z!J06uUWJaMDjIs6_7)iYe>Kn8#>d_5E%`*;lBU4Z(;Vz<}
zXS5#m>`!5FOha`Ht>-NeiMsPrs13%TK5W%dcT^8GVN2A}_C%fBK-9P)s2dz>`RPbM
z*GZ<Joh`P8m8d)X2DQ*u)E(?bZRjxO$BXEP|DrbX3^gueeQ%*q)D4BBPPhW9Uv1QS
zjnJR<o#xii8a1FJYT*H>qaA`8FcLM<MAV1u6V!)lAL{M-4Yk2E)P|p65zOAevjXa*
zT44c9kgV^x6tv(%b17=UFHv{89<{Nbu_Ru=Vi?%aJL1x){uRt>sEyS_9es1uop(fS
zpa-h|V087YMp4kwePkVGV<qa#P<L_y1MoWP8}b(FS!Rgy491Mq3!vtU#C%v9wQvK}
z$uvXVP$vw;VR4+lj?^WgolZx+CJU^-9!pW*je&R#JK!zUxJHdU+n_e^4r+sauriLZ
z_RXl*Z7-I=vlxz<;yHiaS@C%9b%{nTR1S5Av8avJLp_2wP<PnP?1MV$Ayyx6PP6=6
z%uM?Vb1mu-Y(w2Zs!Kr&o<tq>dDOypQLoce)B>T6y?h~5zBFoMwNV>uYVDm-H`E99
z2nJ#UOhSF=4x>J-X{dQ!zb4)@3PtTGpIH*M(<-PVjkEmQs15YS%s3hc;76E<k1-SW
zYU;Hoq8`nMs11+7k~kIFpzCa=kcGrAsFOI2n&2X8L)WnsK0@7DL^E&VVyOOQQ5%Xu
zeRkqe&$csW#gV9!oop^Zo!Dv&)%*WFg={2_q6VDD%6J1yWBBXdGjD9RLVcP$p~m&c
z>^K5-r%9-jnPJXDo#ax?jvG+pzsDfG|3@ikM`uwxy^V$O1?r9qzu|p)i=!rb&1{D1
z-x2ji(;xMyW?@lWiG%SVmcZI?dVfLbi8|3w(N*C)3VJ5ju_}f%_kNvjgnATXQ5#7@
zJ*w%r73ZTqWX)T6kE$1{-!SyUQRt6jtbGFNgp*N^Zb=KyU(aqO2|c@=s4s}4m;-O3
zj`$hsgtD~sKE2_Xoq8+=V|`S=mKcIvP~!(!eJtvc&O)8ge$0tyTXOyyaGQj7_6#*J
zsFio;1<axtM7}iY4r5XMtD`m&hq{5*s15Z-o!oHL4UI*e+#*!}FYz7R;#xz2*4~6A
zP!m+b%2*e}a0qIGBn-t*P#ax=dIZ~0H*yrUu}i28-$E_;2sLlOTV6g4bpmcU1?{i`
zYQm<d1v{ZW#fj*9e=#@pF{p{=pcY(#YTtr-rn^vgo`ULk5H;T!)O@#5kLr=9>-e|v
z28LoJ4SA6-C#M=}g7MZq8^=?hZ~5@Hj`Mm3zRz(u`48Li+YSDO`^kUMp1xS~ZBB>$
zDSo5X9na|G{R71^jMn>~LZJ~2x3M6`cJ^$Ex}yQ8fkUmHWX?n#@m$m$Ew%hwt8c;F
z<WsDE+PsE3xd*E2{rBtQB|=aWMW7ZgV^%h+n{`qB;?1{E8|-clL2Ya@>h+$DzDI+F
zsHdRDUq;{W|92?pL*m!f9)+3LEQA_R+^l5QM%_s>t9P_|FVqHxTYkJb(_Cz>>dN_R
z;%y}KDc*;=lk--;hiVV%=H>IC>QSgWs$%t;R&RnD-@@`eFp_#A>duo<<2IT*y18Cr
z4+%}2Y7NIxpVo7hzlxgpK5C-@-Mw$NaMYbfnx)NHvo>nM#u$Umtv=D(r@9n$gmbK6
zC03!n#_Ctio8|-aAM8&*C&Am;0MrePGiRU{USxh@uCn$Gru!WQZQy6rot!hTp(ePC
zy7Nb7P!DgRf~b5HYTRp<k271DT~Yn|nPbdkuibT4QqTrAp(fgk`U3gI@+T~R4SgFz
z-RUFKpYKuCL(Op1g3(s5X*NNPZ)^3=zB<pp4+VYt-$!j^jIY6QW}+sZYc99^26Mal
zJ!;$mtDi)TJ8!00{;~Po@)>(Fj`f|K6f~d+YKP^qBv!F{XY(D@S9D*D#L=j6pIiGH
z)X#>^sFU1p`6H-)C#`<POhZ=_-lw1e{_lDnv!jkMKPq1q1F@=E%WR06xS84B>}d`{
z--%j%CTgC=R$u-u@4pfoNJQgy)K9r9*6|MNx7LTK_czCT-hvgd8ugl}llTC&;rZ6S
z8ny8q=3dlBenG8w9<|QZ_c(vO&v!}qVdh?*S+N}TV6!IHq2AYAgFUI=K~4BpZ*OBA
zQT1Lp9|u}JOCK+v1M8B{XY~%Q6}q8z_#Wy`hFN|J>WF8XODw<I>YJ>-2Q@Agv*20t
znzi3U&GXm{=<C(p99AfVI*HP#J7{3_rq<pAwLqe^Pq6$H%uIfs)t8!U&0Xe?sPQK-
z8vjIpK7USFKkr%PMZJcRsE*}PpXPd499vm^IF_RRG3pnKO{fj0Vm3T%^>gMQ<_*-3
z<9n!nfqZ=ivc3~WL5chrgeA?2mak#PqwiT;y`$L+wc(+t4JTQBfwiwOcbci@am=ar
z|1t$V`@c{N1Pt&tk`=YF+^BpJ)Y}kc^@e6MvlVJ19k3|&Lyez>A@~{U5wEp+D!NLX
zqTo9k^c~GWZ=o==JSyK5wUKsK?}8fF*XrX?ujvfbYq=KH|0wEYPnnm^n*%w2H9RDt
z1zw=;AX}n0Faq`ADuL=(9@VcJYN0r*zk^!nebo5jmY-_QxAv8&dDftAd|M*t@7o~>
z4LpUKI1QB#df!_x)C|WE^3i5>)I?2C{S$CJ_C{^=j`_seGY|5{hoFAUN4ON!u?^<L
z1k~#>6gBZu)Wkc@AIu+7<BpiWqsHH``cu^RK+s^%TxNtBjk*yxmV%C?q4}oS-b_Gk
zpdV_%!RA=hg43<O)Ld)%T~<GgTIihBZ=&Y=8@WN(c|n11Unk!X?~ccs3s4)|gc|TI
zY6JVsU(E~VP4jOv<4~`EPOQne2(uGvzJ<Pap8qlm8A+@|9oZHvgL_bq;5KUEzz@8E
zVP<|*J`!_dISjxCmT!z&s153*I$3@oYTi+*>;0c&i7!wccbiAdKTr!jH2sEozaNC4
zJ}XsG?cL1*=12@CpM-h@^H3Z5%3O!825zMw_nJq|^QZx7R=;mPN4?)!`Foez%VIu^
zLCy0z>P9+XDE7k$9F2OrKEopT?QoudSqhg(=$kG0LvNyJ)CBcWJ8y$|uqVdjC~Sxa
zP@j=(BfO2|L2V!$=V3JF!o8M1joR=v)FZz&g7fF6kn?~<R(yn-&~K#IF&k<FVP;XY
zGWs@%TCk1f6D&W-@{`PD^K)~Jxig;?QZb5&j$8eCa>a-Ou9kjvl((gLvnA>tI+_V)
zZ`4*2QCl008b1s59l8{CYpYQAz8Up!cH(IK88yBM71?$)4@VR9AW<C$qb6R5nkWU;
ze#rbC^&Z@^x*un&e)<`w2@9H0sBu-S9%uDdsPPF_AMRQq2{qAt)I?vPHnQH@_gecg
z)WbY)^~<P}x``V1z<go(Y-7CkFx33{tzHaEQ!njO(8seaYJ!R8Y}ChV32NZ0WBIpm
z)HRpjHw=e&)!9PQC8iV0h&RaT%1XH@QG@t|_=sEp>Z(gL^OYD|hU9iCQ;Czr3SuI;
z4~c@5OA(8R2trqV59c;!BGwQyh`RLG73bl6gLBE1Co<{xUM@Z2ER=PleTkC%bvdL+
zkgI=7(bd}git=E}6R|PToAL|Pb<g@_$6twWiPA(Yq3f~f`(4{hIe(G6M0uIjU%^A<
z+T$Fi_oW|Nqo_!%pu=XHY!CH4R*s^qD?fF<8=Mxzddm8l`~df3`W4L0E+IFS*hJJx
z&QLVW?Lz5&B8uolgc7>+?Qn#+NqsX`#frpD%D)on*C`79ZA>pLW##mCy?SHGHNXYd
zb_-_{Z8Px7rC*gPTqX1g{>(b2w>77J)N+||F%8vl8#YA#YV7+BQ2l3FzjrZ{m3Lwa
zZSN92DEnD{cm~%0on$nL)x<n&AmzMCOrZW6@gK@DSb_MQa{BcZbzLoq+>|qO#^qF}
z{3kI^ja*-Q`2Oe61Im|Z>xw&)XB7)`zob-!_=l{n^F({fdglfZgDC60`;;h4`Crs^
zoAOCQ|1790FTO=gr(BD8PNY&_kLlN13i_#k!N&Niaa5)e<&!HGFOXcPctA$|VE;6^
zMe#6qDfxZWKL6hV)V%9$atHpOd>)!Zh;NC%h{M*WCsrm#64%IwV-7-BadQ!NqrMVf
z(=SZ*DHJF1KJfwN<)|x=vaTS`Jc05EtB)o3vz5EzM(UAxm6&Y#npjDL?RtayCMy@R
zK22~~`Umt?DihLs<6`QMF`so#Z%U+oooGc&CV7Kc`+xd0B-fVcK>jT1YEHaIy&f^!
zm*F4GDc8{p@&ysdUA{>oGvyef0ObvYex&)))(Yzp8;F7AU%vEz-4>F2`cnRnm&$jo
zJdi=VZD3Z$G$3E`6o0IKX||uJ#}n0w?}+n+u8i23_%eA`$uM^grIlnmsD-JXU`}%X
zU@mM%=o&-}qg<QNkDflnC~LccN2&inoFQfr=ZFMi2(guReu(?7MwCxex=38n*Ggdu
zpAq4Nu2<+V8o$AK9DsY(z?F>+?xTK)@-E^8<rjpm3Lefj>NAM^)GrYCi6PXJh&0M;
z@O8{V=u_*v8hJR^B^`8qfkTNYUe!5E`H__m<1}JCxhwcFp{ZIEA>;;Q3;Ypv-J#rv
z*h`EibS)rGyHviTFi9CMf8wBZ_}%=4+;Czkv5NSSd}q{^Lb(kwiTHuo>7|{Y%xC1r
z5lyN8i^qvu)>Z`FNdE9A$;mpg#7v?F@i(~$q6_7Y#3RZ(P*;FDbNxoHw^wxTVldIp
z>f%qLI}t+vq4+)hb^SqP@XD_5H>=Ae{zIZ4QGjwULRVw2le2_!Vaf-w8j;;LK+$*o
z#-HnmZ1fr7rJVm#{@cp^O;M8kcH)39XU~5l30?EePL%&k+_(A^d_wdk3KC<8FxuM?
z8Q9D{3?i3))uMdvrTQu>r_!MWQH6T4I@|ir3Ch`ti!^j3!iZwTI%2*$ay2226NQLl
z<jWDk#K**Y<SwH>n^}&!x|y{p@3!(TEI~XcdXjhBQTT{Rzlu=KNo6E)#`2#~UPwG6
zbQL9^3$tJzB9ZbhIFr!T9iQSB;%%ZTp(`KpHEorMpM4p=+pkgip2}7tjdC%3h+|M!
w5^;w(LM|^RZ+g8<tKdzSs%Hq#5>vKP)xs4kR<B%b)6KShgE!6S*|fm_0PGY6&Hw-a

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 2dc77a3fd..8f95f9291 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-04-27 11:39+0800\n"
+"POT-Creation-Date: 2018-05-08 17:24+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -17,15 +17,15 @@ msgstr ""
 "Content-Type: text/plain; charset=UTF-8\n"
 "Content-Transfer-Encoding: 8bit\n"
 
-#: assets/api/node.py:88
+#: assets/api/node.py:96
 msgid "New node {}"
 msgstr "新节点 {}"
 
-#: assets/api/node.py:217
+#: assets/api/node.py:225
 msgid "更新节点资产硬件信息: {}"
 msgstr ""
 
-#: assets/api/node.py:230
+#: assets/api/node.py:238
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
@@ -46,7 +46,7 @@ msgstr "管理用户"
 #: assets/forms/asset.py:30 assets/forms/asset.py:69 assets/forms/asset.py:125
 #: assets/templates/assets/asset_create.html:35
 #: assets/templates/assets/asset_create.html:37
-#: assets/templates/assets/asset_list.html:75
+#: assets/templates/assets/asset_list.html:74
 #: assets/templates/assets/asset_update.html:40
 #: assets/templates/assets/asset_update.html:42
 #: assets/templates/assets/user_asset_list.html:34
@@ -206,7 +206,7 @@ msgstr "高优先级的系统用户将会作为默认登录用户"
 #: assets/templates/assets/_asset_list_modal.html:46
 #: assets/templates/assets/admin_user_assets.html:52
 #: assets/templates/assets/asset_detail.html:61
-#: assets/templates/assets/asset_list.html:87
+#: assets/templates/assets/asset_list.html:86
 #: assets/templates/assets/domain_gateway_list.html:57
 #: assets/templates/assets/system_user_asset.html:50
 #: assets/templates/assets/user_asset_list.html:46 common/forms.py:144
@@ -220,7 +220,7 @@ msgstr "IP"
 #: assets/models/asset.py:62 assets/templates/assets/_asset_list_modal.html:45
 #: assets/templates/assets/admin_user_assets.html:51
 #: assets/templates/assets/asset_detail.html:57
-#: assets/templates/assets/asset_list.html:86
+#: assets/templates/assets/asset_list.html:85
 #: assets/templates/assets/system_user_asset.html:49
 #: assets/templates/assets/user_asset_list.html:45 common/forms.py:143
 #: perms/templates/perms/asset_permission_asset.html:54
@@ -650,7 +650,7 @@ msgstr "重置"
 #: assets/templates/assets/admin_user_create_update.html:46
 #: assets/templates/assets/asset_bulk_update.html:24
 #: assets/templates/assets/asset_create.html:67
-#: assets/templates/assets/asset_list.html:108
+#: assets/templates/assets/asset_list.html:107
 #: assets/templates/assets/asset_update.html:71
 #: assets/templates/assets/domain_create_update.html:17
 #: assets/templates/assets/gateway_create_update.html:59
@@ -699,7 +699,6 @@ msgstr "资产列表"
 
 #: assets/templates/assets/admin_user_assets.html:54
 #: assets/templates/assets/admin_user_list.html:26
-#: assets/templates/assets/asset_list.html:90
 #: assets/templates/assets/system_user_asset.html:52
 #: assets/templates/assets/system_user_list.html:30
 #: users/templates/users/user_group_granted_asset.html:47
@@ -728,7 +727,7 @@ msgstr "测试"
 #: assets/templates/assets/admin_user_detail.html:24
 #: assets/templates/assets/admin_user_list.html:85
 #: assets/templates/assets/asset_detail.html:24
-#: assets/templates/assets/asset_list.html:170
+#: assets/templates/assets/asset_list.html:174
 #: assets/templates/assets/domain_detail.html:24
 #: assets/templates/assets/domain_detail.html:103
 #: assets/templates/assets/domain_gateway_list.html:85
@@ -752,7 +751,7 @@ msgstr "更新"
 #: assets/templates/assets/admin_user_detail.html:28
 #: assets/templates/assets/admin_user_list.html:86
 #: assets/templates/assets/asset_detail.html:28
-#: assets/templates/assets/asset_list.html:171
+#: assets/templates/assets/asset_list.html:175
 #: assets/templates/assets/domain_detail.html:28
 #: assets/templates/assets/domain_detail.html:104
 #: assets/templates/assets/domain_gateway_list.html:86
@@ -783,7 +782,7 @@ msgstr "选择节点"
 
 #: assets/templates/assets/admin_user_detail.html:100
 #: assets/templates/assets/asset_detail.html:200
-#: assets/templates/assets/asset_list.html:600
+#: assets/templates/assets/asset_list.html:634
 #: assets/templates/assets/system_user_detail.html:183
 #: assets/templates/assets/system_user_list.html:138 templates/_modal.html:22
 #: terminal/templates/terminal/session_detail.html:108
@@ -815,7 +814,7 @@ msgid "Ratio"
 msgstr "比例"
 
 #: assets/templates/assets/admin_user_list.html:30
-#: assets/templates/assets/asset_list.html:91
+#: assets/templates/assets/asset_list.html:90
 #: assets/templates/assets/domain_gateway_list.html:62
 #: assets/templates/assets/domain_list.html:18
 #: assets/templates/assets/label_list.html:17
@@ -856,7 +855,7 @@ msgid "Quick modify"
 msgstr "快速修改"
 
 #: assets/templates/assets/asset_detail.html:143
-#: assets/templates/assets/asset_list.html:89
+#: assets/templates/assets/asset_list.html:88
 #: assets/templates/assets/user_asset_list.html:47 perms/models.py:35
 #: perms/models.py:79
 #: perms/templates/perms/asset_permission_create_update.html:47
@@ -886,89 +885,97 @@ msgstr "刷新"
 msgid "Update successfully!"
 msgstr "更新成功"
 
-#: assets/templates/assets/asset_list.html:63 assets/views/asset.py:97
+#: assets/templates/assets/asset_list.html:62 assets/views/asset.py:97
 msgid "Create asset"
 msgstr "创建资产"
 
-#: assets/templates/assets/asset_list.html:67
+#: assets/templates/assets/asset_list.html:66
 #: users/templates/users/user_list.html:7
 msgid "Import"
 msgstr "导入"
 
-#: assets/templates/assets/asset_list.html:70
+#: assets/templates/assets/asset_list.html:69
 #: users/templates/users/user_list.html:10
 msgid "Export"
 msgstr "导出"
 
-#: assets/templates/assets/asset_list.html:88
+#: assets/templates/assets/asset_list.html:87
 msgid "Hardware"
 msgstr "硬件"
 
-#: assets/templates/assets/asset_list.html:100
+#: assets/templates/assets/asset_list.html:99
 #: users/templates/users/user_list.html:37
 msgid "Delete selected"
 msgstr "批量删除"
 
-#: assets/templates/assets/asset_list.html:101
+#: assets/templates/assets/asset_list.html:100
 #: users/templates/users/user_list.html:38
 msgid "Update selected"
 msgstr "批量更新"
 
-#: assets/templates/assets/asset_list.html:102
+#: assets/templates/assets/asset_list.html:101
 msgid "Remove from this node"
 msgstr "从节点移除"
 
-#: assets/templates/assets/asset_list.html:103
+#: assets/templates/assets/asset_list.html:102
 #: users/templates/users/user_list.html:39
 msgid "Deactive selected"
 msgstr "禁用所选"
 
-#: assets/templates/assets/asset_list.html:104
+#: assets/templates/assets/asset_list.html:103
 #: users/templates/users/user_list.html:40
 msgid "Active selected"
 msgstr "激活所选"
 
-#: assets/templates/assets/asset_list.html:121
+#: assets/templates/assets/asset_list.html:120
 msgid "Add node"
 msgstr "新建节点"
 
-#: assets/templates/assets/asset_list.html:122
+#: assets/templates/assets/asset_list.html:121
 msgid "Rename node"
 msgstr "重命名节点"
 
-#: assets/templates/assets/asset_list.html:123
+#: assets/templates/assets/asset_list.html:122
 msgid "Delete node"
 msgstr "删除节点"
 
-#: assets/templates/assets/asset_list.html:125
+#: assets/templates/assets/asset_list.html:124
 msgid "Add assets to node"
 msgstr "添加资产到节点"
 
-#: assets/templates/assets/asset_list.html:126
+#: assets/templates/assets/asset_list.html:125
 msgid "Move assets to node"
 msgstr "移动资产到节点"
 
-#: assets/templates/assets/asset_list.html:128
+#: assets/templates/assets/asset_list.html:127
 msgid "Refresh node hardware info"
 msgstr "更新节点资产硬件信息"
 
-#: assets/templates/assets/asset_list.html:129
+#: assets/templates/assets/asset_list.html:128
 msgid "Test node connective"
 msgstr "测试节点资产可连接性"
 
-#: assets/templates/assets/asset_list.html:204
+#: assets/templates/assets/asset_list.html:130
+msgid "Display only current node assets"
+msgstr "仅显示当前节点资产"
+
+#: assets/templates/assets/asset_list.html:131
+msgid "Displays all child node assets"
+msgstr "显示所有子节点资产"
+
+#: assets/templates/assets/asset_list.html:215
 msgid "Create node failed"
 msgstr "创建节点失败"
 
-#: assets/templates/assets/asset_list.html:216
+#: assets/templates/assets/asset_list.html:227
 msgid "Have child node, cancel"
 msgstr "存在子节点，不能删除"
 
-#: assets/templates/assets/asset_list.html:218
+#: assets/templates/assets/asset_list.html:229
 msgid "Have assets, cancel"
 msgstr "存在资产，不能删除"
 
-#: assets/templates/assets/asset_list.html:595
+#: assets/templates/assets/asset_list.html:629
 #: assets/templates/assets/system_user_list.html:133
 #: users/templates/users/user_detail.html:357
 #: users/templates/users/user_detail.html:382
@@ -977,20 +984,20 @@ msgstr "存在资产，不能删除"
 msgid "Are you sure?"
 msgstr "你确认吗?"
 
-#: assets/templates/assets/asset_list.html:596
+#: assets/templates/assets/asset_list.html:630
 msgid "This will delete the selected assets !!!"
 msgstr "删除选择资产"
 
-#: assets/templates/assets/asset_list.html:604
+#: assets/templates/assets/asset_list.html:638
 msgid "Asset Deleted."
 msgstr "已被删除"
 
-#: assets/templates/assets/asset_list.html:605
-#: assets/templates/assets/asset_list.html:610
+#: assets/templates/assets/asset_list.html:639
+#: assets/templates/assets/asset_list.html:644
 msgid "Asset Delete"
 msgstr "删除"
 
-#: assets/templates/assets/asset_list.html:609
+#: assets/templates/assets/asset_list.html:643
 msgid "Asset Deleting failed."
 msgstr "删除失败"
 

From 8e74a042820f5b2cb8bc18d41f0ddaa1a5bae964 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 9 May 2018 17:35:46 +0800
Subject: [PATCH 028/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E4=B8=80?=
 =?UTF-8?q?=E4=BA=9Bbug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/system_user.py                        | 3 +++
 apps/assets/models/base.py                            | 5 +++++
 apps/common/api.py                                    | 9 +--------
 apps/perms/templates/perms/asset_permission_list.html | 2 +-
 4 files changed, 10 insertions(+), 9 deletions(-)

diff --git a/apps/assets/api/system_user.py b/apps/assets/api/system_user.py
index b4e46cc78..1be316567 100644
--- a/apps/assets/api/system_user.py
+++ b/apps/assets/api/system_user.py
@@ -58,6 +58,9 @@ class SystemUserPushApi(generics.RetrieveAPIView):
 
     def retrieve(self, request, *args, **kwargs):
         system_user = self.get_object()
+        nodes = system_user.nodes.all()
+        for node in nodes:
+            system_user.assets.add(*tuple(node.get_all_assets()))
         task = push_system_user_to_assets_manual.delay(system_user)
         return Response({"task": task.id})
 
diff --git a/apps/assets/models/base.py b/apps/assets/models/base.py
index eda00a79a..cdb08f52c 100644
--- a/apps/assets/models/base.py
+++ b/apps/assets/models/base.py
@@ -104,6 +104,11 @@ class AssetUser(models.Model):
         if update_fields:
             self.save(update_fields=update_fields)
 
+    def clear_auth(self):
+        self._password = ''
+        self._private_key = ''
+        self.save()
+
     def auto_gen_auth(self):
         password = str(uuid.uuid4())
         private_key, public_key = ssh_key_gen(
diff --git a/apps/common/api.py b/apps/common/api.py
index 4b74b6b0d..209d09747 100644
--- a/apps/common/api.py
+++ b/apps/common/api.py
@@ -96,14 +96,7 @@ class LDAPTestingAPI(APIView):
 
 class DjangoSettingsAPI(APIView):
     def get(self, request):
-        if not settings.DEBUG:
-            return Response('Only debug mode support')
-
-        configs = {}
-        for i in dir(settings):
-            if i.isupper():
-                configs[i] = str(getattr(settings, i))
-        return Response(configs)
+        return Response('Danger, Close now')
 
 
 
diff --git a/apps/perms/templates/perms/asset_permission_list.html b/apps/perms/templates/perms/asset_permission_list.html
index afec34269..fa1154716 100644
--- a/apps/perms/templates/perms/asset_permission_list.html
+++ b/apps/perms/templates/perms/asset_permission_list.html
@@ -250,7 +250,7 @@ function initTree() {
         {#$.fn.zTree.init($("#assetTree"), setting);#}
         $.fn.zTree.init($("#assetTree"), setting, zNodes);
         zTree = $.fn.zTree.getZTreeObj("assetTree");
-        selectQueryNode();
+        {#selectQueryNode();#}
     });
 }
 

From 7de6af89ada44a0163f98423a3e849cfe7731998 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 10 May 2018 12:19:37 +0800
Subject: [PATCH 029/112] =?UTF-8?q?[Update]=20=E4=BD=BF=E7=94=A8xterm.js?=
 =?UTF-8?q?=E6=9B=BF=E6=8D=A2=E5=8E=9F=E6=9D=A5=E7=9A=84term.js?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../templates/assets/admin_user_assets.html   |    2 +-
 .../templates/assets/system_user_detail.html  |    2 +-
 apps/ops/api.py                               |    9 +-
 .../templates/ops/adhoc_history_detail.html   |    2 +-
 apps/ops/templates/ops/celery_task_log.html   |   77 +-
 apps/ops/templates/ops/task_adhoc.html        |    2 +-
 apps/ops/templates/ops/task_detail.html       |    2 +-
 apps/ops/templates/ops/task_history.html      |    2 +-
 apps/ops/templates/ops/task_list.html         |    2 +-
 apps/ops/views.py                             |    3 +
 apps/static/js/plugins/xterm/xterm.css        | 2261 ++++++++
 apps/static/js/plugins/xterm/xterm.js         | 5132 +++++++++++++++++
 apps/static/js/plugins/xterm/xterm.js.map     |    1 +
 .../templates/terminal/session_detail.html    |    2 +-
 .../templates/terminal/session_list.html      |    2 +-
 15 files changed, 7446 insertions(+), 55 deletions(-)
 create mode 100644 apps/static/js/plugins/xterm/xterm.css
 create mode 100644 apps/static/js/plugins/xterm/xterm.js
 create mode 100644 apps/static/js/plugins/xterm/xterm.js.map

diff --git a/apps/assets/templates/assets/admin_user_assets.html b/apps/assets/templates/assets/admin_user_assets.html
index 80ff0cd5f..31314392f 100644
--- a/apps/assets/templates/assets/admin_user_assets.html
+++ b/apps/assets/templates/assets/admin_user_assets.html
@@ -124,7 +124,7 @@ $(document).ready(function () {
     var success = function (data) {
         var task_id = data.task;
         var url = '{% url "ops:celery-task-log" pk=DEFAULT_PK %}'.replace("{{ DEFAULT_PK }}", task_id);
-        window.open(url, '', 'width=800,height=600')
+        window.open(url, '', 'width=800,height=600,left=400,top=400')
     };
     APIUpdateAttr({
         url: the_url,
diff --git a/apps/assets/templates/assets/system_user_detail.html b/apps/assets/templates/assets/system_user_detail.html
index a02bf1e44..1e180f0ab 100644
--- a/apps/assets/templates/assets/system_user_detail.html
+++ b/apps/assets/templates/assets/system_user_detail.html
@@ -296,7 +296,7 @@ $(document).ready(function () {
     var success = function (data) {
         var task_id = data.task;
         var url = '{% url "ops:celery-task-log" pk=DEFAULT_PK %}'.replace("{{ DEFAULT_PK }}", task_id);
-        window.open(url, '', 'width=800,height=600')
+        window.open(url, '', 'width=800,height=600,left=400,top=400')
     };
     APIUpdateAttr({
         url: the_url,
diff --git a/apps/ops/api.py b/apps/ops/api.py
index 0134fbd4a..a68f1c529 100644
--- a/apps/ops/api.py
+++ b/apps/ops/api.py
@@ -70,9 +70,16 @@ class CeleryTaskLogApi(generics.RetrieveAPIView):
     end = False
     queryset = CeleryTask.objects.all()
 
+    def get_object(self):
+        return CeleryTask(
+            id="4cae9ad8-1116-45e7-b019-9b1856696fd7",
+            log_path="2018-05-10/ca77e6db-9ac6-4970-80d1-eecdbcc3fcc5.log",
+            status="finished"
+        )
+
     def get(self, request, *args, **kwargs):
         mark = request.query_params.get("mark") or str(uuid.uuid4())
-        task = super().get_object()
+        task = self.get_object()
         log_path = task.full_log_path
 
         if not log_path or not os.path.isfile(log_path):
diff --git a/apps/ops/templates/ops/adhoc_history_detail.html b/apps/ops/templates/ops/adhoc_history_detail.html
index 16adbc4e3..b8a48d4e5 100644
--- a/apps/ops/templates/ops/adhoc_history_detail.html
+++ b/apps/ops/templates/ops/adhoc_history_detail.html
@@ -19,7 +19,7 @@
                                 <a href="{% url 'ops:adhoc-history-detail' pk=object.pk %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Run history detail' %} </a>
                             </li>
                             <li>
-                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.pk %}','', 'width=800,height=600')"><i class="fa fa-laptop"></i> {% trans 'Output' %} </a>
+                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.pk %}','', 'width=800,height=600,left=400,top=400')"><i class="fa fa-laptop"></i> {% trans 'Output' %} </a>
                             </li>
                         </ul>
                     </div>
diff --git a/apps/ops/templates/ops/celery_task_log.html b/apps/ops/templates/ops/celery_task_log.html
index 9b0826949..13885c2cc 100644
--- a/apps/ops/templates/ops/celery_task_log.html
+++ b/apps/ops/templates/ops/celery_task_log.html
@@ -2,38 +2,25 @@
 <head>
     <title>term.js</title>
     <script src="{% static 'js/jquery-2.1.1.js' %}"></script>
+    <script src="{% static 'js/plugins/xterm/xterm.js' %}"></script>
+    <link rel="stylesheet" href="{% static 'js/plugins/xterm/xterm.css' %}" />
     <style>
-      html {
-        background: #000;
-      }
-      h1 {
-        margin-bottom: 20px;
-        font: 20px/1.5 sans-serif;
-      }
-      .terminal {
-        float: left;
-        font-family: 'Monaco', 'Consolas', "DejaVu Sans Mono", "Liberation Mono", monospace;
-        font-size: 12px;
-        color: #f0f0f0;
-        background-color: #555;
-        padding: 20px 20px 20px;
-      }
-      .terminal-cursor {
-        color: #000;
-        background: #f0f0f0;
-      }
+        body {
+            background-color: black;
+        }
+        .xterm-rows {
+            {#padding: 15px;#}
+            font-family: "Bitstream Vera Sans Mono", Monaco, "Consolas", Courier, monospace;
+            font-size: 13px;
+        }
     </style>
 </head>
-<div class="container">
-    <div id="term">
+    <div id="term" style="height: 100%;width: 100%">
     </div>
-</div>
 
-
-<script src="{% static 'js/term.js' %}"></script>
 <script>
-    var rowHeight = 1;
-    var colWidth = 1;
+    var rowHeight = 18;
+    var colWidth = 10;
     var mark = '';
     var url = "{% url 'api-ops:celery-task-log' pk=object.id %}";
     var term;
@@ -42,13 +29,16 @@
     var interval = 200;
 
     function calWinSize() {
-        var t = $('.terminal');
-        rowHeight = 1.00 * t.height() / 24;
-        colWidth = 1.00 * t.width() / 80;
+        var t = $('#marker');
+        {#rowHeight = 1.00 * t.height();#}
+        {#colWidth = 1.00 * t.width() / 6;#}
     }
     function resize() {
-       var rows = Math.floor(window.innerHeight / rowHeight) - 2;
-       var cols = Math.floor(window.innerWidth / colWidth) - 10;
+        {#console.log(rowHeight, window.innerHeight);#}
+        {#console.log(colWidth, window.innerWidth);#}
+       var rows = Math.floor(window.innerHeight / rowHeight) - 1;
+       var cols = Math.floor(window.innerWidth / colWidth) - 2;
+       console.log(rows, cols);
        term.resize(cols, rows);
     }
     function requestAndWrite() {
@@ -74,21 +64,18 @@
         }
     }
     $(document).ready(function () {
-        term = new Terminal({
-            cols: 80,
-            rows: 24,
-            useStyle: true,
-            screenKeys: false,
-            convertEol: false,
-            cursorBlink: false
-        });
-        term.open();
-        term.on('data', function (data) {
-            term.write(data.replace('\r', '\r\n'))
-        });
-        calWinSize();
+        term = new Terminal();
+        term.open(document.getElementById('term'));
+        term.resize(80, 24);
         resize();
-        $('.terminal').detach().appendTo('#term');
+        term.on('data', function (data) {
+            {#term.write(data.replace('\r', '\r\n'))#}
+            term.write(data);
+        });
+        window.onresize = function () {
+            resize()
+        };
+        {#$('.terminal').detach().appendTo('#term');#}
         setInterval(function () {
             requestAndWrite()
         }, interval)
diff --git a/apps/ops/templates/ops/task_adhoc.html b/apps/ops/templates/ops/task_adhoc.html
index 2762e3f8c..82c25e667 100644
--- a/apps/ops/templates/ops/task_adhoc.html
+++ b/apps/ops/templates/ops/task_adhoc.html
@@ -25,7 +25,7 @@
                                 <a href="{% url 'ops:task-history' pk=object.pk %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Run history' %} </a>
                             </li>
                             <li>
-                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.latest_history.pk %}','', 'width=800,height=600')"><i class="fa fa-laptop"></i> {% trans 'Last run output' %} </a>
+                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.latest_history.pk %}','', 'width=800,height=600,left=400,top=400')"><i class="fa fa-laptop"></i> {% trans 'Last run output' %} </a>
                             </li>
                         </ul>
                     </div>
diff --git a/apps/ops/templates/ops/task_detail.html b/apps/ops/templates/ops/task_detail.html
index f6e832bd7..cd39d0a2c 100644
--- a/apps/ops/templates/ops/task_detail.html
+++ b/apps/ops/templates/ops/task_detail.html
@@ -25,7 +25,7 @@
                                 <a href="{% url 'ops:task-history' pk=object.pk %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Run history' %} </a>
                             </li>
                             <li>
-                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.latest_history.pk %}','', 'width=800,height=600')"><i class="fa fa-laptop"></i> {% trans 'Last run output' %} </a>
+                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.latest_history.pk %}','', 'width=800,height=600,left=400,top=400')"><i class="fa fa-laptop"></i> {% trans 'Last run output' %} </a>
                             </li>
                         </ul>
                     </div>
diff --git a/apps/ops/templates/ops/task_history.html b/apps/ops/templates/ops/task_history.html
index 9604b3402..184987766 100644
--- a/apps/ops/templates/ops/task_history.html
+++ b/apps/ops/templates/ops/task_history.html
@@ -25,7 +25,7 @@
                                 <a href="{% url 'ops:task-history' pk=object.pk %}" class="text-center"><i class="fa fa-laptop"></i> {% trans 'Run history' %} </a>
                             </li>
                             <li>
-                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.latest_history.pk %}','', 'width=800,height=600')"><i class="fa fa-laptop"></i> {% trans 'Last run output' %} </a>
+                                <a class="text-center celery-task-log" onclick="window.open('{% url 'ops:celery-task-log' pk=object.latest_history.pk %}','', 'width=800,height=600,left=400,top=400')"><i class="fa fa-laptop"></i> {% trans 'Last run output' %} </a>
                             </li>
                         </ul>
                     </div>
diff --git a/apps/ops/templates/ops/task_list.html b/apps/ops/templates/ops/task_list.html
index 2b65c9e3e..1b18f206c 100644
--- a/apps/ops/templates/ops/task_list.html
+++ b/apps/ops/templates/ops/task_list.html
@@ -115,7 +115,7 @@ $(document).ready(function() {
     var success = function(data) {
         var task_id = data.task;
         var url = '{% url "ops:celery-task-log" pk=DEFAULT_PK %}'.replace("{{ DEFAULT_PK }}", task_id);
-        window.open(url, '', 'width=800,height=600')
+        window.open(url, '', 'width=800,height=600,left=400,top=400')
     };
     APIUpdateAttr({
         url: the_url,
diff --git a/apps/ops/views.py b/apps/ops/views.py
index e3ba2789a..a8af61789 100644
--- a/apps/ops/views.py
+++ b/apps/ops/views.py
@@ -124,3 +124,6 @@ class AdHocHistoryDetailView(AdminUserRequiredMixin, DetailView):
 class CeleryTaskLogView(AdminUserRequiredMixin, DetailView):
     template_name = 'ops/celery_task_log.html'
     model = CeleryTask
+
+    def get_object(self, queryset=None):
+        return CeleryTask(id="4cae9ad8-1116-45e7-b019-9b1856696fd7")
diff --git a/apps/static/js/plugins/xterm/xterm.css b/apps/static/js/plugins/xterm/xterm.css
new file mode 100644
index 000000000..89daf9e3e
--- /dev/null
+++ b/apps/static/js/plugins/xterm/xterm.css
@@ -0,0 +1,2261 @@
+/**
+ * xterm.js: xterm, in the browser
+ * Copyright (c) 2014-2016, SourceLair Private Company (www.sourcelair.com (MIT License)
+ * Copyright (c) 2012-2013, Christopher Jeffrey (MIT License)
+ * https://github.com/chjj/term.js
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a copy
+ * of this software and associated documentation files (the "Software"), to deal
+ * in the Software without restriction, including without limitation the rights
+ * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+ * copies of the Software, and to permit persons to whom the Software is
+ * furnished to do so, subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be included in
+ * all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+ * THE SOFTWARE.
+ *
+ * Originally forked from (with the author's permission):
+ *   Fabrice Bellard's javascript vt100 for jslinux:
+ *   http://bellard.org/jslinux/
+ *   Copyright (c) 2011 Fabrice Bellard
+ *   The original design remains. The terminal itself
+ *   has been extended to include xterm CSI codes, among
+ *   other features.
+ */
+
+/*
+ *  Default style for xterm.js
+ */
+
+.terminal {
+    background-color: #000;
+    color: #fff;
+    font-family: courier-new, courier, monospace;
+    font-feature-settings: "liga" 0;
+    position: relative;
+    user-select: none;
+    -ms-user-select: none;
+    -webkit-user-select: none;
+}
+
+.terminal.focus,
+.terminal:focus {
+    outline: none;
+}
+
+.terminal .xterm-helpers {
+    position: absolute;
+    top: 0;
+}
+
+.terminal .xterm-helper-textarea {
+    /*
+     * HACK: to fix IE's blinking cursor
+     * Move textarea out of the screen to the far left, so that the cursor is not visible.
+     */
+    position: absolute;
+    opacity: 0;
+    left: -9999em;
+    top: 0;
+    width: 0;
+    height: 0;
+    z-index: -10;
+    /** Prevent wrapping so the IME appears against the textarea at the correct position */
+    white-space: nowrap;
+    overflow: hidden;
+    resize: none;
+}
+
+.terminal a {
+    color: inherit;
+    text-decoration: none;
+}
+
+.terminal a:hover {
+    cursor: pointer;
+    text-decoration: underline;
+}
+
+.terminal a.xterm-invalid-link:hover {
+    cursor: text;
+    text-decoration: none;
+}
+
+.terminal .terminal-cursor {
+    position: relative;
+}
+
+.terminal:not(.focus) .terminal-cursor {
+    outline: 1px solid #fff;
+    outline-offset: -1px;
+}
+
+.terminal.xterm-cursor-style-block.focus:not(.xterm-cursor-blink-on) .terminal-cursor {
+    background-color: #fff;
+    color: #000;
+}
+
+.terminal.focus.xterm-cursor-style-bar:not(.xterm-cursor-blink-on) .terminal-cursor::before,
+.terminal.focus.xterm-cursor-style-underline:not(.xterm-cursor-blink-on) .terminal-cursor::before {
+    content: '';
+    position: absolute;
+    background-color: #fff;
+}
+
+.terminal.focus.xterm-cursor-style-bar:not(.xterm-cursor-blink-on) .terminal-cursor::before {
+    top: 0;
+    left: 0;
+    bottom: 0;
+    width: 1px;
+}
+
+.terminal.focus.xterm-cursor-style-underline:not(.xterm-cursor-blink-on) .terminal-cursor::before {
+    bottom: 0;
+    left: 0;
+    right: 0;
+    height: 1px;
+}
+
+.terminal .composition-view {
+    background: #000;
+    color: #FFF;
+    display: none;
+    position: absolute;
+    white-space: nowrap;
+    z-index: 1;
+}
+
+.terminal .composition-view.active {
+    display: block;
+}
+
+.terminal .xterm-viewport {
+    /* On OS X this is required in order for the scroll bar to appear fully opaque */
+    background-color: #000;
+    overflow-y: scroll;
+}
+
+.terminal .xterm-wide-char,
+.terminal .xterm-normal-char {
+    display: inline-block;
+}
+
+.terminal .xterm-rows {
+    position: absolute;
+    left: 0;
+    top: 0;
+}
+
+.terminal .xterm-rows > div {
+    /* Lines containing spans and text nodes ocassionally wrap despite being the same width (#327) */
+    white-space: nowrap;
+}
+
+.terminal .xterm-scroll-area {
+    visibility: hidden;
+}
+
+.terminal .xterm-char-measure-element {
+    display: inline-block;
+    visibility: hidden;
+    position: absolute;
+    left: -9999em;
+}
+
+.terminal.enable-mouse-events {
+    /* When mouse events are enabled (eg. tmux), revert to the standard pointer cursor */
+    cursor: default;
+}
+
+.terminal .xterm-selection {
+    position: absolute;
+    top: 0;
+    left: 0;
+    z-index: 1;
+    opacity: 0.3;
+    pointer-events: none;
+}
+
+.terminal .xterm-selection div {
+    position: absolute;
+    background-color: #fff;
+}
+
+/*
+ *  Determine default colors for xterm.js
+ */
+.terminal .xterm-bold {
+    font-weight: bold;
+}
+
+.terminal .xterm-underline {
+    text-decoration: underline;
+}
+
+.terminal .xterm-blink {
+    text-decoration: blink;
+}
+
+.terminal .xterm-blink.xterm-underline {
+    text-decoration: blink underline;
+}
+
+.terminal .xterm-hidden {
+    visibility: hidden;
+}
+
+.terminal .xterm-color-0 {
+    color: #2e3436;
+}
+
+.terminal .xterm-bg-color-0 {
+    background-color: #2e3436;
+}
+
+.terminal .xterm-color-1 {
+    color: #cc0000;
+}
+
+.terminal .xterm-bg-color-1 {
+    background-color: #cc0000;
+}
+
+.terminal .xterm-color-2 {
+    color: #4e9a06;
+}
+
+.terminal .xterm-bg-color-2 {
+    background-color: #4e9a06;
+}
+
+.terminal .xterm-color-3 {
+    color: #c4a000;
+}
+
+.terminal .xterm-bg-color-3 {
+    background-color: #c4a000;
+}
+
+.terminal .xterm-color-4 {
+    color: #3465a4;
+}
+
+.terminal .xterm-bg-color-4 {
+    background-color: #3465a4;
+}
+
+.terminal .xterm-color-5 {
+    color: #75507b;
+}
+
+.terminal .xterm-bg-color-5 {
+    background-color: #75507b;
+}
+
+.terminal .xterm-color-6 {
+    color: #06989a;
+}
+
+.terminal .xterm-bg-color-6 {
+    background-color: #06989a;
+}
+
+.terminal .xterm-color-7 {
+    color: #d3d7cf;
+}
+
+.terminal .xterm-bg-color-7 {
+    background-color: #d3d7cf;
+}
+
+.terminal .xterm-color-8 {
+    color: #555753;
+}
+
+.terminal .xterm-bg-color-8 {
+    background-color: #555753;
+}
+
+.terminal .xterm-color-9 {
+    color: #ef2929;
+}
+
+.terminal .xterm-bg-color-9 {
+    background-color: #ef2929;
+}
+
+.terminal .xterm-color-10 {
+    color: #8ae234;
+}
+
+.terminal .xterm-bg-color-10 {
+    background-color: #8ae234;
+}
+
+.terminal .xterm-color-11 {
+    color: #fce94f;
+}
+
+.terminal .xterm-bg-color-11 {
+    background-color: #fce94f;
+}
+
+.terminal .xterm-color-12 {
+    color: #729fcf;
+}
+
+.terminal .xterm-bg-color-12 {
+    background-color: #729fcf;
+}
+
+.terminal .xterm-color-13 {
+    color: #ad7fa8;
+}
+
+.terminal .xterm-bg-color-13 {
+    background-color: #ad7fa8;
+}
+
+.terminal .xterm-color-14 {
+    color: #34e2e2;
+}
+
+.terminal .xterm-bg-color-14 {
+    background-color: #34e2e2;
+}
+
+.terminal .xterm-color-15 {
+    color: #eeeeec;
+}
+
+.terminal .xterm-bg-color-15 {
+    background-color: #eeeeec;
+}
+
+.terminal .xterm-color-16 {
+    color: #000000;
+}
+
+.terminal .xterm-bg-color-16 {
+    background-color: #000000;
+}
+
+.terminal .xterm-color-17 {
+    color: #00005f;
+}
+
+.terminal .xterm-bg-color-17 {
+    background-color: #00005f;
+}
+
+.terminal .xterm-color-18 {
+    color: #000087;
+}
+
+.terminal .xterm-bg-color-18 {
+    background-color: #000087;
+}
+
+.terminal .xterm-color-19 {
+    color: #0000af;
+}
+
+.terminal .xterm-bg-color-19 {
+    background-color: #0000af;
+}
+
+.terminal .xterm-color-20 {
+    color: #0000d7;
+}
+
+.terminal .xterm-bg-color-20 {
+    background-color: #0000d7;
+}
+
+.terminal .xterm-color-21 {
+    color: #0000ff;
+}
+
+.terminal .xterm-bg-color-21 {
+    background-color: #0000ff;
+}
+
+.terminal .xterm-color-22 {
+    color: #005f00;
+}
+
+.terminal .xterm-bg-color-22 {
+    background-color: #005f00;
+}
+
+.terminal .xterm-color-23 {
+    color: #005f5f;
+}
+
+.terminal .xterm-bg-color-23 {
+    background-color: #005f5f;
+}
+
+.terminal .xterm-color-24 {
+    color: #005f87;
+}
+
+.terminal .xterm-bg-color-24 {
+    background-color: #005f87;
+}
+
+.terminal .xterm-color-25 {
+    color: #005faf;
+}
+
+.terminal .xterm-bg-color-25 {
+    background-color: #005faf;
+}
+
+.terminal .xterm-color-26 {
+    color: #005fd7;
+}
+
+.terminal .xterm-bg-color-26 {
+    background-color: #005fd7;
+}
+
+.terminal .xterm-color-27 {
+    color: #005fff;
+}
+
+.terminal .xterm-bg-color-27 {
+    background-color: #005fff;
+}
+
+.terminal .xterm-color-28 {
+    color: #008700;
+}
+
+.terminal .xterm-bg-color-28 {
+    background-color: #008700;
+}
+
+.terminal .xterm-color-29 {
+    color: #00875f;
+}
+
+.terminal .xterm-bg-color-29 {
+    background-color: #00875f;
+}
+
+.terminal .xterm-color-30 {
+    color: #008787;
+}
+
+.terminal .xterm-bg-color-30 {
+    background-color: #008787;
+}
+
+.terminal .xterm-color-31 {
+    color: #0087af;
+}
+
+.terminal .xterm-bg-color-31 {
+    background-color: #0087af;
+}
+
+.terminal .xterm-color-32 {
+    color: #0087d7;
+}
+
+.terminal .xterm-bg-color-32 {
+    background-color: #0087d7;
+}
+
+.terminal .xterm-color-33 {
+    color: #0087ff;
+}
+
+.terminal .xterm-bg-color-33 {
+    background-color: #0087ff;
+}
+
+.terminal .xterm-color-34 {
+    color: #00af00;
+}
+
+.terminal .xterm-bg-color-34 {
+    background-color: #00af00;
+}
+
+.terminal .xterm-color-35 {
+    color: #00af5f;
+}
+
+.terminal .xterm-bg-color-35 {
+    background-color: #00af5f;
+}
+
+.terminal .xterm-color-36 {
+    color: #00af87;
+}
+
+.terminal .xterm-bg-color-36 {
+    background-color: #00af87;
+}
+
+.terminal .xterm-color-37 {
+    color: #00afaf;
+}
+
+.terminal .xterm-bg-color-37 {
+    background-color: #00afaf;
+}
+
+.terminal .xterm-color-38 {
+    color: #00afd7;
+}
+
+.terminal .xterm-bg-color-38 {
+    background-color: #00afd7;
+}
+
+.terminal .xterm-color-39 {
+    color: #00afff;
+}
+
+.terminal .xterm-bg-color-39 {
+    background-color: #00afff;
+}
+
+.terminal .xterm-color-40 {
+    color: #00d700;
+}
+
+.terminal .xterm-bg-color-40 {
+    background-color: #00d700;
+}
+
+.terminal .xterm-color-41 {
+    color: #00d75f;
+}
+
+.terminal .xterm-bg-color-41 {
+    background-color: #00d75f;
+}
+
+.terminal .xterm-color-42 {
+    color: #00d787;
+}
+
+.terminal .xterm-bg-color-42 {
+    background-color: #00d787;
+}
+
+.terminal .xterm-color-43 {
+    color: #00d7af;
+}
+
+.terminal .xterm-bg-color-43 {
+    background-color: #00d7af;
+}
+
+.terminal .xterm-color-44 {
+    color: #00d7d7;
+}
+
+.terminal .xterm-bg-color-44 {
+    background-color: #00d7d7;
+}
+
+.terminal .xterm-color-45 {
+    color: #00d7ff;
+}
+
+.terminal .xterm-bg-color-45 {
+    background-color: #00d7ff;
+}
+
+.terminal .xterm-color-46 {
+    color: #00ff00;
+}
+
+.terminal .xterm-bg-color-46 {
+    background-color: #00ff00;
+}
+
+.terminal .xterm-color-47 {
+    color: #00ff5f;
+}
+
+.terminal .xterm-bg-color-47 {
+    background-color: #00ff5f;
+}
+
+.terminal .xterm-color-48 {
+    color: #00ff87;
+}
+
+.terminal .xterm-bg-color-48 {
+    background-color: #00ff87;
+}
+
+.terminal .xterm-color-49 {
+    color: #00ffaf;
+}
+
+.terminal .xterm-bg-color-49 {
+    background-color: #00ffaf;
+}
+
+.terminal .xterm-color-50 {
+    color: #00ffd7;
+}
+
+.terminal .xterm-bg-color-50 {
+    background-color: #00ffd7;
+}
+
+.terminal .xterm-color-51 {
+    color: #00ffff;
+}
+
+.terminal .xterm-bg-color-51 {
+    background-color: #00ffff;
+}
+
+.terminal .xterm-color-52 {
+    color: #5f0000;
+}
+
+.terminal .xterm-bg-color-52 {
+    background-color: #5f0000;
+}
+
+.terminal .xterm-color-53 {
+    color: #5f005f;
+}
+
+.terminal .xterm-bg-color-53 {
+    background-color: #5f005f;
+}
+
+.terminal .xterm-color-54 {
+    color: #5f0087;
+}
+
+.terminal .xterm-bg-color-54 {
+    background-color: #5f0087;
+}
+
+.terminal .xterm-color-55 {
+    color: #5f00af;
+}
+
+.terminal .xterm-bg-color-55 {
+    background-color: #5f00af;
+}
+
+.terminal .xterm-color-56 {
+    color: #5f00d7;
+}
+
+.terminal .xterm-bg-color-56 {
+    background-color: #5f00d7;
+}
+
+.terminal .xterm-color-57 {
+    color: #5f00ff;
+}
+
+.terminal .xterm-bg-color-57 {
+    background-color: #5f00ff;
+}
+
+.terminal .xterm-color-58 {
+    color: #5f5f00;
+}
+
+.terminal .xterm-bg-color-58 {
+    background-color: #5f5f00;
+}
+
+.terminal .xterm-color-59 {
+    color: #5f5f5f;
+}
+
+.terminal .xterm-bg-color-59 {
+    background-color: #5f5f5f;
+}
+
+.terminal .xterm-color-60 {
+    color: #5f5f87;
+}
+
+.terminal .xterm-bg-color-60 {
+    background-color: #5f5f87;
+}
+
+.terminal .xterm-color-61 {
+    color: #5f5faf;
+}
+
+.terminal .xterm-bg-color-61 {
+    background-color: #5f5faf;
+}
+
+.terminal .xterm-color-62 {
+    color: #5f5fd7;
+}
+
+.terminal .xterm-bg-color-62 {
+    background-color: #5f5fd7;
+}
+
+.terminal .xterm-color-63 {
+    color: #5f5fff;
+}
+
+.terminal .xterm-bg-color-63 {
+    background-color: #5f5fff;
+}
+
+.terminal .xterm-color-64 {
+    color: #5f8700;
+}
+
+.terminal .xterm-bg-color-64 {
+    background-color: #5f8700;
+}
+
+.terminal .xterm-color-65 {
+    color: #5f875f;
+}
+
+.terminal .xterm-bg-color-65 {
+    background-color: #5f875f;
+}
+
+.terminal .xterm-color-66 {
+    color: #5f8787;
+}
+
+.terminal .xterm-bg-color-66 {
+    background-color: #5f8787;
+}
+
+.terminal .xterm-color-67 {
+    color: #5f87af;
+}
+
+.terminal .xterm-bg-color-67 {
+    background-color: #5f87af;
+}
+
+.terminal .xterm-color-68 {
+    color: #5f87d7;
+}
+
+.terminal .xterm-bg-color-68 {
+    background-color: #5f87d7;
+}
+
+.terminal .xterm-color-69 {
+    color: #5f87ff;
+}
+
+.terminal .xterm-bg-color-69 {
+    background-color: #5f87ff;
+}
+
+.terminal .xterm-color-70 {
+    color: #5faf00;
+}
+
+.terminal .xterm-bg-color-70 {
+    background-color: #5faf00;
+}
+
+.terminal .xterm-color-71 {
+    color: #5faf5f;
+}
+
+.terminal .xterm-bg-color-71 {
+    background-color: #5faf5f;
+}
+
+.terminal .xterm-color-72 {
+    color: #5faf87;
+}
+
+.terminal .xterm-bg-color-72 {
+    background-color: #5faf87;
+}
+
+.terminal .xterm-color-73 {
+    color: #5fafaf;
+}
+
+.terminal .xterm-bg-color-73 {
+    background-color: #5fafaf;
+}
+
+.terminal .xterm-color-74 {
+    color: #5fafd7;
+}
+
+.terminal .xterm-bg-color-74 {
+    background-color: #5fafd7;
+}
+
+.terminal .xterm-color-75 {
+    color: #5fafff;
+}
+
+.terminal .xterm-bg-color-75 {
+    background-color: #5fafff;
+}
+
+.terminal .xterm-color-76 {
+    color: #5fd700;
+}
+
+.terminal .xterm-bg-color-76 {
+    background-color: #5fd700;
+}
+
+.terminal .xterm-color-77 {
+    color: #5fd75f;
+}
+
+.terminal .xterm-bg-color-77 {
+    background-color: #5fd75f;
+}
+
+.terminal .xterm-color-78 {
+    color: #5fd787;
+}
+
+.terminal .xterm-bg-color-78 {
+    background-color: #5fd787;
+}
+
+.terminal .xterm-color-79 {
+    color: #5fd7af;
+}
+
+.terminal .xterm-bg-color-79 {
+    background-color: #5fd7af;
+}
+
+.terminal .xterm-color-80 {
+    color: #5fd7d7;
+}
+
+.terminal .xterm-bg-color-80 {
+    background-color: #5fd7d7;
+}
+
+.terminal .xterm-color-81 {
+    color: #5fd7ff;
+}
+
+.terminal .xterm-bg-color-81 {
+    background-color: #5fd7ff;
+}
+
+.terminal .xterm-color-82 {
+    color: #5fff00;
+}
+
+.terminal .xterm-bg-color-82 {
+    background-color: #5fff00;
+}
+
+.terminal .xterm-color-83 {
+    color: #5fff5f;
+}
+
+.terminal .xterm-bg-color-83 {
+    background-color: #5fff5f;
+}
+
+.terminal .xterm-color-84 {
+    color: #5fff87;
+}
+
+.terminal .xterm-bg-color-84 {
+    background-color: #5fff87;
+}
+
+.terminal .xterm-color-85 {
+    color: #5fffaf;
+}
+
+.terminal .xterm-bg-color-85 {
+    background-color: #5fffaf;
+}
+
+.terminal .xterm-color-86 {
+    color: #5fffd7;
+}
+
+.terminal .xterm-bg-color-86 {
+    background-color: #5fffd7;
+}
+
+.terminal .xterm-color-87 {
+    color: #5fffff;
+}
+
+.terminal .xterm-bg-color-87 {
+    background-color: #5fffff;
+}
+
+.terminal .xterm-color-88 {
+    color: #870000;
+}
+
+.terminal .xterm-bg-color-88 {
+    background-color: #870000;
+}
+
+.terminal .xterm-color-89 {
+    color: #87005f;
+}
+
+.terminal .xterm-bg-color-89 {
+    background-color: #87005f;
+}
+
+.terminal .xterm-color-90 {
+    color: #870087;
+}
+
+.terminal .xterm-bg-color-90 {
+    background-color: #870087;
+}
+
+.terminal .xterm-color-91 {
+    color: #8700af;
+}
+
+.terminal .xterm-bg-color-91 {
+    background-color: #8700af;
+}
+
+.terminal .xterm-color-92 {
+    color: #8700d7;
+}
+
+.terminal .xterm-bg-color-92 {
+    background-color: #8700d7;
+}
+
+.terminal .xterm-color-93 {
+    color: #8700ff;
+}
+
+.terminal .xterm-bg-color-93 {
+    background-color: #8700ff;
+}
+
+.terminal .xterm-color-94 {
+    color: #875f00;
+}
+
+.terminal .xterm-bg-color-94 {
+    background-color: #875f00;
+}
+
+.terminal .xterm-color-95 {
+    color: #875f5f;
+}
+
+.terminal .xterm-bg-color-95 {
+    background-color: #875f5f;
+}
+
+.terminal .xterm-color-96 {
+    color: #875f87;
+}
+
+.terminal .xterm-bg-color-96 {
+    background-color: #875f87;
+}
+
+.terminal .xterm-color-97 {
+    color: #875faf;
+}
+
+.terminal .xterm-bg-color-97 {
+    background-color: #875faf;
+}
+
+.terminal .xterm-color-98 {
+    color: #875fd7;
+}
+
+.terminal .xterm-bg-color-98 {
+    background-color: #875fd7;
+}
+
+.terminal .xterm-color-99 {
+    color: #875fff;
+}
+
+.terminal .xterm-bg-color-99 {
+    background-color: #875fff;
+}
+
+.terminal .xterm-color-100 {
+    color: #878700;
+}
+
+.terminal .xterm-bg-color-100 {
+    background-color: #878700;
+}
+
+.terminal .xterm-color-101 {
+    color: #87875f;
+}
+
+.terminal .xterm-bg-color-101 {
+    background-color: #87875f;
+}
+
+.terminal .xterm-color-102 {
+    color: #878787;
+}
+
+.terminal .xterm-bg-color-102 {
+    background-color: #878787;
+}
+
+.terminal .xterm-color-103 {
+    color: #8787af;
+}
+
+.terminal .xterm-bg-color-103 {
+    background-color: #8787af;
+}
+
+.terminal .xterm-color-104 {
+    color: #8787d7;
+}
+
+.terminal .xterm-bg-color-104 {
+    background-color: #8787d7;
+}
+
+.terminal .xterm-color-105 {
+    color: #8787ff;
+}
+
+.terminal .xterm-bg-color-105 {
+    background-color: #8787ff;
+}
+
+.terminal .xterm-color-106 {
+    color: #87af00;
+}
+
+.terminal .xterm-bg-color-106 {
+    background-color: #87af00;
+}
+
+.terminal .xterm-color-107 {
+    color: #87af5f;
+}
+
+.terminal .xterm-bg-color-107 {
+    background-color: #87af5f;
+}
+
+.terminal .xterm-color-108 {
+    color: #87af87;
+}
+
+.terminal .xterm-bg-color-108 {
+    background-color: #87af87;
+}
+
+.terminal .xterm-color-109 {
+    color: #87afaf;
+}
+
+.terminal .xterm-bg-color-109 {
+    background-color: #87afaf;
+}
+
+.terminal .xterm-color-110 {
+    color: #87afd7;
+}
+
+.terminal .xterm-bg-color-110 {
+    background-color: #87afd7;
+}
+
+.terminal .xterm-color-111 {
+    color: #87afff;
+}
+
+.terminal .xterm-bg-color-111 {
+    background-color: #87afff;
+}
+
+.terminal .xterm-color-112 {
+    color: #87d700;
+}
+
+.terminal .xterm-bg-color-112 {
+    background-color: #87d700;
+}
+
+.terminal .xterm-color-113 {
+    color: #87d75f;
+}
+
+.terminal .xterm-bg-color-113 {
+    background-color: #87d75f;
+}
+
+.terminal .xterm-color-114 {
+    color: #87d787;
+}
+
+.terminal .xterm-bg-color-114 {
+    background-color: #87d787;
+}
+
+.terminal .xterm-color-115 {
+    color: #87d7af;
+}
+
+.terminal .xterm-bg-color-115 {
+    background-color: #87d7af;
+}
+
+.terminal .xterm-color-116 {
+    color: #87d7d7;
+}
+
+.terminal .xterm-bg-color-116 {
+    background-color: #87d7d7;
+}
+
+.terminal .xterm-color-117 {
+    color: #87d7ff;
+}
+
+.terminal .xterm-bg-color-117 {
+    background-color: #87d7ff;
+}
+
+.terminal .xterm-color-118 {
+    color: #87ff00;
+}
+
+.terminal .xterm-bg-color-118 {
+    background-color: #87ff00;
+}
+
+.terminal .xterm-color-119 {
+    color: #87ff5f;
+}
+
+.terminal .xterm-bg-color-119 {
+    background-color: #87ff5f;
+}
+
+.terminal .xterm-color-120 {
+    color: #87ff87;
+}
+
+.terminal .xterm-bg-color-120 {
+    background-color: #87ff87;
+}
+
+.terminal .xterm-color-121 {
+    color: #87ffaf;
+}
+
+.terminal .xterm-bg-color-121 {
+    background-color: #87ffaf;
+}
+
+.terminal .xterm-color-122 {
+    color: #87ffd7;
+}
+
+.terminal .xterm-bg-color-122 {
+    background-color: #87ffd7;
+}
+
+.terminal .xterm-color-123 {
+    color: #87ffff;
+}
+
+.terminal .xterm-bg-color-123 {
+    background-color: #87ffff;
+}
+
+.terminal .xterm-color-124 {
+    color: #af0000;
+}
+
+.terminal .xterm-bg-color-124 {
+    background-color: #af0000;
+}
+
+.terminal .xterm-color-125 {
+    color: #af005f;
+}
+
+.terminal .xterm-bg-color-125 {
+    background-color: #af005f;
+}
+
+.terminal .xterm-color-126 {
+    color: #af0087;
+}
+
+.terminal .xterm-bg-color-126 {
+    background-color: #af0087;
+}
+
+.terminal .xterm-color-127 {
+    color: #af00af;
+}
+
+.terminal .xterm-bg-color-127 {
+    background-color: #af00af;
+}
+
+.terminal .xterm-color-128 {
+    color: #af00d7;
+}
+
+.terminal .xterm-bg-color-128 {
+    background-color: #af00d7;
+}
+
+.terminal .xterm-color-129 {
+    color: #af00ff;
+}
+
+.terminal .xterm-bg-color-129 {
+    background-color: #af00ff;
+}
+
+.terminal .xterm-color-130 {
+    color: #af5f00;
+}
+
+.terminal .xterm-bg-color-130 {
+    background-color: #af5f00;
+}
+
+.terminal .xterm-color-131 {
+    color: #af5f5f;
+}
+
+.terminal .xterm-bg-color-131 {
+    background-color: #af5f5f;
+}
+
+.terminal .xterm-color-132 {
+    color: #af5f87;
+}
+
+.terminal .xterm-bg-color-132 {
+    background-color: #af5f87;
+}
+
+.terminal .xterm-color-133 {
+    color: #af5faf;
+}
+
+.terminal .xterm-bg-color-133 {
+    background-color: #af5faf;
+}
+
+.terminal .xterm-color-134 {
+    color: #af5fd7;
+}
+
+.terminal .xterm-bg-color-134 {
+    background-color: #af5fd7;
+}
+
+.terminal .xterm-color-135 {
+    color: #af5fff;
+}
+
+.terminal .xterm-bg-color-135 {
+    background-color: #af5fff;
+}
+
+.terminal .xterm-color-136 {
+    color: #af8700;
+}
+
+.terminal .xterm-bg-color-136 {
+    background-color: #af8700;
+}
+
+.terminal .xterm-color-137 {
+    color: #af875f;
+}
+
+.terminal .xterm-bg-color-137 {
+    background-color: #af875f;
+}
+
+.terminal .xterm-color-138 {
+    color: #af8787;
+}
+
+.terminal .xterm-bg-color-138 {
+    background-color: #af8787;
+}
+
+.terminal .xterm-color-139 {
+    color: #af87af;
+}
+
+.terminal .xterm-bg-color-139 {
+    background-color: #af87af;
+}
+
+.terminal .xterm-color-140 {
+    color: #af87d7;
+}
+
+.terminal .xterm-bg-color-140 {
+    background-color: #af87d7;
+}
+
+.terminal .xterm-color-141 {
+    color: #af87ff;
+}
+
+.terminal .xterm-bg-color-141 {
+    background-color: #af87ff;
+}
+
+.terminal .xterm-color-142 {
+    color: #afaf00;
+}
+
+.terminal .xterm-bg-color-142 {
+    background-color: #afaf00;
+}
+
+.terminal .xterm-color-143 {
+    color: #afaf5f;
+}
+
+.terminal .xterm-bg-color-143 {
+    background-color: #afaf5f;
+}
+
+.terminal .xterm-color-144 {
+    color: #afaf87;
+}
+
+.terminal .xterm-bg-color-144 {
+    background-color: #afaf87;
+}
+
+.terminal .xterm-color-145 {
+    color: #afafaf;
+}
+
+.terminal .xterm-bg-color-145 {
+    background-color: #afafaf;
+}
+
+.terminal .xterm-color-146 {
+    color: #afafd7;
+}
+
+.terminal .xterm-bg-color-146 {
+    background-color: #afafd7;
+}
+
+.terminal .xterm-color-147 {
+    color: #afafff;
+}
+
+.terminal .xterm-bg-color-147 {
+    background-color: #afafff;
+}
+
+.terminal .xterm-color-148 {
+    color: #afd700;
+}
+
+.terminal .xterm-bg-color-148 {
+    background-color: #afd700;
+}
+
+.terminal .xterm-color-149 {
+    color: #afd75f;
+}
+
+.terminal .xterm-bg-color-149 {
+    background-color: #afd75f;
+}
+
+.terminal .xterm-color-150 {
+    color: #afd787;
+}
+
+.terminal .xterm-bg-color-150 {
+    background-color: #afd787;
+}
+
+.terminal .xterm-color-151 {
+    color: #afd7af;
+}
+
+.terminal .xterm-bg-color-151 {
+    background-color: #afd7af;
+}
+
+.terminal .xterm-color-152 {
+    color: #afd7d7;
+}
+
+.terminal .xterm-bg-color-152 {
+    background-color: #afd7d7;
+}
+
+.terminal .xterm-color-153 {
+    color: #afd7ff;
+}
+
+.terminal .xterm-bg-color-153 {
+    background-color: #afd7ff;
+}
+
+.terminal .xterm-color-154 {
+    color: #afff00;
+}
+
+.terminal .xterm-bg-color-154 {
+    background-color: #afff00;
+}
+
+.terminal .xterm-color-155 {
+    color: #afff5f;
+}
+
+.terminal .xterm-bg-color-155 {
+    background-color: #afff5f;
+}
+
+.terminal .xterm-color-156 {
+    color: #afff87;
+}
+
+.terminal .xterm-bg-color-156 {
+    background-color: #afff87;
+}
+
+.terminal .xterm-color-157 {
+    color: #afffaf;
+}
+
+.terminal .xterm-bg-color-157 {
+    background-color: #afffaf;
+}
+
+.terminal .xterm-color-158 {
+    color: #afffd7;
+}
+
+.terminal .xterm-bg-color-158 {
+    background-color: #afffd7;
+}
+
+.terminal .xterm-color-159 {
+    color: #afffff;
+}
+
+.terminal .xterm-bg-color-159 {
+    background-color: #afffff;
+}
+
+.terminal .xterm-color-160 {
+    color: #d70000;
+}
+
+.terminal .xterm-bg-color-160 {
+    background-color: #d70000;
+}
+
+.terminal .xterm-color-161 {
+    color: #d7005f;
+}
+
+.terminal .xterm-bg-color-161 {
+    background-color: #d7005f;
+}
+
+.terminal .xterm-color-162 {
+    color: #d70087;
+}
+
+.terminal .xterm-bg-color-162 {
+    background-color: #d70087;
+}
+
+.terminal .xterm-color-163 {
+    color: #d700af;
+}
+
+.terminal .xterm-bg-color-163 {
+    background-color: #d700af;
+}
+
+.terminal .xterm-color-164 {
+    color: #d700d7;
+}
+
+.terminal .xterm-bg-color-164 {
+    background-color: #d700d7;
+}
+
+.terminal .xterm-color-165 {
+    color: #d700ff;
+}
+
+.terminal .xterm-bg-color-165 {
+    background-color: #d700ff;
+}
+
+.terminal .xterm-color-166 {
+    color: #d75f00;
+}
+
+.terminal .xterm-bg-color-166 {
+    background-color: #d75f00;
+}
+
+.terminal .xterm-color-167 {
+    color: #d75f5f;
+}
+
+.terminal .xterm-bg-color-167 {
+    background-color: #d75f5f;
+}
+
+.terminal .xterm-color-168 {
+    color: #d75f87;
+}
+
+.terminal .xterm-bg-color-168 {
+    background-color: #d75f87;
+}
+
+.terminal .xterm-color-169 {
+    color: #d75faf;
+}
+
+.terminal .xterm-bg-color-169 {
+    background-color: #d75faf;
+}
+
+.terminal .xterm-color-170 {
+    color: #d75fd7;
+}
+
+.terminal .xterm-bg-color-170 {
+    background-color: #d75fd7;
+}
+
+.terminal .xterm-color-171 {
+    color: #d75fff;
+}
+
+.terminal .xterm-bg-color-171 {
+    background-color: #d75fff;
+}
+
+.terminal .xterm-color-172 {
+    color: #d78700;
+}
+
+.terminal .xterm-bg-color-172 {
+    background-color: #d78700;
+}
+
+.terminal .xterm-color-173 {
+    color: #d7875f;
+}
+
+.terminal .xterm-bg-color-173 {
+    background-color: #d7875f;
+}
+
+.terminal .xterm-color-174 {
+    color: #d78787;
+}
+
+.terminal .xterm-bg-color-174 {
+    background-color: #d78787;
+}
+
+.terminal .xterm-color-175 {
+    color: #d787af;
+}
+
+.terminal .xterm-bg-color-175 {
+    background-color: #d787af;
+}
+
+.terminal .xterm-color-176 {
+    color: #d787d7;
+}
+
+.terminal .xterm-bg-color-176 {
+    background-color: #d787d7;
+}
+
+.terminal .xterm-color-177 {
+    color: #d787ff;
+}
+
+.terminal .xterm-bg-color-177 {
+    background-color: #d787ff;
+}
+
+.terminal .xterm-color-178 {
+    color: #d7af00;
+}
+
+.terminal .xterm-bg-color-178 {
+    background-color: #d7af00;
+}
+
+.terminal .xterm-color-179 {
+    color: #d7af5f;
+}
+
+.terminal .xterm-bg-color-179 {
+    background-color: #d7af5f;
+}
+
+.terminal .xterm-color-180 {
+    color: #d7af87;
+}
+
+.terminal .xterm-bg-color-180 {
+    background-color: #d7af87;
+}
+
+.terminal .xterm-color-181 {
+    color: #d7afaf;
+}
+
+.terminal .xterm-bg-color-181 {
+    background-color: #d7afaf;
+}
+
+.terminal .xterm-color-182 {
+    color: #d7afd7;
+}
+
+.terminal .xterm-bg-color-182 {
+    background-color: #d7afd7;
+}
+
+.terminal .xterm-color-183 {
+    color: #d7afff;
+}
+
+.terminal .xterm-bg-color-183 {
+    background-color: #d7afff;
+}
+
+.terminal .xterm-color-184 {
+    color: #d7d700;
+}
+
+.terminal .xterm-bg-color-184 {
+    background-color: #d7d700;
+}
+
+.terminal .xterm-color-185 {
+    color: #d7d75f;
+}
+
+.terminal .xterm-bg-color-185 {
+    background-color: #d7d75f;
+}
+
+.terminal .xterm-color-186 {
+    color: #d7d787;
+}
+
+.terminal .xterm-bg-color-186 {
+    background-color: #d7d787;
+}
+
+.terminal .xterm-color-187 {
+    color: #d7d7af;
+}
+
+.terminal .xterm-bg-color-187 {
+    background-color: #d7d7af;
+}
+
+.terminal .xterm-color-188 {
+    color: #d7d7d7;
+}
+
+.terminal .xterm-bg-color-188 {
+    background-color: #d7d7d7;
+}
+
+.terminal .xterm-color-189 {
+    color: #d7d7ff;
+}
+
+.terminal .xterm-bg-color-189 {
+    background-color: #d7d7ff;
+}
+
+.terminal .xterm-color-190 {
+    color: #d7ff00;
+}
+
+.terminal .xterm-bg-color-190 {
+    background-color: #d7ff00;
+}
+
+.terminal .xterm-color-191 {
+    color: #d7ff5f;
+}
+
+.terminal .xterm-bg-color-191 {
+    background-color: #d7ff5f;
+}
+
+.terminal .xterm-color-192 {
+    color: #d7ff87;
+}
+
+.terminal .xterm-bg-color-192 {
+    background-color: #d7ff87;
+}
+
+.terminal .xterm-color-193 {
+    color: #d7ffaf;
+}
+
+.terminal .xterm-bg-color-193 {
+    background-color: #d7ffaf;
+}
+
+.terminal .xterm-color-194 {
+    color: #d7ffd7;
+}
+
+.terminal .xterm-bg-color-194 {
+    background-color: #d7ffd7;
+}
+
+.terminal .xterm-color-195 {
+    color: #d7ffff;
+}
+
+.terminal .xterm-bg-color-195 {
+    background-color: #d7ffff;
+}
+
+.terminal .xterm-color-196 {
+    color: #ff0000;
+}
+
+.terminal .xterm-bg-color-196 {
+    background-color: #ff0000;
+}
+
+.terminal .xterm-color-197 {
+    color: #ff005f;
+}
+
+.terminal .xterm-bg-color-197 {
+    background-color: #ff005f;
+}
+
+.terminal .xterm-color-198 {
+    color: #ff0087;
+}
+
+.terminal .xterm-bg-color-198 {
+    background-color: #ff0087;
+}
+
+.terminal .xterm-color-199 {
+    color: #ff00af;
+}
+
+.terminal .xterm-bg-color-199 {
+    background-color: #ff00af;
+}
+
+.terminal .xterm-color-200 {
+    color: #ff00d7;
+}
+
+.terminal .xterm-bg-color-200 {
+    background-color: #ff00d7;
+}
+
+.terminal .xterm-color-201 {
+    color: #ff00ff;
+}
+
+.terminal .xterm-bg-color-201 {
+    background-color: #ff00ff;
+}
+
+.terminal .xterm-color-202 {
+    color: #ff5f00;
+}
+
+.terminal .xterm-bg-color-202 {
+    background-color: #ff5f00;
+}
+
+.terminal .xterm-color-203 {
+    color: #ff5f5f;
+}
+
+.terminal .xterm-bg-color-203 {
+    background-color: #ff5f5f;
+}
+
+.terminal .xterm-color-204 {
+    color: #ff5f87;
+}
+
+.terminal .xterm-bg-color-204 {
+    background-color: #ff5f87;
+}
+
+.terminal .xterm-color-205 {
+    color: #ff5faf;
+}
+
+.terminal .xterm-bg-color-205 {
+    background-color: #ff5faf;
+}
+
+.terminal .xterm-color-206 {
+    color: #ff5fd7;
+}
+
+.terminal .xterm-bg-color-206 {
+    background-color: #ff5fd7;
+}
+
+.terminal .xterm-color-207 {
+    color: #ff5fff;
+}
+
+.terminal .xterm-bg-color-207 {
+    background-color: #ff5fff;
+}
+
+.terminal .xterm-color-208 {
+    color: #ff8700;
+}
+
+.terminal .xterm-bg-color-208 {
+    background-color: #ff8700;
+}
+
+.terminal .xterm-color-209 {
+    color: #ff875f;
+}
+
+.terminal .xterm-bg-color-209 {
+    background-color: #ff875f;
+}
+
+.terminal .xterm-color-210 {
+    color: #ff8787;
+}
+
+.terminal .xterm-bg-color-210 {
+    background-color: #ff8787;
+}
+
+.terminal .xterm-color-211 {
+    color: #ff87af;
+}
+
+.terminal .xterm-bg-color-211 {
+    background-color: #ff87af;
+}
+
+.terminal .xterm-color-212 {
+    color: #ff87d7;
+}
+
+.terminal .xterm-bg-color-212 {
+    background-color: #ff87d7;
+}
+
+.terminal .xterm-color-213 {
+    color: #ff87ff;
+}
+
+.terminal .xterm-bg-color-213 {
+    background-color: #ff87ff;
+}
+
+.terminal .xterm-color-214 {
+    color: #ffaf00;
+}
+
+.terminal .xterm-bg-color-214 {
+    background-color: #ffaf00;
+}
+
+.terminal .xterm-color-215 {
+    color: #ffaf5f;
+}
+
+.terminal .xterm-bg-color-215 {
+    background-color: #ffaf5f;
+}
+
+.terminal .xterm-color-216 {
+    color: #ffaf87;
+}
+
+.terminal .xterm-bg-color-216 {
+    background-color: #ffaf87;
+}
+
+.terminal .xterm-color-217 {
+    color: #ffafaf;
+}
+
+.terminal .xterm-bg-color-217 {
+    background-color: #ffafaf;
+}
+
+.terminal .xterm-color-218 {
+    color: #ffafd7;
+}
+
+.terminal .xterm-bg-color-218 {
+    background-color: #ffafd7;
+}
+
+.terminal .xterm-color-219 {
+    color: #ffafff;
+}
+
+.terminal .xterm-bg-color-219 {
+    background-color: #ffafff;
+}
+
+.terminal .xterm-color-220 {
+    color: #ffd700;
+}
+
+.terminal .xterm-bg-color-220 {
+    background-color: #ffd700;
+}
+
+.terminal .xterm-color-221 {
+    color: #ffd75f;
+}
+
+.terminal .xterm-bg-color-221 {
+    background-color: #ffd75f;
+}
+
+.terminal .xterm-color-222 {
+    color: #ffd787;
+}
+
+.terminal .xterm-bg-color-222 {
+    background-color: #ffd787;
+}
+
+.terminal .xterm-color-223 {
+    color: #ffd7af;
+}
+
+.terminal .xterm-bg-color-223 {
+    background-color: #ffd7af;
+}
+
+.terminal .xterm-color-224 {
+    color: #ffd7d7;
+}
+
+.terminal .xterm-bg-color-224 {
+    background-color: #ffd7d7;
+}
+
+.terminal .xterm-color-225 {
+    color: #ffd7ff;
+}
+
+.terminal .xterm-bg-color-225 {
+    background-color: #ffd7ff;
+}
+
+.terminal .xterm-color-226 {
+    color: #ffff00;
+}
+
+.terminal .xterm-bg-color-226 {
+    background-color: #ffff00;
+}
+
+.terminal .xterm-color-227 {
+    color: #ffff5f;
+}
+
+.terminal .xterm-bg-color-227 {
+    background-color: #ffff5f;
+}
+
+.terminal .xterm-color-228 {
+    color: #ffff87;
+}
+
+.terminal .xterm-bg-color-228 {
+    background-color: #ffff87;
+}
+
+.terminal .xterm-color-229 {
+    color: #ffffaf;
+}
+
+.terminal .xterm-bg-color-229 {
+    background-color: #ffffaf;
+}
+
+.terminal .xterm-color-230 {
+    color: #ffffd7;
+}
+
+.terminal .xterm-bg-color-230 {
+    background-color: #ffffd7;
+}
+
+.terminal .xterm-color-231 {
+    color: #ffffff;
+}
+
+.terminal .xterm-bg-color-231 {
+    background-color: #ffffff;
+}
+
+.terminal .xterm-color-232 {
+    color: #080808;
+}
+
+.terminal .xterm-bg-color-232 {
+    background-color: #080808;
+}
+
+.terminal .xterm-color-233 {
+    color: #121212;
+}
+
+.terminal .xterm-bg-color-233 {
+    background-color: #121212;
+}
+
+.terminal .xterm-color-234 {
+    color: #1c1c1c;
+}
+
+.terminal .xterm-bg-color-234 {
+    background-color: #1c1c1c;
+}
+
+.terminal .xterm-color-235 {
+    color: #262626;
+}
+
+.terminal .xterm-bg-color-235 {
+    background-color: #262626;
+}
+
+.terminal .xterm-color-236 {
+    color: #303030;
+}
+
+.terminal .xterm-bg-color-236 {
+    background-color: #303030;
+}
+
+.terminal .xterm-color-237 {
+    color: #3a3a3a;
+}
+
+.terminal .xterm-bg-color-237 {
+    background-color: #3a3a3a;
+}
+
+.terminal .xterm-color-238 {
+    color: #444444;
+}
+
+.terminal .xterm-bg-color-238 {
+    background-color: #444444;
+}
+
+.terminal .xterm-color-239 {
+    color: #4e4e4e;
+}
+
+.terminal .xterm-bg-color-239 {
+    background-color: #4e4e4e;
+}
+
+.terminal .xterm-color-240 {
+    color: #585858;
+}
+
+.terminal .xterm-bg-color-240 {
+    background-color: #585858;
+}
+
+.terminal .xterm-color-241 {
+    color: #626262;
+}
+
+.terminal .xterm-bg-color-241 {
+    background-color: #626262;
+}
+
+.terminal .xterm-color-242 {
+    color: #6c6c6c;
+}
+
+.terminal .xterm-bg-color-242 {
+    background-color: #6c6c6c;
+}
+
+.terminal .xterm-color-243 {
+    color: #767676;
+}
+
+.terminal .xterm-bg-color-243 {
+    background-color: #767676;
+}
+
+.terminal .xterm-color-244 {
+    color: #808080;
+}
+
+.terminal .xterm-bg-color-244 {
+    background-color: #808080;
+}
+
+.terminal .xterm-color-245 {
+    color: #8a8a8a;
+}
+
+.terminal .xterm-bg-color-245 {
+    background-color: #8a8a8a;
+}
+
+.terminal .xterm-color-246 {
+    color: #949494;
+}
+
+.terminal .xterm-bg-color-246 {
+    background-color: #949494;
+}
+
+.terminal .xterm-color-247 {
+    color: #9e9e9e;
+}
+
+.terminal .xterm-bg-color-247 {
+    background-color: #9e9e9e;
+}
+
+.terminal .xterm-color-248 {
+    color: #a8a8a8;
+}
+
+.terminal .xterm-bg-color-248 {
+    background-color: #a8a8a8;
+}
+
+.terminal .xterm-color-249 {
+    color: #b2b2b2;
+}
+
+.terminal .xterm-bg-color-249 {
+    background-color: #b2b2b2;
+}
+
+.terminal .xterm-color-250 {
+    color: #bcbcbc;
+}
+
+.terminal .xterm-bg-color-250 {
+    background-color: #bcbcbc;
+}
+
+.terminal .xterm-color-251 {
+    color: #c6c6c6;
+}
+
+.terminal .xterm-bg-color-251 {
+    background-color: #c6c6c6;
+}
+
+.terminal .xterm-color-252 {
+    color: #d0d0d0;
+}
+
+.terminal .xterm-bg-color-252 {
+    background-color: #d0d0d0;
+}
+
+.terminal .xterm-color-253 {
+    color: #dadada;
+}
+
+.terminal .xterm-bg-color-253 {
+    background-color: #dadada;
+}
+
+.terminal .xterm-color-254 {
+    color: #e4e4e4;
+}
+
+.terminal .xterm-bg-color-254 {
+    background-color: #e4e4e4;
+}
+
+.terminal .xterm-color-255 {
+    color: #eeeeee;
+}
+
+.terminal .xterm-bg-color-255 {
+    background-color: #eeeeee;
+}
diff --git a/apps/static/js/plugins/xterm/xterm.js b/apps/static/js/plugins/xterm/xterm.js
new file mode 100644
index 000000000..4b6f223a8
--- /dev/null
+++ b/apps/static/js/plugins/xterm/xterm.js
@@ -0,0 +1,5132 @@
+(function(f){if(typeof exports==="object"&&typeof module!=="undefined"){module.exports=f()}else if(typeof define==="function"&&define.amd){define([],f)}else{var g;if(typeof window!=="undefined"){g=window}else if(typeof global!=="undefined"){g=global}else if(typeof self!=="undefined"){g=self}else{g=this}g.Terminal = f()}})(function(){var define,module,exports;return (function e(t,n,r){function s(o,u){if(!n[o]){if(!t[o]){var a=typeof require=="function"&&require;if(!u&&a)return a(o,!0);if(i)return i(o,!0);var f=new Error("Cannot find module '"+o+"'");throw f.code="MODULE_NOT_FOUND",f}var l=n[o]={exports:{}};t[o][0].call(l.exports,function(e){var n=t[o][1][e];return s(n?n:e)},l,l.exports,e,t,n,r)}return n[o].exports}var i=typeof require=="function"&&require;for(var o=0;o<r.length;o++)s(r[o]);return s})({1:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var CircularList_1 = require("./utils/CircularList");
+var Buffer = (function () {
+    function Buffer(_terminal) {
+        this._terminal = _terminal;
+        this.clear();
+    }
+    Object.defineProperty(Buffer.prototype, "lines", {
+        get: function () {
+            return this._lines;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Buffer.prototype.fillViewportRows = function () {
+        if (this._lines.length === 0) {
+            var i = this._terminal.rows;
+            while (i--) {
+                this.lines.push(this._terminal.blankLine());
+            }
+        }
+    };
+    Buffer.prototype.clear = function () {
+        this.ydisp = 0;
+        this.ybase = 0;
+        this.y = 0;
+        this.x = 0;
+        this.scrollBottom = 0;
+        this.scrollTop = 0;
+        this.tabs = {};
+        this._lines = new CircularList_1.CircularList(this._terminal.scrollback);
+        this.scrollBottom = this._terminal.rows - 1;
+    };
+    Buffer.prototype.resize = function (newCols, newRows) {
+        if (this._lines.length === 0) {
+            return;
+        }
+        if (this._terminal.cols < newCols) {
+            var ch = [this._terminal.defAttr, ' ', 1];
+            for (var i = 0; i < this._lines.length; i++) {
+                if (this._lines.get(i) === undefined) {
+                    this._lines.set(i, this._terminal.blankLine(undefined, undefined, newCols));
+                }
+                while (this._lines.get(i).length < newCols) {
+                    this._lines.get(i).push(ch);
+                }
+            }
+        }
+        var addToY = 0;
+        if (this._terminal.rows < newRows) {
+            for (var y = this._terminal.rows; y < newRows; y++) {
+                if (this._lines.length < newRows + this.ybase) {
+                    if (this.ybase > 0 && this._lines.length <= this.ybase + this.y + addToY + 1) {
+                        this.ybase--;
+                        addToY++;
+                        if (this.ydisp > 0) {
+                            this.ydisp--;
+                        }
+                    }
+                    else {
+                        this._lines.push(this._terminal.blankLine(undefined, undefined, newCols));
+                    }
+                }
+            }
+        }
+        else {
+            for (var y = this._terminal.rows; y > newRows; y--) {
+                if (this._lines.length > newRows + this.ybase) {
+                    if (this._lines.length > this.ybase + this.y + 1) {
+                        this._lines.pop();
+                    }
+                    else {
+                        this.ybase++;
+                        this.ydisp++;
+                    }
+                }
+            }
+        }
+        if (this.y >= newRows) {
+            this.y = newRows - 1;
+        }
+        if (addToY) {
+            this.y += addToY;
+        }
+        if (this.x >= newCols) {
+            this.x = newCols - 1;
+        }
+        this.scrollTop = 0;
+        this.scrollBottom = newRows - 1;
+    };
+    return Buffer;
+}());
+exports.Buffer = Buffer;
+
+
+
+},{"./utils/CircularList":18}],2:[function(require,module,exports){
+"use strict";
+var __extends = (this && this.__extends) || (function () {
+    var extendStatics = Object.setPrototypeOf ||
+        ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
+        function (d, b) { for (var p in b) if (b.hasOwnProperty(p)) d[p] = b[p]; };
+    return function (d, b) {
+        extendStatics(d, b);
+        function __() { this.constructor = d; }
+        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+var Buffer_1 = require("./Buffer");
+var EventEmitter_1 = require("./EventEmitter");
+var BufferSet = (function (_super) {
+    __extends(BufferSet, _super);
+    function BufferSet(_terminal) {
+        var _this = _super.call(this) || this;
+        _this._terminal = _terminal;
+        _this._normal = new Buffer_1.Buffer(_this._terminal);
+        _this._normal.fillViewportRows();
+        _this._alt = new Buffer_1.Buffer(_this._terminal);
+        _this._activeBuffer = _this._normal;
+        return _this;
+    }
+    Object.defineProperty(BufferSet.prototype, "alt", {
+        get: function () {
+            return this._alt;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(BufferSet.prototype, "active", {
+        get: function () {
+            return this._activeBuffer;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(BufferSet.prototype, "normal", {
+        get: function () {
+            return this._normal;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    BufferSet.prototype.activateNormalBuffer = function () {
+        this._alt.clear();
+        this._activeBuffer = this._normal;
+        this.emit('activate', this._normal);
+    };
+    BufferSet.prototype.activateAltBuffer = function () {
+        this._alt.fillViewportRows();
+        this._activeBuffer = this._alt;
+        this.emit('activate', this._alt);
+    };
+    BufferSet.prototype.resize = function (newCols, newRows) {
+        this._normal.resize(newCols, newRows);
+        this._alt.resize(newCols, newRows);
+    };
+    return BufferSet;
+}(EventEmitter_1.EventEmitter));
+exports.BufferSet = BufferSet;
+
+
+
+},{"./Buffer":1,"./EventEmitter":6}],3:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CHARSETS = {};
+exports.DEFAULT_CHARSET = exports.CHARSETS['B'];
+exports.CHARSETS['0'] = {
+    '`': '\u25c6',
+    'a': '\u2592',
+    'b': '\u0009',
+    'c': '\u000c',
+    'd': '\u000d',
+    'e': '\u000a',
+    'f': '\u00b0',
+    'g': '\u00b1',
+    'h': '\u2424',
+    'i': '\u000b',
+    'j': '\u2518',
+    'k': '\u2510',
+    'l': '\u250c',
+    'm': '\u2514',
+    'n': '\u253c',
+    'o': '\u23ba',
+    'p': '\u23bb',
+    'q': '\u2500',
+    'r': '\u23bc',
+    's': '\u23bd',
+    't': '\u251c',
+    'u': '\u2524',
+    'v': '\u2534',
+    'w': '\u252c',
+    'x': '\u2502',
+    'y': '\u2264',
+    'z': '\u2265',
+    '{': '\u03c0',
+    '|': '\u2260',
+    '}': '\u00a3',
+    '~': '\u00b7'
+};
+exports.CHARSETS['A'] = {
+    '#': '£'
+};
+exports.CHARSETS['B'] = null;
+exports.CHARSETS['4'] = {
+    '#': '£',
+    '@': '¾',
+    '[': 'ij',
+    '\\': '½',
+    ']': '|',
+    '{': '¨',
+    '|': 'f',
+    '}': '¼',
+    '~': '´'
+};
+exports.CHARSETS['C'] =
+    exports.CHARSETS['5'] = {
+        '[': 'Ä',
+        '\\': 'Ö',
+        ']': 'Å',
+        '^': 'Ü',
+        '`': 'é',
+        '{': 'ä',
+        '|': 'ö',
+        '}': 'å',
+        '~': 'ü'
+    };
+exports.CHARSETS['R'] = {
+    '#': '£',
+    '@': 'à',
+    '[': '°',
+    '\\': 'ç',
+    ']': '§',
+    '{': 'é',
+    '|': 'ù',
+    '}': 'è',
+    '~': '¨'
+};
+exports.CHARSETS['Q'] = {
+    '@': 'à',
+    '[': 'â',
+    '\\': 'ç',
+    ']': 'ê',
+    '^': 'î',
+    '`': 'ô',
+    '{': 'é',
+    '|': 'ù',
+    '}': 'è',
+    '~': 'û'
+};
+exports.CHARSETS['K'] = {
+    '@': '§',
+    '[': 'Ä',
+    '\\': 'Ö',
+    ']': 'Ü',
+    '{': 'ä',
+    '|': 'ö',
+    '}': 'ü',
+    '~': 'ß'
+};
+exports.CHARSETS['Y'] = {
+    '#': '£',
+    '@': '§',
+    '[': '°',
+    '\\': 'ç',
+    ']': 'é',
+    '`': 'ù',
+    '{': 'à',
+    '|': 'ò',
+    '}': 'è',
+    '~': 'ì'
+};
+exports.CHARSETS['E'] =
+    exports.CHARSETS['6'] = {
+        '@': 'Ä',
+        '[': 'Æ',
+        '\\': 'Ø',
+        ']': 'Å',
+        '^': 'Ü',
+        '`': 'ä',
+        '{': 'æ',
+        '|': 'ø',
+        '}': 'å',
+        '~': 'ü'
+    };
+exports.CHARSETS['Z'] = {
+    '#': '£',
+    '@': '§',
+    '[': '¡',
+    '\\': 'Ñ',
+    ']': '¿',
+    '{': '°',
+    '|': 'ñ',
+    '}': 'ç'
+};
+exports.CHARSETS['H'] =
+    exports.CHARSETS['7'] = {
+        '@': 'É',
+        '[': 'Ä',
+        '\\': 'Ö',
+        ']': 'Å',
+        '^': 'Ü',
+        '`': 'é',
+        '{': 'ä',
+        '|': 'ö',
+        '}': 'å',
+        '~': 'ü'
+    };
+exports.CHARSETS['='] = {
+    '#': 'ù',
+    '@': 'à',
+    '[': 'é',
+    '\\': 'ç',
+    ']': 'ê',
+    '^': 'î',
+    '_': 'è',
+    '`': 'ô',
+    '{': 'ä',
+    '|': 'ö',
+    '}': 'ü',
+    '~': 'û'
+};
+
+
+
+},{}],4:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var CompositionHelper = (function () {
+    function CompositionHelper(textarea, compositionView, terminal) {
+        this.textarea = textarea;
+        this.compositionView = compositionView;
+        this.terminal = terminal;
+        this.isComposing = false;
+        this.isSendingComposition = false;
+        this.compositionPosition = { start: null, end: null };
+    }
+    CompositionHelper.prototype.compositionstart = function () {
+        this.isComposing = true;
+        this.compositionPosition.start = this.textarea.value.length;
+        this.compositionView.textContent = '';
+        this.compositionView.classList.add('active');
+    };
+    CompositionHelper.prototype.compositionupdate = function (ev) {
+        var _this = this;
+        this.compositionView.textContent = ev.data;
+        this.updateCompositionElements();
+        setTimeout(function () {
+            _this.compositionPosition.end = _this.textarea.value.length;
+        }, 0);
+    };
+    CompositionHelper.prototype.compositionend = function () {
+        this.finalizeComposition(true);
+    };
+    CompositionHelper.prototype.keydown = function (ev) {
+        if (this.isComposing || this.isSendingComposition) {
+            if (ev.keyCode === 229) {
+                return false;
+            }
+            else if (ev.keyCode === 16 || ev.keyCode === 17 || ev.keyCode === 18) {
+                return false;
+            }
+            else {
+                this.finalizeComposition(false);
+            }
+        }
+        if (ev.keyCode === 229) {
+            this.handleAnyTextareaChanges();
+            return false;
+        }
+        return true;
+    };
+    CompositionHelper.prototype.finalizeComposition = function (waitForPropogation) {
+        var _this = this;
+        this.compositionView.classList.remove('active');
+        this.isComposing = false;
+        this.clearTextareaPosition();
+        if (!waitForPropogation) {
+            this.isSendingComposition = false;
+            var input = this.textarea.value.substring(this.compositionPosition.start, this.compositionPosition.end);
+            this.terminal.handler(input);
+        }
+        else {
+            var currentCompositionPosition_1 = {
+                start: this.compositionPosition.start,
+                end: this.compositionPosition.end,
+            };
+            this.isSendingComposition = true;
+            setTimeout(function () {
+                if (_this.isSendingComposition) {
+                    _this.isSendingComposition = false;
+                    var input = void 0;
+                    if (_this.isComposing) {
+                        input = _this.textarea.value.substring(currentCompositionPosition_1.start, currentCompositionPosition_1.end);
+                    }
+                    else {
+                        input = _this.textarea.value.substring(currentCompositionPosition_1.start);
+                    }
+                    _this.terminal.handler(input);
+                }
+            }, 0);
+        }
+    };
+    CompositionHelper.prototype.handleAnyTextareaChanges = function () {
+        var _this = this;
+        var oldValue = this.textarea.value;
+        setTimeout(function () {
+            if (!_this.isComposing) {
+                var newValue = _this.textarea.value;
+                var diff = newValue.replace(oldValue, '');
+                if (diff.length > 0) {
+                    _this.terminal.handler(diff);
+                }
+            }
+        }, 0);
+    };
+    CompositionHelper.prototype.updateCompositionElements = function (dontRecurse) {
+        var _this = this;
+        if (!this.isComposing) {
+            return;
+        }
+        var cursor = this.terminal.element.querySelector('.terminal-cursor');
+        if (cursor) {
+            var xtermRows = this.terminal.element.querySelector('.xterm-rows');
+            var cursorTop = xtermRows.offsetTop + cursor.offsetTop;
+            this.compositionView.style.left = cursor.offsetLeft + 'px';
+            this.compositionView.style.top = cursorTop + 'px';
+            this.compositionView.style.height = cursor.offsetHeight + 'px';
+            this.compositionView.style.lineHeight = cursor.offsetHeight + 'px';
+            var compositionViewBounds = this.compositionView.getBoundingClientRect();
+            this.textarea.style.left = cursor.offsetLeft + 'px';
+            this.textarea.style.top = cursorTop + 'px';
+            this.textarea.style.width = compositionViewBounds.width + 'px';
+            this.textarea.style.height = compositionViewBounds.height + 'px';
+            this.textarea.style.lineHeight = compositionViewBounds.height + 'px';
+        }
+        if (!dontRecurse) {
+            setTimeout(function () { return _this.updateCompositionElements(true); }, 0);
+        }
+    };
+    ;
+    CompositionHelper.prototype.clearTextareaPosition = function () {
+        this.textarea.style.left = '';
+        this.textarea.style.top = '';
+    };
+    ;
+    return CompositionHelper;
+}());
+exports.CompositionHelper = CompositionHelper;
+
+
+
+},{}],5:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var C0;
+(function (C0) {
+    C0.NUL = '\x00';
+    C0.SOH = '\x01';
+    C0.STX = '\x02';
+    C0.ETX = '\x03';
+    C0.EOT = '\x04';
+    C0.ENQ = '\x05';
+    C0.ACK = '\x06';
+    C0.BEL = '\x07';
+    C0.BS = '\x08';
+    C0.HT = '\x09';
+    C0.LF = '\x0a';
+    C0.VT = '\x0b';
+    C0.FF = '\x0c';
+    C0.CR = '\x0d';
+    C0.SO = '\x0e';
+    C0.SI = '\x0f';
+    C0.DLE = '\x10';
+    C0.DC1 = '\x11';
+    C0.DC2 = '\x12';
+    C0.DC3 = '\x13';
+    C0.DC4 = '\x14';
+    C0.NAK = '\x15';
+    C0.SYN = '\x16';
+    C0.ETB = '\x17';
+    C0.CAN = '\x18';
+    C0.EM = '\x19';
+    C0.SUB = '\x1a';
+    C0.ESC = '\x1b';
+    C0.FS = '\x1c';
+    C0.GS = '\x1d';
+    C0.RS = '\x1e';
+    C0.US = '\x1f';
+    C0.SP = '\x20';
+    C0.DEL = '\x7f';
+})(C0 = exports.C0 || (exports.C0 = {}));
+;
+
+
+
+},{}],6:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+;
+var EventEmitter = (function () {
+    function EventEmitter() {
+        this._events = this._events || {};
+    }
+    EventEmitter.prototype.on = function (type, listener) {
+        this._events[type] = this._events[type] || [];
+        this._events[type].push(listener);
+    };
+    EventEmitter.prototype.off = function (type, listener) {
+        if (!this._events[type]) {
+            return;
+        }
+        var obj = this._events[type];
+        var i = obj.length;
+        while (i--) {
+            if (obj[i] === listener || obj[i].listener === listener) {
+                obj.splice(i, 1);
+                return;
+            }
+        }
+    };
+    EventEmitter.prototype.removeAllListeners = function (type) {
+        if (this._events[type]) {
+            delete this._events[type];
+        }
+    };
+    EventEmitter.prototype.once = function (type, listener) {
+        function on() {
+            var args = Array.prototype.slice.call(arguments);
+            this.off(type, on);
+            return listener.apply(this, args);
+        }
+        on.listener = listener;
+        return this.on(type, on);
+    };
+    EventEmitter.prototype.emit = function (type) {
+        var args = [];
+        for (var _i = 1; _i < arguments.length; _i++) {
+            args[_i - 1] = arguments[_i];
+        }
+        if (!this._events[type]) {
+            return;
+        }
+        var obj = this._events[type];
+        for (var i = 0; i < obj.length; i++) {
+            obj[i].apply(this, args);
+        }
+    };
+    EventEmitter.prototype.listeners = function (type) {
+        return this._events[type] || [];
+    };
+    return EventEmitter;
+}());
+exports.EventEmitter = EventEmitter;
+
+
+
+},{}],7:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var EscapeSequences_1 = require("./EscapeSequences");
+var Charsets_1 = require("./Charsets");
+var InputHandler = (function () {
+    function InputHandler(_terminal) {
+        this._terminal = _terminal;
+    }
+    InputHandler.prototype.addChar = function (char, code) {
+        if (char >= ' ') {
+            var ch_width = exports.wcwidth(code);
+            if (this._terminal.charset && this._terminal.charset[char]) {
+                char = this._terminal.charset[char];
+            }
+            var row = this._terminal.buffer.y + this._terminal.buffer.ybase;
+            if (!ch_width && this._terminal.buffer.x) {
+                if (this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 1]) {
+                    if (!this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 1][2]) {
+                        if (this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 2])
+                            this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 2][1] += char;
+                    }
+                    else {
+                        this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 1][1] += char;
+                    }
+                    this._terminal.updateRange(this._terminal.buffer.y);
+                }
+                return;
+            }
+            if (this._terminal.buffer.x + ch_width - 1 >= this._terminal.cols) {
+                if (this._terminal.wraparoundMode) {
+                    this._terminal.buffer.x = 0;
+                    this._terminal.buffer.y++;
+                    if (this._terminal.buffer.y > this._terminal.buffer.scrollBottom) {
+                        this._terminal.buffer.y--;
+                        this._terminal.scroll(true);
+                    }
+                    else {
+                        this._terminal.buffer.lines.get(this._terminal.buffer.y).isWrapped = true;
+                    }
+                }
+                else {
+                    if (ch_width === 2)
+                        return;
+                }
+            }
+            row = this._terminal.buffer.y + this._terminal.buffer.ybase;
+            if (this._terminal.insertMode) {
+                for (var moves = 0; moves < ch_width; ++moves) {
+                    var removed = this._terminal.buffer.lines.get(this._terminal.buffer.y + this._terminal.buffer.ybase).pop();
+                    if (removed[2] === 0
+                        && this._terminal.buffer.lines.get(row)[this._terminal.cols - 2]
+                        && this._terminal.buffer.lines.get(row)[this._terminal.cols - 2][2] === 2) {
+                        this._terminal.buffer.lines.get(row)[this._terminal.cols - 2] = [this._terminal.curAttr, ' ', 1];
+                    }
+                    this._terminal.buffer.lines.get(row).splice(this._terminal.buffer.x, 0, [this._terminal.curAttr, ' ', 1]);
+                }
+            }
+            this._terminal.buffer.lines.get(row)[this._terminal.buffer.x] = [this._terminal.curAttr, char, ch_width];
+            this._terminal.buffer.x++;
+            this._terminal.updateRange(this._terminal.buffer.y);
+            if (ch_width === 2) {
+                this._terminal.buffer.lines.get(row)[this._terminal.buffer.x] = [this._terminal.curAttr, '', 0];
+                this._terminal.buffer.x++;
+            }
+        }
+    };
+    InputHandler.prototype.bell = function () {
+        var _this = this;
+        if (!this._terminal.visualBell) {
+            return;
+        }
+        this._terminal.element.style.borderColor = 'white';
+        setTimeout(function () { return _this._terminal.element.style.borderColor = ''; }, 10);
+        if (this._terminal.popOnBell) {
+            this._terminal.focus();
+        }
+    };
+    InputHandler.prototype.lineFeed = function () {
+        if (this._terminal.convertEol) {
+            this._terminal.buffer.x = 0;
+        }
+        this._terminal.buffer.y++;
+        if (this._terminal.buffer.y > this._terminal.buffer.scrollBottom) {
+            this._terminal.buffer.y--;
+            this._terminal.scroll();
+        }
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x--;
+        }
+        this._terminal.emit('lineFeed');
+    };
+    InputHandler.prototype.carriageReturn = function () {
+        this._terminal.buffer.x = 0;
+    };
+    InputHandler.prototype.backspace = function () {
+        if (this._terminal.buffer.x > 0) {
+            this._terminal.buffer.x--;
+        }
+    };
+    InputHandler.prototype.tab = function () {
+        this._terminal.buffer.x = this._terminal.nextStop();
+    };
+    InputHandler.prototype.shiftOut = function () {
+        this._terminal.setgLevel(1);
+    };
+    InputHandler.prototype.shiftIn = function () {
+        this._terminal.setgLevel(0);
+    };
+    InputHandler.prototype.insertChars = function (params) {
+        var param, row, j, ch;
+        param = params[0];
+        if (param < 1)
+            param = 1;
+        row = this._terminal.buffer.y + this._terminal.buffer.ybase;
+        j = this._terminal.buffer.x;
+        ch = [this._terminal.eraseAttr(), ' ', 1];
+        while (param-- && j < this._terminal.cols) {
+            this._terminal.buffer.lines.get(row).splice(j++, 0, ch);
+            this._terminal.buffer.lines.get(row).pop();
+        }
+    };
+    InputHandler.prototype.cursorUp = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.y -= param;
+        if (this._terminal.buffer.y < 0) {
+            this._terminal.buffer.y = 0;
+        }
+    };
+    InputHandler.prototype.cursorDown = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.y += param;
+        if (this._terminal.buffer.y >= this._terminal.rows) {
+            this._terminal.buffer.y = this._terminal.rows - 1;
+        }
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x--;
+        }
+    };
+    InputHandler.prototype.cursorForward = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.x += param;
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x = this._terminal.cols - 1;
+        }
+    };
+    InputHandler.prototype.cursorBackward = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x--;
+        }
+        this._terminal.buffer.x -= param;
+        if (this._terminal.buffer.x < 0) {
+            this._terminal.buffer.x = 0;
+        }
+    };
+    InputHandler.prototype.cursorNextLine = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.y += param;
+        if (this._terminal.buffer.y >= this._terminal.rows) {
+            this._terminal.buffer.y = this._terminal.rows - 1;
+        }
+        this._terminal.buffer.x = 0;
+    };
+    InputHandler.prototype.cursorPrecedingLine = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.y -= param;
+        if (this._terminal.buffer.y < 0) {
+            this._terminal.buffer.y = 0;
+        }
+        this._terminal.buffer.x = 0;
+    };
+    InputHandler.prototype.cursorCharAbsolute = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.x = param - 1;
+    };
+    InputHandler.prototype.cursorPosition = function (params) {
+        var row, col;
+        row = params[0] - 1;
+        if (params.length >= 2) {
+            col = params[1] - 1;
+        }
+        else {
+            col = 0;
+        }
+        if (row < 0) {
+            row = 0;
+        }
+        else if (row >= this._terminal.rows) {
+            row = this._terminal.rows - 1;
+        }
+        if (col < 0) {
+            col = 0;
+        }
+        else if (col >= this._terminal.cols) {
+            col = this._terminal.cols - 1;
+        }
+        this._terminal.buffer.x = col;
+        this._terminal.buffer.y = row;
+    };
+    InputHandler.prototype.cursorForwardTab = function (params) {
+        var param = params[0] || 1;
+        while (param--) {
+            this._terminal.buffer.x = this._terminal.nextStop();
+        }
+    };
+    InputHandler.prototype.eraseInDisplay = function (params) {
+        var j;
+        switch (params[0]) {
+            case 0:
+                this._terminal.eraseRight(this._terminal.buffer.x, this._terminal.buffer.y);
+                j = this._terminal.buffer.y + 1;
+                for (; j < this._terminal.rows; j++) {
+                    this._terminal.eraseLine(j);
+                }
+                break;
+            case 1:
+                this._terminal.eraseLeft(this._terminal.buffer.x, this._terminal.buffer.y);
+                j = this._terminal.buffer.y;
+                while (j--) {
+                    this._terminal.eraseLine(j);
+                }
+                break;
+            case 2:
+                j = this._terminal.rows;
+                while (j--)
+                    this._terminal.eraseLine(j);
+                break;
+            case 3:
+                var scrollBackSize = this._terminal.buffer.lines.length - this._terminal.rows;
+                if (scrollBackSize > 0) {
+                    this._terminal.buffer.lines.trimStart(scrollBackSize);
+                    this._terminal.buffer.ybase = Math.max(this._terminal.buffer.ybase - scrollBackSize, 0);
+                    this._terminal.buffer.ydisp = Math.max(this._terminal.buffer.ydisp - scrollBackSize, 0);
+                    this._terminal.emit('scroll', 0);
+                }
+                break;
+        }
+    };
+    InputHandler.prototype.eraseInLine = function (params) {
+        switch (params[0]) {
+            case 0:
+                this._terminal.eraseRight(this._terminal.buffer.x, this._terminal.buffer.y);
+                break;
+            case 1:
+                this._terminal.eraseLeft(this._terminal.buffer.x, this._terminal.buffer.y);
+                break;
+            case 2:
+                this._terminal.eraseLine(this._terminal.buffer.y);
+                break;
+        }
+    };
+    InputHandler.prototype.insertLines = function (params) {
+        var param, row, j;
+        param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        row = this._terminal.buffer.y + this._terminal.buffer.ybase;
+        j = this._terminal.rows - 1 - this._terminal.buffer.scrollBottom;
+        j = this._terminal.rows - 1 + this._terminal.buffer.ybase - j + 1;
+        while (param--) {
+            if (this._terminal.buffer.lines.length === this._terminal.buffer.lines.maxLength) {
+                this._terminal.buffer.lines.trimStart(1);
+                this._terminal.buffer.ybase--;
+                this._terminal.buffer.ydisp--;
+                row--;
+                j--;
+            }
+            this._terminal.buffer.lines.splice(row, 0, this._terminal.blankLine(true));
+            this._terminal.buffer.lines.splice(j, 1);
+        }
+        this._terminal.updateRange(this._terminal.buffer.y);
+        this._terminal.updateRange(this._terminal.buffer.scrollBottom);
+    };
+    InputHandler.prototype.deleteLines = function (params) {
+        var param, row, j;
+        param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        row = this._terminal.buffer.y + this._terminal.buffer.ybase;
+        j = this._terminal.rows - 1 - this._terminal.buffer.scrollBottom;
+        j = this._terminal.rows - 1 + this._terminal.buffer.ybase - j;
+        while (param--) {
+            if (this._terminal.buffer.lines.length === this._terminal.buffer.lines.maxLength) {
+                this._terminal.buffer.lines.trimStart(1);
+                this._terminal.buffer.ybase -= 1;
+                this._terminal.buffer.ydisp -= 1;
+            }
+            this._terminal.buffer.lines.splice(j + 1, 0, this._terminal.blankLine(true));
+            this._terminal.buffer.lines.splice(row, 1);
+        }
+        this._terminal.updateRange(this._terminal.buffer.y);
+        this._terminal.updateRange(this._terminal.buffer.scrollBottom);
+    };
+    InputHandler.prototype.deleteChars = function (params) {
+        var param, row, ch;
+        param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        row = this._terminal.buffer.y + this._terminal.buffer.ybase;
+        ch = [this._terminal.eraseAttr(), ' ', 1];
+        while (param--) {
+            this._terminal.buffer.lines.get(row).splice(this._terminal.buffer.x, 1);
+            this._terminal.buffer.lines.get(row).push(ch);
+        }
+    };
+    InputHandler.prototype.scrollUp = function (params) {
+        var param = params[0] || 1;
+        while (param--) {
+            this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollTop, 1);
+            this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollBottom, 0, this._terminal.blankLine());
+        }
+        this._terminal.updateRange(this._terminal.buffer.scrollTop);
+        this._terminal.updateRange(this._terminal.buffer.scrollBottom);
+    };
+    InputHandler.prototype.scrollDown = function (params) {
+        var param = params[0] || 1;
+        while (param--) {
+            this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollBottom, 1);
+            this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollTop, 0, this._terminal.blankLine());
+        }
+        this._terminal.updateRange(this._terminal.buffer.scrollTop);
+        this._terminal.updateRange(this._terminal.buffer.scrollBottom);
+    };
+    InputHandler.prototype.eraseChars = function (params) {
+        var param, row, j, ch;
+        param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        row = this._terminal.buffer.y + this._terminal.buffer.ybase;
+        j = this._terminal.buffer.x;
+        ch = [this._terminal.eraseAttr(), ' ', 1];
+        while (param-- && j < this._terminal.cols) {
+            this._terminal.buffer.lines.get(row)[j++] = ch;
+        }
+    };
+    InputHandler.prototype.cursorBackwardTab = function (params) {
+        var param = params[0] || 1;
+        while (param--) {
+            this._terminal.buffer.x = this._terminal.prevStop();
+        }
+    };
+    InputHandler.prototype.charPosAbsolute = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.x = param - 1;
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x = this._terminal.cols - 1;
+        }
+    };
+    InputHandler.prototype.HPositionRelative = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.x += param;
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x = this._terminal.cols - 1;
+        }
+    };
+    InputHandler.prototype.repeatPrecedingCharacter = function (params) {
+        var param = params[0] || 1, line = this._terminal.buffer.lines.get(this._terminal.buffer.ybase + this._terminal.buffer.y), ch = line[this._terminal.buffer.x - 1] || [this._terminal.defAttr, ' ', 1];
+        while (param--) {
+            line[this._terminal.buffer.x++] = ch;
+        }
+    };
+    InputHandler.prototype.sendDeviceAttributes = function (params) {
+        if (params[0] > 0) {
+            return;
+        }
+        if (!this._terminal.prefix) {
+            if (this._terminal.is('xterm') || this._terminal.is('rxvt-unicode') || this._terminal.is('screen')) {
+                this._terminal.send(EscapeSequences_1.C0.ESC + '[?1;2c');
+            }
+            else if (this._terminal.is('linux')) {
+                this._terminal.send(EscapeSequences_1.C0.ESC + '[?6c');
+            }
+        }
+        else if (this._terminal.prefix === '>') {
+            if (this._terminal.is('xterm')) {
+                this._terminal.send(EscapeSequences_1.C0.ESC + '[>0;276;0c');
+            }
+            else if (this._terminal.is('rxvt-unicode')) {
+                this._terminal.send(EscapeSequences_1.C0.ESC + '[>85;95;0c');
+            }
+            else if (this._terminal.is('linux')) {
+                this._terminal.send(params[0] + 'c');
+            }
+            else if (this._terminal.is('screen')) {
+                this._terminal.send(EscapeSequences_1.C0.ESC + '[>83;40003;0c');
+            }
+        }
+    };
+    InputHandler.prototype.linePosAbsolute = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.y = param - 1;
+        if (this._terminal.buffer.y >= this._terminal.rows) {
+            this._terminal.buffer.y = this._terminal.rows - 1;
+        }
+    };
+    InputHandler.prototype.VPositionRelative = function (params) {
+        var param = params[0];
+        if (param < 1) {
+            param = 1;
+        }
+        this._terminal.buffer.y += param;
+        if (this._terminal.buffer.y >= this._terminal.rows) {
+            this._terminal.buffer.y = this._terminal.rows - 1;
+        }
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x--;
+        }
+    };
+    InputHandler.prototype.HVPosition = function (params) {
+        if (params[0] < 1)
+            params[0] = 1;
+        if (params[1] < 1)
+            params[1] = 1;
+        this._terminal.buffer.y = params[0] - 1;
+        if (this._terminal.buffer.y >= this._terminal.rows) {
+            this._terminal.buffer.y = this._terminal.rows - 1;
+        }
+        this._terminal.buffer.x = params[1] - 1;
+        if (this._terminal.buffer.x >= this._terminal.cols) {
+            this._terminal.buffer.x = this._terminal.cols - 1;
+        }
+    };
+    InputHandler.prototype.tabClear = function (params) {
+        var param = params[0];
+        if (param <= 0) {
+            delete this._terminal.buffer.tabs[this._terminal.buffer.x];
+        }
+        else if (param === 3) {
+            this._terminal.buffer.tabs = {};
+        }
+    };
+    InputHandler.prototype.setMode = function (params) {
+        if (params.length > 1) {
+            for (var i = 0; i < params.length; i++) {
+                this.setMode([params[i]]);
+            }
+            return;
+        }
+        if (!this._terminal.prefix) {
+            switch (params[0]) {
+                case 4:
+                    this._terminal.insertMode = true;
+                    break;
+                case 20:
+                    break;
+            }
+        }
+        else if (this._terminal.prefix === '?') {
+            switch (params[0]) {
+                case 1:
+                    this._terminal.applicationCursor = true;
+                    break;
+                case 2:
+                    this._terminal.setgCharset(0, Charsets_1.DEFAULT_CHARSET);
+                    this._terminal.setgCharset(1, Charsets_1.DEFAULT_CHARSET);
+                    this._terminal.setgCharset(2, Charsets_1.DEFAULT_CHARSET);
+                    this._terminal.setgCharset(3, Charsets_1.DEFAULT_CHARSET);
+                    break;
+                case 3:
+                    this._terminal.savedCols = this._terminal.cols;
+                    this._terminal.resize(132, this._terminal.rows);
+                    break;
+                case 6:
+                    this._terminal.originMode = true;
+                    break;
+                case 7:
+                    this._terminal.wraparoundMode = true;
+                    break;
+                case 12:
+                    break;
+                case 66:
+                    this._terminal.log('Serial port requested application keypad.');
+                    this._terminal.applicationKeypad = true;
+                    this._terminal.viewport.syncScrollArea();
+                    break;
+                case 9:
+                case 1000:
+                case 1002:
+                case 1003:
+                    this._terminal.x10Mouse = params[0] === 9;
+                    this._terminal.vt200Mouse = params[0] === 1000;
+                    this._terminal.normalMouse = params[0] > 1000;
+                    this._terminal.mouseEvents = true;
+                    this._terminal.element.classList.add('enable-mouse-events');
+                    this._terminal.selectionManager.disable();
+                    this._terminal.log('Binding to mouse events.');
+                    break;
+                case 1004:
+                    this._terminal.sendFocus = true;
+                    break;
+                case 1005:
+                    this._terminal.utfMouse = true;
+                    break;
+                case 1006:
+                    this._terminal.sgrMouse = true;
+                    break;
+                case 1015:
+                    this._terminal.urxvtMouse = true;
+                    break;
+                case 25:
+                    this._terminal.cursorHidden = false;
+                    break;
+                case 1049:
+                case 47:
+                case 1047:
+                    this._terminal.buffers.activateAltBuffer();
+                    this._terminal.viewport.syncScrollArea();
+                    this._terminal.showCursor();
+                    break;
+            }
+        }
+    };
+    InputHandler.prototype.resetMode = function (params) {
+        if (params.length > 1) {
+            for (var i = 0; i < params.length; i++) {
+                this.resetMode([params[i]]);
+            }
+            return;
+        }
+        if (!this._terminal.prefix) {
+            switch (params[0]) {
+                case 4:
+                    this._terminal.insertMode = false;
+                    break;
+                case 20:
+                    break;
+            }
+        }
+        else if (this._terminal.prefix === '?') {
+            switch (params[0]) {
+                case 1:
+                    this._terminal.applicationCursor = false;
+                    break;
+                case 3:
+                    if (this._terminal.cols === 132 && this._terminal.savedCols) {
+                        this._terminal.resize(this._terminal.savedCols, this._terminal.rows);
+                    }
+                    delete this._terminal.savedCols;
+                    break;
+                case 6:
+                    this._terminal.originMode = false;
+                    break;
+                case 7:
+                    this._terminal.wraparoundMode = false;
+                    break;
+                case 12:
+                    break;
+                case 66:
+                    this._terminal.log('Switching back to normal keypad.');
+                    this._terminal.applicationKeypad = false;
+                    this._terminal.viewport.syncScrollArea();
+                    break;
+                case 9:
+                case 1000:
+                case 1002:
+                case 1003:
+                    this._terminal.x10Mouse = false;
+                    this._terminal.vt200Mouse = false;
+                    this._terminal.normalMouse = false;
+                    this._terminal.mouseEvents = false;
+                    this._terminal.element.classList.remove('enable-mouse-events');
+                    this._terminal.selectionManager.enable();
+                    break;
+                case 1004:
+                    this._terminal.sendFocus = false;
+                    break;
+                case 1005:
+                    this._terminal.utfMouse = false;
+                    break;
+                case 1006:
+                    this._terminal.sgrMouse = false;
+                    break;
+                case 1015:
+                    this._terminal.urxvtMouse = false;
+                    break;
+                case 25:
+                    this._terminal.cursorHidden = true;
+                    break;
+                case 1049:
+                case 47:
+                case 1047:
+                    this._terminal.buffers.activateNormalBuffer();
+                    this._terminal.selectionManager.setBuffer(this._terminal.buffer.lines);
+                    this._terminal.refresh(0, this._terminal.rows - 1);
+                    this._terminal.viewport.syncScrollArea();
+                    this._terminal.showCursor();
+                    break;
+            }
+        }
+    };
+    InputHandler.prototype.charAttributes = function (params) {
+        if (params.length === 1 && params[0] === 0) {
+            this._terminal.curAttr = this._terminal.defAttr;
+            return;
+        }
+        var l = params.length, i = 0, flags = this._terminal.curAttr >> 18, fg = (this._terminal.curAttr >> 9) & 0x1ff, bg = this._terminal.curAttr & 0x1ff, p;
+        for (; i < l; i++) {
+            p = params[i];
+            if (p >= 30 && p <= 37) {
+                fg = p - 30;
+            }
+            else if (p >= 40 && p <= 47) {
+                bg = p - 40;
+            }
+            else if (p >= 90 && p <= 97) {
+                p += 8;
+                fg = p - 90;
+            }
+            else if (p >= 100 && p <= 107) {
+                p += 8;
+                bg = p - 100;
+            }
+            else if (p === 0) {
+                flags = this._terminal.defAttr >> 18;
+                fg = (this._terminal.defAttr >> 9) & 0x1ff;
+                bg = this._terminal.defAttr & 0x1ff;
+            }
+            else if (p === 1) {
+                flags |= 1;
+            }
+            else if (p === 4) {
+                flags |= 2;
+            }
+            else if (p === 5) {
+                flags |= 4;
+            }
+            else if (p === 7) {
+                flags |= 8;
+            }
+            else if (p === 8) {
+                flags |= 16;
+            }
+            else if (p === 22) {
+                flags &= ~1;
+            }
+            else if (p === 24) {
+                flags &= ~2;
+            }
+            else if (p === 25) {
+                flags &= ~4;
+            }
+            else if (p === 27) {
+                flags &= ~8;
+            }
+            else if (p === 28) {
+                flags &= ~16;
+            }
+            else if (p === 39) {
+                fg = (this._terminal.defAttr >> 9) & 0x1ff;
+            }
+            else if (p === 49) {
+                bg = this._terminal.defAttr & 0x1ff;
+            }
+            else if (p === 38) {
+                if (params[i + 1] === 2) {
+                    i += 2;
+                    fg = this._terminal.matchColor(params[i] & 0xff, params[i + 1] & 0xff, params[i + 2] & 0xff);
+                    if (fg === -1)
+                        fg = 0x1ff;
+                    i += 2;
+                }
+                else if (params[i + 1] === 5) {
+                    i += 2;
+                    p = params[i] & 0xff;
+                    fg = p;
+                }
+            }
+            else if (p === 48) {
+                if (params[i + 1] === 2) {
+                    i += 2;
+                    bg = this._terminal.matchColor(params[i] & 0xff, params[i + 1] & 0xff, params[i + 2] & 0xff);
+                    if (bg === -1)
+                        bg = 0x1ff;
+                    i += 2;
+                }
+                else if (params[i + 1] === 5) {
+                    i += 2;
+                    p = params[i] & 0xff;
+                    bg = p;
+                }
+            }
+            else if (p === 100) {
+                fg = (this._terminal.defAttr >> 9) & 0x1ff;
+                bg = this._terminal.defAttr & 0x1ff;
+            }
+            else {
+                this._terminal.error('Unknown SGR attribute: %d.', p);
+            }
+        }
+        this._terminal.curAttr = (flags << 18) | (fg << 9) | bg;
+    };
+    InputHandler.prototype.deviceStatus = function (params) {
+        if (!this._terminal.prefix) {
+            switch (params[0]) {
+                case 5:
+                    this._terminal.send(EscapeSequences_1.C0.ESC + '[0n');
+                    break;
+                case 6:
+                    this._terminal.send(EscapeSequences_1.C0.ESC + '['
+                        + (this._terminal.buffer.y + 1)
+                        + ';'
+                        + (this._terminal.buffer.x + 1)
+                        + 'R');
+                    break;
+            }
+        }
+        else if (this._terminal.prefix === '?') {
+            switch (params[0]) {
+                case 6:
+                    this._terminal.send(EscapeSequences_1.C0.ESC + '[?'
+                        + (this._terminal.buffer.y + 1)
+                        + ';'
+                        + (this._terminal.buffer.x + 1)
+                        + 'R');
+                    break;
+                case 15:
+                    break;
+                case 25:
+                    break;
+                case 26:
+                    break;
+                case 53:
+                    break;
+            }
+        }
+    };
+    InputHandler.prototype.softReset = function (params) {
+        this._terminal.cursorHidden = false;
+        this._terminal.insertMode = false;
+        this._terminal.originMode = false;
+        this._terminal.wraparoundMode = true;
+        this._terminal.applicationKeypad = false;
+        this._terminal.viewport.syncScrollArea();
+        this._terminal.applicationCursor = false;
+        this._terminal.buffer.scrollTop = 0;
+        this._terminal.buffer.scrollBottom = this._terminal.rows - 1;
+        this._terminal.curAttr = this._terminal.defAttr;
+        this._terminal.buffer.x = this._terminal.buffer.y = 0;
+        this._terminal.charset = null;
+        this._terminal.glevel = 0;
+        this._terminal.charsets = [null];
+    };
+    InputHandler.prototype.setCursorStyle = function (params) {
+        var param = params[0] < 1 ? 1 : params[0];
+        switch (param) {
+            case 1:
+            case 2:
+                this._terminal.setOption('cursorStyle', 'block');
+                break;
+            case 3:
+            case 4:
+                this._terminal.setOption('cursorStyle', 'underline');
+                break;
+            case 5:
+            case 6:
+                this._terminal.setOption('cursorStyle', 'bar');
+                break;
+        }
+        var isBlinking = param % 2 === 1;
+        this._terminal.setOption('cursorBlink', isBlinking);
+    };
+    InputHandler.prototype.setScrollRegion = function (params) {
+        if (this._terminal.prefix)
+            return;
+        this._terminal.buffer.scrollTop = (params[0] || 1) - 1;
+        this._terminal.buffer.scrollBottom = (params[1] && params[1] <= this._terminal.rows ? params[1] : this._terminal.rows) - 1;
+        this._terminal.buffer.x = 0;
+        this._terminal.buffer.y = 0;
+    };
+    InputHandler.prototype.saveCursor = function (params) {
+        this._terminal.buffer.savedX = this._terminal.buffer.x;
+        this._terminal.buffer.savedY = this._terminal.buffer.y;
+    };
+    InputHandler.prototype.restoreCursor = function (params) {
+        this._terminal.buffer.x = this._terminal.buffer.savedX || 0;
+        this._terminal.buffer.y = this._terminal.buffer.savedY || 0;
+    };
+    return InputHandler;
+}());
+exports.InputHandler = InputHandler;
+exports.wcwidth = (function (opts) {
+    var COMBINING_BMP = [
+        [0x0300, 0x036F], [0x0483, 0x0486], [0x0488, 0x0489],
+        [0x0591, 0x05BD], [0x05BF, 0x05BF], [0x05C1, 0x05C2],
+        [0x05C4, 0x05C5], [0x05C7, 0x05C7], [0x0600, 0x0603],
+        [0x0610, 0x0615], [0x064B, 0x065E], [0x0670, 0x0670],
+        [0x06D6, 0x06E4], [0x06E7, 0x06E8], [0x06EA, 0x06ED],
+        [0x070F, 0x070F], [0x0711, 0x0711], [0x0730, 0x074A],
+        [0x07A6, 0x07B0], [0x07EB, 0x07F3], [0x0901, 0x0902],
+        [0x093C, 0x093C], [0x0941, 0x0948], [0x094D, 0x094D],
+        [0x0951, 0x0954], [0x0962, 0x0963], [0x0981, 0x0981],
+        [0x09BC, 0x09BC], [0x09C1, 0x09C4], [0x09CD, 0x09CD],
+        [0x09E2, 0x09E3], [0x0A01, 0x0A02], [0x0A3C, 0x0A3C],
+        [0x0A41, 0x0A42], [0x0A47, 0x0A48], [0x0A4B, 0x0A4D],
+        [0x0A70, 0x0A71], [0x0A81, 0x0A82], [0x0ABC, 0x0ABC],
+        [0x0AC1, 0x0AC5], [0x0AC7, 0x0AC8], [0x0ACD, 0x0ACD],
+        [0x0AE2, 0x0AE3], [0x0B01, 0x0B01], [0x0B3C, 0x0B3C],
+        [0x0B3F, 0x0B3F], [0x0B41, 0x0B43], [0x0B4D, 0x0B4D],
+        [0x0B56, 0x0B56], [0x0B82, 0x0B82], [0x0BC0, 0x0BC0],
+        [0x0BCD, 0x0BCD], [0x0C3E, 0x0C40], [0x0C46, 0x0C48],
+        [0x0C4A, 0x0C4D], [0x0C55, 0x0C56], [0x0CBC, 0x0CBC],
+        [0x0CBF, 0x0CBF], [0x0CC6, 0x0CC6], [0x0CCC, 0x0CCD],
+        [0x0CE2, 0x0CE3], [0x0D41, 0x0D43], [0x0D4D, 0x0D4D],
+        [0x0DCA, 0x0DCA], [0x0DD2, 0x0DD4], [0x0DD6, 0x0DD6],
+        [0x0E31, 0x0E31], [0x0E34, 0x0E3A], [0x0E47, 0x0E4E],
+        [0x0EB1, 0x0EB1], [0x0EB4, 0x0EB9], [0x0EBB, 0x0EBC],
+        [0x0EC8, 0x0ECD], [0x0F18, 0x0F19], [0x0F35, 0x0F35],
+        [0x0F37, 0x0F37], [0x0F39, 0x0F39], [0x0F71, 0x0F7E],
+        [0x0F80, 0x0F84], [0x0F86, 0x0F87], [0x0F90, 0x0F97],
+        [0x0F99, 0x0FBC], [0x0FC6, 0x0FC6], [0x102D, 0x1030],
+        [0x1032, 0x1032], [0x1036, 0x1037], [0x1039, 0x1039],
+        [0x1058, 0x1059], [0x1160, 0x11FF], [0x135F, 0x135F],
+        [0x1712, 0x1714], [0x1732, 0x1734], [0x1752, 0x1753],
+        [0x1772, 0x1773], [0x17B4, 0x17B5], [0x17B7, 0x17BD],
+        [0x17C6, 0x17C6], [0x17C9, 0x17D3], [0x17DD, 0x17DD],
+        [0x180B, 0x180D], [0x18A9, 0x18A9], [0x1920, 0x1922],
+        [0x1927, 0x1928], [0x1932, 0x1932], [0x1939, 0x193B],
+        [0x1A17, 0x1A18], [0x1B00, 0x1B03], [0x1B34, 0x1B34],
+        [0x1B36, 0x1B3A], [0x1B3C, 0x1B3C], [0x1B42, 0x1B42],
+        [0x1B6B, 0x1B73], [0x1DC0, 0x1DCA], [0x1DFE, 0x1DFF],
+        [0x200B, 0x200F], [0x202A, 0x202E], [0x2060, 0x2063],
+        [0x206A, 0x206F], [0x20D0, 0x20EF], [0x302A, 0x302F],
+        [0x3099, 0x309A], [0xA806, 0xA806], [0xA80B, 0xA80B],
+        [0xA825, 0xA826], [0xFB1E, 0xFB1E], [0xFE00, 0xFE0F],
+        [0xFE20, 0xFE23], [0xFEFF, 0xFEFF], [0xFFF9, 0xFFFB],
+    ];
+    var COMBINING_HIGH = [
+        [0x10A01, 0x10A03], [0x10A05, 0x10A06], [0x10A0C, 0x10A0F],
+        [0x10A38, 0x10A3A], [0x10A3F, 0x10A3F], [0x1D167, 0x1D169],
+        [0x1D173, 0x1D182], [0x1D185, 0x1D18B], [0x1D1AA, 0x1D1AD],
+        [0x1D242, 0x1D244], [0xE0001, 0xE0001], [0xE0020, 0xE007F],
+        [0xE0100, 0xE01EF]
+    ];
+    function bisearch(ucs, data) {
+        var min = 0;
+        var max = data.length - 1;
+        var mid;
+        if (ucs < data[0][0] || ucs > data[max][1])
+            return false;
+        while (max >= min) {
+            mid = (min + max) >> 1;
+            if (ucs > data[mid][1])
+                min = mid + 1;
+            else if (ucs < data[mid][0])
+                max = mid - 1;
+            else
+                return true;
+        }
+        return false;
+    }
+    function wcwidthBMP(ucs) {
+        if (ucs === 0)
+            return opts.nul;
+        if (ucs < 32 || (ucs >= 0x7f && ucs < 0xa0))
+            return opts.control;
+        if (bisearch(ucs, COMBINING_BMP))
+            return 0;
+        if (isWideBMP(ucs)) {
+            return 2;
+        }
+        return 1;
+    }
+    function isWideBMP(ucs) {
+        return (ucs >= 0x1100 && (ucs <= 0x115f ||
+            ucs === 0x2329 ||
+            ucs === 0x232a ||
+            (ucs >= 0x2e80 && ucs <= 0xa4cf && ucs !== 0x303f) ||
+            (ucs >= 0xac00 && ucs <= 0xd7a3) ||
+            (ucs >= 0xf900 && ucs <= 0xfaff) ||
+            (ucs >= 0xfe10 && ucs <= 0xfe19) ||
+            (ucs >= 0xfe30 && ucs <= 0xfe6f) ||
+            (ucs >= 0xff00 && ucs <= 0xff60) ||
+            (ucs >= 0xffe0 && ucs <= 0xffe6)));
+    }
+    function wcwidthHigh(ucs) {
+        if (bisearch(ucs, COMBINING_HIGH))
+            return 0;
+        if ((ucs >= 0x20000 && ucs <= 0x2fffd) || (ucs >= 0x30000 && ucs <= 0x3fffd)) {
+            return 2;
+        }
+        return 1;
+    }
+    var control = opts.control | 0;
+    var table = null;
+    function init_table() {
+        var CODEPOINTS = 65536;
+        var BITWIDTH = 2;
+        var ITEMSIZE = 32;
+        var CONTAINERSIZE = CODEPOINTS * BITWIDTH / ITEMSIZE;
+        var CODEPOINTS_PER_ITEM = ITEMSIZE / BITWIDTH;
+        table = (typeof Uint32Array === 'undefined')
+            ? new Array(CONTAINERSIZE)
+            : new Uint32Array(CONTAINERSIZE);
+        for (var i = 0; i < CONTAINERSIZE; ++i) {
+            var num = 0;
+            var pos = CODEPOINTS_PER_ITEM;
+            while (pos--)
+                num = (num << 2) | wcwidthBMP(CODEPOINTS_PER_ITEM * i + pos);
+            table[i] = num;
+        }
+        return table;
+    }
+    return function (num) {
+        num = num | 0;
+        if (num < 32)
+            return control | 0;
+        if (num < 127)
+            return 1;
+        var t = table || init_table();
+        if (num < 65536)
+            return t[num >> 4] >> ((num & 15) << 1) & 3;
+        return wcwidthHigh(num);
+    };
+})({ nul: 0, control: 0 });
+
+
+
+},{"./Charsets":3,"./EscapeSequences":5}],8:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var INVALID_LINK_CLASS = 'xterm-invalid-link';
+var protocolClause = '(https?:\\/\\/)';
+var domainCharacterSet = '[\\da-z\\.-]+';
+var negatedDomainCharacterSet = '[^\\da-z\\.-]+';
+var domainBodyClause = '(' + domainCharacterSet + ')';
+var tldClause = '([a-z\\.]{2,6})';
+var ipClause = '((\\d{1,3}\\.){3}\\d{1,3})';
+var localHostClause = '(localhost)';
+var portClause = '(:\\d{1,5})';
+var hostClause = '((' + domainBodyClause + '\\.' + tldClause + ')|' + ipClause + '|' + localHostClause + ')' + portClause + '?';
+var pathClause = '(\\/[\\/\\w\\.\\-%~]*)*';
+var queryStringHashFragmentCharacterSet = '[0-9\\w\\[\\]\\(\\)\\/\\?\\!#@$%&\'*+,:;~\\=\\.\\-]*';
+var queryStringClause = '(\\?' + queryStringHashFragmentCharacterSet + ')?';
+var hashFragmentClause = '(#' + queryStringHashFragmentCharacterSet + ')?';
+var negatedPathCharacterSet = '[^\\/\\w\\.\\-%]+';
+var bodyClause = hostClause + pathClause + queryStringClause + hashFragmentClause;
+var start = '(?:^|' + negatedDomainCharacterSet + ')(';
+var end = ')($|' + negatedPathCharacterSet + ')';
+var strictUrlRegex = new RegExp(start + protocolClause + bodyClause + end);
+var HYPERTEXT_LINK_MATCHER_ID = 0;
+var Linkifier = (function () {
+    function Linkifier() {
+        this._nextLinkMatcherId = HYPERTEXT_LINK_MATCHER_ID;
+        this._rowTimeoutIds = [];
+        this._linkMatchers = [];
+        this.registerLinkMatcher(strictUrlRegex, null, { matchIndex: 1 });
+    }
+    Linkifier.prototype.attachToDom = function (document, rows) {
+        this._document = document;
+        this._rows = rows;
+    };
+    Linkifier.prototype.linkifyRow = function (rowIndex) {
+        if (!this._document) {
+            return;
+        }
+        var timeoutId = this._rowTimeoutIds[rowIndex];
+        if (timeoutId) {
+            clearTimeout(timeoutId);
+        }
+        this._rowTimeoutIds[rowIndex] = setTimeout(this._linkifyRow.bind(this, rowIndex), Linkifier.TIME_BEFORE_LINKIFY);
+    };
+    Linkifier.prototype.setHypertextLinkHandler = function (handler) {
+        this._linkMatchers[HYPERTEXT_LINK_MATCHER_ID].handler = handler;
+    };
+    Linkifier.prototype.setHypertextValidationCallback = function (callback) {
+        this._linkMatchers[HYPERTEXT_LINK_MATCHER_ID].validationCallback = callback;
+    };
+    Linkifier.prototype.registerLinkMatcher = function (regex, handler, options) {
+        if (options === void 0) { options = {}; }
+        if (this._nextLinkMatcherId !== HYPERTEXT_LINK_MATCHER_ID && !handler) {
+            throw new Error('handler must be defined');
+        }
+        var matcher = {
+            id: this._nextLinkMatcherId++,
+            regex: regex,
+            handler: handler,
+            matchIndex: options.matchIndex,
+            validationCallback: options.validationCallback,
+            priority: options.priority || 0
+        };
+        this._addLinkMatcherToList(matcher);
+        return matcher.id;
+    };
+    Linkifier.prototype._addLinkMatcherToList = function (matcher) {
+        if (this._linkMatchers.length === 0) {
+            this._linkMatchers.push(matcher);
+            return;
+        }
+        for (var i = this._linkMatchers.length - 1; i >= 0; i--) {
+            if (matcher.priority <= this._linkMatchers[i].priority) {
+                this._linkMatchers.splice(i + 1, 0, matcher);
+                return;
+            }
+        }
+        this._linkMatchers.splice(0, 0, matcher);
+    };
+    Linkifier.prototype.deregisterLinkMatcher = function (matcherId) {
+        for (var i = 1; i < this._linkMatchers.length; i++) {
+            if (this._linkMatchers[i].id === matcherId) {
+                this._linkMatchers.splice(i, 1);
+                return true;
+            }
+        }
+        return false;
+    };
+    Linkifier.prototype._linkifyRow = function (rowIndex) {
+        var row = this._rows[rowIndex];
+        if (!row) {
+            return;
+        }
+        var text = row.textContent;
+        for (var i = 0; i < this._linkMatchers.length; i++) {
+            var matcher = this._linkMatchers[i];
+            var linkElements = this._doLinkifyRow(row, matcher);
+            if (linkElements.length > 0) {
+                if (matcher.validationCallback) {
+                    var _loop_1 = function (j) {
+                        var element = linkElements[j];
+                        matcher.validationCallback(element.textContent, element, function (isValid) {
+                            if (!isValid) {
+                                element.classList.add(INVALID_LINK_CLASS);
+                            }
+                        });
+                    };
+                    for (var j = 0; j < linkElements.length; j++) {
+                        _loop_1(j);
+                    }
+                }
+                return;
+            }
+        }
+    };
+    Linkifier.prototype._doLinkifyRow = function (row, matcher) {
+        var result = [];
+        var isHttpLinkMatcher = matcher.id === HYPERTEXT_LINK_MATCHER_ID;
+        var nodes = row.childNodes;
+        var match = row.textContent.match(matcher.regex);
+        if (!match || match.length === 0) {
+            return result;
+        }
+        var uri = match[typeof matcher.matchIndex !== 'number' ? 0 : matcher.matchIndex];
+        var rowStartIndex = match.index + uri.length;
+        for (var i = 0; i < nodes.length; i++) {
+            var node = nodes[i];
+            var searchIndex = node.textContent.indexOf(uri);
+            if (searchIndex >= 0) {
+                var linkElement = this._createAnchorElement(uri, matcher.handler, isHttpLinkMatcher);
+                if (node.textContent.length === uri.length) {
+                    if (node.nodeType === 3) {
+                        this._replaceNode(node, linkElement);
+                    }
+                    else {
+                        var element = node;
+                        if (element.nodeName === 'A') {
+                            return result;
+                        }
+                        element.innerHTML = '';
+                        element.appendChild(linkElement);
+                    }
+                }
+                else if (node.childNodes.length > 1) {
+                    for (var j = 0; j < node.childNodes.length; j++) {
+                        var childNode = node.childNodes[j];
+                        var childSearchIndex = childNode.textContent.indexOf(uri);
+                        if (childSearchIndex !== -1) {
+                            this._replaceNodeSubstringWithNode(childNode, linkElement, uri, childSearchIndex);
+                            break;
+                        }
+                    }
+                }
+                else {
+                    var nodesAdded = this._replaceNodeSubstringWithNode(node, linkElement, uri, searchIndex);
+                    i += nodesAdded;
+                }
+                result.push(linkElement);
+                match = row.textContent.substring(rowStartIndex).match(matcher.regex);
+                if (!match || match.length === 0) {
+                    return result;
+                }
+                uri = match[typeof matcher.matchIndex !== 'number' ? 0 : matcher.matchIndex];
+                rowStartIndex += match.index + uri.length;
+            }
+        }
+        return result;
+    };
+    Linkifier.prototype._createAnchorElement = function (uri, handler, isHypertextLinkHandler) {
+        var element = this._document.createElement('a');
+        element.textContent = uri;
+        element.draggable = false;
+        if (isHypertextLinkHandler) {
+            element.href = uri;
+            element.target = '_blank';
+            element.addEventListener('click', function (event) {
+                if (handler) {
+                    return handler(event, uri);
+                }
+            });
+        }
+        else {
+            element.addEventListener('click', function (event) {
+                if (element.classList.contains(INVALID_LINK_CLASS)) {
+                    return;
+                }
+                return handler(event, uri);
+            });
+        }
+        return element;
+    };
+    Linkifier.prototype._replaceNode = function (oldNode) {
+        var newNodes = [];
+        for (var _i = 1; _i < arguments.length; _i++) {
+            newNodes[_i - 1] = arguments[_i];
+        }
+        var parent = oldNode.parentNode;
+        for (var i = 0; i < newNodes.length; i++) {
+            parent.insertBefore(newNodes[i], oldNode);
+        }
+        parent.removeChild(oldNode);
+    };
+    Linkifier.prototype._replaceNodeSubstringWithNode = function (targetNode, newNode, substring, substringIndex) {
+        if (targetNode.childNodes.length === 1) {
+            targetNode = targetNode.childNodes[0];
+        }
+        if (targetNode.nodeType !== 3) {
+            throw new Error('targetNode must be a text node or only contain a single text node');
+        }
+        var fullText = targetNode.textContent;
+        if (substringIndex === 0) {
+            var rightText_1 = fullText.substring(substring.length);
+            var rightTextNode_1 = this._document.createTextNode(rightText_1);
+            this._replaceNode(targetNode, newNode, rightTextNode_1);
+            return 0;
+        }
+        if (substringIndex === targetNode.textContent.length - substring.length) {
+            var leftText_1 = fullText.substring(0, substringIndex);
+            var leftTextNode_1 = this._document.createTextNode(leftText_1);
+            this._replaceNode(targetNode, leftTextNode_1, newNode);
+            return 0;
+        }
+        var leftText = fullText.substring(0, substringIndex);
+        var leftTextNode = this._document.createTextNode(leftText);
+        var rightText = fullText.substring(substringIndex + substring.length);
+        var rightTextNode = this._document.createTextNode(rightText);
+        this._replaceNode(targetNode, leftTextNode, newNode, rightTextNode);
+        return 1;
+    };
+    return Linkifier;
+}());
+Linkifier.TIME_BEFORE_LINKIFY = 200;
+exports.Linkifier = Linkifier;
+
+
+
+},{}],9:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var EscapeSequences_1 = require("./EscapeSequences");
+var Charsets_1 = require("./Charsets");
+var normalStateHandler = {};
+normalStateHandler[EscapeSequences_1.C0.BEL] = function (parser, handler) { return handler.bell(); };
+normalStateHandler[EscapeSequences_1.C0.LF] = function (parser, handler) { return handler.lineFeed(); };
+normalStateHandler[EscapeSequences_1.C0.VT] = normalStateHandler[EscapeSequences_1.C0.LF];
+normalStateHandler[EscapeSequences_1.C0.FF] = normalStateHandler[EscapeSequences_1.C0.LF];
+normalStateHandler[EscapeSequences_1.C0.CR] = function (parser, handler) { return handler.carriageReturn(); };
+normalStateHandler[EscapeSequences_1.C0.BS] = function (parser, handler) { return handler.backspace(); };
+normalStateHandler[EscapeSequences_1.C0.HT] = function (parser, handler) { return handler.tab(); };
+normalStateHandler[EscapeSequences_1.C0.SO] = function (parser, handler) { return handler.shiftOut(); };
+normalStateHandler[EscapeSequences_1.C0.SI] = function (parser, handler) { return handler.shiftIn(); };
+normalStateHandler[EscapeSequences_1.C0.ESC] = function (parser, handler) { return parser.setState(ParserState.ESCAPED); };
+var escapedStateHandler = {};
+escapedStateHandler['['] = function (parser, terminal) {
+    terminal.params = [];
+    terminal.currentParam = 0;
+    parser.setState(ParserState.CSI_PARAM);
+};
+escapedStateHandler[']'] = function (parser, terminal) {
+    terminal.params = [];
+    terminal.currentParam = 0;
+    parser.setState(ParserState.OSC);
+};
+escapedStateHandler['P'] = function (parser, terminal) {
+    terminal.params = [];
+    terminal.currentParam = 0;
+    parser.setState(ParserState.DCS);
+};
+escapedStateHandler['_'] = function (parser, terminal) {
+    parser.setState(ParserState.IGNORE);
+};
+escapedStateHandler['^'] = function (parser, terminal) {
+    parser.setState(ParserState.IGNORE);
+};
+escapedStateHandler['c'] = function (parser, terminal) {
+    terminal.reset();
+};
+escapedStateHandler['E'] = function (parser, terminal) {
+    terminal.buffer.x = 0;
+    terminal.index();
+    parser.setState(ParserState.NORMAL);
+};
+escapedStateHandler['D'] = function (parser, terminal) {
+    terminal.index();
+    parser.setState(ParserState.NORMAL);
+};
+escapedStateHandler['M'] = function (parser, terminal) {
+    terminal.reverseIndex();
+    parser.setState(ParserState.NORMAL);
+};
+escapedStateHandler['%'] = function (parser, terminal) {
+    terminal.setgLevel(0);
+    terminal.setgCharset(0, Charsets_1.DEFAULT_CHARSET);
+    parser.setState(ParserState.NORMAL);
+    parser.skipNextChar();
+};
+escapedStateHandler[EscapeSequences_1.C0.CAN] = function (parser) { return parser.setState(ParserState.NORMAL); };
+var csiParamStateHandler = {};
+csiParamStateHandler['?'] = function (parser) { return parser.setPrefix('?'); };
+csiParamStateHandler['>'] = function (parser) { return parser.setPrefix('>'); };
+csiParamStateHandler['!'] = function (parser) { return parser.setPrefix('!'); };
+csiParamStateHandler['0'] = function (parser) { return parser.setParam(parser.getParam() * 10); };
+csiParamStateHandler['1'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 1); };
+csiParamStateHandler['2'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 2); };
+csiParamStateHandler['3'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 3); };
+csiParamStateHandler['4'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 4); };
+csiParamStateHandler['5'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 5); };
+csiParamStateHandler['6'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 6); };
+csiParamStateHandler['7'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 7); };
+csiParamStateHandler['8'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 8); };
+csiParamStateHandler['9'] = function (parser) { return parser.setParam(parser.getParam() * 10 + 9); };
+csiParamStateHandler['$'] = function (parser) { return parser.setPostfix('$'); };
+csiParamStateHandler['"'] = function (parser) { return parser.setPostfix('"'); };
+csiParamStateHandler[' '] = function (parser) { return parser.setPostfix(' '); };
+csiParamStateHandler['\''] = function (parser) { return parser.setPostfix('\''); };
+csiParamStateHandler[';'] = function (parser) { return parser.finalizeParam(); };
+csiParamStateHandler[EscapeSequences_1.C0.CAN] = function (parser) { return parser.setState(ParserState.NORMAL); };
+var csiStateHandler = {};
+csiStateHandler['@'] = function (handler, params, prefix) { return handler.insertChars(params); };
+csiStateHandler['A'] = function (handler, params, prefix) { return handler.cursorUp(params); };
+csiStateHandler['B'] = function (handler, params, prefix) { return handler.cursorDown(params); };
+csiStateHandler['C'] = function (handler, params, prefix) { return handler.cursorForward(params); };
+csiStateHandler['D'] = function (handler, params, prefix) { return handler.cursorBackward(params); };
+csiStateHandler['E'] = function (handler, params, prefix) { return handler.cursorNextLine(params); };
+csiStateHandler['F'] = function (handler, params, prefix) { return handler.cursorPrecedingLine(params); };
+csiStateHandler['G'] = function (handler, params, prefix) { return handler.cursorCharAbsolute(params); };
+csiStateHandler['H'] = function (handler, params, prefix) { return handler.cursorPosition(params); };
+csiStateHandler['I'] = function (handler, params, prefix) { return handler.cursorForwardTab(params); };
+csiStateHandler['J'] = function (handler, params, prefix) { return handler.eraseInDisplay(params); };
+csiStateHandler['K'] = function (handler, params, prefix) { return handler.eraseInLine(params); };
+csiStateHandler['L'] = function (handler, params, prefix) { return handler.insertLines(params); };
+csiStateHandler['M'] = function (handler, params, prefix) { return handler.deleteLines(params); };
+csiStateHandler['P'] = function (handler, params, prefix) { return handler.deleteChars(params); };
+csiStateHandler['S'] = function (handler, params, prefix) { return handler.scrollUp(params); };
+csiStateHandler['T'] = function (handler, params, prefix) {
+    if (params.length < 2 && !prefix) {
+        handler.scrollDown(params);
+    }
+};
+csiStateHandler['X'] = function (handler, params, prefix) { return handler.eraseChars(params); };
+csiStateHandler['Z'] = function (handler, params, prefix) { return handler.cursorBackwardTab(params); };
+csiStateHandler['`'] = function (handler, params, prefix) { return handler.charPosAbsolute(params); };
+csiStateHandler['a'] = function (handler, params, prefix) { return handler.HPositionRelative(params); };
+csiStateHandler['b'] = function (handler, params, prefix) { return handler.repeatPrecedingCharacter(params); };
+csiStateHandler['c'] = function (handler, params, prefix) { return handler.sendDeviceAttributes(params); };
+csiStateHandler['d'] = function (handler, params, prefix) { return handler.linePosAbsolute(params); };
+csiStateHandler['e'] = function (handler, params, prefix) { return handler.VPositionRelative(params); };
+csiStateHandler['f'] = function (handler, params, prefix) { return handler.HVPosition(params); };
+csiStateHandler['g'] = function (handler, params, prefix) { return handler.tabClear(params); };
+csiStateHandler['h'] = function (handler, params, prefix) { return handler.setMode(params); };
+csiStateHandler['l'] = function (handler, params, prefix) { return handler.resetMode(params); };
+csiStateHandler['m'] = function (handler, params, prefix) { return handler.charAttributes(params); };
+csiStateHandler['n'] = function (handler, params, prefix) { return handler.deviceStatus(params); };
+csiStateHandler['p'] = function (handler, params, prefix) {
+    switch (prefix) {
+        case '!':
+            handler.softReset(params);
+            break;
+    }
+};
+csiStateHandler['q'] = function (handler, params, prefix, postfix) {
+    if (postfix === ' ') {
+        handler.setCursorStyle(params);
+    }
+};
+csiStateHandler['r'] = function (handler, params) { return handler.setScrollRegion(params); };
+csiStateHandler['s'] = function (handler, params) { return handler.saveCursor(params); };
+csiStateHandler['u'] = function (handler, params) { return handler.restoreCursor(params); };
+csiStateHandler[EscapeSequences_1.C0.CAN] = function (handler, params, prefix, postfix, parser) { return parser.setState(ParserState.NORMAL); };
+var ParserState;
+(function (ParserState) {
+    ParserState[ParserState["NORMAL"] = 0] = "NORMAL";
+    ParserState[ParserState["ESCAPED"] = 1] = "ESCAPED";
+    ParserState[ParserState["CSI_PARAM"] = 2] = "CSI_PARAM";
+    ParserState[ParserState["CSI"] = 3] = "CSI";
+    ParserState[ParserState["OSC"] = 4] = "OSC";
+    ParserState[ParserState["CHARSET"] = 5] = "CHARSET";
+    ParserState[ParserState["DCS"] = 6] = "DCS";
+    ParserState[ParserState["IGNORE"] = 7] = "IGNORE";
+})(ParserState || (ParserState = {}));
+var Parser = (function () {
+    function Parser(_inputHandler, _terminal) {
+        this._inputHandler = _inputHandler;
+        this._terminal = _terminal;
+        this._state = ParserState.NORMAL;
+    }
+    Parser.prototype.parse = function (data) {
+        var l = data.length, j, cs, ch, code, low;
+        if (this._terminal.debug) {
+            this._terminal.log('data: ' + data);
+        }
+        this._position = 0;
+        if (this._terminal.surrogate_high) {
+            data = this._terminal.surrogate_high + data;
+            this._terminal.surrogate_high = '';
+        }
+        for (; this._position < l; this._position++) {
+            ch = data[this._position];
+            code = data.charCodeAt(this._position);
+            if (0xD800 <= code && code <= 0xDBFF) {
+                low = data.charCodeAt(this._position + 1);
+                if (isNaN(low)) {
+                    this._terminal.surrogate_high = ch;
+                    continue;
+                }
+                code = ((code - 0xD800) * 0x400) + (low - 0xDC00) + 0x10000;
+                ch += data.charAt(this._position + 1);
+            }
+            if (0xDC00 <= code && code <= 0xDFFF)
+                continue;
+            switch (this._state) {
+                case ParserState.NORMAL:
+                    if (ch in normalStateHandler) {
+                        normalStateHandler[ch](this, this._inputHandler);
+                    }
+                    else {
+                        this._inputHandler.addChar(ch, code);
+                    }
+                    break;
+                case ParserState.ESCAPED:
+                    if (ch in escapedStateHandler) {
+                        escapedStateHandler[ch](this, this._terminal);
+                        break;
+                    }
+                    switch (ch) {
+                        case '(':
+                        case ')':
+                        case '*':
+                        case '+':
+                        case '-':
+                        case '.':
+                            switch (ch) {
+                                case '(':
+                                    this._terminal.gcharset = 0;
+                                    break;
+                                case ')':
+                                    this._terminal.gcharset = 1;
+                                    break;
+                                case '*':
+                                    this._terminal.gcharset = 2;
+                                    break;
+                                case '+':
+                                    this._terminal.gcharset = 3;
+                                    break;
+                                case '-':
+                                    this._terminal.gcharset = 1;
+                                    break;
+                                case '.':
+                                    this._terminal.gcharset = 2;
+                                    break;
+                            }
+                            this._state = ParserState.CHARSET;
+                            break;
+                        case '/':
+                            this._terminal.gcharset = 3;
+                            this._state = ParserState.CHARSET;
+                            this._position--;
+                            break;
+                        case 'N':
+                            break;
+                        case 'O':
+                            break;
+                        case 'n':
+                            this._terminal.setgLevel(2);
+                            break;
+                        case 'o':
+                            this._terminal.setgLevel(3);
+                            break;
+                        case '|':
+                            this._terminal.setgLevel(3);
+                            break;
+                        case '}':
+                            this._terminal.setgLevel(2);
+                            break;
+                        case '~':
+                            this._terminal.setgLevel(1);
+                            break;
+                        case '7':
+                            this._inputHandler.saveCursor();
+                            this._state = ParserState.NORMAL;
+                            break;
+                        case '8':
+                            this._inputHandler.restoreCursor();
+                            this._state = ParserState.NORMAL;
+                            break;
+                        case '#':
+                            this._state = ParserState.NORMAL;
+                            this._position++;
+                            break;
+                        case 'H':
+                            this._terminal.tabSet();
+                            this._state = ParserState.NORMAL;
+                            break;
+                        case '=':
+                            this._terminal.log('Serial port requested application keypad.');
+                            this._terminal.applicationKeypad = true;
+                            this._terminal.viewport.syncScrollArea();
+                            this._state = ParserState.NORMAL;
+                            break;
+                        case '>':
+                            this._terminal.log('Switching back to normal keypad.');
+                            this._terminal.applicationKeypad = false;
+                            this._terminal.viewport.syncScrollArea();
+                            this._state = ParserState.NORMAL;
+                            break;
+                        default:
+                            this._state = ParserState.NORMAL;
+                            this._terminal.error('Unknown ESC control: %s.', ch);
+                            break;
+                    }
+                    break;
+                case ParserState.CHARSET:
+                    if (ch in Charsets_1.CHARSETS) {
+                        cs = Charsets_1.CHARSETS[ch];
+                        if (ch === '/') {
+                            this.skipNextChar();
+                        }
+                    }
+                    else {
+                        cs = Charsets_1.DEFAULT_CHARSET;
+                    }
+                    this._terminal.setgCharset(this._terminal.gcharset, cs);
+                    this._terminal.gcharset = null;
+                    this._state = ParserState.NORMAL;
+                    break;
+                case ParserState.OSC:
+                    if (ch === EscapeSequences_1.C0.ESC || ch === EscapeSequences_1.C0.BEL) {
+                        if (ch === EscapeSequences_1.C0.ESC)
+                            this._position++;
+                        this._terminal.params.push(this._terminal.currentParam);
+                        switch (this._terminal.params[0]) {
+                            case 0:
+                            case 1:
+                            case 2:
+                                if (this._terminal.params[1]) {
+                                    this._terminal.title = this._terminal.params[1];
+                                    this._terminal.handleTitle(this._terminal.title);
+                                }
+                                break;
+                            case 3:
+                                break;
+                            case 4:
+                            case 5:
+                                break;
+                            case 10:
+                            case 11:
+                            case 12:
+                            case 13:
+                            case 14:
+                            case 15:
+                            case 16:
+                            case 17:
+                            case 18:
+                            case 19:
+                                break;
+                            case 46:
+                                break;
+                            case 50:
+                                break;
+                            case 51:
+                                break;
+                            case 52:
+                                break;
+                            case 104:
+                            case 105:
+                            case 110:
+                            case 111:
+                            case 112:
+                            case 113:
+                            case 114:
+                            case 115:
+                            case 116:
+                            case 117:
+                            case 118:
+                                break;
+                        }
+                        this._terminal.params = [];
+                        this._terminal.currentParam = 0;
+                        this._state = ParserState.NORMAL;
+                    }
+                    else {
+                        if (!this._terminal.params.length) {
+                            if (ch >= '0' && ch <= '9') {
+                                this._terminal.currentParam =
+                                    this._terminal.currentParam * 10 + ch.charCodeAt(0) - 48;
+                            }
+                            else if (ch === ';') {
+                                this._terminal.params.push(this._terminal.currentParam);
+                                this._terminal.currentParam = '';
+                            }
+                        }
+                        else {
+                            this._terminal.currentParam += ch;
+                        }
+                    }
+                    break;
+                case ParserState.CSI_PARAM:
+                    if (ch in csiParamStateHandler) {
+                        csiParamStateHandler[ch](this);
+                        break;
+                    }
+                    this.finalizeParam();
+                    this._state = ParserState.CSI;
+                case ParserState.CSI:
+                    if (ch in csiStateHandler) {
+                        if (this._terminal.debug) {
+                            this._terminal.log("CSI " + (this._terminal.prefix ? this._terminal.prefix : '') + " " + (this._terminal.params ? this._terminal.params.join(';') : '') + " " + (this._terminal.postfix ? this._terminal.postfix : '') + " " + ch);
+                        }
+                        csiStateHandler[ch](this._inputHandler, this._terminal.params, this._terminal.prefix, this._terminal.postfix, this);
+                    }
+                    else {
+                        this._terminal.error('Unknown CSI code: %s.', ch);
+                    }
+                    this._state = ParserState.NORMAL;
+                    this._terminal.prefix = '';
+                    this._terminal.postfix = '';
+                    break;
+                case ParserState.DCS:
+                    if (ch === EscapeSequences_1.C0.ESC || ch === EscapeSequences_1.C0.BEL) {
+                        if (ch === EscapeSequences_1.C0.ESC)
+                            this._position++;
+                        var pt = void 0;
+                        var valid = void 0;
+                        switch (this._terminal.prefix) {
+                            case '':
+                                break;
+                            case '$q':
+                                pt = this._terminal.currentParam;
+                                valid = false;
+                                switch (pt) {
+                                    case '"q':
+                                        pt = '0"q';
+                                        break;
+                                    case '"p':
+                                        pt = '61"p';
+                                        break;
+                                    case 'r':
+                                        pt = ''
+                                            + (this._terminal.buffer.scrollTop + 1)
+                                            + ';'
+                                            + (this._terminal.buffer.scrollBottom + 1)
+                                            + 'r';
+                                        break;
+                                    case 'm':
+                                        pt = '0m';
+                                        break;
+                                    default:
+                                        this._terminal.error('Unknown DCS Pt: %s.', pt);
+                                        pt = '';
+                                        break;
+                                }
+                                this._terminal.send(EscapeSequences_1.C0.ESC + 'P' + +valid + '$r' + pt + EscapeSequences_1.C0.ESC + '\\');
+                                break;
+                            case '+p':
+                                break;
+                            case '+q':
+                                pt = this._terminal.currentParam;
+                                valid = false;
+                                this._terminal.send(EscapeSequences_1.C0.ESC + 'P' + +valid + '+r' + pt + EscapeSequences_1.C0.ESC + '\\');
+                                break;
+                            default:
+                                this._terminal.error('Unknown DCS prefix: %s.', this._terminal.prefix);
+                                break;
+                        }
+                        this._terminal.currentParam = 0;
+                        this._terminal.prefix = '';
+                        this._state = ParserState.NORMAL;
+                    }
+                    else if (!this._terminal.currentParam) {
+                        if (!this._terminal.prefix && ch !== '$' && ch !== '+') {
+                            this._terminal.currentParam = ch;
+                        }
+                        else if (this._terminal.prefix.length === 2) {
+                            this._terminal.currentParam = ch;
+                        }
+                        else {
+                            this._terminal.prefix += ch;
+                        }
+                    }
+                    else {
+                        this._terminal.currentParam += ch;
+                    }
+                    break;
+                case ParserState.IGNORE:
+                    if (ch === EscapeSequences_1.C0.ESC || ch === EscapeSequences_1.C0.BEL) {
+                        if (ch === EscapeSequences_1.C0.ESC)
+                            this._position++;
+                        this._state = ParserState.NORMAL;
+                    }
+                    break;
+            }
+        }
+        return this._state;
+    };
+    Parser.prototype.setState = function (state) {
+        this._state = state;
+    };
+    Parser.prototype.setPrefix = function (prefix) {
+        this._terminal.prefix = prefix;
+    };
+    Parser.prototype.setPostfix = function (postfix) {
+        this._terminal.postfix = postfix;
+    };
+    Parser.prototype.setParam = function (param) {
+        this._terminal.currentParam = param;
+    };
+    Parser.prototype.getParam = function () {
+        return this._terminal.currentParam;
+    };
+    Parser.prototype.finalizeParam = function () {
+        this._terminal.params.push(this._terminal.currentParam);
+        this._terminal.currentParam = 0;
+    };
+    Parser.prototype.skipNextChar = function () {
+        this._position++;
+    };
+    return Parser;
+}());
+exports.Parser = Parser;
+
+
+
+},{"./Charsets":3,"./EscapeSequences":5}],10:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var DomElementObjectPool_1 = require("./utils/DomElementObjectPool");
+var MAX_REFRESH_FRAME_SKIP = 5;
+var FLAGS;
+(function (FLAGS) {
+    FLAGS[FLAGS["BOLD"] = 1] = "BOLD";
+    FLAGS[FLAGS["UNDERLINE"] = 2] = "UNDERLINE";
+    FLAGS[FLAGS["BLINK"] = 4] = "BLINK";
+    FLAGS[FLAGS["INVERSE"] = 8] = "INVERSE";
+    FLAGS[FLAGS["INVISIBLE"] = 16] = "INVISIBLE";
+})(FLAGS || (FLAGS = {}));
+;
+var brokenBold = null;
+var Renderer = (function () {
+    function Renderer(_terminal) {
+        this._terminal = _terminal;
+        this._refreshRowsQueue = [];
+        this._refreshFramesSkipped = 0;
+        this._refreshAnimationFrame = null;
+        this._spanElementObjectPool = new DomElementObjectPool_1.DomElementObjectPool('span');
+        if (brokenBold === null) {
+            brokenBold = checkBoldBroken(this._terminal.element);
+        }
+        this._spanElementObjectPool = new DomElementObjectPool_1.DomElementObjectPool('span');
+    }
+    Renderer.prototype.queueRefresh = function (start, end) {
+        this._refreshRowsQueue.push({ start: start, end: end });
+        if (!this._refreshAnimationFrame) {
+            this._refreshAnimationFrame = window.requestAnimationFrame(this._refreshLoop.bind(this));
+        }
+    };
+    Renderer.prototype._refreshLoop = function () {
+        var skipFrame = this._terminal.writeBuffer.length > 0 && this._refreshFramesSkipped++ <= MAX_REFRESH_FRAME_SKIP;
+        if (skipFrame) {
+            this._refreshAnimationFrame = window.requestAnimationFrame(this._refreshLoop.bind(this));
+            return;
+        }
+        this._refreshFramesSkipped = 0;
+        var start;
+        var end;
+        if (this._refreshRowsQueue.length > 4) {
+            start = 0;
+            end = this._terminal.rows - 1;
+        }
+        else {
+            start = this._refreshRowsQueue[0].start;
+            end = this._refreshRowsQueue[0].end;
+            for (var i = 1; i < this._refreshRowsQueue.length; i++) {
+                if (this._refreshRowsQueue[i].start < start) {
+                    start = this._refreshRowsQueue[i].start;
+                }
+                if (this._refreshRowsQueue[i].end > end) {
+                    end = this._refreshRowsQueue[i].end;
+                }
+            }
+        }
+        this._refreshRowsQueue = [];
+        this._refreshAnimationFrame = null;
+        this._refresh(start, end);
+    };
+    Renderer.prototype._refresh = function (start, end) {
+        var parent;
+        if (end - start >= this._terminal.rows / 2) {
+            parent = this._terminal.element.parentNode;
+            if (parent) {
+                this._terminal.element.removeChild(this._terminal.rowContainer);
+            }
+        }
+        var width = this._terminal.cols;
+        var y = start;
+        if (end >= this._terminal.rows) {
+            this._terminal.log('`end` is too large. Most likely a bad CSR.');
+            end = this._terminal.rows - 1;
+        }
+        for (; y <= end; y++) {
+            var row = y + this._terminal.buffer.ydisp;
+            var line = this._terminal.buffer.lines.get(row);
+            var x = void 0;
+            if (this._terminal.buffer.y === y - (this._terminal.buffer.ybase - this._terminal.buffer.ydisp) &&
+                this._terminal.cursorState &&
+                !this._terminal.cursorHidden) {
+                x = this._terminal.buffer.x;
+            }
+            else {
+                x = -1;
+            }
+            var attr = this._terminal.defAttr;
+            var documentFragment = document.createDocumentFragment();
+            var innerHTML = '';
+            var currentElement = void 0;
+            while (this._terminal.children[y].children.length) {
+                var child = this._terminal.children[y].children[0];
+                this._terminal.children[y].removeChild(child);
+                this._spanElementObjectPool.release(child);
+            }
+            for (var i = 0; i < width; i++) {
+                var data = line[i][0];
+                var ch = line[i][1];
+                var ch_width = line[i][2];
+                var isCursor = i === x;
+                if (!ch_width) {
+                    continue;
+                }
+                if (data !== attr || isCursor) {
+                    if (attr !== this._terminal.defAttr && !isCursor) {
+                        if (innerHTML) {
+                            currentElement.innerHTML = innerHTML;
+                            innerHTML = '';
+                        }
+                        documentFragment.appendChild(currentElement);
+                        currentElement = null;
+                    }
+                    if (data !== this._terminal.defAttr || isCursor) {
+                        if (innerHTML && !currentElement) {
+                            currentElement = this._spanElementObjectPool.acquire();
+                        }
+                        if (currentElement) {
+                            if (innerHTML) {
+                                currentElement.innerHTML = innerHTML;
+                                innerHTML = '';
+                            }
+                            documentFragment.appendChild(currentElement);
+                        }
+                        currentElement = this._spanElementObjectPool.acquire();
+                        var bg = data & 0x1ff;
+                        var fg = (data >> 9) & 0x1ff;
+                        var flags = data >> 18;
+                        if (isCursor) {
+                            currentElement.classList.add('reverse-video');
+                            currentElement.classList.add('terminal-cursor');
+                        }
+                        if (flags & FLAGS.BOLD) {
+                            if (!brokenBold) {
+                                currentElement.classList.add('xterm-bold');
+                            }
+                            if (fg < 8) {
+                                fg += 8;
+                            }
+                        }
+                        if (flags & FLAGS.UNDERLINE) {
+                            currentElement.classList.add('xterm-underline');
+                        }
+                        if (flags & FLAGS.BLINK) {
+                            currentElement.classList.add('xterm-blink');
+                        }
+                        if (flags & FLAGS.INVERSE) {
+                            var temp = bg;
+                            bg = fg;
+                            fg = temp;
+                            if ((flags & 1) && fg < 8) {
+                                fg += 8;
+                            }
+                        }
+                        if (flags & FLAGS.INVISIBLE && !isCursor) {
+                            currentElement.classList.add('xterm-hidden');
+                        }
+                        if (flags & FLAGS.INVERSE) {
+                            if (bg === 257) {
+                                bg = 15;
+                            }
+                            if (fg === 256) {
+                                fg = 0;
+                            }
+                        }
+                        if (bg < 256) {
+                            currentElement.classList.add("xterm-bg-color-" + bg);
+                        }
+                        if (fg < 256) {
+                            currentElement.classList.add("xterm-color-" + fg);
+                        }
+                    }
+                }
+                if (ch_width === 2) {
+                    innerHTML += "<span class=\"xterm-wide-char\">" + ch + "</span>";
+                }
+                else if (ch.charCodeAt(0) > 255) {
+                    innerHTML += "<span class=\"xterm-normal-char\">" + ch + "</span>";
+                }
+                else {
+                    switch (ch) {
+                        case '&':
+                            innerHTML += '&amp;';
+                            break;
+                        case '<':
+                            innerHTML += '&lt;';
+                            break;
+                        case '>':
+                            innerHTML += '&gt;';
+                            break;
+                        default:
+                            if (ch <= ' ') {
+                                innerHTML += '&nbsp;';
+                            }
+                            else {
+                                innerHTML += ch;
+                            }
+                            break;
+                    }
+                }
+                attr = isCursor ? -1 : data;
+            }
+            if (innerHTML && !currentElement) {
+                currentElement = this._spanElementObjectPool.acquire();
+            }
+            if (currentElement) {
+                if (innerHTML) {
+                    currentElement.innerHTML = innerHTML;
+                    innerHTML = '';
+                }
+                documentFragment.appendChild(currentElement);
+                currentElement = null;
+            }
+            this._terminal.children[y].appendChild(documentFragment);
+        }
+        if (parent) {
+            this._terminal.element.appendChild(this._terminal.rowContainer);
+        }
+        this._terminal.emit('refresh', { element: this._terminal.element, start: start, end: end });
+    };
+    ;
+    Renderer.prototype.refreshSelection = function (start, end) {
+        while (this._terminal.selectionContainer.children.length) {
+            this._terminal.selectionContainer.removeChild(this._terminal.selectionContainer.children[0]);
+        }
+        if (!start || !end) {
+            return;
+        }
+        var viewportStartRow = start[1] - this._terminal.buffer.ydisp;
+        var viewportEndRow = end[1] - this._terminal.buffer.ydisp;
+        var viewportCappedStartRow = Math.max(viewportStartRow, 0);
+        var viewportCappedEndRow = Math.min(viewportEndRow, this._terminal.rows - 1);
+        if (viewportCappedStartRow >= this._terminal.rows || viewportCappedEndRow < 0) {
+            return;
+        }
+        var documentFragment = document.createDocumentFragment();
+        var startCol = viewportStartRow === viewportCappedStartRow ? start[0] : 0;
+        var endCol = viewportCappedStartRow === viewportCappedEndRow ? end[0] : this._terminal.cols;
+        documentFragment.appendChild(this._createSelectionElement(viewportCappedStartRow, startCol, endCol));
+        var middleRowsCount = viewportCappedEndRow - viewportCappedStartRow - 1;
+        documentFragment.appendChild(this._createSelectionElement(viewportCappedStartRow + 1, 0, this._terminal.cols, middleRowsCount));
+        if (viewportCappedStartRow !== viewportCappedEndRow) {
+            var endCol_1 = viewportEndRow === viewportCappedEndRow ? end[0] : this._terminal.cols;
+            documentFragment.appendChild(this._createSelectionElement(viewportCappedEndRow, 0, endCol_1));
+        }
+        this._terminal.selectionContainer.appendChild(documentFragment);
+    };
+    Renderer.prototype._createSelectionElement = function (row, colStart, colEnd, rowCount) {
+        if (rowCount === void 0) { rowCount = 1; }
+        var element = document.createElement('div');
+        element.style.height = rowCount * this._terminal.charMeasure.height + "px";
+        element.style.top = row * this._terminal.charMeasure.height + "px";
+        element.style.left = colStart * this._terminal.charMeasure.width + "px";
+        element.style.width = this._terminal.charMeasure.width * (colEnd - colStart) + "px";
+        return element;
+    };
+    return Renderer;
+}());
+exports.Renderer = Renderer;
+function checkBoldBroken(terminal) {
+    var document = terminal.ownerDocument;
+    var el = document.createElement('span');
+    el.innerHTML = 'hello world';
+    terminal.appendChild(el);
+    var w1 = el.offsetWidth;
+    var h1 = el.offsetHeight;
+    el.style.fontWeight = 'bold';
+    var w2 = el.offsetWidth;
+    var h2 = el.offsetHeight;
+    terminal.removeChild(el);
+    return w1 !== w2 || h1 !== h2;
+}
+
+
+
+},{"./utils/DomElementObjectPool":19}],11:[function(require,module,exports){
+"use strict";
+var __extends = (this && this.__extends) || (function () {
+    var extendStatics = Object.setPrototypeOf ||
+        ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
+        function (d, b) { for (var p in b) if (b.hasOwnProperty(p)) d[p] = b[p]; };
+    return function (d, b) {
+        extendStatics(d, b);
+        function __() { this.constructor = d; }
+        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+var Mouse = require("./utils/Mouse");
+var Browser = require("./utils/Browser");
+var EventEmitter_1 = require("./EventEmitter");
+var SelectionModel_1 = require("./SelectionModel");
+var BufferLine_1 = require("./utils/BufferLine");
+var DRAG_SCROLL_MAX_THRESHOLD = 50;
+var DRAG_SCROLL_MAX_SPEED = 15;
+var DRAG_SCROLL_INTERVAL = 50;
+var WORD_SEPARATORS = ' ()[]{}\'"';
+var LINE_DATA_CHAR_INDEX = 1;
+var LINE_DATA_WIDTH_INDEX = 2;
+var NON_BREAKING_SPACE_CHAR = String.fromCharCode(160);
+var ALL_NON_BREAKING_SPACE_REGEX = new RegExp(NON_BREAKING_SPACE_CHAR, 'g');
+var SelectionMode;
+(function (SelectionMode) {
+    SelectionMode[SelectionMode["NORMAL"] = 0] = "NORMAL";
+    SelectionMode[SelectionMode["WORD"] = 1] = "WORD";
+    SelectionMode[SelectionMode["LINE"] = 2] = "LINE";
+})(SelectionMode || (SelectionMode = {}));
+var SelectionManager = (function (_super) {
+    __extends(SelectionManager, _super);
+    function SelectionManager(_terminal, _buffer, _rowContainer, _charMeasure) {
+        var _this = _super.call(this) || this;
+        _this._terminal = _terminal;
+        _this._buffer = _buffer;
+        _this._rowContainer = _rowContainer;
+        _this._charMeasure = _charMeasure;
+        _this._enabled = true;
+        _this._initListeners();
+        _this.enable();
+        _this._model = new SelectionModel_1.SelectionModel(_terminal);
+        _this._activeSelectionMode = SelectionMode.NORMAL;
+        return _this;
+    }
+    SelectionManager.prototype._initListeners = function () {
+        var _this = this;
+        this._mouseMoveListener = function (event) { return _this._onMouseMove(event); };
+        this._mouseUpListener = function (event) { return _this._onMouseUp(event); };
+        this._rowContainer.addEventListener('mousedown', function (event) { return _this._onMouseDown(event); });
+        this._buffer.on('trim', function (amount) { return _this._onTrim(amount); });
+    };
+    SelectionManager.prototype.disable = function () {
+        this.clearSelection();
+        this._enabled = false;
+    };
+    SelectionManager.prototype.enable = function () {
+        this._enabled = true;
+    };
+    SelectionManager.prototype.setBuffer = function (buffer) {
+        this._buffer = buffer;
+        this.clearSelection();
+    };
+    Object.defineProperty(SelectionManager.prototype, "selectionStart", {
+        get: function () { return this._model.finalSelectionStart; },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(SelectionManager.prototype, "selectionEnd", {
+        get: function () { return this._model.finalSelectionEnd; },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(SelectionManager.prototype, "hasSelection", {
+        get: function () {
+            var start = this._model.finalSelectionStart;
+            var end = this._model.finalSelectionEnd;
+            if (!start || !end) {
+                return false;
+            }
+            return start[0] !== end[0] || start[1] !== end[1];
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(SelectionManager.prototype, "selectionText", {
+        get: function () {
+            var start = this._model.finalSelectionStart;
+            var end = this._model.finalSelectionEnd;
+            if (!start || !end) {
+                return '';
+            }
+            var startRowEndCol = start[1] === end[1] ? end[0] : null;
+            var result = [];
+            result.push(BufferLine_1.translateBufferLineToString(this._buffer.get(start[1]), true, start[0], startRowEndCol));
+            for (var i = start[1] + 1; i <= end[1] - 1; i++) {
+                var bufferLine = this._buffer.get(i);
+                var lineText = BufferLine_1.translateBufferLineToString(bufferLine, true);
+                if (bufferLine.isWrapped) {
+                    result[result.length - 1] += lineText;
+                }
+                else {
+                    result.push(lineText);
+                }
+            }
+            if (start[1] !== end[1]) {
+                var bufferLine = this._buffer.get(end[1]);
+                var lineText = BufferLine_1.translateBufferLineToString(bufferLine, true, 0, end[0]);
+                if (bufferLine.isWrapped) {
+                    result[result.length - 1] += lineText;
+                }
+                else {
+                    result.push(lineText);
+                }
+            }
+            var formattedResult = result.map(function (line) {
+                return line.replace(ALL_NON_BREAKING_SPACE_REGEX, ' ');
+            }).join(Browser.isMSWindows ? '\r\n' : '\n');
+            return formattedResult;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    SelectionManager.prototype.clearSelection = function () {
+        this._model.clearSelection();
+        this._removeMouseDownListeners();
+        this.refresh();
+    };
+    SelectionManager.prototype.refresh = function (isNewSelection) {
+        var _this = this;
+        if (!this._refreshAnimationFrame) {
+            this._refreshAnimationFrame = window.requestAnimationFrame(function () { return _this._refresh(); });
+        }
+        if (Browser.isLinux && isNewSelection) {
+            var selectionText = this.selectionText;
+            if (selectionText.length) {
+                this.emit('newselection', this.selectionText);
+            }
+        }
+    };
+    SelectionManager.prototype._refresh = function () {
+        this._refreshAnimationFrame = null;
+        this.emit('refresh', { start: this._model.finalSelectionStart, end: this._model.finalSelectionEnd });
+    };
+    SelectionManager.prototype.selectAll = function () {
+        this._model.isSelectAllActive = true;
+        this.refresh();
+    };
+    SelectionManager.prototype._onTrim = function (amount) {
+        var needsRefresh = this._model.onTrim(amount);
+        if (needsRefresh) {
+            this.refresh();
+        }
+    };
+    SelectionManager.prototype._getMouseBufferCoords = function (event) {
+        var coords = Mouse.getCoords(event, this._rowContainer, this._charMeasure, this._terminal.cols, this._terminal.rows, true);
+        if (!coords) {
+            return null;
+        }
+        coords[0]--;
+        coords[1]--;
+        coords[1] += this._terminal.buffer.ydisp;
+        return coords;
+    };
+    SelectionManager.prototype._getMouseEventScrollAmount = function (event) {
+        var offset = Mouse.getCoordsRelativeToElement(event, this._rowContainer)[1];
+        var terminalHeight = this._terminal.rows * this._charMeasure.height;
+        if (offset >= 0 && offset <= terminalHeight) {
+            return 0;
+        }
+        if (offset > terminalHeight) {
+            offset -= terminalHeight;
+        }
+        offset = Math.min(Math.max(offset, -DRAG_SCROLL_MAX_THRESHOLD), DRAG_SCROLL_MAX_THRESHOLD);
+        offset /= DRAG_SCROLL_MAX_THRESHOLD;
+        return (offset / Math.abs(offset)) + Math.round(offset * (DRAG_SCROLL_MAX_SPEED - 1));
+    };
+    SelectionManager.prototype._onMouseDown = function (event) {
+        if (event.button === 2 && this.hasSelection) {
+            event.stopPropagation();
+            return;
+        }
+        if (event.button !== 0) {
+            return;
+        }
+        if (!this._enabled) {
+            var shouldForceSelection = Browser.isMac && event.altKey;
+            if (!shouldForceSelection) {
+                return;
+            }
+            event.stopPropagation();
+        }
+        event.preventDefault();
+        this._dragScrollAmount = 0;
+        if (this._enabled && event.shiftKey) {
+            this._onIncrementalClick(event);
+        }
+        else {
+            if (event.detail === 1) {
+                this._onSingleClick(event);
+            }
+            else if (event.detail === 2) {
+                this._onDoubleClick(event);
+            }
+            else if (event.detail === 3) {
+                this._onTripleClick(event);
+            }
+        }
+        this._addMouseDownListeners();
+        this.refresh(true);
+    };
+    SelectionManager.prototype._addMouseDownListeners = function () {
+        var _this = this;
+        this._rowContainer.ownerDocument.addEventListener('mousemove', this._mouseMoveListener);
+        this._rowContainer.ownerDocument.addEventListener('mouseup', this._mouseUpListener);
+        this._dragScrollIntervalTimer = setInterval(function () { return _this._dragScroll(); }, DRAG_SCROLL_INTERVAL);
+    };
+    SelectionManager.prototype._removeMouseDownListeners = function () {
+        this._rowContainer.ownerDocument.removeEventListener('mousemove', this._mouseMoveListener);
+        this._rowContainer.ownerDocument.removeEventListener('mouseup', this._mouseUpListener);
+        clearInterval(this._dragScrollIntervalTimer);
+        this._dragScrollIntervalTimer = null;
+    };
+    SelectionManager.prototype._onIncrementalClick = function (event) {
+        if (this._model.selectionStart) {
+            this._model.selectionEnd = this._getMouseBufferCoords(event);
+        }
+    };
+    SelectionManager.prototype._onSingleClick = function (event) {
+        this._model.selectionStartLength = 0;
+        this._model.isSelectAllActive = false;
+        this._activeSelectionMode = SelectionMode.NORMAL;
+        this._model.selectionStart = this._getMouseBufferCoords(event);
+        if (!this._model.selectionStart) {
+            return;
+        }
+        this._model.selectionEnd = null;
+        var line = this._buffer.get(this._model.selectionStart[1]);
+        if (!line) {
+            return;
+        }
+        var char = line[this._model.selectionStart[0]];
+        if (char[LINE_DATA_WIDTH_INDEX] === 0) {
+            this._model.selectionStart[0]++;
+        }
+    };
+    SelectionManager.prototype._onDoubleClick = function (event) {
+        var coords = this._getMouseBufferCoords(event);
+        if (coords) {
+            this._activeSelectionMode = SelectionMode.WORD;
+            this._selectWordAt(coords);
+        }
+    };
+    SelectionManager.prototype._onTripleClick = function (event) {
+        var coords = this._getMouseBufferCoords(event);
+        if (coords) {
+            this._activeSelectionMode = SelectionMode.LINE;
+            this._selectLineAt(coords[1]);
+        }
+    };
+    SelectionManager.prototype._onMouseMove = function (event) {
+        var previousSelectionEnd = this._model.selectionEnd ? [this._model.selectionEnd[0], this._model.selectionEnd[1]] : null;
+        this._model.selectionEnd = this._getMouseBufferCoords(event);
+        if (!this._model.selectionEnd) {
+            this.refresh(true);
+            return;
+        }
+        if (this._activeSelectionMode === SelectionMode.LINE) {
+            if (this._model.selectionEnd[1] < this._model.selectionStart[1]) {
+                this._model.selectionEnd[0] = 0;
+            }
+            else {
+                this._model.selectionEnd[0] = this._terminal.cols;
+            }
+        }
+        else if (this._activeSelectionMode === SelectionMode.WORD) {
+            this._selectToWordAt(this._model.selectionEnd);
+        }
+        this._dragScrollAmount = this._getMouseEventScrollAmount(event);
+        if (this._dragScrollAmount > 0) {
+            this._model.selectionEnd[0] = this._terminal.cols - 1;
+        }
+        else if (this._dragScrollAmount < 0) {
+            this._model.selectionEnd[0] = 0;
+        }
+        if (this._model.selectionEnd[1] < this._buffer.length) {
+            var char = this._buffer.get(this._model.selectionEnd[1])[this._model.selectionEnd[0]];
+            if (char && char[2] === 0) {
+                this._model.selectionEnd[0]++;
+            }
+        }
+        if (!previousSelectionEnd ||
+            previousSelectionEnd[0] !== this._model.selectionEnd[0] ||
+            previousSelectionEnd[1] !== this._model.selectionEnd[1]) {
+            this.refresh(true);
+        }
+    };
+    SelectionManager.prototype._dragScroll = function () {
+        if (this._dragScrollAmount) {
+            this._terminal.scrollDisp(this._dragScrollAmount, false);
+            if (this._dragScrollAmount > 0) {
+                this._model.selectionEnd = [this._terminal.cols - 1, this._terminal.buffer.ydisp + this._terminal.rows];
+            }
+            else {
+                this._model.selectionEnd = [0, this._terminal.buffer.ydisp];
+            }
+            this.refresh();
+        }
+    };
+    SelectionManager.prototype._onMouseUp = function (event) {
+        this._removeMouseDownListeners();
+    };
+    SelectionManager.prototype._convertViewportColToCharacterIndex = function (bufferLine, coords) {
+        var charIndex = coords[0];
+        for (var i = 0; coords[0] >= i; i++) {
+            var char = bufferLine[i];
+            if (char[LINE_DATA_WIDTH_INDEX] === 0) {
+                charIndex--;
+            }
+        }
+        return charIndex;
+    };
+    SelectionManager.prototype.setSelection = function (col, row, length) {
+        this._model.clearSelection();
+        this._removeMouseDownListeners();
+        this._model.selectionStart = [col, row];
+        this._model.selectionStartLength = length;
+        this.refresh();
+    };
+    SelectionManager.prototype._getWordAt = function (coords) {
+        var bufferLine = this._buffer.get(coords[1]);
+        if (!bufferLine) {
+            return null;
+        }
+        var line = BufferLine_1.translateBufferLineToString(bufferLine, false);
+        var endIndex = this._convertViewportColToCharacterIndex(bufferLine, coords);
+        var startIndex = endIndex;
+        var charOffset = coords[0] - startIndex;
+        var leftWideCharCount = 0;
+        var rightWideCharCount = 0;
+        if (line.charAt(startIndex) === ' ') {
+            while (startIndex > 0 && line.charAt(startIndex - 1) === ' ') {
+                startIndex--;
+            }
+            while (endIndex < line.length && line.charAt(endIndex + 1) === ' ') {
+                endIndex++;
+            }
+        }
+        else {
+            var startCol = coords[0];
+            var endCol = coords[0];
+            if (bufferLine[startCol][LINE_DATA_WIDTH_INDEX] === 0) {
+                leftWideCharCount++;
+                startCol--;
+            }
+            if (bufferLine[endCol][LINE_DATA_WIDTH_INDEX] === 2) {
+                rightWideCharCount++;
+                endCol++;
+            }
+            while (startIndex > 0 && !this._isCharWordSeparator(line.charAt(startIndex - 1))) {
+                if (bufferLine[startCol - 1][LINE_DATA_WIDTH_INDEX] === 0) {
+                    leftWideCharCount++;
+                    startCol--;
+                }
+                startIndex--;
+                startCol--;
+            }
+            while (endIndex + 1 < line.length && !this._isCharWordSeparator(line.charAt(endIndex + 1))) {
+                if (bufferLine[endCol + 1][LINE_DATA_WIDTH_INDEX] === 2) {
+                    rightWideCharCount++;
+                    endCol++;
+                }
+                endIndex++;
+                endCol++;
+            }
+        }
+        var start = startIndex + charOffset - leftWideCharCount;
+        var length = Math.min(endIndex - startIndex + leftWideCharCount + rightWideCharCount + 1, this._terminal.cols);
+        return { start: start, length: length };
+    };
+    SelectionManager.prototype._selectWordAt = function (coords) {
+        var wordPosition = this._getWordAt(coords);
+        if (wordPosition) {
+            this._model.selectionStart = [wordPosition.start, coords[1]];
+            this._model.selectionStartLength = wordPosition.length;
+        }
+    };
+    SelectionManager.prototype._selectToWordAt = function (coords) {
+        var wordPosition = this._getWordAt(coords);
+        if (wordPosition) {
+            this._model.selectionEnd = [this._model.areSelectionValuesReversed() ? wordPosition.start : (wordPosition.start + wordPosition.length), coords[1]];
+        }
+    };
+    SelectionManager.prototype._isCharWordSeparator = function (char) {
+        return WORD_SEPARATORS.indexOf(char) >= 0;
+    };
+    SelectionManager.prototype._selectLineAt = function (line) {
+        this._model.selectionStart = [0, line];
+        this._model.selectionStartLength = this._terminal.cols;
+    };
+    return SelectionManager;
+}(EventEmitter_1.EventEmitter));
+exports.SelectionManager = SelectionManager;
+
+
+
+},{"./EventEmitter":6,"./SelectionModel":12,"./utils/Browser":15,"./utils/BufferLine":16,"./utils/Mouse":21}],12:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var SelectionModel = (function () {
+    function SelectionModel(_terminal) {
+        this._terminal = _terminal;
+        this.clearSelection();
+    }
+    SelectionModel.prototype.clearSelection = function () {
+        this.selectionStart = null;
+        this.selectionEnd = null;
+        this.isSelectAllActive = false;
+        this.selectionStartLength = 0;
+    };
+    Object.defineProperty(SelectionModel.prototype, "finalSelectionStart", {
+        get: function () {
+            if (this.isSelectAllActive) {
+                return [0, 0];
+            }
+            if (!this.selectionEnd || !this.selectionStart) {
+                return this.selectionStart;
+            }
+            return this.areSelectionValuesReversed() ? this.selectionEnd : this.selectionStart;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(SelectionModel.prototype, "finalSelectionEnd", {
+        get: function () {
+            if (this.isSelectAllActive) {
+                return [this._terminal.cols, this._terminal.buffer.ybase + this._terminal.rows - 1];
+            }
+            if (!this.selectionStart) {
+                return null;
+            }
+            if (!this.selectionEnd || this.areSelectionValuesReversed()) {
+                return [this.selectionStart[0] + this.selectionStartLength, this.selectionStart[1]];
+            }
+            if (this.selectionStartLength) {
+                if (this.selectionEnd[1] === this.selectionStart[1]) {
+                    return [Math.max(this.selectionStart[0] + this.selectionStartLength, this.selectionEnd[0]), this.selectionEnd[1]];
+                }
+            }
+            return this.selectionEnd;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    SelectionModel.prototype.areSelectionValuesReversed = function () {
+        var start = this.selectionStart;
+        var end = this.selectionEnd;
+        return start[1] > end[1] || (start[1] === end[1] && start[0] > end[0]);
+    };
+    SelectionModel.prototype.onTrim = function (amount) {
+        if (this.selectionStart) {
+            this.selectionStart[1] -= amount;
+        }
+        if (this.selectionEnd) {
+            this.selectionEnd[1] -= amount;
+        }
+        if (this.selectionEnd && this.selectionEnd[1] < 0) {
+            this.clearSelection();
+            return true;
+        }
+        if (this.selectionStart && this.selectionStart[1] < 0) {
+            this.selectionStart[1] = 0;
+        }
+        return false;
+    };
+    return SelectionModel;
+}());
+exports.SelectionModel = SelectionModel;
+
+
+
+},{}],13:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var Viewport = (function () {
+    function Viewport(terminal, viewportElement, scrollArea, charMeasure) {
+        var _this = this;
+        this.terminal = terminal;
+        this.viewportElement = viewportElement;
+        this.scrollArea = scrollArea;
+        this.charMeasure = charMeasure;
+        this.currentRowHeight = 0;
+        this.lastRecordedBufferLength = 0;
+        this.lastRecordedViewportHeight = 0;
+        this.terminal.on('scroll', this.syncScrollArea.bind(this));
+        this.terminal.on('resize', this.syncScrollArea.bind(this));
+        this.viewportElement.addEventListener('scroll', this.onScroll.bind(this));
+        setTimeout(function () { return _this.syncScrollArea(); }, 0);
+    }
+    Viewport.prototype.refresh = function () {
+        if (this.charMeasure.height > 0) {
+            var rowHeightChanged = this.charMeasure.height !== this.currentRowHeight;
+            if (rowHeightChanged) {
+                this.currentRowHeight = this.charMeasure.height;
+                this.viewportElement.style.lineHeight = this.charMeasure.height + 'px';
+                this.terminal.rowContainer.style.lineHeight = this.charMeasure.height + 'px';
+            }
+            var viewportHeightChanged = this.lastRecordedViewportHeight !== this.terminal.rows;
+            if (rowHeightChanged || viewportHeightChanged) {
+                this.lastRecordedViewportHeight = this.terminal.rows;
+                this.viewportElement.style.height = this.charMeasure.height * this.terminal.rows + 'px';
+                this.terminal.selectionContainer.style.height = this.viewportElement.style.height;
+            }
+            this.scrollArea.style.height = (this.charMeasure.height * this.lastRecordedBufferLength) + 'px';
+        }
+    };
+    Viewport.prototype.syncScrollArea = function () {
+        if (this.lastRecordedBufferLength !== this.terminal.buffer.lines.length) {
+            this.lastRecordedBufferLength = this.terminal.buffer.lines.length;
+            this.refresh();
+        }
+        else if (this.lastRecordedViewportHeight !== this.terminal.rows) {
+            this.refresh();
+        }
+        else {
+            if (this.charMeasure.height !== this.currentRowHeight) {
+                this.refresh();
+            }
+        }
+        var scrollTop = this.terminal.buffer.ydisp * this.currentRowHeight;
+        if (this.viewportElement.scrollTop !== scrollTop) {
+            this.viewportElement.scrollTop = scrollTop;
+        }
+    };
+    Viewport.prototype.onScroll = function (ev) {
+        var newRow = Math.round(this.viewportElement.scrollTop / this.currentRowHeight);
+        var diff = newRow - this.terminal.buffer.ydisp;
+        this.terminal.scrollDisp(diff, true);
+    };
+    Viewport.prototype.onWheel = function (ev) {
+        if (ev.deltaY === 0) {
+            return;
+        }
+        var multiplier = 1;
+        if (ev.deltaMode === WheelEvent.DOM_DELTA_LINE) {
+            multiplier = this.currentRowHeight;
+        }
+        else if (ev.deltaMode === WheelEvent.DOM_DELTA_PAGE) {
+            multiplier = this.currentRowHeight * this.terminal.rows;
+        }
+        this.viewportElement.scrollTop += ev.deltaY * multiplier;
+        ev.preventDefault();
+    };
+    ;
+    Viewport.prototype.onTouchStart = function (ev) {
+        this.lastTouchY = ev.touches[0].pageY;
+    };
+    ;
+    Viewport.prototype.onTouchMove = function (ev) {
+        var deltaY = this.lastTouchY - ev.touches[0].pageY;
+        this.lastTouchY = ev.touches[0].pageY;
+        if (deltaY === 0) {
+            return;
+        }
+        this.viewportElement.scrollTop += deltaY;
+        ev.preventDefault();
+    };
+    ;
+    return Viewport;
+}());
+exports.Viewport = Viewport;
+
+
+
+},{}],14:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+function prepareTextForTerminal(text, isMSWindows) {
+    if (isMSWindows) {
+        return text.replace(/\r?\n/g, '\r');
+    }
+    return text;
+}
+exports.prepareTextForTerminal = prepareTextForTerminal;
+function copyHandler(ev, term, selectionManager) {
+    if (term.browser.isMSIE) {
+        window.clipboardData.setData('Text', selectionManager.selectionText);
+    }
+    else {
+        ev.clipboardData.setData('text/plain', selectionManager.selectionText);
+    }
+    ev.preventDefault();
+}
+exports.copyHandler = copyHandler;
+function pasteHandler(ev, term) {
+    ev.stopPropagation();
+    var text;
+    var dispatchPaste = function (text) {
+        text = prepareTextForTerminal(text, term.browser.isMSWindows);
+        term.handler(text);
+        term.textarea.value = '';
+        term.emit('paste', text);
+        return term.cancel(ev);
+    };
+    if (term.browser.isMSIE) {
+        if (window.clipboardData) {
+            text = window.clipboardData.getData('Text');
+            dispatchPaste(text);
+        }
+    }
+    else {
+        if (ev.clipboardData) {
+            text = ev.clipboardData.getData('text/plain');
+            dispatchPaste(text);
+        }
+    }
+}
+exports.pasteHandler = pasteHandler;
+function moveTextAreaUnderMouseCursor(ev, textarea) {
+    textarea.style.position = 'fixed';
+    textarea.style.width = '20px';
+    textarea.style.height = '20px';
+    textarea.style.left = (ev.clientX - 10) + 'px';
+    textarea.style.top = (ev.clientY - 10) + 'px';
+    textarea.style.zIndex = '1000';
+    textarea.focus();
+    setTimeout(function () {
+        textarea.style.position = null;
+        textarea.style.width = null;
+        textarea.style.height = null;
+        textarea.style.left = null;
+        textarea.style.top = null;
+        textarea.style.zIndex = null;
+    }, 4);
+}
+exports.moveTextAreaUnderMouseCursor = moveTextAreaUnderMouseCursor;
+function rightClickHandler(ev, textarea, selectionManager) {
+    moveTextAreaUnderMouseCursor(ev, textarea);
+    textarea.value = selectionManager.selectionText;
+    textarea.select();
+}
+exports.rightClickHandler = rightClickHandler;
+
+
+
+},{}],15:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var Generic_1 = require("./Generic");
+var isNode = (typeof navigator === 'undefined') ? true : false;
+var userAgent = (isNode) ? 'node' : navigator.userAgent;
+var platform = (isNode) ? 'node' : navigator.platform;
+exports.isFirefox = !!~userAgent.indexOf('Firefox');
+exports.isMSIE = !!~userAgent.indexOf('MSIE') || !!~userAgent.indexOf('Trident');
+exports.isMac = Generic_1.contains(['Macintosh', 'MacIntel', 'MacPPC', 'Mac68K'], platform);
+exports.isIpad = platform === 'iPad';
+exports.isIphone = platform === 'iPhone';
+exports.isMSWindows = Generic_1.contains(['Windows', 'Win16', 'Win32', 'WinCE'], platform);
+exports.isLinux = platform.indexOf('Linux') >= 0;
+
+
+
+},{"./Generic":20}],16:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var LINE_DATA_CHAR_INDEX = 1;
+var LINE_DATA_WIDTH_INDEX = 2;
+function translateBufferLineToString(line, trimRight, startCol, endCol) {
+    if (startCol === void 0) { startCol = 0; }
+    if (endCol === void 0) { endCol = null; }
+    var lineString = '';
+    var widthAdjustedStartCol = startCol;
+    var widthAdjustedEndCol = endCol;
+    for (var i = 0; i < line.length; i++) {
+        var char = line[i];
+        lineString += char[LINE_DATA_CHAR_INDEX];
+        if (char[LINE_DATA_WIDTH_INDEX] === 0) {
+            if (startCol >= i) {
+                widthAdjustedStartCol--;
+            }
+            if (endCol >= i) {
+                widthAdjustedEndCol--;
+            }
+        }
+    }
+    var finalEndCol = widthAdjustedEndCol || line.length;
+    if (trimRight) {
+        var rightWhitespaceIndex = lineString.search(/\s+$/);
+        if (rightWhitespaceIndex !== -1) {
+            finalEndCol = Math.min(finalEndCol, rightWhitespaceIndex);
+        }
+        if (finalEndCol <= widthAdjustedStartCol) {
+            return '';
+        }
+    }
+    return lineString.substring(widthAdjustedStartCol, finalEndCol);
+}
+exports.translateBufferLineToString = translateBufferLineToString;
+
+
+
+},{}],17:[function(require,module,exports){
+"use strict";
+var __extends = (this && this.__extends) || (function () {
+    var extendStatics = Object.setPrototypeOf ||
+        ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
+        function (d, b) { for (var p in b) if (b.hasOwnProperty(p)) d[p] = b[p]; };
+    return function (d, b) {
+        extendStatics(d, b);
+        function __() { this.constructor = d; }
+        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+var EventEmitter_js_1 = require("../EventEmitter.js");
+var CharMeasure = (function (_super) {
+    __extends(CharMeasure, _super);
+    function CharMeasure(document, parentElement) {
+        var _this = _super.call(this) || this;
+        _this._document = document;
+        _this._parentElement = parentElement;
+        return _this;
+    }
+    Object.defineProperty(CharMeasure.prototype, "width", {
+        get: function () {
+            return this._width;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(CharMeasure.prototype, "height", {
+        get: function () {
+            return this._height;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    CharMeasure.prototype.measure = function () {
+        var _this = this;
+        if (!this._measureElement) {
+            this._measureElement = this._document.createElement('span');
+            this._measureElement.style.position = 'absolute';
+            this._measureElement.style.top = '0';
+            this._measureElement.style.left = '-9999em';
+            this._measureElement.textContent = 'W';
+            this._measureElement.setAttribute('aria-hidden', 'true');
+            this._parentElement.appendChild(this._measureElement);
+            setTimeout(function () { return _this._doMeasure(); }, 0);
+        }
+        else {
+            this._doMeasure();
+        }
+    };
+    CharMeasure.prototype._doMeasure = function () {
+        var geometry = this._measureElement.getBoundingClientRect();
+        if (geometry.width === 0 || geometry.height === 0) {
+            return;
+        }
+        if (this._width !== geometry.width || this._height !== geometry.height) {
+            this._width = geometry.width;
+            this._height = geometry.height;
+            this.emit('charsizechanged');
+        }
+    };
+    return CharMeasure;
+}(EventEmitter_js_1.EventEmitter));
+exports.CharMeasure = CharMeasure;
+
+
+
+},{"../EventEmitter.js":6}],18:[function(require,module,exports){
+"use strict";
+var __extends = (this && this.__extends) || (function () {
+    var extendStatics = Object.setPrototypeOf ||
+        ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
+        function (d, b) { for (var p in b) if (b.hasOwnProperty(p)) d[p] = b[p]; };
+    return function (d, b) {
+        extendStatics(d, b);
+        function __() { this.constructor = d; }
+        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+var EventEmitter_1 = require("../EventEmitter");
+var CircularList = (function (_super) {
+    __extends(CircularList, _super);
+    function CircularList(maxLength) {
+        var _this = _super.call(this) || this;
+        _this._array = new Array(maxLength);
+        _this._startIndex = 0;
+        _this._length = 0;
+        return _this;
+    }
+    Object.defineProperty(CircularList.prototype, "maxLength", {
+        get: function () {
+            return this._array.length;
+        },
+        set: function (newMaxLength) {
+            var newArray = new Array(newMaxLength);
+            for (var i = 0; i < Math.min(newMaxLength, this.length); i++) {
+                newArray[i] = this._array[this._getCyclicIndex(i)];
+            }
+            this._array = newArray;
+            this._startIndex = 0;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(CircularList.prototype, "length", {
+        get: function () {
+            return this._length;
+        },
+        set: function (newLength) {
+            if (newLength > this._length) {
+                for (var i = this._length; i < newLength; i++) {
+                    this._array[i] = undefined;
+                }
+            }
+            this._length = newLength;
+        },
+        enumerable: true,
+        configurable: true
+    });
+    Object.defineProperty(CircularList.prototype, "forEach", {
+        get: function () {
+            var _this = this;
+            return function (callbackfn) {
+                var i = 0;
+                var length = _this.length;
+                for (var i_1 = 0; i_1 < length; i_1++) {
+                    callbackfn(_this.get(i_1), i_1);
+                }
+            };
+        },
+        enumerable: true,
+        configurable: true
+    });
+    CircularList.prototype.get = function (index) {
+        return this._array[this._getCyclicIndex(index)];
+    };
+    CircularList.prototype.set = function (index, value) {
+        this._array[this._getCyclicIndex(index)] = value;
+    };
+    CircularList.prototype.push = function (value) {
+        this._array[this._getCyclicIndex(this._length)] = value;
+        if (this._length === this.maxLength) {
+            this._startIndex++;
+            if (this._startIndex === this.maxLength) {
+                this._startIndex = 0;
+            }
+            this.emit('trim', 1);
+        }
+        else {
+            this._length++;
+        }
+    };
+    CircularList.prototype.pop = function () {
+        return this._array[this._getCyclicIndex(this._length-- - 1)];
+    };
+    CircularList.prototype.splice = function (start, deleteCount) {
+        var items = [];
+        for (var _i = 2; _i < arguments.length; _i++) {
+            items[_i - 2] = arguments[_i];
+        }
+        if (deleteCount) {
+            for (var i = start; i < this._length - deleteCount; i++) {
+                this._array[this._getCyclicIndex(i)] = this._array[this._getCyclicIndex(i + deleteCount)];
+            }
+            this._length -= deleteCount;
+        }
+        if (items && items.length) {
+            for (var i = this._length - 1; i >= start; i--) {
+                this._array[this._getCyclicIndex(i + items.length)] = this._array[this._getCyclicIndex(i)];
+            }
+            for (var i = 0; i < items.length; i++) {
+                this._array[this._getCyclicIndex(start + i)] = items[i];
+            }
+            if (this._length + items.length > this.maxLength) {
+                var countToTrim = (this._length + items.length) - this.maxLength;
+                this._startIndex += countToTrim;
+                this._length = this.maxLength;
+                this.emit('trim', countToTrim);
+            }
+            else {
+                this._length += items.length;
+            }
+        }
+    };
+    CircularList.prototype.trimStart = function (count) {
+        if (count > this._length) {
+            count = this._length;
+        }
+        this._startIndex += count;
+        this._length -= count;
+        this.emit('trim', count);
+    };
+    CircularList.prototype.shiftElements = function (start, count, offset) {
+        if (count <= 0) {
+            return;
+        }
+        if (start < 0 || start >= this._length) {
+            throw new Error('start argument out of range');
+        }
+        if (start + offset < 0) {
+            throw new Error('Cannot shift elements in list beyond index 0');
+        }
+        if (offset > 0) {
+            for (var i = count - 1; i >= 0; i--) {
+                this.set(start + i + offset, this.get(start + i));
+            }
+            var expandListBy = (start + count + offset) - this._length;
+            if (expandListBy > 0) {
+                this._length += expandListBy;
+                while (this._length > this.maxLength) {
+                    this._length--;
+                    this._startIndex++;
+                    this.emit('trim', 1);
+                }
+            }
+        }
+        else {
+            for (var i = 0; i < count; i++) {
+                this.set(start + i + offset, this.get(start + i));
+            }
+        }
+    };
+    CircularList.prototype._getCyclicIndex = function (index) {
+        return (this._startIndex + index) % this.maxLength;
+    };
+    return CircularList;
+}(EventEmitter_1.EventEmitter));
+exports.CircularList = CircularList;
+
+
+
+},{"../EventEmitter":6}],19:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var DomElementObjectPool = (function () {
+    function DomElementObjectPool(type) {
+        this.type = type;
+        this._type = type;
+        this._pool = [];
+        this._inUse = {};
+    }
+    DomElementObjectPool.prototype.acquire = function () {
+        var element;
+        if (this._pool.length === 0) {
+            element = this._createNew();
+        }
+        else {
+            element = this._pool.pop();
+        }
+        this._inUse[element.getAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE)] = element;
+        return element;
+    };
+    DomElementObjectPool.prototype.release = function (element) {
+        if (!this._inUse[element.getAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE)]) {
+            throw new Error('Could not release an element not yet acquired');
+        }
+        delete this._inUse[element.getAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE)];
+        this._cleanElement(element);
+        this._pool.push(element);
+    };
+    DomElementObjectPool.prototype._createNew = function () {
+        var element = document.createElement(this._type);
+        var id = DomElementObjectPool._objectCount++;
+        element.setAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE, id.toString(10));
+        return element;
+    };
+    DomElementObjectPool.prototype._cleanElement = function (element) {
+        element.className = '';
+        element.innerHTML = '';
+    };
+    return DomElementObjectPool;
+}());
+DomElementObjectPool.OBJECT_ID_ATTRIBUTE = 'data-obj-id';
+DomElementObjectPool._objectCount = 0;
+exports.DomElementObjectPool = DomElementObjectPool;
+
+
+
+},{}],20:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+function contains(arr, el) {
+    return arr.indexOf(el) >= 0;
+}
+exports.contains = contains;
+;
+
+
+
+},{}],21:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+function getCoordsRelativeToElement(event, element) {
+    if (event.pageX == null) {
+        return null;
+    }
+    var x = event.pageX;
+    var y = event.pageY;
+    while (element && element !== self.document.documentElement) {
+        x -= element.offsetLeft;
+        y -= element.offsetTop;
+        element = 'offsetParent' in element ? element.offsetParent : element.parentElement;
+    }
+    return [x, y];
+}
+exports.getCoordsRelativeToElement = getCoordsRelativeToElement;
+function getCoords(event, rowContainer, charMeasure, colCount, rowCount, isSelection) {
+    if (!charMeasure.width || !charMeasure.height) {
+        return null;
+    }
+    var coords = getCoordsRelativeToElement(event, rowContainer);
+    if (!coords) {
+        return null;
+    }
+    coords[0] = Math.ceil((coords[0] + (isSelection ? charMeasure.width / 2 : 0)) / charMeasure.width);
+    coords[1] = Math.ceil(coords[1] / charMeasure.height);
+    coords[0] = Math.min(Math.max(coords[0], 1), colCount + 1);
+    coords[1] = Math.min(Math.max(coords[1], 1), rowCount + 1);
+    return coords;
+}
+exports.getCoords = getCoords;
+function getRawByteCoords(event, rowContainer, charMeasure, colCount, rowCount) {
+    var coords = getCoords(event, rowContainer, charMeasure, colCount, rowCount);
+    var x = coords[0];
+    var y = coords[1];
+    x += 32;
+    y += 32;
+    return { x: x, y: y };
+}
+exports.getRawByteCoords = getRawByteCoords;
+
+
+
+},{}],22:[function(require,module,exports){
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+var BufferSet_1 = require("./BufferSet");
+var CompositionHelper_1 = require("./CompositionHelper");
+var EventEmitter_1 = require("./EventEmitter");
+var Viewport_1 = require("./Viewport");
+var Clipboard_1 = require("./handlers/Clipboard");
+var EscapeSequences_1 = require("./EscapeSequences");
+var InputHandler_1 = require("./InputHandler");
+var Parser_1 = require("./Parser");
+var Renderer_1 = require("./Renderer");
+var Linkifier_1 = require("./Linkifier");
+var SelectionManager_1 = require("./SelectionManager");
+var CharMeasure_1 = require("./utils/CharMeasure");
+var Browser = require("./utils/Browser");
+var Mouse_1 = require("./utils/Mouse");
+var BufferLine_1 = require("./utils/BufferLine");
+var document = (typeof window != 'undefined') ? window.document : null;
+var WRITE_BUFFER_PAUSE_THRESHOLD = 5;
+var WRITE_BATCH_SIZE = 300;
+var CURSOR_BLINK_INTERVAL = 600;
+function Terminal(options) {
+    var self = this;
+    if (!(this instanceof Terminal)) {
+        return new Terminal(arguments[0], arguments[1], arguments[2]);
+    }
+    self.browser = Browser;
+    self.cancel = Terminal.cancel;
+    EventEmitter_1.EventEmitter.call(this);
+    if (typeof options === 'number') {
+        options = {
+            cols: arguments[0],
+            rows: arguments[1],
+            handler: arguments[2]
+        };
+    }
+    options = options || {};
+    Object.keys(Terminal.defaults).forEach(function (key) {
+        if (options[key] == null) {
+            options[key] = Terminal.options[key];
+            if (Terminal[key] !== Terminal.defaults[key]) {
+                options[key] = Terminal[key];
+            }
+        }
+        self[key] = options[key];
+    });
+    if (options.colors.length === 8) {
+        options.colors = options.colors.concat(Terminal._colors.slice(8));
+    }
+    else if (options.colors.length === 16) {
+        options.colors = options.colors.concat(Terminal._colors.slice(16));
+    }
+    else if (options.colors.length === 10) {
+        options.colors = options.colors.slice(0, -2).concat(Terminal._colors.slice(8, -2), options.colors.slice(-2));
+    }
+    else if (options.colors.length === 18) {
+        options.colors = options.colors.concat(Terminal._colors.slice(16, -2), options.colors.slice(-2));
+    }
+    this.colors = options.colors;
+    this.options = options;
+    this.parent = options.body || options.parent || (document ? document.getElementsByTagName('body')[0] : null);
+    this.cols = options.cols || options.geometry[0];
+    this.rows = options.rows || options.geometry[1];
+    this.geometry = [this.cols, this.rows];
+    if (options.handler) {
+        this.on('data', options.handler);
+    }
+    this.cursorState = 0;
+    this.cursorHidden = false;
+    this.convertEol;
+    this.queue = '';
+    this.customKeyEventHandler = null;
+    this.cursorBlinkInterval = null;
+    this.applicationKeypad = false;
+    this.applicationCursor = false;
+    this.originMode = false;
+    this.insertMode = false;
+    this.wraparoundMode = true;
+    this.charset = null;
+    this.gcharset = null;
+    this.glevel = 0;
+    this.charsets = [null];
+    this.decLocator;
+    this.x10Mouse;
+    this.vt200Mouse;
+    this.vt300Mouse;
+    this.normalMouse;
+    this.mouseEvents;
+    this.sendFocus;
+    this.utfMouse;
+    this.sgrMouse;
+    this.urxvtMouse;
+    this.element;
+    this.children;
+    this.refreshStart;
+    this.refreshEnd;
+    this.savedX;
+    this.savedY;
+    this.savedCols;
+    this.readable = true;
+    this.writable = true;
+    this.defAttr = (0 << 18) | (257 << 9) | (256 << 0);
+    this.curAttr = this.defAttr;
+    this.params = [];
+    this.currentParam = 0;
+    this.prefix = '';
+    this.postfix = '';
+    this.inputHandler = new InputHandler_1.InputHandler(this);
+    this.parser = new Parser_1.Parser(this.inputHandler, this);
+    this.renderer = this.renderer || null;
+    this.selectionManager = this.selectionManager || null;
+    this.linkifier = this.linkifier || new Linkifier_1.Linkifier();
+    this.writeBuffer = [];
+    this.writeInProgress = false;
+    this.xoffSentToCatchUp = false;
+    this.writeStopped = false;
+    this.surrogate_high = '';
+    this.buffers = new BufferSet_1.BufferSet(this);
+    this.buffer = this.buffers.active;
+    this.buffers.on('activate', function (buffer) {
+        this._terminal.buffer = buffer;
+    });
+    if (this.selectionManager) {
+        this.selectionManager.setBuffer(this.buffer.lines);
+    }
+    this.setupStops();
+    this.userScrolling = false;
+}
+inherits(Terminal, EventEmitter_1.EventEmitter);
+Terminal.prototype.eraseAttr = function () {
+    return (this.defAttr & ~0x1ff) | (this.curAttr & 0x1ff);
+};
+Terminal.tangoColors = [
+    '#2e3436',
+    '#cc0000',
+    '#4e9a06',
+    '#c4a000',
+    '#3465a4',
+    '#75507b',
+    '#06989a',
+    '#d3d7cf',
+    '#555753',
+    '#ef2929',
+    '#8ae234',
+    '#fce94f',
+    '#729fcf',
+    '#ad7fa8',
+    '#34e2e2',
+    '#eeeeec'
+];
+Terminal.colors = (function () {
+    var colors = Terminal.tangoColors.slice(), r = [0x00, 0x5f, 0x87, 0xaf, 0xd7, 0xff], i;
+    i = 0;
+    for (; i < 216; i++) {
+        out(r[(i / 36) % 6 | 0], r[(i / 6) % 6 | 0], r[i % 6]);
+    }
+    i = 0;
+    for (; i < 24; i++) {
+        r = 8 + i * 10;
+        out(r, r, r);
+    }
+    function out(r, g, b) {
+        colors.push('#' + hex(r) + hex(g) + hex(b));
+    }
+    function hex(c) {
+        c = c.toString(16);
+        return c.length < 2 ? '0' + c : c;
+    }
+    return colors;
+})();
+Terminal._colors = Terminal.colors.slice();
+Terminal.vcolors = (function () {
+    var out = [], colors = Terminal.colors, i = 0, color;
+    for (; i < 256; i++) {
+        color = parseInt(colors[i].substring(1), 16);
+        out.push([
+            (color >> 16) & 0xff,
+            (color >> 8) & 0xff,
+            color & 0xff
+        ]);
+    }
+    return out;
+})();
+Terminal.defaults = {
+    colors: Terminal.colors,
+    theme: 'default',
+    convertEol: false,
+    termName: 'xterm',
+    geometry: [80, 24],
+    cursorBlink: false,
+    cursorStyle: 'block',
+    visualBell: false,
+    popOnBell: false,
+    scrollback: 1000,
+    screenKeys: false,
+    debug: false,
+    cancelEvents: false,
+    disableStdin: false,
+    useFlowControl: false,
+    tabStopWidth: 8
+};
+Terminal.options = {};
+Terminal.focus = null;
+each(keys(Terminal.defaults), function (key) {
+    Terminal[key] = Terminal.defaults[key];
+    Terminal.options[key] = Terminal.defaults[key];
+});
+Terminal.prototype.focus = function () {
+    return this.textarea.focus();
+};
+Terminal.prototype.getOption = function (key) {
+    if (!(key in Terminal.defaults)) {
+        throw new Error('No option with key "' + key + '"');
+    }
+    if (typeof this.options[key] !== 'undefined') {
+        return this.options[key];
+    }
+    return this[key];
+};
+Terminal.prototype.setOption = function (key, value) {
+    if (!(key in Terminal.defaults)) {
+        throw new Error('No option with key "' + key + '"');
+    }
+    switch (key) {
+        case 'scrollback':
+            if (value < this.rows) {
+                var msg = 'Setting the scrollback value less than the number of rows ';
+                msg += "(" + this.rows + ") is not allowed.";
+                console.warn(msg);
+                return false;
+            }
+            if (this.options[key] !== value) {
+                if (this.buffer.lines.length > value) {
+                    var amountToTrim = this.buffer.lines.length - value;
+                    var needsRefresh = (this.buffer.ydisp - amountToTrim < 0);
+                    this.buffer.lines.trimStart(amountToTrim);
+                    this.buffer.ybase = Math.max(this.buffer.ybase - amountToTrim, 0);
+                    this.buffer.ydisp = Math.max(this.buffer.ydisp - amountToTrim, 0);
+                    if (needsRefresh) {
+                        this.refresh(0, this.rows - 1);
+                    }
+                }
+                this.buffer.lines.maxLength = value;
+                this.viewport.syncScrollArea();
+            }
+            break;
+    }
+    this[key] = value;
+    this.options[key] = value;
+    switch (key) {
+        case 'cursorBlink':
+            this.setCursorBlinking(value);
+            break;
+        case 'cursorStyle':
+            this.element.classList.toggle("xterm-cursor-style-block", value === 'block');
+            this.element.classList.toggle("xterm-cursor-style-underline", value === 'underline');
+            this.element.classList.toggle("xterm-cursor-style-bar", value === 'bar');
+            break;
+        case 'tabStopWidth':
+            this.setupStops();
+            break;
+    }
+};
+Terminal.prototype.restartCursorBlinking = function () {
+    this.setCursorBlinking(this.options.cursorBlink);
+};
+Terminal.prototype.setCursorBlinking = function (enabled) {
+    this.element.classList.toggle('xterm-cursor-blink', enabled);
+    this.clearCursorBlinkingInterval();
+    if (enabled) {
+        var self = this;
+        this.cursorBlinkInterval = setInterval(function () {
+            self.element.classList.toggle('xterm-cursor-blink-on');
+        }, CURSOR_BLINK_INTERVAL);
+    }
+};
+Terminal.prototype.clearCursorBlinkingInterval = function () {
+    this.element.classList.remove('xterm-cursor-blink-on');
+    if (this.cursorBlinkInterval) {
+        clearInterval(this.cursorBlinkInterval);
+        this.cursorBlinkInterval = null;
+    }
+};
+Terminal.bindFocus = function (term) {
+    on(term.textarea, 'focus', function (ev) {
+        if (term.sendFocus) {
+            term.send(EscapeSequences_1.C0.ESC + '[I');
+        }
+        term.element.classList.add('focus');
+        term.showCursor();
+        term.restartCursorBlinking.apply(term);
+        Terminal.focus = term;
+        term.emit('focus', { terminal: term });
+    });
+};
+Terminal.prototype.blur = function () {
+    return this.textarea.blur();
+};
+Terminal.bindBlur = function (term) {
+    on(term.textarea, 'blur', function (ev) {
+        term.refresh(term.buffer.y, term.buffer.y);
+        if (term.sendFocus) {
+            term.send(EscapeSequences_1.C0.ESC + '[O');
+        }
+        term.element.classList.remove('focus');
+        term.clearCursorBlinkingInterval.apply(term);
+        Terminal.focus = null;
+        term.emit('blur', { terminal: term });
+    });
+};
+Terminal.prototype.initGlobal = function () {
+    var _this = this;
+    var term = this;
+    Terminal.bindKeys(this);
+    Terminal.bindFocus(this);
+    Terminal.bindBlur(this);
+    on(this.element, 'copy', function (event) {
+        if (!term.hasSelection()) {
+            return;
+        }
+        Clipboard_1.copyHandler(event, term, _this.selectionManager);
+    });
+    var pasteHandlerWrapper = function (event) { return Clipboard_1.pasteHandler(event, term); };
+    on(this.textarea, 'paste', pasteHandlerWrapper);
+    on(this.element, 'paste', pasteHandlerWrapper);
+    if (term.browser.isFirefox) {
+        on(this.element, 'mousedown', function (event) {
+            if (event.button == 2) {
+                Clipboard_1.rightClickHandler(event, _this.textarea, _this.selectionManager);
+            }
+        });
+    }
+    else {
+        on(this.element, 'contextmenu', function (event) {
+            Clipboard_1.rightClickHandler(event, _this.textarea, _this.selectionManager);
+        });
+    }
+    if (term.browser.isLinux) {
+        on(this.element, 'auxclick', function (event) {
+            if (event.button === 1) {
+                Clipboard_1.moveTextAreaUnderMouseCursor(event, _this.textarea, _this.selectionManager);
+            }
+        });
+    }
+};
+Terminal.bindKeys = function (term) {
+    on(term.element, 'keydown', function (ev) {
+        if (document.activeElement != this) {
+            return;
+        }
+        term.keyDown(ev);
+    }, true);
+    on(term.element, 'keypress', function (ev) {
+        if (document.activeElement != this) {
+            return;
+        }
+        term.keyPress(ev);
+    }, true);
+    on(term.element, 'keyup', function (ev) {
+        if (!wasMondifierKeyOnlyEvent(ev)) {
+            term.focus(term);
+        }
+    }, true);
+    on(term.textarea, 'keydown', function (ev) {
+        term.keyDown(ev);
+    }, true);
+    on(term.textarea, 'keypress', function (ev) {
+        term.keyPress(ev);
+        this.value = '';
+    }, true);
+    on(term.textarea, 'compositionstart', term.compositionHelper.compositionstart.bind(term.compositionHelper));
+    on(term.textarea, 'compositionupdate', term.compositionHelper.compositionupdate.bind(term.compositionHelper));
+    on(term.textarea, 'compositionend', term.compositionHelper.compositionend.bind(term.compositionHelper));
+    term.on('refresh', term.compositionHelper.updateCompositionElements.bind(term.compositionHelper));
+    term.on('refresh', function (data) {
+        term.queueLinkification(data.start, data.end);
+    });
+};
+Terminal.prototype.insertRow = function (row) {
+    if (typeof row != 'object') {
+        row = document.createElement('div');
+    }
+    this.rowContainer.appendChild(row);
+    this.children.push(row);
+    return row;
+};
+Terminal.prototype.open = function (parent, focus) {
+    var _this = this;
+    var self = this, i = 0, div;
+    this.parent = parent || this.parent;
+    if (!this.parent) {
+        throw new Error('Terminal requires a parent element.');
+    }
+    this.context = this.parent.ownerDocument.defaultView;
+    this.document = this.parent.ownerDocument;
+    this.body = this.document.getElementsByTagName('body')[0];
+    this.element = this.document.createElement('div');
+    this.element.classList.add('terminal');
+    this.element.classList.add('xterm');
+    this.element.classList.add('xterm-theme-' + this.theme);
+    this.element.classList.add("xterm-cursor-style-" + this.options.cursorStyle);
+    this.setCursorBlinking(this.options.cursorBlink);
+    this.element.setAttribute('tabindex', 0);
+    this.viewportElement = document.createElement('div');
+    this.viewportElement.classList.add('xterm-viewport');
+    this.element.appendChild(this.viewportElement);
+    this.viewportScrollArea = document.createElement('div');
+    this.viewportScrollArea.classList.add('xterm-scroll-area');
+    this.viewportElement.appendChild(this.viewportScrollArea);
+    this.selectionContainer = document.createElement('div');
+    this.selectionContainer.classList.add('xterm-selection');
+    this.element.appendChild(this.selectionContainer);
+    this.rowContainer = document.createElement('div');
+    this.rowContainer.classList.add('xterm-rows');
+    this.element.appendChild(this.rowContainer);
+    this.children = [];
+    this.linkifier.attachToDom(document, this.children);
+    this.helperContainer = document.createElement('div');
+    this.helperContainer.classList.add('xterm-helpers');
+    this.element.appendChild(this.helperContainer);
+    this.textarea = document.createElement('textarea');
+    this.textarea.classList.add('xterm-helper-textarea');
+    this.textarea.setAttribute('autocorrect', 'off');
+    this.textarea.setAttribute('autocapitalize', 'off');
+    this.textarea.setAttribute('spellcheck', 'false');
+    this.textarea.tabIndex = 0;
+    this.textarea.addEventListener('focus', function () {
+        self.emit('focus', { terminal: self });
+    });
+    this.textarea.addEventListener('blur', function () {
+        self.emit('blur', { terminal: self });
+    });
+    this.helperContainer.appendChild(this.textarea);
+    this.compositionView = document.createElement('div');
+    this.compositionView.classList.add('composition-view');
+    this.compositionHelper = new CompositionHelper_1.CompositionHelper(this.textarea, this.compositionView, this);
+    this.helperContainer.appendChild(this.compositionView);
+    this.charSizeStyleElement = document.createElement('style');
+    this.helperContainer.appendChild(this.charSizeStyleElement);
+    for (; i < this.rows; i++) {
+        this.insertRow();
+    }
+    this.parent.appendChild(this.element);
+    this.charMeasure = new CharMeasure_1.CharMeasure(document, this.helperContainer);
+    this.charMeasure.on('charsizechanged', function () {
+        self.updateCharSizeStyles();
+    });
+    this.charMeasure.measure();
+    this.viewport = new Viewport_1.Viewport(this, this.viewportElement, this.viewportScrollArea, this.charMeasure);
+    this.renderer = new Renderer_1.Renderer(this);
+    this.selectionManager = new SelectionManager_1.SelectionManager(this, this.buffer.lines, this.rowContainer, this.charMeasure);
+    this.selectionManager.on('refresh', function (data) {
+        _this.renderer.refreshSelection(data.start, data.end);
+    });
+    this.selectionManager.on('newselection', function (text) {
+        _this.textarea.value = text;
+        _this.textarea.focus();
+        _this.textarea.select();
+    });
+    this.on('scroll', function () { return _this.selectionManager.refresh(); });
+    this.viewportElement.addEventListener('scroll', function () { return _this.selectionManager.refresh(); });
+    this.refresh(0, this.rows - 1);
+    this.initGlobal();
+    if (typeof focus == 'undefined') {
+        var message = 'You did not pass the `focus` argument in `Terminal.prototype.open()`.\n';
+        message += 'The `focus` argument now defaults to `true` but starting with xterm.js 3.0 ';
+        message += 'it will default to `false`.';
+        console.warn(message);
+        focus = true;
+    }
+    if (focus) {
+        this.focus();
+    }
+    this.bindMouse();
+    this.emit('open');
+};
+Terminal.loadAddon = function (addon, callback) {
+    if (typeof exports === 'object' && typeof module === 'object') {
+        return require('./addons/' + addon + '/' + addon);
+    }
+    else if (typeof define == 'function') {
+        return require(['./addons/' + addon + '/' + addon], callback);
+    }
+    else {
+        console.error('Cannot load a module without a CommonJS or RequireJS environment.');
+        return false;
+    }
+};
+Terminal.prototype.updateCharSizeStyles = function () {
+    this.charSizeStyleElement.textContent =
+        ".xterm-wide-char{width:" + this.charMeasure.width * 2 + "px;}" +
+            (".xterm-normal-char{width:" + this.charMeasure.width + "px;}") +
+            (".xterm-rows > div{height:" + this.charMeasure.height + "px;}");
+};
+Terminal.prototype.bindMouse = function () {
+    var el = this.element, self = this, pressed = 32;
+    function sendButton(ev) {
+        var button, pos;
+        button = getButton(ev);
+        pos = Mouse_1.getRawByteCoords(ev, self.rowContainer, self.charMeasure, self.cols, self.rows);
+        if (!pos)
+            return;
+        sendEvent(button, pos);
+        switch (ev.overrideType || ev.type) {
+            case 'mousedown':
+                pressed = button;
+                break;
+            case 'mouseup':
+                pressed = 32;
+                break;
+            case 'wheel':
+                break;
+        }
+    }
+    function sendMove(ev) {
+        var button = pressed, pos;
+        pos = Mouse_1.getRawByteCoords(ev, self.rowContainer, self.charMeasure, self.cols, self.rows);
+        if (!pos)
+            return;
+        button += 32;
+        sendEvent(button, pos);
+    }
+    function encode(data, ch) {
+        if (!self.utfMouse) {
+            if (ch === 255)
+                return data.push(0);
+            if (ch > 127)
+                ch = 127;
+            data.push(ch);
+        }
+        else {
+            if (ch === 2047)
+                return data.push(0);
+            if (ch < 127) {
+                data.push(ch);
+            }
+            else {
+                if (ch > 2047)
+                    ch = 2047;
+                data.push(0xC0 | (ch >> 6));
+                data.push(0x80 | (ch & 0x3F));
+            }
+        }
+    }
+    function sendEvent(button, pos) {
+        if (self.vt300Mouse) {
+            button &= 3;
+            pos.x -= 32;
+            pos.y -= 32;
+            var data = EscapeSequences_1.C0.ESC + '[24';
+            if (button === 0)
+                data += '1';
+            else if (button === 1)
+                data += '3';
+            else if (button === 2)
+                data += '5';
+            else if (button === 3)
+                return;
+            else
+                data += '0';
+            data += '~[' + pos.x + ',' + pos.y + ']\r';
+            self.send(data);
+            return;
+        }
+        if (self.decLocator) {
+            button &= 3;
+            pos.x -= 32;
+            pos.y -= 32;
+            if (button === 0)
+                button = 2;
+            else if (button === 1)
+                button = 4;
+            else if (button === 2)
+                button = 6;
+            else if (button === 3)
+                button = 3;
+            self.send(EscapeSequences_1.C0.ESC + '['
+                + button
+                + ';'
+                + (button === 3 ? 4 : 0)
+                + ';'
+                + pos.y
+                + ';'
+                + pos.x
+                + ';'
+                + (pos.page || 0)
+                + '&w');
+            return;
+        }
+        if (self.urxvtMouse) {
+            pos.x -= 32;
+            pos.y -= 32;
+            pos.x++;
+            pos.y++;
+            self.send(EscapeSequences_1.C0.ESC + '[' + button + ';' + pos.x + ';' + pos.y + 'M');
+            return;
+        }
+        if (self.sgrMouse) {
+            pos.x -= 32;
+            pos.y -= 32;
+            self.send(EscapeSequences_1.C0.ESC + '[<'
+                + (((button & 3) === 3 ? button & ~3 : button) - 32)
+                + ';'
+                + pos.x
+                + ';'
+                + pos.y
+                + ((button & 3) === 3 ? 'm' : 'M'));
+            return;
+        }
+        var data = [];
+        encode(data, button);
+        encode(data, pos.x);
+        encode(data, pos.y);
+        self.send(EscapeSequences_1.C0.ESC + '[M' + String.fromCharCode.apply(String, data));
+    }
+    function getButton(ev) {
+        var button, shift, meta, ctrl, mod;
+        switch (ev.overrideType || ev.type) {
+            case 'mousedown':
+                button = ev.button != null
+                    ? +ev.button
+                    : ev.which != null
+                        ? ev.which - 1
+                        : null;
+                if (self.browser.isMSIE) {
+                    button = button === 1 ? 0 : button === 4 ? 1 : button;
+                }
+                break;
+            case 'mouseup':
+                button = 3;
+                break;
+            case 'DOMMouseScroll':
+                button = ev.detail < 0
+                    ? 64
+                    : 65;
+                break;
+            case 'wheel':
+                button = ev.wheelDeltaY > 0
+                    ? 64
+                    : 65;
+                break;
+        }
+        shift = ev.shiftKey ? 4 : 0;
+        meta = ev.metaKey ? 8 : 0;
+        ctrl = ev.ctrlKey ? 16 : 0;
+        mod = shift | meta | ctrl;
+        if (self.vt200Mouse) {
+            mod &= ctrl;
+        }
+        else if (!self.normalMouse) {
+            mod = 0;
+        }
+        button = (32 + (mod << 2)) + button;
+        return button;
+    }
+    on(el, 'mousedown', function (ev) {
+        ev.preventDefault();
+        self.focus();
+        if (!self.mouseEvents)
+            return;
+        sendButton(ev);
+        if (self.vt200Mouse) {
+            ev.overrideType = 'mouseup';
+            sendButton(ev);
+            return self.cancel(ev);
+        }
+        if (self.normalMouse)
+            on(self.document, 'mousemove', sendMove);
+        if (!self.x10Mouse) {
+            on(self.document, 'mouseup', function up(ev) {
+                sendButton(ev);
+                if (self.normalMouse)
+                    off(self.document, 'mousemove', sendMove);
+                off(self.document, 'mouseup', up);
+                return self.cancel(ev);
+            });
+        }
+        return self.cancel(ev);
+    });
+    on(el, 'wheel', function (ev) {
+        if (!self.mouseEvents)
+            return;
+        if (self.x10Mouse
+            || self.vt300Mouse
+            || self.decLocator)
+            return;
+        sendButton(ev);
+        return self.cancel(ev);
+    });
+    on(el, 'wheel', function (ev) {
+        if (self.mouseEvents)
+            return;
+        self.viewport.onWheel(ev);
+        return self.cancel(ev);
+    });
+    on(el, 'touchstart', function (ev) {
+        if (self.mouseEvents)
+            return;
+        self.viewport.onTouchStart(ev);
+        return self.cancel(ev);
+    });
+    on(el, 'touchmove', function (ev) {
+        if (self.mouseEvents)
+            return;
+        self.viewport.onTouchMove(ev);
+        return self.cancel(ev);
+    });
+};
+Terminal.prototype.destroy = function () {
+    this.readable = false;
+    this.writable = false;
+    this._events = {};
+    this.handler = function () { };
+    this.write = function () { };
+    if (this.element && this.element.parentNode) {
+        this.element.parentNode.removeChild(this.element);
+    }
+};
+Terminal.prototype.refresh = function (start, end) {
+    if (this.renderer) {
+        this.renderer.queueRefresh(start, end);
+    }
+};
+Terminal.prototype.queueLinkification = function (start, end) {
+    if (this.linkifier) {
+        for (var i = start; i <= end; i++) {
+            this.linkifier.linkifyRow(i);
+        }
+    }
+};
+Terminal.prototype.showCursor = function () {
+    if (!this.cursorState) {
+        this.cursorState = 1;
+        this.refresh(this.buffer.y, this.buffer.y);
+    }
+};
+Terminal.prototype.scroll = function (isWrapped) {
+    var row;
+    if (this.buffer.lines.length === this.buffer.lines.maxLength) {
+        this.buffer.lines.trimStart(1);
+        this.buffer.ybase--;
+        if (this.buffer.ydisp !== 0) {
+            this.buffer.ydisp--;
+        }
+    }
+    this.buffer.ybase++;
+    if (!this.userScrolling) {
+        this.buffer.ydisp = this.buffer.ybase;
+    }
+    row = this.buffer.ybase + this.rows - 1;
+    row -= this.rows - 1 - this.buffer.scrollBottom;
+    if (row === this.buffer.lines.length) {
+        this.buffer.lines.push(this.blankLine(undefined, isWrapped));
+    }
+    else {
+        this.buffer.lines.splice(row, 0, this.blankLine(undefined, isWrapped));
+    }
+    if (this.buffer.scrollTop !== 0) {
+        if (this.buffer.ybase !== 0) {
+            this.buffer.ybase--;
+            if (!this.userScrolling) {
+                this.buffer.ydisp = this.buffer.ybase;
+            }
+        }
+        this.buffer.lines.splice(this.buffer.ybase + this.buffer.scrollTop, 1);
+    }
+    this.updateRange(this.buffer.scrollTop);
+    this.updateRange(this.buffer.scrollBottom);
+    this.emit('scroll', this.buffer.ydisp);
+};
+Terminal.prototype.scrollDisp = function (disp, suppressScrollEvent) {
+    if (disp < 0) {
+        if (this.buffer.ydisp === 0) {
+            return;
+        }
+        this.userScrolling = true;
+    }
+    else if (disp + this.buffer.ydisp >= this.buffer.ybase) {
+        this.userScrolling = false;
+    }
+    var oldYdisp = this.buffer.ydisp;
+    this.buffer.ydisp = Math.max(Math.min(this.buffer.ydisp + disp, this.buffer.ybase), 0);
+    if (oldYdisp === this.buffer.ydisp) {
+        return;
+    }
+    if (!suppressScrollEvent) {
+        this.emit('scroll', this.buffer.ydisp);
+    }
+    this.refresh(0, this.rows - 1);
+};
+Terminal.prototype.scrollPages = function (pageCount) {
+    this.scrollDisp(pageCount * (this.rows - 1));
+};
+Terminal.prototype.scrollToTop = function () {
+    this.scrollDisp(-this.buffer.ydisp);
+};
+Terminal.prototype.scrollToBottom = function () {
+    this.scrollDisp(this.buffer.ybase - this.buffer.ydisp);
+};
+Terminal.prototype.write = function (data) {
+    this.writeBuffer.push(data);
+    if (this.options.useFlowControl && !this.xoffSentToCatchUp && this.writeBuffer.length >= WRITE_BUFFER_PAUSE_THRESHOLD) {
+        this.send(EscapeSequences_1.C0.DC3);
+        this.xoffSentToCatchUp = true;
+    }
+    if (!this.writeInProgress && this.writeBuffer.length > 0) {
+        this.writeInProgress = true;
+        var self = this;
+        setTimeout(function () {
+            self.innerWrite();
+        });
+    }
+};
+Terminal.prototype.innerWrite = function () {
+    var writeBatch = this.writeBuffer.splice(0, WRITE_BATCH_SIZE);
+    while (writeBatch.length > 0) {
+        var data = writeBatch.shift();
+        var l = data.length, i = 0, j, cs, ch, code, low, ch_width, row;
+        if (this.xoffSentToCatchUp && writeBatch.length === 0 && this.writeBuffer.length === 0) {
+            this.send(EscapeSequences_1.C0.DC1);
+            this.xoffSentToCatchUp = false;
+        }
+        this.refreshStart = this.buffer.y;
+        this.refreshEnd = this.buffer.y;
+        var state = this.parser.parse(data);
+        this.parser.setState(state);
+        this.updateRange(this.buffer.y);
+        this.refresh(this.refreshStart, this.refreshEnd);
+    }
+    if (this.writeBuffer.length > 0) {
+        var self = this;
+        setTimeout(function () {
+            self.innerWrite();
+        }, 0);
+    }
+    else {
+        this.writeInProgress = false;
+    }
+};
+Terminal.prototype.writeln = function (data) {
+    this.write(data + '\r\n');
+};
+Terminal.prototype.attachCustomKeydownHandler = function (customKeydownHandler) {
+    var message = 'attachCustomKeydownHandler() is DEPRECATED and will be removed soon. Please use attachCustomKeyEventHandler() instead.';
+    console.warn(message);
+    this.attachCustomKeyEventHandler(customKeydownHandler);
+};
+Terminal.prototype.attachCustomKeyEventHandler = function (customKeyEventHandler) {
+    this.customKeyEventHandler = customKeyEventHandler;
+};
+Terminal.prototype.setHypertextLinkHandler = function (handler) {
+    if (!this.linkifier) {
+        throw new Error('Cannot attach a hypertext link handler before Terminal.open is called');
+    }
+    this.linkifier.setHypertextLinkHandler(handler);
+    this.refresh(0, this.rows - 1);
+};
+Terminal.prototype.setHypertextValidationCallback = function (callback) {
+    if (!this.linkifier) {
+        throw new Error('Cannot attach a hypertext validation callback before Terminal.open is called');
+    }
+    this.linkifier.setHypertextValidationCallback(callback);
+    this.refresh(0, this.rows - 1);
+};
+Terminal.prototype.registerLinkMatcher = function (regex, handler, options) {
+    if (this.linkifier) {
+        var matcherId = this.linkifier.registerLinkMatcher(regex, handler, options);
+        this.refresh(0, this.rows - 1);
+        return matcherId;
+    }
+};
+Terminal.prototype.deregisterLinkMatcher = function (matcherId) {
+    if (this.linkifier) {
+        if (this.linkifier.deregisterLinkMatcher(matcherId)) {
+            this.refresh(0, this.rows - 1);
+        }
+    }
+};
+Terminal.prototype.hasSelection = function () {
+    return this.selectionManager ? this.selectionManager.hasSelection : false;
+};
+Terminal.prototype.getSelection = function () {
+    return this.selectionManager ? this.selectionManager.selectionText : '';
+};
+Terminal.prototype.clearSelection = function () {
+    if (this.selectionManager) {
+        this.selectionManager.clearSelection();
+    }
+};
+Terminal.prototype.selectAll = function () {
+    if (this.selectionManager) {
+        this.selectionManager.selectAll();
+    }
+};
+Terminal.prototype.keyDown = function (ev) {
+    if (this.customKeyEventHandler && this.customKeyEventHandler(ev) === false) {
+        return false;
+    }
+    this.restartCursorBlinking();
+    if (!this.compositionHelper.keydown.bind(this.compositionHelper)(ev)) {
+        if (this.buffer.ybase !== this.buffer.ydisp) {
+            this.scrollToBottom();
+        }
+        return false;
+    }
+    var self = this;
+    var result = this.evaluateKeyEscapeSequence(ev);
+    if (result.key === EscapeSequences_1.C0.DC3) {
+        this.writeStopped = true;
+    }
+    else if (result.key === EscapeSequences_1.C0.DC1) {
+        this.writeStopped = false;
+    }
+    if (result.scrollDisp) {
+        this.scrollDisp(result.scrollDisp);
+        return this.cancel(ev, true);
+    }
+    if (isThirdLevelShift(this, ev)) {
+        return true;
+    }
+    if (result.cancel) {
+        this.cancel(ev, true);
+    }
+    if (!result.key) {
+        return true;
+    }
+    this.emit('keydown', ev);
+    this.emit('key', result.key, ev);
+    this.showCursor();
+    this.handler(result.key);
+    return this.cancel(ev, true);
+};
+Terminal.prototype.evaluateKeyEscapeSequence = function (ev) {
+    var result = {
+        cancel: false,
+        key: undefined,
+        scrollDisp: undefined
+    };
+    var modifiers = ev.shiftKey << 0 | ev.altKey << 1 | ev.ctrlKey << 2 | ev.metaKey << 3;
+    switch (ev.keyCode) {
+        case 8:
+            if (ev.shiftKey) {
+                result.key = EscapeSequences_1.C0.BS;
+                break;
+            }
+            result.key = EscapeSequences_1.C0.DEL;
+            break;
+        case 9:
+            if (ev.shiftKey) {
+                result.key = EscapeSequences_1.C0.ESC + '[Z';
+                break;
+            }
+            result.key = EscapeSequences_1.C0.HT;
+            result.cancel = true;
+            break;
+        case 13:
+            result.key = EscapeSequences_1.C0.CR;
+            result.cancel = true;
+            break;
+        case 27:
+            result.key = EscapeSequences_1.C0.ESC;
+            result.cancel = true;
+            break;
+        case 37:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'D';
+                if (result.key == EscapeSequences_1.C0.ESC + '[1;3D') {
+                    result.key = (this.browser.isMac) ? EscapeSequences_1.C0.ESC + 'b' : EscapeSequences_1.C0.ESC + '[1;5D';
+                }
+            }
+            else if (this.applicationCursor) {
+                result.key = EscapeSequences_1.C0.ESC + 'OD';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[D';
+            }
+            break;
+        case 39:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'C';
+                if (result.key == EscapeSequences_1.C0.ESC + '[1;3C') {
+                    result.key = (this.browser.isMac) ? EscapeSequences_1.C0.ESC + 'f' : EscapeSequences_1.C0.ESC + '[1;5C';
+                }
+            }
+            else if (this.applicationCursor) {
+                result.key = EscapeSequences_1.C0.ESC + 'OC';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[C';
+            }
+            break;
+        case 38:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'A';
+                if (result.key == EscapeSequences_1.C0.ESC + '[1;3A') {
+                    result.key = EscapeSequences_1.C0.ESC + '[1;5A';
+                }
+            }
+            else if (this.applicationCursor) {
+                result.key = EscapeSequences_1.C0.ESC + 'OA';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[A';
+            }
+            break;
+        case 40:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'B';
+                if (result.key == EscapeSequences_1.C0.ESC + '[1;3B') {
+                    result.key = EscapeSequences_1.C0.ESC + '[1;5B';
+                }
+            }
+            else if (this.applicationCursor) {
+                result.key = EscapeSequences_1.C0.ESC + 'OB';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[B';
+            }
+            break;
+        case 45:
+            if (!ev.shiftKey && !ev.ctrlKey) {
+                result.key = EscapeSequences_1.C0.ESC + '[2~';
+            }
+            break;
+        case 46:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[3;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[3~';
+            }
+            break;
+        case 36:
+            if (modifiers)
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'H';
+            else if (this.applicationCursor)
+                result.key = EscapeSequences_1.C0.ESC + 'OH';
+            else
+                result.key = EscapeSequences_1.C0.ESC + '[H';
+            break;
+        case 35:
+            if (modifiers)
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'F';
+            else if (this.applicationCursor)
+                result.key = EscapeSequences_1.C0.ESC + 'OF';
+            else
+                result.key = EscapeSequences_1.C0.ESC + '[F';
+            break;
+        case 33:
+            if (ev.shiftKey) {
+                result.scrollDisp = -(this.rows - 1);
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[5~';
+            }
+            break;
+        case 34:
+            if (ev.shiftKey) {
+                result.scrollDisp = this.rows - 1;
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[6~';
+            }
+            break;
+        case 112:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'P';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + 'OP';
+            }
+            break;
+        case 113:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'Q';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + 'OQ';
+            }
+            break;
+        case 114:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'R';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + 'OR';
+            }
+            break;
+        case 115:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[1;' + (modifiers + 1) + 'S';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + 'OS';
+            }
+            break;
+        case 116:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[15;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[15~';
+            }
+            break;
+        case 117:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[17;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[17~';
+            }
+            break;
+        case 118:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[18;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[18~';
+            }
+            break;
+        case 119:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[19;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[19~';
+            }
+            break;
+        case 120:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[20;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[20~';
+            }
+            break;
+        case 121:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[21;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[21~';
+            }
+            break;
+        case 122:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[23;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[23~';
+            }
+            break;
+        case 123:
+            if (modifiers) {
+                result.key = EscapeSequences_1.C0.ESC + '[24;' + (modifiers + 1) + '~';
+            }
+            else {
+                result.key = EscapeSequences_1.C0.ESC + '[24~';
+            }
+            break;
+        default:
+            if (ev.ctrlKey && !ev.shiftKey && !ev.altKey && !ev.metaKey) {
+                if (ev.keyCode >= 65 && ev.keyCode <= 90) {
+                    result.key = String.fromCharCode(ev.keyCode - 64);
+                }
+                else if (ev.keyCode === 32) {
+                    result.key = String.fromCharCode(0);
+                }
+                else if (ev.keyCode >= 51 && ev.keyCode <= 55) {
+                    result.key = String.fromCharCode(ev.keyCode - 51 + 27);
+                }
+                else if (ev.keyCode === 56) {
+                    result.key = String.fromCharCode(127);
+                }
+                else if (ev.keyCode === 219) {
+                    result.key = String.fromCharCode(27);
+                }
+                else if (ev.keyCode === 220) {
+                    result.key = String.fromCharCode(28);
+                }
+                else if (ev.keyCode === 221) {
+                    result.key = String.fromCharCode(29);
+                }
+            }
+            else if (!this.browser.isMac && ev.altKey && !ev.ctrlKey && !ev.metaKey) {
+                if (ev.keyCode >= 65 && ev.keyCode <= 90) {
+                    result.key = EscapeSequences_1.C0.ESC + String.fromCharCode(ev.keyCode + 32);
+                }
+                else if (ev.keyCode === 192) {
+                    result.key = EscapeSequences_1.C0.ESC + '`';
+                }
+                else if (ev.keyCode >= 48 && ev.keyCode <= 57) {
+                    result.key = EscapeSequences_1.C0.ESC + (ev.keyCode - 48);
+                }
+            }
+            else if (this.browser.isMac && !ev.altKey && !ev.ctrlKey && ev.metaKey) {
+                if (ev.keyCode === 65) {
+                    this.selectAll();
+                }
+            }
+            break;
+    }
+    return result;
+};
+Terminal.prototype.setgLevel = function (g) {
+    this.glevel = g;
+    this.charset = this.charsets[g];
+};
+Terminal.prototype.setgCharset = function (g, charset) {
+    this.charsets[g] = charset;
+    if (this.glevel === g) {
+        this.charset = charset;
+    }
+};
+Terminal.prototype.keyPress = function (ev) {
+    var key;
+    if (this.customKeyEventHandler && this.customKeyEventHandler(ev) === false) {
+        return false;
+    }
+    this.cancel(ev);
+    if (ev.charCode) {
+        key = ev.charCode;
+    }
+    else if (ev.which == null) {
+        key = ev.keyCode;
+    }
+    else if (ev.which !== 0 && ev.charCode !== 0) {
+        key = ev.which;
+    }
+    else {
+        return false;
+    }
+    if (!key || ((ev.altKey || ev.ctrlKey || ev.metaKey) && !isThirdLevelShift(this, ev))) {
+        return false;
+    }
+    key = String.fromCharCode(key);
+    this.emit('keypress', key, ev);
+    this.emit('key', key, ev);
+    this.showCursor();
+    this.handler(key);
+    return true;
+};
+Terminal.prototype.send = function (data) {
+    var self = this;
+    if (!this.queue) {
+        setTimeout(function () {
+            self.handler(self.queue);
+            self.queue = '';
+        }, 1);
+    }
+    this.queue += data;
+};
+Terminal.prototype.bell = function () {
+    if (!this.visualBell)
+        return;
+    var self = this;
+    this.element.style.borderColor = 'white';
+    setTimeout(function () {
+        self.element.style.borderColor = '';
+    }, 10);
+    if (this.popOnBell)
+        this.focus();
+};
+Terminal.prototype.log = function () {
+    if (!this.debug)
+        return;
+    if (!this.context.console || !this.context.console.log)
+        return;
+    var args = Array.prototype.slice.call(arguments);
+    this.context.console.log.apply(this.context.console, args);
+};
+Terminal.prototype.error = function () {
+    if (!this.debug)
+        return;
+    if (!this.context.console || !this.context.console.error)
+        return;
+    var args = Array.prototype.slice.call(arguments);
+    this.context.console.error.apply(this.context.console, args);
+};
+Terminal.prototype.resize = function (x, y) {
+    if (isNaN(x) || isNaN(y)) {
+        return;
+    }
+    if (y > this.getOption('scrollback')) {
+        this.setOption('scrollback', y);
+    }
+    var line, el, i, j, ch, addToY;
+    if (x === this.cols && y === this.rows) {
+        if (!this.charMeasure.width || !this.charMeasure.height) {
+            this.charMeasure.measure();
+        }
+        return;
+    }
+    if (x < 1)
+        x = 1;
+    if (y < 1)
+        y = 1;
+    this.buffers.resize(x, y);
+    while (this.children.length < y) {
+        this.insertRow();
+    }
+    while (this.children.length > y) {
+        el = this.children.shift();
+        if (!el)
+            continue;
+        el.parentNode.removeChild(el);
+    }
+    this.cols = x;
+    this.rows = y;
+    this.setupStops(this.cols);
+    this.charMeasure.measure();
+    this.refresh(0, this.rows - 1);
+    this.geometry = [this.cols, this.rows];
+    this.emit('resize', { terminal: this, cols: x, rows: y });
+};
+Terminal.prototype.updateRange = function (y) {
+    if (y < this.refreshStart)
+        this.refreshStart = y;
+    if (y > this.refreshEnd)
+        this.refreshEnd = y;
+};
+Terminal.prototype.maxRange = function () {
+    this.refreshStart = 0;
+    this.refreshEnd = this.rows - 1;
+};
+Terminal.prototype.setupStops = function (i) {
+    if (i != null) {
+        if (!this.buffer.tabs[i]) {
+            i = this.prevStop(i);
+        }
+    }
+    else {
+        this.buffer.tabs = {};
+        i = 0;
+    }
+    for (; i < this.cols; i += this.getOption('tabStopWidth')) {
+        this.buffer.tabs[i] = true;
+    }
+};
+Terminal.prototype.prevStop = function (x) {
+    if (x == null)
+        x = this.buffer.x;
+    while (!this.buffer.tabs[--x] && x > 0)
+        ;
+    return x >= this.cols
+        ? this.cols - 1
+        : x < 0 ? 0 : x;
+};
+Terminal.prototype.nextStop = function (x) {
+    if (x == null)
+        x = this.buffer.x;
+    while (!this.buffer.tabs[++x] && x < this.cols)
+        ;
+    return x >= this.cols
+        ? this.cols - 1
+        : x < 0 ? 0 : x;
+};
+Terminal.prototype.eraseRight = function (x, y) {
+    var line = this.buffer.lines.get(this.buffer.ybase + y);
+    if (!line) {
+        return;
+    }
+    var ch = [this.eraseAttr(), ' ', 1];
+    for (; x < this.cols; x++) {
+        line[x] = ch;
+    }
+    this.updateRange(y);
+};
+Terminal.prototype.eraseLeft = function (x, y) {
+    var line = this.buffer.lines.get(this.buffer.ybase + y);
+    if (!line) {
+        return;
+    }
+    var ch = [this.eraseAttr(), ' ', 1];
+    x++;
+    while (x--) {
+        line[x] = ch;
+    }
+    this.updateRange(y);
+};
+Terminal.prototype.clear = function () {
+    if (this.buffer.ybase === 0 && this.buffer.y === 0) {
+        return;
+    }
+    this.buffer.lines.set(0, this.buffer.lines.get(this.buffer.ybase + this.buffer.y));
+    this.buffer.lines.length = 1;
+    this.buffer.ydisp = 0;
+    this.buffer.ybase = 0;
+    this.buffer.y = 0;
+    for (var i = 1; i < this.rows; i++) {
+        this.buffer.lines.push(this.blankLine());
+    }
+    this.refresh(0, this.rows - 1);
+    this.emit('scroll', this.buffer.ydisp);
+};
+Terminal.prototype.eraseLine = function (y) {
+    this.eraseRight(0, y);
+};
+Terminal.prototype.blankLine = function (cur, isWrapped, cols) {
+    var attr = cur
+        ? this.eraseAttr()
+        : this.defAttr;
+    var ch = [attr, ' ', 1], line = [], i = 0;
+    if (isWrapped) {
+        line.isWrapped = isWrapped;
+    }
+    cols = cols || this.cols;
+    for (; i < cols; i++) {
+        line[i] = ch;
+    }
+    return line;
+};
+Terminal.prototype.ch = function (cur) {
+    return cur
+        ? [this.eraseAttr(), ' ', 1]
+        : [this.defAttr, ' ', 1];
+};
+Terminal.prototype.is = function (term) {
+    var name = this.termName;
+    return (name + '').indexOf(term) === 0;
+};
+Terminal.prototype.handler = function (data) {
+    if (this.options.disableStdin) {
+        return;
+    }
+    if (this.selectionManager && this.selectionManager.hasSelection) {
+        this.selectionManager.clearSelection();
+    }
+    if (this.buffer.ybase !== this.buffer.ydisp) {
+        this.scrollToBottom();
+    }
+    this.emit('data', data);
+};
+Terminal.prototype.handleTitle = function (title) {
+    this.emit('title', title);
+};
+Terminal.prototype.index = function () {
+    this.buffer.y++;
+    if (this.buffer.y > this.buffer.scrollBottom) {
+        this.buffer.y--;
+        this.scroll();
+    }
+    if (this.buffer.x >= this.cols) {
+        this.buffer.x--;
+    }
+};
+Terminal.prototype.reverseIndex = function () {
+    var j;
+    if (this.buffer.y === this.buffer.scrollTop) {
+        this.buffer.lines.shiftElements(this.buffer.y + this.buffer.ybase, this.rows - 1, 1);
+        this.buffer.lines.set(this.buffer.y + this.buffer.ybase, this.blankLine(true));
+        this.updateRange(this.buffer.scrollTop);
+        this.updateRange(this.buffer.scrollBottom);
+    }
+    else {
+        this.buffer.y--;
+    }
+};
+Terminal.prototype.reset = function () {
+    this.options.rows = this.rows;
+    this.options.cols = this.cols;
+    var customKeyEventHandler = this.customKeyEventHandler;
+    var cursorBlinkInterval = this.cursorBlinkInterval;
+    var inputHandler = this.inputHandler;
+    Terminal.call(this, this.options);
+    this.customKeyEventHandler = customKeyEventHandler;
+    this.cursorBlinkInterval = cursorBlinkInterval;
+    this.inputHandler = inputHandler;
+    this.refresh(0, this.rows - 1);
+    this.viewport.syncScrollArea();
+};
+Terminal.prototype.tabSet = function () {
+    this.buffer.tabs[this.buffer.x] = true;
+};
+function on(el, type, handler, capture) {
+    if (!Array.isArray(el)) {
+        el = [el];
+    }
+    el.forEach(function (element) {
+        element.addEventListener(type, handler, capture || false);
+    });
+}
+function off(el, type, handler, capture) {
+    el.removeEventListener(type, handler, capture || false);
+}
+function cancel(ev, force) {
+    if (!this.cancelEvents && !force) {
+        return;
+    }
+    ev.preventDefault();
+    ev.stopPropagation();
+    return false;
+}
+function inherits(child, parent) {
+    function f() {
+        this.constructor = child;
+    }
+    f.prototype = parent.prototype;
+    child.prototype = new f;
+}
+function indexOf(obj, el) {
+    var i = obj.length;
+    while (i--) {
+        if (obj[i] === el)
+            return i;
+    }
+    return -1;
+}
+function isThirdLevelShift(term, ev) {
+    var thirdLevelKey = (term.browser.isMac && ev.altKey && !ev.ctrlKey && !ev.metaKey) ||
+        (term.browser.isMSWindows && ev.altKey && ev.ctrlKey && !ev.metaKey);
+    if (ev.type == 'keypress') {
+        return thirdLevelKey;
+    }
+    return thirdLevelKey && (!ev.keyCode || ev.keyCode > 47);
+}
+Terminal.prototype.matchColor = matchColor;
+function matchColor(r1, g1, b1) {
+    var hash = (r1 << 16) | (g1 << 8) | b1;
+    if (matchColor._cache[hash] != null) {
+        return matchColor._cache[hash];
+    }
+    var ldiff = Infinity, li = -1, i = 0, c, r2, g2, b2, diff;
+    for (; i < Terminal.vcolors.length; i++) {
+        c = Terminal.vcolors[i];
+        r2 = c[0];
+        g2 = c[1];
+        b2 = c[2];
+        diff = matchColor.distance(r1, g1, b1, r2, g2, b2);
+        if (diff === 0) {
+            li = i;
+            break;
+        }
+        if (diff < ldiff) {
+            ldiff = diff;
+            li = i;
+        }
+    }
+    return matchColor._cache[hash] = li;
+}
+matchColor._cache = {};
+matchColor.distance = function (r1, g1, b1, r2, g2, b2) {
+    return Math.pow(30 * (r1 - r2), 2)
+        + Math.pow(59 * (g1 - g2), 2)
+        + Math.pow(11 * (b1 - b2), 2);
+};
+function each(obj, iter, con) {
+    if (obj.forEach)
+        return obj.forEach(iter, con);
+    for (var i = 0; i < obj.length; i++) {
+        iter.call(con, obj[i], i, obj);
+    }
+}
+function wasMondifierKeyOnlyEvent(ev) {
+    return ev.keyCode === 16 ||
+        ev.keyCode === 17 ||
+        ev.keyCode === 18;
+}
+function keys(obj) {
+    if (Object.keys)
+        return Object.keys(obj);
+    var key, keys = [];
+    for (key in obj) {
+        if (Object.prototype.hasOwnProperty.call(obj, key)) {
+            keys.push(key);
+        }
+    }
+    return keys;
+}
+Terminal.translateBufferLineToString = BufferLine_1.translateBufferLineToString;
+Terminal.EventEmitter = EventEmitter_1.EventEmitter;
+Terminal.inherits = inherits;
+Terminal.on = on;
+Terminal.off = off;
+Terminal.cancel = cancel;
+module.exports = Terminal;
+
+
+
+},{"./BufferSet":2,"./CompositionHelper":4,"./EscapeSequences":5,"./EventEmitter":6,"./InputHandler":7,"./Linkifier":8,"./Parser":9,"./Renderer":10,"./SelectionManager":11,"./Viewport":13,"./handlers/Clipboard":14,"./utils/Browser":15,"./utils/BufferLine":16,"./utils/CharMeasure":17,"./utils/Mouse":21}]},{},[22])(22)
+});
+//# sourceMappingURL=xterm.js.map
diff --git a/apps/static/js/plugins/xterm/xterm.js.map b/apps/static/js/plugins/xterm/xterm.js.map
new file mode 100644
index 000000000..76134bb59
--- /dev/null
+++ b/apps/static/js/plugins/xterm/xterm.js.map
@@ -0,0 +1 @@
+{"version":3,"file":"xterm.js","sources":["../src/xterm.js","../src/utils/Mouse.ts","../src/utils/Generic.ts","../src/utils/DomElementObjectPool.ts","../src/utils/CircularList.ts","../src/utils/CharMeasure.ts","../src/utils/BufferLine.ts","../src/utils/Browser.ts","../src/handlers/Clipboard.ts","../src/Viewport.ts","../src/SelectionModel.ts","../src/SelectionManager.ts","../src/Renderer.ts","../src/Parser.ts","../src/Linkifier.ts","../src/InputHandler.ts","../src/EventEmitter.ts","../src/EscapeSequences.ts","../src/CompositionHelper.ts","../src/Charsets.ts","../src/BufferSet.ts","../src/Buffer.ts","../node_modules/browserify/node_modules/browser-pack/_prelude.js"],"sourcesContent":["/**\n * xterm.js: xterm, in the browser\n * Originally forked from (with the author's permission):\n *   Fabrice Bellard's javascript vt100 for jslinux:\n *   http://bellard.org/jslinux/\n *   Copyright (c) 2011 Fabrice Bellard\n *   The original design remains. The terminal itself\n *   has been extended to include xterm CSI codes, among\n *   other features.\n * @license MIT\n */\n\nimport { BufferSet } from './BufferSet';\nimport { CompositionHelper } from './CompositionHelper';\nimport { EventEmitter } from './EventEmitter';\nimport { Viewport } from './Viewport';\nimport { rightClickHandler, moveTextAreaUnderMouseCursor, pasteHandler, copyHandler } from './handlers/Clipboard';\nimport { CircularList } from './utils/CircularList';\nimport { C0 } from './EscapeSequences';\nimport { InputHandler } from './InputHandler';\nimport { Parser } from './Parser';\nimport { Renderer } from './Renderer';\nimport { Linkifier } from './Linkifier';\nimport { SelectionManager } from './SelectionManager';\nimport { CharMeasure } from './utils/CharMeasure';\nimport * as Browser from './utils/Browser';\nimport * as Mouse from './utils/Mouse';\nimport { CHARSETS } from './Charsets';\nimport { getRawByteCoords } from './utils/Mouse';\nimport { translateBufferLineToString } from './utils/BufferLine';\n\n/**\n * Terminal Emulation References:\n *   http://vt100.net/\n *   http://invisible-island.net/xterm/ctlseqs/ctlseqs.txt\n *   http://invisible-island.net/xterm/ctlseqs/ctlseqs.html\n *   http://invisible-island.net/vttest/\n *   http://www.inwap.com/pdp10/ansicode.txt\n *   http://linux.die.net/man/4/console_codes\n *   http://linux.die.net/man/7/urxvt\n */\n\n// Let it work inside Node.js for automated testing purposes.\nvar document = (typeof window != 'undefined') ? window.document : null;\n\n/**\n * The amount of write requests to queue before sending an XOFF signal to the\n * pty process. This number must be small in order for ^C and similar sequences\n * to be responsive.\n */\nvar WRITE_BUFFER_PAUSE_THRESHOLD = 5;\n\n/**\n * The number of writes to perform in a single batch before allowing the\n * renderer to catch up with a 0ms setTimeout.\n */\nvar WRITE_BATCH_SIZE = 300;\n\n/**\n * The time between cursor blinks. This is driven by JS rather than a CSS\n * animation due to a bug in Chromium that causes it to use excessive CPU time.\n * See https://github.com/Microsoft/vscode/issues/22900\n */\nvar CURSOR_BLINK_INTERVAL = 600;\n\n/**\n * Terminal\n */\n\n/**\n * Creates a new `Terminal` object.\n *\n * @param {object} options An object containing a set of options, the available options are:\n *   - `cursorBlink` (boolean): Whether the terminal cursor blinks\n *   - `cols` (number): The number of columns of the terminal (horizontal size)\n *   - `rows` (number): The number of rows of the terminal (vertical size)\n *\n * @public\n * @class Xterm Xterm\n * @alias module:xterm/src/xterm\n */\nfunction Terminal(options) {\n  var self = this;\n\n  if (!(this instanceof Terminal)) {\n    return new Terminal(arguments[0], arguments[1], arguments[2]);\n  }\n\n  self.browser = Browser;\n  self.cancel = Terminal.cancel;\n\n  EventEmitter.call(this);\n\n  if (typeof options === 'number') {\n    options = {\n      cols: arguments[0],\n      rows: arguments[1],\n      handler: arguments[2]\n    };\n  }\n\n  options = options || {};\n\n\n  Object.keys(Terminal.defaults).forEach(function(key) {\n    if (options[key] == null) {\n      options[key] = Terminal.options[key];\n\n      if (Terminal[key] !== Terminal.defaults[key]) {\n        options[key] = Terminal[key];\n      }\n    }\n    self[key] = options[key];\n  });\n\n  if (options.colors.length === 8) {\n    options.colors = options.colors.concat(Terminal._colors.slice(8));\n  } else if (options.colors.length === 16) {\n    options.colors = options.colors.concat(Terminal._colors.slice(16));\n  } else if (options.colors.length === 10) {\n    options.colors = options.colors.slice(0, -2).concat(\n      Terminal._colors.slice(8, -2), options.colors.slice(-2));\n  } else if (options.colors.length === 18) {\n    options.colors = options.colors.concat(\n      Terminal._colors.slice(16, -2), options.colors.slice(-2));\n  }\n  this.colors = options.colors;\n\n  this.options = options;\n\n  // this.context = options.context || window;\n  // this.document = options.document || document;\n  this.parent = options.body || options.parent || (\n    document ? document.getElementsByTagName('body')[0] : null\n  );\n\n  this.cols = options.cols || options.geometry[0];\n  this.rows = options.rows || options.geometry[1];\n  this.geometry = [this.cols, this.rows];\n\n  if (options.handler) {\n    this.on('data', options.handler);\n  }\n\n  this.cursorState = 0;\n  this.cursorHidden = false;\n  this.convertEol;\n  this.queue = '';\n  this.customKeyEventHandler = null;\n  this.cursorBlinkInterval = null;\n\n  // modes\n  this.applicationKeypad = false;\n  this.applicationCursor = false;\n  this.originMode = false;\n  this.insertMode = false;\n  this.wraparoundMode = true; // defaults: xterm - true, vt100 - false\n\n  // charset\n  this.charset = null;\n  this.gcharset = null;\n  this.glevel = 0;\n  this.charsets = [null];\n\n  // mouse properties\n  this.decLocator;\n  this.x10Mouse;\n  this.vt200Mouse;\n  this.vt300Mouse;\n  this.normalMouse;\n  this.mouseEvents;\n  this.sendFocus;\n  this.utfMouse;\n  this.sgrMouse;\n  this.urxvtMouse;\n\n  // misc\n  this.element;\n  this.children;\n  this.refreshStart;\n  this.refreshEnd;\n  this.savedX;\n  this.savedY;\n  this.savedCols;\n\n  // stream\n  this.readable = true;\n  this.writable = true;\n\n  this.defAttr = (0 << 18) | (257 << 9) | (256 << 0);\n  this.curAttr = this.defAttr;\n\n  this.params = [];\n  this.currentParam = 0;\n  this.prefix = '';\n  this.postfix = '';\n\n  this.inputHandler = new InputHandler(this);\n  this.parser = new Parser(this.inputHandler, this);\n  // Reuse renderer if the Terminal is being recreated via a Terminal.reset call.\n  this.renderer = this.renderer || null;\n  this.selectionManager = this.selectionManager || null;\n  this.linkifier = this.linkifier || new Linkifier();\n\n  // user input states\n  this.writeBuffer = [];\n  this.writeInProgress = false;\n\n  /**\n   * Whether _xterm.js_ sent XOFF in order to catch up with the pty process.\n   * This is a distinct state from writeStopped so that if the user requested\n   * XOFF via ^S that it will not automatically resume when the writeBuffer goes\n   * below threshold.\n   */\n  this.xoffSentToCatchUp = false;\n\n  /** Whether writing has been stopped as a result of XOFF */\n  this.writeStopped = false;\n\n  // leftover surrogate high from previous write invocation\n  this.surrogate_high = '';\n\n  // Create the terminal's buffers and set the current buffer\n  this.buffers = new BufferSet(this);\n  this.buffer = this.buffers.active;  // Convenience shortcut;\n  this.buffers.on('activate', function (buffer) {\n    this._terminal.buffer = buffer;\n  });\n\n  // Ensure the selection manager has the correct buffer\n  if (this.selectionManager) {\n    this.selectionManager.setBuffer(this.buffer.lines);\n  }\n\n  this.setupStops();\n\n  // Store if user went browsing history in scrollback\n  this.userScrolling = false;\n}\n\ninherits(Terminal, EventEmitter);\n\n/**\n * back_color_erase feature for xterm.\n */\nTerminal.prototype.eraseAttr = function() {\n  // if (this.is('screen')) return this.defAttr;\n  return (this.defAttr & ~0x1ff) | (this.curAttr & 0x1ff);\n};\n\n/**\n * Colors\n */\n\n// Colors 0-15\nTerminal.tangoColors = [\n  // dark:\n  '#2e3436',\n  '#cc0000',\n  '#4e9a06',\n  '#c4a000',\n  '#3465a4',\n  '#75507b',\n  '#06989a',\n  '#d3d7cf',\n  // bright:\n  '#555753',\n  '#ef2929',\n  '#8ae234',\n  '#fce94f',\n  '#729fcf',\n  '#ad7fa8',\n  '#34e2e2',\n  '#eeeeec'\n];\n\n// Colors 0-15 + 16-255\n// Much thanks to TooTallNate for writing this.\nTerminal.colors = (function() {\n  var colors = Terminal.tangoColors.slice()\n  , r = [0x00, 0x5f, 0x87, 0xaf, 0xd7, 0xff]\n  , i;\n\n  // 16-231\n  i = 0;\n  for (; i < 216; i++) {\n    out(r[(i / 36) % 6 | 0], r[(i / 6) % 6 | 0], r[i % 6]);\n  }\n\n  // 232-255 (grey)\n  i = 0;\n  for (; i < 24; i++) {\n    r = 8 + i * 10;\n    out(r, r, r);\n  }\n\n  function out(r, g, b) {\n    colors.push('#' + hex(r) + hex(g) + hex(b));\n  }\n\n  function hex(c) {\n    c = c.toString(16);\n    return c.length < 2 ? '0' + c : c;\n  }\n\n  return colors;\n})();\n\nTerminal._colors = Terminal.colors.slice();\n\nTerminal.vcolors = (function() {\n  var out = []\n  , colors = Terminal.colors\n  , i = 0\n  , color;\n\n  for (; i < 256; i++) {\n    color = parseInt(colors[i].substring(1), 16);\n    out.push([\n      (color >> 16) & 0xff,\n      (color >> 8) & 0xff,\n      color & 0xff\n    ]);\n  }\n\n  return out;\n})();\n\n/**\n * Options\n */\n\nTerminal.defaults = {\n  colors: Terminal.colors,\n  theme: 'default',\n  convertEol: false,\n  termName: 'xterm',\n  geometry: [80, 24],\n  cursorBlink: false,\n  cursorStyle: 'block',\n  visualBell: false,\n  popOnBell: false,\n  scrollback: 1000,\n  screenKeys: false,\n  debug: false,\n  cancelEvents: false,\n  disableStdin: false,\n  useFlowControl: false,\n  tabStopWidth: 8\n  // programFeatures: false,\n  // focusKeys: false,\n};\n\nTerminal.options = {};\n\nTerminal.focus = null;\n\neach(keys(Terminal.defaults), function(key) {\n  Terminal[key] = Terminal.defaults[key];\n  Terminal.options[key] = Terminal.defaults[key];\n});\n\n/**\n * Focus the terminal. Delegates focus handling to the terminal's DOM element.\n */\nTerminal.prototype.focus = function() {\n  return this.textarea.focus();\n};\n\n/**\n * Retrieves an option's value from the terminal.\n * @param {string} key The option key.\n */\nTerminal.prototype.getOption = function(key) {\n  if (!(key in Terminal.defaults)) {\n    throw new Error('No option with key \"' + key + '\"');\n  }\n\n  if (typeof this.options[key] !== 'undefined') {\n    return this.options[key];\n  }\n\n  return this[key];\n};\n\n/**\n * Sets an option on the terminal.\n * @param {string} key The option key.\n * @param {string} value The option value.\n */\nTerminal.prototype.setOption = function(key, value) {\n  if (!(key in Terminal.defaults)) {\n    throw new Error('No option with key \"' + key + '\"');\n  }\n  switch (key) {\n    case 'scrollback':\n      if (value < this.rows) {\n        let msg = 'Setting the scrollback value less than the number of rows ';\n\n        msg += `(${this.rows}) is not allowed.`;\n\n        console.warn(msg);\n        return false;\n      }\n\n      if (this.options[key] !== value) {\n        if (this.buffer.lines.length > value) {\n          const amountToTrim = this.buffer.lines.length - value;\n          const needsRefresh = (this.buffer.ydisp - amountToTrim < 0);\n          this.buffer.lines.trimStart(amountToTrim);\n          this.buffer.ybase = Math.max(this.buffer.ybase - amountToTrim, 0);\n          this.buffer.ydisp = Math.max(this.buffer.ydisp - amountToTrim, 0);\n          if (needsRefresh) {\n            this.refresh(0, this.rows - 1);\n          }\n        }\n        this.buffer.lines.maxLength = value;\n        this.viewport.syncScrollArea();\n      }\n      break;\n  }\n  this[key] = value;\n  this.options[key] = value;\n  switch (key) {\n    case 'cursorBlink': this.setCursorBlinking(value); break;\n    case 'cursorStyle':\n      this.element.classList.toggle(`xterm-cursor-style-block`, value === 'block');\n      this.element.classList.toggle(`xterm-cursor-style-underline`, value === 'underline');\n      this.element.classList.toggle(`xterm-cursor-style-bar`, value === 'bar');\n      break;\n    case 'tabStopWidth': this.setupStops(); break;\n  }\n};\n\nTerminal.prototype.restartCursorBlinking = function () {\n  this.setCursorBlinking(this.options.cursorBlink);\n};\n\nTerminal.prototype.setCursorBlinking = function (enabled) {\n  this.element.classList.toggle('xterm-cursor-blink', enabled);\n  this.clearCursorBlinkingInterval();\n  if (enabled) {\n    var self = this;\n    this.cursorBlinkInterval = setInterval(function () {\n      self.element.classList.toggle('xterm-cursor-blink-on');\n    }, CURSOR_BLINK_INTERVAL);\n  }\n};\n\nTerminal.prototype.clearCursorBlinkingInterval = function () {\n  this.element.classList.remove('xterm-cursor-blink-on');\n  if (this.cursorBlinkInterval) {\n    clearInterval(this.cursorBlinkInterval);\n    this.cursorBlinkInterval = null;\n  }\n};\n\n/**\n * Binds the desired focus behavior on a given terminal object.\n *\n * @static\n */\nTerminal.bindFocus = function (term) {\n  on(term.textarea, 'focus', function (ev) {\n    if (term.sendFocus) {\n      term.send(C0.ESC + '[I');\n    }\n    term.element.classList.add('focus');\n    term.showCursor();\n    term.restartCursorBlinking.apply(term);\n    Terminal.focus = term;\n    term.emit('focus', {terminal: term});\n  });\n};\n\n/**\n * Blur the terminal. Delegates blur handling to the terminal's DOM element.\n */\nTerminal.prototype.blur = function() {\n  return this.textarea.blur();\n};\n\n/**\n * Binds the desired blur behavior on a given terminal object.\n *\n * @static\n */\nTerminal.bindBlur = function (term) {\n  on(term.textarea, 'blur', function (ev) {\n    term.refresh(term.buffer.y, term.buffer.y);\n    if (term.sendFocus) {\n      term.send(C0.ESC + '[O');\n    }\n    term.element.classList.remove('focus');\n    term.clearCursorBlinkingInterval.apply(term);\n    Terminal.focus = null;\n    term.emit('blur', {terminal: term});\n  });\n};\n\n/**\n * Initialize default behavior\n */\nTerminal.prototype.initGlobal = function() {\n  var term = this;\n\n  Terminal.bindKeys(this);\n  Terminal.bindFocus(this);\n  Terminal.bindBlur(this);\n\n  // Bind clipboard functionality\n  on(this.element, 'copy', event => {\n    // If mouse events are active it means the selection manager is disabled and\n    // copy should be handled by the host program.\n    if (!term.hasSelection()) {\n      return;\n    }\n    copyHandler(event, term, this.selectionManager);\n  });\n  const pasteHandlerWrapper = event => pasteHandler(event, term);\n  on(this.textarea, 'paste', pasteHandlerWrapper);\n  on(this.element, 'paste', pasteHandlerWrapper);\n\n  // Handle right click context menus\n  if (term.browser.isFirefox) {\n    // Firefox doesn't appear to fire the contextmenu event on right click\n    on(this.element, 'mousedown', event => {\n      if (event.button == 2) {\n        rightClickHandler(event, this.textarea, this.selectionManager);\n      }\n    });\n  } else {\n    on(this.element, 'contextmenu', event => {\n      rightClickHandler(event, this.textarea, this.selectionManager);\n    });\n  }\n\n  // Move the textarea under the cursor when middle clicking on Linux to ensure\n  // middle click to paste selection works. This only appears to work in Chrome\n  // at the time is writing.\n  if (term.browser.isLinux) {\n    // Use auxclick event over mousedown the latter doesn't seem to work. Note\n    // that the regular click event doesn't fire for the middle mouse button.\n    on(this.element, 'auxclick', event => {\n      if (event.button === 1) {\n        moveTextAreaUnderMouseCursor(event, this.textarea, this.selectionManager);\n      }\n    });\n  }\n};\n\n/**\n * Apply key handling to the terminal\n */\nTerminal.bindKeys = function(term) {\n  on(term.element, 'keydown', function(ev) {\n    if (document.activeElement != this) {\n      return;\n    }\n    term.keyDown(ev);\n  }, true);\n\n  on(term.element, 'keypress', function(ev) {\n    if (document.activeElement != this) {\n      return;\n    }\n    term.keyPress(ev);\n  }, true);\n\n  on(term.element, 'keyup', function(ev) {\n    if (!wasMondifierKeyOnlyEvent(ev)) {\n      term.focus(term);\n    }\n  }, true);\n\n  on(term.textarea, 'keydown', function(ev) {\n    term.keyDown(ev);\n  }, true);\n\n  on(term.textarea, 'keypress', function(ev) {\n    term.keyPress(ev);\n    // Truncate the textarea's value, since it is not needed\n    this.value = '';\n  }, true);\n\n  on(term.textarea, 'compositionstart', term.compositionHelper.compositionstart.bind(term.compositionHelper));\n  on(term.textarea, 'compositionupdate', term.compositionHelper.compositionupdate.bind(term.compositionHelper));\n  on(term.textarea, 'compositionend', term.compositionHelper.compositionend.bind(term.compositionHelper));\n  term.on('refresh', term.compositionHelper.updateCompositionElements.bind(term.compositionHelper));\n  term.on('refresh', function (data) {\n    term.queueLinkification(data.start, data.end)\n  });\n};\n\n\n/**\n * Insert the given row to the terminal or produce a new one\n * if no row argument is passed. Return the inserted row.\n * @param {HTMLElement} row (optional) The row to append to the terminal.\n */\nTerminal.prototype.insertRow = function (row) {\n  if (typeof row != 'object') {\n    row = document.createElement('div');\n  }\n\n  this.rowContainer.appendChild(row);\n  this.children.push(row);\n\n  return row;\n};\n\n/**\n * Opens the terminal within an element.\n *\n * @param {HTMLElement} parent The element to create the terminal within.\n * @param {boolean} focus Focus the terminal, after it gets instantiated in the DOM\n */\nTerminal.prototype.open = function(parent, focus) {\n  var self=this, i=0, div;\n\n  this.parent = parent || this.parent;\n\n  if (!this.parent) {\n    throw new Error('Terminal requires a parent element.');\n  }\n\n  // Grab global elements\n  this.context = this.parent.ownerDocument.defaultView;\n  this.document = this.parent.ownerDocument;\n  this.body = this.document.getElementsByTagName('body')[0];\n\n  //Create main element container\n  this.element = this.document.createElement('div');\n  this.element.classList.add('terminal');\n  this.element.classList.add('xterm');\n  this.element.classList.add('xterm-theme-' + this.theme);\n  this.element.classList.add(`xterm-cursor-style-${this.options.cursorStyle}`);\n  this.setCursorBlinking(this.options.cursorBlink);\n\n  this.element.setAttribute('tabindex', 0);\n\n  this.viewportElement = document.createElement('div');\n  this.viewportElement.classList.add('xterm-viewport');\n  this.element.appendChild(this.viewportElement);\n  this.viewportScrollArea = document.createElement('div');\n  this.viewportScrollArea.classList.add('xterm-scroll-area');\n  this.viewportElement.appendChild(this.viewportScrollArea);\n\n  // Create the selection container.\n  this.selectionContainer = document.createElement('div');\n  this.selectionContainer.classList.add('xterm-selection');\n  this.element.appendChild(this.selectionContainer);\n\n  // Create the container that will hold the lines of the terminal and then\n  // produce the lines the lines.\n  this.rowContainer = document.createElement('div');\n  this.rowContainer.classList.add('xterm-rows');\n  this.element.appendChild(this.rowContainer);\n  this.children = [];\n  this.linkifier.attachToDom(document, this.children);\n\n  // Create the container that will hold helpers like the textarea for\n  // capturing DOM Events. Then produce the helpers.\n  this.helperContainer = document.createElement('div');\n  this.helperContainer.classList.add('xterm-helpers');\n  // TODO: This should probably be inserted once it's filled to prevent an additional layout\n  this.element.appendChild(this.helperContainer);\n  this.textarea = document.createElement('textarea');\n  this.textarea.classList.add('xterm-helper-textarea');\n  this.textarea.setAttribute('autocorrect', 'off');\n  this.textarea.setAttribute('autocapitalize', 'off');\n  this.textarea.setAttribute('spellcheck', 'false');\n  this.textarea.tabIndex = 0;\n  this.textarea.addEventListener('focus', function() {\n    self.emit('focus', {terminal: self});\n  });\n  this.textarea.addEventListener('blur', function() {\n    self.emit('blur', {terminal: self});\n  });\n  this.helperContainer.appendChild(this.textarea);\n\n  this.compositionView = document.createElement('div');\n  this.compositionView.classList.add('composition-view');\n  this.compositionHelper = new CompositionHelper(this.textarea, this.compositionView, this);\n  this.helperContainer.appendChild(this.compositionView);\n\n  this.charSizeStyleElement = document.createElement('style');\n  this.helperContainer.appendChild(this.charSizeStyleElement);\n\n  for (; i < this.rows; i++) {\n    this.insertRow();\n  }\n  this.parent.appendChild(this.element);\n\n  this.charMeasure = new CharMeasure(document, this.helperContainer);\n  this.charMeasure.on('charsizechanged', function () {\n    self.updateCharSizeStyles();\n  });\n  this.charMeasure.measure();\n\n  this.viewport = new Viewport(this, this.viewportElement, this.viewportScrollArea, this.charMeasure);\n  this.renderer = new Renderer(this);\n  this.selectionManager = new SelectionManager(\n    this, this.buffer.lines, this.rowContainer, this.charMeasure\n  );\n  this.selectionManager.on('refresh', data => {\n    this.renderer.refreshSelection(data.start, data.end);\n  });\n  this.selectionManager.on('newselection', text => {\n    // If there's a new selection, put it into the textarea, focus and select it\n    // in order to register it as a selection on the OS. This event is fired\n    // only on Linux to enable middle click to paste selection.\n    this.textarea.value = text;\n    this.textarea.focus();\n    this.textarea.select();\n  });\n  this.on('scroll', () => this.selectionManager.refresh());\n  this.viewportElement.addEventListener('scroll', () => this.selectionManager.refresh());\n\n  // Setup loop that draws to screen\n  this.refresh(0, this.rows - 1);\n\n  // Initialize global actions that\n  // need to be taken on the document.\n  this.initGlobal();\n\n  /**\n   * Automatic focus functionality.\n   * TODO: Default to `false` starting with xterm.js 3.0.\n   */\n  if (typeof focus == 'undefined') {\n    let message = 'You did not pass the `focus` argument in `Terminal.prototype.open()`.\\n';\n\n    message += 'The `focus` argument now defaults to `true` but starting with xterm.js 3.0 ';\n    message += 'it will default to `false`.';\n\n    console.warn(message);\n    focus = true;\n  }\n\n  if (focus) {\n    this.focus();\n  }\n\n  // Listen for mouse events and translate\n  // them into terminal mouse protocols.\n  this.bindMouse();\n\n  /**\n   * This event is emitted when terminal has completed opening.\n   *\n   * @event open\n   */\n  this.emit('open');\n};\n\n\n/**\n * Attempts to load an add-on using CommonJS or RequireJS (whichever is available).\n * @param {string} addon The name of the addon to load\n * @static\n */\nTerminal.loadAddon = function(addon, callback) {\n  if (typeof exports === 'object' && typeof module === 'object') {\n    // CommonJS\n    return require('./addons/' + addon + '/' + addon);\n  } else if (typeof define == 'function') {\n    // RequireJS\n    return require(['./addons/' + addon + '/' + addon], callback);\n  } else {\n    console.error('Cannot load a module without a CommonJS or RequireJS environment.');\n    return false;\n  }\n};\n\n/**\n * Updates the helper CSS class with any changes necessary after the terminal's\n * character width has been changed.\n */\nTerminal.prototype.updateCharSizeStyles = function() {\n  this.charSizeStyleElement.textContent =\n      `.xterm-wide-char{width:${this.charMeasure.width * 2}px;}` +\n      `.xterm-normal-char{width:${this.charMeasure.width}px;}` +\n      `.xterm-rows > div{height:${this.charMeasure.height}px;}`;\n}\n\n/**\n * XTerm mouse events\n * http://invisible-island.net/xterm/ctlseqs/ctlseqs.html#Mouse%20Tracking\n * To better understand these\n * the xterm code is very helpful:\n * Relevant files:\n *   button.c, charproc.c, misc.c\n * Relevant functions in xterm/button.c:\n *   BtnCode, EmitButtonCode, EditorButton, SendMousePosition\n */\nTerminal.prototype.bindMouse = function() {\n  var el = this.element, self = this, pressed = 32;\n\n  // mouseup, mousedown, wheel\n  // left click: ^[[M 3<^[[M#3<\n  // wheel up: ^[[M`3>\n  function sendButton(ev) {\n    var button\n    , pos;\n\n    // get the xterm-style button\n    button = getButton(ev);\n\n    // get mouse coordinates\n    pos = getRawByteCoords(ev, self.rowContainer, self.charMeasure, self.cols, self.rows);\n    if (!pos) return;\n\n    sendEvent(button, pos);\n\n    switch (ev.overrideType || ev.type) {\n      case 'mousedown':\n        pressed = button;\n        break;\n      case 'mouseup':\n        // keep it at the left\n        // button, just in case.\n        pressed = 32;\n        break;\n      case 'wheel':\n        // nothing. don't\n        // interfere with\n        // `pressed`.\n        break;\n    }\n  }\n\n  // motion example of a left click:\n  // ^[[M 3<^[[M@4<^[[M@5<^[[M@6<^[[M@7<^[[M#7<\n  function sendMove(ev) {\n    var button = pressed\n    , pos;\n\n    pos = getRawByteCoords(ev, self.rowContainer, self.charMeasure, self.cols, self.rows);\n    if (!pos) return;\n\n    // buttons marked as motions\n    // are incremented by 32\n    button += 32;\n\n    sendEvent(button, pos);\n  }\n\n  // encode button and\n  // position to characters\n  function encode(data, ch) {\n    if (!self.utfMouse) {\n      if (ch === 255) return data.push(0);\n      if (ch > 127) ch = 127;\n      data.push(ch);\n    } else {\n      if (ch === 2047) return data.push(0);\n      if (ch < 127) {\n        data.push(ch);\n      } else {\n        if (ch > 2047) ch = 2047;\n        data.push(0xC0 | (ch >> 6));\n        data.push(0x80 | (ch & 0x3F));\n      }\n    }\n  }\n\n  // send a mouse event:\n  // regular/utf8: ^[[M Cb Cx Cy\n  // urxvt: ^[[ Cb ; Cx ; Cy M\n  // sgr: ^[[ Cb ; Cx ; Cy M/m\n  // vt300: ^[[ 24(1/3/5)~ [ Cx , Cy ] \\r\n  // locator: CSI P e ; P b ; P r ; P c ; P p & w\n  function sendEvent(button, pos) {\n    // self.emit('mouse', {\n    //   x: pos.x - 32,\n    //   y: pos.x - 32,\n    //   button: button\n    // });\n\n    if (self.vt300Mouse) {\n      // NOTE: Unstable.\n      // http://www.vt100.net/docs/vt3xx-gp/chapter15.html\n      button &= 3;\n      pos.x -= 32;\n      pos.y -= 32;\n      var data = C0.ESC + '[24';\n      if (button === 0) data += '1';\n      else if (button === 1) data += '3';\n      else if (button === 2) data += '5';\n      else if (button === 3) return;\n      else data += '0';\n      data += '~[' + pos.x + ',' + pos.y + ']\\r';\n      self.send(data);\n      return;\n    }\n\n    if (self.decLocator) {\n      // NOTE: Unstable.\n      button &= 3;\n      pos.x -= 32;\n      pos.y -= 32;\n      if (button === 0) button = 2;\n      else if (button === 1) button = 4;\n      else if (button === 2) button = 6;\n      else if (button === 3) button = 3;\n      self.send(C0.ESC + '['\n                + button\n                + ';'\n                + (button === 3 ? 4 : 0)\n                + ';'\n                + pos.y\n                + ';'\n                + pos.x\n                + ';'\n                + (pos.page || 0)\n                + '&w');\n      return;\n    }\n\n    if (self.urxvtMouse) {\n      pos.x -= 32;\n      pos.y -= 32;\n      pos.x++;\n      pos.y++;\n      self.send(C0.ESC + '[' + button + ';' + pos.x + ';' + pos.y + 'M');\n      return;\n    }\n\n    if (self.sgrMouse) {\n      pos.x -= 32;\n      pos.y -= 32;\n      self.send(C0.ESC + '[<'\n                + (((button & 3) === 3 ? button & ~3 : button) - 32)\n                + ';'\n                + pos.x\n                + ';'\n                + pos.y\n                + ((button & 3) === 3 ? 'm' : 'M'));\n      return;\n    }\n\n    var data = [];\n\n    encode(data, button);\n    encode(data, pos.x);\n    encode(data, pos.y);\n\n    self.send(C0.ESC + '[M' + String.fromCharCode.apply(String, data));\n  }\n\n  function getButton(ev) {\n    var button\n    , shift\n    , meta\n    , ctrl\n    , mod;\n\n    // two low bits:\n    // 0 = left\n    // 1 = middle\n    // 2 = right\n    // 3 = release\n    // wheel up/down:\n    // 1, and 2 - with 64 added\n    switch (ev.overrideType || ev.type) {\n      case 'mousedown':\n        button = ev.button != null\n          ? +ev.button\n        : ev.which != null\n          ? ev.which - 1\n        : null;\n\n        if (self.browser.isMSIE) {\n          button = button === 1 ? 0 : button === 4 ? 1 : button;\n        }\n        break;\n      case 'mouseup':\n        button = 3;\n        break;\n      case 'DOMMouseScroll':\n        button = ev.detail < 0\n          ? 64\n        : 65;\n        break;\n      case 'wheel':\n        button = ev.wheelDeltaY > 0\n          ? 64\n        : 65;\n        break;\n    }\n\n    // next three bits are the modifiers:\n    // 4 = shift, 8 = meta, 16 = control\n    shift = ev.shiftKey ? 4 : 0;\n    meta = ev.metaKey ? 8 : 0;\n    ctrl = ev.ctrlKey ? 16 : 0;\n    mod = shift | meta | ctrl;\n\n    // no mods\n    if (self.vt200Mouse) {\n      // ctrl only\n      mod &= ctrl;\n    } else if (!self.normalMouse) {\n      mod = 0;\n    }\n\n    // increment to SP\n    button = (32 + (mod << 2)) + button;\n\n    return button;\n  }\n\n  on(el, 'mousedown', function(ev) {\n\n    // Prevent the focus on the textarea from getting lost\n    // and make sure we get focused on mousedown\n    ev.preventDefault();\n    self.focus();\n\n    if (!self.mouseEvents) return;\n\n    // send the button\n    sendButton(ev);\n\n    // fix for odd bug\n    //if (self.vt200Mouse && !self.normalMouse) {\n    if (self.vt200Mouse) {\n      ev.overrideType = 'mouseup';\n      sendButton(ev);\n      return self.cancel(ev);\n    }\n\n    // bind events\n    if (self.normalMouse) on(self.document, 'mousemove', sendMove);\n\n    // x10 compatibility mode can't send button releases\n    if (!self.x10Mouse) {\n      on(self.document, 'mouseup', function up(ev) {\n        sendButton(ev);\n        if (self.normalMouse) off(self.document, 'mousemove', sendMove);\n        off(self.document, 'mouseup', up);\n        return self.cancel(ev);\n      });\n    }\n\n    return self.cancel(ev);\n  });\n\n  //if (self.normalMouse) {\n  //  on(self.document, 'mousemove', sendMove);\n  //}\n\n  on(el, 'wheel', function(ev) {\n    if (!self.mouseEvents) return;\n    if (self.x10Mouse\n        || self.vt300Mouse\n        || self.decLocator) return;\n    sendButton(ev);\n    return self.cancel(ev);\n  });\n\n  // allow wheel scrolling in\n  // the shell for example\n  on(el, 'wheel', function(ev) {\n    if (self.mouseEvents) return;\n    self.viewport.onWheel(ev);\n    return self.cancel(ev);\n  });\n\n  on(el, 'touchstart', function(ev) {\n    if (self.mouseEvents) return;\n    self.viewport.onTouchStart(ev);\n    return self.cancel(ev);\n  });\n\n  on(el, 'touchmove', function(ev) {\n    if (self.mouseEvents) return;\n    self.viewport.onTouchMove(ev);\n    return self.cancel(ev);\n  });\n};\n\n/**\n * Destroys the terminal.\n */\nTerminal.prototype.destroy = function() {\n  this.readable = false;\n  this.writable = false;\n  this._events = {};\n  this.handler = function() {};\n  this.write = function() {};\n  if (this.element && this.element.parentNode) {\n    this.element.parentNode.removeChild(this.element);\n  }\n  //this.emit('close');\n};\n\n/**\n * Tells the renderer to refresh terminal content between two rows (inclusive) at the next\n * opportunity.\n * @param {number} start The row to start from (between 0 and this.rows - 1).\n * @param {number} end The row to end at (between start and this.rows - 1).\n */\nTerminal.prototype.refresh = function(start, end) {\n  if (this.renderer) {\n    this.renderer.queueRefresh(start, end);\n  }\n};\n\n/**\n * Queues linkification for the specified rows.\n * @param {number} start The row to start from (between 0 and this.rows - 1).\n * @param {number} end The row to end at (between start and this.rows - 1).\n */\nTerminal.prototype.queueLinkification = function(start, end) {\n  if (this.linkifier) {\n    for (let i = start; i <= end; i++) {\n      this.linkifier.linkifyRow(i);\n    }\n  }\n};\n\n/**\n * Display the cursor element\n */\nTerminal.prototype.showCursor = function() {\n  if (!this.cursorState) {\n    this.cursorState = 1;\n    this.refresh(this.buffer.y, this.buffer.y);\n  }\n};\n\n/**\n * Scroll the terminal down 1 row, creating a blank line.\n * @param {boolean} isWrapped Whether the new line is wrapped from the previous\n * line.\n */\nTerminal.prototype.scroll = function(isWrapped) {\n  var row;\n\n  // Make room for the new row in lines\n  if (this.buffer.lines.length === this.buffer.lines.maxLength) {\n    this.buffer.lines.trimStart(1);\n    this.buffer.ybase--;\n    if (this.buffer.ydisp !== 0) {\n      this.buffer.ydisp--;\n    }\n  }\n\n  this.buffer.ybase++;\n\n  // TODO: Why is this done twice?\n  if (!this.userScrolling) {\n    this.buffer.ydisp = this.buffer.ybase;\n  }\n\n  // last line\n  row = this.buffer.ybase + this.rows - 1;\n\n  // subtract the bottom scroll region\n  row -= this.rows - 1 - this.buffer.scrollBottom;\n\n  if (row === this.buffer.lines.length) {\n    // Optimization: pushing is faster than splicing when they amount to the same behavior\n    this.buffer.lines.push(this.blankLine(undefined, isWrapped));\n  } else {\n    // add our new line\n    this.buffer.lines.splice(row, 0, this.blankLine(undefined, isWrapped));\n  }\n\n  if (this.buffer.scrollTop !== 0) {\n    if (this.buffer.ybase !== 0) {\n      this.buffer.ybase--;\n      if (!this.userScrolling) {\n        this.buffer.ydisp = this.buffer.ybase;\n      }\n    }\n    this.buffer.lines.splice(this.buffer.ybase + this.buffer.scrollTop, 1);\n  }\n\n  // this.maxRange();\n  this.updateRange(this.buffer.scrollTop);\n  this.updateRange(this.buffer.scrollBottom);\n\n  /**\n   * This event is emitted whenever the terminal is scrolled.\n   * The one parameter passed is the new y display position.\n   *\n   * @event scroll\n   */\n  this.emit('scroll', this.buffer.ydisp);\n};\n\n/**\n * Scroll the display of the terminal\n * @param {number} disp The number of lines to scroll down (negatives scroll up).\n * @param {boolean} suppressScrollEvent Don't emit the scroll event as scrollDisp. This is used\n * to avoid unwanted events being handled by the veiwport when the event was triggered from the\n * viewport originally.\n */\nTerminal.prototype.scrollDisp = function(disp, suppressScrollEvent) {\n  if (disp < 0) {\n    if (this.buffer.ydisp === 0) {\n      return;\n    }\n    this.userScrolling = true;\n  } else if (disp + this.buffer.ydisp >= this.buffer.ybase) {\n    this.userScrolling = false;\n  }\n\n  const oldYdisp = this.buffer.ydisp;\n  this.buffer.ydisp = Math.max(Math.min(this.buffer.ydisp + disp, this.buffer.ybase), 0);\n\n  // No change occurred, don't trigger scroll/refresh\n  if (oldYdisp === this.buffer.ydisp) {\n    return;\n  }\n\n  if (!suppressScrollEvent) {\n    this.emit('scroll', this.buffer.ydisp);\n  }\n\n  this.refresh(0, this.rows - 1);\n};\n\n/**\n * Scroll the display of the terminal by a number of pages.\n * @param {number} pageCount The number of pages to scroll (negative scrolls up).\n */\nTerminal.prototype.scrollPages = function(pageCount) {\n  this.scrollDisp(pageCount * (this.rows - 1));\n};\n\n/**\n * Scrolls the display of the terminal to the top.\n */\nTerminal.prototype.scrollToTop = function() {\n  this.scrollDisp(-this.buffer.ydisp);\n};\n\n/**\n * Scrolls the display of the terminal to the bottom.\n */\nTerminal.prototype.scrollToBottom = function() {\n  this.scrollDisp(this.buffer.ybase - this.buffer.ydisp);\n};\n\n/**\n * Writes text to the terminal.\n * @param {string} data The text to write to the terminal.\n */\nTerminal.prototype.write = function(data) {\n  this.writeBuffer.push(data);\n\n  // Send XOFF to pause the pty process if the write buffer becomes too large so\n  // xterm.js can catch up before more data is sent. This is necessary in order\n  // to keep signals such as ^C responsive.\n  if (this.options.useFlowControl && !this.xoffSentToCatchUp && this.writeBuffer.length >= WRITE_BUFFER_PAUSE_THRESHOLD) {\n    // XOFF - stop pty pipe\n    // XON will be triggered by emulator before processing data chunk\n    this.send(C0.DC3);\n    this.xoffSentToCatchUp = true;\n  }\n\n  if (!this.writeInProgress && this.writeBuffer.length > 0) {\n    // Kick off a write which will write all data in sequence recursively\n    this.writeInProgress = true;\n    // Kick off an async innerWrite so more writes can come in while processing data\n    var self = this;\n    setTimeout(function () {\n      self.innerWrite();\n    });\n  }\n};\n\nTerminal.prototype.innerWrite = function() {\n  var writeBatch = this.writeBuffer.splice(0, WRITE_BATCH_SIZE);\n  while (writeBatch.length > 0) {\n    var data = writeBatch.shift();\n    var l = data.length, i = 0, j, cs, ch, code, low, ch_width, row;\n\n    // If XOFF was sent in order to catch up with the pty process, resume it if\n    // the writeBuffer is empty to allow more data to come in.\n    if (this.xoffSentToCatchUp && writeBatch.length === 0 && this.writeBuffer.length === 0) {\n      this.send(C0.DC1);\n      this.xoffSentToCatchUp = false;\n    }\n\n    this.refreshStart = this.buffer.y;\n    this.refreshEnd = this.buffer.y;\n\n    // HACK: Set the parser state based on it's state at the time of return.\n    // This works around the bug #662 which saw the parser state reset in the\n    // middle of parsing escape sequence in two chunks. For some reason the\n    // state of the parser resets to 0 after exiting parser.parse. This change\n    // just sets the state back based on the correct return statement.\n    var state = this.parser.parse(data);\n    this.parser.setState(state);\n\n    this.updateRange(this.buffer.y);\n    this.refresh(this.refreshStart, this.refreshEnd);\n  }\n  if (this.writeBuffer.length > 0) {\n    // Allow renderer to catch up before processing the next batch\n    var self = this;\n    setTimeout(function () {\n      self.innerWrite();\n    }, 0);\n  } else {\n    this.writeInProgress = false;\n  }\n};\n\n/**\n * Writes text to the terminal, followed by a break line character (\\n).\n * @param {string} data The text to write to the terminal.\n */\nTerminal.prototype.writeln = function(data) {\n  this.write(data + '\\r\\n');\n};\n\n/**\n * DEPRECATED: only for backward compatibility. Please use attachCustomKeyEventHandler() instead.\n * @param {function} customKeydownHandler The custom KeyboardEvent handler to attach. This is a\n *   function that takes a KeyboardEvent, allowing consumers to stop propogation and/or prevent\n *   the default action. The function returns whether the event should be processed by xterm.js.\n */\nTerminal.prototype.attachCustomKeydownHandler = function(customKeydownHandler) {\n  let message = 'attachCustomKeydownHandler() is DEPRECATED and will be removed soon. Please use attachCustomKeyEventHandler() instead.';\n  console.warn(message);\n  this.attachCustomKeyEventHandler(customKeydownHandler);\n};\n\n/**\n * Attaches a custom key event handler which is run before keys are processed, giving consumers of\n * xterm.js ultimate control as to what keys should be processed by the terminal and what keys\n * should not.\n * @param {function} customKeyEventHandler The custom KeyboardEvent handler to attach. This is a\n *   function that takes a KeyboardEvent, allowing consumers to stop propogation and/or prevent\n *   the default action. The function returns whether the event should be processed by xterm.js.\n */\nTerminal.prototype.attachCustomKeyEventHandler = function(customKeyEventHandler) {\n  this.customKeyEventHandler = customKeyEventHandler;\n};\n\n/**\n * Attaches a http(s) link handler, forcing web links to behave differently to\n * regular <a> tags. This will trigger a refresh as links potentially need to be\n * reconstructed. Calling this with null will remove the handler.\n * @param {LinkMatcherHandler} handler The handler callback function.\n */\nTerminal.prototype.setHypertextLinkHandler = function(handler) {\n  if (!this.linkifier) {\n    throw new Error('Cannot attach a hypertext link handler before Terminal.open is called');\n  }\n  this.linkifier.setHypertextLinkHandler(handler);\n  // Refresh to force links to refresh\n  this.refresh(0, this.rows - 1);\n};\n\n/**\n * Attaches a validation callback for hypertext links. This is useful to use\n * validation logic or to do something with the link's element and url.\n * @param {LinkMatcherValidationCallback} callback The callback to use, this can\n * be cleared with null.\n */\nTerminal.prototype.setHypertextValidationCallback = function(callback) {\n  if (!this.linkifier) {\n    throw new Error('Cannot attach a hypertext validation callback before Terminal.open is called');\n  }\n  this.linkifier.setHypertextValidationCallback(callback);\n  // Refresh to force links to refresh\n  this.refresh(0, this.rows - 1);\n};\n\n/**\n   * Registers a link matcher, allowing custom link patterns to be matched and\n   * handled.\n   * @param {RegExp} regex The regular expression to search for, specifically\n   * this searches the textContent of the rows. You will want to use \\s to match\n   * a space ' ' character for example.\n   * @param {LinkMatcherHandler} handler The callback when the link is called.\n   * @param {LinkMatcherOptions} [options] Options for the link matcher.\n   * @return {number} The ID of the new matcher, this can be used to deregister.\n */\nTerminal.prototype.registerLinkMatcher = function(regex, handler, options) {\n  if (this.linkifier) {\n    var matcherId = this.linkifier.registerLinkMatcher(regex, handler, options);\n    this.refresh(0, this.rows - 1);\n    return matcherId;\n  }\n};\n\n/**\n * Deregisters a link matcher if it has been registered.\n * @param {number} matcherId The link matcher's ID (returned after register)\n */\nTerminal.prototype.deregisterLinkMatcher = function(matcherId) {\n  if (this.linkifier) {\n    if (this.linkifier.deregisterLinkMatcher(matcherId)) {\n      this.refresh(0, this.rows - 1);\n    }\n  }\n};\n\n/**\n * Gets whether the terminal has an active selection.\n */\nTerminal.prototype.hasSelection = function() {\n  return this.selectionManager ? this.selectionManager.hasSelection : false;\n};\n\n/**\n * Gets the terminal's current selection, this is useful for implementing copy\n * behavior outside of xterm.js.\n */\nTerminal.prototype.getSelection = function() {\n  return this.selectionManager ? this.selectionManager.selectionText : '';\n};\n\n/**\n * Clears the current terminal selection.\n */\nTerminal.prototype.clearSelection = function() {\n  if (this.selectionManager) {\n    this.selectionManager.clearSelection();\n  }\n};\n\n/**\n * Selects all text within the terminal.\n */\nTerminal.prototype.selectAll = function() {\n  if (this.selectionManager) {\n    this.selectionManager.selectAll();\n  }\n};\n\n/**\n * Handle a keydown event\n * Key Resources:\n *   - https://developer.mozilla.org/en-US/docs/DOM/KeyboardEvent\n * @param {KeyboardEvent} ev The keydown event to be handled.\n */\nTerminal.prototype.keyDown = function(ev) {\n  if (this.customKeyEventHandler && this.customKeyEventHandler(ev) === false) {\n    return false;\n  }\n\n  this.restartCursorBlinking();\n\n  if (!this.compositionHelper.keydown.bind(this.compositionHelper)(ev)) {\n    if (this.buffer.ybase !== this.buffer.ydisp) {\n      this.scrollToBottom();\n    }\n    return false;\n  }\n\n  var self = this;\n  var result = this.evaluateKeyEscapeSequence(ev);\n\n  if (result.key === C0.DC3) { // XOFF\n    this.writeStopped = true;\n  } else if (result.key === C0.DC1) { // XON\n    this.writeStopped = false;\n  }\n\n  if (result.scrollDisp) {\n    this.scrollDisp(result.scrollDisp);\n    return this.cancel(ev, true);\n  }\n\n  if (isThirdLevelShift(this, ev)) {\n    return true;\n  }\n\n  if (result.cancel) {\n    // The event is canceled at the end already, is this necessary?\n    this.cancel(ev, true);\n  }\n\n  if (!result.key) {\n    return true;\n  }\n\n  this.emit('keydown', ev);\n  this.emit('key', result.key, ev);\n  this.showCursor();\n  this.handler(result.key);\n\n  return this.cancel(ev, true);\n};\n\n/**\n * Returns an object that determines how a KeyboardEvent should be handled. The key of the\n * returned value is the new key code to pass to the PTY.\n *\n * Reference: http://invisible-island.net/xterm/ctlseqs/ctlseqs.html\n * @param {KeyboardEvent} ev The keyboard event to be translated to key escape sequence.\n */\nTerminal.prototype.evaluateKeyEscapeSequence = function(ev) {\n  var result = {\n    // Whether to cancel event propogation (NOTE: this may not be needed since the event is\n    // canceled at the end of keyDown\n    cancel: false,\n    // The new key even to emit\n    key: undefined,\n    // The number of characters to scroll, if this is defined it will cancel the event\n    scrollDisp: undefined\n  };\n  var modifiers = ev.shiftKey << 0 | ev.altKey << 1 | ev.ctrlKey << 2 | ev.metaKey << 3;\n  switch (ev.keyCode) {\n    case 8:\n      // backspace\n      if (ev.shiftKey) {\n        result.key = C0.BS; // ^H\n        break;\n      }\n      result.key = C0.DEL; // ^?\n      break;\n    case 9:\n      // tab\n      if (ev.shiftKey) {\n        result.key = C0.ESC + '[Z';\n        break;\n      }\n      result.key = C0.HT;\n      result.cancel = true;\n      break;\n    case 13:\n      // return/enter\n      result.key = C0.CR;\n      result.cancel = true;\n      break;\n    case 27:\n      // escape\n      result.key = C0.ESC;\n      result.cancel = true;\n      break;\n    case 37:\n      // left-arrow\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'D';\n        // HACK: Make Alt + left-arrow behave like Ctrl + left-arrow: move one word backwards\n        // http://unix.stackexchange.com/a/108106\n        // macOS uses different escape sequences than linux\n        if (result.key == C0.ESC + '[1;3D') {\n          result.key = (this.browser.isMac) ? C0.ESC + 'b' : C0.ESC + '[1;5D';\n        }\n      } else if (this.applicationCursor) {\n        result.key = C0.ESC + 'OD';\n      } else {\n        result.key = C0.ESC + '[D';\n      }\n      break;\n    case 39:\n      // right-arrow\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'C';\n        // HACK: Make Alt + right-arrow behave like Ctrl + right-arrow: move one word forward\n        // http://unix.stackexchange.com/a/108106\n        // macOS uses different escape sequences than linux\n        if (result.key == C0.ESC + '[1;3C') {\n          result.key = (this.browser.isMac) ? C0.ESC + 'f' : C0.ESC + '[1;5C';\n        }\n      } else if (this.applicationCursor) {\n        result.key = C0.ESC + 'OC';\n      } else {\n        result.key = C0.ESC + '[C';\n      }\n      break;\n    case 38:\n      // up-arrow\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'A';\n        // HACK: Make Alt + up-arrow behave like Ctrl + up-arrow\n        // http://unix.stackexchange.com/a/108106\n        if (result.key == C0.ESC + '[1;3A') {\n          result.key = C0.ESC + '[1;5A';\n        }\n      } else if (this.applicationCursor) {\n        result.key = C0.ESC + 'OA';\n      } else {\n        result.key = C0.ESC + '[A';\n      }\n      break;\n    case 40:\n      // down-arrow\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'B';\n        // HACK: Make Alt + down-arrow behave like Ctrl + down-arrow\n        // http://unix.stackexchange.com/a/108106\n        if (result.key == C0.ESC + '[1;3B') {\n          result.key = C0.ESC + '[1;5B';\n        }\n      } else if (this.applicationCursor) {\n        result.key = C0.ESC + 'OB';\n      } else {\n        result.key = C0.ESC + '[B';\n      }\n      break;\n    case 45:\n      // insert\n      if (!ev.shiftKey && !ev.ctrlKey) {\n        // <Ctrl> or <Shift> + <Insert> are used to\n        // copy-paste on some systems.\n        result.key = C0.ESC + '[2~';\n      }\n      break;\n    case 46:\n      // delete\n      if (modifiers) {\n        result.key = C0.ESC + '[3;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[3~';\n      }\n      break;\n    case 36:\n      // home\n      if (modifiers)\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'H';\n      else if (this.applicationCursor)\n        result.key = C0.ESC + 'OH';\n      else\n        result.key = C0.ESC + '[H';\n      break;\n    case 35:\n      // end\n      if (modifiers)\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'F';\n      else if (this.applicationCursor)\n        result.key = C0.ESC + 'OF';\n      else\n        result.key = C0.ESC + '[F';\n      break;\n    case 33:\n      // page up\n      if (ev.shiftKey) {\n        result.scrollDisp = -(this.rows - 1);\n      } else {\n        result.key = C0.ESC + '[5~';\n      }\n      break;\n    case 34:\n      // page down\n      if (ev.shiftKey) {\n        result.scrollDisp = this.rows - 1;\n      } else {\n        result.key = C0.ESC + '[6~';\n      }\n      break;\n    case 112:\n      // F1-F12\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'P';\n      } else {\n        result.key = C0.ESC + 'OP';\n      }\n      break;\n    case 113:\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'Q';\n      } else {\n        result.key = C0.ESC + 'OQ';\n      }\n      break;\n    case 114:\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'R';\n      } else {\n        result.key = C0.ESC + 'OR';\n      }\n      break;\n    case 115:\n      if (modifiers) {\n        result.key = C0.ESC + '[1;' + (modifiers + 1) + 'S';\n      } else {\n        result.key = C0.ESC + 'OS';\n      }\n      break;\n    case 116:\n      if (modifiers) {\n        result.key = C0.ESC + '[15;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[15~';\n      }\n      break;\n    case 117:\n      if (modifiers) {\n        result.key = C0.ESC + '[17;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[17~';\n      }\n      break;\n    case 118:\n      if (modifiers) {\n        result.key = C0.ESC + '[18;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[18~';\n      }\n      break;\n    case 119:\n      if (modifiers) {\n        result.key = C0.ESC + '[19;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[19~';\n      }\n      break;\n    case 120:\n      if (modifiers) {\n        result.key = C0.ESC + '[20;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[20~';\n      }\n      break;\n    case 121:\n      if (modifiers) {\n        result.key = C0.ESC + '[21;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[21~';\n      }\n      break;\n    case 122:\n      if (modifiers) {\n        result.key = C0.ESC + '[23;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[23~';\n      }\n      break;\n    case 123:\n      if (modifiers) {\n        result.key = C0.ESC + '[24;' + (modifiers + 1) + '~';\n      } else {\n        result.key = C0.ESC + '[24~';\n      }\n      break;\n    default:\n      // a-z and space\n      if (ev.ctrlKey && !ev.shiftKey && !ev.altKey && !ev.metaKey) {\n        if (ev.keyCode >= 65 && ev.keyCode <= 90) {\n          result.key = String.fromCharCode(ev.keyCode - 64);\n        } else if (ev.keyCode === 32) {\n          // NUL\n          result.key = String.fromCharCode(0);\n        } else if (ev.keyCode >= 51 && ev.keyCode <= 55) {\n          // escape, file sep, group sep, record sep, unit sep\n          result.key = String.fromCharCode(ev.keyCode - 51 + 27);\n        } else if (ev.keyCode === 56) {\n          // delete\n          result.key = String.fromCharCode(127);\n        } else if (ev.keyCode === 219) {\n          // ^[ - Control Sequence Introducer (CSI)\n          result.key = String.fromCharCode(27);\n        } else if (ev.keyCode === 220) {\n          // ^\\ - String Terminator (ST)\n          result.key = String.fromCharCode(28);\n        } else if (ev.keyCode === 221) {\n          // ^] - Operating System Command (OSC)\n          result.key = String.fromCharCode(29);\n        }\n      } else if (!this.browser.isMac && ev.altKey && !ev.ctrlKey && !ev.metaKey) {\n        // On Mac this is a third level shift. Use <Esc> instead.\n        if (ev.keyCode >= 65 && ev.keyCode <= 90) {\n          result.key = C0.ESC + String.fromCharCode(ev.keyCode + 32);\n        } else if (ev.keyCode === 192) {\n          result.key = C0.ESC + '`';\n        } else if (ev.keyCode >= 48 && ev.keyCode <= 57) {\n          result.key = C0.ESC + (ev.keyCode - 48);\n        }\n      } else if (this.browser.isMac && !ev.altKey && !ev.ctrlKey && ev.metaKey) {\n        if (ev.keyCode === 65) { // cmd + a\n          this.selectAll();\n        }\n      }\n      break;\n  }\n\n  return result;\n};\n\n/**\n * Set the G level of the terminal\n * @param g\n */\nTerminal.prototype.setgLevel = function(g) {\n  this.glevel = g;\n  this.charset = this.charsets[g];\n};\n\n/**\n * Set the charset for the given G level of the terminal\n * @param g\n * @param charset\n */\nTerminal.prototype.setgCharset = function(g, charset) {\n  this.charsets[g] = charset;\n  if (this.glevel === g) {\n    this.charset = charset;\n  }\n};\n\n/**\n * Handle a keypress event.\n * Key Resources:\n *   - https://developer.mozilla.org/en-US/docs/DOM/KeyboardEvent\n * @param {KeyboardEvent} ev The keypress event to be handled.\n */\nTerminal.prototype.keyPress = function(ev) {\n  var key;\n\n  if (this.customKeyEventHandler && this.customKeyEventHandler(ev) === false) {\n    return false;\n  }\n\n  this.cancel(ev);\n\n  if (ev.charCode) {\n    key = ev.charCode;\n  } else if (ev.which == null) {\n    key = ev.keyCode;\n  } else if (ev.which !== 0 && ev.charCode !== 0) {\n    key = ev.which;\n  } else {\n    return false;\n  }\n\n  if (!key || (\n    (ev.altKey || ev.ctrlKey || ev.metaKey) && !isThirdLevelShift(this, ev)\n  )) {\n    return false;\n  }\n\n  key = String.fromCharCode(key);\n\n  this.emit('keypress', key, ev);\n  this.emit('key', key, ev);\n  this.showCursor();\n  this.handler(key);\n\n  return true;\n};\n\n/**\n * Send data for handling to the terminal\n * @param {string} data\n */\nTerminal.prototype.send = function(data) {\n  var self = this;\n\n  if (!this.queue) {\n    setTimeout(function() {\n      self.handler(self.queue);\n      self.queue = '';\n    }, 1);\n  }\n\n  this.queue += data;\n};\n\n/**\n * Ring the bell.\n * Note: We could do sweet things with webaudio here\n */\nTerminal.prototype.bell = function() {\n  if (!this.visualBell) return;\n  var self = this;\n  this.element.style.borderColor = 'white';\n  setTimeout(function() {\n    self.element.style.borderColor = '';\n  }, 10);\n  if (this.popOnBell) this.focus();\n};\n\n/**\n * Log the current state to the console.\n */\nTerminal.prototype.log = function() {\n  if (!this.debug) return;\n  if (!this.context.console || !this.context.console.log) return;\n  var args = Array.prototype.slice.call(arguments);\n  this.context.console.log.apply(this.context.console, args);\n};\n\n/**\n * Log the current state as error to the console.\n */\nTerminal.prototype.error = function() {\n  if (!this.debug) return;\n  if (!this.context.console || !this.context.console.error) return;\n  var args = Array.prototype.slice.call(arguments);\n  this.context.console.error.apply(this.context.console, args);\n};\n\n/**\n * Resizes the terminal.\n *\n * @param {number} x The number of columns to resize to.\n * @param {number} y The number of rows to resize to.\n */\nTerminal.prototype.resize = function(x, y) {\n  if (isNaN(x) || isNaN(y)) {\n    return;\n  }\n\n  if (y > this.getOption('scrollback')) {\n    this.setOption('scrollback', y)\n  }\n\n  var line\n  , el\n  , i\n  , j\n  , ch\n  , addToY;\n\n  if (x === this.cols && y === this.rows) {\n    // Check if we still need to measure the char size (fixes #785).\n    if (!this.charMeasure.width || !this.charMeasure.height) {\n      this.charMeasure.measure();\n    }\n    return;\n  }\n\n  if (x < 1) x = 1;\n  if (y < 1) y = 1;\n\n  this.buffers.resize(x, y);\n\n  // Adjust rows in the DOM to accurately reflect the new dimensions\n  while (this.children.length < y) {\n    this.insertRow();\n  }\n  while (this.children.length > y) {\n    el = this.children.shift();\n    if (!el) continue;\n    el.parentNode.removeChild(el);\n  }\n\n  this.cols = x;\n  this.rows = y;\n  this.setupStops(this.cols);\n\n  this.charMeasure.measure();\n\n  this.refresh(0, this.rows - 1);\n\n  this.geometry = [this.cols, this.rows];\n  this.emit('resize', {terminal: this, cols: x, rows: y});\n};\n\n/**\n * Updates the range of rows to refresh\n * @param {number} y The number of rows to refresh next.\n */\nTerminal.prototype.updateRange = function(y) {\n  if (y < this.refreshStart) this.refreshStart = y;\n  if (y > this.refreshEnd) this.refreshEnd = y;\n  // if (y > this.refreshEnd) {\n  //   this.refreshEnd = y;\n  //   if (y > this.rows - 1) {\n  //     this.refreshEnd = this.rows - 1;\n  //   }\n  // }\n};\n\n/**\n * Set the range of refreshing to the maximum value\n */\nTerminal.prototype.maxRange = function() {\n  this.refreshStart = 0;\n  this.refreshEnd = this.rows - 1;\n};\n\n\n\n/**\n * Setup the tab stops.\n * @param {number} i\n */\nTerminal.prototype.setupStops = function(i) {\n  if (i != null) {\n    if (!this.buffer.tabs[i]) {\n      i = this.prevStop(i);\n    }\n  } else {\n    this.buffer.tabs = {};\n    i = 0;\n  }\n\n  for (; i < this.cols; i += this.getOption('tabStopWidth')) {\n    this.buffer.tabs[i] = true;\n  }\n};\n\n\n/**\n * Move the cursor to the previous tab stop from the given position (default is current).\n * @param {number} x The position to move the cursor to the previous tab stop.\n */\nTerminal.prototype.prevStop = function(x) {\n  if (x == null) x = this.buffer.x;\n  while (!this.buffer.tabs[--x] && x > 0);\n  return x >= this.cols\n    ? this.cols - 1\n  : x < 0 ? 0 : x;\n};\n\n\n/**\n * Move the cursor one tab stop forward from the given position (default is current).\n * @param {number} x The position to move the cursor one tab stop forward.\n */\nTerminal.prototype.nextStop = function(x) {\n  if (x == null) x = this.buffer.x;\n  while (!this.buffer.tabs[++x] && x < this.cols);\n  return x >= this.cols\n    ? this.cols - 1\n  : x < 0 ? 0 : x;\n};\n\n\n/**\n * Erase in the identified line everything from \"x\" to the end of the line (right).\n * @param {number} x The column from which to start erasing to the end of the line.\n * @param {number} y The line in which to operate.\n */\nTerminal.prototype.eraseRight = function(x, y) {\n  var line = this.buffer.lines.get(this.buffer.ybase + y);\n  if (!line) {\n    return;\n  }\n  var ch = [this.eraseAttr(), ' ', 1]; // xterm\n  for (; x < this.cols; x++) {\n    line[x] = ch;\n  }\n  this.updateRange(y);\n};\n\n\n\n/**\n * Erase in the identified line everything from \"x\" to the start of the line (left).\n * @param {number} x The column from which to start erasing to the start of the line.\n * @param {number} y The line in which to operate.\n */\nTerminal.prototype.eraseLeft = function(x, y) {\n  var line = this.buffer.lines.get(this.buffer.ybase + y);\n  if (!line) {\n    return;\n  }\n  var ch = [this.eraseAttr(), ' ', 1]; // xterm\n  x++;\n  while (x--) {\n    line[x] = ch;\n  }\n  this.updateRange(y);\n};\n\n/**\n * Clears the entire buffer, making the prompt line the new first line.\n */\nTerminal.prototype.clear = function() {\n  if (this.buffer.ybase === 0 && this.buffer.y === 0) {\n    // Don't clear if it's already clear\n    return;\n  }\n  this.buffer.lines.set(0, this.buffer.lines.get(this.buffer.ybase + this.buffer.y));\n  this.buffer.lines.length = 1;\n  this.buffer.ydisp = 0;\n  this.buffer.ybase = 0;\n  this.buffer.y = 0;\n  for (var i = 1; i < this.rows; i++) {\n    this.buffer.lines.push(this.blankLine());\n  }\n  this.refresh(0, this.rows - 1);\n  this.emit('scroll', this.buffer.ydisp);\n};\n\n/**\n * Erase all content in the given line\n * @param {number} y The line to erase all of its contents.\n */\nTerminal.prototype.eraseLine = function(y) {\n  this.eraseRight(0, y);\n};\n\n\n/**\n * Return the data array of a blank line\n * @param {number} cur First bunch of data for each \"blank\" character.\n * @param {boolean} isWrapped Whether the new line is wrapped from the previous line.\n */\nTerminal.prototype.blankLine = function(cur, isWrapped, cols) {\n  var attr = cur\n  ? this.eraseAttr()\n  : this.defAttr;\n\n  var ch = [attr, ' ', 1]  // width defaults to 1 halfwidth character\n  , line = []\n  , i = 0;\n\n  // TODO: It is not ideal that this is a property on an array, a buffer line\n  // class should be added that will hold this data and other useful functions.\n  if (isWrapped) {\n    line.isWrapped = isWrapped;\n  }\n\n  cols = cols || this.cols;\n  for (; i < cols; i++) {\n    line[i] = ch;\n  }\n\n  return line;\n};\n\n\n/**\n * If cur return the back color xterm feature attribute. Else return defAttr.\n * @param {object} cur\n */\nTerminal.prototype.ch = function(cur) {\n  return cur\n    ? [this.eraseAttr(), ' ', 1]\n  : [this.defAttr, ' ', 1];\n};\n\n\n/**\n * Evaluate if the current terminal is the given argument.\n * @param {object} term The terminal to evaluate\n */\nTerminal.prototype.is = function(term) {\n  var name = this.termName;\n  return (name + '').indexOf(term) === 0;\n};\n\n\n/**\n * Emit the 'data' event and populate the given data.\n * @param {string} data The data to populate in the event.\n */\nTerminal.prototype.handler = function(data) {\n  // Prevents all events to pty process if stdin is disabled\n  if (this.options.disableStdin) {\n    return;\n  }\n\n  // Clear the selection if the selection manager is available and has an active selection\n  if (this.selectionManager && this.selectionManager.hasSelection) {\n    this.selectionManager.clearSelection();\n  }\n\n  // Input is being sent to the terminal, the terminal should focus the prompt.\n  if (this.buffer.ybase !== this.buffer.ydisp) {\n    this.scrollToBottom();\n  }\n  this.emit('data', data);\n};\n\n\n/**\n * Emit the 'title' event and populate the given title.\n * @param {string} title The title to populate in the event.\n */\nTerminal.prototype.handleTitle = function(title) {\n  /**\n   * This event is emitted when the title of the terminal is changed\n   * from inside the terminal. The parameter is the new title.\n   *\n   * @event title\n   */\n  this.emit('title', title);\n};\n\n\n/**\n * ESC\n */\n\n/**\n * ESC D Index (IND is 0x84).\n */\nTerminal.prototype.index = function() {\n  this.buffer.y++;\n  if (this.buffer.y > this.buffer.scrollBottom) {\n    this.buffer.y--;\n    this.scroll();\n  }\n  // If the end of the line is hit, prevent this action from wrapping around to the next line.\n  if (this.buffer.x >= this.cols) {\n    this.buffer.x--;\n  }\n};\n\n\n/**\n * ESC M Reverse Index (RI is 0x8d).\n *\n * Move the cursor up one row, inserting a new blank line if necessary.\n */\nTerminal.prototype.reverseIndex = function() {\n  var j;\n  if (this.buffer.y === this.buffer.scrollTop) {\n    // possibly move the code below to term.reverseScroll();\n    // test: echo -ne '\\e[1;1H\\e[44m\\eM\\e[0m'\n    // blankLine(true) is xterm/linux behavior\n    this.buffer.lines.shiftElements(this.buffer.y + this.buffer.ybase, this.rows - 1, 1);\n    this.buffer.lines.set(this.buffer.y + this.buffer.ybase, this.blankLine(true));\n    this.updateRange(this.buffer.scrollTop);\n    this.updateRange(this.buffer.scrollBottom);\n  } else {\n    this.buffer.y--;\n  }\n};\n\n\n/**\n * ESC c Full Reset (RIS).\n */\nTerminal.prototype.reset = function() {\n  this.options.rows = this.rows;\n  this.options.cols = this.cols;\n  var customKeyEventHandler = this.customKeyEventHandler;\n  var cursorBlinkInterval = this.cursorBlinkInterval;\n  var inputHandler = this.inputHandler;\n  Terminal.call(this, this.options);\n  this.customKeyEventHandler = customKeyEventHandler;\n  this.cursorBlinkInterval = cursorBlinkInterval;\n  this.inputHandler = inputHandler;\n  this.refresh(0, this.rows - 1);\n  this.viewport.syncScrollArea();\n};\n\n\n/**\n * ESC H Tab Set (HTS is 0x88).\n */\nTerminal.prototype.tabSet = function() {\n  this.buffer.tabs[this.buffer.x] = true;\n};\n\n/**\n * Helpers\n */\n\nfunction on(el, type, handler, capture) {\n  if (!Array.isArray(el)) {\n    el = [el];\n  }\n  el.forEach(function (element) {\n    element.addEventListener(type, handler, capture || false);\n  });\n}\n\nfunction off(el, type, handler, capture) {\n  el.removeEventListener(type, handler, capture || false);\n}\n\nfunction cancel(ev, force) {\n  if (!this.cancelEvents && !force) {\n    return;\n  }\n  ev.preventDefault();\n  ev.stopPropagation();\n  return false;\n}\n\nfunction inherits(child, parent) {\n  function f() {\n    this.constructor = child;\n  }\n  f.prototype = parent.prototype;\n  child.prototype = new f;\n}\n\nfunction indexOf(obj, el) {\n  var i = obj.length;\n  while (i--) {\n    if (obj[i] === el) return i;\n  }\n  return -1;\n}\n\nfunction isThirdLevelShift(term, ev) {\n  var thirdLevelKey =\n      (term.browser.isMac && ev.altKey && !ev.ctrlKey && !ev.metaKey) ||\n      (term.browser.isMSWindows && ev.altKey && ev.ctrlKey && !ev.metaKey);\n\n  if (ev.type == 'keypress') {\n    return thirdLevelKey;\n  }\n\n  // Don't invoke for arrows, pageDown, home, backspace, etc. (on non-keypress events)\n  return thirdLevelKey && (!ev.keyCode || ev.keyCode > 47);\n}\n\n// Expose to InputHandler (temporary)\nTerminal.prototype.matchColor = matchColor;\n\nfunction matchColor(r1, g1, b1) {\n  var hash = (r1 << 16) | (g1 << 8) | b1;\n\n  if (matchColor._cache[hash] != null) {\n    return matchColor._cache[hash];\n  }\n\n  var ldiff = Infinity\n  , li = -1\n  , i = 0\n  , c\n  , r2\n  , g2\n  , b2\n  , diff;\n\n  for (; i < Terminal.vcolors.length; i++) {\n    c = Terminal.vcolors[i];\n    r2 = c[0];\n    g2 = c[1];\n    b2 = c[2];\n\n    diff = matchColor.distance(r1, g1, b1, r2, g2, b2);\n\n    if (diff === 0) {\n      li = i;\n      break;\n    }\n\n    if (diff < ldiff) {\n      ldiff = diff;\n      li = i;\n    }\n  }\n\n  return matchColor._cache[hash] = li;\n}\n\nmatchColor._cache = {};\n\n// http://stackoverflow.com/questions/1633828\nmatchColor.distance = function(r1, g1, b1, r2, g2, b2) {\n  return Math.pow(30 * (r1 - r2), 2)\n    + Math.pow(59 * (g1 - g2), 2)\n    + Math.pow(11 * (b1 - b2), 2);\n};\n\nfunction each(obj, iter, con) {\n  if (obj.forEach) return obj.forEach(iter, con);\n  for (var i = 0; i < obj.length; i++) {\n    iter.call(con, obj[i], i, obj);\n  }\n}\n\nfunction wasMondifierKeyOnlyEvent(ev) {\n  return ev.keyCode === 16 || // Shift\n    ev.keyCode === 17 || // Ctrl\n    ev.keyCode === 18; // Alt\n}\n\nfunction keys(obj) {\n  if (Object.keys) return Object.keys(obj);\n  var key, keys = [];\n  for (key in obj) {\n    if (Object.prototype.hasOwnProperty.call(obj, key)) {\n      keys.push(key);\n    }\n  }\n  return keys;\n}\n\n/**\n * Expose\n */\n\nTerminal.translateBufferLineToString = translateBufferLineToString;\nTerminal.EventEmitter = EventEmitter;\nTerminal.inherits = inherits;\n\n/**\n * Adds an event listener to the terminal.\n *\n * @param {string} event The name of the event. TODO: Document all event types\n * @param {function} callback The function to call when the event is triggered.\n */\nTerminal.on = on;\nTerminal.off = off;\nTerminal.cancel = cancel;\n\nmodule.exports = Terminal;\n","/**\n * @license MIT\n */\n\nimport { CharMeasure } from './CharMeasure';\n\nexport function getCoordsRelativeToElement(event: MouseEvent, element: HTMLElement): [number, number] {\n  // Ignore browsers that don't support MouseEvent.pageX\n  if (event.pageX == null) {\n    return null;\n  }\n\n  let x = event.pageX;\n  let y = event.pageY;\n\n  // Converts the coordinates from being relative to the document to being\n  // relative to the terminal.\n  while (element && element !== self.document.documentElement) {\n    x -= element.offsetLeft;\n    y -= element.offsetTop;\n    element = 'offsetParent' in element ? <HTMLElement>element.offsetParent : <HTMLElement>element.parentElement;\n  }\n  return [x, y];\n}\n\n/**\n * Gets coordinates within the terminal for a particular mouse event. The result\n * is returned as an array in the form [x, y] instead of an object as it's a\n * little faster and this function is used in some low level code.\n * @param event The mouse event.\n * @param rowContainer The terminal's row container.\n * @param charMeasure The char measure object used to determine character sizes.\n * @param colCount The number of columns in the terminal.\n * @param rowCount The number of rows n the terminal.\n * @param isSelection Whether the request is for the selection or not. This will\n * apply an offset to the x value such that the left half of the cell will\n * select that cell and the right half will select the next cell.\n */\nexport function getCoords(event: MouseEvent, rowContainer: HTMLElement, charMeasure: CharMeasure, colCount: number, rowCount: number, isSelection?: boolean): [number, number] {\n  // Coordinates cannot be measured if charMeasure has not been initialized\n  if (!charMeasure.width || !charMeasure.height) {\n    return null;\n  }\n\n  const coords = getCoordsRelativeToElement(event, rowContainer);\n  if (!coords) {\n    return null;\n  }\n\n  // Convert to cols/rows.\n  coords[0] = Math.ceil((coords[0] + (isSelection ? charMeasure.width / 2 : 0)) / charMeasure.width);\n  coords[1] = Math.ceil(coords[1] / charMeasure.height);\n\n  // Ensure coordinates are within the terminal viewport.\n  coords[0] = Math.min(Math.max(coords[0], 1), colCount + 1);\n  coords[1] = Math.min(Math.max(coords[1], 1), rowCount + 1);\n\n  return coords;\n}\n\n/**\n * Gets coordinates within the terminal for a particular mouse event, wrapping\n * them to the bounds of the terminal and adding 32 to both the x and y values\n * as expected by xterm.\n * @param event The mouse event.\n * @param rowContainer The terminal's row container.\n * @param charMeasure The char measure object used to determine character sizes.\n * @param colCount The number of columns in the terminal.\n * @param rowCount The number of rows in the terminal.\n */\nexport function getRawByteCoords(event: MouseEvent, rowContainer: HTMLElement, charMeasure: CharMeasure, colCount: number, rowCount: number): { x: number, y: number } {\n  const coords = getCoords(event, rowContainer, charMeasure, colCount, rowCount);\n  let x = coords[0];\n  let y = coords[1];\n\n  // xterm sends raw bytes and starts at 32 (SP) for each.\n  x += 32;\n  y += 32;\n\n  return { x, y };\n}\n","/**\n * Generic utilities module with methods that can be helpful at different parts of the code base.\n * @module xterm/utils/Generic\n * @license MIT\n */\n\n/**\n * Return if the given array contains the given element\n * @param {Array} array The array to search for the given element.\n * @param {Object} el The element to look for into the array\n */\nexport function contains(arr: any[], el: any) {\n  return arr.indexOf(el) >= 0;\n};\n","/**\n * @module xterm/utils/DomElementObjectPool\n * @license MIT\n */\n\n/**\n * An object pool that manages acquisition and releasing of DOM elements for\n * when reuse is desirable.\n */\nexport class DomElementObjectPool {\n  private static readonly OBJECT_ID_ATTRIBUTE = 'data-obj-id';\n\n  private static _objectCount = 0;\n\n  private _type: string;\n  private _pool: HTMLElement[];\n  private _inUse: {[key: string]: HTMLElement};\n\n  /**\n   * @param type The DOM element type (div, span, etc.).\n   */\n  constructor(private type: string) {\n    this._type = type;\n    this._pool = [];\n    this._inUse = {};\n  }\n\n  /**\n   * Acquire an element from the pool, creating it if the pool is empty.\n   */\n  public acquire(): HTMLElement {\n    let element: HTMLElement;\n    if (this._pool.length === 0) {\n      element = this._createNew();\n    } else {\n      element = this._pool.pop();\n    }\n    this._inUse[element.getAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE)] = element;\n    return element;\n  }\n\n  /**\n   * Release an element back into the pool. It's up to the caller of this\n   * function to ensure that all external references to the element have been\n   * removed.\n   * @param element The element being released.\n   */\n  public release(element: HTMLElement): void {\n    if (!this._inUse[element.getAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE)]) {\n      throw new Error('Could not release an element not yet acquired');\n    }\n    delete this._inUse[element.getAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE)];\n    this._cleanElement(element);\n    this._pool.push(element);\n  }\n\n  /**\n   * Creates a new element for the pool.\n   */\n  private _createNew(): HTMLElement {\n    const element = document.createElement(this._type);\n    const id = DomElementObjectPool._objectCount++;\n    element.setAttribute(DomElementObjectPool.OBJECT_ID_ATTRIBUTE, id.toString(10));\n    return element;\n  }\n\n  /**\n   * Resets an element back to a \"clean state\".\n   * @param element The element to be cleaned.\n   */\n  private _cleanElement(element: HTMLElement): void {\n    element.className = '';\n    element.innerHTML = '';\n  }\n}\n","/**\n * Represents a circular list; a list with a maximum size that wraps around when push is called,\n * overriding values at the start of the list.\n * @module xterm/utils/CircularList\n * @license MIT\n */\nimport { EventEmitter } from '../EventEmitter';\nimport { ICircularList } from '../Interfaces';\n\nexport class CircularList<T> extends EventEmitter implements ICircularList<T> {\n  private _array: T[];\n  private _startIndex: number;\n  private _length: number;\n\n  constructor(maxLength: number) {\n    super();\n    this._array = new Array<T>(maxLength);\n    this._startIndex = 0;\n    this._length = 0;\n  }\n\n  public get maxLength(): number {\n    return this._array.length;\n  }\n\n  public set maxLength(newMaxLength: number) {\n    // Reconstruct array, starting at index 0. Only transfer values from the\n    // indexes 0 to length.\n    let newArray = new Array<T>(newMaxLength);\n    for (let i = 0; i < Math.min(newMaxLength, this.length); i++) {\n      newArray[i] = this._array[this._getCyclicIndex(i)];\n    }\n    this._array = newArray;\n    this._startIndex = 0;\n  }\n\n  public get length(): number {\n    return this._length;\n  }\n\n  public set length(newLength: number) {\n    if (newLength > this._length) {\n      for (let i = this._length; i < newLength; i++) {\n        this._array[i] = undefined;\n      }\n    }\n    this._length = newLength;\n  }\n\n  public get forEach(): (callbackfn: (value: T, index: number) => void) => void {\n    return (callbackfn: (value: T, index: number) => void) => {\n      let i = 0;\n      let length = this.length;\n      for (let i = 0; i < length; i++) {\n        callbackfn(this.get(i), i);\n      }\n    };\n  }\n\n  /**\n   * Gets the value at an index.\n   *\n   * Note that for performance reasons there is no bounds checking here, the index reference is\n   * circular so this should always return a value and never throw.\n   * @param index The index of the value to get.\n   * @return The value corresponding to the index.\n   */\n  public get(index: number): T {\n    return this._array[this._getCyclicIndex(index)];\n  }\n\n  /**\n   * Sets the value at an index.\n   *\n   * Note that for performance reasons there is no bounds checking here, the index reference is\n   * circular so this should always return a value and never throw.\n   * @param index The index to set.\n   * @param value The value to set.\n   */\n  public set(index: number, value: T): void {\n    this._array[this._getCyclicIndex(index)] = value;\n  }\n\n  /**\n   * Pushes a new value onto the list, wrapping around to the start of the array, overriding index 0\n   * if the maximum length is reached.\n   * @param value The value to push onto the list.\n   */\n  public push(value: T): void {\n    this._array[this._getCyclicIndex(this._length)] = value;\n    if (this._length === this.maxLength) {\n      this._startIndex++;\n      if (this._startIndex === this.maxLength) {\n        this._startIndex = 0;\n      }\n      this.emit('trim', 1);\n    } else {\n      this._length++;\n    }\n  }\n\n  /**\n   * Removes and returns the last value on the list.\n   * @return The popped value.\n   */\n  public pop(): T {\n    return this._array[this._getCyclicIndex(this._length-- - 1)];\n  }\n\n  /**\n   * Deletes and/or inserts items at a particular index (in that order). Unlike\n   * Array.prototype.splice, this operation does not return the deleted items as a new array in\n   * order to save creating a new array. Note that this operation may shift all values in the list\n   * in the worst case.\n   * @param start The index to delete and/or insert.\n   * @param deleteCount The number of elements to delete.\n   * @param items The items to insert.\n   */\n  public splice(start: number, deleteCount: number, ...items: T[]): void {\n    // Delete items\n    if (deleteCount) {\n      for (let i = start; i < this._length - deleteCount; i++) {\n        this._array[this._getCyclicIndex(i)] = this._array[this._getCyclicIndex(i + deleteCount)];\n      }\n      this._length -= deleteCount;\n    }\n\n    if (items && items.length) {\n      // Add items\n      for (let i = this._length - 1; i >= start; i--) {\n        this._array[this._getCyclicIndex(i + items.length)] = this._array[this._getCyclicIndex(i)];\n      }\n      for (let i = 0; i < items.length; i++) {\n        this._array[this._getCyclicIndex(start + i)] = items[i];\n      }\n\n      // Adjust length as needed\n      if (this._length + items.length > this.maxLength) {\n        const countToTrim = (this._length + items.length) - this.maxLength;\n        this._startIndex += countToTrim;\n        this._length = this.maxLength;\n        this.emit('trim', countToTrim);\n      } else {\n        this._length += items.length;\n      }\n    }\n  }\n\n  /**\n   * Trims a number of items from the start of the list.\n   * @param count The number of items to remove.\n   */\n  public trimStart(count: number): void {\n    if (count > this._length) {\n      count = this._length;\n    }\n    this._startIndex += count;\n    this._length -= count;\n    this.emit('trim', count);\n  }\n\n  public shiftElements(start: number, count: number, offset: number): void {\n    if (count <= 0) {\n      return;\n    }\n    if (start < 0 || start >= this._length) {\n      throw new Error('start argument out of range');\n    }\n    if (start + offset < 0) {\n      throw new Error('Cannot shift elements in list beyond index 0');\n    }\n\n    if (offset > 0) {\n      for (let i = count - 1; i >= 0; i--) {\n        this.set(start + i + offset, this.get(start + i));\n      }\n      const expandListBy = (start + count + offset) - this._length;\n      if (expandListBy > 0) {\n        this._length += expandListBy;\n        while (this._length > this.maxLength) {\n          this._length--;\n          this._startIndex++;\n          this.emit('trim', 1);\n        }\n      }\n    } else {\n      for (let i = 0; i < count; i++) {\n        this.set(start + i + offset, this.get(start + i));\n      }\n    }\n  }\n\n  /**\n   * Gets the cyclic index for the specified regular index. The cyclic index can then be used on the\n   * backing array to get the element associated with the regular index.\n   * @param index The regular index.\n   * @returns The cyclic index.\n   */\n  private _getCyclicIndex(index: number): number {\n    return (this._startIndex + index) % this.maxLength;\n  }\n}\n","/**\n * @module xterm/utils/CharMeasure\n * @license MIT\n */\n\nimport { EventEmitter } from '../EventEmitter.js';\n\n/**\n * Utility class that measures the size of a character.\n */\nexport class CharMeasure extends EventEmitter {\n  private _document: Document;\n  private _parentElement: HTMLElement;\n  private _measureElement: HTMLElement;\n  private _width: number;\n  private _height: number;\n\n  constructor(document: Document, parentElement: HTMLElement) {\n    super();\n    this._document = document;\n    this._parentElement = parentElement;\n  }\n\n  public get width(): number {\n    return this._width;\n  }\n\n  public get height(): number {\n    return this._height;\n  }\n\n  public measure(): void {\n    if (!this._measureElement) {\n      this._measureElement = this._document.createElement('span');\n      this._measureElement.style.position = 'absolute';\n      this._measureElement.style.top = '0';\n      this._measureElement.style.left = '-9999em';\n      this._measureElement.textContent = 'W';\n      this._measureElement.setAttribute('aria-hidden', 'true');\n      this._parentElement.appendChild(this._measureElement);\n      // Perform _doMeasure async if the element was just attached as sometimes\n      // getBoundingClientRect does not return accurate values without this.\n      setTimeout(() => this._doMeasure(), 0);\n    } else {\n      this._doMeasure();\n    }\n  }\n\n  private _doMeasure(): void {\n    const geometry = this._measureElement.getBoundingClientRect();\n    // The element is likely currently display:none, we should retain the\n    // previous value.\n    if (geometry.width === 0 || geometry.height === 0) {\n      return;\n    }\n    if (this._width !== geometry.width || this._height !== geometry.height) {\n      this._width = geometry.width;\n      this._height = geometry.height;\n      this.emit('charsizechanged');\n    }\n  }\n}\n","/**\n * @license MIT\n */\n\n// TODO: This module should be merged into a buffer or buffer line class\n\nconst LINE_DATA_CHAR_INDEX = 1;\nconst LINE_DATA_WIDTH_INDEX = 2;\n\n/**\n * Translates a buffer line to a string, with optional start and end columns.\n * Wide characters will count as two columns in the resulting string. This\n * function is useful for getting the actual text underneath the raw selection\n * position.\n * @param line The line being translated.\n * @param trimRight Whether to trim whitespace to the right.\n * @param startCol The column to start at.\n * @param endCol The column to end at.\n */\nexport function translateBufferLineToString(line: any, trimRight: boolean, startCol: number = 0, endCol: number = null): string {\n  // Get full line\n  let lineString = '';\n  let widthAdjustedStartCol = startCol;\n  let widthAdjustedEndCol = endCol;\n  for (let i = 0; i < line.length; i++) {\n    const char = line[i];\n    lineString += char[LINE_DATA_CHAR_INDEX];\n    // Adjust start and end cols for wide characters if they affect their\n    // column indexes\n    if (char[LINE_DATA_WIDTH_INDEX] === 0) {\n      if (startCol >= i) {\n        widthAdjustedStartCol--;\n      }\n      if (endCol >= i) {\n        widthAdjustedEndCol--;\n      }\n    }\n  }\n\n  // Calculate the final end col by trimming whitespace on the right of the\n  // line if needed.\n  let finalEndCol = widthAdjustedEndCol || line.length;\n  if (trimRight) {\n    const rightWhitespaceIndex = lineString.search(/\\s+$/);\n    if (rightWhitespaceIndex !== -1) {\n      finalEndCol = Math.min(finalEndCol, rightWhitespaceIndex);\n    }\n    // Return the empty string if only trimmed whitespace is selected\n    if (finalEndCol <= widthAdjustedStartCol) {\n      return '';\n    }\n  }\n\n  return lineString.substring(widthAdjustedStartCol, finalEndCol);\n}\n","/**\n * Attributes and methods to help with identifying the current browser and platform.\n * @module xterm/utils/Browser\n * @license MIT\n */\n\nimport { contains } from './Generic';\n\nconst isNode = (typeof navigator === 'undefined') ? true : false;\nconst userAgent = (isNode) ? 'node' : navigator.userAgent;\nconst platform = (isNode) ? 'node' : navigator.platform;\n\nexport const isFirefox = !!~userAgent.indexOf('Firefox');\nexport const isMSIE = !!~userAgent.indexOf('MSIE') || !!~userAgent.indexOf('Trident');\n\n// Find the users platform. We use this to interpret the meta key\n// and ISO third level shifts.\n// http://stackoverflow.com/q/19877924/577598\nexport const isMac = contains(['Macintosh', 'MacIntel', 'MacPPC', 'Mac68K'], platform);\nexport const isIpad = platform === 'iPad';\nexport const isIphone = platform === 'iPhone';\nexport const isMSWindows = contains(['Windows', 'Win16', 'Win32', 'WinCE'], platform);\nexport const isLinux = platform.indexOf('Linux') >= 0;\n","/**\n * Clipboard handler module: exports methods for handling all clipboard-related events in the\n * terminal.\n * @module xterm/handlers/Clipboard\n * @license MIT\n */\n\nimport { ITerminal, ISelectionManager } from '../Interfaces';\n\ninterface IWindow extends Window {\n  clipboardData?: {\n    getData(format: string): string;\n    setData(format: string, data: string);\n  };\n}\n\ndeclare var window: IWindow;\n\n/**\n * Prepares text to be pasted into the terminal by normalizing the line endings\n * @param text The pasted text that needs processing before inserting into the terminal\n */\nexport function prepareTextForTerminal(text: string, isMSWindows: boolean): string {\n  if (isMSWindows) {\n    return text.replace(/\\r?\\n/g, '\\r');\n  }\n  return text;\n}\n\n/**\n * Binds copy functionality to the given terminal.\n * @param {ClipboardEvent} ev The original copy event to be handled\n */\nexport function copyHandler(ev: ClipboardEvent, term: ITerminal, selectionManager: ISelectionManager) {\n  if (term.browser.isMSIE) {\n    window.clipboardData.setData('Text', selectionManager.selectionText);\n  } else {\n    ev.clipboardData.setData('text/plain', selectionManager.selectionText);\n  }\n\n  // Prevent or the original text will be copied.\n  ev.preventDefault();\n}\n\n/**\n * Redirect the clipboard's data to the terminal's input handler.\n * @param {ClipboardEvent} ev The original paste event to be handled\n * @param {Terminal} term The terminal on which to apply the handled paste event\n */\nexport function pasteHandler(ev: ClipboardEvent, term: ITerminal) {\n  ev.stopPropagation();\n\n  let text: string;\n\n  let dispatchPaste = function(text) {\n    text = prepareTextForTerminal(text, term.browser.isMSWindows);\n    term.handler(text);\n    term.textarea.value = '';\n    term.emit('paste', text);\n\n    return term.cancel(ev);\n  };\n\n  if (term.browser.isMSIE) {\n    if (window.clipboardData) {\n      text = window.clipboardData.getData('Text');\n      dispatchPaste(text);\n    }\n  } else {\n    if (ev.clipboardData) {\n      text = ev.clipboardData.getData('text/plain');\n      dispatchPaste(text);\n    }\n  }\n}\n\n/**\n * Moves the textarea under the mouse cursor and focuses it.\n * @param ev The original right click event to be handled.\n * @param textarea The terminal's textarea.\n */\nexport function moveTextAreaUnderMouseCursor(ev: MouseEvent, textarea: HTMLTextAreaElement) {\n  // Bring textarea at the cursor position\n  textarea.style.position = 'fixed';\n  textarea.style.width = '20px';\n  textarea.style.height = '20px';\n  textarea.style.left = (ev.clientX - 10) + 'px';\n  textarea.style.top = (ev.clientY - 10) + 'px';\n  textarea.style.zIndex = '1000';\n\n  textarea.focus();\n\n  // Reset the terminal textarea's styling\n  setTimeout(function () {\n    textarea.style.position = null;\n    textarea.style.width = null;\n    textarea.style.height = null;\n    textarea.style.left = null;\n    textarea.style.top = null;\n    textarea.style.zIndex = null;\n  }, 4);\n}\n\n/**\n * Bind to right-click event and allow right-click copy and paste.\n * @param ev The original right click event to be handled.\n * @param textarea The terminal's textarea.\n * @param selectionManager The terminal's selection manager.\n */\nexport function rightClickHandler(ev: MouseEvent, textarea: HTMLTextAreaElement, selectionManager: ISelectionManager) {\n  moveTextAreaUnderMouseCursor(ev, textarea);\n\n  // Get textarea ready to copy from the context menu\n  textarea.value = selectionManager.selectionText;\n  textarea.select();\n}\n","/**\n * @license MIT\n */\n\nimport { ITerminal } from './Interfaces';\nimport { CharMeasure } from './utils/CharMeasure';\n\n/**\n * Represents the viewport of a terminal, the visible area within the larger buffer of output.\n * Logic for the virtual scroll bar is included in this object.\n */\nexport class Viewport {\n  private currentRowHeight: number;\n  private lastRecordedBufferLength: number;\n  private lastRecordedViewportHeight: number;\n  private lastTouchY: number;\n\n  /**\n   * Creates a new Viewport.\n   * @param terminal The terminal this viewport belongs to.\n   * @param viewportElement The DOM element acting as the viewport.\n   * @param scrollArea The DOM element acting as the scroll area.\n   * @param charMeasure A DOM element used to measure the character size of. the terminal.\n   */\n  constructor(\n    private terminal: ITerminal,\n    private viewportElement: HTMLElement,\n    private scrollArea: HTMLElement,\n    private charMeasure: CharMeasure\n  ) {\n    this.currentRowHeight = 0;\n    this.lastRecordedBufferLength = 0;\n    this.lastRecordedViewportHeight = 0;\n\n    this.terminal.on('scroll', this.syncScrollArea.bind(this));\n    this.terminal.on('resize', this.syncScrollArea.bind(this));\n    this.viewportElement.addEventListener('scroll', this.onScroll.bind(this));\n\n    // Perform this async to ensure the CharMeasure is ready.\n    setTimeout(() => this.syncScrollArea(), 0);\n  }\n\n  /**\n   * Refreshes row height, setting line-height, viewport height and scroll area height if\n   * necessary.\n   */\n  private refresh(): void {\n    if (this.charMeasure.height > 0) {\n      const rowHeightChanged = this.charMeasure.height !== this.currentRowHeight;\n      if (rowHeightChanged) {\n        this.currentRowHeight = this.charMeasure.height;\n        this.viewportElement.style.lineHeight = this.charMeasure.height + 'px';\n        this.terminal.rowContainer.style.lineHeight = this.charMeasure.height + 'px';\n      }\n      const viewportHeightChanged = this.lastRecordedViewportHeight !== this.terminal.rows;\n      if (rowHeightChanged || viewportHeightChanged) {\n        this.lastRecordedViewportHeight = this.terminal.rows;\n        this.viewportElement.style.height = this.charMeasure.height * this.terminal.rows + 'px';\n        this.terminal.selectionContainer.style.height = this.viewportElement.style.height;\n      }\n      this.scrollArea.style.height = (this.charMeasure.height * this.lastRecordedBufferLength) + 'px';\n    }\n  }\n\n  /**\n   * Updates dimensions and synchronizes the scroll area if necessary.\n   */\n  public syncScrollArea(): void {\n    if (this.lastRecordedBufferLength !== this.terminal.buffer.lines.length) {\n      // If buffer height changed\n      this.lastRecordedBufferLength = this.terminal.buffer.lines.length;\n      this.refresh();\n    } else if (this.lastRecordedViewportHeight !== this.terminal.rows) {\n      // If viewport height changed\n      this.refresh();\n    } else {\n      // If size has changed, refresh viewport\n      if (this.charMeasure.height !== this.currentRowHeight) {\n        this.refresh();\n      }\n    }\n\n    // Sync scrollTop\n    const scrollTop = this.terminal.buffer.ydisp * this.currentRowHeight;\n    if (this.viewportElement.scrollTop !== scrollTop) {\n      this.viewportElement.scrollTop = scrollTop;\n    }\n  }\n\n  /**\n   * Handles scroll events on the viewport, calculating the new viewport and requesting the\n   * terminal to scroll to it.\n   * @param ev The scroll event.\n   */\n  private onScroll(ev: Event) {\n    const newRow = Math.round(this.viewportElement.scrollTop / this.currentRowHeight);\n    const diff = newRow - this.terminal.buffer.ydisp;\n    this.terminal.scrollDisp(diff, true);\n  }\n\n  /**\n   * Handles mouse wheel events by adjusting the viewport's scrollTop and delegating the actual\n   * scrolling to `onScroll`, this event needs to be attached manually by the consumer of\n   * `Viewport`.\n   * @param ev The mouse wheel event.\n   */\n  public onWheel(ev: WheelEvent) {\n    if (ev.deltaY === 0) {\n      // Do nothing if it's not a vertical scroll event\n      return;\n    }\n    // Fallback to WheelEvent.DOM_DELTA_PIXEL\n    let multiplier = 1;\n    if (ev.deltaMode === WheelEvent.DOM_DELTA_LINE) {\n      multiplier = this.currentRowHeight;\n    } else if (ev.deltaMode === WheelEvent.DOM_DELTA_PAGE) {\n      multiplier = this.currentRowHeight * this.terminal.rows;\n    }\n    this.viewportElement.scrollTop += ev.deltaY * multiplier;\n    // Prevent the page from scrolling when the terminal scrolls\n    ev.preventDefault();\n  };\n\n  /**\n   * Handles the touchstart event, recording the touch occurred.\n   * @param ev The touch event.\n   */\n  public onTouchStart(ev: TouchEvent) {\n    this.lastTouchY = ev.touches[0].pageY;\n  };\n\n  /**\n   * Handles the touchmove event, scrolling the viewport if the position shifted.\n   * @param ev The touch event.\n   */\n  public onTouchMove(ev: TouchEvent) {\n    let deltaY = this.lastTouchY - ev.touches[0].pageY;\n    this.lastTouchY = ev.touches[0].pageY;\n    if (deltaY === 0) {\n      return;\n    }\n    this.viewportElement.scrollTop += deltaY;\n    ev.preventDefault();\n  };\n}\n","/**\n * @license MIT\n */\n\nimport { ITerminal } from './Interfaces';\n\n/**\n * Represents a selection within the buffer. This model only cares about column\n * and row coordinates, not wide characters.\n */\nexport class SelectionModel {\n  /**\n   * Whether select all is currently active.\n   */\n  public isSelectAllActive: boolean;\n\n  /**\n   * The [x, y] position the selection starts at.\n   */\n  public selectionStart: [number, number];\n\n  /**\n   * The minimal length of the selection from the start position. When double\n   * clicking on a word, the word will be selected which makes the selection\n   * start at the start of the word and makes this variable the length.\n   */\n  public selectionStartLength: number;\n\n  /**\n   * The [x, y] position the selection ends at.\n   */\n  public selectionEnd: [number, number];\n\n  constructor(\n    private _terminal: ITerminal\n  ) {\n    this.clearSelection();\n  }\n\n  /**\n   * Clears the current selection.\n   */\n  public clearSelection(): void {\n    this.selectionStart = null;\n    this.selectionEnd = null;\n    this.isSelectAllActive = false;\n    this.selectionStartLength = 0;\n  }\n\n  /**\n   * The final selection start, taking into consideration select all.\n   */\n  public get finalSelectionStart(): [number, number] {\n    if (this.isSelectAllActive) {\n      return [0, 0];\n    }\n\n    if (!this.selectionEnd || !this.selectionStart) {\n      return this.selectionStart;\n    }\n\n    return this.areSelectionValuesReversed() ? this.selectionEnd : this.selectionStart;\n  }\n\n  /**\n   * The final selection end, taking into consideration select all, double click\n   * word selection and triple click line selection.\n   */\n  public get finalSelectionEnd(): [number, number] {\n    if (this.isSelectAllActive) {\n      return [this._terminal.cols, this._terminal.buffer.ybase + this._terminal.rows - 1];\n    }\n\n    if (!this.selectionStart) {\n      return null;\n    }\n\n    // Use the selection start if the end doesn't exist or they're reversed\n    if (!this.selectionEnd || this.areSelectionValuesReversed()) {\n      return [this.selectionStart[0] + this.selectionStartLength, this.selectionStart[1]];\n    }\n\n    // Ensure the the word/line is selected after a double/triple click\n    if (this.selectionStartLength) {\n      // Select the larger of the two when start and end are on the same line\n      if (this.selectionEnd[1] === this.selectionStart[1]) {\n        return [Math.max(this.selectionStart[0] + this.selectionStartLength, this.selectionEnd[0]), this.selectionEnd[1]];\n      }\n    }\n    return this.selectionEnd;\n  }\n\n  /**\n   * Returns whether the selection start and end are reversed.\n   */\n  public areSelectionValuesReversed(): boolean {\n    const start = this.selectionStart;\n    const end = this.selectionEnd;\n    return start[1] > end[1] || (start[1] === end[1] && start[0] > end[0]);\n  }\n\n  /**\n   * Handle the buffer being trimmed, adjust the selection position.\n   * @param amount The amount the buffer is being trimmed.\n   * @return Whether a refresh is necessary.\n   */\n  public onTrim(amount: number): boolean {\n    // Adjust the selection position based on the trimmed amount.\n    if (this.selectionStart) {\n      this.selectionStart[1] -= amount;\n    }\n    if (this.selectionEnd) {\n      this.selectionEnd[1] -= amount;\n    }\n\n    // The selection has moved off the buffer, clear it.\n    if (this.selectionEnd && this.selectionEnd[1] < 0) {\n      this.clearSelection();\n      return true;\n    }\n\n    // If the selection start is trimmed, ensure the start column is 0.\n    if (this.selectionStart && this.selectionStart[1] < 0) {\n      this.selectionStart[1] = 0;\n    }\n    return false;\n  }\n}\n","/**\n * @license MIT\n */\n\nimport * as Mouse from './utils/Mouse';\nimport * as Browser from './utils/Browser';\nimport { CharMeasure } from './utils/CharMeasure';\nimport { CircularList } from './utils/CircularList';\nimport { EventEmitter } from './EventEmitter';\nimport { ITerminal, ICircularList } from './Interfaces';\nimport { SelectionModel } from './SelectionModel';\nimport { translateBufferLineToString } from './utils/BufferLine';\n\n/**\n * The number of pixels the mouse needs to be above or below the viewport in\n * order to scroll at the maximum speed.\n */\nconst DRAG_SCROLL_MAX_THRESHOLD = 50;\n\n/**\n * The maximum scrolling speed\n */\nconst DRAG_SCROLL_MAX_SPEED = 15;\n\n/**\n * The number of milliseconds between drag scroll updates.\n */\nconst DRAG_SCROLL_INTERVAL = 50;\n\n/**\n * A string containing all characters that are considered word separated by the\n * double click to select work logic.\n */\nconst WORD_SEPARATORS = ' ()[]{}\\'\"';\n\n// TODO: Move these constants elsewhere, they belong in a buffer or buffer\n//       data/line class.\nconst LINE_DATA_CHAR_INDEX = 1;\nconst LINE_DATA_WIDTH_INDEX = 2;\n\nconst NON_BREAKING_SPACE_CHAR = String.fromCharCode(160);\nconst ALL_NON_BREAKING_SPACE_REGEX = new RegExp(NON_BREAKING_SPACE_CHAR, 'g');\n\n/**\n * Represents a position of a word on a line.\n */\ninterface IWordPosition {\n  start: number;\n  length: number;\n}\n\n/**\n * A selection mode, this drives how the selection behaves on mouse move.\n */\nenum SelectionMode {\n  NORMAL,\n  WORD,\n  LINE\n}\n\n/**\n * A class that manages the selection of the terminal. With help from\n * SelectionModel, SelectionManager handles with all logic associated with\n * dealing with the selection, including handling mouse interaction, wide\n * characters and fetching the actual text within the selection. Rendering is\n * not handled by the SelectionManager but a 'refresh' event is fired when the\n * selection is ready to be redrawn.\n */\nexport class SelectionManager extends EventEmitter {\n  protected _model: SelectionModel;\n\n  /**\n   * The amount to scroll every drag scroll update (depends on how far the mouse\n   * drag is above or below the terminal).\n   */\n  private _dragScrollAmount: number;\n\n  /**\n   * The current selection mode.\n   */\n  private _activeSelectionMode: SelectionMode;\n\n  /**\n   * A setInterval timer that is active while the mouse is down whose callback\n   * scrolls the viewport when necessary.\n   */\n  private _dragScrollIntervalTimer: NodeJS.Timer;\n\n  /**\n   * The animation frame ID used for refreshing the selection.\n   */\n  private _refreshAnimationFrame: number;\n\n  /**\n   * Whether selection is enabled.\n   */\n  private _enabled = true;\n\n  private _mouseMoveListener: EventListener;\n  private _mouseUpListener: EventListener;\n\n  constructor(\n    private _terminal: ITerminal,\n    private _buffer: ICircularList<[number, string, number][]>,\n    private _rowContainer: HTMLElement,\n    private _charMeasure: CharMeasure\n  ) {\n    super();\n    this._initListeners();\n    this.enable();\n\n    this._model = new SelectionModel(_terminal);\n    this._activeSelectionMode = SelectionMode.NORMAL;\n  }\n\n  /**\n   * Initializes listener variables.\n   */\n  private _initListeners() {\n    this._mouseMoveListener = event => this._onMouseMove(<MouseEvent>event);\n    this._mouseUpListener = event => this._onMouseUp(<MouseEvent>event);\n\n    this._rowContainer.addEventListener('mousedown', event => this._onMouseDown(<MouseEvent>event));\n\n    // Only adjust the selection on trim, shiftElements is rarely used (only in\n    // reverseIndex) and delete in a splice is only ever used when the same\n    // number of elements was just added. Given this is could actually be\n    // beneficial to leave the selection as is for these cases.\n    this._buffer.on('trim', (amount: number) => this._onTrim(amount));\n  }\n\n  /**\n   * Disables the selection manager. This is useful for when terminal mouse\n   * are enabled.\n   */\n  public disable() {\n    this.clearSelection();\n    this._enabled = false;\n  }\n\n  /**\n   * Enable the selection manager.\n   */\n  public enable() {\n    this._enabled = true;\n  }\n\n  /**\n   * Sets the active buffer, this should be called when the alt buffer is\n   * switched in or out.\n   * @param buffer The active buffer.\n   */\n  public setBuffer(buffer: ICircularList<[number, string, number][]>): void {\n    this._buffer = buffer;\n    this.clearSelection();\n  }\n\n  public get selectionStart(): [number, number] { return this._model.finalSelectionStart; }\n  public get selectionEnd(): [number, number] { return this._model.finalSelectionEnd; }\n\n  /**\n   * Gets whether there is an active text selection.\n   */\n  public get hasSelection(): boolean {\n    const start = this._model.finalSelectionStart;\n    const end = this._model.finalSelectionEnd;\n    if (!start || !end) {\n      return false;\n    }\n    return start[0] !== end[0] || start[1] !== end[1];\n  }\n\n  /**\n   * Gets the text currently selected.\n   */\n  public get selectionText(): string {\n    const start = this._model.finalSelectionStart;\n    const end = this._model.finalSelectionEnd;\n    if (!start || !end) {\n      return '';\n    }\n\n    // Get first row\n    const startRowEndCol = start[1] === end[1] ? end[0] : null;\n    let result: string[] = [];\n    result.push(translateBufferLineToString(this._buffer.get(start[1]), true, start[0], startRowEndCol));\n\n    // Get middle rows\n    for (let i = start[1] + 1; i <= end[1] - 1; i++) {\n      const bufferLine = this._buffer.get(i);\n      const lineText = translateBufferLineToString(bufferLine, true);\n      if ((<any>bufferLine).isWrapped) {\n        result[result.length - 1] += lineText;\n      } else {\n        result.push(lineText);\n      }\n    }\n\n    // Get final row\n    if (start[1] !== end[1]) {\n      const bufferLine = this._buffer.get(end[1]);\n      const lineText = translateBufferLineToString(bufferLine, true, 0, end[0]);\n      if ((<any>bufferLine).isWrapped) {\n        result[result.length - 1] += lineText;\n      } else {\n        result.push(lineText);\n      }\n    }\n\n    // Format string by replacing non-breaking space chars with regular spaces\n    // and joining the array into a multi-line string.\n    const formattedResult = result.map(line => {\n      return line.replace(ALL_NON_BREAKING_SPACE_REGEX, ' ');\n    }).join(Browser.isMSWindows ? '\\r\\n' : '\\n');\n\n    return formattedResult;\n  }\n\n  /**\n   * Clears the current terminal selection.\n   */\n  public clearSelection(): void {\n    this._model.clearSelection();\n    this._removeMouseDownListeners();\n    this.refresh();\n  }\n\n  /**\n   * Queues a refresh, redrawing the selection on the next opportunity.\n   * @param isNewSelection Whether the selection should be registered as a new\n   * selection on Linux.\n   */\n  public refresh(isNewSelection?: boolean): void {\n    // Queue the refresh for the renderer\n    if (!this._refreshAnimationFrame) {\n      this._refreshAnimationFrame = window.requestAnimationFrame(() => this._refresh());\n    }\n\n    // If the platform is Linux and the refresh call comes from a mouse event,\n    // we need to update the selection for middle click to paste selection.\n    if (Browser.isLinux && isNewSelection) {\n      const selectionText = this.selectionText;\n      if (selectionText.length) {\n        this.emit('newselection', this.selectionText);\n      }\n    }\n  }\n\n  /**\n   * Fires the refresh event, causing consumers to pick it up and redraw the\n   * selection state.\n   */\n  private _refresh(): void {\n    this._refreshAnimationFrame = null;\n    this.emit('refresh', { start: this._model.finalSelectionStart, end: this._model.finalSelectionEnd });\n  }\n\n  /**\n   * Selects all text within the terminal.\n   */\n  public selectAll(): void {\n    this._model.isSelectAllActive = true;\n    this.refresh();\n  }\n\n  /**\n   * Handle the buffer being trimmed, adjust the selection position.\n   * @param amount The amount the buffer is being trimmed.\n   */\n  private _onTrim(amount: number) {\n    const needsRefresh = this._model.onTrim(amount);\n    if (needsRefresh) {\n      this.refresh();\n    }\n  }\n\n  /**\n   * Gets the 0-based [x, y] buffer coordinates of the current mouse event.\n   * @param event The mouse event.\n   */\n  private _getMouseBufferCoords(event: MouseEvent): [number, number] {\n    const coords = Mouse.getCoords(event, this._rowContainer, this._charMeasure, this._terminal.cols, this._terminal.rows, true);\n    if (!coords) {\n      return null;\n    }\n\n    // Convert to 0-based\n    coords[0]--;\n    coords[1]--;\n    // Convert viewport coords to buffer coords\n    coords[1] += this._terminal.buffer.ydisp;\n    return coords;\n  }\n\n  /**\n   * Gets the amount the viewport should be scrolled based on how far out of the\n   * terminal the mouse is.\n   * @param event The mouse event.\n   */\n  private _getMouseEventScrollAmount(event: MouseEvent): number {\n    let offset = Mouse.getCoordsRelativeToElement(event, this._rowContainer)[1];\n    const terminalHeight = this._terminal.rows * this._charMeasure.height;\n    if (offset >= 0 && offset <= terminalHeight) {\n      return 0;\n    }\n    if (offset > terminalHeight) {\n      offset -= terminalHeight;\n    }\n\n    offset = Math.min(Math.max(offset, -DRAG_SCROLL_MAX_THRESHOLD), DRAG_SCROLL_MAX_THRESHOLD);\n    offset /= DRAG_SCROLL_MAX_THRESHOLD;\n    return (offset / Math.abs(offset)) + Math.round(offset * (DRAG_SCROLL_MAX_SPEED - 1));\n  }\n\n  /**\n   * Handles te mousedown event, setting up for a new selection.\n   * @param event The mousedown event.\n   */\n  private _onMouseDown(event: MouseEvent) {\n    // If we have selection, we want the context menu on right click even if the\n    // terminal is in mouse mode.\n    if (event.button === 2 && this.hasSelection) {\n      event.stopPropagation();\n      return;\n    }\n\n    // Only action the primary button\n    if (event.button !== 0) {\n      return;\n    }\n\n    // Allow selection when using a specific modifier key, even when disabled\n    if (!this._enabled) {\n      const shouldForceSelection = Browser.isMac && event.altKey;\n\n      if (!shouldForceSelection) {\n        return;\n      }\n\n      // Don't send the mouse down event to the current process, we want to select\n      event.stopPropagation();\n    }\n\n    // Tell the browser not to start a regular selection\n    event.preventDefault();\n\n    // Reset drag scroll state\n    this._dragScrollAmount = 0;\n\n    if (this._enabled && event.shiftKey) {\n      this._onIncrementalClick(event);\n    } else {\n      if (event.detail === 1) {\n        this._onSingleClick(event);\n      } else if (event.detail === 2) {\n        this._onDoubleClick(event);\n      } else if (event.detail === 3) {\n        this._onTripleClick(event);\n      }\n    }\n\n    this._addMouseDownListeners();\n    this.refresh(true);\n  }\n\n  /**\n   * Adds listeners when mousedown is triggered.\n   */\n  private _addMouseDownListeners(): void {\n    // Listen on the document so that dragging outside of viewport works\n    this._rowContainer.ownerDocument.addEventListener('mousemove', this._mouseMoveListener);\n    this._rowContainer.ownerDocument.addEventListener('mouseup', this._mouseUpListener);\n    this._dragScrollIntervalTimer = setInterval(() => this._dragScroll(), DRAG_SCROLL_INTERVAL);\n  }\n\n  /**\n   * Removes the listeners that are registered when mousedown is triggered.\n   */\n  private _removeMouseDownListeners(): void {\n    this._rowContainer.ownerDocument.removeEventListener('mousemove', this._mouseMoveListener);\n    this._rowContainer.ownerDocument.removeEventListener('mouseup', this._mouseUpListener);\n    clearInterval(this._dragScrollIntervalTimer);\n    this._dragScrollIntervalTimer = null;\n  }\n\n  /**\n   * Performs an incremental click, setting the selection end position to the mouse\n   * position.\n   * @param event The mouse event.\n   */\n  private _onIncrementalClick(event: MouseEvent): void {\n    if (this._model.selectionStart) {\n      this._model.selectionEnd = this._getMouseBufferCoords(event);\n    }\n  }\n\n  /**\n   * Performs a single click, resetting relevant state and setting the selection\n   * start position.\n   * @param event The mouse event.\n   */\n  private _onSingleClick(event: MouseEvent): void {\n    this._model.selectionStartLength = 0;\n    this._model.isSelectAllActive = false;\n    this._activeSelectionMode = SelectionMode.NORMAL;\n\n    // Initialize the new selection\n    this._model.selectionStart = this._getMouseBufferCoords(event);\n    if (!this._model.selectionStart) {\n      return;\n    }\n    this._model.selectionEnd = null;\n\n    // Ensure the line exists\n    const line = this._buffer.get(this._model.selectionStart[1]);\n    if (!line) {\n      return;\n    }\n\n    // If the mouse is over the second half of a wide character, adjust the\n    // selection to cover the whole character\n    const char = line[this._model.selectionStart[0]];\n    if (char[LINE_DATA_WIDTH_INDEX] === 0) {\n      this._model.selectionStart[0]++;\n    }\n  }\n\n  /**\n   * Performs a double click, selecting the current work.\n   * @param event The mouse event.\n   */\n  private _onDoubleClick(event: MouseEvent): void {\n    const coords = this._getMouseBufferCoords(event);\n    if (coords) {\n      this._activeSelectionMode = SelectionMode.WORD;\n      this._selectWordAt(coords);\n    }\n  }\n\n  /**\n   * Performs a triple click, selecting the current line and activating line\n   * select mode.\n   * @param event The mouse event.\n   */\n  private _onTripleClick(event: MouseEvent): void {\n    const coords = this._getMouseBufferCoords(event);\n    if (coords) {\n      this._activeSelectionMode = SelectionMode.LINE;\n      this._selectLineAt(coords[1]);\n    }\n  }\n\n  /**\n   * Handles the mousemove event when the mouse button is down, recording the\n   * end of the selection and refreshing the selection.\n   * @param event The mousemove event.\n   */\n  private _onMouseMove(event: MouseEvent) {\n    // Record the previous position so we know whether to redraw the selection\n    // at the end.\n    const previousSelectionEnd = this._model.selectionEnd ? [this._model.selectionEnd[0], this._model.selectionEnd[1]] : null;\n\n    // Set the initial selection end based on the mouse coordinates\n    this._model.selectionEnd = this._getMouseBufferCoords(event);\n    if (!this._model.selectionEnd) {\n      this.refresh(true);\n      return;\n    }\n\n    // Select the entire line if line select mode is active.\n    if (this._activeSelectionMode === SelectionMode.LINE) {\n      if (this._model.selectionEnd[1] < this._model.selectionStart[1]) {\n        this._model.selectionEnd[0] = 0;\n      } else {\n        this._model.selectionEnd[0] = this._terminal.cols;\n      }\n    } else if (this._activeSelectionMode === SelectionMode.WORD) {\n      this._selectToWordAt(this._model.selectionEnd);\n    }\n\n    // Determine the amount of scrolling that will happen.\n    this._dragScrollAmount = this._getMouseEventScrollAmount(event);\n\n    // If the cursor was above or below the viewport, make sure it's at the\n    // start or end of the viewport respectively.\n    if (this._dragScrollAmount > 0) {\n      this._model.selectionEnd[0] = this._terminal.cols - 1;\n    } else if (this._dragScrollAmount < 0) {\n      this._model.selectionEnd[0] = 0;\n    }\n\n    // If the character is a wide character include the cell to the right in the\n    // selection. Note that selections at the very end of the line will never\n    // have a character.\n    if (this._model.selectionEnd[1] < this._buffer.length) {\n      const char = this._buffer.get(this._model.selectionEnd[1])[this._model.selectionEnd[0]];\n      if (char && char[2] === 0) {\n        this._model.selectionEnd[0]++;\n      }\n    }\n\n    // Only draw here if the selection changes.\n    if (!previousSelectionEnd ||\n      previousSelectionEnd[0] !== this._model.selectionEnd[0] ||\n      previousSelectionEnd[1] !== this._model.selectionEnd[1]) {\n      this.refresh(true);\n    }\n  }\n\n  /**\n   * The callback that occurs every DRAG_SCROLL_INTERVAL ms that does the\n   * scrolling of the viewport.\n   */\n  private _dragScroll() {\n    if (this._dragScrollAmount) {\n      this._terminal.scrollDisp(this._dragScrollAmount, false);\n      // Re-evaluate selection\n      if (this._dragScrollAmount > 0) {\n        this._model.selectionEnd = [this._terminal.cols - 1, this._terminal.buffer.ydisp + this._terminal.rows];\n      } else {\n        this._model.selectionEnd = [0, this._terminal.buffer.ydisp];\n      }\n      this.refresh();\n    }\n  }\n\n  /**\n   * Handles the mouseup event, removing the mousedown listeners.\n   * @param event The mouseup event.\n   */\n  private _onMouseUp(event: MouseEvent) {\n    this._removeMouseDownListeners();\n  }\n\n  /**\n   * Converts a viewport column to the character index on the buffer line, the\n   * latter takes into account wide characters.\n   * @param coords The coordinates to find the 2 index for.\n   */\n  private _convertViewportColToCharacterIndex(bufferLine: any, coords: [number, number]): number {\n    let charIndex = coords[0];\n    for (let i = 0; coords[0] >= i; i++) {\n      const char = bufferLine[i];\n      if (char[LINE_DATA_WIDTH_INDEX] === 0) {\n        charIndex--;\n      }\n    }\n    return charIndex;\n  }\n\n  public setSelection(col: number, row: number, length: number): void {\n    this._model.clearSelection();\n    this._removeMouseDownListeners();\n    this._model.selectionStart = [col, row];\n    this._model.selectionStartLength = length;\n    this.refresh();\n  }\n\n  /**\n   * Gets positional information for the word at the coordinated specified.\n   * @param coords The coordinates to get the word at.\n   */\n  private _getWordAt(coords: [number, number]): IWordPosition {\n    const bufferLine = this._buffer.get(coords[1]);\n    if (!bufferLine) {\n      return null;\n    }\n\n    const line = translateBufferLineToString(bufferLine, false);\n\n    // Get actual index, taking into consideration wide characters\n    let endIndex = this._convertViewportColToCharacterIndex(bufferLine, coords);\n    let startIndex = endIndex;\n\n    // Record offset to be used later\n    const charOffset = coords[0] - startIndex;\n    let leftWideCharCount = 0;\n    let rightWideCharCount = 0;\n\n    if (line.charAt(startIndex) === ' ') {\n      // Expand until non-whitespace is hit\n      while (startIndex > 0 && line.charAt(startIndex - 1) === ' ') {\n        startIndex--;\n      }\n      while (endIndex < line.length && line.charAt(endIndex + 1) === ' ') {\n        endIndex++;\n      }\n    } else {\n      // Expand until whitespace is hit. This algorithm works by scanning left\n      // and right from the starting position, keeping both the index format\n      // (line) and the column format (bufferLine) in sync. When a wide\n      // character is hit, it is recorded and the column index is adjusted.\n      let startCol = coords[0];\n      let endCol = coords[0];\n      // Consider the initial position, skip it and increment the wide char\n      // variable\n      if (bufferLine[startCol][LINE_DATA_WIDTH_INDEX] === 0) {\n        leftWideCharCount++;\n        startCol--;\n      }\n      if (bufferLine[endCol][LINE_DATA_WIDTH_INDEX] === 2) {\n        rightWideCharCount++;\n        endCol++;\n      }\n      // Expand the string in both directions until a space is hit\n      while (startIndex > 0 && !this._isCharWordSeparator(line.charAt(startIndex - 1))) {\n        if (bufferLine[startCol - 1][LINE_DATA_WIDTH_INDEX] === 0) {\n          // If the next character is a wide char, record it and skip the column\n          leftWideCharCount++;\n          startCol--;\n        }\n        startIndex--;\n        startCol--;\n      }\n      while (endIndex + 1 < line.length && !this._isCharWordSeparator(line.charAt(endIndex + 1))) {\n        if (bufferLine[endCol + 1][LINE_DATA_WIDTH_INDEX] === 2) {\n          // If the next character is a wide char, record it and skip the column\n          rightWideCharCount++;\n          endCol++;\n        }\n        endIndex++;\n        endCol++;\n      }\n    }\n\n    const start = startIndex + charOffset - leftWideCharCount;\n    const length = Math.min(endIndex - startIndex + leftWideCharCount + rightWideCharCount + 1/*include endIndex char*/, this._terminal.cols);\n    return { start, length };\n  }\n\n  /**\n   * Selects the word at the coordinates specified.\n   * @param coords The coordinates to get the word at.\n   */\n  protected _selectWordAt(coords: [number, number]): void {\n    const wordPosition = this._getWordAt(coords);\n    if (wordPosition) {\n      this._model.selectionStart = [wordPosition.start, coords[1]];\n      this._model.selectionStartLength = wordPosition.length;\n    }\n  }\n\n  /**\n   * Sets the selection end to the word at the coordinated specified.\n   * @param coords The coordinates to get the word at.\n   */\n  private _selectToWordAt(coords: [number, number]): void {\n    const wordPosition = this._getWordAt(coords);\n    if (wordPosition) {\n      this._model.selectionEnd = [this._model.areSelectionValuesReversed() ? wordPosition.start : (wordPosition.start + wordPosition.length), coords[1]];\n    }\n  }\n\n  /**\n   * Gets whether the character is considered a word separator by the select\n   * word logic.\n   * @param char The character to check.\n   */\n  private _isCharWordSeparator(char: string): boolean {\n    return WORD_SEPARATORS.indexOf(char) >= 0;\n  }\n\n  /**\n   * Selects the line specified.\n   * @param line The line index.\n   */\n  protected _selectLineAt(line: number): void {\n    this._model.selectionStart = [0, line];\n    this._model.selectionStartLength = this._terminal.cols;\n  }\n}\n","/**\n * @license MIT\n */\n\nimport { ITerminal } from './Interfaces';\nimport { DomElementObjectPool } from './utils/DomElementObjectPool';\n\n/**\n * The maximum number of refresh frames to skip when the write buffer is non-\n * empty. Note that these frames may be intermingled with frames that are\n * skipped via requestAnimationFrame's mechanism.\n */\nconst MAX_REFRESH_FRAME_SKIP = 5;\n\n/**\n * Flags used to render terminal text properly.\n */\nenum FLAGS {\n  BOLD = 1,\n  UNDERLINE = 2,\n  BLINK = 4,\n  INVERSE = 8,\n  INVISIBLE = 16\n};\n\nlet brokenBold: boolean = null;\n\nexport class Renderer {\n  /** A queue of the rows to be refreshed */\n  private _refreshRowsQueue: {start: number, end: number}[] = [];\n  private _refreshFramesSkipped = 0;\n  private _refreshAnimationFrame = null;\n\n  private _spanElementObjectPool = new DomElementObjectPool('span');\n\n  constructor(private _terminal: ITerminal) {\n    // Figure out whether boldness affects\n    // the character width of monospace fonts.\n    if (brokenBold === null) {\n      brokenBold = checkBoldBroken((<any>this._terminal).element);\n    }\n    this._spanElementObjectPool = new DomElementObjectPool('span');\n\n    // TODO: Pull more DOM interactions into Renderer.constructor, element for\n    // example should be owned by Renderer (and also exposed by Terminal due to\n    // to established public API).\n  }\n\n  /**\n   * Queues a refresh between two rows (inclusive), to be done on next animation\n   * frame.\n   * @param {number} start The start row.\n   * @param {number} end The end row.\n   */\n  public queueRefresh(start: number, end: number): void {\n    this._refreshRowsQueue.push({ start: start, end: end });\n    if (!this._refreshAnimationFrame) {\n      this._refreshAnimationFrame = window.requestAnimationFrame(this._refreshLoop.bind(this));\n    }\n  }\n\n  /**\n   * Performs the refresh loop callback, calling refresh only if a refresh is\n   * necessary before queueing up the next one.\n   */\n  private _refreshLoop(): void {\n    // Skip MAX_REFRESH_FRAME_SKIP frames if the writeBuffer is non-empty as it\n    // will need to be immediately refreshed anyway. This saves a lot of\n    // rendering time as the viewport DOM does not need to be refreshed, no\n    // scroll events, no layouts, etc.\n    const skipFrame = this._terminal.writeBuffer.length > 0 && this._refreshFramesSkipped++ <= MAX_REFRESH_FRAME_SKIP;\n    if (skipFrame) {\n      this._refreshAnimationFrame = window.requestAnimationFrame(this._refreshLoop.bind(this));\n      return;\n    }\n\n    this._refreshFramesSkipped = 0;\n    let start;\n    let end;\n    if (this._refreshRowsQueue.length > 4) {\n      // Just do a full refresh when 5+ refreshes are queued\n      start = 0;\n      end = this._terminal.rows - 1;\n    } else {\n      // Get start and end rows that need refreshing\n      start = this._refreshRowsQueue[0].start;\n      end = this._refreshRowsQueue[0].end;\n      for (let i = 1; i < this._refreshRowsQueue.length; i++) {\n        if (this._refreshRowsQueue[i].start < start) {\n          start = this._refreshRowsQueue[i].start;\n        }\n        if (this._refreshRowsQueue[i].end > end) {\n          end = this._refreshRowsQueue[i].end;\n        }\n      }\n    }\n    this._refreshRowsQueue = [];\n    this._refreshAnimationFrame = null;\n    this._refresh(start, end);\n  }\n\n  /**\n   * Refreshes (re-renders) terminal content within two rows (inclusive)\n   *\n   * Rendering Engine:\n   *\n   * In the screen buffer, each character is stored as a an array with a character\n   * and a 32-bit integer:\n   *   - First value: a utf-16 character.\n   *   - Second value:\n   *   - Next 9 bits: background color (0-511).\n   *   - Next 9 bits: foreground color (0-511).\n   *   - Next 14 bits: a mask for misc. flags:\n   *     - 1=bold\n   *     - 2=underline\n   *     - 4=blink\n   *     - 8=inverse\n   *     - 16=invisible\n   *\n   * @param {number} start The row to start from (between 0 and terminal's height terminal - 1)\n   * @param {number} end The row to end at (between fromRow and terminal's height terminal - 1)\n   */\n  private _refresh(start: number, end: number): void {\n    // If this is a big refresh, remove the terminal rows from the DOM for faster calculations\n    let parent;\n    if (end - start >= this._terminal.rows / 2) {\n      parent = this._terminal.element.parentNode;\n      if (parent) {\n        this._terminal.element.removeChild(this._terminal.rowContainer);\n      }\n    }\n\n    let width = this._terminal.cols;\n    let y = start;\n\n    if (end >= this._terminal.rows) {\n      this._terminal.log('`end` is too large. Most likely a bad CSR.');\n      end = this._terminal.rows - 1;\n    }\n\n    for (; y <= end; y++) {\n      let row = y + this._terminal.buffer.ydisp;\n\n      let line = this._terminal.buffer.lines.get(row);\n\n      let x;\n      if (this._terminal.buffer.y === y - (this._terminal.buffer.ybase - this._terminal.buffer.ydisp) &&\n          this._terminal.cursorState &&\n          !this._terminal.cursorHidden) {\n        x = this._terminal.buffer.x;\n      } else {\n        x = -1;\n      }\n\n      let attr = this._terminal.defAttr;\n\n      const documentFragment = document.createDocumentFragment();\n      let innerHTML = '';\n      let currentElement;\n\n      // Return the row's spans to the pool\n      while (this._terminal.children[y].children.length) {\n        const child = this._terminal.children[y].children[0];\n        this._terminal.children[y].removeChild(child);\n        this._spanElementObjectPool.release(<HTMLElement>child);\n      }\n\n      for (let i = 0; i < width; i++) {\n        // TODO: Could data be a more specific type?\n        let data: any = line[i][0];\n        const ch = line[i][1];\n        const ch_width: any = line[i][2];\n        const isCursor: boolean = i === x;\n        if (!ch_width) {\n          continue;\n        }\n\n        if (data !== attr || isCursor) {\n          if (attr !== this._terminal.defAttr && !isCursor) {\n            if (innerHTML) {\n              currentElement.innerHTML = innerHTML;\n              innerHTML = '';\n            }\n            documentFragment.appendChild(currentElement);\n            currentElement = null;\n          }\n          if (data !== this._terminal.defAttr || isCursor) {\n            if (innerHTML && !currentElement) {\n              currentElement = this._spanElementObjectPool.acquire();\n            }\n            if (currentElement) {\n              if (innerHTML) {\n                currentElement.innerHTML = innerHTML;\n                innerHTML = '';\n              }\n              documentFragment.appendChild(currentElement);\n            }\n            currentElement = this._spanElementObjectPool.acquire();\n\n            let bg = data & 0x1ff;\n            let fg = (data >> 9) & 0x1ff;\n            let flags = data >> 18;\n\n            if (isCursor) {\n              currentElement.classList.add('reverse-video');\n              currentElement.classList.add('terminal-cursor');\n            }\n\n            if (flags & FLAGS.BOLD) {\n              if (!brokenBold) {\n                currentElement.classList.add('xterm-bold');\n              }\n              // See: XTerm*boldColors\n              if (fg < 8) {\n                fg += 8;\n              }\n            }\n\n            if (flags & FLAGS.UNDERLINE) {\n              currentElement.classList.add('xterm-underline');\n            }\n\n            if (flags & FLAGS.BLINK) {\n              currentElement.classList.add('xterm-blink');\n            }\n\n            // If inverse flag is on, then swap the foreground and background variables.\n            if (flags & FLAGS.INVERSE) {\n              let temp = bg;\n              bg = fg;\n              fg = temp;\n              // Should inverse just be before the above boldColors effect instead?\n              if ((flags & 1) && fg < 8) {\n                fg += 8;\n              }\n            }\n\n            if (flags & FLAGS.INVISIBLE && !isCursor) {\n              currentElement.classList.add('xterm-hidden');\n            }\n\n            /**\n             * Weird situation: Invert flag used black foreground and white background results\n             * in invalid background color, positioned at the 256 index of the 256 terminal\n             * color map. Pin the colors manually in such a case.\n             *\n             * Source: https://github.com/sourcelair/xterm.js/issues/57\n             */\n            if (flags & FLAGS.INVERSE) {\n              if (bg === 257) {\n                bg = 15;\n              }\n              if (fg === 256) {\n                fg = 0;\n              }\n            }\n\n            if (bg < 256) {\n              currentElement.classList.add(`xterm-bg-color-${bg}`);\n            }\n\n            if (fg < 256) {\n              currentElement.classList.add(`xterm-color-${fg}`);\n            }\n\n          }\n        }\n\n        if (ch_width === 2) {\n          // Wrap wide characters so they're sized correctly. It's more difficult to release these\n          // from the object pool so just create new ones via innerHTML.\n          innerHTML += `<span class=\"xterm-wide-char\">${ch}</span>`;\n        } else if (ch.charCodeAt(0) > 255) {\n          // Wrap any non-wide unicode character as some fonts size them badly\n          innerHTML += `<span class=\"xterm-normal-char\">${ch}</span>`;\n        } else {\n          switch (ch) {\n            case '&':\n              innerHTML += '&amp;';\n              break;\n            case '<':\n              innerHTML += '&lt;';\n              break;\n            case '>':\n              innerHTML += '&gt;';\n              break;\n            default:\n              if (ch <= ' ') {\n                innerHTML += '&nbsp;';\n              } else {\n                innerHTML += ch;\n              }\n              break;\n          }\n        }\n\n        // The cursor needs its own element, therefore we set attr to -1\n        // which will cause the next character to be rendered in a new element\n        attr = isCursor ? -1 : data;\n\n      }\n\n      if (innerHTML && !currentElement) {\n        currentElement = this._spanElementObjectPool.acquire();\n      }\n      if (currentElement) {\n        if (innerHTML) {\n          currentElement.innerHTML = innerHTML;\n          innerHTML = '';\n        }\n        documentFragment.appendChild(currentElement);\n        currentElement = null;\n      }\n\n      this._terminal.children[y].appendChild(documentFragment);\n    }\n\n    if (parent) {\n      this._terminal.element.appendChild(this._terminal.rowContainer);\n    }\n\n    this._terminal.emit('refresh', {element: this._terminal.element, start: start, end: end});\n  };\n\n  /**\n   * Refreshes the selection in the DOM.\n   * @param start The selection start.\n   * @param end The selection end.\n   */\n  public refreshSelection(start: [number, number], end: [number, number]) {\n    // Remove all selections\n    while (this._terminal.selectionContainer.children.length) {\n      this._terminal.selectionContainer.removeChild(this._terminal.selectionContainer.children[0]);\n    }\n\n    // Selection does not exist\n    if (!start || !end) {\n      return;\n    }\n\n    // Translate from buffer position to viewport position\n    const viewportStartRow = start[1] - this._terminal.buffer.ydisp;\n    const viewportEndRow = end[1] - this._terminal.buffer.ydisp;\n    const viewportCappedStartRow = Math.max(viewportStartRow, 0);\n    const viewportCappedEndRow = Math.min(viewportEndRow, this._terminal.rows - 1);\n\n    // No need to draw the selection\n    if (viewportCappedStartRow >= this._terminal.rows || viewportCappedEndRow < 0) {\n      return;\n    }\n\n    // Create the selections\n    const documentFragment = document.createDocumentFragment();\n    // Draw first row\n    const startCol = viewportStartRow === viewportCappedStartRow ? start[0] : 0;\n    const endCol = viewportCappedStartRow === viewportCappedEndRow ? end[0] : this._terminal.cols;\n    documentFragment.appendChild(this._createSelectionElement(viewportCappedStartRow, startCol, endCol));\n    // Draw middle rows\n    const middleRowsCount = viewportCappedEndRow - viewportCappedStartRow - 1;\n    documentFragment.appendChild(this._createSelectionElement(viewportCappedStartRow + 1, 0, this._terminal.cols, middleRowsCount));\n    // Draw final row\n    if (viewportCappedStartRow !== viewportCappedEndRow) {\n      // Only draw viewportEndRow if it's not the same as viewporttartRow\n      const endCol = viewportEndRow === viewportCappedEndRow ? end[0] : this._terminal.cols;\n      documentFragment.appendChild(this._createSelectionElement(viewportCappedEndRow, 0, endCol));\n    }\n    this._terminal.selectionContainer.appendChild(documentFragment);\n  }\n\n  /**\n   * Creates a selection element at the specified position.\n   * @param row The row of the selection.\n   * @param colStart The start column.\n   * @param colEnd The end columns.\n   */\n  private _createSelectionElement(row: number, colStart: number, colEnd: number, rowCount: number = 1): HTMLElement {\n    const element = document.createElement('div');\n    element.style.height = `${rowCount * this._terminal.charMeasure.height}px`;\n    element.style.top = `${row * this._terminal.charMeasure.height}px`;\n    element.style.left = `${colStart * this._terminal.charMeasure.width}px`;\n    element.style.width = `${this._terminal.charMeasure.width * (colEnd - colStart)}px`;\n    return element;\n  }\n}\n\n\n// If bold is broken, we can't use it in the terminal.\nfunction checkBoldBroken(terminal) {\n  const document = terminal.ownerDocument;\n  const el = document.createElement('span');\n  el.innerHTML = 'hello world';\n  terminal.appendChild(el);\n  const w1 = el.offsetWidth;\n  const h1 = el.offsetHeight;\n  el.style.fontWeight = 'bold';\n  const w2 = el.offsetWidth;\n  const h2 = el.offsetHeight;\n  terminal.removeChild(el);\n  return w1 !== w2 || h1 !== h2;\n}\n","/**\n * @license MIT\n */\n\nimport { C0 } from './EscapeSequences';\nimport { IInputHandler } from './Interfaces';\nimport { CHARSETS, DEFAULT_CHARSET } from './Charsets';\n\nconst normalStateHandler: {[key: string]: (parser: Parser, handler: IInputHandler) => void} = {};\nnormalStateHandler[C0.BEL] = (parser, handler) => handler.bell();\nnormalStateHandler[C0.LF] = (parser, handler) => handler.lineFeed();\nnormalStateHandler[C0.VT] = normalStateHandler[C0.LF];\nnormalStateHandler[C0.FF] = normalStateHandler[C0.LF];\nnormalStateHandler[C0.CR] = (parser, handler) => handler.carriageReturn();\nnormalStateHandler[C0.BS] = (parser, handler) => handler.backspace();\nnormalStateHandler[C0.HT] = (parser, handler) => handler.tab();\nnormalStateHandler[C0.SO] = (parser, handler) => handler.shiftOut();\nnormalStateHandler[C0.SI] = (parser, handler) => handler.shiftIn();\nnormalStateHandler[C0.ESC] = (parser, handler) => parser.setState(ParserState.ESCAPED);\n\n// TODO: Remove terminal when parser owns params and currentParam\nconst escapedStateHandler: {[key: string]: (parser: Parser, terminal: any) => void} = {};\nescapedStateHandler['['] = (parser, terminal) => {\n  // ESC [ Control Sequence Introducer (CSI  is 0x9b)\n  terminal.params = [];\n  terminal.currentParam = 0;\n  parser.setState(ParserState.CSI_PARAM);\n};\nescapedStateHandler[']'] = (parser, terminal) => {\n  // ESC ] Operating System Command (OSC is 0x9d)\n  terminal.params = [];\n  terminal.currentParam = 0;\n  parser.setState(ParserState.OSC);\n};\nescapedStateHandler['P'] = (parser, terminal) => {\n  // ESC P Device Control String (DCS is 0x90)\n  terminal.params = [];\n  terminal.currentParam = 0;\n  parser.setState(ParserState.DCS);\n};\nescapedStateHandler['_'] = (parser, terminal) => {\n  // ESC _ Application Program Command ( APC is 0x9f).\n  parser.setState(ParserState.IGNORE);\n};\nescapedStateHandler['^'] = (parser, terminal) => {\n  // ESC ^ Privacy Message ( PM is 0x9e).\n  parser.setState(ParserState.IGNORE);\n};\nescapedStateHandler['c'] = (parser, terminal) => {\n  // ESC c Full Reset (RIS).\n  terminal.reset();\n};\nescapedStateHandler['E'] = (parser, terminal) => {\n  // ESC E Next Line ( NEL is 0x85).\n  terminal.buffer.x = 0;\n  terminal.index();\n  parser.setState(ParserState.NORMAL);\n};\nescapedStateHandler['D'] = (parser, terminal) => {\n  // ESC D Index ( IND is 0x84).\n  terminal.index();\n  parser.setState(ParserState.NORMAL);\n};\nescapedStateHandler['M'] = (parser, terminal) => {\n  // ESC M Reverse Index ( RI is 0x8d).\n  terminal.reverseIndex();\n  parser.setState(ParserState.NORMAL);\n};\nescapedStateHandler['%'] = (parser, terminal) => {\n  // ESC % Select default/utf-8 character set.\n  // @ = default, G = utf-8\n  terminal.setgLevel(0);\n  terminal.setgCharset(0, DEFAULT_CHARSET); // US (default)\n  parser.setState(ParserState.NORMAL);\n  parser.skipNextChar();\n};\nescapedStateHandler[C0.CAN] = (parser) => parser.setState(ParserState.NORMAL);\n\nconst csiParamStateHandler: {[key: string]: (parser: Parser) => void} = {};\ncsiParamStateHandler['?'] = (parser) => parser.setPrefix('?');\ncsiParamStateHandler['>'] = (parser) => parser.setPrefix('>');\ncsiParamStateHandler['!'] = (parser) => parser.setPrefix('!');\ncsiParamStateHandler['0'] = (parser) => parser.setParam(parser.getParam() * 10);\ncsiParamStateHandler['1'] = (parser) => parser.setParam(parser.getParam() * 10 + 1);\ncsiParamStateHandler['2'] = (parser) => parser.setParam(parser.getParam() * 10 + 2);\ncsiParamStateHandler['3'] = (parser) => parser.setParam(parser.getParam() * 10 + 3);\ncsiParamStateHandler['4'] = (parser) => parser.setParam(parser.getParam() * 10 + 4);\ncsiParamStateHandler['5'] = (parser) => parser.setParam(parser.getParam() * 10 + 5);\ncsiParamStateHandler['6'] = (parser) => parser.setParam(parser.getParam() * 10 + 6);\ncsiParamStateHandler['7'] = (parser) => parser.setParam(parser.getParam() * 10 + 7);\ncsiParamStateHandler['8'] = (parser) => parser.setParam(parser.getParam() * 10 + 8);\ncsiParamStateHandler['9'] = (parser) => parser.setParam(parser.getParam() * 10 + 9);\ncsiParamStateHandler['$'] = (parser) => parser.setPostfix('$');\ncsiParamStateHandler['\"'] = (parser) => parser.setPostfix('\"');\ncsiParamStateHandler[' '] = (parser) => parser.setPostfix(' ');\ncsiParamStateHandler['\\''] = (parser) => parser.setPostfix('\\'');\ncsiParamStateHandler[';'] = (parser) => parser.finalizeParam();\ncsiParamStateHandler[C0.CAN] = (parser) => parser.setState(ParserState.NORMAL);\n\nconst csiStateHandler: {[key: string]: (handler: IInputHandler, params: number[], prefix: string, postfix: string, parser: Parser) => void} = {};\ncsiStateHandler['@'] = (handler, params, prefix) => handler.insertChars(params);\ncsiStateHandler['A'] = (handler, params, prefix) => handler.cursorUp(params);\ncsiStateHandler['B'] = (handler, params, prefix) => handler.cursorDown(params);\ncsiStateHandler['C'] = (handler, params, prefix) => handler.cursorForward(params);\ncsiStateHandler['D'] = (handler, params, prefix) => handler.cursorBackward(params);\ncsiStateHandler['E'] = (handler, params, prefix) => handler.cursorNextLine(params);\ncsiStateHandler['F'] = (handler, params, prefix) => handler.cursorPrecedingLine(params);\ncsiStateHandler['G'] = (handler, params, prefix) => handler.cursorCharAbsolute(params);\ncsiStateHandler['H'] = (handler, params, prefix) => handler.cursorPosition(params);\ncsiStateHandler['I'] = (handler, params, prefix) => handler.cursorForwardTab(params);\ncsiStateHandler['J'] = (handler, params, prefix) => handler.eraseInDisplay(params);\ncsiStateHandler['K'] = (handler, params, prefix) => handler.eraseInLine(params);\ncsiStateHandler['L'] = (handler, params, prefix) => handler.insertLines(params);\ncsiStateHandler['M'] = (handler, params, prefix) => handler.deleteLines(params);\ncsiStateHandler['P'] = (handler, params, prefix) => handler.deleteChars(params);\ncsiStateHandler['S'] = (handler, params, prefix) => handler.scrollUp(params);\ncsiStateHandler['T'] = (handler, params, prefix) => {\n  if (params.length < 2 && !prefix) {\n    handler.scrollDown(params);\n  }\n};\ncsiStateHandler['X'] = (handler, params, prefix) => handler.eraseChars(params);\ncsiStateHandler['Z'] = (handler, params, prefix) => handler.cursorBackwardTab(params);\ncsiStateHandler['`'] = (handler, params, prefix) => handler.charPosAbsolute(params);\ncsiStateHandler['a'] = (handler, params, prefix) => handler.HPositionRelative(params);\ncsiStateHandler['b'] = (handler, params, prefix) => handler.repeatPrecedingCharacter(params);\ncsiStateHandler['c'] = (handler, params, prefix) => handler.sendDeviceAttributes(params);\ncsiStateHandler['d'] = (handler, params, prefix) => handler.linePosAbsolute(params);\ncsiStateHandler['e'] = (handler, params, prefix) => handler.VPositionRelative(params);\ncsiStateHandler['f'] = (handler, params, prefix) => handler.HVPosition(params);\ncsiStateHandler['g'] = (handler, params, prefix) => handler.tabClear(params);\ncsiStateHandler['h'] = (handler, params, prefix) => handler.setMode(params);\ncsiStateHandler['l'] = (handler, params, prefix) => handler.resetMode(params);\ncsiStateHandler['m'] = (handler, params, prefix) => handler.charAttributes(params);\ncsiStateHandler['n'] = (handler, params, prefix) => handler.deviceStatus(params);\ncsiStateHandler['p'] = (handler, params, prefix) => {\n  switch (prefix) {\n    case '!': handler.softReset(params); break;\n  }\n};\ncsiStateHandler['q'] = (handler, params, prefix, postfix) => {\n  if (postfix === ' ') {\n    handler.setCursorStyle(params);\n  }\n};\ncsiStateHandler['r'] = (handler, params) => handler.setScrollRegion(params);\ncsiStateHandler['s'] = (handler, params) => handler.saveCursor(params);\ncsiStateHandler['u'] = (handler, params) => handler.restoreCursor(params);\ncsiStateHandler[C0.CAN] = (handler, params, prefix, postfix, parser) => parser.setState(ParserState.NORMAL);\n\nenum ParserState {\n  NORMAL = 0,\n  ESCAPED = 1,\n  CSI_PARAM = 2,\n  CSI = 3,\n  OSC = 4,\n  CHARSET = 5,\n  DCS = 6,\n  IGNORE = 7\n}\n\n/**\n * The terminal's parser, all input into the terminal goes through the parser\n * which parses and defers the actual input handling the the IInputHandler\n * specified in the constructor.\n */\nexport class Parser {\n  private _state: ParserState;\n  private _position: number;\n\n  // TODO: Remove terminal when handler can do everything\n  constructor(\n    private _inputHandler: IInputHandler,\n    private _terminal: any\n  ) {\n    this._state = ParserState.NORMAL;\n  }\n\n  /**\n   * Parse and handle data.\n   *\n   * @param data The data to parse.\n   */\n  public parse(data: string): ParserState {\n    let l = data.length, j, cs, ch, code, low;\n\n    if (this._terminal.debug) {\n      this._terminal.log('data: ' + data);\n    }\n\n    this._position = 0;\n    // apply leftover surrogate high from last write\n    if (this._terminal.surrogate_high) {\n      data = this._terminal.surrogate_high + data;\n      this._terminal.surrogate_high = '';\n    }\n\n    for (; this._position < l; this._position++) {\n      ch = data[this._position];\n\n      // FIXME: higher chars than 0xa0 are not allowed in escape sequences\n      //        --> maybe move to default\n      code = data.charCodeAt(this._position);\n      if (0xD800 <= code && code <= 0xDBFF) {\n        // we got a surrogate high\n        // get surrogate low (next 2 bytes)\n        low = data.charCodeAt(this._position + 1);\n        if (isNaN(low)) {\n          // end of data stream, save surrogate high\n          this._terminal.surrogate_high = ch;\n          continue;\n        }\n        code = ((code - 0xD800) * 0x400) + (low - 0xDC00) + 0x10000;\n        ch += data.charAt(this._position + 1);\n      }\n      // surrogate low - already handled above\n      if (0xDC00 <= code && code <= 0xDFFF)\n        continue;\n\n      switch (this._state) {\n        case ParserState.NORMAL:\n          if (ch in normalStateHandler) {\n            normalStateHandler[ch](this, this._inputHandler);\n          } else {\n            this._inputHandler.addChar(ch, code);\n          }\n          break;\n        case ParserState.ESCAPED:\n          if (ch in escapedStateHandler) {\n            escapedStateHandler[ch](this, this._terminal);\n            // Skip switch as it was just handled\n            break;\n          }\n          switch (ch) {\n\n            // ESC (,),*,+,-,. Designate G0-G2 Character Set.\n            case '(': // <-- this seems to get all the attention\n            case ')':\n            case '*':\n            case '+':\n            case '-':\n            case '.':\n              switch (ch) {\n                case '(':\n                  this._terminal.gcharset = 0;\n                  break;\n                case ')':\n                  this._terminal.gcharset = 1;\n                  break;\n                case '*':\n                  this._terminal.gcharset = 2;\n                  break;\n                case '+':\n                  this._terminal.gcharset = 3;\n                  break;\n                case '-':\n                  this._terminal.gcharset = 1;\n                  break;\n                case '.':\n                  this._terminal.gcharset = 2;\n                  break;\n              }\n              this._state = ParserState.CHARSET;\n              break;\n\n            // Designate G3 Character Set (VT300).\n            // A = ISO Latin-1 Supplemental.\n            // Not implemented.\n            case '/':\n              this._terminal.gcharset = 3;\n              this._state = ParserState.CHARSET;\n              this._position--;\n              break;\n\n            // ESC N\n            // Single Shift Select of G2 Character Set\n            // ( SS2 is 0x8e). This affects next character only.\n            case 'N':\n              break;\n            // ESC O\n            // Single Shift Select of G3 Character Set\n            // ( SS3 is 0x8f). This affects next character only.\n            case 'O':\n              break;\n            // ESC n\n            // Invoke the G2 Character Set as GL (LS2).\n            case 'n':\n              this._terminal.setgLevel(2);\n              break;\n            // ESC o\n            // Invoke the G3 Character Set as GL (LS3).\n            case 'o':\n              this._terminal.setgLevel(3);\n              break;\n            // ESC |\n            // Invoke the G3 Character Set as GR (LS3R).\n            case '|':\n              this._terminal.setgLevel(3);\n              break;\n            // ESC }\n            // Invoke the G2 Character Set as GR (LS2R).\n            case '}':\n              this._terminal.setgLevel(2);\n              break;\n            // ESC ~\n            // Invoke the G1 Character Set as GR (LS1R).\n            case '~':\n              this._terminal.setgLevel(1);\n              break;\n\n            // ESC 7 Save Cursor (DECSC).\n            case '7':\n              this._inputHandler.saveCursor();\n              this._state = ParserState.NORMAL;\n              break;\n\n            // ESC 8 Restore Cursor (DECRC).\n            case '8':\n              this._inputHandler.restoreCursor();\n              this._state = ParserState.NORMAL;\n              break;\n\n            // ESC # 3 DEC line height/width\n            case '#':\n              this._state = ParserState.NORMAL;\n              this._position++;\n              break;\n\n            // ESC H Tab Set (HTS is 0x88).\n            case 'H':\n              this._terminal.tabSet();\n              this._state = ParserState.NORMAL;\n              break;\n\n            // ESC = Application Keypad (DECKPAM).\n            case '=':\n              this._terminal.log('Serial port requested application keypad.');\n              this._terminal.applicationKeypad = true;\n              this._terminal.viewport.syncScrollArea();\n              this._state = ParserState.NORMAL;\n              break;\n\n            // ESC > Normal Keypad (DECKPNM).\n            case '>':\n              this._terminal.log('Switching back to normal keypad.');\n              this._terminal.applicationKeypad = false;\n              this._terminal.viewport.syncScrollArea();\n              this._state = ParserState.NORMAL;\n              break;\n\n            default:\n              this._state = ParserState.NORMAL;\n              this._terminal.error('Unknown ESC control: %s.', ch);\n              break;\n          }\n          break;\n\n        case ParserState.CHARSET:\n          if (ch in CHARSETS) {\n            cs = CHARSETS[ch];\n            if (ch === '/') { // ISOLatin is actually /A\n              this.skipNextChar();\n            }\n          } else {\n            cs = DEFAULT_CHARSET;\n          }\n          this._terminal.setgCharset(this._terminal.gcharset, cs);\n          this._terminal.gcharset = null;\n          this._state = ParserState.NORMAL;\n          break;\n\n        case ParserState.OSC:\n          // OSC Ps ; Pt ST\n          // OSC Ps ; Pt BEL\n          //   Set Text Parameters.\n          if (ch === C0.ESC || ch === C0.BEL) {\n            if (ch === C0.ESC) this._position++;\n\n            this._terminal.params.push(this._terminal.currentParam);\n\n            switch (this._terminal.params[0]) {\n              case 0:\n              case 1:\n              case 2:\n                if (this._terminal.params[1]) {\n                  this._terminal.title = this._terminal.params[1];\n                  this._terminal.handleTitle(this._terminal.title);\n                }\n                break;\n              case 3:\n                // set X property\n                break;\n              case 4:\n              case 5:\n                // change dynamic colors\n                break;\n              case 10:\n              case 11:\n              case 12:\n              case 13:\n              case 14:\n              case 15:\n              case 16:\n              case 17:\n              case 18:\n              case 19:\n                // change dynamic ui colors\n                break;\n              case 46:\n                // change log file\n                break;\n              case 50:\n                // dynamic font\n                break;\n              case 51:\n                // emacs shell\n                break;\n              case 52:\n                // manipulate selection data\n                break;\n              case 104:\n              case 105:\n              case 110:\n              case 111:\n              case 112:\n              case 113:\n              case 114:\n              case 115:\n              case 116:\n              case 117:\n              case 118:\n                // reset colors\n                break;\n            }\n\n            this._terminal.params = [];\n            this._terminal.currentParam = 0;\n            this._state = ParserState.NORMAL;\n          } else {\n            if (!this._terminal.params.length) {\n              if (ch >= '0' && ch <= '9') {\n                this._terminal.currentParam =\n                  this._terminal.currentParam * 10 + ch.charCodeAt(0) - 48;\n              } else if (ch === ';') {\n                this._terminal.params.push(this._terminal.currentParam);\n                this._terminal.currentParam = '';\n              }\n            } else {\n              this._terminal.currentParam += ch;\n            }\n          }\n          break;\n\n        case ParserState.CSI_PARAM:\n          if (ch in csiParamStateHandler) {\n            csiParamStateHandler[ch](this);\n            break;\n          }\n          this.finalizeParam();\n          // Fall through the CSI as this character should be the CSI code.\n          this._state = ParserState.CSI;\n\n        case ParserState.CSI:\n          if (ch in csiStateHandler) {\n            if (this._terminal.debug) {\n              this._terminal.log(`CSI ${this._terminal.prefix ? this._terminal.prefix : ''} ${this._terminal.params ? this._terminal.params.join(';') : ''} ${this._terminal.postfix ? this._terminal.postfix : ''} ${ch}`);\n            }\n            csiStateHandler[ch](this._inputHandler, this._terminal.params, this._terminal.prefix, this._terminal.postfix, this);\n          } else {\n            this._terminal.error('Unknown CSI code: %s.', ch);\n          }\n\n          this._state = ParserState.NORMAL;\n          this._terminal.prefix = '';\n          this._terminal.postfix = '';\n          break;\n\n        case ParserState.DCS:\n          if (ch === C0.ESC || ch === C0.BEL) {\n            if (ch === C0.ESC) this._position++;\n            let pt;\n            let valid: boolean;\n\n            switch (this._terminal.prefix) {\n              // User-Defined Keys (DECUDK).\n              case '':\n                break;\n\n              // Request Status String (DECRQSS).\n              // test: echo -e '\\eP$q\"p\\e\\\\'\n              case '$q':\n                pt = this._terminal.currentParam;\n                valid = false;\n\n                switch (pt) {\n                  // DECSCA\n                  case '\"q':\n                    pt = '0\"q';\n                    break;\n\n                  // DECSCL\n                  case '\"p':\n                    pt = '61\"p';\n                    break;\n\n                  // DECSTBM\n                  case 'r':\n                    pt = ''\n                      + (this._terminal.buffer.scrollTop + 1)\n                      + ';'\n                      + (this._terminal.buffer.scrollBottom + 1)\n                      + 'r';\n                    break;\n\n                  // SGR\n                  case 'm':\n                    pt = '0m';\n                    break;\n\n                  default:\n                    this._terminal.error('Unknown DCS Pt: %s.', pt);\n                    pt = '';\n                    break;\n                }\n\n                this._terminal.send(C0.ESC + 'P' + +valid + '$r' + pt + C0.ESC + '\\\\');\n                break;\n\n              // Set Termcap/Terminfo Data (xterm, experimental).\n              case '+p':\n                break;\n\n              // Request Termcap/Terminfo String (xterm, experimental)\n              // Regular xterm does not even respond to this sequence.\n              // This can cause a small glitch in vim.\n              // test: echo -ne '\\eP+q6b64\\e\\\\'\n              case '+q':\n                pt = this._terminal.currentParam;\n                valid = false;\n\n                this._terminal.send(C0.ESC + 'P' + +valid + '+r' + pt + C0.ESC + '\\\\');\n                break;\n\n              default:\n                this._terminal.error('Unknown DCS prefix: %s.', this._terminal.prefix);\n                break;\n            }\n\n            this._terminal.currentParam = 0;\n            this._terminal.prefix = '';\n            this._state = ParserState.NORMAL;\n          } else if (!this._terminal.currentParam) {\n            if (!this._terminal.prefix && ch !== '$' && ch !== '+') {\n              this._terminal.currentParam = ch;\n            } else if (this._terminal.prefix.length === 2) {\n              this._terminal.currentParam = ch;\n            } else {\n              this._terminal.prefix += ch;\n            }\n          } else {\n            this._terminal.currentParam += ch;\n          }\n          break;\n\n        case ParserState.IGNORE:\n          // For PM and APC.\n          if (ch === C0.ESC || ch === C0.BEL) {\n            if (ch === C0.ESC) this._position++;\n            this._state = ParserState.NORMAL;\n          }\n          break;\n      }\n    }\n    return this._state;\n  }\n\n  /**\n   * Set the parser's current parsing state.\n   *\n   * @param state The new state.\n   */\n  public setState(state: ParserState): void {\n    this._state = state;\n  }\n\n  /**\n   * Sets the parsier's current prefix. CSI codes can have prefixes of '?', '>'\n   * or '!'.\n   *\n   * @param prefix The prefix.\n   */\n  public setPrefix(prefix: string): void {\n    this._terminal.prefix = prefix;\n  }\n\n  /**\n   * Sets the parsier's current prefix. CSI codes can have postfixes of '$',\n   * '\"', ' ', '\\''.\n   *\n   * @param postfix The postfix.\n   */\n  public setPostfix(postfix: string): void {\n    this._terminal.postfix = postfix;\n  }\n\n  /**\n   * Sets the parser's current parameter.\n   *\n   * @param param the parameter.\n   */\n  public setParam(param: number) {\n    this._terminal.currentParam = param;\n  }\n\n  /**\n   * Gets the parser's current parameter.\n   */\n  public getParam(): number {\n    return this._terminal.currentParam;\n  }\n\n  /**\n   * Finalizes the parser's current parameter, adding it to the list of\n   * parameters and setting the new current parameter to 0.\n   */\n  public finalizeParam(): void {\n    this._terminal.params.push(this._terminal.currentParam);\n    this._terminal.currentParam = 0;\n  }\n\n  /**\n   * Tell the parser to skip the next character.\n   */\n  public skipNextChar(): void {\n    this._position++;\n  }\n\n  /**\n   * Tell the parser to repeat parsing the current character (for example if it\n   * needs parsing using a different state.\n   */\n  // public repeatChar(): void {\n  //   this._position--;\n  // }\n}\n","/**\n * @license MIT\n */\n\nimport { LinkMatcherOptions } from './Interfaces';\nimport { LinkMatcher, LinkMatcherHandler, LinkMatcherValidationCallback } from './Types';\n\nconst INVALID_LINK_CLASS = 'xterm-invalid-link';\n\nconst protocolClause = '(https?:\\\\/\\\\/)';\nconst domainCharacterSet = '[\\\\da-z\\\\.-]+';\nconst negatedDomainCharacterSet = '[^\\\\da-z\\\\.-]+';\nconst domainBodyClause = '(' + domainCharacterSet + ')';\nconst tldClause = '([a-z\\\\.]{2,6})';\nconst ipClause = '((\\\\d{1,3}\\\\.){3}\\\\d{1,3})';\nconst localHostClause = '(localhost)';\nconst portClause = '(:\\\\d{1,5})';\nconst hostClause = '((' + domainBodyClause + '\\\\.' + tldClause + ')|' + ipClause + '|' + localHostClause + ')' + portClause + '?';\nconst pathClause = '(\\\\/[\\\\/\\\\w\\\\.\\\\-%~]*)*';\nconst queryStringHashFragmentCharacterSet = '[0-9\\\\w\\\\[\\\\]\\\\(\\\\)\\\\/\\\\?\\\\!#@$%&\\'*+,:;~\\\\=\\\\.\\\\-]*';\nconst queryStringClause = '(\\\\?' + queryStringHashFragmentCharacterSet + ')?';\nconst hashFragmentClause = '(#' + queryStringHashFragmentCharacterSet + ')?';\nconst negatedPathCharacterSet = '[^\\\\/\\\\w\\\\.\\\\-%]+';\nconst bodyClause = hostClause + pathClause + queryStringClause + hashFragmentClause;\nconst start = '(?:^|' + negatedDomainCharacterSet + ')(';\nconst end = ')($|' + negatedPathCharacterSet + ')';\nconst strictUrlRegex = new RegExp(start + protocolClause + bodyClause + end);\n\n/**\n * The ID of the built in http(s) link matcher.\n */\nconst HYPERTEXT_LINK_MATCHER_ID = 0;\n\n/**\n * The Linkifier applies links to rows shortly after they have been refreshed.\n */\nexport class Linkifier {\n  /**\n   * The time to wait after a row is changed before it is linkified. This prevents\n   * the costly operation of searching every row multiple times, potentially a\n   * huge amount of times.\n   */\n  protected static TIME_BEFORE_LINKIFY = 200;\n\n  protected _linkMatchers: LinkMatcher[];\n\n  private _document: Document;\n  private _rows: HTMLElement[];\n  private _rowTimeoutIds: number[];\n  private _nextLinkMatcherId = HYPERTEXT_LINK_MATCHER_ID;\n\n  constructor() {\n    this._rowTimeoutIds = [];\n    this._linkMatchers = [];\n    this.registerLinkMatcher(strictUrlRegex, null, { matchIndex: 1 });\n  }\n\n  /**\n   * Attaches the linkifier to the DOM, enabling linkification.\n   * @param document The document object.\n   * @param rows The array of rows to apply links to.\n   */\n  public attachToDom(document: Document, rows: HTMLElement[]) {\n    this._document = document;\n    this._rows = rows;\n  }\n\n  /**\n   * Queues a row for linkification.\n   * @param {number} rowIndex The index of the row to linkify.\n   */\n  public linkifyRow(rowIndex: number): void {\n    // Don't attempt linkify if not yet attached to DOM\n    if (!this._document) {\n      return;\n    }\n\n    const timeoutId = this._rowTimeoutIds[rowIndex];\n    if (timeoutId) {\n      clearTimeout(timeoutId);\n    }\n    this._rowTimeoutIds[rowIndex] = setTimeout(this._linkifyRow.bind(this, rowIndex), Linkifier.TIME_BEFORE_LINKIFY);\n  }\n\n  /**\n   * Attaches a handler for hypertext links, overriding default <a> behavior\n   * for standard http(s) links.\n   * @param {LinkHandler} handler The handler to use, this can be cleared with\n   * null.\n   */\n  public setHypertextLinkHandler(handler: LinkMatcherHandler): void {\n    this._linkMatchers[HYPERTEXT_LINK_MATCHER_ID].handler = handler;\n  }\n\n  /**\n   * Attaches a validation callback for hypertext links.\n   * @param {LinkMatcherValidationCallback} callback The callback to use, this\n   * can be cleared with null.\n   */\n  public setHypertextValidationCallback(callback: LinkMatcherValidationCallback): void {\n    this._linkMatchers[HYPERTEXT_LINK_MATCHER_ID].validationCallback = callback;\n  }\n\n  /**\n   * Registers a link matcher, allowing custom link patterns to be matched and\n   * handled.\n   * @param {RegExp} regex The regular expression to search for, specifically\n   * this searches the textContent of the rows. You will want to use \\s to match\n   * a space ' ' character for example.\n   * @param {LinkHandler} handler The callback when the link is called.\n   * @param {LinkMatcherOptions} [options] Options for the link matcher.\n   * @return {number} The ID of the new matcher, this can be used to deregister.\n   */\n  public registerLinkMatcher(regex: RegExp, handler: LinkMatcherHandler, options: LinkMatcherOptions = {}): number {\n    if (this._nextLinkMatcherId !== HYPERTEXT_LINK_MATCHER_ID && !handler) {\n      throw new Error('handler must be defined');\n    }\n    const matcher: LinkMatcher = {\n      id: this._nextLinkMatcherId++,\n      regex,\n      handler,\n      matchIndex: options.matchIndex,\n      validationCallback: options.validationCallback,\n      priority: options.priority || 0\n    };\n    this._addLinkMatcherToList(matcher);\n    return matcher.id;\n  }\n\n  /**\n   * Inserts a link matcher to the list in the correct position based on the\n   * priority of each link matcher. New link matchers of equal priority are\n   * considered after older link matchers.\n   * @param matcher The link matcher to be added.\n   */\n  private _addLinkMatcherToList(matcher: LinkMatcher): void {\n    if (this._linkMatchers.length === 0) {\n      this._linkMatchers.push(matcher);\n      return;\n    }\n\n    for (let i = this._linkMatchers.length - 1; i >= 0; i--) {\n      if (matcher.priority <= this._linkMatchers[i].priority) {\n        this._linkMatchers.splice(i + 1, 0, matcher);\n        return;\n      }\n    }\n\n    this._linkMatchers.splice(0, 0, matcher);\n  }\n\n  /**\n   * Deregisters a link matcher if it has been registered.\n   * @param {number} matcherId The link matcher's ID (returned after register)\n   * @return {boolean} Whether a link matcher was found and deregistered.\n   */\n  public deregisterLinkMatcher(matcherId: number): boolean {\n    // ID 0 is the hypertext link matcher which cannot be deregistered\n    for (let i = 1; i < this._linkMatchers.length; i++) {\n      if (this._linkMatchers[i].id === matcherId) {\n        this._linkMatchers.splice(i, 1);\n        return true;\n      }\n    }\n    return false;\n  }\n\n  /**\n   * Linkifies a row.\n   * @param {number} rowIndex The index of the row to linkify.\n   */\n  private _linkifyRow(rowIndex: number): void {\n    const row = this._rows[rowIndex];\n    if (!row) {\n      return;\n    }\n    const text = row.textContent;\n    for (let i = 0; i < this._linkMatchers.length; i++) {\n      const matcher = this._linkMatchers[i];\n      const linkElements = this._doLinkifyRow(row, matcher);\n        if (linkElements.length > 0) {\n        // Fire validation callback\n        if (matcher.validationCallback) {\n          for (let j = 0; j < linkElements.length; j++) {\n            const element = linkElements[j];\n            matcher.validationCallback(element.textContent, element, isValid => {\n              if (!isValid) {\n                element.classList.add(INVALID_LINK_CLASS);\n              }\n            });\n          }\n        }\n        // Only allow a single LinkMatcher to trigger on any given row.\n        return;\n      }\n    }\n  }\n\n  /**\n   * Linkifies a row given a specific handler.\n   * @param {HTMLElement} row The row to linkify.\n   * @param {LinkMatcher} matcher The link matcher for this line.\n   * @return The link element(s) that were added.\n   */\n  private _doLinkifyRow(row: HTMLElement, matcher: LinkMatcher): HTMLElement[] {\n    // Iterate over nodes as we want to consider text nodes\n    let result = [];\n    const isHttpLinkMatcher = matcher.id === HYPERTEXT_LINK_MATCHER_ID;\n    const nodes = row.childNodes;\n\n    // Find the first match\n    let match = row.textContent.match(matcher.regex);\n    if (!match || match.length === 0) {\n      return result;\n    }\n    let uri = match[typeof matcher.matchIndex !== 'number' ? 0 : matcher.matchIndex];\n    // Set the next searches start index\n    let rowStartIndex = match.index + uri.length;\n\n    for (let i = 0; i < nodes.length; i++) {\n      const node = nodes[i];\n      const searchIndex = node.textContent.indexOf(uri);\n      if (searchIndex >= 0) {\n        const linkElement = this._createAnchorElement(uri, matcher.handler, isHttpLinkMatcher);\n        if (node.textContent.length === uri.length) {\n          // Matches entire string\n          if (node.nodeType === 3 /*Node.TEXT_NODE*/) {\n            this._replaceNode(node, linkElement);\n          } else {\n            const element = (<HTMLElement>node);\n            if (element.nodeName === 'A') {\n              // This row has already been linkified\n              return result;\n            }\n            element.innerHTML = '';\n            element.appendChild(linkElement);\n          }\n        } else if (node.childNodes.length > 1) {\n          // Matches part of string in an element with multiple child nodes\n          for (let j = 0; j < node.childNodes.length; j++) {\n            const childNode = node.childNodes[j];\n            const childSearchIndex = childNode.textContent.indexOf(uri);\n            if (childSearchIndex !== -1) {\n              // Match found in currentNode\n              this._replaceNodeSubstringWithNode(childNode, linkElement, uri, childSearchIndex);\n              // Don't need to count nodesAdded by replacing the node as this\n              // is a child node, not a top-level node.\n              break;\n            }\n          }\n        } else {\n          // Matches part of string in a single text node\n          const nodesAdded = this._replaceNodeSubstringWithNode(node, linkElement, uri, searchIndex);\n          // No need to consider the new nodes\n          i += nodesAdded;\n        }\n        result.push(linkElement);\n\n        // Find the next match\n        match = row.textContent.substring(rowStartIndex).match(matcher.regex);\n        if (!match || match.length === 0) {\n          return result;\n        }\n        uri = match[typeof matcher.matchIndex !== 'number' ? 0 : matcher.matchIndex];\n        rowStartIndex += match.index + uri.length;\n      }\n    }\n    return result;\n  }\n\n  /**\n   * Creates a link anchor element.\n   * @param {string} uri The uri of the link.\n   * @return {HTMLAnchorElement} The link.\n   */\n  private _createAnchorElement(uri: string, handler: LinkMatcherHandler, isHypertextLinkHandler: boolean): HTMLAnchorElement {\n    const element = this._document.createElement('a');\n    element.textContent = uri;\n    element.draggable = false;\n    if (isHypertextLinkHandler) {\n      element.href = uri;\n      // Force link on another tab so work is not lost\n      element.target = '_blank';\n      element.addEventListener('click', (event: MouseEvent) => {\n        if (handler) {\n          return handler(event, uri);\n        }\n      });\n    } else {\n      element.addEventListener('click', (event: MouseEvent) => {\n        // Don't execute the handler if the link is flagged as invalid\n        if (element.classList.contains(INVALID_LINK_CLASS)) {\n          return;\n        }\n        return handler(event, uri);\n      });\n    }\n    return element;\n  }\n\n  /**\n   * Replace a node with 1 or more other nodes.\n   * @param {Node} oldNode The node to replace.\n   * @param {Node[]} newNodes The new nodes to insert in order.\n   */\n  private _replaceNode(oldNode: Node, ...newNodes: Node[]): void {\n    const parent = oldNode.parentNode;\n    for (let i = 0; i < newNodes.length; i++) {\n      parent.insertBefore(newNodes[i], oldNode);\n    }\n    parent.removeChild(oldNode);\n  }\n\n  /**\n   * Replace a substring within a node with a new node.\n   * @param {Node} targetNode The target node; either a text node or a <span>\n   * containing a single text node.\n   * @param {Node} newNode The new node to insert.\n   * @param {string} substring The substring to replace.\n   * @param {number} substringIndex The index of the substring within the string.\n   * @return The number of nodes to skip when searching for the next uri.\n   */\n  private _replaceNodeSubstringWithNode(targetNode: Node, newNode: Node, substring: string, substringIndex: number): number {\n    // If the targetNode is a non-text node with a single child, make the child\n    // the new targetNode.\n    if (targetNode.childNodes.length === 1) {\n      targetNode = targetNode.childNodes[0];\n    }\n\n    // The targetNode will be either a text node or a <span>. The text node\n    // (targetNode or its only-child) needs to be replaced with newNode plus new\n    // text nodes potentially on either side.\n    if (targetNode.nodeType !== 3/*Node.TEXT_NODE*/) {\n      throw new Error('targetNode must be a text node or only contain a single text node');\n    }\n\n    const fullText = targetNode.textContent;\n\n    if (substringIndex === 0) {\n      // Replace with <newNode><textnode>\n      const rightText = fullText.substring(substring.length);\n      const rightTextNode = this._document.createTextNode(rightText);\n      this._replaceNode(targetNode, newNode, rightTextNode);\n      return 0;\n    }\n\n    if (substringIndex === targetNode.textContent.length - substring.length) {\n      // Replace with <textnode><newNode>\n      const leftText = fullText.substring(0, substringIndex);\n      const leftTextNode = this._document.createTextNode(leftText);\n      this._replaceNode(targetNode, leftTextNode, newNode);\n      return 0;\n    }\n\n    // Replace with <textnode><newNode><textnode>\n    const leftText = fullText.substring(0, substringIndex);\n    const leftTextNode = this._document.createTextNode(leftText);\n    const rightText = fullText.substring(substringIndex + substring.length);\n    const rightTextNode = this._document.createTextNode(rightText);\n    this._replaceNode(targetNode, leftTextNode, newNode, rightTextNode);\n    return 1;\n  }\n}\n","/**\n * @license MIT\n */\n\nimport { IInputHandler, ITerminal } from './Interfaces';\nimport { C0 } from './EscapeSequences';\nimport { DEFAULT_CHARSET } from './Charsets';\n\n/**\n * The terminal's standard implementation of IInputHandler, this handles all\n * input from the Parser.\n *\n * Refer to http://invisible-island.net/xterm/ctlseqs/ctlseqs.html to understand\n * each function's header comment.\n */\nexport class InputHandler implements IInputHandler {\n  // TODO: We want to type _terminal when it's pulled into TS\n  constructor(private _terminal: any) { }\n\n  public addChar(char: string, code: number): void {\n    if (char >= ' ') {\n      // calculate print space\n      // expensive call, therefore we save width in line buffer\n      const ch_width = wcwidth(code);\n\n      if (this._terminal.charset && this._terminal.charset[char]) {\n        char = this._terminal.charset[char];\n      }\n\n      let row = this._terminal.buffer.y + this._terminal.buffer.ybase;\n\n      // insert combining char in last cell\n      // FIXME: needs handling after cursor jumps\n      if (!ch_width && this._terminal.buffer.x) {\n        // dont overflow left\n        if (this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 1]) {\n          if (!this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 1][2]) {\n\n            // found empty cell after fullwidth, need to go 2 cells back\n            if (this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 2])\n              this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 2][1] += char;\n\n          } else {\n            this._terminal.buffer.lines.get(row)[this._terminal.buffer.x - 1][1] += char;\n          }\n          this._terminal.updateRange(this._terminal.buffer.y);\n        }\n        return;\n      }\n\n      // goto next line if ch would overflow\n      // TODO: needs a global min terminal width of 2\n      if (this._terminal.buffer.x + ch_width - 1 >= this._terminal.cols) {\n        // autowrap - DECAWM\n        if (this._terminal.wraparoundMode) {\n          this._terminal.buffer.x = 0;\n          this._terminal.buffer.y++;\n          if (this._terminal.buffer.y > this._terminal.buffer.scrollBottom) {\n            this._terminal.buffer.y--;\n            this._terminal.scroll(true);\n          } else {\n            // The line already exists (eg. the initial viewport), mark it as a\n            // wrapped line\n            this._terminal.buffer.lines.get(this._terminal.buffer.y).isWrapped = true;\n          }\n        } else {\n          if (ch_width === 2)  // FIXME: check for xterm behavior\n            return;\n        }\n      }\n      row = this._terminal.buffer.y + this._terminal.buffer.ybase;\n\n      // insert mode: move characters to right\n      if (this._terminal.insertMode) {\n        // do this twice for a fullwidth char\n        for (let moves = 0; moves < ch_width; ++moves) {\n          // remove last cell, if it's width is 0\n          // we have to adjust the second last cell as well\n          const removed = this._terminal.buffer.lines.get(this._terminal.buffer.y + this._terminal.buffer.ybase).pop();\n          if (removed[2] === 0\n              && this._terminal.buffer.lines.get(row)[this._terminal.cols - 2]\n              && this._terminal.buffer.lines.get(row)[this._terminal.cols - 2][2] === 2) {\n            this._terminal.buffer.lines.get(row)[this._terminal.cols - 2] = [this._terminal.curAttr, ' ', 1];\n          }\n\n          // insert empty cell at cursor\n          this._terminal.buffer.lines.get(row).splice(this._terminal.buffer.x, 0, [this._terminal.curAttr, ' ', 1]);\n        }\n      }\n\n      this._terminal.buffer.lines.get(row)[this._terminal.buffer.x] = [this._terminal.curAttr, char, ch_width];\n      this._terminal.buffer.x++;\n      this._terminal.updateRange(this._terminal.buffer.y);\n\n      // fullwidth char - set next cell width to zero and advance cursor\n      if (ch_width === 2) {\n        this._terminal.buffer.lines.get(row)[this._terminal.buffer.x] = [this._terminal.curAttr, '', 0];\n        this._terminal.buffer.x++;\n      }\n    }\n  }\n\n  /**\n   * BEL\n   * Bell (Ctrl-G).\n   */\n  public bell(): void {\n    if (!this._terminal.visualBell) {\n      return;\n    }\n    this._terminal.element.style.borderColor = 'white';\n    setTimeout(() => this._terminal.element.style.borderColor = '', 10);\n    if (this._terminal.popOnBell) {\n      this._terminal.focus();\n    }\n  }\n\n  /**\n   * LF\n   * Line Feed or New Line (NL).  (LF  is Ctrl-J).\n   */\n  public lineFeed(): void {\n    if (this._terminal.convertEol) {\n      this._terminal.buffer.x = 0;\n    }\n    this._terminal.buffer.y++;\n    if (this._terminal.buffer.y > this._terminal.buffer.scrollBottom) {\n      this._terminal.buffer.y--;\n      this._terminal.scroll();\n    }\n    // If the end of the line is hit, prevent this action from wrapping around to the next line.\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x--;\n    }\n    /**\n     * This event is emitted whenever the terminal outputs a LF or NL.\n     *\n     * @event lineFeed\n     */\n    this._terminal.emit('lineFeed');\n  }\n\n  /**\n   * CR\n   * Carriage Return (Ctrl-M).\n   */\n  public carriageReturn(): void {\n    this._terminal.buffer.x = 0;\n  }\n\n  /**\n   * BS\n   * Backspace (Ctrl-H).\n   */\n  public backspace(): void {\n    if (this._terminal.buffer.x > 0) {\n      this._terminal.buffer.x--;\n    }\n  }\n\n  /**\n   * TAB\n   * Horizontal Tab (HT) (Ctrl-I).\n   */\n  public tab(): void {\n    this._terminal.buffer.x = this._terminal.nextStop();\n  }\n\n  /**\n   * SO\n   * Shift Out (Ctrl-N) -> Switch to Alternate Character Set.  This invokes the\n   * G1 character set.\n   */\n  public shiftOut(): void {\n    this._terminal.setgLevel(1);\n  }\n\n  /**\n   * SI\n   * Shift In (Ctrl-O) -> Switch to Standard Character Set.  This invokes the G0\n   * character set (the default).\n   */\n  public shiftIn(): void {\n    this._terminal.setgLevel(0);\n  }\n\n  /**\n   * CSI Ps @\n   * Insert Ps (Blank) Character(s) (default = 1) (ICH).\n   */\n  public insertChars(params: number[]): void {\n    let param, row, j, ch;\n\n    param = params[0];\n    if (param < 1) param = 1;\n\n    row = this._terminal.buffer.y + this._terminal.buffer.ybase;\n    j = this._terminal.buffer.x;\n    ch = [this._terminal.eraseAttr(), ' ', 1]; // xterm\n\n    while (param-- && j < this._terminal.cols) {\n      this._terminal.buffer.lines.get(row).splice(j++, 0, ch);\n      this._terminal.buffer.lines.get(row).pop();\n    }\n  }\n\n  /**\n   * CSI Ps A\n   * Cursor Up Ps Times (default = 1) (CUU).\n   */\n  public cursorUp(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.y -= param;\n    if (this._terminal.buffer.y < 0) {\n      this._terminal.buffer.y = 0;\n    }\n  }\n\n  /**\n   * CSI Ps B\n   * Cursor Down Ps Times (default = 1) (CUD).\n   */\n  public cursorDown(params: number[]) {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.y += param;\n    if (this._terminal.buffer.y >= this._terminal.rows) {\n      this._terminal.buffer.y = this._terminal.rows - 1;\n    }\n    // If the end of the line is hit, prevent this action from wrapping around to the next line.\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x--;\n    }\n  }\n\n  /**\n   * CSI Ps C\n   * Cursor Forward Ps Times (default = 1) (CUF).\n   */\n  public cursorForward(params: number[]) {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.x += param;\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x = this._terminal.cols - 1;\n    }\n  }\n\n  /**\n   * CSI Ps D\n   * Cursor Backward Ps Times (default = 1) (CUB).\n   */\n  public cursorBackward(params: number[]) {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    // If the end of the line is hit, prevent this action from wrapping around to the next line.\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x--;\n    }\n    this._terminal.buffer.x -= param;\n    if (this._terminal.buffer.x < 0) {\n      this._terminal.buffer.x = 0;\n    }\n  }\n\n  /**\n   * CSI Ps E\n   * Cursor Next Line Ps Times (default = 1) (CNL).\n   * same as CSI Ps B ?\n   */\n  public cursorNextLine(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.y += param;\n    if (this._terminal.buffer.y >= this._terminal.rows) {\n      this._terminal.buffer.y = this._terminal.rows - 1;\n    }\n    this._terminal.buffer.x = 0;\n  }\n\n\n  /**\n   * CSI Ps F\n   * Cursor Preceding Line Ps Times (default = 1) (CNL).\n   * reuse CSI Ps A ?\n   */\n  public cursorPrecedingLine(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.y -= param;\n    if (this._terminal.buffer.y < 0) {\n      this._terminal.buffer.y = 0;\n    }\n    this._terminal.buffer.x = 0;\n  }\n\n\n  /**\n   * CSI Ps G\n   * Cursor Character Absolute  [column] (default = [row,1]) (CHA).\n   */\n  public cursorCharAbsolute(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.x = param - 1;\n  }\n\n  /**\n   * CSI Ps ; Ps H\n   * Cursor Position [row;column] (default = [1,1]) (CUP).\n   */\n  public cursorPosition(params: number[]): void {\n    let row, col;\n\n    row = params[0] - 1;\n\n    if (params.length >= 2) {\n      col = params[1] - 1;\n    } else {\n      col = 0;\n    }\n\n    if (row < 0) {\n      row = 0;\n    } else if (row >= this._terminal.rows) {\n      row = this._terminal.rows - 1;\n    }\n\n    if (col < 0) {\n      col = 0;\n    } else if (col >= this._terminal.cols) {\n      col = this._terminal.cols - 1;\n    }\n\n    this._terminal.buffer.x = col;\n    this._terminal.buffer.y = row;\n  }\n\n  /**\n   * CSI Ps I\n   *   Cursor Forward Tabulation Ps tab stops (default = 1) (CHT).\n   */\n  public cursorForwardTab(params: number[]): void {\n    let param = params[0] || 1;\n    while (param--) {\n      this._terminal.buffer.x = this._terminal.nextStop();\n    }\n  }\n\n  /**\n   * CSI Ps J  Erase in Display (ED).\n   *     Ps = 0  -> Erase Below (default).\n   *     Ps = 1  -> Erase Above.\n   *     Ps = 2  -> Erase All.\n   *     Ps = 3  -> Erase Saved Lines (xterm).\n   * CSI ? Ps J\n   *   Erase in Display (DECSED).\n   *     Ps = 0  -> Selective Erase Below (default).\n   *     Ps = 1  -> Selective Erase Above.\n   *     Ps = 2  -> Selective Erase All.\n   */\n  public eraseInDisplay(params: number[]): void {\n    let j;\n    switch (params[0]) {\n      case 0:\n        this._terminal.eraseRight(this._terminal.buffer.x, this._terminal.buffer.y);\n        j = this._terminal.buffer.y + 1;\n        for (; j < this._terminal.rows; j++) {\n          this._terminal.eraseLine(j);\n        }\n        break;\n      case 1:\n        this._terminal.eraseLeft(this._terminal.buffer.x, this._terminal.buffer.y);\n        j = this._terminal.buffer.y;\n        while (j--) {\n          this._terminal.eraseLine(j);\n        }\n        break;\n      case 2:\n        j = this._terminal.rows;\n        while (j--) this._terminal.eraseLine(j);\n        break;\n      case 3:\n        // Clear scrollback (everything not in viewport)\n        const scrollBackSize = this._terminal.buffer.lines.length - this._terminal.rows;\n        if (scrollBackSize > 0) {\n          this._terminal.buffer.lines.trimStart(scrollBackSize);\n          this._terminal.buffer.ybase = Math.max(this._terminal.buffer.ybase - scrollBackSize, 0);\n          this._terminal.buffer.ydisp = Math.max(this._terminal.buffer.ydisp - scrollBackSize, 0);\n          // Force a scroll event to refresh viewport\n          this._terminal.emit('scroll', 0);\n        }\n        break;\n    }\n  }\n\n  /**\n   * CSI Ps K  Erase in Line (EL).\n   *     Ps = 0  -> Erase to Right (default).\n   *     Ps = 1  -> Erase to Left.\n   *     Ps = 2  -> Erase All.\n   * CSI ? Ps K\n   *   Erase in Line (DECSEL).\n   *     Ps = 0  -> Selective Erase to Right (default).\n   *     Ps = 1  -> Selective Erase to Left.\n   *     Ps = 2  -> Selective Erase All.\n   */\n  public eraseInLine(params: number[]): void {\n    switch (params[0]) {\n      case 0:\n        this._terminal.eraseRight(this._terminal.buffer.x, this._terminal.buffer.y);\n        break;\n      case 1:\n        this._terminal.eraseLeft(this._terminal.buffer.x, this._terminal.buffer.y);\n        break;\n      case 2:\n        this._terminal.eraseLine(this._terminal.buffer.y);\n        break;\n    }\n  }\n\n  /**\n   * CSI Ps L\n   * Insert Ps Line(s) (default = 1) (IL).\n   */\n  public insertLines(params: number[]): void {\n    let param, row, j;\n\n    param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    row = this._terminal.buffer.y + this._terminal.buffer.ybase;\n\n    j = this._terminal.rows - 1 - this._terminal.buffer.scrollBottom;\n    j = this._terminal.rows - 1 + this._terminal.buffer.ybase - j + 1;\n\n    while (param--) {\n      if (this._terminal.buffer.lines.length === this._terminal.buffer.lines.maxLength) {\n        // Trim the start of lines to make room for the new line\n        this._terminal.buffer.lines.trimStart(1);\n        this._terminal.buffer.ybase--;\n        this._terminal.buffer.ydisp--;\n        row--;\n        j--;\n      }\n      // test: echo -e '\\e[44m\\e[1L\\e[0m'\n      // blankLine(true) - xterm/linux behavior\n      this._terminal.buffer.lines.splice(row, 0, this._terminal.blankLine(true));\n      this._terminal.buffer.lines.splice(j, 1);\n    }\n\n    // this.maxRange();\n    this._terminal.updateRange(this._terminal.buffer.y);\n    this._terminal.updateRange(this._terminal.buffer.scrollBottom);\n  }\n\n  /**\n   * CSI Ps M\n   * Delete Ps Line(s) (default = 1) (DL).\n   */\n  public deleteLines(params: number[]): void {\n    let param, row, j;\n\n    param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    row = this._terminal.buffer.y + this._terminal.buffer.ybase;\n\n    j = this._terminal.rows - 1 - this._terminal.buffer.scrollBottom;\n    j = this._terminal.rows - 1 + this._terminal.buffer.ybase - j;\n\n    while (param--) {\n      if (this._terminal.buffer.lines.length === this._terminal.buffer.lines.maxLength) {\n        // Trim the start of lines to make room for the new line\n        this._terminal.buffer.lines.trimStart(1);\n        this._terminal.buffer.ybase -= 1;\n        this._terminal.buffer.ydisp -= 1;\n      }\n      // test: echo -e '\\e[44m\\e[1M\\e[0m'\n      // blankLine(true) - xterm/linux behavior\n      this._terminal.buffer.lines.splice(j + 1, 0, this._terminal.blankLine(true));\n      this._terminal.buffer.lines.splice(row, 1);\n    }\n\n    // this.maxRange();\n    this._terminal.updateRange(this._terminal.buffer.y);\n    this._terminal.updateRange(this._terminal.buffer.scrollBottom);\n  }\n\n  /**\n   * CSI Ps P\n   * Delete Ps Character(s) (default = 1) (DCH).\n   */\n  public deleteChars(params: number[]): void {\n    let param, row, ch;\n\n    param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n\n    row = this._terminal.buffer.y + this._terminal.buffer.ybase;\n    ch = [this._terminal.eraseAttr(), ' ', 1]; // xterm\n\n    while (param--) {\n      this._terminal.buffer.lines.get(row).splice(this._terminal.buffer.x, 1);\n      this._terminal.buffer.lines.get(row).push(ch);\n    }\n  }\n\n  /**\n   * CSI Ps S  Scroll up Ps lines (default = 1) (SU).\n   */\n  public scrollUp(params: number[]): void {\n    let param = params[0] || 1;\n    while (param--) {\n      this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollTop, 1);\n      this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollBottom, 0, this._terminal.blankLine());\n    }\n    // this.maxRange();\n    this._terminal.updateRange(this._terminal.buffer.scrollTop);\n    this._terminal.updateRange(this._terminal.buffer.scrollBottom);\n  }\n\n  /**\n   * CSI Ps T  Scroll down Ps lines (default = 1) (SD).\n   */\n  public scrollDown(params: number[]): void {\n    let param = params[0] || 1;\n    while (param--) {\n      this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollBottom, 1);\n      this._terminal.buffer.lines.splice(this._terminal.buffer.ybase + this._terminal.buffer.scrollTop, 0, this._terminal.blankLine());\n    }\n    // this.maxRange();\n    this._terminal.updateRange(this._terminal.buffer.scrollTop);\n    this._terminal.updateRange(this._terminal.buffer.scrollBottom);\n  }\n\n  /**\n   * CSI Ps X\n   * Erase Ps Character(s) (default = 1) (ECH).\n   */\n  public eraseChars(params: number[]): void {\n    let param, row, j, ch;\n\n    param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n\n    row = this._terminal.buffer.y + this._terminal.buffer.ybase;\n    j = this._terminal.buffer.x;\n    ch = [this._terminal.eraseAttr(), ' ', 1]; // xterm\n\n    while (param-- && j < this._terminal.cols) {\n      this._terminal.buffer.lines.get(row)[j++] = ch;\n    }\n  }\n\n  /**\n   * CSI Ps Z  Cursor Backward Tabulation Ps tab stops (default = 1) (CBT).\n   */\n  public cursorBackwardTab(params: number[]): void {\n    let param = params[0] || 1;\n    while (param--) {\n      this._terminal.buffer.x = this._terminal.prevStop();\n    }\n  }\n\n  /**\n   * CSI Pm `  Character Position Absolute\n   *   [column] (default = [row,1]) (HPA).\n   */\n  public charPosAbsolute(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.x = param - 1;\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x = this._terminal.cols - 1;\n    }\n  }\n\n  /**\n   * CSI Pm a  Character Position Relative\n   *   [columns] (default = [row,col+1]) (HPR)\n   * reuse CSI Ps C ?\n   */\n  public HPositionRelative(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.x += param;\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x = this._terminal.cols - 1;\n    }\n  }\n\n  /**\n   * CSI Ps b  Repeat the preceding graphic character Ps times (REP).\n   */\n  public repeatPrecedingCharacter(params: number[]): void {\n    let param = params[0] || 1\n      , line = this._terminal.buffer.lines.get(this._terminal.buffer.ybase + this._terminal.buffer.y)\n      , ch = line[this._terminal.buffer.x - 1] || [this._terminal.defAttr, ' ', 1];\n\n    while (param--) {\n      line[this._terminal.buffer.x++] = ch;\n    }\n  }\n\n  /**\n   * CSI Ps c  Send Device Attributes (Primary DA).\n   *     Ps = 0  or omitted -> request attributes from terminal.  The\n   *     response depends on the decTerminalID resource setting.\n   *     -> CSI ? 1 ; 2 c  (``VT100 with Advanced Video Option'')\n   *     -> CSI ? 1 ; 0 c  (``VT101 with No Options'')\n   *     -> CSI ? 6 c  (``VT102'')\n   *     -> CSI ? 6 0 ; 1 ; 2 ; 6 ; 8 ; 9 ; 1 5 ; c  (``VT220'')\n   *   The VT100-style response parameters do not mean anything by\n   *   themselves.  VT220 parameters do, telling the host what fea-\n   *   tures the terminal supports:\n   *     Ps = 1  -> 132-columns.\n   *     Ps = 2  -> Printer.\n   *     Ps = 6  -> Selective erase.\n   *     Ps = 8  -> User-defined keys.\n   *     Ps = 9  -> National replacement character sets.\n   *     Ps = 1 5  -> Technical characters.\n   *     Ps = 2 2  -> ANSI color, e.g., VT525.\n   *     Ps = 2 9  -> ANSI text locator (i.e., DEC Locator mode).\n   * CSI > Ps c\n   *   Send Device Attributes (Secondary DA).\n   *     Ps = 0  or omitted -> request the terminal's identification\n   *     code.  The response depends on the decTerminalID resource set-\n   *     ting.  It should apply only to VT220 and up, but xterm extends\n   *     this to VT100.\n   *     -> CSI  > Pp ; Pv ; Pc c\n   *   where Pp denotes the terminal type\n   *     Pp = 0  -> ``VT100''.\n   *     Pp = 1  -> ``VT220''.\n   *   and Pv is the firmware version (for xterm, this was originally\n   *   the XFree86 patch number, starting with 95).  In a DEC termi-\n   *   nal, Pc indicates the ROM cartridge registration number and is\n   *   always zero.\n   * More information:\n   *   xterm/charproc.c - line 2012, for more information.\n   *   vim responds with ^[[?0c or ^[[?1c after the terminal's response (?)\n   */\n  public sendDeviceAttributes(params: number[]): void {\n    if (params[0] > 0) {\n      return;\n    }\n\n    if (!this._terminal.prefix) {\n      if (this._terminal.is('xterm') || this._terminal.is('rxvt-unicode') || this._terminal.is('screen')) {\n        this._terminal.send(C0.ESC + '[?1;2c');\n      } else if (this._terminal.is('linux')) {\n        this._terminal.send(C0.ESC + '[?6c');\n      }\n    } else if (this._terminal.prefix === '>') {\n      // xterm and urxvt\n      // seem to spit this\n      // out around ~370 times (?).\n      if (this._terminal.is('xterm')) {\n        this._terminal.send(C0.ESC + '[>0;276;0c');\n      } else if (this._terminal.is('rxvt-unicode')) {\n        this._terminal.send(C0.ESC + '[>85;95;0c');\n      } else if (this._terminal.is('linux')) {\n        // not supported by linux console.\n        // linux console echoes parameters.\n        this._terminal.send(params[0] + 'c');\n      } else if (this._terminal.is('screen')) {\n        this._terminal.send(C0.ESC + '[>83;40003;0c');\n      }\n    }\n  }\n\n  /**\n   * CSI Pm d  Vertical Position Absolute (VPA)\n   *   [row] (default = [1,column])\n   */\n  public linePosAbsolute(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.y = param - 1;\n    if (this._terminal.buffer.y >= this._terminal.rows) {\n      this._terminal.buffer.y = this._terminal.rows - 1;\n    }\n  }\n\n  /**\n   * CSI Pm e  Vertical Position Relative (VPR)\n   *   [rows] (default = [row+1,column])\n   * reuse CSI Ps B ?\n   */\n  public VPositionRelative(params: number[]): void {\n    let param = params[0];\n    if (param < 1) {\n      param = 1;\n    }\n    this._terminal.buffer.y += param;\n    if (this._terminal.buffer.y >= this._terminal.rows) {\n      this._terminal.buffer.y = this._terminal.rows - 1;\n    }\n    // If the end of the line is hit, prevent this action from wrapping around to the next line.\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x--;\n    }\n  }\n\n  /**\n   * CSI Ps ; Ps f\n   *   Horizontal and Vertical Position [row;column] (default =\n   *   [1,1]) (HVP).\n   */\n  public HVPosition(params: number[]): void {\n    if (params[0] < 1) params[0] = 1;\n    if (params[1] < 1) params[1] = 1;\n\n    this._terminal.buffer.y = params[0] - 1;\n    if (this._terminal.buffer.y >= this._terminal.rows) {\n      this._terminal.buffer.y = this._terminal.rows - 1;\n    }\n\n    this._terminal.buffer.x = params[1] - 1;\n    if (this._terminal.buffer.x >= this._terminal.cols) {\n      this._terminal.buffer.x = this._terminal.cols - 1;\n    }\n  }\n\n  /**\n   * CSI Ps g  Tab Clear (TBC).\n   *     Ps = 0  -> Clear Current Column (default).\n   *     Ps = 3  -> Clear All.\n   * Potentially:\n   *   Ps = 2  -> Clear Stops on Line.\n   *   http://vt100.net/annarbor/aaa-ug/section6.html\n   */\n  public tabClear(params: number[]): void {\n    let param = params[0];\n    if (param <= 0) {\n      delete this._terminal.buffer.tabs[this._terminal.buffer.x];\n    } else if (param === 3) {\n      this._terminal.buffer.tabs = {};\n    }\n  }\n\n  /**\n   * CSI Pm h  Set Mode (SM).\n   *     Ps = 2  -> Keyboard Action Mode (AM).\n   *     Ps = 4  -> Insert Mode (IRM).\n   *     Ps = 1 2  -> Send/receive (SRM).\n   *     Ps = 2 0  -> Automatic Newline (LNM).\n   * CSI ? Pm h\n   *   DEC Private Mode Set (DECSET).\n   *     Ps = 1  -> Application Cursor Keys (DECCKM).\n   *     Ps = 2  -> Designate USASCII for character sets G0-G3\n   *     (DECANM), and set VT100 mode.\n   *     Ps = 3  -> 132 Column Mode (DECCOLM).\n   *     Ps = 4  -> Smooth (Slow) Scroll (DECSCLM).\n   *     Ps = 5  -> Reverse Video (DECSCNM).\n   *     Ps = 6  -> Origin Mode (DECOM).\n   *     Ps = 7  -> Wraparound Mode (DECAWM).\n   *     Ps = 8  -> Auto-repeat Keys (DECARM).\n   *     Ps = 9  -> Send Mouse X & Y on button press.  See the sec-\n   *     tion Mouse Tracking.\n   *     Ps = 1 0  -> Show toolbar (rxvt).\n   *     Ps = 1 2  -> Start Blinking Cursor (att610).\n   *     Ps = 1 8  -> Print form feed (DECPFF).\n   *     Ps = 1 9  -> Set print extent to full screen (DECPEX).\n   *     Ps = 2 5  -> Show Cursor (DECTCEM).\n   *     Ps = 3 0  -> Show scrollbar (rxvt).\n   *     Ps = 3 5  -> Enable font-shifting functions (rxvt).\n   *     Ps = 3 8  -> Enter Tektronix Mode (DECTEK).\n   *     Ps = 4 0  -> Allow 80 -> 132 Mode.\n   *     Ps = 4 1  -> more(1) fix (see curses resource).\n   *     Ps = 4 2  -> Enable Nation Replacement Character sets (DECN-\n   *     RCM).\n   *     Ps = 4 4  -> Turn On Margin Bell.\n   *     Ps = 4 5  -> Reverse-wraparound Mode.\n   *     Ps = 4 6  -> Start Logging.  This is normally disabled by a\n   *     compile-time option.\n   *     Ps = 4 7  -> Use Alternate Screen Buffer.  (This may be dis-\n   *     abled by the titeInhibit resource).\n   *     Ps = 6 6  -> Application keypad (DECNKM).\n   *     Ps = 6 7  -> Backarrow key sends backspace (DECBKM).\n   *     Ps = 1 0 0 0  -> Send Mouse X & Y on button press and\n   *     release.  See the section Mouse Tracking.\n   *     Ps = 1 0 0 1  -> Use Hilite Mouse Tracking.\n   *     Ps = 1 0 0 2  -> Use Cell Motion Mouse Tracking.\n   *     Ps = 1 0 0 3  -> Use All Motion Mouse Tracking.\n   *     Ps = 1 0 0 4  -> Send FocusIn/FocusOut events.\n   *     Ps = 1 0 0 5  -> Enable Extended Mouse Mode.\n   *     Ps = 1 0 1 0  -> Scroll to bottom on tty output (rxvt).\n   *     Ps = 1 0 1 1  -> Scroll to bottom on key press (rxvt).\n   *     Ps = 1 0 3 4  -> Interpret \"meta\" key, sets eighth bit.\n   *     (enables the eightBitInput resource).\n   *     Ps = 1 0 3 5  -> Enable special modifiers for Alt and Num-\n   *     Lock keys.  (This enables the numLock resource).\n   *     Ps = 1 0 3 6  -> Send ESC   when Meta modifies a key.  (This\n   *     enables the metaSendsEscape resource).\n   *     Ps = 1 0 3 7  -> Send DEL from the editing-keypad Delete\n   *     key.\n   *     Ps = 1 0 3 9  -> Send ESC  when Alt modifies a key.  (This\n   *     enables the altSendsEscape resource).\n   *     Ps = 1 0 4 0  -> Keep selection even if not highlighted.\n   *     (This enables the keepSelection resource).\n   *     Ps = 1 0 4 1  -> Use the CLIPBOARD selection.  (This enables\n   *     the selectToClipboard resource).\n   *     Ps = 1 0 4 2  -> Enable Urgency window manager hint when\n   *     Control-G is received.  (This enables the bellIsUrgent\n   *     resource).\n   *     Ps = 1 0 4 3  -> Enable raising of the window when Control-G\n   *     is received.  (enables the popOnBell resource).\n   *     Ps = 1 0 4 7  -> Use Alternate Screen Buffer.  (This may be\n   *     disabled by the titeInhibit resource).\n   *     Ps = 1 0 4 8  -> Save cursor as in DECSC.  (This may be dis-\n   *     abled by the titeInhibit resource).\n   *     Ps = 1 0 4 9  -> Save cursor as in DECSC and use Alternate\n   *     Screen Buffer, clearing it first.  (This may be disabled by\n   *     the titeInhibit resource).  This combines the effects of the 1\n   *     0 4 7  and 1 0 4 8  modes.  Use this with terminfo-based\n   *     applications rather than the 4 7  mode.\n   *     Ps = 1 0 5 0  -> Set terminfo/termcap function-key mode.\n   *     Ps = 1 0 5 1  -> Set Sun function-key mode.\n   *     Ps = 1 0 5 2  -> Set HP function-key mode.\n   *     Ps = 1 0 5 3  -> Set SCO function-key mode.\n   *     Ps = 1 0 6 0  -> Set legacy keyboard emulation (X11R6).\n   *     Ps = 1 0 6 1  -> Set VT220 keyboard emulation.\n   *     Ps = 2 0 0 4  -> Set bracketed paste mode.\n   * Modes:\n   *   http: *vt100.net/docs/vt220-rm/chapter4.html\n   */\n  public setMode(params: number[]): void {\n    if (params.length > 1) {\n      for (let i = 0; i < params.length; i++) {\n        this.setMode([params[i]]);\n      }\n\n      return;\n    }\n\n    if (!this._terminal.prefix) {\n      switch (params[0]) {\n        case 4:\n          this._terminal.insertMode = true;\n          break;\n        case 20:\n          // this._terminal.convertEol = true;\n          break;\n      }\n    } else if (this._terminal.prefix === '?') {\n      switch (params[0]) {\n        case 1:\n          this._terminal.applicationCursor = true;\n          break;\n        case 2:\n          this._terminal.setgCharset(0, DEFAULT_CHARSET);\n          this._terminal.setgCharset(1, DEFAULT_CHARSET);\n          this._terminal.setgCharset(2, DEFAULT_CHARSET);\n          this._terminal.setgCharset(3, DEFAULT_CHARSET);\n          // set VT100 mode here\n          break;\n        case 3: // 132 col mode\n          this._terminal.savedCols = this._terminal.cols;\n          this._terminal.resize(132, this._terminal.rows);\n          break;\n        case 6:\n          this._terminal.originMode = true;\n          break;\n        case 7:\n          this._terminal.wraparoundMode = true;\n          break;\n        case 12:\n          // this.cursorBlink = true;\n          break;\n        case 66:\n          this._terminal.log('Serial port requested application keypad.');\n          this._terminal.applicationKeypad = true;\n          this._terminal.viewport.syncScrollArea();\n          break;\n        case 9: // X10 Mouse\n          // no release, no motion, no wheel, no modifiers.\n        case 1000: // vt200 mouse\n          // no motion.\n          // no modifiers, except control on the wheel.\n        case 1002: // button event mouse\n        case 1003: // any event mouse\n          // any event - sends motion events,\n          // even if there is no button held down.\n\n          // TODO: Why are params[0] compares nested within a switch for params[0]?\n\n          this._terminal.x10Mouse = params[0] === 9;\n          this._terminal.vt200Mouse = params[0] === 1000;\n          this._terminal.normalMouse = params[0] > 1000;\n          this._terminal.mouseEvents = true;\n          this._terminal.element.classList.add('enable-mouse-events');\n          this._terminal.selectionManager.disable();\n          this._terminal.log('Binding to mouse events.');\n          break;\n        case 1004: // send focusin/focusout events\n          // focusin: ^[[I\n          // focusout: ^[[O\n          this._terminal.sendFocus = true;\n          break;\n        case 1005: // utf8 ext mode mouse\n          this._terminal.utfMouse = true;\n          // for wide terminals\n          // simply encodes large values as utf8 characters\n          break;\n        case 1006: // sgr ext mode mouse\n          this._terminal.sgrMouse = true;\n          // for wide terminals\n          // does not add 32 to fields\n          // press: ^[[<b;x;yM\n          // release: ^[[<b;x;ym\n          break;\n        case 1015: // urxvt ext mode mouse\n          this._terminal.urxvtMouse = true;\n          // for wide terminals\n          // numbers for fields\n          // press: ^[[b;x;yM\n          // motion: ^[[b;x;yT\n          break;\n        case 25: // show cursor\n          this._terminal.cursorHidden = false;\n          break;\n        case 1049: // alt screen buffer cursor\n          // TODO: Not sure if we need to save/restore after switching the buffer\n          // this.saveCursor(params);\n          // FALL-THROUGH\n        case 47: // alt screen buffer\n        case 1047: // alt screen buffer\n          this._terminal.buffers.activateAltBuffer();\n          this._terminal.viewport.syncScrollArea();\n          this._terminal.showCursor();\n          break;\n      }\n    }\n  }\n\n  /**\n   * CSI Pm l  Reset Mode (RM).\n   *     Ps = 2  -> Keyboard Action Mode (AM).\n   *     Ps = 4  -> Replace Mode (IRM).\n   *     Ps = 1 2  -> Send/receive (SRM).\n   *     Ps = 2 0  -> Normal Linefeed (LNM).\n   * CSI ? Pm l\n   *   DEC Private Mode Reset (DECRST).\n   *     Ps = 1  -> Normal Cursor Keys (DECCKM).\n   *     Ps = 2  -> Designate VT52 mode (DECANM).\n   *     Ps = 3  -> 80 Column Mode (DECCOLM).\n   *     Ps = 4  -> Jump (Fast) Scroll (DECSCLM).\n   *     Ps = 5  -> Normal Video (DECSCNM).\n   *     Ps = 6  -> Normal Cursor Mode (DECOM).\n   *     Ps = 7  -> No Wraparound Mode (DECAWM).\n   *     Ps = 8  -> No Auto-repeat Keys (DECARM).\n   *     Ps = 9  -> Don't send Mouse X & Y on button press.\n   *     Ps = 1 0  -> Hide toolbar (rxvt).\n   *     Ps = 1 2  -> Stop Blinking Cursor (att610).\n   *     Ps = 1 8  -> Don't print form feed (DECPFF).\n   *     Ps = 1 9  -> Limit print to scrolling region (DECPEX).\n   *     Ps = 2 5  -> Hide Cursor (DECTCEM).\n   *     Ps = 3 0  -> Don't show scrollbar (rxvt).\n   *     Ps = 3 5  -> Disable font-shifting functions (rxvt).\n   *     Ps = 4 0  -> Disallow 80 -> 132 Mode.\n   *     Ps = 4 1  -> No more(1) fix (see curses resource).\n   *     Ps = 4 2  -> Disable Nation Replacement Character sets (DEC-\n   *     NRCM).\n   *     Ps = 4 4  -> Turn Off Margin Bell.\n   *     Ps = 4 5  -> No Reverse-wraparound Mode.\n   *     Ps = 4 6  -> Stop Logging.  (This is normally disabled by a\n   *     compile-time option).\n   *     Ps = 4 7  -> Use Normal Screen Buffer.\n   *     Ps = 6 6  -> Numeric keypad (DECNKM).\n   *     Ps = 6 7  -> Backarrow key sends delete (DECBKM).\n   *     Ps = 1 0 0 0  -> Don't send Mouse X & Y on button press and\n   *     release.  See the section Mouse Tracking.\n   *     Ps = 1 0 0 1  -> Don't use Hilite Mouse Tracking.\n   *     Ps = 1 0 0 2  -> Don't use Cell Motion Mouse Tracking.\n   *     Ps = 1 0 0 3  -> Don't use All Motion Mouse Tracking.\n   *     Ps = 1 0 0 4  -> Don't send FocusIn/FocusOut events.\n   *     Ps = 1 0 0 5  -> Disable Extended Mouse Mode.\n   *     Ps = 1 0 1 0  -> Don't scroll to bottom on tty output\n   *     (rxvt).\n   *     Ps = 1 0 1 1  -> Don't scroll to bottom on key press (rxvt).\n   *     Ps = 1 0 3 4  -> Don't interpret \"meta\" key.  (This disables\n   *     the eightBitInput resource).\n   *     Ps = 1 0 3 5  -> Disable special modifiers for Alt and Num-\n   *     Lock keys.  (This disables the numLock resource).\n   *     Ps = 1 0 3 6  -> Don't send ESC  when Meta modifies a key.\n   *     (This disables the metaSendsEscape resource).\n   *     Ps = 1 0 3 7  -> Send VT220 Remove from the editing-keypad\n   *     Delete key.\n   *     Ps = 1 0 3 9  -> Don't send ESC  when Alt modifies a key.\n   *     (This disables the altSendsEscape resource).\n   *     Ps = 1 0 4 0  -> Do not keep selection when not highlighted.\n   *     (This disables the keepSelection resource).\n   *     Ps = 1 0 4 1  -> Use the PRIMARY selection.  (This disables\n   *     the selectToClipboard resource).\n   *     Ps = 1 0 4 2  -> Disable Urgency window manager hint when\n   *     Control-G is received.  (This disables the bellIsUrgent\n   *     resource).\n   *     Ps = 1 0 4 3  -> Disable raising of the window when Control-\n   *     G is received.  (This disables the popOnBell resource).\n   *     Ps = 1 0 4 7  -> Use Normal Screen Buffer, clearing screen\n   *     first if in the Alternate Screen.  (This may be disabled by\n   *     the titeInhibit resource).\n   *     Ps = 1 0 4 8  -> Restore cursor as in DECRC.  (This may be\n   *     disabled by the titeInhibit resource).\n   *     Ps = 1 0 4 9  -> Use Normal Screen Buffer and restore cursor\n   *     as in DECRC.  (This may be disabled by the titeInhibit\n   *     resource).  This combines the effects of the 1 0 4 7  and 1 0\n   *     4 8  modes.  Use this with terminfo-based applications rather\n   *     than the 4 7  mode.\n   *     Ps = 1 0 5 0  -> Reset terminfo/termcap function-key mode.\n   *     Ps = 1 0 5 1  -> Reset Sun function-key mode.\n   *     Ps = 1 0 5 2  -> Reset HP function-key mode.\n   *     Ps = 1 0 5 3  -> Reset SCO function-key mode.\n   *     Ps = 1 0 6 0  -> Reset legacy keyboard emulation (X11R6).\n   *     Ps = 1 0 6 1  -> Reset keyboard emulation to Sun/PC style.\n   *     Ps = 2 0 0 4  -> Reset bracketed paste mode.\n   */\n  public resetMode(params: number[]): void {\n    if (params.length > 1) {\n      for (let i = 0; i < params.length; i++) {\n        this.resetMode([params[i]]);\n      }\n\n      return;\n    }\n\n    if (!this._terminal.prefix) {\n      switch (params[0]) {\n        case 4:\n          this._terminal.insertMode = false;\n          break;\n        case 20:\n          // this._terminal.convertEol = false;\n          break;\n      }\n    } else if (this._terminal.prefix === '?') {\n      switch (params[0]) {\n        case 1:\n          this._terminal.applicationCursor = false;\n          break;\n        case 3:\n          if (this._terminal.cols === 132 && this._terminal.savedCols) {\n            this._terminal.resize(this._terminal.savedCols, this._terminal.rows);\n          }\n          delete this._terminal.savedCols;\n          break;\n        case 6:\n          this._terminal.originMode = false;\n          break;\n        case 7:\n          this._terminal.wraparoundMode = false;\n          break;\n        case 12:\n          // this.cursorBlink = false;\n          break;\n        case 66:\n          this._terminal.log('Switching back to normal keypad.');\n          this._terminal.applicationKeypad = false;\n          this._terminal.viewport.syncScrollArea();\n          break;\n        case 9: // X10 Mouse\n        case 1000: // vt200 mouse\n        case 1002: // button event mouse\n        case 1003: // any event mouse\n          this._terminal.x10Mouse = false;\n          this._terminal.vt200Mouse = false;\n          this._terminal.normalMouse = false;\n          this._terminal.mouseEvents = false;\n          this._terminal.element.classList.remove('enable-mouse-events');\n          this._terminal.selectionManager.enable();\n          break;\n        case 1004: // send focusin/focusout events\n          this._terminal.sendFocus = false;\n          break;\n        case 1005: // utf8 ext mode mouse\n          this._terminal.utfMouse = false;\n          break;\n        case 1006: // sgr ext mode mouse\n          this._terminal.sgrMouse = false;\n          break;\n        case 1015: // urxvt ext mode mouse\n          this._terminal.urxvtMouse = false;\n          break;\n        case 25: // hide cursor\n          this._terminal.cursorHidden = true;\n          break;\n        case 1049: // alt screen buffer cursor\n           // FALL-THROUGH\n        case 47: // normal screen buffer\n        case 1047: // normal screen buffer - clearing it first\n          // Ensure the selection manager has the correct buffer\n          this._terminal.buffers.activateNormalBuffer();\n          // TODO: Not sure if we need to save/restore after switching the buffer\n          // if (params[0] === 1049) {\n          //   this.restoreCursor(params);\n          // }\n          this._terminal.selectionManager.setBuffer(this._terminal.buffer.lines);\n          this._terminal.refresh(0, this._terminal.rows - 1);\n          this._terminal.viewport.syncScrollArea();\n          this._terminal.showCursor();\n          break;\n      }\n    }\n  }\n\n  /**\n   * CSI Pm m  Character Attributes (SGR).\n   *     Ps = 0  -> Normal (default).\n   *     Ps = 1  -> Bold.\n   *     Ps = 4  -> Underlined.\n   *     Ps = 5  -> Blink (appears as Bold).\n   *     Ps = 7  -> Inverse.\n   *     Ps = 8  -> Invisible, i.e., hidden (VT300).\n   *     Ps = 2 2  -> Normal (neither bold nor faint).\n   *     Ps = 2 4  -> Not underlined.\n   *     Ps = 2 5  -> Steady (not blinking).\n   *     Ps = 2 7  -> Positive (not inverse).\n   *     Ps = 2 8  -> Visible, i.e., not hidden (VT300).\n   *     Ps = 3 0  -> Set foreground color to Black.\n   *     Ps = 3 1  -> Set foreground color to Red.\n   *     Ps = 3 2  -> Set foreground color to Green.\n   *     Ps = 3 3  -> Set foreground color to Yellow.\n   *     Ps = 3 4  -> Set foreground color to Blue.\n   *     Ps = 3 5  -> Set foreground color to Magenta.\n   *     Ps = 3 6  -> Set foreground color to Cyan.\n   *     Ps = 3 7  -> Set foreground color to White.\n   *     Ps = 3 9  -> Set foreground color to default (original).\n   *     Ps = 4 0  -> Set background color to Black.\n   *     Ps = 4 1  -> Set background color to Red.\n   *     Ps = 4 2  -> Set background color to Green.\n   *     Ps = 4 3  -> Set background color to Yellow.\n   *     Ps = 4 4  -> Set background color to Blue.\n   *     Ps = 4 5  -> Set background color to Magenta.\n   *     Ps = 4 6  -> Set background color to Cyan.\n   *     Ps = 4 7  -> Set background color to White.\n   *     Ps = 4 9  -> Set background color to default (original).\n   *\n   *   If 16-color support is compiled, the following apply.  Assume\n   *   that xterm's resources are set so that the ISO color codes are\n   *   the first 8 of a set of 16.  Then the aixterm colors are the\n   *   bright versions of the ISO colors:\n   *     Ps = 9 0  -> Set foreground color to Black.\n   *     Ps = 9 1  -> Set foreground color to Red.\n   *     Ps = 9 2  -> Set foreground color to Green.\n   *     Ps = 9 3  -> Set foreground color to Yellow.\n   *     Ps = 9 4  -> Set foreground color to Blue.\n   *     Ps = 9 5  -> Set foreground color to Magenta.\n   *     Ps = 9 6  -> Set foreground color to Cyan.\n   *     Ps = 9 7  -> Set foreground color to White.\n   *     Ps = 1 0 0  -> Set background color to Black.\n   *     Ps = 1 0 1  -> Set background color to Red.\n   *     Ps = 1 0 2  -> Set background color to Green.\n   *     Ps = 1 0 3  -> Set background color to Yellow.\n   *     Ps = 1 0 4  -> Set background color to Blue.\n   *     Ps = 1 0 5  -> Set background color to Magenta.\n   *     Ps = 1 0 6  -> Set background color to Cyan.\n   *     Ps = 1 0 7  -> Set background color to White.\n   *\n   *   If xterm is compiled with the 16-color support disabled, it\n   *   supports the following, from rxvt:\n   *     Ps = 1 0 0  -> Set foreground and background color to\n   *     default.\n   *\n   *   If 88- or 256-color support is compiled, the following apply.\n   *     Ps = 3 8  ; 5  ; Ps -> Set foreground color to the second\n   *     Ps.\n   *     Ps = 4 8  ; 5  ; Ps -> Set background color to the second\n   *     Ps.\n   */\n  public charAttributes(params: number[]): void {\n    // Optimize a single SGR0.\n    if (params.length === 1 && params[0] === 0) {\n      this._terminal.curAttr = this._terminal.defAttr;\n      return;\n    }\n\n    let l = params.length\n    , i = 0\n    , flags = this._terminal.curAttr >> 18\n    , fg = (this._terminal.curAttr >> 9) & 0x1ff\n    , bg = this._terminal.curAttr & 0x1ff\n    , p;\n\n    for (; i < l; i++) {\n      p = params[i];\n      if (p >= 30 && p <= 37) {\n        // fg color 8\n        fg = p - 30;\n      } else if (p >= 40 && p <= 47) {\n        // bg color 8\n        bg = p - 40;\n      } else if (p >= 90 && p <= 97) {\n        // fg color 16\n        p += 8;\n        fg = p - 90;\n      } else if (p >= 100 && p <= 107) {\n        // bg color 16\n        p += 8;\n        bg = p - 100;\n      } else if (p === 0) {\n        // default\n        flags = this._terminal.defAttr >> 18;\n        fg = (this._terminal.defAttr >> 9) & 0x1ff;\n        bg = this._terminal.defAttr & 0x1ff;\n        // flags = 0;\n        // fg = 0x1ff;\n        // bg = 0x1ff;\n      } else if (p === 1) {\n        // bold text\n        flags |= 1;\n      } else if (p === 4) {\n        // underlined text\n        flags |= 2;\n      } else if (p === 5) {\n        // blink\n        flags |= 4;\n      } else if (p === 7) {\n        // inverse and positive\n        // test with: echo -e '\\e[31m\\e[42mhello\\e[7mworld\\e[27mhi\\e[m'\n        flags |= 8;\n      } else if (p === 8) {\n        // invisible\n        flags |= 16;\n      } else if (p === 22) {\n        // not bold\n        flags &= ~1;\n      } else if (p === 24) {\n        // not underlined\n        flags &= ~2;\n      } else if (p === 25) {\n        // not blink\n        flags &= ~4;\n      } else if (p === 27) {\n        // not inverse\n        flags &= ~8;\n      } else if (p === 28) {\n        // not invisible\n        flags &= ~16;\n      } else if (p === 39) {\n        // reset fg\n        fg = (this._terminal.defAttr >> 9) & 0x1ff;\n      } else if (p === 49) {\n        // reset bg\n        bg = this._terminal.defAttr & 0x1ff;\n      } else if (p === 38) {\n        // fg color 256\n        if (params[i + 1] === 2) {\n          i += 2;\n          fg = this._terminal.matchColor(\n            params[i] & 0xff,\n            params[i + 1] & 0xff,\n            params[i + 2] & 0xff);\n          if (fg === -1) fg = 0x1ff;\n          i += 2;\n        } else if (params[i + 1] === 5) {\n          i += 2;\n          p = params[i] & 0xff;\n          fg = p;\n        }\n      } else if (p === 48) {\n        // bg color 256\n        if (params[i + 1] === 2) {\n          i += 2;\n          bg = this._terminal.matchColor(\n            params[i] & 0xff,\n            params[i + 1] & 0xff,\n            params[i + 2] & 0xff);\n          if (bg === -1) bg = 0x1ff;\n          i += 2;\n        } else if (params[i + 1] === 5) {\n          i += 2;\n          p = params[i] & 0xff;\n          bg = p;\n        }\n      } else if (p === 100) {\n        // reset fg/bg\n        fg = (this._terminal.defAttr >> 9) & 0x1ff;\n        bg = this._terminal.defAttr & 0x1ff;\n      } else {\n        this._terminal.error('Unknown SGR attribute: %d.', p);\n      }\n    }\n\n    this._terminal.curAttr = (flags << 18) | (fg << 9) | bg;\n  }\n\n  /**\n   * CSI Ps n  Device Status Report (DSR).\n   *     Ps = 5  -> Status Report.  Result (``OK'') is\n   *   CSI 0 n\n   *     Ps = 6  -> Report Cursor Position (CPR) [row;column].\n   *   Result is\n   *   CSI r ; c R\n   * CSI ? Ps n\n   *   Device Status Report (DSR, DEC-specific).\n   *     Ps = 6  -> Report Cursor Position (CPR) [row;column] as CSI\n   *     ? r ; c R (assumes page is zero).\n   *     Ps = 1 5  -> Report Printer status as CSI ? 1 0  n  (ready).\n   *     or CSI ? 1 1  n  (not ready).\n   *     Ps = 2 5  -> Report UDK status as CSI ? 2 0  n  (unlocked)\n   *     or CSI ? 2 1  n  (locked).\n   *     Ps = 2 6  -> Report Keyboard status as\n   *   CSI ? 2 7  ;  1  ;  0  ;  0  n  (North American).\n   *   The last two parameters apply to VT400 & up, and denote key-\n   *   board ready and LK01 respectively.\n   *     Ps = 5 3  -> Report Locator status as\n   *   CSI ? 5 3  n  Locator available, if compiled-in, or\n   *   CSI ? 5 0  n  No Locator, if not.\n   */\n  public deviceStatus(params: number[]): void {\n    if (!this._terminal.prefix) {\n      switch (params[0]) {\n        case 5:\n          // status report\n          this._terminal.send(C0.ESC + '[0n');\n          break;\n        case 6:\n          // cursor position\n          this._terminal.send(C0.ESC + '['\n                    + (this._terminal.buffer.y + 1)\n                    + ';'\n                    + (this._terminal.buffer.x + 1)\n                    + 'R');\n          break;\n      }\n    } else if (this._terminal.prefix === '?') {\n      // modern xterm doesnt seem to\n      // respond to any of these except ?6, 6, and 5\n      switch (params[0]) {\n        case 6:\n          // cursor position\n          this._terminal.send(C0.ESC + '[?'\n                    + (this._terminal.buffer.y + 1)\n                    + ';'\n                    + (this._terminal.buffer.x + 1)\n                    + 'R');\n          break;\n        case 15:\n          // no printer\n          // this.send(C0.ESC + '[?11n');\n          break;\n        case 25:\n          // dont support user defined keys\n          // this.send(C0.ESC + '[?21n');\n          break;\n        case 26:\n          // north american keyboard\n          // this.send(C0.ESC + '[?27;1;0;0n');\n          break;\n        case 53:\n          // no dec locator/mouse\n          // this.send(C0.ESC + '[?50n');\n          break;\n      }\n    }\n  }\n\n  /**\n   * CSI ! p   Soft terminal reset (DECSTR).\n   * http://vt100.net/docs/vt220-rm/table4-10.html\n   */\n  public softReset(params: number[]): void {\n    this._terminal.cursorHidden = false;\n    this._terminal.insertMode = false;\n    this._terminal.originMode = false;\n    this._terminal.wraparoundMode = true;  // defaults: xterm - true, vt100 - false\n    this._terminal.applicationKeypad = false; // ?\n    this._terminal.viewport.syncScrollArea();\n    this._terminal.applicationCursor = false;\n    this._terminal.buffer.scrollTop = 0;\n    this._terminal.buffer.scrollBottom = this._terminal.rows - 1;\n    this._terminal.curAttr = this._terminal.defAttr;\n    this._terminal.buffer.x = this._terminal.buffer.y = 0; // ?\n    this._terminal.charset = null;\n    this._terminal.glevel = 0; // ??\n    this._terminal.charsets = [null]; // ??\n  }\n\n  /**\n   * CSI Ps SP q  Set cursor style (DECSCUSR, VT520).\n   *   Ps = 0  -> blinking block.\n   *   Ps = 1  -> blinking block (default).\n   *   Ps = 2  -> steady block.\n   *   Ps = 3  -> blinking underline.\n   *   Ps = 4  -> steady underline.\n   *   Ps = 5  -> blinking bar (xterm).\n   *   Ps = 6  -> steady bar (xterm).\n   */\n  public setCursorStyle(params?: number[]): void {\n    const param = params[0] < 1 ? 1 : params[0];\n    switch (param) {\n      case 1:\n      case 2:\n        this._terminal.setOption('cursorStyle', 'block');\n        break;\n      case 3:\n      case 4:\n        this._terminal.setOption('cursorStyle', 'underline');\n        break;\n      case 5:\n      case 6:\n        this._terminal.setOption('cursorStyle', 'bar');\n        break;\n    }\n    const isBlinking = param % 2 === 1;\n    this._terminal.setOption('cursorBlink', isBlinking);\n  }\n\n  /**\n   * CSI Ps ; Ps r\n   *   Set Scrolling Region [top;bottom] (default = full size of win-\n   *   dow) (DECSTBM).\n   * CSI ? Pm r\n   */\n  public setScrollRegion(params: number[]): void {\n    if (this._terminal.prefix) return;\n    this._terminal.buffer.scrollTop = (params[0] || 1) - 1;\n    this._terminal.buffer.scrollBottom = (params[1] && params[1] <= this._terminal.rows ? params[1] : this._terminal.rows) - 1;\n    this._terminal.buffer.x = 0;\n    this._terminal.buffer.y = 0;\n  }\n\n\n  /**\n   * CSI s\n   *   Save cursor (ANSI.SYS).\n   */\n  public saveCursor(params: number[]): void {\n    this._terminal.buffer.savedX = this._terminal.buffer.x;\n    this._terminal.buffer.savedY = this._terminal.buffer.y;\n  }\n\n\n  /**\n   * CSI u\n   *   Restore cursor (ANSI.SYS).\n   */\n  public restoreCursor(params: number[]): void {\n    this._terminal.buffer.x = this._terminal.buffer.savedX || 0;\n    this._terminal.buffer.y = this._terminal.buffer.savedY || 0;\n  }\n}\n\nexport const wcwidth = (function(opts) {\n    // extracted from https://www.cl.cam.ac.uk/%7Emgk25/ucs/wcwidth.c\n    // combining characters\n    const COMBINING_BMP = [\n      [0x0300, 0x036F], [0x0483, 0x0486], [0x0488, 0x0489],\n      [0x0591, 0x05BD], [0x05BF, 0x05BF], [0x05C1, 0x05C2],\n      [0x05C4, 0x05C5], [0x05C7, 0x05C7], [0x0600, 0x0603],\n      [0x0610, 0x0615], [0x064B, 0x065E], [0x0670, 0x0670],\n      [0x06D6, 0x06E4], [0x06E7, 0x06E8], [0x06EA, 0x06ED],\n      [0x070F, 0x070F], [0x0711, 0x0711], [0x0730, 0x074A],\n      [0x07A6, 0x07B0], [0x07EB, 0x07F3], [0x0901, 0x0902],\n      [0x093C, 0x093C], [0x0941, 0x0948], [0x094D, 0x094D],\n      [0x0951, 0x0954], [0x0962, 0x0963], [0x0981, 0x0981],\n      [0x09BC, 0x09BC], [0x09C1, 0x09C4], [0x09CD, 0x09CD],\n      [0x09E2, 0x09E3], [0x0A01, 0x0A02], [0x0A3C, 0x0A3C],\n      [0x0A41, 0x0A42], [0x0A47, 0x0A48], [0x0A4B, 0x0A4D],\n      [0x0A70, 0x0A71], [0x0A81, 0x0A82], [0x0ABC, 0x0ABC],\n      [0x0AC1, 0x0AC5], [0x0AC7, 0x0AC8], [0x0ACD, 0x0ACD],\n      [0x0AE2, 0x0AE3], [0x0B01, 0x0B01], [0x0B3C, 0x0B3C],\n      [0x0B3F, 0x0B3F], [0x0B41, 0x0B43], [0x0B4D, 0x0B4D],\n      [0x0B56, 0x0B56], [0x0B82, 0x0B82], [0x0BC0, 0x0BC0],\n      [0x0BCD, 0x0BCD], [0x0C3E, 0x0C40], [0x0C46, 0x0C48],\n      [0x0C4A, 0x0C4D], [0x0C55, 0x0C56], [0x0CBC, 0x0CBC],\n      [0x0CBF, 0x0CBF], [0x0CC6, 0x0CC6], [0x0CCC, 0x0CCD],\n      [0x0CE2, 0x0CE3], [0x0D41, 0x0D43], [0x0D4D, 0x0D4D],\n      [0x0DCA, 0x0DCA], [0x0DD2, 0x0DD4], [0x0DD6, 0x0DD6],\n      [0x0E31, 0x0E31], [0x0E34, 0x0E3A], [0x0E47, 0x0E4E],\n      [0x0EB1, 0x0EB1], [0x0EB4, 0x0EB9], [0x0EBB, 0x0EBC],\n      [0x0EC8, 0x0ECD], [0x0F18, 0x0F19], [0x0F35, 0x0F35],\n      [0x0F37, 0x0F37], [0x0F39, 0x0F39], [0x0F71, 0x0F7E],\n      [0x0F80, 0x0F84], [0x0F86, 0x0F87], [0x0F90, 0x0F97],\n      [0x0F99, 0x0FBC], [0x0FC6, 0x0FC6], [0x102D, 0x1030],\n      [0x1032, 0x1032], [0x1036, 0x1037], [0x1039, 0x1039],\n      [0x1058, 0x1059], [0x1160, 0x11FF], [0x135F, 0x135F],\n      [0x1712, 0x1714], [0x1732, 0x1734], [0x1752, 0x1753],\n      [0x1772, 0x1773], [0x17B4, 0x17B5], [0x17B7, 0x17BD],\n      [0x17C6, 0x17C6], [0x17C9, 0x17D3], [0x17DD, 0x17DD],\n      [0x180B, 0x180D], [0x18A9, 0x18A9], [0x1920, 0x1922],\n      [0x1927, 0x1928], [0x1932, 0x1932], [0x1939, 0x193B],\n      [0x1A17, 0x1A18], [0x1B00, 0x1B03], [0x1B34, 0x1B34],\n      [0x1B36, 0x1B3A], [0x1B3C, 0x1B3C], [0x1B42, 0x1B42],\n      [0x1B6B, 0x1B73], [0x1DC0, 0x1DCA], [0x1DFE, 0x1DFF],\n      [0x200B, 0x200F], [0x202A, 0x202E], [0x2060, 0x2063],\n      [0x206A, 0x206F], [0x20D0, 0x20EF], [0x302A, 0x302F],\n      [0x3099, 0x309A], [0xA806, 0xA806], [0xA80B, 0xA80B],\n      [0xA825, 0xA826], [0xFB1E, 0xFB1E], [0xFE00, 0xFE0F],\n      [0xFE20, 0xFE23], [0xFEFF, 0xFEFF], [0xFFF9, 0xFFFB],\n    ];\n    const COMBINING_HIGH = [\n      [0x10A01, 0x10A03], [0x10A05, 0x10A06], [0x10A0C, 0x10A0F],\n      [0x10A38, 0x10A3A], [0x10A3F, 0x10A3F], [0x1D167, 0x1D169],\n      [0x1D173, 0x1D182], [0x1D185, 0x1D18B], [0x1D1AA, 0x1D1AD],\n      [0x1D242, 0x1D244], [0xE0001, 0xE0001], [0xE0020, 0xE007F],\n      [0xE0100, 0xE01EF]\n    ];\n    // binary search\n    function bisearch(ucs, data) {\n      let min = 0;\n      let max = data.length - 1;\n      let mid;\n      if (ucs < data[0][0] || ucs > data[max][1])\n        return false;\n      while (max >= min) {\n        mid = (min + max) >> 1;\n        if (ucs > data[mid][1])\n          min = mid + 1;\n        else if (ucs < data[mid][0])\n          max = mid - 1;\n        else\n          return true;\n      }\n      return false;\n    }\n    function wcwidthBMP(ucs) {\n      // test for 8-bit control characters\n      if (ucs === 0)\n        return opts.nul;\n      if (ucs < 32 || (ucs >= 0x7f && ucs < 0xa0))\n        return opts.control;\n      // binary search in table of non-spacing characters\n      if (bisearch(ucs, COMBINING_BMP))\n        return 0;\n      // if we arrive here, ucs is not a combining or C0/C1 control character\n      if (isWideBMP(ucs)) {\n        return 2;\n      }\n      return 1;\n    }\n    function isWideBMP(ucs) {\n      return (\n        ucs >= 0x1100 && (\n        ucs <= 0x115f ||                // Hangul Jamo init. consonants\n        ucs === 0x2329 ||\n        ucs === 0x232a ||\n        (ucs >= 0x2e80 && ucs <= 0xa4cf && ucs !== 0x303f) ||  // CJK..Yi\n        (ucs >= 0xac00 && ucs <= 0xd7a3) ||    // Hangul Syllables\n        (ucs >= 0xf900 && ucs <= 0xfaff) ||    // CJK Compat Ideographs\n        (ucs >= 0xfe10 && ucs <= 0xfe19) ||    // Vertical forms\n        (ucs >= 0xfe30 && ucs <= 0xfe6f) ||    // CJK Compat Forms\n        (ucs >= 0xff00 && ucs <= 0xff60) ||    // Fullwidth Forms\n        (ucs >= 0xffe0 && ucs <= 0xffe6)));\n    }\n    function wcwidthHigh(ucs) {\n      if (bisearch(ucs, COMBINING_HIGH))\n        return 0;\n      if ((ucs >= 0x20000 && ucs <= 0x2fffd) || (ucs >= 0x30000 && ucs <= 0x3fffd)) {\n        return 2;\n      }\n      return 1;\n    }\n    const control = opts.control | 0;\n    let table = null;\n    function init_table() {\n      // lookup table for BMP\n      const CODEPOINTS = 65536;  // BMP holds 65536 codepoints\n      const BITWIDTH = 2;        // a codepoint can have a width of 0, 1 or 2\n      const ITEMSIZE = 32;       // using uint32_t\n      const CONTAINERSIZE = CODEPOINTS * BITWIDTH / ITEMSIZE;\n      const CODEPOINTS_PER_ITEM = ITEMSIZE / BITWIDTH;\n      table = (typeof Uint32Array === 'undefined')\n        ? new Array(CONTAINERSIZE)\n        : new Uint32Array(CONTAINERSIZE);\n      for (let i = 0; i < CONTAINERSIZE; ++i) {\n        let num = 0;\n        let pos = CODEPOINTS_PER_ITEM;\n        while (pos--)\n          num = (num << 2) | wcwidthBMP(CODEPOINTS_PER_ITEM * i + pos);\n        table[i] = num;\n      }\n    return table;\n    }\n    // get width from lookup table\n    //   position in container   : num / CODEPOINTS_PER_ITEM\n    //     ==> n = table[Math.floor(num / 16)]\n    //     ==> n = table[num >> 4]\n    //   16 codepoints per number:       FFEEDDCCBBAA99887766554433221100\n    //   position in number      : (num % CODEPOINTS_PER_ITEM) * BITWIDTH\n    //     ==> m = (n % 16) * 2\n    //     ==> m = (num & 15) << 1\n    //   right shift to position m\n    //     ==> n = n >> m     e.g. m=12  000000000000FFEEDDCCBBAA99887766\n    //   we are only interested in 2 LSBs, cut off higher bits\n    //     ==> n = n & 3      e.g.       000000000000000000000000000000XX\n    return function (num) {\n      num = num | 0;  // get asm.js like optimization under V8\n      if (num < 32)\n        return control | 0;\n      if (num < 127)\n        return 1;\n      let t = table || init_table();\n      if (num < 65536)\n        return t[num >> 4] >> ((num & 15) << 1) & 3;\n      // do a full search for high codepoints\n      return wcwidthHigh(num);\n    };\n})({nul: 0, control: 0});  // configurable options\n","/**\n * @license MIT\n */\n\nimport { IEventEmitter } from './Interfaces';\n\ninterface ListenerType {\n    (): void;\n    listener?: () => void;\n};\n\nexport class EventEmitter implements IEventEmitter {\n  private _events: {[type: string]: ListenerType[]};\n\n  constructor() {\n    // Restore the previous events if available, this will happen if the\n    // constructor is called multiple times on the same object (terminal reset).\n    this._events = this._events || {};\n  }\n\n  public on(type, listener): void {\n    this._events[type] = this._events[type] || [];\n    this._events[type].push(listener);\n  }\n\n  public off(type, listener): void {\n    if (!this._events[type]) {\n      return;\n    }\n\n    let obj = this._events[type];\n    let i = obj.length;\n\n    while (i--) {\n      if (obj[i] === listener || obj[i].listener === listener) {\n        obj.splice(i, 1);\n        return;\n      }\n    }\n  }\n\n  public removeAllListeners(type): void {\n    if (this._events[type]) {\n       delete this._events[type];\n    }\n  }\n\n  public once(type, listener): any {\n    function on() {\n      let args = Array.prototype.slice.call(arguments);\n      this.off(type, on);\n      return listener.apply(this, args);\n    }\n    (<any>on).listener = listener;\n    return this.on(type, on);\n  }\n\n  public emit(type: string, ...args: any[]): void {\n    if (!this._events[type]) {\n      return;\n    }\n    let obj = this._events[type];\n    for (let i = 0; i < obj.length; i++) {\n      obj[i].apply(this, args);\n    }\n  }\n\n  public listeners(type): ListenerType[] {\n    return this._events[type] || [];\n  }\n}\n","/**\n * @license MIT\n */\n\n/**\n * C0 control codes\n * See = https://en.wikipedia.org/wiki/C0_and_C1_control_codes\n */\nexport namespace C0 {\n  /** Null (Caret = ^@, C = \\0) */\n  export const NUL = '\\x00';\n  /** Start of Heading (Caret = ^A) */\n  export const SOH = '\\x01';\n  /** Start of Text (Caret = ^B) */\n  export const STX = '\\x02';\n  /** End of Text (Caret = ^C) */\n  export const ETX = '\\x03';\n  /** End of Transmission (Caret = ^D) */\n  export const EOT = '\\x04';\n  /** Enquiry (Caret = ^E) */\n  export const ENQ = '\\x05';\n  /** Acknowledge (Caret = ^F) */\n  export const ACK = '\\x06';\n  /** Bell (Caret = ^G, C = \\a) */\n  export const BEL = '\\x07';\n  /** Backspace (Caret = ^H, C = \\b) */\n  export const BS  = '\\x08';\n  /** Character Tabulation, Horizontal Tabulation (Caret = ^I, C = \\t) */\n  export const HT  = '\\x09';\n  /** Line Feed (Caret = ^J, C = \\n) */\n  export const LF  = '\\x0a';\n  /** Line Tabulation, Vertical Tabulation (Caret = ^K, C = \\v) */\n  export const VT  = '\\x0b';\n  /** Form Feed (Caret = ^L, C = \\f) */\n  export const FF  = '\\x0c';\n  /** Carriage Return (Caret = ^M, C = \\r) */\n  export const CR  = '\\x0d';\n  /** Shift Out (Caret = ^N) */\n  export const SO  = '\\x0e';\n  /** Shift In (Caret = ^O) */\n  export const SI  = '\\x0f';\n  /** Data Link Escape (Caret = ^P) */\n  export const DLE = '\\x10';\n  /** Device Control One (XON) (Caret = ^Q) */\n  export const DC1 = '\\x11';\n  /** Device Control Two (Caret = ^R) */\n  export const DC2 = '\\x12';\n  /** Device Control Three (XOFF) (Caret = ^S) */\n  export const DC3 = '\\x13';\n  /** Device Control Four (Caret = ^T) */\n  export const DC4 = '\\x14';\n  /** Negative Acknowledge (Caret = ^U) */\n  export const NAK = '\\x15';\n  /** Synchronous Idle (Caret = ^V) */\n  export const SYN = '\\x16';\n  /** End of Transmission Block (Caret = ^W) */\n  export const ETB = '\\x17';\n  /** Cancel (Caret = ^X) */\n  export const CAN = '\\x18';\n  /** End of Medium (Caret = ^Y) */\n  export const EM  = '\\x19';\n  /** Substitute (Caret = ^Z) */\n  export const SUB = '\\x1a';\n  /** Escape (Caret = ^[, C = \\e) */\n  export const ESC = '\\x1b';\n  /** File Separator (Caret = ^\\) */\n  export const FS  = '\\x1c';\n  /** Group Separator (Caret = ^]) */\n  export const GS  = '\\x1d';\n  /** Record Separator (Caret = ^^) */\n  export const RS  = '\\x1e';\n  /** Unit Separator (Caret = ^_) */\n  export const US  = '\\x1f';\n  /** Space */\n  export const SP  = '\\x20';\n  /** Delete (Caret = ^?) */\n  export const DEL = '\\x7f';\n};\n","/**\n * @license MIT\n */\n\nimport { ITerminal } from './Interfaces';\n\ninterface IPosition {\n  start: number;\n  end: number;\n}\n\n/**\n * Encapsulates the logic for handling compositionstart, compositionupdate and compositionend\n * events, displaying the in-progress composition to the UI and forwarding the final composition\n * to the handler.\n */\nexport class CompositionHelper {\n  /**\n   * Whether input composition is currently happening, eg. via a mobile keyboard, speech input or\n   * IME. This variable determines whether the compositionText should be displayed on the UI.\n   */\n  private isComposing: boolean;\n\n  /**\n   * The position within the input textarea's value of the current composition.\n   */\n  private compositionPosition: IPosition;\n\n  /**\n   * Whether a composition is in the process of being sent, setting this to false will cancel any\n   * in-progress composition.\n   */\n  private isSendingComposition: boolean;\n\n  /**\n   * Creates a new CompositionHelper.\n   * @param textarea The textarea that xterm uses for input.\n   * @param compositionView The element to display the in-progress composition in.\n   * @param terminal The Terminal to forward the finished composition to.\n   */\n  constructor(\n    private textarea: HTMLTextAreaElement,\n    private compositionView: HTMLElement,\n    private terminal: ITerminal\n  ) {\n    this.isComposing = false;\n    this.isSendingComposition = false;\n    this.compositionPosition = { start: null, end: null };\n  }\n\n  /**\n   * Handles the compositionstart event, activating the composition view.\n   */\n  public compositionstart() {\n    this.isComposing = true;\n    this.compositionPosition.start = this.textarea.value.length;\n    this.compositionView.textContent = '';\n    this.compositionView.classList.add('active');\n  }\n\n  /**\n   * Handles the compositionupdate event, updating the composition view.\n   * @param {CompositionEvent} ev The event.\n   */\n  public compositionupdate(ev: CompositionEvent) {\n    this.compositionView.textContent = ev.data;\n    this.updateCompositionElements();\n    setTimeout(() => {\n      this.compositionPosition.end = this.textarea.value.length;\n    }, 0);\n  }\n\n  /**\n   * Handles the compositionend event, hiding the composition view and sending the composition to\n   * the handler.\n   */\n  public compositionend() {\n    this.finalizeComposition(true);\n  }\n\n  /**\n   * Handles the keydown event, routing any necessary events to the CompositionHelper functions.\n   * @param ev The keydown event.\n   * @return Whether the Terminal should continue processing the keydown event.\n   */\n  public keydown(ev: KeyboardEvent) {\n    if (this.isComposing || this.isSendingComposition) {\n      if (ev.keyCode === 229) {\n        // Continue composing if the keyCode is the \"composition character\"\n        return false;\n      } else if (ev.keyCode === 16 || ev.keyCode === 17 || ev.keyCode === 18) {\n        // Continue composing if the keyCode is a modifier key\n        return false;\n      } else {\n        // Finish composition immediately. This is mainly here for the case where enter is\n        // pressed and the handler needs to be triggered before the command is executed.\n        this.finalizeComposition(false);\n      }\n    }\n\n    if (ev.keyCode === 229) {\n      // If the \"composition character\" is used but gets to this point it means a non-composition\n      // character (eg. numbers and punctuation) was pressed when the IME was active.\n      this.handleAnyTextareaChanges();\n      return false;\n    }\n\n    return true;\n  }\n\n  /**\n   * Finalizes the composition, resuming regular input actions. This is called when a composition\n   * is ending.\n   * @param waitForPropogation Whether to wait for events to propogate before sending\n   *   the input. This should be false if a non-composition keystroke is entered before the\n   *   compositionend event is triggered, such as enter, so that the composition is send before\n   *   the command is executed.\n   */\n  private finalizeComposition(waitForPropogation: boolean) {\n    this.compositionView.classList.remove('active');\n    this.isComposing = false;\n    this.clearTextareaPosition();\n\n    if (!waitForPropogation) {\n      // Cancel any delayed composition send requests and send the input immediately.\n      this.isSendingComposition = false;\n      const input = this.textarea.value.substring(this.compositionPosition.start, this.compositionPosition.end);\n      this.terminal.handler(input);\n    } else {\n      // Make a deep copy of the composition position here as a new compositionstart event may\n      // fire before the setTimeout executes.\n      const currentCompositionPosition = {\n        start: this.compositionPosition.start,\n        end: this.compositionPosition.end,\n      };\n\n      // Since composition* events happen before the changes take place in the textarea on most\n      // browsers, use a setTimeout with 0ms time to allow the native compositionend event to\n      // complete. This ensures the correct character is retrieved, this solution was used\n      // because:\n      // - The compositionend event's data property is unreliable, at least on Chromium\n      // - The last compositionupdate event's data property does not always accurately describe\n      //   the character, a counter example being Korean where an ending consonsant can move to\n      //   the following character if the following input is a vowel.\n      this.isSendingComposition = true;\n      setTimeout(() => {\n        // Ensure that the input has not already been sent\n        if (this.isSendingComposition) {\n          this.isSendingComposition = false;\n          let input;\n          if (this.isComposing) {\n            // Use the end position to get the string if a new composition has started.\n            input = this.textarea.value.substring(currentCompositionPosition.start, currentCompositionPosition.end);\n          } else {\n            // Don't use the end position here in order to pick up any characters after the\n            // composition has finished, for example when typing a non-composition character\n            // (eg. 2) after a composition character.\n            input = this.textarea.value.substring(currentCompositionPosition.start);\n          }\n          this.terminal.handler(input);\n        }\n      }, 0);\n    }\n  }\n\n  /**\n   * Apply any changes made to the textarea after the current event chain is allowed to complete.\n   * This should be called when not currently composing but a keydown event with the \"composition\n   * character\" (229) is triggered, in order to allow non-composition text to be entered when an\n   * IME is active.\n   */\n  private handleAnyTextareaChanges() {\n    const oldValue = this.textarea.value;\n    setTimeout(() => {\n      // Ignore if a composition has started since the timeout\n      if (!this.isComposing) {\n        const newValue = this.textarea.value;\n        const diff = newValue.replace(oldValue, '');\n        if (diff.length > 0) {\n          this.terminal.handler(diff);\n        }\n      }\n    }, 0);\n  }\n\n  /**\n   * Positions the composition view on top of the cursor and the textarea just below it (so the\n   * IME helper dialog is positioned correctly).\n   * @param dontRecurse Whether to use setTimeout to recursively trigger another update, this is\n   *   necessary as the IME events across browsers are not consistently triggered.\n   */\n  public updateCompositionElements(dontRecurse?: boolean) {\n    if (!this.isComposing) {\n      return;\n    }\n    const cursor = <HTMLElement>this.terminal.element.querySelector('.terminal-cursor');\n    if (cursor) {\n      // Take .xterm-rows offsetTop into account as well in case it's positioned absolutely within\n      // the .xterm element.\n      const xtermRows = <HTMLElement>this.terminal.element.querySelector('.xterm-rows');\n      const cursorTop = xtermRows.offsetTop + cursor.offsetTop;\n\n      this.compositionView.style.left = cursor.offsetLeft + 'px';\n      this.compositionView.style.top = cursorTop + 'px';\n      this.compositionView.style.height = cursor.offsetHeight + 'px';\n      this.compositionView.style.lineHeight = cursor.offsetHeight + 'px';\n      // Sync the textarea to the exact position of the composition view so the IME knows where the\n      // text is.\n      const compositionViewBounds = this.compositionView.getBoundingClientRect();\n      this.textarea.style.left = cursor.offsetLeft + 'px';\n      this.textarea.style.top = cursorTop + 'px';\n      this.textarea.style.width = compositionViewBounds.width + 'px';\n      this.textarea.style.height = compositionViewBounds.height + 'px';\n      this.textarea.style.lineHeight = compositionViewBounds.height + 'px';\n    }\n    if (!dontRecurse) {\n      setTimeout(() => this.updateCompositionElements(true), 0);\n    }\n  };\n\n  /**\n   * Clears the textarea's position so that the cursor does not blink on IE.\n   * @private\n   */\n  private clearTextareaPosition() {\n    this.textarea.style.left = '';\n    this.textarea.style.top = '';\n  };\n}\n","/**\n * @license MIT\n */\n\n/**\n * The character sets supported by the terminal. These enable several languages\n * to be represented within the terminal with only 8-bit encoding. See ISO 2022\n * for a discussion on character sets. Only VT100 character sets are supported.\n */\nexport const CHARSETS: {[key: string]: {[key: string]: string}} = {};\n\n/**\n * The default character set, US.\n */\nexport const DEFAULT_CHARSET = CHARSETS['B'];\n\n/**\n * DEC Special Character and Line Drawing Set.\n * Reference: http://vt100.net/docs/vt102-ug/table5-13.html\n * A lot of curses apps use this if they see TERM=xterm.\n * testing: echo -e '\\e(0a\\e(B'\n * The xterm output sometimes seems to conflict with the\n * reference above. xterm seems in line with the reference\n * when running vttest however.\n * The table below now uses xterm's output from vttest.\n */\nCHARSETS['0'] = {\n  '`': '\\u25c6', // '◆'\n  'a': '\\u2592', // '▒'\n  'b': '\\u0009', // '\\t'\n  'c': '\\u000c', // '\\f'\n  'd': '\\u000d', // '\\r'\n  'e': '\\u000a', // '\\n'\n  'f': '\\u00b0', // '°'\n  'g': '\\u00b1', // '±'\n  'h': '\\u2424', // '\\u2424' (NL)\n  'i': '\\u000b', // '\\v'\n  'j': '\\u2518', // '┘'\n  'k': '\\u2510', // '┐'\n  'l': '\\u250c', // '┌'\n  'm': '\\u2514', // '└'\n  'n': '\\u253c', // '┼'\n  'o': '\\u23ba', // '⎺'\n  'p': '\\u23bb', // '⎻'\n  'q': '\\u2500', // '─'\n  'r': '\\u23bc', // '⎼'\n  's': '\\u23bd', // '⎽'\n  't': '\\u251c', // '├'\n  'u': '\\u2524', // '┤'\n  'v': '\\u2534', // '┴'\n  'w': '\\u252c', // '┬'\n  'x': '\\u2502', // '│'\n  'y': '\\u2264', // '≤'\n  'z': '\\u2265', // '≥'\n  '{': '\\u03c0', // 'π'\n  '|': '\\u2260', // '≠'\n  '}': '\\u00a3', // '£'\n  '~': '\\u00b7'  // '·'\n};\n\n/**\n * British character set\n * ESC (A\n * Reference: http://vt100.net/docs/vt220-rm/table2-5.html\n */\nCHARSETS['A'] = {\n  '#': '£'\n};\n\n/**\n * United States character set\n * ESC (B\n */\nCHARSETS['B'] = null;\n\n/**\n * Dutch character set\n * ESC (4\n * Reference: http://vt100.net/docs/vt220-rm/table2-6.html\n */\nCHARSETS['4'] = {\n  '#': '£',\n  '@': '¾',\n  '[': 'ij',\n  '\\\\': '½',\n  ']': '|',\n  '{': '¨',\n  '|': 'f',\n  '}': '¼',\n  '~': '´'\n};\n\n/**\n * Finnish character set\n * ESC (C or ESC (5\n * Reference: http://vt100.net/docs/vt220-rm/table2-7.html\n */\nCHARSETS['C'] =\nCHARSETS['5'] = {\n  '[': 'Ä',\n  '\\\\': 'Ö',\n  ']': 'Å',\n  '^': 'Ü',\n  '`': 'é',\n  '{': 'ä',\n  '|': 'ö',\n  '}': 'å',\n  '~': 'ü'\n};\n\n/**\n * French character set\n * ESC (R\n * Reference: http://vt100.net/docs/vt220-rm/table2-8.html\n */\nCHARSETS['R'] = {\n  '#': '£',\n  '@': 'à',\n  '[': '°',\n  '\\\\': 'ç',\n  ']': '§',\n  '{': 'é',\n  '|': 'ù',\n  '}': 'è',\n  '~': '¨'\n};\n\n/**\n * French Canadian character set\n * ESC (Q\n * Reference: http://vt100.net/docs/vt220-rm/table2-9.html\n */\nCHARSETS['Q'] = {\n  '@': 'à',\n  '[': 'â',\n  '\\\\': 'ç',\n  ']': 'ê',\n  '^': 'î',\n  '`': 'ô',\n  '{': 'é',\n  '|': 'ù',\n  '}': 'è',\n  '~': 'û'\n};\n\n/**\n * German character set\n * ESC (K\n * Reference: http://vt100.net/docs/vt220-rm/table2-10.html\n */\nCHARSETS['K'] = {\n  '@': '§',\n  '[': 'Ä',\n  '\\\\': 'Ö',\n  ']': 'Ü',\n  '{': 'ä',\n  '|': 'ö',\n  '}': 'ü',\n  '~': 'ß'\n};\n\n/**\n * Italian character set\n * ESC (Y\n * Reference: http://vt100.net/docs/vt220-rm/table2-11.html\n */\nCHARSETS['Y'] = {\n  '#': '£',\n  '@': '§',\n  '[': '°',\n  '\\\\': 'ç',\n  ']': 'é',\n  '`': 'ù',\n  '{': 'à',\n  '|': 'ò',\n  '}': 'è',\n  '~': 'ì'\n};\n\n/**\n * Norwegian/Danish character set\n * ESC (E or ESC (6\n * Reference: http://vt100.net/docs/vt220-rm/table2-12.html\n */\nCHARSETS['E'] =\nCHARSETS['6'] = {\n  '@': 'Ä',\n  '[': 'Æ',\n  '\\\\': 'Ø',\n  ']': 'Å',\n  '^': 'Ü',\n  '`': 'ä',\n  '{': 'æ',\n  '|': 'ø',\n  '}': 'å',\n  '~': 'ü'\n};\n\n/**\n * Spanish character set\n * ESC (Z\n * Reference: http://vt100.net/docs/vt220-rm/table2-13.html\n */\nCHARSETS['Z'] = {\n  '#': '£',\n  '@': '§',\n  '[': '¡',\n  '\\\\': 'Ñ',\n  ']': '¿',\n  '{': '°',\n  '|': 'ñ',\n  '}': 'ç'\n};\n\n/**\n * Swedish character set\n * ESC (H or ESC (7\n * Reference: http://vt100.net/docs/vt220-rm/table2-14.html\n */\nCHARSETS['H'] =\nCHARSETS['7'] = {\n  '@': 'É',\n  '[': 'Ä',\n  '\\\\': 'Ö',\n  ']': 'Å',\n  '^': 'Ü',\n  '`': 'é',\n  '{': 'ä',\n  '|': 'ö',\n  '}': 'å',\n  '~': 'ü'\n};\n\n/**\n * Swiss character set\n * ESC (=\n * Reference: http://vt100.net/docs/vt220-rm/table2-15.html\n */\nCHARSETS['='] = {\n  '#': 'ù',\n  '@': 'à',\n  '[': 'é',\n  '\\\\': 'ç',\n  ']': 'ê',\n  '^': 'î',\n  '_': 'è',\n  '`': 'ô',\n  '{': 'ä',\n  '|': 'ö',\n  '}': 'ü',\n  '~': 'û'\n};\n","/**\n * @license MIT\n */\n\nimport { ITerminal, IBufferSet } from './Interfaces';\nimport { Buffer } from './Buffer';\nimport { EventEmitter } from './EventEmitter';\n\n/**\n * The BufferSet represents the set of two buffers used by xterm terminals (normal and alt) and\n * provides also utilities for working with them.\n */\nexport class BufferSet extends EventEmitter implements IBufferSet {\n  private _normal: Buffer;\n  private _alt: Buffer;\n  private _activeBuffer: Buffer;\n\n  /**\n   * Create a new BufferSet for the given terminal.\n   * @param {Terminal} terminal - The terminal the BufferSet will belong to\n   */\n  constructor(private _terminal: ITerminal) {\n    super();\n    this._normal = new Buffer(this._terminal);\n    this._normal.fillViewportRows();\n    this._alt = new Buffer(this._terminal);\n    this._activeBuffer = this._normal;\n  }\n\n  /**\n   * Returns the alt Buffer of the BufferSet\n   * @returns {Buffer}\n   */\n  public get alt(): Buffer {\n    return this._alt;\n  }\n\n  /**\n   * Returns the normal Buffer of the BufferSet\n   * @returns {Buffer}\n   */\n  public get active(): Buffer {\n    return this._activeBuffer;\n  }\n\n  /**\n   * Returns the currently active Buffer of the BufferSet\n   * @returns {Buffer}\n   */\n  public get normal(): Buffer {\n    return this._normal;\n  }\n\n  /**\n   * Sets the normal Buffer of the BufferSet as its currently active Buffer\n   */\n  public activateNormalBuffer(): void {\n    // The alt buffer should always be cleared when we switch to the normal\n    // buffer. This frees up memory since the alt buffer should always be new\n    // when activated.\n    this._alt.clear();\n\n    this._activeBuffer = this._normal;\n    this.emit('activate', this._normal);\n  }\n\n  /**\n   * Sets the alt Buffer of the BufferSet as its currently active Buffer\n   */\n  public activateAltBuffer(): void {\n    // Since the alt buffer is always cleared when the normal buffer is\n    // activated, we want to fill it when switching to it.\n    this._alt.fillViewportRows();\n\n    this._activeBuffer = this._alt;\n    this.emit('activate', this._alt);\n  }\n\n  /**\n   * Resizes both normal and alt buffers, adjusting their data accordingly.\n   * @param newCols The new number of columns.\n   * @param newRows The new number of rows.\n   */\n  public resize(newCols: number, newRows: number): void {\n    this._normal.resize(newCols, newRows);\n    this._alt.resize(newCols, newRows);\n  }\n}\n","/**\n * @license MIT\n */\n\nimport { ITerminal, IBuffer } from './Interfaces';\nimport { CircularList } from './utils/CircularList';\n\n/**\n * This class represents a terminal buffer (an internal state of the terminal), where the\n * following information is stored (in high-level):\n *   - text content of this particular buffer\n *   - cursor position\n *   - scroll position\n */\nexport class Buffer implements IBuffer {\n  private _lines: CircularList<[number, string, number][]>;\n\n  public ydisp: number;\n  public ybase: number;\n  public y: number;\n  public x: number;\n  public scrollBottom: number;\n  public scrollTop: number;\n  public tabs: any;\n  public savedY: number;\n  public savedX: number;\n\n  /**\n   * Create a new Buffer.\n   * @param {Terminal} _terminal - The terminal the Buffer will belong to\n   * @param {number} ydisp - The scroll position of the Buffer in the viewport\n   * @param {number} ybase - The scroll position of the y cursor (ybase + y = the y position within the Buffer)\n   * @param {number} y - The cursor's y position after ybase\n   * @param {number} x - The cursor's x position after ybase\n   */\n  constructor(\n    private _terminal: ITerminal\n  ) {\n    this.clear();\n  }\n\n  public get lines(): CircularList<[number, string, number][]> {\n    return this._lines;\n  }\n\n  /**\n   * Fills the buffer's viewport with blank lines.\n   */\n  public fillViewportRows(): void {\n    if (this._lines.length === 0) {\n      let i = this._terminal.rows;\n      while (i--) {\n        this.lines.push(this._terminal.blankLine());\n      }\n    }\n  }\n\n  /**\n   * Clears the buffer to it's initial state, discarding all previous data.\n   */\n  public clear(): void {\n    this.ydisp = 0;\n    this.ybase = 0;\n    this.y = 0;\n    this.x = 0;\n    this.scrollBottom = 0;\n    this.scrollTop = 0;\n    this.tabs = {};\n    this._lines = new CircularList<[number, string, number][]>(this._terminal.scrollback);\n    this.scrollBottom = this._terminal.rows - 1;\n  }\n\n  /**\n   * Resizes the buffer, adjusting its data accordingly.\n   * @param newCols The new number of columns.\n   * @param newRows The new number of rows.\n   */\n  public resize(newCols: number, newRows: number): void {\n    // Don't resize the buffer if it's empty and hasn't been used yet.\n    if (this._lines.length === 0) {\n      return;\n    }\n\n    // Deal with columns increasing (we don't do anything when columns reduce)\n    if (this._terminal.cols < newCols) {\n      const ch: [number, string, number] = [this._terminal.defAttr, ' ', 1]; // does xterm use the default attr?\n      for (let i = 0; i < this._lines.length; i++) {\n        // TODO: This should be removed, with tests setup for the case that was\n        // causing the underlying bug, see https://github.com/sourcelair/xterm.js/issues/824\n        if (this._lines.get(i) === undefined) {\n          this._lines.set(i, this._terminal.blankLine(undefined, undefined, newCols));\n        }\n        while (this._lines.get(i).length < newCols) {\n          this._lines.get(i).push(ch);\n        }\n      }\n    }\n\n    // Resize rows in both directions as needed\n    let addToY = 0;\n    if (this._terminal.rows < newRows) {\n      for (let y = this._terminal.rows; y < newRows; y++) {\n        if (this._lines.length < newRows + this.ybase) {\n          if (this.ybase > 0 && this._lines.length <= this.ybase + this.y + addToY + 1) {\n            // There is room above the buffer and there are no empty elements below the line,\n            // scroll up\n            this.ybase--;\n            addToY++;\n            if (this.ydisp > 0) {\n              // Viewport is at the top of the buffer, must increase downwards\n              this.ydisp--;\n            }\n          } else {\n            // Add a blank line if there is no buffer left at the top to scroll to, or if there\n            // are blank lines after the cursor\n            this._lines.push(this._terminal.blankLine(undefined, undefined, newCols));\n          }\n        }\n      }\n    } else { // (this._terminal.rows >= newRows)\n      for (let y = this._terminal.rows; y > newRows; y--) {\n        if (this._lines.length > newRows + this.ybase) {\n          if (this._lines.length > this.ybase + this.y + 1) {\n            // The line is a blank line below the cursor, remove it\n            this._lines.pop();\n          } else {\n            // The line is the cursor, scroll down\n            this.ybase++;\n            this.ydisp++;\n          }\n        }\n      }\n    }\n\n    // Make sure that the cursor stays on screen\n    if (this.y >= newRows) {\n      this.y = newRows - 1;\n    }\n    if (addToY) {\n      this.y += addToY;\n    }\n\n    if (this.x >= newCols) {\n      this.x = newCols - 1;\n    }\n\n    this.scrollTop = 0;\n    this.scrollBottom = newRows - 1;\n  }\n}\n",null],"names":[],"mappings":"AsBAA;;;ADKA;AASA;AAqBA;AACA;AAEA;AACA;AAEA;AAAA;AACA;AACA;;;AAAA;AAKA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAOA;AAEA;AACA;AACA;AAGA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AAEA;AACA;AACA;AAAA;AAGA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AAAA;AAvIa;;;;;;;;;;;;;;;;;ADTb;AACA;AAMA;AAAA;AASA;AAAA;AAAA;AAEA;AACA;AACA;AACA;;AACA;AAMA;AAAA;AACA;AACA;;;AAAA;AAMA;AAAA;AACA;AACA;;;AAAA;AAMA;AAAA;AACA;AACA;;;AAAA;AAKA;AAIA;AAEA;AACA;AACA;AAKA;AAGA;AAEA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AAAA;AA3Ea;;;;;;;ADHA;AAKA;AAYb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wBA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AAMA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AAOA;AACA;AACA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAGA;AACA;AACA;AAEA;AAGA;AACA;AACA;AAEA;AACA;AAUA;AAAA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AACA;AAAA;AAGA;AACA;AACA;AACA;AAUA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAAA;AAIA;AACA;AACA;AACA;AACA;AACA;AACA;AAQA;AAAA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAQA;AAAA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AAEA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AAMA;AACA;AACA;AACA;AAAA;AACA;AAAA;AApNa;;;;;;;ADRb;AAAA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AAEA;AACA;AAAC;;;;;;;ADpEA;AAED;AAGA;AAGA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAAA;AAAA;AAAA;;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAAA;AA3Da;;;;;;;ADNb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cA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAa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uCA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAAA;AAIA;AACA;AACA;AAAA;AACA;AACA;AAAA;AAGA;AACA;AAAA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAOA;AACA;AAAA;AACA;AAAA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAUA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAwFA;AACA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAGA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AAGA;AACA;AACA;AAKA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AAIA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAoFA;AACA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AAEA;AAKA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAkEA;AAEA;AACA;AACA;AACA;AAEA;AAOA;AACA;AACA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AACA;AAAA;AAEA;AACA;AACA;AAAA;AAEA;AACA;AACA;AAIA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAGA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AACA;AAIA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AAAA;AAEA;AACA;AACA;AAIA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AAAA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AAyBA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AAGA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AAGA;AACA;AAGA;AACA;AAGA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAYA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAQA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AAAA;AA96Ca;AAg7CA;AAGb;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAaA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;;;;;;;ADnlDA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AAKA;AAe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hUmB;AANN;;;;;;;ADhCb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da;;;;;;;ADjKb;AAOA;AAKA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AAAC;AAED;AAEA;AAQA;AAAA;AANA;AACA;AACA;AAEA;AAKA;AACA;AACA;AACA;AAKA;AAQA;AACA;AACA;AACA;AACA;AACA;AAMA;AAKA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAu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pWa;AAwWb;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;;;;;;;;;;;;;;;;AD3YA;AACA;AAGA;AAEA;AACA;AAMA;AAKA;AAKA;AAMA;AAIA;AACA;AAEA;AACA;AAaA;AAAA;AACA;AACA;AACA;AACA;AAUA;AAAA;AAiCA;AAAA;AACA;AACA;AACA;AACA;AATA;AAYA;AACA;AAEA;AACA;;AACA;AAKA;AAAA;AACA;AACA;AAEA;AAMA;AACA;AAMA;AACA;AACA;AACA;AAKA;AACA;AACA;AAOA;AACA;AACA;AACA;AAEA;AAAA;;;AAAA;AACA;AAAA;;;AAAA;AAKA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;;AAAA;AAKA;AAAA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAIA;AACA;AACA;AAEA;AACA;;;AAAA;AAKA;AACA;AACA;AACA;AACA;AAOA;AAAA;AAEA;AACA;AACA;AAIA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AAGA;AACA;AAEA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAMA;AAGA;AACA;AACA;AACA;AAGA;AACA;AACA;AAGA;AACA;AAEA;AACA;AACA;AAGA;AACA;AAGA;AAGA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AACA;AAKA;AAAA;AAEA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AAIA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AAOA;AAGA;AAGA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAAA;AACA;AACA;AAGA;AAIA;AACA;AACA;AAAA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AAEA;AAGA;AACA;AAGA;AACA;AACA;AAEA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AAKA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AAAA;AA1lBa;;;;;;;AD1Db;AAuBA;AACA;AAEA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AAKA;AAAA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;;;AAAA;AAMA;AAAA;AACA;AACA;AACA;AAEA;AACA;AACA;AAGA;AACA;AACA;AAGA;AAEA;AACA;AACA;AACA;AACA;AACA;;;AAAA;AAKA;AACA;AACA;AACA;AACA;AAOA;AAEA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AAAA;AArHa;;;;;;;ADCb;AAaA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AAGA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AAEA;AACA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AAQA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AAAA;AAMA;AACA;AACA;AAAA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AAAA;AArIa;;;;;;;ADWb;AACA;AACA;AACA;AACA;AACA;AALA;AAWA;AACA;AACA;AACA;AAAA;AACA;AACA;AAGA;AACA;AATA;AAgBA;AACA;AAEA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AAzBA;AAgCA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AApBA;AA4BA;AACA;AAGA;AACA;AACA;AANA;;;;;;;ADvGA;AAEA;AACA;AACA;AAEa;AACA;AAKA;AACA;AACA;AACA;AACA;;;;;;;ADhBb;AACA;AAYA;AAAA;AAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAIA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAnCA;;;;;;;;;;;;;;;;;ADdA;AAKA;AAAA;AAOA;AAAA;AAEA;AACA;;AACA;AAEA;AAAA;AACA;AACA;;;AAAA;AAEA;AAAA;AACA;AACA;;;AAAA;AAEA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AAnDa;;;;;;;;;;;;;;;;;ADJb;AAGA;AAAA;AAKA;AAAA;AAEA;AACA;AACA;;AACA;AAEA;AAAA;AACA;AACA;AAEA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;;;AAXA;AAaA;AAAA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;;AATA;AAWA;AAAA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;;AAAA;AAUA;AACA;AACA;AAUA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAMA;AACA;AACA;AAWA;AAAA;AAAA;AAAA;;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AAQA;AACA;AACA;AACA;AAAA;AAhMa;;;;;;;ADAb;AAYA;AAAA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AAQA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AAAA;AAhE0B;AAET;AAHJ;;;;;;;ADEb;AACA;AACA;AAFA;AAEC;;;;;;;ADPD;AAEA;AACA;AACA;AAEA;AACA;AAIA;AACA;AACA;AACA;AACA;AACA;AACA;AAjBA;AAgCA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AAGA;AACA;AAGA;AACA;AAEA;AACA;AApBA;AAgCA;AACA;AACA;AACA;AAGA;AACA;AAEA;AACA;AAVA;;;;;;;AD1DA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AAcA;AAOA;AAMA;AAOA;AAkBA;AACA;AAEA;AACA;AACA;AAEA;AACA;AAEA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAGA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AAEA;AAAA;AACA;AAEA;AACA;AAEA;AAIA;AAIA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AAGA;AACA;AAQA;AAGA;AAGA;AAGA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AAEA;AAGA;AACA;AAEA;AAKA;AAEA;AACA;AAOA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAIA;AACA;AAKA;AACA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAEA;AAEA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AAEA;AAEA;AAEA;AACA;AACA;AACA;AAKA;AACA;AACA;AAMA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AAAA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AAAA;AACA;AAEA;AACA;AACA;AAGA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AAEA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAKA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAQA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AAQA;AAAA;AACA;AAEA;AAEA;AACA;AACA;AAGA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AAIA;AACA;AACA;AACA;AACA;AAIA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAGA;AACA;AACA;AACA;AAIA;AACA;AACA;AACA;AACA;AACA;AAGA;AAIA;AAMA;AACA;AAEA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AAIA;AAOA;AACA;AAQA;AACA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AAYA;AACA;AAKA;AACA;AAIA;AAGA;AACA;AAAA;AAEA;AAEA;AACA;AACA;AACA;AACA;AAGA;AACA;AACA;AAIA;AACA;AACA;AAIA;AACA;AAGA;AACA;AAAA;AAIA;AAEA;AACA;AAIA;AACA;AACA;AAAA;AACA;AAAA;AACA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AAQA;AAOA;AAGA;AACA;AACA;AACA;AACA;AAAA;AACA;AAAA;AACA;AAAA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AACA;AAAA;AACA;AAAA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AAEA;AACA;AAEA;AACA;AAaA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAIA;AACA;AACA;AACA;AAGA;AAEA;AACA;AAAA;AACA;AACA;AAGA;AAEA;AACA;AAEA;AAIA;AACA;AAEA;AAAA;AAGA;AAIA;AACA;AACA;AACA;AACA;AAGA;AAAA;AAGA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AAMA;AACA;AAAA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAIA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AAAA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAQA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AACA;AAOA;AACA;AAGA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AAGA;AACA;AACA;AAGA;AAGA;AAEA;AAEA;AACA;AAAA;AAEA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA;AACA;AAQA;AACA;AASA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AAEA;AACA;AAGA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AAMA;AACA;AACA;AAKA;AACA;AACA;AAKA;AACA;AACA;AAMA;AACA;AAKA;AAGA;AACA;AACA;AAEA;AAEA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAIA;AACA;AACA;AACA;AAEA;AACA;AAOA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAMA;AACA;AACA;AAQA;AACA;AACA;AACA;AACA;AAUA;AACA;AACA;AAQA;AACA;AACA;AACA;AACA;AAEA;AACA;AAQA;AACA;AACA;AACA;AACA;AAEA;AACA;AAYA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AAMA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AAKA;AACA;AACA;AACA;AACA;AAQA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AAEA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AASA;AACA;AAGA;AAEA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAIA;AACA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AAIA;AACA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AAGA;AACA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AAGA;AACA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AAGA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AAAA;AAEA;AACA;AACA;AAAA;AAEA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AAMA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AACA;AACA;AAQA;AACA;AAEA;AACA;AACA;AAEA;AAEA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AAAA;AACA;AACA;AAEA;AAGA;AACA;AAEA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAMA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AAMA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AAKA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AAKA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AAQA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AAOA;AAEA;AACA;AACA;AACA;AACA;AAEA;AAAA;AACA;AAAA;AAEA;AAGA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AAEA;AACA;AACA;AAEA;AAEA;AAEA;AACA;AACA;AAMA;AACA;AAAA;AACA;AAAA;AAOA;AAKA;AACA;AACA;AACA;AAQA;AACA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAOA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AACA;AAOA;AACA;AAAA;AACA;AAAA;AACA;AACA;AACA;AACA;AAQA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AASA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AAQA;AACA;AACA;AACA;AAEA;AAMA;AACA;AACA;AAEA;AACA;AACA;AACA;AAEA;AACA;AAOA;AACA;AACA;AACA;AACA;AAOA;AACA;AACA;AACA;AAOA;AAEA;AACA;AACA;AAGA;AACA;AACA;AAGA;AACA;AACA;AACA;AACA;AAOA;AAOA;AACA;AAUA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAQA;AACA;AACA;AAIA;AACA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AAAA;AACA;AACA;AACA;AAEA;AACA;AAEA;AAEA;AACA;AACA;AAGA;AACA;AAGA;AAEA;AACA;AAEA;AACA;AACA;AAEA;AASA;AACA;AACA;AACA;AACA;AAEA;AAEA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AAEA;AAGA;AACA;AACA;AACA;AACA;AAEA;AACA;AAAA;AACA;AACA;AACA;AACA;AAEA;AACA;AACA;AACA;AACA;AAEA;AACA;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAMA;AACA;AACA;AAQA;AACA;AACA;AAEA;;;"}
\ No newline at end of file
diff --git a/apps/terminal/templates/terminal/session_detail.html b/apps/terminal/templates/terminal/session_detail.html
index 88fb756ac..8bec6c50c 100644
--- a/apps/terminal/templates/terminal/session_detail.html
+++ b/apps/terminal/templates/terminal/session_detail.html
@@ -88,7 +88,7 @@
                                             <td>{% trans 'Replay session' %}:</td>
                                             <td>
                                                 <span class="pull-right">
-                                                    <button type="button" onclick="window.open('/luna/replay/{{ object.id }}','luna', 'height=600, width=800, top=0, left=0, toolbar=no, menubar=no, scrollbars=no, location=no, status=no')" class="btn btn-primary btn-xs" id="btn_reset_password" style="width: 54px">{% trans 'Go' %}</button>
+                                                    <button type="button" onclick="window.open('/luna/replay/{{ object.id }}','luna', 'height=600, width=800, top=400, left=400, toolbar=no, menubar=no, scrollbars=no, location=no, status=no')" class="btn btn-primary btn-xs" id="btn_reset_password" style="width: 54px">{% trans 'Go' %}</button>
                                                 </span>
                                             </td>
                                         </tr>
diff --git a/apps/terminal/templates/terminal/session_list.html b/apps/terminal/templates/terminal/session_list.html
index 63a2c9209..eaaa89ce1 100644
--- a/apps/terminal/templates/terminal/session_list.html
+++ b/apps/terminal/templates/terminal/session_list.html
@@ -99,7 +99,7 @@
             <td class="text-center">{{ session.date_start|time_util_with_seconds:session.date_end }}</td>
             <td>
                 {% if session.is_finished %}
-                <a onclick="window.open('/luna/replay/{{ session.id }}','luna', 'height=600, width=800, top=0, left=0, toolbar=no, menubar=no, scrollbars=no, location=no, status=no')" class="btn btn-xs btn-warning btn-replay" >{% trans "Replay" %}</a>
+                <a onclick="window.open('/luna/replay/{{ session.id }}','luna', 'height=600, width=800, top=400, left=400, toolbar=no, menubar=no, scrollbars=no, location=no, status=no')" class="btn btn-xs btn-warning btn-replay" >{% trans "Replay" %}</a>
                 {% else %}
                 <!--<a onclick="window.open('/luna/monitor/{{ session.id }}','luna', 'height=600, width=800, top=0, left=0, toolbar=no, menubar=no, scrollbars=no, location=no, status=no')" class="btn btn-xs btn-warning btn-monitor" >{% trans "Monitor" %}</a>-->
                 <a class="btn btn-xs btn-danger btn-term" value="{{ session.id }}" terminal="{{ session.terminal.id }}" >{% trans "Terminate" %}</a>

From 2583c0b26c885fe6a903a6137b1d62a8542c8124 Mon Sep 17 00:00:00 2001
From: BaiJiangjie <baijiangjie@Bai-Mac.local>
Date: Thu, 10 May 2018 20:48:16 +0800
Subject: [PATCH 030/112] =?UTF-8?q?[Bugfix]=20=E8=B5=84=E4=BA=A7=E6=A0=91?=
 =?UTF-8?q?=E8=8A=82=E7=82=B9=EF=BC=8C=E5=8F=96=E6=B6=88model=20value=20un?=
 =?UTF-8?q?ique=EF=BC=8C=E5=B9=B6=E6=B7=BB=E5=8A=A0=E5=94=AF=E4=B8=80?=
 =?UTF-8?q?=E6=80=A7=E6=A0=A1=E9=AA=8C=EF=BC=8C=E4=BF=AE=E6=94=B9=E6=96=B0?=
 =?UTF-8?q?=E5=A2=9E=E8=8A=82=E7=82=B9=E8=AE=A1=E6=95=B0=E5=99=A8=E8=A7=84?=
 =?UTF-8?q?=E5=88=99?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py                       | 29 ++++++++++++++-----
 apps/assets/models/node.py                    |  7 +++--
 apps/assets/serializers/node.py               |  9 ++++++
 .../templates/assets/_asset_list_modal.html   |  5 +++-
 .../assets/templates/assets/asset_detail.html |  4 +--
 apps/assets/templates/assets/asset_list.html  | 14 +++++----
 .../templates/users/user_granted_asset.html   |  2 +-
 7 files changed, 50 insertions(+), 20 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index 939444ccc..2ea2d112c 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -45,16 +45,15 @@ class NodeViewSet(BulkModelViewSet):
 
     def get_serializer_class(self):
         show_current_asset = self.request.query_params.get('show_current_asset')
-        print(show_current_asset)
         if show_current_asset:
             return serializers.NodeCurrentSerializer
         else:
             return serializers.NodeSerializer
 
-    def perform_create(self, serializer):
-        child_key = Node.root().get_next_child_key()
-        serializer.validated_data["key"] = child_key
-        serializer.save()
+    # def perform_create(self, serializer):
+    #     child_key = Node.root().get_next_child_key()
+    #     serializer.validated_data["key"] = child_key
+    #     serializer.save()
 
 
 class NodeWithAssetsApi(generics.ListAPIView):
@@ -91,16 +90,27 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
     serializer_class = serializers.NodeSerializer
     instance = None
 
+    def counter(self):
+        values = [
+            child.value[child.value.rfind(' '):]
+            for child in self.get_object().get_children()
+            if child.value.startswith("新节点 ")
+        ]
+        values = [int(value) for value in values if value.strip().isdigit()]
+        count = max(values)+1 if values else 1
+        return count
+
     def post(self, request, *args, **kwargs):
         if not request.data.get("value"):
-            request.data["value"] = _("New node {}").format(
-                Node.root().get_next_child_key().split(":")[-1]
-            )
+            request.data["value"] = _("New node {}").format(self.counter())
         return super().post(request, *args, **kwargs)
 
     def create(self, request, *args, **kwargs):
         instance = self.get_object()
         value = request.data.get("value")
+        values = [child.value for child in instance.get_children()]
+        if value in values:
+            raise AssertionError('The same level node name cannot be the same')
         node = instance.create_child(value=value)
         return Response(
             {"id": node.id, "key": node.key, "value": node.value},
@@ -199,6 +209,9 @@ class NodeRemoveAssetsApi(generics.UpdateAPIView):
         instance = self.get_object()
         if instance != Node.root():
             instance.assets.remove(*tuple(assets))
+        else:
+            assets = [asset for asset in assets if asset.nodes.count() > 1]
+            instance.assets.remove(*tuple(assets))
 
 
 class NodeReplaceAssetsApi(generics.UpdateAPIView):
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 89e4a6b70..14ac775fc 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -12,7 +12,10 @@ __all__ = ['Node']
 class Node(models.Model):
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     key = models.CharField(unique=True, max_length=64, verbose_name=_("Key"))  # '1:1:1:1'
-    value = models.CharField(max_length=128, unique=True, verbose_name=_("Value"))
+    # value = models.CharField(
+    #     max_length=128, unique=True, verbose_name=_("Value")
+    # )
+    value = models.CharField(max_length=128, verbose_name=_("Value"))
     child_mark = models.IntegerField(default=0)
     date_create = models.DateTimeField(auto_now_add=True)
 
@@ -48,7 +51,7 @@ class Node(models.Model):
         return child
 
     def get_children(self):
-        return self.__class__.objects.filter(key__regex=r'{}:[0-9]+$'.format(self.key))
+        return self.__class__.objects.filter(key__regex=r'^{}:[0-9]+$'.format(self.key))
 
     def get_all_children(self):
         return self.__class__.objects.filter(key__startswith='{}:'.format(self.key))
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index 225d5655a..9f04fd465 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -51,6 +51,15 @@ class NodeSerializer(serializers.ModelSerializer):
         fields = ['id', 'key', 'value', 'parent', 'assets_amount', 'is_node']
         list_serializer_class = BulkListSerializer
 
+    def update(self, instance, validated_data):
+        value = validated_data.get('value')
+        if not instance.is_root():
+            children = instance.parent.get_children().exclude(key=instance.key)
+            values = [child.value for child in children]
+            if value in values:
+                raise AssertionError('The same level node name cannot be the same')
+        return super().update(instance, validated_data)
+
     @staticmethod
     def get_parent(obj):
         return obj.parent.id
diff --git a/apps/assets/templates/assets/_asset_list_modal.html b/apps/assets/templates/assets/_asset_list_modal.html
index c5cd48857..db7d165e0 100644
--- a/apps/assets/templates/assets/_asset_list_modal.html
+++ b/apps/assets/templates/assets/_asset_list_modal.html
@@ -98,7 +98,10 @@ function initTree2() {
     $.get("{% url 'api-assets:node-list' %}", function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
-            value["open"] = true;
+            {#value["open"] = true;#}
+            if (value["key"] === "0") {
+                value["open"] = true;
+            }
             value["name"] = value["value"] + ' (' + value['assets_amount'] + ')';
             value['value'] = value['value'];
         });
diff --git a/apps/assets/templates/assets/asset_detail.html b/apps/assets/templates/assets/asset_detail.html
index 0b1b2865a..b07a7c348 100644
--- a/apps/assets/templates/assets/asset_detail.html
+++ b/apps/assets/templates/assets/asset_detail.html
@@ -190,7 +190,7 @@
                                                 <td colspan="2" class="no-borders">
                                                     <select data-placeholder="{% trans 'Nodes' %}" id="groups_selected" class="select2 groups" style="width: 100%" multiple="" tabindex="4">
                                                         {% for node in nodes_remain %}
-                                                        <option value="{{ node.id }}" id="opt_{{ node.id }}" >{{ node.name }}</option>
+                                                        <option value="{{ node.id }}" id="opt_{{ node.id }}" >{{ node }}</option>
                                                         {% endfor %}
                                                     </select>
                                                 </td>
@@ -204,7 +204,7 @@
 
                                         {% for node in asset.nodes.all %}
                                         <tr>
-                                          <td ><b class="bdg_node" data-gid={{ node.id }}>{{ node.name }}</b></td>
+                                          <td ><b class="bdg_node" data-gid={{ node.id }}>{{ node }}</b></td>
                                           <td>
                                               <button class="btn btn-danger pull-right btn-xs btn-leave-node" type="button"><i class="fa fa-minus"></i></button>
                                           </td>
diff --git a/apps/assets/templates/assets/asset_list.html b/apps/assets/templates/assets/asset_list.html
index 98679694f..0100e1e7f 100644
--- a/apps/assets/templates/assets/asset_list.html
+++ b/apps/assets/templates/assets/asset_list.html
@@ -211,6 +211,8 @@ function addTreeNode() {
             };
             newNode.checked = zTree.getSelectedNodes()[0].checked;
             zTree.addNodes(parentNode, 0, newNode);
+            var node = zTree.getNodeByParam('id', newNode.id, parentNode)
+            zTree.editName(node);
         } else {
             alert("{% trans 'Create node failed' %}")
         }
@@ -241,9 +243,9 @@ function removeTreeNode() {
 
 function editTreeNode() {
     hideRMenu();
-	var current_node = zTree.getSelectedNodes()[0];
-	if (!current_node){
-	    return
+    var current_node = zTree.getSelectedNodes()[0];
+    if (!current_node){
+        return
     }
     if (current_node.value) {
         current_node.name = current_node.value;
@@ -398,9 +400,9 @@ function initTree() {
     $.get("{% url 'api-assets:node-list' %}", query_params, function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
-            {#if (value["key"] === "0") {#}
-            value["open"] = true;
-            {# }#}
+            if (value["key"] === "0") {
+                value["open"] = true;
+             }
             value["name"] = value["value"] + ' (' + value['assets_amount'] + ')';
             value['value'] = value['value'];
         });
diff --git a/apps/users/templates/users/user_granted_asset.html b/apps/users/templates/users/user_granted_asset.html
index ec807aec5..299c33e07 100644
--- a/apps/users/templates/users/user_granted_asset.html
+++ b/apps/users/templates/users/user_granted_asset.html
@@ -68,7 +68,7 @@ var asset_table;
 
 function initTable() {
     if (inited){
-        return
+        return asset_table
     } else {
         inited = true;
     }

From 0031d025aa3bb45acc99042592c5a8a3a8b62524 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 11 May 2018 09:28:20 +0800
Subject: [PATCH 031/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E4=B8=8A?=
 =?UTF-8?q?=E6=AC=A1=E6=8F=90=E4=BA=A4=E5=BC=95=E8=B5=B7=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/ops/api.py   | 7 -------
 apps/ops/views.py | 3 ---
 2 files changed, 10 deletions(-)

diff --git a/apps/ops/api.py b/apps/ops/api.py
index a68f1c529..35c9b8dc5 100644
--- a/apps/ops/api.py
+++ b/apps/ops/api.py
@@ -70,13 +70,6 @@ class CeleryTaskLogApi(generics.RetrieveAPIView):
     end = False
     queryset = CeleryTask.objects.all()
 
-    def get_object(self):
-        return CeleryTask(
-            id="4cae9ad8-1116-45e7-b019-9b1856696fd7",
-            log_path="2018-05-10/ca77e6db-9ac6-4970-80d1-eecdbcc3fcc5.log",
-            status="finished"
-        )
-
     def get(self, request, *args, **kwargs):
         mark = request.query_params.get("mark") or str(uuid.uuid4())
         task = self.get_object()
diff --git a/apps/ops/views.py b/apps/ops/views.py
index a8af61789..e3ba2789a 100644
--- a/apps/ops/views.py
+++ b/apps/ops/views.py
@@ -124,6 +124,3 @@ class AdHocHistoryDetailView(AdminUserRequiredMixin, DetailView):
 class CeleryTaskLogView(AdminUserRequiredMixin, DetailView):
     template_name = 'ops/celery_task_log.html'
     model = CeleryTask
-
-    def get_object(self, queryset=None):
-        return CeleryTask(id="4cae9ad8-1116-45e7-b019-9b1856696fd7")

From cbc4a0a97b4f0a213f8d096a0bd1347c6d9475b6 Mon Sep 17 00:00:00 2001
From: BaiJiangjie <baijiangjie@Bai-Mac.local>
Date: Fri, 11 May 2018 11:27:48 +0800
Subject: [PATCH 032/112] =?UTF-8?q?[Bugfix]=20=E8=B5=84=E4=BA=A7=E6=A0=91?=
 =?UTF-8?q?=E8=8A=82=E7=82=B9Node=20Value=E5=80=BC=E6=A0=A1=E9=AA=8C?=
 =?UTF-8?q?=E4=BF=AE=E6=94=B9=E5=BC=82=E5=B8=B8=E6=8A=9B=E5=87=BA=E4=B8=BA?=
 =?UTF-8?q?400?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py         |  5 ++++-
 apps/assets/serializers/node.py | 11 +++++++----
 2 files changed, 11 insertions(+), 5 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index 2ea2d112c..b8b2707e6 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -14,6 +14,7 @@
 # limitations under the License.
 
 from rest_framework import generics, mixins
+from rest_framework.serializers import ValidationError
 from rest_framework.views import APIView
 from rest_framework.response import Response
 from rest_framework_bulk import BulkModelViewSet
@@ -110,7 +111,9 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
         value = request.data.get("value")
         values = [child.value for child in instance.get_children()]
         if value in values:
-            raise AssertionError('The same level node name cannot be the same')
+            raise ValidationError(
+                'The same level node name cannot be the same'
+            )
         node = instance.create_child(value=value)
         return Response(
             {"id": node.id, "key": node.key, "value": node.value},
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index 9f04fd465..bee350591 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -51,14 +51,17 @@ class NodeSerializer(serializers.ModelSerializer):
         fields = ['id', 'key', 'value', 'parent', 'assets_amount', 'is_node']
         list_serializer_class = BulkListSerializer
 
-    def update(self, instance, validated_data):
-        value = validated_data.get('value')
+    def validate(self, data):
+        value = data.get('value')
+        instance = self.instance
         if not instance.is_root():
             children = instance.parent.get_children().exclude(key=instance.key)
             values = [child.value for child in children]
             if value in values:
-                raise AssertionError('The same level node name cannot be the same')
-        return super().update(instance, validated_data)
+                raise serializers.ValidationError(
+                    'The same level node name cannot be the same'
+                )
+        return data
 
     @staticmethod
     def get_parent(obj):

From ebc1b4975aa808774792009797e3bab0df36d33b Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 11 May 2018 18:38:26 +0800
Subject: [PATCH 033/112] =?UTF-8?q?[Update]=20=E8=87=AA=E5=8A=A8=E7=94=9F?=
 =?UTF-8?q?=E6=88=90=E7=A7=98=E9=92=A5=E5=8E=BB=E6=8E=89=E5=AF=86=E7=A0=81?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/models/base.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/assets/models/base.py b/apps/assets/models/base.py
index cdb08f52c..11afd92cf 100644
--- a/apps/assets/models/base.py
+++ b/apps/assets/models/base.py
@@ -112,7 +112,7 @@ class AssetUser(models.Model):
     def auto_gen_auth(self):
         password = str(uuid.uuid4())
         private_key, public_key = ssh_key_gen(
-            username=self.username, password=password
+            username=self.username
         )
         self.set_auth(password=password,
                       private_key=private_key,

From 38f8c5bb72b46249c3901b3b5d68601f152b816f Mon Sep 17 00:00:00 2001
From: BaiJiangjie <baijiangjie@Bai-Mac.lan>
Date: Mon, 14 May 2018 14:21:32 +0800
Subject: [PATCH 034/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E8=B5=84?=
 =?UTF-8?q?=E4=BA=A7=E6=A0=91=E8=8A=82=E7=82=B9=E7=A7=BB=E5=8A=A8=EF=BC=8C?=
 =?UTF-8?q?=E8=B5=84=E4=BA=A7=E6=8E=88=E6=9D=83=E6=A0=91=E8=8A=82=E7=82=B9?=
 =?UTF-8?q?=E4=B8=8B=E7=9A=84=E8=B5=84=E4=BA=A7=E6=98=BE=E7=A4=BA=E9=97=AE?=
 =?UTF-8?q?=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py                              |  5 +++--
 apps/assets/models/node.py                           | 12 +++++++++++-
 .../perms/templates/perms/asset_permission_list.html |  7 ++++---
 apps/perms/views.py                                  |  2 +-
 4 files changed, 19 insertions(+), 7 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index b8b2707e6..30d661a29 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -184,8 +184,9 @@ class NodeAddChildrenApi(generics.UpdateAPIView):
         for node in children:
             if not node:
                 continue
-            node.parent = instance
-            node.save()
+            # node.parent = instance
+            # node.save()
+            node.move(instance)
         return Response("OK")
 
 
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 14ac775fc..bb83035c0 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -2,7 +2,7 @@
 #
 import uuid
 
-from django.db import models
+from django.db import models, transaction
 from django.utils.translation import ugettext_lazy as _
 
 
@@ -39,6 +39,16 @@ class Node(models.Model):
     def level(self):
         return len(self.key.split(':'))
 
+    def move(self, instance):
+        children = self.get_all_children()
+        old_key = self.key
+        with transaction.atomic():
+            self.parent = instance
+            for child in children:
+                child.key = child.key.replace(old_key, self.key, 1)
+                child.save()
+            self.save()
+
     def get_next_child_key(self):
         mark = self.child_mark
         self.child_mark += 1
diff --git a/apps/perms/templates/perms/asset_permission_list.html b/apps/perms/templates/perms/asset_permission_list.html
index fa1154716..c18f12224 100644
--- a/apps/perms/templates/perms/asset_permission_list.html
+++ b/apps/perms/templates/perms/asset_permission_list.html
@@ -226,7 +226,7 @@ function initTree() {
         },
         async: {
 			enable: true,
-			url: "{% url 'api-assets:node-children-2' %}?assets=1&all=1",
+			url: "{% url 'api-assets:node-children-2' %}?assets=1&all=",
 			autoParam:["id", "name=n", "level=lv"],
 			dataFilter: filter,
             type: 'get'
@@ -238,7 +238,7 @@ function initTree() {
     };
 
     var zNodes = [];
-    $.get("{% url 'api-assets:node-children-2' %}?assets=1&all=1", function(data, status){
+    $.get("{% url 'api-assets:node-children-2' %}?assets=1&all=", function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
             value["name"] = value["value"];
@@ -304,6 +304,7 @@ $(document).ready(function(){
 
     if (row.child.isShown()) {
         tr.removeClass('details');
+        $(this).children('i:first-child').removeClass('fa-angle-down').addClass('fa-angle-right');
         row.child.hide();
 
         // Remove from the 'open' array
@@ -311,7 +312,7 @@ $(document).ready(function(){
     }
     else {
         tr.addClass('details');
-        $('.toggle i').removeClass('fa-angle-right').addClass('fa-angle-down');
+        $(this).children('i:first-child').removeClass('fa-angle-right').addClass('fa-angle-down');
         row.child(format(row.data())).show();
         // Add to the 'open' array
         if ( idx === -1 ) {
diff --git a/apps/perms/views.py b/apps/perms/views.py
index 17b8637cc..9afbc6ffe 100644
--- a/apps/perms/views.py
+++ b/apps/perms/views.py
@@ -42,7 +42,7 @@ class AssetPermissionCreateView(AdminUserRequiredMixin, CreateView):
 
         if nodes_id:
             nodes_id = nodes_id.split(",")
-            nodes = Node.objects.filter(id__in=nodes_id)
+            nodes = Node.objects.filter(id__in=nodes_id).exclude(id=Node.root().id)
             form['nodes'].initial = nodes
         if assets_id:
             assets_id = assets_id.split(",")

From 718715cc6de38bda0570f480c59ad27c4fff7124 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 15 May 2018 12:52:53 +0800
Subject: [PATCH 035/112] =?UTF-8?q?[Update]=20=E5=88=9B=E5=BB=BA=E7=B3=BB?=
 =?UTF-8?q?=E7=BB=9F=E7=94=A8=E6=88=B7=E9=80=89=E6=8B=A9rdp=E5=8D=8F?=
 =?UTF-8?q?=E8=AE=AE=EF=BC=8C=E5=8E=BB=E6=8E=89=E7=9B=B8=E5=85=B3=E9=85=8D?=
 =?UTF-8?q?=E7=BD=AE=E7=9A=84=E4=B8=80=E4=BA=9B=E6=97=A0=E7=94=A8=E5=8A=9F?=
 =?UTF-8?q?=E8=83=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../assets/templates/assets/_system_user.html | 44 +++++++++++++------
 .../templates/assets/system_user_detail.html  | 14 ++++--
 .../templates/assets/system_user_update.html  |  9 ++--
 3 files changed, 44 insertions(+), 23 deletions(-)

diff --git a/apps/assets/templates/assets/_system_user.html b/apps/assets/templates/assets/_system_user.html
index 528e271e6..6e3b81658 100644
--- a/apps/assets/templates/assets/_system_user.html
+++ b/apps/assets/templates/assets/_system_user.html
@@ -55,7 +55,7 @@
                                 {% bootstrap_field form.private_key_file layout="horizontal" %}
                             </div>
                             <div class="form-group">
-                                <label for="{{ form.as_push.id_for_label }}" class="col-sm-2 control-label">{% trans 'Auto push' %}</label>
+                                <label for="{{ form.auto_push.id_for_label }}" class="col-sm-2 control-label">{% trans 'Auto push' %}</label>
                                 <div class="col-sm-8">
                                     {{ form.auto_push}}
                                 </div>
@@ -82,13 +82,11 @@
     <script>
         var auto_generate_key = '#'+'{{ form.auto_generate_key.id_for_label }}';
         var protocol_id = '#' + '{{ form.protocol.id_for_label }}';
-        var password_id = '#' + '{{ form.password.id_for_label }}';
         var private_key_id = '#' + '{{ form.private_key_file.id_for_label }}';
+        var auto_push_id = '#' + '{{ form.auto_push.id_for_label }}';
         var sudo_id = '#' + '{{ form.sudo.id_for_label }}';
         var shell_id = '#' + '{{ form.shell.id_for_label }}';
 
-        var need_change_field = [auto_generate_key, private_key_id, sudo_id, shell_id] ;
-
         function authFieldsDisplay() {
             if ($(auto_generate_key).prop('checked')) {
                 $('.auth-fields').addClass('hidden');
@@ -98,24 +96,42 @@
         }
 
         function protocolChange() {
-            if ($(protocol_id).attr('value') === 'rdp') {
-                $.each(need_change_field, function (index, value) {
+            var div_auto_generate_key = $(auto_generate_key).parent().parent();
+            var div_ssh_private_key = $(private_key_id).parent().parent().parent().parent();
+            var div_auto_push = $(auto_push_id).parent().parent();
+            var div_sudo = $(sudo_id).parent().parent();
+            var div_shell = $(shell_id).parent().parent();
+            var need_change_div = [
+                div_auto_generate_key, div_ssh_private_key,
+                div_auto_push, div_sudo, div_shell
+            ];
+
+            if ($(protocol_id + " option:selected").text() === 'rdp') {
+                $('.auth-fields').removeClass('hidden');
+                $.each(need_change_div, function (index, value) {
                     $(value).addClass('hidden')
                 });
-                $(password_id).removeClass('hidden')
             } else {
-                $.each(need_change_field, function (index, value) {
+                authFieldsDisplay();
+                $.each(need_change_div, function (index, value) {
                     $(value).removeClass('hidden')
                 });
             }
         }
-        $(document).ready(function () {
-            $('.select2').select2();
-            authFieldsDisplay();
-            protocolChange();
-            $(auto_generate_key).change(function () {
+
+        {% block document_ready %}
+            $(document).ready(function () {
+                $('.select2').select2();
                 authFieldsDisplay();
+                protocolChange();
             });
-        })
+        {% endblock %}
+
+        $(protocol_id).change(function (){
+            protocolChange();
+        });
+        $(auto_generate_key).change(function () {
+            authFieldsDisplay();
+        });
     </script>
 {% endblock %}
\ No newline at end of file
diff --git a/apps/assets/templates/assets/system_user_detail.html b/apps/assets/templates/assets/system_user_detail.html
index 1e180f0ab..96ed7bb93 100644
--- a/apps/assets/templates/assets/system_user_detail.html
+++ b/apps/assets/templates/assets/system_user_detail.html
@@ -64,14 +64,14 @@
                                         </tr>
                                         <tr>
                                             <td>{% trans 'Protocol' %}:</td>
-                                            <td><b>{{ system_user.protocol }}</b></td>
+                                            <td><b id="id_protocol_type">{{ system_user.protocol }}</b></td>
                                         </tr>
-                                        <tr>
+                                        <tr id="id_sudo">
                                             <td>{% trans 'Sudo' %}:</td>
                                             <td><b>{{ system_user.sudo }}</b></td>
                                         </tr>
                                         {% if system_user.shell %}
-                                        <tr>
+                                        <tr id="id_shell">
                                             <td>{% trans 'Shell' %}:</td>
                                             <td><b>{{ system_user.shell }}</b></td>
                                         </tr>
@@ -107,7 +107,7 @@
                         </div>
 
                         <div class="col-sm-4" style="padding-left: 0;padding-right: 0">
-                            <div class="panel panel-primary">
+                            <div class="panel panel-primary" id="id_quick_update">
                                 <div class="panel-heading">
                                     <i class="fa fa-info-circle"></i> {% trans 'Quick update' %}
                                 </div>
@@ -236,6 +236,12 @@ function updateSystemUserNode(nodes) {
 }
 jumpserver.nodes_selected = {};
 $(document).ready(function () {
+    if($('#id_protocol_type').text() === 'rdp'){
+        $('#id_quick_update').addClass('hidden');
+        $('#id_sudo').addClass('hidden');
+        $('#id_shell').addClass('hidden');
+    }
+
     $('.select2').select2()
     .on('select2:select', function(evt) {
             var data = evt.params.data;
diff --git a/apps/assets/templates/assets/system_user_update.html b/apps/assets/templates/assets/system_user_update.html
index 46ef8d6a3..a8a5c7483 100644
--- a/apps/assets/templates/assets/system_user_update.html
+++ b/apps/assets/templates/assets/system_user_update.html
@@ -15,10 +15,9 @@
     </div>
 {% endblock %}
 
-{% block custom_foot_js %}
-	<script>
+{% block document_ready %}
     $(document).ready(function () {
         $('.select2').select2();
-    })
-	</script>
-{% endblock %}
\ No newline at end of file
+        protocolChange();
+    });
+{% endblock %}

From cb4afabc9117eff1847ca945ddb73d6b65dd1721 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 15 May 2018 14:44:02 +0800
Subject: [PATCH 036/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E5=88=9B?=
 =?UTF-8?q?=E5=BB=BAnode=E8=8A=82=E7=82=B9=E7=9A=84=E9=97=AE=E9=A2=98?=
 =?UTF-8?q?=EF=BC=8C=E4=BF=AE=E5=A4=8Dwindows=20session=E7=9A=84=E9=97=AE?=
 =?UTF-8?q?=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py | 8 ++++----
 apps/terminal/api.py    | 3 +++
 2 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index b8b2707e6..bc78e408a 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -51,10 +51,10 @@ class NodeViewSet(BulkModelViewSet):
         else:
             return serializers.NodeSerializer
 
-    # def perform_create(self, serializer):
-    #     child_key = Node.root().get_next_child_key()
-    #     serializer.validated_data["key"] = child_key
-    #     serializer.save()
+    def perform_create(self, serializer):
+        child_key = Node.root().get_next_child_key()
+        serializer.validated_data["key"] = child_key
+        serializer.save()
 
 
 class NodeWithAssetsApi(generics.ListAPIView):
diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index eb4b6400a..c9bb68ed6 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -108,6 +108,9 @@ class StatusViewSet(viewsets.ModelViewSet):
     task_serializer_class = TaskSerializer
 
     def create(self, request, *args, **kwargs):
+        if self.request.query_params.get("from_guacamole", None):
+            return Response({"msg": "From guacamole, not support now"})
+
         self.handle_sessions()
         super().create(request, *args, **kwargs)
         tasks = self.request.user.terminal.task_set.filter(is_finished=False)

From ed18cb317f754432439d48823d91138315863ea3 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 15 May 2018 15:05:49 +0800
Subject: [PATCH 037/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E5=88=9B?=
 =?UTF-8?q?=E5=BB=BAnode=20api=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/serializers/node.py | 15 +++++++--------
 1 file changed, 7 insertions(+), 8 deletions(-)

diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index bee350591..b191b0a4f 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -53,14 +53,13 @@ class NodeSerializer(serializers.ModelSerializer):
 
     def validate(self, data):
         value = data.get('value')
-        instance = self.instance
-        if not instance.is_root():
-            children = instance.parent.get_children().exclude(key=instance.key)
-            values = [child.value for child in children]
-            if value in values:
-                raise serializers.ValidationError(
-                    'The same level node name cannot be the same'
-                )
+        instance = self.instance if self.instance else Node.root()
+        children = instance.parent.get_children().exclude(key=instance.key)
+        values = [child.value for child in children]
+        if value in values:
+            raise serializers.ValidationError(
+                'The same level node name cannot be the same'
+            )
         return data
 
     @staticmethod

From 599431f402e868c69aa59de8bd3ba24fc5a55373 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 15 May 2018 17:32:20 +0800
Subject: [PATCH 038/112] =?UTF-8?q?[Update]=20=E5=8E=BB=E6=8E=89=E6=B7=BB?=
 =?UTF-8?q?=E5=8A=A0windows=E7=9B=B8=E5=85=B3=E9=85=8D=E7=BD=AE=E6=97=B6?=
 =?UTF-8?q?=E7=9A=84=E4=B8=80=E4=BA=9B=E6=97=A0=E7=94=A8=E5=8A=9F=E8=83=BD?=
 =?UTF-8?q?=EF=BC=8C=E7=BD=91=E5=9F=9F=E7=BD=91=E5=85=B3/=E4=BC=9A?=
 =?UTF-8?q?=E8=AF=9D=E5=88=97=E8=A1=A8?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py                       |  2 +-
 apps/assets/models/node.py                    |  2 +-
 .../assets/templates/assets/_system_user.html | 20 +++++++-------
 .../templates/assets/domain_gateway_list.html |  6 +++--
 .../assets/gateway_create_update.html         | 26 +++++++++++++++++++
 .../templates/terminal/session_list.html      |  6 ++++-
 6 files changed, 47 insertions(+), 15 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index 30d661a29..5a3197288 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -186,7 +186,7 @@ class NodeAddChildrenApi(generics.UpdateAPIView):
                 continue
             # node.parent = instance
             # node.save()
-            node.move(instance)
+            node.set_parent(instance)
         return Response("OK")
 
 
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index bb83035c0..5ee97af9b 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -39,7 +39,7 @@ class Node(models.Model):
     def level(self):
         return len(self.key.split(':'))
 
-    def move(self, instance):
+    def set_parent(self, instance):
         children = self.get_all_children()
         old_key = self.key
         with transaction.atomic():
diff --git a/apps/assets/templates/assets/_system_user.html b/apps/assets/templates/assets/_system_user.html
index 6e3b81658..98d1b6098 100644
--- a/apps/assets/templates/assets/_system_user.html
+++ b/apps/assets/templates/assets/_system_user.html
@@ -87,6 +87,16 @@
         var sudo_id = '#' + '{{ form.sudo.id_for_label }}';
         var shell_id = '#' + '{{ form.shell.id_for_label }}';
 
+        var div_auto_generate_key = $(auto_generate_key).parent().parent();
+        var div_ssh_private_key = $(private_key_id).parent().parent().parent().parent();
+        var div_auto_push = $(auto_push_id).parent().parent();
+        var div_sudo = $(sudo_id).parent().parent();
+        var div_shell = $(shell_id).parent().parent();
+        var need_change_div = [
+            div_auto_generate_key, div_ssh_private_key,
+            div_auto_push, div_sudo, div_shell
+        ];
+
         function authFieldsDisplay() {
             if ($(auto_generate_key).prop('checked')) {
                 $('.auth-fields').addClass('hidden');
@@ -96,16 +106,6 @@
         }
 
         function protocolChange() {
-            var div_auto_generate_key = $(auto_generate_key).parent().parent();
-            var div_ssh_private_key = $(private_key_id).parent().parent().parent().parent();
-            var div_auto_push = $(auto_push_id).parent().parent();
-            var div_sudo = $(sudo_id).parent().parent();
-            var div_shell = $(shell_id).parent().parent();
-            var need_change_div = [
-                div_auto_generate_key, div_ssh_private_key,
-                div_auto_push, div_sudo, div_shell
-            ];
-
             if ($(protocol_id + " option:selected").text() === 'rdp') {
                 $('.auth-fields').removeClass('hidden');
                 $.each(need_change_div, function (index, value) {
diff --git a/apps/assets/templates/assets/domain_gateway_list.html b/apps/assets/templates/assets/domain_gateway_list.html
index 581f6c08a..c2d5528ee 100644
--- a/apps/assets/templates/assets/domain_gateway_list.html
+++ b/apps/assets/templates/assets/domain_gateway_list.html
@@ -85,6 +85,9 @@ function initTable() {
                 var update_btn = '<a href="{% url "assets:domain-gateway-update" pk=DEFAULT_PK %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
                 var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn-delete" data-uid="{{ DEFAULT_PK }}">{% trans "Delete" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
                 var test_btn = '<a class="btn btn-xs btn-warning m-l-xs btn-test" data-uid="{{ DEFAULT_PK }}">{% trans "Test connection" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
+                if(rowData.protocol === 'rdp'){
+                    test_btn = '<a class="btn btn-xs btn-warning m-l-xs btn-test" disabled data-uid="{{ DEFAULT_PK }}">{% trans "Test connection" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
+                }
                 $(td).html(update_btn + test_btn + del_btn)
              }}
         ],
@@ -120,7 +123,6 @@ $(document).ready(function(){
         success_message: "可连接",
         fail_message: "连接失败"
     })
-
-})
+});
 </script>
 {% endblock %}
diff --git a/apps/assets/templates/assets/gateway_create_update.html b/apps/assets/templates/assets/gateway_create_update.html
index 7d6800c41..e57d8ed5c 100644
--- a/apps/assets/templates/assets/gateway_create_update.html
+++ b/apps/assets/templates/assets/gateway_create_update.html
@@ -66,3 +66,29 @@
         </div>
     </div>
 {% endblock %}
+
+{% block custom_foot_js %}
+    <script>
+    var protocol_id = '#' + '{{ form.protocol.id_for_label }}';
+    var private_key_id = '#' + '{{ form.private_key_file.id_for_label }}';
+    var port = '#' + '{{ form.port.id_for_label }}';
+    var div_ssh_private_key = $(private_key_id).parent().parent().parent().parent();
+
+    function protocolChange() {
+        if ($(protocol_id + " option:selected").text() === 'rdp') {
+            $(port).val(3389);
+            $(div_ssh_private_key).addClass('hidden')
+        } else {
+            $(port).val(22);
+            $(div_ssh_private_key).removeClass('hidden')
+        }
+    }
+
+    $(document).ready(function(){
+        protocolChange();
+    });
+    $(protocol_id).change(function (){
+        protocolChange();
+    });
+    </script>
+{% endblock %}
\ No newline at end of file
diff --git a/apps/terminal/templates/terminal/session_list.html b/apps/terminal/templates/terminal/session_list.html
index eaaa89ce1..8cea8e217 100644
--- a/apps/terminal/templates/terminal/session_list.html
+++ b/apps/terminal/templates/terminal/session_list.html
@@ -102,7 +102,11 @@
                 <a onclick="window.open('/luna/replay/{{ session.id }}','luna', 'height=600, width=800, top=400, left=400, toolbar=no, menubar=no, scrollbars=no, location=no, status=no')" class="btn btn-xs btn-warning btn-replay" >{% trans "Replay" %}</a>
                 {% else %}
                 <!--<a onclick="window.open('/luna/monitor/{{ session.id }}','luna', 'height=600, width=800, top=0, left=0, toolbar=no, menubar=no, scrollbars=no, location=no, status=no')" class="btn btn-xs btn-warning btn-monitor" >{% trans "Monitor" %}</a>-->
-                <a class="btn btn-xs btn-danger btn-term" value="{{ session.id }}" terminal="{{ session.terminal.id }}" >{% trans "Terminate" %}</a>
+                    {% if session.protocol == 'rdp' %}
+                        <a class="btn btn-xs btn-danger btn-term" disabled value="{{ session.id }}" terminal="{{ session.terminal.id }}" >{% trans "Terminate" %}</a>
+                    {% else %}
+                        <a class="btn btn-xs btn-danger btn-term" value="{{ session.id }}" terminal="{{ session.terminal.id }}" >{% trans "Terminate" %}</a>
+                    {% endif %}
                 {% endif %}
             </td>
         </tr>

From ac67c231fccb9ed80d57b3d73ba9dff8b88bcfd1 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Wed, 16 May 2018 12:31:13 +0800
Subject: [PATCH 039/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E5=89=8D?=
 =?UTF-8?q?=E7=AB=AFrdp=E7=9B=B8=E5=85=B3=E9=85=8D=E7=BD=AE=E7=9A=84?=
 =?UTF-8?q?=E9=80=89=E6=8B=A9=E9=80=BB=E8=BE=91?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../assets/templates/assets/_system_user.html | 95 +++++++++----------
 .../assets/gateway_create_update.html         | 39 ++++----
 .../templates/assets/system_user_detail.html  | 11 +--
 .../templates/assets/system_user_update.html  |  6 --
 4 files changed, 66 insertions(+), 85 deletions(-)

diff --git a/apps/assets/templates/assets/_system_user.html b/apps/assets/templates/assets/_system_user.html
index 98d1b6098..314967d22 100644
--- a/apps/assets/templates/assets/_system_user.html
+++ b/apps/assets/templates/assets/_system_user.html
@@ -79,59 +79,50 @@
     </div>
 {% endblock %}
 {% block custom_foot_js %}
-    <script>
-        var auto_generate_key = '#'+'{{ form.auto_generate_key.id_for_label }}';
-        var protocol_id = '#' + '{{ form.protocol.id_for_label }}';
-        var private_key_id = '#' + '{{ form.private_key_file.id_for_label }}';
-        var auto_push_id = '#' + '{{ form.auto_push.id_for_label }}';
-        var sudo_id = '#' + '{{ form.sudo.id_for_label }}';
-        var shell_id = '#' + '{{ form.shell.id_for_label }}';
+<script>
+var auto_generate_key = '#'+'{{ form.auto_generate_key.id_for_label }}';
+var protocol_id = '#' + '{{ form.protocol.id_for_label }}';
+var private_key_id = '#' + '{{ form.private_key_file.id_for_label }}';
+var auto_push_id = '#' + '{{ form.auto_push.id_for_label }}';
+var sudo_id = '#' + '{{ form.sudo.id_for_label }}';
+var shell_id = '#' + '{{ form.shell.id_for_label }}';
+var need_change_field = [
+    auto_generate_key, private_key_id, auto_push_id, sudo_id, shell_id
+];
 
-        var div_auto_generate_key = $(auto_generate_key).parent().parent();
-        var div_ssh_private_key = $(private_key_id).parent().parent().parent().parent();
-        var div_auto_push = $(auto_push_id).parent().parent();
-        var div_sudo = $(sudo_id).parent().parent();
-        var div_shell = $(shell_id).parent().parent();
-        var need_change_div = [
-            div_auto_generate_key, div_ssh_private_key,
-            div_auto_push, div_sudo, div_shell
-        ];
-
-        function authFieldsDisplay() {
-            if ($(auto_generate_key).prop('checked')) {
-                $('.auth-fields').addClass('hidden');
-            } else {
-                $('.auth-fields').removeClass('hidden');
-            }
-        }
-
-        function protocolChange() {
-            if ($(protocol_id + " option:selected").text() === 'rdp') {
-                $('.auth-fields').removeClass('hidden');
-                $.each(need_change_div, function (index, value) {
-                    $(value).addClass('hidden')
-                });
-            } else {
-                authFieldsDisplay();
-                $.each(need_change_div, function (index, value) {
-                    $(value).removeClass('hidden')
-                });
-            }
-        }
-
-        {% block document_ready %}
-            $(document).ready(function () {
-                $('.select2').select2();
-                authFieldsDisplay();
-                protocolChange();
-            });
-        {% endblock %}
-
-        $(protocol_id).change(function (){
-            protocolChange();
+function protocolChange() {
+    if ($(protocol_id + " option:selected").text() === 'rdp') {
+        $('.auth-fields').removeClass('hidden');
+        $.each(need_change_field, function (index, value) {
+            $(value).closest('.form-group').addClass('hidden')
         });
-        $(auto_generate_key).change(function () {
-            authFieldsDisplay();
+    } else {
+        authFieldsDisplay();
+        $.each(need_change_field, function (index, value) {
+            $(value).closest('.form-group').removeClass('hidden')
         });
-    </script>
+    }
+}
+
+function authFieldsDisplay() {
+    if ($(auto_generate_key).prop('checked')) {
+        $('.auth-fields').addClass('hidden');
+    } else {
+        $('.auth-fields').removeClass('hidden');
+    }
+}
+
+$(document).ready(function () {
+    $('.select2').select2();
+    authFieldsDisplay();
+    protocolChange();
+})
+.on('change', protocol_id, function(){
+    protocolChange();
+})
+.on('change', auto_generate_key, function(){
+    authFieldsDisplay();
+});
+
+</script>
 {% endblock %}
\ No newline at end of file
diff --git a/apps/assets/templates/assets/gateway_create_update.html b/apps/assets/templates/assets/gateway_create_update.html
index e57d8ed5c..e0b10ba73 100644
--- a/apps/assets/templates/assets/gateway_create_update.html
+++ b/apps/assets/templates/assets/gateway_create_update.html
@@ -68,27 +68,26 @@
 {% endblock %}
 
 {% block custom_foot_js %}
-    <script>
-    var protocol_id = '#' + '{{ form.protocol.id_for_label }}';
-    var private_key_id = '#' + '{{ form.private_key_file.id_for_label }}';
-    var port = '#' + '{{ form.port.id_for_label }}';
-    var div_ssh_private_key = $(private_key_id).parent().parent().parent().parent();
+<script>
+var protocol_id = '#' + '{{ form.protocol.id_for_label }}';
+var private_key_id = '#' + '{{ form.private_key_file.id_for_label }}';
+var port = '#' + '{{ form.port.id_for_label }}';
 
-    function protocolChange() {
-        if ($(protocol_id + " option:selected").text() === 'rdp') {
-            $(port).val(3389);
-            $(div_ssh_private_key).addClass('hidden')
-        } else {
-            $(port).val(22);
-            $(div_ssh_private_key).removeClass('hidden')
-        }
+function protocolChange() {
+    if ($(protocol_id + " option:selected").text() === 'rdp') {
+        $(port).val(3389);
+        $(private_key_id).closest('.form-group').addClass('hidden')
+    } else {
+        $(port).val(22);
+        $(private_key_id).closest('.form-group').removeClass('hidden')
     }
+}
 
-    $(document).ready(function(){
-        protocolChange();
-    });
-    $(protocol_id).change(function (){
-        protocolChange();
-    });
-    </script>
+$(document).ready(function(){
+    protocolChange();
+})
+.on('change', protocol_id, function(){
+    protocolChange();
+});
+</script>
 {% endblock %}
\ No newline at end of file
diff --git a/apps/assets/templates/assets/system_user_detail.html b/apps/assets/templates/assets/system_user_detail.html
index 96ed7bb93..cc686a62b 100644
--- a/apps/assets/templates/assets/system_user_detail.html
+++ b/apps/assets/templates/assets/system_user_detail.html
@@ -66,12 +66,12 @@
                                             <td>{% trans 'Protocol' %}:</td>
                                             <td><b id="id_protocol_type">{{ system_user.protocol }}</b></td>
                                         </tr>
-                                        <tr id="id_sudo">
+                                        <tr class="only-ssh">
                                             <td>{% trans 'Sudo' %}:</td>
                                             <td><b>{{ system_user.sudo }}</b></td>
                                         </tr>
                                         {% if system_user.shell %}
-                                        <tr id="id_shell">
+                                        <tr class="only-ssh">
                                             <td>{% trans 'Shell' %}:</td>
                                             <td><b>{{ system_user.shell }}</b></td>
                                         </tr>
@@ -107,7 +107,7 @@
                         </div>
 
                         <div class="col-sm-4" style="padding-left: 0;padding-right: 0">
-                            <div class="panel panel-primary" id="id_quick_update">
+                            <div class="panel panel-primary only-ssh">
                                 <div class="panel-heading">
                                     <i class="fa fa-info-circle"></i> {% trans 'Quick update' %}
                                 </div>
@@ -237,11 +237,8 @@ function updateSystemUserNode(nodes) {
 jumpserver.nodes_selected = {};
 $(document).ready(function () {
     if($('#id_protocol_type').text() === 'rdp'){
-        $('#id_quick_update').addClass('hidden');
-        $('#id_sudo').addClass('hidden');
-        $('#id_shell').addClass('hidden');
+        $('.only-ssh').addClass('hidden')
     }
-
     $('.select2').select2()
     .on('select2:select', function(evt) {
             var data = evt.params.data;
diff --git a/apps/assets/templates/assets/system_user_update.html b/apps/assets/templates/assets/system_user_update.html
index a8a5c7483..7e1590db5 100644
--- a/apps/assets/templates/assets/system_user_update.html
+++ b/apps/assets/templates/assets/system_user_update.html
@@ -15,9 +15,3 @@
     </div>
 {% endblock %}
 
-{% block document_ready %}
-    $(document).ready(function () {
-        $('.select2').select2();
-        protocolChange();
-    });
-{% endblock %}

From c1db33713f68de225b38d0f8910e4cae47269993 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Wed, 16 May 2018 16:12:27 +0800
Subject: [PATCH 040/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E8=B5=84?=
 =?UTF-8?q?=E4=BA=A7=E6=8E=88=E6=9D=83=E6=A0=91root=E8=8A=82=E7=82=B9bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index b0e974f5c..a6d00b44a 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -123,7 +123,7 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
     def get_object(self):
         pk = self.kwargs.get('pk') or self.request.query_params.get('id')
         if not pk:
-            node = Node.root()
+            node = None
         else:
             node = get_object_or_404(Node, pk=pk)
         return node
@@ -133,7 +133,8 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
         query_all = self.request.query_params.get("all")
         query_assets = self.request.query_params.get('assets')
         node = self.get_object()
-        if node == Node.root():
+        if node is None:
+            node = Node.root()
             queryset.append(node)
         if query_all:
             children = node.get_all_children()
@@ -184,8 +185,6 @@ class NodeAddChildrenApi(generics.UpdateAPIView):
         for node in children:
             if not node:
                 continue
-            # node.parent = instance
-            # node.save()
             node.set_parent(instance)
         return Response("OK")
 

From 4b7af1457d14e5779d47fb4b6b65dc5b9f382d24 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 17 May 2018 11:39:04 +0800
Subject: [PATCH 041/112] =?UTF-8?q?[Update]=20=E7=B3=BB=E7=BB=9F=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E6=96=B0=E5=A2=9E=E6=B8=85=E9=99=A4=E8=AE=A4=E8=AF=81?=
 =?UTF-8?q?=E7=9A=84=E6=93=8D=E4=BD=9C?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/system_user.py                |   7 +-
 apps/assets/models/base.py                    |   1 +
 .../templates/assets/system_user_detail.html  |  25 +++++--
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 33242 -> 33388 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            |  61 +++++++++++-------
 apps/users/models/group.py                    |   2 +-
 6 files changed, 67 insertions(+), 29 deletions(-)

diff --git a/apps/assets/api/system_user.py b/apps/assets/api/system_user.py
index 1be316567..66d62232d 100644
--- a/apps/assets/api/system_user.py
+++ b/apps/assets/api/system_user.py
@@ -40,7 +40,7 @@ class SystemUserViewSet(BulkModelViewSet):
     permission_classes = (IsSuperUserOrAppUser,)
 
 
-class SystemUserAuthInfoApi(generics.RetrieveUpdateAPIView):
+class SystemUserAuthInfoApi(generics.RetrieveUpdateDestroyAPIView):
     """
     Get system user auth info
     """
@@ -48,6 +48,11 @@ class SystemUserAuthInfoApi(generics.RetrieveUpdateAPIView):
     permission_classes = (IsSuperUserOrAppUser,)
     serializer_class = serializers.SystemUserAuthSerializer
 
+    def destroy(self, request, *args, **kwargs):
+        instance = self.get_object()
+        instance.clear_auth()
+        return Response(status=204)
+
 
 class SystemUserPushApi(generics.RetrieveAPIView):
     """
diff --git a/apps/assets/models/base.py b/apps/assets/models/base.py
index 11afd92cf..cb9bb96ae 100644
--- a/apps/assets/models/base.py
+++ b/apps/assets/models/base.py
@@ -107,6 +107,7 @@ class AssetUser(models.Model):
     def clear_auth(self):
         self._password = ''
         self._private_key = ''
+        self._public_key = ''
         self.save()
 
     def auto_gen_auth(self):
diff --git a/apps/assets/templates/assets/system_user_detail.html b/apps/assets/templates/assets/system_user_detail.html
index cc686a62b..9a7bc255a 100644
--- a/apps/assets/templates/assets/system_user_detail.html
+++ b/apps/assets/templates/assets/system_user_detail.html
@@ -107,14 +107,14 @@
                         </div>
 
                         <div class="col-sm-4" style="padding-left: 0;padding-right: 0">
-                            <div class="panel panel-primary only-ssh">
+                            <div class="panel panel-primary ">
                                 <div class="panel-heading">
                                     <i class="fa fa-info-circle"></i> {% trans 'Quick update' %}
                                 </div>
                                 <div class="panel-body">
                                     <table class="table">
                                         <tbody>
-                                        <tr class="no-borders-tr">
+                                        <tr class="only-ssh">
                                             <td width="50%">{% trans 'Auto push' %}:</td>
                                             <td>
                                                 <span class="pull-right">
@@ -130,8 +130,8 @@
                                                 </span>
                                             </td>
                                         </tr>
-                                        <tr class="no-borders-tr">
                                         {% if system_user.auto_push %}
+                                        <tr class="only-ssh">
                                             <td width="50%">{% trans 'Push system user now' %}:</td>
                                             <td>
                                                 <span style="float: right">
@@ -139,8 +139,8 @@
                                                 </span>
                                             </td>
                                         </tr>
-                                        <tr>
                                         {% endif %}
+                                        <tr class="only-ssh">
                                             <td width="50%">{% trans 'Test assets connective' %}:</td>
                                             <td>
                                                 <span style="float: right">
@@ -149,6 +149,15 @@
                                             </td>
                                         </tr>
 
+                                        <tr>
+                                            <td width="50%">{% trans 'Clear auth' %}:</td>
+                                            <td>
+                                                <span style="float: right">
+                                                    <button type="button" class="btn btn-primary btn-xs btn-clear-auth" style="width: 54px">{% trans 'Clear' %}</button>
+                                                </span>
+                                            </td>
+                                        </tr>
+
 {#                                        <tr>#}
 {#                                            <td width="50%">{% trans 'Change auth period' %}:</td>#}
 {#                                            <td>#}
@@ -239,6 +248,7 @@ $(document).ready(function () {
     if($('#id_protocol_type').text() === 'rdp'){
         $('.only-ssh').addClass('hidden')
     }
+    $(".panel-body .table tr:visible:first").addClass('no-borders-tr');
     $('.select2').select2()
     .on('select2:select', function(evt) {
             var data = evt.params.data;
@@ -321,6 +331,13 @@ $(document).ready(function () {
         success: success,
         flash_message: false
     });
+}).on('click', '.btn-clear-auth', function () {
+    var the_url = '{% url "api-assets:system-user-auth-info" pk=system_user.id %}';
+    APIUpdateAttr({
+        url: the_url,
+        method: 'DELETE',
+        success_message: "{% trans 'Clear auth' %}" + " {% trans 'success' %}"
+    });
 })
 </script>
 {% endblock %}
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 36220e3219e13e2f33a24be9281b1ef120ef808e..6b02da8fad05df4e52dd43f5833a98e2ab222cc0 100644
GIT binary patch
delta 11602
zcmYk?37k(=AII@)3^UAX%w*q2Gh=5MV=3EUm|?^uyD~&$X^5z?T}yUFO_nKHqM}FE
zC{MD}o<S5LN@FVt5yJEN{_k&kJ@@te=6!zWoO{l>=idAO|MPlIO!fQiB|rCcg#QAE
zBg)Tl%HzIp$2mxOSQXVe&gxo@GaJ|7BuuF7I7bRO&K7(NXVoRAJ}#ay@Ge%u67?PD
zQH;lCn1$7Ft$7rSI*#kyr=W?8G;o{%j7A!q8fH9(kvGP|*dEotBSzq048-wR4yR!d
zuCV$KFq(WT>b&FVk2f)Z`JKBIxM-(vg5yMDBo@c&W&)NVZ-H7!7YxA+td7I62<BoP
zT!vb}w^$NSp!#1yP5ck4f1!qs6U_Wh0EJMD#D}mdYJjFzpNzrePoM_sZ|x&c3muO-
ze+CxAg{c0^Q5W_BYG-y}6rRAccoki3bx@+?l)?zq#5GU@C!*S0p;q1=wG(NmiJroW
zI2h~UOjQ4E*1ijMrC*{Jo@ec+QMdZnMD||;{Z54jzJ;Z+SR?OVN2A(f&3a~2vkmIr
zcfuyv9kqa0Q4=gi-LmDVejAYI)!Bx+po@*zf35He6}sXZsQdwHfFg}OLok^<3bnO;
zPy-J}4V;bYKLvHAvn^kYx;4vDw_-g;;x5!qA9X3{#IvY@E~4($HPnuTa#@<NGM2*H
zs2ypGn&>gq1btEchN0eyY}EO4EnkY7aHG|Kin?I;AO$Vp1Zsspqb9hH+M;`?f&H3#
z3k*Z$rBMUMpw5d&4VYx6p)RNgY9Se@c}AgjZXEJ<xXv63x@XH!1HNk=Hd*~1)QMl9
z20Vnm*9x`3E9hG=Y617KG6p{4J)G6i_wb_TNki>iS1hUbzdr>{JO(wv6s&=BEZ>TH
zCU&Ck-F~c&Cr|_V^D(D^BTze02DOkHsD(E~joS>>FWK@mETZ?n8wGXjgBtK@tc)X3
zC+1lD64XLhp$6Ju`A6nn)U7#)8s{Wx>o1|U{2$aj!F(R8UnIKPnkp2^V=QVbTcajU
zLv3|8)WbIf^>9tWKDYq&I$c9e6y4lgU;=8~mZ)*sq9*Kw+R5Iic`}-_|FIN?Qo(nQ
z^P0H;^_jic`~>TfpGHj>*1~a8umx%-W}zmSkJ_QPa2u{cEo4ATZ{keU`B|uiEp6#~
zh4-k?mTf>?@eb4q52FS=iMpp3EWd8~1Jne?TY2|B4As9fYC*M7SKI`3ehbusQ!Ve}
zQqW5Jpgx-iqVCl=d<f^D-tV_j18zhOxC1rdKGgXKQT=|f`t#;B)P(n}-9L%jO<of9
zZR$3ppnKN@HBblCQ`{A`69ZAVC>wR}mtzcWM)f<6n&1-Z%Kt<y@E+=6E8N<<pdi$E
z<xo3Y7uh-2X+l9KHb-4ys@LFjM|JFjTG$|~AC9{6=TQ^6s0)~eTF@dai>uKO_o5bZ
z0CnECsCkZKgx>#r3fj8csE&bcya~gxFnJkNeFfAG#Goc_jJopXs0Fq~jnfJBko849
zQ!k_5o;Oho+>BcAK8$95=a>q38+Gr?xAndQYMJd(6FzMYK}|RUb*0&;g}sh(_#Qrt
z2hksIp!(l7{gS<f1);00FGE3B7=v0sZPW?PP`4l%wRN4Xy*Jh;ABwt?rKpKEpgtkD
zptkr+^Ls2pehxL>B`l3MlG%Sv9MaC)nkdv2#bQxxh1$~gsD*Y%y(I%I&&F!x(@_1_
zVK3Z*IxoDvXC>4E>Yx^wfDJIEJ^QbY6R6PZHWzE*O00l+s4KgIdKRvuCc1^X!uzO&
z1*LempcLu~YnTbBXP~*|9nEf5-_NBGNQW%*1=KB=gj(2q)P&1WTm3F-;*U|U(|*(h
z$F2Un)!#rZEHKquSS0GaIMf9tpl*TNghCq%=~xaIp`O;wsDZ!206dOb&{^{;YM~EM
zTN>8EYkwHEum-3LYlp+JGd_pAP~+9_=xcYKrWAB<T4NBVU>rVyTHypNjtfycu>v)~
zYSe-@U^U!{y0QzXiGN4+zlmDVJ=C*PBF($CaTuiczbyrAZ5ML@>UA28dS7Q^Fy^8b
z_%7<<*@QJQAB$l`C(rVz^I}owHNp^VgSyak)B<}*z5f{$w3S0p9mk??V${I7s0FP=
zEp#hZ#?Mh#d=d5VUO|mh<T1}ERR0*%=Sw5ht?GqUaX7lqQ^=tZi-DcJ|AMKD+R`V@
z8K_&b0UO~D$j?G2yo+}$Qc(*@N8PIKxE1@OZef{p?^e}E^=pOtXiiRN|Mgm>Scf#!
z7WYBjyG+!*8;-hnQ&FD}xmW@}L~Zc_jKCwPhc_R!llL(cgCF<$mBTRdYN+!YKhFNE
zB9)2;*bB8qub>88iE7`9TG#>9iHA`S;W_g+)UCRKy2AUY{)M}G3kgGAKn2u-8lcWk
zaw+JFQc+ts5Vi6VI1ndV{W;Wtf1n1qiw&^&6W$IrN1dOJ;n)|o&@9v~n1s5JT+}#g
zPz!dqP|$=sQ3HQt4JT1MkdIp6ZPb8~-Mk57QBQGG^u4|qMV^8h=PA^LS=K%gbxU7D
zUHKfOpX=mMC`rZJr~$X4?&(hRYt)IyQNLWyU<&$m_a^FyYVVCxvA@;lqbB+b(+cta
zV>Wq*p8SBt{kXpn_rE>g7`b!^<tOb&G_3CHU3tGJy?@CVg*B+p!FIR<^=rB4Q=U~(
z3uuYjv38dCGBZ$Hor$`zkyh_2cd3|8L0gxj3S47uMQ!0;%a2%o#`3GEiSL>I{k%NL
zj6jW7#*9TRuz{J3u2$BQg5LK5r~&6<Ma)4BunBdGcA}n@BdC67%?suqsQx$2!Wmv3
zj=GQvme;ntX$JRS3rMwwu4aarWsWmvqMqgjs4H1#`EF}JVfE)Nzk^z6K!0x`p{TqZ
z>ip>buGi3ziYinjp|1RC>p0b%ZN7@S!o`-qgL-J!TKyK(z<W>&J&O8(yMnsVYvw;@
zQFnmX5RO_|SxmqxmUpxEzNjsH#_C_dMDmH2Z!x!{7O>ayW9BLI9A?pe8P(72^|W_I
z&zfUV3z=cQVlJ@uCFUB`g0`Zr?0}hvI{yS}g0tog)XoL)siyi!<UH4jqo9U(v$@#;
z)v<>;)SPJTuc8*P6t#eLsQ3M2tKVhydFWdZYM!&^6`$PyyH*i6$eS<<)v=n{5Q~y0
zS)O8fH`LqE7qyU~RzD7P{uFbb)h{tun(t#6^E(@@VmIo<&&{K#pJYFq_pvB>*=Ibf
zpl_k51vIq0t+l6P9Q8ddpKQ)VeU#5bS5N&43L0pyb;v_~iF}XR+6z{H4b|_q<wY~S
zg@mB*y8+cd7S*pF>J~P$`p&2e=w)VPa{pD4Nrg@rZjLu+nF~=@xYF{?sPlGN{+Z?9
zp+2gAM130;9qjchf!fK^sMk9IHQ(cd*?;|#=|_cj;tkY_w_AsUSd9FnnU7k?Rn!8U
zA>Kp*sP{br{jjE42kVf>oBgmQ`8+evr7(z!5<|TKUqr3UwR|q-lIK`ndzjZR0b5c3
zh~*Q^mrx6wgSwD6t$rN_lW#HiSiO7DDvnvjFQ^kQVR5`?20rUeToQw+FKfn`31%zQ
zPIN-;&@+~2S^Ess_^*5IuJfKXtiwPWKCyhCdB{9%UPcY@H`c%)KF$hbBI;H(#Sm<R
z>X(jsm<M7Ej<I|RR^$0|KA@m)w_~UkUqW5spO)V@iwyVLgHd1CB~ksVTYaMC%}@(T
zHM?5<ljcy=JTEHO`|n!AT-1tlQ7c|+`KQ*NXPz=InYU2q`H%4KeJRugaj1pVK`peg
z)we~x4IR<<@Bf+BFx(u28gK$u#rdcKKEyEGjk?E&EWc#=9rW$YbG9?6i4x6ptIt9$
zaNKk3zXqN{g-)Dj9o|8`r<+i(<ssAw*HKq=$MhfR<)LP2)OgVtfpt;mC83_J6x8|Y
zsD6D$vj3WBuvN@Nov;8SaEaBgH@BnOzd#L?huVn~R(~BM$nT)W4H@P2uZ5bhf!PwZ
zlWDFM`l1GU7B#_ioQf}_PAu`fXGK(dP1FGOQNII{tUVjGfa$2WBNsL9KGb=q%yXuD
znSv&`W<Ed-5IoweuY~#>sAV=Xlgu>KLVBQfB-0#ejyI>H7BC+*-y%=fSw%q;ZnTDd
z<{_&;ZTX+5iSAn-I>sBY9O??Ak&k`n5zAMZpQ09a47GqWs0Ez&$^E}!6@^~#8bZx-
zW;L@R@(<lkk~s-A;0|lwk44B2qju~EtcAaz78w4bH-2^0d5Kc*e=}=ngHhyN&>x?%
z`eCROvQaxV$?9{kH2HGNw^@Dw)$b?snpq^<TR>?u2HiM1)~BF{rI$5KGhZ{8VJPiu
zQMcd|)PlY;52Lp9xS4NWH=VIw{}5EaNVCdV-haK{b*w{YEKT0sI*dSF$pj3?`B({8
zpkA-t7>#GJHWnV|ec;5S#z{k+KM1w(Y<vi3VS8LYj{R>-;UX1!Na~LFR@wx$(w4Xw
z(=ZbAt^O`*2LdN}_dE>sB@~50SOzs-460vU)B+OCWV2f}3ceMhCd{^m=~lnc>eu8<
zu2j-hk36e6WnRMS)Zena%0zF(I;j4w%uc8!^hPahs5u(7MAw{dzKlBmb<_%1Oyp*1
zfDftAhv`1lK;NLA`|nXV=@jxm=L&x`z_aYJ9E&=C1~$b-sDTfo#`)FS|1ck*UWc$r
z-gz;TtYbqeG++y}qjl(M`C!Y(paz(3`4V$2YQpWPaSossas;)&d{p~Q)J=6Jd%3?$
zL0c7yIx)(Ow)(neB5HtUmbb&2<egBD=~&eHtIaK_r)&@Eyxvp1c?M!3@`A(nW1TMq
zCxqIc@eS;OPZE78U&lMdGCND#%zt<Jj>-JJNqrHbGNB96ahCFY;vnU=xEbdV-6%hf
z{(k)7SYL?yf15%J8gwLLI`$_z5r2`thgDJU%3VUo??e|nM|mltK5?4RbF+bnCA9UY
zh-ub0fU=Gd7El^jGQaPbPKTc;4MzQ6P#O>+<oCU1rw#eXls~t8FfO$6N!oOT+f_{_
zKS9p7p6{q*?MliLZG5%-YLuFPxpnvzi!n$jcCk)dFp|0(m_mI9ah&o%YwwM<h{l$;
z!*7Uv^n06_N@NlPi0`Rif;x&Y<_XH~75)tI>U@7+Cm(K|E>IIl>?I$Ke-fWjZisvi
zJD*d2iijqL5jrjrZxQ#%`AOxxgWqBk;!WZ!;%`F7@4Ekd>^Wc2sWx$s@?|2L7)kyk
zF^MQa<P#UE{}^YXjzL6oUx}|a>X%UNVEHNX&#YWPcM4BX|1ObBxrCqH|8CafR~$p5
zj$&93%M%f7SHZF0+S9QYQNbD}TKy;3g1TGyowc>cYvjIn-|E(2p5}kkPAqGxy}FfK
zQVwSFaPkI}{~>g|MqU#$3H>tIK%PYC({dv&CUhJ!U!=T>NG7^cSIz3(1r+{6{6d3{
zjvoL1Jx$xgWKsBlD9K{Rk$-AEex~jQvDESp@m2DI<2lNokgO$k5FN=~q7mi2-t+G`
zyX=Gj{ELPQI05St^C-WMM+hAUhzitwK>UZY9}7B+G2{iuqgI%UpHjb+(3kXkcn-G`
ztthwDKh{1)@;!-;Gej)qAj^LsuSfY0%l~Wsf)8kW-13DcRn9AvU&s4amutpj3F=dc
z_bE>x7HKP*64R+{hB{7q`2PMx-5{bbSt2o$a!LH!`i`VLoAP6*V<^#yd@2@aXZlz_
zwdwecd<4$1diNH|L}D!!^RNt2o^nMTkDH0zghPxY&J+I1IsP<vQyxlrJvOvDwU?p%
zHa>~9h%gqkkvvL`9IN&I>&T<=zrGUpl5%@uCozQ3|BLWp{Fb;%JVU=Xh;r6{1a)_a
z#>5mtM=@eC5lr+WbY#<Z$=XYs6?OkB)3``I><F~RlK86C6{qY+93W~Clc*m{T(R~b
z7OA5(Z7+F6=Qd>>?QjdR!}6=t%^+H<QP<yuhC`U33XTZ!zlkI-b&@F$B)XEXwz^g1
z1;-;4-XV@tSJW0V!`dIhGekM!5BdaS46ejugtz}xEFeB2^rL(L(Tq4tWDx~N7AF)O
z+bR55kl=nR|AyPGUm-kb<u9qPLir+5%IZ36{s2}yjK&oOmF61LH!gjuQ|M0JSfY-v
zlFtBBRHFV_oMq?jQYA-W+mW7Xw>H(!*B@Pf2E_ee!}FAj5~;)<Unl<K+^kDoAIjG(
z?`6)!J+w{11dPY0F$G^j9dX26%2j=t_vfhI|F)Em5rM3<rgi=Zt69evDL+R1L*!ds
z0V}Mqi8dYQiFb)<#9XU;g0haI#LK=C-yfzsicT+B@+IZ^#ArM5oT=s?tQ^WBhm&t2
zUZ8F(;ZONx3?sHtjv(mv@3G8Ek+feYbbL+Z6uke1=-q>coxUdSnRQaypYmnm8>>5l
z>#W=l(}-8-7esWRJX<H((TH46cqO7|K_#vun$!00kFnk)%SqFSFDUQB?=S~-v?6K{
zk5YFNx8WniheT~>bEjIVL7@XPMmnvB@walu=;t#xFKBeDQoyLu0|pEnH7aLL_a1@q
zjVi~-H*HXV^X2aSg39E7JndrcD#zo(x>Xm}Pd>MEMgHXVn^OnOuNaU&bN;WhmpT6f
DXY(YG

delta 11471
zcmZwN2Y405`p5B2NJ0rE34|^s^d4&HMG2vo(0et2BB2XHICQCk(xgi<l%OD0FraiP
z(i8*?9R#HJF8BL8`|>>8``mr*o6pR<voo_ZyXPGI|8I@)Ju}+Zb1uYhro$29>p0nQ
zb&%uip<Fq)vX0ZZsN+n;CO86<@OK}_X<y877GTK|)X5(ScbrgMTGDZH;ufror?CoV
zEaf-_v6&f%0gmHw;wfn0?=U$Ya8EeL&C{5U`~^&g_fYL0VF(77cAONL7qek848%H?
zZ;oNqJD{!`iGH{clQX`vlma*HBwz+i#8i09Ou}I5*H9CAj%hGu8OJGvnb03=U~!B>
zO<)kF$5E*Evrq#sL$zOtsTto{Lm@3DVn#fO>fn;)?_g@`uTdSPD(jxljGAa()b%AW
zC00eXuZ_B~=BSm4!B8B9S@CQ1um{e13Yl;#YT)Cjj?baa-$2d$9%>~XqXtS|&T(>J
zFtYtlII4YT)cGE$JMD*>_+UFf4z<-&%CY`xIFp1rUWA$P2h?64K%GBqo-!|)w@`ck
z1S{Yh)C4L-xC2y2ZCPzpyH?2a>U2ik(3cUczh*d#gl06~T!yu%uSPB9LsUmjdAFk=
zRQoKbJIihL5~!_+KrMYO%z!OXE87co-C)#&MtCS_ZziBt;9Jyyn=upaMy)^+YM{SS
z13W^tOU7;MEeJwgpU3KDQ3KYtd^6OR#-Jw97d1i85DFS#B5FxypgNv|nqj=v*PuE~
zL|ynRs>9Rf6;%7XsEIs74V0>)yK*6@w;>F*MdgtGJWdsBP{&TRMqStm)nO0Rg?&*I
z9E;uwqb4u|bKxS?!}trT-FehNS5PZ=6V=ai)QzO6r2g6eEEEcp2=gW!rvd7jXo1?h
zc324eqB@#~>Ubq;CDx)QvI8~oL#T=WfogZw>Q_+x-bS^1h-vixzod{0Q}TJK3k#zf
zlt#_85~`ypt2Z>;ptdRoHL?Dvr5}lUSf``<S&C|xfLfU!F*|NUkCyTb1r2-!wM4g3
z51$Vo+<LgOU^^^|dVMCK2HJv};6YT!f1>(HLJfEob;l1-<2=Ls=v$S*LRDFR6^fG3
zXLJcO8pEj%L=6~^b?_u=C301B2PlA=KpEVE)ln09fg1P?>U#g`?!?NPRZ%MzRo&y>
zadQ%yVNX<t{ZV`BvHC=-&q58b7`6BDsP>ytcf1QV@KMzDCs7l=X!Yx;6?%xF_(}t4
zuR?0LpZ#H|_qzhB!`i40o1;2xi|QZ-)h^cZ!_5h(0cY6xd6=8}D%2<HA=K6#MfKyk
zL_v3Q6SeoRP<s^gzPtAkn2&m0RJ%T?0Y;+kd^~D`Gf)rPT+|IMLG`x|wX%CrD|Zxi
z-3jCdJ<dftaR=4#A!=r?Eg$fKd*^|ufij}*AUkS8#W5>ZLtkuznn-)pihYP$$v&uu
zIS#dQ)6o0<zleecT#m_bt@niEY(QO*h#L3^>dsG~+9#npx{7+p9-$tpyfxjorxa>}
zbx{*;i(&YQISteC{5k6>WW!zNdDMU}O`k}2z~rbq4MI(<2o}Jqm=|Nv4=14}IL(}c
zn%EN5(yv9WP$GJ?SGy_bf<I7Oa2B<6*HGslU@7#i<=#nI)Id?FPssYHCGKqYMt|x<
zQT>g?%s2@(@G{iOtgglW>yEaO2*6XQB|VRt=^fN-^1|vtQSOh(>=-~k65C*X)OE|v
zO{fX%K~3-=mc|QqK0|HyZOc=e^)JeaiX`5{?x;H(i^*^zYM?JrcQ_L@u_dT2_#SnK
zJIsTqr9NTx%jRv%KgATB_pjrc)<Z!{oC$RY1yBQ)Lp?NAPy;tYy-w{=1N5={aLZ3Z
zO>7ZrVhMJBJL-lGqPE~D*2EjAXU<c+uKTpsMRnW-lVcy$ga(_Rqb52FwWRTu{|Pm*
z1E@PYhp~7K`(n#_Zh!kx=Z~Sb<_rev{l7q=0Et_u8D^;OK77ScD^VUbp=ziJMPWf~
zfx0sfs^c-J_ES(3nt^(DR-m?aJ2Ie?gj(6_UfKT_6trZi8@NwpPE1Wb9Cbkz)WcH;
zi(nk4#FgfH)YH5Tb=_f1gMXp!^ag5zcg<(0mGo&yJH7wG6x2aZRL9|{2~|YRv;pSA
zj;K2xff;cus-yYlYE=6~)CbLB)K=ZcJQ&c(aRy*v%#VxEQ=GzH3R=>~W{$@0mPBC$
z`B>!VoU<IY6&Fzxxq+$h4sOEds4ZOE#NDd>sCK7NAI)b`Z`B1mf29fguO)s+LVNcH
zwRZv0?%riZeLjR^FxEpYaeEBGk5E5U;xG-)#I(2+)ovZ8!=F*tAF=vH)Rx|lX8pB9
z`I_32qb_KGnpk_(g*{PsKGYnI+Nw#YJDiDXKNmHTc+|tU0X3lmsOwLoZs;Ov<z9Ix
z=z`?U_@=^8)QO>}4#%N7_zFwoVoZ-GQ0;DD5I#ap)W5mA1({Gc5{~MpI%>l8QRB5h
z_3P<oC;DRui8#~@r=dDbKn=JJ^%NgN@B53P)GweqdV(6zzlD1~6t$(<P<I}NYF8N5
zUj?K;kJEsH_Ns;16?I`B%#EL79h`&e;If^6fTO8Dw|rbnw#~<JCgTwDXIk+uU2N8x
z?*a0E;v8JimY-|nBiieR+5fu~a+2`vVE+!lDC!L`JI*xMp(b_&wNfXoe#5+nTH>du
z8}jMswoi+yhoV+2%<AQ(heRX=EnT#o=wkI)t9wubPd2BUbIrx50alnBQ4`#0o<L3P
zI_folfZna?#QNtT5k^5B)IjY`L)1gk1-)BgergU!wI6GKWiCS9$ZD%6T75ri0;es1
z*}T_@^;bu)Es?6T+i@n;2T5Mkom8=UV>{o|@`J2C0X5NCR$pNCRjBKKu>5Y!P5l_^
z#vgX}xEF?Wam`}pLQSlI)ytrs{z{gwiR!osYNFjxpKNicI~{3GGH05LP!nB=WpJ&>
z5?8IkEz}Y|v3x*RehW}fgSxP$S<j3%TVrp|cS23<2<iqdnRijwzcQ0`bL*Z|6x1--
z%z>If5!9VjG9ytPG(ru~!t9B<ewfuKpst&5`FL}^`3vg$-(30rx5Pth5WvTvCXgQ0
zQ6AI>NHNQowR|LcCxn_n3$v@)$BaV_IMM10%vBhm_kXh`wtEx&R6;%d$59ixVEKEf
zfu5RvG42F{&CF&_)OGo-UJi9#6|*ktr&mkK_)dQc0XWs1g}Pt?s-sm_-)iUgVFB`o
zt^UM(jrz#;>+U|~8BzU|#{i5(eOJ^+t!#Vr{`bG`6x6Ucs^L&`6sp4ss0-$y+I@>!
z(sh>KgSzgBdD1+KYJbJNZ~kir_F(;Whnai04GW?=Dr@!1R<DDF$u~ytx1;69p_XzA
z>U~~`8t_-t50(?C_dQ)tcfuu6=WC*Fs7X)OUxl_LG?5Qc6BvjZXc+4K{v3Vr8*?cZ
zryg&f!0OcfK5~u380zCt{oO_l{K)D)AM<5IJ%xvY8Z0qaVh!qRt^UA#j+&s;%e|8z
z)OC4K9TzquEML>=^{n0swPhVK74|bdan@iwrsl*{bH2IK+=N<*U8sSRtbW<fzd{X=
z@)P%bc1%q@52nCyt5+~<xq6(Ymgt1);1ev2BQO~zU`kwrX>bdw-9FUQd<OI3O{)j<
zF<6j#80yQc9%{lJQ4@->dVjC%|7VsMiTZvXk7~Hk@(EU7hnmRG=6=inZeBnQbld8W
zOrKbH!f8<x&TaKl=zjmJz=>$HquC2}r$aCuPDTwdA2pGssO!G7{8rT4u*2$S%`4_j
zRDTaJ5Bm4v{Z|KtD5S%3s6DP_^^R7LMeoX>cV$omC7Amxe;GBwdscsny3Vh!dtFx4
zYgz#HTGr~z`>zXnkkB2)nnTRd<`mSxvr%`j40YXR)WfwMb^Sh6yJM(<&RP96s(q?{
z?)AZ_c6s};|0<Lup$1h^9Yvy6qLJl$U<mbCRL7$%zZiA>3UecBC3l*~QT<#(_5Tt_
zqi=urx^W&WOh+~N2GzlG)c5{oJAVg5sJ}$L9cc%+9alhI7j3pSJE11l-5h|rex%iB
zpgspYi><KQ+-&YdP2@M!ikvmCnfJ|?s0sKFbO%grW<d>@-|7|2T9$9>);&%P1r5~S
z8jMDDI1ROQvyqQ+XRXz<407|OP!p?%YTq1n$L-9X<{)#lIn7+)mHl5up$ZpnHXoxp
zEd8n5VMX+(9)()623QnZp(Z#MHSj{zbqVG=%WuI@@_W$_lPrG`0~p`ALqSXR*iNJv
z>~<WA>bSVoE1}voGrOCgq1sI`=VAfs%TdqD5zD_YlMiv*XFyL{8sw&+EeJ>5L3J|<
z)p0|!t=YpIh-yE|>J!XasP}uRo!^6*sUNcQS5Y_eU<mJj5C#9w+<$^)M7>_+Fbtbx
zF&vEgz==n7v=i0AU#N-S!HoDX*2d7Gyu#Q4^^7b-P4s)z4Q<4)apzFhKLdrf!`u^n
zPz~cydp-vBB{UHO@e5Rkb5ZS<p(c=E{$w6R?*vf;-m&~k%Lm4}`5YcA6fw)2k!G~n
z5ev~#FRRZ&4Y1Veo6KFP2^~dE^n&>hYQm4qm!`*exI2@Ss17rtIw*wtXsv+i=zY|R
z)JJVuH1a>ED}Qu{m(07U>tA6-)Hj^^jY9R)26euhtH&8YL9fRcJ24m4a22ZK4dxCz
zf7t5htbP-9{Y$F{k8lUbjq0Z)s-H@ziPT0-pe?4<@Bfb}XpaYa6MWsGmTENW!inZ=
z^zONtfEr+()f2G@^<Aik_AcuB_eQ!FMm=;9sOyfR5951}IsD}ZjKfEOv)PBwX<{0&
zjA-a>!LJ|6`Y#++h*`wv<O5Jg4Whoc#ODRMt&}Gdr-<dm=j4VF*(nz!77{rL@Aw~3
z&~cYYPOKrO5+87Zj#@6xcc}k_Qj$oipTiv9J*KQX?L`z&(vE$0eG79H`9YM&VjZHF
z599mT$p>aS)c=FY&qOgIg3$5Y^tFMNdqVCKE>ndg3vrlSYt&Nfc<SQ)Tav%aIlsyJ
z+Nt~BX_Z3OFgtZVN1P_aI?DRKeuVq%ya-|vi^+XKY$V<%bTlXQ417p*CO3d6LUbfT
z2p#$yIY!*3zDes}fkJ8GHs#-mS%i+$L?658V=QcC?@9jXbsSBuCeF8WcW?&L+Ujas
zn)sX0!~4xUd8&>ln#6HSrou%eE8!N5LjG0m{jmtnbZgfWQ(8F@cXO^g5kuL}@<Z_)
zxuW<zG1u~>oJPbr>Q%M>*Qu1FQi@ojvv#bq3!<rKqMV8)FHX4`<$s7#)-J(3fscqw
zoa=-?VR_Uy;M-#*g>uA8&gnR>{clTUE|pkfAZ5LqvxyRvU!jh>lur?j2pw6lCGiF2
zs!CAaPpnhfj<u-Y3m3@0J!(^)N|bn;(Ek6w!;j=_8dmwAlS|3%CAS3s_h?V<*Z-5(
zH)A^DXW|KQ)Y|kwPg(v9C$4cKC#ENK6fhTJXX-1kGDc!P>_-ft9FICuP}UL1HhoAr
z&gvt{{buDZxPf{e{F|7l{nt^AN-1y2{nMEGMyuzdtfM{-c8g9$%44i7W)jbdtkzaJ
z9sQ}_Aes~7sox~l{#P5uk0jZWXvc{p)X|vuh<Z)pD{qD;oN{%_-x4Xf%O=$I4OxbG
zkMep#-;92oYl`m^>xq8k-#tP&zkuAo%D>(JEAKSAZ{<Fm-)>i?;i6jPPZQt2)7wGn
zb&1NvFT{C5M{?{$thBmvMfHc{YjP{F4dF>n$FC`5Ao&tAVne&AKlRTj*C6zb_A%kH
zb2srg^<BhY#FxZbqAM|w_>uE*sG|<$GkB4>N;wyPL%jF){<D!BPU1VPjeT(s>PX83
z_fkJhc^mO3Wgl`n!d;v#<h~@bQolevBtE4+iMU014K~1F;_VUTEwKJKDEQJq$G13`
znB-QSB+AdMd=#e;W652`iG;SV84*lw05-(~sN){xPl!Fl2tvnv;tb_qa2(<7AQ>LA
z2ItHp<c1JSiPgjb@*PmeZpy8Q@x(47(M>xC%{S!65cR0P!jr@uI~Rtz34d~0L{C}%
zOd~20FG%JlI#O;&Jfr**>IkqU|AX8|ZpyijX^B==7yl4lh+x_e!X32NafL``<xt9(
ziR*g*V@YPC(v#3p&l)YJ97g#NRv^;Z1SoosKlu9tk(M??-IVi~@(U~XHbo)wTZv!a
z$!(zSUH^IB0{=Ob>SN-e)u-TVqBoI)7)7M#d<!BOlX-xF<lY|DDWA3aB3y0d{WQo=
zl&3!ZZDahC@c!R_FLI&-5lZAIejw&q!@78q$U&SSA5H`jlZhVWE~7t_iANn>&1#gl
zTX`E6RGD@$(1!8^JEsTO$x9^!hY^3-i5Zj^5N`+_`N(I$)R>v*OZf<XMd;{;|Ket%
zEfGQJ$V?<~t_<;;H^X-g<sFoN)X&9RRPs`JiX*JS1iVKaBbNzh`mB#HS~qaLPx(hV
er@wC5GDUd#TqPqamMXKpU8_!k>rZx_n&Ur#Z6b#N

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 8f95f9291..196c3fb36 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-05-08 17:24+0800\n"
+"POT-Creation-Date: 2018-05-17 11:32+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -17,22 +17,22 @@ msgstr ""
 "Content-Type: text/plain; charset=UTF-8\n"
 "Content-Transfer-Encoding: 8bit\n"
 
-#: assets/api/node.py:96
+#: assets/api/node.py:106
 msgid "New node {}"
 msgstr "新节点 {}"
 
-#: assets/api/node.py:225
+#: assets/api/node.py:242
 msgid "更新节点资产硬件信息: {}"
 msgstr ""
 
-#: assets/api/node.py:238
+#: assets/api/node.py:255
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
 #: assets/forms/asset.py:24 assets/models/asset.py:66 assets/models/user.py:103
 #: assets/templates/assets/asset_detail.html:183
 #: assets/templates/assets/asset_detail.html:191
-#: assets/templates/assets/system_user_detail.html:166 perms/models.py:33
+#: assets/templates/assets/system_user_detail.html:175 perms/models.py:33
 msgid "Nodes"
 msgstr "节点管理"
 
@@ -438,7 +438,7 @@ msgstr "默认资产组"
 msgid "User"
 msgstr "用户"
 
-#: assets/models/label.py:18 assets/models/node.py:15
+#: assets/models/label.py:18 assets/models/node.py:18
 #: assets/templates/assets/label_list.html:15 common/models.py:27
 msgid "Value"
 msgstr "值"
@@ -535,7 +535,7 @@ msgstr "测试系统用户可连接性: {}"
 msgid "定期测试系统用户可连接性: {}"
 msgstr ""
 
-#: assets/tasks.py:401
+#: assets/tasks.py:402
 msgid "推送系统用户到入资产: {}"
 msgstr ""
 
@@ -660,7 +660,7 @@ msgstr "重置"
 #: common/templates/common/ldap_setting.html:60
 #: common/templates/common/terminal_setting.html:103
 #: perms/templates/perms/asset_permission_create_update.html:70
-#: terminal/templates/terminal/session_list.html:120
+#: terminal/templates/terminal/session_list.html:124
 #: terminal/templates/terminal/terminal_update.html:48
 #: users/templates/users/_user.html:47
 #: users/templates/users/forgot_password.html:44
@@ -782,8 +782,8 @@ msgstr "选择节点"
 
 #: assets/templates/assets/admin_user_detail.html:100
 #: assets/templates/assets/asset_detail.html:200
-#: assets/templates/assets/asset_list.html:634
-#: assets/templates/assets/system_user_detail.html:183
+#: assets/templates/assets/asset_list.html:636
+#: assets/templates/assets/system_user_detail.html:192
 #: assets/templates/assets/system_user_list.html:138 templates/_modal.html:22
 #: terminal/templates/terminal/session_detail.html:108
 #: users/templates/users/user_detail.html:362
@@ -963,19 +963,19 @@ msgstr "仅显示当前节点资产"
 msgid "Displays all child node assets"
 msgstr "显示所有子节点资产"
 
-#: assets/templates/assets/asset_list.html:215
+#: assets/templates/assets/asset_list.html:217
 msgid "Create node failed"
 msgstr "创建节点失败"
 
-#: assets/templates/assets/asset_list.html:227
+#: assets/templates/assets/asset_list.html:229
 msgid "Have child node, cancel"
 msgstr "存在子节点，不能删除"
 
-#: assets/templates/assets/asset_list.html:229
+#: assets/templates/assets/asset_list.html:231
 msgid "Have assets, cancel"
 msgstr "存在资产，不能删除"
 
-#: assets/templates/assets/asset_list.html:629
+#: assets/templates/assets/asset_list.html:631
 #: assets/templates/assets/system_user_list.html:133
 #: users/templates/users/user_detail.html:357
 #: users/templates/users/user_detail.html:382
@@ -984,20 +984,20 @@ msgstr "存在资产，不能删除"
 msgid "Are you sure?"
 msgstr "你确认吗?"
 
-#: assets/templates/assets/asset_list.html:630
+#: assets/templates/assets/asset_list.html:632
 msgid "This will delete the selected assets !!!"
 msgstr "删除选择资产"
 
-#: assets/templates/assets/asset_list.html:638
+#: assets/templates/assets/asset_list.html:640
 msgid "Asset Deleted."
 msgstr "已被删除"
 
-#: assets/templates/assets/asset_list.html:639
-#: assets/templates/assets/asset_list.html:644
+#: assets/templates/assets/asset_list.html:641
+#: assets/templates/assets/asset_list.html:646
 msgid "Asset Delete"
 msgstr "删除"
 
-#: assets/templates/assets/asset_list.html:643
+#: assets/templates/assets/asset_list.html:645
 msgid "Asset Deleting failed."
 msgstr "删除失败"
 
@@ -1032,6 +1032,7 @@ msgid "Create gateway"
 msgstr "创建网关"
 
 #: assets/templates/assets/domain_gateway_list.html:87
+#: assets/templates/assets/domain_gateway_list.html:89
 #: common/templates/common/email_setting.html:58
 #: common/templates/common/ldap_setting.html:58
 msgid "Test connection"
@@ -1080,10 +1081,23 @@ msgstr "家目录"
 msgid "Uid"
 msgstr "Uid"
 
-#: assets/templates/assets/system_user_detail.html:174
+#: assets/templates/assets/system_user_detail.html:153
+#: assets/templates/assets/system_user_detail.html:339
+msgid "Clear auth"
+msgstr "清除认证信息"
+
+#: assets/templates/assets/system_user_detail.html:156
+msgid "Clear"
+msgstr "清除"
+
+#: assets/templates/assets/system_user_detail.html:183
 msgid "Add to node"
 msgstr "添加到节点"
 
+#: assets/templates/assets/system_user_detail.html:339
+msgid "success"
+msgstr "成功"
+
 #: assets/templates/assets/system_user_list.html:18
 #: assets/views/system_user.py:45
 msgid "Create system user"
@@ -2113,15 +2127,16 @@ msgstr "时长"
 msgid "Monitor"
 msgstr "监控"
 
-#: terminal/templates/terminal/session_list.html:105
+#: terminal/templates/terminal/session_list.html:106
+#: terminal/templates/terminal/session_list.html:108
 msgid "Terminate"
 msgstr "终断"
 
-#: terminal/templates/terminal/session_list.html:116
+#: terminal/templates/terminal/session_list.html:120
 msgid "Terminate selected"
 msgstr "终断所选"
 
-#: terminal/templates/terminal/session_list.html:136
+#: terminal/templates/terminal/session_list.html:140
 msgid "Terminate task send, waiting ..."
 msgstr "终断任务已发送，请等待"
 
diff --git a/apps/users/models/group.py b/apps/users/models/group.py
index 128fbdbcb..48ed2e949 100644
--- a/apps/users/models/group.py
+++ b/apps/users/models/group.py
@@ -11,7 +11,7 @@ __all__ = ['UserGroup']
 
 class UserGroup(NoDeleteModelMixin):
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
-    name = models.CharField(max_length=128, verbose_name=_('Name'))
+    name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
     comment = models.TextField(blank=True, verbose_name=_('Comment'))
     date_created = models.DateTimeField(auto_now_add=True, null=True,
                                         verbose_name=_('Date created'))

From 46520287d940daee4444e1a217adf609fe4bc7e6 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 17 May 2018 15:26:22 +0800
Subject: [PATCH 042/112] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0=E6=B8=85?=
 =?UTF-8?q?=E7=90=86=E9=87=8D=E5=A4=8D=E7=94=A8=E6=88=B7=E7=BB=84=E8=84=9A?=
 =?UTF-8?q?=E6=9C=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 utils/clean_duplicate_user_groups.py | 70 ++++++++++++++++++++++++++++
 1 file changed, 70 insertions(+)
 create mode 100644 utils/clean_duplicate_user_groups.py

diff --git a/utils/clean_duplicate_user_groups.py b/utils/clean_duplicate_user_groups.py
new file mode 100644
index 000000000..be8b2d9ec
--- /dev/null
+++ b/utils/clean_duplicate_user_groups.py
@@ -0,0 +1,70 @@
+#!/usr/bin/python
+#
+
+import os
+import sys
+from collections import Counter
+import django
+from django.db.models import Count
+
+
+if os.path.exists('../apps'):
+    sys.path.insert(0, '../apps')
+elif os.path.exists('./apps'):
+    sys.path.insert(0, './apps')
+
+os.environ.setdefault("DJANGO_SETTINGS_MODULE", "jumpserver.settings")
+django.setup()
+
+from users.models import UserGroup
+
+
+def clean_group(interactive=True):
+    groups = UserGroup.objects.all()
+    groups_name_list = groups.values_list('name', flat=True)
+    groups_with_info = groups.annotate(Count('users'))\
+        .annotate(Count('asset_permissions'))
+
+    counter = Counter(groups_name_list)
+    for name, count in counter.items():
+        if count == 0:
+            continue
+        groups_duplicate = groups_with_info.filter(name=name)
+        need_clean_count = groups_duplicate.count()
+
+        for group in groups_duplicate:
+            need_clean = True
+            if group.users__count > 0:
+                need_clean = False
+            elif group.asset_permissions__count > 0:
+                need_clean = False
+            elif need_clean_count == 1:
+                need_clean = False
+
+            if need_clean:
+                confirm = True
+                if interactive:
+                    confirm = False
+                    while True:
+                        confirm = input(
+                            "Delete user group <{}>, create at {}? ([y]/n)".format(
+                                name, group.date_created)
+                        )
+                        if confirm.lower() == "y":
+                            confirm = True
+                            break
+                        elif confirm.lower() == "n":
+                            confirm = False
+                            break
+                        else:
+                            print("No valid input")
+                            continue
+                if confirm:
+                    group.delete()
+                    print("Delete success: {}".format(name))
+                    need_clean_count -= 1
+                else:
+                    continue
+
+if __name__ == '__main__':
+    clean_group()

From d615eb80b5672948a59aaa19d92095c5a5912a9c Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 May 2018 18:22:06 +0800
Subject: [PATCH 043/112] =?UTF-8?q?[Update]=20=E4=BC=98=E5=8C=96=E4=BD=BF?=
 =?UTF-8?q?=E7=94=A8storage=20sdk?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/api.py                        | 54 +++++++--------------
 apps/terminal/backends/__init__.py          | 16 +++---
 apps/terminal/backends/command/es.py        | 31 +++---------
 apps/terminal/serializers.py                |  4 +-
 apps/terminal/templatetags/terminal_tags.py |  4 +-
 apps/terminal/views/command.py              |  4 +-
 apps/terminal/views/session.py              |  4 +-
 requirements/requirements.txt               |  3 +-
 8 files changed, 41 insertions(+), 79 deletions(-)

diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index c9bb68ed6..924a30dfd 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -9,6 +9,7 @@ from django.core.cache import cache
 from django.shortcuts import get_object_or_404, redirect
 from django.utils import timezone
 from django.core.files.storage import default_storage
+from django.http.response import HttpResponseRedirectBase
 from django.http import HttpResponseNotFound
 from django.conf import settings
 
@@ -25,7 +26,7 @@ from .serializers import TerminalSerializer, StatusSerializer, \
     SessionSerializer, TaskSerializer, ReplaySerializer
 from .hands import IsSuperUserOrAppUser, IsAppUser, \
     IsSuperUserOrAppUserOrUserReadonly
-from .backends import get_command_store, get_multi_command_store, \
+from .backends import get_command_storage, get_multi_command_storage, \
     SessionCommandSerializer
 
 logger = logging.getLogger(__file__)
@@ -227,8 +228,8 @@ class CommandViewSet(viewsets.ViewSet):
     }
 
     """
-    command_store = get_command_store()
-    multi_command_storage = get_multi_command_store()
+    command_store = get_command_storage()
+    multi_command_storage = get_multi_command_storage()
     serializer_class = SessionCommandSerializer
     permission_classes = (IsSuperUserOrAppUser,)
 
@@ -291,19 +292,20 @@ class SessionReplayViewSet(viewsets.ViewSet):
             url = default_storage.url(path)
             return redirect(url)
         else:
-            configs = settings.TERMINAL_REPLAY_STORAGE.items()
+            configs = settings.TERMINAL_REPLAY_STORAGE
+            configs = [cfg for cfg in configs if cfg['TYPE'] != 'server']
             if not configs:
                 return HttpResponseNotFound()
 
-            for name, config in configs:
-                client = jms_storage.init(config)
-                date = self.session.date_start.strftime('%Y-%m-%d')
-                file_path = os.path.join(date, str(self.session.id) + '.replay.gz')
-                target_path = default_storage.base_location + '/' + path
-
-                if client and client.has_file(file_path) and \
-                        client.download_file(file_path, target_path):
-                    return redirect(default_storage.url(path))
+            date = self.session.date_start.strftime('%Y-%m-%d')
+            file_path = os.path.join(date, str(self.session.id) + '.replay.gz')
+            target_path = default_storage.base_location + '/' + path
+            storage = jms_storage.get_multi_object_storage(configs)
+            ok, err = storage.download(file_path, target_path)
+            if ok:
+                return redirect(default_storage.url(path))
+            else:
+                logger.error("Failed download replay file: {}".format(err))
         return HttpResponseNotFound()
 
 
@@ -313,34 +315,14 @@ class SessionReplayV2ViewSet(SessionReplayViewSet):
     session = None
 
     def retrieve(self, request, *args, **kwargs):
-        session_id = kwargs.get('pk')
-        self.session = get_object_or_404(Session, id=session_id)
-        path = self.gen_session_path()
+        response = super().retrieve(request, *args, **kwargs)
         data = {
             'type': 'guacamole' if self.session.protocol == 'rdp' else 'json',
             'src': '',
         }
-
-        if default_storage.exists(path):
-            url = default_storage.url(path)
-            data['src'] = url
+        if isinstance(response, HttpResponseRedirectBase):
+            data['src'] = response.url
             return Response(data)
-        else:
-            configs = settings.TERMINAL_REPLAY_STORAGE.items()
-            if not configs:
-                return HttpResponseNotFound()
-
-            for name, config in configs:
-                client = jms_storage.init(config)
-                date = self.session.date_start.strftime('%Y-%m-%d')
-                file_path = os.path.join(date, str(self.session.id) + '.replay.gz')
-                target_path = default_storage.base_location + '/' + path
-
-                if client and client.has_file(file_path) and \
-                        client.download_file(file_path, target_path):
-                    url = default_storage.url(path)
-                    data['src'] = url
-                    return Response(data)
         return HttpResponseNotFound()
 
 
diff --git a/apps/terminal/backends/__init__.py b/apps/terminal/backends/__init__.py
index ef1ba56a9..9a1c338f5 100644
--- a/apps/terminal/backends/__init__.py
+++ b/apps/terminal/backends/__init__.py
@@ -7,19 +7,19 @@ TYPE_ENGINE_MAPPING = {
 }
 
 
-def get_command_store():
-    params = settings.COMMAND_STORAGE
-    engine_class = import_module(params['ENGINE'])
-    storage = engine_class.CommandStore(params)
+def get_command_storage():
+    config = settings.COMMAND_STORAGE
+    engine_class = import_module(config['ENGINE'])
+    storage = engine_class.CommandStore(config)
     return storage
 
 
-def get_terminal_command_store():
+def get_terminal_command_storages():
     storage_list = {}
     for name, params in settings.TERMINAL_COMMAND_STORAGE.items():
         tp = params['TYPE']
         if tp == 'server':
-            storage = get_command_store()
+            storage = get_command_storage()
         else:
             if not TYPE_ENGINE_MAPPING.get(tp):
                 continue
@@ -29,9 +29,9 @@ def get_terminal_command_store():
     return storage_list
 
 
-def get_multi_command_store():
+def get_multi_command_storage():
     from .command.multi import CommandStore
-    storage_list = get_terminal_command_store().values()
+    storage_list = get_terminal_command_storages().values()
     storage = CommandStore(storage_list)
     return storage
 
diff --git a/apps/terminal/backends/command/es.py b/apps/terminal/backends/command/es.py
index 9c75fc978..dde8e1e95 100644
--- a/apps/terminal/backends/command/es.py
+++ b/apps/terminal/backends/command/es.py
@@ -1,41 +1,22 @@
 # -*- coding: utf-8 -*-
 #
 
-from jms_es_sdk import ESStore
+from jms_storage.es import ESStorage
 from .base import CommandBase
 from .models import AbstractSessionCommand
 
 
-class CommandStore(CommandBase, ESStore):
+class CommandStore(ESStorage, CommandBase):
     def __init__(self, params):
-        hosts = params.get('HOSTS', ['http://localhost'])
-        ESStore.__init__(self, hosts=hosts)
-
-    def save(self, command):
-        return ESStore.save(self, command)
-
-    def bulk_save(self, commands):
-        return ESStore.bulk_save(self, commands)
+        super().__init__(params)
 
     def filter(self, date_from=None, date_to=None,
                user=None, asset=None, system_user=None,
                input=None, session=None):
 
-        data = ESStore.filter(
-            self, date_from=date_from, date_to=date_to,
-            user=user, asset=asset, system_user=system_user,
-            input=input, session=session
-        )
+        data = super().filter(date_from=date_from, date_to=date_to,
+                              user=user, asset=asset, system_user=system_user,
+                              input=input, session=session)
         return AbstractSessionCommand.from_multi_dict(
             [item["_source"] for item in data["hits"] if item]
         )
-
-    def count(self, date_from=None, date_to=None,
-              user=None, asset=None, system_user=None,
-              input=None, session=None):
-        amount = ESStore.count(
-            self, date_from=date_from, date_to=date_to,
-            user=user, asset=asset, system_user=system_user,
-            input=input, session=session
-        )
-        return amount
diff --git a/apps/terminal/serializers.py b/apps/terminal/serializers.py
index 8c40315a7..c18c5023d 100644
--- a/apps/terminal/serializers.py
+++ b/apps/terminal/serializers.py
@@ -9,7 +9,7 @@ from rest_framework_bulk.serializers import BulkListSerializer
 from common.mixins import BulkSerializerMixin
 from common.utils import get_object_or_none
 from .models import Terminal, Status, Session, Task
-from .backends import get_multi_command_store
+from .backends import get_multi_command_storage
 
 
 class TerminalSerializer(serializers.ModelSerializer):
@@ -47,7 +47,7 @@ class TerminalSerializer(serializers.ModelSerializer):
 
 class SessionSerializer(serializers.ModelSerializer):
     command_amount = serializers.SerializerMethodField()
-    command_store = get_multi_command_store()
+    command_store = get_multi_command_storage()
 
     class Meta:
         model = Session
diff --git a/apps/terminal/templatetags/terminal_tags.py b/apps/terminal/templatetags/terminal_tags.py
index cd7120fec..c5643c67b 100644
--- a/apps/terminal/templatetags/terminal_tags.py
+++ b/apps/terminal/templatetags/terminal_tags.py
@@ -1,10 +1,10 @@
 # ~*~ coding: utf-8 ~*~
 
 from django import template
-from ..backends import get_multi_command_store
+from ..backends import get_multi_command_storage
 
 register = template.Library()
-command_store = get_multi_command_store()
+command_store = get_multi_command_storage()
 
 
 @register.filter
diff --git a/apps/terminal/views/command.py b/apps/terminal/views/command.py
index 0af0b5bfd..748261414 100644
--- a/apps/terminal/views/command.py
+++ b/apps/terminal/views/command.py
@@ -9,10 +9,10 @@ from django.utils.translation import ugettext as _
 from common.mixins import DatetimeSearchMixin, AdminUserRequiredMixin
 from ..models import Command
 from .. import utils
-from ..backends import get_multi_command_store
+from ..backends import get_multi_command_storage
 
 __all__ = ['CommandListView']
-common_storage = get_multi_command_store()
+common_storage = get_multi_command_storage()
 
 
 class CommandListView(DatetimeSearchMixin, AdminUserRequiredMixin, ListView):
diff --git a/apps/terminal/views/session.py b/apps/terminal/views/session.py
index 3b66baff7..71caeae48 100644
--- a/apps/terminal/views/session.py
+++ b/apps/terminal/views/session.py
@@ -10,7 +10,7 @@ from django.conf import settings
 from users.utils import AdminUserRequiredMixin
 from common.mixins import DatetimeSearchMixin
 from ..models import Session, Command, Terminal
-from ..backends import get_multi_command_store
+from ..backends import get_multi_command_storage
 from .. import utils
 
 
@@ -19,7 +19,7 @@ __all__ = [
     'SessionDetailView',
 ]
 
-command_store = get_multi_command_store()
+command_store = get_multi_command_storage()
 
 
 class SessionListView(AdminUserRequiredMixin, DatetimeSearchMixin, ListView):
diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index e0ecc634e..5fb844181 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -40,7 +40,6 @@ itsdangerous==0.24
 itypes==1.1.0
 Jinja2==2.10
 jmespath==0.9.3
-jms-es-sdk
 kombu==4.0.2
 ldap3==2.4
 MarkupSafe==1.0
@@ -62,7 +61,7 @@ pytz==2017.3
 PyYAML==3.12
 redis==2.10.6
 requests==2.18.4
-jms-storage==0.0.13
+jms-storage==0.0.15
 s3transfer==0.1.13
 simplejson==3.13.2
 six==1.11.0

From 092b33d4d1ca10a3dbe7c9c93b8db467796cdce2 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 May 2018 19:30:15 +0800
Subject: [PATCH 044/112] =?UTF-8?q?[Update]=20=E6=9B=B4=E6=96=B0requiremen?=
 =?UTF-8?q?ts?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 requirements/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index 5fb844181..f3905f018 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -61,7 +61,7 @@ pytz==2017.3
 PyYAML==3.12
 redis==2.10.6
 requests==2.18.4
-jms-storage==0.0.15
+jms-storage==0.0.16
 s3transfer==0.1.13
 simplejson==3.13.2
 six==1.11.0

From dc1d228e07e5b17022044f4bb0984372c954761d Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 22 May 2018 19:44:13 +0800
Subject: [PATCH 045/112] =?UTF-8?q?[Update]=20=E6=9B=B4=E6=96=B0requiremen?=
 =?UTF-8?q?ts?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 requirements/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index f3905f018..af682f5ca 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -61,7 +61,7 @@ pytz==2017.3
 PyYAML==3.12
 redis==2.10.6
 requests==2.18.4
-jms-storage==0.0.16
+jms-storage==0.0.17
 s3transfer==0.1.13
 simplejson==3.13.2
 six==1.11.0

From f8384973a1be85cac0df6e63630f1ec15a6be386 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 23 May 2018 15:15:27 +0800
Subject: [PATCH 046/112] =?UTF-8?q?[Update]=20=E8=B0=83=E6=95=B4Luna?=
 =?UTF-8?q?=E7=9A=84=E6=A0=91=E5=BD=A2=E7=BB=93=E6=9E=84?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/models/node.py |  8 ++++++--
 apps/perms/api.py          |  9 +++++++--
 apps/perms/utils.py        | 34 +++++++++++++++++++++++++++++++---
 3 files changed, 44 insertions(+), 7 deletions(-)

diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 5ee97af9b..fed8980ed 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -61,10 +61,14 @@ class Node(models.Model):
         return child
 
     def get_children(self):
-        return self.__class__.objects.filter(key__regex=r'^{}:[0-9]+$'.format(self.key))
+        return self.__class__.objects.filter(
+            key__regex=r'^{}:[0-9]+$'.format(self.key)
+        )
 
     def get_all_children(self):
-        return self.__class__.objects.filter(key__startswith='{}:'.format(self.key))
+        return self.__class__.objects.filter(
+            key__startswith='{}:'.format(self.key)
+        )
 
     def get_family(self):
         children = list(self.get_all_children())
diff --git a/apps/perms/api.py b/apps/perms/api.py
index be69d6158..8f663a0f4 100644
--- a/apps/perms/api.py
+++ b/apps/perms/api.py
@@ -6,7 +6,7 @@ from rest_framework.views import APIView, Response
 from rest_framework.generics import ListAPIView, get_object_or_404, RetrieveUpdateAPIView
 from rest_framework import viewsets
 
-from common.utils import set_or_append_attr_bulk
+from common.utils import set_or_append_attr_bulk, get_object_or_none
 from users.permissions import IsValidUser, IsSuperUser, IsSuperUserOrAppUser
 from .utils import AssetPermissionUtil
 from .models import AssetPermission
@@ -147,8 +147,13 @@ class UserGrantedNodeAssetsApi(ListAPIView):
             user = get_object_or_404(User, id=user_id)
         else:
             user = self.request.user
-        node = get_object_or_404(Node, id=node_id)
         nodes = AssetPermissionUtil.get_user_nodes_with_assets(user)
+        node = get_object_or_none(Node, id=node_id)
+
+        if not node:
+            unnode = [node for node in nodes if node.name == 'Unnode']
+            node = unnode[0] if unnode else None
+
         assets = nodes.get(node, [])
         for asset, system_users in assets.items():
             asset.system_users_granted = system_users
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index b23b1cb7c..abcd2e17e 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -13,7 +13,6 @@ logger = get_logger(__file__)
 
 
 class AssetPermissionUtil:
-
     @staticmethod
     def get_user_permissions(user):
         return AssetPermission.objects.all().valid().filter(users=user)
@@ -122,6 +121,24 @@ class AssetPermissionUtil:
                 nodes[node].update(set(_system_users))
         return nodes
 
+    @classmethod
+    def get_user_nodes_inherit_group(cls, user):
+        nodes = defaultdict(set)
+        groups = user.groups.all()
+        for group in groups:
+            _nodes = cls.get_user_group_nodes(group)
+            for node, system_users in _nodes.items():
+                nodes[node].update(set(system_users))
+        return nodes
+
+    @classmethod
+    def get_user_nodes(cls, user):
+        nodes = cls.get_user_nodes_direct(user)
+        nodes_inherit = cls.get_user_nodes_inherit_group(user)
+        for node, system_users in nodes_inherit.items():
+            nodes[node].update(set(system_users))
+        return nodes
+
     @classmethod
     def get_user_nodes_assets_direct(cls, user):
         assets = defaultdict(set)
@@ -164,15 +181,26 @@ class AssetPermissionUtil:
         :param user:
         :return: {node: {asset: set(su1, su2)}}
         """
+        from assets.models import Node
+        unnode = Node(value='Unnode')
         nodes = defaultdict(dict)
+        for _node in cls.get_user_nodes(user):
+            children = _node.get_family()
+            for node in children:
+                nodes[node] = defaultdict(set)
         _assets = cls.get_user_assets(user)
         for asset, _system_users in _assets.items():
             _nodes = asset.get_nodes()
+            in_node = False
             for node in _nodes:
-                if asset in nodes[node]:
+                if node in nodes:
+                    in_node = True
                     nodes[node][asset].update(_system_users)
+            if not in_node:
+                if unnode in nodes:
+                    nodes[unnode][asset].update(_system_users)
                 else:
-                    nodes[node][asset] = _system_users
+                    nodes[unnode][asset] = _system_users
         return nodes
 
     @classmethod

From fe52c57a1133976c585d9db0acf0331c142a8c6e Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 24 May 2018 11:13:22 +0800
Subject: [PATCH 047/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E6=8E=88?=
 =?UTF-8?q?=E6=9D=83uitls=E7=9A=84=E9=94=99=E8=AF=AF?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/utils.py | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index abcd2e17e..36349b982 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -197,10 +197,8 @@ class AssetPermissionUtil:
                     in_node = True
                     nodes[node][asset].update(_system_users)
             if not in_node:
-                if unnode in nodes:
-                    nodes[unnode][asset].update(_system_users)
-                else:
-                    nodes[unnode][asset] = _system_users
+                nodes[unnode] = defaultdict(set)
+                nodes[unnode][asset].update(_system_users)
         return nodes
 
     @classmethod

From c529061ee0ade5494d4f1e0947f8e12c3ef41792 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 24 May 2018 11:18:20 +0800
Subject: [PATCH 048/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E6=8E=88?=
 =?UTF-8?q?=E6=9D=83uitls=E7=9A=84=E9=94=99=E8=AF=AF?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/utils.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index 36349b982..7899cc5cb 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -188,6 +188,7 @@ class AssetPermissionUtil:
             children = _node.get_family()
             for node in children:
                 nodes[node] = defaultdict(set)
+        nodes[unnode] = defaultdict(set)
         _assets = cls.get_user_assets(user)
         for asset, _system_users in _assets.items():
             _nodes = asset.get_nodes()
@@ -197,7 +198,6 @@ class AssetPermissionUtil:
                     in_node = True
                     nodes[node][asset].update(_system_users)
             if not in_node:
-                nodes[unnode] = defaultdict(set)
                 nodes[unnode][asset].update(_system_users)
         return nodes
 

From 486793ddcddfc1884f9c6e9d913fe57414191d36 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Thu, 24 May 2018 12:41:48 +0800
Subject: [PATCH 049/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E5=8F=96?=
 =?UTF-8?q?=E6=B6=88LDAP=E8=AE=A4=E8=AF=81=E4=B8=8D=E6=88=90=E5=8A=9Fbug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/common/signals_handler.py | 2 +-
 apps/common/views.py           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/common/signals_handler.py b/apps/common/signals_handler.py
index df2ea5a5e..bff3a2193 100644
--- a/apps/common/signals_handler.py
+++ b/apps/common/signals_handler.py
@@ -34,7 +34,7 @@ def refresh_all_settings_on_django_ready(sender, **kwargs):
 def ldap_auth_on_changed(sender, enabled=True, **kwargs):
     if enabled:
         logger.debug("Enable LDAP auth")
-        if settings.AUTH_LDAP_BACKEND not in settings.AUTH_LDAP_BACKEND:
+        if settings.AUTH_LDAP_BACKEND not in settings.AUTHENTICATION_BACKENDS:
             settings.AUTHENTICATION_BACKENDS.insert(0, settings.AUTH_LDAP_BACKEND)
 
     else:
diff --git a/apps/common/views.py b/apps/common/views.py
index ee7a2225f..c701df407 100644
--- a/apps/common/views.py
+++ b/apps/common/views.py
@@ -82,7 +82,7 @@ class LDAPSettingView(AdminUserRequiredMixin, TemplateView):
         if form.is_valid():
             form.save()
             if "AUTH_LDAP" in form.cleaned_data:
-                ldap_auth_enable.send(form.cleaned_data["AUTH_LDAP"])
+                ldap_auth_enable.send(sender=self.__class__, enabled=form.cleaned_data["AUTH_LDAP"])
             msg = _("Update setting successfully, please restart program")
             messages.success(request, msg)
             return redirect('settings:ldap-setting')

From 5a7192e035e3f6b1c08bf909641f1063d36e681d Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 24 May 2018 13:30:15 +0800
Subject: [PATCH 050/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E5=BF=83?=
 =?UTF-8?q?=E8=B7=B3bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/api.py | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index 924a30dfd..fbbae5e22 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -109,10 +109,9 @@ class StatusViewSet(viewsets.ModelViewSet):
     task_serializer_class = TaskSerializer
 
     def create(self, request, *args, **kwargs):
-        if self.request.query_params.get("from_guacamole", None):
-            return Response({"msg": "From guacamole, not support now"})
-
-        self.handle_sessions()
+        from_gua = self.request.query_params.get("from_guacamole", None)
+        if not from_gua:
+            self.handle_sessions()
         super().create(request, *args, **kwargs)
         tasks = self.request.user.terminal.task_set.filter(is_finished=False)
         serializer = self.task_serializer_class(tasks, many=True)

From b9d0d89f66f6b578b9112a5d64c532cd66918696 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 24 May 2018 13:32:20 +0800
Subject: [PATCH 051/112] =?UTF-8?q?[Update]=20=E6=9B=B4=E6=94=B9=E7=89=88?=
 =?UTF-8?q?=E6=9C=AC=E5=A5=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/__init__.py            | 2 +-
 apps/templates/_footer.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/__init__.py b/apps/__init__.py
index 90767858b..c6491d9fa 100644
--- a/apps/__init__.py
+++ b/apps/__init__.py
@@ -2,4 +2,4 @@
 # -*- coding: utf-8 -*-
 #
 
-__version__ = "1.3.0"
+__version__ = "1.3.1"
diff --git a/apps/templates/_footer.html b/apps/templates/_footer.html
index 8a723646d..10e607fa3 100644
--- a/apps/templates/_footer.html
+++ b/apps/templates/_footer.html
@@ -1,6 +1,6 @@
 <div class="footer fixed">
     <div class="pull-right">
-        Version <strong>1.3.0-{% include '_build.html' %}</strong> GPLv2.
+        Version <strong>1.3.1-{% include '_build.html' %}</strong> GPLv2.
         <img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg">
     </div>
     <div>

From bff3868b8fbf9a5cf30bf50e45c5e97785162db3 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 25 May 2018 15:23:52 +0800
Subject: [PATCH 052/112] =?UTF-8?q?[Update]=20=E7=BB=9F=E4=B8=80requiremen?=
 =?UTF-8?q?ts=E7=89=88=E6=9C=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 requirements/requirements.txt | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index af682f5ca..bcba2627c 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -3,10 +3,10 @@ ansible==2.4.2.0
 asn1crypto==0.24.0
 bcrypt==3.1.4
 billiard==3.5.0.3
-boto3==1.6.4
-botocore==1.9.4
+boto3==1.6.5
+botocore==1.9.5
 celery==4.1.0
-certifi==2017.11.5
+certifi==2018.1.18
 cffi==1.11.2
 chardet==3.0.4
 configparser==3.5.0
@@ -31,7 +31,7 @@ ecdsa==0.13
 elasticsearch==6.1.1
 enum-compat==0.0.2
 ephem==3.7.6.0
-eventlet==0.21.0
+eventlet==0.22.1
 ForgeryPy==0.1
 greenlet==0.4.12
 gunicorn==19.7.1
@@ -57,7 +57,7 @@ pyotp==2.2.6
 PyNaCl==1.2.1
 python-dateutil==2.6.1
 python-gssapi==0.6.4
-pytz==2017.3
+pytz==2018.3
 PyYAML==3.12
 redis==2.10.6
 requests==2.18.4

From a96bda8ca94c5566d3866a3df62a43fdacf1486d Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 25 May 2018 17:26:57 +0800
Subject: [PATCH 053/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E6=A0=91?=
 =?UTF-8?q?=E5=BD=A2=E7=BB=93=E6=9E=84?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/models/node.py  | 41 ++++++++++++++++++++++++-------------
 apps/jumpserver/settings.py |  6 +++++-
 2 files changed, 32 insertions(+), 15 deletions(-)

diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index fed8980ed..b63daf513 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -65,15 +65,25 @@ class Node(models.Model):
             key__regex=r'^{}:[0-9]+$'.format(self.key)
         )
 
+    def get_children_with_self(self):
+        return self.__class__.objects.filter(
+            key__regex=r'^{0}$|^{0}:[0-9]+$'.format(self.key)
+        )
+
     def get_all_children(self):
         return self.__class__.objects.filter(
             key__startswith='{}:'.format(self.key)
         )
 
+    def get_all_children_with_self(self):
+        return self.__class__.objects.filter(
+            key__regex=r'^{0}$|^{0}:'.format(self.key)
+        )
+
     def get_family(self):
-        children = list(self.get_all_children())
-        children.append(self)
-        return children
+        ancestor = self.ancestor
+        children = self.get_all_children()
+        return [*tuple(ancestor), self, *tuple(children)]
 
     def get_assets(self):
         from .asset import Asset
@@ -88,7 +98,7 @@ class Node(models.Model):
         if self.is_root():
             assets = Asset.objects.all()
         else:
-            nodes = self.get_family()
+            nodes = self.get_all_children_with_self()
             assets = Asset.objects.filter(nodes__in=nodes).distinct()
         return assets
 
@@ -108,18 +118,15 @@ class Node(models.Model):
 
     @property
     def parent(self):
-        if self.key == "0":
-            return self.__class__.root()
-        elif not self.key.startswith("0"):
+        if self.key == "0" or not self.key.startswith("0"):
             return self.__class__.root()
 
         parent_key = ":".join(self.key.split(":")[:-1])
         try:
             parent = self.__class__.objects.get(key=parent_key)
+            return parent
         except Node.DoesNotExist:
             return self.__class__.root()
-        else:
-            return parent
 
     @parent.setter
     def parent(self, parent):
@@ -127,14 +134,20 @@ class Node(models.Model):
 
     @property
     def ancestor(self):
-        if self.parent == self.__class__.root():
+        _key = self.key.split(':')
+        ancestor_keys = []
+
+        if self.is_root():
             return [self.__class__.root()]
-        else:
-            return [self.parent, *tuple(self.parent.ancestor)]
+
+        for i in range(len(_key)-1):
+            _key.pop()
+            ancestor_keys.append(':'.join(_key))
+        return self.__class__.objects.filter(key__in=ancestor_keys)
 
     @property
-    def ancestor_with_node(self):
-        ancestor = self.ancestor
+    def ancestor_with_self(self):
+        ancestor = list(self.ancestor)
         ancestor.insert(0, self)
         return ancestor
 
diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index af72292f7..b81188b9d 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -229,7 +229,11 @@ LOGGING = {
         'django_auth_ldap': {
             'handlers': ['console', 'ansible_logs'],
             'level': "INFO",
-        }
+        },
+        # 'django.db': {
+        #     'handlers': ['console', 'file'],
+        #     'level': 'DEBUG'
+        # }
     }
 }
 

From 3f4b5ad465aad1f446eb402ac1de10d7e382ee04 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 25 May 2018 17:28:53 +0800
Subject: [PATCH 054/112] [Update] Merge

---
 apps/perms/api.py   |  2 +-
 apps/perms/utils.py | 49 ++++++++++++++++++++++++++++-----------------
 2 files changed, 32 insertions(+), 19 deletions(-)

diff --git a/apps/perms/api.py b/apps/perms/api.py
index 8f663a0f4..e104cc1c4 100644
--- a/apps/perms/api.py
+++ b/apps/perms/api.py
@@ -41,7 +41,7 @@ class AssetPermissionViewSet(viewsets.ModelViewSet):
             asset = get_object_or_404(Asset, pk=asset_id)
             permissions = set(queryset.filter(assets=asset))
             for node in asset.nodes.all():
-                inherit_nodes.update(set(node.ancestor_with_node))
+                inherit_nodes.update(set(node.ancestor_with_self))
         elif node_id:
             node = get_object_or_404(Node, pk=node_id)
             permissions = set(queryset.filter(nodes=node))
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index abcd2e17e..d45f0f3d7 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -8,10 +8,35 @@ import copy
 
 from common.utils import set_or_append_attr_bulk, get_logger
 from .models import AssetPermission
+from .hands import Node
 
 logger = get_logger(__file__)
 
 
+class Tree:
+    def __init__(self):
+        self.__all_nodes = list(Node.objects.all())
+        self.nodes = defaultdict(dict)
+        self.root = Node.root()
+
+    def add_node(self, node):
+        if node in self.nodes:
+            return
+        else:
+            self.nodes[node] = defaultdict(set)
+        if node.key == self.root.key:
+            return
+        parent_key = ':'.join(node.key.split(':')[:-1])
+        for n in self.__all_nodes:
+            if n.key == parent_key:
+                self.add_node(n)
+                break
+
+    def add_nodes(self, nodes):
+        for node in nodes:
+            self.add_node(node)
+
+
 class AssetPermissionUtil:
     @staticmethod
     def get_user_permissions(user):
@@ -181,27 +206,15 @@ class AssetPermissionUtil:
         :param user:
         :return: {node: {asset: set(su1, su2)}}
         """
-        from assets.models import Node
-        unnode = Node(value='Unnode')
-        nodes = defaultdict(dict)
-        for _node in cls.get_user_nodes(user):
-            children = _node.get_family()
-            for node in children:
-                nodes[node] = defaultdict(set)
+        tree = Tree()
         _assets = cls.get_user_assets(user)
         for asset, _system_users in _assets.items():
             _nodes = asset.get_nodes()
-            in_node = False
+            tree.add_nodes(_nodes)
+
             for node in _nodes:
-                if node in nodes:
-                    in_node = True
-                    nodes[node][asset].update(_system_users)
-            if not in_node:
-                if unnode in nodes:
-                    nodes[unnode][asset].update(_system_users)
-                else:
-                    nodes[unnode][asset] = _system_users
-        return nodes
+                tree.nodes[node][asset].update(_system_users)
+        return tree.nodes
 
     @classmethod
     def get_system_user_assets(cls, system_user):
@@ -256,7 +269,7 @@ class NodePermissionUtil:
 
         nodes = copy.deepcopy(nodes_directed)
         for node, system_users in nodes_directed.items():
-            for child in node.get_family():
+            for child in node.get_all_children_with_self():
                 nodes[child].update(system_users)
         return nodes
 

From 9b4b9e69008f092e64c2cab1a8291b964878b915 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 25 May 2018 18:13:48 +0800
Subject: [PATCH 055/112] =?UTF-8?q?[Update]=20=E5=8F=91=E9=80=81=E9=82=AE?=
 =?UTF-8?q?=E4=BB=B6=E5=A2=9E=E5=8A=A0=E7=94=A8=E6=88=B7=E5=90=8D=E6=98=BE?=
 =?UTF-8?q?=E7=A4=BA?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/i18n/zh/LC_MESSAGES/django.mo | Bin 33388 -> 32508 bytes
 apps/i18n/zh/LC_MESSAGES/django.po |  24 ++++++++++++++----------
 apps/users/utils.py                |   3 +++
 3 files changed, 17 insertions(+), 10 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 6b02da8fad05df4e52dd43f5833a98e2ab222cc0..b764117a297c394ce044245ec712ffa3ee379e26 100644
GIT binary patch
delta 11484
zcmZ|V33N?Y-^cMIi5L<|Bt*<1NN5Z}j1fgqH6^5IO)-xl2vO8EYt5~pp~jkN>p@Me
zd8(mWLrW>Dw2D^IYEjht{oV8TuD;J&?^)}g&))yN&))m&bI!fj)92R-K2M%z^IQ(~
zo9l4o^KqOaxHH6Y4pHt<LRrU2k9C|WI0(n!6Fig6ao#MC)RQYZPJS$1$#IHfZA`%S
zSO>E(2G5$$(4TrtoOeEtQ;|Xr63tKzDQ0^Nrrs5OaWHCu!!Q(QV@_O!g>eH0;Bm{J
z!;;jmpw9EH>^OcHiJGr8hBzL_DNi9EiA2net<6rDmwF%6LPla9oQh>}K4!-QSOJfs
z7Vr?m(65TyKLRyz8C3rlFc9M~i20pF3gOrsH9&VYU^=R!2Q~3DYhQp`=qgmdjhGAf
zqWT}h5Il$4nH#8E<X6>k3SlACPRFCC0EGk!nm7eDaH@6ahg$hy)J|lgCVCr-;cVn~
zI-5`fUbFUFs4KmXTKM1Ao-^Lv`e4*J1>)I%4P1gm1Xe-a>t@y=$$Z`HZVo`*`{7s<
z$D$VS8S38dN8PexsD2la=hV4|x}dOX?gAsKvH!Z_VwNb28la+C9UD=vi`v>rsDWpr
z240Tp{~_v1Ke76L)U7#&x)tX!AKpUk^fT0X0iNpaKw+qRRRpyoHBb}2f(5WGYRd+q
zCVB%k!DLjwc^HbzQRi>9`VrKG-&y`=)CE66Ex_Yf!(Cw@YJ#GuEs91B9E-ZrnpUrm
z8n7km%G#p_>~ChG`j0~`WGZT+MW~%yiD9?}xn&;bC<P68(mGsp8=PNJC;ovN@G<H{
zKW?}d7=hjeqZSa2kysh^aJEM8!;5-0GEqA>8a2)|4AA?(l!7Ms5X<2ft6xDq#Wzv+
z?hckkzgq4<6;J~wpmw4GY9T48g?C1c+Y8k%-RhaBamQc|z5kOaXk{}n5*MOQ+@%h9
z7_~!Rq6WHP^&iaJs9W_2HI9F6ckA<^w!92#oNB0kiKv}viXMG5CQ;B<rlBUzL~YR+
zEP!)R57&p-0r#L@ry>dNM9okO?1UP)FKV2Ds0oLou6QD9o~c*{=O(cKeAhTTNyt5@
z&+Pr?PpA)=oP3jL!kX9w`=EAWGiriQQ49DSci<V+LZ&CW6Tgc(KMS?6Bj%|@_Fr3e
zfrPI325N;*Py_ncb?<2?s$SIUWl<AUMcw<F*8U1=L2Xc1+zs_i^g%5+!|EeZ3z_7h
zke|X#)V*4X;kX6$et&@)@H^CiH&6rqh8o}zs-Mq`Za%MB1T|qas=Wg08@&$d6Sgzz
z_4IV3pn-;>u4FW7CuXAV(Q?$iKZd385~`nXJ$Hh9sGTW{T3|HlVJnZipm@}H4N*J$
z8fxddA?JCV-V}6&8P+fs)o~JPVY4hhA9dx6Q4_62UBL#_g7#q{JdJvmZle}*7j@o4
z)I7fR-3toAAie)l6x6XYYQkEmEoxx-#;6@=iJG`8YHNF=`VT~H@o>~bHW~FyZ9~01
zhfoW=gj(=#SQ4EE$ox(e1#ML$ER1c;!Kevmm~&7QE<j!Ba@4|hV>F(^Quqk9#l>E7
z`$w6vsD;I&Zdn8L=*nAC&;r_`Cg_E_1?i}*8)5Aeu`>0!s4F>wes}@(3Hd#0i|?D+
z8oCz{gc>g&Mqn}2yww}B|Js_mBy>edsIBdX+S0+Om5xQdCDX0G9Al_&K=uC?U&rrJ
z=hbTD+61#xZ--i7C#-@)tbKJO_Fu2tRuZvz0*m6`s4I(T>^=)c(Vuz=)D^~{78Z}X
z1@%x@m|}K9ZFO&}4>QMDehO-*vpiN<hPnmoP*?CNYQm$atv-pG_$umkx`Ud)_hmPq
z7nLuDT3BV&!V;}L8FfLOP`98Pa+e&>C<=P$_Mx8EOQ?bW#2o0`#9dH;SqQbzvZyVs
zY55kY1$4xmI0y&g2pojBP~&xY#cl77+!~LQMnNkcg3;(ft#CEw#=WSWIF1_NG-`(~
zU<}?wU0G;Tci;l3{*kB!MWddb+NfKbi~%?h^XmN{=`HYZp|)%Z>Y?0(+VTS!fG4pE
zUc?tLq?voq6U;`a^O7(SyP$S*0O}zeh1!{M=2Q&U`#*<*I<7$P#F&fv0n~y{pq_y%
z7>U25t~ji@`|w7fZb?P6E~<Y^)CWx$)UBF;Q8*tna2I;YP^jF({TIw@s4acV+=#j*
z7qB||wB&wcE!3^ZKrLhx=EkwO6{n$YVS^<1R&_x2>xVv=j=ne~iTw|vkV!&YJPCF0
z-bLNJ`KWvM5$f~d0P4yvV<6r|?a))y!yA(9?qm#V+-j(P4KWy7VP5QN^^9cpU-xtZ
z32o7K^lrIzxPn^PUCfJ5P*)z*$~7EytBRqnFb37XJm$fgs0(O}T2M#S`TbEBl;NSE
zt(%EDVFC8QHI@%*?G9KFH9%?9f~#T}_C}pQ3PW%*YN1)ETd)pw<p)p;JA+#A_o(?i
zHz{b~2iD-9;_g5QYK2j#0TVF{lTc4_chpmzhPuKbsBzv#O_*ivYf!iJW7L&zLG{~(
zjOTH_pr8S-pzhU8^DoqizOTB!Tyi6yAx<o6fMKZii8vmoSw5tVJ5h0Lo{a|>-=KYH
zTV6f9gNMiuZpT-&-v1hWbA-}x7mK5Bd-vY~QP`Mz3oL^3%+08YPomB{XZ2g=J=7LI
zL|u?i2e*GPsveH{F-mp4|23_l5o+sNTfLjr)2%)RHSu(Fj`_a%0cwJ^=2p}K5140B
z3%iMW&Hq4;1}xH%Cm5qp1Jp;|>z1g8q#LT=Aal6sLG_<x&Ni2#F61Mt@3Q(a)B-M8
z{>P5&zXrHxiGR$1PVT@FsHeCz>Pix=o^0)XEuU%iDX4|MXZ6KaUynL}ljRR#3F@ai
zvH!&=+$W(E!#cYbGE1Nq7-RK#)We!!`G%;0TcH-(1NF%^8g-@P%xUI4b17=Rbsh>;
zDQvXFb?a~&wS^BXpCgq|GwMO86C0Y%Pzz{n^`2&$nSlcwzT{B-ZlNydsp-kx#T~GK
zS<Ebr>KJR*L@lTh>dM-fsi+0@MNKfsoPaw2J*%%kowv>M`&>QFmzMYrHNXw?u^H6W
z9jF9q0ToaKC89o1UbcLa<x|nSAk+c|nWN3AW)_C({a<N`?dBoW0H>{f-s;y;Z^LcW
zLLOT_pqo2Us979!eymx=tc5zSp4F4l`~J66frcJf7zdj(Py?+qH=_D&M-6ny>fc!V
zRg5No)9QJ<yXQxsKEjJ*35-LH(;B_+e<}ridGtbU?Qqn@<4_&nw)#AC5o*8{sQz0~
z{q~}6;R(xML5*|Eyk|Z{^?%mg-v2<p@{}lOmO))%6{|Nu4U}Z{wpQ<s<;eF#eGAUB
z{4&%|u0g%t2T|i+L;Zlci`t2DJ-Po{akHLoht8-g>TeE1Eo2P(<1Exf@1frJ56}lc
zGk0SJ>if*Q_#*Y<y<Ag~l(P)|F{h`uJ8>{7Q3U5>l+|~c2eBUc<5thp$L*gFwZOut
z3wgoviKr`XXtuI^XRG(Lx@QOloj3w@Wz)?p>#!U(&^mLQdC)wC+KJ1k3wU7lf2_Sg
zUw8acsP^ip@e(nozW<wABE{@t4lqZe7WfvH!}rk_4`VJohI%c(M)kXjdYJ#j(&*pM
zt;b>v^*X38x1Q*)_kRQht!S(_!9Tanx#mLD_w{mAza5r8Z1oeUg<LRywES=8WAxtZ
z{_gp~W)Tc!ey1!2tvEpmY;GM=%`|g_IT_V&4(i^oMoq8{wUFHyh(|2{4eD*UX!VEY
zGxWay{%P)jc`%BOkr;?Cp(aR1-QzA+A7S+==-nAq{~f4_4x3jk{|{<`0elmwUnuIl
z;sfmck0+t`v_9&+?1DOBJnD+3m~+g<<{H$1n@~Hl2X)?Q<l%D8qt3sI>h~*Zo<~-X
z7|8zXgwg}u0b)@d>zd6_?XRH*N=5BNU(1h2O*{oP@FL6aM2&O6Jc+^7FPXPd<2>z6
zK@)_hyT4+KqE1|9evE4W3^l-h)bD`P)}CvSyMS;kN4_j-;1tw(X=cXkdWFI~8hIue
zEqNiTz5#RNPV;l~w0Q|N^9|G%JT!d<yY)ab95rJkYTRhEDuz<8H`s1=iZyhxh5=R|
zi<)SL)fb}%T#ve>O~|L8bKL4xhq(FXsD<@J^-o7FAk&;+zB7cIt%k*xSZ{7O4`ChJ
zPn#hb?tm>&=e>&Au`6oFdSfgOK`n48s^1ROLJpfJEdRBKf}Z;y&<`J2!xPjAxrVx1
z6@nTl3N>&gt2eQF8w@2s&>UyZMV+_C+=BW+upjkscy3uk{$Xy%l4eB=qC*1e7BodI
zsJ+=0HE<tum^t2@h3db^>MP8RsP}od+wO6$P|y|qY#p3T_e%0$2>D1Xj&Z2>DH%&*
zI+n-Ts85)EsBtc#cH%G8!gCFG|0j`x_%iiM*bv{qT>7xzLqRJ&in^kcn1z=x9}eT6
zipoz#^~*xt^ChTnos}4XYf%r~7F54Is0AE0&zjfKyFm2**vmD-?HG<~D1(}?rrF4B
zZKj%O<_IiH|H)S0h#F_N)lZq1Q49J7wa~}tQ6c+Ccg4YGxLFjnkW#1t<4^;<g!(K^
zL7m?bwIjVyw=4}u<7m|RPtDw;-17@yE%MQ$*nbV&m4pTwY8^c0Ow3PyiPg8D`W-?I
z{FQmp+HYF@k=6a*bk7e*Ej-ptK#kMvO?&^_kkCT9S%+cPVG`;d&$9X))V*DdTEI$k
zljZlAhfx!pu=+WCf%;|CLz|oJ(fKtzR%nQN=vtvp`~@}9pO_7GEFk!na(FJC?Igz$
z?+`1A=Hzq)QEovb67Lajk;{QPUL=~Tz)_LhXXu&EpYy~T;w_SI5``)2Lt+V0jL=cv
z#kq@G*nfyw#7j1~UMU?P6AQ>yCUX0DQ{La#c_`~GNh8X*Y5ny$M{Iz$=6bT3lqaFy
z*EGsL)~5eQijENKUlV(Y3PcS;$KR%}^;7ONxofym6^;nvD{}2{zTSTw4_&-}EAe*?
z9k$tE2dE#ga*XvWN}Y$=Ng_5=o`8Si5o;HDS;PnAW)fS82850jLLa?7iLM@!Ly1@-
zl?Wqr=*#3Z@f-DRSPQEXzfu00c#qI=ff!`x^v4&h>}}-FAJiuh4Ja?NwmUeNc%888
zcmE^K&vepzyv#aM^d7CLpRrs3E+w0QpW@5d14|M*=2*YJnA^&`@DOdiiC&bmTYgkF
z=Kr2#c@i6l_pO1H(}I{xy)JQ+a&@diELWo)>#6HVCL$;Yu;qHaUZwmCF<y-vAG$ba
z@lWC!ZC!9@Hm<)qg|fu+V;zNf;t8E}Tp>D8ejn3`VU%-X7Ey`vQ`B*n@_8bO&`}86
z5i=>*A+k|EMr>B29UHa(df$Jb;rY>o@+_jl^Thw7elKLvFX6x1SCIRh+;aTyqZ7HK
z#9!9%zxQ7svq8jO;sJ5WPVR%%2tBAb$VXy6LPw0b1iMmSi?y*4mO_3sIU^{qMjg2*
z>j>mF^`tyn_g}|2;!A7nhFhqY!k>w$mVXiB)Y*<?>RYW`!usfc+~r%<d(@^p(aK^T
z@i$S}`YPvr{xeA2BH9pdllqm|_<uUN|6QyN`Hti-p^lbBKk5yM+1?CKIOV#OR}s0m
z%2w2KP_9B0qx=b>FQV*f!+N^@PlzEj{QC%_!(wvJ{+0jfU*+Ge%r9?ekDVCAIgQC*
zAU6DKurH`LCF&6Sh%1DSoapJopLLc{Qr}WK=962CuMs&J_#ezq?g<vamUd1C^^uh8
z6S0*06JxCHS3E=gAaRj+m$*!HCx#I_bpQE+^B%9z`8!HiiR+Y$<1(TMp`!>n?bgTG
z7zg8FHE;y8z|X0FMR_;zEoC2aIx4z2pOSl*C`kPW;yy84@BcKCx2gOGn_&p?{Agr_
zTj)!>j#c;uG0m+ymnc87@+q7_Od@w3rxIg`)<h_|p_qclQO7;KRs)E`#8^VdBH}yB
z`*5-n9KOT}YyaLnNp1wOg7}CyPQEkhI7In1;%(v}v5VXT{KDJHA9iOVb^WJR=P8AA
z#2srafsuqiIqhOq;vJ$E@t9mmB9(G`;t}PYs3V7M`8VYHxhdy&%tN%by7-0YMuhrs
zM>8qx=L8);5q?(ANBKwMCiQfp5aqsvj%L>91Ikg9Phbrq#1=r&dwj#+O++w#M!6~H
zFUpUtJkUOWyw!3vd`29#MzMvuj)i6?${mRNR-b|Y5Ce(g#CRf<_E!l%7V`%Nl6!vC
zqkP%wOYtM!e;vn&(nL+_bCj^-TMQ(wlJ87}6Vb#bVxjeEg6D{$#98ujL|$S#(TCiR
z=+9zSqmJ%oB4y7WtL(<IL^eA1qM<$IDb}WwN>k2@ZxR<RKbP`i!m)Z845OL{3lf7V
zpTyaOjvn|7w-c`u)t>(zEkNZ%8smvCDeJgFc|YzTZc~oJhd35>Od;+O9f@#aUbfAv
iVgr0Pw~WgkowIU$WL%9}adDeFv^(d!`9#MhrTzznm-kEn

delta 11710
zcmYk?34Bf0+Q;!Nf{;jvq=rxtO=3($B8JwKnu(ICSt}wMQ=-Pkbj)*0o0?iRRIBu=
znpLTp&NUUKC@nFxMNw+LzyH}!?&t2$`{cWxwbov1?X~wl=hS;2KFas!Bp=V&VBfh8
zN2rhEl*N6;9OoeA0Top1I4i3;&J0|I<1nGR;~dTBIGgZ&oE}R~eRLdS-~%j=#cMjw
za~Oy9F%v7{YV#NtbR3WKn1UuQ5brpJFal|Cs+e&YL|zB;V+&OOHW-Y3(GN#s7*0li
zTxRv3Vg&hS)Ojb-7w=#p=64=Y;G&)U362wjAy@<}n+aH)ydi2K?Xf7PVr9(20=N)k
za0zMwKVk_yh3bC|HSt4K|9rI^CxH2#LKFfq1fRl+r~&F(eKQOoe+e~EFKZu!TIguh
z`BSkl&O`NIin_2*Q9H8(L-7=r!5iq&R{JM9PDu<#O<V;va3ZR`F>2*4P&<)~n&=gL
z8v9}moQCSZ)!KKVuJl{f!Vg*dS=6n*n8^NXpueclz<03}7Ow5y>j+ePlv%^9XEs6I
z`?gpYJE0cv7HWb8s9Uxa)o(5GygFM^7j&gI`>z#Vqe54F8<jsn4N#ztYf)@Q9*Wx9
z?x=zLq6W@J^`C&c(ixU7K;4?9s9W(FhTtyLP9O77(23_!16@JgtDC4D3FNXgVK|n=
z>Zl!Qikj#J)C4_H{RW`kifq*Rvn*eXnsA-fe~G$a&p`@Wz$w%Ue?v`h3$;a$Py_qa
za~Bwd%1faJj6|ImhZ-=+Oh#Q$XVgMcQS%Hz?c6Bj?eI7=Dd?UpK@GUVI;^+)J*X4E
zK@E5qy{{E&f!ENxVAKL0VL19d>pq;7(fjbC=1E5FTn8+n_rDhfO*|Ym!33;=GcDhY
zdM0+F?%jT@jHgfo`SLNRfrC*yQ5v<7DyW6mLXBG=)vuZ5$yh+|e@6=H*c~-sZw$x5
zs1tLneGzJ*AEE|YYxx#)FY4ADM2&MAwe?p~TmBF=PXM3C>KB3@ZA}FVWibl1mCvIl
zPDX8YN7TdD5A|?O!0tE~^*Y@|O%&0<U0?!g+(xKznxZCbi`vO<sCiNwu>VmM`cuJo
zj`OxT7xkIFz}$v4$j_oC3~J~&EwLeLC#It&n1kA(_i-z(LM<e%kvnk)>ikU9!WK93
zxP_0Y(3Y)5UGWao3Xh-$JdL`imo2|#`4iLxMH;*JJ_yx69JQcos4K3EI=>-m!L2NB
z@1dZTbVq$Qr=#xGD0~WMqTcThPy?<*4Y&g};6Bv(2T}cgw)#uvP1J;stlc+>+f7~q
z^=;~@MM3wjE^46GsHeCCYA4cBw<sHR@0VgEZb0=riJIUl>dOB{E$|WQVaxx#dqMuF
z@xo9$8;k6m$Eiy}CpJJ`VJo-6>4fUo9ksANR-c8s@}a1SJg5tpj9SoqEQ2f22lt{D
zasYMSkEnT0VzA!-TngH{d#H|nP235KVSe(`sQPlK9f(9tTnBaK4NwbgiW;Xa>LKfa
zdZyk$y*=-t7PtYm;C&du{LXO|@E+>kmu>2P2UIg#peF2X_CrlL2z8~|sD-_Q(fBbw
zg9p(UZ=?F(Gku!53-d>hw!Sn4U120@0o73_)JNTdW~i-eXYJjvCV79<l`KY0v=;RV
zxe2w!-<l_|0Qm*fcvrC$-fqVJYvQ8K-K_~lT~QPk#Kx#CZGl>7C)8V#W_dPNBA<-v
zzXrSFCe(SwTDX=+Eg%N9zyyrPmMz$SbsR&5Ubk6T4VPm%JcPQkYp7@87HXoqs4IMo
zT9|)J_ZE~yU11e70rd<tu)K}g(dv78DEQGK(;R`i1>;Z)n}eEg32LiXpeFtt^*ZfG
zO>olcFIoL<)WZB)xeE(HofnO|paj${@YJQyghC32;e6E7x&bxtcUTBdq84=Cyn$Ni
z6V#RlwRYQ|K`ksEbz#jh3)|sqxC=F2%{Jb4k5i9=?#=V)k1a78UqY>L3>Lw8sGV4b
z8ek=AL2I!R?nGVLWz@ufq59uJE$9*I*(sjv-r8vN*Zbd;g0{B3nTC3uhN0fqX&8VD
zQ43swdU)1jRm{c07~IyiEb6={)OoeBC^kV|XbNh9ou%IYR0`V4eyENk(K|6};Dx9K
zEk`YMGlt{Ws4KpLdU&s)#wqZEYbdIJB<k~}HtJS&#fq4Po}m<SC`6%OJNLg}Vo_WA
zvN;uXOV(m-{2BRK=oD-3-ilVJg`}WvRVUnxy->HXbc%bcYNGlzMtw9lOJV=@TD7ze
z$*3*vj=FalsC$=%x_1*%pAQSMIBrC3@c|6Rqo{{B7qyd*F%Sb@bo+&25P2ok`E_1o
z|5ee7ig@gb+M+j611?9kZ$>Tb0P4gesE6=^`6udD-9}yEV^shA9o&Tkp)Q~tYC-X+
z^OHOjbVaRDTbGVn`5;Wku~vTpHQ;sB01q%8i@fCSPy^KYDOe19pca~mx&`A<7qSpF
z&MMS`J)0<K!kwsrf3Swrs2#{fE$|*{z>tpagi)xcxE^|6UkoL0i5lk>)P$MVJ{EOL
zC!wx<CeqL2<WML<#RsSXH>2+9PV;-zi6>FNT+U%j^y%bI)CSew4JTqRtItJE^baQI
z<Ne2M^44AW0gL-_e?IPi3%)TH(jkzav|DIc*~7i^o-e!qk}(9UP@jX%aR=(xa=}+z
zE20+A2(@F)E$?ckqP98%bzy_8-lN<@#S{wKx*S#DDswYx3-?-n)bewd-#|_L$n@>$
z=Kf|dYP`~B6l#I-W;66?WnC!feNRITI18V~9Mk~oQMYI(>RCC8>UZ9}Y+gt8zhmZ4
zb@O7V3n^!Lb<69ea{sk}R@TtLOf@sjQRXz%(>xb-C2K6-ZSAM5{*vYQQ41~9%Uwty
zDi1@QAJNO>Hq@e`0u@Q9EAMR`Cz><Nw@_EO!19k!5AABJ--H@?4{D*uP#<vDP#1dB
zd}tQ*q`3{nP%A5g30T4Mj@I4-wS})*{Rm7XA8Yw0b31AQdo4e1o-r?AChdQq`gywc
zcCTolITE#yspgyJTx(xsu0kznGwR9?n1@j3pF&M=-n@<4xk7xZsXhcb&*MZ>P(z&A
zz-*1`*xBrFj<xo;PzzX$TEH6A`~JDr@3Q(s=v@$Mp7Z84uiXC!R^ivjoiG&Dv65K}
z3z8>U-qP}psJEd9Y9alteiZ8b3Fd68Ut}&fKfxg8ch*_OZq$iio5xT;$$m2*V?pvV
zuew%1??O=vsAYLmYfr&w>bqDz-kgT|D4&fUJ@v~dXrR5;;SlOe<OFJKFI)XhRKI(c
z7tC-MQWU-44XFN6sD3q2x3Ip|w?kb(S2Hz(`>%=&Ds)1YIoh0V&O=?{a?3ZM&f8`A
zSC;>T`l$W|^=(+NuiLLUY9~vfUhf3dd@uH8|Mg3zCl%U>cTp?eZXFI{Ve->vE@~k+
zPz!MSxf2yaz3;*3gH_EKj3JLRdtxK<+2$b+g+5di@9z%yI%;Je%V*(2@*K;n4{-Y>
zU}Nf^wS0^@3AMnPs0(?|>epZZ`6hFZ)q4(F#c`|n9d+VWEP{_rzk%+=B`|>cGG?@y
zU^YhWL|fDjy=r-;wNFKj|Bl=4aXz+&HRwmfHp};!ht0F*AE*KT#VY8}$60<%MBS=-
zSQML}`lX;A=5&n2;g&DLN<4qgrxf(<b{w_htEemd+w#X|fh@N@0QGfU0@bgw)hAkB
zAGMHHW(TW(+3b&+=XK?J|2@_)3$@~fs1>ia{7Y*;WS%jvns-s>`3`dLeM!^=(Wr&Q
zpcY!k>YJk8hBoN^_x}uQ$TEkc1{{MGaSm#LjTnTxQTO<;<yS4gkKUbm&2|PgQKFe*
z^_i#zj(W|>*%nsVqjP3k+efHZbUo^gJZyb$p)TgW={wlX1I<#XHAY}C#-ip(LOoV3
zQRk<i`gKRm(|0h>fGVa@p%dm}FfKyXe`an+wSR*e=n!fXPFeje3?{#i8o1~Xw|_O%
zIPqp9)FvjIJ%;cMXrO^qXo4v?5#K<aSbV7K)2Q~Ur~zuCegY&}dp2qTQ&2C)Le#kX
zQ0JX7FPMLz#=oim22|k*YJh-YZeAYs5m3#nZ6=w?sD*S!?MQ|>*c@$6K`meoYM%M#
zhp72H>#Sm*dDt4xTK+d`qQ{m84tEC(LtSA6@`>*}Yx#%fm#BpuM=jtSY5|wb+pZob
z-w3xM&<ryxnYECA<93qFai{@zSo?k~Kz;<ZV?Sdx{2jHxVz0a7S4N$eXx8`EbN`!A
z2&JJt`r@nJ2L9hUs1veLTQ$z=bFdWoQp>kmegM_)SM#P>AlqF)DKiqI=~ol0=rgFR
zHB2_&HkV)^?W<9@U>j;d-<d~HTYA#WHE)^DNVk7cRKF0j0_ydSLGNc!I|`+!=wuxR
zp{`^M7Q;DM9+#nBuiY4d=de2FALV}5#G%GXMxEaWweW0w3a4WWT#8Nc$|&A{JtVQC
z-Idlwt+Wv?z+?=;T&sV8+5x{Y?mZ7eegA}_KbA&~7m4Z@i&{XU+05*S-UW_f|21K@
zHB7OFd8qnT=4NxRdB{9tUd77vziWAgvF-#hsBs#bZBYyAhFWNUj}?ZYR;*l3G2cK9
z@D6Il%TNPsM18dGLk;u;>Mb~dx@BjO|8uVKN9PZ;3mu6%e=62P&wL6R_y}sCi`L<~
z`2_WL1dVe~j70UTg&Me_*#<Rm7t8xvJ{)!a6w4QxtC4X$&UOkK=m2UVM^OXiq9(e7
zy2s9VH}^&DP$25OP&2~nW6ea=`SmStj#bIqq8{3j7@*%EE4>ANo}nJPJ*X4AO>iel
z$9&{@M+FLeJvc?F{0-m5&iFFXgYqrBPb{IVL)*-MfO(Jc{Jlec0V13z$o$^pJjop5
zAX!t~fHR4XlwU+&AO3KBMt%<)qK-sN!CpjL;ve#lu_Eftc|hp+i)e4>C@)FWBs^#N
zqX%a#5k+Y0&k&QXb0Nw)in4%GxZIm@KWYD!a$nT{7A2l2O8(f|n~;A_`D@Gj;yf##
zrcFmNAMHQKcq&dIUxMBv#yTh|Lp1T$^83+TYV8-XFbfOB_SUuuL#VrrEvZi>PEt;{
z_HI~>sN>C<zd3~;h<$YYfS5>R5NX5->KCDo0t|YJ@-?ELTjl-x4tbXKxlD~8v6p-p
z{!M&Exfb%N?0il66(WKdKzOhJD!xxVqJm#o&PVto)+OE}z9ar6bo@mdAA-(zSe<x8
z`41w37)<^PF^(us<Puk?{~V{Ijy^;KZ;3BD>OG4{T3f{#D!#IE9-Sz>MEwe4A?4!i
zf{u<Z&P5zfn~uU*1IrS@)=%~Otvv<166I9MF*cvw|7}z@q~b3A<ZW`lC~lH_-+ilF
zg@=gusMk@(RJpR18&M8m@?zxilphj0-X^b#8H9c(tR+v<zd`EbavjM6LdRkAb;=(S
z&4>=vRkHfI_#fhT>UFen`QP8Ov^_%>icg3VEM^q>m)7Gq>TVN@mFxN6NW4Ww-tijc
zZ6vFS9Yh;)4^f-)UP8w%>t6`}A-{}cFqW82`4c=!=r}->qwZ7UKa_n~&=HIz*Zkh&
zIdc|%NyB17-`OAI1>8(Drrd~lh4Km1agK<h>~Hzc<TWT?xBLt9cYH$Ii<ZxGb?1MR
z<Q*CxTjN4A4vSOYiui=`7-BwAkC;MTebjN<#ryYH>iQ5p$P$TZluO|E)^{-F8I)f@
z@AdbGwp2{SB5X}}>!@ZOf07TvnO1+7@>pUu`D`prl%@PMj>ZkdZo(l(5tj&G<s5&T
zyD9gl{F$!5mQ|`lY04kq%UF#FVnOT3L)FN!()u34FWf5U2;~;UPNE;7|2g3^_#<(H
zc$I$d5@FVV5Ow#7I)rBee{>Wk77zhMPeMmFZC9<ml=(D<(>7ln?C`U;68M(Y6`|}y
z93ZL?<ES4=T(fq67Rljpo~Ln=Ro<hlqd9IOc36Icx~atTYUHR({b5Y-W_;L?|4SrU
z-i&fO(SdxW)qO~wcRWksBjTjq|AOvHoT=8~DLhAn5!dMyfRVTyj}v*vTnbwV{X|bA
z>J#UQOd{{d{J;L&sr)6c0r#t{`~N4g-8$yOgI4~Q`U;e<5GAdy9d(6R@BmzvS7)v=
zY4ZL{SY_x$-AE$FTghjDDaupt8AxHeow!T29QkcWx==sR+EhPBe>hT!=>Mx9O1U7>
zirC}r!GEfovD9^^eADu-<}}=+&;JP&66h3%y|E=uLLJe>1IiV>nfvD$c~gqV2|pHE
z)%tG1O4jdn$}bQPiCnA8W0@7!)8^g(OR$2NOw96D@{LDX$1&m!Z;3Aua|nG#SovGZ
zHHl$%-UU<5KU+DFMP`w&Cq_`Wnee6j1_tSKeJe>YLBIbUORN+^`z=Dp_e74B^U=98
z<(=LZZkg39?M3+y;s>icifgRg6O)NI>E};)T9eGsS$5PW*F#yJ=#p27YlsH4<sIE9
zFC|GPzM;Gif5IHp(U_=0JV)If+=|Z<8;R=VPLXgO8%9*~$sd`TmX<Xvb7*)*>X7hW
z>FJr_X@k>Kho<)qA2KX0Eq%z4KEnnK$j-UZrA$tEO#D-61Nx@*56?&+oE|<jD||@$
z(D3Z6VS_iM#e`Mzi>n<T7gsO7=7uR9PvlP+|LMhfi*hHdyuN)Fe=of|>GH-E7iVv|
zxMlsNZL=><d+*}5FLI~Nxj18qmhxO|ufYw9gy$5GNy@3yCCvA^*wh9&UAi>R`79<r
T=ld?Lb85s!ZK&UM=QIBWs<ujk

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 196c3fb36..31654aa11 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-05-17 11:32+0800\n"
+"POT-Creation-Date: 2018-05-25 18:11+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -535,7 +535,7 @@ msgstr "测试系统用户可连接性: {}"
 msgid "定期测试系统用户可连接性: {}"
 msgstr ""
 
-#: assets/tasks.py:402
+#: assets/tasks.py:401
 msgid "推送系统用户到入资产: {}"
 msgstr ""
 
@@ -2540,7 +2540,7 @@ msgid "Can't provide security? Please contact the administrator!"
 msgstr "如果不能提供MFA验证码，请联系管理员!"
 
 #: users/templates/users/reset_password.html:45
-#: users/templates/users/user_detail.html:348 users/utils.py:73
+#: users/templates/users/user_detail.html:348 users/utils.py:76
 msgid "Reset password"
 msgstr "重置密码"
 
@@ -2744,13 +2744,15 @@ msgid "Create account successfully"
 msgstr "创建账户成功"
 
 #: users/utils.py:39
-#, python-format
+#, fuzzy, python-format
 msgid ""
 "\n"
 "    Hello %(name)s:\n"
 "    </br>\n"
 "    Your account has been created successfully\n"
 "    </br>\n"
+"    Username: %(username)s\n"
+"    </br>\n"
 "    <a href=\"%(rest_password_url)s?token=%(rest_password_token)s\">click "
 "here to set your password</a>\n"
 "    </br>\n"
@@ -2770,6 +2772,8 @@ msgstr ""
 "    你好 %(name)s:\n"
 "    </br>\n"
 "    恭喜您，您的账号已经创建成功    </br>\n"
+"    用户名: %(username)s\n"
+"    </br>\n"
 "     <a href=\"%(rest_password_url)s?token=%(rest_password_token)s\">请点击这"
 "里设置密码</a>    </br>\n"
 "    这个链接有效期1小时, 超过时间您可以 <a href=\"%(forget_password_url)s?"
@@ -2784,7 +2788,7 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:75
+#: users/utils.py:78
 #, python-format
 msgid ""
 "\n"
@@ -2828,11 +2832,11 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:106
+#: users/utils.py:109
 msgid "SSH Key Reset"
 msgstr "重置ssh密钥"
 
-#: users/utils.py:108
+#: users/utils.py:111
 #, python-format
 msgid ""
 "\n"
@@ -2857,15 +2861,15 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:141
+#: users/utils.py:144
 msgid "User not exist"
 msgstr "用户不存在"
 
-#: users/utils.py:143
+#: users/utils.py:146
 msgid "Disabled or expired"
 msgstr "禁用或失效"
 
-#: users/utils.py:156
+#: users/utils.py:159
 msgid "Password or SSH public key invalid"
 msgstr "密码或密钥不合法"
 
diff --git a/apps/users/utils.py b/apps/users/utils.py
index 0ccba92be..cb0e800ed 100644
--- a/apps/users/utils.py
+++ b/apps/users/utils.py
@@ -41,6 +41,8 @@ def send_user_created_mail(user):
     </br>
     Your account has been created successfully
     </br>
+    Username: %(username)s
+    </br>
     <a href="%(rest_password_url)s?token=%(rest_password_token)s">click here to set your password</a>
     </br>
     This link is valid for 1 hour. After it expires, <a href="%(forget_password_url)s?email=%(email)s">request new one</a>
@@ -54,6 +56,7 @@ def send_user_created_mail(user):
     </br>
     """) % {
         'name': user.name,
+        'username': user.username,
         'rest_password_url': reverse('users:reset-password', external=True),
         'rest_password_token': user.generate_reset_token(),
         'forget_password_url': reverse('users:forgot-password', external=True),

From fc2a44621bfc53fec941b2cf269a2716b11157dd Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 25 May 2018 19:17:57 +0800
Subject: [PATCH 056/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E5=8F=B3?=
 =?UTF-8?q?=E5=87=BB=E4=BD=8D=E7=BD=AE=E4=B8=8D=E5=AF=B9=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/templates/assets/asset_list.html | 15 +++++++++------
 1 file changed, 9 insertions(+), 6 deletions(-)

diff --git a/apps/assets/templates/assets/asset_list.html b/apps/assets/templates/assets/asset_list.html
index 0100e1e7f..ab08f7b67 100644
--- a/apps/assets/templates/assets/asset_list.html
+++ b/apps/assets/templates/assets/asset_list.html
@@ -17,20 +17,21 @@
             position:absolute;
             visibility:hidden;
             text-align: left;
-            top: 100%;
+            {#top: 100%;#}
+            top: 0;
             left: 0;
             z-index: 1000;
-            float: left;
-            padding: 5px 0;
+            {#float: left;#}
+            padding: 0 0;
             margin: 2px 0 0;
             list-style: none;
             background-clip: padding-box;
-        }
+         }
         div#rMenu li{
         	margin: 1px 0;
         	cursor: pointer;
-        	{#list-style: none outside none;#}
-        }
+        	list-style: none outside none;
+         }
         .dropdown a:hover {
             background-color: #f1f1f1
         }
@@ -266,6 +267,8 @@ function OnRightClick(event, treeId, treeNode) {
 function showRMenu(type, x, y) {
 	$("#rMenu ul").show();
     x -= 220;
+    x += document.body.scrollLeft;
+    y += document.body.scrollTop+document.documentElement.scrollTop;
     rMenu.css({"top":y+"px", "left":x+"px", "visibility":"visible"});
 
 	$("body").bind("mousedown", onBodyMouseDown);

From 0bc86543b5b1c3c3c158d03806fd9361d5b5a51f Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Sat, 26 May 2018 21:53:50 +0800
Subject: [PATCH 057/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E7=BB=84=E8=AF=A6=E6=83=85=E6=98=BE=E7=A4=BA=E6=8E=88?=
 =?UTF-8?q?=E6=9D=83=E8=B5=84=E4=BA=A7=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/utils.py                              | 16 +++++++---------
 .../users/user_group_granted_asset.html          |  3 ++-
 2 files changed, 9 insertions(+), 10 deletions(-)

diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index d45f0f3d7..e23a88b27 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -106,21 +106,19 @@ class AssetPermissionUtil:
         return assets
 
     @classmethod
-    def get_user_group_nodes_with_assets(cls, user):
+    def get_user_group_nodes_with_assets(cls, group):
         """
-        :param user:
+        :param group:
         :return: {node: {asset: set(su1, su2)}}
         """
-        nodes = defaultdict(dict)
-        _assets = cls.get_user_group_assets(user)
+        _assets = cls.get_user_group_assets(group)
+        tree = Tree()
         for asset, _system_users in _assets.items():
             _nodes = asset.get_nodes()
+            tree.add_nodes(_nodes)
             for node in _nodes:
-                if asset in nodes[node]:
-                    nodes[node][asset].update(_system_users)
-                else:
-                    nodes[node][asset] = _system_users
-        return nodes
+                tree.nodes[node][asset].update(_system_users)
+        return tree.nodes
 
     @classmethod
     def get_user_assets_direct(cls, user):
diff --git a/apps/users/templates/users/user_group_granted_asset.html b/apps/users/templates/users/user_group_granted_asset.html
index c1d56a701..1692e06a2 100644
--- a/apps/users/templates/users/user_group_granted_asset.html
+++ b/apps/users/templates/users/user_group_granted_asset.html
@@ -64,10 +64,11 @@
 var zTree;
 var inited = false;
 var url;
+var asset_table;
 
 function initTable() {
     if (inited){
-        return
+        return asset_table
     } else {
         inited = true;
     }

From 0b4df7839365e2c7574e14db5a7447f9a8e62578 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 28 May 2018 13:20:26 +0800
Subject: [PATCH 058/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9permistion?=
 =?UTF-8?q?=20utils=E4=BC=98=E5=8C=96=E8=BF=94=E5=9B=9E=E7=9A=84=E5=B1=9E?=
 =?UTF-8?q?=E6=80=A7?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/models/asset.py      |  3 ++-
 apps/assets/models/node.py       |  8 ++++++-
 apps/assets/serializers/asset.py |  4 ++--
 apps/perms/models.py             |  4 ++--
 apps/perms/utils.py              | 36 +++++++++++++++++++++++++-------
 apps/users/models/user.py        |  2 +-
 6 files changed, 42 insertions(+), 15 deletions(-)

diff --git a/apps/assets/models/asset.py b/apps/assets/models/asset.py
index 4a2942291..297d50dfc 100644
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -117,7 +117,8 @@ class Asset(models.Model):
 
     def get_nodes(self):
         from .node import Node
-        return self.nodes.all() or [Node.root()]
+        nodes = self.nodes.all() or [Node.root()]
+        return nodes
 
     @property
     def hardware_info(self):
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index b63daf513..5109f3d0a 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -3,6 +3,7 @@
 import uuid
 
 from django.db import models, transaction
+from django.db.models import Q
 from django.utils.translation import ugettext_lazy as _
 
 
@@ -87,7 +88,12 @@ class Node(models.Model):
 
     def get_assets(self):
         from .asset import Asset
-        assets = Asset.objects.filter(nodes__id=self.id)
+        if self.is_root():
+            assets = Asset.objects.filter(
+                Q(nodes__id=self.id) | Q(nodes__isnull=True)
+            )
+        else:
+            assets = Asset.objects.filter(nodes__id=self.id)
         return assets
 
     def get_valid_assets(self):
diff --git a/apps/assets/serializers/asset.py b/apps/assets/serializers/asset.py
index cf844b5c7..2c5aa253c 100644
--- a/apps/assets/serializers/asset.py
+++ b/apps/assets/serializers/asset.py
@@ -61,13 +61,13 @@ class AssetGrantedSerializer(serializers.ModelSerializer):
     """
     system_users_granted = AssetSystemUserSerializer(many=True, read_only=True)
     system_users_join = serializers.SerializerMethodField()
-    nodes = NodeTMPSerializer(many=True, read_only=True)
+    # nodes = NodeTMPSerializer(many=True, read_only=True)
 
     class Meta:
         model = Asset
         fields = (
             "id", "hostname", "ip", "port", "system_users_granted",
-            "is_active", "system_users_join", "os", 'domain', "nodes",
+            "is_active", "system_users_join", "os", 'domain',
             "platform", "comment"
         )
 
diff --git a/apps/perms/models.py b/apps/perms/models.py
index f7792ee6d..581b552b4 100644
--- a/apps/perms/models.py
+++ b/apps/perms/models.py
@@ -33,8 +33,8 @@ class AssetPermission(models.Model):
     nodes = models.ManyToManyField('assets.Node', related_name='granted_by_permissions', blank=True, verbose_name=_("Nodes"))
     system_users = models.ManyToManyField('assets.SystemUser', related_name='granted_by_permissions', verbose_name=_("System user"))
     is_active = models.BooleanField(default=True, verbose_name=_('Active'))
-    date_start = models.DateTimeField(default=timezone.now, verbose_name=_("Date start"))
-    date_expired = models.DateTimeField(default=date_expired_default, verbose_name=_('Date expired'))
+    date_start = models.DateTimeField(default=timezone.now, db_index=True, verbose_name=_("Date start"))
+    date_expired = models.DateTimeField(default=date_expired_default, db_index=True, verbose_name=_('Date expired'))
     created_by = models.CharField(max_length=128, blank=True, verbose_name=_('Created by'))
     date_created = models.DateTimeField(auto_now_add=True, verbose_name=_('Date created'))
     comment = models.TextField(verbose_name=_('Comment'), blank=True)
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index d45f0f3d7..87911120e 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -16,8 +16,22 @@ logger = get_logger(__file__)
 class Tree:
     def __init__(self):
         self.__all_nodes = list(Node.objects.all())
+        self.__node_asset_map = defaultdict(set)
         self.nodes = defaultdict(dict)
         self.root = Node.root()
+        self.init_node_asset_map()
+
+    def init_node_asset_map(self):
+        for node in self.__all_nodes:
+            assets = node.get_assets().values_list('id', flat=True)
+            for asset in assets:
+                self.__node_asset_map[str(asset)].add(node)
+
+    def add_asset(self, asset, system_users):
+        nodes = self.__node_asset_map.get(str(asset.id), [])
+        self.add_nodes(nodes)
+        for node in nodes:
+            self.nodes[node][asset].update(system_users)
 
     def add_node(self, node):
         if node in self.nodes:
@@ -44,11 +58,15 @@ class AssetPermissionUtil:
 
     @staticmethod
     def get_user_group_permissions(user_group):
-        return AssetPermission.objects.all().valid().filter(user_groups=user_group)
+        return AssetPermission.objects.all().valid().filter(
+            user_groups=user_group
+        )
 
     @staticmethod
     def get_asset_permissions(asset):
-        return AssetPermission.objects.all().valid().filter(assets=asset)
+        return AssetPermission.objects.all().valid().filter(
+            assets=asset
+        )
 
     @staticmethod
     def get_node_permissions(node):
@@ -56,7 +74,9 @@ class AssetPermissionUtil:
 
     @staticmethod
     def get_system_user_permissions(system_user):
-        return AssetPermission.objects.valid().all().filter(system_users=system_user)
+        return AssetPermission.objects.valid().all().filter(
+            system_users=system_user
+        )
 
     @classmethod
     def get_user_group_nodes(cls, group):
@@ -209,11 +229,11 @@ class AssetPermissionUtil:
         tree = Tree()
         _assets = cls.get_user_assets(user)
         for asset, _system_users in _assets.items():
-            _nodes = asset.get_nodes()
-            tree.add_nodes(_nodes)
-
-            for node in _nodes:
-                tree.nodes[node][asset].update(_system_users)
+            tree.add_asset(asset, _system_users)
+            # _nodes = asset.get_nodes()
+            # tree.add_nodes(_nodes)
+            # for node in _nodes:
+            #     tree.nodes[node][asset].update(_system_users)
         return tree.nodes
 
     @classmethod
diff --git a/apps/users/models/user.py b/apps/users/models/user.py
index 23c30cf77..025fe7c8f 100644
--- a/apps/users/models/user.py
+++ b/apps/users/models/user.py
@@ -77,7 +77,7 @@ class User(AbstractUser):
     is_first_login = models.BooleanField(default=True)
     date_expired = models.DateTimeField(
         default=date_expired_default, blank=True, null=True,
-        verbose_name=_('Date expired')
+        db_index=True, verbose_name=_('Date expired')
     )
     created_by = models.CharField(
         max_length=30, default='', verbose_name=_('Created by')

From 7b57d24dc9d50966d118190d84bcae2e4f590217 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 28 May 2018 15:00:06 +0800
Subject: [PATCH 059/112] =?UTF-8?q?[Update]=20=E4=BC=98=E5=8C=96=E4=BB=A3?=
 =?UTF-8?q?=E7=A0=81?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/asset.py                         | 16 ++++++++++++----
 apps/assets/models/asset.py                      |  4 +++-
 apps/assets/models/node.py                       |  8 --------
 apps/assets/serializers/node.py                  |  2 +-
 .../templates/assets/_asset_list_modal.html      |  2 +-
 5 files changed, 17 insertions(+), 15 deletions(-)

diff --git a/apps/assets/api/asset.py b/apps/assets/api/asset.py
index b3855eba1..78926a0f9 100644
--- a/apps/assets/api/asset.py
+++ b/apps/assets/api/asset.py
@@ -13,7 +13,7 @@ from common.mixins import IDInFilterMixin
 from common.utils import get_logger
 from ..hands import IsSuperUser, IsValidUser, IsSuperUserOrAppUser, \
     NodePermissionUtil
-from ..models import  Asset, SystemUser, AdminUser, Node
+from ..models import Asset, SystemUser, AdminUser, Node
 from .. import serializers
 from ..tasks import update_asset_hardware_info_manual, \
     test_asset_connectability_manual
@@ -48,14 +48,22 @@ class AssetViewSet(IDInFilterMixin, LabelFilter, BulkModelViewSet):
         if admin_user_id:
             admin_user = get_object_or_404(AdminUser, id=admin_user_id)
             queryset = queryset.filter(admin_user=admin_user)
-        if node_id:
+
+        if node_id and show_current_asset:
+            queryset = queryset.filter(
+                Q(nodes=node_id) | Q(nodes__isnull=True)
+            ).distinct()
+        if node_id and not show_current_asset:
             node = get_object_or_404(Node, id=node_id)
             if not node.is_root():
+                queryset = queryset.filter(
+                    Q(nodes__key__regex='^{}(:[0-9]+)*$'.format(node.key)) |
+                    Q(nodes__isnull=True),
+                ).distinct()
+            else:
                 queryset = queryset.filter(
                     nodes__key__regex='^{}(:[0-9]+)*$'.format(node.key),
                 ).distinct()
-        if show_current_asset and node_id:
-            queryset = queryset.filter(nodes=node_id).distinct()
 
         return queryset
 
diff --git a/apps/assets/models/asset.py b/apps/assets/models/asset.py
index 297d50dfc..7477cbc7f 100644
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -4,6 +4,7 @@
 
 import uuid
 import logging
+import random
 
 from django.db import models
 from django.utils.translation import ugettext_lazy as _
@@ -191,7 +192,8 @@ class Asset(models.Model):
 
         seed()
         for i in range(count):
-            asset = cls(ip='%s.%s.%s.%s' % (i, i, i, i),
+            ip = [str(i) for i in random.sample(range(255), 4)]
+            asset = cls(ip='.'.join(ip),
                         hostname=forgery_py.internet.user_name(True),
                         admin_user=choice(AdminUser.objects.all()),
                         port=22,
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 5109f3d0a..784c8ae1b 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -108,14 +108,6 @@ class Node(models.Model):
             assets = Asset.objects.filter(nodes__in=nodes).distinct()
         return assets
 
-    def get_current_assets(self):
-        from .asset import Asset
-        assets = Asset.objects.filter(nodes=self).distinct()
-        return assets
-
-    def has_assets(self):
-        return self.get_all_assets()
-
     def get_all_valid_assets(self):
         return self.get_all_assets().valid()
 
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index b191b0a4f..73639a100 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -80,7 +80,7 @@ class NodeSerializer(serializers.ModelSerializer):
 class NodeCurrentSerializer(NodeSerializer):
     @staticmethod
     def get_assets_amount(obj):
-        return obj.get_current_assets().count()
+        return obj.get_assets().count()
 
 
 class NodeAssetsSerializer(serializers.ModelSerializer):
diff --git a/apps/assets/templates/assets/_asset_list_modal.html b/apps/assets/templates/assets/_asset_list_modal.html
index db7d165e0..faf569137 100644
--- a/apps/assets/templates/assets/_asset_list_modal.html
+++ b/apps/assets/templates/assets/_asset_list_modal.html
@@ -59,7 +59,7 @@ var zTree2, asset_table2 = 0;
 function initTable2() {
     var options = {
         ele: $('#asset_list_modal_table'),
-        ajax_url: '{% url "api-assets:asset-list" %}',
+        ajax_url: '{% url "api-assets:asset-list" %}?show_current_asset=1',
         columns: [
             {data: "id"}, {data: "hostname" }, {data: "ip" }
         ],

From 47397d23086f454cde67523557c0dd5e7bf72324 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 28 May 2018 16:44:00 +0800
Subject: [PATCH 060/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E7=BD=91?=
 =?UTF-8?q?=E5=85=B3=E6=B5=8B=E8=AF=95=E8=BF=9E=E6=8E=A5=E9=9C=80=E8=A6=81?=
 =?UTF-8?q?ssh=E4=BF=A1=E4=BB=BBkey=E7=9A=84=E9=97=AE=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/utils.py | 28 +++++++++++++++-------------
 apps/perms/api.py    |  7 +------
 2 files changed, 16 insertions(+), 19 deletions(-)

diff --git a/apps/assets/utils.py b/apps/assets/utils.py
index 5fb5eae84..367c5e5f7 100644
--- a/apps/assets/utils.py
+++ b/apps/assets/utils.py
@@ -1,7 +1,8 @@
 # ~*~ coding: utf-8 ~*~
 #
-
+import os
 import paramiko
+from paramiko.ssh_exception import SSHException
 
 from common.utils import get_object_or_none
 from .models import Asset, SystemUser, Label
@@ -49,22 +50,23 @@ def test_gateway_connectability(gateway):
     """
     client = paramiko.SSHClient()
     client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
-
-    proxy_command = [
-        "ssh", "{}@{}".format(gateway.username, gateway.ip),
-        "-p", str(gateway.port), "-W", "127.0.0.1:{}".format(gateway.port),
-    ]
-
-    if gateway.password:
-        proxy_command.insert(0, "sshpass -p '{}'".format(gateway.password))
-    if gateway.private_key:
-        proxy_command.append("-i {}".format(gateway.private_key_file))
+    proxy = paramiko.SSHClient()
+    proxy.load_host_keys(os.path.expanduser('~/.ssh/known_hosts'))
+    proxy.set_missing_host_key_policy(paramiko.AutoAddPolicy())
 
     try:
-        sock = paramiko.ProxyCommand(" ".join(proxy_command))
-    except paramiko.ProxyCommandFailure as e:
+        proxy.connect(gateway.ip, username=gateway.username,
+                      password=gateway.password,
+                      pkey=gateway.private_key_obj)
+    except(paramiko.AuthenticationException,
+           paramiko.BadAuthenticationType,
+           SSHException) as e:
         return False, str(e)
 
+    sock = proxy.get_transport().open_channel(
+        'direct-tcpip', ('127.0.0.1', gateway.port), ('127.0.0.1', 0)
+    )
+
     try:
         client.connect("127.0.0.1", port=gateway.port,
                        username=gateway.username,
diff --git a/apps/perms/api.py b/apps/perms/api.py
index e104cc1c4..bd2fb1139 100644
--- a/apps/perms/api.py
+++ b/apps/perms/api.py
@@ -147,13 +147,8 @@ class UserGrantedNodeAssetsApi(ListAPIView):
             user = get_object_or_404(User, id=user_id)
         else:
             user = self.request.user
+        node = get_object_or_404(Node, id=node_id)
         nodes = AssetPermissionUtil.get_user_nodes_with_assets(user)
-        node = get_object_or_none(Node, id=node_id)
-
-        if not node:
-            unnode = [node for node in nodes if node.name == 'Unnode']
-            node = unnode[0] if unnode else None
-
         assets = nodes.get(node, [])
         for asset, system_users in assets.items():
             asset.system_users_granted = system_users

From 3a2973023cfa029e0140ef35370cf069438dd70e Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 29 May 2018 11:17:09 +0800
Subject: [PATCH 061/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E8=B5=84?=
 =?UTF-8?q?=E4=BA=A7=E6=A0=91=E5=92=8C=E8=B5=84=E4=BA=A7=E5=88=97=E8=A1=A8?=
 =?UTF-8?q?=E6=95=B0=E9=87=8F=E6=98=BE=E7=A4=BA(=E6=B8=B8=E7=A6=BB?=
 =?UTF-8?q?=E8=B5=84=E4=BA=A7)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/asset.py                       | 18 ++++++++++--------
 .../templates/assets/_asset_list_modal.html    |  2 +-
 apps/users/views/login.py                      |  4 +++-
 3 files changed, 14 insertions(+), 10 deletions(-)

diff --git a/apps/assets/api/asset.py b/apps/assets/api/asset.py
index 78926a0f9..16ce3de59 100644
--- a/apps/assets/api/asset.py
+++ b/apps/assets/api/asset.py
@@ -50,16 +50,18 @@ class AssetViewSet(IDInFilterMixin, LabelFilter, BulkModelViewSet):
             queryset = queryset.filter(admin_user=admin_user)
 
         if node_id and show_current_asset:
-            queryset = queryset.filter(
-                Q(nodes=node_id) | Q(nodes__isnull=True)
-            ).distinct()
+            node = get_object_or_404(Node, id=node_id)
+            if node.is_root():
+                queryset = queryset.filter(
+                    Q(nodes=node_id) | Q(nodes__isnull=True)
+                ).distinct()
+            else:
+                queryset = queryset.filter(nodes=node).distinct()
+
         if node_id and not show_current_asset:
             node = get_object_or_404(Node, id=node_id)
-            if not node.is_root():
-                queryset = queryset.filter(
-                    Q(nodes__key__regex='^{}(:[0-9]+)*$'.format(node.key)) |
-                    Q(nodes__isnull=True),
-                ).distinct()
+            if node.is_root():
+                queryset = Asset.objects.all()
             else:
                 queryset = queryset.filter(
                     nodes__key__regex='^{}(:[0-9]+)*$'.format(node.key),
diff --git a/apps/assets/templates/assets/_asset_list_modal.html b/apps/assets/templates/assets/_asset_list_modal.html
index faf569137..a0d96a7ef 100644
--- a/apps/assets/templates/assets/_asset_list_modal.html
+++ b/apps/assets/templates/assets/_asset_list_modal.html
@@ -95,7 +95,7 @@ function initTree2() {
     };
 
     var zNodes = [];
-    $.get("{% url 'api-assets:node-list' %}", function(data, status){
+    $.get("{% url 'api-assets:node-list' %}?show_current_asset=1", function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
             {#value["open"] = true;#}
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index 6ef948238..fded08f74 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -50,7 +50,9 @@ class UserLoginView(FormView):
 
     def get(self, request, *args, **kwargs):
         if request.user.is_staff:
-            return redirect(self.get_success_url())
+            return redirect(redirect_user_first_login_or_index(
+                request, self.redirect_field_name)
+            )
         request.session.set_test_cookie()
         return super().get(request, *args, **kwargs)
 

From 5b53cfb4dd2dcf02b0ab9777d43da741505644a0 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 29 May 2018 11:50:09 +0800
Subject: [PATCH 062/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E8=B5=84?=
 =?UTF-8?q?=E4=BA=A7=E6=A0=91=E8=8A=82=E7=82=B9(=E6=95=B0=E9=87=8F)?=
 =?UTF-8?q?=E6=80=BB=E6=98=BE=E7=A4=BA=E6=AD=A4=E8=8A=82=E7=82=B9=E4=B8=8B?=
 =?UTF-8?q?=E7=9A=84=E8=B5=84=E4=BA=A7=E6=80=BB=E6=95=B0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py                             | 9 +--------
 apps/assets/serializers/node.py                     | 8 +-------
 apps/assets/templates/assets/_asset_list_modal.html | 2 +-
 apps/assets/templates/assets/asset_list.html        | 7 +++----
 4 files changed, 6 insertions(+), 20 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index b0e974f5c..11f45cc8d 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -42,14 +42,7 @@ __all__ = [
 class NodeViewSet(BulkModelViewSet):
     queryset = Node.objects.all()
     permission_classes = (IsSuperUser,)
-    # serializer_class = serializers.NodeSerializer
-
-    def get_serializer_class(self):
-        show_current_asset = self.request.query_params.get('show_current_asset')
-        if show_current_asset:
-            return serializers.NodeCurrentSerializer
-        else:
-            return serializers.NodeSerializer
+    serializer_class = serializers.NodeSerializer
 
     def perform_create(self, serializer):
         child_key = Node.root().get_next_child_key()
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index 73639a100..6683a3027 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -9,7 +9,7 @@ from .asset import AssetGrantedSerializer
 
 __all__ = [
     'NodeSerializer', "NodeGrantedSerializer", "NodeAddChildrenSerializer",
-    "NodeAssetsSerializer", "NodeCurrentSerializer",
+    "NodeAssetsSerializer",
 ]
 
 
@@ -77,12 +77,6 @@ class NodeSerializer(serializers.ModelSerializer):
         return fields
 
 
-class NodeCurrentSerializer(NodeSerializer):
-    @staticmethod
-    def get_assets_amount(obj):
-        return obj.get_assets().count()
-
-
 class NodeAssetsSerializer(serializers.ModelSerializer):
     assets = serializers.PrimaryKeyRelatedField(many=True, queryset=Asset.objects.all())
 
diff --git a/apps/assets/templates/assets/_asset_list_modal.html b/apps/assets/templates/assets/_asset_list_modal.html
index a0d96a7ef..faf569137 100644
--- a/apps/assets/templates/assets/_asset_list_modal.html
+++ b/apps/assets/templates/assets/_asset_list_modal.html
@@ -95,7 +95,7 @@ function initTree2() {
     };
 
     var zNodes = [];
-    $.get("{% url 'api-assets:node-list' %}?show_current_asset=1", function(data, status){
+    $.get("{% url 'api-assets:node-list' %}", function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
             {#value["open"] = true;#}
diff --git a/apps/assets/templates/assets/asset_list.html b/apps/assets/templates/assets/asset_list.html
index ab08f7b67..b5e53aaba 100644
--- a/apps/assets/templates/assets/asset_list.html
+++ b/apps/assets/templates/assets/asset_list.html
@@ -399,8 +399,7 @@ function initTree() {
     };
 
     var zNodes = [];
-    var query_params = {'show_current_asset': getCookie('show_current_asset')};
-    $.get("{% url 'api-assets:node-list' %}", query_params, function(data, status){
+    $.get("{% url 'api-assets:node-list' %}", function(data, status){
         $.each(data, function (index, value) {
             value["pId"] = value["parent"];
             if (value["key"] === "0") {
@@ -436,7 +435,7 @@ $(document).ready(function(){
     initTable();
     initTree();
 
-    if(getCookie('show_current_asset') === 'yes'){
+    if(getCookie('show_current_asset') === '1'){
         $('#show_all_asset').css('display', 'inline-block');
     }
     else{
@@ -564,7 +563,7 @@ $(document).ready(function(){
     hideRMenu();
     $(this).css('display', 'none');
     $('#show_all_asset').css('display', 'inline-block');
-    setCookie('show_current_asset', 'yes');
+    setCookie('show_current_asset', '1');
     location.reload();
 })
 .on('click', '.btn-show-all-asset', function(){

From 757a31a52fc39cb7496eeaafb11bca6f5127f23b Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 29 May 2018 13:19:58 +0800
Subject: [PATCH 063/112] =?UTF-8?q?[Update]=20=E4=BC=98=E5=8C=96asset=20ap?=
 =?UTF-8?q?i,=20=E8=8E=B7=E5=8F=96=E6=97=B6=E5=A2=9E=E5=8A=A0prefetch?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/asset.py         |  5 +-
 apps/assets/models/asset.py      | 90 ++++++++++++++++++++++++--------
 apps/assets/models/node.py       | 30 +++++------
 apps/assets/serializers/asset.py | 29 ++--------
 apps/assets/signals_handler.py   | 37 ++++++++-----
 apps/perms/utils.py              |  4 +-
 jms                              |  1 +
 7 files changed, 115 insertions(+), 81 deletions(-)

diff --git a/apps/assets/api/asset.py b/apps/assets/api/asset.py
index 16ce3de59..1227b01c9 100644
--- a/apps/assets/api/asset.py
+++ b/apps/assets/api/asset.py
@@ -40,7 +40,9 @@ class AssetViewSet(IDInFilterMixin, LabelFilter, BulkModelViewSet):
     permission_classes = (IsSuperUserOrAppUser,)
 
     def get_queryset(self):
-        queryset = super().get_queryset()
+        queryset = super().get_queryset()\
+            .prefetch_related('labels', 'nodes')\
+            .select_related('admin_user')
         admin_user_id = self.request.query_params.get('admin_user_id')
         node_id = self.request.query_params.get("node_id")
         show_current_asset = self.request.query_params.get("show_current_asset")
@@ -66,7 +68,6 @@ class AssetViewSet(IDInFilterMixin, LabelFilter, BulkModelViewSet):
                 queryset = queryset.filter(
                     nodes__key__regex='^{}(:[0-9]+)*$'.format(node.key),
                 ).distinct()
-
         return queryset
 
 
diff --git a/apps/assets/models/asset.py b/apps/assets/models/asset.py
index 7477cbc7f..6e6b6c678 100644
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -59,42 +59,70 @@ class Asset(models.Model):
         ('Other', 'Other'),
     )
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
-    ip = models.GenericIPAddressField(max_length=32, verbose_name=_('IP'), db_index=True)
-    hostname = models.CharField(max_length=128, unique=True, verbose_name=_('Hostname'))
+    ip = models.GenericIPAddressField(max_length=32, verbose_name=_('IP'),
+                                      db_index=True)
+    hostname = models.CharField(max_length=128, unique=True,
+                                verbose_name=_('Hostname'))
     port = models.IntegerField(default=22, verbose_name=_('Port'))
-    platform = models.CharField(max_length=128, choices=PLATFORM_CHOICES, default='Linux', verbose_name=_('Platform'))
-    domain = models.ForeignKey("assets.Domain", null=True, blank=True, related_name='assets', verbose_name=_("Domain"), on_delete=models.SET_NULL)
-    nodes = models.ManyToManyField('assets.Node', default=default_node, related_name='assets', verbose_name=_("Nodes"))
+    platform = models.CharField(max_length=128, choices=PLATFORM_CHOICES,
+                                default='Linux', verbose_name=_('Platform'))
+    domain = models.ForeignKey("assets.Domain", null=True, blank=True,
+                               related_name='assets', verbose_name=_("Domain"),
+                               on_delete=models.SET_NULL)
+    nodes = models.ManyToManyField('assets.Node', default=default_node,
+                                   related_name='assets',
+                                   verbose_name=_("Nodes"))
     is_active = models.BooleanField(default=True, verbose_name=_('Is active'))
 
     # Auth
-    admin_user = models.ForeignKey('assets.AdminUser', on_delete=models.PROTECT, null=True, verbose_name=_("Admin user"))
+    admin_user = models.ForeignKey('assets.AdminUser', on_delete=models.PROTECT,
+                                   null=True, verbose_name=_("Admin user"))
 
     # Some information
-    public_ip = models.GenericIPAddressField(max_length=32, blank=True, null=True, verbose_name=_('Public IP'))
-    number = models.CharField(max_length=32, null=True, blank=True, verbose_name=_('Asset number'))
+    public_ip = models.GenericIPAddressField(max_length=32, blank=True,
+                                             null=True,
+                                             verbose_name=_('Public IP'))
+    number = models.CharField(max_length=32, null=True, blank=True,
+                              verbose_name=_('Asset number'))
 
     # Collect
-    vendor = models.CharField(max_length=64, null=True, blank=True, verbose_name=_('Vendor'))
-    model = models.CharField(max_length=54, null=True, blank=True, verbose_name=_('Model'))
-    sn = models.CharField(max_length=128, null=True, blank=True, verbose_name=_('Serial number'))
+    vendor = models.CharField(max_length=64, null=True, blank=True,
+                              verbose_name=_('Vendor'))
+    model = models.CharField(max_length=54, null=True, blank=True,
+                             verbose_name=_('Model'))
+    sn = models.CharField(max_length=128, null=True, blank=True,
+                          verbose_name=_('Serial number'))
 
-    cpu_model = models.CharField(max_length=64, null=True, blank=True, verbose_name=_('CPU model'))
+    cpu_model = models.CharField(max_length=64, null=True, blank=True,
+                                 verbose_name=_('CPU model'))
     cpu_count = models.IntegerField(null=True, verbose_name=_('CPU count'))
     cpu_cores = models.IntegerField(null=True, verbose_name=_('CPU cores'))
-    memory = models.CharField(max_length=64, null=True, blank=True, verbose_name=_('Memory'))
-    disk_total = models.CharField(max_length=1024, null=True, blank=True, verbose_name=_('Disk total'))
-    disk_info = models.CharField(max_length=1024, null=True, blank=True, verbose_name=_('Disk info'))
+    memory = models.CharField(max_length=64, null=True, blank=True,
+                              verbose_name=_('Memory'))
+    disk_total = models.CharField(max_length=1024, null=True, blank=True,
+                                  verbose_name=_('Disk total'))
+    disk_info = models.CharField(max_length=1024, null=True, blank=True,
+                                 verbose_name=_('Disk info'))
 
-    os = models.CharField(max_length=128, null=True, blank=True, verbose_name=_('OS'))
-    os_version = models.CharField(max_length=16, null=True, blank=True, verbose_name=_('OS version'))
-    os_arch = models.CharField(max_length=16, blank=True, null=True, verbose_name=_('OS arch'))
-    hostname_raw = models.CharField(max_length=128, blank=True, null=True, verbose_name=_('Hostname raw'))
+    os = models.CharField(max_length=128, null=True, blank=True,
+                          verbose_name=_('OS'))
+    os_version = models.CharField(max_length=16, null=True, blank=True,
+                                  verbose_name=_('OS version'))
+    os_arch = models.CharField(max_length=16, blank=True, null=True,
+                               verbose_name=_('OS arch'))
+    hostname_raw = models.CharField(max_length=128, blank=True, null=True,
+                                    verbose_name=_('Hostname raw'))
 
-    labels = models.ManyToManyField('assets.Label', blank=True, related_name='assets', verbose_name=_("Labels"))
-    created_by = models.CharField(max_length=32, null=True, blank=True, verbose_name=_('Created by'))
-    date_created = models.DateTimeField(auto_now_add=True, null=True, blank=True, verbose_name=_('Date created'))
-    comment = models.TextField(max_length=128, default='', blank=True, verbose_name=_('Comment'))
+    labels = models.ManyToManyField('assets.Label', blank=True,
+                                    related_name='assets',
+                                    verbose_name=_("Labels"))
+    created_by = models.CharField(max_length=32, null=True, blank=True,
+                                  verbose_name=_('Created by'))
+    date_created = models.DateTimeField(auto_now_add=True, null=True,
+                                        blank=True,
+                                        verbose_name=_('Date created'))
+    comment = models.TextField(max_length=128, default='', blank=True,
+                               verbose_name=_('Comment'))
 
     objects = AssetManager()
 
@@ -121,6 +149,22 @@ class Asset(models.Model):
         nodes = self.nodes.all() or [Node.root()]
         return nodes
 
+    @property
+    def nodes_cache_key(self):
+        key = "NODES_OF_{}".format(str(self.id))
+        return key
+
+    def get_nodes_or_cache(self):
+        cached = cache.get(self.nodes_cache_key)
+        if cached is not None:
+            return cached
+        nodes = list(self.get_nodes())
+        cache.set(self.nodes_cache_key, nodes, 3600)
+        return nodes
+
+    def expire_nodes_cache(self):
+        cache.delete(self.nodes_cache_key)
+
     @property
     def hardware_info(self):
         if self.cpu_count:
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 784c8ae1b..ed712c8f8 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -13,9 +13,6 @@ __all__ = ['Node']
 class Node(models.Model):
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     key = models.CharField(unique=True, max_length=64, verbose_name=_("Key"))  # '1:1:1:1'
-    # value = models.CharField(
-    #     max_length=128, unique=True, verbose_name=_("Value")
-    # )
     value = models.CharField(max_length=128, verbose_name=_("Value"))
     child_mark = models.IntegerField(default=0)
     date_create = models.DateTimeField(auto_now_add=True)
@@ -31,10 +28,11 @@ class Node(models.Model):
 
     @property
     def full_value(self):
-        if self == self.__class__.root():
+        ancestor = [a.value for a in self.ancestor]
+        if self.is_root():
             return self.value
-        else:
-            return '{} / {}'.format(self.parent.full_value, self.value)
+        ancestor.append(self.value)
+        return ' / '.join(ancestor)
 
     @property
     def level(self):
@@ -118,7 +116,6 @@ class Node(models.Model):
     def parent(self):
         if self.key == "0" or not self.key.startswith("0"):
             return self.__class__.root()
-
         parent_key = ":".join(self.key.split(":")[:-1])
         try:
             parent = self.__class__.objects.get(key=parent_key)
@@ -132,16 +129,17 @@ class Node(models.Model):
 
     @property
     def ancestor(self):
-        _key = self.key.split(':')
-        ancestor_keys = []
-
         if self.is_root():
-            return [self.__class__.root()]
-
-        for i in range(len(_key)-1):
-            _key.pop()
-            ancestor_keys.append(':'.join(_key))
-        return self.__class__.objects.filter(key__in=ancestor_keys)
+            ancestor = self.__class__.objects.filter(key='0')
+        else:
+            _key = self.key.split(':')
+            ancestor_keys = []
+            for i in range(len(_key)-1):
+                _key.pop()
+                ancestor_keys.append(':'.join(_key))
+            ancestor = self.__class__.objects.filter(key__in=ancestor_keys)
+        ancestor = list(ancestor)
+        return ancestor
 
     @property
     def ancestor_with_self(self):
diff --git a/apps/assets/serializers/asset.py b/apps/assets/serializers/asset.py
index 2c5aa253c..ac666e3a7 100644
--- a/apps/assets/serializers/asset.py
+++ b/apps/assets/serializers/asset.py
@@ -12,34 +12,11 @@ __all__ = [
 ]
 
 
-class NodeTMPSerializer(serializers.ModelSerializer):
-    parent = serializers.SerializerMethodField()
-    assets_amount = serializers.SerializerMethodField()
-
-    class Meta:
-        model = Node
-        fields = ['id', 'key', 'value', 'parent', 'assets_amount', 'is_node']
-        list_serializer_class = BulkListSerializer
-
-    @staticmethod
-    def get_parent(obj):
-        return obj.parent.id
-
-    @staticmethod
-    def get_assets_amount(obj):
-        return obj.get_all_assets().count()
-
-    def get_fields(self):
-        fields = super().get_fields()
-        field = fields["key"]
-        field.required = False
-        return fields
-
-
 class AssetSerializer(BulkSerializerMixin, serializers.ModelSerializer):
     """
     资产的数据结构
     """
+    nodes = serializers.SerializerMethodField()
 
     class Meta:
         model = Asset
@@ -54,6 +31,10 @@ class AssetSerializer(BulkSerializerMixin, serializers.ModelSerializer):
         ])
         return fields
 
+    @staticmethod
+    def get_nodes(obj):
+        return [n.id for n in obj.get_nodes_or_cache()]
+
 
 class AssetGrantedSerializer(serializers.ModelSerializer):
     """
diff --git a/apps/assets/signals_handler.py b/apps/assets/signals_handler.py
index 06cd9f63e..16459c786 100644
--- a/apps/assets/signals_handler.py
+++ b/apps/assets/signals_handler.py
@@ -63,22 +63,31 @@ def on_system_user_assets_change(sender, instance=None, **kwargs):
 
 @receiver(m2m_changed, sender=Asset.nodes.through)
 def on_asset_node_changed(sender, instance=None, **kwargs):
-    if isinstance(instance, Asset) and kwargs['action'] == 'post_add':
-        logger.debug("Asset node change signal received")
-        nodes = kwargs['model'].objects.filter(pk__in=kwargs['pk_set'])
-        system_users_assets = defaultdict(set)
-        system_users = SystemUser.objects.filter(nodes__in=nodes)
-        for system_user in system_users:
-            system_users_assets[system_user].update({instance})
-        for system_user, assets in system_users_assets.items():
-            system_user.assets.add(*tuple(assets))
+    if isinstance(instance, Asset):
+        instance.expire_nodes_cache()
+        if kwargs['action'] == 'post_add':
+            logger.debug("Asset node change signal received")
+            nodes = kwargs['model'].objects.filter(pk__in=kwargs['pk_set'])
+            system_users_assets = defaultdict(set)
+            system_users = SystemUser.objects.filter(nodes__in=nodes)
+            # 清理节点缓存
+            for system_user in system_users:
+                system_users_assets[system_user].update({instance})
+            for system_user, assets in system_users_assets.items():
+                system_user.assets.add(*tuple(assets))
 
 
 @receiver(m2m_changed, sender=Asset.nodes.through)
 def on_node_assets_changed(sender, instance=None, **kwargs):
-    if isinstance(instance, Node) and kwargs['action'] == 'post_add':
-        logger.debug("Node assets change signal received")
+    if isinstance(instance, Node):
         assets = kwargs['model'].objects.filter(pk__in=kwargs['pk_set'])
-        system_users = SystemUser.objects.filter(nodes=instance)
-        for system_user in system_users:
-            system_user.assets.add(*tuple(assets))
+        # 清理资产节点缓存
+        for asset in assets:
+            asset.expire_nodes_cache()
+
+        if kwargs['action'] == 'post_add':
+            logger.debug("Node assets change signal received")
+            # 重新关联系统用户和资产的关系
+            system_users = SystemUser.objects.filter(nodes=instance)
+            for system_user in system_users:
+                system_user.assets.add(*tuple(assets))
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index adbd8cd1c..4844cda06 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -15,7 +15,7 @@ logger = get_logger(__file__)
 
 class Tree:
     def __init__(self):
-        self.__all_nodes = list(Node.objects.all())
+        self.__all_nodes = list(Node.objects.all().prefetch_related('assets'))
         self.__node_asset_map = defaultdict(set)
         self.nodes = defaultdict(dict)
         self.root = Node.root()
@@ -134,7 +134,7 @@ class AssetPermissionUtil:
         _assets = cls.get_user_group_assets(group)
         tree = Tree()
         for asset, _system_users in _assets.items():
-            _nodes = asset.get_nodes()
+            _nodes = asset.get_nodes_or_cache()
             tree.add_nodes(_nodes)
             for node in _nodes:
                 tree.nodes[node][asset].update(_system_users)
diff --git a/jms b/jms
index 0f07f0760..47eb81859 100755
--- a/jms
+++ b/jms
@@ -123,6 +123,7 @@ def start_gunicorn():
         'gunicorn', 'jumpserver.wsgi',
         '-b', bind,
         '-w', str(WORKERS),
+        '-k', 'eventlet',
         '--access-logformat', log_format,
         '-p', pid_file,
     ]

From 69e5ab438a5f0358c1984eb2f83dca0607e283d6 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 29 May 2018 18:58:56 +0800
Subject: [PATCH 064/112] =?UTF-8?q?[Bugfix]=20=E8=A7=A3=E5=86=B3=E5=8F=91?=
 =?UTF-8?q?=E9=80=81=E9=82=AE=E4=BB=B6=E9=87=8D=E5=90=AF=E7=9A=84=E9=97=AE?=
 =?UTF-8?q?=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/common/api.py   | 22 ++++++----------------
 apps/common/tasks.py |  5 +++++
 2 files changed, 11 insertions(+), 16 deletions(-)

diff --git a/apps/common/api.py b/apps/common/api.py
index 209d09747..63ed9723d 100644
--- a/apps/common/api.py
+++ b/apps/common/api.py
@@ -21,23 +21,13 @@ class MailTestingAPI(APIView):
         serializer = self.serializer_class(data=request.data)
         if serializer.is_valid():
             email_host_user = serializer.validated_data["EMAIL_HOST_USER"]
-            kwargs = {
-                "host": serializer.validated_data["EMAIL_HOST"],
-                "port": serializer.validated_data["EMAIL_PORT"],
-                "username": serializer.validated_data["EMAIL_HOST_USER"],
-                "password": serializer.validated_data["EMAIL_HOST_PASSWORD"],
-                "use_ssl": serializer.validated_data["EMAIL_USE_SSL"],
-                "use_tls": serializer.validated_data["EMAIL_USE_TLS"]
-            }
-            connection = get_connection(timeout=5, **kwargs)
+            for k, v in serializer.validated_data.items():
+                if k.startswith('EMAIL'):
+                    setattr(settings, k, v)
             try:
-                connection.open()
-            except Exception as e:
-                return Response({"error": str(e)}, status=401)
-
-            try:
-                send_mail("Test", "Test smtp setting", email_host_user,
-                          [email_host_user], connection=connection)
+                subject = "Test"
+                message = "Test smtp setting"
+                send_mail(subject, message,  email_host_user, [email_host_user])
             except Exception as e:
                 return Response({"error": str(e)}, status=401)
 
diff --git a/apps/common/tasks.py b/apps/common/tasks.py
index dec738921..bfb005511 100644
--- a/apps/common/tasks.py
+++ b/apps/common/tasks.py
@@ -2,6 +2,7 @@ from django.core.mail import send_mail
 from django.conf import settings
 from celery import shared_task
 from .utils import get_logger
+from .models import Setting
 
 
 logger = get_logger(__file__)
@@ -21,6 +22,10 @@ def send_mail_async(*args, **kwargs):
     Example:
     send_mail_sync.delay(subject, message, recipient_list, fail_silently=False, html_message=None)
     """
+    configs = Setting.objects.filter(name__startswith='EMAIL')
+    for config in configs:
+        setattr(settings, config.name, config.cleaned_value)
+
     if len(args) == 3:
         args = list(args)
         args[0] = settings.EMAIL_SUBJECT_PREFIX + args[0]

From 7c694c6885a2acf9c55d72bbdc0c94c2beb91724 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 29 May 2018 19:19:35 +0800
Subject: [PATCH 065/112] =?UTF-8?q?[Update]=20=E5=90=88=E5=B9=B6Node?=
 =?UTF-8?q?=E7=9A=84parent.setter=E6=96=B9=E6=B3=95=EF=BC=8C=E4=BF=AE?=
 =?UTF-8?q?=E6=94=B9node=5Ffake=E7=9A=84parent=E9=80=BB=E8=BE=91?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py    | 60 ++++++++++++++++++--------------------
 apps/assets/models/node.py | 22 +++++++-------
 2 files changed, 40 insertions(+), 42 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index 11f45cc8d..bb8cc719a 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -31,7 +31,7 @@ from .. import serializers
 logger = get_logger(__file__)
 __all__ = [
     'NodeViewSet', 'NodeChildrenApi',
-    'NodeAssetsApi', 'NodeWithAssetsApi',
+    'NodeAssetsApi',
     'NodeAddAssetsApi', 'NodeRemoveAssetsApi',
     'NodeReplaceAssetsApi',
     'NodeAddChildrenApi', 'RefreshNodeHardwareInfoApi',
@@ -50,32 +50,32 @@ class NodeViewSet(BulkModelViewSet):
         serializer.save()
 
 
-class NodeWithAssetsApi(generics.ListAPIView):
-    permission_classes = (IsSuperUser,)
-    serializers = serializers.NodeSerializer
-
-    def get_node(self):
-        pk = self.kwargs.get('pk') or self.request.query_params.get('node')
-        if not pk:
-            node = Node.root()
-        else:
-            node = get_object_or_404(Node, pk)
-        return node
-
-    def get_queryset(self):
-        queryset = []
-        node = self.get_node()
-        children = node.get_children()
-        assets = node.get_assets()
-        queryset.extend(list(children))
-
-        for asset in assets:
-            node = Node()
-            node.id = asset.id
-            node.parent = node.id
-            node.value = asset.hostname
-            queryset.append(node)
-        return queryset
+# class NodeWithAssetsApi(generics.ListAPIView):
+#     permission_classes = (IsSuperUser,)
+#     serializers = serializers.NodeSerializer
+#
+#     def get_node(self):
+#         pk = self.kwargs.get('pk') or self.request.query_params.get('node')
+#         if not pk:
+#             node = Node.root()
+#         else:
+#             node = get_object_or_404(Node, pk)
+#         return node
+#
+#     def get_queryset(self):
+#         queryset = []
+#         node = self.get_node()
+#         children = node.get_children()
+#         assets = node.get_assets()
+#         queryset.extend(list(children))
+#
+#         for asset in assets:
+#             node = Node()
+#             node.id = asset.id
+#             node.parent = node.id
+#             node.value = asset.hostname
+#             queryset.append(node)
+#         return queryset
 
 
 class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
@@ -139,9 +139,9 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
             for asset in assets:
                 node_fake = Node()
                 node_fake.id = asset.id
+                node_fake.is_node = False
                 node_fake.parent = node
                 node_fake.value = asset.hostname
-                node_fake.is_node = False
                 queryset.append(node_fake)
         queryset = sorted(queryset, key=lambda x: x.is_node, reverse=True)
         return queryset
@@ -177,9 +177,7 @@ class NodeAddChildrenApi(generics.UpdateAPIView):
         for node in children:
             if not node:
                 continue
-            # node.parent = instance
-            # node.save()
-            node.set_parent(instance)
+            node.parent = instance
         return Response("OK")
 
 
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 784c8ae1b..7c2fe7dcc 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -40,16 +40,6 @@ class Node(models.Model):
     def level(self):
         return len(self.key.split(':'))
 
-    def set_parent(self, instance):
-        children = self.get_all_children()
-        old_key = self.key
-        with transaction.atomic():
-            self.parent = instance
-            for child in children:
-                child.key = child.key.replace(old_key, self.key, 1)
-                child.save()
-            self.save()
-
     def get_next_child_key(self):
         mark = self.child_mark
         self.child_mark += 1
@@ -128,7 +118,17 @@ class Node(models.Model):
 
     @parent.setter
     def parent(self, parent):
-        self.key = parent.get_next_child_key()
+        if self.is_node:
+            children = self.get_all_children()
+            old_key = self.key
+            with transaction.atomic():
+                self.key = parent.get_next_child_key()
+                for child in children:
+                    child.key = child.key.replace(old_key, self.key, 1)
+                    child.save()
+                self.save()
+        else:
+            self.key = parent.key+':fake'
 
     @property
     def ancestor(self):

From 6c384b49fe7da7d9f99d6bbd46484ab6b1b25feb Mon Sep 17 00:00:00 2001
From: wojiushixiaobai <296015668@qq.com>
Date: Thu, 24 May 2018 13:02:38 +0800
Subject: [PATCH 066/112] =?UTF-8?q?=E4=BF=AE=E6=94=B9=E8=84=9A=E6=9C=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 utils/upgrade.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/utils/upgrade.sh b/utils/upgrade.sh
index e1cdabb76..a39d1301f 100644
--- a/utils/upgrade.sh
+++ b/utils/upgrade.sh
@@ -40,5 +40,6 @@ git pull && pip install -r requirements/requirements.txt && cd utils && sh make_
 cd .. && ./jms start all -d
 echo -e "\033[31m 请检查jumpserver是否启动成功 \033[0m"
 echo -e "\033[31m 备份文件存放于$jumpserver_backup目录 \033[0m"
+stty erase ^?
 
 exit 0

From dbcad472140fb7c873ca7c13f9a540516c5f7c83 Mon Sep 17 00:00:00 2001
From: wojiushixiaobai <296015668@qq.com>
Date: Wed, 30 May 2018 11:23:54 +0800
Subject: [PATCH 067/112] =?UTF-8?q?=E6=9B=B4=E6=96=B0=E5=8D=87=E7=BA=A7?=
 =?UTF-8?q?=E6=96=87=E6=A1=A3?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 utils/upgrade.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/utils/upgrade.sh b/utils/upgrade.sh
index a39d1301f..f700c9f7d 100644
--- a/utils/upgrade.sh
+++ b/utils/upgrade.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 
-if grep -q 'source ~/.autoenv/activate.sh' ~/.bashrc; then
+if grep -q 'source /opt/autoenv/activate.sh' ~/.bashrc; then
     echo -e "\033[31m 正在自动载入 python 环境 \033[0m"
 else
     echo -e "\033[31m 不支持自动升级，请参考 http://docs.jumpserver.org/zh/docs/upgrade.html 手动升级 \033[0m"

From f8ff223f90ba3a4ebd04d022fadd538d7eee48ff Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 31 May 2018 19:47:57 +0800
Subject: [PATCH 068/112] =?UTF-8?q?[Update]=20=E6=9B=B4=E6=96=B0api?=
 =?UTF-8?q?=E5=92=8Cmodel=E6=96=B9=E6=B3=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/asset.py     |  18 +----
 apps/assets/hands.py         |   1 -
 apps/assets/models/asset.py  |  10 +++
 apps/assets/models/node.py   |  76 +++++++++++---------
 apps/assets/urls/api_urls.py |  29 +++++---
 apps/perms/api.py            |   4 +-
 apps/perms/utils.py          | 130 ++++++++++-------------------------
 7 files changed, 110 insertions(+), 158 deletions(-)

diff --git a/apps/assets/api/asset.py b/apps/assets/api/asset.py
index 1227b01c9..ff5047ba3 100644
--- a/apps/assets/api/asset.py
+++ b/apps/assets/api/asset.py
@@ -11,8 +11,7 @@ from django.db.models import Q
 
 from common.mixins import IDInFilterMixin
 from common.utils import get_logger
-from ..hands import IsSuperUser, IsValidUser, IsSuperUserOrAppUser, \
-    NodePermissionUtil
+from ..hands import IsSuperUser, IsValidUser, IsSuperUserOrAppUser
 from ..models import Asset, SystemUser, AdminUser, Node
 from .. import serializers
 from ..tasks import update_asset_hardware_info_manual, \
@@ -22,7 +21,7 @@ from ..utils import LabelFilter
 
 logger = get_logger(__file__)
 __all__ = [
-    'AssetViewSet', 'UserAssetListView', 'AssetListUpdateApi',
+    'AssetViewSet', 'AssetListUpdateApi',
     'AssetRefreshHardwareApi', 'AssetAdminUserTestApi'
 ]
 
@@ -71,19 +70,6 @@ class AssetViewSet(IDInFilterMixin, LabelFilter, BulkModelViewSet):
         return queryset
 
 
-class UserAssetListView(generics.ListAPIView):
-    queryset = Asset.objects.all()
-    serializer_class = serializers.AssetSerializer
-    permission_classes = (IsValidUser,)
-
-    def get_queryset(self):
-        assets_granted = NodePermissionUtil.get_user_assets(self.request.user).keys()
-        queryset = self.queryset.filter(
-            id__in=[asset.id for asset in assets_granted]
-        )
-        return queryset
-
-
 class AssetListUpdateApi(IDInFilterMixin, ListBulkCreateUpdateDestroyAPIView):
     """
     Asset bulk update api
diff --git a/apps/assets/hands.py b/apps/assets/hands.py
index ad44052d3..a1a376135 100644
--- a/apps/assets/hands.py
+++ b/apps/assets/hands.py
@@ -14,4 +14,3 @@
 from common.mixins import AdminUserRequiredMixin
 from common.permissions import IsAppUser, IsSuperUser, IsValidUser, IsSuperUserOrAppUser
 from users.models import User, UserGroup
-from perms.utils import NodePermissionUtil
diff --git a/apps/assets/models/asset.py b/apps/assets/models/asset.py
index 6e6b6c678..a6a1d48d0 100644
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -5,6 +5,7 @@
 import uuid
 import logging
 import random
+from functools import reduce
 
 from django.db import models
 from django.utils.translation import ugettext_lazy as _
@@ -149,6 +150,15 @@ class Asset(models.Model):
         nodes = self.nodes.all() or [Node.root()]
         return nodes
 
+    def get_all_nodes(self, flat=False):
+        nodes = []
+        for node in self.get_nodes_or_cache():
+            _nodes = node.get_ancestor(with_self=True)
+            _nodes.append(_nodes)
+        if flat:
+            nodes = list(reduce(lambda x, y: set(x) | set(y), nodes))
+        return nodes
+
     @property
     def nodes_cache_key(self):
         key = "NODES_OF_{}".format(str(self.id))
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index ed712c8f8..88b685d28 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -28,10 +28,9 @@ class Node(models.Model):
 
     @property
     def full_value(self):
-        ancestor = [a.value for a in self.ancestor]
+        ancestor = [a.value for a in self.get_ancestor(with_self=True)]
         if self.is_root():
             return self.value
-        ancestor.append(self.value)
         return ' / '.join(ancestor)
 
     @property
@@ -55,32 +54,35 @@ class Node(models.Model):
         return "{}:{}".format(self.key, mark)
 
     def create_child(self, value):
-        child_key = self.get_next_child_key()
-        child = self.__class__.objects.create(key=child_key, value=value)
-        return child
+        with transaction.atomic():
+            child_key = self.get_next_child_key()
+            child = self.__class__.objects.create(key=child_key, value=value)
+            return child
 
-    def get_children(self):
+    def get_children(self, with_self=False):
+        pattern = r'^{0}$|^{}:[0-9]+$' if with_self else r'^{}:[0-9]+$'
         return self.__class__.objects.filter(
-            key__regex=r'^{}:[0-9]+$'.format(self.key)
+            key__regex=pattern.format(self.key)
         )
 
-    def get_children_with_self(self):
+    def get_all_children(self, with_self=False):
+        pattern = r'^{0}$|^{0}:' if with_self else r'^{0}'
         return self.__class__.objects.filter(
-            key__regex=r'^{0}$|^{0}:[0-9]+$'.format(self.key)
+            key__regex=pattern.format(self.key)
         )
 
-    def get_all_children(self):
-        return self.__class__.objects.filter(
-            key__startswith='{}:'.format(self.key)
-        )
-
-    def get_all_children_with_self(self):
-        return self.__class__.objects.filter(
-            key__regex=r'^{0}$|^{0}:'.format(self.key)
+    def get_sibling(self, with_self=False):
+        key = ':'.join(self.key.split(':')[:-1])
+        pattern = r'^{}:[0-9]+$'.format(key)
+        sibling = self.__class__.objects.filter(
+            key__regex=pattern.format(self.key)
         )
+        if not with_self:
+            sibling = sibling.exclude(key=self.key)
+        return sibling
 
     def get_family(self):
-        ancestor = self.ancestor
+        ancestor = self.get_ancestor()
         children = self.get_all_children()
         return [*tuple(ancestor), self, *tuple(children)]
 
@@ -102,7 +104,7 @@ class Node(models.Model):
         if self.is_root():
             assets = Asset.objects.all()
         else:
-            nodes = self.get_all_children_with_self()
+            nodes = self.get_all_children(with_self=True)
             assets = Asset.objects.filter(nodes__in=nodes).distinct()
         return assets
 
@@ -127,24 +129,21 @@ class Node(models.Model):
     def parent(self, parent):
         self.key = parent.get_next_child_key()
 
-    @property
-    def ancestor(self):
+    def get_ancestor(self, with_self=False):
         if self.is_root():
             ancestor = self.__class__.objects.filter(key='0')
-        else:
-            _key = self.key.split(':')
-            ancestor_keys = []
-            for i in range(len(_key)-1):
-                _key.pop()
-                ancestor_keys.append(':'.join(_key))
-            ancestor = self.__class__.objects.filter(key__in=ancestor_keys)
-        ancestor = list(ancestor)
-        return ancestor
+            return ancestor
 
-    @property
-    def ancestor_with_self(self):
-        ancestor = list(self.ancestor)
-        ancestor.insert(0, self)
+        _key = self.key.split(':')
+        if not with_self:
+            _key.pop()
+        ancestor_keys = []
+        for i in range(len(_key)):
+            ancestor_keys.append(':'.join(_key))
+            _key.pop()
+        ancestor = self.__class__.objects.filter(
+            key__in=ancestor_keys
+        ).order_by('key')
         return ancestor
 
     @classmethod
@@ -153,3 +152,12 @@ class Node(models.Model):
             key='0', defaults={"key": '0', 'value': "ROOT"}
         )
         return obj
+
+
+class Tree:
+    def __init__(self, root):
+        self.root = root
+        self.nodes = []
+
+    def add_node(self, node):
+        pass
diff --git a/apps/assets/urls/api_urls.py b/apps/assets/urls/api_urls.py
index 4429d0f24..ce622d648 100644
--- a/apps/assets/urls/api_urls.py
+++ b/apps/assets/urls/api_urls.py
@@ -23,8 +23,6 @@ urlpatterns = [
         api.AssetRefreshHardwareApi.as_view(), name='asset-refresh'),
     url(r'^v1/assets/(?P<pk>[0-9a-zA-Z\-]{36})/alive/$',
         api.AssetAdminUserTestApi.as_view(), name='asset-alive-test'),
-    url(r'^v1/assets/user-assets/$',
-        api.UserAssetListView.as_view(), name='user-asset-list'),
     url(r'^v1/admin-user/(?P<pk>[0-9a-zA-Z\-]{36})/nodes/$',
         api.ReplaceNodesAdminUserApi.as_view(), name='replace-nodes-admin-user'),
     url(r'^v1/admin-user/(?P<pk>[0-9a-zA-Z\-]{36})/auth/$',
@@ -35,17 +33,26 @@ urlpatterns = [
         api.SystemUserPushApi.as_view(), name='system-user-push'),
     url(r'^v1/system-user/(?P<pk>[0-9a-zA-Z\-]{36})/connective/$',
         api.SystemUserTestConnectiveApi.as_view(), name='system-user-connective'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/children/$', api.NodeChildrenApi.as_view(), name='node-children'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/children/$',
+        api.NodeChildrenApi.as_view(), name='node-children'),
     url(r'^v1/nodes/children/$', api.NodeChildrenApi.as_view(), name='node-children-2'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/children/add/$', api.NodeAddChildrenApi.as_view(), name='node-add-children'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/$', api.NodeAssetsApi.as_view(), name='node-assets'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/add/$', api.NodeAddAssetsApi.as_view(), name='node-add-assets'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/replace/$', api.NodeReplaceAssetsApi.as_view(), name='node-replace-assets'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/remove/$', api.NodeRemoveAssetsApi.as_view(), name='node-remove-assets'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/refresh-hardware-info/$', api.RefreshNodeHardwareInfoApi.as_view(), name='node-refresh-hardware-info'),
-    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/test-connective/$', api.TestNodeConnectiveApi.as_view(), name='node-test-connective'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/children/add/$',
+        api.NodeAddChildrenApi.as_view(), name='node-add-children'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/$',
+        api.NodeAssetsApi.as_view(), name='node-assets'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/add/$',
+        api.NodeAddAssetsApi.as_view(), name='node-add-assets'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/replace/$',
+        api.NodeReplaceAssetsApi.as_view(), name='node-replace-assets'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/assets/remove/$',
+        api.NodeRemoveAssetsApi.as_view(), name='node-remove-assets'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/refresh-hardware-info/$',
+        api.RefreshNodeHardwareInfoApi.as_view(), name='node-refresh-hardware-info'),
+    url(r'^v1/nodes/(?P<pk>[0-9a-zA-Z\-]{36})/test-connective/$',
+        api.TestNodeConnectiveApi.as_view(), name='node-test-connective'),
 
-    url(r'^v1/gateway/(?P<pk>[0-9a-zA-Z\-]{36})/test-connective/$', api.GatewayTestConnectionApi.as_view(), name='test-gateway-connective'),
+    url(r'^v1/gateway/(?P<pk>[0-9a-zA-Z\-]{36})/test-connective/$',
+        api.GatewayTestConnectionApi.as_view(), name='test-gateway-connective'),
 ]
 
 urlpatterns += router.urls
diff --git a/apps/perms/api.py b/apps/perms/api.py
index bd2fb1139..b4172d03f 100644
--- a/apps/perms/api.py
+++ b/apps/perms/api.py
@@ -41,11 +41,11 @@ class AssetPermissionViewSet(viewsets.ModelViewSet):
             asset = get_object_or_404(Asset, pk=asset_id)
             permissions = set(queryset.filter(assets=asset))
             for node in asset.nodes.all():
-                inherit_nodes.update(set(node.ancestor_with_self))
+                inherit_nodes.update(set(node.get_ancestor(with_self=True)))
         elif node_id:
             node = get_object_or_404(Node, pk=node_id)
             permissions = set(queryset.filter(nodes=node))
-            inherit_nodes = node.ancestor
+            inherit_nodes = node.get_ancestor()
 
         for n in inherit_nodes:
             _permissions = queryset.filter(nodes=n)
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index 4844cda06..91f530f1d 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -3,12 +3,13 @@
 from __future__ import absolute_import, unicode_literals
 import collections
 from collections import defaultdict
+from django.db.models import Q
 from django.utils import timezone
 import copy
 
 from common.utils import set_or_append_attr_bulk, get_logger
 from .models import AssetPermission
-from .hands import Node
+from .hands import Node, User, UserGroup, Asset, SystemUser
 
 logger = get_logger(__file__)
 
@@ -254,106 +255,47 @@ class AssetPermissionUtil:
         return system_users
 
 
-# Abandon
-class NodePermissionUtil:
-    """
+class AssetPermissionUtilsV2:
+    def __init__(self, obj):
+        self.object = obj
+        self._permissions = None
 
-    """
+    @staticmethod
+    def get_user_permissions(user):
+        groups = user.groups.all()
+        return AssetPermission.objects.all().valid().filter(
+            Q(users=user) | Q(user_groups=groups)
+        )
 
     @staticmethod
     def get_user_group_permissions(user_group):
-        return user_group.nodepermission_set.all() \
-            .filter(is_active=True) \
-            .filter(date_expired__gt=timezone.now())
+        return AssetPermission.objects.all().valid().filter(
+            user_groups=user_group
+        )
+
+    @staticmethod
+    def get_asset_permissions(asset):
+        direct_nodes = asset.get_nodes_or_cache()
+
+        return AssetPermission.objects.all().valid().filter(
+            Q(assets=asset) | Q(nodes=direct_nodes)
+        )
+
+    @staticmethod
+    def get_node_permissions(node):
+        return AssetPermission.objects.all().valid().filter(nodes=node)
 
     @staticmethod
     def get_system_user_permissions(system_user):
-        return system_user.nodepermission_set.all() \
-            .filter(is_active=True) \
-            .filter(date_expired__gt=timezone.now())
+        return AssetPermission.objects.valid().all().filter(
+            system_users=system_user
+        )
 
-    @classmethod
-    def get_user_group_nodes(cls, user_group):
-        """
-        获取用户组授权的node和系统用户
-        :param user_group:
-        :return: {"node": set(systemuser1, systemuser2), ..}
-        """
-        permissions = cls.get_user_group_permissions(user_group)
-        nodes_directed = collections.defaultdict(set)
+    @property
+    def permissions(self):
+        if self._permissions:
+            return self._permissions
+        if isinstance(self.object, User):
+            pass
 
-        for perm in permissions:
-            nodes_directed[perm.node].add(perm.system_user)
-
-        nodes = copy.deepcopy(nodes_directed)
-        for node, system_users in nodes_directed.items():
-            for child in node.get_all_children_with_self():
-                nodes[child].update(system_users)
-        return nodes
-
-    @classmethod
-    def get_user_group_nodes_with_assets(cls, user_group):
-        """
-        获取用户组授权的节点和系统用户，节点下带有资产
-        :param user_group:
-        :return: {"node": {"assets": "", "system_user": ""}, {}}
-        """
-        nodes = cls.get_user_group_nodes(user_group)
-        nodes_with_assets = dict()
-        for node, system_users in nodes.items():
-            nodes_with_assets[node] = {
-                'assets': node.get_valid_assets(),
-                'system_users': system_users
-            }
-        return nodes_with_assets
-
-    @classmethod
-    def get_user_group_assets(cls, user_group):
-        assets = collections.defaultdict(set)
-        permissions = cls.get_user_group_permissions(user_group)
-
-        for perm in permissions:
-            for asset in perm.node.get_all_assets():
-                assets[asset].add(perm.system_user)
-        return assets
-
-    @classmethod
-    def get_user_nodes(cls, user):
-        nodes = collections.defaultdict(set)
-        groups = user.groups.all()
-        for group in groups:
-            group_nodes = cls.get_user_group_nodes(group)
-            for node, system_users in group_nodes.items():
-                nodes[node].update(system_users)
-        return nodes
-
-    @classmethod
-    def get_user_nodes_with_assets(cls, user):
-        nodes = cls.get_user_nodes(user)
-        nodes_with_assets = dict()
-        for node, system_users in nodes.items():
-            nodes_with_assets[node] = {
-                'assets': node.get_valid_assets(),
-                'system_users': system_users
-            }
-        return nodes_with_assets
-
-    @classmethod
-    def get_user_assets(cls, user):
-        assets = collections.defaultdict(set)
-        nodes_with_assets = cls.get_user_nodes_with_assets(user)
-
-        for v in nodes_with_assets.values():
-            for asset in v['assets']:
-                assets[asset].update(v['system_users'])
-        return assets
-
-    @classmethod
-    def get_system_user_assets(cls, system_user):
-        assets = set()
-        permissions = cls.get_system_user_permissions(system_user)
-
-        for perm in permissions:
-            assets.update(perm.node.get_all_assets())
-        return assets
 

From a9d1538135b98de5c424498d43aef7d810f9ef4b Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 1 Jun 2018 15:34:08 +0800
Subject: [PATCH 069/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E4=B8=80?=
 =?UTF-8?q?=E4=BA=9B=E6=96=B9=E6=B3=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/models/asset.py      |  18 +-
 apps/assets/models/node.py       |  28 ++-
 apps/assets/serializers/asset.py |   6 -
 apps/assets/serializers/node.py  |   5 +-
 apps/assets/signals_handler.py   |   5 -
 apps/perms/api.py                |  27 ++-
 apps/perms/utils.py              | 361 ++++++++-----------------------
 7 files changed, 130 insertions(+), 320 deletions(-)

diff --git a/apps/assets/models/asset.py b/apps/assets/models/asset.py
index a6a1d48d0..a974d3385 100644
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -152,29 +152,13 @@ class Asset(models.Model):
 
     def get_all_nodes(self, flat=False):
         nodes = []
-        for node in self.get_nodes_or_cache():
+        for node in self.get_nodes():
             _nodes = node.get_ancestor(with_self=True)
             _nodes.append(_nodes)
         if flat:
             nodes = list(reduce(lambda x, y: set(x) | set(y), nodes))
         return nodes
 
-    @property
-    def nodes_cache_key(self):
-        key = "NODES_OF_{}".format(str(self.id))
-        return key
-
-    def get_nodes_or_cache(self):
-        cached = cache.get(self.nodes_cache_key)
-        if cached is not None:
-            return cached
-        nodes = list(self.get_nodes())
-        cache.set(self.nodes_cache_key, nodes, 3600)
-        return nodes
-
-    def expire_nodes_cache(self):
-        cache.delete(self.nodes_cache_key)
-
     @property
     def hardware_info(self):
         if self.cpu_count:
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index 88b685d28..dea6c01ef 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -22,6 +22,21 @@ class Node(models.Model):
     def __str__(self):
         return self.full_value
 
+    def __eq__(self, other):
+        return self.key == other.key
+
+    def __gt__(self, other):
+        if self.is_root():
+            return True
+        self_key = [int(k) for k in self.key.split(':')]
+        other_key = [int(k) for k in other.key.split(':')]
+        if len(self_key) < len(other_key):
+            return True
+        elif len(self_key) > len(other_key):
+            return False
+        else:
+            return self_key[-1] < other_key[-1]
+
     @property
     def name(self):
         return self.value
@@ -93,7 +108,7 @@ class Node(models.Model):
                 Q(nodes__id=self.id) | Q(nodes__isnull=True)
             )
         else:
-            assets = Asset.objects.filter(nodes__id=self.id)
+            assets = self.assets.all()
         return assets
 
     def get_valid_assets(self):
@@ -104,8 +119,8 @@ class Node(models.Model):
         if self.is_root():
             assets = Asset.objects.all()
         else:
-            nodes = self.get_all_children(with_self=True)
-            assets = Asset.objects.filter(nodes__in=nodes).distinct()
+            pattern = r'^{0}$|^{0}:'.format(self.key)
+            assets = Asset.objects.filter(nodes__key__regex=pattern)
         return assets
 
     def get_all_valid_assets(self):
@@ -154,10 +169,3 @@ class Node(models.Model):
         return obj
 
 
-class Tree:
-    def __init__(self, root):
-        self.root = root
-        self.nodes = []
-
-    def add_node(self, node):
-        pass
diff --git a/apps/assets/serializers/asset.py b/apps/assets/serializers/asset.py
index ac666e3a7..a0fdfab73 100644
--- a/apps/assets/serializers/asset.py
+++ b/apps/assets/serializers/asset.py
@@ -16,8 +16,6 @@ class AssetSerializer(BulkSerializerMixin, serializers.ModelSerializer):
     """
     资产的数据结构
     """
-    nodes = serializers.SerializerMethodField()
-
     class Meta:
         model = Asset
         list_serializer_class = BulkListSerializer
@@ -31,10 +29,6 @@ class AssetSerializer(BulkSerializerMixin, serializers.ModelSerializer):
         ])
         return fields
 
-    @staticmethod
-    def get_nodes(obj):
-        return [n.id for n in obj.get_nodes_or_cache()]
-
 
 class AssetGrantedSerializer(serializers.ModelSerializer):
     """
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index 73639a100..90e140710 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -68,7 +68,10 @@ class NodeSerializer(serializers.ModelSerializer):
 
     @staticmethod
     def get_assets_amount(obj):
-        return obj.get_all_assets().count()
+        if obj.is_node:
+            return obj.get_all_assets().count()
+        else:
+            return 0
 
     def get_fields(self):
         fields = super().get_fields()
diff --git a/apps/assets/signals_handler.py b/apps/assets/signals_handler.py
index 16459c786..157c88012 100644
--- a/apps/assets/signals_handler.py
+++ b/apps/assets/signals_handler.py
@@ -64,7 +64,6 @@ def on_system_user_assets_change(sender, instance=None, **kwargs):
 @receiver(m2m_changed, sender=Asset.nodes.through)
 def on_asset_node_changed(sender, instance=None, **kwargs):
     if isinstance(instance, Asset):
-        instance.expire_nodes_cache()
         if kwargs['action'] == 'post_add':
             logger.debug("Asset node change signal received")
             nodes = kwargs['model'].objects.filter(pk__in=kwargs['pk_set'])
@@ -81,10 +80,6 @@ def on_asset_node_changed(sender, instance=None, **kwargs):
 def on_node_assets_changed(sender, instance=None, **kwargs):
     if isinstance(instance, Node):
         assets = kwargs['model'].objects.filter(pk__in=kwargs['pk_set'])
-        # 清理资产节点缓存
-        for asset in assets:
-            asset.expire_nodes_cache()
-
         if kwargs['action'] == 'post_add':
             logger.debug("Node assets change signal received")
             # 重新关联系统用户和资产的关系
diff --git a/apps/perms/api.py b/apps/perms/api.py
index b4172d03f..33a027064 100644
--- a/apps/perms/api.py
+++ b/apps/perms/api.py
@@ -70,7 +70,8 @@ class UserGrantedAssetsApi(ListAPIView):
         else:
             user = self.request.user
 
-        for k, v in AssetPermissionUtil.get_user_assets(user).items():
+        util = AssetPermissionUtil(user)
+        for k, v in util.get_assets().items():
             if k.is_unixlike():
                 system_users_granted = [s for s in v if s.protocol == 'ssh']
             else:
@@ -95,7 +96,8 @@ class UserGrantedNodesApi(ListAPIView):
             user = get_object_or_404(User, id=user_id)
         else:
             user = self.request.user
-        nodes = AssetPermissionUtil.get_user_nodes_with_assets(user)
+        util = AssetPermissionUtil(user)
+        nodes = util.get_nodes_with_assets()
         return nodes.keys()
 
     def get_permissions(self):
@@ -116,7 +118,8 @@ class UserGrantedNodesWithAssetsApi(ListAPIView):
         else:
             user = get_object_or_404(User, id=user_id)
 
-        nodes = AssetPermissionUtil.get_user_nodes_with_assets(user)
+        util = AssetPermissionUtil(user)
+        nodes = util.get_nodes_with_assets()
         for node, _assets in nodes.items():
             assets = _assets.keys()
             for k, v in _assets.items():
@@ -147,8 +150,9 @@ class UserGrantedNodeAssetsApi(ListAPIView):
             user = get_object_or_404(User, id=user_id)
         else:
             user = self.request.user
+        util = AssetPermissionUtil(user)
         node = get_object_or_404(Node, id=node_id)
-        nodes = AssetPermissionUtil.get_user_nodes_with_assets(user)
+        nodes = util.get_nodes_with_assets()
         assets = nodes.get(node, [])
         for asset, system_users in assets.items():
             asset.system_users_granted = system_users
@@ -172,7 +176,8 @@ class UserGroupGrantedAssetsApi(ListAPIView):
             return queryset
 
         user_group = get_object_or_404(UserGroup, id=user_group_id)
-        assets = AssetPermissionUtil.get_user_group_assets(user_group)
+        util = AssetPermissionUtil(user_group)
+        assets = util.get_assets()
         for k, v in assets.items():
             k.system_users_granted = v
             queryset.append(k)
@@ -189,7 +194,8 @@ class UserGroupGrantedNodesApi(ListAPIView):
 
         if group_id:
             group = get_object_or_404(UserGroup, id=group_id)
-            nodes = AssetPermissionUtil.get_user_group_nodes_with_assets(group)
+            util = AssetPermissionUtil(group)
+            nodes = util.get_nodes_with_assets()
             return nodes.keys()
         return queryset
 
@@ -206,7 +212,8 @@ class UserGroupGrantedNodesWithAssetsApi(ListAPIView):
             return queryset
 
         user_group = get_object_or_404(UserGroup, id=user_group_id)
-        nodes = AssetPermissionUtil.get_user_group_nodes_with_assets(user_group)
+        util = AssetPermissionUtil(user_group)
+        nodes = util.get_nodes_with_assets()
         for node, _assets in nodes.items():
             assets = _assets.keys()
             for asset, system_users in _assets.items():
@@ -226,7 +233,8 @@ class UserGroupGrantedNodeAssetsApi(ListAPIView):
 
         user_group = get_object_or_404(UserGroup, id=user_group_id)
         node = get_object_or_404(Node, id=node_id)
-        nodes = AssetPermissionUtil.get_user_group_nodes_with_assets(user_group)
+        util = AssetPermissionUtil(user_group)
+        nodes = util.get_nodes_with_assets()
         assets = nodes.get(node, [])
         for asset, system_users in assets.items():
             asset.system_users_granted = system_users
@@ -246,7 +254,8 @@ class ValidateUserAssetPermissionView(APIView):
         asset = get_object_or_404(Asset, id=asset_id)
         system_user = get_object_or_404(SystemUser, id=system_id)
 
-        assets_granted = AssetPermissionUtil.get_user_assets(user)
+        util = AssetPermissionUtil(user)
+        assets_granted = util.get_assets()
         if system_user in assets_granted.get(asset, []):
             return Response({'msg': True}, status=200)
         else:
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index 91f530f1d..36c432826 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -1,301 +1,118 @@
 # coding: utf-8
 
 from __future__ import absolute_import, unicode_literals
-import collections
 from collections import defaultdict
 from django.db.models import Q
-from django.utils import timezone
-import copy
 
-from common.utils import set_or_append_attr_bulk, get_logger
+from common.utils import get_logger
 from .models import AssetPermission
-from .hands import Node, User, UserGroup, Asset, SystemUser
+from .hands import Node
 
 logger = get_logger(__file__)
 
 
-class Tree:
-    def __init__(self):
-        self.__all_nodes = list(Node.objects.all().prefetch_related('assets'))
-        self.__node_asset_map = defaultdict(set)
-        self.nodes = defaultdict(dict)
-        self.root = Node.root()
-        self.init_node_asset_map()
+def get_user_permissions(user, include_group=True):
+    if include_group:
+        groups = user.groups.all()
+        arg = Q(users=user) | Q(user_groups=groups)
+    else:
+        arg = Q(users=user)
+    return AssetPermission.objects.all().valid().filter(arg)
 
-    def init_node_asset_map(self):
-        for node in self.__all_nodes:
-            assets = node.get_assets().values_list('id', flat=True)
-            for asset in assets:
-                self.__node_asset_map[str(asset)].add(node)
 
-    def add_asset(self, asset, system_users):
-        nodes = self.__node_asset_map.get(str(asset.id), [])
-        self.add_nodes(nodes)
-        for node in nodes:
-            self.nodes[node][asset].update(system_users)
+def get_user_group_permissions(user_group):
+    return AssetPermission.objects.all().valid().filter(
+        user_groups=user_group
+    )
 
-    def add_node(self, node):
-        if node in self.nodes:
-            return
-        else:
-            self.nodes[node] = defaultdict(set)
-        if node.key == self.root.key:
-            return
-        parent_key = ':'.join(node.key.split(':')[:-1])
-        for n in self.__all_nodes:
-            if n.key == parent_key:
-                self.add_node(n)
-                break
 
-    def add_nodes(self, nodes):
-        for node in nodes:
-            self.add_node(node)
+def get_asset_permissions(asset, include_node=True):
+    if include_node:
+        nodes = asset.get_all_nodes(flat=True)
+        arg = Q(assets=asset) | Q(nodes=nodes)
+    else:
+        arg = Q(assets=asset)
+    return AssetPermission.objects.all().valid().filter(arg)
+
+
+def get_node_permissions(node):
+    return AssetPermission.objects.all().valid().filter(nodes=node)
+
+
+def get_system_user_permissions(system_user):
+    return AssetPermission.objects.valid().all().filter(
+        system_users=system_user
+    )
 
 
 class AssetPermissionUtil:
-    @staticmethod
-    def get_user_permissions(user):
-        return AssetPermission.objects.all().valid().filter(users=user)
+    get_permissions_map = {
+        "User": get_user_permissions,
+        "UserGroup": get_user_group_permissions,
+        "Asset": get_asset_permissions,
+        "Node": get_node_permissions,
+        "SystemUser": get_node_permissions,
+    }
 
-    @staticmethod
-    def get_user_group_permissions(user_group):
-        return AssetPermission.objects.all().valid().filter(
-            user_groups=user_group
-        )
-
-    @staticmethod
-    def get_asset_permissions(asset):
-        return AssetPermission.objects.all().valid().filter(
-            assets=asset
-        )
-
-    @staticmethod
-    def get_node_permissions(node):
-        return AssetPermission.objects.all().valid().filter(nodes=node)
-
-    @staticmethod
-    def get_system_user_permissions(system_user):
-        return AssetPermission.objects.valid().all().filter(
-            system_users=system_user
-        )
-
-    @classmethod
-    def get_user_group_nodes(cls, group):
-        nodes = defaultdict(set)
-        permissions = cls.get_user_group_permissions(group)
-        for perm in permissions:
-            _nodes = perm.nodes.all()
-            _system_users = perm.system_users.all()
-            set_or_append_attr_bulk(_nodes, 'permission', perm.id)
-            for node in _nodes:
-                nodes[node].update(set(_system_users))
-        return nodes
-
-    @classmethod
-    def get_user_group_assets_direct(cls, group):
-        assets = defaultdict(set)
-        permissions = cls.get_user_group_permissions(group)
-        for perm in permissions:
-            _assets = perm.assets.all().valid()
-            _system_users = perm.system_users.all()
-            set_or_append_attr_bulk(_assets, 'permission', perm.id)
-            for asset in _assets:
-                assets[asset].update(set(_system_users))
-        return assets
-
-    @classmethod
-    def get_user_group_nodes_assets(cls, group):
-        assets = defaultdict(set)
-        nodes = cls.get_user_group_nodes(group)
-        for node, _system_users in nodes.items():
-            _assets = node.get_all_valid_assets()
-            set_or_append_attr_bulk(_assets, 'inherit_node', node.id)
-            set_or_append_attr_bulk(_assets, 'permission', getattr(node, 'permission', None))
-            for asset in _assets:
-                assets[asset].update(set(_system_users))
-        return assets
-
-    @classmethod
-    def get_user_group_assets(cls, group):
-        assets = defaultdict(set)
-        _assets = cls.get_user_group_assets_direct(group)
-        _nodes_assets = cls.get_user_group_nodes_assets(group)
-        for asset, _system_users in _assets.items():
-            assets[asset].update(set(_system_users))
-        for asset, _system_users in _nodes_assets.items():
-            assets[asset].update(set(_system_users))
-        return assets
-
-    @classmethod
-    def get_user_group_nodes_with_assets(cls, group):
-        """
-        :param group:
-        :return: {node: {asset: set(su1, su2)}}
-        """
-        _assets = cls.get_user_group_assets(group)
-        tree = Tree()
-        for asset, _system_users in _assets.items():
-            _nodes = asset.get_nodes_or_cache()
-            tree.add_nodes(_nodes)
-            for node in _nodes:
-                tree.nodes[node][asset].update(_system_users)
-        return tree.nodes
-
-    @classmethod
-    def get_user_assets_direct(cls, user):
-        assets = defaultdict(set)
-        permissions = list(cls.get_user_permissions(user))
-        for perm in permissions:
-            _assets = perm.assets.all().valid()
-            _system_users = perm.system_users.all()
-            set_or_append_attr_bulk(_assets, 'permission', perm.id)
-            for asset in _assets:
-                assets[asset].update(set(_system_users))
-        return assets
-
-    @classmethod
-    def get_user_nodes_direct(cls, user):
-        nodes = defaultdict(set)
-        permissions = cls.get_user_permissions(user)
-        for perm in permissions:
-            _nodes = perm.nodes.all()
-            _system_users = perm.system_users.all()
-            set_or_append_attr_bulk(_nodes, 'permission', perm.id)
-            for node in _nodes:
-                nodes[node].update(set(_system_users))
-        return nodes
-
-    @classmethod
-    def get_user_nodes_inherit_group(cls, user):
-        nodes = defaultdict(set)
-        groups = user.groups.all()
-        for group in groups:
-            _nodes = cls.get_user_group_nodes(group)
-            for node, system_users in _nodes.items():
-                nodes[node].update(set(system_users))
-        return nodes
-
-    @classmethod
-    def get_user_nodes(cls, user):
-        nodes = cls.get_user_nodes_direct(user)
-        nodes_inherit = cls.get_user_nodes_inherit_group(user)
-        for node, system_users in nodes_inherit.items():
-            nodes[node].update(set(system_users))
-        return nodes
-
-    @classmethod
-    def get_user_nodes_assets_direct(cls, user):
-        assets = defaultdict(set)
-        nodes = cls.get_user_nodes_direct(user)
-        for node, _system_users in nodes.items():
-            _assets = node.get_all_valid_assets()
-            set_or_append_attr_bulk(_assets, 'inherit_node', node.id)
-            set_or_append_attr_bulk(_assets, 'permission', getattr(node, 'permission', None))
-            for asset in _assets:
-                assets[asset].update(set(_system_users))
-        return assets
-
-    @classmethod
-    def get_user_assets_inherit_group(cls, user):
-        assets = defaultdict(set)
-        for group in user.groups.all():
-            _assets = cls.get_user_group_assets(group)
-            set_or_append_attr_bulk(_assets, 'inherit_group', group.id)
-            for asset, _system_users in _assets.items():
-                assets[asset].update(_system_users)
-        return assets
-
-    @classmethod
-    def get_user_assets(cls, user):
-        assets = defaultdict(set)
-        _assets_direct = cls.get_user_assets_direct(user)
-        _nodes_assets_direct = cls.get_user_nodes_assets_direct(user)
-        _assets_inherit_group = cls.get_user_assets_inherit_group(user)
-        for asset, _system_users in _assets_direct.items():
-            assets[asset].update(_system_users)
-        for asset, _system_users in _nodes_assets_direct.items():
-            assets[asset].update(_system_users)
-        for asset, _system_users in _assets_inherit_group.items():
-            assets[asset].update(_system_users)
-        return assets
-
-    @classmethod
-    def get_user_nodes_with_assets(cls, user):
-        """
-        :param user:
-        :return: {node: {asset: set(su1, su2)}}
-        """
-        tree = Tree()
-        _assets = cls.get_user_assets(user)
-        for asset, _system_users in _assets.items():
-            tree.add_asset(asset, _system_users)
-            # _nodes = asset.get_nodes()
-            # tree.add_nodes(_nodes)
-            # for node in _nodes:
-            #     tree.nodes[node][asset].update(_system_users)
-        return tree.nodes
-
-    @classmethod
-    def get_system_user_assets(cls, system_user):
-        assets = set()
-        permissions = cls.get_system_user_permissions(system_user)
-        for perm in permissions:
-            assets.update(set(perm.assets.all().valid()))
-            nodes = perm.nodes.all()
-            for node in nodes:
-                assets.update(set(node.get_all_valid_assets()))
-        return assets
-
-    @classmethod
-    def get_node_system_users(cls, node):
-        system_users = set()
-        permissions = cls.get_node_permissions(node)
-        for perm in permissions:
-            system_users.update(perm.system_users.all())
-        return system_users
-
-
-class AssetPermissionUtilsV2:
     def __init__(self, obj):
         self.object = obj
         self._permissions = None
 
-    @staticmethod
-    def get_user_permissions(user):
-        groups = user.groups.all()
-        return AssetPermission.objects.all().valid().filter(
-            Q(users=user) | Q(user_groups=groups)
-        )
-
-    @staticmethod
-    def get_user_group_permissions(user_group):
-        return AssetPermission.objects.all().valid().filter(
-            user_groups=user_group
-        )
-
-    @staticmethod
-    def get_asset_permissions(asset):
-        direct_nodes = asset.get_nodes_or_cache()
-
-        return AssetPermission.objects.all().valid().filter(
-            Q(assets=asset) | Q(nodes=direct_nodes)
-        )
-
-    @staticmethod
-    def get_node_permissions(node):
-        return AssetPermission.objects.all().valid().filter(nodes=node)
-
-    @staticmethod
-    def get_system_user_permissions(system_user):
-        return AssetPermission.objects.valid().all().filter(
-            system_users=system_user
-        )
-
     @property
     def permissions(self):
         if self._permissions:
             return self._permissions
-        if isinstance(self.object, User):
-            pass
+        object_cls = self.object.__class__.__name__
+        func = self.get_permissions_map[object_cls]
+        permissions = func(self.object)
+        self._permissions = permissions
+        return permissions
+
+    def get_nodes_direct(self):
+        """
+        返回用户/组授权规则直接关联的节点
+        :return: {node1: set(system_user1,)}
+        """
+        nodes = defaultdict(set)
+        permissions = self.permissions.prefetch_related('nodes', 'system_users')
+        for perm in permissions:
+            for node in perm.nodes.all():
+                nodes[node].update(perm.system_users.all())
+        return nodes
+
+    def get_assets_direct(self):
+        """
+        返回用户授权规则直接关联的资产
+        :return: {asset1: set(system_user1,)}
+        """
+        assets = defaultdict(set)
+        permissions = self.permissions.prefetch_related('assets', 'system_users')
+        for perm in permissions:
+            for asset in perm.assets.all().valid().prefetch_related('nodes'):
+                assets[asset].update(perm.system_users.all())
+        return assets
+
+    def get_assets(self):
+        assets = self.get_assets_direct()
+        nodes = self.get_nodes_direct()
+        for node, system_users in nodes.items():
+            _assets = node.get_all_assets().valid().prefetch_related('nodes')
+            for asset in _assets:
+                if isinstance(asset, Node):
+                    print(_assets)
+                assets[asset].update(system_users)
+        return assets
+
+    def get_nodes_with_assets(self):
+        assets = self.get_assets()
+        nodes = defaultdict(dict)
+        for asset, system_users in assets.items():
+            _nodes = asset.nodes.all()
+            for node in _nodes:
+                if asset in nodes[node]:
+                    nodes[node][asset].update(system_users)
+                else:
+                    nodes[node] = {asset: system_users}
+        return nodes
 
 

From 482d1bb27f561d1dff2e09bc047cc7ab872370f7 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 1 Jun 2018 16:22:52 +0800
Subject: [PATCH 070/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9permisstio?=
 =?UTF-8?q?n=20util?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/node.py         |  2 +-
 apps/assets/models/node.py      |  4 ++--
 apps/assets/serializers/node.py |  7 ++-----
 apps/common/utils.py            | 15 +++++++++++++++
 apps/perms/utils.py             |  7 ++++++-
 5 files changed, 26 insertions(+), 9 deletions(-)

diff --git a/apps/assets/api/node.py b/apps/assets/api/node.py
index bb8cc719a..1d8a4f497 100644
--- a/apps/assets/api/node.py
+++ b/apps/assets/api/node.py
@@ -140,7 +140,7 @@ class NodeChildrenApi(mixins.ListModelMixin, generics.CreateAPIView):
                 node_fake = Node()
                 node_fake.id = asset.id
                 node_fake.is_node = False
-                node_fake.parent = node
+                node_fake.parent_id = node.id
                 node_fake.value = asset.hostname
                 queryset.append(node_fake)
         queryset = sorted(queryset, key=lambda x: x.is_node, reverse=True)
diff --git a/apps/assets/models/node.py b/apps/assets/models/node.py
index f407e11b0..4f4f9ad8b 100644
--- a/apps/assets/models/node.py
+++ b/apps/assets/models/node.py
@@ -5,7 +5,7 @@ import uuid
 from django.db import models, transaction
 from django.db.models import Q
 from django.utils.translation import ugettext_lazy as _
-
+from common.utils import with_cache
 
 __all__ = ['Node']
 
@@ -166,6 +166,6 @@ class Node(models.Model):
         obj, created = cls.objects.get_or_create(
             key='0', defaults={"key": '0', 'value': "ROOT"}
         )
+        print(obj)
         return obj
 
-
diff --git a/apps/assets/serializers/node.py b/apps/assets/serializers/node.py
index 00cea71f0..56e01f742 100644
--- a/apps/assets/serializers/node.py
+++ b/apps/assets/serializers/node.py
@@ -64,14 +64,11 @@ class NodeSerializer(serializers.ModelSerializer):
 
     @staticmethod
     def get_parent(obj):
-        return obj.parent.id
+        return obj.parent.id if obj.is_node else obj.parent_id
 
     @staticmethod
     def get_assets_amount(obj):
-        if obj.is_node:
-            return obj.get_all_assets().count()
-        else:
-            return 0
+        return obj.get_all_assets().count() if obj.is_node else 0
 
     def get_fields(self):
         fields = super().get_fields()
diff --git a/apps/common/utils.py b/apps/common/utils.py
index d73c094ec..deaeb5280 100644
--- a/apps/common/utils.py
+++ b/apps/common/utils.py
@@ -16,6 +16,7 @@ import calendar
 import threading
 from io import StringIO
 import uuid
+from functools import wraps
 
 import paramiko
 import sshpubkeys
@@ -395,3 +396,17 @@ class TeeObj:
     def close(self):
         self.file_obj.close()
 
+
+def with_cache(func):
+    cache = {}
+    key = "_{}.{}".format(func.__module__, func.__name__)
+
+    @wraps(func)
+    def wrapper(*args, **kwargs):
+        cached = cache.get(key)
+        if cached:
+            return cached
+        res = func(*args, **kwargs)
+        cache[key] = res
+        return res
+    return wrapper
diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index 36c432826..475acfb68 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -104,6 +104,11 @@ class AssetPermissionUtil:
         return assets
 
     def get_nodes_with_assets(self):
+        """
+        返回节点并且包含资产
+        {"node": {"assets": set("system_user")}}
+        :return:
+        """
         assets = self.get_assets()
         nodes = defaultdict(dict)
         for asset, system_users in assets.items():
@@ -112,7 +117,7 @@ class AssetPermissionUtil:
                 if asset in nodes[node]:
                     nodes[node][asset].update(system_users)
                 else:
-                    nodes[node] = {asset: system_users}
+                    nodes[node][asset] = system_users
         return nodes
 
 

From ee35ca364310ce550525d1dc2820ab6d429aee06 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 5 Jun 2018 17:26:31 +0800
Subject: [PATCH 071/112] =?UTF-8?q?[Feature]=20=E5=A2=9E=E5=8A=A0=E5=8A=9F?=
 =?UTF-8?q?=E8=83=BD=EF=BC=8C=E5=AE=89=E5=85=A8=E8=AE=BE=E7=BD=AE=EF=BC=88?=
 =?UTF-8?q?=E5=85=A8=E5=B1=80MFA=E8=AE=BE=E7=BD=AE=EF=BC=8C=E5=AF=86?=
 =?UTF-8?q?=E7=A0=81=E5=BC=BA=E5=BA=A6=E6=A0=A1=E9=AA=8C=EF=BC=89?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/common/forms.py                          |  45 +
 .../templates/common/basic_setting.html       |   3 +
 .../templates/common/email_setting.html       |   3 +
 .../common/templates/common/ldap_setting.html |   3 +
 .../templates/common/security_setting.html    | 115 +++
 .../templates/common/terminal_setting.html    |   5 +
 apps/common/urls/view_urls.py                 |   1 +
 apps/common/views.py                          |  26 +-
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 32508 -> 34391 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            | 419 +++++---
 apps/jumpserver/settings.py                   |   3 +
 apps/static/js/jumpserver.js                  |  88 ++
 apps/static/js/pwstrength-bootstrap.js        | 976 ++++++++++++++++++
 apps/templates/_base_create_update.html       |   1 +
 apps/users/forms.py                           |   2 +-
 apps/users/templates/users/_user.html         |   1 +
 .../users/templates/users/reset_password.html |  44 +-
 .../templates/users/user_password_update.html |  41 +
 apps/users/templates/users/user_profile.html  |   5 +-
 apps/users/templates/users/user_update.html   |  45 +
 apps/users/utils.py                           |  61 ++
 apps/users/views/login.py                     |  43 +-
 apps/users/views/user.py                      |  39 +-
 23 files changed, 1791 insertions(+), 178 deletions(-)
 create mode 100644 apps/common/templates/common/security_setting.html
 create mode 100755 apps/static/js/pwstrength-bootstrap.js

diff --git a/apps/common/forms.py b/apps/common/forms.py
index 02af6e47a..4f4eefc23 100644
--- a/apps/common/forms.py
+++ b/apps/common/forms.py
@@ -168,3 +168,48 @@ class TerminalSettingForm(BaseForm):
         )
     )
 
+
+class SecuritySettingForm(BaseForm):
+    # MFA全局设置
+    SECURITY_MFA_AUTH = forms.BooleanField(
+        initial=False, required=False,
+        label=_("MFA Secondary certification"),
+        help_text=_(
+            'After opening, the user login must use MFA secondary '
+            'authentication (valid for all users, including administrators)'
+        )
+    )
+    # 最小长度
+    SECURITY_PASSWORD_MIN_LENGTH = forms.IntegerField(
+        initial=6, label=_("Password minimum length"),
+    )
+    # 大写字母
+    SECURITY_PASSWORD_UPPER_CASE = forms.BooleanField(
+
+        initial=False, required=False,
+        label=_("Must contain capital letters"),
+        help_text=_(
+            'After opening, the user password changes '
+            'and resets must contain uppercase letters')
+    )
+    # 小写字母
+    SECURITY_PASSWORD_LOWER_CASE = forms.BooleanField(
+        initial=False, required=False,
+        label=_("Must contain lowercase letters"),
+        help_text=_('After opening, the user password changes '
+                    'and resets must contain lowercase letters')
+    )
+    # 数字
+    SECURITY_PASSWORD_NUMBER = forms.BooleanField(
+        initial=False, required=False,
+        label=_("Must contain numeric characters"),
+        help_text=_('After opening, the user password changes '
+                    'and resets must contain numeric characters')
+    )
+    # 特殊字符
+    SECURITY_PASSWORD_SPECIAL_CHAR= forms.BooleanField(
+        initial=False, required=False,
+        label=_("Must contain special characters"),
+        help_text=_('After opening, the user password changes '
+                    'and resets must contain special characters')
+    )
diff --git a/apps/common/templates/common/basic_setting.html b/apps/common/templates/common/basic_setting.html
index 496eca977..9c9258e33 100644
--- a/apps/common/templates/common/basic_setting.html
+++ b/apps/common/templates/common/basic_setting.html
@@ -23,6 +23,9 @@
                             <li>
                                 <a href="{% url 'settings:terminal-setting' %}" class="text-center"><i class="fa fa-hdd-o"></i> {% trans 'Terminal setting' %} </a>
                             </li>
+                            <li>
+                                <a href="{% url 'settings:security-setting' %}" class="text-center"><i class="fa fa-lock"></i> {% trans 'Security setting' %} </a>
+                            </li>
                         </ul>
                     </div>
                     <div class="tab-content">
diff --git a/apps/common/templates/common/email_setting.html b/apps/common/templates/common/email_setting.html
index 1fd772db1..2f0951e00 100644
--- a/apps/common/templates/common/email_setting.html
+++ b/apps/common/templates/common/email_setting.html
@@ -23,6 +23,9 @@
                             <li>
                                 <a href="{% url 'settings:terminal-setting' %}" class="text-center"><i class="fa fa-hdd-o"></i> {% trans 'Terminal setting' %} </a>
                             </li>
+                            <li>
+                                <a href="{% url 'settings:security-setting' %}" class="text-center"><i class="fa fa-lock"></i> {% trans 'Security setting' %} </a>
+                            </li>
                         </ul>
                     </div>
                     <div class="tab-content">
diff --git a/apps/common/templates/common/ldap_setting.html b/apps/common/templates/common/ldap_setting.html
index f0569f873..e55da5a8f 100644
--- a/apps/common/templates/common/ldap_setting.html
+++ b/apps/common/templates/common/ldap_setting.html
@@ -23,6 +23,9 @@
                             <li>
                                 <a href="{% url 'settings:terminal-setting' %}" class="text-center"><i class="fa fa-hdd-o"></i> {% trans 'Terminal setting' %} </a>
                             </li>
+                            <li>
+                                <a href="{% url 'settings:security-setting' %}" class="text-center"><i class="fa fa-lock"></i> {% trans 'Security setting' %} </a>
+                            </li>
                         </ul>
                     </div>
                     <div class="tab-content">
diff --git a/apps/common/templates/common/security_setting.html b/apps/common/templates/common/security_setting.html
new file mode 100644
index 000000000..d2c436304
--- /dev/null
+++ b/apps/common/templates/common/security_setting.html
@@ -0,0 +1,115 @@
+{% extends 'base.html' %}
+{% load static %}
+{% load bootstrap3 %}
+{% load i18n %}
+{% load common_tags %}
+
+{% block content %}
+    <div class="wrapper wrapper-content animated fadeInRight">
+        <div class="row">
+            <div class="col-sm-12">
+                <div class="ibox float-e-margins">
+                    <div class="panel-options">
+                        <ul class="nav nav-tabs">
+                            <li>
+                                <a href="" class="text-center"><i class="fa fa-cubes"></i> {% trans 'Basic setting' %}</a>
+                            </li>
+                            <li>
+                                <a href="{% url 'settings:email-setting' %}"  class="text-center"><i class="fa fa-envelope"></i> {% trans 'Email setting' %} </a>
+                            </li>
+                            <li>
+                                <a href="{% url 'settings:ldap-setting' %}" class="text-center"><i class="fa fa-archive"></i> {% trans 'LDAP setting' %} </a>
+                            </li>
+                            <li>
+                                <a href="{% url 'settings:terminal-setting' %}" class="text-center"><i class="fa fa-hdd-o"></i> {% trans 'Terminal setting' %} </a>
+                            </li>
+                            <li class="active">
+                                <a href="{% url 'settings:security-setting' %}" class="text-center"><i class="fa fa-lock"></i> {% trans 'Security setting' %} </a>
+                            </li>
+                        </ul>
+                    </div>
+                    <div class="tab-content">
+                        <div class="col-sm-12" style="padding-left:0">
+                                <div class="ibox-content" style="border-width: 0;padding-top: 40px;">
+                                    <form action="" method="post" class="form-horizontal">
+                                    {% if form.non_field_errors %}
+                                         <div class="alert alert-danger">
+                                             {{ form.non_field_errors }}
+                                         </div>
+                                    {% endif %}
+                                    {% csrf_token %}
+
+                                    <h3>{% trans "MFA setting" %}</h3>
+                                    {% for field in form %}
+                                        {% if forloop.counter == 2 %}
+                                            <div class="hr-line-dashed"></div>
+                                            <h3>{% trans "Password check rule" %}</h3>
+                                        {% endif %}
+
+                                        {% if not field.field|is_bool_field %}
+                                            {% bootstrap_field field layout="horizontal" %}
+                                        {% else %}
+                                            <div class="form-group">
+                                                <label for="{{ field.id_for_label }}" class="col-sm-2 control-label">{{ field.label }}</label>
+                                                <div class="col-sm-8">
+                                                    <div class="col-sm-1">
+                                                        {{ field }}
+                                                    </div>
+                                                    <div class="col-sm-9">
+                                                        <span class="help-block" >{{ field.help_text }}</span>
+                                                    </div>
+                                                </div>
+                                            </div>
+                                        {% endif %}
+                                    {% endfor %}
+
+                                    <div class="hr-line-dashed"></div>
+
+                                    <div class="form-group">
+                                        <div class="col-sm-4 col-sm-offset-2">
+                                            <button class="btn btn-default" type="reset"> {% trans 'Reset' %}</button>
+                                            <button id="submit_button" class="btn btn-primary" type="submit">{% trans 'Submit' %}</button>
+                                        </div>
+                                    </div>
+                                    </form>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+{% endblock %}
+{% block custom_foot_js %}
+<script>
+$(document).ready(function () {
+})
+.on("click", ".btn-test", function () {
+    var data = {};
+    var form = $("form").serializeArray();
+    $.each(form, function (i, field) {
+        data[field.name] = field.value;
+    });
+
+    var the_url = "{% url 'api-common:mail-testing' %}";
+
+    function error(message) {
+        toastr.error(message)
+    }
+
+    function success(message) {
+        toastr.success(message.msg)
+    }
+    APIUpdateAttr({
+        url: the_url,
+        body: JSON.stringify(data),
+        method: "POST",
+        flash_message: false,
+        success: success,
+        error: error
+    });
+
+})
+</script>
+{% endblock %}
diff --git a/apps/common/templates/common/terminal_setting.html b/apps/common/templates/common/terminal_setting.html
index 16927c05a..320f628b0 100644
--- a/apps/common/templates/common/terminal_setting.html
+++ b/apps/common/templates/common/terminal_setting.html
@@ -27,6 +27,9 @@
                                 <a href="{% url 'settings:terminal-setting' %}" class="text-center"><i
                                         class="fa fa-hdd-o"></i> {% trans 'Terminal setting' %} </a>
                             </li>
+                            <li>
+                                <a href="{% url 'settings:security-setting' %}" class="text-center"><i class="fa fa-lock"></i> {% trans 'Security setting' %} </a>
+                            </li>
                         </ul>
                     </div>
                     <div class="tab-content">
@@ -39,6 +42,7 @@
                                         </div>
                                     {% endif %}
                                     {% csrf_token %}
+
                                     <h3>{% trans "Basic setting" %}</h3>
                                     {% for field in form %}
                                         {% if not field.field|is_bool_field %}
@@ -60,6 +64,7 @@
                                     {% endfor %}
 
                                     <div class="hr-line-dashed"></div>
+
                                     <h3>{% trans "Command storage" %}</h3>
                                     <table class="table table-hover " id="task-history-list-table">
                                         <thead>
diff --git a/apps/common/urls/view_urls.py b/apps/common/urls/view_urls.py
index 466f7c49c..e7ccddd06 100644
--- a/apps/common/urls/view_urls.py
+++ b/apps/common/urls/view_urls.py
@@ -11,4 +11,5 @@ urlpatterns = [
     url(r'^email/$', views.EmailSettingView.as_view(), name='email-setting'),
     url(r'^ldap/$', views.LDAPSettingView.as_view(), name='ldap-setting'),
     url(r'^terminal/$', views.TerminalSettingView.as_view(), name='terminal-setting'),
+    url(r'^security/$', views.SecuritySettingView.as_view(), name='security-setting'),
 ]
diff --git a/apps/common/views.py b/apps/common/views.py
index c701df407..6a7d37f49 100644
--- a/apps/common/views.py
+++ b/apps/common/views.py
@@ -7,7 +7,7 @@ from django.utils.translation import ugettext as _
 from django.conf import settings
 
 from .forms import EmailSettingForm, LDAPSettingForm, BasicSettingForm, \
-    TerminalSettingForm
+    TerminalSettingForm, SecuritySettingForm
 from .mixins import AdminUserRequiredMixin
 from .signals import ldap_auth_enable
 
@@ -122,3 +122,27 @@ class TerminalSettingView(AdminUserRequiredMixin, TemplateView):
             return render(request, self.template_name, context)
 
 
+class SecuritySettingView(AdminUserRequiredMixin, TemplateView):
+    form_class = SecuritySettingForm
+    template_name = "common/security_setting.html"
+
+    def get_context_data(self, **kwargs):
+        context = {
+            'app': _('Settings'),
+            'action': _('Security setting'),
+            'form': self.form_class(),
+        }
+        kwargs.update(context)
+        return super().get_context_data(**kwargs)
+
+    def post(self, request):
+        form = self.form_class(request.POST)
+        if form.is_valid():
+            form.save()
+            msg = _("Update setting successfully, please restart program")
+            messages.success(request, msg)
+            return redirect('settings:security-setting')
+        else:
+            context = self.get_context_data()
+            context.update({"form": form})
+            return render(request, self.template_name, context)
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index b764117a297c394ce044245ec712ffa3ee379e26..78705cf79573f6cf34877f0304ae523bc3b6dafc 100644
GIT binary patch
delta 13328
zcmbW-2Xs}%zQ^&M5JG@Z6Cm^>y$ggMl#T&GnjlRegaDx=A%&)L=u#C4h#=BbK!u<L
zqzD31MJeh<6i`4&0wPtx2Kc_ev;T3yd#>kOZ?F6JGyj>{GqY#*IXTyR@80t}Imh4o
zec^zG4p(J=$0>zR7jm2nl;@OFt>c8%a-3OM94F#i_?4gIRD2Z4f3NL0Mes-+$0>^!
zuqo!K>o|0En&V>_k5zEJ`85VQj@S8%f+h|Ocbr^U9%*o@n{}}Od1K6h?NI$YVqqMH
zLHGie#Oat9S6O`;>RGm+?mLA6_$%gOe&;TQf>Z?5bDU5tf_bo-Ss&RHr#WgNT`?aH
z#7dZeRdEp};U4UY_3JxMH=JRfLDko8;5a#P3f5wNXC?)$cq@kBKGX!?pjMiRy5R~2
z<4w$u_pvDEYv|rz0aafc)vp<9oDSCB8}(p=QT;}tH#dce6m-KZ)J`lyZRJ|j+3v#<
zcnWnix3L)BMJ+tEkvp&leMg5{cwN-aHAKzR4$ELS<h5}U8?pbo;Z5uCF6v1)p;o>f
z)qV)|ZX83s11C`fo<>cOfnoS7s=Z)iw>{J>V^%TiqTZRNjoE+7P8<HAiM*(ZrlZdK
zB~-^{$P4eRK|R??)I!gow)6+fucGe%+58jRlILjR?r?k5xX+-*9pa^+8xl}YJl68*
zs55#AbtG?KD5jydd@uTT1U1k})RCP-?Z{o!k>-zZkE$eU$HGzbJcb(I`y>T*?2Y<3
z4M7bs-tsx9371>_d#ESgiCVxR)B=yACOD7Up)06yZ=e=<&+<UN95h}Ca-Y{JOF;wH
zHX~3sv_&nX6KbL;)YiqKJ|*K&M>ZEV-~wx3VfF8$?%RSIZx`ymL#PFw!QA@%pQoS&
zTtN@sLA|BL_}Ws(2B?W5P+Qj$HBe{N#Dh>1Bw#fhXZc&GcVs>4=+dz&9zu<C3j_7}
zcOG}QFc)eeVW^dtM-5yZwSan-N1z67jq2APHDFit-~iNpldOFfYN7K{<1DlMZS<<)
z0}48;ov48hqqhDV)RzB<n&=NyKmTU#&J@5><e{juuY;O60<}Y}QQs3iQSVj)_Qffv
zPt&<(?7t=|*xX%VIn<WdLJbs-ny@MAiQAzj>V%cB7xK5tnP^Tyeb-Mn-$8xRe2$v%
z9=5}pE!>?L)57acFo6o~#BAJ#i%<*c($bx{2Wo)6sD;fj7ov7-8S07Gp%%CsHQr&=
zk$!FYdCRY&#{bPrK_8!c)**i@cR?jkPh1%_Kuy%yHL|=JY9Z}WU(wxAM-_|un=lUb
z`JRW`!R4s&)}hARh`QgqlY%-Pu!a-nIn;z#to;@~Lhjev{faG*CCMwJj<6MK!0xCA
z>WA8qc+^o%LA?X-Vny7E?2y;FKtVTLM@{IoaknlPYQ-U_m#;YL2_HcXTnF{?wZSqt
z5X<5ub0z91_Fw>hhB}hts2w@utLOYLQ&7iis3-W%*T9pub+;-Ib5dUj^`ym63$BVK
zunGEOcho|AqPBPdYNFw&Cm)O2>Dj1$OE8G}omCWa;Ct4v0d>O`)WnA|5Rao4coH?x
zIn+ye9rY5HeZt+Dny8Om3)Dh;Sw0N)0F$vCE<mpeTdd&}YKwnDo$XySEYe*_J+ldF
zA<a=c&<?fWL0B2bU<F)`+WLJMgrAyUq85BQlJnP@T&5xy-bO9po^{N}hgC;Y6t$%u
zRC{%-ixH?NibG8_5%pC&4Yl=4%r&T;+=RJtJL>nszIN=tCjO2JZB+*9iSA$^7HaQq
zbr@=)l~EtJaLe0a74q(={u8h_PD9@jnb%PZxQ|+3z>|!D#k~~Nu_Nkp+ZStK5|+jl
zs3-dv^^WXCO>_|Tghw$io<<!(7Usr3%zzH=R_906moh6^y|*@nAQ~PwpFnMKXVk(5
zpeBq*ZS`o>PR+nzT#WiSu11~dcB?;R^(RmZyo_4lZEFwe=zB1)Q-p%fq6D_aaMa5;
z7WEb{z<jt4byV9?3;V?U0=3|CsI9$W^*Nt%7Z!?oz$zGzb#N4}MBnfKkWOxglBhGP
zfLd`i)Z5$uwZMLu2gjgxWHM?&GciBDf_fKLppNWQ)Wk<o{ZFEH>U-2XbPG%C^B>gN
zov;#Wi|d-LQCrpn3t}t=<9O5pUqrn`saPEkqR#kd^Bxu?&(+1fFAVdMS42H%IC{0h
z#uQ{rEPzj<I`%;g5Q`dkJZeExu@Ejo559wX;=`zy_!w%OO!E#FA`k59e({8%jw+%n
zpa1d{I#ZF1$yf<5V=XM$&E3*w=1|m;yn_694`&<l3){JgI*RH~y9)_N9aSUz5L=;+
z@DJ2cg>-lOmFv#_>$|%$75aEpLv^Ty+TzDhXV(rxurn6HL8$ME@u(+Th&q}zSQs~<
zUfzSKoji*g_bRI2UDOWc_V#cGD2}SAj^P-Ap%{-EaH_R0LM?0!YT|U%lkYc=ppNPU
z>PXI_`d>sX<OUYO`=|wZL!WU6D35xg>Zq-2i@Ko;#$bP|-;WybIBI}1s0Cj^?NHgC
z?)~AYcjs}`LOWp?Mxh>bJTi{gnMFY>eib$03e>=9R=*Rq0|!wHJcSzYHfq9Lz3k(Q
zzK<{J39F&TX^xt(lePCp9cc{uKK~;qsADo}z$vIt!y?pKtuWW4ZrqOgCA0_I;RV#f
zYW8-=iA42#2B%;@tN#IYR5!7sAOGeA$LaI`1iy(V;~v~kL+fYxlT4nczx(8$U|I4L
zSPgHZ{x*09a4$ZN`Xw~od=s^R-RRpn%TJl-Q9FJKy?Vl16m-L1s5~&r-NF!5Ue#=X
z+R9dzce8we<q4>9UNEPcv(5Ra@fMq_qd0%9Fr5l{0JXAju>xMeDi}17KSWpuo8f%(
zOS5paTi+G6fcdE3go{xVZbcpKe$+emEvjEuwAU?Mvx?iO8}6F92f2As)RULDJlyi;
zs0DYn`rhUcGufPEzJy`)e;xI}o4i(W&^ny6hO3tAv!|8jLoF=S@<&huRI&O9e1tp_
z_2k1)_sultnTt^4EVJDE9tFMa8!-SsvJSgZ6C6RU_#EcI-%(F|&&)O0%?p_&Q4?3h
zdRW8qDAavJQ9GIF)_a}F6dF)5)2(oJn+H(~IBNNM^OAWT<7mHw>K8M_eX_CUGz_GE
zzPZ?3VeM;ta{ikrXhnNaEBwMdjT#^WHNj8jU#KlCJk+f(i@L8as=le&&g_A@KiV8^
z&Qv?|J4-2O0q>v&+J?DsuhoBM^{3IdAk;)ZnZKKXv2J|`YC@0Y;bwEx{T(fT8ojEB
zqM(n(P}D+3qw1%lCYoz5vHCS;nz<Qu-ww+^N8R_8c@FiH?y8x4m^*&OVSN5IQ4K0|
zLpW-n=9YK1j?ZFc>IYdq$4o{2Em(qj``4kyIcn{vQGbMfz})z=)!#$)3m9&n|3bsv
z6@{S&EQ`9K4yt1WYD*)nz7J~QG3E#}3DtkR`J%bNT#0(XG|NBsQqVx3S;d!@pT%m_
zXJQ^KG{Wsy3bmExQJ?c>7>xa}F%C!V#M`I^AH-lhg?gYY^CoH`-ajd50eMHd6BR~%
z-b<rDHZU7wE%K)3aBNP##5|3I$xHE>)Ob@c7-w0&2p5wtv%FEfub<axMxg}_ZQTlI
zhWRoUp#D|VldQJ-ZK#2Fn@6nvl;!6wzlOT+Hfjfh5?n)23oL`dynjwbUxClB+05*K
z+KFDM8xk!aXYKP*6D+s(jaI)6gQ!1X`7!g1dD*;!h4uN*G0HvbqNuOf7FZD5pw6rZ
z=EDJ~3FEAN5>_OiZ~0cNLjEc0iEp9)>fJ*<K%qo;=fY5VMf83CYgk1%>Zel^)RT8M
zW6jCt>!>5xgc@j%<%duUK4G4<`pf1WRR0`F?)`a^*nbUFjEcfo0rlh!EswO0eaxX|
zia8l|-^*A4SD_}@h+4=t)cAX?{y6H>bJFsklkD^VhgJ9`y8{Mcc{-Lv4baT$JD?`&
zkJ_Pl48a*zztrm2p>}e=)t^R<a|N}4-^@^NirY{dwerU-Z;eIByI4L1^?6T5eZEss
z{WqhYbccDsJZ_#sO?(lxQ#Vof1&nrIQg2=g8Xy$au?%XW>Xx@h-S7-*fPPj#%A8>B
zvr*&BNA1i~tKW>eZwG4JV^)6+na}Iob_<UG7<X$6m}OA|J&IaDBu>FjsD*xIp0oC=
zsH6D>8(_d#w_gNm0g<S0)IJ!7(=kw=|K+{{Uohr+)C8N%J*WYWT7Dk&@w#UIZU&5V
z>kFV3QUbLj)y#V4<7OoK{{4Sf3YxH&IoM1>O+3-^RC9&ZueW?RYQiIye}~$!A2AGX
zB0mwFJmcLw$()0}|NZZ63c6tfY9Sw*d(GqKcjk}guV%n=?*GPH$n1m~Z!T)Q1(*|8
zqIPZ#*1(O=vHx1(S?l;4>c*VUy9T2M2*D!gLH$T=VD%BG{*kDi>SXl;QRBv2KEv{b
zsD5eYp65A#Rs6>~W|_aBesK7`;J!3fQ44w6j56aeKlRU{j$jsQK}*b)sQcEMo6S$m
zV_pin;fz&WFmIqf=l86=>;(6TDxn5!hFW+B)Hh~-EQ<+P2IpZp+<-OlODu_c;k7fR
z?7_YDDQM-9SQL9=B*tSK+=_aO@1qtPG|^o^0ep?T6o%qv)WQy<`kh3b`S++lY8Npt
zUP6uc3)0W)+^3)g<ecPM#H@&V!uqIzBdxx>)yG)<SaX^=-&}64Gq+(?#yMd54J@qf
zxMvjwC%Y4sMlGlsYNbug)~F|Y%It3TMJ+HIwcrHQ{ZmlC15#1rEJf|eYSfXf!wJmq
z?4+Opn)3A~+o1;NflY8QYT%Wqfi_wD$L3Mgr{jCee?j#NnCgy~-z<q5w~FPB(5s3z
z6f{70>oDAW4mHqh)WQ~`7P89PH(UFD%t8Gz%fCYH)OV=+E}A#3{=S)W8vCyaf~UDR
z6vgV~rBQEfJJee{1~pKsxdQd_tw-J8cDj3iXY?aKMzo>ekC(9q(UtN#Lf0q6dg>bL
z{C}o!)K~5PqZyQ??rS2MI81(pc-(DvZs0`f^D_E}lrK^Kfw)WjLO#R#iQM#AO#NS!
zSD>y}h@8|vgROP`1BsTz0P9eS#@v)k5-X{H*Xk$XaN;a=dg?Ni2U#1b@9Ip>ZyDzl
zQH#*;#_X#c<L)EbW%m>(_xh1!P+6X2nKkUOJM_&q(CWUy>O`33pVFrP&(P2Kq1BC`
ze3RfehEtHbw}}YKx{A<OS3X>TbKHB{Iu)tdPDLH!MMBq0L@gUs`5VM{<R$PWtZQu(
z$@>$PQb$z`@pho}A}tN9wWLk?HT7+Y?CTosCrKW)e)Y|<<{{dS5G5?H#5hGL>+9>m
z>wA*^)IUaK`o3AMHPGCM`Dk2=1#B^iluHrYsINx^5q-(a6WLc5g*wz{U!Plf4_=_M
zC}VwxA^6tc{dkoUED6MK>~8*&ImPI>6yLYHAm#MgOI{n_Bi^*O49dEWnVsF#IYi#g
z%KBF7Lw>;W+m!En?S{Ej1~7rHP1H>w5{b*?qls|Jf8uM%FB9LVw5Q~Hfx6G|5>bwL
zia1Z5uBq4^+Y_6K63j7|x{rw%!rMy!ph5p~^)CKML{MH!<RWy%5_5<j$;&dpCszL(
z`jc0s?JDJ9oR5DIgDG#sbm9rhCkS1`i8rX@2dC4^&o{NI-G6!0mxkGtfA`h!ca&V$
z7GeVtO;n^Vi{M+#cX_N&eio8_wWBbS`Xxj>5l;Rtk&|*>qB!Lp#DnjjbC2`~;s_nW
z7;Ki>?W%^Gsn5RtL-`$&NFvTE_hY=3FVbGr`fsCd73HDCL964t+;<h$`SWYV@i5^}
zl!I{+`A*7*i6<#PfoF;A>m23fBn_-0&HR@7*~C#|9q}eHgtjR}Ys$B97!e@JC!>zu
znM_g?OJNtHCZTJ(i|?<>P|EwLFHJm7R3g7d3?d#QW>NPXkx5i0&w;xMU7x!+@8LbG
z`x0~c+xeHV4hN`Avku4cX`()DJ5<KfL_cD?^`Ypyp89Y3Rcd=ux5etKkdLN34`0XI
z*d2e>{9loLMCf|QZWx8B#2BJB_4<Q<f$~;7LwrDFUw=?YqU{9HobV@_5phHzj#Jky
z%FXdn!b7Yg>JcyN{B^A$o+Vx(zixHa@EKx+<@0b6F`bB_Zx7T}9t+}sh$)nh<1Qlm
zDr1YNV*T5hAJf76E6Ml7M?@&`3(=3zF9=;rh$!;xYm^mMQ>R}O0T_xytWRNUFF+nc
zxw_@OFq*nGmK$DYJ*Dw>b4xS3&rAx9sq2DciR;$T2xF;#+wx-O2X_A>Sef|B@+)|n
zKCP@@3tUDl^yB>huuflKQ!A_AYT^$0G-5vGC#~%?<{|bHAw(N>=JI2ki<9drXj}d*
z<@c#8<f}z%??WC!RM6*d0HLb_jfL&TCX~-p_Z;yu(UHhQJa|1zpD(PU9A#af;ip#K
zP2O0QTrH^UYW2!HQC>;-zP#F7!+07N5ogFBVIh(D6L}C3O1{AQkvcnxM(T&X@eZaF
zsf4ahL?HL%um^JJGs7>nOU0tz*J*m5v@C`ZUlMhRSE-wTy@@|5?<Zywg9%+H%~QCX
zs7j0@F4DFJv#*g9?h_TWE3gQWlenorIg1}?I7qpItuYTKkZ-c~bNHK;i!nhm<%YO{
z=s|g*wFTSc9q<N`gZkewzty+JZbWIu_xkD6!u2YVLgian!%2^;Q6r#6ulSTiPeN2u
z(wO+fL7qYJF-e}d_+-z>n3!Zw^3WJhV$7(N*u<ETF>%RB>5FO?^bhM6lbjqIHzdh3
zI6g5t#?!HF3(tu7A+d3(uhp&L9h@AK=!s8=iK9mi-vB8|)c87hMy4bsd&qtFB*jF>
z#|?@~9OsEjVWPO?*yyO_*!Vb4mC;cnVh3q-Pt=GJ>YtcY!xI}9JtAcgqk5tSjf{<p
zO-fFTN{&xVs_L|OU{3!bHBt+83TYlaG%9Wgj}jF(h$l#jNltPnXUgQL*f`cRCMGdD
zilvO;X_(-lQQSdV{M#ULDI;SNW1~IvON@&C|BjNB5EC66HR69CrOv;tB_$!@;Rj0p
zq;3y?|Jda8qV>DvE!OSt&5n*qOpYCFd!0J4`Kmme9~-12P4#cl)2lPe-lpiNgxF-(
zmc2<GA8h=ed-zcEKkUv!?f>xH9eEehpKUS9FHiK)nCRi2#FP;+sry=n=huOcOc}{K
z;)Wy-O}*N3U=Zi;OVZo4S{{%;IwdhSd0h5$q@RCcVZIU%zuCTbFNrrSY4Eu8l<v9w
zayO`1yS}GR!zQ)Ur}g+Opk(IcwOLE1W^9<AwPMo6t#h;1t<IP?<I?I$nIB9}@7QOx
zUxlo+m09zqXT0*-rL>Q;cBW<Q*q$-t!;3q2Wi43CXCQ0wM;SX8rrzpX-MeFA#=H#~
z^Ip2XV-9VZGq$*G8M~%kUis1AH(cC4Cv)A(OKERi+A!(*ju{ynwq?$on7MSOdkclk
zg)<l-W6re9+3WtE`}&TVPR9S3z*fC0Epx%P3*L#7F26WeEA&ms02%Y%%Xt6gjOmLr
z)-TH3F!$dE_^10b7rxKU{D*z{m;0kG{L=tgGq+`?&H6tL@Q?RrytU@<2S_jZY&HJ?
z&&8c{(_8nSnKz&3!M#lVbl4kt^rhq;Q)<lcr=uU*i3bL99%^`Kiyqj!hoAj{h6kT1
zee3Y$e!-b5R$hL0&ZRX|GiEGK?L4w}zRaZ)+4{>1cV%o}?MWRsvTbg?H``ZV-?1cp
p>&WK=f-}-)W=vb_t~EV8F=y~YFQU7?%#T)H`Y@eaQX5X#|6hC5COZHC

delta 11582
zcmZA73w+PjAII_UF2-!O*_h=z7B&sJ%&nO_Vc1wMxsACqhS`Mt+?9KVrXoT~7k`#p
zx!-b0p^FldZYV`1g#2Ic-}mG3=+XDlXU}s!=X}pO-}C)`f4{9dGtc+leIL(-aQ~$a
zM+slYDT_P99On?_UKN#foUC}qnS-No3f{v{eH`c6>PS7crsI^v%8xrv1$+V%u_rdh
ze2m2}%m)}iJ+_v2K95tALSYigsD?DNCx%k*kA64?wZI$<$2=^8uVWe9h(UPV@@KFT
z^^2(U{AxRnKSrbGtBhfe$8oAtC_y3#i((hE4;H6B6t$3vSPbW494^N~cmQkQQPcu%
zV+8uwar;N1Ca!|&{}={iEev6PCy7ENc0dg<Kn<9M>gYjDJkQ!+LM`-lRKHCah<j1}
zk6{>|LG8?C)GhL_>o}#cG-{_4&{K*+A_YyHh8j5CIt)jxd<<$Qa#0gKkL58Bxt-2t
z)PUbv`&HDH{)t-n-_~9v!QJ{$)HtOQ*nbUNkwg^MLEY<Q>yTnTZ4NL;qVD~8Y=~1)
z3-|zaZ}+2a*)deVv&eJme22QAh<fe<qw2B$y5jPdh(irf)2xrJsW(Aw?JU&5d8mQc
zp!&a!y3+Toz8`gKj-hVFS6BkCqIUWL>bxLNeRrS;)V(T;+K~pR3EN>Q?1tL1QK*TY
zK}|3l)o&Sw;~LcYTdjTsHR0Em{|R-$cTfxP_&0D@7>t^r9BPZIq6UsfU1>wBH%ATF
z33X*XQ3H-Jb5Z@Lp%yY1HPH&x&aJ};+=ARPk8_lQ20UpU&bbZFFQ^m$Kn-{ob)r8v
zTnmgs?}AYasEW~88})E@LGQzhdNy)VJ2x3M&O8j#`@f2UCU_gG;TEf3L_Nh<Q1|XP
zj6?rM?m#tA11F+(q6KOpX{d$wMU6Wc)i2BHxu|icU}3%gvnXg~3osgAL7liu9q=$}
zhdxFPbk^$Mn%7Xb>JDn0fG6CoFM-<fDyVVlq537EcBVag^wF3?L0g%Lnm8A=MN_a8
zE<rt9Z(}dqgL<9HCb|<PqZZf)HSjRhIHOP#jz?YbOw>Gcu?j9tWdHfDadwiBdr+U*
z`^_IvA23DuCeefqu`Lco?L+};g7;Ai_z-vCr>KR@PjV+-j5<FbwXh@RsU-GaTXvR&
zuJ|%)h4)Yc1~hT+X*jB0&gyZf3F@NmeM4(+hgwiq)D>r-o{6ET1!r4*B5EPCJQPY&
zSctk;>o5|xpx*C~Py>FA8t^h|z+X`V+(Gs8ZR+NWn`KcGRz<bfKz*Y(Mt#EeMZKP$
z3<?@(9O_CYqjq8;>K?5@-TPx$8PB8o`89JVD1q9UGN=VsMLlfQQ5Tee8m|><XM3P_
zE(1Bw;|!soE6lcrsi=;#PzzgR`Q@l9Ux}LNP1F@^L@j6^md4YlXXzShA=gpo-A2vh
z*WA6JFbvWAA45SMYojJ?gxaDOmT!aFfljE2`=hpY2&(@m)E19NJ!G>{&(t>5+j9uD
z!1JgD|B98+X@Sh|#8A*ywZ<~o)f|JGaDll5HQ`IBD_w(H*lw(fr|?m{gWBTqE#3Yx
zW;|+P38-7v0zJC&P876&Zm0<cqi#VKYU?Ig`%J7&eJScnj-WrDMSVhkgWBRhO`lfo
z1%#l+D}hm19yM?MR_wpFrU?mMQ3`5nhoiQ13~HrQQE$n7tFOUW>Kjr0zr?5U8`OD?
zTD!KzLe#sX7T5>t;8<&aqc!`l*KI3_cszmS@Nd+WMYVCCg>o1`y&~!gV^IrBK;437
zs4Gk}`=GXZh}Cn<DVCpu+Ub0c6;`8e!3NY7ypNjjC~B)uq9(qCdYyhlP2l&Wn=g*a
zmq#tEHfmu>)}D&GpgyQukb&GK$1{n79=d&~r}aE);G0+&{o1+<3NlNh78-}z(uS7r
zh+05zEP|tP6i&d=coj8XuXb+x0OZzqoJ<N@@mQ>i9@Gloz@oSpwG+ot1Dr<f&{>Sd
zE2t|AZ|@FV3e`UvwV<k~XXgpjtxd%s9EHX8{!jE4c(_no_A2V3+>F}t0~mxSu@0WY
z$1p6}z2}K$Yt(ru7>xZ;J2?{d5Kcnv%rtW@hU)!aLO~tZqIY5pq<#RkpcANP;37uj
z@2D$|=-@uQQK(x|(`<t3-wE|W(+_p4W?&31$86k%o+=b-cXa=P>4DnP=gdv0TXGib
zqi-kfH#S1uifq(ECSg&Wid%6W>K3+0ac@;GRKMZqi&^N0V^i4w5DK{@w8gVf_ii!j
z-YrMnyLV8Z4+l_Jb^(L&I%<dRqaNO{RCgz1QRCJ_^=pNp*cppsf2(Jwvj4iLGe~HQ
zwxf5;t;0ps!meX+yob8-kj}1=s9RMYb%n90{?)M<Hbh-O8`Oe&qs||Jx}a<i1#R6z
z)Cn))KwNM6kS^|kkDvyqj9PGAjKCqN^Cw{#&PFXXA9V{hpsxG?YGI$E7W@rrKF<{j
z8u*qq1f;n;5QbV|3~In6jKCDsQ#=6mRA-{Da4c$^=TQ^pTl;#{Eqxbt<y%nwb|K?=
zoR27Iz>BDRb;bM(b)w%>?r$zdk<Sn(9yLG?s(mI-$9a|y>*`Ka0Xz8c0OK>XkL$*(
zhri(=@?*O56|MKb0pA?qG+f6D=-1QzJ0J$zQ16IkahX|wn)oE@yfaq6YTiI?@om%v
z`Sx=Ahob6{SQ2AY*Zbel8d{^au8Y+(te$1{DX59(n@h}>&DT&9ylHMlE%1Q(1!`ee
zP_OwP=+S^>d-DWi3~GSpsC(TB^^jzs`i(Znn;umES!SNO3UwjxSbdk(kD(TD*7D!?
zX8$$74NLrE2K8|VjzT@fl~GrcWc5^QA7=SntIt6#^hK+$wEA19^EX@m5LTpqx)1wb
zp2D9bbYetb*V1N1)B<Czo`8B-6D{8gHE?ItLI<Kg*(Rf|becKOTxPC9&9}irp)Q3@
zmiW;+TtjW)Ez1{9=hKXO2<pUEW-@94U93LH%rvucq{EjSs^3-A1>HA2Mf<q}mNLtm
zl~Enz&4#E2wMJc8S2G>8pkb&9Mw>HG=f7z6wW#y9S$?0Z$NAV2U!w-NY~D3P`nv;F
zL@l5OYM><42g;L{PqBPDdKZLRz-V)_IoHg`aJ~QQEV11@gc{(q)xWa(kEpld8fqbT
zEgzKOP84odK%F0N)-fBQ&TD4%RP?_8-BqArAeO-~<^t3}8_Z3pe%nz49kTl8)_w`A
zlD}g0;sf0Cqfj5=6|f@KLXFb}z3+cI1$}u8Ms4kQ)Wp+J9iO-QGIIrLz_qCUTT%V?
zqHf^{%U?u|bJe_I-bVF*Fu>mbV7~H{c*LxNy23hEZ-E*p#p>OxJ^-tcACCGKTxR*z
zsGVGodc6;##{UlW3(R%YPE;Gj{nv_<2e}>kqONF!nS)x$6b!&csEJ-gz3;D~FMeR|
z#v0W3nb)x?^$LSs(~*?38UwJ1XNWs-C@N7Fmt&08cbNyV8TsQ@FE-TeUjntjGN=oA
z%<@U7D{f_WwtQc!53;&vECro70d-~b&3x;y1~t$IbDMe4JcZhc3#bdYW%Yloz0@#w
z{6|sk^-<#`VG(`*x3@%^+0PtlPDCy6Ijn{+qaPl|Ks<(eEk8r`yM%g}Z(?N(81B~N
zF_wB`)R)^J4AA>Ofr3^v)tlhYZF8yl3hMiM4XWP`%OAG-3DiQ)n%`UgSMx4<@AU}x
z{7|zjhBLntM?ou2R02C#hjcU3oM6sI^;?3v_ivyk*oIojZVbjFmj4{}Hk`BiZSw(o
z-~WJ2cfev8L&s<g#+IlFQc?G~pVcQ=eGYne2GxHDYNEsDCCmSVT3`_0MCuogI<LY=
zd;b$i=sj(YdN2E-PMD6mqB-UgbEUZ+HQ;8{j_g65cN%%PoUc&lUqbc!1vSqdt4EDu
z|8+v;QSJcosE$p{WK??()IjN|ofu~M>8Oe4pax!H`JJe74wxq~l=^w|8fu*T9txTu
zGRyrfwjAoj)#kgX_76}4>_`0`aN61fN4pD%#A@W@Py?r-&dW5j&55Y-r<tCG6m$iz
zSYjg<rM}br&^&FPM=j(sYDaFHzGK{auo;P3Ks0K?s%Bjbr{2u1dz>_D=w}Thtv(es
z(E_WlL=E^B>Iyd_ABN6xtJfXt<~yJkHVD-}3$=h;bB6hXSML8xOT1-nHxFTBPCRXf
zWxE4*L=E^97Q+6h9UFr2I2N_QRj7VDPzyP1p0NC9SW@r*w-o&GmNnc%oe((A-KsFu
zKryI+AGdm2t9Qk4@}taY=2Fyo>&-2w-w*bqo|UWUQHPQ_ZpTVyO$;HQh`I&sQ48v6
z_D7vJ)XXubn~PBWS6F?mxe4`p@3!`fIlTY6qMxjTlj~kdF$^OgjTNvK>h(&+N|=S!
zF%R{Dvkx`SdDKq)g<5#vc=z9sJc3VBe;ixkGpJ`|&v<+PkCM<8oy2@Rk0mgNzZ{jH
zi@KtG)IEO{^(C|pgYZq%fLl=g_MjGU*!;r$5xomUjT`8h;C75eHB>=0G&EbAUCeYd
z)0}{D^q+0@O{j5pTm6)I0kxo?Q476mdJ0W+R~%|an&nUnc@#BZEz|%lQ6H^osDXN;
zc4RQ>mSy5(oQyjEzFBmVdwwZwM7}CAuE*(5K?9Am4jywMmL&hG)wiJf9YPKKiFwZ2
zuUP$#)dQY&&yPecJl;%1jgySQ`u^`qL06bz9dfM0EYv+-Wc4Med%F^~fOY0(%kMD{
zqb4|E^)vVw^$VznwkX@9^BYLL|E(zKq3et~@n_UTH_-=myhQM&<?viO+euC%ULe*H
z9mwejq1=&3B3>k(BUc!8G$q=rz)_Rj2RNVbe8rFT#B(H{CCX6Nhs3Kyc|u2X7w0-^
zVgDl*5iM<Sy;3^fC0-&|n<(n*O?iLaE=E~zNhVRnO?!VH@zMTsbhClpqMS>47V3S?
zr0i>L`X5wugi-&D*h|zP8W1}EHvO!ha;M3ChwD_~h$22A*BzHDq4{rn3+|7{VLctT
z*<c5#AFy()^(#l6huTRY3MkLOn|Q?9MR6AK8o7nUR-y%=BaP5U?;xT-xp5wT#1rX6
z1ffG;CZ~yCsc*wZSeN*f@@K@0gpRYsXgg;FK4xWaBR~G2K7(jMd4;w8hD(X3t?u3b
z+I0Ad(0jbv8Yp^?F4RA@ToA4zn~3k@lQ<A75jvJwzhPL^%DeCoZ9|B`lnYsY5`Lro
zuTEhj@v=2&ppL|B>P?6%l<Q+1VvQQ@c#FD@R3eIU5L>R->nX}V6Vuhm@wSWe1>PjS
zqpctA#QM7ban?a>AQFgsH0roW^rHMSW)V4*i(o$SIOY4O<2vQ9h!jFcY3xocq}-VB
zp?r)eP@^52Fi=nAw=_IF+EQLb)X2LLAF;T)zx$6zzaHe1PJGzUTubgl%4_hyM;~%W
ziNF5Spbym$VlQ!vIA!M!#d?Gu$;;%Uu>`^4abn$q^D6cy^Cmult?^OhcO+*5<u_1A
zAY~oF+?7F;CtH0QxsR=!fm^6Qia!x^E#DMt>0~=neYi_oty0lC>0j;gCF(t%pghyc
zVj1x_QO5czrz4yCRiZ2LJoR6QP5<fBl3Z7!H~I6Zqm$l};UroSdEOKcH036gUnc^&
z%FfgaQ?5glr~DqF@0~(w!)C;L#8~qGJ|bveN$$bF@<05m{5xgM@BOc6d+f{*PHIEL
zSz_bAM*E0*d!jM1kGM$aD1!Zn4OUl9-$^=_lY0|;5JedGA1q1k9+tvR4?m@|NlYZs
zoQS79f|x>C$1nIP9wg2Yi-`-w03wIjK|5b(-lHAmuPI$3exzIhR}*Ck9c9Vsir>XH
zI7avXuv$1mS>cB?d_s9Q@g-$nayn|dIPa5NOguvUTjEb*JoS0RHOl|PWDFx79<8l#
z75!+}@j5<3%+qRgoTqZfEjp)g0Wpi*k2sf@LUbX*$&JG_JdQeUP##GfCZ-ZPRuErP
z-iNc5;P4|(So=4o=OoDq#9HDV;y4X`QO6<5J&5OtgTyX!x9}rxD?iwsnbg}+ypLyy
z->j`7MiT+#w25_z7l=m0U2>I(blr`fB<@hzi8>0~mVZuexSMi*$6`b`tBaqB3?iKV
zxwxPHI({Jhtz3fg_rw+ISwv~d!w4P8-ahRAYgA&WoWKS|m@R;!_xPNjn~6~ROmb7s
zUzG1!d6X%tk^g`=`mfv;>N;LA`%vyh{HeO`{{jmC5Tl3+#B?H@{8NNKi}?eC$vr%p
zQNCdHRrrpTkI|tr(UAI*hn?|DBAB>DzAq6;R3$bOo>#16TRcOQBfg-a7Ezp-PYfmZ
zJqECtH&Dj_Gl}vZEAPfQ!iRo?$@io@$J%sGWy;0zS>l|V_c%+btRx)kSOp`f7Q;t~
zF_ceY9-(6(KEUn7(?mT&M=9cM+7gJ5y&1l2DDS7dgSbXH25;k3YoDVR^#+yRL?p4y
zry#OMynn&y+QoeH*3~UnFr!|YZ^5|+or3b(v|N#Qy=B*e{jIWn^4hhD%bVM#d%?{%
zOZ^L8PF`HB;K`>0d;$}y*G`D8)u2(Wf^I#J`xi7#U*nTkq<^)7yo^}ig1rNu3(D&;
odU@Xc(OnAO8?(|UZ(w#@-fP)S3T|YN^Dh|tjDK)m-pqsl2Q7;xvj6}9

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 31654aa11..eb42e1bef 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-05-25 18:11+0800\n"
+"POT-Creation-Date: 2018-06-05 17:03+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -21,15 +21,15 @@ msgstr ""
 msgid "New node {}"
 msgstr "新节点 {}"
 
-#: assets/api/node.py:242
+#: assets/api/node.py:241
 msgid "更新节点资产硬件信息: {}"
 msgstr ""
 
-#: assets/api/node.py:255
+#: assets/api/node.py:254
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
-#: assets/forms/asset.py:24 assets/models/asset.py:66 assets/models/user.py:103
+#: assets/forms/asset.py:24 assets/models/asset.py:74 assets/models/user.py:103
 #: assets/templates/assets/asset_detail.html:183
 #: assets/templates/assets/asset_detail.html:191
 #: assets/templates/assets/system_user_detail.html:175 perms/models.py:33
@@ -37,7 +37,7 @@ msgid "Nodes"
 msgstr "节点管理"
 
 #: assets/forms/asset.py:27 assets/forms/asset.py:66 assets/forms/asset.py:109
-#: assets/forms/asset.py:113 assets/models/asset.py:70
+#: assets/forms/asset.py:113 assets/models/asset.py:79
 #: assets/models/cluster.py:19 assets/models/user.py:72
 #: assets/templates/assets/asset_detail.html:73 templates/_nav.html:25
 msgid "Admin user"
@@ -46,14 +46,14 @@ msgstr "管理用户"
 #: assets/forms/asset.py:30 assets/forms/asset.py:69 assets/forms/asset.py:125
 #: assets/templates/assets/asset_create.html:35
 #: assets/templates/assets/asset_create.html:37
-#: assets/templates/assets/asset_list.html:74
+#: assets/templates/assets/asset_list.html:75
 #: assets/templates/assets/asset_update.html:40
 #: assets/templates/assets/asset_update.html:42
 #: assets/templates/assets/user_asset_list.html:34
 msgid "Label"
 msgstr "标签"
 
-#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:65
+#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:70
 #: assets/models/domain.py:46
 msgid "Domain"
 msgstr "网域"
@@ -90,7 +90,7 @@ msgstr "如果有多个的互相隔离的网络，设置资产属于的网域，
 msgid "Select assets"
 msgstr "选择资产"
 
-#: assets/forms/asset.py:105 assets/models/asset.py:63
+#: assets/forms/asset.py:105 assets/models/asset.py:66
 #: assets/models/domain.py:44 assets/templates/assets/admin_user_assets.html:53
 #: assets/templates/assets/asset_detail.html:69
 #: assets/templates/assets/domain_gateway_list.html:58
@@ -99,7 +99,7 @@ msgid "Port"
 msgstr "端口"
 
 #: assets/forms/domain.py:14 assets/forms/label.py:13
-#: assets/models/asset.py:183 assets/templates/assets/admin_user_list.html:25
+#: assets/models/asset.py:229 assets/templates/assets/admin_user_list.html:25
 #: assets/templates/assets/domain_detail.html:60
 #: assets/templates/assets/domain_list.html:15
 #: assets/templates/assets/label_list.html:16
@@ -129,8 +129,8 @@ msgstr "资产"
 #: assets/templates/assets/label_list.html:14
 #: assets/templates/assets/system_user_detail.html:58
 #: assets/templates/assets/system_user_list.html:26 common/models.py:26
-#: common/templates/common/terminal_setting.html:67
-#: common/templates/common/terminal_setting.html:85 ops/models/adhoc.py:36
+#: common/templates/common/terminal_setting.html:72
+#: common/templates/common/terminal_setting.html:90 ops/models/adhoc.py:36
 #: ops/templates/ops/task_detail.html:59 ops/templates/ops/task_list.html:35
 #: perms/models.py:29 perms/templates/perms/asset_permission_detail.html:62
 #: perms/templates/perms/asset_permission_list.html:53
@@ -171,10 +171,10 @@ msgstr "密码或密钥密码"
 #: assets/forms/user.py:25 assets/models/base.py:23 common/forms.py:113
 #: users/forms.py:15 users/forms.py:23 users/forms.py:32 users/forms.py:44
 #: users/templates/users/login.html:59
-#: users/templates/users/reset_password.html:52
+#: users/templates/users/reset_password.html:53
 #: users/templates/users/user_create.html:10
 #: users/templates/users/user_password_authentication.html:14
-#: users/templates/users/user_password_update.html:40
+#: users/templates/users/user_password_update.html:42
 #: users/templates/users/user_profile_update.html:40
 #: users/templates/users/user_pubkey_update.html:40
 msgid "Password"
@@ -202,11 +202,11 @@ msgid ""
 "than 2 system user"
 msgstr "高优先级的系统用户将会作为默认登录用户"
 
-#: assets/models/asset.py:61 assets/models/domain.py:43
+#: assets/models/asset.py:62 assets/models/domain.py:43
 #: assets/templates/assets/_asset_list_modal.html:46
 #: assets/templates/assets/admin_user_assets.html:52
 #: assets/templates/assets/asset_detail.html:61
-#: assets/templates/assets/asset_list.html:86
+#: assets/templates/assets/asset_list.html:87
 #: assets/templates/assets/domain_gateway_list.html:57
 #: assets/templates/assets/system_user_asset.html:50
 #: assets/templates/assets/user_asset_list.html:46 common/forms.py:144
@@ -217,10 +217,10 @@ msgstr "高优先级的系统用户将会作为默认登录用户"
 msgid "IP"
 msgstr "IP"
 
-#: assets/models/asset.py:62 assets/templates/assets/_asset_list_modal.html:45
+#: assets/models/asset.py:65 assets/templates/assets/_asset_list_modal.html:45
 #: assets/templates/assets/admin_user_assets.html:51
 #: assets/templates/assets/asset_detail.html:57
-#: assets/templates/assets/asset_list.html:85
+#: assets/templates/assets/asset_list.html:86
 #: assets/templates/assets/system_user_asset.html:49
 #: assets/templates/assets/user_asset_list.html:45 common/forms.py:143
 #: perms/templates/perms/asset_permission_asset.html:54
@@ -229,82 +229,82 @@ msgstr "IP"
 msgid "Hostname"
 msgstr "主机名"
 
-#: assets/models/asset.py:64 assets/templates/assets/asset_detail.html:97
+#: assets/models/asset.py:68 assets/templates/assets/asset_detail.html:97
 msgid "Platform"
 msgstr "系统平台"
 
-#: assets/models/asset.py:67 assets/models/domain.py:48
+#: assets/models/asset.py:75 assets/models/domain.py:48
 #: assets/models/label.py:20 assets/templates/assets/asset_detail.html:105
 msgid "Is active"
 msgstr "激活"
 
-#: assets/models/asset.py:73 assets/templates/assets/asset_detail.html:65
+#: assets/models/asset.py:84 assets/templates/assets/asset_detail.html:65
 msgid "Public IP"
 msgstr "公网IP"
 
-#: assets/models/asset.py:74 assets/templates/assets/asset_detail.html:113
+#: assets/models/asset.py:86 assets/templates/assets/asset_detail.html:113
 msgid "Asset number"
 msgstr "资产编号"
 
-#: assets/models/asset.py:77 assets/templates/assets/asset_detail.html:77
+#: assets/models/asset.py:90 assets/templates/assets/asset_detail.html:77
 msgid "Vendor"
 msgstr "制造商"
 
-#: assets/models/asset.py:78 assets/templates/assets/asset_detail.html:81
+#: assets/models/asset.py:92 assets/templates/assets/asset_detail.html:81
 msgid "Model"
 msgstr "型号"
 
-#: assets/models/asset.py:79 assets/templates/assets/asset_detail.html:109
+#: assets/models/asset.py:94 assets/templates/assets/asset_detail.html:109
 msgid "Serial number"
 msgstr "序列号"
 
-#: assets/models/asset.py:81
+#: assets/models/asset.py:97
 msgid "CPU model"
 msgstr "CPU型号"
 
-#: assets/models/asset.py:82
+#: assets/models/asset.py:98
 msgid "CPU count"
 msgstr "CPU数量"
 
-#: assets/models/asset.py:83
+#: assets/models/asset.py:99
 msgid "CPU cores"
 msgstr "CPU核数"
 
-#: assets/models/asset.py:84 assets/templates/assets/asset_detail.html:89
+#: assets/models/asset.py:101 assets/templates/assets/asset_detail.html:89
 msgid "Memory"
 msgstr "内存"
 
-#: assets/models/asset.py:85
+#: assets/models/asset.py:103
 msgid "Disk total"
 msgstr "硬盘大小"
 
-#: assets/models/asset.py:86
+#: assets/models/asset.py:105
 msgid "Disk info"
 msgstr "硬盘信息"
 
-#: assets/models/asset.py:88 assets/templates/assets/asset_detail.html:101
+#: assets/models/asset.py:108 assets/templates/assets/asset_detail.html:101
 msgid "OS"
 msgstr "操作系统"
 
-#: assets/models/asset.py:89
+#: assets/models/asset.py:110
 msgid "OS version"
 msgstr "系统版本"
 
-#: assets/models/asset.py:90
+#: assets/models/asset.py:112
 msgid "OS arch"
 msgstr "系统架构"
 
-#: assets/models/asset.py:91
+#: assets/models/asset.py:114
 msgid "Hostname raw"
 msgstr "主机名原始"
 
-#: assets/models/asset.py:93 assets/templates/assets/asset_create.html:33
+#: assets/models/asset.py:118 assets/templates/assets/asset_create.html:33
 #: assets/templates/assets/asset_detail.html:220
 #: assets/templates/assets/asset_update.html:38 templates/_nav.html:27
 msgid "Labels"
 msgstr "标签管理"
 
-#: assets/models/asset.py:94 assets/models/base.py:29
+#: assets/models/asset.py:120 assets/models/base.py:29
 #: assets/models/cluster.py:28 assets/models/group.py:21
 #: assets/templates/assets/admin_user_detail.html:68
 #: assets/templates/assets/asset_detail.html:117
@@ -316,7 +316,7 @@ msgstr "标签管理"
 msgid "Created by"
 msgstr "创建者"
 
-#: assets/models/asset.py:95 assets/models/cluster.py:26
+#: assets/models/asset.py:123 assets/models/cluster.py:26
 #: assets/models/domain.py:20 assets/models/group.py:22
 #: assets/models/label.py:23 assets/templates/assets/admin_user_detail.html:64
 #: assets/templates/assets/domain_detail.html:68
@@ -329,7 +329,7 @@ msgstr "创建者"
 msgid "Date created"
 msgstr "创建日期"
 
-#: assets/models/asset.py:96 assets/models/base.py:26
+#: assets/models/asset.py:125 assets/models/base.py:26
 #: assets/models/cluster.py:29 assets/models/domain.py:18
 #: assets/models/domain.py:47 assets/models/group.py:23
 #: assets/models/label.py:21 assets/templates/assets/admin_user_detail.html:72
@@ -346,7 +346,7 @@ msgstr "创建日期"
 #: users/models/user.py:75 users/templates/users/user_detail.html:119
 #: users/templates/users/user_group_detail.html:67
 #: users/templates/users/user_group_list.html:14
-#: users/templates/users/user_profile.html:123
+#: users/templates/users/user_profile.html:126
 msgid "Comment"
 msgstr "备注"
 
@@ -434,11 +434,11 @@ msgstr "默认资产组"
 #: terminal/templates/terminal/session_list.html:71 users/forms.py:281
 #: users/models/user.py:30 users/models/user.py:318
 #: users/templates/users/user_group_detail.html:78
-#: users/templates/users/user_group_list.html:13 users/views/user.py:339
+#: users/templates/users/user_group_list.html:13 users/views/user.py:360
 msgid "User"
 msgstr "用户"
 
-#: assets/models/label.py:18 assets/models/node.py:18
+#: assets/models/label.py:18 assets/models/node.py:16
 #: assets/templates/assets/label_list.html:15 common/models.py:27
 msgid "Value"
 msgstr "值"
@@ -447,7 +447,7 @@ msgstr "值"
 msgid "Category"
 msgstr "分类"
 
-#: assets/models/node.py:14
+#: assets/models/node.py:15
 msgid "Key"
 msgstr ""
 
@@ -630,16 +630,17 @@ msgstr "其它"
 #: assets/templates/assets/domain_create_update.html:16
 #: assets/templates/assets/gateway_create_update.html:58
 #: assets/templates/assets/label_create_update.html:18
-#: common/templates/common/basic_setting.html:58
-#: common/templates/common/email_setting.html:59
-#: common/templates/common/ldap_setting.html:59
-#: common/templates/common/terminal_setting.html:101
+#: common/templates/common/basic_setting.html:61
+#: common/templates/common/email_setting.html:62
+#: common/templates/common/ldap_setting.html:62
+#: common/templates/common/security_setting.html:70
+#: common/templates/common/terminal_setting.html:106
 #: perms/templates/perms/asset_permission_create_update.html:69
 #: terminal/templates/terminal/terminal_update.html:47
 #: users/templates/users/_user.html:46
 #: users/templates/users/user_bulk_update.html:23
-#: users/templates/users/user_password_update.html:58
-#: users/templates/users/user_profile.html:181
+#: users/templates/users/user_password_update.html:70
+#: users/templates/users/user_profile.html:184
 #: users/templates/users/user_profile_update.html:63
 #: users/templates/users/user_pubkey_update.html:70
 #: users/templates/users/user_pubkey_update.html:76
@@ -650,15 +651,16 @@ msgstr "重置"
 #: assets/templates/assets/admin_user_create_update.html:46
 #: assets/templates/assets/asset_bulk_update.html:24
 #: assets/templates/assets/asset_create.html:67
-#: assets/templates/assets/asset_list.html:107
+#: assets/templates/assets/asset_list.html:108
 #: assets/templates/assets/asset_update.html:71
 #: assets/templates/assets/domain_create_update.html:17
 #: assets/templates/assets/gateway_create_update.html:59
 #: assets/templates/assets/label_create_update.html:19
-#: common/templates/common/basic_setting.html:59
-#: common/templates/common/email_setting.html:60
-#: common/templates/common/ldap_setting.html:60
-#: common/templates/common/terminal_setting.html:103
+#: common/templates/common/basic_setting.html:62
+#: common/templates/common/email_setting.html:63
+#: common/templates/common/ldap_setting.html:63
+#: common/templates/common/security_setting.html:71
+#: common/templates/common/terminal_setting.html:108
 #: perms/templates/perms/asset_permission_create_update.html:70
 #: terminal/templates/terminal/session_list.html:124
 #: terminal/templates/terminal/terminal_update.html:48
@@ -666,7 +668,7 @@ msgstr "重置"
 #: users/templates/users/forgot_password.html:44
 #: users/templates/users/user_bulk_update.html:24
 #: users/templates/users/user_list.html:44
-#: users/templates/users/user_password_update.html:59
+#: users/templates/users/user_password_update.html:71
 #: users/templates/users/user_profile_update.html:64
 #: users/templates/users/user_pubkey_update.html:77
 msgid "Submit"
@@ -727,7 +729,7 @@ msgstr "测试"
 #: assets/templates/assets/admin_user_detail.html:24
 #: assets/templates/assets/admin_user_list.html:85
 #: assets/templates/assets/asset_detail.html:24
-#: assets/templates/assets/asset_list.html:174
+#: assets/templates/assets/asset_list.html:175
 #: assets/templates/assets/domain_detail.html:24
 #: assets/templates/assets/domain_detail.html:103
 #: assets/templates/assets/domain_gateway_list.html:85
@@ -743,15 +745,15 @@ msgstr "测试"
 #: users/templates/users/user_group_detail.html:28
 #: users/templates/users/user_group_list.html:43
 #: users/templates/users/user_list.html:76
-#: users/templates/users/user_profile.html:144
-#: users/templates/users/user_profile.html:173
+#: users/templates/users/user_profile.html:147
+#: users/templates/users/user_profile.html:176
 msgid "Update"
 msgstr "更新"
 
 #: assets/templates/assets/admin_user_detail.html:28
 #: assets/templates/assets/admin_user_list.html:86
 #: assets/templates/assets/asset_detail.html:28
-#: assets/templates/assets/asset_list.html:175
+#: assets/templates/assets/asset_list.html:176
 #: assets/templates/assets/domain_detail.html:28
 #: assets/templates/assets/domain_detail.html:104
 #: assets/templates/assets/domain_gateway_list.html:86
@@ -782,7 +784,7 @@ msgstr "选择节点"
 
 #: assets/templates/assets/admin_user_detail.html:100
 #: assets/templates/assets/asset_detail.html:200
-#: assets/templates/assets/asset_list.html:636
+#: assets/templates/assets/asset_list.html:639
 #: assets/templates/assets/system_user_detail.html:192
 #: assets/templates/assets/system_user_list.html:138 templates/_modal.html:22
 #: terminal/templates/terminal/session_detail.html:108
@@ -792,7 +794,7 @@ msgstr "选择节点"
 #: users/templates/users/user_group_create_update.html:32
 #: users/templates/users/user_group_list.html:86
 #: users/templates/users/user_list.html:199
-#: users/templates/users/user_profile.html:215
+#: users/templates/users/user_profile.html:218
 msgid "Confirm"
 msgstr "确认"
 
@@ -814,7 +816,7 @@ msgid "Ratio"
 msgstr "比例"
 
 #: assets/templates/assets/admin_user_list.html:30
-#: assets/templates/assets/asset_list.html:90
+#: assets/templates/assets/asset_list.html:91
 #: assets/templates/assets/domain_gateway_list.html:62
 #: assets/templates/assets/domain_list.html:18
 #: assets/templates/assets/label_list.html:17
@@ -843,19 +845,19 @@ msgstr "硬盘"
 
 #: assets/templates/assets/asset_detail.html:121
 #: users/templates/users/user_detail.html:111
-#: users/templates/users/user_profile.html:97
+#: users/templates/users/user_profile.html:100
 msgid "Date joined"
 msgstr "创建日期"
 
 #: assets/templates/assets/asset_detail.html:137
 #: terminal/templates/terminal/session_detail.html:81
 #: users/templates/users/user_detail.html:130
-#: users/templates/users/user_profile.html:135
+#: users/templates/users/user_profile.html:138
 msgid "Quick modify"
 msgstr "快速修改"
 
 #: assets/templates/assets/asset_detail.html:143
-#: assets/templates/assets/asset_list.html:88
+#: assets/templates/assets/asset_list.html:89
 #: assets/templates/assets/user_asset_list.html:47 perms/models.py:35
 #: perms/models.py:79
 #: perms/templates/perms/asset_permission_create_update.html:47
@@ -885,97 +887,97 @@ msgstr "刷新"
 msgid "Update successfully!"
 msgstr "更新成功"
 
-#: assets/templates/assets/asset_list.html:62 assets/views/asset.py:97
+#: assets/templates/assets/asset_list.html:63 assets/views/asset.py:97
 msgid "Create asset"
 msgstr "创建资产"
 
-#: assets/templates/assets/asset_list.html:66
+#: assets/templates/assets/asset_list.html:67
 #: users/templates/users/user_list.html:7
 msgid "Import"
 msgstr "导入"
 
-#: assets/templates/assets/asset_list.html:69
+#: assets/templates/assets/asset_list.html:70
 #: users/templates/users/user_list.html:10
 msgid "Export"
 msgstr "导出"
 
-#: assets/templates/assets/asset_list.html:87
+#: assets/templates/assets/asset_list.html:88
 msgid "Hardware"
 msgstr "硬件"
 
-#: assets/templates/assets/asset_list.html:99
+#: assets/templates/assets/asset_list.html:100
 #: users/templates/users/user_list.html:37
 msgid "Delete selected"
 msgstr "批量删除"
 
-#: assets/templates/assets/asset_list.html:100
+#: assets/templates/assets/asset_list.html:101
 #: users/templates/users/user_list.html:38
 msgid "Update selected"
 msgstr "批量更新"
 
-#: assets/templates/assets/asset_list.html:101
+#: assets/templates/assets/asset_list.html:102
 msgid "Remove from this node"
 msgstr "从节点移除"
 
-#: assets/templates/assets/asset_list.html:102
+#: assets/templates/assets/asset_list.html:103
 #: users/templates/users/user_list.html:39
 msgid "Deactive selected"
 msgstr "禁用所选"
 
-#: assets/templates/assets/asset_list.html:103
+#: assets/templates/assets/asset_list.html:104
 #: users/templates/users/user_list.html:40
 msgid "Active selected"
 msgstr "激活所选"
 
-#: assets/templates/assets/asset_list.html:120
+#: assets/templates/assets/asset_list.html:121
 msgid "Add node"
 msgstr "新建节点"
 
-#: assets/templates/assets/asset_list.html:121
+#: assets/templates/assets/asset_list.html:122
 msgid "Rename node"
 msgstr "重命名节点"
 
-#: assets/templates/assets/asset_list.html:122
+#: assets/templates/assets/asset_list.html:123
 msgid "Delete node"
 msgstr "删除节点"
 
-#: assets/templates/assets/asset_list.html:124
+#: assets/templates/assets/asset_list.html:125
 msgid "Add assets to node"
 msgstr "添加资产到节点"
 
-#: assets/templates/assets/asset_list.html:125
+#: assets/templates/assets/asset_list.html:126
 msgid "Move assets to node"
 msgstr "移动资产到节点"
 
-#: assets/templates/assets/asset_list.html:127
+#: assets/templates/assets/asset_list.html:128
 msgid "Refresh node hardware info"
 msgstr "更新节点资产硬件信息"
 
-#: assets/templates/assets/asset_list.html:128
+#: assets/templates/assets/asset_list.html:129
 msgid "Test node connective"
 msgstr "测试节点资产可连接性"
 
-#: assets/templates/assets/asset_list.html:130
+#: assets/templates/assets/asset_list.html:131
 msgid "Display only current node assets"
 msgstr "仅显示当前节点资产"
 
-#: assets/templates/assets/asset_list.html:131
+#: assets/templates/assets/asset_list.html:132
 msgid "Displays all child node assets"
 msgstr "显示所有子节点资产"
 
-#: assets/templates/assets/asset_list.html:217
+#: assets/templates/assets/asset_list.html:218
 msgid "Create node failed"
 msgstr "创建节点失败"
 
-#: assets/templates/assets/asset_list.html:229
+#: assets/templates/assets/asset_list.html:230
 msgid "Have child node, cancel"
 msgstr "存在子节点，不能删除"
 
-#: assets/templates/assets/asset_list.html:231
+#: assets/templates/assets/asset_list.html:232
 msgid "Have assets, cancel"
 msgstr "存在资产，不能删除"
 
-#: assets/templates/assets/asset_list.html:631
+#: assets/templates/assets/asset_list.html:634
 #: assets/templates/assets/system_user_list.html:133
 #: users/templates/users/user_detail.html:357
 #: users/templates/users/user_detail.html:382
@@ -984,20 +986,20 @@ msgstr "存在资产，不能删除"
 msgid "Are you sure?"
 msgstr "你确认吗?"
 
-#: assets/templates/assets/asset_list.html:632
+#: assets/templates/assets/asset_list.html:635
 msgid "This will delete the selected assets !!!"
 msgstr "删除选择资产"
 
-#: assets/templates/assets/asset_list.html:640
+#: assets/templates/assets/asset_list.html:643
 msgid "Asset Deleted."
 msgstr "已被删除"
 
-#: assets/templates/assets/asset_list.html:641
-#: assets/templates/assets/asset_list.html:646
+#: assets/templates/assets/asset_list.html:644
+#: assets/templates/assets/asset_list.html:649
 msgid "Asset Delete"
 msgstr "删除"
 
-#: assets/templates/assets/asset_list.html:645
+#: assets/templates/assets/asset_list.html:648
 msgid "Asset Deleting failed."
 msgstr "删除失败"
 
@@ -1033,8 +1035,8 @@ msgstr "创建网关"
 
 #: assets/templates/assets/domain_gateway_list.html:87
 #: assets/templates/assets/domain_gateway_list.html:89
-#: common/templates/common/email_setting.html:58
-#: common/templates/common/ldap_setting.html:58
+#: common/templates/common/email_setting.html:61
+#: common/templates/common/ldap_setting.html:61
 msgid "Test connection"
 msgstr "测试连接"
 
@@ -1376,7 +1378,7 @@ msgstr "密码认证"
 msgid "Public key auth"
 msgstr "密钥认证"
 
-#: common/forms.py:159 common/templates/common/terminal_setting.html:63
+#: common/forms.py:159 common/templates/common/terminal_setting.html:68
 #: terminal/forms.py:30 terminal/models.py:20
 msgid "Command storage"
 msgstr "命令存储"
@@ -1387,7 +1389,7 @@ msgid ""
 "other storage and some terminal using"
 msgstr "设置终端命令存储，default是默认用的存储方式"
 
-#: common/forms.py:165 common/templates/common/terminal_setting.html:81
+#: common/forms.py:165 common/templates/common/terminal_setting.html:86
 #: terminal/forms.py:35 terminal/models.py:21
 msgid "Replay storage"
 msgstr "录像存储"
@@ -1398,6 +1400,60 @@ msgid ""
 "other storage and some terminal using"
 msgstr "设置终端录像存储，default是默认用的存储方式"
 
+#: common/forms.py:176
+msgid "MFA Secondary certification"
+msgstr "MFA 二次认证"
+
+#: common/forms.py:178
+msgid ""
+"After opening, the user login must use MFA secondary authentication (valid "
+"for all users, including administrators)"
+msgstr "开启后，用户登录必须使用MFA二次认证（对所有用户有效，包括管理员）"
+
+#: common/forms.py:184
+msgid "Password minimum length"
+msgstr "密码最小长度 "
+
+#: common/forms.py:190
+msgid "Must contain capital letters"
+msgstr "必须包含大写字母"
+
+#: common/forms.py:192
+msgid ""
+"After opening, the user password changes and resets must contain uppercase "
+"letters"
+msgstr "开启后，用户密码修改、重置必须包含大写字母"
+
+#: common/forms.py:198
+msgid "Must contain lowercase letters"
+msgstr "必须包含小写字母"
+
+#: common/forms.py:199
+msgid ""
+"After opening, the user password changes and resets must contain lowercase "
+"letters"
+msgstr "开启后，用户密码修改、重置必须包含小写字母"
+
+#: common/forms.py:205
+msgid "Must contain numeric characters"
+msgstr "必须包含数字字符"
+
+#: common/forms.py:206
+msgid ""
+"After opening, the user password changes and resets must contain numeric "
+"characters"
+msgstr "开启后，用户密码修改、重置必须包含数字字符"
+
+#: common/forms.py:212
+msgid "Must contain special characters"
+msgstr "必须包含特殊字符"
+
+#: common/forms.py:213
+msgid ""
+"After opening, the user password changes and resets must contain special "
+"characters"
+msgstr "开启后，用户密码修改、重置必须包含特殊字符"
+
 #: common/mixins.py:29
 msgid "is discard"
 msgstr ""
@@ -1413,14 +1469,16 @@ msgstr "启用"
 #: common/templates/common/basic_setting.html:15
 #: common/templates/common/email_setting.html:15
 #: common/templates/common/ldap_setting.html:15
+#: common/templates/common/security_setting.html:15
 #: common/templates/common/terminal_setting.html:16
-#: common/templates/common/terminal_setting.html:42 common/views.py:22
+#: common/templates/common/terminal_setting.html:46 common/views.py:22
 msgid "Basic setting"
 msgstr "基本设置"
 
 #: common/templates/common/basic_setting.html:18
 #: common/templates/common/email_setting.html:18
 #: common/templates/common/ldap_setting.html:18
+#: common/templates/common/security_setting.html:18
 #: common/templates/common/terminal_setting.html:20 common/views.py:48
 msgid "Email setting"
 msgstr "邮件设置"
@@ -1428,6 +1486,7 @@ msgstr "邮件设置"
 #: common/templates/common/basic_setting.html:21
 #: common/templates/common/email_setting.html:21
 #: common/templates/common/ldap_setting.html:21
+#: common/templates/common/security_setting.html:21
 #: common/templates/common/terminal_setting.html:24 common/views.py:74
 msgid "LDAP setting"
 msgstr "LDAP设置"
@@ -1435,12 +1494,29 @@ msgstr "LDAP设置"
 #: common/templates/common/basic_setting.html:24
 #: common/templates/common/email_setting.html:24
 #: common/templates/common/ldap_setting.html:24
+#: common/templates/common/security_setting.html:24
 #: common/templates/common/terminal_setting.html:28 common/views.py:104
 msgid "Terminal setting"
 msgstr "终端设置"
 
-#: common/templates/common/terminal_setting.html:68
-#: common/templates/common/terminal_setting.html:86
+#: common/templates/common/basic_setting.html:27
+#: common/templates/common/email_setting.html:27
+#: common/templates/common/ldap_setting.html:27
+#: common/templates/common/security_setting.html:27
+#: common/templates/common/terminal_setting.html:31 common/views.py:132
+msgid "Security setting"
+msgstr "安全设置"
+
+#: common/templates/common/security_setting.html:42
+msgid "MFA setting"
+msgstr "MFA 设置"
+
+#: common/templates/common/security_setting.html:46
+msgid "Password check rule"
+msgstr "密码校验规则"
+
+#: common/templates/common/terminal_setting.html:73
+#: common/templates/common/terminal_setting.html:91
 #: users/templates/users/login_log_list.html:50
 msgid "Type"
 msgstr "类型"
@@ -1450,11 +1526,12 @@ msgid "Special char not allowed"
 msgstr "不能包含特殊字符"
 
 #: common/views.py:21 common/views.py:47 common/views.py:73 common/views.py:103
-#: templates/_nav.html:81
+#: common/views.py:131 templates/_nav.html:81
 msgid "Settings"
 msgstr "系统设置"
 
 #: common/views.py:32 common/views.py:58 common/views.py:86 common/views.py:116
+#: common/views.py:142
 msgid "Update setting successfully, please restart program"
 msgstr "更新设置成功, 请手动重启程序"
 
@@ -1754,7 +1831,7 @@ msgstr ""
 #: perms/models.py:37 perms/models.py:80
 #: perms/templates/perms/asset_permission_detail.html:90
 #: users/models/user.py:80 users/templates/users/user_detail.html:103
-#: users/templates/users/user_profile.html:105
+#: users/templates/users/user_profile.html:108
 msgid "Date expired"
 msgstr "失效日期"
 
@@ -1884,11 +1961,11 @@ msgstr "文档"
 #: templates/_header_bar.html:37 templates/_nav_user.html:9 users/forms.py:121
 #: users/templates/users/_user.html:39
 #: users/templates/users/first_login.html:39
-#: users/templates/users/user_password_update.html:37
+#: users/templates/users/user_password_update.html:39
 #: users/templates/users/user_profile.html:17
 #: users/templates/users/user_profile_update.html:37
 #: users/templates/users/user_profile_update.html:57
-#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:322
+#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:342
 msgid "Profile"
 msgstr "个人信息"
 
@@ -1945,13 +2022,13 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:263 users/views/login.py:321 users/views/user.py:64
-#: users/views/user.py:79 users/views/user.py:99 users/views/user.py:155
-#: users/views/user.py:310 users/views/user.py:357 users/views/user.py:379
+#: users/views/login.py:284 users/views/login.py:342 users/views/user.py:65
+#: users/views/user.py:80 users/views/user.py:102 users/views/user.py:173
+#: users/views/user.py:328 users/views/user.py:379 users/views/user.py:414
 msgid "Users"
 msgstr "用户管理"
 
-#: templates/_nav.html:13 users/views/user.py:65
+#: templates/_nav.html:13 users/views/user.py:66
 msgid "User list"
 msgstr "用户列表"
 
@@ -2356,7 +2433,7 @@ msgstr "复制你的公钥到这里"
 
 #: users/forms.py:231 users/models/user.py:72
 #: users/templates/users/first_login.html:42
-#: users/templates/users/user_password_update.html:43
+#: users/templates/users/user_password_update.html:45
 #: users/templates/users/user_profile.html:68
 #: users/templates/users/user_profile_update.html:43
 #: users/templates/users/user_pubkey_update.html:43
@@ -2396,13 +2473,13 @@ msgid "Application"
 msgstr "应用程序"
 
 #: users/models/user.py:34 users/templates/users/user_profile.html:92
-#: users/templates/users/user_profile.html:156
 #: users/templates/users/user_profile.html:159
+#: users/templates/users/user_profile.html:162
 msgid "Disable"
 msgstr "禁用"
 
 #: users/models/user.py:35 users/templates/users/user_profile.html:90
-#: users/templates/users/user_profile.html:163
+#: users/templates/users/user_profile.html:166
 msgid "Enable"
 msgstr "启用"
 
@@ -2539,22 +2616,34 @@ msgstr "6位数字"
 msgid "Can't provide security? Please contact the administrator!"
 msgstr "如果不能提供MFA验证码，请联系管理员!"
 
-#: users/templates/users/reset_password.html:45
-#: users/templates/users/user_detail.html:348 users/utils.py:76
+#: users/templates/users/reset_password.html:46
+#: users/templates/users/user_detail.html:348 users/utils.py:80
 msgid "Reset password"
 msgstr "重置密码"
 
-#: users/templates/users/reset_password.html:55
+#: users/templates/users/reset_password.html:59
+#: users/templates/users/user_password_update.html:60
+#: users/templates/users/user_update.html:12
+msgid "Your password must satisfy"
+msgstr "您的密码必须满足："
+
+#: users/templates/users/reset_password.html:60
+#: users/templates/users/user_password_update.html:61
+#: users/templates/users/user_update.html:13
+msgid "Password strength"
+msgstr "密码强度："
+
+#: users/templates/users/reset_password.html:66
 msgid "Password again"
 msgstr "再次输入密码"
 
-#: users/templates/users/reset_password.html:57
+#: users/templates/users/reset_password.html:68
 #: users/templates/users/user_profile.html:20
 msgid "Setting"
 msgstr "设置"
 
 #: users/templates/users/user_create.html:4
-#: users/templates/users/user_list.html:16 users/views/user.py:79
+#: users/templates/users/user_list.html:16 users/views/user.py:80
 msgid "Create user"
 msgstr "创建用户"
 
@@ -2563,7 +2652,7 @@ msgid "Reset link will be generated and sent to the user. "
 msgstr "生成重置密码连接，通过邮件发送给用户"
 
 #: users/templates/users/user_detail.html:19
-#: users/templates/users/user_granted_asset.html:18 users/views/user.py:156
+#: users/templates/users/user_granted_asset.html:18 users/views/user.py:174
 msgid "User detail"
 msgstr "用户详情"
 
@@ -2583,7 +2672,7 @@ msgid "Disabled"
 msgstr "禁用"
 
 #: users/templates/users/user_detail.html:115
-#: users/templates/users/user_profile.html:101
+#: users/templates/users/user_profile.html:104
 msgid "Last login"
 msgstr "最后登录"
 
@@ -2631,14 +2720,14 @@ msgid "This will reset the user public key and send a reset mail"
 msgstr "将会失效用户当前密钥，并发送重置邮件到用户邮箱"
 
 #: users/templates/users/user_detail.html:400
-#: users/templates/users/user_profile.html:204
+#: users/templates/users/user_profile.html:207
 msgid "Successfully updated the SSH public key."
 msgstr "更新ssh密钥成功"
 
 #: users/templates/users/user_detail.html:401
 #: users/templates/users/user_detail.html:405
-#: users/templates/users/user_profile.html:205
-#: users/templates/users/user_profile.html:210
+#: users/templates/users/user_profile.html:208
+#: users/templates/users/user_profile.html:213
 msgid "User SSH public key update"
 msgstr "ssh密钥"
 
@@ -2694,28 +2783,32 @@ msgstr "删除"
 msgid "User Deleting failed."
 msgstr "用户删除失败"
 
-#: users/templates/users/user_profile.html:109 users/views/user.py:185
-#: users/views/user.py:239
+#: users/templates/users/user_profile.html:95
+msgid "Administrator Settings force MFA login"
+msgstr "管理员设置强制使用MFA登录"
+
+#: users/templates/users/user_profile.html:112 users/views/user.py:203
+#: users/views/user.py:257
 msgid "User groups"
 msgstr "用户组"
 
-#: users/templates/users/user_profile.html:141
+#: users/templates/users/user_profile.html:144
 msgid "Update password"
 msgstr "更改密码"
 
-#: users/templates/users/user_profile.html:149
+#: users/templates/users/user_profile.html:152
 msgid "Update MFA settings"
 msgstr "更改MFA设置"
 
-#: users/templates/users/user_profile.html:170
+#: users/templates/users/user_profile.html:173
 msgid "Update SSH public key"
 msgstr "更改SSH密钥"
 
-#: users/templates/users/user_profile.html:178
+#: users/templates/users/user_profile.html:181
 msgid "Reset public key and download"
 msgstr "重置并下载SSH密钥"
 
-#: users/templates/users/user_profile.html:208
+#: users/templates/users/user_profile.html:211
 msgid "Failed to update SSH public key."
 msgstr "更新密钥失败"
 
@@ -2735,15 +2828,15 @@ msgstr "更新密钥"
 msgid "Or reset by server"
 msgstr "或者重置并下载密钥"
 
-#: users/templates/users/user_update.html:4 users/views/user.py:99
+#: users/templates/users/user_update.html:4 users/views/user.py:103
 msgid "Update user"
 msgstr "更新用户"
 
-#: users/utils.py:37
+#: users/utils.py:41
 msgid "Create account successfully"
 msgstr "创建账户成功"
 
-#: users/utils.py:39
+#: users/utils.py:43
 #, fuzzy, python-format
 msgid ""
 "\n"
@@ -2788,7 +2881,7 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:78
+#: users/utils.py:82
 #, python-format
 msgid ""
 "\n"
@@ -2832,11 +2925,11 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:109
+#: users/utils.py:113
 msgid "SSH Key Reset"
 msgstr "重置ssh密钥"
 
-#: users/utils.py:111
+#: users/utils.py:115
 #, python-format
 msgid ""
 "\n"
@@ -2861,18 +2954,22 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:144
+#: users/utils.py:148
 msgid "User not exist"
 msgstr "用户不存在"
 
-#: users/utils.py:146
+#: users/utils.py:150
 msgid "Disabled or expired"
 msgstr "禁用或失效"
 
-#: users/utils.py:159
+#: users/utils.py:163
 msgid "Password or SSH public key invalid"
 msgstr "密码或密钥不合法"
 
+#: users/utils.py:290 users/utils.py:300
+msgid "Bit"
+msgstr " 位"
+
 #: users/views/group.py:29
 msgid "User group list"
 msgstr "用户组列表"
@@ -2885,99 +2982,103 @@ msgstr "更新用户组"
 msgid "User group granted asset"
 msgstr "用户组授权资产"
 
-#: users/views/login.py:59
+#: users/views/login.py:62
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:125 users/views/user.py:464 users/views/user.py:489
+#: users/views/login.py:135 users/views/user.py:499 users/views/user.py:524
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
-#: users/views/login.py:151
+#: users/views/login.py:161
 msgid "Logout success"
 msgstr "退出登录成功"
 
-#: users/views/login.py:152
+#: users/views/login.py:162
 msgid "Logout success, return login page"
 msgstr "退出登录成功，返回到登录页面"
 
-#: users/views/login.py:168
+#: users/views/login.py:178
 msgid "Email address invalid, please input again"
 msgstr "邮箱地址错误，重新输入"
 
-#: users/views/login.py:181
+#: users/views/login.py:191
 msgid "Send reset password message"
 msgstr "发送重置密码邮件"
 
-#: users/views/login.py:182
+#: users/views/login.py:192
 msgid "Send reset password mail success, login your mail box and follow it "
 msgstr ""
 "发送重置邮件成功, 请登录邮箱查看, 按照提示操作 (如果没收到,请等待3-5分钟)"
 
-#: users/views/login.py:195
+#: users/views/login.py:205
 msgid "Reset password success"
 msgstr "重置密码成功"
 
-#: users/views/login.py:196
+#: users/views/login.py:206
 msgid "Reset password success, return to login page"
 msgstr "重置密码成功，返回到登录页面"
 
-#: users/views/login.py:213 users/views/login.py:226
+#: users/views/login.py:227 users/views/login.py:240
 msgid "Token invalid or expired"
 msgstr "Token错误或失效"
 
-#: users/views/login.py:222
+#: users/views/login.py:236
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:263
+#: users/views/login.py:246 users/views/user.py:115 users/views/user.py:397
+msgid "* Your password does not meet the requirements"
+msgstr "* 您的密码不符合要求"
+
+#: users/views/login.py:284
 msgid "First login"
 msgstr "首次登陆"
 
-#: users/views/login.py:322
+#: users/views/login.py:343
 msgid "Login log list"
 msgstr "登录日志"
 
-#: users/views/user.py:109
+#: users/views/user.py:127
 msgid "Bulk update user success"
 msgstr "批量更新用户成功"
 
-#: users/views/user.py:214
+#: users/views/user.py:232
 msgid "Invalid file."
 msgstr "文件不合法"
 
-#: users/views/user.py:311
+#: users/views/user.py:329
 msgid "User granted assets"
 msgstr "用户授权资产"
 
-#: users/views/user.py:340
+#: users/views/user.py:361
 msgid "Profile setting"
 msgstr "个人信息设置"
 
-#: users/views/user.py:358
+#: users/views/user.py:380
 msgid "Password update"
 msgstr "密码更新"
 
-#: users/views/user.py:380
+#: users/views/user.py:415
 msgid "Public key update"
 msgstr "密钥更新"
 
-#: users/views/user.py:421
+#: users/views/user.py:456
 msgid "Password invalid"
 msgstr "用户名或密码无效"
 
-#: users/views/user.py:515
+#: users/views/user.py:550
 msgid "MFA enable success"
 msgstr "MFA 绑定成功"
 
-#: users/views/user.py:516
+#: users/views/user.py:551
 msgid "MFA enable success, return login page"
 msgstr "MFA 绑定成功，返回到登录页面"
 
-#: users/views/user.py:518
+#: users/views/user.py:553
 msgid "MFA disable success"
 msgstr "MFA 解绑成功"
 
-#: users/views/user.py:519
+#: users/views/user.py:554
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"
diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index b81188b9d..6fd9f0fdd 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -401,6 +401,9 @@ TERMINAL_REPLAY_STORAGE = {
     },
 }
 
+
+DEFAULT_PASSWORD_MIN_LENGTH = 6
+
 # Django bootstrap3 setting, more see http://django-bootstrap3.readthedocs.io/en/latest/settings.html
 BOOTSTRAP3 = {
     'horizontal_label_class': 'col-md-2',
diff --git a/apps/static/js/jumpserver.js b/apps/static/js/jumpserver.js
index 461455085..0000a3ccf 100644
--- a/apps/static/js/jumpserver.js
+++ b/apps/static/js/jumpserver.js
@@ -609,3 +609,91 @@ function setUrlParam(url, name, value) {
     }
     return url
 }
+
+// 校验密码-改变规则颜色
+function checkPasswordRules(password, minLength) {
+    if (wordMinLength(password, minLength)) {
+        $('#rule_SECURITY_PASSWORD_MIN_LENGTH').css('color', 'green')
+    }
+    else {
+        $('#rule_SECURITY_PASSWORD_MIN_LENGTH').css('color', '#908a8a')
+    }
+
+    if (wordUpperCase(password)) {
+        $('#rule_SECURITY_PASSWORD_UPPER_CASE').css('color', 'green');
+    }
+    else {
+        $('#rule_SECURITY_PASSWORD_UPPER_CASE').css('color', '#908a8a')
+    }
+
+    if (wordLowerCase(password)) {
+        $('#rule_SECURITY_PASSWORD_LOWER_CASE').css('color', 'green')
+    }
+    else {
+        $('#rule_SECURITY_PASSWORD_LOWER_CASE').css('color', '#908a8a')
+    }
+
+    if (wordNumber(password)) {
+        $('#rule_SECURITY_PASSWORD_NUMBER').css('color', 'green')
+    }
+    else {
+        $('#rule_SECURITY_PASSWORD_NUMBER').css('color', '#908a8a')
+    }
+
+    if (wordSpecialChar(password)) {
+        $('#rule_SECURITY_PASSWORD_SPECIAL_CHAR').css('color', 'green')
+    }
+    else {
+        $('#rule_SECURITY_PASSWORD_SPECIAL_CHAR').css('color', '#908a8a')
+    }
+}
+
+// 最小长度
+function wordMinLength(word, minLength) {
+    //var minLength = {{ min_length }};
+    var re = new RegExp("^(.{" + minLength + ",})$");
+    return word.match(re)
+}
+// 大写字母
+function wordUpperCase(word) {
+    return word.match(/([A-Z]+)/)
+}
+// 小写字母
+function wordLowerCase(word) {
+    return word.match(/([a-z]+)/)
+}
+// 数字字符
+function wordNumber(word) {
+    return word.match(/([\d]+)/)
+}
+// 特殊字符
+function wordSpecialChar(word) {
+    return word.match(/[`,~,!,@,#,\$,%,\^,&,\*,\(,\),\-,_,=,\+,\{,\},\[,\],\|,\\,;,',:,",\,,\.,<,>,\/,\?]+/)
+}
+
+// 显示弹窗密码规则
+function popoverPasswordRules(password_check_rules, $el) {
+    var message = "";
+    jQuery.each(password_check_rules, function (idx, rules) {
+        message += "<li id=" + rules.id + " style='list-style-type:none;'> <i class='fa fa-check-circle-o' style='margin-right:10px;' ></i>" + rules.label + "</li>";
+    });
+    //$('#id_password_rules').html(message);
+    $el.html(message)
+}
+
+// 初始化弹窗popover
+function initPopover($container, $progress, $idPassword, $el, password_check_rules){
+    options = {};
+    // User Interface
+    options.ui = {
+        container: $container,
+        viewports: {
+            progress: $progress
+            //errors: $('.popover-content')
+        },
+        showProgressbar: true,
+        showVerdictsInsideProgressBar: true
+    };
+    $idPassword.pwstrength(options);
+    popoverPasswordRules(password_check_rules, $el);
+}
diff --git a/apps/static/js/pwstrength-bootstrap.js b/apps/static/js/pwstrength-bootstrap.js
new file mode 100755
index 000000000..957df08ea
--- /dev/null
+++ b/apps/static/js/pwstrength-bootstrap.js
@@ -0,0 +1,976 @@
+/*!
+* jQuery Password Strength plugin for Twitter Bootstrap
+* Version: 2.2.1
+*
+* Copyright (c) 2008-2013 Tane Piper
+* Copyright (c) 2013 Alejandro Blanco
+* Dual licensed under the MIT and GPL licenses.
+*/
+
+(function (jQuery) {
+// Source: src/i18n.js
+
+
+
+
+var i18n = {};
+
+(function (i18n, i18next) {
+    'use strict';
+
+    i18n.fallback = {
+        "wordMinLength": "Your password is too short",
+        "wordMaxLength": "Your password is too long",
+        "wordInvalidChar": "Your password contains an invalid character",
+        "wordNotEmail": "Do not use your email as your password",
+        "wordSimilarToUsername": "Your password cannot contain your username",
+        "wordTwoCharacterClasses": "Use different character classes",
+        "wordRepetitions": "Too many repetitions",
+        "wordSequences": "Your password contains sequences",
+        "errorList": "Errors:",
+        "veryWeak": "Very Weak",
+        "weak": "Weak",
+        "normal": "Normal",
+        "medium": "Medium",
+        "strong": "Strong",
+        "veryStrong": "Very Strong"
+    };
+
+    i18n.t = function (key) {
+        var result = '';
+
+        // Try to use i18next.com
+        if (i18next) {
+            result = i18next.t(key);
+        } else {
+            // Fallback to english
+            result = i18n.fallback[key];
+        }
+
+        return result === key ? '' : result;
+    };
+}(i18n, window.i18next));
+
+// Source: src/rules.js
+
+
+
+
+var rulesEngine = {};
+
+try {
+    if (!jQuery && module && module.exports) {
+        var jQuery = require("jquery"),
+            jsdom = require("jsdom").jsdom;
+        jQuery = jQuery(jsdom().defaultView);
+    }
+} catch (ignore) {}
+
+(function ($, rulesEngine) {
+    "use strict";
+    var validation = {};
+
+    rulesEngine.forbiddenSequences = [
+        "0123456789", "abcdefghijklmnopqrstuvwxyz", "qwertyuiop", "asdfghjkl",
+        "zxcvbnm", "!@#$%^&*()_+"
+    ];
+
+    validation.wordNotEmail = function (options, word, score) {
+        if (word.match(/^([\w\!\#$\%\&\'\*\+\-\/\=\?\^\`{\|\}\~]+\.)*[\w\!\#$\%\&\'\*\+\-\/\=\?\^\`{\|\}\~]+@((((([a-z0-9]{1}[a-z0-9\-]{0,62}[a-z0-9]{1})|[a-z])\.)+[a-z]{2,6})|(\d{1,3}\.){3}\d{1,3}(\:\d{1,5})?)$/i)) {
+            return score;
+        }
+        return 0;
+    };
+
+    validation.wordMinLength = function (options, word, score) {
+        var wordlen = word.length,
+            lenScore = Math.pow(wordlen, options.rules.raisePower);
+        if (wordlen < options.common.minChar) {
+            lenScore = (lenScore + score);
+        }
+        return lenScore;
+    };
+
+    validation.wordMaxLength = function (options, word, score) {
+        var wordlen = word.length,
+            lenScore = Math.pow(wordlen, options.rules.raisePower);
+        if (wordlen > options.common.maxChar) {
+            return score;
+        }
+        return lenScore;
+    };
+
+    validation.wordInvalidChar = function (options, word, score) {
+        if (options.common.invalidCharsRegExp.test(word)) {
+            return score;
+        }
+        return 0;
+    };
+
+    validation.wordMinLengthStaticScore = function (options, word, score) {
+        return word.length < options.common.minChar ? 0 : score;
+    };
+
+    validation.wordMaxLengthStaticScore = function (options, word, score) {
+        return word.length > options.common.maxChar ? 0 : score;
+    };
+
+
+    validation.wordSimilarToUsername = function (options, word, score) {
+        var username = $(options.common.usernameField).val();
+        if (username && word.toLowerCase().match(username.replace(/[\-\[\]\/\{\}\(\)\*\+\=\?\:\.\\\^\$\|\!\,]/g, "\\$&").toLowerCase())) {
+            return score;
+        }
+        return 0;
+    };
+
+    validation.wordTwoCharacterClasses = function (options, word, score) {
+        if (word.match(/([a-z].*[A-Z])|([A-Z].*[a-z])/) ||
+                (word.match(/([a-zA-Z])/) && word.match(/([0-9])/)) ||
+                (word.match(/(.[!,@,#,$,%,\^,&,*,?,_,~])/) && word.match(/[a-zA-Z0-9_]/))) {
+            return score;
+        }
+        return 0;
+    };
+
+    validation.wordRepetitions = function (options, word, score) {
+        if (word.match(/(.)\1\1/)) { return score; }
+        return 0;
+    };
+
+    validation.wordSequences = function (options, word, score) {
+        var found = false,
+            j;
+        if (word.length > 2) {
+            $.each(rulesEngine.forbiddenSequences, function (idx, seq) {
+                if (found) { return; }
+                var sequences = [seq, seq.split('').reverse().join('')];
+                $.each(sequences, function (idx, sequence) {
+                    for (j = 0; j < (word.length - 2); j += 1) { // iterate the word trough a sliding window of size 3:
+                        if (sequence.indexOf(word.toLowerCase().substring(j, j + 3)) > -1) {
+                            found = true;
+                        }
+                    }
+                });
+            });
+            if (found) { return score; }
+        }
+        return 0;
+    };
+
+    validation.wordLowercase = function (options, word, score) {
+        return word.match(/[a-z]/) && score;
+    };
+
+    validation.wordUppercase = function (options, word, score) {
+        return word.match(/[A-Z]/) && score;
+    };
+
+    validation.wordOneNumber = function (options, word, score) {
+        return word.match(/\d+/) && score;
+    };
+
+    validation.wordThreeNumbers = function (options, word, score) {
+        return word.match(/(.*[0-9].*[0-9].*[0-9])/) && score;
+    };
+
+    validation.wordOneSpecialChar = function (options, word, score) {
+        return word.match(/[!,@,#,$,%,\^,&,*,?,_,~]/) && score;
+    };
+
+    validation.wordTwoSpecialChar = function (options, word, score) {
+        return word.match(/(.*[!,@,#,$,%,\^,&,*,?,_,~].*[!,@,#,$,%,\^,&,*,?,_,~])/) && score;
+    };
+
+    validation.wordUpperLowerCombo = function (options, word, score) {
+        return word.match(/([a-z].*[A-Z])|([A-Z].*[a-z])/) && score;
+    };
+
+    validation.wordLetterNumberCombo = function (options, word, score) {
+        return word.match(/([a-zA-Z])/) && word.match(/([0-9])/) && score;
+    };
+
+    validation.wordLetterNumberCharCombo = function (options, word, score) {
+        return word.match(/([a-zA-Z0-9].*[!,@,#,$,%,\^,&,*,?,_,~])|([!,@,#,$,%,\^,&,*,?,_,~].*[a-zA-Z0-9])/) && score;
+    };
+
+    validation.wordIsACommonPassword = function (options, word, score) {
+        if ($.inArray(word, options.rules.commonPasswords) >= 0) {
+            return score;
+        }
+        return 0;
+    };
+
+    rulesEngine.validation = validation;
+
+    rulesEngine.executeRules = function (options, word) {
+        var totalScore = 0;
+
+        $.each(options.rules.activated, function (rule, active) {
+            if (active) {
+                var score = options.rules.scores[rule],
+                    funct = rulesEngine.validation[rule],
+                    result,
+                    errorMessage;
+
+                if (!$.isFunction(funct)) {
+                    funct = options.rules.extra[rule];
+                }
+
+                if ($.isFunction(funct)) {
+                    result = funct(options, word, score);
+                    if (result) {
+                        totalScore += result;
+                    }
+                    if (result < 0 || (!$.isNumeric(result) && !result)) {
+                        errorMessage = options.ui.spanError(options, rule);
+                        if (errorMessage.length > 0) {
+                            options.instances.errors.push(errorMessage);
+                        }
+                    }
+                }
+            }
+        });
+
+        return totalScore;
+    };
+}(jQuery, rulesEngine));
+
+try {
+    if (module && module.exports) {
+        module.exports = rulesEngine;
+    }
+} catch (ignore) {}
+
+// Source: src/options.js
+
+
+
+
+var defaultOptions = {};
+
+defaultOptions.common = {};
+defaultOptions.common.minChar = 6;
+defaultOptions.common.maxChar = 20;
+defaultOptions.common.usernameField = "#username";
+defaultOptions.common.invalidCharsRegExp = new RegExp(/[\s,'"]/);
+defaultOptions.common.userInputs = [
+    // Selectors for input fields with user input
+];
+defaultOptions.common.onLoad = undefined;
+defaultOptions.common.onKeyUp = undefined;
+defaultOptions.common.onScore = undefined;
+defaultOptions.common.zxcvbn = false;
+defaultOptions.common.zxcvbnTerms = [
+    // List of disrecommended words
+];
+defaultOptions.common.events = ["keyup", "change", "paste"];
+defaultOptions.common.debug = false;
+
+defaultOptions.rules = {};
+defaultOptions.rules.extra = {};
+defaultOptions.rules.scores = {
+    wordNotEmail: -100,
+    wordMinLength: -50,
+    wordMaxLength: -50,
+    wordInvalidChar: -100,
+    wordSimilarToUsername: -100,
+    wordSequences: -20,
+    wordTwoCharacterClasses: 2,
+    wordRepetitions: -25,
+    wordLowercase: 1,
+    wordUppercase: 3,
+    wordOneNumber: 3,
+    wordThreeNumbers: 5,
+    wordOneSpecialChar: 3,
+    wordTwoSpecialChar: 5,
+    wordUpperLowerCombo: 2,
+    wordLetterNumberCombo: 2,
+    wordLetterNumberCharCombo: 2,
+    wordIsACommonPassword: -100
+};
+defaultOptions.rules.activated = {
+    wordNotEmail: true,
+    wordMinLength: true,
+    wordMaxLength: false,
+    wordInvalidChar: false,
+    wordSimilarToUsername: true,
+    wordSequences: true,
+    wordTwoCharacterClasses: true,
+    wordRepetitions: true,
+    wordLowercase: true,
+    wordUppercase: true,
+    wordOneNumber: true,
+    wordThreeNumbers: true,
+    wordOneSpecialChar: true,
+    wordTwoSpecialChar: true,
+    wordUpperLowerCombo: true,
+    wordLetterNumberCombo: true,
+    wordLetterNumberCharCombo: true,
+    wordIsACommonPassword: true
+};
+defaultOptions.rules.raisePower = 1.4;
+// List taken from https://github.com/danielmiessler/SecLists (MIT License)
+defaultOptions.rules.commonPasswords = [
+    '123456',
+    'password',
+    '12345678',
+    'qwerty',
+    '123456789',
+    '12345',
+    '1234',
+    '111111',
+    '1234567',
+    'dragon',
+    '123123',
+    'baseball',
+    'abc123',
+    'football',
+    'monkey',
+    'letmein',
+    '696969',
+    'shadow',
+    'master',
+    '666666',
+    'qwertyuiop',
+    '123321',
+    'mustang',
+    '1234567890',
+    'michael',
+    '654321',
+    'pussy',
+    'superman',
+    '1qaz2wsx',
+    '7777777',
+    'fuckyou',
+    '121212',
+    '000000',
+    'qazwsx',
+    '123qwe',
+    'killer',
+    'trustno1',
+    'jordan',
+    'jennifer',
+    'zxcvbnm',
+    'asdfgh',
+    'hunter',
+    'buster',
+    'soccer',
+    'harley',
+    'batman',
+    'andrew',
+    'tigger',
+    'sunshine',
+    'iloveyou',
+    'fuckme',
+    '2000',
+    'charlie',
+    'robert',
+    'thomas',
+    'hockey',
+    'ranger',
+    'daniel',
+    'starwars',
+    'klaster',
+    '112233',
+    'george',
+    'asshole',
+    'computer',
+    'michelle',
+    'jessica',
+    'pepper',
+    '1111',
+    'zxcvbn',
+    '555555',
+    '11111111',
+    '131313',
+    'freedom',
+    '777777',
+    'pass',
+    'fuck',
+    'maggie',
+    '159753',
+    'aaaaaa',
+    'ginger',
+    'princess',
+    'joshua',
+    'cheese',
+    'amanda',
+    'summer',
+    'love',
+    'ashley',
+    '6969',
+    'nicole',
+    'chelsea',
+    'biteme',
+    'matthew',
+    'access',
+    'yankees',
+    '987654321',
+    'dallas',
+    'austin',
+    'thunder',
+    'taylor',
+    'matrix'
+];
+
+defaultOptions.ui = {};
+defaultOptions.ui.bootstrap2 = false;
+defaultOptions.ui.bootstrap4 = false;
+defaultOptions.ui.colorClasses = [
+    "danger", "danger", "danger", "warning", "warning", "success"
+];
+defaultOptions.ui.showProgressBar = true;
+defaultOptions.ui.progressBarEmptyPercentage = 1;
+defaultOptions.ui.progressBarMinPercentage = 1;
+defaultOptions.ui.progressExtraCssClasses = '';
+defaultOptions.ui.progressBarExtraCssClasses = '';
+defaultOptions.ui.showPopover = false;
+defaultOptions.ui.popoverPlacement = "bottom";
+defaultOptions.ui.showStatus = false;
+defaultOptions.ui.spanError = function (options, key) {
+    "use strict";
+    var text = options.i18n.t(key);
+    if (!text) { return ''; }
+    return '<span style="color: #d52929">' + text + '</span>';
+};
+defaultOptions.ui.popoverError = function (options) {
+    "use strict";
+    var errors = options.instances.errors,
+        errorsTitle = options.i18n.t("errorList"),
+        message = "<div>" + errorsTitle + "<ul class='error-list' style='margin-bottom: 0;'>";
+
+    jQuery.each(errors, function (idx, err) {
+        message += "<li>" + err + "</li>";
+    });
+    message += "</ul></div>";
+    return message;
+};
+defaultOptions.ui.showVerdicts = true;
+defaultOptions.ui.showVerdictsInsideProgressBar = false;
+defaultOptions.ui.useVerdictCssClass = false;
+defaultOptions.ui.showErrors = false;
+defaultOptions.ui.showScore = false;
+defaultOptions.ui.container = undefined;
+defaultOptions.ui.viewports = {
+    progress: undefined,
+    verdict: undefined,
+    errors: undefined,
+    score: undefined
+};
+defaultOptions.ui.scores = [0, 14, 26, 38, 50];
+
+defaultOptions.i18n = {};
+defaultOptions.i18n.t = i18n.t;
+
+// Source: src/ui.js
+
+
+
+
+var ui = {};
+
+(function ($, ui) {
+    "use strict";
+
+    var statusClasses = ["error", "warning", "success"],
+        verdictKeys = [
+            "veryWeak", "weak", "normal", "medium", "strong", "veryStrong"
+        ];
+
+    ui.getContainer = function (options, $el) {
+        var $container;
+
+        $container = $(options.ui.container);
+        if (!($container && $container.length === 1)) {
+            $container = $el.parent();
+        }
+        return $container;
+    };
+
+    ui.findElement = function ($container, viewport, cssSelector) {
+        if (viewport) {
+            return $container.find(viewport).find(cssSelector);
+        }
+        return $container.find(cssSelector);
+    };
+
+    ui.getUIElements = function (options, $el) {
+        var $container, result;
+
+        if (options.instances.viewports) {
+            return options.instances.viewports;
+        }
+
+        $container = ui.getContainer(options, $el);
+
+        result = {};
+        result.$progressbar = ui.findElement($container, options.ui.viewports.progress, "div.progress");
+        if (options.ui.showVerdictsInsideProgressBar) {
+            result.$verdict = result.$progressbar.find("span.password-verdict");
+        }
+
+        if (!options.ui.showPopover) {
+            if (!options.ui.showVerdictsInsideProgressBar) {
+                result.$verdict = ui.findElement($container, options.ui.viewports.verdict, "span.password-verdict");
+            }
+            result.$errors = ui.findElement($container, options.ui.viewports.errors, "ul.error-list");
+        }
+        result.$score = ui.findElement($container, options.ui.viewports.score,
+                                       "span.password-score");
+
+        options.instances.viewports = result;
+        return result;
+    };
+
+    ui.initProgressBar = function (options, $el) {
+        var $container = ui.getContainer(options, $el),
+            progressbar = "<div class='progress ";
+
+        if (options.ui.bootstrap2) {
+            // Boostrap 2
+            progressbar += options.ui.progressBarExtraCssClasses +
+                "'><div class='";
+        } else {
+            // Bootstrap 3 & 4
+            progressbar += options.ui.progressExtraCssClasses + "'><div class='" +
+                options.ui.progressBarExtraCssClasses + " progress-";
+        }
+        progressbar += "bar'>";
+
+        if (options.ui.showVerdictsInsideProgressBar) {
+            progressbar += "<span class='password-verdict'></span>";
+        }
+
+        progressbar += "</div></div>";
+
+        if (options.ui.viewports.progress) {
+            $container.find(options.ui.viewports.progress).append(progressbar);
+        } else {
+            $(progressbar).insertAfter($el);
+        }
+    };
+
+    ui.initHelper = function (options, $el, html, viewport) {
+        var $container = ui.getContainer(options, $el);
+        if (viewport) {
+            $container.find(viewport).append(html);
+        } else {
+            $(html).insertAfter($el);
+        }
+    };
+
+    ui.initVerdict = function (options, $el) {
+        ui.initHelper(options, $el, "<span class='password-verdict'></span>",
+                      options.ui.viewports.verdict);
+    };
+
+    ui.initErrorList = function (options, $el) {
+        ui.initHelper(options, $el, "<ul class='error-list'></ul >",
+                      options.ui.viewports.errors);
+    };
+
+    ui.initScore = function (options, $el) {
+        ui.initHelper(options, $el, "<span class='password-score'></span>",
+                      options.ui.viewports.score);
+    };
+
+    ui.initPopover = function (options, $el) {
+        $el.popover("destroy");
+        $el.popover({
+            html: true,
+            placement: options.ui.popoverPlacement,
+            trigger: "manual",
+            content: " "
+        });
+    };
+
+    ui.initUI = function (options, $el) {
+        if (options.ui.showPopover) {
+            ui.initPopover(options, $el);
+        } else {
+            if (options.ui.showErrors) { ui.initErrorList(options, $el); }
+            if (options.ui.showVerdicts && !options.ui.showVerdictsInsideProgressBar) {
+                ui.initVerdict(options, $el);
+            }
+        }
+        if (options.ui.showProgressBar) {
+            ui.initProgressBar(options, $el);
+        }
+        if (options.ui.showScore) {
+            ui.initScore(options, $el);
+        }
+    };
+
+    ui.updateProgressBar = function (options, $el, cssClass, percentage) {
+        var $progressbar = ui.getUIElements(options, $el).$progressbar,
+            $bar = $progressbar.find(".progress-bar"),
+            cssPrefix = "progress-";
+
+        if (options.ui.bootstrap2) {
+            $bar = $progressbar.find(".bar");
+            cssPrefix = "";
+        }
+
+        $.each(options.ui.colorClasses, function (idx, value) {
+            if (options.ui.bootstrap4) {
+                $bar.removeClass("bg-" + value);
+            } else {
+                $bar.removeClass(cssPrefix + "bar-" + value);
+            }
+        });
+        if (options.ui.bootstrap4) {
+            $bar.addClass("bg-" + options.ui.colorClasses[cssClass]);
+        } else {
+            $bar.addClass(cssPrefix + "bar-" + options.ui.colorClasses[cssClass]);
+        }
+        $bar.css("width", percentage + '%');
+    };
+
+    ui.updateVerdict = function (options, $el, cssClass, text) {
+        var $verdict = ui.getUIElements(options, $el).$verdict;
+        $verdict.removeClass(options.ui.colorClasses.join(' '));
+        if (cssClass > -1) {
+            $verdict.addClass(options.ui.colorClasses[cssClass]);
+        }
+        if (options.ui.showVerdictsInsideProgressBar) {
+            $verdict.css('white-space', 'nowrap');
+        }
+        $verdict.html(text);
+    };
+
+    ui.updateErrors = function (options, $el, remove) {
+        var $errors = ui.getUIElements(options, $el).$errors,
+            html = "";
+
+        if (!remove) {
+            $.each(options.instances.errors, function (idx, err) {
+                html += "<li style='list-style-type:none;'>" + err + "</li>";
+            });
+        }
+        $errors.html(html);
+    };
+
+    ui.updateScore = function (options, $el, score, remove) {
+        var $score = ui.getUIElements(options, $el).$score,
+            html = "";
+
+        if (!remove) { html = score.toFixed(2); }
+        $score.html(html);
+    };
+
+    ui.updatePopover = function (options, $el, verdictText, remove) {
+        var popover = $el.data("bs.popover"),
+            html = "",
+            hide = true;
+
+        if (options.ui.showVerdicts &&
+                !options.ui.showVerdictsInsideProgressBar &&
+                verdictText.length > 0) {
+            html = "<h5><span class='password-verdict'>" + verdictText +
+                "</span></h5>";
+            hide = false;
+        }
+        if (options.ui.showErrors) {
+            if (options.instances.errors.length > 0) {
+                hide = false;
+            }
+            html += options.ui.popoverError(options);
+        }
+
+        if (hide || remove) {
+            $el.popover("hide");
+            return;
+        }
+
+        if (options.ui.bootstrap2) { popover = $el.data("popover"); }
+
+        if (popover.$arrow && popover.$arrow.parents("body").length > 0) {
+            $el.find("+ .popover .popover-content").html(html);
+        } else {
+            // It's hidden
+            popover.options.content = html;
+            $el.popover("show");
+        }
+    };
+
+    ui.updateFieldStatus = function (options, $el, cssClass, remove) {
+        var targetClass = options.ui.bootstrap2 ? ".control-group" : ".form-group",
+            $container = $el.parents(targetClass).first();
+
+        $.each(statusClasses, function (idx, css) {
+            if (!options.ui.bootstrap2) { css = "has-" + css; }
+            $container.removeClass(css);
+        });
+
+        if (remove) { return; }
+
+        cssClass = statusClasses[Math.floor(cssClass / 2)];
+        if (!options.ui.bootstrap2) { cssClass = "has-" + cssClass; }
+        $container.addClass(cssClass);
+    };
+
+    ui.percentage = function (options, score, maximun) {
+        var result = Math.floor(100 * score / maximun),
+            min = options.ui.progressBarMinPercentage;
+
+        result = result <= min ? min : result;
+        result = result > 100 ? 100 : result;
+        return result;
+    };
+
+    ui.getVerdictAndCssClass = function (options, score) {
+        var level, verdict;
+
+        if (score === undefined) { return ['', 0]; }
+
+        if (score <= options.ui.scores[0]) {
+            level = 0;
+        } else if (score < options.ui.scores[1]) {
+            level = 1;
+        } else if (score < options.ui.scores[2]) {
+            level = 2;
+        } else if (score < options.ui.scores[3]) {
+            level = 3;
+        } else if (score < options.ui.scores[4]) {
+            level = 4;
+        } else {
+            level = 5;
+        }
+
+        verdict = verdictKeys[level];
+
+        return [options.i18n.t(verdict), level];
+    };
+
+    ui.updateUI = function (options, $el, score) {
+        var cssClass, barPercentage, verdictText, verdictCssClass;
+
+        cssClass = ui.getVerdictAndCssClass(options, score);
+        verdictText = score === 0 ? '' : cssClass[0];
+        cssClass = cssClass[1];
+        verdictCssClass = options.ui.useVerdictCssClass ? cssClass : -1;
+
+        if (options.ui.showProgressBar) {
+            if (score === undefined) {
+                barPercentage = options.ui.progressBarEmptyPercentage;
+            } else {
+                barPercentage = ui.percentage(options, score, options.ui.scores[4]);
+            }
+            ui.updateProgressBar(options, $el, cssClass, barPercentage);
+            if (options.ui.showVerdictsInsideProgressBar) {
+                ui.updateVerdict(options, $el, verdictCssClass, verdictText);
+            }
+        }
+
+        if (options.ui.showStatus) {
+            ui.updateFieldStatus(options, $el, cssClass, score === undefined);
+        }
+
+        if (options.ui.showPopover) {
+            ui.updatePopover(options, $el, verdictText, score === undefined);
+        } else {
+            if (options.ui.showVerdicts && !options.ui.showVerdictsInsideProgressBar) {
+                ui.updateVerdict(options, $el, verdictCssClass, verdictText);
+            }
+            if (options.ui.showErrors) {
+                ui.updateErrors(options, $el, score === undefined);
+            }
+        }
+
+        if (options.ui.showScore) {
+            ui.updateScore(options, $el, score, score === undefined);
+        }
+    };
+}(jQuery, ui));
+
+// Source: src/methods.js
+
+
+
+
+var methods = {};
+
+(function ($, methods) {
+    "use strict";
+    var onKeyUp, onPaste, applyToAll;
+
+    onKeyUp = function (event) {
+        var $el = $(event.target),
+            options = $el.data("pwstrength-bootstrap"),
+            word = $el.val(),
+            userInputs,
+            verdictText,
+            verdictLevel,
+            score;
+
+        if (options === undefined) { return; }
+
+        options.instances.errors = [];
+        if (word.length === 0) {
+            score = undefined;
+        } else {
+            if (options.common.zxcvbn) {
+                userInputs = [];
+                $.each(options.common.userInputs.concat([options.common.usernameField]), function (idx, selector) {
+                    var value = $(selector).val();
+                    if (value) { userInputs.push(value); }
+                });
+                userInputs = userInputs.concat(options.common.zxcvbnTerms);
+                score = zxcvbn(word, userInputs).guesses;
+                score = Math.log(score) * Math.LOG2E;
+            } else {
+                score = rulesEngine.executeRules(options, word);
+            }
+            if ($.isFunction(options.common.onScore)) {
+                score = options.common.onScore(options, word, score);
+            }
+        }
+        ui.updateUI(options, $el, score);
+        verdictText = ui.getVerdictAndCssClass(options, score);
+        verdictLevel = verdictText[1];
+        verdictText = verdictText[0];
+
+        if (options.common.debug) {
+            console.log(score + ' - ' + verdictText);
+        }
+
+        if ($.isFunction(options.common.onKeyUp)) {
+            options.common.onKeyUp(event, {
+                score: score,
+                verdictText: verdictText,
+                verdictLevel: verdictLevel
+            });
+        }
+    };
+
+    onPaste = function (event) {
+        // This handler is necessary because the paste event fires before the
+        // content is actually in the input, so we cannot read its value right
+        // away. Therefore, the timeouts.
+        var $el = $(event.target),
+            word = $el.val(),
+            tries = 0,
+            callback;
+
+        callback = function () {
+            var newWord = $el.val();
+
+            if (newWord !== word) {
+                onKeyUp(event);
+            } else if (tries < 3) {
+                tries += 1;
+                setTimeout(callback, 100);
+            }
+        };
+
+        setTimeout(callback, 100);
+    };
+
+    methods.init = function (settings) {
+        this.each(function (idx, el) {
+            // Make it deep extend (first param) so it extends also the
+            // rules and other inside objects
+            var clonedDefaults = $.extend(true, {}, defaultOptions),
+                localOptions = $.extend(true, clonedDefaults, settings),
+                $el = $(el);
+
+            localOptions.instances = {};
+            $el.data("pwstrength-bootstrap", localOptions);
+
+            $.each(localOptions.common.events, function (idx, eventName) {
+                var handler = eventName === "paste" ? onPaste : onKeyUp;
+                $el.on(eventName, handler);
+            });
+
+            ui.initUI(localOptions, $el);
+            $el.trigger("keyup");
+
+            if ($.isFunction(localOptions.common.onLoad)) {
+                localOptions.common.onLoad();
+            }
+        });
+
+        return this;
+    };
+
+    methods.destroy = function () {
+        this.each(function (idx, el) {
+            var $el = $(el),
+                options = $el.data("pwstrength-bootstrap"),
+                elements = ui.getUIElements(options, $el);
+            elements.$progressbar.remove();
+            elements.$verdict.remove();
+            elements.$errors.remove();
+            $el.removeData("pwstrength-bootstrap");
+        });
+    };
+
+    methods.forceUpdate = function () {
+        this.each(function (idx, el) {
+            var event = { target: el };
+            onKeyUp(event);
+        });
+    };
+
+    methods.addRule = function (name, method, score, active) {
+        this.each(function (idx, el) {
+            var options = $(el).data("pwstrength-bootstrap");
+
+            options.rules.activated[name] = active;
+            options.rules.scores[name] = score;
+            options.rules.extra[name] = method;
+        });
+    };
+
+    applyToAll = function (rule, prop, value) {
+        this.each(function (idx, el) {
+            $(el).data("pwstrength-bootstrap").rules[prop][rule] = value;
+        });
+    };
+
+    methods.changeScore = function (rule, score) {
+        applyToAll.call(this, rule, "scores", score);
+    };
+
+    methods.ruleActive = function (rule, active) {
+        applyToAll.call(this, rule, "activated", active);
+    };
+
+    methods.ruleIsMet = function (rule) {
+        if ($.isFunction(rulesEngine.validation[rule])) {
+            if (rule === "wordMinLength") {
+                rule = "wordMinLengthStaticScore";
+            } else if (rule === "wordMaxLength") {
+                rule = "wordMaxLengthStaticScore";
+            }
+
+            var rulesMetCnt = 0;
+
+            this.each(function (idx, el) {
+                var options = $(el).data("pwstrength-bootstrap");
+
+                rulesMetCnt += rulesEngine.validation[rule](options, $(el).val(), 1);
+            });
+
+            return (rulesMetCnt === this.length);
+        }
+
+        $.error("Rule " + rule + " does not exist on jQuery.pwstrength-bootstrap.validation");
+    };
+
+    $.fn.pwstrength = function (method) {
+        var result;
+
+        if (methods[method]) {
+            result = methods[method].apply(this, Array.prototype.slice.call(arguments, 1));
+        } else if (typeof method === "object" || !method) {
+            result = methods.init.apply(this, arguments);
+        } else {
+            $.error("Method " +  method + " does not exist on jQuery.pwstrength-bootstrap");
+        }
+
+        return result;
+    };
+}(jQuery, methods));
+}(jQuery));
\ No newline at end of file
diff --git a/apps/templates/_base_create_update.html b/apps/templates/_base_create_update.html
index a38a6133d..ec14da79b 100644
--- a/apps/templates/_base_create_update.html
+++ b/apps/templates/_base_create_update.html
@@ -5,6 +5,7 @@
 {% block custom_head_css_js %}
     <link href="{% static 'css/plugins/select2/select2.min.css' %}" rel="stylesheet">
     <script src="{% static 'js/plugins/select2/select2.full.min.js' %}"></script>
+    <script type="text/javascript" src="{% static 'js/pwstrength-bootstrap.js' %}"></script>
     {% block custom_head_css_js_create %} {% endblock %}
 {% endblock %}
 
diff --git a/apps/users/forms.py b/apps/users/forms.py
index f777e0dd7..06c544383 100644
--- a/apps/users/forms.py
+++ b/apps/users/forms.py
@@ -72,7 +72,7 @@ class UserCreateUpdateForm(forms.ModelForm):
                     'data-placeholder': _('Join user groups')
                 }
             ),
-            'otp_level': forms.RadioSelect()
+            'otp_level': forms.RadioSelect(),
         }
 
     def clean_public_key(self):
diff --git a/apps/users/templates/users/_user.html b/apps/users/templates/users/_user.html
index f973f3344..5090e825f 100644
--- a/apps/users/templates/users/_user.html
+++ b/apps/users/templates/users/_user.html
@@ -48,6 +48,7 @@
             </div>
         </div>
     </form>
+
 {% endblock %}
 {% block custom_foot_js %}
     <script src="{% static 'js/plugins/datepicker/bootstrap-datepicker.js' %}"></script>
diff --git a/apps/users/templates/users/reset_password.html b/apps/users/templates/users/reset_password.html
index 0bab32809..3d669a1e5 100644
--- a/apps/users/templates/users/reset_password.html
+++ b/apps/users/templates/users/reset_password.html
@@ -11,6 +11,7 @@
     {% include '_head_css_js.html' %}
     <link href="{% static "css/jumpserver.css" %}" rel="stylesheet">
     <script src="{% static "js/jumpserver.js" %}"></script>
+    <script type="text/javascript" src="{% static 'js/pwstrength-bootstrap.js' %}"></script>
 
 </head>
 
@@ -49,10 +50,20 @@
                             <p class="red-fonts">{{ errors }}</p>
                         {% endif %}
                         <div class="form-group">
-                            <input type="password" class="form-control" name="password" placeholder="{% trans 'Password' %}" required="">
+                            <input type="password" id="id_new_password" class="form-control" name="password" placeholder="{% trans 'Password' %}" required="">
+                            {#  密码popover  #}
+                            <div id="container">
+                                <div class="popover fade bottom in" role="tooltip" id="popover777" style=" display: none; width:260px;">
+                                    <div class="arrow" style="left: 50%;"></div>
+                                    <h3 class="popover-title" style="display: none;"></h3>
+                                    <h4>{% trans 'Your password must satisfy' %}</h4><div id="id_password_rules" style="color: #908a8a; margin-left:20px; font-size:15px;"></div>
+                                    <h4 style="margin-top: 10px;">{% trans 'Password strength' %}</h4><div id="id_progress"></div>
+                                    <div class="popover-content"></div>
+                                </div>
+                            </div>
                         </div>
                         <div class="form-group">
-                            <input type="password" class="form-control" name="password-confirm" placeholder="{% trans 'Password again' %}" required="">
+                            <input type="password" id="id_confirm_password" class="form-control" name="password-confirm" placeholder="{% trans 'Password again' %}" required="">
                         </div>
                         <button type="submit" class="btn btn-primary block full-width m-b">{% trans "Setting"  %}</button>
 
@@ -79,4 +90,33 @@
 </body>
 
 </html>
+ <script>
+     $(document).ready(function () {
+         // 密码强度校验
+         var el = $('#id_password_rules'),
+             idPassword = $('#id_new_password'),
+             idPopover = $('#popover777'),
+             container = $('#container'),
+             progress = $('#id_progress'),
+             password_check_rules = {{ password_check_rules|safe }},
+             minLength = {{ min_length }},
+             top = 146, left = 170;
 
+         // 初始化popover
+         initPopover(container, progress, idPassword, el, password_check_rules);
+
+         // 监听事件
+         idPassword.on('focus', function () {
+             idPopover.css('top', top);
+             idPopover.css('left', left);
+             idPopover.css('display', 'block');
+         });
+         idPassword.on('blur', function () {
+             idPopover.css('display', 'none');
+         });
+         idPassword.on('keyup', function(){
+             var password = idPassword.val();
+             checkPasswordRules(password, minLength);
+         })
+     })
+ </script>
diff --git a/apps/users/templates/users/user_password_update.html b/apps/users/templates/users/user_password_update.html
index 3dbe727a7..50c428ee6 100644
--- a/apps/users/templates/users/user_password_update.html
+++ b/apps/users/templates/users/user_password_update.html
@@ -7,6 +7,8 @@
     <link href="{% static "css/plugins/cropper/cropper.min.css" %}" rel="stylesheet">
     <link href="{% static "css/plugins/sweetalert/sweetalert.css" %}" rel="stylesheet">
     <script src="{% static "js/plugins/sweetalert/sweetalert.min.js" %}"></script>
+    <script type="text/javascript" src="{% static 'js/pwstrength-bootstrap.js' %}"></script>
+    <script src="{% static "js/jumpserver.js" %}"></script>
 
     <style>
         .crop {
@@ -50,6 +52,16 @@
                                     {% csrf_token %}
                                     {% bootstrap_field form.old_password layout="horizontal" %}
                                     {% bootstrap_field form.new_password layout="horizontal" %}
+                                    {#  密码popover  #}
+                                    <div id="container">
+                                        <div class="popover fade bottom in" role="tooltip" id="popover777" style=" display: none; width:260px;">
+                                            <div class="arrow" style="left: 50%;"></div>
+                                            <h3 class="popover-title" style="display: none;"></h3>
+                                            <h4>{% trans 'Your password must satisfy' %}</h4><div id="id_password_rules" style="color: #908a8a; margin-left:20px; font-size:15px;"></div>
+                                            <h4 style="margin-top: 10px;">{% trans 'Password strength' %}</h4><div id="id_progress"></div>
+                                            <div class="popover-content"></div>
+                                        </div>
+                                    </div>
                                     {% bootstrap_field form.confirm_password layout="horizontal" %}
 
                                     <div class="hr-line-dashed"></div>
@@ -71,5 +83,34 @@
 {% block custom_foot_js %}
     <script src="{% static 'js/plugins/cropper/cropper.min.js' %}"></script>
     <script>
+        $(document).ready(function () {
+
+            var el = $('#id_password_rules'),
+                idPassword = $('#id_new_password'),
+                idPopover = $('#popover777'),
+                container = $('#container'),
+                progress = $('#id_progress'),
+                password_check_rules = {{ password_check_rules|safe }},
+                minLength = {{ min_length }},
+                top = idPassword.offset().top - $('.navbar').outerHeight(true) - $('.page-heading').outerHeight(true) - 10 + 34,
+                left = 377;
+
+            // 初始化popover
+            initPopover(container, progress, idPassword, el, password_check_rules);
+
+            // 监听事件
+            idPassword.on('focus', function () {
+                idPopover.css('top', top);
+                idPopover.css('left', left);
+                idPopover.css('display', 'block');
+            });
+            idPassword.on('blur', function () {
+                idPopover.css('display', 'none');
+            });
+            idPassword.on('keyup', function(){
+                var password = idPassword.val();
+                checkPasswordRules(password, minLength);
+            });
+        })
     </script>
 {% endblock %}
diff --git a/apps/users/templates/users/user_profile.html b/apps/users/templates/users/user_profile.html
index 3efc193c9..0d586902b 100644
--- a/apps/users/templates/users/user_profile.html
+++ b/apps/users/templates/users/user_profile.html
@@ -91,6 +91,9 @@
                                                     {% else %}
                                                         {% trans 'Disable' %}
                                                     {% endif %}
+                                                    {% if mfa_setting %}
+                                                        ( {% trans 'Administrator Settings force MFA login' %} )
+                                                    {% endif %}
                                                 </td>
                                             </tr>
                                             <tr>
@@ -152,7 +155,7 @@
                                                 <a type="button" class="btn btn-primary btn-xs" style="width: 54px" id=""
                                                    href="
                                                         {% if request.user.otp_enabled and request.user.otp_secret_key %}
-                                                            {% if request.user.otp_force_enabled %}
+                                                            {% if request.user.otp_force_enabled or mfa_setting %}
                                                                 " disabled >{% trans 'Disable' %}
                                                             {% else %}
                                                                 {% url 'users:user-otp-disable-authentication' %}
diff --git a/apps/users/templates/users/user_update.html b/apps/users/templates/users/user_update.html
index e3c22f00b..b51610587 100644
--- a/apps/users/templates/users/user_update.html
+++ b/apps/users/templates/users/user_update.html
@@ -4,5 +4,50 @@
 {% block user_template_title %}{% trans "Update user" %}{% endblock %}
 {% block password %}
     {% bootstrap_field form.password layout="horizontal" %}
+    {#  密码popover  #}
+    <div id="container">
+        <div class="popover fade bottom in" role="tooltip" id="popover777" style=" display: none; width:260px;">
+            <div class="arrow" style="left: 50%;"></div>
+            <h3 class="popover-title" style="display: none;"></h3>
+            <h4>{% trans 'Your password must satisfy' %}</h4><div id="id_password_rules" style="color: #908a8a; margin-left:20px; font-size:15px;"></div>
+            <h4 style="margin-top: 10px;">{% trans 'Password strength' %}</h4><div id="id_progress"></div>
+            <div class="popover-content"></div>
+        </div>
+    </div>
     {% bootstrap_field form.public_key layout="horizontal" %}
 {% endblock %}
+
+{% block custom_foot_js %}
+    {{ block.super }}
+<script>
+    $(document).ready(function(){
+        var el = $('#id_password_rules'),
+            idPassword = $('#id_password'),
+            idPopover = $('#popover777'),
+            container = $('#container'),
+            progress = $('#id_progress'),
+            password_check_rules = {{ password_check_rules|safe }},
+            minLength = {{ min_length }},
+            top = idPassword.offset().top - $('.navbar').outerHeight(true) - $('.page-heading').outerHeight(true) - 10 + 34,
+            left = 377;
+
+        // 初始化popover
+        initPopover(container, progress, idPassword, el, password_check_rules);
+
+        // 监听事件
+        idPassword.on('focus', function () {
+            idPopover.css('top', top);
+            idPopover.css('left', left);
+            idPopover.css('display', 'block');
+        });
+        idPassword.on('blur', function () {
+            idPopover.css('display', 'none');
+        });
+        idPassword.on('keyup', function(){
+            var password = idPassword.val();
+            checkPasswordRules(password, minLength);
+        });
+
+    })
+</script>
+{% endblock %}
diff --git a/apps/users/utils.py b/apps/users/utils.py
index cb0e800ed..989632e2c 100644
--- a/apps/users/utils.py
+++ b/apps/users/utils.py
@@ -2,6 +2,7 @@
 #
 from __future__ import unicode_literals
 import os
+import re
 import pyotp
 import base64
 import logging
@@ -18,8 +19,11 @@ from django.core.cache import cache
 
 from common.tasks import send_mail_async
 from common.utils import reverse, get_object_or_none
+from common.models import Setting
+from common.forms import SecuritySettingForm
 from .models import User, LoginLog
 
+
 logger = logging.getLogger('jumpserver')
 
 
@@ -271,3 +275,60 @@ def generate_otp_uri(request, issuer="Jumpserver"):
 def check_otp_code(otp_secret_key, otp_code):
     totp = pyotp.TOTP(otp_secret_key)
     return totp.verify(otp_code)
+
+
+def get_password_check_rules():
+    check_rules = []
+    min_length = settings.DEFAULT_PASSWORD_MIN_LENGTH
+    min_name = 'SECURITY_PASSWORD_MIN_LENGTH'
+    base_filed = SecuritySettingForm.base_fields
+    password_setting = Setting.objects.filter(name__startswith='SECURITY_PASSWORD')
+
+    if not password_setting:
+        # 用户还没有设置过密码校验规则
+        label = base_filed.get(min_name).label
+        label += ' ' + str(min_length) + _('Bit')
+        id = 'rule_' + min_name
+        rules = {'id': id, 'label': label}
+        check_rules.append(rules)
+
+    for setting in password_setting:
+        if setting.cleaned_value:
+            id = 'rule_' + setting.name
+            label = base_filed.get(setting.name).label
+            if setting.name == min_name:
+                label += str(setting.cleaned_value) + _('Bit')
+                min_length = setting.cleaned_value
+            rules = {'id': id, 'label': label}
+            check_rules.append(rules)
+
+    return check_rules, min_length
+
+
+def check_password_rules(password):
+    min_field_name = 'SECURITY_PASSWORD_MIN_LENGTH'
+    upper_field_name = 'SECURITY_PASSWORD_UPPER_CASE'
+    lower_field_name = 'SECURITY_PASSWORD_LOWER_CASE'
+    number_field_name = 'SECURITY_PASSWORD_NUMBER'
+    special_field_name = 'SECURITY_PASSWORD_SPECIAL_CHAR'
+    min_length_setting = Setting.objects.filter(name=min_field_name).first()
+    min_length = min_length_setting.value if min_length_setting else settings.DEFAULT_PASSWORD_MIN_LENGTH
+
+    password_setting = Setting.objects.filter(name__startswith='SECURITY_PASSWORD')
+    if not password_setting:
+        pattern = r"^.{" + str(min_length) + ",}$"
+    else:
+        pattern = r"^"
+        for setting in password_setting:
+            if setting.cleaned_value and setting.name == upper_field_name:
+                pattern += '(?=.*[A-Z])'
+            elif setting.cleaned_value and setting.name == lower_field_name:
+                pattern += '(?=.*[a-z])'
+            elif setting.cleaned_value and setting.name == number_field_name:
+                pattern += '(?=.*\d)'
+            elif setting.cleaned_value and setting.name == special_field_name:
+                pattern += '(?=.*[`~!@#\$%\^&\*\(\)-=_\+\[\]\{\}\|;:\'",\.<>\/\?])'
+        pattern += '[a-zA-Z\d`~!@#\$%\^&\*\(\)-=_\+\[\]\{\}\|;:\'",\.<>\/\?]'
+
+    match_obj = re.match(pattern, password)
+    return bool(match_obj)
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index fded08f74..411a2f95a 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -23,9 +23,10 @@ from django.conf import settings
 
 from common.utils import get_object_or_none
 from common.mixins import DatetimeSearchMixin, AdminUserRequiredMixin
+from common.models import Setting
 from ..models import User, LoginLog
 from ..utils import send_reset_password_mail, check_otp_code, get_login_ip, redirect_user_first_login_or_index, \
-    get_user_or_tmp_user, set_tmp_user_to_cache
+    get_user_or_tmp_user, set_tmp_user_to_cache, get_password_check_rules, check_password_rules
 from ..tasks import write_login_log_async
 from .. import forms
 
@@ -81,17 +82,24 @@ class UserLoginView(FormView):
     def get_success_url(self):
         user = get_user_or_tmp_user(self.request)
 
-        if user.otp_enabled and user.otp_secret_key:
-            # 1,2 & T
-            return reverse('users:login-otp')
-        elif user.otp_enabled and not user.otp_secret_key:
-            # 1,2 & F
-            return reverse('users:user-otp-enable-authentication')
-        elif not user.otp_enabled:
-            # 0 & T,F
-            auth_login(self.request, user)
-            self.write_login_log()
-            return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
+        mfa_setting = Setting.objects.filter(name='SECURITY_MFA_AUTH').first()
+        if mfa_setting and mfa_setting.cleaned_value:
+            if user.otp_enabled and user.otp_secret_key:
+                return reverse('users:login-otp')
+            else:
+                return reverse('users:user-otp-enable-authentication')
+        else:
+            if user.otp_enabled and user.otp_secret_key:
+                # 1,2 & T
+                return reverse('users:login-otp')
+            elif user.otp_enabled and not user.otp_secret_key:
+                # 1,2 & F
+                return reverse('users:user-otp-enable-authentication')
+            elif not user.otp_enabled:
+                # 0 & T,F
+                auth_login(self.request, user)
+                self.write_login_log()
+                return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
 
     def get_context_data(self, **kwargs):
         context = {
@@ -211,6 +219,10 @@ class UserResetPasswordView(TemplateView):
         token = request.GET.get('token')
         user = User.validate_reset_token(token)
 
+        check_rules, min_length = get_password_check_rules()
+        password_rules = {'password_check_rules': check_rules, 'min_length': min_length}
+        kwargs.update(password_rules)
+
         if not user:
             kwargs.update({'errors': _('Token invalid or expired')})
         return super().get(request, *args, **kwargs)
@@ -227,6 +239,13 @@ class UserResetPasswordView(TemplateView):
         if not user:
             return self.get(request, errors=_('Token invalid or expired'))
 
+        is_ok = check_password_rules(password)
+        if not is_ok:
+            return self.get(
+                request,
+                errors=_('* Your password does not meet the requirements')
+            )
+
         user.reset_password(password)
         return HttpResponseRedirect(reverse('users:reset-password-success'))
 
diff --git a/apps/users/views/user.py b/apps/users/views/user.py
index 3be4ab6c9..414a96a64 100644
--- a/apps/users/views/user.py
+++ b/apps/users/views/user.py
@@ -33,9 +33,10 @@ from django.contrib.auth import logout as auth_logout
 from common.const import create_success_msg, update_success_msg
 from common.mixins import JSONResponseMixin
 from common.utils import get_logger, get_object_or_none, is_uuid, ssh_key_gen
+from common.models import Setting
 from .. import forms
 from ..models import User, UserGroup
-from ..utils import AdminUserRequiredMixin, generate_otp_uri, check_otp_code, get_user_or_tmp_user
+from ..utils import AdminUserRequiredMixin, generate_otp_uri, check_otp_code, get_user_or_tmp_user, get_password_check_rules, check_password_rules
 from ..signals import post_user_create
 from ..tasks import write_login_log_async
 
@@ -96,10 +97,27 @@ class UserUpdateView(AdminUserRequiredMixin, SuccessMessageMixin, UpdateView):
     success_message = update_success_msg
 
     def get_context_data(self, **kwargs):
-        context = {'app': _('Users'), 'action': _('Update user')}
+        check_rules, min_length = get_password_check_rules()
+        context = {
+            'app': _('Users'),
+            'action': _('Update user'),
+            'password_check_rules': check_rules,
+            'min_length': min_length
+        }
         kwargs.update(context)
         return super().get_context_data(**kwargs)
 
+    def form_valid(self, form):
+        password = form.cleaned_data.get('password')
+        is_ok = check_password_rules(password)
+        if not is_ok:
+            form.add_error(
+                "password", _("* Your password does not meet the requirements")
+            )
+            return self.form_invalid(form)
+
+        return super().form_valid(form)
+
 
 class UserBulkUpdateView(AdminUserRequiredMixin, TemplateView):
     model = User
@@ -318,8 +336,11 @@ class UserProfileView(LoginRequiredMixin, TemplateView):
     template_name = 'users/user_profile.html'
 
     def get_context_data(self, **kwargs):
+        mfa_setting = Setting.objects.filter(name='SECURITY_MFA_AUTH').first()
+
         context = {
             'action': _('Profile'),
+            'mfa_setting': mfa_setting.cleaned_value if mfa_setting else False,
         }
         kwargs.update(context)
         return super().get_context_data(**kwargs)
@@ -353,9 +374,12 @@ class UserPasswordUpdateView(LoginRequiredMixin, UpdateView):
         return self.request.user
 
     def get_context_data(self, **kwargs):
+        check_rules, min_length = get_password_check_rules()
         context = {
             'app': _('Users'),
             'action': _('Password update'),
+            'password_check_rules': check_rules,
+            'min_length': min_length,
         }
         kwargs.update(context)
         return super().get_context_data(**kwargs)
@@ -364,6 +388,17 @@ class UserPasswordUpdateView(LoginRequiredMixin, UpdateView):
         auth_logout(self.request)
         return super().get_success_url()
 
+    def form_valid(self, form):
+        password = form.cleaned_data.get('new_password')
+        is_ok = check_password_rules(password)
+        if not is_ok:
+            form.add_error(
+                "new_password",
+                _("* Your password does not meet the requirements")
+            )
+            return self.form_invalid(form)
+        return super().form_valid(form)
+
 
 class UserPublicKeyUpdateView(LoginRequiredMixin, UpdateView):
     template_name = 'users/user_pubkey_update.html'

From fcd17460d74dd4b3ab06e2e46e5a18c7ac59424b Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 5 Jun 2018 17:56:58 +0800
Subject: [PATCH 072/112] =?UTF-8?q?[Update]=20=E5=A2=9E=E5=8A=A0=E5=AF=86?=
 =?UTF-8?q?=E7=A0=81=E6=A0=A1=E9=AA=8C=E8=A7=84=E5=88=99=E4=B8=AD=E5=AF=86?=
 =?UTF-8?q?=E7=A0=81=E6=9C=80=E5=B0=8F=E9=95=BF=E5=BA=A6=E9=99=90=E5=88=B6?=
 =?UTF-8?q?6=E4=BD=8D?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/common/forms.py                               | 1 +
 apps/common/templates/common/security_setting.html | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/common/forms.py b/apps/common/forms.py
index 4f4eefc23..87b2f4f12 100644
--- a/apps/common/forms.py
+++ b/apps/common/forms.py
@@ -182,6 +182,7 @@ class SecuritySettingForm(BaseForm):
     # 最小长度
     SECURITY_PASSWORD_MIN_LENGTH = forms.IntegerField(
         initial=6, label=_("Password minimum length"),
+        min_value=6
     )
     # 大写字母
     SECURITY_PASSWORD_UPPER_CASE = forms.BooleanField(
diff --git a/apps/common/templates/common/security_setting.html b/apps/common/templates/common/security_setting.html
index d2c436304..e84f5bc72 100644
--- a/apps/common/templates/common/security_setting.html
+++ b/apps/common/templates/common/security_setting.html
@@ -12,7 +12,7 @@
                     <div class="panel-options">
                         <ul class="nav nav-tabs">
                             <li>
-                                <a href="" class="text-center"><i class="fa fa-cubes"></i> {% trans 'Basic setting' %}</a>
+                                <a href="{% url 'settings:basic-setting' %}" class="text-center"><i class="fa fa-cubes"></i> {% trans 'Basic setting' %}</a>
                             </li>
                             <li>
                                 <a href="{% url 'settings:email-setting' %}"  class="text-center"><i class="fa fa-envelope"></i> {% trans 'Email setting' %} </a>

From 6b2a38c78df33a14117ab6f2400ee777963ccfdd Mon Sep 17 00:00:00 2001
From: xiaodong <fuxiaodong@cashbus.com>
Date: Mon, 4 Jun 2018 10:51:20 +0800
Subject: [PATCH 073/112] remove useless image

---
 apps/templates/_footer.html | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/templates/_footer.html b/apps/templates/_footer.html
index 10e607fa3..53f0bfa0f 100644
--- a/apps/templates/_footer.html
+++ b/apps/templates/_footer.html
@@ -1,7 +1,7 @@
 <div class="footer fixed">
     <div class="pull-right">
         Version <strong>1.3.1-{% include '_build.html' %}</strong> GPLv2.
-        <img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg">
+        <!--<img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg">-->
     </div>
     <div>
         <strong>Copyright</strong> 北京堆栈科技有限公司 &copy; 2014-2018

From 2c413e8d51473b17d904cd88455472965fd10450 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 6 Jun 2018 10:49:16 +0800
Subject: [PATCH 074/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E6=9D=83?=
 =?UTF-8?q?=E9=99=90=E6=9F=A5=E7=9C=8B=E5=BC=95=E8=B5=B7=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/utils.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index 475acfb68..7ff64b00d 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -14,7 +14,7 @@ logger = get_logger(__file__)
 def get_user_permissions(user, include_group=True):
     if include_group:
         groups = user.groups.all()
-        arg = Q(users=user) | Q(user_groups=groups)
+        arg = Q(users=user) | Q(user_groups__in=groups)
     else:
         arg = Q(users=user)
     return AssetPermission.objects.all().valid().filter(arg)
@@ -29,7 +29,7 @@ def get_user_group_permissions(user_group):
 def get_asset_permissions(asset, include_node=True):
     if include_node:
         nodes = asset.get_all_nodes(flat=True)
-        arg = Q(assets=asset) | Q(nodes=nodes)
+        arg = Q(assets=asset) | Q(nodes__in=nodes)
     else:
         arg = Q(assets=asset)
     return AssetPermission.objects.all().valid().filter(arg)

From 58e36b5f635e0dad38e1272282387de217a57221 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 6 Jun 2018 11:13:13 +0800
Subject: [PATCH 075/112] =?UTF-8?q?[Bugfix]=20=E6=9A=82=E6=97=B6=E8=BF=98?=
 =?UTF-8?q?=E4=B8=8D=E8=83=BD=E5=88=A0=E9=99=A4Tree=E8=BF=99=E4=B8=AA?=
 =?UTF-8?q?=E7=B1=BB?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/perms/utils.py | 55 +++++++++++++++++++++++++++++++++++++--------
 1 file changed, 46 insertions(+), 9 deletions(-)

diff --git a/apps/perms/utils.py b/apps/perms/utils.py
index 7ff64b00d..a76953aac 100644
--- a/apps/perms/utils.py
+++ b/apps/perms/utils.py
@@ -11,6 +11,44 @@ from .hands import Node
 logger = get_logger(__file__)
 
 
+class Tree:
+    def __init__(self):
+        self.__all_nodes = list(Node.objects.all().prefetch_related('assets'))
+        self.__node_asset_map = defaultdict(set)
+        self.nodes = defaultdict(dict)
+        self.root = Node.root()
+        self.init_node_asset_map()
+
+    def init_node_asset_map(self):
+        for node in self.__all_nodes:
+            assets = node.get_assets().values_list('id', flat=True)
+            for asset in assets:
+                self.__node_asset_map[str(asset)].add(node)
+
+    def add_asset(self, asset, system_users):
+        nodes = self.__node_asset_map.get(str(asset.id), [])
+        self.add_nodes(nodes)
+        for node in nodes:
+            self.nodes[node][asset].update(system_users)
+
+    def add_node(self, node):
+        if node in self.nodes:
+            return
+        else:
+            self.nodes[node] = defaultdict(set)
+        if node.key == self.root.key:
+            return
+        parent_key = ':'.join(node.key.split(':')[:-1])
+        for n in self.__all_nodes:
+            if n.key == parent_key:
+                self.add_node(n)
+                break
+
+    def add_nodes(self, nodes):
+        for node in nodes:
+            self.add_node(node)
+
+
 def get_user_permissions(user, include_group=True):
     if include_group:
         groups = user.groups.all()
@@ -57,6 +95,7 @@ class AssetPermissionUtil:
     def __init__(self, obj):
         self.object = obj
         self._permissions = None
+        self._assets = None
 
     @property
     def permissions(self):
@@ -93,6 +132,8 @@ class AssetPermissionUtil:
         return assets
 
     def get_assets(self):
+        if self._assets:
+            return self._assets
         assets = self.get_assets_direct()
         nodes = self.get_nodes_direct()
         for node, system_users in nodes.items():
@@ -101,7 +142,8 @@ class AssetPermissionUtil:
                 if isinstance(asset, Node):
                     print(_assets)
                 assets[asset].update(system_users)
-        return assets
+        self._assets = assets
+        return self._assets
 
     def get_nodes_with_assets(self):
         """
@@ -110,14 +152,9 @@ class AssetPermissionUtil:
         :return:
         """
         assets = self.get_assets()
-        nodes = defaultdict(dict)
+        tree = Tree()
         for asset, system_users in assets.items():
-            _nodes = asset.nodes.all()
-            for node in _nodes:
-                if asset in nodes[node]:
-                    nodes[node][asset].update(system_users)
-                else:
-                    nodes[node][asset] = system_users
-        return nodes
+            tree.add_asset(asset, system_users)
+        return tree.nodes
 
 

From 80d11bbaab15636a1e8892012064319458dd0b14 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 6 Jun 2018 14:42:06 +0800
Subject: [PATCH 076/112] =?UTF-8?q?[Update]=20=E5=88=A0=E9=99=A4user=20gro?=
 =?UTF-8?q?up=E7=BB=A7=E6=89=BF=E7=9A=84=E6=8A=BD=E8=B1=A1=E7=B1=BB?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/models/group.py | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/apps/users/models/group.py b/apps/users/models/group.py
index 48ed2e949..9196156f7 100644
--- a/apps/users/models/group.py
+++ b/apps/users/models/group.py
@@ -4,12 +4,10 @@ import uuid
 from django.db import models, IntegrityError
 from django.utils.translation import ugettext_lazy as _
 
-from common.mixins import NoDeleteModelMixin
-
 __all__ = ['UserGroup']
 
 
-class UserGroup(NoDeleteModelMixin):
+class UserGroup(models.Model):
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
     comment = models.TextField(blank=True, verbose_name=_('Comment'))

From c8c0479ce5e365f1599d2566bd1072f411f8d404 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 6 Jun 2018 15:18:23 +0800
Subject: [PATCH 077/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E6=B8=85?=
 =?UTF-8?q?=E7=90=86=E7=94=A8=E6=88=B7=E7=BB=84=E8=84=9A=E6=9C=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 utils/clean_duplicate_user_groups.py | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/utils/clean_duplicate_user_groups.py b/utils/clean_duplicate_user_groups.py
index be8b2d9ec..6d00af3e8 100644
--- a/utils/clean_duplicate_user_groups.py
+++ b/utils/clean_duplicate_user_groups.py
@@ -17,9 +17,14 @@ os.environ.setdefault("DJANGO_SETTINGS_MODULE", "jumpserver.settings")
 django.setup()
 
 from users.models import UserGroup
+from django.core.exceptions import FieldError
 
 
 def clean_group(interactive=True):
+    try:
+        UserGroup.objects.all().filter(is_discard=True).delete()
+    except FieldError:
+        pass
     groups = UserGroup.objects.all()
     groups_name_list = groups.values_list('name', flat=True)
     groups_with_info = groups.annotate(Count('users'))\
@@ -50,7 +55,7 @@ def clean_group(interactive=True):
                             "Delete user group <{}>, create at {}? ([y]/n)".format(
                                 name, group.date_created)
                         )
-                        if confirm.lower() == "y":
+                        if confirm.lower() in ["y", ""]:
                             confirm = True
                             break
                         elif confirm.lower() == "n":

From b026e86741ecfd07a177e19c9dcebb32c875cced Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Wed, 6 Jun 2018 15:35:26 +0800
Subject: [PATCH 078/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E5=88=A4?=
 =?UTF-8?q?=E6=96=ADMFA=E6=98=AF=E5=90=A6=E5=85=A8=E5=B1=80=E5=90=AF?=
 =?UTF-8?q?=E7=94=A8=E7=9A=84=E9=80=BB=E8=BE=91=EF=BC=8C=E6=94=BE=E5=88=B0?=
 =?UTF-8?q?User.otp=5Fforce=5Fenabled=E4=B8=AD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/models/user.py                    |  6 +++-
 apps/users/templates/users/user_profile.html |  2 +-
 apps/users/views/login.py                    | 29 ++++++++------------
 apps/users/views/user.py                     |  1 -
 4 files changed, 17 insertions(+), 21 deletions(-)

diff --git a/apps/users/models/user.py b/apps/users/models/user.py
index 025fe7c8f..fa01ba82c 100644
--- a/apps/users/models/user.py
+++ b/apps/users/models/user.py
@@ -14,6 +14,7 @@ from django.utils import timezone
 from django.shortcuts import reverse
 
 from common.utils import get_signer, date_expired_default
+from common.models import Setting
 
 
 __all__ = ['User']
@@ -248,10 +249,13 @@ class User(AbstractUser):
 
     @property
     def otp_enabled(self):
-        return self.otp_level > 0
+        return self.otp_force_enabled or self.otp_level > 0
 
     @property
     def otp_force_enabled(self):
+        mfa_setting = Setting.objects.filter(name='SECURITY_MFA_AUTH').first()
+        if mfa_setting and mfa_setting.cleaned_value:
+            return True
         return self.otp_level == 2
 
     def enable_otp(self):
diff --git a/apps/users/templates/users/user_profile.html b/apps/users/templates/users/user_profile.html
index 0d586902b..50dabeabc 100644
--- a/apps/users/templates/users/user_profile.html
+++ b/apps/users/templates/users/user_profile.html
@@ -155,7 +155,7 @@
                                                 <a type="button" class="btn btn-primary btn-xs" style="width: 54px" id=""
                                                    href="
                                                         {% if request.user.otp_enabled and request.user.otp_secret_key %}
-                                                            {% if request.user.otp_force_enabled or mfa_setting %}
+                                                            {% if request.user.otp_force_enabled %}
                                                                 " disabled >{% trans 'Disable' %}
                                                             {% else %}
                                                                 {% url 'users:user-otp-disable-authentication' %}
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index 411a2f95a..c058b4402 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -82,24 +82,17 @@ class UserLoginView(FormView):
     def get_success_url(self):
         user = get_user_or_tmp_user(self.request)
 
-        mfa_setting = Setting.objects.filter(name='SECURITY_MFA_AUTH').first()
-        if mfa_setting and mfa_setting.cleaned_value:
-            if user.otp_enabled and user.otp_secret_key:
-                return reverse('users:login-otp')
-            else:
-                return reverse('users:user-otp-enable-authentication')
-        else:
-            if user.otp_enabled and user.otp_secret_key:
-                # 1,2 & T
-                return reverse('users:login-otp')
-            elif user.otp_enabled and not user.otp_secret_key:
-                # 1,2 & F
-                return reverse('users:user-otp-enable-authentication')
-            elif not user.otp_enabled:
-                # 0 & T,F
-                auth_login(self.request, user)
-                self.write_login_log()
-                return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
+        if user.otp_enabled and user.otp_secret_key:
+            # 1,2 & T
+            return reverse('users:login-otp')
+        elif user.otp_enabled and not user.otp_secret_key:
+            # 1,2 & F
+            return reverse('users:user-otp-enable-authentication')
+        elif not user.otp_enabled:
+            # 0 & T,F
+            auth_login(self.request, user)
+            self.write_login_log()
+            return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
 
     def get_context_data(self, **kwargs):
         context = {
diff --git a/apps/users/views/user.py b/apps/users/views/user.py
index 414a96a64..598726fc1 100644
--- a/apps/users/views/user.py
+++ b/apps/users/views/user.py
@@ -337,7 +337,6 @@ class UserProfileView(LoginRequiredMixin, TemplateView):
 
     def get_context_data(self, **kwargs):
         mfa_setting = Setting.objects.filter(name='SECURITY_MFA_AUTH').first()
-
         context = {
             'action': _('Profile'),
             'mfa_setting': mfa_setting.cleaned_value if mfa_setting else False,

From 64db02c3f8dfc7018e912d3933c77d1538e58290 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Wed, 6 Jun 2018 16:59:32 +0800
Subject: [PATCH 079/112] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E6=9D=A5=E6=BA=90=20db/ldap?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/i18n/zh/LC_MESSAGES/django.mo           | Bin 34391 -> 34427 bytes
 apps/i18n/zh/LC_MESSAGES/django.po           | 338 ++++++++++---------
 apps/users/models/user.py                    |  13 +-
 apps/users/serializers.py                    |   5 +-
 apps/users/signals_handler.py                |   9 +
 apps/users/templates/users/user_detail.html  |   4 +
 apps/users/templates/users/user_list.html    |   7 +-
 apps/users/templates/users/user_profile.html |   4 +
 apps/users/views/login.py                    |   4 +-
 9 files changed, 211 insertions(+), 173 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 78705cf79573f6cf34877f0304ae523bc3b6dafc..ace72c44b090277540ec8b072d5da101656d52b4 100644
GIT binary patch
delta 10252
zcmXxq37pT>{>Sm}Z^ke)W-w-k(KP!$V;}nxV>c?2C0k>;)+mW2)mOR7TJ)tqp(v$M
zSyCp#Rmip7h_2xxWGSh?r7TJA>pkDk{XHJv`#k4!&i9<pIp_QR{l=qvWOmT)*+K5f
zs^u0qe6oWa=U(g|<v2f3UXrRP@!F0v6LWA1eu{?zj?=IXQV*-=II(yFlkgh0!07sp
zLszF8wnP`Raf^8#%M*4g=lc^^!wPiBM;e^wW*e+by)y=5A5@|Puqr-_p*RQQ@eQnq
zpICe=YAw4^_g%ztSfPRDa~&swLKOlr7=sxYj?K*W$fh{mP>Br2NF0ZmI0bWXB|e1*
zu{*YJ=r|AKLh}+T-nx<FgrJADncrDNK^gxOqwz3mf*(<tUPs+<8zV5#*l{XhC9H-C
zsQVjOyfvy{SJXKDt$h?~VNav(e-Yg<3UevwhBr|=u@beFpQFz9Fy4a~QAZQf#Br))
z1Zv`R)WCJI?C4O5w?XY(N7OuhFcF7fU3{qt`>z|;TZc`kmF_@gz6aG_ih4G_M?C`<
zPy_yqn&5Yg!wOCP_GDChx>?(7Vzxm&Gxs-T|0z2?`5#U68fv09P-p!Xs^e<pfp<z!
zE4zS7^b%_2SFL^rb$@U(--_6QdNgW>`=Z7jjv9BOOF=hGL9KYY)!#s!(Oak^`50qx
zD{9LRVcCwL2D*ScvdgF)iD>Rmn20*6Jk*Y~Ma}a7YJ9gJ1!Xo0^*T*N4KUN{OHdQ8
zvG^CL74JtSP>M?M6l#Jis2#eE8dqNiN-z>tuZ9{g4Y|*C>QK;tt<5f|8+xG<DMC&3
zBx>s>q27`is3Tj78gPZRueJC#)P1{9<9&m=uN0NwB@EO1e}#e)xQ)qJp06uCrCF$s
z9Z(Z>L2X@k)IbAK6OTttFa>jQhSfhsJtJFCN4FhwuoN{;(0z=n_rD4SZDDm(BH5_S
z^HBpgM<vkC>RnI+_dxaQiyCk+CgWJtee<mSO;n=qpvGBk_0P~%!<Q6vHv3Tn9YbyX
zkEkvG12s{2E5Bb=)XpT~y_k+V`vTO&T~IsJ1NHEYKs{Sius?dJx9M^#_FoevxArrv
zj~e(s)Ie=fiQSJ{aUaw~MVN^rk>4t3uIZt^>)$XpVqNOTQ4>ZM@H>JnQ9JQUf$LB3
zDgo`pV%&%;QHcy{<4-&cHNa?8VoS{TP&>97wc^dF1P`FbJBB*a^H#rN^*gBXL*2Ii
z*+-&oNJOnT7q#NXr~z7{GVWycuBb%%qQ0VsppI%1>NjBq>iu4Z8gC71yv?ZbzCzva
z?x&!R|F(v6=4I4`x2-*>o#UiXkHTQg$9QavI>Luh0}e$!%#WjX#6=yIhk6D!VFvC;
z7VJ9LDCmZ}s0pjI_jjT?D&sWN!<U0vVLjBq1*nIwCnn-JOu~8QI@D1d#B%r_)DE9Q
z?Z~CFIOl(hf;#?%T0v+B|Ar{kR#n3gOhK(Q3zcwFyax+02#2B)9f7)UENY_3sFhDg
z?et<)zf~B@{LUv7w54BI!#_|r>_Sa^49nvwRDu^!16@Wvly^}NVV#ct&a_0mb`PNv
z9clGvQ44q-Q*i~lD(td`i>NLB6Lq!`oqV%ViL^5dF_d~Y)DHAPB|ILp@D)tQHK?sW
zjG=hcJcCO3=T4lz&g2$>3K+u6sRSZXHzc5rCKI)#by4lju|9S|t>^{RL~~JJwF^*N
zzsf8@Eno+R;U3iA3x_+i|C;z00@|wIQ7bB6=x=!nYOAwRi8e;PZf&jJ2eYXU#q#(n
z_QeHQc0}e~R05T{_zA{fKJ^@zf;tXBy|<&WCQii!T#H)SzfjM}A=E@iP%Au%74c`(
z5!^tnF#LYs7}QoLTD_*($l`8m3fk%i&EBXj9*9b8ENVg*wbd`9c4{F;U@_`-+<=;B
zkHt$Zeh!u3EmVRb5BT@RAq#Vz3<^4nTx^GJQ4imA)Kk0yBXKk8sP>=|`_?>-O87GB
z?41Yw_E=P6>8J%Z!6&c)pTu=o_V<5USHD9Z>WmtoGH!-?nmeF&;Bi!<6EGZKwfG`b
zV#}}+et>!=N>E343YEY))HuJQ68jxv_5O!-^Upd7HE~PSR(Cf0p|)-eR>3J4f%8!P
z-$Ff1t1u5wV%anBkUaxfg?J+BzB(9*Ezs493n?hWZe|~>Onoq_<2cj+Q&0oXLnX8r
zqi{7Q<2KZaPoo~@^Qdv|n33K6{t2k>ojTn)f1O!(0%<rL$Kx!_ME(1zHe{i;w3q3k
zj^+bwj0cdvyq(Y<{!z3+B~pkws;;;J`=X98s;7Tcxjor`b!<vN-{JS6Ub6!0&>pqL
zJy2&i5TkK8#^Pku_r*Mn!jDi}ycMhBUerT;619`pQO`)ZUVgu5mx8t^88tv%tGB^?
z>fJF0Uq%hM*xFa465EQpZx8ArJZ_#v9n~e&0<WX`-$o@;p|`&PH<p4j%0ms%47H**
zsI41-x?uzk#iuQP95vtt)cw~`2?ssm?@%Mu{e`G!rza}WVHk(cAPaY$c@#9za#Y42
zqb4jt4ZPFhhfzCl5|!W;)PNCv{0S3L4{?3eL){!>u>dtrZ`4i?v-YR4Jo7uxQP9e#
zqB_n(o$;Hf0av5Ww8Y$jdKM0%{vs;H&iDr^v37m^af(p=9>=LT!Q!`2^M&@~pJ8r*
z?V&J<z@z+a{1TSpPU8IrFe&wvB7fyaF^T#m%*BX-{`W>>>`1*Q>Mx?D<|b4EN3d+?
ztbWD3iDm!(ze_<Y3>)O%Pz_a2Ky6{J)mxhnptiEF)kj%<qSaqPO+4RRY`$X_qsCu5
zi2YY#3jt-g$2@_07A|8t{(*Y`lLqq&Vkc~c#pX|D&JaI75|uzP>TkofsCm9Y9qn<{
zGj@51>v#N%fNlu+n{Nc_hG;X{tc6;6GpiR`y*Dc1;TC_=e8HS$E;Qf6IQoC$Qqaox
zTHvI0xMA^fymLyVIx4|*tLIt03F`h<7VnNJ)QeCne-U-xGIOQ58a1x_nFYQ=J?*=(
z9DZvZj-Vzui^}*024j_B{)%JFL^Ip0kLBst0vljkt3QL<DHqvE*O_4ri?9(5%dCFH
zJc&x+oYildcg^y{dBtdtMD=?PwX)aDC0L$%vANbPDQoBax0V$+0@T@-qB8u^yows&
zPt*j#BYdl&Cd#pTBh-DJE&i}M&>Vxh|5<a6WPWFvby$x|U>j<n16To%S^SK}uVPt3
zs04yX`c^R$%v{ujjjdj2_D0?RH*__?V-|P@^;)>7MCMq0DXQNJbDhPvnmf&XsQV6C
z{Rh;27tI@}Kkdqm@=YGa`74ta1Y}#(4TY$IdRu+CwU5Uv;*+iZuDJ^JTd)rG^lwLv
zbI#hYqJD&KVHk!#=Fb=N82hh|@fOH7>!1c~gu0;<s$X~1mKIrj94hhW%&F!~RR4MA
zTjq!6=conlbS>~5YM?V#|H<mtF_-uq49D!ze!qOwRyISu=e;ljCty>23AGcOQ3;>K
z2)u$?&|jt-I>yhWDk_0g)I>R`_q_oI;R9wjtWEu4^CfIeeVus~hf&Yxoz!@5q9$H$
z_0_nD`e%OKb-F&`ckG1)Gz_r%+vfXNnfS-3m29#20o1@p%(E81V)dI=4;ky<7lB$>
zl9`KTzyA#>XrLBmXS0_%1ho@mQ7f8Z^|{twj7n^SwePn00SqO6!s_SEYo`7c5~24$
zl7a@f2X)r9P+zf+U={3-I<qkti4#%%r&;?#%%EOu^=~kn`YF_k!^Zi)dNHU4WTO^b
z2VDhPSVLR05cRwN5NhSa%_-(0^AprSdr{+*TK#)e!k5hJ7T13sQU6F(|9hUY-~SYA
zsEt)=XpUO>gH|uH_Hm|b&NdgJ?t33A<3`j3yHSZ8Kuvti;ulbF&#zCh|LPb%-Z#pO
zLk*aOX;>dMKrf3AK~3~DYKLCNXnfn^>n*+=wUfs!eib!N&;&n$%B~giPz@bX3H7jg
zKa8b5!s;)e-uGFk_j?tp|31`851A*-3+5Hn__t9D3w_$Z&yA;`r!*BcKpv`NL)1iV
ztUd@e(c`EACRlvBxxm`rL5)+4+L`qh--o*I5Nh1>e%y6JCi)Xbm^Dyan`t&e4b%aZ
zKoL&GVW>nenm4Sy+%x|D6|oWR@u+^?Q3({G-m-BR$MfebrJ#W~m|M&ps2lg1rKkbU
zS^XyJ^$Ou{cUi@ZH#1QSsfXH;0<(+RQ|kRMqM!suq9z<`K5x!MP5ggWUuBk9e23MK
zpe8(P_1{qA2A=hIFckTd!AY_DOmyQ2yh}kDZbsekH7b$)<}vev`I{M-?Dwl=#v}i6
z!^t*>p~hQb?H^(Y_0Lf|wskW5Uz5Ua>u?>FQ1Em9!1tmC$T90$yfMZSZ-@G0wXemC
zQ2j@vcI+vOzl<8!v-(F?-}oH+ua4gmC_7v8rgg0Nyq`!M>JN_$)Wh?D#h)>!nXh9d
z+TTVU#cEVSTg{!Qo!w_1b**sTyoS2LdBN{k!Hhw@?<uJEwx|^qTKf>x0>+}gIj3S0
z&c{Uj6jSjK*23!;k8V0Upn+Q3PV_-#J{qf`cBm72*dC9go|V)oej+tdE6T@(*cxN-
zC@TIdD&gCxvk!XF|8Wb&ip=jsP|$#JsE(<q1ai!#W@pq2`=ACMZShGKpJDMOX0f@!
z+-@E)PhgJT|BDugdC8w31vNnfvjCOQgQ!FwHAkQl9%oK6r=aeC1(oo8)cq?_-?SyD
zakgOy^E-Pe=*$iv$Ksqu4KR?eIXMP3z_Zv4XQBq)i5jTX+RvC*QEx}k-~IdIQ2nw|
z<JC7?p{s%Kw?KbXeI#mtNmhT&d>b{;8q`1=QHgwQ?MJQsCk!Tj&FVK$I~ADb-xq4e
zPGkSe&YXbEK}}HC>di2ZdI9RG9fNvm7o!p=F?XOIzJsXyN4@NiHy#7jzu{_6AqX#G
zO|I^gKXSZPso`O(sWztio3|ykdf<rnU20Ox2>Nay_7iPCaNXhhjrw%1|9!&gvxxXz
z0?SdKd0geadTH@d3ABb0jptfU^h0kzTE~PmqC2Q<v;Ox`4^TcwEZzGuEh%u+JDnCC
zrvE?AHDV>+owVv1@6)3>HGQhlqE989kF#y0Os{ErR^X&JD7{tSUT=AN^}zpo8`J9q
zvb>+t+eTHfyT)<Hy<D5TmKk{o`|aMZ@CTyR>2(5Q@I7x@Mq2wgN=t~W<<ciib$V~7
zTo*s$dbg~F-*n3Q95B22RcE*NOGbQ+>qPHb%N$xl7)hVcyp+teK)`FCnUr$I+W(F{
zX)9DaS3G^^5c`KWEi<WeF{KLDb0n>^xqhaeOt0-0zlFinb7=dOvL2V$)kbU>tf%~`
z_e*B;8XFbmQ^K`|YY0~cu^+vHtmr^xuV+@rkbhCH;VsXKj@)3q>EwLpeVLUs;2e=^
z7TrknUCJZ4{%J8D{<2S1>U_I9DP-^q<w$&y`c}$&xw=s9h^M&z_c`sg%&s1FjL0mm
zZ@50@THy`N?i$$XeU_az^a6GLG6mz8T>9+uaX!SqET;d@Rwy&-lj!5@BDTib4`L6l
zhO})_856i3<@&;FnUfXx+#8xxCt;QKe-b^eiClH*qwkHg-nyKmz`wnNIniNNZLVwH
zFFASDF56wX*qduK*V_TFc5bskk~cCpKI$fc@3}T}#c=)ZEy&FZtn{|zdNn?wu1^YP
zaUHh$C2wS2e8O$3eTyxutlsZ)-SC#@Mb|q{G@NS(S2S09HS-A~#TwN0iL!K$QeNks
z%gYNydr>u8h3un!kJqziR^T1)`I^;ZPf$;#ZzsG&Uwxs+dc`&KLn;t0=bf(EvEHAw
zea$t4YZ#Y4rRINd8CMS1B(Afxec<(}l@++^y;v(cEW`4s=q;_4)pRXAdeLKnhTs!H
zU7!2$3Rf`YKd_R;JK)1yiR<sw8k`dH#DsA}hOQsb^|y)@8YS0j)U09t`bYY`k{oei
W{s-r$mz-bv-uX>)*Pom`Dg3`8r2ZBF

delta 10204
zcmXxq37k&#9>?+Xn4KBS!VF`~F#8NL24Q3<%Z#{0sFZ!z&03b0#}Zk)HHYhRyP<^^
zOIZ>(U9u}{SIQDXk|le{=zhM>`Q7LBI`{qm|Nh(W{Qu`X^W5r>S!E8-D&zk#CU~yH
zC$o&>RKv%k9p^OVSv3`PoP;`#GXtyO1bh#_^*K)Z14#W&UB{_}d-5D78Bb$V465fi
zbak5JLpThxaJl&%hB}Vl`ICYc4$XI*Fib@noLsXWR-oP(gRmIYzdgp_5DdqcF%hR?
zIef?BD^T~c4mIuw2IKD-#`?}Z3Ka<i*LR#atb}DT$83OXiqjmGNGFWKKA3^SF&pRM
zDBO&lut5XI>5S9NW2kuDhK>`0ld%r#JJTsB<Igb`x1tvK9+m0Or~wx+60c%;ypNSJ
z>OpUO8Y*5F)vpjWPdjUW3Uy-xQ2j=rKZ3#p3K}p2wG;DDTloR%Y`0=nJc2r!n;4Jx
zP>IJi@+MBfz|o-+uZP;X2T|)3V|DC|JT}hAM(n=^ylWjkLfz>aROTB{?K@G=#y-?D
za2Pe=QPcuwF#&%^wO4HHwa1y&%`CGX>X~WUnEj{hwBmoXkRP?sRMc6&j_UX}^1wSw
zQFnG2mFO|lmi}b*OQ`YJ%|Ea;^`Iu+4!1?k+YL4EKtBZy7>>H*u~wgoI-}Q7NAfR>
z!xgA4--3Z1K}~cRbz~<|J8}<oq~!~|qe?{WSUzf<hfwqTAEls<PoZ9?fv5?_TYVO4
z!G#w87<I=RQ3>osCAc58z$w%YT|muy1(jf_)kFDm(0sATIKPujK@-+B3s3`EqY~+W
zTBtW_>jtCVl5wabn~j=qj<qkc_$R1w>rnIk2Q_XdD#2qIq4)n31to9+Q}7n*DUIiA
zOC1}c7Ain(-NUGfI-(Zthgx7b=HNK1zlVB8mZOetHD=>Z)I8TPRPVpj%-g~+R3Zte
z%u`Vl=b{p*Z}kGy#4S<%+M*`xgelkyHEyD{&p;(wf|}=TtG|zaHGE1zXSESE(Qee%
ze~;SoUr`I)MfEFF=<Q4etVTT!b@q9vg$qzS)DrbQ@dWDG8jernWYpVqvXK4PLKT~P
z8P-H?c^%Y5`KSe(qVBjDwNMAlz$cNvRn7!+GU~g2s`(-6i{=~Df~8oDwOe>QF{Xvz
zTi_J}+KHLC9_OJFdF)|t;jX9&o<=1$%bbhavA0ooybP7#Ce(bpQAhfn)lXUd5^Db2
zehPYhO07frN4$ipqV6~oH9>9E*)_6yAu5r!sITbGsG}N;`kOEg^?tvB+QEgW`Ie#P
zTZJ0$-$+3nw_C#@^CW7)3)X%OYf$&K^uA(KF_C&E>Ife}P1pr>Lp@MCG7NQ8lTpvW
zN0^Qqksb0orzvQ_Z>R;GR^HZyp)!s|J$zMAcUS{8aUSa7YlYRZ4<_S8b1~{DHe)b;
zjXIM3s2w>Lh;#nuDX8OR)E(RoG;pV_y{!tx5aQ9OJB>#roQ+kn36{Yws6?MYZE-Ku
zLPJq^J{GmpGg18(U^weL?@$QBkF8-PYQQ?w!n-jP_oEU#jGE{q>Y@A%^$;ev@ph&*
z>a}ZuO7uyq4?*3)B&>;Z(67QeYdC`1;)|%Wy=NvAd5P3Fo1hYDj@p4@RKoo*6USg0
zE<|npRt(2o=0Q}#M~gUroymCuVR#djK&f?%;$_v*R7P!S3aUL9>tO-vj-Ep;Gy(Nh
zI|a4%3(Tdcom_(vxB>NhVQVq_uZ52j&{myA-O()!#pt%)Rwtkm%|yL!`BpE+Eb3iQ
z{a?YSa0&*F$ovhJz<pGL!H+TrR`F9%$M&fA_Gzqzqc8~<q3-NU)HAXLwa^aK9qz?)
zcocO6=P&~An!)Y7tuBv>S2Hs#?ypNBoQ7s*8`KteL?zY>wcs$+R=<GSsc9IA^HHzk
z64aS)u=q}kA3`N~9+lutYY%T9xG}#|iGt3eDz?OY)WbIx^%T#+C|rg*stu^bzA_J>
z5<ZFA+A9_h`HPoW9O?$Ma2V#{2waST-~X{4ybg(|GfG2coP&Cr8=?~Ifn{+FYDXra
z5}J<X@lDjTun2WzyHE@7MfE?7+NmE=&(JkY()%CY(OWPBwZ-+!mZ&Z3iWPA%M&fu>
zg0G<-A{TRU2kMNko26Khde~#$xCD%%o{qZFeDo{B#uVhkSOFhJb?lCsU@&Up@u-Ae
z#b}&|Dfl7kj(4LT;(e%jel~AmH1*I<-WN{->Zl4j@&2b$=ty8Rj>Zf;k9DwOXKzaj
z%|WOmc@z2n9?p8?7q)X1briXedx_+uj;axUhL50*@Gk18V!L?#YIb4&_1&FGK(AL0
zszV*r7C(eKyJC#Rj#vr%p}r@^qwZ`j>S&f?46Z>vygN`kc>*=>B~-tAs2z&%cl9Qy
zf(qnfJ{Djc4ns}&s<qEUCAJi`@M_eZZ!`Cxj_MHVNKT;opFt&Z1uNlwR6_o^Zr%i`
zs5{C<ZCz{BfXA>u_O$pm)P(y{6C6V&d;zsX$xnFW^HI-EGgP7-Fadj`Zge~{kKdU=
zK^gxYwcsMu#49Ym5w!z5PzfGEO?VTvVAzxP`eNYqMcrWzYM$n(1v^-KPt=k2$H4pl
zECqEOjhb*W>TQ^ZI;%zIa@4>Ls9!>xu^3OI607}`H%}3&UpJhLJuLnc>Zq<_dmsPg
z1jp(9Z^LimNw^ue(a`c4{v=Z`+ta)AuP~YVA<V&>sJ{&<y%>wlP``wxn(v|#*o1+d
zv-%P96l%wRLBH<s8U+pb6IBoG?QLN!s-A5&L~Z3GR_|=}UREEDn&)NnRdc3Uf|_r>
zxuiGeuMAfcklRt2{eWqB8nZCG4}XX-4-2uxJZQ%B_2QjS36!9I6V691_&Mrmx1pY~
zA5i_y_4Rv&%NDqa8gS2y=;zfdqwYM_>iJf0j!L+r#h)?<nxoB$=IfY1|9_%xc#Yoz
zJFLS=Yq(@}y?e?u3YA!#)oY+8$g+3=)}UU5y7M8ZansE=%z3DJ-nP2`V+wlOS79*z
z+d6DQEwBfb@ktEAJE%J@HNysY^=LB@wQxGt$68kJjT$!ywUZ;gxZjyXp&^0kUclL8
z?m#85*XpOtU(Da|IofZb`t={^-Pu@k3WgFdG3T3$tbJ)f&VLOBWwaTU;Q{j~YJ#(<
z1umL@qP8$*kQYxzjjM->H#LjRuBh>S%@@q+YG-}tEecBDL)1j;F$}j@{A-IJ#Xv%+
zg)W+R%+SGJJQlTJiq-SY=BV-Qt^PRr73fVtuf-r#A}^rgQ&9`eHWyfYsky>jiyHTZ
z)xSZF`_?>(`bl@mj2Pn0pFV{5UklYDpaJ=)iJDuzqjh`+Gl}=J`Yh8${ViC4dis~4
z=GklQM^S%-e!>X6Zt+r7zu=+v{znh>GD<*An2Z{bhw4~>+R`G6cSj}O-+a~_h3Y@v
ze9fF=E=Jwp3afwVr=W?xw!lHFpTHdAKVw;pe%9+(4Yif2sQ0`OBe4fI#-XU4cpsJU
z4vfSjs2e(GUPUG1|AT@ODEC)yp%~Qro`hwvq1hPgP;Y7u#pcu(m`8B{^=iD6nr|{j
z;tZ?L!}-+TwtAysfqs6ckU|R@T6+O!n)x@ZK>Y8hJ6U4!^{9zAnR_gL#OkN4ei=3H
zCTa)6hkM4N60DAqJbzAlpuqcU7Mkr)JMkoHz(}i)v-T3y0t>BumBrU%IPvXP-)9~(
z&zrX}M(=;n2=A;bqrPHWU`1?&I<u}Ag}qP<K4<L{F`ase)j!89>bp>Pd=2$iuM~9y
z(IdT`OF-4rG4TG^vOqrSr&ANuop&?`o0H6cqK;q<YNE|n--$~2ka@!5=gnKF{z0R>
z@nuJ`|C%VCKn$j#?)*Wk7g@*d<{<NVa}sLY->?F{gIZt}Dv|Z5`L|enKkDr{Z1wA-
z?ESxM0pDnE!f;HbV<KvTLW{RUEz}dWL&Go@r&;_hi!Vd%<Ti^RMa^>omB4K?&i}mE
zP#2Z?LsoBzm8d^v^?|7OeKhL*c2WJ;qVDtybGy0UJc3&I3~HyYqQ(Wk;60@NauhT{
z9I9h=)IzydZ;Kkx4K+azi;pm0vG$p$c}h?_^OnWeqQ-rJns=YYFC**uots|4DKo~~
z+6rbeYN7{F2^8UE?0`!2Tl1u~UqT(t4Qz<PW4(R_s04~o->BU&0jFZ9-v5Px0$(uZ
za?}EA%+06?_FDZE>h-#8-Z6v6dGQLUM5>~8B*(08HZzMb@X!A{QP6@<ngh&HsD&q3
z-8C0ke7V&(p%&a@_2Z}=`xO)LD)JM-DLdY)k1}Ur;NSnfPeB7#q7wPc++yxGkDI@m
zznj4?djF0$+U$UuZ#HVaIT(VAQ9HL3YvHOF*?(nt!aCkY4Gek7GZHmHELOr4)Q{AL
z7B4{cFGB592aESX%{$EM)2u!h)o+El`6bR@f&W^^bLI`y4-VhU-b0g(O5|~~xA`2F
zC;lSp2xg!XT3{|ljr+h{Ykp<!^Hb1(V-`4VUO~O*rPiMOig!mDs0j;EiMK<2WA?;k
z9FEoT4XlYPu{IvWMAQSXovCIw?r%UrnHOPYd;*Jb7`DRCQBU!GRHES%yaX!XKd4v3
zI9!WLY&WXkVbq!bi29>;2Fu|usQGRn{rt{-3Q8bkqGu&D9d(BdP!ktfyo<&ATYRiJ
z#Vj!wn#;`fn9V%ft$qb#v>l}us5r@6C<&EN4l2_oW=qta{l)BJK8;GSFDl{TsPU6g
zzXM#<Ja3_PWC`lXmf<U`?`))?37YctCW}!Mbj2n(05$Pq)I@8n{Y!H%>h1W^>NimR
zf?xIKD{m&E=FPHtBlIiKih?HSVjYH>FQO)ziAroPDv@`reXX@`!yw}Oto|)(r;ek>
zoiVRk{Jt47#px4RAaaT~pfct%APM!<7NefpF{p`La}ny{TaHSw^;B<sNAywO$JL5L
z89eVUuNfb)oZ5rbuDg3`#{0f=&(=(Ss2t6o5&MO<pSbRE-Jm{=>;In!`phT(CxJz%
z&zoE!Zj02!=xVe^5KZJ-O!Oo7uc>X4Y7*T_?LXGP3Uwdlv&2%}1F6Zr@7=4Zu@U-D
zZmtvi%#BKmPk)~t1=RGZM2kLAI0t9hOzCcMTBh%~J0h*nm*{?)7Vo?4?n-;Wm*L(?
zdnCGojT*^_YFz8x_UXAv-`LpAc$#QsdL74De9xVmp4uv&(pyA6;nF8ub$V~1To*s)
zdN<I*Jy6zXpV`r?Iy>Fc^u#JRiQc!C*|Y>RlRj(Qyo^+z<95kNu5rrRU&Su8wdGpN
zRh7Q8iGAtL%}6f(fKr(C98Bvhu3xDq)9WjX-^Mc3vuV3TSx-m_{>e3f@+w^ImSz-G
z`J9qI>$p~O_2o(@cFuh)GuBt$?Vs5uWDoTO_tVVSsI}IcPR@Vb1DVOsoFP)#qU(vi
zLwOL_4vX<T2R<>>`NDQm$m$~HNSsK0Bjw#(k5X=fC%FFqIq9~~ijV$*$V{%iT+6uL
zb)V1b;M?kM%S!G4Gj;tj3c^iX`h4Tze2k?QJBVSdsE_^z=(C;J3Txkwk8?F3{)Nhz
z#MOgqgWEnk)3?rjKKp^B53T<Qbh*ZG)uoTVDo(qbvy**?+*8@H5z)5RHMcZ7xAJc`
zDhIo9JsYUI&2pOfs=MQI5~F`7@FUm1x#GBPxbNp=`j)tRa@;DPQrD*jW^(DjFw^IP
zJ1#dd>8{ldU{forbqUuk_tV_iyrV?Ra&6&?<!Ys7K0Z>cLS3JVmhKOfKXGs7=K5mX
z8np^TzNUSb+rL((Z?QYOR(z#n)N9bU2rtrC-{EoY`daxRp+tk+tF_wX{XyF{uIXF@
zxb!(}9>IlN*<9ne&d|2h9b7xpch!Bfc5FnN<x$pMUOTh#N_upq$6QUpCz858?eGd$
v5al~q-r}vXGgs2;s5*UWtbU=xwQ^w%Qt}>bQa5k)u<oy=tPXl<Y}x+-FEswP

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index eb42e1bef..cc9ee531d 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-06-05 17:03+0800\n"
+"POT-Creation-Date: 2018-06-06 16:53+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -17,19 +17,19 @@ msgstr ""
 "Content-Type: text/plain; charset=UTF-8\n"
 "Content-Transfer-Encoding: 8bit\n"
 
-#: assets/api/node.py:106
+#: assets/api/node.py:99
 msgid "New node {}"
 msgstr "新节点 {}"
 
-#: assets/api/node.py:241
+#: assets/api/node.py:234
 msgid "更新节点资产硬件信息: {}"
 msgstr ""
 
-#: assets/api/node.py:254
+#: assets/api/node.py:247
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
-#: assets/forms/asset.py:24 assets/models/asset.py:74 assets/models/user.py:103
+#: assets/forms/asset.py:24 assets/models/asset.py:75 assets/models/user.py:103
 #: assets/templates/assets/asset_detail.html:183
 #: assets/templates/assets/asset_detail.html:191
 #: assets/templates/assets/system_user_detail.html:175 perms/models.py:33
@@ -37,7 +37,7 @@ msgid "Nodes"
 msgstr "节点管理"
 
 #: assets/forms/asset.py:27 assets/forms/asset.py:66 assets/forms/asset.py:109
-#: assets/forms/asset.py:113 assets/models/asset.py:79
+#: assets/forms/asset.py:113 assets/models/asset.py:80
 #: assets/models/cluster.py:19 assets/models/user.py:72
 #: assets/templates/assets/asset_detail.html:73 templates/_nav.html:25
 msgid "Admin user"
@@ -53,7 +53,7 @@ msgstr "管理用户"
 msgid "Label"
 msgstr "标签"
 
-#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:70
+#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:71
 #: assets/models/domain.py:46
 msgid "Domain"
 msgstr "网域"
@@ -90,7 +90,7 @@ msgstr "如果有多个的互相隔离的网络，设置资产属于的网域，
 msgid "Select assets"
 msgstr "选择资产"
 
-#: assets/forms/asset.py:105 assets/models/asset.py:66
+#: assets/forms/asset.py:105 assets/models/asset.py:67
 #: assets/models/domain.py:44 assets/templates/assets/admin_user_assets.html:53
 #: assets/templates/assets/asset_detail.html:69
 #: assets/templates/assets/domain_gateway_list.html:58
@@ -99,7 +99,7 @@ msgid "Port"
 msgstr "端口"
 
 #: assets/forms/domain.py:14 assets/forms/label.py:13
-#: assets/models/asset.py:229 assets/templates/assets/admin_user_list.html:25
+#: assets/models/asset.py:223 assets/templates/assets/admin_user_list.html:25
 #: assets/templates/assets/domain_detail.html:60
 #: assets/templates/assets/domain_list.html:15
 #: assets/templates/assets/label_list.html:16
@@ -136,8 +136,8 @@ msgstr "资产"
 #: perms/templates/perms/asset_permission_list.html:53
 #: perms/templates/perms/asset_permission_user.html:54 terminal/models.py:16
 #: terminal/models.py:154 terminal/templates/terminal/terminal_detail.html:43
-#: terminal/templates/terminal/terminal_list.html:29 users/models/group.py:14
-#: users/models/user.py:42 users/templates/users/_select_user_modal.html:13
+#: terminal/templates/terminal/terminal_list.html:29 users/models/group.py:12
+#: users/models/user.py:49 users/templates/users/_select_user_modal.html:13
 #: users/templates/users/user_detail.html:63
 #: users/templates/users/user_group_detail.html:55
 #: users/templates/users/user_group_list.html:12
@@ -155,7 +155,7 @@ msgstr "名称"
 #: assets/templates/assets/system_user_list.html:27
 #: perms/templates/perms/asset_permission_user.html:55 users/forms.py:13
 #: users/forms.py:21 users/forms.py:30 users/models/authentication.py:45
-#: users/models/user.py:40 users/templates/users/_select_user_modal.html:14
+#: users/models/user.py:47 users/templates/users/_select_user_modal.html:14
 #: users/templates/users/login.html:56
 #: users/templates/users/login_log_list.html:49
 #: users/templates/users/user_detail.html:67
@@ -180,7 +180,7 @@ msgstr "密码或密钥密码"
 msgid "Password"
 msgstr "密码"
 
-#: assets/forms/user.py:28 users/models/user.py:69
+#: assets/forms/user.py:28 users/models/user.py:76
 msgid "Private key"
 msgstr "ssh私钥"
 
@@ -202,7 +202,7 @@ msgid ""
 "than 2 system user"
 msgstr "高优先级的系统用户将会作为默认登录用户"
 
-#: assets/models/asset.py:62 assets/models/domain.py:43
+#: assets/models/asset.py:63 assets/models/domain.py:43
 #: assets/templates/assets/_asset_list_modal.html:46
 #: assets/templates/assets/admin_user_assets.html:52
 #: assets/templates/assets/asset_detail.html:61
@@ -217,7 +217,7 @@ msgstr "高优先级的系统用户将会作为默认登录用户"
 msgid "IP"
 msgstr "IP"
 
-#: assets/models/asset.py:65 assets/templates/assets/_asset_list_modal.html:45
+#: assets/models/asset.py:66 assets/templates/assets/_asset_list_modal.html:45
 #: assets/templates/assets/admin_user_assets.html:51
 #: assets/templates/assets/asset_detail.html:57
 #: assets/templates/assets/asset_list.html:86
@@ -229,82 +229,82 @@ msgstr "IP"
 msgid "Hostname"
 msgstr "主机名"
 
-#: assets/models/asset.py:68 assets/templates/assets/asset_detail.html:97
+#: assets/models/asset.py:69 assets/templates/assets/asset_detail.html:97
 msgid "Platform"
 msgstr "系统平台"
 
-#: assets/models/asset.py:75 assets/models/domain.py:48
+#: assets/models/asset.py:76 assets/models/domain.py:48
 #: assets/models/label.py:20 assets/templates/assets/asset_detail.html:105
 msgid "Is active"
 msgstr "激活"
 
-#: assets/models/asset.py:84 assets/templates/assets/asset_detail.html:65
+#: assets/models/asset.py:85 assets/templates/assets/asset_detail.html:65
 msgid "Public IP"
 msgstr "公网IP"
 
-#: assets/models/asset.py:86 assets/templates/assets/asset_detail.html:113
+#: assets/models/asset.py:87 assets/templates/assets/asset_detail.html:113
 msgid "Asset number"
 msgstr "资产编号"
 
-#: assets/models/asset.py:90 assets/templates/assets/asset_detail.html:77
+#: assets/models/asset.py:91 assets/templates/assets/asset_detail.html:77
 msgid "Vendor"
 msgstr "制造商"
 
-#: assets/models/asset.py:92 assets/templates/assets/asset_detail.html:81
+#: assets/models/asset.py:93 assets/templates/assets/asset_detail.html:81
 msgid "Model"
 msgstr "型号"
 
-#: assets/models/asset.py:94 assets/templates/assets/asset_detail.html:109
+#: assets/models/asset.py:95 assets/templates/assets/asset_detail.html:109
 msgid "Serial number"
 msgstr "序列号"
 
-#: assets/models/asset.py:97
+#: assets/models/asset.py:98
 msgid "CPU model"
 msgstr "CPU型号"
 
-#: assets/models/asset.py:98
+#: assets/models/asset.py:99
 msgid "CPU count"
 msgstr "CPU数量"
 
-#: assets/models/asset.py:99
+#: assets/models/asset.py:100
 msgid "CPU cores"
 msgstr "CPU核数"
 
-#: assets/models/asset.py:101 assets/templates/assets/asset_detail.html:89
+#: assets/models/asset.py:102 assets/templates/assets/asset_detail.html:89
 msgid "Memory"
 msgstr "内存"
 
-#: assets/models/asset.py:103
+#: assets/models/asset.py:104
 msgid "Disk total"
 msgstr "硬盘大小"
 
-#: assets/models/asset.py:105
+#: assets/models/asset.py:106
 msgid "Disk info"
 msgstr "硬盘信息"
 
-#: assets/models/asset.py:108 assets/templates/assets/asset_detail.html:101
+#: assets/models/asset.py:109 assets/templates/assets/asset_detail.html:101
 msgid "OS"
 msgstr "操作系统"
 
-#: assets/models/asset.py:110
+#: assets/models/asset.py:111
 msgid "OS version"
 msgstr "系统版本"
 
-#: assets/models/asset.py:112
+#: assets/models/asset.py:113
 msgid "OS arch"
 msgstr "系统架构"
 
-#: assets/models/asset.py:114
+#: assets/models/asset.py:115
 msgid "Hostname raw"
 msgstr "主机名原始"
 
-#: assets/models/asset.py:118 assets/templates/assets/asset_create.html:33
+#: assets/models/asset.py:119 assets/templates/assets/asset_create.html:33
 #: assets/templates/assets/asset_detail.html:220
 #: assets/templates/assets/asset_update.html:38 templates/_nav.html:27
 msgid "Labels"
 msgstr "标签管理"
 
-#: assets/models/asset.py:120 assets/models/base.py:29
+#: assets/models/asset.py:121 assets/models/base.py:29
 #: assets/models/cluster.py:28 assets/models/group.py:21
 #: assets/templates/assets/admin_user_detail.html:68
 #: assets/templates/assets/asset_detail.html:117
@@ -312,11 +312,11 @@ msgstr "标签管理"
 #: assets/templates/assets/system_user_detail.html:96
 #: ops/templates/ops/adhoc_detail.html:86 perms/models.py:38 perms/models.py:81
 #: perms/templates/perms/asset_permission_detail.html:98
-#: users/models/user.py:83 users/templates/users/user_detail.html:107
+#: users/models/user.py:90 users/templates/users/user_detail.html:111
 msgid "Created by"
 msgstr "创建者"
 
-#: assets/models/asset.py:123 assets/models/cluster.py:26
+#: assets/models/asset.py:124 assets/models/cluster.py:26
 #: assets/models/domain.py:20 assets/models/group.py:22
 #: assets/models/label.py:23 assets/templates/assets/admin_user_detail.html:64
 #: assets/templates/assets/domain_detail.html:68
@@ -324,12 +324,12 @@ msgstr "创建者"
 #: ops/templates/ops/adhoc_detail.html:90 ops/templates/ops/task_detail.html:63
 #: perms/models.py:39 perms/models.py:82
 #: perms/templates/perms/asset_permission_detail.html:94
-#: terminal/templates/terminal/terminal_detail.html:59 users/models/group.py:17
+#: terminal/templates/terminal/terminal_detail.html:59 users/models/group.py:15
 #: users/templates/users/user_group_detail.html:63
 msgid "Date created"
 msgstr "创建日期"
 
-#: assets/models/asset.py:125 assets/models/base.py:26
+#: assets/models/asset.py:126 assets/models/base.py:26
 #: assets/models/cluster.py:29 assets/models/domain.py:18
 #: assets/models/domain.py:47 assets/models/group.py:23
 #: assets/models/label.py:21 assets/templates/assets/admin_user_detail.html:72
@@ -342,11 +342,11 @@ msgstr "创建日期"
 #: assets/templates/assets/system_user_list.html:33 common/models.py:30
 #: ops/models/adhoc.py:42 perms/models.py:40 perms/models.py:83
 #: perms/templates/perms/asset_permission_detail.html:102 terminal/models.py:26
-#: terminal/templates/terminal/terminal_detail.html:63 users/models/group.py:15
-#: users/models/user.py:75 users/templates/users/user_detail.html:119
+#: terminal/templates/terminal/terminal_detail.html:63 users/models/group.py:13
+#: users/models/user.py:82 users/templates/users/user_detail.html:123
 #: users/templates/users/user_group_detail.html:67
 #: users/templates/users/user_group_list.html:14
-#: users/templates/users/user_profile.html:126
+#: users/templates/users/user_profile.html:130
 msgid "Comment"
 msgstr "备注"
 
@@ -366,7 +366,7 @@ msgstr "带宽"
 msgid "Contact"
 msgstr "联系人"
 
-#: assets/models/cluster.py:22 users/models/user.py:61
+#: assets/models/cluster.py:22 users/models/user.py:68
 #: users/templates/users/user_detail.html:76
 msgid "Phone"
 msgstr "手机"
@@ -392,7 +392,7 @@ msgid "Default"
 msgstr "默认"
 
 #: assets/models/cluster.py:36 assets/models/label.py:13
-#: users/models/user.py:330
+#: users/models/user.py:347
 msgid "System"
 msgstr "系统"
 
@@ -432,9 +432,9 @@ msgstr "默认资产组"
 #: terminal/templates/terminal/command_list.html:72
 #: terminal/templates/terminal/session_list.html:33
 #: terminal/templates/terminal/session_list.html:71 users/forms.py:281
-#: users/models/user.py:30 users/models/user.py:318
+#: users/models/user.py:31 users/models/user.py:335
 #: users/templates/users/user_group_detail.html:78
-#: users/templates/users/user_group_list.html:13 users/views/user.py:360
+#: users/templates/users/user_group_list.html:13 users/views/user.py:359
 msgid "User"
 msgstr "用户"
 
@@ -640,7 +640,7 @@ msgstr "其它"
 #: users/templates/users/_user.html:46
 #: users/templates/users/user_bulk_update.html:23
 #: users/templates/users/user_password_update.html:70
-#: users/templates/users/user_profile.html:184
+#: users/templates/users/user_profile.html:188
 #: users/templates/users/user_profile_update.html:63
 #: users/templates/users/user_pubkey_update.html:70
 #: users/templates/users/user_pubkey_update.html:76
@@ -667,7 +667,7 @@ msgstr "重置"
 #: users/templates/users/_user.html:47
 #: users/templates/users/forgot_password.html:44
 #: users/templates/users/user_bulk_update.html:24
-#: users/templates/users/user_list.html:44
+#: users/templates/users/user_list.html:45
 #: users/templates/users/user_password_update.html:71
 #: users/templates/users/user_profile_update.html:64
 #: users/templates/users/user_pubkey_update.html:77
@@ -744,9 +744,9 @@ msgstr "测试"
 #: users/templates/users/user_detail.html:25
 #: users/templates/users/user_group_detail.html:28
 #: users/templates/users/user_group_list.html:43
-#: users/templates/users/user_list.html:76
-#: users/templates/users/user_profile.html:147
-#: users/templates/users/user_profile.html:176
+#: users/templates/users/user_list.html:77
+#: users/templates/users/user_profile.html:151
+#: users/templates/users/user_profile.html:180
 msgid "Update"
 msgstr "更新"
 
@@ -768,8 +768,8 @@ msgstr "更新"
 #: users/templates/users/user_detail.html:30
 #: users/templates/users/user_group_detail.html:32
 #: users/templates/users/user_group_list.html:45
-#: users/templates/users/user_list.html:80
-#: users/templates/users/user_list.html:84
+#: users/templates/users/user_list.html:81
+#: users/templates/users/user_list.html:85
 msgid "Delete"
 msgstr "删除"
 
@@ -784,17 +784,17 @@ msgstr "选择节点"
 
 #: assets/templates/assets/admin_user_detail.html:100
 #: assets/templates/assets/asset_detail.html:200
-#: assets/templates/assets/asset_list.html:639
+#: assets/templates/assets/asset_list.html:638
 #: assets/templates/assets/system_user_detail.html:192
 #: assets/templates/assets/system_user_list.html:138 templates/_modal.html:22
 #: terminal/templates/terminal/session_detail.html:108
-#: users/templates/users/user_detail.html:362
-#: users/templates/users/user_detail.html:387
-#: users/templates/users/user_detail.html:410
+#: users/templates/users/user_detail.html:366
+#: users/templates/users/user_detail.html:391
+#: users/templates/users/user_detail.html:414
 #: users/templates/users/user_group_create_update.html:32
 #: users/templates/users/user_group_list.html:86
-#: users/templates/users/user_list.html:199
-#: users/templates/users/user_profile.html:218
+#: users/templates/users/user_list.html:200
+#: users/templates/users/user_profile.html:222
 msgid "Confirm"
 msgstr "确认"
 
@@ -827,7 +827,7 @@ msgstr "比例"
 #: terminal/templates/terminal/session_list.html:80
 #: terminal/templates/terminal/terminal_list.html:36
 #: users/templates/users/user_group_list.html:15
-#: users/templates/users/user_list.html:28
+#: users/templates/users/user_list.html:29
 msgid "Action"
 msgstr "动作"
 
@@ -844,15 +844,15 @@ msgid "Disk"
 msgstr "硬盘"
 
 #: assets/templates/assets/asset_detail.html:121
-#: users/templates/users/user_detail.html:111
-#: users/templates/users/user_profile.html:100
+#: users/templates/users/user_detail.html:115
+#: users/templates/users/user_profile.html:104
 msgid "Date joined"
 msgstr "创建日期"
 
 #: assets/templates/assets/asset_detail.html:137
 #: terminal/templates/terminal/session_detail.html:81
-#: users/templates/users/user_detail.html:130
-#: users/templates/users/user_profile.html:138
+#: users/templates/users/user_detail.html:134
+#: users/templates/users/user_profile.html:142
 msgid "Quick modify"
 msgstr "快速修改"
 
@@ -865,10 +865,10 @@ msgstr "快速修改"
 #: perms/templates/perms/asset_permission_list.html:59
 #: terminal/templates/terminal/terminal_list.html:34
 #: users/templates/users/_select_user_modal.html:18
-#: users/templates/users/user_detail.html:136
+#: users/templates/users/user_detail.html:140
 #: users/templates/users/user_granted_asset.html:46
 #: users/templates/users/user_group_granted_asset.html:46
-#: users/templates/users/user_list.html:27
+#: users/templates/users/user_list.html:28
 #: users/templates/users/user_profile.html:63
 msgid "Active"
 msgstr "激活中"
@@ -882,8 +882,8 @@ msgid "Refresh"
 msgstr "刷新"
 
 #: assets/templates/assets/asset_detail.html:300
-#: users/templates/users/user_detail.html:282
-#: users/templates/users/user_detail.html:309
+#: users/templates/users/user_detail.html:286
+#: users/templates/users/user_detail.html:313
 msgid "Update successfully!"
 msgstr "更新成功"
 
@@ -906,12 +906,12 @@ msgid "Hardware"
 msgstr "硬件"
 
 #: assets/templates/assets/asset_list.html:100
-#: users/templates/users/user_list.html:37
+#: users/templates/users/user_list.html:38
 msgid "Delete selected"
 msgstr "批量删除"
 
 #: assets/templates/assets/asset_list.html:101
-#: users/templates/users/user_list.html:38
+#: users/templates/users/user_list.html:39
 msgid "Update selected"
 msgstr "批量更新"
 
@@ -920,12 +920,12 @@ msgid "Remove from this node"
 msgstr "从节点移除"
 
 #: assets/templates/assets/asset_list.html:103
-#: users/templates/users/user_list.html:39
+#: users/templates/users/user_list.html:40
 msgid "Deactive selected"
 msgstr "禁用所选"
 
 #: assets/templates/assets/asset_list.html:104
-#: users/templates/users/user_list.html:40
+#: users/templates/users/user_list.html:41
 msgid "Active selected"
 msgstr "激活所选"
 
@@ -977,29 +977,29 @@ msgstr "存在子节点，不能删除"
 msgid "Have assets, cancel"
 msgstr "存在资产，不能删除"
 
-#: assets/templates/assets/asset_list.html:634
+#: assets/templates/assets/asset_list.html:633
 #: assets/templates/assets/system_user_list.html:133
-#: users/templates/users/user_detail.html:357
-#: users/templates/users/user_detail.html:382
+#: users/templates/users/user_detail.html:361
+#: users/templates/users/user_detail.html:386
 #: users/templates/users/user_group_list.html:81
-#: users/templates/users/user_list.html:194
+#: users/templates/users/user_list.html:195
 msgid "Are you sure?"
 msgstr "你确认吗?"
 
-#: assets/templates/assets/asset_list.html:635
+#: assets/templates/assets/asset_list.html:634
 msgid "This will delete the selected assets !!!"
 msgstr "删除选择资产"
 
-#: assets/templates/assets/asset_list.html:643
+#: assets/templates/assets/asset_list.html:642
 msgid "Asset Deleted."
 msgstr "已被删除"
 
-#: assets/templates/assets/asset_list.html:644
-#: assets/templates/assets/asset_list.html:649
+#: assets/templates/assets/asset_list.html:643
+#: assets/templates/assets/asset_list.html:648
 msgid "Asset Delete"
 msgstr "删除"
 
-#: assets/templates/assets/asset_list.html:648
+#: assets/templates/assets/asset_list.html:647
 msgid "Asset Deleting failed."
 msgstr "删除失败"
 
@@ -1239,11 +1239,11 @@ msgstr "FTP日志"
 msgid "Test mail sent to {}, please check"
 msgstr "邮件已经发送{}, 请检查"
 
-#: common/api.py:52
+#: common/api.py:42
 msgid "Test ldap success"
 msgstr "连接LDAP成功"
 
-#: common/api.py:90
+#: common/api.py:80
 msgid "Match {} s users"
 msgstr "匹配 {} 个用户"
 
@@ -1414,41 +1414,41 @@ msgstr "开启后，用户登录必须使用MFA二次认证（对所有用户有
 msgid "Password minimum length"
 msgstr "密码最小长度 "
 
-#: common/forms.py:190
+#: common/forms.py:191
 msgid "Must contain capital letters"
 msgstr "必须包含大写字母"
 
-#: common/forms.py:192
+#: common/forms.py:193
 msgid ""
 "After opening, the user password changes and resets must contain uppercase "
 "letters"
 msgstr "开启后，用户密码修改、重置必须包含大写字母"
 
-#: common/forms.py:198
+#: common/forms.py:199
 msgid "Must contain lowercase letters"
 msgstr "必须包含小写字母"
 
-#: common/forms.py:199
+#: common/forms.py:200
 msgid ""
 "After opening, the user password changes and resets must contain lowercase "
 "letters"
 msgstr "开启后，用户密码修改、重置必须包含小写字母"
 
-#: common/forms.py:205
+#: common/forms.py:206
 msgid "Must contain numeric characters"
 msgstr "必须包含数字字符"
 
-#: common/forms.py:206
+#: common/forms.py:207
 msgid ""
 "After opening, the user password changes and resets must contain numeric "
 "characters"
 msgstr "开启后，用户密码修改、重置必须包含数字字符"
 
-#: common/forms.py:212
+#: common/forms.py:213
 msgid "Must contain special characters"
 msgstr "必须包含特殊字符"
 
-#: common/forms.py:213
+#: common/forms.py:214
 msgid ""
 "After opening, the user password changes and resets must contain special "
 "characters"
@@ -1813,9 +1813,9 @@ msgstr "选择用户"
 #: perms/forms.py:34 perms/models.py:31 perms/models.py:77
 #: perms/templates/perms/asset_permission_list.html:55
 #: perms/templates/perms/asset_permission_list.html:136 templates/_nav.html:14
-#: users/models/group.py:25 users/models/user.py:48
+#: users/models/group.py:23 users/models/user.py:55
 #: users/templates/users/_select_user_modal.html:16
-#: users/templates/users/user_detail.html:188
+#: users/templates/users/user_detail.html:192
 #: users/templates/users/user_list.html:26
 msgid "User group"
 msgstr "用户组"
@@ -1830,8 +1830,8 @@ msgstr ""
 
 #: perms/models.py:37 perms/models.py:80
 #: perms/templates/perms/asset_permission_detail.html:90
-#: users/models/user.py:80 users/templates/users/user_detail.html:103
-#: users/templates/users/user_profile.html:108
+#: users/models/user.py:87 users/templates/users/user_detail.html:107
+#: users/templates/users/user_profile.html:112
 msgid "Date expired"
 msgstr "失效日期"
 
@@ -1868,7 +1868,7 @@ msgid "Add node to this permission"
 msgstr "添加节点"
 
 #: perms/templates/perms/asset_permission_asset.html:125
-#: users/templates/users/user_detail.html:205
+#: users/templates/users/user_detail.html:209
 msgid "Join"
 msgstr "加入"
 
@@ -1965,7 +1965,7 @@ msgstr "文档"
 #: users/templates/users/user_profile.html:17
 #: users/templates/users/user_profile_update.html:37
 #: users/templates/users/user_profile_update.html:57
-#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:342
+#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:341
 msgid "Profile"
 msgstr "个人信息"
 
@@ -2022,9 +2022,9 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:284 users/views/login.py:342 users/views/user.py:65
+#: users/views/login.py:277 users/views/login.py:335 users/views/user.py:65
 #: users/views/user.py:80 users/views/user.py:102 users/views/user.py:173
-#: users/views/user.py:328 users/views/user.py:379 users/views/user.py:414
+#: users/views/user.py:328 users/views/user.py:378 users/views/user.py:413
 msgid "Users"
 msgstr "用户管理"
 
@@ -2338,7 +2338,7 @@ msgstr ""
 msgid "MFA code"
 msgstr "MFA 验证码"
 
-#: users/forms.py:49 users/models/user.py:52
+#: users/forms.py:49 users/models/user.py:59
 #: users/templates/users/_select_user_modal.html:15
 #: users/templates/users/user_detail.html:87
 #: users/templates/users/user_list.html:25
@@ -2358,7 +2358,7 @@ msgstr ""
 msgid "Paste user id_rsa.pub here."
 msgstr "复制用户公钥到这里"
 
-#: users/forms.py:72 users/templates/users/user_detail.html:196
+#: users/forms.py:72 users/templates/users/user_detail.html:200
 msgid "Join user groups"
 msgstr "添加到用户组"
 
@@ -2366,7 +2366,7 @@ msgstr "添加到用户组"
 msgid "Public key should not be the same as your old one."
 msgstr "不能和原来的密钥相同"
 
-#: users/forms.py:87 users/forms.py:220 users/serializers.py:45
+#: users/forms.py:87 users/forms.py:220 users/serializers.py:48
 msgid "Not a valid ssh public key"
 msgstr "ssh密钥不合法"
 
@@ -2383,7 +2383,7 @@ msgstr ""
 msgid "* Enable MFA authentication to make the account more secure."
 msgstr "* 启用MFA认证，使账号更加安全."
 
-#: users/forms.py:142 users/models/user.py:64
+#: users/forms.py:142 users/models/user.py:71
 #: users/templates/users/first_login.html:45
 msgid "MFA"
 msgstr "MFA"
@@ -2431,7 +2431,7 @@ msgstr "自动配置并下载SSH密钥"
 msgid "Paste your id_rsa.pub here."
 msgstr "复制你的公钥到这里"
 
-#: users/forms.py:231 users/models/user.py:72
+#: users/forms.py:231 users/models/user.py:79
 #: users/templates/users/first_login.html:42
 #: users/templates/users/user_password_update.html:45
 #: users/templates/users/user_profile.html:68
@@ -2464,43 +2464,49 @@ msgstr "Agent"
 msgid "Date login"
 msgstr "登录日期"
 
-#: users/models/user.py:29 users/models/user.py:326
+#: users/models/user.py:30 users/models/user.py:343
 msgid "Administrator"
 msgstr "管理员"
 
-#: users/models/user.py:31
+#: users/models/user.py:32
 msgid "Application"
 msgstr "应用程序"
 
-#: users/models/user.py:34 users/templates/users/user_profile.html:92
-#: users/templates/users/user_profile.html:159
-#: users/templates/users/user_profile.html:162
+#: users/models/user.py:35 users/templates/users/user_profile.html:92
+#: users/templates/users/user_profile.html:163
+#: users/templates/users/user_profile.html:166
 msgid "Disable"
 msgstr "禁用"
 
-#: users/models/user.py:35 users/templates/users/user_profile.html:90
-#: users/templates/users/user_profile.html:166
+#: users/models/user.py:36 users/templates/users/user_profile.html:90
+#: users/templates/users/user_profile.html:170
 msgid "Enable"
 msgstr "启用"
 
-#: users/models/user.py:36 users/templates/users/user_profile.html:88
+#: users/models/user.py:37 users/templates/users/user_profile.html:88
 msgid "Force enable"
 msgstr "强制启用"
 
-#: users/models/user.py:44 users/templates/users/user_detail.html:71
+#: users/models/user.py:51 users/templates/users/user_detail.html:71
 #: users/templates/users/user_profile.html:59
 msgid "Email"
 msgstr "邮件"
 
-#: users/models/user.py:55
+#: users/models/user.py:62
 msgid "Avatar"
 msgstr "头像"
 
-#: users/models/user.py:58 users/templates/users/user_detail.html:82
+#: users/models/user.py:65 users/templates/users/user_detail.html:82
 msgid "Wechat"
 msgstr "微信"
 
-#: users/models/user.py:329
+#: users/models/user.py:94 users/templates/users/user_detail.html:103
+#: users/templates/users/user_list.html:27
+#: users/templates/users/user_profile.html:100
+msgid "Source"
+msgstr "用户来源"
+
+#: users/models/user.py:346
 msgid "Administrator is the super user of system"
 msgstr "Administrator是初始的超级管理员"
 
@@ -2617,7 +2623,7 @@ msgid "Can't provide security? Please contact the administrator!"
 msgstr "如果不能提供MFA验证码，请联系管理员!"
 
 #: users/templates/users/reset_password.html:46
-#: users/templates/users/user_detail.html:348 users/utils.py:80
+#: users/templates/users/user_detail.html:352 users/utils.py:80
 msgid "Reset password"
 msgstr "重置密码"
 
@@ -2671,63 +2677,63 @@ msgstr "强制启用"
 msgid "Disabled"
 msgstr "禁用"
 
-#: users/templates/users/user_detail.html:115
-#: users/templates/users/user_profile.html:104
+#: users/templates/users/user_detail.html:119
+#: users/templates/users/user_profile.html:108
 msgid "Last login"
 msgstr "最后登录"
 
-#: users/templates/users/user_detail.html:151
+#: users/templates/users/user_detail.html:155
 msgid "Force enabled MFA"
 msgstr "强制启用MFA"
 
-#: users/templates/users/user_detail.html:166
+#: users/templates/users/user_detail.html:170
 msgid "Send reset password mail"
 msgstr "发送重置密码邮件"
 
-#: users/templates/users/user_detail.html:169
-#: users/templates/users/user_detail.html:177
+#: users/templates/users/user_detail.html:173
+#: users/templates/users/user_detail.html:181
 msgid "Send"
 msgstr "发送"
 
-#: users/templates/users/user_detail.html:174
+#: users/templates/users/user_detail.html:178
 msgid "Send reset ssh key mail"
 msgstr "发送重置密钥邮件"
 
-#: users/templates/users/user_detail.html:291
+#: users/templates/users/user_detail.html:295
 msgid "Goto profile page enable MFA"
 msgstr "请去个人信息页面启用自己的MFA"
 
-#: users/templates/users/user_detail.html:347
+#: users/templates/users/user_detail.html:351
 msgid "An e-mail has been sent to the user`s mailbox."
 msgstr "已发送邮件到用户邮箱"
 
-#: users/templates/users/user_detail.html:358
+#: users/templates/users/user_detail.html:362
 msgid "This will reset the user password and send a reset mail"
 msgstr "将失效用户当前密码，并发送重设密码邮件到用户邮箱"
 
-#: users/templates/users/user_detail.html:372
+#: users/templates/users/user_detail.html:376
 msgid ""
 "The reset-ssh-public-key E-mail has been sent successfully. Please inform "
 "the user to update his new ssh public key."
 msgstr "重设密钥邮件将会发送到用户邮箱"
 
-#: users/templates/users/user_detail.html:373
+#: users/templates/users/user_detail.html:377
 msgid "Reset SSH public key"
 msgstr "重置SSH密钥"
 
-#: users/templates/users/user_detail.html:383
+#: users/templates/users/user_detail.html:387
 msgid "This will reset the user public key and send a reset mail"
 msgstr "将会失效用户当前密钥，并发送重置邮件到用户邮箱"
 
-#: users/templates/users/user_detail.html:400
-#: users/templates/users/user_profile.html:207
+#: users/templates/users/user_detail.html:404
+#: users/templates/users/user_profile.html:211
 msgid "Successfully updated the SSH public key."
 msgstr "更新ssh密钥成功"
 
-#: users/templates/users/user_detail.html:401
 #: users/templates/users/user_detail.html:405
-#: users/templates/users/user_profile.html:208
-#: users/templates/users/user_profile.html:213
+#: users/templates/users/user_detail.html:409
+#: users/templates/users/user_profile.html:212
+#: users/templates/users/user_profile.html:217
 msgid "User SSH public key update"
 msgstr "ssh密钥"
 
@@ -2766,20 +2772,20 @@ msgstr "用户组删除"
 msgid "UserGroup Deleting failed."
 msgstr "用户组删除失败"
 
-#: users/templates/users/user_list.html:195
+#: users/templates/users/user_list.html:196
 msgid "This will delete the selected users !!!"
 msgstr "删除选中用户 !!!"
 
-#: users/templates/users/user_list.html:203
+#: users/templates/users/user_list.html:204
 msgid "User Deleted."
 msgstr "已被删除"
 
-#: users/templates/users/user_list.html:204
-#: users/templates/users/user_list.html:209
+#: users/templates/users/user_list.html:205
+#: users/templates/users/user_list.html:210
 msgid "User Delete"
 msgstr "删除"
 
-#: users/templates/users/user_list.html:208
+#: users/templates/users/user_list.html:209
 msgid "User Deleting failed."
 msgstr "用户删除失败"
 
@@ -2787,28 +2793,28 @@ msgstr "用户删除失败"
 msgid "Administrator Settings force MFA login"
 msgstr "管理员设置强制使用MFA登录"
 
-#: users/templates/users/user_profile.html:112 users/views/user.py:203
+#: users/templates/users/user_profile.html:116 users/views/user.py:203
 #: users/views/user.py:257
 msgid "User groups"
 msgstr "用户组"
 
-#: users/templates/users/user_profile.html:144
+#: users/templates/users/user_profile.html:148
 msgid "Update password"
 msgstr "更改密码"
 
-#: users/templates/users/user_profile.html:152
+#: users/templates/users/user_profile.html:156
 msgid "Update MFA settings"
 msgstr "更改MFA设置"
 
-#: users/templates/users/user_profile.html:173
+#: users/templates/users/user_profile.html:177
 msgid "Update SSH public key"
 msgstr "更改SSH密钥"
 
-#: users/templates/users/user_profile.html:181
+#: users/templates/users/user_profile.html:185
 msgid "Reset public key and download"
 msgstr "重置并下载SSH密钥"
 
-#: users/templates/users/user_profile.html:211
+#: users/templates/users/user_profile.html:215
 msgid "Failed to update SSH public key."
 msgstr "更新密钥失败"
 
@@ -2986,56 +2992,56 @@ msgstr "用户组授权资产"
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:135 users/views/user.py:499 users/views/user.py:524
+#: users/views/login.py:128 users/views/user.py:498 users/views/user.py:523
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
-#: users/views/login.py:161
+#: users/views/login.py:154
 msgid "Logout success"
 msgstr "退出登录成功"
 
-#: users/views/login.py:162
+#: users/views/login.py:155
 msgid "Logout success, return login page"
 msgstr "退出登录成功，返回到登录页面"
 
-#: users/views/login.py:178
+#: users/views/login.py:171
 msgid "Email address invalid, please input again"
 msgstr "邮箱地址错误，重新输入"
 
-#: users/views/login.py:191
+#: users/views/login.py:184
 msgid "Send reset password message"
 msgstr "发送重置密码邮件"
 
-#: users/views/login.py:192
+#: users/views/login.py:185
 msgid "Send reset password mail success, login your mail box and follow it "
 msgstr ""
 "发送重置邮件成功, 请登录邮箱查看, 按照提示操作 (如果没收到,请等待3-5分钟)"
 
-#: users/views/login.py:205
+#: users/views/login.py:198
 msgid "Reset password success"
 msgstr "重置密码成功"
 
-#: users/views/login.py:206
+#: users/views/login.py:199
 msgid "Reset password success, return to login page"
 msgstr "重置密码成功，返回到登录页面"
 
-#: users/views/login.py:227 users/views/login.py:240
+#: users/views/login.py:220 users/views/login.py:233
 msgid "Token invalid or expired"
 msgstr "Token错误或失效"
 
-#: users/views/login.py:236
+#: users/views/login.py:229
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:246 users/views/user.py:115 users/views/user.py:397
+#: users/views/login.py:239 users/views/user.py:115 users/views/user.py:396
 msgid "* Your password does not meet the requirements"
 msgstr "* 您的密码不符合要求"
 
-#: users/views/login.py:284
+#: users/views/login.py:277
 msgid "First login"
 msgstr "首次登陆"
 
-#: users/views/login.py:343
+#: users/views/login.py:336
 msgid "Login log list"
 msgstr "登录日志"
 
@@ -3051,34 +3057,34 @@ msgstr "文件不合法"
 msgid "User granted assets"
 msgstr "用户授权资产"
 
-#: users/views/user.py:361
+#: users/views/user.py:360
 msgid "Profile setting"
 msgstr "个人信息设置"
 
-#: users/views/user.py:380
+#: users/views/user.py:379
 msgid "Password update"
 msgstr "密码更新"
 
-#: users/views/user.py:415
+#: users/views/user.py:414
 msgid "Public key update"
 msgstr "密钥更新"
 
-#: users/views/user.py:456
+#: users/views/user.py:455
 msgid "Password invalid"
 msgstr "用户名或密码无效"
 
-#: users/views/user.py:550
+#: users/views/user.py:549
 msgid "MFA enable success"
 msgstr "MFA 绑定成功"
 
-#: users/views/user.py:551
+#: users/views/user.py:550
 msgid "MFA enable success, return login page"
 msgstr "MFA 绑定成功，返回到登录页面"
 
-#: users/views/user.py:553
+#: users/views/user.py:552
 msgid "MFA disable success"
 msgstr "MFA 解绑成功"
 
-#: users/views/user.py:554
+#: users/views/user.py:553
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"
diff --git a/apps/users/models/user.py b/apps/users/models/user.py
index fa01ba82c..d69151f55 100644
--- a/apps/users/models/user.py
+++ b/apps/users/models/user.py
@@ -36,6 +36,12 @@ class User(AbstractUser):
         (1, _('Enable')),
         (2, _("Force enable")),
     )
+    SOURCE_LOCAL = 'local'
+    SOURCE_LDAP = 'ldap'
+    SOURCE_CHOICES = (
+        (SOURCE_LOCAL, 'Local'),
+        (SOURCE_LDAP, 'LDAP/AD'),
+    )
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     username = models.CharField(
         max_length=128, unique=True, verbose_name=_('Username')
@@ -83,6 +89,10 @@ class User(AbstractUser):
     created_by = models.CharField(
         max_length=30, default='', verbose_name=_('Created by')
     )
+    source = models.CharField(
+        max_length=30, default=SOURCE_LOCAL, choices=SOURCE_CHOICES,
+        verbose_name=_('Source')
+    )
 
     def __str__(self):
         return '{0.name}({0.username})'.format(self)
@@ -259,7 +269,7 @@ class User(AbstractUser):
         return self.otp_level == 2
 
     def enable_otp(self):
-        if not self.otp_force_enabled:
+        if not self.otp_level == 2:
             self.otp_level = 1
 
     def force_enable_otp(self):
@@ -279,6 +289,7 @@ class User(AbstractUser):
             'is_superuser': self.is_superuser,
             'role': self.get_role_display(),
             'groups': [group.name for group in self.groups.all()],
+            'source': self.get_source_display(),
             'wechat': self.wechat,
             'phone': self.phone,
             'otp_level': self.otp_level,
diff --git a/apps/users/serializers.py b/apps/users/serializers.py
index f1347b0d5..d3f3eb73f 100644
--- a/apps/users/serializers.py
+++ b/apps/users/serializers.py
@@ -26,7 +26,10 @@ class UserSerializer(BulkSerializerMixin, serializers.ModelSerializer):
 
     def get_field_names(self, declared_fields, info):
         fields = super(UserSerializer, self).get_field_names(declared_fields, info)
-        fields.extend(['groups_display', 'get_role_display', 'is_valid'])
+        fields.extend([
+            'groups_display', 'get_role_display',
+            'get_source_display', 'is_valid'
+        ])
         return fields
 
     @staticmethod
diff --git a/apps/users/signals_handler.py b/apps/users/signals_handler.py
index 4c6afc663..bae5e37cd 100644
--- a/apps/users/signals_handler.py
+++ b/apps/users/signals_handler.py
@@ -2,6 +2,7 @@
 #
 
 from django.dispatch import receiver
+from django_auth_ldap.backend import populate_user
 # from django.db.models.signals import post_save
 
 from common.utils import get_logger
@@ -28,3 +29,11 @@ def on_user_create(sender, user=None, **kwargs):
     logger.info("   - Sending welcome mail ...".format(user.name))
     if user.email:
         send_user_created_mail(user)
+
+
+@receiver(populate_user)
+def on_ldap_create_user(sender, user, ldap_user, **kwargs):
+    if user:
+        user.source = user.SOURCE_LDAP
+        user.save()
+
diff --git a/apps/users/templates/users/user_detail.html b/apps/users/templates/users/user_detail.html
index 66bfa61e0..22ab4b5d4 100644
--- a/apps/users/templates/users/user_detail.html
+++ b/apps/users/templates/users/user_detail.html
@@ -99,6 +99,10 @@
                                                 {% endif %}
                                             </b></td>
                                         </tr>
+                                        <tr>
+                                            <td>{% trans 'Source' %}:</td>
+                                            <td><b>{{ user_object.get_source_display }}</b></td>
+                                        </tr>
                                         <tr>
                                             <td>{% trans 'Date expired' %}:</td>
                                             <td><b>{{ user_object.date_expired|date:"Y-m-j H:i:s" }}</b></td>
diff --git a/apps/users/templates/users/user_list.html b/apps/users/templates/users/user_list.html
index c7c9b8b28..052c5b7c0 100644
--- a/apps/users/templates/users/user_list.html
+++ b/apps/users/templates/users/user_list.html
@@ -24,6 +24,7 @@
             <th class="text-center">{% trans 'Username' %}</th>
             <th class="text-center">{% trans 'Role' %}</th>
             <th class="text-center">{% trans 'User group' %}</th>
+            <th class="text-center">{% trans 'Source' %}</th>
             <th class="text-center">{% trans 'Active' %}</th>
             <th class="text-center">{% trans 'Action' %}</th>
         </tr>
@@ -65,14 +66,14 @@ function initTable() {
                 var innerHtml = cellData.length > 20 ? cellData.substring(0, 20) + '...': cellData;
                 $(td).html('<span href="javascript:void(0);" data-toggle="tooltip" title="' + cellData + '">' + innerHtml + '</span>');
              }},
-            {targets: 5, createdCell: function (td, cellData) {
+            {targets: 6, createdCell: function (td, cellData) {
                 if (!cellData) {
                     $(td).html('<i class="fa fa-times text-danger"></i>')
                 } else {
                     $(td).html('<i class="fa fa-check text-navy"></i>')
                 }
              }},
-            {targets: 6, createdCell: function (td, cellData, rowData) {
+            {targets: 7, createdCell: function (td, cellData, rowData) {
                 var update_btn = '<a href="{% url "users:user-update" pk=DEFAULT_PK %}" class="btn btn-xs btn-info">{% trans "Update" %}</a>'.replace('00000000-0000-0000-0000-000000000000', cellData);
 
                 var del_btn = "";
@@ -90,7 +91,7 @@ function initTable() {
         ajax_url: '{% url "api-users:user-list" %}',
         columns: [
             {data: "id"}, {data: "name" }, {data: "username" }, {data: "get_role_display" },
-            {data: "groups_display" }, {data: "is_valid" }, {data: "id" }
+            {data: "groups_display" }, {data: "get_source_display" }, {data: "is_valid" }, {data: "id" }
         ],
         op_html: $('#actions').html()
     };
diff --git a/apps/users/templates/users/user_profile.html b/apps/users/templates/users/user_profile.html
index 50dabeabc..0109203df 100644
--- a/apps/users/templates/users/user_profile.html
+++ b/apps/users/templates/users/user_profile.html
@@ -96,6 +96,10 @@
                                                     {% endif %}
                                                 </td>
                                             </tr>
+                                            <tr>
+                                                <td class="text-navy">{% trans 'Source' %}</td>
+                                                <td>{{ user.get_source_display }}</td>
+                                            </tr>
                                             <tr>
                                                 <td class="text-navy">{% trans 'Date joined' %}</td>
                                                 <td>{{ user.date_joined|date:"Y-m-d H:i:s" }}</td>
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index c058b4402..feaf47e89 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -83,10 +83,10 @@ class UserLoginView(FormView):
         user = get_user_or_tmp_user(self.request)
 
         if user.otp_enabled and user.otp_secret_key:
-            # 1,2 & T
+            # 1,2,mfa_setting & T
             return reverse('users:login-otp')
         elif user.otp_enabled and not user.otp_secret_key:
-            # 1,2 & F
+            # 1,2,mfa_setting & F
             return reverse('users:user-otp-enable-authentication')
         elif not user.otp_enabled:
             # 0 & T,F

From 5f2c31e42c828eecc5cc9e58a4e89fecf51c9791 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Thu, 7 Jun 2018 12:29:55 +0800
Subject: [PATCH 080/112] =?UTF-8?q?[Update]=20=E9=87=8D=E7=BD=AE=E5=85=AC?=
 =?UTF-8?q?=E9=92=A5=EF=BC=8C=E6=B7=BB=E5=8A=A0=E6=88=90=E5=8A=9F=E4=BF=A1?=
 =?UTF-8?q?=E6=81=AF(user-pubkey-update)/=E8=87=AA=E5=8A=A8=E8=B7=B3?=
 =?UTF-8?q?=E8=BD=AC=E4=B8=8B=E4=B8=80=E6=AD=A5(first-login)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 34427 -> 34591 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            |  64 ++++++++++--------
 apps/users/templates/users/first_login.html   |  15 ++--
 .../templates/users/user_pubkey_update.html   |   7 +-
 4 files changed, 49 insertions(+), 37 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index ace72c44b090277540ec8b072d5da101656d52b4..7d2f547cd060a8f9bcb6920ecac28ce737ebe3df 100644
GIT binary patch
delta 9938
zcmXxq3w+My|Htv~J%(Xy#vEpLv)Rm?i6M;~hUFI<mE^b$a~hka2{&>|PWk54NfPCk
z98#_Porw-p`ceAnPlaWqqH;*8|LeW)=fB6}?s*+Q*XO#f@Auvw9{sr_X#KLFz_}Xb
zS2_G7202cB%nEm$3zWAuQmf-6w{V=r*b!&r5j^R0oSrR_dfnEJQwx8>7%bPuaqh)f
zWT-O&yWnzcg2&C9Six}uPE1>G;drdbfbK|#lV+x4b?Sq$9Oj@BorpDXF;>EtFbX$g
z6+C3^pP}}08a3|@mdD!dv|fNl3Sl(FVNJXTD`Q`C5OOHa2vj0@7>aW-9#>!@7GXYq
zkLft*9>>YRH_W@J_Wtc1Cm1(k3)XkGP*BESV+3AAEpQu^X@w5ngeq8-dN@|Y1{jIW
zQS*CPdw<lp;ixzhtbaOcV+&C8pT$53g;ywO!oN``QG`0mk5G4e5$oX{)Ya5V=J>Ea
zYT<UMz+JKI>QITNqfYK&)H*rX0Q0dGu1x0qHQ}%g_ylz{r%;)nLG_oSo{e8n&%iBI
zz&}w71b1|tI#?Uk-wM^=&b-g;ZKk81na4VE{*;|;{-cG~qZZnXy6bJIf%}jL-Z_Ta
z*)3F}cTqbJ>g3f!QS&3rDC|W&7InhoP;sZB;w}tO(1aDJ9j~?eX4D;RLtV*UtcjnY
zj{E|aod_z>E!34coxKyOk6N$=>Z&@UP9y`h&QMhRz<3H8I34vmEkqsZ^H$%AT5!L$
ze~Q}iSyTe0s06Q}7Vz=%>x8PH;)bCTjJA3_DqdS;UcgDApn(0&A*czXQHkWD7Mg=P
zx~EZZ$vV`Py@d++j`bg~_7kXir%~~~Ma?TkC3qJ@^#1$!dQt*a(2tR*r?dlV;6tc|
zhM<ma6e`eU)WY*n3#`DVxX$WFP|wJ5)YYBDL@Y(csc|21_5S-Q=m--~i6o;k?~V$b
zhDu<d)rX)0XQ9T8Lj}x3Kh8$Y+hG0wMkV?-D$YKue~1Bfd_h5Xbru!q3hL-@qmI0C
zinmZb)VM~dlWB?du^sB}2cQ-nf;yor)Wi1#>e*U>kKsnt+vIfR{IyW4u3m=sqXPd6
z6(|F>;A5yA=b#qK#ds`4epflKm>W^w^_$I)u@&{Js0E|DIZhw!hdPNh-2&bMFVmot
zcoRRsB2*$%?)Mgc92H;&DzUBRyQmY}huU#5D#7ni@vfk*^rqE)-MxA!Dt?^+1>Jo#
zYC;Rtjys`toQew250&vFRv(T^WE|=%Iv;gaPosV(tV6xuJ5cfVqv92#;{69TKX8_U
z2L50jH%zC8w_p`ie+_Ji4Y3?{$0$riU126FU;%1Fvrs3p9CcM2QP039*ci_u8xA<-
zdU_M8qju;=okRi#V_Vcy-VwFKZm7TmP!C@=Ho&<UgB#3)sH^xM%j1uzxYtl8a<{CV
z`w!{m4XlRRK^@eDhNz>8$6#!Y+Gz*W4*Os|d=!JQ0F~$ysClzd3q6C{`C8OTzKI&Q
z8!NHCbBKbD^i%8j95vxIYT+wb0k5GFyoCznq<Rl!b<{(cf;yRgsMl^JD$zo#FGg+P
zRcwUsU_gb_)^P`Q#8rEHcU#{~MkO-Pd=x8DAAvf798|*dFag(K9PUS*<VCE6m(5>M
z3IExf``4X>@KRR9TBrn~Q4^YD2)0KZX;)N#8n(e9s2wdsE%XZNt9BFW=y#jPP#ZXf
zA$SJ$_rk?KoWB<Siv}H4a9?jnk*FhYjXLUNRHCV<*Db^9IoO1H0c!lq_$Y3|vMWmS
ztd2^c0V=^bY>OQOHee#^y`6#0(8XvxfZEwP)H8Acwa_Kh4u8ff_$TTLDn8)tu$~!*
zI_efyzt`+#?ScLjbkxJlF{mS+jM~9$)Pl=VN4*+#Qg2{Y`~daP9Yrm4#@b7*{RS$*
zkbYi*wXiDnCdkGD&OH=#7oD&NW}v=U)}o%`cQ6!-QCD>amDqXnIx1o3U*6G%q52!6
z5^IOrU~kOD0XPK@V%gvSZ6EXobVl7#4^+l|QBU(js1ullN_0L}#+R*q3o5Z4SPkDt
zJrl=JS9cASzztNKzfp+=_vcyC`(KxW?z$yv;eM#29&C<B-R(>a!xg9_+<+Rt4fQbX
z#w7e1^_15e;2DQu)LWqDrC=yNfC26JQ3}d%gqefYspp{v&P4@SfeO3<mC&0Qj{DG$
zCr~@Sj(V7HqT+<6dq!h8_2#JWos@L$U$4U`8e(x8>JNk$a4O!$c$}C)_V^s?Xb+oL
zQCC!JAYaSa1^J8IDL`Gxc2q(|s4Lrp@8L1jRn8j3`RmTs4DtqUMtzsRiF)0(q59uO
z9rZ!f9UjLBJcYHe6!lH`H)@A<AM%bm32RVKMm@}Fs1waZ#hntMpgWn3I;y3p054g6
zJGQ01A8X=osDPCo_Qpq{5=%nO>wwyMA9Dce$_ArOA`>-!EGm(}R0`U`TvSGDQ2|~@
z?Pxpd=srPB_!6`6g0=T~#0xkOHGc#u;at=SZA8s4LOnx=P>G(zI(q+0C}`(@qcW>D
z*q&b0f^n$8ZLGZ;>IBkI2@XRAEJQ8%4C-NCk9xS@Ky7dvD$WtqdMC^Jx&I3kbf=e5
zJHLh+cpDY4B46kV7=^m3II}fs-hHUQjCvx!Mw~HN4|k&C6r;v{gHPdkYacy?*n0m9
zDD?C3eq$l^Pk9CAV$Y$D^C9gYVG;FZ!@ZsN8sYt=GZ>rFUWoescnwqW5b7_Z$|F4!
zPzm(FvXis=Fbt?8n}Qya38)=DZUdgO`eM`(uCe-C=5Ewc9<%yst6#MG@2L2`QJ$5|
z>Sp99?q3T=(;%CoGVEaXMI|;A<8Tb>{a=D3@Lf#7$V|_N%+=;ss01RjyuT5nQS01`
zy4pTjoWCBjp)_dVcr(u|L`|4&E;XM=?fiAC7g_xXD&bSse$M>Syln>a3Mp=l00mwH
zCkD0iWUHsyfGlgDV)c2bM4z?#TB~nD&EIP6`>`SQV$@&9KcnV_j`pl+2BIh^lSbCi
z67{sV$MTqB{XI|%3_vBEh2?N2YR7ZTXUtXRdaOYI7Ho$*tX_i53piIP=qPVmM};vg
zPCXPWU=K45l|Z`Hv&{)+K2D;4I%?cy)W+_bA!EIGk!Ez6+<zPe4NNkVQ3>@#?QD=a
z9F<TGYJth-Q>gi?t-cX8?>%cjU>-Nmpypqatnb{hhR_@@kRO#mb5x)%SP@gL{XuIV
zj%5j<5}0hxG#8s|Pz%0h^&;~Kmc9R9Si{$-fF-E6;wmbUJJw!#oVQT8*#I>@$!ueG
zM9u4J_5P>?A2zd4f8tFU$Nj6Y)CO)bci6xpRG=ePKV|*jV*>4^Ru3ERB~lypyPyH;
z>2HNvINkb(qkajE#t@t~p7YlZ=GeeRHgJ{sA}ZiU)P#3Y0r#VhwAk9eMa8*nUNdi@
z#{X?rnc&syn2iGzw8J*ma6c;0gI0gY>Y3P-_HkGlS6TZjs1tl0^`0Nbs(2nd;xDL^
zNSx>;oQCQjhT2eIycG&ii3CsyEJrQ08uh+!z#!ah?!^|=517ATSLzLT2jy@ajjy2M
zRm}Aku7;{d;X1wljjUmhc^JDf;1jD?o$O7B!0NQuLmhonYwv>EQ4e!~wGXp;w$<}c
z^9oTLTT&+Xzs3f<iVC#Fe9t^=o<N<%S=0`0TKzBUkDTHy5R2+>kBZj?D`8)&XP6_T
z-v5c#FddcQLeyP9kNS%J5X10e)SaEdP`rp5|Eu)}=Xw9M5{VjrFE+t`s2x9!`mHwy
zmEbB2D8m=6VT-xLEJFR>--p`yDf1_@LcZ4?gNl=k3f$A`51<krY-U>fM00vR_pb>H
ztznt@0@k4Y4b)El$Lht_|E+n|{KKp;)teWAdRF4G>?%-+bU`JWYV8B3a{hXKhFHTi
zbCx+DmB<o|#r3EFhpqhtYM~3L6Z#D!uxf$V?nkw^LY-tEYafn^lN+F*1ZJ3Pt>Yb3
z<_E3*5!RyqrPY5#z3;bC?|1FTz40AUJMC)rH3yo*Pz#SmZ7fhgK?^NHJ*CT00oI}h
zzKU9CyVXBKjsFG};JmfpFoULf{nb%%B2g#cxAu;xd0mmX0Vl&c@=yyFnhQ`z>zW%;
zfp(!1D8{GoBx>HnPk3gb`lq1gKY{IWk@fFKB~Xk_S>O4VLLC|^^S8Gq#+psd)~E%N
z&7P<L=~mB1y<U0dOmmUxq7r!-bt2o$_od$dL)K7?O5iKhf@jSu<}K91<)?f7waqwG
zduyxrKrJ}H>LXEcC!sc4fc(kfEW>~rZdpgzlU|02s0nRRiF7hk&4K1fbCUU_xd^*3
zZ<Tox6)${-7q1QmQ*S(j^ViWO(a;Rr+ki||Vw0`@G%CPq^CfG44fR&+ME$XP%-V}l
z<Nu2~neVLqH&k3_rk6<FnVi2G;%U&p6f@n-wt-KW^HG0ztVDf9@3!_5^H=j9tVVy;
zS>9Ddp%O|m+n`RiW55c%%nWk`YQjXTPc`SD-uGqJzXP>_BI`ea+Q?bdH|I5sK_44!
zfDN$`c167vflLa`DLju+_z^1LMO2`_P!ChsZ13N6{Meg%2keQnQBU<zRKh1vJ3EbQ
z@gmm5nRC4Mm8fy+k!K*_Y^I>!a$B(q?mz|HgBo}gmB4ZHtoaj`C5T!uY_2yh8r9w$
z)!x<YXFh6<DU;nzwT3yE$b@B9e;*a-L#uynmY@>)6_scZ-$Jq~D&a^o+KfXbl7xzv
zjGCW@W&i#^gn|NOp<atgsJokrT%R)^6`=e)&u~<L2G|K(paSQh;>@uA1?FnhTe8{e
zdr;$wvF!K%R}{3s1sib9>dt&`p-@zSXsfq1yQ2bSpym%nB{I(XXIlSKEJynqtG|Fc
zsZH~_e@)y<gZ#icj+)0&3!Jk0IZUEnf_iAf7kCeC3Tplkb1drND?rV!w$NL!4*IBn
z&Zj4ZAf@%A`&OeE-wpS8quRc&-I7KzT|$Gre<r-bkc)i&=JPvK7V-K2pDK)5NBciC
zY(V`y%cr8-EjG&6z#SU<aC97Fj?i|%`lG1(D3{RI*!?0l#&^cO9vk6Hbc5rP>ei-L
zKh^O$Tw=2l+&*y$zHi+raVfrNcV}E}-!=E+xR$;q?jLd8ec^7G#+~baW@8WG1?JWv
z##yZ8KHE4Uye_pDsqNsSpUUpXjiW*?*_<!jpBg8H-%`yoSW2;in;4(u3vvg=$JD)G
zBj@2D`ug&Dmrs3nX?*9ztF$&`=3yIk2g_4WWW+C&bulZ^=U$H=?z`*`NQm%-x!DP+
z!JpGw&)u02<NM0}g8%;DUQcM*yb*JMrl%UtVeUT4pYlngoQmJ`(N8g+cl$M|9r6vO
zXZW0OCpLM~SL$AF5|j9kjXH%PMADDG0QGZ>w(ZvcAGdYla$kviFfqn=+WkH;A|%2_
z|L*>knB=?eCN_Q0=XVR6Muq>uobUMT;Zu{(O?Ok%PeZ<>q@SPM!lbC^yH?ZxBXzHp
z)w`L`ZFgr<MB}rxR_1erPXwQy>gJ~$>(-^NpBnDvqz=BCZo_6NzT@u5X5DL@qbHUT
zz40m|^tW21`$4m|!IfwYcCR-}jsA<iqkNv`Gn$Wn{%iiPJE(bQ-*4`-%_BnMZHHCe
zx0-j4{*@7WJO9LLHo6yP@QK+K+G1|pBa^bH`6m~Qnvj#}AD><5A3HMNKPo$Wl0QFt
zsz1LVGc!9se{{iw35Cu4{U>CP%+K~`<xZP4A$Me!f9lw5e`ao8UUvTE+(}tElg9Wb
z=jA*;a%#2$wb->d{amGr9sI3ZcWT>uSMHF7vF(3Yz2nmJ^GfD#y}WW$NzvP-+xA`B
tyX}WXD@qox|7FjT((OeT-+!ib@7|K_AC&BVj**vMpTo#qH)buU_<y?_3IhND

delta 9763
zcmXxq34Bgx+Q;$pgh)byNJ2=nN@TMKv6hH6s?<8R2{qQzQMJ@kCzx8h>1q2~i;k&b
zrj{zIgI9}sZG$o+42oJ>HGPHJs%n1!oNMy=JoCNR>%Q*$KIch%IxF7{dh~jbd!b6%
z_Z)sQf*j{592n_1-%?(lqE_1LI?e*j#3K9@PX-*PaXq9S*1&OM@H{5s9c+nF4IPJ}
zPIqjDE@t2^^BR_;*{PJ{FI*Kv7?6W>I4#V!Sc!UPEQ9?}i4MXlI2A+j4UEJ0u>yW#
z?YmKXIe?mX1IuDaBdzB;PB?|iG(=-GreS$(Znj4b#p#Yp<avz1@mLFsFca6}%Xk8N
zVEe|7(-Rk)H&N|vnmA4{dRUkBoh1~M@&92Io<c3~9V*j%s0oiS90R$IQxPj-Rg6c?
zZ)ELlP~*Cx;taI@(Ws40Ld~CvZWx8PDQLn{)Jd#G9pz`JyFG<9@CNE?f}1){H4H~B
zoQeuuA4{(em3Uj!$#q1n(+?AHDAvbWO*wx}*kS`dN9}YUD)U3A{$kX#@eS%3xQ+_=
z18RZ07>gmz{Qe|Vf2vv6Y-+YeJu}ZV<NPT*z4;$4^cHHN_fdEK0czj|<bij#qjq*3
zmFP{>&Tm`&F=~F9=DroM1NA7>3HL|E9f68F*`=TfMW`Lmv-<m}JNf{1B_Crn?nWK?
zNi01PRG{mqE4zg{k?<D&f(fXr%0`_?K5Ct=sQB&x3d(FW>UElo3b4TH%TWt%wD!ND
zc6=0-Krt%8i>L)kP$%>V6<1#dN-zRduZoIS6Pf2a^(ZJ{8?y^)LLXEjg{XyILLJ={
z)LSwib!9710oPdnCTrh=ns)#d?-*)cF)G2E7^e5Xgn|-ygh^PAuPZ&J>8ODnPz!ZI
z9bFGppuwnxC!iK6!YrI`^-odH$S%~??Zr$iM#Twwnz(xZD^t)BRzoF{fyz7w6}SZ|
zfp%8!f(qOVHLgD@;PaS-<52S!S^rX0q93B-Y_R%Pbk*?%1>Mb2RG_n{qyG+d<UgYp
zD&N{4R|R!4iTD(zqV7HqwQv{I3H3rfd?QiMRuK+F5A`<PYR&m;p`<o`h7D1HpGF1B
zM<w<QYRCOh3l(B59EJR@a^5yQ)OY>+<_@e+{Tyn+h&+CeU@O!~%*}KC1>U4VC$S87
z;9687L)!Wa4@U(UgGy|<`6twgZ9wgKCn~|?sCZ{lS9;CrC02ioiXZCc`*$CKnvj6n
zaTaRFxu^iGP#Jf!dN))e{ZU`hLs3^X1@${&KI;8mg^ITk6>ldh-j}HP?okRF_)qJ&
zYTiOE_{jQ$+Br@#^++s(IT(kzs4MJ=3OEe)Fu#a85f^n;9_ktR9MkY9vSHV`LqQXs
zpcbs$-am<IsEli(9==S}4jZ5X=b;|H-k5;nF%cJ;n^9MB0?XpRP$zs5bs{%Q+qwUT
z6g2Qx)DA*B_!A;gM^zPrF&VYfbX3C4um%=j5Dr5nIubQ+9BQFysGZM4o%Ax)xb+yy
z`pzd5bfkZ?j{ikXIDlICESAHIs06R00^LGAluu9(VZDz2$+SYfcF&;_9cA^Ys13Y>
zDYyn*6%JU(4b&0;g1X!APQDqaMB14J7)rf6>IC|s5}ttRI2TiKBkJf+VJMz4FQXFv
zp%eG7J9$V$2nO?VDuD>pgm~1|)IuF;eN=x7Y=~V@JDP!7=xx+j?R%)BUvF+lZD1dU
z;UU!D3#U4B{#y9oH0Y@AqIOiSz(4Y2)KO=k63s=uZuwU4hZ)p|VL5yg`{R39dPU|F
zR00*d_z6a14)sizf(8yky|-hqHqOR)+=SZM-%-!VNz_88Q9HbV74Qet72HSdu>3Q=
z(Ws+NuzGE?iM6|JDCnr4HT$BDcrYrlai|4d)KSktoz!9s$91UJaT{u(L)Knw?N?C=
zK13xL+|{2Ki)_qw(kSRIvalWIqaMC_sHb=hM&M4=RUJYl_O*ElmGCXp-8;|v{V}M-
zQc)XhioeG^d<i#W>EHh~yZHmMQFqh`m2q>_)7$}d0xzNxorvY}O>19*N^BKY#6P2+
ziS4MXyNF8QDk{#8sKoAKjNbpS?*3gTq84t2I_l2m0MyZq#mZQO;kXDj{sYv*v>vnZ
z0+v1l&)GA8m1$2v&8vqI*b-gsxPXE(>~8kMO4Of64IGaOP=pG+2$j$>jKmF?gnLjs
zzJz+1uc6{RHY0lY<Kt1^JN0^S|GKjtG}OcqH~|-8E!4lC>Owl|Nc)&B>T3Rsxp*A;
z%i9U<<zGcxR3ZhatLlc^us`YwBYXQ-mDQW`*T7~p=sWyr)N7V!1KOjGxEJc~24fVC
zz!;o{`o36%k@#2C5%0z-co_8%UqGGYJ=8N&wvRt9%B7$qN<sywZ}qmAL%jz^;~Z4L
zW!Ap|mDq07yhEsm@SJ%CbyYV}8@z`a{|J>xNMC;gZVUxwl#L3|9JQmisG}Q%nlKWF
z;UsH6hYENdHUADO;h^96C)5NrzX0{@^hPB*9AohnWaF;0h=KyGMrHglYQgQO!27NJ
z6zT*npb{)W1q|=!FPMOOh#R6F>J}J-d8jyjQ71jz`X^yI)_0~;(9UP01};S1@lsU4
z4X8WaZtg=p3nx&25fx)+{27&4yZ(NhLe#hyaW+o0_J^qTLI?2AFgL*QP?$o)Z~5DJ
z78c`v+6N3`QR>Ns{?5-}BK4b?h2ew!?~PpSNWC}eFQOIZ=coiuW9i9Ry~KQgrT_ka
zLP0wW8{$u>imJz>jxfvWZOpEyqwH_>(N>>q^|`2p-!+$+ADZh>@iz_O{8iXRgEBm1
zo<}_kw=fldM!o-u&+`gmCv1)D%<s+2p?>=)R08Wze;aN>t#b@@wdYXJ*sY<iKk!!?
zG$HtRzTv0|QD%}^2etF&Rxhx6UsS>)to<c(hPlvOZ2k#j8UKk(K|4Qe4Hs;{eQPhv
zJEugdp%P5BdbZV@qUN`@_8yo_y%4qYnW%ZI%(dnQR9ttfHGGMB+7Dt`{MrVbMlEm!
zmGONngO!K-JB~IJ%nY+3mSbE?Y=rq%e+6|?E^?BtGv7LvU=uo4S^czm0hPd2t3NQG
znB_+BiqRi|8aExav$xFUSdRKSbCbEfw4eLmU0UD@P<LC5%J4h$HY&g`s0GT5^sS0o
zDAVdqQ1d!ldrxz)ITkg4s`-XweP@*o*n&!64=T`c48gP3e%ab@V`)OD1j>x^t!&1d
zS*QhbtzKaEMa};mx(e`uHN1j)EnHM0Z&>>Z)VMX~W^3PV?l+I1=AE?qx2SnH%=@T6
z?aGe!O&ZPpE0dNq$b8g<0#u;BRv%&g6EL0jX;%NExgPbqU^D9J-;0WK)%tIvehEFq
zFf9Lqzh3kUoWBOfSwn_d4;8QpYC<Q}xE`n@EwuLWsKlq6v&{vl@r%q4%)gkQp*FbR
zwT6G70$sNH_g24$S+qaK@|ZEkAD4qV%I2u|ybp%sL~Mq$P$#hymGA`&#}d?rel^|D
zv3@31Pzj`<7Rp4u?~O1ByPDmxF7=+~ENnx4vw0hbQ_ta@RJ^6Ag;!gB11_Py)vvow
zx8M5%`(Pd&gRH*N{0J-2{xNDNyR7{<D)4FZinW(m{ejhk$NBTZQ5#D%v#|8{e`5*?
z)Y9y1_A!T|PGTHtNAs=zw)L+=CAQ7_4_f<i45j_N)vuX%O#Le)T<?Db1qG;qy6ZZq
zuh`#UWgLjQv#}U~lTqVev;M`HMtz;tk6{M&i>MukjrV`+MWZ&5f!c6Abk)$(I`Yi|
z)bIW0P&*%C7MV-TPf&plqv8}>{To!mH_dz2uKzru@e!!;HD0#g|H;--7pu_G0=4sJ
ztzKyT<4xCm-CTm2_YqdY9jFBkq7pfdTKKHBUq`(?KfcWQYhd{azL91uDqtek#D=H<
zeXM;bYN1J}6PkljxYF9USo>boNuIOz+o(7}6a54#xmL(Vb#z1})XVAvFoya_tIt5a
z?+a1y_j=U$BdDF8G|!vY%@S1nN2ra3PV(ouaTN5Frl103qXsrcE!5WPLr@F7hzc;#
z+UJ??S^tNqIO|X+v&Gtvpyr)K#l7aYyH4<Af5C9GI_hX^nN3iEI-n9L#Mw9;mFNxg
zzV(-V#h+gRo6sMJ8rK7rKq2Za8;`L(f6fXD3cStSW$r^wJZu)D0$jEF1Jvsk%-`;^
zvKeRALT#i0>O}I)E@p43_rH*W5*USAaGd$7xd65B|5$y!x!v0LS^YF>!7En(2^BXm
z)jz>d<WB}C+3E|>jiup_6qMmk)P%24i5xZ0n%B*r%)m5%Ttzbu`Hve;hB+J+Z;kc;
z1%s)7hB~p`(>VXy6b{;ed#HrUO!osng$j^q*0=UtjG?_9>W|g_)?SDjKL&MTFI)Q@
zR9w&Mf3^CK>AC*EuW2Z~Tl0YptnjLzNG$3Pk2KW7)786_5LNoO(>t_Oq-7=Q@He1R
z*lq4do#hepjCswxgBtJ5@W+Li(Wn<Z8P%VU+CqW#51ql;DdllA=(}<@CgQu8fS+Ot
zp2RwM592VEM^1s-pyu~OB|ZkL;&kkU9=6AGsD~q^$WNp;YC}0ibS$ROhK6W7gX;JZ
zmGL9gZ3oTtf1QP51?u6bfU&4?DX0W8&1Pn2EKLv<cZ{`9vG)0{bu2g6ncK|0=5g~p
zW)kRz)uU(m3nZf!Xk_N05_%Su=x@!DsD#Ix?i4E&p#scBW&AEGz*^LI>vmM2J*X2o
zgu1fh$gMb+Q1b`#y(Y(^=1;}uxBwM*KPpbK-|sq?{ep8F^*#js!Jin58km6!*wAck
z{m)o^pw&mA=1;NuTjoksoQ<eBJ5Y&yRoc(}pRoboV;MT`Sp7cgr~<F~6GP1yEWL9x
z6SY8nt2f7N>UpS#b}Z_lU4}|vySWb+XV7qhf&z@5;|HFA0qV#2w5Je+H@sabiGiQI
z^C{H=r@gx=iLJtE-bT;&jQEz%V?IAopU3CFKjj&-g!U&itVaDT;#1Chu4Y^y-Wyx9
zZ+uP0?4xau_1B;tpnR3KRPR#F#K0LZkQx=p@M2Q4t5>C0KNay^eBEZ%^7^Hw2QGLs
zQ(Fg~^1eu|7WjYfOlrMAx)+v~AE@kgO>0s8sEz#+zh!PUVw}flZ*^LFWGuDi)Hd<a
zPndTmEiUYu%{lHpPRowGN9~EVyup}YuUW0^K)@STE3x`zYySiGrmuj{Rz7jwidro)
zf1ovq753VwhggPsCL?~Ntc!U^eO@5FFz}r>Bt0rn$(xwoG5GJaR`<S0PYnFSyTt!q
z^#U37>LfGw-}FS_Os4Ioe3(xc${q0{pa1?`@&;v83p-28LO#d5S2Lysu6qwN5;K3b
zQTjh4g%U|W2|msN+BRDM2`?}6t-uxUL}p^(pI%93R9F=oeaDN)$`0J}nq_qhBzp6+
z;vyd~=Nmpd`9$-%>ut?C9CnJ5er|g6v*Y3)S?z0VX=U|(#OJ>EMRru$Ia<r}*~ce}
zPkVLq6U4gJsp}`wdzhUYi1HfLZXGz{y;M6t<~%(qjOc_n8KEzZ81G>1oZt{z%X)!2
z9pitY?<+p@`3&cypJMZ0-mp3?0=K=@b)v%3Y=;%RU3K!~OBkV-^JlDRqdQ<vJ_%dm
h>&{Bu@=K31p&?C@8Z>F%IA_bb0ds3^S?azP@*gZ^!Hoa_

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index cc9ee531d..705f611dc 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-06-06 16:53+0800\n"
+"POT-Creation-Date: 2018-06-07 11:34+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -392,7 +392,7 @@ msgid "Default"
 msgstr "默认"
 
 #: assets/models/cluster.py:36 assets/models/label.py:13
-#: users/models/user.py:347
+#: users/models/user.py:343
 msgid "System"
 msgstr "系统"
 
@@ -432,9 +432,9 @@ msgstr "默认资产组"
 #: terminal/templates/terminal/command_list.html:72
 #: terminal/templates/terminal/session_list.html:33
 #: terminal/templates/terminal/session_list.html:71 users/forms.py:281
-#: users/models/user.py:31 users/models/user.py:335
+#: users/models/user.py:31 users/models/user.py:331
 #: users/templates/users/user_group_detail.html:78
-#: users/templates/users/user_group_list.html:13 users/views/user.py:359
+#: users/templates/users/user_group_list.html:13 users/views/user.py:362
 msgid "User"
 msgstr "用户"
 
@@ -1965,7 +1965,7 @@ msgstr "文档"
 #: users/templates/users/user_profile.html:17
 #: users/templates/users/user_profile_update.html:37
 #: users/templates/users/user_profile_update.html:57
-#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:341
+#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:344
 msgid "Profile"
 msgstr "个人信息"
 
@@ -2022,13 +2022,13 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:277 users/views/login.py:335 users/views/user.py:65
-#: users/views/user.py:80 users/views/user.py:102 users/views/user.py:173
-#: users/views/user.py:328 users/views/user.py:378 users/views/user.py:413
+#: users/views/login.py:277 users/views/login.py:335 users/views/user.py:66
+#: users/views/user.py:81 users/views/user.py:103 users/views/user.py:174
+#: users/views/user.py:329 users/views/user.py:381 users/views/user.py:416
 msgid "Users"
 msgstr "用户管理"
 
-#: templates/_nav.html:13 users/views/user.py:66
+#: templates/_nav.html:13 users/views/user.py:67
 msgid "User list"
 msgstr "用户列表"
 
@@ -2464,7 +2464,7 @@ msgstr "Agent"
 msgid "Date login"
 msgstr "登录日期"
 
-#: users/models/user.py:30 users/models/user.py:343
+#: users/models/user.py:30 users/models/user.py:339
 msgid "Administrator"
 msgstr "管理员"
 
@@ -2506,7 +2506,7 @@ msgstr "微信"
 msgid "Source"
 msgstr "用户来源"
 
-#: users/models/user.py:346
+#: users/models/user.py:342
 msgid "Administrator is the super user of system"
 msgstr "Administrator是初始的超级管理员"
 
@@ -2649,7 +2649,7 @@ msgid "Setting"
 msgstr "设置"
 
 #: users/templates/users/user_create.html:4
-#: users/templates/users/user_list.html:16 users/views/user.py:80
+#: users/templates/users/user_list.html:16 users/views/user.py:81
 msgid "Create user"
 msgstr "创建用户"
 
@@ -2658,7 +2658,7 @@ msgid "Reset link will be generated and sent to the user. "
 msgstr "生成重置密码连接，通过邮件发送给用户"
 
 #: users/templates/users/user_detail.html:19
-#: users/templates/users/user_granted_asset.html:18 users/views/user.py:174
+#: users/templates/users/user_granted_asset.html:18 users/views/user.py:175
 msgid "User detail"
 msgstr "用户详情"
 
@@ -2793,8 +2793,8 @@ msgstr "用户删除失败"
 msgid "Administrator Settings force MFA login"
 msgstr "管理员设置强制使用MFA登录"
 
-#: users/templates/users/user_profile.html:116 users/views/user.py:203
-#: users/views/user.py:257
+#: users/templates/users/user_profile.html:116 users/views/user.py:204
+#: users/views/user.py:258
 msgid "User groups"
 msgstr "用户组"
 
@@ -2834,7 +2834,13 @@ msgstr "更新密钥"
 msgid "Or reset by server"
 msgstr "或者重置并下载密钥"
 
-#: users/templates/users/user_update.html:4 users/views/user.py:103
+#: users/templates/users/user_pubkey_update.html:94
+msgid ""
+"The new public key has been set successfully, Please download the "
+"corresponding private key."
+msgstr "新的公钥已设置成功，请下载对应的私钥"
+
+#: users/templates/users/user_update.html:4 users/views/user.py:104
 msgid "Update user"
 msgstr "更新用户"
 
@@ -2992,7 +2998,7 @@ msgstr "用户组授权资产"
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:128 users/views/user.py:498 users/views/user.py:523
+#: users/views/login.py:128 users/views/user.py:501 users/views/user.py:526
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
@@ -3033,7 +3039,7 @@ msgstr "Token错误或失效"
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:239 users/views/user.py:115 users/views/user.py:396
+#: users/views/login.py:239 users/views/user.py:116 users/views/user.py:399
 msgid "* Your password does not meet the requirements"
 msgstr "* 您的密码不符合要求"
 
@@ -3045,46 +3051,46 @@ msgstr "首次登陆"
 msgid "Login log list"
 msgstr "登录日志"
 
-#: users/views/user.py:127
+#: users/views/user.py:128
 msgid "Bulk update user success"
 msgstr "批量更新用户成功"
 
-#: users/views/user.py:232
+#: users/views/user.py:233
 msgid "Invalid file."
 msgstr "文件不合法"
 
-#: users/views/user.py:329
+#: users/views/user.py:330
 msgid "User granted assets"
 msgstr "用户授权资产"
 
-#: users/views/user.py:360
+#: users/views/user.py:363
 msgid "Profile setting"
 msgstr "个人信息设置"
 
-#: users/views/user.py:379
+#: users/views/user.py:382
 msgid "Password update"
 msgstr "密码更新"
 
-#: users/views/user.py:414
+#: users/views/user.py:417
 msgid "Public key update"
 msgstr "密钥更新"
 
-#: users/views/user.py:455
+#: users/views/user.py:458
 msgid "Password invalid"
 msgstr "用户名或密码无效"
 
-#: users/views/user.py:549
+#: users/views/user.py:552
 msgid "MFA enable success"
 msgstr "MFA 绑定成功"
 
-#: users/views/user.py:550
+#: users/views/user.py:553
 msgid "MFA enable success, return login page"
 msgstr "MFA 绑定成功，返回到登录页面"
 
-#: users/views/user.py:552
+#: users/views/user.py:555
 msgid "MFA disable success"
 msgstr "MFA 解绑成功"
 
-#: users/views/user.py:553
+#: users/views/user.py:556
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"
diff --git a/apps/users/templates/users/first_login.html b/apps/users/templates/users/first_login.html
index 170bfdd32..9687949d1 100644
--- a/apps/users/templates/users/first_login.html
+++ b/apps/users/templates/users/first_login.html
@@ -122,10 +122,10 @@
 {% block custom_foot_js %}
 <script>
     $(document).on('click', ".fl_goto", function(){
-      var $form = $('#fl_form');
-      $('<input />', {'name': 'wizard_goto_step', 'value': $(this).data('goto'), 'type': 'hidden'}).appendTo($form);
-      $form.submit();
-      return false;
+        var $form = $('#fl_form');
+        $('<input />', {'name': 'wizard_goto_step', 'value': $(this).data('goto'), 'type': 'hidden'}).appendTo($form);
+        $form.submit();
+        return false;
     }).on('click', '#fl_submit', function(){
         var isFinish = $('#fl_submit').html() === "{% trans 'Finish' %}";
         var noChecked = !$('#acceptTerms').prop('checked');
@@ -137,9 +137,10 @@
             return false;
         }
     }).on('click', '#btn-reset-pubkey', function () {
-    var the_url = '{% url "users:user-pubkey-generate" %}';
-    window.open(the_url, "_blank")
-})
+        var the_url = '{% url "users:user-pubkey-generate" %}';
+        window.open(the_url, "_blank");
+        $('#fl_form').submit();
+    })
 
 </script>
 {% endblock %}
diff --git a/apps/users/templates/users/user_pubkey_update.html b/apps/users/templates/users/user_pubkey_update.html
index 82c4a3590..e90e51659 100644
--- a/apps/users/templates/users/user_pubkey_update.html
+++ b/apps/users/templates/users/user_pubkey_update.html
@@ -67,7 +67,7 @@
                                     <div class="form-group">
                                         <label class="control-label col-sm-2 col-lg-2" style="padding-top: 0">{% trans 'Or reset by server' %}</label>
                                         <div class=" col-sm-9 col-lg-9 ">
-                                            <a href="{% url 'users:user-pubkey-generate' %}">{% trans 'Reset' %}</a>
+                                            <a id="reset_pubkey" href="{% url 'users:user-pubkey-generate' %}">{% trans 'Reset' %}</a>
                                         </div>
                                     </div>
                                     <div class="hr-line-dashed"></div>
@@ -89,5 +89,10 @@
 {% block custom_foot_js %}
     <script src="{% static 'js/plugins/cropper/cropper.min.js' %}"></script>
     <script>
+    $(document).ready(function () {
+    }).on('click', '#reset_pubkey', function () {
+        var message = "{% trans 'The new public key has been set successfully, Please download the corresponding private key.' %}";
+        toastr.success(message)
+    })
     </script>
 {% endblock %}

From c6a8967376085f3d7eee2d0d643e12fd2ae24792 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Thu, 7 Jun 2018 12:52:40 +0800
Subject: [PATCH 081/112] =?UTF-8?q?[Update]=20=E5=88=A0=E9=99=A4=E5=A4=9A?=
 =?UTF-8?q?=E4=BD=99=E4=BB=A3=E7=A0=81?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../templates/common/security_setting.html    | 28 -------------------
 1 file changed, 28 deletions(-)

diff --git a/apps/common/templates/common/security_setting.html b/apps/common/templates/common/security_setting.html
index e84f5bc72..2260b76b9 100644
--- a/apps/common/templates/common/security_setting.html
+++ b/apps/common/templates/common/security_setting.html
@@ -83,33 +83,5 @@
 {% endblock %}
 {% block custom_foot_js %}
 <script>
-$(document).ready(function () {
-})
-.on("click", ".btn-test", function () {
-    var data = {};
-    var form = $("form").serializeArray();
-    $.each(form, function (i, field) {
-        data[field.name] = field.value;
-    });
-
-    var the_url = "{% url 'api-common:mail-testing' %}";
-
-    function error(message) {
-        toastr.error(message)
-    }
-
-    function success(message) {
-        toastr.success(message.msg)
-    }
-    APIUpdateAttr({
-        url: the_url,
-        body: JSON.stringify(data),
-        method: "POST",
-        flash_message: false,
-        success: success,
-        error: error
-    });
-
-})
 </script>
 {% endblock %}

From f4084c800abf25c440a8663801b842d788409b0b Mon Sep 17 00:00:00 2001
From: xiaodong <fuxiaodong@cashbus.com>
Date: Fri, 8 Jun 2018 16:15:26 +0800
Subject: [PATCH 082/112] =?UTF-8?q?[Bugfix]=20=E6=9B=B4=E6=96=B0=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E4=BF=A1=E6=81=AF=E6=97=B6=E4=B8=8D=E5=A1=AB=E5=AF=86?=
 =?UTF-8?q?=E7=A0=81=E4=B9=9F=E4=BC=9A=E8=A7=A6=E5=8F=91=E5=AF=86=E7=A0=81?=
 =?UTF-8?q?=E8=A7=84=E5=88=99=E9=AA=8C=E8=AF=81,=E5=AF=BC=E8=87=B4?=
 =?UTF-8?q?=E6=97=A0=E6=B3=95=E6=9B=B4=E6=96=B0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/views/user.py | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/apps/users/views/user.py b/apps/users/views/user.py
index 598726fc1..3adb1d156 100644
--- a/apps/users/views/user.py
+++ b/apps/users/views/user.py
@@ -109,12 +109,13 @@ class UserUpdateView(AdminUserRequiredMixin, SuccessMessageMixin, UpdateView):
 
     def form_valid(self, form):
         password = form.cleaned_data.get('password')
-        is_ok = check_password_rules(password)
-        if not is_ok:
-            form.add_error(
-                "password", _("* Your password does not meet the requirements")
-            )
-            return self.form_invalid(form)
+        if password:
+            is_ok = check_password_rules(password)
+            if not is_ok:
+                form.add_error(
+                    "password", _("* Your password does not meet the requirements")
+                )
+                return self.form_invalid(form)
 
         return super().form_valid(form)
 

From 221fae5875261d1c13df6fa72abd7adab42b1974 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Fri, 8 Jun 2018 16:34:15 +0800
Subject: [PATCH 083/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E5=A4=B1=E6=95=88=E6=97=A5=E6=9C=9F=E6=88=AA=E6=AD=A2?=
 =?UTF-8?q?=E5=90=8E=E8=BF=98=E5=8F=AF=E7=99=BB=E5=BD=95=E9=97=AE=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/forms.py | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/apps/users/forms.py b/apps/users/forms.py
index 06c544383..165694c3f 100644
--- a/apps/users/forms.py
+++ b/apps/users/forms.py
@@ -16,13 +16,14 @@ class UserLoginForm(AuthenticationForm):
         max_length=128, strip=False
     )
 
+    def confirm_login_allowed(self, user):
+        if not user.is_staff:
+            raise forms.ValidationError(
+                self.error_messages['inactive'],
+                code='inactive',)
 
-class UserLoginCaptchaForm(AuthenticationForm):
-    username = forms.CharField(label=_('Username'), max_length=100)
-    password = forms.CharField(
-        label=_('Password'), widget=forms.PasswordInput,
-        max_length=128, strip=False
-    )
+
+class UserLoginCaptchaForm(UserLoginForm):
     captcha = CaptchaField()
 
 

From 1ef582e9ace0f13ce801bc04c76d34061760a84d Mon Sep 17 00:00:00 2001
From: xiaodong <fuxiaodong@cashbus.com>
Date: Fri, 8 Jun 2018 16:39:16 +0800
Subject: [PATCH 084/112] =?UTF-8?q?[Update]=E5=88=A0=E9=99=A4=E7=A4=BA?=
 =?UTF-8?q?=E4=BE=8B=E9=85=8D=E7=BD=AE=E4=B8=AD=E6=9C=AA=E4=BD=BF=E7=94=A8?=
 =?UTF-8?q?=E7=9A=84BROKER=5FURL=E9=85=8D=E7=BD=AE?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 config_example.py | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/config_example.py b/config_example.py
index 45d4b00f3..0c8d87094 100644
--- a/config_example.py
+++ b/config_example.py
@@ -51,11 +51,6 @@ class Config:
     REDIS_HOST = '127.0.0.1'
     REDIS_PORT = 6379
     REDIS_PASSWORD = ''
-    BROKER_URL = 'redis://%(password)s%(host)s:%(port)s/3' % {
-        'password': REDIS_PASSWORD,
-        'host': REDIS_HOST,
-        'port': REDIS_PORT,
-    }
 
     def __init__(self):
         pass

From 5579d3f0ded5329059c35a21cc06d22bfdafc239 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 8 Jun 2018 18:28:15 +0800
Subject: [PATCH 085/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E5=A4=8D=E6=B5=8B?=
 =?UTF-8?q?=E8=AF=95=E7=BD=91=E5=85=B3=E8=BF=9E=E6=8E=A5known=5Fhost?=
 =?UTF-8?q?=E9=97=AE=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/utils.py  | 1 -
 apps/ops/inventory.py | 3 ++-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/assets/utils.py b/apps/assets/utils.py
index 367c5e5f7..cc4942ade 100644
--- a/apps/assets/utils.py
+++ b/apps/assets/utils.py
@@ -51,7 +51,6 @@ def test_gateway_connectability(gateway):
     client = paramiko.SSHClient()
     client.set_missing_host_key_policy(paramiko.AutoAddPolicy())
     proxy = paramiko.SSHClient()
-    proxy.load_host_keys(os.path.expanduser('~/.ssh/known_hosts'))
     proxy.set_missing_host_key_policy(paramiko.AutoAddPolicy())
 
     try:
diff --git a/apps/ops/inventory.py b/apps/ops/inventory.py
index 6230e8167..230af9dfe 100644
--- a/apps/ops/inventory.py
+++ b/apps/ops/inventory.py
@@ -86,6 +86,7 @@ class JMSInventory(BaseInventory):
         gateway = asset.domain.random_gateway()
         proxy_command_list = [
             "ssh", "-p", str(gateway.port),
+            "-o", "StrictHostKeyChecking=no",
             "{}@{}".format(gateway.username, gateway.ip),
             "-W", "%h:%p", "-q",
         ]
@@ -97,7 +98,7 @@ class JMSInventory(BaseInventory):
         if gateway.private_key:
             proxy_command_list.append("-i {}".format(gateway.private_key_file))
 
-        proxy_command = "'-o ProxyCommand={}'".format(
+        proxy_command = "'-o ProxyCommand={}".format(
             " ".join(proxy_command_list)
         )
         return {"ansible_ssh_common_args": proxy_command}

From dbc471c1957191d304a66cf370c71513dca31cff Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 8 Jun 2018 18:40:31 +0800
Subject: [PATCH 086/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E5=B0=8F?=
 =?UTF-8?q?=E9=94=99=E8=AF=AF?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/ops/inventory.py    |  2 +-
 apps/users/views/user.py | 15 ++++++++-------
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/apps/ops/inventory.py b/apps/ops/inventory.py
index 230af9dfe..b7d3ef487 100644
--- a/apps/ops/inventory.py
+++ b/apps/ops/inventory.py
@@ -98,7 +98,7 @@ class JMSInventory(BaseInventory):
         if gateway.private_key:
             proxy_command_list.append("-i {}".format(gateway.private_key_file))
 
-        proxy_command = "'-o ProxyCommand={}".format(
+        proxy_command = "'-o ProxyCommand={}'".format(
             " ".join(proxy_command_list)
         )
         return {"ansible_ssh_common_args": proxy_command}
diff --git a/apps/users/views/user.py b/apps/users/views/user.py
index 3adb1d156..094d2ced2 100644
--- a/apps/users/views/user.py
+++ b/apps/users/views/user.py
@@ -109,14 +109,15 @@ class UserUpdateView(AdminUserRequiredMixin, SuccessMessageMixin, UpdateView):
 
     def form_valid(self, form):
         password = form.cleaned_data.get('password')
-        if password:
-            is_ok = check_password_rules(password)
-            if not is_ok:
-                form.add_error(
-                    "password", _("* Your password does not meet the requirements")
-                )
-                return self.form_invalid(form)
+        if not password:
+            return super().form_valid(form)
 
+        is_ok = check_password_rules(password)
+        if not is_ok:
+            form.add_error(
+                "password", _("* Your password does not meet the requirements")
+            )
+            return self.form_invalid(form)
         return super().form_valid(form)
 
 

From a2f23e96819a755d5e2d31a3f43c5299b9681e6a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E6=A2=81=E5=BF=97=E8=89=B3?= <liangzhiyan@kyee.com.cn>
Date: Fri, 8 Jun 2018 11:01:07 +0800
Subject: [PATCH 087/112] =?UTF-8?q?=E6=96=B0=E5=A2=9ERedis=20DB=E9=85=8D?=
 =?UTF-8?q?=E7=BD=AE?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/jumpserver/settings.py |  6 ++++--
 config_example.py           | 24 +++++++++++++-----------
 2 files changed, 17 insertions(+), 13 deletions(-)

diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index 6fd9f0fdd..c8ed1505e 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -343,10 +343,11 @@ if AUTH_LDAP:
     AUTHENTICATION_BACKENDS.insert(0, AUTH_LDAP_BACKEND)
 
 # Celery using redis as broker
-CELERY_BROKER_URL = 'redis://:%(password)s@%(host)s:%(port)s/3' % {
+CELERY_BROKER_URL = 'redis://:%(password)s@%(host)s:%(port)s/%(db)s' % {
     'password': CONFIG.REDIS_PASSWORD if CONFIG.REDIS_PASSWORD else '',
     'host': CONFIG.REDIS_HOST or '127.0.0.1',
     'port': CONFIG.REDIS_PORT or 6379,
+    'db':CONFIG.REDIS_DB_CELERY_BROKER or 3,
 }
 CELERY_TASK_SERIALIZER = 'pickle'
 CELERY_RESULT_SERIALIZER = 'pickle'
@@ -367,10 +368,11 @@ CELERY_WORKER_HIJACK_ROOT_LOGGER = False
 CACHES = {
     'default': {
         'BACKEND': 'redis_cache.RedisCache',
-        'LOCATION': 'redis://:%(password)s@%(host)s:%(port)s/4' % {
+        'LOCATION': 'redis://:%(password)s@%(host)s:%(port)s/%(db)s' % {
             'password': CONFIG.REDIS_PASSWORD if CONFIG.REDIS_PASSWORD else '',
             'host': CONFIG.REDIS_HOST or '127.0.0.1',
             'port': CONFIG.REDIS_PORT or 6379,
+            'db':CONFIG.REDIS_DB_CACHE or 4,
         }
     }
 }
diff --git a/config_example.py b/config_example.py
index 0c8d87094..a96f0d7c9 100644
--- a/config_example.py
+++ b/config_example.py
@@ -21,10 +21,10 @@ class Config:
     ALLOWED_HOSTS = ['*']
 
     # Development env open this, when error occur display the full process track, Production disable it
-    DEBUG = True
+    DEBUG = os.environ.get("DEBUG") or True
 
     # DEBUG, INFO, WARNING, ERROR, CRITICAL can set. See https://docs.djangoproject.com/en/1.10/topics/logging/
-    LOG_LEVEL = 'DEBUG'
+    LOG_LEVEL = os.environ.get("LOG_LEVEL") or 'DEBUG'
     LOG_DIR = os.path.join(BASE_DIR, 'logs')
 
     # Database setting, Support sqlite3, mysql, postgres ....
@@ -35,12 +35,12 @@ class Config:
     DB_NAME = os.path.join(BASE_DIR, 'data', 'db.sqlite3')
 
     # MySQL or postgres setting like:
-    # DB_ENGINE = 'mysql'
-    # DB_HOST = '127.0.0.1'
-    # DB_PORT = 3306
-    # DB_USER = 'root'
-    # DB_PASSWORD = ''
-    # DB_NAME = 'jumpserver'
+    # DB_ENGINE = os.environ.get("DB_ENGINE") or 'mysql'
+    # DB_HOST = os.environ.get("DB_HOST") or '127.0.0.1'
+    # DB_PORT = os.environ.get("DB_PORT") or 3306
+    # DB_USER = os.environ.get("DB_USER") or 'jumpserver'
+    # DB_PASSWORD = os.environ.get("DB_PASSWORD") or 'weakPassword'
+    # DB_NAME = os.environ.get("DB_NAME") or 'jumpserver'
 
     # When Django start it will bind this host and port
     # ./manage.py runserver 127.0.0.1:8080
@@ -48,9 +48,11 @@ class Config:
     HTTP_LISTEN_PORT = 8080
 
     # Use Redis as broker for celery and web socket
-    REDIS_HOST = '127.0.0.1'
-    REDIS_PORT = 6379
-    REDIS_PASSWORD = ''
+    REDIS_HOST = os.environ.get("REDIS_HOST") or '127.0.0.1'
+    REDIS_PORT = os.environ.get("REDIS_PORT") or 6379
+    REDIS_PASSWORD = os.environ.get("REDIS_PASSWORD") or ''
+    REDIS_DB_CELERY = os.environ.get('REDIS_DB') or 3
+    REDIS_DB_CACHE = os.environ.get('REDIS_DB') or 4
 
     def __init__(self):
         pass

From 73f9f546208cfba7146d81fed2e64d675d4c059d Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Mon, 11 Jun 2018 11:23:32 +0800
Subject: [PATCH 088/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E7=89=88?=
 =?UTF-8?q?=E6=9C=AC=E5=8F=B7?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/__init__.py            | 2 +-
 apps/templates/_footer.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/__init__.py b/apps/__init__.py
index c6491d9fa..7e96164aa 100644
--- a/apps/__init__.py
+++ b/apps/__init__.py
@@ -2,4 +2,4 @@
 # -*- coding: utf-8 -*-
 #
 
-__version__ = "1.3.1"
+__version__ = "1.3.2"
diff --git a/apps/templates/_footer.html b/apps/templates/_footer.html
index 53f0bfa0f..c78f0da33 100644
--- a/apps/templates/_footer.html
+++ b/apps/templates/_footer.html
@@ -1,6 +1,6 @@
 <div class="footer fixed">
     <div class="pull-right">
-        Version <strong>1.3.1-{% include '_build.html' %}</strong> GPLv2.
+        Version <strong>1.3.2-{% include '_build.html' %}</strong> GPLv2.
         <!--<img style="display: none" src="http://www.jumpserver.org/img/evaluate_avatar1.jpg">-->
     </div>
     <div>

From dd07fa678f05d022da23cc1539cd93f6222effc3 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Mon, 11 Jun 2018 16:27:40 +0800
Subject: [PATCH 089/112] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0=E5=8A=9F?=
 =?UTF-8?q?=E8=83=BD=EF=BC=8C=E7=B3=BB=E7=BB=9F=E7=94=A8=E6=88=B7=E9=80=89?=
 =?UTF-8?q?=E6=8B=A9=E7=99=BB=E5=BD=95=E6=A8=A1=E5=BC=8F(=E8=87=AA?=
 =?UTF-8?q?=E5=8A=A8/=E6=89=8B=E5=8A=A8=E7=99=BB=E5=BD=95)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/forms/user.py                     |  21 +-
 apps/assets/models/base.py                    |   2 +-
 apps/assets/models/user.py                    |   8 +
 apps/assets/serializers/system_user.py        |   7 +
 .../assets/templates/assets/_system_user.html |  36 ++-
 .../templates/assets/system_user_detail.html  |   4 +
 .../templates/assets/system_user_list.html    |  11 +-
 .../templates/assets/system_user_update.html  |   1 -
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 34591 -> 35051 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            | 240 ++++++++++--------
 10 files changed, 208 insertions(+), 122 deletions(-)

diff --git a/apps/assets/forms/user.py b/apps/assets/forms/user.py
index 2295dc005..0bc4ff094 100644
--- a/apps/assets/forms/user.py
+++ b/apps/assets/forms/user.py
@@ -109,12 +109,24 @@ class SystemUserForm(PasswordAndKeyAuthForm):
         if not self.instance and not auto_generate:
             super().validate_password_key()
 
+    def is_valid(self):
+        validated = super().is_valid()
+        username = self.cleaned_data.get('username')
+        login_mode = self.cleaned_data.get('login_mode')
+        if login_mode == SystemUser.AUTO_LOGIN and not username:
+            self.add_error(
+                "username", _('* Automatic login mode,'
+                              ' must fill in the username.')
+            )
+            return False
+        return validated
+
     class Meta:
         model = SystemUser
         fields = [
             'name', 'username', 'protocol', 'auto_generate_key',
             'password', 'private_key_file', 'auto_push', 'sudo',
-            'comment', 'shell', 'priority',
+            'comment', 'shell', 'priority', 'login_mode',
         ]
         widgets = {
             'name': forms.TextInput(attrs={'placeholder': _('Name')}),
@@ -124,5 +136,8 @@ class SystemUserForm(PasswordAndKeyAuthForm):
             'name': '* required',
             'username': '* required',
             'auto_push': _('Auto push system user to asset'),
-            'priority': _('High level will be using login asset as default, if user was granted more than 2 system user'),
-        }
\ No newline at end of file
+            'priority': _('High level will be using login asset as default, '
+                          'if user was granted more than 2 system user'),
+            'login_mode': _('If you choose manual login mode, you do not '
+                            'need to fill in the username and password.')
+        }
diff --git a/apps/assets/models/base.py b/apps/assets/models/base.py
index cb9bb96ae..908e6b647 100644
--- a/apps/assets/models/base.py
+++ b/apps/assets/models/base.py
@@ -19,7 +19,7 @@ signer = get_signer()
 class AssetUser(models.Model):
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     name = models.CharField(max_length=128, unique=True, verbose_name=_('Name'))
-    username = models.CharField(max_length=32, verbose_name=_('Username'), validators=[alphanumeric])
+    username = models.CharField(max_length=32, blank=True, verbose_name=_('Username'), validators=[alphanumeric])
     _password = models.CharField(max_length=256, blank=True, null=True, verbose_name=_('Password'))
     _private_key = models.TextField(max_length=4096, blank=True, null=True, verbose_name=_('SSH private key'), validators=[private_key_validator, ])
     _public_key = models.TextField(max_length=4096, blank=True, verbose_name=_('SSH public key'))
diff --git a/apps/assets/models/user.py b/apps/assets/models/user.py
index bf31b8491..f835e387f 100644
--- a/apps/assets/models/user.py
+++ b/apps/assets/models/user.py
@@ -100,6 +100,13 @@ class SystemUser(AssetUser):
         (RDP_PROTOCOL, 'rdp'),
     )
 
+    AUTO_LOGIN = 'auto'
+    MANUAL_LOGIN = 'manual'
+    LOGIN_MODE_CHOICES = (
+        (AUTO_LOGIN, _('Automatic login')),
+        (MANUAL_LOGIN, _('Manually login'))
+    )
+
     nodes = models.ManyToManyField('assets.Node', blank=True, verbose_name=_("Nodes"))
     assets = models.ManyToManyField('assets.Asset', blank=True, verbose_name=_("Assets"))
     priority = models.IntegerField(default=10, verbose_name=_("Priority"))
@@ -107,6 +114,7 @@ class SystemUser(AssetUser):
     auto_push = models.BooleanField(default=True, verbose_name=_('Auto push'))
     sudo = models.TextField(default='/bin/whoami', verbose_name=_('Sudo'))
     shell = models.CharField(max_length=64,  default='/bin/bash', verbose_name=_('Shell'))
+    login_mode = models.CharField(choices=LOGIN_MODE_CHOICES, default=AUTO_LOGIN, max_length=10, verbose_name=_('Login mode'))
 
     def __str__(self):
         return '{0.name}({0.username})'.format(self)
diff --git a/apps/assets/serializers/system_user.py b/apps/assets/serializers/system_user.py
index 7abd09d29..9caf150b4 100644
--- a/apps/assets/serializers/system_user.py
+++ b/apps/assets/serializers/system_user.py
@@ -18,6 +18,13 @@ class SystemUserSerializer(serializers.ModelSerializer):
         model = SystemUser
         exclude = ('_password', '_private_key', '_public_key')
 
+    def get_field_names(self, declared_fields, info):
+        fields = super(SystemUserSerializer, self).get_field_names(declared_fields, info)
+        fields.extend([
+            'get_login_mode_display',
+        ])
+        return fields
+
     @staticmethod
     def get_unreachable_assets(obj):
         return obj.unreachable_assets
diff --git a/apps/assets/templates/assets/_system_user.html b/apps/assets/templates/assets/_system_user.html
index 314967d22..cf8539293 100644
--- a/apps/assets/templates/assets/_system_user.html
+++ b/apps/assets/templates/assets/_system_user.html
@@ -36,12 +36,13 @@
                             {% endif %}
                             <h3>{% trans 'Basic' %}</h3>
                             {% bootstrap_field form.name layout="horizontal" %}
+                            {% bootstrap_field form.login_mode layout="horizontal" %}
                             {% bootstrap_field form.username layout="horizontal" %}
                             {% bootstrap_field form.priority layout="horizontal" %}
                             {% bootstrap_field form.protocol layout="horizontal" %}
 
+                            <h3 id="auth_title_id">{% trans 'Auth' %}</h3>
                             {% block auth %}
-                            <h3>{% trans 'Auth' %}</h3>
                             <div class="auto-generate">
                                 <div class="form-group">
                                     <label for="{{ form.auto_generate_key.id_for_label }}" class="col-sm-2 control-label">{% trans 'Auto generate key' %}</label>
@@ -80,15 +81,22 @@
 {% endblock %}
 {% block custom_foot_js %}
 <script>
-var auto_generate_key = '#'+'{{ form.auto_generate_key.id_for_label }}';
 var protocol_id = '#' + '{{ form.protocol.id_for_label }}';
+var login_mode_id = '#' + '{{ form.login_mode.id_for_label }}';
+
+var auto_generate_key = '#'+'{{ form.auto_generate_key.id_for_label }}';
+var password_id = '#' + '{{ form.password.id_for_label }}';
 var private_key_id = '#' + '{{ form.private_key_file.id_for_label }}';
 var auto_push_id = '#' + '{{ form.auto_push.id_for_label }}';
 var sudo_id = '#' + '{{ form.sudo.id_for_label }}';
 var shell_id = '#' + '{{ form.shell.id_for_label }}';
+
 var need_change_field = [
     auto_generate_key, private_key_id, auto_push_id, sudo_id, shell_id
 ];
+var need_change_field_login_mode = [
+    auto_generate_key, private_key_id, auto_push_id, password_id
+];
 
 function protocolChange() {
     if ($(protocol_id + " option:selected").text() === 'rdp') {
@@ -97,6 +105,11 @@ function protocolChange() {
             $(value).closest('.form-group').addClass('hidden')
         });
     } else {
+        if($(login_mode_id).val() === 'manual'){
+            $(sudo_id).closest('.form-group').removeClass('hidden');
+            $(shell_id).closest('.form-group').removeClass('hidden');
+            return
+        }
         authFieldsDisplay();
         $.each(need_change_field, function (index, value) {
             $(value).closest('.form-group').removeClass('hidden')
@@ -111,18 +124,35 @@ function authFieldsDisplay() {
         $('.auth-fields').removeClass('hidden');
     }
 }
+function loginModeChange(){
+    if ($(login_mode_id).val() === 'manual'){
+        $('#auth_title_id').addClass('hidden');
+        $.each(need_change_field_login_mode, function(index, value){
+            $(value).closest('.form-group').addClass('hidden')
+        })
+    }
+    else if($(login_mode_id).val() === 'auto'){
+        $('#auth_title_id').removeClass('hidden');
+        protocolChange();
+        $(password_id).closest('.form-group').removeClass('hidden')
+    }
+}
 
 $(document).ready(function () {
     $('.select2').select2();
     authFieldsDisplay();
     protocolChange();
+    loginModeChange();
 })
 .on('change', protocol_id, function(){
     protocolChange();
 })
 .on('change', auto_generate_key, function(){
     authFieldsDisplay();
-});
+})
+.on('change', login_mode_id, function(){
+    loginModeChange();
+})
 
 </script>
 {% endblock %}
\ No newline at end of file
diff --git a/apps/assets/templates/assets/system_user_detail.html b/apps/assets/templates/assets/system_user_detail.html
index 9a7bc255a..b68bf2689 100644
--- a/apps/assets/templates/assets/system_user_detail.html
+++ b/apps/assets/templates/assets/system_user_detail.html
@@ -62,6 +62,10 @@
                                             <td>{% trans 'Username' %}:</td>
                                             <td><b>{{ system_user.username }}</b></td>
                                         </tr>
+                                        <tr>
+                                            <td>{% trans 'Login mode' %}:</td>
+                                            <td><b>{{ system_user.get_login_mode_display }}</b></td>
+                                        </tr>
                                         <tr>
                                             <td>{% trans 'Protocol' %}:</td>
                                             <td><b id="id_protocol_type">{{ system_user.protocol }}</b></td>
diff --git a/apps/assets/templates/assets/system_user_list.html b/apps/assets/templates/assets/system_user_list.html
index 3daa47a81..3fa887df6 100644
--- a/apps/assets/templates/assets/system_user_list.html
+++ b/apps/assets/templates/assets/system_user_list.html
@@ -26,6 +26,7 @@
         <th class="text-center">{% trans 'Name' %}</th>
         <th class="text-center">{% trans 'Username' %}</th>
         <th class="text-center">{% trans 'Protocol' %}</th>
+        <th class="text-center">{% trans 'Login mode' %}</th>
         <th class="text-center">{% trans 'Asset' %}</th>
         <th class="text-center">{% trans 'Reachable' %}</th>
         <th class="text-center">{% trans 'Unreachable' %}</th>
@@ -48,7 +49,7 @@ function initTable() {
                 var detail_btn = '<a href="{% url "assets:system-user-detail" pk=DEFAULT_PK %}">' + cellData + '</a>';
                 $(td).html(detail_btn.replace('{{ DEFAULT_PK }}', rowData.id));
             }},
-            {targets: 5, createdCell: function (td, cellData) {
+            {targets: 6, createdCell: function (td, cellData) {
                 var innerHtml = "";
                 if (cellData !== 0) {
                     innerHtml = "<span class='text-navy'>" + cellData + "</span>";
@@ -57,7 +58,7 @@ function initTable() {
                 }
                 $(td).html('<span href="javascript:void(0);" data-toggle="tooltip" title="' + cellData +'">' + innerHtml + '</span>');
             }},
-            {targets: 6, createdCell: function (td, cellData) {
+            {targets: 7, createdCell: function (td, cellData) {
                 var innerHtml = "";
                 if (cellData !== 0) {
                     innerHtml = "<span class='text-danger'>" + cellData + "</span>";
@@ -66,7 +67,7 @@ function initTable() {
                 }
                 $(td).html('<span href="javascript:void(0);" data-toggle="tooltip" title="' + cellData + '">' + innerHtml + '</span>');
             }},
-            {targets: 7, createdCell: function (td, cellData, rowData) {
+            {targets: 8, createdCell: function (td, cellData, rowData) {
                 var val = 0;
                 var innerHtml = "";
                 var total = rowData.assets_amount;
@@ -84,14 +85,14 @@ function initTable() {
                 $(td).html('<span href="javascript:void(0);" data-toggle="tooltip" title="' + cellData + '">' + innerHtml + '</span>');
 
             }},
-            {targets: 9, createdCell: function (td, cellData, rowData) {
+            {targets: 10, createdCell: function (td, cellData, rowData) {
                 var update_btn = '<a href="{% url "assets:system-user-update" pk=DEFAULT_PK %}" class="btn btn-xs m-l-xs btn-info">{% trans "Update" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
                 var del_btn = '<a class="btn btn-xs btn-danger m-l-xs btn_admin_user_delete" data-uid="{{ DEFAULT_PK }}">{% trans "Delete" %}</a>'.replace('{{ DEFAULT_PK }}', cellData);
                 $(td).html(update_btn + del_btn)
             }}],
         ajax_url: '{% url "api-assets:system-user-list" %}',
         columns: [
-            {data: "id" }, {data: "name" }, {data: "username" }, {data: "protocol"}, {data: "assets_amount" },
+            {data: "id" }, {data: "name" }, {data: "username" }, {data: "protocol"}, {data: "get_login_mode_display"}, {data: "assets_amount" },
             {data: "reachable_amount"}, {data: "unreachable_amount"}, {data: "id"}, {data: "comment" }, {data: "id" }
         ],
         op_html: $('#actions').html()
diff --git a/apps/assets/templates/assets/system_user_update.html b/apps/assets/templates/assets/system_user_update.html
index 7e1590db5..977c3ac31 100644
--- a/apps/assets/templates/assets/system_user_update.html
+++ b/apps/assets/templates/assets/system_user_update.html
@@ -4,7 +4,6 @@
 {% load bootstrap3 %}
 
 {% block auth %}
-    <h3>{% trans 'Auth' %}</h3>
     {% bootstrap_field form.password layout="horizontal" %}
     {% bootstrap_field form.private_key_file layout="horizontal" %}
     <div class="form-group">
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 7d2f547cd060a8f9bcb6920ecac28ce737ebe3df..df59e43d67e7b758c445eae254496702a7583bf4 100644
GIT binary patch
delta 12416
zcmZwN37k&l`^WJ!t6|1AW9()g>sZFVWh?s@vX-qFW~^hzG7}Se?E4atC9<^`5*pc~
zEG1+sqDWyZAw?*}|MPv$rI-Kf|39za<$Yh*xzByy=RW6oJk@X6EdT3s{JlSi2hMjm
zD)>82VVsfMac<FmR7_RJ*;>JIrr|amgN-XX&Ub!}vtN=gs_ZzCIH-!_MB{kmf6glY
zsEenNOPz?Sj#CdCVrd-X>UGj-1XDPHTEH31g7>Wc*bJ)XI60|@VE`6J_4i;n*255N
zi-oWYhGMGK$D;0O8tS@r80dH%=O7JDcocKt510q9VmAEO45{uoY>pFwT1ZLEj@7Xg
zHo`JE0Egi`Y>y!|9H#?zGuNZ)0W}>bi20qDX=sbOqgFf}BX9v~g0&ck+b{@sVHobi
z9C#e_;xDM{?^`|KIk#UpYMf})`SPe6tA$<-(3nP6?0_2hRn$%lKyBqnjKl?45Z9p|
z*#XRlM^OV`K@EJz&Ob&iJgAntbJ<Yy6viklRg3-CRyLtf2|J+%o@5<oqV9MB>JFCL
z`L(D=_9^OJ*p3=_7wQom!2I~5oxfw}@0)(L-TtAq*?(OaNkK19G}6Z@jao=A)I|MJ
z3mt;$Hx?`6G}Ik#M=f+WY6tdPehhW}Df4G+N`4u&)8)N&+<|MO25yPEpabfTyII~J
z^{9rR9?clkOF9R&^&g^dM^NKz$3nOlwIk<I6aI;MWRFod?#;`GR1<kn6I4KTtcUto
zwL}f@s^!V33CCG|7V3_dqZY6hwZIJ21p81sbObf-cc=ya;^toG8VwD24|SnG-x3-y
z!i+*)PzJS-DyWGXqaH~s)TgC8>X8jbjW^uRkGJ~UsOuJ^##@OI`uwk@p%v~%--=NS
zID#HLgL+#Zp!yYf-km54wR0s=3#f{kxEX4K4p<huTRs`}j=Y6>bnjppeg4<d&_E|q
zcW@E46ThJr@({K1;1}G1bD;X=vpfnla15$ndDM8-(Swap3yQb%gHQ`iMXv@LYlSK1
zJk+yVjv8nkYU_8Pw)|VvMCVZbGEqBo8w=xo)K2E9?@k<r+MyWK%U1{WZgr^7{&%O*
zhk`y%dr=eJL9H;Tfje++)E(qSO&E>3<5<*0Rj?G+MgHz`dYgSv-}(K`8CZ#YJ!-yR
z8hH8orID+l<FvrOs2$menrJI(A^UL~9!K5j^hWk9Q3Jh$THsgaQPj?zM&0>k)IuMi
z#tUrhKH6Mf8Y&dBLJS6yS3$i4HBslAqZZT=b?0%YccU+A!9y)iLoH+i>MMID>XEHN
z{T-2k`j{U?jpsc>Ljzt$4R`}Jz<pFlr-@t7X%;j~q9(3{>Q@tsVp9yjepm<-QIB*A
zYTU)B8(W3!jMv#jL(lF2>ZQ1aCDFgBd*`K56I4T8*a(BMBWh>5VG#C3y_ADccbtma
z`iZEQauG)1W{k#@K6(CkY3SKRHgmT=8Z~eU)D~5;dOcLXhNwGfW%W*|o$HEPNCN7P
z2ci}{8Vlkq^v86}f*)fx=65#H&_ugYJ8&3v$LBE%{*IdP9%^f!SUsS*+dmXFaTEq)
z2@Jt<=-WBeOWFwaQVv7y%vkj5^EjV|R=N(A??T<dDJ+Ip%}_ofs#id5aedS?Zfho@
z7Ba=0g(2kgP&=>`b%R?m1`oC1`In$^he9CcZ|Po8#4LqcaYfW4sfSsx1!@89P!q&q
zRvduYFa>qqi&bzoYT<iO^L&r`3O>`4{nyt2PC-6I-9gBU?tnQ^KP2*_Ca#RysamKz
zYKhwN1k_e1VknM8ef%a{z7$K7r=$9xz^-`4OT+h!TDdktEucMWg`Ke~4zlwrP@m%s
z7>i$H5&R2vXW^~gcO)NbqCyyk#V`~rq8>pV)Q)-ESfev$r_jst!R8xQpMcuxx#qj5
zEq)($1DjA2?nQ0&LDWv2MJ?ba>ZN;t*)c~OU)}2zrlAvMP%Es5T44*fgVP;#XZ=x+
zA_*JgWYo)d81>R#MGfq{<UXn#n1eL0SrT)SS3~V=V_%);--U)2&<}Noqc9mK;t;%x
zdiH(Wy62Nok7xvH!Ed78=4q%M_!PC!ZI}&DSp6JooJ**M-N4fN{6D0jJ1o)8ouCYA
zpem?^)k3{Ytx?aqH)`Usm>XxB%TPPF5p&@_)YhLw^}m2s@pmkT#oF`y^%At9Av>ck
z?1j2;7-~z$pze4UYKP{TOED+;hp2v=(Kj(_yptG?=P@_lMh^ydaBsL|2R{FLo6Azr
zKn=`xs0-pyUqHjq_mc^WldnbnZa9i57~9ePJ7fh`AU}ZmxZO8Bo!m#%0&7wqg8G@C
z-iiI!Gr34XkKj7$nf-yA@geG2e)_We%nqUY{fPQ5KacuKzF_Asqqh1k>Jj?A;y%I<
zj3h6N`rfF5y1~|78rtd}sI5xGe5ks%bOGvR`2f{#6KbcvL=AA<@{3rN{0`>9n9lBa
zby59aLM^NZ>bilb8~2X3#zfRJn~A!^1*i*_pcb+kbqAYK3p$J%;3w1_T}18NV^sgF
zUHDeSe5m?p)Ob@+*Uv*1>~&Vrh@kKTs^fLkOLPyl(ky&W=Enl4JE?*is3H1ZUetu0
zQ3Lm}dMav1y;u<EqQ+Z?nr}CTFu(I14ZYoGQFnL&HPGLv3A1!_&*wuu(;}!lFM;Y8
ziyE*F>eKNO>QQwz6HwO;Mg2lb!xs217S!iIlZFP;E3J+>aXjWl)fb~COvl!Ke7-S_
z{K>2QV;H8r#t&5Lk8lh5o}TWVzY*vD(wT{6sjo9nqrOK1da*mrXcVPU82g)(Pzzaw
z+QK!Ke{SwWZT%tCou0J%1<S9YcJiL(VZGgc1yDO$%JLe$*?$!pS)l`J;+|$-Gs#Rv
zO*qP&idx`1W;$wNJFx_Qh58=2jy*9?yyLupspe<#?7s?ktx%m;Rtrc){a74@n($rJ
zGhU5)*><A(9W;-dr&0aSn>WmVP&XRf$334Hl^6HY(2A?tiF#&B^A$7R9D@2ZyotK=
z1(vU|^Lwp+%<_vEOus)Yzi)Y9U-x=%C=IPR3X5Vn%Uh#%pet&CG;@qO8Fk$(%il%4
z{VOpL*V_3FsD*xxTKF*xz-!2jd!3tZ!?|zz^>cS56g6=qR>Q)Ux3lw|QCrx{>O-*x
zd79-L%q^$|?6Um0dD<t>|2&N(I$TC|?9|`AvwmhOY9ZsyspeaDeu4QuYC#(@D}HGn
zLS26nHU3%i7KSmu<3GSXkrT6$7ej4rtXa!!iW;DU*~d(?^D|HjScDoU9kXDD)puC^
z5c(E`UQKkChP-CpGXn;?6XrslFK$*s4N%YW#+J83-&ZkeA$_d=I_mn-<}|A>7|8S2
zK<`=M1Js2dTfP%@;a>9?79u}q{)4(cGSRg#s(*3RIF&4~kLuSNW3Z#;qY~MFofuC+
ze>qG;eF~Of816!yKZN>A=>%$PFIxR3hLQhex!)kSe+X*4oT&aqQT@uH9^rFVf6+@r
z6Ld1Wo4rvN3^0eA6U;fNJABXbPf+9RuzZi@N3ksRQ<x3?c+=G{47HQq2pamFS42(N
z25VtA)K1Jtt$2%_KZv@cAIx7-3%QOO_#tW{|77>`o*n(kOPOV`0(q>f*Xc&1K80!K
zA#6e(HkcO(+oJ~FhFahkmVb+j$iKHdX^7h|6&p|=W%(|1Kjx%<7=0f@U!CWFi-rci
zX9f&)2g-%2=d-*7hLe{=-Qn|Q3)BKTqWX6;`<bccIMg@bY*hc%%JunQZygR`IQdCb
zhpSe<g(2jREDsvyP84oNo3Ums45xon)U)q``pTVvxo`^V5iUY+b{eZ_=z@*bVIP(x
zKWX_xEKMGk;@)|6)ScGH2yBg7aGcfqS)OW+GRLES7feI##PSqA|7vWr!U^*_YJ$L2
zci`NpJU?pXCC!RfuVpqxEu@3xUCq9z8%#m%z+}r8rn3JUc&&BZYVJ2rSjY3Im*+NW
z0{_?Dg=9rtAAzcSP#>!p%Nv<3&334TbjIR1&`U!D%(fFtP!p|3?aXe}7N55I4XZ!G
zNa~Tp-TviJ<J3Vdpt%`u^)aXg&a`|U>U!@AD{Mi159~vI?k}P)2pZwuX_%SU^q6H)
z6IVmsSp(E{9Z@fBH`F7GNA*iW%`?)?z0P79y5J+!0H3%goG;BIcK#>SKo>AS-mrQQ
zKZSK&7;4~X)OgRMCTwE1N9}A6Ga2*q{yAP6x?mxW$7QGsi@)Jo33a|6YJkRA13TLJ
z>8J%PM19=Wq84}xb=@uVp7}3o{J@c@&wp+j8X!sqtc<=d7_)`h(d>a*$N<!iykSl-
zXPFC83s{L7H{IN9?nSRAK4yiB<{zl~zn143<xW@xHBfofz_n3#+5q|S<aD)suXz@=
zz`LmaPf*tfk9Lh1&Hk(4u|j#Xw%N?=i1p|fXD&kxcn)>_B@DtpQ9E}ZW6}Rj_k2av
zLhD-I33Yw1H`#wR`rC=YsE@^H)UVjLt-cV|?*r7%d~EgIsDTe#o@x1QRKHNhmr-VA
z)PftE?YuPfi{v%b%QMMNY&3V7hcE}{Potjw71V<6n~zZg2aRzJH>1s1RR3C**EhYb
zY3TFb71d!B>W;>v23&%=gLKqa=T3~qZ!rpQVlfOG>wYRKVtMjDSP18##@m1z=Nr@w
zoW;Dnf6fgW%_#(obN}9Ng?ee`q879SwUAY~5I0~RY{6$$_194S2BO}9p%{Q8Fce3j
z#+!obHy5>lMLyZKbSrE_-wII!pSAimtN&y5unF$@0%j?*s#)J`jb#|8tK}0=<Il1D
zeaZaJMjBetF4Rhon5R)IzF=N6|3EG9K5D?giSG6JP+z$*sBtP`5Y|RLy86g_>9j*#
ze++%U|Ig9T0)E5V_y9F<^-1nP%~9vuo4rt<lA)GQK~1<2HSkJvy`A4_`C-e?psv3*
ziRZ6@pV*0<lih)$Q3I7hEu;pjUkf|m1p~-?TizFg$%mk>8(~hg`do7nYN5+5Uo)Bg
zFGpb`1--TBP;YJM6nCH)vl{B<Yk(TyN7RIu&=0%vM|UEfwvHAq&WHFTv5s?Jt0PBc
zEbcb>_kSdR5d8LZMp$t!o}pF%^Wdxah|vE<ryIso<D=soB6<^V6VD#!IIrjYITj*x
z{A|8QyB4vIm`>>ZbN(PotHHqr_>N5e9AOvf2mD{;Ik5558hJr-9dn3(tbUvJY!x|X
z5S6G8B03U$fSgA-j%cS2ntzN>$N2)|tgUCQV*zoIsKN!j?7sg__#&3JiD^0?ac(kE
zn`llfqqYLy(MdbP$#W3p2p!vqd&GL(|7R56C0T>RtOKc2$J(!9XW|^SHdZT1`<6O!
z1hSayZqte2{5M2l@|MIPtLvLGC;bjuE`sQ{MEhUM234^U@sMah?L4uF_D@88+5@fM
zd**Z0pC03>^&|Ps3SW`ylhBG-L&P%qeLFYNu2<?EOH$0XGZOhL+IRG}PD60}GZ%c$
z+4qU_L<se6&z#H6^?AvYh^4+!_%~^Gz8ZOi&GQ27Fxq4F{0q}qWSwr|9HJf_ZV-!!
z`F2kKhVvm&#0Hs8+n@Gl^wH6Wd?dc*%N(aC`FFHy;L8NRx}2h@qayYv0{pfA9H)tQ
zDAXky)6R|;)j=mYRujv}b%fXg+>D>p)GJ%^I$k0!SYHqFW%}Ro8~Hsur(!mJ{;OGG
zBW`-;<Y8;~r{nLm>sdYx8xf@~*Fe7#1<BhH@wAI!86uJP$G8ETAm3NM<2LOhw0!qp
z!tSU!g&0l@C-kkTBZKy6x9R&YmezD~QrBO@Pmd?$Hwhh4jMoIiZQPG(f2|W7`Ka~5
z$Ml`z$Nb;Z7)l|P=w$=Y^c~MXlb4`Up1dWolPGEDs$-b7|F-M&)vV(r^}}w{IZAsV
z?S*)s*iAcB&!2x`;oKoIDe7oT<np!nUZ57lia#K)NqZa7p7u-DH$Uyo);E+|G<|d7
zb3|RMi{j*O5jyf=8j((v(DT1S@eq!~<(P~EFds6W?>NeziPZ8^=w-F3_ysi`(ZoL5
zb$l7$7dVQ12X438Q~sr~hjV+;8%N_4J987a5N}e8v6*wz)={2(8eS$6toAAGGsJB2
z!B!)6UL*X;uPfmwOB5pfsFh`$>MC+%=>6M7BP+#1L>Ag(==7}(_8q=L#Hcq%2ih;=
zVw{h6P)9>k?F0J54nM{$Mtkkk0v4d}OSp>oNbmp8G`bK^k9jnHc$(l<VgnZ~AokEc
zK@2Az*rcP)8F-dBM$F`V7A9|sH3=O@sOP8l^w_Tk^E;O~@hZ`Y=s{kdm_$1Wb^PM{
zldY$Am53&;5jwgPU;0}7Eos&;cbQY^`#Q0lT>lL52JNPV4$c4H@d?HC#6l_|R(+AY
zC++rFmUx?ZdQm~@DMT6WY9H!o#reX-hlGv<;xF2(h(KZqQPFpXUDoG+9t9m0%-pmi
ziCIK82L6D$hqjI~F3zviuF)=Pxp;w^j%Ij(_>_2_ycFK`o#C%v+HGiu62BAw=vJ~)
z3?}|1I#|bV&EodFN@8tl9*n?A#BusxA#}V#tfigH`VS+|O2iWHQ-6Y+t#2}(B(Fd;
z(^lrEu#)(aSWR>xzM}s0=s~WdFA+dHJChXgRrq0oXNgY4V4^MOcM+%T8hyXCAhHnG
ziJ`=wL{Y{_qrdkTlD`QZeX%O>fOaW5WWz{1*MRm?+Tpm7NTIzGqwIWZ+FNKJ$Bx7-
z+C_*0j5B~dmiAUWMFbL6iH3TW`f*|h@$~qH#^a}nnTJ6x(Edq-5Oays#BRb-aQuiX
z-KKMc_DG@<c`(=hi7SX>cK!tC_7dg%^YC)e(DA*CGr=#TMul4el^Ud`BoB&9>EGLv
znB2F2l4nqId_t^eQ0lN0PoMsYi5^NR{SrK>!xDxj#SKcRkWs8kT5z!2Ib+UqdqUcJ
zdiP6C9+u!46ql45m-xSiNlQ-k#3y@_l2bfM2?_C@l;r<+P)}S^yk~ISuwlcKhsIaP
zXw_i5f1uWp@uX3>UzkQsOtTqtH2ErTNaf0&%2jJut&wrI+tR?YS0}H@oVNPPq8*u^
z&%eBSMdr@gw|36R+&%HyiXE9N)@DvxbY<S^%Tu;wzBMyrM9)z{!EVotn+e-OUbr@9
z>gDO_m#0quza#v2Rp#6ond>KASw1#%%A!kKXI@(}=IV!I-H|hvC7tvS^39o%I3&_9
O?Aehr#tdDS=YIeSRQ&V+

delta 11980
zcmZA533LwE|Htu32#F-b79m0qYifxoiP8j#E!C1(N{S$s*!Qh?EVWc?Y1P`=s+3Z+
z(MDD6TQyWmOZA7=(%M?8wNzFA@6R*eoa6lGoUhmY-h1cXJ9lQD%yHul-<5NHJ?D$%
zU+8dD_jR1Im|4_uE>Yf8QMHZ}SIco`V?0jA19;NMagu8zdFdF(DT%*fdCXVWaT;MI
zq^pyGjd31U!(-+>EZ{gEr+lnCaTP2`hh|8FlVYY~5%SKM53^7U9fZYjHu~do499gC
zi2JPmIO<wXqt1JX`LR?z&F7(#LI@R6SOTBMLfG2ufNYABfm+CL492Ng1?OXR%)t@(
zGp1sPryVB^*PD+}^=<1rjvubUTFmckpr93>!QyxsHNgYaN((e_PYA>y@}gK6%V8+i
zM4g{x^=(o8x}(M!Xzk-s7d8WR{u}5Cps<R9PWS+|6FI1@Jc7Enm$3{!MBSQ_acm!!
zMNM1}HE<$&Zyjpksi>XngqkM{%i##DgKx&M|2kp6bvTOJnp3EipGCD_MLiq0P|v`9
z)PVn>Ch&`QoG>hfYOjN8uV+4Mwlq^w&&*5l>_26vH~(m&m8gl<q3-o&RL5P&1MeJ0
zUD<uqLLZ^7+_#~d2cym}ZiZuX@=B;3?vEOG3~Jn&9tt{PKI)2>SiTN*k2a%j$ro4x
zkE6Ey5_)$8HPC(3Epwi6ccd(8!dj?X^$co9(opksMUC$nKtUbHqh6<(s4ZP)`6kqa
zyRH5!)D@pYE#N9@fwxf;`0(;;hXPUKhM*Q0VR;qQc(KTN9w&i<25f7lqfY39TF4O8
zL{m^(_bTcwS&F)4AEE}_X6<{d{sij0)2Q(-pw7FBTHqrL(EIPh&yyAqh>;kIdP*Ch
zI(9@&l#bfEo~VI_q9%R?HNkwWflDnvfO<xbp>Ewttd3Vv;}m<AarOR3QqUGwMJ*%_
zwen`Dfm2WmXm5EsYT!&%zy7EJhhrp8MxD3X+CM-o^kdXGyDUG59yNSJLHFt$YM|?=
zt$%>p@<IvjL}gI@Dx!9#HkQSDsC(ZIHE}v>hcZzQ-&oYMH6LHXHK@1ANo4;uQJqA0
zg-uZdKaUzH4K?9Qs4LDwO*90n;5g)Om9xrRgZiysXMTxw$Zw)1jA-IGt*{MhCl)vH
zxD%|PLOZb$Kf@f<LWVVUCmxL&U;=7ko6Jv8JGKjT#kr^j{)8IuI_j3*v)redn+K!D
z5A#say^lbhPz!a%4N+Iz0yRJz)QVrUygO<k{ZT*BBT%>MRn*^vrKtCND{8#msPS@9
z<9&-d-*b+FI{sn}cTFeBoiGs9UJNT>1<Z%dFdSQ;ZecIffTK_sGzqmM^H8^H4eA*<
zik0yka={)aU$T2b5!4k%qIRMx`e7{UDUU~8VH4EA?NAS2Z!CvXu{^Fe_o8ma&zK)?
zpvJw8+L1@zdhUNfbGKt*)D?uGPN;y|sw(J*F{mqTfV#p~SO&YGFOEVjbS&z;$*755
zLtXh2)J|?h_1l5|%<t@@pe_B%8ooxIa2hr7bu56lQ473}8pvtkK9ogJ4`BjoXWF1%
zyB?^8j<b9=>H^-yint9uDx9{4ho~(MYU$qFvSu7=A??jB=ue)3+JP+8f?vU^xEP~w
zH)<y@qd#6V@1Pd^PfPB<?nwYIWkD>7T0jKqgqj$D^-)`zh-y#4x|oi-qPeJvR-t}s
z*P^z5hj|!v0jDqk&!WB;F1KR;HSxbxXsi5MyH^y7+VU9GR>z?h+5+{urCFYZ)yPMo
z`mew)xE8&)D8;o1Y60a?3yi{8jQ3cFL8$k30zQQcFar0WuIxPO8M%a-=vUMg{*Hn8
z59$^ae9pbXGG-KNt7}=_$ZT%)p0*UU)!od#s4X6fx`N553Fo1<dJ$@;)?*NUhI;4@
zp(Z+O^;fO_E^2`RZQKQx#31r&$c1^Frzz-OG{huKL;bKUK|RIWFc@=Dx9TivVHeFm
zPz!dRcegeK)m|C3uzIKqY>7j#9S+02=>7hWeZlSU4C)>wp;p`)^)z=x?Z70|LZ@RP
zTw(PaPz&3Ng>gITnK+EPb+=IqxQiO+F=}CcZF!dT{+FhpdtDnfaU0ZDcQyy0?(IYj
z!TG2yT#f3#8TByjz-as(^^})s=Ng3}<h4-eC15Z<haO#V7YbTohM9#$$cLjkPDKqc
zA2sl5)Pgo*QQU=*cmj3Bf1n=bd#G`OQ(YslD0xlP?@mH0_g}9=Pbw<m7}N*C+c***
zU=<vc#_I7c)Yk4dZ=!Bd$@cs#V`Jot+!=+sC0kGn%0b<-o%kspM%~Iu9oT=}v&9|U
zj_Xjr<r`72+h$bz$EdB|i@Jx$usEK=l6V#MOZXUdg{3>XTOEzX$m38Ca|&uld!fc1
z=Aoc_G8wg1b5H{;w|oo6lJCY6_$O*W|4wfIaMZ%0QRg*4U3n|B9qN{KM(so|RR4ac
zg?L6%&=pKYt!N2qfcH^Xv<0<wM^PtyhrRKV)wg=l9k4y>{0!8BhoE+74eI<H)HAdX
zwa}9oruY8}1zq`L)XEBXwx<_0VH9fMx>nx=wF4=r1$ILXI1V-8Yp92LCF<c`kGjCk
zsBsRU<~!+a=l)-!pnG}^b>+8F9Uq_uEXWVK1`J2tswguCb>6e6FQa7S&xq3(%iu?-
zadJ`pe#B{b(dzr8Gq&FUQ54$v@P6Ys@~?OWrebne$2my-5zHZ<+ugnL<{9pnPG_t^
z{W#R`$9vcU_o2Rw3iWWUidsMtdUww9Zs<`%Zwh)y2BNNTv~`$f`E1k{F1Gwba|dcG
z4_kiP^2?V0g&N<dr>nnN#0>4p{nvyMRLB~r6*e$iqZZZ`qp&aP{eK-Z@DohH&|a<`
z%|+(-s0D;(y5EQqsCgQpZf&bf_FoTKS1QzTfH~Y8hdN=hImcXvy7Koe&$0XfYQd+h
z{=9j^d|>+V3TfP89tyk$PI=Uo$620Y9Wt$cnB}ja7W#(eODtcDI)9VZ@5Tz`xu~z>
z-%;lU_i-&@dcrAaB^9lrHtK1wkNGjd+LKTdv_ma86Z7Fj)D=%LUo#h)E3p9W8?YX3
zwfqWlp2xXKL0fsx8VdAfa`Ip-fJtTwY5}R1_cjNbBXBV7<5B&tp)Tx^8PLxiFVu|i
z%KeX`ppMaI9BM(ys4MGWc1JBJ3pK$|a~kUWMV7BYo%gBL?=g>=XHn<>Dw*GTXcfU(
z?m&^K1=K_h)EEn53#)&@>bs+NL8t``H7A<0&Bdq*-?Kc&Jb>Q!{~N0~gBtJ(>aDnm
zTF67IFVx?isHj;E)j!&-YsRC_OSHT#YJr{1Ow=ddu>RbC73NsS4dzzsn1dSVfaRyG
z{b#I7{Z-3D2Dl3;h5B1i4)yfcK~0=$?cGs-g!*6rjv2uI>k6h=$63~Kq4^GKz%{57
zK0yt*8?~jmR(}CC&NcJ4c^}pPu^Bkf&BM&f9tyg`x>nH?HP8!|ceK10)}X#W7Q%&A
zzY4X3@1x%H{TPH7F&=NBcB1+qcfl#B_HL*P@(i%TDAYncs0GYJO|%I0zOP1K++lu!
zwaE9Fw=j{s9Pgm)j(u<yYP^C&+=&aL@^D<L_rIc5>@@dd6FMBVJZPwULUAlYeHql&
z*RcA=s4Ge`+gW`#%X?cs9Ch9})P=q7mHWTgI=qV-XoLBwx!*j2+KF?hE4XL*zt$c)
z%$=YTs=YpHyvFE{tu0S8Go;@CK~^yywZfUGd%X<x6MGOt@JrM^JBz`18P)%ewfhZs
z|7#@_)xQx|!#1cZ9*z2|HwCr8h3L@=-?54f=2kNY^>=?4>dH@<znKL_xb@{x<HVr`
zPPY6x)Pg&ky{vwaIerB9Unk78in-?7Sd9Ahs4My0@?2}bVBR$UHVce&&nu34R;r-)
zR-hKr7`4zAR^NUk`>)q0-73bIlg#O;g}jcHa3yMh{Z@YhHPI#14*iM6F=&)qABn23
zgWAbfR^J^p&JYg;EntGV#2U7tR=(HrBUqCBJIimN-uDNn_q)_+w|_k9N)yf2W_z<6
zYT|yV3-gSkpowOop3-@!0hXXTzKfb@i{-~r{eMIaaM9}Tn!aP)_9CcpLQy*qY4!1_
z^AeG9Jx-c63`b2k&YXeT+6Cqs)Iiy&1?1v1Jc&B5(^%I`RQoX0`D3v@&a(F1s0HL=
z4d!<)Pza-<5Z~T9v65NCj6qEhXC|WtNVU8->h&6KPBdqk3s4JLf!dMH=60#~f1g$4
zq89KyYQl5ob@M)I;{4;?_EKgPsy@c@B-DiMEboCDcQEQgM<Jga&Rq1U;=VP6yzH*9
zI_iX2)Iu7XEzI_24|A~jvN;PIbKXMpBx<~(6WsB_(2u<G1omHB7fr=eSl>GILM?2l
z<*%X!SY$4@`u9+8#Yd=*)x%bwi|YRaYG;13`ae<QIuqT6l%B}`tD*`O>X=}rn!T;#
zSaUk+!{bfVPxKC}zhd4o|HHzx2TgKsML23f(PmxL&c=JJ(A-QjGf*cCvV5dD1@*qq
zwf3#33&^qd6Q~P0hx+BbjpfmY3oVBgup%a+-U?4I3N<M#!*D!;8t^h|pnp*hQ^;iZ
z|8yd;C3yo(#>uFs`VeZtCs0>*8kgW@EP)fJxb<(M`mIEs0gtneg8s^F!a&@L8gM77
z;~~@nj+y7o-_W~2)Px~Z-F^|M`kJWvM6-?A#q8^qs~c$*Q?NQG%(Z+wYM_IbpE0kX
z7IX)-P+xw9WDsh>p=N{`g<427YP>kq`6=lA|NnFf8Xyz(S`0?ryOGH4bEcyP$p4CK
zQPcqCup!n$4V;A<XM(lQFc+cTl698vMD@!>@8AFLDQJRA*5S70&UAO8VAKE+mdBdS
zPy?l*&hLs^NPlaeXzg<_AN7kZe;c(^Yo~Mnb>b!}<Y(4!$UKIc;FRU(F`E1e>Y*(<
z!+mHIQ0J$c{ZJ3zDAf6dXSx%Hp%3}jL^1_m=67yTc#24+aucCrAF-Lb26z{btJ01H
zEKl7TVkB{t{08x?wcp0c)Cc>z|Jit*@@3*N@fU5gte*(<&}k_R|B<Xl9d8f?sqchI
zL{FkAkzwuSXbYemPOPSWqt#Er0mKFBbk*f3XIdMn_h?Jb$C7iFs6}}6A(?kXG4KJB
zJ$6z!xew(l)K#Xu!s_?h3HpWWX?15Ynh3M}OWLY)&YzfLbpt8?LGaDugiyE6hy8zs
zL`Nw)>nMV6;p=u%Rq`F=F$A~Id(7qETGp<L<-`T@GB_9OTH9pu?nD*xM)>6M9LY@m
zEY`Qq5w?KuX=wgL&)c-0Ca-P%o;JstM`$}nl(D=T<CLVVAG0Tq^CaD=Z%q7>*TDSV
zS3&v5L@<r(v8XL(IOVd$4(jU>{=`e<m599KR|+xI=N-qbybmu?8OB)Wuq3X1qTf);
zn%^lv;fx9#{DpK%)A1eLstS%m%IUM8avj`6tns$+zZjHtd}FqCQ|C+aG%M>zDxLh0
z<@eQ>F*!WW9R4lfCe9}`Od^I8*Qn>4(ut+~4=zDIfE-`?zKA*|Quh^JB`Oln6PKvd
z@d|dp*2E`7S<ah7-EN{c(Twou`t@J0kLYlnc!u%@q9CCoi+G*5NnU{g_FMf!%uimO
zwp)~g@J;lgt`FsG%G-z*l)oc%3?P<M$M>q!8NG-0zaa4v6|dpn-dcVMtwRp^7NQqX
znYwEPKYrdL()xrjY2ML_!XWCG5krVr@(&0<%7H{_$~%d?W5GMs{XG}SzNWDZ1I^BB
z!5YM;)aM=FQ{F(*k{E222XTm%f1y3p`hP~<8p{2MBUZ<s74K1uoDU?YBJ=&O-+;mt
zrckkqhOdYe$}R9`LPsuMBvw+^SBs9#F3ykCzeb!OJ|x~F`qDOyNTPfP`xE&k`Bc;~
zm2xPS)o(yMlA45$87|&GF#RYWq&|XpmZ(DhJCR8=CT3IjGI5otN}dn*5;}5SoQ?RO
z)t$lsE>?#=$8;R_P`SlAe2eXgr)l^?WsD%Y5uaNhir(Y-|Cj$p?TgfHxB6=2qbbkF
zxA87^!25WT_?*z;`M^#Xh6{)>L>(IRk#U9ccKjdl5s`O1q%eZE(?lZSOC%73iQ;yJ
ze^E}PUu`0ic$cV0%%fh%Dx$02!Z)b+!zycFCt@J6l9*2{CT0*lIH4ozsDvSSikL?E
z1nwsCj!0WXHS6EX+(n1KDgQ+5BueQ1-=olt&=;_dWke71yknRZ-lt9<7WuIR_O(96
zti1?%Z_3e@cg9}Sy>EFQA5s`^=Qh>-fAV;hB%Zo<IF`6&jd7So{aVXQnIGHv6|gGt
zo#nsbkMwC~{hHtkVj=a9tj|gGG_pkf))5cLrxR~dPO-LgSco`46ep6^nIj+DT$)@*
zG28MVD1Ss<QEx3;dpdb>B8tc$bVTX>FJUJ(q~p(2zD&#`+7N|^Cy%c5`Nk?L+Q7%~
zsFnB77H{oMs7tkaRlPv@UCUdW<MoBGn8x!|RAM15@g})H5la4+btHAZAmYd?U>CfH
z*~9`u#|wl%=lIzLIrN#eV0CnHo-tlRVgfbgF^u?@s7oxOZW4AO{-u0~c$Mfw==j0>
zAFd**6XS@>w5`XyV-SVMMCH5+EJ^t39s84xOP^>sOu33JGYE&0Z?pEF@PU;}ao$ME
z4R9;bk@7-o3nJI?9Nr=FQT_)DTYYm(Bg*@7xp|NIB07zt@;!XY$^Nv~t$f*M>W(gu
z-7S8*fA*lJ*}mD)$$>uE$<6nN`qya?857emHYPiy>+<~BXL`Ksmz~k~WB=?IhaUIM
PjvW!~lig<IiW2_^rU6R!

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 705f611dc..b5d9a5c56 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-06-07 11:34+0800\n"
+"POT-Creation-Date: 2018-06-11 13:36+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -29,10 +29,10 @@ msgstr ""
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
-#: assets/forms/asset.py:24 assets/models/asset.py:75 assets/models/user.py:103
+#: assets/forms/asset.py:24 assets/models/asset.py:75 assets/models/user.py:110
 #: assets/templates/assets/asset_detail.html:183
 #: assets/templates/assets/asset_detail.html:191
-#: assets/templates/assets/system_user_detail.html:175 perms/models.py:33
+#: assets/templates/assets/system_user_detail.html:179 perms/models.py:33
 msgid "Nodes"
 msgstr "节点管理"
 
@@ -103,7 +103,7 @@ msgstr "端口"
 #: assets/templates/assets/domain_detail.html:60
 #: assets/templates/assets/domain_list.html:15
 #: assets/templates/assets/label_list.html:16
-#: assets/templates/assets/system_user_list.html:29 audits/models.py:11
+#: assets/templates/assets/system_user_list.html:30 audits/models.py:11
 #: audits/templates/audits/ftp_log_list.html:41
 #: audits/templates/audits/ftp_log_list.html:72 perms/forms.py:37
 #: perms/models.py:32
@@ -118,7 +118,7 @@ msgstr "端口"
 msgid "Asset"
 msgstr "资产"
 
-#: assets/forms/domain.py:54 assets/forms/user.py:79 assets/forms/user.py:120
+#: assets/forms/domain.py:54 assets/forms/user.py:79 assets/forms/user.py:131
 #: assets/models/base.py:21 assets/models/cluster.py:18
 #: assets/models/domain.py:17 assets/models/group.py:20
 #: assets/models/label.py:17 assets/templates/assets/admin_user_detail.html:56
@@ -147,15 +147,15 @@ msgstr "资产"
 msgid "Name"
 msgstr "名称"
 
-#: assets/forms/domain.py:55 assets/forms/user.py:80 assets/forms/user.py:121
+#: assets/forms/domain.py:55 assets/forms/user.py:80 assets/forms/user.py:132
 #: assets/models/base.py:22 assets/templates/assets/admin_user_detail.html:60
 #: assets/templates/assets/admin_user_list.html:24
 #: assets/templates/assets/domain_gateway_list.html:60
 #: assets/templates/assets/system_user_detail.html:62
 #: assets/templates/assets/system_user_list.html:27
 #: perms/templates/perms/asset_permission_user.html:55 users/forms.py:13
-#: users/forms.py:21 users/forms.py:30 users/models/authentication.py:45
-#: users/models/user.py:47 users/templates/users/_select_user_modal.html:14
+#: users/forms.py:31 users/models/authentication.py:45 users/models/user.py:47
+#: users/templates/users/_select_user_modal.html:14
 #: users/templates/users/login.html:56
 #: users/templates/users/login_log_list.html:49
 #: users/templates/users/user_detail.html:67
@@ -169,7 +169,7 @@ msgid "Password or private key passphrase"
 msgstr "密码或密钥密码"
 
 #: assets/forms/user.py:25 assets/models/base.py:23 common/forms.py:113
-#: users/forms.py:15 users/forms.py:23 users/forms.py:32 users/forms.py:44
+#: users/forms.py:15 users/forms.py:33 users/forms.py:45
 #: users/templates/users/login.html:59
 #: users/templates/users/reset_password.html:53
 #: users/templates/users/user_create.html:10
@@ -192,16 +192,26 @@ msgstr "ssh密钥不合法"
 msgid "Password and private key file must be input one"
 msgstr "密码和私钥, 必须输入一个"
 
-#: assets/forms/user.py:126
+#: assets/forms/user.py:118
+msgid "* Automatic login mode, must fill in the username."
+msgstr "自动登录模式，必须填写用户名"
+
+#: assets/forms/user.py:137
 msgid "Auto push system user to asset"
 msgstr "自动推送系统用户到资产"
 
-#: assets/forms/user.py:127
+#: assets/forms/user.py:138
 msgid ""
 "High level will be using login asset as default, if user was granted more "
 "than 2 system user"
 msgstr "高优先级的系统用户将会作为默认登录用户"
 
+#: assets/forms/user.py:139
+msgid ""
+"If you choose manual login mode, you do not need to fill in the username and "
+"password."
+msgstr "如果选择手动登录模式，用户名和密码则不需要填写"
+
 #: assets/models/asset.py:63 assets/models/domain.py:43
 #: assets/templates/assets/_asset_list_modal.html:46
 #: assets/templates/assets/admin_user_assets.html:52
@@ -309,7 +319,7 @@ msgstr "标签管理"
 #: assets/templates/assets/admin_user_detail.html:68
 #: assets/templates/assets/asset_detail.html:117
 #: assets/templates/assets/domain_detail.html:72
-#: assets/templates/assets/system_user_detail.html:96
+#: assets/templates/assets/system_user_detail.html:100
 #: ops/templates/ops/adhoc_detail.html:86 perms/models.py:38 perms/models.py:81
 #: perms/templates/perms/asset_permission_detail.html:98
 #: users/models/user.py:90 users/templates/users/user_detail.html:111
@@ -320,7 +330,7 @@ msgstr "创建者"
 #: assets/models/domain.py:20 assets/models/group.py:22
 #: assets/models/label.py:23 assets/templates/assets/admin_user_detail.html:64
 #: assets/templates/assets/domain_detail.html:68
-#: assets/templates/assets/system_user_detail.html:92
+#: assets/templates/assets/system_user_detail.html:96
 #: ops/templates/ops/adhoc_detail.html:90 ops/templates/ops/task_detail.html:63
 #: perms/models.py:39 perms/models.py:82
 #: perms/templates/perms/asset_permission_detail.html:94
@@ -338,8 +348,8 @@ msgstr "创建日期"
 #: assets/templates/assets/domain_detail.html:76
 #: assets/templates/assets/domain_gateway_list.html:61
 #: assets/templates/assets/domain_list.html:17
-#: assets/templates/assets/system_user_detail.html:100
-#: assets/templates/assets/system_user_list.html:33 common/models.py:30
+#: assets/templates/assets/system_user_detail.html:104
+#: assets/templates/assets/system_user_list.html:34 common/models.py:30
 #: ops/models/adhoc.py:42 perms/models.py:40 perms/models.py:83
 #: perms/templates/perms/asset_permission_detail.html:102 terminal/models.py:26
 #: terminal/templates/terminal/terminal_detail.html:63 users/models/group.py:13
@@ -392,7 +402,7 @@ msgid "Default"
 msgstr "默认"
 
 #: assets/models/cluster.py:36 assets/models/label.py:13
-#: users/models/user.py:343
+#: users/models/user.py:345
 msgid "System"
 msgstr "系统"
 
@@ -404,9 +414,9 @@ msgstr "默认Cluster"
 msgid "Cluster"
 msgstr "集群"
 
-#: assets/models/domain.py:45 assets/models/user.py:106
+#: assets/models/domain.py:45 assets/models/user.py:113
 #: assets/templates/assets/domain_gateway_list.html:59
-#: assets/templates/assets/system_user_detail.html:66
+#: assets/templates/assets/system_user_detail.html:70
 #: assets/templates/assets/system_user_list.html:28
 #: terminal/templates/terminal/session_list.html:75
 msgid "Protocol"
@@ -431,10 +441,10 @@ msgstr "默认资产组"
 #: terminal/templates/terminal/command_list.html:32
 #: terminal/templates/terminal/command_list.html:72
 #: terminal/templates/terminal/session_list.html:33
-#: terminal/templates/terminal/session_list.html:71 users/forms.py:281
-#: users/models/user.py:31 users/models/user.py:331
+#: terminal/templates/terminal/session_list.html:71 users/forms.py:282
+#: users/models/user.py:31 users/models/user.py:333
 #: users/templates/users/user_group_detail.html:78
-#: users/templates/users/user_group_list.html:13 users/views/user.py:362
+#: users/templates/users/user_group_list.html:13 users/views/user.py:359
 msgid "User"
 msgstr "用户"
 
@@ -451,7 +461,15 @@ msgstr "分类"
 msgid "Key"
 msgstr ""
 
-#: assets/models/user.py:104
+#: assets/models/user.py:106
+msgid "Automatic login"
+msgstr "自动登录"
+
+#: assets/models/user.py:107
+msgid "Manually login"
+msgstr "手动登录"
+
+#: assets/models/user.py:111
 #: assets/templates/assets/_asset_group_bulk_update_modal.html:11
 #: assets/templates/assets/system_user_asset.html:21
 #: assets/views/admin_user.py:29 assets/views/admin_user.py:47
@@ -469,25 +487,30 @@ msgstr ""
 msgid "Assets"
 msgstr "资产管理"
 
-#: assets/models/user.py:105
+#: assets/models/user.py:112
 msgid "Priority"
 msgstr "优先级"
 
-#: assets/models/user.py:107 assets/templates/assets/_system_user.html:58
-#: assets/templates/assets/system_user_detail.html:118
-#: assets/templates/assets/system_user_update.html:11
+#: assets/models/user.py:114 assets/templates/assets/_system_user.html:59
+#: assets/templates/assets/system_user_detail.html:122
+#: assets/templates/assets/system_user_update.html:10
 msgid "Auto push"
 msgstr "自动推送"
 
-#: assets/models/user.py:108 assets/templates/assets/system_user_detail.html:70
+#: assets/models/user.py:115 assets/templates/assets/system_user_detail.html:74
 msgid "Sudo"
 msgstr "Sudo"
 
-#: assets/models/user.py:109 assets/templates/assets/system_user_detail.html:75
+#: assets/models/user.py:116 assets/templates/assets/system_user_detail.html:79
 msgid "Shell"
 msgstr "Shell"
 
-#: assets/models/user.py:149 audits/models.py:12
+#: assets/models/user.py:117 assets/templates/assets/system_user_detail.html:66
+#: assets/templates/assets/system_user_list.html:29
+msgid "Login mode"
+msgstr "登录模式"
+
+#: assets/models/user.py:157 audits/models.py:12
 #: audits/templates/audits/ftp_log_list.html:49
 #: audits/templates/audits/ftp_log_list.html:73 perms/forms.py:43
 #: perms/models.py:34 perms/models.py:78
@@ -604,16 +627,15 @@ msgstr "基本"
 #: assets/templates/assets/asset_create.html:25
 #: assets/templates/assets/asset_update.html:30
 #: assets/templates/assets/gateway_create_update.html:45
-#: assets/templates/assets/system_user_update.html:7
 #: users/templates/users/_user.html:21
 msgid "Auth"
 msgstr "认证"
 
-#: assets/templates/assets/_system_user.html:47
+#: assets/templates/assets/_system_user.html:48
 msgid "Auto generate key"
 msgstr "自动生成密钥"
 
-#: assets/templates/assets/_system_user.html:64
+#: assets/templates/assets/_system_user.html:65
 #: assets/templates/assets/asset_create.html:59
 #: assets/templates/assets/asset_update.html:63
 #: assets/templates/assets/gateway_create_update.html:53
@@ -622,7 +644,7 @@ msgstr "自动生成密钥"
 msgid "Other"
 msgstr "其它"
 
-#: assets/templates/assets/_system_user.html:70
+#: assets/templates/assets/_system_user.html:71
 #: assets/templates/assets/admin_user_create_update.html:45
 #: assets/templates/assets/asset_bulk_update.html:23
 #: assets/templates/assets/asset_create.html:66
@@ -647,7 +669,7 @@ msgstr "其它"
 msgid "Reset"
 msgstr "重置"
 
-#: assets/templates/assets/_system_user.html:71
+#: assets/templates/assets/_system_user.html:72
 #: assets/templates/assets/admin_user_create_update.html:46
 #: assets/templates/assets/asset_bulk_update.html:24
 #: assets/templates/assets/asset_create.html:67
@@ -702,14 +724,14 @@ msgstr "资产列表"
 #: assets/templates/assets/admin_user_assets.html:54
 #: assets/templates/assets/admin_user_list.html:26
 #: assets/templates/assets/system_user_asset.html:52
-#: assets/templates/assets/system_user_list.html:30
+#: assets/templates/assets/system_user_list.html:31
 #: users/templates/users/user_group_granted_asset.html:47
 msgid "Reachable"
 msgstr "可连接"
 
 #: assets/templates/assets/admin_user_assets.html:66
 #: assets/templates/assets/system_user_asset.html:64
-#: assets/templates/assets/system_user_detail.html:112
+#: assets/templates/assets/system_user_detail.html:116
 #: perms/templates/perms/asset_permission_detail.html:114
 msgid "Quick update"
 msgstr "快速更新"
@@ -722,7 +744,7 @@ msgstr "测试可连接性"
 #: assets/templates/assets/admin_user_assets.html:75
 #: assets/templates/assets/asset_detail.html:171
 #: assets/templates/assets/system_user_asset.html:81
-#: assets/templates/assets/system_user_detail.html:147
+#: assets/templates/assets/system_user_detail.html:151
 msgid "Test"
 msgstr "测试"
 
@@ -736,7 +758,7 @@ msgstr "测试"
 #: assets/templates/assets/domain_list.html:42
 #: assets/templates/assets/label_list.html:38
 #: assets/templates/assets/system_user_detail.html:26
-#: assets/templates/assets/system_user_list.html:88
+#: assets/templates/assets/system_user_list.html:89
 #: perms/templates/perms/asset_permission_detail.html:30
 #: perms/templates/perms/asset_permission_list.html:191
 #: terminal/templates/terminal/terminal_detail.html:16
@@ -760,7 +782,7 @@ msgstr "更新"
 #: assets/templates/assets/domain_list.html:43
 #: assets/templates/assets/label_list.html:39
 #: assets/templates/assets/system_user_detail.html:30
-#: assets/templates/assets/system_user_list.html:89
+#: assets/templates/assets/system_user_list.html:90
 #: ops/templates/ops/task_list.html:72
 #: perms/templates/perms/asset_permission_detail.html:34
 #: perms/templates/perms/asset_permission_list.html:192
@@ -785,8 +807,8 @@ msgstr "选择节点"
 #: assets/templates/assets/admin_user_detail.html:100
 #: assets/templates/assets/asset_detail.html:200
 #: assets/templates/assets/asset_list.html:638
-#: assets/templates/assets/system_user_detail.html:192
-#: assets/templates/assets/system_user_list.html:138 templates/_modal.html:22
+#: assets/templates/assets/system_user_detail.html:196
+#: assets/templates/assets/system_user_list.html:139 templates/_modal.html:22
 #: terminal/templates/terminal/session_detail.html:108
 #: users/templates/users/user_detail.html:366
 #: users/templates/users/user_detail.html:391
@@ -804,12 +826,12 @@ msgid "Create admin user"
 msgstr "创建管理用户"
 
 #: assets/templates/assets/admin_user_list.html:27
-#: assets/templates/assets/system_user_list.html:31
+#: assets/templates/assets/system_user_list.html:32
 msgid "Unreachable"
 msgstr "不可达"
 
 #: assets/templates/assets/admin_user_list.html:28
-#: assets/templates/assets/system_user_list.html:32
+#: assets/templates/assets/system_user_list.html:33
 #: ops/templates/ops/adhoc_history.html:54
 #: ops/templates/ops/task_history.html:60
 msgid "Ratio"
@@ -820,7 +842,7 @@ msgstr "比例"
 #: assets/templates/assets/domain_gateway_list.html:62
 #: assets/templates/assets/domain_list.html:18
 #: assets/templates/assets/label_list.html:17
-#: assets/templates/assets/system_user_list.html:34
+#: assets/templates/assets/system_user_list.html:35
 #: ops/templates/ops/adhoc_history.html:59 ops/templates/ops/task_adhoc.html:64
 #: ops/templates/ops/task_history.html:65 ops/templates/ops/task_list.html:42
 #: perms/templates/perms/asset_permission_list.html:60
@@ -978,7 +1000,7 @@ msgid "Have assets, cancel"
 msgstr "存在资产，不能删除"
 
 #: assets/templates/assets/asset_list.html:633
-#: assets/templates/assets/system_user_list.html:133
+#: assets/templates/assets/system_user_list.html:134
 #: users/templates/users/user_detail.html:361
 #: users/templates/users/user_detail.html:386
 #: users/templates/users/user_group_list.html:81
@@ -1053,17 +1075,17 @@ msgid "Assets of "
 msgstr "资产"
 
 #: assets/templates/assets/system_user_asset.html:70
-#: assets/templates/assets/system_user_detail.html:135
+#: assets/templates/assets/system_user_detail.html:139
 msgid "Push system user now"
 msgstr "立刻推送系统"
 
 #: assets/templates/assets/system_user_asset.html:73
-#: assets/templates/assets/system_user_detail.html:138
+#: assets/templates/assets/system_user_detail.html:142
 msgid "Push"
 msgstr "推送"
 
 #: assets/templates/assets/system_user_asset.html:78
-#: assets/templates/assets/system_user_detail.html:144
+#: assets/templates/assets/system_user_detail.html:148
 msgid "Test assets connective"
 msgstr "测试资产可连接性"
 
@@ -1075,28 +1097,28 @@ msgstr "任务已下发，查看ops任务列表"
 msgid "Task has been send, seen left assets status"
 msgstr "任务已下发，查看左侧资产状态"
 
-#: assets/templates/assets/system_user_detail.html:81
+#: assets/templates/assets/system_user_detail.html:85
 msgid "Home"
 msgstr "家目录"
 
-#: assets/templates/assets/system_user_detail.html:87
+#: assets/templates/assets/system_user_detail.html:91
 msgid "Uid"
 msgstr "Uid"
 
-#: assets/templates/assets/system_user_detail.html:153
-#: assets/templates/assets/system_user_detail.html:339
+#: assets/templates/assets/system_user_detail.html:157
+#: assets/templates/assets/system_user_detail.html:343
 msgid "Clear auth"
 msgstr "清除认证信息"
 
-#: assets/templates/assets/system_user_detail.html:156
+#: assets/templates/assets/system_user_detail.html:160
 msgid "Clear"
 msgstr "清除"
 
-#: assets/templates/assets/system_user_detail.html:183
+#: assets/templates/assets/system_user_detail.html:187
 msgid "Add to node"
 msgstr "添加到节点"
 
-#: assets/templates/assets/system_user_detail.html:339
+#: assets/templates/assets/system_user_detail.html:343
 msgid "success"
 msgstr "成功"
 
@@ -1105,20 +1127,20 @@ msgstr "成功"
 msgid "Create system user"
 msgstr "创建系统用户"
 
-#: assets/templates/assets/system_user_list.html:134
+#: assets/templates/assets/system_user_list.html:135
 msgid "This will delete the selected System Users !!!"
 msgstr "删除选择系统用户"
 
-#: assets/templates/assets/system_user_list.html:142
+#: assets/templates/assets/system_user_list.html:143
 msgid "System Users Deleted."
 msgstr "已被删除"
 
-#: assets/templates/assets/system_user_list.html:143
-#: assets/templates/assets/system_user_list.html:148
+#: assets/templates/assets/system_user_list.html:144
+#: assets/templates/assets/system_user_list.html:149
 msgid "System Users Delete"
 msgstr "删除系统用户"
 
-#: assets/templates/assets/system_user_list.html:147
+#: assets/templates/assets/system_user_list.html:148
 msgid "System Users Deleting failed."
 msgstr "系统用户删除失败"
 
@@ -1805,8 +1827,8 @@ msgstr "任务列表"
 msgid "Task run history"
 msgstr "执行历史"
 
-#: perms/forms.py:18 users/forms.py:238 users/forms.py:243 users/forms.py:255
-#: users/forms.py:285
+#: perms/forms.py:18 users/forms.py:239 users/forms.py:244 users/forms.py:256
+#: users/forms.py:286
 msgid "Select users"
 msgstr "选择用户"
 
@@ -1958,14 +1980,14 @@ msgstr "商业支持"
 msgid "Docs"
 msgstr "文档"
 
-#: templates/_header_bar.html:37 templates/_nav_user.html:9 users/forms.py:121
+#: templates/_header_bar.html:37 templates/_nav_user.html:9 users/forms.py:122
 #: users/templates/users/_user.html:39
 #: users/templates/users/first_login.html:39
 #: users/templates/users/user_password_update.html:39
 #: users/templates/users/user_profile.html:17
 #: users/templates/users/user_profile_update.html:37
 #: users/templates/users/user_profile_update.html:57
-#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:344
+#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:341
 msgid "Profile"
 msgstr "个人信息"
 
@@ -2022,13 +2044,13 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:277 users/views/login.py:335 users/views/user.py:66
-#: users/views/user.py:81 users/views/user.py:103 users/views/user.py:174
-#: users/views/user.py:329 users/views/user.py:381 users/views/user.py:416
+#: users/views/login.py:277 users/views/login.py:335 users/views/user.py:65
+#: users/views/user.py:80 users/views/user.py:102 users/views/user.py:173
+#: users/views/user.py:328 users/views/user.py:378 users/views/user.py:413
 msgid "Users"
 msgstr "用户管理"
 
-#: templates/_nav.html:13 users/views/user.py:67
+#: templates/_nav.html:13 users/views/user.py:66
 msgid "User list"
 msgstr "用户列表"
 
@@ -2334,11 +2356,11 @@ msgstr ""
 msgid "Invalid token or cache refreshed."
 msgstr ""
 
-#: users/forms.py:38
+#: users/forms.py:39
 msgid "MFA code"
 msgstr "MFA 验证码"
 
-#: users/forms.py:49 users/models/user.py:59
+#: users/forms.py:50 users/models/user.py:59
 #: users/templates/users/_select_user_modal.html:15
 #: users/templates/users/user_detail.html:87
 #: users/templates/users/user_list.html:25
@@ -2346,31 +2368,31 @@ msgstr "MFA 验证码"
 msgid "Role"
 msgstr "角色"
 
-#: users/forms.py:52 users/forms.py:201
+#: users/forms.py:53 users/forms.py:202
 msgid "ssh public key"
 msgstr "ssh公钥"
 
-#: users/forms.py:53 users/forms.py:202
+#: users/forms.py:54 users/forms.py:203
 msgid "ssh-rsa AAAA..."
 msgstr ""
 
-#: users/forms.py:54
+#: users/forms.py:55
 msgid "Paste user id_rsa.pub here."
 msgstr "复制用户公钥到这里"
 
-#: users/forms.py:72 users/templates/users/user_detail.html:200
+#: users/forms.py:73 users/templates/users/user_detail.html:200
 msgid "Join user groups"
 msgstr "添加到用户组"
 
-#: users/forms.py:83 users/forms.py:216
+#: users/forms.py:84 users/forms.py:217
 msgid "Public key should not be the same as your old one."
 msgstr "不能和原来的密钥相同"
 
-#: users/forms.py:87 users/forms.py:220 users/serializers.py:48
+#: users/forms.py:88 users/forms.py:221 users/serializers.py:48
 msgid "Not a valid ssh public key"
 msgstr "ssh密钥不合法"
 
-#: users/forms.py:127
+#: users/forms.py:128
 msgid ""
 "Tip: when enabled, you will enter the MFA binding process the next time you "
 "log in. you can also directly bind in \"personal information -> quick "
@@ -2379,16 +2401,16 @@ msgstr ""
 "提示：启用之后您将会在下次登录时进入MFA绑定流程；您也可以在（个人信息->快速修"
 "改->更改MFA设置）中直接绑定!"
 
-#: users/forms.py:137
+#: users/forms.py:138
 msgid "* Enable MFA authentication to make the account more secure."
 msgstr "* 启用MFA认证，使账号更加安全."
 
-#: users/forms.py:142 users/models/user.py:71
+#: users/forms.py:143 users/models/user.py:71
 #: users/templates/users/first_login.html:45
 msgid "MFA"
 msgstr "MFA"
 
-#: users/forms.py:147
+#: users/forms.py:148
 msgid ""
 "In order to protect you and your company, please keep your account, password "
 "and key sensitive information properly. (for example: setting complex "
@@ -2397,41 +2419,41 @@ msgstr ""
 "为了保护您和公司的安全，请妥善保管您的账户、密码和密钥等重要敏感信息；（如："
 "设置复杂密码，启用MFA认证）"
 
-#: users/forms.py:154 users/templates/users/first_login.html:48
+#: users/forms.py:155 users/templates/users/first_login.html:48
 #: users/templates/users/first_login.html:107
 #: users/templates/users/first_login.html:130
 msgid "Finish"
 msgstr "完成"
 
-#: users/forms.py:160
+#: users/forms.py:161
 msgid "Old password"
 msgstr "原来密码"
 
-#: users/forms.py:165
+#: users/forms.py:166
 msgid "New password"
 msgstr "新密码"
 
-#: users/forms.py:170
+#: users/forms.py:171
 msgid "Confirm password"
 msgstr "确认密码"
 
-#: users/forms.py:180
+#: users/forms.py:181
 msgid "Old password error"
 msgstr "原来密码错误"
 
-#: users/forms.py:188
+#: users/forms.py:189
 msgid "Password does not match"
 msgstr "密码不一致"
 
-#: users/forms.py:199
+#: users/forms.py:200
 msgid "Automatically configure and download the SSH key"
 msgstr "自动配置并下载SSH密钥"
 
-#: users/forms.py:203
+#: users/forms.py:204
 msgid "Paste your id_rsa.pub here."
 msgstr "复制你的公钥到这里"
 
-#: users/forms.py:231 users/models/user.py:79
+#: users/forms.py:232 users/models/user.py:79
 #: users/templates/users/first_login.html:42
 #: users/templates/users/user_password_update.html:45
 #: users/templates/users/user_profile.html:68
@@ -2464,7 +2486,7 @@ msgstr "Agent"
 msgid "Date login"
 msgstr "登录日期"
 
-#: users/models/user.py:30 users/models/user.py:339
+#: users/models/user.py:30 users/models/user.py:341
 msgid "Administrator"
 msgstr "管理员"
 
@@ -2506,7 +2528,7 @@ msgstr "微信"
 msgid "Source"
 msgstr "用户来源"
 
-#: users/models/user.py:342
+#: users/models/user.py:344
 msgid "Administrator is the super user of system"
 msgstr "Administrator是初始的超级管理员"
 
@@ -2649,7 +2671,7 @@ msgid "Setting"
 msgstr "设置"
 
 #: users/templates/users/user_create.html:4
-#: users/templates/users/user_list.html:16 users/views/user.py:81
+#: users/templates/users/user_list.html:16 users/views/user.py:80
 msgid "Create user"
 msgstr "创建用户"
 
@@ -2658,7 +2680,7 @@ msgid "Reset link will be generated and sent to the user. "
 msgstr "生成重置密码连接，通过邮件发送给用户"
 
 #: users/templates/users/user_detail.html:19
-#: users/templates/users/user_granted_asset.html:18 users/views/user.py:175
+#: users/templates/users/user_granted_asset.html:18 users/views/user.py:174
 msgid "User detail"
 msgstr "用户详情"
 
@@ -2793,8 +2815,8 @@ msgstr "用户删除失败"
 msgid "Administrator Settings force MFA login"
 msgstr "管理员设置强制使用MFA登录"
 
-#: users/templates/users/user_profile.html:116 users/views/user.py:204
-#: users/views/user.py:258
+#: users/templates/users/user_profile.html:116 users/views/user.py:203
+#: users/views/user.py:257
 msgid "User groups"
 msgstr "用户组"
 
@@ -2840,7 +2862,7 @@ msgid ""
 "corresponding private key."
 msgstr "新的公钥已设置成功，请下载对应的私钥"
 
-#: users/templates/users/user_update.html:4 users/views/user.py:104
+#: users/templates/users/user_update.html:4 users/views/user.py:103
 msgid "Update user"
 msgstr "更新用户"
 
@@ -2998,7 +3020,7 @@ msgstr "用户组授权资产"
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:128 users/views/user.py:501 users/views/user.py:526
+#: users/views/login.py:128 users/views/user.py:498 users/views/user.py:523
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
@@ -3039,7 +3061,7 @@ msgstr "Token错误或失效"
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:239 users/views/user.py:116 users/views/user.py:399
+#: users/views/login.py:239 users/views/user.py:115 users/views/user.py:396
 msgid "* Your password does not meet the requirements"
 msgstr "* 您的密码不符合要求"
 
@@ -3051,46 +3073,46 @@ msgstr "首次登陆"
 msgid "Login log list"
 msgstr "登录日志"
 
-#: users/views/user.py:128
+#: users/views/user.py:127
 msgid "Bulk update user success"
 msgstr "批量更新用户成功"
 
-#: users/views/user.py:233
+#: users/views/user.py:232
 msgid "Invalid file."
 msgstr "文件不合法"
 
-#: users/views/user.py:330
+#: users/views/user.py:329
 msgid "User granted assets"
 msgstr "用户授权资产"
 
-#: users/views/user.py:363
+#: users/views/user.py:360
 msgid "Profile setting"
 msgstr "个人信息设置"
 
-#: users/views/user.py:382
+#: users/views/user.py:379
 msgid "Password update"
 msgstr "密码更新"
 
-#: users/views/user.py:417
+#: users/views/user.py:414
 msgid "Public key update"
 msgstr "密钥更新"
 
-#: users/views/user.py:458
+#: users/views/user.py:455
 msgid "Password invalid"
 msgstr "用户名或密码无效"
 
-#: users/views/user.py:552
+#: users/views/user.py:549
 msgid "MFA enable success"
 msgstr "MFA 绑定成功"
 
-#: users/views/user.py:553
+#: users/views/user.py:550
 msgid "MFA enable success, return login page"
 msgstr "MFA 绑定成功，返回到登录页面"
 
-#: users/views/user.py:555
+#: users/views/user.py:552
 msgid "MFA disable success"
 msgstr "MFA 解绑成功"
 
-#: users/views/user.py:556
+#: users/views/user.py:553
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"

From f5a4370b80050de4e6dc744c26afe6aed5411a4e Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Mon, 11 Jun 2018 17:56:20 +0800
Subject: [PATCH 090/112] =?UTF-8?q?[Update]=20=E7=B3=BB=E7=BB=9F=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E9=80=89=E6=8B=A9=E6=89=8B=E5=8A=A8=E7=99=BB=E5=BD=95?=
 =?UTF-8?q?=EF=BC=8C=E5=8F=96=E6=B6=88=E8=87=AA=E5=8A=A8=E6=8E=A8=E9=80=81?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/forms/user.py | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/apps/assets/forms/user.py b/apps/assets/forms/user.py
index 0bc4ff094..c2a1d7b67 100644
--- a/apps/assets/forms/user.py
+++ b/apps/assets/forms/user.py
@@ -93,14 +93,20 @@ class SystemUserForm(PasswordAndKeyAuthForm):
         # Because we define custom field, so we need rewrite :method: `save`
         system_user = super().save()
         password = self.cleaned_data.get('password', '') or None
+        login_mode = self.cleaned_data.get('login_mode', '') or None
         auto_generate_key = self.cleaned_data.get('auto_generate_key', False)
         private_key, public_key = super().gen_keys()
 
+        if login_mode == SystemUser.MANUAL_LOGIN:
+            system_user.auto_push = 0
+            system_user.save()
+
         if auto_generate_key:
             logger.info('Auto generate key and set system user auth')
             system_user.auto_gen_auth()
         else:
             system_user.set_auth(password=password, private_key=private_key, public_key=public_key)
+
         return system_user
 
     def clean(self):

From 2e6d238c76110f9d17073febac78d3432a2e52ea Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Mon, 11 Jun 2018 19:09:24 +0800
Subject: [PATCH 091/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E7=B3=BB?=
 =?UTF-8?q?=E7=BB=9F=E7=94=A8=E6=88=B7=E9=80=89=E6=8B=A9=E6=89=8B=E5=8A=A8?=
 =?UTF-8?q?=E7=99=BB=E5=BD=95=EF=BC=8Cssh=E5=91=BD=E4=BB=A4=E8=A1=8C?=
 =?UTF-8?q?=E8=BF=9E=E6=8E=A5=E8=8E=B7=E5=8F=96=E4=B8=8D=E5=88=B0login=5Fm?=
 =?UTF-8?q?ode=E5=AD=97=E6=AE=B5=E5=80=BC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/serializers/system_user.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/apps/assets/serializers/system_user.py b/apps/assets/serializers/system_user.py
index 9caf150b4..7a4e3aadc 100644
--- a/apps/assets/serializers/system_user.py
+++ b/apps/assets/serializers/system_user.py
@@ -63,7 +63,10 @@ class AssetSystemUserSerializer(serializers.ModelSerializer):
     """
     class Meta:
         model = SystemUser
-        fields = ('id', 'name', 'username', 'priority', 'protocol',  'comment',)
+        fields = (
+            'id', 'name', 'username', 'priority',
+            'protocol',  'comment', 'login_mode'
+        )
 
 
 class SystemUserSimpleSerializer(serializers.ModelSerializer):

From 2950613b69e369e08c92920b451c268867ee8657 Mon Sep 17 00:00:00 2001
From: wojiushixiaobai <296015668@qq.com>
Date: Wed, 20 Jun 2018 15:58:01 +0800
Subject: [PATCH 092/112] =?UTF-8?q?=E4=BF=AE=E6=94=B9=E6=8F=90=E7=A4=BA?=
 =?UTF-8?q?=E6=96=87=E5=AD=97?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/templates/assets/admin_user_list.html |  5 +----
 apps/assets/templates/assets/domain_list.html     | 11 ++++++++---
 apps/static/js/jumpserver.js                      |  9 +++++----
 3 files changed, 14 insertions(+), 11 deletions(-)

diff --git a/apps/assets/templates/assets/admin_user_list.html b/apps/assets/templates/assets/admin_user_list.html
index bcb40fb29..15a870800 100644
--- a/apps/assets/templates/assets/admin_user_list.html
+++ b/apps/assets/templates/assets/admin_user_list.html
@@ -5,7 +5,7 @@
 
 {% block help_message %}
     <div class="alert alert-info help-message">
-    管理用户是服务器的root，或拥有 NOPASSWD: ALL sudo权限的用户，Jumpserver使用该用户来 `推送系统用户`、`获取资产硬件信息`等。
+    管理用户是资产（被控服务器）上的root，或拥有 NOPASSWD: ALL sudo权限的用户，Jumpserver使用该用户来 `推送系统用户`、`获取资产硬件信息`等。
     Windows或其它硬件可以随意设置一个
     </div>
 {% endblock %}
@@ -107,6 +107,3 @@ $(document).ready(function(){
 });
 </script>
 {% endblock %}
-
-
-
diff --git a/apps/assets/templates/assets/domain_list.html b/apps/assets/templates/assets/domain_list.html
index 926c4bbc3..a4042d57e 100644
--- a/apps/assets/templates/assets/domain_list.html
+++ b/apps/assets/templates/assets/domain_list.html
@@ -1,6 +1,14 @@
 {% extends '_base_list.html' %}
 {% load i18n static %}
 {% block table_search %}{% endblock %}
+
+{% block help_message %}
+    <div class="alert alert-info help-message">
+    网域功能是为了解决部分环境（如：混合云）无法直接连接而新增的功能，原理是通过网关服务器进行跳转登
+录。
+    </div>
+{% endblock %}
+
 {% block table_container %}
 <div class="uc pull-left  m-r-5">
     <a href="{% url 'assets:domain-create' %}" class="btn btn-sm btn-primary"> {% trans "Create domain" %} </a>
@@ -69,6 +77,3 @@ $(document).ready(function(){
 });
 </script>
 {% endblock %}
-
-
-
diff --git a/apps/static/js/jumpserver.js b/apps/static/js/jumpserver.js
index 461455085..2b5b74110 100644
--- a/apps/static/js/jumpserver.js
+++ b/apps/static/js/jumpserver.js
@@ -173,14 +173,14 @@ function APIUpdateAttr(props) {
         }
         if (typeof props.success === 'function') {
             return props.success(data);
-        } 
+        }
     }).fail(function(jqXHR, textStatus, errorThrown) {
         if (flash_message) {
             toastr.error(fail_message);
         }
         if (typeof props.error === 'function') {
             return props.error(jqXHR.responseText);
-        } 
+        }
     });
   // return true;
 }
@@ -198,7 +198,8 @@ function objectDelete(obj, name, url, redirectTo) {
             }
         };
         var fail = function() {
-            swal("错误", "删除"+"[ "+name+" ]"+"遇到错误", "error");
+            // swal("错误", "删除"+"[ "+name+" ]"+"遇到错误", "error");
+            swal("错误", "[ "+name+" ]"+"正在被资产使用中，请先解除资产绑定", "error");
         };
         APIUpdateAttr({
             url: url,
@@ -219,7 +220,7 @@ function objectDelete(obj, name, url, redirectTo) {
         confirmButtonText: '确认',
         closeOnConfirm: true,
     }, function () {
-        doDelete()       
+        doDelete()
     });
 }
 

From 7276bd0b2a822b98fd3c71a807577d436b398c7a Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 26 Jun 2018 22:13:39 +0800
Subject: [PATCH 093/112] =?UTF-8?q?[Update]=20=E6=9B=B4=E6=96=B0=E8=8E=B7?=
 =?UTF-8?q?=E5=8F=96session=20log=E7=9A=84=E6=96=B9=E6=B3=95=EF=BC=8C?=
 =?UTF-8?q?=E4=BB=A5=E5=90=8E=E7=BB=9F=E4=B8=80=E5=88=B0media/replay?=
 =?UTF-8?q?=E4=B8=AD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/api.py | 89 +++++++++++++++++++++++++++++---------------
 apps/users/api.py    | 12 ++----
 2 files changed, 63 insertions(+), 38 deletions(-)

diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index fbbae5e22..2fde3fb60 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -258,10 +258,35 @@ class SessionReplayViewSet(viewsets.ViewSet):
     serializer_class = ReplaySerializer
     permission_classes = (IsSuperUserOrAppUser,)
     session = None
+    upload_to = 'replay'  # 仅添加到本地存储中
 
-    def gen_session_path(self):
+    def get_session_path(self, version=2):
+        """
+        获取session日志的文件路径
+        :param version: 原来后缀是 .gz，为了统一新版本改为 .replay.gz
+        :return:
+        """
+        suffix = '.replay.gz'
+        if version == 1:
+            suffix = '.gz'
         date = self.session.date_start.strftime('%Y-%m-%d')
-        return os.path.join(date, str(self.session.id) + '.gz')
+        return os.path.join(date, str(self.session.id) + suffix)
+
+    def get_local_path(self, version=2):
+        session_path = self.get_session_path(version=version)
+        if version == 2:
+            local_path = os.path.join(self.upload_to, session_path)
+        else:
+            local_path = session_path
+        return local_path
+
+    def save_to_storage(self, f):
+        local_path = self.get_local_path()
+        try:
+            name = default_storage.save(local_path, f)
+            return name, None
+        except OSError as e:
+            return None, e
 
     def create(self, request, *args, **kwargs):
         session_id = kwargs.get('pk')
@@ -270,42 +295,46 @@ class SessionReplayViewSet(viewsets.ViewSet):
 
         if serializer.is_valid():
             file = serializer.validated_data['file']
-            file_path = self.gen_session_path()
-            try:
-                default_storage.save(file_path, file)
-                return Response({'url': default_storage.url(file_path)},
-                                status=201)
-            except IOError:
-                return Response("Save error", status=500)
+            name, err = self.save_to_storage(file)
+            if not name:
+                msg = "Failed save replay `{}`: {}".format(session_id, err)
+                logger.error(msg)
+                return Response({'msg': str(err)}, status=400)
+            url = default_storage.url(name)
+            return Response({'url': url}, status=201)
         else:
-            logger.error(
-                'Update load data invalid: {}'.format(serializer.errors))
+            msg = 'Upload data invalid: {}'.format(serializer.errors)
+            logger.error(msg)
             return Response({'msg': serializer.errors}, status=401)
 
     def retrieve(self, request, *args, **kwargs):
         session_id = kwargs.get('pk')
         self.session = get_object_or_404(Session, id=session_id)
-        path = self.gen_session_path()
+        # 新版本和老版本的文件后缀不同
+        session_path = self.get_session_path()  # 存在外部存储上的路径
+        local_path = self.get_local_path()
+        local_path_v1 = self.get_local_path(version=1)
 
-        if default_storage.exists(path):
-            url = default_storage.url(path)
-            return redirect(url)
-        else:
-            configs = settings.TERMINAL_REPLAY_STORAGE
-            configs = [cfg for cfg in configs if cfg['TYPE'] != 'server']
-            if not configs:
-                return HttpResponseNotFound()
+        # 去default storage中查找
+        for _local_path in (local_path, local_path_v1, session_path):
+            print("Check {}".format(_local_path))
+            if default_storage.exists(_local_path):
+                url = default_storage.url(_local_path)
+                return redirect(url)
 
-            date = self.session.date_start.strftime('%Y-%m-%d')
-            file_path = os.path.join(date, str(self.session.id) + '.replay.gz')
-            target_path = default_storage.base_location + '/' + path
-            storage = jms_storage.get_multi_object_storage(configs)
-            ok, err = storage.download(file_path, target_path)
-            if ok:
-                return redirect(default_storage.url(path))
-            else:
-                logger.error("Failed download replay file: {}".format(err))
-        return HttpResponseNotFound()
+        # 去定义的外部storage查找
+        configs = settings.TERMINAL_REPLAY_STORAGE
+        configs = {k: v for k, v in configs.items() if v['TYPE'] != 'server'}
+        if not configs:
+            return HttpResponseNotFound()
+
+        target_path = os.path.join(default_storage.base_location, local_path)   # 保存到storage的路径
+        storage = jms_storage.get_multi_object_storage(configs)
+        ok, err = storage.download(session_path, target_path)
+        if not ok:
+            logger.error("Failed download replay file: {}".format(err))
+            return HttpResponseNotFound()
+        return redirect(default_storage.url(local_path))
 
 
 class SessionReplayV2ViewSet(SessionReplayViewSet):
diff --git a/apps/users/api.py b/apps/users/api.py
index dbc5b66a8..ae4e47b60 100644
--- a/apps/users/api.py
+++ b/apps/users/api.py
@@ -128,16 +128,12 @@ class UserToken(APIView):
             return Response({'error': msg}, status=406)
 
 
-class UserProfile(APIView):
-    permission_classes = (IsValidUser,)
+class UserProfile(generics.RetrieveAPIView):
+    permission_classes = (IsAuthenticated,)
     serializer_class = UserSerializer
 
-    def get(self, request):
-        # return Response(request.user.to_json())
-        return Response(self.serializer_class(request.user).data)
-
-    def post(self, request):
-        return Response(self.serializer_class(request.user).data)
+    def get_object(self):
+        return self.request.user
 
 
 class UserOtpAuthApi(APIView):

From 401a7f88a848f80ad0a0edadcc497701fc5f027c Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 26 Jun 2018 22:27:16 +0800
Subject: [PATCH 094/112] =?UTF-8?q?[Update]=20=E6=9B=B4=E6=96=B0=E4=BE=9D?=
 =?UTF-8?q?=E8=B5=96storage=E7=9A=84=E7=89=88=E6=9C=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 requirements/requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index bcba2627c..25d28f259 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -61,7 +61,7 @@ pytz==2018.3
 PyYAML==3.12
 redis==2.10.6
 requests==2.18.4
-jms-storage==0.0.17
+jms-storage==0.0.18
 s3transfer==0.1.13
 simplejson==3.13.2
 six==1.11.0

From eb95a0a9123a968d01874243f03d8d67a9e698f6 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Wed, 27 Jun 2018 10:34:16 +0800
Subject: [PATCH 095/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E6=94=B9=E4=B8=8B?=
 =?UTF-8?q?=E8=BD=BD=E5=BD=95=E5=83=8F=E6=B2=A1=E6=9C=89=E7=9B=AE=E5=BD=95?=
 =?UTF-8?q?=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/terminal/api.py | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/apps/terminal/api.py b/apps/terminal/api.py
index 2fde3fb60..f5c76a73f 100644
--- a/apps/terminal/api.py
+++ b/apps/terminal/api.py
@@ -317,7 +317,6 @@ class SessionReplayViewSet(viewsets.ViewSet):
 
         # 去default storage中查找
         for _local_path in (local_path, local_path_v1, session_path):
-            print("Check {}".format(_local_path))
             if default_storage.exists(_local_path):
                 url = default_storage.url(_local_path)
                 return redirect(url)
@@ -329,6 +328,9 @@ class SessionReplayViewSet(viewsets.ViewSet):
             return HttpResponseNotFound()
 
         target_path = os.path.join(default_storage.base_location, local_path)   # 保存到storage的路径
+        target_dir = os.path.dirname(target_path)
+        if not os.path.isdir(target_dir):
+            os.makedirs(target_dir, exist_ok=True)
         storage = jms_storage.get_multi_object_storage(configs)
         ok, err = storage.download(session_path, target_path)
         if not ok:

From f1f06491d6816576ffe3e2f0c773b423947a208f Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Fri, 29 Jun 2018 14:59:43 +0800
Subject: [PATCH 096/112] =?UTF-8?q?[Feature]=20=E6=B7=BB=E5=8A=A0=E5=8A=9F?=
 =?UTF-8?q?=E8=83=BD,=20=E6=94=AF=E6=8C=81=20telnet=20server.?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/forms/asset.py                    |   4 +-
 apps/assets/forms/user.py                     |   3 +-
 apps/assets/models/asset.py                   |  14 ++
 apps/assets/models/user.py                    |   2 +
 apps/assets/serializers/asset.py              |   2 +-
 .../assets/templates/assets/_system_user.html |  11 +-
 .../assets/templates/assets/asset_create.html |  11 +-
 .../assets/templates/assets/asset_update.html |   1 +
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 35051 -> 35966 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            | 179 +++++++++---------
 apps/perms/api.py                             |   8 +-
 11 files changed, 131 insertions(+), 104 deletions(-)

diff --git a/apps/assets/forms/asset.py b/apps/assets/forms/asset.py
index f8f187b4d..5000c087d 100644
--- a/apps/assets/forms/asset.py
+++ b/apps/assets/forms/asset.py
@@ -16,7 +16,7 @@ class AssetCreateForm(forms.ModelForm):
         fields = [
             'hostname', 'ip', 'public_ip', 'port',  'comment',
             'nodes', 'is_active', 'admin_user', 'labels', 'platform',
-            'domain',
+            'domain', 'protocol',
 
         ]
         widgets = {
@@ -56,7 +56,7 @@ class AssetUpdateForm(forms.ModelForm):
         fields = [
             'hostname', 'ip', 'port', 'nodes',  'is_active', 'platform',
             'public_ip', 'number', 'comment', 'admin_user', 'labels',
-            'domain',
+            'domain', 'protocol',
         ]
         widgets = {
             'nodes': forms.SelectMultiple(attrs={
diff --git a/apps/assets/forms/user.py b/apps/assets/forms/user.py
index c2a1d7b67..b25e19d87 100644
--- a/apps/assets/forms/user.py
+++ b/apps/assets/forms/user.py
@@ -94,10 +94,11 @@ class SystemUserForm(PasswordAndKeyAuthForm):
         system_user = super().save()
         password = self.cleaned_data.get('password', '') or None
         login_mode = self.cleaned_data.get('login_mode', '') or None
+        protocol = self.cleaned_data.get('protocol') or None
         auto_generate_key = self.cleaned_data.get('auto_generate_key', False)
         private_key, public_key = super().gen_keys()
 
-        if login_mode == SystemUser.MANUAL_LOGIN:
+        if login_mode == SystemUser.MANUAL_LOGIN or protocol == SystemUser.TELNET_PROTOCOL:
             system_user.auto_push = 0
             system_user.save()
 
diff --git a/apps/assets/models/asset.py b/apps/assets/models/asset.py
index a974d3385..7a2b3fe57 100644
--- a/apps/assets/models/asset.py
+++ b/apps/assets/models/asset.py
@@ -57,13 +57,27 @@ class Asset(models.Model):
         ('MacOS', 'MacOS'),
         ('BSD', 'BSD'),
         ('Windows', 'Windows'),
+        ('Windows2016', 'Windows(2016)'),
         ('Other', 'Other'),
     )
+
+    SSH_PROTOCOL = 'ssh'
+    RDP_PROTOCOL = 'rdp'
+    TELNET_PROTOCOL = 'telnet'
+    PROTOCOL_CHOICES = (
+        (SSH_PROTOCOL, 'ssh'),
+        (RDP_PROTOCOL, 'rdp'),
+        (TELNET_PROTOCOL, 'telnet (beta)'),
+    )
+
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     ip = models.GenericIPAddressField(max_length=32, verbose_name=_('IP'),
                                       db_index=True)
     hostname = models.CharField(max_length=128, unique=True,
                                 verbose_name=_('Hostname'))
+    protocol = models.CharField(max_length=128, default=SSH_PROTOCOL,
+                                choices=PROTOCOL_CHOICES,
+                                verbose_name=_('Protocol'))
     port = models.IntegerField(default=22, verbose_name=_('Port'))
     platform = models.CharField(max_length=128, choices=PLATFORM_CHOICES,
                                 default='Linux', verbose_name=_('Platform'))
diff --git a/apps/assets/models/user.py b/apps/assets/models/user.py
index f835e387f..5faca5da8 100644
--- a/apps/assets/models/user.py
+++ b/apps/assets/models/user.py
@@ -95,9 +95,11 @@ class AdminUser(AssetUser):
 class SystemUser(AssetUser):
     SSH_PROTOCOL = 'ssh'
     RDP_PROTOCOL = 'rdp'
+    TELNET_PROTOCOL = 'telnet'
     PROTOCOL_CHOICES = (
         (SSH_PROTOCOL, 'ssh'),
         (RDP_PROTOCOL, 'rdp'),
+        (TELNET_PROTOCOL, 'telnet (beta)'),
     )
 
     AUTO_LOGIN = 'auto'
diff --git a/apps/assets/serializers/asset.py b/apps/assets/serializers/asset.py
index a0fdfab73..e63735794 100644
--- a/apps/assets/serializers/asset.py
+++ b/apps/assets/serializers/asset.py
@@ -43,7 +43,7 @@ class AssetGrantedSerializer(serializers.ModelSerializer):
         fields = (
             "id", "hostname", "ip", "port", "system_users_granted",
             "is_active", "system_users_join", "os", 'domain',
-            "platform", "comment"
+            "platform", "comment", "protocol",
         )
 
     @staticmethod
diff --git a/apps/assets/templates/assets/_system_user.html b/apps/assets/templates/assets/_system_user.html
index cf8539293..4e1bc51a8 100644
--- a/apps/assets/templates/assets/_system_user.html
+++ b/apps/assets/templates/assets/_system_user.html
@@ -104,7 +104,14 @@ function protocolChange() {
         $.each(need_change_field, function (index, value) {
             $(value).closest('.form-group').addClass('hidden')
         });
-    } else {
+    }
+    else if ($(protocol_id + " option:selected").text() === 'telnet (beta)') {
+        $('.auth-fields').removeClass('hidden');
+        $.each(need_change_field, function (index, value) {
+            $(value).closest('.form-group').addClass('hidden')
+        });
+    }
+    else {
         if($(login_mode_id).val() === 'manual'){
             $(sudo_id).closest('.form-group').removeClass('hidden');
             $(shell_id).closest('.form-group').removeClass('hidden');
@@ -133,8 +140,8 @@ function loginModeChange(){
     }
     else if($(login_mode_id).val() === 'auto'){
         $('#auth_title_id').removeClass('hidden');
-        protocolChange();
         $(password_id).closest('.form-group').removeClass('hidden')
+        protocolChange();
     }
 }
 
diff --git a/apps/assets/templates/assets/asset_create.html b/apps/assets/templates/assets/asset_create.html
index 99703d2e3..55e233d0d 100644
--- a/apps/assets/templates/assets/asset_create.html
+++ b/apps/assets/templates/assets/asset_create.html
@@ -17,6 +17,7 @@
     {% bootstrap_field form.hostname layout="horizontal" %}
     {% bootstrap_field form.platform layout="horizontal" %}
     {% bootstrap_field form.ip layout="horizontal" %}
+    {% bootstrap_field form.protocol layout="horizontal" %}
     {% bootstrap_field form.port layout="horizontal" %}
     {% bootstrap_field form.public_ip layout="horizontal" %}
     {% bootstrap_field form.domain layout="horizontal" %}
@@ -85,14 +86,14 @@ $(document).ready(function () {
         allowClear: true,
         templateSelection: format
     });
-    $("#id_platform").change(function (){
-        var platform = $("#id_platform option:selected").text();
+    $("#id_protocol").change(function (){
+        var protocol = $("#id_protocol option:selected").text();
         var port = 22;
-        if(platform === 'Windows'){
+        if(protocol === 'rdp'){
             port = 3389;
         }
-        if(platform === 'Other'){
-            port = null;
+        if(protocol === 'telnet (beta)'){
+            port = 23;
         }
         $("#id_port").val(port);
     });
diff --git a/apps/assets/templates/assets/asset_update.html b/apps/assets/templates/assets/asset_update.html
index 3d42ca2b5..7ed1da05a 100644
--- a/apps/assets/templates/assets/asset_update.html
+++ b/apps/assets/templates/assets/asset_update.html
@@ -21,6 +21,7 @@
     <h3>{% trans 'Basic' %}</h3>
     {% bootstrap_field form.hostname layout="horizontal" %}
     {% bootstrap_field form.ip layout="horizontal" %}
+    {% bootstrap_field form.protocol layout="horizontal" %}
     {% bootstrap_field form.port layout="horizontal" %}
     {% bootstrap_field form.platform layout="horizontal" %}
     {% bootstrap_field form.public_ip layout="horizontal" %}
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index df59e43d67e7b758c445eae254496702a7583bf4..d842930e4e5b0eece76196f4cd257d50a9117912 100644
GIT binary patch
delta 12296
zcmY+~2YgQF`^WJUgdik@#7Kxek|y?y9jd6kN{xuvL=!REG*4>OD79C$(pp8eN{Sk#
zrBxKAlqywPu}AS!v-<mdpL6;D{m$!kdEeJ{-{(H}xzBl?Jil>mcDARBvU$!H%rW2L
zh|cCXp*XLA<J_X{Uq)5O*%#$F({MkgW9MkcIp*UyKjUs(Q<a?hu<DLe7#r7coRZiT
ztKn#j!8OPf&P8m1g=;!aMaS_to!o|#iaF_6iCV}y%!T`{e$@O01E~Lw+3^-?{9P=F
zfwdgR56fV2jKsXy((0YDG<h!!<@!!KjT{s{KwWSd2I5*QgxfI>9x+cNo8(+XE#v{_
zL%-UNQyzn{5;nkO9Ect9G<L$MI<DifBiDCM(D21db=@tBMy<Fv2H_CY1=3IposJqm
z8~t%1=EoHnjG3tO4_N&KYFrj-o;%j>)MNj3XZ|!aK?vr?@~9K4pmw4GYAf4fVH|?R
zFdg;CmS6}jLtS_qYTmupe-yRwUr;;u8|pf@>aqVNXgs8#tt?WXi(*C8#IK+R_C?+C
z5Y!!vwEi^IBb$VJ7iOTw&qiHn2^PUmt$(leA25&CXa9A=Su0#dy*zi2U2-0y7E+T}
zSQm;xEi@K2t}{ksFVr2*KrM6*Y6lisz8rP_8gm1-Am8etp{>?uLKEjhO&o?gp*-r2
zqb!d>J*rsLqv?ctN&BO=ejIvt1U1hLERG9MJF*dVy>C&E%yX26cHj!?LU&OY@M-7{
z3`Bjb!cY@bvAikjf?cd0hq~ir)B@5_3w#?j|3cIbeS})TDrA8kC({Z$P!sM)o%l0q
z!i(l@)EzxREyTBxd!Z22&Xq)cTB1>ptQl&)R@UFu>H|;<9FBha{HM^+iD{@6&Oz^r
zQ49D8!*Ly!z(c5U*HIU`joP^fsCjZWb}w8Ewczqt8KW)lfqF;cv5<$xU>cP$4K>kf
z)Wn-nJMk52A%{^bKZTn3JZjuk%WtD5euNt5G;!zi!*J4I)Ood0{f*J1Eow<a6Lm)A
zJ<WlrXO)avSUPI!-$iZthp34@M~(XuwKLygC>}uV<R#RFZ=-hT5$fg3-<18=%T>Oq
z<GhM>Q6HxTs0-~yE$A22#1~K#T|r&&4(g8oMP10Z8FOI(X2V)$T`Wx=WA?!+<l~#M
z|GHo%g|7G~zJ&E+-5r^Ty3jkQg)G9YxB_!v@8<R_QS%H&EpV~947GEgpzeGtYN3Zv
z^PTk2(6jy13O6l(gt~xl3-=w!gF2x&YC#py7i*x-uZKCYx#ew83+aaX%I=GLWTR1k
zBi=@R%sn5_(1hzy6K+LKxC=GG0o1@_R{z7iVLrf|^k;w39hV17kr&16SReHT)Cl!R
zd!ptYj=bC+XEY6M&15W(OHl8`ZY+mCqwf4MY9YB=x;qk#x^M+le-!El>R~QyjJo5N
zsQJ62UdmypkMUG2sn7pvZ-ZYtsAqE-we@#U6W>SeP<CDn)dNxE3ZoyEw0cF<&b@$I
zNFCH2H$;7m+hZ||L%p1-m`k634-K6-8FisKs2#{a-SI}$9esnk;C|HB{$%wNsPSh}
z7ru?!nfs{mPtm(`t=yM181+)NK##VjGYx$n2ccG)ZuxA~9jrlpe72ist?tv>-QpnB
zGcIE`LM^1H8HZZPK-3P5L@oH8*6e=;8cQjZ#l5I4zJ@yCFY_U4#o5}pk0cPaBcZ5g
zToyIH2Ij^Fm<M09{*G9UydUa@=A*9jaU1que?Hey@W*e=!>BtrjhgU0>W9QN)P-}r
z?Cz95>W;!tTV4mX)r~MOwncsXdRRUZE0U+8#;^3y=s{y0dY@5S*I?8F%Apn*fz`3G
z^^Zb*jwfIwzK3D>J?hS~Q18f9)P-)MKi)$vEL%JG5qR>`&>faCBQPI%P0O2^FI&AE
zYO52>5g0%|2J_=&)CCuyw)z9qJGCCQfUi;S+#%#T9_PGu+_H`*s1*jbcUKsSIx!k`
zXECTp(F9|$2kPa^K)uA<Q8#c5^{CFH7IwvafC1#WI%sEk{vk9pAQH8*`lvf>hl$u7
zU&DQ<3F~!q`<tR3QESwKJ75Luh1!8hsD(~Py^JfZ{yA!%Etp@Q|6MfnQXEFz;eFHs
zo}ec3?c^@ZAN4YYqn>pw)P*}^0qkogVL|eV7>El|JGdG(eiK&5Z_pD#;~ov~JJ8uR
z0(D|d)QK%nTiOYA$8o3y4m3xiwsah7+*I^l7&Y%|)Pgpm7Wy5A<H^qKzwY<}1-;Gx
zpe8ER#kDNzgc_(XpcYsN2V)sbL;Y@8hNJLbERUo3TONf=P&<3Tyo-87q22fugt6V&
zfBnu+rJ!fB8MUCDsAskZH{)T{vz*l3eOH#E#(j$VF5igyxNWljt*EWuhkAs^F$hm%
zVZ4R<-thIj;@)96YOAZEwyF_^U`N!J4ne)7V^QNKqjqW@YKK->z8Upw_o8;{5o*2w
zzGO7MG-_ehQ0I9X($Jl^H@l;rSzpv04ndueh+4=Ss5_X7T2Kb+{Lio$Zbt3gQPlV|
zn1ENU-oB?hUr*$Gk28>lRy-QDMQc$L>_ojp`%x?X6^r0?)SdY9;I**A=zV!n7mPqH
ztgh8tqIRGo7Q+P8eCZgZ&;J}6dYf0F-tP6NJKTht=m*pVf3^OrsAu{Y>dx<@#{G-B
zf&9JP`AVZ6RfJgwbzXDSFQhj3l0N?<XlP|$q9!_q8u$lJz$;cC-rK!kD!%N)=Nre-
z|5G1+$zq$ne6*<lh`VrpKfYwBcj@o$Kt7&BN%C;4jE&Kw#!wnzxBy?oFEA9Jm_-M;
z3#x_M$_AFVH@l%8L2uL@53+iS<*Dd>XDrV!*9~C*wY6KVupgD5u>2zCB)@AuGJOWR
zbwAVv1I$p=0xOv@sD-t|viJ(>`ydVb;>QEo|3)<Y2D!F0r<nUt3-BB4{%8z9T`&su
ztm~s*x^}2>z0CgRP}KM&(_>CY-RR<Hg*8^#jJfI9i#qX$`I~vwyl>_h;(jU$pzge~
z<qc5hceQ%F<)cvxonX0VniUqJCRl168&GfQPRq}sem37gP2fM&HOMT6x?m~GqtK7M
zChB{nq4hUIU8g<rarQXzH1yS(in%e}oMz55m!dAb8f)Ns%P&~}HPn{gv%2pv{z8)b
zqt0t)wn8nSgE!~-_qUFrW)hBIz&O;v%jl1fO~2vpgoVvevkYonWwSPFL9wVC>umN$
zEocxH<oZsc8aN&`!F<b?p-$Xn^<Cyc^Azg5i{?YqpVe!glBfklqUMRgT-d_uZPBBS
z-ZZ=`LY<gsrkYdD1*i)yw|uj?2X+1t%THQ<0rOG6hFZu&tLIL1uM?Qa^VbE#C}@Jp
zW>vEe22gKgc{|kju4X(ICm(4}N6oX^T#p*R83S;S<;PIt&Ly({6=+<tLcmD3BN+8Z
zA`JB@h(=A+!TNh+AbA362S-~y9W`#U<@3xXsQH$m#(#ktx6?yITl#}_oJFndvU$t=
z8+F1zW}esFJj5)Ey2GlLH$lzQ*77cv_ruE62V)-e%(IRR)K;!Sea?5IE_fd6;!V^}
zR7`Rg+zQp-3w1|B%u%R?q@fn@F6u(_QGdQaMEzpg>gsWJ(1@b2%e;w=$-|Oedt-C*
z3><)2sEOO~gHH?Sgv$HkVjO6>Pl{Xj!zR=NEbm};#{m8P??a;?0}`!cJZj>p<^roP
zw|uSTTTtiiMBU+0^NjUhLd|p2d~EuScI$<)h(7<NY3L5>tAI^yKu^>K23h|bRv(Z0
zYMp8MB6Fp=(cEPoM9p&w_3W>szHvjw@caX56sMtQ7>WA4)<T^Si|X%&<#3SY?_x#r
z4Ah<PL*3~y48n7$8~TscA6xD>)~yGa!DHF~!VC<fpgXT_wlNdTG}Hwaq9$Hp`6sA_
ze`)Tv`a$y)YWzjZZ<vozH<)W2`>#7J#_uQ<B2X7<Xtp-Hn+d3KNvOAc66yl;Q44t=
zb^a==XQDn;+blm}{$^hA(9nd}unay$O;GxEw;qkUP*W^|9Z_36)ao9q&qVFyYOC)=
z&2t#FfYauEs|UT|F5DANLjx<ICa7U~E7bQuH`M2TH0n+lq3$%pTw`XMU!msv9(7~K
zQRiJky|gz`=if)h<#Bvc-3#TPdpj)1qf?qt(G;D{IMfs)P^YG#_QGTJMX2*KP)puu
z^`oeHelfF9dwIvq_NF^eLDc*aZ}K`$pizy2PTXwnu>nU=6P(0ac**)pq`3=-Kz+a(
zq82z9HSu_JsyPca|3Y&G>IOEX@j9yGTMFK<6!VOE$-IMF$UmqZ$;Wvz#4Ke-pcYUQ
zHE)cm|Jb3tE9%1WmXG#WV}f<evV1w}f}dOdHEQBRs5?E5gYbssUDMrqB5Gk%P~+#I
zF1*-WWoDY5udQ*&{MEdK4II8w%xZ7B6OKepI0k)jB5LQRVI<DC{@tjB{%HAS)PnAr
zPu#l4$v)ow90a0%x0Xj;AOdwl9n_XJvU*3<#C<FuYxyM9xTWR>^IOz>C(R3}Um&-!
zvi=+u<qgz;ShIuK8}m~iih2~UqZTyHoQ*nfk-5^`XzoIdKWO<e^Bk6<enb6S-wBxL
z-cc}W!f4c;#Gt+_+hIxUizP4}OJfG=Q?VOgz=v2ID@=0dYlfQVRn!e6VlaBJB`!ey
z&mqq5H1yJxd)r-cG-@HWa1l1cLU_jNw=pOAQ}jjO$?o5`yqK3f05xB6)VOk}1w@)L
zW}C_EzjuWcbiqXHNJZ7BTRp>EXKpq3n#as@Sc&s)SROLPou@2n{@P|NYC#>Qu>V?V
z90fTPwc->r)trEuU>a&+3sDoSML*nzI)4vpM-HJL-7(}V!?}PuKYps~NYwdndT7+6
zF#|R6KFp1$Q3JBfd#Jw_zSG=#an!g7)WkK-rq<ui@;;UiL!F;$`5e=;jD{xKh?-~z
zY9ae=z!~emj@haIZTTbAPUU#VJuk0W1ijDPj6}^}-SP$)K^}{|v>s<94ZXEXQ482+
zevf+jj-w_RKHZ&o4Em7w<ey%|TG~2Vxi}x=Y2q{b_GutTH7x5kowl@Z6G`Ob^!e8@
zm-v-pF)WO|@gG9}C!JR@fm#S2B>EHci06;9^lPe}7)t2)-OQk^NBkMV+P%kZ{;i~z
zPU7A09vAs{oSo#uh3}CEU~{W!P;qh{bBIS)ze{_TiX1bDs?<jiT?oDsoPTfv(NP09
z-g0riK~FzR^tS5ImR}&Ma{^xr-ml6wSjjF-(^*a56rw)y67eCmWw=nCb_9_J5RrtA
zZNz=zb7C{K_wf@S?thdGAa`P{-3MPG&Qfb<weqz8(jX3B7Nf6b9fjyWK!nk5O^i^H
zqa+c?xF5Wk`%g~BeL%CG&FS6$SPD;wrWDT+@6kR(G@(7r24<LbsXsd=QX5Qi%?jU>
z>&N`d#3#fHT>OFcy=~_!9Z$QA?Pjot#+x>%zYR*l?a!UClm3;&IU+apSD))E$oV1U
ziNsR+b&R(DnzReqg&Nb&M|(Vm;d?g5^B0XdL_<1m5KD*!*0~p-5G8Dq>9n)c-pm*s
z1Ibfywm0Kjl>9jD+SrYFgLY}uQ3Zz(Ic%;|)E4UbH=x*@BtKpt^d+NX4e=qlj@)*V
zoAIA<saLaP3}z93+SpR~_OpR_jr_j#shpQ~P0Kg>@cG;HT<0Nc4`JXf+6^s#2V;p!
zmTRIvh~nfOi3HkZure{6_NTZ3Ti{gGahLXwZqq4eH{|`Vqbt%emWZ^@FKDM(yQe7v
zsp~uZ{|+X(Nliyd+AT21CjON6K6P*up*9fzW$aYqXCj$=G~tQ2321wdM$hHts6>&s
zCcYxdTVE~AXYGe}UM}+l^+VP^LVFnP#rS~unzlcSNyPsU7xnygbRY_NTYNDvFeign
zk=LQUjp#(XJ?bb*Z1J|3j9NHj3t(NMfz?G>^4WxrBKSJ7mMBMDrgjh~==vYg7)fC$
z7D49o9!L0hIJFQ8@mAxHp7RYg9pQxj+y59P98HKf$#>v(6`nhu(%wVgx7ZKYTi;FH
z|CfY^Vnw@hLE1W^$lt+B!~m;h(*Bj0MgE%ANS!`JcJk}!OGFT%L^f&>%%k6lI=&z_
z5qYSE5*|O2w-|KTCOeMZiHg*9bf(=6m*4{Y59(-Us=Z(T*pZD%%g|o;tboNB+a6aC
ztBK!<9t4N(pa0N6{Nio7|6G9$oV1A8L;DypmUwIzO*3cUZ^TjJUHbjF_={MF(D5Vn
zqST%pd##a0y*JU-XDC0bDMk^KDde;P=gmvht`OnGRYFHEVz;;D{_kjN*0y|?IgPPn
zh>ytiGwu!AFV6iaBFM9z*5|}xs<~}+8}c~XoiKu!N2FU{aZDj9a~t1T?PdDIh>r;!
z1BiRHR}j9$2SgQb58Fz6KA|J}+2^ewNiZ>!$jij57*L9~j><01AJneWE^WDJY!kJ_
z{X{0wh<XM5+s6GsyB%$R;ui6U$U`j`@l@Zpohj%z?BbMV0XoWKeJq8Aa5C`|CtW6V
zbSKu)E@0zFk>?>^AXaJ&vBk!Y#1oXFiIzlB^5w*Cea_YpJ&5n=cy{z9*D;95K|4Pe
zDdDZ~O9X!-x)QGu9q8XhoV0V&u@&J*Tqlx=J49*bc%AX*X+I=%cm~m^K|Cg@z<|6M
zY@JPMFQpxX8;KO!Utvk>Z%g}2+CO0zVkYepL^0;!MRs1Gy%kRqIfxoWGh#6H9R!E_
zc{@PsUvK{Z{}g7DKS|GM5@IfKiujuFA#|L^<!;ltK|7VGN}h{z@8B}xsP!MC?^`00
zzQ0k&&rUA4F)4FXlz;YCaq;nqDI-RO4~k0;@0XA;B0N4RA#PMc|M29L`1pk6<N+ze
zhK<V;&Jh#cFR7uo)g?J0X++%cgnHrSDyCSwQu5pmRg2A?*{6DN{IJ3CL&FCpBqfB8
zN(@g<7!^J)F(oPUlPbL;{i@XruUf5M)w-F1y-sHD@z$qV3*Nste)X*#)A{$(dlN5z
zu_|lkmaHusFKwThHDyWG_H7rZ%*vXU@xRx<G;j6ADO<8;&G_F1Jip4h>3w?Th>4DC
dIQP#!P3GROQhjdMzOCoBsa7g;ci&1C{|kmm%3=Tj

delta 12043
zcmYk?3w)2||HturC&tERGjo`2j@y{y92!;*bC^)GDW}LG=QAtEZf8=ILpel=PHPDf
zDN&(>oQfz?Rw6{iej)y^_xJwn|8PJ4pPtv}b6@v$UH5h0-|xQl``=yWe{rF|`*TF#
z%MM3vf5(Zz7fLzK720<ytLiu(*LIwFxDBUbdL764&d+i7Nb=?N9488g*LR#aoPqqG
zvzC7}!{f-MPGpMXq+v@;#HpUHlS`urg`=nioW!Dd)9QE4pazZ;Mm-b*Fb35>9wRUf
zgYi+UfZZ?zbF4lMbx-q9*R8`q$90^2G&JEM496d^G@i%e_@5cv&~extCla-gYFGjr
zVs&hVNjL<@;u7qP!Hpaz3wxOBQT2evjuXWE&SNyRMLkg~ejX!nDQbc|48(01ggY=4
zcVkIBf@Sa*)b#~c4|u@q7l9fl4t2g3>c&#h)d1-<ieVON;3rT!F$A@hlQ0UGVtHJL
zdSrVs8V{ic{sT4ebvu6-weX-+Z|91m=83^rte(pLYb#q*sEb`t1JAaO^HF!a6m<uy
z?0g>Tk$s4I7d}A^yaV-!_F`H5(avAD^980~6R&?r6ZT&hMp4kq6NmJ15>X53i<)RK
zYN4Z1{ib0ZoQJx@Pf!cpiQ0iZmLEo4f86{T+mN3_?Q|`-sW)&F)WGdg7i6LCxQFF~
zQIBdg>d{O^y`&3KTmLrtb_6xfCs+Y@p?2g9YQn!!kL)h$#@#Y}NHtMBYJ%FRj%lcm
zReRI`Pgp(@HQ{utFF@V#YSaSqPz&6InqW6-hYq5~{SLLjU%cFPF3`|`H&GY*^DUtP
zBh6UU1xcud)JIK}j(Q{=P@k5bs7E#mHQqCJeumW-qpn+l8gC6o>hqsRLo3{gz7?Yu
za1i71B<gLwh3Z%CL2sg1)Xr5yEg%Ioaa+^`Sy%&mT0RH$j=Y3=bgy8NKL2?%G|(~B
z9ps~S;!o5<ZlhLS<RNe1lBj;smdBz7PC)gmg&MCR#$zkgg8JL};i!e?psRtVSz)fZ
z1of;|qXt@s+WJpXTmCI-qSL5;zoT~M8pdD&Y9~uK_a=@-?N9>h<!g$1x3ZeE|2=68
zprDV_F4RQVQ7a5;;SF30bq8fo6UL$LI2kojeXNenkiT6{KXU-;JAbhG0@fv8kDBk7
z7A{}EG{RdtP6iG{?Z`&dL?5FTvIn=}5!9VN-^!jPYM@t83;fDFgxa|is5?K0TIem*
zc!BBOqYZays8GQQ2^dITAN3A2MxAemT2MCX&ikO=je)2IkFk6LY9TXGU)l3fk8CaK
zZ^S0l$9x}ZJoh9G4R{VU;3d=m1*ncrYp)(=mN%=RCa#O>*BC2d8w|ifSOJHj9_d`v
zxGPXMwiekL*V#-%&u%a3rMQCC(7%m$=ZUBZ8lWz0g+(wMwKF|12nV8G%HgOx&OvSc
zEYwT69Aj|{#^EuaJpUUs^lYNqdRrfd8n`NIi|SfE4b`tD>P|XXy$fpRx}z5I6zYzL
zq82;_%i{v{$6PFm?_+W1cQ(_|L_1MCZ~%43XRs*#g_`gtYHROVJ)oV}KLj;#EEd74
z7>qU1w{xhMv=!>59E;kSY3S<n_%aQxbR8<+fx3g^SQ*coA$&wsuZ`N`=BQ`<s5uO^
zkh$gp3?^TK+JRN58~hj(aDN8RzbcLE6aukqd+&mZW_8qx>!2P<8WzP2)B-Y56ZFAi
zI0TF1IMjI;>*I^4g@1{f=X=yw@X7Y<zqbA_3i3AU4uT){1}usCAyF1JaXr*drK0Yr
zJ!;FJLT&Xh48cjLkKY{2S79P~E~@`g?2ad08op=L!Lt==0i97R?20Kk+|Iv&`W$b-
zWc(T{;y<W6i|FXRBhjddDqtv9#t^K7dIU{TJLYz>MprCBp|9nm%!yW?iQ4K#=BubJ
zeiL;An^6<)LT&Xv)J~m3E#NZhrMrbCuw*A+-F0GU=tL4~g=wf2W_TT(o~Sz;jCvF!
zFdgThUcLjUm-akrVCNC<QI*7!q-D%%7)IUzwX^BII?ulw4J}|0>JBI4NSuYE@doPI
z4}8=+KN9tb#-kSeEb48ZhuVP;Q48IM#qp@sPou{94YjaKn5fVHZ5q16s+rydNvMJ9
zqZXEmdYL++o^?Oe#M7`8&Np92?c7ET$K9x{KZfdm7E|yqtcjI7^ZfM^bfO`<qAu)<
zx^OINOQ)jlcmZmMmYAzBjQnj>zb)vS7&YE8jKDKk3a?>224;CTTrG>wzux8=6f{r^
zGZS?|AJiAnSoHm5!Ybr>sNW5Ta2zIQdw)aTz}n<{Q6IMgGro)Wh%&G-_0g!G`MF)#
ze?60Y3VH+=QP1ouZo%8AXZhh{-ZR^e>h~k+yZj95EBUOQKZn}t8>mO<_qg{6gE5Lc
z2KBvBA9aHrT^icz-l(k_hS8|Hwsa}#WqAwLZ!>DAzCaCd#PWPhA-|5LF`=tBUNcnx
zM^Fpvjk<0q>c-tE)|iEQX7f>ZxD<84O4LH$Mcu&`)PfG62KWheNBO9oyNl{ytQ+5o
z7>%k=L5(*Tb^Q`#!LGBGMkIwFP#rI#UZR_*l@{fDvMiQE-AR4aKrPYt@}ef}iW+!;
z)pJlg>SB3Zgc@%hYQCKq%>2%GH1u|#Lfzq6)Ik43O<1&tcRm{ROe>=9yeg_+GHSr4
zs87cus7KY+d<u2l7}PJM37CPeVtIZ3f2W~=^h&E^7|y^lsQL=jgt^$!kIy$wAiwtn
z{~Cr9dhr95`W@U#{^gV2olorJ{nD9_HK?yMPoTa>0{XH$ZD~}Z5rc!x*{FrAMQ!1G
zmVajMMs59m)SVu)`dP~_pmy@6<)Qt&e&tX*THW$S{n&pMT3I0rHSv??Ky!qdgPL%%
z`5bD2ub8>0g>A>G_!a7V;37VWrTaV1LzrWJ)SvxV;f56&^2%xfIjA3tlTj1Cih9QH
zqF%P`sDAs*BjyQI|1;(#^Iz1B78&53FN4afxHPol6g!b-wl^O)`<tUtpN3~qcfQo}
z_w4*Gs~@&JAB)iMs^tZi2M+YEcSC4s#j#ikYg*nBwFBKz157ZdnsZRsEwKDm)Z4!X
z12NCeZ$K^dGt|NlV*p-2ZrpV)dkv?+^c&>uNC;};C~SZ+mS@`euBa{SYxObMh<t+O
z8_cb!1?;f=h<U;%&;JaK5p+0*>eywlcV~ml9MnRlo6ngq+4-gBo2UhC#A5h`xgT}?
zG1T~{%qtkm{Eq(+??f0DBd?6w+GI1;Y=asg%N$@%u=6jV7O)&OPA(S3O;-QZ>if~R
zAapg+DH`&EdD9FS>P;AqI$y=Ciy9!!@^s5H(f3u1TF3yaKaIM6iaF2fONa9OHPCBT
zcnfvm`<8D<UAW6Uj1|aFoByJ&j~eC~gX&)eHBMd2o1^-5#01Q?eDW~%Ungcz&>x3+
zs87L448<L&^ZQYMl#ZgdHs9)(F_iot%l(FX{ew~Cg`xUaLiMYOdV~*H{b84eCg@`J
zH2a}07-BwS&NLUI?(j9sKR}K1spVf<eh6z&KaR!Gk2hWYLQy;EM$*vdybfx@PMC^4
zP&@H5YQ<aa{65qj{b2rzTF6Dzz_(Eo`H%EI?<LTmyt<i$waJq`U8e_)<`m|c`>{27
z=qO$w?2H<C8)|`{TmCIBC;#5^5u?3+IoN{wWXpG$doYap0rY(geRZDy6&f1&rWr8C
z8z>xAkG8xjMv&J;-Qj~~25N!XsQx|7L1vCQ9rX?PBC7wp%JunQZyokx1o<&khx1my
zg2Ci>EDsv%O%!3qnaO4<M$o?v>e+WgedW%?aGZ;Jgv-$_L1QfqU9izQ?8a*3$1J~%
ziR7W<ygP4*y3^(ui5*c3?ql^qmgkt0%^9fQ1@lllv3eYze>JvQ;i!2LH9=sGH*hIb
zUKX|TYGxg)r<!e03(2y)yEzbbgX2&;Fvs#`Iqbg%&a;jmn|sWo*6|GL<++BM!2fA)
zA;nPFN22QSsE<{G<*m&2W+rMOU9k!db!ljT7wyDK)I{r1JF^qD#V4$O$?A77ih9&D
zUjLe?ahjqQ(9Y~{^{J=@&bNFC>U#GLD{Mu559~&L?(<O>1daFZG}J6(#+x-z6E{HJ
zSqs#4*{GMc2kMdaNA(+lnrD)iyUq$4y5Jqu03UcKoG;9ScK#>SKxeTmUb1=+KZSK&
zC~Dw1)OZh~CTwkXM(u2Gb0n7K{c~Izx?ma3z}Hb1R+;Eo7j-@jH9$Hx!fZSLJZb^U
zP#?EE)B=yAuDfF1H2*`5A2<p1`7cF71H`I;_0abPV`iAyW^dF&hM;z2qB+xCU@k)~
zU=3>ATyu-L3u|fO!&b;QucGSzSsp&wo3P^I%$P`5_tt_6KbM^DsC<`s3bmvgsHyLv
zrY<tYGt!JVYne^Vwq`b_aa|wtb<}vLr|`ry;BORy@Nd*!6<{*@KkH3Y2eq(fmUlr7
z(AOMn^--wL!4%Zb*2Pv|hU)(oYAfEi`p##0VjB2>6@EwM*Q{d*=Y0>;tcO}~x|xak
z3DOJow#>HrMstU`A4_un1nOb`fm%?3YmK|8frF-cMwoGCGU|d<%bS}WQ6KQ`sPmIi
zH!uS=-b&OB<f6VSw__ZBi?Qflrcs$j=rr$hPzP&~55Nkz1U29W)Ii^$?%))b!AsZ<
z1Eza_=sTd^nMJ4ttwb$kEiS_iSQ<0<a8h@jUNqEkDC!*;g8?`mLvS)`z`3Y?i%<(#
zZswZX(6>O;gr}^2!Rr57J#?mbzMN0Cy}A`r%;siCOk$w!md`{@u+Z{1&5fu9?LaN`
zpm_qd;Irlh^D1hA1sK8nPT(wWfN0d0YyxVax)_8_P|vP8@?JWbr~wX}r%?;|6Pw^I
z)IuB1_Qq+4I^Wssi~5v|L02c{($Iv<Py??q*Q3sFxBP(RCs6}ju>77GHpd$$4mC~^
zY9WnK<7C+RZWut`Zw}926Az?N1V^JT9B<CD`XX~Vs{d-s-@}^Z8&NOqY1B&_GS?d?
z!EAtf`C6c^{}DCcZ*$pyKN{WnM^7S`wvG%B=WYCvSjV}q)sdqfR`Hs?|A2FqoFALc
zc&jbKlhn##X?z0j5c>bg>4E*J>65dc=%?qun7IEqO$R;a&#(fa<7e|V+Ns1k;(0>H
zRU*;X;<u3bJC3(&^o#u;@{*WdSR*e_uKAsX#J_gp8toTV<amLoOMN(zP4EeF?%;GH
zQyn;_`u^!SpJN|u>sjkqO5_vu>CemV`yU1$#zZEz!*$-_<Q$?2(T;eXGjHH4g<UX$
zyd+VR(6NoUNvtP6qV_7jhhyzLsngWjy|62Bnp!8TRik}Hopk?!tfqu7;l~*rz9C}B
z+Y`gBuCK~4`t7q^1krCLrrMyYwIXg4EvTI#mec-;Xij^m^?S{HfV#K;ID_IK{8L4a
zugLXD=s>(jBr|yd>X>B%s6CB#W!ugu<S(@E=x2RK<0tp^|BSP55@(2D>TZwwPL^VT
zGUOwORlZ^PZ)bMC0ePfN^bqY(+S4!wms_7JxR6Mreu-E?ylm(6pEPe16>W^?Y5V(g
z{~ysw#{deG@Fid7I8Ty)N4pU|M({h!sf0S};9w%a20KCR74l|8I_(meuk-56@h<T?
zxsG7F#>;sA^Epw^%bch2H{z^yjz_*t|Nr=t{HC2#u{iApmT$z(_nkXn?ZNc>i*}mj
z^RN|>sGRwI$FKaeJcUf6KkdqxL=2<-K5oF)$QPIIxJLV+wX514wIffU{tTgSMID=H
zPw|?*|B2F?P8fCl87`dPxkuqLp(B<7TVsR`{66ikb%G<B+5o&u-?_y1#2E4%qOV;~
z(|0_0UtX0;E%NrncA}bh&UG5n2=x-@e|Dk1n{^zce!y!whiDI_y$lP8owP$(4F83~
zxla5}O~<1|xUa?c0<|FeyhYxa_BNt3?MJMy@81}<SmzLmadZyH2Z&}?7gfk#B6LLK
z1R|HHO8h}>KTgNhI1-0oG%}p;IK)4PQ7c2CuhpKz&s~Z-;)va}oBA@oFmN*Yr}&B0
z3i*%5mz>*$eeeT2aT&J~&r(aUnM={uQHy*Yo+F;J+K05=ll<dF3Ztw@>hvP~$uBD5
zs6kX9{HWDnpoS`PY$7%j#i&&viqf7+pKoof@9=RVfx3<?+K=H1d>OC%+56X$LgBHu
zuz`LIS{d{1tCgegBjjs|cZi>fZbad+gvJkr37#i5aLrQUOWH??XNX(AIeGu5_!|7R
z!&AgzVm=*;GI<+pOz1dBy)3oDV~;g{qy7ZZh3HMK7BQQ4ke&a<JV)(35l37gboA68
zfiHYb{!E&U%pK-)bbgvxO|E~5m`J<L;*B*U-4AH3CzeqSCUiVZ{v>wB8pL9PyYwC9
z`R6zyiQCxim7ETok0IVBbUa1;LwhX|NUS94_|CAew3iS%YWvxOOOZqo3y9(j{1zSJ
zY3oSxaDJtBfp(?EnTe5ZTe7{xhs1+atK$vpxsP@y+9AYW#J@x_YDI|uh%9m)-+DMz
z?1@yvCe-3F5@!=f=>G?y<8dO7cDVlL=om{BBa(?XIdKoSSm%*=jJ!6{mMBZUhWLVb
zm*_@(MZNIoO|D}g5kR{Hi>T<U@Y@4V5nYH;#G`)9zk^Q4?IL{zWDrG(i^Le>Z=w=|
zOyGiFX#bDUF%VOTTePclzBoqNxfZln(T>24#5mg9G1ks^q`j5)5#4__v4Er^QI3Iz
zkSEjr7>^TyL<-T87)1S3qVV{J#@)iiEX^2aY5$}#h(*K+VkhA!IDW)6*h0xAl1W5e
z+C{kdZ+wF|Oz1euxm`p}&fP#A-+MSSH|?n%8n9_eO52*j_3FjfOKFnQXj6W#9|AT_
I>>rr;f5cT<g8%>k

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index b5d9a5c56..c596db6ac 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-06-11 13:36+0800\n"
+"POT-Creation-Date: 2018-06-25 12:19+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -29,7 +29,7 @@ msgstr ""
 msgid "测试节点下资产是否可连接: {}"
 msgstr ""
 
-#: assets/forms/asset.py:24 assets/models/asset.py:75 assets/models/user.py:110
+#: assets/forms/asset.py:24 assets/models/asset.py:89 assets/models/user.py:112
 #: assets/templates/assets/asset_detail.html:183
 #: assets/templates/assets/asset_detail.html:191
 #: assets/templates/assets/system_user_detail.html:179 perms/models.py:33
@@ -37,30 +37,30 @@ msgid "Nodes"
 msgstr "节点管理"
 
 #: assets/forms/asset.py:27 assets/forms/asset.py:66 assets/forms/asset.py:109
-#: assets/forms/asset.py:113 assets/models/asset.py:80
+#: assets/forms/asset.py:113 assets/models/asset.py:94
 #: assets/models/cluster.py:19 assets/models/user.py:72
 #: assets/templates/assets/asset_detail.html:73 templates/_nav.html:25
 msgid "Admin user"
 msgstr "管理用户"
 
 #: assets/forms/asset.py:30 assets/forms/asset.py:69 assets/forms/asset.py:125
-#: assets/templates/assets/asset_create.html:35
-#: assets/templates/assets/asset_create.html:37
+#: assets/templates/assets/asset_create.html:36
+#: assets/templates/assets/asset_create.html:38
 #: assets/templates/assets/asset_list.html:75
-#: assets/templates/assets/asset_update.html:40
-#: assets/templates/assets/asset_update.html:42
+#: assets/templates/assets/asset_update.html:41
+#: assets/templates/assets/asset_update.html:43
 #: assets/templates/assets/user_asset_list.html:34
 msgid "Label"
 msgstr "标签"
 
-#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:71
+#: assets/forms/asset.py:34 assets/forms/asset.py:73 assets/models/asset.py:85
 #: assets/models/domain.py:46
 msgid "Domain"
 msgstr "网域"
 
 #: assets/forms/asset.py:38 assets/forms/asset.py:63 assets/forms/asset.py:77
-#: assets/forms/asset.py:128 assets/templates/assets/asset_create.html:29
-#: assets/templates/assets/asset_update.html:34 perms/forms.py:40
+#: assets/forms/asset.py:128 assets/templates/assets/asset_create.html:30
+#: assets/templates/assets/asset_update.html:35 perms/forms.py:40
 #: perms/forms.py:47 perms/models.py:76
 #: perms/templates/perms/asset_permission_list.html:57
 #: perms/templates/perms/asset_permission_list.html:142
@@ -90,7 +90,7 @@ msgstr "如果有多个的互相隔离的网络，设置资产属于的网域，
 msgid "Select assets"
 msgstr "选择资产"
 
-#: assets/forms/asset.py:105 assets/models/asset.py:67
+#: assets/forms/asset.py:105 assets/models/asset.py:81
 #: assets/models/domain.py:44 assets/templates/assets/admin_user_assets.html:53
 #: assets/templates/assets/asset_detail.html:69
 #: assets/templates/assets/domain_gateway_list.html:58
@@ -99,7 +99,7 @@ msgid "Port"
 msgstr "端口"
 
 #: assets/forms/domain.py:14 assets/forms/label.py:13
-#: assets/models/asset.py:223 assets/templates/assets/admin_user_list.html:25
+#: assets/models/asset.py:237 assets/templates/assets/admin_user_list.html:25
 #: assets/templates/assets/domain_detail.html:60
 #: assets/templates/assets/domain_list.html:15
 #: assets/templates/assets/label_list.html:16
@@ -118,7 +118,7 @@ msgstr "端口"
 msgid "Asset"
 msgstr "资产"
 
-#: assets/forms/domain.py:54 assets/forms/user.py:79 assets/forms/user.py:131
+#: assets/forms/domain.py:54 assets/forms/user.py:79 assets/forms/user.py:138
 #: assets/models/base.py:21 assets/models/cluster.py:18
 #: assets/models/domain.py:17 assets/models/group.py:20
 #: assets/models/label.py:17 assets/templates/assets/admin_user_detail.html:56
@@ -147,7 +147,7 @@ msgstr "资产"
 msgid "Name"
 msgstr "名称"
 
-#: assets/forms/domain.py:55 assets/forms/user.py:80 assets/forms/user.py:132
+#: assets/forms/domain.py:55 assets/forms/user.py:80 assets/forms/user.py:139
 #: assets/models/base.py:22 assets/templates/assets/admin_user_detail.html:60
 #: assets/templates/assets/admin_user_list.html:24
 #: assets/templates/assets/domain_gateway_list.html:60
@@ -192,27 +192,27 @@ msgstr "ssh密钥不合法"
 msgid "Password and private key file must be input one"
 msgstr "密码和私钥, 必须输入一个"
 
-#: assets/forms/user.py:118
+#: assets/forms/user.py:124
 msgid "* Automatic login mode, must fill in the username."
 msgstr "自动登录模式，必须填写用户名"
 
-#: assets/forms/user.py:137
+#: assets/forms/user.py:144
 msgid "Auto push system user to asset"
 msgstr "自动推送系统用户到资产"
 
-#: assets/forms/user.py:138
+#: assets/forms/user.py:145
 msgid ""
 "High level will be using login asset as default, if user was granted more "
 "than 2 system user"
 msgstr "高优先级的系统用户将会作为默认登录用户"
 
-#: assets/forms/user.py:139
+#: assets/forms/user.py:147
 msgid ""
 "If you choose manual login mode, you do not need to fill in the username and "
 "password."
 msgstr "如果选择手动登录模式，用户名和密码则不需要填写"
 
-#: assets/models/asset.py:63 assets/models/domain.py:43
+#: assets/models/asset.py:74 assets/models/domain.py:43
 #: assets/templates/assets/_asset_list_modal.html:46
 #: assets/templates/assets/admin_user_assets.html:52
 #: assets/templates/assets/asset_detail.html:61
@@ -227,7 +227,7 @@ msgstr "如果选择手动登录模式，用户名和密码则不需要填写"
 msgid "IP"
 msgstr "IP"
 
-#: assets/models/asset.py:66 assets/templates/assets/_asset_list_modal.html:45
+#: assets/models/asset.py:77 assets/templates/assets/_asset_list_modal.html:45
 #: assets/templates/assets/admin_user_assets.html:51
 #: assets/templates/assets/asset_detail.html:57
 #: assets/templates/assets/asset_list.html:86
@@ -239,82 +239,91 @@ msgstr "IP"
 msgid "Hostname"
 msgstr "主机名"
 
-#: assets/models/asset.py:69 assets/templates/assets/asset_detail.html:97
+#: assets/models/asset.py:80 assets/models/domain.py:45
+#: assets/models/user.py:115
+#: assets/templates/assets/domain_gateway_list.html:59
+#: assets/templates/assets/system_user_detail.html:70
+#: assets/templates/assets/system_user_list.html:28
+#: terminal/templates/terminal/session_list.html:75
+msgid "Protocol"
+msgstr "协议"
+
+#: assets/models/asset.py:83 assets/templates/assets/asset_detail.html:97
 msgid "Platform"
 msgstr "系统平台"
 
-#: assets/models/asset.py:76 assets/models/domain.py:48
+#: assets/models/asset.py:90 assets/models/domain.py:48
 #: assets/models/label.py:20 assets/templates/assets/asset_detail.html:105
 msgid "Is active"
 msgstr "激活"
 
-#: assets/models/asset.py:85 assets/templates/assets/asset_detail.html:65
+#: assets/models/asset.py:99 assets/templates/assets/asset_detail.html:65
 msgid "Public IP"
 msgstr "公网IP"
 
-#: assets/models/asset.py:87 assets/templates/assets/asset_detail.html:113
+#: assets/models/asset.py:101 assets/templates/assets/asset_detail.html:113
 msgid "Asset number"
 msgstr "资产编号"
 
-#: assets/models/asset.py:91 assets/templates/assets/asset_detail.html:77
+#: assets/models/asset.py:105 assets/templates/assets/asset_detail.html:77
 msgid "Vendor"
 msgstr "制造商"
 
-#: assets/models/asset.py:93 assets/templates/assets/asset_detail.html:81
+#: assets/models/asset.py:107 assets/templates/assets/asset_detail.html:81
 msgid "Model"
 msgstr "型号"
 
-#: assets/models/asset.py:95 assets/templates/assets/asset_detail.html:109
+#: assets/models/asset.py:109 assets/templates/assets/asset_detail.html:109
 msgid "Serial number"
 msgstr "序列号"
 
-#: assets/models/asset.py:98
+#: assets/models/asset.py:112
 msgid "CPU model"
 msgstr "CPU型号"
 
-#: assets/models/asset.py:99
+#: assets/models/asset.py:113
 msgid "CPU count"
 msgstr "CPU数量"
 
-#: assets/models/asset.py:100
+#: assets/models/asset.py:114
 msgid "CPU cores"
 msgstr "CPU核数"
 
-#: assets/models/asset.py:102 assets/templates/assets/asset_detail.html:89
+#: assets/models/asset.py:116 assets/templates/assets/asset_detail.html:89
 msgid "Memory"
 msgstr "内存"
 
-#: assets/models/asset.py:104
+#: assets/models/asset.py:118
 msgid "Disk total"
 msgstr "硬盘大小"
 
-#: assets/models/asset.py:106
+#: assets/models/asset.py:120
 msgid "Disk info"
 msgstr "硬盘信息"
 
-#: assets/models/asset.py:109 assets/templates/assets/asset_detail.html:101
+#: assets/models/asset.py:123 assets/templates/assets/asset_detail.html:101
 msgid "OS"
 msgstr "操作系统"
 
-#: assets/models/asset.py:111
+#: assets/models/asset.py:125
 msgid "OS version"
 msgstr "系统版本"
 
-#: assets/models/asset.py:113
+#: assets/models/asset.py:127
 msgid "OS arch"
 msgstr "系统架构"
 
-#: assets/models/asset.py:115
+#: assets/models/asset.py:129
 msgid "Hostname raw"
 msgstr "主机名原始"
 
-#: assets/models/asset.py:119 assets/templates/assets/asset_create.html:33
+#: assets/models/asset.py:133 assets/templates/assets/asset_create.html:34
 #: assets/templates/assets/asset_detail.html:220
-#: assets/templates/assets/asset_update.html:38 templates/_nav.html:27
+#: assets/templates/assets/asset_update.html:39 templates/_nav.html:27
 msgid "Labels"
 msgstr "标签管理"
 
-#: assets/models/asset.py:121 assets/models/base.py:29
+#: assets/models/asset.py:135 assets/models/base.py:29
 #: assets/models/cluster.py:28 assets/models/group.py:21
 #: assets/templates/assets/admin_user_detail.html:68
 #: assets/templates/assets/asset_detail.html:117
@@ -326,7 +335,7 @@ msgstr "标签管理"
 msgid "Created by"
 msgstr "创建者"
 
-#: assets/models/asset.py:124 assets/models/cluster.py:26
+#: assets/models/asset.py:138 assets/models/cluster.py:26
 #: assets/models/domain.py:20 assets/models/group.py:22
 #: assets/models/label.py:23 assets/templates/assets/admin_user_detail.html:64
 #: assets/templates/assets/domain_detail.html:68
@@ -339,7 +348,7 @@ msgstr "创建者"
 msgid "Date created"
 msgstr "创建日期"
 
-#: assets/models/asset.py:126 assets/models/base.py:26
+#: assets/models/asset.py:140 assets/models/base.py:26
 #: assets/models/cluster.py:29 assets/models/domain.py:18
 #: assets/models/domain.py:47 assets/models/group.py:23
 #: assets/models/label.py:21 assets/templates/assets/admin_user_detail.html:72
@@ -414,14 +423,6 @@ msgstr "默认Cluster"
 msgid "Cluster"
 msgstr "集群"
 
-#: assets/models/domain.py:45 assets/models/user.py:113
-#: assets/templates/assets/domain_gateway_list.html:59
-#: assets/templates/assets/system_user_detail.html:70
-#: assets/templates/assets/system_user_list.html:28
-#: terminal/templates/terminal/session_list.html:75
-msgid "Protocol"
-msgstr "协议"
-
 #: assets/models/group.py:30
 msgid "Asset group"
 msgstr "资产组"
@@ -444,7 +445,7 @@ msgstr "默认资产组"
 #: terminal/templates/terminal/session_list.html:71 users/forms.py:282
 #: users/models/user.py:31 users/models/user.py:333
 #: users/templates/users/user_group_detail.html:78
-#: users/templates/users/user_group_list.html:13 users/views/user.py:359
+#: users/templates/users/user_group_list.html:13 users/views/user.py:361
 msgid "User"
 msgstr "用户"
 
@@ -461,15 +462,15 @@ msgstr "分类"
 msgid "Key"
 msgstr ""
 
-#: assets/models/user.py:106
+#: assets/models/user.py:108
 msgid "Automatic login"
 msgstr "自动登录"
 
-#: assets/models/user.py:107
+#: assets/models/user.py:109
 msgid "Manually login"
 msgstr "手动登录"
 
-#: assets/models/user.py:111
+#: assets/models/user.py:113
 #: assets/templates/assets/_asset_group_bulk_update_modal.html:11
 #: assets/templates/assets/system_user_asset.html:21
 #: assets/views/admin_user.py:29 assets/views/admin_user.py:47
@@ -487,30 +488,30 @@ msgstr "手动登录"
 msgid "Assets"
 msgstr "资产管理"
 
-#: assets/models/user.py:112
+#: assets/models/user.py:114
 msgid "Priority"
 msgstr "优先级"
 
-#: assets/models/user.py:114 assets/templates/assets/_system_user.html:59
+#: assets/models/user.py:116 assets/templates/assets/_system_user.html:59
 #: assets/templates/assets/system_user_detail.html:122
 #: assets/templates/assets/system_user_update.html:10
 msgid "Auto push"
 msgstr "自动推送"
 
-#: assets/models/user.py:115 assets/templates/assets/system_user_detail.html:74
+#: assets/models/user.py:117 assets/templates/assets/system_user_detail.html:74
 msgid "Sudo"
 msgstr "Sudo"
 
-#: assets/models/user.py:116 assets/templates/assets/system_user_detail.html:79
+#: assets/models/user.py:118 assets/templates/assets/system_user_detail.html:79
 msgid "Shell"
 msgstr "Shell"
 
-#: assets/models/user.py:117 assets/templates/assets/system_user_detail.html:66
+#: assets/models/user.py:119 assets/templates/assets/system_user_detail.html:66
 #: assets/templates/assets/system_user_list.html:29
 msgid "Login mode"
 msgstr "登录模式"
 
-#: assets/models/user.py:157 audits/models.py:12
+#: assets/models/user.py:159 audits/models.py:12
 #: audits/templates/audits/ftp_log_list.html:49
 #: audits/templates/audits/ftp_log_list.html:73 perms/forms.py:43
 #: perms/models.py:34 perms/models.py:78
@@ -624,8 +625,8 @@ msgid "Basic"
 msgstr "基本"
 
 #: assets/templates/assets/_system_user.html:44
-#: assets/templates/assets/asset_create.html:25
-#: assets/templates/assets/asset_update.html:30
+#: assets/templates/assets/asset_create.html:26
+#: assets/templates/assets/asset_update.html:31
 #: assets/templates/assets/gateway_create_update.html:45
 #: users/templates/users/_user.html:21
 msgid "Auth"
@@ -636,8 +637,8 @@ msgid "Auto generate key"
 msgstr "自动生成密钥"
 
 #: assets/templates/assets/_system_user.html:65
-#: assets/templates/assets/asset_create.html:59
-#: assets/templates/assets/asset_update.html:63
+#: assets/templates/assets/asset_create.html:60
+#: assets/templates/assets/asset_update.html:64
 #: assets/templates/assets/gateway_create_update.html:53
 #: perms/templates/perms/asset_permission_create_update.html:45
 #: terminal/templates/terminal/terminal_update.html:42
@@ -647,8 +648,8 @@ msgstr "其它"
 #: assets/templates/assets/_system_user.html:71
 #: assets/templates/assets/admin_user_create_update.html:45
 #: assets/templates/assets/asset_bulk_update.html:23
-#: assets/templates/assets/asset_create.html:66
-#: assets/templates/assets/asset_update.html:70
+#: assets/templates/assets/asset_create.html:67
+#: assets/templates/assets/asset_update.html:71
 #: assets/templates/assets/domain_create_update.html:16
 #: assets/templates/assets/gateway_create_update.html:58
 #: assets/templates/assets/label_create_update.html:18
@@ -672,9 +673,9 @@ msgstr "重置"
 #: assets/templates/assets/_system_user.html:72
 #: assets/templates/assets/admin_user_create_update.html:46
 #: assets/templates/assets/asset_bulk_update.html:24
-#: assets/templates/assets/asset_create.html:67
+#: assets/templates/assets/asset_create.html:68
 #: assets/templates/assets/asset_list.html:108
-#: assets/templates/assets/asset_update.html:71
+#: assets/templates/assets/asset_update.html:72
 #: assets/templates/assets/domain_create_update.html:17
 #: assets/templates/assets/gateway_create_update.html:59
 #: assets/templates/assets/label_create_update.html:19
@@ -1025,7 +1026,7 @@ msgstr "删除"
 msgid "Asset Deleting failed."
 msgstr "删除失败"
 
-#: assets/templates/assets/asset_update.html:59
+#: assets/templates/assets/asset_update.html:60
 msgid "Configuration"
 msgstr "配置"
 
@@ -1987,7 +1988,7 @@ msgstr "文档"
 #: users/templates/users/user_profile.html:17
 #: users/templates/users/user_profile_update.html:37
 #: users/templates/users/user_profile_update.html:57
-#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:341
+#: users/templates/users/user_pubkey_update.html:37 users/views/user.py:343
 msgid "Profile"
 msgstr "个人信息"
 
@@ -2045,8 +2046,8 @@ msgstr "关闭"
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
 #: users/views/login.py:277 users/views/login.py:335 users/views/user.py:65
-#: users/views/user.py:80 users/views/user.py:102 users/views/user.py:173
-#: users/views/user.py:328 users/views/user.py:378 users/views/user.py:413
+#: users/views/user.py:80 users/views/user.py:102 users/views/user.py:175
+#: users/views/user.py:330 users/views/user.py:380 users/views/user.py:415
 msgid "Users"
 msgstr "用户管理"
 
@@ -2680,7 +2681,7 @@ msgid "Reset link will be generated and sent to the user. "
 msgstr "生成重置密码连接，通过邮件发送给用户"
 
 #: users/templates/users/user_detail.html:19
-#: users/templates/users/user_granted_asset.html:18 users/views/user.py:174
+#: users/templates/users/user_granted_asset.html:18 users/views/user.py:176
 msgid "User detail"
 msgstr "用户详情"
 
@@ -2815,8 +2816,8 @@ msgstr "用户删除失败"
 msgid "Administrator Settings force MFA login"
 msgstr "管理员设置强制使用MFA登录"
 
-#: users/templates/users/user_profile.html:116 users/views/user.py:203
-#: users/views/user.py:257
+#: users/templates/users/user_profile.html:116 users/views/user.py:205
+#: users/views/user.py:259
 msgid "User groups"
 msgstr "用户组"
 
@@ -2871,7 +2872,7 @@ msgid "Create account successfully"
 msgstr "创建账户成功"
 
 #: users/utils.py:43
-#, fuzzy, python-format
+#, python-format
 msgid ""
 "\n"
 "    Hello %(name)s:\n"
@@ -3020,7 +3021,7 @@ msgstr "用户组授权资产"
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:128 users/views/user.py:498 users/views/user.py:523
+#: users/views/login.py:128 users/views/user.py:500 users/views/user.py:525
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
@@ -3061,7 +3062,7 @@ msgstr "Token错误或失效"
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:239 users/views/user.py:115 users/views/user.py:396
+#: users/views/login.py:239 users/views/user.py:118 users/views/user.py:398
 msgid "* Your password does not meet the requirements"
 msgstr "* 您的密码不符合要求"
 
@@ -3073,46 +3074,46 @@ msgstr "首次登陆"
 msgid "Login log list"
 msgstr "登录日志"
 
-#: users/views/user.py:127
+#: users/views/user.py:129
 msgid "Bulk update user success"
 msgstr "批量更新用户成功"
 
-#: users/views/user.py:232
+#: users/views/user.py:234
 msgid "Invalid file."
 msgstr "文件不合法"
 
-#: users/views/user.py:329
+#: users/views/user.py:331
 msgid "User granted assets"
 msgstr "用户授权资产"
 
-#: users/views/user.py:360
+#: users/views/user.py:362
 msgid "Profile setting"
 msgstr "个人信息设置"
 
-#: users/views/user.py:379
+#: users/views/user.py:381
 msgid "Password update"
 msgstr "密码更新"
 
-#: users/views/user.py:414
+#: users/views/user.py:416
 msgid "Public key update"
 msgstr "密钥更新"
 
-#: users/views/user.py:455
+#: users/views/user.py:457
 msgid "Password invalid"
 msgstr "用户名或密码无效"
 
-#: users/views/user.py:549
+#: users/views/user.py:551
 msgid "MFA enable success"
 msgstr "MFA 绑定成功"
 
-#: users/views/user.py:550
+#: users/views/user.py:552
 msgid "MFA enable success, return login page"
 msgstr "MFA 绑定成功，返回到登录页面"
 
-#: users/views/user.py:552
+#: users/views/user.py:554
 msgid "MFA disable success"
 msgstr "MFA 解绑成功"
 
-#: users/views/user.py:553
+#: users/views/user.py:555
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"
diff --git a/apps/perms/api.py b/apps/perms/api.py
index 33a027064..40366a19b 100644
--- a/apps/perms/api.py
+++ b/apps/perms/api.py
@@ -73,9 +73,9 @@ class UserGrantedAssetsApi(ListAPIView):
         util = AssetPermissionUtil(user)
         for k, v in util.get_assets().items():
             if k.is_unixlike():
-                system_users_granted = [s for s in v if s.protocol == 'ssh']
+                system_users_granted = [s for s in v if s.protocol in ['ssh', 'telnet']]
             else:
-                system_users_granted = [s for s in v if s.protocol == 'rdp']
+                system_users_granted = [s for s in v if s.protocol in ['rdp', 'telnet']]
             k.system_users_granted = system_users_granted
             queryset.append(k)
         return queryset
@@ -124,9 +124,9 @@ class UserGrantedNodesWithAssetsApi(ListAPIView):
             assets = _assets.keys()
             for k, v in _assets.items():
                 if k.is_unixlike():
-                    system_users_granted = [s for s in v if s.protocol == 'ssh']
+                    system_users_granted = [s for s in v if s.protocol in ['ssh', 'telnet']]
                 else:
-                    system_users_granted = [s for s in v if s.protocol == 'rdp']
+                    system_users_granted = [s for s in v if s.protocol in ['rdp', 'telnet']]
                 k.system_users_granted = system_users_granted
             node.assets_granted = assets
             queryset.append(node)

From 40022899743152448d7d271ff038e5f3b904b7d9 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 3 Jul 2018 13:23:21 +0800
Subject: [PATCH 097/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E8=AF=A6?=
 =?UTF-8?q?=E6=83=85=E4=B8=AD=E5=88=A0=E9=99=A4=E6=97=B6=E7=9A=84bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/templates/users/user_detail.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/users/templates/users/user_detail.html b/apps/users/templates/users/user_detail.html
index 22ab4b5d4..d40251563 100644
--- a/apps/users/templates/users/user_detail.html
+++ b/apps/users/templates/users/user_detail.html
@@ -421,8 +421,8 @@ $(document).ready(function() {
     APIUpdateAttr({ url: the_url, body: JSON.stringify(body), success: success, error: fail});
 }).on('click', '.btn-delete-user', function () {
     var $this = $(this);
-    var name = "{{ user.name }}";
-    var uid = "{{ user.id }}";
+    var name = "{{ user_object.name }}";
+    var uid = "{{ user_object.id }}";
     var the_url = '{% url "api-users:user-detail" pk=DEFAULT_PK %}'.replace('{{ DEFAULT_PK }}', uid);
     var redirect_url = "{% url 'users:user-list' %}";
     objectDelete($this, name, the_url, redirect_url);

From e1be86791351e987e706126e6a2c74a0fa20910d Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Tue, 3 Jul 2018 17:47:12 +0800
Subject: [PATCH 098/112] =?UTF-8?q?[Update]=20=E6=9B=B4=E6=96=B0=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E7=99=BB=E5=BD=95=E6=97=A5=E5=BF=97=EF=BC=8C=E8=AE=B0?=
 =?UTF-8?q?=E5=BD=95=E7=99=BB=E5=BD=95=E5=A4=B1=E8=B4=A5=E6=97=A5=E5=BF=97?=
 =?UTF-8?q?=E5=B9=B6=E6=B7=BB=E5=8A=A0MFA=E5=90=AF=E7=94=A8=E7=8A=B6?=
 =?UTF-8?q?=E6=80=81=E4=BF=A1=E6=81=AF?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 35966 -> 36216 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            | 118 +++++++++++-------
 apps/users/api.py                             |  66 +++++++---
 apps/users/models/authentication.py           |  28 +++++
 .../users/templates/users/login_log_list.html |   6 +
 apps/users/utils.py                           |  12 +-
 apps/users/views/login.py                     |  66 +++++++---
 7 files changed, 217 insertions(+), 79 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index d842930e4e5b0eece76196f4cd257d50a9117912..339af4456cb72a4e21841737e7c98bce3a39fc6a 100644
GIT binary patch
delta 12337
zcmZA72Y3}l+s5%tAf1*%OE82U2sQK`x{!cW37rU`6Iu`g$RQv|6H%m!Gyy@H7zCAo
z0@6DQqKJqu9Yv+6pu+pV&puoq@3+_W<Tvxo?9A-!?#YSrc#-d4OME>)gyo#?a8&bk
zoFbSV>NpQ5cQ2u=<5aHXI5V*dPQq;b%Exi)S9YAe7#dHV{MS_-CqJ&M<~T)hH`3(%
zfb}r6y5m&DHdr5D!C1%fI6K{fa|Qir$X&x-NCXB@uY$_gHWM%}^%j@|JEIof4a0CO
z2I4G?!nZL5KeT){7N@=+i!i@)gF;Rcel^_*gE1fVFpR(w7>u>dCdei^ZBPs8jk$3+
zmd1%#7T4e?Jc;eGNiE0efD6o9*q-^F2DO<S-$ZTELez>6U^t#ZO>hmh(EF(V4>1=$
z!919&j^h--DAf7!sC)xdzt*U6x?1}H^ytdcDX60dgK!S&ghi;GScBTi?U*0WU?ko^
z-I^SA9j71$qb4qn8n+^PZyjpk38<ZGhMK2yUG_hkLJA3O<s{^}a^|8=++!UNp|1E0
z>I%+V`!&=v@(b!&cz_!CA!?!=Jb8sMKdQYVsy*JUSC9QyqPZp7q8^^E$gVnlPz!k%
zHPLF+LN}uNWn(4WkGjGKsD(a4?SLM2)k9F{hnj`4IrU;53fk%csDVeL2A+yKVGinw
z7g&8Y>Q-$;-I|@Khx8a~>o22sM^NKDz$ko-+L6cx?tJA@x6D(Uf_9)CYNBqa2?nAT
zHWu|-O+^i`$m$=UCfsHD!>B91fLg#c)B^9I#(#p^p`eEDxOtETdYmXrltc|!1$AP5
z)PQZwE~qQ&i(1G~)I=WC&b@|uTNa{j*#^{jA6ffu%b!4<cNPQn{$He^6R)9G_z1l#
zMlB#H!Es_R0;91ys$WOcL|srj*BdoX8fxOns0Gi#a=6gydr{BCQH=0VI8C7}UPBF(
zuaP@&G-@YGp%zjDwem)&fm@;$(BA4@Py@e&>NmjJhoi<FgE2T2b^coPsN)t2TJa9l
zfcva|#5{+37Jfnv^egHX{EOQ9yp7!ni=z6KLG4gAEP}OBJNhDO;@+s88rYcq*Hick
z2|Z-<u{*9qy;gor+=;5A7T5wca0k>t$*2iaP*<LYnkXGh<3#kuHRd`jPJM%Uq6zz7
znZ)lTG-2_ktP<N}OI(lIk$b3#9-$Tz(9Cf@#c<4t$59J7gBs^NYJq{xT|-ej7m2#^
zSkyx6c_?VW=BRtz-s(N9J`goQI_g=-u=bg#1uZ~L{2uE3_2`e=tiBVqkOQcX?vton
zb`|xz!t;QF-uGNB+ySFd1ID5TtcV(*HmYA^%eOPToBh$B_K~Q58CVRbV-EZP^+B{5
z3*!;w8S*$+C}@H|P*?Z_wMF@!ckf|I)U%O@rLZSz$6iHEG#7Q=a?}DowDujS3)zPO
zco=o%r%~fyM(^+c2Nd*PhjGJ;VimI;>K=_i-GcF`i6^19ezxToV-WRa7>MgEzZJEE
z+ffVIgL-QYq89uuM(X{)ML|!gUn_T|fv6Mnp(ct#?LaK*itD1Ts1<6$_NXoHX8B&I
z{{2xCk3;RuBvk*`(7SW!(bKw|f}YNksI9q(dM$rPtu!dntw*A+ARhG^H8uNNekN**
zm!j_VM)MGAAy>>>sD=EN$o<zBiH9V#;)o<ZJg^Lw#23)}^rKG5FejrHJPSi`F=|KF
zpcb$R)qfWT;Q<WBQ`UX~<Eh_HV*hnT(XHKyDx-d#R>xe}%Iu7~g1)E$2cfn!9rXoc
zJZb@Nqjqd5>cTdm`W-@T`AO7*e?YyCw>*|`+IYVXJGoFNRL8DZ5A)zcb1iBiAEOq!
z6RYAWYtQ+D`(B4*dGh7(IqZzu$<e51WgKcA&qNBk(y6GGy@k3J%TQOk)!d1>sqeS?
zSLQ{_Uq@~E1M@NFr5@1My?}zK2}`4PyaMLa``?g)7SI;;@by4VG{W*8%g;tFa0P0C
z8?F6w)Ri4W-HOxL6mOv(!b<Jjhc^*5ZXeXG8i9G3-^uV6_@qLucp++Q-?w}=YGFrF
zS9l4B;SC&t$?e?%kD%Jmpl;Cx)PgUg9_n9EJCMJFyU-#StoOe<1vMm?El?|LgL&{p
zjKx&cmCiv;G!J#&QVhrUP!H7()IC3rTEJ}##XrrUj_wXdp(h^=6)ETzG(??{gjF#a
z<8U_WS@^`<i#qQZ>b#4nt-Xc1^1o0Ed~61Ea(6Z#s$UFx=k3J)Yv6_?!muT3rQI<G
z(@<CZ2I{xf+o)T#!Q6@Je-!nBbP*#^zr#yFe$@Ag+L(?Dur!8r=AtpaGyAWtO(7v?
zqV81|*2D{_zXQUP-CNQcwV+O@50tLB9aFIo7U|;Nvg)XQO;I21Em5yslC`%*?Q|~>
z1>M8J7>*+`KTbn^fGkB_;SSVRA4cueIV^}bQCsT6hlQS%yr_QBsGW*KonP1Ltx>nO
z2WqE0Z&J{JYpuhlsFfW?op=`YFkUx*McuMLQCH~G&F$}xT1Xh`0%A}Ls)0Jc8Af7j
z)Xoh+`g@#F6jDiKTElhJ0`8&)c#K+cZf>M@s1a&_PN;{dH)^3HP`6+T>dKd*#@UG8
zhZnWLy{K_ddGp-=OBA#NH&HA62Q^^99`1x?QBQMy)c1tusHZ#?b)|z*17@Noo@?zZ
zP`7q1Y6mu<`hASLkS{S%@BeuUx@VWoJE#-?Mtz0y?dg6QEs0uS8fu^!sD6uZ3NE*N
ziC*r6@z~nOaq3_O?bCbnM+y3-@G(w)DtbPrkl2R@jD`^IgLYyc7R7T|4*xKV^>aU1
zlCTB&L0AMoGEbsE^`BAW+_SoWe>a~Sbt@v!`;hkM{_BJ|OT?qLw4v2InJ=NXc9_*Y
zR-bM4rKoY%n;)7x%-yI7_nT)>3%u0d;}-6c(8~M<xL-W-qCO9*VQ=h#4RN>m*laM+
z%}+!vU^hnNe$<3lQ1|+G)WhdD$n6(yMtZDJ40S@RS>0@my7CvS-plGkFo^sF%TF`s
znJdgq=4Yt4;~?tFf3&*io^{AI*lj3`T1a`+71g$Sg4J822Iy${{#cB9y44q;cHlkK
z`FqX7<|)+p-?(+Y|5FGgaU1o4a^E^UL`~#B#9et|)JJGM>dI@F31%y^BWmKFSPfIH
zzQo#BqIPtHH_!dwNudUbz1{?0Monj^yMO@HfRSb~GZxdxS3)gx8Ro*R=5Ew^N6j<l
zx7PlnWPaxt3R=-4)RhG@s*FGl5RICklvxWkQKHq8QT+#7ezZB+d;@j<Qge&B7d;y2
zECns#C)7Z9F#!Lue9mFEAoMN>bzUhm-fU<lp(gBN^&w^k>ilU|e|;Fgjg?qJA~&wY
zytoCG{~R^Zfq8ohgnN{^ZY_5(FZBmj_Z#l^%w-nFDB4S#jZx?KG*eL{4?&HSVf7i-
zz5vURf7j~!hucThF%tUi@D=L0zls_tV1zqC1m>e2h1$#Vmal>8SKsQb%yt+`J{i@2
zkmb`+{l}yBa{34!6?J&WI;=4_npvn5J~I!RUz?XvS9-_lk5M}kGSWRS3{@|R<*+mc
zV>`=t_fXK5_CdYjs%ye!SQ|H>cSkUcdcY{RJrcF>GG-OjLh7O>Ohir89`zB`1NEKh
zWitaSQuj=-!Ujwr@tqmPSG#7^yJJ6Gg&H_$w7Y<OsQPob7)x4xx49o1kw0ejJTJTb
z^P?781i2uOQ{EaHqOQET*}?L?t=`}2>8PC;kGjG+=3;AKjT&cz`H8vTJcHViOX$!1
z&R>>zVjT*NaVIE+y24th0UM$|Q<JRT$$ZHiW==3?pcc9Sb??`sK5M^5J<R8&KB{g~
z(7k+wdSP>pbx#aKbu5LYu!hyUV=VQds2x~<THs0y$IYmP@3s74tDiG3npe=1pN_XF
z6ha@q(8x%$s+okEAQd(6NULX{7Cz0KYxyPS`>6igtiIDcgxZ<28SKBV@P;KGT8CWY
z+zAVtrOm3S6BAGmQ3uoneNYP-gj#62<ug%l*L16|HaD0bjbr~c;HM-?;4#zyzoGK~
zq9)2W-rboP)E3u9<y%|62Wlr@w)||=I7=}K*PHt-e;Kv#J043sKn>tK!9B4M>hqu!
z>iutuI-wuxN{5<b%uI6@YU25*3s{9Z?_<=%n~geuKdPVSBn3_My(Rueoe=nnJ3wAk
z$KqxsRC_(tKuxUP8ujdSwE9rg0@6|Azh?QhsPQ(rdYsQFXe$qz-=GG%j+)4s=zb9o
zK%F?tT!d<0gF1gB*1&9QzlU0YUU9vC;iz#Npw81@sowX$rzKKR6AUpkPy<Y}`eM}U
zw$|KgW}6353ps<@nV-y`%|A?MlDmLl^nO(dRe=+t%{bJ=wXB|KCR;w$>SIw8PPO`c
z)RnD5UFmupfP1YTm+9u4q88W#y}$qaQ_up^%<<-QbH2IC++t>9ea<^<2JnZF7SIee
zUK09Y7u3%6!tyxC+80jd=4hp>EwKwVz!CGbdEVMDq27|8QD19)r??XZpw5dx?Oc@Q
zE274)YxRy+PeJt?H-&qm!t0h;VI8x~FHqlDj-wu;2bPa{)t$J4SqJmb-U4+?UPLXZ
zpE(q@Bk5+QImcs#cTgv+v-%b@8;g-YZ0)yES9I6fL#DbHPzd!&8iz%(9!6t#ERN$*
zZ^tsMfM+oZJvpYi0~ST^Lx;M8L@a>a@Od1G&2T5`;qiIRU2q8M%EE9F7R3ns#PY|{
zpZa&`hnF!2UdIr<oVO`xz&}wPeWtq$2s8_svFKeOYQjXzCtH4i<;R=T&H3gkbBmdc
zW%c23*b?_p6F4*63Bt`7)Q(iZAgph;KrOhPnQZn#EwCSIyiut0r(qy2z#v?Xe$4Nz
zr=WYc1^Li&zCaDoaHeY#YJe_S2M3}CUX4Mx!`k<lr%`XoWvl;*>K8D}9WT_3Mvn%L
zvqW7~{dv>?$yQG@C!z+LgU{h2)IztT7PJp_{y9{?Yp8quo7L~5cI+|gJipoOzY1Zq
z-G-uOY19A}tX>o2s5d}8y@OCs?;^~F+sr+vhwudI{Qj@I<BmWd>Z6JID%i0=_g{ww
zdBYmcc{BX?F<)L6%I$~&v{j+5qb6~W`a$A1;tg+>Z@ZLrgy3Gh;H~}NkK+^@(DoyS
zG1e2D?IE$4!qbDlADph_E)hCTV}O;5Qh&jl<$u(fO_7Ur)?2+CeYsfYGxTMWX1Ig;
z0~}0*k}E;IGUdZ)*H6ig>on*H$NR*elp7Lvh#Z`(V~vXwMSC{!Gxf*Vm&i}trv58Y
zl>U0+-y+%&bBN=#KRtRqoxcJdr_->R=uhiOVmswggg!KM=-)-<BXs<NEAc~2LH&m}
zKgReDv#G}ub0}9Qno~Z5r?EQ`LHS)mM@8TNcl~Wi_9nUzI`oNmjNr5Be~#SL^l=*U
zOm-UOokXzZDltiZ7PXnW9!4EgiJXM~vDZ>9Li6t@PEl!0gi?Nb=rcjDVQuog)R{y7
zqO1f_&FXKuY46X!$xWtI3Tt6J{lbY8)P1f0B#b8X8a5$3Z&K+*bSDau7*Cv~{Pggn
z{4-IVL{Gdz{7!i*F`n{gIFHa@mmR40R2e@dN|M`$I!aOYr_7&`-v2V~P3rpf9+x40
zBMw?t{A1-roWhA8;{qE@O?N5(iz$}lL(Y55;^&Lc^s7ugnEEvwM(lj1ZIuuE|24@Z
z;xciO$e=?6t9_YrB<0nZm(a10`gP1ryN;REe<yT2Z;qk-nD~JD5j;!WAQA{2k({gF
zkVjR~{Vz@g(fNBNIKHHOi};n$k<%tipzcrkKllex)7r<Ny0q~2c7NzQ!oSx3?lbw}
z<h~&Gk&8vomlRqPcdgR}J4w}dC@;mKxYqL9uz~dzLx>Z^a`ID&9z-(nBhi~EK<Mb|
z;{1ihS?x48?{QwE(1xgD9kVbO9bUG20Od@|`pq{EClF(a4b<1+=lBb8g;+u~C8wh>
zJ|fBxpHd%0j8(%khyJOY^C5{rc2a9oeS(?ThiFMTiF|;P&m7;9n@dc5CZ}Q?xej;;
z$61>`=C4w2g)4~`L~-Jl?!S&R#D9p<B%eLXvVaLB^5J^gE)r#_|B0pWdn`iR-;@Us
zI(8GIyd@ThRf#3^8;Ygrd!BNA;u3Yw41QFg@`TW_mT2TH@qY%%1zKLIJCr}SdNJHi
z?hm3gkxb}2!P6s=_DW2qqc8CS^<BhB%IB5j*yF?g7a`e>C`9MH#1tCJ;Zbt^yxsU$
z9oUlkFya%+5Ao>{XN3Y-ga{-0S^Gn4d&kU8{*aZ^DSx2*A7-6jq9G44g8F3QC(7lC
zYJ`p#iOMW2hS1U6&Qtl3esI(y4v>G}+U8+S;wJgamg`3OYs&AT_x*p1$`)1Zn2x)M
zVoVfAth4+_ruc+&juFq%UKYz)+k2FCbS6S<q5a7Xr(T=bL=+?L5#?!r`usWd=v2r~
zzJ`Ah73p+<c=pIarM&fv!G+X6!e~rWP_Bd}iLI2s!5mna$x<<#`qN{B?!ONGoJ5SI
z!xlovbGQnl?JATzY;75oi&8E_TOG@7!qP-Mal~@()9(vH$9KdE;yzK3_H)D#eg5wu
zkwr|jleSU*hw=(y5%Ibt*NV7JS;sfn$1VQP&nOm@*ZLH&g%>mfu`X=`Ib%8T1LX<{
z6n0Z6VJEG@io~l{e}#4(p;qr>enqYp<r(v~#)Z%89vkS{NTwv2Sar9fBlXopB=xJ<
z9@}CNONp^Q8>#E4LVQg52GN9=MHD8NNpzunl6Z-jPrW{&BM)^Q&+8WcMCBD?u$yys
zP(Eelx6K~dkyu7sRU(#!<RKPQZcM&C`VgIoZp7202IZT?4<vG7Cme_m)FC*ABkM%P
zgs`lDM#=v9Q%0u`NKH#0*e4}@;IOoqeklWor1s6~+G3tx&XiHZ(z0$P9rW`{Pe~s=
zDr-yooWYT4DMM2$4Nn<0YRs^aePj9zNbNKD=}DWr$N2`=tWddXOqCjSs@2N+PtVJt
zS-Xah^v@l0WAo}8TQaY%-g;x(nyk1n9sT^T&RKr-ofTOVCyep)zdm#OwMm&-_cKof
f7Q8z5^-5Q_OuN1!Gv?Zgl{Y__Z71!VxzFdn@q@R`

delta 12146
zcmZA72Y63s|HttYB!Z9_NsPo6BP6v~>>#yAj8d!iOlkye<fK&9YRhBRQ)#WDS|z2W
zN{cFrQc9I7tv!pXt<U@OJKy}TUjK7lU$6WA-uJoJIlo_iy`Ja6yV;&C%I2OakYm2X
z6`Rd*B5+=Q$GJs0sEo3Xvp2?ZX5c<d$HZ92IqK&)KjBVXQ<XaT5!D?h6dTuYoD$d-
zt6>Vp;TmKJ=OQ-1(3*}@!Es!tvsZ9ZF@T1ZsD-S<oVd^ON6eownEY>;9dDuf-^BtL
zQp<4yu?!Z&%9sZeET4#_srSMN=6BL5<RI}LYQkk0f@`r5eu=s9uz3nOB<CV(ArCMw
z2G(|*C=A1j*Z{}iVC;maurtQg@tlmEnBO^0!5=Hu^^PbOwc_4b5Qm{ANJA}j7OMXo
z48nz&4_9CqW}@!jZ~5b>eiu;V+_8429_O!}1yRrd;g}1fP&Yh>I*A6TqilzvI1Gzo
zI_i-v!EjuLns_T}+&$KQ1hw#=Q788+YMxv5IRD}l9+J>e7Ou~vSOGQg3#g8LQ9B-n
z+Cj3lr=cF%RMfjL8`XafYN91r7(cf5J=VV8JXW9c*9~VZaT)dU+(Aysd5l^}O<rM5
z6o*=9JgQ$J#$qqj4riklIu~^Ui>$sJb^jW31Gb>P#igL5)@MQk=S2-1iMk;Qwc{A8
z$DtloJnGSOM!lp1P)9!zeJ6q%XEqkY1*j9*h?;LV>XEreDCh*PpeDMDn!vB2*D(b3
zv5G_u@SN3~q9*KO`F^M!k3lUU4Yj~GP~$H|ozMrU1*}3A=sKB}*oGQ#AL_=RPy=2x
zZ=-hf1ho+VM&3l>sFN#!`n1HN9$7Qgc&)6xtK|ow7B~_E_4yx1K{uwMRyY@ZD@HBg
z11yQ_us9w>^}CLm=r-!)9-zhvXzWc~6t&<etc0;v?}2(p`ePxN!cYnoF%31)YSh4+
zQ77>gY9WVED?f=E_#CR=Rjc1d4g3hz&uQX~7l<XPhN14OjcRX<u8t^yf(A-N)q9$Q
zQO{}&YGLW9qkju^<nN;f`V`gg3)IPcixIdVb&{7*6W>Oi&?D5#m#-=3ua_&TspGte
zbx|Lu1*nPkpceEqYT)yzfv%t?yo1{DKd6cPn=uv!V>Ya1*2U7)<IFzz9QDb~IDbu;
zNun$MfzM;Tc<)4BM@=*nwU9-)1y^7W?A_d+C2E|Zs0A)Im!VGXBh=2fpcZ-%HQouA
zf}ZUkmbhv4N2m$>TX^q4ZqyCMPzx%L{#XNbe?1Jq=2mZmT1Yq4S9V|2BTGU3jd%m~
zF?ZjipaIvR2Hb)ga0hCD{iu#dE&scD!+d}Nv}bSW^~;T=s29QPSReHT)Cl!Rd!oi2
ziM-sdlR`m9GYz9~3F@8LiRJJo)XpEH7Lqf;JCQKd#N|=#F{lmH!<^U{wc`ZT_}x)2
z<p|WrcsiEQ=YO@Yz%L!tv$>2q`a7tB@1ssAJ1>UvA*g<#7>Fe-UjcP;RZt75gW7RJ
z)W^637R7$3mopV}>hteX(2dhj6U{}PKn7~Z8&Ny@1~uV6)Y1NE`QxbmXHXO0MxD%k
zRR3q_JGoZgOB#lHDO;ecqe-No&*Ko(O4F@A2epGWsE^N=<{8WTwf2s<AnF;HF&m*4
z($nmRTF7A32_&NyJhL_DU!KBJ5@m4@>WHtQZurxDh+1*BHr^u%L7hkh>KT_s^{;`s
zumR@Ame$@0t5JUmwW0Z_c|L5z`RmW;Iub$njd=*QgHxyh&!K)uTtiKqqpf#RL8u)?
zqK>={>ZluG9&CsD`1P=QGFG6Tit4}8rO<=II`loGcAjCV1(ZWAFdD04V{0Fa`W#Qe
z%J?ou;&-T>T|m7fS5Xt)#2~zfT3ELB-Xn1HQP2)cnbDY+dQGc0Guv9e8|tVBnxin7
z`gqKT(@+yGKppjasCQ~TY5`xP-noOwJg#%j8g5y`6VwVrI(RFLK;0ON+F2axQ8dAL
z?16guGEgt^m#7UKMLnu>sD)iIA7C)`oE>$tJpXVC>QEWAvihhUw#OvwjxXb0)PVIm
zdF@S6kEk_j!5y(Y_ClS&RMbLep<c$7mj4tr&gYm<pZ^^c^imu`?eIQo0Z&i^`FHjf
z7KD14N}`^1E!4z`m>>I^qp<+>*D(YaqE2u%s{baej^CggP2nB|-#d`#8I8KJChEo(
zs3Yx++HpVB0tcJPs3V<->Ng#I6Qjmmjatw~)Iz_-l6WGK^Vg0akkH%w6g5zxE}msk
zH`G9V0kyzFI26lZ8tQk$G8~KlU=)t!Z+Q$ZL7nV=^DgQUMRem=5XN`o{PjCOm4u$j
zX4HbVqn_C=+>D1%&vI&a?_F7n>i03~yL=<+<F?7#x1f%CFX|B<!-9AUL-7{sd&A#-
z!P{X;)KOPM9aSR?$4;mt9fo>IC!qRGL!Hz-)CsMy`exL#-Ge%*N2u|F`I1rp(x`=1
zL*3^#q@bO5FuS9kSzpu+hoNprLM`M~)DEVj7L<Xy{}U{Vn^7ls1l9jE4#caL@6gj5
zuP1W9>kOu#6{nz%Xf0}h?WmV%A8Mt)U}3zD+KE38UJDCF-^+`dFdDV6x|UBsoj@ln
ziUU#OrDH*T{^wHA+q??(cCSb6a1&~v?@<%}V(nK^&-72!&hMl8{e#*-zFyvVrBRP6
z+N^`RuQ}=$QX70;pZ`%5w6ZTy106+m{2iy@70Zw8?M;}9ZT<Ls<3!qj?87fvY}1#I
z7Wp4=2hM+qFB$S(26!ism*-G|dP%H=jnP$MIE6@DfGzPejKC*mkwM;qYN3v@fz>;h
z-B6F9H)_X2EI-cbspxxWte#=68^rnRXt!8mAF6)b>K8G9`d#yp={MNR2cjknHX~3A
ztZ2re7S<li;tQzngEZ`m9}edH8&L=x;+bH+Y3@ZWAaJPnqcIpYVGQb7*GIi{?NR-D
znFGw>sQ#l(*PMmg=;Exz8cS@(Tr})K-FVpi)x2unH**a0J{9><JFjH*2B`bHTE4&4
zQ&0<?Vs&?hB^IIvSZWO$P;cpWtDi;vY`%dSAZWN}L9-}o!cta`!9eOYQQspCt-Tp)
zo({;z*>(C;&{t<F=E8JyhB?n%ikf&e*1+{vKX2{VP)B;t^8O?E3rRf)bzd{H6>0$;
zeRZDy0Baa-j>b`Rn273l8H4b#8934#Fw~4N%b@yIGHat26pz|iqS+g@pdna*`JE&c
za58Fu`Bq<sx^a``cbEsvlc@VHnh(t&R<ChNpcYUWHBKDn#1@ushprlWQ}C?_bz_p5
zYECy7pe9^y_08rk)cuF8e!}YKF)#URsD(VVe6A#Ko{%J-zb1?%p#dtHRn0mWOumuT
z+oSq-HTz>R>dEFT)Htin^{D=vF&KAQ{V1y6*(A=tJcUb^2u}7I!cc!CB2k}$Skyor
zt-UvfP#=go!4%7<qxwy=`aE+9YP@Br{-2@xZFec?NWZs+GpLnaHgB1Kqi%R==6>0$
zhnr<lJFIH;Ca7`RS-p$ZU&2b{hhlDY=UGDr>L^#CKIc186Q0AmcoTIJ6-IjtZiQ;^
zh1$_Db1Z5hX{ZIfg_>wS>d*K4s9#K5JY8oSg%}b$%$wMldgK_--q@Ua1`fgtsDaz?
zgHH?SjH>s=#W>jNe&f7+AT}W%Z1s+2cMR6w|2`B7&>_hhCZh(PZZ5F=a;vYk`sb+o
zwxf1<#5`^7mr&!}G#{IRDPBGl3+wY=nu2yvUkPk#9eScB7-H?OT7EL>tMzTGFEUq}
z8_gZ&0n|7rQP2K5>KiwFJkLLbLNN+@hLusD*IK9>;!*A0upADt`de6mdIoCedr><*
ziUsj3YD0fn{;|~qCwTc_Gi(CqA4<na654rnvyC~>OhZku5H;`$tAB)A_!s6*%O5aL
zqWWL7`VI3DYJ)i^a{k(3QGQ1$5sjLtq1oE(ZVp8C8;yF)r=lj9k6OroQTMO1d?xBs
zwbkm!&0o#)E(HyE4a?v&)BvSl@$#{#iJD?z?1Vbv;g)wT|2FC*S6hBNYMeu;1)MVP
zTfX3{-oo9I6x6XiYJeJ6Z-x3E=!W{-r=WJa2({A;bB&p4euWzEJJiOGq3*kcdTDQ>
z?!S-pa~;1_Z=!st8>^shsD~P$iRBZ`e%3w;HPATJ$+(tZgt{*SwSkS6KY|+nXY&I3
zKL2-o1-_Lgc>@(dEg%}FU^Uc@o6TL;ei-#=PGBv(WbMV%yahy~K5h+B3ml3Xcd|KM
z>hu2&1x>KfT!Grb2CMHz-xrK|+Pq}mK`rDd>O}G~s0=qtnbD{P)I`k}hpr0xuMpW4
zHF1Bdr<hYL|Bls{qbB^+>R+P<K8V`sF&u(7tll-<%O{~0_9m+T+;pD5CSFWJt}-*t
zug!zzFXkm|;P3@wR(s7GFc~$@c=X5DQ71P8E8~1?--%l253jL8-Ef(NR&>vNVjZ(j
z_C6IMs9&*BsQ%HY{&i3%*2wamPy_d|`UI;_MfF>1ZZLPd6g1!o^E~PY$!*ljQ-n8A
z?eS(uvp41=KOFTaUO_ErhB*gy-y(CRxzXH#>hB(~#8LAsmZIT?bqIdl+ff*5z*y8y
z;!xk5?Xd**#p0Nbr7;8bso05C@F5n%@>9L>njz!3&WjYZgCq<?7ZY#+HpkykFHN~O
zycNfy7E%irVKXd*r!9XQ1E@bkfApW`{k6-3d8h}Y#w&&a%<q(=paoPm<IFawoxX^g
zFv;?%mY-$$40D~i#oS{aHP2#2#<^kj@HZKs`JJ*9G(l}M9<`v3sFn6Jhog2j&P+9@
zpzfc6TJS>D{cAB0x1z?`g*uUgs7H4cUA{A%^At2d|LLB|r~xKnJ)DgicrWI{Q>gX}
z<~`Kk4*wZmz8I=sG-}+MW>af#Z}mPiIDZW^f`kT0wGMO5WvGERq6XTATF5?YKW**T
zF+2Ict^NpgQaNUN_vJAQqw?j<$}>5CO;Ftu4KSK|JnF4YM!mI5Q482=eusMbj-l=!
zIm;V(Jo-`Z$v?e_wUl+W@^C)HQ^Y5<?NvuT|7sM<qONw7Zxf>_^Hacg{fB>lAy*Vb
zu{S;?^nclT5eJeB#{<LwVjl7D>kRFhXFEm^x_&d=3@UoYpAanGciraSidN>;@Ld=A
zccR_o$He!j2V--~sZ%lPy5<s(EPt2sJ4$lRCaRJjMRXzfN^qU06s8cJd|e#pHS-&M
z$;x_Lb?L~@6V>U@*MjexvJF<Wi77g(X?v5XPdrb&Pi`45RHI!5sRt94{d6u|TZ#L`
zr^IF&{)->sSR(6+vvMDNfjC1$d&@;p{?j`8vlx9f>ncS1ej<``Yhsj=TqTGQ`h9Qn
z`;q~4e2-E+8&t`7;tA1|+*#sX%BP7Ylt);<46`oztm}1hL#bS|#CO#7)4nb75mAN7
zAE0mkH*5gv&Sc7E>^Q@4l9F5ltj}ot@?ZV8)3%a0OXMQ|;=kGoaDO=UBw{J;x>BsY
zCgnoey!oBRRPxe!GDhON*6B~2OEe^ZgIGc=u(mz;geXpbU9%`>r@Yy#I)kaFQl4Y=
ze$<aqu8rM@S1Fgydj8Lm7)Io<!A{b+ka`26IputKp3s+!t~JE_)OF>ud%PO|#Y?`L
zRmS55;t%Uv3g5`;h}T>a_pMR+Jd|r%eIsuASKC1=52N2L$_=eP6XS`BR@XSc6UC@^
zA_h_}gO!Mplt0D|*aF?@6m;FC@`G1&%Gr*dr(S{l1fsIFeMULW$~{dHLSA3t|93IQ
zO>(+QP;P+*ZQPG3?^T1|zrrL3Q~HO_(}|ymG1OCt{x$$b-___}^>SolsJAA*BBHFV
z7Us3`L%T1hd7S(~D<7sjLhs*V3J-{{X$WF5N%$9Wk({oMM1Eh1?*(!J^jSr{4&|*x
zXUZL{ZxPC$Ti+mZCFz?V>k<ttFUnG%L-^kR!W3R1))M82%j6FrzrdUiFd2tqVPrht
zb(nugk_#u%-*WuXbG{*`t0bZSEg()6t|r7J>f7*3CG7Hj{-06VMdNOK3D;ZWP5gq;
zOIpEZE<jmV40ZnaIhTk*mdm943-J#1mn}!t=|g0vejWXZXd;5h=Ewe{8Av}Ab$v!`
zB65?9AOb1B#*K$;uw&Srs6bv<BIRzl1Q+06sH>T&@;?1zS2o5hLwQ|RLg!zU&K*ds
zAXXE<5j}{kYd(davnqIn*uXuDh+UMA5)+8WHffqU8-FE^5O2{Q$mA`t4x#G@@<m*d
zS=SybT%e&h(Us^+E{2#!Il$V_nU~02AxaWg30=L2oxYOyzpANN+v+>a8T1`bd_djR
z&#zahv?TujwVvFk#9|t9Sz{aO{U~?FXks3bZf(VI98rl)eQUY4v_}#j61oNv_b9I*
z{Pq0bqwt)siDRZbpU@R+7N8tPyiMd`;8o;HQPx$-!}*=uRm!EUE*jhY3Am5QBpQ(~
zkAGXg@AduPo=OmLi+DujrbABR8Ied`*C7w5EDO*Th4rx%7Q$)7kMzGx=;}_aqnzLR
zkENcQs6wn%AL4V#{7y23;}}aM5JjjjCw3BRh#tgu<g>26)O8IZa!}64B*lFhewg5|
zL|5Wvq9g4)h!b{CI<_JLiR*+rhJWr5r5WTEZa7EzA)#vs)*v2JE>C+N470YTl$TO2
zh#QG<l)u6f*4~ct7nFa*F2viEixWi|XE^mLl(%UAC#d8gY7otcp)_nGvabCU{>iGC
zp$zf|<<lC3_z!WC_?qw|be+QGUeUQhIhCkNJtz0x!DYmetl!;7Y1~azrtxpo^^=D)
z)h{z9HlaY~q$V8$GB3A$%Rh5c+ui<|37xa$&K%k+DqHSaRjSo2S+!cds&z9L_c@n8
f^R<_U2V_1S-@!jKaZ-wZ=8?$<12ebH+~)T`x~YKL

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index c596db6ac..4396c01fb 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-06-25 12:19+0800\n"
+"POT-Creation-Date: 2018-07-03 16:48+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -118,7 +118,7 @@ msgstr "端口"
 msgid "Asset"
 msgstr "资产"
 
-#: assets/forms/domain.py:54 assets/forms/user.py:79 assets/forms/user.py:138
+#: assets/forms/domain.py:54 assets/forms/user.py:79 assets/forms/user.py:139
 #: assets/models/base.py:21 assets/models/cluster.py:18
 #: assets/models/domain.py:17 assets/models/group.py:20
 #: assets/models/label.py:17 assets/templates/assets/admin_user_detail.html:56
@@ -147,14 +147,14 @@ msgstr "资产"
 msgid "Name"
 msgstr "名称"
 
-#: assets/forms/domain.py:55 assets/forms/user.py:80 assets/forms/user.py:139
+#: assets/forms/domain.py:55 assets/forms/user.py:80 assets/forms/user.py:140
 #: assets/models/base.py:22 assets/templates/assets/admin_user_detail.html:60
 #: assets/templates/assets/admin_user_list.html:24
 #: assets/templates/assets/domain_gateway_list.html:60
 #: assets/templates/assets/system_user_detail.html:62
 #: assets/templates/assets/system_user_list.html:27
 #: perms/templates/perms/asset_permission_user.html:55 users/forms.py:13
-#: users/forms.py:31 users/models/authentication.py:45 users/models/user.py:47
+#: users/forms.py:31 users/models/authentication.py:70 users/models/user.py:47
 #: users/templates/users/_select_user_modal.html:14
 #: users/templates/users/login.html:56
 #: users/templates/users/login_log_list.html:49
@@ -192,21 +192,21 @@ msgstr "ssh密钥不合法"
 msgid "Password and private key file must be input one"
 msgstr "密码和私钥, 必须输入一个"
 
-#: assets/forms/user.py:124
+#: assets/forms/user.py:125
 msgid "* Automatic login mode, must fill in the username."
 msgstr "自动登录模式，必须填写用户名"
 
-#: assets/forms/user.py:144
+#: assets/forms/user.py:145
 msgid "Auto push system user to asset"
 msgstr "自动推送系统用户到资产"
 
-#: assets/forms/user.py:145
+#: assets/forms/user.py:146
 msgid ""
 "High level will be using login asset as default, if user was granted more "
 "than 2 system user"
 msgstr "高优先级的系统用户将会作为默认登录用户"
 
-#: assets/forms/user.py:147
+#: assets/forms/user.py:148
 msgid ""
 "If you choose manual login mode, you do not need to fill in the username and "
 "password."
@@ -1237,7 +1237,7 @@ msgid "Filename"
 msgstr "文件名"
 
 #: audits/models.py:15 audits/templates/audits/ftp_log_list.html:77
-#: ops/templates/ops/task_list.html:39
+#: ops/templates/ops/task_list.html:39 users/models/authentication.py:66
 msgid "Success"
 msgstr "成功"
 
@@ -1485,7 +1485,8 @@ msgstr ""
 msgid "discard time"
 msgstr ""
 
-#: common/models.py:29 users/templates/users/user_detail.html:96
+#: common/models.py:29 users/models/authentication.py:51
+#: users/templates/users/user_detail.html:96
 msgid "Enabled"
 msgstr "启用"
 
@@ -1803,7 +1804,7 @@ msgid "Versions"
 msgstr "版本"
 
 #: ops/templates/ops/task_list.html:40
-#: users/templates/users/login_log_list.html:54
+#: users/templates/users/login_log_list.html:57
 msgid "Date"
 msgstr "日期"
 
@@ -2045,7 +2046,7 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:277 users/views/login.py:335 users/views/user.py:65
+#: users/views/login.py:311 users/views/login.py:369 users/views/user.py:65
 #: users/views/user.py:80 users/views/user.py:102 users/views/user.py:175
 #: users/views/user.py:330 users/views/user.py:380 users/views/user.py:415
 msgid "Users"
@@ -2406,8 +2407,9 @@ msgstr ""
 msgid "* Enable MFA authentication to make the account more secure."
 msgstr "* 启用MFA认证，使账号更加安全."
 
-#: users/forms.py:143 users/models/user.py:71
+#: users/forms.py:143 users/models/authentication.py:75 users/models/user.py:71
 #: users/templates/users/first_login.html:45
+#: users/templates/users/login_log_list.html:54
 msgid "MFA"
 msgstr "MFA"
 
@@ -2467,23 +2469,53 @@ msgstr "ssh公钥"
 msgid "Private Token"
 msgstr "ssh密钥"
 
-#: users/models/authentication.py:46
+#: users/models/authentication.py:50 users/templates/users/user_detail.html:98
+msgid "Disabled"
+msgstr "禁用"
+
+#: users/models/authentication.py:52 users/models/authentication.py:60
+msgid "-"
+msgstr ""
+
+#: users/models/authentication.py:61
+msgid "Username/password check failed"
+msgstr "用户名/密码 校验失败"
+
+#: users/models/authentication.py:62
+msgid "MFA authentication failed"
+msgstr "MFA 认证失败"
+
+#: users/models/authentication.py:67
+msgid "Failed"
+msgstr "失败"
+
+#: users/models/authentication.py:71
 msgid "Login type"
 msgstr "登录方式"
 
-#: users/models/authentication.py:47
+#: users/models/authentication.py:72
 msgid "Login ip"
 msgstr "登录IP"
 
-#: users/models/authentication.py:48
+#: users/models/authentication.py:73
 msgid "Login city"
 msgstr "登录城市"
 
-#: users/models/authentication.py:49
+#: users/models/authentication.py:74
 msgid "User agent"
 msgstr "Agent"
 
-#: users/models/authentication.py:50
+#: users/models/authentication.py:76
+#: users/templates/users/login_log_list.html:55
+msgid "Reason"
+msgstr "原因"
+
+#: users/models/authentication.py:77
+#: users/templates/users/login_log_list.html:56
+msgid "Status"
+msgstr "状态"
+
+#: users/models/authentication.py:78
 msgid "Date login"
 msgstr "登录日期"
 
@@ -2646,7 +2678,7 @@ msgid "Can't provide security? Please contact the administrator!"
 msgstr "如果不能提供MFA验证码，请联系管理员!"
 
 #: users/templates/users/reset_password.html:46
-#: users/templates/users/user_detail.html:352 users/utils.py:80
+#: users/templates/users/user_detail.html:352 users/utils.py:81
 msgid "Reset password"
 msgstr "重置密码"
 
@@ -2696,10 +2728,6 @@ msgstr "授权的资产"
 msgid "Force enabled"
 msgstr "强制启用"
 
-#: users/templates/users/user_detail.html:98
-msgid "Disabled"
-msgstr "禁用"
-
 #: users/templates/users/user_detail.html:119
 #: users/templates/users/user_profile.html:108
 msgid "Last login"
@@ -2867,11 +2895,11 @@ msgstr "新的公钥已设置成功，请下载对应的私钥"
 msgid "Update user"
 msgstr "更新用户"
 
-#: users/utils.py:41
+#: users/utils.py:42
 msgid "Create account successfully"
 msgstr "创建账户成功"
 
-#: users/utils.py:43
+#: users/utils.py:44
 #, python-format
 msgid ""
 "\n"
@@ -2916,7 +2944,7 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:82
+#: users/utils.py:83
 #, python-format
 msgid ""
 "\n"
@@ -2960,11 +2988,11 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:113
+#: users/utils.py:114
 msgid "SSH Key Reset"
 msgstr "重置ssh密钥"
 
-#: users/utils.py:115
+#: users/utils.py:116
 #, python-format
 msgid ""
 "\n"
@@ -2989,15 +3017,15 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:148
+#: users/utils.py:149
 msgid "User not exist"
 msgstr "用户不存在"
 
-#: users/utils.py:150
+#: users/utils.py:151
 msgid "Disabled or expired"
 msgstr "禁用或失效"
 
-#: users/utils.py:163
+#: users/utils.py:164
 msgid "Password or SSH public key invalid"
 msgstr "密码或密钥不合法"
 
@@ -3017,60 +3045,60 @@ msgstr "更新用户组"
 msgid "User group granted asset"
 msgstr "用户组授权资产"
 
-#: users/views/login.py:62
+#: users/views/login.py:63
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:128 users/views/user.py:500 users/views/user.py:525
+#: users/views/login.py:159 users/views/user.py:500 users/views/user.py:525
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
-#: users/views/login.py:154
+#: users/views/login.py:188
 msgid "Logout success"
 msgstr "退出登录成功"
 
-#: users/views/login.py:155
+#: users/views/login.py:189
 msgid "Logout success, return login page"
 msgstr "退出登录成功，返回到登录页面"
 
-#: users/views/login.py:171
+#: users/views/login.py:205
 msgid "Email address invalid, please input again"
 msgstr "邮箱地址错误，重新输入"
 
-#: users/views/login.py:184
+#: users/views/login.py:218
 msgid "Send reset password message"
 msgstr "发送重置密码邮件"
 
-#: users/views/login.py:185
+#: users/views/login.py:219
 msgid "Send reset password mail success, login your mail box and follow it "
 msgstr ""
 "发送重置邮件成功, 请登录邮箱查看, 按照提示操作 (如果没收到,请等待3-5分钟)"
 
-#: users/views/login.py:198
+#: users/views/login.py:232
 msgid "Reset password success"
 msgstr "重置密码成功"
 
-#: users/views/login.py:199
+#: users/views/login.py:233
 msgid "Reset password success, return to login page"
 msgstr "重置密码成功，返回到登录页面"
 
-#: users/views/login.py:220 users/views/login.py:233
+#: users/views/login.py:254 users/views/login.py:267
 msgid "Token invalid or expired"
 msgstr "Token错误或失效"
 
-#: users/views/login.py:229
+#: users/views/login.py:263
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:239 users/views/user.py:118 users/views/user.py:398
+#: users/views/login.py:273 users/views/user.py:118 users/views/user.py:398
 msgid "* Your password does not meet the requirements"
 msgstr "* 您的密码不符合要求"
 
-#: users/views/login.py:277
+#: users/views/login.py:311
 msgid "First login"
 msgstr "首次登陆"
 
-#: users/views/login.py:336
+#: users/views/login.py:370
 msgid "Login log list"
 msgstr "登录日志"
 
diff --git a/apps/users/api.py b/apps/users/api.py
index dbc5b66a8..5df312fcf 100644
--- a/apps/users/api.py
+++ b/apps/users/api.py
@@ -14,7 +14,7 @@ from .serializers import UserSerializer, UserGroupSerializer, \
     UserGroupUpdateMemeberSerializer, UserPKUpdateSerializer, \
     UserUpdateGroupSerializer, ChangeUserPasswordSerializer
 from .tasks import write_login_log_async
-from .models import User, UserGroup
+from .models import User, UserGroup, LoginLog
 from .permissions import IsSuperUser, IsValidUser, IsCurrentUserOrReadOnly, \
     IsSuperUserOrAppUser
 from .utils import check_user_valid, generate_token, get_login_ip, check_otp_code
@@ -153,10 +153,25 @@ class UserOtpAuthApi(APIView):
             return Response({'msg': '请先进行用户名和密码验证'}, status=401)
 
         if not check_otp_code(user.otp_secret_key, otp_code):
+            # Write login failed log
+            kwargs = {
+                'username': user.username,
+                'mfa': int(user.otp_enabled),
+                'reason': LoginLog.REASON_MFA,
+                'status': False
+            }
+            self.write_login_log(request, **kwargs)
             return Response({'msg': 'MFA认证失败'}, status=401)
 
+        # Write login success log
+        kwargs = {
+            'username': user.username,
+            'mfa': int(user.otp_enabled),
+            'reason': LoginLog.REASON_NOTHING,
+            'status': True
+        }
+        self.write_login_log(request, **kwargs)
         token = generate_token(request, user)
-        self.write_login_log(request, user)
         return Response(
             {
                 'token': token,
@@ -165,7 +180,7 @@ class UserOtpAuthApi(APIView):
         )
 
     @staticmethod
-    def write_login_log(request, user):
+    def write_login_log(request, **kwargs):
         login_ip = request.data.get('remote_addr', None)
         login_type = request.data.get('login_type', '')
         user_agent = request.data.get('HTTP_USER_AGENT', '')
@@ -173,10 +188,13 @@ class UserOtpAuthApi(APIView):
         if not login_ip:
             login_ip = get_login_ip(request)
 
-        write_login_log_async.delay(
-            user.username, ip=login_ip,
-            type=login_type, user_agent=user_agent,
-        )
+        data = {
+            'ip': login_ip,
+            'type': login_type,
+            'user_agent': user_agent
+        }
+        kwargs.update(data)
+        write_login_log_async.delay(**kwargs)
 
 
 class UserAuthApi(APIView):
@@ -187,11 +205,26 @@ class UserAuthApi(APIView):
         user, msg = self.check_user_valid(request)
 
         if not user:
+            # Write login failed log
+            kwargs = {
+                'username': request.data.get('username', ''),
+                'mfa': LoginLog.MFA_UNKNOWN,
+                'reason': LoginLog.REASON_PASSWORD,
+                'status': False
+            }
+            self.write_login_log(request, **kwargs)
             return Response({'msg': msg}, status=401)
 
         if not user.otp_enabled:
+            # Write login success log
+            kwargs = {
+                'username': user.username,
+                'mfa': int(user.otp_enabled),
+                'reason': LoginLog.REASON_NOTHING,
+                'status': True
+            }
+            self.write_login_log(request, **kwargs)
             token = generate_token(request, user)
-            self.write_login_log(request, user)
             return Response(
                 {
                     'token': token,
@@ -208,7 +241,8 @@ class UserAuthApi(APIView):
                 'otp_url': reverse('api-users:user-otp-auth'),
                 'seed': seed,
                 'user': self.serializer_class(user).data
-            }, status=300)
+            }, status=300
+        )
 
     @staticmethod
     def check_user_valid(request):
@@ -222,7 +256,7 @@ class UserAuthApi(APIView):
         return user, msg
 
     @staticmethod
-    def write_login_log(request, user):
+    def write_login_log(request, **kwargs):
         login_ip = request.data.get('remote_addr', None)
         login_type = request.data.get('login_type', '')
         user_agent = request.data.get('HTTP_USER_AGENT', '')
@@ -230,10 +264,14 @@ class UserAuthApi(APIView):
         if not login_ip:
             login_ip = get_login_ip(request)
 
-        write_login_log_async.delay(
-            user.username, ip=login_ip,
-            type=login_type, user_agent=user_agent,
-        )
+        data = {
+            'ip': login_ip,
+            'type': login_type,
+            'user_agent': user_agent,
+        }
+        kwargs.update(data)
+
+        write_login_log_async.delay(**kwargs)
 
 
 class UserConnectionTokenApi(APIView):
diff --git a/apps/users/models/authentication.py b/apps/users/models/authentication.py
index 5169a79d2..493e4bb59 100644
--- a/apps/users/models/authentication.py
+++ b/apps/users/models/authentication.py
@@ -41,12 +41,40 @@ class LoginLog(models.Model):
         ('W', 'Web'),
         ('T', 'Terminal'),
     )
+
+    MFA_DISABLED = 0
+    MFA_ENABLED = 1
+    MFA_UNKNOWN = 2
+
+    MFA_CHOICE = (
+        (MFA_DISABLED, _('Disabled')),
+        (MFA_ENABLED, _('Enabled')),
+        (MFA_UNKNOWN, _('-')),
+    )
+
+    REASON_NOTHING = 0
+    REASON_PASSWORD = 1
+    REASON_MFA = 2
+
+    REASON_CHOICE = (
+        (REASON_NOTHING, _('-')),
+        (REASON_PASSWORD, _('Username/password check failed')),
+        (REASON_MFA, _('MFA authentication failed')),
+    )
+
+    STATUS_CHOICE = (
+        (True, _('Success')),
+        (False, _('Failed'))
+    )
     id = models.UUIDField(default=uuid.uuid4, primary_key=True)
     username = models.CharField(max_length=20, verbose_name=_('Username'))
     type = models.CharField(choices=LOGIN_TYPE_CHOICE, max_length=2, verbose_name=_('Login type'))
     ip = models.GenericIPAddressField(verbose_name=_('Login ip'))
     city = models.CharField(max_length=254, blank=True, null=True, verbose_name=_('Login city'))
     user_agent = models.CharField(max_length=254, blank=True, null=True, verbose_name=_('User agent'))
+    mfa = models.SmallIntegerField(default=MFA_DISABLED, choices=MFA_CHOICE, verbose_name=_('MFA'))
+    reason = models.SmallIntegerField(default=REASON_NOTHING, choices=REASON_CHOICE, verbose_name=_('Reason'))
+    status = models.BooleanField(max_length=2, default=True, choices=STATUS_CHOICE, verbose_name=_('Status'))
     datetime = models.DateTimeField(auto_now_add=True, verbose_name=_('Date login'))
 
     class Meta:
diff --git a/apps/users/templates/users/login_log_list.html b/apps/users/templates/users/login_log_list.html
index 4a08c28db..afaf671a5 100644
--- a/apps/users/templates/users/login_log_list.html
+++ b/apps/users/templates/users/login_log_list.html
@@ -51,6 +51,9 @@
     <th class="text-center">{% trans 'UA' %}</th>
     <th class="text-center">{% trans 'IP' %}</th>
     <th class="text-center">{% trans 'City' %}</th>
+    <th class="text-center">{% trans 'MFA' %}</th>
+    <th class="text-center">{% trans 'Reason' %}</th>
+    <th class="text-center">{% trans 'Status' %}</th>
     <th class="text-center">{% trans 'Date' %}</th>
 {% endblock %}
 
@@ -65,6 +68,9 @@
             </td>
             <td class="text-center">{{ login_log.ip }}</td>
             <td class="text-center">{{ login_log.city }}</td>
+            <td class="text-center">{{ login_log.get_mfa_display }}</td>
+            <td class="text-center">{{ login_log.get_reason_display }}</td>
+            <td class="text-center">{{ login_log.get_status_display }}</td>
             <td class="text-center">{{ login_log.datetime }}</td>
         </tr>
     {% endfor %}
diff --git a/apps/users/utils.py b/apps/users/utils.py
index 989632e2c..fb2a8d93e 100644
--- a/apps/users/utils.py
+++ b/apps/users/utils.py
@@ -13,7 +13,7 @@ import ipaddress
 from django.http import Http404
 from django.conf import settings
 from django.contrib.auth.mixins import UserPassesTestMixin
-from django.contrib.auth import authenticate, login as auth_login
+from django.contrib.auth import authenticate
 from django.utils.translation import ugettext as _
 from django.core.cache import cache
 
@@ -22,6 +22,7 @@ from common.utils import reverse, get_object_or_none
 from common.models import Setting
 from common.forms import SecuritySettingForm
 from .models import User, LoginLog
+# from .tasks import write_login_log_async
 
 
 logger = logging.getLogger('jumpserver')
@@ -200,16 +201,15 @@ def get_login_ip(request):
     return login_ip
 
 
-def write_login_log(username, type='', ip='', user_agent=''):
+def write_login_log(*args, **kwargs):
+    ip = kwargs.get('ip', '')
     if not (ip and validate_ip(ip)):
         ip = ip[:15]
         city = "Unknown"
     else:
         city = get_ip_city(ip)
-    LoginLog.objects.create(
-        username=username, type=type,
-        ip=ip, city=city, user_agent=user_agent
-    )
+    kwargs.update({'ip': ip, 'city': city})
+    LoginLog.objects.create(**kwargs)
 
 
 def get_ip_city(ip, timeout=10):
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index feaf47e89..02f3b66af 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -25,8 +25,9 @@ from common.utils import get_object_or_none
 from common.mixins import DatetimeSearchMixin, AdminUserRequiredMixin
 from common.models import Setting
 from ..models import User, LoginLog
-from ..utils import send_reset_password_mail, check_otp_code, get_login_ip, redirect_user_first_login_or_index, \
-    get_user_or_tmp_user, set_tmp_user_to_cache, get_password_check_rules, check_password_rules
+from ..utils import send_reset_password_mail, check_otp_code, get_login_ip, \
+    redirect_user_first_login_or_index, get_user_or_tmp_user, \
+    set_tmp_user_to_cache, get_password_check_rules, check_password_rules
 from ..tasks import write_login_log_async
 from .. import forms
 
@@ -65,6 +66,15 @@ class UserLoginView(FormView):
         return redirect(self.get_success_url())
 
     def form_invalid(self, form):
+        # Write login failed log
+        kwargs = {
+            'username': form.cleaned_data.get('username'),
+            'mfa': LoginLog.MFA_UNKNOWN,
+            'reason': LoginLog.REASON_PASSWORD,
+            'status': False
+        }
+        self.write_login_log(**kwargs)
+
         ip = get_login_ip(self.request)
         cache.set(self.key_prefix.format(ip), 1, 3600)
         old_form = form
@@ -91,7 +101,14 @@ class UserLoginView(FormView):
         elif not user.otp_enabled:
             # 0 & T,F
             auth_login(self.request, user)
-            self.write_login_log()
+            # Write login success log
+            kwargs = {
+                'username': self.request.user.username,
+                'mfa': int(self.request.user.otp_enabled),
+                'reason': LoginLog.REASON_NOTHING,
+                'status': True
+            }
+            self.write_login_log(**kwargs)
             return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
 
     def get_context_data(self, **kwargs):
@@ -101,13 +118,16 @@ class UserLoginView(FormView):
         kwargs.update(context)
         return super().get_context_data(**kwargs)
 
-    def write_login_log(self):
+    def write_login_log(self, **kwargs):
         login_ip = get_login_ip(self.request)
         user_agent = self.request.META.get('HTTP_USER_AGENT', '')
-        write_login_log_async.delay(
-            self.request.user.username, type='W',
-            ip=login_ip, user_agent=user_agent
-        )
+        data = {
+            'ip': login_ip,
+            'type': 'W',
+            'user_agent': user_agent
+        }
+        kwargs.update(data)
+        write_login_log_async.delay(**kwargs)
 
 
 class UserLoginOtpView(FormView):
@@ -122,22 +142,40 @@ class UserLoginOtpView(FormView):
 
         if check_otp_code(otp_secret_key, otp_code):
             auth_login(self.request, user)
-            self.write_login_log()
+            # Write login success log
+            kwargs = {
+                'username': self.request.user.username,
+                'mfa': int(self.request.user.otp_enabled),
+                'reason': LoginLog.REASON_NOTHING,
+                'status': True
+            }
+            self.write_login_log(**kwargs)
             return redirect(self.get_success_url())
         else:
+            # Write login failed log
+            kwargs = {
+                'username': user.username,
+                'mfa': int(user.otp_enabled),
+                'reason': LoginLog.REASON_MFA,
+                'status': False
+            }
+            self.write_login_log(**kwargs)
             form.add_error('otp_code', _('MFA code invalid'))
             return super().form_invalid(form)
 
     def get_success_url(self):
         return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
 
-    def write_login_log(self):
+    def write_login_log(self, **kwargs):
         login_ip = get_login_ip(self.request)
         user_agent = self.request.META.get('HTTP_USER_AGENT', '')
-        write_login_log_async.delay(
-            self.request.user.username, type='W',
-            ip=login_ip, user_agent=user_agent
-        )
+        data = {
+            'ip': login_ip,
+            'type': 'W',
+            'user_agent': user_agent
+        }
+        kwargs.update(data)
+        write_login_log_async.delay(**kwargs)
 
 
 @method_decorator(never_cache, name='dispatch')

From 43370c547ae94ed74aa5e37cbc14e3a396f64b28 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Wed, 4 Jul 2018 10:57:37 +0800
Subject: [PATCH 099/112] =?UTF-8?q?[Update]=20=E7=99=BB=E5=BD=95=E6=97=A5?=
 =?UTF-8?q?=E5=BF=97=E9=80=BB=E8=BE=91=E4=BF=AE=E6=94=B9=E5=8F=98=E9=87=8F?=
 =?UTF-8?q?=E5=90=8D?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/api.py         | 32 ++++++++++++++++----------------
 apps/users/views/login.py | 32 ++++++++++++++++----------------
 2 files changed, 32 insertions(+), 32 deletions(-)

diff --git a/apps/users/api.py b/apps/users/api.py
index 18457a2b4..dd1b76ba3 100644
--- a/apps/users/api.py
+++ b/apps/users/api.py
@@ -150,23 +150,23 @@ class UserOtpAuthApi(APIView):
 
         if not check_otp_code(user.otp_secret_key, otp_code):
             # Write login failed log
-            kwargs = {
+            data = {
                 'username': user.username,
                 'mfa': int(user.otp_enabled),
                 'reason': LoginLog.REASON_MFA,
                 'status': False
             }
-            self.write_login_log(request, **kwargs)
+            self.write_login_log(request, data)
             return Response({'msg': 'MFA认证失败'}, status=401)
 
         # Write login success log
-        kwargs = {
+        data = {
             'username': user.username,
             'mfa': int(user.otp_enabled),
             'reason': LoginLog.REASON_NOTHING,
             'status': True
         }
-        self.write_login_log(request, **kwargs)
+        self.write_login_log(request, data)
         token = generate_token(request, user)
         return Response(
             {
@@ -176,7 +176,7 @@ class UserOtpAuthApi(APIView):
         )
 
     @staticmethod
-    def write_login_log(request, **kwargs):
+    def write_login_log(request, data):
         login_ip = request.data.get('remote_addr', None)
         login_type = request.data.get('login_type', '')
         user_agent = request.data.get('HTTP_USER_AGENT', '')
@@ -184,13 +184,13 @@ class UserOtpAuthApi(APIView):
         if not login_ip:
             login_ip = get_login_ip(request)
 
-        data = {
+        tmp_data = {
             'ip': login_ip,
             'type': login_type,
             'user_agent': user_agent
         }
-        kwargs.update(data)
-        write_login_log_async.delay(**kwargs)
+        data.update(tmp_data)
+        write_login_log_async.delay(**data)
 
 
 class UserAuthApi(APIView):
@@ -202,24 +202,24 @@ class UserAuthApi(APIView):
 
         if not user:
             # Write login failed log
-            kwargs = {
+            data = {
                 'username': request.data.get('username', ''),
                 'mfa': LoginLog.MFA_UNKNOWN,
                 'reason': LoginLog.REASON_PASSWORD,
                 'status': False
             }
-            self.write_login_log(request, **kwargs)
+            self.write_login_log(request, data)
             return Response({'msg': msg}, status=401)
 
         if not user.otp_enabled:
             # Write login success log
-            kwargs = {
+            data = {
                 'username': user.username,
                 'mfa': int(user.otp_enabled),
                 'reason': LoginLog.REASON_NOTHING,
                 'status': True
             }
-            self.write_login_log(request, **kwargs)
+            self.write_login_log(request, data)
             token = generate_token(request, user)
             return Response(
                 {
@@ -252,7 +252,7 @@ class UserAuthApi(APIView):
         return user, msg
 
     @staticmethod
-    def write_login_log(request, **kwargs):
+    def write_login_log(request, data):
         login_ip = request.data.get('remote_addr', None)
         login_type = request.data.get('login_type', '')
         user_agent = request.data.get('HTTP_USER_AGENT', '')
@@ -260,14 +260,14 @@ class UserAuthApi(APIView):
         if not login_ip:
             login_ip = get_login_ip(request)
 
-        data = {
+        tmp_data = {
             'ip': login_ip,
             'type': login_type,
             'user_agent': user_agent,
         }
-        kwargs.update(data)
+        data.update(tmp_data)
 
-        write_login_log_async.delay(**kwargs)
+        write_login_log_async.delay(**data)
 
 
 class UserConnectionTokenApi(APIView):
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index 02f3b66af..7e853e45f 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -67,13 +67,13 @@ class UserLoginView(FormView):
 
     def form_invalid(self, form):
         # Write login failed log
-        kwargs = {
+        data = {
             'username': form.cleaned_data.get('username'),
             'mfa': LoginLog.MFA_UNKNOWN,
             'reason': LoginLog.REASON_PASSWORD,
             'status': False
         }
-        self.write_login_log(**kwargs)
+        self.write_login_log(data)
 
         ip = get_login_ip(self.request)
         cache.set(self.key_prefix.format(ip), 1, 3600)
@@ -102,13 +102,13 @@ class UserLoginView(FormView):
             # 0 & T,F
             auth_login(self.request, user)
             # Write login success log
-            kwargs = {
+            data = {
                 'username': self.request.user.username,
                 'mfa': int(self.request.user.otp_enabled),
                 'reason': LoginLog.REASON_NOTHING,
                 'status': True
             }
-            self.write_login_log(**kwargs)
+            self.write_login_log(data)
             return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
 
     def get_context_data(self, **kwargs):
@@ -118,16 +118,16 @@ class UserLoginView(FormView):
         kwargs.update(context)
         return super().get_context_data(**kwargs)
 
-    def write_login_log(self, **kwargs):
+    def write_login_log(self, data):
         login_ip = get_login_ip(self.request)
         user_agent = self.request.META.get('HTTP_USER_AGENT', '')
-        data = {
+        tmp_data = {
             'ip': login_ip,
             'type': 'W',
             'user_agent': user_agent
         }
-        kwargs.update(data)
-        write_login_log_async.delay(**kwargs)
+        data.update(tmp_data)
+        write_login_log_async.delay(**data)
 
 
 class UserLoginOtpView(FormView):
@@ -143,39 +143,39 @@ class UserLoginOtpView(FormView):
         if check_otp_code(otp_secret_key, otp_code):
             auth_login(self.request, user)
             # Write login success log
-            kwargs = {
+            data = {
                 'username': self.request.user.username,
                 'mfa': int(self.request.user.otp_enabled),
                 'reason': LoginLog.REASON_NOTHING,
                 'status': True
             }
-            self.write_login_log(**kwargs)
+            self.write_login_log(data)
             return redirect(self.get_success_url())
         else:
             # Write login failed log
-            kwargs = {
+            data = {
                 'username': user.username,
                 'mfa': int(user.otp_enabled),
                 'reason': LoginLog.REASON_MFA,
                 'status': False
             }
-            self.write_login_log(**kwargs)
+            self.write_login_log(data)
             form.add_error('otp_code', _('MFA code invalid'))
             return super().form_invalid(form)
 
     def get_success_url(self):
         return redirect_user_first_login_or_index(self.request, self.redirect_field_name)
 
-    def write_login_log(self, **kwargs):
+    def write_login_log(self, data):
         login_ip = get_login_ip(self.request)
         user_agent = self.request.META.get('HTTP_USER_AGENT', '')
-        data = {
+        tmp_data = {
             'ip': login_ip,
             'type': 'W',
             'user_agent': user_agent
         }
-        kwargs.update(data)
-        write_login_log_async.delay(**kwargs)
+        data.update(tmp_data)
+        write_login_log_async.delay(**data)
 
 
 @method_decorator(never_cache, name='dispatch')

From ff9b1a887fe914defd9db127cd1392c090c50e4a Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Wed, 4 Jul 2018 16:55:11 +0800
Subject: [PATCH 100/112] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0=E7=94=A8?=
 =?UTF-8?q?=E6=88=B7=E7=99=BB=E5=BD=95=E5=A4=B1=E8=B4=A5=E6=AC=A1=E6=95=B0?=
 =?UTF-8?q?=E9=99=90=E5=88=B6?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/i18n/zh/LC_MESSAGES/django.mo    | Bin 36216 -> 36297 bytes
 apps/i18n/zh/LC_MESSAGES/django.po    |  44 ++++++++++++++------------
 apps/users/templates/users/login.html |   6 +++-
 apps/users/views/login.py             |  31 +++++++++++++-----
 4 files changed, 52 insertions(+), 29 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index 339af4456cb72a4e21841737e7c98bce3a39fc6a..b5474cbe1cdec6a6fb164cf841611e659e75bd94 100644
GIT binary patch
delta 11843
zcmZA72Y405`p5B2AR!3}A%u_+N)i$vA=D6x^w1>q(7W^&1VTrV6N=KLNJK#lSGaTw
zB3%#^L8XaCiYUSbrHQCW5kcU7e`jBxKli`SGkoTKXLe?GcK4hEdhZS2L(6?V=ZfTC
z;&9aPb)1rTAk1;@P#+Pmtm8DQ;y80L4YTnme&gdfZK^uXevC^YCjV1)$BDq5sg4ta
zUm{J;uUHS`YB)}1?1S}jJ|;Sj$2sCwoZIM6L#dkXLK3h5aT+S0Znnoz;;xtvhoBao
ziA8WW2H<imfvd3~er)-pScdo{mSleC9+mtgB5Ju4Mq^>(GFTL=V-U75J0hFp^g%6T
zG=^X{mcs>@gxhc|p2rT@u{H(Qn)k5-^E+*yavVQgiQ1xds1={WaJ-0`;4W&R`Rlm-
z12LF56boTVEQZOb^BY^fEvjE{)HuVfeG+<fWizR0fQ1-{D^Mq_NA1Km)K-3m5qJ@!
z@gC~dgx7VPNQ_2JoPrv+0eWv8YT@lsJJ%UC&yc$8e`zXNB(#-_kmt&I3w7ex*6~}^
z4qZfD!BuO&i+V;LqMijmo-_>{h?*!Iqp&Qhy@9niHe1(Y|8+taOY}uOJj0RQcE+L>
z@-Awkt*C|WLG?R|Rq!P03jKJrwa_5c4ivVy1nT@aGYOj$SMyNOR!>3={32@LC8!ft
zpsskW#amIgY7gqx96>##XHi>!6TLfv8pp4Jd+Q3JcBBGozIv!z=1Hfb9q5OeC=)fo
zWK_r5sMl%<YJl|?e~6m!nB~u)uJ}4?0e4Xge1sZ5w4u90#ZlvyMi%ICk}Z*n8ZZrY
zVjI+eeavB~D;kGd$P1{67NU0Ub=2Fk4t2|RqsH5B?O$5{9O}GF7@+t61{Ixn7j+MV
z8rh0b3n-4Un1H3R8LHnv)I`HjJ2x6N&Q#RIi%|<+ffaC_#d)Y_<a;d2{LTd`Nq84E
zP;8nzaAnj^)IcqyIcnt@sDZnq7SP|~VW@$}p!!X+_H5L+voIEypw8cp9(CMDMJxUs
zHQ+ZEe`j7s-LpSX13gCFf{@1U*2kd6se<ZP3$;T{u_UIWo`J!riASS$YI0-tUr*tD
z5_-tiU@zQ>daWXwxDz!)EwC$U-~p(ChN33SLS6Y()I>9}94<g#+-B~?GQ_*hb4}R)
zsw8}xx)Y{g7vlbyj=NAhlCPONQ4ne&k+=)vF+cu*es~eJ@T;f=Mm2YhL+xAz)Rosp
zEwr_ViU#b0y2t%3e%9j2s0n7Go`pHq{s!vG*P<rgf;xW}`r`qMkDwNE3iZ)_9`&}|
zL48+v{GPTi57dCkSQcxe2JV9zcpz$^QK-*{NtT~wE;e(~pZ4{rew#23_hLT$50=26
zu(;lTr-gfuqfrx7MDJ6N+N$PQ4tt=Uk!h#}zKYtp4^b0+hC1&gY5|w6{RZkn{=x$I
z7_|chxWD0=Kaz@`(qz>8-2!89h&c-biPxcS#b(sR+fh5V-}1*XkoW`!;5o}*LG9o#
zsD=EAdV3yXVdi&2Te@GTv8boDE^4I>FbJEYCdxqVKp)f<XQBFKqb8h<+TvF%zXa7k
z7d7$wsGZr4>i-dXyjw>_Pwh$6Q|i~s-TH9U>scPPwGAz9kGg`PsMqN^GuQGTqqaB?
zb+0d)k5CJVZtWV|n*G;G%8}3yiYllTx5V<;8x!zF)YflA_1|RfL@oFeEQrTZJMukh
z0Y9Sp-@-ur8-viljoTj9hW$?=5l2E-)Co1wVAR)YCI(}+IUjWeZ=eQz3$>*iQ9m>`
zqZV)&wPSgx3;Pk(?-6Rp{o1+<F6yD8_cGQJH8GL6G3ta&?15vj5FRtnq84%;wa}Yb
z9sS$6{pz6J?{ut)eX$hIM_u6CsAt9VJ{3*06?LV%QCs;1>Q<aUUFj9`CWa6{usE>2
z+a8X}mqKlMvYCpZ#PzWdwn5F;3)yjxGk{8A65~+|cnS61=b#2$XZdZG-;Y}0DbxZl
zTKgT;mHB44x1s<xC5}Zsgo98I^EA}B%dmjn|8-QfvQ6e*)QXRxw)O|h|AAVVPY3r3
zBXAUPY0Sa}sC%y;`PzX1)GZ1_EjSYOP{*TopcO{x{qI0UPi3YxOfX+S4LB3Ez?V_a
z#&Xn^9zacW2sL0HhT|F3Gj#)X&+~P17Z8VG#Ffm3=qW-XgGyl>h`I&iQ7fK~)o}qP
z<9^h$@T++bb)Ii$_q=e_*2bc)yfSKmsb+oD&NfH&>(ZJ1_fAYg1CK{7$b(wxVvNPr
zs4G5*da4hj2D)J0MD_RKyIUVf;aC)FVm!7&{jL~=<M1e!!?dpKe`P8|ySiKZy7@8c
zUR}dl7}m}G`#?JCmdrpcXddd;EyC@%9HX#9clVZMqWV3D`e^r{Uc2em{*n^f>LsXq
zxDs^_*JA|kL4APap|0=->J~jl?Nl%y4v`px+R|F6XQdgcUnkT~^+TPXW$_Hut@Y$k
z(N=wq8t|-j_zktN$EXtv_H?hjlvx&a%POI+uokL+J=8*4pe~>bYC$7VJNG<B;|yfy
zJkAO#I$;A2!X0jdQ;Hj=0TWRJq@q^b1hqpGQCmL`^$fj+TIf2|E!c&+@;uZy7t#Ch
zqUO7Yh4lXW_jVg1P&*KVT44%mz&5A}pFus%V^O~orl6kk<)|xNiCX9m)Wn}z`zh3|
zJ&W3bA5s0TW4PY``&2Y=p+4?Ci!>8ZCssrKgsP3{*aNk|)u@5?q56G^Gw`J4yFcSj
zI27CX@Ut5y)4sPa4<Od=$NnFrVK<e1IBfu{ry-5|pq=;&V=#EI`!|@1W>+jlemXvl
zZ(&KiYWfXv7gPo{PLjp-%qFN?(Q*j;?|n+Gp&u$9irUig7SA)6qPBL8#oH|2Z*d;_
z(|+E(Y~C<$qsD(=1`PGMD~uTGnuuCiT};4cn25u%FXmuFyltiqbK`O5R@4G+V`+SV
znlO5}`wW#wJ$!Xh{n9;FX>WE#ozTb3G$*01{6&kGSiA}Y$$wz^J?0_vl=-9iJL>It
zh`KeNVwr9t2{mzJR6{$9`=eGm%HjzY&p`E?Yx!J^Bi?B7QPd8cL7jikd~EuU@XqIP
zLa3-iGzMTC>I0>M+rg=Vny4OX<?T=(p+iwuKEj+}W}9<S<GzZixZL8eto<~G>ixf9
z4L7kS9q(CO<ym)tny3ZTx46C8)$D^KX&;2@cLIa)ig_Eg5Fa|p05cSWncpd<3dW=E
zaaGinH8NYGPV9u5pr<(!b>1|K7og5tY5BL!o#sK*`FZ9g^nU-}vknDExeJIw4U~ul
zFvaq9EZ-8n3qmcRr#aLdZ%#)|xX|KN<|fqndq&y&|EVRu!VnrxV<=v-{2kOpf181$
z-2sZ3rOX7>dC3;nMV;5!Y=<R?dzq6)v;SJjt0d%d>$nOv&?bxbS^H5ePyQQ=ADF&b
z?sr8X>MbaNnz%k{+?H4vGf+F*-|{0oRMc^-C9=&~7)E{p>V&r}zY*1cGiq!1TKm`5
z{=Iq8yoT!kyZO)z8sp|YkyLc036@AjtvJo%78ZBL3gmlX5YDpvV$_x{L%r|YP!pcO
zr|<%LcVw));QFZc_Q-{KoZfE58G>3!7HR?0P!r8Yz4tk&pHT0Zo3JwR2j&HAL|m93
zcrpW<;bI(&-=fBCINn`AbM)8y-;v5P8hUsWe0G};Fpa$L1oy<IW-HV}J75v)Z~5`4
zE1P1@vHWWm=UTiGb>3zS())iv6+CVozC#Uk!Ti;HU<OQdcO(LJMU^eCfjX}(YJ#4q
z-w7j8{pMKvBGe~sE_!srT5H&1erz5yze5dp1@#QvM|}jBo#Z~%NoF0?!`ce<8h1vW
zH^AB_U|Hf>7QZ`*{ZAyZmxOlU3Ti=rU^qTTtvsBcEy_ou;__x?vj#?xuZL0C!OS#g
znz^WPwxh=RbTa#|#9<Oz`Dyclb-ZrgL!IFFoZCOxERMRua;W$FDT`ZLdv9~NInkVn
zI`0(^6+KL=Q4?%MEo3)pVFxXrhkDJ<SbWF)+sya8J75sT)2|fj{4~qAMa|O>wL@8`
z9rnz%h85QE9%?H;xBL&Nfo@<4yl)np;^tFO3vXy~bJY1AEgpvYT$q6R99V+tzXQGR
z|6aG^d|~F9XHgShMs3wC)QSEtxKD2gYNv{!`o*Fqs$_9%RR8X%^ZQzUteNd?=l;*9
zqJduZCiwSy)E2F=crR*zgQy9<wfvu`i65B-r@C7lWhSD=sf}7l2F}24sPoQBz5my&
z!(G%pdWbbK#2(J3s0C!8UcZ5;ffu3%UT<zPx1%Qb$UKZX|Fp$Fqu#bZ(fi;3e6!s|
zh#7@iNIYt1s+;xAr_Bu10(zn*>~D@Tr=TXDWAU5j2Fq{Hw(tK#BsAeE>u?!0@GaDp
z-ba3MJK@vZc#63MwZQjK{db}kvd=tfo-r?*w@hccZAr*<_rFR<o83?YzJ?kw7yWP}
zYU|#|in!a_uc8)u$KpcVXq{ieEMq32#;b~YOX_>5=+|yXYv_hLaS&?jMp$0`G{MUj
zud(<8RKFwUIrAoJqWm*m!%#n5N~4~k=9c$lS!Jp@4-3&@De9K2LoH~BxfeC?K{L-h
zZ~lVn|Chzii*ElAj3Xb7YOjY}kjH6a9eSazWEkqBbPC4cd@POcVi`P&dOLo@N?7hC
z_k*buYKKOn#+ie<fH$!izJo3BQ*4I8v-Iq6|2t6eC(#RaWdm?2j>e)GINQyaM)gZZ
zKTN@VSQ`ssJ=DY40@berY60ENVdiA?E)c!%|C`pZ!5Vg{ffJ9KXUxmyEz_Cf_6xxz
z`bS&b6g5GH#RJVO)PkmBATB_UDod$o#jDH>=KH9H>_82805!mA48SWGh`*zD<UZ=w
z>3<mEGt3D?oxjM;MV-G9>)?lT*?$duhlB<SnCEsVVwOR@CMg!TK=tc}8o0kX%G#$`
z{IbQ%Q0H&3c%OM3HO~2Y-2YNku947y1zvWqv?yw&<xw4Lq3(5>#m!JV)((TQi#fpZ
zqs@t^^QT%o8<U9_q8{Ge9xD1;y@tW)H{Z1g>LH9l4X_h6;ePbN@s!t8vEwyUV=S`#
zDa)n$@})*SgEEY^6k;8<DCxIJd_lQMS?Epk*CpyYf^k27?~VTNk7HCD()J$=*I?A=
z=iH1B59_HcMMoY6<U}MSdy>^oW;f=ee{<YHd>2Phija#Zu15V3{{Q1Dc^yUZ4&_hk
z4Jp4;@@syMH7-s`+CQTFLi`v9`S7VxjLLNqzfod2K@aa@N?XbT%9lA862d)|X_-UM
zO_U*Ik5hI~A4k#St>aVbVH6#|;!50%{qQsNXN>Q04{-`*A@!P+=G67SO?{2MC=t|G
zP;^vrFCk}a+0K4d$rZ~vRyNXef?BTiI7qLrsW+j7dCzhG(95RhyAJuj)>r={R|2Jm
z#jiZk|8H{BiOXSatWLk8l;gzttp7BO@!`eP<JN?-m_!#!Z%QOFKLDLm)c-mBso$W~
zAn^=dqTHmunKFg?hnPe0VWLjNeN<PTQkL8S)KQLl0qXocjeiKvxmd2UXC~n`!q=^f
zy4|Aw5c^w>j}Gs_8|-v_qF+_wg2b0`6lKp7ZU3fzf?R9L1<DVU=g38{gbCD3P+zSt
zr%(bNOG#Y8LUhnEkN6LYj&yS(^~aRAi4WsR%2i4uijESTtM8K|-pKtj3!?8?i}f$D
z*D1eKbolwkxRo>#1vvR9{F74KI!wx`lo;uGWKpi$+52Y}xlbsc5+&gQY(x3O+sc%7
zj>0#ozlkGpo#nS-1M4eBP`;$RMgAp9A4+%11wAMIs6<k9^l)+RVLVHoW%=3Ij*?>W
zRt%wiqQwE!r&HIr!t?k7WisV$;tjYDZ%}@syg_M3PDiv)0sfJdATcLBDc+N5>9(f2
z6l7>$N;-A@D>x_o&+#3(S19_zdh)19t|N&<_?$IlQ@=#L6|SPRpu|&tcH48VCk57+
zK>XxUfw`xU2*ZuEouecX-@~%_1D483st}*CoZ7Qw%G2`<^#+vl#B(T>sXOF#tfi!R
zYy5SJe4yIw_>KC<7MID%tq{|@HBnVNb0EFi6Yr&rq5iF%wV${Yr30lneG5}&(3Xrx
z$qlxCXRsylXv$9N_j8IT#|#=mq~k9aXSrF3{1;XqPkkfxaO>NjdLhaf;u(~S)GJa_
zDLT4Psxf;UMaR=Qxyg~9&*{0|MtBwdDA#DcXt|!$Pg4K4PT|O*zR9h6|D4UAA5qFM
zYDLO=>W?TNQ2se~an3PHY1%7b1#4LC<NXllLxx1KEo&$pMiW0pd6yDLxkagD?Npum
z^eIl!aRvX%nOw1ir;=sj@O4_YU}+pl8AZJcCQv@0ej4**G@}ki{l)#C;~ioh9!fT4
zEb;r6D~+qj#XPZ^!){v{?|%u3B}k;PuAT56mZwyw9LcFsDaI2;?KI_C$|nr9h2o*E
zV=Lt$^_7%mlm(Qf<XTdGp|0aw9N<>}=g*SNTG;wT+VY~zK&(gGFkRKZIPE+^CESMz
zcG6m`LV3~R7i{<<77sMPA^#NhxfWYDFO4ks4pCX^iBB|kCSK#iu11r*Owa){Fo@N~
zTE};ZbyTBlr+$snl=3pAIJs$*9@M|044^C_u20bsO01&=<wxpMDVg33?-up1RL}Xk
za(J_U5v5X+m^qa42KB}?c0^xFH%c$cKSwR<KU2<;2*J)cd`nUl->5RN!$!sq9y2Iw
z{GgHJMof<FH*#R?xG^}S9}Oe=jT<y(OZlfWqY9+PR;yVjwdR&(&#Z|odTrG!S9VRS
Z7<*;?{7Z`#T$?rj>ZT=IYE4Wl_Fs|>gO30J

delta 11771
zcmZA73w%#?{KxULG20lsYO`sZ%Vx}VOy)Lsu~BZBJ89;AYjVvYkz2Yf*F*^sl2j^7
zAu*IokuH+{LX<*Fy6}I!f9KQVum5>GzMkLD=leb1@ArJqIlujeqUZhpSmEz}8&Ptx
z!_mOsaVlbAxZ@O4?^{J#$EjP#apq$^oPmY-nV;h{tLr#>Fg%Tz{O9!@r#x<G;5Z4m
z3u$t`#ikgZ?l`rvGd9CVF~xCQXQx+j&S5DU$~N>C5`}@p^-%c?vjv6{x5pCL6SeR@
z7=e>82p3=+K8I!Sb;}oGW#WBUk@=mAR7#QvxW}8YG=>pJU=&ut(%8ssjck(B8MTms
zSQf`(GET?pxDFr2BiI#NH*%bAxWv4KU76o$p26h!3~Gy(qE`GdM&fbQ1m{r;{SDRs
zCWhc`EQcYD9p^5LL!F<7$~Q;#>x3Gox3v#NS67x#MIBuX#zm+TmZ5fH9cnAz#`1U^
zWAP&D)|6=CIMG-dHF0IsxV6!D>re}Cf!evYsCjxeVgKW)3?iYeoPj)7&eNz9cU#8;
zs4G5>x`I>IejfFV{ET`QictgKL`_tJCocxequOhu+SAOYP1%1X+F9a$)Wg#o*;QvS
zY9TM6CR&SH=w?*ELac-PP*+%tTIips9nhn$xD4w2aI*roBd+99(N+&d4Lkug@NCox
zi%?g*#NxH6TeTT=Yj&a@(!;2&Ka0K{L5)+4ad->0BeBiB`D&tWnVUgHJJ1C+Q6JO<
z!%z#GgnF%JqXt-J@vEo_-?w}b>WaTcE#N$AfmcxD-$w0FaHcnIIb?yZ6K9F4r~&Jt
zPHcu6u(R0<bwv-M7BUJok&D{7Cs1$8Qq(Qmgc|P+Yu{!0Pf_Qcz#zT<r>W?~^Qaa6
ziM|!177*ORaS|~K<1ro8uRCg@UZ|ZLh#F@!YU0OG3togZaH++6P|w66jB=?Qqf#Bu
zqXr6V=?xr@+KD98LK>o0-V!x%2h;+(THFgY@Pnv+L#=%*YTSvKh_g}WuSZuMw^GrH
zcc2E`Yw<zzB<flC9yQP}s9W$4YU@K=c@rj}`c*^iPy?)p8K@n705$PI)J_d+#s2Fl
ze3XP9vc=dJH=tgtfY#nb>8J&^M-AK!HBb&}!a=AjAB~zQACqx9`r|rt16C&9WPaM3
z{jW>nDhW+kxecqtuGj%LqITpuYN9_;3khuNIPYR4mc&m`3pkD%=M-vzLG3)lQ9Bol
zy7Cm%LYul&G+;Z_J??68KZ}Q<CdfxU3zMyVK59WrP!qq5I)5XU!Z$76iCW0VsE_U=
zs9W{}>Su*pOhxZ|NPBO<IMjeCr~zxE2FO75Yi0Q^W?wT8OVK_a)o(IZ!ns%iUqyWo
zy@nO=Ao2{k&N(WY;CIv&-bQUv*uCC8tcrRzvM>qzqjv0Z)I?9C&RdOI!0Xn&19c&L
zF%XMTSAGmN{#o?>{4b`W_d0?bo`ChtE~tAn4s{Erq9&e!+WLi-Uyi}Vt1t*RSbiI7
z2j505WH;)q*^gTAml&(}{}L5Fr2!qil?I_s3`0#6huVP@)D<^DT~SBWgk4cv+{f|*
zQ2p~z6Hh_y%nVfjC(yTZ=;~=*O+`=V5!BY4M!l9-Q7aA3^5R(36{MkFqc&!q<>#Ze
zcqQsyZ#EC07IMzKgj&e2S=@hpk+?}hD~`(M!vm{fRlE;<Pe1B}$>w9I1uwudxE!@3
z>re~Wg6jW12II$A8jo80*O*3pIh+006~%Y*CaR12ahi@H*wO5Xx`KyL0}e-RX+G);
z##Gb-o<r@}O4NmILG?R;+VUf)1%Hcr9WS|-a60?G4m%;J6VkCaHpOzd)Lf5R$Xlp|
z?!@|d)Y?nl=e^gFSd)AWyc>I>c5(vhS($>G$DK|^S2`QDvS(4ZVioF2x0yS!Eb%^z
zKQm8T{sL;ti_KdYN*s8<cLC9;36oJfUJJwY{%2Cr0`5mWeEm=pjkCOK`Gu$jzKB}j
zW^4Zdb!CT9x8fMK!Aq!zuud26;mtygI~aAV#$h?;cP9HPd{UuSycD&yuUNhiwXj2|
zD?Ec^@FI@GoUY!02T|?EQMc%8)Pm2V9_pV_J5auxx6q1MTJL{46*aUl+oM+48Oz}V
zn1Z>eD_w+|r~q}|N{qypQ4iG))II+MwSdbQjyKHU?%oc@p&Ld+Z7RA2nWz)8u|DQt
zDlSAl3-6eFQ0E;+op&0wwU<y={s(G-x6HsE-p+=h`X!=o-X83~2F@fAfgMmQ?Td*x
z8g<1_p?+FDhq^_Z%$=zIhfp6#r!flkGrS6vM}42jz<gYS$ylZ*7maB>*?(>AAQEyu
z>RxTfd+=-2?*WlH-Yw~bT2K$v2TE^z8*?!REB5kkSvsm;8`MX82h?kqZSD7?c6xwI
zMfY$7M&fuZk8@BTAS+Q<xC6D-MW~%RiP88YYD@k2u+Xy-is~1S+No63`AsbDgu1o;
zP&?&5Lq!9ww+`>3R#t>M@dWB&ykP!<x@9*|SLoNr>t71BkO<TTB%&775OscAjKxl<
zog0eucb$i+<dT?a4Hr-gxP}_w7HY+1xslqTmZ$-GpdO-usD+M0-GW)DD_@BkXEXX9
zUep5jpvFDw%X9zFP|*(jh+5&_r~#w<c@tJgJ<ZKf-xJ!Qp7LDOm5x9SI1@GT)7JhX
z>ejAD?Z6gPzqe2q@(~8<{Xa!T_w1~B1$E+IsIO4|{k<=vRZ$BZjT&eks^2o4g{v)J
zWq>zf8g}w?oW?kr_PGQ3r3C#4@i9(*Ho6~B$r{W9Mnf6ygLYysCg4e|fxnxThIk(=
z+1Q@^aIA=Lm`AV_@lU96u3KCx&&!uZ-HIsmJ*0Wuf1QwOi8R!fW?J0Cd=Ry@V=Q(p
zUTE=3)HoZ>*UcT~F4Tnk%;Ts9p2>5)$~6*NS-?>5i$^Hx^Pm9^#D18GyUbf=^I=|o
zI%)yCFdp}zCOn6_*H=*wU%+s$U!)o9TBQ=|gcLK~Y=ye=`z#({@kk6NKh5%U%mVX8
zbBp;N>h0K%y7KQVcCTB9kP%)(1=K=nqOK^z;uaQnLJiQ}@_AT^IN#zWs2zA2b^ac+
z$UKS~{|hhX`#+T+5|>dQD8E^Uo2ZFOjr3Mt0re4@hPv{GW(%{U*&Q`;e{6uc7O$}O
zmry&p$(QH;@1)X@#2#OQFQcY2%3DAnYQR{tl9_^|$=5+GbQOl+Hggy1yhG-3^Gj?0
zPBOpqGZn4qPt=u_W>gu48Xz7uL6X@BHBpwuIjH_4EI+|~%zO%U{z`MJxd&Yhbb^W&
z@I7jvYZ!=sTfXENTM+sdggP(DOfxghY}ACkEFNi2Mx8&$;wQ)0`@e!jSsGr#P~3{@
z_yKC7kIm04|DAckyn><hE4Dabtao0BSpnl{Pc~bj#_vCt{Z}Q|I*vpQG}+>L)^Q0|
zBmaWM`^>|rpB0~>-hv-c3l1FTjT?nw#Br#dt!ep&sD8~{OLR25U^opqs1t@;J|A_$
zRMghawf5(&eVw`4+>Yx1p1I%r+&qiAQ1^-@ZlQLf%y{p_2vnSaH82@VV;9T!MQ!O|
z)cfwDCR~LXxCwnbf)T`l4}0ygs0*v+={ohOXeCWh6K0_%>Wccr>WBIY^@uqcYZFg1
zH(?9nugo~U=(Q#8i$ib?YTV!n-U7l<@!hzb=g+BXiCyMCY)Oa17MFX(JE1&kp%qbA
zRMYaAs4H)0cC-9Ii}NhbN1Znnb%Bed-v8y+VJ&K)P3Al1KJz$gN6w(G;17#$TYJnz
zZ-OLLdn43%nW#_LY>RuC52Ek=A7hDW<~-C&m!R(bM$|{|=cuRol=&m-UjB)CeM?UA
z&Wk|xOTr{<XmMXmAs&U=fhCjJf35H(5|Q{CYUO)S`67!?ny1ZkSf2LF7=wO%y^*nI
zeKQ+1PA+QP@fJ@;Equ;o_Ft8!tzm`v3hIP6E#7G!K<&&4)D>Q|_@=doOz|eHU?!XO
zQRlTlJwx44;}3SJXaU1fE6ultnW)!muElH3P39Y@0pG<cco=p5ua^G@HBs19Z)Xxw
zJDh>ace1?OkBYYP5o=h88fYcP;YM?x<<Fv4e#PQq)cO9?yz^pEp9e{(_rDFQ{}9xL
zjxr~Dy3R~XEI>`X7<FZ9P$#~HdU^{{1MEZfJA#_%8;k!!^$&W~J3kcFud-PO)!q~}
zPHSJx{qICY4^MaNFbcJReAEO_SbjZfz%Ax`sIA;@et{b20%{^>y7#p_5Ov-Ha~Z0A
z9fs=t-%O<;7Fvhvs0HZ5Nv~fdYT)Lm6ZK20>~H3xCKzezq1O3xEMAU!-PW7i%tG}2
z``>;lx{~9lt@+;k$^6}PW_S~qMok!Q#+#|Ai5pp*W#(8u*WyX2`DV|s_kS@7UC|oU
zm2SkLxX0qunO?pPYJvSw{qs-@8EsBA=bDSnHRe{c5Swvc(M+yPl|X(k(tvGI17>3Y
z_Cjsl0IZ3_t$itKp=&LEA9emg^O$+c+RvcglAlmta{Xs{^8~t7bYc{0>*B1THfn+<
z7I(LJ5USr4^GWkX)WWx$AELgne1dw0iY=e`xYw_i={BZPjt=cn_v8W8f`*u*Py^?i
zGtEWj^QitCEZ%AsVkPoL)_xgvLD#Ik%xvF<xK0ceeUzqR0yf2X?2DCgD(dZ6g|+Ym
z#$ky$-hc_{d+1OXkcD?)AG{aGV_V#bdUpJt@D^MKL-dM8P+3Mp0!HCGz6Q1qOA&vC
z0eBWm-~}v$mr(=WK=t#R>n$M2j4@Ntw?NcRW?4Q*dFFS9TEkRxuDRG;V{SDIu{!4!
zS$rKefiusWAks`k?MN*Q#%5-F)PlR9t4fX~2B20r1U2Bpr~&3+5H7)BT#ee1ji_6<
z75U6^K17|LIo~rIb$%~wjKfgluEk*7F`xZchuzlk80s}SYw->17`VV2Fx-qsotJ8H
z6N~Rfou6azXmdJh!bNyDE<-K!?FG93RQ6iOlh*M(>R$h9@o%V|x`jG1V4-IODxY8`
zqb90l@jaMI+#L1r4o5w_%P<7rbgi-*^$>oF8X)gUZ{Tt0M?8VDSQR^#m>T3M%b&Dd
zeSh8->Rl*9X{$%9;~vU&;{B9gDNhk+sG%i+jxx9hzxGA{_s1txo746kMljfITv*^&
zH8Q+6*)w+bF$^q7s+#K7pvJnL_t2mIZE**2F^-^wldD2pmwFNY|KkFA9g+AO<p%Xk
z$`wip&egHb!-=E4kn$7pEqut2PmS_aE|d6$lE4Xic%P+orYxd-QgF3uq+5%Yx%7OE
zl1KIk<!$N@Q}lT2(0_3Xqv-e<U&7aM5bE#H0vO{fEF?~&ETW!HX-EAy9>czrDC#dz
zbkz1Pp<q^0kAOPl$`_nYigxv%s#aQ$ee^m?y%i<gcaHamUN$}78RQ38U;W3eDwGBm
zKXXU_zsNmCoP>=qjee1oPl^4l{|t=x<3-eS+?w(Xi5`@`lxSkU;5jF#|9b>b|A~@L
zqCcLaT&2E^GL`y!SU}NlZQY3btB&tds*>A_I+CcDqR#JU`~`5qwdC6FEW)=4msl5d
zyGH#V9Ar5@5_|`5qVvEV{pu2zCO(g2C_C?HTSNVGa@mx#l+%>S<f2%@Bh+K5uhsXh
zPy!uGNnF6PbkH%M_$o!mz2-#fw<xa?AH)-si<A}=9kHCNpC^ZWk@v$an7-dw{1Np_
zlwT-1O8O^wl@=sQaq|D*@05G2!^DDSDbemf7QNtg_We1Q+=rCCL@D?YcA{MKwemvS
zISQYrz7j{_ddt6w&8@E(N%@qrn*3}^KS~beJ3S`@soX`;(c8oM11q!SIhKC{J5%ae
zyd6Vmf5hTI>NBb9r@|DRMwvv}M7#k%z@I7SC@Uy!$myuy7s#)h1l0<9Rj=X>x3vD2
z``@E9L;F!WkjN&_3I931B=<CB`hT)~Oq1(I?f_1)HkbMj)H~u!l=hU$luKTF!C%#b
z(<cz$c~ocaX(YmMBW<TC)roIl5`Kdf3o>d{>9T^_C^E_PJVm`3<qYvWN-gTQDLU3u
zTKa1I3mCZ|%PVz-`Ue(QD%esZp<fnJ9Y)mg5amAN_bKD4pHh-zH*rNu7fK9$Ln*V!
z*T6&MhWL8%Ulgzd@fgZG)NdA4Pff@jLZsuShx5Eymiz&$=Tm=`dW7|Tka{`FIO4}B
z-&3ziX+Y8O0HrRoCsK5@E7+16?S4$pS8Rj=EJ^v1*0YxDL;Z8=FY6SJXQ^-Xs=hzx
z^5^@MN{pIH*<fvNnBpDIIZU~m_Uc%}+FthaeTehx7Kt*ptUNl5CDxD4EtE=>>y(<-
zPSt5jpBRdc^Y}->yqa-tP0J+WQd-`?cpR-ly$)8TY@_}KmcR;(nv43y{oi8~u@09q
zgEF3YtL5&-HRR&&SWS`FR@wJ2KnVoZXl!gJY{6to8s%U?+gb^3G_{kIk(AvGwVg7Z
zx{fy~e^Y;vvW)ViB-fF0nYxZIaIjbX&!2J38fty+vgJjaLD+=0VY;f-oc1k2E!>4w
z?4)&AoAS8DkJ|9z77sQ*Bj1SnJd3THk4(#LCaOw3<&MVg#B2T7)mV~05Ol@+F__gQ
zTF1@AI_gp0qJELmnzDdWf!s_=FX~4q4^kErH>2n%N37#s%J<YCrHt@p_;N)3sOkl0
zYe%+SMO2@X!p!9;%c-}bu`BvfdQ$pO{yiE}|B>=7i4g38!?tJC@sHU)sC`~cVEx2;
V4I4LTwEf6{b<x|On%MZR{{>J6V6y-K

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 4396c01fb..56fabe11a 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-07-03 16:48+0800\n"
+"POT-Creation-Date: 2018-07-04 16:46+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -156,7 +156,7 @@ msgstr "名称"
 #: perms/templates/perms/asset_permission_user.html:55 users/forms.py:13
 #: users/forms.py:31 users/models/authentication.py:70 users/models/user.py:47
 #: users/templates/users/_select_user_modal.html:14
-#: users/templates/users/login.html:56
+#: users/templates/users/login.html:60
 #: users/templates/users/login_log_list.html:49
 #: users/templates/users/user_detail.html:67
 #: users/templates/users/user_list.html:24
@@ -170,7 +170,7 @@ msgstr "密码或密钥密码"
 
 #: assets/forms/user.py:25 assets/models/base.py:23 common/forms.py:113
 #: users/forms.py:15 users/forms.py:33 users/forms.py:45
-#: users/templates/users/login.html:59
+#: users/templates/users/login.html:63
 #: users/templates/users/reset_password.html:53
 #: users/templates/users/user_create.html:10
 #: users/templates/users/user_password_authentication.html:14
@@ -2006,7 +2006,7 @@ msgid "Logout"
 msgstr "注销登录"
 
 #: templates/_header_bar.html:49 users/templates/users/login.html:44
-#: users/templates/users/login.html:64
+#: users/templates/users/login.html:68
 msgid "Login"
 msgstr "登录"
 
@@ -2046,7 +2046,7 @@ msgstr "关闭"
 
 #: templates/_nav.html:10 users/views/group.py:28 users/views/group.py:44
 #: users/views/group.py:62 users/views/group.py:79 users/views/group.py:95
-#: users/views/login.py:311 users/views/login.py:369 users/views/user.py:65
+#: users/views/login.py:330 users/views/login.py:388 users/views/user.py:65
 #: users/views/user.py:80 users/views/user.py:102 users/views/user.py:175
 #: users/views/user.py:330 users/views/user.py:380 users/views/user.py:415
 msgid "Users"
@@ -2641,7 +2641,7 @@ msgid " for more information"
 msgstr "获取更多信息"
 
 #: users/templates/users/forgot_password.html:26
-#: users/templates/users/login.html:73
+#: users/templates/users/login.html:77
 msgid "Forgot password"
 msgstr "忘记密码"
 
@@ -2650,6 +2650,10 @@ msgid "Input your email, that will send a mail to your"
 msgstr "输入您的邮箱, 将会发一封重置邮件到您的邮箱中"
 
 #: users/templates/users/login.html:50
+msgid "Log in frequently and try again later"
+msgstr "登录频繁, 稍后重试"
+
+#: users/templates/users/login.html:53
 msgid "Captcha invalid"
 msgstr "验证码错误"
 
@@ -3045,60 +3049,60 @@ msgstr "更新用户组"
 msgid "User group granted asset"
 msgstr "用户组授权资产"
 
-#: users/views/login.py:63
+#: users/views/login.py:74
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
-#: users/views/login.py:159 users/views/user.py:500 users/views/user.py:525
+#: users/views/login.py:178 users/views/user.py:500 users/views/user.py:525
 msgid "MFA code invalid"
 msgstr "MFA码认证失败"
 
-#: users/views/login.py:188
+#: users/views/login.py:207
 msgid "Logout success"
 msgstr "退出登录成功"
 
-#: users/views/login.py:189
+#: users/views/login.py:208
 msgid "Logout success, return login page"
 msgstr "退出登录成功，返回到登录页面"
 
-#: users/views/login.py:205
+#: users/views/login.py:224
 msgid "Email address invalid, please input again"
 msgstr "邮箱地址错误，重新输入"
 
-#: users/views/login.py:218
+#: users/views/login.py:237
 msgid "Send reset password message"
 msgstr "发送重置密码邮件"
 
-#: users/views/login.py:219
+#: users/views/login.py:238
 msgid "Send reset password mail success, login your mail box and follow it "
 msgstr ""
 "发送重置邮件成功, 请登录邮箱查看, 按照提示操作 (如果没收到,请等待3-5分钟)"
 
-#: users/views/login.py:232
+#: users/views/login.py:251
 msgid "Reset password success"
 msgstr "重置密码成功"
 
-#: users/views/login.py:233
+#: users/views/login.py:252
 msgid "Reset password success, return to login page"
 msgstr "重置密码成功，返回到登录页面"
 
-#: users/views/login.py:254 users/views/login.py:267
+#: users/views/login.py:273 users/views/login.py:286
 msgid "Token invalid or expired"
 msgstr "Token错误或失效"
 
-#: users/views/login.py:263
+#: users/views/login.py:282
 msgid "Password not same"
 msgstr "密码不一致"
 
-#: users/views/login.py:273 users/views/user.py:118 users/views/user.py:398
+#: users/views/login.py:292 users/views/user.py:118 users/views/user.py:398
 msgid "* Your password does not meet the requirements"
 msgstr "* 您的密码不符合要求"
 
-#: users/views/login.py:311
+#: users/views/login.py:330
 msgid "First login"
 msgstr "首次登陆"
 
-#: users/views/login.py:370
+#: users/views/login.py:389
 msgid "Login log list"
 msgstr "登录日志"
 
diff --git a/apps/users/templates/users/login.html b/apps/users/templates/users/login.html
index 7dd3f5d0a..7ea824502 100644
--- a/apps/users/templates/users/login.html
+++ b/apps/users/templates/users/login.html
@@ -45,13 +45,17 @@
                     </div>
                     <form class="m-t" role="form" method="post" action="">
                         {% csrf_token %}
-                        {% if form.errors %}
+
+                        {% if login_limit %}
+                            <p class="red-fonts">{% trans 'Log in frequently and try again later' %}</p>
+                        {% elif form.errors %}
                             {% if 'captcha' in form.errors %}
                                 <p class="red-fonts">{% trans 'Captcha invalid' %}</p>
                             {% else %}
                                 <p class="red-fonts">{{ form.non_field_errors.as_text }}</p>
                             {% endif %}
                         {% endif %}
+
                         <div class="form-group">
                             <input type="text" class="form-control" name="{{ form.username.html_name }}" placeholder="{% trans 'Username' %}" required="" value="{% if form.username.value %}{{ form.username.value }}{% endif %}">
                         </div>
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index 7e853e45f..f58ef7b8f 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -48,7 +48,8 @@ class UserLoginView(FormView):
     form_class = forms.UserLoginForm
     form_class_captcha = forms.UserLoginCaptchaForm
     redirect_field_name = 'next'
-    key_prefix = "_LOGIN_INVALID_{}"
+    key_prefix_captcha = "_LOGIN_INVALID_{}"
+    key_prefix_limit = "_LOGIN_LIMIT_{}_{}"
 
     def get(self, request, *args, **kwargs):
         if request.user.is_staff:
@@ -58,6 +59,16 @@ class UserLoginView(FormView):
         request.session.set_test_cookie()
         return super().get(request, *args, **kwargs)
 
+    def post(self, request, *args, **kwargs):
+        # limit login authentication
+        ip = get_login_ip(request)
+        username = self.request.POST.get('username')
+        count = cache.get(self.key_prefix_limit.format(ip, username))
+        if count and count >= 3:
+            return self.render_to_response(self.get_context_data(login_limit=True))
+
+        return super().post(request, *args, **kwargs)
+
     def form_valid(self, form):
         if not self.request.session.test_cookie_worked():
             return HttpResponse(_("Please enable cookies and try again."))
@@ -66,17 +77,24 @@ class UserLoginView(FormView):
         return redirect(self.get_success_url())
 
     def form_invalid(self, form):
-        # Write login failed log
+        # write login failed log
+        username = form.cleaned_data.get('username')
         data = {
-            'username': form.cleaned_data.get('username'),
+            'username': username,
             'mfa': LoginLog.MFA_UNKNOWN,
             'reason': LoginLog.REASON_PASSWORD,
             'status': False
         }
         self.write_login_log(data)
 
+        # limit user login failed times
         ip = get_login_ip(self.request)
-        cache.set(self.key_prefix.format(ip), 1, 3600)
+        key_limit = self.key_prefix_limit.format(ip, username)
+        count = cache.get(key_limit)
+        count = count + 1 if count else 1
+        cache.set(key_limit, count, 1800)
+
+        cache.set(self.key_prefix_captcha.format(ip), 1, 3600)
         old_form = form
         form = self.form_class_captcha(data=form.data)
         form._errors = old_form.errors
@@ -84,7 +102,7 @@ class UserLoginView(FormView):
 
     def get_form_class(self):
         ip = get_login_ip(self.request)
-        if cache.get(self.key_prefix.format(ip)):
+        if cache.get(self.key_prefix_captcha.format(ip)):
             return self.form_class_captcha
         else:
             return self.form_class
@@ -101,7 +119,6 @@ class UserLoginView(FormView):
         elif not user.otp_enabled:
             # 0 & T,F
             auth_login(self.request, user)
-            # Write login success log
             data = {
                 'username': self.request.user.username,
                 'mfa': int(self.request.user.otp_enabled),
@@ -142,7 +159,6 @@ class UserLoginOtpView(FormView):
 
         if check_otp_code(otp_secret_key, otp_code):
             auth_login(self.request, user)
-            # Write login success log
             data = {
                 'username': self.request.user.username,
                 'mfa': int(self.request.user.otp_enabled),
@@ -152,7 +168,6 @@ class UserLoginOtpView(FormView):
             self.write_login_log(data)
             return redirect(self.get_success_url())
         else:
-            # Write login failed log
             data = {
                 'username': user.username,
                 'mfa': int(user.otp_enabled),

From f8c2a445f7b65db5d130f781400d74e5c5415f2c Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 5 Jul 2018 10:26:16 +0800
Subject: [PATCH 101/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E6=94=B9gateway=20?=
 =?UTF-8?q?port?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/utils.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/apps/assets/utils.py b/apps/assets/utils.py
index cc4942ade..f841e4a79 100644
--- a/apps/assets/utils.py
+++ b/apps/assets/utils.py
@@ -54,7 +54,8 @@ def test_gateway_connectability(gateway):
     proxy.set_missing_host_key_policy(paramiko.AutoAddPolicy())
 
     try:
-        proxy.connect(gateway.ip, username=gateway.username,
+        proxy.connect(gateway.ip, gateway.port,
+                      username=gateway.username,
                       password=gateway.password,
                       pkey=gateway.private_key_obj)
     except(paramiko.AuthenticationException,

From 37bb344166f8fe77212772de965aeff170dfc8a3 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Thu, 5 Jul 2018 10:58:52 +0800
Subject: [PATCH 102/112] =?UTF-8?q?[Bugfix]=20=E4=BF=AE=E5=A4=8D=E7=BD=91?=
 =?UTF-8?q?=E5=85=B3=E7=AB=AF=E5=8F=A3=E4=B8=8D=E5=AF=B9=E7=9A=84=E9=97=AE?=
 =?UTF-8?q?=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/templates/assets/gateway_create_update.html | 4 ++--
 apps/assets/views/domain.py                             | 5 -----
 utils/make_migrations.sh                                | 2 +-
 3 files changed, 3 insertions(+), 8 deletions(-)

diff --git a/apps/assets/templates/assets/gateway_create_update.html b/apps/assets/templates/assets/gateway_create_update.html
index e0b10ba73..7c1bf14b2 100644
--- a/apps/assets/templates/assets/gateway_create_update.html
+++ b/apps/assets/templates/assets/gateway_create_update.html
@@ -75,10 +75,10 @@ var port = '#' + '{{ form.port.id_for_label }}';
 
 function protocolChange() {
     if ($(protocol_id + " option:selected").text() === 'rdp') {
-        $(port).val(3389);
+        {#$(port).val(3389);#}
         $(private_key_id).closest('.form-group').addClass('hidden')
     } else {
-        $(port).val(22);
+        {#$(port).val(22);#}
         $(private_key_id).closest('.form-group').removeClass('hidden')
     }
 }
diff --git a/apps/assets/views/domain.py b/apps/assets/views/domain.py
index e6a353373..be6528219 100644
--- a/apps/assets/views/domain.py
+++ b/apps/assets/views/domain.py
@@ -140,11 +140,6 @@ class DomainGatewayUpdateView(AdminUserRequiredMixin, UpdateView):
         domain = self.object.domain
         return reverse('assets:domain-gateway-list', kwargs={"pk": domain.id})
 
-    def form_valid(self, form):
-        response = super().form_valid(form)
-        print(form.cleaned_data)
-        return response
-
     def get_context_data(self, **kwargs):
         context = {
             'app': _('Assets'),
diff --git a/utils/make_migrations.sh b/utils/make_migrations.sh
index b6068a1ca..fbe3e577c 100755
--- a/utils/make_migrations.sh
+++ b/utils/make_migrations.sh
@@ -5,4 +5,4 @@ python3 ../apps/manage.py makemigrations
 
 python3 ../apps/manage.py migrate
 
-python3 ../apps/manage.py makemigrations –merge
+python3 ../apps/manage.py makemigrations –-merge

From 512fc8f8f0fa2ce46f3d03850c2871acf426a15c Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Thu, 5 Jul 2018 16:23:33 +0800
Subject: [PATCH 103/112] =?UTF-8?q?[Update]=20=E4=BC=98=E5=8C=96=E7=99=BB?=
 =?UTF-8?q?=E5=BD=95=E5=A4=B1=E8=B4=A5=E6=AC=A1=E6=95=B0=E9=99=90=E5=88=B6?=
 =?UTF-8?q?=E7=9A=84=E9=80=BB=E8=BE=91=EF=BC=8C=E5=B9=B6=E6=B7=BB=E5=8A=A0?=
 =?UTF-8?q?=E7=B3=BB=E7=BB=9F=E5=AE=89=E5=85=A8=E8=AE=BE=E7=BD=AE=E9=80=89?=
 =?UTF-8?q?=E9=A1=B9?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/common/forms.py                          |  26 +++++++--
 .../templates/common/security_setting.html    |   4 +-
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 36297 -> 36708 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            |  52 ++++++++++++------
 apps/jumpserver/settings.py                   |   2 +
 apps/users/api.py                             |  20 +++++--
 apps/users/templates/users/login.html         |   2 +-
 apps/users/utils.py                           |  26 +++++++++
 apps/users/views/login.py                     |  16 +++---
 9 files changed, 109 insertions(+), 39 deletions(-)

diff --git a/apps/common/forms.py b/apps/common/forms.py
index 87b2f4f12..a11420498 100644
--- a/apps/common/forms.py
+++ b/apps/common/forms.py
@@ -170,7 +170,7 @@ class TerminalSettingForm(BaseForm):
 
 
 class SecuritySettingForm(BaseForm):
-    # MFA全局设置
+    # MFA global setting
     SECURITY_MFA_AUTH = forms.BooleanField(
         initial=False, required=False,
         label=_("MFA Secondary certification"),
@@ -179,12 +179,26 @@ class SecuritySettingForm(BaseForm):
             'authentication (valid for all users, including administrators)'
         )
     )
-    # 最小长度
+    # limit login count
+    SECURITY_LOGIN_LIMIT_COUNT = forms.IntegerField(
+        initial=3, min_value=3,
+        label=_("Limit the number of login failures")
+    )
+    # limit login time
+    SECURITY_LOGIN_LIMIT_TIME = forms.IntegerField(
+        initial=30, min_value=5,
+        label=_("No logon interval"),
+        help_text=_(
+            "Tip :(unit/minute) if the user has failed to log in for a limited "
+            "number of times, no login is allowed during this time interval."
+        )
+    )
+    # min length
     SECURITY_PASSWORD_MIN_LENGTH = forms.IntegerField(
         initial=6, label=_("Password minimum length"),
         min_value=6
     )
-    # 大写字母
+    # upper case
     SECURITY_PASSWORD_UPPER_CASE = forms.BooleanField(
 
         initial=False, required=False,
@@ -193,21 +207,21 @@ class SecuritySettingForm(BaseForm):
             'After opening, the user password changes '
             'and resets must contain uppercase letters')
     )
-    # 小写字母
+    # lower case
     SECURITY_PASSWORD_LOWER_CASE = forms.BooleanField(
         initial=False, required=False,
         label=_("Must contain lowercase letters"),
         help_text=_('After opening, the user password changes '
                     'and resets must contain lowercase letters')
     )
-    # 数字
+    # number
     SECURITY_PASSWORD_NUMBER = forms.BooleanField(
         initial=False, required=False,
         label=_("Must contain numeric characters"),
         help_text=_('After opening, the user password changes '
                     'and resets must contain numeric characters')
     )
-    # 特殊字符
+    # special char
     SECURITY_PASSWORD_SPECIAL_CHAR= forms.BooleanField(
         initial=False, required=False,
         label=_("Must contain special characters"),
diff --git a/apps/common/templates/common/security_setting.html b/apps/common/templates/common/security_setting.html
index 2260b76b9..08d978d23 100644
--- a/apps/common/templates/common/security_setting.html
+++ b/apps/common/templates/common/security_setting.html
@@ -39,9 +39,9 @@
                                     {% endif %}
                                     {% csrf_token %}
 
-                                    <h3>{% trans "MFA setting" %}</h3>
+                                    <h3>{% trans "User login settings" %}</h3>
                                     {% for field in form %}
-                                        {% if forloop.counter == 2 %}
+                                        {% if forloop.counter == 4 %}
                                             <div class="hr-line-dashed"></div>
                                             <h3>{% trans "Password check rule" %}</h3>
                                         {% endif %}
diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index b5474cbe1cdec6a6fb164cf841611e659e75bd94..c9b42d9f4194e85347abe5bcb51aa9c2a1901b5a 100644
GIT binary patch
delta 12198
zcmZYF3w)1t|Htubvtih<$;Ox;n_<|ThROL%C^_8-kzvfn%wfXi6jS6dVsz(Nx45Un
zlu9U3Qn^)9(V5xEok*pd^nbm7*T?^^|Nna2-#x#d&-FcB-|M=5`_0|En*z^273h8y
z9<<KkXdUP{HSmkdj`K71Cu5a$oGD3;^C(Wm`FIOI4se{gO&sSi_HRZ^zDf(nxeH6M
z7T!iqIWftO(-!+<B0i4o@Br3#9M`$&Rh+n%j#HWweNhV;h-Gl9<#WvWSdsivEQRY)
z?KfdKzJg`(J&eXvSRQ}0{4K0Q9NbF%TvkCPh(tHkguSs6-j7xAAuNZp%tgp1Igg_j
zvIRr&d5p({*Z_-g8dhx0ShxrW;At}<g*@{+^QZ*lho~+36t&{gZ5$^8!%-8&qZZl%
z)jkC)U<VAtK3ElpqxxrAejcjb3e-3o?fg!3b!B_0Xn;c)f+tWNK11z95o#-c!Mia0
zZpW#P^-;I13r1pZ)Wl;@<7U|T9Mr<+qjv5Q)I96&X8&WTY$c(sd;@u|oRg@519)=O
zuq^6|!%<fdg*qRPx@C<~&q6Y)eF|!#E*OP_?0klu&obw<W&hP-i6vH{9-fWJU2wLe
zCi)UJ(RtKDFQeMs!Xymlk=7L^qZZl*wF4b3z6aI6zd01U6OVSOXsdUk27U=O@KIEU
z6R0abZSi^3t-6f5H8)WYX@&OQ*4IY=j-bX##%OGh+L2+X`O;Ch%*~;q9axQ;XcKCJ
zXHgAbLA_Q-Q3HHt@g>x~{@wB+9lR@!MlB#7wZKHw_#IF?)C)CkKV*TfGu#qmQ3Fmz
zb)1XZ!pF^g)D`VOEu;W7(IM2%y@PsNK1JQK?@{Ajv-7ttAJ)<9cNdn``(KlaI>w_`
z*arP8MlGNh`fwn|;B-{GwWx{mQ9HK<HO?N?#D`G}K7k4Nsl|bvyl135R$+dpGL;4x
zj~eJc)W9QAJCTZ7$PCmKFF*~v4ApLp#rdd*ZyT!JPCNfRYTSM3!=tGF7tmG1D^#@N
zUr_^=>g>hk%&Mq+RtGgu66zMTLv8)NsBuQ2+Kor;P&U@U9Mq0Jftq*=YNwv<%>L^s
zJU~JZ*(dk_mY`m%Ze6^IrlS_P6g6-jYM>3M3AduId=F}(y%>)NF%XN)60Ae~y&2Y(
z{cl2|X;*K;F*ulb4feu|s2yqE&6}tVY9T%FRUCjp7~0)iKsajQQK$v>H2b4=ZW!vy
zC!iKO$EBhHm!R(P8jJsK@w2E2_M)DJSMB_9)RmvcU_6KFe-TULb&GGJ7E-#0_t9Mu
zb<66aepk53RQ$g@P+Kz`HSj#Fi;tlucmXxRKGcARQT^Vt{28;z{1LT~o2YhyJsqbu
zR>o4;9Qj~!omNz;kr;q_s3v1sbWvBFi`ue$jK>1hvvLZxz+%({q1-REuYsDlF=}U9
zpe~>zmcj0*9q5M<djCgK(Nmg*dcRj<E!<<Cz!2geP`Ba+YT(~dI~CH~%U4CUi^j58
z7j;32cD^H)BkqP;(0y20@Bd&bTKNRjuhksXQ@a+m;`LY#H=`!ph1!9As4G8?YWF#6
z;%`w~e97`ZpxXa}nmFVhZ-*+Ps}5DEXrNlCr#BJxw2nk=eLCtjosU}R28*9XUE!Ok
zXXj({7t2@c<85_A)GwjC%^|3TOzXq`tCB-P3vp39kc(RJcC3dlV;p{kx&@{BdhN@a
zl~D_>j^(jFYDZe2?sZ$#_<c~fXb_geQGMBeHJC`E8O}ysQ2}bAL#SV`N3a5ZZeBnw
z{3q0azo8zwQvJLy9OY08h(+yKL)3+}MYS7(VK~yIq7_d@eYMK5cqP^+-h}FK1c%{!
z7>4opdM2Y5(iOGP-q;*R+4(%wd%g`D;j35^FQ6{a4Z6>JSVB+}g`%#s3Tk1sQMaNo
z>PkDBy)l${pv7a%bj!~`ZTVtz1y&?}0(Ak;AoID-OH{PwuVW=Vfm*=VsE6+|Y9gn<
zmk&ebqfrY?LM`xaJKqm=Wy4Y5{T{@wn1gx<527CCGZ?D({~8tDD}71V%F3FNs1?Vf
zwzj3^??EkK80rc$FcW9uR4hh~H*|n^el+S9O++nt3f99pSX%G@4k}vdZq!qGL?`fH
z=4sS`U!oRRgnBlvqpq~(KyRWtsD2GG0-K?psqUzI{s3wLv#~NRL06RxRKjr=>J}V8
z-GURS4rj4B7Gpz<9^^d>J<R^7e#24y(owf82X*C3Q9HH5d;+zzn+LJ~YWN%p|HP<=
z>;!5-pP?4`J^Ju>)D_3@J6cb5ENY-OW^YvcVW<zJbgY6aF&1~AzF!=}Y^*zk{g0=z
zaR{G!_$F#=e>AK8&AV5fu@(7=sJ{!gp>D|+s0E!z-MWjo0I%cAIAf@HYa8?K>eh8f
zwI77~h#%%s(P#AtYcLx94+-jC&OzPFMR*sk$Ld&sy3%8)EkA?Wv0{wG|Dbj@e7HBU
z57jOSwPS5j{oOv67>T;a8K^DWh8l36oj;CR*cnvE3#c8qVQOD>>&l|8FdWrB619+6
z)CDv}?L-fxzv~R9Qk}#|)E4HTIxNOiTx0ngr~ylj@CK-eT5t?%hwex9ABTFDrlJ<Q
z5TkG{>dFgH;~c;cz5nl0(S#qP2KpAY!k_&OxSEmPPK2QrS{pTRTU7ggsHb}j#^5B>
zQ~xOHidUh=dj_?Dm+bse^uPb_QPEa@glc#OHSk5$z`vvJUFlJt5vXUwhx$rY4|`!R
z)B^KR<Lp7TJAjMuh~;}e=*>3--M#_*vY?VfgM!g)7uFlY9|`1l;USzdmgj(clX2co
zlwd95o0x#n<2}1$P2#E816N`V{M5XTT2SQ)-Z)Vc*ncG&l90_%4^ay0io00;K8uH-
zwsfq;v(2TbtzB#J4vSx~_)XOKC(KXGFDAI&iF4NQlKCs@=?_Ztj6^Lg0pqX**2kgv
zATGoXc+QNS=*172+ffTRhcS2wb%7!7B=25VMLmQGsD`c04rX^$hrZ@8b3E$Gvn^h1
z@oEeqzt!@)%~#B$ru&gqzDB(!mr++9obJU@sEM1R^6f3|k6P$Ri&HJmLbc1W{Bo>K
zoNw`d)D9d&`nyiCS8;wYf5r+lxMgw3WbZAgg!*8qhB_aEny4Xa;q6hMq(e|wKHN+-
zGtC^-!WUr+z5kC|;*d3X8?~h;E&mO+Brdi%Cc_(`E@}adEbd@-H~S+0a|ZH5?cPEy
z{Iq!v{qO&es&L|0^R_hz&h$EjqZU*Pb!ACr3aVch)C9fF5vYl#SUeZiZ<XaYn*Tso
z4fj&f0B@S7%wp8}|6oNdGsPPy63Y<RM&%n=J_Y>?LiOuy4l&1?Q&IEHo5KF9;c7ea
z6l#Fo7QblmAq*w|Hfq9CmOqc`|Gjy`^1)NRaVnS*sD9NgPC)f*I+gpcN_!H~c#k>W
z8ZI&)MgKxk13hK&9y`Au>ybZf@g?&rRwjP~^%j)N^2TX|y3iDtN+l{CQTM37ofwXq
zaE!&7<_y$;b5ZSAT0S4uehY?U0qXo4sELl7ADW+`+Phy{<+AykS$djxr4guxv8aKX
zSlr6uu9!gn9xR75EWZG?qq(T}eFtisw@}}pP9i(vI_3Bx7EYoOszC?T%KMmuQCt2X
zY5`MF6U{`u_X|;9r8b#QVIuKX^CWg8{=@7zoj<{e7vMO(|L;)Iz=<=w1tg>5&X|wA
zEIwym!cOF`THJi5*S-yEp`B0{)Zg-BQ5QDJoMrh(6f?iG+!Fbyj$2SySZE%!^Y5Yt
zI%$4sUNV10?MTopZ$ULtaU7~&JBxdx=6MKRePNhEMOVBU)o=rr#iuRaW9~PPnV*>7
zp$5EydKLotGNF&+#;Aw8so5EIYX_iS=Mg#VzdBB`2J^5k@k)zdLj9V38?~@27=gD?
z3$8TV%SWQ(IJ2SI4E22>1*7m@bAq{GHv6v=8%bz_LexNSSo{uZ#iz`#EMH>&jOriw
zu-7jdHBKEf33Y*OQ9E(3#Shx~X|7e~n=8zXsE+?YJyfru7Iqx9pbt?Kowa-kMiXDL
zxcnTieYjZ-HJ%S+u{o;0JH$?mMNKplbwx{2TfN2ddo6ziwWVKL{wLHxrRI7IsAM)m
z<$IzQKFHz+Q2o=q*mYbg`hZxD`iR_(>hJ;jx8D59EHSU4Cb)&VvXFURzZ$5AHx|{u
z5vpBFjKMAzkHOM<|1+s*fEjjTnfZjj0sjbv8fcfrdr>>I-{MoK{%0`;f3SQgV{2ml
z8^5fL+TldAJw{QSe*DlCkH<xrf$DJ0{KL*ynC}e`fh{>7i)uFvwSe)c*Kamzfls5x
zJ!l>^-$(WP82!KhzoDW5{*5}JKVkI&6lzA9v1TIbN>Wfe)5{!Sjxfig7BCex?kw{W
zbIk&K|2JFWMe`79LGN4qHEP1k7T-b*9J0{6(n>gixPirM%-yI39znG~fm+BX=64Hi
zi?3MXmKnl*P{XQbEVd(VVrHNQ{HL8SME%Y825RTt#zy#|oxhE`CFK`;<Hn)-H+8Mj
z+U#Hrx}#o`0T_g7md`+Sd>FMu3oXA6HNiHE_gj1n)$UvKx>@ECZy|1VtJFh%gK2?!
zh#s)~Qgf}j6~j2c2X#vhpceFjc?z|2XU!7xXESh#*S;ds&ULDK6(<&J)3J#)xF2;z
zL+yMP>PlSHN9h`@h1*fD-CI}(zeBwp!AtoCgl$ouj1y7gEkTX587u1jf00U65{I!T
zevaL+POkUxOu*8_S*R<^LB7s8OK=0;z$&<UnRosfRQo~<#@DbEzJcZO2!`NE^nd?9
zLq%Kpt$Ec9c+^{IWz@uRsCG>)-^ua=&CzCt`LLO5uEPfO-)8aq=xQrIx5Q=hH`GL>
zAM;jP)%2mREWvDQwni<m18TfJsQ#m{EM{T|&O+_TLewqHeT@C*)6&T&p#h?nd)7q_
z&<xvPXVk!RQ3I{A^Bc`wsJG=ci%+83eS;P7lKCrYoS+rn_>n8@{jX<<7N~)`T0G30
zh#GJ<*2KlAfw!Rsd=9nX!>D#2q3-z?7Jq}<xl5>iSIyh5ohbjf*B~4<KsAeFu_18+
zHpaoIr+G1Ipe<$r>S25h)qlWBZ@dv0Ks=qYUKKl@F#VtZtL?;TOSTH+FC6OqDHA!D
zOsu07<rm_2DL+vd+kbSSt|Jr=<5_?7-ya`P?Z~-r@Giy*p#C@|pMR?=6Bk<f0qWmU
zbm+e=3dyS**U)W5jooox$6$K(z<tCwa5AL|xme<6)ZfMbdt4%~qYD12LcIg!2TE!B
z>Ui42sloY!l*_~coEsOwXGv8O-;=mPi6yB=c@3o>g>82Jm3K8R!fnc#M``&yWxTSK
zSEx^?=wa7!gnBqd$B(!bU&PV)4whw%FYtBZW|URbTT!}GKZPIS1C+a{Z>H#IMjwv6
zMRf-SHzgO9_hsEk_Y-PQS&O5b{)l>4ivDK2bLiF6Lw+~;(biV~`ByzkON&?EX^gkY
zEyQ?ijV)<cm2#3e$l5Q&S^>Pyddj;{@<<G!jHE;o^S#vhl=_{c4D~CNWD*ZzG36@t
z7btV7zlM2~QcN_6cqH{e+)t@bPX9isqXG4@)cNa<e=g3u7N6)oLiiHl25X{bKU2Sr
z4_S^+IRC*1kMp-bwQE9Lf%pPuQVvj$W(plUsGq_<ly50tQXVE3$@v-7qp9y;)tl>u
zxcStJ$yKtx%Zaa3bo4f7Dxm&P%5kcnP)aBrDLP{4t6wbd`6KVQTY1`kVe#A4|4q3@
z(NV_c>KwrDvk-y{ocN8BVhwWg+SQMA9c%V?ub2O47A+1_-XcoCBiNU6&3~3lCD-Im
zKk84C&%~V+9WP^huj>Dq&d(E+t>l+dMp1@QzSAQzhDs#mypq=G2F5c%E;${`@IFd&
zi(kTuoS$WJIqHk3>$k%koJW~W*-g9)58=Nl=P4U0-O1^w9#DpVP$y`RH?%>ln{MfQ
zO*IK+=pafj>ix*m;V;Koa%(8_{*vY6ncM(!$8oluTR^>tdLP_Q=|zd9T=LH6-E0t&
zJd^m(M`PxmLm~oqbM9+O1LFT+UHl4tc_|68y`H2tnM?vL&rt6``I>kcC5d_<c^%JC
zI{9n-|F7iBQSKa9slS=`bV9umeW^9K9%DJ(pZE|Zi~48Q{4L^|lmV0)v<;^$;#?wr
zKyIA1`yB5fo=SOz`mMYM4Qr)NAky)hhqKA7NdB1BXHefoy~Ns%p&mw=M!cBv9rZ?(
z78D(WDJ_^ij-sPyUO~f1_ZTgowGq}~Y05>;p0nI=>Zhr1R~L@8)SvUJ{-3%0JV2?-
zs7aKa)c>HoNV#*oMxPUu+MI8Q33lS?0RQJUAAcmmY*}eEm_nRFDWKG*{6uL-{?5^!
zdNqqL;?2BejiTK|%hbm8G~J6am_eCBJqhC|h15UAV64fk<57RW-#H41b-0xIlx*S`
zEEj{@$knmcQgz<*&eie%KSMr(hMa6`9iGGblopit^SU*Tbw8t)L3xv|g_QZ!b?l}5
zL46x#BV{FJ1G(OmAE@j293S$kfB9L987o_xYPPiMW_hf~xiorg*5}AK1dR#az&Pvl
z4{SnNV)0xXKEmQu{GHs#ls42Kv%EF)(<!f0VzfJ$GtW?}+o}8Ue&Px&!)LiY#5$T%
z_EG<y(v7l$QjOdK%5dr*QpQr&5x1l0s6?!zC#8tGOPS=)@ZW3%IC*Cit99E#E}7DZ
zIV)2(QSVHffmn(%lrn;H=V(p+GUY20VK@jU6{aLzkMvDW%l2hYNcCk*pFAct%a=LM
zm!3I3EyFi%bXxlKtkh|R2|ZQ^6u#55PC!MS$;|MjWn`yj%^00tc%j!TVXm)D{plHL
z*-4YrGNxyzHt?m5^A9(D8iP$3J<UH(>R4ZPrh3!YH!d^FH`<q;#>C|RJ8gE_<kV@6
zd>Q_Rv`d@j8=an>Ig>_Xr)Q;QjAvYOYWBZNNOTG}{cTE6n78C<soB}In^qV+;;q0k
z$-bs7+9bCw{MV@Ekx>`(R~6;HT%5nZ=)k(79WRvZefq*bw_aHHeBrQ}D*_6y&58(!
zDt>0cg@SEflMCx#zPNs`{<m>$VbJWX&`E8syq;UMV%_-zD||`5qTD4H*KEG>`m&+}
zdBtmYUdY|||3@x4c(5q<d2imLRgYhJefh<O+t0t6TlD143k5s=JVDWtNB%r_Vqxae
Wh@cAIh$VXt79ZGC`0!)>0{;gk|2vBS

delta 11803
zcmZA72Y405`p5B2AR!4!AcPP|2qYww5NZfTdMJU=L+{cd^hj6agram%B8nnh;nFRL
zp-NK(l_rW5QOX6CB7!1C1cCegoqc`&-2Xn$@R|3W*_qkd-E$7;Ps@D|F7@@CFO+w&
z!%^MWaf;*qFvqz|eR#aGj?=KR<IKTS%*G@5t&iihuHrcRFfN&x{7=;!Cjz&pI8I6Y
z3Tbj~VqJ`@?l_gOH`c@XSk7@g&SAIW+(CaDVrsYxNx*!>si=Iq*$xX3cfmY37`5<W
zSO{lf04~L7T!s1Z6U!gLQp6{*IP*LAspKUQQPZ6;3JVgK!opY$gRr^T0of#{H)<iH
zF$A-*3@*S#+=6590=CBvwJ5m8e1Pql-)ZxV<M`nU)E2Ept@sp%<0aGt_fQMXTifj)
zh{41KFcgbp5lljz-^lW9Q2lzL#u;ku6Van9n?XebEW|)ujyho-YA3d!w(@g~z)Ki~
z_ffYdypH2UViaoPWYoCz(R=Gq3vY+oxlX8g2G?Q#OHj!op{;xcd9IvyP$zz49lt~E
z&?VFrT($OlsAuF6>RIsPNz=fAsENX{D3(UG*SGdYW~;jFzfS0Ei9V=@XDG7U&KT4}
z-bYQe8MV+|sD4MVGM+?Tp&yU778-=wfr1uCqt1^r6ETgrs)vfUdLnAzmrw&QMxC%6
zb;WBe-i*3cyHL00FzO*ai`x2I=-m<2IDYlrTNjGjk@Bed>Y{F$C!LCRpf75oVW<fv
zp*qe&y;h4+1FW<7W7LF4Eq?}e#n({_xQANcW7PNs8n`=D3^i^EWPu(h$r3530aH;Y
zwnh!u+ss5=(OA?%UPMi_5Vdn}px&0Xs9UxZHQqjJ|H|^`QRn@P0eb&$P|=C^Q1>vX
zp{*FTfMOVn30MM~qWTR$O_Yh+xzVU`rl2NXgj(=&ERSm~K8|`ue!#-a?_8vki1$zf
z#iqIgS3>PXb<{%AP%F<s4cra2fPNNdq6U5r)o-G;XQRfQiLtmCb^ccLsN-HLTJaaC
z0l&5Qd-F2tp8bIu=n3i;gfw!uz9ed#%BX%dQ9INGi(@+K85o3`cr<FKCN*OJ^%Tx0
zp@(cW_QdU|*D9j1J5f{A0=u9F?vEO12x`JC)Rj*`O*8|`-~#l;E#`JCMZD8I-<bWc
zLc*tsJ7F?*ChmvnxC6B#d78Qt1)&xai90YJ^Wr)5!%L`zUqvmjXqsyrYUj$MuDlj%
zp{+brG+<}cJ?>}m2#Y77CYXVG7G_)fTc|5vgPJ%Ob^Z?Y$Nd%`MlIwN>ZAJt>TS7;
z`mXT!HM1`d)PPA?8f&2j?u{CF0BWF7sLzLqmY-=ZGMAx0?dwqeHewv^!94gMjK-g^
znBIS<xqFYJP!m)@?^BQ3sx&Nv-BHiTRMY}rL+#whsEIyDop%zofXmi?19c&PVLp6<
z+JSuB-*C+zNkva-66*bKjwNxhITHhk*P?F4Ce*}RQ9HKJ^2acc_yh*vdCOlx?clGd
zh5U(ndmdpy=64FTaKBDtQBP|f)Jp4P5T>Cf%0TTvZ`2iMq55T`CY*)Z;#V!d7}b9n
zYT^%3JF^wle>Zx(TSrAt?Mc*A>etfU`f$|iSr)am4J>Ylx`H97*Xen4ndLu0ZSir`
zy}o2VMlB?&m1}G(_FpS0Lqb0&Dx+510?T4AOu&~=TfYI-f1|k_wct-NKORHv$PcIm
z{D|s*8w2rg3_}0bZhKg3_CJ|K90^@fN7O`vP+zOVFc`DV`KT*+3pL<7s4d-q`k}E2
zwSYsY9XpP?upd$V9;0^LuZ_Fl!X7GmFJmoH1IrONLY*)SyW?{hibu_}sD)fdE%X*v
zL;tpJzuKtxI~^-vAB@5Is0(}-^{jY4q@sy7qpox(YAe4)-HH>aE4^ag!Vuzz76-O-
z+rv@$7}S<0nJHL+xE_XLYt(!_ksbFq{izfrF%GqWmr?J14r;))mfvFeeW(SVLM`x;
zwckZunQw-BEAn9z;#kx}I1u$PPeqOUCg#)ozm|$tw$a>!TJcfT)}FKcAE<@-w0EyC
z0!I;-z${#Vy7&5#uN??L-J&qmf+JB6bv$YZT4GVX|Lv*hsT^hv<INXQ1I|D#a31Q}
zSc<yR{iul!q6R#U;dlo1Ox-};^E@5h1;k+(aYeHMdJ2)qpi&SApl-o9)QYEJHC%v6
zxDWL#+%)f_&hzc$o)?bV+E~<;S3)f?#jJ<g*)&wY&YjqQ@5CfD@Ho_hJgAi}!dP5|
zy5a+<r}_|Tpo``$RDU17yY+z-j)k!X#$!v=?}|}47LQ;VOzpz{SE4eci@UXNn4h5T
z)itb%VO`z752T}R$#m3$=Av%hE4USxVo_}0&AnyAQ2m}qeYAT}uiZ3je_07_^<vaL
zT!FfW>o5X$p*}#4qpt7<>J~jg?Nl%y4v|<AwWT#t&q`BNzmBM#>Wex*%i`&%TkFZ8
zqOJM@HQ-t6@EdAjPf#c3@8Mo~j9D6W%POL-uqLX1UDQIFqb{H`YC*$MJNE)c;dEr@
zJkD||I$=Ey#BFYa6T=PDfaOpFq@Y&Z7_~zaP+LD2^$fj^TIgETE!cs&^5dv+E}{3~
zMa_2~L-qdq_i`H|P&-f(wZdf7fUQvzK8t#q$Dn>EOh!HBOHo(40=3X>sEI$f_EV@^
zdlt0=Kcf0w$8f#>52$G1(BAGni!>8ZCssxMgsO$<*d4XNRj7gXqWXP>)A6L`yFKep
zI0Re!@Ut5y(Y~h-4<Od+%l;prVJDTnIJG~kry-U5pq=;&OJeXK_ir#2%q|#1ei}Bz
zcd$5KHT?#=3o3;gC(+`%W@FT?Xfc@m_dcc8&=(aCL2c<ci|3k4P+Pm&;w={Mv-mjr
z(|*CcY~C>MpvHe_1`P4ID~uT8S`M|cI+%b>u^bM?KA3|I@Q#_1>BeKt&8P+3!4mio
zHDT0H_ZcdSdid&~`lWlU($4IHI-$2Y%$$h2@|P@LZ1GAAB>$1+cbNyxQ|6E6@2I!q
z5$e`>iVSlTiKvMip&Hs++z++VQ5KK4csi=z9Lq1mIN}W!A3^QF8Pxgr%_pY+aPNE`
zCxnVRL}38Np*~Q`yB(a$sEO*LR^Ar%5jq5Q<-^VKX0|y8HSTMef=ey_+S*TJ0lohh
zt>G5dpyPduE01sosDWBQJ&W6!UCiD%lJ<e9ekU*(ub6jG3-O_o3@{5|F!MV_RKa-E
zJ+6YfvW8|0)QKHY6Z9}gqRyLY@dDI&D=h!6x!pW~I{&!&GkU-O?^}obqud1)MGaIA
z^I@{(Yg@hrdKZLRKo4_>InJDhnsA}TE6t6l^LLH1_y03Xe2pPAoW=t9v*quiCi>e9
z9PJKJ#EdZ$Q0FCCTnBYtBeN|=6ZbSHj%NS0lGjMcrPgsJYM_l4@3r<LSeE>^7C$t7
zv)u2BK-60hjheU~YTOoB5HnCa+t2dDJyg_jj3u(onHWZX0qTTzEWZKOe-mnJ_gMQk
z*8YQe$-IW@|GW9f40_JZdm^dmN)s%Rf?9E^#mz15gyqTi#2}n$`9-KLeG~P*Z$V9X
z0-wQ)=-rVq?t<%~+S?%)=5czt6=yJNAz7#eOhrvJ3-#XTpngKVXKutw#2=X#u_19m
ze&ERrY>JC;5PpXmx4}4f0cq&3_rC*`H)-hZP4L-mKEzb=zT@2!o0u(83vG{uu%G3}
zp{{JQIotBDTfEHT4XE=rVUXVc{i@(G>+n5lpo`{B^Pw3q!QGJv)D=~-xH{^*HmC`D
zpnfNeMD?3(?XRFdX_ui#C#<oCT=Nt2sQEo=z$>U{-~s9*xb#H#sZKO&qaN0lsMoj?
z>b(BeJ|0UG&$RgciR^zl5_?E!2d<zN^aqCH6V%GX`Prg;6e=!jRx+z&1o^sH6x*A_
z%o*k~)HqvF<9s%W{a4};39bCJdC@vvH}9iP@O$3vA8ZywU11s2`~8f?Ev&tlIn<nB
z&On{_s)vdmrd6m3Hlr4@6Sc4dmOqYq&CXbS*ZkYe^MX5I5XRFl26cX_<=dd<>5JN-
zEYuEr=2*jWYxn@Qm0wu?9BQB&7>y6iB9q;GGHT%sEKWn6-@)Qc)aSx@)aSrrRR3-0
zegF5k73WLyxOo;e@nzIj-A0}0|DyZ!hM;z;2&!K!YNCo3w?g&rhC08G<;R%W-gfT)
zd@35~HE)7{uSadsYK!-v1~`D4;5*CziJJJanSYAA#YN3>sBvnc7LtL}u`BAlvr_N>
zHS2H>b&nol4Ggh|vk7Ve8K~E90BYccsDam+8_lh#33i)@Q0Jev_!rdM_9uG(`=4*N
zn+P$Bq81X5+L>x*J+qmafm%Qh)P()aQRZaS#Ir4a+gxw?t=abde~^SGJY^j&qXxc>
zy3z;8FK#D%svA!>7o!&V0jmFY)I#=}N6a(kW%IV_OtUQsndbgi=_s=+YQWb~11>{9
z+<@A;53vI7wDzm0h2FI|lpC${qs>xgB5J%UsJEn^hl+mfcCd!7s1paGwr;rP)lU=5
zvv{?|AEEjkHqV>4P!r{y;Tnee;Zg$i45eA#lVz1D=3ES=!xGdjS&LfGHggYZ-~;Ay
z^Md&+s{daWJ1@EYLokkf6so;0azP%av32N)x{^%PN9klNiSw}pzK^Bw2<q+l4J%@q
zm)#Ghj;I|PjT&b*>H^-zBKRIQ$Iq}S2G7*9!~Jhh#h*k^)RpzeB{&)jW8f?|Ujo%H
z3H>k`^I$E^k9AQGV{=r$_NWDPGc(Oe=v^Rs-~YF*VZAl%Py;6(G0&Kn&D*9k+wB*E
ziS&=MxCv^442uVtS*Qg~!9ZMq9#xi5(TZ1^>&*{Q3)zMma6f8*(-?qPFc5!7?Z^Yv
zt<(Q7!e^KhhC2Tha~bOV4OkmLp2PlY;JYL=P{3TbLm{&i>NQEWxH+m{SJc4$%u&`p
z+2VN?zll13y~TUYW2kX1%;o;aP`O4z1Lm9OUTI;}O3R`;)<oUwREwLUcC0N1V`sC!
z<wu(nQ0GsvcorrRFGM}OJ3UnNwR#PM(Qm$MA=E=y5;eef)P(!c2ggxfSH+IkO^xx2
z<xg2I#g{KN>KT+w+LDQN)TE@}A@L>U7G<F~&0m+O>j=hu_=7k4zdw#rZ9v<9FkFLC
zpPy4TAv~;yvJ@T1F(9W?LXsy*?PPXh9{Q)@HsX6YoKlEfJaJX(2l4+OSIO%rjCU!2
zQg1-HNy)4EIaa$k#cAJ7`IYzy4)ozuqX?DjBz~jBa)KV-MU*y_1(dIH;!1~mD$z2V
zo*OBH$sVI@qdu0R$6Lo|)Waw`ZsH2ugnjXI^k<A8a2IhhWg+z%lr-x4-=@C7o|Fjc
z%PBf4yO)rYTe_296>>##LdryXPEcEBJr2<88|sZIVcv7xKlHNc`L0dAkM-66$dy2;
zZt<&6_5YjPG~zN?3#-wuFy$C=9_v39OZxC)>TzpKSwx~Ur57cVm>+=7DeC_m{?u<!
zs*`vYf2Q1`zKJrK`p1|<@nNEl#JyElo>H3Je$-KhdOqs>J&k_|&M8&4l4l0t7Q#2I
zi@M#W{s{Y7j*kxS!5i#!d8%I(;{3#yaTI0OQ*HmIeu7*p%0<dK%JbwRSi*Sf(bQM5
z>SJXCJxi!xAs0%Uj=98tP;{i56R1C-yi0rtPg1T@8d7vbbFRKh4tpc_dn|~)XD!x0
z!d|ERPSN3KbEW$5)s>InCmQ~w)Upl}b4HYl^gOm`nR}M^&n$AEQa&R}#QoTs@`tyT
zDeWAEZ&QC8N8(z`Z^8Q3R}80oMR|w(%aq=fZj_69MEX*Rr0D4G;@ro0mORt)v#>2C
z+2YL@Li+@Z1E^1<t}lca@I}fb%DcqtaWCGW{6u++(v+NzD4%@%`zk@XoY{%-o?(`5
zW2#GjhW4eTQ`bL$bHe`|-;;ZlqVKAwj|${EkT{6XTSGSWpQ*RRm6Ya`c*-wsdrngM
z!0O|PpFYYn_hb@bxPi9wltkkDSQ^h^OipI``1GaJMvy5>&ok8PQ!WtCrc|Qtkk_$>
zlIpGTH!1RgYO~`v>YwDCEMK-)D{58ji~+Q^Bi=)Kj{0}jdmnKOr9Gt>eG5{i)0Tus
z$PKc7XRrnFXv%i#4|2LCl^i&jNXK6;&Qdd!{FhcAM|}hJaO>NTdMM>N;^~x2)GJU@
zC^|Y*sxo^VMMtxob4ih&FX*|>MtBYVDA#DcWVs&HPg4K4PT|O*zR|6E|D462yD6m@
zwE|@w^~aQtDE}NgIOiy(1nuRqyfv)y@qTXexk4h?mNkS9qlurPyibXv+@@5tcB)Q2
z`V^z+xPpJ>?5Gg!sc4xve1n!;EP*2_qo`NL1j<L$Ph(z;V$?yXzpMXqyhp6VL&>I$
zA^y;EC2%FVl25JXklR+u`yYQ|3Cht}$4>YF%TlUQ4(E)k81FevZ3N|0hRLOPsO#8F
zc|?5$<xR>0$`W!dD8EwI@g4SetN-(7ab_%NeIjjXMa@90OIs#q{7auB7YHg6?8O8-
zX$@AUykzl<HhdwA2bkZIe}?)Ti>;fNhB;Z4qCK5xSxt!|cNyDb1_rT=SZ_b>E3uBM
zl&#dSQJPTZQHqh9O6gAhYf690V&Zxf9R-MWG^hMXeF|lmH^U3$<K*P8T&(H8$fZyc
znX>@pE$WTv(*b=cT`4^&{~R@`|3W!WA_P0((A><*cOrAMn=SAON=uC$GjQzK%#nk0
zgVPgyavQbS5}G@y+laim4|?tP&6g5ewMOlf8o7J=%!|zJKXIN<P;1V(`oW$nyFbXi
YIjOKuZuARTA-Rud1?SC;ncvL!ziD2Bu>b%7

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index 56fabe11a..b1e588650 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-07-04 16:46+0800\n"
+"POT-Creation-Date: 2018-07-05 14:58+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -1433,45 +1433,60 @@ msgid ""
 "for all users, including administrators)"
 msgstr "开启后，用户登录必须使用MFA二次认证（对所有用户有效，包括管理员）"
 
-#: common/forms.py:184
+#: common/forms.py:186
+msgid "Limit the number of login failures"
+msgstr "限制登录失败次数"
+
+#: common/forms.py:193
+msgid "No logon interval"
+msgstr "禁止登录时间间隔"
+
+#: common/forms.py:195
+msgid ""
+"Tip :(unit/minute) if the user has failed to log in for a limited number of "
+"times, no login is allowed during this time interval."
+msgstr ""
+"提示:（单位 / 分钟）当用户登录失败次数达到限制后，那么在此时间间隔内禁止登录."
+
+#: common/forms.py:201
 msgid "Password minimum length"
 msgstr "密码最小长度 "
 
-#: common/forms.py:191
+#: common/forms.py:208
 msgid "Must contain capital letters"
 msgstr "必须包含大写字母"
 
-#: common/forms.py:193
+#: common/forms.py:210
 msgid ""
 "After opening, the user password changes and resets must contain uppercase "
 "letters"
 msgstr "开启后，用户密码修改、重置必须包含大写字母"
 
-#: common/forms.py:199
+#: common/forms.py:216
 msgid "Must contain lowercase letters"
 msgstr "必须包含小写字母"
 
-#: common/forms.py:200
+#: common/forms.py:217
 msgid ""
 "After opening, the user password changes and resets must contain lowercase "
 "letters"
 msgstr "开启后，用户密码修改、重置必须包含小写字母"
 
-#: common/forms.py:206
+#: common/forms.py:223
 msgid "Must contain numeric characters"
 msgstr "必须包含数字字符"
 
-#: common/forms.py:207
+#: common/forms.py:224
 msgid ""
 "After opening, the user password changes and resets must contain numeric "
 "characters"
 msgstr "开启后，用户密码修改、重置必须包含数字字符"
 
-#: common/forms.py:213
+#: common/forms.py:230
 msgid "Must contain special characters"
 msgstr "必须包含特殊字符"
 
-#: common/forms.py:214
+#: common/forms.py:231
 msgid ""
 "After opening, the user password changes and resets must contain special "
 "characters"
@@ -1532,8 +1547,8 @@ msgid "Security setting"
 msgstr "安全设置"
 
 #: common/templates/common/security_setting.html:42
-msgid "MFA setting"
-msgstr "MFA 设置"
+msgid "User login settings"
+msgstr "用户登录设置"
 
 #: common/templates/common/security_setting.html:46
 msgid "Password check rule"
@@ -2307,6 +2322,10 @@ msgid ""
 "You should use your ssh client tools connect terminal: {} <br /> <br />{}"
 msgstr "你可以使用ssh客户端工具连接终端"
 
+#: users/api.py:210 users/templates/users/login.html:50
+msgid "Log in frequently and try again later"
+msgstr "登录频繁, 稍后重试"
+
 #: users/authentication.py:56
 msgid "Invalid signature header. No credentials provided."
 msgstr ""
@@ -2649,10 +2668,6 @@ msgstr "忘记密码"
 msgid "Input your email, that will send a mail to your"
 msgstr "输入您的邮箱, 将会发一封重置邮件到您的邮箱中"
 
-#: users/templates/users/login.html:50
-msgid "Log in frequently and try again later"
-msgstr "登录频繁, 稍后重试"
-
 #: users/templates/users/login.html:53
 msgid "Captcha invalid"
 msgstr "验证码错误"
@@ -3049,7 +3064,7 @@ msgstr "更新用户组"
 msgid "User group granted asset"
 msgstr "用户组授权资产"
 
-#: users/views/login.py:74
+#: users/views/login.py:75
 msgid "Please enable cookies and try again."
 msgstr "设置你的浏览器支持cookie"
 
@@ -3149,3 +3164,6 @@ msgstr "MFA 解绑成功"
 #: users/views/user.py:555
 msgid "MFA disable success, return login page"
 msgstr "MFA 解绑成功，返回登录页面"
+
+#~ msgid "MFA setting"
+#~ msgstr "MFA 设置"
diff --git a/apps/jumpserver/settings.py b/apps/jumpserver/settings.py
index c8ed1505e..c0a536276 100644
--- a/apps/jumpserver/settings.py
+++ b/apps/jumpserver/settings.py
@@ -405,6 +405,8 @@ TERMINAL_REPLAY_STORAGE = {
 
 
 DEFAULT_PASSWORD_MIN_LENGTH = 6
+DEFAULT_LOGIN_LIMIT_COUNT = 3
+DEFAULT_LOGIN_LIMIT_TIME = 30
 
 # Django bootstrap3 setting, more see http://django-bootstrap3.readthedocs.io/en/latest/settings.html
 BOOTSTRAP3 = {
diff --git a/apps/users/api.py b/apps/users/api.py
index dd1b76ba3..cf13b9aea 100644
--- a/apps/users/api.py
+++ b/apps/users/api.py
@@ -3,6 +3,7 @@ import uuid
 
 from django.core.cache import cache
 from django.urls import reverse
+from django.utils.translation import ugettext as _
 
 from rest_framework import generics
 from rest_framework.permissions import AllowAny, IsAuthenticated
@@ -17,7 +18,8 @@ from .tasks import write_login_log_async
 from .models import User, UserGroup, LoginLog
 from .permissions import IsSuperUser, IsValidUser, IsCurrentUserOrReadOnly, \
     IsSuperUserOrAppUser
-from .utils import check_user_valid, generate_token, get_login_ip, check_otp_code
+from .utils import check_user_valid, generate_token, get_login_ip, \
+    check_otp_code, set_user_login_failed_count_to_cache, is_block_login
 from common.mixins import IDInFilterMixin
 from common.utils import get_logger
 
@@ -149,7 +151,6 @@ class UserOtpAuthApi(APIView):
             return Response({'msg': '请先进行用户名和密码验证'}, status=401)
 
         if not check_otp_code(user.otp_secret_key, otp_code):
-            # Write login failed log
             data = {
                 'username': user.username,
                 'mfa': int(user.otp_enabled),
@@ -159,7 +160,6 @@ class UserOtpAuthApi(APIView):
             self.write_login_log(request, data)
             return Response({'msg': 'MFA认证失败'}, status=401)
 
-        # Write login success log
         data = {
             'username': user.username,
             'mfa': int(user.otp_enabled),
@@ -196,12 +196,21 @@ class UserOtpAuthApi(APIView):
 class UserAuthApi(APIView):
     permission_classes = (AllowAny,)
     serializer_class = UserSerializer
+    key_prefix_limit = "_LOGIN_LIMIT_{}_{}"
 
     def post(self, request):
         user, msg = self.check_user_valid(request)
 
+        username = request.data.get('username')
+        ip = request.data.get('remote_addr', None)
+        if not ip:
+            ip = get_login_ip(request)
+        key_limit = self.key_prefix_limit.format(ip, username)
+        if is_block_login(key_limit):
+            msg = _("Log in frequently and try again later")
+            return Response({'msg': msg}, status=401)
+
         if not user:
-            # Write login failed log
             data = {
                 'username': request.data.get('username', ''),
                 'mfa': LoginLog.MFA_UNKNOWN,
@@ -209,10 +218,11 @@ class UserAuthApi(APIView):
                 'status': False
             }
             self.write_login_log(request, data)
+
+            set_user_login_failed_count_to_cache(key_limit)
             return Response({'msg': msg}, status=401)
 
         if not user.otp_enabled:
-            # Write login success log
             data = {
                 'username': user.username,
                 'mfa': int(user.otp_enabled),
diff --git a/apps/users/templates/users/login.html b/apps/users/templates/users/login.html
index 7ea824502..6b55a58bf 100644
--- a/apps/users/templates/users/login.html
+++ b/apps/users/templates/users/login.html
@@ -46,7 +46,7 @@
                     <form class="m-t" role="form" method="post" action="">
                         {% csrf_token %}
 
-                        {% if login_limit %}
+                        {% if block_login %}
                             <p class="red-fonts">{% trans 'Log in frequently and try again later' %}</p>
                         {% elif form.errors %}
                             {% if 'captcha' in form.errors %}
diff --git a/apps/users/utils.py b/apps/users/utils.py
index fb2a8d93e..bc03eecbd 100644
--- a/apps/users/utils.py
+++ b/apps/users/utils.py
@@ -332,3 +332,29 @@ def check_password_rules(password):
 
     match_obj = re.match(pattern, password)
     return bool(match_obj)
+
+
+def set_user_login_failed_count_to_cache(key_limit):
+    count = cache.get(key_limit)
+    count = count + 1 if count else 1
+
+    setting_limit_time = Setting.objects.filter(
+        name='SECURITY_LOGIN_LIMIT_TIME'
+    ).first()
+    limit_time = setting_limit_time.cleaned_value if setting_limit_time \
+        else settings.DEFAULT_LOGIN_LIMIT_TIME
+
+    cache.set(key_limit, count, int(limit_time)*60)
+
+
+def is_block_login(key_limit):
+    count = cache.get(key_limit)
+
+    setting_limit_count = Setting.objects.filter(
+        name='SECURITY_LOGIN_LIMIT_COUNT'
+    ).first()
+    limit_count = setting_limit_count.cleaned_value if setting_limit_count \
+        else settings.DEFAULT_LOGIN_LIMIT_COUNT
+
+    if count and count >= limit_count:
+        return True
diff --git a/apps/users/views/login.py b/apps/users/views/login.py
index f58ef7b8f..94071924f 100644
--- a/apps/users/views/login.py
+++ b/apps/users/views/login.py
@@ -27,7 +27,8 @@ from common.models import Setting
 from ..models import User, LoginLog
 from ..utils import send_reset_password_mail, check_otp_code, get_login_ip, \
     redirect_user_first_login_or_index, get_user_or_tmp_user, \
-    set_tmp_user_to_cache, get_password_check_rules, check_password_rules
+    set_tmp_user_to_cache, get_password_check_rules, check_password_rules, \
+    is_block_login, set_user_login_failed_count_to_cache
 from ..tasks import write_login_log_async
 from .. import forms
 
@@ -63,9 +64,9 @@ class UserLoginView(FormView):
         # limit login authentication
         ip = get_login_ip(request)
         username = self.request.POST.get('username')
-        count = cache.get(self.key_prefix_limit.format(ip, username))
-        if count and count >= 3:
-            return self.render_to_response(self.get_context_data(login_limit=True))
+        key_limit = self.key_prefix_limit.format(ip, username)
+        if is_block_login(key_limit):
+            return self.render_to_response(self.get_context_data(block_login=True))
 
         return super().post(request, *args, **kwargs)
 
@@ -87,13 +88,12 @@ class UserLoginView(FormView):
         }
         self.write_login_log(data)
 
-        # limit user login failed times
+        # limit user login failed count
         ip = get_login_ip(self.request)
         key_limit = self.key_prefix_limit.format(ip, username)
-        count = cache.get(key_limit)
-        count = count + 1 if count else 1
-        cache.set(key_limit, count, 1800)
+        set_user_login_failed_count_to_cache(key_limit)
 
+        # show captcha
         cache.set(self.key_prefix_captcha.format(ip), 1, 3600)
         old_form = form
         form = self.form_class_captcha(data=form.data)

From bd14266abd0168dc23236b45193d5da469cbf07d Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Thu, 5 Jul 2018 16:45:05 +0800
Subject: [PATCH 104/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9=E7=99=BB?=
 =?UTF-8?q?=E5=BD=95=E6=97=A5=E5=BF=97=E6=A8=A1=E5=9E=8B=E7=B1=BB=E7=9A=84?=
 =?UTF-8?q?MFA=E5=AD=97=E6=AE=B5=E9=BB=98=E8=AE=A4=E7=8A=B6=E6=80=81?=
 =?UTF-8?q?=E4=B8=BA-?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/models/authentication.py | 2 +-
 apps/users/utils.py                 | 1 -
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/apps/users/models/authentication.py b/apps/users/models/authentication.py
index 493e4bb59..cb0b7d85f 100644
--- a/apps/users/models/authentication.py
+++ b/apps/users/models/authentication.py
@@ -72,7 +72,7 @@ class LoginLog(models.Model):
     ip = models.GenericIPAddressField(verbose_name=_('Login ip'))
     city = models.CharField(max_length=254, blank=True, null=True, verbose_name=_('Login city'))
     user_agent = models.CharField(max_length=254, blank=True, null=True, verbose_name=_('User agent'))
-    mfa = models.SmallIntegerField(default=MFA_DISABLED, choices=MFA_CHOICE, verbose_name=_('MFA'))
+    mfa = models.SmallIntegerField(default=MFA_UNKNOWN, choices=MFA_CHOICE, verbose_name=_('MFA'))
     reason = models.SmallIntegerField(default=REASON_NOTHING, choices=REASON_CHOICE, verbose_name=_('Reason'))
     status = models.BooleanField(max_length=2, default=True, choices=STATUS_CHOICE, verbose_name=_('Status'))
     datetime = models.DateTimeField(auto_now_add=True, verbose_name=_('Date login'))
diff --git a/apps/users/utils.py b/apps/users/utils.py
index bc03eecbd..937a90867 100644
--- a/apps/users/utils.py
+++ b/apps/users/utils.py
@@ -22,7 +22,6 @@ from common.utils import reverse, get_object_or_none
 from common.models import Setting
 from common.forms import SecuritySettingForm
 from .models import User, LoginLog
-# from .tasks import write_login_log_async
 
 
 logger = logging.getLogger('jumpserver')

From 5d800fa629010a96268b62bf8948b53350b057bd Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Thu, 5 Jul 2018 17:07:03 +0800
Subject: [PATCH 105/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9coco?=
 =?UTF-8?q?=E7=AB=AF=E7=99=BB=E5=BD=95=E9=99=90=E5=88=B6=E6=AC=A1=E6=95=B0?=
 =?UTF-8?q?=E9=80=BB=E8=BE=91?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/users/api.py | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/apps/users/api.py b/apps/users/api.py
index cf13b9aea..c23112384 100644
--- a/apps/users/api.py
+++ b/apps/users/api.py
@@ -199,17 +199,16 @@ class UserAuthApi(APIView):
     key_prefix_limit = "_LOGIN_LIMIT_{}_{}"
 
     def post(self, request):
-        user, msg = self.check_user_valid(request)
-
+        # limit login
         username = request.data.get('username')
         ip = request.data.get('remote_addr', None)
-        if not ip:
-            ip = get_login_ip(request)
+        ip = ip if ip else get_login_ip(request)
         key_limit = self.key_prefix_limit.format(ip, username)
         if is_block_login(key_limit):
             msg = _("Log in frequently and try again later")
             return Response({'msg': msg}, status=401)
 
+        user, msg = self.check_user_valid(request)
         if not user:
             data = {
                 'username': request.data.get('username', ''),

From 814e6a7df862a0f6103b5ba29273e486d44bb092 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Fri, 6 Jul 2018 10:34:16 +0800
Subject: [PATCH 106/112] =?UTF-8?q?[Update]=20=E4=BF=AE=E6=94=B9sshpass=20?=
 =?UTF-8?q?=E5=BC=95=E5=8F=B7=E5=BC=95=E5=85=A5=E5=AF=86=E7=A0=81=EF=BC=8C?=
 =?UTF-8?q?=E7=89=B9=E6=AE=8A=E5=AD=97=E7=AC=A6=E5=A4=84=E7=90=86?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/ops/inventory.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/ops/inventory.py b/apps/ops/inventory.py
index b7d3ef487..7ed89e75c 100644
--- a/apps/ops/inventory.py
+++ b/apps/ops/inventory.py
@@ -93,7 +93,7 @@ class JMSInventory(BaseInventory):
 
         if gateway.password:
             proxy_command_list.insert(
-                0, "sshpass -p {}".format(gateway.password)
+                0, "sshpass -p '{}'".format(gateway.password)
             )
         if gateway.private_key:
             proxy_command_list.append("-i {}".format(gateway.private_key_file))

From 435acafccd608708bf872168fcac1a8378615ae1 Mon Sep 17 00:00:00 2001
From: BaiJiangJie <bugatti_it@163.com>
Date: Fri, 6 Jul 2018 13:22:20 +0800
Subject: [PATCH 107/112] =?UTF-8?q?[Update]=20=E5=9C=A8=E7=BA=BF=E4=BC=9A?=
 =?UTF-8?q?=E8=AF=9D=EF=BC=8C=E5=8E=86=E5=8F=B2=E4=BC=9A=E8=AF=9D=E6=98=BE?=
 =?UTF-8?q?=E7=A4=BA=E7=99=BB=E5=BD=95=E6=9D=A5=E6=BA=90=20Web/SSH=20Termi?=
 =?UTF-8?q?nal?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/i18n/zh/LC_MESSAGES/django.mo            | Bin 36708 -> 36764 bytes
 apps/i18n/zh/LC_MESSAGES/django.po            |  76 +++++++++---------
 .../templates/terminal/session_list.html      |   2 +
 3 files changed, 42 insertions(+), 36 deletions(-)

diff --git a/apps/i18n/zh/LC_MESSAGES/django.mo b/apps/i18n/zh/LC_MESSAGES/django.mo
index c9b42d9f4194e85347abe5bcb51aa9c2a1901b5a..78d56177ea093bf518cc027eff07aab406c1a7c5 100644
GIT binary patch
delta 12334
zcmZwN2YgT0|Htu*B$9|AL_&y&J!8aPwPMHKl-jYQHtj|2O{=KATdh&4BGlHRrPUuT
zTJ)!AYqr#?^?SX)_mjt?|HtEhA3b@V&*z+b&bjB_`~8Nxwle+lRq5T!VSbAojw<OL
zCl6lB<~UEOe^NkM$C)4JI5TkpPQW~69Opmj9A^a{#^iFu<m2NVCmaJSI8Hu{Mw*<O
zSRIqGG;YNjcnOO-j_X8K^i`aC7(l}y)Ix@1MqFU|rRHkPLVgowz+I^Rdoc{pV<6tb
zDEu2UVb)4sJ`ctc7s5Qu?=+<1N1``s!v2^QhhYwU2ZM2mxenPRXDezU2Qf2#hlTMn
z7DNBaj`JqQVJlpRt?`lBxC(jZcUDsI$G=cp^cc0`!c`q7JC;LDkbqif8&v;}7=qm}
z6bE8X9EUo8q2*Vi`fWjtlWOh9(bbimrJ@0@U=ZF#o$v&;6aLk_t;~tx#N{wIHbmXB
zo*04sQ4>!>jXT%cm!cNF8nts9Q1k4n#{NfBIYdHR`3v$~Ie(%C&d-yhjzv*dTn=>w
zl~L^ps9V+y^(?eS_3wz9s3%6^2y35f?F-H2)!BcYu+b9RQ4dclau=K<sEJ;nCi3Ia
z)j~s1{qkTO7D8QNThu~3p?09V#RE|1C!1q1fq0@zMO%FwHSjsqz}HbH+(ljSBa8iN
zdbcVBb!(zf4{1r%*4IYgj-bYAi&6MGYDdPR=9`VWW$scc+JR3|6YWJk3nx$=&!b+e
z>!<;qSR7o-n=mgbUkr7{)ldsaKrJv4HGVhL4ke++9gHl{b;em@GU^HzpiW$Y8gQ$*
z2X#e9Q4^j*O>_mdbHAb9mdB`DmgzNbyf9RIG%8;jbzTJw)caq9icU;Gt*{gNR*YIe
z62{<gjK)Q%exIQR+=JS=gQ#&%qb}qsYQcB0I6k&Gwzl_-l)xO!@06ud3=>cT4Mh$7
zHfkrPpce8zYUOKC1Am0-x5MH+sE6+`s^4*I{|+_oj~Ij3QRfHLVgJ=J3l*(60ySU(
zi;J5TQTMD4YM|z*ThJA?wL?(jxTt>9P&@P<=E0??9sL|N@j=v1ov6e9>nXfMLJ!$P
z?1F)Hz1ONYYNAD`1#UtOoPru?H)_H|s4G8>n&>PR#><!<{p)!KVk~hcvvfW7zYK|%
zB;s%qw!<CR2!rZ-JJK38Q76<w`r;mZ6aBDMg13NjsBtQz7TC{BM(x~K)Rj+1Ep)j{
zMFVa`-Qyh=e_`<n)C6Zy&%y<3zlmDVBlO1%4ZQP%Fn~CR#Zjn*6h?h?$DwXnebje_
z+m?#&%LBDF<4^;y#6tKnYJxMU1^#GWMGbrhb^asE`#1FZWi_Kv3o4B2R|@lEb<Cjm
z|8*+*gzAC0@NLvRUxI<S8Fl3;sI5DSh4DP<nR$g;Xc+fP6I4d^Z-AP(18Rr6p)O<q
zX2fL7qW6Cc6%9NC^|Y=)z2~Wz4=<QcF^D)<WABy}Kn+|JwPW#?uZ`-LfPvTobwM4i
zeE<d%4@G~y|Kq5r!$j1|-$i}Bu17t+2T&_MjKO#kHQ_nb4qQcD`9oAczb4+qA;=ax
z;i!BrRR8>_orp(QTU3>bR$3c1P-E0n+!6KE&Oq(ZV$|#UF>0YlEIy06fZM2N=%tyz
zsh6*Zdg$7rZgn4XQd9O{D_KcGu176oGinD?P%A!-Mex5^5QCa|x1cnte|fVyW+twW
znXonL%DbT!&==Kz6zUdDXvY2rQ<-TU7GXK!4X7(Rk9z%XqP}MDVF>yqdS*i{JQ_7%
zLDY_xM*ZSZ0kwcc)Q+`7U07dKzez5YP%1M}D_(+nPuE+VibaXPM4fOCJK-Y?#g@%I
zyQ3B|1hvo+SRQ9u`+n5>ehN$CHOz}{wiezM#-SdTc+^CdQCC_EwXmkBThRe^r31_n
zn3>qMc#gT)@@r6AzRlc?S%?oI7vMT)sA$4pP+R^RX2qwd1q8SB9=-_FL?ux9Dwa<`
zEwB@6fqkrf4C>ZRMcs;7SP$2u9>PB`LhrwSD{tVusC!icwYBBVI;a)5L~ZRGmLG|F
zE2f~Xa48PKwU~@yt-bLkquOVqZqXvtf|p?tz5ko2Xa~MUt@H=fLwV2g|Cs68cmoEa
z7MK<FY~({-X+zXR%~0dD!|d1<^-LwB?)fy-0ydzVjmoD~<Pi+RbEsSJJ8G++qD}~C
z>pfIqSb{hK^(+iC$D_`hiaKvG>XxlXUHJ~w0(YB-+Oq%J+LPAtBKjsq4g3_fpbUH`
zYk@g228*JuxDn>WMASIF%@L^nQ&1mBi!leLVgdXX^?SyHcI^LfDlOW3Un<A2H1TcJ
z)<$*ktcUsl8ibW_5$ewer%=yK#*W^CvY>8V4xEVj@N-;)k=TKESGO)1bpaDxD*B9{
zf_nX?TZh@`dq`0Caue!aZpCmsjJfeV>PjD=w%ot7w_{-#L0kxR3u>SyZi4F93AJNx
zUn&}4lqF_hdE%w0Ejxv}1y`;8A!=d%?4QodhT4GwW(m}-E04Ou8mRttPzy;!T|gIP
zL9R25iUyd7x}q7VEnJT}VH@_wFDzf6t2bb2)D=}lEw~YChu%V+zX0_tEk`YM3+fge
zKwbHH%%u1KcPd)(->3;+q6P|i-J2i=)gFi1i7KdtHbo8G7uA0Z>gk??(fB^<so#mZ
z;=QN^pFu6)7q#pC|C5UD@gvkuyg+sI@8%7h12u3_)V(Wf)<m7x1obObD{O?rQ48FU
z8s`G4-|zSi-n0Ch-PwOlIEhNLbbMLh7~=D9ki%9z9OoGMb9exk_2SR$<U9BAb|QOU
z?>D5vSe$%<nT&afmtzA=#XOk4pJzVQf~xmp|FxxcEz!>GirVsCs4E_9`EeFcLT%|h
zi#M1%P+NPz;%_bf+2Y%%iJzKIlItZhCV7UUCJZ-YQ45SS>tGOZTP%p(uqaN(?zjbO
zVQ7EPM02ir8nuAX0p2qb?o!c&@u-KWHtHd4i|W|Z>~AKc`j0lJm<v%?zRKcl7VpC#
z^50ng2lH3c{nIKh%;16EYZ8IF@-i0J#Sr2ymQS*HJZhmcES_)i3e@@QEx!x%6Cbts
z21e`se?Ub8gbnh{WyW9#`63p_V<2%g)CWsFYj1>_s2%G4PC|W>PC{MzRCB)hfw>+7
z^!{(95>LmSz68JPS%<$+Tl&oMnFc#fMdC2jf*YAFPzz{paep(}9F6?vxcpGRyQm9G
zHw2mA38kU|qs&;dm^zRzW7fbd#Enr`*2(OJI)5-~f)VC))cMOS{t$KEUdtatR~^2$
z#1+&4x6M~(*idhvLYRg2a;SmoU`A|e`8JmCg}w!$#vfr$GUu7ghuZu9ktOz-Cr|_Y
zVDTl3Z(?Thf1wug%JNx~y@_&~1yJXgF)NuhQRmgSxNS1~uN8J7A(Jo)N16+*<5qJg
zs^31;KqoA|VC^@s2>Ck}hY#}>k_WSqFMxUrDxk(`?^=gmn3co;)Ygu-{8UuOITn9l
zu0aj>A*z3><&UEJe~n>y9@TyewIdJB=cb$CP49$YGr}xrmPK7@O^Xvz19i5zhs8s%
zIQfwnjB70a32H}EkoVpB7PY{;SViyuGb+9<;rFmG8rq{e^hd3HlsOT#kXfh&EJIDS
z7WLk5LH#E6rFjBN6Mthq!`Fz5kMJCT_4WRLLZuH4_fZ3P9O*5fJ1QQ8OL4fxp`*Nf
zIMybg$Kuz`-l&BRL|xE$%g;ky*!$)><@Nq=x5O?bh>xO9{2FzIm(4${{cqGj&&<Hl
zUL0=5qIM(>HC{uDo1@O_XYmMhHPKuu`h{T)>V$o$jz`SzP#?XQEWTkrF!f7=`e!zC
zqsA?QdM2u(K9YN*9`Yn}>=^c6_jncwz1NFSC$6&&pJO57uPnZU`nr9Iny|=N?^`n-
zeOHRgH@CQp+0*Qg;j|}XBu*R4{;RUu5_`<=Q3KsV4gAF7SEvPtjPuNi>K9{{LXB4y
zbzW=BcQX5;E^s(%C#JcUSYjPMHg}uH%<oYrUO_!v_fZq1AMY(B2(^&xsC*1YVG)b#
znvKntsPWtmR0>cTfEr+)H7rL>v<-Dd2QWLHxBP9(KSyn8_*-885~y*ip%&24>}B~0
zs0GgPV%K?(iUwF?9d@BUD2}2&7k)*Z;QzL5y_wUDF^i)njz?WtZPa;fP!Dfs)UE4<
z>Ngmp_5P2u#0RJoHlYUCYWYLvX>0!pHPBUyZ=-hTfyMex*ZJ8o8VjSwt&f_xso4>;
zP@F!h;7HU!Q&A_Z!gp{Z>crv`JS(Bv>!HqTf)%kds^3D?0#>13za6M?FQLwRWWGS(
z-~ahd^iIrVMxq8NWN~HG2T^^qh1uEcgIY*3YG)>zv&=>2D%1i#LM?RrMD|~mFD!8q
zHSv!Y-!vav-fxn3Vgzc!f)>Z42Cj{|(uUX%->~?k`73IH&r$sY-m$IC%sy)&xy>SG
zyjj~!G&^Gr`u8(8q6WNX?YB^W_IrZbxtCZHgC=|PR75Sbu4{=dr~#79q2?%Se;f6d
z%tAk0WBHA!^HNYdmumS_s0l7w{J>&oiq|if>6WxgEz}OQGP|LElNpG5h~BgO0rMO4
z0*2Cl19eLtq88*o)iVS&Zgw-qEamAsRjCBfp@B6dnw>E}`F<FHGf`Kx05#xd)D`bS
zeUzTWeE1XUwR?uKn0uP{cGSR9#KTb^OlvVx@Be-(zK0HV1vfD#{(}uM+jRY+z^~h=
zhi5eg;AYf9K1F`rbN1sBEHlIVo0Ai$_RFaLx6mK&V+MSJnV8>sP9+EfXL=pOPz%Xr
z7Bj1$7TO3ka2LxbS$>S=XPZmSjb@5@&^(21F$TJ53BOt11ldp%6g11C7E}|p&_uHX
z>dJbUN#;=0`J+$^o{TzwF$Ur$)HvH`vH#kVR1&&}2a!)v=L~9q7PCFOq6X-XRdFn8
z;GL*}j$8Zp=2g_&a^K>>IbOd=3?UzD#?4{>HBfaDnxMHgbhCIMYM}8JFErPpCf<R0
zaUW{ni>UE_Lyh+js$cM2@1EyC#gV9;i*>2!#A0SeYp82BMxD^o;?7utxCfTPxu~ak
zA8MTQ=5^G=cpr8Cta;vqi!dE=0zW2F+|C4P$4e^f)N03nFk5>5@c`zc?4rCydnhFb
zh2N-s$FJ1?vAQ@<tfPv#jrw=KjQ696<=G+Ed5v5{$}*DanCw&P{iv6wuHz)79q~y@
z4@z;%XQr;BB=OJGzob6Nm*Ec?7)ohQz5}HiWgl@Rtcl$z-ogD}Kr-!^N?m``b=-1%
zZ2KNK-@{~`_WY}V&41O^oJ46xDPW77Py74C>4^_gzd`-~9D4tC9HuO$!!cjv-BW$&
zTqEa)Q*Z}HV?jy{ivAgv?_ltF>KzCkQEF44M%hGt4W%P>9aAWIsBg8nEV^e&-l0;5
zl85>l{F<Vp0t0uZ&Yv@!cTj&v7((s`>`Ey`(ZMt3J8ttc1MRadZ)v9+6+U8o#~prN
zv-(io|G{+bPhvU#MOkVm=VqYat)AX|goVhDvDn6OCQvy?@uy86Fh^*A4+~K?Q;#Ko
z!_FB^PRD9WmvroZ3o277I$qH!zjfpr)A^dxn0P#;xjJxs?&17NF1z&&#7pEe;Bbom
zHC@`#kxCisci&W781?Kf9ls|CBG_n+4TxK*2S*9DlYftLmf}zDZ%Q3X1Z_w0NAi9Y
z9dmFw#?$r<b$tftcuc8F+zBsJc2JL`xFz|Kc4XzG>I5svrC9!`Ig$Kt)PGCsjNef1
zQqqzC3%{T=rSv8~h(#Ii3hLNR&W~8fUg|q39ImsMpPRhEsZ4zwMPI*tDf7seqYR|z
zO_`3{C^~L=INuQ$qYR@IAje-P_>MOeQ)*HEzk{zBr@cmvW>w*oo^<R&vJ&;2lmXP&
z+L`-k+dzFgHnaghu{QA&C5k+!`Ho4{zp{FL>TRgMkGUxNz8FlYN15r8SWIOpWhnI&
zjHKu&%xI^`eMbFfUxp`|_(STgFzt9ry#m3<|H`SYFeOG6j*+xwqb#IUP@UW-=yv1B
zj|AOOM_wi^hZ!knD4EhOiF!YZj`Ea^lq;OG2uDypr>-xgWJ*rzr!XTPz_g<em0!r|
z_`=h5<`cv*Nj}U^DM`6N;~~^HmySUmzMt**xy3u#3CFg?)2)3R@mp43hk=Z{0&kOV
zL;04{mAC}zc<y_usKn554o1+>m-3tvMD79lQ*``|wXrPug;)e{VxqObO+6E(3Pr~>
zN^weSYp;y)#4E5KB?I-0djI)51!oY6r&y3!M=|pP^~1F3IAoT_9>hl|>nWdE{vP%A
zR<A)_$1ID7P`^xlH=e-(l(iK11&KUNmP(Lz6tha0E#eR2KD1Au^rHS0D_UFHIhV-o
zv7o2<Cb?&69n2FLLp}~i>aAWvpd*J3c#n82WrO8g(zc8G3Ce$|XQc%HYx1(hKhgGr
z@;0RwaTfdqA5ikqcL;Gb^_!T8Ix154K2;<~ZpsLfPka&IYSf!jnh*#3I<sp0igKOu
zk@d@KZ7s2d)yLEJ(ArZa`NkIKXF<PH&q~hs|NpNNtS3mOtfuHFWmj0(;sh`4TqJ%*
z*-t!=(#hIiQO``NNI7k}Vbt$Zk7TUZu{ZI4EJqwcU57i`Iv4d~=TnQb(CLZQThkUw
z+@E-r<w}q%PcEOuVZ=$)bCD}ZJqP6@;vY~)QR>GiO(;6bd%Dhff)Ik0_=Z|Is(Cn%
zt#fhw$LiMPV=}n~)XG@0k~t7RpzR#xSL*-8UX+Iv9q&@MQ%a}3|62)WP)<{VDLVe3
zb8gBl%537wT-h>T3m>%@K>V%^*a!nCizrtqV`wi!dw})-054J+&{mc5C8aGT*5$`e
z>$Dj&b5blGx7>%cSEp<tR$m>XaFti}{r}$U)L$bvgYqZ!D8|TSebp_5lATglL2!&6
z9fyn<7L$}RA+BMhU!P$^2BjQo@F+54#h9|?tClUBvcLPCh=3a_Hrz;^pR#`R!JPjC
Dc~FH!

delta 12257
zcmY+~2YgT0|HttwA(9Z0gd~I*A&40go7f|Et%|K$ikdB=xHi?IMr*Y-J5V}MEj5cO
ztskwu)gHA<X^s9~@9+KO|M$C(-zU%WIp^GS&OP_uZ@$sr2aEhJe&pw#3D5kV!%^AK
zaq{7*Fvod7`GYvsI?lkdjx!Yp;TU{^zh!cqQRN(G2ev9tPJON<$H|RXu>d|pnw;2V
z$El93unbPe8n_vYJC5r-_6kmsijEUNLo?Ju+F({3WcBIh7!0L;GWz3ORR4t-j^AP+
z?!y>7gxT<p)jz?)<XI}|JeO5a$V^3j)P$*+6JNkw_!0)=aC1DeNzQcCLKb5Peu?q8
z1xw&19D<>h84Jf_Ydm5mRH2^vozWDs;6c<D9Yw7;psM3UU^r@mc+^6ZQ2nc5c1*z>
z*c2nNBkKIYRzDimZyIWx1=ju<y1KG;6g0qA48r}W6ON&F;u2~r|H9lDUd?gxVsX?h
ztBX;Xiki3wYTW+To{n1h7}U;9M9nj|8v7qhVF?x5%5BJV<s3i_oQWq#9RpEU9FDqz
zXjFSV>Xwy8JqyXG{#8&D)x~IRYwi85eXu#QI{U8^CRxS1sE20(au=LssEJOaCc21P
z=uK3=Cs-D<@JQ<llTiz;irRr%mN!A2-^%QO4amE@6tvZ!p$1-$8h97#g#D;1K4SSr
z)UCRSx;2kc4{7$A-qsgF-;SWhNyZqgiQ17g)O`I=x6DnapdFZrnrI<vf)%Ka-=bct
zU8n($S$-XLub*0dP>OfOF{lN^qZU{OHGT?ehZ>{CZH_F^bvjx_Pt<^eP$!N;ZQ*ot
zKI)2=qZYCnHPKeo&i#mbTaKb`*$vcq_pJSy)#s??otGN}_5SClpcCU!E3AsX6{8l=
z7z<(>jKw!l{pO%1nvdGK#i()CpeEjdTJU~Mz@wJ?)%Ko|Y?zDroiGX|Fdj8fOVq$!
zP&@H5Y9T{WS3DLq@LQ;Uvn-#Fdia*2`h8~YU!um{fCX_E>io;-s^e`6TJb~Ffc|y7
zJlKpx-Lt}|fy$z8K@HT_w?K{471gg7YKLCOe3*{f(f3gkFGlUuiaPASp2E#k=pj3d
zo$xB^wW?p&o9GSH0w<#eo{bu49%{lRs4HKCnrI!y;}-P8OXgK9On$@6QIGvEM@3>i
zZ^9nfj(iq2#%rh@sZigWs48k94e>i{jhQi|fwzEg)WV}t3v6VzLhW1{>dJeg7CO?U
zpaCbL?(r<kKeT)WYJzpBXW=_*-;28PBbWs*pw7RB0eIi?$Ebw_H1s~YLs7S^DC&2G
zn@qv?%LBDF9Z>_1#-jK(YJ#s&6Kp^YxC3?GKC3@rUNY~X7V;R?&##f=6v8m{#|p>?
zlj~HXkcW!asE6t`3`7@o#ZypQHXq}0HR@S8gj(Pg)C3{iFZIudnz%G-XOmDDPz$qS
z1Jn*Q#|XXuT`1@&9gKRvXJ7$bWA4Ww@>{4|@d!2WQ`AlcrF!*|sD3dRh(%EsRL0tC
zVK8}p)Ph=KnBM<(6twc*s9&q;sHb)gYQ=Lg7#E=?T#4F&4X7*Mi|ThAHSu}W7GJme
zTd4kjp(YM$;_Xl<x;i0}f(9ypdV0&Cp4Kj?t?!3=O~;@XI?wVIs4Lu#dUk#@|FZf#
zO}(uyiTWi}&1{ca$dIP&zY6J8Xdy0Y2d1D_ybO!sH&_JEpl*SGGp~Q38HQSLUd)EY
zQ9F`^y4TfF<2Oa!qP7@}U7NB0>d=RZ@;Cx@MXOO0ZAJZh-HF-pxOo}1@IO%l{*8L*
z{F{4UID%0Nh(qmINz{c^NA+uuIk1aMK`VX@_0=lf@)=m1d?D(DotTFEFbBrB@JvQ6
zq#kOasaOHKTKjC&d%hG);dhuHFQYEd&D_#^Sb|U!g`lo97iwXJP`9Eq>Pl;wsTe}u
z#_}F!KdT>#+VTnJGz=wwA9VqrAoID-dJ5X|?=dItM=jti>fyVIn#gJ8)#pIf$DkHi
z7PY`?*4`X-WgSu9{kma2Oh-M0TTl=42@KKue~*IhmA<5FWr1cCYQ^!Wt*vPFO;8I+
zLtSBi9Du`c5MDuz*P*r7-W_#|`k)p(5R2hR4AA?(oPt)m3iVX(R0ICUJc1hVG-`pD
zP|wDF)RpFM<4sf;bzVt~!1AbPssZYrcS0>-1cu=xbXAx~AskntZoy{ME!dAb;UreT
zD_9a^+Ir7IL$ej?ypE{z`k`)FI_k<NqjqYV`95lA7qw;o)$t1|d=sM{vi+z99YZbf
z1{TDps4I@;ceI}BIMhH@%~VwXG}H%DKg@+QFb<cazF+LY*Rg1O_CKD&g7$ps;da#4
z-ZAsM=-sP2Sc&>RsJ{!AqHf74)PgReZrwE;i}&#x9NNLVwWWD?b?X|S`nN@W#HYCw
z^jY26I&??hLxQ@OBT@HqJm$u^m={;0u5=G-%TJ(o><UKVKd7Az@90fj5Y?|NYR9Uh
z&Uc$yMHkdP?vL8CrKkZnSo>bo!cL%0yo}m`N2c~ww=NKMh2g0FQK*H)p)Md1wG$1I
z^IfMMg}hXBL2Y3=>VygSGS0I4N2me)J9`6!q81#B+MyRv=f8q_mIk2~Iu4_84(iHR
zqsG~cL3;mxqM!+XLk)BuwZaF!4qQzaZzpn~7Fq~3aCKDw=BTH;2gYJw)Kfndb;a+Z
z#`^@dfc4hC3w`hZJ__2(Ur`-Tpa#B%8u%&d-UW2^j6gjb1yNtAieY1Hj9TDq)HrKU
z{Wjxx+-dcVx_R@pN4HrfepygRr^D**Y!?>m!5<0Kuf(l5uqV#}_2pjicH$})Ab*Sr
z7}LwM0p=$kgbi^9=EI}rebj=&dVAwU_h$c9QIZN-9`z7aL0xfOt8Zy}d(@Wpw0wj)
z8MU=@EMIQ<SC(%_jlbVKY@X`vdJPw><8|{P>gmt?s%I2xVF_3Sldw2;z-~AWQ}BWr
z*T>6WGMAwiZ~<fSI_d(0+`itujzm3#38;>h%@nf%>V#%yn%N6=<*!>l!Sb0HMEw%0
zUuAx4?lRq9t#B6gn%qQPd6s@&9*vqf5mjH)@>ZyYcCq|r%Lk+SrCa?wScrVS<(p7D
zum?Hcb*^{?=a%^Zv(w>;<w37`Z$VDf2TLAQdn{_AlBk8(M17LBM_qYG^JQ~@nT}fc
zcudm!Kh-L>T8G`JEj?iM=ddFA70YA$djk|jEufU;DP{w+8S+1;4L{WH2h_rkm>1CZ
z{@+o7hKJ@e>yTxDcS1O7K?P7(R@SV7I<GEjf>g6JYNCObk3yaIuGKFvKSfs^*HO>_
z+s#Af6;%5_7>Zd3dILpaR`Noq`Vv-O1$_%botJ91H+!0cQ1gu*$o{M2Ol$ZEHNYy%
zzqWiUhETs7HQ^zvzlb{jhWW_qvkdaa$!<oV&dY0g0_wcPLEL{8YElt{P0U`_alAPd
zeG5em^pWLjtbG#}qkf0w*Uh^aM*SnyTM#_h8>bZNLaVqGa#E;;x<{?7p(AR-9+nR<
zhoS}?h3Y@U>gS{SFUD|OjcVV9nrN?i&^(6f@1C{7P4jOvV2F365vY!FsDa8^Udi%$
zm_U6K491~WKNhv4Q&8{wa@06KpuRyJKz77+g83pAPDLqHhZNMxo0{!VTiy+|fPtuq
zhN0g3aj36S3(b$P4EYlC0M;V^*R1she}a>b#aHzH|42atml^6UAQ_d{!TH$O@(bp5
ztWEu0%PS1?`d39Qv^MI3T3LNh)P?mmhg<zb<;?HAV-@pJCoV=^;aYQxwf}?~=zw|J
zyly^3?MUX~-h%R@@*=47YFM6%n&%~S^@U+51zqt>RL6N3h#y<N#@uA?F%O%+qXxW<
zdKUcnGNF&+(x`_!(X4~IwXIRFbLVvSUnlmp4x_Os`3%d~qkhfqMlI|%M&J|Ff^&}W
z>Z4G35woOO9`${p3PxiKv$r{R1pBXs1ypE)wWxu%S^gtx#fQu@R)5uefI8prP4B!I
z)HsFBvZxEJj@pS9mUpxEA+8n1nA6M!s1rX$JyaV}3)_oY&_UEhC$0V}#*p8(JljaG
zf4G?kHC{oC!wRVL-S*bd6E)E=)D=xeZS`WSUuX3@QCoW2>i<Ly<Uh(=Ku)t1s=g6w
z;cYGNggXCKFLxc6f<7SLL48E7LY?pn`nKLYV_r4yp(c2Oy0W0r-g)^@4{sdm{8FfX
z6)_g;THXT#^!^W^paF(j!&~P2z7G5&6l$QAmajwY&?d_dq0T>vv3SesLl|2V>)-fg
zA=D0+F>7Kp;WX!muDBPD$Ns1j?wS8ud-gHj01;S`_Bd3(G}Homp<cfcs0DtE8h4Ai
z%lsL2-f!sp{eO;v2KWQjpg&>t0Tg0Jn{j3t)Rk00?M!2{wb|M1g<8NM)VRaViRP@a
z_Wm!jim%PBs0ICO`B~J2H!XjH8aQa2ccnS8H+c!mXPK)|3*3q7zaO=b!{+bfY>RJO
z#S=4#`=E}IW*pWaFK6~g4fwgWuSNaMw+*#(yRj4=wDxDHTas;pH*OKs`H8L-Dw`?R
zp#kbOX^oljRjcohI`K`^4vn+=_fQiowS1H1dr<w(oA=GE6TOAFd96?k^$jKo^$>Nk
z`pM=Ta|!04eGTfCY(_2U7xNHm=T4ee%?GC6B(Hxc($94wy@C^mg*dUCb$9`FMIEet
zFzQNN)JN$oEP%^UuiXz=7=K5-9a$#x3ka*DJ{kL<#+!s1XAy?#{r{RmBo#Zb5gy0-
zSa^!}@btz2^1-MpOGm!WIg@Z6KEhl$^DVFa6IB1Tm<2bYKW@WpxD$i$0Q$cFpP-<v
zJa67LGfnkY8ity<2&!MA)z`NAHfDFTzxk#)#e5G-aQ;%ue@0hZaoj3ynt!7v3V7RF
zX{1>Yb!7==qFEWWz!cPYO;P7}#XuZ@K{y<>BjZrFaLU{4KcAM)d@3|R^gEtKQ3I66
zs#pg#@F>(k?^^o;b0z9+*=YFzRKIhW9j}`YQR8Hu=8YdU&EEfFR*{4nsGj9%W*^jm
zBQQTsKn=VUHQ*Ph1@A!h`xSN1Pg#BrwR6`|=iN1*xz><vy4N8bH9#KA<FF)o0+z;h
zsHb@XYM{mDYShEH5p{m+8QyrEF%$V4#9S5Zc;EDW{?D|ABUV|-kH2szw<7w`mQ1dr
z67d)LPsE=DWBZP}ly!vQ4m|10{{P1>6l>9T4s$bBCd$)^`Fj5|4!u&Hs60>T(ErIO
z$jW-pTli|Za<d+CJDnAlm!dD5>3ok_n4}?YAb*6f5xJ;~BQH<+Cp+i)`JL-D=*Wc+
z6_itmTSNdS>-gBi$w&JZ;wE_}+Fqd?N!%d6O~g^BCw~^voZzlF|DiqO=xT*TmyT0u
z_>$;F<$s88DZfGJRnf7NayX&m4lcp3u{-{VfsAnqzb7wGyi2(f(SY(HJcyl$+>{p)
zI?8j7j{n>LmL%PX4up>S#LomDhW~Sfkm=(!+jF&(C~qQytuB#CqM2X~xgJIx6N${k
zVcI^jMeNf2zmn7=!qm$SeK_bftVVrz>#YBSS}~%c<ufxn<1^~UVLVpGiu8*l4v=TI
z{^PI!q1Ui3F`IJxOk95#3Q<(NNgSn|ab%@@n@Faj8(tyqQvQk<MR_C6Cj6PGEqNEp
zez=J!PM!V*RYwWRft30C)AtYBzDj=RH7=(8zeD^;WE@Yd&;%!P;(DBCgQ@8O<!AVk
z)$wWVJKpB!i_i5dN1mPhG7ca%Q;uOVI+jyDg!(V8&UxZA@g|i~bQnrGhVpU@C3MUu
zzk)e!fOp966FO4OVM-`}PVA+4n7B&RB6P%Zu6|SQ^JTtY*RGR|&Zn$mH|0NwdxVax
zHd!6=Aj+5VZ=#B|r=z+w^!4_B=y$xY5<c{*d_M=%cL(tUSpx3FW_tebS*O!fma_>z
zr2GN(1Mo9K$2VBhEBb!+<L7>23H6hSu0$H~JJExPA}$hXcFrS=XZ$JD>39oUy8NhM
z73(pS4#O=EraYdqeglrg(ZmR175PfsihmFni3LOh>U8AAr$h<jJMuona5X%4RHOVQ
z;r6qWTA1n+!o-=0#*~{=pH-F59Ve-qMT~x~PQ}vHwZ^?T!rI1CzC^hxE+ZNfam016
zo%f%@1!5SL&mW~(z(^`0a20K5i4x@hU{O4S1!;Rsxi_I>3o*o3;!_YS5FgO*HB6xI
z3CbzNS@O4tvU>mhXwdNqQQKGIzf#jFn8-NpQr>QPVf==MzleC^MMB>RGLB}nSFkaA
zQrU`pD>0bzG3)dLd48g`?teZyhZEyzEQ7yL_lk8qj!no15#LgNf*D6iD@0;GBAn=L
z?SEU_LNk>5Jysq{c_rnm$o2EI5;=$=R7@a#r(B9iB6PGPl2}*~LPsO|WE}rkp*rrN
zeucHYhXKSj>MvMbN6JSiFSB#zWMcj=ED=+P%|uZqDocDu`CsB|BIDS|0Q-qTw3oyL
zYxtP5j`l<jTj;CQ4J5BZtR@N(e-bsUukZS6lH{?9YxtNbL#N%u^M^l48S7UF=aR3(
zSnN*>q+Aw@5NjzP#VnYg#q`1m@{D6OxeizRKZbanim$9P7MD_2*sg-2v(MVnDHo(%
zlD6tr_XQRwl8B$J?o;}0BXpb~78Cc0Xxfhv{fX`5?pl6~A<?mp_?PlhVgWIOm`7bI
zaf`B!<M@(S{GXo%SWuYt$zu!8Yi7e@w7tq1i->cSOXIdoe6|&_lRm|A#3ai{+3*pT
zzl=|*`;Dkd`R&;=i$}P%t@U$ii&8FbXNh*?pAdPi?ge~-JUh!NXmxAIbtDoSDBmFJ
z6Vr%1)Qu%NQa(uZB;F&hLFmY-$5%%q;u4K|nfv-`_~4~{z{+#X&e(=nOj|NhiiLy`
z3n|x88~PI+h|WaDQJL~h;tUlzur2n*2hQ5*Wz(Y9{@L($bk^j8iAhzHE3duQ?T@In
J7lwZq`CrhyeTV=6

diff --git a/apps/i18n/zh/LC_MESSAGES/django.po b/apps/i18n/zh/LC_MESSAGES/django.po
index b1e588650..0cf576ebe 100644
--- a/apps/i18n/zh/LC_MESSAGES/django.po
+++ b/apps/i18n/zh/LC_MESSAGES/django.po
@@ -8,7 +8,7 @@ msgid ""
 msgstr ""
 "Project-Id-Version: Jumpserver 0.3.3\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-07-05 14:58+0800\n"
+"POT-Creation-Date: 2018-07-06 13:11+0800\n"
 "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
 "Last-Translator: ibuler <ibuler@qq.com>\n"
 "Language-Team: Jumpserver team<ibuler@qq.com>\n"
@@ -480,7 +480,7 @@ msgstr "手动登录"
 #: assets/views/asset.py:197 assets/views/domain.py:29
 #: assets/views/domain.py:45 assets/views/domain.py:61
 #: assets/views/domain.py:74 assets/views/domain.py:98
-#: assets/views/domain.py:126 assets/views/domain.py:150
+#: assets/views/domain.py:126 assets/views/domain.py:145
 #: assets/views/label.py:26 assets/views/label.py:42 assets/views/label.py:58
 #: assets/views/system_user.py:28 assets/views/system_user.py:44
 #: assets/views/system_user.py:60 assets/views/system_user.py:74
@@ -685,7 +685,7 @@ msgstr "重置"
 #: common/templates/common/security_setting.html:71
 #: common/templates/common/terminal_setting.html:108
 #: perms/templates/perms/asset_permission_create_update.html:70
-#: terminal/templates/terminal/session_list.html:124
+#: terminal/templates/terminal/session_list.html:126
 #: terminal/templates/terminal/terminal_update.html:48
 #: users/templates/users/_user.html:47
 #: users/templates/users/forgot_password.html:44
@@ -847,7 +847,7 @@ msgstr "比例"
 #: ops/templates/ops/adhoc_history.html:59 ops/templates/ops/task_adhoc.html:64
 #: ops/templates/ops/task_history.html:65 ops/templates/ops/task_list.html:42
 #: perms/templates/perms/asset_permission_list.html:60
-#: terminal/templates/terminal/session_list.html:80
+#: terminal/templates/terminal/session_list.html:81
 #: terminal/templates/terminal/terminal_list.html:36
 #: users/templates/users/user_group_list.html:15
 #: users/templates/users/user_list.html:29
@@ -1189,7 +1189,7 @@ msgstr "网域详情"
 msgid "Domain gateway list"
 msgstr "域网关列表"
 
-#: assets/views/domain.py:151
+#: assets/views/domain.py:146
 msgid "Update gateway"
 msgstr "创建网关"
 
@@ -1246,7 +1246,7 @@ msgstr "成功"
 #: ops/templates/ops/adhoc_history_detail.html:61
 #: ops/templates/ops/task_history.html:58 perms/models.py:36
 #: perms/templates/perms/asset_permission_detail.html:86 terminal/models.py:137
-#: terminal/templates/terminal/session_list.html:77
+#: terminal/templates/terminal/session_list.html:78
 msgid "Date start"
 msgstr "开始日期"
 
@@ -1433,60 +1433,60 @@ msgid ""
 "for all users, including administrators)"
 msgstr "开启后，用户登录必须使用MFA二次认证（对所有用户有效，包括管理员）"
 
-#: common/forms.py:186
+#: common/forms.py:185
 msgid "Limit the number of login failures"
 msgstr "限制登录失败次数"
 
-#: common/forms.py:193
+#: common/forms.py:190
 msgid "No logon interval"
 msgstr "禁止登录时间间隔"
 
-#: common/forms.py:195
+#: common/forms.py:192
 msgid ""
 "Tip :(unit/minute) if the user has failed to log in for a limited number of "
 "times, no login is allowed during this time interval."
 msgstr ""
 "提示:（单位 / 分钟）当用户登录失败次数达到限制后，那么在此时间间隔内禁止登录."
 
-#: common/forms.py:201
+#: common/forms.py:198
 msgid "Password minimum length"
 msgstr "密码最小长度 "
 
-#: common/forms.py:208
+#: common/forms.py:205
 msgid "Must contain capital letters"
 msgstr "必须包含大写字母"
 
-#: common/forms.py:210
+#: common/forms.py:207
 msgid ""
 "After opening, the user password changes and resets must contain uppercase "
 "letters"
 msgstr "开启后，用户密码修改、重置必须包含大写字母"
 
-#: common/forms.py:216
+#: common/forms.py:213
 msgid "Must contain lowercase letters"
 msgstr "必须包含小写字母"
 
-#: common/forms.py:217
+#: common/forms.py:214
 msgid ""
 "After opening, the user password changes and resets must contain lowercase "
 "letters"
 msgstr "开启后，用户密码修改、重置必须包含小写字母"
 
-#: common/forms.py:223
+#: common/forms.py:220
 msgid "Must contain numeric characters"
 msgstr "必须包含数字字符"
 
-#: common/forms.py:224
+#: common/forms.py:221
 msgid ""
 "After opening, the user password changes and resets must contain numeric "
 "characters"
 msgstr "开启后，用户密码修改、重置必须包含数字字符"
 
-#: common/forms.py:230
+#: common/forms.py:227
 msgid "Must contain special characters"
 msgstr "必须包含特殊字符"
 
-#: common/forms.py:231
+#: common/forms.py:228
 msgid ""
 "After opening, the user password changes and resets must contain special "
 "characters"
@@ -2177,14 +2177,14 @@ msgstr "线程数"
 msgid "Boot Time"
 msgstr "运行时间"
 
-#: terminal/models.py:132 terminal/templates/terminal/session_list.html:102
+#: terminal/models.py:132 terminal/templates/terminal/session_list.html:104
 msgid "Replay"
 msgstr "回放"
 
 #: terminal/models.py:133 terminal/templates/terminal/command_list.html:55
 #: terminal/templates/terminal/command_list.html:71
 #: terminal/templates/terminal/session_detail.html:48
-#: terminal/templates/terminal/session_list.html:76
+#: terminal/templates/terminal/session_list.html:77
 msgid "Command"
 msgstr "命令"
 
@@ -2235,24 +2235,28 @@ msgstr "监控"
 msgid "Terminate session"
 msgstr "终止会话"
 
-#: terminal/templates/terminal/session_list.html:79
+#: terminal/templates/terminal/session_list.html:76
+msgid "Login from"
+msgstr "登录来源"
+
+#: terminal/templates/terminal/session_list.html:80
 msgid "Duration"
 msgstr "时长"
 
-#: terminal/templates/terminal/session_list.html:104
+#: terminal/templates/terminal/session_list.html:106
 msgid "Monitor"
 msgstr "监控"
 
-#: terminal/templates/terminal/session_list.html:106
 #: terminal/templates/terminal/session_list.html:108
+#: terminal/templates/terminal/session_list.html:110
 msgid "Terminate"
 msgstr "终断"
 
-#: terminal/templates/terminal/session_list.html:120
+#: terminal/templates/terminal/session_list.html:122
 msgid "Terminate selected"
 msgstr "终断所选"
 
-#: terminal/templates/terminal/session_list.html:140
+#: terminal/templates/terminal/session_list.html:142
 msgid "Terminate task send, waiting ..."
 msgstr "终断任务已发送，请等待"
 
@@ -2322,7 +2326,7 @@ msgid ""
 "You should use your ssh client tools connect terminal: {} <br /> <br />{}"
 msgstr "你可以使用ssh客户端工具连接终端"
 
-#: users/api.py:210 users/templates/users/login.html:50
+#: users/api.py:208 users/templates/users/login.html:50
 msgid "Log in frequently and try again later"
 msgstr "登录频繁, 稍后重试"
 
@@ -2697,7 +2701,7 @@ msgid "Can't provide security? Please contact the administrator!"
 msgstr "如果不能提供MFA验证码，请联系管理员!"
 
 #: users/templates/users/reset_password.html:46
-#: users/templates/users/user_detail.html:352 users/utils.py:81
+#: users/templates/users/user_detail.html:352 users/utils.py:80
 msgid "Reset password"
 msgstr "重置密码"
 
@@ -2914,11 +2918,11 @@ msgstr "新的公钥已设置成功，请下载对应的私钥"
 msgid "Update user"
 msgstr "更新用户"
 
-#: users/utils.py:42
+#: users/utils.py:41
 msgid "Create account successfully"
 msgstr "创建账户成功"
 
-#: users/utils.py:44
+#: users/utils.py:43
 #, python-format
 msgid ""
 "\n"
@@ -2963,7 +2967,7 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:83
+#: users/utils.py:82
 #, python-format
 msgid ""
 "\n"
@@ -3007,11 +3011,11 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:114
+#: users/utils.py:113
 msgid "SSH Key Reset"
 msgstr "重置ssh密钥"
 
-#: users/utils.py:116
+#: users/utils.py:115
 #, python-format
 msgid ""
 "\n"
@@ -3036,19 +3040,19 @@ msgstr ""
 "    </br>\n"
 "    "
 
-#: users/utils.py:149
+#: users/utils.py:148
 msgid "User not exist"
 msgstr "用户不存在"
 
-#: users/utils.py:151
+#: users/utils.py:150
 msgid "Disabled or expired"
 msgstr "禁用或失效"
 
-#: users/utils.py:164
+#: users/utils.py:163
 msgid "Password or SSH public key invalid"
 msgstr "密码或密钥不合法"
 
-#: users/utils.py:290 users/utils.py:300
+#: users/utils.py:289 users/utils.py:299
 msgid "Bit"
 msgstr " 位"
 
diff --git a/apps/terminal/templates/terminal/session_list.html b/apps/terminal/templates/terminal/session_list.html
index 8cea8e217..33ae09877 100644
--- a/apps/terminal/templates/terminal/session_list.html
+++ b/apps/terminal/templates/terminal/session_list.html
@@ -73,6 +73,7 @@
     <th class="text-center">{% trans 'System user' %}</th>
     <th class="text-center">{% trans 'Remote addr' %}</th>
     <th class="text-center">{% trans 'Protocol' %}</th>
+    <th class="text-center">{% trans 'Login from' %}</th>
     <th class="text-center">{% trans 'Command' %}</th>
     <th class="text-center">{% trans 'Date start' %}</th>
 {#    <th class="text-center">{% trans 'Date last active' %}</th>#}
@@ -92,6 +93,7 @@
             <td class="text-center">{{ session.system_user }}</td>
             <td class="text-center">{{ session.remote_addr|default:"" }}</td>
             <td class="text-center">{{ session.protocol }}</td>
+            <td class="text-center">{{ session.get_login_from_display }}</td>
             <td class="text-center">{{ session.id | get_session_command_amount }}</td>
 
             <td class="text-center">{{ session.date_start }}</td>

From b6cd4a20c59b36d5dbca523a8f05136b2fced2c4 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Sun, 8 Jul 2018 13:02:43 +0800
Subject: [PATCH 108/112] [Bugfix] Data table xss attack

---
 apps/static/js/jumpserver.js              | 2 +-
 apps/users/templates/users/user_list.html | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/apps/static/js/jumpserver.js b/apps/static/js/jumpserver.js
index 0000a3ccf..29fb3e6c6 100644
--- a/apps/static/js/jumpserver.js
+++ b/apps/static/js/jumpserver.js
@@ -272,7 +272,7 @@ jumpserver.initDataTable = function (options) {
               $(td).html('<input type="checkbox" class="text-center ipt_check" id=99991937>'.replace('99991937', cellData));
           }
       },
-      {className: 'text-center', targets: '_all'}
+      {className: 'text-center', render: $.fn.dataTable.render.text(), targets: '_all'}
   ];
   columnDefs = options.columnDefs ? options.columnDefs.concat(columnDefs) : columnDefs;
   var select = {
diff --git a/apps/users/templates/users/user_list.html b/apps/users/templates/users/user_list.html
index 052c5b7c0..27c07c538 100644
--- a/apps/users/templates/users/user_list.html
+++ b/apps/users/templates/users/user_list.html
@@ -59,7 +59,7 @@ function initTable() {
         ele: $('#user_list_table'),
         columnDefs: [
             {targets: 1, createdCell: function (td, cellData, rowData) {
-                var detail_btn = '<a href="{% url "users:user-detail" pk=DEFAULT_PK %}">' + cellData + '</a>';
+                var detail_btn = '<a href="{% url "users:user-detail" pk=DEFAULT_PK %}">' + escape(cellData) + '</a>';
                 $(td).html(detail_btn.replace("{{ DEFAULT_PK }}", rowData.id));
              }},
             {targets: 4, createdCell: function (td, cellData) {

From 8bfd2be21ff77ec0898bb430153f235a8581ca58 Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 10 Jul 2018 15:50:15 +0800
Subject: [PATCH 109/112] =?UTF-8?q?[Update]=20=E6=B8=85=E9=99=A4=E7=B3=BB?=
 =?UTF-8?q?=E7=BB=9F=E7=94=A8=E6=88=B7=E8=AE=A4=E8=AF=81=E4=BF=A1=E6=81=AF?=
 =?UTF-8?q?=E6=97=B6=E6=8F=90=E7=A4=BA?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../templates/assets/system_user_detail.html  | 20 +++++++++++++++----
 1 file changed, 16 insertions(+), 4 deletions(-)

diff --git a/apps/assets/templates/assets/system_user_detail.html b/apps/assets/templates/assets/system_user_detail.html
index b68bf2689..f0ed6030c 100644
--- a/apps/assets/templates/assets/system_user_detail.html
+++ b/apps/assets/templates/assets/system_user_detail.html
@@ -337,10 +337,22 @@ $(document).ready(function () {
     });
 }).on('click', '.btn-clear-auth', function () {
     var the_url = '{% url "api-assets:system-user-auth-info" pk=system_user.id %}';
-    APIUpdateAttr({
-        url: the_url,
-        method: 'DELETE',
-        success_message: "{% trans 'Clear auth' %}" + " {% trans 'success' %}"
+    var name = '{{ system_user.name }}';
+    swal({
+        title: '你确定清除该系统用户的认证信息吗 ?',
+        text: " [" + name + "] ",
+        type: "warning",
+        showCancelButton: true,
+        cancelButtonText: '取消',
+        confirmButtonColor: "#ed5565",
+        confirmButtonText: '确认',
+        closeOnConfirm: true
+    }, function () {
+        APIUpdateAttr({
+            url: the_url,
+            method: 'DELETE',
+            success_message: "{% trans 'Clear auth' %}" + " {% trans 'success' %}"
+        });
     });
 })
 </script>

From 01185a2d07419206c12792efc5a81b0e6236027a Mon Sep 17 00:00:00 2001
From: ibuler <ibuler@qq.com>
Date: Tue, 10 Jul 2018 16:03:05 +0800
Subject: [PATCH 110/112] =?UTF-8?q?[Update]=20=E6=B7=BB=E5=8A=A0gateway=20?=
 =?UTF-8?q?api?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/assets/api/asset.py     | 22 +++++++++++++++++++++-
 apps/assets/urls/api_urls.py |  2 ++
 2 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/apps/assets/api/asset.py b/apps/assets/api/asset.py
index ff5047ba3..8c1f3d726 100644
--- a/apps/assets/api/asset.py
+++ b/apps/assets/api/asset.py
@@ -1,6 +1,8 @@
 # -*- coding: utf-8 -*-
 #
 
+import random
+
 from rest_framework import generics
 from rest_framework.response import Response
 from rest_framework_bulk import BulkModelViewSet
@@ -22,7 +24,8 @@ from ..utils import LabelFilter
 logger = get_logger(__file__)
 __all__ = [
     'AssetViewSet', 'AssetListUpdateApi',
-    'AssetRefreshHardwareApi', 'AssetAdminUserTestApi'
+    'AssetRefreshHardwareApi', 'AssetAdminUserTestApi',
+    'AssetGatewayApi'
 ]
 
 
@@ -106,3 +109,20 @@ class AssetAdminUserTestApi(generics.RetrieveAPIView):
         asset = get_object_or_404(Asset, pk=asset_id)
         task = test_asset_connectability_manual.delay(asset)
         return Response({"task": task.id})
+
+
+class AssetGatewayApi(generics.RetrieveAPIView):
+    queryset = Asset.objects.all()
+    permission_classes = (IsSuperUserOrAppUser,)
+
+    def retrieve(self, request, *args, **kwargs):
+        asset_id = kwargs.get('pk')
+        asset = get_object_or_404(Asset, pk=asset_id)
+
+        if asset.domain and \
+                asset.domain.gateways.filter(protocol=asset.protocol).exists():
+            gateway = random.choice(asset.domain.gateways.filter(protocol=asset.protocol))
+            serializer = serializers.GatewayWithAuthSerializer(instance=gateway)
+            return Response(serializer.data)
+        else:
+            return Response({"msg": "Not have gateway"}, status=404)
\ No newline at end of file
diff --git a/apps/assets/urls/api_urls.py b/apps/assets/urls/api_urls.py
index ce622d648..cf55d08ba 100644
--- a/apps/assets/urls/api_urls.py
+++ b/apps/assets/urls/api_urls.py
@@ -23,6 +23,8 @@ urlpatterns = [
         api.AssetRefreshHardwareApi.as_view(), name='asset-refresh'),
     url(r'^v1/assets/(?P<pk>[0-9a-zA-Z\-]{36})/alive/$',
         api.AssetAdminUserTestApi.as_view(), name='asset-alive-test'),
+    url(r'^v1/assets/(?P<pk>[0-9a-zA-Z\-]{36})/gateway/$',
+        api.AssetGatewayApi.as_view(), name='asset-gateway'),
     url(r'^v1/admin-user/(?P<pk>[0-9a-zA-Z\-]{36})/nodes/$',
         api.ReplaceNodesAdminUserApi.as_view(), name='replace-nodes-admin-user'),
     url(r'^v1/admin-user/(?P<pk>[0-9a-zA-Z\-]{36})/auth/$',

From d3e22a2a90cdfe6a9f971fda0d4d5d83716d28ad Mon Sep 17 00:00:00 2001
From: wojiushixiaobai <296015668@qq.com>
Date: Thu, 12 Jul 2018 10:53:39 +0800
Subject: [PATCH 111/112] =?UTF-8?q?=E4=BF=AE=E6=94=B9url=E5=9C=B0=E5=9D=80?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 README.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/README.md b/README.md
index df8324761..f0bceec9b 100644
--- a/README.md
+++ b/README.md
@@ -19,25 +19,25 @@ Jumpserver采纳分布式架构，支持多机房跨区域部署，中心节点
 ----
 
 ### 功能
-  
+
  ![Jumpserver功能](https://jumpserver-release.oss-cn-hangzhou.aliyuncs.com/Jumpserver13.jpg "Jumpserver功能")
 
 ### 开始使用
 
-快速开始文档  [Docker安装](http://docs.jumpserver.org/zh/latest/quickstart.html)
+快速开始文档  [Docker安装](http://docs.jumpserver.org/zh/docs/dockerinstall.html)
 
-一步一步安装文档 [详细部署](http://docs.jumpserver.org/zh/latest/step_by_step.html)
+一步一步安装文档 [详细部署](http://docs.jumpserver.org/zh/docs/step_by_step.html)
 
 也可以查看我们完整文档包括了使用和开发 [文档](http://docs.jumpserver.org)
 
-### Demo 和 截图 
+### Demo 和 截图
 
 我们提供了DEMO和截图可以让你快速了解Jumpserver
 
 [DEMO](http://demo.jumpserver.org)
 [截图](http://docs.jumpserver.org/zh/docs/snapshot.html)
 
-### SDK 
+### SDK
 
 我们还编写了一些SDK，供你其它系统快速和Jumpserver APi交互，
 

From 9004351ad1f430a9a69e044bc2c5acf9744ea7d3 Mon Sep 17 00:00:00 2001
From: wojiushixiaobai <296015668@qq.com>
Date: Thu, 12 Jul 2018 16:47:35 +0800
Subject: [PATCH 112/112] =?UTF-8?q?=E4=BF=AE=E6=AD=A3=E5=AD=97=E7=AC=A6?=
 =?UTF-8?q?=E4=B8=B2?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 utils/make_migrations.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/utils/make_migrations.sh b/utils/make_migrations.sh
index fbe3e577c..4fb8fdacf 100755
--- a/utils/make_migrations.sh
+++ b/utils/make_migrations.sh
@@ -5,4 +5,4 @@ python3 ../apps/manage.py makemigrations
 
 python3 ../apps/manage.py migrate
 
-python3 ../apps/manage.py makemigrations –-merge
+python3 ../apps/manage.py makemigrations --merge